From 6054d7e6533d549d57dfc645ac1f5420fd224915 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 19 Apr 2018 14:23:30 -0700
Subject: [PATCH 01/69] Refactor copy and add

Refactor copy and add

Add/copy pass integration tests
---
 pkg/commands/add.go      | 72 ++++++++++++++--------------------------
 pkg/commands/copy.go     | 69 ++++++++++++++++----------------------
 pkg/util/command_util.go | 17 +++++-----
 pkg/util/fs_util.go      | 56 +++++++++++++++++++++++++++++++
 4 files changed, 119 insertions(+), 95 deletions(-)

diff --git a/pkg/commands/add.go b/pkg/commands/add.go
index f6aee688c3..c124661c3a 100644
--- a/pkg/commands/add.go
+++ b/pkg/commands/add.go
@@ -54,59 +54,50 @@ func (a *AddCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	}
 	dest = resolvedEnvs[len(resolvedEnvs)-1]
 	// Get a map of [src]:[files rooted at src]
-	srcMap, err := util.ResolveSources(resolvedEnvs, a.buildcontext)
+	srcs, err = util.ResolveSources(resolvedEnvs, a.buildcontext)
 	if err != nil {
 		return err
 	}
+	var unresolvedSrcs []string
 	// If any of the sources are local tar archives:
 	// 	1. Unpack them to the specified destination
 	// 	2. Remove it as a source that needs to be copied over
 	// If any of the sources is a remote file URL:
 	//	1. Download and copy it to the specified dest
 	//  2. Remove it as a source that needs to be copied
-	for src, files := range srcMap {
-		for _, file := range files {
-			// If file is a local tar archive, then we unpack it to dest
-			filePath := filepath.Join(a.buildcontext, file)
-			isFilenameSource, err := isFilenameSource(srcMap, file)
-			if err != nil {
+	for _, src := range srcs {
+		fullPath := filepath.Join(a.buildcontext, src)
+		if util.IsSrcRemoteFileURL(src) {
+			urlDest := util.URLDestinationFilepath(src, dest, config.WorkingDir)
+			logrus.Infof("Adding remote URL %s to %s", src, urlDest)
+			if err := util.DownloadFileToDest(src, urlDest); err != nil {
+				return err
+			}
+			a.snapshotFiles = append(a.snapshotFiles, urlDest)
+		} else if util.IsFileLocalTarArchive(fullPath) {
+			logrus.Infof("Unpacking local tar archive %s to %s", src, dest)
+			if err := util.UnpackLocalTarArchive(fullPath, dest); err != nil {
 				return err
 			}
-			if util.IsSrcRemoteFileURL(file) {
-				urlDest := util.URLDestinationFilepath(file, dest, config.WorkingDir)
-				logrus.Infof("Adding remote URL %s to %s", file, urlDest)
-				if err := util.DownloadFileToDest(file, urlDest); err != nil {
-					return err
-				}
-				a.snapshotFiles = append(a.snapshotFiles, urlDest)
-				delete(srcMap, src)
-			} else if isFilenameSource && util.IsFileLocalTarArchive(filePath) {
-				logrus.Infof("Unpacking local tar archive %s to %s", file, dest)
-				if err := util.UnpackLocalTarArchive(filePath, dest); err != nil {
-					return err
-				}
-				// Add the unpacked files to the snapshotter
-				filesAdded, err := util.Files(dest)
-				if err != nil {
-					return err
-				}
-				logrus.Debugf("Added %v from local tar archive %s", filesAdded, file)
-				a.snapshotFiles = append(a.snapshotFiles, filesAdded...)
-				delete(srcMap, src)
+			// Add the unpacked files to the snapshotter
+			filesAdded, err := util.Files(dest)
+			if err != nil {
+				return err
 			}
+			logrus.Debugf("Added %v from local tar archive %s", filesAdded, src)
+			a.snapshotFiles = append(a.snapshotFiles, filesAdded...)
+		} else {
+			unresolvedSrcs = append(unresolvedSrcs, src)
 		}
 	}
 	// With the remaining "normal" sources, create and execute a standard copy command
-	if len(srcMap) == 0 {
+	if len(unresolvedSrcs) == 0 {
 		return nil
 	}
-	var regularSrcs []string
-	for src := range srcMap {
-		regularSrcs = append(regularSrcs, src)
-	}
+
 	copyCmd := CopyCommand{
 		cmd: &instructions.CopyCommand{
-			SourcesAndDest: append(regularSrcs, dest),
+			SourcesAndDest: append(unresolvedSrcs, dest),
 		},
 		buildcontext: a.buildcontext,
 	}
@@ -117,19 +108,6 @@ func (a *AddCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	return nil
 }
 
-func isFilenameSource(srcMap map[string][]string, fileName string) (bool, error) {
-	for src := range srcMap {
-		matched, err := filepath.Match(src, fileName)
-		if err != nil {
-			return false, err
-		}
-		if matched || (src == fileName) {
-			return true, nil
-		}
-	}
-	return false, nil
-}
-
 // FilesToSnapshot should return an empty array if still nil; no files were changed
 func (a *AddCommand) FilesToSnapshot() []string {
 	return a.snapshotFiles
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 845e7dfcd4..5cdcd55ce0 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -17,14 +17,13 @@ limitations under the License.
 package commands
 
 import (
-	"os"
-	"path/filepath"
-	"strings"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
+	"os"
+	"path/filepath"
+	"strings"
 )
 
 type CopyCommand struct {
@@ -47,51 +46,41 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	}
 	dest = resolvedEnvs[len(resolvedEnvs)-1]
 	// Get a map of [src]:[files rooted at src]
-	srcMap, err := util.ResolveSources(resolvedEnvs, c.buildcontext)
+	srcs, err = util.ResolveSources(resolvedEnvs, c.buildcontext)
 	if err != nil {
 		return err
 	}
-	// For each source, iterate through each file within and copy it over
-	for src, files := range srcMap {
-		for _, file := range files {
-			fi, err := os.Lstat(filepath.Join(c.buildcontext, file))
-			if err != nil {
+	// For each source, iterate through and copy it over
+	for _, src := range srcs {
+		fullPath := filepath.Join(c.buildcontext, src)
+		fi, err := os.Lstat(fullPath)
+		if err != nil {
+			return err
+		}
+		destPath, err := util.DestinationFilepath(src, src, dest, config.WorkingDir, c.buildcontext)
+		if err != nil {
+			return err
+		}
+		if fi.IsDir() {
+			if err := util.CopyDir(fullPath, dest); err != nil {
 				return err
 			}
-			destPath, err := util.DestinationFilepath(file, src, dest, config.WorkingDir, c.buildcontext)
+			copiedFiles, err := util.Files(dest)
 			if err != nil {
 				return err
 			}
-			// If source file is a directory, we want to create a directory ...
-			if fi.IsDir() {
-				logrus.Infof("Creating directory %s", destPath)
-				if err := os.MkdirAll(destPath, fi.Mode()); err != nil {
-					return err
-				}
-			} else if fi.Mode()&os.ModeSymlink != 0 {
-				// If file is a symlink, we want to create the same relative symlink
-				link, err := os.Readlink(filepath.Join(c.buildcontext, file))
-				if err != nil {
-					return err
-				}
-				linkDst := filepath.Join(destPath, link)
-				if err := os.Symlink(linkDst, destPath); err != nil {
-					logrus.Errorf("unable to symlink %s to %s", linkDst, destPath)
-					return err
-				}
-			} else {
-				// ... Else, we want to copy over a file
-				logrus.Infof("Copying file %s to %s", file, destPath)
-				srcFile, err := os.Open(filepath.Join(c.buildcontext, file))
-				if err != nil {
-					return err
-				}
-				defer srcFile.Close()
-				if err := util.CreateFile(destPath, srcFile, fi.Mode()); err != nil {
-					return err
-				}
+			c.snapshotFiles = append(c.snapshotFiles, copiedFiles...)
+		} else if fi.Mode()&os.ModeSymlink != 0 {
+			// If file is a symlink, we want to create the same relative symlink
+			if err := util.CopySymlink(fullPath, destPath); err != nil {
+				return err
+			}
+			c.snapshotFiles = append(c.snapshotFiles, destPath)
+		} else {
+			// ... Else, we want to copy over a file
+			if err := util.CopyFile(fullPath, destPath); err != nil {
+				return err
 			}
-			// Append the destination file to the list of files that should be snapshotted later
 			c.snapshotFiles = append(c.snapshotFiles, destPath)
 		}
 	}
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index e74745796c..251b96980e 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -84,7 +84,7 @@ func ContainsWildcards(paths []string) bool {
 
 // ResolveSources resolves the given sources if the sources contains wildcards
 // It returns a map of [src]:[files rooted at src]
-func ResolveSources(srcsAndDest instructions.SourcesAndDest, root string) (map[string][]string, error) {
+func ResolveSources(srcsAndDest instructions.SourcesAndDest, root string) ([]string, error) {
 	srcs := srcsAndDest[:len(srcsAndDest)-1]
 	// If sources contain wildcards, we first need to resolve them to actual paths
 	if ContainsWildcards(srcs) {
@@ -99,13 +99,8 @@ func ResolveSources(srcsAndDest instructions.SourcesAndDest, root string) (map[s
 		}
 		logrus.Debugf("Resolved sources to %v", srcs)
 	}
-	// Now, get a map of [src]:[files rooted at src]
-	srcMap, err := SourcesToFilesMap(srcs, root)
-	if err != nil {
-		return nil, err
-	}
 	// Check to make sure the sources are valid
-	return srcMap, IsSrcsValid(srcsAndDest, srcMap)
+	return srcs, IsSrcsValid(srcsAndDest, srcs, root)
 }
 
 // matchSources returns a list of sources that match wildcards
@@ -206,10 +201,16 @@ func SourcesToFilesMap(srcs []string, root string) (map[string][]string, error)
 }
 
 // IsSrcsValid returns an error if the sources provided are invalid, or nil otherwise
-func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, srcMap map[string][]string) error {
+func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, resolvedSrcs []string, root string) error {
 	srcs := srcsAndDest[:len(srcsAndDest)-1]
 	dest := srcsAndDest[len(srcsAndDest)-1]
 
+	// Now, get a map of [src]:[files rooted at src]
+	srcMap, err := SourcesToFilesMap(resolvedSrcs, root)
+	if err != nil {
+		return err
+	}
+
 	totalFiles := 0
 	for _, files := range srcMap {
 		totalFiles += len(files)
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index e2d5f588fd..60631adce0 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -210,3 +210,59 @@ func DownloadFileToDest(rawurl, dest string) error {
 	}
 	return os.Chtimes(dest, mTime, mTime)
 }
+
+// CopyDir copies the file or directory at src to dest
+func CopyDir(src, dest string) error {
+	files, err := RelativeFiles("", src)
+	if err != nil {
+		return err
+	}
+	for _, file := range files {
+		fullPath := filepath.Join(src, file)
+		fi, err := os.Stat(fullPath)
+		if err != nil {
+			return err
+		}
+		destPath := filepath.Join(dest, file)
+		if fi.IsDir() {
+			logrus.Infof("Creating directory %s", destPath)
+			if err := os.MkdirAll(destPath, fi.Mode()); err != nil {
+				return err
+			}
+		} else if fi.Mode()&os.ModeSymlink != 0 {
+			// If file is a symlink, we want to create the same relative symlink
+			if err := CopySymlink(fullPath, destPath); err != nil {
+				return err
+			}
+		} else {
+			// ... Else, we want to copy over a file
+			if err := CopyFile(fullPath, destPath); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+func CopySymlink(src, dest string) error {
+	link, err := os.Readlink(src)
+	if err != nil {
+		return err
+	}
+	linkDst := filepath.Join(dest, link)
+	return os.Symlink(linkDst, dest)
+}
+
+func CopyFile(src, dest string) error {
+	fi, err := os.Stat(src)
+	if err != nil {
+		return err
+	}
+	logrus.Infof("Copying file %s to %s", src, dest)
+	srcFile, err := os.Open(src)
+	if err != nil {
+		return err
+	}
+	defer srcFile.Close()
+	return CreateFile(dest, srcFile, fi.Mode())
+}

From be38696c7d18b6ee5721412e0feddd5f88ac6c61 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 19 Apr 2018 17:26:32 -0700
Subject: [PATCH 02/69] Updated unit tests after refactor

---
 pkg/commands/add.go           |   5 +-
 pkg/commands/copy.go          |   4 +-
 pkg/util/command_util.go      |  80 +++++---------
 pkg/util/command_util_test.go | 190 +++++++++++-----------------------
 pkg/util/fs_util.go           |   2 +
 5 files changed, 93 insertions(+), 188 deletions(-)

diff --git a/pkg/commands/add.go b/pkg/commands/add.go
index c124661c3a..2ce4a090f8 100644
--- a/pkg/commands/add.go
+++ b/pkg/commands/add.go
@@ -53,7 +53,7 @@ func (a *AddCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		return err
 	}
 	dest = resolvedEnvs[len(resolvedEnvs)-1]
-	// Get a map of [src]:[files rooted at src]
+	// Resolve wildcards and get a list of resolved sources
 	srcs, err = util.ResolveSources(resolvedEnvs, a.buildcontext)
 	if err != nil {
 		return err
@@ -61,10 +61,9 @@ func (a *AddCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	var unresolvedSrcs []string
 	// If any of the sources are local tar archives:
 	// 	1. Unpack them to the specified destination
-	// 	2. Remove it as a source that needs to be copied over
 	// If any of the sources is a remote file URL:
 	//	1. Download and copy it to the specified dest
-	//  2. Remove it as a source that needs to be copied
+	// Else, add to the list of unresolved sources
 	for _, src := range srcs {
 		fullPath := filepath.Join(a.buildcontext, src)
 		if util.IsSrcRemoteFileURL(src) {
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 5cdcd55ce0..bded4bf99c 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -45,7 +45,7 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		return err
 	}
 	dest = resolvedEnvs[len(resolvedEnvs)-1]
-	// Get a map of [src]:[files rooted at src]
+	// Resolve wildcards and get a list of resolved sources
 	srcs, err = util.ResolveSources(resolvedEnvs, c.buildcontext)
 	if err != nil {
 		return err
@@ -57,7 +57,7 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		if err != nil {
 			return err
 		}
-		destPath, err := util.DestinationFilepath(src, src, dest, config.WorkingDir, c.buildcontext)
+		destPath, err := util.DestinationFilepath(src, dest, config.WorkingDir)
 		if err != nil {
 			return err
 		}
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index 251b96980e..20efd19a37 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -83,7 +83,7 @@ func ContainsWildcards(paths []string) bool {
 }
 
 // ResolveSources resolves the given sources if the sources contains wildcards
-// It returns a map of [src]:[files rooted at src]
+// It returns a list of resolved sources
 func ResolveSources(srcsAndDest instructions.SourcesAndDest, root string) ([]string, error) {
 	srcs := srcsAndDest[:len(srcsAndDest)-1]
 	// If sources contain wildcards, we first need to resolve them to actual paths
@@ -136,24 +136,9 @@ func IsDestDir(path string) bool {
 // If source is a dir:
 //	Assume dest is also a dir, and copy to dest/relpath
 // If dest is not an absolute filepath, add /cwd to the beginning
-func DestinationFilepath(filename, srcName, dest, cwd, buildcontext string) (string, error) {
-	fi, err := os.Lstat(filepath.Join(buildcontext, filename))
-	if err != nil {
-		return "", err
-	}
-	src, err := os.Lstat(filepath.Join(buildcontext, srcName))
-	if err != nil {
-		return "", err
-	}
-	if src.IsDir() || IsDestDir(dest) {
-		relPath, err := filepath.Rel(srcName, filename)
-		if err != nil {
-			return "", err
-		}
-		if relPath == "." && !fi.IsDir() {
-			relPath = filepath.Base(filename)
-		}
-		destPath := filepath.Join(dest, relPath)
+func DestinationFilepath(src, dest, cwd string) (string, error) {
+	if IsDestDir(dest) {
+		destPath := filepath.Join(dest, filepath.Base(src))
 		if filepath.IsAbs(dest) {
 			return destPath, nil
 		}
@@ -182,51 +167,42 @@ func URLDestinationFilepath(rawurl, dest, cwd string) string {
 	return destPath
 }
 
-// SourcesToFilesMap returns a map of [src]:[files rooted at source]
-func SourcesToFilesMap(srcs []string, root string) (map[string][]string, error) {
-	srcMap := make(map[string][]string)
-	for _, src := range srcs {
+func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, resolvedSources []string, root string) error {
+	srcs := srcsAndDest[:len(srcsAndDest)-1]
+	dest := srcsAndDest[len(srcsAndDest)-1]
+
+	if !ContainsWildcards(srcs) {
+		if len(srcs) > 1 && !IsDestDir(dest) {
+			return errors.New("when specifying multiple sources in a COPY command, destination must be a directory and end in '/'")
+		}
+	}
+
+	if len(resolvedSources) == 1 {
+		fi, err := os.Stat(filepath.Join(root, resolvedSources[0]))
+		if err != nil {
+			return err
+		}
+		if fi.IsDir() {
+			return nil
+		}
+	}
+
+	totalFiles := 0
+	for _, src := range resolvedSources {
 		if IsSrcRemoteFileURL(src) {
-			srcMap[src] = []string{src}
+			totalFiles++
 			continue
 		}
 		src = filepath.Clean(src)
 		files, err := RelativeFiles(src, root)
 		if err != nil {
-			return nil, err
+			return err
 		}
-		srcMap[src] = files
-	}
-	return srcMap, nil
-}
-
-// IsSrcsValid returns an error if the sources provided are invalid, or nil otherwise
-func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, resolvedSrcs []string, root string) error {
-	srcs := srcsAndDest[:len(srcsAndDest)-1]
-	dest := srcsAndDest[len(srcsAndDest)-1]
-
-	// Now, get a map of [src]:[files rooted at src]
-	srcMap, err := SourcesToFilesMap(resolvedSrcs, root)
-	if err != nil {
-		return err
-	}
-
-	totalFiles := 0
-	for _, files := range srcMap {
 		totalFiles += len(files)
 	}
 	if totalFiles == 0 {
 		return errors.New("copy failed: no source files specified")
 	}
-
-	if !ContainsWildcards(srcs) {
-		// If multiple sources and destination isn't a directory, return an error
-		if len(srcs) > 1 && !IsDestDir(dest) {
-			return errors.New("when specifying multiple sources in a COPY command, destination must be a directory and end in '/'")
-		}
-		return nil
-	}
-
 	// If there are wildcards, and the destination is a file, there must be exactly one file to copy over,
 	// Otherwise, return an error
 	if !IsDestDir(dest) && totalFiles > 1 {
diff --git a/pkg/util/command_util_test.go b/pkg/util/command_util_test.go
index 242a1a3057..478a4d349a 100644
--- a/pkg/util/command_util_test.go
+++ b/pkg/util/command_util_test.go
@@ -110,93 +110,61 @@ func Test_EnvReplacement(t *testing.T) {
 var buildContextPath = "../../integration_tests/"
 
 var destinationFilepathTests = []struct {
-	srcName          string
-	filename         string
+	src              string
 	dest             string
 	cwd              string
-	buildcontext     string
 	expectedFilepath string
 }{
 	{
-		srcName:          "context/foo",
-		filename:         "context/foo",
+		src:              "context/foo",
 		dest:             "/foo",
 		cwd:              "/",
 		expectedFilepath: "/foo",
 	},
 	{
-		srcName:          "context/foo",
-		filename:         "context/foo",
+		src:              "context/foo",
 		dest:             "/foodir/",
 		cwd:              "/",
 		expectedFilepath: "/foodir/foo",
 	},
 	{
-		srcName:          "context/foo",
-		filename:         "./context/foo",
+		src:              "context/foo",
 		cwd:              "/",
 		dest:             "foo",
 		expectedFilepath: "/foo",
 	},
 	{
-		srcName:          "context/bar/",
-		filename:         "context/bar/bam/bat",
+		src:              "context/bar/",
 		cwd:              "/",
 		dest:             "pkg/",
-		expectedFilepath: "/pkg/bam/bat",
+		expectedFilepath: "/pkg/bar",
 	},
 	{
-		srcName:          "context/bar/",
-		filename:         "context/bar/bam/bat",
+		src:              "context/bar/",
 		cwd:              "/newdir",
 		dest:             "pkg/",
-		expectedFilepath: "/newdir/pkg/bam/bat",
+		expectedFilepath: "/newdir/pkg/bar",
 	},
 	{
-		srcName:          "./context/empty",
-		filename:         "context/empty",
+		src:              "./context/empty",
 		cwd:              "/",
 		dest:             "/empty",
 		expectedFilepath: "/empty",
 	},
 	{
-		srcName:          "./context/empty",
-		filename:         "context/empty",
+		src:              "./context/empty",
 		cwd:              "/dir",
 		dest:             "/empty",
 		expectedFilepath: "/empty",
 	},
 	{
-		srcName:          "./",
-		filename:         "./",
+		src:              "./",
 		cwd:              "/",
 		dest:             "/dir",
 		expectedFilepath: "/dir",
 	},
 	{
-		srcName:          "./",
-		filename:         "context/foo",
-		cwd:              "/",
-		dest:             "/dir",
-		expectedFilepath: "/dir/context/foo",
-	},
-	{
-		srcName:          ".",
-		filename:         "context/bar",
-		cwd:              "/",
-		dest:             "/dir",
-		expectedFilepath: "/dir/context/bar",
-	},
-	{
-		srcName:          ".",
-		filename:         "context/bar",
-		cwd:              "/",
-		dest:             "/dir",
-		expectedFilepath: "/dir/context/bar",
-	},
-	{
-		srcName:          "context/foo",
-		filename:         "context/foo",
+		src:              "context/foo",
 		cwd:              "/test",
 		dest:             ".",
 		expectedFilepath: "/test/foo",
@@ -205,7 +173,7 @@ var destinationFilepathTests = []struct {
 
 func Test_DestinationFilepath(t *testing.T) {
 	for _, test := range destinationFilepathTests {
-		actualFilepath, err := DestinationFilepath(test.filename, test.srcName, test.dest, test.cwd, buildContextPath)
+		actualFilepath, err := DestinationFilepath(test.src, test.dest, test.cwd)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedFilepath, actualFilepath)
 	}
 }
@@ -278,141 +246,111 @@ func Test_MatchSources(t *testing.T) {
 }
 
 var isSrcValidTests = []struct {
-	srcsAndDest []string
-	files       map[string][]string
-	shouldErr   bool
+	srcsAndDest     []string
+	resolvedSources []string
+	shouldErr       bool
 }{
 	{
 		srcsAndDest: []string{
-			"src1",
-			"src2",
+			"context/foo",
+			"context/bar",
 			"dest",
 		},
-		files: map[string][]string{
-			"src1": {
-				"file1",
-			},
-			"src2:": {
-				"file2",
-			},
+		resolvedSources: []string{
+			"context/foo",
+			"context/bar",
 		},
 		shouldErr: true,
 	},
 	{
 		srcsAndDest: []string{
-			"src1",
-			"src2",
+			"context/foo",
+			"context/bar",
 			"dest/",
 		},
-		files: map[string][]string{
-			"src1": {
-				"file1",
-			},
-			"src2:": {
-				"file2",
-			},
+		resolvedSources: []string{
+			"context/foo",
+			"context/bar",
 		},
 		shouldErr: false,
 	},
 	{
 		srcsAndDest: []string{
-			"src2/",
+			"context/bar/bam",
 			"dest",
 		},
-		files: map[string][]string{
-			"src1": {
-				"file1",
-			},
-			"src2:": {
-				"file2",
-			},
+		resolvedSources: []string{
+			"context/bar/bam",
 		},
 		shouldErr: false,
 	},
 	{
 		srcsAndDest: []string{
-			"src2",
+			"context/foo",
 			"dest",
 		},
-		files: map[string][]string{
-			"src1": {
-				"file1",
-			},
-			"src2:": {
-				"file2",
-			},
+		resolvedSources: []string{
+			"context/foo",
 		},
 		shouldErr: false,
 	},
 	{
 		srcsAndDest: []string{
-			"src2",
-			"src*",
+			"context/foo",
+			"context/b*",
 			"dest/",
 		},
-		files: map[string][]string{
-			"src1": {
-				"file1",
-			},
-			"src2:": {
-				"file2",
-			},
+		resolvedSources: []string{
+			"context/foo",
+			"context/bar",
 		},
 		shouldErr: false,
 	},
 	{
 		srcsAndDest: []string{
-			"src2",
-			"src*",
+			"context/foo",
+			"context/b*",
 			"dest",
 		},
-		files: map[string][]string{
-			"src2": {
-				"src2/a",
-				"src2/b",
-			},
-			"src*": {},
+		resolvedSources: []string{
+			"context/foo",
+			"context/bar",
 		},
 		shouldErr: true,
 	},
 	{
 		srcsAndDest: []string{
-			"src2",
-			"src*",
+			"context/foo",
+			"context/doesntexist*",
 			"dest",
 		},
-		files: map[string][]string{
-			"src2": {
-				"src2/a",
-			},
-			"src*": {},
+		resolvedSources: []string{
+			"context/foo",
 		},
 		shouldErr: false,
 	},
 	{
 		srcsAndDest: []string{
-			"src2",
-			"src*",
+			"context/",
 			"dest",
 		},
-		files: map[string][]string{
-			"src2": {},
-			"src*": {},
+		resolvedSources: []string{
+			"context/",
 		},
-		shouldErr: true,
+		shouldErr: false,
 	},
 }
 
 func Test_IsSrcsValid(t *testing.T) {
 	for _, test := range isSrcValidTests {
-		err := IsSrcsValid(test.srcsAndDest, test.files)
+		err := IsSrcsValid(test.srcsAndDest, test.resolvedSources, buildContextPath)
 		testutil.CheckError(t, test.shouldErr, err)
 	}
 }
 
 var testResolveSources = []struct {
-	srcsAndDest []string
-	expectedMap map[string][]string
+	srcsAndDest  []string
+	expectedList []string
 }{
 	{
 		srcsAndDest: []string{
@@ -421,28 +359,18 @@ var testResolveSources = []struct {
 			testUrl,
 			"dest/",
 		},
-		expectedMap: map[string][]string{
-			"context/foo": {
-				"context/foo",
-			},
-			"context/bar": {
-				"context/bar",
-				"context/bar/bam",
-				"context/bar/bam/bat",
-				"context/bar/bat",
-				"context/bar/baz",
-			},
-			testUrl: {
-				testUrl,
-			},
+		expectedList: []string{
+			"context/foo",
+			"context/bar",
+			testUrl,
 		},
 	},
 }
 
 func Test_ResolveSources(t *testing.T) {
 	for _, test := range testResolveSources {
-		actualMap, err := ResolveSources(test.srcsAndDest, buildContextPath)
-		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedMap, actualMap)
+		actualList, err := ResolveSources(test.srcsAndDest, buildContextPath)
+		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedList, actualList)
 	}
 }
 
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index 60631adce0..f5c96b80b1 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -244,6 +244,7 @@ func CopyDir(src, dest string) error {
 	return nil
 }
 
+// CopySymlink copies the symlink at src to dest
 func CopySymlink(src, dest string) error {
 	link, err := os.Readlink(src)
 	if err != nil {
@@ -253,6 +254,7 @@ func CopySymlink(src, dest string) error {
 	return os.Symlink(linkDst, dest)
 }
 
+// CopyFile copies the file at src to dest
 func CopyFile(src, dest string) error {
 	fi, err := os.Stat(src)
 	if err != nil {

From 6b3473e4c304861d13c7d6fbd3ff02a07e925169 Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 10:26:41 +0200
Subject: [PATCH 03/69] Use kaniko with docker config.json password

---
 deploy/Dockerfile            |   4 +---
 files/docker-credential-pass | Bin 0 -> 2529418 bytes
 2 files changed, 1 insertion(+), 3 deletions(-)
 create mode 100755 files/docker-credential-pass

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index a1b920c5de..74d94533d5 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -17,9 +17,7 @@
 FROM scratch
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
-ADD files/docker-credential-gcr /usr/local/bin/
-ADD files/config.json /root/.docker/
-RUN ["docker-credential-gcr", "config", "--token-source=env"]
+ADD files/docker-credential-pass /usr/local/bin/
 ENV HOME /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
diff --git a/files/docker-credential-pass b/files/docker-credential-pass
new file mode 100755
index 0000000000000000000000000000000000000000..525169cad569d77775e1de954ee437fa8d805799
GIT binary patch
literal 2529418
zcmeFa33ycH**8Afa9H9Q6f_{n#6}HjYoe$Lh)!fX!HEWl8jxzN)?&pPA%Un+12ch)
zhf!2)wY8OMYtgz^4em_>B?Mep6hV9yH$2lp1s4cz`F_9qIp@roNrLo!-~a#mzUwO2
zMb0_TdO!F6+|M#MjSG%XPfPRI|I$5YdH7X+%s5F3SQ%>*MLYpdk>?QnJ<^lm>4p4E
z{I|;mtT+4FXw|cy9-nHEb@+d+roPu|0eP{XMJgFRsedfXe{3#G-t0dC>qR~N-}RGk
z`)T*bda8|Vt9)6~^Zs6a<=cL`>v4=8Uyds8t4w~Ds{z)J$*|JZW70=8S4che`GbGG
zR*Cw7nLqcO@Poyj0(Lzo;lKI9QSiS5voD}pvgqaiMB!B>0v+~?^(?`Y_0yen8@~$Q
zzkJN5peo>Z%Bh!qcvu)r%Bg>>zkIt`RDCCv@_0(|?e2g1<CCPs^2b$uGX-FOO8qG*
z^&4AM{l*qm-^a#X|5EY(Q{=h(zpGW%zpGW%cU6_wl;%9YNU6Wvs=wT-pE1^<jMVqb
z-^8Co@X9tF96Efe__pfPL|MN1lRrI&;oDum>U+iKRo|=nOD{{VkXoOmh!dy(s;R0%
z)gXB`KFrn=|NMzpc^itq?)uC7T`cL#`yD0E9pmNU{P8<)>SZAwNj+4l`W~zQ&Xn>=
zWs&zxO8ri&ey3Ic4M%~ghEnU_n^OPv*mNoQdTg*f?};SWNdEG8R;Sdjo_&ebtDZeX
zo)Z_#!}*h1|8?ZJ)1LcU)qn15RlnhRr>eZT%Q9gp{=3u8Zn{*;o!vyrcsvF2H}S_^
zmZ=}&zdP+(tNyiC{Zy6aF3b84r_{gOs(-gt|F$8?{GVF?c+{s1*!st|Bes1hLZ16y
zvNrN~W+BtA>n`Wn@gw<MJ5BX?1iq^A-<E$R9UjjONOO2!YN$VJM;<FLtv^kMIQh#}
z;Xkkc!N7ko@E;8P2Lu1Xz<)6C9}FBM2I$Y^<3FDhuJw3|3knKHTz2J^BQ8JV=ck{3
zMZqbTU4Hs0MW_Ajlv7VBIOEDwMx6Syf}+cdetxCiHa1VDMtl)xrkfOFY@Sy)ym~`>
zO>aH2P7i(ES$lZba;tPB;MF6+Jf9vxW2;`qzbka3-?1H?ot^rq%Y53R`S5%6&@Nq%
z%*+euQT{>Wm3l+77S3TFzRInx23uWe4L4&@uAJJP=0AU&VWmVe^9YIfV*(QT>NKCm
zd`4>m5aH(9erB6pI({#ksUmn75W9-%fVf|tIRX`!Qt8S=)8-JQn~SABfeo$JG0F-Q
zE8bX}s~bT!7DQvAX0(IyyD;6;4X0={tKYEx9=7QxaQUM+l4w@1;}1n5AdfPG(3p2T
zt^n|{(HzNS!)D)#bdS~-bviWFPyrh%qCbtq7mrIcRG=D~*h53DQ`nHX{mo2I?8@&u
zJ4v0FUyd>Cp<d-LVHeaWICksW6J;K48Nd{BzAX8`lW*}j4^v#_B_$RI`d#fM(SOdx
zpnX1R?<ej3L^z-Z9x&!2g-8re_|e>i2_y^TFcYQv<*D%vhMUiHVX^@G_k%3?tIRZv
zEPku2Z@wn?KMnn(shN5C>_4B)6zK+7z(A7~WX5TDKTI#)P~$6XZXBDZv;BOuU$9Ex
z6k10r*!lFl9P|4=ip~7-&E~=_=zggKnPUHx{>St<egYy~$?<b?U~a0k$B%UPI0vz#
zzgpu=9^XN>&xwvXtEcv#edB-HK9!JpSWoRw{U5haVK@JNQ4jdp|N8$Felnmrxu^E;
z?z#Q(-O(3{Q}m*+EVx*hPGtVG3ws#C>FnaqUHDg9v<i@Q)5jN@&!b(`uKlE?<~r>s
z&9&(_jx=X|m+3KV(RwcTfeU~6r(e~2^umpLVT=CEKQ6!Z`Kv#h?9sKyTF7`V1`|ei
zfE1l71TE<S+8fj3h8onfiC)&~&$_x;OWAgHVP3EqTF4Jok;K2+qJMTjzR%V8uH*n`
z;jbFu(r^FwMkp+G=>^@>10%fo-yPxXO&H<P$;z->eFXhK6G{&H2$~KiBCITfQhKxi
z`@e(rv~rN@gRRNbBcQC<hwWCbs6!|-HWOOyUuAy25j?as3BPlw|9-H)t6&^b`V-rx
z`a9Rk?b6@EuKj6?E?4%xoMY5EMkrJoS#c(`aDkZoQV7UY4E}JvVUrfV6D*)Ll^(gb
z#a{z?Qg)TKs`MoOq6Fzidglh_`I6X8IC=(gp#vA?mR~|y_;*?nrggUh6J)+{b*6{S
zplgz%Ei(_`!V(YMwaEv<RUm^JoSqcL3WhwG=QoddN4YBntOWxo){a6K&3gWYgaub7
zz-(M$v!V2XZk6Tp1jQAQL7;6HXlB+1a9ce{lSFTA(WM8*|4D-X|5tDy_+<~cuikh7
z-2d+F9&vy6^IdS?@2}nCK0L8U+(%vo?!&-6_4OLiJWaVu{Dgl5UeTJsGhi33sdv#@
zZ5bU4%RR92S6cZidtX_cTtMp6J3)1$cS@$+zPK-BN29l%QpDm_uq&MwW3XPl4X!)w
zkulNhDqPqc-{-(fbHa)~ym+B=wPh{Z@0)X58sV9`#^#i#dY1Bd@lr|mT)}QOkjb_M
zI=rx>%1rGi8|{kPPqu2yTG?r9?nZaFb~gbp`;z*2@!@|Zdv+SYd$%nl$%p8}f@FU%
z;PMBdPAz|MeRuxg0LbNZ2s~sF+7P%g&-x@&rXBPLXT982|4xGbJ(&KS7WIhLiTMRY
zl`|TDvR7*MWjA+|6!I^5eE);~820Y2zu&L#xj${u$e#2~5bCP9MQiB80-WuAP7P`3
zQ2UcGvD{R1iPjW2a)rO<M9zt-^a!*yUaCd&iJB)cJ`BFjt=H|MVAdZfiU!TjpDP6d
zLExM%p}bdbb1M+8m<T=Dx!;_+RVk2s)&lj!Ri`@>&HBEnivn4HpHd*w2h_i9r^k$^
z0)cv{OG^xZpTL4`r_8g~L6tmcsgkbr)E1rfL-;+^#_wLiFXjCIUmXAbiXL!Wwe<iv
z{%T8)IR4$!U2y!1KXs4ecgG$Cj^A1f9RJ0}agw}fiy9Pu{RyAU$a*3^*z+K;nXZ`j
zL9P>N;g6AmR4-oN#_O7_S`<q&vVQ-`U=R4a;Q``5nsvnyoV90NkT=L<WZfirwbe+k
zQ0Zlo{tJ~p66s?T<?;2$PY0tmSO`9ax1KH1x!{X=$4TkJIm+8Z*<;X@5}T~ffhtts
zHAipsc;ZdS{qRRl?lvcP7<229+my(C(#cIjZfpWPSQHot2pvHDHXwX4`v@ReU+hAO
z(AqQ%*5s>^6-%VNqf*{Yq`a<D-bkdZlN85&J+%#Fy2K`vrQKjpL%SeUGof(dOhU#W
zpaK^}6Moe?@xaXE0XefoV*UDJkvRCxt8-Qzpgu&~s{iqZr1~(O1q_7rSEd_QfnBq;
zgM{a|R(lqx1PoflYrgg=J?%te7$x9CX14*7fCJwIt35!hoLc2La>ytI4l$2K%M$;x
zt%Zt_q{KtCMMD(7&tR8TL}?WW*D(sbLLGg-Md*Ay!OZjW3bc!w^-$Yx7T?X{yUqA+
z%KJ6s^@3%1MfU~N+%iO<%2Lb$zSS{TH^O=KXb-RDcnz!93cNO|*GjxDQLoe4l8n;a
zyh`a6v>VP_ifkgT3RIW@_g*?tsE|IqXrf*<;lr!d#{j%qedOTP>SKuMP0vDW!bz!3
zn-8xB8@46b5cH|y=qow;N=V~L=mxd3HjlKBHU%h!R>@RR&nOKa_=@Nh+h^qH#cye$
z1yYMnd_=)rP250R2Z^O1NZ8tm*)1GJB%g%mNuiD-Y6kKJ<L4+i{z{C$O2*%%9ShqK
z5rqmipJSG(M*VCw{&(>Mi(6-9#jc~6V>AUa8oU(QF9G{Sw_nQTC7RW8yNlc>v3;<i
zO!F<8>&|G(^(bVB&Wzc&6$m|v-C-<Upms*T`uoJ_W8VS)-4^eDkTX<W8Dwl-f_79Q
zpdX-|Ngl-?tto5eM}s|K5a%*V0ze7~sfrX4t<bemT43Dv0@Qw}H9aCP3A2F_L(NPo
z2&WrE@BJ8xFZy@RY8$p|4O@UHJ#sTYje#NN8B@{k6JF+T(i;9K`FHa((H{CD7X7+$
zTL<$yTlI*%8MkqRMQ3Y7p2%iBy^XOvkLAgjFRh|c5G_Ei3S$0?w!CJqZGuf7Xf(tw
z`*&1jS-&2EYeW&j#}Je#CubFavx*S&9HD$%^UHM>dSa7EJ4t8DZ`<kYEk8CunTxmY
zp{)l9;3O|2%;qw2f1o73d)$?EIJ2&oEK9=^BCpXXLv4@9)9iRVU1H4^{ao^wkTV6h
zUZ5M1yU-|SHVw=9V(10oG$6eiyECZ5a$LIWFP~Yu%g{yWz_3f}S&0!|8&5Z{QFszw
zHK{ZRqfds17hssG{L6o+Qb1myAdH@#Q61JKbvVN5(3V~E>hn=CniYTDg%)nPG4HEP
z_n6;J!k?`u0%%BS^W_eu2Fqi|0M%Xe`E(Qli$j^rgm8hyXC$Ghis;aqBD+y6+^&TO
zvpAC0EMN-Y$bMT^84&2W{3X><UBVK8!f4>OI`W-ycQqfF|5WP66EpZ8y)jKMep9>k
z2FaL5%v6AxBAM^#(FH64v@~>Ti>M&=NDY*oN+u@FJggBBufQLBi7ZgP2!0o+uAmfw
z1+T!FwJh6qah`+!L5FJ>GtdG+)C-IVIj8|cq#p)1djfbMm^VRGtJ6yMP8luvxJFv3
zz1nIa07gP<fq>SOU4L1BAgg8qVo`nuu8ea04^WnJoGApQOmPil2t9ht4}d@R>se|(
za~gSr1PQIKUWFwm@Zj3`Q%lWzQ!=tY?aT&h5brUvuRe_q8=Hj;`J~Cf(bfoKCxZ4%
z&8np8=Ei(_zrkqMj6)Cg1c6kAWRM8VT0uUXhuO^4x6;$Dq0*vhg>O@&M>!{<E>#o;
zO=F{=HjV7o9dKsbwMAbb$Qav<Kju9zLVYjBn<cMcFZcT1QvekFCqm{U|M}Rk9{~{R
zSPD;qA4#U$wjzl-jZcb>Wd*?-lLAnefp9wGf{{r9r4t(3ZyISdvM|~iASO0CwKH-T
zQ$qXGY7f_%7MgeuH`f4h=lI_FnruZd=&tENiut>56sLLN7dtuT>K8DslSQPgk*Nm;
z<EJpW0<<C!lZ1&|uq3KAaB@)C4tZ*zUt&IJ1)RVoq+~^2e&Ke#c-4HccA;*(RF5)2
zV-ZbwX=G!t__euH%Zgh9+U;$DaA)mElwd2m(R3FJBK!2x;yuV-6A16EJxUL?c=gUz
zXm8%*V6Orcv|VO?il?il1ciI!uM~F1A4*Bqje(W*V6Ebf+Cp*ejiKf8y-f?9LG2w`
zuMgjdQoo#!QpRal^U)H^){FPdhN$<0E5lV_V-ozB&9e_FY>#E2mezFL6@mKi(`pZc
zf~Y6_#hbO;TVfxBjgX#RdxUOW=hs_yX6tF6TY2k|hw7{GFb5t--c1>hrSHKLGr_K4
zCgItD9zlE;8tO7sq>t+*Yl$rds}%{2$0xFC=O=NTZuH0MUTq(u&05zpCY5u+?-OIe
z3jn;KxyGGo3m;VUWj8}3Lh6O30R`n>^++QcwQPcU!n0JIiPpQmxfu-nmCx~^0scXI
z(9b%8-}SX3j_3zNodbchhFWux)hSr{QdhD7?FXCZi$4gYK>?sS0TirgSt<d(T!1&J
zA_=KotLs~;za$M>@M#SXlg^?t2;-)29T>InV#$&|0q4p@R_&FA%~l<8J%S`^1yoP*
zhWRDBF&*$4r&4i2g$#iPOHzR6Tdn%_PH6;X`?F5Ip7xd=*%<#DM`L*|2YgFV0QjFl
z{8thGRUBV6><93*EU%uuK};6)qw7GKxJNnO#p|_2w3m8hi6m%El}GMf70|+uBhh?F
z!bL<rVdvN={_E$X@q+HeUt4?~szC*mXty_y11~q^ux+IVpeQUgpe^1Ha=D8wC;7NO
zLUpiy-f}&%K{tlpI1lnVe5)Q=rMH;b5a9c+M}jf>em;sjw9wCl>X~a0Z@c15#5AZn
zF@HIg^&;=+E%7W??_8_5e43$$c4ic|lM4AD3CJNP!$O1cf}kiE%^Vg)XfM=&hQ>nE
zmqywndrCH&rN#Sa^)A`hjQ%{e14H{WX7`R>msT1r^~N7T`_NBcoEOdPQxf)^XJq!F
z!7^`wy0-Yd_IMJb07w)a3Sm&)MqbtJj**ui|0^W(+AKN)sQ>8G2u`+<3#uRqm>C|-
zOa^5t0U{ijtn(Ht5ie4VfZ+ycI(7FXs+=Fx-oyr`fws;$1$`%aHpk>rqv^&XArp$i
zKj;V!e@&0}8%dci9o}NM8cbWuwtVh}bIkkLg)@?Ih0U>E&}wLKDGB)BXmC=O25*7>
zfYJ4<)`0FhVp04U(mcn6!{LHKk8F#1rHYN;?(_qcOAA=9mmX==TXyuKeCm`>k?l0t
z;OS5}96Yh7MqXLCw-AO$ggyutuz1bvB7NVQv(dZO5ar*dkunj2Erk;^048WoE-Yb(
z9$Evmy6VkZn@|D!+Jy7c<J-WZr-IFbM&_x)X2-+XwApN!0tCDS!lHe`>8FE~W1y$_
zAHWsf42!+ae-iBV+Q!dfvm8eO#>Me}a<oOo6x}5Mo6XlbDpM2DrUPl~lDD8sNYLTH
z&{Ha~QM^T4^g7b^!Yc^>0WYEVhSl%yuQfaZR6rb2t{!hB5!5`v1qy)nWma6IE}$3h
zpMAY<)D;AcLxRPtW}U%z-8frM`(7{pW{$r!(os6RLm&Q4u()*&6i7>Ocx(JIqE7j!
z$k!w9#<%N{GgG}tvk#pF;T7NvjoQ6hXe*E3k!YuW{~)cQnXnpqfba&uZbgNAZ4oBm
zMdZFJjw7EQs_u-V_|^GO2eDEWM1EzN;SCnApLIr=;R&X-VN7%K$|5ag!vXoKVDY*+
z{h$eR^v*TG;p^fLCICR0(#Y2Mo5~%YM<KM`VY5WUNhS;eSYjYx0>T9b(1T>tcm!PV
z*QKr*T0e}*Y(7JYxFbMzq=ho%bn_OBUjiUK@_8&zI<|40$TK@%$neA-f`ldPlbgS=
zf9__*Um*5OU<xKnr<tkLt*8M2@2@ZTnny9T&={1}nx+n{|Hi8=K1vvGIuMP>#F7`t
zaR@;y`j#)x+zXQ4BpkJ+aFf1oFT6`_@m<K$no5pbQLlw%RY7~~3q3j>l)~_!GdU6C
z49Ayd{`N1VF#REr3c?d)H|^Rj8`!22s=@3x%qT<HV+@_Mg@KZ47~MKw!}i)qdZgON
zx?rclS4JvxSZ1;+<469HdZZjo&aHZk8G%i$b$tm#V9njU;5h{W8bIgq%?{(5qpTbY
zEJ71s#`ZsdLttS4*wh&C#cm{HON$tsnbEagY^tz6TX+e>sm+R+q+~Sf$WJv7(PAF@
zxB^1}6<G4A>xl#4jey=`l|YQZ$i9{!AP+O8N?$`e7G@*mK7~HQ8H=&`$Pm%UUh}$V
ztue;mMxV{klO1V%K#KqmNg?r;KXh3u83j|NXamdu$$$p6yylZ93iC#`#Ew*hSoo-m
zzmG(F=8h3kB$~D2U02p|%=)KfnYZ9nUu>$IVWIpW(DcH<ocLqKqReGjbs-pD4lkgP
z5~Q$;lSJi<Hy_w32P+6*B9oyZQd+rljzA>j0Znh!N0mS*uIr7W3wEtwjmX1!%lV92
zPuS{b_|5q1MzE~bv?OmW62k4ZXBp)~8aCBJH$ordrJrt87J;rc+4!2{*BPnZT${5d
zoJSW4z*tQ#Sk0c`We?OgfqoF9#Z%ETBnK46kSi-G{WC~7^O{>&QNdv7LpWP}h5Hwy
zI<N$%`NhG^Ct4W7n7}L>Vk^?XdD=rb`{V-rIMzV>V7OOqg$(upU;<S@t!|!D&L{*`
z6KT>GC{Tl<4#$iRv*kbm*t^phxQ(NVR{9yD?2DeM;+u&82%$0Xd6gSr?#o$7Z3_h0
zk}>d4$YJWOOa=dfxISa3A?2&R42Yhu$^%&_KlD14gJLy#Rm|R>$%^+Vf<-EIgj7cd
zQ79N)SOsMyb^rmShCi@eMAD4WCrW{vAyy~=K4O8hS)gqp)A-LA-Af9U`<VF=z4^9)
zk2#20>ET0k<3_OGJcttV!<(Tg#~K4SZ)C@nIpa8_1=OCAx*ViGFX@;1B)ve=C-{uf
zf0pDa(*1i>s*y3}G$0@oOlWlUX$vVrG(Zqn9~hRZGv^3?`2mo}e6mah5TVc;Ia*>6
zc6^=IFc)7&_84?P_8G&xwt5!fKa}P$scyqh<Hg7xY!zI@<hFVn3A%9(2;F?sB&_dj
z;1Xr+a0Ezn6arj`%TJk{ZgUcX2&t?t7TTrv%?}aj5fJ0><j6zA*ODQ{FaRkYGh<hp
zRp1t~D-i6i{ujG?><ZDTmV^X`0Is8;$eJE=X&jy)HKzdA@Ta3$7yp%6oTmYIbw?2X
zXx5!~B@|yZbG_y{Awno_HC$Qgp3262PC^X?8gdG4h*pFl&He(@SejIzK6al{i|;(;
zf`n?;Y(JTh1c5Zw(Y7a5M*)QhR7MLH7sHRJ5*H$f{>o$jf~pLPLMMdF55D5>or+)~
z^A|r*k&IX5>UJDz8>7=+BS)9#PzdfP+S&p+ctAWpew8^>!2Y!rU|h@=-%u%FXBx*b
z<*@<*z#j6>zaR9F_rd*1;OdcsuQ(TsAr&10RUdri{4SMGJ^0Ey5g`mFvBusf4tl(|
zN@ei6FyV^_Q!#cr>WJrIvkmNr*Ie)ebz^TcxJie_!O(eKtHkb*QUFL8Q=E|FyD2tV
ziow@#8cRzm6+6l<;FtsYGjBt`P|6hZ$KKu#kPJN^Hr1!Ctjy7kYQKP}J+@v?+i02l
zC3(%{KU#dVuh7M^(yZBu=$<ry?P(ipX_xZJrHs5Y%gf%NRbl)#G&;twtIBE%=hd?w
z{$W|;f;vv@m*my+(^z7e7!|$|EkJ6~^ft2qKH!q62KbR<9t(AA+1ajLIRKpvfS`<?
zy^kuxT1o~SccD#7PknNSt*5MP;ga9}no!YyhL-R-@R-^$)HJ5~5Bg4!J<Bz)U4fXf
zkMr2Da%h?l;Hp?_Sq^OhWZm6LjbaZgIvxNJVUYatg>?j|xu1=bg{cfNT$b*ZrM&hN
z1ghKr0^jeNz3#~hytIVVA?JO3v{qe0oS0haewwU?JBV&j7Oa55i{>2Mxmj>Q2l>2p
zbVcr>4TF0;k?4Wnq%0oRT<Nt9AuGthVDvra+gMDb+vt}_sQHMjVv+f!W(j<9j5fYr
zylRz3n{dRVE&>$A?`LroE%iIJU`jx7Y$^INvYu?G@6J}Ell-t+z+8zRIiUR7*l-#(
z8VE<2p2FN+ipSqIEB_44ZH9SC#n+rUz*Pa=XLq>U3efmfZ<ydghGEa>$YX67LTE`g
zCOw#Rnj=@Ku>i?{MeH9ZWyBK3t}DG%i!&HRlL~>GYwia`+yjtIzke4VrC|gPkW@lF
zKJ%g0Zr}kJ3LXGPQ~1&AN${NBJv`c?Q{XGX)vp&k&qTZmvy3{*1td>7`CJf3EC9A0
z8sgK1>|5np?l%@xJ#7K*d+{I=jm~xI16Ic}ai|6C1-JY-+)6`iVHDiS!pXxM>_D+?
z?Hs(&Yp%V}!f_Fq^-pbN)}<D+9^>}CqK!LL2VfWsUB2QAlR4z}zo|Zp;v3Ap&l4TQ
zP>@j(uq_r05m#BJ#%W9j+Bk6ni<u8Wff`wP>|9EB!;WQL*zs8D42{R%b+{ssgb08M
zL<~LDg$Rf&5b+pBVq`zHhJ!8lQ-~K3HEjVu9z>B~W~zl5nddH+!Zv1(?Flmh3p24_
zb%D3`Aq7W4{1tQCa|z@C4+=R;laV>jD({b7&9*ES2q!pWnQ#W}78ZO?g%`bpzyqn}
zfR69{CrnBa2G@Da1?MOay&P3)U!nBW=?hlZBMZCAEQTA+W}{iZ_@h#;l~e##oJ=Ee
zPt?}^jC=~)|FI4^;4|pHB*lNk5X;%!d53Cf1{<oTmPSJ>Tn)`o4PDSfL$4t20}HbA
zUdZ<o@Wi<PB}Ku2<CQ1^{bB?u5_nUSag!=Pp($MYAv!kCRP*n-YW__#$NBeCfzo;c
z^DFpG&UwwNrm@c;fx8c8;v2K*_ExYGW?75R!gtCnx=v=%$0ImJ8nPu3;~LD>F=a*@
zPpa9p;?`>cEYYcE)5lt~Y1XoeFXAmI+Dh(-Eib^)r*-sGEWZSLU|Al8msaH(WcY=p
zC}-w)Fue_caJV=run>qGSWZd-YDzbqSTBJ}wu0&AiS^<+G$S_+9z+YDoL>o+7OW=H
z5K5>-XI7j?8JRBub)rXTjo2^2$h7<ld$m7Fbg>rbLDTGlPj-R2$z3GuGI`uQHb7nm
z-9hL8WY>beYcSwt62}S#JjUs}jU)*MJgRaf7*NezD;S`|5|ndCR8$K5T_&`c=2vr?
z?`J`4`aX0f3NZ0QnbRX)aIw^=lXwB_B%1_VfbK&}R1QduX*KJVG8-<l5E$`-u}0QV
zlnF+iXh79ChE+bK(MW^?P;76DOocFsM|PuRtAIc-I;Kcg3dRH&ZYU}v-`)U|fti1c
zRI(xh^pS#*03!kqBE1X&Jc$UrnZ{-PfDfJACgrCDq?22aj)_!2H>Puy1+<P1z5WIY
zH(Y%Rw~rxZ#srS!mx>A8JKEMbsWE{(G-qU=j2@_fcaz}mn7~BpVC`0_YN)oy`2g7~
zjiKK)6Wz75T`JhfGMU(1J1Qw2Fb3MrVk+<}H5O2DXLF<CuT=J838*446o40cnXP|j
z=MtR8bUOYJi&P~Sxi_hZtf~+{2qtW!^^vxKXOG#moxudz9mJ_QXLoG6+9`!X9<yAU
zb4q=sCh$Z5LM&U5$pqf(r&3HzN^`7wAda|w+_i*>d$q)GIB~CvjYC_BiTlU*b7=OY
zN0{B=!<33&S`&A2lh=Io;3|UgRJVUbZE(_rf2f(eaMC@brZsg(-ieYor3iVo=YhkD
zkana>Bj?HVJrHY1n!X?39T>?2u1Kn|_r8N2aJ)Ww&i=wd*Oc8i$(3(9_{w7>%wX}1
zaKkwVU-@4$|3;k7Q6`*!ryWcKvBh>>hw<D0)D5zL-B_^{rPAfh`M#ctb=cE-VVN6y
zD%Nbz$DNMLlZwXX+65ey&2CRjE>y%q$#doFuY!N&nky^y+Ra>9>6I>X<?GWNb94ZU
zCp&%NVfMYA*a};gx4G7DE1jM!8NE~i$vr(Y|NK`RWms*#_&9w-HC1LI+hE2Xz*Jex
zwH4^s8R#EKw`0-ulI7!j!!>x9Wr3Qk*kyRPfa%e!a`r6-IRSW&Wu47}Ho@S^9luQZ
zcWM?+M=@m<{x<jcMYHD5aw##oWab#<+4cJkJiA{cX5k4tFZ1uegBIPneB9zf%h8FZ
zsP%vjd~J{~=rvAfHa%xqeq{Wf8IFhVr7`haYR{Uk`&s2)sgg8Z4;*;9{$nhmCcI1Y
z`$rS5J!-1yx<4^pM;hI+UtqTv^)Fz+tQ^yI+EW{=W~r4MP+OH{`V65HeNB;44%Xp&
zu%%HGLxL@_E6a0I+(EdA3`c-n&J$k{b}676v;ADH@adR%DNus<Do~0J>=t5DgrHXJ
zUYew?&fX!3Mi2*y-)f$|3{)*-gdmBYbFl2$qx%lOh=a3-Dek++41TG$I`G&ateP|9
zfBg<@Ww;OfH&7m|(9A7;9&!6+(~J)Ux9<0_^0B`Rhsn@|FR4HheA=SLir?}X!|-!*
zE+m4ZY(*^~W8rd^F{S~DTqB1g7v7A{jMFZAh75OOPQzZC;l|_;4CAy3$Z6PHJ5!Gg
zGKP+nVzanzJDOWOSwzlhLZF8lr=r}F!seIIhiA9;#Hre{Rbj5w){@fDyP%UD97+zI
z9uB+e*#8{tP>R5qNE~)QxId8-yFprlv2Yk}Yf=GvFg`gqWemM#rMO#TblHjmA9g+x
z^yqc)Zfmm<FcMEGc9yg_!qwuUq!wdCrGVSG{XD5a`~d<}q%dI*&)jnxm}okg$n`IU
zUi}okz&kU+-k?{&<S7;N4g4{(+MZG;-@IDGKhe0{h;qD<y#vV$_Al=RFRGzIu%F$2
z2DZo;17G3;SO)!rc_$HR_#>Ycc_WyHXjyhi6L3K6VnenhCj4LX4^OBAv^hrhMD((+
z1<m`kJ6p7-ioD}<H)0#MuQ981<&o%&0EciL&ocnk6OS#}zkvXSuLZ6MTn64Rm-ij=
zei7br$oa2UDAdeAh=sf#+R-c2(F-TLV#83vd|@e&_GSWUDfq&|3-u|qz)VcqfiGtZ
zxOqFm5^NBI?uRk^zy<>%S<9as?1`*xiRCnA2cO1kON)sS1o(<nZ)5fdyf$Y2m<d~3
z;%KfVlYK-_8_bO9hh{`pvC7y()0yu@N?K#)p^*(O|6*A(P-6uOwc3S{;YA7y5l3n-
zu=&xg7#7!elg2Y=O7d8YtUZ4p><M+G&4#qwb!oPUV)F@XY_$gHJ9hWkomwPo3yMdw
zm*a1uym>wPivQN)xs>DLDf$e%jdlfyOYjB%fQ$3d6^5Vn0Z!FZ-Q-h4fj_x9B%;)K
zIln~HNf^b)5>-qCMOXoEiTwjbV3NQp^TS&J)I!;>hIXh1(V^9Ls3Y)e>`$hG#H+S&
zD~7ALH3tX?+S19#fO1{ocI;fjM((3^quAbu-Ll3TjAs60V)V>5*<7`1-uo;LH8a)6
zjhT_DKExFl?Cj(u^Qyg^%j(hTh52YH^nK?1<MhZrB>U1ao5UtHc>SkhpVL|`EP?ar
zT!bXQ&z$#`+8;L$+LV>fmUZf#0IxK%+p4V_BT!ol7Qd>6RwE}ESyOgZGus7d8Q2)b
zS+i81*P<K4pmyh$=#dE!y+cS`J$gRj#PH|mifqzF#rC}nBEV;kmlX)xcv!fJZ&4+&
zB1xSGS}^>Kz#_aZ&;ncV^K4XLXBJTbn=0t!$~KlL{YsZ2jn)&Jdb#rBCnu?}G{z7+
z2Rw^W%89XYh3%!qE%W`Qq5Xl`C!cRrto5B|3|Uu(^K=axAhM;MEy$m@L&rWp?huaP
z;WTFceIGVO^)-*`;KR{~-5As`n3)7Org}LfzaD+Oz*FeaFFzgFPuD_Mkv&>=9<E29
zD#-WbqVzNQ%#Y3+m98&<M}-b<{S0UbWAo!u$pSVp_F`vi77k5;wax?r-_%>)&j>~*
zq?In{P}{cP$Rcn0_u#7u>2~Vkn~@rfmiQQ)h~Ap+!D#nwD~nF*)I+Vl(w48!E)9L&
z8O+_p?e(E=0&{;_TD<Mo5R`Z5s>tM1Z}|Y!B#G*9hJ%y<NI?#7Y#I((kY^(c1X^ST
z^fq)T-e@_d|29R?UNEvg{x|cDy@Je3)Z-#~D2K^7rE`ncl$i(ek6<T7`sIy+zR>>k
z*+=Ou?-6fag*U-6FdW+i>Y4qe75Km9fX?pG{N}49dL`*EZPE9DF<FOkB>7-v<2H_^
zuo+IkZ6ol8>m<T(K3-ylXbC8b<$+7D!3SW>Hw47a_I=wT3fRlrb-=5I8d;n$GaQIr
zL344_OYb%w(xH4r2YzB*9DwCQsC*n&!2>e2ih3FI5Y)qg2nP4=QA2JEdkeraB65*s
z-XgM(?N_(8Ku4hEMgk5rBpv2xkMA^he@Rp@M-XJG_C7e45c|lsSl#e5hssd~D9fTY
zMV*S;6jchfnYH9iH4*WfZ*fNG;6DZ5*c8_V-&DDyIiz170?oh|b_4~ReQj^<DaR!5
z%BzrgdDg8D)AGxNF?))g*XL^FkqGcYZyLZiAIrdJbSw}^>cj03wdwI4!1*1Q5mY$f
zbin!mAoHT2ij(C>vd%;o=058?wITDJM&OEzbB_F{jIWT;hju}i&4e|8i73a`cuyvW
zAs}V%%D_A3O5t7TSOu#gH=IBfx6VIPHwIC}0yyjf4y(bKWD8L7_rLCoo$;BYO6ogC
z*PH^|0ox#JcTU}Tt2vx%Gzx}5>{woa0hpxKmC&7-;Bfa4H+57|oG~<<Wi($|VO=<a
zdk)2f0c`{Z4hVEA;-vB0iP0I>fr)&ai=6ut?!KnxfY#8VHT2vKEFaL*HgJ^H98Mjv
zulhD)pOfvtBWJspg1Mk=zSK{a7ZzjNeC+SSf<4>&XgIG5m{&^%=fN;x9nUY!@-R02
z;WKJI5e&%Zw;aR31OfBU{wyBNKKZAhd|NA)8<3051)MuD+JFyk+|wGKVNUb~wY(oa
zZP*C9qs~$FC9*^R8YHPbfZS=Uro6fj0-nQklPw^9xAZ}46v$_~9Ja-pzSw1ZIUPfi
z9)UIG!(z9bkS~WXX4P%#QVTQ!ox~jh1v1_xc|`)WHQoiQi3XetoCg~kJ#F2oNkG5(
z6qPlAHf$h+jI>rTJW24%1w7GH&IWMIHnGi`V6TwjSkV;+Y<vBQoaRf0`QfGi7R=Ob
zf}!a&A7VE$^Ux=#kacFgQYi{GvH=2|1uR$4=w!{iLS^R@ih^t+?6o^o=iuKUxbKG$
z7Qr$;wv@aT`wYQKGra*!7{!|-+kEMn9}yp!^E1eL!0mrJz_(rH243TcAV)gK2(w97
z5pRBT^z8~_2s%T@NUNmyR8f2^&-0gIc%F?mP^s{+Ew9t6Pg-@CNzzYqMyA?2s?7*2
z*|EcvN%s;CX$9mE^EwmohIk*``ys&bcv5@Xq9zJfsOu3ZE_=*E9+(czjDXgivWTmf
z410(X;gKy6(q~>>rTjg?0GI)u4ov?<Y&Z1lk$!ph^=zmmRK-}aBw*GarZhINrHqqc
z)@we3sFrC;=1gEQ#4|k6tc&Wcl~W+A+5$l0hZw8*uS>fDKx?=bGKJzJMn5&ZbBER-
z=QX3*(T%X(fU%kfyBavJA;O^T1}T+2orJ~Se=YnTNIv@O>!$3hJsJ=Ud>QqMH)svw
zKNx8QBA|t3`-&iiVX1OxK+;q2U&)4ZI9lCY4E=>hTF)g<VZ2~?>J#Ws9KdFcR5U!m
z^k~)#?h2rW$BbGPfCYs&PyvmZ9}#blqnp?&x>855L$nLt26HsxK$&?5Gan#?ZOv%O
z6Dx)?Hb21(fdw&Y)n1Wm?^yI>R<X)#85D8Uwu<%iwlz|n4!4Cnpfk2nJ`YIq1y*0F
zgMD@o`uY-?u|v>^IgQ1lSzo!wPRGc+jpbfuxpyh=hb@4-|2S3N6a0;-;0k4I`jX5G
zc5Nl}Sf3V^4`ZXA^MIu2X?G?o-6HI3S4uaWw?nECMKDatJdj}c5E}vXLlZB_>yTo?
zOUv?<6J#GKS!P*}WwH~DYVC0;Y;8kxsb$cM(nYl_Mh-7Id@%<aE<NKXR~4`*rp;Nu
zyT%d@3|JDq=7dV}H5pOyAV`ZEUh^N{h}XXLCSb0+{YToOwM13Y6(_jyMe9En!b>d;
zP{h6!$qRazA$;TXERd5?`NCt29`nY&N;CN}xlGrVoX8GP5qt*D{M93BSkMY&R%)GB
zSsP%Z0F5SO6@$VymoZLJWComrpEzc`=r^o_5GL+V8aVTL2r3klj`zmbC~sWNgIA8_
zXg)BGHD2jr0Q@C5=Md}Gn#p=}48ntmNfH0%z9t10G(ENH<uq8B;pWq~t0r7^Bw{_A
zfz55i6YB&^@sO!fCDc|GT(+$YB5sYZATFwrDM+bPFRHfv&KCHun^ykay1?B`a3>)!
zch3i%kAh6u#s|-Ye9-<~1zKZN3>m`L#h<LN-C`$R%v*>cyO;@Q1qKjHpbCkE-auI%
zI*w)yqkAS<fVzklJ&|o*4q)O7lKa;d{S=a&3<IuYIcd3E$<ok=nMT&#_c6RgqVuj=
zFhmhORnS8gxx?a_h4yD^3md?2n6`PfMQ5uwoDIRkG1L6oq5;Brr%hpN+GC$%lXJOx
z{W@r5mEkq0J=Q8k7v2xhgVA%nCE+wYFz4nYhYzD~uyAeZvn2y}U%zx$(Z5OwQA_i%
z(&z3z{H@<)-~XfIk<wbK=6_{I-ciBAok;myZ&@>}^o2J!&FOgLme)c^`LfKId6YL;
z_!-{6)mz$zmA-h#-qBaw*!tRbq<mLq)Ewn2E8JbCJ@(I1w2x<t9$E!Vx9kuQLqDY}
zUAS8>><D5T8-3&sYG53_jNs&MY^Yv{8+h#wG2XQ*-OtN^K{(jr1mUK5MK%WQR*w!m
zaOXl{tNx5VPBehSoXx{@XPijc0864oDKqC_N*iMb0p1^O73Dg*FZZmCWezBI7*P<d
z7<BOP8bP+aF=<@DR?9H`nWUDVAu7@Gx7fl$M4%ps^d6A+!*%Bg8P@3=V|sMNAcTOT
zHG@0Dy|kuN^+KGv?l%YxdG*3Qh>;D(6l{l2u48r~x;uc5XQR-X5IVP+W>SC>=QBrO
z#fYCd{B%**j9(8Wu!vi~<X^J<UkBMkjhRq#kbjs9__R2y+Pg8Br`7NG%^Gc<gq@fS
z=V?)W&ohu9&*mNV`~8F3bJupRHTvZ>wA5;<)=IrkXUmllT_VRmsDzwV*l5)y&AgcK
z%mL}Tfk#^;=VMdm-<a|07`9nLdIQ24nD_+L4Z-zTI}))LmwOUI2ng}amK1zIz4KcM
zeks0jltEY@mj)oVXIzI-^Uj)mHzBMu8$R82UL$+^AD|ziBi_R9&U2`Bpz8a*rL7E9
zD7P^>J-s8GVVw39ieafqLyPGh6ejmXowjz>0<22xlr<*R3KJhiqBR7x9AAOUS}vYs
zU)I9N5#w`oKtUA5N6nW?U1nc2Za^tOXg^(#Oz{~5Pb46lYEdDBQY-k0Y@>P%#Ev7z
zA`BhSsufD-R?JP0Z-j+B>mFK5Sl0{YD!{6MTZx_l7-Q&b_sH@UAj0w;R4;HZ(|n)=
zZK8<zU-eeKI4=1ac=G2~bG@wQfKLN$5aud9IxQbaMN8*^6yiE;j8%xV*bv?-t)VPh
zBhutnU32(caLntLqnE_L+M<0}ECCOflZRpQ`3HT$JDY}=qliv~lD{d?8gv!}QmPmy
zSh9zf<?=7|;xDZ8V8*Nh-S{=^y^5{F{-bm+eKY{_%*oZ7ZkUA2S+sBn>G&uQ)OTV{
ztd^yu$lSqpk%lU}NKu>CFh$zA0lRq)K_pii%R?Y&;*@c6`x0{bHMyi7MysJOKCM!7
zhd8AgzJx84Qsatnf9g(rX-#tm;!+iy>U~kZZo(JfS-cEi5RAP#R#3zB_`vj7o#%xZ
zG*qbEH$^4__y|Ut5r1ZZeN0n97Nyb?wcevJB@$K1Cy=NX1A$!cylGe)0eiHqL9$2R
zyz|U}J_tek4n22YX~S-9$rVV48~KH<ozRAhezS{m`g^|6rmnTpR^h_nfOZG(x2YN0
z379rwt@?PjJpTc59q3uOmzUps5N_5Q{)>HpkkuqEh*krA!13P4bV$w&y^U^*r*VAm
zHRHV=^Xflh)rv|JVUtKnzc8-o?6{jEKFNpOQ5TRCAy_3oBkMhtoP%U+Q7*}0EB2=T
zE89vCX{7q7qp<7HZ@5+*l0)Z?Mi9T(FrR>-mpE>bM22dZg7=J*^E=&`47r8CeK?z?
zYj`&_2Fqb$G_g^l;-&>eXxmmPe11TD?$vV<%13!~S`BMLPdGJ!pxCD(NZ;!lKf|3J
zX?pK{34~WR#}+X+nsw9?*97!v0{xw=h9K*(uq$f_v);F}hOTgB<uj{IvdqA{R$%ag
zKe$RT{A2z_l{nfiQSozEiNjd}tBfkD_)qZ~K_OzYKeJ}oSxYW<)$%c`%+6}Mz?Fqf
z>K^kHJFC}&uB_qAI?~Q6zL8m+eW0@d&fbC#vZhugCQwC6RrWfUIHolPL81Pr?nudB
ze<~BGm1#0Xz0tiXhkJL-Py1ks8p}W~CUu-Gnf-br<xQqUvj$)20*oOg^CgylmbvIG
zUys1bZTBLnS0?_vr+O)z?5ZVUGF`1?^`8a3xC_yGWl6iWr^*rD1%_fg3i`2#J(bH$
zE1Md^+D478pjLG6-j+<QVH^041BVL5WrRj4Y>VuR>~B=|qttoHewD(bT<u|tC`v>j
zy<BUW4LiFovPW-|T@U)^kL&k?gWL7o{d#A+n9|4=J$IeBkj9PJfBk0A7?Xpowl%}G
zri;CMS9!H?8DYrXgEB3p(SA6aQG)onr*rL@8CqyK^IASFf)32oLWkokIzAIRV;GHQ
zzPhgluJV5G?40l+TGJ4%XjRP^SzQcrva;Vh%aq}1D@!Y|7+Va3j_=|QxY0FPdgQhE
zN)RjKUML9=y^8X#LU|mXj^UL9sy)Hz*s~zK7f%W!2)!7@#L65BoCW06P%m95vHHp&
zXlmgMJEbVHK7{HA@MRc*@H0xEAG^fzZP2_vS!*gUXJ3BwvmU!7Hlj^#qKFRZk4t-|
zAiOq^5NE=aCc}r>=B{95RqT4P`@7Zk1d-QbuTlIr#$ta{YT%*UTpX24KHMuSOBi+b
zAG?g&eDGTE*`K?&zY@n!j-fjIb)<{G`nvh+1JdvRQ~ok$LulW$c`R*9SN^()Fn}Su
z<F8Yh*YX+os}uY+6kpK^7Jp$$Cz-$C*bg}r{H6EIUxkXl3T^&+Rru?E`bDH4*7Ifn
z9VtwP6Y1Jx`@v*qI83(0VX`y85c9}n7acT{0dVX33JB}LG1*`jlM%=?7m(nzkI88@
z!f73`cgR_hS7ZOQIPFi0(*n1qa@rDmG3ox_cRzk}<TYToJMFk$iobU%d8&us4?}PZ
zc*JHltj>KV?_5OSm8-_ZP+?f1Fsl2>ZGtePl+r3aG6HsbWapbyVLq~CB`!=6?X@l8
z&e+;(544xsx3)&lT}uj-kJVOAsKA81Sx?)FEUrk^oJ42MTe7zWTC9p-<nBR<wZUj+
zU#JMo0Q+{f*YAfK8^ugVjq!wO^t?>Wyr9P5lc=>tsH?B3#!zpFuV{TuiM4Jh>9b62
z<)zSIH5nb;YA`kf9M)Wu9{&fe+YE4vM4VLU3H%j+)1t4^nl2@4y~S!?fI4B)IJi}E
ze;yl|o*|QveBuXg>v%92=2pQ7Eg&?1nc)jYT1z@N*_sS-a{#L~5o{<aQD^0`3oUg9
zW1vq~>Dpr(@qtiWa2=2@7iBo=Y?#Gq=n6(q*0&_8YQxMh+WUIsi`ZqtZhK-|z+P})
zV=r3lb{C%q7_|8jemW%fIG8HIPY7CC=a=q>!-)9sT|^k-!%O*$c5{AdILcuR%1EZ+
zBh;SR$h+c}<Sl0%m$j^;spO_dv6lB(0bk5>Y=a5?M90(F%Z%MZT+J-aVi(=B;C4Ot
z3%zr_o(sp5%WcLi@Ei6@ejrnurvwIV<s3{@Z}5S_xU6T$8G2+5?&2ysGjn!EsF^zK
z_`>$WPFyC&CaSTahIeMzIG?AMmIK&d<JCeBfFZ*f<F%#%eb0*y>046NT66Ze@TS@<
zF_YM96JHfHmPxPUw5Fexmqk88nCiXK=)56bBut)+uZ`zNEB@szi)IcEMz+P*yUI^1
zM>aOFTyc~X1`}eY&fsuKI5V%zs6cQG6U@pW%wS!aaXHxVVL@UrauT+)VCq?BjKItL
zCERVIj4HU0^9I1QLa4zx0&Oul82n7Og3QWw41w60!l7Y>v?l!`-rgCKYEByLaG+dS
zUY-<-j%@*{dFUi<txY$rX_9wuYi3Ph=>2aR@jDh4Cm=X61zQziqrp)2(e~u?Sg^JC
zT<TJe1JSp6?I+?B%QdKQ8z5Qmvfy`evEgw7hYz2*Z5CE<Dgb|3<b5RxR=4A{m6IyU
zqSFU=l!P;Y!@(V8_+bqoa&s)30%J^ulZA=iLr|hY<1h&SwBDuAFWQnuq?ATp9vj(K
z+V)Qn!Be{VBdEQyL3_(0`^s`ZEo=BpTQZI|9MiZ`?SwU)#$DGZF^xl7E2eQJ+8wQ+
zWQ|`b43NpZ7>5=`N7y)v4S^U!aZc`o2$L4tL7KnFK1<lAf83z$<8uG&%5la2vKvc}
zKT+23p%yMdA$oYwMpxv`;3kMb0^w8Xhc)~|kc1+xj49avi!IzP8I4exVKW626<XoD
znhUR^=m`gbRT^RKtfPxCDbB?Mfmj+<jZs>pqZRY$E7jnzVV<nvH3r^eNH_)^z-}k8
zqs@9j1JJ8usS)~yj0^qdTB{w*9jQgwcI(eoT9wr{OO_i0N2v~uN$r3;Ljuw^JlNPi
zLg_SrhBS}r@s~@D(ttF7xz#+>Jv;)ULZpVcv7}leJmmjszKO!hF@w9vNLS?PlvAQ;
zIk^Q}7cksFd0BMq>f~|9CIXTxOK>MyJ?R-c5uas|uSz$5S{nK&t*rN_368=%^)F<N
z$Tk_qxWY}MvB8(IZ;|ehkRVb6P=)!-Q3?J^2!2s4F1whNdcvd|W47k%<TUdLYw$iJ
zJ05`_V(X0PG+x8S5EZ-u>gUMD*fne^Vuz@9$(AwI6Yj^0W^HlLQALU$j9D|=dYNs8
z^Xkzh&)78L$yqmQeT1l=&?jnTQ_Rg<&r~E&opv4qA;H!~{}nJ|qj1B9Yr=Php16My
z%N<8C;FPp}$8l84eD5pzPL_WZqb%E|tOXyoDHAQ3nDvz>*)jX*Vv-TdC+Ao9WVA5r
z6Tc}}mK|X5#7WW`as?P%lclY^7#3?5E!H+Y+VALOa|K^0n5W|cRnQtf&o|!LgTiTA
z(}+QVqBS*_$*xi>W7fx<GO6aGHGRb+3icJBJ3am^?nbqSTjLA8_l;O>dz}pA=szu0
z6@U1#QpE@;X-(KjsXg`$bw&|9a!qa|3?K@Jpdcbo=YgeU@>hc#;G(<?KWQX}OPv^m
zw^?eO5{zt0n5se44Kn|O<jGbZj3V}9%WFc9`XmMjH<MXFKd2WY`<%tlEU;4dS&66_
zgcr~@HqDC^(Lbm-307-rIn91_`a53QKh7ez-~vvhLlxHWR;}#4i`W)+Ht@CttUG2F
zNI$Tb&~-e&9D7w1h&#UZ`7aeP=ogLROpc`lRUkMIMv0(WxmfvxdSFC{?VC+@-Pi>(
zM&9#H^+6Rboc|G&uT+nXKml(2<#sZmsFFRAcdBWuPfE#r4j=r)%?D3XJw&t4txToj
z(K{6tZBm>6RRs}R>#T;PtcPlgmSv&!lz1|HY2v@NLE--b7E!xnjqFE|h-(m_i?D%?
z)Hy<O12SwQ`xeQrgzkjH#%%mXA}Xu1#<>4ava2yUft$i??4x70gdUCTa>=gqOIU;1
zMJn4*oEq7M$PPvW`Lu+7W~+0~fqa#Hm}KkH?wwQ%ZGi%n(-CGxT>u)da*CKkj3PeX
z4wu2`T?YQR)X07rW$|`~Gven}!eMC6;=7q3de?C1su@`SfYa_~gU66YD$gL<0{s0E
zxOiiY>|dbGaU8)CY6aYZXbh}iH}F;Pqs2(kbHLfX8_Th+XcEqdpTSI+`vI!BU)rIT
zhueAN-q!jWY{aw{gZ@aTfgjdlP?7b`!|A(2Bwlp^oBAB%*L>+(|3HCRgk7Qr;09hr
z6IZeG`mcv*i*Zd1)aE425Z7bpnG^7q8R8~AcZ(jq5ZftRDIqiT$c2FC+}`?T)6U<Z
zhjtv&I36-G9(+H(e9ib$oU*wJU?ApvirzL}NT)T8!KsvtGc$0@L3E7wSy0Hc+Y1&O
zk!NO;T$syQ7zZxF9c~l{f58IN=>Y+T_><<<;3*EKWrygS9PwU3XAv|ULceh<*KBCs
zpr^#pn{^2?aqh=X<RW*h@MJHvR(SG$%6=sL#04W`;Qb3}M={;OVifM{lzAcO>@=`g
z6bel@%9ww#9H*-In`m|4n^vo@PFJmB-DrxmmsmGC!o6;!V3K=O1#}wE$<ibjk8pVW
zOywe&qpg12ki1H50c0xI>!_p>oFU|^)^C<#L=1F~`Q^_QWU3(|7rMtO8$?-gc^!?n
zI#FIuJII7Bxl**tk>y)|xYAit$xZQTKV0dvE@zaFJy50Caw!iCIm7wt3TOC9!--ue
zMS&%!=(?^&WBsL++nW42sZ?yEI9cvth3o>c-yqM-yBLc5e7w1QAHF91AI#^i`#`rI
z0$_W-4^&)!ZXb@^lUFYSJ=+`Dy9R;pFe@6oik874<JXuv2Fin25ye!g{9J5wt<;U1
zQ11na5kNy~;SFejilRv7BSCDrZA8l0#)`a?OX@MT3N6KF5a-I-D|V1zW_+<eE^RYf
zys~^;<iAQn9~@E^c?Xl>w}X(3^7Etf`oh1Mmsb~zw4l&<PNR39A04|>ypDqNqu2zF
z`A=m@=%Yh|T=gsseTQyZdwDz);1~@bhgGybCHN@@%=74&bheg8)+XRtSPlD%+1Di%
z=SQ#Ti-}@p-uVXnBzW5#PXo`0+0#voJb(-5YYzn+dMTGI8$OlMoQruR#!e$h%uK|e
zi+hhN!ZDnuB)>cd!<^QeQ2+$OS`i3a#-f~EwgM*1F5j2g<@U1Nw@N$LmF2byL>TF2
zjITd|!dUwCDd}v-(rCu)Nyym>X#8bqh|9GAM4a_$maehVFgCIgJ8o3FA4t2K&~6!i
z<zc{@KxtZGGsafRwayK($xuRw8^u2Xa?2v`#h)$dTrW3JqW=pk(94D(b~K+K?Kjx!
zCjMI^yM4Zxz;i7VXk&*y!K28c`G<wfNf^Y3^Oj?fxEp8%9x1DY4_^ke_;#|+zKdxq
zus;qf%rBq{1~wabTZ1*>N7UyW#7E$1zL7~DI^=w#hCK3=Y$rrG4&}#RC{esuVIHv7
zJl43pADIM&Mj)7i**HRWuiJoADf=*6n`kZDx|bQ7^<268pEiukWY`<`W0nu_YJ_?K
zL(K=#P!bTttWnsV$1_ikEv3dpVc0iyyE%iM_50IndNbbHa22gJ4T9Emo${P<<*77S
z$H-$1gS9nB!v@uGI&uAlvf@4-bk!p;8<?U=|7zw}15fb17`wA<w4d4>E5Wp*0{OuL
zy&VdbjZ;496l}jy`4&%euo3KpQlS@6dtfuNa2F0NoE0nLjnr1YLQ(_)PA7qv7+M#0
z6>qFL%*d`+_4CD_ieTfuRg}@wlRH})b*LCC&;#fZVbGy(Qkls%NS9;VbNoeRxfw#3
zg73t|S<pycGk_$*H6wPqNVOswR}FOVg&6#xkzUe?sgXp`YKAzd1BvZlc>pzHH;6Ot
zU?RKe1`&xmwqA|t0_%aSvNna;9O70CTBsQ>%fMFlLqH{g<ythLM`w9)4jRtXL~raV
zaSv>xyyy}_uIk6`wmK)Lv9Zed(|QD^0^Oi*4)h`vkJZT-Yp`qNIg1Yg(WFU?D^iN+
zBi3<eo80bFF&HpErHJ0k7`^j)jHk2qay@c{6}y`xJ@Fiwf*$^i1N~_$QCyGS;Kc?Y
z1^r&}73g%36l*QtsK`cQY>Nd^W&9b1db$*UN)&@oIAw2?aRAuZG`t0k2_nTox@V3k
zTLi1ENifWGirrHpj#|^1M^nC|y2wWnm7h4FWrNyFb6Y|mr{SkLY6`gj1EUMD=X$|V
z&!YV_q7DqW4;5*lW>7UNNZKE)&dD(BD6CeHzH1P0GT0u3163Cb!Z#?3d>=azPcs__
z_vNh7+=Z^W+;J#uPTnd(kfWx+5$J^<a8Qmw!v4#B7e`Q|Bws-eHUVa!@bunXOwpFa
zsZyNH72=!k#jhPOy58`;w&YP{+dESj=DhhUpL@3o!<-0Y!N3nAYhB023^l{^Q;7kc
zbKv*a_2%z<xL3f-1~mtB+f?8Y;%DAInKilY1Rl;OU+OTL-pD(l559#vl2(%uTAz-k
zq~2OnP2RAyJ&hB4H%^0NJaR6XZ(0tm^+q8ZSCJzVab$j&%0djw{&7LXvD(h@qm<{$
zwsW|H#lYq(EE1ij^K=z-8K!%+7h~FQoc8`4$iUv(VyGR+#yR=4Z?7_q0Wq3-)}9G^
zhvbI=-M-qJ)6`s#x`_hNhHn{AoIgD~@EjK@W$(x0Ekb3-b^onhK6W0NpXp#PQR!au
z2FbKh6gvVX@Pj+v(0XrUrB{CQo~K+xAEfCUKh=AGksux7iDyD}AdGlE9_IVyV4PPV
zh)Et~3jf^BQ6``72Z;*c<bVv7+?r7HE6#HAmEwi+>24nQx!#F5E*8)@C4}Jm%yEJ}
zS@FR+Gfa_Wo1{9K15(IPeH=6zhOrZ^#=S7{t)1)Qx0uHfcK+~UvcG$mI^STBunTsX
z>;vmpJNS%RPbksd_{Lql(92I*2NU*jc_@gi4rG<#2cpl54mcFvS|we!D!3j9;)Z{W
zR)fZjf|78$cy6-0t90{D+jIMZ{%TQ~aZOGTovuYoSS#vxsO7V13%~Kg(Zl(nV6@+%
zSZq9$i;dOvZ}(UotiZ_ztVV4r+&-@G!?MWEAokL4B|xyR;hRvqEIQ2#Nh(Kp`D>Ug
z>|0Scb_OUm<#fXvQ9KAYzFD4EV66uZcs)Ldb$HP8@~WvgfmAvNa2={R{S+;PRWA6=
z(H(I4;cI4|Ft!oVdN@(FBgd@CJRuFh24n%KG;I}raHKRk4x7If!nhR0;SwT%q7WRr
z2GqgvPHaP;g(d;E+A;W3e3Tla2<!&b;Y@%?2c9nm8o1Nt?JPKT&qIx1)*v8Y8SoRR
zF@lj^8u}JR)NVaBGWvA|I-I|yY!1y*lVV~aB}3dlJE1W%m*A^~-8;~7xEC%3OP|dk
z3wF@uQ)NZY0*F(@#d<&*z%BR|J`MPfLtmf8(%WlKEQ=h1sD2(1Qdu5Mdxy`-Woh4(
zMOK$Z-sO0jQ9t%FL@bDDcTiY&&4uW~!VI~32DL#I1*ei+NYE4AS>u9zCG}}0Fz>?B
zZx9lMxwsl(Y%Vo}Q3tPxoyh8qf|nZAXRf~Jf4#>n_6SWaD%<?xf*<UF?r^;f;lM*#
zC=N{>s7Q~2VHXUt85Pw~_Wv;Q4z{NpD!yl%R1mZ}z|ok$wDz_^qHJf=KE0&eZ0ZXM
zdN`IHG9y+BzaPAbE{R$;E5$uFHj!anvG_Bu9SJGaR(ubx0dI5tSJBueFC;&940JM?
zJ)<;)J+0xNfQ3a~Ey=Z3bs*)-0T>w_r9x>aHNG*kFu~{zWb||}`k-oy(FY5ok8~KF
zlER$^Za&|2t>W|CU?iiob4^)f2U@HGqrcDR<Y3wdWsz@Un)r7^Ebca^bYTU1=}7@e
z-CvjJ=Lfg~N-7?<SzE$mc2&g>v5Nog?$ptV$N-DAa}H`eKge?!M{H>lYs1S;X6>U7
zYA6TQ({W_&cb-(NT@Kd9rrKL|VhTn%vFhF<Yh$g5xVHGZ_BCo3>p)(VEBTh)gwoTa
z)3+hPA}O`F&CNX%7PuH!xHmQed_xsUb5Vx<=;)yXuf|ksA0-q(sc}>=@|L>uT!7K-
zQdqEo!;z+ic|!|jk%EcP04BzJYo^PMNQA0LZ`fUeYp$?K#u7f!vMz8B2A?JT@j&S4
z*j#w})X`$$u#1rd<d~JRg5FJ@G7cub9guA(Wj~{c{ED=i(^;g5u<3elECa5``J|%y
z{oIn$k_o8s>*y9<oa%X^>}3wTR^NwTUgYd1cUv4$2^$T#4@!O)JQ#U5_DBABa5QVc
z@h(R*8!($kzfAtnR@QM_#7Jvf#K;bgiAOX!FDbIkx!e6{Sb)3#u;Y|_ebQ@3z(Whj
zzE$n9j#5Mp?ZYPx?L<tdxkDT_Jvw$6I1hVx7hA@Nv=;9UdXN3#=UnhxSJ8<$YQm%Y
zJjsTXvyJR4ucl9rpXO+<{i(hFgNks~+iQ+622POdsSK^-TJaJungt{1-q3sdWF^z`
z^%kr)kpV`4|LlZgN1aa?l;>jYOn35zx$|!AW*{%s!0$W-#5gaSHw@?FJ_trWKQB5W
z7yEYlc}t_yw_t9%2fJ`$BliMdh^4Ln3Q}1&4z;G>Eh#?B^M>cbw}#o936BhWk@FQ}
z0AmigeDQI3e97U9+2>U<q%3rZzr}i?)dj1}{^%xtZ<06fjt8^9Nj>$4_MkGTDe$KA
z&1dGmp*jM2G5Ns$9UShVp9x<?^@!`kJ~4kk7QNo>^qMq(m{W!R@;N>~#|ILRrLTtZ
zf%)ONU~a@W^vspa>$X|_F%8pbwWlN%s`z=N9~%qdl%+X@-QVnV@0t&Aygl6yU;$!{
z7m#qgE$^~_=YD|JF=#pYet<bsQ^pg`3f`_k6@bToG=^}AuC+pN7%3eHXQa}}J@4Ct
z#Am=YkSXl$wiNh}Lw`_$Gl3`IPl%Hvy$v)KtX^Qjx5_+%l~)rB3IzM=Li-yt+#c>T
zOrn>zh#_+H>1Us~28VxyW;}^pCu)~7WL#B_ccl)nOfXh`^kzW(4)Q8~4II0Ix#1j_
z+Eq02I3<)?%X{fYFwILHQ@jmJl9YRHK7X4y%2%7uE7Iij;@C87RN&UlXQ0L+@LxzF
z!Im{ejP^_Cz6bnm$1ONdsTP__Cu1VVooQ)cy5tJ%LbeiN`@VY*M^wl|I`!#<UX^Jz
zn2{P5v)upw&i!1iX$rQ&d25c<b6*8iYf^UY&xU5~klkwBVE+YnqvQH892vgcrLuD=
z?pI@;DG{KB@XS(1WgcAu%~A}@?+8E&J)b4bdZ6b*=2`n+<|q=Xt(@Gz0pbch|8TJM
zEIDX;KKm<cAZws%0D&!W*zMvbDt>;GY|(|NtR-8o?P$UOm6YZDFNw0_E=#5CZL2NH
zuDGUqgqUZa4f3AgCU3HS&=x&%0Q%nOqAzd%aO8D@i@tJKKtf)RhrF(J<P~!R2rOj*
zhS@E$I8WK5$UY4=-ZHZbuclD9tH_Ggam)Dsog&M7B9aI@)4gpqmm>QN7WG7AU!$Lr
ztcc93M}wxPJ2Xv^SNS2*9^{o1I$K_O%acP--sNJ;>+)oIJs>?3BKt%1>}3z+-xXO!
z)c-d`wmp@yx4Tc`31#1DwkZ46RXvF8l2ITpkEdH2IfcH15!`}4uB3g%M2df4b7shX
z#Q(x-rcGb&i*o4up!!hyn9%@45$Q7Nl*~Hp0`zOqcR_a*4TNvj;hjB1j}Ax+BVLZb
zn`%#%>mO;{kT>f?NazR|Ksc`+_136`CA3R;LUO+vf2%rEk4{hXGD0vt4Hl6zsNyep
zB5VVH8yWlT*gtL#+FEm>M0NEDJUh%Gz2?qo>XbaLK2qo5VS53ux^)->u3|J%bO=o2
zTB1PLqhW6&fZ<ft1(axd1r$zzSa+3R*@6Q+vp<iso!OsJyM{lpE-sNn9tMagQW0*a
z^w#ELtojTRE2&xcSX*{tpcRGGdIlaGXtgyJW<&t-DDw!{c+%q!6JTcuMHoVh3=cy{
zJMa+H{g#>7G}+&aEt1$+)8AJL{J|OcTCP223TBj8MJ(g3r#!Tb&}e`B&%u5IRgMvV
zBuwJoiOMu2*T(pn&d+pyzQxZBerE7<{dv)fzTYBjjb{d*h)W{@f2U`B>$KVoo|TO6
zB;z~Q{8$pcmxS+`um!KdzAQI3qZ8+^YyT-o?hEjB{Bo|`^#I_jY)=bEJ`5dmdpi2?
zw18HZr-f3Mr-gl*2lTYiHqNeDGtLe8c~bWo$rCJ3OAAkg9#m%}*Oo>zy<rb#to^*!
z>7rwq>6|Xo@TCq(9?zgsKpkSkS`K_xicYbJPBG4SoM#<mlRR)1hiCb!I4B90aUYa?
z65RII&kx9L;s{f+ij`y)CrQ@E_)@lLOV+lU0!y-hH<7F*7bPT1PEF!~hs>5R2<v`#
z7jG8W;uSa;-rODAB`UB@E<@r0$w&F^Fgs@ZXr}lFSUj3F&Asn57jkJnfOx)G#22qP
z5OU1(PKWkvckgOS=uZUQcdPZCKTuIF*tL`rA9+|7J@lycMC62FO>A*Qgk@?#4iQZj
z#i~M);Isi;P1M5GkS*?>ob9`MZ~tiKDX`P|&ozvDHDllVkxkG6`M8NV?Q6Z|Uwy9H
z#QPD3Z-FW}N$FTHLr41jOQ^Q*<kIKy*a-xVLX8ETEUSgEIEy`{S!HcGI1O+nA}qW}
zq2_40lDNG#J7}EG-*4B##VChOR5<O_S^K`FrKR<G_vuDSK<~u$C%APu)SRzJpk3`y
z1^DbR(Q2Hy))lc0&N?k6$EC_2P2*Cf)*$;fY^+4EUfKs4)*hYf8E9HAXv7*P+J~X`
zVp^rnJ~RgNdYflrH0bP+O41F}+?hwPFQrSdP=<KS5N_pv9F6dwZdi0!u$tsS?8T0$
zr=~--I-Ns3nD>uPG#ulmEE%r@IE&P~i=2ug#`y#Q+Cu@15CsU{thY4_C?IGh?*Zun
zf@t>Ei#RA8E&1(0_Ko7W1Oy>S5Y!7y^!Au%iM3_Wq5)T>v+YPn`~h<=cF~fZNB>4z
zI5W?@6YIEap@4%T16tuo#dP4NljM>%{yfGC<l@Nk0nuip19(sbu-&*>U3mhFFTod^
zV8{w!dlNgAES-7)Rpdqn`(`!7fRAz)3OI$T8Ez}r86_URT{VNsvK5(18O`8${J>XD
z9?L+Pai^&9Ntr5pYnPGzA`n0>+l)aui{kW5utgcae?jy_@iWsX!5wexy$)GWc@p)}
z^Ns8qRT)1*ebbm+jeI{}ittioWM8cEv2D9nl4l^f0C%6x{t-c=S_G!duP_k;MF1+R
zq73<^e3SyZD*l?CgVvdIx|4IKoddX-GsMn`RoXmg%be+P@^Y9L&Ds`p&FO|=faZ&`
zwq!0UgdQuw1`gMJ4f<=j(qI3;-bCoH9mELq*H%8EzvKzgGWm^pIhJlk#qmeguvCjd
zfe`&(aflU`I5hVyq#=sDL?YDOpkrUN$7?gN@mX70ok=57sW13mZq!~}g#HWVLK2uh
zED_7bws*BCZuW&sG7$@nld*kM{m6N+_%$u$A;2vkXV6rZk29u^%p6N&Bmn*Gb%zO+
zRv-b&2}Lu;Vf5=mv{EXRx(3@mxWTC*JC>kT9@y#{6~%{*2p58_E65WV`g_~#ddNf=
z3L&X6fLKkiFn+O1C=JHpANZz~I<7*G{toSFq5dq|@;*=@8=hVebd5DKj~q(|;uhx_
z!3aR<>xQn*8O&M^W_q7Y88?~+HSlxxk2=DM0oJ1kZe`ZOJ49=6(j1)vdPpG30xt=&
zC0BxtsJ!-|CeOEg#TL*KIRF=~z%)RQsJnN$x8`}tR^&A%Lx=!|ak1~}?J!@1F^ZEC
z=4*Q1N!SE}yU!EmYjfl++_z5aH2YWJ-6xxK(ASU+#%cSfP)aj5P*Xm`E_fBpUi=(7
z?&@zVkzWSYff*$qOMXF*z+%<~t9PJ0lsx@p`u*>m!2#GOJk>zr&zlqOw#@&N$G8M$
z0P31cWW|blaW_7Bp-ogQA~g}oF}>X;ItExpa)9luV~RGXlQ~AX%T+q%R-jSnv0fiq
zdTjoW383iKu(EvCu?-{p^T|q;aZ9gDl~qCCK$X3YTw9er$Pysa<9u4$tP(HKW{;?1
z)Mi(*i1cqMG#y2t&~8>msL+1IBEs%Ur`>zBTc_ndn9yl<F{-HRPiOZE{CK+{-|30@
zQ{DNC?0f|*^NU^iu|O9sH`ty1H66fc)}!ULlpqK0*7U?KvAja4OeFowQ2;_52q5nM
z-cXaxvDE`Zu|3=)7qK)o0aqgyyM^0v%|T_#rS)U7n5gx<wX;rj^3fYM8#uDBRsk#W
z>a?cA_O_<gPSDYHAi3)~sa-b;$(*kL7)*4H4Iii<Uq$wS{!;psvs~&2CMt%s^+N%R
zP*5><Z1Hm<fW=eew1<Hy2v0fWp~bI9>mdJ1Pundf^s{v+1-oykfRj}5l3Mt{b_cNz
z7!o0)$k+`dNPf%JAOP{Z>^=;yQnq3Np=r-vZ(}V2LX{+x71$ug37`4Mox)>)QPeYk
ztQM3qk4P?hH=r>WN>MYe9)CUo7H(Mb*-M5z68^gEKa3MW$>+zSSyks*+;l0nRGBwV
zR6s(mWl;U{)Kw4pR5+k#>-<aQI^rkgVoT%qa^pBK;V%SIaOb<4>leQ}|CpfBYaD(K
z6(^@^#_ORqIJzg>3!M`4uq_T}*40h(PV@8r1O|Vl%mQgiUt)JAcsPU`t!NRhr2S9h
zeM%&WfJnH&Ecv9lU#&SCfFypi866I^@a9Q7AfJMdzfie#iT~h`85AG4P8K$ECdy7Q
z_#AdpP0E`Wtad1AEl~hn^s`W6hLkwfDuHw{IF|hc4-WLcYiYlm@)heynIbC5eCQ<1
z3HD<6bkgkole*45%!ELc-<!ma<;UGdiXsaTDnHJT7ihjGRT*l&i<lokvLB9O5z1pa
zvP@-D>kUI{0aM|{Ju=9x@lO7;qwyT4%P3SZ<7c2bPOE9^vFn_iyX+i68}>ijIkAgv
z^#+JAC{`QkWDd46&3&!Jt^^}M>)4Hyj8(^jl4rRnsVJI4&jt>o>l!CQcSr7R@$&~L
zA$Z>7)er>jAgUnG(TCRhpwH}Y`PdkQP*5gxjEsRD{j%B#M!lrB%Ys4~d(4Rs6KUq*
zg!dAR$mYCm;k`w{i!Nq@_J}`%hh;N@`YkhmGT`SQmkKzD?E)M$2GYz*8>0jq;97t~
ziL(6=)~4xicvAtt?Qa73wBrCckHHGSDfqp$Tl`{+M{^B#>5}~mxMu)AGhuZNn5;!=
z3ulHJ8jwGL^IM<CT=AKbWN>#+mB4;Fx`rcw#^l8zg8AUF0GRhp5a1MeSM&_;wQhKi
zPU#weRl-y_giZxI&HUn18)#V=l{;;cL1Y_XW2cQSV@N4r?#RPHM%kF}mR}5|uYlB<
zbZ7Yo<Si%uv5iG!%Hjuw+A;@9ptg!-D>>2`1PcLK{PGmjbex8WKrn9lhfAyZ*&e7w
z>4*-jc+1jR>wo0p!TiL`b4;mHS+59{NFop`ki(~ueH=1vg(Zf~I%3Q&{7PSCs3MNO
zf=Iaa)rY#YkgBh~8{pPgH{IJ+Uu{20!JD7ZSC&?4adMQta#Y+3J0mt7#2{vzIFGr+
z$vYZ(=8t~_l2y92QVRcZuG3W?iM(9K!2=W*z0%A-;Q9(uB!?9JA*TExh9cAlWJ&W^
z#{m3NH^-&GZ|yfv;Wub*-~?cnlbIm(7F+quGHyh~XO+4X1hnNCp%rqBp}7-C!fLP-
zf_d1wi)$==ATp{uyvSxTCG(oco@i0c?g@xOPi8jK<FA@cxqv%mzq$A~la+j+bV8qs
zcYrN(%Flq3ndHT^JhEP2fW04wU=sR)Pw)K}`vo|g@vAe3^Ea>f?dOlD=M#L0*(rLY
zP><~1t!qyV4rt4G9VoUsd`#$-QZ)mQ<5!@gS$o`<H2_|ZITy?R#0t;|DI3l&>{R(g
z?Nkxo!ekh~4{a3#h$!~{N-6fv=dNO27L)pD4bY<4^QzcgU%HB6<GRO8w^{=YQ0%E^
zq_ur9S25tqV{S)=d4z(z;#*fP950VK9}W_X*?2$jeH+<aDFxgdg`0bD$IAu>UB+Ny
zW{~<l%fooL6n2BX!@>E`5GSR;@2XV&d|wxRmS8|!G-KSh6?L)Se#s>$*x4G9Zw!pw
zfr-uHKJb#lMff&`zI6_M8t|Jm?UrNMW?M6Y%pNk0A1pXT-OvHkv}*o^BqgQ<xwwQv
zetxSDsM#iKR_{oa-Ks#%ySO9sXr!3tX_-Pk=s_9<GzrPYSv1b9;P|rDc@L=`zzN@^
z%@0~#3{CB#wiX;@HUEKGeu-)qhQGUZrLB2SJ&WjthXbwoi5?k{M=iw^!7L;f`=@VE
z+y#XVh@^PTiwu`sB_zywD{NMm;yDRm$zI30e1bt7`uzJ9{f`FyOGy6&c|_ixAS6k5
zbR!^7rM@@~3hYKi<!dfSmCR$|tOFq3qG;zjMM+7C2#wq44XZs|YicynA_B)=7!Th&
zGV7WNP7mR_ZUFe$2`&JSB7kp$gBWP+Cx{_qn0Eso@taZl)T3Rc<^I!0rL;MBD2Bsr
zgI)ZE`_*_LGu#CO`<esszz{K{{KaYDrU5v?c~nw&CkXmkJj9=|83p$beK-Bs)wkSN
zJL~B*{@}}iNV5p!9SF3b-29y`kt1Eri700_s8()s6J#)Rcl}8S^7IglfU$xUdfcVp
z&nNtT!tYODAJD_u#f%d7j2Exv)xyxtMt_KD06)`Iux8;Ws0_uZP>FXJk6lowcuX2t
zvw$T9DN?@%BxiRa^)n0i_Hzv#ad?k;h636{pwAVwE9VA(!8|Tyodm3(0Ac~5eZB;u
ziw+XhhvquspclA6mHIW!@Qc)TCCd|r%oG`edBp}J;^vSGDU-Br>^p5OH3$YxTVPBp
zSQAn>!aTEx0Y?g>phEoaf&=wjd$ienL89#(kYGOeb{&803=8=8P_GmjxM)MWvl-`X
z^n_hWf!INvyd=?oPA$;s;@t!~h3x$qjOnKv3pS8?VB{0oDR_m$l{qd=>@Okaa()v~
z!0g$K4PGtNT!fWq;U(g5na2+XVP|zGPdBrtr1@A1Ok~BHp!E|o=6OTaRl{Hj1rxAL
zn0P+bhH02x__kr`2*=`{A^;jl;=l_tU4Zr{S)Y~_BJ<aS0O(XV2PW_rb?#@F&d_xC
z_cLfKvtF$}(sN~~!>2V2LOF9(V;VPlggVB|KM@n?hmotT9DuDnLjwFoORPCgJ$JCD
zB(f~$|B&`3;8j&u|9=9U5|rzWN+ei#4Hh*hDmW4a4GMaqiN>joXf4)>T51szK#Ll@
z32=M77KgrCtJO}gL!GPORGR=MfD?lQ-~^868nuYZ;6VPL@7m`kCqdiy{r!0!a?jak
z4{NWz*4k^Yz4qFxnFzI`NY<Gzb8pDd(da|6niDvfIPH0SPF{^<LM(7Fwvk}!cVir8
z^!Lg09}|_;^PlijIDANhf4nm(o4}c~r$4K?olOsa*80442wO<9REO8N$(5<M8b^$)
zuKE?4O{xF1N;dJ|@5AxGjha>Do#N8#m7ckAx4aU5DOj#Qcni!NVmtGN;o1p&fLx@a
zCL6y-X31d2A-HPhM%wh#tSRiAshQ}armt+2|35*ORp?O)sm96NZ1iNa#;W5Eyr$#C
zBfrqqg&8@sP}4*oV-D5Y>9|{+wKDZ(uVm&rfg1GmSzr9AKm8`~!mif+ybW|8y}GqI
zFRz@I8Vcx5fzU>8peH|5sorR<+_y__2y0DmoJF*P)2Hg$1nZgID#fJKYBid0*bbm;
zbhop)UOXH1wBcrE4>jqlwHoz-RojDZnBI58q@XLAQM>v1Y>JJpdW~HG9BKUg&Agqg
zw|rEmL1*YGJ^DC)a1$A_&)h*LDkT^+%sy!UWAh?ai?Ju;^<JXfa1fd{-A3^W7Z1qK
z>tsE47UqGxaHo@m!JM&?s8@kjBXdgyb#U*HJA~jUOhouoR6*(<7*{m=s*>N`&xCd3
zolfe~QMApy+5QV>MM=iY;jT)$Buav<$(5(1v!W!BL(<30d!er+ad`=~zowMKl!CG4
zo!De)D)S(<T^v<0(W<yd1uh^dEO!v!KRPB2SiR<jciv)3L&n<>k9dBtK3(HJiE^Nr
z)`f1kby>wQ<f0~mQY{@IfQi{3SPJt*c5mcUI0kDOKyL04Yi<|SIfH(}?`381yE=I@
zh88luuyZV<sV653A-{IjjEdW5OxS+<JDd8~qLNX1-geFG?3!6QGHPaoYo@w9*34dl
zCzNs_{33C}9bK+3-iV<VF31ZP3Xk8o#vbS$tHXdf-+%#*-|iRtWa@H7?$iC>#OgFL
ze1Pl1=3NoPSEJl*r+@v#iQakukWiQ*6=sGgbS^0kU~z7V?d;Dh)(-<Q6esa$gSBi~
za(0o*XMPPQ6iN;fm`aRS&4nq<wY6A4xKU%y`;xK2&4sFBDEES#)BZG!+pcf3rz3JZ
zTDjS^A~}?P(I2`7%NDnJfgN(V(l2s5OLES|O0rhFNMAqmJCU%~2(Sf*UNWN_$7ygl
zr4%l*GdQ-2)9P9C0KxXDIk$0oowWe-;?cJ}nd+IZHgM73yoL~XPdb3tBxlRf5P7yM
zid*H7k>OLQT8zqPhsH)_Fj>OSI7;9Lwor!z8`;Yu+fU;&x{=^>Q8s!^wsTyz`(BF;
zByezlLX^!h^5HJqL-A}zLsyb5d|V*qTGj)|Fd^(sA1iEtgYe}u=>>i((qHvY)A<ZU
zPd(3zqF6Usvk#+sv0l2hXAZLy{h_P=>9Fxta?V<@WO|{$d9}ZnN!k46YM`crNb(m-
z9x|`|&c?QE?evlU-6lATwBKs_bC<R=-d~Q1;S$qvUU<=e=N28RtRTE;PeJU6RCtqk
z0D-b@KefB-JT2z7oM&0f!7N9~+Ak<uIIXvzzRo28ZT4p($L~hRci@TDQz<k(SB7)0
z*wG9q@X$(jI#!6TWOHxQ_-_L>$3ppB4PqM@>Qysz)4f-SSoP}t0j^g}&E0w>4}$-I
z&(p_r$7g@r!*ZHVaI>L7?4qWm1u#{!mlvK}BX}ak!(FSEYdvtdBc#$W<(R-t;i^U2
z;XZR`2`N6;jzzsRX3zGw{Y=MXWebyY+$J({K#&y}e>VF=Em~eA88%KcAj)lYfd;rD
zWuh<~V4Upm&~}rbe%y6H*x!y2ha2gK7nW>~T0RN2L9s(Eb8#2c#`@BBoi@6vT|X}P
zcckL73}e62J?+U;c-c-!-v*Pu+sWVaB!ar`4}wpk<><`Wgyekuv9uIQeR*s$HQdD2
z*~^&_qkt3Pwbm~&HyluEPJiTQt;5ZvUm`e?3&u>i5PsY(xnPOiaC#PrvSbX0tt61X
zc?%0P8R)%<DwZJDGBjO|lp`Ig4ln8}B~eH2Xa?RM+YAiRN+#T)3k*-t0C~?GiCc6s
zwZgp=bGH_eSTCE<-g+Uzc()7Fmrc-_Ad8YuR{B$%T(H?MdvkiRDmJR0JeR#~$t9nK
zZuO$@)LR*-jMp4D<0Ys+Orv&$4O(z4u%0%FXu>};lZKa&N|}@6dW;$C&QO_ZeWhEp
zNr5RUa2rYC4A;`4_`2GJ^;_3Pddz|G`FS@1vDiL^_x;`){AFC3u<!4pWrT0t)(yyQ
z*hj*pqypqUZ^wkb0r{ZH{7qjwfP7vBwvZIAaxEPjcflGVNRBW_h;lM*8^re<Cz~)R
ze!;Dq*?P35F6*x--u*5vUWmzJ{IR5|`Wg4jN{jJ8nOb)M);=!mY*+?pl2UglmuAsh
zNC=8v8o_qN%Gy)JMR(b!rL{+LcnK*lz1Sp+_miV?^UpJE-9^31dCNo%&sr=vGzXzA
z<+U{hML(u#g#g)?h5)}`WZN1K&HmnCR-k-OU_nPn$QxK8qG&Mj*c1NyGH9;Aa9|mz
zB4-|}9v(crnpWCd()P>2Jrfw!!92xXqgbQjj$o~+rqm&>;j)c{_$9TqUU@|BF`!Nb
zs7D-bP=7}H!S$xw!;}+r$k<_qux>r5fK%hg_aC#Vi9p!DZBnd{1LdJs57*8a(Hp;a
zUBhsk^sCf1;-Zh@3Fow8e{%~T^H>R@RaK;#dsn2^Z&AD!BDWV#zoar4Us%Ph6BnGA
z={uk@eJZRszQp1pk1uf$Q#db}r)~rHK<iUxN_+Z2rKG;hmr*bk@{Err3i+|lD2U6^
zW29-3V&oBx5&#kL<&^TO<Wp-aS{Ij-r7Ai0^@`M2<;m3P09X~AONhc@Kd1^W9a&ZO
zMKZ;St~??Q{vf|%^Wvk)PNY>dz^by(lMPuO*!`D<`42pD89_yQS%r&8T+w<A7!w9=
zHSAUfKP|2*dncLtsY<6;Ri?)mc6>_{Q<};A4)TkJbUi@%SR~p3hSIALqm}6uT=F^L
z`Qp6Fq0KxU$5RE`ZFAPE7`mjQeF=vLN-CP$2tk2KA-!hIKcr3*ke-`ET|oLVn_nI`
z_@i-iOLCs`8t(8YuH6p2NA`nYS$2mIhlsp7hWNP=;vE%d&TLQLY>3}#h`+iM@y8hA
z1MfspKb2i#m3hMsWaZu1bmb5+ntCXYyVO!W(9(pUkbA5%Pw+Z)8M{3s>1<8yU=(QM
z3Z`T$#C$f=AG%iReA>Qfx;ua&9}{?A?5h?POUyg!6c{#09H^hNB~yOPWvtJhpvzcm
zPYS&ET)y(a`=>o6Z)?JXX^<K%@9?GTMliMv0y=b$g1oSO8XW#2$EaKRzli_;<o}b9
zWsX5R?AOswM2<mg{It{hXh@<Z*DXf6Fib-!0-`4P4rDjvrM40dQ+L!P=SL_{HrS;|
ztq$$kg?x)TqJ|<=yS8#(Z8B&4<AnUY>;;{fu`Qy9bj@$Gs4|zZcF4Bbj$LBr6_^b0
zEp7arhOV`FxPGV~$5U)XhfqhS7%9+)LUZ;BZ)Jl^;`c7)cMbqdwaccl1)|_xuW_!J
z3WjnBxG$GKB6cc+V+tzrmsF;Y0ZrOLWatr+P8K18V2eufm1hqXVCh#zENyGWYE7H3
zv^|YkB`YV*NU9_o|AH2my~e!C%$uN~N4PJc5u_IsT4g0sBPQ^yB@=@k%^~Hodr`h3
zb7FqQst-AE!mSd-{ajU*KC`?keeQ6?NpV$h=0q;9ICsLB_Qe;DOP@P|NStj5w0*O0
zqEL-knthcY1R=biSC>Et!l&!M&Ti87#b%33m2AxN!lfj9*p_`mA7*XaLVgra7^yOI
zQtyi9Y|n~WTW3*6GL^B!qW?OpzoI|&-2whzfj~v;nq*%FjXhgm77RR1;ic}N49AIr
z(^r;O1>+_C-r=5%a#E3g?-6+k>9;@Ss)CD=euoUJ3NA<bZA+%mHIaUkh9Ui)anf&@
z3YC46Y-r}eq+e|vlF!5y5=k+&%0cX3hCImkaSiX*3ba!%(8VhSRq3_aJ-~#8m5<Y0
zxZA-_VPmxa%|PTvpC;P=?x*_=QLFe*5~;xkRCH1NzaCX>Ygc3{hcK*dZdl)~8ceht
z@RPonVI9w~{#3(yF~j-{!+NoX^>c>x;H*L`F|6C9vFwhdlRuCBRA#QdO4QPv<-*LZ
zTfxE9ohvg%uly_;r|fAe^1&}mFGH{O$zclaWP8XYCdqLU_QCX7>8yg-ICAWK&5(Ms
z$pcx~og3-@WSlHE4kzb3Ec$ZTV&qJ!_!qX8PjD)k51$k>M<JEaSR<9l@z}q?`k2R6
zRrW%B2gf{Sk9qQ}%XoWkjwyg<^!eo+>sQ8G7~i!@Qan7}ePY=bmfa)B;I-^Pu_Cv-
zd`9$*5wB$vdd+x`?=7wCJJhU<_e^}bjSCj~<!l>)X1bq!&V}vh*aSg1_jP)Z?MJdM
z)%pb$ev-_p`U3*W{mk6F6234uUHuwW>bBVCFyU`Di#ZqJ=vq&$Cs?sHuS@u8>4;hb
zfBXrV+0A=6GN@7+nV2jX+d?YR#L<rvI*c?5Q&ITM&K=sZ)+0=Hr)y9|_UtBUa;sPK
zO45jK<Dd&wGBIk_AVpOR;!-tI82-Tw3(+ggqyD56-jLB*9~&K8cdTfPMyL07pXS@A
z@Txp8xC{#IKwsDW+-ak`?$rnq5NMEDujy@Je&~NLhO~7`v_-^<P{BX;p#HY|IxFX?
z%lJ$K`t9y>7P7-StzxN?rqo+H>h^rY=h}PbwLQ^UWtaMrvzG{)-Nsvd)wpzKl|y>4
zJ6rODlc@&f%y^T2fxZ&-S`8^o-;XsPmU<>gjkW9Bq|ah~>x%J&ZRv^t82r+`TzyY{
zlz^Hb7wiF!GQyv|>Z-6&wY8iWz93wGxsA_bbhZ5|m1c6|a@)_?g0bj);ks=-^RnOP
zYiD=6;qO1kPYGX(CV%GVF8g=k)zscSehO~6@$m?c5?BmFi67K!p%6fkIeMgze6jUN
zLHOt>(Rs%x?X9~1BCxxS&)JS2!Ho71;YV1(+cJbP;Otml@8q?6C_`(LUW~%Rv+$b?
zdJWkNH1uq5N;eTNb0Zh?Hf>DqY>c8m#=QsnDXt9Au2bqu#`i^mo++AiasRxH$-=P<
z3;5fYHJ5IiKLlGao<7<l%13%9f3#9nuGpBY;s4nZ1#IazV=-)pr;rK!%)B`HqovBV
zWMlHoX6i~DaYrFF>$zq*@7~4se)e(zyfAsd@@a?gU?kjGu&}7n6{49l7j8@rYobRH
zeLHu7WZ^=B9<2!d)Os$(<;LM$n>9<@W{0<5WE6uG@yuC6bVoN0^O3v3y<bB!y1O8v
znQr)x{LjjTe|Dbqhe`^plAH)rN^vfwB=_JN;?r<T;e6wZ&NNdfQa3(jERlN}Ht0pF
zoa<X;xIz5dSi#*3zI1+tR%(Li#`zwGpL_-M-|2r=oSglIvqx<w&$ZBh+U!q`+mj7{
z(Oc#eHcpo%8)xce*48|Flbmz9Uf@7qGzUUc14#f+oeTHi?^^S)>b74l>VV3%(W6!V
zVi9O?%Uxu!!>f<*&JupsqCEC?%u?hB1dkzrXuGbaAs86(WztINJ6s?j5|guku1aj*
zni)Kk_+Wp{fRYLSK<g6jxag@z3CkROzW1~SvDNx%HdOP?rtz{`Zyn>tEf@n!?yMQM
z+}SEG<sFy0;AvaSRYt3ov6+*(tLj>%5xzWsxs6k*J-@CW$FS#xO6KylikzEGrf6%O
zmH;biPu6Ty4KI}oOg!K$&Qwio_A!yE^F>D;hZx9s{jEPvKtO7cNBFM3(6N%Xg>?A8
zRW+r;f4t^oV~K&^_FD>HZOt~<exK)Sc8i&Y_W;E3>no#4?KG<bV!E6v+Exihn?qf5
zMkh+jTGWVOM_ab1B@5GQTv}#Op;du~GChiHRjyim%@d{EG_tj}*hP2o)2=H<&;{WD
zq@s<Hnu?<#<Na=M4Bj6I-pU-jza1X?w68vmaGzS6HH_JdwY<rA@8rj_nTO8~mMy%Y
zC#>-a(keC?bd#^}$Lmyu3@;RaLvs9KN&M6xTN0NEXmHdlGDKOKg6oHw$Qo}}DGiPk
z6nym(??0uXUo!RkBbE}tX$K8;0aJP*ThCzpu4h;lxA{R)t7Th0mA!?9{?H{9{P=MS
z27}(zj}$8EINT3<EmFlqxI)b-TQ(KRzMN&;Us?3mt7VctCg8;Rqw?$C<CE#1ZF9nh
zeriLl77wFE3ojmC(*rd0?wk|5PWEu|e_EP@khv&v@+mvwyB6Rqzh!3H&f3vQ^1<A7
z)X})~${uY`NM4%m2VrNHIdz@^5U!1!VC)h-!3i>gqrUSM+JESaND8*p3!uFJcW7cH
z0X~Ln@M(uX41Ux1HTcQKn`nX82ko`CPQzWUQ7LeqCR6qmh{#oGKVsNFM|wkfl#c9C
zttp)rh;{g>jt;xx#)YD!jJeNpG-lc7uAAj;x4A}L#&~_eLd#;Z2ulUwBS)~1uk0M>
zTo=14D0FDu?&@FNSv<aEkDM){KGU^xeZ%IXF-Yh7)@nA6oVFr)bey=3F&PvATiW)V
z`s<WV)kkRuU#Sz+{eZ76=<ctkoNQ3&a7lgb#il81v|YDo9m&G{sD;E|I8_12dphWi
z!y@FWil}7NXtcA0R3Gc6SAwKRQ*<~<a5Q&oiCsHfcwA$vG$$2={aBS5bY?HfVY8cl
z_J51Vm(S=3Ns;Dp5UA^>PbOy{pvkK{Ne&xeB-zlzX0}d@B^%#|NQJE$3p~eC$<Dy9
z@;Bp-{feJ@yLZmI-0&C6DYqhgW#pFQS7rJZYOyPmA<<6y5&YJ6FA-epw`kA`!(?RD
zFV77ogTbt;W@<Dng<*oTBMeJWY(%x)u%tx;-!dGeRYx2jX*(t1%8`uB)8_hQ@Ci09
zCrvlIQv~W|)*OT=%z*240vHWH#NeELG^fFVJg7iOma+_J|LQN$YG(=#Bl4dkI{V*M
zUw5{HOu>crQFVv`QJgWgItf=7hWm4*q;t%oY#rnR6FPEnnb+aYW0hJsA&fA0xwk*M
zpIbyl_{GiDP^9l2Qm@}k^ot4b4!sAFVV-C?*J2VNBdv+cWkw%w1Q5A!L8h#)+#MJ4
z&G3`+NB5+&=863_b<z2ayE)4FwW@{(YWTH>3Au-fxrfQQhZ*+30=ZS9S;K=K%D`(|
zm?s;ziGpdepNTx5_%=h|APOd*J{uwdCL_fXYV(7rld~49@3^<+Jf`w2){rnQ6j8OK
z7i+B`e2~)>N-zKJilQq|2y$U;YvZ8m?^3hWTP)0!IBk^VrYM=QW}L(J!^DwbH@jTY
zn>_}BtAE>ptYK)*UYaAb4uNpK-^G5iL1nk!|ILZGDQaz^%-i+KShnKIvjiKXyRvRK
zwLgz!{S(dkOdi!Bix-6;N;~SDA<zrJ8*4LBXuwg94kW2~tY~^!+Z{QaQh}Bopp(Ii
z5I)(Vh%{=I%mzjEs)CnNy=b`fGCUk>Q-C;+LG9X1IPqU_;AajsUHMPVF{wKFPW4uq
z0l^4BDo5cLA7`%ub<X5J-yNGlwFN+t7hbI$LDko`pac6hpOkd+yM33&CS>JG3Vk-<
zh2c@TI@G!{ldj2oK5nC(aKx(bz8-%>2<al9Rm;c*N+;IK$c1Pum$|<AL$8}hQ&2Qx
z7uExr%AHy0Eb}*WpCFRgbe(wx@~|jdHl>RIy*W>*L!V8~e^4G6<#TI64F*D!*rI_<
z;uY3Bs-rl3>2Qag67`lrnq^f&MQ)Z17k|tc9r!K!0pK$rzAwmGnhxB7#Tij9v=B@C
z<%_z}H<r?G>%aWp*|4BpMcgJxMT4v#$vM4EU=f%;`P3$SKg)%^<k-#ZfR@*thBsC@
zb4`<VfOw3_6k03YVPr7nE43i}vCWw#@O{;?w6m5MwFCkoF9>qx)NSRp_n9Lo9tkCW
z*;`XD;&wNtyOS_rht7b#v}$m3CA~t~+6{j%72CW}cKbTdFI!c&D_2uO5HlIU4#YWd
zJ_H<TA$Du32HdrYUu}tEF4s^>tI1fY?UORz8DY%iXkG;8T<TPI5lu(ou=pd!D%HVH
zFvT$JWBjLO0xO}M{vMdwTwrU(AG(~Bx<lF64^F8T={JWxqt$A$tT(Ckz0HSX)!TFB
zdEz*mx>Ab^7IB~WITy0azdP~OF2ox!y`sxymR#w64_OFBekNaEz$GfW>XMu4S4#pV
z=bv;@E)8;CuI(jfi7a~Q0j-FZC$B!kMsUz`_Kpk5IKAWI4BSD{`}c}v4*ftsw*1*J
zl|`1!POG#3MaJ-rGlZZRL&{Wa0-|6;LH?rd`q&J3lU_>^W%?(dSE+Vk2`Hj@%270V
ztO2rO>Ond<5O@Riil||ySSvEZQyGSu8S&KHJsEW9S~aEI0U9n0auh1zvL~Yu{+>{z
zY;T<ZA!8=>BnGP<yYbJtY?pVRAH2Kn7mU)W$`(#NT5@YLHQPLGlQHu`y%PARIYL5N
z|GsO!7&Jlkm93rnsMHhuCYnFQA}`PB;Ly6isj1P^^i%d_GR10y_e0pClxo<xsTQ1F
z$)fWsK4Ili3JbvF&L7pI?#O=+7&n&KZ1Js=Sm4zsZ4>(cPbFc=4E$ui&mY$P`@R(8
zC2i)1r_OQ~lNzyX`0iEYy-ImunsTO~^Xu6oZg?Jn6t31e69U_<ja6a$GfAolPly+i
z6oLY{(+32WVAZV`;zc6i^{$pRkHl*61jy2Q*Xl?E<SYQ8vER1Fve|aSpQ3E=B=8>M
zvTa%%%Vyr;zlySzTDFAC_S$yYPLHx7iKuNFHV_)EcqmpIJ<kjGCtEl%I%hLMl0#;r
z!w-y6wQShoGi;MW)%W9V#P>5Xf2dxYQq4#CJ;4EHCs=dSU31So*uA-@qiho`TeZu!
zES?P_%L{KJTe#A-b@=>PCEw#~)J&wZP!n2RcqlFr*<&Ojc67yV`!H5)fGRykm0rQu
z>;Z_<%3yXqsg-4mrW8Qc*}c$b*a|)FeD3tgXHiemE+lbHq)Eh!{h?na7a-GCak66%
z<lKe+sy4eyjQfAz;@WueRp7mO4}7FEugvxcG)WKJY?MNUw+Xja^^7hd)r~$*o66nN
zHz}v!4gJaweuxw6swpG6rt&z%ZLT%D&utC6s?CzLOk)PYYn6i+A$?aVnje=VM299u
zyw>(<cz?AG+pF&(jIL%U8U2VsVshM4Q1^YLVBuq;f>rBqdl|42d5zFPj`mnYroxP$
z|5)L-evOMXgx6#V*ohLb6IJ_+4s{l(-iJD)j`rE$-|ak`&eT5reD8uC++w6$GDio-
z<}>&sn&cLBsObsb?RN{EZ}~&fdcCW8so=~@a~rtTrIi)TY!zIbEVFXsEFg8RIwQxL
z#O4oidOn?cZgPGhQ`y*b^QsRwFI0Eyic{P%+Bb7bzMna<fQvBNB<Dx0Y}=r*_0uf<
zbE;zaMs$8$Q%0#241{LXA13=5W71379@c~~kqKe)qR3ZB01OjdmJ5J&#5S!+FBJf7
zn-|3aI5WQ@Qvm?09RRPjZ8!ma3tz9K&)p$1J5&NpcxD7cIWP?CKyEiM6jOD0+nr1=
zIRl<fpVXUW5-U}aEF5KPrW1b%*AD_SUcC#Dgr8s(r39LU^hZX22FGs8p5^3KK<TIJ
z!Ioe4>U3PMW{X%WaqPX?s!TO;{(BKwXTBWX{T-FCidH4IIG~cgRHCv}GG#XcKISSQ
zHggVtelYtEz!K_8Y#d_i55VhOe-!#dp>_1NaG3JPE136xte{PO?5u#1uO<a4ml*t{
z7Q8au0}r!^;u&S4RcUz0dSR{;aPPDK(G<EUdG!&tG8)}x@64O~>ODuqiND~I7I@qK
zOy=e`?7NGmj;_%5sk85LNimA*4u1M8juU@|v6^EQ^@4`f4<i%r+k7>)&8{Rv_-v(E
zJO)a}`@COFJeN{D{GM%miErUoW{yeV7k(|#xchETuO|u@x3bD$l)pTtB|4few*3Vt
zXzJlaYHNJZFf=)zjSzR`Avdb^#)^nqI)-gAc^7RE>N<)|K{-`>DYmr@cqtgwZ1ML`
z&fl$Jd0n3s>o9@CO-NC6tjbKU9YoP1bu0aWmFZ}zp;hMNEMgh0ufKqg8eqGoI)bF_
z(W*?pK2^akatnlknEi?=fju(1oH5-3$Jgg%Sa;=1BdyJ_N@+XJ|BCY>Y=NB&UAdKO
zd9v|N07=eI{Mkc-VTZX^=-^gA9S@8Y1Hv+tZA7Vz))N?+21J2&M?y#gBSA3GPb~yj
zrb<|eDXd;PCIUOF7n$cK$ULVgt2*qWtH;BGJ`{NfULi_oD?vUDY`b?w8(#CBwFm>7
zE_WsvB%#*06rfe?9N`;y;V_}!7e6|+kFeYittU*f98nYHK9%TUxXKrVn^73TjgzhD
z`%lLvT2o}!=<6XA4U_1?)V}8qF?t-L+NYgwL@UtFia?_q#`s9t9CYdv5JL~)p$<-O
zJ2)q)v5N%Cx4?O_KAzy<EdF~8PL}=bAL;9`sA#FW7@kx|(g0UrkGM{yi7?Dlfv?mj
z+L~+y2C0Bgf$#?o!o%Y6i>$A|KF|7^@#e(Ya;Pf&rG3hgqWyMTAM_R(Zs(6tP3YVb
z)^`(yoI>YeqiLOqaP|_Df0!X#oHIo0nBg?V;$V!9w<C$hj10W@d&u%|im&peT0kNn
zl*L!pz-zV7msN|{O7ywdeRh&DfW?KZ^^tE*L6G=w3TUr&m0Du_C^<$zx{SrUI+T&|
z7g0uwgA!%*h0bFCZtYLjor@UqR0T_{tp#-l=n?W;CS3{@E4{oWkAr2+wL9Ws<R0t3
z5U~$OwBW~Mxii)6W)tZfZN-E*$H($yyieYZ(SmIfzIU#ZqMGH?xpEucV-MvgLK@YU
zbf&K+T}jp10fteGjU5WZQ@L*<UT9e+3HTT}1u88jou7^?7}tD9e)H}(b233S>^_BX
z=hxBVUS~Fm6O6;1^trwD2vxv6j65qx!e<Xiy|ZEN0EA30?WHsEeguk4+MrwjmaefW
zTQRjJIseG9nd9=Enlk1IQTv!xZ=)5C8_+av@bWR6myaFXT0Zwk^p*VdX5B9=t3u`w
zb|T-Z;1F{2Cq4Y3oUr{0cTD`Ln<}xwl&zR@*P@udx!1SC_iVBoeDTiltU^rvK9r<I
zc~3ikUH0tMeYrrdnrY(5F@%}V9E;1?s3R*giQA6puc+vw%KZFomFS;k&rV@2yUJ~S
zERy<J%YJHkHHM)A1=sI|*=NN+q3*m@A7p;iKA5Yqo7k!UA=U7)ho8Se$|n+ATeln9
zHg;dXAIyrR`xGMIz!Vn`H}uuVV9=UBFxfLKH9GMa40=MZ;KwWs&-(3nrGLW8;C;+&
zoZ#mEXJ*MS3zH4!vv_1haxzB<nwfHnc=ZD`Lm6!46aEIK1BKZ(KiAaOvgDj!lTwvl
zIL=+L3X+CZWqw|OKk4v_^ow}8bD68`UX|&sRRh|q25+nC^La&kQ&qaH3N*b`VXi$K
zu<zTa!m1+_6AHKPIVzt%uqypd#j1Cm+3e%0!5>xidEL*qZ`0nbXk7#!v{y9}@B0HO
z^H`l)o610HMf&9tD=RjCTA?ch7{GLMMQgLLU9oCCix6CcH&qROp(=9{;H=kqfW_RR
zXImRLQV+c^tIV94Ph|y^k@nemyz1AD=Ca7hpG5IlKv<7t>P|hiHuIMVmC44vc&JQ&
zS&{l6SuyLy<)i|AujHIt^%RA(VOM2#gWgd-u=Zs9uXP->wMiiQtJbNz{(w#X;1)k~
z9HO%YQQOP!(^5HjTSfE7JuAyToPJdK+=KnhvA7<b(5td6J3ZN=cDU!ReF?AAKBfDa
zANN3Us@owszaX{#xjrlALeCv@JS#_?<KNiEpM{m_ZEgQEcJ7fz6d(3NN&cEEAs7a#
z<T3p!be!~OE!#j!CE@)mfIlS-crGE9{?)6h?9F7u)s~x0tY5$fyJ}Dwja6?uY`0eo
zezl?xZoI_p&HRdMxM5gBk7`s%$;z^pse3o{Mpx2^j-5Md4?net&bIZcWbD$fa&@8Z
z$Gnt}B$$@>m2I{G;1(LINRz&{?N2(Q@}qA7;I)dut19|@RgvjO@3`e+D0zBl`J6*G
z%js6ja7;ee&1ziIOS088hwE{#EtRNl*ly_^v3o>LRWz9+C1~hHI#-#$j)C05Mqy=o
zbwzqP@N$7xdYQ7O+uPo$WEds2UIpCj;nbYk)}!t;aFu%d?{jx$2tY~Cislcvi}%Iy
zF@0Xucw|m%hZcHF-v!z*8$^25xDoByr=;3T_NAJ(nXKN(aEbo1m6#aNd~Vnhn`j2}
zA)LtxJ=FE|ifoOo3y7_L=A|*^3`H)d{)FWhnELd}idZFPCZ2u?3da=YY)ON1Kkbw=
zM5L6n@%s2EAH#XB{KUA@w7-DZ%*J7I$12tw1VLsLmy1a^R6>B6@^*N2x!pp~(Oxkb
zSh_(Ajbp}Gq4bNmt!F1IWw@n8+z+c)rPoITHiFMpnal9O|5wkd^wx^@7f;UA7U1R$
zX4B7AG=J2yYUtO9s?M_b#8Z|b;ph$%o<hQQ`~EJX!L{IWRRY)wviZUBFcdyjS`DNJ
z4q;(YAWSgtMtfT&rsh;+%6pmm8)_*VW5J-e*+ceB&Zo1VKEc*Xp3Qv&HVuBI&xX0k
z<s7#{tV|1R3w-*|gO%$8H$#pYyv1h7g>!es9Fba5=nN{G2DkLt2xoQ_?|cf!y~JGp
zATHwF^u6Cnyrn*xs3qD2Ezu@u2iTU}o13K|B^%E&33#Kk9<e5#r`{kM8!mwIOeCJ6
zhxDpQ|6_N89EdzfCHG)@o>HoFDK+*$2yL0Eur1W{u2Z|rO)|O+{Y(~`*`Fh86fbrp
zq^H<mvtK0vN8cl6No2L!fenAwS1LSZKek{>ld1d3QNdQhtY?)v_v}MP%Guv<Z>i)w
zmdiTzWtVj(S(SkZ0yv?5MPc+~svkJA9%DnrtSwgWF!u@CL%g?C%vz#Uj@Jzw39wYW
zs3N@~$~*NXmv<-fx*XUnoJoJUr1@y8aHz}lHq}V8Nhnd(VP8^ps536(RK%}<dN}%y
z*ayrlr2LK)z$`<j)?Sd<P}Yh&NX{`Q%LS1nxGR=`2tU^tk;l=ZjLLS)&NV~oRVW`X
zTNErr!DM8MmgWda7usk^2SJzufe>6_k@!$5nZZl~Y{5rTv^D{qc;ce)ZhVWe-Tuk_
z{NDZC=zcQpXSVyf%Kgl+AHQ{xAk9uelyTVL=lq06jW+2O?;AbR<V=IMChF2j-A=A_
z7!V7&M2+tH=-BOESO=pn$rd4l!_z02tXmU5SZiK>!OxInvvFlpMbyE<<1PuesY=Rt
zU)&!Pj%FYquL5US0k=<LWolLCc2dL3T}#Kt7it{3$_v-q-V$}b9`_-%)o_b_3V%cF
z{Ok$HwoWCr8~?H-694+*-*WM9xxlWm(M&b<wqI~DoEa)#5{nM8+7J#YNPmj@_S6n8
ztGe*&Rg!I58BxG?l$Bi`uzBUlIe#>iYdZ?#MCuyeT6z`!5!GqhOh;*~JXnRXJKQlq
zqCK?|&akr4Vqv&jsIUqcr6;_v`tDG_^^bMC(&_|3GEt;d4k`IMCb20Vlfoj#-E+E;
z*Re;~&nWkEsQdYY`}q;B&e@d^klCLY^kLEdWwaD2?N}lenrkBhp6Rw=ijErO*VT-j
z+XE7Z9ShK`w&=^$_t6cL#J{fM1ZishRTY~T*3+qEqr8cExyoMNR6p6VI#ZWHY(<)B
zS)zKmMeD2l+PhE@upgrxE|K~}E0vj3+qpkVnnH877ZvkuslHXTE`&(i$Ib1#3yUfA
zp|HT+;Uf4(YwBl}km-dV=d)5E*<<zd*Jv<y73=~!g1>R;^p7<@U>zK!*mJeQt0_FI
zqcHomR`?ZGFkJzps;}iNfIfy)Zd)teA9Wx7ed<AAWS?#-`eMW1PsYyO)7t;2phEHw
zq^*<2|3X!oGjMPBuGrkHh0(MFg;Ud}qBDDIs`@mO{iIB<ol*8oe<HXQ>#A3?_cEA5
z9~QfJsjedRE~t9Wp>fa3%*CK_9BYxqU<y2T;Fwc%4v%AtU=tzoqk=3qF0^-y*;8n{
z<3_9mlsybm&KkdSRYm%F)Pjmt?=X69&G2SbpBFe`To2r}eJeAk^sY>2tJ0rx&~&Lz
z*Cprox6-TV-&GaTepQb1YHwHdSyr)mk(KKMHhY7Ew&m=oyuvl}ETM>(24Ku=cDT1P
za{}rt6))m!^VI$o&Fi$98eG+9T}AuSiqta&Bu~le-1BUr{^V5+{etxp1v(rIXmK$W
zQ=QnBgM&Q1%M;6#G9}pA6}q2afwRY{s796PrB&%?Dx5ZKtD_B7eO8~8={wj#CBRvo
z6-?>Z$rPNA+@iFpA5{%~yE46A;HE=roO*v%<H~8iP}eHAdsbcVI!tH<SJD0)(9vK=
zY7_6Q>#AgY)p)Pd(q7~JV)iL1bm=8k>DSxdrLA65Zlsmiz#25mv`zpTG`rPpYiO1#
zvU}3KlQX>zt4M7rn|?XhM}v>@>3f?F_i0u7y^hvV-@mTv^HF8ykUq4oT+`OVLbXS0
zQjRSr{mq{;S1uuzl)7X~8zYK}!LL+ge%M|)7#uXA_gAJr%>GrAR{AhWCTc-Nb=Oz7
zy}>wDr9Xi{vp*&a<DB0y&dJn%Br(>#G}fYQ8*d<brdQirRYN~<BhgcmhAw8#LCbAJ
zpIuXxezq$8c}41dIBKytitT0oQp@)%GAC_8FmyRNX><}%w4J2vv#2UFCZDk$Q8jd<
z1`X|719%WMlo$(i4i(Gh&#U^pGj{Io746Gd#2bINVHnO*V)_g6l|%@^RmRz4s6jH!
z(ZJgjsT%BbZEEafj+YpGJ4)Pj?3*}Un;ZM8bk<0Nh1IimgAi+X7E4*~-W#}s>wQmp
zkBUm~-{S9>23^!QaA(*!2^O@zj$`3<!$L%r920)0N>~`XGZ&D@(9lC@INs18K_h9<
z1r_gC_4y3av^Hiv>!grF3_E*J<wvYu;o^6Mo5vk)fRdp2NWFtP@nTr|_qfTvWr9zP
zkbTJ>WB52(f-L=fRr-Z&oo%+FCUnye%<-~|ODc2fU6;usgkp2xUAAhRV7th?@3A)o
zjtanxDZMI_xYBZB{D0<dryRI@sE@s(KOSe9qN9&jMW-(*)mB4l>#;Ml;ZsYwMojBN
zEUKJ;F_nY)oGoAlSA80v&hLuf$obD{<IrVFq{|dbmm%sxPT9+Nr`@65F~J6as4)hh
zfePTeu@aEl5H<57nrZv1DNWt*F#?jL4a(=Xq{tBMU{WP!)9ph9pe#4!OI7jDTWP8i
zmIMxRi`uZau0WZXIx@N7R}&OUtnq%OW)9u!I55NIp1oR*JulDy`O3+pjhI0ikr{`x
z;`1@eavoSUs1K}+f1F(4Pr%b-B!<k|Lk)k@k61U1T}Bg?f-M(Nxg-28AeXD(C7`!d
z>e3?%W9q4`-G6nWsn8kkq5p|}vW=4oxle!F8v9gA55jTwDSUIdDOtTiZ}wrxZ#(+Z
zN~G(U;Rt49qkx*2h|wW+ht}yt_{j`PjuTea*6kmi*Tv>eEX}oUL|e-Xsf?+ryx4v_
zhSUFf6X+YgahlNA(A%L85<^!k2ybQnR(Ys((1T;ip%yWqHkY>D5}y2w^k=x_JN4(2
zReU@Bx!OOEEky`Anc_5~DE*9`WT3?@v3Y%>s~#;_!`ZCS1O*x})VTUD@PK#m?BYBy
zF;Eayvw4E5so})k?U-PEO=j{o!qqi4BNH+;?detmlP4b<Ut{67lZ~g4tW49}mFXK>
z*6fnrlB=N(H}zBClc>I<I_rCutlv^!3CX$obb)NVE-YR!_`82~4DNdHz8QawyQDj6
zgL0V>t8KNA{fj^6vS*0$PX+2Fw2Cb$T=P*J89`JrA59G<dr&>m>;^{vhETN9CDC!(
zP00l(a>v?=q080kLDuTAsIRBN7|W9lgGop(Xtw7feM~;E!TDHYgPr3x*Cii@Za{p!
z*mw6lqMA47<Na~$d&PFH=5fX=@XmaH05M5wC*tSvFq!b4U9}H~T3OMK4#E8uSR|YD
zz=s~22JlmqQnsNh&=9WTV>3<X<&L&Sr#_b^3prSN4hKwk_MV|Oo|o~QXyzF)02j~?
zt&mdd+<pcKDG0xM$zhT%;utDFR&;t9DBJMsEEm#hIu}IY=shLqh*_THv;r35LxzN3
zJ}591#+(h7lI%CIDT3g>XJRZZh6<+~Z@k<_APEeDNLFWpfz8UJ#nu=`((DO2=6WDh
z)wv`dY!KOx{m`XX8@b;d(E=Z%8!yA%{^~MVQaCc|BBEPFqN_xS^u~UAj$!WnBMbwp
zWS67%v6V-$CE4e&SEgID<7BqXj44#*j^zhLP*t<2?M{0??gCjd2U+&2?P^)|L9P$m
z*V4aBEld9d1b`Ro-(i1=`e%_tf%0Sk4<FpmFubM-sdHmAA$Oa9K4T=h%1hN;%4|ya
z!rSkNT52gj4=VR3T&PnQw8bb?m*C(G-w>Nht8W4UBZ#mpV@u@>dUC<ip-UJ%!kb^k
zL}4=|74Br9=jKJBA2BS+f%Qgq%kcU4T}Mdf_MxtP{Aq+CMyz}yMf>^ZaXxm9DZ?3W
zY9Gg21#R=fo2=tdU42`O>V}Bwz8-5hd4`)wvKt`HZur1T@-6rnj^o35I65>!t9dP$
zr4?3YBqsnd82~0qIycDeFsnFkj$eZ{upIPs^fBWd`9chcfdXQ>0b$+O%@N42LvMFZ
z9c4OdCnYKHo~U=T$M890YAntj^1*@+F`a<QMT|}NwhYhQ<K*xu*>}ZzIee<jZ#146
zZ{%cZ=3V0g5yACvpG|h*=(V!s4Jk)Bbo9X0x*cin*-`cOLv<X(m@Sh;Aj)@3toydv
zJmXj!gE3Dt2D(zZb2i*=K9^Yt`Ye}zgk4mB7<n|00{^@fPVX@*M`qBmy=}{KSLWRr
zMHVyrG_hx?N%p^sLfH<rSR585VUzl;s~ni96Z`y92w~EY&zbDI{qpj|t6vc6D$#Su
z#hkOW_Q&k#L(I{>b_s-s&*5^;7SyYHeG`%|U+I{pfU=B4uOXU*I#690?*3N9RDz&d
zcpizoE4NdT)l_7}<C4M`I5vRk@`HWsr|=&jOz{|E2<t|_H>iA<^B7M5DN#?#b)5EO
zw1<1%VhRB{h3X7w9f)-`vXp5a318jRQ(;7kQ(Hci2SVb-b((TytYT?wh|5(s<sqmg
z9{)bI<#TQ^c~+^`ky83Ld{KDDQ-H2*tZwjbcJPkW_zu_j!ram!L7STJZ3d_1YC+4S
zaylc_k9nmAX;I96@!5E23=I2k+GY~5M6j81N>`iRIr9m^aO544mR@kWYL%+i3?|Ke
zp5t&#ye6Y^XPc)V6N7`ksNw>$RP$TN@9FGv@Ys*X8h(rUJ)7Tw;Wb}GptN1>I*}_J
z9<-H3z}?nP_B=2Vj={gqZsd*)r~K36$cSRoN5Dt{dK@hvZ%?63#QQiEF+)M6;V!wB
z9TG4$yJOnP)NDiY)<o?I=(ju8?yAYQgVG#o!j~${oV;t?^m`=b!W~b;W_%oBzyJlU
zjrfb7(T}IXKf3~#zZm20LHfRyJ9EOKSb;tiux_{2M`NmC5IKr7!V|vNVcU-Q!GYwk
z(v4nl!|q1ksu_$mTbzwOSalz*EUf=$t<NJMy4om_I#Q0i#;zRyY$rHxvH_1A)acW9
zZRgS+mraLX;Bn-~LwR{6EDK&CR)Y{Hzn(^WSXs-lm}PaRs<oi#i8o*hY>|!2>h|&*
z*K&Jt8lsg1ku>ckRQz(YTLwBNKo;)%w-~lqcIAbWjuLB2!4h#&lFfvYJk`K~Tl~|l
z2K7)~Xd~!7!5|L#mW;hRGg^n$9TmxrGXm+TyS%gR6>z!3o@Lydj6~Jk2v>kUqE(4M
z!doAMNT+wooG#-r?d)&S9sJB(;W&qX_-(kP<X(nm4xQMUF1Ik&Fr_;;Zq#c|*mA!I
zkhQH2OK7|8+BkQZ{TwknNn%@n7<^_h2@7Li&=)?@%h8h?kIwXm?YO)Or8v8itF>!?
zD!R%}hn=W;$W{FJ7y#xS#DBdOngLT!#o_gzit{HSe@x<?w*cV(*xmji1!DU)%H8D)
ze1q<A$+$xgKn`8gHAfV5N=t=rW&Jy`P$@rzj$R`7u!BXTj{m22<@bmd;}wTD>F71a
z`&eUPiZs>fw{*Y~v1e3+H6^0$M2izkUD5I@v@8ePe}IVk{FZ#wp)SpY-=7Zw&hH?=
zF5{J)E!U-PA`_TvtSbWEfD1p!hski6t(I?nIzlevNq^O<$ss3L-N1GgtdIXI)`Qg6
zzO@HB>BS6Vv>Z(?sGy(6xO+IwgxA{s4~$<LKY3zykg4tyKz=JA-zMRkw&aEx9F=N>
zfhO5-hjqxN_bw2Hd8nDRT^|p;3md{;RgOih<uHo}HQAoODh9oYufixBO`+E;blJQs
zW7$NpRz4i!+WLBV?CT!-8kCuU%XoXmkGU8MCfld5>=8zINHoIT#`kQdoNnWr@m9Yo
z^#zdHZxBMf(*021(2n~C<%Ov&7bF|sFpPM4E}eT%^d4PM5U~>p8ShS3-J+1fuxNop
zEwaU1x~~-P#O3-)qq%vH*^~D(eptBgzGeUm_qrMsD?GTasMa_<cF~3IpT9Y)^>Xvp
zqx}_Mx-ga3`*;-$eHN>^mrON^UNebbui1^N1`faq_w4Ecd2<Ku=4X!4W_tO|2Wjwl
zgFs&7iBa~L7-t|T#XG`Myn`(TI?xIvwe^BzYESBZLL;&v*~}Us(>HCCUr@9~_{yBU
zq*w<<Q1I!UQ-YS5HcJmMnFd8GqHM#J?Ybx%taSR4;X%<O(Z`XT%sx})C+Ne-py>C}
zhY~(;Y(ghD`B2j0RlGca+n<>8UWrC)=NpCNPGt;@(^0>qcEgkSs52WV(N#|3FG*A$
zQ|U_Dz@+;up!i(f<#YB&Hq*HrzRPhy*Bm>MBfMpxDbqK&pQj#z_~x)0k0yjJ^f&Et
zXb+O;m~JxO+4Rb2FLj-?NAJ9sL=Cl7Jf7(uk81I%c*<+>j@J*vSzjtj(&Ujz47BpB
z_<9=cDv>WG!i$@jh!DGq|1XAn3bJ1Sac-)z->&eT(G|WR(T65EGB5z*%p|^EH6TY2
z5AB@1u{jrt$2F8wEm;qm(x*{)0eRZ?dU)r9%m=^SzP;q^z8*cA^-;a31GLQ0EIcE3
zsqskBTQ%#8!-2w2V^Kb5o(9mHvyVeSjo<1`=UM+?*t*N<jWc!!iPJy~kVA}KHCbA`
z0-zWDe8{gbPKSPey`+nlQ#n<Ebw+VNy_J|KI_DH8*ie_`o~)f!isf1J(M%QYj?PRN
zfK1{#tC*pf!BC3KYTWb*{Q-quW%2unii4U$HB0~aBtM|bNo;=>U2j;LJEyn7d>_d;
zmpNp<J2)E5+`uf^N~xLXCuLicSN~SuJL({y$A;nfpCua<-`RIDp#9cd3}`-90>ET8
zWc>bPQtS5^Q@^!evhg{DA*Vt%j2zRDKQ<^D43@`<S6#$s9T?eALb_<6GBcjdFk)s}
z1}W~9=@Sa7FzIokB-vOG{4L&JSAb!GQmocMDp$B@WVF@-@M2qA?f5`XvR+PBY!dei
zWuUfPOj?6XSyoIZ8Vjk8L0D!Z8+db-i*M#Sze+Xot;DL%j9oS|7<3UCbl^?Lw)JhK
zzM+JI%{k*i+Vb>g@u7%ee$H&>2@3^G=X}KHa{y*$$ImiGYJK;T@RqZ2ny_Z+#MeW3
z&sbNDZLj%_8*4w_Ks45k{ZzRuzbmrCWS|q(Iqi#y?Ctp~Nw>47<^)a0w-)=B!;5+J
zn5^o^@Yk*xR?`r%#kmhEcT5MB!_MlQjq*&q?v)PDB_f##Y85<dDK6b8cgtxPf)(~;
zaAjm5x$GW>Cd*A9Oj_<~Aec*_^d9qW5zp@srB}Dzt3bPz;;-<FM;)4CEYY<E$VSfE
zipu&whAPF&QOPI&S0%G2QwXZwt*$}@2-zl1WhA-Uy$-tVk^M<WodWTq|5Ru8K;_SP
zV}Bo0KWu%~mmN0NS6n}EPwbQ3cJQffCi&@6or8=xAs*>tx4V&Mb_B;=`|YQ<W)G2Z
z^|ak=8kzYwr1Y!k-;tE=l+U=r-QgcOrZ73XjZJ8T<~mV(`raX{^_y|Of%hxAEgqV$
zOgNTdOeR<4)+h;aH6J7g5Ch;V+1Sf6a_ypQv9EtmrLGyW!Ac>^uCcFl!-Urt64$xU
ztSlN{wS=g48TaKvekX~^`Q!U<T2#+<2bKdjAAImr8GE^L$QG+U^0`!z(x^!4ojvNm
z+BMmD4+>*)!T5tN+`K5SKH12v8+sjnp}CUmtGD@6`ju~L;mCQRNxT-{urTT%P9ZFK
z&73PYNY@Jn9^~ha2y??mV>O~BIsb%yo7gmIINan+vlY!>(U6~9Fy)}+f>VdjdS3xh
z^IzeFa&o~Y4xT0Fc*;7ID_5RCA0le@TYmeCeslZLb`@`GGj7&j5<iy%Yn-Opc*W34
z0wboHIg+_hGPkHIb9x!kwU<_GUQso8SyhmCVrCRh>>FpkDv3TZoF+{?<AQ!GOlPWf
zgQmj`nhrOFOJ35_=@*ha`=@whH1D$Bc8>0Y(Yr%zE_Sh)Q(khZbz4-ZNtqytdj0ag
zBzm70y)V~qCKucXefah})o?^%vlg%8`=W67e#QZ<&62X&#R!Jv{Hgs@@9$Awziqc<
z1FPjcp8D0D%)W6s?qYRbHZbY&NJNX+<t2uY%Y-_d)aZ<6r6@gEqjQv$bH}}PNWEG)
z!77M8rh%;PSht#_61hntpsmgsa)z8s3DXv;J2Kh#+;o&Fy3H);sC<&fg?lPLB5{V~
z8a%4&mv|~c@z^abCYOPhjKgJ1h~`{YS>d^yuXYlY>U}?*QwXxd3_<GMwGjl`0k0$8
zVT60T?J~L*j9WVuo27A(O#;h1I>5yZ^|WV#tphLW`VsLud$ir75*k6X<c57Yhm3q`
zZL!g5v;8ItjXTES3oO}*aznqoVdMBJ>BvNf@U4xe?@ZAzo_A>YkNA3j&i42+vjbCE
zIO5T7$JgU-cSU{s!<hfYuwE8rVky-X%$Dc=mtY?KZ@`4fQrD@Tv5YCBUcC#r4ZnEA
z!EW={1Rq#M2nFFc`?|44H+`FP_acYwz{;45XO7y2Qk^O<Rt3<QcYNSlb2L_{)^7T{
zYi*=@Sl-#%Z(M7H0J)iL`bYV-SJE!rtRz3v&>`^eh~6z-$X)Sg0oawBDgVmHYM%~C
zxfnyCu+%jZF=O^bvj#P|IU$p{WhuIZWWQ@5amxX0EMw{X85^H44rj#HPVd9>3`Jb{
zr5{{ZFF;7_%d_z&=|AGx#7>lMK$3nm=~i!)ZgP%v&c3G~ln7=*zX_nH!~?t^LIdH{
zp*9lT``7)Q)7-OT{WbI8NLN%i8gz7y0Kq)u-oXL|t5qsDh^6Wh<HsOsv6b;oNW}-y
zyiZm>^zDPV%=Ta?vupfHL-Uw^z<uflb2yQK%YL@mbOIJ=@bED6_wCdT@SFiblxBdh
ztJl1z%jDftkhtq2>99q2+mFR`TCJTM8}VX#BAt0iN$x>?BRfr`<W5_*96x=I4Jmw3
zb2cFt0?wzNuNnu<(GR4M`iB+iOITHO2piYnOmOq2qU8MVnh74SR~=<vPUXnpW#^aI
z69~A)4=$UC@9CJIauE&Z47q=$vAwo5+7sT)epxFKCOBkb10jjcWLnw*dblp(m~&&>
z>n_iCcQbscukvoUUwD^L+I0&hkcEwt?CR=?hH;_{uzFx;@U_~pKB0Zngq1ZBUuYrq
zeQo!avsmU#jTRZ5CW~CWHcb^b;0y1g8<w`M32I6$q{Ov`Rc(}-3BH;(SJs_FoU;~b
z^RzL!#LxfC&rFuBga8>eB|$aaFCMx!tzWb;GUcyzQMWWjb+#;<Kfn}(XW!!#bGk$$
ziVvx^DMk<4EbxQf+lgds9oE+dx;0W?+~iR1D5n50Ij@aVkg~FKz4{r!C(BJ{d<hK8
z0iR<^T8}BsQ-SpIY-w)21M?JwYt8kJ+!zY}aG;qEm&7fM#@#P-LMALk!G>@4zaz%L
zrg=}_OM@4d<3g7`5>+A6o%PenBX<A7HbCua;|RYbDPUI>?mt<a6L=-9y8);7vn<^}
zW4`8Z<jDELDAM}6UKYc>XahGvxESr{EDXF47Y-oT(v239y|Cyr`zQ~Y!Xj?Ti83n6
zdST)N-igV+WZEbqxDRWhtt(id1>T)h(b&Yb+pXS25<pYC{}?2er~l;IZ?M>I66jB{
z<)F~;uDluY$x`q4S<?298FJU<`zx}%cEVlLls%dX!`*KOOYh~d)D1s>P(xk(2SNDJ
z7sn88mfY{{<_5b^RKwoO)}D35I4i9G@|ShHB<EM>*ME6oT^}BL@KAfC%`T#+@ad;|
z*nJZ6cj$+|!%k2DR5}UPP2u1Ne-1xi5Ohf~G<2kd<NpBs+J&-F?gszW-v)mTfkQiH
zIH59pzs;H8O?@;WUWlj{A!ElG`jNUTaFh2L!4>Dqi@YWAogPGP?z_hysl|Jb4Q+FA
zaQz79-v*553dU~mJ*FnQ+W@zm#ITC~uDU{t^*=TZkYin6F(jAEd$uQ=PW+l=d8jn6
z-_1^O`cD?!fBgE(``v$h`W1ikJ3e<~uHd-Yhu`zlMdvKu4T3B54(riBFGy5V(orVV
zSy*%?j)?Nzf&!bTaSg%Fi6q$==gB!Z7F=omN_~L>Ig+EdaNVu+YQG%j9g~3)nIS*@
z=YYI9`GJ?^H?<|dZitcXTyI6QnKS!FuTS&32-D`1{I+e-{dhMvwXJbAxxd};wNQ(@
zZvKn13ASn&nYW^l^Q~i~H|af^&&HHQ@6l{lbnAPPNrT2Mg0;~t#%iH@&2d^ty89c%
zmlZWa&+bR(nDrcE)+2ZqvnFSMjd&2lEeFHrTYcV-^>bd)Cr|UkIZvrS>E-^@xslNk
z<IV5;`LFsb-r_{@_n5BWhN9oR0Jj%CPNBw?#_gAr;K<yY$|IBY=kM|}YoTsr(-cf#
zfTA;1$_pqZnC;4m!o=xE30iJ_aDrsa$j&PokPgY6$5fM`kxtIuU(&60)*WC**po@O
z=pQm?jb=M5?}|N<_L{<W_ghniQhNEvnG)8poYzy1nQtN+&lg-o_a_=xcTd8i$DY@>
zL1oIKxq78M3C&49Cxs&5mUVg(jwz4a2rH=kb_f**FWUtxM<V#hxI*RNY7KN@?}K-!
z*@=vz69<ZE%y(wc(Q26Ktb}_rnV)Lm(ja|@;MZIg`sjC%_c6bTi7|^ucNOlJv_R!F
z0slR~%8iU?|16df`$t~*Lo#Y|8;%;(&sg<*H&Y$AUDo}gtfd`U%UssO&x_T{P!Rtl
z%39KqbtjkgobzK@P2j$a*$K$nei8f7M|C`<4^A%8fj3?GTYnnMrm+rx8)ZY_k!^v?
z_UrAkT|&0-ZuH3PWm<7NVxfFq_5}=Lxd~^v|D@9R$Aq)iE&<S~tJK@fIc=nLvJ`WU
zZa@qF=Vm0wV4k|m!yD-x{5?_DjtR1MOi*VgGbrUSBg0-3B(8h1i}<?bNGHDdEJ+X~
zmab>?(Z;SBN@bmQr|hgfsUY!W?kfRW`T81+vhNzo;>!@exU#1kf1d_fX+es1l}dkW
z!uUt4z<|XO!gw-^n&BdRbb@QImtd09^Lc}|K0*7*2Np$5uZ$X5O>L{FchEyem_S+U
z8YSfv$(i$qR3{5R0;O;Ba%hG;$-=KF@}^}YQe9yaACW+3YNB69CU3G;bSBR=FOln%
z8W0U@FHFvUSCR>4uL-=f{$cjNYyT{654@+=IhKJVif*=N$1*qCvsgwNj+P8L9;F_e
zl>0d5*>P{9yjk&WT3e(ZBO>acywe@)>>Vd^Y<k3#Bpbjpl2i=so#>cxd7Snv<HiGA
zedzaO>*eZuZo6#HlFjO4%v9f3P%E6#xLw9SMfH_feUD&dAlt0%vi&MoU$v|6Z?3*0
zw##^GEMsBf^N}{FO8^Cj6h>)<BruCEK&o-DkKV3|WUh*G*VfUltpVF*e1CuIq&Ll4
zQ8)X!toNN8<7`9QlVsH}IL>~<b+gY!v20Rn!W&(U*fW5b?F{2(L*NrQ1A>{GCdG>E
zpd#nyia73w6`A9ToE{f`CXEir6&dL|c#g|B_?%eXCXYNahUG&9dhT4cynR!stsIhH
z@rmDOLnl4fH2LW*+4D^T6?#(+w;AslD1Ui!_Kubc<!AHV_d&<-Jv+|~UplmfO#0C8
zv!avpYhKHK^A*C)j&yZ=?YMDiWwx2G;paCXu}<bGuAK1PO+Wc1y+M9KW0RP4kYDhb
zDNW@gO-zjAd*Hn~-?XCSwGf7G_K6PU$Qoa$3UrOGUUUYIAcJ>-eS80mhoHPb%AmqI
zXx)|C>RoX`_zLciNTncg1vR%X)l#&Hydzd_{uDvgmm|#A$VWjw0Ov)scQR$`@=Vb(
zO`Jimg+WbUo!VvEmr0;~k@l(Z*@+sN`Fo8_<W?1wOH9=60_g4nTt7GqtL5stT@+pt
z|I8=jnQt~@4w?k(N0gUEb-mbsUfq%kfr!{M?uJ}b2-_BhXMcm_*^x!zY3M)U0j$rk
zUdCGPgdz77o{8+u)<z4MZsW0180<10fmijYNyG*&fTrWfHoVb;xy7hBwuZk{$zt2V
z9KV)VPl3F8{3x?r*E3r5V%-fA_rC=pXNvCRr+r0~w|0_M>bKUH<g})s-fCyuj4S=e
zHHT9n?PyuC`XrXC^S$f-t`i$|{ZyQMrsCu}8Kp&5IZEb*3qS6Wr+bA&UYWUfSZxN>
z00-1AU4WVqZhTe-1x;Ov-kZ>RWw?=lyiV3|A?_ZzS-MkUw8^icTH4}t0$geqaGet9
zS^4w%E|ibXoXj!^Sh0=dBMo&x{{Nhm@z$)0$%(_LHoT29Fs$q^oX3#wtRe3<-d8*Q
zVYv7YwD5-vxrm+HA9Yg<&jNBpS8Ks14M}QnH{Ixx+usoCfzI5#Tz%4(@&@Ml|9I=L
za3y}P-7mcNQk4hmsV!Vv{Z~o{-gAA6^SD^eTg-1RYu(F1;;DxrOm@$wN;6?ajEyMS
zP{oUR-4GYDq0GJ%&A}L;*B_|5qT5uAZTg+;ZK`{_Z6UX1dD)p7Bt*%L&2uY>1=(;U
z6T4Xl?6pxF_d!u548hIST!}3rkIwzN9gjhy9+m9_`wzpYi6bw3;(#8a)^{Fs=Zl_>
z7(+yqZ1^K@;msxdNiB`Y4MHvs&p_~jg&^_zLo8;!Hw!r{mUx}N>OX5}?<IRqB=A;Z
zSACP-TD{l!(LWJt3CTZFa@t$2pG?sR(Rmt6dqIY#GTx<;{WRQiO;7B<gH=w}Sm0`W
zMzv(TH#e#`@b+In1uucO8|zLgyqyYJ?*n^YcqCt1y-Sk}5&!TfiJror?!(tBF3QU@
zQN<e9qbqY*<+~32T~%`<*qe@I!>Iz|$|W5<x2u2-iuzd>EF3#QNYdWdRPUz;y}^&<
zM}Gu>Eq5X(NVWqk10b&)0l&W+?w6}F?cHUcyu0-icnjUzDtn9QZ>PXJc{wuz#CANt
zA*PbNwwppON_Du&R>MPK>DxW>vLksS%vW7s2mq?c%YMoHiJ>>UG5Y;bznP*1I|<-^
zF@m^z7)Bhg{Q;AzjSZAlPs%aTUSO!=fdF{k$`@_vUlDj8S=PEE1Fyvu(#6-h*ULdI
z((j)=%bN3iYmV-(8ZPs>xH^TyKQqX4{9nTV#R#-l<n_dTU;5z!?;D!he$AJAa5vt>
z#Lv&a+)pSqAQ*I~Wk2+0%l=vNhK1SN`Cu$Z-bI$l!IE9bixUU`3$D*W7q$e*r*ow(
zbdygzfm-GxC|*_+<P(3qi3y=JF57>&pHO=5{Z3726psbor-+Ln@fv?Iu{YjBT5dlg
zoW}AsH&r#x(-*_MC>TO5*|1xl9Se-77EOs#doVWb_i1dBjkhy+E#3y+@}1{#X3(!_
z4~IXZ5qeFMSK^-I4`eJd-i9?1t<OnA>ksb@YeX&H|F5XUT!NPaA;&yJT($Y_O+li-
zx<q93XnQ5R6W5BUJM0#(g)%kr&dM3?%OO{jsA=y31IXZtiFt&2YrO=v^x+^e9vbsA
z^Oo>}?fEC*W8RMh_gtmWiw~o)^kMT{c_OXcu{bZ^+}rj74Ri9t%bC!~wup4={0YcE
z-f#FM5+z3<Fv4-v6*&mP8rY<*2}EYNBYt>oH<NUAu7W<QptC=>fV}L>P`hcCo%E7n
z3r{^a7mxk>0>rG3LJe*D-XZJsn{mGe>t*)}))wzjemhQ5Ot!$*-s8*`NSb?SKm2%6
z4tZmT_%WP)>(t05qR~<un|-0l2%CQTMl<Va$~tdH0hBoGhaH&h>`3~WA$JJg;LPDI
zsZU{m9(weH-<w{DGsex<E9My8kf{k5aB&I<o0v4T)otHf>sRwZ8dZ>(!^i-H##oIn
zW_d#6t81-so2uCoT~4j~$CsPVqt}3;BtKKh5}udU_Hv_3)HKpOn_LuZ>L}>_!3w%0
zKLg6lO~MLBiDHMjDhQmem*vA->eb6m(8b!1sauxHd{_{^hdVQT_XlFGi|@9uTCz=j
zRqfC%(1XNnjHkNzpfa@9i)8gLNX)y(eVECIus>!|#}asWghL6`Xm3H{4}Boopy+n{
z!Iw%~a6>s%hF+hzT8ZgHr|Kt@=qIBEc4QfCi<j{nB+liFh3g#D+dlSP6nNjT*=uQu
z&ur@K$4M1$-Q$*jgle)$?L|xQ3X~8ewifV%ws~IS13g)&O4~vz`bir+6bzc6ANHk!
zLFaTly{@dm=;y8MR}=zd=K+D^G5csl`Yfu}M_p2#IL>kx9pBpujnvQ3ZT@+qFS#4Y
zk`HY5^EXE7ZFA1#=xjSXdk52_Ah8#J+ndvgLHwe4?A<d`JTi$VUlCQ|`Shm-A=z7{
z%4Ml;+$>k9jJND1Wq=H3DMQ9PLT&23`2xu;Z*3k081xySqQ#!gbX4@PJ>#BY<TR+K
z6=UP?1iVT`3zja@3FOfts?pO7Jr#zBz6ud|H~r1#+-q;eON(W^chQmo{O;V~JbA<e
zj$Dka#XkBc5?^OeP|j$acYyJShPcFZ!N5q#<NUQl=D&LNo8Ldy-@Kkpgk5A>WkKtz
zRQF6F6qfXWQsW*<P%!XUVC5uWVRHFavh`OQ3|iPKyxcmZNm(<Ga0ZlL+jrD1x_YJ6
zP;t2XjUrzuZpfbpmC2SVaO`8MJ5aD=u5dlsVco#6Mi=66ExcL%02r>{-E#i3Dwb0m
z7~UM^w93^LN~vx`a(KDEX1v0ax)(c_4`A70mxn~jK4y8y+1hFH64&IWc#{U)UX%?d
zSe#}r>p>6<LP(SPr{@js(Vn;Do}m|IrRT~D`TR3_Rc>A%i(XX#dqC#K$k*eV$mQwA
zA$J*$<)+D&Tr#t>VRLtx#&JGItURrX7z>k`8VhOp#Y*fLR0402y*T_kM{C`%*l;kW
z!~M*y<`?buhee=fEfA%Ir(f?zu~egI$fX!VdW{Wf_za*3?cY8Gn?YlE&@L{E^&!J%
zw|K(f)p=0thuK}wHo{-2ri}OaiLv3Lo9H8|<YQ|`2*69xO5@;UHDcwc$x6o$%Ulfy
zoE@uy=`1gttQ!8NuZ++HRmwj-PmDcJjy=zaJ=f=+0kvF6PzA8s&)=8c;OgM@e7y#V
z3-lw|*)T*E^5Lu~pXyZC>(w@&Rj;P}Yg~n-%(E}oxNfDkc*%@>?zAbxNKA0D>PrYe
ztS&TEU4KHXqvXsB=M12u3+?N_WpIXYf@9LZLL?m=USb?BYRFT=S}n@1q2|qwQ5+sO
z@89zDf}|Vj2d#K_hRhZN9e%Th21gAXQ~@Q{@%AQRWjh>P^R;P>-n~7<K@ggd6eRv?
zui(mFi~eA*Hx9YOUI*P|uhD&v=N&rAULP@u67DJ(Gu|Gj$B@U|OZ<DlGg4L^x$U4c
zuv3uxw2D}6lRX2Y+y+1{_dYK7UfbpVq`#}%;LGLSDw$2hi#Wwg)eW1X+&9M|dDi8A
z+BCCBY@0dv`Y3mka!X!5<e<3D?+)`sa)y82NuYQyY1Yz;x}IX;wuFIlO1ubTm=_+Z
zB9kc+{#@novigh2o>q4Jfk?q=mjCw~g(KB>*5Z(67KK;3_K!I=2C@yxqj*n;8~AEL
zwBUiB$%e1BuEX!r%NC(+hsU_G^~cA`8tj*;>?8V`qcLQMlNs<+b~V+6-c#uN?YLmk
zwK3)%7@>BMdcV1ctW**?k5Qwv2NSG(;(mkKZhD``m+T>%B!5=1{NDBj$!MXdVuj{j
zA;aK{QQn)Cx3n|Ii^jpqabK)9`EIJc?5xkJ_1G&|R^0ztcY}4OT5kR?HUV@$&!0)m
z|DL$U3>%W#ZbO(LO*^xRTf2WS9!qhrS_01B;;g2x)&9VFH#c=JH1pZcHM_}!4!4S;
zKRqkNGxvv&1x6x2+t#0i2#;DwhClhKA-I|km|a`FV|ma&NgfRAfYvrA96yte?nU-)
z>nH2q@i4}A=ZU~UWD=x{HRhVtI%_%g%KI-U8u~{RmCWy!@FKI?d$Is#ihlQFfqR`&
z8KX0vPw<9TIO$g!&RjLjiYE4ONU#dYoEHpQeTOQ1$STByI8_z4&eE&?HT38l6V^q+
z-&d2^-jcRo#lZ5@JNTIs3KUi<H?tElXFP5egAV&fC_`y{@5hFz<CaCl3~s8O5Y7}G
zW_v`E#Z2nOh1AY5gc3W|R4M?%CDK};^|`!s+QR8ejor+`0a<NQ^xX@mbo%<OATpcM
z-i|?H!)>-MX}FL=;Z=|J>@W!&{B?iX5$FU&&ajuaF9G`;*4cp%Xc(jL#&2*T<~ced
zxL~bqKSHG@+XSBmYNUuv?6@C_CE{d1GgC9tDE0?0>!}6RVKlD=)fmlpc{I;Z4-uu5
zo4q@y16(K5yj(sSSBXJ0MQ^<63>G~ii#ACg=90uy%5&*g)`K2c)5Z=tBq%zCcRDhP
zFimqf#GHq@)$NiyC(&>{Fho|2TJD8%ZD)UI^HNTgv2BNjeC_6NIB}k_6NpD$+1(KW
zh#zH$=l+QHvFVhEqoF4uFLeR@?V;YZvC?{c;hVVShMA8o1jfI&cpGgn5D^ga9y$fG
zZO%R+n_G}J<S>K#;eQnvXFl}nn2fXtGiRU`h1ENVZpLa=j9{O_1R0K2QpP*vj93BF
zrG}`$9(*PLA?YS7QLYj@x)Ph?^Qx8D$c!I;+{a3cic0LH5@nPK`#H$^Ulwb~eE)uB
z8%P{4!Rd%W>-)xb1AAF6DZ8h}LU$W97V9Zf^#1En?riU_!&EAI5x;+Q2?F*{nm>B<
zwyw^NyI`0XNtpmY!~s4s0{je3g(akcoW9$2wYN(2=-SmEsKiO6g+pCKUSq7QEU<__
z|1|`rvquNr8T*78E-$QepRh8`@MkTqCkZt^((if63v25&)F!tex9oImm8Q655)am>
zGEFYkxjfk&_#A#Z4MBTr=TRh+x2i*@8EXHFO(<bWV#*#^VAPE^-od!b(K4@jGs24b
zcVOV{v_*bseff*u@%QXh)FS=Ov%mS#UxXjWjN~sG)DPDHaQ<4l2R>r=V&1(=0CWl_
zllSu_@4LkF3A~D1ZI%3+d3+1JAN@{7RfhaRWd(Yu*Si+b!dbG4w|cXAHWdAl-C3kZ
z+M7s9;O*(EY24Gwd7o{v-Xt4$aqm;ryC6}k9~Ai@F{R^aa>vsp(UTOYwM+vo-hQM=
zaNT&5vjjasYT#|6a@^*Ua~gOJAA=w0XO5}0X=QuD$ZF3KCQEIu%UVY%Z5fT!1e1;?
zQtQgJ!(CsQOW@SfNowP$-#fIp9WL(&x&FM2<PN;r90Z&a2F#~;l~we-#P@GzGAmnh
z#U)NFNTx7fLe+_sX78Y1b3+e5bBhrIk;v`A_RU6<>q!aH1_F8&sYq~3xd~xr#1D~_
zesKLrdq*g*)jNv)d5QaOvesr^4~j1RZ-=6XCEL$ObAhJ*@dd4>z4vi)5oKI6Lo(NS
z@HJ_PK8}O%{1%<j-`q1+;Fw`fe099DuZa^MmUeUETY?#Bj;aZYhW{R2m4MxHva7YE
z#4oG?e2O;G1qOGVwVOD{eVwyf%59=XZ|8ZR{<msL9HY19b-0IVhxUmM7r@PLYcebK
z^H=#RUL(@<_na|nM`b6bFpVbKpR$VXauxN_m&j`Ntre}!IeMBc?3n+NL2D9aaTb;9
z@ctx7odR8Z^9X3StA037ZS6`D$nE!AA=m9aMZuw(SN6yYN1>dyeMr%^zf#7!5+siQ
zTv(T87!;kQx|jyh#|E`pI_?AEdpHOpn9e*dCYTC9T{v(@KEQRQMu`VFDV{kcmdy@J
ze4$x^Y$cYhx65`$Wh|S`5idm9*iV73*EvDiGCr1VXEl0fl&#RRJ?^sIdSon{C^M|r
z#PXzrJaJ*{tBLhJH%r=@pA4QoOMDLg**|>VR%HLFnNtBXzSYlqisp-5mZ0X_weDCe
z9*EUGTx~Dj6v^_P<DU-Hr@P&!;4FmSYg}6&+~S0xy%Rt)dp9c*ZV>pB7A6B<kLr1L
zqs9oV{Q7im**ZdNAI=8Frye`&QfZZkU$DQB-DHzMBsXA-yzr=lNnWJnjCVN|nil>G
z9`ujBMV{2eouw?a&d?n3JlC^iNAc9+ox;cb>|j@T@uRU0k5tvGz7U|{bC1!&g;HIv
zpUm{Kf4AwSyL@L4RPr6_nFMXHe^wHBjW?JeYy8qwIq!+VTDt(%7~+9puN_gGmul*f
z_LlL`>MiE41O5q~R)iX`Os{$vl^w3co1_I}^GhV3wLqiWKhIV7@F`*;88w+c>VC$j
z>fEPSiA*f1Lm<q)2hn<~w>4^pT>Iv7T}lOE<w=qs;23{^+QPtF{84|~o_&hnw)NqC
z_ko(b_@iZ0i8;Z;d;faO*mi?{FwZjKaO8A!UP%<VQx9TI?6ZldO4NH4m1BX4qUQsM
zNyb0Z>zrg%H;TLZdF<?+s+_If(K*Oly<xe>jCX-m3sUa|sdVa#wuri3KS>*>_Kx`2
zolk3XpJpj*M>kr$<$R!DUUQV8V@>Q%MKAmTu_6BX-Ar`6L|Dc<KkiXzjG4wQ%G998
z{~RN-q4YPr#6E?GUjk`83=?jrFT6pnuKTfpcj$GFo^I8*jCV1wMo*ts8Af|#>3Wd(
zEbNbe6&J%?agZMjXi2q^JFg}6k$zfJveKE%ZB5PPQU9Xzzm%By0@d!Ct9HBws?}TY
zFUM6pzWYh^$bJj{T+DBm@Ug`^Tv>!sw-YKd^s?g}S_Z|fK`=A%PnoJ<up@s#-@ivD
zQ`frk(=-CM#rL8EZ~yDncL^Djy<XM3>TIq>z#gRpxGTzl@)r)B#t!G&aOEU|dfd@X
zACtE?ZHyGZVlUPo;>El}9a?<dqOTdR;A2;3_?t?@aGu`fJ;Tx*k<F$+P;{fvm8mII
zvEx;&wOlJ%U|B*|yl1>A(XcVWh>jP)P?jO%-NmDg;J-A2vG+Y_Z$y(=2aIm<u9yS^
zeI@D)Zfw3;m1k~szbrgC&b6|ZV~10aJ++9P(LHFdGILC6V|(2tgx0X7G#8DLt!_<F
z^zJ+mxw7sM%*9rPfzsaD*326LWRDzRKQz+n61ql~cohnl)e0#BF_Sn4;MyKjAcqd-
z3Ga!0Kgxg?umLbybQhX=usg$r(<qaDTT2{_2c1>@#Hs?{7TDhpdbBUko=vWB)5Q?c
zV4k|tPjWWv6OC_79(O9LCXqPz)-uaBeZx=b4Wi<nYn&RlnAgBtk}-9>4tIaE=@54y
zNZ-XL))BLsopxJEu)6t0JwO&dO<cbcH>ce?3;+x}ASFEMTx;TZYohLiXyu-G5(LQh
zz<w%E?M>}V%a(Ai!L=CMuk8@I`0+$I3j=7R?WOSaCiI{OI@-3`v4pnUt`67ylR57o
zI4peeXP`;$3Xa#dTc1q3q$|I5;tDhc*M)RD^<~M_{r#X1>X}o<9IrEq+v4X`OUN3|
z`y>*4-^_>!zJdBwXP?5O1khz2%nv{SP~fMB*?CbPy9jf}DUg@KDRXRyQyM%LD#izX
zHtjo1In{sc`KU8o`QUH<Kv$M=h2ixTE7n&IebFy_As7C!b$I#QQC!t`WqU>0mb%G)
z*^5)pZy9@V`vF{g$K`F@Y{#uI?K@1ppU8(Zd$iq2QEtS^96x++uY)xbB^JWEn)}|q
zJlaofB!I$3JFBPwqC-EG6et&?`hEcLDNdq>BUYJ!+t+@$N2Bd`;eXk4C-%3K_Zdg8
zzT{E4<WafWp6HLR|L>dglBsrZ=RZFE>DzZd@Qoqg)7B>_ny5YI6>B){+6Uh#kckx;
zN5Q$u+e++XalqE|r(o4u*oiG2fUuoY)Cz7dB>p0KroOJ7l4`T_nt2Vqxj;!1q(M7T
zr%slHXNWg}jLp+Z$xJ!vlV!5-z!q@Bka{(XU@iw2TpUDJg%g@~gr2Hf@+hLc8eABs
zl&HqZV)7YuK2KY4T?>abD-DtBR~R{c=jJap0y@mc1Gc#TkGVIGue!MY{}bS91mcYr
zB&g^`qXw%sC|aVRi3WRPgN=J!iwhL3S|kaeq6U*du5Ye_+7_28wYBcMqIIbWPy)EI
zxPU7z)%P_nh?cdI@AGx$eQ(}L&`*Eg@8^$S9?E^c=Y3}8%$ak}oH=u5Mk_p42~Xx)
zj8S@)f14~}(!pFygf`VdeS*22sL-wQ+wc^cQ_S^Rm+@niv-d*dhZp&MBACJJrZ47O
z3EmkaKmQEH-5U9fAN^?@4IWWC-}5NHAd4Yce${j>L1+w98$h3nrQH+;O0m^;=~d%w
zJM9zJ#oldoDsIU8=0NcV^^hr>?7!tnVty_B7Bb}4s`BE+S2LrET&QPjck&p%v3MHS
zeUMZ}S7@RX)H3x}|JBC-5)&JZyxV4V!ek04$S>ImlW#xmz~nPM|5unmqPGFYQ*$|l
zdxA&(@%U)^(TfaJyNDwqr8N@oNWY9nNH9@9$+8@xdvY(;vw1--&OBX|c^dDY5|KW7
zfQd1wxm?(b?6+^&Bv0o4ig&E@mUsf){?Vx*1b5S8kzFifq;-b%e4gG~Bf0$OFLjPY
zv^Da^zk>HqHT^o|0{H9>vjKlZKiC;Do%R=ck#i}BF5BJ9JyTEUOycjZJweQuj8qs3
zpttfE%{Deo4|ww{7|n}(1#2>wxPA?9Lz_*sp-%JrYIgs}^g~g}d-)po`r?K~Y@+jK
z%amlKW6+x|b5eo4cthIAk6nM|AoGak)NkCbc6-qy)`mktngSg82UMy6aY<fNGX<zz
z{6n);Zqv!S5`K=#Z91!97t93cSyNExAA-3^d-@z08cJ-GyJ!m{Gxj^7n66-el1@}o
zGBWR=PzD@N_-FNXSdgK}FgkS;NrPR6_lJfu5V(@%=O{zZAOm`iChVgOYq8#`;hykB
z-IgxjVvn}Jg0FI~4`>3uk=%Z>gFocRPzB~DxJU4J1@OBF{uIHheE%iP5-MqE6f5!N
zCHj%~vhcDXj=?N{ug^?9;?zik&J}1z2h+b^Zlg?Fyko0)UjD9i^9ud2Ws{3B`nGiR
zu65}vn6Ig0(DnWWFPjd2Xf135uO;YgklACSA$P?Ap%xj9-+(^A<p*%<HyGRnCxzhp
z3F(JKN1sAz(%ZideU)hVzxvcF%|92>_!bWVg3+OWlVt@PUGU*ps$>z(v|-}Gf;zIs
zlff@`_ec0DnP5wG;&<XLy9I{hw6Ola(aTaCL*w*-vOILG9@sZJ@&Y|<C}Ryms;!i{
z%)}i^i<_g@e!_rSR@^+9H>B)Xdu!3#vgoz<!jPk|_J7MP@`$$}E0tDirf{4l3du?o
z?Vxw8ckEP)eg)jFtYa!$KD0w2P{uQZNCAY{Kev!}K*UOIO9@J<ofr3lmQ7oz1}^}$
z?AkrikI#N+`msmbd(iTdz)R!LJcn7&OJ&9Lh2kpEN0!Tq7er?~q-GVbjn@BF<nkgf
zz0J+pL&O(<=cx=^fjdR(>+EAMV%TKbsLO9776YV^?_N3x(<~krs){FkN3wskMh$mK
z4C>=4f$qrdd8C%gWUWxtgv`=4FH_LUN~ZAl&!(q$MLn`0UUQd~-uA5TFA*D*6)%d;
zzyk)>8>98w;0xA+Xf$>1!B6RswPlnx%uwe}#8nRUWvXwC*Q6P*^h_DY)<#kXP=~+f
zOJNpy`|uFonLG}FUHzTKm9%e+VJ82V-~P2_*e@Kb(4T7jPxbXfz5<_KJ?eo2$$!P=
z_{peH6?w|>q;fpsaujLPlbZjUq<%Ar{u>UpVp~YZ63}dGXXP95v5CYRi}eHY<>4@}
zp9o@CgXkb|uY%Gc%gPeeKpFnUFl_1>4LIwr>N2*MI4i>xwXLisXPK>(ANQV^MagmR
zxnP)|E8=4`<(bK$i{Gcp*t$JnUMvc3kQFR;`T;|>Cb(>X>7KvL3XvsP-we2Hu;dA5
zcyO|}f8PI$PgVw>I){%WfIwYyh5eWK6n5ZKV!3|+pVDN>RuPSEDZB@oHOPB;{aNtm
z<+uzpLv)8evh|(mDzejjQ!G>|uTjeyb`V%p8rKalt__c8zsZ$U)fI?8M-5HIRL<TM
zPd1=KdZCclPTJpWIt44)ASf%AvXDabs$W*1mS-k}t&5baZCOW>{}C4jr_P4YGq~!Z
z3%-Q;3SUM+?G0eQ!9S6W??{4a_?<^+0Ew)%cWU)=AF9J(ATTebcD6=V@I`;f_W}dL
z0N8(|G69X^i#E*DS6Z*-V{_SP9)U(2Vig>Jo_J6v;ds}s5hP4u_Ge6%r~qr<0-@ie
z5!%rZGG9ZJ;I){Sd%AtKcQ4Xc2sYPp)0HqtL`LW%hcBl~m^s3YiJAQ?y9Hl@43d$J
zTu;DRyihj{mHQ<+QRYpDFJdJ?mM7J&@v-I%sC_3-ov7W7-lxkdtN#LRcQJ|udXGVK
zXE6fH_#ezi_Q~vK_f!>j_<mXUB@IK<w(F|WDNdMgs1V6S4o5fCTNfF=iZKr|uz8$A
z?>MDsYj#b{q)+E9Y3fR+NY<yK_=QnD7Y0Y?9eUf;fmtOD>pA_^I>m`UN8|Nqn;%cQ
zX$MRRTMy&Dk77rN64q5sO`v7tEQ{9c5}kKK@4C&|IxpNdXDhXqwHgx$*efgO%_^Z^
zBt96P`ZWw2eVXNdk5h`g3FCEt>-oV6O6yr=TFa3X9PUnx2H+Fa2KFcJ<v1sfI$@X{
zlz)wuyMiIsdMwA95oE~sw;$~22Fl=SLgJslP#V>%*3B9R$iGm$fpJ1kQvVq&D|qOw
z{X$CI48yP2n#MmM&=YxRZs3*-4#6Q`S$?a7D-7U#oFBkF*A4DY;QY5;ZLy<5rR1rU
zQk=o2^Ea~+98UzJ0(v0J-`76*UlWd!x(+4T!GvApeURfn`u$=k4*x-Ri*=V@YX^Ws
zI}JaRZt#x7@uQ&>$L0+$SxRCVuXJU!Q46N@x;)5SM8rB~<m~4;*qcLzIJAJXTih`p
z%i`0pZ;3cdUJjt3jsl81yDYIAaO(o4V~eeR4yeZUSDzFwem|Nlu)1ccE*0?~J_Z%N
znyzSLJbCirY{)hsxjHwz&pmZF0;%0aoX53NOT7(-J_Bk#&7dFp|NSsoCc(rvCdNSt
zYF3;eaH--H#poD`njRHA+@0t3zxzte@#Gw(;6**3tq*$CpLqNiX`-;gIW#)2$tRuD
zgQEVc*aTKu>Yq{?zhb2%I<HrOTiB$M)Wal865Wi`KWAwmTWt>sn-1-B3UU&l1wL)p
zb>xYA&scwCZ_W_n{S+to<KtN=E$qmiy1i3H9ohW{XmDy#hKIuZlOLUKi}CeeAo&*~
z<nT{iSX4EzqI=^NBFQXAB;u!RTL{)hh&EpCWm7bM)b=M)Sn5x8$5A|$3;eHd=!nPq
z%bT6!v5G7nE9MQlf)Dgjf#R`raI_&1mpDAfn-HXvbX3@23(%H+b9-~N)avE7U2bSD
z<3$*bQwho3XGcn;nv~knVs}d2y`*(=_98re3#5L=IQ4Vit`3PjDbqsY98Q=_kQZgI
zGnO@H6d4pb5$v#$(yCY7wrCgdikN!8zr*nqT-dP*BrQV8ik;wW6ScpKaPaN4H;h8P
z*%wm5?7#oHyu-!?Y%rYhJRmh={5!69+)E|ls0`2H&*31;<K8SCo@3ion)JjH>a<Nw
zSdv!{ppLVjal+FZ8tSY5Iyx+~A?^?FYL$(#69<h=`m5UNy-1xpySa9!podIEQsdF6
zN+_`|GXg+1=y8@yuSy*&om=*i+89|Hj@-2w<CS;`{7Ijf;!RIO|A;x_pGO)wj{jLm
zIhr+Jt{i19M?s=l_4;F#qsZkrF|29L$R3~^JM)#nxuKT(3COX4SN|OSQ|wS15uVK2
zban1qrl1*9j79u0<sue5ky?*D*`Srotu$|e!k1>BnQn1{&;E%Y8vgHuO@5nPBtECo
z2CRCDiUs)JjY{z+kVcEo3VS%L#iuF9i7rRF#nsAj2WkH0uA(!K4iU;`4r|^t{5800
zzM;PMzhM1NZGeN2X<MiF<J?M-`gn^CGab@`{X6LrY#YSjVrB#A2L6ehwKA|JPa3L%
zA}6QcZ#o+O$B)5#gZZAY5pxgI*JSR`l?b~>4zl;i0R5=jUS%0W?3aVS$XnpISE8$~
zfL(rYygN-I*wwyWydo&>#UlB{-m4ayMjQG9OLNj;Ou6?7%<F%@exxdJKZD$$8+mVF
zzD~f}py~RS95f@8bfqQDSp#rG&!O*VM_b}iz0vsXwOO6B46xyIe<`>`{|f!Ea<_}l
z;Yy~BS{-a*&roPr1ElfGp&(1q!%YCwmT6?ma+QPjOGcW^b4Aao`|Ktm!1MRlTTH6a
zKMG%xO2BH)*tU!c$tQ$g0|&8jf1y36_LGz*BX<Oa`=<nThjRMUeg*YsGLCdmzni_Q
z6)x!C$=--ms#H<@8oo;J{p?9aL2-;vj5_yE*E#rSj`d2?VF7^RqfU?Z&6xh%SxHN3
z&QWpK@1@E(vsFLY%cPBM4l>i`Ag$9n2AtVyuatM8sq!?lYn>nai&ITx7h*YE0ZVG{
z(#i?zxGa(+``@&T?(bnK{b%q@&77jyxa8`6)RMEG$e1Ove-`VIofbGcmvpzqnJK$+
ziJP-vKlOwg>}mQ@D%*r1GK|Nzd%0WBTH{SKjHzk_k=c6IAIzDnvXZy1;Y~bA+_gP}
z=eMspJaa$if!nM~)uV~UZQo@YlR8LAG_nK)FMd3YU<M(7?r1t#m!XF`xI^BP9K0<f
z;)qi0f;rg3xZqZa^tj-b={Fht;zL`*J9dy}6WBpaSAtK|7Agml1T~H(><MIY?#s#p
zxZx~pBRMgY)xPf)eBY=2Yx#$IL}&B^L{W&1d-d!jxiej+;+ALwXOK_|7nnl29lbhq
zphUe<mIAtc#;ec>KKz5A;DQN!wudqH;FV4>Hoa7z;if8ai+|By(8Q5Pe<w#eb^lZN
zd6Ajbh&C`2#5z^BRZ4EBNW(-am#bNs;}v>C@KBp}yp7Ds=gn^dmrHXp!O<D&@yQyw
zIYXU%;|&{u87(p}XQyG3kx>W8hIPAE;`GccHH7y$hFwE}Z#jc4z_{DS=;OUg<Yl~G
z9t|KJz1b6IAGH;f1-WMXXqL>(g2j4apM<qWvXg$G-&CulhUA#N@lcq4fZf}#i6`-K
zssxOd;esnke~#<HKZ5YdFpa|Sp>r(1d!#d%f74y+mVuXAx76&JE@Dxgm=3koh2z4#
zFo!|2?Nx=VTntl8d|6CUb9}l4>@%aLH>-(~IBR9Deu`J)>;!x3Q#+i3BXFyCj<<Z=
z3qLwr7%SL{qlg55|EFwJ4Ocke7Am|Gfxjla5mWOK|E$*>bZJRSR)KL`A!|8u4XbNX
zCo44>xj5|i8>pOnxtz(!dErnSD|CDNB$;VgE9AqtykzPw;K}rQjN1#qh@YcP^mQs;
z+dZiF?81=M&{rQm|FBDmw<v)CqJbgE?FHE!KpGt-@*jL)kPSZ%L7FA<hX7JFoA5v7
zAe(j$L1wGWi-Gj-akx!AB=l9*zQ5zE-Dv*~d!I4{_>uN5z?h>ImxL$%*51u)_z<Sx
zeM(41_RbI0ZtYzbKxW$e_4@{S^I;)KYwzCz$hs^5M45j&$T>TOAg#Sqf%KntxK)e~
zeT|XT-{TdvHyQt4X9G=7ZI+_kF51{fdiuvCfP3dU+O#dAur}^LhIvRk6UT&V-9@$f
z>YOk|{^)vZrvV{IqsTu3$P7i^d(X<e_RtWdQRHTWG*1`g*w>LGkrx6pa$EwKf3HJq
z_il(qUluw1Iml1ym`z>m)nsP<Xb(4dIiwyesH069yzG}|Iq63d5b3zb&0@Gh8s4_y
zX&`5_*7VdZm>3g95>`|~4*BUt`7d#a&#@QnP=2h=4ik<MSy|g-s5a@a1{Ey$=%hyP
zbYe_6{aS80{14dCXW{6hvKb3B0C^{r@S+Hc6L6%hs40zmN9TC>l*`?O^!%kA>qwMM
z<*0kB9EI%n+fhXXjS7~If;nuz4ATC?pcrQmrfv;oveAx*&R!1o@AdK(qY@5iTrqV&
zVi5Kgqk?RXUs&&Q<@1$lU6bsN*EoaW7}H^Yy)slXlL-wh=bKlsQfNTklQ|mV_}4}H
z$n0(cqATsd>wxr1$=&Z5;7MWmphwW3VkjUhO^mK~V2$DZmll6?XaL60hv^JFV>><P
z4|4o?(H<d2vnf@tAOoE&estyL?HB^1kFxyt-sPWs*NRI{2z}j6U$0r>)RB$96m!EB
zB1)RW+)?E?R7y&OOi2e_6eD5mP~{)6(i(o)kWkrCm3=-nt07%m^h>2DBfa+tWq=ph
zzaC_WTZ<OHZD2d+hQLh1`UGI$1jc`IU|HS3K7k_so({P;_74>zqrjiO*fqRH+%U}e
z%?dyA>JV2reoJKdO|yf5-_C>I&JhB}Z_fl=nlCn*A~w<jD!WUaq;f&Y5DekWF7Ix#
zkVB6`sf_fc=CZca!K$0sq#;V05d0vk{)Oovbp13u=9uPs8xmRR!J^(~H#prJ<`rYr
z$3#mY9jmT%U=>v%+U+6QT^E3L?bwN~D_-0!l)+f_^dN&{)hk`OWBY`_j8zW?%)i97
zVt&|~FjjqiQD;{DWOA5QaVEi`uqu8G>BaHlRp`Z*O#ixNMwpxT4OM6y+OpcUw`)W0
zQ+hJ;S~!Do&8#4U)kBosVq?KwU4zE=4wY}rbZ!8SI)qcdbz|hI-M|h9%&&Dw{xodO
zSe@_w)3v*^ru2W$Whtp<hLDc=kFEDrP&4z}d|B=+J@Ahgxn-R5C$MW3i*&~M?rlAN
zsosvcrRe%i?a{_orQs5quL&Vji=V~Bhrl?i6>nv^a<gTs-g4(2CP=UU&-GKhyyldI
zEo+mqk5ZDSXLE<iWZFL{*8y&A5#Z|TJs`<aajV`%oyNhcNjTSYGQU6lezn^F+J1l=
z5FU^Fi3=AlG`b`se@Pc{bf+T7bbo26NAi{F2A3(+qK-Pl?d(YP58y(R)E_(MoL%TW
zY#a0*GS*R;4T)VTZ04?)+w(j}MXW*5drh;b0KH$_LsW>Y(z}<t+J3YcdH$_+Dy#UV
zX#LGb_+eZ?vW}q9<Yio!^=kDP7=Q6bide;r+PhA`t|wZr)w9iqyvS@<?6vx7U&5`#
zlLzDXsn#ogG5x3~w(QxdCoaCvdg9;r2IPJzY=4?fd-wu_SZNTgbsZI^d$WU@9Z&x2
zY;a3G(m~hsl)ejnIlQlnzl<5t^N>%|WDd0qJIKtVJV*3F7sMb5c8hlcqJS#!2EFtT
zHYFaqgn!-I_J&p{!!l88FZUxWiPi5~QuLvw4^dw}4-N0so@*QNxZH3CxrvM3qYPg%
zkHoE1k5b2(dw<<KPFPCf_o=LC<5F2k_gO9CxBwwDNmyL3xj$1u4O6dM=T67u-OwtH
z8K5A0%VDq3wnv4G)<7FCGVANmyI!CvjjV}soM1X<wBcLoi+e-u!y29|ykql5%f;{*
zFGJT``W1pv&I|Rx_$QUg`h?6*FokMdz%p&qGEC&?%>4zE?Em`QwBsGRmT<Yd$QEt<
zROqI4Ew&bmq^%{AHBxK9UQwX>-Oyq*X+WS=_0@ZjLcvyFETD`c4iev{BCxAJ_NO}U
z%T}T=heU_u6Gow+_H<rwg`jQE2yd!ScX{KAtM|eWx@Uki8)9)5$2ZIu(zQEht~o&A
z1b$2L$q<}s9Ba0;P5nqoZQMOzNTyB&B`ocHXZOe^2JS9{Gjc%@&OzK{vl>Soho4$5
z{DKQ8m$}U+2_*fEpE(NUnA!=mhT5v&i_{quH#!+_uSgu9S3Ygi_n=<g`#7&=QC{jW
zKKbX}Ex8-IK2@lCRcKw&|5#`w4Lj^$!HVPo&vj){@JKymGyY|%zo@<yLo!_grDYEq
zZ>RPYkjS5!s=}F)4-e_x0if*<cu}bOYdDTIwHvlgTG;sw%R7F%wc@r;@hZss%jY<G
zmkS8^v_o9-UZDkJ`fdY(_;qR7cS4g9uV~`~#%bKBq?kHIx)gsKP5!|W2c7w>#E50s
z;i}pjXwUoD^Oa1k7!@^A;y4!!<A;E2tGz*2lFu7?IsX=KsU96@h>>G?M?>uCjr_Iy
zLTo^wA6C2-(8*zq3m2kwMYZ7+W3^IHT^1PKnV6ci1?g+kt}@f~jG#{42O<60pE5$q
zhm0Uf<!Gzx;<g6WohP3w>~g|^Du$Iwhlr!4sV7KeEL)NM1?+bW?6=XeAK+W^Qs0Oj
zKEBJ?@14}gX_orXcv@}hQq<oZUmP5cYqRmV{dwbyrlXk;e+wIR;Rmkjta1D>LH5je
z*)v#nk$g_T5OKyZNcOX5Jb?t7FuSc&2XSfE&$K&3ce!}a7c`Mpk?b{~v;mdUZvgA#
zyTy~ImW043vh1j$>laQ~FluPCZr_bdZ&fmMl$F<S%!wvHwu0Y})?=k+ZO}F?e8OS}
zZuu>kGCJ9B=xA@}(M*GTR}?Rs94RkeI<ZfAdoyRJ*DuOxd#D19VfV4B*gStan`Amu
zeK;LaDCUeY%dI6s#hORE&>v+PRQX<+X%ZlDtG(?H@kFlzWtk$f(4SLf#80K$rF<Di
zV$$#w-x1DPWb=CeAv9v!jaEvEJyqzDb*U%Sy~7AXNd1ndkgVzv`3nv<!C&FKcvpfX
z<!pE2_n@2gB!ge#T{mZXtN%Inthg6YnG5x_M4(0ALx<THt^`d*;zM4Ix4#-sJn4GQ
zv-1Qhh^x|J0Etc91Cv`(+#0R_05K@{Mr=|`r&M^q7_V`z;b93!OR8tQ-UYFahk3Qm
z9i2XtFBRUe@++{T8krepaW&eGr7KePn{q}CTrq0!($e+w^P&wfBkWSIJjMu?#XD{M
z=<MaA39+re#X8*`i8b2Wi9U}u)R8vYI|D)4B0;G=an#TiqliP_p?q4i3Tk_*0*O;`
zIsVc@5KMP3>}=Gy-BE)uMRBV-kQQ10x{BK7Rp<XIQTBGe)zZFTbmEM>(r3km98X+z
zr^JXV+dRmC_+2x;BD*y{<b(LMcGW(KYh*C(nJ_`A%7DSE*mhKXl94P<IXdsIUe;_`
zvOK#CZYfg-)KLLc+NCV9q;%!yl7yNaN;k~c%%o-j4?>`JL^<J;YMY9j_>de3_mXa#
z5s4s75NeE`s>o(R6|IENXO_NBTPS{6a6A{#1(NejMe&NsPm~wWuYP!RVrBV|x68TB
zu1DLSbqlgZP^gYP|G4rWmmRbsvV&A2HeG02XJ|nK(YC5IkzR$8@N_t*On$0<Kz^)c
zkSCCzOQ1m8^|0$Gmb4T@qe5Shz6(*oH61E+ZhA$cHFc3dlabu8f5)uqPo6f_c-5cm
z=Whoijng!8cF3R2_wY1oyhPd+w1R$&tMwpHlQOP99@Jx5el-5$r0Xp;7`NCL>T&1j
zz)eu}MYX$u-8$PUw~LlZ&PX4!Q6hB|Q0f>8@FF{$V*5R6A%-jniZgj=o6azQ|H*Ec
zpNt-A`@nyEC~eN=xswL!(*EbsU!Cm*6<id*58D;<^jdv}3##JY8I>BAnCri4+95fj
zPkCZ(y#CYe%L#f<eB*?vbmd1x8y*NE7H#+^R6)b`rO|o24=ig~8ErV7-lil5iY+<Z
zIBRb;1@Y*-BPqJFWX0E}N}5XtZ!BHkoLv(AeQQYr1_aR$h@QF3h838pz1=TeM}Sue
zr7^%X-X$P#r?f1Uw!){dfhz{jUq3%P`uk>9fY22-DCDrZTf+sQ#1>B5Z0cs8p-WiC
zwBC!+dxf@u=?Gye=d=R2^h52auzibXEk_K=t(eOb@+^F(?L~j*+r(-^m$W?zL*6_t
zWWx;sHUFew+2~|pxHAP+CV!c|;&UPS&ft~n7vzCtU?^uS7KW=h>SMbyHK-KDQfjR-
zZ98AuRwP2Vq~1Ub{15*@HSh8d_4f>)Q&gt<f3n!o2X=yK?#3MiSk9&$p=`jDQbzt4
zC^~;X>`nhhSJKpjLoG3@V+kN4&TuQ~Ojpu<8@rZtR{-X?beIEsI1C1NWcgRB!g;Q)
zyEcakf%VeW*xbbUU9Rte<OBCVhH+;EHDFpNU?esl&Tsd>6ps<Y84f$zQ`IhfLcQf3
zdM~`ne2N*)#G-O-pOD2QcBnnCgL7*u)|TZAh<hi(YnyYT4NsWKewKQ2H{-Q7b>sTM
z?{gz~9>;Rs6qxj5oDRoyln(Fc*7TEq&<lp19}e9aB=p9LT+rC{)`o=!c3If>WouVQ
z24Jo$mN~FJHiW2XojM=@b6s(t1KT?cW?iusUzz_?hthyBb$_rct{2%kVJh6KKhzcH
zIoMMMh4{%Fti_M3E9iju@yT90Vr8N*h7B!kSjR0AscNU-KRY>;Yj07gr{(frW}!T_
zpNn1UY+pHl9-dkB8*1xf%w6<5T@uOv215t~s!kXYRdDUoG!Um-j?#&?tG`F@x@;C@
z6X%RgZk=sWKF&$N)EcOt;%}n$ms_@8xG{11`sY2TLbS{xfr2fjIJdy93rS}U<lkL;
zWtu)P%o!Tw@$(iK<X-DTkfNr4nn9x5OyW}WNoojctF%QOyQWZ+84yM{&2mMeYVat~
z_Olc&KH)r#GsFF7pS4=f?-`<KZ`JaRs;2>z0y6c~0@^RPhmhGpU`qoqhs;?HED>hS
zT!H;10CTMQ&lW4~gY83=8V64ez#MDd;lRdptMnAW{8_>r1S`4E_JSrZZD?3Baaa1S
zB(8oLG?bs{yl>d=9i4eb58#*m-70O^8frq0aNC~JY%8CR7FT2Ub@k?b7lNb&)_-W8
zpP#N5aULI?S8~A!j`M0mvMh}3BR$ZKO~A*KoD@qRu)$ZMVhTv&h^3(ln1)v-p2=Og
zb>LUsH=ca7PVmL+CLZhNzV+O67-X3E8cs7Cjm9t<jbGqz?;0{7%os2>=j8~!%lX>2
zoO7;%5%u;0D>^w0rFNM5Jnk=gMz}>@{5I6So+{vbH5`(5W!ir^f~;H@%0N4_{Fj3a
zg+{lp7$_+ByfEEpXqJC>0OpwF=glOo5DsZNAs&!sam@(-rw+BNyVZ0aMfiW}k|`!@
zq>#ghUe<{BHAWuQ|0Uckt6u%-pW7vGVcU)V3ogeiVT6s6-wDN^b;;psOWh|O6kwhj
zq?eXYdm-V6SYKn^X$OOrN`9@<p=OncqX!#~a{ND1IC$RrO;>7Oty=$1uGH-e8UCIQ
zyW7H=dHXCtP8Hm2D_ttgnBuM*r8fPxd9Kc&2h(#{e{WakuHEYFtq)<fbBh~%;{_qv
z9H3g)$PC!6bFF9XhrazIfe3+B+1Yr+3N1QLR%lI>$AR`3ZMdDn0%{;@y^jctXx)Fp
zuxN|L{R)t0$f*g+CIB!~!)~hd@pBzV{>`$(+c2Zpc7;FDUbTB@mL2j&I=iowu2)dG
zzFb&2p-P*0xNxp#ux)FjYkHp>YWx9e{9kZ-aUnN|1oL$pPdHXx;|au0`%{KCvjVaH
z5i}6Uqs1!dA9sH3sNhI!TiqWX9AXQ%oPq4vf#~nla8G?TPO|m2;qz?6g-o@Z%`iLg
zteB^{`=sQGfS#0$(^cXjGZogYk=Z^eZ`;{~LOx6z6WZj^;F3AquTqIcYRho{C64rk
zfTQC^z^EWgRMVIg^GI{T08O_Zv%73$f5blUM=LTC@JAQ=y(d=aG~Zej`TiGnd2!@E
zZL7D6z1-jP?6y8ZEV+a^_XsQp3T?KmcWixX;eJ@ma0~r(aBk~U9FkRXPDM4N8Jn7(
z3N|$jM}<S0lJU?9-jnmL<-=UY&`BdLT6S^bEvntX2FKkCY!js1O+t!dQ0xBL!3@xd
z4IQXArTG?_$=Tf2>K{=60e;~8qv-T)w*T0Hl8?xJ?Do&JpXdM8_78V`_5a%b?>QCA
zi83s(?e_2e!|k6mg1(2G3i!qr%kdwUIC<#G;B>Nm=epC$_TU$0YOm5~LDwrhd<}7-
zZ4Y;v&UTg0VEq=OLt(hoQRGFIz+V|Q)KX5aYE9(ccPI2lE9*xbJgtY0k<%-;1R@kb
z+4l>A+q;ePVFhrP$nccszcP`FypxergECMB-(^daNSVoPAX7*|+jjbKOeOl)$&`sO
zOl2D0--`^P0Nt83m|uTN3!?Nc#kSuOp!R9D0^6su*<T^Uiz5H#1Lw#^-VXq%ck2IC
z@6OcQHl0lOrAw{s$*D}2iF=cg+tVcpb$`+Rd|9I*_Ts_P_dh7lMOYE^=@`+wO7yPk
z(A*HH5^)Rmo3+nR*uFC__py)cREya16t`oxFWImf2SWX(9?|-DF}ZC2d~(oOi@Klr
z(ij{s@dTQBA$nYl$K)L+<(W`2Far0iBQ(zTfO#cVR9S#b#){|HqFSjxvAk`LzxWZA
z8_C)~q~mv0SF|(U%MN6_eY3H^9&P|G`#v;Ko0<9skd&9+e6e1GE_bDc=RIaaKjh$I
z30K~$4(`vXP<h4#jllWM4zCx(=S|q;bicbb_IPnQuVcwGwid6BHXcYnC66;jvubVh
zvE!?l9WhIdr23f}J~k$Xge!*?z;8KO{<jcQZOdaY=3p~Z@;Xq5O;BzFVEa<nA<8#i
zQpPs!g<}?=#NOm=lMi7q@jqg|jXaz?J4#FNR}bWSELpmh#gj{K*V4^ny&YaZ5&LUz
z5b7dbG&=52<8|zX1{*K8lscSp_xg{tXCmbkbU&OI+dfd_=RRzNelEQ9VI(RuvqS}@
zuPHe3Ndx^|R;ZUPFlt}`T9N_X&w(Bvj(W1G=vRR;h5kSxWI3>%!e+Piaw}jU$`}cn
z0B(5Hs!oO77sfVs0O+rN2>b3!3Deii5ir^E_duqeaO-#(#T3WBm_!$Z&o&bcHDR%+
zadSb!bZ4~75lzQR4dv*G#a+D$<x6&V8^kP~LF!@#_<9^#{$B^7J8ulHKbSqk{6X>y
z-v|=<jddVI45N4JDgaop+u6I7wI)5~#EDTXUQX}?U0>v#P~{C;^S<ri+r4;YO=a?!
zt;v(x;R9}mzL`5AYxng^tBM!Y^!Kl2uf5B27Q5S&SliZtpoH8p?%_fygLvqPP}Oim
z%3i?v-~ZVtx`<|{h+hf&ccIBMZhd7KoyPjgVilZtu%KDLN%u>TzV0uYMUsB!2EX*D
zhKykIEFsf2x%18lPRqw&+r@jr2(q3F487f0GK)4o&h*$DwDLV82DEqA+(hSHeL+dn
z)Pf-;b?s~~c$NMv^Ny`5Oa7AM)hh~yjbcrt@flL1^G3Fh%*Szx$Fq_5xOa7|f-q!=
zyS6;q!pMChBicWNYQy$;1&=+itO=>E@J=0Hf&Ihx8#QF51H3D|I|MqKdvM2=MxQ<=
z#}-=lQNfAjLsyh<SQqzBtt?M0L@GF8?SLMo4WqI~C*BwxedP7>`cH7{zFLv^u=GV~
zfzp+qQDH&esD}SU8~(MOmW_TgI`Mf$;)C+U%8JA~DyhBAi&U1nz#Ssc!Twn6LPyy}
z?$8xRRYze;)c3gUS>T!PBDj4=FWTSG=0Hsx&uTNPMyN{i%yd09Z-?l-=PeSqq~Wz_
z!%}8&(Rnj1p>9(h>(wNrf#dD0o49-#JkpD2?$ca~R(9cF+0O~G->W(uj2<&+l3i#9
zpWI_-bgw-@icf}T-=mztWCB^DDNmucl76A_UnAM;W(aUAoGLhaY_>TAn$9ZF$&YBE
znu75|7LDWQfU@Y*M~@j-hPWRzD$&B>DE7SnxH68!o6*29JT5VDOguqg#Sjidk;1ns
z(d;v=a6HzOr%kS{rA1T*fljaV4t?-QZJ)hd;Vg{<HJB$(M>n4iD4V5U8!a$O@^Tvl
zM@Xjdj3>{i)CRg&8Dipzqv_{<9jhh&bw71`NB2{Rk=6{;7;t>R1x+Ux4B-fYXycRc
zh<ADwlayfu6ExnfS3<56D`%iMo<6x?|8cAfPM<+?bY4wCp)DtTYFIZE)bZPp1u@sh
z>$e^gt;d5*CC{&&LuJvYSH!hd`eu8J|8_k=UXcMy8EKLYMMWrisY$cXqVpOGq}>pr
zJT($Zi8`G7b8|CkJNb`QxrXHPwhyD|L2Ly+`*04ETv9uri47K3YoJc1EnLj&0{`sa
zu~N#YyHDGDQjcchIFqLTy46CWFQMgq3(_PpMErb&(q;OS|MImw_YvtDDA0@ag6`}$
zI+JZ;btLGI{ZIMU3XrCs=pKJNwyk95^z3gD)y25($!lt|Zjh2t9D}_o7{uvJ2(*5&
zhT?!Q3_5xG=w}^*#dz<~=F}DjuZCvZ>Wku5l~sQA->4%Q8MIw!xV16#eneHR8Im@t
zmN5PSx$D;<Bglr)I@v!of)W|J?s8yF{|SNR360YM1F9&nsjhHvqt}Gs4Ber?`4>C1
z=Kmsu)_y8wr7h1ypRN#V5rH|*eDqE>m<JZ6rYixicNAT?rzq<9J++&C8sSz^{rl{b
zF-%&tV4Tz<26X@IyREH<gk6r-h?`}|(2DWa)_D&a*aQCxwZR-cmjqxX26lr3`}ngE
z7`&3@9}8IYX+oZ(Pd6LnSO=NgH`MI@g4{iTJSYu$goC`ZTbb*itIFIz4Y`wp{N(*m
z?MCRuK>9shOE-oiOJl0>qFcqmY1-kcI|%Q5=ygwCmw(vg^lj=9TuJsehrFrtc#C_-
zGk8AlR4k`@o<TxBgW-5i3)#q#I^IbCaAcw#(|3D;BTgFsa{Os$IufJ5+#V-&YkC-F
z{9>@wLfWtj<a~JQC4zq?hSKa&H=sPqqYWsJ@U5+BbT%U#$7fa~R%;YJa8&f^>YUMd
zm+dI3QFtMGmvR70v_T`lXm7U)M*KQGG8(QNDjl+~7QqRFUs7|h&Ol*(zIsT7cMfa$
zZ-dY2WZ#lqvp=eZ<85||CtlNz)F4OgtLfr6<e@yVB{h@Va4Nik6*xeqR3!E^Eh2EH
zYZVx8dH&<asv%VRBh6;v{$g1QIvNvFOlZ4q)DHhCYbwZd+CUy1#QkV~{JpPHH~I$<
zEh&07(XdVhi;}4-ZluDPaT?*=yNs#(^a$~wX@og)rG+)Z(*(t$5pvo>oMjr}QXnNI
zP9w~6V3WeLEEA?*02a~+;~m@)?}myqM%@!Q{|txLH@k<>+KtxuEq_!C!DD_b^a(ds
zmj5^V<o|AG%*y+@2dl&9&|w~%{rnQp*w6X0pE1b!M-!OIud@<y+7ex4A8nv0Yg3F#
z`tf{VzpmRkoV`r2zf@9V^VF*7X)AQh3W;19!8T(ATVuGFJ6I3|%R_Pb%&#u+Tk*-o
zJ=C?_CM*;HM|Ev0wXvEr;Wuh~Jss_W!F5{Ga-VRX?D!6gJ1VJK(f0c*BPnjYqNp^i
zf7MR3SWBnr7I$gy$<Vd)d_irPL4}$2%F7{?isBnqF)cjP_WCbSlY7LoSE*5WJe#M6
zR@+sC&JD0RAM3kwDIgiC+N*1?RH~mT*-drMbDI8|uzK1~oi`){2E~eO>n_8~Ar8De
zJef0Q+KdKp_$C0`{T{3Qwy**>CRThlh%(!9bH1K`F~CKuyE5JV0Q&#B)4tyMlTaJ-
zg<Qq&#dHvUHDhYW<i_un2jOq%@U#2?{U34kM?NlQUJk!in&gT%#t=7I8dG3G!dRzJ
zM;f&F?8%auP`qs7G4TYBl-oEvM$H|AYX(A!Lehs?r#c}n3LH*&q5x16@?|6Rg@P#3
znUXKyKEVCem(@_pUCh}cz!b)(eb{cD&X%uuq92?p<mwkz;eREdS>B7UB?QYqj<+s?
zw>Z!E{aRwG7RbdQk8X@@wmog^)r7Z1u*pGhGn>%IJU`CGo5BbwOFN%wCT9VxU=})~
z6d6%?cmk_P7kbmFHg9&tL~gQTU>ZL=TueM@old6GB7zWL!C(eQxrue#n<*IbK(PJS
zI(oz{m<HPzyIOwZ1oGGN5oqH{_W#8;2jwiWVpHSPNG`bgEx-Pd9qHO(LDwQYWIe#n
z!+yqS0R{7{>)ID17UhZg>NAnqu87z@n{xoXUO5d}(>^jHvy_N2SIxR--(|FS8N`B2
zw(Lu(^*X4!X^MEv7{l=dR2B1qVE~fmF3#r$=^U>l7E$2=x8yD8_})eSRb6L&rveH!
zm6>^q)qp?9f@83w>t|RBBu@4tT6br!Jf>KomsncYdE?b*bM8WGvzkNxt0768-54#^
zN6{nmH!4hcC!*-}dGbCm8!*?rD{2=xj;2v1mbXKDwNF;V{U-aN@M#|#$r7vD?m(gR
z2=CZ3VSI76gYQcR{e;e-*`3-u>6f$>E|3QrS<CVN5fKsTcsdPk%=QOiwOImwS(aNZ
zRSc;d_3~NI405!6<PWBrwmUmWYfqi(i%$P)oAiaEFwIi!9c_5bXnF>*OBN~_ZFFSk
zzS;zs>Y`Hq%Y-)JgJH@QtvQKFLtcF3_hhavaWb7as|B-)RCqm6nn$!{AJ!laa{KK~
zI|t(j^QQ?q3<2G6HESJhpZNPt65UKXo~M1j#Y=chYv?6Z1+v&9I*)4G66R}YyVf%Q
z*)*Q*<e;<`BL2B~y4~;H2kQSjt@*mp;|)g-O1xNZF8yQtMk8g!&oyGuT2#TF*78nt
zKrEQr+2@*rt*uE8d?#j0=RaBKS9L$iYk_bQdU`FNUW+a8kF7PvI4a%Ue3s*xv-Tvd
z*6{Of;*RwdG`f&Rx7{YqQv^~lMY=F+``tF%kfeAyspHh_pY*2LJ36Kd@x=d6+FxVs
zf5h6TY2h~7FJ}SN_%GYf<S5;9LHl?3Z`%KYNZCmSRSHa?{;y$$)jBuYXqqO0wtiXK
z#6Vir4LnOE9EY4?9d~~RL`hBn0s}3n>4&xQUIK3$rV8g{l`xQ4eg+!%G4GP}_JGXR
zfV7-j$&XTU+h6VRZXQ$IZqe@lG>3NXo9X8+{X17xbh00Xd@N|+m28>;dxRZjc!D*f
zesiy@S*oO^^D%Y=41jcQBAYw2_TQHDo_=v4z0K8<UU6pHGQ?Z71-<WoYAtnojiO3(
z+8*x!^T%&b6OM6B=!E~I(rw~yx8}KU%8Uw`9iIJ*vi{LCjmP>>c-ws$3HYze?{Ztk
z8)3IWKb8NHXXQVz-4B-^oqnC8f06V{q4Wy^8ksf2O!C^JhBiy+qhf!oA$_c0ShT>b
z3^*rjWgJ*6V?|cRZ94?UO50+_oKY$&f#&?=U(Sj^T-3kpQRvZjmwo9CVXe~%PuUuQ
z(x+#b1*&wW$I;uOw~ANjv=xF$X2Qx*Ytw_OH?hMc)SI_bhr7#AME@_#w|!6I%#QNU
zOP7C3=kgE#k@8OmfA}k-%af7a)1@r<Bt#(15NZY)dAvY#nvSM-I@GFZ)AXyqpcl=W
z-MKx{>717*`5LY|@t)g1k$W2h%KR!^XCZY)8`&3}<xJ{i?pok5pt9`(Rt||=#yj@M
z?wB?+Za~0c59>^?|EVgGF=(pS|2ZDLL3i_S@!Pfiy#6=Y`)qrU*6V%=NFFRK)Nkw^
zo!OTpCUX6v$#)S&^YVMQu2Et;As_bSAA5|<OO33_qgnUOwfcg(-)^wFYZ{(~Z&-P0
z*@>0ClR4aXP>f13Rd;7`qG5v=J=y;u0VfdqldaRFJt)RC{b@kbP5(D=nWoc<H+XkV
zpKSBZSPEmh-M^F=B)I&$@C@CA?{2(p{@j~wn%+<I5qPu(OU0i_8abwX5Sljik+@bX
z$E7Yu`W(O;l;c^_{NKBZ=7fV52PoTr(EKt*DF0mZGpRK+sYIMoguD)4;4j9^qt4^I
zVcCwW%HMpGVVOSKemB+mDQV<b5uRHbmaizsVwWS0Woiy-{e<P$uA+5e4~SuTs>4z%
zINq&(rf>Dcl;r|z{}G73T?^}=R%M{{1XMpkU6l{iI*Ejtza)j)xn`DOJuVzRX1N9k
z>zy6eHamn`hY0Jfj;x=**R?nPB`U1pD>9#MXSQ-2Kq>zAuARNRwe!;Hnci4w{<UrN
z#;(~k;S{&}*+u_Erw8_4NFV#hnNQFeAu)}0sA9%*&biagJsii!F|f<GXiny~%U;H}
zsyt0ifeNg=E8@wM3EGE)G342YiUhbRr>2)f*c^gPrsK_Ya_;QKMtuT{+>@QQ*|bcF
zNFkdGal8eu8XClXPZ*lg?P>0FqlLfuA{&SH&Z5~rX790Hxz?>$4w2HD_65C(tUee7
zmbzbCuOwVkhwDv|$Dcl7EhO$W4QEhQ_?v!+VV>Dv$|TwMM9mvoHXRiovNXPYvjS0L
zpmY7RY6|426dz5X3>(d+xQB*<Iz8~`Cb$qQ+5e=2HNwfyI;6~vHKvg#NNYA!8f6?d
zX<RVA!BF7?nHzwbiX4&-*ExnObDA3#n&NX`$u@>|7zovsa6p&A(ZBIH%S97{&0P-3
zc;XpBRwU{K<c)l9Z(WjBr+T#Yv{VHr9<^$zsBt@2krf!!;mxtHNe7f*!7ZM=f^!#M
zyJmDed0aOAtO~qHJtafWm5ki%14-|8>a{ZN1wAxv;VdYI%4Qyv`Hq71FW(-sYZXhm
zkM`aXOvTCOKTrf3t%Vz>7R3CUUel3HHm1oZ!-p#I8qA(PbLb{(V*ky1;r(6#5{Y_8
z&L`|Au}VG7{_kT^%*r|5xEyB8@i%OzBrDMs*2Xj(G|lTGT#~spMe1HAH~vMV1nl}U
z^%{1CL%D`>9<g%L-E19YJw(^I1BfXgCMH1z%lDqlePIV_7Ewe81c4PSaeG0XSPNJN
zA0q;y>o33#%2fNcG+Z+Br|^+u7WR>Qttpt+`C{YL;eh!||HJOrr+z@6oFpT;yM2ws
zB%8F|n~5MtF7RM-#D#6Q4^}tNY9dKXoZo2%n9N;NAwOP|QoY>E9muQz<nIDW)ajM7
z=J2CGFZV<THa7s9B(T;xz3Q*E?%v>u#78rk2Dwbn1exsa=Vb09%*v@=sf+5G`4=0Y
zX)(Wsz8)TBrq%%Z@5K!LWh4pxMVi31*6CG$UhWI-`>Npkb?&=f^#|yh4Csvx)DJ+9
zaiDtDUu)gkj!YXfna*~ZvWB|)zm_IT=C&Vb_$zf$T@L>W|2%#Te?6!G;Xlab&nHRv
z-=zGlb$ZpGm;3#m*1lNq{WSMoulfVDFax^6fffaz_*eB^ulj4P8{UzrB$Me+E>k?n
z^px~kGWRrxzfu>~Rq`+R&#K~A4y-yo<Wpor53m2(mVeF|lB91=RQ}dFz3PuRC-;4P
z@IC6j>s5b%PRM}n>_DdkpgKu`?|RiAT-%YUDU<2FJw%^5vw}?8%mm};by3|M{>^s$
z!wx50Yju=!)sZ$peAtVDAjeIIdB{^0glptzX*&HJOFv63y4+K_KA=h2tRr3i;3Y2u
z-IPyp2A~K1*-I>V0hRhq$8Z-W>g%^lCd8As=V+b2p=aXeoZ<GMq!RZ8N_w(FdJ4gK
z@Ftkb42+&SV5%}OAWmJn3$rQikU}pNdj0=4$jGKNRO<ndOplPeGC)%LtH?G!CYq}B
zDKv@Jk}<l>pG}aaG<d9yV|UYuQ`3p5D>X$^IwP*p#vhaZ28(^i)IGIdH;|DbkmUkd
zEzQ`elwCt04-4cE2BJYb_YU42a^G=^jUh*Blb{YsLuJreo(4&MAa6|~9Mtht=G&ZZ
z-)_l#J1hMyncFv0^A(xTS?SN2D$mJ$dr-!Erz(%md>h;C+rF7^L(<=pxrrg^#%`ba
z{EDp*hg;Id^&Uou)aB`KHb$<@q#u?}Pv*XQtn|J*_sPuXEf}``DeD<@X7PmK7~UVy
z0@pF#F#Zurr}<_~brqR~mIoVZ2;}4|OtQ~&S=u{xSMlA+%iDFJ(1zvl!TNx|Kj5)B
zVn2?6sy?6PnaQWIoxu`3$DQu}OwQc-d30V~A%$BcOR^VdO=DvOOB0OkkvWAT3~n?3
z`lG}J!m3_DfxjMOrs-n)38hc|H?7+XJEEI?ey|iu{TC%_-*B~WxR?9kJm!X+SnsC8
zOwnaldb>IkfQ9oTxr8Hm`PSmCY?^{RoViq<XijV-MzFf7Bzp5AVtZ;2Fqrn@t+ja3
zcdO8hQ3eEVulWFL<N6rkHypf6FtO-R*--waEaZy7*qF|FWrkCZKW~srk3)FA_~YJm
zosMZw_&><<Pp=@}aOqnv%twK;T=WoFV6ouHUz$^a;hDhUcJAx05KF4k0>%z}+uefw
zMcy!mDyHp4P*3fxdGfyBLD0vL?ymlcJG#+R7|<N~qes?3uB*;83{aW&8m+%TSz6Zg
ziYFVgrJe<gAtf6t$eHIKD@DR9u1kCx78VGq7-Xdww3(u(-Ypo>C}}#{I6a<llmrJ^
zga475$dvRt2n}sUV^at`E;?Fo7caZ&!T{ZKtE&t<O!as?*|1#*#bE{Fe3^WH+8>^;
z#u=^otrSi3RAQlR>L7q=S=-GW{q8?<wpo8dT4?$=1U*7;qIUf;%Y`fGYgrt}ewUJa
zw5?K0T-KXcs53JhwT&mg)N1oDT1VfFQr~s+mqn-VCaa>;dGsiRU?wS?;5T?qt6kB?
z*EQIK)NuMT0YB|zC@_EIwvDC(kaVqR+!z3nQ%8upkWO#VB}X8_-ibN3sj2_3?XBZ`
z>(Mr#bk4Gu%K~xP2i3oyy_HjB!q}m;G)7;-Jg&D(tndAEWaL4kJQ36}4?#fKU5S27
zI+oO2h|c<m=o>a&_B<7@@{r{i0zNdjisfA5NR_+)&;kJrdR%av_0+iH8a}!cUx-g2
z#Gxg99Y!>dXoquJ6tnQ%DLOL#oTWVHuH~6nyKi>3Si8N9W=63)1Bx+a606f`!5n)!
z6Hwuu-^M96P}rMY2t8+1R=J1epVxnc$=2`2c=G1uW293}gCIBl?P~)5UQ}{H_PExP
zF|-zeZ;GEM`;$N?%0*>plTac)eo@J|EP&3!oGST^p3c#CD#T^*jLKy#*=;<tS1p27
zu&~C&wf{>@+l;IGx9F+m<6I`y*W)(Uas#Wml`$sgb<|fa-HmkLypt0h={jNh5jLi^
zF?ETgJ2_j{R7XP=@VV`S`1xi{RsVv*OMd|wpYC^DJW<J<wr{x%tmPlFvYzuh(RWy%
zlBNmcqEFYH)MH#?!dZl-_Q`IF|Aq*;lX{Iy#Lsb>Ys48Qa-G@a=Ygkfc<KbHhh$`J
zc*BH6&|FYsL(73*BRq>4_f2@Z`kSNEKM{dD-G3_ch=!5OgUo7sh@~G2(+@@IhvD{+
zjNFKO#<6WOVBna@Wx5oVZ9zq-J|4zEPd1U26<olG$(_(*bsFdwed)N!ywAHTR(CAN
zLgcW~gx}ghDkE=E$yn<JlaTRZ!4k$K-H5ESSxVrPHE@b)<i%F#5emFt=ofqiA+RAb
zga`=I#eP^sV>;Up9r`4sN*V+PIx;MT`Jz|S;~Q^*yvS;~K7h-}bIniTb0#e%Mn}i*
z$n;^Fc8LXBKFT%cR&If%m?r{NwJ&}E)n|fNqE^Suf}rashYuo+QJ;U|MC<y4p=N53
z84>Bu@817&q;NX>=cxvH(e5&i_;N#FQOD>vMi~^?q5-fbI|r=z2dB&t+<P62kyDpB
z4eQ)h$0-Mes#iI>!E}^LPd=vkN}SP#5dl>lomX{1-Ikuw###fZieY#~ujR@F>SN?G
z8Qi+FD=S8KQyv<E2r<ftPtnVa7fg9;gP{u5y*&@816oTa@B<jtf|=cf_Ly0NL%xl-
zwB>TFAbZ01jweSPQsGV0%%j3f$kMAI{Bdk~qSwZF`yxOlzDHM8YlfHUrm=eSa!=I{
z$~ci*VF`v@tu0)cnsknEdTaE{Ay03vdh0oGBWB{{Q%%kT6qC2q6@f7G4F9*maX~qv
z0CHqwKEXFS-8xueZ4K5@GfSp5BIyQpNyAL*P(L_kanM%99KS6pIS=)DzUVSubb%u~
zXw+IVMQKdEn)J&bkF(qpkO*IE38*nYWH$YElx8QZ6c^FBo6MrtlDNLHUg5q}>dQN%
z@TF2;;)%=Y9d{C83HM;SURY=5cse%e%}Ibf;ku#Tx`BOHqd6y{-c}0}6>o0r@|`1>
zev2Hw$pv>Y%=v?nl_xBtS8wyk;&s(!bmKB2;Kw#qj$KrGK@Sr{?}Q2BQKU-KMU=)k
zr~Ldya$CW(F~FD(z)h)nXj=c_ldZGvaX)kIr}J#E@3$c%m3B-eEB?nWbH-2Cb%)ZX
zU8ltYJpg8OI?}(&?lp;I?=D_*{XfN6aL6+5^!a=@l3Pn%w{gAj7R~aKk&l;j<+Kwn
zH5N-oYQo1m>_M;ihowI?hPPzxrBA!LPY|O75}R^^xuo1qpvR@fG2EFoKsndLD5rqk
zw~=S0cz|?M294ip9P6IZ|HVm0<_WCNq<#s^59u$94=U_F*Nd2DF>GylK*NFSSsJu|
zfI?SY>St43xA-6-i;^?K=ZO<!mDO+sR~7o{rD`tdRq#~p*W#nt0wh6u$|v&eTfU({
zb*&M-^mf~uwM;m52jfH{^1hw;v0Wd>_f>80gqqiNe!{3F{amRwV$SOy5E{dkliSDZ
z*KACWcFa|>vhuQ`_45SZ+M<`t^q?x9=m&eN%MM!U_|EBKot)$t3f>>y0gqQLd22=i
zeI6_~z>Bu5Cu{2m6px*cCI+>$TjKxQ`X=|9KGHXpruf&W8`JtGcdYwj+hXo_UjlBF
zSzrff-RgABYKPoQrYpFby7-%FqQ4(EJ>flT^ZVjW)#t(MoZ?5EB^t$`Ccf=mSD1%U
z8?QnsFp6B~3{LnUn;E}*GeT$d2)^yWgz{_Y7q-`pC!hMTUbpj|3x--crE`E|EQC2<
z`O0-ri3Ndo{`OerTVE*@rwJ@Dl!1=b+n~o`&q!*2Qznsl10a~j4ZjR~5Up@w*rQ*l
z8n3)cOrWU}^5XyLN&{<J*j0I)9DpHhfQ`Gtz}|l*1h#`pI}k8`JawtDl$&m>YJd;X
zAJS_6-<GBMkX95~Y>UD*%cWzl_yno{ciLp_WS>ns4Ou9XEEGx>3Nv)0W%Y}k`6-J;
z%q$(lQ;DAPdC)I|gQOWW{DmLM*33*`B2?OTQ+NC5agnu?KWQ8GU~P@n$>>P;(jI61
z_>V16BO_<*LLZPkoav!6@JwwVW6AObfR0J04L;c+rYTY7pq{oeV?>#Bvi&{{M@ifI
z%q8PZa~}3FG~|l0ZvKvPt%7v6_o<*td%3lbyYU^2wdm9FG2>7dyJ(+I<BMj#;ZnlA
zURC8iE*a2{u|_kzI)q?IS_ovfkHKyqh+TASf3+PE(R51?xx+{i#JK^)?qLWCQf_Zj
z+^}m_RLy}5ip<S6)j^GDJ*&9#`nTXPPtNS^W@vq_b94MP$dKqYUgU<`N++1f>2zW+
zK=Qc~qg~<4-W;b9-gef<0?0*V^vdXTZjk_Dj#CMbno3AsL1^rTXnmD^I&0-d`M-wa
zAB#2|PEv3p2F9!I9CoK(Tt*F-#p2$TD2T1`gdVG>@H-_s@3OJcc~_3zVQWd#Wn)Q=
z#fM;}DZ0da)K&V7(?gr1^-HCr6MZpl0Gqbe5kUtR+Zi~?nj+YF810ugZq4?p8}5gE
zJjkJwoGm>L!Mt0v$QAb<Grf-8o3I4?GDlw$`8+44*)wH;i#v7@nHfe){w~C@j?Jv%
z=J@(IjX8&LS9y&H!D-wJ)j`^ATh|UD*m+HLSJQY*&oe0Qj48ZMaj($e3}|rm*d4Ys
zodF4MvG%4bIXZS+vMdXNuZq?yC<Zmy%6`?Dn~g;4|EM&ZfN1WKkoahI^uxet``>7O
zRoEdg*f|6$cA~O0uRUqB&dffiwaDaP{-2zt2Ma*=>yCpUY;bwhl1@e?`<J*RUEsYe
zb&Hg=d%RvBE5jdk7`1=Uu8KRNfoX=eWdk}Yd7ZouDP7>MF2t^Y1M+cKkt$Xy@+Kev
zY~1vJiT#FpJo?L!sx}Y7wUhZkPXmWO9HzHqr1pUj7`h_MKQjQM2Ee`~Fc+{hp9_KY
z6`1lz*}b+)diUB%4)WG{A;{i>>>U(XXayeNz`nXC1O|6!`5zPGEc8r2`Vj}VsvFqz
zfcYCPF|1Zcv|0eQG@S0OLe4qgdH`0gOyR3+uiMn4mYsO$H!jU3kV@$lGD4G)Z^Bn$
z4N>O7E^{*SP`6Lp*(d+C_fWI9vRu(&!F3w1qSKF*q;?*&Xwz_KHM%P@oi{h8AwXtX
z%|uvlf^%fK;2N-GGK*eX4Oa9uax?`4b4#>g0SOgeNq)TLvs_Nh<&5Fl?15Pvww@Ks
z%9=F%SIM#*j$l8by?n!p(Sw&&41SAqhq*KXlhp>ppvKzkRkzJkojb2$NUIcfd1AB9
z;3YaDKV9VZ94JoUB->C1RcnSP*&cKuPZb<^%aTe(qLR&V5=iNzSuA0w3mJ$NW|6&E
z1jm4_(Wu;_FR|3`q;xsi`xE{1fqJfzM$yd7(0mcclBDjY^Nh${==+w`ZKv~3RP6Y`
zE%USIx3ZtEle^qGG)^(~fwK_DTv<=2L&!HpbisglvY<{lAU}D&?rT(;xWt=XJ7@%2
zjmdt-2XBQ=eZZ=YCuh0Y2WB0R6sc)kup?40dHyP-R<MW^%~he}<0uxtgoAgL9#c|f
zumBSCa_7>i48_;m$^%Z68Dqs&Uc}F(3n&7T=Du#v@~e3Lo9)?RR|dUo&#dM6M_)vy
zWaO~02r;&EeqA*)b{#=?eses5jNfvZ0j_=|B$8&_RRSpdI?nt!XM%zDcqjyl`pfe7
z2|!CSXMP;wKu^9u1d0wN{ttJRN*$g7&2gZ2JRJfxCG%PU%1W@`&v1S3cZR^3-9Z1E
zDHU3Bfzjejmit|nmM|R{IkNoA$l^bEp|H6atys@tEPk$DlacJdg-|h~l>zLCw%Gda
z0*CWie+dD?o6MgBM6iJZoQoakm0{!ATtRCgy#G^bOzkP<f7xmnzc0Mfp<TMI2M%!h
z1zjqaV0yh1{eta;Q0I#U**Uhf_Vl>dn^llnLiS;IRNrwqdL05J@4WoLlnzqFoU4(1
ziiS^|kRvC*qWa<Afo)Hrkw{e_-<sbTu_EC(&zNX1Kn>ej{Ac}~fXNm@1i#&gEd`;Z
z$CUI%kVM%e-Jzt_L6RE@JSFW*S$_6-t8Vf?LL|>qb>q*L*7t`JxM}AU{s{fDx2c~?
zj7XZuGEDG7vk6Q1IS**)6}1ORKB4hWakl*MFO&ZMoWlSWSXhGa8Qo=({3%B^c@DfP
zS}ID-8)v9L7v2nMl=>3p^nEo9N}(m8!L3SqBS?x_(hMcd50V_EYLxUykmTrju9E&k
zlK+;gZsZGHDRm?(DNt&A)M)A>Q?Xt2s~siMZT#v)pQF?CDNfU;D4-7;&l1`{!LK6`
z1}2-cx{xTlZCez&d8|=r%7-D8cT?xSggxUg5~pP-G(|~I1WArUW0f>FNOBZ9QAx=l
z$x-MiCB03O|CFol&c&hX`l-6z&om1C>kTNR1G&1;=U_Mf#3g?vl0Qfzovz`nf6=W3
zd+R*gzrtl2g(?_DP~;7l^G-oQ6nf@ZoAyNs-3m&}h*OpkXPRZ{)9C@I<A7PM@B<K&
znZV?&x_3!aO#%1IKhvb_jM&5Di4g_<&z=emC^&%^t7F(M+A<3;Esk-fvMvm%8LF-I
z@#3|$T-0-A?~>u0qYcwkQt{e}yVP>n3l$7sHxXaOYL}t*H7S;=abkK8rl(_ZiP^jx
zj-4{kRa@jWsX3XJCQolq%uz}M$Mt8|{v<l@T3>I?HK?DX^WMjh!fh~yNp!}p&Xig3
z|5he6&6JspeD!Iln+Jh{f9UDzX3Uy~IqI|3(fSIF`w4fuL;pK|PpWt5o%)e)3#ZYr
zxW`!{tjXf<V=_sQ$o3qe?*hnY*HNaDzSNm3I&Y<+9X;OmzJJM)#!i1&2|GO|)!v1l
z2K*R5t@&fXPl+!4bk6@5e!AkRF8qYT3iyc~esdfLX>zO8hc6#@U5W0JdD@+Ws)9oy
zQI+r1?3HGtG|O=2yJH!&o*-)9@8FUXpZve(5}Ao(AaS@?y`ECP8GiZhiU0f3DFiJ-
z6`h#o)wLm}iBY+qby~nQzxqSKG`|Tm&4o7^(_EyVA7z?Dl*`)&)9lIzm}dA0W14f9
zYdrgLd*IIQ{F96fe-aE52<D!Iz+lbHc_Mg^1~<Z^lO?;!+#L-PQ}n5z-<eDI&St46
zx7Yf73?arp=_UDvexjOSiYlki6^xAg*UNq9-vX?P3FZ~}QZR5q96PqzeJa!^yRw>3
z6Zll9>QN*zdJ|MW2SpGpEJPc=htk~r_H91L@YF`p4^z762lCLgPdIc5Sqg6=z|{6`
zk-BMLkg#9Yhl^BIi~z5DNtd4vD}7pvyYE4&5fz=|ue!xahytj0U*8|viTA0+CYCwm
z6rUN^`F@`{LN@ZyI)WvdYZ(kF|A+LRZV_%QX2z4ze9?yeH315=pDou0Wz(h!i|GD`
z>9EO<2OW0KBi4a$J*Io@vHG|2z(CWgA6tI>GX3Rc`=U8OqPJ#4{hw1pGIBt=sFjay
zmA0Ki{)}eSGMMWVk)d>z6Co@e`aE@-@wS7YLj|#CX9%&YQIs-Z3qgGUR;MyvhkN~7
zIJYWQ7VvQw{l~Eln$JPousut!xoEL$|78USLSy<v6Da1(W9g++)i|-v$cK$U^BxTd
z^d1io=x_Ql0==C6@_>D@#Xm=&Ta}QE^s%C#{^O!Gv`L%4=_h~nE5e^{lU>;b|37ud
zKN)#OCDQ``&W8-UG3oakII2sH$#IQI=3Z}KXvd*eIW0u~@bAdn#B5SWnxv%NBA0Uh
zOCTwouFptD_Sq8BR{MaJf8vRzMRpVR+N0pC;x72>cH(XLEAS8ZwsSsjrzAO1rn(sh
z-Y{^ByS`q|91Q|4wX>LM?PCvGYbWw<%zBGHc>T}QkM%`U`pa+ZONd!dRRY(!>qms!
zSKUfqIR6A+);%6-o*DhsCpcv+`&;YFRWa6X;G-IeyLlXj;g*0WrNQ7H?RofM0Q65r
z^3&C{KVTS7c{srMP9DH`ynYPh>(gH@u`eNv&r(7%@``?haSdH<Cp7!_zXZX5k7yXd
zyU=@hcX}ry_v$=-74kdb1Ah>9*?bi9$L(-iFwBYZz1$lGh5f;i&^yGroM_snwe5I)
zc60Z0cxWpx_fjiKGrY+8dh{Y^S&HdEQl;1M7I6+pb$L)gHD<h|BAZCTJffI(vkdH5
zyi45)GSF8uqhwjO$zVxGzxX#CYAm)2V+vXf`aIM}F|lA2x0&CYIfpApO+4USk~Uyu
z+pb;^@po0qD1iJJu}_q<-BY1*c2YSrer5GkazkYb5``zoo#;D>h3N3vK&mztSGBcL
zRlGq1X>wRAk6A7^xBh1d3qj91+0eh8%8O3Fhw3SlmS0R>?0x=;Y&<sTuNOI~9vbKT
zLOs)5a|k`~iN4WG<AYgJO<%1C2Qy0UvC}*{@|G14c}728q{Y3>cW)24w+Hpp8o7lZ
z{ZZ?+_JOwSU|b?p>N)X(uAab`wt4<gnvxokk#yIlF74TtzKs-F$$@&Mf5kt!y9L$R
z7$}bMKiuHLwRBUT21W4Gzp$><Q-|i%p)kOM@{BFm27Jx&$8s@}V*=<Thhj2P6h4g2
z7PID#wr;+V&453oZ=X_q+nAp+|B|S{$;i&;?Ao#Mh~_-1+!!Ee1u4lvsm;Pl)AC=x
z<XBwdb!8i=<ae&V+>7ls(8H2|lC<Fx?+^eEX57l%O4*aQLtsnVX49&@SB99^Ca_B@
ztW`I)(yD{H^iCIkn^d_i{*`Y>^Cz&xbV`;jF6zR>RJ-WeP_;IZJ;_zOJJq(``UCtu
z>C_*tuSX4y+SKz$YaP+8*7tsCjr|*ovu!tTL!N^3tFaa?#`r^?Dk1%ZktQ=7FA~_8
z6Vwq?@DLAuN3mKfui|vh;&^=vXU{K)XKyG^5D4*E@ABj@MoGe+zS=H6bSq#}nXTsT
zO<@>%=Ido4-@>AL+lpKOxq$^P%oe@%i4SEx%Vy7u;?I;PXAXHkdg$5Z2<(Q>SR~Ag
zU$|n=7kgxtbBW)Ow**+i4RuP1)_)~M?)BQFu82$chuR1U-ecr`+l9CM^5P{50%0|i
z8~hp$u^h&d%24~74#d>#ONUP)FBGRK2--^F_c?wKEG8#1Rz)(db!M-UA#rmoI%Bc8
zn?_F2QMlJXZoKYB=Lv4q3-%i3`OmU-Lgfq(hHj2+;%z*xnHb9FyCdA#XZs3!EwedQ
z<O7$O;KU=tseWU2EyGJBI)aWemriakdvxc#N+94|oj+B-v1cuj;F0esA%I-RW83Sb
zP3uUTq_k#2V$3q}pZ=M+M#t4kX!RE=(i&bt!^>&-<caY_aQ>jq3Pdm06y%Fuv}I;N
zopLhB75Z=RBtxkP8y$78KC-Scw!l1q!{|+2tH-^CNO|hKV1S6H57F(wz|S}I{68P$
zu<TW^aU+w2WMr=9NY+==bArC|a$oY9xh$#WhLXsf!y$r~J6k^t36WGxU5ZOSe3YhX
zzQ4t-=w$9#!O}uk>?7Q|()NO1wE)!-oL`N=qMZ*Yh$s0U^yy6byK(JuUWo$vX<?p(
zX3<py&>o@Nwue@Dz1Fc3RJ&`uegPsxXyc-(A2SyyfuAU)o-?fU2Cl)IKkq={(>ZaQ
z<H^gSc;_=FSf?mfBV;)!0@Q|_1mo6DK@@XN++52}(ek1p5w_L}iyqCO;}|);=1GkB
zI^4bT7%w52&W_VjXhSbv$!`(AsFXN?N+l&=lnE5dgdw(;R9QL{qs$UW7@*g9E-G1l
zoev#2iRg<KXpNbewlO-5pIlne)fVXcsd#|aJ;8BH{`=yhWMsp?g2Z$Fq5&p7RQoqj
zc-uoA%9y8)@{<jAhnm}x{u}9oX<v-j4_ng5=r@`Eg>%`LE)}{~Ds-)X<`)w2OU$Oy
zYK6jHpp(oUJSTZEqX@jB2Y=VmP9MYsASXb%Vap_B?OZn;GK6kK#k_0TdKFMNrO#v{
zE@UcX0!dpq@e>D9M@&V-FNN8D?_kDOBuOf<Jdmd!d$+`|>fjPPE0-Vj9xG*5u=O`X
zLgd*`0^$w63v|#4aUsAT-}d+`xKpf>;$B0+1S`IwpfY%O)io4U=^cU^oO<V<|4^d?
z0!~{fx-Rfbekv~aH=)o|HGx^#(H}Y=eq5LFk@Hj1*e$rz5eqU>{-K-}nr<E|hb;FS
za}IYhX>Ehlk@r6i+BOPq5n}{a=p;~RYv?v!PMS#lh3e>-Iy$BriV!Mo@Mxw9&>}rE
zJefBsyqqq#?pO{mRMz2I(#&uLW35PfCHowdnD76YgtmqL=a4E@o0fpi^bkJz!iSlH
z{_!Fsg6z2bo3D|(rVu)(+a=w^;J4U)Fh5Sv;0Upop0E--)o*Gi!t$2*hE2kf4D+vk
zjawZztm1~)Fa0xq0H0(-0dcbJPF`lK!>4^=e1N=IzauaDr3HbPDA`SL_DThUW3m2;
zIU<R<c(s4X){0;<6F!mf$E0duc^9er_CwJXsk-$~ouulossm{f3+j8wGBqQ!0<x+*
zx=7WN>m7r2ma2n-RHO>U4%hJz61r%|XKB`(om>QpHW{fj6ye^d?+}Us*`_TN6&Lt>
z722326f;DS{HCekZhefYIcWvp|0AG6p&c;i-}yYObX*`=+Z;b`RQ7K6Jn==%SM?Zb
z%!&x*Ub9BD6fZR{xrVjOv}3^k$G<Xc6f-tD(y<ZCPd(b+ay+k|gRM|HR-RLdJymZq
zvab~^=Km{0bKBjH=bHUbp9687DIe0$cK+-&vQRt6A0#6atQ6?@$ZcCgPDy&P5EWOn
zXxcaAGOx}Q8bIJw(DnYEr#hyw;fO)Z`krR`(~mRs9{gj-s_z5J{tHA(t2N`}G|T^;
z-jb1*8bV+aYyS@c*aQPB#1jPAU%P=>eoBL>9FbzC9{kf>xtDdza3ml6%Y_`dta0pb
z>nt^Qi?TxQuH$GN%;Hd8$O?!u!9Vg3!!g4F1fc(|ckqS51Y6!ltqR#{DxFux1Dk>&
zMm_)DgY$~YttBn>p$0=t?!Tjn{u+ICh?NvAsuR`K?&a?XN_QFEBj%}Ms2{_`nNq(`
zGpsr)-4-|v@#|GU|68~^#+`eR<0;E8*Y)q0k>r1X*+vDCKZMY+ZrVi@2NT!!#ki^f
zD+pt4-So9S0Oq=BTBU()xi(aqfhoV=lg6bQktM$zN~A8>wm<bmu~z*TCDPFhIQCCu
z*?R#2qC}u|s6*(B2G8)PzmsdttQ$l1_f~`B0h;l6f_~lX&^)ypnu7zdN&|ZWpAC&Z
zup5~2`-iG7TApXHljDw6Tm`qV?xAnSDsiz&zUU6Cymq@|6^0;<6SDM!Ld3(c3Logy
zRYZXL$Na+T|HHIUYm8N{Q2kHotJTjMK?ke+?cIP<cS9+$3Z@Vnp#3+WhUBxQ$RJ;M
z|M@B**4h3|M#iK|xs!{Wewf~WKGrbYe|88%qxULE=l>*wp@`leVe%)q40ruLlmQ<s
z=YcB2M||~1JCM0`ArNbIgFs%?*Y2%;^qrv9kIZqc4s78y&@t5qMh{u69qsox_-Wc!
zE#gKS9<ctw9z(Cjhpdf{oHLNYWBScXp7zDPyYR!PJXgPr%I<e6o!{EB0uCSA{B4|I
zs{YTs$FyqN=2?L0!tDTX+Ct@D;7=SyZZC3^fJBmyaB%n!iAsp7^7zY?vV|1?O~EE3
zcZW|s!zq>Jk37OmzU|bq?(x!-E~PI+_Kh2Xa@_rb)kCnAuR4mUjn}V50S?56oXGnA
zirN90p~WsDocNYMDdxsb+^Elq2GAUC&OM6U3Z_ZhNB-3uc#^t2OyLgt%KohFjE~A8
zDprO`^+}ZX^^wA+7uYn{;KnU6oheJKX0VZH&#%>=s#^p*_ePy~l&*VQPyRocjbagh
z_9SRcG_;`jxm#fm#-<#L?8sim%=UOCwU*}4Ha<o6GYF#H?c+fA5fa$P9-k@u>^eHy
zeg8&NCa%|zZgU_nPEtE&H)TK`RzmAEB?KUUbs)1cAU8P>CFpNxGn1BMt~wkoam!eh
zcKdukPxU|9GRN|K8&4kk8|6vtzKB_cr7ENPj+|2$xkH${2s6a9aT&_aPoE+$<&&oa
zzReN|WaagvDT-YQ{|pJ<?iBC$fhpAoPSYLe2KL9U4uNUL=6~`_2UcWVwVeZ7Jv9Vo
zV*CPN{zmG8=hbrmi#EDS2cHHqx-I;1j&4}xW+I6Noezdj_T%WSrJY*R+qGo3aA=Ih
zOq2#Fx|W>phT_kz3ZZB%*|k$kMmVr&x0ZZM6a9liE!nF}OI(Az$hE7q6nxET@Y!!x
zBm2hPVn^<4EM9z7A8qnpzJ|xC|F+W_)jMntHm=7jypf~WFpL++mv6F{7Jq~yEn7DB
zvVP=rQQ)CuR;K@vmIK266+95K+GYVGGn>^Hum34;z{ADMYbKb~)i-an2p~D6yjvaM
z<7O5muY|rECLbM7JnNEgY*I1BTdE5Qxdnw@Y(>uolU*q|@|j9aWHXD3b+~5yA@C7G
zd87U48)$%Fy>r`y-bArZ`Xh6`-*DLjjF9>V%9OAmZg_aJ=31-f7_#1@hGX%%=!`!o
zdB~e?IgJDV+Brm=P4X>Uj*8cR+a4eMHVzqgUnc5O!*KDss|YpZtaco=35-dcrO;7M
z_KU0r8FWecb2PO{R?<8}L#uVzewjkJf0Z-4$f3W`PE={DBAU$UlGou?haAT|3gdS_
z-w*!p(%86l4Y7OHJA>+9SI@m&yR$H;G=FEN=;%>Y>P5x~1U4#^)`M2Fn}rPdWB!-K
z^C0G9uk6b81%W|BZK&FLZWtc-_YjyZ27Dik>V*b&g9CdYY@<l0`fqj`{Kq@69@m6Q
z+g@Og1YppRN|(Dq@2^urV5T&h0P`1sxqpyDzq}~~(px2s706tDwSJ*E$%PrdzU@A-
zWVqkiT+V@(@4r9N$g#=`m1h=7{{S=B&U+kY>nDf6470BSgM|L40d)>+a~RB&Tq|IH
z4~KiN+e3xyEZi?VL<|w=zb^d$5dfW8f`P(%mHrL54!0@s_RFHl2L$ZyyoI7fLw)@l
z3;NB$|6P-ljDOE63=U|r^SN&UCFJC?@iL2tzW&D-f<>@97Vp1G2M`ug={RL$Z4WBd
zb=5dDWyf1wJ9snSdPl<F{_{J%$+4RxXqN}1=jiOzNHl&(CJuWDVc=Y<ZuaRPp&#up
z>6j1r`;Q<Azt5x)9j!CYh5Y{Q`U)=KoK_L06yScY0hdJ6f(m4j4GPH@jbN9-6*ba)
zNIrW9v`OlQ)s$G_)y)N<qIf~Hq2AsRxN<i6H0;lte;1}0czjUX6_3?r4h6>)zdgpl
z=63^oJOFdUQ5j(V2PzWe(R5DL#E48XRYP+`!%pbWEHxrFImPTWAu9d+xMv&S)qR!R
zk5F@<zu|Dhp`sfO2Z4isq1Bq1D=c-u*M{j!cN4!X;1K|~J?!7@fX?j(^sd@5AZSNC
zH31a;DGvDNZorQS_;Y=AJ*IxKc8cE=1wp6KBU<LDOnI6+9_Wf1-L0q#RMegSV^OJ}
ztCY`*jUKU@u3fi>N;&<1F6BdJul_VnhEG)l^VmRqU+!+dI2AGsmQgDU6<X3HzKVOZ
zT+g`>#^U8yl~uFPgN=e-KO#G8#G~t~AxK3Z7*v}w;9JKmZw1ci!gNt~cbf_g&Iq4w
zwPh9s?qNkW&@kwibj(>A3pbKFp5Z!;sKcSGHx;5G7Wfx-<mUd5P7{od(gYe$paij=
ztf2^dS^$L@`xC9T#cx-;?P=D<iL-WcxwPKZVbS~Rf09PHLmzU!k-J`$@Ho3>v?1H+
z!klMmEvHXEHv4&gqc<;Tc&B!I{}>;a^!p3`$NUi1?ocGZU0KQv7`pS8Q+OgxjJOND
zX__Nb%<lW(BX3VmXiq$*l!k1rD!v<?SMTesxn_C1^%#o@Zfi|51HS=^Go}f*4szkP
zaJT9v&uDkSew4?$KQYElR^AfD7?)Uiq1#nne%Xs0`;zR*=<ju5SWc*Y=HL5_TIix8
z=}T0u{$U)9k%~2fPS=BEt$yRgXyg4#MN6Pv`xa=poJax&THkE{Df?trKiOT5$+gwu
zV4!;$^yCcmj4(9ghK32u+>t6A|0lM~tTh1$+Se2sYPPus8z%e>g~>PJT(4vEmAP%@
z$P_tiA82c^hiIcTid%Kfz6bgHkDMBzKN^pWTnsbPcz6(>3d_#P6AHy|^;;$r30B`S
zL9yfoX1HP~Xms2MbZUFi>BmLqz0DNkv4M_{Vj-Z~cSOQM&@omG!dE;ip+{}t?nNY3
zZ@nU0wgJuk()A&1!}e~n;s22KCh$>J=l_2|Mk6v#RH9KqqoM@YXkEZHD6K<9jXNqT
zidL#<Q3#?UBqjmI%P6Sr7q@D)R;}8)w2Es9C;@Q+w2J#umottF?tn}F@6U7Yow<{M
z{eFLcUYfc0p68tNoaa2-dCu0aPE$|&4X#K{)!>N8L*2Uk5P2A=->m-)D(jxDENfm(
z*y24HKlRYH{n8}2aM#OX-tCegq>&MT76!Dp%>~~K*EB0eK{#`uNp+C;esN`)@5qWq
zL5%3v+a08EG+aXV8dxlQ3kl6De`we+sstkT%Rl1o*i+~vF1|CSKgC++Pq|n3CUsQe
zdMYrDunKG7p3+CGWjwI6fwJ6<3+DbpDizl-%o{b=GCieCpYz#0<0~th5v#01Id|Vt
zN<vhw<&_N!=*OK0wOzJLdKAZut#0I7s`-BYa*`LvT66yQd)<TaHxA@BUgjD+@T3>D
zioxhNmrXIS3-eQp8aBwxQ&V%SuQAUCd1~obuTCJUW1Z3Tl=^1=cMCSJE-M@V>wigf
zzFW|TzvBmGFS>|2y63M?XGh$)zwTo?wl~K{>43tF4sJo^$l-8x_)TgxweFld2fohy
zlwYuWNB&{=?S^U^SL@kQYvvGDxBhjm-~DhKLhx|W2*Lkp@qeB8zpg+WJq+{(3}cZ-
z>!QnS<!^l?%Sr+jU5MUGup)3#WALF`AKa7gDzvGBn{|fOoCmLcc?Y+_t{bJl%W=9o
zM>sOfT4iU4)5uzupOigw{eC)debi!EFLZ%?l8o0jDv|f$B=l176Y9voQJJZ!LZw4X
zDlL&7vquy-27izCrlop@M{SZ-p!|_m{@UC0F?T1Z7ot1n(zLDKgxA=LFxA9q3fr1<
z5-t=T2%Vs?Jhcoqum7I_XrH?-RBJEOU(v{y6SF_Dc;ok=md?iFjaA#x;r?{9rcY|B
zNk!_b^^4T|-$^J{PD;TQ3uRery&y9b(}FcXX=8aAdE5z5Os;n8vPl<bmb9(jy6xk>
z-IlbiTu0J%fQq>2B=+|(4PK2;jL4w1_Fzvuhaj@9sQJTg-M&gM<%pP{_}1`Ax_O>W
z&JAjtw45yweddU;$U`kvi60HUrl*AUe2$0tz}?9ZDzyPzD+mF1hH}4xV7Ygtx{LHN
z`*l0uu<%HA>2P)F@B-(C5hIjHdZ9Fn9F9nzRk*L$BV#sk%9|Tl66}yzWg8%H9R;RC
z6!;+=-&SrI^}y6<CMN*9_0_voB4bJ+MqA}ifW`wDQ&L;CTk)3X6khf$U?Z*u1Zy2i
zjr%RAz)*We3>8k-j7pBKR`?Ek>wdGFVSE1@F`dThoHBP4LMkS%GrszlSDLM@F)&G{
zn*f-qDC)~=J?P}$#z1ZCc^IH>D)kAzdF40bw}dn<J`z}8CB6>}5tVojEJ%MMzTt=w
zRhjFdVouwgKl@Tv{xR2lGhKLKC+pkEo(<H%(Cpa>-kzmlJ#luOe&KBW252{a2xA5_
z`VCjYs3qxapQX~9y_YIb-J@e}{$tW%-fWLHEh_I(n07XOA)0VspX#8MaxGG=Pl}U*
z#F)o9b}~qwryrtVQ`_}9mcPth@{09p1--hnj9$4QN<<2QNzYk_I=1D1F<ylkSv^&`
z8`vGKTB~Iu1`2(`m8?+)r_|;5C<8((l|aYW+T!INW#eGa%I(_}rIGw*d*cN6_D!O4
z<d>bGY6vdUX=1`!ox=#7eDTF{E}TOP_n1dHcrRGO#I`(_3Ecv4fl@un+<mW0dxz9-
zdP<#vmt{&U@d?=E@9&Z-AEI=v&SDm1YORiF=qEQ}e&c<LbN9aNF^4oYAii^k>8zpt
zn-uK+S`SkLp#Di7k)063MtxB^dT@K`tqZE9sJkTy8a%s-S+!hCXaYOwlTFl_CH^oD
zx%y3Htt03<?sSbfF-(2t`O&qGNNH2;*|CH^pHDU4Yp9Gz2U?V%`TKPn_DpB?dTg$`
zPv(3)iyc4st*D}Mo9D8*Fjm2ZH@h0clZCdMH#~=eZDI9GqN-{$aRp6IRECd3g2WN@
z!Y}Dd6w(1-ZpLKGO<V(!<G~+NKupq|%+UhACToF5J{m5Y7vbjMEZ`VvO|g$26FP?b
z>SdK`%(r$=-vG@x)JW5N#rePqJCwT5?mz~bL63f!#B)#5TC#i3)=edQ{wbN_lKiQu
zyLx)pNq>j)w?U$Y1|Wk2^aD$uA&L{3cxLi3LJQk70=;acluqYUg?sv0PfxzX9}pHJ
zuSA}(?{JBpYK+is{SE!R&_J42$F%s;{GEu!gL6#q|DhiVepbX*VP++HaZOC=Q;Gzi
zDny^wMH37;YL$;h!-dPMn))B5E(Nj{z<wFHdR(|5;Ab(!Js_VuI~m8&RV9pXH}XIG
zUQbuB@zoDwO6WO(6_3T`l5XxdG$9B>=dL^X@=HqLrvML{W2990BQ4fQOZ(rcjOZwI
zC-|2Kl^>`-v%@*>uwif3dchj$dhS!Gw0_Q>Sj%^ggBwirL1i_w)1c5n?p4;c<v;ZA
z6y_FbotsK$WN_YfG-foeY~-eu;<tAv{yO4J*5$8a4i&H{EKye*^g^mwAX((MO({12
z50&Y*{7tuTs>7<FK-gdm>X!yrgGDXfCT!3wA;Z9o^fKM9)0f!K!MVyRx|(Ly%x91_
z(>P;|_vTF0y*c;{@ESm-pRj}ep)Pu;MW6MNGOL5UfY#A`t)g7|lJ`aMW0F5Q*=4!j
z=**ECk;;>7pXYs%Ud+Uq4}!=fFPYHGKu7cZw=mmS!H@OXMkBEX&&4RW2p1M-x8BYJ
zM<BoUsE$A$f1X-A5fqLvJKoZ-QE*xR3zFbE5rTIQPgbeHTFeGQr>H|bQcbdoE{$5{
ziTCL;S-Va**kqGCoa%ALt|hk!ajqB6FqMAjOX1utKQoPo7(~p$Fa3u=k3sn8zj{?v
z3npu!bXrOD?MPv2Sb{EDL`7O9!zhU@qI;mBD`vP0h;qN@te%c%sdrLeR1C^LDvPF@
z$gZjBUoKVCg`~1aO#uIT;ZMu;2V@GIvX+KW+3=9kMbtx*$53ykIzX$j1}sPq(?<${
zaDb9cjEGMquwbFgZMCH|ON5(#OXM##H4vdn)_W8s57o?J`fNGnp=Z#jfEAU;CW$>7
zr1k);oUZ=7iEba%rVEZlI882UW~CS6OQ*P*TX;J}C($irNKC$3e1bH(r_TMU1KWMT
z@6i{-*Qzg$0@s*6L#=;upQ-gv^^*w;c3SUD+7h3(R6hkQ3qTKGZmDtcwWyNo3M49_
z&xEe^-Q&x=x1_#1(ALy9)2Gc^bA1Q<`cD48)%VHYef#uNKwUv=wa=$5)lb*<ElXMZ
z^4I*I+V{9G^NEuB+Ht0+?-rl-r#07ihOh6^|66^1e3^Yq>N~;LSLV~Yt+~E0EhgeN
z_`lWn?B9%@&*`T?&yQ@vDsi7ryI((D>B+(`@yiXIu)kJ*8PJJ8vx!W6|I{9m$tyOq
za*k0sZPIsj(ih%2Dhgk0`5q?+w{9#y3T>2@7l-iFXt0i=u`xdphrRCh{*fuLDr~x>
z&e`=zfy^E<hCH&-0N1Aw=dBMaKYhsTK9PZjDcD$ZgAp*zHmMReFsLjdU@3PrYe=PT
zLbnQ^4U0Liym?i5!{$LbAW6B>OU-hX=a=C4*5*IAgsqhz*<50JK)w_0kko%R4<g)d
zpl=o(i0RjR2ckB2p0}JQKNTCrN}sx4ZYm<8LB>pvB~>bEM@xzXx<sB+Q(1N<eMj|U
z6tK}Bl<v;tGZRy)qCvZPW#Y1p+K05TJ0B6Sr8S93pQ}AsK$s*o?P{|6vr!<&szj<;
zmeW%Htv+j?r!sYKULzPcH|bl`>XnQhQ_}|OrFq_Zc4te|>LvhF&3*JS+qdPzN(^}K
zP1qfENUC`~`?%NNKjP!Vy^ptHVlZjO&aEAn?VUMx#?Ik_EyHN)`9`!f^ESC2;uVkA
z<?_PRe|6Za^!!1u5RhExKHW;SB~tM<dm1u2nXNRe12e#0zuLjT`izJX8*jDD{n+1w
zRT$XT9&GZc7??#9UJk*k4Q%E1R@&m>F)$j){6ApsV~^7K_(IFxN<E6d2;j$zLFoFX
zc~c~{Z6B`(Jy(%F?gPkn?>9xVjeChDQj<hSku2MH_YW$|a&1zb+3U-yL4gBKHsSl`
zd<XJqAal5`9TeTcy0LWAdu6)ZA=`K5`v$PP0Gcd+eQj<45AMn<F;~|Wqph9n>x8r6
zHKZtVN6irdRgrwuRPPOX6K@|OH*$x+n>_wO+jPZbNaB#hW^wm4o7_VmkZzMDH-aUZ
z`L|sHL~JI33dgF#(PHk=1^<JhC#FX&l=x56rD3}-LNLPfdrXNK>sok%<9yP=4R;Dl
zCIM;*yJYtqs!=V<VbWK1Izg{0ojssADZCzk!LvJeC5{u12E)F>eez(FM-Iy#%I$x&
zYUrSqspi8xz^avAfdR^fHQ<M`Iia~fi9@r)R;?ToR1SYYqh3y4{|`tEZ6C5~r6<p@
zuhN2@_B5{)3ofRl*x+!HJ^7g=W>kY@B}H&#Cu(wR4XTOtO2cb{M92O5YTEOp8hn{8
zIXSFGTuvW(XIKI<8UYy_j&C%cS;gk}{Hy8Ao{(I}0%|k7hOE{3dqv-YhFmsz>v;4d
z;ugk&O?{#}<%SMS(_e0*z{ZyoEw8`C{7RjFz{s55jC?<L1;tx;nTBO7Om{$hO?p@4
zz7y9uwm~2W@7j+t)_W8VxcLI1FiD1ibCrb5NOQWa`m3*qRi7@Dn@fwMo7+rX<UWk^
zvUDipq5CLZK{{iJZ1@|r^qZsakxdz7!8X6NtaS^$jAG#?+@>fT`qB6+ob!y%jnZwl
zS9?a|FeaS}+6P8s@K0M`6K}kh9+o}!wSn3hS${Y^-*T>4h#1sF#h{woSBTSBh|^cN
zQ7nN~94bg|exHOV)oN#dW!kys0p2eH-p6ut+gwKZ@ap*2>R?#a^s8>L=@jmPn9KsU
zNw3ufl`s5V*0IkQSVtY#_eDAgTi^7Qh!PtE|N9zv<eg#J<c!NVfHx(b@^CFeq(vl>
zf@=5q$r|^I-C)96fl#+an-uY&m+7-(Ibx{tcq*pSYGnK^$&>zs1kZ5P?(^x)s@$=r
z&&>-UR!I5f?ntmu(Uck$m~X=`e|TDw9t>56I0AYwE^=30EBL4<=>y9*43z3~Z;CD8
zt&uboBJ8!vIPuna?dY|;K@}9IBwk_dy;<41wu0;+s))b7hQD+?Tmd>~N2*}5i(md3
z=fM*DJ)x_Ab?q%NBZB3?{(C>|D^S9}`fvGPof*r|_yqgIKoIGA(C1&9e`fYy`_~~P
zi>6smxr_1Uv2tx*<m6<IBjc25LQ!SG=EM-g^Mp^V5`$L<dyT(WtaWh}6Ds3bd0a)!
zoH7#ZHA3Hmi))5u>uN}23DQLBfW+fu?Xscggy6tWuw*|yz)9-;Hf=m9IB3NP;UE_J
zi!01$gw3d*wOgF8R@6D08i=fYDO~QiFj@2W<!DNRK$wE|`R2|9eNbAkSk6xW8D;CJ
zD$*JF5HO{byG=~YN{Y0}`67nJr^s33x1_(A0TWT1KN&6g9VtN{8Aakb3;q>#om&3z
z*Bu>-@&8585M-=AkChL<JqoH^eS`pohd<F-4O?Mm=?M?i@cK+wDQ<^$Bhme%=VSBV
zZ`R1PPb9~L<z3S#hN!HFGwFp=SOAuJT#^n3(-Xb>bu3ZU6{4WkSg-PjW9c{lw=6wf
zg}CrhCgm@us!KxRkmXpR{Oj@{dCJ{li<2tAk%Kl4uE1x`)l1L~6}9!;tCW=t`TtP%
z6VrvJ*uboes^+QIi}#W<VhC3&Q<dLMNxO5at;Gj}dan?5%Sw$l+hmq2ajJ!^JnD5G
z_53MoLH*Xhc10ai7DN3$PKgdtpXqM1F;_%!H>4F$N{7tFctMYy_~9$W1b(3J6o-T#
zAf6;a+p4AWb$*en!cl}atB#9__IgS<l6Bwi3Z;gbXtKCMnvnpnd%MiHtvdBk9evxd
zi+hfRM-)|kM64*7jQKAWb&wS$B${>h$}JxF%aJi)ran2pl63%XV}Lmgi^^PodemL$
zp%)w;gSMjY67>5@6_&YO1iXC<<XHhVi}XMjg!g^VrEzPCTLK=&QR!A>K%2s5%?2ke
z5N$0dV=(ItUgd4gXPO|eHB)-qn>S#W2v+Y~;qM2T<${IIvxspPtpjF4I^DjEjUFcY
z2k%$eb1=igisGZuX<lyOt6s*M7s12CAUWbraZx>Ni8)eD%wF+fm<)~f$qz>xjzEkw
zEpsLLIoq)Z7eJ<3v^CZanP=L%$AVvN(=FJm!pgd|n#0{&e^OoThg9=}mi_h))p9A?
zH`V%xPcaP~?Dd9Hf=eU)i=mYMW$o-&;oegQ>Oux#8eW1;tM-@phS0-%aW;Uv&q!!=
zucJYXqjrVCqq#)aMlvJGcA-R_r9sr9`o4sPj^c!piXlPnEYk~dHGbsUK(+O+RO9zs
z8|d3G*@8oQK)$7aF(QHaBtigCioJzp>C9o(g%+F!PY5;i9gc#Y>NVg`wQee>ZyEHd
zqF4Jw@Maj)u@!u+a&1l6tAdANEtElpvYHISV$!2Q@-VPak(aA~+Yhc5v4Z4YhTBP1
zN;%Z0_zp~Nsg#1}pK9%;RJ?yq3`Wv58V*hZUt4^`cBVex;7haQr;%cj_=KH+86^IF
zyGns0Wmf#KNIl?>YETqqe1DF{+(wJ6GD4{G&z51R0x74)z#3j1e~8LKBTugtCOkvX
z={EGwCLUVih2J$yh8CQ1e^yKx5Kk*}BOozrCmJirtbdx573*c>^U0K)oC(<@cZNE-
zbx}U6jsOC+Z4iSB5Soc7j$^ioz8lGNuSdF?E-6=4uB;S*(-dGt8HNlBvjFwl^oT#z
zbGea%VyjwwVVAnbU5y|sWW(6`KN15uAco&{g#u!dB^hU}Z#s9C!OF8R9iS$U?wTR@
zo&;`dTtDhAtB+C96#wzW+#E3u=pWubFY54o3z&&{%iVug|Hye4_<j_ydpcHt2=6LY
z0L3bG^6z4)sOd8Iu);YTxLbVgrXyqNR{bmZw{GK~t^Q0^f0{4gfkR^jSoMEU0ZU1B
z`+JaIkBfm|SjyZuf&5LWUXqC02h$f?^K3xSXqud+*0_}zB|+60kMMwo6A5Zn#JQ^F
zWkF;U1G*rR6o{ruNPT@$3<u~#{06ay4zqpki{nPq=<osoI@i;1Tw6DcSOpzU@CE$!
zSFs9=4p*vxMLu=ud9hUMhFYuMucPgFCNpcfT2DNsy-_Ak|G@gE_-+hZ!+aw}gY|nX
zKO}vA+#Va&o2$}eRq0xp=PxV4`cJ-quYVcC%dlQf2f0l=)@R1om|MK^5?}oxld$kx
zv81@v0g}sa>b1g8F%=EEE{nv&)%B9q%<<U`W);>*MAMWZi#c#`aBNVgoFDMkf;w%(
zQf$}ncQJifRhYW6igB*^Jcc|tSNutg3vc{$M_=NH7k<h=!V-AY;usVh@caq6%Ke#X
z4)GX8z<yvI4*J2(Bbn`c)Y*Wbh^Y_HR4j;Qv|)<e=nUra?Tfp|Eu<=FX3JDmw|*%(
zwqBuTO}-%|36qe?=_K{`OSC3Guk-qK_a@;=8vXuBu|9-f%UtisAL}GDKWuCnIu40t
zuulIE32rMkBgK1+6Q$=;8s2@+_C`G!DC(@}72M5B%qxhT%c#vI?M+QRf&w~q0Zpw#
z^v&8pPI`N$SsNoVhKtQS5PJml81(9e$8pFc?D71C!>nDVkB7b>Js%Eb&=G?vPD7Q<
zVCFLihmPK0ogxCMNX%&d;Udo*zJnqLt9Dr|3G}=zt`aRG{M1GySS8ASJUju|rE%Fa
zu$w|KIuEejJlNd_$B2#0v;HjvgMk1m_h6rN0Xq^fcZEl3?(wlgkj*mp1(pWRcyuCy
zsDX=-yc4~@_4KA5ZKi<btBTzV14HcO11Av}#V={OO0a$&r$&$Zc1rjynDq`-%CG(-
zzwJ$WBMA?uv0A_WQQ7n_NdEFB`C>Dx_yF^q2$&xAZ;pP6@f><X6?-1qm|joR+z7A;
z@%aga5)*s<5f5ta<f;W6edK<4n3ne6U6`o_&72X%IcOf@qx>7@R}@TpM<Y?KKe7*D
z{P5=0-5XfHFJ<};6=LvMKPLY+o7gzMdC*M#N4PF-Ta+h*b*z4w+my|XJmbrt|9LJ}
z?wf9%c)BmH*XUTsm|mZ);$Bp0IQVx{vGzP07LQ_ejFWPw;NG|!?5I`i3JrGTCe0EZ
z{aF(~%46l|kOyOR>?*AGR2{!l9YL74-L`0mx_0D?yLAG5@hLnKiQ=00;~Y>z9!H8l
z82jrF<&6%e%YQ?<`iTiN#nZfMaO(0+fZlzXwxNZaxzZYHwLA?u+%X>0n}^0Qg>&Iw
z^CO1H4J%P>7xLZRt6ZuvrUB|=8h|0->^iD92iSdXW2?lKapeUGxSt}dqfT|WIo@=g
z-UY0~Ou0G6fX(t?t#vVst@oFQV6|4-IUekYgJNLT|MvstJ|Ty@<9T?#M?c-O)?@mx
ze%on#hIZd<i?I1^H@M|jHiM~xrnGf(?XY0lY~B@TtxpFBr3d|#YBf5q?4FwOgWA;H
zH#U88tX`QSH%Rr4S1N=XD;)JO(R?DgxdIA_O6gT@^B=o0>`YwrKRPjc{Q0oc!?Qzy
zJMj3QI{aGDZ1N$}C6FBpnQ7QTfun61U~CH8T5H!~i=)I~I5IeLzH8aHTbV_4{zEpS
z(;mm-S7#G1M(^A5o}VMsXs{wl1jK*eCem!T{xdDh7`kW#x*+k^AF9d-VACP@tqaFW
zDAK_pwL#-tnjyMr6p;HA1?RY2Thegw0Wp$@;oT1Okvm<yY}Ki-+t%@7_P-#|%I~|C
z<z7<-%u1<(*W!+xG4a!wVT$hO7rwaTv6D{c+vE;Hz_@3;dG+9NTQKo-G&4=FzNRVr
z5#Py|`K}`O0)Zp<!JDS5HzX*XyO<9JnJjexipp8*SZwTt1?+`Dh*`AZz4H-Y!OZ2P
z1heHa4tR~l#$5p(Cy8O+N5Raw{^?E1Tf(Ex&R80le#9~Bo_|^cC3nfr*3|OtJ3c3t
zy0Uwh5=G-`RO>{!bKUdr>d-O#w9b~_H<1<<{hid*?Ig=3>sj3vd<qf+e=nt<YJDHP
za3^3~s?b0HuF1Y2WP{2II7Ktl&^<M6nZ7YGO1GuIdp(^U$K2{q?2iAI-SJ;4*R=Zt
zk$GOn4`^hjQ%kvMtK)@qTL*C80mltqgdvA@dx14*lPAfU!$$T!@j9yM_L`X%LJ4@Y
zcqQ(uTg6X_8Q>|z?0PNko7D={?K{+}Zu6LdwWk3r#jPA=fNDm!g{94zp@UD{gVv@o
zxHZk%ES7mSH%Xs&e#02$gRwBmT-sJbzX{`hj$NQxxjzY?-9dH}2%GU%P)+uzZqsM#
zp+$@9szR7W9;VoF80D?5l`z8uXVv>ba(RBKJ5jhqM_iQRa|HO{`bO?|3Huf*?}#er
zM03A_&Aa3X+TX5GeMsv+k3w0z?>_q-Uha(r;oza9zSPtKUHC`bSO+JjT5SGI9jX?1
zZOC8(v!h`6c;vK*p0Stm+-AKnUCs$YAy)>2Q}BLTl{)CPi!Rm{pb`#yIo*xfH66n^
z=*7v$g#!X=_0<m()2P-bZ}Cc~8uR80*T{hb;DVV}$)KedF=rkoMZDl@UK0=K663$P
zKK_|T(k!p(>%z8~Nk!ee@&mkT4p|9F^iS^Q^Xa)q;i4i%OXxXazfyj3S3)JarG1~y
z3ifHttTS0F$hjL#>G{7Gi?*kqFW=&c*+f&9^3PKFx2X1F`R|_hU(5e(DgH8A)!4XQ
z+|%e-8nS3mtRYxT?q|Z`aQl>2G}{9|vu_L-url|8fO`Ur6dWULnmY62KV&dU^x2oG
z3i|3dsa;WKEUGU{T`@|3D;9p48a|iLERNEmp41gX^!J2ie0nA|ttT%^Z0L1KPky;z
zSbHI5%{9ko57l}=*KV<sWoc!r52dWnU#d*JluGe?Y8z=wCL{#5i`~T6ylTD6cKtG)
z+IcC{G_})5^y<UjL1v@*wBx)lQzJmDB5{XhK5-$l-s??TCO4)JZp@aH(q~uQlDpkm
zJ0W40mGhzBE;`GGMO||?c;&XS2lRa9Htn6`@cOpZ>lU}qHP5TX{n<V}=j`A3f9db?
zKy*(J;FS9%k31(EpLzM)cc;HM_v3ZWUDh+5`C`D!+2fUIhjg}AM*BquEY2QQ3mW}3
zB4=w}7{kNUGjdeu!M$l`+C~g7%1zkF8n0$m(5&C2K3}-|T)oZPP;a{~ys(nhN07=|
zesB13Tpp0htNh#234oA%qChGy2|r$x-+htZFXUZ>x-1DLDTkF~Q0*(a_ZcgmX`Xa9
zm7nHv_)BD-GHv;<+%L2@Hk;UQ?--LAN6H0vw=1<Mxa)f0?p=Tn5b(qjV0b9^G(75-
zYFB+WvEyE`8UQbI<;rwONha5F4ys`{vaMBq35~4uo1Z=r$(ufzt{>J_H0n1S{=yx7
zc;~~Ue${@J!#gqvD>Rr`;m&7$tY5qk9#!2wca)$R-wokNr}UiX!umA{{oT8^vMjsj
z)#;_I&wn93;0rdLoH=eZ%RS(PK7G>79X&5hrL%`XQ+8I(o$|Qudk5sA1NnHPI5V5Z
z4_JkL{{s8I7}g<I!5pCWE8Ji0@PQEhrl-`Z`R<=Dnb|$i|D28B=Dsw&S*p))e!I@)
zu`g&7Gh(vWG5s}|;28bUv`4HzkXHJSzwSY$qSmXyIzQKaJsS0Lb==++>95sd|Bv+l
zjMb)|{w@7xs+jgRPya=e_Y(b^-+`QchY<NpJ=9|zIQh&}b2D($hoC5$S64vojz#oJ
z55$&$z!WGtnAJBc&m4E+f+4-OoX9ID@bh{IuUimJX}doC-K%NtKt<f?g)ixaB}CbJ
z&<j{E#cRAf)z6yWsTcmW%z9yt|GD4)yhhk9_d#UDO8cYJejm}Z%DUp8VONynT~*9?
zf1r#t?)SM|G$~zQNg4IBuvIE;xOd&)@){sb@zh2S1MR_Asc;=n)dI(H51$ylYAOXk
zp~icY)_gJH_AI0ltJHyCdcOPiH?;9|v|?xba<?iiU6V)Q<^h0TIEP;0US?JZR_kBe
znbo-V!MF@34KGXb4%ipFbq4#;$Q2Q<+=IQ@1?*pdxz(x*Bx<e5F(IL=X-Lg{w~HDw
zPz?$HmGoC?swSUGWyo#eaX+q0ZMcM?gb4R_^p;KR(FJVB5DXFn_J+s3ybGA}y8{jP
zXr$t%oCUTg#juUbpY7*85Y-93FvJ)<NmN>z26dUCUZ1n_hD)^7y7t6~83fANIPTtN
zk162rePU7uPnY|i|KUmR{()CeEJ}+gr$3Gl(A?HNV-LkNII2!zIc;zH%u2aVu~Nn2
zSn`8LZnDrR5JBbhmOi^YOh3-jr|VTc20JpUWIy=F3{V*%*}6Bk<B0BZEA}B0$6qn9
z_FZYz3%<`;;E92STL)>>0PST8bKgE~WBt!>4_AsHAIiY`S}xgBRTV+<U~nON)EcPv
zOyaQDH&qm3<y4D89L-SbM2(Z>gj-NJNIVj~+aNJW+#kKK6fQwx^XUCKz0=vnIlY&0
z9f9aCY_pZs{AhJc;uYl(SNvw~kGgzoALb{g;59vz7;9)WOyKcs|9CF&pFd#v9X}mQ
zg2bOmAr_(#h&8V4Muqp=^<0+!HVW<)uz*}=n7>K$^|4A3VQQ_mH~IUVA54$r|31?l
z_nLTHJk_kt`q@N}t70;_y+Aj1HVVil9y>9XWK%HTeH13WepD>UVvlb`Nq77vmSmf2
z+QOvd+*d^w{3-gn+&yzHHz%?3remi2*Q=edN}L)i#3r96`9h+VMs9|3-z=dktoXT@
zPvU{P+}V70TbzNA-HwZG8lhw|gfAufq4WJgA>kp<6ZZ)bp_?BoW+;g8<ENw9*M5JH
zv3`kv9whFfTMN~Sr58bNZrsVe0a*zC=toR*`d~$)U*}ao(p*vOx}9&+6uJIe2+QN2
zY#I#=)%6ubXVvvpz4c}ha(6jhA0&oM6HiUyyJsqZ%DcHgu$496>{2UC$0g!!pP0z~
z3ZKRO=}Z1h0wh0=`sN%P>l&L;efNWqE2<-`WNzKZzomz?pu)`@Nl$3nJW|g5qTH|z
zV?Z0_runnG|L)6mSD)%fmEMF#Sqg+pn|{1O!d+sYii%4bX_lf>9rKEFo2FkF4bSGg
z54gaHZe2z>a7?+vO&c80y#g6+-JYU@#1Ab#-hx*>OHq7v#b?S3I3waFebY0_Z>d1D
z*R6!kQjYgo4NZC#Kw4%P=iqW-glrq|^-Fj`#Lp8%9f^9^D6)Qfle}hq#sz4q;JI*+
zlAjsO4i67L(lJVFx>^-lo*mKhSEqPddMjz7;wuzK4;?LeA;y$%Eeg?|(Z}3Dbe(w*
z<e<gMu~{Lpn-a5$kB;ul3@`o1T&bJrL|ZYv#{QddB7H}h#p%$*<9`cFD&XgdC$pd@
zEFo+y5)J44rfPi}sZTZTJt+YM(@&|n?Wj3FtCM^mS;{MM)%hZ$Vr!j>#J33RvlbJT
zquJ>ULOBU*rCK~C-4hTte?!zb&(9Oppt0iTvHuHZtcMxzG*+=yUb9@1ZWsT2tp3kd
zE`C$$fR#5#AK=v*(d_9f1Vq?3JS--dZn>7O*6qVt+cOg+ueXd^1fn^VG2-URT`w0m
zpID*t_m=2n`i=uEsH{{%)+Z?X&%`A{z;7_q>I!DRqbh^@tfK53dm}hG+%E%PGKGV8
zk0**g)2H|TDmY+X6Pl(&Tk(5+l{+M2B2x*koE0`D$AyR;tOB3<+h`RyOJT!R;7E&K
z1)gK2usQ_~SKcfo)Jc}`CPon2&s-w}gUVx6-Li)5(wSzD>NOt6<;pcu^B#4&Z|FE7
zLhj+l()2R?Z`fF=6sRb4pO|UiDZ<st$>rtkWh)Ob6{pEEt=(O(6o#t+fk|#;Fld+I
zv7YnYONXpB>Q48#hGaVlK^p;{oUPdWqNR^tx>Dr8^_#SmtsaT<8ts6CRO^*WZXdE#
zz6sRv95HCI?njz!bp*ev#<^)YRFtd#nF~tStUEIQ=+|fki<6t5nkW~cBfja0v!gg)
z>TMJ9l~0@EFIge|HH&{$HQcHeLH@MS-kt1$v&jpu@{8=<`X?1YLvm;d2JuUJZMNsW
zwXofCvE8Y#oo_Nb4}t>@n-Z~I?=Ny3_#Zk3TCO@W!YS9xci1j<cEolzFdC1Ff&L-e
zUAWW#hV9;%Y;3npf$bhEu$>w}_@Au@Cv;`Hm+*MRQIJMV*PbR=qsdan*+zI&2!mVw
z3H&W#wp3F7>^4Mgc(L6gt*gvPutY^EOZ|&q*?X6Nsk4+O|H5=BU?=iYG^4>RGgQ(D
z+Z$BpV*+)WpM(xYHOnh1t-cPf_dWA~G25WGQmvEGCz_h&&NbUiqpc6Yqk_`R2Xh`n
z2dw0S$TKXsLfM8cU3oa0HLv^-UOJp{y~Mpv`&OEt<I54ju`jIDR+jV;*%2?m{M(Pc
zOw9j&L&LAzhrAFnzOP`=%8O1Mmbu&u*SF)-E$aja91QfZ>>(BCpkBi=$5aeM`ZdJW
zN>LSC?&?ohA4KG}7FyH5Tzfjw`Dce^Ue33>s`=vYVI^vz_geC*=`cG5&=xDjdf%Nn
z&txQf!1pX}(^@`vIlGc2A;Wd3MDi0p2bEV&k{TXv`nkpQbGjl(OysNlj$`zN9I#d5
zaTSwI+-s#_m%bk8OQUB>bV?{e+50?OYW6pK2?w*hJ!J|3*+_JPL~pCP&r(#z5e1rL
zdN5P)|DrxHkQ38QPl=QLrk{w)rf`>^hPU|_PG-4kl;lt2Q<FbtEKL5ifVSFw$rd-&
zz9zLlwxIS$Tx#-1cqdf*4@UBbdCYuaS9wX_V<>uu1CA4^z94#I^Up%Y^I!HpcSv1X
zg<k-byS|`5K+sj|(|M-c6YcTw(oVF~y~mJB>opTUofC70SoU7#+M}eBdl@vSbN56^
zH^+~Zs#emhDCx{DNfV-^E8<66?VwyIM@buY$yH}bF=s{o3Z9Mb8RmzPL+orXm=s5=
z^nA=U>?itb{7`CZ(Q6FiSQd2Kv3N%ReLqooe0`ra`+A>$)SB|2(8XW;MYD)4PmqC5
zjVM45JUlqu<w2{e&8c%|?(F5GLOoxVj+oB9!Qw5j{pJ|3y~g`*HS*u8rF^Rylb`!L
zSR+V|;Rh~dDDBrH_)?#r5%&f~*-j2-kl4@X-+ztyuUu1pu+#98`uUTn9}wdv8;o7N
zTqvtD{uLFujfW1=XruH<5JU)tfr{7$mCH*xs-#78*y8&M=o_Vdvxmr&Soe8r?03)U
zr?O0MIzSnJ<f?ipA06DDseDJt+1_nI-?uJ8`q-?srD-NJc-)N<B%TyRCb6E14-yMs
zQgO+<^l?zz6xJyuzG(<6-hWS3JO=C1tV2b(K|#Pm=?st3r9N|ueIBM^ROMKE*5qgQ
zM37rN<qXaIwD-`+iW;7|=rE8x%z%=^_z9AG3(rNIvyn;cr0?A0X313Z7)M0fu}^qx
zDf<`&CU!p=HT9C);t4O;do^t-uG-UU5veS+mGKfA#M}^qMro*P+G?OQPMs`!I(MdQ
zzjP0YBR$tF$KlDnY<gs`UiAuLsZdja8g*csU;!2S`L?k_YXw5{?WUy4GoO{cI28ip
z^lnbO4&ei|*<U~0c92<`JHl$H+|j;7%5Q`@TNK1SB-zBC$Hkb-f;4?zHhK7<o^hMz
zLp$-;|EQx&#%ur-<B>J(iTO)5Evx8{B6{F{&L%o<Jb#v>$=!CLxr0EgGt1x>zl*!!
z?wQ6);P1u)a5Sr6+?(5bF)c#v#QKbouv(H*H=MQ}I=+hY!~aV5<U_<2R{n#hb?)Q-
z#m}ygJX*kWOYjI1$BnDf@$9UIPtK@OTj^XBMLFwd%3Lkybg1Ym=>+H=b$t2x-6SX#
znuzS(g0DUsXr$)KnfxA51_>r7=IAE_|155RB0%Gh&27*n6=$4F5AeJlk=UboUXM&c
z;vb;QM@Eu~L$?tki9G~Y7_ahu8-1Wi9{U*xg}Qr&!-UKE)Rc*Jl^L81Y_f=|`{mAt
z$=vQo(r4N|>NSJ^+o}I-$6rZ2s-*v_MTvo;g!_tss@erFPoGN@jMrg4^UN#U`)_KD
zlej(}D$<D2ZApO6=c6g^xepEO(5+&~iy-c6B~Uz^4%nuIjwtQ1{bOJjPPF`h(K~>B
z{=R|D+bjk~H*o$frMY*760p?<`->2NnzSbT`+5AI*(+9*;eT?7m@g&i@t@W=24?v0
zS%UxZ9x=CH49xJi{001X^I+Y(;Qt}*ciR~L(Oj}S<8Zo@kz+}BcGmaTsAo#fBMK6O
z(X&DFApW8-dUN|?><A)T-vgzuIVOgw3H~Th0MXvj0m97$Z~&~{H3qn$XuYp+ZD5%Y
zshbXrrLtJK%)PPH^vCVPKwcX$JMo|0C9xL%lV0E$FHH;#rB~fH%;lIcizkCwb11%P
z-W3ObJG9%9Ow-rAwRA(GdbZoMzJt&%rtDyqe%SjUv9~EjvS*r<JxFZNhmN_KL|=X#
z8Y9N4U)~?R=~_~jy=|z|wVUSIomQEns)FQ-u`*|scg;giv$M5kN5iRB3MTNOS7{j~
z7BtCZj#UJ!|5@xM+a0lsc9<r{ov%p<e>7ALhL81E#P0X-PK#T`jfp{`*(#G!FpZzR
z-X>M-Xu~V?NDx*75}6G*O-mgg@b4PfT%@Itbml;B*z_b9&vsF9pcpO;1%ReXM;lgD
z>y3vhJ-Ag&vE(L08}~LbvE05TEZC_(f2~%R#9wLNonyFDn(<175~&<@PmkQnxV1#t
zpmvGSf^Tr0EH}r}+b@gQwD50r5B4VuFM8kXMfy<+kk$opHS%)gP^DWjT;1o#rs!~=
zfwoD1*G)&YyB*NrL89&%h0-~jE3vPCvNN1L8a_~5*aQP&;oi+P9w{G-0B%4eB>!-+
znZat4jBZ0>l3_C!^PV?9BBF=TMANGKmUC)v?nM#&e6|ecxO%QA^Ck42FacVlG0iiy
zKZ*Spg{<|90pgld##ABur}1~t!pTFLS5;5mZ%#EN3zFLb*wMz<9jKG@q7&VtoR2Vr
z30A$#i^d>Tz>!t+Sv2x;W?_B-zjNHnY4ExLaW2(A6E5q5&piu6d~T}|KF^&id|u!$
zH6JE?4mNzKt2{_v1+d4aa=hgu%(+vDO~+gaR6d{$5xZGO^;e7LA!-Zr{{pT1-9bW2
z2Y(kWUJ1QYQ;+rh2?I&5;!@X?uwXS3ySm*=tox!ri;=}&oP>@dl-TK3nCHcDO{=<*
zl4|}@FWJ5mmXasfbFmh7Ru2mfMR852IXr08B-^k-3mVp8X^t7pbg<X0DxXcZ+YSq+
zY9?k_CUF&?2<FY?XK=^DA(_Nf50h%SoboeMU9rk>V}@m?inRx~lno1dEFPAzH$5KC
zg>Ss7&UDiP6E+-4_ox^F{B<C(+*1}~7F#o852!`wCsbhuseGJn5@o#_a!;THZ4f*A
zz!?A9q+j=EO|#!%5bmj8L3*~<$4GCT(24%nswE{n8_i+e_S-7vu>4Y6rg%6vYDjxx
zE6@VLDUZ-5=v=uW@6&p^htaXD59!C!x~)-OPLAV)T*WG><7n-<=2okWNsmX#*OKg}
zkT3esZ152axgNs*$P(5u{H@5KQPu*oRg{i@Q&XLYUD6&<sL4(@m9=V})U+M|WZG=)
zG7Plypn0j*4^-AdjRvZ@B;y(tU6;Cc0lTpMYE;kE?rPjQdS<_iVubGxtXov#*Ieoy
zm!CF|f!VO|RuY6vxJ3LH-a<du1@00Lw{r-$frmSP!&rHuzB?K?mlaZ!T5ZhocfVBP
zvZ*oHJq7#WBCp$M;_lz(wuP*2{)^U}q4AsU%xzt*3JXQv<E!7T3z{#I5NpnvuUm0H
zRmG~dX5a1MqUP-H;ciaG;H){#z_}-dRH5#7zP2)VjvtA(kD9ZYHOIZfXgc@(k0m_b
ziN6)PTmwI(JDSA|Pmr2vvpb?ZGc;6pVuaMSZ5SxjM}aW|);Yiijq&O8ZG_Z3S{5V7
zF$8mfJE$_&P+Z<JcfE&;2(puhyRugd&IocLaPD4T+x&Qt!Q9~93)Q2UHsS4u7t0QY
z8b5ZHcp5)k%C%m~wI2LN-=%Yz88a!ufKO2iPKa`H{%*)C%Dxt{8i-;V!!wsU=$eBJ
zYQNuLJ8fw+Gq9=Fqm>t!k*SAfY4IQ1#(j7>-1`GJ5~e52ItGEdKNP6;x)x5=(t*{&
zqIqSHhE(u~(waNErCMwWKSA!6n}v?DyS7P1|FR0V^RlzOHbNd(_PlH#`CTJ}>s10Z
zjUM#Y_+3KB$(=pi>z)ef9#gW?70Nbgk<VtkY_JXKj`qxobY`^z6l#!N+~q!ML^&NC
zRiB;y6r5bhmtWxe7m{XAXBeUOSZ={otJ%4IO^qM$2a7@yO#a{?Prf3U^o@}ymjJf;
zr|u0Kq#kNAYKER?y$`w2M|HH3K1%FnePlDyL<kfUtTVZvM(O!ygN$gQKCE#c5H=&j
zA@Si~Z&F<!qIbeK)GqhFVsJb4jBy{G%lMBV7I0%ixK<CB-XaFKf#9A6P7+H{4#j_}
z2OATw){N8bfVp=(QrpLMi4F7*ecG!hb-*0tS?u?nohqMd9nQOk98>ts9abvrScFdU
zuC>&#e9WH^aswAM=0O(6L3bh!leQ#=lX_^jzP7xcYW)LTX$`oEg%o5chdoo%-r*~=
z_o<dzdw}t`7Mu!X^TNl<OYq?qetDHopx0Ua;y82n?kc-`x3$qes8Yr(Cy7Py5c%WY
zWjAm%elq^<5C0lH?qFe-s=@U|W2du+5!IV#^?Lq1bTa&TYm_}99wZPpEBcU~sQ{0`
zi{GmASEVzAEgn(FYVCwbQ0|uD2y33c0;^3p$2ZCdvS|FaVFrMe$!D0g(s%VhJHll_
zqX^J#L8BVZn8n}alwS~D!#7zq<3D%4hHpf%R*kQyHTO0;t5f}3tA2NjsuqZ^i|5D>
zQnD(j^OzmFA{<Zoe(si^YuT)j8$L4*f36ElF0&b*=9TM?uWnvh9wBoy$Q;mvb~ik3
zW#m}o<FO0N_D9g4#g>X(Biz`D|1v_k#Q#t!)rQI7?;_q>*AFedV{t$?)z;T~Dx#P9
zC+MtRt`C{=%d*pd)R>Fw4ZG)GE|&POPpxee<9jMOA({1eZ4xN=ul>RDq!K5p6TUOL
z;+st@Jj35?WRW-kSYO2UF>)4<Fc-Fn{PZQH2FZ&~XW*TkxsVs4xI2VR@uxLp6YFQa
z(s1wWE4Gd-X&SQ<HbsH7QNLu2ywvp)$|n?2?u2h6Rdk|nHZeQAI>}8@1=&P-h`-zV
zoz7^t+p!T80@iIK<5*X+2U!i!zfMS^fy?#T{c8v~zUM~o2acmWj-Bx1j$GkaFO!Rc
z=1-Aq^k<z7siRYeu42m=_$I3!3r9GqEj1<^bSg2?#KU}yeDOPYp4QFPUn1136opzF
z?*ymzx?XtO44$U})3Gp<n8I(gL2gv?(^F_8rgNgdl{(d2<EuRGDGiXA3qTXq1}F7u
z{vPdSo6|B2GRyy^A~D^U^s-yR#&4f`sPDKD1PxG?ccKD=lll-1IH^xixshspCR4dS
zziCb!l&4>v9+hnH^-h}ZUY{nU5m!d`n-#Eq^-+)QQhxKV2Z=@el9glTlRbHq9Jn@7
zgKtE3uUcVkyp1GHw8~k~?iIB8sJ=a|s^ymrjhgsZQW*nYIA2ZNbAB+PSMyKnq*^Qv
z)ZVtMrB?nh0jAW*garUg(;PxLs&Cr}(Q5gmhow|dU98Fu5;yXZDAv~63u$q>G*+1v
znII^Lau+;lwkw-ht?cL}H*|BfQ8w{$^gc-M$jd<K{+j$h3w7o$g@@e7xA_8+*ZmHZ
z+UE@bLA!IDG9G$Fw19YG!CScX(CxpKKLZV|%_V>bPDJy+0$>(ELP+h2MjrGp_q_BL
zBId4OPC#6PO$51TXYiIy9;YxE=)gwf`&C<i=XS6h3;fG&ytpGn)DoY?&j2wEbL|tR
zVNMx{D6IUU=z<s7-S*ZyP@$0>g=L+c<fX#P3)CJ1F33x5u>fPGE{g=&^-nx`mRHII
zyJ=GmBy;PaAT<Uh6tNi%eCpwliyqrdGWEepigSF<U*Z)l*TBQ=i8p!EKk?e_r+Cq#
zK+JA?Vt209(7zzLA5RJ+?nfTV9TSzio%JffiehcXAYn6c_^9YuJ}l~REIy}t<tPU8
zSgqpH!GrhdN2gCcq=&4%x3D#;*%GqNK2AWZuBHOn=grtmMfcT&RW#fbBsK#HA1K?%
zKb_v9Ghu<MHU;y450=%!)dLmfY>AH@g|ge1wW|5s9MXiFLo@T&0Cwq_F-LHFfi*v7
zY>W$|Tq0w+>mVS_C2#w|0PTs-9`YoGh@bOlBL253Z@8;+e}dmKZMm^xyYjtZsu#Vh
zhcc}YbCioY%8SgwNidk2U1=^|hAi?ztdz>DMO6tW2>}*n0C(lttzzj6AIf?00b@Kg
z&IfnBge*3R5C<DUy7-e}{IpsqFgL`XA__FILgbEu;@V$I^tQRJ&f50C9^Q#7z_bre
zOB7s&1ozYpo`ZdAwz7v5=%A$yoDGot`UJb>BE{po_Lyq90yK^DhkY)53pLN0Dg4n*
zBYnq9-gp~KY~}&!QA$iPzvtWNkH;VsYpf==KVnp&G%QMcqZ0Hlzqq|gMd_boVv8lz
z>7Zwatv0F1U%McY2Cr`JwDKr>w(=0F%biI3;Ews*#kj-fS<ZUI)WxoQ(zDmm$Ay4k
zTpv`WruHI+yf*vUMHLkDY6+C~F3=@t*)Y^B_b^-e*n{FV^xy-VND;LB!<&%ln7APE
z{P9(0G|%U2khpKSbbYEdO`2#toLRtOq+ri(2QUgUPTR)PnL%bbRd%nQPl(QoFWW91
z9GD)odVH#7y}@R<hfJH6)@eG;3y6Wu2V~NlE_<PhP8?xKNhc%5pxx%<ny+JXuT!2d
z{=_mu>BnFwyt+`06MO?Z51u4HuQHdfKcM!}msj`pvIO_ZIkxlsx_2xo`U3AB=Y4@u
zk)hnt`vOBBr-aZKsEK@m9;5{i2$$xcx}{pbk@k~ouzN?*FG#gE>vPQPPxe(zx(Vu;
z-Bv)A^H@Mvg#8Y70-sUI<3m*Tj!=1-6dLoSqySV}x(8RQZmoK|MM+rdQOWAC^k-nP
z_wQG;QIoH4q;CC&{(&?juz-JnAo>T;zapRs^u2m?;Mx{iws3&ST9#>}973C)O&n;%
z4(+ijarZF&lE0R^b{-Vtd2Pyd7clpY6W;SiQ;gZfU*eOLG>-E-4T8+yhKLsJ{IQ$H
z?fmg$Lp%Q*fM)0C@}PgYKO#-c>AZBb=5!kR1qb(G{_J2@Qo!;=A4JvB(gd>eyLb3S
z2TB{qaXunRjZyKRtY!o9K!enFG!LG?k4`5SYP!P>Mr9FumbNW$SCIGxh{*5UNlgfd
zAMO5n?$_vUcew}0|5plKrBp;pW6ueLe18nj-Gc7`0e%}_=&-G5^NW8P^&aOOk=!fa
z7c@pu=50OAp8@S+BEkbDOevTyXzA8TzPwvIlF7m`y4=K?gsgzbjK6ziU2{r&bsWiT
z8O<bz@jxtKycWldj$pQi_lm}YlwGYfxbokm<X<YLxjhNp<PJhT7BruK=+vH^1gd1d
z4uInNjrd$xVbg>xkXL!~ZS0h$Z1UJI!_~Wo?dnNwo(<cs79WEa$lBH1a%&Dzg>(!a
zn7?RUGWF5B##3XC(lltQ<xPl;X$AQX_xS#TSJc3=l?RoVP@v@02kvBJwG-`3tHv(c
zy1-wwrMV97xQ>oUC$hl>;4hBHZ7Hm1UF<Kuwl7yNr&dfETPJ486mfSk27a*J7%f#;
zC*oFPwb@npKc|LBsU=k$W1rE?t2~foxT>YXd~M@GW593r_Ef3J4Wm_|-%z-pzSy{%
zj#lGvEi&a6HZPX&V4;Mblpt{n$teE*Lm}}VBu5D-d35w!CwoMzawkfnw%!G%;Go19
zQ_%T<D$aqkQG;NAbfj&F!x>1tWRE^XYR<q_vX*p)^=&l^DWq<3g%q`(zQRn0|D?JP
zPI%yIwZV=578(1TKgv&5uS_TZGQR7Oef6-#Gt9Bup|zQMoUmDCjcP67t+uhvdP-Ng
zIRkKLzPefs72?fyxpm^gp;8FRar)unx&GE6(egYxp~BU&y%N%cGyc$-kfOgh?6p5g
z@FOuPk&g*nZXLgW0$Y+zes+W=s_5<Bt#c>rY_}v=aLs#_JDqaHscg6Br?;vc)OMjO
z@{JuJc35cajfPc5o2rnkx_*QMY@T;I43c%mV|N0_bHOn}j^7geQd0>)NPg?og#*=v
z+)y2Q#Dyrr`cip9Ocb$OSt}sGs6oCj!oK8QjPY7|HcXt5+~E=#7jY4N!cI^9)O5OD
zO*5LhR89_Yx(+w=9s6ys8x8j4R&qVbX(YW-Ujm>q>52Z=_P8u)RQ#Ekp2C3L+8Z0`
z8k$QlqrD&Do1K&9Rrqb;I-+V_PcZ?`Wbt9GG)kp-P;yA&wkh>QOT2D2*`+5W*KC>6
zD@T$+FaBex+%G(oLal=Oy@%3kP`R0<h1*seM$v$BRnk6>ztr2e{jN>RxYWFDlXM5G
zE@sZPyfFEcmpMR6r^Iom9ymembk+m{3W6bo3dIB1?Mz(MVa;~SVzhQ+u`P2n8If+e
zqNrQ$FG=w`R|<;f+S0_0jf!4JKp5$W3riuENg-^AB<1dkD}+w`6~-59#9!6ouWA5d
zVL5RW9Xec9RJhbvFxFqM3W;#K$g*}Kgna5QVW!7}(d*8R8zvLX%G=~GRYXDWo<=mO
zQ+yHTr+td?fn3GzS{aZ+3w(1J41$X_{sgI~*4scO^$@Y`me)CO4Bs}p*NcK^Z&#1%
ze)<Ckr>>p*OFSA5=}YW05%$kk*7DP_L}TJqSnMCeVjJ$Fj*UE2PeCm;sC-lCH{;I;
zrDoPm5bf56UDe}KYz{Tgz&g*K5Vo6s?GHN3FE<o(BjOTI`yj=ba6DR|6WKNvF6{cG
zrf4wPRX^-1M(lE)0Nv%?qk7L89})Cb(GYREhGd>yfwDK6`XMMHUc(t7whz@{G1c-<
z;N(8m@M{mX(ZfJ{2$JjHWSV&VIMW^~69JGOX`VY$stDzh`0)%W9TSwqbqbO344?5w
z3zYP|%Nq27bkN^!^j?!d;7wWHQAEf^3pA0gQqLy#<{}GgrxfAl;N<G>Hir^4f}w^A
ze_*mjE#8v&oNo2@FqzJ4Fs<839;SGDR;x?aHa_>8Or=z8OI^52M(-PtJM~aTN)HmY
zzRNEinYmq!!D2QhLMH)<s<khF!w;t^XBz~lZna(v0*W@Z`S1;yuPKiuVK<e)l`!p1
zdeA==8klRtscieX?H-N67f0V#b$gQ*kwlp&<4*rpmOET}B{rbH>=+d+&e3qVIG|Tg
zgv0-A;^p;XJ;4y6%q_UfdLo<1uOCYy@KfgQj*==jjV0Njex@b46Z_FYXNDbAqK-m)
zQV9Nal?P3+ArJ6Oq|YF4`JX*Exeg9xP-`^oO|={@Sa^%JB|p7QATlycs&PHzEc1La
zmH*~@Q27df6_tKLP}#~k2F#e}cVUOhu%}v{rFl%;MZJG3ueeZ>HwtaIRKc!+#MSnk
zZXhM1hzjt43E$ta!hfvnNHuDN1Q2y@aDi%p<xxBw)Q1RJ!TGyr=tf;c;($BDjyR?~
zMs4eeZKI^+TgH-Xc6B{VQY{0iMGKVwePIY=ykG)(A%iHfK{WzdGk^EF+_H6$*f~J;
z;O8WAx6p-Tz2er8`h$D;A*jmSbPkM0YVsCRqf;O!SwP&EN5;SH7Q@Se#J{^kt#Jdl
zg+b^_NpL6m4d-iPCPO4boT2E_-xVp>Gf3`B&2%;sWg&pJ#>1ajOEt@DcVfIl@YoUN
zC2&iS{NhjIhmZK%ZK=NA$5-<jm-FdSUNp_I5&p8|e}Wi{D-KCA1RA?(2)Lu_ojZP*
z)mxarsN$;)3{yNr1H&Vuoa-9nMo3ZSr%}q|q-bC`42{|?uwYN?>*Kdr)A-ciddqrY
z@)FxPKS*rNQ&71%E$nz^&=PJ`2@)^e0<xsCuNI~A{CU=bc6}5HCwG?s#qhW{N;%U~
zN+@}{`K2-7#t3+yuE2Yi0tc1bSql{#U?3eN`tWM>*@Oqt2VSAgHgya=5(W*1_fT~H
z{gOWI<}}_fqHW!j8zt_Hy51%3^1O*uaZo6cuVR{Ki)%}YaR1yI7VI)#JK^xo?g||K
z<jtKq0|gU0NB%U1fhA=Z5p_pWOa3OaQ_-JJ{61PNR<a%(fa3Tb)uz$>tXhF#7U<!t
z&DG_=bFM5(d=WnadK<Xc_4>27p@jfItL7Ub2j|J7C<mfhxuy2$E10{Gv^M*MX)#p9
zTbHwhgQB8yKf5)s0w*jvZh^iZR;Y3<7RaUVrMoytV^mCEF#2IVAn`Ews8X%u4E*s1
zt8#%Y+dc+s&ch})H|1_TLe-(d1bnk~3`pg^ha=qFzI6JfUhk}>KOUpnwe<)5ir<(q
z`pca*lRBtv{O{61leZFc8^jpWjPBTa@J|^sB1+M3Ln6A^iif!v$n9ZHUd$}#<4eU%
zukUtiXbo=LA=Z2gF7~!0_huiOSOWrUX&(dpwY4uu*5eSO6k8q=5dK2J7>@7jEq7U@
z_5X^0SJ3*ubNvsGh;D67o?z}DJaWVj;qg8NJ-LD;(*qyzAU&`(z1iR3>9Dtcgb)M1
zRfoq2F*i!S>Zcz&@-L8K&Q7uR>pVHv`%fWhy7iAGnblc!i&>p{TS6Kg3mlQgemlwI
z#s5_v#RRZ_+O&{{s(#w{&q#x~lu>wL*??aQ11aOPOtSX1a?rmpDjOdiRZD=o@8CL|
z`0N8VE`B}L`VTAna=iwX+bb>L?y>Ax-BmxC8(+{1LpjCd#T&2znfHMj^i0DEx)XhW
zBEO5qZ;tAiC~t^mWYd`>;#<Qu?r?6g^k_EEtuq-pxyt+H(PWUF0BgqMf{7t)exV$f
zWiP9fX<`0)zX47sDLk>A*BS^0EwSs=d?Jd$-BOykw>$=cDV`UG{eqLKv~r-zPS0~&
zZ$THGQ_@An{$VH)-Ul^veK1+`J@zHqQ=tqh3a5W&^lO9)LFGBu!{w+__ih+>nV5eC
z(>p7gU)Yk;Qx8>MvOnV}jz{KktUab$7nZBHVe322@uaXF3l(x6TXhjYkoe1WGR>*h
zByVmo3-H5L&@?%*FKGsP%6bAF#VhxrQ8b6&>9VR(7LRK&EaldY4U)egl^)z!vDN8S
zOcB^%dA7n)+2ohAWz@kY$K@PB;+nAPkzufEEOD6W)+Rie!}u5^%LT&Qr-ZoNxS?u;
zA7+lVO+1e&@}&Z2pQQ>Cv#bK7GEGQQJ#X|3mw0mWW`D@D%>rAZSjKdo^m1S2K{0I5
zv51Oh96^cx?%-P1Q(UkgJUr;t%l3*U&YJtH#%y2tUbZ@4)8L~Ock!$7m1%#UY0_f$
z0`Vw6-PUu22H5ptqBwM?Q!O*;U=UyaKcTzx!gr{XbJUv9sihwZbZq%dvMxeH%-bys
zZP)!QYU^0}z=xQG4EmM#JNx7J?pUCMZ+N$8<@;<3py7Bm<jw654;y6ubGPsB3T&{E
zxthDHE&>C1X(_k=7a?TsNON3`%Jp#V^%~P@!9XkLTELK3+qi^5sx~%Q5bOT2J}aYS
zwyL^YkCGtMq1ogM+^1uq2W?@cn(q1k;cJ_|s(<Hv3t5giGbBq$f!m_glVB%ng>r79
zr;+IlT(AtbwdlCL_4}o=D~<CDgsBStJ0OJ&=|^C?GLR)r@vX~Q%T3UFzkxO}#l?kI
zu)il~fxoGU%=h%0t{hEIsV}+UC9J);^z7sdIY?dyS}l#A>b@P&uHptMdXjz__YTZF
zd~>}esU44=VT%y(Gl^sF$@%4@io=R6RUvGSiq^sN93|U#Kit3Ex$2v2V#@DB#+vXA
z6x@i6MsO%N8v34YsgR)xwo^f)MZrYwU}aX#D-J0#lC|FisuLp}NhxBa+(Du9GBIbD
zt-UxUY}}{um5bY`-BrGE%$mg)jhn~t<8@KH3*qK-M*2=-I66dY(vo*w8}h|S_(FK6
zbz89P&RV-An;37IXw*(&rir;LS;}ecoOn|~CbdRN0x>LX%vj80HHyp(XV7RmExMW*
z5_RU8BbI{xLy7hFHlD%AMC$Rs;8%d7$U?)n84KswDo*HLPX|XL)#C5fO!FyPzTR>X
zjO$ew@vv1rQrRu|;C|YlW!pXa1<A8!LbIUqeEaEp8b5NJwBjSPAf0(-_hsLG(b|z}
zAv{`^S&?~}_wO>xSPhVB-VB(a$2DMOaX3U{e+~?)qc4U)DXp~MpXJSV_aF26*LZuf
zoN`F5i>Alhc&F!XmSYt3Ad-){EfR-D6K(+S)!kD!&!5f>L~gI&_)b@(qv1DHGLUUX
z{N<?**df^-8>wcD&B4N*m27n}Y{I+$RA%<q#0e!M<o1-A;SU4#J(D|l70&N^lRek{
zd@s4O%M47#<&IiOzRxG=Lnnba@aj+?bdpC<xf`!R-|hK3;MJw?agW~R2b;1D>z_wC
zHWzjc6EnipwBv9uiBn08>#Gjg8en|9wUfSDru}~pC4yfR^%ZbG-=tz;1+KgMyii{q
zJS$WlgSdz%-dP3EB_m>zSx^6_EDIWC!Ixe#>wP=^q@lupLnTa~KBM0);+9UD)vaTv
zs=z8R#Kyi$1Mec`s;u~!=rGK!=;rQcRet{8?uvIjVG*Jb{&^gBH;Scuxg&Tgaj!ea
zcPuJhG9?fsE|B!#G-*v!(SK9C(l2REXHYXQu^=xBn;qvqJX?KZ8_X2+c>5|yOFMLz
zMKw(wgO91$zA?fTzl|6Hi0--qh~g4Rp@1zs9|HgEEA#)fZ&$pWpKaeCMCy|Em9(fh
zqB^eAh-x@ZD2%B3Hn8XQV7|1@y$A&wHOC#vn#TO+7@}PK;NESh)AhdAWGS0CEIu^a
zT1l&}QIeatAq`M`xTFD~7r$>K-0wY5@mB^L`h$GbLEKb}7WXi|xTIF&3x7hL%_3?R
z0B30z5w@spA3Vp89;)cYcSIGb8YwDML0pfJ*!{{-AZkAI++8PyYau8N5>(}NmT{)#
z*ZNzl;<2J%p&`hQi+%rAV_F2Le?){gQR!03_vk%4>m7cGx3g~|W6#8aS7cc{<3Clt
z&vQ`uA%8i2vhpo{eaJS{chnq5tQG!~LvX&}#82CQ?wepnRk)AeHAps+ibjPfe#%$T
zBJKysd3@Q7v{0oAx`DeyMeAl;beTMoj6`QNMVmZ?XWRJ5Yi@z5x(L#J-it2%+5O(;
zVRt_NBkXX~;DyB&@-*KveRy>kZA!KNiT9v#keY$xX@o2e-QsJqIR9K@rqgzXHQ2K?
zgjaX)QDOjC!YC&J{~89eZoM~p*f4s~Vi9^@ecq)0Ql9C<`fcqES#T1j`37@<U)OP0
zHuH;bJbou5{y=T%fW2yh%IplowdGj)$CV*2_C2?cx{H3I$a1&7PE9S4+wB_;1FJPM
z_Z8-EbS>tW`#YM-b7PbrLBIovjVMvfH-##@FcKWU=NeE>__ZROwZBI!II%4abt7h)
z+{#|tW<A3<K0rRYiZkmoOP)OF>Fp26yz<?LoUMNDvI7RZ!ZB$miM;|Ti76Pl<+%sN
z9E8!X2zhep$DSuUBQ1La-OJp_<0UELK<gs>3Cl{ej{ihiE#AeXZ2nI{^3Gi}6vdlm
z%R^UEWGj3BPJ2X{(1xqZ-MSOQU}COP;84D^XE(mx7gKGC1rvA~GxI{J+SdERQpuf-
zrCRUBiDv2W6a2XH*OV9Ra?|yC*T<z8MG;CbZd*pok=p}c=<{NHN=qv_-0~|;LH=od
zr0H?EA+8`x^y7q`(Ctu5GrH(TTrN`zlK;FN813&hDo2hvME)qs%l|807|$i;rKYZs
z0F*58DcTEl3i`I^PNr{LuNEk+MmH<`gotSs4n)_kgY6f@udDG)Di1!LRcuMS+!S)b
zq-O0T-Ii`rwf5-S;KR%-DO8JxQ|_PUuaA+7XQy4*DY-4{5Q;XKAY<p~s;`SE1zU8y
zSSYQfn<mREa6Y#V_BtEpNoOBXRt@p*5Mu3i(k@Rls;*XxMg|+yOqC3$jX|B;@)97l
z&jc$jckG7&P-AYxUaAO6bY-k9@lpzjVu5b1>JzpK4hTiqXA;ASg09z@xMv*20p}K&
z&{b&s0_ORtI{B}d@B#_eLQD0Bq(V7{4gT=ojL!Wv37AfKzOOK4?z=N0uHFxEa0Aza
z(Y}HkyYhqWDk$+EtUfi=ZNw%nS{()4*`V{jQ7_~{zn@Qn?PYM|r~aQ=BAfXA)KH1c
z_|PknPS*9GO2@Y0rLMuUCjUUP3|Jz|Ly)+NzdFTbnsQ|m1NEa8ef|-{=wCBpDEc^f
zy+@H8S-)TM%%$=)yV`QR`H;!*;{RwhW9V-5Qa|<%Oorb~K-xPYawK*o@-~6RJaPGj
zpYG{z{DhYx&qPQm{wRDxDc)}+4DzmPq2T-jo#b~7<&Ef4-WH|ho$JfnbB*Qg+XcT~
zzC0~69T1-2?P}KXA=?ncL8pP?+wQ#{V0d3ids9<i7ekiJr<dp#nmr7+qo7dMHSUo@
zc?o6{P0$+C>rL}izFVXC9UBNx%P03&bTrj+fyxgm-{Mtg8Mki7yM@GvKv#r8!OGDs
zegqdJPaPmd;Maw{A!XBES4))${}4-=DZ``?<!zSOXm(0CfhM^6IQixV`he8DoR$*|
z^m4uG--5=ReuBy`g>H6uja-+FeO)y^Ww}qOR>~`CTeKU8*hE+g%BLoL3@Yz5cz=Kp
zS>y+kUR4Cu@Z1-DnFn3Mn@ZougX&fPg342T`hC18{ab!1O0W7Cu8*LL!rO##eA2-U
zUXhQhZCQ8sZ_}A^d^#FMe!V`otfM1b?NQ_ju78}CvRl6Qck^Mpj)pzjFV`3SvvXmi
zV7O+XP$ljO44_*W-f~fmvS;<|BeP7#^54c}%=U_}AkG9!^bYrcZ$xYfwtRna3{Et0
z3xRX%X#Hn4acBHs2b+#LXPS9DS{YZ+xDz(;ij}6((YdcBG9>`Vl>(TnQv$GODZtrX
zO4y_n08QShiZ6SX;P7vG3&aPDNG>e}xW)kDcH_PXAUCW_+O>tW3Z(^=8*J~Tsi%oc
z?pgCfE1xU<`jG$nQ9mzU*S6*U%om^IdY;^;MACBQJjL`~wER!T*;asRG^Hh=?cvhT
z_PUYA5YZA)&gf$Z(rv!mjj7iB%BU#&{Tb(^Le6lf6Z^w$-wPT)r3MDqk-LI_TjxEM
zlS4aPr$q1?JW&oaR(Vz<S<)Fe^D%KOii9@}@P<Aig2_$Qj8;$~MbrF8lPq*LV2FA0
zOrrU+d+2c43f9B&geN=cC%eq_>20LuQ?2`wEl6C{D6g3fuF4yh4C{q^1A<I6ZE~-r
z+YG#-@xjr3GPC-C*n&n)sL?!<I<3VD1+0B=H4qeD7%rH@HtnchK{7Xm+7~szS$>ba
z{2#v$r6YF7V&r)x|9ZH_3^e6_?qwCW&<e}PL!Fo5^~K6+1q<D?$zzTT!7ncbx6wB&
z;a)TT13b5lx+0r6$|}I})vqPTo#e>9q*~YyVZ{Ty-CBSz6|lB+5o6WG?5XC<c*)iC
zM+^l&(J^D_OdM$bM27v?&1BP1N$R?4YoU!KCK<K@Z6=`8+5VnZYA?a>jmtvc;>9;L
zE0&$Co^Fu&oEN2B{I*=0$iUl_%x?g*3p&o?L6y6H?=aQ8$Yp6|K8Q&~C;R%GI=Q4t
zMf)0$U|GYG2N?=<<=%$e`@C|o*}-$f?-GadN5%E5Ksu^d>e_isul2`6>AAIeDCuCZ
zcJd7F6C~~-pUt7)#zVB$=s%M}%&&jTH_uayhBsNQ>R%epS|jmN>&c#%&=4fFW8tm-
z{PpgJAJ|~CDV*UOP2)zZzecLRMiv`~lwpuN%YP*I1<w9?+3~^>9My-I%Ta7z8^*Mo
zusgIe#teMoWN2GH2ix0dXR~lNK^Pzewq`xec&5?lSX2_bNJ#|sXg;KdG;A$W6FsD(
zhx+JYxIJY1ZkCra8G)n)jA8UdEyrqJWEcnM(DdQL6*&agEmwO=!qpm#6jhgG?aDb`
zG==EINOfhXMTk`U+LG&kqT0muumH7b*i9Xnc#{O`cz6{M*~ER}xeo3Qd)FkTdT;aI
zrPLCYRQVU?SX)1>Nx_UnqDC{rW>Pxt7C(0%$?T3WK&}m$E#Y^&{{svqI~xDOon!hK
zclL4H?Ic>OZcy4`x!Nr-8wt0c&~5FJ-POYpvAJ$L=*aya@EffkBNfh{5`J5gy@5n1
z?)r(c3DdlnS6F@#Q@$cdmDA>OA2m+ds;G1zqtf2ELLI?B2HQ7nNplDq&f`_xL9lYs
zc;@QrYl9Q}1XoM>4|=hoxBK@%PjhhcKn<_EZ8p(2DB!!XNyQ?ywf@Rw)}PK?t}ofd
z%0qn=$es3`=N)Sq_D3$KD%=^<FcDa?7wktQC0@ix5sl=pQQ$`}#ayrr$mbH1y_40J
zyCk%?VI6i?JY)P+%Oc?L<nP{s7B5p9{cQnoJcrM`$fkJJpG{t4Oa~M0(Fs|zh>_?T
z?@M`^Dl_)Gnhkp)g^P^|-G%VnM#ABaJhob;#B+!@uVnR1{_P;6PQVn?<1LEI`P&+@
ziT7UYOoVWLDVv<~tI#H%|7}R{+)LP%&>kVjim1YGI&8oPM}x{kCvIBSw3_m#q*~q(
zDT<L#t;E~bZ;Wl&!j$)8be#0|NnUSrfRN=F3~$a9onpfYaRjgWs(;L09CZ<z8zZIJ
zi#lt$4+Qg?GDT5gfZ0SNy8)#c%xtFggwo-JDX%gxrHCfNmtk|Rrb<%8NxJ9%s#0y5
z!<XuQO=+FJg*Zhco=zxsLMvtrdHfl9B{Wn}{|s3WYtMYKui2BT2`XiNT^$3Bb@2GD
z6#uG{Na{eG!i-Rm?!)wDnswd<AwZvoWJ<1YWHMDM3ZWvP3k-Y#@n<n)dHx^8HWYf?
z-%oX`x}?OOBVN-RLen~hL4n)i5cQfAos2q>e%2!IFu`0pw%I37HejmT_!S>HF&MKB
z?(^-8^qps&tk1o<CM=h&ET@QRS1b`K+2o5+c~?i}<*#$!(v;j_n6q;{@vqV#YgeJz
zp~84y(kiy~CiVUM|9?b_&K@5U=v2hYtr}b;ke|lUik%?Yjh1L3J&oGiGC-tHp{Q39
z2*4qF0!8a*jprp5z1`-|GtlYxk+&#b=h^+Mg04-&@h~X!DtlmaI3%5SH*H&CP?FkP
zsW%&WFQ)QoJ;7pPgvCBDhgjrBnzj^;+MC`1YyD%ewqTq@blLbp47=aqlbCif<8D3E
zVRw+Mi6s1#${TnNDsSSiCX#;7Z*Bt>nytJz26Z0K`KR5kU(t{3eJ%{&O8axdm{MLW
znnO>c*{a^yu!|=qf%3}&A^FA{YU~<@bUmX*>!*JBn<rIy{&jcDmtb?LxT^RM1Y!ms
zVYsa>G+x_&A#sXqe3YX^o+h00zs5hlL^4SJbfK{d0=_2C#kW8reP99mf4ld<C*Rlw
z-`5Wc@x5@xf5kUtXSGs9%p}m{Ie+n%#ieZKUSbc?D-fl+)<u_@B2J4EUcm~l<3EPs
zfdi~gu3i-#C1HO4eQ9uc3}l9`!}?VN!m0{81dc_P&wcK76xKRU5&Ex+e$hdAb?H%r
z?$ZPF)7=VMWQVCl#OD{}>txRc%AWCOh`d%r;%g=&BogeIjx=QfFCMB5K^|(Nhgy5c
zCKrb&V|2{<74kd{H{|t1`9+U4vOx)JhcIYn_hbye68=a{-8}(anm%cyGGRSYSWhgn
zImD??2Q&PdFiqwzXUfC8vFqhav2@gagKPWU$ZK$;ty=2#TJya1n%`TAY23MK^>Wsv
zrLwJ-Z!GrsA+yIUxfyAzzh;o^>7u#E4FyJ}bf>?tsYRC_7y+-j%SYciAdYP#e1(`h
z>+tpFxz*}TvK&>O9>DanPSEnpL?|*m(`#^@iiK#{4X9i`5OiJLR=!Wb%E%}n+sXyc
z4H@V+-i_vYpq=e2cc1QLU8jCV7k2yh=&s$`I=X5wU9pfKNEX!vBGZkw)afd|QCs~|
zyRgcpwA5?_MLC%!#)5pQ{Ay#xoR(O$_q>gKwD(z`w1QWX{28CNQ-zh0750FdyX1U}
z_I3}N8Ub%!$ug)zcnBAYrZWV1<|xk0H>wj}qwn^f;z(l6_lY5bnRE0*ta$+Y3uV_S
z_sjDrmrcEB?xUDmm}!vBZ5uJ}Gw3L<jnl4}t4!f1ttPdC@g^QmnS<Xt!)limC)$kx
z(fXGC=+wkws==sl8YG^!C)-u?nOcl7;u>1x$ileye}4eE31Uk><34mn;kqSv$#Yny
zJJP`wMtHf-nvHVT4Dp%(qR=8cn_skZ=W>F8bzbg%>;@e*uflg!PwRl(1^#P`@1utB
z>&gD>A3ZEvX>&vQ;&U9NG_F%uJQWd|X_O)GW;Y91xC!#O?O;~Md$))ckd!|geM4d}
zbdf1y>!db{<Ic0i*CYZ_$aPo@Gn8RY=vU*8XEmKjNmG0DlRS{E%vE#mh`yp2V_zQ~
z;J?Ov7bB978Y(V80baqvP1UYv7-_A~T_n3pdG)#T^u!Fx53wOaA65A#YiMoB=#E{I
z=2?>LB-pu^!of5cOQ(aN-vBR8mI5qyx3cL@wbhmGlXpF5hu?Fz$^v6S<NM<F5f&$S
zEHHNMjdS@RRS)1UZ^zKJ2>h-F=)U_H#s2_<lTPul)YSVKe_;Y@ibH6jggL_mEM;pD
zFPvqH20KrHmK3B1vLIWHOtmhMfVVe_1@w={TkL_ytS$3pUXGqcVa-~S<YUH`<^+{f
zQ}AH+I{%FUq~<nGQCXQLed8)r{t~^i-{zHdsTmk<awIN0C-fZqJ>y+4MM8mXUR6D5
zvV}ucO)%Y;te8t+^Nm5@O{h}SKQF1E%uEA-yO_P6lrGFk29-No1wK#Z+Z&Q+S;Ijr
ztLe@6Ah{`j8A&8J6cp4b)_&RLVE6WKL+pOFSlAT?8`;W#TMEH{>-vYo<$1OFd*XH9
zX+UA!qkP@#Q};~1=PAE(T1hDvM5WkSk_tUlnM_JUxnrY5(SKlWBXNiX))eSImT3J#
zrd-y9ow!aw0p@22P^C;>ENY4&+O1#lD@^p{AL>JC-%F<TFG&6+ss5cgofq86EdkS`
z{>4}%w_LGW#M>;K65Ss|hiRZ4O8E5mF@El=^ivVc)CR7<gP-@X5qT&7fD0|e&oHpu
zD-F?weqD?s7-2A9c&V5zsN8$B`RS<^0!|>D+)D4#nooyU2h|nWE0r}x7bLqIjE~~@
zO~3^n`+G0XV-^a@R4zXoo|$Q^Jda?G7`yT%zG-Xmv;4;T-t%K7?EAARhZ{)5qp%-i
z7SGRWNfDnJ$Tm`+JVzx7=cNmO?8qex9W5Pm#0oDZb-CRPxbH6wIO^WrqGT~imA4r|
za)81329Ez@Q2FWxU=v*T4jlkCy|`0$Js`p*N|oRLM%9b6HTUvnxULO~tHhtY8F@u8
z42KfA+4?}lYOkR3@?x>+?0sQd$8y)F9z(Jz24(`S-49p^xHINCi*KsI3R)$edJU~F
zeJ&UrWP3u1-6MAtTq@E*w{*fE-8UE$FnFLen2!3{GemvcIO-J^2Xjw;0Ha+OhJMT|
z?Zj`x#WyAUF~Mc|St1FQPkGvtzsC2P98$@_8uS$Cg?j4Tp6Yu~57gCbYF>%Dni6B1
z%FC>(kZo$oN)H{3$~cSfLGo<=N?n~MD7dGHN9#o6hr}+HA5^bh;5AmX$-i<tONlgA
zB3yD=qkZRA9pl%a^4l}j(y;pb*SG3nkmOr@&rPx_Dwi2dRM6vGf@-MbPBBgu^`&Y4
z9DTRW%2kl)>gc;%0LR3}1Et2Q#Pi4CYYeOT>*iJ6Q<vW=(%FE}KDGUnnXZSDJkVXf
znZCoHwsyAKqNG9Pd*$kg>uTv?vjOc*delEHK6=Vh!}SLZNz__-n95OyB|7aH*2d-k
zV#>GRxjba+<?vkc4=S#(dl+u)csF!iazki;SALr?faas4$H30$HvS|&jvoPVAjr9W
zN1KjZ=RXW@JKxW^1^Mwvc4pJh&ixz<v*`<7nx874@0Ptsh9xEZJ>lozZ~Z^QU)Tvg
z+tP1|48VSaD^gSQ^52_2xsQHGXYT2Dr+%~kH+90?)J84+Ch|$Y)5G7{{07P2t_#m0
zRyUBph`Kg9&UzeT=w^8RYD~C9WeWBT)rINDcb%(mx{die26CF&o78VK^@+kOMBx?g
zT9(YFgY)?R+J4Jb<pUasuqy4!ziOlx*!D}E$NK-Vb|&yuR>$8@fU8l7Hz?7Fpi!d+
z#TpdaL_q@teWF3*R?$+$q7*AyghWw;1aAUdAFf-quC26c)w<ML3sh@Oz!Jm_#47I8
z^|{8jZe`Pw_xqdk+?yu}^k3VT&xhRSdCr`fIdkUBnKNf=y3OAI)F^V=%W<{6Uoz7Y
zXK4U<RUc(#9{D^=x=I>@U5huJX74(YG~QIrvliQNmOUFuif6IKXy6Jv2=)L$xt(s7
z)bK%k-cI_K*i;!$eXgPqWJ>930yAoIms|fz<O%B++{k2y#%(GCy`hn|!*X~NDWm6K
zr!L$)?)O;&o82duvP{{`4roEiH2du4;r%madcFq9i7l1!1n19Fe+^&4NrPsm)cQ3-
zpaD3)0dgD#lQrMpZSgj|ZX;oREQbjk1$w*8gQtg}@>thAYE_*^9D~nV1p4#Up(w9)
zwVglmM=UR;%9e-`CY9&jEr3-1_Xld2yr4wdgG06G5VgD;OBULz`^B)OZgc=`%jhG(
z)1Pf^yV%)Kry|@?6WDUMN~t)NO<(E(v{Fu}{Ls)YD7nsF-7lVSDg<a->d^MZ-s}+8
z=rpfQ$_N&U<mX@CTY6o0A&a=BmW8u;&rBK&2v7H{?;BhhMg+#Uzrx*6%ELl(>BFUG
zF;P(PUDpq(H>4({57Grmwx|+X!EE*r+I;q2WSy7WX&If>1Vmkx6KU8e=RExgY%UAl
zua=eZZwLUA_ijBs5}4^EaN!UMc0oyFC;|OC2^hduC6L}E=OC5;hXFg~q_5X=60hcs
z;WAPPB|VT&!PlPXa&&h~n$6vSa4~4B3X|@|YcS5(Qo~8Vqj6+%)zD|sdy}Fu=nm2W
z|Kc)&I;O%}TY58D5kcE>7=+`dk}2ZYzYL(K45(rgwII9TRN4Qd(<!a<G?m7RtWXwS
zEI=1gYvf!e*0!S4#FM;WT2(}!MK^u0ibUMt8je@_*y2qShGpAf-Jw}CX8g@F{<7K_
zTC=w08e*o0nr#oQUN;yEFq;UUu(39AsEXHT#L{0eLX?fLMkD`)<0x!qNN3L!b`p1#
z($5)qhJ^d*A_R|FN(gq3y>wHb^WLOu|5Rh-E{mD{{9AIILH`AXpkB<QOKdEjwHJy}
zjF!?ETjfd?S_Dg89;prQlG;nD$)(cgK_`IaPt>;N*bb+;=<b;MU4s+Z(l1>q27FDg
zqMY^@{n&vb*iuK&y1DpLW)xztpB%Ot+6oOO6EG+STk!BnVT1Ww$L=&3Ydarq(W6Ft
zZV68C%rR2Y&}X51p1PAtbtjd6{t`0E%r}7!E}q|A_DCbKRQ}+>YBL(Mrud`QqVHXs
z3MwT=Or=Wg!9P_?3^c3fx`t9?Y8+%94+X&SG|QUa;I#Kzw#&D#^JBxrLreY6Lt7l*
zl{f$#vBkcqlR6DXu`?JDEI<p4V38hzU)SQnrSjV;cKefE=O5y8=L@u}k7DwcHeFAr
zBk9`&*C`4@`uXF)!e(-t%XEw3U9g^{mt0ca2Rt7WKEKBE=rBvK_GgL1m4Zc{P(s_c
zc(safuR#uDg7o(?o|LPQPA9?6f1QaXhToa0qG_t4X?|?e*SqJScLjD6Y<%7kfY9GG
zQZg#;nuB>I{DExa*Y3?TQ{uOL#dHofa3itd;CNeILAb}ypLQnVRAsNRpmE_8y(gD>
zgICyqWYT9|{5QB6eGbz((Uvx7BtJu2pk73q70HTKvueFbYrQ#NxeMy%2vutMUw!~8
zf5h8fYT(;4JyXo(7)jHYnIh_OcByqtf56uvjuOS!@JMnM`qH0XG1WwkdXrwyVo%65
zN)5l%ush6^@kJvSZ{9737F0I~>5bTbqnVc3vXJ+|p;z%$ylHnb`cJg*x5`gEt)Ggv
zy82P6nH|X|^a>VC%OAg5!E=ot`}z3YxF>JkI<j+3{B^vIYRaijZshK~gpxRCo1bwg
zX+P3ux^yo&@*<x6k<<9gy-Opf=&c*kdf)S(SfMdvb4T5H5FHLsC#n5;%aSTmk{{cH
zpA4ydmkz1kJozJI{1vHxosPWQ5<;wh&~RIk8}N8=_L`57AC`JzqX=iW0N_&w3j#OZ
zsU#q#RGM{LV~|0^S`r=`!RQxGN9`E&>w0^2sH;>p$@zM9?jY7>Q*74dxOCQyV=?Z?
zdqlh_tV1)+lTHQ$LwXE>`&N1whf2~`RsyFcywWSy1EC^iAE501@J(NdaKp-S^@k&j
z?1YsVA&;o}Dj6iB+%T7+QmJ*x8+UdqUqM}23JO@DdB6LqdJhF#^j0^}HTFtQazPH7
z{pio_;`A<!dczF~b#Q@J>~*$E$c^{9ES-oq9Yw(iIQuj5DwfAnTBOxBM(0ZAq-r~c
zz5yOitDeBd)R!8L_9lJq&Dj#U%aNWE4f@sDyX92-!#?%sckv!Wz1>oO9HE%b?6X?2
zYfqT@ch?RD*RV(_WSOLO8=a*OL-X_DK*nbp#%JcTwqvxf06sY);Pm~n{bv1n*wxvm
z$q=;Ypt<nC(EO=<^7Aj^FD_R8WC0+QS}%1{F%D>QRI!&DWyc5`u~7vX!ND!%dF3qN
zaec@#K3#6@QK5ASey4rK6>*aG=YkiHR!^kv64!flvGFI_wq2!$8+k32H2KGn{tBTE
zf!juhWg-MW2@Ti&hxOPxnq@{R#zCDtvwf+U_Q14Xj#2OuYZj#srKW}H2j$vW1X6*i
z--n5n=A0>0^%ALx_^82L<pl{=l|yfY(Tg|VX58s?hc3G|zkjME`%K;Wol%L%j?Ixr
zk=(Ssmu#a!AI7skau|Qrpob_U?SOV^O}T0Np&e#`5^C5PX``kzq5hb}bH7hSV}RTx
z^xzb*(m0qV%72;X_M24Bi4wnSi0~S`cPO3Daa2t(_*-F9u=??twCIlB@i9C{G#245
z1-l)kiX(J73KKYz)-f=&y5Ga<-mcoxZbo9mXP2f2$-m<Cyv31VX<Qr(9WNxoZ8pE5
z4oR*>a#Sh27V%sV_AnG~-UJB$Mc!Cy<Qo?V4_D5e{F19btPMjlG8AzoMtCk0v0XD}
zoJYA;V>alX4YDbZm@y-Y^&8b5!G9SumR!hNNo<bII*#t^WJI>Ml62Xpwaz{zU-4Ss
z&0`o=U<NMLu(rI4bx+_Ni#(16!CLIocd3F9Q^O)D*%U9Sfu^+QgB@AT+oPO!eovK7
z|CoM-PRyyQf=>s&;fiXd)G)TVeW4n%@U#CjnwlP=D!qiijD8Rz{du|yWJ!i9kCeE3
z<wI{F{i*iFv%!*pW>z=YKamsM{9UV=iHus)7XTEAZ*^Ki{F6&g!#9D%RD33U69V)U
z$+T!JXaMaKs)bg-XhiK-W1;6uKWI9+UszMMpjNoB@)|hgh?$R8@pDtp_)>gsgH)@F
zOCF)pxjIW7RCpMwQ%2qoP*!RI=i|&`8RTMgw0?v?y>IjS`ooB%$>wMw3^RxJ%-Imd
zG$Y2EUUGCXwgv=X$oSFbzpT`!<l5|ot^NJuh%ZvqV9ePj+!G#)2-np9a^hbS6g*%K
z@0e_0r{5X@6P@4`z<|o$hd#pr{^h|4psZhTP>9b7zQ%#=-2-25z=ES3Q+G#~7TRfZ
z_prg3VQY&s)|}k=e1weYM8Y6~nitUt?M4Z8qKiJn=kBBKdE57c6)T)6`BV~5mb|h3
z@g@t7__tb3Q7`2t**~hf&~G$nI-;tRDsS*AUaY^+^Di&;D&DC-*T1|kcWc&9U>f}Q
zpQ208)Q>Ryo#)3|<#ld->d|l5B_dOa*(dDIE4q;d`#NI?r_gTyjX#?DlvazVf<?iP
zzHc>__fSMaRuR9D=&7<wtJqUqMSOXC1WY5};PMa*IZ*#Y9N3y3V3r?j6dSPmbB*ZB
z_eQYoBy5%+Ff1ovZ=YviFZ2M5g+wU>V2d5tqdmYZKiHfu<v5~iei|Wax~crZ=M#+9
zc|COLjFY8H7?$h*9LZQHZjZ90VEgA$qNQ}W-R66H*c0|Y)L;_D^BOv6KlWE%Wl3_m
zk>f8sH$O95dm$EOpe}q^mQtoDp)JchLzJzAH?z=V>-OX)bn0F86~lDeKUh;i7<4L$
zyjF#;-{+ORpS%$hoj2CrPJ=M&G0@K+qbE3H@HFU1J+o<T@Y;?QS~C+Dq6M|)gU2oh
zft4ti5)Ey!ZrZGY99h4x_p#~&27P%9Kf3<gES}$gnc4!T>o!|e;SVqQ6f6~A)EC4T
z4gdMycW3xRi1!$^8Gm@OC{%pGfREx^RE}fFV+15{1n7Z+TbkX(IgA(BO^o=doUL=o
zUb?i_&Q2+{=tZlCDipUb*H3A?&gu9Ql#KTn``7gujv8B_qBc?%oOq_G#Cxws>fQFp
z&7DL7;7;f7JIBDjzB>YD%6v9pKox`=@){l7DK|#oO#i+ETrk}c`;7aI#gch8rev?3
zX!_?5pDAvU(T*mA^aiXJ(mBFOC-e2M?(3-zmQY0cMZUNke^y#5w&HJLspHg`iow{G
zaNT+E61>S7+w^nRtykJ-1{RK?Zs+fu%sxS7W>nI+4w2~}gYYAdqoOqke@^e&xvPkm
zm|p~l{JB`12S3)2zuJAg1HZupjI+_leV-1x$Epn-$53X^jQ$0m{KC8VtBKv)Lx6*z
zCGSPvygTkQWk+{QmcjZ5Tr&y{V=DHKXn$Zm#*7ofR{pmhN#nz${L`V8aYT>j*=Bho
z9d@_%A^ZO`QkDC|Td;G6$a&F|z`m`dFUE;}@aE}OMgCtRSxx13MR|~Rk*)fnNQb+w
z@0R-`fHDuk$E=YBFx%1Y7<SyZMF8^z*y;cWW-$KsEF=Bc^$|c*&szWt);PwFi>`Uu
zOK6TT#$}{J>2BpI_<*^ObS>*^y7jL*_z-(FGa3*27wU;VUQ?{Jw%GE&_s?nk=`B3A
z<Qy^-wNcAFt(PK;eM;O7!Ov>nt*v>qQJK121$=F$;u);e<64|EXR~hEy(IRyelR{I
zG96Fma9~*MCywH^*8=Ou(pW6DhYOv3J4gmhO0>_tve?gtsfUni(N_j2ZG5xsX<KCF
z1p9mT<S`K48Qx_OTQ?r9)yIQdz15r4X1GZQQ~0ip{kx^IA1oxOBIN~NNp(}PyEB+?
z|5X?gJvl@4Bpz6F*cPkeLI0MhxLmAKRYEhCSW<=OS#}CM5XNAj#D=n+5Psp22Ei5G
z!6syqH37j+ABGJQVC=c(uGG2*iucs@Rxvi5s(3xV;8$iU29^YKNrg(D#Hj7qLt9jB
z<7v-tGN$(nd!?!3m+BAHP;y^+CZ*osm88D?3G%8~dF9TWtvO1)VZ8b8ltpAQwJW{W
zO~`SLU{`O}$67C!Y#h(#ReT;_&}g8xS=E-p^5l<P+zzRZD<^uBI=u5cDo4i&K~<G_
zHMwnG#fB^QpmrdSIHWlgq`W4%JpCKGa)0Dyma{T`XItfb#%G!PcqoOilZ(!Rz>d&W
zwl6lU+`pB|KcCG8Ua~JZ0nvyi^!8Z#6U+)+D2L%xEv~r9M8P2|L-Moq=nl2P`~xZ-
zir}HU|HV~|`|+xOXjFftL=A4Nm%*ZQtF@tr8S0}$9UO|L7>V>Btxqsb7?tZ*Ale-s
z$5z>r&EM|Df$DY^*Ooz`pm?xcqZsEi^{f=MdS~RG-Ul?Sw}ZuwpufgiBu(*>kp3>D
zNil1&c|GeTxwc(7SmMF3Z)y4f2{cv!IX{2Lk9N<|33^X4xCepLL_1y6kNtg&Ac7Aa
z#Oxjrgyas3Uvn7WSHGJ+m>+LR&XRLq)95Vy9@Zt8wG2CR3s0FL-nm}a^Rt{kkA2Wm
zCB}GVx|bH+?5`3Rale>o(>A9IaMCJo&Sn?f`kv|gpy%b7`NJ4e)v4FSM;WSwIh!p&
zofxE-)^}qzQ1-9vi-TQ|=-?y}ty`(`j~O^N*;>Q8GS(Z7^(X97Fs|aYy4}Vmt9B_c
z4X94m?NZdy;*K+7JRDqEAdiiPr0KNY;P7KFj+Ti2%->x3Vsqa#y^zC|%0E==nEa~T
zA}{6|roxdGtFA0U&IDBk#l?N{m1<fNm0Z+*W2QEb`KQ$dT;Q|~eJR}G+QKx{WjKtb
z?_*$E>QBh*aFucg@7?JXpeURe(#1%w{=dv5qz3)`c!`VlNuh7h`XgE!tfY&i=ECx`
zVmCZ-e*8P!MHI5oeuK2DsQqq=HQrV(Q5JW+X)6EN?1v*k#F)w5KjdFoG>VvZD*r&z
z$NK&IjjLEyx7(=X2-Y6J1Jdo6H!is{eH(gQ?Vs9@75qz`oEjvj%~x_+-WCB|X6@y>
z#fs$Zf(8u>hy9mew?EhAVk^>ns|4BA2z8%m!n)#>y7!mQ4X6-;&d1ozXYHK019Eu!
z35$i={~SDcuyf{|Os?c(nu8BIf*b8SI_Rk<EyLX}Ul#nP1#Lcpwv*9j+dlyPA-14I
zs_Pd%{+={;*089yHcBZ{gZ9Rw^8Eg5EFwu@fU6<v_ULF~J*eercy7KTDn8f}tVm%G
z*fvVM-O!hISS`Ofv-*Pgrj@t8&(N3JyO-JK!MKI1l})PIdAUppI@@Eas${KOjIv=z
zHK9*z{LEsMg~q)54W@4H^hYt1`6ch;yJD9JGRBJZ%>6HB@KC14JFU~r)n{gw8--_5
z{-c&$!;0=ng%{cLsmwYJnrDxi$(c0#Y<p%kg+FqtJvNk#4^GBc!<;^uinv2I;7!UC
zLOEe)fg>__g*y2qZwy=X>Q!&=ImX+N_F6aZV!ahzRg!ME`7}c||E>r!i=K=SvPrRj
z{#86<NhdhKdv1vU+E`-Okm`5?8}7h%_(=q82g)0KLa0m3O*F8b9oRp^4Kg;S=qIp0
zhhS3->?2|!6t(te5p0AGSsxmLO*60-2lmcQ5iqJQC%7~O!;PZ|w*nU2Ew6A<Q;E6c
zj6HY7<+QurO8vq-3R|&S8p~b3p?&?t=Gg{aDBs6vY`j?uhwK<s^1QrGc^aORAv}oh
zbcGiWlQj!BP{`9*FYD{u&1h^<aI^KdXc3utEFWutTb)M}8)#9Q7vx_0H?&Xynd?f6
z(mZ4zZ+9Q%NBWPfFo4HO9KI#1?6sk!wkp2Ju3xL-ZmV5+ng2IZs%TNW)J(cgMxcg;
zE{*z~bjv#ZFoK?0Gil*kdp@^hTFs>UTI_jh$&{K&k7(IP4c*Gbnn_ER*t4|ox#O*B
zo|+qxIi4r?XRB(dXr~YRpJHH7&WnIi6vlH@22fci|7#)^RP}*ZM*vN$f2Ya?veN4C
zFAnVJXsE>0a6t&>^y^^<wrg}mYZ`H02<G%_o&&ons?-)@I?BM@W*pHK1GRD$^Md`9
zl!_hUM;Jv%IG-^@?R0X8L(Q=r)FKGl$ZKHlNg|+gIvI0d7173wM&<;6G_cTEfFO9|
zB%`}?v}IY5ZU9n!@vifM8jE_v-A>m=$XffG8ba+NsJ$IjP7kPKLgvcFb1=n`JhCZ*
z%(~LO0SnG#QbVgm=EE-0i6ZH9MC+T0yo;4D-U=<q<+r&oOqIHl{D$FbP=&MfBfsVj
zW%v6smBKP9!>EJjZq2h+LhO>$yL0>-q<^#tx&szlou*H>+b3J{j-@@I&hg|h%$G{b
zf2zgfrFU{_&oPiK_8ql{Z`W>IRR`-m<N3oxq{ODxhp3*iwRU2yf!%UV1k9wooq<Ja
zZGQ*3?y3kRY@`2@Ez-NiSm~l+txoLcN5yV!<~|bOp*S-zUO@l`36G8{kFhb^0cOYK
zcRIl7J-GNTfWh@DG<ZEcrt}0l{U`7tI@0&@^te4;Ew_VRFmHx6IgOg+{r+;<IrL<r
z-u<wHob&X36ls~)w#@RLfX~a?6?;B}=Rep}Twl5WEQ4XMtzhsU)iMGM&k$n5#Z~@Q
zwwypNv25)^Qw)|@rlbW=nHDsZl+;YRdM!Ofjh39jMiu-0YfzY(Ra_V$LpRMonK(03
zM8QtS8Vk8mnOIeirpk~;sW*w<6P@~j>u(=e5UE0w@*b*NAe}8a(t)jxMk&lPeJ<ex
z=Ila$2li~#fLWLJYzXG;!rxpAojxZ*)VRAFFp!mGbl_<R_*zsI%`9Bu0Q=)P4;j27
zjP(7~L8p2^k2C5K#hvOPk8X@GV2ZmRkil8UboQbUV3EO~;~DOyKV$~%DXZZh%Xz$a
ztjT!Y?Cwb3Mhd|mAd#SnsC_?Z0F;-m?0&?hy20m4iA{ZNcdmyPEpE=~)qYiQyu-bB
zltKF0oZu?qeo~nLPU8V^KdytF)`O4l3if)z!iVkq3hpYFcj)K)-<EbeHNr!iX0K=x
zcS}4iqh-o8{51Q_QrqAOmTIHYlcF}&)xRVOey1k=DH33pMeE<fW6y?QPEG#iy4QoE
zP1~wf{)@0VHCgV!3T}u9*gCLT1{SH$I~?SXuZ%!ieVzhja1G37yrT5q*7N1L$8hmK
z`ZDX{clyVgk350c7zWk3`?x&6lFNg<3y5(ta>DzK{e(|Mf3&eQHjigNmgKMEsdM-Z
z-n4!Bp@$!w1-14&GQPNeyU>fzWwKoHxH658(Kh}#KTGb_Mrz&9KmJwXDFlGt<1M)~
zxhAm*<DgjYts6G6gr(xO_%***(puQ81n`=Lyj46KzeW~#&Zb8GUK#s?erPSRLU?3~
zc_*S*TMo|#IsU<;yntfdxOG6XZU0R^v2p|Ft@)WNN717_D;WPamptf6d$Yh_xY<T~
zMstE$l!saz$Z<@n&0>dO_EW-cBdt<~K4r_2ucZmEb|lv(pS7(3-iEb9U$VQ;f;aY(
zp31NA-~^HqjPeBien-_Qw6aZkUNQ?=7D<)`k|jeel_`lSzXw#|z`jm5rvB|PSFxnB
zTP78Ii}y^euI4!tX?&h%9YZcQ+^Rc(cY7nEZ2N&Z_|<pBbnxRx;qXTktdm1%%@Hk(
z0V~}-6e<5=-mSYJPI#fizoYqJ+7~XC^ZfbhBK+&rGtjMTRhIvVUMfDvM*Nk1z$|)s
zgI%k*!Uejja6^`0H~k7E!Y=#8B!yb_G|No7azOq0wxEo<BB*hld)7h&#ij5tJe$&H
z`EM}0#7VKpPEuLw#7oJz!Q6sYXrO<+v3{$#O};&N&77}tP>Ja%cwd|2$fJ`gp!4e=
z{2;6nA=_T4O52~5nB7>sGQQ{)+^*GHP?tI;citQ)i%fDSpmKV4N<;AJBZyx&n`NaD
zZEvZjlJSaQ*?x?5YIk!!Db?^J`Cy5KzEhds2BQ9Lt#jaSXv-Jg1FR#d0uHC9lApm#
zSAR?y`p?<ir~-sL?G}`jkv8;=iZwG1Zpuv!D}w*^p8wcq;y?M0H>X4B;t88!OV)kO
zEl(9|rvD{1uz=XltrD5LW3egU7~AZiH<3rqRJpNP^>WeBmWov~DjECE+2kP1%kyiV
zD{9Kc1TABsqx&wu!At#i9Y0Om5gUAyR&lG|DppNzL52T(s9HP?<B!)`e7ZkY?&%`c
zHbtK!K>cGL@l64;7Kfnr@7D1NY{{SK0p)EWP18U5i+S+#|G?jl7R{{wMwwEviTV+d
z-LK~~=%x~nV$hO8G0%Bg(&xCQLDPWK!imBk^3eXPVB;Rvnm)6iFdw{h%@@36$&k6W
zEz%rqie&d;hG5;p(uXeLobL8_wMx>({>t1l487hp1M|sWsvGU4=C}`i&|*2=*rx*W
z<^&h)6KxZ%Qb&vm%?g9a3d5}ViZ+aj*Xs^Votc|l)miz=;)`Bl=Y{Dzi<wKig4eGW
z!AcPnT7;3YiZ+z)_AU76Aqu{W*`aRsU`Xy(%NwOOcun%{)$N1dZeCw^&YUfcki7H_
zg3DNM0&6JXr!z{Lw&#MBUSs2nT2AnrTBYJuslL5=f98Z_pBFoTnf@jahf%<)_;2Sp
z_2&FOj$gWtwqM)HzN}G=tdZ2VyVR!<;xy-Q-iIz~NfbXcRTvZM2|>$7W$WS{?spJI
znG}`<QIY9ENI`W{$)>iN5)T%o<Yer>f^3=$j|fv=_z?LL-0>iyT-<3>y2<lJL3h(1
zX0`qKX8&qRh#Ouf`8cJ4awU{Y;F@`NEbDv>NpJ?(;jjopI*oo4ppw+U9pj6>u%%oW
zkqyG2a}7uP^CZi`OSzuLR&UQJoOh=g#;#IT1AjQuD2m`R=rz<j)^3nnDf0afP~`q$
zFGhJg7h$o@6HJ7N+z2$hj$~3LE)%_$9c!{R`0y0ZZKnS(__o&Jvkaj@hlfSi&ik<)
zU)Wtjyz)aow&8gu#qvKp2&+~25B}z^?r5!8F}qj$$}a3Piq@FVOxU@M05T4Q;f}Zj
z-AF}xAB!K;=TAjTaY*t|XfseBwn(A%HNi5IXohb3wYO`p6NLg3%pWvmnpAsAlA!k}
zvq2UB#wt}+EWPw>saI7=pWq8P2bR+fh}N%EF?gF|E{F~_^v4%*cOn(1=9s!HmjzL?
z5AjlGFyA}AfaYG69C&r=l-y2ghW?UYi0koiJ#iV!bPwIMBSX@RNt9M=_&`_FP*NOx
zez~JrDsJijX?<#X*j5FBlczBGb2e4Nv?RI4z|kpivo<}`8mw*lkPku$f+>$`9B%o^
z+Wr?SiFi!2goE?7?n7Un4x1=oc~I%gOv28|70ET+-t<NCHHdsJ_Lg<G|6fTkiBBT(
zrR~i8*N(2z54BlkSRk;|zMncXF@cjkFF`)H(z8-L)^aw>r56~tf}ud_NK=D$Ce-dF
z@sRyNzf*pH_}%t1@+QNEnB2q`QY#BS`@M=OWMG`4Cr?k*Hs(uDgmp5)52|*x)|@JQ
zV7*9$qRN^=J*d@_gqaK`UzV*4s{x9UK3cMS@?K=e9BI~N>ZX5NmCyLEL;1v+p%-_O
z&jb7Z7xMZ0KeO_gq5S^vbM0s3X@;$<d{#g94dhco_oqc<g}#yaKjd@F%x%c$XH2no
zmrv9lwjg5k;m)N5r$1wuPRBFMkKOfLf4*K>YzI>(m$nAIsJ*=TH6?vFELD#aze%2Z
z{<8Zuu#ex=+WrPzsez!mSd;vmtWD@rAKlLnL-fVT*rpY-X1hMCaU%Cz(*jEI$(|j^
z8ZtFa8bmO8JN1H7vqPBthe-93eNjw<7ECW@;f2sXwLcyF@*c*nja}%+=W5E4_JTT2
zr6psJ_!BGr(&+>9Di^|wYX*~I=Y-D%!Myscc-3jsKCuz`mlcbL*ya5Au~S#VKJym$
zBN05o)A(rngogR~dw{26#Vpos=C9wAER$BTta>#Lqu+P6$`Aw$Wio15BBXv{q5Uvs
zVIq=wk1Z_xoN=7j`cWSY)Dd}p{s+&%XKLUPNNjH}+2;s`7|0)D54MR|!%rkFcUYIT
zUsX=9jzw$2*S<P9E$-AS_Tb(sL}&toKLKF_+Th%~QJkkD4J$PA-Q-!*L!Luh{QLu9
zqN6nzXR@%5m6%fy2d=aduf+V+^<gRAYp_(tY}^B%OZe2}q!m`z`cn`T)<q;<B#9Rz
z)dP*$SSde#>|MkviMzGy`MvoVN*r^IyzBkKJD0=9(p(05gBk`%@-KO*VQVy?V2%@;
z6YTsak%_hKC86i9upfEH80V<uy-@Py^n!iM{Xstz={GpSGTFa8BY7j*!0x6_xl<_l
z+QAep-IUzd1aIYsaz9nHvif}t5b2|2&_4Mka=*D#?%m|A&AsSvx%3z5=}%j10^&YM
zde;`K=28F9>f?BnD$|&V-lJycunLs#hlSq}sQZ3~`#vE2j%vH_C%Nyv!tZnn?t8Vq
zBY%WT{k^B3HZu#H=Ji`PGqMaI-u#Ia!yojdQgy6PtKQpU_w(*pZP8Dd1J{}zmzE>u
zD@S7EL2eBMbgptA@B)r?5Eo}Z?5PhH>d+wFZb*%tqEz!J>|4dsc=Kx#NES?Ij^#!m
za#y*_cUZ;5ln3C~3LJk+h$@!WPw|$>iMI=KShU5LBT4<_&!qk#n^4gzhh5d7iFl-3
z7>!?BAbIowVbyPr29GW2z)aFhJ(Bunk{0(!`fUFY;g`{A5er(rl1chJ8iqAmPh^tr
zjD{R7IJq#B)YK!XIg@mLkE9=El1}K6bfP5%MGMjC!`(Qxn?66P$UqnWg^qui#LY1e
zU&Q-iBkb=GUO(4srTs0Je_%r$eoF=JEgAa4>Bk>IWLK?<uX#BuZ#&XUflZB|Ah>Hs
z^Cyc&R+Q!B5X<7i*~=qC3=0Y0$yz1bHZp9^rlBwA<kY_gq7tFkFDjOat1&RL^ZyzD
zqVT4^&!Y>NsS;h%*?bQ#%0lUKbeLVv<C-(=gl;}R3*9H)JSv2y{dX+UpT}wc9S*ux
zr&q@W4Z6g}E%D~J(9<RR{r1f*Dp#%7y3T@cIKk$5VaXw!2Q`{oW{ki1)vwL@XIvR?
zzDjxyHgediH`j^cw9$!%YjezRD+n4R*_z6-+30dTuc9^H%$iD-(&Vq-T>dTj6xM}#
z@TYlP8O7HTxhCyrW<;cI^E5;Ele7ghc*JM*Z|dQo5xMni^l&f_D^-9>$>Z~Q0Z)_T
z-(sMB0oCA6AXIX>B;}I%TT@aFP;0!YmjS(w5P&HYiZ6ts%rN}IeIBB$?lXUxjUi{<
z`GLRLmZs_Sq2TPFx-rN|z11HUT>GR>Vzz54t+l&>1gbRa=1AcbmJUwcH*B1P9*86j
zR8oZ{UD2!kC*=Ii%t*2+;Q*H$OOJ;?Aik`RK%m4q!Nz@r`-)h4ZwIlU2aZ=V5Vqz!
z6+62J#A6wVMTh|^hxLHCAp>!ZgSeyzAJYti%yZ6<uqbs8PRk^n(<AAKOwy<xNqc9K
z?*Cx~p&C)pCzEt_kEFEC48g_)J(6C?B-Qjt`dudJkRD05WRiC7ku=Maf@5ySq77xT
zG%_Be{cUu?*(+(T1ZU^Nw}P{c`c1jtw%DGnyQ^c$X^T~aPjJ42ZR!i#t}RFCzl$3z
z;QQEktcGzE?Y)vfe7s2-Y(5iTa7hXWohxx=PC^j&p#LI3XywJqkb01os?}d|q$-7H
zikf?w@>I&%0e3hJ!fwM?CkdN29MO2Rd>|)S&J>NqMqc(Of$|~o0B<(X15=d2=Chq*
z-d`7~MpN#Q{amq_+F(JUOtsk^)@RewVh6YM&q>BAxWveh?b;&u&SrYPe#(i=k8S3O
z8#Xlk^D40V=f|GsqXHv4FOR+SCm@%{mg~p!L($K9S~bCPHEp|MCF#7IDU+?IWsCj1
ztMxJ%M_dDm)EOOK>sLp6i7z_5eO`Bx$+d%TXzCkxjyL@kOpNlryGX~^j67XG1Pf}%
z4sFq{SnOt9$;|4Cjq#MWRn+(=6x4usVvWCBjek~Nb;UCFgeI03RpbA@Sc3zqsqZ|+
z912t^MZv?2xMco{8HaI#zhn*9rK+~^jvM^QnTo5`y7j}q70`H-qX9xKFIYj{^O+D`
z4U_WE)G<2&6U1BoZ-nXZtL97@OtprWUJ+FWb1rs>FuBLpaHe0E#pq;=PC&)W3pyT?
z^g_;x)U!Q~SHKu*{h#{hq}jUE5e(^Vb~CK2OAig}>CyvKM_a3&)UW||3GAoo66OD-
zm+}YqP{-+sOqX=?H?+_ke*=A;s_NDs_^G6F`@~ayqzdTVk+#*DU3E2&>u}k+y%H;O
z{rq3@vcn2I-sUI!cR5f5z<nIx>%?{v8+&K2R;4?NFY4F0`5d?0G`{Gh+{VpQ>48xq
zUV8CTzrCHE%j#9_Jvzw1FRI_yf&RFD4+nOUwmF^DyK(b*_1m*Y@ds8%8eK@Jzy4iU
zq1Fw=Pv^*vom$uRO04LWW-g&aC&uKYSzj4GVZ}JvWn-WA1@?EY{z^&8EqoPk+C!2^
zY>dU5V|r4Gu{NpxTaLBq_4_;4&Z!^hSesG5D-V4dH&5Y=TDA4`6Vd_>C#|oxyffm>
zkGg^*h4bUhx+2!$xF~MN_c}a3te@rZOs&6&hZu#X(+^R_oBP0d2Hi%!0s^|r;?3>u
z1))OdZTEu2>NtDKy};Ue@n*%@9NG)x&5DaJQJ0#I^CVu|e`bGgw!hcgU*G;VJMj#W
z;3N(&8Ok5?d-yp~^K0GJX^UONU*>l<z5+Uy{)KeiJwYw#brUN3eZED*r_ZT%sJSyM
z(5g@?*TFSE(=gPV^r^SzL!BJu?SW}xBk1Oa{@&otc8HE86z|co&xYKuybf;NeP-5+
zT8C1xw87eE5lqx=*9JE8hgA8qF^3o&CG<)bV1SClh)rjEp+CFD^=BtgB>J;}?CQ_f
z>6iXYzrob7Nn^#dh}4%<7L+U$2&KTRY1?;d(4S*EM~9srcW}*`NCV$gqG-INIZ-jm
zx$D$zGFj;|4`3tx3eq|MVhKi{qc3hzda_98We*yj6XL5ed`)2{M(z?FE6P?G>RW9L
z=>K-3y(K@@PjWf{XBPN_ej&UJO$Qm?9hnJ)l__4Lb&IXUO?-w%aF$2z3dbUXrDW<#
zsFSwkv<q-;sPSDfs*{^o3GOBDC~35WrV=qPPFn0&VQPAc@#+ugg`SP4CetQsd{#f*
zVTVYM^Y2oQn&jOjOZXj^IzM+@#b4srJ`JH7WObb-PGxO4BK4~L;qNZqJ?F&Kh!tZc
z8x4(5OqQ$|=ld$8)>%CwEdE_8dQI}&l9}WD+a(QKZB>)HB)7U^OZ?g!NEMT}7*vKy
zq9m7)=kq*(KQE~A2VDZKnpDZ>V~Kj~R+H@eIj5vESXfq*Tt6<EPRG!wnk1{dtoym_
zc2#jG0G2#UWU5!u(4l^f_A6NcWW}P=yc$N&l{Iv4we7#GNsWB@NrmP|xCn~#Mi3v;
zsv{hH`Xph}E+90i%%+)YQq$<)x)aS118XNSCz={Z6yK-DM><A6{TU5YR3)&y;1OH>
z)*WY9quGK;XmrTkOXF(Qp`9$Wso^buRhfo?9sQTA@D2zi*3cIf2Z<k0Hx$Q}N!*p!
zq^4}8Oxvc9X4SyfeaN@QcWRVw#lT2?GFsu(;l>hc7*xD1<V-%sdFfJwKbpTM&uN`1
zY0lFDKWx2K_*tIC&pB&VQeLQ3s&o~<>1A4#kd!B<V@0kALDm|G+IHBa(_?@O-rUSx
zygLQ4>o9)T;XrrV8?9d=V);q2`er5{^vC1@YJSVCvwLfZv#aJW;T#Dl@pSRB;IV6o
z_HOk)*MEyIb@(>$o%{b8U;nM)!{$lsU5+3NE<f19Ys+>bKqzN_iv-C6wt87Sr0nNE
zq9oOa3=?KW0n<}C`Ap&}lG9i0%Wc^ci46%Z03F|l@PZ3T8$({+GC%e`knpX{E}lEV
zy$r*<`QDF32Q%*HS7zxjo+peVI#c%x>FAKvvww#LeWreF$Om>+J!2}ixGuwMtdHT4
zy-&%Tg<?Tan!y44Wyw5t$FMxtsSun}Ai#seZx$iSrxR^sf4(Th$dDutfpi8pY>=Wa
z!S%a2){6c7<&PR;7vWl7u_MAt#Y!?P{Tl?eod}v8g55wc8U$^zQvSkZhuaO8${!-M
z5|c4I_otj8`#RFg@ACP_`g~PT#9G*NZ)^ZPz3RvYKU5xVKMa7j&Zp9>2kz1y;&VS%
zQM<-_K`<W0nAK}&i-;FXNW^1S#8W>r;Ee_GYaY;3+tLF4U}8#x)7qp|(w=YvgAJ6c
zwabZ|pUtolMWvU!DO(~NO$Hr1hn4MUz;LBTA;oN;O>D`VHGqC>R^g1p=l2=lbu6bl
z@LB_Agtz21e8@~_SLPP5Wu5xWL`Z{|*P9)9-hQ;@?^M!*zxzl^$4q8@qHgl2bnT^7
zHlkQIq8M>hhI0oPjsDear|aXTCLG7hgyXmO67Owv<15Nq?p3^9U#}9BO-}Zn+%|?D
zm`RCL)vnCt{^St?x~UljOtqq>V+vUJrZ4^}1;qS02<MbMMg}{3$>XUw(N5^9wya@n
zzLA=y)WbrBsOMcm!-PSt{n2390E(ZAT@_u1Z2QPBAPOd>fG8`CQiM4GyXVZvz}eyf
zRUsIL53tD&tm4!N7?Q~e1_2g~ceFmcD3WTMhn})opI|;?-t=9eK6X(q=I+K*<|@>J
z(sqex)451Hf-CNF7SoK6eR9fS_6U7Mxx+RbIcbx&KVCt>O3v1kUX%v%lH2c$u5YvR
z{z_f_7I*6d;)}gr@x=v`byKXG1UH6EPS)~?iKV_&`Ct2(b@EcD<`v10vxS`#@=BX}
zvES`sRqTYkVjYU(t3{y4Whi)Fv7Txt^K{tcwyL}`3MK^X^&$(N&S<4mM7}A3iJyyH
z0;|pNSd<Xyg1jWXq=}9K<^?luKqLO@J~}LXJd2NlDV59$uxv@qtvhx|KDtY?8;hr6
zQ=_Yh2dI`e*ep`eGM{?XC@b4qddPF3%G>4s2&@LQJx%_@ro?7C$_jwBvo44)9_kkD
zRBV}Xy1YQI^}{~$O3JGJx-y^@6=GpkjJ=EXgfd!t5ixH6J!d_QS4o3!O>yNj<p}ZO
z8<iUh6||szW$@bPYWkh6DA+iUa*Uz<Q;u%!y?m?sP^OOYn(dUPve@Y1v#@3><BPFN
z%i@W3`j8s<J+Jk>KC*Pke8OINwnOC)B<Y@Q1z$J<QI2^53rHF!FwGiI+(>Fwd~u)4
zt1DXKiMhO;nCeqm-MX&N34YafVCcAVWKHVCj_QhMW}FLP&E;FFD_UoqaU!Z%jVhkt
z*X*1(juH6oUdM|W+_Uahft|CW0}c}{3<b1)F_aiytV)82Dy6;%&^U&%_CEyo;+Nty
zEwmqYaHy%LN6KKP+^0xhvJHJhA<>Rt;aueUz`xaxMlhitMQU#tI{l%xX&8+YA)<o~
zr6i0JnU}AnuUJXd)8nJ|+`{U6w1HI_kovcjqP0b3c&);e;LJ}iH44?Bplg0edw3U>
z;T1FTG_NAX<$b}%X84@s>K|shH-5`L3`XONWnNM>eM)sK75>lisy-Yjig76wjC46K
z*z-==r;Mm0`jl!au}i{j{p>&Yqug^onMMzwA*~Mg^-|$)TT{tQNtk~g&yA618l3x%
z53GZdH5T;{9_K2PA}gh5<;XnS;78*|zR43-nmSjccZX%tkWpSXQN?NZVW}9+&3kuW
zWX};5>aySfU)fRR`IgA@!pyTjlcxDcgNrYo2@iiXxXiQQINZ~|Ngo+&IixiV401@U
zZqxKEV-wtU6uP$8I1H`16TzD-#q^!uFp=;BYxj?WInS<aTH__Y;=_LWaI3fBtI(hL
zJf7G=pCBUS@x>!BE}z8{U+$BWGdVfJo1E-ht3(OV%Z?9CBq}iW!WcBhlAI{(<kOWo
z=T0Dx`@}f^B&SCr&r8DR8rH09G%PrZ=Jm3narC8;-1?{-HPn!>Xk5mKk+GD$++o9`
zu|wYn!xV(`Nj&uixvDF^jwg2CCnx9F_~IcGs~N2)cHr&A)YJ=es#`z65KKLo4dfq=
zYkvRAx^bLQ%}A_)_;72-(Gu0nn!#JV)mv&RUWq4G7U$%QMN%{P^J2BSxg~swSd^U@
zFs5a34jxzWay;=9QYRmq95E>)z#0VEm;+DAFNM1tnzI*-i7)Ou&EO{peoV6Oq;aXq
zw4KbL9KcM*Y|$1lY1=U_bzTQ3;tR$g0K>2=7*x(laQM$^@w}PUswdJ%RMSVC;MX0V
zH;x{5?pu5X<VfRg>`*K6`0CXkRi`e^t*Q7ho@#;1aj9bw<GOfiA<!m(J9&WJhAVn`
z6|cq<*YWD5M$EQ_7k<N$*wa<<#N~X2hlVTqR14?=UWtIru4Y}#2?DCA=!hrA@l|mN
zWjKOou#Ol*>9E)2DeakO%M6Tf9Rv7^S7z)zneG2GOoFC}<C1M^EYijFVX~<MKXILx
zgO4Xx6Qr9wHaTQQbqBtEcm0(JQ%_=nt)oY&Xs2}iior1KXHko^x->YJ#hHvtWaHd4
z4OVxGEJ-nRWi`}P;)~BjHfuQ%i@9X=5t!q(@x%}9?XgT#J4Rh?WlcpJf>26EhEhCL
zwM@+kss3?oHlC=u^(R!IT6bWyt=`V9D4IMf@pW#zsV`wMJ@%^GT|d2<is@*nNv=+x
zg&a5%qW#mc{-l9pDPeOh?2SuJDpw3Bxb2g#on==i-7Fev>_V?Q5bZ+h)zfh^RK&1o
zt~9<YgeySEsv4w((4LUNpQ#MaSn6#4@ui+WjSg#OG1Xg%8Ah}o(VOb{Z`R@$9_~7X
zGp|-pli`3Pa&-<jKaLYlXUH6q3wKI_$0kQaeTt;%dN{s1V{Se!ory|BMd9Xz4sWq?
zHX>ksE)9lmkZ0dyVpg=%RVI`<v<>oJ0ZcP@LAynKlL44-1~Ke~<~*&=i7@S{*hI}w
z^>s7*e9Q^H%gQXFHqksL+t&g&`sbzoSh9j=-I9@L`&9k<r|Q=~4L-kL9pi;S<hRxF
z2w`QCF))$xu8htFK|5C2%Z*{7xm_cCcjdmZWL*ectN39MCN_!%-aic!sj<HOT*W}A
zOkY(H<b&tsxHcIEb!(+HPFU#|XfZ??U7$=~znS2d{L=<e?_Q?yPgBVhQAI@4_|@Dz
z<Ez~+2*U~RV98=AXgSUKB-E&BQpjjf&WJR=)2OE2=(uM(z9=2l@qb!jGa81w!~)wj
z5aL>6JfdOWP}S2nDV~<C6__xm(2NJ_??j={Ixns+v>Xu_DniTT_}r*c@=_W+^rdiB
zspW*#?4O#;q{K^gy}41r^ZV%HCa%ZHNd8otqX=utuP$~qMO6e}EWm$zwOcEkup_wM
z09S81mGNcq#nXy7GyQFAmbqWZwNZQ*9oSJqX?77{53CZcqJ=*LtB9Ls=xj`DoY-TQ
zc(YARjk634prCQ$jsAaYoHu^a**Mc@nZ&2Tmx5|Z4dR)S4T|SRnafxnS0<ZQlU8k{
z@{L0po|cgHY<QQk1~+VYZ=-{1c*>Nm5#DX>nX6_(vStP{HBBXl@2;|MEGe>gt8a{B
znAivpYIvn#A{9Q6hDR~vK$&<o*32|KV}O^U;EMO1Dn~S=DwkSqp;k4C9yZA%iPZ*s
ze_)-Ts<M%FhUcO`?xY)9SrJ9b^kMACo2U{BaD)!%OSyMSny2qc9l(Y|>Pn;;Z9LZT
zma@S1w5SiLt<h=XBZz)r-Qx;~SIR9-?8ldkW2Ekr_`UNGPxQ}~mvlD^kuZ^8?5PUY
zsDOKn5RT%Nzxlbsg7N0xTc5eW1-p}Ze&J6^@KWRR6e765y3JD+@YFs7EsmgPG85^K
z*sIEqoeywL$}8rq<9KtPpp!F;I~A4TuFkeM)upHGAjfxH4$pEdV1bN$3UOJJti;!K
zWggX(Tjdw_1$3;~*blJkWNv)%guRL;C%$6&<IkyDhK~NA;Ah4_fhMm!)puK^B7Hg4
zsqy7ay{rB4m1=oQq!EBL9SWf;KmSq7Ra-Px5_m<4$?-*ezs<g%QefZb*mt5|gA#lm
zm+~r!gN&?BRx-2DWL3n-wO0-Hab|S~M^iBhWG68u$2s$NSpC){U#P)v!d2KiG~}jt
z!NfVPJ*hgR{Zbh(B}r!mjPTlT(#i;z<6Hkxj*K+Z#~^N(S+?b~#%+=dr4uEaMUsYR
ze^ApMCgUQ>_%89=R$0Uk(*F@D2&Npt)FK$7LgU>RiE0OlD!r;pvCrQ&9~r%(*y-E5
zWE%D#Wy&&rsg)e7nh9?QU(DWS=_6FL2w3@OU2Z3WN52^YpgYi07C*kklj&*Y?VWnM
zYgaw>Oi$^t?yz}E)6>m}7k%8(a)o;O3yI$8>F2izo9Ssi8KtA|@QJFZ4FzADJ{{6>
z9Gv!idgXs2g7m(YDWh^v{70Fxa&v-LW~tnj+s+&obgL@27sB@k^|JzcTT!_Uw^})o
zlBpc)sy}dFI!pe2y0FfYub=fFmAte|rq=%`Q@4^wRj%=yA?T@cM}IQ}?5By8x!1Nc
zcd_9Xj&$ZX{c{$3nxmPu$MOT0aOH(MzOC4)ZDRU%h)MC4yx@}m2t&GU6MdArWix{E
z@PZNB%9*~{fHfq^bX*E|_1y}5`d~nV>2ImC_VXXVS$*3hk6253j6J=!<EMEFGXfk8
zsn7bys9@7l`OA?C<+g$5QTo<^7lC0ZqOa5b-C~RE%hTZeuznN)H>gZ+{L}cOoadfy
z(Da{W+@RPGe<(M|Ws15%%9tI0RNBiOp~HJeiS=|eALleYR-!?t#^~4roCjW{nT@cZ
zsMbWir|@I-OPPYIX`=4j6x<UhjRhr@NW(9@`KR~=^tt=9zAY*f|2lJHaI4mV*Nzdm
zv7}tR77p~;{_wNO=cO*s(+Z47^ObjW9)PS_8S7GtmBQ*Er4+lAgI$W^e9Z+e#ZwBW
z=~c>s3(?pA!Y|AT*?OGS`LHEk^lxa3I$ViCF+%zFWOLpVcbx&?F`r*7E=@XGjo1ea
zcv04I<3+8AC)#(C7v;j*8f44AIg#!BHU6YB#j9c`CeQ6v>Tx_rvpZ<)ju7PxxO~i3
z?%>#*b(3uJq)J`;FxqPyQwbKxv(D$S-JE}Ie5GoclM$obYLE6x=<-V45&_4nMOQSo
z>g<4qUZ!Rkj$K@yu$<(za-t0mhpmUK(eejZ61jwuKzbUM^+bO{FAH(V<05=i)k`6c
zjr3GA@Ua-y)%atG#<;uODL>(vyKS+`xYPv<_Z}?SNTIlZDBje8HYudjbT61#7IXHE
zvddF&o$wMW_%<#%QOjkHweQ5BEkVB4IQiNL>=06FQr{y-OZ^N4Rv>}#z0iFpLkrtU
z+s2r$QJwrEoiMKe6OrxM2h98r#FDN48b2bI_J?X@ZL+9dy!5|DmFAcxOy>|cMh}|*
z2TTkqLQLmk(2o3um@?HCDW(>`+=5(fuD;6Of5{E1rfCSBSk+%hs16<GQB7kJ{{FXE
z`USP5*Z+82a!f51(!@6^$|{80V_k)$f7GKk7F_b*i*R7J;Occo{|}frL<kWMi&X8G
z_1}!It%~suH%Rea6G%S~zoz~tnfk{jUN5=UNzGf_kfK_>gjCu|Hg=RjT%duEBs+<9
zYq5j)mT3Z#tTlmjf%WB4<vi>gmLQ@4>80k_NI9iaLESf#MHEv{$=>$gW0P63VPB}A
zHBre*WaIoXUNuqO=3EMZthQV$2~RTl&8Ti0V?71mKXl*GSb{fvua(Tx&oM^tYC``$
z<G(NYl|8U6{O_@4N^ZNhBPO>6zB49wA<vjxqR0>0a<#3R+)u9Ay2*XnzHiOsK2AzT
z-=Ze>m+pJF7CztnxTqffdisAa!y|fNoA5ti>uPd$`5!QKHMuJ;{$?d4Zfn&RX(uwd
zs=tiM9h>_1CU<{JzW~R<ncPa0x*y+qn%oV{jdbm`_V|YEM%YZ>Z`d-u){E1=S;3>2
zdK!i~-w@kY#h5V=t_k!oxqtKjFO&PML0nLtF}b>#Ycbz4O`y}{{*3vFu9AJ~$N#-N
zPBd&8lUx5kVCpH^1OIz$8N-uNP?_9MrKsx6LX%r=CifbS*F#qR)n;-{eloe`0Lw$0
z;l7)zE0bHP@98th)Yar(anXM-!<~9yJLJE|mMOVADC1mibz#vBSAE6Ox4y?7h{eYc
zR@|6d-`Dex=@RbMNWe?}hf`k+4U09bYP3w6^*ZuR=lGlZ9s9t&<l!(F&aCTs>V*>1
zg6vpe9SG9<Dkz^E5piP<F|f?AEdw5olITq>TkGfDv#p;h?Ego$X+5$%^`B(hTiF<A
zXdvw=QkgAN<5se#7k?(^qORE)UBJ4AP8A6iVhez$f5>K9W~+vd(;%E05hXj0d;LdN
zo0RYy)fR&(M$5LoCt79mUss9TY-0Lklq2{yt%C(ehuTkd^3(JK>-bvizV6|Ec5y#D
zxt~7n=U>lR#`W&!AMPixA9qIL+P6To*a5d(p)t9OXt?;X8@(y$UO9AqeDP&WcyF1t
zFUvL=b*4tJ8jS-m+NzEy#og^-$!Q4Dz=Tt{q9Mtqy>LBEa=FSRyy-{L$>0Z$8UGv>
z8-4gjX3-pT7=7IwhSr}Sy0x`X8Oc*E+~2BN_cN=Tf{|cre_~tf?=Cq2d<B|=Wwuj)
zr~sy^Sq*g_BTu1m2Pg&WCxYf_q4@^<^cFu0_!HshAtBl}Kc{T1e42J+p0ZdsKC7%S
zS?U6)N3)qOg1q4JOnueR>XW0&i2b)e6I6)i&7lms@E@Ohp|%bsK4CG#RCWR&gNXoy
zlSZQJCpA#h>gDDG1q$tHCZIlf#E{qtshcdCdyy3EYs|nO3S6mqNC4R)9?lQ8RhEK?
z%QQabAU+o6uJZnL?5N5avu5wX<r=Sg8$R@MH+!pJCw+VG{Fm%lpuw*yvQ;jcGd(89
zA=q?1Lgmzw53eGyLqura>AbU4(hj<*V>4B(E}@i`OY)W6w5Pz6rywpSThUGq7i?f{
zX)1QwXstRQR<1Q%Uek6psXn;1EP|~;z(L;8u8Z(kK1Ml!FWleYC+vuJOem=huSRb@
zTq{Z_=CG3BOJZ+Xc_dJ3?t+7rthhA-JCV;SO(pZBe*RK%nyM|<bdN>foyfdmzwlm5
z8qZqic=M}L=x{u&*c;pox|zFlAiZmWKe7SPnp9<xE>TVhG|3dNk`%zQsU?5pc!N2n
zKrmmb5|YOh_`^pVk%nCh6zO`*K39>A5{*}h*l0ZeJF;taGy)7;f%f4MTrAo{Z#vL2
zCpfXg-G1X#;xpPzC;~ReredE}ic9GMY?qqR5Oz;tud?(!`gbP`r{A-8HN6_h212Pc
zi`kx@Vyi1`C44drds>^?_%lbgvi&*hji|W1;I7H8(kingC8-PHAuV&Higk_V@~r|^
z2@tE@;SV1y<w`Z|O4yJk*2$_}^K8LGC#mwSV$i)k>3hK7NFlZ$zE!~2js|eNir*#J
z^X_@k0;Fv%q`EJs7K$aebcJ}CA$h1yDw`mFo`Fc;LE;iK!{o1ZN6c!GxAZ$0$!Ru?
zFc7?5FN={OBD1c_DNnCpcpJ246ZO4qjGfaUf=oqQtqO7ukQ}XhIX{tVOT|vPIMOE$
zlCr$J&bpolzK4Ckgt4nLNZAJB+4}N3)nL1x{{$@$LuN<DP>z0VV!(vRP(PlvARFG5
zdKG!>1@C4<*08*oR<C*XRN>i2S*stw2}7y60kq}1k~04&nnjcCF-);f0>oGggw*>;
zR~==39xb%#eQUc~c9JSA5*mNPj`SB&XOQEdy`l4WuPCNNB>bq><bSUqlT`mf-8r5=
zhLuGvb>oBcwYtZbA$RDW8ENfA=uQP4=P&K%`DcLX_4+=#Z<t$YY0b~nf2<6}o_`W8
zVwHF_f5TeD@~}lX*7HU<*5x+3O#<xOdb$#;8|I;*a^5$S5bf_iB^^PmnAtH<A&AP6
z(y(`hqM>`wmT~c1{Ah+*mzh|XG1`|JZyMkL38==_Uul2}n})~vBxkZi;~hSGsVj>0
z^{0|a+n8d0u#JCqDFrb2-As(hkNw7d<)q5aAS;qh|H&Fl)bITL4^%`a_>3IqjF23u
zk+hwN(Zx?~Hh3rRGYn371>8R08g|x6{9Xj|&@Pbav4~2O6>bjcun6FGT><F{;SPDG
z8g|S>Jg?4jH!sVY?3kB+FH;;dTpypKqBz$6bfjrk$XZ(G%ybfLjR4-%6>tiGery_K
zRC6_{svRX+$TjR(kUrk9$V6!B>xu}L6T4#BSA5aFofa*v5MNX2fK7L@PeJ;0T5uH&
zUM*Oh=lT7ZZ`mz%W`~_PyN8{)Q{Pu#>p!N;D9Bl+zq#5#)vdihEUnne`u4=eVyC%o
zm3nZ~hnW0S?9=EWOC{tDp8JRE3yQ7L{{3$T_Va@y#>dXGxkq4}j#;ccD;(7A#StiU
zIVYG6RPeYXHT9TC>aI%N=S?$UAAgtP52uFBfOVE9RaLUe?Z;k%Z^YvDN64hb>-Xt5
z75?J#F44R1;c}kD1{hqd>kQD{-w`}O?1z#*dtijT?J#=x?<#4NTd^ezb+IeP%X>#4
ztr$yy489Patx;<Xsm<p%80n~8(1TiCNKH^C+TM=Z<Q~+H6Sd}TQ8V|Ebw!P$_Tu|i
zwmv<mZ5L7#lu^6s6NB8iSNF2L2^+!g+oI;UW${aJt|N8t0TBcy#@kg6lzgVqImFSq
zt_Phu(fN&#Y(<9EQ`Fr~3_57Z)YXwah<rOFGSP^v;Oqmy4(>rDE+WTmiwIs7``v@v
z9Fa}?cQ46m@lHu#25p$+h%6rz0W)p*HDJL9LbA1zAch*QB^vICOz1&mYDmO+4qHC9
zlAP0n$XF3++y;^4LaSExo(9jqYX}bSL8nhhr`!tjQ%7gh!0v^4i&6$f+n}S%+vy>L
zDUQhHC6U}#_jgK0NUYe140S|q>_KFvi2P1SwkEMM5t$bBc0>mDAaX=VgzBSOo@2QZ
zb$@6NBD;#n3ELuq7#7$ZS#Uci)qo(eU-!biB=%v@wJ=DX<48TdX9UtT;65OO_k?F_
z<*8J83WCEOoqc=I`H|7Vep`9I)`gcGSk;5b7!kR0TSPn&DGFY|2PF5?`$kx_nu&!(
zij2t3j>zT#5il#s+Y~X_V_QUOMWi%1-w~PIgUCV&i0Vg85Z7Uj$W1+nTqYuq3CY&P
zMMGdn81!*O@_G<CG9-eUK;(Ib6co6u2a*0Fa^kj#U^j?m2Y0?>xqrP+L=GmdSHwFd
zq3$3u#SwXSj|iBF>o<S}9}CG=N|LmG2|8Zz9Y^Qd9&|1W=}>*p$#HZh^`LXC=v=ie
zI<6mN6cW71xi3hgxCfo>LORqSbZ&7y@K;6M%kvHl1Ov88C%!mo{VL5y)+RXDk;;$u
z@y`CM5QxLsB&Z$asHJ*PyI9m76rLW^gPK-dsF51A^{nNgV2?#RN27K~cWQrh9q!&e
zsPz`Lqq<Pz-1C&jUb^_=#>b7C<2sn{sGZt_+EXe@v}`9hYQNpRyCmgL1*?RIc)KaW
zoTpV!%YvOwz`Z$u$pUk4y8CPW&@22k%+pjwBJ{`9FyhW!@AS$Ry=N^yLyMQ{FVwP}
zJ=tQokrl>Xa#veLo;tIXJ>JQyB}W!HeVx>Cvl{25@{4{hwrSE{ia+cr<foWz^LYZ*
znsr|isx>ES2QL|36eyk&I^>hVbMXBu1WJ5BLoc=ktI3$J%}}ez-OI{1Ok1nxgMx)f
z2S;=C>&(F*cci)XT~Q3?TkvWPGJ6T{xrcw-qUFb3?!(4m%q+@Qw3l(mM2Z8GnFZyi
zx+6K9Q^@H&giad)NNn0O-gE%y5}QWF6McCgx|Z0?^CrbAQ~gh7XFZ$c2W|dcVUFK_
zS0Y|RG{BkYO}d2Audj=5Fu}3jN$?8#9Ls}>yp~PN+1OR7QjrPykgi5<d3*_(NUms2
z$Jl1rn*~Y=2c`-iyqLq_PQAJ~+4=;kk+bH#<~8x=Ka+-lhiq8Ns5vLzd^_(Omhy)P
zUbFI%SnK&`mbE2X_^6C};|h?4JnH=4@OsAN1~2)9zOml<BJKH(H|<OQ#72s}oRKfr
zbJ_Fn6gEipsYGeMdQ?ZhO=zV~Cn(lb)taY4J@<cd>X{0L0oT~ON+Wj#j;?mDPpW_S
zHgYiu!GmG0DXu9>c_wDr&mQ1kh0aZ?h7eZUn`C$EiF|qR)@x=MMi)kq+lalt`7p`{
zH^Hx5=levI2Lt<?IS8542jULw^{69h!<*$HnClPLI&=QSt`VY=ad0PK!Rum);!^<%
z@Lpf0CaqxUIaHQ^y=sHEYmTvi#}3j<^DsDzuW7SDS<I#nK`&Rd(|S;;5S2PogG29P
zSlXvVN1nvy*OVO0SzC1+d@{(7{eCJZKXa$mL;SMt|CvG^ioIv>0*f9QrAcdo!>&@8
zWGdmq#M3jE1wUD9lKd#@NXZZcD-lW%gIwk|j|$?TJXaoHlM_4ylJ@&#6SHp8K^!-%
z@@H!_v>S~J!6p-6YGENyJ^-4@OUNmBiwj-2-{Asuksa=DS$bBKE>@lu*lM>IyO#5-
z4Ze<33e>Jt;eTe<Nn$xTjo(Wk5L0zBTULXIUbRx@?9#pJ-p5r4_C^NnkDHmQBgQ}>
z^7ile2R9~f>{W*~bQRNnZCJaN)NW(8*oUvBEQker#YmW(nTLX&rJT2lNtqJ`7~)Kq
z^AZ#|=Eg)%iY*~`aIBcSN~zuSD*b}RC>>*V)=?It76%6xJ!(Vh#jjYY`$juO>puUE
zCL{kwh=e!s^>zLFJ1otVAgv^(+sgnAwty%-PQlBjXUUndoTIb{!c5L%rU&Ui5r6E|
zEmg>4thdZi(hc%M(#Lm!36}j<tY$&d1G^-L=k7NxWkE^$KK^9XCOO~M!-5fmdNLN`
zI%{wC?w^d2y3Q7q@{T@QSLom1I?(GX)!I_Zn6xWh%#IZVKVpeQC-1?*#us+K*TaQ5
zkITlUb45ROobAHD+K~A-EF^*c5_4n2A89$unYW?kH?!G4LSo}sy0`rZ7j}=|TvAHk
zMj13uX7gvM*wpZXzF<a`Yrf$O+GF5oU;5m0;W2j3x!^AdDutk22+CQNtV5(r)f;)b
zwudX(=$i7+nWBRp<4xD_s?QDl+F|njG5<5Zql3@o8d%qOhKbD%n!&G-8<HCI;e+&v
z!*(U0Ux?M=x<s-~=d{&KbZf(MwF2FJCS92Su+!u`S^Hu-xsT|3(6*Jl_UDXC?e>{>
zrv%Cby*oQ{=o?(Bbg-O^?ewvJCp0cK=*N(4zXp>M)IWqek{e{VfvkO<T8cQUG0u7?
zUMNluqxX)zxvzFUYK)Q^USJn96Qd@MSW?!sy?#oo+gfDys{Ij!Y>x)F3+vtZ00bx)
zC^tP&n3FEF)~lF!YIwj0wnlAeYg8e(=lBV=ZLT<u?eIealiUiw$A&f`<@Cxo(ub2~
zeR*2Gji5f5?4Z)^YlA-`8+SN}iwjaY%Sl${T!1BOYDu5P&+^!#e9TRcGM^}0+1>Rg
zKG*g+bx{GSWD&eztkBfVLuuxrOb<v>0rASPtB_eO>T0!vQ@JUy)73)pl_xp>eR6kJ
zdnYZL83)rWsT>{0zv`$vlFJWu4+QE{>}D3|%}e!KmZd4p>e7aSb*N?g)i#gb-Wn_&
zO{?J`n9z|9h0qx<)O_|B)E_KUHLbuOaI@kZd&(k$&>@puS8{^0Ix@++5V`Yfa0Z0h
z?+x)2cWhA^i90UQFL6ixTElYtbmRS8ho)Z{2Ta-ueo%bbEG)n2AG*K5E#9VOao+>8
zf8xkaD8CHXq*Jyi>qMIm_&^?mG_~j6g555ZF}RTbayd?_^-`IY@Na7prnJWIrQL*y
zYcftpKMt^&&bC*4s)`rlSG}V)%`S$8aHoHI7Vr9}=SSQl&wbP(!G;@{$t>grMU9-1
z;WD@zQJN<TAD<Qq7R_KGeQP{1)TlTN!57$(<va%;a}!RdjDnr=sGtvbmxT@UOL8gm
z<m65suRRL1#EGt~)s*!{w;DcaBcne+BnM~cKt?~v;^bQE{F|XBZJa`)ah9ovDbaeE
z<~vmM2Tt8pH;x#!P!!CzO|uyvV<<RPX9v>2t2^sUoq%6it72n8G@+ctgcFYDLnRL&
zq^a=0Ob>&09snaom>pn+nl<O?7I<ZfmLoaDbnYq%@hV1~9qC2<$<#$~KYI*Jk_&g~
zBFTLi!vuG*55b+;Mm5d{kN&AjuXB&~d`srp)Tf_Lm!VnEn-1ngPv=}XY40Fm3yb3F
zjOW5tC#lTplfKjx(Ho~0zhKkFzpJVANh*cN=rj#xRy&41lOAm)BYZ5Dq77!IUe@X(
zI~5xFrTwhnhjCl|0hz%==Y3x#*2Q)eC4EMyOEax{gQGQi^t%Fee~%j1p7wR68dR6_
z3p*9TdKm}?MfgggxrsN;vL;9e<eTS`*tC7TSr)|e=bPt}*wm|@f%JTHTjp%aDZnsX
zC6UJ$%}?{w^i2K5_??yvh2r4#=ghf#wJPGV*~x1C<n_@~idE|1u9ppLyX_-jYAV6U
zf5EZa|9MM&ZpTP!OsNZ&ng@B>uN|(^_C!#fc}|~?^-XNbi#I<DXlDU9JmUd<peXSs
zov<4G>i#gh-zaxYPQ?%0*mA}x;kfdyyEU#nmC+<aN*atc91YA;F>kQ?>@HTIu+UAx
zT4Tb(lW3+WwZz!H<X-DVxf^_Bq(HhFCU~ONAnv{|<S2bMg$VY~zSdfqc8WK1Au{4~
zm7+ByR-|uGFQch-m_K?<gafOW%TyEDdf91>fn5}ffLXnq3|NqINQUhYNws?Uvc-z=
zWQK3*<+qt<s~4nCJ!mbd)kE`XJf%nIH5Ho|9bp_KsodkxU34UU>K?Sjtk!q!K*hCW
zt?>=nxG(sZ<`(H=&<bNAK=4oI;DbiiO9fZx&n5f`JNDplCb~O&SDH)b`m^}lJt;aQ
zu^?0BqVWfe<%x~NX4XSb!HBC~;6W#IVVgzvI7haeXW3CyM}5-!zd$~VV)MU`?}S5p
zHF+d+O~Kb^qE0zs2&Vo#5fQGVU>iOII^f_X@tKM}P~;p&9KF~(SF0M-qUeu`b@-JW
zqqbJb!qZt2zFepBBxVq(yx?q@P*HK?xd6HI3C2E~AjazErYBP+_}94BGjLK0-<+g5
z=DsV_1Nk02e7EUw7De!U1r@Xc8=0w~F7msi1lb{g%y@yKVBvCt@0g+0*96xU2J=DE
zzT9Exl0QB-p^|j*nS#q9N7?7(MO4tR{&qDA`ryh?0b0}ugXdXh8{EP-a@_T!NR9)=
z$86<zoz&p>4(V~HM?i`NGVo8P*B@Zt(i0KE|IOd)ZAR^{QNw2Z^%J$eUHLmi{B3;3
za=aD2bfQ$m-(ll=aD@0Pbo{+NE5cueKpLJj{>Enb>nbekhWFS>hQqa#;7wS`xSH``
z=eUxlhW=&-NWVD0(wM(7wr*dWsa$@+U#<!*Q)4Ituu^Rxf%l!`v?iYTk=jhE@R#RE
zbNa80FB<gIGf^&Lc@|A}2Sh4zS$QYpl)fy2CK&Y*h1t+r%-_&hXGa69`oKF0mv7XX
z`=~`r#onaZ#49`OggYIQnTZ2$F!irXch(duZ1%#nEYnh(!pss!o(XnU&(z0n5m?Q2
zh-fnzL~_(51QADx>u|Upo{pxjWpP84U=|K(z^NKFPjD(1t$`eZkKpZ|ok;oaNpy7|
zA`IO?|1Ii$#LNr909lrux*^Th81+Se%RU^{7akrpi=9Zc;NHP#XahU#=fCbi6_J2D
z7}3>tB!31TJL42YIq?Wk#AV%cIu^Rp&*qQ4JfXjtuFjA|FlTER$PcBdGI9C?xgwFH
z9A(L+L{QxQAg%3OEp_SuUN#f1-rQ@(2!FzjMI5EPL|xaKbvtnGAvu!+uY&`9GVShU
ze!Gx#F$Sr0S<rT;L}~@-)FO@F_J$qwVF+&JkdmMnM1d_`_4$%`I&WF<<S^>w*{t+?
z%n#VQ%Pvg_0-f^%Zd*5KZEzs`_8?=xLuRbQ%&O~D4y8*#62)#g>|v^1bWcOB>ROy;
z?0(P?x_5l9EL-0A4-iFE(RCQfXb*aYTCYQt$&l0jeDMC^7{Eg@fRVE4v5S1-bDt2S
zU8=0Jd~P6OipRy{3gpik&pbwDIFE7I?KY3GVW}e0br&(wqv|}G6~e09g3h|-P<pG|
zr>t&2+VJW=TQm$UN)EeO8=Aq}a9>u@)FE0U&MNAF+nkDrb^XTARM&=}y(Re9VH8vA
zM>EBwFlEv|*ZFrT3|DkYobGPuY^R!`lT}qc6a%Nzc#5bE>!q<LQK3)17`1sklxL_8
z<~v}V&d3fN{WEb!ckz;(BXkB&;c(KTiYHOO*>_5O5=}k(Ue0@Q=X)4$WLaUTD!92=
zIiJOltf+R{<N4DIyj%wB7n2ZvnzL*geh9R)I>s|}GULnRD3n*;E#TKxe%Th+Q##VQ
za%e%XAiV#FHjn?L(Vw+f+!5(_7r`Ae%{gz*qv@%S<D|`9{D=6W!jjYJj_7j+kcgCv
z6PqT+6ZyO(S7xWX>~%$QwME9(yqEYZO@CAI9xv^)hOX`2?=p)~cUAx9x8qIPzwFms
zmB$LxtMZy(t3M$5&JNFxO130daADkD@f*1?u6~~?-oJ`K)xD0r=BQLGtqb+|`93&_
zaqUOTNabJ2OXNa3;W*mQpJE_&Z{bPTA8nQm&{Oz0^rh_OboJX?zV?T4cydURxPryI
z{7XGcl%R%nz1lwpYG`ywvL~epN`D{rDA5bAgGXsM>_K^h<BQTi&3b&@+W!bAZ@R&$
z1Q#&bl`g2@_romj6HoL~dMY;eXIOu~&nm^*#_O<|1q;<MI3{@B&3dqT%!;=gs=SKj
zmmbX#X0NCxG^0m33UY(<GDp^{aZi!%m|dBsr-}MDQ?jkZD0`Ux*x!$k-$Xl<-j%A5
ze4Mjq=P<5Vsd>Q(+i!gsxBS=6NW@w~L}fx$9wI7_Ai`J(Q7lA6^ROX6#si<_5ZOxY
z*<wRCN_!hPn(g&8ixE45hHoKWMvEB()J?wEFt{M(*JxR%Qc6TjQ8VX<_A_7VRb~aW
z?Pj5%Qo~rM{6~wPc@-Pt*WOE_PUg6U#OgU4b9jv}n5P^Z5nu7utbtzgZM$=;wf(4?
zRNuX-TQ~JOE;Vpx(i+~EpA>I?QhmytuW}m6nn<~qjhKe`yyNwfShl^_+TI(8InanF
z4%Nrh@Xr(d@jM6a#UZt0;)wz7<Dh0fE*^N6m)tTg*;>tZA)GB_NZ?!NaaL-R2FJuN
zk1t4?W=V%uI2{^&d#FRwnhW?AUo>j>`x@iTpF-76ouZWUdA1sHYV)mqT>V;~;1SC{
z<YY_%vFw|Gb7Qz-Swl#!o^i5d=nxE~!yib;&zVB{s8|((-9t`cL6H28kcPA{RWd1_
zF55MCP%k0I=?^Pb^oTNt6`*$)Y_WKv+kq<0oylDvjR3ke+|;j;)JRh3G3aPj@agwu
z{Gif)uay^-%p;Hd&4Qd@baAAtwO*3`W*d0!3-Oe?wwmgX>p*LRYtDyXYC-Sd%QGFV
zTALcA_4K#RB5HS#ofx)+Z`t4!N~y3x<^^B%-g=Xo;X)#jmhg&N!us?OHG{EO7<%P7
z%VskGL7TQmn>JCj86TiYc{g-w(u|k+@ak1gi_*W>^keFGImL*$;_diV_vn4jvJMWJ
z_2#^n!=}0P4f>SWOps_1_}DEVMRls2)Q34=NtG`>p_>}d_%?J7of9F<mY3mYg@mQM
zt?QV6;;N#LdP|LI0O>MF1y|hkZ%T61^$~<BNq&g1{h`icO#emKBD7!cC12r8)m7Ya
zglXJjCp>1#@bgF+&gou;>Y7yH1&#f4M$rxjs2$Gu4qtAiRHJBwXIA4;C)ZXxlf+Rr
zpL1{=B^#%2PuC=&_j*n8z4RGWNpSa#+bR|qe|TM##u~m1&(LVUttRyo)lYTB>(j64
zTCnsLI9_&B#TV%tG~Jq9o3T`0@~iZ0n}Kz4eW~(76_sTK!{`NLC#b7)Hwh_C)=lr$
zxM*Z8dhgP%Qn8bVxlUn<G<aI5!BY!6JB2CEmRICv8d6tV{#y%%1S?Ci*rzcCYc8WX
zwtZ#|)(Rs|sK;42^H&5C+xlSdV4<z5mo-t2Vb8@=?bGn8Wf(B)pw0~UGey`5NR9%_
z>T(Qdc%_SnrS_kP<zf=@lD^*RKnHg6eCd~FB9?Xc&mYH5;tyd!GDCO;11jT-R^Z<B
z;T&tF>-q-9@Atq)Y9N~mG!>RPGSm(3^T)nMVv=4>Hiyn5C-_~3+-h^s)X%b9qG>;n
zaeDd0$=cWUm5T4zma2zp)@iKqMc5ZOC#Kv;!ydtbrEKV7ofx}EXO?=&qc~@dpJ$V+
zx!o%Vsd3?2WA?r^ZdT(ga+i1d(=uGZW_sD(PjtK#<4^M0#!Fmu{!-l-^Pg)=#Z|{r
zuB@0CvQ!rrm?sqpSCe7=$Qn+(1kK}w5kwrhnu={7UC?e(+<!h0ItUHXg$lMe`1MTE
z{n3aOvqm|=Q<<cHZWoE`*p%SiE{VH%Y$?X@>xDl!>i~3ZaHn_BWBhfDtKVYPZ)V6J
zyYFKv%SmXZH<*qo_QFT{GU!G9w5IcQtW?5oTlD*^kkWI#p?7X0;c}}flcF|7%~c&z
zA3Euou|iUU^d_cG>X0P;!cROM+f{$^WI3ocTJBO7UxaFI>NA5I+fAv)-37(m)tyx}
zq$Z;_ZIz{<N9FQ^R{+XZ=8r}RLd8kwVyT0#lO#gquVKXc%sAMtlt>N#^p`@8FGY84
zURc~}O**OCOpn661nt*`HFdzT5t;9!>L@ekEO^Esg3k#Qq!}D$JTW&SjQV3moUSg8
zyNq{HkMio!@BU4ne|6Y3uM(-#!;v|aDEnzr{_^>(0-B)yO>NkgB-$KvKNXIP29`Rd
zf7g`$4UdrrrC?NskHq?iRaQ?Cq|+au(LPBPNNa;HW6o%mHPO&Om#GML#ZnO<!Uei9
z&z<Qeth~4b-KNrbEeNvo8dJFkzQqcY?Xn}{Zsm_Vee<IJKCv%HbbNf#YPwp?%3mcW
zT?B+r#~|;H0wZj$p8r^Z5!SRY2i$#qtO_uqB$yHU4d#@TsjzS?XUZga$*J0GtiiA`
z-`Cchji0Yb`^QLBMaD5{aS~i-5`4+qXQ?Dzq}_D12FlzO=cNxKzy_m_0Dni_2^@Aq
z7p|5LrI(W!hCnYFiB;M-Be*VQ61(gWB*tWkDNZ+eJ@52|@?=5^=u4i_WSlm;m-J<R
zRmtun5L%;PAzsdk;6<yPAgu+4f-FXm{hT1*)`HKWp8stNQ>p=gBrkY}9#i&xcSECE
zCy&;MU}ISu^CI)Eh5$nJI8FUj9{uYGd6?b^cRxBN)aGAUjbs8H!7mqBY5gITmPy^P
znRJ#H7cgLd6piG2bPx<$T%Y`4=smk%z&oQ~<6Wp>2itzW6PdzJ9s|?7l1oJK%cyi|
z_xg*R)u7eLai$ZRDZVw2+^7fs>3P0;M4?<~3~;SqI23WK6S|kuGMT*)pgEh>2gMT)
zpw75I>v^ZcxukE$^3@-^=S#n=oL^V6w`2&LCzpBt|Ksglz^f{*KJEmFL?xb}M5AH}
z8f)<O2F02vYEY;rdZM9Po2qS7u{EvQq9lMeXfO$K+#ChPDpo74wzaLT*eb<K+XN^#
zTLrXLyrQi-$IuqFa#P9o`>)yOWG4aZ`@G-x@jT@0y=TqLnl)>!S+i!%%;Svvl-$hp
zljDUssPBfglw^k_SudxG$|r=v__Lgktsh3rrjva<mr1+^%2dIg28OS$itZQ7m4xk1
z60xKxHcp%87x(r0#?SV&H8mVF{bFVc(MGd6u10H--v8cRO2c@!L!Cq0DR)(N9>URq
z-bA{)v_o*@UuE!NH_cqGURxI2>i7}SbQuNa!r#P>+*1~^qAmzIK&&Wp5uer337z%;
zH$GxtiSIo?yfrSlAu;M{ebrkc*^wqf05flFsfe5J?zKR=^ED1b)=ZfqNv$}zJe<>Z
z{m31DlbA2bZr`o~QK3pa@BYnsErK?-sDQLz)o_!9w1;>5Q?&_V+ICQ^^(ShhnP&wj
z3xq@1$#Xujr>XHgF^GL<bccAWo<a`H6ta+RRPhRbY2=(1-88c*jjf^8rQ_GCDowH!
zFizHdx3D}jwgEq&>uI2dbPw@RvYTw6f8sv1#BzcF_vK9RnI@;3p^Y1xRC36sNiK<!
zS(3UdGNZBKE_KL<wPH3Mdb{T&kEYfZV{IwxPMJra$V)W;|0iC83XRbXbasQ*qpaJ?
z3!C?cBO{}-Y;t#3Ch3fEk))AIy55ppei<r=t8b)&di2l9Uq|))9X?}xMs;5SSK%y)
z_h=kAs!pQ_Bt@JrRzT*I?l?ZZ_FI)JHHJH}n(1tIc;E01z62+1Jsr(KApL1d&&;?6
zn;LkLvp@NgkJi|SyZ6?0g>Tc|6KkV@<t4q-s|>L#`^Vv+B~lquALD3x?zm9VPXEX=
zE7&QR8vSkBe5klPmG@#*2sU)5z|^kR<+aO#78B8qrbiLa6`EU2`IfObtVrKKInV~H
zncZe=9~DnNt#5wxz|x-MAA>m_Oct7d<N{_S%Zq1@MWR}9A|3qHAi7m`J?w6uW&Ou_
z9Ir^64r#KV6OP@;+o*T5HfFamqqi|JNkSV_&X=Iz*Qc5T^dKbe?LSMFhJ;q!w^%Mt
z6O=_`{Z$2Sa2WSwaxN7*m6b%3^HV<bq{D{UcF>fHP{zNcWRvVrKr6g}{`+)f4SUUU
zqniH+;nReMbh|&b`}XJ-6RZT6hiNFu<`uZNA7)AR^auSX#&SOWhsb7k3!mJ#1)9oR
z{ZT~H&DvjQt4i+MzUZW;782Jrwy!+XjpV$iU(P!$CrMB39}$85B?8U9(7eMD0n}69
z_35#m|Lev7EVk$m-8Pxs7x`@igMCw14^D3F+&QB2Ux(!G?A$ppJ_#<?1*cW98+VAW
zCz-~9T&7|h;WZRjtpHTcbS)YLSLerrYZ?Erm2|pkgYI1pZY?Hzb>(`Udes8_=#GSL
zZ@Zhv1o!(gV8}hIaoG(_aPv@W8}Jiii!aUNl>NWNTVEeMZvCclt^dd!*YZ(r(?#c|
zO4B+#vV2_Ipwe@LF}$!ITZ0rGRMWm?YEd;<Gfkc{WPET+(`nj$-`#X(qVoM|BdaU7
zOc@R$Q;tm}H&^HG+*}iTcueWI*!&d}+P2^V|8;e00v925#BR9MSWF~pU0%QJoK)$F
z+~Az<dM%<cv?BH{B<0pBhMSUep%Be36pxf>gn}W_wC;I)TlChYqa(e=y+k=~9~ehD
z%EU8zDDjNAWszn0&fg<EgZ-1^UQq&Yp2=?UU|V00fPqbpTO5LU_KZJdrTsDr26c0s
z^1C%2x&6xfA~)Jr!rYo0#QN^|R{Pm>fc()gmY@Da^egt=M!*04&B0QKn-)@q;!w@b
zOZne0z#B%%_-%+c)KqeT^03l_@~t;6I^m$P=(WoCV{PA5Qssumfp)_P!@gXuizr-o
zgHEA|^n4ug(Gbd4>Xb9|zKJLi2->=>yJ>*MinASxd&UG1Or#7>*cipsNfQtZnH$TX
zF9{VSlq;ciM`5ge4?eO$^z>r|wm@{Ot#@&R6<q#E=(s(ViwUQ(mF+sh1V5ZYSmJd|
z$#6yhG7+`De(G1Eh9}Q+g(Lq+kIRJnVmvrKKiD^8so|UwL_8RWl*w}%aax;ySrS*Q
z0$d3*n-$(+%+gUv=$XqGl4d98)JLh}j)Nd#9plc)W(#}+F0kWGZoWuQ?0RTl-+XH2
zni(glYDkms9z4(IDu$a2Gx3yJ95eLv#IQ4m#r9N;jWsk8sSrIAiUVVWG|nWOtJS(E
z@R}hTJEI;CJ8t2<Us>eN(eX(g!p7|@{hG?_h;lKjA31I{fNEH+fpy_10qni##@yio
z`*8@?ATYt#d0D$j-&1+d|0^Oydn?0LVFoX2xA}5sycz*BSvw0b*X~>Ky$>U)=pW8s
zU*HE0S&3@JM`!JhDDy+!ypVpkoohO89G93|fJF#`_ic}q%|59dw>BJc`nG6^r_{6$
zA{lJNxi`!ZH&i<Pz;yj95inB=(?c-o2jjau*p>ajCIaT>c;rs+*YNl6G=1?hCK<@z
z{FR7yfiH60e#(80a`&hLTAq-xk8OkoW&g9!{OgSo46V!mrp}-XeM1^Nh9^Wh!y>F6
z3c-9s#(A*&UyhV!?VSynTjuLp5T&y9;E~pljKHT4N9d5i>9nEu{1VHDE*@@b$cpW(
ziFCCWxcek#`RKcw7wE|gTr&bUU8FXFJGs{9@&d<E7Mh#2sIo~~#nh@oRE=ppX00+~
z&j?nN9SFKe8F(p_uz?o-9rrGqdZAfX4W<jsfu0f9OX3l9cPp+#6f&5~J9l8DKTTZE
zfVx(CD6W$pFu<Wvd9l7bNZkOW7uT^K?9r$P)rQ9RvAYD;m$_fk_f%e4SELtBT$hF!
zytw|uk7`f97y&bJ{Q+R^ZwsxEKW~ksT4$f)*O{mnqQU$%XNoA9vC8u$3~Jt@(B{n-
zbsOCK7+&D@aa8C`N{`%4L-zFzso2sNhwUN>7+5{rEw{=rY4r_Sw;=*<Y_=u@M|eQ^
zVh{Gmeqi?j=3ezk&hOXm3AQS=yTN34-`%VD`_kL9o5isSgm`{D6|Ym6MjSShKaTOT
z@~LS=jT5j^xnT<Ps0$e+HxM3zOR!)vS2M6H^ayfIRxZZSy2-#P!&zi_N*M?yu?&-!
z^;+(T*dKO&*c$PD{}4BkhH1eF(?S}D=t1~IcEa9`p6$y}JN(yoX6N4{+{kXKt}TuS
z2gWO(6*2_bRK6%=h<K6Lm9$iCzP1_=v0JA^K~3c0SwRtlV^ENzwj={pvOA~}tDorK
z_K0))x_zMUf!Lv;wUwc-zy8<rA=rK~Q$sDK>=s)lMxP4XpbERCqv@AMXov}e9}V^R
zPv6p+vloiUbS$K~bFMuvnysJ84KqGJrAB-E&AC5zAGWLoWA|ZmPj%(CX~PoOIb3`>
zWp5q|6S*t#^XwB(olTGTDW&=GctCBf3ZP3&*D#W8e#l?Z_6rd%i-ruRa<3giGrc7C
zyQwT4?c`S5X(zCGgZo1(U!8iC^-=3Gx@W^Q5oyXW%*&}U=x*&rkrGtO0{i=2n{bGB
zt+h%q_M`FNaYPQ1AZu5^D9oQQB<0`fxlpZbUqEzww_Gf^z7B<5;?x#vf5}MoWq>jK
zSgZ;mnuw}`JK;PuBE0Dilmm%UYbjN;CQ50#Y;=dzITTN*wxl*N`ASMu3E`|(NfYJt
zsz9ktZzwCGC~R9f89{dQd3Et5j?-5N=v7@-a7kAu%U=kG%nwZ9pb8FNYuNea1vcE^
z2ry^2M5pBx9|KTqk<gJ+S9bYQ!4xW_2Wuk5m{|t_a(d8k3-^Y*b*)xU_eSJ7#V969
z*nQ9qvd(92S}SrerC6n3rWE#zdVWFgL0rMRvG$Q>$rCsRrVZIS1vY-$CfV=d^=mdO
z!HVBV*5sH{cV604y-dWKEX1vV>7LQC&O59Q3;hk9sHrDQ7t$iX-EE^-VzXFcvwQ6X
z5#~z%H)<St#K6plsk?A&3Nnf*Lgvb;yM6EttM{W`6M%#%wwPmbsZn9lwuy&1kF^pD
zBa!l6YDL7bz7Z~in+ReWw2)h?ddVTiR1NlQtwDO-pHCKQA;sW3_hG$8o1PExRJf9E
zym(BwmDyJ<B^ph=KAOsnd#3YC<ZNCjBr4ZT8?F~?Fab1(T4t{pY$V@J-vVzA+p>g~
zOQM-qg=_e^t7He+_YAVZY*Ri=O1u)9>nWfspjf}WF{Lu-VCy$}Si^L_X(n1$=$4)2
znU@Y`qoZJxXrlS0Ey6sB63_F|jpNXG;S@}^7IQkAnVCR^m#ii=Yn<<~NY3-fXo{1Z
zCngJuUO0xCY-)kflgs?issVV9*gTK5KQ$$s*xI<^zYw^J^z3TKzR4j{RYGxCqBs#U
z4?3vxde*MWFOZR@32w+RdZ`j<T%fM}yF#R=>)k_N^Oi@w^$cpELBfDS2q#O0?pN<f
zN<zV#xm@yy#$<gp+a9sx0YkmVxh_N7^ueIyHec=MLOq<U2`yLus6P%fUNVnbpMDmX
z&__lmF=ezhh3=wkz6^|be^vTj>~!q0AHE&2mkQMC3+EUX?0l*ec_<u$<R77=(=5s5
z<HAi(ffdn9G@Wn?g-PT*`-X*lzBKa1%B3^%2(0LG(6exN_DHI&v`{@~`s=MBked7K
zjn5wRciN)A8hF1no?Y_F#EcPOn~7Bkh}@+XK0M1cNQKoiw;c;&v9@a|FcHiYgC!7*
zMfxT1t^Jw3bh!)e(@94iz=e~wb<&8p@KGe3PIc87U8qXNE#uDE;#>boUcz77Q|5w!
z^HFx&_!duHMTjl8rW(>&<<>z+dv-7H%5jB2@=k#($CXE(^CQp2damY1Wdbx_rN4-R
zoy`td&ONp&Ys-VXUI0SJyFA6jtr|bj%%u{)>SS#pji|D*YUIFhKP%pEcF$&ldxi?%
z7P8BY(>9s>HU=`7m*F1TCKj8n9h^7BY+TUJ;@Ax@F&EIjD@HKDGjx|vzK~GASldF<
z<H6hqe6daY1TBUjIWAX<bn6mLCn%CPc*O0u)az081Y05B;YWdlzcc`t>@k53f?9r%
ze@+|PaOD^JaB<&*U4IoWVF_Jf2|onI6)h@{AEzH<+Q(FuuU<w&Bm0svnZtA-g`%&o
zu``m+WxX>yy?UchQt>J^$aUuWp+WWUs)*6iB9I$bzcX4U+l1G>uF4oZi#|S*V9d&O
z(`Hyf7J@8>5G!-v4{h&-YoJULZ6B4njR{4s^v9I9r!5ae^S5?@J;)3+>_gGwa&D-$
z%zgD%YU;DTG?KF1?U)_Jy<8wPmHScLGyt9%^)w)1IqnJo-Oqe6g-EfrM+(CnD*Md#
z8cpJ4=czFQQXJGR+gGg(hbA@69ZE1F8|&sDu8notLhE~aMT<H*H|?#y(D^5nZrIL+
z&Kp2#<fw?AI#fvAabu{$UV1-*kxj#!eUkcf;*&NbN1jpS?mQxfDD2~YExgJ0KX_z}
z7M1#t%DXn|PBG0{Z;;`X+`Wfi1hD6xilCrAa?0--RbALbi`Vx~4EN``mh0;15k^E~
z=D2}j;nNL=+kN3biWZJO$Z;>LqbRq97lXXqLq5GGf(Ct`<9-9A`=_sNVsxG45T%|U
zE>K+qd05m_T%q)wKLj4#A_b^{sWx-Ny^JkZDZb2&bF6(Ng0DAd{ecyZZ*ge6KSRy^
zn@Ax@GAZgqDpGBqHLT4+L(eX`!@!oWkDx3Lcin1Bv~f3k$i1SCGaCQZATwTy%RJcG
z{lI?hi8DId>DHA--@t}-5IVx=9}%UtREzsgSWT^wI>&>#Xf+0QW(XEHunqW7pu+R3
zBh53UOFT9YMtw5ox)~hiud@6LeExa;s@bUeLAuPquJ&LT_5*t?1gkKxvprbOUn1C;
zbMRIJ3tc-BxN*LDBl_XpK!UqZ;ZG>+$jHOMlKv&f;?UT<K@l0XUDWT}dP#7X&I#1@
zgGUH3xN9x1+ThTBfW6z^o8SvW6i44Sf=}sg7F9=gq>C+i9NZZOtA>N|D&_B)X&iq{
zW-#_(TyKm)+h#!<)yb9?psRICUg$%tM)Ske)2joGskYRTIf#Re7rN=XgB)4DclH9`
z*93K*?`wj3&-XP!Ll56?#cqNKmq%S$#`njH`1Dx4bwvj;!hrqxnMhX{-wzJKyzDRV
zU_~n<V8%ZiaZ>dXkMDZO^ZG$97Gx@~GU~H7zQ4zc$ngFD`20t#iqvEbJv9XLe4p>Z
zHb<*5uyaGOxHa$f+pN;pRzylOyvsZ`k31hqFusq4`90tN$md_suNtTNvsAp+gI&@O
ztTP1je1Dz?%a4kO@%>!}7UBD9-@GIG;XRoI_shT&-7}s{@sJ_?%%Cm2;l?~enLz|A
z-ks3~qo(p^M-PfEfuG!qEjD=JeaM)k-a>i90_?mgCUq<`B>jaCBsGMV-d(zo_jqs>
zUE&Y%ax-r-dhgM%h9zn`^eVS*Im-{;Yog7w-kWD&;f4z-fGSV2<D>k!r%=8ugv?k*
zZhsHi7$q*IEaz#5kcO<v+~jNjLbUJAu-Gqzyi?5*<Wdirw>-inHjt%BaHVQ2RGBSs
z3m%b!V@_!~AaU-_l%Zas=N{c~z^ESGP^Bcq+k?n65N4HWqL(_$%S24pLa}SVLB-~c
ziJsG3ss;|fJ~Ta!+!4XkVxDs?$*o~uM*0ITVKT4I=#CW_Vm%HXW;;=T+I?zHuXx#T
zg}6{1$jWR-V<L{y3M?jvJqpXVSwQ%;G@dY(gW}1vxJqT(XEedSuoz$0KJnz~#qu!`
z@xj(zo12<_-byfC*IUer?>a#zjLI#YD*Al2)V4gCDgNN2<%d1D%cPa!9HMCvrR%y{
z+y~eL=_;mkeei!uWZSjB*{%DHx4)8|;URr{#M*5;1}!U7qd*s5_Z8IMN+dI`w+eGn
z8g80lU}$jP>PwOU<yZ+))V8up*zwykSHJw@QCy^dLBZvRh!*Axq5NXf#4`HF<3fAL
z$?2M{8I?_Z^~HTN+|p3ih1bupV^yBn)H)KkcIFf^rD^*G&p|;Uq-IKai;hjfKUr&h
zb;#m_sgx!9CMJSR1JVk_2g|E3@(p@5K8j#vhMZA<i>JQ78Kp>^9(PB*h-Wsa#cQ|T
zA9EEFB8ip}U;2GZ?{tX(JyiOXPpQ1Q(KSgMlfTv+GH+e<Fa}#49&bsmU@QGx9C1nZ
z>F*!;{;rdl)ymn&pS(J?9;DqffBT5BTN1=B&TWHcT#yMgO%+|*sF0)K1AOF6Fo*|5
zd%)i~h*4CH#K!+_I$I-{+rKN?CO2mwa1d*+N2b)~Ur^<n2ZdD*e*sr(DzE)o1w4U5
zB8vjVB(yPglNFZPeDW2+>AvN7ik&AaGcJtqRKL_%8xM{bA~t?_=KJArQ?Zx*%$FW#
zqE_a$^*@Gs9UIp-#HVPWFIl;Lc}<HlXnRcNOqDl;c(rRnRKNbbyu>15>+-sYq>fUh
zaA66oUIzBit>8^<nlYKsT>CPsT*@j{wD%Nik-Xy2Fuk0<b7y`)FP?6_h;X9Pu8`Nr
z{^T7s!CPu>{rlozeQf2>k&K4w>F?Bd+_~nwxkC&)bCbkP&S%L}Jmr6*@hl7V9aZ{(
z!7XJ?g0Sl3*6QRo*05$Am|!n6v9PiB{Z(9RM`65s841mA>nz^34aQhI*-g3BL@GRV
zROjzLs1KFT5G<vK<cD_4TF`hBT5&9a8qHeveWbL-YR4p{1!L{Tv_x<&Ag5`U=ZzPV
zHBtF=RqWOkRc%yfCvU(nn(yShX^e-Wc(E7)LfSA89(0R@+J2wL(vs2L8kZNUB5K9_
zv&+D=SOC{FNRKjG^6gK6Z)y&ZH7qD->Qqq^6elX5y>3cP^0_$PSk0m=q0m(xu5n7*
zo{Cv2SvBoU#f?p_NsS|lj8)d^)HS*CVlxO3{Jb=gI;)#qsHau8zS~_rvNOTwhO<*+
zSc9`j+ox1aefrDtI9|tLgt5J;lC5ged3`s4g`GKbx%yVUG36NBI}(gP2+|E<c=_ZU
z?pI$?1*5m5e=5Ga*WT!&u17RhODWsdXoX}i;YI)S++k0md2a;HPK_n>Y-RI4+?^-3
zNxqhTR@)Qt0Yvu-*#!2sX{y;>{2q0jxvO|AolkMWuGXsPcBEguM&D};D1;%wi~iSx
z+b+*3v@8=LOC;{}t*wb<7LeRqsHm>_l9?WPQGH+jboFT_Z}r)fKH0B67&@HcBcFcF
z%1u#~^ZL|x@u#a#=APAOcHe=0>YL*wnkr4gd#cP)l{aTJga7T_-cMP7UZ#FMxCJ<H
zqx8+}P7Fn>r~a1B|E2!etVJrhS3I*yZqT@Ljk>Qco|GXWA@?J8DC8z<ba1!>1Qn@(
zPBdr(i>B9Ansp#CGG#CEE_An!^kQ12;-;&bifA|asAJ-YyOxU7(?QI5y+sfFldAPF
z?ty>9v&SQ!efcLg>qbHDVttkNG^jn4u)XB^%4v+4+%34QMBr>K0Kr=6ADU~EO=DRt
z1oaSe%7r%eLk{-<-JrH2;xhMWNwH^jX}Yf8SUp{Tb-6<GVvlB)33~N^Y}T_LUubd#
z<Y0(_uo5jr+FRd%bDeOG-ExCK``U0-g?#06Rk8g>8YQKR=#{8NtY5FYjye!r(59ur
zU1p;Dc!cj1=%I#Fw`G7<l3%_V2`U)ksu*F{bUh({aF-bYB>kWV0kj1OQq-X$g>To3
zF7IEoUCS4J+G~qyz4%S`4ht>`kdz{hSFW8=rV{I8i^mMCYT4NmYdu=y7ALW=6*UUi
z{DPK5>j-!E$31y6y#gV$qS`Z$Symj*V?@RqZI|}SjuMfLYOKd$MAa`I9=&BW8%UaI
zeC6L}9HSuQdZLJjl#grK-ZG_%$JOXoM$;+Bj86`EBHm3Df(LGXR{1BZr0M<n+AaT*
z*vDV(hY#C}#B0CO)x)xX=#~=EobJz30_>{P!ZO36>n69^%CH{zM%V-7410jSfPCp=
zpm{vWf*RdREhuMq4Yl~5?NxStny|HQchM$#>H@QM#H2m_)nmV`5dC*;zaXh&#d-81
zBlkiPRhz!e$2+IA#oqD%DB{-4n#vbuR0pGVI?mX5a%|6bUx|F7v@5Jx?C$urFmCht
zQ}IE<zCj#76HC-<aaK6H?#zsl@uWti(+8^F%zC!X-i@V0le12l3q=-K+V-q*5vQj+
zbx!ZGO(y8v25lD##}Ik5@Ynif=tSl7-XxxYIik4pn#$K_%&4whJ?*N*s8xy7WGsuF
zSQcBlYeqg@ox3HG#8eq&hxz&57!Q*ayT#TezJc7n88$FAofTwBApKOuSs8R`*aAb|
z@HUjEr!S<N-NrA9r>Y4@L1^cjg^<AD=n&QWSO)G9gLPN34)jU$lRqkNuk${IL#@Vx
zW)1@M1EJl-fcCUEX-_+1Lx#WPF)?W+Hb~>(_{x<Zvp>T+$1@|G3So=gk_Uxg*idxS
zD#B@KvPogRXCCx!6-p<*%zb#i>0Q>bZSXzX8fUs!p%j!-9CC#sMXnNAl4;tgRqx*X
zZ1G+9`u3sPG{Z;VmWcDJ_=*yxp_zxe%tJi$&_AgnlT>97pn?j46DcQOU;OlQ?^iMr
zGH@ppGDV{x9A4wn7Pb0A2Md>0offv*f&chj<6kdP>^;8yuh0g`Dt5fKpd(xV36Ako
z{6Q=92y>D+2d$(zzhe7LUSq9u?PF2$R2?e8bt$de&zN#OQ>G=S>3EDGX9;mQ4+Eih
zlZ#)DG#O>C)|%v2u4}>-*VAs>`*;OpYt?-#wgC~%HOjV7<-2wJ`>`ofLRY8z-WQA?
zQnUR@9%)YU*q%Abqv+IgBB*lyMNvVBYFfvh##6I%N@!<g=M;poGdwMHw%_~qx}D}>
z*RjOkrUP)l@4~+LnWsO!mmRNZdzM@3q1bL1$tOYoc>FPNQKewADt04>Rpw|2?A&N`
z`m#*-><~cMJ&)-*RZI79{qf8lzI*PmkB7W7R&B=D)VhOnaAy0DMe4KP4LeWzjxLJ$
zYCKmqy%_1Da&-|}M_U2uqC?e1=o#xLxw<>kU}n=fHQG!8)4{1RcgE3gVNh4TD=Eqt
z6DqH3iF>Bj_tjkAS6t0Jb4RAH4!JeagSSpyIppi7c%1z<fYe;yS4-7bOU>NFE#>>_
z4eP5C>(abEqmJ1En(vl;Th+RmZ_<rpvm=`~!Ft9w(+7`=T)pfOwYyGo>|SSfp*QN6
z<e~z<W8Z%s+TSRiaH0zV!+{A{joNJ6I9agDPGM##sSKVt-zVg2m?*Tl&>I@yPywNZ
z`+YWnvV9TOss};is0MrJ0lDuVwC-3);M<k?+oye)pndg)p(OjVgEW6e5fY|Bx^mqN
zx*hy6y@)?;F0JMC{=wrbRuBQAa*}^THWR7S8RNDw#%*TyysA3)g*f3XCyid;ww_y?
zy@{4BuX&NRLHyohN@sb=%e}XWjLgj%pwZ}V7KcaZNCTKs1cc5MY35KPcnY(wxuC;U
zC0P<dnQ*3;{5zESPuTCh=rL9IqeJW~C=T6Enbs-3pR7Cb^(k)sq^DYs4l&W8M+v&!
zqs{E5ugj2y@@4Ko>dW4bu3Y#&A@81&YcS7`Egssk<Cs{xx#d!|9O<*;w0P@#oEr2-
zuFkIL_IDGHeu*ugmCI&ujMUfz$EVI*JFaEhp0OLHnX8v9@c$0fDfc&;OD;8Ladq<D
z_`0{~t?si@&F8MgQFHYqIfXbisB&5JlD74Y$2AU(FQEYaYth+f`|@#Md@Ft>>?~A4
zN$xU{uvh?k#ff1jDA8fp3w}`BdTjna5dWK3uDv=;z27@ehFhcdrsn^gFx2aKPKZf&
z`TjBK$#;tPG$QLvhGJc^P`S2gU$~}fcA|8A&oD}bRbi{f(+}Cv_43#0tz;Gf6@@3g
zqp<=}c$~7kPa_wiFy$Z)HOg;$iCf`e>S)T<Z@DdJn|z`a3ypp@3o{?!ZW`d`n+T{b
z5HoP`28}Zn63!qC^=j>`>cKdRsy+1P=TTHwEPlq5X@Bx=kFI9PSaQGkhH1ko8)<iE
z#J(53k(gfjAqJy`r+1lnpZf?1(HAm>FnjSbceIMJlO;V~z41ArcX{rdgOr)_CLss$
zZ*}CXx$ES3?kbgB5-Ifg*C_N+E0Ca?p<luyOOJ5Q9O9^WV&aG)47$}Uc!*_0HzTWu
zoEZ+wx?=m&D>mzB>GXc*-KFyWG)Rj&DE*gT^#dc7N&Hg<dw)wIKC;k=lfDvs3T;gS
zpL^<ixpAfgw_G%UGE?W_VF%aLuvddqju^xuM|Z5fR4K_JuLkpGqYO9&fN<7%bEOwj
z3+#u%qTUutK4Z!vxkx`@WlgtH`!NUm>+BkM9(}Al&kA))@rOtuej0jRXU74=A{QL-
zs-MMHf#8hKCW3)ALA+kGls$Q9NK~$#dOS;E`Qh|cP|Yt=!yR9YddWu~AW~exbav+Q
zmK^yv8P=`}3aSU%#_F0xl8e@S4^=)t<;0+<oCK`6?KHFi+iTrrqTI0UT|bE@G3!zV
z9rl5abf0_MQ@OS)>3$LSvLv6b81A4<n)G~C*WE7Z0fKqbWbxo(GjW2)gi?Ie&d`}b
zEc(y_A2n(_pERP?C2tblgMvE-7{=d=CvPya2RC$BQ8(RbKX;j-J8DD7WN^WXA^nTG
z(~3$^R6KRpLS9%N8%BwGloqMwB%^eNw3AwEO*!{1HB*ie&Y&`H7`C#doRCRLe^-hj
ziGd~#cZb+_GrwTD^fDZ?3C^>BeNTca5F_unu^4hKIx?FoaYz2zE5x#_LW!%+3JsXx
zbY5XlbVn}jU(aG*lFeVN(Yzo~hA<}5>C@#P&SHGeo5DDuL6+QI>)hCv8BBkN$J2{@
zAN_&3(o27E|Ijzo>7h;?VInokh^$XRi)V13-1K@x1w6;@hOQq+$AeT`DduAs|N1h*
zj@*`;Ks{JmW+E5<;wY%lyLhoM*b_RAY2E%|to`-DOkx&aIEWDV_P_e)JUy@W&wI3R
z4O9D*{$+5>hn(Q|5HGAimdI_tP*|sYw0&=XQq3MxYFCmv5z0Ynt<*qDHfhYbED==U
z7>Ji7DxZqA)={1v-uL%Gia-#z)da(fYf_iwCX)A?ySS$E&#~5W;A(<IabXR)ZhQwF
zRh?Xy7_}agJ})-sCK{JWuHmS>Of}65&_PsF#d=A+M2kYRzAB(#znaRWv3603#JU7`
z?zNsO(%2bIiM=-`xM8JzsJ;ZVr;Beh4Grc_=2Z>xXqrDk03ejYzM(w!s1xI+yeW3*
zLz#R%GxluO*t6Mf$@gTjP&kqV{(_1Cbff(~(l^VpNS1AYpq%n+0_vJyx|vt)^>_MQ
zxu)rA?U1((3(^vWa>^9DuQ5kbOjQXt4NO$MOMoWc7mrzZAZbbmrDymf<Dlx_#5sr9
z@EkJK%;lmW3+iniaT;RWfQQQ(Bp(YEDQ4X>-dzoP&5$m*wccLYtH7^2sKM4ie-+(u
zXe%%iuOcoZ!CXZZdBM=g8?M}$nmAS<qXd%5yZF9HzyvIk;|i6!cUXX7BppEkhOHIw
z&&hzq0da?UG)66slrlu6+~gOXQhCQc8%eUmAiir!F8>U(Aad=eIyk?W!7+0lP`TC)
z*Q&k2^!#|`j#w+loaH1^!;VV;vr5mw@crTP8AntH7Z(?^$vxJpscq2wnc*B%!m68&
za9sv#z7%WSK!R5G>Vk{+FXopOzG1f1R~S!)9z?!+!_|#5Y0ZSR%rPuDcxSjdo9G)=
zZkiQURwvP+kVnGR)r|G)J|d<`B=dtxSjhO?VWz_P?h6rF!<ig~WMZE%M9hSCzY7cT
z+~C<vD~}b4z)N|0EE=>r`BHiWeCC#nGkQL3Kh?-Rifc0eD_A>;wGNkwlDl1^DZ17K
z<BN-{D>uhlKY}T%Q)4QsE1!$a`Hh5c<x=qh$9#VNN9sB)Z_*nNSi5o4ucd$0HjkF>
zW77UU8$B}NP;#V^#j|s>blCH;)^jDj<deQSCm4dR@=IKjOAVErei3Uu5}>n!L~fxF
zZQ-jMjiCvjz8}3Tc#IMnI9<z4y38}W5gI;q?_I&yn(*tcx%YpR@koKB@(#T>!kx4*
z#|>5Lkgxz@V57|sRP2^-`pP^heD6UUnHMizN&4r=<%WW<Rv+XNvmp;}%q^ouysThz
z2!owQg04LsmEIAqMd+lbtWszm4Bu~!wQAp<o!r1l9v2XvCys$Qp*T|kl<uoIE~HPc
zrcW?*tc<7C3icc=wBO+j)&9g__t!~Agi$~2ON1dbC(FMg>klqB$ba0^7xE1VBgiPJ
z&Hgd6ELUnOZ)Lx1zZ5;+QuVZ_N>2D*1iSeejnSN!5It(dB4UpFvT^xSr`peQ`;oiI
zRqmxmnhV#K&oT_^`CUr|LQBi?#7l?rGXg8cwfLg0@jqAFPi*n&dkCZHjP!XD^2xEq
zSJOMJM8+0>VX%av-raGDHSUh+rt{BIhkF`gxz(3ioYk1{hR_S8Eg$8Z8r)z!b*4W3
zIQ%r(K8?|*Tf$G%?bAqoY7Rfu+oyf>N#(oyJqpjf6X_P)r@nWc(dW7K*je42$Q0UH
znV;VCtKH4locXc97ap^P_w0PFnR0hOUpoo=twduu5jgro31x=(?XtJ5JQx=)wt2Yb
zrpyNj$I-!=hpOa79w=4tkBhMT{7zD?=c`;gjk(CgI_BnA@6Xl-8{M#%-^fna@KR84
zzw=~ujz}My5-dOw&Yovuw6`5&ZGOfS$6;k2&S%YSybcHH5ZlF@8g?slvG2!czTO?9
z$j)?ra2yWo!dUC8bUeO;y$0pJi$bK$lS?Y!g=JFbbSIxNDKuhszC9?e_!tglX}0fE
z4)TFB`u5t?VePA@7Iv?;6dVF?o~&M^{U`X@VGd{QRlYl=B(%KtLPcztvTr!`EsNN_
z4_Zb9=$35}&NxiW`K~S55W6xixs3r}%0V0nJ?I=lzp5)=n09A!dp3pozhT9=ulk=a
z`9hfymr)QMnPrD7*TQDA5!wFymBL)h+S@PYk!|KCuRk9wU8rtJ`Cn9s%q+RM76=M;
zWrL)mkiMr6*n3{dXHCNcb_x!Q84F74hn>d^=LW<vIWrCmrVI(bm(Mh{a$D1$vQgU(
zRza=Hh;dq~lXRM2kxn))(zOz3*fvdDj6u<`bA_G|I+Zn|%$zi+D+D#68lS{0@yXH_
zk%IB<#-TuId{cQf0X7DcA!v0z{M8*FwIe?2!$j)rNQlt(MDA(}B&rFp(ARO+Q|EY`
zO-PESbLUIw%(&2;N_MHDKsiqozI6XIT_?qf2%(W|W~IrQ^peKna#QgjqRn25tg~!t
z7LLi4PhUM+N?R?=w1(67)s##NR7!&=I~$m^8leonOFEhkhDPT@A~RfruqS6OSH~`M
zuMw>n3@Sy$&u`rrBi^rY$|yVH3}V|bfiAX!lEVh_NwiF!KQKR;7&xTsXYO4lyBsB0
z@RfJ>S4e03y;uaX#a@f6HMht_0Wa$|Nad=mcT7n!DpHt+U6hMf%#mV<$KtGe=VDXV
z--^mZDeZM5!$IA0q7c;mXkHEKdnhTDch{W}8KSZr_fOd*z<H&8y_7R2kp3hBMhE4%
z6$aKbHo7l*$c_aONLZ5lCPPROTUtql*BcUgYS2@mJHVrJ?e`<OfzNSYCAV9k28Mm=
znH853dn_P!3qW>jMZ&1Vu}JoNs%H8T7JWgx>r>ZqkbO6v<gMNDkss=G3mBm;9&n)4
zhq3v~W?KMA=x-2ZF<e6v76zrqMfVby2o?ROW6-;VADw1=KG~gik<s(nyCdzyDCa&r
zk&p9cs077*ryu(U-yZ=pvY#t3$mV<Jbq_ZF_6V3!tqd?XNp&Fto+64AG0JE7zT2B2
zm%kLrY-Y$WZ4Jsj@;Napv2zjx6ZF2qaH~PY7ITL!Aj~ND3i59F7p#pZ@)Po@Cp}K^
z15I&95-0?d{U~}&kYV!m(1`M_egEqQcES7z!q(c80CP>gke~i4l4?5!U$&JYOm?*+
z-lq*2{hEH7O|qYWv-{>6RE4hj?(NTs&ALe)+}o!EnM>r39n9pMA$&g#;eCb`aj^va
z-?s76kI;?(W4tZC)&M=}3k-ovr|cI`4PwJ>ZyV)-G3uLLl<WSm8ax$=nHjEn<2zOU
zr;=USFFICM3<6#-;AJlJ<`vE^teNwvski^h)(5{OD(_-_Fl_M7=mD`+HUt$|zaS#)
zyhiGbFd_j;LNb`~QpXmfwUN;hcdbsrL{`c~77Q%Q>L;<#RPSV!p6tnr-<R>H#GOV~
z8d*lhF#=?9c6)czk#OG!^TarkEOJd3U%?J7{OF(T0l(15;dYJdgk2R!>QML9L}P52
z@kcwL?hE--P6>wGtfi0>?Ccym_%m<!B_zy@`UZ(H3^Faf3U_OdvwltGUH0j)anG!z
zyRVH{CsBW()+;8`7mS@+>cd_wR}WXIhxHIwd&3>Th_ZEmiKtRc`yj4GTA%^xhI&yT
zTrIqaI=dF^n!jSRZt?w34_txLqfQhoYCeb$qdfXnRfn68QR3%oJi;;Sy#haiIRLia
z`MK0$)6fWw>ae2g@iAGbA*4MlG-%Lklq)-7QWfrHo1EIRN9fWe5znk!j&VpozY|pu
zh1B6b{HpY%xuZQ@pqGZozw0}j=WdB;6!C>y6K063HSS_uK7jqCAJ}~%nAct>c(CjG
zfi;I<)-7%y5B8;gU|$3bB*(-jt%@gUeUl&b<NW}S2GCtbV+Eall74kR|C8*TkV`I&
zNA?3vZSKt<<UuB9?28Q4d!3)@cG0~mm{?M|ws}C;Mja8DI)7$a+kjyF%rYS)l7&>%
zES`cG^0NM(mH)~1Y?PG>h1lg$ZPkZ=W3w>7rB6zFbQVRIgQKa{3Q}{#n|_KVB+G({
zrG!Mj9-qXOYo<X`7taI5SL0h($ig8ki}RAUS}Ydp@2SK*JMd7)yrqWO*;0e@g*n2V
zDb~$C&-(bL=nlYQ%5s0C7u@6GEU=;y_~8nD8cckkdxKm;*02(<7itZDL)TnayqtFH
zKwYG$SAWE24e|05S9_}@KUE=BJ#QLOjnGJ#EGLUevdU?DiE1g9k=*`L(>}4qgz4Gl
zgPGvEb(xsAv1wh`)@Kn2q6xz#6kpCyNK{S5!q&<uGh-XK0|Iuc`Dr-x2zNnnJl>bF
zxjU0MTS5&My1V4$oJ%>JUM7bGj%1<VN>JLmuCAchG3h8*&1UpZ-<3=M!kl1|$>}yN
zg;vk^s5qE`{yCcEG5&+FX%P^{%Q<>=@@e+fOeF}Tf~bp~*{F-wjk$?j!eO6^cdsFF
z<+#?3*N=O4BjK$R4qQE9Waqd&->urRvZZm~*3QA>t&C|;x-*V3Wek<+SetjCP{yNZ
zs^S4vw{lpPlwhy^n|dYa6|3(s9{Hn=Y42#}Y88kY423U82NMUumF2BV2PdEH+%cl_
zokMb8?A$Rh_Rvxjs_{ApJ>)*Wf{b!$d?TWRN}!Y5<4hsvp6P@**Y*;iUiidjohIjK
z>!#_#X|iyd9OOOr*8VyK#cvB_7TBI6pk%@JQ(4VKMd~LBD_`}akGfanb@7_x4*y8}
z0TY5899{5F1CrJaiZ<w(2~FFBHi2QjsfDyaaY$R^qgH6U%`Kb7*TEDbJ$U)CUQ$=F
z7}SWIwQsrZ^mygd{sdxNduz6h5Auq@ae{D*3pRNY)m*D;f>SQH+SbQr9brWt5MN2H
zD!k~+9^fqf=mz<2eNLVKjLQ4dn_+o~p2CBk+2%799Bt4~$8Nk|3CR<NS@B!0Cwg<B
zSAl2Kq1YJl;5-<?>}cE+U|t^&E-F`BiH$ks(NjdUv79#w(ZrYaBB34{L^2auvWNUi
zVFS9?LhI`+8???_=(Cll@6}KoUN!1|XcRS)L(_Bv7`cOv@{Ec6qNkaT&^`OF4zo)T
zpgnZ;uJaj38lz0LA20LG3~q0&%EDV8W;4y#fD!l5qqfCccXo5F#e(=&ZuqRt<)W+i
z(2^&zNJ?17pi-;)L+getihmaRTVEKxzUwa{5;oqJ8K<qt`{~#s6hbO5#jjB&m3R9S
z-sJKT9$G)a3@9F^MwL)zj{AB&=Z;@)!+hSa-q;@=>$q+}*Kb$k)rE!Ww~gM+JDUgn
zW6k_%tAG)5iYUsCT6_0hQDt4>uDPF6#`jaXD_5wC)93LA(CsIOxXDy;%T@xV>zCcP
z{(zK`$BgQ%;Ka?|eM`0Wl6e9$ay+uJHgk-n^6m@^b|ZfHk&YzMJM$%WyXM`aq@du3
z`eCwg7-)Pu1O4#5v_RCbrlAr;g`g|$3hsU#f@l_8**SwF0Q2VXPSL0NqEB3rH-;x5
z@(#1&#Db}Um_0+B3sf}BiHK^pk}Z35N7u9b=VFq6)w)Z54;eo0(Zt>a>_d+O#jt(i
zp}DkCgtft?;6ZzqGl;QDj!ztn#zDh5qU>S~yV4ttv=v#ajVGVyii-hg^W17y6F9sO
zmr3hS`HO#P9c!P}`H9pQaPTdSrP?h`wtFJDcwJ#lFezV)#VNT+$F&WljDc20mBDeH
zu9Z>j%eZh*HK#eHv?dX2&EqfVtt&|c-=>Ve#8QqfXd6&d`DQGI7uS~DN~$YAh@~Fq
zO*vbC!NXa>unp&=25r!aD-(m2vDWzlP7T>UJ}5ea4w^tv!9=8RdpzKO@}!{X7{2mx
zzq69VH=GrWCF_U;S5azq?gJQD({mMn^1Wq)GlVlTK_c2o*yyT6a)@`Ux!7(1wP3>1
zH(2>BE$$niH6@ZAXKRvg)+C>`(6gH4Uuu%e(%ekm?M^kY@QeE19UXo#a0Lz4B>!AP
zyy-nkjD?BzCD50T4>$d@#s7?W0v1|><ayrdH-5%u{S|`slcy?OX21!VX7iN*LGScP
zL*CFZnM<ki{_wJi7Tccle$1m(jr;jsB46GPy;F*0Y*r?%=I-6dSiutpzPgE03mSOl
z#MBjt&?9;zbP3r}ENH>~0!tN~pdb3dee{D}OO`tfR!Q#zQG43Hi}sttsE<BD6wz|Q
z>}^A7xO5X6%k^x8z=i%b8uaK(VPl_MkgdNnz7j?ju?qgBWb_L|P~IB`n)i48r1F|G
z8P71pd&pX_)KYT0*h!xG>b^=~b-Fs*h#vXJTei*b-@Q=w#LP{y@U(xoMZYQk>z*7W
zguEe9k6DyYgP4nlGd7N=J!Hp=P?(d+Hf5{{yIcw0=b-nQD~ktde0eS2+C3(g>J&&4
z@AgmgRI2H-P8EioY$4c_-4)2I)z|54-HX9d^G}@`n_Ol$QE_anw%+^LGnrm?x$}Ip
zVU;pxhp7X<oSvGJ%O0zNQ}g~n8*{k3;jKNeD7^(cZqLn}mx1DH#4MV*Q#X^xS{IXf
z{Oq>T#k4ySj4Q0}?norZ6;`!$55)aWq7OW45c3#UxeHkwk8TgLDZ9CR=ZAZO)^fce
zXLK;iPu2pV^k%+0%+}Q9;Z5ldXXWbd=<1NWP1ZP^A8Y#!57&QHiBNzbK}f;DqpNUa
zkGcM6y|IyTb>kjvmfkr#7pO5w#Al6qGYGqJ=5qBadk^wHh@Qo92p`>5W4%rheNz+d
zG+%}5(Ld7Vewc3oP=iacJs?FT?j$3x%xvqKEFHc;pZaYGhA*fnqqlcHr?fE|wgsO3
zJR)QRTBmc?2sfI!L)|dtXck%W4=~mXeMW$UU5p#~0bvC><7vV_uzyCH(i&$!*{xW~
zSJSzqu4o&oz8uG~l&rRN#OX{SA!;eORxNdRgf-DUvOK~)EBWqv`)>S)#l@*Zfvk|^
zyXjhfV~g)BhSWsR=A}8BrJF+CIVJ<WY40{*R;1f@ZI5Vx>^=S>po46Cy2m3(8aE(y
zL{F@WwY{vSqZxGIE%p_6KCIF&ypilslCBc8kF=seTaQj8Qt@}sOWR<8dQmg4olILw
zEp`XdNT^XFZk{gPQDt*LcS(t{hnjWb5FUv`%I9FVJ;m!_)72urMEX3%Ae}TFDadky
zvZ)GQQWPIgh>KQ>UK^)=vl*HhplX!L{}ScvdwJLW`k8F~q;f;I1m$KOjG5Ak-MlJa
zT8ZJ4{-;>s%15B}ojhf<Hsp++r((qHrLO_V&^ulp%zFVMb}voZFEUqdGLAAgmP6PM
zHBAJ$Xb=;LnO@0TYcg7w;pOJPVeP49uiTbZ@8p5;%Mbz?uZ;%LE1z5RTaZ6Hs;&FZ
zSHA_X&}~;hY37Fc(5F}~&Z=EBB6VSRa)DaYmdoK;P5W`?qSM>zMkKqcP{&NFv-9a}
zV!Ts%Fa1?0qd(r6|510>uiarF(>1gAd^t9&&hsl|xkAm?pCE7Za~iGCSLLMk5Im?Z
zhbxWZaPIBeRxpAyCGEax>oO@XMmRPqBR1;GqAgYuXKiA;f=$6&dQTR-t)HM^t);GR
z{Ic@sF2kZf@TILo3|A6QuF@5dmJeTYm7ImBt}0VNO?F*rl^R?|gUi+6<E(5NyxsbU
zA~@W|W=X{Pr3&_A25LO*(p!8VYTHBO5N+ES(Z>1Jon1Fl%9}rn%=L#+r90?EuU3mj
zTLpWiPqrQ}So*Bm0#B@-r&$HWNN<5rmq4?e^hPo7qKA2s8J1yQe(7*VzN4f56I3Na
zP>il@A?wwn*dS&~^Gwb_ZC%qcdw#wYo?Qa1?J6&ZfK#5&03MJ5QL;*-_*NYz-hHqs
z(rxzRk?848n?ITD-*3HuVTj)Mt3;VF;Ea;D8yQe7h3=~3JspcBQx)O>R0YF9Mz)c1
zt@JWFf|8AujkMCnoT(5AW-pV6fdiUh1~dakmiYDBxxQEm^Qx%cx-F}AD9rXP<8jhc
zg(@g<isDm=6hB6#{s~fAsjLEZcP4dslrIg0P;BmzuvVncT-K(#G;m|QaBP3F&Z+^p
zt{A*hlS|t6;6^ib(6n!=HTBpHm9Nd<koP^9Zfq-wx2~}8^vc(oHz|l?gsQ)IO-Ved
z)l2<C8LG;6*SZf)Ia>Q%0_G8(RoDY0o5J>M9q!?SJmZCQbt3@<a!hZq-f#5Mba15Z
zD=;luxfjhH`4C)~m*K*G{3p{k!E^}`%%DAfRf)bCc}pZDU$=O_%J-UTcpxP5{igBp
z)btXLyPvt!NK!XpbO#|HGY&}vF`_-Dj5{Y7)=B6A8wgrg=3{e_*!*|jL^vhnPdf-`
zGZi%53*HqT?=a1saiH<;gZ9%SK)v{Pm+NUXsFlNJth=R;<yvm-DD%XZp(Ju!w}VO6
z$2^EF+`Cv$+adT~{%_@GDW+p^ymjL?6<RJ@p*DxgSZ!y#(k@7RU!2IT=d1=QnzvCJ
zNcPEP??p7wx!L?lu*&6FVN-GOAXi<3ojh}gio@vzx0lCrpEUzHHNFs*Ho42Tp|IE(
zCY4tb4ZSrb_QlN7)}ud<=r;?RJ;^7jrrf1rWm9LSPejYPf3ce@ozC!%dZ9P{FM>7*
zpjIguJIZAVmeFWQVwL=<AXv77ozP|?B5_C(U-a28585X(d52TEU2B(F@^DvCdDksH
zU2jjl>u=ai{Xk`m0EYZYElX5&h)kX#L+co}KLMHhIMGe~5iYy^<Ch?FL!b7?W<8~X
zTQ^mS1{I<~MWpK8*&h(g><=9u?+p=D5*&0sBAc``n4#GoJ!nFpaP-4IphC0YOZ4DA
zepgtk8D5BIKET&t<_r7<kzr<drs_h=fqT(qH{9Sz#s7ufaC+8mU@4X(Gu+4cQPRcG
zCPVh#^uA&@^u}m--|j5*{mou_G@WK>pGe{=Lq6{@<&-6#_mG}?Xg*oUd@q7bKmMBl
zKBz8P0kT~nn@w}_t#?0xY%4bV&h^HF8%#xAKiLI;^)G+VPt`5o>|OrPe*US;-|JJA
zzen%#&;0b|Ti8N=M(%dURzLlBFZ#R<SA9zQ4Ea>}f4+D5H}0nV*sRdM8<8(@dt4qE
zxJ&<f7}VRR5`cJec8<pPRKf3ywI2;5?UA2(mCFdP>7Xp7d=2acm#^_=oYaFcPho~Q
z#d>g0`Bm`}wW~}O>Y>~oC@G$qr<nv(L^(WIU^I{o+=u<`6WL4j;Ku#S6FC&U8-512
z|2O~c57eyIP4(h=zrG*QH>kRx<xW*==iS=@-5lyJN+~We>7SBobT`jk#ryKL@`YIY
zZAu2IDt_%Do_VOXhhTPx5@=u*#am&tlZM|=q9R(i4V;pIj=x<c*=_4w2<1h~S_m=9
z2w}pAs;$yzulG$gh!A>k760^vs6z+UFLTwLc1L(kFxUDJBVvMz@w5+GJThL-*lo~W
z*gr{?zp$yhyX%J;rl2g}eLPf9Jy>U3C<10$SV05!>D2%<O{M|8dvY2Tq)(!q?)N{T
z6WRZ_8~xc|pTv4<0H58-<Nj12#Te?VFHy@b<*~lEK8)~2_Qdv(3^Z=2Rh{AX-BtaA
z@Hon_>X+}Q>YFm7L!a?*>i??#eLq$G2luZ3;!mnSHmhCz*=tPD%&g*pmZp<fbmsbT
zsSjgBFYDI-5WYC`P@)I-Q@i#fLvLv1om~HISotp5tiG;W-EZ%M6TV809$M+CM_t+c
z>p#>6zKr|w(=dibr~W3-rq4`g1@nwGCCUCNnCB&AZPPg-WhfytJ5(l|s^O5+yR$x*
zPZE(w?KYr{uPC0JX(dx=Us1`Hj;PFxib_%MnszHIXH!$xd^i8ckmuhKK?%v!i#}8P
z%ggXj#WZiZUh;ATmF-GiVzbuuqraL_t4Ys3cqn!*L#b7+n!$ytJ%~m8ApN^UH?7(s
z=X6qrhQ4EVLCkr+tK@kKlAf3e49?J1E(LUmH8-O{BbIY-4Z6kR+%nzgPW%zX)z$L-
z`0f8Yd-XFtn9|bSX_J~TAdd#CrOE%Ry;`%7mhRqO-QD~Id-b-oW@BDTM)u(TNkTIB
zEzecqlwjSxaMdTyPhzvsR+4WtPG){U)pOTVweIO1&&$bY6c`>d91iV;M?{1&O1eZ3
zE<eP>8xG17ihkbbRC3s;-i1Y2r*~mbyoo$M>;}=8^lAOnRYYH<+DaQp_e)H_f&W-y
zl8K}xCfQ8!ROUDD?YH+dH0tGt{HG5yXpk+`Ad^eM87n*UMVVj_Qy@U|u3QS@T$`GZ
zxz<*?S&8iKvb=5K?L7WhC4>Ok+~@k-<yLKYTze|7Gt9lp3Tv}F0(|a{UUeVnb6@?U
zkoHSS_}D+R+~FEU%Kz%X?C{>JU>G|=<+A*Hrzd#{d7igC=1As`KVG|pX;=u_5rS3$
zI>@fy)r^nL7jX|-)dTvM5R_GvqTCP^M-pyA4_ep*`nZ9z)!F)>=!p<-+4#a%zaDP`
z$RaaE*-}N#Z>rTSC8UZ*+m2r?CQy$;@lt%w!e7+k+sWj$=#L>JGhTwSJVxlfOgra>
zptXQL7?K2I70;Rnt?dCl#bdGfAHqUM-KC1I4GW*H9MgS{$vrtvw!+&=ThxcCqOoCf
zXWOga<*PjNJwO(xCzUN#^cSlryss@)v`3ixfiSmzeeQ+&lFdCetaOpV<=wJLJRP2-
z4>vARHj4L$`1f%25msql-L;;p*ZSN;ZBHGM{r2jAeQpEDa&_(>g>v47fA@U3(dWJ`
z%<aP5`t`XDAe;Lz<qkrToVi?*y3Bp%2T1v-aOuiM+@4_#xeV_!|3Iv>>-)@g5@KA(
z3$(6WE1kAkHp^yr@Cs4uO8$p?jdiyudZ>zlG}d;zPz~76%N&AuGq&Df8`)H&mfz@{
z!*{Fyxa$x_KYgPh7)sNx<PdoDZtDSChm8m9yHcUSaovBDEyjgYjaWema0$lsAl0t8
zSJCHA0nc2%kRPI(`@R$VZ(%ST*D+v~GH8;BaqvyGjyVv;215xTsnz9_A<x0K;Dzh}
z;^VuO4L2EPrn}-`;l|8I{4?7SMSW-W4k=YOp0Rpb-u0j$Yn8FwwU${B?9;!F`0s4l
z_wmu;Vp}|k_dHQ<U=Ljq0i!!}+--olr+p#ou8yScrPLEXW8T)CP$Qj=28cxX1O2Pz
zQad92)`LW~O|zK?S%`st(f=*_4f5`N65dnK*8)Zfp)ZaWZxm~>2j&3*R(9%Is9H3~
zt=0>bYh!H#$>H99m(X4Aht`^I1~{0v(5SV*K!b<p+S_ABLN?3U2^*E~#cq7!KuYG^
zeG7i$7=Bg<;)&E5>^*v8P$nWZF%lb^En^gsNDVqE0b*-GOow^T1+i*&CB)h<p&;!b
zztg_#;7gT#sh+L_EZRP6FY{Vd1_8JR#aZQSCe&dJ{Y7NkQnma_falu=cV(&tG7-$1
zuDbcGCMAL&HQ4L@c6LP~`1xdeebAUCp*?kEs?p}fRI#ELs%AHr9-j!VDN8^F9dS{^
zDFq{{gERBZ#3-r>t}la&#zc~JkV%{0WsmRu&;%=O8id17BndBE-1+)u&lzxW*pB5r
za=_XBT!mp9XAU{(2|AsNDBIQ+=~HHRwC&ZP4~!p%DTzWwB9UqpE$)3-$-+)$zLE$G
zP8Vb6;36QkbI{YKXJ5Y#_LwmGC2hD?qZ3H3@f1AMP&K=;^f>LHw9GI7N4ICd*rzCP
z&L>D+i)TDR6+%YT*#@D<1=kPL`MeWJQ}uPE*@3-#<LeNg7#?B3wfao19O;NEU5d4e
z5~_pK62S@gJhnfTY>l;FOrX#o`J7YLMzOzQPm}_#<K)sm1)n@=XNFiA+HhZN1&V3u
zYgJ#JI)`<JIi>YH6P|Ni1-D1*lrOYitzauROdSHu<_wHTze)*k>FwN*cr0}iBhy%V
z`~*(IZ=X^?5_u~G!gl>Ceu+|VJi4a+AF;Oaq;l>BN{-rn@$XYa__Z*TAwy5{G?w*;
z|2GFY)NtA?Jn88UT+<7xRXw8Xpl-f@4<3jJ2LpYxLo}*`6CvGROGG*_y#^48+ReJ-
zu-f94AMsM4Xyx<ycy5qbv(1i}J59wAb-$-t-S*==)gMzoP#FEElMus>rc*_Ib-0lr
z(i>t1QCw-(cGC2&f9kdA;d4#pyX>i5!EyCE(GF@c5crN8pWKqZMoKcu5!yO+ydtUw
zf|eS}@+wHWL6iz-cTlPYKR&|;>jbYP8A(aWI;Z@>{G4V&-@tc^z)6I+E_r|#cgdk%
z^Iy?dw=W=ISrsi&GbF)FMj7PP_6Q{Wp5wk7LaK0s-030T`$_~7EOXq15K=W8<Z~YK
z#ET=4VtaQmknRHE1`57KvJKk&**Y2|{-!cmrWFHQ%{sG;CR(fJ5Cnt~bl{{&x!RlL
zmJuYaBJ)Kgwd!hpNadZ=57z}DWVTgh9@pXhAio<zW?Qw>kC$J+C{nw%Y66h1MYv^9
zFpH<BRqaR0zDVUg6pbga@p{ev=H4V$qR6^^ts216;Vn7#u)1+HpJxyb=EsK~sz4EA
zh`T&`Vc1mVhNj{KQnb<1!XcP2F<!A}e$yf1vi(w>?@l8G2%P48JJK8*{-=r}Q5L!V
z2!p)j@(3hngygtH2$?13OCIv<C^6yl9Cv64nI-1K9&*@)kur^#+n};LUbtmhB+3oo
z@2yIA{RqSAr6@DxtFFcBCuQcvm|=pi>-I1At!qvQnZ^HL4|#92i;cxEF-V3JE3l2w
zT1ZzL<!@`|$zg#KV}rcVLmtzw>Y+fogm1#PmP8OcOilRhFz@xw2uVwawZ)6AYsWsL
z`t=QwY}Rv63jJu$y+o)lkbjKs<;JGUakm2L{-SaK*GPqGnQL`qyrQ~DSg{eSUjMk;
z?dNO!W?iI4>#eg?PKeK*zmKFIu39$j7jk!cjPzjp>U5EQsZs<==krocbn^#<D`kus
zojL9YsPPQkcDw=dkFlJ|rI!-7uT~qdWXiGw9J;V7JE$;T%~osB;SM}|Yz99@EAYB5
zYAuKYQurG6)6a1Gpc}^pq-^S0gO#h3@1IUT##fDlOVqWpxMGYlDx*RlPRYqBB*64P
zrqoN>X2ZPZ6kZr*n-rOtsVuFl4fXN@xvIA=7ZGD^jqsQVU`3$?Z=NXa9~@Cr`PS4J
z)VQ?txCw0x$j1o|Tec#h-7UXfCXB{w2w>hwNt%H`ECuPbZjTXRD!+`qh5+vD;l9TW
z8a=7(^`dCLYw@gd`2~?q6n5@165Nl&j16imr4{n)kKdiHN!Db2*743<AKZGkDBrq$
zuPIX?L(^F1qrtFMnPJMUBK}BynU%Sp9Y*=5TlorkNyYI3`3k!3b$1CmmA6L}E9%N|
z>q^NrB*aSCsPWTrwKw=2FGpF`Wb<C-c#%{$!Gk>X#Yj`F&}M=BPN`rZUXTo{VCHL*
zg`-1j7b4?z3MtM^c1~%F+B`{n#Tlziy>2962h7JrD=~T=KqV^Q@>}_BKD%|pcBnzN
zf1Mw}&9ZG&0@<<ycQ*r$+bcxYI0vMRstgu}JW(j&$jMPQu^Yc+2xq2Ux_7z*tYv>`
z|3zlrg<WPNOXah%c7F=+d~f)Mc1G3~)L~uZcUuX{0pn%ShMLYiHpDpF)4%t__hbDa
z2ZfMXjeVQib}STh3w-ID&g)B$wOA2uZxI<Du2aZB#?<Yr36>al^wk7CvxgGWHD!<z
z@Tw=H3Q$fey&-)PUJ{BO)4F3oY>phC={H%ekh&4Ay8hwbBiaTcoD)UUSZY*g>|{E|
znn;v49q)d{DCgp8VAx~nuc%b<gxC!a)ji))vlWkzU$>aEfO1?J;R$kOl-Q=Fm7U^k
zYJMFFNyk7_>{>5Ik&LH5=D6?b?x)i$^t*MrP>Qub#!LDh{z#2T@2C;dD_qg_l8jlY
z-a_{@5kab{*x%9(l`Z(zDDr<KcBp=(1b0pO^glHwr0x&rW2K;Zf2oWk-8;--J0l5E
z8`u3@#;0@1|7%F?iVf1Avv^t?{ShCqkZ-6(zoBjAe*B)s35{@r1l#%{9)bgjU`h{A
z7!%WlDxmc*{j`M=^~jWI)YN=G3r_05z~<6?&Q|bUt}JfCo~ki)6Pc>zrA#_#y5S<k
zqRg-P-EsZLzP=p4i!rb_`=?(gCdYrWeI_b0t{QbbaMG&wb0i#q+p3d0Yl6=u&<X}Z
zD<+Gz^pXgUIr5kLa}wsinohFq9SdR2L@=tl^5a<heA7L;i8?Gi^*s(5508dveY;Sn
z33jis*`Y>wd2pm~i^J-DWsHWC9}(|sG{htKWg|h)u>UEVo{{-@a%J3WkW3{urIQx;
ziUr!t4=2>?n+Et>TrvZNJLE~B&=wLPql_iVAS^ATf^9a_p>F*HMjn#;^#>!W?NB9r
zaEMewTj);E2ox@3*a-2wQn_dQ(nvO@<dhd?%j(-24Ueh3Mdw5yp>~d&52Sm>S3h%d
zBvl)k+~@W(_umMgena$(m*Gmk!0J&XKbp!pKbY2jEmDk44*o}#d|QQp{wJE4-*_Gq
za}l;8$PVm>?Ax@$9qN&(y(UtN%~F$l3fa-!>6<Vnnd5)!0rRyq?PY$J^lgOI@b!$|
zUuXEQC-nY$ng9B=-d`vBuRs484BWn@aR`o_s@VLM=}Nv+?Q#4_E^3X>IoXEaYJa*x
ztSt?-Yl0JTf}T#H)f|7{{;;vTAA}RZ<Z@(2^m#zp@k6yYlJ37Rz7t}bZ|@AgRR`z5
z{NXGx;wBC5S_oJ?cwF{wBDi6${n**i3ARGssCAy|Q7=?;Ky>Hd2i33*r<xP|t2x0x
zG4ffRBoI74-KxB`!G3-r52J>k+KfX>zAP0k0kzWMLQuKeL{P_%A&<y}a)-l7g&L#b
zB$0Z=yn1>mbYFb}QgK!craZ;RQ?|X{J5@}5hceqsErlMs&@|tjKui01g^+PDW=56t
z7YUYejsKK(uI4m><n}~zWp#3GBKZy*DXWw0@q9mBz<|En#LYI)`ySdY&{Gj0^^&@-
ze_gT{l#;&Nz`bWK{fY%Vg)eLE1$lvlC^AB(89OxM=wIJaM~ov{Yb21+yDJJ!hF+c8
zS4!?PBO_vTALs3r+s}$X(t|nf8X(;xzMS7hC+9Z7Ja`X3FAW!SZhl|PlF?3dLYc6!
zRVVKR*RH14=M44CRCe}4dz~v*iU)TZXKB_zz#9!&lR53#bfz^fgn{9F>5D8U<4lK@
zu*B2)$<l>-RXj|%=2Q9Jv~%N0qWv!TwM5i=_=T)U#Z8*(4a+lXnH?L)sd;fO){Jwp
zW_;u-v6R)9+i9apx|&cGcT|_n3LkmLM*C212~M+eIAESp_fFriMb<C|uF4l<t$$LD
z$!E3dz+7nmc;y=HtKN|Q06uWP+XssOhCgV(YnMj);{<ZK^Z{Oh-f8`ezMYQ82*?4|
z5lGTF{{%?4L*-=g^0YQvQmXpnb?Di+ujvQzNPg@2>y`g;pZZ$#w6jB1`p7{xC_K)3
zkizkN_olapjJ($PAR~O~Lx{N1cq%St1)?f;`^wg>x#_PG?~w>5;>@nDN<T;3LJbFl
zXNp?h=lv1h-4njLRNiCDBIs5Mp}7N%6;pW+E{-G}rKBcHa;IL0s8tiu5JnUAi+}mO
zu<jLarLL|E;zQz-*Z|MTAoAAM%Uc@&%C*j1MAEpwj@{MjG<uN9Zzj&h2E&81MhJ-&
z(sK;=32e32?ZaYigRQ>p2Q&`x+w98W_paY6V`%T^#b>B3tW%o3&uR+skU#9P_u)#}
zdh(Mp3qXAGWl_}W#49|1#3)te2Zfz)42(}&({-O#9o<d874NG+N-YyYFdp++H%`0q
zQh5uTBE(}oCdW-L5(f!;;l)FlvgW&beaGzhd?W+y$#G|r;BN56O^+HSg-X>nO)-o#
zeo$S)MuzkRIYU*rF=ndh{i{@DW|Cv0`Wg3R8y#yOEO^6+Qp(bg!*lG`oG#h9sF^Ot
z#TIt)rSZ&uz!V`6;!Rth)baAHPnyBbU^ZQ^smyP4X+`fvr=!qBndR$@)WuUq5LuUs
zXDXp()<b%5doWLmn)q7Fic^PQ_S+m;86T1<8i)!pLkeF`B>h1`xBYroJT=E4SV@+e
z62|lb48vz$W}jdBSq;IK(7LT8mO4?zaXBF)ZJD{JK5HMI3@7s+#t0pefxtR5`D?I|
zhq8q!^jgu1>g1RgF!lYK=Y+P^O+(_Xoor(2;7*>d)<jUW`Q2e;TR$##`_l1Le?;TA
zZM*ZR*L1uibJZtpildi8HzxGXG1AZRIHtzu6AVc<4f3De^F1Y~Au^pF;5UO<76okx
zr_amNP4vFI4J!}kyC%x5wqIq<zMflQQWV_91PcT9$20o!=zV~>S5*iE5Yg=B3b*MW
z(q`QKgbycNj$&eG{4sO6*oCWFdZuo1n5s%RtEzeX33=ZGU7c?IHIz966Ev%9^w7hP
z7T@XbzTPxhJ>C#c=?_grhs=(vvrJJW8L)oxGtcmds$3hG0eeZ$G!PLznWKj#miW3%
zd^n}0Fvpb+&d$^u{~DI*UB=qwF`&zausXy0numPZrV!#;g;4Lx^Nn`bMjcOP$NT%n
zBZuh3y+SzG6Z;FN_a*k{NN`uFI9i8tG9^{UpckH~#SPZh2#LSjuqc8LDk6b-NCNwG
z%$dfJ;=VuFFnecQ--`YsGle>8tvDW#52>n0z4`Ksei`l#GgK*q`vYU0Tdl%9o+e@y
zLIGqur<J)we8rRdm2*DjxLZg~Un(v10ag)gH!%tapX9is!}?6|R%mm->RqgQCz8AC
zo;bIzY*rDsPJ@5`@`?O2wWfD0v#_pEfqI}tQcgTs?-c3@vdGv*VM$HpxSRPSJ_>`k
zM^I(gJ-g@E|4V(=`p@*P@1d!mP+yAKuGGBgYe^pZy55B1!O}YYqObMKsUqhs*q;qc
zv9=mPA<ivI)*c5I(T?&_(CzE58%Zq5bes*1=%9J|0^ym{wfB_+qWuAVNYWQamfN{-
z`G<G235DGYvGxWlE>rC67Hb4WA?vf1)cW_2rG*U)Q`1kE!Zd_e0~!7Bh@D#*o}Clz
z1$9RmW!m^rerfnnk@-?(4{~z2TVD2(q4?t_f(G$nsQ#^;{LN`h5YTaHBdrWERbx`P
z^fX5>g3Vkm`Ym&H7;Z4<_im0z&j?Czw-msJYe?;ST&4I1iJRKOMj1olV^Xbf5<Hcu
z>wn##*44R^>bQISrLa-{{>n^=G|uYRQi7@riJiU`*?3&-y>T9w>iKRC9?s{H9k{7x
zv`bIe*>`^|fGb0wq=2$#uEfhnuMdkzDO!w<a^2=t^G!<s8_~<OFZ~8DE~gQRyr{QC
z_R;6BffzD5Iik-~(&zq4=wf5A^c-OYDSPtDf*_}HK#4ujlCs`L$ZJ@A)|gb$W#8rz
zt}0OoWTBqQ)E(t2l{!obD4@+(Ed?N|Qm)d_s9|IoFX-YhqLr6=WhgNm|8$iqQx7wd
zwCPlKv~k<7h726@Vgp-G8*DuLzAEXp|0r8^d&ks9X;O$Gb;`b1im(H;@-q*f2Ea53
z1~Ju996W)OS_hT-NCjWw)QEk*A!H)q>!({+(70CZ7dr42o1vX9v};1NvpTL1{zIfe
zdfEQ~gyCtN4&iqKwXeQzv~Xh_Uai={xkey1BE=Yc8*-&ktEf7Txze&w1gY$7eA69=
zM<B4EH9N|s);R9ta9oGZ)_)me98qSq?kE@*YyM~sbhvK6CA{Qtrb0usd<7p$d#xc&
zS60T_9#e&_+wx~j*E_ew^L+i0_FSUpsqF9^mp^vg)q}@g82f%l*RMEF?C0)-mqa5T
z*#?Eig0A`bDkxR7V!X6O#uV2_w`88QuGkL_f$5k$bS*UW?0WdVCA9S~VQT*p(&y4O
z81V;*DTD(A(R#=GmC^b|1GjCCw$b#eKb_kr+f-Xo%Ajq_B)L{89L_Syo?0fT=ONb9
zhV(pCOP?NeLngyDI3qJwTpxb10|5KP?@Qj2=-$@}aDYJhG-Oz^GaOF#jJ19d9!sua
zGd<%Avp~L#71!xbtJEP!uj1Z`K-ZNf_ReqJHYnB}Q=$(ddSWfjPXw(m@PoY`YkL!V
z03;K;T&J3q#M+ngDIT=00z|XIcAfaF>8UhB5OnCX<j<YAlPlp;d6z~f{pQfQDKvjj
zDKz52JR2)+u852kAe7@Kg<$0Z6A?{FxnGg*ZWe{}Y1q$M0%vvU_o|imVi+)Y#w0zW
zl3Gk3Gm;(SR(x#8eBSz+;>3TfRI`5>JIYlERfNj#XK)KVa4hPIVs??^)(UuUfH}^j
z(F1Kfu`k}glx1ePBx&AX{7`scRRqj<yiH~OkwVhvz*+8aU);A&iNIlD=eUancZc8(
z7Ti4#sHGx^EfECP4KngN<4X=X<>Q8(#~+>>-<syi)Zyk?8pXjT>N^mEerpl-Vd+}f
zP<BV#2|OSXRrXFNZ>>(QN@G8Qze@M-n$x<^y&&<$RkpHIWa9><AJFjhlNz<ox)Kha
zkm2Ay{JTZW)k|Nyn^x@X1}ao~@C{wXPW54>C;{4)J)fuw?H6nNWyqbJJ@k~nsg1p!
zXU-+64jFb&C$y_J@3pu6C3@(Jf~R;^Ftm+XashDLZkdkD!osQ0$r+UNY7<*%G}Xj)
z7lCVj0fz0mMP<`<$DO0HGg@9`#EWz$-gDdHil>`d&SUZ9@KRUzSucpK+xBSU_Lfj*
zF%GJ1)z~#pU#Wd|tw~SOR5d^fJ+`=L^UWBSDAu!l(iGK?ce4E>2>lq}?52yi_(czv
zwr(FVV?fsr+y^_1q2nh+_(ibpXc*32_MsR$wAEea{$=XdE=)y-2N&w#@}^ThVU(0W
zyMNh<2>lzB{=K+FRJxc@4Qk3*vjb%CT2rZ}YoV+0c%Jp^2%eu4o^3eH+#i*i#d91>
ze_iv`%Jgt)+n{JAq!F3+GCHK+H`XjldJ1K}zT&^$=V7^PBrVst&(X<~TTNUI9XotX
z1P7y4j&L|R#G%TXGeb+MpI|zK)1G4YoUN(CywH<B1XZRdAp`#D%aV)ZFrw@L(X1_?
z2RJ`^e$+SB>AlY9g`Kx;)ZIWCk6YF%!DOrI@8CJ=c4-9Jpxy*)%id8<55nf#OJ+>q
zo=43^PLY4kbRXosUbbC@jl6CvJ)(X9oS<uZpv*R?>o-$Kv)yX!%_FQhGSd0oCY)Db
zM71uTjy1Ad45kYMM6E<<T<%UJ#EBj`B<i{|-^zDz-3bwN6~*VEdjOksT;Gm66EJs!
z3i&Tc&z1mt?A(tV=#LpN#3%Jfk=Iu+gN6hAB?ygaC^O-6y<#a=FQZsqjNQUzzi10I
z(SP&+XdOaUY?|wyOwxfjiZ5hs7%?F)w9pV)zBSW=<REw`>-TJ+-EJ9N>wXA?+f!hv
zyswPzONJ`JeJ?CT6|)dc5Lim`_1qTA)D)$ijd**DsMLjihs5{zQ97qz+5hOK<`H4p
z#TM%#5(E=*^{sFG3|GvDh1iK~Avtb-SF)H~tA^J1jHpJS{bu#0f=Uay0($bqQOa((
z@CLndp{EC9!F+c<_&|i}^1ehkSqZ>-midYwNB8dsHcag~H!Qp^{jwCpq7SUh@17kg
z(=55Sp^7^l{&I(q!){n`lfDW2Je?WlvOLsFo~L3BZvv4kuteaU;vny;q%K66dMv1)
z^a#}i1qZ*Pu?qXs#0)+_;NXm<-Rnd!EEw(zqtMKp!1m31`@gg4F-Zf(bp6gf_YGVd
z{m+B>lO(y1y_mP?<xrpC;?4>3UYTt;eVf95`di`TXBtz#Ak|O|NMxEw$G|AzQCGFr
zMdDozv=^#WHH7Iclfpg?32mv5pON9PoAwZ5FFns)UZ9a~G@YNd!rsSGk^T(dvZS_$
zUi6O5Liwq^5t<v%1o1LM2p)3p5E-VAFc@#_oU=DmbA>iUbMM`-ElUS9g7Ws<tB+#m
zQ=cp6*LuNCjf1ysY|HeMyV;uOlc}(xrwiTj!e6#sZ~TP`H{8dEZRyO7wP_~F%K@#g
zk7(IGY})5rw(mQwtY!Pq#shh3+zWM#9Dw>Vo~p7>^oYK-Y~K$rZEFX*I0T`Ce8T?I
zD4@tv>$0gKTnno~LtC~V*f^l;UUG+dBIUpZSk*Xkgn2J|PsNWHJui^18?LcRggxU7
zZ!YD-!G+7*m`U*G(*K_S<=4Xe%f|Q0|DQ{Ckv}$TA9NTv)Jw+dBx7~ZbF#+DS8Xf`
zr}pJc>~7e!AEW5{Mixl#GBX)AuEOfMnv(*4qlu1OWp;(=4NsZ!zIBm)*i84d+r#ta
z*Ur$!N$H`y@rEaTr}{)?clt;njKt`cvXa?}QZDcT8qMmoe548B|LAza3n|r2c-K_T
z-qFQx5!p3kez<Ax+jM5K9a#k}2TS)~!bb>v^Dz<a1S{vbYGoO(RBDGm$nZDms?k2f
zA8a}d(wgM3_a?^`E5j60-8mkO%eo*9n99!=Ys2q@NX+&$l3OR3>&b(C;O1;LEGnZ4
zl_+HPKM2P^5Q8Qxstk)-Vew0SO67gFUxr(iAr)qT7eRZ3GQ7wq_o%9&AdKeho!5q4
z`z5|B+U|*v;aDLs;4P^ZWiok~F4?Pt`RbSHk`%7@s(g1E8>CmMp^-%QIF2_EY>7@x
ztt;LYHk+UjMP|FAStIcCo@@oDMQ}im5dWksk13Tro(N|v!%uyN?~jUPfDLk7N*QK{
z89WgVQii|s$u07jO>d3l8mU|dyy=^o_kFvOvv+&ed<{kOSHdv+>&L06w0^o#ln2{#
z$dd2wA)jzB6qTattC3Q>e$z*OW3#^Q<qxHD1$~A5)sneETr@^03?=m%3QCZ_0ckIP
zNRO94M32eAUB+8Hvv!=7xR<?Q6-WAFZ50y3;HC%kV_G~_u>a})7$uM_blVRO1yAxu
z)$QA$k>`URE-uF|Z-`HNF`oMrEamxG#zf^ZF~tjN?qqRHEgVy~%>9IL9hl+=(WPc%
zikC3}-1Bsd+L@8h%P<_=Qr}zK#zuO}nBwQka=%hVW|7-{P8sI;3^R|2WH6?ft_)Mc
z3}u!fPZ>J+<bL2W`^n5mE@O%Te>bM+(~yKFFx*FUYF2aI^rAGZ*IW%oz$FJo2*{TT
zcY$(&ZH3X(G}djKj3UVik$R0HYlPaL{?(fzU;Gar7x9t0UoMMeF^zSHvfQdv>L{@W
zmMX*bKEsfxcf>T-H<h82RCl*W<I%Ug#;V$t#=;uOYOFH%A^|gCapO@DEKFk!RiQ&d
zEPTKGP)c#Tr*LDx3>$^xOG*W8-!E4xLzxg8D8%@Vy3A@U!!Dz-E?y8pz%*7Z`&!Ug
zy?ab*dNK?Q2WPo)>qUt44JOjP$KU@d&o#S~=ldyg7xMfiFVD4-=eXoKt~Mdw>Zeq}
zsc%Y#S2rTV^K5+Jep+OBp2-u>$Z+<q+Lzg!A&<=$Onhf<v?lp;kMYXIZdP;v=43tl
zYAaW8f_ZA})I>072NyZ)$WKgqwx)9F)kA7>Ikl5T+jo??dj){a&ns|cVuNOn_$<~=
z<K*4YM;%9WYngS9L*>vv?sXz}==hb<)nVh<Vs+Yn^cPL5&&cq7(zrW4uZ)TM1x<$E
z)S$FcsoAc-S{eT0GyMLrNZ*<aKcWl|g&90^jZ=n?_~f4Vm~~jFO*k@}44?X1IEL*g
zOysUjjOs`iYPbs~){9c{N$<x~gN{poq{+$@U7g2$WG7_>`{BR!2zEUbD0Hvw-&e3_
zgct5b1p9GkWLg+qIyN%BD||N*XBH(>GXt}Go{!W$@bE~hO|bu<ERQLbJYKNRR)(MY
z497=xqY3u^!``>YM^Rq=Cm{;~NoNs|s9aWzHh61du_hME0#PQoU_h!7QK{M#TdEW`
z0X2}oCV_QWMWwCQOR25aT5qiu(0WM-62M!8DhO2(Z?mRK1S=pye&6qTW@cwL8;tn=
z-oIWxWS*U8p36DsIp;j*InOP|3?{ysIO~yR{(EPa1v_2kc+{;wMX(E5==Uus6zyN2
z>I^6-?&^@C2Qy??8I)izXNC(1*eR?A=yWRBKmN6g3?kTb-?9aJ2Blarrdd!1DPC%K
z%+@e~CBy#D`l2xd=DA~P>)3;Y<2Yk_2A<8l*8t;!-uOv(JAU@dXxy3A^EGYN2Doj~
zyUD2}>6x_|n5Ib2gsGX{t#L<I&lYV}17!jCMBD#7V>&jo4DQq@kDx%Gh9`Bc_Kn)A
zjgWA44TrZVj!(Kt&Fryru!aRdcq+3Y^5`?I{(b`FIX|6Q^X;s8_74@~Fxg7_87%O*
zU=`w@lyW9an#fu}0+R%qY*IQ&HYo$o<~54C{Xl-X6ir(>@TkW3vU+aQR^guIP%m7I
z?s&e?nyMW0s*BK?KZ11HlvQC8K1ZRsfDd?TCadKGVCIv`s?{?UxP>;jLHU7d0suD;
z=ZL4|gK|K0oQoOCp$&8NC@hPI;gQf*VHAS)*H$4_&-G-2nBI+JTQu*c1r?Zf_4`00
zE~Q5|!{K}SdY;)bC3m2>1i><Dm6-_jv5T3?GF=c3<Y#k^<?!@NwfBp!6OGK`vPiH(
zHa}#>!6drA)i6*0F{ri`tz}a!L9ZCRg=|Jyf3Y8ejP)039K>P0+&+>qW`&0DXFJ#p
z!N^?0WH{gB9lT@t*H+-u(Ia|n4HLm5iWD*h6lrc_dst`1G*;W6v!54b3KxbD006N-
z#m0D%y!eu1j(bZTnGFpGppnL`gSSFApvnb(P#O-_4O;#20$+|ES>tvg;9%nxy&bp3
zU~*a+y0chNi&Td7Tny3c#a{LiGAJ;$%}qD{*@jP;kK4xpkjyx@U;~%GPv^pT_Qw-&
z_jhb2h*fM12pM<LWX66ftu7BG;a!qkwP`~7Hv4#wbB(F~Vhn`+q1d3tqFyL<pzL$1
zks7W>JKyDZ`Vb!FUW&$*83RCex0?BmuH)I`TjuA43~V51!nNke3<aRhAKy}C>bS0n
z%dl^`1pGv78khj^!>$N%*f8RaV#9alJnKrf?viRC?(De`%tcbh`kw^Ygf&rVjpW9e
z5N7*FsvUAjb`-|*(pex5oj0;~&V^eG?$5hrAcBk2B^x$wVW$9omc(wz456W>Pl%1j
z6uL!zWXIT$OKVZl3g+P6G=!Wno6&*ROP7n{xmU&}b=xt!D`;aHX-_;?ePUbTLb$8X
zA_618S^&JGIy67u=3=QOQgL>}%jnRJ{(q5R&_fJx-wf}@yQP?df$OhudBJUnH?lvk
z#MDS^_%>oJiwdHd+l=hD84HAofgbxE!DNCKgnD$5Ky54{Q(=51fTBHS6l^Du)5($~
z6erqZ90C~maF7JCTZ6HotJa0mo5^>p@m6e%0~<m7Ls&q5HrXf>Y_v4DhAB}d{I%an
zu#xD8GK|&~^P|12%|%5U=TFrQC^D>sL{8G4rOPT$(#`x7Xj>cZw7P?m<Zjilv9V}-
zx}9SeqBVsZ<e(&{<f;eQ$f`KC#005=fUTJ8nuI{ctwIs792Wxo{reWn#ik(*WyHMY
z1B>5kLGeWu<gW_s`?EJ&00OnyM30@9$%(${dhBw624;ZO2+5RP`hc)WNA^=}7ym02
zE2v4}?+{v0`TpP%+@XO<M75J3E@wMHaz$^M$Ks=1UmQD^kbk)K=};LzspU9v7%8y0
zMs7UQ=1k&EJSmlEgm7-a%szp7jiVh<E1w^Lip&%BANnHru76b+RM=F32>@R@BEYU+
zZe*b9(4#NLe=ODXe~-~o%r}8evdjtr1f}s>K!sg{gIyUu#;0)PVhfCUuB4ag6biVl
zdO&Yxi@(NYXR(o2Y_w4c6BVisg$j&Oa|~AZu~C2u`!e8DDAO3C&6FyOUx9LXA_}$*
z4f=b5QisJX$6S7t#lIoUTmd^#)+i&jw&0p#krGrj10$N;>G7LnNNsgt3)iw|YcfAw
zt?d1z=pGY+(@tDY?e@3CYUL7M)jw{9^^E>8AcFjGZVp5Aj}ij9Jidc3^BMA5pJhm|
ztt=g|WJ>P$B0Gm5I73_cs{xS@hXf0EYju~fIJATL2)0d-KA>K$Iz<t{gNkbRBDqS6
zL_3;`tfU}^`1;jZcbHxe=iuH}I&A=g1=7N`gcQct-KtRGRbe+Noqg(NEE}L`W3>z>
z(w`-b1q(v8#SN9x3>I!tOtn4b{;CAoI=DsDKOOw^3N6DAR&Yj4Z?D1G1ob~d#EAad
z;?uGa9<9}9Vu8hozFOT&Xd1hEZIupxvBFwgHTBGL94J+HI}+eSJ|glZVi6-&&gvKZ
zVjZ0LGnl`5olXLz<5Zp})tQIgX{>`Cb#3JhNZE{(XG+Rum2wM}X&T5>+e2F=D!350
zSV%Wtf+JtAnP~K0hr2Aa2#>?VeHP6jDk@&~XKsOr*=n)&IeaF|&6p4yEghR;22^Y#
zLPc3fU6qBTWL4H`S5);|XEtI6KQ}ij@EU8=wN+(jYO8|z3*T#p&6M5*!;+8!rp2c)
zDRwbIc7l2gP1J^4+1}RMUy<uB8V_Ml(-+v&)CNP7oJBRPtsJi=J^o8V+10$pYG$LF
z$@vRElxp698Lq8@lK_XQH8H6=Of6sMWs9ul9liZk>}%@gY}q~GOFbQ%XRwg~$!!Cx
zXxscrx-p^!<;<BEGBRHy!eDdk+r0y-#v)%BbK}@Htj8`E(n)s#IbuPiT966^YLEs(
z(YC6`EJjCKFQa!R0Or9bDez|bKSb`E8w*izTxJ)n-?u|wcbfZo$*ngxOSTPEtj+7>
z_wD%IS+)`Vw7Mt62(lFeCK1UtZPsNCUnA^X90Gwg8?EI3Lju3^8YPch9{0R0Z<w?W
zcF;D)RL;|Ab#FjilyOofMoAgP$C!minO8{R*~eBY+Jg&0`5`v^9m?K%M3%t8+xQ*^
zq{?^<8RLT?V=|5~SuQ8LPT&^7Um#Dh(R&E5bOu3&V}AwqZBZ9O{aIE7IH87hKq0gt
zGzRu!UqQye+|%%FtZoIrGxvq=+;>PW+Xe;cD`X$Hlr7$SsdK5NajipMsbnWO=^)Xl
z2`7;9j?}vQDQ}0-rgbwM;%c??B(a49_36b<OF{<FgLPK>_ndUz+GUl)VQTN;u6?KA
zuEt61lh{f|C_Pi?jCVGWu;U*-a?!iRqF9ZD7QI8goLnmyPbU6_lM7`@F2pJ$qX9jr
zE!X2Hxo9QYW40J1cWP`#7`sa!ObAn#CA%}>>nz^f^SEe&|47hTssyZ@_qRG<kw@|!
z(f{{e2gizI3mTTFo;O(^CCUjx@mqbTQ39!vrUy$bx65gLW<(#{wFUByIJ)A(L`EGM
z9RM&*`eyiW)$yqK@lYFf@n<>3zhsvDOFVraUgC0_4MKfp4J=ag#y3D0&Xq=X3=xy$
zcUUTHzJOSBh06Fyhm1WoiaK=~wliWq2JffM5N9P&3qpf9G=ZvFuPyJ4kXW(&!H5Cc
z;w7ZdF%@H6g#crx5Ete@wCnu(rs<@F{r|O~?xchfITg0W)q!0{9IMsM_Uiu5^=knV
z+Jiq1`XWjC)uhZ(zoxUq*zilK@M;hlGR8omj)y{Bn!AJVyaD-j<VHWcmt#S*PHs&|
zC;_I@aVHmbC-mzyYN0S$`bo<`gzlRpdDuxq`}i&0w^6IRTEOaHNs2NJ!IF$#<<fm;
zOX5Vuf&(k2cD+EZu}FM$Lj_o@DgYQj3<E^wIbQN~go+otrqIX^RC}&;K^3($a*dE-
zDVMe(^As#Wg;rHigqr|?kOY-}fpwP_<6>qtWo8SdhvlY-)F^dE=y{Tdkb=;zP6jtL
zrb5Xv*#mBr>LqcaVuezu5rr<dP%2*I=NY@Ail={_DxNN?c>e!_D(+1Ab{20IVo(kv
zu0Vp$QjIuHtLuZ|Wc(+vF0Diz#FKMrK8#Kr0S3LjmZZ_s?kCk~2r7Tr4yT`lWS#0B
z{cM#+kOq=rvT`~YM{}g$sBd!d2k*Gc_{i!*6OvX62V}(=<VGnH<{yn-aHPY}Cr)?x
z85h*@cCyYW@ip-sh+<}qf>GQJwg;TVaGs;q)3B-xe=x=Z<k1}J=-6$L18s2~r2!`e
z@^)VwE286A5go@VW9V0Zl?VzHjJ9%k-`Ij6E?ExDnaovP3kG44PT%y{q?(#9N6qzP
z7#w+b6z*>B`B`Ltb@j2FKRDQqa(N4wI15mD1UFcsEwJRNA;TLRTM$6e{y9HI(HRTY
zsG_g0LENahPhv)<Z$@ltP0fK(bN?LqP;30KH|u)0d(T%QJ4f|=W8tB8j5`-BjoqA<
z*WSKxKi}s1;#>&_@n>x^k%GR#f+4nmw?$`Zk&8Gr7}?)VyE%kk?pn3Q=SWOd-;Cne
zxSG*5`$lPtzbjEw`gT*mXp4_QMC8LBjUOH@0QCkyAB}4KsC&=71Z+#}7Ti=zfZDaR
zN?+W>zy#Yq2vDXMeKQXR6XfAm2|A^n^7y;k6U~_y*;hUH6xF768!B;%Fqn4<=D9$1
zv>wF4!rE;5Gb<S><Qbtdpdl+yi8eOw>mFI(!2ZF%Bm<~KHq<PEOP57J`MZj!v5IK-
zr&V46&kMhinb2yLg)FCcWc?1Soap+-{oS3yB0EM!*4Hc<gV`dK+RanyDN<@|Nuv2G
z|2VQ8g;)N;F1}mkc`W|u$oe){@#F&qtHQyq!;bDIm2nCtL4{`@AQkM%6NFdmp7rD7
zd`RtC4@aSyu}+~ni>I4JOL@_laY;Z=-&U}_;0vDlj4dI>+N#lo<;6u!b4KE4(}Z6%
z6i$rw&KO;rex88<wASig1TZ+8S*yJtKj>#jYsZk^oq2YXe7}({e4bl98$XQfi>K2$
zT^gVcDWy~9EPihe22cV%7s}@{xE!&%l%HEcVSLU}pO2N#v&z^V2F0bLK9{M_UtWRZ
zmSVx_9M2c>v#vf*=jVbAm?EJWnnO2q9&V`Rc>{AoCF+=$kTFo>1WD~5MOB0}Ob<-Q
z)cd<7kpn*MmW3z*zcMRMENNd;62)8#+zLr$&3@9%!|WH%_Cc143B|^sYXH!>a`tmn
z4}_u{S}`3!zbE=ubH1#KM2nCQN@@M*G<<^eI>@e^Lb`79I5Cma+QiItD7Sk>Da!3*
zmD?Nh8$f46{AUngj?7ijL%&JU4J8W?U}$-r6ukO!1uzRPW5M5%g6T9S%p1li*Jqbt
zX2Iz2uG8v9p%6fQsjG0b(T4cnph##Fs={Y}qr%}H2#`Z+IUnJyte=1vIRn2~#ZH$b
zkU$)t-gC4uDHCkxk2Gcgn|@Io@s0a=aXemzw&-;vks~P5g4*Kse2L9Dq(^7zU_S1O
z8fBby_hmRWD|S5`!ogtO7Zp`{bY3w1wde*|Cv#^AJEaBZUZLY`t0+btF$0A(=zIAF
z@A3xObJh4>hC0#b#qqJ;M;ZM~P^2C!%Y)mz57OnWOG6jvtW|W{bMk15?5%H`Klmd#
zOi`_h{(t)$n57>TA2}%?tRr`PnLf#2WWO~{CMj?OU{J&*{xQ&^e}cLt3&5tC9|x^^
zRQ3%_;D94lI!T|mlXl9zaYNkp?(%OsT&DO4Ne>=&Dw&!pJ)|SPn@)a8l9Tj%NlBUN
z5vFqBA8&*+vL+hE8U7HqLxhH5(h4VV&GN^8gk(@^8CqQtelZ0^U(cG5z8<G@#ZN+<
zxeyzZ;&;Ps?^3tP`c{lG@13*Iw?QoEs0EkqBTE_jbh3J$wrWyF`ChEws2FZc>aE8H
z_A-72gR3f6m)WzTb>VZc{{ah>Pl#?3|D`)m_$5gx2`b(J0ZJiVf@eMqlR|jbc_Vaf
zHv_8}(sz?e=HI6<f!nHwsyR+KW@lj;mD-02wL_&C-O^g8^oWc%9Q!_qB@P^Q&?S$H
zF=RTQ=?Qb305A@C1v5{grxyAb8f_;0qlAbslD`r$X8u_q=s&?<E`lcYUq9n;EouLg
za=K|N`*2sBY+W__-!qxBNmHmj2SxE)?Kllmwy~eDMT@;ERezs-MwxEh2pbZ%OUM`t
z#R<TQjq||}lQ3w#M2D)zYH?_elIYsv==zfAYXzG|@7)vK6ymvA*ux7g((g93%lXKG
z?3gkhU7LY6!mq+mY~W;080AlhzEuJj<2W2Hb6n=R(Y>Q#>W!{Blo6haT&Vbxd=xk5
zJXKW1KVVod5eT{eFtRQ{ng;dQIA{VQ72QJ<D}m0^0;{!WfwuFS%$4_2AB=9;l{vbm
zJw4nV&y0%SjMG+ykLzB3F7#AJ>k=%43)H5KGX@?PO5dtSF;rMFSv6S}n;j~H+YyU4
zhV$vTs1ay5vj<HwLpjR;6Cek<s2TJSE>H-@&k#W9DHBEI9TR9%9EQ<q7fOkC$&;{o
zeN*^n7T%aDFJc{q+NyrD7w#nY6m1UUJRzLQbJ*%16YVsG^LLzHHKx1)WPXJcI*~C9
z_KO}9e-KHmYFhs#NUE)}R|?I@jusLBa3<KX3Ij|RJG$gMR-C&}O}0HtOmMjjgXqJ#
zH4I}`2%pn3zDM?*Pyru?HA#!*JvUNKi3P(`A_8hz$`04MlR1|mn=DJA4I1r@4iPHZ
zJQe;T9d#oLePk^A{0qqG?1vXZDWNs|dd$io>HkRuib115g|lD*477pw-CS7!R56v?
z?!ph}CsY<g)*$~}qZ8u;#dBp~<w@j_e5sbZA8AITGQYV1dl*SU^q*LqWPa~%vY}aq
z(pw);RP@Mm<&`MEkmaLm<ii*PL4?kLa}fMDHOH78FmA{#Hpb)`lTTALfMXLf>xa1Z
z<BEbDNZCNM@><qwjs5_zbeKxdnCIl9_9b>3dh4Hv`hmtw)QI{~t*Rf0s`_<fGJf}T
zYNky4&77IAO4$M+LO|7pVb9w9Ci9i=p{~2_x)>5FtQJ_pxiYywdlqdFF78>vU);Lo
z-rxCWP%@e33MSA4FrlGy%)IBtLE3Go%R!2>p3=-K*24=rwNb4{L}JMFf7T&t9HX#*
zGRKv{&kScU!!Rp@aFqE^W~fAzIZ0LXmHU|TT;^J>CaK;%157i5Oym0J!KX5q0v9)F
z0ij|ds7SyIqt?9Z2CkuSSf~n>v_6!mz+3(>ln=0HlIi8)o7e%`UJBaHET}PwzdPpt
zPKW#(pAaU#JyrfwQ9t0G$tLCl{DZMmq@he`ACRR{jE``O)89@91kWc>kzZbX4qsji
z4$mfOtnz-6syv(*k)?KGsfxVipAL8fgjel1B)phr6;2Tqa(TI`0b^clD>U0r1H{jI
zAoiAbUW)dmP?A@%O%9>R&JuJ3=6$CsI}(g6`blKeQWU>oMSo&N-tu{Wdp_YkoP3IE
zl=%({=TQY;wHrR)WG-w%J@B0!tu#Xv&BKBys8)<U$msC{ESGuL^aF~+-rug(f2rit
z&2!Wl!qY_ejt7|lgS%sJ^-;}r*r~rge3Z8Gj!zMdpF`Hw@E4Y4!Aup3SAAbm+z+_0
z`V<R>PAu47yB!_$zaX(&-IwD)i>8?){zh(uRTF80-p95WYy&;3T7G{v=LJ3b3WplT
zpnE>SS7YS83>xFvdeQzlKZK@v5fy}cVsH-++1qn^=+Vy#wsW1(oi!+%QJ-ilORlcj
zpI-4kzWoyl$~uPbr@s*)`1BM+#N8H}r@gfLhgnWipP}@Z@C0%8n=_skb@a4*gS}k&
z@%tvFx|AlG#J89)_}`<@!J(<pU#dem=2^*vZ_Qq7B-t-NcO@g>Ci9z1Rb6+vSM19X
z(R&^fj0O^;vlB|pgHL5g{V=&hK@X{d=AfWt{i4-xR`x3N!Aw{m&=I9}9}~3oxz3J`
zhAAk7-iB5q7j+s%B~iI6DzX@5gp6JjjGiUYZ6(@cZ|doLID=9j1DeL5<1XL`bT)=Q
zSb7lB9(yH}{wmjW@<?Vq3Ns2e{qef?*dDH&OW$Lh6`zPPAMUHd(TYfrqh@r_&0!%+
z5tnGPC)YUyL?4@FUOHTfZNPGNA|b_>4%Ww60IWp7D|Nua0y00sTFrV?q3_*}!<)~A
z0A8&}2ir+t#)ga@_!dfULc+_CkV!y*A$oKlm`+?9wDJP+t7%I{M*t8=w|V86HXs6k
zs#j`6ne?F$VkRu=Bw>6W%YzOmg{+mqF-7rbhAb-sngn*NU?fn)-=#GfrR7CRybH}j
z#o<auqY`cz^jmSR^i-tG>x`6sk#(9k%5RK>HYtB9pmiW62xyEfnt=9dued@{(HJ=l
z?`Tq5-oXh*Rw(^Ne9b9|V(ii2CSYFtT9m4s0z~r!3x2Cwhk#O$n}GZB6{5)rTWi38
z@c}5*{NQAWjUTqLS6<G5?4v22{@B)yLh2A;cnkJ4n?R{M^IjCw`i#4S@sy|4|3T@K
z<TAmcFce|l9GtE|Rd1tk3K%p-*;Z&hetoCA`|D@F5=D{Gvp+8&HL{1{2i7C*&O$H@
zj=Ss}`^#QNfj%g;7m`N%f5?cKuYHSE@OfD**g<2<Nub6U&?UM5qW*v^vCFpY1D=2@
z!2SJVMGC7oza3>H>yOF`<S%4?mwoKmPqPD17-%DuXOy5!(3b_1r%`7ZLJD0HFmIXy
zMTb#(9@f#wA)U%D208=W2ja`I#BV<&O0fs=nJxI}21$(*2XM$(0IRSN+1{pWJPe21
zx8@&>IBHvolcPSH_)Jf^f1~m^-~%8}lj$1MpFs-XC4#9F^Gp(;#nb*c2O)`mur1Ia
zzC4_-Bt$%TyoZRN!ah9=Kc(1@zIKkXiOt)w4~b1`H3zP<?81I@;co>=-$xZoSoznU
zm?FPc|Nde4*~q@-e)3oLgAZ`U_K(KXHK*OO7+EmJ!ZXeM(PCEO+a>A1;0vChv6GLK
z*fLiwt!qivpDw3v1~)*(fa2-qAOG<c&Id_5*lvy2%-!|2a9~?3rDf71U-6?<^tycX
z)!P;IM@2ZE=W-Tu$ss2rO2&j^4l<f!+pSnRIL%x;6fD&4wiJ|<d)im4|0`-k8|RV7
z-D6B6%aE;rNIvi+EYoR62N(U@R-~>?$LVtwI5f^M`L-d9)$(KgZ_DagInYE-y$iam
zOUx|bc4)5iLx??73v(>)aU6wY@_Y_F{pQ`j#$nKq7ThR<0}uWIUJine&Tu3~v<gKs
zQsNU&flu=Ijl|ZUMyH;Z$<z>1tarx7K0-n6HkJekAl=wCOn|AC@N`Z>Rg6k-zQCT1
z&*nMrE5bwOQSNG%$+DHVV33q+gAbYi!o4^~Wd38BGD<4h$C7uvherQX(wFZ1vW{PF
zGT#Y+8ee)EnMh>mzV`NRFg#6cod!{DT|kN@wZE(j_2@Vxu+K7)MM7Y)5Iql*fuEd@
zRda`h9gL7ht+o+w1>2WQ%N+o#IjDMTQncH<O6?6$R|8RnDn}@YoQhI=u(+rdYivQo
z=MrrbMoDkt3(>+kwKe2Go_TI$|M6UU>17`=jP{}M#5^~cs$@wE!GqKRX28qi*$2d>
zdyn>`zvd1}1)(%=#l_ZAZfgsxHAiogt&})rFGE`{Lljtqb~$nmp?U2P5d0}O!9Da8
zeVN=>vcDi!GTb<QBkOcJuE8kpF#6Iu4cT-4q}Z=^AB3(39S}Mq+Mc>`1LPRKEG+kt
z)Bj)>PDbwq>qwZ9xR%<W_|4f{75cD<brd3P%R}O|`ej1kiDRJEFcMinV-SUZA7_SF
zoCY!AdAZ%hgz5(IoGy|cMC0o0d8UK*iQ_IwJ!mK;3-8WU9Kjp5hY}dT2kzRazxJ-q
z!692XmI-h|K#Fc1RNJ~-1xr*=Z~g}>(c)VYE#Rg9nb2j)^rx+2{`V^)i&jA4s8e9J
zH1+RLV(V(9O_JoJ@<NoCPu<wb_!p$dFdO(0N7#612LBSA*=N?BYV#~A1P!D@HTE@!
zvBKY46?)*;>VM8bL&x?84u#ZA$^(^WOs3l{7kQO(){RR6C0hxMW?q9Ey+}>8*%F!m
zF#5k;PLmZz3fEm{x5%6N);u~3t&NX%(z{er%sw+|Ox|jw7<)drI5$_$hBthF#?VJ^
zUyr>d_u!Y|>l;Lu*?==f4c|=3m>pZ#7slOseWZy=-}ycC<_7+N@%Id~8vREy8H~TW
z4b}K4mJB?xyLIi92JPYv3^!>0mfhOrjk~ozzG{?)-y88e`$m>5Oaz=Qo<ZA|W0dMo
zm(>O0+%-=vQY`^N0By1lDesozSM%QE!A;jExGA~)zt)~UeIiSD<ar{>JB&P6qFQfX
z>+)R?4Y47KfwT!F*F64DYS0vbgu$iz9}Ltx_s1PU`TzW*r~IXdD_^U>i@eei2k>W(
zewE@*znKLq7F}HrpUd6Z2N}&#aOJVhAfjlC&;BmSX6|-54tg<Jj+M+W$<Bet1*K)b
z?@C6CSMr;uv95%D@ba-}P`z{e;4*YAfPWrkdKSk7vuuArnJryG>@9oXcQgbsNjK<A
zB}-+LKAyD`+3(XLewGsJS3=zieKoBmh=FK}j){a8uvt~^jFM=Zj!hLM!`ez-gA<`i
zi#1WOV}qW(69pSjzNq?8Op%0Qwd#fUh2D!qA!A}*vC)6+k2o;LNxr<25$iT35eDoJ
zBR&+Hn1?~TRwoBuH=maWY9L>63l}G}U?ONrOK<|V1WqV=vAP)hDB<p^Y6%+sXCd$T
zu@Nnp*zS3Lba+dAC<vtn`0QsF4pkijC_zkPgZuzCehAVLik+0(rzgO`C3|RUY-)k0
zj|(<1<b|WaT#Q+3wkx`k5S38K8pTs-gFc+%i%xkP;{NGKD2PoJr=ml68^GeBgHlpm
zbQ@~C_YRVWWI=zV$Ag3qzh<y4R44N969}YKV3*yxG8BdWrF)8mFrShn)?PHU4BIF+
zXslf{r}AdRUnW}MLbdy`K4liaH_HNK0VCeTSn_Y<ex*xhK{7Gtw`P%y-Oh)360dh=
zt&;S+Wp9B-u092P&Z(2D#&eXXEj|b&pbPUEU_DF?=IkQt)XP37Pi=86Um}e?;92a3
z6btb>XC}C|;g@|eAKV*fjO`yg=Tb!Mx)u?udXLvhA0vCl&4e6EQbvg8By5>8e3y=(
zBJQfE_OgI@YTsB$T=j*G)tudGjQ0Q-Sh<rn=L6Jw=X@6!@S^sgVS%BJjEmix76AO%
zK)pyDObZ*^VFl?6-%Z21$@nBTd89F44sbRP^#?IKx3{$VeUJ{wGx#gnzXx8l^btoM
zn<=WGIyP28l0}GRL2zt1gcuts!4z#|$hIIvs7=SMLnV#-M@<;EvE;QcCt$w%<}JW(
z0(Pbe*K-?p<T=DlG^RA~qcj93#-=szD>hE*{X@#_`xV!WZ!T`$ha@0wRhwQ?w14ge
z$lDf#b2=QX%`nc|c@794yCDx&Rqs%Aa$YF9DK1L};c;V;S!UZ{C6FRkehL#nL|v`_
z3Pm@!zG^nquobu^Ji+|WB;_I2%t)yUaGp3viinqk&ZZ^>fTvgf+T!Wc|7+O}O5gd>
zdcF9~xO=0htk{z(1kK>y9s(4w@FoxbFYs7dp5e<z4BUx01fAwxwARYy`>|cY(l3<I
zltO6e100TWBq^=5_Ceq-Z2V$RNRQbrypuNxMr1j`K((!Rnip4#sNs}>w0Nr{YGP4&
z<gN02@CK}}nY1kBK^;ZeJ?ReB6Y)F^b#;oGav?3;M{owvfTn(@RM!Xh4z>Q?HWX9Y
zZ<S{!)o1(PV6d@T)xT4Dn#1o={gyS;(;uj`K7lg5@E4#w<fMH8`0?<C-Dj|pz07mu
zU?ax_`2|aQ%7M~b9xTv=|A&OfEKwQ;Xqb{X&2j@BI0M%`w3)dqW=%3Y-|qxJ8#kp`
zaxkmOKH0*p2&3uNRjKHu)jtFbP$n8>CWH_;28=OS<^~hNfHs7#@|#cp0j0%!{c~N`
zgv=m(CS5;pkQR;nMUq|THWSz%m>aER(gNl*mF)TL$=1Xlk<5Hs)phD=uDYO{a30`q
zg$1sK851vp=yXEgj`J0xCb^1|8Kf`OR8A9$>fmoY3A6w@GciU1EwYqt0(R~G8U=wd
z5zb_O1pBb{1%biSzFPe|ik{GPuKoq(z%v74Le1ft67XM+b@ZX%oVG&9_PKj%TIPao
zC!xS0ifkug?JyeQx7%D~<0##nX(dyQa0qK{k!*rH88kHLXC;F$0-Y@?*+1RMq_n|E
zW?rH|>aojJS8o>5@M~#=IL>_S?7oRnsy_%4|3cCbif;_iR?LJSQvs-&>H%U9L@dk#
zX=L<_z7gud9RGX4;isp#8cuj%A!z`LC>;7K9HzbLf>KbOY9&*I`wzT3pvYMrl6~Jw
zrU>_fN_Mt8nNXy+l?)OB!riNqeX=#V(hmp?U_-+r*<6+E(hj9Phh*k{EVKbgx%*v(
zh<QGJxzIQI9nkkr)}Sbfzf#f{M6`qz`~}iWpHl`#6YqqgFGw%+%`rcw=8O4!?z0w!
zz9(2XD2hCRMY~A$)fN|&Lf<cmoP+98mF)En$u?Wb6ybiVl5KG(6Z$@EB~z{SBb6-X
zP9~MsS;<t}4^YVtxRXg~mm`^Zr$TV;UKiv--!$w3#&Vota2uwkZ;JWOL+)cQvEU%h
zeEK#iC4y3t^@mn(Aca?-+T$CDyt0R&4cHs86S@WWIch7_@HuBmI{Y%YT+KJ^dzheU
z-~ur8$><;HtbroNDQEdc*+ApAfiOagHdpjEr-x|WAW`evT!n<H)6AECPLrL=T!yQ-
zA0aJX=2Dm*eySXqLf_$96&%s`AQ2%i|Kb-Y&@TO2t8_~bzH=04@Q9;}`NLDbR!`?W
z>Ht%^^Z^7Ok^*u>;XJ?58oK~L`ki23fk2`mlvzlT8lXqVA=4^4#`Nedw1f=b&;r_T
zw=BU6YzV9r{yl#Z_d?(vglz+(Tg;fe{xEAkGz$Q&T!`WZ*aL4Ru59YyZ(_4?hFX?F
zr5VSgNRbdRCNSvXZHR!1zJl-ZqGbSJIhq<Unr^+<U0VnG2*|1FLz-uyMW<rDfno&^
z2w-4Niv$8tVbZIL1j0&&D?p&%Dgv!i1WL~*fqt7HkkHCaAP(v<95H+J69V}GZ~Rgh
zvn01Cj=c8xs=?a;1G-1(!}&OPK#j=&D9nBfu29ki8h|Z9W+v^-JF%sQP$-AA`MaK=
z(j7LHyzTKnQeWI#-zopU>$~1t-_vNs&hYDKuhhG5sKAV1nmPVv(KmewcGCJS#~(C<
z@-?0P?Q~n;l!?CaG|VVCrVH6VxT~h}GFQ{U*5?QYRt-7XZacaf4tvSdvg@d8=+p*h
zmRU~L=@7mdIL~^HK>chFu+(AvL65LT&lmv;@aR*INgI(~Dbsn%hOOvfMk-j~I^XA~
z9E0^kG2atCc$N)xXUw<kBAN;uz<f%V79fIv`WB%Sd^{?VZn~3hoh#jBq%&WyIDqpj
zOVN9rdOaQwpo1|#YdqAx&R2{2GRUr$HEj^1A2>qd<=6Si@_}7M7;k2CiEB_V`e8*k
zJ$fPm#4t2@Hu`0^QGrSb{QW!GhY=q%PY(1KBkvOvn|2T)ads?t<cqok?Adl<aw-lL
zoiLA+_3>Io@1R>ByI|DaFzSR6XM#YyF~x3m0T>D1-AbUSr^z!g2JuGC1ULicz<!D+
zpa;YiB~u>cj)Y#0`F6THZVT0?-%Ww)e>bT}g{n--9i>psB&tI^sEP{tpKFhiDS-U+
zZ8wl~mZCk5e$Nf0v`2ZZw8s^I`0(v<vuck*wnskYH(z$1b<Q)#+wB38>m)gZ&sL>?
zWyu?a1yX^g$+9S0lnUs(UULI2l>J*ofPN?wK>ygLtSm~}1GfII9(lh_@glT1#`7cl
zEQUuQc6aU!Y=cDq1DU%5OfW=`{w%AYLAy_nuEVPDG_96AxA4HYpI%#0F<{}B*IfJ4
zk_v6%{%gZOomtUioiFdZl;`FKnt9rN(d_TzJ=(tjPd##|N0qjkSQKo)r$PM?X=ERb
zC!AGjX*qJ+bB<Ow8hMc-y(O}vJMI+1wMU3p=W96`CGYiZLl9u$wb>H=G^5w~o<xwg
z*Y^wpDCo2>K>36Ea+msY9|PpzmnHmyS(SCy17#kpcoVYV_IO<EbR)*X?Jbzt%&4b>
zBwhE-;tWf4H0UuJWXk@yu3y^K=mKRLA5C;l6zQVq3rFXFWuAVOTnFT5lR+(r5TQT5
z3>TGL`7`LCk;+H^=mWjeN`H>^%D5!Atjz53GM6!&^cjHQA5Os>S&UN6_R(pm3SYQl
z;6%U<kWXcGBl)7$ay?Wulf6n>oae-^^F4ABkc@wd!Nxk@3jS_wwR>U}y63JLLntvg
zW{(ktF#^|Dv<!+M7+|4#bO!hr8x_I7KJ&9j4{~{wHANOJlX-A(5|9*M3Lh|JU^R?I
zj)w5@dJI2o=4E;2#NHftOB$SYX!HUd`zbmaP@`j!^+Evg3-nT;IqGj78?eG0E6kVB
zxHPN%Jwb>D6EAwS=hy`S%p3?pWkEd}ECm*`5^!^B4|A_Y>)@n``5xi<p*sM^a0`rb
zrvFkmMzwD#!}pivyCR)DJJQcve;G=@5WC4+wAxyLsvCXrJ6wfBENR4rif}a^iY*VI
zwZLR&J%Ug+;6<mqV0DOsgMcEfXrBHbY(z&G?W;%sZA0h6nRQC>z{92kifaxANh}!7
z3LgPInGjd&MGAFv$;*K3%iVNiPN_TgX)9Ljy|M6_Nq0P!M7M|*or6XL!$;492CFP(
z3UJeTK<L_8Sl9=s>}l1jf|JehxWS%0-A&Asw6v)nk``==Ujmvq6h|$Vq#3u;^2OTT
z6%2l{9UGc5u}pK?aakoegtDY)NBAg|if{5yk1Sk)AL$mGIOWCJ={j#Oy@XyZ0RMGh
zE}NwtQq{f#uR(d8g)t~z7w)e?9*N;48xliBA~989R273y5_1alt%|`9iP`GJKr=~9
zJruM`10qPwaP)sFCSb+vc4C57%;Qj<Dh&XVT-TyN6$5}I<}{d<R!oM9`8W}isbU^P
zM`xwUQZePAiWTEmG4KxBF##2`GZ7P1F)J`+wsO^|n9Jenuwv5E1)hPhC+wIEiP`3g
z$&{EoKm<EYmc(3y@x2}6mzaKVdfG7oiP_|e2};Z|_*ju9=DQeful60%%Fs`F)K39+
z#sR1suqh;#RxuPh%pCKfUdk5;Ho$~%g5S7bs5~h<cahtDd49sS!iHw>5t#p@J%8eW
zuCN_z^u=ofGm&4Q@<Mv_Lp}W+J^gL0XgAgRSVAPj`tE?YwUz*PtRKa40SLekdTa?O
z8QcEE1RrXd;nZKI>Mx~olrN}%rl<Z7IQIraBZ&I-CKIdUI@Av-w)TU?!2X@?2U8S*
zT6jin40C`|XM<s@-Gj`oNTW{rB6Q1DY8=M50-vo^*v9s-Bz95ihXU!txi$P??e{X@
zz}7IC+H%n=R+~GI+EmU{wm{B;m~smn#Z`}4q1A{2vY#JZAP4XcU}SxU4KfdzR3J-g
zfb2>IkWXV7?#5k$*3=EFwuNg6M3Z?UL7wPVZNi_4_9pzq)dN42ionm1@H6zl&j>gC
zcqjafcHqa01wW$+e<Bs(m&7iTueY|?No{~1-<!;<up;qm;b%q<{Lp*?KSRRL&;vgs
z-0<U_@H5(hA1@aCj3)evRD@p=yWq!SW<`H~0Q?A=%s=8_kFSLvc9s`@=vRTCA>n7}
zfu9j>`0-Bo8STK27Ylwy6aGXh!Y_$k@atd|;U9hg{0N%N_W;{r;peu{g@?FsRIB|H
zg#`>Hrt7daedInUOKh+Z8TwBa^sQjUkXSMFV8sYGR(K~?jCQcXi-i@ViB%#Mv693t
ztY*uSR;xB(h3`#fHnA#nNku{)4v)`JH$DNvg_0Q(ABG-$7~#eT@5G1E4nBCX@L@FZ
zNu(k^lGugMePAeQC4K-t2%5~1IQQ*{@EPOACrG$}2Seh+(1Q;n-1y*~_%PbR2QL;r
zj3z#bRK!OTyYSgW=BL);2jGLC$^0dD=N=J0i`@9s5H6I=koYk4;KK+vK6ocSjCSzB
zi-ixPiBBRG@sY$Xd@^i&_yPDJXfp4?*>XpOPe!^+e$br=J`9NuLk~WTaN~n_;=^bM
zAG}!jFq-%zQV}0X?84_vu$HtBKL8&DP3Fs=A1OW=ZhSH<d=Lsg2)+0q!h=tS!iV|9
z=2?!d-x&@*%ualqRDur^yYRV^8^6hKNGAAX0H1?6`0dErC)15jriBke!3UuiA4GWY
z$yE3-pMy`PgAcP4A19UI!^AFpZUbv6eDHzolL>rIKVp2c-1uZ!_#hN~5PI=Jga@B2
zg%9&N_+&ZwFgx*aQVBjx?80XaSWDr955x!iaLvnb?%9#GkKc`t-@*r>;DgYM4<bDH
z_!U0P=iuXa@L_i1<D?RNnAnBSZn?{u{Du$2#}9mBICbsF@Cmr_30U|b6nqeR@j-+K
zpMb)L`5b%#4nE9Ie4JE*4->oa8S3DJ55y+`e4fQ2M@NQF(2Y;f!Uv(?gV2i)B0Ts6
z6+X=8;1hK4VRqu<q!N6X*oDtzu$JOCd>}qS;Pc6@BgLo2jZck*4?@8Qp%))Sc<`xF
z_%NS?PmO~QvlAaDmEgm~E_@b&wG=-1KzwR|&!8j5CoMf;zoElX{SRkO$kB9Wx&~q}
zt#ECIJvw|6kfx<e|HFI^K5&l6Kul5#K29pZhlySI{2i>N@WBV-gA>us37;Nm`=n*K
z@xcj$f(I@svce>MGLrDgQ1~EU0-p>AA58GDebVey3LhkP;j<G>Vd0aZ@X2U0=YMj<
z_++~A$+YmvwD8GHZlBB~d@>b2$d|w;)4>PX1s^+=!Uu_6_#B<UCsW~**<?O~(_4>B
zAEafu@qxoc+6BHyD@<yitR#H06h6q8z$eSW2UAdjkDW^4gTyX;#(=e~_Q_KCWHp&@
z;f&lP#K-T(2fiP{15N-dOv1;XgpXh0gM0~m{0=^T3m-d`!Uu_6_{;`tS@>X}M)|?Y
zv+N_sC*Z~>VBr(6@ChXITObLafWim)68Hohe2`t*$4;g2L1Gs^_sPM)LcM^(CxGz}
zj@CWG_6fT230n9BEqsE>_ym*i2`YS$FM&_c!3Ws|A3K%82Z>$yY?9-b1)re8Cy4P+
zJP98IzU@8BB4&EUe(_s-oY(N^(C-KC=6a6URr_>fCY)%I({g<{FF;(;SHo*9Qw<@b
zckYC!u7_e+v4J1KlIGxaXmT9OHDlHULodS#f0%Ts!Wuny9csQt%8%}J3M;|HTzJj|
zEcGcd@-c)Sp=L9R4uvl-F=oM2cqsg1d@&bbq<yt}vIG82xBxj3$aN=1b(TI1dj@e1
zmL7dakG_dH3R#e1%+1nI#qt#7wTg~@j=4%4@L}i2{A50%w^kw8nYpCJN-FLyo^R`#
zF9N96)Ij6_=Cht+0hplS{RNn#G0sB^abBSu?e_%dPh7AsK-}dz<|sjAuE&PEGN2FJ
zp%23)O<&2b3O$NT9G0GZpdIVb(I!>`RB2CJe5B(>Cj$jUS<r%D0va_*<f@Gj$P7o2
zq?W0p$<M*f2l{Z@E5fr*oEdfBcX3EZdkb1RX-gS!0xoe*{wQjYUocaJiWC`|;Lo%u
zY&AMyvZi#3rf1E~!1T-y0}O1Q06n2*xRMnPVlW=(9E~6xx4u)3ItGB6+edH-1z{(F
z0Igc<<<y@l|1_r5QAqX&y^cu>e+P4d!pbVE&~>d8n_SvUFV&3vZcoguRvfK8YH9_z
zrUV<`T3B~hllEv^>wf?*IKuJA175J5tf%LaM}jFccUT{1-a13Aod>^gfdxQU-f|ms
z2`zcxdW9HPQpHaLm$(yH-+5CSY(FgOievJ_m12*!0P|Vp+S<m<J=&~>v~umb_2t?w
z-}|6mxmNh^2FwQewME-9;m@e$W@JtlY4tPIFX*giIXkSTh_w1)8EGuxHT=DazjyH$
z$KPl8+mBMS@0C(_^?yKxgC14kNh?)&`g1BgYn=*5z9M1azc&z+O?+(U<9$9p;o}QF
z+V>P|*A-{gFbHKWV=yIa1%qi>k2APBtAWAHtQH30tQ`!hvf9dvwOtK-Y~W)PAKUqO
zpN~)Y_=1miIoUJbqx@V{)*#Of^4uiP?ectIo}b9`3wgHh(XLCwpYF$_G=N80K8j-z
ze6mg=#piZ>oF2quMkyY%rsFYhmV6;7#FbA118j9)4Vn-zX?0v1BXxZPsQwqy?^=sW
zcD>BU8+^RO#~MCf<f9RIyphoars$MWDj-B)nEvxsIH*pAC&g5F`ma@Z);%g5dB22R
zVw5yCKH3CNGzy+&`Fws`9sy$Ch&lcj(tp!t*p+>#ha!9TEC~mFM?w!-!J1^{8Dwfo
zk`g3s*A6rnWPR6e{2fRoq+O5O^&!gGg})EVwKs->Pj+ShQ~(1YsE;*IgYas*TJQ%w
z<5mp`C1L;CwHc)x-Goe8NDk#@p(8p4k2iYpn65Au**5sg|I(&~k3mu$H&@}RUEf=`
z_XZzs@4dd21%$G8sOWXe8C{r$_`kBi1{9MaU6SZqTdAHiG%bUleZT3hw5jhN`^TT;
z#~ZXE-0E7bN3rtj8VX340)A}gn`ZyGDs=&Xc^F{E2F0O(QSZ4`{|i^NY0KFIp(d`f
zMPE>bP8&v%#=ZwV2fD`iY$U^en}BoFi`Bol)8oGHsbWdw#K)@SIo{-n@^PAjRX!|1
ztm}(o28QM5c{AW(<}7UySN-5uaQ3fiMt+=*{!^>{jU9D42;Uul8vZU~+h4&)Ihjy6
zu`(aOs`JaWa3lWE*kQ0ucrRLQ4gSDN+t-$BTUv1HYEX|f<F7Ti5K}Q&2(@AzT;c?v
z606XF+5n_M7vGFOEIKKAE&QG&FhYaT`%f9N4^i53$q}4A@`Xd!b;qBEzl#ERToHKT
zVEEk^J_vvO!t2{Vf8pSkH<D{?Zx641Vc%SqiJ-L}HK&D7)MLHh0;)J(>&;-zp?z~<
zdHew9{qLKbjYT;6u)X@`kEBwg3IJ^01q;Fm1D?&Fw!X;*vf5MDPgl|Qfe}EHIxmi{
z82vn2L96|4I?6BFToP>wX`v=qa3J|Jh{LZ@TK%0!STk}?nvi`WqCrm~ILHWb+0v+=
zMRI9%`;ZXd&LjOVfX(3j+Dqj;j}3D{Ao=S~D=!=C0ydVX<frk~CRa(sq>+gey2I$*
z@XKF$3NodDsN(0y1LL#Vk39I>=b!rqo>`SRPp`XfXgJiYLK|-sci%VO2=zeotq%uu
zZN08-&<h%M?b!|bW>b&sfDbA2TvXLw5>0Q?ak6j$PW#@h{k}n4-U!wmt>U$3w&L4O
zy$7Gudx-Yi22Y;II;{O}&TriYcmntpzzHB0WUcGK8^_>p2>!~+DAxtRBx}GR4IpcK
zd&L<qydEaMtW&QzQb{qYO@}$pfm`CAV``jSa}QsxLq41>{sO2*zR_yWLxgb87;uli
z`9oo#)5t)ZKhm{VbnR8WV6Rp?1j&H+tKc3z@*(lAK#brw-lzhFz+W%p2<`5|U$Vsx
z%a^BO*X$BYeY}MC@$Pr366h1z`81RK2MtmZ{W288UL9_%a+#V+pA@y={)fnyel4;P
z9Euf{8FPn~%dxmq2DFzOXO|a!8twxc!hyGC_O6oVZiKKYG;B*r^oJ1Eeck4sQ*K<A
zZf7}^lx5D#DxzXnxiL4ryy)%lTC1=*Pqc1E{>-_@TD2WC&PHAL+n<-W?!xCDbH~C=
z9+0jNTVqV~eTAfws;`wwi_qj^RK+JoxbUl@x3${oh;crjkC#@A^7duT%~hxUP8qOY
zH_q0JKGkZu%-TuG<9S;@KuT@y`F531$3Ey9++8g>!u_4pdt@01i>YXZ%ol>2QMD{%
zQMA$`ElASJHLCu(XF^~m(B2>L8Ga3bxWUrevK#Z`BFVLnurxd09n7~C`G(B>i46#H
z75mzxloSQ<-eYMXEpjO{{~Kwh6}F+8t*B;?Q_XqqY6_V0@2Dm)_iTuP0`Fb?8t}p=
z;Wr@wdk7trq|^HEk=MV(P|^-<=#Z({w?hg^k^d+QxH%22EPh(y4hY;1RPeb~!Q*y<
z-?ugx*|#0&FY9kHK~wunu3U-i>#aquCg`yWfBD{ZZJJh#GuLR&6X@`O&q|sb;WSPw
z8HOI`oS$gDLq!`Z2jZAUy=d=j3`@@W$;5WXX^Tg)yx4+vJ^j@<&JDq+H=(a@f~16`
zXUubniRXI`zX#%Ql{sQmu4~uA+L&(rVZ?@R#IG&=8`9{}y?6=C9S5y7xJ@r=o{bZ>
zn*lZqAJMn3Y0qq`$SP^Z0%yn+JC}5bRUu6q&7A~X+3at9u4d%rU-rjX_Hn5cB0YG=
z+MV;~t+#28mjT-=PDbKDsOX(4GZcNt`{^h&oLw8}zZum_rC*jr{rCjC3rDg460qp8
z^OWs%0zmnW3ly!EONMwbJ5?OAi5WJSti}%Hwdk9hcQ$_PN5NWcu9ZUcjQya2<LBD_
zJlx>GQ|&EtCP1U4Fg_oX$}ma_og;P={suUcjAfsLtm&Jgn-}ihb@P%Xn!Y(IQQR${
z?6!giul=^n?Dg8g_GNbUXm4mvEyqgD_Lq0(3@z*3u>!4k2OcH|^u4iO9OHC22l{c*
z9_k;c>czJ#tQ41zI4Gz|>(fK)GtQ5{0RGr51^+MVFqH7N-b*iO{_gC$K{Lw0|GoVm
zCH{{K{x{_zSspF>l1dzwIs1!i#cafNKK1JGr309F9IxUqtSQ1Tt@eBB9aCNd@e9NL
z26l{EeK!>kx8-{r5-mJX1O1LuBh(946yfDuJZnZ?y$3y?R=XJA_h{8U@HY;_p6YQJ
z-BgdmAf|d;kdIP6rt>iikHsvG;W8^+VTF%dVS^R6Sm6#UY(uCoY$X8t!e$j55O5Y{
zp;wdJ;a)fhEEe*R=Zrb$y>O_y2mZ!kKmkbjn2!84QcSZ71h+YF;9Kz!*h+Xd$a94}
zYuNwd7k1hnVh65AKEm9=Asi_E!oiPv;15OP5#*z@qP0i&Nm-qg4nlO1ZpA}tkhplr
zGI_3$=i~BhkY|fLcgV917C@?Uf!^1o1sS|06c1^`<`7Vzc*s8fXo~j0&##)wqdm&;
z<51I*9!rXcv^TkV(&9(1o)^~%Ir1@*ofk~i?`H$z0x_I<h}{eL1&+KPzqHz!>Kz<8
zN&Nyho~eF;8xQ)B+UCYP)r;cBm*Hst!gtK)N0S@>%;GViuOBOna)8TmE6>{NYi`52
zMqur5pJ-dpeShH&vv7AzU+wu5(0Wsjb&9;#V~>761*nckA~jju26Kx8>xq6mE(+jr
zc|IQHK|HQ4#iMdM9t&pCL0V6?;*Xn!yYb^UE3BA%g})K=K!X+YsBk!9R_?H3o+FQ2
zO?LsRtG*c3RbPSXs(*&+s;@(J)pJo@bv3KAWC=fRv8t>7?Fv;?_3y3fs{h<z#XM$J
zSG{V774v)>eo$OUsn|*tJTEj|Iu5pd`~VI7=x2KRn>b8gtACWQvOVFTi)4Ca7o0(#
zW`T5HK}zr&4x(Z2=)>L?RkV_s*zk*c;MYyvZwd`=2hW7SGu%u!>@yyJx#(f5v9RDu
zi!>3eSnt6YBZIQn)Zp=}W!NrQ!+6RdWD#-KuOOvIKVA|&Fk#qc{w`_Yb5cua*mnN7
zWCx!=X@kLia)^5>Ak5;Bni#;3i-LGuK3z{=_rgIaii6b`K$@#BhBQ}Sf!JmwpZlr~
zZ%6upwT%m^he8>E@V@{w)pM5NaU-j*9{V_-=d<GK3tRZSl(kl01+f7N0CVPGg@6lU
zByeEmZ#SSg0pG?E_)i$NCNykwDE$o-HpJ3iT26ff$c3N={G1A<h3iNvOGy!}kBHVs
zKx?6;_(ToP{RgxYaSJHiNa^Zd5jP=i^=QFOh*~{Ka1%hQe?pb85BQvcze-#*^bW!W
z0b+7qekgYF4zvhgCI<PusI(;V-Vpw}d^(@yvqA;j;sU_ScZ7z$jm8p{jZH;2S{UNf
zc~F?wO>Ds9q7`^tUZXGkR3TM8ZU-ByfsM6-jfGFU_{qvVx6##Hc|c~CACGwiuR55|
zr%t%4OH27IBTUuPXHnQ$2&ftapOUy3iyjt`j|j*|1mq(E@=*ssp0LPku};@v0Xe&>
zaf-oRAZlpvG6quyuV653@Z$`w9^AlS=HM0v;lVo?R1IzeIoRoRMZ>Vy0ewQ~b`VS%
z!s4r^4Po)sSEDyUFmnituMVT<Kv0GLA~pDgMggN>ISeQ)Srx3x?O5y-AVWMoxJ;4G
zYgz(=kn=snZj263`l;ESh1i`T0zI119kE}bUkjmMW6w0(XLLt=xzYWmi5ckVmRz9b
zE$jg+{2TP=;gW`!&kvrlwvpMNUqbX#YtVu0uwv-`Tm2E4%O~BW^p6;1`{5Gow;D2x
z5BkV-teva$twz3fj8vV$F3OPn-BKn~`)iedQ5Bf88oD7xfq_I1?MaSp+Z`%*r6mg9
z^%w=4=)Zg_I7Um``<Wi)bUa4-1?{*sb<?>8n@XZPR`axIl<F*du;^e1tLe(te85r-
z`R(^+Iv!T9myZc(UwUcvcU5}z{YM?XJNVGYnzQ=k<OFVegb8q9tg7C^(~BSWPaiOG
z^+5#7WpZ&5Y;1Tgmv8`2l#cZWKpqI^C9u<DBXSGAK(?9xIhxzTkyKJ%vq{d~O_9N~
zz6BW#yS~$(XX7PTc}+vw#^3$WS|fqE4`(%rUGbjQR26rYP56mU9++n!M=>6O)!3BD
zCR1F<O|qPB;vX6!iGDoHFt9pXG61<eF7R=!*I{Y^$yGf_m=E;sK8L&C-{Tr0kSF?Y
zWGYNxVflNI3-E-k>6stvQ8?IC`u|+!W(LKNrCcAPb3F@I<xIoM54;wJqF3W)68yrs
zj$t?su|^4SO+mSMMazl6UPlKf*4^M+2-V?yMyAI-et=YtE@Nr<rDMTPsj3(#+)5O%
zU;R4#exykKzAE7d!<VU8Qj^alA!7+mC`^}PqG1VFBysBW2RI6P9)Fx3GHSTn59hIj
zPcWA7I9Z&fJ^)9Bo{l;~vFyQ60H|dgYH8mQ_v0<netg9j1r1M;H$t&NB_H-rYa6Zo
z?Wl@(k!vr~g>Y+9ygxH9{E#boe7z*IEpITLG-<7uyGc}{J?-`%SWKBNhNCQZHMRmL
zIH9|~x5d7>MG-^MKV^HfxlzP$7FNi@a3{6zmO`iT_2@tmrCeEPBvkgxvM3u+D@?!#
z$hjB0Gsf(Yp7<aSk1DiuEt5!j<ad1TNA5+-Tj=Jk-Y99olKBpP;0>sEq!)$8w8#)5
zt6ZI%x4KXPMD;)wmJeI#bIhovg-<Jq>`x1yY-zKSXizVS&6{rGQi`+*IQZe}kaZq}
z8QO+>R@?ve{B`)UdW00$y4%9VfmaD=b3;T`mr^jTJW1=NXoF+G+T5Ih&I#1Gx3dz+
z<^eQ7o`bn6aCMI4aAIBULE^1`Nj?L2OMg1_;#aDZfvZh-639v7zQ2^`^+$2&SogDV
z6bWvj$ih6DOUaqnK94z(&hN{qoRNe+nk!$rB{W$fw{NR6YcP&XGp`(DFBii{IDT=Z
zOSHFeqe_H<WSTkBNdy#yOBIpKT0*kO)>mK=s21b6qBko}&{pZ0+N!CU<#_Sq<Q$xj
zh0CIrHvpBKrh<mnz4+VXw6KRBT74}l?HUf8<S_3Y?ZF{72{>@aIw)uE{PatRKM!B9
z@PnMX@#DHS^D?J^B>evL9L9WCK;bx$svk-4{z1VDB13ah1w+w`Mi+{JV7$?w;s$jV
zRT)6RX@tfNSS)ZTJfdJj?S=|}0STj%{qn$mkf7Lj0Lqq%G~friTAnf_z|MLb#yIaL
z!GvLSIM9@(f9xyh<2Qe@`%8R=Y+4}jq~3c9HsHM4Ezbg(RQD5gkze3oNHfn2dT8B&
zU-FnJ+ewr}&nW<b{NkZsWqFFWHiUGA!c1edm0+foQ!@+S3@b{xco39Ab1O>Wheas?
z<Gi;VN`c$fn{PaW+EbhtFg8W~Qj#<x*+{5Qy=$I1%Emtlwd+~<pDjM|;y0#a`4B@E
ziwcxvvUR2W+x~6A41RE7X&%SoAGF!fTYeYYkKLF#8&_JhTFkjCc?a9L<v|2$f|Do-
z$>sl4?Z*-Ty|fY7S=jqTv=Z)-oSIemW<_6g{fNhzfvJW5h~O7h^!JfT@F(f32a(E*
zIf;_s|JTzBesBF3b!?w}7yosY=cMXQ=*cYUG|O4ra<-YbzAm<x9DuuKL=wIOz3o-Z
zM!m;Ll!Wj5Po=_lUPpXwek4zjAIOhVe};_@&S&l@dm<o_2EgQSv%FbSD8MzmX;Wm4
zIR)^@Iux6ct?-EGLp#B|?}thBf#K`sXO2eA`A(uF`mDv^vZFql(>3}?{X4f>*x{_w
zvz0s>Is{iP@tcbM7H?JzgfQq32Hg<`mtaFNeTu)2%_4vzN7ElMzt9*qZ#yT69!c_X
zc3MH2`Aa8J5<Q+=m5Lr^9qEyeyXyr>ZRK%Y*UD1)<6CTgc*!hgeYYjahgNT$2Nz&}
zigkv3fYb8yDELa$7WKV3cc-gsN4Gl(s?6^8FHQc2vg~i8yx(xlzr!--iOx4rMuucL
z=#Q~Q=XWd7JU_NA0S~`w_2+~1pb^SR>i@Zb9v!f(f8@=Yg>>!K(#gzjU#oowzrYzl
zuMB^)pfYcO%6w6){hgC!sY;TEB>0;ZK#~BGgeS6ua4~WNOdK|9lp(};3!ge#6C|9n
z6J+d1J0bdpYKB1TX7JyusZ5D-N#Zpn444v&Qzb6ym{_ibF4z#~5;dJ;P3fl98A4b<
zYIaYN<wJ}`&C~w@Vsn9!ttLG5uKbCYA2GuRrVtH=#@g3?{+W8?j!aIp<m>8Ad#TtQ
zw}bqGJrZQ59BT|GIjUY^3N({#{hNP%5{wzOtM}?}t^RhliRTPhzyOBHlj^6c>Zj12
zo0b6%7><pVRlM=ExCh=cdz2JyttcilTN`dLu43!tnE(Bk)h19TIN2?P0%N1GpVTV3
z>H#b|DV0l{V5zSy<V{zl;GdZ^-0^Du_X*Ig6x9AE^y=9ey#~C~3B7uDq}Pq8`N-(i
zbN-Rj>xIpSqgT(brPm98Pf4#X_RrF_48<5t@slW~NMk=onMfzfbCJ!1!|g;#`nDJV
zbnJhw^YS-~PwJn|<KL&1k52k<-7-LNb<23Ox@CcB*d|*IuQ8wf8|X04R&L;WFaLCr
z9wDN7w1cWek5Vr^glM09zY}^42Ou5k(Z&8)>Yx0Yg_gTNE|sndTDa8ikISGp%MRNg
z|K)Meglmb9xIY$qHN!#GqDNAHEcW(WXLdr5TmV6OkOi_Vb6bW)G_avdF!b>n*p|lf
zw%?5%`3YT>>Px{`>`PDG?&?ePy?v?X{T69NU+Olo1cl=|L*XZnfsQj>yw!o8TKx-3
zpLVVP3|}ifA5dh!iJKIRSqSH$-+U!}vV5Y!g?@58`bo>>08MO<tZ8tm&PY6<)9i8c
z^{<j~yq(<>=<FU#)pLb9CXUYlj^><4f$iWVY?I}wi{s5)%F~+sPFSNSYWjBLO(}oq
zE0(+@jW-{{8JnGrH?Q>aQ&Rt%G5`Cxm8?efzp;L}^N5BQnd}Sn=<L-xbif%^FDG}v
zr?CDd7CR^DqZ>NZ4?V|@JY)W7%nGAwdf8(GH`2XIIIzzZm);8un*f8QI8_%5`%-nW
zQb5)7=u?Bz#VQvUU!{vxujXwJqk*~j)CNsLue^0pU-oAE?mWY8UrRs06mSbyfQg=U
z5+(H?nSjRD51=YE0w-kDc>EG*2cs+t1CaBvEfrrODtI|Z$qnpHn4-%YVMBsMI>cov
z#6^wV^N=LZk)4FQ4${y9@oB~1M;`Q(+UE*y`%rl$>zfya70`c?ALw>O0yo-0qP^~P
zn>I;kXa5yw8!iw$^vCW}<n9Oq>|-HNz9NuTcN>z~MAGVNn8`&bOl;^>FbP6k;wF@i
z7Z7SH2&L$lVt5=Iuh5D#AY@m}VRaDon19`9iCybUpz0b>bS=WW5I%#y)#j-Wfz3{K
z*vy09*Vw;fVbA@dVV06VxBYu@XW}=uqdoW6zktG>+P@!@RG#sUvVS2X`^IXqNBCJl
zkg?A|n7?5Trbcwviw<aY_u#WJt$UVHm664FIbRQ!GI*h?J9zYfT=v=>w6Dql@efp>
zC8l);hgM~PMGsU==PO8Gl>yoxsF;Lfi@Srq5cODbMlzwtY_JFodjR)=QNLUAu7F*7
zA&3ki*G1-Gz{B~<SFnQJW0?0oh{nMAy9t^1wnrEBc^@|X?o&G9=^|9}?ew{nKY4v>
zeZK9_D83W_VHe@YrIzr2b_W0Ttl(SuKc)QJnp4An+_#5c^zH0nozVZO2VC%ry_MwO
zOgW2T=^!sZbW#6{8NM^mhR0HbIbKD$9`lsuvreKUMVLvTJNVP*rP6((f20m7S}G!`
zf9N_#K2j(!(cJb71YQc&bcC(S1h^e9SS7TsF~j#mQn=5|rJMQFLm#bvI~7EVBMm$@
zX+l{(_gxQ-Vv~Z(rT`e`-(O2IT=m4a-z0x4O?<l{`CD1y+vVPG3maDuUXsmG;$rij
z?7)@OEWgBUx$!I)8Itf{n-c$|F<t`y1#6u)vd>3HkGfm)2ZPjTh4@txEZ5FxtSG<X
zYDVjf(IuwzhKY<RWlX8WoO1&+1j`sxCNa4;48>hXf}|0Zz_y!FzU>l0w<L~AgdgH>
zC;r|xYySvDhqw?;DGy!LFDHR2=BAVEwoanyv8d|X=@%*g%%;@(<>~uS{I}DOoMShS
z?hO7*Si!f_k5c|@ETfY7g(Q3Z%Rh7ue;4&pCgGo)YtvtJMThx48NZ+IBuZ+eFri2_
zUd@HI1mg?az%3gSoqeaXLrMCg^6=x0kuu%@r_$foweiNtj^mA|R{(Nnyg~gB2r+2E
zwXKmaN6sIC;lyM;`nKNqUN>XJvBtohqIW7zN1dMmtEx7jb)aG}Uy&=^1|w!qg{HT!
zVcx2>uqUwLolmYE;=d$)@E1_NYx;0K=x;tc)YC?>TN#^BU%!9Js}gT*aeo%I!WDMr
z&%DJfY}_j8EH!7!vD!k1q(;8w_YnGXJVKv@PeV$4Qt3Cr=icXC`mKg}Q7!dbjUZ;J
zxF}ylUroDVs<v_&vC>xF$)Ips1+I)+_L_=eP`E9{tesCG2**ckq58=l#BYxXWpMKn
z^xAs-tu-IK7igZS(DdL}*+qRO{cFYvc3UM;u>{3`JAEMKU-?{Weem%;-&!Aty)-6Z
z!*A&We~ON9kdr70$*T!P2m2&Rp4r-|cth%6gcSp#?_j^5EPMgyj)*1(6eSQe%fpk@
zQ<)#%?UrY6`*l$tD*T6Z1%D?|GX8|Z)`v;<<O$G-P>4sM55EcjEgEdYp9I>5y8zm^
z>W`HDiWLE=`lFw-_)hxMF8BxTTIbPWk;YVP_rRb|aQozUsJv7EKqdW07$<Uk=US_i
zYOc=ZQ1o_KdSZA8WnnoK(Op<KWN<PkPbib*P&6k4wErRhk=O(G4YX-s$!C&t7P=7g
z-%g?=CRlr?;!m%9bkW}~_3y-tzAc~5{C7Zy9}4oRTuOAuVz};dDJ2OjD2VxQfYOP-
z{ioi(G0ESUKK}>k_JcSyEmPS5>DyFaNSEUuq1@SzqxHOVe(6>44tnSOR^0(&)OGBi
zD|w$CCZA~ugI@y5*Fkq-`ut*e7E$%Ps9O0Pd+CnP5qpHh<@kHRKoViDCWXr}z3LfQ
z28VMw4gp+;zdx-uWq%76cl-FI;};w6+T%Pt<6bW(iG*iLyon->Iga8taWR)ndO;|?
ztCYgO1*lheOoNW})ato{6Ep>@dgk}FRWPPNMs3w`TsAljYX~#2hA@LK^kL$wG9cl@
zbR3#iKM!tWS)8kPmdwS*0A_aagAQ6P(E2)f?KS+pjK2-$3%>!lJcz@~|6SCt!v8~$
zwP~3|ifd5zx6`ju{-Tws^=mH{--&)b{QP)EXY;+^ZKTdkAuAaj{e#A@QGKWW!Nbju
zXMBtK-q*1%fRYrjCCM{Cp7FKwy{|7vdw<jU@ot^bYwz=&(5qWVdR>Z|kBna3z6HJR
zfAVnj>h`tty8regpjT#R^lE;t6MAKKq}Qpa`N-&%`7P*G@x<ZimHD;ws<`b4=;iB-
zUcY^|6MFeN((AyjM@lc>x1iU#SiaD?Jo>(tUgrYp6!O?b{VVHP@9W!%{*5mKMZT4N
zE9GZkMS|EjN&c3bSbQh?w~ONoWj`Nn!*AJdiEdW<VsSJ+>m*9*WHJdwhw&8-ICI-8
zosF-g{-KXs_(7$fVUMpc^}+>JMhT{0)>rhE{c~RY(S53Ai;Hdn1U26Nvy1r4_-bdL
zB>a;MeLr>%na?_jlJRHl$@n|#2VFLsqJd}rui|I+++PJJ_Fy5Z2~wE$-g&<ie(@OA
z7DVAFi8LUzz2P|X2mVV;%L~7_CiWUy8_cOUgVld*TSi`bbzwYYJVjk#Ii)yXnnWhC
z>we?6X_-W(w_+eu=i{Nd;1?K+T^SFZC<`o(#Sk3sJA3R6irI5z<O@B;QorMcEZ)J;
zO7mR66`z%Ce|2&HhdFn(hbHdzp9x!ck!I86F!FVolPHOBe_9FvudrK9OxaZS>=I?q
zCeaY19I<C1NXI3%eC!Pm7aE=d0vct0n6?-naV1L-!q%vE$RrUIMEzKX71+Lq5hg7(
zETYUY*F8*Lvxth?Fy?B#-)u7g^QB&xz5I5$S3e|;r%ssvJ$o>-M%BuJ)OaCw3ghsE
zs@IYSQr7~4)};w*S?ia?wiJKr3G<JKcQ3OAkKQ<94iguBZm`^?CscjV(Ov5Gmwu!D
zO^dRV+8+e$Fp+balPJ0UZ%UzGlKs)0=~vlbwFVRUq7U5uE3k#qukagp;=ekDH9P)j
zZ~Jvozw+o*b5ZXk{FBxviW0ueNtBF#G!_0`oL`js*I*%mg?|b?DxSYcLuU&W1-Kf!
z1k5k?13X_lzt~m&5S@ADQAzYk;tv@Mk8~0x(WiEaq7PXhOG&%h|CZ|>u72Han56lD
zWd2H$&#~WpzGH01`Hqc?-TdWrEo#1F?6;Wj7~6&Uj@P>EuaNnH=X!eDD0#l)u_wI!
zKxgwEbCZiva{%_XfW&-<^b`vl1K70hRTg=asC=iGBxaaf59T~t6t72Kwfg>Qe?SL&
z1O<pHK*s@{#5sAv_h!uMTQZ~7t|zU)UY*Z}Xmu-)M!Si729oDR)Uu`yb0eb*Hq~xQ
zA&)lF^kn)J{%|1?FhTvlnBG^$O|u?b=8!LTtNMwxXC`iHM-uKbAk3oYT9+4WYF&oE
zrHMFPSbZZXWsa=_&0c{!$=zEd$%A#nNe7!2R7>sOy19p!UtIe^1s72(*LV}T{acbK
z3)D1=okU4(ZPWtpi=0lDh<W56dp#2FDtP++FfJ`mKe~E!_qN`5t*&cm-DOk3!#|aW
z^M8)y&ieVovE=}#OC;}j_(y8*r{t-^?$IRwX9Oxi`9FydS`ci2{(9k;QirZbH^a&5
zGlusuM)->kRgA<`XCLryl^@;Mp^7u`=En;^VLd^(4-lQ=2c~aeJ7DZW+<qnHRIUEn
z{=JLiKN-K==d;^7sfFT;fX%lW|4I27Sau*R?;Zb`H?jCm#(!P0=UZ(LswkUCqZ&_$
zLZG+>$bIWFJHaiRm3L~-YxPm&_S$%s<e|01F)tf7uLL6^qD<!GC%K0}L5zT~@UbY>
zc3T<pa0+#dYv?23Zo%Zg(hklfDlFFq^NNL#m8p)bkjK9PfAi=%;qUGp`Ma(Y{$`$z
z{Jo{d;crj<TD|C4&lpJg_yhV#7Ny06pp82Kf{;(GXoSTrD;g{212XROsp>B40IuaL
zq{mv!cm>{a@REZi0vBSfA{H^KwTf8M=xy)cU=4z$_rt>|eXg~N3Xr99K}N{W;Z`fQ
zRfF8ed&r$c?=H&MNT6<x$>@X!qp0TF$(NLW-|th)*C{Oih~-N(xY&1#(rx%HK}*<o
z<_{jS4TmJ%@yLS1$(PudNn^c2W&8zYb4IZvOU7id1vY9plB6ew%F=srg2+0Mg>#0V
z->ax$ZOSuq2}rVk<7@20(Vg0da_}6;AbqoY1KjA2_TfYGQFH3?hgSapI0O0xllI(t
zhB>i(B`<lH6B|AMmog_7-H2(iZj{-eF&szhSLNzPZ>{K+ip#*+TR@iZ7C&~xZ3Zw?
zHfNO-wQ);aKYL4@GsfL{k42G`F8|S0w?i5Zw<T_86{KOLR~nM_PttmXBzwD0r}RAe
z-A*PK`*ft|RKU?GJy$Av21!rsRlp-b&pz|#D|&LBJk(FAZeU}B5#C6JldFS-uV&#^
zv{y;ND{-KTO+ne%LNCDztU;hw;iSoEs~-q)Z{id<k<dISu($~eDb`eA%OQ_(ij8r$
z9QLV-fWBq2HX3U`*9N(YsSNfg;pD5i2xeUT^uyEl@bgh>ekFzV^3f-qkT=Er%7Gg|
z-cIMEHXeq)-L#l2K&Jr(HDJ@&wQ-X)?m-&M#?9F-8ao>|N8FX5F?v$V@&!556^V^-
zH-FLY3LJSfB^_o_aW|MnYbvlFJ&E4kw54-E%desNcYtjCSU1f*{aGc)=jdCUxz(8O
z;hTG=>9Cf~tFBk-5K70g@Sw=B4kdfrz5RLWlC|qJnx)6GFMi@^WTK<OR*yMqeia3=
zcgo|(EVE^iD$?Kjq8Yv(kfm7vOOk+J@gK?%x%@2Bb)cIEey#qe9rjaOGWj$<q_t^(
z>!U4SQ@cs4I}`5(4X{yBTwuwR+yTb1+(;XJJMv=s-gQi@)h)&okppWtg^$|X#FcO1
zb0hEJyw2um8;UwsTi#T=y#kHDuXVM`6Fwe$1TuwQPYgIDbE1U>?NT>xJaBxSdTiuv
zw;lx&jgTQy)?gHEUU~2<anuG#p+b&?20+FJVgp1@YgCFXefglsV-~h<9?$sL<(Z_9
zD@Qzp#-(R(0Ji6xumqv`G;*m_v3U?jyX^S6NQulje<5NO|B9|@+?RoKv|fz1L^fjI
z1@=Ax$G$?Y@Jcx^3p?5z6wD?V6!8TxqwJA~3X|I7Zj|liDXjXSaDsi?w8mbsOWHx<
zetR29@$iJ`*2V)Fb=$)y{)I>MRSb;jUqv=#0FGX=;i#g&ah#Q;;w{2ru~lr0qIr9N
z(mWCE8^4TH2GhYZR#g7#0I7`HfndMZTg<O2fyOw1WTBA+|62<F4t+L;Xt7f1e*=;I
zI4Spjrb9*MOpIblZDD;st|;Va5F+tRGa(_@pY#4#?R5<m<&p|q4VwFxnQK2GT(&cu
z-vT0N06d4ZK}mEd;W)(Gq$J>Dw!J4M^(H<rDKpwzT30SJZ}60~%=~%M`&7@nd7uIW
z=<X083I8`xH`;Fob;5M^FVhJc4qt1~Y9Hq}@Y5_k+B?_W1EY!GKonS+l-N2PQy>Qi
zBh5VBSe{!$1VDp%dQ`ob-`S{mlLc1vBL35%C}uRVSRH#w^Jw9e>Ct|<X5X(AVNo<E
zSxTWE%V6c=<O6uLOZC|GxWMI|>S=oH67)gXqb4hB2x>I57q<8G$}$G!{|=gJdqqGu
zYAsk0O_)&wnr<|jPWCeM&6Ng}K6$}`_SV;NG~B@vJ<~$`%ySwoeFU|^D?9^c5ciL;
zxIBUnmXSfSnElg$P4vQm(f^S<0RsFddUPxhxDesic!?ztrNooe%Q9Ear)HG=$lCfk
ze*+U}+nFeUtOt#IjE*~46;1Ul+#wX*7{3?tD5W@G$Z<2IG_*?Vn+Xz|8DXHCoh-mf
z?SG?c|6sztAc8;!^h$?}@(pwloFNlH8Po+<Q$UkuG&lBZ4SMPhf;=mWXF>Z|UUQH_
zk!JeWtJcrqQGY)ojsgA>pDu_ILc4$?l(|5Kgr*0@K)#IDe+#=a3mPyp7YAD5Ckzn9
zG5NwV@9tL|gXZ8a#Zqt$PSA?YZrAI+sG0-s!knL}rC(Kj_vyxzzHQhCJa>W~#in3^
zpKVI~P#Um3@qj8#fCZ}p*!V<gIh!6o0ZxoZ!-6RB0(>;zdh4rp?I^Qc0#pLB!1fBX
z-lOvXE@~yA#JU?*Pbi#&N|7%97MjMqY&IHchO3d1+UHlQeL$_56c|2GIq2pz1|$xx
zV}{p})?{4r*KhEq3`GD-vcstq6Wg3ZD^5qikXI}H090ML8-%J&kK&H8{q0(<?Bcsq
z-@6~48J=CLMZ_<A&8Ejm0wG?k_?SG_1<nESF4|`kPnyZHZfMYi(;>t+qDk7Z0~esH
z^ee5V^IK<aB%oYMcK|wWuzLu~0yWGalju+zrA^QPbH-w!eJ1R#<M#24j6%@zH~`Ki
zc13&V4uPPG8D-To(W(c@AhE4~HBbMywAae*5<Dh>zIQ8}j(ymi3)JUk%sj?tORIR=
zqmt(@fO}?w2hbLN^Uzw0>Oy1#?nL8Qy{Ki*DYf17k)+(5WA$qqglg$qi3}KknImg+
zn#=-Kdlbs`WMQp@s5xmy5|U2OU(o6=LFW#bW)Y?tglUG}tdyVd-OYqA=4)OK31vGy
z`UTo4=36E2F!P-L%l8!yk5s&K19%zgzwT48o;k=y5U`h$i1YLWmfv@<9O}kW)xXSq
z?L*b&VNz=CtR{2JHqu<qIe(1kTG#uU4}GA<+M;HH=t}R*?*&kLD^?~<ezSa((!8L3
zF}o<TH26bDA5?j{fK8d2r$^C|-0+|(FQ~v>JQ|H+0k1<2=6u(N6{X<p^7VSu1~}ja
z_|`XtNp6xrH~RnK<GzspK@UlA)?Ex@3#3;XrN=IZ01aA<IAhRXZl^vRu^U}cPvEgz
zSW9d{fShGMJy+=hMNYYh4INMJR!_%cj~`UW(`=y+?y)+aGU8jPNBa+CmHmH!Dxo)r
z>QUc;IHBzSxde$u3+I-JS6Ywtf0Lg;Db?Jk3OLZkts9n^gFo;z+4H{y_uYhUGhqXI
z<Uy-nr})pKpM3MA?(FNO9;j_v;na+1yP#gQQHz~Qt!5yCZfWDJQb|8@G=rkuxDt(p
z#)fYxHhh=e)<5lBa^tCtYtGz4w#EU%unC|uZiN5jkQTe2>}33qv?{Faf!o5A&iV|s
zlt8Op^Mz7dIKUPqoXrw&qv6?E#YX=_x3YK)7YstwTzs~uYaC#DHarkh&d!;@Z)aKG
zc+#gN3h)Pu@S})-+C{u=eWe+fRuY>9hHwG7^it>-<E$7`*L|VY)k|U;!6<R8)QTk|
zS=<=pA=T2?p@kr^b<by^%^<<g{6cXLc8vS_nSEIRO7Qiuej3@QvW5*6eZUHBACVOt
z<r&L<hY_}9nFSRvdfw5a16>`}AjBy(4Ne2QNr#4365iqXHqoc;4yR5E-JI)}>kyc}
z1dFdjKq<>yRQ3Oud-u4iiZyN=l&xsuLQ_Li+Y}j?8F(ovO)%7jZH>%|%!)c?=CLy6
zVg-tAP<Gp`b~7t0Pn}a%R%V5EIm$%=@1W+j)U<T%uu?2RO!n{l%*<xbuwZ%K&-?!I
z^HZ#~pEWbzc`oxjb6abgPmdTuaTvPeIbQ_FDpElUNKJDlA*XThd*)`8@H@JN0=%>)
zWqinT7(1uJ*l9m-z}Ru8*n1|Xu}+4QuSLvce{4T|%SRx_KQ0h^M09QlFE#Q|T6Ia&
z{K?24OZlTIe{`cT>4w=2-T3V+%FdM=!fuS`JM+O0>VP-VjjIUYUrp*aRIMM|o<%+*
z0%Nhna9>e=Q8w#^^GaeY+kqL?J)sT0>Jvug<0$e|h5aVw)BFLNtv~*)g-x@5teux%
zkzbTE&{^lpz=?6T_dU|sEE233X}|yNQ?qpOAxk=|5)X=~65;^tybG(+FqFSOV@vfa
zV-V`r-28#6ADT~+^#fCk$m0#?i$8q6wWvi=KpvjO^c#y$_?sT)Dj_Di1XucpDvd(o
zH5!03IUuBur&!G=y@Rq)hiH<Kopfv`%mn7QnT%}o6OOP8&2cB>jPv`(f9%ua59IX2
z@CGXB3I2gb4G|w9NeRXkC(SX}PYsf#&EBn}c^T7Akp>9NiEk6byYDR^vBSGl=hF@l
z!+Y{?nh4+}R4+8Vk3p14kSu9hk)JlNoP3@0WE#~!mFkZ`gDx1!uvo7xZj17?{Ff;a
ze#1LV=SzQfbRAFW8m0|{Yp54l{Hq<Fb3r5$!rSF_rVJP!ENq1v9KM(LIm$tTMRZgw
zC3q268dqRNFhPtf;5?)9&!$H<8fmLG4a7#2XF4;vDLg^O;l;+3Lp*AwLI!D&f$iK%
z-kD(yEH<7B_t@V3in~w@7SZycf>7gn@yS+%60{MrJL*-08Xp`bAF|lcnijlV6g-5a
zn;;5KmI@xi3*OWCnN$=EgA|<^V;n0uf2TJX;>V?)d-q%C^ZM#kY>J)Nx8}=0eRW>!
zoED0${fYTJPf7@>#Z~Ejh&*BNWazmk?&KD&=sWXzwLO!rp-PB>j0aWp89%@wN`2N(
z9)<OPD;21er_DP;b$6ajAp7C-)g)Ry55aJ=UR%QLXC)<aRgkRV_z|hFddv(auYj?R
z6=7EyM$WJ(F`q}1aHnwGs%I2;Sns#ytpnNVQ}cXkK@224wx2(i)qgW9)ArsM0dWfT
z#}4BWDT3-KX=%j~CQh^}f01`Uu&8g9S0|aQcm#rNjk~7pC-Zjj9;&<gVG*=n6ppsd
zn%^~OXmDmb-3^j+LuhG6TjM|#m0o6>h-bk@he;^#H4IaXo%mB`O9B<6GLhUE2B_*c
zTb4KLM>tQWlDsiVLVuvcG^Rt`Oks9IBs5fn7`mH9cNo1x)sPHzXriM1H?eeM=tM@!
zAtaXsYUaAXldQWIL@^~{hKIZ-nMMjYOD#2C`Uj+PKbK0N!cFXB2+b*|{>5V}c$CjU
zH`We4cK^%=6k{xfo@kwdb$_99_`p1L3EyJfMBA800=fPCvPmn-dcT|%dY(Xw9a?@k
zWyLHJV}<6rHj#${=u*a$;0?U8-xwgsJjWfRj%xz-K4$6e*=R6mEYxj-3Bipx#OxDI
zBl-3cPb>u!W;7qQpc=81AqBRpEm|SOoj?U8U`Ug3MPuEXRtd8t3Dvn6g@hcW&hq|r
zbouk5mQx9+Eh`C{S;a~u=gk}<b3Zhn<?glZ0CfomZ>I~GK#kL}5cI)o{F{Na5QN!A
z)PllNRrP!9p0!{ST}t&!x_cRyN&G%-KL0#VI;;#*Aht<L;>(p}Yye<~0ZgavoL>|$
zDd>>|kY6-=G)?;?(7{pQ8arb!d5x{E8Jz==G=cUrc}aKJ9jxwM$FsWcV-1j=vV*sn
zT)r{JZRL*8Hu!VV+R2dx<w88T38x#Q2M!J<zPL3IQna@dLrApKFSHND0L21zR~L2|
z1Ixsm7A8;r2f@3s69TNlDw*_IxMXGmaa3~403fRfid!J`nAd_Hjaa;p=KUD+q=Dwu
zG=8_{?F*$*mw@^o@IqD3GcUxtS-hVBH+1JV?uNd=!(ap7s-$6tZ76w8;s4oJ$G`i9
zWG@(pO2fA7!+<kvV;+q%wESnNA-QbpKt%Rww@BI9UaB0C-5+6X*_7QjkFuj3+FACn
zr+D`FW2EdfHZpE$nmvqVA1$)8-ij+Mh-c3qA!VmCS`6RMyz-6cy;=59k^M<(^scZ@
zJo}2*r0myH_M)cQKif-{-{j<#XVYk|uy;WO?@RBHva=0BbDL%_V%c91*}nq>(7)i>
zN1C#aXqx?Lmi;!C9Y@u>!lv-7`<|ANdr`&PHqCl`4^=#zXN^GCA3-Ryt;uD<hD?R`
z9&H;zX9mFfLE2*&A?^cn4GOt#GRX5lu2slCfy`z_@x-G%DW@m<sEv7S?<r3{p(k_r
zlX&IH%k-oVe{#F><QaN`MK6>VHj+K*Am%b2q$lZkV%QLfya?kyIUsX8#>=_df*+W_
zM}*J{J86XnbkAUCd1vgA?Abf_{3*@p!DH8<qH3Hia1f_l*)(T5QEHvX+v-)vFkRCt
zuXE5yt*}ExqE<L5BG`GNtsY;eEf_?_62QExaHkbM6Pz?;$IKoSVlVjc2sg2K02eF*
ze8Q0PGk!|QZD^(CRT3RvD%9q!$DLMqZ>uEFt+|Q0b;Gs!^x7m+wN8HoDOzXVqZKB$
z_UO5}=Z0rm6z)7Ry!b>1=h3#sM?1IM>pV8R_*k2E=bcA}w=0Ef=AC2O3e#8{<LxqX
z3eKZi@zD+}cbj(g$k*-w92iee&9X6l%X}FVL`hc^A8mt@+SNCffF>U(!RW`*Srl{$
zOQ02&79Y8yxb6zAaI>qVwlcDK?opCxyDAteubCoOr9c1%5GCJ9xBs(!{A1()iG5s{
z%k0Au5ex(A8PT$RBn&ys?8EN2k7$LD#3ASYAJ|6=g>%c`R>Jg5_OZ)vA9mI=RPAH-
z24){*S8ceJFuQ7Zn60Id(3{#v3(&?OUeeJk2>xiBc6%F3Q0=1wONWwMDyX`Ys$^*&
zoD)T^N`Y4P(WL)645h$i(0ill8^l-iWmu;TeaJTS%%l70WgTY?vpMu<u+Sgun_HiY
z-`awWMD?WnjYY1UR_J4SQXBO6UD>_$_)^XJFG^B4sJruc5!!lg24(}d;AzfL44rf4
z@QDJf<dkGh(_<>J;O5hd8;0x7vpzj?j~<NU<@|0CzJ^B1BI=<7V%LK=^PX1xuJp^n
zyY9EP6fPCwgJzY`0oAGdlS2J^G0{|CLIT!Z2l&41=h#oQW<FR|^BecGrwRhNLhEZR
z?w|L-GrteN&KsiK{!r&=XWg8vzSIrFI^3qr?sOMk5Nvjw#+hQO)-WH2lvzW02CUR)
z_H`8(*R^q06j8@3yr7lyr{T^`xdmf*5vpyi5=HpJgEDVl%S6I}o#$F*4xw^7I4h2b
za$FU~=h`$DhBo4?$SoMrid9Upd1E3g)l(1@?eon&NA=5mZ<r6hD)V3dYPQZCMa6e^
zR-BTG@6cF0=fRKRC%0x`YJ>c(h@>F-G+Ca3ej6FjE|^Zv<(jhtR0cEaL^g)yDa<(I
zblLcl>|dzA4s-TLCav%+_OVPWBDXi_Mx;KCQMj+9x-!vq3USck=`bKUzIZmHeV15d
zgdiRkB|Ga7EZ>F7ldF#4jJ3bAI|q%XCJ>CjA;AvM#Ng!k(wRB<DAS})!6S#1&eZgB
zwjBpEM_w$3`bG{pFyo}|Y-pAKo5M4rRdRgMOdY9{I<-o47O`-M;WW=uy#?u7r*A~M
z)|9S0OV_$F-AaGD_l%9}NlwN(ep$mWtN7(Zb`diCzm%W7sr>q_|G$#oSI_<bLw@<|
znEYn*OBTOO=a<LXMaWO_mznoKoObe+n8w5(YT(1r5`yMj<}9jo*0s}?(CJpO<Q^j6
zfbfM5ci4c(sSDa6ibmDOCumzV^bc2)8CTzld6Acasp8T6Z*zEAk+4m47vKJlv=I`#
zB29bMj2t>uLLS%x^2g(?=6`d^*|kuI1ZSOn&b1!B)_E=@OT$jSSZvqwGmdBJCyB;<
zB^So9e3X{HXV`LFGLBVmgK(~XLaO3oxU=Sj6N)N&F&jfJR<&mbiTPaTInOb-qpd-M
z$2NiZiX2R{4ocA044pAK{``#Fle9HSGg?hfiZ9LVMl1C371@VH-Gq10);MN_#GIdu
zLmIJTD{klH+S8LUq5Dd40nJkTeTdQjzhpK|v%(4{!wj@}*qepHB^wcM!J=OL_M9=g
zYX{D`PR49o@wws2F%`*Gbz?jo@Oj|<GarY`Ngk!G=`v<=BBEdi+)f%pwcM8(iNBRI
z){XI`x53=uIh2%LsG^QQjmLx}#Z*$2BU-F*&UehtmwZbXGU?{!H-pt0lMX_By-0lS
zp{pUhWSr=@Iz$%TF|{Uc$Li3S^Hd8GT<z&*#8%7T)ohK3n2EfYtcqto!er&1@IvS)
z_oNp>M!7q@kQl!|%a#;>Fw>qCzr|8kNikcnD4O1#>X%qs(@X{LW)(D^`o=FN5*7QW
zv`1|oP548EP5Mii3!}H{vB3_D!0zeTx>2JoWaA&tv*<qU)tqc_>=`;<Ta*3V-*iT1
zLSlT~oO`f9kaZiKgYF5*#FjAhfPBOCsw29y7M-9v|Cuf^ScC9y-<q5RKZ5g9FchSw
zVuv5mrQS#{#sR8>z?TB&jaRMncg}9>j!2B(mqTq-XYG-9h4{eOUotP4=Es{Wc*55t
z8dme_<whoU5_x~3PLJvwC_<y`y4ITWdo*(NKG1mBW<UBgy=xDS)Q#VpGbPzosmIhO
zyQ=i!dNhiv<f?OHJY6)lSiS`L9G)&Ojdkt9T5GFu?k<<odTYoy&xAKa61DJFS|>PC
zI%zT_F@E!$_DQhX(4_eNvtb5R*~`axvbA7`s{}aNOZ`1R;fp=U<DT$*=-hfAx=6Eo
zC&g4be`?U3M}pfGCwfBKL$WCW59SH!q!NsjwIl;{22*(7%J1v^wnA6MUNR>_Jm7m8
z#DI7KSy12Fg)@So2#N<dBei-OJfJ&lH@kHGo-U|1W~OLm3~B7f>yR_a)n6NY6oHPw
zslnFS>cuMFovJ!07doJGx_k6@oaee{wRRRAK`E$*zv}*7D^wXH0qzS~!qp^(i-2Ae
zO#ZKU>jj=&EsXG}i_P#VIb%)ny0?g@&0~8Plr>va*pBXKc#t-~JvGjMROoZh<pM%m
zun&JB+SmU{67Kp2U0l1!*X+p|uDkZ?F*Rg}%mgc$U+x0Gd_Z&3DjqY=qxdLSmrm$r
z&KcvGK%RJy?y5)j>|#CsP)?_r59zKNz4$m%^^A+(mp;^mh2DdlsZiLyJ-#@-BREA{
zoCb|Lu}KR303%tXP@iBK??n_ul9AFIKYT?t=Rg#3)$jq!W=26z*JFDJ`_{EJSj$oK
ztY9gc5KG6P$$koG*;-|L#WJFy-<%k(&C8z(xy?Pv*9unhbrBE0V)ixj2{!v0uDivf
zxf>`YEd}jZLzOMFjYpDT)bH?hVkrY{CNzq)ftzq#*-Zr97?<qg+ndnMAy?)Jb6-l+
ze`37^o4;rho=gUs9R4709SK+$cCxa?t{>gAEGn1M&>DbIcZe5>rE+&z^^<&Ncj@C)
z1g-zjmVev53?+}}5-5B$Wjpr(p-@Zpg!N)57>L5(U?fStQi1ZwP`LuCs|t0hGcnXG
z)Dj75bw3hT%TQO!P+bMoOH&lC=C=%Wn*=rbB2a67lmz$@lu1+LnhMpsWvIIQ0|NZv
zT5GNxGSqMZwcs&@t7kiz1;{PJW@8q?b@lW`pnm#6;%fIa&Q&`VYD_aw!YqzT0&H^;
zs7x8^aRD`NvclC*I0m%^vzQ}6z1i1VfS1Tn4gcg^wN{~KwG7o$f{MKe)N*k=5^Gm4
z3#i;j6|S_Fp^7E5*cfBY)nFMaT0mWRM1gu=Yf*p?NKg|m0=4;oWETIO$_4nW3U#id
z8A@2-B@)yh(bil&C_{}GP__S1xZ2qal(4|cNr85icM+&R_e)%zc${;Uu0lQDGSm|i
zRQHQOxn!tp0d@Leg{z>Jp$14$pI&1vz}_-cCjs@O3N<dQMP1e27ZBjB7lHa>pCrKd
zr*HvQKcsNguNf$zt7Q_@zCPAm=`z&K0&0p1RocPKm4LcKf_ma2P(SXKxT<`NbM;G_
z!qvo<p?;qj5MZl|K+TY$9u-gzt5EM<V&+P;tAP?%uU%~|z_v0}{bbJ7;RhA23Yviu
z0<4p`>UR;SWqTw6E)r0aRH!RjhI&<kDvq+|Do%!q5>WdeP`D~=Zx*27YJdcF_eG$}
zzL&WA`cW>xyH%*MEko_NH((akS6Op)pA0olK<&C;;p*phEpnADLFHZq>eOzDt7DIF
zu2NK}=URs9E<ts@2voidHA_Hko1}2nxn-zzsR03gbfvWbd&p2>0&0v3<p?zkP_!$j
z1U393P@jpuIScsj{(}p!{62-NTbh9q78ol*?T)nODoKXAQ9vcBP~W#Tb0wfI+!GMs
z;}?P2zf&@ctq*gqiYF>uO=}tI4GF5jZq3z`GSou?>J}BMb<0pUN>DFf1gf<Rb@n07
z)wlO5T;0&dEI?rvD<!Dti$E<Erv@>za0{p*D%8McpoFfHC8+;iVJ*PxWGK6U`YKi7
zYO~GEm4G^acfc&hUj(Y8QZkFL(zpNzs8A2J4CR!dPV~0s>K++tjDY&=o&Z;F+aRK1
zN71v4N+V;JZTf0(<FUC|=^=bmEBjuHc~t#XDQCt`16gcb4V%TRjP?;C@hlsSmEB<v
z-cI77F|nuXKvrtwczP1;u%yBC$2%mky!{{-%htOCbw!O<GqKR7Oe&nO=-Jw{!uil_
zPp^PLFdxQ-(TxbnGQv=SFkVGi5lcGuBXniex2+l%&~CaF!int?4+kFLJnXwm;o)N@
zAU{GIj&Qex(Af$hUq+ZE5FStwma%SuA0d<@{5>|n!>XPZQo2e;=q3<;o}lpX4fDl*
z1gz9T$+mYTgmG2~#oHt)eR)5Z(o_}U2<rs+5d;sqgmCh53mzVn5ylIIQ+Fyn><^JO
z%?;J|yCWc_7pxF2h!cUBYdSTF^N^_`tY-aNKM(D=lwOe#qOB0#lo1vRgulltJoIRe
zhnpmXvK|&vikA`k354fWguTqY`gstVK5|<?N{?6}?A;=1dh>l;N}(#ktBSP>Db14*
zT3I1v$Ouye!ooWgDJ@g1RoK!X31NA63n^VHBeW3+T~vf)tz}yhZTi5NfRt{rLil{M
zB&B~(<WhPgMd9IY#q$Y0<VpxXL|E`}yNobGAlOxe*@|BhQtBfiJZpvU+a`&JBlmJ1
z-oIVp;pt#mN}|PWO%6yY!V1AHBg_^E{Zxd*SIP+Vk{|rivl2q#WfoG3kr8?dgw^8|
z9()Q9Leq8$VS*Jxd4(jUZ&JCGhNuX4Um^3*ne$Ml2c%Tf&4PzVWrS3Lux_lvLt=A0
zWJ?H(tq@wv2xsr%JS3?I9UJIPWWU!Car#OLp}!Tvzse;ky&@1cI}{%FDV|SQYsKh*
zl(u%YkkW7&VSqqLQ4u18WIYH?XG#cDtq^_`r!BGgP<c0((w^HC9ya=9DG7w05<;jI
z!gDghlLBFqiZDX)-om$T9u<(%`&}%g)LlmCAP|m@QFz#;NJ;pm=@LSc6~da0lBPep
zi%V&Wig31-tOud#ZW6-LOD%Y~OGeNI!tcon58ayMVe80%lya>Q&TNo)I6i^%kgg(J
zp+uneyiL!L5PDl7yeK2&350rG;o*qVriGNEC4}!fTS)188R1HSkgFm*5-IC}HtNH-
zZchqGX`&UvHZe|M?V;#SE~Pdq!mEnc5Vn*qA=GuU;NhP#!UF<f!DvNFC5onnlzK=A
zORNyu$q0Xs=R9;)5ptVDsJJyCr9oB*ACyS8^oBrKI!fW;gwhibw)CWguru63N+V^2
zAp)VdiZJqgGk&RygfQI-;TSvf2zy6pQFPB8TuT2Qsqpai-!g*G^fw~{QtD`hFjq!M
z7YKb-gzo2L1ku+>lMq&F7E-!GM(8XMRwXGsyscQPu%$K<!Wb)r{}xG_UX{Y7bc2eJ
z)EvUf#DJ8Hjut%JCnJm#2;beR@bJuEvXroKkJ|Kj31OZU!Z~(YlhE|Z+c^&-R0Ln0
zj38oMT|$6|C@X~5WP}$4Ld6J$hxB?GLD<sU5<*Fsg_H)%2+;yzoQjax91lqnLYfuA
zE_OzfkW$$=E~VXx3J<^3$~*`u{W?4#rG^d`JUlHUJR%S#st7?!ixbwmR6<y0g`mj@
ztpvi61cirvY~{`0=cCORu%!nigqy4oK4B*_2`Mcf%cV3~MOb=4mXhergh&YcF0qi(
zZ8E|w0^#Ivg@^UM<rpVse?Gb;podH=1n+lJoBqMUd6=Oh%vPdkH!h_V389M>!h9Lw
zS%FY@i^4;1r9B8upB)z9VRd^8DP1iiL<of0D#ERb*AUkFZwVpA3Ze8{NlJycaVdqU
z2%nynH7(lo7zyF`b{0H5BqK}^2rmp%q!gsY2O*_XLjzJ;V1?lOM&hAn4Cf(SMR;HF
z8UkU7gwWRt;Vl_qu|QZdRN>)-(jG)lV5o#p5o#f&n`MOl0->jh@Z)J&4<d>ly*VJI
z$yNya#R*HSC$Ke{OX*#FRzTVwb)iN^5VlkxA%s{VWXT9q1wyonkgjN2c#ZxN!n<uP
zq|{YL2o(sQ-lXs_{CAlL5k-HvDIlc;D}*n^nM+Jc@9SJjgH(ixr(^`7hvy}PLv1X0
zxI;!r5(wYmBOH<*o>Md}^bjo}WLqKpu|{eSM@MrW=rbP@!kd3I!^58VfRuVzA$Vkj
zT!BzFL_rv;_$ATevL%GIHVY|TD<kw42o4qD=$|qV0^v#t;chF0O@)$_z8l4*v=iUe
zlBD$KNf|-RoKy@6Na@cI3mzVm5he<RR2AVhMGr#LZ%YU-Ss~bDgu0QOheJ0gJlxzI
zLXw0KYlZOMSCW*L2!uyegon?_QWAQoxiKK6?X4}Olqe$%5(vKzR(MEJY)N>Hr4qt4
zD}=*eN<8dL;!>KfB2+0-5;5);38B3eLXM0uT_Bttr0`Is^eRPs`1yu_lvcE|kkaKc
zLPvp+ts-=3j)xZ{gi%%qUyD<QnCDx0E0<C$72&Kh7Nt)kpjVk7A^aR{!NWZ=!We;2
zFi?@wekF>AafIW815$e43gNHSlBSIjoQIAo!tcuJfan=7kPz%v2rtVB^8~^x0~8)Y
z*k(w7-&@Sh43H4k1zAWbPDY3l2t8DUG(&E2!Y}O`6p+#+D})`NOHwLH<WgE5r|{6K
zIfQu<LcNbZO~Usro7Q%pkP*@ZLLU_&Ux{&|P4|-!mRccPA|o^;a2{61Dm)||m!%|n
z0y_r=q;!K7!iTFQDJ>HS15|_$t7Qb?HD*Z&yBjQ|G+IWuNg%AfUg2R}a|pd9gc(){
zzkDX~ux~h*(k&`N8>KfR^sse6KuY0O2u>LxQy^^Uuki4f5~t~VEbto7N(i4`u#i%u
zjL=0Oj8PF%f06Yd+Jjv}a9AO%|5TFF>RY&!Dz8&`XgDS#2wN(P3rOkLzb$yUUq(m~
z2zRRpy%cK|y~;cZp}-2^{3j9*zYpU){LoL~VW(nCB2M>}5c*glye=aw5C{*e2+_(Y
zOL*_f*npHaoVSqDjWR-CfneYpHd2r5RmECG6wQ<n9=1aGex)R(ilJOePpSwXD09Z0
zxV83_5Q3}_X37YY1;U?w6&?;Maa!<Da(zHbZ`WH$sgsNlA`qTc5f&=GRkXM%62ed`
zgwH;fr1b91TuMPI!b{3(nUGRP3E{vw3m(SG2nhmVUW_88^~yL-Na@S|0V&P0LZ}u;
zAF<xdp_@1l9aMx>N98sxTHHhlp_>(gOGd~R2roq|JlxqFLXd>;Wu1kTu8|RX2!sd~
zVW{HyL<D;Ox`33%TOn-xP}20;crK;4uTgmDsLTn7KHn=6!l_yd9{wRC+$|8IRD>m7
zSq~xt-6SC_v_c4$5&j&)dHAT0!h=h(CD9&E^$SR;pB2J8;#1trmR=GFu`0qm#d{0i
zS|}lGK5HSRVKPFjKq$Og;bEKNy+wPNBq2<(LOA$=r0MN9aw!c}5x!C8`84kNu9Ohk
zSRp(kBTN$rB~c0w#YbdKi_z}BYXf@t_g@xLx=coBFA#JU;rJmLLA2@F62b^8gs<M0
zq_pA&E~V{PDLm9GnikgDPeM5Irv(pp$_S$b!UPrJH>EuYP4Da*kkV``gwy|#c=&lR
z=i$JW3J+a=lBFcPMuCLT(+XjcjPSfbNK+BMRx~XT`b!AkoUxG7buxloARLcWczB>W
zgxxU#DWzH=Z27k&rFDb2l%_R7_*IsY@EXrb2xn_7cz9e!m?RKt><SMn4$BBaN_Gk1
z6)S|cGD7`8&ciGfVTv+?CA|0X=zx?4SRwr9JxNMS1wz9W3J-rPJ!8=x7Dxz{r!Ay(
ztBi1iK*&=ORw<rO@Gw9^c+v{tr*|bDb`RiEYOf-U{z2A*-!EMgkWvRLggG+841ut?
zw<4vjKgtL~)3YUnk4{-gsh5lpE)cq@2wjx+AR<tdgrHj?eETm+N}tAYDJ|=z@NmsR
znFk@I&3yt=I{t?R5BJIl4uNo`ijb<b2f@R12_er4p?0~%!>_TNhZQ{)9vYPRAP~Aq
z2v=GmyecCU2!#GB!jt=CDTxU5-PHjp75#1@rGYX+AA#`Y<q8j-nnQS4LU_Omq3Rt;
zN*k`{Qo2b+xOKnGgV1!Sgz)!o7Cby9BRnh+ih3wKoKScW2%km;r1XXrLYRyYBoIca
z2=3+(CP@fGtPnnaTawb-{kfF3c2{_)*)2;+%sRA^5cZt3kW#XYFjOFnR}tP)^dP*(
zimL)rO1DBd@s`BHf$KOA`yvz`8k9CI+QT>rp|cf2zKk$SAUvQV98vTjc=+?m01vCG
zEu?gnjL=OW{Ct_h!-(d1ctb)MXN6F_Op?-<{kW8-stCPz%9<9lKe~i)@>dHU9+VNr
z3xreHZ6M8SgeoIN(bqT|8IaNoRtOi~lz2FGE$1OqMOacP^U#X-?*A<zL|Y-eDI+Wt
z2!CTwhMxzwZ5C1S?ov6U()&j)+wL52;IVD<l6b_sOXw&z_eGF%3po#V+Nz8X=Y%z|
zZZMs0gx8Cv@Zm_<n>|P*{N1H2R;u*wQW}4E>5n%gX&mj#rO{ogD{2%fdM&(g(WiKy
z70%yX>cI-<^V|6DlX!PYAb4biT!HWoX8Qfo0KzgMZ;l|m!=DnuS|eaHCWLEcgx&(-
zY87Fu=u>b6F-~|xLb%%sVbkl9l)j7MQu-LX^d%l%7ygGMh`wElgz)DH3mzVm5he-*
zOgG91WqY_)as=UjdP@i|Ss~bDgt}<X!y4?;mw50;8ij`_2_e=B;k~7jl$HpDVJgD6
zRWc7EmhJ2wXuI2wTSzHUMi?XzN-?7*@vuV7=W!k&K|Hk0k`Sg@Asl{9;$i1CTuR9*
zLbO<6<p^TUs<(vD-U=Z{Mwl)Tc3^Ey;$ge!V{-)I;Wk7Bq_pA}3n^VLBXkr9cc};t
z(R<_wqD{XfA&jy@_<D&XrImfSln%n}NIYy5dq6n?Vg%`7pM>!9&lWt~BO{Cv2oI?U
z&o+mUDe2*PD}=vZm3T0&<~*F}sPNDr<}Wx8kRb7pEg{&g5MGuM<_Ux+RD{c~=KJ<I
z0(19n+m#Z+x?>hnijxtd1i~4tB}jVk&s1>)cy{8ULej$|D})`dNKz_^;!=7>MJN^P
zpBzEVZ$Bv^)E~9r;RzWbO(6JSkrEHpV!Xx?AVK1xi-fS$3gHqNq2VgdL%xczRrD!1
zf|$?y=CVMGyTJ<K!<Qu~EfWZrs0df@l|7$`Kxq=f?w>5AG+IWuNg%uk&mc+ZvgUYb
zBO%PNLipt+iHChxaw%P=B0Q~l4WWk(-2zeyw?c5r2$=%mEl5J*;VLl)!}TD%_f!et
z(<2sAij)z$2!yLtgn{C%O^$%^DA`h~gy673SpT9VrPYyKN*^NHOFY~w#?6Ygc9al)
zJ#4|l{W3y|K)7B-cxJ0?OJbbxW!Hcn3ak*$FP3=t-OhQyiB>WX1I1bi=RvgT7bJu}
zRtT@l2nz(l%__nZ6*3QE>>n*5Y&c{gr5k00z5;;`E0gr_{r570h@u@OgomvVzF#Cs
zsp1MQrO_(FN59Dkq9@Q(LI|=#m?<Mn76{wWCz5#hPU(9KJ=AmwX!`9REu_>*MhFoI
zcd7_`6iuVI26)?Y31O%e!e?S6!q$7<?aigMAKH|7_=gz#b6XO67$+ed_`!mQu`)t}
zKzL9>aNGJ46{D%Xj7lRSmu>cR$jD=x!-^K8Db^`Be+lB_xm?q1G=)$6haD*+wbD27
zkvNriQp2`gN<!zOsTfwOG@44`qp5#+B%67q7neph#xs&M;x}@e;e`vkpT!F2qp7V2
z1Jb~$K4LT_5QfVL0|Y`V6`}7o89|IhdP@jXtq^`(An{Pylk-r3alFLCCB-sAFt?cv
zodZ@GYK8EejPRsD=%^z6TqGli5%^RI;r#;^QtB=vbPx!ypcILRg60syC4?j^gf(tS
zN*`U$rPM=3h;9y{uv0)vNB3LsaF>jr3xws6wZuc-dRa<B50fN>Tq}e#FGxHb@4<QK
zqasXI5QH9DNeI2I5MGoK@&v+4W-io_T%m5;lSD1bz~{;73#~3&;WXB6%lDCJM7u?X
zAZm)#0cSUuHN$sN&*bp>+udQ&tn7^5C?E#~l-X)7W9J;H-(N-3evpc%t$3I?2{j@c
z>V4HXlf#z4$bjRupl3EbW5*M)YJiUV68*OepeNC1%&B?-`u9ZNjIYNwq5qfYDQ5bA
zh`tBkl5UdTL-a{zdIr&Pm}JxR_Y-}JnLd)}ztbUKYCW$bI!?!>lbP=QCrN{|0jEjq
zb)?65U9@Sovwwq*u1Qn+A);Sqrk4@@Ejo-{h5wZ3SDEQci2flRDzB!WP4w%{^vOj3
zs@9Z#9MNw!({CVpF&&1kmfxG`qs{a-MBnz8DgE!~LBG>X-$V5Mf11*-Bl?48`ujxx
z<%}u)LZbiEOwT0x=^9h|2Z)|!rjH`}h0~_={fX{0)4LJ9otfTH5BefHa#oewaiVuM
z)3+1-O`N>jBz+;#BhB=;iT=Uwru6fOew~^AB+<Y4&6NIbqQ{%*w-9~(NmKehL?3CU
zcO?3jYE$~N=Rm*1Og}{Qy}u&8$JTjDpgCbimzvXhdfbN|tK$2B=zn@m^hHE})=bYL
zdXSm^AkpU;rgBCTy@Q#4J<(q}VM>1)(Id=sUmfUgA2+2xLG&myeFxD$qBHzde%BB^
z)=Yng=!JB6otl0=(TAGpPZ7Q3m?`}|MAyyq;Y8nl)Rg`jqE9f>HKHH*$&|jf7W6bT
z{V>swA2FpbC;Buq{WGH195$tYjp(z?^f^RtIAluy7}4|0^xKKv-b}xd=!<_em2(Br
zyP4^2iN5RyQ~E#7f_|l$zL)4L4w}-hCwhM~{R5(ZdBBu@5z%il)3b<PwBMBeL86Z`
z(?=71>poNZ>xn+zOuvli`}UgB`~Cv`0W<vs(SP1!O232XQ_b`>L_hVtDg8S{&otBL
z6aDYqru0t{{dqI}9-@bu>BEV>aF?l^Ylz;(OxKA1#!gfE+CM?Jo9Ty%{(hAyeL2zl
zndzSqeRZWN{cA)YVy4d_`nnya^p6oe$xOeU=$p5j(%(q*6f^w_qVL&eO5c{~lg#u#
z&VYV&t110nqE9i?*AxBsEvEDz5Ix;YUqtl!&8GBOM9($TA0&DkGkrAC7i=<>b3M^J
zo9UMkeQAX$y{`uJ-e&p<qW`<xlzs=%`<m%%h`y@Kl>Qx}-(aTCC;E3AP3fN^`Uo@q
z9->!lFr^<(^l@hTHALTCYD%vWeWICOdm8j3C8qR;i9Xp(FDLrRVpIChh(5zie~svM
zMW*y~h(6m)e~joMX8P?!e__3;oEwQAZl+&B^d;*|>Dv;$r<wl8DbU~juPOarqDPzQ
z>xus9cc%0o5PguDzKH1Gd}~UdMf3zS{XwFaePc>Ln&=KQ{d%JB{MwZMGNPxN>ApWe
zKeX1A{shq<G1GSt{ns_7^lOMd-AsRn=w}N}>E{zY+f09o=&j83dx&1}m8qQJMDJ*(
zUqkd)zBHxRh~C3Yul*hL<zJZ6A0~PqGrgSXD_5J+e@65HX8LPHU;DW!{T!m-Vx~Vv
z^bM;_>2D|c7&HAwqE~)qN`D2>?>5uh68(oyP3iym4fKc2^u0tkJ~5?VPxL3v^bd&s
z=SoxhMMQtrOwS^EkeU7<(dT_^DrYp&JDBO$6aA%+OzAHpdW4zoI|=&RADYsiAbJ$h
zJ+|``1H&GCgqMar74&%K3RAXKL{Bu+mlA#52d4D7M8DZgpF;Gt@0-%65Ph(jK7{D2
z|6@vTC;IhfdMMFX{@axPR5j=^X8Jy&zyF>oeG$>GGSgQOefhhl^oxn!%S@j|^f&%x
zN}opb%gl70=&vj{rH>_gCo?^Q=nLO5r4J(dC1$$uE9eDpo6=Vj-Dak*CHnJknbI#O
zx^J0@UO@D0GkrSI&%J3%pGx#hGd+RmXWlTSk0$zbGd-N>zrAisU*`pVs+oR-=qHw%
z(pM1u5i@-i(SLf)lzu7EA28E%iGFa2Dg6|pr-E*DJksFv-utR_Xq9sQm^Sa<G-uk(
z8Eg4P=}(A5`EVj1{!0j@lZMCp&pXp&s&voO>WRZ=Xqh9F&LT!D52w|T2&2~@7jU8@
zJ6;Rtc@d5IfD}5>OPs^@(HJ`P3Z5c-C7-Y62MP1FkH%C<hr!8kpTr42hl>iwF>pGs
zVoU|YE)AT~)r8+wE$~~OkcKC0_FTt7!`UNn{2z);1v@w=cmJFLAmRY#@&q=y%pL|;
z;S#RLS7mk7T{`N}Sl4~Yf}@UNHQ7${)6rKGfXCMNIx%^T1H&K@a)@gR#auhh-a~T!
z8R+XLQbC4(2)qyEyes@<UJu<x(D``bbUq%A6k|n76XV9;4KR<!<I{`_KQ{QPzYT~-
zJ#SB&mqd#c&XZ8mH2SJJ{Xv;f7YP{WGsbMDH77d`Ma*aik!blfY(;?BpA?mfQ!g*k
z-Lt|S?jSwBL0h;D565EdE$?kg<r#EoGS1?}5shPAo0DVC;nYG${B~{8F(&xw5jdq&
zo4<p8@H0PSYQ}oT_>zlp?kA=s9g*7|!DV{<4sGFkNaJvUOIJE{51R@%Hg+U7Sxr$D
zs0G!*+1R_XX6mj(x(j-ArG&e?_HKpsgq;~lSX>C`k{vx6f%Aqr55WiY_{~{8kO3v(
z{Kw!^q@*+wVgk;f(@TxI(M-Rr1`epN?ia2;h$%hFUi}|quSjstdl$53RIr~ow)9R?
zt?{8)h=k%q!(fdimd;2+JtttlCu)zvW`d39A{_2pLmlo*9P#B@cP7Ww=`jtuZ+qaV
z@7gh*L7D>xFURRFT62U*9Mt}d)nSbyL9M7rh7e6QHpFYdE^w-9^=6|ludMTYg0?7?
zti_|-^VnH^<)sOvjq(z@cnj&7YmaveyUI4U^zTL_*oODF3*h+`oa5(x2X~UK(XC>?
z+Pt*{;5->k_GTx0Lq%zc*54jU#;9)sX*txm9p%w;$i+e2+<_Y$37!n!RFU<#9#gEx
z;PmRvbR?nftichWm2?Cs#F~I+I{Q|VErd=*vQ4$*IY0_G=6B%bGL7)1SJaCwCZ(|(
z=-v+9N0;iZ&DCp-+L5eXt~vl7uT_20{}q2v2|@n9=I?_`B>uR2_4Ak79DkQ_{wnuh
zl)s(aUrZtWrIG&7PT2Q4{Qgw<jrc0f^8(VwZ6Zx3FkiyXdWGrN>M?utxeY;hta&~`
zeH>_Z)Yb)Uft^5H*|ZOO65@w@I@&}6+Jp{A6YhvF)8^O0za+<;O2$dSzD<h9*yD&V
z(H8C?|KsW@H;<RwbD2zsZzGoxK_LyMG6bfg&3}z$zyop{VJ9whVMq8qLR6TZZuTE2
z0uF4mHb0)yG>wimI=l*6;4Cz1JJ}oxW}co7V0JHv$_3ZDt3#A;4~Y+Lz(LEMw8sE7
zilq#xlpS@Q8LC4v?&lDA8npQvSw7I<coKxCf^Y|)O+lwS{&e~v3R_{i3ylC$_vW&u
z%a4SlBO({G?5{*Er7LVa4K_XnHcs(}>gXQ)2^HiX_9<Q9TA;0LMD_V$_56_AyrPV5
zRAXR@%JO<v&*xN}+E_qk<A6xQqJMNxc=RuTY5aQxYf^8qi|*ph9&)B;zw`+AuhYHr
z!GQ4$OM|0Fy)pE2D$i1NLifBzHbidF7|BXUT}f<UgwB*^hRNjc8Tk>yKv<@o(m}@e
zwZa;_6Ulq+*#pb(MBb}Odw!S7Rr^aQL#HyRuoV9dYgRa`mHqbECX3G_h8q2n{`O%-
zdn`Hv|LP+;0!)C^5n!Dc!}UJzGokL(XF}a!3jpB;LAJ2i$RGPR3+ucOwb;l|ejDAW
z{)yz7n$-V2vQFp8G-|I1*YpSIQyTp(i}Mf_0;YR9Y;1qF?r*Y+y#8~R%PXPj35;9-
zlDc75sW7WFnAKrDW(zf8G_iBq{7$T)Y}Y-r`LWIH%;s}Cb*m<jrH{8W?NbJrT{@}K
zfd=G4E7?hvhGbX}An`!SD0JVPENTc-boXq8?Q-3P3!*)oe`&@gx~o`so$|&)C^)&L
zD;-SY?%Itm{-Z_FAegbbUf~Txs(D^iE*R7Cgr^WqCy>Hp`-YuPMQS2Dh@s>j+bvfG
z`g+hG_4T%_Y`(8|YYJ-s%Z9VdUAv*c1emv?zsx70JBWo&ABOHA5$Zt5v62iLat$(~
zgo2<;@+Iy&pwM=DeC5n2tq?Aypi3~-a|n_$!%bi};D;aeZ2adIR*mhuP>pBg2&dFX
zn>T>l6AZNZ_|5x`s08Xd9bx*k=6M-V+WdJ09J8G|lybnX(u4Pt{-Lv)*=a)U<dj|1
zw}CTYUdY%J!p$$1cT6d)!){y%HaM+2lq7;Wqlr&|2L+p~HPTI*pG|)>-&6gj5yN;@
z{lUgFe)~pay_%_%Wwk2IZJTo&SyfmrU67J{186;!s-8yPj^i4cJ0aK4q28wLGmjjY
z>R+Ja6jCBu>I5oe5_wx@<=NyD=qXAE1U*G#NgxqTAxDjoj8Dt!MMdJw_Pj2*Nzw{i
zC+61W;*e%&&f(D;{LwPm`BShXc#H1aq5CREYK29jEI$YxZyt^8?Gkg(A^RT?hr@F>
zvf~7D^tF<mN0GgXl<C`!?1=NM7OYaJ-pKf3EpHr@qIo_*R$dzF-7j%&T`mYYF^SG|
ziP=}-@5DL15}n2Nk?|E7Ht*%gf@9aGL$3buRT5l)5tYx*+75+a`o&kI_k?Vs<12F_
z;H8XE<ypqh>{&_1Rn%Ns7NvI;^w9)rq^lx{+K<=4%*h`YDH0m1XR;bFw`AwK!C3GX
zvS_BBnC*}chA&(`j>swp>XAw^;wpq-={Wf4L^vj@7~39XEW4Q+p6==ibI<ligwai*
zbQ*Rh0Lp>dr6k8}8tb{EDOAE3PtQ)maF{CgCc27PJsqwJZ*K~n*K@G=z1k~91=MY8
zl(DgU2Q2hKih$}rrTu3PgRR0jPeVoFk3x-G{%k<UAS5cUD7~v*ZaY@fB?#XMX1WVS
z5C|^?aXW~3X*{UfYdi&z>Q58^wfuXU_&W@l;cB4bu6I)WqmYUA*`Dex&Zu|WCele0
z?y&plf@zEpHg|zM%zYR?u-OLVukAp7**qTk57kx~kKn}a*H3o|8XBC*V0Z(@S>0C+
zB}J9lp2NdnBmYT=^OO@#!(*Go_Fn@KE+CX%Z87Fg;NB#h)Dc1Z*l^B++qU=&x|Ky4
zy>wUDCm<Nh$pCGAQDCcpuRwu|@sPOY9K5g>+tPL!1Hpm!7MP_XzNY@<RnAW==?I%w
z=?~tsq4H3ZAqWcymiMM1K&JQ9-HB-!OTlxn-E7p$g;=AZwphe&vPae>w7tP{cYTvp
zicR#u{Tk`516{(ltnlhjNdO6`0CR@CkJMPAF>@R0PY$7_`g`)CW>KqSN2)(SuNurf
zNwH0Lt&E}r&2^8sy7QvK@mnj@pUK0F#N|j@mM|+Ap#d&4H3gj*ZP9UZg6`>Qdj450
ze?R-7;|G!lvF)*X3VzJa!8jlRc_5hS;C@!B9$&BJe@L$gP><zxc2ld(UraYKJ1Bn1
zL-ErTypUtz6nf4?#v)cWyhT()0}Phel-DdJg@y?(RI)sQM+&zN@DzYnY5BdV2pW~p
z$Z0ff@W=8N`!}31G>Ax5Kk4OI9fgqcw`a7~%Zr1;K}C**_;Nc06n0Bb>VGu4EgI`y
zyUgFa^moo-33d^nSXXlb^`Mq9nPR*FhxuG8<{*YR+_%B)V9@bVC|p10Vdnn}H+oEM
zGovod)11>5K10u$-C|OL+*!EM>jH^^O{Xm22(CmhO<hn|B1|*qR2S6yjv=&R`!dQ7
zkrj{yxe}q2L@4wQh^-PoA+|&&wzwj)*jadjr}rY&(<ty6RJBH%zm0a}Q=K=^P0U`0
zXEfYo9U|5#UvgxnBe>Mz4j$`HusdiH0l^b9Tzgm-gAH^X5M83LlImwCn~tVI6AfO-
zjiODx5@oO-jlxQ$!I^7jDzmKRw3Qx=EP8=%P{u6XSEM`Z9+?BE{oYZeH@EGd>;Q_q
zsO7Arut(U>1yL33=gc%ne+n6G-ccJ3jBP#foQAx4@8LHa*afV7VGkPDaMMM1c#Aea
zixQ#JHUCMv!Mqp-&S{vDOVnO1N`lA7p!bl&GfI-lJ_mK2heqi!`<c7p!f?0uA#Ab9
zMHVK=IY1OgSS4APV_DQ%_9LD8YU$Kj$tDS9N2NHBFWTYnWal5$@~5^&Wgr;OP}UHI
zAqZdOaEGPfqy`6y--i+%?ym9d=POYw2mtx>ve4Qc?p~d6D1{>)zlY#=+|E37ak}A7
zcRd3=Jss=r8v8pL)4g_de)4xyS*}Don9o2BE6@g6`_BuaITwEmEKguv#j?Dp2$Teg
z2^TYW19_fO*cdYHOt+!-v+Xdz=|~hLQp4diO`SNMH15KMwBD-vdpPsn;<(aNR6fSS
zb-2dTy~h>~i`QN7^PapY_84{@YP{k9kOf&_IB(5F?~IWo?<vrHU#KyoN{o_eLV+Bj
z18pZ4C3{0*X)Ur8@a$bH=<Ek~udmq=5R(XtJo_6L&iM!X=~JmaGCc?kFqh`Gm7ip-
zb_!%0O({rmcmg-VtVNguEJ0N0b_6=zg&uulT4LbyN@9T5y?TSl>o*Ql8JAEQ{#x+1
z56^(P+e&RA$<!a)U{9-X4guLy5y-Ho*V#`o$jd*NJ_5G15yvgSmeSkC?eu;@tw<8f
z=X4Z<yVtwyM21GOIR6fa<uPJpF#{F#Wnx)X-6)o;DFxwMh^5-;mkCcuGI?u<B$M)s
z$z(XWlwd^bdsDt4`}G=ZLeW-EM-0T5YI$E!4Nwy@54Zy;XgUn~Z2Fy;<0+xj8sZz$
zBU(0<LH<ra*H<aAd+-vvz)D~$7@!+Zoe#+5Yr<K}@MM`R`?XOf9Vx{TN&!=;cKMm-
z6k>k)cC2HeV<ogfvD9sAO}x0f{>jb*V90P|#$WXTWOQR$Kfe(cHp#|diLvmX9N+FY
z)m)BmFH3wTxW$GnOqHjlnzcdA{KiM7>UV|Q3wmFNZ5lhT=k1e(Mm>3V*ECl3!4J_T
zAhesLs^3i_Sx!~*TQ)PK$GpsuQTysbDOhlz_T}2*tve^=(@3WZKDte+;68si_imxY
z<+n};LXdYI{czu!h9Hj+Q<R<nBls_gHNGz0=3UOprA{XWZ@29|dg31ZZ*dNT(0I<d
zfZSQ-mzpa7k)c-JpcJC=H%pc0bgKM{t<6@xBN7|g{kc@R^C)0tQJ!=uk9Q}{=DBuw
z=iq9L5ji${tJ$20J_VK!rhBzxhb1hFs$^9jTyqnt<;$p5^b<~=+Qg@nB);CNO`sxd
zUcwzVmlC_XKF^AE_}%AyP>@!L(1|e-YZI(|MZE<l)HcB?q_hc6AwCyuX>1e4-eAV(
zUhm?+z~{r)kz_C}O3NQ(UB$^UmC03gSQ*k5zKiD$*JkexxVF@~jibfrkmvl_q(lCQ
z?(T4P9ks!m9}3szdC74&PsRqu6U19e9@h9aFrPw``{-8Z&1AonnH%>c>NUWDVvrrt
z-Wc!YT|ql+FB?5?>Qi7D=U)7r{h01a@nOMv<~=%c4bckITl*4n8^SV1(AwM$EUL05
zJ&EQ#sKW{!OsDb2ENG9#)m*y4zrY~INa)9Hr=)tFvEf>FPo-D?CU{7nO^yQfFPi-X
zR>4q#;+gkTR}U4K)XJB8J`5{|jEngFSp%up>7R9RPz`8){vtJ4*N6&96jy&|3=;%k
zR2!5#mDL$HY5toj{+sFk8w(!)UlajNB(S+hW5;@!M7=Tz(8M0Tp{`uh@$!_T&5W1N
zFyWWk#^52w%co$mDG$P|Jhrdc_bkMC*$yU+dq$FHqV6g0@`QE6`2p^*w4eDh%(VpS
zvb6&d*_W8IM~Li=!|f9{&~Q7FvSVDq)~sA%2S7yjh>vO4fk3AhT#fxn9KA97ESCM~
zF`oSy>a@DT{>ig%`%21A-%l{!Xqw%{vcD&?^Tn*NY@Yp&zoqQgQ}+9sW}nKkKO(Z1
zQ@e77-OsZJUy!oLQudxrv)|0JUoEmf$+P$8*^jX=>j>WQ0l6UK$6K55{=;Ar-Ek<5
zMAwyP-vJ^-w~`&sD6-#3+23xOJ%?rgKxF?8X;As;Jo_?set^i1!)=0$2b*U99bd6`
z+sK{}`lcf5FCYN<&{BzSdS}>(YMONy%X%HpiaD3C%^;N7wj6FcyRw>!Bm*EfZuG<9
zpw;^T@ti{LO5}MUf2oigHo_ank$1!bfb!&Lda{rDs2*F9@?<kTnZutfQJ$=#Cw=&n
zNy?KY^kf_LOFgz4_RV^KeY5FFI)4(X<awB$T+W_^9b$PpfJcfUIz1^t*U<R=TQu+(
z+%-<ZpfQK)u6`JU^oy#|!fhup^HQUAvh7BUl7DZdm{necwt)6uH!3HY)>kmH#sWF5
z!&jZto##f)9E$qB!E=UG=&oHfIqIw*HIs_&P+6nhTa2<pAnx0+;h=&F%3h<pf$rQ8
zT58z)kdJPx8oN>aPbOBD<oQR;)z$qN@I8FW5p#7}(Ns{G?EoGI8!@OeO;Q%vw&J&e
zbzsc8t;a2!b>o?g-QQq>@TIL=^|&Hmk@l`$?7dXS40!=;MA}`{WIsdZ1FA2?)C3$D
zhMVNdNJ`gJG{GmidX_X!4;ej9oP)EY{sQxOG+-3TvoSry7Rwvg4Q`=YEs!Nbnb18$
z_PCuS+MLTF+7O5~yhGJwt$%Swr)M?YS3-}nf1$t|TuOg~{7lID<`qC$(Fnw7Zm6rB
z;$3*$Sv|fi=LW5C=)fe;==F)Yb=|XCJIn3Zu`_ch)&xQZjP&RrpX;6#lISe5Cl0B@
zy08zkKxNsR0T+w0u}~`gLQM9ncvuwEj6#&zYdW9#B{^T`$rS2;=ro_HQ>D`ovbDTi
zdWPDkYK5J0>yx$l=i#k#>#x=F(%8*)THZ#eo*w11eQ&M~yg}%mu5UWYq0n#wp*I5Y
zCCE66hUo9O_0`vcgny^zkanUWUiP;WCa%EIbnr)2ac)S#90BVVpnbB6QG-Jxh*&`7
z(`+e~ABvKU=L6+uEZ6QSLQ4>(feU|WEzxzU?vs?dV>&a)ASYt3JNm@v-mtpkuOIEA
zb$?Z<J0=!`j54?tQNEU!fCg0khFqg{&&$$eHF_nGBfW_<V_A*x_kXU@VYe(zR--|I
z^0mBA!G84{x%J~R?vtuzTR&IM#*};kzE3cM#imT;)7QdS@UM<(dI+l<{x(y$-1^70
zyfwhht$$L>A5WMswxlm358J1_*CVlF-S97xza@(aFUyUknw90o(S__89pp{g!hB}k
zn2^y5d*q(KR?EMO2<4?z+qkoF=&WwZiPxM%K&2Mh1C6x5mj3}BC*=9G{KdG@-D~YA
zRCle7#$`R_)P1GMm|dQbhbhJfMB=>Rlo<1eY&VYPjKNQ>a8M8Qz#rA}+1!C=W-x8n
z^ZbP}G$#$+w8HEj!3nuO)a*+t*jd^NlhX`?N^-M=Z0)yjC`$6h&Ug-g<Fhh&)#GM9
z>aTX}j3`t-KC8Dr*B5>bmIlLg&(QU>B$@2Vo>eKTyhC>{CN^~Kvs&7_=i<NO_osJ6
zi;M=d{dgFmUjhGPY`H>s94U!W$cU)Vbs6EJ<}hl$g+h0o5sY{TfM&eVOaYM0$PB0V
z7ubL?l|9$ptGKLJu}a2o@sd%RYZj;{Txca+Xgh8GQ%DI3#AaOMFD3tM#^nxoE)|vR
zt8lp3-8vGk_a-FvC!5<qm^sliuShBgiS<+Ahh3~PJVQIG<i_441p-O;a#IVgK4N^v
zsJZ8_%ea)AAvOsx1M|KC%Z)qeeHj;(ho<(675E};;d$YT!<j3FNo--pT0%9BJ4og_
zGOlQ3+@_InJ4ePH92xgB#(FvZHRoI0di!-s%)J2X?TeqxdjCd7X0Kyir4-HLOR{$|
zlO>iYMczla0a^3Bgd5HI3jHk{)QOuc8;p8pz+}rbPa;b&h$YDGButhqC^<_4CX14a
zn8_ZdzlB3lk}p<!o<2`OW~<GA7k6a3B{_pN=R*7-^F_VuE^5B4`di3uu_d%OCM+|q
z8=Jo=J<1VN<v_f*Q_zntz;?}~f=8m_AnpMH^Nrh7eUK+Y9Ek>MkdiQ9O~$dFq~ZT9
z?HZQWZ~jaQ%>4f%+j7<T&Hp%Aj{AQvm$eF;mjayw3m%=R^*C5|hz*+bj$==V<%@9h
zKd~{=lYs`*fClsv%oG+Bo6(u3`@@obTe#^LgP!cHzclCS+dP9@dew0_73?bBKGriP
zIN4V;7Tc0tr+LyPq6n;%Y#iC{q{Fp+tgEW}fU)3m5^HY#bs3$oF&0J?^ez4IMk9UP
zPBf7#a6|0aL4|)7T7nj1gYYMg{tO7HscHXa8hJG5$pq@(459uF*0YkRle3t46WYdc
zBP9{OZ*Kh!WXFrT6K!riVvJ8)P>)u_H*MMd>98vXGbz3P*xngg2cMz~md6&9BPF=N
zC#w+@*jy^QEwu;eKGax^elmfh5bB%;7xS7h3l;GBJLh~z)+*uT5Y8fwlS>yA7k@xo
zFh+&KfQ&{kgfoWWutLx^qQL{>SS>dD!;JP?VMOlv!82P`zl9Y-*d_I((K}7S{AD<G
zHZf6&jw{%rphu5Ut=q5}hzFrv$JwsQn0gFM67=ra99*k=ve1B$VKoVWrDYn`cOB)4
z&gzlaka;II*H7r?i`&F3LwDbdebc(@Tyl9aX+C+^Pn39U_nl)StHyfn^^J|(=WySL
zP1yUB%V|ywDSp=7_l48q1cN^4h&-nIw&;-%^f_QTB6lXYtJDfv;KwZCrIeMIs&_AP
zL{=oXE21Ty)P#a`+5kjG;oOjbp5`UG51ZQ98Z-7p1j8Q)+2L1dU;c{?4j`jWm@L*^
zRS*X>5u`&LemOMg@uxDLqD?Dyh>>kK$LwJvcMb?3*>%Q&g;B<5(OA?7K?r?&?1+GI
zdNFb6)2j?#I&n;;L%jLr8J9Bgxr#A@U`f}p7Js1nqyw6>S8vtH3}O(y$r2I}>?v6^
zSzN3hQ^9*bo(aKhHVCZ%+V)<FB4)PJ-Cg#0SEH>N^_NkL#P40+8>#JalejZHZd2S@
z=3#iYo>WQY*#J<ClPl3L%L<Hu)p!;*c7G>UB}{jh=(`M|Ks~=y%TFgOLxWr}7B|%I
z)3v@O{!VuX^c%y1QZ5Oato^|Zn#IMuj+BRH7M<s!wD~JYRL;6?+QQfA&K>sDW@?{Z
zr_;rg`YYaFnE4zET2Pz<*NM?`1xDQX7Bw4)KX*G7-oGNV3p%F=7|g>oc6yM@_99PF
zoOK9Aci}~Mr3-ce_CkUX48HHJ2;>e#8RPwKBva!ZcG1Essy(Q6H`Kb@%$rcyj!mqd
zMRcj%hruE%uR}?V_5cm&p+TyRRNmdJpui(=DSBrCS|GWOIc#hvBa>=Z;+JfVmRjU}
z3o7$>v72x#`qfSJ_r%^7_4kxte>&IS8AX3*pug|NHq~Fdfd0a@`R{T4wbvHD!u7YP
zg2`nuT|B86H1C?3iGmz+_nqO&!={cP5Ns1sGSl4|zwY`4L_!HhvINChhav5FUg}MB
zA=Tk|$XqHgkU1bbqq+-I-Oubos#^rrwTJ53Gu8cB&Z_teU4-gTUWez;Ky@gOtFE6^
z-kYqTz$3Yy=HyLP$Ao%@RQE1dU2_G=L!!X^jt2{-XqSBd&vqLc$lQ}f6z8!2XDwYl
z;z|o&j1E_Vb(KnXPjh)ie^9HzNFCi!gcdAP<lljEFiRA@qf-$5+|8mAhTYH$3e1k0
z4(rmL<)<kAo}&1B${2+`u)6yRJZ8I8I0y$M&+C3gAR>Mm{cHGelCapULm-pK_S0_I
zBK&x$(H09T<mgZ@><0sB5Ol!)LZU<SHf3BFR}{AiqQX)-;|A-b?7ASzper^SFbT}v
zKmsYn{6a=N9fS(Ezfv6Sgh{--s8y7>JRy|K&K(xH4b!OD@$^39HSD`w8V!R1zsU3m
zci4rkv=o&Rj@JerrYD?FdP6GgSNg)eyX!%^xKixyu2n2;YBaW3<I`$-G~<D0{Pbhg
z=oT<|?+tKWx{J1tkxI6$qNP1vv+C`9$=8oU&p(l$zrdn{C#*B8DLq~&J@$^El0CL(
zhX~d`7bik7)>kO3_d!*O^%Bl{@tkH@Zxvu2-<$JSim~pqGuBVhg|WV83yF!bej~9C
zs|je!6E^xNX&Q^dR0-&zS*10~<m=D4OsLA$Uzug{y7XKuhr<XxVdrNP7bKP}IYl25
zON(v70SjfO$L4}4z@jVWh|+0SxV>OP)IcnCMMYvzF#wBhQCG4-)&VrbJnXaikh~vy
zv?-7xyJ3q}aP?^rMmp_7rnPRG@Ir~<C@ccybcc#gRB_9<8}}o`Q)7(An<F;wTx#EF
zR>(;l+1876p+?uMfFQS!A<Vk)w}lpR5n+35cite(<OOlq6El<LikbK}aWi?Fo5>qF
z&6vqSq!BG-ViPl|=*`UJYq~Hq`HZDyX3|Y=Az^)vbP8gdHv=u>i%+-}P>rgw2aOiE
z{YFSSep!D0l4u!q*?tp9mmYh^ur>#gl6622;l?lUI81_=K1zz}3F+g#Ia=$40WjS&
zy$|sAf|m|hGPWm?3DZB?szheY?wk0Z8f~Iv{{LepW5#>vd4<(CnGsX`|Efm+zk~aK
z?%P*#w*>!RLF$98b1%tVGjDVxvLdg^|KBbA|0eGL_X+>cS5!UUMdgA&a|pN<dsY1*
zU=|ZSRKqcWLm_~JlBBOaDTRQCSbrgjURz-X-mu*t0z&-lkc9whH98Ab_zMe9^~V7G
z67B<T<P>oWw^GNr7TnL>KtiDy@bo}o;VZ-eQOv?wplFN%y~>psu=d$T3+EhA3^-TT
zXyGgda7LLUJbpQ|@V#_l7QT(84a5M(Ln<nh^dpY}1m7eEZ2E{>Iz0-+0FFXx`%r%F
zj{zN7P3iFq(qn%N$Q&S8|3qw-W2_gEoEllb5>=IAz<-}<hV_PxjjXd6AhCX)4!Ur6
zJ;~0ypzyborBz};KwF-$TYum&fGZ9A{HQW$ILu`IN^6V(Uwz1BLRAjLfPhS1m7dEn
zpmvtu0nC(B_+tPsplQ3%VWQOfF{q*UVEr*5!5;%|^v3|K`1oVM9uWiBJR4#_8X5|V
z0j%qU7=Sl45ChU$i~+5;`eVSok#Y>k5itNcSra+9#ot6au_Mj=y(Fq@3NtVKZJ~)Q
z5KW{7X?twrVuhXLi!-B`ovc#qq`p)M0<UH@V<&r%Mh*g!os`nS1MaS0vhxSXPCjC3
z13|#wM8YBun1aBktoJ6mM~y)sU<M22=l&pYCev>NPf3rP2?F-h!XL6AfDK7J2rvs^
z%4dqd!AnEsfGNYDlMQoybIG#%Cbs;4oWXb+qd9MfCIKMe|Ji<{e*p?Zx>)Lu``=%H
ztHh|;o-vAScnC8a+$6A`hw+_wam&uknuWaZGl);jX3)=IZ%WaMA*NBH`MV9xl#+?9
zW=v1$_|l{lnuy(B0$bh_uXFJdj1QK96Y7r2>%r*P?Bj!%o)iV<o@B#)3|^KKPY7P@
zir}@1e&c0kw%y;=K}?IC!FC_kQ|3>>Pcr^zlXSGJ3Nsn#xUqNor$<wx;~TV52t_1}
zWD<1GU|;ej@Y9VWnU(keF$-e|SR8aBf>&pne1T->`wb``0%fmXvJLJND02DV6Xx&j
zHhuvF{BfC6moOY#+?hLwpc`YJc!d=;#?%CLfoc7eiYlTjOlLV==WZaGlp2q{3Hg=4
z>SXyb{io5}8P1ca#Wd`$^3Weteko<f)JuLmJuWXwpx>Yu(A8NVtSx9w5AYJhVxo9v
zHt5cVEAavc!aZh2o#)$Y`8tLEb#J`R{&lBMPSB)R5mbc<yCX0#OcE9)M`Fz>!ROz&
zjJ)xCb8gd|A;^rm;|@bcdhWoSb3Nvq3z0K%$N|l{6gRZz-kCu++GkskaC36-rsVid
zGj2+bFU}gQ`^p_IDk>Yj{RL6Wsg7u6Bn$dS_oN>BM`nuM;~QpSw$C=D3%QoCd+AbM
z3UkB2ie9^hXG|sik;<oCOCD}el=0r{6j4}boW`vPgS1ZS4!e9kcW+D~p0H_8HM%z@
zJ-kEd4y#?)=-$$)7n(~oagl{GINk0J+s%_iW1x5=kx>CXnr>hdf+bJb@b7sHB+l4)
zl&%4eSRa>VrMSLY9L+hUdab|r%W>)9tNw>x_D+zCLPglBC;g5uv+?mjl8W0lj6P`Z
z4(m@BE-G&&><gr8*%MnoTrgXY{VzV~@Ez!|dsaK#edxWBlh!wqHhH61R$Co?|J@zt
z#RXaEWqKp0HJf~No)6E^^mSm5{)Kx#p@~RrEk|1}gMD&U?Zpm_+A|JM0`|I`(p~iq
zSD81DW-uc{SRwRk1TB-2-R9z|6%ND-N^C|tne^-_TH$lFSTzgscGkDf?vB@e!YQ?w
z(52bk(_TB90Sz0)YHAyeOR{SpD!U7GWKK;lWkq5eLUAb13?mJyF2-+~B#1j(T}TP4
ze`J66((uISo<emZOM-fl)Bjd`*J>6TF>}j20FM2ElF3`bDDB3r|M7qM2Q;0s#?k{U
zYIN0C(t8egOW(Idve7h3GX!Q7>JH2Nj*K*;50P{>Nx>Vpzac{T$0|FK7V4?{K<2<x
zlC3;0`haQG6|jU`>2vh%utB)^b0b?R%U0<vI}iCAOW=N-xWhzLllU`@Ufr2{GMDi-
z4c-tgXcoEU<wU{a65hJv?gu`O(a>C&(?M4=uMdq{gkSP6+aD&+<hi#&FFuctl$^m-
z@UdV$co%(5DbANrkR3Igj|tOB-pjbFL)#8#qBVX*xFlWJ>1RNy@QRJEZqXVMTmH<O
z#+)F0yl3!NPebJKhqU~mjMl4bI7#K1Xoow|o*chV%ex+SKrS_}H{G~Lgwk4RJ}vL#
zHJ4Db6}RokH_!@Z%|0ip$F>`<x#_N8mTL)-c&?16Nj^*luEYqp?IYv@!{HFtV0uzO
zNnMFBB+2FBRjO5tzCgS)Kw_S|As00M@?m2}*r73>_1<X5FW8<!{bd*cmVaoc&22A{
zaUmiZFa8s+B;r-tO7CRmDiK*dwkuersgMz@5ZXJOkM9XkVV=PYr-uf4`?J)663@Np
zFL8KdiTEND)-)*%+uGl2TSt=Tuyu3+3EDz@HXhvExc3{gClqk}mP2a*JlN<IY-mMl
zryhx2VR-eOM(D$70&yZ#q2-NX3ZZs@cYX(9eW<lwi+8gY@b_@!Sb=-;>hzDiY(Rh>
z+g(?Sj_-n(l_rO<z;qiH@-+_&|E0{Hu)4{OVS#Is!orcYjbY&#3JYA5Y+$%8jQH=m
zjxKCq_$5ordcD-9qe;REa>YGik(h)fKDgrjFN?_aZX6yhS;lLfR=vg_8#p+%_h<YM
zy?9NUI|EPHjf??$JhAaHQ!M!j?^@>2xlCua%`5W0N(7Isf0Pi@qc2HfqBk^!n0{QN
zh^gw)X2kS0(ul!9Q!%~Wfr;rIy0|EedRSVBX%oGbmLkOD!`t&hzn-xAZU2*)XaVi1
zH+ij7n-kM`|3g_!;fw(i)4;~ZTuf@i$an$`<1k!gz&UwrM;7`UMxQCXsqOMEMjF~c
z64`=}W4k!KU06w&|J@bm^R}fQ9^2|Gh3vhHCE2G0WdBehm;Kk=MDKc}8QBj*8X^0P
zCMJ5*B~13$(uJ95Czh6(=pbgIvP1HOJ<kTL|C4#vioRA#^|xm8Jm7!m%?g<3(tl9p
zN$%e^J|2L_#-zoFMOherh((bm@#rWGRh#*Ki@U&1Pds;ENp@*8-J&<Ka3!NTy0_11
zqt_m!x05|xuRYQh$o{uhP=#<KBCYY2V490X3qhBiVllj{om^5Z4L7Ff?k^Y!y^T7M
zN_KzCk$l>s`$YJdcN=cXf?`=OeBO=pBO$mya<Y`Qhw!zRR=U&IN_)Nw<)F8SFQFUH
zGZ*N?a5{Yi#(AO@`+5srLghaF=?1z9H%>7R%6b?S{5(1~>{8|EgH6=;qTR))C>qis
z`qB)R*!?j!az8ytVILRCj+)|d&nHfj=ho3hn?Dzs@tvsIS+vZapt}$$$glJ7s7)=R
zQImhJRQDtW1D2$NmsN&0_J&ZA6cSY^i#;U12*dt1m#bZflwO9!1N0xJp}*|JH*t(l
z&Yee$!b>~VdB(rkz3~RWT*WUv*+q}9)jaJXsJzzL6vr$5Cvi+~n;)Ya)E6Bk3P_Wv
z4hTWU=XiUADlWPS@fDhrMQ*BUSxBq?Sir!JD7+=iRxk0sFLnSxcK96EA?3C9Gt@o7
zGl*>-snOwHNHrJ>{_jtodyek2CX9_K9_v|r1l_9S+5^eH&HnFRjHS1%%N+5WX7{5_
zJP<A|1tC<^uW%zw)G>iX1eGQQ2YcU!FHUxCs@`ENsw3$b5$vM7_IkTg6M2UHBuTLC
zZrc2Jm?Ubng|rQe3YR58hVuco9grko!UfC_Ap)I!X(*R!PkT=AT9Jd2K&{1DBj^=#
z&vfPUmUy2T_5({CgbfR9V>VZ{F_A!#GlH`aT;ctZI`zA1sqXZ_ys1>_4g9Ca_RC$=
z^2ro1Y@P*`BD3Edu!F*T2SjMxy#QVy7<XH#<ZvoE6r%@hHtSFp(kWJKf%}unvHN#&
zbBCd>f3v*YHQ@6Gec>N`*d|0g&m4kDzEHU8*o+wLon&GVP9%TRoIUtnQaRgXi29*|
z{rFZ&Y(%a8#c-V^&YJg6XDGSyJ`k}<T@3UiQ5*kF1iPVTggx^4n=)Y+CHmTJqELEM
zp!O%d_}A9>Xyi-Sr=`c7#;83)b1tBQJWt1BD@;%H_HM;cstWnDibzDUdih*pgq7{9
zK=(WwW2L%?nd33D84{|yUuSI2J<kL%te{JG-TfjXVN0P)+)=iiO}d+vq`T%advW25
zGqiwBs<NZyMwc4SznE=i^UHr;fWl58MH7Gh1vxk69R*=3@T}ONa!_|62*R3b^<BSH
zH*hTG9P&?T`TX@czJ)aYOio{2RJsQyGlFTSVFc}o<@;f=iO6-P`YYq~pUmRun?F|&
ztgAua^+$4kT}D@=E!6RWG;H?u6Vt1)8<@3b&uu;jzGcBT1?%PXf)O_GoNz>z<6A)3
zqv_y#&m8f)a>j{jXwEfAglcq&z|J64-4R)q9C=<i1I_soo;o~}V@DOh7x_w)eZ{wX
zdcJv^Cw*dNptS7Oc=I?D4u=XzcGaK^y|Ij(#F^OSR2Dm;U{GkX=jmX)GV!Kfbqw3{
z$hqgA&8l#?xLv!j=-rl$dZz)*iEqpp#u*aC*!;@OwqkE9w(sF(yGlkkHn9uryU|vl
zRh|{%@%{`g8s8T{pRuIzCi}Ay3Mo9ofuL2QkI!F?=!LOW&ajz-uu*gXX(ujeNO|KM
z5XUe(J|xhHw3p~xI|#0#Q5o^9K9nf1?LssJ(|EK!g}^5J18sHh)1Hp7bL>KK2;U)e
z?k5xQbQrI@dsa|TK*h;1y4UeGAcDwBq{0UpD$qERD#9t?MKGtr+#JO~)@mt>Q3Gj+
zrCTj;DwPf)z!kBWi-LLQz%vvter%_2KBQ2~KAVkE2zS#?8e&2?9R?;liz^+NZIgG-
zC1ZbKWBX5b?M&wF-{I-`QgYR?u`&A{o(Fx&ycK93`bw<kEWuxtg?+M)n|&0rTqyRi
z!?hE*IR$9PnWN~fq{d?5jD=fqctTL@5l2ih`yvSM2jo096YuX7$FkC>D0~Q`2Bl<u
zqr06<YQdGdi{A~S-`Q}I>?eEZb~0DN(r~ANxsxZ@czqhw?Zl2fW87)pL^q|sUFM_>
z{=wC+8u5&XEx_2@iBKUPun&tGy?6$awD%P<%xp$5Z2Z!H9?Wz<tiL6DArZk|pwwwF
zSWI5PYT1@fe^5vt#|;|cVH|Z%Fr$5L=<I8CG%M!0hoS%@i?uJT+N004ffwLUI_G<q
z6hA|a6wwT^g?>XsX%4~@FK<Imlk)HdBNmUTyrD{Y8?t$MG{U7Kv8wH>{@56m4?ZIy
zoTl?LY%E~nFPeNfdcwpmRfSlz`+YsW684ME^f&XLT4B#%>?zH_*dOok#P7*?L@Rue
z^pdwT9WtYSAWaqQB`F3<!~4OQ#=;BAB9ulUyafB4C6#AOg0)vmkhfJe0*XI3_O}LA
z7a8OKAl=99tUe4x?d6i{y~a~{V5={&)%Z_|ADOqCV~4$wH{r6t8@e7mdc{{}x2isd
zsKqQ2H84)nE8>m*&A8yi3uJFLqM6@6p?!+k7`CEw7AQ1l3cd+P54sD%-2vAhoLe71
z1MQy$%oAn7aU%Mnl|xuOZqmza{Lb&~d?obhK}P4T#_t6O;xt0^m;CAcRcz{iQ7hhs
zbDry>Ejj=!+I0<&mvgiKeTVoOyl2N%BYM2p`VY?>j#mFBTD`Np5_2rRWKT~7pBiM%
z-bne`YjQly5bZR&6*(Q*JWgY!bg>OPzAEQ9-Yy8mB<W!Kl;<<BoxK?-bg{4<8=_uy
zDN2}qjV|@ME`|RL^*M_wSHMn+FqN~sdXI6_Z_F-=s{f$kw3myjj~jg$jT&GCtOE)Z
zQZmJZSIG~X?B7mp()e5qmtgt$kgeyA;S{hCy7+EsNGXy&cI3uf6{7!Xeb=x44hXvJ
zF2s%r8gd|P+^l<UFUHhOGG?v)y_8MKk*7f}p&6aP25Z)V*_j+!Gd90O%R3F_u-Hv|
zrHfD*zOX`_oK4t6j19yYZS<<&(V1=BbIi71Cu93H_Dd(D6UetrkL~{R*vQ>uJrkmQ
zj`*F~Q<6OsdivtdCbFIPY$vvVpY_<tt;xQvj!1ME4<ut-^{%61BR4zR?a>Mo!XfS+
z4n&#errp|Mtu>uqxS-KvprNB@#rOELUD})V{5=_$>8=BaU3hCH+4TeZsSejs_JK@B
zK3M%TdKzAQZP{nMjP(Jw{n&5G{7T*qHp~W!7)LUN45W`Gp(llJd)Ml&XG3Y#-JVb|
z1L?+u!icm*yQxh<O{9cku@4zL&K;4Jm_Ec`EGwnY#J4=clVgf>cPrg<4@OWWdesry
zBhFvp(RUr=`aPH&d2lRVlZt`!#dOXta<s8DbR9zb%M--66)=RtfSD+%rOD2^;Pk5G
z;-jsS@j-TMkHjbl+3Kqi3tFKz$&n=vS7*I^1n=j&TWN*kVO7`yOcp!@bq^|_PkMr)
z6D37ZQqdjV0fxlVDH9OM2b~f6By%{MS*E@u!4>~%ho!OB05v?T7az03rjO89Ws9q0
z_54HlJb&>C`1_Jmy6e1N{KpVIzkz7S;3rG!c)FqfbRnSq&C}iDPlt(#5^zT44X1Q4
zPIQ?!>n^wn`t&^;^x+eR_yo9%*kFShb@T;)%IhDB*Px5NXnAbr{t$|^yZ%4c&Ii8A
zs{Z2}Y&wv6r-Dub8+z4|mQ%5qf^ItXPVaP@e^AMmnc}~ivH|Ik;oV@j%Y$ZAR#d3{
zu`;z^L{yd=5Fn=UrxdjkHTAj9KdAi_Fxl_@`JU&wf3|^Uzr9}YJokCdbI$jC|DW&q
zo^#%on;*IV4Q6DxJQa`JPxAg7v7Xl|7$NH+g<^$o#ggU8hwGR(Dtv=tPgutbH~bbf
zv}?$!S_$MRaZ^Yl$u8!_hlAXhElkd{AMCF#9gycQ%7y!!qRZdVt2N!s2Y_GMc65HD
zDundILt-iuq^av-IMKHE|K(Kao1UG_QM?1-lVje}W9`x0cYlC)GCSfDL6D$ei9*lL
zp^~f$=3g(I&8mu*_KbOpPq0rC&+i!<|E_aQ6YuU9@ob5rchjq}cb*|cG%}KSmB!*;
z@pf{!>r<1qX-~PtH3A?-KJ&X2xR4+9sWC$5BLX_foYL<CUxg;Ou@)tWWmQHJhv-YM
z2u!Vr^=x5eId)0YzD%;!4W)N2o51BrnA!xBn1OAM1}#Abs?-+c^GlA!%|inbF^usZ
zD|=eTK}vKNsnL>5SpVVJxE?XZG;O~Ihw)>o{BSnyu6{gn>s+BfMF`@}SfU#(yO|hB
z8N(gC3pX^(49FzCHcPNWPHpya>LbBqb!^-=S>thV=z7&x{nTtW3*XAdPi;mQMi(Jn
z`jZJ+^G;Uly`BC~Uz9!a@3xDf)Xop43sp2!GX2vIiLCY)5=Y(i^gcr35V6QQkT?Q?
zQU6gN{gC*q=G+X4UJNA34TVJM&&aJk&Ncc8yByt}z8Zx3jW?k}kKisxh4$m`*Mz=)
z`5^=q*!&BNckw3_^}OckF|p-C_d4={?jd^}X+wZscE~BR*dX@B`?lk0X5)H#VdzDp
z-R~VkiD6zi{U~~SF1*rmsm54sD@)>D-HA2Q!gL?SxN7!DP)8VIg^J&>!N2AOp^rCP
zZr+18eZBt_Q&kwBosk*?pN0WCV=-~hS_QxjAFkS1v4lyyfLy|_aq-KwFkgbLIQ`>q
z1S?vZXISZnkBtr=d?Zri?}G}<4uFYmnGV08jc5s%!jIc8j3jLG&KtoN4w4pcRM%(J
z*D(;1b0(fefbpJL-aDM#1MA*2%DT{~W-D<$#m-5_I)y<usG{^#t74=$zXzsZtq*yQ
z2VxXVzR;ar=Cvx^oCGv>*DwrJ3ACmxpZa6}Y0P-qm+A99DE}P)->ZvmbNMwVXijtP
zD{e;U-e|jU;00GE+-}qFlo`^FC-LnyFR(<<G~$}02Ld6Xt*FA%dT@In(|{jt_YG6A
zoQ-|7laLW}@Q>K0UMH4FYa6&8_ik-+v-V!vw55LBw)ptfEOV`QE(9Dga`vbO;*9&T
z)bMO?Bm>ar^sud$Lh%45f~t{)T9wd{T+uLot=>lxzvp+{8~et_eG1M_6|Fo~n;qQ6
zvw9Z8GP}RA_MNTq<chk;{oQrr*<lx+p?4N<i-k94a`kG8p5TsEZ~@m77$l!s`=A1E
z^~t~1zVlCFZneqBuh}@f4xeN~?f56^rHT?eDk6zWnygK%A*$0>bW&Y%D^crs@?}@a
z%-;!jcTj0VaurZl%&u-o{;^^FmiokdeEK4~_cYv^BWvO*IC54=ef73TVm(h!@0ze@
zgLf*r3H<59wlxh<c1!&`o8!rv@`ggZt;UK5qRUWgp%(WlO+ssUZHl2&Qw#xyDRJ`^
zA!41=Q@`nX;!+LCzkuromLbmH3WUTIiH5yM$Vu+(xSer!yN{<T8<+-9Jk0yJcWKq>
zT~mwQGPa%d<KKi}oGTGeKHiXgj#lP;TcC++l26O68uv_W7>=8wCGa;)9*>sCCG`G%
zKqrGsx_iq-A%-yA<uRuCIA&<9yc}(|U;X5C67EM1Z{JbX$|^j)oc%mob=?Cz;3i<^
zxvRwEtboRGh?Vy~<L}%e@d(Pn*!kuBXLkFVIk(f6xnOjYSYz7JhMeLgo29CASR!N*
z`j+_npXH|H0G7VlOFGGV3=2a9_)otqO@58F>0j<Hlb<#Dy}*9K(~e~WubMoJvm|6*
z@$^6B2E}U~9ECY>G&?vJHVh8O9zmES*qwDvt&1<OsjZ+YC{R<@Ra?0$bozb^+U0Jv
z7gEqqp9b+;6x_9FV)SW^Ffc8a5^6SW$=Ku-dNM_uPtF%dst_PQq8)lQJEd_d!MO6^
z_btEE@9~@Ep!3PR@9HNNH0H2ICH?}cr=0Jne;L+b&2e?>HI^eNpOl?}9hYpLjX+V5
z!krsu9BSk6nsQ*E#u%(5R;j?=YeQs#pU??LtN$UgxE7d1+Aw`DS}4)jyo9Z#?{RMl
z_TTL<wtIa~ec|{0s)K;v>~sXgM~B<TSa*wSR%98e!V&P%GY2Q&sTLfeq8EPYDsn@I
zfFs}O$yQ`0qQvjmMMeL%FoHj7IwV#6wjVtUl#!EoWt!;OBziVEQn5T%$uGaO?3jx{
zB}(S2_G4+Z-EeuL?FHRz&n`e<H$^%x;74THrDX&)Ys=~;vL^IXJW-aB#Izw*qFs_Z
zCqj#QR30IMNaqp!sEsUZESt#pmTCjOcA=%UW_L}uHV_wOC&$qC`Jv3`+ziPiW=LMr
zu~0TcvO?vFoNI<8#taF0Xd7p;JfP8+?Q+rDS&CXeKKn@WME5Af*Jfg+gU_(>lVb7I
zP<DC-^v9-8ukD&dfQM~-9&h_gEcs~!|I-zWG8H2tu#sYMFJ7!Si$&D$Oh1Vr7<=TQ
zzo5`fxCK^h&XYPd?UV{?r~2Bmu2Uq2vdG4cO|T;e&UAM7ZuXD)o2iN;+$CxkrP%ms
z(v~G1&2GdKq<N;uYpQ<o=7SWXVD55Lu%7wp*f@=#VtTD(zk*ykTiu<yfluDhCnsn^
zY12zid|Bm<_9lG9>m(h*moa8FW$u3`I7oxe+Z=F^_5y7*X~YKmi=ypxCzcwm3FqW!
zb3FquVZhuDa~!qFH?+^dre_<*_0%WdW$LAY<=*3;mXp*RPaV=Q{#i|pPGnPz`Za%)
z9M>oQJ#zN`4b^|0IkLWQ)!E*)KQE}?@PeMUy-X<`D=_QSqhD>Peqr{F4apZ9#=p`)
z{x2IHXbkl|YKVK2f3;4&!{sk+JGJwlk&at<nA|GI;a~Nsb4wah!|SX68cFDQBd@XQ
zl&+EEYa{os8oyc=lI7_uVud^6SkGIw2%5e>iWoHvgLU}8#D?U*Xt`}(L-Mlnc;S}%
z<jED0Wv7(YcAZ=qhFZKa4>5P++@<)qmG!CP8&a3i>ec0Z8A&9lHST>Lzan~6ed<OO
z+nV|$7q6&Y3Ubr)e4~A;lTR~b-W;#~#|<U*7~bSNy+4dI;&Zdfk^7ku!lRAjUYBP>
z9{Q9g6{-mORr(|7qbzb&SLhf@2Z#&(Upy%Wtj8Il6L1inj2GhNWIN=VlMBnsiK@`G
z#|r<3ajW9V%V|jZ4@arMzl;BN(bDPGl3($ZaeTG?3e`rs1e2Kg@h)Sg%#YV>0Ob@?
z=HZjUsA?98GJ(~rsi0}vt}p9~4I*y-w(C%i&*O4q?@)$tJmE!;f38>T-nK<?01_)!
zL~hwYReFKx7ao~JLK2>cZFo8E742VNxR&g}=|{^fxih&KAD!FRz|NifllEM<PhTyE
ziF9$bsdFMm{+XN2^c1pb&r`9&b!f#IpVvNO+O?;KmH;Ec=5GR^QVAW^kI#I;%wl4D
zVJjeJOx<CeMbf^#iVb`EbzBvpU4n}Ir=C!Q`L*Z&vVm0aUq5^Cf_k5LWs2-YqwEDH
zTAD~B*u?ho$in3+;Enq0gR)RCBjhjP5kFu?{|}Q~21upzo9I(TEI9&}4TnLt$e_uV
z7TBVUX$%TMvYHUP>TZ_qs(cGy@H3{WYJ{GNndB2!oyKz%E%)!aDW_E$To7$Hh=SZp
z%y=U>Ci=FfM;w!$q<H1?*T57z!(n9xCH?TB4V(tzqbZieT?Dvk0ssmH@RwQlW`*7B
zh_>^&>tO(k>trB`)=zB&sS0xYNp|QRdQ4B2*ws14a!6cH{6hu3c1g&>>#;15?zkah
zA4Jg-45VM{$Cv2p1y}6#7X4=M5$T*lL7-j`UCSdDHfj}iJlY08Z47G<`lidpYgBnm
zK<Xm+y=XK8WzA>igl3t=*CzWb>Ii(^#8|N*`AGeywCs%qv!9J=cMzxDH@)D@5Zi+E
zVnP~{kJgi}l-yA7;_CIAUThfmFGAkYzJ}yK>c?%W=RAu}?O71-e3L_c1c_Jt!wI-e
zYkC;W(!Y+VUT5fzg<5W<I1VPc*rko8mPWPIAy)m?%o}5=2cr+z2M<Q4*mY^t(9FvV
zQ2oZ&MpxtMi&?Cpp^Piq!MLA#_<c{%_SWFHRRJv9?00}`R($YtrT?qHm=^FRFaC`L
zXA;~K0+Ag?nW{nQ_)i=!hE{eGqeO%v=pbX}b~PGy5L+)G?5I@m-?ATwIl&<YzpNnr
zoY=uD9+UIv&pe8E_OhEAiQe_>4HXANT~_H??0K_R$Q0{Ema$46$lJGHhL?yF8Cf>!
z`GqVZ#c3SN&zSchy8!a|!tQ?C2lReT=(^6J+$>b!XD(jJM8l1d1uYng_U%_hIxe@H
z(<Ae>Dy4n<srZK6#4WJ2D5}pG8b=}v<uQ^at_`o;mJ_TLQJqPN9~rcEZxYzy=nL7(
zXscX&$V%)sl#932AeBbjDvh?){{#8&1|oW-v5N&6{%Y2WIC)0dG)dW@j}|ymgApS!
zLOB>|<#9QfaHF_)Fe&E6592xPF^Wp7!-*>iuyHclm8Rxo%qRL+3ZsY|$~G=VV3P+N
zwqf04k)K@$=PYHFZ-Zd^(|rMD!~2r(9%89XEa`}*a<h0>u4ml0=iG16$NcHJ?{0PA
zgW?FBDX=)Yg=;LusZZO)Dk@RewaA^`fC93&A`bV>)N1O{r4=6gs?sSefR@i<V&~12
zRp=erTpDfU2SW@LNgNc4Ic-no_U)&$8$6pYumr))n~~|RJz|N=r2ojZeft+89n0<J
z%GQ@D+4~o=Z6D%+I#Wii`qO=Ra8Ji7bSrMwdkLm!gNFbgiB#BrqWS(OUvRk~2&5*D
zAQ0qR6zofnq)-R`)n+d8fclZ~0kr@(EqA55^%Ec}a{#K!xu2MGUlZPgPn8$Wn|0-T
zQLrMYOBA$w%DIm8qe09=!>h1VntnK-2yXc67;Xq^)<-f)LYb`WpFVRc!r6MFNYq6W
z8cwmb*2i{3Dw0SL%sZ$i&7rDn5!Sm=gd;h@RlzKAK=0n)K(Lk{pbuI(iz#RTg5Rcw
z2voD#);Ib5Ywg>wY<;BnAyxZ;UWvVSDf@aOW)cB$Fgi?$$pWi~H*qsgCB#!IVX9TI
z>IY=)Fy7OTiT)<lk{Uov-zt9}nWQ%kR2(Gkm)keyMlT9ff~8YAzTdrShzDSx6#_S?
z@q=q7$ZSpHfnhrw7@Di#N4LFz8H~%t^c4;x@OzcNno+nqpKW!bo&IAV?Y{F3!=Bf9
zYd=tUnMH-Ihvj$|`-Fkzzyb0~|Bg*be_J^lUUA2r3Wan;o74&nK8<UYh~pK%_<*dY
z<7s;hiAwzD;|C9}_<y%?M&V`nNPlBEn{n>AxjYu`@9zPG#u9ek*01m+@R!`;^?Th0
zCiqLf9s^1{VCYYZLd-MJ?3Izh>b6X9r5&3th*n^UC3GeJioenrELNo_a_bjGD|L&{
zZ~iPo*{&v%Bba}CS{QlIcD)(cR#(^-wUwy~0_2N(ur6~V3!VaLk!6db<vefSfrXvJ
zgZ3R*SnZq_^W0K98}ln2TFTD9L#>5%1z>O@_Ac8m3EP)a3oz8p)e>C5*4pr1L4Lib
z+<IO4eNXV))_C)KoBehSTA;oNS1MQ%{IETP=FmCBc|r6*o^qcx?bd!0tL{wu^9w`M
zj^s-Ig$KlbivPU24@);okeZ~zrwOi!*36=4ja@sUF<nyu<>#&vL#z}YJD-;`6)b?G
zDgX_TpNmps%lfCX=uF?sXYD&MOmpq#ik7|GcU&3iwDmWHfgX^TU^pqXfji-)EQS2O
zCv$3oo8gHd`jT{-rNW>NG>dT)tW+k}GA@(T;lHdhFuRzm!#G$t8^~41kkaeCA{;AG
z1xgN1RaX8P)zGfG!a0trs9x0!nT-3kpFVSf%m?rUCHvN<ON0gtLTUIg{k9Brz<ueo
zv*Rs)%9sUfV*Co(9nA9j^cqTF7XBr(u(tO%{zooF%Go$Qkn*g2+j{DM2*3gB8RZv>
zIkte3Nyx|uN=-sUzR7R#p0f{*DR0xWkSU$5Kx?X#ck)JjDG&1=E0tlxsiA~W+2){v
zMq|UNd#VYW^s~6Sd793V5<70S!g!jxGTh6oX#>noZR}{e+g@TlbS3w7;a&D(v9s_D
zmlk|g50a1IMY&a)r!pU-^YU=|End5pYXj*p^@;8Ob_bMd)5?WzRpb9h|5KqhJd>Hi
zc(gImz0<n?86Z&ir)8wjIoj$80=3KTlM$1?jNvYe%G(HPK9xS3A9mEa_AZJu4XE`$
zZZ&ae-<_Y}=ogF;9R2X^gczeAZo(k+Tbz*vl7jrM5f11n0vgEejMtE6f%6OP2GET8
z9(S74ru4;t>t<2YS4xiI3j@qMhoq=r)ob-rb67CC)VObT(cXu4)$NUfUh2-=!`pPo
zSv;^E7IL2YGa1MU*m?K81qp?DMji?fq6sSe_9NY}vQiYNQhbXk^G33l0>?c7s`r*j
z=&OGrQj@M|DV>D2Y5@B5ErFam;rK6*dr~rB4usxV7_HgpAF|hnL$W{mViZ7er~tC^
zkILI3C&cXg<4zCQ5rxTnqj!i6vF~;Tj0f~v)66NA0}tKCr{|Pe(A!ihBRf4~9%SJK
zRtTZzLBBOZ<JZPh!|F+y8~;edRo&*iUGwziT5;@^=__<<6IcDozE0zQpe9~L(yH?%
z7F%hv)-Ir1!4bxc+2v2%@Tk+94peL=j;0{QpHSACsVt1Snlqnb<Hr2*nM^+yjv;Sn
zgX%C;pj764k`cMp1b<q^#z+eHI_Np?a3JWzGN89;hy+72BN%Mj>UaMs7Xt7s<vG45
z=G6kOB-E2jo-D%u31Br~v<;gPMfhe_P_V28h2{Og-YkyB)JZ+KL5eTTg}qciJOCjX
zcK^&%&84Fli}q0tLc2&vZ@qG!#<8wK7m?gC`*Nm3q~o8|Z&{b8PGrrvvhZUDO{8-P
z_qMjPgG2NPP_#C8Jl%SRZVnO8WMNz|RickaVZ1hXl~@o{k8!bRhy2)So8GU)<A#sj
z)$x}N1M8^uW);>=d}jJ^w+QuIsZ1Ir=b|REc#UNtGC)2-@L8|e(!slt)ZS+zi&my}
zOb7~WsD0${Qv16qdTn7Pzoo}~?Cb1eNPfs(nqvcEjbqR-WjejJW2xy5M$%ffz@EY6
z0jBS@XZ`ww`Vy6qp!9k~T7H3k=Ph2z|HL1C!Qk?5_J5^5?r;BPyhT4w&+X_`fk5$*
zUr8K2qm3iCj<J`{o~$k^`MAbFrnaRasK7F6UM+StJfH`HKX@_kQC>ur?Tw3YTFf?M
z|3~E3W)()KtCp@2ct(MLpk$A@-gy^5fTtq2zGa@BYi@N>6-!EqV5(+IzTO$})>(lT
zhG>bMg^^oVNCJY)WQK4I5(7}HADctwt0U{JXHsf)QJGD0CJA)r7rgn2%vWp>ZpZFE
zAtiuq6TFdSOQT!3)^trU7gJ7zO|S-#v1$Jh#FKcRXStT|JoSf<Tk#eUfB~A~V1FiZ
z>v*g6L93P8NLbx5eD)mjtB26&oT}AD6RQ#{s=Cf&fe=oCuXZxN(Jt)Y4+8sVdW6)J
z(C!g(^SchsnI8!3UZMxXE0~DGs&l<x0f@^Z-d)xhi)gOA!u?qW-OI`aR~l%~jv>MJ
z&C`OVdiCQ;Mv_10%>?>?%sEhykF2g`VzKMIYC5o1%sxRv<`sYMZh?vIH0_)Nrh-h*
zMg^u)(sImmvw?}z;lR{Fqo&@)%82X-p+F0v9RFtA8*zJV`Cd=l-8^~t6L;JCB0pY8
zBIu4iLipp!^?$&G5I);f^Y)8f&vm~%lr*T?@f#HpIK6(uv*cq1J-cuyJUQpkT5mej
z>=WqQ4VrGRF0A#M?PiGea)aA_+ACgu*DiV~C*<8j2I*zv(7X;>^zU?SnLVxdD`do8
zNrjpkcUB_DtHF==e`*z4FvntZ=GA-|K@NirP+1w~r=^o<oIe}^fz#8Zd%WW!1}H|#
zagF6NnYSdaId_nHv1FJ?@k{ze)Dxin>CQaRvQ-GQ$RJfnenY7b>WZb1!}R5*?;bS$
zq1n#mw4#%b=ikCjJq~o{Am_xELOZpX?R(>1-7##;QO9Cs?<{T@+Tv_*s34(Q=j=M|
zrH7MaFn|V*@Er+__=f(?x5(27bP!O)Boi=O@G($ysjojJSIB?!chdNAZ`6}Z)MeEp
zn{5M5xdwuw!XI;RM%F}#Ox=Mta%~837?}muz-!Z3T8Q`wT8Vj+Z>0KIk{J?LeM?4^
z#XY|tm#IEWY-#PV4@(_&dX!+9d^3H7tMjn@I<r)g++8(To!7I1Mv6Nm_vuvV&-txT
z@S7^(<WRK${l6dZdVs3|EGnq?9IOQgwegajJ(@v!h^hej^KoMR<2XV%UBO+}zcu?-
zEGv+Bg+bJ{(2dy*woP)uHAQnDl~Dk&b^vAy7c>!O)jc^{w_a&4r$%S3E*gqu3+I*`
z<H;GmRauNUXIO&ukz2pPkJUwcRY@aTeW2VdfK1o*R??P~MQ)WVMV+5;2bE)qf|R1_
zwX?62n2WKs;Q<SG7d*$knEe4=tJg%lHNgWhZ<r*iw4%h1c|a!7Bvx&-MNj7t@51`(
z^>a?F>6&yb`RVK}CCukG*7h|C!FoOu1e@*3#-+M4u%5<@aP!KzSGw2t#Lc*4@G#tL
z>_*tcar0T6ZlQ5fsFIn4w*9PN-bV49AppzVPOX~UI6ZwW8r8pWx%k96L>fD}J5KBq
ze}DVCA%BMx4U(Z?qT%lc4QSAo>V-rM+Dx+nAN;*KeW2BO+-X*)6q(g&!#=B1BAFbd
zP8Ot5mB3CPZsXCVZbm={#+)W%f(Vp>i{uNlO`_aAl(*yME$!Ny#B#AVWdS}BnJ>Dj
z^;vQu9FOtzr+TW@8^W(?3-Ifg+$^nA=c3D4;NS!B%-4FHVaBD7S*o|rz9gnq(bbR7
zVM73zPz&nb=-mK1&s>~`&TQ8u+6%|-0-e^lLqP9+Sg$lLLZ2V`wNr7$Z+|D$>izI3
ztzMn2R7nYR1muL`V`u{@>DL1a{g1BR*dI`%jpJM|`;lJu=D9J0z$%$_@|Hf|>_ga2
z4$jgi@y6fpOf&?^i+R!R+<3R?i;u|j%G*yx`l1~&NnfNzdHSP#4;t2Ph|&}b>@mjJ
zX$s~!o%<p+3Uo$o=tde6?51tiuCP&Jp+863iTd!l$ehww&8oGAApo@86uI>c3X5x+
z@veEbz}YMk&XFl;#@KjL%7R<AVOij|!r}15>J4+gz^dofMde4tl5z|bHFl<`B?pkm
zVy!*b$qC~N{WnbEWuP%YP-aUEhG6?4m{+Pu8p7>Z0*9r)6>^wya5$T*HY@xiIdM{5
zL_-8KgA+C04dL(P91yyf{<P$jGl3Mg!twZqRVjJ3Dzi*Gl`5YcJ+Mk4j0T$1k2!Wa
z-zw0IGh_**p0HM+Nd(x}td>00<){jI)5n_3>r+)~lujSQGyl;TT(lNh2<J@l?9Gg;
z@_8qdkdw&*;-(Dz8P$PHOkw=QU4`R{0{<%UAWzXRL<Us|u@Ct=#JhhAko3;YnXiF=
zXI%eb+PBnXP$HX_<%a_Q*?`-356ACL2O~2eo5M&xK28CiO4;5D+1?8Esw$R*AB7M}
zf<H+F=W&@jTdvNU9Mp)zDzHK9tZ@-7^!_+NcwYUHd0!DO^W;^Pfmzz%rr9wNcc9Q3
z35+v8z<e0V9nkqg|DOSosstBG%u)`*yre)55r!pJEJKw0P6HViWsm{P{os|a`r+Zt
z>XLw23Vp4|S5N;lIQI~opA(!}_`JGkw+jY#NiEHNrCU`K3^ad)V4z(wM!ueV7c0M*
zJyeIOFy#C!PkG!HZBo<=k_R(R+nQalF0yQ~MQC+!z*^HZZnPX@6DWqak<J-n`!(IQ
zswS~>_ziW4BRU~(8<;0z@4Toa=XkhZ!)k(awUNZJe2dG&g5A1Fmuf`HsFFISKWKGW
zkzuOdyMRGw(WQdn4RN<3Yl&@C@Hc*~t{ZXb#})gK)>Z7|Xcf`x`HxxOVh@qzYJ1j6
zE)}N9>?dWDQwRzZIVy^`#g0KR8GIbhL$DOU_9MbiSZie-j4rY3c~n-te&%)IZbIJF
zF`vykD*ldEAu!a#E}KOZuaT!&AQ1V1n&^m@=m!zhGOqg5y_`+EC&Fd~<ctu0uk=s3
zU$z|e{jo)X`py8>mh0%L7Zv^&MoH(IIk$`}>zS~Cex=(>t=s8J39})rlQuHikF#Kf
zH7$JSDEe69O%B^y5%cOs(#@=XNBsSr=Q`D1A*mx@_ygqb&~Nou8d7~#Br&g_m)xg*
z`v3g7br(-&wDkC2?Wg~kdz#pBXe4o@zV;^Hw2YL#)QBe(yP9X+V9_4SD{IxG>c?+5
zu|C-y8@H8iMyFpE_s(XJJ8Hu<!{vJy4Pm~hc6!{HFkBf=8Xu|3IN*Qg>*=ft+!>vI
zNX$DOGgta8zGDNFqlL5Sdw0br!I^|E(wEBFI>v!`gaa`U3;?Jng499|VNZ;hOVT!x
zC0%_7YhGC|j!;tn1w@iG_^x(vO{gNLzjk^JF^LgK2P1)Pg5}pCEQpyms?=Z^d5i=K
zSWHR~Bj>RH=w3tO_uXZdgY2vJOT^y-ZqlEW|K$}=wH@e#^gjqFcR@Q|@T%rEaT=Q0
z3$p{EzQ683m!*I{Haj1<!v4v>w>B@SMO9sp@!PWc%KWvzspkCif4$-<Uk%#Hm|Y~K
zDdvqpWLSp1{Upr+Y#_XcgXSNxPmVVM42(x(Nx=}N<Vw7zh*5c|Y9tTJmQiXhk@LFf
zRosl%&DGp|EVKVtu0{^`$jxDQh97=}9a2<j!0x=oU<Dh(5x3;@V1H^2-QP27QTp}&
zOljXl{`wUeyI?TeF7(Jn{kv&gJS_z&@8BtMDq>23K|}JLlNuVh@OL<y&W8>#T!e*V
zsf!5Ip0#tgss4!fM^tNYKAgfPjYvUZr1MOkQslipigcdHkGNMmM8n1@3``^QH=58|
z#jX{5`YWEsy^)+#IWmf1oj+_igHKUHjuUkh_`PONoF$AbE9p)bMV7IJ_x7?#!i};=
zy&W~F8ctyOZ0RSkG2P;4f>y(`ThrVqz(S{5qO)qd;^j>8l_Z{xxO!HqoHzD9SI=Im
zhv*UG>FsmQuI(COghlfOes}d7GmpU!k9!yNg`3>P$8De!#5NI7wsl^~?%pBZ<Lp{z
z8~3dIiP)Py{&b-W7YQ{b!2p{yKw+}Ne>L(R`TpiUn~i5tq-MB8IZ;e8n6nYyp@0g+
z|2~8ZA*5O9^WhkO>piZC;?u2(qNw%R+R@z<-IZyGir=NtVEe$v!ohWJW8bh=z-#*V
zQl($9R{Xbu#zsBmh2gKfv7s8P@W;|bU`NdL4jB-p4>6>Hw3>4uq7xd^e^EFxnLDnk
zqc(>kZApO`E{N*PJV=EkE{c9z_vayupMh6Z5j0~9d|RLr;tsU^>0m?KAGx?;ei&Bs
zi^&bH<2#l(%Pq|aiV0^R6|h!DoI;?}TA&fcgytNEknN=)%M!qmfxgGC*&$RDGR|@*
zZ}N{8NMlVx>*V3g+1_-iaF#z(QG6l?XT4vC`k%8(+?WT>9%Kmp{XuFnZbD_GpF_v`
zubzOqxg(=(2l%i5lGNtwTd;&~b>rb_rfiZb1i%(nZjq*;O!MS|%`j}DftNPlW?9R}
z@e7^e**3##*1)y>2rW8`McMzv=v)_V4b|-oQ@1x+W5M#9CSe6y+ZdYkt?Es4;Ek53
zfIu8YJ;>1>kU?CgafVa13_CxX5*ak?wBfQzhlPnW?7VD*$dH|WkTawdG4;Rq+lg&+
z=8On-VMtfgjmdpvve+Z3t+Y;H@s=0hA<ga6o0%%C?xsgrVYH+bhF=TP+mWlueSKx_
z5h|W=I*-CHp5mT7UY=?RKebj^tsgBbm>EoEF5x*-m*3Jy-q_ez)GfytSh7JFW8Pi^
zSu9|Trt~MN#s5n+jPZKTz<2QRSk2zXAFy8-Z$)v}(E(JIb748Qn{n4|JgM#>SH85M
zAhCTa>lV0Ckvn;zP|MFrcbL1qT^}xZi;-f2gRpOX7Q`jC@5z3Kc2g4RP`->_b$q8-
zHx-cuKL>+z2?UoFL>B%P-Y`TVdulNghEiGyW(9Ux>?|Ksit}yHT4_(S3Styv5WT7v
zld=Cw634(R{oN2HVv0pFR_Xk!anjdxlL$j21nma|?HV&fc(%>D0*9|6cHrBwcOH)o
z!yVIpOLc*cIW^f+yJ=f(VoRhxu??g4YgOqTH}0U}S}|X=2Sc3bDRJ*Y%+ba<CvmR#
z32YSd@3^)fuwg(DC}6|0Z>tMV<%Idnq(B&iVSJa)9ML7_ki%nqVKam9yj!pS#bE>Z
zBJMRB&oclzZoydDn+K!qREkFcV08g))1QZ{{V&~RF5G6jQ2wF$Y76-av5dVlpU)<h
zG!yV1tKIarQu<?JM(u{t4@j0KpRI51b{32l%-$3Kbewpcf`UQWIs@r?wrPk#>H2Y_
z>(*FOPHFL93q)60;S618PcypO0%qtsOR6QyHI$7ho@;GGSHeFZn65uFc#o?elTX)k
zq3cs~j)krVh_38rrTq*0H8lI1Y%isBDX^`!)BBpBmwt9$NXs_45{f@U)qs|Fu`8ym
zAgDEa2!2CaGJ*>_;T^a9Bg6aC@=K!S-Ajy?Bkt4%TE5jekd~$}GqgO~8VqR}(kNgM
zLu4AMc^~4<%n~n<N4acD0hoWjUU`%DFvICh9^W?%>Z#)y>OFMD&c1+$l0Dr%o?<r?
zLa6q$Pe=V}v^>S4Arh%93NFT3TpGy!TajBm5emFzOh;GU0Yd^`ar(8e%{*62iPhpM
z`1;12y}OD&s_mqhVw+(e!KjrT!q-UT%xGg#QiWm>fC_()J@RSOBHI#Uip>CX7OVGO
z|D)e`$e%pJD#KrJaH&S_np8I=w`ygw?k^ss+9|Hu3>_Th(+7#jfB2pe`S75f<My_8
z@&z`Z$Z>08w?sZUkH~D&O_#F@l0ytGkg$W^AZ8ECDy}|rVytj;AepDXC)(yo=JS^;
zETW>h`Zir6FXl??2A1!vgplqm9}P^ERAjBXFu$NkC^F~Dq8ouCQJuC?bI7)k<HG<x
z@81Ie|JdMwpREbh`@ZW4Jof9iydU73h6-?lIq;;V2@Dw@9PnJU=VSblcLxA|{pSb8
z_%|@N{{Jox0RP+E_XB+N`v9KUzE@;nCjy$-J|fbgu~=ezX-jeXAUh;CRP-N;8asCk
z=+t7;#s^`e9vbs2!cOh^zMVRC$o~U1cFq5_0|9^jbAtk2BEYZwPC$*b+TV{F3kr7+
zIOjx1I&E4hV`F!N`d#zW-0cHUKW^|IoW^Pw|A*fWdaz*5`}JU5!R~wTUrO-$Z36(G
z)-)*UJ(kk=uY4;2eACVE2lze)_^wqCPMQC678=P4lyErTh|ss%`mbE8sgYN}In4SU
zW6T`HCM?MF0i3|GhrKVbm-qcU)RX2t*yzUvBBXbEJwe;Ie->J{FY1Wi#j9M%KMCZa
zK_-p0@4#&NA-(Lq##q5LJ{G)0!yYr`x(T|D<tX>le--)_HA9y(3%RW*GQUHGDb%j3
zH`1IRY)r<5C%PW`oY;Zv<FhkfeOyh4!#=+gFH>z$I2g9`1N-XYnPMp$8}K{dq4r<-
zrlbFHo7zPGeAAil>+ZADp>$&4@TxOm7vyH9&%z{UxmRv?2JpzO^Q_0_)jA8lx@eE7
zmNQ$udCs9-Blg$Cu=D-{py_r#umm1HZcyS#;56iTjKXY%-~65cG}|6}j3gEWqzL_`
z-bFZrFWxk;v-y5Pbdb7iB;gc#P-*%oc_Gt|V61sJ%P#xRpUq%(fB&-|CmO>*of-jM
zqDj=UgPF^T?pxshnFD_vr(n;^Mc$YS5xct<H#ni)^ZxxYCKtaQ3}*Yc7nwI#SRN4X
zm=d-LN60Cm^=Y~*(_ORf%5?|xfJU3vHHbb|;7@+pK}3uqcUsZdmKhAkRAGWs7@6=d
z1V~%nF(4lE{{~+n7z4iV1{nL#;QRIX!Qq>6Ex3a&*UFvMe;@@4FxcXzF@rnM3GR5*
zB+Ln4V-6Pu4=V6yznViqMlRZgghF83X06YY`=^Q%+D*MmVB7=;WyzT{zp4504-b#<
z13a$=N99(Ce(wj*lFIjiCo<1>{8ib1j@-C|j?!E42|L++&hRD;<xk`IX|M&iS!`0O
zSeuG{U3D?D;a!|FG07N_1*_UdmZ1F2$4~CtSy0e|xNl}h31KqRz?|>XL+z7tZ7}by
zpXk)^=VS$(S`KA^JG(fsZCLAw#I~lEJqdfUx%mVA%J%!|KXJR1qJJByROxpa4eW|O
zk$GQNM)`o80T9p~nRkQU(dDYhvVF9|x@O|0)_vRGJv`EJ0B_ovjPBT5H#^!RiABY_
znHuRlg&RynVPxSp>_}u8S%qFRXA6<5oOqkb$`?6Xh@GpOced}iEHeKz%CztJ6tmg{
z?b>%x<9#@y?K^1WhunA<uWx^M&&d2K+%tJLB(k8CyU4PQi52VFbUg9yklBZ`g+?Ut
zI;0>M@4&>G^@%<{&>}3h0PlHj=&&6s*2Zk;6gDM(7bxt=KcIM0<Ndiiz;eNys-vG~
z^d9S)8jXtqOjM@G7&h_Ntl~7g$xw%b4X<9JT{=rI;X=Wf-b07Dm2R}sJf31VRB4)P
zT9&+2Fy2)#`omS=-@;K}L<UmD&wk$k*~sO?0kXtZ@YN4j0bEfENtk?LdB!pudlsMN
zYCP$~)hI@q-)D?)ex&ms;my6`f;HVGpj3w=E>QgN=%<fn_p_C=tBnm#<_U4Jq61I$
zV(V)ar=0&LrE8b-ynr=_Y}=`iVT_lG>V`2vys~Xgta@wU&Wv9j^DfO1<<0Cr(!OIB
zt59t2H@SoUJx)ZHfU-ixoZG7@;p7fmkduB;b0(?c^S)=qIF-wXAcjBo)_|x*uAbr#
zQjd8`aV1ZM%7gxYpZ*umjBxi8*MHLl{Cp_$;^E*0b1!`yG{ZKi=_k1LD;EYp%>S-+
zW)_zZ(V6xgt*u1eyX8-&&!A!<Qx7aaPkg(N29L4lD2^84FS+%%Qz;FiuOo`nzT<O3
z{?^|Teb%#!?Ac}Pz7v!cEAYJ5p5HK|o)%{w+`gkli<(;_on$%prF(+1?5Lu$qpa)<
zm6#Rj#L4bUe?KTe1Y9LJ4ThGla4jpq%rl+5*S_P6?wRtac=m`ryCKr~TPhKhrSADJ
zc@86-ve<A}$K`!-H;{k`loXOvC|)C{l?I6%iRTKn3%MyNHk-zx>|ReL6=}w2^6y?f
zh!LAv&pT_S&@3657d_k1kz2_a>5<cbC9_7*h+3RNPnziEU>ecCY(c;^=X}R{elnN$
z?fF2(=>IgOdi+fl7_YO4b>tYYJb#hFOK`sTkKhCHr|uD8$$O(qboGKOBL{QB6Wg#J
zpHe|wU*$+()R?hkCDartkVs-A@0hwO?5mmhW~8$lmcwuqMsB%ZcixouGNYKR5rGn<
z5(lw<Zwh<YyU1btj;2V*C1w#1ZW$(P*14z5qS1nw7*s7A?hmmBalp_^op&N68hQva
z=dcB1D>)!4Kh@s|AR3yge8+jrx`fCjB>MQ5G#<du;~CYet_7~&Uc8>fivd{}KYU$7
z4fC6c%E`~exnkoW`*dlvT~`KMci2^`1@g}#!8Nk54e7NIpGGip3r@pomia#*ilF-7
zr?_Ux*+RuKJ3`-D!*1e%jm|wHc#4nlcBJ!dH1lM&7V(}}Teur68z8gV0<G0M=gd$x
zzQCyMDx$f%=xLJ<Z!KnZHOD*Y^oMSya+HmO*VUM=w*g%7+B=K^AJ&D8m~Ot-pYGSX
zTkG6<J%fCkbtR2yiLPvr#f3!t;#<Dxa;`%FY#v{NSEjIUxtqfOJ$Tf7H`tS~Sid;R
zh98_}XDT_1fX4Jh;Ols}wKzRefO<AOLOw+_DM{UE{|s#mUGCq2z^c{?C*%yfXU+`p
zqw#hSg0P5e^;0uHuNb-`mj#7_AG|p^XUH8B{CrG1{=O{X(4g`*wM;dTrY$-v>}?p5
zPj|^8%<D4Q_Kv&mx^Uq6V9=UH*YgM3_pni7Fpg!?Lw%T%K}Hv?rKhO-yQGXuZqw#a
zgHa}v<whsyiM7o9nSZP;CKtNEd!?ASTOEVGqPbcVz4fPi)vUk%bl;^6YX7IxP#9(Y
z8Bi#c!_Hage#e#guG$i8(&2<oFOx+G^h``rA5QlmMJ4`$J$ahgMH3iNv^F@Oza|Sr
z*ok0krw`f*ZPoZ&11rtui+~a;mY_a<x2y9Y=|4kG@pWG}(fXn;yCh(klsUL)VH=Nf
zwN&i37PpO+U>uYUgjP*3NI5q7zd|czh_Vc&lI^obzx|YHso$AXzT-rd_lm!I^#COr
zhMgoYH@xgrCZZmw%yOL{I90B_C9MZ)lktcbCZ0;4$|3!zW|2>?ZQoYfa(&#ZXU?%_
z&IsllhvSQqtkk=lyrg|;KD)uGV{G(*%S$@HSB;yNHa){2)#W9rc_iP+$;@!jAdSUH
z$pz5n-aB-b=Qp!rqwKCs?f$<j70opTrd}Z~-N5{xbH@K0hwb+@<FF!KcFAG8=MDb}
z4wJW`(dyf+vR~`+VJjOQR(8Fs?1tS|wtL?9-#Y-WW+JvS^lF5AcK-+h3ne;AYvpW)
z+Y?6DOnjqdZ}>x_l-J?%ih`B;zcByA8wT%?^GK%C`KP)>^zz8B#VW~1w9oWovp=Pb
zhw+?yvsTHN^&D%kVcQwrh&@=`JpJgp$gfAluBc@X@`KLs;%rBqWQogmK5OF;Y=tsX
zRGiR`u$DH#ruV~c5q5(P4BozRYS{d7yJ`NYy3~lS!5U{P=Rq4^FgK_1Jb%#gQ%mrR
z2CT0~-O21swxRw-UTjNZ`=v7`d0n5y3~@Vi%;cZ*niIjg!nBoZadzgeYUk<7V7qJ-
z%D{&fy~&iEtQ?7m9kWPW;F<~W9CC*J8+D=G+e+54m)QMO;&Q3u=G(pXlfx@jo|Rhh
zRPju^52D1DHF$-&1QBeph+H8evpw+Iwo!wEr!4-&mYo!cB)&x_WZtJleqD4*FwcHP
z_39hQ<X^|s`MT*h@#520RBxR=r1yVR`LtM4DpQaHeu=bB%yJv9fFk97N~5I^1_EJg
z+YYqh^<cQ0Uaoqk!C|$*l*twBZSnQ)-i`jMIijQgd%J+HsmD5W)qt*;-D@YJ)Yt{O
zPaSuvJ<|37sma&deOt5=OnruXA*d-Xpg|wPfIDi~`dlugl^+aSJps0wQbmaXS>TGr
z4Th^o;!fVDioRC8^@gQ$iR=w2m_1v_Xby2!lfjvdn94l1FzV|IoV6=3|K<J}<{Sh>
ztoa}aY|caA28Y1J%|c*6{(MICue5jmZTq2Yo~F4_*$k8y+hHj$#!qi1PVPfg=6n&d
zct;EUqh{D;>`YyfBc0(jBjWgSra2kbrP5EkFY0t*h3%o!$G~4Fi=D0@0d0}izd_^7
ze87XV)s3UOdtXAi)zDVv%|?=J(ps&W1O0$_{Hvl@Ui>n$toYXBMixveoM8u0R-n5o
zSGMlyzh#`Zy7+ot7W&6s2p4<BU$P9OVBEAXb@@~8a9+35qp@W1H4FAFNELtKQzOZn
zY`r>`EWL~eeEOSzX`V9plq|dge_a1hYwXjHxlb7|lzxf_tBYTsFtUJM6v9{yb$wJ-
z8UribJpLm)`g%9>cv~v>@xFRI&;Q*%pyh28fkVsXv2g!D#oKQH7Zr+amn;5{^vSTR
zV$&BAXTNvSc9UQ0U?q!07|w{Ic+>u$^WP<Us7r2^-mN?-{EnX}HC3NjRk70lm;h=G
z>68agWZwTe`cw%f8q<Hk#OLnpG&q5C0#Zz(qDk17MR~+WKdiMtcF=U{47xCdf6YL9
zBU`sT(sGtwx71MqHPuw`J=b$9SkTi_cC?r)mSv#~O0%h1e*CoUZg<h%O)wpafD=M)
zwp1Q$r+?tlJ1Js5o`FhoYj5i4hkNJ8l2XYwfNIewkjyLp6%M)RSJ>_6y<Zt<c`ZYy
zkcso~Gh>(Q^$bbEyNwBt!K(R}-R=kgBLyPlc-#L8W?}I4dNWSWmkoz|tCj{Jieuk0
ztAE8&>IoiaD4{|1XQ=vn{ww(Rk$Bwo)m^}!-uu6W-|8Q-3;4gH>URPEX9wcPVMY4N
zky>N&62br6Z6W+7ObO1_$_U3ds&j<H)LVeOQZ=3mk;gTk{@2j{K-oYdlu*ry7S&I-
ziq+wM9RYYQFKXCr?#U0v>gRmI5wyawx<9uRj%*7BHGnA}p3Cy_!Hx+I5pV^QIwiA@
zWv(B<begrN)B2=1q*PusQ>(E!e8mA0-QrREr0r3a$VJJH5ul_iM2SA&D=J~Dp2Uul
z*(b%kG3Ulo6P}EvCT+G;8J}mjmz}L2KO@!BQ*uVCts4yNY(0or-GMmHQ_IV0CjNuK
zESp^Md0P)=q`Xj`a(RI~<^QCA7w)ouqzj@n2kGC11N%36cm2EYzw6(H@6*3acT2wm
zIF}dBf_7t8xDcLbH+rIYcaXjv&}MPwT-u$u7qnXt(oR>=54PlUqu&9uKf?aHMeF%*
z#D*&(pXh1b=f;3G2eiG=k2d-~pFX>Xf3Gb3w`AeJ@sqoNf3Jb?-#q+%;NNTZ=(m9X
zHvSv&)jaU`YI|`I@cY5Pd-<8XOa8jT9H>EPFnJ(<{dQQc{N&*;GVd;DZ_!=Xiq8D!
zc0D2cV%y}|SH-j@&nXv<7bIqiwVd==toq&7&mh&0LCChpbjsj5iR3z+5{Ldtj$jjV
zQCXg~eC%@nZD#&uE7+sE<q%OH+s?i$l(L4}z6q+7KO-O#t0qbu8w;{O{kKa{MYU2z
z{ovp3;I9$<*&GJaP`1@XI_>ZauQd5eNr8a!Yf9WoMj!)}HSIOTaTtVYS6Nv$z=~yc
zcnvT7gN_eksz*N@Bd4A6v-eqDS5m|2^*zCZw%7Gxqp%dyX#A1cXqgG4yQWsv*kJsT
zwykPzihASnAn?>~{glgOuavp2I!vALihC{y;z^!)VRE9*Vh6~K#>0>UrRmSr7Gv<A
z*%P$9oaZy-;b#U58S>7O_lnzkg$#1Lj@>gv2H;o3IG@(z%qvgXMBs9(cwwu5#c}HY
zbxQBjZq~^zp-jP^W?kt~8RRNo>0baKy&WdsdGQ5VMb_zdTut~aw)}$g-CyjTw36eA
zE!ZT|2-G(N9kEx1V#;DD@gY-;j0hs$2BAlX{f(s-_BI^J3dAXd#GZ~M_Hs|A78KTV
zZZIbvmo*IAMArNelJwnqv>ki$#d!roc;1kFs=lXp-}=P!C$Umv%t!01--sku(2>)+
z#td&rZmREjc|?8UIlUZtK!f)=n)p{F@og(`-ta>A`5u|iDM2%o(6UA*HHNdgIP>vE
zL+h1iprs8&froQ8X*Z{j_7tf@3zS5~W*RZK>ubk23h8-bA8xFF>WI=1T1UH{J`zd1
z1`=4pT*o<FJzGlZhpp(?lMT=Snf^R?(#fn+KEV3(5amwp8Zlgx%{~4IhV>^APvpqP
zTDr3}l2FM1<gU8m93%E_VQXD#z9^d5*4J`yy;si$aBoZ>uh&D|3!Y(2-<ZC)o{@GR
zgm(N-Hrr_YD7zS>&vVf69<ju;YAq60b$CuyYU2-KeS2Dcz4!UAe#t6&(OsT#m(A|7
z!CltbCENCI-Q!=n%f0UMLwEU}T{30++l$CNw`D;7`9RDmroL)u*wGj1)Y?<=W3wG%
z{T!5AQ5;+Tv!B}E$J}mumYy>HO=Q+PFOXS9>TTHI-}sj>?u*#hNI4+5QY}=9oCO)-
zO&Nm}3^wHd;3!R#)<g_!;jQJK+Vl(_lz*oJ0pUtzL<D7Jwp4=-?#!2}(OtQJ!G11E
zOGVPP2yDB$MYL9dEeS3vQYQ*oJKppmxx)Ec*gXyqPnW~1{>-818EpjA&;CZ{**s(-
ze|@tBx9zMQ?WNc`#ilCH;mGfek%dRvj{qDHGRuX;YZS#~^Wf{NNZT12@!n$qLw?Ta
zNa7Xl*fHzqN_)xKc1g+*<OEClsO^!+eA_yb!x_U~25}gUAXAE^b=bR^iRwNks^4Lv
z`WZVT$5PY2OnZGpBMZ(~7|{DNcqE{PWO=ofwH+)>t>?Tj4QLf7l4D;W@VP11jf`A{
zepT|dJ+9J?zg;`4L7!$kaR|W4j~Z}-=_!KRRmA7niej|Uw^5%|IeIzv8=fjX=<t!i
zb#VzgwDViip~;i6xg0W&udgEyFV(X(Cs$D$R1MK;>!5;ERFo<_p(j8~|ANPa=HP&B
zbp4OgK9dW8JmM*bD#i&I8BNX6B(Zm1uP44M?2X@n7k@50CDiL|^&K3AC(Oj^y&5XU
z#9>F-d)2b98W@B))QLq0piU4~=wo<Oti76f`)sR1LQF;?un_PeyWa}sk@^3!o*Ii?
z1X8aDxih#zHb*7oivz|23dNFRqJ57KhS)zInni3<RpueK6^mpNt69!MOVK0V@W#vu
z+RrImj6eR*adwHwY-%`;os&WHncfKe8caUS_ip+YWXAvUHPUf{qES40n>811Z@3`3
z#Cmis^D+r7HU?xNv&27lm<%+E$gR~o)@t#Obd@Dn$VfJ`;#8DNb08|4-AafKP+A)r
zdFXVumTMbb8B7RZa8D*T1GoYJnB9;m(4S^Hme?Kls0Ig!f9};G*f7us2m3qbWC`p~
zYY+s(S%*Jpd;Zf`S+mtE(+5l6k%}-FUmyK;`Y=^bwW?l!n&MWM)Z`Lfvt9Z1&iDG#
zC*v~@&|mH1_{1xy(rb|ue4ZLdCp&(+<s(QivPPA1;NaONRayg~VyMm-D(&H$|Hh(5
z*dMjtF@(I2$_^~X_MwsaA63l?L|Md0)?pASkgBKJO1*Q+<H6wgN*qcJ;~T3|Ni$7E
zp*nx4UXi01^Uf%?jd!wEX;Y54I8m87og+OfI7br+spr}v>2CpyeiBj??PK5UT-5`Y
zqI&K=IFt}hEs}JEYKAimUVz=QjQW#39HTb&KJ9zcjC$S~EXHDIpp3_t%mq+(<pSB2
z&su4}{5{CS;w6PB^ZnN^Lz^1WChOZns-m3zsTMB<6u<{pGPI$2^hRBxy#wg0!~4O;
z7_za_JpKj4b7nECL|!`0L0TfObJG39zX3|y-^;7b{$=6AOApR7|1nvuOd^@3N!}Z6
zS6g0ig?X3jcQCupptpL(>`}O%`?SBy%AHH~DWQn!6>Yr;Fs92`7#*{OuasPI4_8aJ
z+lY%QgXVZVD1cz9fF^yX==ewPAH|GkundoLg{h*v<nw>(tjj8nAT5e`1|~avbR0|(
zeUsRi8)lu4v?EdhZ)}9*5qmUYpW61FfcX?Z12CVD1Egf`)YKounK-PEo?5*<((x1L
zi$8ig;my5kPV0(CqqXg@ZO12g!9l1}k5jU6ESLpu!@BC%tfB>NQX&i5H8pw&@LU@`
zjQ`uBhbvxssD_VGj<+9y|GRH&SWkV=3wy+erR#_Nxvr}%dRRQUt-j~=65St)<6A~h
zGD?4kkPk|Y?qfFWocFNm-vdv2ULC+Q9Nky%4rLJxX-IX^!?-zxjYMXCN(a4;U)$hK
zL&d*$Qhnlo`x?eQ8ZUe;4vS1V+lwCw+vU^NRzCZwFE|M}ne;B@>3PLheUcrE#I$fs
zlhf^oZOR+hq2*C8E@?xFBZqV?3ihcAPZ(Gb-2&jTRKQhpSBZ)%{rfIgWAt-qq*FP}
z))!ow!pJ-o=sK-1r>Dch4i0B{eP}`YB}uV1PXf+q8h;*_g>#yN^X85JKXC35!dV2I
zG;5Fm=a3ntU8fBJoWlyzHPQ%w|9pTwgQ^**j>v(k*+J!R*d<iVZ>^`};CuI&17+ao
zPFO%p(t48Qpko3*BZ<THKk`{u{cfbwWY^?#_D3R#yA8#G=$afk(S1RRh8e>ZZTnbq
zZ@|atW6c7})AYuEeuA(&hFx>;5+tuBeg*x|CeaLdZTy?hPO|-Yy@P9ncnWzArKk5R
z?eCUGI%k4FTUzRW^RiqlqC1OUI5taL?121>yVn2LSoA;P8lpaoXK{N@BQ>s($w4C+
zA&XY!FnX3$LEaA}+al8SWAcziW3+HkP74?Ub>rzj|JU6>$AP{m{z3Wx{`04NPU!Q`
zv5V3irS9rdKa;wvO}y9F`Vlcr+o%To1-2jmhta$tnNFX=*YWYsi5nV$w)vPW(y=ds
z_T&FOwDBNCt;=l=tV0bq1795dF&O%cHSWZ}PA}3z;CufUv-YWMnrzmdSw6(qMSu^z
zUt>1?35O$e85PXphcjFF8UAm!Ig>pxaI%FgXum{F)3<x<n%#tF3hq|ZO8>2Y0k~G&
zWo@zUvhbr_eYZcN?Qb*p71!du&i}+7i;99o4W%rSm5^5@sSnLF<D2@}1_-#x5~zD#
zX3z1bxW(lfdsp3_Ccw_AkQe3Oy2=gpD@0tJ2ODdfmneA-X7OX5jp}jh;Uw2NjRM2$
zS;jwQ{$aLC-!NtKh^7w0eTm$crfw+Amo2guno;DgNq4kmu?1^iD87J<A$di3kwN4E
zWGnTH{LUKb6jxiYJu!fG3pa4mTDuNRmonVVT_u#R^zXUU)Jx#fgrU5i^ocQ#{girk
z;s=kMq1|H1NbU2Fe+$B$@4UM_dUZq<TyP|_)6M3-q9CJEvYT{;WV$jzziyOG(9_}I
z)!bDoscHInlVDk0{3D7K`uE+wv(F#4MRu+DvE$_c2EJkqfcxFS;<>U^=^qbZex5<~
zIo4qD{#V%?{nG<J@v@)X9(+>dKIxstC#mAU*#)nfFoCBq0cohV{K#wOJ`+eCOLn>f
zsf<@*d{4jo{BvxrVTYaBm?}Lss6J&BC~k4pcji`4jW~u@d$#74A01fpI|g-F^OO6l
zudN4>oNyS`tuDTCq$L#O<C3jrO4OJ-VybH6j_rND8+n|*GWYTCcx-DOdGk`<n>+O;
zZB9k$AM@VK*Bfp5?SK3Yn1Ma#GE$tCU(-L|Rqqq8V4}kL2+nL~=i8@SN`+oRJ}0ye
zjU|~wkjdf9;E&nxjCl6Sw;aoZBUu`{fPt{Ud^o89Pjo$$lZ1im4U-iwe9|o-cVPof
z4fAm7@7==+jm#?Xj|==8zJ#{e%fDtTJvc3+hw|Y6p!4&m!UFz^8=T=ncr8wNEn~ri
z_R}3k3;*5xyw!g&2?g@A`p?h*lwG2BF~1#|_eY2SO5wjk<KYTny2|7Tyh0Z_E-#JE
zvAIke<>Z9eD7QrTdhYtLe|)GybX4=dGJ`+rUjYpU@2rBMs^HH23KBhl5iqA~g&~9A
zmMPQ^iz{D)P6uV^6k3fudPU})DPbNkr;du$xF3CE`RK>SQa3S){CK2eD{#4dlV^me
z)R`1%B+q0+q;rjXfTQziaMsLqRs}JmNXIR~H!bX-cP6`?HC9gC&^nEKcEW2M&pq3)
zoyn23jUSu1A+o54Y?V`}xJqMxDjsC&-a8XAfQUplSFmZwP;|^citGU+dGDV{R#{69
z$}jl$bM7B>sIwro<)Ua-uK5r+I!s)l&vZ6@9vD0NVauc9B0hHk3{!22t-%20{wD|d
z@<qva!>eGOyr%b&Zzy>!ZUOvNDgH9kiO0m2i~xa<Z)*E2X$vzyEgv{$lSDTVzzx=f
zjw1%A^&o|euqH%f<4OILS(HT<KFa-=kwU>)el{_>m}XOp!HV*iFEs0gTsKipYcQul
zNkNj(g7efXyO!_BJhK=5^poJ%a-sRZP`in3g{{`980u-p0j8)T%h0PD{Lu^%XC^rP
zf3amMK|#K2ouD!?eK_Obpg1d6SnA6}4+C9cJon4rx-Y%r^Vph7)jAy&Od_@&zb6l|
zdbmT@{}O-LsvK!W2zhBzJom}~gre3nLJ)?|z)?UQMV7_ba<h@Gh{^$FC{ZUs!4rD6
zEH;eAL0igW!&V66xqyueyHpbC{EQeU=+>SA7J@)p?kBIEFA)3#dcirS8?MR9Cmjgl
zD?d{7Vb}4MdxUnJ5%c%R8(m_*o!3r6GbXc}CyJ#!VAo)!6E3HHY3QXZHDaS_a;K)q
zh}$<{m$6##0c)H)_7f;L4hx6qCaG903ekAa-{&~NVKF8=FB2?frrnG(lTE_;S{s?)
zY`@f+Hd(#Ieue%atp!z`Ho;W|u4KZ-uMOD8pxh*Zz-L=RZ#bB%zhF!=!EiAe1&PZE
zqTp1XDp(c{;oMB}645Y$qm8^FeeO^bm1aRtn9{%2K}{q(7y{L6v(!H~BsZiVf>yC?
zcAH$-uLU5(FSMq{#?TnsGVLcJZnPEf!}TPweZR;p+ogAT4jNb)->YBV8LwEtKk-H%
z^N4&Uw0IK;X0LcPmVAfRruEg`vq#dKz3Gcm-B;K5=~>$=Z24R-x#L~YUXwo2I!R;z
zcOfr0WW0Z$Z6jZ58q&I7P}5$h)4d9*a!BvbGQmYn2U(W2=+1s8@8nGQ#e_5j&t@os
z?fkrp(Lcc<W6TQQ`V$cj6*fzJCZ3e%z1*%rsh;PGp!fkLsp2uEn(i(-0HQU-k|Pd?
z(<!lSJ!d2;Y%rys5X4};jWdSH&^62Y-F%zI8Re{{P!FWHN<V~~j|33#sUYjUl}$)0
zKPjCuDH_0>H3c^E&_-r2E*A<kodYPCE(M!|y*CXZ&7y^Rm>z~=@UJ}AG>-#25Zv)7
zy6`|6i?#<VBPax(!bLqnh$Is#2p2qcxLxlVAGFg7x%gdNR{A^7aSesT&ki@hp-yD{
z|DgdE&7_Yv8@V=pjC$5UW?Ooq%``ZVBdgEMzkN)co_F36&SuFv;TLjXlS+V_85zwr
z1~=up@&EEgr^G8#rNj1eV;47ADn9-*HW2CkoV;}NBuk&*o=7v?IZ>R5@U58LfFoTJ
zOC2o*7t<p6XJ+pwc{!0)Mw45rV|}b_f2IvdV>Uq3UWt`u_-rt)sw7z<x3ach%92gP
zk~K47#X*`3k5746ogluID!yl`OR`6qWqggLKasD2FHOkx3dT(n1a7MIIJ*c=Ru-@Z
zX#<v~i0)eoWkG7}*x{Omm{7+0%~IsgkdnT{FplXD@#P=(ny`a^nm$QX_~zLmf5n6n
z6rB06(g|Mix7P;PPL=juBAiKqdy1cPSLXlh%MQ`yR$nYxl72<X&MVz$g~QR&(pMSM
zbn?c(_@9t`6n94Oe)Qh#=nWY%;~9XSB9h{GG#RBE^-F!R$3R#xj82OmyyEkZb2h%j
zA9|g}d387nvO^b{#w`7Wl_a(4S6}8W@iF@i^Dqx0PU2DTgs_IsAq;%mS!&-F-@Ycq
zL-9KoJKljmjM_GxqNYGzxxf9#0qaS#BjI-T!kwx;RoePlk#W=&x+sMup~pR2ia_2F
zYAe!#iq-41Kxs@_`@54{j<Q*VbtFyE-~5gnK5p|bx%gfB8Tv^o&SZ1mSq@Ld3fBv=
zMiFd^J}bP<kLG>mf4#vtU{{U2eNk>BxA`yT{oW;P59Jl}o1TO6WH@G=-Tv{Yz<)VJ
zW^Wh%OYQ{buI5O+;@9@baKtIchV*>nYNPqb_H^(3U(B@MqwRMd54?0t_|0dK4DrB?
z;(=80GU*Pl^z<sR0;~<boB{&9W&Q)daE8r9p+e>w>W{tA^v!WM>4JPWp-WH!NRK6|
z#NnFicOqUdj1W%^m6_z2yff{*zM2N*f@uaOj%LyRxL1gd&DzTrUXz#5^K22Z@sbkG
ze=Mm>jXj8dpNj00OHfo|DyeS`Tj}<C$}O-YL;r}E9d}}4Q~|ncmWzvFj#wK-&AqGR
z-q_2J(rQWhYvyEGhydg5w$VNOe?kk64#9k(j|8DKKx{yb)*(`qZNj2Hxh{RVsiQF5
znSb`oZGMX3M*ooZZGP(@PyMnj@YC;df+P9-)DhK`nTwZAju=aoh>XO`3QVMfD{Lg|
zr$5b)x9f&K-QVGE?S4t-z9@RQy$^{G7xc3}``7b5x}ieoYmy^nQK-~8()<rsihG1w
z8(uOD^Jm;2a!%-FgGxTO%#=mJ#}|X?b1TV|5C_TGtA1xTa~eb9Y_H&*%@P@Q=8x&<
zyh+^Cz&1R=66};72j$z=%dxO%Vd{oP?GVuMUMYpWaGEqQ5(uDaSa(E0x$3jt0985e
ze9QSQXsmk7z^KJ9(wXXYt%qy00>+f+s6V+2vrK3LEYDpf<O7K;f;!Ip$J0WDBxm(f
zixu79E82Gi0LE%!iHG-b_6GetQMC?0wVqU1gWObxH&wdvx1R3c#+sN>6L;b>iP##G
zbZ*c&?~?BO*qS7#T@b_DMeIXDTw|L3n9mQ!c;)!%ork;o19iV<m^~k@`zzgjrS31u
zx&JaMLM)&_rd3v84`Ns*N^(N1nqep&Y;>WA(=^S^Cyn7JuM<+Elx2r@KBlo0q`=)r
z=os1DrXJyunuo(VYYPss(UyBaRw#VbEFqsofMxcPa&zzDi+HN&&kSzbhSe*{@^lTY
z$kNR%+xD06V*)c?r?ukT=~!ygI_4vpt$tC;n)&P?-%8Fd#EPk`h!t{DIS&f_ou>*=
zb1s6p5262DRe=&|W=w+;3F#m7$KW=o0Aj&SraW3GOXAz?nA!qx*r-Jf4-iBzXppKo
zt+IdBd}Q^sEr+&aM7L`|IQJjX{a!*opSa_A!h?!BSR%}G;GXxq8m2(G9>DKggWnUw
z0>29$R0Rcm{RZL_g6G?GH3ds8_O+xzRa!}Yl>3j=sgYci@!AOOh5PFTligHIJJ|}i
z1V3D$wuE2)&8m!Ylk^H~mAn_+lyS8uj!qX)uJ>_&&Z+VW{8@If<zNOZ6{x(Sd++md
zzdL9Eu!NjT)geI~>>uLjn!ZzRVop^8(A9ZxUY+Ys;c*@U^6LCwRYL<#sReaw^P^0w
zoAg6tP_;HrjlfMo(i^}0s|IO+Jw&e7WONAmtpTu(*W>{Y<h60slb)cjsy7jI#}h-(
zO*5;TZCOD#K6Pk*{p5jNW2FFK#snsvp61v?jb$WBMD~~3rzY1b6^L{!S@dV}s|Iqq
zgeW~$31VT7elI{X2$@QcfHnuVPY(iH4k>RAK6ikI#$3L_Kv+wHs?b;LXP-l>+vrL9
zJVt*3MT(*}pFs^J#>pX~RA&WcjXf&En=0M-dj*xF+A}I82hPWXB;YRwUuU^2tj3Yz
z@>+-R3Mtm6SalEMrvTFQZAwrDRqto@E3$Pg2>9_FY>%O}D0-qGaPpI(e~oLD#JFxE
zCJQsfsjyVOAdW`MjrtaQu-xhxoc->~R2Cuv_`CE0m1jG%OsS(G6L4-VKh9y~aZ#BP
zWasS--igLz^xke^UB(0Ld|%UnoA8n<0+JS8@h1ASOSDEG=BlYYDaDPpRv+N=RE%Ja
z^`R(wwN(pub2aKZYCL|@Zfh&dtt~`qQS_?8D@zViSq?%L+4Op#p?)k<D^s`(JCi<x
z|Bl|6?llDxKy21PJf076boY&n&TZsmHG;YCHh7Edj1W=Reml$zsDBmglaJp)sry5l
z$PPO5l#x1CMV05_v|ShTxXDJ1NVX2ipw5`!mPz#j%33|(ZMlEu2W$8vxeb3#4SxWE
zd7afn>Qse<t}4ej%MsvF)P>ZXmyyO#$^%d`Dd3^6ilWyAz-L6;@zCu-<rExD4lcFC
z(Ew8qh&)u)+`p=RR6cR{b-ww(0xhU>YEb7F-lxu&F~<3n&6C&LbL-S@=pxS&)fp1c
zY|=oEynT>*bMX3m5zOm|wp&$UY%dJ_nIbQW@($R7mr%jk2O-)&HmJTI?Euc{oQGS_
zVv44ul_iluBYEArpPjQagb7hLUN8m2F}B{erp<9E%jK@2{O~7i$r~z|%if{QD21Lo
zbWIZGxfGQx+%nq6rt-$T1R>5(&<nl7-LgSVcgr{pYFPj4jau`h1~n@pot;)8K6cQB
z9DHpK;9FvC1^7aH8qoGKA74Xp`h*Hso(cFB%s>UOxnYxft|62DGy*Q*p2)0BA;Tu%
z4~9+kkA=ggTZuF&Q{DzCE&r2No`gS|%@oy;k>P`k$Wk{*-A6iRzlq9wgKet)`6tNl
z(?M?_Xj=NmdUp4E2HW4;nissu8*f{@_ENz-V7{-$q2I<|Qll1m$Z<DH3jBYLaoDI3
zIVv$(EeA5A3o*tXzgfh1s+B{c_hAY0VJ)Or8%1TOvw<%l-DNZWvX8jhgUE~q9ZL+$
zbqopR%3Br*E!U`#<VY9U8KNQ*ED^=OETC5g!q!toJ~t70tZw-j_DMo1J}SxoI-2*j
zov7tk9B)ClL3-mC@A}o~KSKybQv1bEy^iP<sm2p(%OdkGMJW(Ms}wns_qrjA7hK^D
zHy{B}?rpRJ3|Y?&=$#7vK0>IDRS4rmc7k9J<YArC({zyGA@PJ7TG6^BHa60rlmY2I
z!W@${x7oEtai#~|_?M9){;39^CljP%iA|j4IZE%WiKq6}_FVq)>=U9!!DJvUw9D|=
z$ZZpP6dILV$izJ?G{wSEqM^T)<P=wvz4U^~Bk#B$->mpvCfVo;QrDGiq`o+a!)!W5
z$mq^;b%U2ntUE#W7fjrwmurKU1_i&j*l%W<^wPI4I-D$H@+HhNG(0Bi5^m}hBA-xz
zbAoi^kK3%EkgaahDpN>hX!W!}3bACW5I-Nf7&Ewl5`$p>sQ@*BVgt+y)l%sKjtm4a
zh{1+ta&(?lo4k*?8Vv7Yw9mgZkV-x#?&ugG6G7>2{erb0OQOyGHBQy&Yr{423)8@n
z>Mvio(OJNNb61HkS4!XMz5aBsGIo#dtI&60Il2IJ5cJk@u94<U)uEoFsX?0%ehj|z
zf=_4Ve%elR`aS5UP;Yn8`?o)W9L~m3H#rRdyF3=|7vt4MmpfsUDnJ;GQIhvYyVWYf
zXjeM0-k<=7H40K@ap;BIh&u8{9r!I}SSfHOjkJe-gPck(Du|_>e78%$s?_T$B2)$b
zK2N%!;zW_8Mp#hcLBxD{z%dmWF^Ai<kAXr_M?eW3N4c3QiHdamQ!RTMcqWPDd8H42
zQw@jp7OUYd_C!)Y0&PoG)VB)``}cva&u~~E4FC&=W^xExP82Kw{XeS0q11%w&)GRn
zlQy`gTQJUDC4{r?C}e?i?CT7R(%u%8qp3l^qmPY2A7^|$w~s}9<^SNR0ews#AoWXi
zuG&EO`+?(M@-S?pZLS^1<nhZ^$1k6E{Nhy6z0Q!sFI|F`-Y>Ch%v_$%&qJQT0U(VA
zDY}QZ`qTXb?v?_<*K=2?(v^{AUF}@E%ogXkODAbi55BTK(FrZwn;HJ)dNadLtksBm
zss{R3?#%R%)+Yq3Q;P8R<%+dZb)X--fTS>X%{O+-*kAm1E@PL_pg)m8z3K`WJ5<c6
zi>Jj>H=w1?MaW69P)rc{uuR{8_x(rBfhJNcnSjB&3G^uIR@}GyPUWEK4ht9O_GOyX
z6MbnhM%ks1{?uextxHI)FW3Hc7kz1@FH_i+sVTQFZ8F7SUkV5G#YXu{Kv6m^O1@8@
z{PnA0#hWs$XbhR<NAu@i5_=``)+>9({tJ6ReZYVQEY-janf&u#nSbv$Lb<?V0Kc>o
zFCdk)0K}+qE10W-cr=@N+O`ut&lkzrY;H)6D6daVEypK7y(rM&U!@re-oc6T)Tu3|
z+Nd{}z_PlS5oZGdb8KuT%PV@OE>&9EyB`x`sIgvgYO?4V(`iDHEsEZz-HoZMMlEGQ
zT5z2tx%#o`(^F#~d3itd-K4F|s-2AG-pZ#`6u8%jfCNgG-Z&kZTcQH|<;fy$Y7?{n
zTCO@NJ8S5F|1mcgXLvFc)%4!&536!>v967<F0~Wht1Y{y{UzL}edFFtJ1$!V7WGfC
zHUgYAN)HF<5|+}h!u$RmM_HJ+XBF&#E0kx@^7w&dw_W)5@N++h_gHheucftw^7k&M
z^4|Z+%U8qhX8cu-hm(mkv!A@zMbuGw<zhdOy4Jeu?$_tsw+Ht$ufP;+(h<y=Fz0`;
z>V#5qH&Kx_B7H}pJq%XR1T_PN4Len{-J?;Q=ZsKu@4RKC+W!ZJ)v+S=7FfMva5#u*
zF?`~g*kuhfC+d|LnEM*L4^(X|_(A@c1!JWPsA`G9Zn6^S8LJYqZnHO*Rx8g<dwRc!
zk=1OE>(}%$vTe)bTDzK@fW#2zmS0`w9}_gd^MG3sA6g4oHf&(azy>Y~8rW>F7}}7{
z%UZzBN3eV(2;x0%wKoqM2=UbECGk{*nWRXk=AB49i_@Y{k+@g7_@(`rmt-h@%0-%O
zccerR`;C#Xcm@6gj5CE@5Nbnm$YtwmsIAQKw!rz%kVFgt#%IS-y45rhOX40jsR?MB
zaVp^kbGWI%xp-kkE<_{CWgIqll^74<q>>{zp-gNfW)PhI=-`2Y06kS>Z&$X6skzX@
zmr@L7iXcLXewbnqMf78d)oQL$=zds#Lw#bFDH}~kRI?L9C<upExoI`}VI05@^kKMs
zuP)l?Z`<PV*d)q3y<p?A1<`gjFLijDTnw*t=L<p|)H!qtsH2ihucJ2f%OMw}v#+gN
z$eY`=?dQP&0kte!0NpCYVGdWO@fQU&3)jkwiTZ0tITTwd*rwxpQI~ILk?dF!={U@O
z2E^9;zYFX^xWM`b(PG}zXp0#ObB-yE)(8i&!<mW|S5>M7nf#XXgD}q)W%N|9*EpW-
zUA7e|4>EKEAS4bTl}d2c-TX>_Rno80R?;2wInR2R!+9YmPP5+i<2=57fEFqQxmWz-
zf0xl;fe`w-(&XdraMl7wLOfhl8hG3F4ecy<-(HjXHfOrPf8m>X-~LE0k0G46aB;fb
zeuiCl-B5QVH2TxMz_$AVLK6h8z2dF!X2I^JtazftzuKDCkP;%4r$2#O%4VZ@rfPzr
z0wrYDamtL<yHo|TzQwL?)t>S~x7u%~e6;5>GI<-1((^PckV}LR`KZxBksj(x-%gJJ
zx(dUrpeRF1l$IW9&QNIvP$bzT!vU6l)h35>NDup)vZ3`sTg`)TX;3zt>mJA!8D)mr
zb@hIbvO$suunY==SK4vHz6I&G<UxAH%L%!pH*)X)fm3$U7jYL3XLIt)%^zGS-2Zpy
z#|f$Jss`?;^k1>auI7zkN9O`%>=l?2Vf81a;uL9^qkJt|FR`j|r9WISpO4)h%zyp9
zz8z#w1dbDLioLU0Lgpt`2I`jx1e;N?7QImibmops#Q%cXJkSdNl!u+8Yk*@`ZM0~%
z;9B~T;QThL{K)*u`JO?gk|%N1Trt0%6sB}t(1ARED>CnGeV)kMe+gw&WdL$BF}$e>
zZ(?>sN18YYhygEOZy$a`t?e%HXh2mh*L>&MSkKEW)0}X7Y{QFeUd|RM6_G@{KJc!u
zs_AMOL#om#j3G9tg6R*TA1kJRCYI=_>WUXtWkXo8EwOhv{OcUD>UXeT(3|WRv?Au!
zjbsQfjM7!cVW=zrtpHypW8kY!kwTllz7~`u*j&jkJJkHpVeWFwZ$XRv(+n@_rXPOn
zXn}nEK*=Uia+*t}9H~@Fc6jKxPkqz+^L1^n;57^#j`BC#p&S|w+4!%_e<hhSeu=3b
zU=294LPenWR6wtO>gG#CU=3rMT=t2^oc<V=W{8<$>S43)3=^0}jaShLhGIBd+D(7b
zSQ##dDI6{!QSTDjof?}5@roC{9qLxue&N>NC$nL#<6GKu6=I3Qn%i~5pXA5%DG;bN
zv0s4ob<4r?4?{fn!>`H4Ao629H(nMbSDO7W7Y9;Hf1)}y(CFOQ`f)VrjB$c^7snd~
zQn244Zq!3L2k?2qt5BVll#dG3i$hU2zQ}{u&O-$A*McHX{}E|jOmQI}u`>}D9Nd-Z
z84V!M+)U$I;cwO0fM2K~c?#AIDBdgvn3bU&;MBmcv6cR9zXqI}^1#XG&lxxO)0H{!
z7!;_S01AU=n!%%Iv}xu@P8D~ReqG?j09LM^Y|o=@m<g8Ajjt^O!mDy2%*WSk;LE`m
z{Kl-FLjw4c1HuylFesq@{lRc3kZBMGcv>LC`qMoSj7iC3^>K*6MbUPvJcGcq1>V)U
z;Pu0w_WOj}r7EE(bTPpKE^YvD7X<a!1QCN=xF`&IEpBOBnW;KyX@A|X7@21F%gx8n
zXaAG-!CpE2L!u#F2{-;xYaQ>gict&&2u;M?ayhy|jqiH@;{Uk)vao#{P~E@g{n~$Y
z>2BNqBK-&MYmsO0Un#UtG``>lx&-)#gAgcR`;DqZxT2}0oF$hmkbqPqoljx1LRBPK
zG$;%;3RQY;y2w5EPXwIwmvb2+j~<bEKUDt)#2_>WH>9Oj)m8@j^71#b`m)j>^`Bjk
z>jUc<GAKg{TrNssloMRy`wDf`Khj2j)=`<V&j+(9bbdemV8H$9lEJF-r~i_!oS55{
zf%+;k@BR<kpG8{-^k<)-KPcS5$~FlSW3OHHNAz);$3Hjd8Jb5*dzU?<(tu}OrT(}6
zhn`Icde)CVZb|1rnVsB8M<WSO-PKN;ta$K7Ra9s(#28Y->R9}M+y9wZlCfxYu%#C|
zC*L0%F*nyA%bx=AfBDe+`(s+CV`R^m6oBddiofO;^hoQG{`9B((_aSo8^3q-g8cb9
ziBal;#rAGnMa0YR=0*Dq+Rbw<u_MD-nMuJ>Pv4T;O>7b<%eb9?`oo9rruy3HKm7oG
zJuJhQdGwp{A@%K*xpn{(U;}^Cw;Ai1!MJ}h0PITNe#rLs3<B~WNZ&to|KRN-^1=K|
zH?BUxNb{4DyO@7LH)tSpPe2{cZwR=yERaEqgjoK*f`jHpC_?BWgP|Kp#;)2Tn0JR&
zq`W$Qv<E*B&Bbnx1xKiy`{ley+M!q#rtJ7>=B7$Feii0N0*;E7c|>~9%r@50(Ktzh
zTMGl3$3hcU`L4c3bIzRBdIF1Eu6l&+cT%Mn+a;L!?p6_e$F+71;zL9L%$E#ilhj%h
z!^k&!vnr}d4@>+n&UY%;si@w2Xl<`ndR6@Qb=KBnTzYTk>He+1;pr3Z=~^yk1=NLR
z^=OuP338PMkp40=?*O-6zxx5@zx8wY{GiaSHQlTKvizQ<_g_8?y*DX=3DDk$-tmCG
zqMQ;77anB~mIh?aGJ?xC&pq{zl!<nIMM#%MY%WX505Wns&Y}B6i`DIp?%%M8n^gZG
zbie*#qs3)*3Fz+VJ#b%}!RWp{J%H{rIz@MBZ!lDzL-!ZfT3e5E$)Wo*?&*3igVNnQ
zu6V<K1?fjM%zy_3oc_cEMtgW*vwrvIf!BWq53nVD&JZ$7e~V{mb{l_Umh?Gm1oR(L
zZM}qnF{Rn~ZIeb5ldYM6YGQG95ZST;MKHAD2mBuR^@Gu?YouV!r<dj?7OC>Y_8~Jb
zYpp^MpIjqcjasJ*!?q=Q8&34l;|B~BL7Z4Mi(rEU-7CG;7crQ5AbN?RCwl3p*|teK
z8DiMz4BgOsAMKbVjyls?DUEaKy@RLww=Sja2G{n9dU}hN#%@T@!e;p2{V5n-o`cbT
z_<Yp5kUORj)`l9W(n*FgIJk@_#=)p8G}j*cIgBVg8|j#<chXB|x3a-Q@x!Z)XV&S$
z_tvW>Ic+sI4AV1)2gNtMlx0KHfF=Ixx8!<!y*(NAbAhY!LN2UR57kejdwPzZeqH<e
z_w+9GfA$l4y#FrjWo^Il0eyW*z(ZVAuh?T?Uq@TEMP~SMCiVCJWDxyi{Q07x;uR35
zF&+FF6Fy@>8=xX!!6x0Av>7v&`%8n|rwWH2C=YJoF&Dst$ELQj6;NsGAC1SZ(1jYB
zWvFIJ;kR28YA->MO^n2lx^(Xsv)onVxGOccKX*;+U7F#pS63PBUgOgHy$pA~Zcj&T
z(bF#DuHL!+$@hTh_i|XvaMF*z%v=tLKTZ?dEOePn7WpcQx*wK>Ww9OekP%G(JFuSU
z(;qQkRfi>fpCx3$d1(&B23<f5I0;6t;KtMg{FjfLH~%>RH(z2u&wR<7*!znRH>FRm
zG~BP_())kZy$g60)%ic3O|p<+)`>ziB52U4iS-f`G(pe+0cUZeL8u0_ilP-NwJ9Vd
z+5mw~fORv17OS;<E8bdf^-?jS(wYDgKt;d{;FXJ)Swa=1N-j!%pU-<{c4w0f0+#3h
z{PQR?J9Flo_q^x5o%g)wJ%0(~<{kBP6`$59&ZCO~$alR78JIyXJpS)M6;Bm+>NBC2
z_0o%u{3lxv&}WPPa3_?bqIvN}oO!c_m6!~u3rHR>FTlkF4m?C-M+W?6XD0@{Z59z=
zNu5*&1HQLH=;D1`91Qrjdb)v6!wh)l-_Y4Kn*k4(9@t9`1v(y055c1kiXMCdTG|j^
z4vrpn?C3-f*Uvl<J*;gIdUypF2R*D*PnYs(G(CK?)~1K<k99>42hA_ggR${*tLLEb
zbCv?LFE0m&pB39X;pdVW2g1)2^@5)VaB<-05%qKtpGM<n;~E=3Up~?meq#97!5tz)
zMbav=v2?j8dy(rRX(22rP)1piO&R<N7nLn(I|!7c6r4Z2b^rtwLD=Gu0ZZ6Ew5=0@
zPO3Zrg3_v3chEB%7YBmo$kViGeCj}ux#?jb<){4XvE>P-TOvcdmL~(P8Cgtu()@3M
zvxOJnY(f|E<e^VH$&-`*(1kpyQB}^x#UW2-si#$Z8kQ#?Jahnga$`(;u!{W+s2QJa
z8zz|>O~(vCS7HuBS4=SjVxT3>rS|XSV=*S}fM{lxgc=tQhO8!FdI#c?qmCK42BSgQ
zMPG%zzBX-v{NN&4Z9UHwdubk9puO}<E?K(&{4YW81H8a)ykFY40)-&7ZF`X(Ji|Ts
zlL(UYIT}gk%T`7YWiK|p8n&7;RK@*pX?iSdHT70cPvp}D)T}@N7Q>qSvDWNV<K|UM
zFb1=!z&gnD*!E5myI^ZA;lc?7)oJgnLYY`<y@S0|vz)j|o6ZYr_$hnmq>nqX;9n{_
zvtY#D`SDf3{eD~=_D;JzP20n#VSDGw2Z4j1vUd)J9*2JMGwG3mt!j0vD|)=nS|Q0H
z@<i4tdPKq_!G277OjbDQ!OKt5<I^8@qQ~rVVqAtBmV|>I7rr9Mz8e<@J>IFF2Kn@0
z>2dY{bwQ6OD0u*dFoix2{sYDZ_epm}0|-6BJ`?~WGsAS}L^6Xv778O`_U@cj=9qUt
z46u8-tfGj#ql=~9VK(^2%j|60a$XKF8=L?Y!Z1TM8@%p=2>rtH;cW23vX1oYoDB|<
zRy-Hu;+PFyqT0^kQ|D}O!D66oU6je*fuA?C&z<abfI{g5Op3Q2ozLf!ShJ-!-3mJ~
z70I*9gaDr71>a8yD-zo>S2M%ntr40MEGL=ol}6E2WM(*6RXGF~ha$N^J-v`m!;0kY
zzo7Riwqa_`;5zhQ+!6=q|7oPJNdIw%PLPtqDu6+EED;j{&%7iEc$OD@1~T<Qra7i2
z3ISJd>4boHrx5`$Ec1(0m4k6{AYh<+dI6t?5wP$9AmFHI1a#>C*J}JBFYGlWq$j@e
zUp>R;2WNp^bC{U;h3;JcUF{x#moD>O9HeG$yZgs>^O|qColTf4C6lT(Ne`r*a~zZD
zxX;BU=+1tvC(jNBGkT8ZbHhFFj_!C3eGM#9cZjE<gUjKCQxpXtL74e(RIs)z9W}lP
z5?}3pZh232g0O-PbFcp+2SD=*nVMfdj8wl{(9mD84@nvl*4n_wRp#w~23r1WaYYAw
zD3|Nu<m>&TCEX!zthp>iFZ8Tq^~!KR^BXQ5SRIE<CNh@a%x5-Dft~p9Y3pGIQKa(q
zt~g$Du)KOdpl2RaMbJ_3Pv?3uIEd?IkcBxvk!!d|6l}-FfbEN4J7E)h$Z&789xB-Q
z&^%qib~0f*z<RMZ_we!C^I-6M`Q*;{JtbBjdUo!^jmHUouemP@za7_`%(nYU?{xWM
z0Ub&Nw&aNZn-EmX<Nd$~Nt#<9;=(>m9OJ~X!$`p?3i$v$#YspLc;0+(aT^c)qOyS@
zig+D7WC3$IUs$q=7c<zoJ!XNz;qR!^2U>%g@6>9(-Ky?rwaC2QZZ)5+Vgdz)CasPP
zw|a10JF)Ao#p;!#LmlcrU{|D-*j<rUI`l$XiROnJzz@Li6xjRVhYa`(1!2HD*1ns&
z&p1!zc4H`vYfD5>G}bqZ@WmLjWaK#C?v=8KGM|i-0m+E$*1xzH{=q<a#G=~Q=E~lQ
zD4wL>lEcpC$E)T!6v1nmUv2=_T9FkTW7{3S61#izw(tPbMEd~JQji^&n#?l9B{2P9
z>;p)<SN;tv_e?WFA>fa30BPAGP<aukBnsZ?Hy;3BvP3*%Kx~ZN`&vwl$v2g6QV=?E
zw(pO?S&iT<s(o$leIUnZ8D`^4HGl2FU~FV8j15QVf{n4$NCpU*u#aq2U_Sa2I2#J6
zLq6avJlMF2f`9sf=`Euxdb|4HF|mh`zRvXa>OF@`Zy7&>-rR_mu(5|^^-<U(m_J2t
zZb03c-n6+_(G4DDf7#=WHjw58$EA)J6AYd~1PbCL2CxX$+VT+(IY3(=$+`S(Iog7o
zXovdS&em%Ffz=EoYwb=(!KS0Fnz2)Y>5G#iPfk)#+<0B-<5{fp+<cOU(-(h0b2#ue
zKEG=J*=0F6Wjo%5+nh2S*i;(Nrx%v>=52yJ)p(o8TdjH)0X2%dvC^xh(qHolEB%$T
z(u*RMO8u%*sh^b&QuRxvWm3Oe)&CxO!zji9rdun|llqtQ3G06WH({WUi`0*FzZTG?
zMV1)L;^+xxYgLrF<!qj$Y*VO&3RDJ*Oih*S`}w@VA4Q67z00aKC+YmCFJERO)O099
zO`8#Fx(A`AD|I8WC#OSIeA~%2Z=TbJBTA2=GD7oqO(z{rO`o;Ks0mw~4jrZkR81s`
zNBBMQ`+$It?K|jclFTlRf!|G}twD*5hv|H1eu~fqi%W3G9CU|;Z0PIaP_4CjvzR@d
zq<BcC1H_(00?WXlY;G4RLc2ucmpGymXe7vw+aOD1H6!Q=vNAP?jJS><({>@qd}yBK
z02vt_qClpFlOI}P?Nf>gH@266BuG$)1NXTKZhzZ3mK%;amVs}h2)NSxAENRwEo(LZ
zVq1YvQD8>8=4VHl@3(hB?&>n6QABFRH!4l=#>~E~!av)7Kh$5pVQ5uza=AOyg06s<
z^2)B$8&~&30dHW7p53N5>_i&)y-2fHezAiVAwMd7NaO6FXkWj2N!HrsNc^f<Mxt?b
z25N6wVt%}jzs>jM!lt#FQUD?0S!TUFh1ANy!Fj~8QH&Fdw`#Sc<wpr{v0kO1wXx7&
zn=?@L;ezSz(3vcj_eS}zgzs(#-?fA9cqD9_?s~_+`t5wJ?tA3n>o#owvR?o5Ele_l
z1NJ$4$drRf15pKFV{m7N0zRNF$J)@Ir!Dvk1)IOEzg8n6NWoosizM+Q%p^V==7D8b
z5Xj+<c1iJ)JN;1Q#s2SOaCriOfsMwY8V4k_0SSA7ge?ais$r@wqZo%+Z>=2Cr9eHe
zte@SLoHCKE6xcasB3mi2FDM<+p>N#}3!)B{9K%Wu6+s_=CkXPlosV5p(PEWniyu0g
zI#l90yh{9Sh1!B=shIt31GVZ2>TZ-)Q_W6Nr`gK7RyNF2l8I}T!k4+BaSAN3-i|MZ
z%dbjm<@OuYX;(N@k(#;vHmyedHAV%Le<dv6yp|c)Gwlhn7|kBW;GS^em2&ezZ~w{%
ztJ+Q|Pr_c~&}QzqiN;$zK}2Hv*i545HQPe>ZEao*p*!%raZWuULiZ)a6xe#Av(V+S
zC7j?>8pjm6DkjYmx;clcEMD2Gcxb)2hRmnbPmWN{R&MrD7KT>)0{bmmP;RIN1@&SY
zq3}%kr3T`6*jkI9kjDk_@esBciEHrNXXxF0d21`ZJ{}b@3{SjyYqfcKxB=f3mi5P=
z{jTg6{DAgVC5@`~n`r-3(x_^`f%Z>jJnWzL+qLS~L`uDl(ZqSyj)RJ~6dEb19L-Xk
zbe|XxdH*14JfZw%X#+#-i+5GEj4A8EyZEY>v85R5me6hn1V#@vqOibnpXxXVxl0>n
zd8hD#DC4CYyKTp3bTW84wC85w?6pn}<L%erH4>5Is7n>o`VGgAebWPPhx&j}c;ED`
zxm{lHVP8^Dbl0@QW!&-Ff^QYO7L`?oHPo{Vj%CVLY{I|Z7LSG4s`w|qh#~HKvi(Dq
zW}5WKynl}+)W&Ny7f8cS>wYn7Hk{V|W}p>M9M=86`Gm6MMci11^7uou?j<lZ%DR^m
zky+_+&Pos0x|fA8oA-(syqLG8yo{(Uu>nSODxTZehS891{gfF5kbeR{iyrrMA?ZUj
z%kTSIiHIo5Mk1I)AHl*{HOZpFq0&Nvs_7@qay?4iidn8d8WFdh%<^{*WR~}4pAXx-
zE&58(_>*S&y<<9=<@X{YqH7I7vpo4ga3hTPXTW_w_RL~B;cvTMtC4V6+b(^X2>=w=
zYksC8rF5nuJ`cpVSYB3u>sl(W)${gi^FAjONO(T)Biwic&3g7epK%2wcMHxR{-)jA
z54#%M6U)vW2JPO1wUlMzwz3Cn%qdHkd+PO^vJ|<ecDSH4rZt&F20v7idTzIa%$aJM
zb}7xS4pzUnUp-_pJa1jf<X=lo=GRRY;!3m{11{jOxU7;N9mM5tfwWurB8Ir^bvWX3
zn>24uR+oFK;Bqm(igs7M31<tm-&u%1#s4rc;K8Od2eY>fE-j}be?;Eu8Rug}&Zlf2
z$tl)(1-Xr->HfDfhWgiJ;J)k>48#pn`{3U@%8$djMfjxhEqKpz;BiE?{#8jU`3ody
z{W9O%Ma*>cmuYj)=eR}faZ^6pB2JQX=#qeYn^9pnUCMY>s2Zofz*q#x{pl+$;lVG-
z*!P+W+qP*fz2Zpej1?A?LBX)YG!ZJ%W~k%XaV(C6D`!1ex0a`9w}N*i3NbjU$|!<0
zU~itqX)=_Gu8rX!Oi%@#BT@TA;XJt?&-h1&Nj^}bBh!`px)xavyq*^l8-RkDCt}tL
zU&N0R#xhEks9G&b+et_4s>~OW-#PRg*03V}N5sop=X1PI;_2di4s6C37Xcz)jJsJ5
z`{W6#ZXN2hg!equDMMZ=09Gfap3QB<0Qn}o7uYA+Hzn$3MK8YKX68$E;|?4nT(2*)
zH#B>(OL?DcX!aSsu$`bG$GdTd59grx+k0vLXF&tQ=KE46`tS`(23lFow3k^8?RdDG
zSZubC3imhnnutX7O(YJO$Lk0f{mV=>fGa3R?bhJIU(W$17@#wz`iwC+pyS(FDXSCH
zbC5<Kr%5$!#4#HG_f|KUYkkzZA!#O+G-Dm3vF&oTmq)xfpqJ9fF&agRD(#ISARwKj
z2hY7~wCO&tp@VE%Fc<v>bJ4fi5kR|D&&Hwm+~<_Hw|o+b924+T()Zr-D|J_c9!Ozm
z_~4t^6)RE9<Y&~DWt6nCNT4Nj(>f~(KTvVC+5!@MI<t!7U>_Lu)|VoYjI^b1cEc>D
zm)%iWqO`XxnEMLD9Yr6Rut7)y@&NsmV@J?6Ijq=BkqS+>Rj>P6sTcg_2%rGpjkOTT
zzGj&BMe1kt9TADCI)sINXq%$J5EdoC4%TKHWRh6Iu2>a^n9<z)7t&#cl5l7H;3M=e
z@wK9IqT~sAS#7Hj{}GtJNUJ-hs`YGb(MlYOz!r?6{b2_8?{Ja1+t<v$HuDl04UAEe
z`55S)HKkH2WN`4auz9-l7vSmNd?!48D=%P>38)d6b}sf??2jev4cusY2~K-UuvP*m
z@RJU#6c!j&t-sK!uY-u_|6xcnUJ-cQ-+)Kv3wHn$`=eqzh?5TZ7)LISKA#H>UM(=<
zrdVz;3?gP4>&3NMQ$KUK2tAxj5@ul?DK!)eBiR;m5`3v=x4^ZOtogqtUmCX~CqZSO
ztMtGgvT#lPtbc{0X#CB|GrJ?(0V`*w!X>x@1?QsFOb|QR#NUE?mY^Q3ZfxRJRjn{>
z?_{muXw>wPRy{&~S+Q~ew+dAtsR1Zxv67T|A7~5S=0ngH_(TcQ)rm)+gLSs#^2xf9
zf@K3AL<vseypbF?fs~ogpFZ97t#F1hHuGvyF31-HZGMZb6dZDtw6pXSpaT4$RN<R^
z{#YhIra&k7aeA0}?PrSNh74azhC?<nG-fjdR_+KzhB<c>8LpICOj1YLJtKq=$W^E_
zbQN`jF|ch7>wzCv^-L-g?v=`*w#~dqWun$tBXYQg@o(WP^f`!yV2d0PB>>i9Q;|N|
zTWdOY3&Rkaj?YccPIk}irY`4JfCle$aAODhll3rQiJK{~{tC$=7);E>wTOJh2M}K5
zE5p6yahkz2NkEwyX8<ts972aOmITJj2}Ix|DphNH_*3OwtcO7#Zd3Uh#fF`|dx>=Q
zX-nN%SD;`GpBs7)kYT=Ns9z9z+ST=hd=DYtV?KmvT**P(*pQF%2>ds=ksd-yFo^-e
zEeS)08}~vN_yL7tj}$>iPpo`A_>sfz=9+3ONKasJox-Jvu~(=}@B!+P0UwKX-@>^{
zQfIJe76)#Fl!|Py63IP#)e=0$>Py=4)g&Ltec&_+&+r44nU9TRJp>G`S(RC+2%SOk
zGIlzK_SsJ2#UWpeYDYff3r<1JKb_AQO>iEKUMCR``NGzOr)Cnqmw`r?<`Ycx59qOW
zHVTm7Y7tWcHk7>B{J``C)`HD=%%tOOtOxY%g@FbM%J{G_@KIslb013Sc<Vzc=Idbs
zwqkl|IAA{1OQiWwB?rwHcr<f~ToH@wLslR8(mn<qdDf~g=!XW$lF;c%=9xPcTV-%C
zL74)#<($I^Ewb_<2@zPXcCa$YVyVhd$0Wc1IhkEpY^97-O|nY_miCNFBxXGigMzJC
zwfK;RM={g88IxJf6LI)Rt4WqON|W=DP1QB4->SdXL$pgg6ao<ADJ;IB251efx*Ydj
z>VTI<1*Uczan1@~@KIqFZ{R)ezR!@KCRLxjsR~C37Y4rYX1}X1b64*D&5m&!b?-hL
zecIZiFz}_f;fG6n**m;}cTqI;XjGWJSzi{Iul~IIzV^9r25YmID;Eu|ZeMn*H?Ud1
zb<<!ydxH-h<v<Xx7>Gv&%Awjz@948zIrgwoxh-vWD?PLj|BUnZx1Ovm@I%w!E={Yx
z&&|6PyYMSnn|C{Z0Tn`D-0a&2AA0?5$7wYo4!Cg*Y{a%%zg(So(s(_9_K|zira47!
zg@NtFCDB(H_`wG$RN@VM?+qYhR%Gz@5N4Q76MVod(XN*MjI^AU7B4E5AjW1TjZNA}
z(+a{WL8N#kjZG$Hu%;pt!jM~ZBEwF5QwGx>VGNNFH4H(*LCRkvSA|R2pM)--pjCUo
zC%8Lat4>gN=~{IQ7#`1hBkSr{)E429()aE11@^EuBG2dg){E1t$sF78lOsn$-@;ef
zP^M!c#eiQ!vYf;6*7I7m1*<_+z$`XzsU%(AY&nQm24mlcKHx-WC5qG+XV$agaQohU
zUs;VRGC?C&;xRM^r8)rmajEsKs7Py(le3sOb2BpMlQE%y7;I&?0zm?CTuRlw{{*e3
z9n^q12cUf$XWHV&>cpOd@TzYqRKxyst>#h|08t8v{{6?7-h$_SN)hz2|K!qZ@NaLX
zu9NXnM0Qw1<PEgJhl^w62=Ro_G}^>yK&z=EMvSWg-?~|oS0`RHD1x5walBxjeP6+#
z@xl(n2+7D`M8Hs9G8C0-fU_M4E~QndY6V9xNODKP5tmMgo6xx+3@GM`deSXyd=M%=
zBWj^UP!p|>SBEN10!)S{)na`pJcY)v4xmP>W+WFTccBryLKAFbe{QWuQa{p5wj9UQ
zC3w9AJQ=VEj2ODmt)x@K{qAc~Fv|QxV5|g;$H#)P0=#9B8)+bfv*rotNm}(jg>rz5
z)87^Ht9SA)usMX&)Y;t4;pT+eY*tn%c|5-pE87Mcc~QpImiAqc2=XdX+ID1RqKryx
z39ccWN!ac)ra@-ypLGH_>lePjx2#q;6kXCof9C?R;a>J{8#htFlI1eYwo5tz>$A>c
za{$W`I<VY{39$v~^)lj$C%l0VLk}`1pDkJ;D5{5ovwTLM-V~$kBgC*a?_u0fOH%)m
z?Whdp#T>qH?G;J}P}Bt$X=2#TLD;v^S!#BH=guf*r)?BdfNx`Cwko#lh|niE^v3-C
z7TUr-V_@;W=tLM`oBB2}D7pTZi^KSZNRI|=q13H3M;8Dp0AkUC6VTAR6x`I+wrUM)
zi$fIL*b@c8{UA|l3vRAvcM#kpouaTD4L7Q!G=+|+2daWYkkbACL#hZ%X(gR44Rh=F
z5EGSXGaK;>(3wh#jqN1G{<E8PP<P^U@id5BDzSL(XNcv{E?FFP-}-7yW>TF0%;4}~
z+e-Y<Ilm;<Xp;<WvJBmZ(Y87N7>o0L;P|4@L?sPZzY-Hj#qr6VfsD!VML)^$F(9=#
z{uXe&&zQQ+>)-Fv<~{-q13QiD)>`#1Nn6TjEA`m+N$6uF2bDa;*Ni8>S)LYXn_86u
z*x#I>&8ZiDsa6WuC_>bLMPA@jF_qy4P-4SkRNBtUhPK2=-UsC~b=MwUw3(ecHUZU|
z3D_+X&7De)(qcYDBdbfX@pmj<nuFd|9)f}WUgjV{Y(Tmw87EqqT@Ozg&1(mRDT?!Y
zs7<jx08u*e2qC%+(1&^w-vR7A>@&_rA0|?d3%=M*pfS}dFW(yorL<%%Z3l(Cz1qCL
z$`>{~)(gm9fe${)J9Jm8OebLgpjP@x)?quvkw)BYSlBdO?^v!C^Cco~Fpg%gwkBts
zPr@1j;=(@7Q}Yz!fU`=Pc{VmWAi|RHA&n|ZWVmhP;7u-3HW7*jwR#)cQbnR;F40e0
zv|>J7faYD6xXGuuK})5SIUNo5E+qSbRZr*-djZhwR)z>@3sx!yVx*H+JxKjXlpoLI
zU$5~e&cetI8!&#N2gap+GWqnc@3>Ikw*wQkV>nS8lne>7R29j7Ute~0_UQFX){IDp
z)TX$G*!IwR_qTS}{9{n999?g?$7AEDFE{|5UutDLADb%JuF$RE&TS+b#=-oFHyt!K
zUXW@;TT}k1fif3io5lYKRb8@MF3f)OjSY%wJpX)=R0H?A0>akPB;pM7y9-Dy&>I{>
zp%&>BEpVEr6^A1V6}rMgdnZJ*`PSP4O%$Q=bS35U!obFvXUawwfbzdrVQ0{Y?xJlp
z9cMoC`4Ll}PjRJlb}Qp!5H)yYs8&ulYuJ$poA*&{FNI13r3QOJEG&|I_s~YrB9w~I
zo;b^085gjh?Fe7n<D#?$UQk;oLlfdf?SB+)@g9~cjx_n+{xt|DWxXO__uhXVK&4+W
zAc}kq_hZ}-r>IwT{qP8Q8&PG?H$El-r@STb%x<Msh%+2Gkp9*lnjz}NHW{n%9qf_}
zMQmcGVb;jQ=@p^lb(}d=9A`&_&@aZaH&*vvd){8%6S)&%c}`s8&kt+XXj?5JzYl1c
z|AhSJ&T&2PL5MDujyxBIhCw@y7|&fui+Xlz3gn8m;5!g5ejLkjTd)QH;zzO!;uY!#
zBOkQt)fgJ97~&H~LWGKI@$Y!-3#{-WC-<_WHa}7_q{rq*y!%X_YXw$qy$twoXzk|1
zB>vV-H^FyDsR|>Vb0S-x(gUqr4f^&Y*5eUS$N)2RbtiSMoF9ZCk;J!Z+Yy7Ip$Sz-
zbv;7(BH{HT*Y*guJ-d~`)mrsDHLeW&)v8yiaV0HaTyLW^4y@3ZJ@usgo#_p{1Fx+w
zu#FyDePb(}wz|>lO4tDL-oPr3D7Nr&6%SrksL`l_m9Y+w?r%OlVwk;U*O7o49m09t
zpByo$pAQjgC&qk%o17Xy7i~M0y_g{pDfDwDtpnNi>{dp9YIpUa|9f^TPb$}{{|Gj~
z55{F`)uZq)elY3?#4#Gu)9e2sMXQx{S7Qw33f4pmj@)_A2n8q=Y5Qg9;hiTTjF!4I
z`kr_?m-EQ|APqSk-F(oX)~r_34NPHVR$)zH4$Ddg)#`yphIn_fx<iAI{>6N2HPsbV
z!P2J=pbGY#6{S9->e|NMVlKdG(_z6F+CU8ujl^=SFLXj6HlKu%w+T5cIw0>xY#{0i
zd7*!!4RhP;R%aWZJV0lA9MR5ZLh$~4+WGUTow`3UsJgFc#yZ3gw8N?EVU3G7@CF>Z
zdSG=7+Sv~~*t~m{h0cm64uH;Au?xpJb8zzQ5u=@GI~C05q@BU1bVA<gSfnTI#6q5;
zokv$%oee&IfX=SZK9Zd!?L-SoWk!Tmi?$U7j*NFN<uehK+~0yj$duwd8b1*8-a&NJ
z`xu63#+D-n(H%68quP#O12QSjbfN7dq&D``CXH&_Ctg?fTiUMKe8l=a2W`WJfkkH9
zIcU#7gi&qhXy{{Dkq1-mMU<nbNc`pS`ynzl$z`q@rNl-mQz+ngHi?2LQ0w=Y^4qKS
zO77D|rdUTYUg!l_a2>sZp}*3sgIF&i^}xASAy;f1;uY($8A4Uo*}9liiAFIJPxir6
zw+&cjg_LH6*oQco%gk(&Q3@jBpn>_DFGu)XkXwTto(yxuTrzkp_*ru&_#cOjW<LL#
zV)?ZDA0^B8f<JAs)uwH;i)(_GbB6iOX+NOL@XkxhhS+UYS#2=_fnH6eGga>-f4eX6
zeOQ+U+C%H9wRVj`q{(9+TOoas_%#FHQFF?9*^_1RvU>?D4j^=gSHrr}wI>bgl9;LH
zb{aE5JrxI|rt5~af)nV2P_w@K`Zz@+K0<ADzHlWIS!A}zYX;VU&~y0OoN@yt9-?#@
zYm+3+Al8&$6_ZL-!{gy)I8Qg0XVy!N7#U+ot<+U%nLny2+c^nHerrMEXv*bmD%IJP
z?q~`Q#;J&=Qhs)!0%J%<jJ71+1Pgp<%hkE9dnY)$rH0Gu7QFu9Ze`%CR-{Q-npq|N
z8i0NcTzVo=$oVvIL@4n~+7c9|-7Bx*8;zhaJKPq?C!e6FvvbD4`h=)szJHH^b^Dla
z!8AxdOVBWuL1K&4Igfx&aAWa<T0F*&A}P7ZI>~#Hb*|P}wM<pQmy9fuE5aRlwL`2x
zXaW$(Ty-jmokH)@d1DT`R-p>WutKh$vuat!D;Qg-arP<_CxX27bPyim*(6(_P~Gg_
zovDs401y$W?nZeXMRng}JFucUL0M!(@-ZSh5uQbw&586O?d1M!#CB34DJXu)9Gvln
ze~YdUm^e@$%&W2gIy4oF$8Ww#D6qM%eiowbJ%5+{?`ik*Vygm13c#l;5YdkU5Wp)K
zXrKaX1c<fuuh>x4nq2-GLNQ&lu$c+eQvG4+SxA<4wba*FkE##fqH|K!wXA9^s?zE<
z@dnuH9I7kj+t;X1097u!F5u<!2A_^|`B!eJYD=CT-!z96F$8_%4z2D(-SvT8>yL0>
zTq4I~`FF%ibU&f+*YEGDT08z&;fFm1l4hPNp~V?xC&mI4FanPsTM`E{l?iJi@=oHH
zZzf4a<*Z=?7<DT!5ZrGe1(@bt&Dxp2)ar7u1u#RamNW%8+h?*?Hz+@MU)c>fD-5B{
z@a_A*M;yZ!2yNb@w`0HIv<^?d)!ShVOKgm)bk<Y+S;RJqIn)z~OWsV98w5UOAl@~L
zdm8Rk$>D>%M83fQPGC<bF;vqkTl3+}WUcNz!df;)4=|tvcr#z7lov9?N77Yc4G28}
zs23K<gr-2-rXgjy(gQqz(F85{Dio3z?jKdQ^!>aX5Eye>A!vLizOqMBT|112tcUq`
zqbpN@2t<NH>Ql=Sc-)kbJRtlfsFsWZT~tL(;W40dKXU`&z)<7<0qZ`?EJg`@l1uP0
zpdfJe2K~hfE?4U2<2_hZq5~k=7~e&EVu@U>fKy<#7$Y!YrTL@}9brt3bRYu1QJuMj
zND=+{bPnp6y?YzU3;J^luh5@z1<WRY!~EETYyV9=0U8G=F3)5fAdid1n`XT620rjM
zu0%_SuYA|r_&OfNjR>qB(H}0ir$s8$u`z+6dJ+nTYZZ#{_cB~5fRzHTwPH5Z?2Ua}
zBkz|gD+}w5R7nN%3o@^x{X_ZcjM9AEs&tQBpO#grg88MH*E3=;9ff6hgtm;A6>Vj3
z6e@`DRARV@g@AYvntfiO2(ZP<NW(znP{)CImkX$B^BSEUqL}FH7;`Rw%4^i-jp7Y(
zsGvluCfpNznoSUl(jr<ik7Y0p-boF>=n{4r+lx@F1mdDSEP?v1qm3k(qJXlMAc6#m
zsT={llrnOu6%WgJEr3?RH#`S;8xA#OS1Tk>Wp-a~%zmlCJG)sHUlyE&1ovKlb3ZIA
zG9c66jF8D4$OnwOG_9r=(_M0%r1nR6h_t$+s#<=j)qErOmti0ESgqzW^#fa}hif&P
z=|>8BR$Yhn7GvZObOn2n`^D?umf&-()cvb}3>)8;eTyw+V==JkBL@<{Zo<exjiwT5
zK>Y;T`_04-iJqN8Px+FTi7*3WH_xY)SJPfLjyTQWr-5}oM8G&qb$&Afahyap3s|2=
zh!t%W27VlY=v4&V0bvqzMXCxh0SQ#|#b+g<bu6pDr?-fV!hnJ?1s26EdO%MKdPd&H
z424?FAFMaRPXP#qTHzrSN)LMap%4Z-l?5dv9dDcYL4dX@6GH~{te~g$w^A&F#Xct%
zP%KLo%iz6WBB196JsVWX9F`Qk;H|=!4$B~4$H#F&&y%WDKDM8X$J2cE^xAJ=E(FsG
z<<j>mUO;K-Kq}aSZh9g=i&w*wTg~*8wV65c7$MxeV!*Z#s@bcy;evc@kkil)Nvz)d
z^=P6?VG8Gn@Ld=-iu{p|_o2}cD0UImQ5HGXS%kay>>>(fEE4A|@(N{LfMU5;i8JB<
zkBcIJgnr8+hG+7b)}Y2+dcZ;b{S-B*o7l~8tsMr{heGzC&b1207}V2LF&WgsR<YQF
z+IFi{D1$25Im3wKpjx{E49}QUju@~&q>FczAnL3dPoaAtHZc<Xk%2xhKTQ=^W;v}x
z^PaICZA_u-z$kF@bOB;KX$D(*hUG(jC45bS@uc7q?7JU{ugM8QFA$nS7$8%j7kAPe
z(o3~PFN?aM7nsJBkmjH(I0}ff2JB6LvPW6bF-N(#yjQdoYL!t|<P@QmeV02%`5%rV
z5n6fISwy0wI?>AW&LYQ2ErbzM9dm9rNdSoE{;l+CoYUbaa)D$~(wLL~PSVdr9kWWg
zlY>r;GWsCXrV``a78zK7@DdP`u)-pjbh$!Vgs{b^-Q4>uXYYD&NDs*$FK$QGMn`!|
zZ9+IG8VT+pv|cOfG&Btjdj0jgpdk=OU*bkxIEY58DU`eYuF9KHXTs2`=J93M=*HzR
zE?Z!7V&9{GJ50_u^mh2?Jr5UiMZVe!N3RvH#zBJ;+JlHoG>S0ovq@w~YBZw|o%bMh
z{9#wh@gr74e?;Y4-DL??ErUu~>q`>ya+sioYaK$6jmujc*yyIakc#0CE}t<x5vsA(
zXL#nOAS?&WGJzumMVBO3OJhOk=F0EEO1Pryab~i0Y9uTf>%4g=k95)X+wh)el33?1
zK{3doMKI_XXYJacE?Y>AqzJ9<SnM&xG{K_Ij+hMFA)p+>rG^VmH{5isw4q8BUdb^f
zp$m{w2iq;n+}QHibT0^D9Fn^?)v}Q4TZ*G^XRij%U<`{wgcP$os5%rHNIifL6|$Tk
z{`Ymhk%<A3VSO0-hHUI_K~VQvYIJ`~Uu-P|l4#)w0lkT==N-F!&{S!6G<2oJhF<=I
zW2h6Xp%x3sa6gD+?lIc;<5Cz{Q5aZLh$EX46?E8mF@+uTxAeADJ~mbgbm#m}pj(Pe
zH%{{2BC#<)m%Oi2wRR)Z#N!At<MQtv-A{H<y3e?*JJ7H%(s2oj@VA_-RUe}|etg*<
zFeKfj(|P|B@LrQdF_$+xVCo)$DFHCK0aHtek*dIaAFW!B@$v6>3lK{YK=bqIVi17v
z8CSJ>;a%|J@NKVuhudqU^tNO`0w8DuRm?$7!O$mRVt9h#@gnPbASyQW0Dk^_P@Y8y
zr5C9>wVDD-l!g{0Ou%+?Ycpcrdg=AQkwE?DH&q~MXe`|+Ga&Qz)6gcw0XUNe2^ckt
zY>wIQ(#(4DBNUxdrHI8^%m>UBa%nirlds=u!bPFwbII)*6tX?$2hXtRud<QsX|=u6
z)uBIau4Zz;0D`~v`vQ$NQbLmumT8thF1pvhKYqqY`^}-lVr!o?R4MbUbISe+HpLt(
zXX+DGEqUdSBBM06M$b4C+pDqbXWxu|nx7Fn=x)JLE~wj_sT%&xD@SHiY{qU$u6$n)
z*l1UStF#H`pyu$*u17#h{r_bIzCaM8`Q6_*0_IG)U}mef01g3i@I%F!KL`S`-XNyo
zRhfNz{xcp9nc$GGaPbA*U-K8Hcd{Rf^L40Hx|Lw_WtdmKO17I4CR8RZ2qHPNXtl01
zW^77y&S~vYKbf(ZK~EnAP+tYmNe2R`;gur_&|L@#Dm3OZZq4g&LDW7o?E!&qT(s(k
z6*lQX05*RMxdh;6jT3BE;R0;V=C7`>nF!!5j{g~mjO8S-5xO4Xl7Q(cn3)*ir^VWI
z|AW7}f~iEDLn4Ka5KMyzQ<x=Zw@A$PqK5fo$cL@ti8_fyqXg1_|54M+utYMZ8zx$f
zjj*#1N-lc?uXpgEL|kghLqItP=N{6iS~j1KFbErkK?MFd9Vq;yX&z`m;>i|#jYT;8
zkT}5wEuaLD3pF{&C0?7`t|&y_*7(F+-=8R2Wzs+Y7h2^j1T#WR`WrS>wa}OUH$g02
z4)8$5nR~&m;&Q+b?B+*O*Op7HIY^>y@9IXMW01cJ8+S`-VOCNdIRyWqiE_(FW#jG&
ziM4E@C@ss>Yrda(vQ~EyG9+b`9j6;JF(qmTILOWF{}NN8Hcp8gbRlt=7G2zF9dyu%
zE^6v$kR)z#2}xiq4vHkAJZoMCOC1tPRLBko>l3JmFiA)pX$|E8h&5iux$3$9#W;6k
zi^L6wRwg{@B0DUHxS?aMCOovrm#?NWT(jYFjhX^bi2GYdRNkP^UNNP6XG9_DC$^+k
z0>&G7KjMP~r#NWD$u8GQu;q#kXrSr;EG~g?ERw{MmL5j5L28^?$LNw+=8wNQU7IsU
zNOoX-oD3|f`OqlQsa`N8qyzI1NBJHGRysVV9OY0sEMxSFQ83y9I{U%y-(eP|w8Ksm
z@y@Q_D-W7oNJm^ui`zle@}Wi4FG{R;4ExXDJlH}&BQjNxb%%uFxl!eCrzb$b7D2#r
z%hFq_9APquT}r;Y87Bz@u;a8vX(S2)oE?%lYO6z^Nz``C4y9;wtr7idKRk_%jsIVa
zXuW8cXug#WVGzFw4<Z9TF~kxCTJt0OZu9cer~enc%ot2e45K*~E)f6f{op@(jE0tt
z!`)@DW?Kr&F6ZL#bwif{`JjMWaS;s-d|)pXj0miXl4drK+Qj1I&H69f+fjWHGd5r2
zs%k4N^SsJx(O5y|^-T}KMA-P$G4Oz(LF<_TOb{Vj&0WkFU}NG*6ti2ffx;IDxrAY>
zhaA9jU`*T)!NhO>mzb!7J^?05Y)t&NGbS3J?0^X;)l0arMfG2ON;V<YgUzadPBopw
ztSTSKRns~+pXSRO8dg|DsNfr6^F{L5Axt}>RR(aWe0~TR?%*Od2EIbJv(;Q<qlgu(
zk15_()sx2wSm=K4c=ET#S0d>!(h=`Jr|cN5?)NVL>J9jjtj(<zn4|fKU@x=#a_A&s
zLuP?Q=O1gck<qnzwp+BwQnf}I7=WdYN-jks#>jkZF^r>^xX_F#e%Y;2D$B0ehLm1C
zHC#Uv)uC$$5LOaPagLvzw#Ooc#ueZs><V0gT>W)@j!_X9+PnpP*uDbKk*gn+vW>sR
zK8LdBihZj2KpGy!(v=X;QXE4k1cu#NNE6dBr6^bV*t<feXk1T!J3y;KGrquDZvehg
z<eS+X8Va-3eC~dk##>;7O6duz`ChBJ2kRqr^j}9u{~z#!2C`^Xe@lvHT*fE<h7_6}
z&8QgU<I)USB{JM8sieKcO!JYm4!F3~>q@n_B;0}OO>#-c6~nJbM;4dPVgVFvmV#I@
zY|PI><5=KZt4hh*(wBs%F+YQESXz84vRL?tDkbYmYL~BCoxq}_EEZx>7<J81rMU3(
zD=ZsnIM)IN@-eR(^Bxv{(njE4J=pgGUclS3{<EmV`j01R(m}2l8lGp4XGL7*Ie%be
z4F~5!T1$qqZXxe`I^Ksa<500kc*XI*10tV?;_cUAe6fX%&LaP!w+-V&Bq`jp$TQ9&
zB`gABOC`qr?eRzegH>|Inq$?tfeYPmXmXwV3ZqYw*S|BNFncAFDAn}j;kuDsQh^QL
zeIcJ~9XBh;CaF!_BvlxA)0@4qkS_X$9&vHY&`4Z$Jr<Vm1KVt{XpdwU_1XfQx(+C+
zRa^s-Jk@Mub|XA^oI~ty#(Mu{m>%-U8a_dh>W5%)_yU<xehu-8TWP{%Q4k%k;s^Kv
zUtFyfq9G9}p6@T_v>CykW-W+}+*lO!F+zp0D&UuTKntP2hM0l)+Q2ISpsKKuS}gB?
zRI-UcM((EU;m7*F<C1Ti4;M(g?0JB_Zr*r4D}e|j>t!QB;4DHVg>kY29hJ^j3{QL&
zV9Z-n7S9ud6bvXYAfZJm3`nC^w5!z$C9<<}DVu-H+REi@x$n57&FWaj-;$u+m5&J*
zyTX2Hb-k<FE~P>puS^Tv#8<VA)vDhW3?RIY-x+<cJAu-mPo{ZqmO~npNJp&789$KL
z?Q%#11U1~q&#gxE0D=hneso_qRl^w6fU_At+e8K=T7i-IQc>C(dDi!NxeWX#FM;2q
z!06QZL(_xqCkjzH2xk{d2XNkiMJa)yNkMn5_3}xn%G#O}Kx!PT4}qZ=vuYL7+?bz^
zQX*e?4W?azkCEdzm7rfPwL>l$p7{bZq9z_ZLty^r`edNY^Q2tT9>xVC<d1T};;J4v
zY5rA7^Dj@HKe9)4H%DXSeKwXWjd^zXL>Oi<+Cerc21>H@mr;a&RU)O}&yl}b_yuCM
zLVy9?Ty9MYradTC6c^QODw~8NMO+x4aipn8W<(S&qjQvq;_x?Bn=9^C+6Pih)|k(8
zybhg8&Io^byz|vxL~_AtiD6Mp##QwHp3BM=NrW!8i@=+iWNvl7+D~yJa?cLF8jB)z
zQp6f&o9rz*3?UOBOxK}U+_H{!g2<DjRUkc$p+Bls{L&{;2;7U5aP`ddMp%S->{`AM
z2dru|v=u*M3MhN>CLwc{i3z_f1e9fR;RhBCs>L(FmUGQrr?Rz<66$C0eN4a(R&p-S
zvnA)1He6)ad`M26Ec-YHA7be_Tqw1c@rv&7F;Vt7=v0Ej>_<+aYQ<&08WEimznWxT
zdM3XXoWZk5DGle53a{b`9yNE1><TN0vMFp*gtg&$^^Pb8AV7da;KR@fTt8Ec=B?1G
z-=bhMJeT*PJcMMZIn^N#Ct00WT7vTMdtJ%HiJj!(oA+4qa5!p!JY4z~rHSV;xqy_Z
zovNh1zO&`oz&X4GrsB=0)cM085C6={ArG5aEYO>{P%RIGJgl@{J|%V790oU&rEmko
zL>>yr9p$0t5_~N35F$!8RR<Ud?x_%%(dz|rrmcJaTEYyGpw*?##l2S7ccxqhPUo9|
zD}Vm)lje_0o<F)rwMb&CwP=Buw((MFEsN4u2}J!+1>#+*3a3DPs^Un~Ls+ck|3V2w
zb`Jva`C26q={cjk?B{sx5Qvml-JGu;5NQW7iZO}^#GPldazzZGA$AcFh-;j$evBy)
zACn^0)-Hk$qO43l;j$444&0(zCF?;VrJGxZh7WH5?}^;ANX%l&&^L~Uq0hP!h6g8e
zL<oM4T%G?@Aqa!lGY#_H{p!TjxL~hka&Uvc#WO9nAn056LqYaBed3DHc)0w`mOD9a
z$d8j$nEg)S<PR5OIDLT~h1nk!)_kTdsz>tA&?zYB4QznX+rK`PrhfQ>2o`So6J06S
zS8pm!g`JgB)`QkuLud&-Fo88qdx>67z2rFOXXCBO)yR__;)Cr;F<vDc^Q8iCICyZW
z^~RJpGE@v{Mj?b_-h)DR<eo4XT548RI3`z9R4JKUoyxbdCRb@ArBrbaS#cdjI0%p2
zst1Z3L3@1z^zf1dC1?*?62B;`X^)%t$iCcgu4B|79g}#xFNPD=sCc}IjhK&leu;l!
zOpWBlo{!a9^D)cXHQW{B4<#P&Nf>Q}pRF?<59}E34SDZQd9UK}h<2G`S|zMBO3sPd
zHICw;)ixi7aZN_gbrzW|MLJH*(ws#Gu!!M)D9)mW+`b2-h9`z8YT$uY1UM!&RHKkh
z4d+<}!_<I}mdIc+K6kt-DHQR!jI|X{9?&zw_>d`gjw%@ypR1_C8K2ujmEx2;9G?q~
zHt}`Nw||L$IljEu<J)PzeSh&m&bPy}<<+MVV`>Z|@wo~%j>z8}@1x>#i-;PL&VFZ+
z*zvg&oJC%WIj%#TMSg=K=85wtP0V*s#IA;O-|o0QqvL*=<H^qc-5K1Ufz5vW2X+w7
zJVv^>+8qSe-<+t`u9p$TL|69b3@^jl+&IkKCUFWk4l}ngWggrl$P|v5=c`%^S!T4W
zs`X};8698MDrH6|RJCH7_iL1qs$>$#s^DK%RpD(vyhX^JzpdMhetO=@8GSUrWXq`=
zaDspJYw#<cfQStoScw9apW@$yS!3~Ue7Wo^&IL)uVbv%f<Ie8*S7oqdLTT4;F|4_;
z@Z>Al3y!Z6%SI6u(}!qvLlXv%EmL)HJ%TMb%2u^rUG|{ru(u2%*~@d%%8bE7%K}Yr
zn8(+MX7;za%g!T0r{l1;p^1aXVzEoYrw9Oi5FINuKdrXD>!#IQj2TVnMEql}RZn3C
zs;R?de92K0?U~yFFiOhY7y#3L$_iDGs8|A3bVQnY_X!}OH=(PYJA7`^gDIyWA`$yy
zZb;SUrjsyYoEIVK2LDUI4E+ZlG7?#GOwfbZVxNvN-~^$vYMx4?)ukMTMg2>vTFx#_
zu4?%Oe2DUGF_xj*E|KFX{X4Pl8%ZT)juF$Ay=G5nvu7ZLvuu={5P^Ei<cJ6)UFpdV
z^29_Th<p$Pj*{^=e_Qz_{!N(~-}EVwS8OHSnZWV43dQ*DpdOj``Gp6I(t*G?fMN#%
zJK(QU;SY}fDd+_F4?W=~F4)&|d2S;+mn)otBVLb^2b>7eV>;(Mb_tV%dAkKy!>~pk
zo?rr3YxDpon8RQPaDv-&F~$saXRu0Zjze`@&5vid#I1YaqG^cTy_U7F{9fPpAx|>;
zWQNA$iHwwhzHvK#R(?a_RYZ&y<2z_`pjK|6hbOV265<a#|5oK-O9P7<p6j^aj(fEc
z4hL4_S68JEs$%oPIl>n~_f>bp*baIw<prM>2`Dk@;6A!&;7tE)8Kb9<!x-HX86yyL
zk{&n<h{OLtmylPw?CHu|H{)U)C6{W<#M(wX0=fUguDoUqZi<eay9>lKZ1nj{K2MG{
zuDuRve?F`%5|915$`$38(0a+};>1asE<h6u9*ZG)lP_Hg0vJC|g))Z-)YwjN(?aR_
z&Agykh7`k1mVJ{WH#BZpX})e(fp4?ax7mmOZQi<2E_gpCJqLfEs?Xm434$$=0D=={
z1O5<Rv-jvjDv)Vjo4boVi-VO?aS1$~S;ebiUExSvg5L^!OcovY&pGawIqvK2dun3b
z3&G?5ez^zH6Eji<*L2ow{^MGk3xJv8u;|EP^mmO*Y+HPSZ6YiV+Wq)uMZ55?gXTEv
zT}>u5xNy|iKx4Rn{a*d4{`LLWGHx6b9%-8h2aW6Gr(!Vy4eo}cpGv{RQUVli%;Jd-
zpo$bwaCMZh5ab$!!=lUz{=oLvn@N-y&BdxE1mftWJc_mKXqf#v5?BYesD&6<JH#hp
zA}+a}M?BJpLL7=08rOwpE2baZjU=OibC2+Fr9LDMm-0%&pAS(D6B|JiTra~3F#F4I
z<&qeC>I?VSdNYc9)&ekj4dk;{raBOvYJOgz@+%af4>a;r->hz-N2uG;qfj>W+~}F)
zP@mz>oyhzO+!<JFwF(=Hl|$n(1_`hs|Nm!g2sae-zmk!LkOrL_VsE%ZE;JksEHv8#
zF}i**gxCp*FUF|JEIJml<wML)WAcmW&j88HzdN7uA6W_b4<OeSC9?~_UJNq+Vw_De
zw(=tdm-Z!1DZvb$pP<An<gq&Hg>@+zOjcmgNpce|U_N*Z03IL3;8FT&`stl*#Vo>V
zzV~YaWLr+=Rj8<G6}uhvy*5|e<elt=66!lc(ycW%fT!X}_UJq2LDGM8Ce{3BNmQT7
zix-PRv>163KSH1R6CZ&3_!BDbu4bu`Mh7WV)yTCJlu9>0ygsU0;Wz9=zldx&0qY~>
zXL4r}_+XNrjRRq(VV|kBAH3fl(o(UcLtclY$(sD;U;iMA3G7&c30B5w-N9$T&Sot<
z!J<5F%um816=t7T4CKtJ42s`V7vf|r33uzfoQ-hzDVVEDKo46as0=0Ul(L*>TzrD6
zIJarF^$8p{(Vt+LEARy4t!k5djFe^L02^qiHnWOF!jJo}4c!i%Xx^oPAo3#GvD0{-
z$Pw`G2C}CBTcBSsGK~OrD%DZi+_zaTVDRB8H%0c1qEo|{>C*!+Wl<(cj=;lBs@wpy
zbh8gN2&&A0vDT}6hGPd`-|fU0B>}%kV)cf;o2S_s&TV8HbfX{<O`tNC&cL{wxP@O*
zRNzZa+TzUD`>4%)`5gA#PUxQi?K^3u`P%I=ybaqEQOm=(Py>%mO45UgNvsZdj9}mT
zqVQ-SaE$|j9r)ozg6-c8%A5kO2mYWkz?a~M(iDvJb+u?CuYtlHWb_=?nE4tl(wcfD
z;>X5PJynj8cJ@vDU;|Fm2o^!sZYmw92aEG@Lgp;wizw#tT{BMAgYdz+)?n>t?bhA^
zZI;-ImgxrTZ&eXQI0%inHP7M^F=#V`ZRVq76CxnjG_5eFdC;?SqGUx3e*gTy{hJwd
z_HP4h!=LD1;Y8KHnRfq1+x-LLRR1nP|9~O*rLROcfthO=vg;h4Wl<fs122gC=)UJz
z_{N-Ac2seSK`daiPGh}HD2%>6HYZ`nSks@)i7CLxe#b~Fp&vEg(=WwX>l|y075@QZ
zG4yhtS1~{Y*i?nMOT{!UJ<eQD^a=LyY*K_j&F_wafPDl_ph6JeS(d%(15HB@Abv&G
ziW$a<O&B$6rx%FiLiB3*KstC6!)HpS+~eK2od;>>?VpxaV0d#z%=e{Z-q0+^N$y2L
zP}EVroT$vvgJ{f8TXg7j;Rb*Q&jC)M%WIgXNyDoP;@fi&i`2B<>?>syD&*g2e3S!x
zaN87A3w)q%+BN~f2eBad0D@>itb`urd-NzVlR;?3NN<p24z@6q%8|i9$rxG5RDelK
z4}bu!1%E=m!L_j}ccuAa4~!NR3c_z3_zR!Z#L7|?dQ$ae|GBYw&GK%y<`El`4qVd_
ziZFT8LJGghA3l$S;ygQd+1l|($F<IW`g6X;S$_zYY}lpg4PPCj^CXA&CABLu5={R7
zX)LGe+27!cNyF~G&;Q#OtS=gN_0Wwze?-+Ux>*9myGDQI!UunU+=RU++`_h9>-3FS
zv|`OksJRDgb`h4}5*B>$%Fw&N`WB(whzt0@N)@A3U&)seJ%I_x`?`Nef^H1%iBReU
z9mh#A<-zGJ5e~V~_ccjwm(7f~U=xV9;BKDmcQBpNsy74Y%kY83Tdd#!_**X0?h;#u
zvUgc>zv|RsN&Tv&Tf3yHPh=wB(3+@ce;{Y2`rACy#z2hz#Rva*<-$aLA}DBoWtL>i
z(v9IR4ttiKy<ay*$~`EGqS+=t%z-`AjtV9&)F*;W-)U+zpT{;^c)p&L3(u%u7y3OA
zp(=!==k97zK{*T#=};RA7Z7U=?MXZ%V{$tOmkE2bo0-3tUib~66qEoS;DT2XG9)%u
zjOtXyauWq+6uoP6B~fVfd6J;%3ZZ$Wgei6DFrF_kGN9{a*(^fJACh_orcrb5<1546
z(8n?_D!Mz&iwQI@a!?}Z*#qGX^Wq99lBAKG$3RtLrbHm|$NT%$t=uoM?+wqTLzP4H
zaTbFW@*J;Vo=ISy5~Umr&x<4MsnN1j)&7L02LaZdS9ill&>z4IwX$F)^)%d=zuVkq
z@i6!+OED{~G$e)@kNsJ1XbTvAg~M`B;VU4eS0)fqg=Z)fjT90GBmpPWKo|@t_XXz=
z9QrQNZtki0$XvKki44eDAA~y!7PI0aIXgA)omm&JPE0z5{Ub`~9ws`d#Fy|2^sxW@
z<2`Y}KL;L+fq%V<eH~yMm9l~*3lad#+-~(29p$VZEyKd+sjYycsTw;GCPaU2o21e$
z^N}vTh73YY#i940YRs?P5Mww$A~M71KyP{E>rVN1Dqu_{YBk(~KxmLt3J1F0W_xVQ
zY>({}`ef;`onoaww$mpFjZ!Mp2VO;_a5&68y_6A^!Ai6EER{%yc5r{Dada%AI1yi%
z@4Tc2Cr8SnOZZAsGhIs?sFZqu>3md(=JA0ml7gO$Gr7iabt-83Bt38`Dz{EA#oShg
z5F}a*5}g1NwWbbcpQA~eR-HvnZ*nNfTKwZZzvCZ=)%ung38jM7%>{`-?~_qFy#sz9
zQ23oh9X7#X|Dvm?ra};9(J<#Dspf9(bOy_JWaj^-Tg?1af`gecU9*|_)a)=b-#RSJ
z%rU!yZiN}!@Z2#(G4m4k62wlTW^a{+DuZHp(xplod`&5;{bFI}e~pR7%)(s{zvEzL
z44$<m6{@yRCJ<f$<^<0!&a9GlWwI_jOB)=hAkWS@vlGvLR2#*!sI`bdv!9%%C{DFD
zpQ4{j@SJ~9+#2qjxjr5P=yeWYhw=M}-$wI?P2?CP^u;nlAdEVZy9*hKIF#snM{>{N
zwlmOx$iNfOhWXi2)vpYj+#wLUB=_zlcX$6YNbXmp!iNoVzxsgWo&piX#l^FaiY9mS
zO&2iG9mH(eV3GbC1(~KwZZ)DCkT83<l73Gs92?dZE|)FD5#uc1rBMQE778-PBiI)w
zUOvl*`#xj>v~V(X8W}Jl=(^w7YAbw1f-YfA*`Ml6jBbqm(^1gjDO&A~tikaujHg{Z
zzR&S_pF#2slBw(2*nB5$96Lt?j@#<V8hCWy2YUNDec20(-ap+u>YQW5#NA~j*YAzw
z`aWZri%z69fTIwz`pKK<_STI>$IEqgD=%8@%UCao)FKt{Vg@U9$YyUnyLFT?xQF$%
zbuM5r%_!q{{1WG{@B5VN{gKne5IBt(R`mIJ?8t6mu74cWxsHb=5}bN~<Hd2%JY~=r
zd+cDKWw2J8E>MKeBV+eqO5uFZRtpff4TzjhxJdwbhtuVl03bbmmjEn_0-&b_Kqc!6
zpG~IFAOK)drd|3F1psVAVBo?q0DAk|kx`Ws?7v38<K^4zR@L`MMXh?Xf8g+<?;F$6
z_jIlH3z%w=kL?jaCJ<>CM8FX^#iEG>!~yHZRW9%H*KRw;Q-HpVG7?WE!%pxnPkZLl
z?RWHg=2Gj-Rj}&>-L-;7G%RTBQ^P2V8Ly69&<iJjPjeo}vog9u_qlecqTST7syBJF
z-z}WnPW$~bqu0eex3yt+yqweeS$tvk7kEd@-REjWMKsBA=q5J8cr?EUJ@Of+{R5WO
z(BOcj`o!;jM&@~5MdscBmN9qYK$ZGJBk?4LM0>Nh(Cn;POZ~!g>B475FdCX?dFq(I
zNi=k;Sm)XA7b5h&x&r0Hrujtt@cMtmN-md@yhcF|3~5LTqae2(VTN+@?BunKHY~jL
z!@=m#2|m{*Mkc-zcj4)u<C7{0Q?%WXW(LRB7I>CH10buv0m>=OAgMp0lMI$ztvELF
z-ho$-FSA!u5?0_A!y32m?sBvlCyp~3zo@bpGQNt>oa!0Ig~%SmbJZA5`@^xy)CS-i
z`2ZRM!ddNvfPyet2`byeYtRy6vsc}ZpU7=yhetv(i@3a;bf$U)V<R+{GXQ5H<a(qE
zH&2f)cb1gn7pLJ4hdzWJg^t1UTaquk8JHD{0$}+(l@lJwMfIU6EWoVH8!&sg9zV?Z
zTR2_u;f!BoG8rr(QLW+R%-><Q>kGV%koVAIocLnb1v*SV4P9@)+7wETysGD`m6$2W
zR~tf;cx#Ee&?%fj@L1IML&#Z-+YcC*zl5K_qs3T|i_cP;coN5{<aE5j!~9W}@`tK`
zg~RFgTkkZB&V%Jg!!AHX5<w%%W$txd+Yhiuv3EH<<B#YY_`9c1fv&|@Q(zckzK=?%
zJ>l!R7*mv~x62rpVsg!iACx#EnpUO5=jzdLP_d$1PpOZ9vdQ>rwWN^Iv>vby7>%!^
zKQuSA0-8TWbRU6=h6j?aGd$>&$$XH64i*gl%THpHV$p)^ZNSVD)Zg?>xT|s#RX^5n
zNjP1!v7IC#Z2;~JXSj9sW-uT8S@7Utx~<~&OY&(8XJL*!3#b0&>&%^4`#V(**ebyS
z0QmnMjGQl+ATJv^ih(^yK<Nz!c6$Tg`oN4hRdD8DFOqY>m+j5o>)qIP85eo-R%`w{
z@s+&!B2f<xIG<@Ve&-E*;|qKe`F7SSY^|6!+S{-#aTr`N2}y7{P8+5-Y;(g5bOB)l
zFw3cQA=_7hD}7WjC4shl4p}ajD>nJ?+~~w;5%XhXP8P=KR})D_g@G-Ffp>g?^-Xil
zkK_pn&16`JH72wngQL^+;J8#aeUsHR00|C2d_iRbn@-?+pvDW-terVP4;~c@4DuBJ
zsz^PMU{L_+VZ=49G)F5?g2U0uQF?F;+PDV9%()#tMbE(S^EuPt#D!i5N6%#JLZdn2
zhWq^$%KxmUst~FWd)7)X+<rPmr24a9S_Wd|-z>J{sMP#=9|#;r6GYf8n!dHUOy$uP
z{ZVYwk(R`5Gp`d05F_x4;HqE|{fIMtiYSY*1?@_V@duh;To2Hi4LjV3J3J;GaffF>
z_ret1RCy9gOq)vE&+!&69(g-shpH<dYw6t8c7ph$BDM6<<?O2!h{^yive^F!UC`pg
zK-y$N1Ur73%We?i^SoSQd~P;=4?OJv@>M=&j34`$pG8pC&FH1o6(=F1^0C+ekEA}>
zT(_=rHwGd#ZYBS9G0kxJuLFO-LjIn;yNcjKtW{8~RZxXcMG4imQNSuLx1KV?HK=A1
z7mPW*0SL$$SPW_{NoChc1k)lp=(F2_v%$HN6|6ii$rnsKj#8cK%!gyPtB>RO5_48f
zm38Qwv-)CIKeBW6?+bhfuD<j_yK2@_`HFLrwc7HC;QBnOlEJD#GRrF5ujFE_?5m`j
zQB$@`9$&`wwzjlzaBo?kFs7hQCeeflpA`xR36O?fi+f_M3)m@e0X=H|Iv+a#(2&)*
z#9@USH=np(Db}uGD0jecawiyyYz&7Uwj{IygR%`O3+w7=n!Zpq!?j&?y)w;qXg-3S
zK}OXXiIg?pmw74Y#(-be5U}`6S%8yY3oZm54!F>lx1#hwFq}jf0$jJG4-Di1Jkr_n
zLazuO<D34?W+8bLddSt6&Q~K88%H(Q3CldQ7mShZ6d)bw`wS&N(4i^x<M1Ce1m=^y
zLFfQzjs5bsCTfQ4Plm$+=z&DbPvte}`AxbwE^g4Nk1%G~1SP=|_+-Y3`~`l`kv9dI
z1B8w+2|&=ER_9_s9pefaPuH*`wP9O&@`{G-Ny!_N-$1K5;7%$U0>uyX07e{@N&Duh
zKPXEjtI2?SI&tba-M<2nXhm3J9nC9XZir5D;@TQa``7URc2n80I((&pt$O1MOu~@O
z7Q$C*2L&gYYul`vWk{Pgn~(oWka@$mK<09hGGTGiQ6B#T)j=LZS#T)=_=Ftdz=6#3
zm0*Nc>2nOE(WTZl-#y_aPc}}%0u5RwdAd2nrF;+=5%H@~d!Yzuj8$`~qr>NPGDbeX
z*!nz!pJyrcf@U0_n?c0dhb{mDRG%XBVZg{HZAyM@EXz?2is2i0T5YT|tSd}<#)tEd
z5~Rd&&*_Rhhs3;}qy_?3vE*>=Sif1GJo>oxo8N$_xk*Ky^S4BL$aRtW9wV+9vp|7e
zw&;M$s?EhH9_1N53SWZ$1|wN>oZJp|4IZ!6{8!`Sq49$!Yc;02PZ<1bt>z=#6GR&n
z)rCcB*Pp*NRWoj5iLN@|H7KcCO)I8K0HqoW!h_E%O&WZ@R`Vqu>Be%I4ro``>;A?)
zq^CWkr#<E%ME>#^2(_(qA+h9d?luD}fVB!Y0qmqn!_0wFA_e0v`hOhjgl|X62WsD?
z34-83D3)sV40Tj4XD2rZ-fOMSTAgI{4)NcxEuJBX#xf6n9AbY#|M)`ZxUvb{7dh^W
z?Rx;kGMw}AJ-vc_he4dcB0mWt!Fwx3H4u{)yBZEOyoU{dL5hf~Ez;Uz3lY}2HBfkh
z2)ej7?$Gnz*NkHhwJ{`+NAM-U$YO`s3hr|p_qp~xaKJKjg!4Uvy!Z~d$Y&8kxlOK%
z6)hqKfItT*D_EWr^i1xyMgs?p3k9CNOoFCUt)?HBrk0C)jS*sOg1VG7Gp&F$-SB0C
zH?KuAZb1mlp)^ZVq8<&fVpX9cXI9LHyf{GFSjWBHhtijJ%#LWORQNEuNfx{cZUrxM
zr;ryoGiS4fc^_#84jeh8W=8a1JEH$4+CL@C!ykuwke>staomik#*X&|&{=GWB*jCr
zQ{gJwF}pkNGc)-+$sDlU_O=616U8iv&4n$P7a24U@_F!pwTi`&mH2&QsYN0KGR>0_
zxGh|-Pqf(nqwcIptrze-OHSd?z;n{TV#}N2OMuR(RTKsa5{koU<N|uAR^)EDl(lq4
zqj=6Q_-D~2_5b&rgK9<`zH~m#uf`-6r_RP9b;P~M^Ts(`t!l~9a*njzj_)s`>-vye
zCd~hZpRQBOkKv(Kx0acVmH=Ko?;Fjy8_!65LfzSK%SJBvaJ|US?CrOf<d+I?kS>Gg
z$Lrb1OU5Wq&{V3~ZY}m?aInx5Wwp|Tlo1RR^n^8%*fThAqz1DCnKOE@tw2i8a4IDP
zUt`@JU&|=xOFqrW2-k{ni0VWpiy>wV{LMeQqYkb~l5T#$>M<2Q2t?+NgaZ<@nY{zu
zK<8s_q3CA5^mwIae8n5kjZQS9Ci6>dIE$v6Gw7TK-N-jWH;L?)R2#s29}sh5qxtuV
z&v2<oPOWb6aiDu71BJDNgSa%~LA=eMU&(npc#wx+8nf_7^H0UU<aDy+2(7MH>WJ!1
zL$!NX6wDu+kjxXbN_=^6{9i1E`%B@)!dEDq*>gnoXDGa?VE#=BJ$%NEuo2mJ*mL-B
zf-kT$yl|MeQmZ|d#vOgFJ2;m!im?*?j<#SCerR<AFI~Xxr9&>k1(3Thz||M@oPi5i
zB@rX;!YLcBB=o_RoIk(R)q_|^Q?*u-8BW{`_kCM9ByeG@|5BNbppR;mk%Fk;emXVA
z*a8*w<ar`nsU+tBI6%=0jc&2<IDKW+fuh`CTC$Wc&SEq_H{X!XGGyqAvdliG&>DbY
zjNzXI^9GPrad`1LCUqM%<6-_n4nqdDf$ZhO;NYWmxR(~3gj$el+l4ubR<j=kDb3UI
z&>OftUw;jV<KHa&(!F^bW@ws!lN2gAI<+t`loOz%lL~`FQw!m%@u4yQ(|BEgbBj{Y
z!-nl{pR1wJ7+N#}7WY-&fENq%m%-rZ0AcNQXoIxIhDA8>3Z7qvEB|<3Z{G(kqjUDE
zg?MDmL}|76+@nxGNp&5>TE%beF2BZ};BS`Q#nA8Y%ly@7G3~FC3;H<iG!XC6sXh>I
z?boz^U*kvki+pz>ewnAq2QqI9j|SK0jIRkrWbBLW!3tf;+5%X%4v#jW{*|MAsGUw?
zV_@J3o54|n<BDl<IOt%?OXPPN^PqX55(FK9rpW=JUx=4^W$0>L%{fIfO$H+3fT_^C
zun5iDtY?bxLVu)xIq2SUJ$$P{&sJW5>*s7-gN8W<95Lcw?|^$VLux|>52^|lcB%j_
zZK*&FV8;r`GPJgm%&Wd4+LYJ~eJUOm_b65AMTc0aR(JHj*@4hetOn|9>cw2CLNY1Q
zD#q;?1xvRXw|7W8xsR_z{WUg79nWLJZ$5Da5s7Xt!x=8X(-XWz;pxEL)asHIMD0+|
z*f;E&I?QJbg(F`XeN5xb`&?qm-`FKcfp7FiZcc~`J%oD9o;FmcD5!cKB2?&)`71T<
zyc|M*3iIA5A5xgNvplyj`y(D+R0609v$ygnq6*#`H((X?2WZg$wiovMsL=H;3r*si
zz}C?F$o^<vb-B=H-sbYbaAlWYh$t+gfE9VOk$}oF`P$co6NC3_Ep*}h8fCO0J$&eN
z)^oH~Ph<HYxXa21VwIIpsCuMI0_1I96FzpQU-M<gU@(+2<3n?~L3>T13@}cK9R}B2
z`4I8_D2rMSHo{?&mOTwZvh$So+pN2UUf40{ZC_w@s1b?1%{#2xJ}4iq=Y5NVXSt$n
z%^tXZ2EWo`WjY(f!}+_t{Wf@A0<fwMg<3;fnM?Z@R&{I25$3z0{30$n0S)XT1J^B_
zN5@33kdQpfAm_G`EuoWG*QY+!(KY2GS=Uf!U4ivc)qzdIJ#ExopV}DHL58pgP~*AS
zf^HhB#-MxgH9|`UFNZ)&pu!u~mtzj~OMi3f)Jx#>!Q9wFhfyT=9CB<`=4v$Fe+!n|
zfk0tI@LLFJtWPBu&DaC@-@44=?T;kSwC62e4h4P$T1_2>urIirtT~ubEcXhEs11&Z
z4CO>I8REuzx}Fen8k&qG$Yy~6V*dCkyfGC>Gi-a9BK{cJPtwf3b%-yl&a7fh4Eeh2
z4e2|!Wac$!^IqZ)3>FU2GKw*t2-ooMZP)uDza+!M?&53cjS6_AlB(LyDLVxLrAgSU
zdq)`-1g=fOzTe4ZM?=Xc;oy%Ft=i4<G(!Hy=Ah&j%C*)q5@8%eS0$P2)>5g68%vC0
zPF~;}g~H+*5l-Jbod~`k-|~<6SR&V@;m9RN7$UU;wO^_^k@<sBtyog1QEXd#Vq@<=
zw_;a<Q|wSigO+u`0!=D{x#oIYt<R*>n@EF5dZSETaei7|Lw9n_;BKXGbJ=))s28-q
z9-!WWx{p}M(%r~s>E=yRtEgyE)-r{&lj_^xDsL`*c~+OvL`CR+SPJF<uMj3iPo7ot
z*|v{C98FGdu5-Q9aQf>^koW=ob!*sZLWq$Fn^w4YK3`^+!ARead+9ZdmnCvft)2RY
zJ<^cfYgio&6O51a)v_7DbgWe3i+b}WI5dN1Q2PdUOzd4mt=h*nrOkhmLqpVJXi_m-
z!Uw>bG$~GY1aDeDGO!)uw|`T`vshemmeHQbB_ZaULz~ppsE9u+2pdSDR-KJvq)q&W
zi{EhS_x?y3j-WGel7Q$#aY>YMmrH!x1vJ_wNV@>cVVN49AJSCxUA??j7+h%19iuj$
z&F53gRJHM^>LLCne6EZ|Hrn)evGjn6BzD^HOg!6O2>&xkf%BLBbm5`(Q&60Lyw7sn
z=h*icFd2;i$keEn@?vHQPLGo>!AJH@267vN-qxwH#JV6>3%`^?_NcgXUsnvHMg^{5
zVHh<k!jZN&7wly2G8Njhh|fuYiI~qJ03{f)-CtX1f8>K0XfIJ{KRzykcBw%{His$F
z@YM8*g?8=AuF<aQA=*PbooLtU6h^hW+Du7cf&~aYc@2MN68MJgsn*Za)X#MM)Q1#Z
z=I(~={hMjkH`a5zmyK%7W--ZGB-0s8s$KX|EiMFB$#d=K8RA%JbxSk*%XN9?Ik;j1
zTAeu%H#CKk)PvegCflG*6Q>?5$~<2lsMMO`Wf~w47RwYIex+U6+)bI83CPhA#8mA>
z2e#@BUjT6EZV{+H2-Fo%sBuasd}2;uoWPs4mIqh_Y{UzyD2nS;5b~@hm3#_rU#h$U
z4PQVUE*CKMWaJrNuAHe2U!ryS$sXwqUjhmo8e0lNX=o(LDcoSTjnCEOQ%@GN<~boV
z%3~6LZ+J1`%7ZZ2AkURAjjapl=t4c8)9J8|4atJl%NUpb?fUHYqRU)JPx-uh(L<Z_
zXF4a1I}oEa{JXGe=-<{u(pVZdsn1~aEn}UGSexU;GlUnKI2Y$jhWLql$iF?^OI2#L
z!ePjRKmi678$Riy&G`fmea5KIe8!laVLR5pqmLX1U_2q8tmV)?u0A<Qn`6i)SMKl`
z*K9|^Ahfc#9hox`GS(We8O8F+Ce)sx%_)$g<G1;YiJ#imw%7kzh8LMKG((f3$g$CS
zrZ%SyA_c|XV=<rcoA+s$qv)B49Ruu7<L!w4pV3BN0ze9l$>-q3Ioh0Byzu6Itj+Vw
z_qT5JHv9;PzQeblpW}6XcZD&w$2o<r54`Zy%qwP@Y^->z0rDv`cMB>+Uts2{z7+QR
zz~>5^!}P5^hcPLH>!6w(p|{tQ80+yBN3!+;;jXY4`evz948iLzV(4*x2%-cjs<|tF
zKsmVAzo?2U<$wi?D5;gp;!CV=^UYqLD{g>_s8)_Ka04`lW!)HQ=Qmk`Yu9_71ea|B
zAvK%lnzm!PDMM6-F4cEb8EdszvTF?N{FoDDaD}Revg_<mowCapI1BD$JeLgMXiWK*
z$(QCd#6-}imr-3`hE0MNR#BPatJr*Gk4R`LF^`Xg0jLoq5FxCm-Lt-Q4n?1z8j8M4
zoI@doFDkbcNQa>a>~su8F;S?7g6oz>+EXEG9BzEK(>Sn%=<WAgB7-0`bW$L2VS#FF
zBgNL+>tTg=H3+I64#MLfI|l)}x;&FG!O8?dKTcd2;}Ow~^uIFxjFYGD)+~C|p&3oV
znI&<z$q$NC@K1$w**^0(92p=ISIFFQUW*W|T;bH)|6x6mQL6fvbCiBUZ=bi_0bRa@
zcIa)(U1y~AH!aMYn>u0MDkR7s*Bn8<)YA$1jVZB^KYCQx$XE3c`M(fzO<8I%nm|T^
zJQ2eW!%++$=<JrF%Mvib`IbcNZ%)Di3V0EAycwhSVLpU#@9^|6iRpzj;}U+piGC;{
zd$@^fo>f)!*5;hZDvZ&e<I^u3pY~RtZi72neJbP6PfLY`lpO#$4C%fUh3GV&_Y`l8
z(c2yMoJ3V7BahHuC{M~oWE_EsaTe==p(_4<p)jE;F7#s&BHg?bVF?zaYt`aHjNk-X
zh}nC?UH3QaL=e<xj%+=BfFN}JJJiXQGWyXC&)@sm^c*=QRq1@Q_8|wAP`r~lGn`g~
z(6A_FAaV^$M50?FG;GcK&}qdm*Pa9n$Zq?+>}ZDh$ZH26?7zQq2!uWE69qD8*`BjX
zFhs3dUpCT;Keq^5+Yp1W7fKf>+N-{c5O$FaLPyd5RdOuCuDG;o!dCT=u&>-2B~>tp
zf<zkexEHHOOfUQpyyHizS@?;KB^d@xy#)Qs1iFsWZO_OUa6n{{?6kVX9+>L)a4EBK
zO=u5&$j=PoEY$qFT*w%z=zyLG4(y4dJ78gc8^R{FcGKUXOlePq_VnrryHm>ijqc~`
ztul6#qY(KsJ|0KjYjt;^wl7g~pR!jGxw9RX;?~f){O$||MuuEQYIRdikH^0QPRBo$
zr@Qd)O{XV#@p)nLK5xV4sfEcudK*4VFHGJYIvp!?rkTfHpjaP%antE8yhYiap^xc9
zTxY-SbrRlQdlKI6#M=)-i}?0w`>pRdHq`4lFU;z~<c*=>e0!Juw%}+&H1_BO{M+Yf
z{Np<s^|0htM9~5wcp!HGq79)f^f+E6-yycPvKwnn?8eUfk{d(w_%>JGYIQT?Vc(BT
zz(1F}@Q>9ra&3K?>Py~?deiwyUwq<_`L!<{0&86Sp@W-qNi-lM@QDu&2_r3khs78B
z-t5E|EFseV)^8(BAvJW8_FKEfVv30cF^Ex!-C7T(U1JV;-^mmU&9h^CWv+P>ev!S(
zX?BwymA~vHO26p*D~5a8pNJyx6@$r8AkMtN+^=LP`wyoC*oZ;1al{CcESv%Poq!`!
zMH0}N1P6t=Nzf$<ncpDF{W87Ly>QeqanKZTLHCv405SDQDQCD}mj>M>ct>YXE&{jm
z5%=!Co)2V}?tWN`03LG`?8~Mt)vlmBRn>5w9>g5deI5%N$Xjj<Iaj_5M+D75oH`?d
zqUugq&Q&CI(r`C>*^E7HGsgj^P46)L2?y76s{=xwBorz`-Nz3eu2uKPy~<W;n-fG9
zItCcrPhif#3R8)}bhstr%&|P{DM-T`7-Vp<R`V4US9M&_<J}_^GEGOQeZX@ofiX(h
zjY$GmxErswSlwuJkHQ-|e}e85eyp(g{(WrKeI~zhV(|p2Mtb^!6d@K9VI49js;BK0
z;sJwZc=qVT1IS8XH%AlE_n3FC1NFRad(|TJV-#dItKhfWNkm9%#m)zw&aC3qu&zP(
zju6Sa0M4bLXFcvEmlz!VAd-BxRzZCRW+{bn%Gf0FDg<wb&F<<VjusOBezc+DK-=Wx
zB_bAW6e;Y2J{j{~dK)o5fuwgPUrbV~?Ec17CQ8cp8bzR+H*l60i|IH6Q)MH>hy4*b
zj}aL7*Nx!tyuD?8nNNc@(4v(HP3$g}H9gPl1c8lBPxSw=DTMz&rx`)O6ys0*N`@7Q
zbnI=Lz$>OyECA0G)jI!p&nXB0Xj)hCiZoQXsEE$+=j8W7%d{+NdO?mF;d-+}xV=^9
z6mCf0fhrwdSN>1{0$=70?}zn1!}o<QF&;2*(tiE1CE5C}2}`yD_@_`NSM_euf9&4L
zg1jjDC1{U-ASHLal4<NEd#xr_v3e(;vujf~s-{ZNHQ;0kYr-GbhEy$!W7cBsY6N}W
z+?hUQJ>XJWrBV515XJDqu4Cf{yQcRbm*|i+MJvm?n>`0o39feEi<d4l?QH0oJvaW?
zZeH{nxXy5olc@rjh-}XEJm%Cwwf_e5YBAe94-GvA-28{#M2uGR0+}M<UWAAE{9PFs
z>vN=(i8If)J{K1+j1u=8e(oO3&*9G*FQ0qL)aS#Wbx7n?e*RydYCZh<82S9iCiS^W
z<>ncwK0p2`4yV<65|N5tuo}5Z=Z)#VLZLr{e3Z{f368bDC27VO*cypAN@8OLJgzu=
z3olYJ#4Da;rIhxRC)L-e&jlN~AR+%$ln(a6vQjz^3MRvatE~J7&VwPOz|#<_iGaIy
zh~R1dpB)_~q~@#GCd9Apj(X<g6V1J>&p%@)0`8mf5NN(?yW{hd`T3idb->e6{M`K>
zMww_1%IBW_mmCvkHeAXs081E8(6i-MVehOiyU%(}v6osHp@Z1$W9<UZ;#aT?Jdd16
z@XA>KS}3=G`%XMq?Y`JNHV#?fZGr>-rs8=7f2He{Ja$h5C^A++GvXicICLX)4L+DH
zZ)}7Q=bL2p=8D12s<Qd!InIg<_lT(4G``slR>7MSquzY?7T)|(-gvfO?5yoWz8Qo!
z=Im8qw8gMD?X@>vBl<x2?f;0+4)NXNGPtVc(GBc;((^7V!)_?#U?M#z!7SZ1AF(!w
z!_6t|R6vO=k)~6CSBc~{+@~#cjIX#!40lML*~(UyL}0?)qed!&l%9nkxj1vhFr0OB
zl=&(W>4ZiCZ>kqj@K3)UuxBxrI73G)aR#Bpm@1Nh;NyrieT73fZF&S?4XNQl6t03}
zG0yycgv||PCJuWBx{!tZm1w;w=s;jp``X+)75>oZ6j%v>0dyrb04>}-#<Whb4T5)I
zJJP<=3;M6cIXB2`H45BOjICf>%TCnlMqza_KRver+b(6J8CuUm>p3g?*EfBI|97bg
zXQfTo(7afW+sRonr>d$wG}iQpdDjXcYg`yv9mjk6@GkL1jUuc=Ndw<>oVlZ*3!G%5
zk*2>}IEli?^kJRrx2gq{YGlIo58I*U`RVAi6Xoj~Q2paJ%A@PYvf@vSw~Q%WspctR
z_=VFu4ZKLJABT6*$pS(#C%pekh7*I<n`725h}rY_B-|nJF&|GcoN({T@TGIq_Tm4%
zss~Z<Yjgjh=mkh2mw;Y!V7VNK-v+_T3}O=q+X<v((o*L*rJ8=-VW6gy*1>;bQ91bU
zG5EZNAO0U}X9J&AS^xhHxn(Hxo(eh@bmr9ILk-0O!yGpCUJjiP*)+{rT2xdhn@k1S
z+y>m;95A&ar6ThIlT4EY%W?w(e8@meNmEHv&)w)3W<NzJ_kVxB*LCivZD{{~dnxDK
z=UnHyzR%z9^}U{;x*eN~A$d3DRLupuUMb&N*iZjXIob5@<K2kVM>8T-fY0L&ADY(o
zVBiBMbMRqKW!8Q)$bK{qiqFbCe9)dM4YNa^W{IYS9SRPiz*I$`(-ncXN>yu67Pd$Z
zVk-?Zv_A*iJqN;e*e$u(nzWzy3Bz^@(L=gCgKa;1`G1G+7k>F)<GcQw{keOPJ&UZX
z=kABhODpDvGF67}WhWWF7yoA0`2NK4w?h1-=cj+r<SLUX=Rjp+=cRLOEN1X*WK{`1
z1sY#1d`Df;yR!=4VIrb;$LGK6=&8xr?Qs9hJDR}A3ak!RRD}zF4LTEZ*jMQ9ex&H7
zV=L|C+H0yvn1&<07ji=nbpnbW?>vp-vf1%YjbozdpzjwxrmjKhACGr#gF>#z%c524
zQ;2ON|4*;L>Q`8iTQWr!xFWRI$p5T?PF+(?k>)eaG1T&Pf^7hSf~^5lHF)30o6E)(
zcm<<93Q!_dfY9}LgY%h5VL8*@r!hUu4jk{(tD4sBiX3l6yu+YzdUL(0agX-S8>sN^
z{R^ijL00zJJb}wVpFI7i9EarUPrpu3!zV8*wn<I`Bn4`yEg-SgU$}IDPi~-Wxc*nL
z@f7X~^zW)m^X<O|P_2iftObej*~e*?vojmTn;oGfpKrV_`Ba#K@Dkp3OEm3^SxkS|
zjOMJzKZCY=lac!=l%Jc#z`S_LWtnl<G=HIM{ya=^>Y^bfiPU&PNTMjZufzB?bXeWQ
z&5Wca*&0~7kwc1av+b@=dN&hn)uUp;WO}>OHEN!9Cu;}k{Q{<ot@N`f`!oFZFQJ&0
z{pH!`_n}v@(Tg?kGPAk#`YyS^0qIrTpI!&i^5FEce&itZDxN)4jX<ltt^1ClhY{D2
zNZ36w@#U5;XR`@T&?Pcodp=7iK2*?YOFNaDNL`3V{;_48i>MmQC;YMHa7Rk|GwS*~
zViwQhFz{UxGw~3_Jl<K6|D2u!$luKWfS!-9%A==nM0Ai{hGW=9e>VAv@<eK!vK$}P
zLU2y6EvcFCR?Ap^4Clvi{TR&;(%)C?p&x9CzgnNp`Ym{u7i*Dtc~P`T{6E2O#9;b0
z@6|!{Yeau}>0OzJUtat1xx3P@5&wmLov=A8H~sZ%#QW;k2|)cH>sRSu^!m&zgV3wA
zKfQkS;QueZO8*Ob#h%+0y-MGgUNNBVPp|mg+nxQymn&^dJb|Z>5)&DoCA+9!4bs$-
z@bl(z70Dp|h<yIMONungbT<tU5RwK_J~|Z}_7Qr<snYEq=0fDtNaJ?X6x~d<8>*SE
zHd|#--N#|=FF@dAX9F_MfSUq&{ZH^A7!!K`1wJ1WBB|1<{||hcSG*rS<cF8J{P0~$
z!nJSRENYP--l%KfuVf^*=(o0+Ih+6M7%3nt^hJFVlwLKPh;;pGILDV!a#edq7;F7P
zK;!NT#RNtTeol8Rh7Xu?KTm6ewIa{N#Di}A2u^s!<~S1DD8T0tjbIqV4IM5qijY`*
zLk+AD!=1oYOI5FM1K?3!GZLFdIp>7V!3d5eeTUzvPo0VT8TH)yGP2b-yF8{(ENM!L
za<R6&QJZZw)F&^~!pCE;pH;$B#h`#yA>8HNt2B|NIvm~OV4EP=YK#s%hj703)R1WA
zDA3IpN+#_P?*{u}b5GBcXllwaq-fJ)i;}fm?rXNH8=+#oHM3%*6nx*L>do~s^1ezR
z1Tzu4S@fKOONc7i5__X2<iF^d(2D-WyR=QNs%T<&WI_$M;A+mb8YZ>6GBcaK)-}3l
zXN8|H%|<ps^KK=nlg2(rF0GGT8iV16M3TqW;`8aRqEQw-=A^kx!XtmBUbw-nR%vi4
zu=GAo67vb0U&*AA3=|gmN{xsLtlwJ^9%%w#bF!6Y0Ca4NZ~z&%O>Q(#2)b@FG!2Jn
zU7>X@-IPQnzinn80Jf<lzst-Lc?D=+E4^5Q)VF*^K$)D9FRKx{-Tn(}gSNKYZ?}S0
z%(I$FkPlcR--jyS_4aiSa0b|IW2NjT{FqDcJyA=&-?I@AHd=l@eT#;Ym)wV5e=M8i
z%i1UOd5hEMK$fR{>rw+|xf@YHpC!#2VOVBY>2kSrx$_q3vh<tZ;Lv8Ty*x2pev#HX
zqU4w9`T8|56pnfk2~K$Uy%;phQ&D;;;o)sg4XVWE3ULVW$jX(IuUhr&qb2=fkam;0
z*oeQvgK=F&ed;vU=B;NfronX`V?(F$@XYf1)P7o{Ij@c9tk|A;ZT;Bw^}!`MbM@9R
zxvw78VJk(OWoC<Btt%o~s*o{3#gL%zqibCf+q9`c;3lMi6J%6sG@V6_)Td6bu;W86
z0U?je*tgOefecSQ(5AbuKdpj-P}42PtxpY`lHxlVnezesU}sEdx2#^$tcW-K=62UM
zl^Q&9P5^)%lo{yio~;A0X|GKcCqHRC>v~f^I0oWK$^6ue4KVeKU_-w2O?tg)y&vO2
z@fTPp-xMD=%$Z8j_?O$jO&ZY6cdllBn8Y*Uvyq4T)98<MLVt;rm#g-*OZkZtE`9z8
z$?>Qc?6SmL1V1Hdz^aisRV`6awf(D<R-Z4i3u05Y?oL6dR{2wx$ivWhJIcl`%yA{R
z|GlT&$c4#!Q2NYVWla!o^ZJRhRB0;(SYT6*N?)kQtqEJ;T0jO~G)W)24JMl};LiyS
zN_S^>jm(@O02mN%B+u8bKI!of3SbATj^rcu2}&mzY<fL1=e6I@<>~az=sBfYj~zy9
z?27S`<*p8|!8$ya{9tO#U7Li^73Ezov|P=x;3RHJZ~vF{lEDabon_)0HnfPFFgZ)Q
znQsTEr$Q2smNrW%aP`S6%2K1IP&2Dv`E@{gv+dGHl}bj0U-(59mh`Xf6;=S5EeR93
zuck{qUcU#cbvA`^;wkLa24}CnEd$fOb(IL6T<)9?_Ub<U4r0&m6ef@>69gczCX*cb
zB~=PnUF(bu82HFh@qmV~FG7#WKQu_o(QUW&g9QLr5&*<IF6Un@;}(xunLVO>a@)I=
zEqgIZnz3yJ1G_RS#!-H~D>z&%K2NKY>e!rctj+P7o;x$R?$Ec`qK=`H6=q-SgVDQ5
z*{9Yqm2RHx!i*>_6-JP#$)3)Zr7PZGxB(<I)+Ec%k|ar>oUPJJLsLfXQ!2}Hx!{7F
zbx@mS76f`;XZ|s8QU$OQ;z&X&)MkxI19U(WqD@k0a&;g3b*nIMXi{GQs1q<{UW3s*
z(2{ZFqKQuE%qv7jhe&kwZyMNqH6fvga@35tg$qe@sQMb!oS?E|Vg^<ecuqv57phhz
zz&5FTV|pG&EByONv#P;K&%P@en8XQ7Zs6IcQ!F3G=!hV!2=_KIn1%QP>jYH;Lb<pg
z-;HVQoEUz`Dh?Ofg*69PQNOJ@$bc@AVV_m+L)S>W6k~t{m76FjA&r4`gmQ8fVWaH>
zTD1p2qMjC~riTcX75f@06W@!^Ge;Ig2AxnRztOO6RgO4UiI7lJjEROkA%Y18?KIfp
zxCVq`2aDraD|qN*!r2K0QG@h>3M#NKu2SG9OqJ0zn+3186iHsZy0x#B7On|f4BYU;
z%h21pY_w6(AG)expxkQGb?Xo~K_0{&{in;mv)_cw1oW#A5CA5bpb!ps8idslSorW=
zbboKj_P}TW?2o}%@;{&A{y2JYq{%omv7O<sjd$%Y{a_~Ob=BIF3pL?n&!gh=UIdx8
z9f!udR&w)8$`r97pf-)?ywBP3&UPL|-52)!+gn>(we6hEh@E!XTRrRV7U5IKtY=kp
zQ>}^;DFEu=oDrp3t~@>w3~;`oF!cu<R&itbz3R+|Vc9+=6B05tRAtq2Q;j{$)*oE?
zB1eiA$LCH$a)ni=QdQ%gN^6Q!+m2)7oriG~T*;w-?+uU7-H#s~t9#mZ6wiFY#-EK4
zJ=AD~Si+4bM9U0POrU+BL;I4JkNrvzFo9;Q$NzPXEQLvCKM+I(B@x!)xqCZ-UfuhA
zFvHrOIn2KA{Y^0Ahjs|6|9x*T;}QLie`ihaZLYpNZ1boYT=-(!PLORh<UsZ;Za{X5
z{RY{Sxd|@Z*tQc~MF@}UpVCM0Bb-tusIuad<8QRTYwi2WYuMYJKcAsiGU~^<y^NN#
z<!$esu90l~t@=--eyF9sp~g<aAFR$)HUjar!8{A{EWXPh%UFFowceLkUwrPvl7xcw
zvS!y3=ujR1vk_*J)re-qvFzUBWB3?|zLE!wTBOc_i!zJGz{rRobtNt#9gMo`Ytm4~
z=rG25v`i4$<R4DZ!x|KhA`vmd!yj<wq)|;a$(*!V0l$(2eV&SPOkWdj{V^8gNLb@}
zQh?tgeU&%=$J<wJC1UsidxRg4tSfDOM(|_LPltv4K!jH?syq)H2e=Vkk^Zdv9pGln
zYlIQd+tjmZFuH@eM&U$(tgV&>avr=_P0Z)7V1=yC-eFX+ci|a`voiZ-40F?nM4>}N
zRj=L#d+&cjpOnakb#@7LjVzyC*1lu&Pm(L+UGM6V-o0kTq(6MZzh)BfPJEJc9j&-b
zUZ<Q+`;KS6x}-PWWgDLAlMefY!^KYcvVHPW3#Tj*P&A+2zGK9zEB{UZoM``K7(2XG
zRX)~ol!*)HvIBRy;Ig|4V))7YB+&z1pgt18CVes>MZK(#>gi>dwNGLQ&Y0jnl!2hY
z8Y}Rv1iRQI*Q8q@AGf_7REEoell>~QjJx%2d(!(_@yAVvy`T&%FLr+E0ONU{2gcBn
z@Vh?G0UA;WCJZtMgOD~D^R>H$`}5k_vkb#Mq-Eb#GC%qAFzCJf_CPu@6E`&vWq9qC
zL=xo{b4f8S*Nar?Pj%suBU1S6v+wxvxL<@jmLfiiG7N)!`MC!9sg`}f9oRpyCFc#J
zB04nZF3ogk<Td~t`kF?A6r+_v>6<sIXaq`7`sXR&0$DZL>(hUe2E(s#&;NDxR0zC8
zj%WS6;QCqwS43q)U#*qQn_R{qfypP64-l#EY9Lb2a{u!1iO;<r;tiy~o*zw~Z0e&L
zwUDyux-)re)g7ot#sg&vN1JCyQym2`nKiO5^VJT)$_;k)>(Egyud;K02yT}Ow><a?
z?Xi$EeGPx19udEcz%Wq_LcR$(3VR%N7TDv#>l>wgzII*TD?jL8pZpO3O@j)^1EerG
zkOt0!xBATFK`iqe3PFJsg48?CR$y9~v@~Be59p81ERZ+qrwV7UsK)R&n+~JHcBat?
z0>CiEm(!z2V~z|Rtd^DxDi2rH4}ec60@7XL8Vh1ieAUbQVOKdh1v!bZ5#Nx5s~)fW
zzE5jE$Zajx9tX9ROI`ml>GEA$Og5Igz&7w#gv*j|*uGM%ZH;BTw1=0n7?LLaC4z@7
zJEqMlVa7HwV_UdzgE}u?gC<A`Q*!!=pL{U;v}%R`xr?Q$h{Twzv&vfcRV{MAQO}}I
zj&g3lH8E$KEbwmfTRr1|8#A)buE>{b<WDKF1y=Z=MCu^<yM|2SkzSOdb@e+o=o*|^
zJcWHT7X2HOR?n$q^(aoaT279B$9O<gThPd?Tcv)X6_Qx^bSY4Qvs<IBPe3wCYAQ<L
zhs$iLZy7`xJks#t6vqA~LkaP_RjdX7OhyZTG{G294up83Lk^NKu!q6<w`Po=HwI*L
zG*d5C`gpg?=E%Qb=x(_}h7RB&NE79$(z_@_LPrNL&C(l(kK2uGI@YryRodx_R8eG-
zz-r}jm1IDm=#RR${lR5*6ak453dj>FFG%fcw@`{H-+5V`i*Fa;4(8tb+{>taXc(T9
z^WKcFX<tzK^mJ#hOTvS4OX#=;t3+{4*zLD#Mmrpwg4e<`!OOk%7<69%WPLE|FMm~!
zR-N%#uu^j{Y&yQO8WrIiUsVv~d&<?~7goUuk@m^4L<~sHx2jD*E#yM>(zk04s>=eW
zzph!QJJ~ZRk&^8A*bHcWryHd(C7|l1R+ZDm^lqxdD;3G5SbDnhTuFI0>|8kUaAD-_
zP?f}IDxpgY>g&IsO!4NSXboO*)C*t73r<{3w6lJ4NsMMvvBkeZWV%~UqVM_e7e(jd
zd`8EHJtIatS_;~M84Wx^>{_b;Lm6Iqn^+AnT37(Sf|UXv{|@aV?AXt5*c7WBi}6LD
zR<28b`TppfLG5wulPj2!pDL}@h3eoLW-&b0@6K*kvO+Iv^dgaClfOxOy^A9&nQbq~
ztpE6$%-vw?Km76og^&kQ4x-XX6aQa^MjZS_6m%lveXnAIl06+;=J4X8cY5YP=XmEe
zJnYy$C*JuLZv4Y<ukL&*-dTd?*qiMX%zN`k9wZ;@`12g`J3N>fLt-`dMbeXv;oH6{
zzKOzgKHTBCppBhHEW*ScE`~>PiR)A6RbJGwV@~rm+%&zj+CclZmVsRU&gwS7DUe#A
zT{J!!Nn^okhp2Jdf%t+ch#k`^Fchw+V`K}39`}o&UE{sWI9zq9T4sSsD)|_JGAi7c
zKA3;#weG<s{@^BoSJ{p>7ZovubbYrh8`OPZT1ip*B$e!D*3@`zdeS8{-xz<8AlgPU
zM^}bB{xS%S&YYP`qf*tGrBP)DOu(ORgwk6~va)&|J7V#!HAKnr&L8PJKdd8X^Hasn
zyl=ja%m^TvJqj=PI$6LdD#MV9P26E=<tc(uU%A`?=BUOFss<REtmr0)O}fMp)pab9
zl%nu_4{d`0O{B*H0~IphxT7RJ3m9-5{McDybDg2<Vk`)>(pIPvqxF?EffxaXVu^^8
z!KjyK<dVpCTrh4ziHflJ$GKvZULmVQZ6cEt`|}q^ioNWsQfwYQd8w-NYjm)`OMzV`
zNA|Z(SHCVOe4EUD`U=ccj{ax$u@7~5KYheJcDxIFq+>ES;j2|@$0BENWUVGZY9wAG
z*{EFC8xRs9odg)jR;+fbkF$2(lyR*-A*!fHbFdsGa1p_Im6Ni{rV7GOGgPeBjA_P|
z3elxTe6Cj6M)gy>%)AQ<o9GzC_8RG1?aFP{#IFXg4R<Edm(ilSf3C{7?1|!<{IU7D
z#e&Y$R-ov9nQr(iq;n#f=ZrTlai~u3<&=qNSrw!!e+$miMvaLNiZ|>ju@=F3>Bb!5
zOx0nAgpxpaKF|><%%tq+Oj=E{8U!QzpE}Srd}N_SBaabvCl&@~Q2N^MTqv<rP$MzI
zU@++U9*GP0@z76YeH9F+=~q7|anrlEeS9=E-7JmFMegHlW0!dlBu46kCPVIQ4o(mc
z`2`Wy@GJd-WIPvAjN&dqM4}S5(NYk*@%KVWfbmSiQxe8e47Fh13BAi9!TVGkKJzU!
z<Yj3{{$JLA*?N_o692sUgtEkqP!qubHM;=<1k)?b`T7FZ%s>fFzEgY#`L}P#;WJ@h
zO^MF<OqG89LF4n$5c{I<i`eRCrymod(FF7x!mCTP(l?rk=}1s|tQ8k;F1*FnUDeB+
zbVvURqyMHO9R2x)H^C^C2<jj<{1vq%`ptRoUE3M!Ms!zntTAA(W@A5PkhJf8*IE9R
zO_}mBPwDA%z>7$~>u~=T4K0dy-LCp2=ZVyCLEsv>Fzr;?Gl^u##mxu!bjarxtD@&y
zhP!mgZp{bgBHlJE5Ajs&_ropuu~8QgFu`rQA#BVq*N;Irgdfc>5ybAeorcAkixv&c
znP*mHIP>DI5ogYNG@mms@16%B^})V-t++VTy*SI6_1zGs$nAHPitX+Y8CHPEqP+TU
z2<PPehIRk*V-NNn3k$*49x|!YF<G#m_+bS0;tly=SLIjh!2Z4!7udtIV23|lh?;~s
zYLcfPS6w_nf17hm%xwpy-EFeQUJfjf5)E`yuA6YnD<HwI3DM&kyUBLIKSJxhL7sw2
zOfiPYnP$*yk&5-+snR8ivhZOhHoN}$4ywi9nGH-XuUx91^v~^zDKjTxCmz*R(4n3n
ztDcw84rVECIN{BcSh1Mxo>xB{b<d-@PcG$6;Dm>=5x@(P`6~g@Mu2S)^TI09#uaj4
z(-mR0$~K!njH1I#>|mJ~;R=DuEQS%?bQ6{=c7X%X5`U_SRYHj>x^*QOSgLFLT4B5<
zOfP_k1abZI$?>^bYYz{bgjZuC&_57Z{hfH{CRs9dlZLxc;MroWJYdX5dszOMA5tKJ
z04m6h?!ZUvpnu*b2tczu+`|t4P<INIo!~*vb>%WGTG=FWbiHuhaO<JRRX=9*2x}1(
z=UavSGjNUMpqj9JW6s%A(ni3VOy%fCL)NJl-!GMpcYRwm;UYid^aHS`3dd-AA<i^a
z`iJ`z9yF>)f1VwNL#Z14Y(=W{m-ecmidTmS8+;Kxd8o!5u+n4Kp=!h^4QZB3S?KDE
zNU`p_*#XwjyHS8z$P?b0d3dYQGbpV$!1TeK=$)H>l8U{zn;F19UGR3IiT?UY5h~>A
zl2<Cql=z-Vwp36$au27g;Thi?n0jk|=BTFuJP^I>{9NiWp`OX`HXzbio*MIA%Cbj6
z8S_ETchnp8gh4*$*SaJdD^g=-xH46gDW?o#yg{UDAbt<m#*5P5v2b|2r&5cL=WsOY
z0W%H|z4>hZo0~lmhZ%e#;)zj#w1)D?tzY1Xcp;Z`HLZjjk|@Zl&d6o$hxz}#oqizU
z(~uJM15r^JEB&zj@N@J-5pYI7R%G<U&uDWh676*6wZy5uw4^yV`3W%!6~ty?IR)~E
zdb2lw=c#HXHRi}65{nb6bivp($+V!zv!suce1}4Pqi~^56O)GQZW$+3nnX~_T5k7!
z_g4){w+{1ia@hPrIkDtN>8(F?a*}d#GAb)4t^Ks@8<h20_Nf9bJI`L3mW}c%gq8)R
zPpn2ZG#DGj-l(6reBQSr-FiN&TPJ58-r>b!?x!WT`rxqWUAl?d#=Sl6g)}3t1<`4g
zRgGqGi2oW^1dvyE_k=ib-oS*oae1D?jIfqVgbRcyP?#@Lwm@NSEfP=1EYQUi<`h?E
zAca}k15vv26sFckoTf0Xxe9Ys{+mc)rkxj2W_VP<D@<v%fimh)F6l$0FyEbv!aQXP
zlcz7XKDtJ_f-TfP2pIg4mx!j>XTpF?6mX5Q=e);;(kqrER*OT8au-Ol(gheQKTUoN
zE$?c5wC&c_u@$+WhFb!L>7+Z_%tR`@4N6Bm8-t!vOhOZ7;kzWu902@GWT3z**=(Sk
zi84&Mac-y?cPE7spp;WmXtyV$9xG@}a2PmTG#}khqm<|D5HysjVGZxBJrkNlwjq77
znI<`ti5q5KoXH?ifsugLln_#D;ZJUkz%_c|^_>;TPYcjULDyBZ=vdpjCOlvp9ebq{
zDuzmg34%Y<nIpp14K3mGRO#>Ub|Sn+l?A0|ut}xQeLFJ9Q{F=vpZlJp+;^MGsxJ+6
z4bEfEcSYnePtoH>^O$%h0j|Hio?B2F{zma?Vb3svKT>>Zksg0GaIjD9{i%BsfuNV4
zh+gLAzB@Di^^nZ#D(D|}cOcgHAmBL>XP$h==W4Img8m?)D{~rO5YxM$^eeyG9q8%Y
z7kA`PwSqU>jNZI?<NBO8bO${VYD9I2QB&rx7A8Acp=am`N(SI#%Z%nF5cDcNM#mHl
zqdshVH0l7}lGZ+5d1rP$3Px>j6hx#d5F%xk=2z>t1S*K#{(JG1$TB?VIR{jQe&P|b
z9Zs(;;Wi7bXhoYXyUYhIi_XvbkgF<vl>`~xZZs4!m4ugF4{fy@U=D3{n@8WPJ_~J;
z^<(Hq@jsL;hqBEaO{-LUY4taOn^Ugs4VD5<Y_Dk9PvsCdlu8eZTlNZvO_GXGLx;_e
z+CHS^&ECI;e{RQiEZSB3@wuBFf03<e3Pt#b%3G5?hxhT~ogOAJ6*b37i(r&~)YuQ~
zmwuGl4~v<71|)&{PPHgc!R_=!JFB@xZDvIn#cLjQCIeJ#PMr7oRr+LtqU_FpOCEyQ
zOpbvvMZLEzM{p9^(DsNsoub}r<x6+edqpKyLNw6Q7zMnRPFHJ9JT?`@QYol??GAe{
z75%8**YFs@?5u2~M*Ttlvw!8((&@hMx4>a0;jL}V3{3H*Bw}sSL7M1&D3TT0)SI6~
zZ!EJaw5U5_5bJd+^ZF!-l3v3CzO{az`X=0!g_q%d^rBp`Z<_$jjdXKuO9sMl%N%5I
z&wLrom%q!9zY6i*&7V>ORgyrasuT&7aEe;usnM=P2;r=(Tcd9}m}tWsjqTfQDCJ#U
zcu5I)1mJKb!bafeo$CZKul@Mk-y&wfkRyL;tw}J@L$MT7%Vg<Sh0lu3dRR;m4Sf%*
zBz*TXj`ZbXq&W?v8GO(33L|vNGfw)z!uQLptc8Y6T4mgm0lrF-+>}^91dcEve9T?v
z$$<DCOva<@#w=Di>}dx<m1>wO42(*-5Co%c`?o4#@b!<g3x(Q6l4t+e3H6PlIcvSn
z$Ov_l>#T9ObyD4pDhm4OiA8-H5w~czp&~V^)L!ZArxwCUo6JF1gZ<A}5iyN60Rs*9
zf{b=p>Vvt2DM{}ivi*#==6Zp4Z=%lHmQM*P3GP!-0n74+GiD=fI)5zR;N<c9s&ByS
z8p&I3yyPsIcnaYfL_%!4WxGu7yfT!Blb>)5tQJJr5G`cudX$cW?ac(wEy-X>_e}is
z;w+$Q1@8!|Jb2=B_i*ypB$ygy|8N90e&f9=jkIcRy8&iq!bp9Q;-+S?`V)!N$*$8O
zuro1II5HR5Dgj%8g#%dji`Cbh?18~s=z^nW=rQphvp=TuUyj!KFJ_U(Zc6C%q0F%=
zJJiF$NDn<Rk^Dz`DoBN&c*8;)a*WJYxVof1i2bXB-P|XxZ{hqQLdd?MEkk<m)+`BU
z#0p|36r>R)CY_)e+`TKqd#{CDf6QfKe+LyLFhq(4IS_mdS<x9+GoN*jww)hgA+)B;
zYbE#}c{%6RMBk%aXYHp#Q+%Q3gWc2F?7Cy~r7J{S2o!lQ){;-`nYsS}hmaI+>U}b-
ze_a@de|XI<PueBot*!<9)q!xJ&?^2$@iE$ohG9T419pQcL0^$Sp4k45rs8-uD}#!c
z6ouni)g#d`6-P)Ufv5qwoJX4xT$}9HcD?-d^YN~3^NO1Ac7$JGl^L_43fEQ;JEvBv
zB(b60GBp=oXA9ZQ%9|mv$a;hv#*tPSy~`FpJ5v~F5dSC;^tq#4pTPZMp~|1Eq6>_P
zl)k>o+oV&k&ap{Yz8W{QU;67G$R@SS76hkf>`_AAG*!BkmwsJOCeF2inKo-l<jcv~
z1f?}AoI}lv-?QK(U5JG*ka?NmW5y=Mxw7}Acb*oRp3g+@(qA_N9XmphP%8Z0UW@?@
z&d>1se&HEz)CMs;8`WWncWxGWf>D3`zAD2|Z?Vc^bt^?ADz9iQBod(z-G;?{;EB{~
zY$|aIY(%<NwYkMlMkEZJ8@(EYNC!ReL5M^xBGQ@d4x%iP-uYxiq~oG@j!2Q<g$F+1
zBzc12G(x|E*lSBX0k@ViY;`_;0t7pq;2PdC6Pv&cY-d9A^y@0^7g8bJa`8j>o8N1I
zKq8Gu;+GVI$Hx6baY5;ETvD-VG(;|j(a=$Q>pATAaYPU+vV!m$Gs^rAV!z&(!-Hsk
zu>CKt`WWq(seQs_{X^3hLGNq0)%;GF>Uqc7vNd53t52*%@1MipUPY}B^tTsdq`Cd(
z2pXyMX^rV?_(tw55p%!j^eH8&*uq<dUA#-@w<VH$u-^=Nsm;i~DfLUFZZXksf4Atd
zTRzU|4Jx(jft#N_BHZ)CP~_RfJLyD{Bg5W3nUVMd6JsAs1S1ZtV=eKQpVAkJvCk#C
z`r?5WC)EYD<uGoMJ^y9VJKvhA*%FE3jU@cqzA1vAR*^ijDizy#i{$UjYJp|*os;KR
zr%r3I06%$JdFsrD_CFVGV}kR$MKwi5GiP%xW7@>orBpXW1x{<Yy9haN-jju)Jgg~-
z9?~g@9=2s3Lci!?nI4M%70|zG4HZ{V@gCGsF_bsGceo~7zOSa*^yDU<v;o8sT$?Cc
zsy8ZY-7NPq-t`r9K7Bd=@L*|Fszjx<K?@JNnS|0+%e_7?)(f4%m`GwsO|r_blh!m>
zR;S;>)tSS3H@(tsIcs8bdb!<7cBNx~wQ!9rP5M}#hpA@NVO^%voTm@*xxW@m^XJzG
zv8jn+@B;(#@{Ak<Qj-W02$t!I<p=-|zuM$r{ELrPD<pB%QYTE7MnCW*ZlB>`RKr`|
zde6(PmuVi+uzKHO872-gfeskZw@%Jja9U9}=_LyIZW7z=8WgUZgqu@0={N3u71qsW
z4It*~CgGc?(Y)hyy9r7w@0HoI5fR@%f$<3#-;n7k@v-Q6%PdEP3CtSEH~DSRoAlMj
zFSGieFrf9}rJ2_!>a|lx$~d?wp*s+RqT%7{E(Ng<KO(4nOkSfq@?%7Z4tfWu-DiLe
z@3|8G9s#FaRPjOhJO4D#-@Yq8Fn^mjIxAeU3;s^G?HF)GcjeY={B=EsL%y5G-z)m@
z_r34zn!hi(_aA`2waY&!e}8$+VEkPgy~*Y8!=H#8R(t04`}6lyS>Pac=CA)_{yxs+
z$HDn)YXt}Bqma*RO1!h#v^XizNBX>z%Zy--dTydn(L^BybXWqDJ=0tArPsMMrs*>3
zRqwhwgpyHb#VS80zj7qDL1lA_g~Nq`%-aC*uFbv9w?C#HvKoI-)j&3$tKCe9Zfe|3
zw>IKs>~oJRnVz&dvFdkD1)fMGpH95P;S+yl2a54Gvc+e0V$<u1v2U^i^vD_4&aWRm
zKEctHis$)u##)k6BWEyD-cvole(3m2ZZ}A5O}xW;nX_{iPp&3b8#!JoP-1$kf6BvE
zo>Uc5Xh>x}K!vzjE&anEUHoqs1mThiBE1UAI2q})g*Sg4f<5h2x<H?gcK&|4Vu-1V
zA*QN=L`0Z|=%z8cY0^z5TVVFP8iYs8rgt&wVX`{(b2tdGE#9F;$nghXprc;QWbi+m
z^ssYW&tzKyGWqE(%H|!=U3+MEEyC1Vs|fUS=05r=;vG}Cn}5-yL?SqyWsIaIwh6s#
zd$VqkC+IquV(V&0B#uq6otf(h*Qg*cy*qsNMZk0v5vl8Y0n<YOZ!lc}Og-D-$0Jlw
z^z<7PuQ>I9?#YL4*C^WLuI<gU1>TJ5^Di2junpbb6mPP1&$?ajXVzueTaUS?2#i#>
z9V(VrP<7aAtKXHZam@7If!>OBN#T+kVhXR^Y%JaRoG#Y*uywUV6UX+pg>SfL@)p!<
z6V**z!uO8-m*y%GWi+b+?<w)DqmCyIwv8q=+VH9z_ietC?OFe>%A!e%W#RpWl}!-H
z)l~Kuk{;=gsghtCqO>aG{hxS3cHnOCY>R(;pyfM${h3BhN$EnKGLgs6-H>{jAxYJg
z4_1daG@AGUS=VIByI-08Qxnx%nV71nuwvLCXLWpemV^YQx6O~CB7&f!8#(e&Wc7hw
zQ=6MVa)6YgeQS|~F}d7rvJynsSxlGxOt<u9oAhN{xb{1KUI-O5DmzIqiGA$!+q`(J
zv6AoTxkxUN%PuHTWW&=6Voc_Z)5GSim8;fGc!m#z=xL)MX9}i{?R2Y08gw#`LF`M*
z<OUQjn7O2h@GpMjS?CsR7hxfkUw=&(<QUBYUe_5J>IJqkL8WauLdxUYzE)&l0CdzT
zTFQn9h6j8l<K;Wu(gy-A2Ab&!E?gvs+=AYf_Lwt(?+g6OZ}phJ&U@b(L}ooK>JJ8`
zhuuMjPRqqyP!zpW;4{_2JJ(k4GY-+xORavruFHMBD1#Aw@61{Y?uC{95(Sv~^7&Kt
zcTqn4=9f`{0nR_rdfW?$eUU8<r63#p6MNY5g|J49w+Y=RzUqQE#8tiTlr3;!h(O~6
zHFBS3Mj9lc=JhaTYbUG;_odn1Zx!ZuN|BoUHrda9T`Ieuz5AN|>_7Re?8>^>GF}#k
zca*S|eGNmH;a8jf)fetJl%JcHT1@fWS#l*F;xZ@}F8&`$I0_?(fwOejD|BT`e-yar
z>l?~3C1X4OOs|Xe3Fqc~t|PR<3;gGF15E^DAtgD-SfA4=+s{5PeZhTxtc^MP)@@__
z0}DUD+CD$bfBtJJYqE5j`@Fc{=P&%t0iS98Li_wL3ta1$xzDG#&zIOxVQ%Y73P11N
zBH-`vpYQ2De~E|Ser#(F?wX(%UR?P3zwGlb`p<uEN?iJP9)>?x(ji6LPzklM(PpK1
z&AuZW6=3<SzAmlO*Eqih`#ScJ8c&W|Z8eYZH6Lj2#{5F>Qn7nsy3?CjpT(O9qa?CS
zJJ^IJULxrb{f>gFx`*fR^t2c4^S=j?eTn_G#swPgbKC0o(N~;6^Z7#iyyY8wy080m
zdG^!W`+vGH`{}vv(=mLy;ZKm`CeEi>7uzx4Z<Fuj7&~zfFB3`nis%RDU$6$I_h}yA
zp7;2pdfd+AuDr*G@YwcGf>*b`ta>0fq%8?!dZQ4DZ@z4Aq856;E^Fr*QIWpM%EV5}
zd@T#Ko-*l=yEjk26xFLYKh>L8#920`&wF!|-Xz_dpXI%|T5mK_iEn<J_vRA4Vdq3a
znX)$#l&9*=b-W3C87WJ1lE=XPw_C;6d>fU!pEh$8vioUkWT?3+RRod3-|EmLOaOxE
zeYm$$#4izRVlzLSBmO9cR3iQ{Coe7{Dsc~AJI+0<Fn=f45sqhzPx9Kw3VKbY^PzX4
zy|Y<H{|Wr%siK_FBB2mE1Mm7{`@?(5M+bnnwK^AG^*zH*w%7#T*<S!&?Hw@)yq!Y0
zUp}qc1P@B$E2QkwM3E+Z@-?^7wOLx+2WfRYt`qg^7rJ+5$iSheJfjBL3W7`ps7FmU
z`4m3$c>uj62T%`iHvX~sZ=SvYI1ST-55xZ0Xd#T(Xqwxgo{y9!(G)=K`OwPY1AlC0
z<|c;^u+Y5*=-J3R+OghfUWF5L2M*-SP-}KhuRMH*$pV?f1}0cby$`T=^v}XE0((&U
zUUfdStq`m(|0-CkBHDt3H1Lcdhirh6b3Q|O@(s~Ds71S~r$d`3+<7U^_GXc&fIhc5
ze)gx2=3^Lva`yMmZo5r{V;lKvg77))BD`_1ZMP*2gaBo-O6B3-zY{I<_uFnyaydC$
zU+IcG%p`|G(xt-Jaq8*G;&vYVS6%u3^g3ukL=)r_5y;(Zy)TvbuA>LqM;7R<jCdB%
z@<PF){TWQ+^5BWj{ontDo@^aRakm+|Edc7jUwRJ7tE@Ya@-whMD9LAiyMW~5ormyy
z`4PZ`b!`KX-0gJUpFgAf7q*?w!%toUS#;!=S44j)pwB`_pZAgRFMTtQFL^vWqwpPd
zMJDAV`R|n2$nf*9jNTOR^P8Uo@J|oIPwhs6jD0Zu7+`aI^rK+^`+h8kuX+35=dc_V
zuBpZ@aXp89??0fHC2x9PmY<Jn?WbjfZEiodf8qSi?fXl~+e{uPsNXiX564^#u@~n^
zNuGRs(DPQ5R12?s*$D}5Bi}VVbP>kxzdCQl>VJx<23kf`c;3o|s{a4ryp^B76v2;S
zlK;a<dgGJh|1yONkbLH|K=FTn-pW#^pEw;2^WZP(&?yU(baA}%@8SBnIr=HL4(MJ7
z4RqyT!lz!$!!I~HM^VrJo(sP+zMqP7alb(od@EBy0q&bGM2J4=G&WCu;&cD*;4jcu
z{5<YVr^48tq{k;x*W%)zi+A2kac6($>ci9-0L1*8iJMwlQfHK>8p^r*62SpfIJZKN
z&rh9EMP`P(1f|i<2J~`M{N|p{M_c-zJP~M*AMo-C8W$KDZY|e%;p%+?wOh^qzhS4G
zZvKCm|5qiFGSjy6fQ6@;VSk%_VqI*LcTh>60ujPTFMu5X^g5NL2e}i!pY5;IsT+Jh
z+YLhf?jj1sJ3pbKBr;a<jBVcbpMPE@Q<6X-+9^@J3n^S#`18N0Xs2zRp^WC?Td<W{
zS9?~+D~BY8Z&axU1rhMwucxuDAAA1}O{6|s!iuDqf5$)z8$)*8BQqO}dE`#TrA#&K
z+>NQ@_xoRsCS1xl08~-<OZL3-fsyjVLFoZ|X}E?NVGWI$M2-y++4z^OmR&d7@-!vt
z3Vuj!rQ8%kBw~R_fMZqP-GkvU6UhdRi=|2z*=HE=U^+-NSGMYV8&dEjq8Jw5uUle-
z&5256@mo=&W<{KSpF=T~`};(1UO-1nlUNdAR%Jz4^HV_<B~+tLCWT5S=jF-Wv85@|
zv4K(XXm{~~U1XD^X(`%{R#D^sHaXI?I!%uDHBp!IdH-svmOV)p?DQg|xucT4|3y?N
z{g}Fis^2gOVmlX#`VxqqWBoGkvL#}pn<}CyBa--!3F#pAyE|gM!k7g9HD8v5pZSP`
z4qBSHds7hp{wYf#hvy^UhtYw|i(je1)+l{^a#?&XEA=Ge6U5u(^2%zHCx3;aHTGOK
zjF0SI&6Z&;BuN#5A2t~yqNNfRv_|VE*ragFAwp@f(CFB{f4u7^x_Qp(S&R!O!?rc9
zK22GOcb=;P%;$}F9;G{4UaF6UJon4&9w^i-asu9A)1Ra7Q#ELgR6RMO((QL{<uJ1g
z+-4i}WQP(QphTl?c}z;QI^J~`9XUHH7V{w8eS38q3(KX@Is?5^=haFxJ9d=EJ4YE2
z(3x4E&ghI^Nf?yQw{2y3*>_&fOC=o9wxju!N%UHSKK+`kR{co$AaV{bH=Dag>csi4
zu9(()e@;cJtZfZff5g41;El<v(+t!IN?S6B+@`UzeXTg_N1pxGK-L=?^EpB2vZ1{j
zoX|!sNN)dqanAdN(R&A^-oKdh-Yt2Hc%${1G=YhS>Nop6U0m9J0;a0+T4j$}t@pyY
zIW$s&78<SJ+h`;fR!1fUPau>hT^-TPp)5no8`|16%C4M1KFWivwm>-xFK}uQ(zaSU
zkF2Yv{CY(X#{BbY5AV^r@Rm7vPv;6x1#cpPx52@?pfw-f?hgpBD<^obxyZ3VZ2_;2
zo1fRNc1<^WR3Fbc=zf|~L|Jr<{EeRc8&%Af%X;$|jJfS9kI@C^<ZwWP5pdwOEC+BO
zGU^K|+f;`!Vdczxq^$N2zyw!LNZnz_fp*&1M<ElUkuZ~+%?@yo(OiXK%rtE-D7pFZ
z**Q=bIjHAkp`IQ=JwF3=aRJm;^#_33l@ru|ztFKl%^53(#yfwd`Y{kNpx3sSjW%0w
z@;}uxV1vU0oHQX9`H!goLPHK7+f@qrXZ5R>r>PDPw?T#E|Ehe_TfH9u30KbK-y@;6
z`jh?!gHyYW+2SX_@GdeK^JcRreN`^V+Z@Q3WkGI=NN;tSz|3vQhkA=X`T$V7a)P?~
z0!Ml^2h{QcK#2X0{c>L9K--S+4)jRd9AOZH5X6dh`MUJ(MZy#FU2|3rYeIp{z?N2E
zr%Hd(th{&&!_1{4E99+F{%C(6v?VCL>_}IM_+1j7_P7n=3Tjpk9-<F~)DJD-@&j4F
zp*{RGijkWFkbh;LnUc4AhP3Qqodep}_*<fw?bn0E5dK}?gOeh39Ko%fg%W>o<dB|M
zN``NWuY8o<Rf>1(9HPt6&LPB?#Y5?p74O!wrDXWV_{wepn6t^^Wr@7=-|wJe`tRlH
z&w!TxA&{&V47#a`Zrl@Ktq^NMou6uu<H_0Ua)6Smsbg(9Gp*&OgR_eT;@Ly^cl~OI
z%}CH)gQ9`h=skO0EgAlNeC1P#pni{-h*u@JaV}9k;cjO_yiY`Fh)fct0H2d&C<^k$
z>J1PNI4Tcy;3gu(8tf(~OFSUmzX(JJ<`Dmj$R;#{5|aq`;w$L|L+|)XN)6v2q6Y~g
zbjhzKy)UJWL{M86gH9SH!cuE$LGcESQ=eBk+J#Aqbtq8A2wze73vvn~aE%(_I@-kS
ztY5nsoyMdJt0_ZzFdSpe0%}G4!33gEQ_P7fC5hq8rVv4?ra~<nX%l*eGn@vIHQt!;
zixk6K>!I_VzPFT{4-IN7LpNUj9gX0%Z(S@*lFKc8O$7cL`KOb#8C87I>pA_UgxjGi
zzUb3>7&PoA4Tm+4#upxMPcABn#UET@n;CXIIV9S|ohhKryLCJ{v}S&D<;l$WKWd3~
zo|ApBu9gDJ{YSgGMzF*NQ4L2!&w5vK_V8iuI)o$s;6;@u&nNA>gH53Cm9)@vTV|NN
zq#dB<H!@RX$B_8k6z^*0Pe*Dm_!lqO{roNVt$KC0L@~;F&A&N*H@@%^eQ$k<C6!C9
z4g-liclb}TBXZWO^q6pW;bGR6_>Nq#40Ka`-f%r)(rZeaE{<h4-Wg04dXJXgW}o#p
zHOHed5lq_4V1Jf+>XO}wp6w;`hwkOTmusq>U%MA};*<a84PR~p#w|k<#oH6Xr{1e)
z3zvnKQ53lV=01ZFLDOD+WnqJdaf5?Vr`-D~4V(3Z;PM7t+t-TIU>$qvTe57?tfQ0k
zGKd}cy%-N=`Sil%^sWy%!%A3TeFia0_VAE(GLv<Pn&z~IMZd7_%eyP=@_G9uFg-l}
zaG&?m-$NS1r(LNh+~v1+VWL(fFzMeZI?BvVi?vO4pgNtZ5U4o>Kv2+<@RH9I&QT+*
zF#jE^U7W?r9+rfg4jmY)y5E}d&$L~7uWc>|!luuMTHDcTSEC1t7`}Rbe%n#}<@<d>
zZ1r~|2%;XZJWag^qOdEtcC8Wd#RS^R{}~rkU?1s0%Rbh~-V>(lANDi6oFPokHL;5c
z=VP;vnsI2N=ar#})CibZTUO%C1;ioZj3)4fCqH1AliLbc6uJ4G79?Yz{ORezs1rwu
z5z!<;88?yGGvKAn(rg5!S}z*ZP;MK03Zsu^?0z0TSADp^cOkzOlEv`1t9JD9ql6kU
zd>JS5o72e(KAdqLdHrS0=a@i!R4}b@e2J>6sj4KLy)v@E{DgKY*`X1n%T)8vbM57S
zSKrA0<NDT~=HQcx;|UWZ-|nI3{XN*hkNrFTd<Zk*M$Y^c|L!yMDE{4>t(v%R-h<?v
zF{X?@es_&nWOw)vclYkT#4SF7XK&!3f3x3A)iKK6H%3q0Tr8D*cmL*n`1gS3A-%Uy
zL*~0o33)>R%$zMLzUA>hKDV3K@C*p2!D!^!+}wmzqDltGMBzZJhp=`d(v-KzrowJ=
zohGNI_j8&R`mo%^FqrKL@dwWt`S$7|&B)2S#aFVe*V*r7PR8hXrC7@mK)!~_iR6H4
z)yEV>9XfcT<36V==F`=W%)Y8R6%p4V3*cw`v976z*bm=*<uV4@&*xrH$}qF%JwV)R
zCX1(w2m)}mw#siBs@0+OZ%K6IeovSZ;g_qj2VR-0vWJUeeC}2D=yUSzmJMnf&atwa
zB8w&6;FFT@`=bZ8nWNZy*7hhk$>vLmRB*fD0JRmw*58<|$OMi3KYT^TjIu;BN`XD`
zh}pf@J_!k#V(y|+LZ4A;Kbk+t@BIpX?{5h!M`OuV^yldBzSXm=yy4z9y7=d3STW)s
z=S`Qp=pl%%vA;gzCWM6J{zwQw|K&rwLqA+#s`L$eCBdXKVUYn+%6Wq^M<gT=uQb2D
z^7JT4fgyzKeuoO{-djrdgt=DH_{#8D+Rz}(>DtTfMa5-!Iaf0rj%(@&5=<CM!tI;9
zR@SDNc+mA_I*a2gYlez4tqHt&aZ!BU=Tt}XF|7f$GtvDD%86@cf0jdH{f^KY(^q;k
z{Ec52#D0-Q%djU07zF;9zTiw;hYn2)K4(YgwJL$CP@=HvS$C{Ltc!%gItv72cfRdu
zhESC73bX{H*b*MKj}ySEj9QlKbjB6AReK1aZj+Kz^Q}=OiZ$EU&S%=47Hd<dji{y0
zL@g(%)l&Gp+SK_&YjIW$wW)(^AwYe7>UJZi4)4)}l8~OBGbbKp%{CEqO$6U|Ue;7%
zyE#)7R$8+hAPo`fljC>e(!kM$`gxv?Fyu;-c()Ovss&p9P{rwqK6juZJKgL|AB9~Y
zpK$a4iXuu|M{8T7fd)BOubba6(hPEL;gzZ=`WlUIQXo2&SyOpbBEJ5$m)|Rxc|>$@
zoPJAw9y3fM@$%_f&d)j|lJD3s`&9B4MA=+%Z0a9!M!H~#GAATHM>SkdC;O=udLa>u
z=z_+6@^D`JQ6Ai9>WtFlEG$Oky3v60%GbVDI%(ETdJwU_B;2n~8fG}Vrh30aOBE61
z87YfAj*L+`RTYKPHaOTTnE!a0<pf4BW9?vIOmCC92}<`dcq4nXJi)}QXU!1VMnF#D
z(>gI?TzC2ag4FQppP20<@!zc`_|qVO5YnISg_Qmjf-loGLJXwZ^gGI1LXAfKFlt1k
z8Hgm|+D~90Ka!ay7MZ&o`=)qh8os4UzO+KVv_f*tfk&D6pm`!c6gg;@VQf600HX?a
zu;49`#N<2?Sp+HTgq)W;em?(ESS^^Y&4hLaQ;xmutSpnr+W5siC8EOC>2iN`Ij8E1
z$#vI<E9diDv$Q+b<A5_WwGU?st=nL~v$9nsvY51dS<p&I+N?@sHteBqo(MEaDR|gV
zj?PqdGV|cADqg9vM6jZ;$mpmDOf$IJ*9u%m7Wy`Pk1|LKG5-wssTO*r3$D}94C50)
zi*AUyQy1+$0#nnJYTkP&R`#;g2zHaY*)UM10Cg=1PxbTjaNC_WVcl54y;7HUPiS+P
z%Llk)LqR@2C9uHCiUj&b9%(xt$~72*NYxGY+|f?t0`$wQ_5CxgQ)(Mud9jFh-l3tK
z^*ssIRNN!~!WjfCQ7kIMx3ueJFe*J`7|o2#IdD(ssml?bHNu(p3dwYv>YzzHzGh<v
zbj&&HZqfD_j{&k<uOrtO*?5dC!=?#an>U_r@vP#K+EgrT+NbDLELhhy`W9;|VPN>U
z7)ChwYl#p>PJX)^7xpR2)UEFp26e^VlRJxQg+smfm~{~@qbYXkxTkcg?+p~K2jI{k
zicFbz+I+W#=Tjy=77so`vr|%>`sPk~tq;CXTsQHV_#)eK&!beIyuGrG4>E46=T#i^
z_yg*LX$OGI38M{{w_8SXcH99absgO$b$zSrldq;_-s_Xc;A!Ng4zHELi`FJY8%KKB
zf)kGTDHD7>A#}WhK(F@+&U$3cP{Q>IlHOZ5llX)yhk@fUt{?BmWpO(?vbZALzNgrx
zqze*WEp|<)51Md>QTv`2!3p<jRo(lx>&TO4U)jDK#{7WTqL48)#~F7fw{Pj213!v4
zoJvNN|GRZg#k|Y;f};wqzCy6)$lH{$8(ae9<>5J@gvnWjJfxH886#`nUWY*JtC(i}
zIw#UEb?zQtd97OgWOe%+YP7a^y&8<K?5mr&JwERx0vHa8)#QY!Q-b+LMcex7-uYu)
z-=lS`a;_s1uj_cTZ_1$?>WkN%I<8w{<07IJUVJRfiIz~X!G|ghN)ep;)Ls(8rEsJ^
zI0wO59baUV;&`}B4+#UNyHE}rQXh;t<(@bXNAF#mI{b}`_u->ydzYNr^%qG_{oW;s
zj&(>506dkRnUNe>mfp!O7$sVB6-N|Nh$T5u3^i3kBfxbGA?H+%`NL1*oGQ%Ci0LA>
zhQDR!fQeWgUn=M-!rvRc3k0PBL2)!6q=hJTvQd&XJ-w%#0xg7>mdNlZ+5plmf-H#_
z=DyAD&CdF<CRrD~+3erI>v~bEUOvvoUI2>Ih^oV5J}nHbljb8G-cOLhxzE0ZCT2WH
zrs*1tI>?q8kpcO~M;+n7Itoh`cuO-vrn5;D36Ej(<y7qaix@BAnT|o~LP+@Gzi|T%
z))qT$4CQDmf~ir@-h;{HNUd5SvC0FYpjmBo>#7KXtF36HF7qyeL+|=IBn2yOaOL8!
z%N8q0JFL_OS2A$m9Sz_YPIi`LBdyw2is3^)a`DT$33{Z>gTp)R5!z{wn8Vf=-jw&~
zeuV|eN#=2#^_9n+V|5o;CxoGmim~HuTIS@fMfz-80eiyouL<Dsk$lOcf(r4kPSX6w
zuzrTf{DufZm1%NheVm`=!0$0w&zEBkVsCs_UEWT&h6`GjLAMVX6tNRKW4wYKfqxCT
z*#8Q0Nlwh6(|km(N%vcS^wTF0+El;O*LPVW8gJqA37L52Xc?9EtqHLwx!lda2;7x8
zCcd|u6rw<6Dn<H-HlJdWZ4}xxs6;ljiFejxg9K3+XHA8GG?6qhQyl*m<+J@j5k`Kx
zVW<e%nrLS?WpxCVEcd-YtX<8}diEm?bj+o^aL12$o4_@tMzhuT!)`JH>^0wW_g2>`
zokE7Su%KU3VTgJIU+Yizi`^}3W~2n|(!2Z+WrO&kVv>2iRuI&rs+j2c)q2pHUZ<b{
z<~j}XijR?KwH{^$>;-kAyQd{`HGhkkor&$fz?^f@l9gdnDbtr4wbQ;<{2_qz!M&Pl
z)C(z$iCuW?d9MFm(P;<BH~?+ly$XvnCK>`(UzLQT6*@&h=2Eqm1>|{Vp+`Zc*sdV6
zpvX#J#KQ{qUU(u{J&n?T!g+>2{Jsfe$q!88vjjNu<vap>KEKid2!M3w;BH})al$Oe
z)fgS2R4x*4%SUOLuUd9`YL*2n3d_Ch<$1p2K_OaU>^Ss^qv><>$<{AuSY&|wpNmHs
zz1M7FQ-z_uktz@vf0acp(hAsuX-84sPJ5Bfbo_Kv!N=<QW(U>^a)gMe63$e^KbG0o
z_zuq!+3cPws<Dc=N!U#)N(%1kUAWIUP%cGsGkrDPWbKLJZ`p_bIctx9^A(2OhQCJG
z0VM8(<9xfG(l%AAXVfwH%8|4mZZ1jmJ;qbEsj{PKXO2yb-H7dEK*|q&9r}Etc#~X0
zwGf;j1byoJ?psaDj<btUs*cc=g+-b&B~Pvfr4#c|%ERZXS@05$Xi$>=C!r*?%bK=*
zw2OER?>&M2$Yl`w+&PkGae>yW4ppN;?E32>yR8?z<vfX!fsOXOdkll69|63t=7Cp8
z@9S0fu3+4^<p8YZabLVUS|M$skb(5v3vwZ?bdYYI-4D{shYbwri<UbG-~KR=UMfiQ
z=og=Rsm#W%;M*rY&&kZYd+UHsrq3ha2a(3u_eVHe*qack8pJdQv{nuGzD_cEpZxN#
zE*+%&qfF3!9r{0VN-nBn9IAht)eqHcc6X>+OomzY#y0%N-Db5kfFMBGFw+70m0dU7
z@$P>4fSx#5`3Ny4E82$BImFm~m*0dlSvjA+9t)eRk3ntae3z`K78BaHZWqcpcQc8B
zzxvpMSIDSKGdS<QCC3p=ZOnRioN<nKKOo*U*Q#|ExkN3QXg{+Lcc=>l^!_li$mTk;
zPUcHYjE^D*^P7}cv=c!ir&I9B_{=9BiT1U^O(Vib*y3SzT0pFghllb%&tunS`HVM~
z^4&OeU_S4$%#`o2W1#81M$=q_mzD2;L<AD=NNk?9eXGNNxyxWcVi8M_hy(f)QWLoE
zPvY2TvSbkYSt|pHm+I4`BXPN^6aw;q75)cNU#Fj^N#`cKYb0eLenlo^f%v2>9<FpX
zWkQX=G8H`{zJ)drU$91S4&?DOpLq1z*9vP9f2*C}<Jk??Vq29!4`N+cNA&lvjRo=D
z24=y$JDvSI3KpdDSuhCw&k@jr)4z(>`V(HluRr~}KAojRKl<OMPj^ZGu=!AmK=Sfj
zl2;5s@|j+j;tx6jRW#{Hzrb<OgE#=`C;3kaN^TIo#9Ag`Sq|*)yA7sDo&!f3-m%?U
z2jW0bJTM1hcNhl_9t#JOxg5x$e{H4Tui_K|Gsu1w03nIhpNJuW?N9s?qSi<ZB}{q3
zZ`-kY;)^p*d;h5*4|<z@G5ZkN7e~yDh!69MrHIdR2+o)+aOqMHl89aK-S3&iE|?&8
zn_7j~+l54CLyFiCI{e~xn;wIwh<>#0gV=Yj$`adNo48jLIbs*~(H8&Mh<*Q&5PL~3
zvHQnYKE510CfT>;YcAL-ZvJe3;uF_;lJcH2ImGKc+$z!5(TUX1O_3kF?R(CFHi*ED
zxek}rBE7GLuYAj(JmW@PsCojZ_Wl@TkDQR}ST&)Hhc~xG6v#w7hxX;HLPAflXV#<t
z-fdR#&yN88_lqyJ0BD!-#HbdK%0>~tTRccq&}~S`GWiAKE>`o<Kik|7`Y*hfGia0(
z7QA42h47#3cxLAp<T{H&{=H8;xwplWHKKohlot1UCO8-mb`(CYKa7w3dteHG%)!_o
z7<Uy<z7Ko{3<lpg?{yt~K8n0?Mn4)JG6;O%wG>ErU*&%X-@YyT66;p?r{A)gTnRnI
z(eEEu_JeQEzXqn?J3llDEqg!s;&a{X>|OL3_H8*Q($AWF{Y)Gu;M@PKByMq!rEnkB
z=?wcM#@cX1j!1;-7UnA9ZxG{}yy&*Vp&0Lv;*y;Mqd3x`c<f=YK!+1VVw|=2*1y|F
zrf^sB{J!z7J80bF$XU*UByRww!QuIe;knxIe2Nsx%+DppvK<*#m^p**ypZU7+`4+2
zE25c>hi+zmsyelrs%VC5Lu9zpH}BeTjSY-@H`>J;uJkt)x-qlEZ@1ti*LMmwPwyug
zm+u&uY%jWu#@mNNwoNkK1@wAD=oidylXiD#ozXq^lJymxt{b;~H%@p8V$=WTa-a?B
zJvQ15HF`fx@mX8r2Jbfi(H*o$2&g=Ac5d4xZ|civZX3gQ{IZaQymB~%(N=lPDt%>2
zf~C)!+eX`^+j84xd<@5zX*-CO{eAG);hPl@;a|J<Uk^I@q2*~%fj)JDXdu3~pbALi
zyU<``PS@kjGosKyQySO?kWF3nX@@qp1Q8t7*?2?Et4&={lbE=9){x#8qZvl!sqsT>
z*;|s?^|x(~vJQ|{&I`GWQX#oH6(&__WRhWko>!QxY&nJ+HN`)SB&n^bBHVPBPHbk4
zlxR$Wid1d!P<eViX_SKtXJ;Cvi4W7QophswH5vx+X;q3hDU!I))7zoP*-qW;Eu(7g
z+!Vo1GbL)hH4}L-<NX5Hpw5(2!Xd(~+HOeOGZFi2vYHHAvd#?L>cH*K5pHBPYy`xg
zgG0q`^=G<LDk4nM2XYtga|rC!7OatJu&WAyuNzEfep6Qd>3=SBouk*q^!BZrg<W#F
zn<7EyXd}Np_opj1-0prC44QANiv++g3{lE>mPKSbYrej6DqFgPS`*_D@xb<%Nj1W%
z>1^r#e7wUp1n7BXx75h}C<N)C=Hh1~YC^5)MkH=p?Iu?e;BdhhwN0V0I8wtk<TkhQ
zk@CN6L(d3#q7RvjmUseLBFU5)5849lm`j>80q8}FCWSuHq^Odg(hc<jF)Guy<>7_Q
zN>K2slrF;W+U#AFX$XwO1O!OE+69_oMJQ~O2HLEqOenlZy(gt7wxZsGB5!zg^MG1D
zHy6<GPxE9<2g4)$+h~MjJF`k6A<4>v=5sLHFMqDDY@tU0n~+r<VILt?9$FWMpA}A2
zDF<nd1CebCn`yZB#@zge`K$37dg$0nBh%1d><yA(=_FYWX8L!Y3_B2@iI2@5Me4Dv
zZD&Qi>m5m#(vFYK>W$BPMZa_w0DJ4_CLcH2_kEDqeP7|fziR)sohLT$)3)<N&82NS
z=O~kDRc+Diiq7AQCBcQv9e6w*tkw_2wqqu3#2*}AR@3(0iL9=+$B)N5n(T3NSuxK)
z#1d9LAIlb=SLDpge@hDh80TPHS`Cp<-;=Wsk9TNe%J_qmj<0F!`;a@IoV$x!c1!fF
z(|;46ob|%&({zV@WJ&y!@p&&=?Y7M%)BJM}K6ocl{IUj+8#Kr<wGMHwP9(Pr{jMJD
zfox8`79k#O)P|Ug;2modYwEEvP4&qUOa~B?`NvE5tdD1<n`tFx(4&@mzb9s4ah-(I
zs3iQccb)e$lZ%wd^mjeQayUCG*u;WztsVv>ID#R(q06GCiBG1BWzhDvpWz<vGQ+=o
zEIk~Y!pZ{?<e%jTvKQz)d5+ILPUB{I=Nov7hV#xDU_#**Ll5WPw&b|Cy_jkn^?a?<
zj&)mbvxJtkK%0@!xwi@4y~Ts8^fnlc?PG{Bk!pUP*_3a`JMA3c;G{pL<X;~4qr)rQ
z;B0FA^I2a9w-Qv$K*HN{4A<cpW+|(E9gg8D9K-84hIjNVLFM{~x7I=(BBiQt(8o#N
zVW#T%gP*8*dp+?C3;lt61U3(Md)Q-<k%g(6@YxK<qiHgonHgeWpz-WfZ4a;gm~#+&
zwkt*xnCfH8U6&ab6ZuS*GOMKQrf9r{tI0k0vYd7g&!;1It!M_5Qm5vF0u)Ors7jXU
ziUYk+*0fDO)OUnJ4cuFN&}cWgUZDZ6P|W<CA<l<xkW@BGQ29q|d<v_lX5*{{4|s`+
z^kykd%Jatbk0HzZ)F4!^s!z>ZYWL$SCr4|^JGSrFY;9Dj4Lo*Rw-qT|ZSLa<K#;hh
z0^7I@I3x+l1&Wr733lprOW08|SE<cVK;L?A9LH&e>1A5Z!VZHcxt>&$h&1&>0wRbl
zyWDXrfy-}lN_xWI2acD2YT1Ku-F|4-{kW?9c)_2aYnvJla(*sc-bkzZQ_LVK=&x0)
zCTF!ubVXtmHQX%$4oV-I??N!qMnbTiD?17!V5|I-HoN+~93Hn@zb9^t2cJ<5sRN{X
ztyDQ@s@SOSHRx>hrREU$*;Lr^m3_~Nv^jF^$0P-Gjt#iHHVf@yy$YC+8p&f{x2;Xe
zw1eK=klP;mDCrtZXgKmBiZLVoS>OQmh-Vs#(vT6lh(~LBjD>)a04Ew0epvI#oFj|d
zmKs137%w|A@g3W>kfKfXJMou%`GNC{h=C^rN`J|kS?<)*A0upgJg3i-EnYklX?fb&
z;;j7*(0xg-&By%Hp3sdgQ^cR-^2)`=X?Hb)-07x3B0Z~kr9VkeH~0Oe=bDo}KPcTA
zmFB)J=YD?9y>hWuBd9LpUNWWc(2RTE@|uCRlvo*V%A%Wc-GsL+ajH_G?@Tn-_ozl@
zy(fYtz9#lE8P~@Ity8tfbi~Ps7fWouMm?WfepCw>SFo{WUGn);$GvdsxWAk_?r)mo
zx6vwHVgnGh^Xn_;Xl~zjd-$-k#|T$7P1i%gZl2dEMyaEw`qc6DyxYRFdbZ-JN9aO#
zU#9yu-3KT2{6h;NnNuS-U5{NW3-5i};l?;M)9IUMDUO{ZF|cMcqPD~hI-pA%tlAX@
zV_nC(ihA@)a8C&?Db^e>A*cy~HC!hrd+L&Gj*hc>sV?~kNt%(5>Yc<n`qU@iO8?u;
zoR7?*Qxl(K3F1I3nUz@Er`AP)==L5pE(<5!<uO?2?C2JNNu<>CaOPs%Q(D0ZPFXu(
zBm|glifR(0a8jpg8Q1wL3n?SAJ92kAys1*(SV!iO5`Ek-p`Ol6y*e^?=|M31oU>Au
zICCe@6gD3?9dz_JrRy)vRa1y^cM}Vz^7PdBgVQR9@b6`n#dSS@DVZ{StGKQYw3NVI
zT~R)ccV0@;z)vHsQkkSCa9##GnFVzp52mCJt4}^Zx$hZqvP>%^eoKPF*b0BoH{}|L
zzeWRSRBa7AS};)*=G7%P*CjVG?=Ok7eo{=_0w$3)POmY}`JoZIvbV(_ykP&1S6Lpm
zQ}*R1CZpZGO<ZI?B``X=n*GHdg&*GJxu<1ExPV1>DPE%uD<_|DsU9E^_5fxHYw@;0
z*I?9?sBX!$)X|=sWPIq3sP6Se6qdRlVx<+WE^w+yG>VD4*`b7Rm4!<-MqdGuvOtSm
zwCBSQK$<sc2>wXto&!dOf#VN+#{<nP=cN<bC4Ppcko7C7%ED6fe7-VU01|z>DZc0i
zRR)n<rAyr8G8$Pd=n>GRM)(yjDoT#0FYD|=J$v9wkh^(5g>5w#J<W}@(74Hm!e8b`
zT-Kye6-@NJ5vxnqpIBCxJnuv{l6dR*ebD03Cr$}2I}z(}yN$oFrNJ>GmZ)Br9C2b@
z@}d)24VYsj>XVPvC)d;`pS3NoZ6;@iOAt4FVt)mQZjdRF6zMxXUN9`Y*S~EOK#1Qm
zt}-JAsK-c%2!Y;t%+0;{ERJtOma^Dc(qL94hOS=IM(Koxi(lT+r-`Oj@?O>I+AzPE
z#qCt=8p=ivOKDIfFQI`5fQYPV>pTTx#(qZf%M{fNYfOI8FG~QZr&|$L(xyT-*QU!v
z8Gl`y>0{(5f7WUpoS^jC^Hn8=ZE(LMD_s%(?j=>Lv=&%Ux38^T(H=jXHgvi@n1a%i
z|K_WOWKPp;*5(qwN0aR3h}$ChUauX>iqeO=z;UR33V#NND7=BaFGbRd^jDO{$Z5Y(
z<YNlQR<-Z+%e6243U2nZ;G|y*ew5#So-j!jyFEv8EmHc++DU~|EOP2EQ<MGm_fJnm
z^+)>q8U?)pjCXA|K1YtmK`NoMn!-ok6k5huKd&tCAz`<*mdVtdb7D3GF*2$OjJ}<Y
z=kM*rIzz^boooji(hP1p{$_y4-3@3vHce8ao!&gK3<Lg2Ios^B1=hGIc%S{g*^bO3
zE23o(b56Br<?3Sf4+W%T+~GZG!v}H-Y0edd1t*L?Pb}7aS{YpEA1ML7mGF>1xz)}H
zs`Y{_9qR$X{5XJp_EIO)g+FNV3h~=>KcGT9{K9|=VMkJ>VlO@9hJ1xm6hH#>@9lAh
zdpA#T+@t?hAstY*Z?V2;U%QmcnzK^pJzs)PzHtA^c(S^Vo%=Oku7w-hC@bR=-bL29
zK6M#JhmLHCc(TQ+@jVoHAleQZcu2G(do4qzdedXKYdr>)U--NeLh5aEW+@Z7%c%W#
z&85eS>?>!8?8(iE<eT*zWRu)kpL{ZXIL9TP%C?K6>yw<awj+^z3#%?UxdHH|B)6mw
zV=8Lxe0-kCPd>@Qn@i{e^u3i$EcVOC1oZzi{eeokb+!Z%)d_{n^9Ane`vd0mP$`p6
zAc)x6zd!Jm<GnJ%hx=5a;)WGoImA$gAZp}4g~+%U#=RY#_gOQ4MddtI%?#zhMy^v=
z*VLyblbPNb@A#@}2qt~DE;VVpbXx%FPxnjhj(heRsl@#f&$$AuKRKN|%^dPHZ<N#z
zXI+P%(*qs#QM3+1=hSs+akfsvBbiBTwZx+0T$mP2gIP75B#$<!5ba8=^r!n(?iLtF
z9f?Fm5v(l0GAh;Y`&1OjRMgxJJWv%b2XOX3a;#mq9!J(r0-DnSzKqG~N`lFXw#wpI
zVd98<HFLd#obQhD-_3V=CN(ogvq1;|uE|xu+~<jj>&X^MR@}BNvn2DFD?<uTFX+p|
zSDB6=fRuJWRw`($2RO%Z-}l0j&IcLo`XNrIZ?td~23lpZ|GxVxa~3}0C;ifd_pK2{
zs;zv+f}ArxD{_$!E+j_5Cx`e?Jl2-E&&4|Y&~&qf9s^Q3LliPhilJ94m5FhGa!;16
z+lT(qqM6E+5cgQHu*SONz5nA&y31vWXgz`Q`vdOpP4a9g=_MR>=?|_RhBoxHd|1s?
z%aw;`NEWQop!5*m9w}c&=9Ia0Q+id<JSaZ;<CCa@*JWYx3$_LRHABIm1xYr5vhW18
zm8)EG0NXEP;G}N3lP-*bNg4dv2n4CbF-m9m(U}3v=i0R7mn7zU-xD8VFY7m2-!;SD
z$5z^Vfd9lTyboe`MZcfa?^Nt(zI^AaGDEE9cqNKkN^iEJ3R_@=S~edScCF0`D-aHu
z5^M1a)!>0NdZm6HX%#*YnzA_DIzPdvKRhAI$bu`$fIwN@j(6eEy`#}zXor&75O6)|
z-H5c|&$ZkXMvzh$$5C^E$C8VQkIz0dk%C*z8uPl2(SjZE&V;O2M>m5TYbY@5Ww30o
z6qbGzGuMCs{(T0G4^)EE@6_#1Q3yO`hzsA_cu$tjP(tx#L{g)=kJNhXc-Jqa9NN}#
zZ#H%X<*Nw{GOBVm)6!iAU3du_Z~!fdald4Xo>Wjb2F{O@u0sxs!aINAh>GCB)v8~z
zCQ9GKB0-XzT(y3(_LxS`V=v!cQpCzEwnXrf(@=(26(3G7AU;i$iwj{0t*EaeTVGi!
z_UaMZqV8-v7u2oU_u22{WJv9-Jw#o;B@&(31=mR`1y|r-n;P80CjG*>Tw8nw)Jmu7
z<55%EC@zQ%voFEy-o+wTWTc~fiC2a8wbBqgg)>{i+?org?ja^QTJ+v$(w31(zzGxf
z-h=PUr6-_~xQ^wgi_;LuLTLjyxo5Vz^r<qKxRRx6Er|X4<qW!CnVo~Ky|%CK@tp)i
z_Xmd?x+h3*raN2@vd_SE^>>9ULsO#WW>t@W=+-q4Q7a%Ut{*P2sHgWKOu#d<ya~A0
zs)-WogVYqnhDLzH^%5E}2`h_k%5@XoH{WrJwfnDCX4dXsPfO|NtOHVdm2cJ2eH+UI
z(!X|ZZhuLHA$B(b$RU4OSl69zJLao(1~p>ov)#8P5iX0q?bvT62BC`MljyfHGBksf
z42$}9GCy}m#&^g7n<SbV6HAuKdaRj!U?RA(7()?%@Wd}adQ)*x@wj(6L7g|VUZ=Gx
zc9qHgW$m|(-yS2??>BzS&@Ca@df}Oxztk=oWk<~VHVFV_pGUS_s#_J!xSvC`(i``~
z6hRxQaK@s+QTrcgsT_V8+C4QpYM4k;%7{Y$^8~&(DeQViz6XJQuqJnE*$ILrh<&%-
zOK~8r7stZNXERLl;kJ9e<Z9PLiM{M+BH8fMgri+WXXaE??LK(HZ(iZebOc>^u2mFH
z`!_t%S-PI21@wGf_4b>;l`wj?^DaZGf3iqfq&iomf<huyJw92K2xpQdG*XfC+gEXk
zEMlW*<`<S^zmXp|0>F3ojhoUEk#ySlh@{7nD>jnem^YvFSVxK4Gy0Kq6Fd-f_^LdT
z)>#%L{QSS5gc845;o`1<9^I;aKzcM^lA%S&8e-9c{bn+>$l!I*4<v<ho5-Y{L6}R3
zWL9{tKR&`V@s!7Ow>(Tg>@dBM75_%>tnj=MrO^v8y=10@Cv4pbruq9daRv@@AGfe8
zf~$-GuJ@fhYUI*`=I(Rx(n1$6$^EPIw87wVSKoP(0g1CHbg{oK^H=K#V4P%b877VP
z@rrjHrYe;-*PM&@6h+}DwpgjN_jkKokBoO&=JP47@;pz`q0XaAUBUlX<ConqLt^4T
z;=#XV6g0tyh@`cixkp+H+Ob7XndzgC8*5V|_OErOj40!-pGT&wppT=lM1Nkk*;D?{
ze6LYlsK<5{jr?-kF~%Qkq~Ar7&vvlHNs<q@4~aTbqf2bakIsM)S1vCcpWCF!r9XA6
zZg97<&}zZ0HZ^+Y4J$L{(+`$GPJI(OU<GEbW!Lp!9(VH*5<uwG4Ap}33H_t>=QbTl
zFs1J{KP&&C08t5SsbzWiuLH8(oFTm{RT1**l0Mn#Y}tfXc+dTgmW<{x8%jmIP~thI
z=n5|!74RX~`NC$brlUjguCo;vL}erq_=y@fMP@dDZA_m)0Xi`uP+KQvgOG1uyOGP9
z@Zv8>;{9uA;-%BSP9$OWPkftHCPOYy(V_s%?=;0cl<e~2#?12KGbrNv?wU%2U?t)!
zTZh`#OqOz|gD9-(Q>W8|KWl=r+->?jab3J)n@Qg5$O=0u*>dFP?8&P`Yf~2;zy?ki
zRUX5_WDU4%(KqbfBzXzT?#mI&RlL!kWTe~fxX+al7092Ewn34N%8G07!*gw9vGEu=
zaeN@>bLY=;T3Q^{PD@Lp``ngPV1SlXR-DsoHRgUtTdgl~kW75M`EY@gNHA}N9UU)$
zhmc%cZcHTC>D5%*eaHoc*-STmj_@1%=L+L0HMT{KC2g;lW6bv)?NQ0%yK52Ld2fU|
za5xdXXaEu9kX_Bvaw1r>D-nFY$&BvPb{R|(!^%r{C8&eR_n_5%`+qU<4TM?+{_7r*
zr~e*FqB&Wn4b2QTqK2PY8_|HU@Eq}=TGm-iVYcgqGSeDT;}Eqt{h=DTJB_%d!|$PF
zCWGf?#o@tdi5!2y89S;GrJ<$2t;x33{GHzWRUHx#RTuv5pWvacLF9%C@UbZxdFN-V
zxmMzgGt>yCNz*DpY~OL+q<z|iKDGP#z(Al<O%`#;j$?Oxd|w`Z=qS9d5<0ymg;X`a
z+dj_=9f|xhk1>(*LyWqZ#jKHmov!4xi!!O)`td4*5#9&pwNYU%Kzv$bLp#puT9_iM
zJC_*^1`ElhAz65q+ShsTm=&vXXs5pA3fM+?qbvKK5_T9|joeJ^A*XeX3AT|bliGzC
z*;ztZ#0kExq|5!XgNZaTikqnmM*41scwQ791yGLXh4c>l{sA{n%nPxy{0wR<m%4aj
z3g-)vf7v4Jh$qY{1@4-Yj8#0bOl@&p<*#P@u>x`iGCA9HWdySGl|2PigF=UBK$t=D
zt_OI`>`FEr-WiY24fM;7&**S>2gW<Ec6a;6=RK$>q+`e4@y<Uf$I`K5pLpjf$TxQ^
zVo(yAO(<BaaKUk3RMnak%7bbiRNDj1YStjF4MHIL=lsrzzA*&l>xl<>;7d5of{pdl
z(aL4MoohG2$WB`@G~tRw4|d2`{PR&)d%4($<VD*$sZcZz#5{W>V_ILh9dZ$wSA-l9
zZSq!yA|32%4bDX`^C_GDh_ib|U<SE8r`p$U;io14EXY{k$DMJteNW_|Tw^GUbD4TG
zC_m_F^TAL?WrT8j=A-`~lz&X$S7Ixa_Y%=+*afvX{jpu3hyn|Bi#kk5J?j2>Kavdg
zTnZFE@JK|Pj_td}JFPzG?O2Pr+?085VG6=+Lat9+Gp_&}YuD3!fLS{MSICxJT8DGG
zU7HxLtYl$9`b$=LUZyB*AhQ3NJe`IoGUBE+t33~fogVlP0K>*yJa;A2>Rq8a%p%H>
z>D3GvdIpo~Sc(-IjDHE_Fr2X=;s^9@$`}*TyD{?$S~UF!^p0l`$e}l&4nXg}{3dFi
zHVjwOd{gp>_NKoB;`%IucRBR#*fA<T_bhd(f(!qOtz+x>2b?uyvG^Bl?4A)RErURj
zK<Mds*R{NN)`|sG&&PwOO_rupsuc^9?Ob)7p^Ad>=O~zMWUz{Gw~la^SihbvzB&%)
zb$x2+I|@@5qwD(9{ZhNr6r}Fv!>6#Bz6LZ^fN{<SO+cz){?QiZA8o9MRw_LuHS|q=
zDI=*r-EVZa`L(FPfVHT!2E5$W9fqZeN=xne?biGhx`thi7<fh9wilhY{$e(V+;HEB
zj2n)39xpF|LnSb9fi&S!51OH=o~h<F<WWzW^Er)&*btG%?QO0bOp8D0rbEovo?=I{
z$&wdKQdAZ%Iib~LsZ#kD1b{Z&Fg4XbhBVNRC0>5AO#O|njmDahkHsH6@a;9l&9!=+
zaQ(V`do9?S<baH&3$!+8a222z(DePtJOF|QdFYK<TT!)IKa@WRcps$HAN_XqR<(+V
z;XfYqTS(+LB!hPPM);|ipqnn;troDLZJ3UJDUqa)ym3iCc<#4vqkZ}uJga!7Kf%^*
zcLngMKt4Q=2~3q0FWoijr(C3H?eP}Q6!gKIIUB+0Y)tsqJu*VkTpC%N^vo=AsWjg;
zYVHFE>Urzldu#T02ngxzyZSU=7)DbOgn8o@M;Pd3D~?7|x%JpDQa7(z;phq%Ibc7+
zhkR+|$j74%#G@@A)ijSAL<6c6etZ=L2VrbLBrnBu4Cd7S)92yO&$WKiJ$4!FYctIo
z9*S(^`<l`3`=Sx9QRw5sp!tSv9;OikEeu-3`~lNVx()+6(~cb@TbMG<YBoAb!xLCP
zb-~LAgWf;y7cdxBr}TVatoF|og@d3rC{_bHhldzvj~w9#3>3~^6=_}$#Rm=)j?NTy
z(iJ(Y4;FZiiD0upVK93Ar}PcyzD~#ETbd1$*Wd8@%Pq3x?OWv*3iFrYpV+rgR=z@g
zMANTwb%ViOX{eMm#c9pBx5xF>CAUpMvGIgWa_Zey;ltKDkpoG{Euw4d;=!r%FsZ%e
z^knwxQx`DD@gfCp&&E3rwU?F5ckw<c`QoYL-qsB1=_=GZg(Ecs_M|PEGL|wftyia|
zW`1@-{n!^0n|4MsIG99vuu8S*gNeQI4jmWz$<)YO5?^?#zW5dO=E5)jFygN<EtxZJ
zw3*L@J7N}P36*-eY?vD@tB_k*U_16<&(wyj%5>2P@_2)S32M@m2^n6k2}@`WB&)+B
z<Q<xtyfn2g`D7h4dn3QvtuOKrUofms6EVyf7m{|$#Q%v0*W#k$9S`vD>8a5_pYnwl
zrWC&_{N-jeA2huB2YJW>#TH&^y+)T-_az3#9)6dH?=g2ks>39Yc&Dvx7dB*NQE3gV
zb1KfFpQ|!37qa5PQoGhuj4B!kmDZ$A+HW|+d3`MqWrcHp%$}{sWKW+G%%CbCRCMdh
zeuNy5Y@)6j%2L;@8cL3*zZVUsYh3Axtr`RoGzKtm>a*VK*`j@1<1her^GY4?*=!rg
z%NtaLPpptW3^1=0I@oR;0<W7Y>w-^}YkpW$od)w9N_jF-C=ThhbUMT3Q{)9Q{R`0~
z5!CN%HMFMhz~O{RD-vGsN)n68Ybr|IX4h!3Kz^z>?05we@E)DKD3j!_IrgBlvJug8
zDTvR;A$|K+H<xC)o8m|cqC)aPSTU8W{&YXx-^+6}aj&@T>wEDoD4lb#hGx9lP*i~G
zFRMz~tmp()4Lcfi4aV=A=y-2vd|{C)>UggtzHn2i-Ic``-sbKq;tOZEyPEjITHUq3
z*GA>>MXxD;5}a`9VY}1%_{#ss+qb|+QJw84kcEJRU6epX&_yE#6dNo`u%JOBPH>|^
zQ6t3~{Vb)5Z3+oQ1r1Grtjh>mTdmbf`&n=GS~aK@C4k&iM6e1f7q!J1;{~yD74m<c
z_neuX-JN9Nv;Fh?k=>nh=A8HbzUMtREAJyU@r97oz_!n&ti=(ZV)8tl_T@HpEe;JG
zacp!fP}NDFJ6(weBQb>NXm%=EsfGD-7gS_~XbEoM$`43$A;700+{iGgmT?EoDq`Rg
zTEI$DW21DB?zrZVXh*nj<RAPJ>lKOp1eQ=~YZ<m_W|hS*&W@NT-gRkbSg&`2v+qDX
zj2Cc#@cQ8VqwvGAw2afyKH9y|Jf#^&O+OPL_`8C$??HzbM*B8ns(l>3W}Fv0H#Dl*
z%ER4L`Q!AD5Pw{%e`NE=W&FV}mosiRXXKA#D6bZYU{C|zV@SX+R?$aT|1kqDLXR!5
z>IBx3%S-h6o+LCivoaoD0!(`o0zI{3g6WIXY;s9+#SKG+D>9@|lte!zF5ReJveSa?
zn<rL{>zrZtrg=06UyJW-n_3HkN+19wR_7RZ#&NbZ0tJM!kd^=o(s_=t(|byXfIZ%;
zwx#BYt(Ty~8G;3tz(=nIb<Dt;UNj@<&|2_3=PiRxYJW__2f^9Tbz$Uv`kS+|aW`3Y
z{y9Qfe9~olmLa(-VYY0Ql{I1PVuD#Q$Zc2z$Z0icsis(nAp}h=KN8=I&OxIFQ6=6X
zX1*x0)ipv<(jK>rrxTaqbYh(OTm&@AAcM1OSkJr=vb8BVpF6cV(p^I0q7TRxy2feL
zS9IiQ)TivmVbr*PS4w;C2FT_3nlUOiCDi<79<eJ|-$VR9R(;Rr_lx<RUoMGeL9k?s
zn0Z+=A(!XH1#9aTg+9fGYJ>q51dHh6#Q6k5EJ3Ng)0HO#DAvc@cXL$|hJ!LD(DYGn
zX{;O?p$6Eiy|LM^;9{`#WRas2`{Fx?!b<kRCX9L}P>$#fUVV~sggvNQj*xwfz!&=T
z3Vyj9iFfqsSafucK+T=rbT?+;ww{jsls_x;-t`Ah3(haV5(1Kes<dKMPpq*5CGHaQ
zF)=!}aAHYx)M*@7iv?a^-EGvYRT*`yt@0epivCf-<vECSCQN~~G6Ux=rDX>BV>#=k
z2wDOva0)nN)&AaHD3C2P;t;4>l?=hybe@{v9=>$uRkF3yiE*6$x$wBeL`{J7!@;Z!
z81m>9a9sy*P^ZHi<^^b5yc-j%G!{`A`nt`}_!HplC%_>cm8Ia$aem*Wejm78EqV&!
zP?v0xkihy=)C!YqtGIM;D+ld&F!K`&*sROx&Hj=J3XE!YX|PtB@zS9B9+w8Z?nFdL
zCxk$Q22F!Cq(Pn&Y100aKXf`C8XRqTXi&v;kxPSfy)+Ot78<zCg9eUG0<)~QL<q!|
z>0lh7Is1`x%xd-dw+in77O4uZhT7p>9pUwd`|3|Ua1TJx9EbZ5cn7%Yca)G3T0nCc
zD-26ag+&n?uvXj=UtvfJ$5$9aa!Sy$0U7_*tK?@-$aKGhmr^Vsg(wPHk2ov-u%g1@
zCA0^ZUCVBaWx@Gb;zw0RjPKPFS_EE0*ThC%cd!RyRej1toKo0qn$!9Udj#QQIrF4P
z<`YZ?m!e07zi?$pc*||d92>~3;YYFA)iuRb>QzE0Du3Ap%$TVFE6#cqWG%3Q<$Gao
zbQm^kIioYIte_Tai6M<G8{tmNvm%7rV2Bg6-qvAI6%B`U3H^hBD514afx$!6baENZ
z4+S_OFF>k<t+kKR;5j?Fhz+K!afWwv6~EWoFTj>*jzmD8t&1J{<W3$(j-W~5NH1qm
zA~*t0sOyXY3M{-j>O*tHK}$FS(#1~y@Vg$UG-4g&n!jq<trPMMT?ZMsL3*SN<nFsf
z_h^{o@+0g!Wc_h+I~<vXrc*ic_tHd;sLmXY%)IbWICA+m#Sz3&AiZjVF6wMNcX=nG
z;c$d?9FF|{0*52iAmTxOLcPh65s#1~n6@DU3MG^gsg7b{-#E<?$kn$-A{LEkpK`|F
zeSx(ILx~i*G6Uh4$v%h|JTr}}gnS|AOCG;i-L8U{4UFCot^j~A(m=RhDd(1pu}1Uv
znDju`Q}A6{0noVra_jC^`&N`Jutxd!I!M>IdQ28qb!HOi3kZk{`gaju(0_ci+IX~s
zl`-<zgU>Vg9rt6&vTI;vI<reun&+NSk^yNH+M-<GJ!LG%V~E-EYE{g3u8!HxZ7XIQ
zgwv7`6NFv$g%WOL*Wkw_Cm57y*oi1@8#{TRdOI#x0~Tc}!QPN%f?U20*(S0%z~-@i
z6b_x91ESer=<y2CQCLJKga@LMy%X#3`s4nHo(tQ;<%Fj{mZyhJAL&(euuC#*Dn_&R
zawMow>Ac>$(#uJe!mRXws#MoYSGqf?5@pD~Nmcs5>269=B}$xqsj4*1>8>oP62~8Q
zAuEB(GK7Q%UktjOo~HyLM9U7k<l%D|Dx+xN@o~CHvC!q&zxvbV<ckzt#<pU)%ha>6
z;w_7QkmEdr;YaL&yd1H^h(#B&ao9~~WkCHNoJ&0wHq{vy+by^{#Cl^So3p-MkI{G?
z9$afU`$5c-e0@Ib!x$xC@U3{Jk5R?on=)*eFRKkSxGXC^1kJ*@Ue@%3(@L``-hpo(
zP?4l^y9jzRtbRz~P@X6zSkj_y5j~mxC7wB0$N@ziJLG*5y!@#Z{J;>`d`|VSawXft
zjUmOX1X+cH*Xs>1O2phYws7s2JYE;B{aVFZvp)#lzKPGw%R6u&hD6>{eajD60H^t!
zD2hBaP|wK3Q3V`(j=bUz#AJpJAP|aVSeJApCVUMF3)kVS-jar7<*j}KW)WK>iqzMa
ze^Mb$HuF~-B&5-_;5}EZ7-ezU6;7C%{jTs=X2Gw(B#t=BYIHXIo8a6@Qs#`l_!Pq=
zQE`@@i_(ah6^ul)uoW#(3eY+JR7?O?8P+`=6cdCfJU|CEtxs;F5bM~kibxg1ab==!
zJp_j7zfaA1#{`g_xR8rfb%%jofQIj!UWrH~h}RhxA`+re30eK5>k<wj8K!8e(Gby6
zmex1p<N}bOlx`Ti4Wlb@*|Q@rj_-;@SKD3T=&h<BDb*Nxd6*hC0=vM~T1LT_CazYG
zyk+)}vwh~D=&q`{szwi+G^#X?)GG^M*o9CV>qw{dy~p{qPU{RmC=JsO4ozxUu~m^#
zm`cxTUkI?{0T-sSZ-{!R4k;3<_XO^Y!|_TA(WhS+CwKzqcTOK{WMZ9u0=b{eP(mt5
zy5zR!k$R_{si}8#I{ZkuaSM|Pr=bOMXk8O-5@R^6-XhC(can1DaCU`}{*y?^soR~Z
zi5g~R$snB-`T7BF)0Y)bJpJ5lMys_GxqvDa<X$nQh9XRfskMhAdl`u?F{0e7U{~Xp
zVP2HU^uv74rITO9E3(cSi0N%y!Hd(cuHe&^OAX3!=F)}^!9^A7q|;C2q|;?`(kb>s
zYz)pliB$(Kqa2qT<_qe`)2(ufL+e{cbL-hgJ&bq%J#v4qUIWQl{@J}~Ma;1P1GjB4
z@4q6eJCi8@rjlM$!UOOc_G(km{8scDBMx<j3fErW&UyccIR^G>UVa@wm5a%)<-<gi
zh3m@B=j)j}jc8AptlWowN0Y@Ent2T|SqsHXi^)=rIr>N4G=xGlyDC_4&YywRS~bTN
z(gpz{K~5nDescP=Hsy45s+@Kb$TU5;OAU&E(-|enBB$6vcEMzh6$qXEcM9;YhG_w=
zz-4+V>hD!h3h;04PZVG;CaP^M!x2hsuC$E<CcZm{5(|n-h79y{B$oM?vvr#VT5L4}
z0zBF*CS}S=hjjp&;#x=G&jIivsW_^1r(H*rKw-IEjtex;fv_yOb<B#aUIX2eVpZQ@
zqiBn@>U~el9j4z?VT6h@7)b9yKUjlJ555fJpkY8lSq4!%2MMx0Y~6I9A`CPR$w-As
z>k`tt*q%mx#v1P_{4_^?)khIp69X1d0HT<Mt<!wk(Mip11V?Ne31aVtat3dIjStPS
z9UM;&9hv?!#|Mja^T~xqCXP6SQ8ROv{)Q6GA+9UYYq66;J7Fitb=PTt@|?>8CQ2ji
z2F`DcI9&_P3GLxB@ei6NE@M3?czUoYEW*pLg<vgntq+Du2P>Br0YCfCvZE`v>1Yzp
zl_JOP5u32J_uf<n=%Yd;aG<TTN1!3=R^4{9w7m`+^sQ4?Baj=0Z+cqA6VE}yDO+;h
zRxPI_5YjQ^h(bPSDj3r7lZF=0xx!f8<BsK&ySVHU0!zcewIn^TUc=q@(O|ID%nhH%
zkrk49bAO_vI%!@de%-ero)ywvZuws|6=MAkl<-yB4O36K;77>%$z>`C&NE_g5Bjb=
z*+crW+Rq)2IeYKcF(<%(gzYoab~X;bLf|=9T1QZGAptW3)1BX2k^n6h{56{B&rpCq
z{Fn>qI4_`5T>yRl(nLV(<V9|FMSRTfaX^2uD-NhsBcKBq@|uBzojai_0R47_Y7baD
zM#Lq4u;I&WvS)1XT}#7QZiFAP(C($k#bt1dQ+Wt0$3QT4&WWLy<rJ6*3`r?`*Zgc$
zm#jv#A_Sv?S5X}Xwki~Tulci%+@MpxS@wqwJ*xiG&WN|7dq**0pD}8~M<rd>7B>z(
zDi&&88Vw;tM_Uk!yR^KF?}_zJ!3L-$9O*KHWtkfqItCX_K}f03o1Aq}h3`K@r6I5-
zFY6^P_vvFx7&{N&9W-NjI}$sBZjQza>&M383iho0(&+2P?oFdw*Wk(eNdLDZnVYCJ
zNRYu0Fbf{C9wjXy1!3U<anp+_&01u3)!3V<9T=cmUS5tz;&(M3bSn2q?+qgE_T|v&
zSRU9snFn0$-elB&)LE>MS|%85x(PRX^8C!X%qOp0sStm!p))Rw8^fzTFD@LVj)gxj
z^KIPixt^Db@&ebnIIJk6Y#<KLLMo}u#NA@N-1CD{Y=SCneVr=^N^x|0S^xJVneUZG
z*WfTX&cqQm(oN6<dFt?+vnA$2e2K(P;wl9TUqPVB`I=?~dsOS2c=Sc2za60o)gE7w
z?OKp+O1775kQ~rO=%6Rf*rt$8znMxo81u;trm?3>k&ep>syLC+h<EL?mDA|cN*N!K
zZ}rf7=0(Q0p~i~hT=ePyw#Fqj{GvQ3mtsBC9<lQ5SP$$ipR<#pSd7y!S71dP9=wkS
zvE1`)rsb-_+<ty9t3)fp6jWuu))Ug`(ZL4J?})|vb|x$%{GGtUu{os!@qGLwD4Im6
zy2h<4RZP85jn>@EeL;q}PLu_+h=%Tx!9JZLv{Egq6c35&Ii?EA3h2TL(F3}Wtr!yb
z2bRubF=H_lms1C=3G0=wuOxsN<1)N=26HHf{2_jJzJ#4G1^j{;5Nwsd89tntBCLd+
zIdD@vk-ZIdkjTc&#4pc=HRjAjj7Xb-pVe!#^pm9?vm`;rO16w%iy=Mo8In&k=Np?g
z6GNIo-gm@-nK_*rP&bN`U}HId_>`PN#uZ}*Y0;btx<4lwA|C1RrZB@<>SAO!bd2Tx
z4DXP$x3esIE|{-e7L8@0)K~Jy-$n8}P%>HNU)J#_jPgeLJpFWe?9QF9-=S?Y7%w$J
zD3}(EBBd2)?G#q1;5Vh5A{jxs#d0X;4n8+?raj0g5p!s<oD<Fp;VX@kIZq$BMkDp0
z<Jm}qySFpb8=QSNNeBgyuDSCcT8IRPbRKsggB>7oKIKT2%d~zgR|`4Ytq}N;aSrh6
zKprO*(~w^vh1%+oWcqhVkO0Z#w~hu7HR30u##wh$3LJqmv2IuDmjIh-uOo{(nfe_a
zssz&dW;I1c^G);CzJvh?HN`0)VXReB6)a?XPKhH9u*Mm9ZfEgTGtl>cDOOqS=76(H
znFBuOU-2ApPvn5_9RXVD*6ow9a0RW+;WM@-a1;ZMmJcb2O4%{g*?c4FfsPPQ+5;&2
zLh?u{`^w)c?NtFNybcPWeG<i?@vNxQUZvc?A;Ws|O{KlXY_7;2$x*3L43Ur3yowZa
zZ4`xi8`}iT6f^sLhJ1YoF`UG1*5386*ELpP519LcJ%AOimkMx0MSQ0ki|nlm{b-py
znuN9J);|Wa8A$3WK_#j2@eIQ-jKDb*_~ilxE^Gpm`K~qOmKjiqP#Mun@?yE~enN$;
z2}2n{DJ)6BdJ}*x)>fN5doC7M6WRiDnFOTWvffy!#Dt#4X|v_!T}$hN4JY9Rgdg@@
z>T}3y`wli?23|N*OZ@|K=@;T!Hi`Zk<rAwf<rA(_KA+R4`Dm>G7NQUs*@_}SYefNI
zbNmHAU^x8+$EmpX5#8U@y1y56e@k?KtN01U5-mL3{-9yj#OX@xVA*7Rla&whz;5Lp
z-0c;)Q-lFBKR|YETcg-j$hQi}u1XEaB!1%jgCn%^KzUUWSx~AczoaurucHplMQUgi
zIO9`xswQWcyRJoR1PCqO;Ayc+I%A8w!7^$M{GE7FZ8NN2N{d$G%NV2l4_AMB_pi%&
z5#1O<)qg&T@p7eM@(<LY4xMqg7{y{X4(iBocAU>0fgfrU*fzRy^PDf`P|mqu5f(sD
z#qd^U>$VupEgg9f>ozo|qh;I!DbX@ywl*(f7R$n%3Zz#MD(}7Zbi=#}nYUVm$w#?i
za&1V0<b6{^IGz8f;>Hm=7;d@4nl(VtD`%q+g-A;xWE=yD8O|DwW6VUI;tJH5D3ojq
zq&78f6Ky(1Y17S0n-EsXy7c{e%Z}{Fb+l-Xgi_KJT4`D1!4J4qfCg20YBVqdn?lTU
zf!~f>$71mq@T&rTeKIh<;<P8~M%Omm7zS*bItUjcbgkdsIr>)g>roVOi~zQkbXnHe
z_e?zih><__%O@?fW}m2W|FEla`zqDMv5_Q2l|4CbURvDeZ57;)Qn+6txJO^N$I`ce
zOcim<apy7$nTzv!hyjiuP#H&G#&1q!ye3Qn<1cU+f3s#h2m|7A4ABnb8}l{tTf3wp
z?=t>)oU}rbEFjP@rap|HzeSLT4$_P&<QY#JpnyUwfdUI8vT`Z#rsg^h=PHNh3D@-)
z(B=BN;QTYG8r(e?EeGe1_2GQ5K8QN$xbKlMk_bIIBTnf}hMTuy)}5JqJ=6qJNiud~
zx?b$Nxx{q937Wz)vmFXMnJbUGS`tl5;lZ1|;-wr_bd7yks(AgdIZ?c<KOe7Q*xNY)
z1`%<@_DaM@q=(_r4}D+&gBjo?iuhA<GLXyQ^(s?b3@Rc){5F<WGk%Db7aFlX)Hkp}
zmg~SO1fSX@BQYcM8?i#xU7Y-e^cAbc(aNUcFer0;3$l$JgLBrhLjAs@ap*|>zCKtS
zg|_V%<t=qjPr1AO4EOY8O3&^+JyS;;INI8X&Da7MCTxM$k}5E~RYsHxm?^`YJevXM
z&{acXAnKR#cpdao6uIRAYh-^Ra@?>?Xo9bJ4^d1?K1=+?U-)jy`7fXlju6_LT~myG
zYrP+-t0^Mt<;J7zsv0p9hg8S_AOfl2_Vf6uH%9U^Gtj4n-VgqjL#u*;?9dF<WKjm-
zDNPngB-7z`<@A7e!i@b*Lx_^~o9BVZS&%c0h(A6jQaKa$&r7f9R7Q4%@&({mFgv%a
z8R?(pEJBZyjNQ$3_+EVjzGR@88Zk7LG&Ha_ak~TC$Y-^Q`|hnzo>Sn1cSH#-!qz&$
zKI94wLBgzvh@@Wa6>j00xZ2wkfv}Vr@+D!g85q|wPM{)1ppWMH6X=RU#d8l1N3#D)
zBi2Qrw?~S4@(Gc#PsLB`+~+{gSD-WP((`0RPhgC_42&lxk@>(K%X~01k8}kWL1hp?
zSY2da-5k3a=#(&B-Gg*C1KaOX$f}?otHCp@P0h;eK*%_3N1#;4x(L6R_8^%j!AVwO
zx(Jco%hxGAM6V2uKv)3N$G}QhF=Q$+5Wf-b*MDSpPCh}wkbBWB>Y;)GagV?cDyyu)
zCv^%$gZwB*K$T$)SgJs*P;_k*MC*&cfvQ|J<xn-AKj!(6Hzw&C0L9=i!`gnDD?CUl
zSaQ}i2Tj;~brRLYI&qr<K$HWh3ZX;`UF|aiJ7qjY8wJ1((l)M~)+L0DhXOm0sm}!X
zf^!z}B_DfGzwJ21V^AHF=FPl`%jwz56Y+vFJ6a+DVzigL_G?NpGTJ|V#zjzTM+nR2
zvST?Pz6)c%TIpJW<f%mYAzo(Af+*j1g5N2FMa*e500ioC==<hNs$CpvVg2eEV8~T(
zUJR4)yHLq<E#<k2@?7P_$C9skl;}TNiN6X#b%~BOOk9iVI6E%kx#!LGN>|DNcDS~D
zO3pagu)cUDQPyP(0TtH_T!X_m9g|q8H2y1nU|zCG{MjjD5*Kn19#eD|$rQT7FXUdP
zkL|a<c*;ZfauUu^biei=LidySsDgA~SsVg@P|=*D8@*)Tf3lbCs7kV5_M&RGyk(`e
z?<tV|w~oli=?%-iM@^Q<EXl0TMVq6K=hsO$`V*s*1^mrynOtHm)DO;niVq*99mc&$
zn1QR~?^(;)#xm<+@t&#tcz$-f{4kr8Vk>_1K~vV1i`(SK`U5HaxC&!%+P`FeyeA0)
z3mZoiKR{Ejm>k<aSV!7kutZE&yqpY{_BlBJ)dLnDa=5r^jz3t%3alGBX9lPt9VPVJ
zR46jt%>BWaT0K|j)pAnBD<&g1v?(S#XM4ru9Z86Y{3?l}nEYT-Tue4R0WsMEiS=q{
z%J}uqWOIuBLF6HlfLjK|@WBuCeAI&!grArJJ@`BZD)rkcjrvu+_yi8iF;q~p>`xS}
z6M_+If1J}{Mbett3i3Sm2vg-4p)U$V^EwfkQ8YDid8d8<5n#`wZGrjX9{^J*G=V|R
zhAd}T7{LiMa1$kuCMhCxA-K1^W!5u~?{95+Dv>;i?FZ*DUF=7nD3pPH^kyFgx{qRZ
zZCy80^(aCMw;5f?Hc%2@*_K^1kf1^~P|gtsmQss|z;lWznv_7qV>Wq-cp{rK1OK}(
zg@}a>{&M-qNkYWtzk-N;+qc(;gfFrpLQ{qBO*7Ks8#p|C%QyPq`|REne2cki1$0a{
z4=+e!!+QI%cJYP1)cbekWFG(hyYyBT2p*qY#+dyU$v5*Tx$+_gJK)xRYK17Kwd%XG
zwD}XP9K%|H*w8*|@dE_oj%zfbAc~J*`i%?S*!~VORK;|aVwY7Irk2`6)zoz%SV*{V
zPG-hbtV@wa8P)ldViS(dl9Ua)Cy*SwST{>A&VF;opk_&PSg94FH#ihbf3j!9dm;Hm
z-cKNTT&*&6j=sC5r#K=vwhOGhRj~!87Bm;{3+OjW$C5j9()o-y%)n39sOrl4_eVAB
zszr%r*4g5qcQKlQwYwcAJ4Lj&6|?;LyiVmY;t-yAco2Rj!74`@K&UX65H4;~5Q4W{
zn-3a2BKYYoux8*C4}_|S5H{8MLwKsrv;;E$Nn+^jaY#unL92t=vKe@PR~+XTq%*d7
zZ5u6qs4@#QG()ad@+2o~G&}$v1{WDw!9`fP?ug@tVEtS?r;W*6*MM@|@C^~2Onx_i
zk`;^OWy9`Z0a{)b<k*O1!T!c&Nu1pWS0zfV+$&%P^7kmHt^E%v)WwxmF{`aav0FZ*
zjjL3%t)fay+6At8L(Ol5u*Mx`ScY{leF^nt=wQ7dT}G(acd6D`+dfCaFL@8v7jS1=
zXFaVtuWD(Ehlzn>XC9WIesZ5zP(=)yWS6qI3my5_QWokI#|pl6I3}}gWY_bz_zS>b
zNy1pYdWbHWfxRCoIcQ`{kORhIS`OC#+iBIA`C`Kpbi-f_3F11&cO>y(eeoCAxB>(m
zjvI^nN7y$@#e+Fq#fQr&*eBvaiT_Of8M`8kb;XGJFvqx%6^8$)2Bzx-8YcN2GYUv+
z1I8|_jU94lFgul8gTZ8J0oJpJcziEshUgU42+zqg@$InHpnYVaQY^?uv9oY0j#TRh
zjw^xaL6&4_!q5rTrSozcKX`b_ki*y=EL7`50f#0U-pNL!HJdErI%Ksb5oQp#Q1_0$
zt`-QvhDV?R4KTYL3t$&#tlzTLh`g}HlsDSwaZ!~(W+I#FSXrg<#0+?1g*>VvSA<)J
zSL`7r!q#9%AmQ49HwXn$g^bs+Dn(YNee@5=H+J+xMfzH^A5;s$fHbObpFeH@CgGe0
zq-QhI1O0egG5dBUaKIlKJ?kkw`amn_4V)ksMbv07#x7H~tybDJ16PZ{CDh{F=wpLP
zQ!O62+5*5L72s&x8?yaDw`%70LmT!w8Lm-AbV?_%YgxFam@~yUtde*(M-e)jZ9mAm
zLKIS-xL7wPHo4{-G&vL1T=sN{^*fR6d{6^UWZPFeO~~6nN_=}B-#%MvFot9%!VK)b
zj-fM=8+jwQgj!8l*Ji(s;X`t~mrw5d#KSn1Ll4Qrn6SYaew)a{`aL+qPt*y!6>6ZO
z64No5OH9<6Ij75w42YxO_>;$6!toSmGf5K5DOo9m8ieuSK3PQp-U<6<WWMW0BH#qY
z8~cehAr;M>H>5V{I7IKjC}>$uNQxDi36h8cs1>qq&^LmJU|Ov?9$=tlZs6{`Zas0c
z<6{z0va0_C3cd<DJBCMp#_f;fJHHe%eO|yA9YF#ANZXp2h{X2<gAMm7Vuos<D=@k{
zgQ4PV{K5YokShG;7z5CO_B<oh%-Jrt6o8yF7kV(rBROfmV>#cx=92TfduW=3oM4QQ
z^Wj=AIir0&<XkJYNzRWSRZZt9au$6P3}xWIk@Zb*{1So5z_;dP=&bPzL78tI$|TX_
zgS7HRlJpEV1f=4gUcuQ>5=Sf6jiir3?M9{wqcd5fdod1I9p9U>UO`S*V!c<TF>7@l
z-<!3X134bH+C|o#P4Y51@WA<4WD?6+ARoE2_@P>n)MesWjvco&g7(*8LX)y+Wj>Hh
z`y+++H!gQ+|3qAr9onBf-AntNV?4CK)fMH5k0j7uMA;gPFoO6q-l@4+Qv!U&O)rq`
zFmW$XN`nQTxVUI+@8||hywVnRHfF66df-F|92d+0y8e?&qss=qsi_7t>ZML}L(9k5
z1vz0fNfaoPkDRmc(ehG4*XXN`9>m5Jc&l~gAHn==hxyQnB>vx}_>V3p0|w{=<XR${
z1p9(h^>{oFiz;Q1!4skYHI^FU;PKzG$jtgNo-76WLzf1dZth+G>2b!aj~24|E^h^!
zy6<Yvto{KSSPHtUvwKLINk-->*Ht=e8KGDp$MTA05(cAjL?+Ne`C?v(U?9TddoRRs
z<j!^7Yw7HYa7lMfC!_wY;+DJdH{5auEbX_iQrVo8Xn%n;u&2d|Y{V*ogVyXC#o!R3
z5@V!%!GSy#DCJ~r)>8HdeO)b>ERlL~_EBgxmUGlnSIWLIT@8m6h=#vb?Uk~JRjW}k
zn6F7~YIueYU12b-2k!&pF7hzW-=4igj8e`&E_R#)l{Y8YaEH{|)4k?svXJ&HLm7+&
zBi8>zjp7S`NLD0;Vqvq3;t6pS9Yy+hsu#uOy*-Nbt*c1=oJ&I!jF@A;;^0^h{sH(0
zlad3e^1G0O+j_tC4m^=A!9~uNxh|1z&i`RtA(6=N4VZl6rmYxOBvip{>4aqPsrN}N
z%)4#mGlm`Y+bPrAM5ZBfSQkUOLR?|uFo_RwTeVn;TRA1RLW^6}j*DA4r6$|zHC5Xa
ziW>;nO>*bi*6qE7YO>exacNv8TbPoGgIh*BTZJhPz<e5PFBZ@OY<*^0@To0ch@pkr
z`U=!<ap7wU)IZcvt9b(r^#&^rHS8UsuAJfz^~PKcbzX4x{cS-F?*Llm&I@tvkp?zS
zT7j~Db++RtFt|wp)6r!d(g-0wo*iNQ>jAS+f%)RE{J|Wez%+A;HfceBOCJi6tjp)W
z;tG11OwNJ+V$nsH_f~lY{R5SjP`Z4a)TS;E{j&msy1elo$nv==^_gUUe@M2pufH9G
zbDtru^?N$F!Cglc+!YzYSH!#-am|58tk|gW`|555gy1L9hzjn0w%En*)Oy!eIf{IA
z0)G3C@+fkK)Fyu8blm7fBRazO0#d&x3o$|co<Mbf{OuH+jr@Q(%p#x4v`fbSq#z@Y
zgRdq(w`SiBl0FUdm_$zzn)=Vf^k-PH!#~ml!js-=Vkdal669T>|17It9;Vu!^d1R@
zA;~NHWC<Y{235t`oF$0mobj>{Y#@l+ccCI!e7?l~g;yS4Khi_5uVf08^vc(PVW{Ob
zYt`>456ZSBz(4Jh)L6fmfDs8pq?_Nwh=i~lIWN=VbOE0gXbE-02jEu-{EC)YSD?F=
zyZ!w~K-teq(hD;J{Da17CGE#$YQZKoR%}>Z-A&VPc5lk;qny;i?bp&hR;kk_O`^}N
zGH~1-4KJ@Cnqow`#0mtEQK9uD_miLlxt)dK0AGZ1A!OqDMT}eAd0)p60}%{pmsiRm
zdTw<X2sMz@<~m+0vBwX$Dw%^Ehz9GCB3_qqQv5YD=jYdvvoOUlFWD-csK<mMz6``9
zG(a}d8vP?zk`as$_X4{W(g<1lpRLLT7;L8eQql+OWIu@;Q^iN?s2lvPR4gR&V+QVg
zM+@aZy&4dtkwB(cviz}}KfUM*Wk6=tvmvk{bch~v#!dDL<r%8cs017voqb={{QDIQ
z#SqFL-UXpdJ3n)38}=&hY#DO&49>L#jB+d|+?P51d@iYgywv=_88{qA-isZ;#NTh1
z)bGfIQhJRCi(5X1j2jRbccev`O8csrbNL2^y!GXs$p%nGG812L4dAT}DF!g_dN1wv
zb@wRrSgB2gzC_1?G=OF~76I+UDbzh_;lz7mmq4q1G5%QZ-wDD#??iG+`klaJS#mti
z>}aYDfWjvPGe-vJ>hV5C{%Xp8&yh7}v+ZPa0htY1oj-Jx01{x`cyO1PVUZ{3yJILI
zHOH>kgnJ%Kh1s0c@uUR?FLDVNkgO(@H|`m?{@hEr<{S^<-kU)(lW=`>bm^uAIGBKB
zdm*XclUrR(LRKG-zX&TZ)Dn0gA{<^N)&`tyJ@+NYp7*`vIP*desvaP${&#?J6CB3*
z+s|U!&sm?>QQBcbYiUAjndMT+P3RkqiR5ta+`?Y9{fXgt0#KuX>9?o(GBV4L$fr8M
z(!kV-$`+A<;LP5bq943C3{Wpt#g{^SW>~dw0%R75!0a%rQ4vF|g{%ZaC+)(TN<WX*
z;c2jehl&yyRVKqa$DqOh0+<EzGSgM~p^)M7rNx^Z(gE;BsiR|80#HfLge+@}qA12u
z9J6z3|7})vUcrItL>{z`U*#lSVEl_=u#A-7<q~C%hcPxT-nAlJa~(~yHFLg)S#Sny
z1<%<LAQcxxFt^{Us-e(10#HV^-s^&L>ID1-eRLA}HfuSb!O;laUeM)B<WnDW25s@w
z3*-!wjKx7-UKh*#O75`JCvAiB>P^2MOhtOxt!%w;I|S{2ljB3PB!8pIm;aB-mn&X9
zuJ~%|Pw-In;uW=%MBg>XwWtYM8^`4jGoq-9;e<kuE3ENDwSmN~^}&1UNR45%QQ(-A
za17C96{##T2FB7ea?8zQ9h`IZi`b6Hn8+?w{WvWMA-)OS$T=%QDW-(UY?j0YG*H{G
zRH<Mz>?nv{;sYUZa_zhqjrYm$D3X^lC{MDqcWA!#Gu@9^hAI)b-%EuE^XzJ$XG5-t
zJTp|X)Dm!LEk!fHN}a=kM8eikNi1;Q-+EvlQn#%UbKF)rW0CrB9wd4895x*7wiPIC
z1?h+v2x>iuJv01;)^UE8tL7r*OrJZD&l{~RSutsVvq@G>NBj`q7_~~8*LR6Rgf<Eu
zn%T3KQwEk<D|heV?h_Gw(s`xqK+utpu-7p_Pz&o(DFrD=N_6W%*G3$J^fweMUoS2M
z3HACrfLF;PSGTHYkV4jNdQbsOyP>slAYOEXlh49#BV`rF;V^%*=UT&@u@+6LU8<n#
z7f<&f8Ea1Ai)bD-K>0c%8I_utWx$2$TO5Aa_cE%AB8XJr5Zg@>4<%x&S|GN6*U^%I
z29zg|xeBV5g@S6SK~{-r)ABsY{t>j#DvUu7xh7cKdVXAMIOq9D{#dU^2q%s&3LtV!
ze^RJbq*Hwq&2usE%J7UdC@9BZi#r8HWEDVqh9L{r(0!uLu-iOVPKF^|*AdHk>M1wk
z8>Gjj@rdu5YrM|4q?5<_9*~_>q}~0$Q7v;AGU_&<+ZO`hK{pZKX(JJfKqn{D1@RBy
zhTqbr=4ilVy$o}~$6+|;Vu}jP0BhEBMa$MGMjlUin@?;%IOiJ@sQvM8PR$tHl7yU9
zB;S}AJhgdRH+&EL8>d1}41TqW-#5zlQ&&yv$6q`zlJ$bW;XtpP;DiBA0dIfg?w0N~
zyyUA~_@WA6m`+@+h-ba5m)r?^WXODskbdZsZs2pfEVG2}!*c2L-u6l_?N?=aXkRI{
zN&Egf7)8Wrz19fY?|^J4$=5&A(Zei1h)^?YdPMO8o~n6UN32O-!ri{$1C(*8v0)ol
zZx<U!e_-^-Sd8CLyw2#-Y;4%i+fU@0P7h^3fc#aO0DsqO+~NcvpJO>ce8MHbrzWj<
z0s;PYm6rf3J9-H4qSPh<!aArV0hZ4N0XSqzkd736dp|ur_JSUP>A1CkvYD118;uPX
zsp3zCV{r<W*of!#lDaq*R3c#T<1Q5jFG!)n)}MH((A>d8h1U73O)B(Rpj41lcx4W#
z(8a5QN%FukIP?RWH5r-(9fW!@_)Q!S;5IMuZkYd5m$X6(proh?$0Mc&qH1NXQ>qGu
zmVl3q)h{oGgzP!0W}-7h8_w5!-*0})c^}rUqt4+}QonRN*iXBGSRxzI0QCwi)V~ty
z<h=Bnrtw(4#!hIAq@FWZw)!!b#{WtkW88eDm&R9SdT6{zYLmuIdM`m?i)V2530(=t
z6xgA$2Rk&XKzDmB9}1xu^d->63eN_2u1}QFB>wDC@(G3{&7Z)EfBg=db`lPFP_;qz
zRpsPIg0m&FhwdlQn$%MC7<1LJRSJt6GUEqF0S{IxDN>^VwLM<kv_wl#0BdrX9*1!V
z8gwSWYp|sW0b4_6EO+vwAny8_93zS-#hqwjzZ4W}rim@Q+gZC(0i!b@!lRINJHqdl
zl|z=;WuTpv(E$3iv_qe1rET~R>mQmFac=@a&#->+whBHW<-n*>K-9kEH}&u(e@gZr
z|0bpU=Ep(qU+F%e1KMNB>d3C>Ls1Bit;jg_3#6`F$i~nyta|*)!1_JeH3sWLib>Jv
zC{!iGaAI>T(C-nDb4d;MTZmQ)z=hDNA}moLFXbr-%lNA0Bcy_+>qW?61_%WO?9vQO
zd^?^W3M)>0GhUks7b5li`h$%9tcG8M_FpB^o~ATOKHH<u*!2qaB>H@&)x6k<f<C8Q
zl9oP!cIb29p+lrkR!r09*5{Q8NubZ@bt&}OaD_j8E;u0cxpvke(dS(yKLym^FzsuY
zJX5F-aRo)EYaoexa%vc4z(VfCtUK#s9-iySoFD^Ly4UnjRiqdbZ5b_Fp}R|$XuEfX
zUP>oAB_Rff^Rb+_|Ki%c{*o<$pv6Os`U<bz`{{SYk{m+I-`uRMLbmlvH11ojsRIRa
zyuQUpK8{!Z#UFp|FN&RcG~$ohi2oIu?deeCYy^wI0Vs14mOzWuYPu79C=Lo6Gck2-
z<}|;m2~csXf-+8ko<e|i54r^SvYIF*5a8FBdkJvueh&ebNNpPa#X5XrRu1zIN--4_
z6Qh~7T!?`giJBg9=<t{;xltWc6qoXw3plW{Po$;mbt`DuOl?cjFPZLY!~T4|)>pr7
zd&BJl(@7YIU=X-wdUtFm1-kKET;SFhy^0`telsxg%@jpgqff#>TaurKNJyM<&OT9u
zAKwDdIp|b@RucR_#_%2Xa}wphlJXBLr^kPkEtn{ky!yxM1Ug<~Jt$Z>!%P^8-)OX|
z3~z4h9?FW7PIBfjlXF{7>sck`)fjHZb6fY}CmA9hp_t?{+#G?E#7C}6`q{m-4)5ZQ
zQyJ+y14J1E=;=gcEE>8>sZP7WNL!l(H<^mSxwxQR0p0FGf&s`m;*MuF=qEXH#BiSe
zc-ODVBa$7I3MWGTah@;a(yp78(+MyIdG#ccSUQ9=t{^|F3_wV%5gX`aTpa<Dk$B+>
zB}sYlnsnkM7i>B*ar{=nZ+X`8VbnSDw_c{IRX;7ii@(}NC$GPjrW4CfX`0Cr``1tx
zYxB*JzDAYW5&=w-zhUjzpJy~*66{Zx;M^BTfcib1+p|B}DfXv+PnVitT(w~hTHXW)
zPx-qxO3Q9aHcD#c){hptMrra?avSuGTjeh<_8O(Pc6p4_SyG!usX*_8P)4b1lJO}~
z#^(sHt)k&MMLqB4XOu!TO0#YPZ68kx0TSptZAx45*QNRn-a^Asb4Y83_2o*%Y$%#U
zl%uj^fioY7yKu+OtC-9X*`#h#?5t7P{?PJ~^%?dX*)@*AiNj--<nK`V%odf;R4L}i
zRl>;BpRNM96CMTNb&ufeR!WN6nHy|)NOaiA-*GiZF${#0I+ui@+#D=JLVYC_PMDu3
z+k=sC5)r~NY4durq2ccZ=O2MDINkTk=d*Cy5X{+gwH|T6Tpp-{ni!+#&yak=PDoQu
zBAbh3)vW+wSuhI&KYR5px00HLIAN<WcKYY{Gg>$X8_YK_H&tY0zK>-~=Ni#a1NQkR
zr;N2V;C3dJuC8AtD^%7In3yKntmUMnUK0x=VZEUDCm7Oi%R{l8Y3LQZEFu5mt3`wh
zTTEfTdPF&`bKYaT5-56((oO>c+g5ohdo%-!SH%5~Se9&SOu3?zSfP-}gowk^Z$uf)
zz*~z{L$zFBUWayusJ4FPX{%O=(7}uR+nT1@!r-l@FSB_I*+T4CBX${VoDu_dz>!QA
z9j&F~Y1Tr{cHXN}UFYR-bnLt*<$;zLp0|Tj`{w_i56#ohlrRNZ<!7dOM4&wG6L2r0
zZpuk`4}4#|cjl&8ZnyhD>Gd@~5<B5s<<SOPk!fw4kz~kMI#4Rd^$%vCmktOfks(#5
z3$%e#UW+pXUYvUPqMpzKX%Yg0Av+aAa*CR?&3j9)dV@b>&<p8S)1&AA!L@l)anPW)
zc?CMzwYSV`^FH|6WAo0F+5~;52E7<rj*T_22;c0N5F~C7B%j)atV-Ok51$1@l=|;(
zJ`QLG8<r7S@D?W|p}5jnGXT#E2PsRWCL=DWUtTVY1R$7*U8EujLI)kPo@Enwh89Sb
zSd<G<S<%@BhsQ{@x+euKIE#qW=YrbYm?X-O$Hp*F2sD%^p~l=Oj7(<~TRrO4BnB*z
z-lPHGII4%+)xep7XXR2l1{-*<7PqniD5uzZsv3lPKf$6W(QA;3*MMPSzJYUW_Y)zt
zE~DWW{NB6=i}5waG7sV$`!oA?>6dpTUr~gM0;d)+ix?~En5F22plCVV56Q(Sr*V6C
zATRj|9RUL5a*!KKG|fQMQ;HIh9|Zh^*|Hh<?b5hd7AvtlKH{(2_kN`W2%UbVJH={{
zCDlK5cMnYf#j#9pT;jH&sUu~}P)S}E>0N0=yX6yltE&g{wf|}pa_h(~+CF{zq(T5G
zDEKmsz&p)x1mGmu@YNUiBe3a9-B6|UCgMmTbth6h#9I6}>JI$NIK7rmR1ZQ_oUIls
zzj3#y9#<M2DajtlpS!5z)-ik=0il9N^^4X}`CnHN32NR;H!Cm;kmCQz6bRIdp71Mq
z{4$nu(tiFO5tq!~BH{`*h)G3CB-k*YjAl?JqrjrzB6JV_Q<}qS6lmtW^^Ahony8oL
z3APB99c;J!&NVb=2m%Sg)q+wlx>LUJ7@BMs-Pd*8#^4I_T7=Dv$$;>&&yutHJzZse
z+7Yro4RO{OMqF)FZs)N|9C|RfKCJ@T?-V_b>u)^%xs^np^*OyZ_dhj?$|S`<PGm8B
zRm~_041JCeUkyKKtKfZ>NE0}3&MJ9mmvfV++AuGzI-!9RRmJMW>Y;JfmP&IuQ{=i3
zLPSZb;;;k$oRjKqSAFwa*O5e;PmZ|+aQ6r(dW^DA|A6(#y>U1tlZSUgy~40xuy}IJ
z4i-)E+awkiqGIEjs$vl<7OPELlqkSbZasL5GOiU`*=62UXG+b$fLG$$szZrq&sS=Y
z>;+G5p%_^uzXXe}N-(ua;}h^}n~GN(RlKT@dR$>@>Q7KsBEWb;9*33e=~3Mse{o^R
zKg3>hgU-|Z2Hmx;TTCf)W_aB&w^Cl~s$M(7sXS6wR)a#=jr-14G71(swpd0Z^OP8Y
z5le*jJ(2&^RfPiFgw~~u1jbw{=$qY57;#sAom3~M!DJB{jBT}>gF+WrXTp4t<$@PZ
z6{PS2d=VheesKh|Kw*CmDj(dF%z49Q1REZfj-2HaxOW@}vc-N3!Q#v;PBbd!;(eTQ
ztI#Qn)p0j44|gXpoZ}wlh@7Z_FkS>Ob(Bjm;d901Nfr<A^BMYKZhYGeB@#uX-9`aR
zb8*)4h4_i!!BHt5x}-q{oB&weR!LApmLcnha4;F$7J;m#AeS4_{j9hOP1*g#mN=t%
z>aQjlAVG6_+yK!IS$kzojht>vw*l$F5%H`-63YM&_Pyb8ZAy=stdI}^Sb!R|rer4e
z&D`Ny(_`h1DRd;BQI;*AQ{uIz`Ig6;?ifSCp!1k15ur+*v^0yn4tm+)zlPdAof2W@
zeEnAqQseb)f^=Yk3sOuv5s)V7Nb;$3y&&E3sRyJhU64MjX6p_}R_uBx?q%*IecZlE
zJbAC^+vgC1$q-oNvnG*8U{B*hk_zfk$4@AM6ZVOk_Tg*jL*$<$h9x59dXXryM)M}}
z!SGeV`7&ZObMN|!phL@I*SW~+Pz$|{EvNXXu3$3P69}z_?mAa9cfr<9XcL=49~79B
zkO)gDB-Y!Sta#DUZW-B*5&2Q|#)M)yzn?EOE;FJXG_s;Xd`m$PpUi;Vi=75IVJg8w
zc8pQkBlx_V-{HNX=W^H*?1X@Eo$OUW&p50~Vh`GQ1hRhu@Td^7ZY-8-EzLj&$wO1;
zU|<USvOO~pdm(O`3sj4F=O~ipQ9NM?oPcJ*zeE7cz)Q0!kM!E~1RMgOp>sS9L4!%5
zw?_FlbiUKj0^N|ohRStAdl$ta63dWn&Cv}Bk6`@33Q>oH|I`qzxI;ly!G<bNP!K)s
zX$U5d5RGgDqUWU{YwaWmZz<GAC1de7Nq*HdZt{Gu;mWUA8L#l>s_THsctaLG{aV<F
zB!rn;xLM?@<}%V5)(OsM^YO{jingP2{(`b#@wS0a1)GJS&@2J(Nz8~*MD%>GFiuIs
zUmkFz;rg>g8luhiO*DZxLqW2;j#OwK)ZmN@A+yN>AzcTE5&KJ)ikm(m53Jw(45Z_1
ztxLKje=YjoN(fWp*+QYr^C$~8<(&C(Frxu^VA<pu4g3&4V>y@36CL^~DFxxmIT23@
z7Nk=~i~NQ$$*DX=HFXysDi*UMq=^iQhrqF%{GjaD%axDZWAV|l4z}~PkJvs0U-d`R
z+o4L~UntL7X32-_;=@$>Yu#m?;gj-_`xHOWA3BwMI6a};srB=TpwvG#rIO_91e&q>
z&jILUybb$UOp=!ieO?jnHafxpiB1p(oLFP@j;`U3b#xuZ-3eIUFG9m>t>pwZv)|(P
zJHe!Fs2RZ$X~A0aQ%B^0D|js)iQ$CEmR^NPzYPqEVS5Z@vS@qgcFjQKel$o%SVxXf
zg5?M!pcNu`Uo-=mmncP5gE@|=&`9U!;?h>Ar0uSe{?gX%BayZfe+n8d0S%Mr*HO_A
zgr^pOenmt>Y2F{vncktpQ}N8)r#F!pYiiJjqkoI9b%+6+!hGJg{vp~s)!kx>>dD$D
zi-3K#vG;ur(KesyXyat1jg=QE`Y0RSL(%8czs2dJwXqu1_S44Cw+ej%*MdIV66ga>
z*75S4hY&C8{UdUrlMZ#<*%mk^6;nIIl=v*nI$^qA8*P1cgIX>S;%&q?Yagzvz=ES$
z`ZY>iw$&5ozw+W@R&5wVF2dbQ49L{Uv3%eLh0c3aPX`1Jitt0h1+T^3H#m>{4HX*+
z(Q3)gFuQ|DI@fn2LKv8@Dlw~3gGwUn&b9HGvB0LeNC}%`vr#&drL}5}fipsIPO+J%
zjvj%x-T|!cB4)?{i#vD1SL%&wfWGJ%i62x)El&~OIB6ttCOAo2hi(|y2|WORp7q+<
zWWRc1bD@m)b!+$4T8izJ5CIk`LPKIdKSm)7!znt>K9JU~6L395S?<;Y(U9ZNc{g|b
zq6d<z_#TWL2a>m(PtkP-k|Euqw2Y?(v^bMk&aveA*Q>fJg5VN9^2H!f<yJ*i;#gA0
zea>{E8F=q0M<1Lb((~%!3Tu!mA+NgWLkSWzeQ6~rO4|fJC+Kg`=f-HsK9QS9X-T=L
z+BtD4iJ74O5`mjy=v-wiWVuh1n{$u|GoO}PGH8QMu^#KBH~`D!?oE0W@iO+SLuVsy
z<gEPYwMN4F){#`AHup1VrF}!x$Js&UtX<Z>F&Wz^06C$ilVyKaIhL0-@FVhD-=(lZ
zJgBQ)La&nc$#i%Y95LXOsd@{fb-suK5q~fhgwW9}e&q3ol1MSK9n=645+VeVnIVTU
zj!Nr+AIzy|d4IfPtLM=kxvpSK0GzH2tXW8iVt1<4io+Zy><5_CE=R!4+>>N8G#QDI
zDs-Z}D{G-;1SnpUVZNFBX_b;;WvcsWv=N=a@moD_P%><=dBk>9HWXCB+a3LcBfavF
zqWjPp{-S&A`y#rS20fL1LDB$IHnZ7Oe#J*^8x+|^@F`^_S)_-koe&kly1fU1t<`cR
zr0gL##7&Yf+$_iV15S7{G#367OhNDzKhCT>ZU?0MFvrR|*WlcKV%8CraUnkw*yebY
z?C%<!^99Ak9RH2n_BLlVf7S2H3pPB;Z^Q*ek!$NStcf@^*1fiVD$CI;T6Avc>V;E(
zMGSS;Alv#UHmhoX!Ij+tV{vb1Ut=$j`MSqQGCF?<O#uRzLT1C~`8)+p4UiO_x)srx
z)qJueQgA`DH%Ns9TJ);MDXS!`?0(`aw|ic33b~O~su2Tg#$cyW$OU9i#r7z1#=C$x
zOqnSriL5eR9W{l|YUGF#C+C94;Ur=n{d1R?JSCL?^57L9KkU&|lAyfUK3xSLy?x5f
zz!2Z3NBKU@@q0Q}EdjoPI3$b7v{8<TOzThas1DfMBz+Os`A90TX5by)r)zzl);B})
z_GV81l~1=>)6PS;0Be6>+KEQ}Qq<g+IW1uSRCRrlPjhCVi|^Bxhf~2Mp7znw*4VGv
z^mN=?=E1#wsXRr8|Ax5-V}9q;Nc~>qC!0m;ysrw07V|ZV(_k%dkdL|@x-MM1BOfv-
zl2sMO0)X5JNRfba;q9*mDPiQ>3sc|DMy@MReKP)LV@<BSC77M9fZp^_D&}V3C|^{t
zMR2=>A_=JU2Df)&-jM)X*LZ+A6jWa1ivS7+7pUZW-aZUeFri2KPxM8lBK4{Dcm>So
z%6;xIH_3i-3=8`Sm7EMW2m1+MM-Wxklspi<cC;7D4sHSb^D1=2#wu`@Js>q5re8qW
zsX3i?ys#0+UyMcM;zUU_wP?CPFFfdiT{-kkFkyMHbz!U;-`An$4S989G}N*bzq4vE
zHIAn6^I81Nu6aU!Vr@gq|5_U^2Vy*VyxsA;%)$R3@cZfIsrY5pjF5Ghg<Pu1Rhoy5
zV0O(LP77GXxx@+*hcO8_B=JXPnN#40a_E$tP}k8OL=X;t{-PK0Id+)*$*#G;>0QAu
zzi@hs{3_0J&=K!n;mfbe1b&6Q=s1n_D9&zq-a7p<U{(mslJI#$$s4+u3`YlfGbj{Q
zlqr6}P=(>edpne>=*So{00Bh}2orEbAZN{fUe(Cs3lLX5Py%5XLP*e_@B-JyR5Awu
z`Q|xD_!hRpAGjK+CJP7x<Xwkp_)%z_DBJMSeg(I?I3Ycx)_~NOFS8<-0@2=a7AE1l
z$roRsNqlvug7QDVN{8~D&wYQCi9Cos0n;!Y^=f38qd2~TyhLXH$V+$}NB*L5K)!1n
zd8p$58UHWS;{WV_6#o<c6Zl_}4*!_qKj=CcVhVYOtRi|-{AZ$!%;%#D(OqlsOAeAE
za@;2y?WQ76*1|6to9IA1&l(KN&Vn#ipg@~PQ79RQ>*)z_Or=<@`!5E>T(#_2%_M#u
zF1!b}9v-|i_0h_Q3hx(V+lTj#!=!Hx?1oq>*Z~rqE8(J9`8$o^DN9^lq)>S!u4p?P
zDi0&nJggx_AJpLrsrh)ozz$O6;YujIAH2a(&hh{5%zcTgrd^l@`YwkD{m$ToX4T@0
zATIyaA+3PBV6H9)R#*(<$_`~HNq!`al(N69ZFwKL$WMN_Khp>fQl}7#dZe(V=iwn`
zJ$Mm-zbFa#RQR6*x`>C04^>|eeCP*15_2;yJ_IDNI`MGiimTY(ws5pnCKwWLzG6ws
zAFSmU0>2-m#m_uU{5C(+hWz2kN`J=OjJvK6M^}y@;JoiiS)?R+QYUAo&M#<v5v%Ee
z!@BZu4R07)!{h>#s?ybR9=FLuHxq0qtH38R330229fnk=y5JopDsiShbutPDwOFPW
ztVkKaKi>sESs&!u37`3qw%{M^I(a9-LkD5axkhDYfDglM6$fc7T=a+tA{)t9xhTyz
ze3WjC0HvWCr6hhFE<T&x^F0#qX}VhBqXRtRNTl%7!!BQZ9{*N}*I}^e(F@wfXPMFm
z7$|ZS{uvRZm|<m)Q{-#$A3fc}iAnZY=b909YAnbDYw37}qjq(Nf#a%wdpap(Cuzm-
zwK2dk44x(NYlXrOe#IMa11*K0m{rjq5uA|q#5*4C&2zJiuE1H7f9#P&ApkhRh#Cj2
z7*S57xV!{CME{g>k*>8YEwDCf{D2yU*TfI@)(M84G@(8+CLU~lTnZHX#Wl^>UK}nz
zH{b6eb^H80QlBYu`25_n)6>bJ@$*~bKf}+>dQYYR?Z?k~T1v&T{2%$5{eR-;kwh^a
zKc80eTS)nh=Xc9J<6p>f!uVGZ;YMYq&v6e_bPeSb0w&S3Nb1Kpd}a*?iB(A%)L-f~
zeo$i_Qs=RCCDTewIr!XoF_QxkhVg4~fTtQEirK}evgNl{5pD*yf2briNgw~rTye_!
zbim<GlS4;5)8t6Cyg%AWMF6N`_A4m!3p7rWvJsW6*OQ1pf7%f@ya4smV`C9K^mMPx
z$~kA<v|`%`HI^x3H3!I1FWv#gFqddv@6IJ&#fnAFeq}VIQxLM33?Q#l4LOR8%A(bh
z^v4fa2+yt)TmY^2)42*xymc3JdFRU34ZzW|fKRIcVf8iG3z&_WjE7(9BopCh5Ks^d
zECP2RBr=^P=905L4#)DW(I+U572CyNi@YFp&A^D6XbN-+SsnW7sqL2gt!d|hgQJiD
zO!ntJ6#u|^AAcd75r*jbmynf%_(@L`R9{RyCK*v>dc`VcTaRy1%mTC$u1KoG8*<<s
z<>9-mi;vXVc|BJ)ptRg+5n@43$_s)~<%6niuWqw<WzB^`J`uwh=7G`3VR+c{OF*vm
zBv&H6rd<wMhsaFk9IE^Y^!{0Ap?8=wLk0b*-ezFYo$(o_uwY@8fE$EDU=JydQ7m45
zRn`mq<6P|C|4nlIKCLFHKQvGb!KvxVrnsuYd(Rv?j!yJ}W?(8bO~)u`G?${9h}NkJ
zn)3mTJw+5gN#FhK*Ex=P86zT!4HIjE^>w5~tS@-X9F;kA9WL(#?8D!h`g0@JZBN9^
z+QSP?ah6oh-k<Tzqt!U`DB5jZEax-)#4l|4?Yk##&$#J~ZDm{gu+0ERFhqwc##^7^
zH^~8GFX=FJ6T#0=%X8L6PY7{0j%w3>ZB_OdnjOz)D0~Wyn8F9w`2imZ6q`TJ0#4u_
z5>7ZLDg?x<iQR}0dn_--`p0^ne^uJNElaQ)6YG|7VJwn?BeEi)><i6qSg;H8RT9h1
z5~SDTIFe|$(3og-2JZUXF;QVYCfXOYb8;N&7%O6)p)nt!G2fw&^#Z60AY2kl%p*{}
zaLZ#>`Qw8AredIv=|~xoK%fBiDcBN$|1qGdu?zvrsV4wCFp4-0UpqAyjM_n-fD=26
z80yzA&t7Kj`zu>j(aIZdwA<csvAzr3=8lYYdpg=}LA3AF@wT2!Xp3#O+ujMmMSaWN
z26Kapx>Ze#b}OG4?OPRZb9_RZ?Y7q+w*!aV_KpfRbt`P_7HaHU7;mjxLTgF(AUH>#
z4*)AT8D<SOq0%KP8EwSI=TTbVwJwGskmJRwK=T=}|JYtxe=mfEEUU$R*}?jGqBCMn
z4A2~0ru`2-wHNvWt5Z#nPz}popd}v9pcG&>o@>8ZOD7S=JBSj-!9rwW!zB}G_!F`m
zdC~9DBsvxr3P7K+RwRm8)T;x#i>^@yrJUx?Ik0=988>g`%Dnxwx4(JY{E~>^WoJPI
zQ_lyOHV*6o@bOqEE|9PlYpO#-ct({GHv^P(fbY<TKohq-Yur`)#W96j)>_s`7}MV=
z2~DtHsrS!O*AbJ9#-dEx5IEzUeYX=k2{OcKOhy;=Jgw^vHk;=Dxt+?McyJ0f1>Udh
zkuf538s>tDC?~>eI$M{BV66zejKWN7_UZdut<cE_TCI~e;oF>Ff7gl?R437yeCDAx
zE<2^u*q!T7?W>AB4ia;ZtM!q=X6|`^Ls)>NcEe*iw_PJvCeMflj(aYcu_ACLAi&CK
z2R4wPGoC~7A%N^Hih!+UqxwyO#QL9Vv?c;`|4|GwtX?3E{k2bg;dlOny1^(1N8iyQ
zIM){`&sIH1HX?x~8~P|*pe>RjpcsHFP=7k!dY&L-27=uwo=^gJS%w+7shbj6tSN!J
zm9-j}6+J>dRBpNxxMW@PckBo{!us(DfZpc$5C3=gfB4NoEmG~ke^E{<{DV7t;g@Yb
zX5f;pDe(XKC4v7BKWYR1q?749R1dpUk0L}hMbu$Gtg7FV<c_@i=?{Y5<hx-Y>dFW~
zEop>6^pMc^&x_SDx)Sk#W6e-CEmBg6m{~L3N)V@Fb{+<A3zk{S&xEr58vcM<sqR<`
z#rh22RMTH=dmNuN5kEpW?KU<h8-7<#Ezjc_cDwQa8wEW6Cg^`~&TUFR0jnFs=^M4$
zkVov^!~H<|fEzJHuJGL{GL<NNLlc-6U~gvN#{n<%1n+;nAk5n`9L&2yyJmqo3EsaP
zF1)A7-d`S-!fTC4Z^`1&xIgodV;w;2L{wIacqO9p^G;ql)TsQiqZbt{M9Q%GC{&Ij
zDrb37`ETPh>xnk;+1-U;CgSsZ%>`u_G(NA30y21n+!pXqb8E~ZVa>Tk|G)A1Q``8Q
z<b%)ZEFb<XOt2H##OJ0a!Ds5QL%~PqLl0d)u#g?H<|}VQnjQYY0*2`?d@Oibb}Fa7
z(n6NNsj&%4Bo=1j^Mcv$&j4mawd5t~k8IjWXS1x8S1VJ6SdhV#IToq|%Ls_Gt-mIh
z0TZX}fol`qt8a!e^qROZ>3=WugH|k$?RibyNAUS}BuQhE;J;dp&(Ur?Mv^25h%V72
zu6AcYc@vIkI2df`gz7_9bN9x#=o;At7~cwDH3k1~LQua~?NC-#9*`<y5TsTVpbGxi
z!ZW;8{Sy{fkHg5I5JiOs?CiN{3Nh?>jO{knz{HFJ9u;ujn}T;Wqb|;zC^qmELnUpA
z@ym%Pc&zA<)h!$G{~dh)*oboc!rcq-7a%l78`eYDfs;*?5)cX<0X4f8lo_(x{uMq{
zz(?=G_?Md^^Q`~DLWSg42B=q#lUK-yYQ7@Z?eUdDpI3Mno^|<9aDwOYB>9VJ=eFtZ
zBy|M&5LY&oeEu8s%$Lu5e+XChu=Yp^{GE1AYWq+<HVZm{>B@qIr2QkYI6+b`h=@Uc
z*Hhlh<{#0`D}UJl<LAHz&@$|%&kySPC^np(TuvnNq+;0@PDS0IZ+*MdmrgbR@?CB-
z{^gx;GN0<ezkFAk_P2k}@+Jglx_?BWd6;`N>Q}C#lI`FiZijU*R_PkC8#27$*`a?U
zq(l91YW?ec>LY-!%CP_Xozs<c=xtDBhh&e_|4k%cHRao(PrUy98ERPXzT?}zJv!5=
z<}C++p$vPCTgFDb<v#F@?BFz{dvrnZ5N4Z)kYy8m2syo@+X~+=5E_86g^IA=_jCN-
zzZ=;MPyb=({esl@-~4fE|0~o2p$z-2fZL94?u~T#%=B-sjv&~r*jnH;<iMAtZ=z=G
zBrI=?%uaeE4gGU)7;ZujzV+>g+-m;i1F*<RHRE6YP@3`qN3`{R5`LTAiazv!{Dm{@
zL0DE7N68D1Djz?j{qixVwNnoH?uwa<c>9U=_o`I;tE?{K02pEpivD^<l8=Y~@%ng)
zv6`N4!}cE-4C5S&cb_;OnRXNUM~6wi9diQ8xsS&ecw2hi>H*@F>1pB1k(q46(<<*8
zca=zqT18lrkmM>`p0%z4X!Z?ol^*EY(0_Xx77wdxUj9&wLlk3IY3!U&or=0u-}?3n
zx0-)>Q=0M>meWle@24q$==+t&@$I+I0i->A<MqEdr26*n_B+jb@l*D?Pl7}7mizF-
zOsEVPT~OMv*Y{(gYl`DrdB6cj-fz!dU+MS$rw0?>7t_c7ee88VpZ8sReO$7)OOMZ+
zi20K7L3?$O+6?=m1lK1VOr~d&Ju_4MUy^-K(uXVKo=yo!a{E%>-sM*FFQ4W*Jpb}t
zY09U$jxPEAB>V;^doXW(Wsh$f<TV+o<&R-YgjNR1n}<H?{d=+GuFZ1T>+#rf<6rK|
zx4r!%N1(jzyXCHs+cQ6QD(WVE>)U7G>~mGYzkEQN@-wiVyxsTHl=u3c<=f--%s-x8
zgLSgWYG4=JZN{_r`qT&e5YK*qG;f?e3H<e;{{e)|p4y4>;8XuiT*REdzCCT1Q_agS
zWgqvsWo*b>?$h55yPbw~ugUe3^uvr>GW9}o{bc<=q<G%m<yP};&z|NQKL7GvY09U$
zhA#R2B>V=qXWz8`W0b9ll|)}v{@6+Fm)~2^PC4~|ptt;R<2B*2#AL@m?8Ib})bZw@
zt#>bSg1V%fOj&-r@!Ivi@tPB^^<j3T1gR24Xyft!Vie#uHUw{}^H@;~?ImB1{463$
zhG}<T)d2_i;g$`^le}d$pMU^uMpA&5%s=Hn-u=)KW8ZQTMHp@0u-U2DhP<ox25fPv
z`L<{GN>e^yYnu1dly~}`<?qJrwZA=l3Cmnl>|r6SuqP~9=NZP{=2KtU!`I!^icr*-
zUUB+=;U+%Xqkp{qV%&kFYpM_5_U(zTQTCQAd-$1K#umKgqALu9;{9E@Gr2!UbUcLd
zj?Ztv;@T8K-tDGW(#DH}{oY>`_ZkE(EHL`Vi(g<dY;yl@y!chJHv#@>@VVc=y*h$m
zAD8ScQt6pwPp{mQOixcd<U{|#dk>|)y~3^L%TIf>JIwGeUy-JKwD0&MPCJJw_5rt|
zmQrtj${&mgd+m8@`Az-XFTd{icFN%|2A$w7KU{xd9r2l(rGUL=?!Uen<9_e>J`BcN
z?=EzFNs_<lcWit9A~=T&JksVEL=Fns&#71^;ViHF2}xCm+0H^{18{)o_(D#3o{J}^
z;m2wCq5X;{8*J1s0sQbS<~cf%3|55%hxM4Fm$qBpfO}bm|I4kP^n;5j^|}}@e_Z*r
zr@iZlrEj?_7<SHkPDLMih_|=Gt>)XF-IS($#YU%_Hr`KD{?PX<pXRzznnj=d@pvqm
zO*TvRI=tmEqh9|q$fv&YFW0-N7on&xzH$1S2<bKD)km88SAKRV_3ci$#VEBs<zH@d
z%UB~#e+LpOvwj+ToHN>oki*>Rg|z<VO{{!PVZ`O`^ntuj^}sy6Z$85GdEfOf^OL=K
zdVEIuw^v6H>{pY$eJVYZ{L6s^=boPaZ>IQnKYwITbRD=aKke;l$|t%Gyp8wUEKkDk
z{$vmCZBO}^&v5b#B~SfJE$?$o`{iBxwo?xOvL>PYu>H$lKWX2;6oc{Bw0qm|FN=Hs
zNBzrMECTp1_!q%piqp2ozZ~p!X#S-areRb0=lToRNZ3!f6@B>a*0(3V-EMpKWogPM
zV)1u7@Yt87DIfhk%X`KBpTB?Ehc&$^W~~Zuwc%gZ_|#Ya<p`Wor)kL#ul~67jMIOx
zJFwF4q^W=4km}nH`R2cre;M>IFMw(KyFZ~a@k!%fo;cfwknhEPF5ho2-+hDM`@7xg
zi?se_u+RIhfB8YOH&2hxW<-$5g5l=7uS)jzsr*j1zbXFO&tJGiwr@xr4X3uR@(Z0@
z2ky&Hdrq42bn6f1xDGzK{UrQGCVOyiedS+nJE|T3fceXpdbVHwSZ+Jz@GsZ(@|GXA
zf4N|D`~Ibl{-xJlZTOcfd;CZJ%P)rfSNx0MaHP|=$G`kBbZGviX|-cRy!@ruiaf^U
zw``45u|4}{cY58a=G&gV%WcNLywe+L-cQs1_U~EV<hs!|#xM6``E9Zpu|x2hZTOe#
zeCjLz^4CocszOm;dc^7frkluYkN)xc_qzkJ_UhZCee;#dzpQb~*hCumM!Jbfr@u7*
zr3}krQwTXd?sJJsd;TTI@BO>o>94f@<xMPOP43_IFK;E!j-~f6GyU76hGP9ovbRsA
zXR`fG@z?G9mz=m~Rt)gvm;I1i&A)tr>!AJ1A4*d`AU@xg1aA_4o85|zym;y>|1v1Y
zYyZ9QsPggM+b<szY^NOlrEADre%St{<=yuE3%4a(O=cVZ<v`c}sDJ5x@_)s@2o8T6
zl$swq3*aA0e(bVkj*;{7kGh@YU%qfF`pAP@-+pL$yY1P(OH=;PYiZt3Q$FW=mR}b4
zfBxf_GqK_}*(}*l<E=LQOIM%z%D-H&!9i6hnuh*2xQWd6=pXklBi(^md-d(@ZZ&WJ
z%D-Ia<{H_Ax7_7-yuZx}m03THfBE7xA42wi-=zuPZ_mFx;rITq4-(!F)3}o{KI?UE
z@Oj_$FTYIo=IQb2=igo(L9ic4_V%gtOt!xX&OJT-pGfiV9((Qb%O34Ia9@7fE7FvY
zb{%*d@3&c=gkQVsTa^D;ldz=6+n*}m*V*eIQp-O}SfZL#4*&9)yVjKQec1jbwl0l-
z!THA4Wpmr`FZXBtNBzr_nEwAS<i|3I!^KY9p7G0;j)&%7cD?K<q?i7#Ji120HWxb;
z$qfASt#6Nh#i{0Beny(|(XXa?KTY|7?^(Xfb)#*JU*5;!))fCz4zJmUe|gNOzVa_E
z?oh35ddBIW;|{E(b{q7M*WY|d_3b&n`AX$qy1Kc>Hu)XzZ)QSe%10XiVxHnd$VG9V
z%lF&!FJ*r3zxR$KK554<IX>^Z{w0{~&C}zv7!hQ$V7U3Qvt2i?xtGenWc!=qul@Xm
zOJut&aWtITzRHhncdPm9=S0`R`<HJ|Q$Epk@X7Bd;ny$OgL~^M|8bqW_AFWcRQbK`
z+B5(1+Y*+XCAAO#GR9pS%l8l4znr`#jeo&@Tx(Zd8~$bF!F}zl-#_g6{R^>N;J@Kt
zh{I0I<tNYY-*RBzA&p;t*W@Uqm;Mynr18t(MNUOB1OI&M+uPl0{^jqcDc}Br(@h)i
zrzv0YJ<EURy3scL%S|Vxnh|>k-fF|YjPa?j{7Y<wgKFFKjN6YV+(f3-ZiD{u`ZL{u
zSbO#D0lxV}<zF6i%h-f3KjQuMOZ1kgpT@ro9^gaB%inZq!uQ+rFJGMK^ZxX;3GatF
zcpzhZ#xGC!yzly#r`~eg(d0{u&z1h|)e!`HYqGabrDwAJP4U<5`<E{cslGkOb>P1I
zv^%*D+P{2Gn(|Kna0r+DeiD9*-HJZ)sr*M*cdc5o{HgLY6PBQP`%~qEzH?ylc_04e
zvo^~qd&(bAd&X(Q+rC@w3b~#0H>aWxK5l(`g<H+HJ-aDQ`HE+qZrXT1P5DFLvwT|I
zzWV2P#vkvamh13V8}@OKPkpejD#O0M*+Eq(>Wgoj{-&E4Ymff%`d7M%uJ-ENom?aB
z?H>R_er|Ki*o3#-<#)Wl0|}K`KaG9N>F-0xVXIu4@cs7e<C|fh_b-oo5xyU$acaXp
znm+Hl_Hll)cS(=WNdNZg2!j1;f~ygZB-1m=ejG^gH|^WUH{+f~n)m0IJ<)X_$^Gm2
zJWcsT*KxG*ew*b<_}!oEF}&?5`}Uc;mWmjqmiO7^3X5-f*WK-uL%!D}lpk*VP5BC8
ziXg+fv&M<BefDD<ugb6!BJps8#XH-Jzo%X2vmYbar1oP3oB9;Vb_^cl$3rl%6@yzc
zhOcXDJBFM|A=@!{qS)UC@Jx#Mc8t>qN?juUS0}FR9kPUrh-Kj|E`ix|%*@jaoCL@-
z%L<LmjYd@O`LHhUM|64m1*A34Xk9|I<&7C@xhur8px65Q*XTB?gcW}i`VY?e4JZp3
z(4}*p5nw=LIA#ppk5}FEAh_6s4nTh>&iPX3BX-8Gtj?vwH)6vI;Noe8&gmN5ixN0e
z4JN`3OR8}yU<3`CqcYu=XFLSiE6?O96zVu6{={Jk&QB`<sO@qrEKY*=$Lc(j3c_2?
zqZZ0Zf=N8C_4d<QhOR1k{f=y)nIa(JJdh)C#$qAQ{lIA?TZ8jw1M8At)2Qy}0lcZB
zUMM6Lh98`MHA<&XD2;A127Y6-zHT({KijDPrq$^Gjgh%w$Sz~}ikaO?8nb?Aw64JS
z8UHq7K&cjoGa9%idP=UGi<X1yc!)?j&Y`NnRjcF~j!?4d_wK^6lQ=J$2ilE#A&f3t
zVmQ0?f?^&Q$8)rL0xLOe2_j?-U9uM}E+I0Yw7$fpn4*x!-9BJQHBURa5rtg<`YmU8
z&N!KY_pcSZPtqugRP$IA;*S>43|ML-F2czuyIWq1gKL>zf$oiRl8F+TB>F$dyW{-s
zFKh%pxbH0+r@7?FxiPrZd-iV9H3sx}wFHl<g=~Uhcd2Uy&AzyZT~Mh4#jr{Jo9VZb
zM^!v`rJO&1Ze;E?qF7Cj%kmbmEqBM0)gXSLgoKb|W=DY#a`x+}P%QB2QDDWA8XQ2$
zgL0!HXYp$Xr9mlx%vvqG!Iv%8J6Dh|5i{`jv$Al=Cb>3)673u@LrBBc!B@!@P0Io{
z54^lMfx3o0400O>nc!=Tg}t~@a-raYb7icYd+1)Nyv}`qv9Wo^K)DPGxAu+d%Ij25
z62TVj0XtC@C-w-5VlN9NBWBhxDxeX;*0C~d?4Qf4atU!2j|(lAM-6<Gxy9hQr?KZW
zIpusCip%N8DL90jlbl11%kc%|yyr+ECuGMVXZ+$uJ}V}Jv#qh;5pC}UkBO9?wF{J9
zW?fgID4jcYBq<Ha2cUvbh|uN{ldyHyD|=gc4rvhuRwxbB<JYu9gefBq0RV(y<EV)E
zQO4FXxn9h<%130dQf;lnVN+lPUIrzf)1o-yH1Zqg54|=0CLx>>Rs6ix$b4V)6HHVx
zC_0LBgsco?V~D>Htul#d|I<T=24zr0voR&3z*7%Mv0r|>tJOv<)oNXOxfZ_>BOLKd
z@Fs)~_c1J{_z69PGGZPC6^#cp+^|Q04%YG(C^9d4b1lEGKHvQx)#t7x9jF0Gsl^Es
z`>D^>)W8|k=l#^@uiMb)=lXhR2}78m&%Hy3uFuE(Tl6{WGELByGaZ78u!}xp%LO3~
zTc^HEg3h3nRVyj0I9z?UZu_l*JQSDDbSlhf!qwrTh`whP$NP4o1{kF{7fY+KSi=cC
z8W@k13Li{SVL2+;nsSVXg2^iUkM4)0!neyUGHt8yD?3GnA0DSw`1awB3X8FXQjo4t
zVI0L}z5S9RF0@xpuq~l8N>*V9dFpzy3TFs3?W*v7T7QT3p`=0d;6~O`g@tgm%=ifv
z-shvjw7(<!c!-v)!V7cKtMKDrJ1TtVC0gQcEOI1Hh~fl<1Tbv9{33}W+KYS=jRUNb
zsIW!_f~ZwE(}D`Od!O*MpCfh)GZs>J6*Al`L`XB3?G_kOcri2ZuV*`n^;1WUA=8^-
z?H1d}x9WM*pr`Wo=e(5zth@%5Ti&*&eu_A9R&x9(@j(6OQ1Qv&F5)q;n5VUyMnOYn
zu&KOD!}?&u&uL_0<p7j79O53s;O!&$$Q<7VH+Yr==kMYjv@4gD&_%6WAs>(+umh5>
z_=-1i^Js0i;)d2>!%K2y?aTRftUn9ZE|d|R(+5tnG`hp6Zw*Z;ikKI+mPYp(^`8bK
zX1~kd>Xb1m*fiotWy70;^`GIb;>H<6T8-8<rOlt=pzZe}(Y1VU>MFh$F>?p#7tWLy
z{^ofBHzwb5Y^nLH*2wS`!Ft}db<T>CF0F-ZEBZA`Z~eH`9E;MWQ>&!pWc)nHpX2%S
z;HAN)s_w;&)%n9#6n6((z@dQ~4D;qzqq!BaCXVIp|DFUrIDw~h;5yN4Q7LOGF0LVe
zhf#WJ8%K4gtHpV$%d3`I50_K)tcB|1_v+(L^%0Yg=!kqP^R4fsh3tkUH3Jlz(3FUu
zcv*NvQ6WWG`ziV>Fw+1tTMbg~M-qqNEdLcH9a>M~)!20)!0Zo#=9BmY=fH|qV<1dC
zhah-k?tDHMPd#vL#2npP+PvrN()t~(rTtfxW&%5+ze=J9vN=TCVLfIll`NKi8L1k>
z-<~>(XrtpybZk}}G=^`OdJ=ve3~NLb(52CJMsy1mN?~Mwfy4W)#*2hJv((3D@=?G4
z)?2#)WT2E`8-RP({#KmzE6*Ta8FC<``D_Lb8<=&FCDU1(2--MUn6+DVZAfy4jWrVT
zETmeXmf1T=K>f~kI{6IgnL$e(%P-``0%p#bp&S4pN(A<ZOlXycJx3!U0ls$jc^XY9
zkiCs@R-(47Tq-@T@RWcI`svenYCZSKA;kk<qaD~3Xx(Ho9)Ec7Qx#8yT*D#}7=-rs
zEo~f^KdfPWbw^|OCh{9%Gy%$OPAzEY6l}UVTNHJ=ymB*6l|MH;#+=c)BeV?aegYq_
zTv7re7%Nxu1B0=1yI?RDY<LmmWc4z{?_F>Lb+BQIJc;B_Dy`p}9i0CpxPxyUg0uVb
zTND?g?(Hz;l!#f;S~h$`u)bC70M3E`C^KUIys)Hka;MhPw?B_WKZ-;*vhLJ(B3g1I
zaH{pZ3_W62BG`o6gO!NnWRwkmCs_Y9o;OB1wU*8P=PiRG(RF15KQ0@-?v~?A%}Bmd
zhq<T$r5?~)2q;RUZ=mL_@1ka~>4I(~*p-BYFwf57x8ci!_5TL0=ir$50d;!|gAE_z
zSG>8EER*Iy)@mFgie8pZy>>-O_twE^vU_7B|BMyq!e|U%I{kbj+83(xUc@}#qf_f5
znJcJA*~UPq0rDnvgL&3)T(?8ZA-986Xv<;1a^Sko%@I+JiSiL_y5tD--P`HAGy6Wd
z<=58vPH_&3`#8m2Ssa$jv#k@Q2JU~c$3hdVUh=bHJ*Y0Xo>~EU0BVG4U;y@qrky5;
zpBHR84}oIy)DuQGf{=U$)oz}eLqZ%ZY*;T!WUahFpj;v!s#Q!-x2kW*aJ5>0Q8oUk
zKJJze(!OT6l924+uREchmXfJ`!7fNh=eUG4f8J4v2wYu-ybjmdx=(q-B4(kAj{}47
zu+I;uuXL@>8J^a|`iNG9br`@%AygvUI&K2t1{_^$E>>`K4gUHTs6F8*jV?D{cvFYx
zqoV&Xc7J3vf7UT#4!sk*$O}u~-X0nFHAH%9=$yvL01O@8h5(mDKWllxS~Nzt8w$?8
z6!eb3;MF=(&2~ZODW{f3-vo|9Ncq%35wofl!riTF+3@XC`%<n;o4<hTvm<nwdqY##
zmqkCeKcS@<FO5SXyW^nH(?#N97XT?a6RvN*bscUdr8wbQV~o5L#EEJwIh7Iomd)(S
zASiPlq$azxb(MWO+DFL+N1WHNy5>uM%fYu`Lq9xk*>c{HCH7JH#?K@030j}(&>Dga
z+sKjXF;CGpVu;AN9RU<Co1j$+Ho+i?5wf3zafS`*LK`%D24fv%Wwgz)Z|5VvGi1Ge
zI=)+XZ-H?{dJco7q<jaJ685l|_OOWd5Pk(N5t)uI1pH4djunT8tR{U5sdNB|QO@wU
zXa0iFln0xJ9#LF(ux{!Q!~9jI(Ygw`su=+z`gO}2s5BiH|Hw_euy1teMNrG)W!C6Y
zGFX%xkq<D(u*LfNkGyJ3yn=MY4y7-4)AAPrR!#^i8E1J~lS(bytY<a@%f1j7?~pJ7
z-)R$oE3imBPmr<>YJmn60emwQJXljCoDlkh9dx?Up73Lm3M9nyzh({RAYZEx0JPlh
z?LCFw6$m*2LzOq4)E6Tm#n*5Oi!p|{N9Ycr4>pbO((pmB;Rq=hA2x=+9yAZqzksZu
z#wO$KPn^JH_Lku7i%}G8nvzr8uq)W`JM{xWC4S71myq-OsDoifj)uMgQB;K|+g05Q
z=Nso?C~-?pu<53*;@gg6eV(p(3+_u9jU1pv@@GJ($8-~+-Y$M?UjEa7m4+`k=S_KX
zSN<b-0?Ri(RMI#h|NJtuvP0?c?}GD-QGCvdtWJfa8z*$igch*Pib(X@{7U3mgXRvr
zhUUjZXMk~M)P|D`-u?~TV3|1~KeKfB{^0yt{EASd(9(b~s$T<W{uykzRJlz+QG##i
z{TlRsEqlKny&nk9Uj!co(Zp-V0)T6e&5S?{DuWHb!gHDylDrIH)L(%Iqk~QP8Rtc}
zk6QA17TWq}+3+`l^}|tcJ_?SPhDX(J50(vI8?5IQCwM&cv=W59qsz>h=&v<6pC{>$
zZp=S*bYu0YnWe2u%A(&T;yVxf4j?@pBGF1HKy4`2FO-4t*atPkjc8%8=^TWy)yVUn
z1HP=fB^z|<+VFw8&PYYY@yN1gzV*Bf3-gJx%y5v_x1XpCx<Rq6ZFw4T*wR5x9EJ)+
zJ|yll0;?0Y0*|YRtbkeuwL{7vV%8!X?%di%t@wY`eR+IU#o2!XL?ePHB4Aw5t40m3
zLD42EdXcCna3gW4M#Y-9TBV8_A;E|N5^qAdy&OP`)+(*IwA!k5E!w(;MHaEh;sT<G
z+SWOSDoWLW)%?ESXJ*b_f%q<e{QR`!+_TI)^X$(v&&;qXk$E1;QXK)GlJ*fKj!1Ef
zM9>6yr@K*uOQ6KZ8uc#qak<#I_v8=XWkwYUpRj)fS*j-dAZ~ZFt@u;;(Vz6&-br}?
zJ`x)W;S=EDL>l0+&9ibJ%>w+`1n{lxTB>&iKe$Q*@4rpAdWdumo~ewz@2?cAcI@QA
zgyR?s$5jCw%(k@uF$)~k$j<%{Btjbe1L!%k-+%ZQB`!y45VjYmfMDGq%27xS%LYPC
z0u`d&Qt(idPDh{sQtO`&3#E=5L87I<Q5jq852FDajM*5_gIZCY_zAf=>qz})X^^0+
zsL1^(_yN5`t%T!OqKkS2Pkt^>$oMIIP7%;L7u~%6PcS<6NMGS^m!q(CzQun7Kh%@&
zzyQR>%mqp~RsS=e0PW7>)L`qv#-vdHGt(`d;0gwYScOlNI@`!Q#b8wE#c~)RyaY)x
ziS|;}PvBvzQJmDK4g)ah`2?Ad%i2F$&X<;PQDD0eh+usTM4_Ntky6+Y13&|>O4aRh
z)^-5E18)O>)cH85Xeg_6`y;2%5eN3rTQP(7Tu$1#rRLmX(4nQM3E)wlLT)UP?4qIS
z1GU}y5}$gP7Ps^SjrSytFB3DLGQe`a1ennt6KRh;`X4d07?!d5@IuD$pg#lwcnu5&
zC}{NyRRr`;WCnKG^y7c*e$!w41FZF+8v`on38>YN>3l)~_z}kl*pVj<+V4jd?v>MH
zz*k=0qrcrv2BvdSz%?*szLVkN2h|=26~gO{=JjH7RtaBMeLkiRkx5=A(Fh3NhUaa_
zr1poZPhdd3@FtjkAe5zM`4oQ7Hvh?nTz43gN)z**{|-?;u^w*8Mc7kJ92d7hBH`wc
zV(<YF!lHXpj3ZE+;cv2u5GGK|ZwCM4TQ}AR+`~E01i1L9kRPdg|E|H+^PnnnhM0jo
zLY-y)^DTCm;g42jz>C=ZJOJv<zhuvr4Rt>b0LJHO0N-jjKtKhDT}aQGS$tux3j^lj
z;69hVNUWE-lSc3QLlRq|Jsw7xXf&XiaO^#3wBrwIpS2h<mMW%rr^)^y*l3k|>Tq~4
zj|1(PgrsqGV~>e(bv^SJ9P~WyTL-<Kuf|<4Q&lqEg!3%ja58pFQ9C}8ldub6u2<p5
zbRq)u0!n5SEyE4|C{c5-)+2)ilCl^XBI#|p&a__W$(diB+w|?RPAh#sNcs1{40812
zT+ZNkEk~j-IJOcE))-%Xu7P?2J=3~_nfRD?4;pdimmqjJx*mS#1ZoTTscc$$yiT6i
z=Hi8l`bNAUiN%W;u_0B8+g<0@?}0c7O?K5mR5F#t!5`^R?jnwnXp?BpV6u5J5xfWu
zpyRIkS6pur#?z&<l+jNxo=!cUj)wrjxlYR@5HA38GQ3Oyi7>nR2VH5W<y8D|;}hsk
zJ2Q`yA1AsoJApMNANDn;9HHmMk@&fAtp`TDD{?F0*3Y^MREv0{;h3JAf7bL~r${4#
ziA7|(>H~_BW&oLXw$_##YU)`(_-8N}b+As+B^b^37!4f3=s)3vyr@-AF6LLXzeO*v
zCgPQ!(nZI#*6n(OK2<eOX>8*ujbsSuU_G6SyEk8NrwX;vXSDi$u2u)N#PDqSNY8BH
zLr$#@`>KF5)dvvldGZ*Lq!K`D5BnHON0qL}EX+D}$f@FdczyFj^mw3S;P*ot+6f0j
z9a5w2r@~Ck8Csl(ubLPr+*ORxN4gWqiNoh3x{1V!P}U&|03$I|vvlLO&C@E_m?Oag
z<Ny+3rZ8d`6vPKy`EQJDO+854GZNp2;}gvesi~pVj76Rnlm?lJW{^cofPVmkO3SM1
z+;!Sbm*<Q?I-Ut068*;LT`Yu8MVpbFx;($0E+U)EB9K5)J}Oi2oHoQeQ!WbCZdn>s
z!^?>8B{?C#k-pyv^0VpNqn(z$@q0<m(f*;lzrWlkz1IO?|28HVPF@M+hW#fp&d=Qr
zo`yaLHV_Wb=c=I{8`gv`of#+cArJ=U!HGigOF&yG-WcM>KA>Y+ZGv3rAS42NRUke2
zlZZD0f#9mCdmxSj2^V#|9r5~pGRQKBc%u>>z**1?a@2h!r<wjNA#D)agmVdp>70=?
zh!pO4G*Y(IX}c4^p$n%?&YK*(Jp!~P68oJMxmzT$AJ|7SB+y%^R@GbED7rIu8QVv8
zf7#8avs*Z9JWg>W#NvoAMJ)Q!l46wb&xxKW&y<Y8^y<45g=61_D14{}mWtJM<WCaH
z_H*Mmfxc66-LiM44sgATP(*QFJ}Y>F22t{{>_DQ2ZjHzfCL+X_qO^z9p1)1!b|Ayd
zF92e)dczmO>idG#-S|F&I6CtzP>8MVhy@(0roN@w87-hTqhpOa=ymXg5B|*Vk2}+z
z0<OUy#pDkdG5II&d8Mb0)aMs#gaTgRm*d7@2mIv_I9WKWam<n?PF>|JX?li#T40e}
z_%ZRm%eEBYx+;uQau0K3;jp_j?D7r#t&qQH4UE9fqBu)WP>x&q>XkPMKe|HhDn@-n
z?cn82|0N@52#{KNznrLb&I$|*$7*0$Y5vw{>?TW&X=ym$Kv2lP@xDbG#t_She#4KJ
zhC_Vf#{1qfes}yCa4r7;f{+^@bdg-UrSZO-Kj+wLi(RjwL_%N;5;_PcRK==F5al<1
zLfip%ukY<4I-}MZQ4ipJBo4Y5gD%0KhiZOMudOwMcF7_beTZYtS5KS!r5%q5hRE-P
zQ2p9I@J9m$>Xg@j42JkZV>W<fh3g`12+ju5rXyv%D4@T6UV-N|J9u6I-}11j!|-pY
zZZNOw2ieaesK4s{JoH8mENCH&cetwKD-_oi=EyWJdJb306MS}b;<Hg1pN;PL3a=cC
z%vZFtq^?KD3#Nzgx%zWGjPOYL6+oXs@58iy!$`(KkioyzY-g-31_Ksohr9!&awLqZ
zhyq;+=CnOPVnYHULv>UVTb(vBAhsfmYEcsp>P6Kf+GWdVf|*oPKH_R4yY642O^_Xy
z3@I$E#0thDE!7s0q;qjiE5rZD3Ye^3Tmx1ByXa3z_rI=&%6U;ec%rtxdA}&M+Cy^G
zVw9MahB67Mzx`S(*HS9bVzz>@Q|ZaLp#{SJzGRXC%fKY<V3IU>*-A*Fo0IUT-h~-)
z<J49hZj3xBeh3*EMyH8ih-t(R!5Dr(H(2)r0VRKMn0&2RO`6ET3SeP860a6{HCUVY
zO;9Z20EoqqOuMLQd%AsyFkomVv=PM!se?VDf&*}H%DxqFWvayZFdCID+Hc1XP^m>S
zWeJq4yrsa$mP~vsC)g?TlM3RMi4TaD;Dg?VMuxD3V8U>YjI}}IU}C+-K{z;#5G6X&
z0tSOC%uBmVdljMc9JT!|Z4lB14~5AC^<v1u<R=fgi4bFyz>9T(#$m`Z`*!dWjB<a`
zlU9V%=)ZzrM>k_Q;~)u;AK+Nh9a<HE)4`IwRm&>~k8rjagG5{%QdpiR;!&)b1_T2*
zjGw&$*S$;S4X6)&RqMHYz5@bEc<tg?@n3%m@mXF!So1~<8o%$ruD<xl@|Sff30>3{
zy$T}{g(|jEH|%!2s*ZgXBQ8uDaoTv->+#kk^o9CVs(>(FfCc<=;JfB`wYW{AeJrPE
zG~}!b{@>#2!zGtwxLW*rV7`hZ7Qw;~;p%xpe5***@ryBf9F3JQ_v!XA+xR89^n=F_
z(I+?jUyWag@`J~}XjkKBan65>-&M3ovv??AaWK2lv|x6boLcKfKROr%Nd4;$C8?U&
zS-{0}b$kZ3pTxyl2SEL)3y#yVa-p7fFs24_g4(u@r-*99oI-jdm8ArxKz)KO%J~M=
zu&7@|WB#pF`v)xqLa-Nmf*~+?2;edBPw;<yBD`D7)4IGl1Q$vMQVxAI<ZDzgl`Wfm
zwu?D}dW2HFdJJ#sEE#_?{w+h|$$Kt*CQjjQ{=TW@pq!gau}C1|^?9XY^@qcw?W-_n
z(>}^OE%#-53TUPAuQatKEKCxR!)_eiM;GTWlFS=k%7GJ63T%maFwfNS$Iu4u?3Hx>
zj!E`nhx2>WBppEUP7+q{R=DrqIJ12E65a&3@Hgcz>9zkEEURt;WYk`~*2Yfk6_I`@
zjz$eI2+YU0OOqSxRn)bbx6wsVkS-W4pqj_PB}8Iyg&Nj~*K0pUNhrzeblMJ-22lSb
zeu>=b!CSej-B=&!C;5`R@(ETiun*CqFfl2`tRw$HZ^UW+BSFVYXbm38aKLb0z8l}q
z^~PhkOQsG)G>V}P$58jdP{%=%qp0<Ay<z(mP-CB_-BWTlASZ93|BxDkEH_&%CaZz(
zBeWPMTmd8uSC;=>!j*j_T<IyZ3oJlHtT=-fn~mkGH<wXq%h$*>cf2hl)X?(rpUvY2
ze>nO0uA{Uw)OWIDBTb=$I76sG(UE5RY{Dkhwn(EIBA6}&@sfma{ktI$2+M{@TU30~
zR^Wq3SXL)(?R1<Uek|iWK!;__K<EUFnP+**rUhiYe_xt1-jxPAP$Vc9hfCm%$IQLB
zqZ?V<EK|&MG0HZwwi%f{aH2Qhn_uh(0ugAY81q19^%mAuut}FVP3MSG0@_|L(XQr(
zfZF7%1lG?0kcf7R2aDKw!<@Y=CrA_%xGKU4=g%UxC4p(mZ^80XX^H{(XOL|7y#)1h
zDUue}`$+cRy>c98D*4tmD1Sq~Rb%flEoYwoivu&Ay+xR`<<qey_?am;{I43yOxJ}W
zY0iKcNx!yXY!94SO(fOIt;2XLcdhWBH|UOOL?DB4A`m(uN6q<6BM{tdomVYYXoQKh
ze}AZ@>aRH2nHa03Q~`S?uO>8ZLgfnCK$~cj6huByByOcMs|%!Zy^;9NrPP5#kvNW5
z6{4)uX?dNh3Gjk=#>o~+vO?`)KJo@EI1Zs@{0^;V`V@7oN$pFRn93tS3hU$>DZPzM
z;Pg6`Qi4ivq!)LS&ZKl6Xp&o-Mbm865-M%sQ#JWtJ4eg=n>1Qx@@tEh3}xfY`WKZ^
zLg5U9LW0UXFC@x<!v>Unia?D*L<>3U?4#J+jxag(up}%FHt7d9ZaAlTF&T-9tZGlo
zzA1T2t;l{kBVCa}Ba0$S&N6=Yfyg+jXpnkAoWBkwXl`t)Sl5Iy+kLSXZnU63?pTBF
zSNG2BKG386yVd;^-TlB6RSJ$=q^oBGZ8~jHIsmJPPeTzZ)T`tT&D#E@P=M;p!;MZI
z3^;Xqw+<2ku>dU)$Y`B9F0Q4#)THn%O@z@XdEhXt3j$;Lk3!+GQ0X;2Y0eY5nO*su
zq!)SBnhu{(Bt+3^dDVs$87nQcsHh)rGu_^R-Xg0h%1(W{bEb4RioQ!MjnS$&1s@kK
zB*qLrZU^M*gd(H$_S++qZVc?S{rd&+k(}<<($1PJX5@UF=86}P3*xEeLLd<)SSqz;
zMBt`1i4;S^ApsEORT<0<kwAk&3wjNnUVs4YR7zw^InY?qY_eieD?6@9p#B>!qAW`i
zNJLFj^|Zfpto3_ei}J@pFQefyM0x7jX<}RoF~(po!C(_oCTuS99HKl^%@*Ttj(WTV
zDQl*&As<ieo{8r`KK?zuJL371_e4Ci$j3z_Lm(elx9>_m%H<8i4>*moOC5Tsk&it9
zr<RXK;!<=~zz-3DQ*tj1Xak*P$QKr-Aj!u17cofohW&N7%wY%3eb?5VVPCT$yH-M`
zJ!#N4y^=oYHEBv=w7g*keH=bk#~xyYpnm|Ru&-4LS_m!{C}q6jXj!Eo`hY?(1>u{z
z|Ie`geQ=eq{>k?L)c-1&cnQK02-Y~L9ONDffTm-joptr7{YPZdf=I1B?8bT(aUQ1_
znZSH?`QI=?IIBoeE-qXY?VMQO1G?7Akyzn-5YKjOP=}%Sj@wh?gNYN-A6gv8%mn{I
zH>kmLBhw>AKVpGr_4KL;x<&3<TrF{DKyd9R6o7#x)d^c%{~PUsg@m>DCTsUwtphk&
zK;cdw9wD5j-tw+zfr^{JRjKee)4rr3PFWufkS>gNUg^y02PuwrRy(siv>xsJaot$_
zs>1=x43VHTWU!B8)du@10X|A41shJFO@^l}Ed3n9PfS)Zr;4=tyty0$LqLkBjNx2t
zcG&R*zsuT;`pN5fJ}cV!)4F2;Bj&zt5N)@k*FWEg<qVha?3KU)O9rek6R<zOftIk*
zeOI*eMrYQ8f|0B0fT$Y*gipcR5zNv<e%jFI-<vV?3)lm;QQ1XHz0+D6m)X)DZ0Q=b
z6z#mJegx^|y3G)-f}EQVN(U2)J6|;rO(#p&$+TVlZ`?ju+L>72AYX!4tB^{+ii;+A
zak`ZdK6MkMCY0c5QhCKa8ABbr5)Chr@C4CM@FjS=AXlw`a`yj#htfyKZ=;<JK=Cxb
zy;BsYbJqo#{ceHq%BmDK?J3B^7Yq!pa^rpAh@f@o183TmG+in4H|Vq~+IfyM>wO{m
zS@pw-(NfgQL>Gu0pu7V7C$$xbrig4HRVD;Udd$H<HU|R36cau7674*@?tHX~O3xqE
z6rk)<E8d3)JR={vF(ZXXZpFR(h@aAg^rgaO$Ws823a<u83D_o~LH`Og9qqh&>Ojbr
z)ABR?^4xn-g>my;KDOV+qidX&(Q+{nlO@gF?&=!b6~66K4!gp399=5!Nf4k3S84cX
zc`xukmO8SAI<f{9ZMI<kr_L;v_ImCMTpiO^$Txw$T4(-wqo!Y2bPjxg0yjQ{dj?>(
z7?Z^7oLM)LoT#sGW0xS}IlY(|6TCE7dg(e;E~?^Y2!l7et5F}pKo0-tS>1OH>(wp^
zk3vJe*nrNh*)|yBljdd)0+)sAA^TNo8iq0UO%f_%%4egQVus^_257MnXHT^07O(Gz
z4HO-QzEqzWZ;rZtlXjvc&W695l6hIRR{T!Xs>!S})+d%1oily-C~{s66f|d-wG#>#
zp4RM*=d^{c?RZl?v!AiN_k7<Iy)yk`9Y=ar#{GPMs&+qNx=f0rmPCMG$e^23qL_}a
zMhi&}J>ocNK|A#KN(<Q&8yFB1IQbmMn)-uv&|???c^q0ukQsAk{*hpvgnPBS83(}N
zyz^_q#2*L+WHQ8vNzN9q-{<&Jc)N!)?M1vo8@|qe8ds|JaWLg|xJq&u()jZiJJ1g|
zIkUJHkQQ<j)UGy@r9`(NdfMm7@}DL>{0U7$M;TY5MGI8<+Yo8lttLsNv%Luwd-0uG
z#bOQz3P%iS-dp(Gi*`<MT9}99ATN<_jRrp=S#f7{z7${kNH3ytNIO8;I#%~njUR!x
zw2EflU%E)BplqK3-sk6J!29Dj(H7S{b)yAU%#I(&%j)GvL9t746;LceFR#34p3d*=
z19OD@&L$v&^>pj_*VBK&T>0YXfPj1Mp&g!<Kf+u`JFjwDr!Z@SR}{X`h;v##)D?I6
z6wDf?WeY{e=)FFwlV^CZ<(sh=rSOdE1Zgx(@>cS$o#dS%d;e$|r(>_Y_q2SYp&8Px
z74aIK2Kv_<6mh5Z@60m;vgc(?$VaslZQ&&sk*pHUXew%;5GB9-jx*~7-uEtm4m%IZ
z@St0Vz#YGk{AOn-=N5Icjk0$guNs3wg^^Z;NDs}N&L{D*2m-Q5yaMqbMqlZjht&(v
zTa{%Cowg+c%8Pm}0JynE?*0LHD{{9{9Y8bOKVdg$h7^r<?}nX^_}i7D)XF);N2Ci3
zKx?ro5gP3_%z?AQSDxf6*f0o6$wiGQFr)G4%W4bx(6&Pj__wEZ7)}azJgolIU&ma7
z?%YNd#$+*KE<%g~F<4HHHl)@~q7p>R#kdNZ(BjWf44M(@*&vfKc?7_q%pQpHv9ByX
z%}9nHm=x4bW+q8^w0ZF+fW=JGZU9H?<g^%<De(#cCt0I{FHI(i<I+m?nZJorP0fmf
zs}^-c6N>cZr?f#p19OG_I@TglJ-w62fU5>32H#68hVm-nCZtx}k{&T;>-{9%yUtak
zI?1rBUK3E`|BSjih?Yw;pjZK%p=VAe$ixY(Xssl0XfmC)+hvq<j5J^w2MuY1o4d*-
z)L!1Pbz0#hC9I3q@0{&gUKh5L!o@(y(&%EiNk1kxO?^@d7svK9rgZc-mTY25VZ@V6
z=^YK}rWAv-EK~<xIf@E3qmKj7hkeiQ1s7Ir+gmej-lnfDog`5JrX|HdCst}4Cf#xV
zi=0ae2yc)z11$#YS?yQI?0#nU_)F1qLH77Eq}rhUMC(94!ftGiDRQuCWWD1J5;cOo
zXXsJ2E}wFUOgdqwu}D0>(yM}#wtebV6<z~Gx*>nWl3uwX)HR_gdLQI9`aO&#OxSzU
zl$j(Xn4V8`$auiQB*90M+U9t!=tK@t0zmANu<$D_(xQJT&A^UK-B6_SZte~j-}suy
z(6Mk#B5^EVTt_t%CK^QTq{=*))yKSO5?|N+DP6k$5+o*rH2u`QlakAq`=65<-mp9X
zpRNFcq>VeVJHS7^T!7y@EtT9cJ0W<lAe`rrz!66L-$LK9fA6I4*Xz5}_sP2Nj5PLR
zDRLjq=za}+DW~OeiZ?_<^V*D}cJo`T6=o}zncsS5VuqBrqljbgjf5Mf!ZV-H@Td*9
za*WJCV4z?DJO?l2tF5P!kC=_XeLQ5E&0s+zDB%s`V~7v^27IYm5fJ34ssq7or%Snx
zmM*4pq%Mc{%EC|UhaVbvf`A_ya>fmfPbc9sWIO}%suft{k*ULw3h`G<nMTlA;H_Ep
zih=P%-Ir-a_eBJFd4u9wF(%2=s1;}zIvrl!gt~Eb9P|86WO=lcS1<PKzu)0YGIeON
zCa&tc*nr&6PaOy-Hl0Kzb-IbT5l?Bv3H^$-J59Ttfw)f>p})JCAZ)rH-s6g|lDx;X
z{Gc;!1gG1gn;RI9)-oQgWqWrEYzy4zrh}2I`wSHqxlY@9&aUC11{`(=YGJm#XgNn+
zfm$fddtjU}1~w1RquZ{UIy$<ongvKn6aHjMx;8l&M1OVGW`4=;ql+6BMYsL5ZVkSx
z`x`rKLL)8=ov`<TTy64JbX)Dz<D=Vdta}Vs2-u;hX2^R8mLt(GbEiuZ*|L6h2fn#K
zx^1G<x|<9lc(;n%+dLv3FDLJHfbC7f1U_~d?92P!rO@3Bt_Q-V*cyfYX@kcDjWW8p
z*B)(=5YL>25UtE0$iOQ_19UM_LkVGJpv<a0m@v2lT)u!E3h7m!Kz|s9p_+;v6BD>q
zh+C1|g_2067e|&TP{*v+b|3BNQCbJPT07V?7SrxKt$Gh0wv|-9Ab>~-gPrYN;<SyT
zTaC8Sz!-LoTSIuuY^&xCcw{Vvj7$)O@xNcSb0~H*P;m1OGK_|TVIpC>L+%<UG654x
z9cX3=z|nj|z!AWBYj55PU^?gL$uI#^$RF<lrtyn3W*#BC1u((Pnn;6{D`jufeAy7A
zaIo)E!F$8b{>+*XY9s&#T8alr|21}FlFBQg%Bv3i*Cuu*Nr9~k#eCsI%!KNy4tOga
zw<oMu?!(%8;p@3Y{4i0~0sNt3^}+A?hNin8hHX|a<r`P+p?_Hjvv}B_+@K*Wb>Sg_
z&kg6$qt}yev#A!XDbWE*PenF2ePKIr<H`vw3Cjh^u!Qhj4Y9Bk?hKa8b_GkV*i<Uc
zps!DUmo)C<@LavRyY?CTKDL=&5rQ)!h(rN`1E2Bp>p5=tj0|)z?i9h4!HYmb4*jX{
zL=h@nF3mytp%L4hB##&>%#-Gl1C?xq?!7<=4YyUMywPdc)bLdM*g7f6pDK`H3A-4A
zuY`PH_Qo5IPXL6M7ZKUx&?tLQZaM1RC!qh4enf&fi!S8)QvVJ-jc#i|Wj-$apWz><
z`3|Ug<c#*?uW0A~FpGQfGD!jBavpjRR-5xapIL>i2HXo%gLOse`OXd0p&9#)dI>9{
zUO1=|4GD21{1K;xP6bAa8Rl^)*l1qdgl;kWVhxVgzgFeut9>yk%r?X}7HZ!nwn)rZ
zv~!@-GMw7em@a4jbgrtv?jNlMa+{_6RTUJ=i^(6*#9U>Ov8Ezvh8-Wkxfm}xGAuK~
z&7vbCOg3<uos-1Zr0B?|E0gsR9_6Upu*iZyhbcwcsOoGd8ev7uM=xuA^u1`q>=iLL
zz?rcF3tVjs!a%q?*;GR~K{RFxgxm-sp)tQp(c(x9<)}?4&E6S=VFRJ~tr$ryY{`;l
zVmC-()M!Tq566mq0+;Fvl*K0X#DSZ2E|N)>q9Z1ep=>v@5aklIRSo;wTk4mw+KeQM
zfoQR+3jaN=ewQk%+^j1?IzYmxetTb=u6}_XlRnUBXHK^6C6P)5J&;Ny5!Q9IBs6au
zmc`I*#)mqe-myWuZZc+SyPwG$nvQ-awcUuGM)MvO0GH6bL1=UR&j}pnTa4zlCFVjx
z(9U<0G%N7SzP8QN+K#~cpHkbs)5G-j@+TG%S^CP|RbQtNn;;d42IXRDmahu;k>+C%
zJNjT^-&D_@K|QV0av!wgPWVt#8JZ7U0W@0y{j{Xqd}D$Kr=&=UXtOa`Sg|u6eDMWJ
zN%yu2Zod!di;e0JxdvOavCMaeLFd|QNEtDQLY@rDoJ{*V=q~6zt{1Qg+N)eU-{zGU
zb?W@=a;*e4vprVSL=+%D%fHx4e;)pbcA_&4?Zm}i)J~JdEp?&Ju=Aof=t^0n#f+Vh
zfSzX4c)de;F*zv22V=?E;CoaLVKcVY=|=DAmN~WQwB7>c1BFB78Qq4ga0PzDJ9k<o
zeQI`jY(RAlnjwX-Vaq`l%Gqi%>J6B`Yr^Ny%N!E&cPE{FM=xM<D1ftkr#`-kTuPk`
zriG3ZmIo#|$x%$V`(=D<8itc)RC^p-0CB6Hz($M7hSU*WG+vBV93fny&wd|LrNRs=
z7wiunxRl*NknDPam@fRG%Z=XigFX^`j7P8v(lqpv+5+1+Tivr~<`8GAmMnK+fBz-}
z*V3ZJlRz|xu2Y+8lTZNNVNih0Zv+Lfun$7I|0g)uYm>!6Ihfkwpv2+;LiR&(uo;^~
z%vN{x&W3}gEO*I6tyIH)JN}7o!-ULpaxu|q`IB70&EPzgKM(&v#e=@6$n*y7b30jv
z{A_i$dh*63eg+T7yc@DtVwSN<MV>zaZ6xqz*R52e&Ds>6Az`!d%%F`Mi7)V|>W|H7
zfv*clF2qWjXR3FIujs<Co5D9L`YaK3{T|s6b#a!vS-^&9*J5ziQVG*!1N)>S1#GhV
z<z3$p>~jfrjeza-tys^+JSOd;BXT%VM#ga;-Iydz*Q(j-1$g1<5<FY|F6-S{S?;Q%
zZimVnU{zj1-${MJ!FnpHi6V-WLIYC@P$rgAfumCxAJAhyS9)F|2&lmnOzWeVpQ4az
zzYevl@sqAD-5u@JF$@`YKCUD2yvz6}HoUYvp4a~80&FNyQ5^BkE8)yV)me-l4`eg3
zTZ*yFpaf1Nwwuj|#(P%uZ1npJ>#ri7$C9UNiA6e^bt6%7w6I4~`7c%(pzJAGb%^%P
zWP`@1$<;|->X0=<+B=?$eqZafd`=$+t>1u^2+dt<Pha??)3yd$y}9ef{rgloZAU;o
zH+OwI^?~D@wnN~IHFv$bTh~5LYi~Mc-k>j5!90~Ma$4zM;WP`UWi>AJ2iUO18&tK{
zyzmt6W7fWh(=tsEk6BqVOD+6y&XHq-7jEjG1Y|&w7*&@|_|Um{{YdQth|UBFXikjN
z6Zk`-lgV*R6V5}AKxk5$a4_)AtSd_qP+P7;lQ3UH;H9p6AG+X1*iMw5`=jueFHVO@
z;%Of>Y(1Wyhr2J}{Tv@h%XaAj%d)HHt`DXhSL(EW1Oy=%D_GtW3)w+(E|`tP&&15#
zNMzpo=}pfJmRtWt56T<%aRj1|<?pR}7u-pBu?OCljS)(jYjGJOhOxsB-mk=ZxuXb}
z2^%rR&$N0WU`!fl81(fY!s~kSsL{-%sp(&TFL=jNqk5oFGri$JrgmJ0n_<qHm3G`i
zE(^Ot2l0wTj_IC)K?~G(Xo_#384+Zgff`vD@4Mh>xIWA4&%?5N2vPr(Qu%rm=^4^v
zjrdMM@cWYpsocR7IYv)O!TP_uXvTEU9d}hMT|m-cOGf^wSlZ4%{(K@?@C9w2m`@aZ
zd3mo~Mzzbp82*0=QjR%l=!YQmSg7-gr3=}DY1Xz^hW0c8{Zr&}Mvud9aoV26o6TKU
zoO$}yW>vX2XvKR*2%>lfDXF`nxl3Md{WqObZ_u@G$P4vnY;_9G?1g`Nquy#Ap8?*j
z&ZW!2r9e8a+J#^B##mvrM(EY4?*Y(P@VayHa<FU%5^jA^Fo{wV;6^7f>yW@~c?YlE
zjn_2eP87x^9R38kJkA?3tsaYm25s12;C&H2xN%7JuW-@a)phR~cR8&b1YY|3Ee$ia
zpxnQ%(&&!X!w9rDXg@Qc5{#t>#?ptk^;q->w8Vwb6h=^}wo#_OgTf~G*aL-hg}g}`
z2QTzj%TSBqzsJ<W(na_vr(=fhk?V<)US@0k)xCWAiNwqPsWQG{Y9w})Xn`O$cl8+l
z_zO<k{b;GV>-r1#f5vI`a1F@s!w!njX!W;1S)G}We|p!QV_t7Pn@xIyUVKx(QjCG;
z$(9=e!<7kq=L#782}Uu#5qx*7<y)GNNknWyw|G0GCccZexuKdN;&k0>2mapi&d8U9
zFbm%`grNg2gqewp=B^{#cYD2l3P8KxfOZ|Z?Cj<)8FK4PCP}<Oi`Q$oj}*9X;Y~oq
z^$aO&ayctcZo*Ry_M0*|=jHU#oy^xp2Cv<&J7Y31gC2YG)q~leCZ1m|^mukm*CwZJ
zu8g4H&CkDuV1UE&2Hm?(13H1Mb$)Y~yx6)7rUDPYe@8z&3g_>@VLk;U_!FN<x6p57
zoC099P%YkoZXe+@tq3gZ{4EQJV_E#tDDP_iYSZ0z;P1+&w>As<qiYQMp8%ZBbC3(#
zvgWRNdwuzNJ(8}24mE&ZhlgaF?KfTUjnnFA!1MIi+!vjEvklW9DS&9E`Cu&o*~({z
z(FOm`a|!fo9)FJSt-yPlN*e9XD~Z>1bF=x{L-sX)BoHr(oF1);hVToTTf8q=Q~I$f
zhLnmP%uzr^UkJSzs>OKK7_<Ldko7VqHrjb%{qaeOzY8wZDm5wb_u;+lG0Dnva;rxN
z*3+0Otxd}@5Ar^<p|p4T>dDzUKB>~?M^gM$_;<_wG@s2nW(bLE{D;2gP~p7WyE5dO
zU4Azh-zk3@9LU9HS}Nf`dgzc=M3$^Qcr2K;dGi+N6P7e7{`JgXU?hZ~mA>7~8~7f~
z8><IpHO!62@Wz~?PJXfU%tGKaCqC$|N9k*h4`HwS)`R%Q(lbMRg57FL<AWOXQ|vi1
zse}bh4fvLC{_<$HHMfYzx4W@Ri+S8kzFd#Tdv9QK=7YJIOeP#<gV>En;Kk^+0Z!W+
z2gubvPTN6!<!W!I_0>Mu{}sTqvU4~merMf-JGesd-Ha>kU%_!Bb+G<*Z_7X^U@GKr
z;u7W0C<@7sDv(XDQUlH0c+)(N2d@;!?N#Kxd?a$Qeffig869gtJNI>3&Np`iZGYf>
zr}bfJ6~mDcf=7TwJzB7{aH_fyTjFb;_WE8x6D6#~e#pow{9~JG1H{UJ6C#Q>$q(>3
zt0-#F(GVoi=IV)T?)b~vLSk3<jXVN&^U{5TPkF=$0i`d7!695y15uJrKuS1Z(1pSU
z4@gHr0?SZrU8q3?cdU};b<fj#^_HX}8r2{g=#s#h!IcCS(g6HmOmhu2?iG9j>JTx9
z>_^vH_9&h+2x54UVBwmBrliXQK?i=|)j1jp>Hu7mHE@Z+a99{fiQ01=2Vz*ic`+pd
zned&GX&E-&2*#cu=L~~V@i2|Zpr53TK+$1HT??n1UzZZMKrriIQ*k@}ZQVW)PmaVJ
zg+9(z#8==k;T|1TXbK8<Y6@yLsgTdf4El5Uh5k(QImOmgBDU_+lT49Ws56mWB$j!y
zPzNlw&d^u`K%~z#;~hh!KdV&)Y*&GL1U0e&e&joxb>aPt6vBeKnWK4up@<5JSAj@a
z1&g(ww$5-Kdy+}OD%KeS0dvf-ch;-KOX_kQB*CtM*MM;WsC1Q*3?Zr*UI|Bt{|~vB
zfurUREK;nn^?+bp24L!e*pB}haEa*X>D9JcN>oZ>PLfkqU!8A7Rfr7ybqfAWUR=Y&
zy!e>kOJ4k-L{$xVPvctGLHS>hbOJjlt;YO<HpMolN7jK8>NGn2RY`Qtr0rDH2?hmN
zmuGOjH*6zAVyT`YQAL6nmN7*TQipVROw)fSW7<10CRudaaa&>-cgC^|gNshb><ohY
z&g&*tcheAL)C(QX99e+Nf^0y%v18!}BZ)$%lcqjKy)ros>?x6B%JvDCxw(Uar4`i?
zwDaA<-7NQ=s|%9!o=yx|5!kg96;nD`e=s2r7uaf17zb9f);_p^4|D}^V%Amt5>t|7
z112+sLHK%%GhP6O_hi!RUk@^!@3d}~<adj1loble*6S8g4CzIt&a8JtK7w5rZsk#!
zb~nlHh^U&?k)#-&Cs0%js|hI;!wbAHoQy0ca0eYP!+|Qp&R5<fObNcIM~DqC+Dc`J
z7DIClhVY<}4}w~Sap%yLqiNtAF2<0fu709B$ZCH;BkT79Ln^X}iWt@KoFpTj%pg>W
zGDLCbU&ZNm|4Vx5DEfxLk~GdrWiS}V>(`2&pkHAjrM@_3nh`X<awhDq>aD)vp4?vE
z7q43dmJs$j3Og0p&~qtjn7Vi4GDl-MTJM9(VQb20a`?Kg%Rr)wl<gPk1}3FIak4*A
z;?iMP0hk?Xo`);DDffHbpI!5K386orbqAW~qZOGDz(#1@cX)Rpm@!Wv*iUp{PnQMC
z231(}&NN2?lG|IdK=PW1;x4&M{T+sm2`J{kkb5+kKbsu{5@ax+Bt^1p{aGVHm_)ya
zoDD@Jy2Wa$vXwVaNl4F-6zPHL$x+3Rbw_$`yN}YNw{F$#L(Qc5S+R6>os8{fv32X!
z{~(XT98|uRNtD1K%^pRzNS@pkyJ`^*0i-hY4-juNy{CP+v8~11e_-p?7k}4+(RUs4
zo<S5xzXFO|1cP<Z2S}%l^om6~ESp<3Z!|nq0XwH}O^xoKfF6c3C~3tp&0T)&R{4q9
zoU8Q}W^u;w!NvHAFcdX`ow+v~$56x*juj;{*=JF+m=rsS@wPaSDetKVp2NdJK8$Yb
z@3h>DnFE}?QN=mR6Qnp`WMG_Zs@6LXN8ad~?8>s&oVNRrN~BF9`67lr<iS)v$X(!)
zeqP@j%c)@L_EN#ZvgD||KX!*juK0~suzk^7LTzblv}+MK&jcyP&joysplhy5nPWDj
zZYdfI$g$U_;~mfTcuY08{Ykt=hZDxNiqGQ>z{HD1)x73fm7BojBpkU3J3+Zsa$d<q
z46G7m=kQo7;ju>05LIBMcO@3FJS5cS!B}mWG!SHIq-o)o2hZR^W$p?t3qd*g+hHzc
zA;|)(wCa)WAnmBR8fnADN?ToTDneTHh~V79@Xygh5;qR~D8puW2f+}x7fu}mLAt$M
z@kmN@M06^O)goDPX1SZHL_6wIriaa7!bGUY6^+~sW`FE9y`z{Z-6{&sMW6tPAf4_d
z?WKmW4!sZfhqjktBj2(?dUySJu}t8{V)gxJS|17<MBBkBrrO)A>><NsW0x7L=_nc&
zuq(G77PbLi;hB(=WLun#G-s?~Wev^Vll_Oej>sE!=c`t4Ng7IgKVV)PlXYiz)0~}g
zj~J6QNBWD7By$#-lEsK%YK>qf5iF>yWJtB&<$jI^^RvY%U?yT1`ujt=3+COwP6Cs)
zJvd$i$8jZt`Mb$k!SsfW3m~9_M$cLTIgO|%&PqoVbt(g5xFwbw7)1@t0)hXN6lec1
z1A%VA1Wsl{2`fZ&n7(aHvI`Hxo~rd5wOu&2eG%=#F_^RhQ7OBav_hDzPfqCxSUKfX
z%!OJ2&*&a7oG=-Lahbqw)sNLZTJKnO!{cj22IE?z_)o(<(pm?ar@Elh`zbbie{br5
zN-$j|m=23x_6|j23;h4!#fW$8fvGTp@d&7a@rv?ve2S=K;&aKbgrcM1#c-j@e|s=m
z`^i4P3BTvpvVy|eOGAmf16zC|9l{L9;41qObh5tzNojTF`<g6+1}`L8pj1Wc(Ok=1
zqF!q^ZUo5!g(lO19En8vH2gviKqw}_WFeu1B&!0oC@C?JjSS;|Ek>5r6m?|NMg)K#
z{U-=!GV9Qj^=5J)Bm8aFjLV)l#u*E?#c3&W2@fkAXNn0lfCd2|9^AkO`p8~0W;Cnr
zc%VDhWAmNbdhE_NfDKwHDN#>OE$t|#Q8&C7c%4owClc6%Mqs*ynA%_OMOaJgaH|Ur
z<u(aWjg#7~&dDP2FAeV|hZb=hYwGtBKilY>WQ8;ImMjYAtpvCU{b=ksphX#-AxGKU
z);FGEFl3zgvbX6QL%V?$yg>s_qvK<3xcJ6>uqK4PXf*@k34YVV@T=#L3O~>{{;vk{
zjYqy~eB&XnSVW4A5!Qk_(yFsAOhlR-n5ZMm=bG>JKzHC9e{*w^4*U>mRK2y{_{J~3
zoZ=gcVGA7ct~1!F_{OHDPj_mN2i-PZct&?lokwQ(_YD+vAY5-D-^qBnm}3Y@3Y7B^
zt#Tf_;W?Yf%p;0z9&;zb&K>OA201q9L9l}z6W$dE+8c2BDaok<A?T_1b%&sL-XR2q
z#SKKtpUX8j8H()Qi8v6u8IM%+Izz~@FIhs02cL@5M^D#;1PxOHaf?$!$io=qq_|)+
zc94!%gHb=b!^{=)>+l2T37v$mW)zhQf~}^+#AP5dL&0rEWa6htg$S35{0i?|XOfP!
zc*1;eGaJhNR+|E89Nnq)sFL5c$eeh)R$K)FOn_w<3wXFOXh3(YF-nPYvAkCkUK>^p
zPIR8$Dg)I9NGf{+MwMm|{>*NHHFtI<;UD}o8{r?Q1L3FRk(&OtA^eRmSi;j^*Xh>4
zOMLn?65ec02{|yjBt5zn!e?;VN$AXe;;%zyNbMt?Vh#QFzotkq)CP@+Q5(b1Da|Fg
zO~lx8LOK%|WWrpEdE86V&f1h~>WXfc$Qf-zC=z*gV}X&mk~rfsEI9LT;+a&@ZTmWH
zeQB4X+XiBixr8S_p}Z^4{|Xy#=w<^2apA|-`a+K$E=d+)jO=#Ye}*jpj2yA4%-f}i
z#~hQ`h3KhEms`~X_!_kSf!5G`C;D}ctlh-Yce4Tl^O3S;U9=Okkokr`wdO<C647NO
zjsR;kRx5uowaWEwMzm0yKYU5A(jz2=D5*)hEi(7EGh7{y^N7-OC^(M2_%Ebrf9n7>
zvZXrud{CY0x>LwTMw6BV`Y+SxTjPO~*VG>^J|8ky>xd&gYBOLkBk=K}cusQux26fb
z=2xW}**aC45jvhn5@UeV!ugV25~v@;%_!$iU*YS~&i(3F_|MAawnC?6ZoaU^eyHHV
zmCa*(C3%D1P&`2KNI1t;aE@PdW<i({m%E5)N9N<e&fHt|6jr+!fD|Xrd*8AV1}o2*
zk*<K|myGm@yZ}W=OlN+TEN8q<Qs*YPvYJq)uadIU?>KE+7@tEsing)psSFP=!vQV0
zRgmWmT8VnCgbxAs%u&nk?v6q{bcR-lKS|94IP-^(=0V{no7)MF2Ni|;FJx|DZqign
zVKD8?GdHxsoujd#c{5Su4DH!O2KT^UuJ>ZmbpAjg>J}G;s9V(jcM|gJ1!wwEqRK(O
zgCLdg6V{Ek5gMv9-iTicNf{3%_^ffvPl<TFcB2)cg5hRNZU2$JjOH<BMIOAz2RxT*
zXz~p8ZNKUc7T^1Y#$vqykz`gfr#~cqOY8xQj7PFQ*%5Y`*AT{{NUCEWpe+2a%ugP=
zkxjMe#?Absj%_STcc2ToZyEgXFQ2u>C*gGjcHpFwyQwwi#zbpm&v&n+{L)osWTx)F
zK8s5()iWH178AaAi+v9y@h6}Ob@3a<`#c>mCuL^qjLxJ13#sOl0)uI6*KDv3wV1G6
zz-gMp=zWUq;$CrqsVqi!kf16`(1E!2{~{^-^yKl|<C4tlFPJ2FcBKX}?_Q+&A~9GP
z9VsTfa?Yx397+%+KY%Qk)hz5?Si}VX)Ug8EOALi=9w(R~XJo}CvSxN1kySn*z=Td{
zXI)<@U3bF{yw)ZZJwPI>6OA262Ct(jLDRoomxZRw0(9Oe14s@LnLFd+J}f_5nKlzN
z4kfGL%S)fm<jWw!_|1vk<jY=q6ltlmt;r$c-q~PZgVgN0r$|DwEqqk+R&qk&fbK$Y
z+cd%B&_oVJq%-zzQ1X<PY^aDWi^P`uNLVBZ&A4l`AovMQfI6FsxOj75#de;GkkG<x
z5+K`b8*RFSR799ck*NqN*|aGL8$$8HFDYT#qc^Dtx=_1g0W6uDOl)}}b1wS7TB&+*
z`cxqOlKIzI!aUdx)E5>CWeKawf1Z%Yj_1|kD~!hI^JI#~5OEB+Y4i|slZ2{9V`y7s
zF=Vh~yj*GwV#J5Jq_?`i)7rw-z8ABkP}n6P$X%&Z6IS&w)}ShsIVH4aoZ>?D_ETtQ
z+(v1(kJDC6+s!j9+osY+ezWvoAkt|)i9Z+x>xlPESj^s1NNT+hZvxI(Gw~SXEgSJ_
z-3l=zJ<66a;<YJ^jZ!*pQyBZ=1ywP-JJfqHD%4Afc>nl*Hq!jz8U#MG@JP*CZUUc)
zf3h+zQJ_#Iuswe{UQ-47Q38>KIZH`hFz_)rL?Na{3XZ}X37C?D)a1MlSXLv&8XV)Y
z>NEffP$jQ((NW1hnWO=R&gu?QX5N;Glsn(chLky111Xd6NKIO1kn&%TTcik!q_XNm
z$0aGg(uCWT%A&rG2KyI@!L7OvTs2U-PjPyeJz=tV3E9LF5p<eh$v$eIhw<_H4S?Mn
z{yqHhUK7v9)izw^P0aJ-h}zP4{?JbYC1lfHFq;HKs`wLa_gBxc?a6FARcx+Uw6i91
zlbfhx6Q{6==(fF_w!6vM(QSR}vCuqatPzA0D1;|-;d2ph7-y+r*E4S+e3@vtP#yh8
zH2mSa8L;)-RYT#lhCccO8oHYeMYlQiIAS;juD}1q!UgCg#gz`7RNE&OOC(?nsoft%
z)59`hoMjsgNu%jQhODI(?<Y6<GzYHMbKvl!t@dShQ+;wJm1~O>?n=mt>!A2hEjLfK
z^NE;|YRalS+m5kyei3Tbr31`*B9eo;`Nd8?_g`3x*U?rE+obwLd%9<FS`jp>NehFV
zG?ytS68wb2uaX9m9rYas{$HRWs+<r_0&r*aPK;}T{yc>R&X?l2#rm_8)&m&@j`it_
z=r_VsKsiPx5G&Sj6zR1O<Od)@#ePcc>fSnjPni_R@4`oF&?TtlF2z;m`e#`Wcrh(>
z#-89c907K6!J$aSc)^Jtz}I36+y$F@(fxGY_<>NA<vnm#*?^-SfZD;HjdK=Gzp&_d
zr}bkHMP|qAic0Fsp2wFM`Ca<3r0qN`Y2v{{+A+)CwSXC`vCtc}v}X-0jn~_SyRk1j
zHfet6_|_-NWkE0YA97>*s3~teRLl3hCSKr17ecjc&zra(DS#Eck)q?>*pe7rNvxGJ
z$5j}0!f3fbJ!58war#KR^P2^YILR5{@3FcApP+?~Ep9C3eabJN6#j)H>Uh9ix&(i7
zWObIBwvalQOAB>>hr+g~`!5FWXTa85-1F~Mu3djF`0qo+MmM{Rfy0b}!|bCPTC%4z
zV<k~1lvuh@&<K2$x@8L|4|L`qxOdaHm)9NVb|C|)?>2tQN`M*y#f!200-CcHO|aSM
zVi)Gg4v94bw#h>E$sF<*IG1>X*~Dx)HrK|!y>xBLR@WVpXxST%$N{aVx7@Xiw`-u{
z6VKs}1wFGVBy@HKp&EA)koHajX=(WSo})|IADeJj5mIc$xNNH4U|b+1Q`G{@20?({
z`I_~DQN4Z$TnsGsZu<5z>`#TQ1d%9R5`7ZQ=emQJVSC4};PmQ4R=T-git-R~<9auC
z3QmNWlWRgPYw8@ZQ6s!5+5B-`BesEt@3EwbD?ib{EFlEecvbD@3a)A)F2eK%G-5U7
zIbjzR>KD`@?PM}F^2fjsm{+q^8h*ae{8U4JswO{Gvq`k8&*E}*6$Vn=dK2idY+pHv
zAAyUiC>eTR=o;QK=Wcm@e|ix88M<2J8>qz`brlwg=y3rHW3_W$&Rrw8HOkUk=*Bp$
z-<iRqVQ>Ww3j#X|4lkOfaY(>`N6v7HR$*k<n~^U7TgelkB6=eV=%ST80m{y^)E+~C
zn1~`k+@VpeZQTh#CksIO1SkOpj0qvjJbZN6<(MP;P#y7#@u~VgWPK{J7ZU#j?tc|d
zDI~><wV-H3%Q(0*$QjT995k_nKB>t*K#3OL9V<29s{Lit%fk=aUN|HSx`320DfLf_
z*bA%t$)kpx#0%=j!hSgzLH+0gu*8?hLuBZe{~LZd|G*4>xUgj>=zs3!UGT%%Ej#9i
zJ-WdUZyk}$4_IKHqZUPX0?-ixP&fGD*vo_;2EJq{_1*oJQd#&ReAo}<hc_-w;fE(*
zG`;*P=p_q3ynE;_`Qga(vhagfUi64wytQ>72zT@5b(Bsl-de@Kp8hN6jhUPvT%k>P
zw4{kzF^4H|B-><FzOGGl%do@h;RrRgnuDr()-0C6B33Gevh|Y>a-vhv8;?)iYj{)V
z;aKNRyRV-%e&m*Ib7sAWZ5XAkM|gq#S6g<^*xf1d(d6TuXain!=AX7#xT)(fr|mfW
z!d1v=olpQ^!j-wneXM5Kog*5KNi{*J&HE9M5c3YjY7Vm|kkk@NYONM%f=T@zhNd1(
z&v6UzAdr6N&@0-4f9;?RI7c}xWqaYSq>`<RDZ;F7^K=hMMwV@EVw<rM)ze489+ej%
z_g=RrjPLGCqEF!o+J_aBe3wb;xn<uw-Y0xgw%v)oiq&fzpu!E58ulp|-n8vFr*$cQ
zqM@LX7=1<PZ%IZ;87PG+L~mE4hA6n5iIHxj;B@rtM2B$ooS}OH1-I<UF%3nZsVJB_
zV`nI+nLerl)uk;*;cG#KjGdX(rQEdwq=TIyHUPDz#6ld}31N5I+PJ60;8kEAnC-4J
z+~_x5?ji43#6)tJ>e6uP;G?&0@4_Ip^`>4OD|QZ~j&>gIv|fy$f*oukh9z}ch_wUo
zbLEVCXVxRT<G!48&-Ceum^q|G#8$bng~4a(LNa3m@~d>8`5L&(nSVP)3Y+Y->ZKBh
zPspHUs~m4E<O%EF!Yw`BrNdpk1!rz}h5Y5=y2#W_=RMhkvMl0_*dxLz72K*Q+v2o6
z%?T~!*`DV+$mH-{d2k0Gn3;2L&~JExz0ii{Q`F_0DO8ubDTWZ6qy=4fB0Y*>|Li8M
z$P3sU-q!s<@<nD6!)Q}Tdboq(o0<&~7<O@pgBM8*(X~R3yNGTDnbuJXI@w+BIxah;
z2Zb>aLvGnx$2(cVLCB@vBE(kPKEmf%1v>LiTqL%IpHb8#zxS^6E<s%_W*jTAMMql)
zCf!(?On@!M<iQG7<>s#DqyXl&n+Ig<4}a@qZATi?vBG||yR)uVV`YrY>?L8v%zksS
z>NL_7!)oVO2-XCA0JKbg&(-%aoR;3g04Kfq5;l#A&)3p<U{TlG0e6Wjr-v!toaA}1
z6(#)vFvzod(^u~_OsO;$HALd!f(W+NXuBL}v?C{31QUEPjQGtsVzs4lm&5+>Mm_BH
zBy2J>kZZUpC$>|l<({0*tYi2JH^-K(|9cK|fo^^>kE5q+#2*?ZU`Q~f-h}RqzffP8
zx?b;WG+D<G<0oJ^yJppHxRJ&+GhUNfne<6GE?^7RA7R5fWBi&IuLB_5=zh>Wnf5(M
zEY=)A%bPp}GF_-A^D$PFvz&D44ZzGAESpd46>8yJ<WCa6&<5|XpHCM+Z$V<s0hWY&
z!+!be6iBGCpjV7f`1bzkkThk7WLPpJD09Pd5+mcWwf?n?WW+R3F`j84(JkrW=*8&?
z;_|)y&3l{BqwmoD?0klP3&iJxyKS=E`Ykj#fSGewhYHN_V@-XC)v=b9g@q0GqIjf1
zPD&cGVaV6MY!qS-Edc9k2zipPY+TnMTh4Nq4hon&gqkFOGgp0UB5HW0f3lYd4V9yQ
zgPkBq(w#{6_HktMdN5xg+5R=;F2lpp5qVhUoTq8I2`&5Octve|+IV!YqVP=HpoHHT
z@KyePnwq61m`Lz;6IvqEH<+E=wbUefoLQCB;|xresd3U{#5?=~^caa1p{N72NbLAR
zl^9ZY6|zhxnHHjM)1?XlM-Am~o`7MF*1$_m_#MH+1|KU9K>w#?lo|NgGMdn(ng%Pm
z{yI2Z>Sg&7ob$W8Eax;*iHS~=5)@9%s(p!{ItD*7%_1!(kR&=1HiW`RlTYZR;1*Mw
zmC`O9Kf${=ej-KW$l20vH{|)7Yek;*B3mgIjnjh#W<&u%lzi;xlMtnE&dnm!SY$g#
z%&Ig09=didQ1*}FFNt2uwzLnhb#guTg}^2zlOo~ild6`S8G$!6X%wzUFFA7*czWxE
zbKC_V_u^1H@qJ~yPhmxTOra3j;!ZO7h3flfs6dG?IhnwU9Dw&-K&)0iA(SiI+VLn8
z9Kywa{es^ly(%t_UnnCq@96V{GT!+&w~zQ#w;3M+iMasqSP$SttiMET|6)-S2TjW}
zj~5VGjYPBDkq_hzlXLL~+#=B?HA)cd|Fgb3-b(oABDs=J)iR?!6(1#(S;TjEWkQ%b
z-d2aoIKV@D%pq@*hs3~24j|BKkpY@Fi-~41sQ9OL$i^nXbLWW65irITCyEvB()<Ba
ziQW03E}7v3vuNWFDOF#~_UmT3KYGy(`--bDmX4@FGdW8}ROI@v@&;4ExIu!l5<s^C
zu_D9J2{S<ehM+!U-5dZ<j!CTdx=Gp?L9g76kElU@YjU5Y&cKu-DiCArOUWGTb}iv*
z-Y*3KzAIpm0Y-rVtZ@Sa+_Gm113V~Q*mbUk5y${hKFIw-RIJx`UP`(F(Ls*-$As=M
zz!}#F0~98yZsV`7@Xrd;Gghrrg%2B*!~<*9L62+8mX~)&3J*wzCg1^gpFn@tF->C!
zY+~h29E{}wo@S>meoVv;GEWZhSAU6nBh0<-6K{y@@V!&wF{(r`c{~VMO#(XZH|rQ|
zE*UX0cgcuz0hXp6D5q1`wf<}o{}G^@-BEQE=m^?1^hwa}4W~`h&I}b^rwCXX9%$Na
zaVarg-meGI<^r`Myx2u0M-3j|9oj{Iwqx2Io0WFW6)Cj)>7#~r6|+-lC!Un#@Mr^O
z>`mIq6u!{T4tj^QyZ4VNwCjh$P^Ka3_gE5+<odUv46)oh=RV{*_Cr{T;Zo`-f)Sii
z<u%|j-iCTdM#PPjPj{>E8Pg-~DEt_WBmVf}gtOcQA3?!uUZ{+Z>6c#-@83_d7qV`M
z$PGL5-=RmS_WP3-;#za=6ohesKMrJ6pZ`HnP`0q+aSMk36_&ICgrf=Ys9b-w{&{SD
z-z8!2MEKks|7Crv1nWG3XJ>xH$mln@;pq+M`VZlWx<?w-;jDiQxrJ0e7(--gq-`KB
zP>JFW-o{|P3j05HRV>(cMn&|CuE-&8xVhhui|!W0xG-6ofzI{%BaqdeT_j!@iPscV
zmVJa$N4{sAIWCf<rH}`7S1NPYC)IL6B-I-?c89YDUn!gwPSFbGwC8h7UIAhH0<9>Z
zX}6#&nrBhg#xDA!|Ald9I6PfvlLOP5GEP;;qiWS7nj?>W&Lc;1AsD<8<C|S&Pxsos
z7k#s<xaqy5mJ?RCY6mb`e4^usQ9k6ICIIfgOb7jwhuN_z7>2Z9M@PzpRAT<XE4TY0
zze!p)Zzi&tA7nes5Av_%2jNdpTj))Sxn8!MS$a4X$djE-<1`O%x+uBCNgcSr5pb}a
z)jSxJkpL{o*G`LUZjRfvCQ3z{m5h^5#uxAh-}+NuI5sghMAJLGYc=u8{gMiuIqjG;
z#5s)2f#Xc4UNAx~X*Zj_iqT^zAr7B7u=FN_ka9C-sWpi_&O8wEu68E*&XI~_UY*^t
zrXFVi+Z~VhM_no2#D<h|s^^xed+8GF@yP$28tP~Tw4cODPdMk=%WPz<7I?2m_0`q^
zhJgm0LP0u;71tm$WSmn2rd(4$NJ7RFnf@{(WW5(ooOEMbJK7Q+=AGr_G-+zC47_9c
zSwrx@c7F*7jz8-e+abPfB2vso(8@U#4A2`-5;Kws`pbOe$0S&EGpI5S0)hFXv6|A-
z4Covt{53?5a0fG1a<GTwrX+$BV&kwaZ2t8x_RUZ(65l-%9}NfOV$@h)f*R|!Q%}d?
zeW<U#m<tf|Lpn4P_bQoKXP^XvG(ya;i4_L1{5ohQ1UTb=L8LRl0b>{;f;!Xz&Y$;8
zM><$UkdCNDALw!D6@qcVi#3YaRGxzaMiYYr^MGmVNG=%z_{~3CERPM|oe`P}XdBI9
zdXq2u$MYRD*C4ZQsT<}Gl)bI=hWVH+B$A_xYngd?FlHk}db+?ecqo_y`e*N54(EcO
z$Z+6b*$wjNB-rKZGgAQFsPf9d2|3_|6#7rZdCJM>k;8uX8IcE}>Q$t!EY-RVsnEX9
z&E!p1odEaX>u~@!iu1_TpGtA)_+ts~%9xLutoaLKFb*Grzlxptd6kzH<eZi}QShPX
zI_q~=Ykx<bwIuI&Jj_*h9{!&$RkCh-mpb*0@4D0x+rP*B`da+_Pvf^;m?%9G8Y-^_
z`>7LF7pm+?aXQrX1sdu?k`@@HjMC40>jXWU55X2!An(~H_sWUq?R7a#12)7a=f?Uz
zjGJipBH8vH?Lv#>7vYgw@)8Y=IPUuMR{8vmG5oy#T7255KfSt=?vMF&5I>Ele|nUB
zI!AvB=fCeExUnSfN0%1lpvHn|iY_hzhve<SCfOD+pRaxy=4w9N?w4}Ak+-MecE=OR
zZ~qLp{UKmXwdapO`KtpRkV=1W<K|-0CPdnVI7E;NT>?v`(yzF2m~hEaKmE&Bf&)P<
z&R<^u*bRE+r3?Aeu;3+89vDst!zo^*T22P1+?K%~ve8@?7`Pr?#CLx<8Fi-(S>Cd|
zzF-Iq0fg2zip{A21E;CERNr8|K;WoHSpk)5A<ne*I2R5`J#JuOC$%LBK3d))MP=aZ
zvEwea{v=@RLg0>koq{iC+ByspI13YJrNmh&KgG;D&i@kuK^rwFp>Vv1_$Jr2(+HF;
zm@<*71&U(|@XeVSZ#cFohBQfZ76HDiXi>V}5vXC}U|7rfzFR^}fGSiIxWea*NTGnL
zDDT=(R`Uro8FD=&opixor~ZNuKwRwNC2*#|IAe@xE)F8PIJ`)08j6AMX$EeDI&J)e
zwLH5Vf0*M3IjFBOk`SG!)thwMmv90a%n9Of*G~m$?O5)@khyGK;}nhoFGwXvEiM}2
z7jTCv%XJa2*S<tdNr0Vd!Oq(jJ13ZrHFm(N20MZ$VCO=51pN(mihVoKFb0aU7_H=|
zNM^FO(u;8A4`{+G%ppK=kRH0nfFAvcSYVffLi445sUT18+0pt%2BEqiHS0tm^sj;J
zW#K1B;}fJD2Vw)CE(cc2zQ(dHMKI=7!S}?pB&(nnY(ImChYw!suEx4ZI*hFw8WFIY
z0TY#=Mk1*uK`Ve%Cjtz%4J}+P7vNlW0$iYB-O%Lc=*M7}_OBan<hx+2Dqxf{;~faY
z$uu1hfDXWTvL8FJthEL1S<wQua|n>oqEKTDpN7<vlB1`JVY!X;Zn~R%JEhtMb*dJr
zOR)Ei&l9Y&;Oj(<FEBWjKtgB5U2u`0NEl%Z+S1V0f#YJ>3UamK9H(`WfJZ3IM?k*$
zNDzS`rhil~rb=rv;)S2$|58C?7!RKsu|$7XEQ2oOX+BZ0Be<|J?7gPxFg}ZrC`2f(
z@Cj`huFy1>R{1vwn<c@qllCPGrSgUVr%wW>33-Om+@k9P{>0h6=FQqUeN20Lp81Oa
z=t)7C*_Q&-o@7g#cgOTzCm52>54my?xstWwtXzqHU+m1f3~6^JLl^<NvD1nem(IgA
z1v_643@;Z(ypd3cNT%_hklIa{)l3l?-C9M2*Fv{Wu4K$14aO%FYc!!XVCY3@n%#5-
zngSwAI*A6fb56!3XJd`e5bL$XF8F{N7XUzQEnqKpZzjFf>?1OSItzAkZ)**A)q~wR
z!))|z(3tK8KSiaR4ldep2b|ZI&<X!Q8CjI!6a?E7PBZ99%o^qEasULo@sBQoar|&6
zpOMr)WRdvpLQ#k8B`*wR68#hp*(nup^B7w+sW*|t_=Wa^Ut_7IGk1~W{Q>g#SNtEe
zL>D|ZMjsAnM4_79RIy|cyG16^NXBC_!BkEh647bYyFQpQMZ?!0D1#t6p@l5F>Bbu$
zB#_b<o{?~6%O;<fG+HnPM~fid(kzuZ5=dOgp`Zy^a9zk4G}!pW<np8@QxFJF$%;U<
z!UKURvH-Bk$EptKIdhytoN{d^f~hq~j2T5ugg`ep$FMK#)~dvqO}Y{df`9CUvXRc_
z#S~f?G||->6SCnrY;i{`6<LG3;Iq?hHj;}T7kuBtE&H-@_t?9Bserd5CKsc;1O9^_
zc03C;jsh#_@sb^q&{fR7!B11b$K9g4CW+MXM!(2)<}YXS-0quW8%qR1#~C(AkxS9l
z6iUdWruL3R24$^iE6hYj6C1{kY0iBpSy(0`@Q)JfWQmpPSeQA;E)+zWOReoq>LXD2
zj8|>@9lvE+l3`u{6j9kag@V~~u!6A#09>*noT>uD&Ld=$NHMQ2C6c=3c>f+D7I7i`
zRkqAOfK?_tSFH=wFgJG#bTrmy!(2qX{_u1dG<*Gr>-}!#N)eD5b&R%L3nMWO(BS9<
zh7BU{wmTRlnP|ZE`eSwsuBEzc=M5MY;#~?x5ch%pMeGB2FxE3O++F=ocQ8_fOwHn0
zag4{z%?c^40s^i|iJT@NM>fD$CmjWQR)Q(Tggw*s)hup^Zia3c2eknIpvtsp=4sdh
zQPIHh)h4L9h*mAy*~gi=4_O+!y0vWNs{p6Q6||6@;jQFrStac1Ni%e5lm*e2Kj{>r
zeGu9B>wun<ezBGAV9dxPX;2aCbO*nKa=6Ko_CX(gfci%Ek?`G+QX;G&wXd=FXhsU>
zEf1o=8@;aAC%5BKMl*0psA5esdb3|+?MgbHOBx;d3NPj-jqZHx2v4u93SL<?wl3(*
zoiZ6(ayPygh8Ir*DM82hV*RPtu$|Dm{0Bx0O)`}iSYj--!TSgrP>=ywYl#w&K{uui
zq(OBSVCpetk_3#9#rR-h@*!9?;akx~kI@I~@Km2-Fv>d+?QHSP#5(XwDR~7hDgQyc
z&<{Kli)FnrC}NX`1eh2l(jpPV73fe@63Ir@C*s2SN<0VKm>A3;{$f!r>>#?hbdhQ}
z5-?2wO#u_T%tx(dYx|Tv-PN5`8LjP8zj9Z9D5O}F#^3L<^$h+tc%uhEIMlDq+Jyp*
zUO)ptL_sqc1iFfeE_`($pciZ*FRgM{eJAoKUkR%LwJGDX!zxf;{nD(CU=JmN8BQL^
zXgGTCy8aT_O^pjE7Pw_F^EfO00wz;GIRcp3Lt{o0EN%Qt^!U+gGR+|AI{q%?aIi1{
zg{pel9uzi7f%y9>fylcFdZ>;_5R=i!V}Ece=l0=UtEgsqGSjIXgb<q-cvD;n@<Y70
zW(VjLszB)qW5p}FkEwHc54sV%9OBa|Jx&YJ4DGcCTrmD{jCD}*ShK`Ca`aS|d;@?2
z26en$jnsn#{w$WlPSD;8L6VNQOWd+8jXyUpP_VcQr_ccO@lHb{EU^%!L!QUZo=K=U
zlEV<{8k`tZ00BMdq5wVqO+t2?Ll7Mn@ybWT&h$csUHNDP)E0rMjY~icED~zqsKmcm
zT9Ryx9gaUDrFC_B5pc#-w~^+I{7f%u@91WrejEt4qj(wtFfa!0-Y8{>v2WbL8{O5|
z5TXvaK=7L!Pm7#DJovDH%m9=zM7hA&<6<4mnqq*lL;xDr4Kbc>1Oi*T8V&pPDhv1t
zqc%vac7ZEOO%0pYGp8US1OsT%W>UN<v>H+yM3;~(bgJ<YWM20%8SKYVM;S!-KMa`q
zAQ@9x<>@mmPhjD3WL*9Os+L-SFcRYiKx6E$gAd4v(>h1M6PHwjj!&|^sUzn?z!VZM
z)zvLa7ltjMb&Xu@s$0a!PbGmzU2S;_jR2V)cO*SdgwRYy5PCTgMr}U?nEA?LCZS)v
zARg{w%=&*64?iX~qdznrK3kYABOaztfuj2}M73#DSa1FWZFi~ALgXW;NNS~&2v~pK
z2q!gr1bhZ#IPFuzP-yyQw$GTCHpFN>P}oGG(k_0ION37mRO2eCNv46o)L?tj#<uNK
zbQYA1)^ct3DEE2mwogV{3LKae*yb|~nJ4@SnsaP`&BnC{h(0lUY7SoEM!(GqJ9C#f
z-b5&l)WG%%suJi#=n_e;>DY7f1(H9*9CZ`Bh|z*3!c6q7Nt<p}b{ft;P9Up^sA?ig
z!r2irtN>Y5Ktb4(psmyLunaV70Q=J9lap|RVTgdH;U+y~bp%0{O@LYCsRPH>ve-Q7
zRHW8M=07+}y@DMfN`=V6A9fdfemau^O=y|r`wO}drGASj^-KRc;r%48vGGz8Ml8qJ
zxHMO27Xjm8(5~Un3FuG95Dc)A<Hew*Bny=miryzfCNH5y=pF0oGcw6!f=o`{MesSz
zXmz6kP3uW9MHbXk|0RW+k0pnj7YP{!0evu32|f%D&6ANB(SVJ#0p@DKGe-y>bdgf=
z=lyR4m~mNX^FIhMNAA3V9}r;XNK3m6FfV6~>zfDAe&U0`)5vN+zb2z)_~Q*kVJ!u=
ziO2@+8pt-a|HF8*%3wkoP2vr77GnFba{nL4n<ubHGYADF-W;D2Z=NaI%&SF|Sx3nh
zn;{XX6@M(IhwH`(4ex9iyNn?7Wh&Yltyx8s>4E@p1>$6>*;`W}z`GE1?cRtYftp})
zm+nf(-RkN6z#;#F+@^3y!k<7sV&Ylg4fJpf)aWrdq%yDWG@1F{!;RxsbaDP7OnkpP
zO;3DZjAyy(G#rMpBySY1F&S)LQs<znj^9Z?DeXJcUf1~!u-7=S7yLJHomI(%T$fvM
zjQMKF;$RYchAy7LAu1lvAE!EFA`w&lGp^yBdLNj3!3{zpwM}(OU{}n0RYYru4Z1oC
zf^n?DG9DPg>1+Y^PuNrY*XE{40aC%Un@Z2^itw1RnUtQ`Y3K~JRLz(v2hI!7%TV@G
z$X-e*Mba`RRogBSy-wF1RECb)>O@bIHa=j5G^tq4#6wL*EK-Q+ygst0;n?!{fWwCs
z<eY`9PHQ{*x5ZMGvHpcFlG~<aIf5ir#e#29y0#UiYwIIiBcoG=!@ldv$*G@Ov9!D}
zAN~jm2i^jKF!PTS0Q07Nl!pSiUhtl;0MAL-_eF%O!%{IK$zZ0q@yRHBA_!J5g;1~H
z<(<MCHZN%hEJI{CAw%l85AXHEdmVSN6*~qg_g53q47wJyB`^lH4~K$?3R>aB=2-i!
z-vyPg{@N_XVu#(vKd8x?a%e@_@(Dkwz}^odV|6_`M|xv=Y>A)r@u?W`*Y!t^j5YSy
zLX_zl9h)sQ9s}gJ7L471%oJV5Mv(R0gLO%UaE>rdO~)&$TzW-d?#!A(+ZS8rPsCp}
zW+0@B8~hrnB1ZGc4F%Y3VFQk4m<&XZM^5y#f}d~rWo}L`7rA|j`;AJrp7<;8u}o}V
z_nQS^jhwok&JzpW)!UpW*5LM3A3RbB4m)sBR(-w+UqEKVl&4b46R=5@!BVw5@odO)
z*1t)1N1_Tk)@AFlK@xmP@7AQnh;NW+Zm<$jY%j@y?xAfEMXD3}QCyf|h<0{qCmk^z
zHfjUeYFrOn<$`L6F8iF0J=HoekuRaR*k>DUs~eg~G(LiYqPz?H0b{DX-3q(jICU&l
ztC{ET><=9GgogkWr05gwtFgI+V@JRI2kn*GhJh0yh4ck64LU1S*PuXzKSRXRZ&;-P
zzT@{%RI;cTy6gCrp=WA;=b%5Rm2vnI{e{>Dy4M3i$LJ4t!uVUD4kKmoOYh&oKEO--
zCd%@X!`a7!>Em&xO{I27p(mQC9@d1$oZC*oLlJGKm31gAXlMUmHgUmGMSY=c8quTa
z+olO4ocSBLzODINDucSi-58`G>Gj6dtb(ZlR>g{GRP&9R1m@jXe+UKLa2ZnVo7=iT
zY!I3mDF9~rX15)`8kU1%lL_Nx`w`T1U*vj`qGMc$zI&wrny*$B>nbrcAT~_?A%@UY
zIzKFywaX+?8c3Nyd((4pR%-LMu7eA5ZtgAp%Z4gLmP;ufJ45S$0~b{?91x>GJ#dQV
zIH>KEL919lu-jEoHDrMl`a9FkVmREqne-qVG>{D%Xu_W49ZKDo5&#-C1B2CqGC+AU
z!!EIuS50t)qkyN6Df*G?owTTihHNPCO|BJumwcoRnLt=e@PQ4E0SGUaD38m}hCmsO
z;Rt1BNz|{Ne?8ah)05NFqCdrs!6eP<1N#|)>SrBdO(g!1Kweq)vEzLS_KILdYgCR$
zkLxKrEZVLc!~*cfq92`AiUV_5GF!o^sMb{&a>N9a6`Wt;uJSx#J5sjBX_KWxgTIV;
z<6)$}hmrcatKyKaM|ne!V?B1XmH1ll32fknrTMPczqCAlQpw3QdSA21bZF^F@4}ui
zH8^?%qeX4Y%1G=3zaP0(n34v#WPh!x1vS75ut1YNPvA-#Hw%@6p+?NW^pM~eU3;t8
zleO}PX1;9$8mOfCUc(Cn{fPl=tjzr^0xC(8kb|dHi2(I_-a_?7-2xM{A>=VGAYWV9
zWLlVHg6xzU`}V^?^=F%aM>m-msV)Szq)Z(jkq4wibhUQaf0PzfO_CAcB!43IEP#r^
zUsiD13m%0l3!k?JE&(?4Eqi0aO>S%(Nd^;Mnjb&uwxI=Jq+X>U7*yYZr3~lFR^JRo
zV;8KLT|Z%amjO#uE5WJ6>MGrN47wAHn6IuXOrm92Xx{O-T6v2=`XhOnVkVvyKZ5*_
zr6~pZ!PLDrR`A5sTV`%9WFpRac-NmQ@u77wsSu1`nNV?+GKoaB1DruIiJ+M?;V`at
z=`zcB+@*TZc#Z|}`bB%q!OL|D0uI{?TIRP{5@`&L`IDk=CQgAZfXW&NzJa0v^GM!>
z!>7s;O@XViqAoPI;a(vXdr0>vksPK6)KK)qH%d4#Frd^PS<l;|#Fmt^t0=RwQ~CnP
zpKHsj0ZfH&(*F=X09s57q_D4YCU^q8tvE1VHE?KP`=}3KyFM8<LYRQhD=%u-^+GYN
zwA+Cat`~Toe?9XTJViam@XeX^BcrNYcH;$awfv3Y2K;}z*5W~e@su>Q!gZc_jUqz&
zLJ5~Gos4<vb8<yQ;*rzyBe}~Xv8A}*s8BzB<rrH(E%p?)PgT7a1S*CSR>i}laK;9b
z^9cJwT1|k&`ul0JNhWTvS2sQZ%zvs|_JuQZfW$>IHBX}rPnH&;KwUPBX0An_xf*Rp
zK?Mq+qFb<Q-=+czfV7jl3{!gOvX;Zta%D^!<O}-7l*VwL>U`*b*>M7`k9Fe^eO<*w
z|FMCKh}u|lSs7bUF?f}A+$&>iD+aHr=z6UJ<$x8@FJTGRP+xIymAM~LWhq{kDQBiA
z-<XPkP}6Zw_I(G=H_0`GJpyScP_3tF;|<sh^X4w26yP^!oUt=pTO41wvDe(e3kZLc
z{F0Kd<jozB<Tqs)x!-aGV<VV)8y$hDvvUaw(7`;p2Hm9oN99ZB20_twL8Bmz^%Is)
znZn9_R}?Om8+AOU#@ADqRmNVW=H_tyLUR6Pa@$?ns|dG%S)0l<zH5V#Z7Ztu#2d_d
z>|)~**tMB@y{!vu3X3-{ZbyrVY*zXoGgN7=BLM7Sne+tK34=*?@imm$7QD{?sMtF7
zB>+w9CED4;X?c)uVQ)B`X|Pn3t?i3b)K$=@I94pq0$OMw_8oyRgO93$;cLDXZ{4gb
z5`_jD5M%rxM0-(8y<bAqfd7!+RR1tbrK^dO8k!&i&A}1i3}BOSz#W?jRv7XoEmKKa
za%jtdvIL@SlQby~YhrC|NZm3}yR{gTNww~*Z*^2Y^wy89;!o%+sRy~2UF;~PNuD7B
z-T)O=78K?vy{Rva79+DWG#F*eZa$8@@0|yejv`!0oqNbC3VErUyNalTVPPH~8r1|o
ztHuk1Kq*%N4B4fxS}qc=T)#VjcaxNE8vL>)V3rz%7;TnNo7xXRpz{EJm#PcG2hwsT
z8ynS4(Jz-Rn{Yi}#!|uqC8#-!<{Tr#!N+EfqlWOCI)wraKL?Fzb2yzYoKE+UC2sE9
z+OtOAYQ>}0?FT%?-0M!@VlN#JsmpKDGD1-0)=V{NHw<}z9dgQeCn9&y?f6seZTvTg
zf+UOj7+)VF2Q?XzVBcD?f`xoTu#rKd&3S<4W(!TSy%YZF(EJ0bAXeZrl;|k2*dlcD
zPn_s0d<i}=&^okd^Y=~oIr#=Rv4>-bVF>)xDmRW;{!2Z(mCp%=>e6L(CHxd);FPh~
z3sqI5nc%Q&StGWcObRMBT}WC8tO>Hry(~o9m>|*-I9?MSK<cD$A?SfX`<GB{K6@hx
zrQYuabl|+7z>7+uk26gxr1Y8@K{pv~3d%l7YOqwj(A$mCctZE8Mc@+v4iJP`pht{6
zOwP6Q;4<tGDzS(f;0G*Oy1EY0i{|2~4`xF~Djw7rJ&pk!M;HT3fq!DvuKCN$yX42a
zLDP|cu3%;gKwAzIfuo=&1o*L@NIcwQoXr$}iTU4Q=&yjhgOCjWsJ&2)gsstv5X}s5
zm*$;VT#$2yFc05|E-qMvn+M_M!MNGstI=%y@kHb4?K{&R&J+DMmVF>;#DAbz#nv)-
z9xspScOAtmpk8cw%R+c?&aB_lkBbj@>PYNWi<NydzY<r(PFh&PO~PITBpfhOf(H6S
z$sLnwmcdyKL%OgSu^jIVb<5tFJlMr~+tJ^mJ)UEO(6IlhXZ^gLskyUqS4CoP*cTh$
zDK7(<{n&8~<#1n4ZZPlRn?C!TmAkAWw%Q%M9Z#I-KY$dpw2$+|>fwV|NfQ-3mlLWh
z%w}X2mwBJ+EW#sc@5e`#vDYdFuf|HmAiZ00$l8kB4HaeE>JEy;*03ISI*svcybPWJ
z&56k9;<1Y&F`g3$ZsbDSCOqa3P_z+l!%c?<v1$Dgz!0$m%+OIGM(7EV5aoC@l$)=F
zJAO%Ks-`t%Pl;aC@5fR4Dq?HI0ar)LPw|#8ko-ha9ffrqZlU@LMGPh`uIDzJrtf5D
zi7-gt{{2*gW_ai~x#O3v6a5_B7ItP{CT2sEU*}PdmWss%j6^YPEZzA6yYJyGAvTfV
z(t$&=><!1GrE;Qs;3>o7TI4zUmz9^Uby^#QxO~^^zk7rS+HhvQ0u+^Wegvyq5^n7F
z%G}rJqKeKClg6t;m6sT=Ju-<MbNZ7)NjC5<*;``m1s%g&Z_IxD(Gz8gQ_tlqrOx~@
zMMrD8#NMfh;X5NHa4?&Qla$fSkYcv196=I7h!)~pKW;!*ofP0><*xQp1FgqibnBw|
ztQX7?9fndSty^H9O|iRIo(pzP=MGD{RL)f6uhphitX=vy>O%c=@U}<_+ka~g6ed0M
zrz01wI#6;)IG9&${1N%ot?*96<demZgtwL}EE4J4R|%p0P!e~gfq2Ew#i%TkKh*WL
z8Z+pdafZf>&04CxQL>~l(oGal3+Xm2!vHFDL0n^eh3bui0x78*XwjI1{}Q5S@1{a-
z>E_JOVQ!O9p<UW5lK{w9&!BvdKjG!3Bj2`}+LLPjZd;d+P$#ghRP3qtX*BFbz8gEn
z&KI5?%A7C!qfmB9-e5e-RegSgMX@(Ojel;#?C_GjeQ-Bv=CCjN?6^0{f+YI$%8Tad
zcz!7*w0ZL;A}02jj%+>i7i=Jr0*h^#eU-I*aTgvHPqey2Z#IKPNm8y3s*;*sBb1zX
z(ua@Jj^dan+NCY3-_b-E&w4Tuf1E4rF<L1=WuP6uv;=pGS*0Ns3`I6tPhJ{!<LAQ%
zv#TfU+0-pM@<LRyim=-t10#cyWxxmLsUTk-fl$0qn|IT}MTnrHtIWV=9p7(Wya|60
z&AMR>8{t>Jm<6s%kI9%BeL+vz`d}G%^1#lQf#Dri+y;ORaJJ_GC)DW#jmKwTNA-O>
z_03}5ERmal9^+*swqXwquuFieb_K9H@LMq1z6l2|L2vPAe@aqk$$@c`L9AS7-Ft|y
z#P66#*kTFFMmq;OEw}L|m>y9M-Zz+F;E6hKsgwqODBOtwPwP!4ume6&8WjhSUX_=(
zY7vJ{|BgdP&pB#Rerot9nK_n}!6@rg)lMM*T;#z71owTGjPm{hfru?b0x$2}Ob9x6
z-z5ZI-WX|?zyb2H(rf^rx@#M#&`c_%;r}+;*p&Sis4VUVQ2Z}NaU|dOjEbRZ!^niC
zy}ZJ5?WpFfx3B)D3;tf~K5QN$+r-8|lpvc!b+4Lk*G1bQjd8&fd5oG_IMq#@Q3zto
zqWGXOA$r1q)o3En$&|#9*SFtw*ufIbm9TZpoeubLk6yUZzep8!>XqZ*6LFs9o&0#;
z*@JjULRCHvNr2$f&fsi#)F8MeY$=gABYI}5JK))q2gbrN!ww2)*nGpG)#sW?=8jh|
zMcXdb^=_;W{0Ooh^VsU6D}!?%oL0S17s|W^5V)b1+<4y}8X6qg;IuwQ{CR!P89@Xi
z*RnMH|5*DL_&BHZ|D^2@)tI2ESjr$sZ4tDjt7TL%AtiMUins?=p@{}9X(wqjCND)%
zw-wiAvFlRZqDZx?b#K*D*R9KPMryaNn-<Og`+c5s-g#$|DEs^8^J(Y3ocEmPJkR&J
zoO>CbKt9nJf0OzD*j7ld1nKAFX(gY&7_Gv;5`00%r#lxIpnxx;8YSwO?&q$uN&1px
z%Nl$dOEz}$r(31(nAok-fE(qXW2WV3og1*yi`?+?Zyrs0$&a($J81;XGRI})V}AGn
z_&lAX?4&~E0*g*h2MI;&(71SwphIE`8Gdc*D>y@)!t*w7T(^6;`AZrNuM)kXwrd1~
zUfg7qOP8hJ_ZcRDd71GLF2eJ2M`F971LUL8!7fyMv=pl+@zL5oQ%(xcD`;G|NBz+_
zN-?)_UFjv|jq65C9)oD_=Ri4q*!>b;xE^-;O6)FyFG??oFyS^xm_^VsP87u~fR)TY
z+&Uj@lrPQ>H{VVE^8>rcn*BShgg2}Y_A$f3qFt9>fu>u*$luqWi)l%q!0-13(QBAt
z9el<6q#>_yEooRQG#mjM)}rg=YvlK_)DIn|&F_N-bU(}9Hj!8o9zTxhK<Iyp01WnS
z<nDDh#uAv{u%_dFvt>17sm67O)Q4nq0_-i&@oc>Pjgfhi$6`%Qk4yxVuX!9+NVyW8
zem}0knefazaM3e&I$qAC!Q6Hl%gua<&5u)iB8$wYf|m??_nYPun2#v|ff$r0f^f91
zpZ01(odnd8S_vmde218($N2=|88eti4}C~h&EU#qDYtge#S%R$syQK(5|~Grrs-7F
zWa#}OYW}TMS4;rfB$l|EmmLpkYmK^>`sw?wj$6$2-$KVuLD&$8zOv%I@C=!~6ki=-
zoK(a(Nz||eW?`k!FiQd(23|kPJr@LU*Wh-!o0ONlvS3=*hmqgC5N>{ikNEB-UU;MW
z;Fx<h!}SGPgQx?#fN%&I-zSbNP3DKCE~l2jidDrD$FtZ~e3@)ClIGB8GSsmZ>wA0|
zD!V<tf?*HU{GRq%X2;dRw!tRb3I4P~BB{@Rq{T;R9n1VytXVD(rSFMvuBTa!Qs5wL
zOh!KTsFe!FT#1kD20L?vCRDJQllR%wD(zTchJFJs{|OH)m(%z|6lmACUqL(5`+WX6
zQe_v?LIBwQ8!g@VD6v!{H;uMTDL%Kti#D*a%L!u@-e@#gJ2CRI1|u&^D{^(V(~#H6
zU>MV5;cc3JA|Dacux>E(5^SPfOkWFW+lC7&5!C<~%&O!tb`^KaY8IDjN5ipYNM3Bn
zKVyk2arnsi;&U5+yrLdM;ipDo@fVTPuwrOo-c)Ycmv~RNjcyd->1a4<sAbgnfYef&
zFLtCQsUt#&b!XunV%^Lv(UqrJc09xp7ILYA3Zr#IPlPFuAqiVO)GS@8n$!W1ojL7f
zQP`F>kP*BuWt5hW#G@=3`igpF;h*AgqL^Af30<q(ZYuo{BBuzQHvK!Aun73<`VsN4
zrI=HOg(CCG_p&rL&5Dyqi~G*h;ba-|247P&JQAEo>x?Vvc-pM|59mEcH8+diNME71
zf%Mi=Ur}v4x0&&mA<|sPB&{USBx5uJshOOShIKpm934pA=ZwX2F}D>u<Rgi3%OBP$
zr2vX_`PvC9015(?Bcwpvl;);f*n%N(B7kyG75W%=c=4brn5>e4RN)gNq>#o6Dtw_F
zTz^mm6$dZzi@a-M5HG>BqpX%m*P{~27=VM{J-v>B%~fn2V$K~03UJP2{Aw1Htazmp
zkJaSX!ogu$U@|MSKm4|`vcB$#(m+L^6<ih6Xx^?8;U~7`?8}QsFiJu_&4K@=nNsfA
zEf3ttCQ{OpsWR^>6R*L2nKNQKH8;NpV}R}yC0hz@YrBjKH0+VHhcJ{^HwpI})sOa>
zN=*V#TF58T!W&Tr+yFCfzB~+$DbFJ>2{q+lFuV`7o{epvlKCEgBp*;+U@paUjgD9T
zm%;|1CDU=;|MKPCr5J+cwn=8rYUs}*7>DlqehTs0%bY(3w!*`ec5a2`;k#lZI2<aL
zntVLpnpQF~H0}n-GnqeHehQD^kBUy>S@xE0EQdIR*1XLr1Ng>c<5LhYYOyv=#B>z#
zSs6c$lHV|}m|7StY1gxa*+u;Ei!hsDr{s>dV7hm3`~oOiDL;kp^2e7A5mjXF!{kqy
z2;zTcu0Mlf7AUZ>fbeH~^s!7^H+Ov3s&Mlt`a-Yps}XeS@b<bTYIkzYHXUI84BsJU
z*{?Mr;XgbA8&a@eH59c1Z=pS&eo(l1D3jrZz|-3G@H{(f0W}w|R?VtZwz#LSBfLd~
zK<35Q4h%OvC#G^Oa{DW<BsO5}7=)Oe57(wB0<l%wLp9LcoQzcAc?x{4{5qLm!S0}}
zmt)gDt|oG(t!3v+xam{0KU%DgAW0=n6C(nUM28?A_?zPb?Y-^s0hx=G#Egt-Q@!Dh
zkv|>w!SzZJoKE9PwO#}X_uEmaU|IIzfh=f?MX1OXSpaLMvfR&t0W9)HTOiFIjAUS1
zcw&w02o=bw2V!nIT601s6>t<@;rIU{bZvO0rET$|LN~(EGI%h+3a6<wzYW^cY(&o$
zN0*t6WfB)mpu(uSU0hmVN^EJUy7Y+@&iu@kCIX{Hx%cl{8eEGlErKoC@?A-(Pk=Z;
ze(JSE{@^R+XZTh8K|e+tXyPBQ8HezXG0CIyt7lWN?b|N*b}kNj0hjSU-Q-W^ufImJ
z?~<S4Im{lRRGWNeLmU*rZ28CH=IbTWZ8-a1f=4k97N^X>qiCh_$;XBm51<YhBqB`1
zbWLlG3M2zL+Wp!X6+-}w6A|qJI0&Tp6>JZA56P66*ct1)<TQj{dDmMd72$4^7=dV$
z?IWGtjhlczdP<&zopw?bbx7UAuntEuPE)}7I(rvj!ZD{JMi%5nHTe+bN0mO#QN7Ys
z$OeXhTrb+TGgh=JJ5l$T<)_S^kQsu~;L;-><Ld@(ptPImE?AJ7WX4QCjPpsYU*u|s
z)j>tv-ISSw@T!E^_E@S~sI6cx4Xubwgs=(%XTa<xAEMNztyS~+&?=WPHq(c#Y$W2O
zzIGH&v<x&Am@jHwZIg}dOorkiYiC=;*dOH^;s<Ht>Vc<)sRo(G=SE6Mot>SfRi)9n
zU_Z?}!c5f+q;MP<xT|)(<8LPKUvLR%jb{2|uc^3}reXhs3c@qiZwjiWt>zh#90HKD
zdp!G#jEdwrW!YLR{lii|97Bn`fc@m0F!tY)VMWp}U@(JRWDFFz76&PWB2p>IXuyBA
zDm~N#?6-?NfuSm@NDWn_Oyb<vxlcrMSGc(u5kf5Sbu9ile9c_-T=Dgr<FIS^c&^QG
zjgSSF=#hco>?&E{#jqgWnHO&Qp8KAmMpC=vxS|;M_Ze5zgiaqs#R*zls`F)oa*@n>
z$#~~h=pvVabGIWJ#bQ?>I>TC{xOt<}m%EiA*1LEQh+}i}(#X^vzb2fE%!0$R#al{N
zt3Vi}ItxwHQDnwS4Fdx6gDUiA2__oJd#(wwhy`lEj<tDpXX5{j>vv;K#V+Fo1mHws
zS#4v1)NC>LmURF!rV;cxnZeQEzWh<>Q*~Bz<7{NfVmt0hm%3r*U4K+h%)6KvOA7;n
zSJ&=_h9ET1td2$6hJ=xX9A{kU=eI!%e(4pO7N$8JWxzz+sf&Ov@Ig<CvRE@hSAOmE
zeKyNEYOi!)?x@a%gs=+C(?|Mr1VC{Mb3wi69-S4@udOLkNGT}(WbIMJ*Li4?ZvaIb
z0}Tj5yiKyD)dB6*>SjJZnS@vvc-Tb**Aij7^h~M;(V&B9vjEq(s)N2;>o9FGjRs6<
zkoHzva~ooTc7|B1u#`KNq^|?Ez(7YaFj@fm;IHwH7v}9cO&P49gJJ@x&lIuU!3M%&
z-cTFlO+T803Q9Yk8m5fx6&}ji*Q;5sZ4hoGfm1-2l7-LBkoe<y`5E5MA0O&OS&?}a
zJN~CG7mu=Gh(ABlXGj1F)5(eqcJ^o=%*7Smzn+@!#FRQ&T2Vo%^q38r?3i;v(wCo>
zt~~d)-r%REYkx-p)I{3~8?N-r>5p*0bmxJbRJnXDi<2C3m%=#rn~EbL+hJwFU+G`k
zaJKRD0<;)mp#UL$ZqNo0V0Jjd<p2ao4r17B2ENB7f*S;CX3tCX3uqsE*?{U2+K6RR
zy6xv%DwUuwp)$|{_(qkkk`vxl&+Dk1Q)sQQ?9UWWWY$3u^r%zJOG}Wv?7VhljJ)ik
z{}R)A0`sz{zFRsdRO?d{7%0ToqqVjV?P`4eRv2BF$F&~RG7t-j8NlpPqZNf>x%mKW
zm!PhzSUt2){$j`ahJK*!1bk@c$S;ZJg^(zje^)M6kfMchzkHJa$b%tBH;;r#CW%-9
z+7C#BL8BrVoHO`F#lSwlfSXRB7l@+q3O^dio@iP~GS>X(3w1W?(D4<w1;Gz2jrmlL
zzR5CL^znWvkdN8@UnE~C$C^u;C@;USP|DYv1zx8{(>`SK=}O<>qxp{M4L!J0osESz
zE~YY@jHSMl*8mXE0Y6UWts$Gh;ZFIrrvqW1?~Pq2hD*X2rTz(JJ3be|Skr1e+iU?G
z_#Al$;P(rLRA><WL4UpZ8=BHR8GH=|Q5LGBk)YI~$wq<{$?CHeIZ`E&CJ2G}eB?ZX
z9dQ_InQz|h6*=d2g@eeMgjtUkITjy4&cR3%M2^K&Z^*fKiwxvE`LEuQ^Pr%rXXI!p
zgvPg@^njd~?kA;u{Z`<$BF8}>Sp}S8%Ut{rr~6wBYm6Kf!2uZ}IO@2X5#Fl#aLroR
zm?)v7F?xpm(z}anwnbgg9GUXZ(0{eUe1a3&QXe9I>}9;lgIF2$NqgZz%;Z3Op_1Jy
ziHD12#yQ#xI`h1#xJsTA7_G(Cat$8P3)jevMPaSnpi<gi7$>13$A^IaDv9&hB1DB7
zSbrGV*~QiJSlZIJ7gx#+2ex20V_Y~RAY?c9W!r!-j--_SjugVDuy3lhSQ<FeJ$1s?
zcoAP)7;c(0NUpXHHy>2UHpE^(U@9vMi!pyRGT5%+*iS7dfwF2930NOLvK}H5qhXJC
zhQdt`v$HYI1)Yo0mrB(TZg4aJ1msDc;0!;9X6KkMKUe6<8?KBJS)+K3#csEsPXdy!
zz_yBgV_mPyM9kBeI}Qh)c|0$M;0)#kGIa|xZZSHgC-9W-@Y2}ar4``kGN}W~<=BGl
zS%KGw;Y0_78FUOgjo6Xpw6h(gkrEJ%<#{9;{sfXycf<ZU59d6ycFNLDF!D56(LUFj
zf?<&U0+kWUkO){t&<f1T)15a#X(#~9q^mKNm_tfK2x!9sOPTUsSJcS*e-NW8e|xcE
z0!;Dso*}6hyjep^*>naP3c#o_1vpozq977WVApBpuTytHlT-&Z;k|a1@O6a3U5c!j
z4F0!^bAaq|$#^5=VEa@SvI>Q8D6X{W{rWNVz(NX#URNTHrAHSU<<#J%Q~@>R-AQlN
zL&>nED&CQD&cC_}d4%VUJ{=Pe&y6Jyj}kRnt&__3`oZy(q?h0m&cSS;MAc2)UYsXN
zwV*i4m*8WW{IV^FaT)JM`D9C;y|fB-9h-Qi9GX!cUpuJoL>=9us9;&J{uaVFQ}?B)
znlx9h3OZ~TMPVg8iw0m2t*~_yA$~xxBUWpaIvq|jGh=gNG~GFK9y26~;%aeCvNiBP
zo)9U0NasH5aY7Q{$8w+sQ+g?kqLAuC0%Ql5%dwWJ9c?6^E~wQOBxdPY76hAQ4wML3
z%IMZaMAhk?6Hp;B=r>4!CTXqLj<9?!f}VA*ErLo0l2HUSjo$+CGXB6O$|-0J%6bb7
zVq%UXQd)ga+&~N^3nz5atv$hNaQl+oHzRwJyd|rN0MQ@Rv{J66waD4$(&n9bs`I|R
zbUdL>D08+o*wa@c-(;xszby0CWh@i6^pE*0<Z9mfG8Qqp>Y~4<hE;@pY!ahMRie?P
zNqQ8Y5r=KK=kZ^2@GH;;W*hO2@NSf}w-+}s4XB~zE03?+1alb%$W`BP^LSj*?ED_T
zvBbb)bGNu`=(P$4ls4UgUaY{F$#iyVd4*45&{oDwPUC$N?c8#7{=6YOk2Xn}3O+}N
zu*9|N*@sbbiqA!Ht!`opdSN5bHvX}vw!~edwtUW-@fn63AKHd3MQin8Yw@hrrXhIP
z?nTw50UY6lIRwXW#DMk^Rt`$$Bt*x}Dg#CZCg(%-9BB)zVo@h0xbU4+(<;r-I;oAx
zakR6-&2O+=$W5Ho5*hly6NKyEd`}d}1QbT?EljthktpCFE(uWnCG(eP(p9)Y+;Irr
z@sfY61H5;udI<nVPzoC?$VIgX3+f7CLHH0ZsjH*~g1Y)n@<s^`mCBAkQ~v39mj&LX
z&a$eWjzIFyi?L&>@O=JIbye4oc^?gRZi2!nDMm3(Tg-3<JsG{~m26l{L=2Ly6H)#~
zf|XK=kl}8y2oRVrHKTZegLb)@)yA|;W~WQ@c(dkh<Xw|>ONg>a3|P@FiD4e?{Ze}$
z<-HfWdlT0XfU@zCn57AS>bW7%bZ&;v)fj_l5{A&{qC_DX_=1f^@g$3u%CuNhSH@}r
zj4)iZQ)+zF)T!~YrVhqOOkGAJf>}1$ERhEqp!Np2+CC^07B!nn6H3F1RH<#ODq+wc
z$VTY`*{1X*w_$Ozv60LHc_6)T{-M$n`4oQw-7}Pq9lr=SZDN_OmC&5E5~BXc(t^?@
z3_USJ_me8_fTU4oz$;9(4P`t++g-{KWTgANVg1n$BX69kR~9Z4eh3TG@fpN2S107N
zize+jD7R9C&1Jc!KY~`WP)ehX!L{Tsh5|S91vhl0e;vxoP%NN2BK9S<xAf#XxVE$j
zAJHo>)TAf4d$IM1mivWg<n%>x@%FV6?9OZ>@Z4N$l(keo6Qk?^Y_X;21-8s4cA0*J
zJenn(K*U8YnI)8>3W7=~e*uiNSjD0!F3dkme@t6NeC~FIar0VOSs{R2aCLx3H22$9
zDA*|wk-iyM4&_XywXrOs-|RX@BNXg90{6$q{_7@fL3yEjwn?jBkrYZueszzkpKur;
zaG`Ao``?h?zes@6-c9{BvE8Q57s%ikrui(xgs;>jb~SpT`a9T)M)UFEmjkWnoS<~P
z{M_3^NJM;-wP>cGUSPT<9wa*n030U1(ru;ymX(s7l3U{Nyk!16|IzmNOyO7`az|+&
zU62etjhC3hTZ9RN7%z8rWHhoz7%63q2K21MAzr=ER(;tR7r#cGD|x#It4vn<xgn{U
zzJfJXvO4Y-m%uE{`GMyWexiVWZ?NV~#Rb9;$PmA1|Iv)zR^;SpUrQ!C-`%qrz2gv>
zNc0;Kzty{rm!Lr$DR>$oep`eg79}E<OvGQfcQ)c5AlVGd{v+~poX<x5T#O-a5O9*0
zAbw{XlMCW+v^nc*1T!Sk3w^zX<5X*U5YYVC)-$KJw2i#~1@T*1D;hw2Y7@EwFVuRg
z1^S{Ty#u}ImY#sFycYdWkD^A*t=QX!oC3yahJ2up&P#^=y&6CVuNCNs&>g!8^yPT@
z8-cz@P6p5qT=8pwe#^4%K&P#l7I>~ecd%4dVu(1{YO&ZORE~zvZ(_jjXi6GD*acD1
z20<j;KFxvpXv>yH!UD$9`km|96ahmD_(8n0Fg2BX{VZ9CR501?{7K!&gTcMR{R;c$
zq^{+4Q16rZ+kXmnBnu<*Gk6F7h<Or=?7Fv<An{kTEkQN_X+#n11rvgDOl~$ot65@#
zLC$y^GV4Hx+Lr+3i)_M*WZ}pIHbWdbcocs?hPH*xF3UOEZ`-%R6u?A6OfXXjgqs#}
z?4Tb**)}kSEulI1O&!F6S<>Q1<lnr7mN5i^H5C7sj6dSIuJl3^6BoX&SRrkxBjwdF
zb*JWNys|~PJ|){r09wn0R`e32?&As1wsw29V=)c3L`!WagU5Bb0L7GC_O0XsOJi~o
zkc@N~s#7QG0svrXZgIN^NCr00>moPkEf|{wS6{#pzoe#AmcoNeD?tIFxr*GHkAtU)
zKljk^;XU$j!`(}lr3a3CYsG`@wbI$5iftnSbCqrAp_(>Kfc0|o8Z=6akxc10V}rM+
zK-VM=P}5t>8c2GuvsAuYf~{+?LY>`<>njqNps6TIt-z_`bl(DhQ)XN3K{5o!bluR{
z0`vKfEJAcb+K340I_}C;uHl#L&nS4*B>tp(`o_Ob&Ze<X8bwSXMP!HiQc|hivFzV$
zwuiX8Os(BoGA{g`WGp1nY4=6Osm*ZMv|>Uuj-+;sRc-()=sF@7obOx18?W%`*>(Wn
z>xJDcdNdDHG|<32=ZlO1fMc$sea|E9lA{bAjYgW_0DxrA(I2EzRmBXC^w7~g>joeX
zXt;88?rX{yO_@1#^uQZ@_i$z_kpe-^S_)O~8;QKoV+hsrhmIbcWj&Eu5qNEfj;K36
zpBDL}x!_YxkWaO8GfUc;iFDgB+1Li&ked=`x|XK~>ixqr-SWK>eokzG+Df^m%%A}c
z+QNAmjRI;Srghb0KJ_oO*Hf#EGD*mjEHQ^jvSi@(u?#bc=Ll+#map2Q<x3lfo4)tZ
zOf*MecsNzhb~zfy7>yiZ8}!PO7Hw_Mw#BB~C&~t=L4%&jZW-p^Q$}?tyjOm*22yZV
zkZT!orzP7WN;9s>GL8|dFi4bebAP<J7i6!x&LVrO=X*tV>t`9rzU-PFkX?f`zX91V
z{Wk;I@4ehRvR{Ao*C4xSDap@5_8Xo<_F9R=^mR|jJ`dfuWLpvEG;aW5=i9*$Q9~fi
zjNF?TC*!^RHFq-rwZXD^{CLeaLKT3PGl+rlO2f@|Hi?R%_ZV<P*9|cbGeFY`A(ogA
za0p&E-9}xjp~W!}z<SrnwFn=0w>Jf5b35G^Ii)Qd^0r37D_nK0lmD~5%m0&1`M3J=
zUn7deLGc=-3CiEvyxuI^OW$Y8f9WsCU$D`$Wz$k<*@|SQakl)EzWilsa8Ulf#XV7n
zHt_?onQDhb)-0(*n<6-9l@$%Fv0RBnF?J|CaNTMmX>K#5Lz|hMc0KlxPFx~Gn;S2{
z(B|Hsa%l6cSaQJ5=w8G)=INOC_#sVbkL%$DBvFBY-wS!*D`X|S8X;GOwKKg<89emg
zidr1dur!@Ec_KdC3tR0>J_F|>Pd<fA;es9S2y7y<_CQ%8y2HX)?$;Ux55Z({f*KqF
zm+X9V@L-INi<IyR5eQ-^b_5~*WzS4<0!BjP+-vgaUFf^brq7`6oXVuby6O6RV~RU<
zF!vckdfMt1@*?qYaU*{{`wRH9S0+5KB?q$L1oN$!8WMK?h(SynKM`ljo`opx%szvE
z?D{5LAiWv%3GAQeUbo>B+P?{J&c%aXX#4ej@EMd0w1CxgA`f4$s)8DeW0T48tg$eF
znG7W+y!?BHYHK0J?<x^TT+(W_?Lm76xp?*}zjq4#9}cn^{U2Hn3plL^tb>U!$!r!L
z%c1DeXcNBok+un2rOs#*j^Wrd8-(q6V;h73hs-9|ZV&0#k`3|D^?{KBHmv!_Yj$|^
z59}!ThKh?OCU4P8*v?<X9gX~*wwUrkw+}F*d6QjJUm&|cTgT1Px?uCk)VPPK(;#<Q
z5C0~7ny{VgHy`*Z&Gs^7`|#^B+3x0B*$FJ5lSJ{4G`GuD55xg2%1$B^H*Nd?@@YV+
zTRiK!4=il+%=5FfRM96WoSW`sr#k)0QccNxKzt|k4`i%2^3cu0J_DJr(6uXBxVnZa
z0*GU8XfWLVg3d<Xv!Q=J!3A(PNJ0z*5bU7K^~tx$^K_s5EV)-VF-NYgn`pB)1?J1q
z&iw(=5xNI)QR(H)wu1$=jp8Hzk;k#Xb!FhX%3XVfZC_K4h(o>EmQeO}o_}q&D48uQ
z!7M422rG$uX3KkZndp(@y%)M5Cooub7|8)EH4mCTXm}C00wST-yfAatXbnrLvoK4D
z&ZI<8rp<Y_1CDutw$rkF+G0vVhFZvJ>>@zdtzT)RI7@PnNO3{2au#C>(yYcC4%inp
zuA3O1{Xz@6G|V7tm{GVLp@6b-SQmb!(oI_6(hF#+ZI+_>2JG7@6Hurq2Ps#vUc|u}
zJM*F|+*B9B1$d-nVqyP|;iiA1*5P@WQVL3N1adPsnQvTsPPlnA8EfY)diiD3=phB{
zZcZRJ1eSWS?SNrUxn>iDCe+>(n5WPeM->-^5ZO53h~T`!mYLSlJwI1P4NC{G3v{`}
z7`tdB^Y?jA1B)c91Vk_6ueO;~-i$0ZLn0el9LhwB3~e)sH0a{|HdFpZU(rCZ`G9H_
zn8x-VL`ppRInf%uC&7=>*KvO=L1l5|@cq+)_p)BTaqYzVEz@i)Zw%$6=E8n8uC2om
zFN5<X?Q9mp35<#3-5fpw1Eh1;DKi;D-Nk*2a2Bw)_bP&4)Y*LxbRux9?^S0b$en-G
z*^<C@Y2dodU3-PAze?+@5KOOW<|VTYA+r@*!CzFu=`6Di>MXN{&i?HuVhwd-tm1T5
z^XOS;KU=LebQ%-XS(-3Nxxn1{9NP516ZWdq8igtX0Ekt-vhDxQ9#jaw3l%0#J)VTx
zvvq0;G%-R=q!&Y<&)KZRO7e|?po9(?k>4u5O7s%>Rg(<ghV)2!-Ls7RxI#y?6mf$b
z1%X1T$%Ko<x473jY4{q1OWv=C%f_RAHC%E~I{yflyufuq;JV0Ndxg(-q~W3gIpH!h
zkqsASOSmx0AY7Pj5H8FbaA}cksIuUqdGrjIC%@Dh{-TM`SwMT>gzx08B2Nt<jKJ<%
zp_FhMzN|!gsFw35-9z>CGmzYTCZ(igGnI3~GjAVE8w=yR9fmu_*kW%Uyv1(QNEK~@
zsooh6=pZQ2a?WjNS_$KgD@@8e+`7D__@$v=CdM*t8&=BuVXi}lpx)b`r@lcO&<?0L
zp)L(vFAH3+bk|;?Nu`BKf&~8N@tN5|WwsP5vkVHA*#?EmtRd7VWE-(8p=usI3w4$G
z6*l0urzy8gzb*WK1Omk_ow3}58rPnVVN!eB2e%V&po+cii`z-z=0<zl54YHC=VIK_
zoX=j^Qc-*k_w0;+f@Q$#uu*9q*H*>XVM_WTsFn!!K;e;&YEyXgvxL_k6rRlTGxa01
zY7uI>*lq|B9S|>ZPnmL<H|y)5g>5Lt3Gacx^`n97`R>{){JlvF?@?cP-#4r9T(bou
z)A)piGs~dxm~Bva%o@V`;fEd!xaQHb@OJv*S7_u%^I^cz9S#3zv90VmUV1$czh$z=
zam6d#`6?S?jDJ`wmJTs6pPvgelKIP*Gs3993VwKO1F45s@Iwd$7mwk+4K8q|vJHD}
zhpbqE%-~{+e`N$0JCXD_19%%zh!mxL)AA%~vJu5&;`Y4!mnV}11{CK7Uh5kB%*wwT
zQO>bHD%?B+b)oM%M<%6tp-sg>LyJ6)${@}`|3_1%aM1#j=cSk?z(6g+s1uU6Jy7k)
zQAT8JSGsoc!vEFu*aLOaF6i*QRaOkSDHF7gO?JS9&KPCjTj0RlA@ecE^d1{dm}&)g
z&!2l0T+uRLaI-J<1*iOFRM`1Orr<UZ6`uHMhTzVh2f@88YjU$g!8c@;LYCk*7ZNDA
zM+2{W5FAWJk*OfJCLnj3kLK;Me#P0KOTx_s_LerNKHQvZZ)t<h#y)lUD)ki>r8*~(
zx=ixfJ=}CE6gj?dS>xJG!ZUavLwFt<z;Gkz?`XP;!-`PkMk+go_vl{OaA?6jb85jo
zt<o&McSxg2$9j}u4j>z}Le($>{9{~D6S%GoTsOFDukb$XfS^r3OjMMDF_2&`nwAOF
zR@;rKSrSt!N_b&p#d{SxTrKatQ0+H_LzW96X@b5UntpeD@++*6c>-GO#->rIMqmPL
z3^5Bk+1C>YDT~Z!e+x{RXe48t7hWSbGH2JV5FZepd0rkXa0w<Ut;Zy#QxFQ^4wIDD
zhr%<)sY@veH%&oRf-xa?A|@M@BD9F@y%L2MvAw5^iGgZ+-%c9HCw#k9u2~xfu;xch
zs8XY_L77KE4gaLMAGodzTvxekukf*toy-H1ea#hDWy_q|lGqr3L7<a4vkl6eSwrSi
zuqQ}2nQI<Bd!7eZ{R)|X_ZXCIF?L2_iS4Xp&+K}2uO8Wz_C&WeScCTFeLWa7$QhpK
zuvdJ8ws*a6(6rt(XuIP5Z}3DdA7vP{A*{+;o=)1$6RrOXY05Hae?^~xdZK>@UfbPX
zY_Fc=q(|M@(3jYG9t&&~JIVYNgBcvN1vTPj?w|zskvhn^L%JXAeDhaHlm94x=pI;V
zkx9Mxoebz<E)S1i=ZAUxuvbC&?uAK2y^tCF8I)55hi)r#>~18@y;kJwTaaSjenjU-
z@VN0%>NPp^DXmpCSz1+_rBw~Qhutg1FaLO5=B~ZaQy&rcDAI!+V^Y@M#HVEAo}Ux<
z{1mwU<LUseqs$iHYZ`}ZmLc6(yfDi@RPLA9PNW{&mD~OmV9<#rHVj|}S@RV4%gdg%
z)y9(8dwnE{+pr|e+&vr=GR#O?FXHu9FP^qj)dCS(zhV@J`sRln6otr*`4Cc75lhGt
z6!CSBX7+f`)-EOK^#0cpXjprFLo5MAIg`RZ?^p4{_IV@7a}Gtjy*0?=x~Ib<D!|b0
z?^CtJSkgfr@E36Nk1{oe-P-PR%J-g!C|{+a13?~Q35o8Kf#)gNz#@a2n8m<aN{2!q
z<f2}TLr(@HJ?I5MI+;;%#-~jIQ=Xv`ZIUBY!u)$@L?8c_X*In||Ed1j(tm&%{1)lY
z!<c*wH1yg9*gVNfe}SET*OT-&$MFxsv|l6r8~)O}^uPFfhV(UPp!8qIi=gz?<n}84
zJ>Sice)M5Tzm4;a5-NTDoYKGV!Jeh>1)l#l=^wn+|0sPC9u1<Y-5%0k!>KynCEp^n
z$PLek(1)V63P9Z|&Ms&)*iVKJ3(QQcu=K^5BNo7RQ^VHSez810Zho^aLQwjhB-$~?
zzPK$P0<$KuaA<J5Ad*bWz&qFBpd$tQ-)!mdL)6Lf8XJbXiHePfg3yYJkfmLdwmIR8
zE$R;aqZ;1;>fBVFXBPRs`2GutKRBvjtME3w{|&zQr?)eFasHpdg$uFALU&($iL88R
z5~D?fL5GpQlaRp1#W8``))%ACk4$Gua7P3nuBFO0vLFgElK)$~Zh8^W@`B7+`$eb!
za*2~wGAi9`V88446yB-1R$(`a;5lR<z<RxFogHMw;GP{ggxQGvCSz0X6A%zPh_F)g
z3X3kXVn6EkZesUc&ApD(zsA_?^5@=-&E*SwF*c{;#cwb+FT9muY*zdU$k~TWjJp||
zGKnm^yP8Pgc@M@09djZLsyPBRs2+eKgRDj7@0$m$&85H2*I>9@WoR?Wfx}8QuBOT_
zuqFXZS(BkTTXK$S{w@3=V6{(Y`u(WjjpCaK=yb~p)S<O1Ef@@;ncZ-}fZtgU2V*x`
zKn);s&I*G?Dq&AOM{>F1?m{-EfGSk*MY~-edgsceQN`VmB%I@9tyBC)9zC_NLnben
zt*p39s8A?{S_Q(z)U^u_RRxuwsF5v>w)1@&-77e+uvZHvCNB=x%+GptnMY5sC{Enc
z4aLrQt$)rpUis&Ra=ML|eT4Tx<E0L(*YUCg-^?&xmG?nHkA9gpUivw$(~}a!Wf`xl
zYe)iL-xPT58?Q9y(vxe!b=v<+iybq%?^XxqHnx%JkOf){X;Z^Jv6`#JJB5x5Z<dp6
zjN%4I;Dwuak*8xgjz1t8TmEqjTQYLS%EHtr?()8HZC^~lSnhg8Rr+*V&(#E4@sHX<
zA$B%vFu|cfvK?$TWBUc;zP`63I-~(&_zm*IH?q!I#+TjP6ZlZmdbb8!Q6`8nXKWbO
zj_s_07AX)X^^D1MnHhS^h0(|#y$`KQ4sJl3D8m@c4;wiU@cRk#9!;OVIu|zR;R#iK
zZR+oVX#XM8BgrM~^T?fT7McTM-nM;k5)t;0A8>Lku`Ko0uQLT^uFUZL1z#LL&%*iX
zn|g)wo(p_9A8?KjXA4@ii^F&ygtG>Ay~4TnjSM(XyBl@>n42FYw4+ZyCtg3llQd<)
z`I)mFoR<V%{~9>&x~YRRdu(4JCIa0_iV<ryz<ajtP_~<hQe@`b=THcYL}>8{Z0RE5
zuNS)cvvdnnUm-WM!$f5)fJlHO;DKpv%?Q6~hUa+szl8^9764fH*y)b#0`uOD;QhAC
z8pQV;nbn_b(eUu>UeU0_(>@wX&*}jUxp@B@&~V0U8EBZ)1~jbTn(S_9Sb0YeXn5pI
zhlZyDuLTXk9=glKM5Ox?=Gc4JL)T{ST@T#@_CC$gU@r?MeL&sm1&@VWp}WZ9Xioz~
zjfnC2$8L$1!1b)a^&EHY750BU-AyOd(yE!aE>O7unqpwkpNvn4MP^C7s#>BS+1{%*
z0mr=eLjU-H`~pORBm9~N0gtCeNT}TzyfA%U(;7-l3C|m}TjHMSUB~_r0)y!j9RiXY
zI1h)Klj_ek*dWVqiX?|eHf5L8s2%u|9<S|>EIOXSq>XU%b|^SwNOqb?!}giSyD%i{
z#`0G24SLZ{mi*Sp^I=dmnHdk=G7k=R+7H%6$TDF~PZOwCvF7-rsNjwK>otMvPIv7U
zp7v^5R7wy<HRSwkQ88PV%PfPUVz#_@qGHw%)o$<iAS%tHXHlK-iq;TPl6GNGRKAPZ
z;tnX-C7*EQ1FW78Kf=LR8R&ROZ~Dl{D+glnrmx&wha0#Z8D8}cUyUWaeJ>5Ah9Z~1
zPz8Z7X4_0A188t;d1iub6Ivq(h(rjHb~2eRySFheKg0w2OU$J(;Hh~Z+fkbYtX}FM
z*^q#ffM?t8ceZM9qna&7H9f}!F4+Yt!X&hC>;^~G3~YOx3*v*k<~ErHoI4BC1V4Dk
z&4kUK4=eM5WqZjU<^wy$ll{rd?xbo^lyM%dxj7*l=l<k&r}B;J&*JMUs;l|E09?Wu
z5+vRNoGoRHQAURn1!4v*a1Mx*XvE9hbFQM$d7lby+sGh1Il<2G^~*p{aP!7g&HNes
z;pZBaTy!f4^+MGb5RbHVuo5NM1cM;G=fiZ75iPPbt4QbY9_X);kE_xH0(+L?<&U4l
zS)IQ?oOv3PFi0xuE^bsNGBfP*D`L*Q29m*Edfn$|@5Q3xtKrrC^A@~N&GB|7DNP}D
zT$-G`Fk??uS1()xwzyJIxCRoVWO<B;ZA4N*FEbF4o(<(9krXL52f1H_W;;iFpXPm9
zJF5m$F8M*&f02H6))j?T+X~B6aUA~{^G?FvBXuBQ#JAyVzvVa1A63%afj+)m_(?wi
z2S+K4*(z^LGIYV?;haMl_OwYM6<dLi=@P{oNDc0}Jy3(XLr{;6>j$z*l_VodR>V@6
zs3}IhQSxHEk$*&p$SJJg4>g`lDlo(6KxG#4b1=+)4kF#o#%`gwjj|xgT0NW~;q1m|
zHxj<Al++j%txO$^*~mDU=D}krzL6;0dSfk<wTGIcJIs7>3Z;mpf+PU`i(7oj2Bns%
zRjf@k^@7wUNMcQ@3T2qBT7jp>A&YMF{jq4D^MJMf6WE@S|3Wvy&4KIbT}6CI@uCRq
z$}x8hRE>;KxL}K0L<}|YaWojFhC~xbn0E9hH4WGctWI<W0R%ZOdw~fc10|Y|sjc|d
zEgC4GJWzYf^yEnZ^(6(d<R7?Q+=!LonOieYU}<InFNVBW;T;+{m!`cUcZsl>M}mkm
zt%G2vpfS(ZKUiy<;$>te7>`}N+1hWl_No*$zy>@=X$`OePd=}Zs)l6M5`<D0FwOi8
z1MOOC2YZN=u=ff_UPQ(Ygs{hhXF`YPcT--weZa<5p|zdNpYm4;Li4!gOk8*+wuQ$N
zrVC8-`;l8*$>4Y0{-C)Z$Gjk)6t-vqQGt(=`KR>}tXK0VjrH;yfpx6Kq)-uF&yrFJ
zi)o7+aSiT~d@)<lY}5aS@4HeH3FVB;2ltoEhyRFW$Tm9SklyOqOekllg2Ab0vWfDM
z^C>h=d6-Te&rY2jd@r+44!<$8lo^?&U|ZQPbM$vV@W7i4BJ)p?&kIkL&wXt_44<b?
zg}#^%Tc9~hF&V{e0(e%;t(Wn}6dRpPzl$o7Hn1L6hI#fE#kGNH4&o4M5aR1^_A6=k
z?&#gP_QAexWJr~)p$Q~UZXHWrT)-2nXWl3pfRlt<MFV8PObnVp0botYl~`BPg>^MJ
zLvM%9m^TtA=dwc{Lw77bz;SMUM`CVa7}p~)wJ-*Rk36S->_|*ZYsYk;1K}orTAFr~
z2dbOgq&k3FC~4MO3Cxuf2u)i|1}(xNZkxv2myO&cJo6zk#x-0)36z9k4(*=#?k06y
z5rU;e3L-?I?rs$Y^z6V_m3^p(L;_ZWp^V%f5gLZYQSaABh~fuW7D&@hmrRnlG`mgS
z4-3ZGk6o|1*N}wTj;CS?Shi$n?=CE~Ne<qLKWax9FAkK%PAc#%w9=I{+6}29DhCZb
zs)st#?1U&E2oto?z@Y%t0h-N2-b<R^tUH0UHVREvW4%!BKOF0wzoYskPyH?2r}b=;
zY^lSAr>>W}oW>s|jyf8<PAe{SRi`cn`6DOR<pT!IoI96VO|Om?1$oLpUX!o<<J8EY
zxXlG?sCMQp{qdTiPxE`!Cy6&#GK=`?DB~OWIQ|DNRl<&KG<6HuhHB6Pv%u%^#Zf)5
zK&Hfwum9MF|Me@$&MJiV8-=G&V}1@|@%BCnBxF>;IeR$i3FjNapPA;_nQ()Wia}(`
z0?7lZqPQ>@q}-{@C<XX>sjdgQ)a*Md%{%`Q9?WV&<u^qIoH5B*pCk28vaI-O7~Tnh
z1?mqOu>J`UgbSDt22;4I=2d~Y5b34!TGUfu1nfr?`>x);X(wKb%q=%$)>V44fpF$?
zAo6J-f1}`UY?1je4w4x|IFd8$pF2;EXAty$o?M&M3GIQ_FcTt9pdpZxGItC&|CmQP
z;8;wY;uGHu39yr7Zdc=vc(sbJI0<(88@xiGO2lEQV0h+p^3^d}$5}3?)`%JA(VGBt
zt?VSL-(jyvs9rQS;_ayihT|2;AUtp6UeU&`@!_WPafd6|yp#1R5}tmrUNwf}_hF(y
ztV@h2KcBJ?ht|Xr%fn3-e1ZAPZ&ER-P`9gc#TRX4O#{{GrK6SKV#TVhuDe*;jxto)
z*l@0`B7zvhVFuLonzwk7_$PBLqYdIDJ62N0I{37}y#0ip&>JOp8_6V~K=MR+j1~bF
z=#(=laxf4d!#vf-Ms$X~VJHK~_;pr{crol@oeoOw%u0_8!|~Jb%9W2J?FZywD&hEW
za|qg0;l*;xN30Ed3*ZjJaUODn6css~4}C^>=B=O#SG!I=2mkL_zbzO!sbEaYfW5GJ
zRv&OzBh^u>sVPi{GwVLcFf1@K^N|Pt_`F@NaLR0x3_GF54{HEskMBbsd)D2G|Hs$O
z#{Xy3KQ1M{*l({qSK{Xk3ts84B~F|iL%MS;Wk@%`rF)L)?(x%wn`Kiy(vMXAT`DfS
zF;iWtOVat|yA&MuGAFwfb?FqFxD>}S#R!)IQ#RM(0R=SkL^up?p7H>yT|Q*t*o;%`
z7mdwbRKebdA&79{M|A+~E<~ZQ6xetw-1<>2F~Jbq8wYG6YW3#ilyr3gJ;SE`m;<PX
z<I>@V4}gdl!ZYuaFDxF1yqy_KFOz*-K+0I|rVHCNWSLqfac(8HV3aouCsY9&&^Kf^
zD(3@SwjLyxt8nS<i_3){_YdV1cXe&D(3_T%lbbW@=PtZz@{l_z21p6z5z8k}rjAs1
zKP6D6uOhV{-{aI0akS73;J(Pr-&IXEY+CyO<{4q0a4*BK%&xn>Kqnl;<<vG)^d%uO
zpLAtXH0gh(XctQn2w@GqVX*1HNC-`SO=>tCr@1=iQ<GXoyj&&^{x7;>_LVHm^M+af
zUvh#5!HE70Y2XS*l&yMPHBQ=w+7}jm$6+f__wz8<*c>SZ{zhDvN7f0heMv?+<_0Gh
zRj~pkz{`7+A)Pwnr6=q*f-WDsE3C0bU?zBJ**W0if30+)sha_Nv-*qwD+|pC$)dsw
z%|dsqXjlA&ezE1BSX3iKHkVceTneI08$LFW0THG{_(^Xe3>fk4<Z<A~m1A&rY%IYT
z79G&2znBX3A2&VX`w#U9>NSurvgDFc<Qq%jBt68j$YTW#QR=G|9r4lRQaTEWtFe}p
zCYpog?fA8(8J#?trr9j{T$n_kwjx!GT+NgE#CkRc?3$t5C(;G*YWI7~I5y<l3h&@R
zn}1EYvrpfoZGy?$E&w1gH}xAKT+FRIhz=1Za#+}JW<V_^pa27E{RqUy5n=CJ%y9}&
zpNs!Z{9jTh=qX^x4uKI%Q}5vgaIfJ)>Q%k#Sc69$9p(l7AQ(IUMi*zol7%U|96{Qd
zn2_5&p2VrUj3?py8H`Fi?S;zbY3Gi)_A+fdpiv_ItPC<M*y@*_SvevPO|I~~{J(6w
z5u&BS2k_GZthF3lytTQWtzJ}DY?$mqaVBp|rKy`Nz!|78YSDt&h<7I+92<gD%xls5
zT#wc#PHEra^;oV*q>APoPN<p`)UY3;78Jw5BMg-bKh!tZf2Nv+DA*;bb{92rfh=lC
zJ22~q-rHUV-e75v3t-dnE8^`-ugKyJ=!fQj?gShWY8M4(`W1IAXT?w>vc(0}Ug78~
zLV!9w4O<CCAc2J!u_l-wJi}=yzJi8G5HCHSK55e$K-z>rY|R)ulfJWiq>lsATqNoW
zOVbn@GnF*4jX;{XrK5Sdd4rVvcQQ^8Z<Y{0qx|rUf3Q~Z)nMxchzIzoAuGV(G><C5
zqx8N*D7%`BLXvUd*wH`-+%QF4g@tBd4u&o4X1_><aXL3)s<7W9L3R#d!BDztav1ex
z41lW$!|kXhEMXl>5f@2~%gB$YSzv1mF$#WNQ`vS-0vI)D+0-sFeNpGsW?9_N;(vI?
z9a{eq)*ofdf1#?c*<42d!yA3nQJ{W^GZY_a5FQ31hrNvf=n*g1Z{MUzkDa4Q1s>25
z<`m~~s$htM$P2X{K)qzM?(+)lO^3soL*C<7RX?lGP*wkXv;U>2$Dw{bvgG%U(hmSm
zKw}m33)8CcRCFv$lRVqPEPzxH66Sz_SKG;Kb~H@?^oK5)@(ch(S$!e_wu0~W-AqTz
zL`OtgB6r9HK`B#EIN%aQ$yR11TA2}EjKjqaMn-fY%S>u!nMctWAg4;esnSKWOk2ji
zIj9~rAK=$q;G3mCXk4rY$0wj{)E(5Zqc=TJs&xQ!Scf;YhoYkny6}`{maUKB88Rx`
z?Yv&F!yOj8S$O6SG#%)$2+wRG4>2ZIcN8K|EXC>UcWD@V)5L&mU;ZEo1Sloom*bVW
z;eFk*OIGDc_ZuL+!LN2-^0Un8E{d<o1#g3&c$HZGvo3TgX~AsW&Rh(9UIgxuDLqm!
z?wz0QWXkXfFP#(KV<DEOhHq=%fooKQ8Ta~qt{Xx{3#3~O;++F0UkWlduiv*<3hrF>
zOFTdh;byM7?e+Vvk1RK`Sb^O+>#j!GgX$K887VR&Jd+2qOJA2UmjGCO)n{br)1^~^
zC-BPGB~;z2LfUPjTbn>HFsD=cFkH|F>_-$!sEm=GGR7m(9l<0%fc>CCR5{H!k(wdL
zb*DAJ97V#;&p>=8eUrP>7bD)wX`4U-Yz;0zf^>D$(v1IESqyy@cS37KZ5SrRBL#0O
z(=@;&<UXq=A@I~Zc`+#C>Vph=!ZSYAuJK0Z2DUX&4e?*-$*-&l9ltT`q8AE{w|4HQ
z+JK#lvQ;EX1cGbWcR5QkVl3tj9(N4Cfq_X5zf!WR17FjFDLZz3C&&Q%u_S8PO`Pn5
zV=*Oa5gy=J%h2wQj$x!j#0l5Ng#U$O!FcWfNid+;JRu1}19=ZTH%*rJp^AQ-Xarwy
zaFB47HcVO`Y(b9sTOKoaLoYP4sFzlSqd8vTjH6i<_8<*@Vl_F#@hOi!6IVEIHRSqu
zA&gQ`b^QBG52{|fD8Mcl`22^TCa3e7Q00SeOb;E&z#AkC!eV*J!d>K5RRNFCI9nne
zj>je{fkqzV(l<H0A5!qVpxyX3f$5B)K0+93Iz%|(YC}|~E0YKFR*-9cz*pG+X*LKT
ztT<e|n359)a|XOcqwzKo@!#KJ;V^ciOisbh*byj!p%)rIPJx1s_=J2!WrE*QWin&?
zSx%7wQ7NA_Oa2biBcQlNsK*~%S*J@`60f6*>7m=eKo=@UQJ7sCm@RVZc+S>=Z=ghG
zfV@E_sa<JHoxd~RP39M@CO=CppqUb^3ZoG;nl~kd9eK3Lrb;s6Kp4aV9?D3TiZX>4
zI<C^Pffxg4#hVwn3&x_@|LnitbtOal-=IQ>z;_RbCGwB?GCwDEFnjR5&|$bHc(p1A
zp`_FhzHz;%@Hc5@fFwY~*@uC)e$muCc1k>XA@n~7S7*iC_?Yx(PebPqY*Go8-^NeC
zKxr)5(g+eU0<rpEAR#&UEB?T0B2Zws2%Z6{j4Ejqu@h&wc?afXzipFm{WN@xPCXu)
z{x#H_pG5h|fuigA4@wa-B6O>kI{c4PoESkg`h7TdVS^M~99F$=u(&!L_ic;fOs@@4
zw|RKxXQVscIbiZ7bUAg$$LuKrm+lKUBqs=5ItXG}HeU@a!0$VJFZ6hiPtW>WPign<
z;c2`xzm5Ybo7D}&|C`tK>6on)69C{K7!Ed?P5088h~W=XkPOv)LLrUGbpD~kdw5D&
z%xu=$4y-#5<rUWLhyMp*UC=f?#~kKvyR&8Yg1f~hX5U?VA<_$-Jg+-La7c08F(|%B
zh}arL+(b1JG-cNQl)=4bykieM?IDK?hW3&}I<2qUSDoE$Th@NE_qPNMgVzXW=?XM@
zhCaA$S+NnUM@>y<>I6swoMY;tihK!!m%sIs<cL$;ZT9JfJ}(sOfpyS&*iFU_qHZ)?
zFP)W5H6w>);SMA>Ie15*+E-<Ko2I(IC`{^HOC53!Voynb8Xbd<^yB9SNw4k&A)4tH
z%oMw|$tM{gHCvqr>vRV4&1&CWItsQ4xSv3$%KyNzs5aP;)2d;LByCH>{N$KDuAzHk
z%J|~4MdtY$v=tul+X}qMvVYTQ7vigHSOy$D|MTMj*JOa%qQ7L}4ayKq`lIfsJw(IF
z+_XF+O7jZq&$0nSI+EMs5Z%wbgyszLKx3KnS0+f-2Svo3E@L5*Kx}Lt-F<|8eQ0Ii
zxVDYN*~>5!7{Re~%pD=k@x?V5Yh|lmpkTYIrR+e2R$w;!R_QFFnW*9yD3|SUukfBW
zrP%z=&Z+~dMM~@x;Y^q7TV1$Pk7LuM@y=N;qAXmreu=*4QK-A~aTK8ps>!al1n}wQ
zpMGb?1nh6HkTNw&oU%Gpd_aeKk`2^i9he@WZz}ao)PK`LKGj+z_+pTm3ET?fI!LDl
zbu$ysq1-sn0O?Cp?bfQeFTK$1dw0Xomr2Et<7)3xkG^S}FIc#abBr|<PQ7LIK3&Lu
z-3w{XD8vjp2MTaHKFr2vE%DiH{+AzfQ9IMCOCSw5dw}hmT#SgY-Vm`BB*ad+0D2_^
zZ<z=NFCl7vPzx0M4tAl1Jfy->n1iIm6~1HB<gV8pm>^^X4~31VJJ3s(RE!IwHr^u;
zfMj-yxrwm?9>F<aVsVbvKX4uvoY!f1T}hmSy&18N3pz=fjSQ7KH~WMHM%Fk2@vc@W
z00U}3>XUa^v=2Q?2^6$fGY#MhwBMWX(SAOk)-W*V1+Yl8H|cw#y_AokBf1Vnn?nNl
z+S@Y#pNnOnsbK-Y;~N70ybG0t>W=3f;87ai9Ob`hX5TimZt5#xs#F$f3Me@_k2Kdz
zJJSby9l#!(y5-x<hxhD;_jN6bcR!LeEoTCalZeJ{_VP5fmkqR+XyfrepZ@`S`I>+y
z*aS&84Z&$5<IGo`aKJsHXY{Gv(6i?O${7GhOlCRIlkV;X4}|rSVI@&rq^K5!N1Pg?
z<-{j-w3R=wALI7oM(|KMDA6TgA{^urj=S)R&3jWdf{bL{;)@$#SFsvVz8VRzEwJrE
zjN<ZUj=Y$H`aJPfK-+4RU{n-Nr7(7z1>5td2f!xgw_3oq-%KBDm+?y<Y*7W<R{EY`
zJCN^V4s4B5Ji%7j_f~>U+&Zy8Tb5y34heJ0Qa=S+FUW!j`^v5zsOoq$3wtZvo75x;
z2!BzS`@ZH|4z+~jOKP21Lha%85xCp#-4NI?LlLO_Hk+Id_%$i~0`|}wQ*7t6%u=JM
z4fKaqIG+6l8ry^^v<z;h8$}J%_^7;~rTZL{ZE4d=XvqXb5%MDqBCrRphb&TCcO1~_
zo5q!bZn20gMTQP&@o-hD$!FM;-o*bA+-INM4ctfX-#fUaQ~?p-X&b2m?x<QyfE)0s
zBmEpgg@GJNa4Q;n=+bQ}ehPILa9^=6!EL!^=VB1a$~A@f1Hvc^apf8zzU)h<vS^Jr
zGL5J%2t=1r;Tdx*%HOp!-lP(>l!BzCRXwsP6X>ubYE`Qg=zHjUALvjIwW?Y(0s8N5
z&H(yDa!&dfc0XB0MRnS^jUA8$f!?o1xm}wEItu5TFKxV2>jRyI`FOp2w{Cb{8Yf;e
zS!j+q6{tPZqBb3Jo)ybzZ+}9rWyG{ZRW)0~!gN(`)Dst#LLaZd9h%HFkNO})k2TQd
z$HMtJLM7pf4hNY#XLbaYHggRVH7E{zhj>13M{{^$U026H1CJ4^{WBxG5QsJ_ru*4-
z{FOvSn{c@BfMU%ggiNF`Isd{OdJ3443%e1}U+HhynyM4ejJGwC^I|ouWfgLTC5LPn
z`UL}R+^89*0v9fJP*nDSV;MayQSuqOUBt%`o>6AbD0JJL;5js18csGGDx>9$h3DNa
z)*Z(r$EaPkvBWSK0T;}Oqc9zftf|Hyx?xc|0B4ku=x15-%}nt1V?Q6|(}#FSR!jL%
z=0K?(ttLDkY<n42x>x-C|Ki_qso%`MHwXTI;on17{Yw5l4zJLSe|Lzh=#77Gob(I)
zga25i^TE$ySJkxDZGw@9)oQ|jh>d~&m@m)Of3(Xr^$PG?DmR4R+t0e87uout7CRy2
zKmBtkM@C_0e1m?i`2czj+jq-wgG7pob45L&7XX2qG69g9eZNvzzzewv{S`Fs8mz`<
zTg!UYiGKWG-7$=-QpK2b&6R3hx$dPA#j~5dK>FD1G!5O`q#duE-G$D@BFX%D`X%gc
zxLHnDK)&i;)%>at5c7N6^%>@OsB9IZ(?MV}p~X$Pa%4gQB57sE(QwybP~lzJ^ZA_c
zf0pCvvigm}$r8G8uvH9Sd|fo${5F_|l%b6!<sL7DXFQH4&zuc{TgDe-&UH^}4(1{_
z#QO-Di#c;(F0{GSe7#zk3N^DmIt`+5d|S=)&`)Um5qrBHCMF5n@3s!-l~?ssY{a5)
zoU7zG)%7PyBwNyWRX@wCA3zUZ{oMHD?)F?muWG%#df&cU-}qx`xcTqov{!{WCdlwH
zc~zI&6>X`@Md}sdnK$!2eK`%vGTgwR9Lw46%5NGULQlF}L3ELsI7OAmrY)cs64*{#
z+=kB)tGbCf&I(O{7wA|S%u@}~vEm)HRPskyQ_bk2Ds?$nXcoP|=^Um)eqxD5sblzb
zlz%%$_`E1J(*A10W>IP=?kU6Duw^qP9gcH#2Szp{^`+m0PkP~7AfYeb@zu;7@QM%C
zujK<wFvcSDu4m9_&q-kgroF;2CDcW6qVN6#H;cTN*7v_WFMPtAsXyaBT(CTKH-6P|
zIQY`R>-q;(nA9GUM3q|=ok>1Fjf!Q18dz{%w}T2X{${CtOZSs{5#3lQ8xDIHT!oWe
z_&>D`{-X_e8}%Sz;hWo2U7SES>UdbB2I<*So1TsbyfMW~)gGbeh4x6vd02%Hdn6zL
zA*$d?G6k=o07F*F4eimsAJd$Nj(VLve6DvXHezA8iPJ=hu2o1&b2N+?&&bqbK-?T&
zXr^pJJoe9kkBHDRH6jxZK9CXUfGfDSrv(qU?yg1(;3OsFCQ)qqyiYMogUhzY@zRED
z$erUZ+EatZD<j%dIlzV(s9QK|8qU%gGZB^mE9pCEkl!vO_A6$cKgKm;UYw7+3oC6o
zI&Co-EzLSjjF=Z11~scgrN{qMsjOw*WwaMjKQ2rQqF0_x#fUa5S;WslUtlLCpUe!>
zT6YGfxN0JnfN=vC;AuiLU!@%LTlj;|3dpA-voMj~Coz=TRkR|Aj$Vl}A7&7RR^(=o
z-hja&j7qVaM+!m2Rl$a(6W0^txhxxnWB0lJoIcp77!^cv+vLGFM9UKm8Wam^eI84~
zv`a%;+g*jJbZsb^f1J<yfL;Psg-_pQXX|@`J_9r6_nD}2%{<%0^Fl)>qB^9Wap3mM
z)^lmdK|C#zsxltrg}J^}r$3ZXRHZ$O%8dOG+PxmEHj|EqCLaJjPse7wO6#-4w{NoG
zjQE~tP`08Nz?lXesH&o@3(U_5B*<k9q1Ellq<%;r%H56?B9lR~hV(~GCXZeBb|B|q
z6BId99+Mu+5ITxPMP<=$H-(bGosC0YoQ{hf%zYnG4O~g)(s8K#=0It7ecQFZsNe+X
zugCvT36KCm;G)_`NsUtFec-49kx(xx30Q*e{lZVquu;w}m41}tkG`_;xcQ}i<8g15
zS-MM(p-FywBBQ_UIx#pTDUPKw>K9lPMPR<Op;Sr7vt~{uYPS<>7nG;hB*BE5=oO4r
zrme05a(Et3C4XU}<rh|`2KTBP^sZN!AFiOFn(Y3&XyT&G>R7U1ulJuL_QdBC01b!*
zijRtocqQx|ff6c`eJWsP4U%B72gc18$ljL~*vAU|T|@q^F*jYwxxg37G7m}V3^P)<
zFmrFN-7(Yu<jlY)wIG0#mMdVJ8sr)_r-D6Wa)Z&`isZfGb1Gml+er!n5}M2k7|5au
z5E7|KoP|vi9{U{%gOH;XZ6zgA#(KhXax53MtKrT@zbB}U!V#>+4dq^C4KJ$7WpOlE
zf{Ix#rLea@Gy&(SqNJwx!_6G)V32kcZkk@k!@b@|jE83LT)U|%q9b%$G~x|c14zwv
zZ3WQJO+6CGAlfnohO;C>LRCscCS~*obM)mJOMQ$S*hx{1^m0U6^27*RZJ49}(WJ4l
z<iKy(wL%GtFTxCDU|IS`I29XL1)P-(%|=nGL`_mQ^$3ffyWSB7q_|SVte>xwkkfS_
zEkn(VmuaXfToeY@NZnJLh-Vn+0zoQv|990e(`1BF+&zOr2z;6PyFAOR?^JV!lwmPD
zZ84#|$lNg&(C2Qu&Z?#Dnb%YtVd-)n)#e(a2#<h&(F5RLegm8(9|<tkvC>1xQ945a
zB<d@Bi~uQ6fOvx++K+1Q+a%VoY_Rk1_^yiIA&2zxixPf{A*;caSL>(dTujGgLC`Zh
zy%m^b#}b;?oHdgy{Kv(ZE`!N5J5rDF7$St&WCBkWq%DC)RY`L2BS=@_MT;;B(fq0a
z!gU!}747vt^%fXs_XJh82nnppt|5rLOGITmd7akR&oTSk=_`{_!&OghUo!MH>ysw}
zpAdMeugY4k9fH2jmi7Ymb}93O%C<}1XF-2KCG-^Ii{_6-Dgl^&v3#(~V*P#qhR87R
zKnxR3O#<qvn`Px#sUN4lB?q_FhI5Ye2E0IK+=eHIC;Gimfe)a_<7z~Q6HA!^m>uLx
zD^(fh___-y9!!E-dU!xQ7&XXW(nb!+B&d-n1Ir7se!d>sLSiU5u&6<}Zy`2qF_Gun
za3rD)FFjWCt?hWd0_9Nnd1f1Vh>WB*sR}^Y%zTn+M=qv^01)w+{~V(kRBJ7Wi_{<z
zFDV5jFpg$v56PZ~&Y05<hxWXj5ffzSk1Q+}{n-NR_uxO&iae~g2Ku8m2Z1#!D}^Gs
zmTL(U5CF*yBZU=D`jJAo83zLb#>%9i-?_40{m!q*@7t$+Pn?d=B4lheobhop)ENt-
z`Coy#du!E7=%VX<uzeIzQGiXf5;_6{JqutVCSV@t>Oo$xkkzpfKZd<16tE(BC_p-<
zI98E75^Ld9vn!H=h*@aXig0{Ort-GE?a0KKl?7vxI}e&jBo19!0oy~oAL$KSd89XG
zCB9xDz(1t<vvBi7Fzd*~z?DZPD)?q-vDplJM_R++=8wsknOz4C_cWAFWEtu8CPN8m
z(!JBr1(~j*)UHz6wXA1DECF*2{cGe$pxBui3h6H^0!*dPB(T64yZ**295qe(YUUp1
z>xAtHg6Whm80zeDp|2Gf5VBv3MYG|vj6vpTD)yG|!&GfTk@nb#`cNsn!qin6JvNuW
ziI8?9=U4pCs8Iiu$V=(rdU{sW70&n12j0tU(h78t%CYn2Ui+$DXrQ72)pAXxoMGRJ
z-2+RMr?k6pb^(Y`XMqZb2ymN02qm7v4%1!cxyQtR0)Q(e@7WSAkiUlaXh_h)@{iX!
zz=ONabJyPBr!YN$OQ4vPSnibH*>-c?R^3?F%l`&r?=)XA59hi|60%^yb}BbuMUZ68
zPRw&#&C`MXcRL(o*-qX`g#mT=n^vg@Aymn|AiTRkQ4D)SfRZv^dKZiLi1Iq^Jyv15
zJG}=Dmn1{-0!h9=8Z?advOamleS&G7*KQ`I+^*)7ZWin=k!K6+=JIuPn}}k<^X3-c
zf;S9FvA@G0QfJLDER)7e+g<!??F;FRNI7$rPN<pC%`k~g?FbD-i5W0gH6}`amQk-H
zen|d~Ay_GuQ<2O@x=<=yM@+$1^c)nRAy=!A-crGkYoA!+y{@-OJb{BQNq9d>psPK_
zbDT(-=DDrZYN(0TYV=h@iODw<k{?ECVr9WpvyCLSrW^ZsfduJxV=CJ`_Ckjggdju)
zB!1iNhVxiR=67bhF>oL+VS$|szp~p`vawU<`Y@^p=4Z}f-2_ZfQ(XZCOVrpVk1aI2
zow5Fjyp;^1mE<_WRyQ3(VgW$GInp<myBGl#DTUWwDBD=UpLdS_9urrm*T6<03w#0_
z2U9wcY%Yx@IB&a98grP8{3_B~3(Urxmw&`9#JBkVD05KXFX{wH(DzHsHvwRXa|a33
zj-}uo)o+xI^h!G35lXd0nwXvB4H9-VawZ`r;B848_siUB^tqKR-0his)MxNE`~fsU
zh(xJ@>2V0RpC^F4(Cc#Sc?O~8=+TfR4%SP{l0rQzmNEYKGaMV@04Wzrj&W1|2dJvc
zq}_BDo}7g`w2?%TVwOJ=hybo)Mj7ArIt^y)8>wRI(11`d6AEZ;FxcvMylD{UI*#|b
zP?aJY8zn2my`2DXbV_ynEk7rjpvl436XE8Rkhd_la24jDSB7HqANsTW?S`eJvHyOF
ztz-|34S5eNJM%i*S%?Cax2AG)jVMYebAh7}1~s(d1aLn13Y4eq1A&^zgiQ(!-r4Jq
ztEd<gUX}5x6z8dNu*y2|1lcOHDukyMY!pyK@C^88*V>@7)vl?zb}T5Jz^4?D+gZu0
z!VV=1WAl$cPXA*6?Qk_*_(`8sp&%}Q={%CGfmG{|ez+c3Y!)3DP=wlK{=sJp_zO7X
zawC}tYO0|C1<;Ynm(gR#ijw(*HB|&I{>ZdHiJ{Vke`rJ^#|1#easkz{TmUmMSq6*w
zLK{m`Hq8@+v-ISsVmS{*-TFAD6xO<eI&N{=2f~=*d6yz}g4EQ<6gljLj@q=F)w|=Y
zEEbyI9|$%1+>e>F^kY6b(XIasQc@9C2_3`-D56e0i>`mRul@eBm~Vp@V%vf&8yvRO
z1V+NqDWf(*O6cB?#+N8d91fg_dYduD=V|M{4=t?UOICRRs`h(u#<%9(^#21YQ4jky
zCS#ShRvR?tvf<zBf*2YgOSjO7`8;A4*suf1Q9x;ctXzT7K6n(3_G@PZjCQFr+EF#y
z)u%8xh0)#$X<2dTDSPR>{6Vupwi@jua|jsiQfIWGwiBRPah&DuV1svrP0OL0U0K>_
zqeL3*iSh<bQy6WOR~74#58}-L0LiRlKR?8_y@RML{X?=a`Xnv*EsesP;eX(r8k;)u
z1G?ar4>&`PBJo|LevrR|d|tStd`C+`gi$SFpEA9`boBxaGZkThnwyG|z`(|7FOY@r
zQ9a7PT0zSg>tyrvxoUW8NHUAB^+DgDpf7naz=E>9UgG;GM|-?GS#?;HYo8DvNDG$!
zQ<`G*X$Y#2iSUDVZ?iVdsZ^^ec2`Uaf+%USB^Y;!!4Ae<WSEP)rtw<hu0iG4xHa+3
zK^k=cd@;16WVWa!ul026k*irX*7g+h>N#p4EO1n_2im~wukzA%6h}q1OvfL<;QM_B
zXYp5J`fm0kiixMtFERWs+yO5#aP{fZK)Ay|<;@D)eX+?Os5v*B7SJ55n9^_u&|tW;
zOO@4}4@U$vCxTqYOJhUAopH<|pgBcOb3mH2Ax?Afj+%4i!J1tptvM)>nlnt^K!zQS
zX5|R5<XdG)7C+u24!ZH9(m|`rhZaOadwSu0z1q`@L*4A@^QWrt()QHmEQSeWQvS%9
zZK6--DAXVeD3y3{(OQ|DT}PKZOnY!hQUSfVEV%q-i~CU-YR*1V-{NM~|9{8BiWjr+
zFxuf^?S8~V{FGn7!%ZhxJiLaqtZg2dKs>y9t#3&WVh+Cz4+k978y<?~jpAYHe!b%1
z&x(gqwlD#5{s-!+Vh`rPFx4GFohXYXvF(oZ>Y*v1N<(XiD@ZqO1|V7I4Q0$IYcZ_N
zYMgu+jU|42ULB8{_4}eGBYr`?-)ViI6cfl^`7bp8V$1!b_6=|!6J*{vSr?h!#jj8w
zut7BQZ+LDcagox^hKQH{hV1+b=ebcZBd*zLzQz~h<>`+Rl?s2f6$7M`p1ABHpsg6-
znrc1S#)3suYkgCuZ%(mq3OX8N2{r#9lHVNc-lPr(Kg?&t!I}T~X0SK>V@o9JKlslE
z75D?`GRWZy*|+cx&SS*FsmC++!1T9m`#1iG{nXeN3D0{!*0m5?IF!Ys`8WKc1F8Q|
zQZ#Avwm}lSEHEEnjKBq8+iBjy*bxh-{23O$3NFAk<xucY)X8k}2^tQF+43-e(Wm1T
z_jvlp!N+s?F@)qk7CzDPk(>haukSm%;HZS*5nC*(kU9dq$@<bfH4Lo!%(5!WKCt-?
z{?w8`HRMl?_S;Bv3`}WYZ-KN5&~MU+N>h(vt0Y#JmE;m^bF>Iu71Ac>c5VMb%8Fzz
zJ2|7}iFaf1PjOoGkAv#|pw&P}hHL@G_eJI<X`j(hdH@dC5kpr6C4!1^iZAL}+A%Zp
zOSAY+-%!_MkV*nq;w5N#fhk(v^KPK!#q=R&hfaP5G*Sw#svX(vd5fk_0sGKi_~Jc?
zI+<_er!d7I^piax)pz}Yv$eMp0;&PTYZ3F=nOx}deN<B3o|VFs?gK$wk%`%~JiIZ*
zjXKy=PN7U&O_RjI)=uW;>90zsh;Ps~W~Uwnq#aAH!_l>A?0eT?1_4Tk)QB}<Zwa$Z
zj$pqRdKjm-3BB7E+t4LXRzgl?`%!X6lUz$Ghm@rUSR$gpN(9?}_t103L0iEA5VeMg
zT4O$|c71qu4mwDdhK_5Xirg*v=%w0Aq|jswW#rOotEj<?SYt?5wi+PcONCRmgD`11
zHf=E(xX3)c7r1_-<9eFkGGAdW+Y9m4hyy0TDu7xPMkFTD4#k-{@sEMqwMF$8#F9WJ
zHVjI@j6?5n!D!*yXIvl(C`HJdYMz~#%s=ON8q|~6GaZQ~aK0XFMh%#ZZduIzkqZE)
z62PefaO~ipsYamH@fONPSw;GoRh6QK-Ks^Q6gWBbYHvA|MjpnK)=`1}XntUYosc6d
zll4fBtXg>|V!w|carExHq$<7;t9#dm!ZWAyuE)CW^qi|}0(wRpD6@)h|3ag6#5ANU
z&4M$J`(Ida3gSnwzzbbgN~L2P4n@T<i~)Xz?!3}XxZ(@E%`-#u)WzBINgEkr?tMr{
zntS5q%A0zu%DCRDGUwR;r7G8#sWe9e0WRn+A<<=I6&}*9fL{<c90_d`U}AS0(k2HV
zbIyU8d4TIEk}s9Xqa(@C`eQ6*?e#kXdEmcYf>FaOv46GnAwi^(J3k;S>v+@Lxd&9^
zOTRCIPBcqDu$57ke_+N9z$gGJ=9Aki$#fpqYqah}MMM>=iS6x{vd%HK(y;Gg1xP`1
zu)w;N5$}e*lQADT96yq?lC77)&ZnDk?!rFU^b`(x4`?Zl4PR0|t+NqG2*(HEL4}vU
zXM8};Vc~fLa}U9m#3A_WjysS{r%mBe{gxHp;H0MM*Y^-{x9?%oqp8EfGr2;GHou`F
z0muwlUg4dNec66Gusr@<SNRTam3sq+kx*2Q?)L4YIagv#@jfH_hiC4BPq9686Za0p
zebXX>6LoE%oS~T?bh68f-vYWiap@*}55IC}j1BbsHvDiS<$c<}>=&N*CMcS81@^Ws
zKsX67kiDSEJYFT=T%g}faNoo~3G;)4yMHiEKHyXg?*wUi#(XYYwt{6pO=H*Eav2FQ
z7u`%HF*Wkzm&}Igc(ae>W{KgWi6(+a9d~4<+cY~}o#{Mb9gc^95g(afH)`aL^_bXY
zxuaRH#Cty%Y{6Q*PYXf0ke}_(&#+@Fk4WiQ;-}IN?+kv(N0*pZe#Fr{vxQdXwwpxp
zhrE)x)85kZ+%+O<T5t2>vbEfzk=rQ_BXI)e=qT=>iM1lwYA@Wxl?J0YbEa<is3H8>
zL#Mgqt|d`DvGy+MWdyiW12H&G)dtKtvtq=1Q}++gTqrP+{s#n+Lsn$cx6BQxmgg=D
zY@B;aWq?(PySEl>(c%+ZP|h6l2T2k-_)x*t82q5*VHPF`YO`^5((#&Qlobb72KI`T
zWioKOJaq^xggN*|!OFw(Ll&TNI+VxCT`iRxPw2v%4S6BvT^`uW9dfkZoktu@p;pm-
zHXfB(xsNg`hZzGo<`kP`!^G}niJgPV#%3cW_S)Hk1@M1AY-!;@2;RrMNrBD&Fji)V
zvvt!ykjK#e<0Av)5p6q~?T&MgXaKqW9?To^#UA!Bb8d*;g@ooRDc_V0ftkGryKi>4
zuV1Tu1=}WY<emRHR#_8U6HBUzt&YJeC>b{&t7KHO>>6ugD}57NMfQSYx|#<Y9EQEs
zVq*VkO)LX?XJYqP6FV{6#2&9E_SLC9o7gsF;Y@7Fm69gI#2yu%na><h8%Bc_=$)JS
zlh|CHP{i$k%ZDr*>(#*Q{tUDGJ<RSu%5%Tx1Us-*HcXXS5=Ew=Lap!qw7xu$iq@C&
z<7j=CA$JCdjr>iB0Y3TLZU(q;EIAh1?qE@p?eRkcyuWXN!|`eOKCLVkuHd-Y?HKvA
zW3+tw0e<9DQLq;#9g1%@SHm6n<_EF&Q_w21rnu6V223&84^w>c6g9==Fm>j$>qNai
zlph}hR^sE$eUf3i1ma+#xfV}5Ztk9Xau2EN%;|WVI!Dd&!7$6igKT4l<IMqCAJRDQ
zFUGl;9}ls{88e6Fw3$qL#+$BjWL4(VOH2w+Q~zcqFVaeO&JwkB4aOmFRCq@L1#5wV
zuYrP>%5%S#`AoX?CbV%1wDH@eVzP^1va#0F22imKlf6G6(cNTM#nfc?B!Yim&M_p;
zabFA@Cs#Dt+@5#p3E`Qa5>pVEv}bs5i%f3@-Hm*~zF}_Odt`w2<(!#D`Hsz9E;H3=
zY-mk1ko!w{CWBzn5Br8-&9LY-hYR8^iwfe-#}7yxX#sackAQ2oegb}pBb(N!_f+K{
zWo&JEY6b1&#A^k0@5m30I;;kRxe?1){Rde~SP`v0cD0ua8%s!6$dE;uUaXySSG4*|
z)r-Lu(AG<Trul2ETlK%psJ__z^Mpy_V>eKjJ#Ae!W?i<>y4-e+v-wAcXUcH}LF3?r
zIppok(?;HLb7*CgZhEK;x&3fhCgEy^3&c5DxMw<qO6w3F5Ejy`$FY>&OcdhGt~<dY
zd?V8yvf}MGm_D<=I%9Rf0_j`80<&0r$tpUHHQL19<w)Dab}a~%B|Q@q1}elTwtXKr
zgH7}Yk}ly}MC9Z%#8gceqhJ&VecE;e0Q;(u430=zUA7|x&3x(R@akBGPe>=`lIwgO
z*QIYp?1<V9gy~@Wf|&pf=nP)O+dzB6^VcVihaRK<qm8^k|A(Ls{U3@xyTk=TmEuP%
z4aaw8`U~1YpzVT5;tW?PU1`j#>w~(p6Um#x=8#Y3I7g<pE#`YS$*h-h=EdglSmY&L
zQ{~<O&<a~KCYgW3p*+_MgVi&T;&3Tp+dhX&0m&(3q@VZqM=1-Eq0{gUMoO^p0-9x*
zJ&N>GKoD3Kq~-56eGEMpQb)I#%?tgzgvP<i1RN?Q>k7>MSPjzg23o|g`3a;`f>OR(
zR*Fb}gtCLpoFX{^$y}Kfeg9Jg65${o<Pl#D4h==S1^<w+ga)Jtn?r}=a{P_3l?t33
z-v<%jm_D!&n3%K|*7PlzT2_(l8yoTZq^aeJuVWYdfXVI0?u|rsdt)^2zf(_~R9T)J
zwyu1{ntJT5wJ0yvwWK2PI=-8-lpk%&FHjm2FAd+`4kwClK}CFV-XinX)ugoB<7eeD
z)UOP{bZH-uhvqK%5mcrBOY4`{R9pp>(=N6?g#xjXjTK@M{sLnBrE&q>7|{ajeWCsx
zQ(cMc@aBhga&Dao0S5SE(lxm5u97#{FX#|UrJSbXGERfVeVM(F^4<&0%+(Hi=~j_k
z8Qr^!B3_skf5LW=*kABhBz=HMA<GCuQkhQX<)4+qA_inF6VEK7Huzl?l?oN@#IGj9
zghE7g?mExEwo9m9j(N8WTVkHhXxyudnkD69^4}VK$iBKx`Nan8%%2;w%kKhNN>btI
zg`Qp0kS|fv1t46a0k9-b3-898zuh0G@T15Op)hQL6v4hm76Hp&$v2qX+^XwV*kLP$
z+Y}%sCie?uMj?qO(F|R^_5rv^_Ls@JkamT4IMf*HO?VAVr*YDGgyKXdamw3PJuVZe
z8wn{ehhGIg`MdkX%YSY?chu(*D)-9T0xmSks{k;U;!{S(1*YTAcH7YKJS=GBkQG*J
zO9fkXA|xu#YLI+ZuRIQ825ZU6mv`Z47<4#d$M-k*9a&Y8c&Q@sLW*aN0A8a&fEXNn
zQH8ha3_Ps;7Ik2&?dr!Y0Wap{YIn32Kid|6yX9h&Js}s<dL<(zi_<-$yoWp_&*Z$N
zL<E8=t`uib#kq_0Ss)?8l;r<Tn=%dTG}9!bRTQtLXXKRN&U5?-*1D;fQ><xYr7Jqd
zo3waN3@Bw4Ut#mvD5p}k;RdUZ(HoFvr=S4^IeLW}p0k6H4t-fXW=H%QziD7*pjbAn
zqMpG{10tbazn}#tWx#I{+Fv=QeEm<No?>bv=xfid-&sx@+P!{oZ^fskz<-MVGGB93
zHA|zlMtzO&j|Lyet`XiIOP6hD^dg=GThQGmQea;*x~9xqShvm|Ei7*gH!awN*<m)5
zeB5eh0^56Jnj_CK;z90vgIAtOkRYcn3GTpu;$r%jIJV8vR3u+mnhNB`(lkqMpmHKf
zjFs>gP1I}lBoUA#{dHb!;irAI6@Hs&2ZSQ&TXi6S?x_>jfG`lLu&v9C69Z*3YK=%8
zQkBBy7FWwX0(rTAuALl9VEp181r0|7kCE(jPAvr~pMtyc33#Ac&9)1nKqiV5&a*=a
z!-JlopzExlC6HZp8k>}`!`$BFewh5d+FP26-xhIMrozzO_(IF<V(x<;Zd!*rhMT{z
zH5KTh6v4AEKqrm4mXcwhWUi%zjPr(n_wOJj;A)OJ-cf?y$8|4;Kxk`m5v>rcQbc}-
zcgSPk-<2Nb;y48K!dd$TSd(M#`6aiTBk?V*#W7}t*D45D9D6U~M}bxLUa*1tYJ2ZE
zTx0K*^H3$+gI^8!p@x!gxV=nLH7WU!AtO7~8iQMWk=FE!4%G^nTfbw=j`1s`IbR$u
zw>Ck|+j*1zVwC-Ynn3Tyy5z_&ycVnMotVp=46a=-HwR(+7j=oT3tp;;dHwn)2TvS{
zfbacq^OH<LOClxo>klIP3z1nxzI=$~vKNYDD2kXABO(l@Wy`R<Ywop{7duANY=p0Q
z7Cd1&N@lAi(;ikfgt=(^mOF>$;8Aw}cy+mLto(f5q$?kFlx(Q-(xmdzl~0B)+aH4v
z!h&u4BihAY-ta7vd!XW3#VyCgZ*3;@Y;IGn=q`i#{Aw_<%m7%l%w-I_W$un327VrR
ze@W6n4`|rvuwd?_&4S6Xrs4})CAM@B*On3o2)(U*8I6EPsoh~)&6$nTZuIgmm+X8C
z?u5u9_e7DYO7WD#kNKri-~N2VrDFXNC{w$f+7{gpT>aSwykYwtZt<P^2CZ6YehZkM
zXcJjuqbdPM+D*ngx2}r_R`~)3#p((NLa3RkKTAH&lEGg{e$K)nGUL5h*atg`i~R*n
zk4hQBa@ZERfn_rn-5mfRxL77%<}dw$UxH(>#`+}%!D!HCQ(%sJ(EqYkKVv8YAD<>`
zB@_FGx3zecWL|iIWUlr$gDgo;gKJja<!3H>QP;a09o|WvIxFAOE<D8~b0O4CJw;<j
z`eT}kV|3U|1BI!?b@wR$5zKiNAj6<BHNnM{EM%7C+Em<V?+fgGi@h(h_p|K%9D6^<
z-YZq`V)kD1512eDD6PX&4zeciPuOYEH+hvolUJ2#@(#COklGkampO|z;u*0#eC@rg
zJOD9YNOKEEP*u6N3E5os`t?O4dE$Q3NUk5o=#vFw$OZG_r}P!$msR*{QOCNKsXK5w
z5Y&DB)~fE>cjRdv+T?v=TMqQvlKr4eDe72&sN@Ct7Ey^$F7Yd&7Yqa9Aw(l))TdNT
zw;?JGLz&iD>#s+lrt#4x)z8KUDigzwE^GTw?oYntq;?^yyckZcSetw4YA(O1`+TqV
zR5%lCy=A7`PB-%OCBI~y^q>H6lO6y|#D1xBk<dJOg;=Y^E2)>jxxL!=dMR}TS%?fo
zR9TEl{rg*eStW8?i)pHi8rpe>$eV34N{srII_m#1_a^XB6zTgoK}JVln0Q13f{qFp
z5G5#Rq5+3P?P$;-=tjidct=HzBmq>8ge1Uh(~62K9=qatthXqN2OdC>fQSOF3Z5t)
zJr3@|;=!?!-}Agx-P1jp5Z2xQ_w&z3nLetk-ur#4>aD7OsiJ9JAWUYC#8R{5WE)C*
z9`DgnTtQOc4{ZG9BK+VL9~t1{cK+gijob%HPSLIouT*V}X)m>1Efy0Fd%{?k-%CB@
zr2S{CttFCDBakGJ{nl}1G60iSU^oZ_;-&TSi}4~nCw6p_><RJPA{-%Tl|Zk;wP)jB
zX6|0Q4iUl}=_d_04?ds>*W5g+(5gHDKwz~Q!?L8Zg|*_dMwXMVp|mtdit_s)A!=NX
zfAQrDlBP1;>Y7^w;0!7HumT1HKLl=gej;qWjKb=4%Hh|3Qg*J{ziSabeGIS9wZ?Q6
zNahm}o^$3#YtsfQRpNSR7Uh-&EHym;!>VgI)xy0CoSZ8tgMCF`m28I4w6c(2<pQ2U
zs{(U@ieOZ=jf5MjR!lTdh6E)cNoeWc%CACGZ<~&x4i;u`Qh%6yrk5&e!y;AEuskny
zJHr6?tChg8p^9mGU1QR)WSyuC%MiA&$n7yKDXghP4!W|*>x~$W@51p|bA;gW59o8P
zz};CXW`;E?GgFkU%#6T+&jeuLUJ7Iq&%n%FB;P7CBl;teNs5{I@bebU3@eVeXKzl6
zB7vhAlfojx;2otyPKuu=7awA)EM9OS(P&Iu?mEq=-G&O(sEKjp7o6g7JDt)S>n}A*
z7=+D_h@OSyH_EXsxVoZq=BbKU3>&He8~cMHHU>fq5mGtlxCDiKtDL*2pW<9Ua*lxb
zTtW&kuOhjfoQn@u!x8^DD1}jiiCBV%4r!TD@wW1Lw`b+^R(RF>vpw@l7O}gMpd}Q%
zBL4AvAW-()@iMA<r26S1KQwpB?A@=TbI7)E8P7Ax8`yws`Nb#)f33ihb2%SK_wE#-
zS=_ZLty#1;eWffR4F^R@iIDE8!1hG-5ThZ#=#B9ghDL@uYnE~3v%&sLdkh3`_+Aao
z%b@AyhO=JJ8rJ<WHCW2CT`?Z7RP!mlT3r8fgb-50KMGeH5T$vLG!x0XPP8w5W^}lx
zb2d0>Wky7ysyG6<u@S0)!DSrt%btc#B1L>LI9M3lfl#7*d135d{vBcJkOj}`Ina%P
zdpAIm9V}fz|GlSFv@n0o)c(j7!iYNZg2Hu|1DN56oh@#3SA+qw+9g;pySym&5kZ+%
z1(?u$VQeW1O&T>ke{F>^99^EX%yu1w(*PB70Ug9VlLj8!{4KK42^|iFEX5mGSWUW`
zWu$0>9j~DH6yhN1spkx@UpIb;fl+mekI=LtU7dHdR_9$(CuY1mz8nBBPGyQg=rjE)
zhef!w8RD-`1Z54I*D#`@q4Gtuiu(I2+JS_153<cF0%?cG-j4qn`e|<+Cu-9r2pO!0
z9yOOgoe$eUi<Lef7HadyX_zJj)9sAom8R(M-O9?0BhJWwJ6wMYE1-@DXLNonR5(-a
zb((|>J?VgBCUF-tGwCi@{g_IKx^ZMAcT#B*y{pr8LgrAvs;>xITmKymJR%l$C9)Z3
zMkMF_Nqz+b9c4I*o~UF!cl)S@D0J;^ziWYfR^TPM2TI2ur&>qLjES&+f=!f`hU+hq
zia2ivsjWLhfWd$S`bo&0MztzI2xuSxffwL~J^MCQTZ9FQsjhSJxVgG+K*p@7s})-P
zozu0G9KTVF$L6S6DseN`BdikrDK^Amw8wb?Qp}Uz1Bk1Ey;Ts1OVC}2zPa?nb0vEQ
zQOQI~XEjS(fj>xVq-7;%B@wbv;ZcGK00-XZa)KG$vKs`elC2<q>aA8b$W$O`Ww3K;
zX}BmH56iH563}{Q1*eh;4i5nh#XzL!0+@B*>L?Y}0T^)Au=JKFnRY!!mB?SPR`^KS
z5Uyggoo;0W=98)_b~H-Wp-$gSRYHn-Z<cz=A$*UDAtad3Lv>c*JzdJafO3G>__|JS
zAD{;=A{1G?iSmsK7yS9oMvU~6Ptk_mu@l`SVHEfXk(}x26a%4H>>H#G$5%ls(QR1>
zT||H4FDh0#7Q^H$Y`4`%R|OGouZ&|ABF3W;>S~n|xLN=SbxvUlS#CRMI=6~UPS5H2
zU;xN!KS5BNzjSiX@WOm%B~@Hn``s7AtTW#nT)n;X_^8@C4C4kEcFtcq>0^wO91*Si
zxiSRGeRdAb9A}krlX<S^<`ee~syw@DzeNDJP2y$TjI4S-u@%K{bV~rPr2mur@byHm
zb~C6n79_Xu52rjR5FjT+MmF#eA(pvWkp&SFS#ii0CbNLJCW0;o9w%cMCOZ4dF%MDo
zq`e$KeaY#0D=H5iT)Xj$)2(7)ytDI!g2A<4eu2kTN8)tz-GxiGBSB_MQ(^7KjG~OC
zM$;;z>0RW!Lg5qDa4ys#hz8-T#eQ$ipBOP%2NkVy)a0*^sDv7#6JbhI-|C$s!!x+i
zQT5KVt1chd`$%L%Vt$G0kiTTYDU$0(lzP4EJ#D?{$R*-<kunRB7D*$@m}kP5x$)6(
zo%Z<aXzH7Tgchp~8#onosA`+ItNHupPpWrb8?NIz%IcjJRT~rO(5(Mt%7M*4)KB1k
z9SYg=G9ZuKXVoi@Df8i?;JKWkuCEpP%1|PvR1mA=FQ42kyzo>`W?u%*wmV^1USm~f
zqp1Or171$rgn8;H8tkLyw1-*eJ^)sCp3oIyO-8eL+r)b;1;!;yf%_=cHnHCS#$J4_
zP|;UBb^hLkx2l99nnMxQuy)t5<_WAG7(5_<>IXRmfYZ_d;GrEaQ}hS>M9_6tlXOs_
ziBuuzgx;7yr#O~6DUL{7>UP-v4Ef;;@6hKX0uN6fId6ir#${$!n;x*UaK!;OVs$G#
zn`+<LXdEo=4!=2Q7W;Uu@6Igw8*@1_FXPaSgLC<2`QSYKAH)Cx`(Cs01Wbj)f>9Q|
zb`~`43|lv0kN{-chst{zF4VT0r`N&vj>Ib%r~;fth%20(JsF8d*|>C4!HS@F>|)PD
z1BJb|4Y#iKq&)t_t~#3@?xsG<!P7{6#PTkC^3f{sNChOY>{e*<+awUFz$5{*)5boz
zJ4*$kUEpMJt|ES@&!>5_8xa9{vm2fI?4sWCX+V9tuk)!&9}d?JY3aLz<vR%@j12D8
zcUtwXufp}eG7z!K+p=#eF+u+Bu=NQZVpF+{LYTqYM&3XGi1X>lFKm-R^B1oF1os9?
z*FK5@gTo6e+qA9yc6YRT_haGuH|5=u$!COT)UW~c#uNfDXdvG_zNS&S0EFEMBl$06
z5xzY<W2tP-q|;+F8Bb)}eU55I(6@X9g)FtPzm-zN4xtPo1wAu>RJYHvN#X&Y<3~vJ
zuW+pm>xDH42hC(~<bllIn!~0Pi4f2i!7xJ^;WQ4Sd;`Por*W?#d~|}E^3KG#$^PM4
zGf^R~I)v*~RyCbHq#k+XD<&OnaOwp<1rZ9i>9R)PhAF_@NOBm~{~;f;X#zHh^b$x(
zp3w`g@fL4Vw!?*F${U8{8D@&)?Q<ldN3+<M|D~&Fc-TUePFBD{n;pB`pJ5RYpL59=
z02Z!DG0;u%f5qgpCS2zS2;-^3F=UC4PL5_A35TJ#PRrP){8TRoAP!lLivS>WH|OJ9
z{_*-{bqNq?R%(`2<G#TTYH+ociK&1HKAe%xeO(n-zz1%O6wT#aDC=ZE#rk}8DZ&$@
z_;mJJ23{$BmPgf3U-@z97|%utNATT;Jg3**SCwzNLcT7OJJ^gt;ktJ)IfJX7;ku=q
zrr{0(TjNh5M$(rL%H@`L9qW$uPv-B~C+K+05DAF)mCrF~YGp;wpdo}f+MWDmzQm-O
z{lw1gO>yM0r}nob-np9uXtrJ!q*JNq?d`5T75U_mqK?=iND6#Dq{n{Zh@IU03&ci@
zU&Pp9#pHbYB78!9m6(`A^9b_GWX9Z{fKMnzxw`Y>emDs$2gV|Ht;J4A_SPK$ockGi
zT~3O>d737;b~CyR%(;ZKDW|ik7PhJ-OK>MDpB^2cZqKyU&Zfr>70*NAiHKUXByt`k
zR;6avorf!Da|~Osx_vsV1!r?D$~n&FWA;1KIvXlVzn__mB>gIw1)74B*wexOZ^}B#
z7<Cs^0e{nB*vz8tCl{F`iVK@y)<zT;VUao%kdK4I%`Qc;b%UGUCk>&#>?**LRONDf
z1IdTz4(SN3B!d^&f3`S-d+H(yNNaPctk+RW{5P0bCVrnp?{+KgZSD3zxb9|k6%5y_
zp(ZdCjRRzImR-LUVhD$IKe^zd@QeU%3i>D$R&YvXQNcx3;C(VpAAU4wzX$L3G73WH
z0HfYiN39Q_iIg%=qD&Hx_=(^@y>&Iea>~rmUQ#_&q8hPp^nbZSv@_+);VECbT~{U4
zI-e9MX0lObCg7K8sl-;mr$lIuA=^j-wV#2udVr<LD7ZLWk1fC2)UB-S+izu(VyQSZ
zz~y*8Jv#+j*Uw3>7~b_UApknY6c+*}8LJ$YCt%Dyj~GqJQWCvGAZYXaNj7k@@KzKu
zejTV;a7(!EQUW?TTt5ZB@$-blT5Dq5N`6fDlV?I>?IZj!{*8S=4^L_3=LuNi3NaNS
zHwZupy&@ibFioT)-Xt!^hTAG^T1@B-{*z;0E%Vh7VrKCH{5aN!qa9wExN@FOm8a6t
zMelSJ)e?1yBdWp>S`vOG<fuAm|K$*6Xi8!Hb7A~*X!I8gl(Y2CcQhHbJoXIkg>U#L
z(_88ijkqOz=J=uA%7R2G%cb#<*ljV#&qW<`Jk?+3O(1F?hL!yBlW?W1T8cfxY0|W3
za8lf=0`?3p3lRlRk8ayV4S9rF1pCTKD+mgs*$U)n4u8$i$DL`AN^&tyRL|fGC35*@
zc@)ua6w$9xIge&8o8l6oiH^#uA<kTd7oK34c-yYK4pvS!Vmp)ZN?_6<Fb~1-Z8+Ck
z3`HeYOm7cXc4jRR!y1VIg$iSxjSE1|<th?a!A@yKHO%&E|31b)?Xe}oG8RFTuv8>w
zHaodA!Xg6%5lfzsZ93W$JFGG?*7JjMej3&Gdm;xYstFf(NsG%rUe8vS!pj_RJGVhv
zz83#>z}`rMMF9j#EhUJwOVr1ZH|L_vxhQuoCaMc1dU6f%V#ACv*eHcZH<*Ir|JV3|
z*tSf~p<SgTAg4l6MM1wEMQ6VOMc4Ewk||)1v<X|u;Wjk52g0?^F&KZ=5hR`M9=o*v
zj`yHh0Jczxyn$3aI7oY6_w}dHOZ#tIp>ucOO07pgD1!g6m=9&eeP*k*32FMXa(qa-
z^TH8JQo%ArV~ikNXZ=^g@HBD`zpP3;EhXgB%7chZ9@1PzNFtER90cs4r+TZrZM$}h
z!Vpk$*s(Dh?258xXjc}^0J5&E(C2N5FHn&Y))B?r`WxY3uU?#28j)jWy@#^MV#}>x
zSGBJZ8=RXk=|Wjy(B6ayC_a&ruZVZMR7T>h)Ui=^;t_$7>;B1Q4I{x$^T>~h-G2*6
z{w&;!H+aK!ioJV;b=Pi=(B8pl;2*lI+=9r24pn1cVW?2IvZ}b?;;Np+66U+3iV~`1
zcFT=^09`gHh|xe_DP%zc@-(H00}~~Qmin+@|Em3@y~M2rA?LCd3l8TjiQfb&*_Ztj
z2o1uOAE6X{-cs>s3GqR|iGPSs8SptMTt5vjHBRCBOL4=%X)H{1!ExakU4SeW>77n^
zu|Jv_I`Cj&bT=^ipQk8B1MG6rgkTo~Uv4Hr$q&3M1<2Np+kb3Id{}Utr=pbyxfMOr
zT1A#yQNu5+$THrm-VvOTglbZ<vd8mVfoi4{AXMX}GBT&sVIiPCeqUBV_5iVLtUYRD
zzurx83<4p>-NCaU*MrdZ16_o=wFbk#^Hdu_`(Hl`WiATWAEWKPkoife%sIO%v{}kS
zr?}@N)X6M?Se8SnD-rWqw;&<(y{YJw!@KdM#>RFZgMIKZ02bL#9>x?|fd@}wazFS3
z4+bq}SOkNU&B!rgKl}z~p%MO&D7kzQrMt_c_XLebM$D`O2-&(Sd^HqsjKnWo-m1hj
z?G_K#irfWwu@ZcbPZJ*~kq8|vh)|z*{G=>NX}l*8FStHD<4*v!;7SigA3eaO=txa~
z7G>=Om!k7fF=XxfaJ}SNID&g&va$<Wt89Q<*+^Acr3b3aWJSldR#8W{qV}qyTf+6H
zIT0h(sUednhU-_6O;+f~la%l(J|jjgf$4Ple6z#nvm8FZkIxjJh2gFOg3qrY_d@Ym
z642OpNb>o$*IMOsFG9Ai>JY`}3dLtc^4ruR00zQF%;9#QAAQ_@PjkD6phIqVkOHtF
zaXHO`Y;-K0G8wRR?Zpbks}P04*y+2gcqjJmV#cWz-^1P=?#8K()l0E=Ye<!}_B$M|
zxA4-j;Wrjct~!%q3V|O1alR00g*Ev&a-=u3=VPW$z!qrhF3B$tCy;`Hp=+e=XGW=k
zDX%LS%`ejw7T@Kd?izWG>^0N`7xgi`6V%xkvM0uYI(JiU?ytU6_~s_#bK3W)vhNQk
z@eSA4;l{D&c@)4Qom?F|Vt{Ko4ac7AFfk_fe0P7xY8Cv8I!40fIpm?`MDlyma`r}3
zb}hOAB!gH^gEZ4MLIMnj4C+x*0!I4CaJox|Q%Qy!ZIFRyC_B98Zwmjh+b{X=p$B0A
z%dnr4SsW4biK)@i*#9>q==X>2y?mmekIo3Ri~UVdQ2PG=WY-4Y3*WsspcKBVmhUL!
zJ+~^8mX~;y<El{%8%HLb6Ry7w6}(A`M(dg?2brOFJGwMKTQy3lNFfJd08M*K0eY(y
z2)#gaj-KX!fs+wYDY~s2whzashwv56odRiY#4|RA{hyNUEI2`slXmbS@Nqez+POmt
zu$@xX4j!wnmKC^VHOHqMkC;imK6yxbz7|T(9j9RdO&<*nJ^(c9JGfY9d7uHSnnUwr
zKP5>)d)+^YH7dinz#S}_|B>DwDmF2jok#2+l~Hx38M;YTe<V2a5BWMMoFribX_^SF
zltN_N4QN8-BeB{HouI1eh-#iy)g%^aRy^PWHIP6(Z1)@?dhemsty{d5;`V%Y4cB;@
z%{2g&Y8$RU)S(o_;-&U3f!e92g<Xg#n-geLu0x>b{-Ftk5uQB~s6<sy0<D&>lLTV#
zB~>Cqk4YgC=o~cR66gR`4GDCss>UVI6c?zj1nOZsP@GDjP49aNbPx$tdT@FIk?KkU
z!9xn2I64_tu=}*|jeYdFY!TuDcOohmpNS3@?qOBc{X})&J{q3W7{3-b_7PvhqP*(!
zDL#8L{ttdzqHSws$AbMUgV<cCT|xUQ={Ffp2SnSr6!ZAZ$6nka7H#ayL4m|F`_G%U
zHziDuLG!gAp8gAw_t`TAgAUBaklz$^rRV44lgci1OI7v{qyUw@Vl$<uV2p}yq@vtp
zMS;GpRP?o5QEydIq~g?6uh83PJq{q+*B#gb%c-q?i0zuMz@5!|w)efEMd|2sX?Vti
zsIH)Icm~Hme2%YhKbKxTTccONMRRCE=+(FKrBpQkx}h0&rvuq^s*jze>MH5gF0Fbc
zel0JqpKw6ImEpQS$aU4j@e6n{E?jpGe=Ct$#owwbQ?!t7+uYZMzT~)8m~^rfAh+wk
zC-nC5UxK8scuATfZ!#j#T;42WP4$lbRkuq-C6I*T?LMtQ@wgNq6isnLVHpop?+A=v
zU>R@X7kLJcr&4sVuOoI81*bpkKst)r7i|PeCxJ>ziGCwK0|G8p|8;CD_^g!z#Ha6G
z;^S=HtU8v0&*kA3@G-ymU*K~^I~SiWt>Lpn4x1-Ff4~xmz2VP;?MNagED(I=bZP;g
zMW6pK@VRRr7oTwgu4EsiSPc3N1WqGdd~W-0@9<f>PcwX$g<8NT@!6j6`5LmC&K~LE
z0@0n7ZCzack<*H-t(F4hO~bbem*n_|R5mGD+2gHMHq)(ayi}H|cB@x<4H+yo#y_y{
zKw7o?`csgh$!kf{>fdxl4|D=Ju;q@YdF@FKt=fwjE=|5V#-&LfzLxMr52h*pE|CJH
z$+O>(CPX7S5_hb8qGNV%U+n}!e6edNw9iek7i-hQTX4K`lLG7hNm#FJ4c60LSoaZF
z3$E}~w789n^zhay>f=`Q>eocN;B=&Jz34}Mi>#bVgZjyz0QCa}^%Q)WZI?z~z5Ed|
z%SwWJO;49U>GiKr3Xnfx0X0?3Zr<OkZ9M^jeF5U9v|={-V?b_rn3e+nL+SaY;2&S*
zBln1=P8_M`0OsdCTpZHN*y~b&IGm0359!HWvz60=&B@K!J*8Ir#SOqC3OrKaXK(`g
zr|L(+u^utGXSWOYzOBLiO?O4xpnd080{3yv#iSS8Oar%_Ngyxs5F0v@0`K0+%QwHe
zFrOtL?ZIC6a$)}BOGlr*g9}Iax>hnQ+cVgLybNEzCwUn^Dh;i*tgHDCkj86pe3s>Q
zy{fg@DA4+k5XAo}t^L#aES~WQ6~B-3gx#<F+ojdJN4s*FUbmi>0+h=I8`IIMP_{F3
zJo6F2#@>m6;Iz7RB*1PhpQR=Et32@U*yX~%Z)@;>bCe^W+rCH#|6^OdE=b@%r6u?;
z`S7>Hug$R7w)`ag3y*At{&z_M(*MM?@IT>`Re}Fz3__%(|AQa=cK9#x(Ep~LF8vR0
z4gO#CKppyjpQoe$D?a&&P<~$JkQ&SdY!v!v$-x5q%fJ72_{VzSe`SXY{{;fx9&E(`
z7ybpGrGr1eIsDwzBrW_${ul69c;Mf$-G%?wBU+K4>!bkXXWOUg;J?Qw|3d#$T7v(Q
z_kTP6ee$1#f1#XtzX$r?B?UzO)5GtRe}P}}w$jPZgX?}f{9gNW(=RUluWt?h;V%3Y
zpQNMzDr{7n?AeI^zRDqnbnt(<_P4|DlmDMx_#f@oiu}||0kQudr-OfUq8a=<p~Pw7
zKk|PB|Bjzr_{Vo`1^)A;fXM%bbny3S4*w}F!GFn`H1ucimCd<-okEckzf4x+MHAT{
zDQADA+{x5pFQl(v60RS>QdVgGVS){_?HQ-dM85HGEex1Hl_gt}u)&N?D{I>R%#^@M
zgBQN122G_*sk^7X6?*73G6&<T1TvHTD~85pYIY7+CA>n;Qs_JEz`^Sr7G%~83hD$N
zJVmEQCpY6JYJV^5hs87(F=1RC0ueMrm;5Mvxxk1ab6n*FVIHIy`}AXKF?8pC%*rrw
z%uqhcsRXU6E=bwPWror`wCQ9}=zKKE)L>F?{(5lk<Kz@zFWgJBiMd9MJ@C+kE+iZW
zkVEoLH6CAp?xOwVyWrZDZpSf&KeB$#cOC}grP6|9!gUFNRB%+dZW+m86?HE%VjVG8
zvzVL++CR$18Vr0u$ZUZ_0QmH;D&tN+w?<&&jGY<dZo#_D3FDKz$*Q`WB<I99c_SpZ
zM*M0Zo!>w@zft>DhLN#`O`#V%csDP=sK9CR6=%&IM%jr^)C4QI#5r&g6F>qvb8-i4
zJ5L73t-#;)=Vko7+?k!xnH1P2K*YewRdS|F)NA{))u7`WE**7uHZ@-VfW-3e=L%C6
zMFLPB5?O8}j0U72YKBhy7o-5|OD(SGL;_<Bq7*tD4{-;aLq~TOWx&J>66wYwMWA+B
zo=*1&?I-WZ?`|I|*^i=I?g~uMefTtJw)j(Jq9Q~(he<?uc=};_v7@B}4b1=O-KJ7G
zdX_=z*_XWo{5$zOE2;gJ@u1aa2*X&21#}%Xp>|FknW14@i7pOeTFHrSyon00a*10e
zaLZP>Q6g;P1BFy1vEJUi3bFpZ4z-*0kFKY)_N~`ro5cps3l_^Udp3W#XegH@p)U3*
zdgLrfW?*eE=JeWVm(TC!@dIqm6`rvHGyP7wPMv`p`MiTJE7m4QNk43WS|r?wrBE#@
z8WF+KjI<?&)j!)XZ_1SY9lqs*eC+S=nY_6%hlwS*b&{RM?H*zy@`jm#L$`ofNal64
z;Ye&?fAA5=<jOgn;Bx&O6TFaW9tArwTT_#bNBlFhKKUoD%RQVJB-+QZY-0^?`G?Ck
zZqfOw=yp73(NEQT-trGcMK5t_X4R{rL0zk<-t(4!hIzYSN{y|NE2heV5wNf@7Q8Cu
zRi<sN;VuT0IZz2?;o>XvUZFYD0cv+=OgO@5oW=*BGq4nUty6)bkP`!`o4fX_`c@Z0
zzqCzagNQz)n|E#O{ohyOBg{edAh4`T^q1PSu6Ze*tmiNFdYV!%!w4jm?Y=Z6E~DWc
z*I!M^F@4oBNE!nx@K#&31FU`j3I&FUQ=ZXC3_yD1>8f8n9TyFD#=RN(^#?H!JzyZF
zzDvEvBIQtC23<=UN<rN5`T{9PYw^#us<FJpN{IM=;ks_fkip{K!z722hA#zB$-VVI
zvq!IhA*jN1o+xFCKY5s)m$d6K>L8Uf^T1cOQCyc{cIyXR3~N50ai!i6erk2AIEZ#{
zu9R%7E_NiWvAR@Wn%%Z<mJiGHhu=^m8>@NCzvb2Cyjorz<&R;`r9fh_@y|@b!oYwm
zz^G(u>O|zyN0E_kWEbVHLRJ*&DeSd@sq{u+ul0pZE8HcxN3O@Bsnh#O)_NWjxXOlO
zg{bu?8o*+WLyOG0Gto$4Q$tZquJAyi$`u<hX~WHfieeuR=HbM2nNS5xTyDo{29nGz
z%Pn4|>5#K-xseYulf!jAaD_dVyO$MOH)ACS(!+*ZL*Nda;6leAB?dCTaw+JgMRYJs
zt4~5Xiz{*^5d-*R<;FU$@tv)-RF<&AChkiT0yKkaDe2UxER*U9<(<{NS_rAESq2RC
z3bAo<p4noU1ACo@HFEhoE3fv@HYSGG3=L0^RdeTpI<Wl58L|1i^yOzGXL~m5$F4_n
zrJZEHJ#$qnA-5+>gh$2^$HZb43*ik~Uoa>H8U-Ha4^0fYlWo`U+9r!1u-{SDp-F-{
zRm4XKO&mJT7G{avj&+nXH(;N<N$ORDHFX?X#DsoaHl!22y;<hCCMNu&dn<?8nkd_p
zR?8E~EQIYt#+l=?sS}y@d~ku`7Y}zn66-s2fD?j(&ivs9v{>_}BfC3<^0cY|x+L+X
z^8)^hY5@LHTMW&Gtj2hf3+t**HDcO3>cXO0exB&uZltlN;|XoaL#t^^6g-I+l2UTJ
zq9xD40d`nW9E|uDJhrcFPg>^0JL~K`2rgr6Ygk4`{64`;(wSwaws!5~GighE_EokN
zUd1)@M|l8H^4Jze$%vthm33U0Rs`Z}?|LT*rz-Xc5)kY;4X|RT`BD+m*|P&h7dMwO
zra`BJ{{Z+h&{+hae&v+$I?oB(QjUGpw}xkYB&7cZD^$5`!RyA?8W|g~Q+oK;r=&<F
zV?oL|=&2UQ{pClsV?P?8l#D_F>}N7#yc91+zG*d^<sS+_gpgr{&56-U%}(wM6rLrT
zq>`^FVG$f`F#!wsn;n3Yv6Zo>c^(=mN818`B&c%j21uwZ72dK_1USGXS;|_GZDedQ
z%nDSzWdceL#s3VpLF$Q=^%BT>X@fofIEfi=kRPz)0?<(@En8Z<$-rhmq^yX2{vA$=
zB=k4RCV`c7yRZzDH5VrvH*Y~4wROs6s<KHA-LBlG=$6N?%aH00<XKm2Fb+*y`7Nb?
zL?-qs#X+x(4r7C%dMo1ZQ`%w&OQeE_?AEM)o6>?h64-9--Nan`sXj{bcE^h-h<}z_
z`+_Bqp0yBQ-+mU{%c5&|Vdv^yk*bL7J5l#Z<pEsHqIR(O8rl$P)4+c-8mf08<6Lb{
zv7vewQqI-&>grucL~KaBr9<ANe?_FeUG2|wHLZ2cX7-VJUP3j0E&U6P)G`1PAb**G
zU1yZH7ZlQ1BOm~t<y2P|3ok^N8pA`ZP7_6ki-1wpD~Or03}Ca{z=d_TPrx~>Bp>8~
z9AYl*Jn|5a%HiBm3zfaS{e431Wr9W|2@v%G6zT@T-mCaUFIn-9BQv&=&rqwIJj;}K
z8)`N1M0a(tIVI1iZwlARHd^KsEWE(YeN+kF#0t9GGjNnDZIQ+t5TaLYmgJ#X$kRka
zf^0g5JR{Z-$QD6Z(J~;T2c;15s)Sb}aG(ixud!#pr7#wmlr@j_?W9?6OCx|B7C+sH
z$_gQy|3bfk{J?=DIMc|7*-j(lW1+=G5da0Pqj!aWgDgtB*y2@IbOI-B*>m}(3|*8;
z95w5>$syQr=I2cm>2cXetsEui09sii^XVlZ%vP3hI3q*W4$Up+Ri^!d;n`v4F+vEw
zmC=38mm4iUHOnYfaPj?>S+ZYiR3T$2DO8sDlYL(=r4T9SqnardSOb^dzz`SQdF6Fg
z1%^ll5pD+)Yjh4`f*v?86ATlfBo6>`G4<W$e>_Xn)LFN3tN^5lk-&1{DPT-fxPFs_
zuv=uW`;X=LPprpRkgB~KT1M4b^r@GHr(j}V^ZFj*-2~;qm%l?)Ab3tcavybWAj0i^
zE4$KpML}N#K!~;E0yb0Uut9<BXHXp@0Fg`xB@G}I?S7OkIHl@nr*d&VTqUR6P-8Va
zOiW))+>g$EnQWnp>P~x2Q=SqPVXuNCtjK@-QhE``p>y!VhpHFR7|j%TtkCyAb^zb>
zSc*ZTo&*pdye1z&dF%(@Qng1C07S~uU-`=0pP^D0A!v%zQGNi=3;J+XkD^vugkUS$
z#8;5}R$$IgdRwAv7p3BK6pERlO&eXDzTcRN(;<7t=@t2aIIUjh!AWo1<-y6mcoBqQ
zI}Lv``z-6}zXB|fhe$I2f=lC<5b+#zbOlXw90+kU#{(w!4%a@8FTxA^AA!utNL7`a
zygZcK$|Orp`j8_hSw@WGow9Q*LtUt3F!2z~Zmw_))=eDfSV&DR7emFQL8f+MkP(DN
zQzCj%xd5kBIZ5K&Pnu5DdNVjH5GCVYWpMH&G5fe4;@B^E6=cZ3gVgb_m24r6K0vq$
zZIpt7E^F2;waP@P3@r$68+++OXK0{ydsF2|RXl&igdql2uXFein+lAf1!pe?h{Aus
zzz&A%*p4y7EltLe*k7U@MpR|kL6(m?qHBNKT}*)p8{UJX5*@G-(4|Dkfs0bPa3$Ej
z;T53Sg=o5eNq;Q-K2zy`G5L-4LHq|*m&*G1u6*bC72yqB7uL<+g;tCh{16}^EpC|B
zj1~)DbZCJOW-aCis3?cq63uv$cZww88Gqpo>2RTEaV)$H2?cKhYQu+6j?r-{N6c2)
zTee4q#PD4bsCp(xLXak+AtF(`tQg{>Z7xxQtB}qW)^pq0$XlRNvvY-rN{8#Jjl=`2
zB_mmjea+E|_5=wP<@8(GZ(aP-=FQm|FN50mL)~3s<06IL;#>XWeTa)deptH)PyJZ}
zluUw(wkT;r0B8>S9AiO+T8<xCS;xHT4M&NXefgXp1*aU~bTRDB!!Ia%Ly$o$G0Ch|
z3eUJhSqbPdLm?<PAZUy8pFX8q9vwuai4ncCf{B=-AuUVAVyw3u543fSR0v&R(Ej!W
zQLCnfpaA!ZO;R8Qe?!Sz3FWPr@`isXZ-W0Rt>BN*SuPm_{%<tL|4tYGaQzAqu|On%
zV!~c-hb5^fKoykj0?QPvyZ~gHyg-vl^jac~Yi>^^4!{F(hJ4}@XMYkWel>|9GDiB0
zd=vCxHZBz$cA^qe2&{-6?m&OL->s@*v3uF_lC9d0_frB!&>9;6I&9o>{=_eAf!q`1
z3w!p9AUC_5Npkz;ZG0tc8F<d&chEZ5Foy&U6Vo|pH%Dmxw4CK7K{3D*P!(eVyp|b=
zhS+L78Y&B1OR?M~LKV6M7wGD@<#9G_pcaGtcF7BXi?%ma{>M*AwXGT+VGB+P{vF1N
z?|}BNp-`@Ycw%h~w<|l%usSZp-3mM!wj!dVPEM}Cp^)InZ$WkkF+gO$SRKO!Q|21b
z0Y`{{zOew1k#8==QslE%$tO6@z948;qG*Qw5=9l+C4rPchT4!U#efy21*31ZL--|j
zz*hF%EXc-^o9rORv&sweSB7hk!h3GP%Hg@_IcC@3Ip*cT;PCv7l|v1)Bk&rP9mFwh
z_<vXsjY(%#5Tv2yK)^brfA|rcNCZ`nm4PaUkAmEW3wv>04l~ye`3l<1h3jskSP6px
z5x^dm5hd)PQDtY4_`|AFY#G&=JFsNr<}I!4gf5e>dO(4%b6u%`RB5RI#)K1Z%Xt;C
zFT6u-+>ry>@YJE0;(5SNgn-!X1vH8O1WC4MbrVKqJr72e;z0_3s@Qe($#i&OV9W=d
z+7x7r7aOTWuxdYhlW=@_U=Utr*j1Z$U_Zw<cQ)CJZra^spH%s4lb!LzcC_~Zp51*F
z-nRV(|NMC_-mZ87|J*qox1G*IufqzA-$oAy#ek0uo(M|XS+Y5=P(b=Vfy;a2)XTu(
zA0ddt3<r!aJ_!8|5Apfjr<IYhZ_r0kanSprKV_hZ_M-M(*g}c)03D?_R|u`cc|U9U
z3@XcKu|QPXc=bco23F^?jT6}h;EDh&xyX?VE6{eKHf^v#5#gKtY%IM6I#jow$(Eo~
zfrY(@O|fq2d5U%{^f(>@o3k8j9-OagBQ{w+Y#N_b*q}Zh3?OwnN6Nd{43RcAgFU2}
zY*Y{n4Nz@-i+yKF0DGXPjed7|DR$Z3w6Qyfc+AvoEF^_up{;lbJdRqY+t~1I5|4`m
zEP_ehXfT4(W~hkYuB^HWM0u{KeE0oY{oR9}?|LM^i^_KgtM5q68hp1ruy9?cHkem;
zj3j7wHS3Ex5^&Hfm?dA2$7lH-|NCV;jse_L2{lMUJB0mD@i=}m-Gdd#@V!~ZH(auT
zH@_U?{pLBoIaR&+)%WIZzIll~P%H3|@6BYs$;TV}=x3pk*E`cDE!odofxKTou~Zf&
z`4jGXI*G>o)T(`qm~;fAu+)`@dG@j}D5a2>B#i=dZ}w=O%xGJIBPR11bq`{njch;R
zrhXXV!yG=eZ^UNAnE1Ws832C1WAjt&$@Kpe-h<S}8^dThJ#cQphKs@-S_lp2t5dvi
z%HljLFnpqVsNjS(Yh$nMBXBN#8gO3h!08Y;2`|)mu^K;HMt!W=yqK_K{Oo1^TKZR0
z8}rw%sSSc$g4d~gC|lhiR)9T3AWC_H4~8_>uomppT+59d<ZubIE4J+7IJlfBAps3o
zSVGshg|2any$E^YYUAau?YXVfdel*vzc^g`AugO#NplOWc4!K*1rA*Kb!{i#siasy
z+w}nKM4kb&Fo_Y9TlXJy-DcKGe1ln^lV}TzaVlvBP9;TotI`KcUk4UbQ=(?sVnBg#
zF;wybM{=~HF(89+h4|Q+FG06(DrwfqQb0!%>fMhEl~I6~1d-s&F$sGkm}4gnk!Z~d
z{5qjI%Nr-9VR^X}q!FfQQaJ1ndkf3odlD?~0*!RI-K@VLy!H9JR`dxwT_pGYmf#5H
zLTL+d0D-ly77|44r~jDr)g?ZOK0FP2_AP19yK%f%q6NKQdI@@4;9%p&`XxFk&**=S
zzaqs}SVMw!kW55{v~&PCN`N678gw`m%{@3u9gs>K%78S-2}pa{3(tiubM@11d>ly_
z^+IHS`+rDj|G#f}EMj&~%fs1ni|aLIy(l6n8WJ}?kNsDe_xXdb{nd~CAGiN0qH8by
z|JUsojP<p@`fvZo`1iTq*Z%PT>-Jx}!PoxkNB4;T1(5#;<u9A^Cpwj5hyWHb)@P(~
z-@0vJsE%|olDY(us1vhHb>Bft;YnCUEe7uFpV{mjDx6Q>!qfi>>xVW`H@jwNGlzBK
zQ)feZb2PMFc5utzP<c+jmDq-G7`m(g?K~(yHnZV*2KlQhGjTR0jRM;A4DYfhDDwq`
zJ=^ZvsCz((_xmk|rAH@8kkb7}%oW-lrHG7z2pkw|N|^RZfM2#%OND=df*(X03wsXu
zBZMF5P-$gAiZr`wt%qh%ZEP4KrWmHozUc2M??8Wg9-2A$hs+@T!v#6Y`v6@s!a}Z;
zQ^;=bue^2%42Z*!f2?sTM}2Tzgs&DGbJ<rs0)%p5ic|O@)9lUofiJ-YXQ%`dtme%@
z&imGJmrU{`T=ydhA#=D$18~QAzX;boix;ZMgHq%yP>A!m8^ZOo)HgYXIXV~L;CEuK
zk-sa+W&?sS8jYWa-zZ|mhIDLp-L!Oy;LdF0trRx*2R%g+qzLmVdPot?X0!m@5@x@Z
zi5d96R>?&rMMt{b6rFY-GXcZ*L7e+8A=^myrIB%;N&H0G;IQJ7Wdy_j$yzvf+kObd
zuT^f|NB{AcKo>l+r1t6uKk1~g>%-&|j3pb}v7eqR`vpSCL?`clpKNBs5I$@-xY+$-
z63%w!Fm;mi*P`)6%ndMn?T4q|NtXEH3$+z4bPCOnR?W-!>zK9>gZ}8jAWTCzv>)!;
z?T20CtA-ge*(UUc{Bjfm=XHJL=C4#D*e{~8^9)XSY1TaHQH-);R2*Qc4m)q#Bya5(
z{|b^7gWklDF#*0*`T>C3#IJ1Fp<|}h_p0{`MapGCYE+(l@$kFqi`4QFr<ni4c;$-p
z<<%?`s?C;aLrWb%G=)>^_g9;QXVmia^|u7ioK>p4kALGCzj)+_ji=Zmu_=VrZrj~w
zQ)-uFC+)_<cUrI;$33_w{}G;Uq2{#q9O5Bj(*>GebtNn~9+bd{Y^XXPW&?sd8fJV0
zghy=1=m?aawjG9IeLAIgf_IM4QcJV#kw{^X(Jf`$Vc%Eb|3>?kd5|2A!zzaO>9rUB
zZqd6ADMV_0{_X+y9mEkf%Jp~qqS61r-$6f>zoWeaVU)kyoiv20{%&bHn$Qrs!M)Jr
z+z+(YIsVQygp)`%+O<AX#Al@7@6LDtMB_H1et-8L$=6?xY+1f8c-tW=2<Np<tN-%<
zSNYoZMtb==3=p>{U#;t-efCO+6p$|%KTka6@&6HrmMQf5^Pl%bukkmh)y1^2RZoen
zx=K97DFIB8%t;BUpilou7c;F#MuF?-Ai|897T9e8nrzVQ`WjyN^e;Spy|Nd3wpsSc
zt9&%_#ZQN&zDtRp5TUfO4>`i2pAgv_KP8F0_3)HJFrCyXMrn^U`XH!X5=|P*nENh;
zIc@F-1v<E<N9d4({{#-MG>f-DL)~fT)RBoJ)J&YxvNK%ADOeRub>N3$I7eoq1Ptgz
z$=0jmOpz+`BCfDd1O4HVk-W9x`UgpCIW%A-W?u0?#b0NmwULOw%JIwi>)oW;IorT1
z08oPeqXtAGo!RNCNaP8#S0JgtV~RcDlvrz;okygIHaln-cqZd7#8i{$>SMI>5>r*u
zTp@YHo{WIjD{A;Io{6&fWPka@HG*Q{7>1pd=95<$hFx+m*fZ8Q+L9ul<M%>;pIn+E
z8GzLBPHz1Er>>4@rHII9_v}f3!_(`@vu5%Ec0eQ~9@p*y=~rM}Khfc1AQo_^@TQ&3
z=)vY$2e+WgQ0MPGv6>qjzp~mxV>HFs_%ZuLKpOwOUznTg^XE#QC$c|O&i+t2@_yGG
zgkfiHT2{A^uR)bkpd}Y&a$yD@VG%R*D1VS3G<`Y?Qu8nZef4)7=f~iGn;R7sA?%PL
zzAmK`D?^zPt2pR{co>xj8Dr^bWcE`ToS`~tFTxA^ck6zYKr)9F<w_ERtN_9I^Q6jl
zkaY<yiv>1(T_P7~u9(f00HY5(0ZuD)+d8HeIo!4agD+J>U#d+G=DMSc5rUE9fFW70
z_L}zqMq|6~0#ieTb0j2~%B~LFaiEaoPX6#*<{Ol{M}fGoijh9XSgY9zF~{{xxhB=j
zz_AL%r`D?MrwGXfd;^E6=YQAFVdD_G*aP?_qD8Q~2>aCki~4auTbX)mFF$fb^Ey86
zeK!Ol;HXWCJ-ZO&eUR5O^1qb)FLmLn-QF&2Z3V6ng?+;HAM#4);)fR=P`&f2a6MNi
zA%!!edgm44`iIm_+v=Uz#;T|Ku3gnJQg&?B5vttPRfpgLWh$ydxY$PuKO|&ew+FZx
zBzy`htw7c{N~XvkDHgQ<dVQ*NX?9zIUO1M+l`d`|!O!qEy>#s$TR}_MRQ7Yy9M4h;
z9+x2<N~TE3I!=tDHt<a?om5rh<}uCDZ2L~V;giTLxY_*Bmp#@xTUP|#(T514JrSUJ
z`b~syoc40;p_nsqvB-0?4bkq)`~Z@w+XG+YS3n%V)^_nR`oiICoaaCwWl*s%fJIrn
z^0FPAW~P>6=eThF<LU-1y(C<Jr@8@KE5h|$dy8W2C>?b&D}jY3JR}6dQ&EM{UJ6d7
zNCv*XK_mlTjuXjHU#aP+?fYSq{7*Q&mDJs=>?_G*Iw;x;&d%6vkWV3g3^_Deq>kv9
z20nf-E5JiVKc#>U`GWS>dR3ldt8`v!bMmDZg7oaNJAnjb%Kuad>>PLZ93`+V!U}rF
zO~v6re42BC33M_)5HIJ2LmsXfb8ftJ{`~h|I?MDx5OgM1Ox2hgatIy&J61EeH*avx
z@!30Idj9BJ<dC#K*0An#)qEIN!eTzm7Que1`$qm+&hMn|r93ed_Gt_4(-!+-M6WVw
z1zxrxeW4hoY&WQH=wAY#Da&3?>6nO9a8YAm{!q>%!7=?!rw9f4Ez(4otOwDuA6TYN
zDGy=+OaZGDwt_-Rkmhu+CTIwLN-*t(ScfUju5q^qFH|YcC5fkDx9@CEcQ8wz@-e6T
zVt$JGIem7jI_$$O063zoido*3e=y9fQT#lAO=X0doGF;i(kF9j%G4|)!H^{fQO1|B
zMOnv4o87YcqlUs5gY8)Ej^%{wXtF_yN3ifqNOAvcWkrP)#qg1<?pBj+_B8LCJiHmP
zg02Z!)Z1TVCRK5enZZS@4`K+4AOt2XR$%7koM9L9=$Ku5*)j@;m@r0>Oc~fJ#AFFZ
z&!|ks9&y8*<I3^O({mOv6p~O|q<mpSSFMi*Mw8BI9snb|b#l$p<eZb9oL1=ZcXX5h
zxqu<%fbh3vq>>ESfuh8txZfx7%NW60q5S6M7fN|4Dj%uxCrZTI8aojYD|)iw*XJts
z<i+QSe!3q28!?AY^lS#Y2Ptl$9{d66GYNOLy?dF5^)v8^gax-!HxIfEy1A!(01L;H
zvCUHlXJXu+`4KgnSBM}!C1;USMHh=Sy@pdKVd{Nax*Mshj+Sneuj-@}waV7_hI}2k
zQ1;WT!+0Xvz}mGE{A!KeeVP{2pDd4<LcwRL%3@I3?-!>iZ8__Kyp+lB961G>N?Vpr
zX=gpJl(sDK1eEskeMv<m?CVeG@s~;qXM-2;x4Le50TM&(X?-BCRN4pldHz}|?JRu?
zJIoUEd`wNNnq@0c1C-VYLd~pk(q^~I_>)xHVGSP6ZJ>dK(3MH(`?B20+7^f+2IWlj
z0zVGVxQEXXo|1aa7JqzXWMCHqj*(+AmTHCq^5^^2+NTI*E=TlN1pXT=dsFHP{0zPn
zi7FNVHVZ~bIS^u;m#fT=NFA2$tmjjhN410t5K6C69}S8atCAyclVI-Ze-78n@ru@K
zYB3N5sJ3y7$JD>~k|RWw4Bzx=eW<~3S8KvL&Lh4cxN_!m^ubT}>$pc!hhg(KJ<U|G
z*TjmbBdFJSS{m)NWCfmRp!(Nob0eQCQ-c#-X^3$O;%my9TN<FGZ<>R=bd^vM8rojj
zQNx<0N()_oxJ=2h6K2pz;zgzbZ4>(z1E@3KZe}a<h18A&uzMtSl56NF0Gw0X5T3Dv
zlyD_r1r8KIR`%}Gj9Mh-9{H}3A?uzX0jsnGz#QB6-RqYCiE+6=37S}q`uOKtn+f~A
zAsLL9i#4{hQt)#6IgaZDc7z$&QH!?AHE{>p)oeh7hk+d4pgF`Ays*!Ci#;y*c}N`p
zcujqh>lB@`Ykv9(`9knN-(3Lb-?#)OtBs^Dkeh0`->eq2@df?<we;_;!1>E56!dOX
z2SAH_&P)BQ+;bcDrXK}51r~rD0wCiiSB#nxzrdEn-(mzMV_4$P1HWraa}+Z8BT|Bf
zv+Z7QdQ1aPO@OCd9KRkH_MjMydcJekqJR7jkUyr3`4^xdjJb^E#hy}`LonuRKrbeF
z75goDe`EtYmRyObxNOJ$N&pqOOYinwO5T-e>m9{bRwSBz@=TBQHVpVxXfsTA-$hB&
zjr1Tb3osZHIf_wEqYYv=kF-8|N*Qe<u>eN9R|cu%^mDZS(`c)moOE>T6aWdusl)!L
zNbCDH_}q!K+K6OAO!x}{6Pna4BdL6m){Fee?6#0U$vKVNUiWZDcD?{_8PbL8I!c8I
zZBkVB2NL~1R9X8^ewBq-igC%s93`bm8yBQK4uhcGEA~u@E-<I)9$MN=boYcevdcCS
zO!K@P`CiE)*u?;p4EC9ND%&1vvp?Rd)ijEej2$(VR7ijh*T7Wb8yR?b6ycmE>@Z=5
zPUBBf5hAa7$bAq#k+n|o&bYGsPlqNnHA{C)9nTiLT0Sp23V582n0yJa;3K=9_3J9T
z@z6KrdYlD(p0i=8PdUxqO=7;IQ^}p3a@f>7p(qBqFrjL|(}+_>tYC#Iu3=D3y8sqq
zy@)@a2GLuD!Op1%E%s4Efyw@ttRH%X?bZ6mf2_dV5vubPr7{~dqr51_uUwSKg%zlI
zKj{XdO0YUztON_>aU%wRTSBRXr+^URVxkfv*dtg0N-HW)vHKS+R(8LdP2tbyfZU-B
z``kJp*4sD634y;arodP8&7JXi@_4m(@P0p8`$g}AhBFWKzxUB+{AHjG2;K(_=!3nd
z0xvu&nd<u+CLYx;3pOB8{S=Ys<$=5LF2nveX149d7nqN}7GfB}c#1vqXx!e}<=;*A
z@i?J#dEh#f#6-NV!j56RSz?CFHl&Vck3;(rhAA!Q_bhtGGoGE}&sBNA|E_ik>Vhzd
z4XAbB;TB@fHYE3F=QI$t$|0(c9^vUfkr~a#xAA$pIjV5oy(q3GH`Lq(=S7(VgoBP`
z1>&mY+{Iate{Kg*g5PLluTz9NB0a)4chMjCNiKssWg15=f_Dx=QiPa0q9!^-rDVc_
z)6%asFB~rbG3-q>Aj>~sS~R25@hd!C&gJmsW3-a*c?1OV`{_zx)zBvemh4c86?py4
z7`}$?KwN_z_!eh->8-+)@~9!sz@g`;dLk@|y}uDa9oI%OIeQX#?m3cb|9%s^%cpwb
zr2_fj9gqgz_wQ7nD0p$m8j-kacr$n>H^HQLu*X+7hZpu@zKUPY=O*Pfo5eRHepw;4
z>0fxIjl8GNeGkN<QKk3Bs3VrdoJK=Zja&XPj-QENf4EbEoL&ic(4(kkDVSE4YBqw4
znik_Z|EhQP4cCvB*6vqhM%YlOZmbN`=~HQ)qsC3=ocdki+F>ZLyxrk_x#59WZ!Ecu
z>C46j_)s*8Z6Gjb#-1DI^BN}i4A<_5ufhupI!CLU(CXQY<@lYa)Fdpx)cyb~0cGrD
zHY?*0%NV+5yp;!_jkF5~KbHkC$ym#U9Lw7Uk9VtJc9O0Q-_2t=eCJm9kv!1jTL^`U
ziOtLMFnI>=MCqVDB2P7f`3>P2bNE2zq!;KxEY&q-nA`SNf0Tn~^nVcUcB+e;bS1b_
zuEhSqR3GKi0U=s(tla=TWD46Oj%k*TU7T*7mY$kr6siXMq`1T=z<060tm%}of~YIx
zoH%pEgtb`GnwVqXVXJSPE{`59#A)P*ReTj*creDekH=wpNpi-YVw8jP+g58os=Pbk
zvmYI<(10z}y=UO=gbGfNS8vGRuo{qwoPzw-1R6`1dlOv6*(Fm@1BZ*8JTLosuB+H8
z!$>O<o9v+iK7{J{s@_G`(2Sz|#Z_31))2o1MPyOH3=Fbkx2dAe8H1~L^sU^)vf=ux
z@l+j5*ch%Ij+^kpNu4v)yVKRXwwx6%HuAS)7d#n9aYSHS_*Mb62^~`X%u$8>ZBqui
z2a{_oaQ;>0$=E8Z;@H!}3)^K6uHN3a64`U<KAsAV*cD%l_|M+?E&0N_NFE+o%{Ghj
z8!EnLHJuYLL47ONV2#U^v)nyDFg8*51XT<02m!VJvKp#PVgCAX?KBh^vb^2CX%!eB
zDjk6(kgNd*Gt|Ty9ptzzU+uY2y1~oaWkc&U9XzHWSyLr+*`ZUjS}J<9T*C_jblhfS
z{QWmdPVd*^@<R7&4UR?(^7`=*YzeS0mfjy<)v3@bLE@ik78@;D1NL7<d3F6PQZDVE
z&+_Ohbc~}tFd9NRgvayH0OeO19mkl=Ns-qz6NYhb4kfQkr<|a)*Ok|{Pth=I^A0Yq
zN2OTv2%By~y5e6^nPO`aEA5*ELA$MsC-EX@tMTi~0gP$aijRTj;esX<(>1>Fm?&nq
z$lFA;tFthZVRuL)x|fPciK7lG2pq*+LPRxn@>dX1S23yloy7ySi0A@Q*(E@9_SfX3
z-C2IpBM8GI2==ArNh0`r)?sx!ZDlhA`xJUCk8m==4vylaV|o5dPUc}<$sRb#bG#HM
zpWP&)nh(pe4Y~&7Gpuu4s(rZbB@B0n+r?6HkoYx4;@YN+aNXnjiBdnzW<Cq;a*B}u
zM22>N1&Ubt45fbgP-I<EQ=<{nm*QFBt*mj|o0=-F64yI(QujgPf9o#BLr0ZqpU(F-
zK(-e_q}kB${3R9rhR!U&D%a+1kTrDRY^DQh9CwdB^ebU*f&8#iRhcsKth8DxT`{>!
z#m8sTy$s9yh{}q+4>aV7$8b34n8pk_9F)tJVa_REg=czL9HFxQCg*aF*SQpUWSDw#
zKGu!2z+&RbAzb*0?t|j1MQv9k-n5r~DF~k}KO_>B$BQ@-F3jIP`EWtFqj;gJ1H2f=
z&qZxO`YIeGU&M%6Wh0>{V2?V(gLLb1&9-Tb*rsc9^BX3>06U7iehN;eXM7>EfV6_8
zSS->C(s3+YhHy6|mf7nz5?{)2-CRC&#Dcp^ajGVshkxt>r&Rm^+@f@Re?IOZkL|<N
z&!O_;!l_N2LqnwKdrV!5CAjk^u>=F&QkK9&v7=5`6qAq%_HGnHFV_+{BNfd9Nrz%W
z!Tb#qP9s>#rmvcU4H(H4XWrC49_uvHQY_x^Bk8mu@vi;E7o-!W+y2Q%Zt$lZKypL`
zfz)FIReu8e)HwslpVcTNoOrO6xNmm_VxrhKPbZH97Bb`lGH|Q{o#lvUIKkha8h=i@
zzA;h8w^7yaRvU*gn3YIWk+nz-DkF%M9U{lVebz3^ZLqHgJc;|gJx*VLd@tH#%Z3cI
z*k6hn)GdRT5;RMGl-u5J*f@WC-T@HSg}GVutX>keU?g3?cnZ3(#W<-HOHc2?<M6^U
z8BNu@`c{Ez2&xuO{Zd}nubXrT%2bRCFYI~%URPeuoeAsLP5ypTH?=+8gtLuaYp@-)
zZzGwEwWy-%a4`3sQ@x!<paQ+@qXuDAw*dG+O7$bV@-s>e8b~}~Z~s&*%U1b8Rn;w5
z<>zO3y6kULyBWM2i$N0PALNk;#RTdk)btk^8Y6}g?(=o3n}|vY<*yVF%5YhkT%bdr
z2cAZeMI_Ab2sNN&S%IHV@pg@gn7!ZSY9Lojt&$N+2JCk!zbj*hTh(Wubt7b!N9T%|
z_~auz{R0A#27U#^+x<RarxLj`*gmfQ=PF1Y(wX6m@*5^4T0^45=(WMHZd5Z&u`i4z
zo7$;~rfstG4?>z=+ZB%VIzY6&M%1I8Zy@W01a;I?Q^nqQ3k{;HB<au|Sq`*Y*$+HC
z{oe}z9P%$h{zWi~x8siFeiIQeC5OX!6(TUp1E1h!hW*XH7_FOk6*ibS`vQ#MjUNX%
zt-!!?vI^?Vkr<A9*sFh{0i$66Md3yRuf;oJ$AS-WJRU^k8thiE01xnK|4Tfd;w;cM
z_8qC8-Y%csr#?kpp_zEFJa85Ol8pxxsHm%)RT2!)C1~F}QEfaBDD*w9<>TpgpBq4?
z@8A}jjaOO2x^GnDDeuxS)NGzdT46jzjJ2hIG0L$5&-ur(lQrs6t~YwF*L$wL&lh{1
zr>(~dy!wXHAt5S@(;>XfUkG}pecvFD8;Z~k<*;O~l(ev=q8eS_NDglyhqu@<q`s;l
z97-05lt;T7H7vElUFwA&39=0<unq^_h@9H<Kl!PNi7AiC3;C9&TlZH)U2!wt1ub)q
znuY>YGT7i$KTA)S(DLF9gj-U7CBR!V;S8e}7PVJ+W@eWg*bWulqs6Sb*HU^}(u$of
z(tEc35+Z!gMhRzXmd(S%2K$cnv}&{Md(*ufa2?p53AX#}!T9T83*ZgLk{J94k_(?h
zBsoYg7=pH$oGi7GbDPvbO?XVm0UOTXqiiWjTSn5BGkTrKIr(aUM%xsHS{V)YGh+e9
zO^$7%2qxiy{H<5=cLD?Un$1FX$lpBH0r`_(m*9#Mj$Gh;#BX+K%>yXKO8vx8GArqR
zN;L7JqN4dGyZb^<abZigk_^YVf*9CylZccML&%Nn(anL27&ehSc(eMx1g0O|aL?c$
zugNa{`BVfQV5$Xa3sO1#IgMA%GNLOvrC^9ybdghRH$-uXlB~_<;AgW9{IMCz0{_sB
z%Om|DEY-Y4Lo?-9cha1Y&FXghTpi<Ck_&^5wf*~{{)s?Pj5fuv)F>$d%e3zqs*E(?
zbjHJE4ppH|^Z>0g4Frrh^N-gX<qFpj-g$iHppAEnop-oSPd_KbbEY5tb=V`Wfp9$q
zDb=P;ev<Mf^IHc}5Pav07?8VC%7(r52Wk~<H_#N32oift3}c-1Jwj_`b;E|SMvUEa
znI<4PUOhw6EW*za4v5`{mUAp3r*2*46eI%u{3R@O{@SW>M$B>aX4aQ{Xm<OGKj1E!
z<%GjU54e+<+(}CNLO_^d25!5RiFPA`a3$EcM2J2(NcAd)dSNFu0;V2A%<bF9!Qy|(
z2T>zNbs<)OF=+3nheDhW?L)2x>A1GlqmM$bcZs&&MgUY`>1^~h25ob@ED4P0^39@b
zfYdG<vo^2_&LpYOG>60ynmQ(ss~@-yoLhh7e^@cbSn@4uIQT^9-idsL8l1!-+%jx{
zF61gaWlTwW4#F~!-JbeK<$WViO0_*zsmJ(ayf0zjAK}I0S&j|5+%P-#Ko1*vZP>q}
z47dWoKF<8!`ad?G-y8h_t63gcgm)SC=DC>5duc!Xvvl_^>_>SHqJx}$a9fLAG40)>
zup8Be2X<kSZx)JsCixx)6p3l?yhDqWNy*1=Hh=jb!VAp!=D;90?{z1`z2}8|;O%{=
z`s8!I&tW|&@6AB$Gs+z~k-wx8tPE81LH-gPgo6ESPWMKim{<V_Rv^FB`!q{G?Z*jw
zngoG`=NUDm%FnS%-*SBM*3Gdr@zy?nS7aT7mx#BH1073qu&dW686f7L{sL=j1&U;X
z2%-$!f~1;#@#d6x>;BIfZ(V6J-U`>tbXF{M8y@2GQskyn6YQ6+P%4Yu)dH4WiAAij
zz>S|usZ*R%w<k*-qDsL<1V*A1c7K|g5`=|L<=2pRrD0h&s30uV)%SQe)+i+I11P_e
z<Wx%95&JtlmV-BK>k0@b(<~hu=9ACxbZ*2087(J0%jmPqsMZr@Jy9_vm+eC*>~E0t
zqu($w5J|F794O%^*gE(%AR>N^i&30>S*>7BhuX^8aU$7E4WkTl3no@l%16*{>3(nw
zz{;9%yeg;yF*qN5CdLWI(>}XG#cKvdu9%LYS_(L`6GWkQSvlgD%Yk~x(aRR_@4HVk
z{H;JxCmz^e=&Umkf<|2r?K2bE%o+)~;^yNGbdG?2q7loi!<8PEw<<7BhEXUU`4XN{
z$U==6DkCbBXg?Vb<?jy9$l)87nRYm?imWqtyN7brZp<vqkRv(JKE{9WvPo9YV+867
z?77AfD2`vz9rJmFrE=Wi5ZvV2!`W}N0t;8^OsS9;qhdcsHIPAKbS-sEV?^c}MvQan
z3@>9P5wqKcD2LR)Ode{IC1oXHoyR?BM`ri*_ph9RE@VOBunLI@otZv|U9PArDFZqp
zUD>vY>;-4hMcc#@{hIE_;XFN1J$BvWE5NC(ItVcaB*D&NgLRX07lTk{=-wFwe=b7;
zC~8L>BEie}<+Rx`oeO3^a;?(nVmZ*1)PSfB37Ua1_!{oAgAr?w@rU^F@|A=34e}Mr
zCN>$d{s2)3!$9bKr#_eDByjv~Xr=)+YI0N4j!j>(0wwLHcWBcLYv7ghX?ZxO3FJkc
zM6_tam5fz(kJv|^s5AwXKsUzMuq&qUlt%n&M&f=b9=S&0U+Viz4$`snFM(pcpi`ex
z>`C+W{%|`bZCoP|==zMZ@mOE=E_*{&80OVsjw~oWMD}ednQb49?gyPM#tbl0rNDCr
zxoG8Jg+!2mvVG`XI>t#f%(lP($orvfmIB(A*85)#+XuB_ZVGH4gh$4BxXnm0s20s-
z0#;`lsNAFlB2YS&<%mTL+Q~k8KX4Q>>+cdK%kBd>5;Y!whB$GH>YqH%rByYX8GW;V
zOno*i{R=5)B#s0aXlpTg2Z$ZlVv>`~5(^PXcRO_vR2vaf{j+!)uERcaZS22&t>FSR
z_)G^$hJp}6i9t5#`B5@gs^?zJd$&k4&r5Ed`RaDu6<O2xut?k3BJ13YLL2~c+u1al
z)&v;1=UL2H@?ASj+Z}ihQ&{_-T4W77HHfX;PN>scxox3|i{T+Q2v>QJuQJcM$ec!D
zEwcW|hebLaqR9GP#&C@F-Ik@yVMbAG8cRzfs2$t7vG%~<Ygs#7GV|Rb52)ShcJAAZ
zrn`2xd;VTKWb$JovfDnOeTZSB5a>U?#E@Z-{kZG-G3Wym2b&(6s$OOCl|&k__(J^{
zot`=a%)BQ@K6;KB#D?{X{J^G{b5gr7f6dfO4QnJwbGsC?I(}|u<)B(@P?rxO{#;9~
zHh<`vJO&E#kKLL1>JlJn?$<1%P(b>fI3RQt9R8vrEA;SR=>Yh+5~4@<AbwQ*fPG9~
zSMxbMAe|0KC&b!02IJ0LKyPN<I!z#p7_nNx!(5<#NVM1n+OKH*IGQ+oU2eo^=V)zb
zTuJh>E2Aq+yd^JPaxn<GR0>Hjp{S^Kon$47;w&`KDHNX~rVvI`BA6cfxkxVrS4n9+
z8-<FjZr_b*3*>35W%d^HFUl`MQ6qNm<6A|Za%X1UUL(l&1@a<+ru--dDF{D?SfBbQ
zh&2pol(`Dm%9w?owsFZZQ35+JITondA=2t19rgJ!LB(I))uBy14l`P0WgQ|2k-QE<
z<ZCwP)39IeajhcMMi5$DEePcRA*IX<)Q>g-5OO5$Nc6ESUcgCE$1l5>Jac&}V_&6Q
z&U54voqftH2LmXp&E-_j#qX_LH!fw(@za@?ZiQa#OWy#QW;nh-Uf6@M=8p^!yIMxM
zfv9qf+LTE}#*DONg+SjCMZ?rsFA@`G){-_wmPt~i7@4UP5K_Uw)F!Q1x1u?;VqFIr
z)|f%GGh?TUo#D}5!v;aowBoviaB^}}6_&zD_K(p4mjEwtmn2?+2zMXth_L9dUxcqZ
zb}u>p?iAtpG0i#dX-{|_KS0ztRdipMMFw8cU9`72+WjtsXYI2i*|%Vf?TZJ-b3dIt
z`qy0g*IcqP3Rea?6qkvj(`bRY=tB(^9_k1#LIy*QhtV=im`_&2nX05kdtnKjX}bO6
zz5$ohw^@!hC&GPJPS&o|ECG$mOEE9O2jjt8T2ppUpn8CbgC~ch)2)NgO6;5|(9c}Y
zHq7dc($w~h@jVO^qb33?1h*KErPEy^7fG1cEtTL+lVBpifkl<(7|f6aQGSW{IZDtS
z8Fxs)E<>`q1-}FJcf%e!Jsb6#q<=EL_-N1Z#XL3(S6cUjL=ay{Sb%(6E9;Br8C$%K
z71{Dk<(Y)*YH(){{Zy%DwqcTPWD)=d9Y%p?a2%MrL;s++eCWh5bCo@sPn9&xmqkIX
zYNeSfns;N2k#3AJKdGGqo|&y;3@GONw{(J9!|zKJuw7z|QH(L>(z>H|6=PJ3X}4y|
zk0-_`#EQ1tBK*qw1HAQIC&nm@_0KcAjYs8$R%Kq0IDCNm3S&iij4-UFI>K0XeoBN<
z(Fb+K(EhCMLQn}Pjz>L+H6)-=v4+moK|o=KGS%B`h8rge&?4$w#G&I3Q$-P`9CvD%
z&(Ul9V~!z+Ikqt77zZq#(=o^U=71M&hGqC!VvhGIQxGCOwE)}vGC0mZ+V;hAh3gh$
zj(ZSHNz9RZuM=~KmlDktFNMCRy`X2SHcQ1ET?pAaob}T}%prr*+a&Ft5(OopU!*O~
zl&H>YtT2~>mv9TkVomIS==A{;J+X#EafTc3y6^qr#zJ}Sh^dxkBi=!U8xuz<Tg@N?
z0uEa()}aWZ9<dkoXccc2ZX9)!;N2%B+=#7L@B>u?QNcTw4maYLrHwT@3Zz~dEL342
zbkF|h7z$-78mM(VYK?!XVvQ$85*yMqO|0=l_g1k{vBs#0f=y0}=ka0V#2Wq6#u`He
zST80LYs`1#5ithklyXZMZ7!eM_3o`aH!fk#@qvsrVoT!PB<2VVK87&|x^Pa+;r6E4
zndTSvO>2~;i%<&7$Sq*4gOFU>JL#4EFN2Uq(;tL<H$F88A(c3#rzoVeqnl~46NG#;
zS{W+=zLZ*}f{+JB>>&vG>ZrXGg+f3Fh5qe9NS=V_l>`Yw_6A4$sbaW643|4@FzNp|
z{{B0}0$>qG5fFdmsQoje<Rb<u8BB`S<*%6xBcczv!{K!px=|<9MGT7_KbCG<oLE8c
ztA-=&0cbXHr!U^I>bmDK#*+2yk1-#-X0t(i9eYYGCb!ft=99w*=;<uzYOxspnTyF#
zI)V=o`0{u)=l)D}FN`+l3Qg#g@`ES_(cg%2{NuH)F6DZQb8Urgzn>zmCylMpAN4Iu
zBj~<X-|~ZgD-BCehJiZe?nH6zj(x&bBg^Ax94d=>BKi_dACfdMh|<R^B1s*$MfVT=
zoykuK?N-@5W|l_wp7m1Ia{__+%0}E3Sv7oEq?O$b1CHQ_GSu)Ki<tvHt)Sa)w~LFr
zzYE}Htlch#{wwen9dG#GF#w$Tjw{%MZHC6Ie2If+&SrUeYt9xhp~p~<xz+OASz$1L
zqug?))+#_A?WFD{MP@bOE;1z!WP0a}AmCuvg3O_hD3_-RhCUqP{R$U_y|xTT>QUj6
zU8iAAYM;W|ZB0c-eqNM;?N}>S(4@Msu+`T*&avA5VxJ>4FJf(S?P(V&B}Nda2^p&q
z@W2GHs)kURf!D?{;<%l}<mkvy9e)utlu?8q47umAju#?ETNl3d1BO~?$8fuKz@gYc
zIBdVWnY~0Z8CDOPz+M*wZ98h?pJBZwYcc&RT*gn-=@DRylJ1JAVcvr3Uyv`EKdK_Y
z1qz-;8&Ox0SxXF9C?Z<(nrx3niIAuVzl`B1W0~?hNAIsuJ6Aq~_K7C#W0+?LMM%M2
z!0kz>ASQr9`WS*C$IPwdLgO5J&{Mmb%)rDOK|>&%ON7yV(VZrahLA)eI>><(+^jd|
zp?Q+}G6_L%<*jr|mk2o1xA5M)l_WFFKMCG|01!&lFWuPw-EHXsC#`{s<FekgILu2|
z&EVzsd-O^?GxT9OA)KQ@xR;o_L1b*2BE&Qyqxnavi;|9HEV%qKI@HGqP5!FM7jkb0
zupZiqKn|m{nS5alI760yK{D;Jqj~6-{-SoV2tpZ-W5eFOl1iXqNU3<z-wbn_$Q(v^
zF^yBFH{C$xxGn{_{G&^cl1eqpXec=`I9xE+?wDol`{r%~OTM{5u>>;cV$DxceJ>;S
zN2!H)B-3upyPbjN$1nW3DL#>EFGEHo<?@l#B~?>mxq1$!*w1*Ls}R!kGw_WzgxABs
zNi=(4U>#f#>7)c+x*LW$TO?KYNJJbJt!2Ut9X=ecB_CCj7+^~YD@P?FVYn}q`xGL@
zIP6a(GBmLAHFQnB(sCKUiP0lyy#`hDkJr>T{uyRJ!@LP1_=3EqK8hkXE=7A_ze)=-
z8W;06{-p#=5JCVZEG71K-Fc*-GDPvmQN+IV1@><-nDzL>`@jqyjAadgQaaNzI!Egn
zv1fJp1^Mg<p|D3Z2P7Sei7<%?c5JUsk12^ii2VkV<7pkd4Y$QBp3i|6m7b&tX}h3B
zYJQGVX#iEG^x82`u{*_dX4PEhc1(mErZ!K`VCW?3&bIh<!Zc?=8kLjus2o9hNZrcn
zCEiRTH+zdv-P`Y_)`2+Emw@WgVA)ZOHY7iqnJwIRWJnpmWXDVVEk5d?KbpxVJTf#_
z-=~!!6FYv!kV~<Sgh9VHbpA|Q8a?!eFL8rWH~a7fYGMT^wpYnUTomtkogYqx-0bcA
z%ABhdL^v;Y#gX;Pe*O)}9q<20#Lp~*U9NsvV07l1VHTvtSxSXkQXSZri`ah$+1j0<
zyeW9#jKxQTOhhn4H(d)kSXtE%WNDC$ZxZOosSL?msUH=i=&kY*HS`bXvJq8(;#EX-
zLLAc}l@Lz#!h}=~OY@jB?`p<g%E3PVk5&jbsuv5Hv}FPK>7>CfI~_6fiTK_Z&oX`<
zn09_lQSf>AN+mv^JsgNT@nw#MJlFD=hcGHmJnb8x^2O)j>7Oz7XnB7GHw>;Dgo5FP
zGuHqg94}D+3Y_ioYTm&SsZx+$`;A8&m;@XE2F)tsn4=I_Pl1T4m<yuRFUFB)qB3*9
zw5u68EqV-f@}X?26szSehLn{Ptwa~1>GXb!hvURsS~J=;gJupnOTUDzyIB_9#xnfM
zML92u%sc6jIa&~ebxhQA5CzuJf-jcS`0U`r%CVO#1A;NiVFVZ(d#tM*KoS=h;Wkoe
z-7H=g*f?wJ08n9UO(759CHYY*PmUfnVs9r_sXF*MZP5Z{P8QK60VJ9e0m*BFFmv|W
zzbJb&&5UWjBqFRD>+gSAG8K2>`X%^xNjw-{xKbt~O%}02{p)Fh!Gb4;xQfM`3HBOD
zjA&5*X6oN;{&GI9eVM3RA0m%ngvxg26s2slQH1&_whUr55s^YQp6TgeDNjB7<!sev
zX<{j%HTaEuOXSm6(6|Hv0rs+yupn7Fn!dF7T$*`Hw**>iv4Rg%+=zc5)98o=?7t{}
zrYkgug{;6^7ic>)X|RV}NbHXWxp>_S{dlEN<#<rz;PV;DkS;gevNv?GLSK#I7o^N*
zXQ}E-5{uF5xlXJ5Hf!|&X?04n)!!ZKw7TQwy=%3He8E<)O15fu7!2crY<Jy3PtpHQ
z?83FI|Csb<TsvBNF-c<}+jd%k>hm=bPmX$sSWY7L5OkisLWp<<NH_dCg$}|XN(TQJ
z5>c}FhY|;BH0SXa0;DuQRp_kHK2j6WtS(f|mSa2Q{%_Ip!2ZJ|pofOnWI!=>5Irqt
zID8Dv9nPm^Q;rhHMi!e{0YGY46(yX_I#Bv!Ls83}+X;(1p+)aeWXaqfEl*jIbrwc{
zcVI%ET@PA^m`r*ZOTNN{{J@%<$hU$+%z=NqoSo)jhXi?&{BG0&C=Y=^1%CeswHEI1
zr$Ij=%ASgHF6?3eUSMIRMc6GS(5X~Y{4JE{b6`m=w?cEeuvVF1&u1-qg8e-CzKANx
z9Xy;Rx%Vn#^t_6XUln6yO;a{W5IYBmZJ0XMuznAu?v-Lp<+QS%5*0Z3WWySDa?tFy
z`Z93%ld8c0<76T<T->x1LF?fN@R>~IA9+s3@{hwg9*g2ca!;H|)BtkgS(xidgPhUQ
zNkq1io(>_6nwfnwoEln2#ReyNdnXY!vw9NDbyYp|*sozOBCaH0sWc@svz3@^=kD;V
zqRfan@O07eplW4kpvrtn5S5Z|*RhPMD}I;Eq<2IKv3@jLA4&;)5I>ni+A$@kLHiB;
z9CE6S*mtl`K)ZgRgSIm~K|i6<UeT#lv?;1)R^Lkn?W0l#i2;|Wh-gPNK7=OGk8@8A
zR}yEK{Qf%B-e05Z)S)3?%~9r-)EnLQd1SdWZ|h^d6*vh4p$4d8|8S~DuEmmY8IBpc
z;u6=ATqw(okag9fC0S9W45n(aWlIv4nrKN*Iz4GgK0Xx&^8;s(HJ`m4e-+}f9FAv3
zIG!1iv1-5vbqibuK&gzGWIOyQMmg&6+=v)4h=L^{8k;h43Xv*e8o4T|S{4S#+$QU+
z<#|x&1BgUzvv~0LY2!iY1swl*k_<(Y0LcUtGH^8{7yGA`(jJV?LtniU4#v)--l+gF
z*&!b=40BB1+Ml0-W@mW=MnC=o&^{u%v8W&TOCu3|x->)@?E)0`^k8~{8%xwK%Wkk|
zu-X@;T7P|$P+wlk{IpOF^`MU`c=cYZ2o@Cq;rRe0UlhggBkg4?jPV745ws8PZdd5f
z04^gElm#cKkN`{1VsFU@r>}*^dl2@)7oPq)nOnQLlrWYMX9ztEWD-V%H=zCW_Y{oi
z*#aV}z6{@z9=MuFWI(K0-K$w0ZnEtco>h@Dt8!oiX9Q^-*+7U!5pt&FW8}oH(T#v$
zb!uoAAA%~$=*i%X6Reeh_N5JW2O`<iMKT3Hgbc*5ocNUyKVTrk$wsMo{%ZQd<Y;)E
ziZ%n&hiiQunCH>gQhNTLK+z1nc(Lf~P<W=(%Gv>E(O06+KkDvGbqUD~Wsg((ni_7Z
zL}DWb(Xv9@uVOXSpqLJxN)u1o17A<NeXv#p5N4KQ0I6`?{!H=DS><d855bR-rDoOv
zfDt~wj6Q!DOT^9w_IJ{BCVf650FTcvQ6uAP!?)G47?S0Tn2Hi42`|gKk*FLzXqXvz
zevC|z4^k84xhx(lLJEs%DzCdhxu8Y#P-ww%zG$J4QN`3M!@7wPg>t@MwnMd@%&ak}
z)v(5N3c{TYf<Sj-TzdBeMZjv())9`D>?7pgA*?e$<-~8riRa;a_CML@dnmd|-%}K9
z$@d6dwZC0>kvN_sTz{*PrT$r2W#yO+JzRU*65ypB%ly-n=Z^}L5-ZijDp~#~d85AW
zjjyFZ{5kqkE9*j>w5=vo#aGIZ4%n|kg!}i~GrY=C?yKNU<0wU_AWul!iigDZaK6z6
z`B#a<L}7t{0z;Yfk_35^j?kP6@H+k%dRp*>eBz%^51f&0xJXBZHJ_}&A!liQTiriZ
z-?CAU89IHmt8d#*YE9oByIzUQ9`)@hsfL(z)|gP=UhfZU@-l`S9h14&_N07I_T(fa
z=u^+_A5KigPuY_zE_Cr*d0A`tt+;M4@S7&p5WoC^s!ihe18_4;6`r+fPa>qFwkPFg
z){+vjClfvPWa58oPX-DqVoxqb^+>q+AKR0T0(6Q!IkQ3$u$nUZ8|=w<I*L>F<Q1&{
z^ysJGp8R{CJ?p26->>}Lp6p5X*!1?KRKReR(_>H0Z~%lg`uJMSMaQ1(?}yiKPl{TB
zSJ{(=7YMxnxjlLM6rTz7*poZujRY{_;QlLnvix+dZ<BLV^-bB6pU!vn%{-wseJi<U
zFZ6AgR6~7RnV;0R>vH#GPh|g#>}0%Y1}-LCi>t6)AaK@X!WG!`C{|v%p(dWM;{%Bq
z0>?-ZcEHX@n~C-I?!E{_Ti$OYJe{Ybrin?VJ_JSxuvpv4I@Hc##DO>igM+jKoX)Kp
zW0*q`xpAQ+J_tUJ3acxR!m7NZ9w(roqxmC&DBMIzG8%on5GAYHCO%-Nq8Qik4(O-J
zg&VRmB1AAK{Wmv^?FFRb{dI(ww8xgazM(CHyjIpXkYET<=doS-FDS+-+c`MFfm^2H
zAWCUtzl*(hbv|aezF4BFK(C!@41=YDXsL~z6H~D*C?m>_cv#3b|5X*cgQGI{gqQu+
zu?5hJ`8-&5V0}dZbS?<;=Q<(h@3~*lKqGeIP$VhCuh6F4xtORfJbqP8hgM=<9{uXM
zERQEJ#xH0DU+7-VhuB`A3?nou`3TrZwVAxIE4{EriAaP%=7=PaK=xAUHnYRW+|3Mt
zM;RzJtg|zDfs9)$Lx2e6`7xX&fsYkv7^_uqXCIFWLLeL_a6!cN=TQyA^|gczZxkws
zAwviMjnb5r#UDv#9EzgYT?NUERYQ$fvE&K3BQ1zI=A#P!AzaKUQ~LTcZ(-gS^Vdw5
zL5(4EyUR%mzLLaKN(~$^NQ7Sp=$G*_iRW~OgbfpSkn2Cpdc?GgLNY}j?U9ni#@qo>
z9wk|{grHB|dbVd}-Eb{wiq7Ao$F@w<E+Z68>jXvz8PJrK2`RT1la$3IB_cnLBF2yt
z3L3UR&-GXC4LuR%s=7$Gw{#p=lK5M5qCV!lj9(>0bx7ijWatUA|B$qH#<8#y$QpKI
zH^y*Dd%^jpp0It8bB+(7FNlAHg^0@@c}6Yj(i2Myd&7<{YxaG3`UVo!zaHNl0)4>o
zvQU~lBwZt_ik2v|0!Gr1Z@8S~W6VX$9J^d~r6D>pB%&u7z=*8v^C0XnvBT9X6vtD^
z5CO|aKB0_`FcK{?ja62UK@7oHS?G$MI}NV0x*pl9D-vJ3O(VIg>3v$aOdJoipX@cB
zxQkL871>C{>?3-Cg6*}XRS~eCep8y^?$|n>uZxxOG1@|C6}0fLml16-kf4Ko;#)1@
z?O=E#ruh{(piC*RfR_&?drA%fyxI$(AHGt+2V*-HiV6PaC@Pt4o7Na6^$qlAjeuE(
zQp8AC=h3p^DPRsfbB$VY{r}i|_wcx`@?Lms>oSroOSwCNkV#0uaS}zo#wJ{3%a-ND
z7h%bXlMt+tG?oTSGn1K-FCl<JoM6XMD+;A)2}K3kh900Qx8|b|1PN&ZoT8Ku8VU_6
z*D)p_E~g|=lJon$@4NQiv$Z`=d!Fa}<9m*tN3+*&?R8)8ZCy7BLu%Gsy5cYwTbS5g
zywU0bl;GsO+BW6%fhdpb=DZ7;;+;QL@$(Vg)G%&O@c*<h=1~ePoUub8Cp6^Q_8}lC
zBfRZGmE-ShlM+%1L!h^oZ-%;|o6R}`ex^u1h7m8-)ELsnQ$>B<1K47N(&4o>!ZM*m
z25d&SSgG@U`0yU+0;}*v<m*Z}Hi?&vQ#yE*J!3Vv^HCNTn`r_mCPFFx2eNc2E<E|D
z7q&F=7xIn28(xWi`~rrXUu8Gr?xtz`4B~j>@&7~@tp7sO-NI^k+uU^bmst>gf)Yo@
z@A@si>h>vk$amNdHr@S~;^w#5@=bU1MqYfF4R_V1RjUB-BYmR>nm)a?YV5gG)4RWL
z<Oy8fC7*rn!u;KH3rBY~eY$?^xjRNXnm&Eqg0bgTXqeRqlK?X>g9I+VTu(!u^U)Sa
zU|fvR)Oj3o;Ms(Jvv%nt__pP5@c%3P{~T9yPvifyaDN}q3H;xO|D*Ung8wo2e+8Rg
zP|}!u%iSj?xXS3c>7M_IK%i;#7^hA_)4c!bH=Pmp5fpF}9<O=$7G5qWRo{qP2oj&i
zwwbSh?@HhNEbe;vi%$XGcOl?;XW^QMzGb+w;HobGb{@y!`|;{0ucN^U5+Ma$f{aUl
zD>r$f3&=X)hw8V!pSKk}be$Nf_;NtwC_GBbu(bbJbuTh5zvpQWUP^)@_&(kO6ZPw*
zTP{P_pX;%3sJ`#h`mSSr-I<=75<F$yNaAnnTz~E8qRwOJ4vH<1&2n}G3SC<D6E(g-
zB_?w^Nt6)B&X7bE|86d1%fWBv_w-{WQSYVLR|{UMe)})fGeJ+iiu?l~l&ihpdnwA_
z5ncWR>(N&UmfiFVuN`6Gesm&SIN`xo7S2@82VV}s@^|I^kE1_#{S-oVn8JxaF1^P}
zOpiWyJ=*+8X^?ThBy?2Po^n2_tURXg*hUZskcXvfciOH$`a#GAz6V{pdY5~L_JMNq
z3i}>r7<E4C1KNK`+n2!-m8)}9S%L43f6Ko-pGQ*g4WQ#U;|VQ-bNtP6PP>zNs^s+u
z$#g3g$x7ed<IZJ&9ZdB#F?Crfe;uv#k@kqo^Gn~n1f4kld*e;_h|yHWZ=^I&a)K_I
zJSAtG4ASzK+CV5a8x&XFbizCnZBqJWmuozE7yRD6pTIM=HA9pQT8CVI7Z*rYvxIv+
zGV^3aS^qZOBlFcEohR+>n)?EN<sOl)L+j!Oh2uHAxE(jCJYV!bz>U)5!v?4LYOmWW
zjGD<z0R%y5@J6<~uS3zXCqDtv_P3?CT#RDx2^5>nhb)D|wBgWhG7ecv$BC~(wRn{a
z%fAD#WXky|APbfSWdYa;Z1y(MQ<C948DMPoodhWN&-@%uSH1_{Ua5S2<+8c#TM4bf
z^0gj;7{~5bvokt=W`m>mJsThrA%ZTF*q#6-EN6+2x)PW5|AEtgFIq?qN5^8Nw|}6F
zR`2=(sG8Oqnyb{Y!xaNCNQNK12$>&unTPwQ>7IMpne*tcP3sA|2g4u_@{5$=;n(S9
z8?-ds#SFX+0XHF-bO68y*<P#wc)F)d0F<788OZOZ0Qs4HaccVe$V7Sn&ZCEABvaO)
z)j8JDapDv2l!$(R91qYY7|hpGLjKs`Bq9!-+sW4HvTKg~_!ysf?TH2)M%zK=qdfxY
z;tC5tU8F;M&eqC=vH&JnTmbO88&^TCm8wu&)(sX7#XMRY-R}lk?g*QG697_Z9i&hj
z?!SYzP~M(?d13!OtM)F>Qp4UoDmj1T(lI{A?db}^IfPF^X40%>5%qf(*k*Buey{7U
zf1G2T=UC^t(tA41szq~wAut~#cV&-A0-S`vp^qaE)-pMn_prUZL%1rq>8@k&*UwV$
zonB3SsI%;Y6d+6NhOiG(>_T||gA|`-={1rUiXWulsv+!+QMO+%+m93e#a$rPgB{+j
zzM>tZ@i7QmT6!UP&N{*Eos&!*?fxL2$E}U-e3VW1NNMaHdV*K@pA%vD1OmR8{^ZFo
z!6G^SLs}%(V>VXDxL{r?5nn*yh)%wMkgSRN0)l*bdHl@_I(e1&D-k5{1q3}G^X7#V
z{vbYl0pXymn6hQ@iGv~edVzF-`K;i+>t61_9^!T4EBLvC%lywBoEeVrHfZhNofyJU
zpmfGPvcVhiu^$m_z^Ffws3#vm_ZPp3UVkh2ft}6o8?0E!+Dqm|Y*u2v@-c!l;m=PA
z;5Kx=bOZpPbR$cZKtqxg;~kREA)JBc<mV9Z5rc?$MSS3mDIohpj5D-t{bPlfJXW<T
z931aYEJKTzHr%b<$@Oi-!pR=VY3?oO6~2$}6TEcM*za0K8}#!8$dJRN3rA!C%5_Uw
z>%(@S(#=2N2?-i*Xp{sg4|)R4OSZ`Az@G{8?H(3U$Yui}*x?IhxAQ|Pl-_(jS<5Y>
zJ7(;;^ct=KcAhv7CFiuk6Qy4sVew0EmWMWps|B+774B{SzU$W(Y~HqJKJis9B9349
zp)^O*Wfghni5FcFG#IZoTL08RRD?aX{t;IZG4EKBk6%}@A{Ve6$DTq(F4u~D{4VW|
zBFPI91z*s3%lU<p_kjVw3Quz8bNs@8AJQstFC4C(XP*C5deK#QF@5p#tre?q5z8Tc
zu}{lR2E7N=9sH0$4)ca09C3&k>~IGtLB1le(I99Z7qX9lw)s-ogzN>Hf3E4S9q?~|
ztSSy(VN8BDfKSXOuS1(RjeiaMgbKUeHv`t{Hv>KcPc~sMIlM#2S{R<Yh<mrMf4p!7
zz7v3<U@%1|QJLuNh@bx-rHkJ#1a^Tuyi~v@5Pe96Y~p<w0Bph!10cndpTzZK9fNi~
z83isE!kbI0e*9v(2E8I<!Z)CjxDNk%G8U-oskhn(0ED`*(oyOW4HU^HY#VSw8$STB
z_Qdan&K|)B0KRai)aN>RNbQx*m?KW?8N)1I&#%vrVYIDJ{Gl++YYO{FZLbb~tfTiw
zFQ!U|yebL9ba)Jd>-{+v@fhaLEvKY5SEUnA3CTTm^3l?-##kFt){$pqC4jw2Qu;2?
zi4WkX)a!zrcq<@+o;X17t>RtUsE=#q!9t;+;5{ncXtu+3A7r~XrJUrTAunuq;}5kV
zma?iM0+*Qxl=J&CTgYulpqxF-37I^35FbG2KF9T6cDMG+*%p$@p^j5D#EFmc<Ovk+
zKb3y{HdY_E_J5gP<JF6wesSuz^yaf+GJO;0O4Mlf?Ip4AzCn$B*H7Dm_MNxpdF=n&
z`^;a3!x3y>O#Q<yq%BeUS<NZ#GnaER42lkDX505NCN!vLD&BP#>V4Y#%-^f^NB420
z3tKON`K)DYBj&R{D0K5!bv<4#D1GW2xxoC6vjS68+&NiV{HN?oF?TUC#T3=a`#42)
z&N^F1J=XX=csy49$eQr%)R*Dkc?=dbIiz&<OJxD|b7!I!oq+*_-+$vrF3nLn%K7UJ
zl&*LFRQ4_%`-q+#g~=;ho?z1M!5PQz{R7MDnY3H5PhBT!xw^@G(dzOoU>P1Ey;$jM
zU>{Zn^)RAHuymcB<Dazy$ZHlqT$buL+ALLAhR?EXVPkTM9*adk!Lq1G0OrFR+dIeY
z7&D~1PIhrMQ#xOkHSZK1!Px^I&EO}UXq_KIRsKb;8274jhszX2g>`NN5Ku-ZvzGyg
zyO580BNL<~H(0vGR@PQBmTK!pF|%-FB#0vXbJG#thKgyR>K9fmiQ#}4Ml{yKcRtF7
z#}xEubun#x&HpNI?5|>+DUIz)$SG^KEJ|q8+w)8450|ucVCZTg=_vK%=fv$KfV-YM
zi_0e``o&Z-0)mJ*ynqc(Qbetn${qPFE9`Q~6KfebRQ}S=W>DLoq0{{Vc7WbCT{@=3
z_Aeah-1$@KR}h=@Gl)%|7zxmx<sVn@xR~MGTsCm-PUjx4{`YT_?T!9~0$>et`CH2l
zKv_TlZa*T2qzQ1}<Nr|V1oOJ4!ko+Te^OtFWilXSZk$FbL<6Y|q^29AzJYPY5ey^X
ziI!iAa&?YxOfcbi>DfE<-um|<jAxpngr&FrYdCGB`0h)`7#qnWBWe{cAYa1dF)<7R
z^OA43<p0!?FI9(<pZSI+k95eBPPd>ER&>}-*gKg=yd!9kV9~klnPTHLmiD@E+M6EM
zv_Z58CuRI58rvHwqGg5b*#NAwN)p<b*IlGLhR}kY%h;Y$9yBiwW3hr#YqUdATRTS{
zf8j|IH$rn3lH7YG^MV%=X+u=mtt)q1k5}KjMCYF93rmls!<by!6rj2ErXL69iBL@=
z@KS!#)d<}$OpXK~smS&yB|>t@il##`iYx|(=$}DPH68hg^jEuVk)48@e<W5iCI3iI
z^yh(L`hl08UP4|nB2{W}VH|^zqD6+#QTlZUzPRhR!Kv5+Igu?Wr^pf$rI%uGK)!sI
zsonV~c??GZo;uM*ejUH?)<!lKhB2rYq&8^|u3jOAQrnNBTdMQ@ftKRXo=q(+wa#m)
zw$rxMBqH*!Y+)YdpQImJN~RFTt1oSgXekX7-BMrP{NHP-U&2m5WlMS6P_U2t@MBti
zG!=~n&iuTRZI079LN?&wY1RQm)9GCS0?<V;gEzJoh(3G@h<|K@S#hbm6mZWuH`<2b
z*|)QNj#uy9Oj8n6G;Ts)#Lea3caxpkEl2EIn)hAGq!8@`PX#0-1PlCJ(ymF%71+T|
z|Gg%CKZXkPn$#&K2nC@Xl@L_Ra6z1Kf)=i&rN1~|1x14G4AG#PfYp~JZ8TYw2AC*a
z9+~SY^vFDhISIRLewj}d`#xj0BgSqYjfg!_`jZG>c6p>`1Cf-o@J$i1Cra%RzNbzz
zT+Zr<*b}9nV^HwlulwIc#4c@%!vv_s$j3~8GW~zQ>i<6gwL$-r=y}=CtWcyrVLku*
za#}}CM}96mW*>yb9>T+*<cD8s>kOl{fek}LJjX!$<apyVS8}tEoJGGxw!>kev2kca
zgK&|^L=XUlBC9PK-}xxZ0U1fQYJ7%!*F+P3y;*Y@I{7&$F7Q57lqf68fN`-6agbzW
zska@r@mp_!0WO*YA{F9sF-&n$>a-Gt!n3%4fdp?94r??AYjo?!De*jObastz0*|3+
zWB_3tFpw~`Tj~elOxXMT`9z_hJdrDn)J61xqnVCUhn-S}>g9kFcIKqSShKx6?;8Sn
z&oBh?78&H{jk044fmDvF9+E_o5?-dAC>9tT2|7x@$5J|L3`N0xy=Z*x1heYHoiJYg
zoeQjo-&Gy%;g=x6<Bbhhcs+denQS=r@I9}4(LMazGZ=}s&M%gDJzV<ZYLIOgEY~u6
zeMspQ-y9*mJ}wRN5f%2ZSEqqNuPc@*y*_UAD(z+Ty2RDyOI6|8@N*5v8(#xrH+ntq
zmn1#b=AqYWZDtXKO(u+jrkW<c^HG+=(d+kQU7xjixnCQPJZT7NH_|F%7nMGHjz_RE
z^>EJ1-%P3%g5~Urn^aJOefWj4FDe<qKKs!!f_=@ZQxNR9Oz4`?gEmxxq@(nypDSJX
z1SzCEzUB^G%N<~budnpeo?;3h$cH2)`{*=j9avPFB;gUF<A8*4KoK7iEGNWS#zJzD
ztvg=bz0?S?eo?sVln~#Jez&gst0qT?zkl_M?z-C~61#3_u}_GL7l9BD`a>w69%a5o
zG{s#%J;Wx0?2w=8S3eif@8_UerN6paSH~cQs9wQ)kU*GEFTL+pzCf423lxEwJl)aT
z$$*?(dP}DBI64K(>c`w<_xOcBl+Ph>5J3(Hol8&hHqcn<`d>R+0V(t{U7Xf?ZsA+5
zBT)@?j<-X_zX67k?5>s7FENuew>$obeIf<i!@d|}(xCXGd}1yphh@7%kN8`q&MYqE
z224s;%Hr|HFFvF4T1!TrD&32n2DayUwEDyW8K+9gcr{(y(vyEudT;^S_=A|HEL;Bt
zwc7piA4J8#?@CU#%@+L5LY4G9qiaAg1gf~E_J5QS?UmRh@4k07#753>L^R1djdx<q
zNacYhYI?^r6dC`BD^mG}t%X{(kq5Ex^JLRI`27nB`1a4yHJ<-{=NF!ToqW{qt{){j
z7vNj;MdNF{d|ro8<7*CMs-yGRYV`3ZZEtRoqZt`b*-9NiYbj|Gqqp-I>$8d0tBl^v
zB5N)+*>z^dr3{9`$4meCE@dV(sEv^m?Br!EdY6utP_jKTWcng2=V+<)`#1bfI)_^}
zZ-qj?sz)u_(uZD9BR0<N7fy%0L{8@)?VM?Gsr&JOd&apTAcbt)9q@?5boj^kk!hjQ
zUCfXPvIRhd?xw*|YOYjH{y3u_DZiM~l!|ZS{41uhzP+6_hN#sJr@RGI$<9XME+GcA
za-#Ik8O{=OH>tF(BOx?-=Lvoct~C4nZ(cZYtuHHRa{2ON91|ZTewp7J(kYi-($TSx
z=&e5>={>+uVVR3ng}uurEOHFSVYeKw7_Z)PmdV2Be;??jNom=(xN5S(%S9X}!Iaxi
zswP9*970O`V-Ji4+(!fM3FjVfeE1p_pZCLyT`|cgI+o>x=40`l<}3X~IX_;yTx>yQ
zu#@*v`Sps3fbtuXbUfwvc{_*?Y8ARY=M_a&exO_`KNpa6ytMR%XI1&(r9XSA^MR!l
zmV8JsunQrKU{5V$PUCAn_t#~T;Or}%B)HEeo^%jEd7$FuhzulH9uVSvc0t{{EilSN
z{pK{8+H$wcUOC8NMoI|p3RCW~%|a-y6QJ_mq$;=F%SY6XQF<cP(rq{Syts!Q^k3>M
zgl8|g&Sg)DJKS6U)pXG^V@QaV5Gnu`wmua#ApK|t^jlcD+gh0NqI2AR(a~C%g%>uY
zqg0X`%e)o_3$~I4WfJ%9i_jYo$_twAI~%Mjs%a}Yv<-sG-L3_vO(>#=MDbGIS2f-D
z6q3iLy8q-I;qQ1m!LhG&UjF2^@eR1?^4ZsIy=xA)Tz;{0!51a?kt{;2cmmfq9l2E^
zUXO_1!pD&$BD6W_?pdkMn!Eq9jP4%5#&?}Bc4LHh>+~Gz0y=xQP0t;%dD8oIiWIFP
z$sLQNyM;eek~g|T-cM=XAO2uj-YqU~G(w3XK-P17x`}|G$tFpF8dZOb?89rdEWTiy
zOqY?+(E}z4+xQKq`;p)_WI&SDRY?E}7$JUnf>Y&*<GJ#DAX1u?zC9p<`PjEkJSZ!l
zP7c5fe>7-Y$Z)3R0&n-F>tWb7CvK9MUs>^leDIvit%Aqxi@{2Z6^$C{l-da6+b#YC
z&x6u-WYo?l!xKCY$-DbRDME{0cY-B_c4pJ+(ugWNGJ42pLqTGt_pEeAn>6izl}Ab5
zQXy;r;`9HM=RuH_`Uo}r(qhv<cl;(o1F1p&i<f#D=$tB&q)gC~LiqP0HPEY9yl4$H
zwTPL}9{TGT4S1)4N}a!fUdETgL-r-8)zinH<^1}cKaEQ(e#Dlz^a*|Z^!cif8yIRH
z+n|%1S))>$4XzWOf`Ywo;@)wK%v<069!{T+pY!=|o9*GTpi4_k4@q?Y+q8j^s8$G<
z9Al<)3@=&PAxaOSVn{@+OMk0rypD+<&qL~&y?OjqydrY~F}5Awf^=42y5WTxn&fe;
zdR@dLev-g=H|$3lBV3Pzch-9E^;F|=ZlnZZNXEJ(P<>#S`kF!&^%IHfPs)^j5!2Zf
zL^FA@jBk6H2};2UZ%pK)i9V?sh3hOAQ<@`h78XJrQQZMESzUmJM^-coz#^1Y{G)qT
zTyUek>CeWZU+1`+Sv77X_4%6R4}zmm5ormQ4rOxdN&{3Xcl{RXr9j$nosS|Om2A+6
zohTIyRVf+=HgGL14OE3EPs?NkqU27ct2S|`LAj!OMyg_pO3pBdqVhg3eitm$i+|}U
zs&^nb6;<&LoTj9bIyg*PX#>e^`<9U$dVNxAK#O<W7Dg~iXfCZkrWCi7rD*Gv4?$c8
z4#40VcWBC@PW;4UFmpx3p(ck|<#=fYjL{Pxqal3WUX$S`kNSq(c;jy#o+rRZu$#f#
z>5XbrdT%0E9;5Vrl?)bLQ@e>58y3v5^vE3zZnIdYGClD9z^i;Yt~!tf9{WmIjz2Cf
zVv{sDrSbg;Ij&)%<@i5c8J6SCBsfVmq}(B+W2C4%AEnU2cTJCo5ujo3GeZDF28Q`R
z35&*I8JPZ3JSBa&nXb4iru~4G<K5Ba7_a_Zjp>2nF9LetL8Qz%VATUB&K25u4Mrl3
z&$B^=d%cDkZ`^Z*%6OKKof%o@V_@L%#;?j@8p`-be#;D1qo4d(Y2X)-@fTqfVDsGW
z;g7#~K63<nV<4ukL{e8?3c+4;_WbYJ-up%p?_<>`&f><9@BAJIodzGmhgZLM6qNnU
zJ8;nHp)bRA*T3QCt-r#H6T@(=ewt^LK7}~gn1=N4dNlq>>1%T+)a@W*SDN5>Q09-`
z&z1_^;S|`9J^wrsu9@7#iGiw1ODk;PVG<Dx4pUMVnuj^(^XNKWNZtL}014A(g5N*z
zlY1hspl)=6c)WV#GwPY3bX*2894j?v<wQ~)YeA-DEy~)n=^h@>|1XsvyIigObVz~Y
zrSt4;mDB{nS2&!*#^ZsS9FtO;7`K}I!V0Z6m3bcjT(BlwUn_NFq$aQXIch?oa?1Yr
zSFH~kc$ngnKf(R+P_X{~_$~~|i-W8Nq(9092V@ZiORarA)anD>n4oBb;mn2W<9Fy<
z+Yn`Pjw%rX^npvqn6=Y|rmxumZRpBQcI8p2Y<UCB{XY?1`S%Y68$h~p^N2LSYk!6Y
zs0%hgs6YSf^jP{E+q(rlD24zH_8y(PLici56zs)Eq`>8sxFV_&&zDt#U0WI(mP#Cc
z=2Y}};5yLaGWK19eTSdwSFfRLL4M;H#%S-Xe=MNinmdoV@%Mrr4yYLIE}oD&6WN@c
zENdT0Ki+xFlOIns&6gk7-K_HCBY3x<^wl8<hl4mY{#f;U;SmrHAO9)SN4@^<-~Vla
z|39~YS{e&t3pV1v1OK~l>-Apz_u;=E{{#3>;eQ|g2k}3I|1|zb@Snkd4*z-l7w})i
z{{j3T#Qz~_wT0=dKC^hgumu?`+=Q8$g&hO<>BKRCg<J9IvW45|w-e+3g*^zrun&nY
z>}QMty7r+A3-=+jh5H2Z#b7Ic2nPv=P^5)Jx8o<xz-b0f^TjaJ8%6;ajxg}ZD1I^w
zlHJcAhRdSZ3v;OJ!W@I-7&yncIn-leeg%J4@@E}?*7Ju6<k1=n^Nd?y+yXNyFo6Q&
z7SIk0i)e&}2O0Pv10O_S{4LryQd|&Qv|#{ku&6zWS})p^Jj~zJ0sf}*_}!eLdvl)d
zEh&cIl4kg=88j7s>2rOGv9_hqf{S*f4)S+&1iw3n8FJ?+!*ofkE^+T#u@*kNR;}dk
zC}VY}`sJ4)yNk@Ld$f<ghcTd9)RV+c`$fBZ@b$z+yV<Ub_6~wH7VXXPH`#}JE=ms2
zKRJy0ElRRU@QVgq)R&}xAKPM4-zbP@QGXJRgJ1ge52Cde^=Hr^i~8A0iw4q+HBg{W
zDuV{aFH=Zm88;<qrVcTMee7JeA%92d9_&X)EgDSGCrvt8l$I3srw+qCoTATgmT3-W
zS;CPda~w&5gcpqz#AkFE?o5jAOp2*x``*Ogeat;O%#vhBnSM^{m6O)UNl9{9mMTXA
zUz97d7C8x-U(pJ8eg)_UzaSv|u9Dx?^1Ft=N#>Q8^5jYNi}HOeTfSd@2SC+}@&n?Q
z+U3&{rXc<#wnc>$>s3hICci9UA<bG8(qM)~g&cD)<d}OQ$J`5f310;DFDgiB3x`?q
zViF9GU&bv;8y1JfpKP<Jc$mKjl5C}etb0{1S%f5rRTZ*i0Xz@0$zxT;^a!Ly)$%kc
zv<fs1qN>`E9|S#BZNN)BHl~Y28?)JAJld1P^3Zqf#Ug0BYE!b9)JKYsY=)1`!zo7Z
z7$#X(b>y>xMl&GcsxA2}=)bBnJIeg7PfMEDr!!!Ls%@zP^V^m#ut?joN%73~<5Toi
z+egTMRok-z%wc;rFAputj^qf@jwD&GYDel2qwhe2<I#oc^O4H45M6`hvZ`GJWZ<e@
zDam11s-LL4KM78&>Q1GYUpJ_lkM!+Ky1STUn%xJb5Z!1(pdQVr=Wvcec56fK&ZIFn
zSG8MnzcHC+yqi)<*7jyJ51KsL-;bWC0z-lZtH6usGCt6Yd_W#m^(6}o*_S30;xPzH
z#G}ZNc!;Nva1~fqJVy&)p{l;aMaJt#SMf2F1V>eYZ<$~JD7n6B06nG;h8)l$4dlri
zRp4rQjFOhBQX&+pQs_;h%mJ2cUwWAFz}qA)Jec&pd`dipHmmlHO74SMp})Z_C3e*y
z`W=s<WC7GzHH4Pu1D%RTdO*@lXZAtZRHZX%rkTzh1ff@@g`%q<Az11Cpci>a?!!q+
zp{n6@226s7BG3y_R?tXN3OJH1&~s!+ntUXkVO2&n_Ysg3k%$mH@`5zm3@8ilGH7#o
zP(D^=L?~84{IESUpaMQbVpU~C9N{5pX0p;9nLK4eRYpVr9^~mN$ST%7o9Sl`kXEho
z$n%}@Y*ns*nEjXQrvRzSfiU?P9%W19@{}ihuqwGcbz@adJ0LeIjhyd4KmyBaTO&L}
z=2HV~<a|oVEuWQm`Oyr-QdOZ(axZ`ph%~=KYJ~Js5Gh|(7^DKPg3w~A3;QYNsvxT5
z0VW|TrihB0rH_iqG<&S5tyD~BNT#D1Da2?Y#R48k<{9B2c!iH4s)4H8Q+by2cA?K$
z?{_;OvtqHi6`k^&-MvMgiB*cnMm8&cy*{U}R{v%TKl!xAkEJc#K6^g9RpRA3w#jqq
z)#~5XWAAU&d~$D8Je$$y*lvAJ-C+JV>N7E``6RX~ZXLE~n?9TS46o7W<kcE}sz>vg
z{x`+5-_hqpi`Juet%jd@&eH##h1;&>p4qC;wr%>%ZL<1w>a+QJeRh4~I;rREKEubY
z{f_A~F|N<pALz67s6LzDVg7%p&$h=je(RU@8T+KR<Lp1!^HchqJgLvIr_BFpeNKNx
zpKU+XXX2mr+5ETq?7B|t+qO!dV^`{P;u`b6LZ4IX^_f_y&$%7?oM|^~{hZru{@0rS
z)%r|WxXE>jbG!7})}qgtg`0Ve;;~ohv$tQL&0YG;b?dWrzu|5A?7d2#b9?mJyh5L?
zz4~msRi86A+4E+7b}iRu><#*ydP@7d^<VWlXU~~$E1vpC?T3jkY5PrFukj`~=yPm~
zKAWw5raKh(Zq#RPyWviK&Th1R?b2uBH=1tiUVT6FT77oC$?%}zls%LBoISHm=&kEY
zrJIRm`kZ`)KBr!(&spQoobhX~@%Q9PeIGOap0xIEGya}v)%OXDKQ^TKPFgu8t=w~)
zwH~d;-!s-<lQ$^e%~?P68h^)(zgvyJdyT&*O%6?3J55=CPrXj_ov?aOtyY{c{%$q?
zZZrPwHU4fk{+=~?kTd>n{jKr0@pG^7_q6fxWV_YJ_<Q0y#WNpQ{_ZmVp1fDvXU_O|
z`aZ>D#^=+<*S+_sf1C0B%$GF1sVDT=_6hC(UgPgE<L`v=cg*;^*Z8~5_<Q;X8gKGR
zqsx!!bIj!9gz;_6_`BKod&20y)%bhT_$Fuc+hu$^;rM%#ws+3>J7;`5ZS<Wm{+@RF
z!T55__`J*bd)D&HnVg>3sp&Qwy-XRs&l!KkES(AC?}=6oKV^I}Vf@=={M}{zJ#)E+
z8@olH3FGgXZ)v|z7=L#ef5(i!n~lF)E&n#-?}YL9l;dOL@0itp&g9Xoh07U#kL}d{
zo%|2&mnqY8UB=&YrZ2mUzb6N@yfY@hdX2xwu2A}EHvUc+e|H&w$70nmR5`^^O%oLc
zO!e|U3@iAA3Av8XQ8A#aH|#5>U@TW}7)}qu9>)_SLOeGz9-i$(7=g+YhMPRI2N|v%
z!C<)aS%5uWy(u-!p-J`TOfip<O7-U3Mw1x7RAZ!`W&DnGilc8lhb7&P;Vf<Z>JHel
z%x6oxjIFD;4&*s1sot6yNWrqlv$%FOp9LBJ<GCZvbhj2P+#!8#%fbqW|MqN#BarGH
zG*kI3$RMH`GXPuKiAP5`vr@g|Kz{)vqv~CV$Z)$-1<oc^@5;hj!n1oQy^pwiINi_s
zb?1gTwy4I?B(KkbG}Gzkz)qerMyl?~?&rKi^=|XOAvrwC_cx{oq+B=V)5R3pe=jUv
zK9g*Bd7?r2%;%G^*{b{4zI>t|V6J)n*q`hlVmu5sILgLzl;(JKKl_1Clpl6o^}t>k
zv*IbE)9L~C5B*a)4p6HH4yQANc&2oKQk@#f6`5~}{l_Q!kI#I*pW*S$!g{PuscBiA
zI*{hDs(N2?bXcDIF#IG==Q$FnCM4ZqK4LHH#V3qjd5S;#9eA)`hCS7TI;g4Uh@}<&
z7_#Kt6JvG3EAhlYD1~u9o}gQK!mQ=9u&KL8o`oXDI>4hv<~xib9^VhAM`-U>qgkb1
zY+mM%IS&q)sz-EGglEQZhK7H21`{)k4-+~gPgvIMkBpT!Gbr-})tOvU^2uOq!1OYs
zBZKl(JG(lU%qKCftIqYytWPy&N`{#p#}_y7spE!f3^O^^SAE-PYLxFej$pg-$$IBW
zr+kiPr2RO0V0rMAauz@ytUm`3jK?SAVJ2itJD)>h{^JSyCQc7-$J`&EoDJkt>W?Rf
zLDhv^vY+L^GsE^MU~)$>_<^{vSHl&PLazn#2mLWRk#I%uiQrMr8C4e!ri7l0+mjsq
zR2Qw>MWdf0`G@|fAlr{@!h8?t_#Mw-j&u2x_Bn{=Bz^En`Z%ckRU`C@h&9V^xfQfR
zhmmj%Mc|6H^nqg)B8g+|YC0$t*DZ+EY$%`sz{fQkQ~QLmYc>kS&<7Qv$gJ6TSf?v$
z+LM`X3XhuhA&&6i*p%v*nG-mM!7=dJoH3uxhadnTVQM<E`4Ni18qCp*<{<NGIx&de
zx(SZ0g_|)RgJT<p+!R}I9L78w9og*uQB2L$Y)`&v-!Of)CshR2Y)=)3D5Gn(V`#6h
z(wR}oeS2XL!&AO03>GNgYPOGNWQwPT^EZ;kj<kxznjP7GnQf|ptdz;pnw|UhiFB+1
z#3UY~cNO!X3phBbvw=R{sIsIC2L|BcQ<Pa;yee+xv=<#RD@#X#Q$sb~Xl2Un8j-WB
z=qL`Lqtu~Q#sn;6jrio#oR317JfxR8M&;FRObC$vYW5DK&^vU1VAG(Wnq+@5eE_6b
zgISs^C(mn=xg5BHj{Km^g3=+g6E(>q=os>@22&8~(>L0`pBz^s5|*+0vm+y%Ag}2k
zEy^rLP5<G3Xf^l@NWasOKCqp0r*uGZ!jUqGUxV_=Bt#7!GH(ILKo2K`YEnk+HK_xT
z!%R@btT=>h;Iog4ls=TGoD>zuZLBGM3gUzL22LE*Ku8U8roU#ef3L_XI8@-*4DPcQ
z!>pBvqMD)9aE>yoCY|A&pg42_2|k!RP@kg6ubOm$nwwz?Dj92rg+$?lCLN@XseuYk
zWtcm1l38&&_ES8;K{AG8#1tAFs<~=LgpB!0NK_n!;zs6`F>P0qNu>rPoeZbT*czA~
z5=B>&F-=mFF_B)A$+l;6&}ncK)BD6hVJ)#t4A*1|!y=bzFrk#9Vyi*Vg68QM9?+Dt
zxg?}Ad~!lb;>c@ta{W3{SCdQS)6(5k0~Ay>IVX{Ba}~U86!TPkMUgMGnol7*sU@Ep
z$qKDP%*(V8d=8{3*lY5pQET#}1yMCMBJx=alyfr|0_fOA?NdW3FIkAVhkk(%<UM5_
z<r+0$jYw#SPH|Az!9mtj2Ut%W`}>mWLmm_#vK}3WM`Ze|26hIR8a~A#)nPTow6RPv
zI|v5jtNdXs*3e=4p{96XuguTYj6%;!QAMJ&7?_}f6sBWfZ*r9M42P_V&>`xq=0GYB
zM(3+k9wnh8JFLYxh&f0mD1WsON@}qf&K9mt9pYS`VKn`)bhyJXpJb}uFxCQ)1g7#F
zK8$8(Ul|^SkP$AfU9QR_7OP!;%L>&waIN%QYdzOG&$Zrj-KzFEV$f@yq;jj;=(WpP
z;uZ{5YL|n>Teunr7xd$@%jrT9rAun10Mu;iqH0qYE$CXTIbit!;<I++@P5uH!UfHx
zOA)p05CdXi*S2Rza>KN};mV+SA$e;zrTRt(sU>PVXtzsxov_fvX0P4az4Jzy#;@I)
z5xW)Pwia%nriM#37W7-~c9p>5%3+aC{ICcCa;9H)phs-!+MS~=m98X+V+X@^?H|;&
zh1#wx8i)$GwhKHaYZ$d+#f#rA)dYA;%_L(NxQ0`(j_610emB%-Ei{lWw9vI1DXO1p
zKKkWk?V`53n1!}rJ-SExEjQGfGyp#qSd>(4PyX;OS=gXUS2JqaC<9!<tQD)DYEoT2
z(CxK*_CiGsw8F*p3aoUZw~~EWHX`xXCLwf0P1MQ=VFX+R*RaZ3x^x<zE}asmE8D*p
ztWXPWM#}^)tTx_|%41?5u3<}0+E(&V)drTUg-nOwfc~uQJG@tCn``?y6riN2#RPo2
zENawJ2P&<3d{ql=53*vJvE-3QB)A4hFVrP)nI&6`zR)EHxC&SnWcdcNUCQgVsl7Jx
zfXgHuTu}FtUTSY{2o^PB&?QP2u7c-RaDLDRu(TL%xR5dzMmA|m``T0{**7dDO=VoE
zn5(_b4xryydaS4Fs!uJYx=6WNFkb5++K6<Ka@4iAKowjI8}VS0tKYTz@`$~nl`b%-
zmUOV6vX&(n>=(O<u2ivmm}@k(T(}ve0IlVsjkfNflhU=+&YBA3HY`!*k<PTMu7u0f
zXKlK$Sx0bi3FjdkS8<dMxOB5u`eQiVr}C>7_IpbESG6*Pdab(H&M<y9%E}j9d1w*V
zS2Z*10h5NLFRncL8j`q{i#H;H#kG^xzPPmXBvLH_EH%~rwXi@*vkaFLv!n`ZuZOvq
z67yYn3pRmxf*OL0@}QfpbjI2*r;>qw`v-L?r#7cDf_|`4&@kdkACNIgEyh@C1l4ls
zMl=gt#SU5Ds-<BoYwxvGXP{cdrAvDT<FMgmnk|%9sUogIc9?3r7K0Y!#zJzhu7cGT
z`t!*mZOU4x=S?z-q-(FNS*wd9C~=8OtSzMXB4g$YmuVLegy%Qt`?)+IHe^-5mg6z)
zbM(0J8(g}wRtuN+7UMLbCeg?o^WiNO3H!I8vW~99g>G4BqRS|U3RU};s&X?;=~{?M
z;~BWrYOIBh*F`wG&~eOz7OusGOHAxqXmyK0{f@*Dj(R;!E4!8hXl?t0d0OtwO>C+>
zOM1}R7}UqL_+PN#&i9Yk5PA5|pRf0E^?CmLSS&6^xFjE6e#<)3!f;XxQ<a*Ny40K$
z0(8nyk<NWoi5fth8i1M_{|gWxTWI057sJA-mSS9#H7F4QbVNxd6Nk#h5?%%x56*mQ
z6PAYI+ywHYF%9QtkzrKDai+OVeYa%YkSI>IycGsL0zjlEi)chRw|8SW1ieKk-s|LA
z97B|1IyVdr72lx}hXF9`v)Q`%&f-uiuhB#mqpuNwnw9f|=F}Yr;=2p867YrkwE06i
z#bltbSe{Z%kW~MEO&7nr)dGn3aLg|zN}TKZy1^j68$%B@48*CF90xP($Y!=+bP<OT
zvDt~Z%$|wZk0)gW&$*O1m-n~JlC(ILkK%n;!`E?6oRe%S5#l0Gg{0$9dzeh2R*X~I
z>BJD6xjd*Iv=?WT+rUqBrVq%BA)TtzApYV|YD3CzaT%uwV~SH}|3H1zNQ3w)p{&?H
z-b^}$??5|8lyq|1P04c~#8V#H0KV7<kS@qPPkbNdkA^G&ow6<-r;g$TF2jy!2ha&w
zXf>vjBtc*79{|xvx^VW$3Nm~%{X1kiK0erw$x#`N#AR$H0yEADx-D7i1##-|GLGrF
zG(;pg7|wLjvPc&=+e6Ncr;D7B<S;5ur9@IPXD&;#I&KOI+9=N51S(YE%rPxih%<ID
z{KV<mDDe>yW89z<&-4x2EK{6&2UKXqIb_sTZa5DL0WvJ4O@|C*#c9>dcv?4}fxuS9
z3MbfAW-H+=9OgJ2DPX`T?1V0)mQdv-tNG@P@MW~oqABq>Mtm6D(H4k{euL1YQ&pHc
z3lM=6hH<E~eJRl<bRI}&IdFp$(rN?uo5Z={pj`$ead6XZ=p`1CP9sD*b(cUKI?7C~
zI4gc*mNRm6V)lWPnQ=@SqM<nOhqJg#ryS`txh_r>?D4|TXmJ2*0}Pwq3%cdVpH2!E
zb&B4CX#`(!V(=N4aktWMA(!e;C%L;SF0+i7JaSI4E5tWrVGDlIi+i&aQw$6BHY5W?
zIvt&XGWz%Ta32?Z_d`8V-NKp8>4p(;>NG8!2OV)0MhCKkV%o%ooWw?pW3Xw;3eLg?
zwO{BIA%=9(Ua;+`PvaO6n?V=nkhq{?MJzx~SDdm(EiUt&VxGilH|h*i9BnJI4~aoF
zy3PW<xH7QVYE#7N)Iotd#hw?ZRr6pU>^O805<57ASq*JTQKeEG%AUG(_G%DSk-JFh
zmiwBkj$>NWcyO<}MgYUyvWlvbI#1kwnAL&sYZ!(q5@Ez`;nxJh$f(%Dh}*)f3xru8
zaNp|2+eq_PH$tY{jfd%Gaj3?f+tL?*O&<#>nFK;DKp07-eFQqLZUY$q@Ceuo?sjMx
zTL-G6g2t>WwOHMjY@eIxr5k!jCVlIuf`u{=hVHGL;(&WA$F2Kh-n4FOVOMH!6sr^P
z-`>te9Z`pMJ2)#m3`GHdC}KCKTh}#!Q5KX5W<Be=AYs$Aj^K8>nB|nw?Iu~DtLskX
zK_<I*ZG%5_Fh!Kq5pHKH)M2VMo#{$*KV4l9q+B+i<l0?b5A3XVTH0{$hP^#H(#NrN
z9mW--sm-$6uuev_Y6Pg8(g9&Gs&z9ub!fJ1zm6j6FdvmkVvGlA1oxn(2{%Tl5L|$C
zWAdCj4(wS+?QCl|b)u71m8e^H_Q5?mIE0C0$h|t5TvJJ2r?arIbKo!2!5r2&cTUD`
zbxvWECQV~=_g7sCW_v#rD#Rb$o)ub$iA*Q`>tt=LLw3K`$#g7w9#X4LtUs$S)ULKO
z{V^{q@94%dP^wGIAWB%*P2itOL3wg*OWdyRvOcC(ejWDnI$OAoqedJ1!HpFJP$kPu
zwTxjijR$oP%jCDZRlU_QpG*-}C&Hu)HlIQ_hPsp>tc&E&LW#Rj?4baoTgQ)-Z_Z6|
zS_c~#vvo3Rfg3uvTZ|pL_wPKIp?DT|7V~y=>(Ea`5Zs5{>~Gyj0cu{2iMq_j?(SWr
z352KFXC_TuCUqd$KPti!?n6bk3h5_9qebnwI_WOY?P=J$%;<=&<RE+&OM)_LuCn!0
z)!4cgXKoRX=9U$JN@18LRgsn7DfU+STM?l1>M)-5XanxOFjDq13~G*6);3W~K>39m
z6WKNF3yg6&R-$QFM~lg|r<edn=g?prWN_Pm9f-Ck+cU&H|8=xPM2?wT_}Sbr^SSR7
zVfs^`7;cuNo5iNx2KNBQ7~1Cfl;mpu916lDK$t>uU#eZ#q2WG|!lX3UjO)a>7?KeX
z+^}0!O{trjQNqAqHzU>|HD@o@(Q3hnoBQSK3fX;FCd6QiZZww27jc93w<(W{vJbk|
z?5Tr)zPLf@Q{1R7*2C3b=Q7~tY<CxTtiw&SyPNyR>%<bUwiQ!AXW{Cg^=VuRFPK|+
zK}z3)EzpR|5i;71HdI|PTTEiW#d(uDwE|?#RNcC{vyKA;$Aet|u(_8yNMlcCieY2*
zBJE>Jj%&1aIx3catY3ahtEUJ7R;+YmTLDgu5{Uk$UL^38Ho@9pu(H%V{fS^JTLZyX
zt_*@;YAb^YXecUXCJ;<*l}wmhaRAJoK(JMwk{6&IBnhmNP%cg|wbjA0tqzu8O%SXN
z7Idv=lpvqAYUp4-p1?Cj2!aV*69nr#%LKvJmA_$ite~10jSvJ|9}IS@%syB!0KW}x
z74mm)1XuzR2+YpZ#H7*n1OT1R=ahZDEFXXxIdrdIp3b%iw?efGpeaE;FF^FW08CkQ
z%gCK?a^S?4E@8*|<rqqknp>cMeE_2O0i;Mh*C((@n|SkEm;ld1wCn`EdVtE1K$7Ya
z?l7R@+kkFOu3v5oE-f&?>QVd*)^D)Wga8%ACJTs30>~@qI1DEM)JPk^AOb+GGzYM%
z%J!g{SHJlXn39t!1Tq7%K{rL!W2ruc$ywPMRKJzWBO^$h!MMzkPh)bhA3zuB)j+D3
z85gts>N%Bx`7c=@uV*`}{6`$vW8Q)bfw#I*k8<_zcM0gKxY}xXGXQ<>fo#s}AJ~w^
z)Ce09N%v6Pm>pWb8@uA&tc?M+*Z?TERW#O%NELGwJ*PmYniXv0;Ksd?0uqR62LS~=
zQO{`?S_>3%^?ies<2pX6x77wQ3+mORQ@N->GD92;L|GP@!~wuqw@VlD>$wbpP?#8G
zFwV?CfpLvhfeq6E(!&GNjeLWZAGdN^&lLj@qYM!1)u1yH<NQW0)!D=S-SuM9N!L4o
zY`94aZw|rQ)Y;d1SasHOd@}+QyO<iJZA0K0RrR!?_Hu%WrN%Nm^va+H)1`Q|?eGS&
ze!m)z092W(W$HPaRE5q20ybm)U^eR+&-G&Xxkgkgki!nd(Z&0XqH6%4J<<azDbj__
zhhX)~Ja9b}Tyl6XGe#Vpqt^+bdR?Peqo#f&jULVn!e~b@tOJY=!?2g$&TPVbnAvOf
z8QSX};Bq~=i^3rjFfHpdu=mm#9n{xj?^H@w>e#2Uk;*1n>N5q}i)xP6!|*m*s=@{d
z*%zTknXR=)0Y4a$mev2Q84PV4=st*TaRTxMs%vgtLNK%+0Cjgg_Gt}b22f6S)uWuG
zHd)yqIIx#RV+V^FW_DFQR}wh+k!NaTzf}H4sA~aI&kdaMs>d`8=bJ#-0$_ZZ;e<B;
z+jez{ST}&g84TSd%)q7+n@S7{0yJSi1O!I|^`KS`Skd+b6e!4&D=rFb0HFX22R!sc
zkT2T&W4)L@UNG+6V!ukT!<cfj^@4iD#FiMHXD~p+gsFKF3808}PUX}xs+ZZ30=HH2
z4Tl%5tud52ER@WA2++`CVb;s;FxNT)5Qp}oz5$S)leXaWBK42%J<!FSdd#ADW4d~5
z8Q72+;IcA;vApP`0;k#Pah4B*Z0wyw+2pT*dh6<B5km&FUc>UB?h7E~2P8U9$9N62
z!>GT7;eb}OdL{`G%revNg1q?+L7q)Ow5klLX+{Hz?-bE2Ao9%zLBZV3R-?^;cPm#1
z^IN&bv-kMUH))8<>HxD$yIxXJ+sV~$%?i(ELp(E|tel1{cg@YkTUXXD>ogIIx6ZeL
zkmjxatW<-VI+$$aI0Hy+9kl8KAeqfEVrdZ52h&`#ISdFR#buXs-iPttgkHzGjO<Wu
zVDeqMvw-h_Fr~c}hvk^2bnSL*s>A+>1~pl1$8p0(Y!vIn&<r{l@5pvo$Vuh7p|3%#
ziH(OTPl0e^8Iu!`d$d~`I775kb{!FI!-`EtM^r#MGh{|U1C%LOVz2Aoxr6T%^?<p7
zFgSpf(w`dO(on-r8*M@-0l}>B7kwH~K2~o-k!w#4IKLby%Z=$G)GZc0xx21GY(TYC
z&=Sf1+eXva*(a*KLHN_@wFWf-L~<~s*Z{BB9jpy%1kmWg4u=NOgtQ81Ei{N0XTx#)
z*dWT<e+O=a)>Qs(;JQC;E-@c~Fa-8drZAdMnGA2h;>ZBISJv$tIQK$RI7PK42z{=4
zT9CJYr(v*PN;878A*8Bc(Um|La+^knNNN!6%5YK#olP;B-vES0>etoS2CQ~4yFAiC
zJeebLvJ5D@pRxxOD(|=`zCC%k4|2OfXF<}cz#B3m<V=}1aP<P4bFE!C|FIFvUTJC%
zyu&JcAxR6B$d)l=!KNYO>rK8B?IxpHqR|m-VF2}TDax(>svdQ#;E~AIiTMtxKoj<R
zVv~qUQVj~C1ACoNZ%}1u3m`zUrmjm<K%yIs&TNdqIS=FjRSB_Nghpj;X}3zZbg*wl
z3l3nr2IsCDpf9-c09uxiiqvxBJ2xG}kh<)k<NF3_*TGS2=4j<Rwz441+Yse3ZD!P}
zBGBffpdV1tVT|snjU3YXj0WmoSpT}Av_WP8v?&l0gesH2(5iy=XE1-;gGm5EG^%ZM
z-vAmKO}*as4mMC-iJIeqR6(P%1r~F9{99~vef4N@9|o_Bp%z+KdZS#z75-R~&=e6R
zF5xO)-3U}gVQ*Ki(zq1lc<U60K^wG-V8>ge<c(7mdJ2i~8dZSQU4W}w*LzBcaILQg
z0BxA=QnrD*2X(0K;5Dsf`QGY{b|s@*NnR~Frd;f_0p-L36aztZ_{)7-i&Z=5<O?Ab
z0!J6B5j=?9YY^=MopfbJ2+XOtZWtznZp1vqd0rom?Cd5K<)XV)nG{H>WjDkJ#-4y1
zWYaQaylfg@yg`<?Iog#%wkI=?^=@@xv5t6EbR({*pRKy=4|pgwfFNlY)p$z<WLxAg
zs9vl~4o+DucB+IW!P_nx#WJ$ww!ForC|N&NpHd$3j{^d}#R!w_EIJqvBTep0wPmcu
zYE6NuF#JaK`v$vd)MDUHi*PYbd~&^7rHf@ApL6%JR0Sv-xVo`Mw*`SynPH4NxqwN*
zuviQN&+uJ5*w5B-qf$VgX~>(wyjX@*J2<&X)?MsPtjpZ%Vv+T_DVT-i%sMqxk7&Wg
zD*GYxFfznjPTaA=Dy;y~BbW)Nyy9ETP|C!q+yt_i3WP&rorn~e$7HvTmOXe~me+}R
za0f(*z(aD-s9V(GVjG~DzF4fIG8Tek62QEQNf|jW&gg2ssguRJO`2s(4OGRv6-O2K
z-omCq^u4S{M!ZEvkYU&io3SH7i@oV-tuHhH=4Vn}I+|Zh72rq(aiIgC(A_u+P`2fo
zR#kWi^U|`(2~dRnDB2sN(8W-ADYgU-Qebg&v0I6@h6RE3?=L_PqwsutxWK`n3^)L7
zIKGP;WdLOg)hr;Dr2L&-yj?+^K1+t<hUW}78-CXCQp2%Ejh8SSH@wVnv*A|5OAW6x
zoG{#Gc$wi&!>xw946if1$8ekBUc;S+hYWWa&Kcfg_>kdV!()br3?DU|GdyAVkm36c
zj~SjceAMuRh9?Y98NT1}Lxv{}PaA&F@Z*N349^&T$naB!rwz{<e%x@$@QmR(!%rE0
z*6^(1SiSYX;ke;B!_9`DHN4btY>D;1;ke;thMNty8eVF6o#BMxHp9ydcN%Ur++}#3
z;XQ`i4EGxDG(2Ru%W%%{9>a$W_Zl8EJY@K&;hf<K!-ovtZ+Oh`q~W86A2d8+c*^ko
zh95FKX?WW3gN7eBJY{&s@I!{5GCXZ~*6`zoONM6*&l!Ho@Uw<z4P($Ha-d{5Zg|dc
zv*BkAFEt!%vi>(5H@wVnv*A|5OAW6xoG{#Gc$wi&!>xw946if1$8ekBUc;S+hYWWa
z&Kcfg_>kdV!()br3?DU|GdyAVkm36cj~SjceAMuRh9?Y98NT1}Lxv{}PaA&F@Z*N3
z49^&T$naB!rwz{<e%x@$@QmR(!%rE0*6^%h7)RRwhU13k3^yBo*6>opv1aRk!*RpQ
z3^yBYHN4dDI>QOWZHAW_?ljzLxXbW5!+Q+38SXXQX?VzRm*Je@J%$e%?lnASc*yWk
z!#Tqfh7TFO-|(2>NyA4CKWKQu@RZ^E4L@Xf((tt52Ms@Nc*^jM;fD-AWq59{w*Tyn
z`i%AJbIx$H;n*JQC&SH#TMZ`+w;66V+-11UaIfJm!#TsfhQ|!&3{MyyGdyW{!tj*g
zNyF2Irwq>+o;Eydc*gLY;aS76q}AVWv*FlHR)53IhFc9M47V9>HQZ&m&2X>bF2gy)
zy@tmO=L}C69y2^?c*5|M;Yq{OhNleA7@jsfYk0=+oZ(r+u|BK6;bz0Jo2~wan+>-b
zP8e=8+-kVXaGT*?!(E1RhI<W<8O|A=Fg#{>((r`gDZ`V7rwvaTo-sUac-HWY;W@*z
zhGYF!f5Xj&W4BoS4L2KZHJmWqX1LXGm*F<Uy@tCC=M4869y6RXJYjgu@TB1h!&8PQ
z4Nn`MGCX5=+VHI58N+jiXAQ>&tp0|Z4aeSK^*7vXxYcmNaGT*)!(E2k4EGxDGMqEq
zYk16X&hUicF~gIFCk#&+o-{mdc*^jM;c3IOhGz`V8J;y9OIiI5Hye)KYV|kVY`E2M
z!f>16R>NI}+YI*_?lPP++-rEuaL(|A;W5LLh9?Y98J;veZFtJ?jNxg+vxa93&l#RI
z9NTC0H{5JE_C~9};bz0Fh7*R{47VEYGTdgk*Kn8NoZ()>V}^5vCk&4no-{mRc*^jk
z;c3HDhGz^<8=f^hV|dQ+tl`+8)!%Tl;h5>kgyCkxt%ehZ+YGlF?lRnFxYux(;hf=K
z!()bXh9?Y<8J;veVR*{$q~U49Q-)^@PaB>!JY#sy@T}q9`psg;*|DIQ!&s7#KZkJ)
ztsDa_#lL$W5533txy!=KHT8k;u~>82d-=R+;5{a;%ib>zVazd=y?<*6kA-loT0LBO
z?+m>^62kX{@Vz0tB!r)R_8jqX=}&~-zbAxCq4L}xdLOG%50~Bpq4$#^{GkvATtF`u
z|H07viBS4yhTeZNgg+C)(;@s=2%jCorCRlH<@svpeJo!7J|4ntA^gS=9th!B>|#mK
z<#%o<zo$c(w9G#jeomo>p9^7aT|fLnX>A|#qagfq>75(G?)x3?{j$*eMH=0U|FRHH
zgm7;t{-vS!n6Q>Vm*4Fnd|wDJ3&sDV(EG=m%F{D;_R2dM3coy*-iJc(9}Hmzr<W`5
zROmgHq~y=NpAEe?_VVJ#7M6!!9f}_hy~oLrvh?MHlJIf);cK>K@3B}^hFe1K*M;7%
z4!v&+VPj7(zgLIizcCbk`n>Y|`Q0P_x$?d#gxln;|GxA)^>E=ggx>QT<NR~)=Uyns
zCT_g<8}+q^+e3IVl-{P$`-ejB9}eNpQ21|#-j_o7w;>!e26Oe<5lU}q=zUk{eIoQe
zwnjCSOD_?^M=#O@-1}If9QTCMCuEUb_})-{!y&vU6u&NnZw}!HLh*a;{nVmzd%)p=
z(0gYOxc7Wb8S1dJ2OM_xfWyunaM;-c4m*3mVP_9G?Cb%D4~5F->;d<FEcD*l1MdBu
zq4!5Z_?{4U_JE7;>;Z?JJ>amj2OM_xfWyunaQOaEe$F0n@0~s1@MI|bhe8-oB%}-f
zVCcQG2i$vS4>;`X0f(JE;P7-PJ!cQN_s$-0*x3UPJA1%kXAd~+>;Z?JJ>amj2OM_x
zfWyunaM;-c4m*3mVbU`H9Cr4A!_FRXSX<W*@9Y8h-q`~VJA1(4g!GOd-`NB1y|JrT
z9%m1@_X#PjAHO%0-ld`U&K_{_oju^Nvj-e@_JG6A9&p&%0}eZTz~RYId7M4q-aC81
zVP_9G%;GZ%hn+p(u(Jmoo(<*a>;d=Q*#izcd%$654>;`X0f(JE;IOj?9Cr4A!_FRX
zcwMMJoIT*)JA1%kXAd~+>;Z?JJ>amj2OM_xfWyunaJVg09%m1@_Zvd*oju^*JA1%k
zXAd~MF%-W&gq=O$!fy(_clLmL@9Y7Goju^Nvj-e@_JG6A9&p&%0}eZTz+q<(IPB~J
zhn+p(u(JmocJ_e7&K__$me2}2?Cb%D`Ih#8!_FRX*x3UP@6qJE@Xj7^@0~s1u(Jmo
z?zQ-_SYwKZd9l6VYVHjM=Fab{xs^w^fH(SErewnrad1x&@X9rMF3G)LyL$CHZ?`Yr
zuU)goKRN|`tG7D{dm74c&TwE~G2aJwtu`*#-83z-V`2f~%SOu<9P*SMuMTt91-~cM
zDEnb`gAljOD8^>V4!yS(Sa-<ERvLNl?U?00FMF?na0^)@@6y!mM{>}oQFl%0J|yfj
zHLQnkBtI#A-(lI4#Q1{I>N~Mz(8Jt3h&{B7kDXN8u)W6i5(&25lid5;h?7ahp_bv~
z?T4{Jh~aGqNsE5$#K*d~&d1!1#P}{e_by3%JKWTPddqvmeIq<qjPQo_qZ&TuA===3
zJsjb`=O%fkFP*vTM%zo=sQbCRO<9fDy@Wly#k6hkYTVM^-nF{}CkpgJmqu^57Y|(^
zJ#0$i-r$YtjGW<ablbK%cwQ3ku?KiFT2l|X0Pl8Z3w1ZKkGY>1<;Out?kUxs$i#9V
zCJsmI4LpthVVvFER?{eZXZ_1E8nF+E<=1U<Re`goddEql+!M@m+=xDa`1`Q+3CAOF
zdux$*VKurvTeiQlQBO$d-Zat&_GR%ng%@7-Y5B)T8gV2NH&EC%XoPqBa%C4KaiN_j
zh}<sTMr?q>=@;*Asz$!Rmax1XWooozFIoV^=XE03j5M0V2_n{?J8wI%<JHl#x7k+D
z_dtHQEoX9%L?gbA)P*i{hfNx7|C8Gx+vx3W-60<}@v)vDX_Q?}Jaxj2Z^$1Q)PjpQ
zdFTXK4o8SEkXt7jz5Swk&UA@?f<Xy7;Gq;9@KBOo!lMjIwtBWfJbWP(i^0R&WhzpS
z9sw~WA#M%qpQMM$Ew}A)$#U>7Hehlupm6>YkyN_x5fs8GCYp2u?gDrqJa-<t(~O=+
zDzA4FE%CV9HkA1udA*6p_mGQ-nW$rMkvPoOdF*BWWgcD{CKFP;<RKVhFe}>@{WOMn
zMl%><h<gQt9_erzBP8))h!Ji#Ec4)@=rRu;R0w)N0+3t%auj&Id6|c9gA9b=H7LOl
zc2lz-f;%3|icVU?x#=a#`4OxZoTn`4mz?0CyQEvtru=x+5<Nk&4ZNpfZAp7}qz|Vi
z26oy-!%I|S^mzAMEs;wuQUjEKa*S??unalDNPmeQM&R)sT!8`E0uS7&?g>nK6z~qG
z-c<j=qo1eN<tlt-uO$#)yu}#oskbjJ(OV9kR7Di#$g@x=yqp7AGT6USjyt+tsPN!E
zMVywB4Ty-sdjN5Z#8B#BHqX0*mW+(@Vq13xuPS(2Y6zwXJVdO5Xw!DF(0mUxsU7)b
z6eOxQ2k0(yp43{B!)Xtc1REsTQ}n<+Q9<Fe1eDz!+)KX%JLJp6;}TMqh~f=;eryS{
zm5U^$(ODM}tbs<B!gxPTo;}6OxM)E%K?3O}&lclB`WOS*UC99-W0-)CoRQFUES4Nr
zEAuhZY@+BYlRNN%{k1A^1_?emW)u`>^f6ImRuFyC0Xv6z-Eym|hFTU)%e96rQe!ek
zlb%w7xN^s!o9t{7_Mw_|F(08rJssU7a?f4trs-H|ybbgSL#xbPVFNqNd{D^C6M6#N
z_qmeCoi1O1Fm8jp6PQhEeVGlRc|p_Pq7s%>W-M1vrvrVT5xcS(KCT1p8t#A(D2Qk0
zd>`)c=D8o=XP|Eo$EkxpU@EzV(hoD(&#m_5Vf5xIKg{qx{UVs}<F1(w_<${GY5G2T
zjIzuJ=WNPLD7;)&X1z2b7^^svgW1g%6ZyB*5sdio_&a5cT>8#fVh3_#JEb7D<I@LH
zV|ch_mt6E5^uf6wxh>rf(~U~(mGZb)d)s;Bh$)l!<%mNMu8qTX{3e{8r&-ZrN0~UX
zg54n-tzUHs6!s+u6F8~X0osC(lX(!$dM|KO_Yltv7mA*>+T>Z2YJVbkZ0;7)h8@e}
zFY3eNWgXrvbxk6<gEF+qm&2$S&)qiRHdQ&G>{)(II78i^8^um>wS^IeH_hRse<$?g
zHo5HvJ~kL}^1DgxyTH+7`0&J42ftUL_X#!8<|Dbm*w`p~vPn1odp(G}<Qx-azdQTZ
z9FST@^g%D9`eu$7*Ov|P=oOMC@LIX%8b1`&J-z0K;)%$hs6r^YGRqr*NyK#_(S%Tb
z+G_Tdd8wU8FURU;E{T^DvNRzUpj;;AL_y1WL3pX@#xuQ2Jk2<gDgEE#(LuAyKI!Q^
zL$Rn*7f2k{_K*PP1)>al;kt1Q5pnqyD7u-W!tx_1;?=DjBm~G%t~%{7x;F7bSKkXf
z!mlO-y*OgSxF_g^a;S9oBa*5^p=btf;1^#5q2T30Sp!mJ%NP-%0$$Lc64AW8JA?gD
zLwdA37%EtLi|AeO>qkVxs)g!%1?y-LQO9s79H8q-_VomFgqMEc(oYLsdeLmaOV88=
zBL>^ca-@I?RXf;(F4X)c<i|cx++gxBsrHMF-Mk!H3siTYWk63jF_fLG;`RSLWk{NE
z^0LP-g!AH;DshoNLx~I(Tgf9PcLB++BrZwhmxG(VJ4wWA)k+H1C7xhqe_w(^2*q!L
zMTm=kaUuw+ry05oB1a8I)oSo648i2wFN!8BRLJi#r1G2cI8H2AS0SREED8vwW)*P3
z%N3kg;O+$T3Lda;4oE#4yo#5WYFn}oH)$hBHC6pnXYk61C~xQSMLA4V#Zx@~p&qqh
z=XoKbe-_jeqG&CA0YQvQNf4prC{EsQuvqL2U(~Wug>(Xb9+?OH>~JUJzWOS$lRPtw
zevrV92W@BsKgh^(!&Lo@9L+Q>^D|Sl%+HL`GCxuisFr?V^OJrqTPKpl&$4x<QP9ts
z9`tjx>(oE}gm`(zQ49dhx7-AvpOesXe+uq-r=OeXbQ5aghbG67c}cVf74iH$F*XPT
z6mc2O^UL{uDIU{zW~qgPqF%L9{T3ju=z;FTI68mG_|5!014G+S!hyeG3DN?RvWTA=
z-BEs~YtC2>G6@*A9EzObbvVo319`);IKtST8ew{10^g66q{7no<0oH|gEVn{ztr%)
zwW~KB#-Kdp*L`>-=!Y}wGMXy)J0u2D&~MN){r&VfEucoS@8@_r7<a_GEH@A?B0U_^
z!?i>FHn1O#NBPK!WquKH3%FE`vLF~vBpDjL+;6{Jgjnv!p|<v~YkMjUo}3PbBLR}F
z%ltU&B}Vrdp7_VqqtFn;IhDXkI-L-OpPAY2xGwwL`H{X|9!}ox!<1fElGei+%XzB0
z1s|5ituZ3=De;>;i7%5X5cy|F|CvQ;vh@tiJ=jrId?cGgYJ|hLY|^~=8dov6qorqv
z0npD2={OIIln}1mPqf1sG=9CYI*n<B3mm3&67~!^>fgoh-uU_YlZ2GK2RT`CCS{`V
zctCK7XIOH;bLBiSCZ4Vpoh*Xq>XqwPuU~u3O8<B_J?BYUc;fanCkM?QG0$@OE1nTW
z@(o<~B`AdSJ>8g-o-P~owVHt9Y1vQ`h?N%fj11`+Nx_hw9TWBxW00PXtjvs%mM{0@
znfNnRoPvJA8%}nfsd7@LwLJ6KJmsu?*i#5H;298snldvAc#^YuVceNsS9HtdMGu!s
ze9yjg@dhv_*I#^3xkjZM(_TSO{WjF~Dck_!hm=xL+KQ*OJJLMhr)i!dMmNjX#1Y-~
z5SBW4QLg50o`e0I6cyXh4~fws^sbl-zUPPxJZ17c;F%iP1+Bs_dHA0E%=c#fETZoz
z?4-Ac`JM*`3R(N;!kM1TkseWj>U$2S_K|D3G;^kBKDJ|I<%yGKUz|wWL!O+evP0(K
zz{EQ1ai%Da-8g7J%y|X9CiG0XN+l!~&U8cO<ghPi&I~R*IAL)nW<3}r#XI&l*ri8j
zEstX3v*dy!{RmQvN6YYC(R$6QYgVsVXSYs}nCZKA9(&XG8qW-Kb`E{Z*@2f&%=fi)
zaZf}<8A84m78g`_bZsIA>0+@qB88Bzr4W*4Rx(_#5s^a3*HT#HizFwfPzKyQ8IeNB
z*HXY`7!kF=6-yq2m{p2&G0ho~Zphct#Vr~UVMD$a784A{ca(P`+K?L-xg$~t`C1CN
zS0p0rtz{xxYzL(4*Vh}4(>LJn_onz-+00_suukYZnNQz<<!DwSeO=XjyDsSKTXyq&
z#kLFj`c_-e*SBrx8@5n{*1g8@Z4ZVGTOSL+7ntF<3oi>Toibo#3Sx2>TI2x{4jn>Y
zvCuD1EQ6H4Qf7%^qkFzKO|HXH^Hn8rc|y`*SZOi%VnW+fE9Q&O3&<TcH|SR$&Z1sv
zf#?p{+)RPmMlWzjS5e>K%C56Kf|kf;z4^YXMO0(>zFG{=*E&5p@Fpy-=)45Nny;$=
za9DpWn<aB$G06zikRzd>Z;Ga{e4a7rJJ^rgr&65u4f=|Tv9XAsuHMd}sw3>H7l-)1
zIecp<<F|v=BG0=aM>gZqreJQcLv%(I*0P@hzE{wf9o{SVX869cYD1e3R&>Z0<>fsn
zzOT)!pbObU&bDj!=q>0=4a5rbKGm~4y(Ve_6G^<8^(>u2;AAouCpYp=RgA38vT-_=
zs@ULSH+ySGbewIyay2L=h5KcOuSP-OJzpnL7{lB3Vz9N(rdDbV%);t~r+9m;=IJnc
zN2nlr<FX`=R88i1-quGp{1@-&v_q;z%guZK$|NG?BokTf$s>wdnPpV(vd}J(kjglP
zw@W*u2wdopw+kJi3Rseme78in!znD_5qf2G!}9j%sL&yAD+#WliVPiHd0uc8m3D-#
zK>=4q7clH?B@v6lI^L;sCK4*QwFz#-iYiIi+oc_<j`NQ09e$W2qL#b|`$c$L+N+}r
zxH@FYSanv1vUG`r+S|O>oWgsaQWLW0{a?XyTOw<t3&{JyqC&6nc*h&7p?B7XTF|N!
z_O>i>omg4g7W$g#0$vl{CIPYGnJ_2`S92odiF!M-BHK%w&^v6!NFwvi81aUFl<9Cc
z_aTX_k8VK@&x0*!wJfuyY>^9Td&LNh`GVeoQJ;8QRWRA*25v#`z<@019T<Jl+ttP!
zKuLAHQhP%vdYhdiDucUeuro2>?b?tV1S7oFNU%iAMDZ*j^A-aNKW<=d-YBDt*7dmn
zC6TVdh>BbEQh8D6^maw)7E4N&URe_7tv0F|Qogs0o3Yr5{cpk0$PMP0pNO@#3=iF)
z7Kxa**snL(S9Am3oTEi?#8ULVv46=Qm;2soi0sr)didU25+MpHpk*mW2TY_cuH5*c
zu}6>JvZ0B>HgN_<w|`A3LI<t}4Gc-o=3Sq=@XbZq7F*hN$s!gz$5;Pl)jWq|RoA!y
znuY(0)(C+w{vie@M~Hs}1Brjch=%^W7B|dU;vbR}F8wGC$?&+BH!_{Dgs0eI_|*{{
zP5*07QT}UA6+Toim;Nc*bLF}Sd5L^iVR<{M{Jwb;5CaImCQ9_cALCp{$^Q5Z{_Eu0
z;*h+fzpr-uu@wEi@&|+!{6pR<48-5@PhcDn^bd{%g8piUs(l~y58CJF*xCt(V6=ig
zY2*A|jb%3>#%$-PTtRIIHt3c4SPubjof9$U;yQ=;-{Kg6b>hwf`a3^xE;!%G7T+I}
zq4G&G*AA{E7$ebSx7jg-x7Lx%WOWG}O3U{j?3ZOs+hiW_hhm0Ou(5~lpW`CmXv&rZ
zeSa+{<P;=cFnw3fqA1IAyg4{q3hw4^#|0=)NXTs6v^|;Q9R69>5U;w#QyQ3eJI6*R
zp5n6c$vHBA-lg{%V$%rr!^qa8bGeOUtw*5#@SiVy{{W@)g&#gJn8b@!-isiu;KkY%
zQQ8nM!bGjTh8Mn-p&~l?!g?+^UXmDP+$w{(Sd1@d-Fp4)j9$J7(2}o@&UMPzBQ+a0
zoh!7e<MOg80(}vfIM6<4=Ajt{ovpSP<>akf;Li0j^?KFS+!3tzLMaC^tUU@G4*UD8
z{THImgkVLVod=oP%0Gy=;3lhBOy2nG%pMWx8w^WaRsniIoK>y9H5;&M@CGt5s_pS6
zU|$A1Sl>i-B;I)0m-8~;L~+Ri)F)+UV_JG(Q+ien>thy|BLQ!}jlIG7k`_)6q+}~1
z7Jj`r647h)!OQ(O=$XqCE<x?K^HlDcCpVQr5{Sieo<|$yb4$#}rNOM2j@*I^sd$Pv
zIID&?Mg^E5!siNLa)BJUEzN)9j2b61mr_UjeHxrD;;U=c<Im?Cw;Y96z6LDs2)y#T
zC`63GS7qe5Ahxt@LeQVA!JNrb*GtRHs=ZR@_0Z(rtND8+>{VdHm8YKUm1|$Nty|Gw
zsy*ec-t(PJXDy9peCjEA6%Yo2U2RLFyOCDYDPGY~ImIi@E6~S1Tt@B#!^_uA5X-th
zsD_~HBtiFz)+=^k<NK>Ro#w~#yTrui`N3We^(EfvJoG%OUJyIq?X|-vq4T4;;?@l2
z&TJ5IemOUKEloS%e6OcvL6?i#-h8jUE90*1whnrJMAta!8}-f!V0}lC9i#=dG34DX
z$WA6j$|a<}E0>#$#jZR56dk@2{E2rye`3}h6P;WSl+N?t&EI6@zvF%do8&c{<a~dT
zY&VwF(znaW1pUzQ1(flt*R6q#>@xP30r1lE4bjVj*aeOc3ZpsQ&l=!_3xdrZmRtIA
zUYn|7yTEIJ!Txq^w9IpE8pAh8SmYV_%!Gb59B07z6{{SCzy)Pn4s_sD*ul^AU@ZI+
zr5kV1s|y7w*}k&?Z)G&QRX-%;5uDMZz1@vZGFVOhxqQZT4afRpDws#yvTlake=Dpb
z3?)0>M8m$s?-{O5hRXa>^o`#wp$>?}@Os^f^}dbe^QNTz(y|&~neeKv?QE|>lAb8K
zGC``(74s0AFAa9!eA3s~0ZS&Bj>W#kBXeJIE8|G)TbLO*Ct$&u{WR~jafB^;U0Ake
z>l$CE77P=MUFbxFm%lTi*+JfWtE*pWw-j{YDXXq6r|(&Jtw1@GGks^wmA`T9FYhB8
zN7H{<`2xWF3cgG$h}?ZE0@i|WnZArAC>L1ed#hjO(Ja0@n##As_~-XDJJ3+1-B|1*
z%|h7%+X#7XO<QW6ePPBz*fF&fHo=jl)~@z7uOEU(8lyw7rREvR9zn7ktceP0e1b4I
z+h7VPVI_6VL{kU@EWcZ0F$*H+Tu#wq76di$GM9RKh^Yh$8{P9|L83cfgOGSU>I`#-
zALNuA5*ehNOA;I?f+P}ePINfFzBZ9AKn|er>k^nYyx1eusIn+AUR*Jm6>Bw}N?EO1
zdHOJGSBJu26>q<kdezEn6GON2l#ix!iDT|%0m4xF@F~v%sW%8Sa7-!~i2XTF3zaj<
zCG$CH{*?43k!{57=m{+XD;FK8!2XB~)F-Rh*Cr0J?j9L3rI!Z@F{<YfAr$JAgjAMR
zAXGUmX{dm-kK{xRMNY3IdL+~>j$4b6$k=1yj~-0MzdW)@ae6T!#sqW}TjEkB2A5c*
zEQ2nyU>-R*b*8qVXFgtfx^`8LkYGOdiq7&UAy6{aGLgajnFP02<I>2A4(1Y`gdSu~
zFM}mUf_GItRl8kg(lEGnA}~_&#y1wuYZ7%_Y4qwdiG?edWst39^8sk$%Ytp^+LsLh
z^)3u!Gv}8@R(J2<-cWsC5t8bI^YXN#fEKX4K)&#Ik}no}MX-cg-DriP0q4nu`E376
zNl^kCyPT?5UKv^Ie!tFg5|sTM9Wv#Ilw;VZ4k=@K4vG@Iyh6olbee~dX7ETrD9vtF
z9@<dXCS(aFAkCI}buUjPf)P#`bUrgIi)^P|iNNtH9wcQ^qk{&TR8L1T=;caFS`}ym
zS8c7L)Xb9s7B*}fdIaS;K=YReDas`(G(VqKB&;VEy?J?WVllW4=<-vwf+PzmVB3?l
zZm8BgEsqwHun<P44a>V0po0P`GL$Z+0rH0vr<luO*yUyOG8j??1kQH-vMMgbkPj#^
zuuO~1<JWS5V$8j~tc6d*WcWs9WK&2>1h)`tnWF;dsEx~u#=uuV_<F%l+Z<P%zB#&i
zia)=5*EXh2E5uCT)ACZK(DT{pic_?R5=U^Wwbs(BW58f^q!iq4ed^F6<qHWn?<0_*
zudG-S%{M@)rws1YpTCcdsb3XR7C1vBCoxW?Gp_Q4m*d*X40)AbdRe+j1n(ufHZd}q
zkh6Gl?G4M*;)joD$<Wf)sUzUnSzgT@8o{)EJS+HW&e~uXve#p$rOK;~?<9#UeSLyO
zDsCv8*Hp3C)seNx9ZYb(v;%8-*Crrt<%6W{BLl2Pbc}-ucQikLZ6b#nS#-uI`)eJ<
ztoLYN3zp@s9^efWd3#*tTQgVb!NJ1S{AhbD)~dB~-6+#CSC-AJ`{O-%$tVGaa}g`|
ze`{n*VBXv_Mz2j2^8L=%V8x=N<N{`04sl*Ylt8-ICW2Xpa^Yvz5{^CGktMWuav&jl
zw$Se~=35b2moj@(^D!03Y@*{7a<0PHCgvM(D}yrg#TIU5WZ?=2AeBXmTX*@ZBP?AY
zlB@p+?}!1*n8v_K)8KqIBdv<eDbx%yp~ky~$atrYg)>wT3*KlI-!k<fW35&q6}<<B
zm2ET}N}R?NS^Z*)xHlKDoO7C+Clmt0CsZ@e=y0-;6;mTIIyYRfqCy8Wk??n*=+bB?
zH+L4#Yj)>hRA^ti6e=v^dj)axbI*Hz@Qt2WJic~j^G)(5`Igtq^T7{lz{I0^-@iq3
z*Nl44PwZ-ac~tzrKCUr(PZR&{liz=PRQ$8<*7%dBiT{<?cYQP}e$^G0|K=`Nba}dZ
zyXWhwzup)XzYn(%@o(~tmE*tVmHEGniog7T#-IK7%I)_+cICBE@n2){d%ssX{x@E7
z?rWps^A;uk^`>^J!+u@8-Lv*H9UW2eXK`qdf3siQp$_|X@!a#3zgYfMRQ%7qOCwDF
zsB-y#*12~{RQx}Fv&K)9D#t(b``<V}D*nst!q48*#9#W_hcAwbe~;_`M=IC<<3HH>
zm8kf?aP9Y}mD~T>$Nu)`QSld!Sp9!mx&9w*T=ToA_#d|Rn|-Eo{QmdsyCo|A!^Xdp
zKdT)7laF6G78U<~M}PlOx&GIE_g{yj;$P|dZ?1Cwzy8j@{aaN0&sqI@e_c6#=GWJL
zDJuToSovrFqjLOz{@LilsQ90C^?$Z<{HMQ}{CHISS6TfhyDPU}>e}~5^54pr8vWE&
zrr&|pCo)m_e{G}2k8P|R|BP4t`4^+&pEIfP$J#5$fBstycSOa1oyq^%)5PETil5yc
z75`}~|Mcd{`5*q1_MxcwW7ht$>nq3q*bDnlM#cY6%RjNLa{RkS9{<m%_<vyew{5Q+
z|F#dmY(-T3o(Hu3dwVL!zxbgq6{F(sxAsr$t{nflOYV;3--lfJZ>SvqviENOOjQ0q
zbn<^s<@m!b7ylqC{*qNjf2WBbd+_bwjf&qor157@6TkC?-#!=>|G6=Z-*!{w@-O<*
z{gM2?<W4L9EtTUZZv9N8{JEgr;=i$S{LbtCZbMZ0?{BaR!Fwym-|@kBM)J>V?$`XM
zPZR%7fAGXxqw=5py5^rqR?h#H>VaHT{O67SdiyKK?>Kt-;;8sP8n^Zvs2u;{!d16L
z#Xn~D+hnS8{DZ&y&o@TJ&szJ%_EnC*c;7{@j*7q2=)d<g@slqssE>-j&ggIYH1WSy
z-~0Qh_y;Wi**8@#f9=U*eNpi*c#XDy+y2V&|MAJEuaAnq#pr)}xN`iBFP;5gQSpyj
z`?uXzIez^WCnD+ReOCX;)5L$pzupnae~*6vV~<b6ejlxzf9A3s?~f|~OYVW~j`-83
ziGRuTSLUMPZ%6+p{vQ7aD(64DG`&A6{*$i%4_A)A<rClki>UZ*Hhycny>k4~^S=Ci
zRQ#tM{lB$x{MVkixHc;OU%37ss~mr3_ojD8#lO)$NHKYu_`f^Ro{frs(#k*f_R9Hx
zf5pE<j^Cg7L*<{|Bd3Y~_y^C5%KxSAgBtIs9RHK&Uw3X){C8RW-qXbY&Aqoo+Mj1)
zGbjJrj#bY8!iS%@DJuVqEPm|X%JDnb-5tsQpLhE6c;)!NJpX@wJ}Un!UH;>h<KLXR
z^z~8kKlR5}|39o8|BrwCy;nuWe{4eIPft{i|Iv4!9Z7#3R{q()svLjl-=;qmmH&vv
zpMF>6_$%*t+n1x_-*57NdU56WbBnHzoIm-r(_f91<Dc`uhyExk|8JQ7Zd+10{<iy`
z{)edeKXvk>sdD_OD}H<+D*nZHX#b6!F8)~?BHM3`#g8>t&cE+(wyuxLf70yV*x8li
zx8MJ@!%^|8u!&gy&Z!*#B`bCvjf($-ejYN`cAEHac<V^y{A1mvn*H=?;{U4Z&wd=0
z|G8HFv2!bzKlbkzM2`Rd$=M&LiT~ltj=nA`{~6PN(=V@_|6l&WOgbw5MOOc|ODo6!
zW`0Q||9r#I&nqg&e{!xdQhv`gTmN5CIsTS6Ul>{c)dw~H>@$_)x7<7R$*B6z82z@L
zCjWoA;zN=2^GTCGV^>zr|BN?%A#(oVaVP&y6aVuU-y0c!i`73-U3vbeWAE@gqU!&W
z_gee^uyXkuTE25%RQwPBxyBzmP5e9m{>n)G_cO=;KdPMn+xGnZr=#*e_7=<kH1UuA
zT~*}xDVNsxy_Z#Pzwf+kT|6rPFIoP*|8M2;|LPw;9LfJbb^7ZUmGl4F<GVIS<-h8f
zmVf#*`G4nQf3qhl{y&@ijQzNB`CtE|=P!zizud`>t18Do>!UYB&fl!D_+zJufAbGt
z_lBta?;WxJKTY}n<TY=6A}apd9sQLmm;a*XpKOVW{|)2c$<y#(d+ig;qvFq+{24n<
z{_nqY$?B;1a~8k%?8@s;FS+zXk@MFvqyOoa%JtuPbivlB{2zIzwg1(X<99s#jg?XH
z|MsZHPt;VV{~w>c<g%#vH&$u<wpEq$Kj*Q1lTq=%ZS+5On)t6cZ%^d-^#>Mz`ZV#+
zt9|GdQTadP_-}RP^8ft1U)~!P|0&a-ZKsL9v*|tWi;CZB{U7^y<@|s6-bAGR{yn4r
z*iS0QU;NFZAB)QWBgVh8Kd&7Bm4zRDFe?7fE&s98<ez`deSaSn|8tgq>}2Kqm;T4m
zwNdfEWAdZ-e-rl}@KF@+|M(`fP{f2H9TubnL<qghfm8tr9Yt_M2qZuXN$Blp3J4gg
zARr3}VgW-HROF-y(xOOHkW&-^1;R%~K#>2;&huP(Zg%&A{{G*6z4o5ly?frzGtbOC
z(`T}+`A>g3F|UmOKI(5H|9q9S!7~28q5i1+W-b3=cDvm&{>2}P{G&~?&VN%z_m=kG
z?gM^xx;6jf+c(~m$yeVM^4&K4!?ty~BjZ2xj^Nj4Sj+E_J62kM9j-(8U$N$Ia<<hH
znf#XP1i$*KHGi3bop;LkUwTjQyKVSWC;XmY#vi#>@ar?J<xi{lU51RG&5AHCZI(6v
z54HZ5&R=+%^*{1Uoo&rO?BmTVWb*TF75r`+{x#PcO8alNY!dwXYu57HI5#EA<o^Tq
z*XCIBAO7s9RR4r!LcTiJn*STu1F8QRxDvu|!+*Q*(JM0j7rYJOpJy$9eR{Dt8UF*Q
zziY2s^S^ievb6nHY88Y(!<xVPq!Ei{@^3)?b=&Z_T3tqJzhWC8{PV5lUwXqOt$z=M
z{Hran=HIcUu(ba9IOwlFwC0aLmMrz3rP@IJSF`3<imsOC|3=8a!kWK*<%`n(`}_?+
zzD@bn{^)Dc{*SO{!2Uz6<^SI0Oc`1H&nYYT)l=5xSK)78k=nmV8pz*cE&ugT{*ks{
z2Q3i%&db*Pv4g+6FVmm(su-8EqILay)48zCGXAJ(f?s*cTK?>*Ev4<}i_repYFqP<
z`=qfn{@SAaC~N*hp=Bq^^nYy@gx_V&uf_i;Z9i0o_|x99=4WSDy(p7E9^y}3WzC-*
z^{q7j{15Esw5dOrIrBjqnfwJHUrVx<U-)3VRWknTON9O0b*%Yc`r}Fw8UMQ&{$y+Z
z*Y2FYEaNXZM#y*Bg#X^6lzcM&Y^*;wu+G2hU3sR;_@4s#&brq6pM1Zfbo}KR;CI-_
ze^9#0cQW}QNh18(Eo=Q-=PTPs%0CIx{~YW5?_9L+Z5e+<mj2xzu`%3VtixaC_^6RG
z{vx2iUff##+B=tDlks<8^3|Pe{A{na{Odb<NYn2}kpFevn*Y0tzn7KCPX_;^*0bh6
zwj-;YjNb+6-(|yJV(3??GX7)eziiS^$2_~F_1{at@5-`HKPSR#O8XDjLH)^f#X9^S
zx7blnrvFu_KWeM3`R5dPv$l*s&kB)#^%QIV4K3>@$oPvx`qxHS^JnbuAniXZ_lA(K
zrdsnak6biFCZC@i#V@VCHUH{Yiky`3R|oyoHP-w|*|k2C@z;m^r!=tUKk@SoY5#2t
zkgwbD-y8kx&ocSbA^*4<TIc^IAJtke<L`#yKW(kQtJ~se8UGoU|J=-fxUX9C4?lfP
zI)424Y!QEshSvNw5;y0P$zO*4W1lsDM5h(|W&Cjver3Nk|NV`j4jF#~NWX5I^m}ty
zcWL?64azUKP57g}ij?+04PyN2E>?ah*7}d$m+z8H|0h}fUt|2rD(m!9Zp;(X{;Nrl
z|MWC#`F;20lJ-A#0sFaZ{BP*X`K0~dpM(EY8e03`-_BK*mcJRGzr%)qPo8|z@uSfY
zf35@8;r}Z1xODz)o`oX)I~!T^PfASrK^A{)(f|Bv%^z{Iu+)FXf&KM^*8JxeJX|A_
z-wWEGP8<6z-QkdqpAG^2osF&2UuxxSY5i?B*x&huwf@Qf`&`<790T&z#@77re!&hh
zkgR`NiScj4?_4}a+JAK!`j519Yx(Kw*cmeUQA1h&|Crrptobv#6iAct?*sp-HL>P@
zKWzI=8UHrOKT1<;{)Ro~+?DZXg8kI9*8GomnbJtc9|ipv+D7a2qrG-Y+I|@X=~q8(
z?LS7W+TU9yzZsNYE}QgUadbuL{DXZg{2GftcP(rE*Z1u3sZ9QLjK3&r{sQ~&NZT)O
zV)_rUwtwfJUy}C!bz|Yzx&E(P%kL8Py|n#31nj4dw3gqZOoNBA@Snx>_lC9n>u1+U
z=U;yc;n!`#-*j)mS~B^kA^j?itkcieCoWu-@fUns_<!Y$HUHuLY84rOG|T_|QbVon
zx3}}jwle+}EdQvVu=ty5ZNJE$>q^VtTTp*;G_#i9=iBPi{;P>t{@Cb0G++D%nf|%o
z65)5-q@PZ^+w_<5S3rIn{cE)9EFHhkGa2O9v9{k&mHSKmf9Q0<?`&>uKc%=DCDZ>Z
z`p*{D{Kq!72$k_4!~Fl7HUBT~r%A(q4f3D1&^r7tPVd`YCjSD|-yAmir`V*H(*A?{
z5Pt0$YyD5uY<XTL|6TAu?seAuFP+UVZU0poE8<UIZ_U3Yq|3`P`S-zo>Q~nJe{}br
z()Ppm5P$k8Yx(uojgYn<8ZiAemjAWU*8B+{%iAwEQGQEn{<D9dD<KR2L#Y2a9M=4W
z>Ym*t<8KA|PaR{;KW*r+3Nrq}=_3BLcdYrhpYFO{#;*du+eZJ!k=?q;_<Mo=S~=_d
z6M6iDbu#|N;6I(Mto7ge%hQj`_!B_B(`Np_*sHIelkwME2>#E;{>AREZz<zfl3D$M
zr9W4B>+o-M&y?05OMw4$T(=JY{ljlb%a1*f|Mjuf{Er`eL6hm<0rJ1o#((w5zgOD+
zn27N|&RYJst4pQ*e-X@n{BqgIAD{eiu1x<*jNi@dub#7(|Mv1v8p!zTLi%^w_^$<V
z*E`AhD?tCFy1`oh|4y&}M8=<l{<n=ae}yj!Nc(@L0Kd}M+W)#r)Tt?xzY+4E<FK{-
zipRok$@ptR`qfHVr~m1l-X0|5kAeK>XlpJ1W2MME8Gi_@-&fmP^EbRWB#(@LY8#RM
z95(h_v!a;Pf4713qvo=f-{8{s#bol^Bn$a28~r<<8z-&*9>DtNyVmkge%`8wOnxhf
zKYfBV|AMcUzANMJjq%^Xn*aKXC8Xn@@4@)F)5iWoYKI+?$-niXu%DjKTK)&?7E0GI
zCTte`YM3?u^PSjE6O#Uu4KV*mx8WbMx%L+_{%?R^&2KG#)4I{p{^tsr5Plo};+HNx
zEt5YU_|*c|@@E%(ZLf@f%?BXghQHjB`psngA<e}4XLnC)`JGp6?j_@|y+z1(_Oj-G
zxnDc!{0X)zg>k99t@#K1eL*_@(qKJ=|1oR+#CL{&FVp`8;8zP<^WPnJH@A#`BFeYn
zAJV>ba~b~)od5T@wfw>9&q@0aU%>f`HvB)jiigPL7y1zFA8sxG&X(KpGX8hYLHha7
znt$exuSw_6O+x)`<Yz^Xmd?Mv^FHVwVJ*M?;I7j2|0eh!mreS6*!}bjS@=)j`qMtv
z@&~_PD^A9Lx;fZyp*4Tu<A<d4$CIiFepf$her3sOss8cT1;2K}n*Yr@<E8Dt4jVxK
zCD#0|C7(={g})qIJI*in0Bim?L!S9d#vfJ)!mnBL$M^kR+J8_9{HI#nn!oPZ*3$NO
z6G%V04gd1Vr54KcUyJkqp0JjGYJ5%U{KFEtLk;^mvaI>LuB$C=za4#7*iYGE&7VCg
zPMUvuLj0*Et@%sFq)6LuOLGbR)gP_-Z(O-iMP|RRw;I7$)Kb>`Z;cO;mcLm$ApI}3
z=HJuwyJa%@4oH8>Kx_VYPtB0lUyech!F|M<f7X?{&&%YO!20(jYySDS>r3ljKS2A@
z{k}E77G7G~|2z)r-+C+S_Q%v$j+d9|{}%Rtw6NwcQ2V-c{AdicU!2cc^Is2VJynwW
z;{~X{yKU^ZsKJlY`g11e@3N^s4}YPmwEyrm7=O|yTibvB+e_b&>Ax4`Ya6Zk$K3rc
zT*mJX7x_nNV%>hN^~Zu6GX8DQesI|EpB#Qrk@0_q?GGFNJL$Eh>E{seyKMM3R6X~m
zO#bcStnczuW`m~I;U93|wIwqCn99O_4jcZMA@S1r3&XJe=CqE#TbC<H*MF262mWu0
zHUHyB=Ss()Y68F8hQCFl2Loi`e-`|YKGj<Oq^HU~knt~t^zXLm|M|7i!>45Y`JE#C
zuFlr-|BQ7=`%lUNzt+W?|I&}G>dNGQ1NqPCiT?)tXiekXOR<rAu)F0pfNight#OU>
z3*(Gqvb-B0!+yy4hps8<Y1I{_fp=rs9_(x}&&IV~j3YqPjOT{+*`EKYadG&>_j>i=
zWBbB-`H~V1Mh{;SKUxx=IG?ym0u2MY@cM~{p<!VqoMeC3@vn+M=!d(&KLw%u&rhhk
zT*lA$=THx`JWBRgrTj<UTO{S55Av0l{L2T*KmF@1#bxsEjtBk8{;ZTgcjrz$Wc(+W
z3VwI2wfx$3H%^f8^Zi9M7Jj<FE0ynTd84b0|FH=|KHZ;{^8d4-(pnim-=9S1^2z?J
zl)wCi0%v6WN0|QnQvdSzuav*_(af7N{uErFO!il${7<z{`9#Klh3Rj|C;OXH{@C+p
z56SrX{wi)3e!4#?<*(fN#RwTc-(N-jlEvX|fB!=HyH!s7S;p_g@RR*XDgWH0zMsqZ
z`Ti^#lTY^-rTp()SaD0n-x1Rf*<Y0MpZ;^%ei?rT=uh_-rTjCFy?$TDuRjIxNA?$`
z{Ohj%+(pKpXPMyF3RtJV_kQg8ri{Nl@H>ZE^Ox8fdrijQAMB@){jsS2Z${RfDC2(z
z{Fj65FGTtK4OJa7{(`W+-etpIeAboUW&FF*f0F%)sQlNWZb<#d|3(P=)BSxY|BxL!
zr2OOR3x2x44&`suqIn~k{wL9XrL5y`<)0I!{^wPYPxrT>@;CoH<rkU!q_PlxvOf&v
zA6IP3IT`;|(4X!PLiwvjpKmMU=ld(^EdRT1S^J-U?J9mM;~xR@TlA{d{Mma>j+5~(
zLi>^ZIjH_o^%|{^@vjDcy1z#N|NJ;<`sMpWxq0}>{uGpd-r&1sWb*m`Q0fu3zJ=`1
zK=})0HJU2p|K~{&|8#!{%Kt=-E@?7;zQ2^l<kS5jDF2dqqh`wZi$VKDA?vd!|G;wl
zqGbGIApO$)At-;!!fUl<{Cs~ao#{{ahoJnAFIn`qjGyms<>vfke+J5bvVQLn8ULs6
zLjF5uo&T$Dh<{wh-zQP<yQ^8J|1MXSpOW!^@RZ=E>r<)zRbH)iRK_34?8h&<K9ur*
zdVTvn8UNo<|8Z=vu77@zy5cPve<dhC==xGB|H9yDM`ZkNsQ=ORrIi2Ox>4<A{7q1P
zl(qd6LJHiG@jqA$_H$YDmu_<BZyEmxtpB`a&Huu@3(v^-8$ta+O}6I$Dyf`H#{bKk
zLVvoxiP|sk*06mt{u!u0S>HtYb8jj4myG`*ls|NR6Xoyt&QsF-SA3?>pRP}${P{AD
z=9kHT3i#F2*7jR<ZDF>IzxWa%pRNz0^7G&QVUmnL8q%Li)(27k0j`x&|Me%Nf4V-0
z@_)GK!!|PcPlNt$vc8D&_d56bd>MZ$u%C0Qwg2nee|>cse}SpOey+yW_W!nUq%{2x
z0sHA>em~W}>*RsY$>g_%@YDI-lz(-xU+c^G>*_*(I=`3l*RS%twEUU``qTNfl>c(G
zHPZHP;n70AO6JE>{=*X&?Ud<X0qjrbr&9jM7mt_L|7Wid^6C6Y%K!c#_c59LW#B*P
z{6xzC-ud%`W&Hgi{^<NT%0K_k*Yffg(yvD5w^9Dkhod*k<gbJ9Yul~U|361lK9lj+
z2m9+}ei)U1F1Eh3{OJh%bbc7+zqd2$9hv+@2)}#0b^aUOp+i*}|6)kL8krwN<)7T}
zdjT2$PN=`o`9YNbjYX&5mGR%J8e$|s7a5<W{O_!(a$d&&`TqpJdcivUzYkL;$oQLl
zDAK=j-8%ly-s<04#y<x1r{kMc|A7ntDktMl+y?odj89Vjh;4fg%lI3AEyAyn@kz>G
z^6BFxWc>AEegGYxr2O-$YHMWtA<KpSbbO5RuNYGMB^m!l@E>%1jPiFJUiCW}{{>e6
z=NBCxqx_R^U1=)g{~YAg@iEGO+c99WjDKobA)k(qQT|`%T~cNI`yv0(@iEH(&HQo|
zWc+-8UiB!e|C8}8%HMK(f>i!_kWa_QDF4MtwHnLh^Zk7_CZCRvQT|Wrx%$iaH(~qV
zGd?2hN%=2#TCqXK{{i|hGCoH6Tb3_0RK`C5{I5#Jw<!Pl*xg%Y{As{X$HyrD@+CbR
z$oQv$|EA+pl)resn7T6lWmx`^@hQsRuK6$0{tLdpvd+^Fv40pOYoxb7oqC(euSdsk
zbWH#7e?@8NdlV!d3it@81UAaa`Jmn-L(>$ck*@|h8uRkw%+aV<Bkw4i&pC|jaL6Iv
z!&ir}GeFa0Vuu;P#>uRFyv&DlI6DT_YbkN6B^=m{hg%NuIjGZz(>Rf~dmrOWT6RRO
z$`6m{|EyP+oyhKg&M=qRxJJK*jl9Rn<|LMyFjk+@%N&`P^ZJO*k%5~?4IFR+I5ROD
ztc)Gb&Wkn1B#rYY<-FvO%ptMttXq$nV~z7NnW>se<+8(2{f@A1rVjKni{qWSoqd>P
zachj6_N&{lKZ;H4krI>CnIF;3n49J73}2s9euq?7l;%>sNtjbSN76F8c@B8x!sYDp
z|2I?pU^#mWuXI_`#DjRH$ES0C&$*uHf9ChvFopS_y7YX|uVDOD-6864qBf)`NYO1F
z$osHpzL1b9IvIcF`@_3=`2`nyG%l12kIKS6k<a7{3!6&i^ZnhmV~TPJ7%4yE?Cfyy
zf=vHUp!`#y|34RzkNlMm{mskIfbg$x0SvG|wHg2XUPngA_^)971NyJc_<Q_3fY;vw
z<adVtN3=ikqaDzGi9JhiW%kR6Zuf%m3eR`t``hcxet01th8y3{39T|VU+&zmI|x7D
z-`*Vr|BEHYo|DDjRbKylK2$kWMo2>Wxlu6Clh5qUWb)^#L_Xi2T+j0U8TqOHe@|Xh
zi^-oCMfmyt<ZcUo#3{7@yIIWs0p)Kr^dDl1$8%zl59!&Gg%`{CudG4cMUHX8I6m?r
zZNIY$@4pC;e|v>LzpIAGhscMtXwM^KWc<H9>(7t*0Qr!vn0k7<jGyl>u6@lhAjd;K
zKt7~DztY4l<NqG>5AfqS4)P(5nJ_;?#vjh)iwoq#I12J1eR5k_K7JlxKfb@Y?yEoS
zlZ|{xA8!2eCmH{(nf~(iyrLb9d`Rb%n8wGy0^~P<_8ZzyGm-ySq0z6(_`ikvH}bno
z`2Tk9=_BL6Mfh<X1NBC_Ch<sl8UJz^e?j@!4}pA0^Y2RkN5&t)3mfAS@#mTxZ9E|#
z(uEU$9U|jj1pW`@JD?tod`Jg8c!{^a1MFV~<U{IF@SI@eLz+=ysUqW_3;k!vuU_jS
z)&Hf%ja$h0n^5^Mj|Al+9rf*(J!JgrA^a#`fpbQX59!_O4_}e-tB`+?-vQ^mARp4M
zZ|(a*#-9M`7x|ra<o;*>f{s%8UvKb@efIr~Kfm}@QSOcC@t3Up;O7IVC-Gm3g8o0$
z`^xxs+<EG^e4(M!GfDk}pAVo(_-XkQ+G^t`to)hbBK-V(0A0e5c0)BDE^oPn>Hi9?
zzwq+`+!B7YC-PTw<vq&kPt$1qiJuRkeuMw=hM(#`VDs%AGX44fsM<wExnfiPjw(|2
z9T`90UsQ7k@>Bhb_Dt!<^q)!f=lhH55`L=xKM8wl%jEO@LDe4u<x~4N9{Dg<mVWsD
zklH0hxkJKF`PZdYSuW%6!se&Duh{edleK=AjGymsre3w@pZ0do$7K9`e={uz{#CE8
zdz$gTM$;eP-%Gz1D4)h(nH7gi%HogjkECA@<frlX`}oAqWbw!M*U@hV@>Bbd>(cLW
zS@`+>BJTeM@>BW4`i(jxlh4=p>wg9E)9@#r3q2$Ye?&5izdM2aRDN6cfQB;pe0{oh
zH;|u(|Ml)|cgx~$Dv!T=ijwh~@B!%mkRr~ummazqf5~j(zxeuM^}fCTs1o74Bh#O+
zuh8;^C?y#Vzo=aCR#A$K-g%12f0d>`zP>>X^I9AEssGjs|L-RA-?K7_{(OCdCgG>{
zZ*k?hET;c#>c9E=23^9Bc0>JZ&8_o_%>I0RgImJy4Us^2x%D%HW$A~nZ&34l|Bd0N
z@)w+Wj>rETYQLDuEc_Pyh;wZJOJx{;Q_9ch$7^`Tvrqgf$}`^XkCgP(nnrJq@r8A3
z)l~gH8rH9_MncC}O*JkxH95692S`g#6?5!;y5x9=oY5uGCnh1ieQNT^lxFH+wFXX_
zPaYJP+HPc0EboM9DFsMO@%Hp2vTl=9pFWg9tmmeNPY<0Bf~*_FzhlnZPsf7Edq#*3
zK_K+&k3B1iaq02NgE)di8j9p$YK?)($-|qe$-@Wvgos(=<smP7LpX#(w30%k#m1zu
z6$4D>$fWdy#JF0<i)JeC=}Jyzc4R+sThwXDG1_=BWC20FhsTUf9+}=LZmcIH;tkrP
ztrx~8Qscb}C&tIcut22wyh&r7YR%M`*w}QQZ0gnJ>d<S(%Ave{H9v#o@1oGY!1>8e
za*id%F?(L!rZ8{+%y$y}%7E{ge_2e_Kh1E=-fuhmBJUpv(Es=d!GZJB93>tN|G5{c
z^Y%l4{-+j#Mo)=$r=#Sf;U8?gy`xNjS6zXR?K+40X!vWBU;Ryn-=Vp{$99{OoKp#*
zvn6?VxXy-#h6dQb`V7J98DFXrr2Y*G2}Yp#=iYdi>EA89PZ#6;&L;(}1M|N;<2TTL
z(qHlVbeZxqD~Pv9JKjCGis45@0lq$^oAHNJP_C=EJ_62xy@efpGH~{85P5$zxn%Cp
zkdXQAu0n6@|LYC*SD@XD^Qb95fm04WF5V!Wvh++juD{Y#;5(c`|4ukR4(4Y$$_V?%
zQ9$xMfK&j^cHVT1$FH-Ozy8-D{nPlh!&j7weiFye-BFRJPrbW8{*le_H=LhP5z-H>
zVECc22l{)rlS8@vvx)srv}W~>Puc&8{R8+ZzUu#?R>>xOe(8J%q#umm28rT-0r`vS
z=MSe0BKEJ-x#kIOf1TJr&mzG{?LU~{(Z`_#|MacG(>Q)6!7pcmKZF7XKKo_Bqie!)
z8S%@uY2z2#r?}4QZ_NHU|It|*{R7s-jK51id<EPrzHV-4?%eY=NdJi6lKCHXx8j)}
z;B$_zLkbEn=Mnoj*G{j^?UPOH)4;?&5bdTSFx%rFo*%of9>-51_`jk5!SQ+Up9PT7
zgz7~9w=bOQ!SNlv{q5hyME?{MTzvf*!QYdRI>*qT;K!NZk3=97T9dr5{FmO5$8UHC
zfBnC2&FarAejTuW!U^?<f`p$wGB&^K%AZZsx&A8AKi3@bH=4if@J|!_D50x1bNmc~
zKheZKtXXP#-6Qz#jlMmQ<7X25#U}WZEz#MJ=%0WV?9^f<FJI7qW=|63OKGqVj=SJG
zEN2e!^%`~f{K5eII)Lw4p9l3%JAC^4V|RLW<NjZd_D?^@pniqpF3zID|4{yb;N<mx
z^PqdNA%_1U{;kOh@juV}YAAng@v-3ubYxmJK7TPH8p=m~vao*~l<zoy*jYA6{e7J$
zQ*lW4mPnp{lpg-}xegfx=Vv+L9CSPV>F;?@b?GFt{~&aPr2M7)Ohx|-(<i+BqV1J$
zc=>|q6aBv$FaAKwU#CA>z*89DBW-_k@{8R5;gEh*uz&O@!HVM+E?5URB>>U?1^qpL
zlS?PLeOx4crkdD?^82H+^-%C)C(zJ(ueRg*tKdIRPZa6L$?$bvKEnPS*uE%40m(D{
z{j*79rgHsLi2mPV{vz>9`3bzzfxIYR;=xItKAptBbpZcB{j(i@G~}xeKs#OQ@&va}
z6xc_B`tyC3{@oJ$K(mHu>3w{H<gZ0H8yfj5isY|?F#b#P7Zm$mK=Q3Vd48$yp*h_D
zxJdoy7qCCBkHdAMj}d<Qm<2Bm0nOL1?R0J*2iWHhq@Q^#{ivS>rXM?etmUEHWm7X2
z^Z3mo@%yq#{MzBKKwzL9uKX~P+b4zi=TU&~hWeEQ>Q{F78N~k|{5jV;!~O(+Bb2`s
zAH)(Zy^q65`|`z6As-s)pR_Lyn3V4eyin3_Zg`9I?8GyCeoO@R&lH04eJ&`9^ZOkY
zM9dYIqIzG_-<N!}yc+ip3bD^0CjNo)dy&Prp5(=*=^dJL`$QA_yls+x?C@VC_ygwe
zn#J)m3H~Q0_|QBjDBj0y-mk{DCu%I%!qbnN*yn4&r|HKI-wF6g>kSw(gU2t{fA&NE
z?FEjE*57PfU&Oy{FB{9}cLdZQHm??nc-9w{d)|0qhp!4Y&u7fDlfN_4Kk=U{pnRnM
z(+=O^K^9-S<lcG7$iJlh^&a3mVSYKbAMNnz?;lNU(4MD%H|hTjsRxRX@{#frbrp@g
zh#yz447X1fNuO6u(x)B1i{N+HUdrP3QAq!cGFSYOrcXQk!leGTV9&ubTz{3+A1;{q
zw~a(U`lu58$<K`$$nm2I{+}lJnG}#b-?_sEj@X4Xbp5)8Ed6&2hx~g8`X_s`f=FZK
zBku3wg!*BHJ){9g@CQM?1YgfdJFuJEKZDr+vBlya)c#wM(S$CA{EPHfj~#q{TSPRJ
z@9E(GhcW-4GyOg1|3Uvugb6ObK8jy}#?9M0kL&Ls`j;?CKX&-T3I2qrlu0~(H4?wI
z0AD5jCq)Q9eJlwtFdFXVUwWO}2g^rnU+iT5!OiT0^(t2p;opdRr0_~SywQLjxw+#j
zU;LfmpW7vhKhW_JJABj|;FXQrxAbKA^Xd3w^RnU}IPcF<JUIO^e<O{a-;eiyMufxs
z&REbt7TQO+zk&0K;P6#Y9PxLS5B<>BK8Rlh(m$@h$MF|C`$PeLB+zj^r!VFB8l?YJ
z(EsQ0Ebs1NH>^)}LiuHfk9uP~?B6+%uRn^&CjP%L^Zy#dr|mC0e6$bZ-+#6qU!NP1
z0{Ub6jEZOZm*M03FjuAE?2r0`d6Y>Bm&Y;u`A&j=*U8d9!}qKogZ=?K{ZVhkkGRq3
z0LQ24vka7vE?nOQ<5PC{^!GXqzYOE$uTJbA{uF3H%3sQldLpIzzZo-cuT1}gP=BEP
z4|e#Zd7*s0BtFUTZ=`-Q1?q3qzuDmz!hit%@q=owasN!)?{5G;Enn>L(LPAWuUfyE
z*{2ST-@;Q^-g2?@5B67J{LT(vC;HEBGMo2L&Ucdf^EY6BntqBAe)>p%51+JQ22VdK
zDZe63>Ti^v;<IU2e%EWQ=Ns({Cn>+$nv`F5_>=t573K5pc@OjSlR@xbGQk(M8v^3<
z_=L}Q{`JuH1-rO?GKqZ}nAnH%6F6l$c~N53XK!--vxxp_Ci>gq`%D=!Bt7<d(jcDx
zRnoqg4fr(u+u>us8wTU&SEn83=`(})&(f^_M{}|C591du7{4fij3$&#`}4c*9oc)2
z+b5gYXSIoa?C{x?IKL~S%amjuzu6>ye}w#{5dTT}{lM4**01pW+N{|VIer$wZ*7u(
zC_myLbv+}#Ed_d^?r6S#K0*ikE7L^(=TbKJN_R0I1nbY8FuwdZ0-4Y&`TT!~Z#tt1
zkKZVwzaw7!kNW=y{_KHI=s4k*s7f*4a{Oq5-(o2%e_bs7;Ql4h|F76NP}N`LgFe6A
z=lGc<ed;Ge6!mkKMqz!u3&-E>@QMCI3lvP3>0cfCKdFDV)t|_JYh~s`o_^@~MYc)$
zw8IYr{gHOByMwP^j?lpVF6jRsHA>h~%kE-)al!nM5Tc*IwH0LvdGXPR<41Y^jUwgO
zPLupwity7%9pocjc{r1=zlczwe|S2y?|QTJ!!J61R9d_?{mcaX4M6X2y2aN=M7SXR
z3<vywnEkcS1M9ai-P;tO_ODKQrS~`7J}zRP7Eu4E^`DZUmzjVK<cBd?4c2k|OoD&H
z#QtRoKYhgdGtzp~9z=8dVE+%cUoJCzo!JNX|8*7;^>gdq0WJ-Zh2(b*jvdDE=R1i1
ze{u?F2K#F|BZ9;CM`!c<%V&+`_^3a&FWP}2X#3Gle-+e1TJwdsdH-QV7NnnKXn)OO
z`OD4hL)(vb_|bsh80fH9nshVl5BO66KbfU}buW_v`$xH8eAW&h^)3nc(S3iu%JH)S
zKMwG_vhqt~__Tdzhfmz6a<p-?*1Uc~>(7l@{OSzf1><*4Xy4i4lkPD^J>ILMk-td$
z=p`tB9nk*5@n1W9ntoor)9^i6`bhwM>i=_!zv!KhPRj5LwGa_R%U?Tu+CD1XV97{s
zAKE_JXwv?&!^d<3$w!%ZJHD|IzodNMXVU(%!*`Ji-baatM|1oP(tex_^9MB8Kg0#?
z>!=XaOin*0uTzRXTbkP^oA}QMCjPSm;ir%3ME)oFW_-={&m{HpV)Fzit)JWBd&+;1
zv+av&y#5n`^@ngMzs`aE>G+6B6{gRqKhPVuy72Xr0r*d${y%gv5O5!2JA5aRx3uT(
z{@gw~@&BV({&Mg2?vIN7ly>+EB(OW6|EeW-`ToNZN=Kn*2H2-G%U|lgK>uckPk&$W
z!ov-`{^lg{I}Q8;ZC_A+g<fcXc;86tbcOo|j9)Cj8bke)`Ug9F7m@c*pMNUw^iRh}
zT0{KO`iUJrZJ&nDEc6W5KOF3j`nTupM{a-8eym9JqmLB7=<<$VaD0{6zqg5f?C=i~
zfv56(F^1bGocOmFOzdNaKZnF`%#==b4F5^=Pr>{}#`o>;2ap1I^os6Xx&BU~e=n2z
zXB^Rwm_vD+{C@7+I!Czv4l;k^RTKT6q=4iZ>*x6T%f*EUa{Ls6|CR}UWn?s=SMvD(
zQ2Y5lUmE%o{~rhG$4SOd$C2>+qbW)x`Mt`%XBzSJ8BOB1EcV|5z61K7t587l{5^S|
z*!SK99=|RUzuQgHryV{m-^<>7h3}si(7zFh`oq2n3XG5BBKpxs#7CNyU9%Fy_l!>s
zf%<0#_)pwl*$L}k?C>=Zi1cFfrOP<J3jSvs;Llvj>Yw}AJyxuLah8AH;IzY!0{lpz
z&z?)*_KAoB{4~H{$;&T>PwUTi__Y3ZtWZcJBmI-|@jb8)O`mr7Xm?OwiL6$6fGmDL
z0(@G(wZo^s@7>k?0xusmlK$&s`XT*qlppm(O2<D>PFV3GPybmY|K5c94=um!@TvcZ
z>|HI9+g~U8=XphFMC)&M_@w!(6fL8x+&<yNzokD5Atv^r{Ad@Xm@e`8hdkx8IKG?c
zzaQe4)=wxu;vmh&FF@b^?RIBwe>d?zM@{^X9lo3R&#<Ajb#DI*VxLPU{@)IttL>Wy
ze((EK6`uYTlD`hEVfDlP?1ufRU8RM8;QT~I{>tz2ZR7m9sFq<Ljm&Q;!_tq&@ExRm
z%7N_geSg2!_|SeMe-Zn1nZkS<!>93Uhac(-&i?GqpK^)EZ#YRm_e|m!vo)6^yJ-Eb
z=d9jaI6kevMZ7M!Y5uJ#1NC{gf@HuuCA%B*Z(YRx(;$CQ`yVIa_klLP*7uEE_U50a
zuZI}*2hu)`1pTRhs7(RMvxDH@NZN3i<3|(xmL~XEJ`q^YqYB@Uwu-vP{eOfL;urg`
z2D0?SFWP?0Enb^`I>P*adcJ*1O`g9}h<`|4A^wN^-@8hQ{AG&|@D8A(7Absx;|Len
zXD*b#iBP|#{lmfH1H3ZR(LIdokNDVr>GhWQhiCt7s6PaY-xvf$WUYOU>+gX2!!*$U
zD_(!tA6S2|!>7MbZ(Xu1_YW@8KjvT=RXxCzAmt0?M>`-@@e9!5&7UaG?SttD?GtIz
ze`Sa7>zlcVY754s8Ra`kKXst|rT)PVpXQHQ+n3DZ`O8WCXM2<K-3}l7AJ9y1RIl(c
zw|^$VZwU6G_NV-agLEhH4-Gfg`ibkWk@@GnP5eVs1Tvvmej;_=O#OhTPpm(TgY?-S
z?L+#1@|fUyUgIBtcKvR~S&p9x<*x(Ar<Otg9-hzTfc}4E_u!E)W8gU+XsJ1e`2NG5
z_Qji^{|xXC*l(r4{5Ly%I)9<ghNNlS{whhIouMG4>lf_s(e4<mnv(`y<oOHjkNK-F
z7PO@OWrrUPz#V|5jSJ!9`w`LLe^!8fzGwbNI}qr9?C|ODUoE-uDo_79N&kaTf8u{A
zKiUCldHe!&>*ll=?jKS}{UpuAKiJ{3VL!iXZ=pX@dHmA#t+O!wll~bye7gR1)b#vE
zxqY(8`tC%?zj%JB3)Xko;qQb$WCFdpeELQnzZ%4^2Kj6CQdYJfU~!D+2f+Re=$8D9
z;PZg^_-e!C{&RTxOaXjMpM6+Ih@0W#`2fx!@vjj7_Sf({M*h-?f17UN-(cDVsuw_M
z|4p6;Kb7L?$3@c5a=@qMOUnR6{})%t1dNS^XTNO3FR8ypqk|&ppYr>ovnR9<(4Q+u
zea+(+%NHH`w^u>>r1dvP0HFU1`g^{Au2<#y)B4Y^%s;3H886YF^82H+C)6K)`2JKg
zzP=-%d|ZI_bHK;_J#6tw{r~Qur1L!gx=8xjVv>IB@UtI+;y}j#7BY<6M<Mu{N&HfN
ze>DCS=J#r3nMF6aecZ%<x<`n=If#AiT8}033chfl`^RW~dHQie{&j+XILz#$vG~RF
zX<RUWxRsxFfe-Zeq1(>>kK4yh(*GTk{s+oWC4`amleAfTpW7#k*k`p#`mw{O{qxg)
zt@*i8|0MpwZQ>tVQ-#TMNs>PM9y!&6r%yLYKYy8|Pg{JjPf4H^i+w7_@4)_tz&~t%
zMJR^n*E(VT515T;?R{Jj;{DFQ^=fcX%-<vSS&8EdYq}Z?j?$uiXNMnMPT+?F&3B`G
zA)Y=nAbqN^zfD<IzUVA{;`uEOnBQfG-vQFSkfJDMyL4*B(~nNduZ6t)V)&l(RbYOC
z9X^;9;gz0sa~tW$P5PJGKtW6UAMEfkUQs~$l>DD?{S}hGx&uD#zqP}szu&w1_H#V{
zMv?THr#@&v{6FPKJ&{uVLkHLBBGW$;fT(}7!*7FvfX*GecLLWxn&@AI>92ml{zUYr
z`~*&+?Z>J^bA811r|rjRlles?`B8X9gExJFPHB3162p(kg!K6q)Xyt0{WYdP9bd4+
zr}|&rJAjXm2k5V1`XuFx9e!mJq6c5?D#ZP#PW;0W$SAaaWrvUL78G-0*J-2u>m>2}
z1K`vCH#__&@SBL=?z@<&+&(ViANH_>sB`<1@#}WTXhP}uY3Flwjqy7NDZdJ52mopy
zJA5sdzu;yuwT$uE6w?1$1@NhTsD1s>6ovM$HaNMZj8VTL_{~l5#Vibp>U~auuULJ$
z_*idaeP0&XUx)Nxlcj&RB>m^}LP@{XAaB#ojG4pJXB4sjUyy#N{q69368wr?e-iz-
z#6FL`D*j0AZ-=jv_^nxddpo24N$`^(|5E=(`H8yh(Z7JNT<FI0JpG50{FSv@aC*+)
zgZ1@_8i?ro=55~x_Wef4nHRYIGsyVe1oS^-e55<!r;m~T)n~<>@sqJXo15g{?W}&H
z9%5+-&fjx^{(UGQdDi^RqYQnfRJfr(@o&elf2p&m|2U!jj((lMdLA9{4QcZ=ReAXy
z(7!!;iufaK-;v-0nwKChzS;hE#(u-Uk@~{~?4Ke1OLq7!1O{4jeBXQ=KbzS9AoCBJ
z#Qt{pPQb-}zFs}%Jj3myJSRNM8t@P8n19e2J}n>Z@agZ*+>P4C^B0}JIuq?f>JOBk
zm?NP6(5_j5B|QDm`a=`&57htI;cG--x!GgNa{o-%*LOAXKX&-FNcng?|F^ri{whg7
z7r_5h{reOB=%a(+cl%+iF@K(pfBj*CPs2~~JCGN(XI|^T(<iMz3^J*|<tO~~5!6y<
z!Vlj}7;dy*!XbTr4e2wHmtThh)2AIi{k>yU*$|#Sb>jaQnWRt3PxWs|UL4xJX)TZ6
za1y_9Ch5}-za-#eI#ajb`HAf>UBXGmr?Qy;SIe@*0Qn2&)rJ%O=p*7HUG>|T{w#h2
z&hPjR#vidm3imHn;2au?i_eIQw1_jUpA>&4a)<<t>kM$eHvE-R#6`O7tD~D__y^V_
zr@(g~hxrLP)W2h+foW2F7~e$u;Q1;!)qi;I>eBOnetK8v9|H9aefOj3-{;M3zsmHF
zSm}?io)_hCPUCmLvTJ<(OF;S=2@9c6fA^k8)BnlX-F$sV0RCyHD4{!4uZZ#u+rt?9
zlw!I;TB7wuU50-b@KJx<Kf!q!>_ma#8F7)m{8zuGGW@Uwg296i^Ye3R|Hry+;{7uL
z_USUwAK!xu=dqcn@9AAd{by9o<n8wW{I1Id0@`2CBkY3XdBNh3Pt`JI_&Zbm^?y|V
z@J~bu-hUFH{|}IVJ@$ul;`BW^i{JHUE^n3LA6_fhKd0&E!>Z3D$nd9u{i*(V&Q!4W
zkErqm-~TPZK3{_UF@DkhNQ1>cP^6vIJ~1SHdeTh})90jl+pfv<FT2j){<zM}LrnsJ
z=^p9E1*><;@C&aI0B9e?&8h$CHUDL4{MID?*%Plhv`>w{LYy-FXHNCE54HnxT7J!L
zy(nIWpKq24eh$muF84S5BExS;{3q&<)FgTX{9BLX>(<Ng>%Zq8zfSDu18Rn^!4KGu
zeR!$HG=}e)U-2>2Z|naq8p?RSy9>sDJ?Y6rfCJtm?OOTryT151zpDpUv|oxA9FK|e
z7t=Ms1Q5hUitTHxe<J?BZC@k)tP+*^`csd65PvJoZ*j*8{hg1ff4-3VM*jfSe-88y
zXmQ~0VgIh2+Gq5}1HAtyK>sGJ{lYIbzp%Rt_BYNcexavtZIR(01N&$Npk4*@f9&vG
zhE|G_33T=AHB0&8ABXfg6w(jw`|Nr|{9B);wv^#d0el7Q?tuA4Io1E!4Q1!a@K><)
z#l{8uZa5zie?zGzvt{^8(LOLQQ-S@ZbE^NZr{6I4cf$0E_MhECsE_R~N09hbe%jgw
zrFi=n@p1mi?@xk#pgh6-u_-_N%R?OS4e8mBS6uM559Z$w!9LnIkp6?zA8|p9vSit*
zJPbcT{})aAAMEs35g2HLp`U!m`+ul?QlNhT>m|6p(hlE2@Uj1p;y-Htp%d_teo?Du
zwy*th|IZIG{cjQW$Nkyt^haEz``6ByDZ}3j_*gG-!TO_|;=fdS{C6_^pP_$PiGp?o
zoWEm-?|}Yiq<Oj~4)(<_3*-AAFBOJ#y1@TKKDNVG1)Jxy&71*yWa;Ng=>Ji0{XX=c
z+u=I_nfBje`uVs0x2i{T@nzl2S}vLXJ)rz@!uSI2k7}pCgW!Mv)d0SKU_k!T0H2P(
z2aAt#syKcz_TNMMp#ND7<vZ5faQ`tcemm)jTkL$T8hGwkqBvkHEn!@o=k&8?YEoR>
zpmA}j$tpi)j32qxNgU|rVT+BANlItOocSDFAJ5;hqu!FzVg|?6icV(7b;YIDG!WPc
zZyX376s7aOLh~FaSKR>TaI(YV(o*W+xpVADv6Q;L5B0ncfhVT<!13eIRFA1frpJwG
zrm{2226^5Mfdk{3sp&BZ!vkJ(({=G`7nc+>aCqDxL+xg23d8AF&p2kSu`s#kr`RFF
z^z7ub;R!>M65|Yg8`c-6pLyd~B*clgM_pq5rvc}~&SmX?$44PbG@B>JT}C*h+YW4l
zQWx7KA@fRJ#dSU}y!8@_zwPerjtqY)9sk(E+E@C=3_0E(KbCdyI^GvfDtvN5FED&V
zJy6b++#?z?{DAW%7mjBA<DUlNk7g4L)Rh81MWw4Hy|d>K|E*(=Tr7VEwEwf<>_Qw)
z)jCES8ag%zs#THqlOQhAkS$MKk>S_$^xp|x-LZg&<3;tLUP~;5xJb8!w^|^>|G?9J
z6Zm+JgU273w4)IhsrL4qB{KYTnL@EpBlWPj_*3*h<`jSW^Yx|urw??29|99XJ@r7e
zi%B~g^+q~+?Ni)82E^~p)&BZ>@Ub5<Nc+?;yII=5FlM{I{_0AohhYC{koarLm*MN5
z1N5%|?SHgC_Ddl(>&HO5AboGy6EDc{pZE0tiWa%^8l*=Y?+w!aOPs}DlHsRN{9hjp
z|FI1TyJYw$w~+XSe2eup%*Wzi-cPg(($6Q(9V^4X2IDK3KC#~g&tvrTH+!LtZ-|Su
zQja}~4FB#1!AS8v{j)))pC9jcJu1V$^MM@S(?1&|e&XUom1X!3HVb_8pIDF5e<yxI
z{LS-;c0ro4W72LJei-yGd(uDpP3)fvGJRIAdXv}B0`k`>;y=-^Ij9_u=Hd(LjWjjw
z3EsaGfInlC_&@58_(;w2FP4u;f9a!_WcbDC{?t(kZ2rVIUge^p9prr@|Au<wuXzq%
zdQDcoA7$mQ@_C4HzB?~rP@k1-e<ogkaIMI%xIdz3-trgmS1<VPJi`w-zuCq0x4?I<
z%&#c(?eRCn9VpH41I{<zG>z3m_JtVdv-|4*JSJFFkWead&L4Hg$nfV*V)YQV$q+yP
z{omkExcUb_Up+wo3mpIazsFBsw5y*Cztm)gf8pQbFR!$;f((BoD}VKi{~kYk+TD9H
z{O1-jeD}Y{U-;w5Z)Er-S^uMJ|G&o{|Ja~qGW<pCpgi?J&hbfdRmyyDo1ag!EQ8FS
zc&>r?=bbXbAE)eq@|OaTXPW+7ZY^A#=^s%4ulx*S{DQSFa{H%$^bcC`FeUoSeC$s>
zy=|bh*!Z|X=?Sb|#hXs`>aw;Oe=|BhE{UJ;+^{}-F_xW1J$$(TpTs-w-(&|tLpV@>
zq*F&Ud_E*BtRZc`@b(eE)c1s4tlCMut%MiiB8_$D+abd*!_q&$)W5;*@&0zgc9`q?
z0t&zJLR_Sghwj{v;dg=hp}P{aD@^d+F$EQV<Au0L4@I6XC&M4fTCe<aK52~~b)}%f
zZ@dr}=>@g)UKxJ-m4ZY4)EYnQd;x{ucp)y*GQ%&-l;L;P1&3~Df2|-}qiC*w#hS%?
z%J7?D{8qNsUt_lCH(sbW(vNlwep80O62>pp`||XI?d*(|1r>hdg}6u?jc6~m&pMdD
z;xf@6@x#{?RQQb-;v${xP=1o>&-(}X<%IlY)lVS)DLxSwY4gDclVtdbynezi^?|j0
zoUa#D_>C9hB7I7G?2HWG3HZ7VzM?a1e#3>hNPlZLp_dGQCCqQotIE?)%}T8Nsm1oN
z-cZoE&G4t>n|V-%{{^O>f2{43`DQ_d-*}<kNXykJ@v{uS9E^WEs>$`o^y8RSP~kUT
zh>P@z&<StI@Ol3azuYG2$G0Cy{8M})F4AIuWW6fGKQL4LUkCfRip%|Tik3&=H(rQ~
zwD76y_A-1I%rDg9g?(IA#Y`5gM}Mp$qCZ7kq}^Y>{<I8#$cKW@eM7`A#mDkR>C5`a
z_zf50B5i#C4W|sh?<T>Z-L%HfWZ3-13vrQtGi=4LGW-ly|L2#wLf9vsefO<LqyAZ)
z!W4evh2M~#eQ(xBGJGBJ6Rh#W8-ywR#tXk8Ep+Ll2QvI!kUpJ}*7(^Bo8NfhH>BfB
zG~FY^?_F7NXv5_AnMH(uaK0F(@Eb4uhP2-KlRwJv_qGrmYIT8smb7Eg{?X}$6n^7{
zxJb7)`Nl27e-Z6-N~9l(AIbZnnSXO`D`ebe_)`iG+9<;}+NX?3gLdx~qCeI{c{`Qg
zc%j}N`dP={Wca*&$}g7<K5wTQZB_C2fcZDGautq~;g6gp7+hd~sz2IauaaNkH(nmS
z;l;sR8xv*tWmx-{Us??jzZCy`3GqAqr1(w7ot5UVJZ}h2?Q=PPv5FK~JX8F=rH)UR
z=^s9n6{|a$e^3NIZD$XQ3=Y4;Vl9shpZ5>&OWi8cC&f4GC!qQddFPp>GW_02O#fZX
z{?(!lITU{rE8iV;xX1IqD1Q1km4?gk`?2;Tzg(^5_NiK3{7ye9{@rq|*U0dHoh>-E
zLvs8mR$j_3iXT?AOamD{Z(s8Z*N;*A1Z)3EA$Kat@Ok^1U#{){E`D3}ZWb!T-^Kb*
z_@%=7u`o7YLsou8waBaR8!u{~Cf&C+mEre+_PgFu*uMj5XQwhiXI-{NePABrHp9Pl
zymm<$ep(yB;W{JiL-Fr0c@9=*p%>MEZ~sEKW%%)lf>S*!@WY$?+b3B3ZcnZVm*E@z
z4@`s;`ZcWjA$VT|Uib}ZyS^=+li}wbCpcV3h5ac$`seH!`4oQRg}6xDe5_{4`iBd>
zCpbbB(IJWB3zX7v2E;{L<wP9cKP905`Sa=`?pQP$ms$TjjvK<?0?My)o%Zqha{>63
zHwq5Kr~T&i*$jVV*#7SsegmA}fb+N7zbiO!eWL>NJhf>eKJ>o?4PzQ-7&%Y;AMJv)
zdc<75|4{&b62W)C{1|n*z;)k2{E|wz&!ISoi!_&ea8Vil%(X%voZpH4{cgZl?;(DO
z($_-&ugjm{<0Aq34_o7pkK=;+41uftjri8~>C;AiONRgQEP;>nJ8}F}dqv>t_YvRP
zKDG9i=`O?Xwo2gR{4*REQC}6f?gxVAX7QV1VV_NFD;AgGUjzH&c%TCFB;A0oJ{0)j
zY&Y0wTx7sh!gxjc_3t$!Wcb^b3H?3zFrKE*6u6oq%KdPr`%>Zh3<ktSx~FRH@-qDT
z@A%{6JVR}kz}G_%pS6!H@PA*im(M>7NI$2b{|EKQ^rOxe`0mi)@c(YUnx9V=fIk8J
z1I};5d1!9HS92qNq>^Qkzy4}`jn7XFz<*_fun*2Z!+Fm7YheF80^ctE6boy0S%$yu
zZLmMgZ^L=W+8nTdUeur4-x~moSEN6GcZl!r8KA$C=8x~O|6H(tzTogb-K9zW!#V7~
z1^pEm*LMTHnm;)FR|bwKEYp7?^xtB6h3iA~d0_tnh#$`Vr>7!;c0u~W>R+nM@Xtg4
z72+e+UI+UZ3=Ur}P;H_N{}#c=d3tIF*uN0sTgUH)TSrdF@MnX6#&Q?unY#gBEiCYJ
zGyjuq;ot7;uK1S>|6PKQ^UU@6VE@O1!_S-kZdn<ABKT+Y%jl=I1z`Vhfgh&i_Vdp^
zK`|0|uQs9O*!WSv`6ZWF`J!K9bxas<cf!0JRb&feT$O(fhi4?1Zt!{f#wq*r@%8Ow
z{Odl;U+&*o{gBM>3<XBs-ryI-SB<yckD-abuFA*fmy`V+>ZUXO@38;je1RbK_x7X+
z8DGvHU5D#W&u3c7>i>EHHqH+7p>Te-s4cQ{CSZQJSO4BM`t|qBh5Ro^+Io8j@Y;Fj
zPNuLaqkhvp+1MSQNa~psY0O^qKC*$m9_caZVxp;-&Dd88JUGc`it6BzNwK41hO@bl
zsY6o8{8B@pS_4KBQ({pTA03oKvstUEXBz9vd=4waNM(#9AjyLVBba}vIP?oO`qgdF
z@c)ge`%5jtRFqhIP+Gd=tuc_wW~B0v`UjQk9$3F=_{RAwEPn>n?+>tl>n9XwoiN6D
zkzOMOQG%T>`E1EcCs_Uo7@w}k^1qtJamDyFp7R0lUIKD4on!t-dhu?JE;9Y+u>9dZ
z&nreE$Df7#j{3VJq74~ZTS2j%g}6xP-pzeehR^#qbr&zzMA63a`L~j&Im}POeokc-
z%lYi4;kfqFTYoeBfcdX^r!o9*#rzu{0_5ZSN4a7CYxbvM%F-uLAnQxn&HA$85%pj8
za-q&L{2OfiSpQDUKk&u(v}?c4tz`F9l(ua}KR`5lcC%-Cy*K~4VzT%h)Q0JEU15G)
z#IFMV43yu@599yh+T9;1!!O9{XYQL`d@V?PYM+QzZT^(mXCmwW(qaCM%s$R<ax2bW
zUi-LDvT~3;(`)VcGh1c)^Zpmd!4RcGZb<*oPeS>5zYM=nZ}H^)tTDCw0~tQ=f6*C!
zcyod8G{NWnGW<e(OgG}KqMZ4*Q8u$r!2FLnto&0ig(xLiKJ&HD5Z15E`;F9A`IPX;
ze2S+Zo;|DVnWYM;k7G`sIdV2J-s8rZ=VczBy-Z0@ZKg8s?{Q~C*iXX}*bCqoIC8Ms
z&zMWk{>t54j8sHw94mdGv`9-B;<w~sv=^QI6cd}Ckj%A79zIC+1D6pimBE%*q{a;%
z9v7QlD{Xi}Y+MJnU?7gE?_V^EatQvHD$1esL|VQHhm8>d6ypc!3k64J$@;IF@(x0F
zsV7B!jn8lKjVJU=>UVh+e)r|$NgsqL+UdN;Ew}?eQ7+PL^G}YD$>;uyUv3!x;o}d!
z@_qdn|DUfP<IiRn%0;^G+D~80<o8)E5ZtRo__?3)m5+W->&{XnyFGr6eUE0h*@beE
zwt4YricCKDul#bH_Vz!^<Y#j~%WjW+_MQ7$vkT=SeRXn^hBEnl{vf~HKI0p{@@fD2
zQLI=BHq%d(i!|5OlAp@tbN|UN^vh=UH~c8`r5JwhNBM1bp<JZ9Dor{nlh5Zj^2@PJ
zZhvX`S%13Sg>sRWc>DHAnf$VBej>kIE#&EMX)*D;UOSh<@5aT&v)w1kMVe<_?zuAg
zPviK+I=TD~75pVRK_CCOflnwG>9<R3jgrZqkMe!Sr+m|2nd<)7sg?Yn&7M#$(%Huy
z((##7nEsxXhd-r=kdXCMZiV0d*$|Cvyo2h2a*_U4@@gAd`1$--e(5<$e}cvG6Xhb!
z+;_OVO#V8sztTn?{wm%fDMQ|Ps2@i~=2rM^cA;FPJAQb+n@m2RpKDw`<8Qw4FU@~u
zLVez&T%^sujr>X`{~Z|rbGDO*e`6yN-&tRWDEy8ZCZ1E+cYd2)C>Lqyw=egX$$x^+
zkL8!o_?>U~ar`So%cJo7L##Kk@jR8?W*5pu+OXQaW-|HltbWEX^?eb3UXPT?7ynW`
z^6}Y>qFkht7T1^BKQmq+IGz*oc|Frt{w=1Dv$ogHQIH=s#>Q{63*{nRUS`Sfvhefz
zDZjAZYgJF>byeSbs*63FT__jn=r0cElF9!Q@}C>RPvuu)QS9&u|2yVU?xzaM_0Xcf
zY?H}%WBTtT?4NV_ao!59Y$<F~+?aGeX`9dDPE-?PQu-MW{b^rHVnWg=<7fXL`Wyca
ztm0xj1Zj~Qhbyx7M=_<{3x*wHVgHUY%UL=(t|(WY6zv=BXHm{$ib8tjNnt*0m#<;@
z(y<tS^)s#UfO3)cs!(*2O#ZuU{<!WV-yNj<?4gWrY4Gw}7u(fWCjUk%tJ^X8*ngs3
zmWLnvZ7}?cav1(jJKO&%lRt|!fz%UT`R*X)yK@-+BLl(<%jAE}>PuRdH~uu}Z$Zl<
z#eZP<vEGmGDaCk4TH*D-c>h2^`kT$#*Xmb_k{%+`pW8$}?pulS2eSSeZ5h?hs|CtM
z`uXMLvoiTpS^R50^0h1S_^0wWRc3Wkwtma(Lb*tjc4WOOlkbja>CZ>LJ4pHHXU*h$
z{2Kfr`>lS``4jUuh%n?fN)?u;eiHGZ?-O>waSI%G51=LrQ28rdH{W67BLV%R7eRg=
zMd)ECAICX7dYH&ZyCd!1_@nDG`~O&<h4~wn1{CmruznX~7O4huF#Tb>-$cBp9|+}F
ziG0^BlYf)RS5JB6yMvV9gOzi<pTX=xxk&e3d}f<W{%)54G#~jItS?4nq#6jq@K>wC
z{QoBWHBbwbi?rg_b|+-=@3Zi`edN1?l#l%^fs(}=l#BF4#n+_%_wQ$!{ZD)Cul**^
z{~8Fw@b@jx(oGJ+|IW#+V`bq_VD%gAwzvP)Z6Y80cTv7w{&!#o1ij~Wa(=<`-!giB
zXw6OH57@sPeO(^@J4HnPaE%ea11uwhz4aTPVJ*r2DDmDdz(lqINDAApBPC{t&qx>V
z+>0F^la_|{q2X+_D$dyHBcOtV!9!X+qWC~&-vIwopN%i5$9SDNm!Yx?5=3JN0M5rj
ze}eM|Jnv1`M`OA|`OUYSeu~Kt7=I|xhROev<&$_Z284Vi%Xuxxzs-#Bf5!NA)hML6
ze=OktqvWZOej-xVe{HO9_>7HzRu%E)fOQBI!fM?^MlU+rO1Tx~(v{JhWb*m?2hB&m
zD~IxpbrBNzXh)<MzpU?)<*yHze{=izcSp9c18+m|3#n#2vA6<?{@u*aqFkiw4wn8)
zCjUIEU+6ym&6Pv>W_}LkB7Jr9F{yvg-+<Yljo-yX`R2GK4?jzu#-#$q@dr$Y@Y+LA
zF4Ca`4;GPyKO~9C|H13uTqg3-zoC4rUt)izM=*TBe24Ep9dz{}lOM4DyH_%c(|clk
zg?j+h7x6VmKE+Xu%{{Hj+PG{T1zuH|fA@V>lq9d8iyI!7D26@QrbB$oCeMTKu*<N7
zq(R2OOPz*n;3C=cH8n0aE@4#MAU^8MT5k*@l>x@2#ib|sZBmrtI}zdkACV*2n7nsH
z{{JtTp4k>Y<p<kI3-^qQ8ypkMCKwD3c$36OqC6v8gPAS8e}P#E$v&^xpcWq@;zdcS
zH!gi-8UtG%yqH0QQUhi*Bzfhfq%v@$_04n}9y7#KY7HKQuW|lEy}GvL*OJPQm5}v6
zL??(8seU8+A80ue4dd4ClB}FycNS|G`d&v_x|Us-e~^xyduOpsJ}<xcrNR0*DnBRX
z7%$84Lb*sAcTWCXCSQZ_>ptsuee>~No@H78Ps&q;jQbMn4|8v1<F&Qe907Ju=lw&=
z**I#=LdI<-zfIXr()C4|X#e5D{*4*FuY9`xXK7KCAZSU}A1rGpVz`km=yxJp7XAkl
z1di)7AwN9+|Bd|6{`Y>7$$v3T$X8DZ`P@(YhJP^x*Ht7`;rBIoj%MHaeVhMTa$&fU
z7U<n3T_%6*B*E-{BHH*u<$J~-8nOOocCR4)@mI++s)BNne!b>N>H0ywKMB8_KI4DB
z;ZK1IgsXEdh2OINcxMpnlU}*Cpo}d12f_aCNO|~wsV4N(j<7t+?!?mK*;$0G31s(x
zrY!xlc?4NS#VvjfoWGQQ^4wIJ{Drdt|805v_h$C>Ehm?<E??jApE;2z(VwE-k&cZh
zG(aZ5Ub5hGx0TDs@i#|1CYRl-+WO1+zJmWVKA~KsyS1OvWb%3afnRQ@xA6X7-}v{f
zNAS9YeLX_pp<JZv^vSzr@+YzS8^2UI|BA1l@s<BK^Kbl$x}49r>3CEV6d?ZQ`NVn<
z(l7sc`VCfpDizQ_yqeWt+5U&vKk9^iAh4!{l$Q(qiWEdymPfP~ab7&U_7Ied^xHhu
z!esKh>MZQLyz&(&2T(53oXSVDAT3g0S_+fjgsz|A`$xEa<U50uzoUW(Kdv|M1RTC#
zJ09h)&&Yh8$qzWchnIgkYd^YfiS$p)U*Gai|EQqiTmD7uD(F}KWwPJ#Lb*r>RB!W`
zEd0j)5TAJM?}U9E(C$d7{q4e!a*_5a{7QeBe7=8#<|AK$eFji2(tj&|&8M}aWb*m`
z52~?$CZy+J<yWzee@yonen*>!;Y@z1Y%>3v@2}w4&Emhfz*8QI_8W#9Dc^U2Uy*_+
z9ihF4^ZntqhoD@f&gaib&!2HM6%z6)qM*b6R}Y1G)t-J6c*b=S_&=N%>QR7v*;XrT
zo~-{sVf9(Pe5iN+BdlY_a3jU`BZj|dX<;wbWWOd1H>z>q`-#tS`E>p}Uq9_;nGE~K
zoI%QO3gc<c`69kh4$=Vm6PM3m@gE?6&={8fu6WzeN{H|S7;dCA{O@9WANTn~!9Y<y
z(vMoi82*oj|4rV0zu}ed3{w8me31TcK)N-NkFV2T9R9s5{GW39H@)(e(BQ&<K2*r{
zq(2ly!jG?ixp9M!j|SL3n#I4G?UnERkK`*DaiBojuZ7>|@)fc^V&WSt{rSjOas?Ou
zD_H(?lczuQKS)0~u<kCCA22@GCY{N@$9xdXuXTcatkxrSuzCr<A_Y;fT*C4Q+hK|_
z!Q1vuN=}dS?Dxzc*bsP3+A!SFnGcDNW_x6_EuCSHXa0um<(!=A|BCgfjPm_U8e1SC
z`jriaq>*XfUgU{h@d?uTqsH0>|2d_@6O!0gYh-c5z!*<Ee<YXSd17lV)P8lM_(ewX
zc`tyEeA#q>!KraRT^~bYTPLKa@r|w7Bmqx{2)>OSnVK5s+v$Nnq@>1;N=P2bC(({f
z;=M|>#4kR*5E$=B4;H=0%fEp5Z_oSBk1NU{n1AlfBhnv4w}SK#&U=FRpIe#b+a)2&
z+w2bx*01&!OYbg5JMj4_D_Hv+{)e={<hp%i@=vkxA>C(uRLLuskK?mZfV+jsb+Pf`
z6|Db5XY&-InOsh>KNaO7J@{*ZA7%1CoXOJv*9;5#&z&andH*@TQ2sa`UKalLtbfMI
z)*0}5x-PcQ-!*P9_MQ{pt4nn0zHI%{Y!@m2Bik@LmJ2niH=GCc&0ymNyxo;KlI;(e
z7^Y~X|MD5uE^ztGi@|=}>~!Ywhw;_k{?{v&yYl|)fc{fA@Bd)sFQ0epE58tL=lP6(
z&ne}_%cz!L2_MgX2b;L7=U3uVyw53-?05J((!1>o^Yx3R+z|eOFhAwihb;W}*`Hy3
zOLjgH|IqAKkUnNo-bKKB_b%ZFG2AE@>HjX);q{*Y`3aj@y77^p6832F9UoiEuX6Ts
zl1%=FjV%57$j^R6`N}8O@;g0wd5BE@H%z|zz-#}M{ErrX%|`w&FMrO@-w3dOg-jOz
zKJv34QNH@Ab@;d6`YA>xe>{_~`^Zlz@Mz(8+Q|R=&4DLn^4EO8;-ASs3;s9zQRR1v
zHgcR<`hPlp5#N75!2a*C@be4nzbOSDE&S?W!AIo_bapt#`zf86{AHN`asP^oo8TXq
z{~u94?w?5IhXZ`qX^X>T;qL<BNB@&jNFM$~6aTZUq^O7LUkZxyRgjDFW7}Q|<?^xr
z0sY^aZ6y3Tl;0QTRXJea1~d8B_W!~6KM9bpfc@{(5c;P)mb36zgm!?Vgn#~{;lK6m
zx1Y-7H(1Zo|37SgBBuWw%Kr}H#aY~1evd!Sw3W$!fyq}NdgZ4S&RO_TKCU}9v;Upd
zZPv=<Ph|2nANkpjC|`NPI{eYif9flfe`6i<e?Ib49)Gm(JBWPj|HAZtRDF=l<!jH2
zbcX5wg?Cu|`^eAEq5P4M{;(g!%>HT33RIPaztD#){uRD{6w-fq&ca^;@*h1{h^GH5
z>R7%%K|ubS#KN!p$j{E9{2rM9;oL|JKiVB>yR<j>{vZMV|IYi&{yy?kB61e~7a;%P
z{zGQ+#|=p6Ba=V<J>mbb{K?Lt{94ctfcrC<$)DHkz>6~Z<5>9lh4NF1<ShK<F#Ir|
z(oFu%hkx_)lLPF3jFtbs^0OaR{vH4PkMWMQ;<LG5mdSschQDae!e0f$|FeJjhjNjA
z6uPXPO#b3`N%(Upe>cdti~nJjf2}K%|G@@-`6<P67XA&nM7T9L-_tDqzup=pt$!XT
z_Rr3t{3~^YeD_Iz`>P^Yo^|#|8XPdn-)!)|anSy%#L}Odi#1-M{*_W(9{%+u1U~v%
zfLEd;{NH1IQ~$s0r9+Lm{gtlb|F}M(32T38KJv3o<m=Esj_YJl{!NH~Tt7tRqaGd4
ztZl{RhlBjV5dO8?|1$X=|Nn$M{H0J1>|cfQ(f{GTJ{bQn?O8#(prOLgKPeU6Q-ps4
zoIf}n_Mb!llWihD63RIp`e#x8io60(iS^I_D*OTMv3yqi2ri%2KQ~lkanCN4pHe~|
zelz)4|5M8P%SSta8p`;tZ`Nez3kLMRu4eTgexdwq8~M0Tjo?z0qYy8+{|olJq`)7d
zfOgn*cN-6X6vY2zi2t5DSo+KD?f*|HDG&d;YQoO?TJbx|kAnQ~oGQYP@-W?@{lD#W
zjGtdsDyzG|!TQe`sQ-JyZz4Z0gp<ZUzIQhhdZFDNpdjkeDCUpNM*1V^|Ld)+{Pzui
zDS7yNg$cb?SSL%vuMZR9SK$XryJhZi`=-Bmu>ZswY#u{2>*c}rpNafjnE#IW+rJ6C
zcOMb*F}zg%vKxo_`P-iKkMgHCV{?bP@%}FnzLe7P@Y~8iWG#Par<JiX`3ISNmyi7H
zN0je4Y%PCNcCG$0`L8!;dl_{134fVK3%`EUTK<w^ujQ4=|B?Hj9$xv`k1GF!zkJLG
zNGnd<{k?4dMOF)uVBL!ZKksMu?FZ%k$-bBRwC|Im)P!ffU;%c#K>;OqOaI@^o=`8O
zH}-TmAk*&&m>=SZ74f2P@z)Rgp~J7T`EcyU{^%_Bo!{6mtzRpo@EiN5^<UXDyUi}t
z3+cocZyc8C$NR7Or9;1YJp1lzKi__A-j|(|er%&J+dvQeK)sOGYUwN`)6eMNX6!2T
zE9a!2n@jcW=jPA8{oMT7>_WYee%P#tbp10Q|K^tt<Nkb{*VlfH**Jjj{?}_Oi~r+i
z89olc`suZNxs7`g4%p!zOepGww9)Aeon`i`GFt$+_lxvL^>af0(2g=4*nPG(`#&3(
zaIo+EZVmcm9${k{?0yOax(|ma{5HE#FQkhuhn|z^*YqvWZ-ZRFVR^md68xX@*fYN}
zYveZW^VP(23ftR&-#t-ZwzfZ$-DVf+g>*`Trqc6Edb9CWerXehejOO3Z~XH7%dhMa
zd5qf_Ph;aM?liVvHM_U7_~qj)QR#V%+X3@H1ef_I>V-69=~v}s_WK>yKkFX|{rLPh
zU;S|XJxY2=OyXwaU%u;faeY4i-;APONEe<x)1Hk_HKFqpI#p)2YnzLWk3s#TlF$=V
z4$^ogh<}d+fmmL<_Xxj^dStTn%Eu|a*G%t#v24JWY^W5Q8pp<-@p$62;c;;(2}wiX
zwBpn_V?V)>Y&;oXjgCo3mkfiavyGTMgSUJH*VvEAtCXU`cchm#b(zKNQ!4s7VTWX>
zKN;s+?PTGB`jg{HVILefLyGgK9Dr*!fA1~q&w_PPSbqgJ55amC#$U;`uYb<<(?CD$
z-{<FJX+HY7gVayKdUa#}_<Ic6p*a7@Og~HqDrmgpmEX#9{hXlRFtA^f)r#Wuo&Q%k
zIQw;g^>Xz5)B?~Sh3#atlgDuI1@%U%u6${*p&yKoV*8k%Kjrw?8^3Cm;Pe~YNTd@w
zKhcHrM!pet#rUK8dD0F1@Or1Pe0=^?CK<m@VdKZz3HB#Qf36_)>j(3<a9tkCzX5vV
zdlqu(wE^Cu{_R`tEaq!JOn;ks`s>J?I_RfW4bFb(KeXlI|ER=sm4scfy%&!^5E=>3
zD$s6fijhAuNc!XFTe*DaKUND)zi!|UY5Jq{0?pE26w$9vr+!m??Uw-ggP&jJ^qC*2
z2dN*9i{XCaAWn&_CG6)aD$<{sewZ(ie)Hsj^-RBj`75Q`u=eYBEPBx%k-~mZ%qvJS
zo*bYE)=N{%u@`LqeqLUWV)YiRPmSW`E_;50Wdx_sJPQnm3SW>G`s*z|zonGYNrW#E
z?8nbPa_$N7=;sFgFn=MX`jssY>5TZlVEr@dg*0l-)$h1|QAEGJto`F~v3eV{f1TCk
z>F+G7m-5SDd@9UN|4u)Q_b|X)u<z`AuAc__VgBXk|F}N)_Rpy`<ofY?J--~rr=o0q
zLayI=nCFJ)6=C`UHV;wZ8~%PVeqIdMkM^JO^Mh1284mjoTtVvB0@5q(&*}jEdAL3q
z?c-4lzEJ(*>;GKYS3fL2qL_Z}3*PZf?Wy4GR~78!IhO(CE-fnT>LBB-R6o9sieE^x
z-nci?&=2BQncU6zeby=#X9>AH_ETyGr=O?aYq<Eo0meQqLb`Oc7yhL&{y^wXct*OR
z`t=7~zYNgtTgbmlSF%42_v)wrNBSu+Z_`Y_#!&DfZP#kFQGV#4UuEb&-pcfIC3*F8
zJpJF;PaSG)zrJ8Uq}?jl;rs8D$^`u~!G2${^36HItDpNn(oY*>tzTnstVpx|$@L=F
z&jtEz0Q((h_H(3r^>fzxkL(Bi!DjJ02JDBlxN}K;u3r}Dw*~C?E3=<6+N+;h`@hjo
z$*{H`^*ar(Y(2&1F9!7AU*z*gzxVnVSCIO7#_j71J-{3a`W;6D@t!m{@oxe13%fk&
z{DRvL=NF;>Ys>tf=A)k$6`cLLfPcnuZ4_KLO!z;1Pwj;N!+1wJv16sVT)(JZf`2;1
zZyufiUh>ATQYSe5E~g6|t#UMqH0W3;KTy9YzhAu%s29>>rLS(4>GvYDpCiVrpB|)s
zb)5fBKP-3AzB{&+-QpX+SU<SV+DGn--t_0F8=U=?;Cy$oeqt}qr+{@XDBo*2@eTDu
zntXTney$(Z4>0{b#p2iP_Uh*jQon;(57_LVKNKi`b$B1Fe#PGy%lA(&<>)Np1;?L~
zdHvu=@A#Xup4@)8{=@->!1@c0yTNPaI;@Mr^N{THL%vV@Eh@$I3z#41TEP6vC9i&J
z{owT53GH+2CqOw*!+bq_Z>C>KU_e@Y#FN9g{WP#2j-L-_>vz?kz52O=)X(GpNc|qi
zxpf%N$Ml8zBgOYfXLmS~$@QcDuYMBipYzdAYY?3MG_W6@7ld-Le(HpLV`e|p3;7;X
z^^3CjZ83?ZKOg;+hQaCQGKt?q@ZJUInV9KEM?RWWSTmZJZ}fbT$65ck`?5EF^&s_|
z1nJDIevj+M?8-N^-{U<V?v~lF8}~22c=dBM3eJAG-xFOw)mjz)0pFY1PX)y=o;N?9
z+wjlm|IokWS;+Le>ebI3q<-jMP!F^N`WL(Q5$c6>ZovuC{4s{*5A9d4e$K|h*)I&r
z5A`=;FVrvC{6X!yuxRyzvij9Z7QecWerl88^h5umH1aP${=)ep;CIZ@AI2|+t7+_r
zjXeF)^L_U5`qgh<`?-SDubo5K4bNpoIelTC1-{4l!{3q8_xCzBT_DRJ+n9gWee~0s
z24_E9--vz$<zB8BT>e1)kdAKpJYWAE;GfU(`c+q-^{>r>)2}hq1GL-X|EOP4m?wnq
zX*$FIp<eiWr1#dQGW*?P{#noV#;+cvex7+5TS@wZ{(IbS-cCRKeaqHXJALhk^}h;l
zvGjM#tDmEJaQ3^7{a2*^S02V4(C?spv=dVL{>JH}Zdv{fozDE9kAChT^)t)A*gjHh
z@^52M6lvxBI|p(5(e}qx=3mtRdF|(fefXjItRSWJKh(orB^pg)P;7r-y&=l)SMP%g
zUojo-Ju%~Ht{*Kw`1t_(1@HVU^_k$}7wdnt{4G@#{LYgiUD9|&4NDUJ`aP=~^=GY%
z;K%aqKDXcRUi-O%)XxF=m)4&#-f{fMOh2?6(xMH@{o<QHu>J8k8{c)XL2aC0rnL;t
zem`P6@^=wlv`bTX@62KSul4Oa*O-0*_4}Kw{MG;P+K)LyLlmYvq%{4xp?!||6!rUp
zytlI-^8HzLLaI!^hs#+0_0dlcQa_v*iRY%HoVn0{fO-e3-}sMz=ldH6*iU8i3-mv|
z_H(of&VDnR`j=y<-vaX9PCxwp>AI_p@egc&pnqP>*0-y-z52O>)bBoy{}TWFBd+@o
zvVD%>nzEocAKwbFA3uLX|K96goNx{YraPoG{b?{>g6&9@)8<LYFVL@r_QBtgV!p-a
zu^r~{{>cFSjPvXFd-YSF4K9Ao^n3mh^;4ohc~+($KR-mh=+(~^q<+WHzijib9|T+e
zirF4$J+?2@jO}^3e&M}^{W1OV^F36zS3j*yaQ4IT1r_EMp``AR{#;Xp-X%>c&=|i+
zt9)DOWu~8}d_(`7#Qd{**PB0-w!!K5Z~KR^e8cp)?84m@Tt5ZY2cZ38Soy26{UNaY
z(1X;^3F!>WF|^-`8X|tMTt@rg??~}I(ycd2uH^cme?j}zOJ@1^t~Y)i?Siu()}P(C
zA-{rPtUu#>v=8d#q2!0qHai>g^cUUTKmGCZRn#B6`niMD&y)Vzi}0Y_lHeCL4bmU}
zKq$s9zD^0(6|Nu7KgakDd5zVded5;%^3d-grT%Xtv@;ZFPobRk@E-RI!uZ4Ak>Y!#
zlQuLL^K;1jmo_YZ)xTLC2HV>m<nil(eCPlHmvH=YqrZQdj^l&N#d{KssGeut4C;66
zX!-3t{W-|`#ooMr&-4o`E8^W{qF)%BSH~}h@u?_T&`*VSg4arA>^Fk?y_tUWeZ5k7
zJILA}{Cpjqr9V7BQG;`KFkX@Jd5QdT7@v&7dK+3l9Ru|j%)ch?Poe#5yAm4yBkN!5
z!{#@;4|w%co|DHf)eqa3xb6qkR(fOo)TaLr;}z*{*L!Pt{5oNM1o{_#K9ByR_k2j*
zL_a(q676@Slt>TiS^xBh^LB8(5b8}S>V@ye=|>9k{EPk%^DjR?M>o!w6!ILM<o4t9
zI{D==J{9F3oaaZz-=ZLYV7-Q>Ghp|Ozv1(iC+=LA>BrC4QGeq5GYkFP|5CqALF%W1
zVyOSX)j#$&;+M={<NGh__t^e1I3CnlZa=;+BflKRr=qmNc1C6Y_zj149nN2)ei+yl
zns0{GzV~Ck(9mTrqF;U|%OC7~>qxMl+C{D(o^y@*?Sk+)ARnOI4AdLmWB$kAk<#~*
z3%pW7Hvg}jlf`dAwuYs(h+mh9ey-L6*#QEu{icxmJ+|NQz1jRfj8~-P8@E^`o8NqO
z0tkFs#M7ZNio&LLdD1WLV-%HINZ~i`XB5r8^Beay(%5%?<32k&`_6CN@5sr%^BXVJ
z3u*Mc*tIhK*6YC0Jlgoe%UNIjCRAl<j?e#YCGJga#dCJs5QX3CS^bP(&h~5_6}xAa
z7Qc(PigK^1c#dwt(m1>ELcNd<f4<WenSQ)~l3zNM^He{+|1RzW#Q#^g6#r!N>qA0~
z`$%K)oD~|X@H<mwy86t&9>w(KSBes9+~O&4|Jr7=8tjtkcbN50@(b7HQT^sTEq>1^
z7NYR`BC{vI!b>xs&h9--e}3s@LX4a4CmavyRw>17$8WgMZb;iV(?`qn<Lle_rNg>5
z{@piz>HPXD5&rhvRE~3aubu4K*WPCH?NKkJi`p)f?tjeJzwt|jb!Yth|Al@tv(h)p
z?8n!~@k{?d)^F|8Etkmj<Ll@6rIrzXnScMku-~#D;;YE?GuGEJo%H`>{ccoQAwB<e
z5G#MxPgxt}Jz+my&-1k(U%$rZ-@4=2dKh+J7UovmvFw@Mnks&G4#}hNyLm1i11x_h
z<S}l&qIlNXGr#e|e1SBi^ZoiV`)RN~OM!K#R6oqWnJIY`eq;X4OlHsQHp{=^?7#fR
z{2RsA|L_|xtT!Od_ssF!eElT0-*EkU2+JSpKa30Jw@397b_6phNX_;y8Upn|rz-f+
z9@U|qpq~)sI<1eQUPw2;Gv<g)zuH?^+%o-eesNX~^(zbdX>CRMi29WS{oE1aJ=ISI
zLn6I@v!Sv7LNv7Bl3@N-4AW2d(J!TU&g|C<^l<*_-<~W&^hP^@S^@3LFXujAjN31T
zv@hS>%<@NwxBno#PtNrF3hK*xn7@9wZw0pRsQpl1eBXZDx_!p_U83KKNVe|JN59M*
z>WA^D-|^RPChTj0^+43a%zpZJL(cf7KOCQFvQ=<k|5bF~oY`+4^!L&IJ+h%62K({N
z^g}zIh<|;6uYQ<+KiuxGUv>`l+YRZD?tfAr_0G1=zo>Wf<hc62`l0>uZ1dMI<At2r
z&rCnGYq0jqE}j2^uYPF1f@J@Us2Bem{q}?XoVx@b+Q}^a-HQxw@2el$?=p$stp7;A
zn~@@3v7K(G-?BTMo|WlWi0GHn@4vC%@VY`j?BBA}FEVqmu|KFz{7VwsAHeP7U&3F?
znSS$eKExHF50)SM!M~XKKdSG`Qyc!k>=)4g(wf*WGl%*WfOT-#pN9HnLjMuI_qHrW
z3PitxG@`}%+P?9N`J+9_AJP4DW<TubaFX%fQs8&gzl7hW_Cmez{k!q4clqjv`C~Zo
z&)GTD?=dWA!Ox-n+Q54=|I!#TawO2RLreU|^>af1%Lu3+bb|UlmLC}da%R7^7{BHG
z%eS7jMS66?JOmZ=K!Wx|`a`ExgADsY{ul)MmD|DUFQMN0LDb7R)9);lW0()neigBP
z^^wpM<IzmNr)U3v)O`t@6vg#_b1#TG8jsa@GzhvV;D~}NXCsKK0*-=;h-Q{$VON&j
zaSsH%+9QgZ#Enq{p5qb4dpv{p#4E&eOpM|^8V|%H6R+SA^M7yZ`<>}2XJGLszaRhp
z?Aw}tU0wC+)wf>V)z2n_`Ahlsv+9r3ddfH1%16p)pZm5h`8Ipxkg3JwyUM~}EV_RB
zv)cibkM$ed4W;CxK9~MMvQg~|@|WYgWxd7z1@bpkU0lBTXy?&hFx;s-n*2*z<KcBU
zw~PFB$+!7#7hIz9vHwB&PPx%^$XGrSCFCo0eiY|{`TZs8?~j~k!1}Ru$#?to)?HM-
z7{>1@pC|f@cFUKK$jsvU<GKu6f3x}&*PpvpAwMtQlKgoBfp5>%RM*r64t|f-%&%@}
zs~xA@5$>Ft6N5*&AJx=6*PIEze|2+ny_^k@{g9x1-%hyh?($7Kc}2c1m^=J^ggeuC
zJaqPK`OILzdrOQTv<sXKPizF;aktg|TE}<Wt?_3)e<ry@XD5EANpHNy=r8!L{$AU;
zH0>`Go=fAsSa>dt^IGA#H0|&7&YfRQJS;dW{%EoOxi9<A^-6yRx#}E8hxC{qaUIB(
z@q@^!O|lgFnfi8|_MW}76m2LRPkTLPp7Z~btqPw%1A+YBGTtjx>Z06q_uuogxy9t4
zFy4fae#po#;upxzeah`}2D}pYE2reQ689}9<+l>|FURD!68AAD<hK&{GiT(tQmKni
z=yt29JF}SlyEIDwe!1u$>i~89HK_l#9)h31Ir1Yh9ur#B)ln)J|N1=B+BHi%>|!Je
zpW4+?nuh!IDP0|<lXf@H6K!%ni%_YHa?|~?^&eHm<o{as7iX`bk*s6O?_nY&cCd_5
z3&r~z?<vVHrNi6IeMX)sxxiPp`jjGbmy9=O&+(V)KOuA;8y@DhlK&|;-9PVq^|{65
zzX#*r?pp>ww*3B1h4^h9Q+R*D?+WiH$$2=z@%fYYDt!L^S%vqd5<t1>ezNqfvBl({
z-DE;=Up4aUJX;VyoNo!e)x%MW&NcFd{vr25Pa%K&H+wirzrg%MO#CXnqxmD{Kl8SH
zyG`i7(0@eURVsCb@t^|kAAj*nU0<|a0_Qihp#7D+TrlyF%zxqg5y?7}4vxFgP0AdO
zUegd>a-gxN_WGEM`xo+Q$A)9wH2u2>r<6na=}w$J=X;eu1^G{g{Bg0LZs2?ZzrMKq
zb%==apO5w-<)Iw=vK@l;3zXkJx4`8KCERlG>0Y~e=Ur9)4CH6~@_OBW`lWt9!|2UB
zzGLza<M<8M5mJng&|Xje(S$?%UJ8D+yJ^QWU3|}Wi5tFu(mBUmS#18fY_#C#_5Ar2
z&fJd4KMUg%+y}$>&$QOxP=DKET?G5%E?+3&@;Tkz-#aOL{y_-)laB{}j_fD4KY*WP
z2j#zx`DN+9)cWVcac)igb(7CbR|)ZR-)W)0yRQgk_ouUe$NhWy{a5#^PI68G${o%V
zV7aBsa}1^-Li?N*%3<dVal&z8>Yw=Fd$wB%2K^m+>W(SJPYn8RgZ@7`MeO11{Qg{T
zUUB^Jd<@DzW|2v+y?^*}7v%{31=^1&#+y9whu8vJ_YvHCa0mbLgr!0JpAY$;T`KK|
zqx14RjUAK!%ikB5|0cB8-4{$alz%Jm{c=-&sb5R%+-*62vHUJtKE~|Nx7PPvc%hWv
zxAOaYlO2?QefJ;x><6Q~5LY>Ytsj)1{to+m--zm;{Wq>}x>4kJ(|P&*rjF^K<&=76
z^xPN1{pZwQC)m$Y<1u`nu8p5Zub-*=gLC6E#Lv~zeoNQn@#DohCcl5y`r(J?8Ts3-
zAAXn*5A-<wx}g3!KG#j!57Bq?>ua48ip#I<I=!YD#~H->7yV<fo$X=A($;(rzZb}H
zJmP}y*{%mhCEO40*!g6YKWUv`u(h;5;{o}T9h9FqVZVX#m)bwHnDrgTAt@K%v)vHd
zh2+2Po%08ge`yBiZ*zQLN7<i{4#@8}cTE4>Uqn1Jo|V?RPU1g|^^|Fx3$iZ#6F2nN
zXXvuCv-r36?++FE;~(Vl<F#~5{!-&H#Fagt^qRG<l5#QKKXgrdm;R=2bxw=Q&-M8n
z|2?%u<X@GS-)Zfb{5<#E)<5@c#;x)Gp4@M6X2;rZ5hTcid%gF#(LcsVXn)?9`YRpS
zpPTHU{H5@JH|wvz8a;#&|9H0RaL)R=@Lz%V=$<?2`7c%fF7~gn|1#%1k^j@Y{{6O&
z>3`S#jQzCR|3fDf@|pjO#~Qx-9bCv)%Hex_zV!iDkJs{RuYc`&rPN>l%FFM~@0k4i
zVIP8xAMQV~$HNE0u99DR<i|+N^2_pn>)w|>rut|7OZ)R?qsae7UVi7qj>*3Oc82zx
zdMdR)>Ui4E4z?etf69OKnWH{Z`F-Gr@(*1o^;batWC!JEIgNf{@Id)<?F4JQx;OCe
z!2b8*3ng4Tf4YqxmEB+8ZplAZ_XmBM*T27@WBMP3`j>d17$-wc^1I>z&n<AK8~a1O
z@;%!newYt?r`>Kr{ILDDw~XJ!1N-Z|g&mVW*M5VYVf?g9+`mgXbNK@OQ!c(|yDk`X
zPg-!mzAAqb`sewQkBI$={yVRKXVLn}Z`+@8lxvRTQ_jig?{hwe`nBcez5TrPlnW<_
z{6C!k5d5SA@+Uhee>>U(w*47_d0+CW|Ccc?L_X6+d2Kfg2HodwdggZ3e+ctS9RImb
z<o9L&1^2J`Cl%K}_peMtxJmYxG0wyIpF=-|`9e8=?D!AEz3rd>>8bh;Tk~Vjiu}&)
zopbVgCwEN#VJxSxGmPgJ%T7}Ny@4OD>u0+7p6%NBdGp&db^rYj@H6%-DZk(5_YXOz
zbWHxUc7xrt<o^!iB#vc2zreVhx1RQ&>H3A&qe1uY*!8cTZ|=LDbNh>uCFJM+9pZ=k
zW0Ef$d&qd+;W*nNg?xM8k!|1kK3x|-m`}T2azYoyKgWOA{@hmfzolh<ko!~oQ;X}L
z`)4SB1#m(;!+38Z{-J-`|G7AiG`Ws*2N;fxpZ~tTWKJ>sydmv>w?|%n@3fA|?~OM2
zAs!fSE94}f_~-mG`P3`lvt1VqzQ5n~L*7ySC#?C|^JRW9F7k8#jpG-WpZjm9f7V~L
zGmJl1PgyumbZ}n|!;xvff@{Xn`~F(-?^@$ObG7{T%<s=hmXM$Ob147W?7v&(_hgGt
z{Dd)IpMIfZ?FXGh30})qcN?Pni=ybiv;DT+BEf$^e*g61`Y$Cv#{(G`<tLxr@QZlv
zi&ZZ8p6%M@`@PJcw=K4RaG=QV2KGmJXRM$6cKN0J<Wv8YpM2ulmYesL_~F8B-eT`V
zgZ78*pK-eXHXy%qX2<0J7<R_#UuY*k1K$Imc4UE7-oq5Mgxd~2-7`m?{)(=jq5XUZ
z<F^;zF7m&mo{c?8Kz{0tZg>~-oade~+V9aXk6u-X>t>#>0Dcu-n2T}f=u0NN#SF-D
zLuUBFq5IZn$7jDkP5DRS{MW}s{&+zC*jYyZl$-94l|OooNtZ2u9P*bzPD}jUI3MlB
zfNswZ3+g`!{ku0x`3=Y){^gI8KUqTm?zP3`PecBQEjaFp8@k6`efjo5`QL>6D{heT
z`?9`d@-y=j%bzYGzx(p~;pZ=3UHExWe&VMgF8B|~pE&!+>EDkR$A7W}exi`S6n<jJ
z2fByvIw|}8Z{q)9=zq)~1pfi~W9R%h`Mv9k%kL~R{0hj!@*9Wzb>Q1h1m%M6rJ08d
zz8^gm<#)zSg8zX0;l)2r{^%b{$PfL~&QSg|<gY4GewQFYbp7Ujw+8X^KJ;I4t>Ay9
zdItV~V)<EqZTa1mCO(!=TmLCA=-z#8d4c^egZ?A83jPD~C(iw8_3xwn+VV#s{|Z}h
zOK!?P_#X?u3F^Nq<R5g6;6EUL?7W{=e%c>f{`k7&2d+}Y*K>(QLHU<J{_b}P{sZ!d
z&;N1qCrjYpz21}yTmCfVr+ijE#BfiyY5AUq1?8vxx$`!`|10Vl`2Uge`;fB?@v{Bk
z!md_;&+_ZOV&ba<-*$)_y2mV=uj_Mj?H>pF|6c4*G$4QCS3gew=@Rm%A-}EvDCA#Z
z3yyorP50Qknu71Yeh2$gFY_1ifc&vv|HSf_D8KRblz+yG?zaT>Px)uc`TgmD{NdmH
zwDQMMui5%fuS0&eJLzuL>*0d$zwZP5TzH+}|5eR2;QuF<-$A*y<#%5-@s(;nP;R<!
zZacc5{WcKt|3~Iuq5=667yPvPXSuNDkFG<0;-2n`g|#;q!_RhC3H}4}$J&2d`QtYf
zx1VvyU#k3OP>$(7e$HmQ2j$P8{C+C!=X5~+@Na*d{2t^iL%g(~-ql9_3h-$^(~y4^
z__jm2>H6=C`mUJ#TP+j(zou^k|39((@e=a8ubKEt$sa?4=stbW#kU9Le-!$kDedQI
zK>oyqKTiK_Czm1Koc>{ds=%lIqmaK2eA{us2*JH>z`{+l@=r18=J@A-t^HxK-xZg?
z)c)~O`#Z}x4q?p~+536QZNYKx!sYXte^)P5`P(u6&-F7e$^NW(V1HovqV<!1FW@e^
zcO)Al_0RQvJV%*&d<x^}NsKR2K8TxhT>PTD&*XXM2ldbOll$X*3+|uEtf%~|A;0?x
z>^b7K_a#w&dtXvV<v-#2=PwP)&;9dd*8aG}#p|d4uOWZ>nL_zfn4gJS`<Lx~UmcbI
z)?05K8I+&j{~nF=S*ZWmCF>`@jdSA1#yRzGmzQ<P&*yca8-AnmCoTL}EtCCCf&F3O
z->;wi#CiJuLj7|;6z5AR{|lUV+QZZfln=1WImA8P#L^?P=R<J(p#k=Dv78O27xkYh
zA%Cg$N?b?4@<{#je7NLOMo!9q2yvC_nEYAc<lpSN7he?pFO6FB7pZ$YIc{KoSz<|X
z{m;UFV~!s)+!*-W$4&Xe`<wirf66}^eEKh?e}+SM!jpUbuGs#IjI4jwi|aUbop2Ai
zXM9!GM8bQOX8%R@CHZIX?-|lZn1Syl-X!<I{Xd(@fNJo5cZo0PpW#w&x=+^M_*gOd
z-Q%VGbDzjx9?8C{>m-Bnhhl~MRa)Ib`IEArM9)*o{6hBc2>sQQd-)zDFR!8S{+0s^
z-+z6q@##l}FT{&-(|uyjtwW2+?}_|+xmbr`%m06+|2iX9ZXe$8o1V^|AJ6j3`J<$G
z^oDnFR)h>*lb038{|W#~vLk!h>*T?9xc-XsjKp{AAe0BJpLFp;4eXHzdlUuVv)l>y
zhxgX`mn8O&oCo{UF8EJAoc}(je|d5FsSnCuYX8fNod31<zpSwMF66V<MTEhxvRvnl
zIp+oEk1m4z`;Hgv1on@3S9DDN3oUsNowJ1PHn-4jPUC*z-iBX+7q-DXcpCd+Jn)$g
zhI`VZ|6C;UFHJ-L#LqXQRQ~+_9p}o9$)Bd2XooSL)#U~!Tqje82LrY%ZckTXA1}{$
z;=FH&0m40LR=1_a)<5)<^{eSO^Xuo6CFJM+3*sj?e{G$=*@*hd{{CGGdQMvBif_er
ziQseIl=^2r9Z@slrYwH2{`o}U=OkVK|5jdp|El8px8>)0a_X7t;yP#dQG*lee-ZT0
za!vj6dwTqiG0VG$0HwOgUKelmc~_O+!TRSjA^%ZVi~O(U_jh~o;_`F-JoW!@8}MMQ
zU;1xTA)j)-Vewta6>2E-PrbYODkST3@c}Pvs`&TN|04eXc&>~;ypwPLI9GQ}{(e}G
z6dz;!L!A7%!dAa)3D%3oI~)Jh^V!&E&wMP0+)N++bzeN~nJj)FKlk5#DC2MLyLtJO
z9hBe2Iwi(S`JWta^hrMP!}`K*kA8u2LH{{<86ez#?>~1_vGorFWdB0+y}bPXH67D`
znsx(vW^}3Tjr<Pygh6-YmxuKaTo>^S*Y#QJB3uRtcg=oVD*k`){iSQf{`mLhzaQjX
z+cEi<Vf|t99#c*kUBcp1|I@~pbR{7t%Y}Uo5%te<KzE1c3$IuFgs}eeG?ZUGzcU^D
z{?T<ElfP7dfaiwU{ed#98{j#nlt06AG2FyUz4JNsGUb7ReTv!t-<>D;51c=r?4bNZ
z(eGvZp7C&B3Hj1o&R$i(5BbcOmw<orY5!fk$NV^E{3CCx{v*&o$4>^GCh`ZrfANR^
znf`g6hkbrN&+{Ok`mI7aqWqMX@*^3}==(F97sLOJqW|dU`SR;s-!b{;T6Tu<ybGKp
zfphBllCgz$iSm1W3(E!Nr^|46nDdE#e{N|E`ltQxyHM<ZKz`?jj>&)E0K{vxe@0q-
z;^%D23I9yj$>dw*n)1`%%=h+OsQ9t>FKj03Kcj*5^T`g%UjaMg_AInNS6T8i{<<*q
zzsUF}&X+@e+JEMY{auc&W^8eZ>OUMY;ZXlO%l^Ccnmm5|WgXN1_GqU$mi_F#XCWRa
zKg+M({`m^!I(?8y7xnHstT_yVUcU5$kjkI7@H1TIU(!1V?Ej4&lfRVxe6oa{`KGf;
zS9F{SpL*tZ5dGg6`CR}$443J@^1SpHiXXfG_{8r8Ki>w{KjR!&;+8JgpT`g`&!@8Y
zzkdO{N<CAbS6O_@X|L<9K=^!*?y}n7+#Qsk`^WYC+W3^f`sWhzbNw^rFSY)8CDy6>
zR=Z*(a7CO`uepBZo<{%7mxPs$TY6u(Sy28tsDJCE{JQVtzrWz$TpT~P{D19Z@L+$(
z;9<0X{A~*5=>q-pdkxfcn0N#J!;rhma<|y2;+UZP?Ek*4^;h@6`sZ7U%g^=O)c=p|
z|N1!ZpYoUL|GJQ$?qxgm{ZCMSj-P)n_TTN(Ik*1YxwT{R+xkRw&Qsf>oMPOQI5`~l
z%KdL)zMP4ESy~ULk&AdIju`IV-o3vO`IjaSHR02KJ}UT02i9*VOUTdl+tmLm^gB3?
z$#|9k|7<@~{^jIjoTn#VNLu_};PXAY^Y^=Fn_}Z{3+I^^(tRV@A4y5LzQgoyzYPMU
zBj>XRFMb~&u}ODFsk)mPAB^?x?kI(}4ElDQ3*~um{8P{8NiNOX`dhXy^k3?Z>7skZ
z2X`ckr7ycbMgmD=Uys_+VET@h^~ZWej_#hN7{((L$4GjFULS9sw@14>O7HbE_hEUa
zv|ymQk4=~K3hmHl?vt~-J4*Wu#`{Of`$Cm2?vImup;A``9?*Sj!h#l^|42_U_~ZD+
z4X?=jht!p;uwFQvFy%+ooW1Cln!n`yNBk`lF7?Uz587Mef&1flz5&aN%l%NW+b-fS
z<uG0JH}jV7n}g}2eOUchgALA)gzi|s^l_ZVy{|BRD>0ABdWPxad64}6IMZj(b5ZVf
zrH|?Stah)?!SwNb&EHz-%dBVmcs^-#6Jx*Dm49{U?=fF<>D$HVhvz1&Z~9)I-<Umr
zmH1qU`gNS(Q!nOU>dy7cKc3Ug{9yY2ih9!?580CZ&rN!mK8_bf!C&9>eYDB=;lcci
zA$^1G^B?b8zx2Hcd6^$f-@6u{_*`xAnLc}7czx5CTH4+tn7&q|@4LSh=3o2W>zBUE
zP|w-;oW*?)z%A3qeZ_YBm3Ak(+~jLV(?|VW`O7o1=f@JC?EfENr7w2R`lT-?SFL%E
z`N#DKwtdOX@4!w{KHJ`|D}B_LgKO-F&ySS+Tk2ZvlV=2<ZrA+yaOB?N>3fm;CeglN
zxNM&$n~i;8O?@TWP23O4e#(6GlgMZNbKXuS-|TS(#$&q`V9-7C*e$Z_2bq7gFTd|<
zMiOaX!hbBDzEb@?o}*!(m%({;@~Q8ApeOQ~f7ft)ZB@tcNqsTh|L|_=EaPkEC9U&E
z2TA+HdqCUAj-zcp%26)uj^H_kXGpswc>lii%YyUDM@u^{_<YW`jM=zT`WHUGaaiH=
zGHIs;-~UeAJ%M@dLf@v1r9760TZe@1FV;TmbE0`O{;bKj$O(n%9F6v8_+4pl2|YaC
z_|M31rDrsqfhz+4{$IO0N{gG!!_eQQEh_Yi<^Oz34_}QA1SUU+A%mlDba#|^F<o@e
z*mTlAi=|J;r}au>TwUj3g87&dz3TjX;srx9b~g8^R3}F%Bkkv)-u1jkou5xVZ;0QY
ziaaZONQLB6*V!v6zm+n5%su~4miV*pKPT@CJvGAI^Eq9ni*Dm*GtMuTzWb&BrkDGa
z$v<sh2h;c8t?_(vcgGc4gZ@MNRB8VT-Ocv%5z>AZdTB@FKP|tNmLmWBBPBnD9P}p=
zQ>1+^#Pc!zgXFmo+uP9rl3zm4h(6paq>a3b+zatyy6B#gc<A<G>C^J37tcfd|D_yO
z8L=G??&L0~bkhEJ4D-*6QNJH3^H<5`V%6)6-SQta`AEA>R}PrWUW*Z4721*Z{^O-=
zSNDlzebQcSiheo!yDq}H9(;yV0e%GY?c`U2PbY>SWpH1Z_VzeUU)-8s_rxx`ZWpH&
z^W{;TGt6|+ZAHb#^l`q;-NERC@$$R0(XCAS82=FTf9!V4=4k(r?;@aWIUjtksaKh9
z#<K!HnC_`_u9>Rob8-HmkNnf~ljF1U>j%7ti|1b*!dnbCH~((U|FRvzd}96`jq#Is
zcN0GAy`3-)mORbq!$tU=p^x+^!)H41*r~z~^7njq=7*X-j*p&!^!?{#NuQig83I1t
zM~bH}gak5uA46W^hw(CBId01Il{%mD-4Q4k&{G%z-GTl#^VMSna80Vkw&H&GUcY=_
z(-%Sh{R-*ZQtAiyjr{rpCs{mwTz|my{hZ~@%D;A;ch7V)eRjEYAs5dv;raun&qw)V
z`j}sM&8ff-x<`I_*wLCkw$J7xednJm`S)f%ed!LSZxY5!InKa%A4EIS?k`nf9U=Kl
zx4j;NxSclG<ZFD2(YMP8;PQR4GdDZ++4)c8AIJZ?$@snhXny=9`KONMAJ6IZt@SS_
z&@Nc>;ahY39(>khQR3X1ucLp?EB0nW;4<G_+@D=}{O+26VXQA{LjF|=KBMpC`|t5b
zi>Ht4OBN$Mdwd0KXCnItcNUIUa6T#ej>#A1Q&;3G`xBIRK5#(3)y(+;J}*!1^s68~
z7a)C0&y@1_K|X!{V;xIhZd?iNeLH>Z_m$zn1IQ;EpBJ+qjQ%6j-39fP`<c-P)6IC&
zo10&Buif)bo!{FohWzvW!?GS~PnG-&q%Zn-$I^Et^c(%a#LsxyFCw4mI~n;(ys`Wc
zhe^!4a(&sI@SpY!4w!DnLwquvrPGG`n!Y&F$Nd}qW&Ya>&i_5pvGm;nT*W&X|BSaB
z^RjmSor`%{JO56#_)G`K@u?4&5x`~o$bR*@2jh~yrL>>4FDEV#`}tuWpYD?#OW%KX
zGx^5;Hsg8RE95i(PT#MPPrdI{QOIZd{s}w9@Lfg#H*DRHJSTptrq9RvJEpHz>}Pa!
zK7G!gJC;7$b$k8Snz2S+JD<AmU&v=V{${O%U^-s1^3~3-Dx}YYJNleOcPc*9z~?!z
zFXu`AxgX`zm+oNt>VQKJb{)|;WmqplzH|q(*L7GQ5Vg*|<#(3IXTBy7jyrAb<&W`x
z>6eYy{7YH$?;lC|i$0zoUrMg%SpMbgy|sSeN!UZ?AMyDD>OUX)U^+^T7jj*JGsdLP
zWkTTceX=j=vj0(9zh|uU-75Huf1S_2_+L7fKAvOh>}%p@JpWtudnLvJ81Km6UZ?n6
z>RRW=Y5zTXfByV9AN_dti|A^<Ua!T*ak&1##kvQu9ee$O3pwod2NmGk>kq=<`@lcz
z_r0w2u>3OKPP<)lgXW*TK1aV_>rKtCPl!HUJpVYq&-AfB!1;Q{bN3KqM~Fk>^JA1h
z^4Z=x4)%!kA8~gW><;;?7a5O>A9TCK_RN02!pHm{_YXZQ`4^Y{H&yI^KGU)Ey^Ve;
z<z>7t!mg9w6%ROmYL`o{ck?lx&Gd1-8~JvAMG$Tk+;ji<{VQre+cAE9IqYZmMS{;i
z=g&uTF-}Na(&hX*^X~$j<Hmjv(`S!cP~LrpAz#s-a`D1eg9`a!@awF8mIpo^`&^X6
zt~mN4#iwhHPw4n(e0gUla)OD+dCue?^-fpEMb*~F5J3&r`TN)p!gwEqyy<FVcRW1!
z75nLEhj|$9*c|;>mb3BTuXS8h##N~Yx^>_7G5b4Fzn_BqTlTpLkmK_yq>ud<x~1l)
z`?DYTp3x7>+W?CnLOShsHgRXSvt9VN+u0T1)8+dY4QYEo=f@J({=>RYWPT;E|1j~q
z$v>uxZmINf{@vbxXz$Bq`ogULt@$H+-7nL(;%C4W=5_iZeeO_Wq3AA2_SsR=ceHzy
z@xO8x<8CYSE9oxz{%yN{^hqwJi|)TsZ`=KK&X1AL{A2x3`@r-~L%)D_k@~L(PRU1g
z<UCCORz1&n=nm<&_rJxy?3c3US9JfMyR>s|{e=I5Ngs-VLznvkiHmlOf7<Ief2#dz
z>GR7RCGHmt$!{g@7mS}*<|viA_=N7vpFOSXhkuZM-G3LqG{1h*$38r!n=bd|{Z#39
z&*<tXmD(@qpV`$>V)_%}SBdFQoG$l5r7nK2hVov&Ci!2jU&64zi(sFIH%tD%D)kHO
zum88=_*VO?S3LXQajpmMoDT}ycNc*lUv9!7uGya8chZS#jz@BSmGau(F$yEz-7){~
z>~G?&1mAWdU{t~V>eN9GX!<>*|9Yf9BKVJgA-Rn4RsY4}>F4-=9O2pN0s9AfVfsJa
zx6lr`c;R)7!+FDv#7zIL6O4b>-?{Xo|4P2ch%J}?8UKo%zWKeTpZ!msA3j~jU;mx&
zzxaPIo_>yR#Sst3LHPY&M!yW>Cghjl0qvka)Z`oGvim#41;^pp-f|JnU#xK?>WlHy
zWjMUQ_u5aNko5nceSDaX551r7-}o<eEd9^)MgCa*(?`K~P(QJR-h}=%`E0k{!+tix
zVSSPWKM6kd_!7b=pL%3E=~6G$L;C5H@6r6{_zKtmhQ<E59|zL^a>vpiN4=W<2)IVX
zQPd0e`SGmp+>eca%3Z3y>&EdFwAbwVE;`-d$Yp{pH*DSSJMM*vn*YQ<$6pc)WNtc`
z{*@g|KgU0bPezyPk0bw?Z*O6~g8rHQJ{adDpZT?`#di?_?JoT@pBX>hO8lT6dSANm
zu59^7{eLR#U*9Id|C&JlztXYv4@LXaL;f&cdtEQnzc1E>+w*E{$3`zV`N{O#<K!+P
z;Qj=rpXp=#bf@75-KDP%t_Y_85~P2&q(44K`X5}siSJOd9MWa~DvoeV%^!Y+er2+6
zp`AMx`RVLp_{_IouwKACh==gk^hdb@zY6>%=-<S9m~bNCJI-hM?+&-tRJYV-Km5Db
zF!^L~!CkDWp`odH7C$OnIl^sds+n8JY018E%#dSSTASNyTHTY}+J@SB=Ci``LQP$@
ze1^D9zC$cGu^N71c!WE*zHwGA+Lor=&*s{i+WPsmv*eq_c&k|g6d7CV=NUPN?c<&j
zkVL*_>`L_NSyPacxq!dcFB%hfbnm+`94@xLLHD2Q7015$I{Cec5X<M^#egRV%Naw%
zrM)TijI7Vl`-uEj;yR+p2)P%!2ZlW(&y;RDOGB6N8m0Xzq)Rw-Jxlw3@;zUnZgN<K
zhL`rFy(`qWuelE&QsyX4m3v(u<BMOVSFk=jR3+gFy^RE>$IJUdyjU(Oz_@<GuP@O4
z8|Rms+5Y*=v~X9Ve-V4blz$N`d(q{0x$O4--sty`PYLYx!qg|f<Km%SV|hP__6~e5
zgI|MjC5G=pu0>-_`CvWBbmFn&<3|kc-+MgQE13R!k^azYW&}Bx{x^%K|HqC;Q*P>o
z<I&_(FC34KUs-4er=T6^&N2K2NYA(fP5Q}~Wda2k^~!h;t?@dm{mWo{p7o!8KR7)*
z(EoYMq@Tl$bhZ7b(55|IT%!Ls3hgt;s{c42M7zy&|4+V0och#pN_~&G3ficI`}k>f
zM+Ni$m&pJ0N`rrn&&1Nj^S{*i1?zkFZzeye?^5`;&xK+>J%su+x(fLUxi3O}!tg7=
zpN4S|?nerPPlxHI|JTQT{&q0^Tz_BH*Wf>w{<n*#pW~nQe4#Bj)4#j5o|gGt$96Er
zW3U{~xdM3RI2^altk@m;=xpSozPLWZ3z>4^GU0GN>;B7z?&nGRmwMLv;3Zw;+xCI=
z!LfIWr~hu?+JzhpK8JU#4`%xB=eQ#H9N)gsHR*A{cM*_>d?tS&`J9i1U1Yv4v&OYX
zQXsgLgYIKPPwiQ({_~{&t5-Z@(yjem9T{VOHT26q&i&(h)Xb*69i>ghC}@4gtCAT9
zM%f@!fAM)I2;}e7+fhmbxc(M$FEmdKf3|+zrneIjx<uAz2Cx20%=6d|y&a|Z{KEK?
z4TbRq-wpnzUg$=iJnGNI^mDb?$LzI3B<rXh4C<#R8;J1s2<m&>I)h#QGVW$x;r)$%
z;r;%*72c=k7T&KKT$tXcCluZ<VTFy?eqT|jkMCoJ;g!0}oePVsJ$9!jz7DpZzkvO`
z;uPsW43b)+&fq%vUh(q7@ss6<unO%4u0x|7x%~m?SFpSvkMfcJ%!Kdah0k^~@shs)
z{D%%Oe0OW(KL!2*%sX-1Dg%By=Cx>las!`uZaZ~g7*xo<N$<dH{mS;$GU#X4g`%Ip
z`nL4@#r4DWZPd?CwZ3f!jK`(_ZtP?ja&tW@>thf6+`6}|jsGg}oq<N5)K8TB5-#JR
zd-%XN_f-6Z(EecmbC`@jrQgo?Kb=*@^~3Qe>WBN(I37+h(j0$5{n8Z=?0T2wzEnNU
z{=K`(q?<VW6V~f;otBI6Ilhs8+xVAax7Mo?PhGh6<6mx5{e+J&@AG`nKU^jH`A1$q
z?uQ-IkDV?Gb54o&`gn}D5Dy`~fbzxmD)q1i?LYcwI_99BB%gZ7m3OoYi3>(!yR0wC
z|LEvl-R%6~;YL4fzrHNxEB=07Ki=w&>F4DUCLH!d7|(Cf-XPz!jvVI_)aT?ASHHIS
ztPUD5f8<-^cW1#r`C6CgHQ(}|)4zHAga0;u-u!gMg+cuAeA5FOWqfaSUO&-~I;J1H
zyifoeS1d<^(0=vrGIoRV4+q|S<U8@heT|+q-~1lOmEfQFx!B^b3qO3$_aFFn&Op_V
zhxIM&|2`}FiGG&XkN<JU^uzuz(?$L42sz`A89h)xw%(|pAKM@1dATkkW`CIDYfLxg
zvR%GMIqsUXdS}&70{Y?l!fmBJ<NiCZpZF&o(@&}X0&&8A4)xQY<Abo<l*_i~>@Pe3
zyTo!tdy)1`xh9`@i!>DSIi76mh4&tQu$<jI^pwZ7|HSW~pN;x`$;`t3Q{q#jAEt|L
zss1C+WlLv_eDwb~>TUl%6CU-k4C#yF+#IIQ?uWXN-|nAPfbYyT@iCk*_;$Hx`uQ4N
z`e*zn^!mV@uaET)++Vtb&aKJC{$=W)>!%;u3Cc<Rynyj^mOtu;dSLxS`F2G6k?jRH
zE0wg3(T^g(ANbdy9FtGIv3*K>4TOK&Nuu4HfZOfu^rc$9*gl+r?<Z*g%l(I72<>O*
zU&Zyq_Hzmm9RT_K)yB>+e$J<|T}{1ky;>CQbEan**HfUq9frJid%F^R&OfmI+|G2e
zK1Dcj@UJBw?MXSVI(yYY;3(YTq3gE}>SsC1*T*tGn|@wAK|e0q|HJ`ZTR)}7=iB!*
zxVQDQ1Lk4fTa7-cpUp5Yz;-WjpBv9Yx>!zf^PJfK6+!ymMZ64$=|0A?d)4qi4KCk5
zbj@R%1od+r^y3SD(lvSfc%OF+KR2R0#BVOdPXpFfQBLajtNoxiq?fp|@j$&Di0~N>
z^|QPJ;Q%Kd(i!4<bjVW$KG&JBUZXyi<2n7sA3AbyP(L?8KbMH1PmT%ffBT}iez^ZF
zg>YGp(iau#$DWrehyOU&D=#w=QV+{v#~tju^Wc96q?h_hfPY=3(GU4|fZvL7aPsd2
z|D0V5{oe(CndSbndAs+Djc;5p>+keR*Biam$?wgCLdulO-Z!1r@*CLq%>Ad4u`>T5
zwB=5P;}P2kG=1@(l(`Y5`u^rV8@T+t*V<=&o;(j;?V{k|_|o@%3-3EiLtMk>HF)>J
z`zmYv=xll3k;~TKUs_Liw3z;GZWP_!FBn^B@?HC>LH!-z7smF9jF$z^7f%e5=OTaN
zdnZe`j4|Ui;Ric8O5a)O|BxLF1nX{B82%9J{)@K4=c^YL-iI5EJl@CR3JoA|;jQT;
z^F!ANC{4qD=Fmg3CsC->6~+U)FCFpp%fa#IlTbb<-og+Jjx+x@IP3{FU7m~S!EW#^
z*58gb-_R5FBl!&H8QOpJ%X%T81!xDbUhfV5yW9ta?_IK7Tn2l{?~u|CT+Z+zkBe~l
z-4?c2EH%Sd-l5*;j{acH)y4F8qNTs^*Bht)_`OqGf8=jy{oS$Gb;lIb-xk+X=LUbV
zZ#GW-@q4Sb{>b0Z`up`K#}?J!FaJ=ezr?p2r~cfRP5#>YBY#8d@8gCs{fgo5kCzqd
zFZ12TslR9m{gJ<+^|xw^-r4hu*neXEQFU#h{=(mHocfEG&>#65T7QcM9<xU={B3@N
zjGw-yI)wfE@5ZUWbP4^DzoGRvA~v?D{W~{ah`)pr$uij9p!<K_e&P3ie_;Psntb2T
z`pevV$`i%#x7*Ey`pb0MIQ7Tx4cq!7e?#l<m8)m0DW<=nGCyQ4laJvp8>jx_z?rQ-
z@;9{pcK)XN!(#gD$qqK{U)POOf9VqXBY#8d@9bOMkBaFpVwK-Sw~bSO{NA&TKk_%U
z{-%F;f%*O>)?c&zGJIKK`OS3SIQ18OrFi?9{0*(Yp%a#FSqy&%om;5CaM{MGzjz7#
zk-wq!xA6Io3fBJ-e-B+!sJ~dxjZ=T=68a;5gX{0Pm$Um{?f%EaYYO$3=(Ta`kKg+a
zL0pbsk-wq!_x!wux?<(`jHQM8%WSf7>M#0g3Ht~BhSuNq6AxQlOn;YI`U`Kmaq2H#
zLVx6MX#I_j-SciS{VlV`uVR~Rocc?b&>#65T7S>>+w7uZ`g_{aUt;r(Q-A#4d&stb
zul?`zfB!P~_x~!UzdCFDDihi`^~dkc+xjE_r^cT>|8~=!+kRYZ{_TrBkfDbgy{(k_
zx6Oq`IZteod991{^HkexTX?@l9_e~>UgcYw`}n!N9i<B}Kk5FVx1;p#K;tvDq_?AV
zIi9EDaxbL&zcjqmMRG6nzT5||!!iFBmavt4%;!ZG%6fO9FJ%3@Uhe4<pHLO%+fwpO
z=|6a$@OwK-XJCFVe1?Q4#LL#-4cC6zy_o)vYc_AB_b9HvDp_!)-z$kpT9i6E9~@oY
z+fgbtAMD&GvI?#5eDL%870&<eI=1lsj6Q|)zx@v^yq_PVhK##rLg78{IBv)LOP{#z
z^&Xu%EsY;#>;>1KX6hub{_5n;*G=MFT)t12>kC#P!0)jxhV%K1XCLfqBR_{stkWT1
zrq#1onYGSBR^n%`m6m_5S1q&7l_EU<X@$dS<~l1JZZG)r_C^nshj>HuP6dC!{lmC7
zPm}c-OI>UK*_JYY?!J>>ALeXha7ew;<@#^x&t8Ab=qB_ra&g@j<>LNp@>x>0#<&mp
zv>V@G9W(h{UpN@)CZBfibIU*17dBe*xDfPi%o8&lt~+Bos_?^u+w|vwi-YT1c)s33
z*`E>*oZsMW+cEvw=PNMYO3Z_M*oR2{aor2&uc@a#NO$zp!g_QW)`!!-iwG{>&iLaz
zdj<I1&*Wj=JPiIdz$L%SQVG6|R}XwTe4p-#AHQtY-%T~~v;Uj@e!QH2!}W<iz9UcE
z(Y5jSe?6X0y)qxzpCg~RT-SPp_@9hEm=Dxn9e&Wga_%A7^U2u%U4r!+1J9E6FJI@&
zZ*sdx_D$-IuC2c%mK|ceVQc+F86HgajGV*=)7|IihVMRZT&BAZ>}wo+7vaQ#%cQjr
zzh}95pL`Ggmm&Np!kGsCRp7_pH}6HkcREeV@58T_t@bsun`>)Zo2zSTUD?gP_Ym1W
zKc}gtuC`__?`vn*Hs+tssmVT^SKXZRFsCLauQwM2GN-1cuDQN(ZcA&m?B1U}n}G>m
zIWuLae0^<m$p<1?{*C5Z+3??(eXk|YZE0<awbs?1*woxGE6*(uqP}r{bwmBESZgyq
zw9L$lErHIjZJd)!cZ(!!)~wpr>iS&VSyn-iC(dlCtDe<#q6x6{7JueH@$uDPjy+%P
zW74W$bpM|BZoYg+v5$}SCtby-)(IZ+v9q;LhS|&SKGS|N{<ZA`jLF)r!7f8E?q*)$
z{f&P9KJ_2R3GM@oe=B8dL+%6oA|E$@nNlp@g#)AR7k~Mg>Nj(w!TWDe{*O3KWcxBu
z{&zHQa9tH$mVXBgn%w@XcT9MU*WM>V{ceVJj&}LC_lvOn+w0g}L~tAGdxld1{;Q~G
z$Pa_hbG*r~1pmEljojpW;C~8!8tJM6-*%{1x_!^xM8EI4T^#!_E`)v^>A$4E%InwN
zxnugZ_gOIh`-U62<JLL3JkQDgKJzxLf4?&CQNQ;77Z(w1IR^QOb4#dSdw&Y`I}&!3
z<%#;e6Z^0zkB9K>{WYcZTL%AhAKdJireggc{XRza!unior|TY*5ZHg-S8RfuzrkyT
ztk2Xd{jZ)`x&{hKbnfLSRsGC7cf0j+lqL=~_o?o^9Hp1=e)y}Nj#32v!(DngN;f0C
zl)S4njnBUm|3dv-6JA1oE8PwMVToJmU4$R~tf%a2>gm|)MR~q#WVOUCGy@soe%jMf
zipl!ew0tkd`?hD6{w@6{y;7@sX35;;^+P>9yZzMVg5Ry22}ftW@O-gUy|hn*`(Lpx
zerE(km-}D2?>M6Y%evV3c<Fy$-pOg{YVI@Iu$KPlokOKxC;e>yc=P;bdF~58BAMr3
zD*2`Ta(Vw*dEZ;o$(cM_`WXp1=d4wp-`dI9UY={Xr;E3=_}@+LH9T2zn+@l63D1-8
z<kJS(aPHbh-WPx0NO;NHJ2^kse!e{awx4;vQb8l}oi)(7U1gj>@8xK{Z20Xv8vpa<
zJzf9Hb<;nW{7Vk%<eVgWcLL)OzTD~+GmevL`R><hAK3o74fbK-Jdx|R&Q3C9%AL1M
zB>ToDc#m!p8C9<7k*n1H5f|;U^e2<E{_vV}<phL}^|yeXvw-W~@m*Xu`<CNy{XF+s
zRDxeg{|LuO>o}KUoxBJBH2Amo7ev8-3g=7Ee+>MqVBgp;T>$=(sL#n?2!1Iij0dz|
zZo_ZS&FUZhhc@W{Ezy7cxGuT#Gn4&Hil}$G#5eU{s{i#m`irbrXuo()9_?fZ^2OMW
z9%}N7{nR?Na~<@jFpT7UyRXSd@&(q}i~A7CSNQ5R0r`?noA;RSE74x&zF;@&+i||b
z`HcLo2lclC`xiXOsl{Y%m#zQ(|1|mPV*1}j#t)*k`SzW+YjORv{js6+pTs%m>(YN&
z<&V?9`}O+ipXaXI`ggG3c3t|9B6C;{{W)WgRQ)H=zP<(cKT`A`e=L7~WOBET>Hlz!
zA7LFnvCt3gJjdEMO?%=4&%}R(?Lzn`KDPuuSzb6Ea}50Rd_oryui!Wr!lB;UEk1F%
z82t1Bhh{^lL^w%{Uj@FsAC`K>;~zK)seknH&_Q|VuI;k+-$DCuIra}e*&_O1lh?mD
zpkw;K7yW6DKbhF%6glA2gPzOq;0ddJO#PpWem4D6|1U2xcqQLOI5F5I?`&hQsOL27
zw!hHuneGhssWKcN`bf1EhQAp6JFIxy!G9e5^kNhK67ZRB+l_+Z!F|8aQC9`$Z+;E@
zN0-3^`W1=YjsAOsP4{)!(fAuE|9CzS`wQbw89wzr3E|PcQr|omJN}ySPknQr3fIHB
z2tR~+k9_KTJnXS=jkiTCK5@O({)PJX5PpR9Il`#|pW`XaH=`BDnT`Gd`K8K%i*T6k
zzrXsywZZle+m||j;r^_Pvl9IXZ=i{Z*-Lk&^zS#5Fg=9Zh5G%{lwYu&h3wa%J;VH1
zpLvh=b<BH&f5g1UGHc%BJ4uMPS9vYyBlptY<kiEP_qZ{}C&t|d?fOD){*LLU+dYyw
zt62X@&;QYj`-*iRu69|NZ(dvWu@iZ}SC$sY{F+{=FQk7X^o;ax^@<&`NtV31=03I4
zCXP~w{h#-we<QT-ZsvLN(_W5}-M@Lq#rr$T`$AXBd|Os8he=CJXgub75`8vtlz3iJ
z;sfcw39Z@Ayzg`p|3cm8Bfd$SI7uOIFLNIkS(GN?KJuZYPw1>6=DC;d<tWA3@LDY+
zAwqkdVB|?3w27m1;r`~{`$YT;@nX3!Xm*^M(|SFo_-{YTl*0#Me;!*P{fkfX;{)EF
z<_+2%x@`YQmnC~~pK`iCV=#Q$Db|l+2*mzA`Lqix=j40v|03)T`BmUQ?i%?W*bBy9
z>4A^)9}a{6%ZC*DKOFoN>IJsvr+|Mr+P5C+@u}ed=D@=6j|AVvxeyHJDDb0j=?ok(
zq+0a9GzI;0{_m4B#r}Mn*MBnHG5!CIb_RN2JW<ZSfY0*hT6Qyp7Y?%O>vHfTV@-N#
zXI=1jM?Fh^1^6>gD)i5MFP~q?XTHavH-_UOoEY>>KJ)#<vkJpuzCYv_@~0u3B-~|i
zzx?L%?D<jb|2_%)cRNkmKmW?>-y6~~{qwx0_`gj2h{mzoY1BW@gJ8O-|839@C4Q)X
z`<!AI5e)BCm|p6C4EQe2U#9+tg3tZ$bqHsU6;2HN1}mHe;Lo(eNr3-1wCmVTUJgFf
zO?Qhw5526I{Xe%6FPt68{!lxkeV`E7G1&XWYT4r~w1teP=@t8ztSJzhh58}!u{;;r
z3D1)s$)0hcJ9mQr55&LFJN?Z)|G&5^e;M~J+(*BZZypQvfnxL<s!Fp48-FQzrt}CV
zx+8K9t`h5$&>OP9S?Cw64-iev!w))A@9O1!Wat9aPyRn-Y)YuSuX&z$PtqsUFxK2h
z-xc|Uz5xJY|B>_w?V{sAa;2XzWbS_W-*Zs$;L(65?*FCQr-(KG@%6c4p91H*Mu(bw
z(zcLZbXh+{Q9pc-_7QPyd^>X9u)#0S!6ZI%^P#X?%>Q%H4`aDu`PdWl#^k$*fa4tT
zv6HhLsK@z~;}EmRH;TWC;b7dT0(v<B?Lqc$!r(7P{X@L(1O77W{H;px-^4gH^)QnD
z(T^m56!@Q6_Fy#l)E`}sKj5~8SFhCk<M~3YU(V9{<^8;UbNB67{+$Im{KJjD7~Nsa
z57dv$r!|9Mm%vA{b-LnQ6zYrP8!?2Rgn#Di5{vI5;#({}^K}vBL^xsiKLGmmz~2Y_
z_A!NW4g>!;2#5YF!N1b-KOFpPEdL|Hf6;0`$gpwID+;a$_wmc32W$H*h4RP#;haV(
z$E)-Cm#*ws{;?hATkQj$GeSPgANz~xPmF$;uk0_TmzsVK^NIaMhT|d~x&Gp#ENA9H
z?)(CjKju@ZeqpEWjT{c-uR{12p`5YY90b07Uc<rQ^E(3!=MefQjuF1mYRCJR)EnLT
z57c~6tbR+@nFyno8U3vg#p>87^_!h6f=uf8YCi-0us>rQhh8|J5dWr|qclL~1A^BS
zxli6Abx-&1S=zy>@0JY=`gWY%<hgg7_;<v=&=AZ2F)Sc>EwhFAm-(#rZ@XoQ^AM@8
zyE#g&ct0t!DW&B7WT2n<hIKzp428-Y`Mz70+(9NHzgu@lX&~+?byv(!h5y^lQJN<8
zdtBsCcIloa*2ig)Pw7PhjRC-2W!+c!E9=#Mwp;bz^>GP*a(;X`I?^CzbG%QN_1^;2
zfB&oield^9=$dh^EZbwmPbKUI`NYROv~S60`Fj!VVe(x>u<eAxcq<q&+S~L`wWQ;P
z{%QA)M!fzYQ;t1^b1~v2zY6@XuQK6~Z?q)eEk}Ev{Auvdb#wgwUKIS_U0o<oyoCQ{
z;FogRtp~q2z5i0pU-vK*KI_LTTP1(HOFL@^!}mrT$(gTo%P|1V{QVW$!>qp;UBcos
zf0J97@aaE<7rOHtI;$S6KzqdppX1LrA$;;(gfkQ8%&@(p(~5dcMEH!Cc$g2qjfdBv
z2l9!BEw(Al7cU#S<1}FWF@5l%Sq|~A6~ZT<`M%ilUx#oi(SGn_25$?%FXd3Lbd%>^
za85D%tLJxRFPz(@^Yhvyr~dC0`<h%T-_O{*SC%dp`xw7i?1|hfMZ`YoeO!Jk(O&tX
zUXId?K_>XvnY|pPI^4IP)yq+O68#Tv2N|CcI-C8I(GtGUY)oLME|>8vq2cI%Bo@nf
zlF-KpFLk9n7Yey1zC=HHF0?)FJ^8KlFy40u%lZMKzR1AT0C`{NFL)lQkhBTyiRWH_
zd0%KG?xU5x93^is(l=1jCv<st*#FHWeM)mhKbMKV#z}gFwv%y2z2aw!zJzYAF!zZn
zkymJ6G@vqv_i~ix%lMUE?d1}d5HGv@Ui|f``hE5vl;1^Cexrf%>+EmJFY}i!%WpgE
zvxj*E{}6*)##>?W`Tk87{$0GV4CR{T1<7?5So|>j$1Oh8?L26O@4^4o7QYJo6;?PA
z@Q2~Ms+4CM_$OQZDEKd1;n#uxoW+lUpXpa<2Nr;zw&d}_|I7+!G5B;D?qy37+3$aI
ze5M`aGYftv?cYHDrpK9-h7b;2JAa2FUVi5e-knE=8u`=RjGf{8J7YYJ?aFezaGb?w
zcm8|o6XT88R^fbM@ntw8dwokiz(38>1+a%)hv35hro*6T_^$x}0N7Rf4};%6(D?UP
znsgCYe?WRYv~xZ9pL&4tPkt5nt44$0*Mt)Re}=`c1OG9$A0Vd>ewpQtzvuJ4i`nNx
zq@s%cQEYG@Qw}v;)g|+#Oxl~l_G3uygIBqAUqS!VMFOD{#dGkyJg&P*$hVP{*j~;|
zl<zGGRcPZpa6KyPZuCm+QkJD*2blYKKlz@MP+d23&;O@b_vg!fP=2<L>7VsUC?elu
z5}J(qg3sCB<$YZ05B~}nF<~aO{Tygt$JoKf3kMOHxR*~rW!u}a8D)-ASBx*k`pdmg
zHRg4^0cDQT3Cu{mzg*@cw7u>eD-V=PT;nZ%;>t;(&hq`{$dLwLY=14;zDw38*Uu*o
zG>Bui(!Ht4yvOzpgYSZVKKW9eXRqn#-;qyAKSO_>e9mvYhVno@@wWi;zT{KA7o&Yl
zKJCTn7N6yOT&z%j7jjOu_);9Q*O6|a{|fL|Ru=NvovXpP8s!PY|2OD|kiQT3caAL#
zhxXzYjPKL`NcjI7#<9rvz%S)c-*hj%YrAKPmH#_1|L5$AdbrMURA<!xkL@43`}TH}
zO7)LDd8X9S{&7tFDs{AfOuevw9G7>M?DF5y{&7m)Rbu~`;g{+k^Evy+PNg7Si1VTG
zS(`XYC!jq@|GoN{U-24wE)<dWUGO>$_8~KS6Gy2W6`Xgo%xwzwMSCuukoSd3UBm_5
zdB<!PDTa?&vk4)2sIdzxCB7g&esukCrRYPbRQ-^?U%o9Q#QGuhfap%BRQ<qovVP$G
zPgOr;u9EL139YMsI4AbQ`XT%MKS`@El-aYezW7e=gV#N1zmvC51?)W-y~gs1afh8$
zc)!nHCj5xVsx(I44_;+rn6mW;nVq-I?|0EJNxIE#jrv)~!SmW$YZsVrIv#prqkeCa
zPv(qpYa6R)Hq_2?XErr8jBs1(+FE7LM<Z_QYOCe@lt(q!x3<=jH@m5+)#mZFDYf&e
zv)`K3-8C(>CroLrZf?yohV3)LZLP1F+hSO<0Vl^fKt5HOyPsEUd6-ulcrHO6I4&1n
zvq)FpI476R?Dm!Y+h#{vn<ZWIVyz2{Kbqav&`>4smVP=_cg9dj1;J{ZqCq~JqaVhU
zT{n_i-Rv{9dS>oX_BBaNmfKLPK4hEFoECRpb?g}PJNsEp)q}a6QhP!!ZMy5|sHWz*
zwapW&XVx~fxX0|B^F6a|_QWFjE9}C^jVem-+%drMfFHVJE<Zb=<LBNXrd~T2{Rg!l
z{vrAGJ#NI<5w;WPs$J2hpA?_$#q~YW1B`#Lohv#1{IsdBXun>@JW~81!*}t5z5ZC>
zpS{-CZmrEud19A>cFO-huv4~OS|W-Jwo|u~ga_NHE)@ZNJZjmUgDtyLZrPoKEW2}r
zWoHIzeA-SeaaG|F-P?v;wW;EV{m=1OAF1a9q_@c9CyH|d*bbzt_|YqaaQ8(&&F+8J
zvcKmR_CJ?kT+aia$+?i@eOPzvWn+;!J&sf0`wbEB&p?0G|Hy<N1)uBE$d7^lIr@jm
z-p0QV{;TNkrMnyc67a7>|JHro;5-igZfHNdSP!=h{4+3)>2@>z6X4JEOgZIuAd=u;
zVa<!Cz`q~k<CJqH`19M)j@`z{nF0S(_7}kCzK~lmAL-yb1TONc4C`i+=*L!qe*@aR
z-ar$+NB@YY4DRyC(+i8WUp8L|4`WRF*9cCu%M}9qQn+*~WW8Fjzq&OW=J0SAJ;Hs|
zx<4H4v())r9Hr@|dzJGQweDwI_YKy4vvt3~y59r(U<6zr#{07@|L0lv?biJz*8Szy
z{WaG8WM%*&{H@jBz0LA}w{?HNb$=ZC!<4_yx=)Vf6XQN--M3r*FSYJ7VlaaFyT-bA
zq<<ZJUKm^cZiQnMzXWc-S?BZ(t}k}ZIxOpX@g$Q#_OC-nMY8;I1Vz_gx5SvL_B7?o
z{@&7ynE&Q@8S%VViSM(<t@U;?Y>~ZU7GL0>y&mAa5#~Q=XS*SM&Sy~mrV+3wm~V3t
z&Y@g?VeKcZ;<`Za!|=Z=>v!;3{8Ct#&v-rf->fg<y~o&xD)2L~&kp!T>#~HC_6_`L
z@c*U7kAgo7^Wgk0S{?XLLl5a?#;(M`{{r%O&l`E#fe#1irToOre=xog#rI_6@c$|1
zllZ;f<=}H41=E#e_=uklizVF;A6&e+n0<V9sd*zl&!j{5IrSG7@x*<6p<8=8O5D$v
zNXY(0q1?W{TY5SfCG8xF5z2^PCGPXfh+ifDcxe~NzP*(ER^q<D@NKd`Qi%KiqVijb
z`vAidmJ;^^#^sq3_XVcqw-WaUhHn@DLfj|VE^#THF5>BaL0_IJao=D_-c{oM!Gt_h
z;y%KN#I3~n|Fk?);=aPnav8rA;{L+){qj9`A&z$@<y|H2H*`c6CGI<P<+l>|AExA8
zCGJD?<e3upBSz)7689yxOV~=>pO})oP|A&e$nUri_bbN4uhL?y-!mw1oRNL_%ebdk
zNINnxzPUgQf$n$YwZks_W!!1jJ@-ZW61NgB;*xIP%&Yqq!)Lbz=8brG?f6XGEBPfv
ze5UW0{1GBP+vS-O@#!uXeG3tv?gMf!M0`5(TZ#CLieDw-vt52G5uYguTZ#Bg$ulM5
zGjyNeONjW4%5Np&Gbyqv5uXWprbK*t5|$G2nU-ft#Aim+CPaLOBrGN3GxA4~U5NPf
z<+l>?nUUX0#AjIERU$qk@>_}c42xeS;xi`Cl!(uE`JE-~n@x&eCE_zCvMLdup8QrK
zK11SH>3<8KuEedxi@2ow(qH!eM=^Z9HBaVR|0r`P*f(0rer7Hf`yfPo#$K24ej(yB
zd69fyNr?E2-za{Ch|lPoWsVZ@>AxYrg^17eO=53^h|lOP;$MjPbS{zKLd0kCR*6rD
z`1Ed<`3524GntU*Ld2*0TA8Cne1`8VbCh!Ul(;=1;xl}gJQpH9LlU<V@tKilO2lX4
zGMNt&%Hi`mNuLn$nOY|HP>A?!zq`y)B0j_SNPI%Xrz>G85uYh}rbK)u?v?n2Xg^ao
z$a5j$Ga-4QM0}=xC(nh5&#<ILiTL#7w-W8Ad!fWHRLXuv|1S9>MEjW(ze=>9G5M`T
z`x%nBm3Z+N-P`Xuw&?i&^fS#H-d=0BpP_f8ya^GX-uqG>g^170+hQM-P`~^C5c?rS
zeEQ-yOQ_$Ya<4>uCdIE3@tKj|O2lVa;#ML)!|%$y5b+t4-%2@r%I~C54xbX2D@1&T
z-jnnQ5ub61ONsdO<e3uj8Iib^h|icjQ_A5}o+X5c&$RqjB0eJ$wo(qC@@~5j@tKg{
zO2lWoysMPMr#wpu5uX|Ptwemf61EcYnUcIvB0l5tTZ#CLN!UunCvii3^1c*4`JDLV
zJ@LtV;?tM7m3R@CboXlVCKt1xSD$O%NH?t=pYb~+eM;j^`!R91=u?RJ^yQfn@fo^H
z@?VJf%!pql+Rv2yRw6zl;x|h&;i>0OBp;FTC`5cFC2S?)GxV60M<L=f@`Bi2A>z|}
zLhOMM@!2kMDG{H(#HU1jhUK>s@tKg{O2lVc;#ML))ACG-`1I}+JPQ$@G5M`Te5U2M
z67lJXEK0<uE5DV9PgndZ5uctsQzAa2@>_}cOo(44;xj6;DiNPy`K?5JI^tL9e+!=>
ziCc*maY=X5$6N1E44<E1el*>X$ER))vHM4<>jh6j#HVw!#3e+0CghnC@#!rSeF_nu
zp7>QFK3(~(M11<<SBdsBA-|P~&y0pGM0{rCnG*3CzESiqM11=4TZ#Bg-z4}DB0f{{
zOo{l6N?1z7rz3uqh|kasqF*86Gc3=Ph|icjQzAa&@>_}c3`y8Z#Aig_RU$rP@>_}c
zjL5r6#AmxaQzAYS@>_}cOp9M7;<H_Jr9^y2<+l>?85X}vHa=e>fZ*Epbayk{lk@dc
z*;h|wQ{qM3(w%nU&KDNL@3~i*H{yG&9lx2^1usIxuPe4(iTF*)GbQ3T`ljehi1>|)
zUnSz#liy0jZ(RH;5x*(<twj8W-jMtkB7Q?}$-NNq8<F2i#BW@FD-pkr#HB?1X5^U?
z@#{-mO2n_5mh=e`zhQ}6iTI7kGbQ4;U7jfsze)M6MEr&&Y$f71ChsZ{zwPo{iTI7l
zyGq1wLY^rRzbW~xMEp7uwi5B1ki1YLetr3^MEpi1Y^99_zfqA*i5GE8_o<qiH;UnR
z$ra`eZ{XVToBE6BONjV&o|CwQh~I=fQzCx7rv;xv#IGlQm55(gek&2bzW7xleiQOr
ziTKTE*h0i_MxH4Vzu{*DA40^hFTa(D-}JL$pM;3tlsr=+exnkW67lPZUnSx<^punr
zA>ubI&y<MYm^@P=e&h06iTDjk*h<82MBY^*eq-`miTI7kyGq1wyF61OeiQOriTF*6
zUnSzVU38^H{6^)s67d@rze*bmem#**i5GE8_n}|C^JOvo-Ua-o*MZ+~O42Jt{6=3C
zeFzc1A$g`m{Kj7pze2=sT>L5#zrOw!B7W22SBdxy{Z+yfB7P$hwi59hk!MQ8Z@c_f
zB7W2ITZ#DfBrYZ5H~cqAj}Y;jl(?0M->5uOB7S2Mw-WK&F3*&R-;_L4B7PkSONsc6
z$!{g%HzDsT5x*(<twj7LBrGN3HzUuKh~JQ;MTz+JBy1((H}kys7b1R>@>_}cZI`f>
zHWvKGMK&c~#4X)kPuK5X48Jd2X5R1zt=;~H9uj>C5x?G_L|;P0Z{|VKmlDSh9u|BG
z5x>6p%@W5C<UT4y{3gY(67idn-%7-9SmIV9e#4K*y%6ymliy0jZ&H3M5x=g)r9}LO
zl9C=F;x{gFDG|S(JX0cmBNDd~@f(w8O2ltMo+%N(Y5A>0{6-{fCE~YT-c=%g6Y^V$
z_-&VWm5ASzJX0cmGxA%B_;n?0CE_<Fd7(u7#^tvX@f(w{l{Oaq`XZYWFXEPN<CB-(
zT@1g^!T!2~*N)%zmqb@W#BcId!G{p>8<S^B#ILhbWDz2Mo!8`Ei1s%v?<x_$p7>QF
zeq-`miTF)O*h<82LY^rRzZv<hMErWMNO(fTZ(QP1B7WQDnG*5q%DYO$Z&IEq5x*&k
zTZ#D1$TKD4H~g}cCn4fDD!-M8-<14TB7Q?6ixTl0mfuRmZ%F(q5x)_6rbPV4<hK&>
z8yCMy#BW4oRU&>}`K?6!X5_ch#)4l*WXTc$Ox)7l=1}j{V)*?C_BXi>{Kg&=eF+i2
z@juINA>ub8&y<MY^y7k0A>ubJewB#dr2JMQe%&WTze2=sM1KnrzwHvX67kzE&y<MY
zl>AmAe%&V}JR#!O*SLj<-<Uj8B7PltSBdzI%QGe7Hz9E=5x*&UrbPUPB&|xsuP48i
zh~I?#Rw8~g@~#r`8xq-+h~JFFr9}LO<(U%k8<F2i#IG-5D-pk8c~^<}b>z1a@tcz0
zN*fD)(~k;1gm^8%54y+IjX6cv??nzX>oK0f`p=siWp3=N{Qhlsky(i$%M7v?U0s)@
z7ti(MdDhXdjNLX*9f#*xlh5+Q?^t+;8vh)hOYLRk;XbQ!1oQ^JV?n+PejNL>-Mh^C
zjSBE%Shq(1VeoIT!l?xR-`GFK^&TGh<FU_{=K@xNAH%*9@{N`pXH%@7@v#nP8vKvp
z`3d090RNf(NH6%uf!`JD_dM{U;4g-L9PCe<3I6ri|HAb}HQ;+&oA8svjDBW;|H5vD
z&v0tN-;?WV5dLiN)6fI`&jCMo9w_|Rfq&Ni2p{W$V&J##hxEe#0`ODTIb1&YtFiBf
z>uMH*--7i#(JxGR?ckSk%J6{hp#7fOwV3@rVW{z#Jk8{2L>4^DlGfb#@uE(JG5l5A
z$AN2AC~zY`e=GAJ!K-YW;GN^R+^_}q6%t?YI$PrloNwV-{%1;fdVV;sezL(Sz9fGi
zmiyrMxSrGS1K|zak#8FJ^uk-`6bV1Lo+P31%X!+o9`DCr#!X0nAQ<08qs@JMJDDFB
zx(4^{+sj<8&=abUfIQ2s^i3XC_<W7^d@o&u9(bSjIaMz6ze1tTMlSxh_Y?Ki=YjOx
zAo~x!KzOIg;;P{NU|D|?)NfkStM{3|^)Q6{(91ofz0|`QZ|zTfP{I$&+n~<_@ja%`
z1J`g%{zGLydGMOFUGUCv?y=T$@+s{oU1!JfNwxp+LrwXa1^ch~PoCVxiD2Ee>zi`G
zVRE`!E_5pt?OU=-VR>h~k7Aua_rbCJt-?Cz_?$xf|34{T?KM4|4OzazGkZ82Q+e`V
z=uuFfB7g6(LCaI3S}<+l@qb#L)>c0JXL~s7Q$E_C?%@Q>NBeU<oM8EgJ=24*{DIq!
z1-4~y``@v=GPu7X=^vJTXOxtWXeNKYly{~nA2g$M**;nUeU(}-{DNc3ja@!I;yPB;
z|FZiod+{7a?`~6{v$~mub^+TREazd=!{oEN+7I!j(Qa}PejVCJ@im3*sc-riIqmk;
zi)a^krx^d02&WzU8`38meggbB+GR<kD*=1=HT;vm9Q?<yAD8kc!GFc#KMwwkGUzjE
z;#~p$Fs$?Cy5JR?8i8VHcW}LS3jA%*K4QMC1iuH@O@~bQY4AIv-4{R5@YjGpo$INw
zewp>x4#?m12(*`hyJw&Wo<|V^e+c$HQ~q-BYZpy22|@eL1^;o_*Yq_e{0i_tVK~r#
z75HJ;Z=NqS5qxBuvurQ(YYE&lKOBEsuza{@nDU|LQ%3jhlKZ|}6z5d38l=nekzPmn
zxV*bbU$V;RmG#HTz)^g-NnaTr>}2_uCP4P`fm8Y~N5Qe%>lNUaWBoUAHxT@r(O&mA
zH}ZtR522k+eiisz5ihfi|0wvm^PE@?z<(X><6JoafAbTd2l!8d|Doky&r8$m1>gAR
zIZ`R`9qdnF_$$GmZiSNu|2N>fILAHLzGZ&~?fC2=)Dmw9`x9s<%CJFUFwPMmpZlu!
zU_S@pl*507b_IMF{0Fd4iTxbi|D#uD?yoop`2v0%b}^0bT>4?-zX9=*zXJSCml(Z~
z9|GQ+&M)Lo1K;kS#KCvE49)M;)vc(xJ)dUFs_rP&J)yDcSz-5>Vf$paeO8WeXD)25
zZJ8w7LS?fq{pc>yX4#KBxpslsW~=*d$vn7eW=qzmG8<#fO*Of@R@tp88*>p;<B8Sv
z`PUm~H8s}ee9GtPviIEZ+9;cUN4Ryh4YAth@y*rsjr(V}8k^n2jT0K$TI$AC%je||
z7pbzJu#>3ASGQIN@AscFC3rg}R^3=|uX|>LjKi~E#S3tl!tp98HZE&|3br4sC-qRk
zoH=Kbun(6_y!pMsCQ0T=Hbm8KR*_A!YI8ek=hRG+TiL|i)LPx3+p4L(`o{X!`fA-!
z9Gh4_-)K(rueznBzNPiBw%WE@-QU|*)9Rk&7TcGto2>KE<Tezy2KOLypRs$&2-kch
zaP46>NYw5z$1>M~ueY?Gs94B-UvOUaf`a?jDJRy}#-`Rb&tnQ(Rc8e^1y2L}vt!k5
zEwz)U&~Ns(U_ZB{H5SgnSMT;JxEoS%cVJUBOGoKl%<bAw3|!AY@w<Jc{#lwi#FR^(
zkJ9N>>5sjgZ=a=q70JHk;$6C|e?sWctO=QLXcyt#dCVFYV*RrX>R0-QxpWT3eoyk*
z4x4K6DM#HFh4EG(;*mI?h~dCIIeo2g*xtGi=S<PRhj6N_aH_!nXnbM3MoW%!Jod3N
zoN4fXhNXun_{X6>r2jhb$6Eel;6HE4xd8mLt$2O#8!Y)3gFnRb-wuAv(&rNJyIXR`
z!T)fZLOm=4|7?q&0KXjVGp2Vr{UcxeYE%Ct!QX=I1@g<xgB0ZSt@=EHbdmpf$oOwR
z-pI-Nob~(?=#%v!>-o(f5BV=3oL!KvxNqcS{l6STI&`;v<dP4A?Ymjn-+kD5QocUT
zmoKk9k`=HI(o2`+s{-ZgS79SRzfT75&b4T-`9C-El;c5n7x{wk#)iSa-)cuxfxpHY
zKQvOwd72h~8vH+uegfMgQSi$x|8?Le(Qcyu82E2n?Ux1MS0P>W?}NVz`y9z%4E}Mj
zC*-$--)x1m1pJ?&|3m+A@I%(P_cHKv-+M!QDgi#fE5>k^gI{OqAqoCsv~%fy1^8`N
zdoTt5#Ql+vI{|OtFW~;ltqnf|{uhwnLHnBf(EBmJb~OH7;59TH<pTTtE5Tm^yd`%q
z{;R;>742D`GY|#;!3mHP{$t?RR2sg!x9Mjr27fW+BwvOAv)4@Shke$>y9|8JkHkMU
z;U&OFvYim_SAp^MD~IhAEPo$kd~S7%l)umN<uCcWNcN4sc#kg2pNH~yJj)a84dZQO
zKNtKmJg~<rLf~hB3yvF<ga7Du&>zl)cftRVdIg`u#V1()E8xF@{S)|?;p^;Gf&Ij^
zi(&Ai;B!2r68!fOKK*;(&td)}z2m{pjWb|8qze4pI0N`b+p<&<<&Wb7)8PMYlmpIJ
zM8W?(aKv$jI`CJcJ|RB_{(Y8y7J%Oy<%Z$=;B#Dp-)~(E{tEVcI~n}8gU@jrALBDi
zz`qE%rrwg^f6RU4$d|{#e;a&$pI`;}Bhc?<I4ST4gHQh}!M_gkJkAhPZqnelV}6f%
zUIo4nKEug?{~*gf<Xi*((=mfjj;nAR_EhMTeA*klmUF6fo*{7EGw1qkwfz~MWWr_p
zbET9|_n-Ol8U1}E`&NIvOPA$yG0G>u)0VW#=XBant9*9uit+}22;oo1I32?&2Y;5u
zcfoh9efkyP-vPWboG|zUEqhT3{&L`k{yp#?w!*0bKY?)q`Zro~oHE)Aq-z@dKXqVX
zdZXZf0{hQ!>cBtMEA$@&e*x_a!e0RXtya7~_`P8-82)1LPq*5E?chI;@=yOuz^^1O
z5pNv)h?OtPz<<uN*9q|N2aXy3a`5NF9@*_rAMxh+W#$FXvZowR`V@NeAt&3Pm*U(Q
zyZt$PSEFaPGui$e&G8tV55xB7nw^aQD8^~n{yZ6Wf$4Hl-j1~J!}H`Gx9}E*|CGhA
z1b+t$51v(?ebm3@a4%@R^Q7SUAX}mR8$Q<*Se_3OzRV!E0{KAqrtXFK!()f%Tri!;
z4(H7t#y`hjLwI2t+Pm~`Vso4efLG=d%ZYFCxz3={%I_$`KkDbmKg`qDfnR0$kAWYu
z_^seygnXqvX1O|_<I~o8x4WEV;`Lys7bBd#QQpXJ2mdU#zu}+d%Cr2(;s002Z-%oB
z{8ynL@)O{n06uZda`igK52@z|;eV#3=Op+CBfqGJ72qF$egeZufqyje-NX3(O7QJ^
zDGmNDD2K$uD)2`l-e|R{=QH4+w!P7_yRG4~e*3popH~3)m(spN&jZ0f0_BtSq#PNN
zy`tz3kk9t_NUL7;;6H(OJpEUJe+ld$`4RBDz`m0|4SXN%Q0gHH{$h(?2Y$Q7kAdHZ
z>1BNYKGc_U+QH|0cfWGZs$lzkBJ9I1IzK3xLi-TCDv}L@?O3|3|HCqmu2&d(jN{xZ
z!<BHxqMV@L7Q%z>Xcw>_Ru2B3wl)5v?;zj7Uk-lyZNskspYwq3Cx#ye|8LMc!>?pG
zDF4n!22URNVdOXcF95%v#rMJQ4!h%_U$_|jFHqhXP8|G~fLHRDfghngvih|(sGnKh
zmc#$@66N`h?k4@jSrY!2SvXz+{=ZNj*pEzsKaJtvRoISQL43mwu7dx44n(}*e+d5m
z$amVK)!?6k`jGsOz;|Hp$p0ApnJl*m{}b@XGk;<CKLy`Cp->)a%4V-uC@1`9z^}#p
zCd=U(@E=0F?3XzxKVP{feBzDv=&ziAL^%w>|Az>l<3_BX54Z3ThW}$NKJC#O;Dq?0
zJz9=@C!h9cbzdVV`4NO~&x6w*oriuu`(Lz2z0nTx@qJs`qfKacU}t@V@1tEz94-dG
z40@%TI(Yu(#n!JqH_v$VmPN8Z^n8;E@+*Y*kAuCzt+Pn(gX_EO^P^9<{P(5-Ljdo~
zf`Z`tw~sHpA84%~%ce81-bv4&*YkFHeZvI`V07hz3f$}Z=HR94n}e6GXAWMvo;i5w
zdgkC2wchuw`+G&S;QFtrl72rRe_Ymk1+OLYeo!Bt$RE7t`sc`1vffyT>z|#ttko5I
zwO=qa$2rbQzpjrCUb;RycyT>+{AyWmEyVTDDG6Jtm#kk4UP(*-hb?{eJRs=XaV`~k
zg6Hi`$NCETYO?OTVt${`(^h&$u|o_G<E(ahov!~2Tve9;iI)E(tovuI^t4&wt+epG
z+LDj!fha=E3ZLr@W7o*~ccJi3^l9AT*8Nh^k56MIUgDO%R*QT={r<^H??7w)UvF8`
z<ORa}m9-u)bdo#|l&{)Y;r+vX3gz`^V8D*^AVJ)pW<3uLD15)vT{#}m4n4Si?})aa
zQimHm%kPV;{qnEv;;cgZAPzf*VG@Tf?b<Yi%kL}4k27|Ua!h8ug7yK$@9vm*-5#bL
zL%D+XF*LAefqhKLeb7FJ2g&{i%O0(deT?ki(^;E+bocG)tj#{gDrG-I0I%%}&HfLj
z-QUmb|H$2sF#A1tukQNTM{ktui3r$7Z*)(mz&?)c=>+X#Xq?y}%f1BdW8whW(;@Pg
zvX9Pzh4wKd_d)xZtm;`{AKgRD{*hq%)@mOQEwqn`$?LF>k)BS_K86nK=>+Ygdw9<R
z`{+*T>8y`^Oiq<O8-e^xAJNkZ+DGrmp3eH%M}JyRCukr2qkB3*`<R^G(+S!~|CpZ6
z+U#TW7d@Q<`*>VWCukot@_cRf(V4Y=_Ay*5_zBoYe~!ez7W<fLlk&6y?W4bo;FSgh
zAPd?@cW_T<ZT2yGl-Q3F*D@HkGPvbS7W_BZzg)@jC+T0hpXB?O$y<%R8;)@4vVZAA
zf6HO-IL|;aD%dYUe~!tk!Z;@TPaa<IFrL8neiitqqFvAMX@##tJKBB0^oMA#x5xN(
z^gP3lBAf);#on%l-wys*w9^^>67a9X{07%W#_1pFW&dLt_~q;eVEt?Ye0v@4a`2-Z
zFGf3^<3Hos?*Tsv|2v{z#eU%m@Y5WBfd7@?UxfZ*68zWce@jz8k)H<Np5J&E{LeY=
zjBr+ge-ZjacE9jdjMtGbkjh>e_Jh%1WWVrI&&Wgn>=!05zU*23!V7mb{)wM25dM?w
z_n@D*2K@7S6sFffm%v4Th~abv|92Qqi~qyC$A08{2#4cuA^5+N<C7TYU_X-mb<StH
z@c)B#(BOY;;hascGcf+<G#K2n-}xl+#l?4_E72Z)$l@;mKMb5Oz01Kr67zxNKM4LZ
zj*FswlLUVv<V-$c+BaN>J_+Nc%*PD;M>)=caQ+4UZ5U_r!CwRZL%=`zY?#I2-(h<T
z_AG_@I*z+?-Bkj7%2N*iKUlX8{@!R8vS03kzY^(nSDN&4-ATEnpK0*l&*DeHUkH5C
zp45TACHnUaKL$SAk@1&IzQ@6LcdHn%`yK-a4c;?6boj_oqsNS!IB9ZZ%JgIU_Ud_T
zv~FIDTjB2EdTzu$rhlIS?tqE`y#~62Mh}`jXkIuxWaw~rggbW9xSDaZ$2E;>nb<IK
z-o&PftrOcO)l90L)Hr$8<c7&jkx7x7$gD_hWOk%J(iCZ#QZr@llzCH{rcOV)etN_7
z*z}eeN6e_6F>}W38I3cVXSB{}n=yaJf?n>iy{hNUiPaC7*V5S1)DoN5EW)(4oE$!R
zuTy%t?t!j5$rZ77uW(1Y?kLxtJIb9ms{e4e|NLIN_1$fdT+Oow4<5YNkfFnd3>`CO
z%-C78#>Se*w#^w|TXVpn6DHKooX}i<U~Owvb>qSE*Vb@wTjRv)rirzUvcPas^}<O_
zjgy+2CRb0MJhy3b)BHngS|j5|O{tb;ov|rxjZ^E|rnc1{F?HOL)%8c!&N_B@uj<BG
zv#J-?HqM$;BP$MP%c@QJv`S-jV`F_o)6C;zHKXLiERWvP^4x<h|9s>jw~t6Xa?~hy
z)Tq&}=Xvg={RhYzP1mh%b=}#qQ4)gd*2{fE^KiFmw(B;@y@cVm#D)uv+HJ;eyA6<3
z50EtPaZuyzJtW3~ZlgO$eh-r0gXhHN>@7(j?#4zjim`P~^TyRx&l_LeQg`5?2ab~@
zFO)Rb9#Y>pYhrCn%S2hFDbzNpzPd?Pm)1|NJ+V46c4}2b){ag&u{t)juDX7zEH$0c
z77q97Id9alZsRBsclVjqEw#GrwMJIw)>OCbB{W26Z=rpJh6)X<sT1|c%F<c2jSFiR
z)Yi;yYpj{mR6nb(sjazwRzt05tMd4krpCD<i>?;cuhKNia@j^%k=zukZH$QwvHDo;
z32pVQ`q7(~nay)sYUa;rscSk>Ru8x85?EQ)TC3|-v+IW?=X<$TznD5o{#EP0Iip0!
z16}thy%k|xx2Camlv}5_|Bt<Qfs*Sg&qPmk^;<1<>t$P(v5#!YZW*anRbBl=viqe+
zTaRwkE!*HQt?H`k>O$33MLi@nFm#)66JYKTCy+5A8PX&Z!ZLR<o?#M_NdVz6gjX0(
z0)$DpH%dr|8JM6&Zia-#Soiz>fA4cnRd-tqxsznA;Yg>>-uvwL{@?rGrx*ElaSqXJ
z>MFn}fgh}v>z1>xKju~v^Y|%XQL4;bMdofS>cK-U8j1Au_e7!uv4KI%_ffofXf%~e
zECJTCxv|7jb!iL^$Ct*ci`mq8u24=NFO~8I{1i$jOX>8b$?`<Dbb4`#e_E%K&7a9G
z%~$dFbP_p0VR8{bSXrFPVAZBd+2zDkIgv@9ujaGK89KerCN7n-vx%i_?$Jc9iiL?q
zVpxR2l|(61JeDYx63dwUB3GoyB`NkM7gO0%lHFKH<oHv~Rk#-2nI!%iP^J*=8N>`m
z`|;Bo!%u%a$LU>SH@FV)14rXriC8(8O{T?jo0C3x1%H+)?REo>+uiOf1ZC-yi#0DD
zbCd8^#&6|nW!OztOPKDZ!w+Fbi-#XtI_6$Zl#0g=l!3ct0CAz>9-$BLk=~&Q=Jn`d
z0?%kEF`rEWd#mNjSShi%lpRl$vWYwZ`qENjys(5Wju(pfqfQg)T)L75ZUY-nPMx2c
znmt*lEM}9y^Gr2&DuKU*ls}c8FQu=XS}rc8^QYl%zL-6|Sa|KF?3r{Cjh$IeqUJNp
zDg0sqP|vyQ(tNsfKK)wMF*APZ_=G!?&Eylg8TlhhAP2}ZvyA>EXA{}EGwE5jRhdoa
z&|jcUBA<BTHT0POk?O+2LaME@TuhgVHvMsq?dak3LOP#JrwJKuTHX>#hF!eOREybs
zIbEt;%I5Hwv6ixV{Qa!F^ao@movf78N%XOdQ6nt9;)+$v`d6IP*Skz7YH?<c_NzZR
zfBWM^m2ArGE+-S9FY-9(c4LN$psr&=gk%*Ta#PEIk7MF7UY5nnM2@-n1wb%p(lJ1N
zd-wF{xykWkhg{+{9_3{$=ppw?B42S2M+PFeqC<ToN<#zvM3~Xb1fTp^I-g18vRG6O
z5bK!-LW~#kmoet?WnfXEGLgmvq$|gBn6pIw<kZCRu?r_pVjU}s2`p<hUnqctR}-b>
z)1bGBRN^cUJdsTb3W1&j$N{!zmlOG=L<xkvfW@3DFD3HJiSziQT|l;(#Y73^@VJac
zpUI|DKsjAwEOmY{kxP&S;+Vl~0=+F{X0!8YR63h2;ct{BzzWI$fmiD=+frE1lG}Ef
zNO>$VUno`5srlteP{6D3bmz5@D<ptn^5~B*XksQQf29k5l#5q3kMh}+F16y_uv>~o
z_^uR<>LaF)UVX&%(I<~V{<@_heI%|*Y#s}X#CeS+^^wX-VoGD_1wvA3A(uc$N?9#X
z)+}X>Rl(Hq8RO2cFoy#G1x!y0t4=;Z@B#&`<}c;(_uH_P<!nI?cAy*pB$504yFhVq
zZX*Mp20llmcbAd{{Eaw3m%um@Nz3p)pT2^rFyNK~(ZGp}G@k{uf{6wcB`+O=d?M7c
z`;fbUdQyNra+YEDNG6+_14B7d)n|NgFh*KET3SlyvD#yp<~$&5tWYd06&4C()r`c)
z7t^J}rF426h@AtmgWQlN8JMURa|OWCagdEdF`GPo6$ptx!v=|>L>N4g&82xd<7B!}
z%Ao#})z<>JD%q3O(o*%(V)j(F1Q^OE9!XqIu-((-4~U;mEGHJ{&ScM^^+aiI)I7(|
zCKeMQJXr`K(msgMiEKKTn##?MFJ>=grxT@edNN;`Uc`#cO(!6uR7-$HK<az~lTMNZ
zA_Q)coqIH!u0V7t5n5-n5K<DE#S0lwQV`BpPn|nHdG5s26J|x*DMKA@Z*Md63x<uO
zG)b^%l*?9@^El=+hxG%^O5`zK@@35AC9Jyq6+Z(XJphQy!11(J3-P5=0>!%AV}PUk
z%6xe-fj{%-b}tl4$#m)<<Vyeq8OA(MsBozTqsoMpJY>K$c#OU=Bnfm;h>~F~Wj9%@
zg4YwOP~ZtlP+;Y0h*1kJ$tzGm{~95PS5Gdxlm*n4doa!l$yqj|?5eUTqK5GOBV_yT
z75N)@<zol-bsv9x_WUUL-Q>*7<hhdvDS*kWfPpEv9&!u06yX-cZ#WXce+p)j=SV7j
z`3OauSUet$lgSOEpBUG$%jqHYJ~jr4Co%VEVsQ*&*QIjxQg$4&S{75ZGyy&%D~7*5
zs8e<-eRXako5@xt^8i{f;uPQ^U0O&a)2A1!sl*jfxigdJE<8RL>*+rWVz!KX3Fwk3
z<N%@P67zt;Gy>J7vuSYp)N~@Zv|LK((*j%<fM+ua(9SGK9^~JOz@e}`0x;xXJe2<F
zNE4O9QZ`vA4bI~*5k$IdX}(%^!QZgJAn^EOjQLcuuvE;YuYv_axWMSsNGUE0tWi#&
zgdD->E*-J*B7~Z9w_rTSC4o}4Siy8dJAk}^CebncokfvR$l6L^ji5asn@ZFWxN=qh
zmwWQym`mkj2H1OJHqdJWaU1Bffqokpuz^7v7&3u)#0H`^U~7)sn&Y<SxUD&EYmVER
z<F@9wt+~(E+-Ga<vo-hGn)__ceYWO4TXUbSxzE<zXKU`aHTT<^`)$qrw&wmg1p-oT
z;8h}7sVWK2Py!G^x(La%Eb0q5b+weoxj-V>>xg&9B*e34L^BFL-3JkZU_(BF5O@dI
z3n2<B8OWJli1K$Slde$t0YVn8NC{$ZjtUVl@!Zs-$Ip))>>eAPm^?Re{PBZ=UgZk@
z8t0L6x{@gss>O0N76Wsp^wA%U^!ACw4&?}>lN@OxT?DKE`%@EX5M_{OsD@K#M<1U)
zKQ%sc608t-0up%|VnU(32*M8uBMVRl&P?S}bCWoQmrXJ>4Y6E9v(?figepMDxwDDN
zqF~Yq^8M+>0vHcv%$Y>B1Z@m#f9@;~9!`LSYUl*#HBrteH4urtbOM69!J24n(1;Mw
zFpU&}P$o%9jz=Uj1q>T#m3A{l5VlM6iPAA6QGhRlCxdUMvguSYhf|ZHjgZy>QPX*{
zZR%6QZl(-^pAw;@jK8Itg!YBwev6Q2fKiDQC=6INXHBvY6ev3;)0rg91ctn0kswie
zOPEQD%*j=kjtQ-UB#<c1<#1k+8dwgCffIp3>vi}L4WK6^d6E-kUZetn0vH4^Gs#N;
zNh%U11A>Nzy4rvIp;y8Q;A8sy@o^74K#nY=V5)i}ebE6`;)dOYQUZUe7J4@Ra_iM1
z#34ZQ$te*0@#ABo<EJN6=|ToVGPDYanBZQyM`otZncytgB2?!&(FCe#0~BSf_H?2;
zH=fPUok~<^AgJ>X*<u(og@wx8L;-)(HuV_fgnR~hD%r;tLCod=6UlU&jN;fEipgPx
zjmi9la$18k6n*CAE~m<cIj$MVI!;Q;q>%Jd`GRK8;1ZrdQ3jbYmAyPq=>{4dlsU3?
zOsfkyK8cm(aOam@1fj3<I4Q($kZ#p>79gkN{S|0U3kYF?ps$xHO5~s=qedSvt$Yi}
zjQT(tNbSueMWg_0xumcwGH-4H3z)oA#PMCIsuc)^TzY8u;7q~=3_b6eq0(=GwJ7tH
zf>@r-DUgazDpk3n=?ZWP_;gqE7$*=Ie{Gmdy+=+YAJd?cq9+XZfN{r_GUJp^A-aoj
zNyA4s!7`&{o>D0Y;1Ozh?JlSZIZ<I@fdo$&jgUde7>2-+{3Y_9?7=XBmIQLS3|&_G
zpg{ZB<izZ$g9i!X%mUfq5cKJMxr$Y!hNXB!3HT7uGM5H<Mfzd(#1+}5J=z!R8ypxE
zb$XybHq<*57e#C=o662X)dE4tO&*zoKwU0pF(Z#au(s)E)6k}~pkT}COVf}<uPn};
zLjN-7b>4+^%oIStX28!O=FKeU3YF~KxkLu)@O&1+JQS@;a*==sd8N2WYZ1a3Bj_+J
zQ-=v+*v$I!e6@mUEM#Vo4x08r1<EiKj6A{=>i};l7X%V~NdZ#i3KUL*iX<1axfB5t
zfK2HE7}+yBH8GV+<Yv!Iz<dWy3lfNHh*dj)92$yhE-Yob=4O(_zmjBIBp^al;oqaC
zq6#e#VoVy+uz;*v#;`#~C}9$bAq|Tj)dQmh1Swe+nC_O21>p6VLMi@IGSx+}SG#)c
z!Q=HXn*jWPaSNrw64XM_M^7+?aQk{_Xo82LMrFaCMVAV8g`zEIF$a;-z@5i~b<q4<
z*pP04(y~UFc7jy^-dLwmw-m5MGIzU=RLi9!Ai;^;kxZd?FdFY48i<K@kF{2-10ne=
z6{NY-*-ME_)hsFEsVbCy+HYniPoADUb7t73c>|GGUYML6c4_8oTPl>&m>VH{gp5V#
za3aPtB4Hv7RBBpD(k?$<umCYOr*bAGYF!zQ)y<_Zr*m#ErWhgtm~hGi9IPhSI|&w9
zPMc|4N~3Yekt!XKUSjlDut<cpD(dL*DZ;UGX-O!9(8x06k{p!|S}`ftP@Mp292Tlu
zB0B*OrCxx8_)5{-t02=}cQBlc7je5GM5o<U6{rQhD8Izjw>l9_!mo#hYV2&40&xOj
z2+~{^$O$zE3;;5-dsyMc5Q8J>N>Z1M<5Ei-tVau!v!g?if!_FFf3GOWu-5bs#CxOt
zMnwS{l@czoX_#OFXu=p_;K^1HQ`HC~$7+w^djnM6g^{QPG&wOh!;d0N!&aLv<>zLW
z^OeNaS61=;f(lFnpf9CMSpLzm^H_c{nMe(kDFpqv=Kh>BM*1m;Dr7@eP@sb{48Cpv
zyuUmfJ6;o;6hx^M3NF}WChgA`$B+TLqx2*-mBEd$co5z&t{fyugXGd{P=N%5CpH5p
zxs+a(cHJu_kVS>F7>HF4#K%IN#sF2IXzT;b0gwOzsZc>gA>9Whda01Af}f@U!-$ou
z$wjEWmtkZzYOIiz@-V8XK-n>1uH&Yb0|pCIc%iuD3D$^}U}7``lIy0F0=n2TCxHeq
z07d>1GMX54&{7$CrWJayQDWsd1=ec5oLETrOsnYy!Z;Oo#lVzsPx*!jb+<!qrH3dh
zw8uRbALt+K9f<Y~#zYE-8CVH9ku2>VwKM!E5#yoJneoZVIZvxq5IRE)1j$cp^a8DM
zj82z1*Ckj!7IQS;shA34OPTOkB1J=D7HtTA3glqg0U@M`5{1%<WgwLmZ5m|X?Ixlf
z<kEs)S)^6T6N>^n2c%ALHc=i_I(c{r=FUvPe!t>aK3(B_SeC){h0s-9Qu)CyFeP0G
zX4vXDd=dx@0iW2w1rI=&Wr=1X4F|Dg&P01M1t3H=>G2nlVIctnOW0Eq0|@lQ!6on^
z8COx^WwAgA&$vZk80Gq9NWC;g!~Oz>rnFE&e2Id3K!&koMmRtjyHQnGF(^}w@$)c{
zQ*<PDT#;z3H{RC|NhC3!gh?mXI~b1+_6-b0bqi$}I{~DN)=J}(6<v=>kU=nw+#GfT
zmT2Fl&cto2xk)jR`|<N2;Fr^9K_02L&5gt21-U>0XEX;P1lC(@qD-DV2cy?8x=C4}
z*lwp*unJpx3xF$E&Fn6KfzYDU3JVHYg_5B(G`Sr3S3afCv@{Ro#HLXW+zU{KEiMQn
z^J(bDfYwR@N|g{92y#X?Au1#Rlc{vEkjs%4nU&693jhdr1r`?}cOXiOCBav)D+rgg
zfk4u5E&5v|0&#<I2)WphEz2Wqyj)DBVG_4G0mODtL=Z0v(K39XE~bTAWEvS<%0Ff%
zK>tdZ-%47fqhV~WEzLpVy?o5bJf6&_xm=2tf_xrqx|w0u%>-p3;7-wx=b?U0Ei8EX
zjjhIula>YFli49oa3<I5R-Sv13~t!vsyq=nJoK6eF${xg3e*a1qytL4iLj73h_m|j
zBXYCA*K{a6sm;PlU_L~Tj*U+oKk>MqpdfxV8Xby7hGK(5eSHzxBJ3OLkHq`q@qvLp
z-QWT?T1p}sjyql`(Xcg{FIFqZWuwqzwp5gWsuZElK@DFdCd@;OV!{lT%1;ox1Gp~5
zds^23>th#YFdNnohlKH|bKtgwLX%^XanG_gL%A4`IXA0{e(pjZCgU{B9ajJ4)Xrw}
z%M{YbDPA%mg<V>hdd>?s6_lWKMNUqc2m%cU=gX}@;aly!*!rSf6KaEkjqZh!lnD7s
zr+|Y(Cq)ED_frc1(yLbzm(o?xFm5=KeTzs}DrLcKbGh0C;10AVVjAflxD}W&WH#M0
z14{(jCvv3zkf$<v!H@ZDhLi6e7I;GKz+WbeW$|Sxi-15FvTqlb{cMgD0G&=($~hXf
zxP_mIfPl$rBLdwTlWFw?VSGK~2_TXx4w^6t<*X(F{s|^w*oB!vcA~umQR1nAsB#7t
zXtzi}Vhr}?;d9_dj7XTix`>Y?k>^-8FUm#<RvQs#EYlLB`8*Uc2nbMtD*FGBvBHx+
zXoaz%!APt(2EsnjubX|tn2}}I$kigkj3=rfgaF#PQEcdO2WEP7X6CV}^AHhdr_LXr
zo0vR*{=^J$4U}~un^Yipl<I<riZjB#3nhY9h5|iV9H?*lDsVSjAc%`XMM(s}kq58G
z_>ge{o%i&?F@Oh6g8&{{F-UPdItbu94&%Ty8AAobg*h#O=AdLi?xO5~`ZCF}9I8m?
zr=gY=E4k%kSuvIXK}td%FN59ZU2NZhWhE_4NjGa|BTFnlg89KiM{21wq$<KWs<ZR~
z!Wo1aw_3_AVM{ZM9eFSnv3bJ+Uw{}!wbzIgX$Td%UF$<5cJR3og~_lSrxv!3LmaJ5
znFV33P2paENf~xu4F)R^SWaiiaI|u<wFv$JR|Emk5o$vaE?}~w!AVC7m79_m)qj;Q
zV3v^$Ls6F8*JI+XL=e!dMN$KmuZr|VG5SGOHK%ETnNF7|d_eYaGlw72jR?h7BvGfW
zNmBhaJFf~+`pE37k3{1`k!Z9ZbQ{u%?o<!N`yzdV5m4?SK(^>c<FFFbKVWVY+q>9#
zf#x+iF*7%YKxuhyN+!Bcf=&-?q^44S1^WoPCo;<149!5g*ONYGb)taH55yVPMgX8F
zKO&qMD<4eZWNU>5pw%4gc5~2Y)A`F5MpR@G*ALMyuqeb6f$<bj1sl513YbKJg^DU@
z1q6xLF$vI~U09|-<q5}zl05g}B}`&T>Qb%=96_zvhP1ZBYTl!Is<sI7BuG@T?4G(L
zslr`T+43c5`p^I&V8i<%1;S2LG(sq?n84SXBx`G=npD7c1JP5`tVIT{60isgf*Mu{
zfh`S*Qd}jNRKlkKRVENzw5S!Zbpmgw29Y9^$%o*TLNYE?Tv`-DE*3iXA<=u)dRVqx
zKrAun89-A+a_H}n+A_v+U6Uk{c1^NkICTqvOc~$A<7e?i0s()m;}o(5T#K3~xVcc9
zG)b~pmsCENg_s{?GBb4L@p(p4co?NTkBz836a1@u3HB!Jf4~rC72sMWLVE8BVwK7=
zh5*ub&{HwRjfkrXJyX~#P#J{a0{1_SU8IKVs$&t*2nv#AXLcdo*Yc~9B+%{TL9CFf
z2<_KII>Bz3=S%4$q$SvXEgb0`i1o#WB4AYU{^*e1ea)p8DqKD=W!mCk`9GdnhBpxq
z{1ga!A(MlzP?;D$i>0hV@j4xZe8tl{0%d{Gqi4>ag>l0-(G$y$GYv#uc2Yo^XJAwG
zZC4OffZw%gSKzdiOk0_3ZkkGCRav8M1c>>6&JYUXwHXxUTrmO)MS#?&WI;tOrq$D9
zreRe`!{)2tb(Nm^;`+2D`b_Dbu1jVh=758Oy)0={Aj1c^F=<$ej8OIkMEj(uqI>~8
z;wBQr7g~!oEt8ysvsH%b4tTbjJ2C~^05wcy6;y*um_hc_+L$dz#rE~Q@I<s{(_q3U
z$f7gcZ~|?EKU9elEQlc8008L;kq%%krsn`5m!68l?ge@iaq~w8y+N91KbTKrp9KmM
zc1Kdyh@d1v6%`U8f-FT=%QC5`s1l-lgR(QpkV=z29WpwYF~$jdKW4TcFgXwfu^+(R
z)?s`a>V-!umLNI9&Xb&}RN)sV@)Vo%#9EIIKyEWTl0I#)EF1fLUOuq|=^jQ6DNr%T
z=w)`c)x${`9eiDt(W`z2M?vr}(H|-0gA!t6#MjY;`g6mdTObhdA=JqF9RmvhK>+ND
zB}?3|Ajop}h&wZvvjyltzA^FG{!>$Dk00qF$wlp{!{~A;9UbhC^~d`l4a9mQLw&k;
zJk%S7aN9Qk($N<m7}Ra#QEY*V8$}JN$Sbc!k72JcrYW^Qz;O+JhfC?X<Kj3ZOdMMN
z25cPa>|r$_3eQ!WyJ4<`QCgCX%u5lq!VkWR50z}H(N2YRH{Lj~Y8CSEkKqQdSkHBH
zOi2Scn!$a6K~=ac9~Q<>Mx0OC%7#^6c8lI-SWpbdwh1?Iflg?WHe%2#xDQ(OiU0;g
zB689AD3&O}kTPua7!e@)5+y<|FZnrEiixmoQH2Wjlg6sUg?w&V37NjC1$20Z(#xba
z(O55Q6KB#Dm2K@_jfGEGQ#`=NfJBSn_NbQ#4-`dRunjNKM*;U3$B=f<L8lRE2GkPP
zMVVG5Jwbz<wa<a>SYrcn!Un_XFqS}Smc%PqQEVrf2Z|hb-;V%?6PJWlir{DwRH@0h
z?uSvrAzy%p00@t4QMl2K5@VOMC3<_*?q8r?@LO<X6}K=hNP_N>93*MkRj}-~2isF|
z><9J3VPT**GBD6PWIUx|u@hm`A_$Bb;I`n1Gqa~poPikvBLX!PU4ndaW){*gZE%G|
ziKG%_UN^Trc@YqX0a)7?G%ipuYuN&7!)FPABA5ZOPByWHN7!9142i@t1(#_xz#37)
z7(gjTiZo@VJ0Ue-vJ}4O(_mR(R0xW|X6$m<WQS5nSm8zurc7P30Q%M?lD3~bC?}*$
zT8?>gK<W)xj{`f^b!K9E+wfe0poWn#%kU-;mI@TqZ34oLCz;ozmaE005XV|XIGZSL
zAT|O$jC@JUpY<%TrhfzWJ+R6`=S7Ra)TM}r3>Hd-gL<howBAdt*;})zr0oI_Vka#3
za5X@W(pMpYTURbGPmPU+u4e3wY7^35NFtODh44Vw7X<+c;>`|_lL<5Xec&N60(1$c
zed|!8wrInzgpDYeaZAa=3nAEKK{8|uGngFM<%l;lq_^Yr25?qv!-4jY%q|Ex6Vr7+
z*?j_bmBHRff4sN9uXnJ2s2?^(@sGEYTeFG}jZa@tEm~XvJPqqiAwz%Xxv3IlC~%-8
zbW)(;Iq(K+Zh*-Uo3%nCfq0WsATmd2IK6^Cs(%2n^i{Ma`Z6QUM*hx=WgQqpra(u8
za?h9;WgzO(*379Ap%Da)8}=K?jkODAxE}BXoCb$Rl0YkLV=1Sap|6)m2f#^X9~ig=
zq*O8j0LVnz*IRL9e<YKXZ^s*HlUxg25;`RDm9|P!NPmw=1wBI~s#XTX2J?anOh9DS
zGDSI|XvLB0WQk%!Ly1*81v=1oz&Vw08gYE58&3^IvcRWlgr-C83;O09!V63eaDYT-
zYm+@BuOSmgLWF=wR*hMLZs0Q$EDw^wt0<Q%_?vy}8W`(=2&ojUHrewcwaF@bJ<7eE
zalna1Y9b5uY_pZ=C9^Yyg>G&h;*3*}9@JnvT+^^$ibE1+`${#>b%;$ig2NDGCb0Ki
zfs2FMNI<bKm1RFy6$~O=QFo^U8=&X|xsIT5AlYzC!SZUJEvvX`R0%!;0zlA85YS1<
zEiI!w0+Ulb+SeP44#xV2um>NFtB(#hOb7b=BSX>NICkSB12Oflkc|OhSX?A{JA#_>
z01a_cg*t#)iP|?t1=-0@m;DaW1F_=ARH#&1Y6!AeX#wEyxgkx3OpYz4E0o_biQrwn
zMHQ$<?pDOn71`hk_6G^<kB6a%2T{~ZXQP&05Orw+k}lQ~u6jMuQZBo<s5Fzp9`P%k
z%6OFm_l<N)k-#APxq57ern#tV$dJ%oK~6<?$mf<>3MdR4hmx2y3ouH;H8oEwjfk|W
z(pY6i=F`lrTEn=3rc|s9sDB+KWO|4&xL)V-Hw7_}1&ZLrNcbp<9~ul>6ayaY_R>LG
ztXYL~<8wtog4*;&t6s+e)kKD4b~q71iakpC$JezLgVY=uF!i;o00^HL_`T!!2ly;}
zVufzd9s_}l>U0JyhLg+6W06Sz;YjpwBsLrE8;-<>BYikG1HbVYwt;)W;kZNG+Y5!O
zAIcUFYKVrU`wMgE2E0!V`Scl%<$-Xwp|A`hlYw|>IFyLS?n!Rx3&+wprX#SM8UXhU
zWJLZ!5d-fa-jpFAkQSk{Q+3phrhtwG`pkX(lG4iB7x2!qFH*EKln(n8{;)O#JGKaY
zp#5O5hYhPEAX%e==Z|4Y(R!#9Qsi$X>T+R>Ryjc*&Ay1T5>F(o<2h!J;llYd<T}0+
z3Pn^SaoZPysz~-Mfg(9ko`H2mU;s-l{R*<AD?*ZBQUeN<Er)oNyrE|b`XBK83iwLx
z3kaWeQt7a(8*ge~nw4#edd1BEgGDuvMRnYOIE*7|FsN4MK*x0}Q7D(F1ps9amjqmV
zZxLVR1ABx6@RAX$JWJ_wA137oaUeqwO<Yb%;;+KMW`%9Sz%E9azyJk>HYLuRM_&ZO
zp%E5EK1EmLFb!NcsPnL5*pPH%%DxNmB~h2`I>8N0wn%`kswxRplLd*!`}$!0?2AF9
z?C*ymV=&UMZe9bifj*c!`lIm7=#AsBUZl6zy6kvXQiU$Fxl?vUYny_8#x5QL+6z-*
zYb3?ivl8nL=Arfgm>#`7wrK#6>^*RL-32*RI72p`fn><7Dj*ajFr-jYSKcPBim9H3
zytjFqt*{LJB`o#B?rR20Wt~mW-vps(2KJ6#(=Zxb8`%uxqTr-0EP+%Xj6w#`AD@}T
zIJwC{q8CIX<6=!hhgN8uk>y22I7uyg(}!WJu2Q7exM|aP*mTRRf^-#<2SI+!L`mHA
zksG(Qh%uhXZz6<QTvD5c+KNPy5hS(y)3uP!Nw>$Kyf<PeGE2=v(GTiTQ%J~{Rhkz!
zGCE>W$|}LR(txN2XqU&<sz<?UK*yaPmt*eIC+HUNl;rGiJDGT~@4o#9?&tRj@Oc9H
zIKjvhulXl)Z+PQBeUsbU-#aigFgO?)fMhffjSclhAtcGMj+5e&NERd}02oq?&p|p>
zv-u{-Ekh>DpsGVZ)D3o$@al1>Q}C21R#7LUY)_rKcT;Y5Z@u%-upl0UF&w}KPk|E3
z&0(A;tN}fo?^xpbZrw>$p$gzf4rCnfeJ3Y%dXkN7@m4fs!MZh&?_`pcd4&kk<E~iK
zmM4C5rKV<P<+z&)!xn2)4WO>&Q7f__p6@QDdHNVI4gru%0}6?+?5sm6zS^W4fmcA;
znjQ*VxQ`z{H~DzI4ZZ+(JL)cgIu-r=jWWIp3T#GLCrHV*8mJU77jS`z_DhkZ&lZen
z@NA+CGHy5YYH`kDmNAD2(8CfJpu$LkG0wxFfIvVaDxDUr5Epo*&b`)v_}qt8t*GH8
z5K_eb%xd1grx}K*LP`ydWj~ApEDNI3sh-RrQZeZ|p~f1I^Gm+Xv49Ugq#vXAYn_S}
zP;3YXLFGpMjZrPwA2lbcAX&4E8Xb%d4h;^)ar!FWH`v!7ALxUyr#?|bk)ildd>|4X
z7>L1FDhAw+_C?e^>O}TxIyECzV#zoJ8NlJf!r|E2Q#?3y0&IcA|BO%`SbxYXYB$>P
z*Tb}|5~b-<8b=8r0?<8*`-L#!LqxS+$fquF=iN9x0psC@0F1>+d{BbNCeMwZg8dr{
z35$qKE73WVo)hQDIic6mO`vTiqCzA|jTmHs?IMQ5!^m#*sN@NSTqG}m5d}ZP@Oat_
zelH+pkmM!oD<)tuFi|L-u%=MEDX^jaL(!mJq&A-mvOiWTra3rZ;|I^9L!zDwFs6PU
z`qeSn{!{(1BC`OLLMQgs^n5oxui%xuA(UA%WAFiH79XUo?CWi^VMEN$p}w=Fp=5}1
zftkdyHfvf@D6Ez8siJ@a<D46&lml0?)(x6=5P~x4Nt7ME0vt5}bCObH%{y%58-G1%
z0uZ?gdw08oM9S*8nB#0263s^M>;VvTM2)wp5@eu~fD=p;A_-YybQTm<Htwm5=7EMF
z@8;dGJ1OcG?ZvV)O48@OI}HL3?B`43sJyfE$nr#A1GEH*?89#UfimjRW{-|RE(*A>
zi^}7@<KEm^*u+3fp#Jb=yk93~(BEbh_g~6Zw2u$FpZ`@1svAyKM~{{lvkR4jM`8gQ
zD`wpVmj~~#lJGDHQheeH)eEYfWP|9t*!1Cr%evtZPT9;z8F6go#Rq!(B7=kdaLkN?
zO!W;wI+i0+!1(FO>Eqn+BF>^r;Mg2rK6aj7c7d}YRP8AT1rI+#9;_H<3Ab=a#Q;HZ
zZ-ea%U9^B~z+1NTdS(=yDP!@Np54hXN+cN>&Xar2A^1oNj^;yN829amXBA8@fUr=a
zRg24GbT1~|w(uwpfBa|>-6((&#Ae-hhhOB}$#MEhE?|CZl<98LVL^?9w(}}(6SCAu
zfXzHuD&UUCO_d|Yi^H?S(+LbGN+F&LCuVh+2pY$INn80oPo5TW=9H(4t=I~|iC%S>
zJtV^wu109^l}$TDU^=-wA;QC~1%5VXSuo2}y*w15BOFI!$5w+sQ>w+)B3BTBgtQp9
zsClqL4->LW)`G6`EnTp@moyubEXj6+@zwNSilUN8inybWqt;oSh6#AA8lvopEVe^}
zVV=i?qL^20xtc0ul)iH~;;P}jwEKp#D`jko{xM+7;$%NV8wcic0KhPxrFw8%V``;Q
zN(==2ZWQcA8#o7%Jge1Rz=`uH3bChyiXvF1s*UrhX7u$kM=UnbJAgw>eerlNwol-}
zhh2N<x9ZlX(!(efE>CnI0mRp);7Ca1K0kFrq)cN9uXWwIFmoQv0?elblMSdkdA8X|
zMOnO!ZTvQdw~x-MGmza}4b*(WxIp@5BA&M=CA)Z_e35=0nLJILq(zjk#Kg;$!{7tr
zWQ`!Gricxx!;JWp!rWuj3)G5DO}pXYxn{0Yz2_ifVMpHcorZ!3`hjkdwbVPk;^bzj
zfKT~A(sHwfWF;q5Sq)tl$2>!BPzY$ZZ!PCHR!_hNCBj^xpg02>zuxM!8MhZj?4U;p
z)F?_6mtLu1#v=u1sFEnRRIf_IFJA|eh%=v8cvz8tRM&_LbUOAhs7~zDqa)s19SXqQ
zAiJ1xjakU2VOV#frl!--%xxN=n6;xU(e<6P0ZCupZm=C8dGN6^3O<A+&`s$Jjyb^H
zDV^fS(r^@c9(tTY8akEep>@L3oTJg+{z0DL8i>I+wjah?Y~@2tH{a6f>mQ8w!eTVo
z9~s2ID9#WL^$!jWna`U5;%APZd=#WA=qC(EoSew7hC3^4gQSc170}6uwL!syQ_AsU
z+dQMTMV|V`VJuKjEFTCRL}f-$T;~-q>6xJHW=CNDJi`QByD``GTKmEh7@wttJR$lD
z$`ambWK5JfEdZd0sNAj9v2zdP9sqCL{B^bFHC>i!N~d4?b?K#FOXb1MHE2bUT8*Sk
zKe$>E+E^m&SPr}nZfX#m=%dHo26e@z|0GXk0D@H4AyE)Kw9LTjJAhcM(qT3yx)|mG
z;+gnA(<Wnl){ua&l8M*>*yoP8>Qe^ydMM$ZrOl#FST(+@0Rh-kV0{@_N*npudkq=I
zL+o?arAZI915z^fpsW(CW>&Z`n^QmTl83woG&wwMMFXA|;6sZ=G@COPqHBFfyw@9X
z>|r-H7>`9^&x&IY1pgv9dmA5&$A<=B<l>i0fJG-LirTF(RfohDC7bwoKRY`GI~AFw
zo^9~OR(RqXS20Uc4KQ5bmk?4E_+RS%d5GRt%ahf{Sk%PtYq<evm#+)fz;mJoVAsE|
zh4=OEYq4ql`|<+^0}A+NP{~u4bUcH}S<Wd6%f|6h$?r>*o)eL=(57&%6H10~yel|m
zf#cv1b>#4nCJIZja7$tP1WtuObWdRa+#Ig+TrhENr@FME5GjWiH`fawzpCd0k9^>h
z3-~PAGVsciiaqe!#8SBVdp$1cy~o)WoN5|{t6+l8HTZf0G2PeNaN-rT&STj2gFjw*
zyXOQ_>3_K(aNJK<N09)SPns@X1{QlZ5KFNM<0Ib&@7YVQ{SDqj9lY#qh4P@T_2!}G
zK?4Q9T?gMOd^!{8%wtaYyoA5iEho~Y+mN#89#1Yz_ag%!dNy0=8MqS=isi)=qy`!l
zz=S_vSnn=y{;{*<;>y20Vnt2uB)VBdM=&!q6fameR!RjB`NV?DuVE=GjDmhd2BFSk
zV<!U3G|pQO#AC7eV4wNo(LglP7l%xY{hde@-(wuaXF;OTSUd(1Sq>+Hgp8j$GXZ5^
z&Jtn7Fl36{twyet(3r_{H8h6w0|EuUP5~l=43D3fc{QliCL8&f)u0=y6z2C>DZ7i7
zSZ{<fj;+3JlE6p~t6;<h1m)pD6Y2=$H)JJ*U~C)CLaeK`&C-;x9#dt@X9H9nhiz{n
zD^pJ~jI*E?6J<ifuAIZz02n+zqZtej(~YCr8dR)Y4^CbUVmIHY35zcfkZR5quQSj1
z;I5OT=WV=gOKcm<2QMtd0(N24pPF%fuL7ALJ&jNU^B&IeNG<@B#}zioKmmJ$4ALV(
z6)Q!^cYNU5V|L()oocoPMXiy2nF>Hqyg9!)VtMMNI8$RE7M=)VX_SL``2Im}Uteqh
z5-vBCB7G5@*BwGqe=G_=1og7pNLQ4d80j=2QumgQ!%?J^#__Hq<i<Lyv$}sz=vQ~=
zCNp`^aBO$g`rBPNe-iMjj_*Jf71(JTQ4N4b9DHz;yJUi3gnmzv*w4>32L#%sB^*VS
zGwd}7!XU+&<Bc-YJ^Z4>G~H9hHpFi?SOhwOk3IpPi0!no2DY#5HW^>w6BBysm52zn
z2*5)<FYo?H6;d6(Zh~{1kSFPTX$~~13wX_10t~c}z{40ijB_^@Pfx)7J+%<nZnO;A
zIuLA#hq~+Tq0w1A0q|0YrUr}+aww+tfS{b<Q9o=L!@0=_d9tVE;ei;A5mWO9CZlLn
zLoY|bh^d^DpGd=+=-0}`rOgvKWuF^hj@je3iwDRU6b!mJ2869H(+#rIWEwjt{k_n}
z@QEjWpPeVo`v*YUvAvJI7cpsWuw~gZWG{8a85|sp4&d7i5Iu3Ay$`07-d^BAUvDqY
zt*igpCR;C7xFkl9kW)xd%b|_&434o|q^{P}`oM;RodcNdmQ|C3*%{tWgm_~OIBd51
zq1nhu-ddgu0Mx@aG?Q9~>J;n{{6s*2w*$8zSz)iEe$QQM=jsVxpwDWNK15;*off7@
zmY{C+SY0&)SdjI!6H*(|;JG|P`F(?yb$qDixu1ki(SNOy&MhNLzD(zAOjSxoYYhyh
z<LOlWmj*J6+1FmmE#(Wv*OkhZ>g6j}mtP-`$0LLM{=guJ8qTv&bq5s0`uhiB*g+TX
zDoDiExB^N`rv*@gx(_9sodI^1-OFY7Y<fw;<g2Q!Ve;hzUuv8rUrt~kp5rV}-=&}h
z&qH4Izm>y9#P=t7iWwv36meTwCY;JU4{4I{;B22cCnX=b#(L^I52q)~axNU-aJJJN
z(B$NZqe$Dg<iRX;M!xB>z8=eE#WYxZLY8}t5bAu%*n)pCc^KFUMFWzp66^JOXh@=z
zGFHu9vh>cjr4qIgp8=r!(45&z^ytV2QZBdtxqay6QQMZ!{(%!#I5)OR5?UNpw-XJs
zH55wn7-;$J7#zORWc*`2qpgDJRpY*ZnG-uc<T0$6Y#`LQ?9yrFAfXpv0&M_Ja+IN9
zzscg;_}Gl|&VI-6iOzT&AIHEE5$L<Uv?P(*^!CCNaL{~(N_+tUJvgU4XGS?k{GJmt
z0$`CIPiV)N@Ud+`KOH^33kMtstCSn|nUnKkMwJ1l-EjaebVJNHkV5znIa$DW9W5Hq
zj36&G1enuCF|-EajdNTs=&3%<1Mte1VT2TuJ{semlyCM^Du>aK)2Cn?0!p4gahP98
zvlQl0@tKpIIt#SIctu=%iA)#-P*;xp)|>(!*PXHYkMMZ7<~iJf=t1|a;BOY-8#=B~
z0uSIewu?X%N)&xzGN2f(a}*&V){kWA=B%~9W5)F3M6e-JT`%D~*490tMvz#-8GmYn
z@Ku6hw0_?}*41uam(?l9Bk;n9tu<eS8e(ZQ8jawa7LiySpK6AWQ6J1Rq@Qp(8jK7@
z%qOk-;8GWj_Td{xV3`Ahv4Kbodx`ksRWGvl#mzU4blt5;WJo)(vesk{W~0;<%Wjua
zlx`krPz;Km90TA9J2d-3IHxM7=<7fb93!Z3$;VA(KcPnJ5^^Qf+k76$GMxUneDRMv
zE%0&xj1RjwZvokCb1?RD0ZTT|1uH}5EC{;p3qwfI?`g0Pgnk$w0Q)#EYY$LZ+DaXa
z-cvLQaKnKs<iQ^axePA2i$L2VdOYmq+JJPbR~xAacAYrYx^X#)21E!8ZZ8vP)d|}W
z9QO=QopX-{1Xk7w>ox&_)|a(h>+I~yTKZ=Z;HWYi!^eR7u<49rr99RXg}RQtstCMb
z07L*J^XZ_Ma9=a@L`<qydWW=1<UBb(jm=Nk-bsJ0ibosnW>S-ib~DTB0&b4z$RR58
z)fkx&dI9Tpmtd4fCWP0HEuVuC%#x*`)@wN&bXJ-S=1v-`4DAfYZWa6z6c@LSN$Ps=
zg;Dv<u?~?bU~s)6B8=U^;%aOxO<8*4NmNmMwFa{C0GtZt_yvq2_*4MC(gb%U?0?`R
zs_K!1^BIGK_=qYUlyDq_n<DUL!j~_>xZt}EIZJ&9F7Si9JOkk#70K$2*jRfbzQ9sW
zzmZn(H^L8r9tsaxnz_-Iv>dN6-XQb7pfFuZKSqZHnl_9OOy4UIk$j~rJEP<*`1TG?
zHT&Ci21p<QNEUBpx#<t2f^4g<CV=C*r3KsJVhV?s)u()KjNkam7mTAoTT7^vF#-C%
zFWv-lejXf2v~tSHK+;<FWOTbR{R0}C!&IGiwvdGw>`e-(nTP&{d8^UGQ=kl2vY(s@
zc+3UmRAm@4=Qxlv1c3#vr&w=sn8t1xJ{mKKvv~u9_!?@j`F_kTbS0TpAW<cKtBhjd
z;?xJ_k{*GCS$JAl3MmPYWq@m75!kE}l4PZPtS&eOX4)pmdS#L@T3|b7UQBDAFNk`A
zn9WUb2GNZp(0^#Gte5l}WSk#D5N8}}vVxqo;4lgobgtb7&gf=c>ef&HuFXaZh*PG<
zb2~_sX+NYA!M44X-i&+@0{9NVH*U8NK{m({v*ln4_Xz;l*yalQLz2`mML#x&00nRP
ziv<Tg_a$o~8AYyq3Vh@UtSQix$WdrDiQ-GE(8Ayb33mkXW5yqYz{ld^IQ!K*gfFq;
z6pVgrXb_=(Wan<HxK9qylc67m-3WjWu-DsfK4fAJ#LUpG!=4b*?@ybJdgV{pG2L|M
z+-yd3Ce@!~bG29qu5o_C%Er7|--H2G@Ts4iI}eqIO4AYj5EJ;4xZ|P%TC^3tL<1GD
z3>ZrcNirItY0Otv>cxpb$$I}YepSK~4$ax^Oo3m1hCe#B34HS}`+8yMn+zpTImV-?
zhE4-3)}0p(d;t<>29@(Yf^wdwb7B$wsrhFUfS77b0~QI6ZNyhkK*-sM4qBTuCsI(5
zrYWkR1(DKw@cm4cnXGSe9m>HP!-0bfSl$Ty*cdz4Q&%+V0l-Ggo$9l?4c2_>G4QQ-
zkACqB5FjhuehoSc8t+Jf?pmiMeE$P}viM_b#&-rCF{fs{eI5fga5#eYz&~)MXJZuJ
z3iJ4AJRNxKff;(Uh?C#~KWvamE<sKO+ce0*1w&@t2~5Fq3a2MaMZEP2m=uI#3V6s~
zjp4gI%4|#&YT>sYbf8VZ2H8>~zJig$2}OOORCzJ&%a%(35<NBFS_J7MsrtqS5>Od`
zxQZV$C)j%;uL-Doh-v^T_m_y7_<MczJ1cf7`04N<PZ26?hbKd)*NH&1&!@~cS;XGz
z&BbQGJ1U+})Cp#x1Fidf73hc<*lLWobr#^wsy3Q0b#2sbB~;%biW_<`P6GhADPn}+
zZv3q<oXxkngBv7bEw|h?Xesb=t5jx4k6J0!0m7p`>6Gu_7u;L9b=`vbW}{`(+%L(`
zWYdq{pVR8ReNe5P<|LN+Dlh%MjT0`h!}`lp3o@n^;sr<#4N`<-&v;#9A;Iwg<9EQF
zK#(50n~doWe$qxa7)dX+GdM7x!{3Jh8d7qCk!RE1%))^M-XNZYGVCtnD<Ry?DD&$a
z9;!VNIYcY?Yl8V_VMw@De&1bp*u|!*`E;y!?c%H`5Q7i^aa{aQF(+oYve$Ww;ff&V
z0gXXx3OeGU$Vr85E00Yc^C=Wak}xM(2kKf0M2@Q%8AQV5#517wLH8=kF<dqZaVKqr
z>H#Fcljw+0RV!xNO+(W-iV(pp++!{6CWS4495mIakz1|5VzEN{6)uIhLG%*%jpeEp
zA!Tc;#^MObwciAB@4p{_W53)2Q>1<2PZGJdN1ON;G@vzb4@@kX#-Q?$8}SOjQUkwq
z-z{BMA@y2($m0yQVdbxI$&nRVU;o@3zmP0RQQ`MwAEcQ};9UG5D`rl~035M{G}ZcI
zBMW@7iD>99jHe=;fRX5jt)+-H;d&%QEfR+X0fAWMOX({jp~LtDzA6|%=%+9SL$+AE
zXj{SIU7j~Vjs-BwhwH(QdnNb`sewGtfi(z$8?b+Vx5fX`jy<xa-xm<oXJf;S2-?bt
z`JDkG5l-D2e+X;Osgq(X0J1DG#Q0!gPn&jMZ#c&N32QaV9QYV5exd#V^wZeYH>s15
z2HQ6VN8K#^KDZ84EuZ;+Uve2_clkgO$*0*H0@o>2GmE5lNxNM@qBk?`wt0-7?8tg$
z72ugoV>`(zK0Yd{W58LcJ(C36<6nM();~k#vxl2;=M9c;W{!h+>a~Wy4K3gMG4N_;
zw&$cs()cTWzOCI(AO+VcoQ}2M?lhkF@}U;BYW77ujZgW4e-2`XZtf!bDvJORSq_1Z
z{PPp)R^?r1SsI3lb}Ik`cUPN<2Z^3RMOc@7v_=Rc<p6IIYKMliI3NNX0x=7J*EY+)
zFDkB5-nV{&rgzFhLHgs%Mg}~o>gvX|s6&8fRc4^~@b6L?7K=Yb<DJ^T(T??$qDJE}
zd_+_r@n82xBd1aLL2LWD56X1bXAa7M3vVQ&hgpM><#02jb5rMLX7T5-;GhVd*$74y
zG>CU{YTZ9oML?B}F)|vO0Br*IoM5<m%yWK%nG$m`?81OxDWh-Eh69|CQD*n~FiwHN
zNWBhRYM=y|z6|#Y%s=*XZD(D0OyEGcNGkmFfp*+_$8?L3?><n~Gr))8lGr2NU9ZXp
zcO=k9B7JI|Zd*T6nyAv^d1j~(oz~=w6C9pwI9uV!?=U{DEq?Bx6lfI44o3}qN=(<4
z0F6U0Fs^mmPFD{ah=tt?xdnps1D86J3CI@u{XKjPXHiuE7(49OPt@0hx|}7m07(D{
z6$AX$3~+b(b`qN>2EafA=MsK90vn4DAN0Ci5B0jpEWs(aXOWMnFT0KEC-zUCntbFm
z{z(1Q^efNL%wBl(vBzKaYW>#!MmymCF8Rxk{N2hQo_i^mY5cX568}W9Qf%;P+QZxf
zuOogJ=<tby-e&YK!LH~G8T@!g9q;mFkoxI^lqw=!k4PT)L$&H}gW^`s(67GR`49S3
zc$zEh?_dBt745kY)w$Bs|KeEfESPmZgsyS)c;Leb^m~2j2{~}tb_EobPWvLc3Uw_*
ztpcwm92*cjq@ozV)P_w33wP{f38H<z(*Aeq5<a?vZ&25wC%RXoVNQ}rQ+M}_#l~7w
zXFl*X@__X~KJF*JM-Hy;6Z~~9-mcH$o%*~UJtOJYWBR=Iqo*bQ{9E-o@`65}`e)|(
z%O?G6CjNiwv-q?=udV9SeNvw{O!;TGYW<FR7H{hNi;kv0`?nfj{jN#x)bzD&`h04;
zKA-Q>=d~t%7DM`6-J?&}ykEV|<lC)J$2>=NnS5LHIo+<$)i!-T+p5otE&3d3*5?hA
z|JofIcg%C-c8#yT%shAM^V$xR&pg-OspFddF?~M&&&@dBt<P)c9?^M!R-Yk>IZl&#
zHkfC-d4|n%t9dq?XQO$xndeh0+K=f+PD#q@YxQ|?LZ6W<`n+~c^NoC5pYBiU^ZB>w
z^Vz5Lx%!+wuYXjZPyN!Qw)B2|M&7H>=YQ5b->1(TPwR8--THLR`-}fd<EuZT&!>LQ
zJpYA0oi%-S{k%S}oA}x<Xnf>7`n>orP299I@+&6)Z%#=6BA?Kw(=x7c^L)Np<2U}Z
zKA&nkF7KZ=Pq$Iy#qW$s`VB|pPnmMh{&!7xerHtPKYQ1RJg?ub&!UMJP5k*kF#Rz7
zy7nJ5K61a-`)tUx_Zymi<9@9t@`yg49oFacH?`g8zoE~OZ|Sq^D_ZXQ|7+r={k7d%
zZp6e_Z_~K@R#VTnb^NQJ)bguKI-WH%Z#T^I;-~a|(Wd{ImVaue_Ivd&^u1%!FTTw5
z_YQqNW#;eVt4;e~GWD6~weKlhT{KVU9oi4)1<g0TSIb>D&sFnWGtX=0dC@$lcbfdW
z^m)z1T@zn5&x<B~_224vR<CP&k+17>^*@?<`jB~kM4w$Zbl#pf<9vRPwi7vM;N-gI
z8!^v|U)1`pecixILElIIT+^@rhKUd9`;ny9@BB-%J|EPl`^zT%0d42`1Nyvf`nzVv
z;l57mEB=Z;Z<zHTG4OC>pVm_}^Sf%EUESKBi(~qnKB>=<Lpnb9V;Xl$+HTjXJ|j=+
z(|x0f@6h}s51({+Jr&kx*BSFXsn3xwoA}ENU3yx}hft;ocNcCOMo_|*=Gk=SW0*HD
zJ{!$#!!3byo0oaQCY^QIFrU0^*$xwK#nZOM`fPsIW7F9;+ZNy3Jbd4P+qP|=wjATZ
z_iW4NvGv(Jwod!B=_um$nPJw)`a4aSecRHe>3nBz*58f@<1#0xm|>>x#LY0<;>ECx
z5kFo!0u0;!@=1R6aokL2oz6B5vrg8<bk-9_W`>#Gf**!?^Wu|r@v`X+2r$g~VZAnt
zVM$o##Pnarj=?hz!(2y(Wh_XrVcQ4x$Bx&|Kl891_Jd)jJ2y4VK5xN5na=v{7+DYF
zOlR26KhtbF`@oxdc-#7Au8_d^7Tnv-d$wisFh2|N$#h#MpU!SgXFZMhVIHR2F-p7m
zVLJQ9g|c~U{W3<pVmiY+@q%I2Y3pH~EvSI$tdpH%n04B<V3>9C<{a?JJhs0Kvwp_;
z&f=NP!xs$8SWF($gPM6mLFQpwHl6t`oG{(aA=_blwoU{k%(xvF>j;@T8Rq=j`kezB
zW?$K1TTe?M%rxF?E7%{~u1&Lfg7r(kQI2VL4q1;)=aU1qWtoS4;gc8BSwAaanE7pc
zY=03q^8*#Vbhc&T)Aq&I!@0Bd1mD@Q+kAZTW~DZb?bt9o!Z7QwILL6#xJ+60b1!b@
z=h%q@wjRzi$HP23u}BQdoZyFHxlJCXhr?kn5Bp>DIH3j!Gc9E5VOz}@F!Qi)ga@0y
zDNv`gb*rSaPc`*mQf&SfRK_spk3S4Ef3PiEr}P2un1|zXcJ21^+dgnCO&BTju%9hx
zfMNEt3I7;o9y?FW!<A+_Zzt63<#9sWBrJV1?^(9ZjFEM+PkvdgpMAR%4cNAvPOV4g
z+2m(AUd+S#JF(adv(7dEsaI#Ct_#zh@DpC0#5?9;|7~98v0*;#9LoHgF*1)WBV)hk
zF0W1}r2Ut<K?SUX`E6V5=U$V}v2+IdY3Gw=?5*wS+)5w93QMfh=4YLDyfP<dTzt<s
z>tb6ZQZ{VI$$7p5w{4FlY#s{_%yZhL^Ia&Ahsew{)<+)9F#FtM^005VpM2*uwn!e<
zY5OMW2F7%ZY(eQL-+6VKak0*DpbtPhuTBdeGTugiENqYU@VRrlrn8@RUHHyv(!R->
zhPHd{+VQeac7CLv4SxM$gV&PBgtedAF2lASE$h>Y7Sn&`aheo<q(6AUC&xnG$1wZ0
z6Cs-(Y=dnxo%Qp!VJD>dWnJ*Ybmp~Vm+{{1=MNhgle$q6^YiA#r__T5XIRF9fK9i3
zU>;N>>3mmHCo*|u`3|>?eXGtVVTp9xrgtL5u)?e#9u2|(dcr(xw+R!*u=LH8W&IFU
zB%NW>d7H=11LF>eKA*fT{nvD*hYZ{NT7QGAkHA|)QyZVW!3#osvd@k3&(3*B-m?#^
z$IFl2N;#xMkP0)*JbU+S_wsK+r`e|R-;$(D9{`7b*#>EsanNlEGY{9r<{_VAnCT55
z3O0;P5+;r~yLU-hGhRQ8SIp18@g2jwK_|VooCd9*=}v32SJr9PezINA7D*S_a~i#}
zc1~oik;&HYG;EbH+r-rR>8Qr$X#v17%sfs@qo0l_+oT-gI2U#^59fnF409|kI6Cf?
z4K=keKk3;4+)U>UYTfLG!wr7eakes@b@FCet`Wmbmoc{b<0V~Xy3iyOW}Ike>p@iV
zur7{>=@JepTuGmsnh5IJ2I{eW-UEv6<wrLdmN^NvNS~!Y4WU+BmUGUs#0lynHb0ig
zD~sv$(y_kHwyiddlwpq7&K2Wf&>UM2x<K(*@~~~DGmh$g*mHcib+)!k-_R||<<-*=
z7)wL5%oX2pdTgDfGd9duY=`Uq@xVM=S)DY7{bzoePm@RHr@3XD?eoi>2PKcBhuYe0
z{;+{_!3BfwGS5zvjF<4kF)%-GKvbs<H$fn?;m&Q_BrJVsaRl}hR{cCqsKd(x_9bEV
z$JQe_>o{*>ou&`6*2JUWI$Hc<zD_9Ne6o-HWtjDF++IDQ7MW+J?*-xDJKBOj*zk<3
zoz#Pue6l}m+b<jP;LXw;_Q$z<tIIsnuAu`QJ5oAq*%k=L3=18=Gm!4pY3ZBHKj;|i
zyA$^>VPTn{eMR+Nn0%1wX1pG3GlA*sKg2hICDzG&Ojlau&y}4+of99|C@V5Q=b*`i
z*#}OVoj1oB+`~M)osLc~Kcik-h7L;{^{^~)^MlSal815Npie6T?NYw7^|L?BOWb6i
z7$!^xaU6q``4pIe+|IHRZVBLfqv9#w0ZoO+3G5+@ZOhU$tw;HY<Zo2G=3G(EVVd+G
zi{XU>{0Ot|!4*)-TO-aP^K&iOwpSK3fpMk-ms{D6^bJqxi-{|Yh?*|%8Slh}hs2o|
zl7)1Q<rPMRMSJzNP$0l%+n2&7&VrOfc`?_$64D==-)W&F<Cn+s$i?^4FyNC(j7$GS
zqtUp@>b;ltq>x{q6YAVbn#S@1n<Ci<;(MuiXq@#Qi)yX5ebNcrzUhw_mwuDjnDUIb
zw6t*9r9H-_auetJI2|3{c$p8i*OW)Zi?a{H%=pC3^^}(;F7<^V(3`ln)j+Y>n=b%G
zi1r$m7g!0j$9zt>ORC{}&QEau`C@&0ZBoqU4}bQv*FJ@OjGL*4W*>-$uz)7cJZME|
z62o#swr3l*yqz=q9u$_Un7r4%)UHRkLD-7C*MT&)2jSfbx9njBtWP?=d)I^ACa(RJ
z?)v3hft=<&`@+_2Txp)pGV7C&p)Fn<a$C*#F)Ow_^Rxu!U(3^i;g8=mC;egmz0Mx8
zHi=7rwYw5G?MpKA>iRLa=9l&Y@XPsujX^T-osI+osL3xCfq&b$)+AAXew?kHHS^oK
zwRx8*&pOTUBtPdn7?=7%P*|^RA3Q-oj&bG(JrRVmai_7%TMxePB-6yj_q-kF9$8j~
zwdb|-3EEsUK078ae<O%GF0a1Erbbri#T&vjg-Kj8V*2>xd!4Vk`D{{J?Z21d`t|L&
z^KSAQ`<}yLzik{rxfs{+D8FKy?FQ$Q?}Ovf{x!-3F~7d^$Io%q=SLkL{1CpK?nB)#
z$HVp~1oF=^HjepZE{V&;w{IahNL>3H7Fo^qm->NyFAbprKKY(EpthAf!{(>WfEVLZ
zUsI#kKdC4b-e=#-3uNb$?_~TPTZP~=F8IpKxL6l?eoTie`K5kCubE%!!;_a+UsFqS
z14d};b3(hi?%1Jm_SAG&-fMYXFV?L#-Ve&O+WI=%w`{TfmG&uqAqU^<$PvKhwYL|B
zG*{yspU@9vwBu3gsqa~@a%+uCo#-IzwfSuue8)LveN6M>4B%pZ@(o@WF6euv8S>%v
z*TN%<@x9YbO;p3`9}#k%fq=#L>>r!6?<v2n;^t-Bcbe|r#(gl>MYz~*W`*y0+lyfW
z9&{=J8JoX;d``z*U3_QXv%DQI=QFr|0*|d7TkpXO*3X3tj!)YMeq&<nd*_n#h9{;p
z&Nd)THS@{$5{Kc}!Xe>r3wq6dvk$~Gd)fLxY=q(2^2jGcVw?dxe~e3i!+V8*u`R;e
zcG+nOv>$Hq-c!!yRX{~7&l@7=_LrHk#18>}F+SEuxrwc^UA~j?G-`#63t+pgLLlt>
z;Cyj@osMmd>?hxI{rPL_llQIQ&}P1Mz8XbQwE4NZHb2uK&9w5#oB25(ct}{`_2p^C
z`CjJ7>FU^qjLggT+J?Rt!i5fnzUSx1nC`ge9*xWTr%(u&UtfDe6BwS2-_hlCv0lby
zJk5<FZ!#|9RrOHXCA>c=qxZ{O_+wt~k;!22wDqH4SEHdnte@%ypI&>79aJH_{HRZ6
z#Fl3iul@W^^EPV>R9XF}WA;7kvGO{@gje2n{yCqZ7x>ls1g;Ii_Qs20lK`+h;cYZ9
zUiNz%=sgjDWp(}=eh(s(#HG&^2=I>Y+1^(Ca=?tUJbuDkz;dK*#$hjMKn5Gv-f4cO
zIpL1nU05Kmd@JEs%S(NsEuHMIEiW}<<rrswU<B)=0?s(si0~HdpVPR@*$IsG%fnD+
z@=Kb5Uxs;WX$?#LO}o3?_B-Vr=VSLSg<|IAd()h}S9lJ$Z@at0YY#R7Zkc&;S$;Df
z$xoY*nQz9?dH$39G9FFw>u=mE2+sC(emZG(@aty<xcQ#-3I7PR2l-8g=#@tvUX1fb
ztqrZAi(Y+*3IuuYQFlYD>%BL_lQ`QG_&4)Q7(-_o8=(TQyv`Q~q;1*$F@^6r9`=s!
zIoC2i2LRC^EMCTgcanqe2*2OK{Rxv-`MI<zWr-Wejsk6deXZLFE~29={cLG%Zfz9X
z9pfSAi{USZzYu2o>>n;l0HUL_P3qsg_@4cg{^Eym-cI<guN;kZN&BpiW9G$o3~$@E
zjT#X}mcaUi<h``lc*mZ*?g+d$3n*=)3~3N~F3WSII$K&l=g`szzURG_7dk>%qMgZJ
ztdH}<y-{Aw%ktP;z3uMX9M``8BZvRKEaM@4<d}IeKgUCPpE5Gz0sNEs<@($%z0~}y
z)4^H*ro8q9T2U#>YfnP0&9~jw#W=^;0(&t_u`KJm2mg5SJ^NeVAHL&d`@a_&+8y}E
z{L((E3b(bIv7?TA?%A{F4qSMz^T9cki`7V)^h2!2k|b#|S6z4RaL&hWqrSkh%qP+g
z)|WYL8e^2Y*;l4<-rCRyfgO`(`qs7;;w+LRAJa6CphPf@S>&>91iCEw*uN&QB4I`d
z+jgBs*X;_cPQd;Wp7^wvm+#)#@Iw#l>@tn>=lp1RY`)>=?z#&>rs*8qb@8IJQ>tJZ
z`&>T<tc7sOu^=dAb$tOirg5*0(7tHzD;{>PnS9a)jWSNMc+sS>2*-;bgtR_R8c8`X
zn`ZMdD=+?17sfSvq3OZ}0+#Kw(?}#~Cv^IAb>!tv&x7~IShvjw`w{BbMhK7W-+dUG
zbO>*l#`VS33Zl|LgCW~dUQT#@(0S&;U_Q6`HrOZkpe*x|W>7}7aw6+vI>&2<CUK_E
z$Uhmbq!B+U!G;z5{Jw;D-gETOp>Dpl^}%f2+T7T%gJWZw%pV&utuW1lKb=y^$MG`C
zA+u$#K41_DJ>M}+<^bDG_xIm+Hw7S$LHozD?ani3kZGLPc7-m4G|l>L2ip)h0BySM
z?#q`Kq>O>Tk<n1Yy<K<hLT7ECxj$&kPLk%q0cX*)Yx~jw35Et7mgRT|KY9hyOe$V`
zbMH8B$G?BZBq__Wpu8<AX`IvG#WrQ0O(OfnG|m;<wwFyKtYJQRd-*T|n@!T#uG4kL
zU3cF@yJnZ98C)G7O@tg`E9>K0I;|ZY9gWC`3{3ND;!90qKA9wf0y5aLw435a;gF=U
z&wH`aYx~W7(k}M;+75pG@X)f~2FuCCjSA$0dd}+&?{Svj!vO0det`G3eX;Ee_^16f
zwCRJSue?}RjE#6sEBboAQUZ-KQ(7P4inVq)hn#L_)ypTz<|j}ez>6`(KhBFzyd+6k
z8QaLU=Nd1rPM=zA#m<(F_hEbq(TU)4B2t6t^Z5rH{KsN5AJ-i9$x8BvX&ke&?|`#E
z(%NzF{re+~YoDJ5?ziIoHp!!DKMp$6;M|85BW^J77H7+rwl-U*?r#Z>I1M8sp?#6T
zqj$-^6!UXDSWMC=gmlH2E@N^UT*v*&_pbfl&)>L)G@FiGtQ;wNF<t5pZSU%O<@EII
z`RQF;N2YV;P_r^Pgn3aGV`;wzrfMC86~1A)dmUH$!MZhl9~#~ldLVRvh-=Ms;wCR@
z1@Cg6!auEF;6}wU{8BWl$sg7^jX2j#ezqqV#j#;@?3}INj@9;;cxB-3*WVKQt+#|e
z_LdL=(pOy*EkQ}fbyg)^`w0oSp)ve|^J(WNogbAks>Gsm!TMRAbFcNZI6oh{2VEIK
zip~Y=xrEieh=1LZQ}YvU7}|yzS;g*s$mG|0{wnlW&NyoMhV!S+gp|_!uCuRWt<&v%
zsB>`J#chO7&I@#gW}%W|o+pHAx*0PPkPDOZ0TOClY(v)vJPk1yv}P4)oKwEz4QNKX
z{f7ixgb~gq+JoiAr^|e2>pTN2;Xh)F4Y3^8rfGKwzr`x#RIZp@d<S@wMZ_xTrLUw;
z!Xzj~YgcPWLu13+oi{rNoqb4Qd-`s$p}S#!gWK@V)*o+O6*S;GUB6by{vFQeoX<P|
z$r+S+<b2(Z8yB){S$*(>G8gR+B7yV8exg4@G35twUVO)X>I?hS9DK)mK^J+8l+Rzr
z`Hr)0M&^y15X3&J2I_#~xJaRHGtopI%6Ga(F7T=w`L;ve8R0rLa1Cfj;&mwPI7e`E
z?Rfd+#+-A`xyEy_0Ebb-4p?LPjyEsYi93DHuZ0GjUf9OM(w43}-yXm^6DRB{X<xML
zs`Iz##|TChMLw<tv)zV=%n#!mTpWv8ON2-b-rxRf?Z43ezV<cz)B1J1e;WRF_`Bh+
zhOdR6LxmK-IX1r2HP>1Y#ifwO5Z{wdaVFRg^r?}P+lrqNME&<1)7t)L_pj}L|NdXW
zzYid!v|Y#7iWWyvygB^l@M?GsH`j;|t!uTfH3ax&&qlCc(&{=RPj;<}jzj-0T-SFr
z-`LUo-*+_s&5q`;?`VEuM>A6P;04!B`o>%vTpS<gk(X#;Xte!%;m>|A{F(2Chm~#w
z^Wc<;<2>&;Hymg60vpFm!Xf8D=K}N7{5ka9NUY5OZ^(*HYeZ5wCm+B_J`mzR*3VxX
z*D&XVbOzVT^-$(|=;RBbzeq6K8?T41-Uz*ML5j%SaE=(G*1i7U7i8#clQ@qH%UTRM
zr|^HDGYXm+cE)7Eop(E{l7V@RjE{<kw})N<5oLR5@Al9=+e4x4p(nS8t|6t1ZL*IF
z86yZyI47J1=d$xAXT^EQ=>hyVpiaDj_OE%lmSN{hZ5#h{@TLK`_LXz_P7sE7Hu2w1
z{nxmY|M13K7!AjzFr;ZNfdtnoX9vi%ipB}e7^}dt<t5C-vX;hhjd^igs1}r1pF&tr
z&&C(ioe=BcyzvSFJGY}HdKB8d3qSyzELQP$MA|fY(G(1Wq1I4)=<T7;g#K&j8@T_g
z^IGRTa-sK)2T+0w$Ts8`VTo?g8NT3H6bAP>`vwn2ULMItmLvZ(vM=H|3Fo3S(l7!H
zzZSZN+2J6$&K!4>^S+S%$MNg6CPDvqEkuYmbQ~cp>f56uZ;g&PF8@y+9tk1PJ@Tr<
zBd<9;@~R^v%ZEpteIv+8JY+j<&f7w7L#_PvL#v@xr19S9B8*v?)rmYk7=L=O|L5_0
zH2&j9<4^xq{OLEwpMEI*2l4oKqVW$$;*Nt1eato-m$`d#qe|DM-K@Jp0@t!JYVs0x
z2^Wpd8u<4b_#$pRJ8(O=TUVcHXa%!h3#~P94XESu+9x;Zwq7nC_u{7Gp^JM7;lsFz
zN2FDp29~$HhRn4E2`xbM7DVE>|2-zNg69No+CF(T5+fTQX9ooi4E;cb=sEMCm)DpP
z9a@bzpNKf0<p0o*MVz-pLT`cajeMvA&2+F2ufWY>y#nFpM`CbzAp8+3af{;4xTJzr
z^M&35Umh)C?Wp-^$bnTv|M#LWD#7yJA?pu1+AN)PJ01L&i}OzSskzuObhHb%i@E9I
zgkb^+pbfZJF+ZTV&Kc(8?JA8oG!O|&^Y}{WgfoJF%(jZ(E@nqDa6!mi;A|uw_>UjV
zEv8X$*z41u;oaA8<GJg)-p-$(UW6Uot1saB!hujb?h)KJ%y+z8+!zMvW#GDYfZfM0
z28Lg}!7m2I^xg71^4DKt`VH^*c?s(;`{vJkR|L=&S{-z*#hq(?&T1b8pS8HNhA<XC
z<}@+`!*7l`Z;d!_i#ef)6N)*jF)#~Mg;6U^S(rAH#bi#5PHsP*Tr6I$BUwnh*m(|y
zPp$>Ctm1ZY6XuWLHrK_`pV~helHce8!+rXjVK^$k`%(<wC%^BLw|^q(2PM2uej%Ts
zLekhi^Un|26xE~It{-xxPfXLxwE=l*KK&(~y|3o2PQx{(VKQl-HPa@zBpxV4Zs-5t
z&vE`#CDh@JG#}^GNE&1d&L*TrEzNNl+BX^s|8}ThO0aq^+%Si5sG&3DoD4ZrAt$rl
zd4RH4L*pv{JN)lVI1Ll4{6E6~(!<cIga2)-&g80dYSn2)DpI=mzp2YP(B<rh;T<bP
z$qFy=|E-SmR{X9CKiuz_Yo87939L122c>xJ<GS}U)XOP_de5I?2tPM~`c7m!)3!5&
z%<}U&hCUZr4ek5fQHDC4hJBxN_=5`eeGU~eiXVU=-#Yugi66)1kAN2eYTsA*;u@1k
z8KjdEJAf3@Gw*6;zvR;ADaQ?&xP6jeK~8e@xqH7nTes^I;(^5Rd|RUw?AG^Pk{+`8
zT9I!Au<)rZ_sRQDd(V3rcR#&Fp3bMk^6awlPyML2D^GOoQ{x){TvDHBM&<eTQ^%#;
zs(HS3@vOw(Y@Vy9H2w+m{@UXje~WppKBDCv`*a$mUeb@>kYRnlKkp*Q3aPCvq3Lbd
z&*3%w8T;0xAKf&4?c4_W&mQgCF#UHoOMiId{GWb!({`nUHT^`SE!fZQH1cTwEy1hF
zkGF4oSSjWDbW)D>^YFIK`g3SqKmXl%pxd7H=`#P$s`@(Cw~HMMw7Po!(YpCJ)OcNb
zgCXSg^*B<``u_X#@Q7iHc7C4PaJ<CDS$R|Y<7za5hXhpwSQk``le}bI_8PQ-jR4WU
zGi6zf!5f;sE@-GO-@Y67Dgy|j*eU~^eyRqUSbLEMnhUJLP)6szhy*z>lWKxCZ=e_n
zqq)RuTEprsY|;&}(pZ;CL@@?$_^Gu)G-1ny!RJj*O_iMErXoB>0>OwE4s<eLO%D{)
z$<_Q6bVc*UW24}RW~=|b=6WfCAksii<wAEDR2bPfIHEbplNmJAut6|{ZKkH?me#iR
zEgf68b$0F8x%;*|_T0Jm?t2d5&yF1(9Xo#E@zR^#`>#L##V`N$%}_(r{(Hg)LI)ZL
z_e}1%5W-H_?h6;v4TVs(VL9}!mZu}{Zh800&$PYw{$J|&{l+hcuRr`^(~J9V-VANK
z3n%&-oynit50A4D?hDSlZ>~5mh8mm~Z-#L<vA-9;+vOt5E8idcB65VDdB$mY=9w46
zFQVNSZ{7?;QR$?z!mOOmp}+XK^5^k<H_}${d<GZi1!YjD<GlFJ{gaFz_#c0J`lqni
z#n!RLcFf(2H}%B>pP7CCdt!&3NpQQLI$vS0aP4-M{^-~6zX|zx-Q&pPrp~tJxp3jd
zo8`}=efCK%_JJ4s!Rxw4wX=xZXp6jsO`x%(;k6oGMc2H`=Ce;*uZ`RKZ2_BZpTWAA
z$EF9Lwk)3zDL4A>W!dN@OK@I!1?&Am!u9>tTK!);-<v*fQNbI&^^x!VKR@_S=#PHz
zvTS$j+Wt>(Ff9-J1Kc?DuDU`in+@}*(|Ij?!}<Gt1o~Xp&%ftr$l&M?-t64Hq$KA0
z2bjtm&U=q8e>>0z+ZXeskJSIBm&|~rGj-GQ!{`rZ;D<Btzr_q}P8&J=6(Rk9Y#G3J
zR#tBQoBI#lJ8|#5UE6>1_|g3@o_>6yZTC~xo(zRnzdrtCHyG(%Z|-`sq2q6)$jZch
z?!~U@@RI{8kQi0q)4EVm?Ij665lGuOM<Bz^|8+TT1e*ClTIpr^BikFEoL#A7dLt_>
z*l2U^UbT;lD|PZkai!)xa<A0OA1i_KQrk+sn6jevPl5a4WG}9jdM>vDhohQng|3#t
zYlXfu!E5DW-L-P9_8M7vvi1tCNaKN@f1rMh*)D{h{D~2|37Tsqu+R+FEcVAfc=O*p
zxUw=k;a_igVE@Xgx@+aB+N*12U){AbR(GwurS@uEX{)<dcGO)f`|Ga%rTw^Y;lR6o
z2FmB|m1iD&=9yoh>c_w{f658^uxN0Ps?KnHh3{}ZXf&N2D|IT*x`fFUs})(b!`7iS
zp{_^l8)&l+Uha`Cl8+4h7&aK5A6fkucbtCU4<4V#60RcrS-X~w^Xx<a{J;I`+IK$r
z>_eLNyio+MKfEB<Uz+$0^V~I}`SzRVuz9`;&-nd+eW}A39<Gm1f9p@b^k;XTo<M%6
zp5HpDVDqgN#CffLYv{W#j`e))W2W41oA);@q+NW=m}Io_mQ9z$zz@@D(Xo2$599wh
z=ff`9M(ab4YS)*~Tg3?zHb27_Mi7)RcR{Q%Y_s>w%Zu-sAN!<oF&^abj1#_s?}PD^
z>3kJ`*^3|W&andK$4;SlZ4~$S12umzZVIk?6=>jA@w)6kjQ(Sr0r$Vj{uu1RBmdaC
z_CM91Z~f}D<PYLVu!38?|GB@^@@8|w`IGNy-1=D5zYo^EQFw#=uF2PBp4Q;MQSpE9
zv<>?Il70H0&0k;HAALyYn{<iSmVd8t+NZyt>mR!PFZ{apmo%GKrfxjhy13@@fB&xK
zE#G;;Oj!MMWX$Y>eC9p6&HebvzoBo1v-aze6W{M7``!IV7y8*h)A_f4n)Mz0tbwP^
z=)<)S*REfE`CHZhq2JW<n<4dweox<fK38=O{NhJmy8NN%^nK8eF<3?67Vs6!`@`@L
zXCPwW#nO%X8M)Q_|G(kwR_)#D{Uf&+&-@FDKfZ5j?T9m9)%TmxkHK5ifA>eVy!i0c
zRxPnJpV9Y1b2oVZo424(ANXA@Z>adX8g5noi*@wjkL%*^t>d@vtBe1BUH<91`IxGU
zpR0@i@-4=HtNFdv`>+0i&X0P}teYO^8@Hg(^(AiBC3qXuCLMNxnjEwf1QWz=5J-@C
zAcw~N1QYiXY}_Vzag*T3H6aj}gkYQrHE|@=#<h+>cO7vc2xQt;mjD-tz}uTQ=@Su5
z5GRR1f_hE(3C4}WOR#<wHo<eWFbTfrg(d`CF(e`Ao56${XAQ(_y*J=#QI{ZN4>h!I
z+19mv=dRtm_qzAqx1Wh{T5d+;t@vgU$0R<BJYp4YY{ap79xH0W5fHubSsbK_fp)|u
zg~CW^McIz6^jE_Pt;WXY_IAt%YTLH$HB968J6I(?-H1w?lT4EfZqo9mA-rIdB)1wt
zvo@`vv8@d?vdYUQ4JB>ahGnK<9E}`E8;8-^`F2h7GO_7*n6mOfzgt?`+Md=(Lt_()
zwzZ>Z*N$gQKK9LYx%ER{S!q~0_-m#jP823Vmh?GELv@@c)QGG7b6#0|w~Xt8>HdP2
zmHx2}PV9eS8mqS#TK|fcwbLYH{3_E-&vZ3fTfZs!P>}N}v)tVLZBtgOlLC$3F=@<Z
znr-@?O_SPNIF5GxVx0E^Z(7^B$V>qPGA_ak7UV9&U;%He4q)5Ta-XCjfuO+)<9)f7
zl{{u@+6PR1gfq0+u@&of!sbIE3qy}GEzDYoRmiq&Ti2qbaVoc9$-25=gx>iErU~F`
zvsi$Rw=zuukQ3j+Zof<ONng=y$2Oe${6(g5qQcDv*0yf@x0;Xm!L|iFJ}ULeDss_f
zvOXncx#rB*+Kwu>eo6ANZC=F2#>PLC`Vb^ip*{fW)~{<mVpfyjASU&%C5>wtZbp5$
z+S=hD<zE7pXkF4|b!E{BMD1Qa6qZ)nJNGgTWk^$G92m&~&Br!yp+{KrsH6dW2+!u~
z_v-VTuSp9_#^$4v4<G6>7wZ@`WswTh<Se$dJ;F4UX~A-X6m93`!H-BjWCCEYhn(sK
ztxpEWPI7AVS|35zyNXgDW*7Bi{s0=CovTdazz81gT;1*4e^SfJAc!8ko@ScRD*<_d
ztzVL|L?d>RFt~NwuQCmlH3^Vz1GIH*|D?%hIw+6dVOro~EuYqW=%4_LjP3U&9|=|y
zM=Qkgk2Q_0$i?~k^V<4ktzIx`#B)H$md@=vcK#1dYiK0KsO#SCyG7?^4;n!d0carm
z4>Ao)LD<{cxntL^+xOggoM`~bCLlG(O2@xfF|Db&T}Ilq<MuoD?0MN`sV^Kxj!xp+
zc3eL$X-@Oj&Rw_dz5Bic4;*}X&xe^to&bRA*tUJguG{Xo^Y<jJv6&5Y?bx;ZjyvzV
z=i5vJq;Y~fx9{A2I}*in7vu%Ajx-kCv-c1cS^-JI4{@-)eMr(cqk@#e8IFtMi$w<{
z5MNMh=LJba`M~w}pN7c*s{RQ3A}dHJ=TvOjk_q$=0K^q-Dri250DuXq%~g}8d6=!S
z>GfLHfFIGJv1wKE@iozil&xdyJ8W4b^CB4jw3d}wVFfJxZj%<MF#NNUh6Uke5c6Nz
z`b<VV!XIE7XI?Ia-+wJ-0phw$9oxEg?EZw8Px%7j@OLF2%M)J-n(bS@Y|_{>nFCbv
z6`N0c%`S)km}$~~Z5d17@)wd1lL7dHtRocWyG-Mx2?SA&*t)Haj;0{?tz`M;x<i~#
zr2!V;gf+fQ(v(Wd1mef7$*1}KG)@eud2{pq8|3>w(?SohEXU6YBppXT`?N1QD~3!Q
zGikcCvQo|CHSOy99<NDbpF^ROrY!qQh$I7koM|BvPT(4m4bzp>d;l?^Ry$C5=gys%
zB_CITEjKn2Jl-T}00^!m0S27#?NS!Ak4$9q_!4N>dzdCGsLRxWD*rDn%T!*#ndaty
zCut2>$}Ny2!Sr!Gr}eS>M0RQBv!<-{TDb4FZGUL;>FBl6uSgmSvcp^<5Sp)f^~p#$
zn()`XvVQ4r*nHA5*EkgVCet)%ej6J8(v~&wMlk%YO+zj&D8|-;PmZ&!019V?lf6}p
ztIWc#p&*2vy~g0mo=8y?-sk5dX(3;2>DDwU%B2J$-~I}w5p;=HpzU3tsXRNuG_1we
zoqJxkzxz<{;7>5ErE}Nbd-uOQ+CMyYd~*8H7bLBt^R~O(1BZL!!y^-?r-r%N+q!l8
z?Jv9M{zK8eV-HW9o_+_@TDI-pd-s6{5B2mM!4>(aYzm{p3LRXf=1=HGF*;*#9|L@z
zY2I)Z-2PDW5ns`79p0bVG-NmP-SAbDCKIpA+wkX_R<j~s3zlVhT$`qO%cFSo&HA!<
z|CdbT{1NhqBDnrW@{ye*O|Le7ABQk5$jkMmv@FI`tT`B$TtKednI<TM!sKsQynC&Y
zH87I<G+!Vk6xwg|p$ff14fji0O}5Yj>+(5HZJIz=_(9tSpweDPBn?9o8YJXk%dn)$
z;u4r;)Z?ZNwoE`}`lLzY00|33xoIg&3{=47JUp&xQdH70{r|)(Yscm|bCRYl7%*zi
z*nCVDfN5%4lKKb~x+J7*Z(y3tJSizenC&}vzQd~z-Q$2Ul%LkJ0;VFRgP#1NmKB_&
z`~tD*&W}kxfpLLU7XNKc!}vv*!isO%@_DAo#l`_1psD{w@-;{pf{I*U(=?$!Xk4yu
z*s?MdzG`g#E6FEwfK<+MQ}cJ3CS!%92Vv^A+i$;pyJx6Fceoz7c1s${a_Kl)Tz6_d
zR)};$rs;0|qo;yDM(*_F3&lz)m8c|~9{rs!mrbe(Rnk3~LeG3Pn@eR=PER_wpczXA
zeO8u>>0CB{$?3^f67w3$6w1p>h&d=)Oy=?uv`P5e;}TD$=c}2y#Qc0IeHpE5tdz)S
z(&&Lk<qwJ5NH)JvuwgWlw&7xRK99dQ?iE6uee&X&)cjmIS;`hGNGdOy=IiI9F1`k1
zz;)d2hjDxb_Zsf&xZPhz9QPXT>$u(DKpgiP?(4YS|A08|HQd*6yT6Gz?ls)kal5~T
zIPNvv*KxZaK^*rQ?(4YSk0OqH4fl22?#B?vy@vZbZuc7ExYuxB$L)R`aolUTuj6)~
zLmc-S?(4YS-$oqw8t&`3-A^Endkyz>-0puw9QPXT>$u%dB940v_jTOv?;wtQ4fl22
z?xzsPy@vb$qwGH5+@`X&fnR%O5@*sx5{N?*P!h@zLLwl5>7qMS(M?xK0uH2zBrIl^
zWknyBCb|ht^r4Gxy6C2hWr3lKZo240|Bn1T-te+7`|c-xC%S(>NB7F|jAzCZoLEYK
zTrA~F#ZvkcVyRe4m%kxpOZif9x=(MD7f);{KdrYjvQ9>scgVh$Rl58@9n0<d4KjXO
zDRaFxWy{`|ily}Qe+t?@E7wZ;{vl)e;oVM4Zuh0^NRCOfrP`DkW|S^(K^VU#e@SW^
zd3OV`|E-kt#8Ucm(l6yp#ZvkhSyOLQy38AHEbGeNm(rh?J}F-+meS>g9$U(nily`y
z#8SRgETz9F^^Tn5*Rqz}uQ)yDnw*Qg2w=-TOvlek&z%|NO2tyXWaeFxuO{nCW>1sz
zm3=Jb%kAoJ$)rN5c!r$kJ#ws6ETzkRv1LtPDo)paNi5|{#Zr2&jHPU;SW16c#!|ji
zETz99mhz=yDg9Nkl%MY9hsikIkIkx3uCso>lw42!H93cGvdT`ct=#6zK2G;Dr7yjX
za-GwEsK}PmUzg*he0gkr*}IpusW83$K{<c1T2B7I?gQlUn%$<<9LeUjDfbZZBJpAJ
zc)TIU%MY-&?0u<NN`F)8JXv4%YHzt#`%1~!oG#~^X0i0mkYi-;r(-GoEm>REv}Nzh
zn!fDySLGbi{oAreTC?PK*~e1)JF=I4{X02E#(ruk{axvk@}=|xvMNsZ@5yaazEmuw
zzb}^ZrQ&oi>*ycIZBo9>=gU5p(i?J{l%JM-T*tE4Ka|^~%;n{}+$rx3^pNz6V=4V3
z$)xl?xlL|2-<9(f$7#v+&_9-3%9o0z^iRZ6zEmuwe=3$TcaY;`AEzbv!I$}BxlR8}
z@-^kU$=;WWQ-3SBe=f(qCf7ms{$lBueVpEwNG|0|#ZvkgVkuvGec8uS`j=9#%l-de
zZj-$&_NC(V_BZ7AujCjha~F9GWgkoFU(0P$zEmuwe<POirD7@lTd|Zc6-(*giKTq0
zSW52`OZhUtdRW$#vHqs)rSw?tYnsX4mMoNt<y!0C%P~^ER4k?ckdCGQ5vjMNR~$>}
zKg!3E+-Bb;AAd4dH_G*peJrK_B>SIb9@+cpSV~VV<xA-qIZn!#ihmLRDw&io6{jV)
z>q>gkEGzr8#J=qPbf4ZX70Wo5+w?ZMO-gSU%ifl~pN^$;d21<KO5agFC#76V&UdG*
zyg{h!)8pQfKDi&h*xW^OUH0-^?5D@PE&KHTrsE%^`pH~U`a5#F?BjIYU&dnnUHLe?
zTjmt&<K$W#C~G_>{Zio(@|eo;zGQKl=j3)NUn-W;2Z*J7saQ(y6ifM1aXKC-w@HN)
zWxt_3=Sjs<=0?&ZmA>VQEfq@XrsPtwl)U|?@}<<Kl1qhB`eu?##Zu<xl1r&AB$o=M
z^erWqilxl0B$rCxQ_7YKrSxf%OT|*=){;x9Z6ucprSxqjmx`s#?If2{+e<DLO6l^J
z7Oqq*Wm=L;sU0Pk3Z?X&B$tY%%$+5dQoBel6-w#y_mN$xSjtRaK;K<5DPP8+?Ddl5
zQn8e|hukiu_LLr}P)grRa;aF#+*@)fwU6Xdp_IO_<WjMexu4`x^1-TXsZdIvF1b`J
zW$rJzl$s&AR4Ap-lw2y7GG|FHr4Eo>%D+f@WUn76JyNlhS(e+S)NJXI3Z?XeB$tY%
z%!4JDQgbAi3Z?Y9l1s%><~+%z(tjAimI|eGM=~i_$~;7JDYZaysZdH^D4A3&WiFCj
zN*yY>R4AqYNph)J$~;VRDOHhNDwNU>ms~2AGXE^Ol=_S0QlXT7gyd4Ol=)Z5rPPs<
zONCPU-z1lcrA$|HDRq?OQu05tDE(;3rD7@b7|Es7v64%LQu=X{OT|*=@sdla6C{@k
zrSxverD7@bM9HPp-zAp{rSy{|mx`s#lO>l@r${apO6jLcE)`3er%5g)Z$#OA3m04V
zp_J}Rk5nvWULrkG>Qb3QDwNVMlT6CITyFCum%X||j*;7J*@sg4m13z-@>urz>C%6d
z^h&uhj#Hl@$Mwi<>HbVPRw|Uz&yt?B28pHAVCj`|r9vq+L@eb>g;Hv$Sjv?OrP6nK
zGo@UqP%3?+UsKAJO5X%d4HHX+Qm$0`kGPvsZdxOyMo1>5mX_P4T&Yk>EhCn4rNXqN
zUrC>t_R4XlR4AqLGL~|sLMb&$EaggtQfgVTlq(fVsnKF7S1OcJW5iOfR4Ap!iltns
zP)aQ)mU5*+DYd*<%9RSG(szY1rCg~{N{tgsxl*B&8ZVY|r9vq+K`iA;g;Ht-v6L$n
zN~smaQm&L*Np4HWtIA$VO_D4vx!pWl9!n{8jy#r9;c7CTEVoO!QlXTZB9?NcLMeHR
zCuK^xQlXSuT`U#K@#eKMpOk*C<WlNG*-OQ#rAJ*Sed&G;Sx?4hRV;g7_WJc=xm}$n
znUpKzP|B6tL$SVC#!|7AdA{uBc3<}D0_m4BZxBm`GFCTAttq$5K9te}**_-x3uO+e
zINi%_dR@lp{#UV#&6}hyl6horACp!3vGV<&lz*IjEj?a*f>_G$mhs=^wiCs&_fL}X
z$#UB%Vk!Sr@o8dDEal5D#_Tg>|DCu`ZvR32qxdJW{9;M}RjlOu<g9#c&a}z*4)Xn8
zhm8BlZT-aq#GT@S;z45hhgj^PV)++&Z25&#oSysRa^6zv2|0JEP)dJN?w6GLl-y6*
z`?6P0OD+{k>CZ?m6-$}VN-m`$$)$YxC8ytC&Q1PV8ed8uAbTlYZr9~sUh>mgO1_WT
zO)T$D?n~LbOMNEaYn0@+;qv{<GqN8fJ%Qw6Uv4+|kozp9pDFpCvfoQAV}G!Whsa(^
zA1WpG&ysyCdvPdz_SsT<i*J%O_L1xy8K-+q=Gs;2W*Lu={pZs6tjsHUe50(nuk5AV
z{p9vrq{o)qZk1!@IA8jGIY(W70jbM<iFc8GdcUMcUt0RNlIy*Uj9-^EZ<qR1uGeDu
zStycTv7csdN#AtYk4&$JJTCG}PhZA*Ug~YBQDPa}RXKit@v`Ey<aT|u?4|TKWH0OK
zx65NOt|Z^Y%J;O~tBG*f@_5+f-sL{zUQJ-mz1!Na&Uson=T$4PpL>`4kb8Y?<Z4Cs
zaqseYb8p=4^7fE>wGwZi%;Q?-K5U&2tyX3q_hIY&npZ=qALZ}hD0w4Gyvdc^sF}^g
zIs*+h9nxwT^2(XWHM*BJX!9)OChgM}t<L8Bbcv4Xh_;4fz2Z6Sr+qr4wR4f{Bhc^C
zE}hUZZCBB6E{*<(_G$Ax<nA)a>$EcxwiY9g>5#Va$c^)nN2B06ZH<QQ3y|A%jdp46
zLgYSOrb9ZUV>*8k`n55b-=R&qPCK-IG5Q0#LML=Y+hZ}G>7zfQ1KL~;xqb<9e|fk@
zt8sAYQslvSxQ|Zg@@2@)3CJVbql=d#Pv|;rtcZT=3g#=peYDpFSFc1K(CR8UTm`vD
zo0DL>2f4l)+@Sr*?7tehI|Vkbfpr58X|+0Bz81MT6|P)IuLT>|!~Qz3bpvdz2Y1~F
z2XvLTHb>rj6LNP8*tr?jwuBqBPusU3Po^O+-3l99!*x2^8P4B<+~1Wst#*UW8giYk
z(k7kI$?oV6?qvTSuyq%l&=GC#iM)6>a)<7r6FPmpxw-9QHh1}Z!C+swmyY&>-TRR1
zHrz+6>2UY`$gTZhJ%nxAqvM%oGbldL+^K{PXlEAkt_P93v`71NLMOES5c;Dsj@KTB
z)j@DKog55zJ%Zes1E;TZr&}`LZ0@5+n>+cL5l&z0PPbrz+1%&r&7F!4gA0$t#-HK*
z6R>{-+(#!z!qJn+!{gxc)37=bE<MBiR5*E-J_lC+fYo_$NC$NBdF1xx$ekDAh)!P<
zPB-%kv$-$5)ZEF>VQ@riSHfm5a+j{rA>H*d@`!fngzlxo9?aMC3i|zP;L5A8a~)iK
z4YqE8^RL6+EwK9r^BU~E37hxBaSU4_TzL!DAB1yn!x7z0yALsc2f6Vu+)b-TVC`Mx
z!J}}Mb{>QC?;+Rg%xUj&xa)o75$)05lgKL{Ah(}_RRh+ahFv<Qb00E)7I{Dibk|47
z?T9%YzX11r%=}f@{1lE~XHM%4*h-MwAHwPDyy+Iw))%n$k=Y!CwE7q}zeH})H9DY;
zuaFy`qCcb)+WZ>1_62g|8~RK3)B0C%>09LLYdE1jy8Aoi);Gv=eXvivbn-3o^mXBM
z^S(2i`}FnUbhE!VoBPra&7E?7fD<~V%ReGFe?*?XPMmJ~PiAxP{M6hjlTKeVPPg!9
zv$?PR+}x??7r6Kf9Me6t`z!LUUy-Z!O_~E;Wtw}7_Gpzu9%Ybg1K{o~><@%XZE!Rg
zF0{kW5V%eUwAq2&9Ev=oy`^FKXL4{pqhMzM>@ExEI$>uV91nu^@o;%C?9wqEO+cQ$
z?vrlb3UGcXtX6@`8mvu(wWVNxRXC!fNw6~vxw{(NNBfiE?(}sY*@7vsmcHI2o4GpN
ze62_v(uMT3BH6SxkoV9IonHodxF+%%?XLxwMk3b>a98>ol58Peqm6Zu8|iCGve_HK
z!LqQkCG#<Gv=!V-`_tg+Smfc>a6WxaNj7&I=Cr;o^Yk^QblVONXp7G4$c-J@KMqcI
zg^lsByF1)RJA1&r6Oe2B!upD^X~PNa&w-<rk-KwYy9-Vhz}>6B&O%sCgssD2eO1{1
z3*2b=2)KI^a`jhOTMdqngnMbth11u%(#@yU6xcfoxksDFz=nZ5I1W~;!(lfZ(bg%n
zypGk}PK8Tr!p>>1J{3+*hhy3}3l7&pZdKv>+Hg!;>%jJ6<f;Ih7r?!=x(wFVV}3Q9
zTOSUtforsO9bDc3xeDNDLs+{Ru5JVex4_oMuyF@mGU*!JptXD9-c69Z55m!=u>BBR
z+6?v|hWlE61n%CP`J-@t3s^k{d$d!BjV+OfPr`k)@f7TAg<N|Y&KF_lB{=<EQ@Yu`
za4#Ld441b-9=r+{wuQ~t;5u#7#&*c9*O5nbNSC%p9=(BF?LfZ?_p}_tMGJZG7Tlnn
zx8d#`kw>()6KuSL+@oVUzcX_4UFNh;r@s?RH|;&-E*&=D(yqwE58(!_eF_J=A$Pxm
zo!w#kYdBYegKywE?R*DU_h9}5?C%MOKf;B*nEwPvw3FGidER|{BadlkAK1zwk7>ID
z?%5Z4MC<#(em~>^tqp?H-_@m?GZ?N+r!}~1e>hkQj_7C@?94!(42QLuu(=HTX*Umd
z&tg6rt{ecXF>vlcIHaqzu^jS38M(JS+)KxFaW?WmN8X^Faj<g`a%()?M~8IfVC2RG
z=Cr#KoSTbWtqgb537wzE`MZ#Nbi4{|%tvldgabOE4F|cqD)Jg_t_GJ6L7vbJ+B1;*
z3y`Zd;KD+BO*o_@I{m$7y4h2a*Xe{V9f~|&3wbZ?uMJy&Lhh`?<LQ`Ae=nMDegS#h
z^15)P!hC%=cR0NP+(X+Nv;WV?l?kW6Pfa(IF4F<spcC3Y0{zY=I6k67y6{)z5nZL@
zP0?RC61le-T&LqL;OgIa{Fbopa=oqK9@;Cy#iNkhTf+@H-WIMMja=KF{l~x-U8DUS
zke7}{9?^B$v3UG($V0kDM|A#puD2ulyJ>GHSUZ91?+jPzgx0!|`@10bXl++m{^6tM
z<K@y0ozO9D?}q-;-_ak@b=uq=dEq3^NB7WiiN~Le+}aDyox=HOm)7@1Zk>wUw_$Y}
z9MctApN_mid;7zI$Kz+h<<sF{7TibsbK&Zl%;|*I<{>Ygh1{g;bV#SaCv9%?(ceP{
zw0;h9{Sf2<Z7zf>=OT~(1Y1=&I1G;Iq{9C5kh_P&eRM)s79%(Rf;@LV?9&xm9f7<-
zyL9^d(sZ-`hP-?s?6_Qyj_Jxp$koxvwToes?xtf}eu>$fKR5>c6}t7lcL^PyfIPYc
z{Sj?k3hUj-ecCz^E?kD(rG45w33>YW9MUbIYqWkc@~$h8+a8>|5{}M-wX5KSF4M-@
z$a`srF7}{5rbAjk2mQv?T#xRdJzBel>s8So(!pZbxfZ#50i4jrh0L!*t}cet-=(LU
z<HI4XE`f_TAouBBTE7f=<woQ&oeSWEwrO=G`qfRywX5K6I=LDy-HhD14mNLr_3Pm}
z9nr;G*?$9b+Pw*G+=kqz&D-JV7UW%bz~-%R4;|bFr+?=+-Qqi$-w6kI!G*iv@E$m!
zqkG}*yOBHh!TEdOD1;ld`vC0Ri`;&Y{rABhU7_QLkZboNcOQWR+NX0Na{n>py|n%W
z{Q&2utp{QKDdY*Qo`$<0V*U)QKMaS@az5I98SZ)vx%~=UqxDzeVjX$%8mu0N%^236
zfIYgK_TNTsK8akt3rDm?TTdbPTREN3#ix-c4bJxrY<>s_wD&Pwc@}v@C$#kmayR1f
zpThcc^yhF)2ek7K<ocJ$&F5kJE4V@HU&EDuB9CeP1vvPY^V8;cu>B%(hwh~ly7Urq
zy$}5nozSIT<lgtld+GQWIQI(I&urHGJV|K19S&bb?sve>Yn-nitX_vBx<ae|$Ya`|
ztvAqb(>2-|jQ)I#+!_M+(8f^Md<%I@*J(G8y!H<Agf6@bd&?q^=x7XFc@Mcc7FO@`
z_;GOV1K3`P{SDYy1@8Wk{dE2#SX&FZ{W0v)5go0K-2DW(vksj8os)F)X`7DeI-L~I
zU;YgJYJE8WIh@b|ZElFXlpr@Yf*Z6=n_nPzX`c>g^(FF%F4NA&oR9YD(pTt@P2_#F
z+61<~My_uPN3^*aT>J)kK!>!kIr74{$lWdAkWRLQOWz?6r@>u)u(v&2{2n%Tg3TY`
zco*3C5w>@QeLC8M{t3ChC!GHoc4&_d>D({K!@bcT(lMR>{j_vT_Ca2wt^MGl$~N<e
zuG9K-<mC+Vm`-SO268XUoYvc5V<z${ZFR$q0myyY?&R@wFKwKNerq86>4-K?MXm-T
zPfmyPLty<3*rgLXHxzkvKJp$~T?m&n<nd*2xD@BR9PSzh8?;O7S0XPCXa7}jgLY|q
z1akLU<dvmi=LXnZ29D^E)&k_^k;pB&mriIakKDTn{dGE_%~8nxTafqBF<o93xqd71
zUfQOMqmjpSoz`zdzc~iEx}C?<F<lvp+`0pKLhCiySq`~JH)wSi@}A|9+jqkS9o8Oz
z-Epu>H)x->#xs8i{kaKn@-Q5<{0MBVfLwnJRx83<9j?;eQ*do1<leJzurlX=4tBa=
z^$P5*0y}g<+pn^JBJzliX!|wf#Z{TpHQIawd1Vsww>jTxuzClMXf0tr1-VYw>6o?*
z&i5ty_0?hTYdE1p+Fk>>`yFy~O*o-zwB3i?n2J26duaQ6uD2F);|DmPW4f?5^5{q8
z5$*mA`|BWgeueD<Y^lwg&w~wG%fR-!$h|C_&~`iQu7}+0fOG3}zJ9PzhqSf<@}xg=
z+R4HB4Uva*H?0pqt~Nq$(+(Zb39UNOU*4GKL)U44FxNMct0Azy39OBTtxdTe9nt}9
zY=%6ctF$u;#~Yg?cb12XTfn*wN3=_uTO!xSBk!eMy0{f`V+9^hN3>N$9<GQyrjwOm
zXBu*MWjLX=F1Wlka%WYzvJLwu!TD`D|719~9X$o^p<M$mY>!+`h1366FWsEA;Dk2T
zhAS5GfL1%gMge(12ei2p``1IB+nMvP52yb>Sh_{Dz6+defIOs~4dKGB%;|uRH)6gU
z=ie9(=!n*LM{bzNtF%XJCC*QG)7B>FS9>70H-%kV-yF{GiQJ{TX|)B9--|h2p^Yt(
z_tDl?aQEKm59svohNqifMDEhwG&r{}a&2qobWE%LkcZoIemb_`qRsgahU1yAI~Vq5
zaefD`8~|Gj;I0GVkgn3kLgZQ*d3-1ww)`i!I2*Zt7;`#09Ci;v?i~S_4u*rj!PXqu
zJPKBGVfPrgMyq3Ca~|@9j_Key<o0~z_VI9o_G#Ne9@D+F_ILDG58?5&wt)SoAdhL|
zRJgPdd2l-1wFuVFfIT{()uG7UGm*P=a2Blp33+rrY#&Bn12+zb{p(==&v0@*Z2bkc
zZ-Mo{!ojU@M4NZOJx3zfYjELjuuBKDx|8#{$Q`;$d$c+VxqTP<yXlb59gSSw&73xA
zbqsQkcIcRn>4YvGi+=MS%vYy<+B^=qaW8Y)x(_ZNk6gbWZqPPeJ^{J)Aabi4_UVYW
zA3|O_kvSdF#=|`R@5mjxm-buvNyrnrP8*Nlc=Kc)PlvSoD01f%<kn-bIu*9-aQgoP
zrJGCVPJ^Szkq5N?1l;9uz9->2?bGJz$hD`ChqV7RTsZ@ILMOEK4D#}s$OAh4|8LUG
zc^0{S7LR`p?m8PbpNDI-{Q_J)2YE#2&xQ3Dk$bd5t19w<uF&cw^e1#gJLjQa>qXw6
zExNQAx%D#gUOIRMw$JDBukm==qU{TitJjeyv`tqo<neDH@1tGXxd^%OCXc6mx_mK@
zkCDf;OP74)Asx}~Tj(!cg4}u=j_8CgU5Y$@2YD~;zRTk;LvFmsyyXwz<Z|RDUAO{v
z=_;)n=+9k=+@W3Cr6bz-5dGz=&>zu#bW9g}kQ*PNzlS#Igw{Vn?p}?4i;n4tE?&d@
zQ}hS4`V7{uMIO=~?S772U5DIEV24&;z%d=s*7fN3zeFC=&R4K;1Lyl1_G#@KSi2E<
zOn1}4x5!n1-2D!&&{iLu(E9gq`6l!ybWDdoATQmF-1`xZX!|F)cnfmlXE>zQFL2>j
z<Pjav{;$ZpZbR;<Et=0OJ+w>r(H?Exj{cz4PbajxgLww?1$3B&-5Sq_uG2A{yA!!;
zL%&U%bVz%2*IitXc4^g)<NIixF5ZoPldjU<0Q5KR<@wR(eX!Pvyh<B%Lfdrle)M~E
z4;|7fM6L$${AisnK7iaFf;@Z>c4+M(*rjbcpldBJh2#B4&>ztWozUi^$o1jqHy(p6
zx|??CnD*$dI{JOup#wUkLt1;B=R@0cOb4_Yf%DOxK)*(pX=`cZ)|1HNJY0Pmc1FW}
z&%oArIR6jkbeVSP9@?W5I;4xwb3NLpwFz90Hfigh==bOv?bEpzkcV`Mj_H6_D`0;0
zBKmdOqCGmKwH48CzJz|0_Gz2$qkY=$MSnzxw7C-IGhRlnR)%|NjqZ8{xkY!=0iDn>
zU3``Ebz#0LZO{oF(9Ub<kLfyXtb*gaUPo@y4sFvB?Y8>gKz~FBv^A0Qy@}kTyJ>S(
z<nlj)H=j4vB)CGmbkfRKLtcIh{Wjf8hjj66<mP1bhqOzl?~T>mrXa7<4z0b5JfU6M
zGtl2hYpe5o-b24n$F#l%^3warJvySzHIZ8%AP=U(y|l3wTx=kZ=^AaXjlAna<k~uL
zmG<b|N67U8a+mh$gf`YiUjCTpL&tPXo1Y+e*F%4ecGicDPmxD-4{dCKT>p&o(^cBq
z5PAM{9#4C;wGr~9mDAOP^KFd0_yug3?5E95VE;?xK5cykt4)#j(KcQC8hJ=pzJc}4
zI6rOC*0;zbx=uTrqu=}vxw8cv()O0j`?wx$e9!f^LY}^#Lb|zhOvkkUBXYZl{=!eN
zPuFOD8uHT5oR3c5qaod_t(pG<8{5DU?a|J!$P-#qZO!AIZPDLNC$zjrGV<+^_s{`d
z$RgLaN1nb<M7lY2cN?70svY)rK!1hSEVx1YboyQs>89_9yq6AXs~^|f33;8?c81OV
z%;_2((Oo&@)-LF;(rQ;YC+}~OZZ2J+jopwp=zuPDqTk*fd7X~w!a(F+33(5l(E1>r
z&mPD<I-+xfneU0*r6XF&`)@SQcQ59&+8gepJ=&4?>PR<pALI=>p=}MhvoG?94(Kj<
z@5FR7_Cv0Q!2#V%8#Z!lIP!?D)7Et4l@Z82T3Z^{_D5c)9lE>>a(f2ynD%GF_DJN`
zEZEG$KCMQ<`T;zi_UN8vktei1n)4lq{wf{O<{0E|8F_<Nvte&6=cCQ#INw3YOUuIn
z?dY&^Fz2HK+8)Pz4)R`F&E<UKk-Kz6+w+iH6OhMrosQ-sFRp;xao`&5(fJjT>kE)4
zbWC@z#Q7H@*H@+wg(KQM46b$|*A9n^tH3^8r}ZO{dlT9JH@LhiY|*`RKo=*m-$j3&
z4(QTq$c>|r_tFXNOhz6bgWR0L{$t@<%g4dCf!wF-v~@gkV|C=giLhD&j!uR{Iyn`t
zu8CYb9j;7;oiku#EjT<AZqVv%xMywT<~gvl4jj-8+Bg@vT|geu4O%-7xwkIoTMQT0
zgYEO-h;}Z3%j+YL>4>&2L|)tgc}Rz}eld^V5P39U%jWY=Zd=&zguCgGj%jZoa%VfP
zPsg-11bMJMa$_iL>;P*TT%*-+xN0E}>HLncyEO8M)|P=wJ0Z76!U?S{3)gl=?$E|A
za7+huFdF^FuIwKJ2ej&fyLU&fO@#FloU8^nXm2uH-UGRs0{7B7ZS0BMr+qr6`)Jp|
z@!nqOx7UQ7y<vTA=KC;T7q0IMCmX=>=9A6GIoJpeXvc)@>ByZe;mZE>wy-w?HnxMc
znasCmPA5CT$t>jV9<Y8Oy$`I)a6sF%zAy4#+Sm_vXQN+Dhsy_XK02X;8OWo9k$W>?
zXAbPlf^&1>nD%J*0OVcsc>IBIFKx|+d**Y#gW#eA8wbNN9nhsiINv<vr3J7*A8yc|
z13L?mCyU@{5gh&rt{w`<e}U8Y>`k}i2-v69k+5Dt9?(@fJ^^{*&z%1x`Y-fpaQ+DT
zOt}14*k25H9|=bn!Oq`c?GjjXVUO;n^-Gbfqma9FnKmv%9@7zBI-31G$h(iBujYKm
z!pZe;gVqA}ABWtz4=$eo$8<04-jCesMy`i&L<e;7MC9fJ$m_KAAm{%(a_w>0KAG!1
z$N5g-{QrQBQ(>PDX#IKSry;jqgmn+rUV?jQy%#Q=jy#|PI(nJ&oq^nVg~!t#oj((K
zLVL9JD*Dw~$RoN!+pi%{=$I~_jehfW<aIiv&2y0JZ}5C*pU$6)Jf<DmeiQvM?bC%S
z=ZldCbW9uPAy;oB@1<SZUW{CO4|(x?*nS^w(E7))b|Lcc6F8*pPkH=B$c?YzzKh|6
zc753Y7P)>29Q46;+W8)~E=3;E5pDc{ym%RM{YM^8dq45`%aL0@GpEB}VCM?tUfWj9
z=b7@Au-gG^SJD098XXN_e-CnV6kNI%4wr=!+FA|{uj70=Y+ny+6JYHISYHv2Xoog$
zWWE~mo&b(${U+F(jJ!$*Q{b+fk!!2NAsy1iTaa68Ag|F0-E}MHUlX}cYg1wEHs-WT
zYil9zqkXz^JNliqnbYPvaODo<S^-uySf_1Tt&6-tyL9PJ^sDud*Xd+^*uD#SvLWZc
z8#XtFJ=!o~{T}2V?a}@w%<n}WZVK1vU^Cdf4|%jX9MQ=Zuzf#rZ7VpTRS|YW<nA;$
z{{ZZ54g0jVEnIjIxwRc!Z+UyT^bqqM;0A45u=_A_eMh*D4r%8R<nB&9p7v<tQRHf8
z<UO=Q>yIIi=qhdOf_|-zJfL0L-W7R5$F%)8`u*LI_tN_AaPbMQN7ra;HuA#L%;_4f
zAB^052Dv^D)}Dop`EU;%90Hdk<_q9n+FQu{IpoRNaG@7=&x6&=u)mo7bWDe|a{=<w
zD_rkFxK3-&z`<L{tqAUZ8}^=q&3AbG^KgT<{|USAvi~LazXzMWaE*59uJ@5!uON?T
z?^U?;0dnUxIHuj#;YtH}OgCun4dx#r*WZL2wEGqueuO-E2ev<kt@q$QTKfR*{sg(!
zfb*Zi?q{(18S~HKkap<8=g5;Ukn0Kizk(y$qRlUm8{e}3OW6Gm4rr?n?)nOOJfPV8
zdS!nDt3hz?TUZ+l8-1{~JRH->IN1LlxxFG>`2p5ff)m=O?H@Vc%E%)+pv|9<YhB0#
z+N1TKkw<ie_E$lFgZ3uE<zLY6uF9OYCc*ZvTyHWQ(;jW9_U3gmryvjMkTx>NJp*|U
zt*s90S>z7w(g~f={u=1F+t9DC2}g89o9)Q`smN=zvld+FKyI!JtA22@A>5#YP2isX
zTyIlY%fa^MaGefmV*qk(3*=Qgp|wur{+7tQ>4Z*by@=cyi2j(4X?GfOYY=je4(Nc+
z4MuKljs6Pl(+Qo>_7L`OgZ_vPX>%xYV_W1kI<{b6<MBJf+EQ@53*1L*CAdC}^X&x(
z!{LDL8UaVNODB7yUoDMXvpFAa&VZ}SAP;FZ64no3PP+%fdLFqdGjI7I=A)3ibd`4I
zAUBug@pIuCZOntM(a2*uqRj=!y)no`T8)LZg~%P+IutgSLv9=f*J<r=*jgTWM2EEc
z3v(U0^;g&!2Rn2(?a?tE(B^pbhjf*W=!8yaYXbVUBe7l&ZMi(36*wOq(#f&Nt1BW8
zj)S$8VEcHuo7PT%`{<A^uZ(`98+lA8bg2uudm{3P_WuqSS3z!_1c!8ZGF+I5Tt5Zw
zp<Oz^Dspuya*sCYq?MnBygUj0ng_>pat7?LhTLBa_fBU2`EYRx9MiqDc_DJwK&~!<
z?bYFkj%oc;<fS!`J9I>cba74O+GXeu>4+{)MIKy^JfcI|SPOY_1&^oIm9V}x=cirT
zpkvyk&2`YPUyI|d0@tT|Y4=v-_Ik*pJ78mdx(0`|e<$bL0J(V=9MLgtZHU~y2YG%Y
zIJ_73Y4d*A*qC_;hqUn^Tr!ax55WyOq05^f_a0_W8;`){O_4`*gAN`=?rerUehgNd
z!$}?X=;#T!xCQ&^fKHx5UfvS9{WKiY;j?hK6>{x)xVs3OFTjOqu=N&fZ3Fx7!p636
zM0>RT9`f9F$m5UTuI*v{W7wsgPhfoq<nE_%jkZ67ixzT^?xD@Ek%v1X*S>+Ro#6Oe
zxR18lrZvBB%I%8W?hiNUcp2C!ArEx+?+IJ0v41bvU6bCM`BWai5A3f6Yx}~<+OSW1
z>%jVc$ejXnI$jqp*vPdF;FykRdpdGsL*x;yZv<QW^Z1RK)5&IVFax>172G`&c8YL*
z7VJ)g{g$_ZO9vn~w}aJz^!9K!t#*XVW#raQaBeoN?F@UgOXm(k9_)&|MyuW7(!o5Q
z4(PCi+?s=2-wV#o<$U|XeYC$H?9M|j|HxqT<E4+*ro-NR&bL3Dcjy_gPlq#M>k#De
zEVx0N2f+3M<o1DZLc3+yU5MPB4Qq?w@E|y#-Gkx6p~%%dIHB$NaP?2f6Iwrv{fm%m
z71%fw_G$Mp*gl-cSK!>AVgJu?m9~y#|6h=6N5T0cVC!hur=4S9{jbP_W8r{~j)MzF
zBKJ;&)!*RcB)Cc&r^9_Na_tP*I|`2I{L!#~CUT$l&Vu!0kb7q{Z}}YN$09e+g*`f<
z)p4A^io8O*=fQonxfphiN56hPoX`<nK7r?R0rHr(FN90o$c>BOh}JHKtrL+epE(`V
z*58pwmoTUOOX1Q<$nDGFg!Zn0D<^aQE8zz1(dAQk{8h-~mV03PROA62(dugC=4r?+
zI-q@8_mIcepua|2*Yfz&IX_*a!|Rxzf!w{G$J6EwuyH1GkM?QpM&$XkkXy7%s{nZ)
z9nsF&==X0z-k_bEVf!59<}Gk9t!{;_bCJ8Z!F4*O%_@(-9eF_8bpAZ#9$ldWx|fdV
z!eaC%bd}cb!2Ifb<OXfi79G+K-E{%_eY%^D>4es5yuTNs-=qWDrnQTZyL5#P=w3RZ
z3m5Zz@5KB*?b10Pc|<$3x(odgZP3Og=(lK(cIZCZqf3{fKcH)LOy@5{uI|QqF0IoI
z+N7<^(Qnf=I;M>)kh}L_z8>1AwJVWFbcIgnnAYya@x`mqZ_oj4(fJ<a4(-w&-JnC-
zx*GinU8A-8u%3Pm*Q2{>n@(t-E?tZMn6A^t{g|(C9deiMp#wU1J&&gyT7@{im)2?X
z2K1YB4{g)hjmSN^LI-qAN3<27KcPcfdjRWq-GtnrJ=&)GXqPVCjDDZ4(IK6`1$j)n
zw0aQh#k5WrZ$-aJ2ed=yZ$lo?E*;YiT6+ld7jH+uK?k%&=kGx7(iJ+Od+C@i)X=XU
z#{5-Ur`4UvP1>eyx=wp^*InojXpfHQK02Z8yV0*bg7xdPN0;tFu0M*rL7Q~(UgQql
zLwj`YKAsO<rX#veC$w=t&*w3$=g|h8&=y?^(eKhVI;8ankSDZD>vhZ@(<W^`h<=;y
zp*=eH5b}sF)7s;hFQRR_@G$xV+NWb$J%U_&0>|65L5H+O>yM(}p<UXeV>+bG$Iu_s
zJ+yif>uGi5I$fbnI;KO~ejNSoQ@nn(PZys+9?=1v(D^5kYfs~Nmp14IZPBHt(C^S8
z?a^INBM)egj_E#He+KK7pFzJxN3=^9o<;7{J{{6pggl`uwDByj2kp?-bLbE0kk%sf
z8~;FV(pB1_)$_<bx=aUjL`QVtpFBU>r}gKsUhW01M^|W@ZqP1WdJ+9TU8nVbV7}r@
z$YZ)rtLJ(DdXXD+m9}X0GIED5(;gks0d2m5{)q0O6Iy!}x%N-2U!hGprd`^44gCRK
zqhnfs9l3e|^L5iY-A7xr{Ra9yx=u%Q;Z5ZFi<qy6cIbSJ+^1bSq8oHVTW_IXdkOQ^
zXoJ?@MsCsFv`Z(nPuuUHKcpi%rp<Set6r=Z&@OGfhunObIc?MV_mO+FO9ym=j%e!x
z^e1$U)?UH<T@B<0?a>z9M>}-+L-hM}M8~xG5pwNS%-=(swDvJ_o379<-Jk>7`UL$6
zU89ZHc>bRvcj+n}(Yeo%tJl%*&<5R0TeSH(`W?E5_Gm3Z9?%s!rej*Yf%U8}(67@W
zZPLb<$ZguEV_N?Tx&J2S^XZVzeT_V!9a@Xg-%A^``3?Flx`%e?{I|$G+NA@!K}U4y
zJM^o!uwF=;w9$v$p{uk{tM8GAbeWFnURrw_^P4}Q-=ceHkIw&yJf^#8;~gB|N87ah
z6Z$>6P6xE{GxCV8(h048L9V@v`OCCPN3>0wzoOrz1KOu`)zN%iGNe7)d=K+$8RY7H
z*rRp2kG5z#i++c$(;jWKArI&(9nraV<O%K2+6P#_mp15P2l{O~pnY2JhdiRYY1P1d
z39Zwm{^&R9I_=O#4tYRV>4eS=;PD?~{tE5U4LYQ)PV^^qjn+QG@%ljI2Hj0tbV56H
zX%PB-I;2C|7>qooeOi5t^|T?#b=swUS`9^Re}aCOcIku;=#qy1hz{w5?pg}D_9^D`
zXoFV6kXv+_cIb%qXmdFFL%N4npJD#|2;>Is(l*_oUD{e2{XQMi5#6;6a_w`TKW))!
zB#);ZI-z4)PjGxOkA8~|Xot>^LhjMsbU-I`M3<IDzxo36hqO)`qmi4mPusLM2DwYS
zv`;tah%Syre?s@r+Lu^Aw;XbVF4Gnr(GG1akA9E#=z#8{W4ffHU;m2tm$vAxamZb|
zoA&914(ZZ(^e1$UHonIE`3cA!+NDFfL2KWjzqA7SO}a)qbbdwT9$ldWI;JDqT#4sL
z`?UTo)>A8UJ-STWbVR#!p$q*!?bG^qn6I!3b2_5+KIG;^<Pjav)(^;?RgvqzuzwO9
zXSQyB9m=l;+gZ3u8~xzE$;i!taLs^?L9n$t9ME;z7>2xSP3E*u8^e+3ry|#v=KOR-
z7uG@^ErYyH`=jZ#k%wbpcOBSU4$c)|e|gxWL%Ko7w7D+&T^;>3IvfX^>miTE!yz3`
zfD7v*4_1JKmRE$kHekLI+(U;e!^Vcly)L*$o0DK?Bjn~(xV$mvqZ_oj7IND}ZWZ9d
zCUCSa+)Fzfz}}|F^^MrS8EhBf?#<zFd$_s<y)*1?2?r&(XDc|_A2z44--E;LVDk*P
zvOVma3Fmi!y|dte_RoPW3wcn56FRyM)^<T2-2m5G4tV^o$c>wr)6vb$cSCO70*AD^
z6*hK9u5RP;v~@dNEFpLAfFnAp!S)`={rlm{o^bR4T-Xb?AB1~om(K0Y`5!{=($2$h
zZXeG72<+3*qp-0r^7t`0q_t<@ct7Mu1ozmmM{Cnz_j%+EI;KnebN+uar>z&@(hTGQ
zU8k*=kUKMxhp)nwS+M;Y=cCo@obLe6_ZDm%2s>}X0d2nnn`Pt)9nk7M<i**@L%NqX
z-e-Oga*qya`xE5W9OMyQqr=aT+jEhd37ne;$6vyAT73m~%|~v011ksiX_vOXMV>zd
zdGH+^(bo5HWdU;a1N#@k=FhNN1c$%CJ#^H*P4nwV@1Z<?DY$$X9IXb&f2JqH?qA?w
zb+~W@9Pa@;F6`_DcO3<X`@juaO^17rMsCf7qhsh<uzf774uE6YpAYvP&-oqLJpr~4
zfwgWpru~)|AU94#?k|MHmKVX+-;pPD)bgK@dnY0H4ukcRVZ8$TEgt~~ryvhqI6jsA
zN5S@K%#VS)JlHxOZqQLT?4OR@JBi1iL7xn(GvVkI_S4#Fuz418|4g`WHtd`WYv;gr
zmB-WOdF($Ixp@KmtFU`99MRzwaQ!^w-c@jUF&tb27tUvXE&E%(9(FE3p4<TEFN9S9
z_q2QyY+i(1yBUt?n6@wG@wX!HqxIWh&qp5I4i_$g^%`8K&AZ{?QsjOJ=Pu{*kHYp9
z%pZeeI-t!fksFUAuhZHSJpL-==9_SEH5|SLcV7bs@6p$?|9x1yj&8uY>*0j%q1_LW
zn>QdgK8Nia*-yuG_%(9lCieHieY8c}HzN<eN1nR{c7K3<+W8fZZ$)maZJW<m?rpG>
zf%CV+VFz5i12+4?b=vL^mutv_9IW37y93~WwmM<+F68<^IHD7}d^d767<nHZ(3N|T
z`$Ldx_rms2xJv69+;t!Fhz@9PDddIwx!y3iMu&7EMD7k}PMafO^8p^eG#t_)Z9d53
zmqA{q&5^M65RcEp5gpRj!#sWz@?P4b3y&Z-Ml+|~F>v`&9zPaVkHHD;((X9+*O6N*
z!QGGZ_%7Id0*>h#?My=MKgs^daOEj_3f%QH>=<wl9j^}C&v5=V;M}vYH5Cr&m@Y<~
ze=Xz@t*-;S&mj-jgG>K_o%P{fTHk>A^T@T0;FwNm`=301W8?{)(C!P&P2}2(a6<dE
zvk7wJCFXQUJDVae^&*ey2JLT#yz(;F+Z<M}aK0^Ik9M|%bFU)Tw}M^Tq#LwDTd$$t
zr$aiTyIx1Gid>I2=sr52-8ay0PeZ@<CLGZo?QM-bA0yYcfqgopyWT=>Zi~E!j_Izq
zk;mIHr`;W3;~nJ6f*W)|`|lzTc0yi$4>op(yWfYSJz?(y*tg-Z!Q*GZ{)hBT*!l?e
zX2I%X=Cn^owD}2g>j3ok(lOorDRNatUiggj(S5W%8+q+><nf`f`2~;v6YSFto&S>k
zbT=IxhJO7k<X(lxw|qF<^)>R~&v2dgkAO?xAUFQXoc8_(+utG&UAT`9j)E)S@%W?R
z25r$+A99-xXqVQ$NAA-Ot&YKby|i^KT>b(5)^S{q_PgQgkIYYm^`GE~uF`>ryys`+
z`swWd1vbur{g%&z!(Wm6bW!zdeqDDi=X@DBqV+7@gS@K^RyV+UJM7X`THVOJ1Gz<e
zbVBF*asB}PKCRydyZw<ncfxiKj_F=HxC?oC0Q39cu1;9LAMR;6gbM?ahjg7bA3$Cl
zgxq})ZqVLCusfLf!*CyMJ_1*UAoplB6pm<@HXr5jw0aD7H1r2_eks_lBM)hh)`uZi
zk0bYJgHGsxwuhtNcmn;sbWE2<AlIHmUZYJqzcg}}uF%F)=uc?-1=t>me)~l@ruCPY
z=aG9a!^SB3E!bTaHs6J<(Qx!W+%*O^8gPSFAH%h=obOAxcRASYgZq|;weMk1ha=h;
z2m3!Dk6Qi_cE%&Oe}c6Ma7b5Z{b%Gctu(XwdDwl1Qh6C2xW$CbWiq}}>T0QUOW(<}
zvcZncv9&h#3lE<+W6JbJ^XJZ<F}Z8vZqw%+I%}25+s>apQ`+}d?RzV8h4x%_Nc-^i
z_V$i!M;8BjpHjAFHs?`iE?IAkjMtP}M=I@0*E>MQ>DIR`*2_)%59{u{X#Rp(a@<HS
zb9d&nOvcMhZ2ozMpi{LkZd3b@%MKZo%Xa94$H||a9obc~9Yg!)$7J(zZk@wA`;E+Y
zb}YSq{|#1Ke_C6oQoChm%YW0d%l8*Fw_#>;*CXdON=E5*dQ!&ENIl1MZQe)k-_LWi
z`E#A=3ubLHZ|2U2O?P&kJ#Ue-Xn~w=hw9g%_Q&(0#`$w+Et!9!j8~H~q|z;&KRNBc
znSbr6GW}@PZ?u}1UVORy_*3TMI*!aaNajoL$B8mNS?V;YbW7K<{+D%{mpMKCHP?{o
z2djRA)wh|BY<srtUk|S`Ie#Q`X);eb|A#XEMC$Y3%y0jv`J1OdRP`IGx|`?SzGQxj
z^BZR`nSW~;Zzp9*rCWOb&VQQ!H<$k`c@)yk=DbyzqxE@kyNvIZ3Z>FH(~rxCWSnl=
zCU_idem*QZ+?h3ba(Vi~^5oxsYBWDF<jCRHZad^u?hw^}h*ImyN8PBl{>^z}uB)B1
zWZg+JUPo#@sn)t1$~fJoZuGycJL{1DeN}ty{WA9Q`}J2jN3}aj?bAMp>srIj=6tTq
z+q%DJ$oOojD%VQyZ?rzvYkl4?ICS2k*>h)2o;z!9dS?x}Zv$25K(+tC=5)&Dyzy`5
z{Zhu?OZ_C(x<75_qW|~T@ptnVn%8b4xptj<r~}4k*UHFcTerP+_2jYPdX~)Bx*s!S
ze2~;!sn&XnWSnmQ$9k);{o4iS{QH9X2(vj)DD$<}dtSz`NWCuATJK#Mr`!LrUh^|)
zxWzlT;NRDCxt>v7vfgGg-dbuqsn&YC$oRilulbqvul3{~vHbl7jk%sL^W|m2^z-*t
z8Q(2+pHyqTM`Zk8thf3ah2LJ#BmZqdb7>RvoVR4XaWd|bT2-pG-kLH_w?Dd`3l}X&
zKOUQlZIXVt?5!TmjBPKZAMP9c=HtcZdalfum-*8Bce;#ysmrBW>)j{gbo-<A4p?&y
zt~b)!Yln<AMQV*5<WnKes24NivIE+4?ftW3+dAbdpfNz6BQsOdFD2`?Uzkb1z9@GY
zGo4=L7B4xEQ8Mn5nk3aak1b`KZhv?lYft^xdF=Ds^LRU>K5L$boXNkR$NH`Fa7LQV
z`8`>ubv-VTagWrsQmym2MaJp&N9Qr)U*|F0+;wBQ{*F36JGOn>^!l%nU2e(q9oJLm
zFIjJxj7Le0k!r2Cf{g#;dh(Igdca!?djHFUR^DvR<H&ri`*)0t&y%`Ps<qxdGETP<
zTjKd{(Pr4Uo{!|K-mKO~*hoL~*NZb5KeI*i&&8RGGxET@ZEA6LoLuYy{o1qr<<9}x
zE!$T~KL7@tkQp!{ee@4$|3@afW=Hz?N2APiIhDI$$$2d&<Ec^wsn&VzD&utfqw|_K
zd(Q7p?eKp;HF<CM`*>=<Ke7JJ6Px?56SGE}&Go9XZtHqoE8`oaZsNK8A72+{9dhXO
zIq4UMeoB7mc^f~-*_=1|&Ae?FD%DSFfK<Ar^X7l|eP-+W%h#Lcyaj1nR&_3`8nTnk
z<-A3iqjkP}%XmMj{r^AaZ9egjR-L2OXY!4cJRfjg|2OmAD&sq(?)v|jxA_F0SDktF
zbv8Y}kn{HaX5K*;DK%7Tm{hv`H`jsR;mP^_&^+Im^I9@T>pIMmaaro%|Brd`ggr@h
zPEu~$B>8+FV>ZvJN9JhFdzXywl?tWO?LVEbJWn<sH|ZL$I>)Qy+r~GKF~^wAy}EeG
zyu)O?bZV(|`;YUkJ+(FO1l2h~o!mB|d5pt(OTU@-AQ{h<a{h~X<$0_%@4BjUU3Es=
zy3Kh5&Kvw@-iKuTsMO>C&Af79TNAIZI@ed#w)NAA6V9voORmFs8LuW~NVT2^3NlW&
z-+%wt`uvcuf34|<|LeOxc@n;$ZESYi^qVGr>t~NOoAbE-lJ(A#@%d60NwwCyQpV}_
zN9#48be62R?SAr<f1tWlR@*FHt=OK&H<}UGOZ+A4^}j@^AyP|8wbmOY<8=F@^;*w!
z|F&e$|6I~s&TP(O%Y0ojO257zBI8q}PM6BaZRy9=4Khx*>V|lp|HS;C&-b$qm_B3H
ztV5((p6zEfpHe3_|2$is?d7R|Nb@;g{*j*>+Q!MxC`0-U=qEo|O0C+ysyyHKAKEcA
zeV#98dotM#<tx6wyxCl@Pu6Xn*MLivT2X2hsn&TFWt?t*bY8Q6dtS5u=)B|~_lf>>
zUhUc6p4kAN*__syVLdg@Y!0eiKfP{O%lLMwyQEs@_X+dX&jYP}>*H|xoC9aio4qK#
zZsv`djWcGH*;u|fUfQPaYaf>z*xpZmU|dSRJf=T+=iA52Pu*kMvmIly*|ss+jzQzI
z!}wq4%5wE;nQWYqpWtN+#+&I*6)uzKB-y9ux4n#al`2WK&TqPm({0Wld>z3{77NoC
z4CLpbY`d}kl#Ci=s>wsLqqBpvvepXOF>-t|-jqM(`yiQ5mwme4?J~YsDwJxi_n3^+
z&Hsa+lV(g`h;^o=>uj&q8<HEHT`^r{V)Hn2g4x__moK?r6J@-*)Ksa~IvdJ3-TL@(
z+WNWkw?Aw)e?GV7H$OF-_if8`&27})>3z%NzU8w+oAY>Fw_E1b<(BmRT`S|8rEZgI
zt$VMG(=GlF>;BKzH-2*h)*d^^3GAzm&!lItR(h|;H@^zX_2v4xE0%mdEF<HUq$WzW
z*56ph=~m_UW%*72=jZ9%xzp3@J2J}LlX*6ii86aWE8mO_k$=r@rEytp$bjss@&UJX
z`+)4o_Ps_oKcw3C%8qG%3)Y<1SkY|mJz1yqd3mLbZ<VS^wa(*18K>LB{JG!a`LsUn
z7cAOu;p_va&sa2j{=D?shw{?X{h3Udk$<N$eJ|UILzc<4Yr_Vt+A+DUeL%lKxrzFK
zWtJYi&XDYe19BZB*4?mUqY3RYT4mzIj?LEDvqP!b*<IU@&SX~3Y|uVTuGdOtbN#}V
zOP)uk$#`d}-KARRd5nzHZG$4N(;)6!=Q-oR`7@@^nUkKPb9Hup#yMCGJ5N42<q;a1
z8!}>!eEKaV&t^mPL0LUJXt^QTVLJ?&+_7p$M*du_bE(n&<(s3|GyT@f>K*xPSNnLZ
zrj*xZHix~keojW|$5TVbA4`2E)jGd#Wt?s~KJT_Zj$7w9Yu-#bMLE4uYS<`sdv^Gs
z=4*$;TQBbiT*tg>$vV5qc!t!0Qmu7PlyP$%ejguh@jpLqcpdhiKI7m6@pwIn$7>@s
z?9{A!Dmz5}8!=?XK?AabvV+=(^vkyo8{4tm@NDO*UD-jM@{x2%zm+nFsc;puxlSbO
zweI%^GH&Zps=rk0d@LEK+upq2$;N+tKC8<Kjf^vk+uqD%;!M8z=SIyxXT2%UhQs84
zy*XN*-G^j{X9s4renYbBY5nEVS}Hqe(2D&=4(rU0TTUA@u)W=yyj(|Co85ow>?s*-
zz=~ZR%Xf^_hW1}-1Fd6d=fEM^j`Y)@)E;ItJ7<Sx*3ND$U#HATX7fCKIp3U&(#P>8
z8Q&}QfK==Lyei{#Ydwy?zdwi0J8bs6nRC;7Vw|0sk}*b28K{Ommr-tqd|r00knP_&
zctmH;$aeN0(69fL&h&@kn=<Xor2BN!S2LUYuB(?kFPbvmRca5Z)_EK!<8(8B_qtf?
z<4GRpX$!ZS|C=Wz^UCzg(h#X-q^=RDVe$jgg9GFd&&k8xnahpMZju=^XlVbTOJ_&O
zMIMpuKQyz0BpXT%>X0YUHL|y6v&*FG`jgFcry@Cz*4L%aWZZF${9Gf|I?t74oNlf2
z9K+|4-<;=W<ykWh-hILBMYA@YzF@)ZS?No}?e;$M3f>qgQ)&Q8jreCqO&XG2uHVS!
zhi7MIz@W}-XTQnvBd2`bOdr){v*%{A6J$MiikU8}99h3h_UYq!qKq$)@}*kmcZ-bE
zt-$9shp%h?{`|I^HFxg(Kg~){&Dud;Z&*ue07{LxD5D&?iv32WFQ>Op%61NHp3I8b
zk=c!#XCsfRVK&!M*UGh!QF=b3WjsY{O{v!T>>=ZH+kl_9m4E;IZC<aP=ggilYqR;z
z;prJUw`AlQZNQRJBVNp?bL6>gSijNzM&`2F4*6=(k?G8?kdbHOOj{<K>l`fSm|n6~
z<V#dByET@TFTiGV)FbDi%P2k1hh_YUR3g<n&zaXX+f=j_KA-=|-&g$py6qyb56|3m
z&iok%rzaX^UT$lCwK}}{=MK$3t>&L=H2+*m{!}CG>nAT_4QXGt--z9E+YKHxHaoF%
z<$;5i9W38Jjm{3z$D}VaWX5LOGi~X&pjvKtzY%RqXS3OU1GB>h4H(?fk&_SK!6ULA
zTEA?2=PC!vm%+}F{Rb~A{qmjHs%<NEbZ|VbZA{0&aoNtTb9>08*fD!gw*8(=c4*uC
z>HSPMbE?_g*W~`{GD@$<GcxX#dQGZzJtkh?Y*ST!ztH{%ALpCSUbL|Jke!o0Wc#TR
zKV(#0p3(-%eagu<Vr|*M@|u}EU_&|vcQoCW>CoCc<kt;D2c)-kbq>!B|9_;t37lM2
zmH7YeeQUkit9q|qs+V*+Yj+m15t0f?NWzjdAwbwnhorMWNSZ8!O$iWIQ6i$EqC`PO
zVIYDcqDWN0pa@YA8AU_}XAotK4k{|j?|a^oP8wV1KmXUCQ}5K$@0`1zd$y}<C}}Of
zN!SIu+V&}6bFNAIOl>UT$~wlV98n1v8i21dnDG5x@Gk>j1!BJE+!OrF*tIxp#{=(N
zH-r9m@|N`**Ggl;JahCnR4^|u2wr!DZ+3;ZeDGP~=ZGU!1ef2$j9u`nohmQknN9+s
z+;i!Rj-BzUSz{dEvQ5)BDY#v2Hkt@*zU`&!EZenf2$nP5S^kKGmF2%EUGQHS?K#dN
z|K$$;m+8y@ByBG>p_J&*{zCIOJLxBaS@w6zdP3<r`ozGrwR>tMDEKbQAMfu!4SqlH
z6(Fvk%)Md#SZ9XyQ*~B&kNf#~E6?p;wQl7`sg~X9Dt()5l6IK4v0l~Sy7(TJD<|iq
zor!)bHLBXHtJQT?DP~s7&$1GwYBN<fMRAi=DLa`-37$>rR@2uhyU?Jgcs6yDv206s
zFRC(=cDiJj67<wN6f%<2pw2Vf^!d(_x-HFza`n!r1ow6D9hd78@GF3;fVf=m1D9*{
z5PMEsE-BL%gpvtCXI;8U88xRGFRP-SA@X#so)F2?dm?(z^SmCOC;jX-@X{W`XaQn+
zAO2!M&bVQHSbw){JiH!bdXQ_`ug`f}tNnVn3T{tW!R@|8a0|csRQT1hr{SjNgGJ*C
z-JQ#4{l%JjPAfM8lMzwp<&-|%UQ)1%ekoITiT_DPSB8&8(DC?z=QZmFT?4f9H$q>i
zCpZmGz0RfTQDzo&Lf4tK+O-=j*JXN7W_8J`-tJyFE>RnfQd%VA*>!fU?RzpBGj_eL
zie=urUPti0R2RQ%=i7{3n#*MTul}bo{vUZ_>F{^9Dqzz+l!7h2q-?j^I-r@g%^GcY
z*zLB(`;oTE?>l*?Y_q8CE-*9rY_vTp_~lqc-6K=JmvH@BR{n(cm{O>v_LFp7HlvrO
z+2*hC_9**a<rg$N*y*}dPe-^%S$%qpzRgVSQ0eZfR@IxIP&2{q%I5sd`f{Z{uhmR7
zN!_oij;uYmp|gHkV@t~gR$11a@ammc36Q$`45JJt{ihRrA}|Gr`_H?;<(e0*GrdFB
z8|kYu2751HQT~uxLbv!gZS1sKy9%DPa!1gXzFnXdi=J(}%=#tEGkM<)GjpAph=R-1
zoLCOqF~1Vf+XLNr96bvDJ>Y2|=IdwRa;2jES>wFJ`?c^jZ~f-}RiYXw_MN{XY1G`P
zjGtIdsSFi2Li>5hpJ<KHf!@T(9a9OO*LD9O-I?HXfdxQJ_hfLnhNBC`3;qG!16C6q
zKcFi!#vt9@5#8N9*W<a;4)=pU3hV=7x)Z+?kTvdD9hP(5xrdi`)rL)5;t8=~hkmd9
zwo*Ho72lQ#@oC4n!tT&{FRhC;uEnrC5sQ(N@I;B!>{U<H(+i%PE?9Q5A#R<c{Soq;
z1|axN$}UE~aSPh7sbv94u^lM5ek%R$w60FNsd34`m*FTqO>ebQ>N;gztGLfslbnup
zcMk7{;=%rRU{NI~&@GfJZs)te?*qOJ#N~b%T(0M%{man(o6KKQ=M!YU?3=NI`Es`L
zVfH8^WxnjOvf;lQJ;zo8%=_}7T-pGBB5*Pg(|h)T@E_ia=F2BH4XNjdp3Ikf^q2L$
zTJ6zi2d^($!R=lzxXlP&Z&1N)Oz^twUYRvNS~MPTf?0E><1<GN*!=~oR8uNcS#^Gz
ziEnTkDCcXf!uyo}>0s(C51Bf<*n!F9Ia0qnnmW@?N>{U^W*TvmUaeVc+Ky}1D%<ki
z1{O0WAGel4=!a9Mj~L_FDJG|CCe8xyTrU&6udN$=S1(iSqHyB;C;w4D_#euyZ9ME<
zFl`?GiCJSILKT@dg<>g~6l-{&v-3=;8k&L^1H6HWy#^j-GHsOKGQ~FAP4)>V>2iHW
zr=7CdVCi}~>IvSLlzj<3+!Qd;{y7?X+btg@vu8P;J-1qyE9Xdasvb+%{H&R|)SIK)
z)hM;NI#-xrPS@8cJ;D5gQq$B$>KauuzIB1+nm<s7&Y$~F3j5RYuNX#|E+gZ14fqyd
zI}rD$FN4c<$0=by+8N#B^<Mg}%%6RqQEaxZ)hlGUn#Nua>CMYbYYmplcTA!(1dnK(
zY>%kR`CeJ)f`x+=4aHg~HHm(|*_UZ`zI~oGU*&^IfA`6ifDiA%L4KRTM*v+w%<n{S
zxrXZBVt%*uZ(vT{cy`2hv2QM#_?mYaFDIJxSe+3i{Onj4A3W%kN^rZ7=f?Zh>%eaS
zZj5MYez9<<{<MFM5E?Jzdqcm7c}+%5lX0K#I|*4U%F%Q8AM)H^fWHF#*Z=als{&PC
zvr*G*e2eD>(rP7oZqHW-`8^i=RNxFCuBT6d%heIBKW`4P-*%1OzH<H6^GA(ejRm29
zTOhvo-mX|AUsRawYwj?OH~dyBEz_`0cnxeh5TUKQR(ou=x=?L5yNOKEuJNVM%MQ}b
z>l)N3g|yx5=lKj=CyF9c@1rZLrFwq2wjVgP67Y2(;!pae@epMJs(_gPx!`ie`t<l7
zx3ehK$IGOOkK04&7V&XAL7dy_KCg|jtsXr2d7BZHOlikiW|g&HvSqCh?Ui;)sE2BE
zPNIMg&oEl`-y^L$?RHuvpt~!gFZ|sG{yE?-Am;DU==+$j_#X4Op?~EX<X*J?_lUy3
zZoe}6T6L3lm=2NgbUm*wuc!oMtNn?Xfddi!+}8p&f^pjdJ{lMY#PnxH-^X<0`=Ruu
zdWw~1v^w2*Ak?il2AWtAeXH6^!iS$_EX>edVxGd^>-0)Ma7Xl9DfdUgZv}3PK9g|}
z(~0i~>22DwwRiKTHS0I@&s({5C6txXpp4(JZ4a)2==rbmtTLa-^UbdtMiR&Xak=Wi
z<%;*q1CbsprqeZg)xfrh(5Ue%SBr30+@V%o<{1s|G2V~yt5^Fn%GX(0xgCh;_VL_U
z-*XN4M}bcOF<tlJknUT<=vUrB_tf=U*B!HA+m>}3Hm!vRtM3ub1i2PC9>^FC*H{Kq
zHx-^$Zpu%aVs_G5JYSNg?d6>6THWX%N@q;J#O5hw(>L3BXR?MlzE>qa6Ybhx>GtXB
zRzK&->gcC)$c3Ke%|=zB>y+oyoC$X%<@~a?#^{eKl?jW1eX|l^%PChGOzL|Z_?5sl
zKwR#}z~y=}D)+z;J=fvo?!RDtAh23}pO?~}54c9d=S<_1XoOw18f9Id(<+5J#$uhf
z^z0_Hxt3DPsAKP;aJMrN<ecW9JhtnaSsU*EM_F@qlbXsT8eMzdRSB@VZw$_J)4=Be
z3xSyb0dTouJz{U9PyWaKWzArN)mDBkde3?WXT!&}@toDF+nuykt@G?~CI$>s(aLpP
zoh?$9qMOLd#D2WKSLuUlS!4f-N<e=ve3ZeYo?in0FW@yG=JWU9a>f06sGN9sJ=3oj
zZ`!zEQ_!)FLuhR1HEyso2(EB2M})?5UnO|nv_}T(=Xmf_fir-Z?xo;z?Hsy(MShD5
zmYgtWdGFFCb5DX+ZDj*hvXCli{IN1RS~c1SJEv31rA~ZZg`!Y9^-dBG=BidWnXj*n
z=PhGpC7`npdSx)Fho68S0Nwy%e)4;RpBeL__2`BncB8eM*7k4h-x$aod(`{Yy-Mv-
zmjthE>@khzr?gSmDl(|krmIzr-{^L#ER(6W7Puu@W4@uR)w(U-N%o#y2?#FVJGg(@
z34RT5Js_9NYu65Auk0Ev%B?wDw)AfnQ`Y>=n>TG9HGXMWd%-*YUm0a(OpziQeP>tX
zX6)ZPxNrCac;TCdQ3J@2gx*wexh{<KY75td^4DO${YP|Tf^B=PYxE<Q+H2jfg4?CR
zYvvKlHzX6=jERgnHtJTIE<I7z>5Wc{8m-SwzuQYBY*7^bRaswB2<ArxS})|O)s=vs
z9q<*)L7xWy3~*<}tMENsKkAo?Ice)=w1NMycKTHCc;i4s=K#+v^O5wE<hKl?2-E=b
zGojN2F4s%L*~Jc_7uO2wz*(#V<qM6~O?sKEYm2S+(Cxw)=&uCN>*Kj``7Q_F30xD=
z()?n$@(pZQxjt<De^|T=qT(4lB0BqcW|`+n`CbP9CGaXBmj>=0roSCRCoWdCQLZ*F
ztq%Ux*d0B;=i7tNp9g*%uo#Hz?-X#k9vp_wR(dr)GBg+b6e~v{Ae4KJ>v0hsD>c@s
z+e5kFKtyjh&x`BrKJae?-vMHJzXg};(G$ade8<U$_vZmfZC$zXBB)`T{#a<6{)qK7
zL%RHoZQP1$<^r!$<(GD=y7wzK`gQEOQdMo9T^gCH<m}q^I=hK}+l%B@!_qfN-LAX|
z?gTvzX?__WObs<O``1+hK6)P=)H|*MKMyz`i21!3T&~HHo#NWFhw!^{<N8(GHwO}U
z%N}#5zL)2hQ6247-TIAS)_YD_<8@0s(VSBWp0|(ZBKHOD{yg}91HT7ix^<5QKQq1*
z$>q03_jugT#TXq}x@z~TZ|X-B7W4VR>yeM3IB(+=$d~jek1aF`%`r}$PGoSX^iI~6
zMdXGx!S<_XW@m~_*@y9FgZ_?+_&acJ$lp5X$L)9__?5ubK+NCG;BpN&4i+p~x@5^R
z=`+3a*(@~UTHJP-@f31bI~##2t0h72nV=Vhy$3tnhDz|fmw0X&Ovc0S!2b^D#|P<t
z6I`z0#(U&nFWsm2FB-}}Gufte{KYYPT6LC+uw{wzeGkA0B7Z)9r=}G_-kIP}_9pq0
ztqJZFSJ&W|Dv&}(vFiQi#HoqCbjfeFSmv^G9Lu%bq*LwJd9{9>RqfWf^?svQ^6|~_
zn*6fY;+Mf%{SL3)@31D?^Ig+P`WY|nXZSqp7reY*u;$rIT$(9~{ue8SXDzl*!<=I}
z@P;?RDfap)(r16{;Ev5bybf%t1W4{XgX>i{_zYkc5VzAZaJhPhS=YNpufr2$)cExq
zS8d*ifpYVj4V$)0v-K>;_*}&J+<Cn+Ueirpp~|-FM9Q)JTCAqhce?e7jLYEKF;EHa
zyP;PGllFTU{3+mvK+KP`FZh}9<Z<CRnis_<#r-<wXG{OqL%6BkqrMU@@y{Su`9|m6
zma!`^<=0@5n{BmdpS_Z{i^OT1hyXlNjiX6X6Y;65#yYlLa#F(aXnl`zs#T9#uWk(n
z=bp`#fT88^70dnW!7m2h1H^onp9uMW_Kb+{$et7PEq0v9rDnH!!wSqef9D3TH~Ypn
z;I-s8_*H%)FfBOB)1uR9M8T&6Ji&WcH>YqRanf_lqccuxif<95{C;zd{<`IU&6<-l
zv#FfDMX$#Ag^n$Qn#`nQ=GY(BuxoIvED9AD4ZVoYu7e3IJu2tgD5gd<C$Rh^OUg9^
z5Znb4ixTJRKpfg*`Rny~bA~!WeMI{$iK|0@`~BO)`nizum#G42*Biih19t#%{dnIE
z>!%}<Q*Iq%2c&LRu3FW<Wy=H^nmg2^`ZBcxmq2+v`7(MLd6r+XTB{ncbrp2Iv>kJo
ziThPG0!rFTqV<(QXL?q%y+T(QwklJuMxe7TbdC%Z&l-^q&D3_GBdCq4gqQZ3%~3X+
zD!aO5*HqI3&bRK;Y=CrADA4p=9F}i6{KxIT0elCr6Nt<AD!5$M31RyWTfT{5`JM>M
zcSlgZ)1`dm0e;^8zm=~vO!?}El&=()Z;#g4sM^Bv?Y^`U@ICE&gXKFOd=;=3h|Bj)
zaJe=_>&$~g><|ar?>H&nF7;I%=u++vRVtMmS#&!0TgFpPt8SnHn{^^-rs~+=CGd|z
zy*}7@EqDvkbh$tlZ!D$R+q%~Hw68EfwZu)=d|1&MW!_tDeNpQ#9$cs1QwjLZJvrDf
z+rcLT(}1{KbG{$^%=mhL*luqQu{TJ$w%~y#nmH8VuZFts`_X+favw_@PrBVYUzf&U
zT&+8;YTue<PA;RWtz+BGlCe`+@74?K_t@u~^X$c#$m;C(vio8C&E~yc7v`BK=t2!e
zOjr|Z?W4UpsCyd^{?Kl#ayn1RI}ZO~T6M|N86B3L_Np4F8?UCtHxuRxx38izD+_(&
zwDuD0=FuRJsw&uS&KpUm&sSm6&*Ip?`jK|fLYr`a794$Zqs<;wzVUTB$2V2-xtGpl
zuyD55>Twck!+#|jga7L8@$C;O^9JhI>n}NIy0b@lX*c8fwWZpnQvX*d>nW|DRGH4?
zJ<9yN%1kytr*xG)RewOaH>unV-9rD{dsWyjcT(?lRK3g>Uju&<*bl_*GViIdU3T_{
z?efOb@IE-74y;B+yR~1s+g^27DB`?kigeTYpkv&V2*;9R6_6+rBh4;pm1<e0WsaC^
zpR1>^xU0+*nIi~drIIlh9My=b(zCj<{?Ybazb>!4P*8iiNcY5&-c;~XSoBg@h<vja
z6T8=1M^$8t%#bp+wp%YL=VbF?g=XCx=j3IBbX{29TPROl-hTss40r;F%ln<D!}7iv
z^~2@S{gCqFz=ZG{`T*}%_v>H{`CWK>%?_55FD8wL(6%<}mV<u{x*;RJhiK9<>T2|?
zsSF*Dg}Mg6i6-5Gv8>=&r<teYPJ{^zeGB8!qUG_XKud%j#j{;qTSajja<&~<GZN#p
zFBXb$`J@6(>=bocOYc$GEJoUijDtVLXw1H@ctC<puv-iCGmOoeCyut~qvh2+Eq;Ge
zVE3px`2OU`RuX<cE_hcLd>fjZ8^A*>u$53g5mBGlRaN?P%KW&}t@(Uzx5m-4M_kK$
z)EL#NT2(fbNcO%zY?q$>gYwaQ@UwuGK-@0R{vd3ZXWtd}zcV9y*^qYG*ni<xnIZP;
zE9|Gmx8TXpso-))JP11fk~JPkcIzr1e|8_CkXn}b-jtJAXy2slg7<Ie9z2IRLATwa
z%nzwXJ<>IAm11P?QN_!(S(DH$sj@#A{doa5BsYaWOO07=*1HXP%UYr>^MEoxpuC%u
z`CFymW!|C8uPI&Y74o*5(xdWhcXCnt>q>nA*96NenT;775oDB$tCL>h_Ler=JjAv;
zycSGr$F?-mb*w^aw6-@1qlbLAL!ta`$Rk=57-D&ya}ilvGYxhrqy6fRmG(w^lQ-bk
zG{SM6)rg3d@r07+Vj$OcyWf=O(X|Y&oYh#dXJ?MZDyQt(uA5nEFX49zYruq-=9x#B
zhZFv+GS6Tk*lf?WyS?_1Q)eAv0cpF{<3V_5)w`#a#Qc1(tuG=1%lo@ZiWApJ^MeYP
z$s3g(sivDhRjMuQ3(~@SKOFXl$`1$kHA}%)0IPtwKYSist~a9n=_^C#C5fF|usINs
zYX^QVj==Y+P4s~KS^Lthe$AgO_f6{<FQJcQ(svkR8AP;FB%USEv*dNH?<a6J#eK)M
zOKEBofh}8$ACo&mCX}x#>wC({DQVCqwJ_c{ezX$sWjr%D&lJF$fL0*pe>%8a!^MNF
zh4)i8Z9Z3~)ylbO@!Dp?{k;S|W?G%LD@}K&*@_72n`~jw-@(rsJsDLrNO0|m__!82
z@qG6&@VkJ=ftZiup9_C~X=LX=aNgnbd;bM1S8ZDvOz$oG%`2;(Hr0M}hk6=9oj+3A
zRGkRMPrD$`GgGNwF{!A6u`}C^^8wyZ7)8yGnC>km&bzu$g~?F+O;(xO&04Q}=6yb6
zCC|?iN7%1>`m+hU$}V~Z?^rwMd6<ne*q!7q!;)zXx3^-W=XkAll~=TJW5JK^dgWcI
zYL#<^vgaoFiJwb*p6})H^48V-pb6WNr@c{ToB8ha#TnnL3!XTN|ME6?>%ASyzFgU?
zr#5S{+2Z`u@AHhEj_Chu5B=vn!^CV69~@zKl=qG=lei`79yS8`$-z&K!bxsD{{-PL
z`sPhOlQpcfv4r(p#CoG=o@_3M`Ke~By%^SO?K<Agv9|=ApKhOF->2+J_GB%55BH@l
zOeguzgm(l(d%bt?|3(Ka5A#*P@Hk<(-5v|G-O+!($G+V+zvbH(O+ez$Utljt9gF8;
z!Jf{qCV9=?ID0(pgxSz!xw5y79dA$du27WpEZH8ow2<kU3-x94;UYU*wDc)_xxhZ&
z`+zDH^ZS(7Xn#$4BlC|dw%B&cNn_b#a>UMs!IDkB@8l8%%TKfRmuge?uaxH^NJtV6
zW+cyi!nY52Ov*AOK4bguGqF<~rLWTd^(H3F88|B?pVQuU?`;)0hxFZ13C9cLAO|LL
z&^N*N0pA1Saq<kfT(Mo^puRt{8xQU)i+#te@Qlut#^d=WeU#`;<{T2Ay+5K?{;^?{
zd7jXl1U?Ix1H|-B1efa_cJYJsqJ0_@M6qunh8v4C2%T$<{ZJi`42pXp{xVRXVRfPb
ztbC>tJnt5sTLu%lcY)srd>M%8eiK}-eUU!@p#A6&y0IKyBr=?mUSPZe&5;`STCx2=
zk17WVuDuc6-1CF;P&@c&U>p$BoeD13JN#}2=^m6bL-l57uW<mnIQoi$b4F+$G;*J<
z1kc&Q^XkB)oF4+e6}SzE>D>h`S3Lh7^zR>}cZi%<>|G`$-DLa)iVc{3tE7Nk6gtk-
zup^@TCeQVFuFy^YJ2r5j7KrJ#g3A@h6}+<_4G7&xjwzN~TcA7BxVF&5q!5&}Gbria
zh+ZGhi~H?X@a@3G5e?Bx59jB=eoE+^+kX)qC}VVHjGGG?e!o9@?t?rde(pZ-?*UH%
za{Y_v#_kiHO~xk+ekLLM9OFRr+`69_Mw$0PzXzWOECk~E`3SgNuMQLMaBzP+Va1x2
zTf$5&wUtkb>8}U)kr?N@zGE5<tv)IWFJ-YGoaP{Pd-x2q#aN=3)?|H+#k|nkUDsll
z6GK!O38e0Hn|T78zmeE@n@~qc0p6?ihfqcwTwnLzSqb@s-&h}E{*?9x>VUXBYr*B(
z{jbV1@zC<zF6B7__(@Qn=S<_$;mcEs%G3G3EKf<w^P!+TZ3oM<`wNwT&j;bR3?}XK
z4EQU+t3X_yX)gpn``@-t5XN0w`PAX<^Ig+;Q5{|&0+0UxHPHJHZ=iv@D*>a|!f)I@
zw}XEPco2xo<NYiw&;PQ0qVfbGHiPZ+?>JED;mh-XYM@&VZ=l|L!tyMK-yT?&_Sp)4
z7jQ2SmuJ(9VR@`$Lpg3}eB8nD6ZSVuMj~PEQJ)Oewl{~jQvw6+xxwq@R&e`h_{}lF
zn<MXKd*AgH-+0T4i;eyW4+zwKY=JTjtyu(zq+J+;(+)e)s_ET{S#0ce!c26rrl(pH
z3AXgwp5C3(>7-XEdg*$vVVu|6>a|UB*dcV8Bkg1Au2c5)YH)<=_3k;@gNnvTSA|?)
ze^U|d8`BPzjjhFqgS4n910J$ojoBV38RvA*FWId!4*sC5-IjVtTMsDRg(_~>{b4=t
zr5?*sJ^ujwkHBAmxSrSjJgnyz)`s=GI=aXEQLNtUx2`;!%5B+=+w^T(?bfxy>*XrA
z-5TB=;Va)5{Yb)?)vfFOn%u;C-6>ITVhvBYnaMNQm7qH~!ktD9>qfLsH9Cz)VtR}_
z$)AG6KgwN7)QD3z!fi`fD3t5HQF^r5Ww*L!&J0}D5l$1`J{s&st6sm?%$H=;->&tU
z-VI8frt0xT+~$v9CGEf!KV4nZpc+)8YR|g-uJ^&PKK4`Ics=+9`0s%~0&#tO>ZPzg
zdLq4D*TCWX2s|L-`q*neYCmGCz2^V8k3eDcFVe;yjBw(HT9eDMQ=p(VW*(U`pMa^d
z?gp@o)ugjT_mbIcx}C_Sv&AufuanB2;jeZGjF^m`FQapI24$JA*s%5cOC9HZrb$fA
zh|#v~OhCZrAx<qpsCI5V#`Ja^AZ(o-X*GMUS40Rc;9@33mwM;gM`uRbOT80y^JFxA
zuH8~)x45<|%B3aN2NVt^MSQx~pq=}@vYHFE`6Dfn2JTjFU9POkszo)qMf>YYO|tH0
ze{0pcRbEB}&dMWUeU^U_)>p6&g3kpO0E&-geO(VOS1cb4jWd$UBvdEXLOmd=mEEdG
zv`?e2)y8L$#&R%J#FLj$sbr0+QEmfzq(m;8)q#uVSp9EGkBAq5-o2H8-h<Gs0~5ZU
z0)HNO0Z@D<e7z1X*Vp^P_AReGyqyQc&boTjR<TEiGs~w;u>_6&mTBxKM@vRo-s{>d
zT7lQXF?4h3bY7L3%qF_%R>l03zf}=3#=@5kqs(3SISqU@unvg%xfoooU6H@jP`~_D
zn>JpsY~p-jrMDk5V~L1?(Vtc%|7gu*&_y(1Xspkc#5sQw^);2fJ}7d~w<>Zo_VN5O
zccK69;I9C$0x|u!z~y=+imMtr--h%T3H`o}Na-aUZb#pxj620DmPrue6>yL&N#~ep
z1ssS)V8^#B!E+b>$Kd*P8u&V30}#`H54c=!3?p9%{Y4W4`n}UB|Ky+!lE&z}6;|F>
zc2jAm-eO|N2SMYjED4h3>Up#xH)9{qkJp<Qz<&+=7KrKFuLM6c4n%g#xWC5pAWC~Y
zZQx*H&;+v}KNl!t>>d4>GH$Q}77EQ-(j(wp*P3XR`d??A6nBKjDgl9B=)~*zD)94x
zZ9vS&PH?&Aof`JXoss?Ta6aaTHL*i25_{Ie`Z5~hPSdzYxbT{+diP=CcG-;K2+*N1
zJXSfA)EH6r7<(SC$m5OYp%d4~Z@~WwybZ*B<bN6b>|fLee1!FJQcxFBeSAe3j|TNY
zmq;}yTHT;7W?7r4i-GS{f(I|>`DHNakLQ4I2QC3(`qzQWbwd<4^PAXi8|`a?{2B+V
zp<k+@OKJhl5@tQU6zwz`9jW|T)<R}oH#AQf<$aalxzF?bcpZ2h{LjGOfS7*$e+EA@
z?vCtlsc2lp?XY3ZmaW9358!ASjEOCbiJvG2#n|5lDGjQ{l8DMi0tNFXk?6%olnz4S
z-m4fL+w`oEp<Pde{PaOD=4UJTcHrWO2MsIl*#AU+axov924G{hF?P1GP>9;-bfKCA
z!~4Kt9*F4d=b0YQlX`y<{I9^<KwR#1{}q<|9s9bNUKkmRMfGQa#W5i@AH3uQE71ny
zA2E$HC9_(=@zA??<*aszH?!KQ1=O(SC_O%Jnnd)bk{JubfWlj}oYY=5-yEH;HETTI
zP9}={2j3;DuzPt86A*nm(aBa3epK{P!r3GJbV;i4ex?7aFhWb`=GyhWN^pOWa>V7_
z2mTE3V<0Z)pTOlBuAJL8Mlry(J*#j`SVYj(_@|WdtfXqwmSdyBDG(|t#vMOVO6GB%
z2+Z0yD(eX0rSHi~@chcFgM2IlUjeKFVm`Kk%QYMy8#it3-;S++o3w9jWg2^_HM8Mm
zuQGN9Yoq1miOoMw2bD3$+7?wr`TLdNxqErO2PW<P4ET${%Ro&3FW_>`i~Jpjt~)}1
z%ZC0S2}^D7g~6-~`7aZ$4S6C$>1as=yBu+=w1`Z4YphxE>Vw`V;$z{j2G`?$@NK|F
zK+MPIz~y=}idQ<Q$B6o!@Ub;uWJQoSW#h^XREX7g3FGe55(1LJ8+H7B+ISGAG8XFY
zgKT9T1ZFFT{F&29u|YYGZDK?~xR;2sUkD3E`RR(>j05ly%MI3R<og1OK+I<=xLm{K
z*Bj&$_9Vrgs+6R?-mgdi)<oZ_^TuH4@`dsw+G<ZkcOB1->AoBMTHppCrn?*be@Az%
zbd=t6;+FcH3OrW`UG`G6SV|Yej(QXm)WWE<@Zi4vmEidYB0ADvtY4Go3#bQTK3)Qs
zE7qs&jO3MgUOW#!u}!NYfe!Q4br`HLUwserm2dR?odTN}xIHp3rQKXfCGa3mdFhnh
z%brU4cs>;`K|{JVnaMk@!UKvRdiz{^174%mL`CGxs}*KrJD+R=Gp|yK&X&iNeq8bY
ziyAtsEtbAI{^Mz7??=_17*nm?jC-toTJ5oHBC=+6B4<0kU34-j=_4*Chw56lqlmq!
zQRlK>VT$f9O$z>H1cq<^1p{S`eU-AWRL3)YZ)TX4>VthpML%NdSCy*4G4XrWLBr2W
zKdJ=vGwnBn?RgUTPT*P~uE%k&2R|FOA9amBZ(YAQN^QAl%N(gvT9x?3>#VmWKJk*^
z^(GbE>VntX!#A(%;9Zr(FZR6U8#g!|y4#UG$%vV49mSLwaubLM{w4OMm>Ebfsf*Qa
zjj!wL-5NVlz1_YrQB$QG>pZ90EY(Urpeky|&G<*uXX{(KFo*C7@pgQB0$EFB=fQ5I
zN|dx+$s_HV_K5ass;oiWX=Ls3TU;jjD)!9sBsP6XyW8%u+v}73R(`+0CtH%zr|Lgw
zwO8v-wNJx)-%rDO+(A8cQB~3(Zw3E1;EO<9kN*WO*UpnddFhSFz908T>T%V|RqIH4
zEvm?4Huv|-@YqedpW9@k@h~?kYKLuHi($UY%8-Ak+8bvjtSTZ0h|Eu6g^@@JD~~~C
zlP;x8^}J>^!O3_!klWQ-%dlRjAJ&0*WxVvWO2E&w|2B*=nDBip_$FWr5cA!6Ao!WF
zF0xmB{T+TH(&%fY*>MxOHVlXSjCrqwP42OR+l|TKRub2do-b7yPkB?YjORTcmjlb1
z>bkfQX7E0&@@uT*8`}N_vS7xkA&4Wb(&Wl%*J)*1xtW%@D5OXLj{Qn>4?VgL55*-q
zalUz>$rzz0@S3tx%k7KpXSDe(9LbLRl-B>P?OFD5b}Cbs)jbwDS=ioMIp1k@j`f=C
zf}{UK>ld{C={sI)JNV^n&#v!s>~;>EJu!zzP8Z^mcuMA`*ll*b*XhjlXPI}I8XpkT
zI@>&puU9a#v-J-t`z~carR?+A2|uHp0o$E|UIcHvR^m6=6yt+p*;CRQ6^w8{&K*B%
zobJJ)!F)m6Usm2#I(4m1&G4qy>{Rv<_VV~a&uZr)cXl(DtiwLEA1408?&b-Eg}7E3
zJ*(T8u&PZWUp}P052KC1B1Fv*OS0k6f4y5d<YIDQHj6J@I`JFr|4Fl2W5BuHY;l8G
z<Z5O8*!J($&M9hx8mFF9_RS{7mdnH(c)4;rad-?xoARrbpu_B<-^A<09pHO_F9C7C
z`XRVnuSENpq3h^|m7CZ0#}i8Jz>5lt@{~<<pa-;ZORCkW#*rhT%~XRm10k}AVxY<`
zl>*`7U3!H+A+~Y%{i+hsDgSOzZk+@^12_tZ`I!$c*E{S@@w(o>ebd?JMB(PW)38qT
zoMh}Lg-W+roF*N#IPHz-?c#Yko+sn#4)D8xdw`hU1K@JKgI=_6*tT)Y$~FBf7WZ#w
zWEFeHbVKkM<0lYo6M~&F!Q5+=;5o+c2kW~4-UPG)F}<naat)jJ73ppB=9L%8tTWI@
zWv`OT{w2GVRI48Aj4>CX<`H?_v=M}n4+%J$F5<zjE5UPj@cg*FKMKAZxE+Y;-vut$
zJLHjfly^?VMrd{F={4S<&|{_0J#nFVPH#l_O`aRm&HN8?08j_SbUVQ1itSEA_saue
z%v~T21T{TJYWhs$Er{YLADY;jP=W=~aP;Gd?f}pAc&@bXPVim8%|J}|esH;li;Iz2
z{-l-X4QvSJ`N~H$0@!S9DLsGI#;$a0&h?9<ZE|9KR^b3^`co1uB}p_<Xran05|z$f
zuAbK`!QFVnFv?)UPd#`W&<Vu+OaqszFOpkdiSF_GGtj?z%la)u4sDIAg00hs6dsyA
zY?E)v$aZ2n3uTu~)Ut%!jMRfzb|9j^gXfodzR>>|_+7xgKuo{>4?>;se)@^Q{n69H
z`!Mt;1pV*^la6?`IFp<uz40d8+cK@<3XDrzy3?*rc^zn269fR}QAnmzk|LY=6!UaF
zVr1US+8I{FB3fFGSEt|VQpzczp(L^v^GB-6D-jo{kO7*QiK|CS5}1_RY)=TBX#QJy
zk0@(`nqZH##;ft_f<Oq({jL)5KR|in@x2p#7jQEWm-hj1x!y6pqxod*s`FNEK6m@s
zE6$UWmQQU_<sFK~o%m;Ed=mLLSzz;s&%8u4YWGN7J?emri#Aodz!vM$P$tg(z7o(e
z{y4}_J9sxR35fYQ0bH(_pKBxiRb2nuB~RGdVV*FKGgvXOxj*<w8p2|bsDbw}1sfBu
z(#9+7Tsl}s$hAg39qmjCl7{h)%$_Pb4wNXWN<i-x=*IQ*MeuI`-vVO3UILfv!l*yK
z6|D!u@Fm>ztza9q1ZXlQk^t@of<&_pHjPw~#`n{sNQUI%;OV<0J3=ABsT)(`(E_12
zDnica`O_d@OTkwFtALoVOTgud>ucz|F<gBKgFTDciI;%}V<P*hha`&CNje3VDW9BE
zZo)@rfU;zs)u4JpGRCfmuYJ&s=d%~V{|opv5cBmmxLohB+eiIM^uVhL_K1_J1<|zq
z#>5Ad@jQHFs><-<o0G_=&{?3xrV{4TrLsovA1c9f7rr@2|6Snyz&aqNzZqPvcjPyU
z=J6r)!%2K%ukn`IRKRth$TS|i4g}BH9nsy(b7T4WXW+jAUI${j#Xko>H>Op>dE;Pv
z`~$iij<R)qu<x$z+betS^(z=y-_yp&(726t*jVuASWPIyr7orrDx9{#keCSJz;{9E
z^YpZEd>!~>B_P}f{W6%$Zx?}I0bC8l{M`&L*MVrC8Sgvee!My4Q*vd-O;cGebG|Y0
zR%QGUfxZjfxNo;xjRc}O<5X+-yj_2)1jtJ~UofHnCV2iYtaU(4e-XG`19QUqnKmR}
zLC`K+B)Q$HFu9$(OTVRV)M}Sr7`(0zUX#W|3<ob;wfGX68POZ18*;g<KOL_pWX37}
zBJWs#MnX5u9jlx2^K#6d-HmN#J4@lq%2}j7BK*kJ_vcD*zXiSo6TbI=KL$Jj#C-n}
zT&@>}>eCNx*F*VcPqZl563qx+*GS&viSN_K0rEg*Q04i$#xd)PwIo~7wXJsN*%N5d
z9m={gjN2IaOC_M!^Vh-gKOcNCa3T=%wE|qOH;4AOA>(Y-hRrhMD^qF9QO3l6;~`cj
zb}uw#n?+|IXN^@Up7T;f_fDQ0&xhXz|1R)-Ag23caJhz?cNp4`T)1*el!0<fKz+$<
zrsieFv(WAkp#{3!P#YPQzgFaNM)|Elx--D%1B-x|?n-dEhST33+~;G^j&kkQ_N`=W
zov<QlOlBI!0#<PCB5OkfI}G2M#G33&#39b`<-z&4{8lBPb0_rTdiWmrQ@{@*9{!mg
z89ugP^BOgt0kwX^hG2&<S2oVnL)n;ICNExrEuBkDad1^4dgZ?j(yM?k1C|4E`R@jo
zYq)wpNH^Y|FWR`e|3Zk?_Pr`o%n?8V7$w#5H*I_gdy`Bv3CF=%F3WU7Dv*>#JRJ%o
zjeWAtLT4lH<4!aB4WCRFR;FO#$z>_xdH5CLN(=8x05LjQ(ILM_|2&SJ-}|>p!0(&z
zT?Ui!mH#{W;eZw(F4r7zxpqbCYVVNz1R{k<dmgiC^PJVIgT9<wo>jR!l`)yM{&A8(
zNdUXHCMkB|v@Wp{+}rT)nS+v?9{zW<+UV{7UJ2;zfL<M#@N+BpZNR4^9;97|p8FNg
zk1-$P32-|Bp88i)w;5w{#@N9|Ss5=y&wurh=c~8L(*@*!xV(+vat(LRkSMF7@}5LL
zf=C$ASL*hS$sbTmBTc%=nP>*P-W?Pz>bg7Lt_06r$MXe~@?8o3S>OvmOy3JI=tuL}
z(0%P8^q0i@Nv5>Zg30XW(5gHyc=H^Z05m^KMe#HF@1AiJAw(`}kJ(CMHWE%5#|+;)
z()Y(7S+dC+NW6#lvf`tXeZC%t6}{cECrM;KZMHDMOrC3Kz}n<#d_}BL*xgL!U8b*4
zdXp>G*zalU{YqV9>i3c7Z*aUC)|{Z+%PCjft`~t{3S1VI^`EtCTwZC{AmODnbkMl-
zjLGwiZ{Ypapq14WkJsLa-u^@Ay$;?$B9vwzuII0U%e6nUdsQO;o47xny=}v}QQF(y
z&HX_ZT-usAm1`M8WI=u;yj6lX;p>zDzdp>iSu!Ty?HX^9l54b+b&AVJ=|sO?hoX=@
zkjVf*-A2w$lln$Qk4B2{5i5~MTO{17^RH9-!b5)Qlc!#Onlf8ZEjkQvizFGiCF5`F
zk$f_xPp;ApHBGvaEWt$-G#>HTsg&<dMVtkyJ0v!@d&zS1)Dn;<#YqVZiL!PoeTMmv
zc5vGn8`K6bUf5n_5jiMNjR8Lbm=47C_ik{xmJbu(en|Z>T$uEw_Ilrgw*D$+20R{a
z#lc0gk|eD>&cYU6>FBU5QAnD_>}Y?SU6+#xBxMu9;o}owkMOIQ#ZYxw8Y@(*n`73%
zk7z-_hLKBze4|t~%6uf_>zCkv2L1-be9tjMzK@UEd)bh9N|AG9d>=j7{=)fg_2F=A
z%?}3Er%hw>mA3JF%8+qLo9AU6S`ghF0cm0iCE6>ME;Nu!8gHn4G03bY$za7NKIyy6
z3#G&lc#-Vo#3hU+8f1z(-t2UyDC`(=?M}`K?zg~iJZ|m>e-zjU#N{bl;qSLb`rvty
zemL&O2gi??Dxw*ycHpzJCvFEGlpu@AcUZ=g<X!A0j7ge8bmyb=C_D`$Rv~W%Y8#hV
z-?x|oT1sw_7+Bc?2g#>0_>D6gfLjCrxRU#pEHky5-!LzHK{=x^m^#x`9Y-n<O%%$-
z`_p0h2H-!I+iwQH1-LaTlgtY<hgo+HE7!q^Au8Z)bTQ!OR5C^9Vz`(@2q`PW(6E`2
zP2J3A9i&_4)1a1-dov+FhCRs72*Cle%?H2wU-7ew%u}0(GBm-MJi&PMP<H%?@Sce7
zh0uuQnVZ3H0d75n?mv;MLV0G@CM3&9?|&oZ2ks+X5gm^3#U$k|nw}?-3TYBDn`C2j
ztqi5AWTSFBgX5+id?ru<giR^;X;Dq}MEjGW`LE;lIH`Z@vdEQaxB7||jFv0h;1-@&
zGAqCnB6d&SpEBM`x7K9a#z-E8>s9s~!uH>*&CSkz3L&T6?C=3b6s)^dnW9<apv^-4
z!Y9tRwfmG#TxFV%Yxgm2UTq3~t!aKe<$f(y^-HY}IOcC1`CR7L51H;KO(HWhiB!JX
zYj$NR#ChZv&NxW#Pq<Gf@=VEA;K;xv#0U;L%`YtdcNw-<C?EMhXZD&abUVSR=6jX?
zCH+XE#H}Z^dy{Ep<dJFeT3dvwaXZ0WT-2ocS|*>PgZYf@ewK8>{H=%iPipfM+P=_P
zjN|emYYI^}-yjSPtB_rTY5M~HlOU&B%nb6mYhK3^Y=2itgycx4-&|LNt$^L;E6V(;
zqHkN~D6^BrVVb!Z7C)i9CkQ4aqQJ3IaH1XGeNCC~v(3GheLvM_?a=09%KVgaZ&vn2
zrPIxm?Ga})BiZ{*^E;+@mBQv&JkvZC1HeY}Wo`b<w8y#M*Y4xCd9&i3`Jze9+HZ+8
zr!%{?d7Ula{lGG>CDpfyo5EYl{@5WOU#CnO<7eb(Fkd#!UzqkYYD$}bmr9iDEWZjS
z$Jk?w973U~QUXU-__F7E#A9BZqCP`LF8bfD>ad^QNk5#%dzs(A1O7bl0ucAp(-VRb
zPafqJ8M==i(oYx6C70P+x;RNuzH2=#2X=f{OH!1{54grps#|rnU!Te6##tjg*J6Wj
znJ5G?ZU@~X#p-T(S=u6@>!VM2hic2ywZZ$O`~vOL_)OU%Y?Rg8Zz2Jg7+3@nyiRo&
z+BksPN4m+Wy6QdNC4uoxG~<6Voij<2%84PL3HP2-uHO2v9`;bqGVi4xz6btO;O9VG
z4}SxfYj?DtAL{RbN^b44_!xo{R&F_0>R^}pQ5bhV^+u_Jd$jRpO)F~b`LN!t(pJtX
zN}7Z4PnzX4eY#$(+u?RcL&(=cCboD!KLdOXa1Idj^`lhC*E{qu(Y}~<>tLH$xf?J^
z=6=FV@$0nlP;IJEmA5}>nO9j%1G3C&%O(8>cSfFt>@<cW2r}jbzGY$NTgNmpeVZ=p
z7=QKlf0O%zsBL;}FupbE+nY1_@Du)le4zXjS<>{wrgfItC;3z&I!V(qA2Q8{O}isU
zEAq4R&8scCGW60mo%$-vULMl4gys^Qe1&F{80h%5@EDFOop7zIwfQ#V7J=a-%Dj&e
zX)@ON9DdP3)cE)h5vwQ!z5=h3iH=9Ob{F%~pOpEg%K3iAKha%AMipAey3D!)Q)R>{
zKO{xPUYRRc-$ql^FS_o1tk%pae_)zC$aK5lS6P@Y9k$xSqxETtKiAdfSaS@4rY&ZN
z({6Sqf(e(D%t<F@KcUU%l>04heqSYi=eTb;RZlXrDD(X?6WK-gDdjLDjpe<5uQJb<
z#PRkB>!(3kJ|`Pj28Wad_ivJbBl=ZgXqVP8F{@g9R<wxfW1Gv59J~^8Ic@#cbq^p&
z@f~F`|3L}%n2A%&wRWTAZ=V!Ym^@9knMI3ivGLPJo6~vT$36Fx7>0wV{oM3|I<Q~F
z&7E)On?F<dvEwc6SsZF2*FbC7ught5&|Y%{_))+dAnw<vfy*`Ac`AWbBs9^>NUK~W
zfg)27_CAKERZceq(+W8oRKm&XY?iS#R*%*TLSc#LmfJ!;?t~7?vS8eQ9sJwC<3P;E
z55eV%{j7%OZ(M_Cz(F>Ol?r*MrksI4ca!cAcjG36>iJP<R`8r15#4fTP!62|ehhFd
z5Yrt1m+R7K-W@vMp#O;c6GFv{R6_5wiv7UyCB89*ta5TnDGE5N4HpFZ0&WVNH^A&l
z`oaW)GPwd!d~-0IvikKrnID5|fBT%^z8Cs&y}StiE8uk?<}aBI`5Qi8&mezDa9hN7
z95mD!DCVZmhD9{sH(^-8qkxTACWkKpyDOL^m9USx2!;rdZi;ulyE;O?(1je7>$Zcx
zANV*B^L2DC<m=HW9{T1eK021)rQR^AZC<%y)cBwRV;O#z`mBAUq+LBDc-=?d5Z{<~
zCzFM$0d`x)!d4tG3uuOY3<r63SA|R_YqHVuJ2N^zPLD5i_#=Y%QxcNN3gus;&iEv-
z&?6-2EY2=joGj{}v)v!rHNoo`ah~9e2VQZ&ZLqQ}<iH^tPNK%n`}kYA`QlVGrw9fz
z-(<YZY<wGMS~I;d?u3Fo{d9jzaM#6+{#uu{kZL<w|4z}@uQSmR)tS9&JZ~DwmN!Z)
z9Z@rrqcyD0JE^Z&PJROXS>SmfuFt=N%Qc+d_0am<w(+nUt!$;KFQ%!d?b1P0=h%&=
zz3RMK;1E@9WvI!tWDRX+2TH_(grkhrC+b#pj6N8cl^Y%M*_$6+pErVE4qOGqe0~jF
zuG}zk%AtJ9n2npA?2symFBgxy<-+Vv(|D48nI~x$84Eb~k8lj^khvDO(<z8wjF`7-
zb*9^$Skl?{M%|dPCk5)MtyV!z#1ScDwUOjuM&Mk!drZiGt}s~7qrr~?<^VDOE5POI
zit^bE-47hfzr@DNSlXdp4)XRC#Dg|-8N7c+8@tU`ykv45l}oY&(uLGnxMHM>WF`%?
zNF<4$#(|M!X${C3`^Sd-?SX#0FWv|K4De$h=I=M)at)_1T#2%hjnk_B6;ivxUEhVM
zU#n5S&fJ4CoC@{EXgkqT&boH3Zpg}EZOio1czo{|7xFQ!I4JKN5562Y6NvfP1}@ja
zXx}t+UX=6VR;*cnVW85g9aznt{Qa^gpLw%3PH)vmJANvgY@~H7jBJ9hE!={IktzCQ
z-C*Wpc8uNQLw@!_FRquLfd41(8W8j2R)zdL8`*b;@^gqAUTC(xNzAr0uh+)Koa;q9
z;p<E+KR(WuPRpxHHlivyLw**v?z4?O-60>n(22+CD)0edD-iRs2VAb<^yTnz^2Tjj
z!fNTeUsU8@61Vf2*O`*6a9%YV2RmD1rJC)09STjKBU><<xTSm(HP$3<x}4m?c?ES@
z(zx5L>;fC?GpM?+E9+>*2^dj-s!Ry^HL3^s&4V`rEkMlg1n_^wZ^&(t<wBA5*)?Wv
zHol;n8j2Q2fMAFx-S8-u*VW{Tca6Of-3xhc++Np#?*cvu#B@IaF4qf@96xkFLp?>C
zeyeA0H!Zc$c##p$VU}XWX=N@JD-QF_#5uwJRh}2O%U^^}jWR4Crk4Si>z}mCF)O!i
z*vg10_RS-3e&z~}K5jyP90WTrie-m^h~9FZSLS)LPuT!|8E_>K)B7B_Tzye~tbb6x
zrTv7Y1V?<;_FYClm;;FUzDCCCcd^_N%2}t6K(bG<Kfwk<UKLMQITKi^i+I{*CCB(`
zT_JpIp;d__hrN^L1a#koei=;o^J>u(1I<9p-#l=+IwHN=>LsClG+v*n{}Te`X6?Y`
zjFf>7$jj$~5&VK_+`;5lr(Dmeo5Ff3DdcexsXr1u0f`b(vm@6?zLm+=MS8L7VYwb@
zo)$8=`-qUgTc98Br}lt9415!a`773i{5>1V53dZ7AA;oaYu4jNzW(AcujRlG0<Rch
zaTY@E&4K(`$H*Q}4Wb@G-#Q)hlBs;e8u2c7@rL0@H+1Yi4PDQlJJ&r1VG(N`kzq(f
z<XHhHi9p^RL2<_FdrUpiX~BoCDxSH^)57wsgWp(AyBPc`;5r~K&*#DA8cvRu7y*hS
zTlQkldH6_p-IU{l%J?IxQ*-QwMBPG)zO;*1NtL8;3IMLU=mD+qGGgqF_<1v;C+(lA
zS4J(+0L1)sfy))!z2bY^{;M|klWpZ7M^nUWquVuRoon2}lGaX(<EkM!InP2U<JL2M
zPVl^e=($4oa`5*8Hv%!;Ye?QM*Sg5wc3{=v{SNvNJ)dg8Tly+r+@NQD-Z$>l9S+;d
z9&*0T$L>b!;h#(uxJfrNwl2s7SK>srq)QGz5}%aqQEXa0?jt=8c0rq6w#h}6C2^Ne
zlKwU_oVi$p-Bc&STcb{#L1?c0nmBy^V@={p<z9`Z4!_pxlzW3pY>J-gn`N`bUQTW)
z)WTVT((DwOtB$d&IPOW=i7_d+NMf+~lRRb*teNPOCfF10E^8!tW%Bq2pn<L;OI4=%
z;4ewrQW{fAG<x<zYXLq5^T}Ew<NGKJPq)X+)JQ!ey~aCT*Cnc*8ETn%q&e9cVGkOl
z`eudoe}MWeQ@>LGP6-_^Fdc~N-)Ic$|Iv4a^*(P%{wnmG#~d=MTK1a1vw|Sm?-L|T
ztnANKaLWd-B#AbY#;jXJ`TP+y0cyW%?6<nfp2o=>PL8ytHCAF`-szV2xg6Gnj5Enf
zj89K+Cmu5aZT!+KJ4EWpA;s*EmG`{z!q-IF@4=fmSMUC}c3;=_$b8DN5_NXAqwHlp
z9%Q@ss;0?P%<#>Krsni0cem-@#wPo7ig;IdW4g4>y8ua7=c-GSy;1h;x;inxYuiPk
z;IlCYB=0!T;HGjVJJ*uq*wu|35rdPVVO(bYr?xoUvD#g1O?5`-70GsMvsp`gG8nI0
zlaH#*sPr!86Y0+b$AtAiK>fz`zZ3kUz$bvX{+|YyYq)&0bpF)`4WL%;T=Yb1fRlhR
z03+~4ZG0V-B3}K4KsC!5i=1}D>_F~B2Y)@M!>&Py;UqFSkHoS|Wywo&7nW+FyMIB*
zXI<0adN~PvF0cTI`MeHXuC6$KZiqdpYc#@Lu=(e-gebnDc3>Hc#6`f5WEMX9G1It$
zSvXJfS_z8woUEBA*;$IDrU|E!F^mLHu%%d$Nc<)yLV^*FWR~;D5$86whlxfnw6^O-
z=6oj%xZAxb<p24IKk4VMg1-U03B>$onnV8Mc`d%j^V`}u#-+CB+vEW2nZk5CgM9rj
zv*=<?NNu13lcb08lT*a?sZ}2cMXSBXhV+;7{CK`U2mB)7-9SwLMsT@?^K)f-T}@7U
zi4Uml-G;g#A3)NW@ik>!&+^)?%gj_L4hWlpfg|*#K}XwhTuA@<==oCq*T8=V`~isR
zyDcI8*dJ`Dy?rga@0DkVUbemOCJGj}A<mT$x=rY8<j70TF%-HZN!eW!i<L(C_>lf`
zo*&CwTfr{{b^tN`JHX`{Cf{@S>i)C0trg=pTG9T^q6(0j=(%5!L3qZGl<@$pkQEbw
z$3|D_vMQ&6D!B2o5<p%M7n-p|f5e=f5c2gZbmMk;3;b;WKbwFTvG)wu9w8@WYm+_G
zJY&W@f^ms4V}8KUq?Jl2c`EB=L}xkAjOknseiQIvATGb(8q$pQRdGAS{jY2E+EsHm
zp#a$=dAU#8%3@2b&{jP3=3a!UO)6uT`jZ*xKpy8t@BF!IJcq9X8o>B3SJd<Tqok*j
z0@TG<MwUcE8B!cY>LlH4VPccpJi;QMS2_r9;D7lAXYRETTvEViHX(OBX*mJQDPTrQ
zFkuuhSod4@xTI&#nJ%^bjAdOB8Y?J&&xv6@FQ<HQ`7Z<C1>6k8<?m?wKa`)d>kgKF
zzq-N;>=y4+Vz-#_#f0%3y0ctIi=K(|MjMA4C(zJ)j^)%Py;PG|jr3{bnui+8N?D|?
zWT|xvY;$vMK$+a6Z9o|dVH;4WcjkCU7aI~%8$jVCZ<$YRl%*y(#}%pHD&P`L4hLPa
z{HDeRv)(S%$Wk@R<4m}jBdM7il)gjjKj9u}95^|wmjTKh*UQJj?+3mD#P#wzxLp6A
z`bGc74fvo-8op4}t-K(4Y{mk|1Bn0_HaD2YZxXFF1=iVw?qp3!BioSj8RNE>L<K=U
z6yI${H|?wO#K;j+Eq^k-U8StQg|?U-r-tR2);_p@I~V*~;07Qr$3AemUK(b<{SW)M
zEN)A;Z44%!1#=H6&m&TvugXi|5Rkyj8NW4+uls0F9rnSUHH5k)o!mJoMrM*jcxx@a
zzIKG$nOs<8rSFjAY_JU%mlV5;S>hx`Dn3@P*Joh<!p^`uW8k!~e03dz^VcZwBZ1jK
zT)vtSVfluczs9d!#hBe3Oj>=9+w9tI(Y$;@v3HwsTf%re)9SbA$qX>lt8O4?mZ~F;
z$!WJcX4bgcInw@;wtkFpgV5>*J6X?pvmDQfoGLzoctwl;LFYKlht4)$vi)YJq$~z?
z#wIfIMV0VUj+}kgtchfztKzxeB>J$-UzN85GdRz3^jAoCL;kxoJ+>ABt)}|OdMk6B
zd%T`wAKlgD?b7}qluJkP=j)^OoDk~5JLh=n0Gh|y9A%lVv5(+b!7TN6o6>&_gwEW%
z!g}nB>Pgn2t>BjfR{?Q7{#W#Uy#B`bcphB4O1#?UZQ2-2c|Bjn9@q19un62`8F%Mf
zt$ODue6v$lHb)RTawCCpl|)UhiejDYp5mY6o`U?a$sKTXdAq$&`Lh$UQ6hmxF6Gke
zi8XT{P>GK#_YO=D{B%0ogd5qq%8EjPj?ljeB)CdnSe~BFu-&CR$AO;-^Z{{st{)kG
zAMamw4~hE=%d@P1^La?oa<U6EdE0*X`kJRjI{vtR8rgEj59^G#3KNOEmasgUjScb?
zX6_`q<vKkjQ);rCbA^Oe!nrtCNmxbB8_W7*tqf<Sw(~#fAQZEXK)n(hR~IE(3qfod
zys2_kdBy+<R|2!k2&{#9tAiDEH1p&nIw3J(%xfIMfy0Wc3&{rd6|O!}()O_5;PeNQ
zN#9KF7)hCE;U`DdXwD*RXxF<`wXPYBWvji_8~tIGo=`Q8zDxEwmW@=nYz)0C78{7n
zA%{>q%TdmmmdmyB%qHLAIM~ki1hFTh>=C$ooxu@m-&NjYN={O?w^yIzonhBjU!iiB
z*)lmDr}rvrlb)_8*^9mJn|g%$i?UXlAJNWY99}lszfunQ*_#!i#Xm5eqwMBHqhD|v
z2ncI9xGgqzZwT8r*EQI_<H4r`M*(sBo*aE2uh;LCn~q*9JvJEq;S46O#<hK`82+cA
z$eZy~BE_p)oo1G!lv_^*|0eXnX+oqa$_JG-E97a%c_BZ$p%<?g4}$Llo&;ikHjE1S
z{ZixywQSkp`{lK(LVgZTrfi$vPP{Ea#ueE-&v?Z*9;_j7v@nrrgb-~#h8|I!%N>1`
z-;x<gud#8)NFZYs{0UuT<smr(0l`c|#UCj9QuiEu)N=ZEW#6G{KB_qE`W}_Pon?;)
z&9v;?NS*zfG86WPX>B=p?t?gg)pHmgw&~Q5mHiWbmino(zoqC>i#8H?Te?T3Z`Xyh
z?X!Hh+F~m#sf;#R*C>6tMv?U`ZQUeWGrU7Ol$?uoU~^bcd#Q(5-uxN(OTd3bbt7`!
zaDGJLc$C_ibHU2>8zPbSQe(!Y#*X?Hc(xpwOOYa&9URh4F@5qlV_-{2w=#OLeR{!H
z0IPtweY`PY`wXYo3F%7@*`dDWh=Jg@78ZgT&m@iA^(<?w)hP(G7qU(v?^l*XK5U{f
zvT_P01D>s}?{3kTN^EZ7Bzu|XloQ!1@@EqPzko(^tz1qfkSRJ<#Zunlb67p%AXA1*
z=#S5a3Y*q(WPmOur`IxNN+hdlIaM#GvGNRV-ZLlW*?iSjvBr|2LsU$Ty`bcR$p+w9
z{Zqxv@db}bWqvGdBL`m;)=wYhkNfZW;8y@w19APl1TNQbayRSf_BcDmYhpHiTwX3&
zLKQt_8IPBwigHwkj|-8@oS3X;$z!HWwn&<>ES#aZK^f$yBrQIbx5QnXKx@k{SQ=15
z;3MWDDI(ixQrjk*=U{P_Avi-{FH!%yFA2-hH8$i^=KZ6=7XwRyxEz;8-^c4$d>>rL
zM4cPBXa~Z)w7BeMRL=<6S^foUb|Z<BDT|y0ApXh-p~}r9IQ2|6!h9lAp&6u@nV}zu
z_cgmO4f)##{kWcA1OEf?CJ^&SWK2-cL*>dX7j0ZMK4Nmk=Ki%3%ec9B)20n`u?BAp
zvXT^gM!{wy+PxWl#*QY5@AOpzDp1r0O9Q38Jo()rAH5MBsi)Q8=L6e-n2*Pz?*}6N
z-q3T10yn||=m)drz}@1oiEf!H`nhRb+tf;b&f!~+RRiC+dbE29sw`dWmN{gT<MBMN
zCQIz1_|Dpetc^Zbr|7&R-7cImOKfIXK?)}M(=v9D$cmGSt;zUovZ)FC?o00p%TYHz
ztS>3YXz(e(3?MGY#_0RF9D5@>*I;|E>)$|dsI+tM_odHHl|K7fZ9LmVpQZoVtl3FK
zG&#&7!zn&F#66GxD4}jTZIdYjm3}pCE{x8wPNpkwM1>Zd#)@5IN66>ih!5fO$KWpm
z{|Ur=z8QTV_s94?l+R#m3A4qXNwK!$8g{MCq%^Uz*uDY{zUaNqVBO@lJEC8~_EMqw
zh5m`)X8<dJnEo~3ay>iDd1~voZdy5S{RL3Aa*ruASPd*m%J@RFv@!Vw(WIJI8;&vz
zVQt~9h}@=+P`Hq}2(82cDXT%Azw7d_KK4T|_LKV$@IM2817dzg^o0DZ9vU|l`C+X&
zZ|mZd=4?6PBx$%^>Z#B#Y-X^}zEn;nnehee&ds8=;+P2XL_4J8_KEH$jggt~PUVb(
ziOS8I&IVb}A5az^h#*Gg%8<W-h`!X<d%-^fd>n}R`&IP)@bZO77fUy7;?&cA0`>y2
zc;G+8v>~y+^Io=$jj}vss+i$$sVUa$20RbQScfc0+Mdo#ais3zlUBDa`XrZ}mZT@j
z0St4rKdHNl-q}F1@g%38!TKtFtgfhI^~;L=mlP$q_FNT~r!pa|Pbtr7;O77vfw(+h
zkG}uc<q3R;!&<-33hMi-R6a#|pJVLA(BJ6ii1gzi7>2pc-rMagsyuUJJwoPa0VLPa
zh#2ph;7(5H(h+V4lK?xb6rMC3eOl*LyDg`OD#L{&^w_CL4nJ6)z1N22$xR%TBig_x
z0aJmvJokXhHTkSi&blMI$Ky%DG&a*Z6r^Pr4jw^t;BTB8u}aRnCcz<U-MB^)(iHxA
zwH(Qm@oj{A6X{0l7PD|Ya;@VeFV<UfTlIMv4&!L$R0Ym_@yGU%Vsy5haz`PX<3E<g
z`((Fx)4Oa58qcvmsEQQ12DgFw#29(Cvv(-_5h>(r%A0SV=$)l&63d;j_79cXY&Dyk
zt*&@J>3v^R{z-#&w~^ozfhj;-{$6mo?igk~$K^jdPOsIwk-4vc0&(8$%DCHVO^F^R
zh3?GsFsxy&VkBkZaJv=ylDt3U<Cchy^s6s}KL$Jj#C&8YhkRTcts};9hs(V&A7Uh4
zz>2%-+)xbvqgd2O0PV=)^M0X?m&jx%79$d5v)RqqSa8y;4r$46!{Jycpuvl7If1UE
zrrqt7mBrOXj>r{}fwjdI^$x1WBRJ=~M;~o3!tg^Lyc@%E^ucE=mu?5Y7PtY3%drn!
zu4R$@zIsR;LtGB=g9%EoUws^f7Yd87nxglb_eab4u-)2-#}Ye3F<91|>7SHqAp6Al
zYJ6`KD&3hmwd&|rzvxWJ+F3v6PR};j)mwC_y(HSZGd0Sc8P-BI-+VNjsservd?4h%
ze8iw!F%|qcU<nZOe;>G94@P$Sj(4nsoMDPkfm>OS<EVDvGcs3A0wx2AO>~ThEaN^l
ztIbXu$5_<k(&{mk^QK#ab%Nz*EPh;Wm5n=NBG*Cm5V@SlYePz#9E<2C+~?ERDgPFB
z_Lw<12*Xa2{xqMrygGu>Mv(Mq6bHS?%Jqo07OO?p>4Bc7=jO0{#+1SKsRQo@CINBz
zJ`XO}&5@mB=s8_$R~=Hm2{L`{R?7lc|2<}K`y)4+=@Xu@!)tZMqHHAx4>EkTsUls*
zB=Xoak;AMhH^t*TlL|X3M0Rp7A!4N{t*B;`mS5tWa}Kho!5Sim2yyxnwKRqa4;S{4
znHqX(Z8a7!yT~?b6o>1bV_y^q=o>6j22WA_YMq{|vJQ<r-ukdIqYS3Kw}kcJO%2N_
z<E;&R6fh2m>tTNMeJnr3_jul0yXsUd)U<L~9nw{c<#jEz?$yfJ%^o+$G>nCoRXoS(
z4vZpkBkSV0RBl`^MSSdnPAtcM7W@I=At2`CO>nt}-!Jqs1BXmVYxF%Q172JwrlWeB
z_XftX1X^M*gUnCR5_%B!qA7$8bR0f+k-cqQbA(H<cJ@g3=&>Z;tsy>F_6S)~2#wX>
zz$R$)eQZv^M`hX|zo&t(0nPzpejf*yYxw<NaG3YeYv*q6C-bndJn(4|dUq)q8b8A8
z2kmAKhqj#Ah{`tO)UhK-Won!3W%fz-u?S}8xvSY+vri{^$64;#RBb-7ME7FH>_&^r
zH%V5{#B3JI)#f4{{0E2Bhw80k^>%#@(UMUsAgA0KmaA_1;J6qAz6dx0h|BeBaJlwI
zcE749k7wK;wya{ll4+L`we4{y-s`G8?(eMNcDWPWUQ_onEayF(HttJGp5mNS=eHLU
zUIT9H#T18G>U6I?pNs>{0c78n0AN2q%Oj{s(w&VaTS?todmZ_ZwcM+FW^{W!=(8ty
z6D8kUGMA;N<t=?BKS*ZUoJ5CRU8u3E-Fm|4+Da!`q>W4X{Cg2^l#-cpT+WFpdGexD
zr2Wq2p9YmCKTTg_IX_T}AONEDI<2W{ss5zm<=aXvL0K3~D7T08);nWRFTNi9V&FYM
zTyM{T%Qd+#T(7L?erUa|*}U>R(k4aPe8h;~gkr?!{TnrXVsFZLAl=QPg@Z-LLw!FM
zHHALYT2wdMuTOMhrO{5~7%NvQ<Ia%6#GX$4g_0y+<Yf|{5g{q(8+JEZ#dKc2$^ML&
z={XsY7hCUkI_)V|ht<gmB<4o)%1$7##=Jnac+n@L`2<~QIBbo|=fiR@JaTXxoCSV9
zunmaIeHXY~L-(I?xdVS4w#alF83R2J%hvd4pa-bN=r`|I+W2mUty3Z6Rk7zwu~{y9
z5-gM}xrBmakWnsfaKUCCLp{d)Bp~f~rap%g8Ur!h*z<*u-#6hWo@cT%mC+821Y&+q
z1^;LKuI?Yo@sEY$xj-TSIR1e)KAeSPuL>zIr^kjtG0cEXdHhg>V>U6wl_WU+R4gsR
z;h6}gdTq$7(9hi+@_Q%z#B#(}!5;^{3&i|BbX3Ui@x%C`uU$27Gbc$0Q{syj)8Q|*
z2tdDdjq7vl7rgpZCY7odvx1wGgJ%gAVR?}w$I_)_v(xU>;o_2)7{|2hrm5-+h_N`Y
zkjfqD9^*LmVh!fto($4wYHjKqXQDrf6<Vb?xfdiaaVK&{;c@m>&rhq=yHktprS^Gx
zBL{rx)JIh6V`OR~$tq;s+Z8{ZRqb$i*akhGIPO$H#olPz_JT|cC-ziO32!5%TcSqP
ziBRP!wTFCOn>Z@f1GT06Zk)ZG|J#;sPuAJja&D6SDHUjT2s|Z{v`g<$Z2Qp+hlZa$
zVLj(&4UXS7@NQrd5ZCiH;BpP;?;q9kVyWofn>4cTzbiKW^WJ9}FXXA{T$(kV1J<lu
z0e=j9k>uP;Ir@=kobJxkYf2eTyOh&`J>@M(HDv0^rP%G4!vd4=AfJ$gmDPTYJt8Q~
zuaw0!CH~A|F>?2X<#--G%kU}d`LDtM3cL-(<(NM^EXNDO#4*c2JUf=*UsCITF2Ubd
z>z|7(^8t><D73P%!s>$U5XVC|J=*8wO-tbwN9oAOU!@5G)P9fhQ=AiBW4EAe6#tFX
zQ6?ty|3}%G07g|^jsLwn@6DT;OlBsTB$Exu282Bz0t!eF1VqFLh=??VB`iuvWKp#C
zGb$>zF0oaMt=4GW>Sr}o+Yjqf>PqWEYOPXNY^~MSw$y5Ct*!sxdH3B6#E$L%#xw6E
zBk!EM-+NYq_(epl@f%y+toNRt`!wHO@MXsNE#MCVKLQNjvl}(vbAo;6`hMqr;kz&3
z9FY}+Sc)I(0E@#Vmg3A$!`5BtF(vWD1k43kL^1s$E>^s}q)Jt1LZvP?e~Bh^5Owaf
zNF{c5^aauBGvU%G-^$@EI@O!&o)}tyYcm<xGBNb20}_pCkyn&?1T$6>8bWTZQ^!H4
zLUJ>6qnOm_s$rq!p*8u_+3ChbPQYnkFfH(76<%Qf(RSXpL%ywd!~f}a*hxLj`gA+^
z{{asIrX5}amy+vTv3cE!)xK<?+ivpDp`>$=zWWPe!J=w4wJ??}!7_-xLQIe#x^XhB
zWUZW{&c&y%wC_C7uuJn(KRqkwnF4+?upBV_>;ac@OOCiNYd5u?-PbRfrYmG-TqI(#
z7ejnRfk&0hlO@S;>K_qnXK}St5FYZ2RQSadF)WF}Fp+sN?x^zRs>R{VgGIQTA(L2?
z-__&_8&^Dgh{V`Kl{r_P5gx@!yP_zAgQ1fmyjge{Sxk{7C1c5*HZc!JiUsOnewf}T
z2;`u?se>@Wf9hdf-_oOPtBT)c{)`4c1~?Wl^}P>VN?i~)e0*>}F#8$nz}B{oK1(g!
zEFW_HYunY#S8i`x_aaN0`EJa*7Ei-^ZZ#ef{LSnYZ{zqFKAr<|F-d_4s*%8uAu<q)
z{De5*QT19vP(>odbuA3nX2|a?$DGRAbi{K}Bh?}lC6Gdr-^v!m-D0k(o|o6kI!WK2
z?Y!bR)7{@Hr_`<|rD<vSWVsjlrSnl;@6?R!`Zo;xFkm8J>U{#Zlw5H_bbPjr2St5!
zn(mi=9%9XWgR3tQXUoH5P)mxXHX)@^EvaIn0gP35`!8;JO!Kibpd;;nFZiRtlYrsl
zo#1<O|9`b#9E(8Dx_;x?{>{_BI`6kP`^(rZw!e%$psb#Z7&PU}#Xnj$FqS{s8D)z$
zA+I=Dn#jmG-@3_mmaF={`10M4YyKw9^x5^tM-%vRU=?8aJ3IKkBalyg)Gw}-geB<n
zmiM{qwu#BaQGAm>Pd~P;?WNURMn=k&o(tnip&|!66ryL@1iY{D&z$r__Y<0*Jpnyw
zuQ$OD03QH`pV%>)-(370>c0Q)8M^krV5s{^&Cim6p77HSekO1>VEEY)d~fcN=4s{+
zrXcG#uiGrTA3xMzx@saB#%3+B<_(A&txl{M0WewQ#J<>iO4IG-y=L8f6Z~D^4}hUN
zaF$@X&!H>V`ZQ(x?%1P{sLtZtxu#kTWD)YzD1<~Kk*Z>ph`Y0Yh)Z|~g+`X~+rVgn
zn?z?RT{D-siZ8LV^{t~Fdo+I?&^P>D0Dc{C17P_3HMo?V>$<c^U=6X`{z>RZw!Pb4
z>VICMegwH$&xWmTTTY!=Axq#-5dx)%>6k{7SIM$b5h)%V8p3G`QC5cZyZ9L%$C`OK
zVZT%@js*X(C6kO6$xX38l<3>IN1KZ5ep=UK((G(K=7BE+76Yap>%b4LM}L3Jwe5a8
z>zbsS77`eC)<!XA=W18XjZLD46p8)#d>y>B;TcW0hxeNHdk*|pz}tYK8=0f&=DKI#
zpN0Dqaj;r9Zr-}773E@wf9Y=Oltn5N>_w7&WfsfT)dU%isw!@YF+4L1aSU*6Y`-MQ
zYE;q!(9>tLIE+8&y#B1_a|wJH|CSE$^MOkN!)NJS&8HK{kEg6VRDRjVrx}iex<ao<
zt_;~-q380hgx;*Z*mV@1UugAmr7ytzJ*LKrZAZcx;wexLm&tngbrPdOqtP{?p5T}{
zHZ(5u4Y7y7;d*B1SbjS^^r{^~1;02!WTdK7)G~AfrPI{3isB(@q|Wg+H2cmNk=_sm
z1)KOtMDl|ca$>4SIhi;yvLK8Hh4UTd;qx;!byVWWNGva$K}7FGM~i~_7!QN`a19Dg
z(hHZVk`HZ{FbTg_-ae9Ks&|!oU%4l<pq1Ui*o-CyMjD+N?kGa&q1$ugWCUd!`x9Sz
zk#}wN4I(uM&lw3jkr87A9HI&mo_j8l3N}aT!$-MaAUjf~QmGRo1)(DRGwcxAI-eq-
zG;y{Gb&*UUM@bfi@(36&0^T3k5gfHAgvPoJ+@_I`ySLfS?RI1tuewoEh8DOfuY#s5
zbTLEVCNa#LPGZ-8+0IuKpYA^i0PXYc>t?TXV-JRy{bz+XJ8#&biOwhD^lqO(>yNOX
z?~|~0yrjoTC*#1JcfSdKJMh1N87F(erR1_RTiv>P>#8jb<JOL>1gYU0au*%Jt$Efv
zw)KfiIEQ!!D;peJ5qEGlPlrm$;F@1StW@-(vS4xRTq<+CWuNA&^tkLin*e?^Fbgnz
zEeDs9OAfcGb$#2)t(!K>3_F;$rg==U3)Bg)_Ge|?5r(x0W)^I4FVV*&wMLpQ{A^Mm
z`fJYqUuu5tfSzfm$H9LA{1PzyjGU+WSr+8E_#lu+oBc%W4SiOQ-nwSkXp`2Z$G%Oc
zi`%a5q4sm03E}vTu^ld@gvE7bfO9d6W>5l@k;hlAIx5ucw#PfTz8{nCgm5lJ4e5+U
z&BR5bWTYy_gCA*PBsQiZoGd32!73`#q`s$|!FDCnw&xXHpKb7K>hm@5Zvi(0raljW
zOUdPr)~`N(dKf3wi~_YLX<KtHwypO$+>^2xK{DR4@D)L(OvEx(h)U0?^<OUUe^v8i
z9iQc=8oUk|3P|}p`<X-e*toULSNzENp~RX~V%@^SFD(I`4&GVMU*ueHIrw$J4S=cl
zQ{Yk_&!L|^lwRKrwc%<R@e{|;hkvlGyH$0#iq(qFA_$PLMM&W2ZAZcbL`sD64Sm8;
zKj`^gwlh&y@21yuJEZ1k$9+BcVZa2y@HZD+N^XC8B;knehK-gJ9?g)hnmov^!W_k#
zyTZDk{Y~=5xtutOP)t+^{{-V_-}PT>?GE_Z2^}*&?g4)g_z__E_z+ym=Zz1|N5@uw
zgKM}{T4*^fH1{jYdd99sbs8mFy~L#`N|Cl9p5$_Y=|S4Vk{;cADSEGJT%jt!J=W)1
zTIsts=HExlI??<3bWQ(+ET2ok*8^>U;qw}BDMo+NKku0Ir{;6Zrn6_a`m8p#VdN{8
z%O%s`_I=yB9|1P5=)TCFXGvTQNpl2aa;73GKV3{-0L+r$>LN+9T&YHf3e9<?_YKYG
zJMdxJ^HcCdlWi3OhR-9x|2sa(m?)>i&oJ4AN5Vl&mct~M9iK@iVlF0o_iO%kK;N8e
zz72j4a35g!djnj`e;#+M*Kh7<_uUjSRX5s<y|O{H;>&~#fI;HY((7cKrH6?C<wRq+
z3vkqu&)6UaWEvH-wB$5(mB0S>ys7!CKQYVS4DbcOV!-fsCb*Q`=PuLFD_3k-v2m3)
z=Uu{(tN@0vRn2`^qM*Sd@z)4O%OS!aj(IU;@yJ|?eevkAY8=PITGPAO;r&YUw+H&B
z{eB1jA@C7k_;VKgC;mj>zEU=aRqI+;oxYKiX<NsZvt<T1RQqf)gHN{J#~oDC*;k15
z)3JTlPgZZhM-y}mAMN1h0AB(OA72Ll{B}B&kAKU=zdp-E!>_0N@9pLNhW@X>{{Z|M
zF!YlPHT_)o3r4pgnQ0k;oOmf>;<>luz~NS-Dnr(Qm)1}T1cAl|BPE<e{JTO6Hg$0p
z()|G+OQ2);I1T&^U<+XQ=mh_~c3{;qe54zul3QTz66;=H9D)I(B()aL%pkXbyr=Q4
z>HhnAd9R`SCipwR?*T*iZ{SjLjZ^5Z+3JTt=_C92za!fn&}&?jrMC!tIj|Bi^frM@
z$<^MhdNjEq*@#%SF+psax$V{qkS+J!Sc{yb>=X4!OzLIWNlE=?y8qnG`%Qg+2L5Z{
zw}7F4%t@b5KTAB*@sALC$KTp~+$ze)x&P}~|6&WkvJSC6u|P(;!{Rk{vUM>*$zFSS
zH0n*@Z=AskD<sQOv@Fg!KT(KHgohS7k1Jdr&xT?ZpX`q2bBsGAJ%Ycm!(fgo%GBpV
zh#Nmtm|yTKW%oO}UOVC2tk>TG|32^lVCwY}xRiZ?9Jqh}zI7`$u5MqmMpo*UpNI<B
zlX3jMZM_~Qxu+AwUR|W_W8}JtL@Gh-4NtCf)oO*BC9d9qWNi1lnxFc`S$?K~9}k=e
z7=CtwOSwO=zn<C84to>v!#Ay#t0ydxYWI6O)$Rc$X?5p49cJm90%rqb#5Q)YEF%a_
zK2g2uaAt}|P9P6c3EFd1jhH%?k_(ftfn>tro(y=6PJVtx(!=YB3J_MSN1?r2=FU;e
z>>&=CYvC*P2VIW?@M-R)-pRIA1e5}%9xK76<cc4{y;MTU^&M|A4Zn=AI(``9U@`AN
z+&|GjX=9Nu|2<$AVrEQhmWJ}tVpofinObSbFq<1B!g6LZmaSt+1%pY42G>5v-fVA@
z1^(km;CmtbbpA#2-vfVUTs#f_67ULO`2Q!kl-%c{fPdnT^x4!j-J&o5dDgtwvChX9
zh3I083r7S!IE>}vr85RO9A`&tM`4X~&`>>KTRzZy%~_I_7q0<78~74n_<8_b$}>6g
z_Vl$Y17*XC^=<R8nUTTUX`d@b;WzmKWRmC6$a{$)>s323qIsgwRt3b3O;yFJxyp}?
zjVm0LAoPWVyUehWN(|#<+9|?q*7hn1D>e+?Z?K)2_G+_(_I#-MkDQWi*BbC?zzo3f
ze-XHp|Jbep|C;w(lrVpad}I?zdQyuAL)Lz;8kxR_+3O^`Br!h0I4MVUS5b(wODq(T
z5Nd3+ULrw6UsT!zX^jy!m<!oq*p8t5qb{uo*_a!Xu?FBbDII^)_1Oo%Rs1gZjQ7Dm
z1>#Gy^|=^a%3HxaE$TO4`}$*r7%u5-BQ5_FAFk^{tR(ZUV+SlO0saxP?#1trqbLsT
z#ifJU7SXY@K}YA}IsSXwd(STMKSzY~%2{U0NSk7-)&yyp#k7I&RKB{;k5^ez(dw;J
z+z?XO$CZym1r;qGtxhQAFA|9fh~Tq0HjPWBTkC5t<~m=qQS5}v?3dBExwTk8>4xa}
zShvG|>RClSr5!#3kDN+708)Fo*9`}kV&Wyf5Zs@$_vT=}`0XIQ+J(T;H_sd-)|vCp
zSJtahk&;Q4n=vTFVkoy`<Ps_J2B4{c8zPsT6lf<|-~XZc+6G;-4qXF&6L2eF_<9Un
zipjgwKVHwF{o@<>33E-i$xIgU-MnApaLl5EAqPg)HEg8lRB7-swD3h`e&Zd3?r4-z
z|9+zRN-fLsH4c0>a2#OxdKFyC>OkMHyI<beetfas&m*I15asACG3@!H%f}?ZYlqA4
zN3FYJ)v;JK6pOIJ<7UIyj~6P2Q8W~<amllm&+f!$ys(D+JY&^(S5?>%+*u27NlAuS
z_y<?ZV(X|3(rFi8unZ$mHaADCWf8$4&Sl~9Jd72wutt!Fz^a_@h-j2V59U^&1@T9$
zN)Pfk!86o6=jXOvr7jQIHO?Y?w%uee)j3!@?4$kqPx?Z(olXK@1}q0mJFNwm@|nC<
zft~fC?KE!%S<C3Zbki&Z!ShyFKg}CJnl#Qj)3x~5+8@xpgZEbPUK!61fIkHMD4-?d
z*~$?&d1dQn0$0eAy4sqz+Il&Uz>_u(lvqebF*g*iaV)t#{}u9@CZ+3H)ts&8MDY2*
z0>ISs8gMCQJnYLg9!xN>Zu@y{82BFZ7IhENff)v030oiKRma3IIE`Iwv@(eZ{~p`-
z_sn3mClMrz=`s$2E+fRQEKA4O`U~CUm(aGCB9e}XqtqAFc;^X)a_<x(QR1wGotmrb
z@eX{N`4(DkTQMLXF!d+{mtyjLtqb(HpIHaiWP`G$TNV%qX<nP3^lQRM&V~4hSSS0T
zka`2UExgz4*XM%o04@Uz-CMw=EXolFsc)S4bOVDjEGzn^`Ci-VAsiuBSQ;rs6V=MO
zLT9R-tMD!)#w;z<9oFq|0D4u>lkro~Vp}!95Ww(rJGhh=f_&8P^wTRI%FiLw8*hQI
zzcBta<gbix$E=?UXNWC^M~aKRDo(l8r2JE5{`GqlTUiv(iYj;?%yvz{CP0G2SD;de
zs>$JDd}6!K-}4c?50$^ghSB-ad_04Sfp|%oSDrVNd0mhgbcteJh~;51JDd!hk&40!
zS$uzQt4<YuPuXiiGkC@K5w-gDOT~42SSzyaQ375I3<XSkw1Z1A@ksjnJ7RBfX6wea
zt>S<#3vkO_a@f91{G8{#qO3n+u~lFrWgbU_8_^T6Fr`r7g;3u|<Zn}wnGoR=aYh)X
z8pNC*V~H`b206=w#;67$nwGu&E6SNA&yIY}_b&LVf-mXEpM(Dz_$^@gE?s#j-^Tyo
zGvnD*K$zcczv%d?v~xw1Htz%1dI<Y1WMbHVi1kVYT_XY~iAaOP>;yb=3R#<@u~!IB
zmv>eK*HyXFFm11N`pzRM&F?z+G4tRe@T-7p0K@MC;8I=)^1EFf<a;}aUpcPIu~2fj
z1i6qhO)J>$z9$w&^X^BTjVTv`ee9_uQ>Gj(I5R~_qL7a;l$FBY_1KO_vb)I7aJlj5
z(o>-MOs&fDISTv;U@BnvTnaA53G&yEU;G)pRhG~78;M}1hs8;ZirXcS-MnvMa}S?&
zn57b&fnzMTPhx47xflh2j85#)Kg(cmq2{j#`lcO!2L2lGCSdsc7x@1te@AO8)lAD0
zc)ZQ$v0GW&vDT`KuprZwvX#a>Y|e`fkC*i4@jzPh*R(pj&aMXkB5)pH_<Ims%Az2i
z+V+zUZNC+(xg@r(TCdY^b=fasUrMmkh5qM-zC+Bsy^i%f+>wtfQ3rp79p&hkkMS}=
zj~S<Bv3x9CadYOhBbjF=I>~B2RdP&4XdUC)IwL$8v)}t{x800V&h;fh|F>rO9}0dH
za5P}}KNDQa>Y)GYPCb-=Jv0xgLXWOO^TAcPACv#WgQ`HfRlGu|01~BGVIGG4oRuf4
zG!>C&QI_>l>QtxMUTt{qEY*DPfv*PmlJ($q@DG8%1BUNY)@Z(aTQ$F(!PCqy+8vXF
zY_zy8`)z&7eO7b7#$VDOa;=?dR)ipKag=i<u15S+#bN`K6?pb=2<Bu#sMt7R??z!;
zH5Ct$grg24D#28*ar|^|CWhn_k)3hVaj|4}NoC{`MUJev)dX*p1!TDTQh2<Y$Jz8$
zj)TXkn!FkbDd(@;jTO4SyQoi}+z0$M;7!2P_ix}*rUd(H|2U<(pAM;VQ<rS2QB-sD
z9zt+NJqIwFQfjgvEC7YKFfhg$q>i(Vv<3o|nx8pqv-5H#cpGpAVEFkmxRhIR!~?-M
zHb^PDax3R$f6*ZBP;i$2ApwN3TFbUOu`NUhE0Styuc7$<gHm<}{Op6CIq&=d{A1u>
zfZ?ZZo#tmpj`)&t+&E|yw_GpV+IRiM;rHk*VFm$u+~uqtG!PohiemAh_nWK4SC`Cn
zPE{w{r)ujfpFOK#pl+{i&^PPY<>1!=Hvoper@*B&1%6ij_gyTkj>pkKQnvWp?&HE=
zyR5IjVC^D+KVGr07$d-g_)&V!0QQ8u0r)Y6l3~K5xyR#(@3-FNHUXU4WnGZcHAwSU
zx<1R_Xz;^<Nr2(65nM_xy)^v!hF1ZDIuq}_S=JAWO(tICew-Hf2lRFX@00m^JNSLT
z{{e>HFN5!mosfB&`77zgf(DtsiO^NYbhNKpCoNNTo#;TKgJ_w@k^cEDgXL<BT=Gbx
zaJ12_qVNtbQWETTq~hotv<7)=t8{zRpO&3(M}i*%919r!R)I^&CFhm)5Wa+^CKP2&
zjk0Gm&vukx=}3l_LP9Qkkz_TdesrC0N-)=%Vvh`1>8RFx^gzdq>&L+N0zU@~AAbgy
zlFL31K9262U@aHPs2Rbing6`)2O`Jb0vp463_nB%NIZ7JUc-&ZT9&B|@X}PH`IvNi
zc6`hSKLuC@7(Pw|my%mvr04mt(QO^HN!qvbui*YLe~q<+g-5PDgmV^g_mZrZh4~%O
z-^KgQ{CN)im%yulq5nJZ|Bn7jO@Bh5<C(v~`Udoiv-Fz}rr%H-)PF<P&-gg-^*|e7
z=>Gv+%3Xmyeq%rT(9K&=HkpO4$9^$%k8StZ3;fUXwM{}N4|)cBuDj5GrV3+Xxxq<P
zr`q6NUl~nuzQa_C!`-mZ=op4RW$Z<DHYeyQVSHbYVswjqTe6q42BZqf)54Q%OtK=V
z0m*1d-VAoEWF-qin){@a5gF%*F(j6EC9FCB-oG$Bpwyi3x9!jZKS6jSSw2i;$<86V
zJ?6A!+v61Qb-?L>X^->3r8MQR4{klfPgcoLa8e7fV#o)IlH9k?v37>gFdz?4*zs6G
zG84NAB!5n^|2}J|roSh6zpNiGgZ~P68!+_a8#R4%59q(1w#n|ZeD(~PpN&sRl7ji~
za<fEbT1+G4)9CzQL*f6J=YUL2td^;9q|=wF<UqjBl7OD@a~k*=z!t#pvpx9UtYhYB
z*0VP9vjqI4t0rOkIDet_a!B0ha2H@n$E;U0LUpo+N@=Rs?a<46&AfOU{I9^rfT3H{
zuG_)rO%C+4pVxGcH`2bEUU#3`>)O4px0fAuJ|V>335{criQCl>xT$m9@Nii~u^Yhk
zCO!k+FoKr_;|z7CI*;b_f7w4w^Vb1=!{2uBuK-s7hQFJ^rQ}*SG=H<$o&8l~1)9P6
z=UQFJTZ!uh7sk2JZ=HmiX7pt(!!`W_yx-7wI&3Qmqya;JFu0Ul`<icY(#n-rPAKW7
z$*kn#Sjp#qMUv4<q+pNGa<Nc@+_@x6@Z4biJ`m9F;QfaF#o*Tf*8zt9J>dV5{$@V`
zx@3CPu{lavyGD%BT)YJra*$5iG4}ZyWQx9R`(mumV94qmq1)jj=v48$jL*~=;6NQ<
z_*euk<^CYQbpQFXnQQ+cZBf(hKB;bW?QVC*jWSYx5VAgS#&JEVK&~Ih9IzUJ72^fx
z>fs!bhxtyRDIB0kDS%_Fue&0g>X~W~%7UQLpx-!3^Lq#Un0C7#{71lJfZ_K|a4G%!
z&5v(l`YYq78(kv%-95OKqT6Jh^CZ4bjC`UhG>8CyT=rZ~`tEqO1U3!?^y@ce_uVPr
z#{(w<hW>VNDfb8d+i&%|*OAF$RjZj*2pS&Mmb<%bku=P|-nF_&L??P1(UFlq9m#Fl
zElCu+<)bmuK&Ca+8_ujpr8*w3fHTkoz@j*um!V=Ir@R|FDx7xj@3SxLYS8VrAHGbx
z{RR9J;d67A?>cZPb-_KMrJw({&$k?gWnt{JpH=6vGX6<fkM^;92DbBVJdx+7;8dh<
zc#pxUK1vN#Ke1V{jzaD%qmMF9^R+FYE939W;8y|H0H!^^7kr;<z4rOi;ZYlZ?l0FL
zvgr3QRZG~kT45$hP#`iv`i(VEebw$`<S@;LwMEz8p9kQBfLg%taai!ZS)a|*tkYuU
zHF_M4GpToJ<KCrq@6vgDmvT(n%X$!=BdVOjRB|lVt8j2OF&TnZuzCafox%Hs{?*{$
z1a1Tj{fC3^4PEmz^!-d8INJKxfONxp3~8D!A=D@y*9v<97hhU8Pb|DJPDj^<U5&)_
zIEmclnv<6Cx*Z~0v*+6Z;0?fd!0<62TuQF<?V1f+H?PYk*l9S4B}qF%+6^8{Q_~g5
z>S0P)()MpC@_eU9|0FTbN!Y`Mr2_#!UC=Z4+dIMU2JQ`bQ1Fq<4yt1-ngqX5R-0D&
zy=^rCA4Car$#z7NP$roHqJoqTWPOT8bp7@puG^#Z%<Q}w1wIj&44C#f7F<fseQM#^
zo6$;bId-Fj@O2u;Vc2m2j66V9i1;DyaA)8v=dwpQ{N3uFpy_t;UNc{B1-}Ql4={9p
z4F2EHo!P4CP6_BfhPx<qhh^zb_vv;_)O4-0vUDrK2LUyJ6lw4N>#7-l;%BqXSHB&-
zV$-Jet()XJdb+jXbgPGyx^W!;RF#OO$krE$C5MZJf?xIrbUUG8?lU)n-vitSnEL)4
zT#C_4nDrn_|5))e->~6e9;C%nmowE<75XS?E#RiLpM9|~QCNoud7&r?L?0Ma#5uLS
z!HF`?lwY--;XW}wx+m#&soItuhtt5115N-8e`~>|%nbCV{q>Y<S1s^`wFk53-`G2T
z!lm2S0WNr7(wkPtSE{s4GEuuIE~oWa(pSY@WjjrM%2VO%2+h|n=$dwW5qv-J7GU`L
z7r2yM`nP|_mo!_)M7Vl5WG(o6$a+7NK$u*Fjb$w9s#lQ{uyJDokGs|sESlA2km#PQ
z`I&QemY+88t-#rU;pgk%Qq~3XpZ@+(YgaAWbhd6P<OZK@t=GgNX~C!3L~v+0AIWT8
zG8y(Hx}E$~WQN3sGPveB7utk^GsDd4o}&4C2l{4SS?6%>1JZ!uZ#lS>-2T%|o7QjK
zvXE=r3V)2V8NSQb+i8DCofoqf-0xaH#dxunI~PIa@TgppE+k53X=yrKfaQG*cTg3r
zbz=Fo*hVFbxV;fRuNLDSt~8uJz>yPT(-TL7qwSD(*y?|6wIDPK8;7i%wq;t-|L|+-
z^E~*gz<$8g=da*Wa;;BmSDm!+EW+&`G;5v4D~a&b=vfQCiC6;5oCGR_(X5muWT%X#
zVj0fV8MQI6=x)?}G=4EVKTZZ;3VZ=De5?YOlFLs(<Te2hO>+4<!dh^IwabmF2962@
z_-YL3+`)Uye()&x)4+3pq4PSplwA80^2Pc6NI4BHY*JKrgY~4;maFn80Fx8Ts&XdS
zzU6vPK)?RnEd67^=K#k6hW^RmQgZD}YgdUKK>u;wXf0^8{)nMp1@oR1ua-4QNiEq2
z1G+nTuj%Jq;12?i1hf?YU+%b;%%^`xa;vpqD`tHIBvU6x1hV9Y#yQIBn6CRX@}+D&
zhk_3WMgdZUUhevxv=Kv@&(v_HwP2>zMHcl5%74l3fKJCjbS?qE6uA5#I=RQomJULq
z%dyKhsz_OjQr0e8n#eD`!Ta~|F0(%V5&UD|Uw|+n^{D?JU8jd~#If3lJQ_L@hF@%e
zGcAvbsH}>s!=mlVdW5M?coH?36EE@8kquxz&1S+UR(aTqDKd{J-xF{#Q|Qd>{M~=F
zZs!i@8~%2HUkBU}@Fe`@vcC)X+S=!w?^K<Re6t)V1YB#;w+Rx<aK^eH*&Sy-ET>$8
z^QyumQ5wQ3T^dW1)+?RP57`jvnxXlLoR=MEW#GerQGjW$9pF-OodW{CXsVjdvg<>i
zmfD?V=Y3k5XD$ATV{I8H*U?xQ+XaX42a4O^NH$+oz(wKkCOi_OWEvw8i;9F|gJW~!
z$Kv`oWxxQ5?Jx075VDuYE8MEW0r{o4+Kj~Ff&bM_ia(9SSSLSt-+I6Q7+s%z@N3%l
zJ@9`3p8}>nC7rrHx%S63*dK4(yaC@Os^oOpYklq27Cx;dZ%PVCjuJ673Fk8cug1zq
z-%=ror@r89*YE9}rTJ)qj+wt(!M6iD0K>;Oz@?aV`jfzZ#hh<^J|y{%ABxlIwio(V
zBeVImmUQzjO#G&ZdNN)w!3czh>1u|m^k2$H$862VJJ2!f=fA)U&$q1-!0^!sE+yBz
z!%i3p*(yKVHZ3x#x6}TCy_cIh$Y7p%){-01i`a7t@kPW}k}II?7N~*rAp?;_)^?m&
zR&FT)TCg{Q%Ps0Ax#oAx(fsXzzG<g#g5L%70EWL`f=k&Q$RnJ7{$0qm+cyh`GFf-q
zKjU7Fo!VaidcEY)kkzfK3AvI+Y9#^7y~K15Rc@FxS&3NQ`8IoYMX26Ua)OwxR;$a2
zG3=AGTIOp0>N%tv{*C}&2DAW%zdOODR0Ze2{`xlZWntqaC%>Amg3Ci!7T8?{1N_g+
zZ2yt;KfNot*Dv|Rv34M3i-w7^ipitGUvWfatct{@;6j-|?&gG$L)utI5*VzUOKzNK
zp{XkTEIHyv$OGpVRye8r)I_hEYMkTz)J6@ZPZ9g)>H2&Gzg6%n_s-~rwp9QW1ExL`
z!KE0xkN)Rwsn6DJ61Owcas?@GtR+3l`hegBLvSj_tTCL(3<`(Cqv5bPFIk!__R1><
z!OWS+){nQjng<P>njiFkKu`GD34SARGhq0+EBM~rf6dd(llIMh{#MmUOP5TszJVZ&
zJErXBTsv(ZQknvKAMrl3J|vm5HNX(S(3=&^<6P?l^I?IQn77Sbv1Ns{LZ^MUoCa_5
z4Rs~S<C3S9bsPIc8to)b{M>)WVw)GU<MJDsnf&AZVt$!qpQZ+w@z#BUZjYS-eQA$7
z!0!R>1q^==1>c)?Fi+DSYuj5lo+-mEohnY!9u4eS95OH}q#?)~W7?xPphx!ezV)FT
zd@wK!F!ZK^OUdOof&9GH^nic)m$1f5c5*PK8-{a;jImIWVM1FG){#9sWyhKS9Zf<1
z2k)2qejWT<z)gUm|J~qwQ&00W^(CBs;BGfox__SaN9bY;f&Gg=0P2GZ?+)mF6ui$L
z{}*Eu3nT$U4@(cfzJ`u@8hTqd8j4|SN!YpoM`znoVXHTI{}TSa8DDMSTY$3w^ZxU|
zrM!?sAF_G<T3OB7bcS+A1kKhGIV&bG4r3mTb%OkcC+haw!~4wov=96@z`KB<7ey!}
z#psjY3(h^JKAevs$$0U))q^-C*xhQJwd6x(U4{<=k&1{yGSQjBsbV<MO7pATno5<5
zjtJAXcPnQ$=ZFQG4-r0@eWn$B3$P6^e0&vLO0IoI^RYQF^mBUbExt<ZC_b$vyAax<
zvaMq}yUZ(gJ8@#fLmZzVF@8Li`YqIa?1PSJk9WX706qc?ACVoJk6h;&=C^JSr`z7*
zZ@CrLlB-3iC-h|>sUW`yH{m5}iqz*oK(~qa8oH-}Zw1Z<4Bd;trR2)fi;dU%ReoTQ
zJ{?S^aXi<u1=C{I(mN2+i{$|ZpP>bE$^D`eETr9wbiI3n_sh6`3;g%M9|1%EZ^8Fw
zJe#K(2R?o7g{|9U?Pxe2jqK93)`S6gTMd<^W4s#a&!p5znqK3Vb$x{1BJfjzX28%}
z8+>o*nCBt%jOwqC-ptR?>kR1i1n(1iPk=uI>;(+HeZlvJj(HwJZ}s{!*Za|t`Uo!Q
zPw+rMuj<ll{U(AR1xyDFy}7~nhK_k2La+VI)=g_R_{o6#D7N&c=no64WwCD8oxyvh
zo_B%Y2mAmqbbl0lZ|IrlA#|a+!q-!oe%$yOqP+pV2nsAILa!XW8mI#dy-~sUhK_k2
zLa(j0?ch;!?q{fR&OKSzZ(Hy_q4yQ=uL9QqhTaXq_lAyn8hTsSkzCoV`NYs?m`)=!
z4mW8To?{Vp^PqGF^xolpW?udSJc95l4j6iKMVLidm&4v>b?cheO~Lun>9p_jxA|`5
z9s3liL=z-Mb4wz{ZYk>$0ax-#JS_$k7!Fn<-kBIJC&Y6JMg>k7dq+H63c>}PP27qK
zR*+fhSuw$>@#*hh67+w-kF-w@_>X}n0K@O!gYQkdm}g)6VDIkpyqWx`zQD1IlpkDQ
zy6h)-u$KJRv2Mn$phA?{q`o05kXX60PlqBaxSTopA=dp^c}()lln^zmBL6a5^eEp_
z>PLQLB%j}=Q#HSHF4yfR{4N1s1*`!KzuSWE%{j9F`CYnl^kFi3nvO%KnmK_E{gU-N
zPK&;S9&C}9M|9rp+8U!bpu3y*ntpvAd_V9OVCYUl?;vGnV5d51?V<LH+#CF6g0i#U
zeq6mFaqd2*UmtU<?HpI|J(g1>;^I-2NfyDeDjkjyRTcRO5|rRblV5hYJ3)M2P`22_
zinR-gY~mIdi7`c{t}r@~-zt)|+=VRbc@;@Hlk7ApVr$fd&~TqS%c^SD?brpsX8-&)
z`1gSC1ExOjflD#@URJL<v_7J$GZpgot83I7%HFSDCaLz{9BY3l!x$8Q5{a{1KW>gX
zjIgp;Cx))EZE^$+tE-DL90(FJ5nhQGlph5w>oye|5^5nQ(6RPtyUwTI-J<zLX6XO!
z_dED<U?pJqJuUd&j8F44<Ft=of8&w<H<S5(XMp3||70gKl=cU7cLnbiy3c~Y0K5bk
zx^D#E8+zvX8M<r4A+wL@BmIe1t<d$X@5=VeRPYmllK?~SMsO*Q2jgr}Kf7qZPd2q~
z*}6&Sv4Y(1uORxmfNz|&^f$_S3$3LLIbuBGYMoCE#Ylp1_ne-i6Wt@RF5vX%f+1oG
z;RSLySV$t3mk>3j9KfD_oLlV&yWU~PYH+)(wHMl>gs-lZx*iAM(~PgkRh&_QO2E`(
z9=H@UzQ*^<tIRRKLj>V|clql|uids+BHH~~Nl3e;=R4vw9IHYmmLbf0tS}Yw@`gBH
zz#csjN#r%eW1)crrJ6*LZ_<7yQ{t~SUQLe-cB||W&YI9k;n|!l`J*n~t2N(uz?b3s
zVep>-&jN<;--AoZbwBCHbi>yq8pf&IQI>Wo>t@2x6h_D=%EBGU>XWFlCCavNau_za
zi|uhNn%D!jYJMhtHM{N{3%(R+1`I#TzZUQl*cmU`aOgZ;+inIt&cJ&DXW%?>244EB
zr1c0P@^DitAvr*t*w2Xual%#^Bo^c$!tPW|I~{KR<zlE;L0YWS+%NF=i*3TT`hrQ$
z>t_)=RKA!lxroW5b(%W^%<-{fVub`0N3NEfrW(cDID^M4uftVEe&VOP&6VL|!iusl
zM6i}*`6JjB#$#z)OvqRQGl}Ee#j(6XeDE{4m9dpYqhwcfkB3ez;c}8LhR<w$Va=SI
zsr6lRDuQP%GAi2J{52`#zM?Gne?<TBk#a`IGWK})o3?t)7Om5f_K~6Xa9L<<sLY;{
zn1R%5gDQ3B<WEVQ1I$S3A=BNa`=^)oH~Yey;BNuH4f;gUkDqhyM^4kh9Azx$S-S|U
z9hPy`6TG*cJAk>@O$I*-m<~vh_vW&@T-z=l;G6^b-xgX+7h11lkBgB|gm5b&=TvF`
z6;^7a=6`4KPFdgX0>2OV0bs`0Bf<A(T{BO!zHx)vq$jB?H&wNR7^3yo`$&)Qj<T#W
zrLT`xV?Zx*O?G~jfmZ>wfT4FdxD=ybnHR+8G4xjVjc14KJrLVseG*A?rVw@iFvR32
zRz!VtjFQ$vju+7F<h`b!E(8A>a4lfyehXZRk&l}5gKyX49|Eagx}i=EfJa$h#loOm
zPJRu2Hk<9bJ>TIyhR)x>KLtY9X6a<W{~aAuKSRoC_%<tte-pbtnox_V7rQBW3Vds8
z%Sv!USkH@k0=g}{*Q{Hcz|R9N1Wf&I2A7g+-3msHuY>5gTvWynNj9XV7@<EB#c~+8
zw+deeD(=DfCaGB2O`O$aHmp?R)ze0GSapVOhXVmU8CT)2llL8{01Q8C!KIjX{*2vM
z-?-8~(Tz`w&hT8|JGR_VzvfuKBf!46Ll=>fLNx5-5J&pX{uqOCzQp`gd4);L0*ECd
zRyuLw(ZmMD!1A%nj*Ts2&8SuQH;ReVLpFgy)s3baR^w(}k6rL-=Hb)euLAo4Q;*4r
zo}_FD;zKM7o~A#8@v1Aa+rCHpef_`>p}6!C&w3QsVL8Jq<aPMnMSg4}jFmPn4#%0f
zwWP@-Ws_4f%$p)BWQ=rZD#<@MT!m95dC2!XR#g(GVN6y_YmA7wgU2~;-Y}8#Epf&o
zUJ0+pzE`bqPw_L4_MWNh)dk;XoZbxnec%DW)a#evQgZ422!Cug7N=n{dt4Q8A}~-!
z?en&EOI|`&9wK@q9ae99IDwiOHDDZOW2_2S*=joD_bkm1=JS2+JPCXzFb6RFtOb{n
zOHL}|chl-w?VFlJu)$o-v|K4(^vUHhYuRpPHC0Q9LPAB4vO{VSVG6555ds=8PLfHj
z2mhO`1{&!oa+YmD{|9ts96t^IBJeU`_&N}LpKBcZ=K)bz`pd`3G*E`az%p)C+qp!_
znV+P8a!@84mv0VuCed%`yUw#U{Yl@@^%nZagD(M21q}VR;Cr(!o2MCnKK-q}%2YTY
zx~VAeJZsr%YbOlkL*7HkgYTh)ep%dipFI%J-^KgQ_}>G*4|o+Y^gjldlFNU7?OB`9
zp!)ssifA^E0-}iVmp!ShyYM|ukZUP{K4d!5YYBW2_iC^{^kXp1#z=F5I#%0QG=5RH
z$DD6w+v61Q7GM=%_-PBiH|=1ahqT9L*>}_AT8~)EP9(M00OnaBz#kRd=eq-XyMp&g
z`~L*I7x+0~=)D$vZ|IokA@nwGIGEn^|Bjw@uC8DG_1SfNGWaauSisOb1zbulxu)OW
zE6Ho;Q=G<l6Pd-b^Q@QcI<)Y$5kIiA^z{(6fVy@Dbh~-4*+1?F{|WFc&`0-%|AMZO
z17%t+3enF`Nr#UF#!H9)%q2TiwNnzVCubz<6@hML)pBOxLx@5)6egp_c!zwQVzws%
zMO`EW8TMBq)+-0@3)Z_EkQ6M(>CMKq7sowh9HB%yQYrq2&LEy7Ba#3XjvdAxQ9@lf
zRiRVeW$s$~m-UexZ(<E2dxK?N5mFCi<qIw6>Gr>adYX245d3LiFJRi?PvHNt{kL*)
zq5a9I@uJSCk&wJx%dSw?1)(vjp7Su$50q%(5LaT`O^_rQHH~k-{-%g%;I5-HnE&6(
z@-r9wBwz_(_&E*yKk}p5NfZ9eZWtxQVWV|DHvTadXlWKwa*Og}gqjizeqOjgpudav
zoA&rA_{+fSfT170@xP$I&X@Ai9Ixu;DE6D<o2&q#F-|=RrK@NP++RIu3|1mKE)R1C
zZge4XK*-hTx3==lHZAJ{-7W;1@8fF?cpK0G7{1N{my+weqwi_$w2XgLPFIOGZ`l;9
zmv&(_77_FiKfr+h7S4qM-95b5?3=HFzYY8jFmyivmtxM5ivm6JA?v~BEnIEaGC~M)
z@+C?3w~T+a4<C@zpiFHEy)C)Dr0fsqHg;#%;YHxffEK{eZ3CB*%bvrpuaSTI;Y*;p
zhqFwm+PTP<D$ATWTzxsPiSM~kxAQLEYwG(9_zS>3z|j2_xRjiF2D!wyuE8i>s@t$#
zQfe=|&9>g7wrA+tR->dFWp>_{?V4`GP5QmE?j8kx5^xG&=sp~L-!VbocSrV%C({-r
zA?dbXb9}YRH98E&ED3|r{7TsOLL+u{JTFc#<J1PHj9j*{*kH$X4rB01&U1mn2%<IC
z%@ij}*C~nnzZGI|icM1(b^Z}yH7GT}4{kz$6JnJ`Q^ggGVRC03L3_@_VaI-iOBX(7
zx<7YcqU#sAIa|L$;5ESD;BSidH2a8owr}psp1QJi4VS!Qw)uKUqye^dM@YYnf7ctl
zzvH0ycY<F6Tnd=>yE^#Zyx%;{IQ8YE<NZx!1lwfuEbDG&2I^Ir84aA`cu1+*q3g3h
zc%Ssw-@rcwLf_8P8wM`L&@oR#k1DNdT}wzrlgzYbyCjZjzExR2V5mq~bkYKoeo@?f
z$Zi%cB)tWe6a<#(3x!VVB;CkD=gXR}Z2?{3>&xI>z}EoN4&MyEH~g5V;cIsLW|$He
z7=5{Iu4l>|bh+&e=<Me`4bT-j2f#m(_ui7FGa6jV<ALACE&cNEiJWGW91=54cPRwZ
zr=39McZIC&X!h$6jBrp34?&DRn!y=Y4KznAkL1e8wh$iS-YtR=Dt{8fWi`Mlwi|I@
zlg4QLif)Ha=-2bR@OLfv4L~<w+Tl)cDMdN-#G1eCL9$~}JENlAx)b#`**s-boO1Ab
z*%Q$Hi1(WHBYG=1kOmChLEuu%dfDGDN#q&YG%npV_XJ3`TK7UyTtIx+v=aiNRhQ{{
zuH$`Xzxp5W%YZJx(0d15$|BPb{o--0SartM^~7u6y1HE!Xy<_abN5fSeZYQ4S<Sm6
z)@}#OZeLK9a*iSsTDh8yUr_>++AbTb>ZIp!%Ro*Q^-@u%7%@mS5^!QHg%4MS;%3VK
zgIgqB=6P!v&xH7Nudu^#e2VjT+i9^^*uS*xib$DPsJ?C!fS}ChmV0uSuHPKiPE)^T
z@C`r*VCwg0a4Dax(CcE)%0uOWn_9`YOtkEveqN{gsr#v9Y3~YI&A*CRmtjmLqI>g$
zfG<p*GKB<fR!Cx`SBzjp7E>ks@rc!k5U!F;i184fo>Z=qzf_PTPGSaPmP|E^@WmpD
zGD$C;MdYr`4@rQ*FB4Xc;NUL%jyud>J^5Gu50PY4xLy_E*;c6LJA_RhVxM9kVGj&_
z$FErL)j>Plp4|_ZfS(F915y-Fnj=2bnynjG`3AsMR&$m0SL|b4RmA^)Ab9T`yu-Bb
z55a#7JPw%leFj`guJiZG6|3=12?Be{(Ytw?Zw1>=U1&92qw7(6N0#0Q@NvN5fT1@P
z{J)_mu0dM60Ktp7RP`g+5zyNayieAFZt&ZII{`!Q-r#$4pM5V_56pT<{Wi6(+0eRb
zi>YPD!ggxeW?cc%V`W>I?F^FTK$raiT}yYLzy6eh4+3fcLw9)ay;*<F^B}ryECs&7
z##$Cy<&fx_E}vq3E1YoZMCdn4WQ|qV>UQl2-Y50E9Q<nF>wuwmWAMG9W1jz(9u^ve
z>^PWc&mlyqYD+-(o#4Gf_wV5U5}J2r>3ZN&3_bHai0-N_+vN7(Gz_+yhglCH96)(n
zBT1+!T>+gY-ebn;3h+(9nSiO^UEor3oqrjkYgeq6eJ#_2g(YS$J@yWq!`XHAJJvpK
zQspGSo5QA?j(X)Rw#k$l6pp%~@JKe`XtAU^MLijrS-?tQ|BvS<2^+4ivDFRA-mI;!
zg#Lk@x<9P{)%-}iq`?OPwSeKbHTd3)yU)l2Wfu<g@R^QYg@E#C<de<!hpcZA-!Vbb
z2u^7J54TGF!wOPl{wf<L2`u8A=;C4gBcfio*gri)r!#bpVCB8azYO+#L-X4MKc;=3
z0Dl(v8DRK*6I{x<fxmtKxUj3q%Cwfzx@D`cylS~A#2vW#v5@tNCsNDZw*2RxxhFZZ
z1plI(zmfY~ujx13m2IzMz?*<YfT6!K_}+{k^EBg#=2~@nn=zx!G!8{_x)#A{a}Tz>
zk!lB_sXI@*3r<sOv*)IU8-n`t{=WKyKM%YJ82W|Z)%@ieUyyEVYu{*kObg?#k+>$!
zPll|WM6$$vg@m+Wg8Zg%Ut}Wy_=ydVBqV%DSmJWyF(7K=;)LuagU5%-D~uPsx|0LB
zJx4Qrqvn^GDSdLPcJMC(=K+S_?}AI26yy)>-(TjGk!ku!qSG8N$FJX_DTUEwMB;Zi
z9yYuxNgmyistB`-GBLu>6NL)%Gfk#kIes0Xn)v#3i4qeuX-Bu_&$>I?o(15QKowy4
zn*uH+*S@lLl^BJ{SV}jva*dCVfx#<n>l@Jlw4bzM41uwe@k&tSl8L~Pma11@=<C^=
zG#@*lWBT<*@H>IK0mH{n!9S0Wji~)uH#9pwHyv<8@;a*-iT@*h0$$BcLR?~Pvhs!C
zMntUjsxKNW{#*e+rT1j{sRthqOacr)8^EO)eNg{(K`sp1J-6jHk@pUh5%y<gy{wf3
z9K{$b=t@EfH#!<gYgmFCIw|y!kz(Wvq}z@W>aZf}OBs%INCq;=Z?dXy>-O3e(3f?q
z7knS^Dq#5gIQZVoKl3#6Q0xxQY2C6;@~m#~m)nLb<qq8ZJ^BvWe}drn45Nf3_=_jg
zq#Teu8h9sgL{$s>de7P)@YBfrHRtJ*z?T500#X!^OI|PIJG&mGtmc&Ua*P)p2;SR$
z(0d;S{|WFcVCwm2a4F`TZq{j2&s8fnui4bzwtTiEM$E2zzDnS$612JbBFE~?t1k5;
z!i7o1;*pS(sT0CGzRE4uzsR6nufA<#{KrR?2nBA_{m@8z89DS)@HN0`fZ^|4a4EU;
z1Ms({eQiJH<}h@xvxT_}m34n!HAynj7lp}LZs&;yX^Ughxmu~)H6MGRW7_{!@ZSM{
z1PmX?->dnkpQ+E?JA$|@2enhS8!$V4h&`9B_bP4|&%4&Ec`Pw%2mx1#&*KsFBJ5TZ
z)w(<yCM8-O{=>G!!^o>mSBAo&YEIrLFjAxP2ByN%+9;`wQk78@L`2Z9bW2l+dbuE<
za4TxM!q^BLqQ&Rnh7g%GUL|kacXWMr!mp{%?cnzVy8u(4QTOTk<cgaqEh-nKOv~#c
z^6m6j_)gdQAYPq{mr|K+@Y9x5CFRkYXng#@7^lRz?Y2cXhT7b9+$U6Wt2!;UKDLpd
zl^Fk)F6XaF$&QUwaz-RpH<;h2r6SS!%!-pF?WY>XsBy>=Tg*3Oyor3C9N*~PDsyE%
zkz`T*E)Ik(jE9c9bUiz%hgtW&3Vs7{6JYB3Ah?uV`<Z|A+_c57YQu2G%~BaQT()i|
z@?>G$O`(c|Es1!eFuC(D<HNb{ObrBERo~ToMDEYF_dxJrz$n1*F%4Wwu6f2N?pU<0
zl~g9dYO)DliiH;rn)~6U44nyQ9Yg|tM4iKlGG7M|y#f6l!TV)ByAk|O;BLUs-yM8!
z)-m%m<JZ^sAHu*|7$_13kc>+hP6>lN9sxJ8g=N(rsZSRjcL(+VzOJ9p9|ArRm<$;D
zKM%e)`4%_yi*tK${ZC%MW!=KowiPn`y6rb~xZ6um;=;_1uywDW6S+`wIJ3}52(<(z
zhLz|F<QS{C%o6Vh$Kymnai!KdU<8$j9pO!haw89yCnR0nv1$Q!DJOahNKs5;qtL+U
zfcQZ2d!kcDYvxG|KEjO*!2iun)VLFCIH*KbexW;EQayTNpCWm5lOgfLRbIwV<u=cG
z!M5MG!(-eQXL6{<U*tQ#r`xCM2if)+3qBs082n8!E=+%zr|B1>X9pW$snuL+^`^vL
zfLC<~@9jM3y*Gm21@r)>-3$Lu(>3jWZohc6hxGfw4c~E5h_m>`Vl2@7U2YD9+)Qxr
z7V|P>Rz&qmI5B?50lt8HgyW8jj&%{<<YWIQBPBJ^!<ft&>kco9I7Q}IRYpW_lt8r=
z@xrOh=E>Ma67|$gcoOa77;(K`L4vf<P`fBxZI{Sw@4ZjA-@2e4GQPHfp9fq3n0kII
z_};XidG@uVUr|PsQ?-5&_sfme%S>mi6$uM3YAT0isepqZGhObS%lqtG?$`9+3EnUC
z{|@f%vaKj!=pPF%#q6K`&oga4{joBn8-FS$4_}l+J15Z#2xFOWQi&wl)wth8ik<RE
zG>n9)%&S7w!d-&At>{gVF2z)u#!I6^!?uBR4TJrtAjdkF+IG1bOp3uHQMAIml%DTv
zzPsVetdIACKL$Jn7``ugK=ZvNh{t(#5I@$m8}i#@R;*grr03$-Twmt?fu4)siCFKz
zJyvfvHebFZSF*DXryj{r9L;wT2F)3}AQ7AB9T^R$$EZozn;ZeoTrHKkTCHkQZgG;F
znB|E!wS^hE)jQKcL6p4E_P)wni@#=j*YcdGVprPUrFP-hY;`GVxH;M-gE<*@N98fw
zqsMxa+zM6cN|vV?-W+CV1!r~wobxy35nD5Xj}1<RWu9AJ$Dqse=j?jtueS3K<xCB&
zAT?0htqfOswGrR9%5TU04+Q-mw3GC|^+RmGffQicaWuFTGw#gOv?I@jE7r6&iDrsK
zl?;Qb3vG1v6@xf4{ur|gB0?5LN@eD-xguYq8nhrI0<F1aok}hazh`@XsQK9jJ#%i_
z0e%f|9bou*4P446f!&JLZ@ooMfOnAaq2<!MBnEKv#g6qJjNqKgU8tPyAqk`!hPJkx
zObgtM!b!p}xg4q!MYJ!LAh8gd6|QozG@@!RF_1KO!fuN*UiH|RQe8>F9Dk?W{gCFn
z;lb>9oCba@a6Dl6J_}q*u6u#pQ-p0tJ5*0+M^M&##f-a>w5SfSWpWdwNITwbLia`d
zRFN6PP8ueWnv#fGM&hGiXMaT#fllwkny)<pUFqLfz~2Ub2N=F$59xoBYkp$~PI!P#
zD}=Xn(;TjvW28Z^;bu`nG(uF@IJF{CNt2igu`xPY45Y(;z{n%j5yZF-W^TtLnx7>B
zJ>h2~__;tQVEB1H_<l*CCo5_?R31$FsrjvE9V09qFTLDp|0pE>g=d}zS1&o%$0gPA
zDy%<`@Xfv=oXZHO49E#B7A{4JJ&@+BL^CuX7R3Y)Lp;8LZ^=nUN=tFYONv6wmLo}W
z6rDbf*U{;>aLUJWxJ{qcdUxyk)IY4-PwF!fd>SwVF!fmxe4nd*S8r<X(8G1ReF9U4
z6WT|aYV>^U@SFhx2Dxk{uz`*VJ5!t)_5iaSTAe@EeDpxaoQod=e-`)|VE8C_MDv-;
zzEezo{En6}*l<0zd<_$5P?AfR;<ic<PJHAMqj@Dny{M)!s|bQ2n#PK#eB=0d#49N*
zb`k_Ni@N9{)nIodXZRL%7UQwyQO#!)e3*5+6?_BG9`L64|4bYOBUdo%jMn7zaac7(
zHoFnl#bpUZ`?N||@cv!A%e2Fj;4cC%1Ew9UAL({*f^qdiKRa&5yWbsM_Mdc|<0C}h
z-Tbt&uI0Q>{7c4ClC2?5wqus>NM714BEmsIMM<%~1&?<g$0Pz9xughKto@G#^$zID
zI9U#UI?xUnzHSP>&oxfu9O*OG_#MSAd!p>J*N3dfVT$7mkySY2VV5i+5G!C)#8V7k
zmBh7N@}tK{i^7k{>`r%nXWLWF0P1`~^Y>0bU-<h6_`ig=-MX!$U(C91o~B>O8oYiZ
zVl%mD6kE;3*7kCOadM6e-aChPnEqG--Ugfjn0h}3F2&qG>-*h5{o{q6AbUm7)h!<<
z0Fuk3`JW-{+H#KYDshxsJxauIHc9OZli~Pe?`W2Fx{Exx`I!iMAo-c-)r(+^5knv$
zHH<lSq&v-vkgtnepe2YHE94qIQZ+ft>{5c-|Dw;nvim9BPNnQ=X8aBZKMptnF!gx=
zTuQEc**cwnt3%eVhS|(AKSAduGT%l9u#D%?B68tcdZ4@-p$q(CgH(bhwSwD0jFUZE
zsYf1Q*-A+nR)DFys!wATKQI=R`+$l~^~T}Wk1vE*=RXVl?YGLsRz5XQP2(FJuibPe
z?nc2S@W602M4f6MscyDy0$~6H>_$~%BTtl#uIi^j{U6o!lW{T>d>n8%VCp|3_}+{Y
z^EBf{LN-X{(+x*a&8VpAS6Q!D3~<WWiHW2wDePwG5XgQzb_I01g7*sDTfx5vd>=4$
z-weM0y!qp=asDowY5a$rRoBTZx`=>I6*7w|xeupeaooXu!+}_t%o{9jxgC>9lN3WC
zSNyz|vx7Wp+f~XBvr+YoZkL9~vg2YF_yS-tVEEexF2%$h?;j7#ALj=%*eMK75C->g
z>#gL-f>Co6nW;$J62zz>SF;=ek_>BEX-;-VskvD>g7vKCYfnH|+U=L%zX9F_3}5NT
zHD9^fZSAUqRvuw#j<EDKWj*h+lwcY3m^or$;EzheM#|2`>7GrZLPtnm%@M1?)(5?+
z=QLj}&^7DA8Q@<6&Ib%%kAX|c6?dw2Tk9%9k;pV^{G0IgCE@E@)`J1kmlF1rD7|@J
zA{-uy9}pIH98L1VMZ~mZoaG_@!1Iu0fg^pQgv_4UtS8-4#}BtT+qoUxxKkd&9X}9<
zSiAQI<Nt{)-=o3T0;dCp@83SD`QE-ppIdeZPc#0BEWa9j<BF9Vgn67?UiW;j@@uuP
z%Z;}G+pYSy=k;%w>c>F;t0r-VX}&jY?HhnIOoG|#AFESbH7Z#E22_TrYu?iQOl3(5
z`^iKs6ONX7mC>qFTBQ6pwtC+#Q2A$j=U_z_DjHIMhPOq$5Q<~&`L;(sGTs-R?af6D
z{g~}OY3E&H#~!p@?9F%D`Ijqog-VWdFABw8RAu30m?K}(ONA7EO;6k2-TdpsJ+^nR
zyrmHP7v@bdvnek;7;hLgfT3C&y-%r!lsmR?o_hjk?X})E_c(6>|8AkTn15C7W}>X)
zP`}Q0uebBAQ^_5~45}DWL0WlP@dhW^;~utSx7dZHDDBg-t`W2_TpucT)YQ^&x>apV
zs&)j`BQa4=M-R87=iBZDcJj#liC(<Q_Aa+$+fnC}Z)LsPQaUGpb7{F-oXT=J)C>9H
zI#sO1O;;5R%1^9xPs)#GTGU!ZcPB;i-9b#ZrOuJWLl2+mePTxzc<T~#RB19%c(t7#
zqE^OB^QPLXN)At_BXd=k?cJ_I+ij=LIWu$^BJw7Gl6L-5kEeA{W!H^!z%K``0?c^&
zF1QqP9_qiIN-!pbYrZ9puV|57B;f-)$n$LERm=yXL>Gq3;>l>5K)eJHr_=mZeYQG3
zut92hS@ZKzKu^|-<R0592L=L$pCiGg7(UF?jBn(QL<q>92{H|fU}owVhAa}x?rPRC
zf>wK6#GE*(Ac%N`NffSHH0cI1Tk+7P>J`n;4(OTv_6G3p0N(`+KYs$3V)UAe`rQZD
zZ#)g%|5}rVr{iPM#13nxZBXm&fgM&bOm<2CO&}ibcsQXFWDSQxH$Upc8Ci?GwBRA^
zV_3!t$!rtLEA<H5nD3iDE^$WKM~Ow^nOYxu;8o3c<4-hS(vAzjmjkN+!}lM8?>mBf
z&hCEkWqm8It^OL3>9|gq{<70fBR(FsJ{GPW<b?4=qyocY#65DADT>ZeP0<qWF2zOY
zjH9QLUjw5T6p<V7V<-koxU1a7=>Lk`LAB(2bKQy}yd*PevN%@bypbXlGIOg6NkSR^
zX`$g{JT6s4ZO%^)QlmLJ4B-fc<ZvLdq}>AlEcs;{jf0(ZO6+x{bC|3e@!g$5QnWsC
zjn%kcw@1@Yv-kQn;B7z$VA|sxa492m*mH@snZ5%o7jKC)7XXe9)2*9p<*@4~ydB~c
zW$ie+0=j#6uNgo4z<&e03mCd1p4N18#i<m!L6*ZC#60{t-^%ZD$GW>#dLc<tvI$Nx
zZtSr#vT&$8R=z4#6GC&xnlu2XXg80QFIpIqA<qed9cCE2j-N|<vD2g`+81)(aw<ck
z)NI*nx__nHs}sHq-`9ZO1l$T3zMlY>lIxtgR@(s{+twj=Aen}b<b-*YOhX*=e+BP|
zJcW1m$>XKhu{(%)#i(=qejTo!mk^6G8{g9Wq@Kz0Qwu&C7z-GFri1?%{P<0ot{RDi
z$iu6ndA@Z)o$L?XZE>si9ofe^7;74HO{*!O-^Ke)d)x}%1KbA~`j3HsK7BlNC3Es;
zIq3R44!TYKpVjY|`CJV?5*Py*`qP5%&3b5_W?dxi5C*U!Crww4HnnfEy6XmTD&b5o
zwa@45dzdQm>wX}hyMy<ddS3^A8*nFJ=r%m3`N}nZHQfdo15I~2+?(zS$;Ig-&-y`~
z4B!E3VwF1x(Ij58RceGB5%`$^RuuzB$XJk3rJlp(h~<w#l6M^D1BEe`6W7Jf6;WQ&
z6-QcRC;qdDgbDI{3HmNl@{!fEjNg5$PYzz}!0w;|AOjHCQ>?Fk8^Vp%en5v7JMd00
z{;8KaA6@}|6>v3R>U}4;lw9%*iNj8%XIRZMtQ~`+T#L0MAeX(cExV4yYNfp!-_`UE
z@IFH?vKO0AAOjeB>%pb$3GBA_1#!Vm|1!A5G@tNaft{Jt^08vQpsSjnajXM_k<%j8
zK_G<?N|M=?ax%g|DV$6tVpZ`X8a~N=EpMuO6sIXd%hFif*-GPHHJ{-a=NxP{GATr<
z?f|@**@2yQ&RlkI@9FxzuE#F;G~?wt@LvG?08@{*z@_9mPxP-v!x3Ys!BN(MA->Zp
ztkY*1HPn9zAH4zHhF<+%nIFf4F9A*k4BgGa_hw$0r)j@~=`N=gvBmM{%2ejc09h%v
zS|1IOQ$0>sB0`Shf=E&WqWFuU#;ojm@t$sn-2pw}=QZ$mfj<C-pMsxheskS>4&i6*
zs<T%3*6W#uowANL$U6Ev4Ah6paVCX^V6YNdJ-M<mXW{OXR3ch*Jdq|GgDhb%7NxS7
zGT#26`D=l`>8CG(?*J|X41dpqOW7afTinuos2ucQ{``Ccw3gFrzY^LjF$XXf?Ie@f
zPzD{kEJ=7L11z2NBj=Z*LPXbv(}3eRCu8R-QmtVO#ng0nPGUA74nJjF<BIbo5cd|W
zS`h}!CM3oNtMN~o|0<4_Qlx!nfJ>sB69L2js^ELm&*u5>`rGG!c_10_d%b~PuajPH
zx3<@_KSX5da4{739e?UMXVC3_=?VDhfu3p4C%|6-_5p^U(LdMxMuIrY{rxXwbv|hF
zHhovIR=zI6rc<rv_Z;iCdcQ5nZ<y~p?G_x##RE%YGRG#0!wBHy)Wrlw%8b%9vapQ&
z-o<DEOPx|eG8Yn$Fv5DuxsqUt1qg2{@>5|(#Hr!s_GPxcP~GcWV_R0$`?`HQ;n&pX
zI`HoT-vdm2-T;?k^a)k{;+7p$pEa10$mr;}*5(*_5|9Q)wllBqRo3H}Cq%=AiE-pw
z647RSNV3*d#fZg=h*cRyoSz)SCAq*)^g@^x+Zkj}N1po^&1d}!nhzNV^S~DaO98{@
zrr>)s&w4(e&*j+tXp45=g`w#J>47m;vuJ>a(*ua&i{-jkk|v+>AY$+^4(_y_xK;Im
z=4Ti5OuM}V{x<MC!0?m$h340^TYr6Kzjj;Rv3|8agg317FI6^9X-s~kqc05i1&?y}
zj7Q0jq2y-cB+(#v9R5-vH{=^=iee^hPbHMTzX0qH_-ug>!{?dc7Xp_6hR>(KrR)mi
zq1X5G(>{n#y}A2i^(kN5^;F3E80KVim-C&dgYi8`Me`8TkPg?^97QD{6Bj}GEb!M-
zjNjdG6Uv+7B%IE6&cY6!%{-hJYEWnQ36^^P8qEI}HGk6Y<H4r^GXTT?$-(!g-}|?-
zb_zlZs~wHyl9-l;y@;dThymPAIG_3f*5g`<-mcw@t;WA;`rX0%h5kd}j{#2thW>NG
z_h#KO&tQ)CIVT<MJ15Q3eDt}@>>F{A%Z%R-9Rb}^R3cJ@?g;P+z>$EV+Z24CtKKWt
za7yT__F}4?6r=l2+uASHM$Lm8s4ohQuzfJP+o(8?0|EV=!TW{&ec(R?9tI5kCxY)y
zea*9fy{8Kw{j1$MvVXO$s*iMgr;tLL^U*-?VZbQB(47q~#hj0J2J5U@@7q>vSj!@m
z={S<LXMH<8jnM4Uk(h0(NMRCVZNl`je4?tue3tPyQVm0gH>z*k9SHc?2_3`7cfjuj
zegGIgo&%S%E?8%re(^Za?_{Hub=l{!2wsB~*~m2NwIjsnMXqQ(lduCD86-)5M3An(
z>vkypW!5igIQV2>8er(Z1ukVu5Pzz1^`ZNAKwmBb<(=xU+Lz@%=Tjsf&CkWGXGYdB
zZwnaxoOI%Gr2Wj^cwwX@lIIkpk~KsqWs5lis9;MkR3jSQY0j5i;ta==WQ&#EMzTHS
zq2efrAf9uo0@L4eG5yUic9LVF@mNKie^vlw0C&ug#PC8E1+t%)sS={JjaccP;w}Xy
z<LZ(pVV2N!IkDmjbfmtl`AXXv<}7qN5D7{I8u9{m+3t&WY*?~JO-?k(sb~McbbHNt
zIon?+gRchG0j9m42ba<v*zfeWb6&fqW2@|5nWk4|NA6W8NJF{S{i89^h+u_UL~X;B
zsPt(l8ZE^Tilg6+pn)rhC5mxWu7r1tOUT4iLTGIgKeGK|-6LjBY4-CNL3Xg~%X2Hr
z`IizbWSq)Fsm{466L<;SV5@Jj?}b)z3>rpV!@ldY&v%babbd<1E7^KZ13wNp0WkIa
z9=MdN1N-}J{p3_@*AQ9LpCE6Am?0}<h7gJFiZK$)q>O46;pSACkS&n=SOp=}YNCVP
znnVSzY;ocXVXffi70~@SH#wM}%kO2V3hWSpEC%tfB2~$XK@93b6)94+q93Hg52L3R
ztG8|SYug#_XHu<lbbYK>v-?v4_&}frF!gB$my+||Nx$jb^_j-!L_U9!gh6Tk5Tk}M
zvTw>%kE16w{gjq|;>vSyKjA(Z^b;m75#L^9B)K2xh!r?o!8(PsTK=;q;78WQJ>bs+
zF9L?&_k-^{0(sl^e)2XgTRLIkqIF_<Oh-6Ps~B$=vOfGC@5lye_%z~fBC4VzQ(`S>
zmk|R4F1}}D$V4)FpO3Dv=BM#B-9Ez4so*PtR>1Jn7JP5kXY(}cC4NhqrS{E)*wHNY
z`Ac0f_A~xcy#d`_!Fz@7Pr!SDp96;OOTqVso_QL&%NL%#d5aEL=?6$|Zm^yi%L$_|
zG_t4bSM_?feiOlu0;U6o&N0FF=Kbc`M+Xy*)=hXR&1lyVM-8>-4xwf>1oXOs_es5O
z0KWye9WeC%H~8MrG0#4FehNb!^qD&K9!iDtY(VED-cwIc3Z3X1$iIPsfT8nGa4B1Y
zJmlm1<s;YeiPtcIYWBx&@!p8p`(uwdZ^RHdcg3xj#~!Z|MHM@^5EAY(JR>nYsR~Pp
zselZ~4HdhU8C60cxB<>(c2z`7Gb5t5nT~L-R1G5uTQc9PM@StHoo}mi5XXcOw5oz@
zZ1-BbRQ`k-8}(%>idk5A7+#L3|HC*}jEII~L%lI*cILZ7L-}}qS9-+na$|TZ4<VO;
zQ#4Uc@L;4R3{^suVT7A0bkZ{;hez_fSpFoQ#}c1tzI!saLc4rYq%bnuoxtaDD3ND^
zf74FMg#4Sr`oa0Ca(-=lN%ag$5AP+dVCcx#<7UZz-G0)(8^N~$=K`jEZw8lQ`p-N~
zKL+hPzkTEEcA2FJSdg-Cf@0tO;dq&)*rd>)#WC(?d5KhvXg-6zDB;$XBs`NqA{!L;
z1WgIe&pXgF=Wy#y+sX$D0K?B=;8M(ep?`eNgZc6OG|7o@tF|0D+-hd9yeCYB$Av1L
zNQ53En+XSSx+&&~=}4s)wXCn$&LW=(9}P*(S0{AMIj0N!M&R3k;p;(gDLLg|XkivM
z$%fJ(K~={4mlp=%txTQ6#iD@DhmE8}S#gqizOl-1bw-~8W`Dp(<X2ffD#1qqV*$g*
zrN7pEd=Q*-7WF&t$YBee5W!Z3mjm{XBYzU_<a>Fr9b8jjT{fYbaXAG071_RP9ZZx5
zCb@b<iwZL&b6-u2z3JZ3*kP&xDT4E1k9mBwkO2S3BNZqvDhoHBr!KJb2ufJx=7$kf
z%48xApoASu#NuncP2L%)j)balyqeHIZ1sulaH&Dwshn4A?`6dG@laU)Qd#79*D3EC
zjGs&fVSSjy@DZ=VdCB(PvqQ)@iQ*S_BdW|BN`x1z{pCU|k`=KY%j4|D|AA+<nvp<I
z!PaVHLw2F<uH*0&ZVD%ARb6bHcSdBIx1HdL#S$EF6ngyC{Heq}$y-cx)M30l>{Po0
zD<Xx1opOh?BzXH`t|+!^QyIXMZBBGye65vN5<|A+<at6R=Hz3#SV};dq(lt!^4)x2
zpVp$TbRv(0ViQB>s(5l<d~9f%`l)Rn=FJOF3O#H)qwTSwS*F7~OZB+>i2gM5A@&xz
z4}em@^!G?`DY^6x!R@_+-cDB?YXse=TMtbd;3N==6*=N3$62(PnK%UdS3;)9`wj&3
zxAA^M|101-f$IT7|Ht4`{u6yUU}s1~!Q$|t@8fY@$l5<itSIWj<tb#Dv}vq3#BD3;
z+=j;q(qWoS1k$@~`aC#YU{_YI+a>jzEMGO?hXE4-!&eKq6cgw4@xbobtXqK}yR-|o
z|M%(O9`9;<<3~tqafIC0M`P7lgFZlpmJF<99(oxDmdYczFj`V!Z?Emt5PNDUK}d#1
zvl&5qD>a|H;KQ`vUhtQJ*8s!kU%;j0lK-yXxJo1*+7hLIC*FI6NMKRj24=hx+@Id7
zKPV7S;{eS^<J+2!tn&-OJAf^K;p6?_`;Oo|_CdeACB8rCYJKjZ!LASc2HLODV0O11
zHJ>bKJyC1V5!I1_h|%k?_zK5U9LJci=p`gh-C>8h<DHNjL*^EXFf;QoSMbELUtyGA
zk%{wl0gwSWZq~`7As2~Kbt0c`cm%QE<WdpiB2?j)R%KMhn2NFA;-7k)M_IGzkxOlL
zwmQYWK{<;<FPW4(2dZ^D%=vA$9hQKv1l9ni9oD|1zt1Hv;NGr9;jEoc=|%IMh;`t|
z>R5sp|K3j9y^1xA(Q>IBB4d5TWqHBc-o2c^BC8C`T}UpG35jUHU62dDQ=CRjJxW!Q
z*qy)Tk8lxCI&0jMxl)Yb*$Rvi7ZidJ))kYD(cR>!v8fTVs`1Y1%k5Cu`5!@{=zi5M
zzRK2ASGgOY%XLsbFScu)=$CD`hCfCl`7|K|$In9iCHcQI(bL_T1eHK)&R#SUeQ3Ur
z#04uqHjo%t1w~0=#f=x``A^O{%5jIrZnoXqWzCwU&gXJKV1{4;YZ(%Zf7;XRn|r`}
zffoSN-e<n6+uP)O=r5Nd6fqWRGD|ydaeXrZ*LreFwWILMbdGYTCeV^a2@1=q?_flN
z;Q%_Zj8`|d%quUhMT1!q3WbJqf*MDB#EEJW2M<i5qoMpr+;b;;m>PNGLsO%Z7-(U4
zhMLI)It;g)a(AfzSrT=^)4iDz0yQ=@ly;YtOyhlNx4B|aXtKMkb`VCjyg|voA<`7K
z%PSLWX%3e2Z`$@O^=I22<+n(~Fx?(|sIOTMUIqUR@GfB5BZ(U0^VWkvYpNqeIH|?t
zja=+IgFZ4<5>|1J;kcC_iWhRK%tty~K;|cTdPu{?F8xkhv}~;J0Y6KiXZYCwej#uP
zVECENZA*%Yce1@-yc6Fp!cTHb9}VhNJ&C=_?p4$M&wqyZifz<&CDu2Nl0d<6v~4MM
zStvi2VqJjIXed>o7KLMC3dIlC;ZPC5ycJF-SbccTW$vJ=At?;}IH37ohe<^m#lHDb
zmB~NZ?Qq+HGH+n?8k?!df#vJA#~*<c+$Q%7Z!Uit6SEyBK1_`a^ZKy!Cv|wFl9$<N
zNFy%6lq2CmDm7cptsUi5xJTE99h<(-`-@!=sdU9%XpHI%tH0X>dkd`&H>!(l@1m&L
zrSTU%T=#1??PS{VZt(8|y8zRUd%&gS+9%tzSS6i0Hi;d@YU`P46^P<|$1{aFtYw|x
zuw>xhAJ9v^m$ly*3_cb(95D3$A7y6(SVvVg{<(K%-pqS>FL}w!o~GHlB<Ys!E#1<+
zl+uP$c4*VRg*FLoT1r6(icl6If&wB-QP2u}P-UxvP!R+XrMQBkR7B<DQ|YJ3hp6!X
zote3L?Q5g{Z+qUHyh-jkcfa@Cvz!ku>EcLUovYutepBZv*2426DM$OCWMv*JJ_erA
z)(fqyemJFZu*$&4Te_GymU!Anup<n~?8aEfvc^j=l_U!4JRG`uUZI<jW%^gjnWZa@
zpzy$iuzvQ#kEx#@g8vfuHDLJt3%I2I>L-x<M|IS44!h?nkxt)4K!%yPxMw02-_MD7
zARro|SM)iM=$aVPpY+Ep{e|Es0&RdK4fMDE26V$p8euITVLdPtvncj{Sf&MkyF1GN
z7V<Ll+<o8=0AD>U|9<VNX#-J%5XZR_t>qJ~7iYSd<Kw1^%PH-1A&?OEtb-99|4-R=
zuK*tbj0Q|So&hfDiGJckNSj9zyso`+|1=PY0|}9EeNtOJvl<gIWL(2oyb=T5R35w}
z6N9kDOK@s~owCG$gvhDRX3HO{qzJu3lfru51N~ZlmVL%I!G8q&3^4qq-U<2pM|595
z>HH(*u@Qe;!zd*62htzvm(uD$dSdWd|594Gbgb{p8bfRfaa@o@S7oq@#Y$t9dBm+^
z>*KIPI3>`$FSm>0UWsSZQ{5_wm42s=tyLEUo5?95zo)~Gv2WT4z5}=zF#LW2TvC62
z@eUtDD;Ywk0vQ=bl=-IFbusoiv7xjj8eA~z_-W2YY`F#3<$m!{m}=9XF{>u^81Z!o
zy0y@iden!|e*oBW^zpR>T++TNVg2Qv%LBf)tXw54XZw{hxIZNyg~Hl*wRK>29orRx
zX$T`z{aE}&oF%cSqBU&C{L+*3vi#G~)pZI>llh}ZCnl9~04tgevlvrcB(q=Zw6Oke
zfsb1F5I*k%e;jxU5bmVoz78&FO=Qn*_LuP2y>atex%W9A0axH1r!3^L2|kO2Po{)@
zbI^B3`9<Q9lu?z^-Z(JEasu5+*?uo|*6SuFo0jPzKehjx9p@9kCj(OfNyi%Jfq(9Z
znH6$4Zrdn|4#TbG!>t$R4!7E)e0M~7NI84KZv<{SEMHUq=6O`Ur*xo%NzMbT<pZo&
z=2q#Dr=BSPSIEoEkADS!ANc!W`RC40lK-fc-JP2^uI{@#%VGab*thmZ`A_<DNKg1b
z4g5^toaj5L7sI!C_Lu(=#W>Vg4C_EdXAgOrdGJZ_?*lIbLS5+m23%6EoaBi5!Y9DV
zVQo1r4b1gt1=12kzc(WKotsbG>4HFFhm^ub%)6fE>Y5R@f8$@W<(vjS2bd2S`b(ns
zrkv(^1pPIghJ0;J4P*ydcg&OB3;hiPmVp1=5xrZ;&y@F3@aKT<0fyf1!6og8{CMW>
zZyTGphy}{#C0o|4-O@BNP}ilV2n~6IdP-sOvx^6F-V?0K^Xgc5#CLjy9z$pf*Y*<$
z_fk79YwZFwhxI}%J;5a%Yz^z9<=rfQ)4*GS*?=TzkKA@J<8u9K5xUn{%WJHw=W`9i
zB@F^f{$OU9Z!dY6dGkx)j{@HSOu3%~m-J@jN6nNw_uey#{zrKq49h!TirapRwl)D=
zJ9gl4d%h`^W!26K>8JmirC$d=8W;~4`jf$rMgK5Am{FX|W02l)H0jpaA>AJGHRJTN
z;I{yuk7!AK=8n_8`s@rg$*Wcdp1e0$t2S7R&`&^UCYnh&6Ub+^cX0+_`}jSub$-A-
z<2Ryfy_apreDDgO8ZhM@2`=g3sJ_kl)zFU$n`vofEQw#aRXr?p`0(XyfI6~`s;rp$
z%ykASuIP|^&I!xABg$9ija}e30k;B%?!(c0GmgyD&|TkYs<}tK&Gl}N8h>fRTJ<eW
zMA$n2Og3$2t3o7D`4~xfwm3kg1JBWaF)L!v+>j6J|HASKA0^-oz)-;OaYFRo&^OO4
zAJWrSZ0p##Lxxw6x<U6b^WWOK4QB9e%_UOIUxExWsn;Rg>tib(s79{i7+`whp?M)+
zw?uS>uLr;%2c7~9UnTE{d>i}OIZKb+?{wpmZe}ozPZ%eRb=@x4jn`>*W2?UJS}!OW
z^LgxM3K0zyx}IOiA-50<3@=%Rm0@0)SDB906T3adkp@eV*eLN)Mg(It#^FD(vI{H?
z1B{!7AmqYAryP+=xqeK0AB08Pe|%V;4H3Umo(sTt0oMYiJd^(xmZz&9J^4URBn8>8
z9(RKY?9aB0=v6Ppt=lwe?HnoO_S)|*MH+iK(Xy%(Um}YL4;d94HBtedaN>_B_ZzA)
zMn3M-DqnFo8Ov}5FLDo@aPXJhIO7E(#%C#?oN)7fyr<x*14#>o_o_s&m{)~+Ffqet
zfU$9qNa9D}INaqo1G_CSY#*v_msZ~4U>UQ5QUu$@-o;`4?25`S^|KrNtH2|Gsh@@q
z!usin>SxaBN47Wm>stwYwQAe??O-y+_Ufzc>$U3Df8aqy?e?ta-BA*z+nL}razsYd
zf$%Jmo~Yx6)vcqExQpc!Hs=^k%Aq;EWJV&9$PBZGH&8Wk%mx#Py9=Gc3@C&l;KlLb
zILZ;s^_sOe*e&<+Mmjd)X-{-JPSdSOFOSE>$;aLBaZW=#JK?r04a?m_xy(9u8~7gJ
ze!!G_;NQb?_v3eFR8ZuRC$H^Zwgq3#(KJ}regb>FN1YWE`-`r%KUU`yh#~#JJk2hY
z<9dSQhprxt*0LV#=)tz;wyi;KY{Wf)0N-kC?*tMmRy0NQo@<u)CyTyw4TkU>VUGj}
zP35WTSR$E_qW@YspS4xsF+H4c4=#(w0p+RXD{1Eo!7m0bjmjwV{Ac>vcgv=hu#GhA
zPHWXp>uNE^;<~Ve4qNE@=o=Fy8SVZ+dL|UxPYLNAB=44p-e17&e<%xEroQ_91h}L%
z?O}g<b3@dxLT8#IyD#ioOSJj(f-ZHye%E`+RtM~*FVT5d9rCS%+%^uzx!mcx(T?MV
zB;QLrD1jq!oToRim#`5b6W@Y34!-Rp<1P|)IcK7c1zz|K-qpEKVGxGD!5xSE9^Xtf
z-!LeBqAs;!xyMtLqGC=kZ5ceHbPJ?!v=gh;dbOGBI4T?$pTSgm;EbsJl+WxZ-Ut5(
z(ErSqKLIZ3DF0kh`Pn#iZrZ+f@yg9>m#mZP-c0M*8NRh@vGsvRU|(6%MmiNDK?zgs
znIYZN$=A^B0>1#*2?#Z5=Z}L+`Zsi!QT;h|ufUw+Xu4ey-2>!n=)ML14)ABd(ER}X
zKcR~Seh%Fmj!AcaM0df5*>SuAyc5_87`hLFOEUJ~eR89yo>#6}vou6QvUs5H#Q8?A
z`h%8ejjR4i2y=WM;#Q1M3?m5Eh&W9b;Z+6^Dx&^LsIPkIW)yZ%%`Kd%as7->nLq)E
zXgl<kI=#eMV$b17k1jnw?>{?ir}yEj7QSRW7Jj6xVxSC=B<*y6KjX2ndA&qa=;~&3
zy?UjLjse!10faAzBF`U;@^2@vTJn+nw}XEixB?IgLH^*9`inD8JFM+k6NcL6FUq=J
z65&cI%lMirwe=`Q<4Nuc3uAM2K}Mq^g(8q6Geay@N;EUiE)XTHQ#C<tN`v+0&^b}L
zp=<g{9-Nc|0|3L<<bb<l^v~#gjegr!TsE%`b+$e!>bsAMQtG;2YHMem9?hZ|<2+HB
zz~YuAg;P%6`8v3+{E~9gSf*YZ-o3T02>ICsy;|x)>ghJ{dw@NF;pZFRlKv5$cXIck
zAu~kVktx#Ys;81pv({Z={TQPwd{D;S*kraYDX|A>(ep!Dwd8joqVFr+H&51r50{?-
zL;p;0NpD4RPveiu>;tp(jVV^^*F+uae6*p~J*(MfiwQvzi^viVd^Jqh9@SGp^<b)r
zN0lTUw}7iBTI&_%mvG=}<lZ4+)vgTdXOHj$eW{<XgMSNn7BKw%7F<#~l80QI6L$dq
z<gQP;P}}Fl1IfB?D(eMZher>M&KZu1nZHvWUKFriW5^^E5`F4pEcS(g$n{{vM~lw#
zF&lgda57-{xC~rUvj27p^__&1))%FU#Qp2KpJ?l#t}9=FQA`GIhS{ln@nc3PPP()w
zen$w&!p)sufJX<n8s6SftUMEgP7S@*)nPpyfWGP1zX$&_@E&0JE44%Z`il!hJ&7rx
zc!`ZHK~Cpj(=ZAaZ&y~YU6)K!VR#Kgzre|)%F!UT=~byzLEv*~N30-Rn+`_&v_sFF
z>$ZSj2wV&peu(xG)R*yxl6$@g`_=kD2c~u53@#OySg+x`h5;p2gDQ7qsWU0a#%fs;
z*2630YwF=o;2!}tz2DHC8xQHe-x;p=trr}*pEPu%-duk$etYWmxH=d=aNO%0rPkfL
zfKVA@5@%}MyefTL%>A3YKv!eYok0(NC=-x>uD`_nlX5@7tr5XFD>CV&x_X-3njag?
zS#+_Jzc78G{Rid#k8%^4Lg!Tf4&~mi{8REvQxvXJ7oBCVLM|L@kG1H6r<Hqwdxm|c
ze}<d(l9{3QulORhHr`tA`zUSVvZvHt=pSE#Tf7uk{TS{J^k&!#?c-fQH>Xgvj>n28
zrgY^3|9E}5GmXngGy&KNE;_X$Fey)Do>%#){26-be-n(0UygYd;jg=Uokhq9Z6`i5
zHLP+tuB7D$36)ut&E?|MHLA>EAC{Mz`n>Y_jajMRINpLdzMRCNT+!#XzC)MP`Zf6s
z{t~Xws+^*0lzXjmVom%8k>Z?MXCRx@gx=XyT<?_IRL0k||9us!wQJnwe9tfUzb+>m
zzleAq&86wSpNbm-{9fe`=3Vg#O}W4A9`V~l5Btl*as0jN?W5e5{M6x;+?LWrAEnBM
z0N<<pVNj|(;otoB(8K=na6DCzkNvge`X!YraEpB$36(m2<ze5%-4xrsA<;LSPo1E$
z5;4C~zPkb48vbIWKLU-IN$4ePx>K?H#Z6yP4Sk1y1kbDZA6p-?{qJf0BE5n?MA?4`
z&5pMvlrO|GFWyj`;I580ZhcW5iUV<fkY58kI@OF4L1Bt^`n<v;ZxMdQd09&X50jVL
zd{c_XwtQ2Z34i0*KbQKMRPh;DO6KO{mgMLBUD@G32Y<Ke|NrmcXZbPzDu;e?irZui
zI*TffEMDI?m8kwn@yavdZyfvQO1~^se#SBLAqJ~dT;Jc79sYChcboqI{|<hZAM>wr
z%2A#w^P1hyJMPnTZLWZa%zs#=9wI;&ZT=VAeG79{Ki@B-jD?&`V&HfR@$)ca^}#bh
z$}OoZVmOq!SE-`y{*79OB*FprJa=YQ;i6le)LpJe7bY5%*fMh+gqoA$YA9T`8gPq&
zGasY~DtWc?m*l<X+JAHX4_x=gm?yq?p3;7A%sEAWU*SIj?UJ)5{7{Wu6rYrA_P(ML
z3*A%Ig?f<B+CIGSepP&<?T@ji;b2max1Z6@czarGmr~>HtF-!#Dp^;{9^sI#oULxw
zsn->9Pf^>)gUu}p!#;a)>^<eap?utS+@castN1M{dB4hA96NsW#_2;#hN}NkYN$QC
zX7Ti*X^U04+kxj$IBeS$t|yIL7n*f!Cinv21i-8(%fKb&-m@Md{}!jHq16|we+GB8
zzO`YlwOnF}2a#GvWh1rhj_B?tUqkon;QN7Z1BUL4;QtBTNH0t1)=EgN4O6Wx$BL+R
zFrr(Ym!&%ad>YUS7`n%U|0i^#@}7tfn;nN28WHIcg>Jbjtmj_xHS&-zgMSTp1Tb`;
z1((#1JOn{MQE9{v>M{fd0l|svU&;{7ZrEsDM})t8lv)z5oY6V6PQ?blOwO>@?udRm
znWaAnd<rlFF!X;7E@=$`3MGw;p4olyVNG0iK;7g9hN_Q-_NrAcarWA9b=;B=izo>u
zs*0KBk)>eBplm(duR~X|nB~`Lc4t-$EOwH0UVX-?%0FYQH|{jtrI$_ghTvYBaam9=
zYK957((wxOlZ?Cyx7wS4gF=xW@Y|!KCz6KX=K(ycfqKp&cmf(0FA|>^ZaF?bSRD}S
z3`UiVt%uvdZNK#V`T8}58_2&ZeKNx968ApjL*6FTE_ufx;<~WCT2tA6vJ89!fFF*&
z`uYf5lJQS^d5*r|*0r0nT@&%~j|1`X<BkZC<Co@H8=mk)zR4CLu4X4o6NK_fx((hS
zOf_*^ik%46$dZOrQt?yg*zv?blu-R4Fw69Y>L8N<4lZ2}t(0PZZK}*sMfqUEMRl&Y
z55xOO^xc>~tbADbTjQgrEXte<3a9}ll{59p?9_(nZz}gUI#wZmGr4E}bXYHVuk7o`
z>%q?jHUpC6vp>BB@zQ?yEHT2`Fv9wfb3bZXF?>yNy^XVc%c{L0q_dwq&HV5y@V9|K
z0j9tH16)$>{mBvYQb%X^#&s7i+PJlQwuGmE!!n5%+j5QgVBhdPZcSap<+zRO3XiZ8
z^fg9ce<<Q(K|z*}Gr`vY8vw({=fEZ9&W~o?NL-FBYu5*2wu5?a;p@cTKKJK^R_!Qm
zs^s4Wy*Bt4KF^DOlJ7R~FZ`YKFxsF^e=)7kG3TNKpAYNlE$Ex`03Kj0JRw<lGU?-Q
z5x69yk6`Za41bNyXuwMZn5L2N$q{L7n+a%3NH<Q~=XNHnb05&ws=6U~O-#DQ=qn=v
zD0Bv;ynN!b4b9Xu5aWr=KzYvB(~+{u&+}pVNyW8D(0wfH_K@FO;HMUT<h*-7_)maW
zfxh}I4EeqLtZ*K3PR%*LY+Nsf=9_{jiYPejj|KYZzi@&_L-08;_(U@UMfFwh;Qn#b
zFH_cWVqw<cq*=8GPIV?$55l=%Vh-EYBo=oyPX5XE*;xIa<(<7Gf$x+lY2Rx=tHn_$
zlktaWwxG+DC?Kk{xP+flh(dRZpTKhC4izs;V4BeIInkUfOCWHtEA;Rim3xag&nNbK
zI$2ZYIg5#!?4FWXE|auhjh`~lpAnxIPvH+?e0)0cdK+smVta_TYQ+e53>Ncs`L^5Y
z&PV1YWAGsr!_cc-U2Cf~XqBm%dNi?d%3@2gvbtNTzlU;{gI^5m*(wU_QR<oKr&b0i
z1x!8HMDNYH)I7QG6qAUJUBMz#+rX0AG2N;SJU56mw2`ZHSyyWB4(YT<`3RjZ@U6i1
z=sV%S<ZGU$-v#mh#xo+7)e-#XcO|t%`R*qVGyY!&{|)ea!0>-uCM;inb{&#G1%ZIm
zqb>_B62Bfy!Sz<h8@6>xwT|T%6mWv`^AI<9cHWRgosW>B8jDNBHpu+(I#+@=KK_7M
zfCk3(jJiMzkeeYdIkLvBEtUYPO7h^WlHjWQM&-N|GDSIRzZBNbF8DO%_yYKYz(as3
z$E)Cya_2EqPr(KM>aK0*YOLEB_4*#QO_q_fxftz0UEnpA5mcw;_QuJGOL?wA;;0Q{
z-oTXywh~?-!dQ=;g&B<S_vMhk#^R8^wBKa#Ilz3t@OMh|-n5^28vYLJEG>;pttIUJ
zI?k}(#~&LGRq?=uu+p*y;fqsx4f==?-QDDC=B<apUj}{x7`kVbgna$@oN)XPGWQpe
zoD#ZRkQ4JrBq&~w{ol?<TJ_j3=-@FZ_$=Vl>iAy|@y-}M0f9=qoI9SuoCO)h<pZcQ
zB`0+8>LLy`<a*t$@CQ0G+*V=$ulCn?4elf-UdXf|UL@oCcqcs+Z|JG$cOAECh8}>&
zQm4YL<S(ZA(^2-TNV)oS_q-v{C>6Co)Gcr)pJDTNDod*KMa30LKAU~!2lcVU!k|{D
zm;1u@*cX*s+T#WA9|Nxdrd}FL!+Pn8?hEhF(Yu%SFcWyM`i?6?_Kx4X)^11UKg^IR
zMjh9Ir?TR?j+e)!FMS(@Go-055t3HfRVlo9B9UVrcip-;=aeIU+pEA0Ak)!Uf(5RX
z(@l+CuUCOC;G~qWx*iD2(F32R-`@;=2XGf)%JB%er2hK-nvHAc5#QzHzDQ`I)MItD
zTOa2_PDHKv&1Uxy%*vKEP|u3$@jyf$%kRE@N;!BVFdQ)Smw`*FjpV7herva^+_;r%
z$2HVv7>cc|{YRn@7Y8PxY}T=lXu|9sQpvbthM*&r7B&0HL^3^_i94avO__4Hj7_D~
z)l9ueFVQnqp;^6==k5*bX-~w5wD)7+PXgZp44>bN-kWh}o@V^5-m-G*28KWe%_BzM
zan=p7>PkjkRWRzpxmwEE7SSs&&$i1b@Cm?ifT1@BTvC7S($N_<$;sWJW=dJhrR=3T
zc600R)#)>duS0q3^foio9E#}nlCS9xUj}~w_!?m7J^}u(=+X|0JG+;398LGOW76&Y
zYFNM6?Dh47D)2$TP{7cg2rj8VJ($D0fYTypt_rK;6zc(e^Ktw~<u>8sAI@UAt<sI;
zb10(QL%y~AEbV#&_}73(0Ymo?xFkR7e@DsnH?CiI!J1G$+;zKb#1;TUfl)v{Pz6lt
zWK4Y7wtfsdsaTm)P+1g<<98tNsi%DQIt`fA6o~WAyaJr$VklU~wX0uXvzV1}i)2~<
zRL&T^!`l5&SYMMWv+cAH{3Ku*VE8^8Jm5Rh7tXz}*-S%4zPp^(NyxQ3rdiM9w`8y=
z!;N%8WjHc87}489ex_f16Z{$AIl$2S5xAuO`lHZejqD~?qpbC<V}#^H>sOEzVGZ6@
zgFTB?`*2vk@~SXDX_sd3(ZD#s(3={)H{;Aa&3J=cpSz~kaYAge^&Z49f)p3bedTM9
z=<OmuQ@-24?*aAzhTeYge^tJ19RWGWO7Yq{xsUU#j*G0Txi*jM#?NW@RyL`k-%=UM
zTGr}P$?sr9-ye`I??CXuKqFx2kBi=$a+;?p?`GLZog7Spa)!yIE3r4|7*8BH>~r~t
zrjr<#WBwl$!>WBGtmmF6U#aI?!M_CD3mCdDMDI=iY0X*34x`&Q<R$8hIR9k6c^RJ{
zaaqx-Sj0uRo`={sok$eAY<AP33zD;)^Rn};^=Q=o)!F*M3g4OrU=h&A*T(3*sR#2s
zMtz*Pa%*_+wnuJB^OwNZD+H^Dtx|SlmAd|K+Wi3SA(vS5am<C?B)!q|FuDs|<>7Xq
z+RT!)SH$1Gh`!X@0q|FW*8o#*Z%6M<y;(W&-nVreR&&x~PWv#Htf^MVChL9rOgX3B
zM$E;ig|*^*sqL|_UK$5x=gFDibAjUlN%FZV(i6<B54^?Br*pDKnr3>MF#+5wUfyH}
z6#T>Nl_k<<JaQ$<H&UD+)$R-F?}e5bC(nYv2)qQCa{m%sk~wGRmOJEOYqTmk?Hg9W
z#%Aj+tN}-HWI+xr19W-c1k@YRZLG<bdouWmz)66idmFeUb8bGW{7iRT<WosyEq5xG
z2MJHu0(dNoU2kivqs|$jigkv$*ohIG5Fc~g!=iSD_om`l%xThtum$5#0giyi9pW|U
z;|LL$(&g!7K?y!jYN`gaj!RemjMj@xm-$9mZ*Re$xj+6pIKeZlG+_820WN7x<hR6+
z{L%IGXRPJ6ZrZq7W>0i8u2I*Ea>o5U64sViwbfR~Vp4`>@&Mg{{M++Kc*omCMHpy`
zyllI38dr0ZxzBEYJmhBw^je`O{r4L1F92Tx3_s`Ah5Wo5$;;N{=)0}o(s_a52M0U9
zwLg+z(Laj?kK;cQuI|gTzN7{f6&EKl=_natk8^by)>(<zk`rPdS9S#=3Jks7x}j{w
z2J3>4>B|)+0XW3R*IRN-L2cTrt0U^(pvuIsl9Rn<BUD+{#1q^_15a?<60u>N<v6k=
z&~HK!%uC}ax9=N`OL0apyX9dSuQ(5ISJ<o2d}8Mu8)@g+b+Jmj0;BW3x4ONO_;R)f
zQ}uS9@9-R5k{IV5FS=yk*ZLIaW@R_W&e0RxYhAyFV}ANuVLk4P>PhPHd*D9+UXH$#
z8Z`aTJWYEBBS7YC+H;N7y#`$XU)LzHf~ZxAm^4F>dLlZt_1XSE7JLFQ8IUBO{q}nq
zX`4FNOC0DLtGk9<e$fDnF~)6l@j_!K{(g5vr}r>Ad%zz7z7Cjv@mFw3#{bk&{*;AY
zS7+y@AV83G)~?-})!?%d2(0^O!~kFk9>SoCb5@H7;l#y*d?GM973WYsDjM7tvGvI~
zUO|;8ak^Cl{iZ;zYy%EEFiyHMdqD2_cGwOJ8nX4X0{lFn6EJ+=4lb!bd(@ykgl`GV
zDQvgCBDxV9(T(W-jkdmF*Wu%h;OF?CV~?iOwM9){GydI)Ohxn}&ueOyyA#442Yf!I
zoO(4y7vsf<4kYQ&Ga;Xc;KST6U`TD10+oQ_a~`;){_Yn7K3A_q9hY$18-sY_Wo<9Z
z!sfBCb)&g?g;Q6AN&pTp#H3v`aPyp6j9W#m&sXBweMq1g?$yECaE`hNBofx4XG8va
zp>O!R5Bzc9DZude4)}k{Ul37V>atgT0xdG;D^I4Y?)%whJ9Yjj*g)wwRQOCu@Sq}u
zI-v?^$Y_}`S|(~Z)&~7h$Y?;_vTC0T`E4DXU60NLUk98E7=Et<mt@u>vmPHY4ukq!
zu^N822)pgyk`tu20#>n@eFav<vU@NCl-fj>DV5+@TYx}NoRDS$q0Mj{R|Ohg>E}bf
zUV*Ne@BaX957Cwf7`|=>m-MEYUvuTBGLFm`s@ba_wI9@Kul}ABJWhI$RkHh^zO~C8
z#ikbhhIENj$Lx_`o5AE&LPe2mf1sNwL42BK;>8HJ*qw#hupZ*HotIz4hK#=~b?jO0
ziNxz##3pe*!nC+Y_>&A4c<dBKpN;z&{J=WI^e%VnYOqDuXqpqZE6-awLB?;GUtU!e
zqg14yYn=y`vq!6Dz0GN{$Frn=T)SZ?!=SvqFNXE=KIJ!ZrM#iqst1MurhaY$mvkUn
z56g4>G6v(ojMd%h*P)|_?}V`)C)_FBtS4q2jL9_@X7@PWM6qQQ@+EXms2Ljv?s*bl
zI;xuKiP?$7AVg1?$+zf<5}S}1YOa?asTuNdFP&eBgK>VF6&~3xm5IZ5uX-}l8E+cZ
zQAY8ln|?dE^sQ1I&H~npI`>jD{(D~v%YBG))lx25FZ@RC0Dx-1l>1C@NtZ7P<!Rlg
z94S{{x#rw$Tf4g?3>;pNrMK=^U)6y^{uMkZ_N$I{1AE&A6vg46Y_$CnT^jetG3Taq
zO@5-rCOS_E8Z@b?iMT&nmlpGvx~kBt4koYv(N2XPt%f?Ah+#mPf^_KRkpI2#XWH#q
z@YjHYfZ_l2rjY-O*N1#R6Ftp%3;AD%NKj_kn*I8H{ghVw^^3{iQT7z~F5OqAtv|#k
zB9x5#zMnzG-RA7;O5{H0W98}iaE!GEHDMeejwed$krWQWAzxjs&LG$soG2;yfYRjs
zijT<++!X1m#r{zDv|>C8WKa*UC)d(Cx4v$nGc#2tznc0bAEU}M<x*NM)_$XsBkc)#
ziZeuCrtFT`SRA-qtGsFYNo7B%isajZ4%J*Vy5JerS3y4y>*smOZ|2X}z+VU6i0VXY
zroa7pSTAzHL$$27x>s9I=C$B|b%<6aQny`E{w>Yf{O5r$29^S*{?~y^`qy;UtX&uN
zp4Mm83~C%t8L#ElIfJ-k86y9<7z*_0TlMYXTHF4MuzY*S-<0o3@NWUnL^S_>`L=Fb
zL$GB^xXJ3?WbI0p3M~{L@gEW8kNb<h{D**#0>%QSd^5o%z26%4uiW`OtjDe0=dB9n
zawokLPYRyZeFbjKvHlsPM=9d8$PLM*a;&o2Ukl6CL%y~AEaUP9@XrFbM6`rre|pFg
zXJ+eq?)EKxp4EMxwKs`|BZdK3!w?x1$1*6g+329yD&+e>MDP8>=oJmuRt?Yqm~w6e
zm$d(cu$+E0ADD3@_oq==O`Vo?Jt60A4&OBBZ?OeV)}bdQ%91IC?=dfx&Lj&*>!ofg
zIZC&%#|ppACrSy17hVBg92^2k>qL2CBA46+iNe6{e~aD}o2DvIPLa8w^;cni?Snrv
z4}1^&HQ*p%_+K_6<i9^Z1*<!|aDW%eChK>5z22Rk+U*@scQT81e=2T0ni_*6#vl??
zY<jVeGC7uPRiy=qahM9{G0tm8`h|%kqI_Ic&G5Mhn4+E8{u~O+G%y^O?|2ZT6~v*{
z4E#OK+vuO0aSD_5I$cp(j>qkcH@4BQXz&MB`u_3Q2}$X8XjFT@;b3F408w1E+NkSA
zEG+538&UtKT&Dl;1AiQNGAgT-xW9e)md<S*Yh)ANV0AZGze9aqbHt`s1jd*A;cvqH
zS#bK!*Y)6Ifr)^r*OpOXy}ldGt9x_o>_so!RO><a?bz$CI_SPz^g89}zNXT;ya4-p
zrzuumT<26)4iovj{7V!KAow85UutB0@Bkdx;K*OxqT&m`(kC{F9+qELEC;G`M}j`4
z{8|a>#0rzlFGnk{7D<1)W|6KMn?lGXI?VW1Lc;|YphH<0Q&$A;ORKo;8mb$xN~s0R
zlURD3c(U-4N)zv(tg3Ky4C|m$_ab4kfNQGkpPD~E`cIun_!>enaX4CYC0A+OUhzd<
zurmK#$L>(E9$Vd|oEBB3hM-8QeyP-xHmX^FP_ZX%eJUY`N2gEH&B4D<slq9Jv%8f(
z6t#a;|1wW}9sCL4spvat8FS7vPcvRSHf~zCtz$JEAZB&Pta}S_>BO&FwNbu)OSWIt
zfHwmp0n_etz$KY^FV{aFaY(vXZt0ew2<yZgy{zpt&II%2Ot2prTwxO`cs5(^ghFM-
z9goJe^mk`^FsRA*V8ll+bc}rG9`Nr1-v<mInb9F1{qCnXY!Pdvs0)_0&f*ZYOY<=R
zi06QWUF&|!wti43aZ=L6$4=y-yg<LgH7r{fT*LZ>gksB&WyA?iEM6q>#mW%TB#M#I
z)djjRi0tTNqLJRLpVNACSfT@e4%@3e;#b;h2ly`FTELX&mFT^(;~bP@$0=LPlch8#
zb6pqgxAv-+^@B?7RVO?s+pQ;IpCHC*w!-4|2{Udxh17)*iLrEzuIF->&Q9oCO+e-W
z8O2>4yT<~>_FDWTHpzu%2{(}*HjI(y)t42%=w^EoL$%gSKUVL%VR>4{g!M1wnFD?T
zuoy7qIW>B3`k#54ez+L{e9$`56+=JV-HldnCZ8=oRajvp<NG6eyUEX-V;%$l5%4p>
z&>J~6<Y!#8K0TbXUtQhFI@P_kn_dwr*X-7>g)!Gg->KDZy*T(BBeB-Df8Dj3C;DlT
zyOrC;cFZ2eG-M~s<N2Mj(WCV^bgxjL!@`D{vjFX?1`HCA>0sc731qA`HF>BWf^vqF
zDr_vk7_JhD&tNwhgqnO;`IqRkFu~m#b@-nD3+uB7{wLA@r9N*4zXP}nFy*@+T+;jf
z+@l;`KAGM#T_<(=*7i+SM>PwqD<QQlYnIG*K{ogo59z*7z6<zD=oXAa4ggdDhVCG6
zNt>eeKX;#VINh-U-DN_z)7l==ofgs^V(7NNAJXk2-_s+ySAt&$d>SxxZv&U~ZglSY
zS9Ha&In#BT(A^@M8dBaMV#F+`$<RF*(S3`2H$-$l0*{T?Rva*NOTZ=dEIRhS?(p)8
zI!YhiE9er(Al&}9u)OW$Yx?g+;MV}x1BUKh;F2cw<5wq;ajv?sdu=xptaM^%<0tRR
z@Vwb@Ct6F}zmK;fRp%rIj%LW#;d4y{gw|x;su!B+)oS@5<mV9dOn-|_&{iQ(0vLWq
zfJ<5v`BTrW|1B$7--VCv&0WGuR~uWtG04`o->s}4pw(HzhR;UzWk}qM)iY@ZN4O2n
zn23{u5g$9CW9sEb@VkI}0K>;q;F2~(_ntd){5VHUboSMcFw>*H7-;YeyA*zK5OWju
zP1U-_wH+@xTsNW!S?(|$O6?HSZ-T1ts~+pX-^2RB8oH0KVc=7NR>1Ie9k`@))IZ;f
z{F$5i?Fhd3GLYr%R_}!E^*J7}cCT$cpzGL3;`WzSQ4Txh=!iRbqw$K0tDS+a8o<uc
z7Q<@1g<)6B><liZ)*6>s;{F>sNI7#6=325zxRL|4Gm4G=aC=~I<nQ@sSe}FMYwG#$
z;CYj@RREasoCq$dHyY>VIsVFn`jv7V*8d1*`B*rIdcnNO3i>NOs@N|?ZzM**Jg%||
zFifi9IwQpfb5WJX?!~T6A!#c{ePn#RBvJ0*92AWg&lx@n_6eIfP2H`Wc{se|M^e{E
zA^*GKua=)>o_YxU+rV>x;s14TNxP$a!Q6g=oFY4JdhvP^$N|TQ9B}(<gcU#*pWu{|
z^6+y&WZ34sAxXCa7PiJlDCx6p)|?>!#>v@woB}=@m=72}P6L;;@869Z>8EYCiUr>G
zCve+oZ={dXuug#!=+*Xc%`Uw%twOrH$+wn#rTmYAe;arXFm!(jE@@n3_m^9K#;eR8
z=BlKu>xXhiyGo?t+y9AqoV^$=UM~D`pFmu=SYh63={^rBXFeTrb#{F8>X4t7<FfqB
z13v{g12Ft-1^+kvNN?)nr$>Dl4B5MtjM-;w>uP5)yZ+??PpFN0m9b>rYCAX{{ZwHp
zQK&8vuG*cDpZ(A?=fEF=zXALXF#LP~E~!6zKiRitr`1n|!?Zq_R)2`+8ML7oWwD`5
ztOK#{7$EzhW~|*CbVIl`YIQ?C7EIy396HiYr-82r&I1e|p9Yt7aX<FN9ODB6fwHb^
zq=7_nV+rTz?bmXw6_qT!rWNQ(_#t*wQ6l3OsCuRXnG(=mu!D2*v+D4;nr*R=uY=Gv
zeEk{xZ@@nQ!<REP<g2lte#^Soy>er)^USm_Ucpkk(R!arb*`-MbDV)@o!uYNTR?ub
zlvC>ARPZx_<q-{`)Sny!ms29c_!3&7z^!h6qL65l+-{a~TtJM-7M!aOG~G+=X1mE9
z<lwY~9Xp%yyn+I+kozQbR&e@SP|fZZI)}Wd{LnW2;}H1Yfe!&w{=~Gf{72d0NBV=p
z*VtfV)i##{P3aP9-~#JC7aM%83%DCV71e1qwZOdPhjdRT-*i+D=Ynqrx&TAB2V7Er
z_bejU>DU(BuPm~*FS2&U5=tk_SQGF_B4?-ZPMQ4u{)pc5<Y&rx5d8PR+km0>F1V!r
z^t;VC=;##52rc2Xow!6<+m~AVIF{oRRu@Z@lqo?beALFna<)zn^Og2K9ef3_3NUmx
zM(@ozz&y=*DSA^uBm#3}3xgl*m|^WWBKARhL~k$onR@*J_)maW07LH$a7jniYvgBO
z^V-d;H*HzmxnS)|wk~~A>`cqBQNFcfp0%6p9Mg_8XiL@_34ciu{gxTo^XWYB6M;6s
z&_5GgQh$0#;wY$Nr5GGU<~c1w_XKMnV+xIPp^K=&XvvUKBCO}#<ZIgZG4O8y-;8Jp
z#RL7!D=SxbZ`{82#LhLun3dz>Y-{Ii>q9QB-B^|QDrk%H_gk~=SPecB7z3DcT^_wR
z=hWhybL!@hLUg0djr>=2a25X-F6I-~&hN&oz0M$HXoXy34zUaC$8dbs_1ui8!gL8Y
z0Y$o!3r(@pb9g4ur^e?wHqKt%2}lglo5XD>dmrN6BwRp!Os3ya`Wo$@rBD>Xp+KX3
zg1S1;n34M5or=bP#JBX%52QRZwdDY&Tt(oL%s$un6EpoYEZ3Tq-Nc#Pf{_SSm}!|!
zo9$d~?O_%`Ldb~Z0@kv|ID@nEfR!K8Zzq4B{DuBS;MW4ZfT3SIE2O_K@~6M(yzu<d
zAN|oVP=C;W%X!^b2mL=JU-zlq%ZjXh?wCX#z8_{HWFDyE+z=<6`2*55>7`YAuwQzf
z-n5-LyBw!0b;-1c<pN?UF<Gn|Eq645-~bb&MCp8gL4h85yuXmo6Z}O5bNx2|<f3_g
z0hdutwM=<&mG3{o>O3f;Z_=uYUc`=?yYglljDOfE>cAD${Z9HGrKjqd1+U4)i9Jeh
zh;{0vYMJ+_O0LXXsw<qy_G^6(*wbZUef3fwW_*7U{9fR{08?L&fJ^F6&N&Yu7vZkj
z*geuvGN^aXvz{SBZ@rAEA-W<OTI~@%Yj$>Am4a6TwSb}52rj9=^`Ws@C^n502Qfmj
zb^HuSwpl-b<nVxGc=p~K(c3_NrhJ!yUk+Ru(GW`gl}pxxY+vkx)C_Cq4C{SF)I_w#
zUtgq2aVVnm%3*Zg27eFu0O%{%oPS-9LN5{+mbLs|6qY(h<ykx5M}mbOE!Oi1BulZR
zorh=)C(2GaCm5~p>{&d%uqrXU3g7F6nQ*uCjKs(5stDV+3%V_oQ^vz(;P(Ju0SsS5
z=7xMFSBB%@{q`frL)Yr<D>rSEs;)l}d)0m^rVhlejRlX1!RIw9cnp0h2D=~SS?_vd
zP@pQ*Q<JH@R5{nN`9s(@_;z`so-hs^t72oYC@UK0W4z%{sT`X(PZw1caChmq#PA<e
zlz(AjXUxAvGkb-9R(qnm*hLRW{_G;JCcmo8i&stYW+cWX{VEsD=E5?uV;mN2SszpS
z%Mw&dPsez1h#trB!?}-*8kRWm&uY#(T{U67?4sPJUwj_?Uf==1)XRQwNk^?~(LQCh
zG*(C03CmhW&|cGk3Td-1<5`aj*+N19ir3gtc18}six5tmV5Q_+TO0C`o|hdD_25mw
zaKP{}4qQ@y<KZwiGOe>^EG%d3tPbT+L!8lOhU|&x^^l+G4>y8;1^6$((EBd9q-P?(
zE4gvQgdYB>*2=tyT;!+W2L9|jC42yib`<{#+uBF*aS9%rLPWJZr`ay^hobA`6*Nl+
z9f5Q9Df)c9A~<=b>%)2|pP$_~H-nD`#sP+}so()${p_0!Uot0jE$XBm)>}WN9%jp&
zFy0x~R}T@rUF26whB7X02mdeNtAL^RG`OU6ByVVo<Wy#z5PDm?)~wysy;5pozd9|r
zlYc0<liztiCv@sy0z<aYz84(?kr^y>&Y@GjK%8CjZ5b4`|AK6}2ZOf&;{e0QJa9?f
z{oH?ctq#`8XpCmM8aT+D%t2=7XO;CQ%8v#M>$OJFYLf8K?UaRQ%mWeqUh+5loG*ZX
z6?g<N^nU~{$?Riu_mff&!huvm>mcO)rvh!r`FG+p`$Osg1q;zrky|Gelxn>xXxriZ
zT@>wZRJu)0zmoP34(p@#c=mVvEbTH9d^#`-F#N0mmoy-17qgEr?Sc>DF5#tDeLoaE
zOuk+^<yUYG$p&aV7Q4QKi$SIvhchM;W<(II$f*g^HK#kjHVfpTAt66|p*Jbw=Na%9
zfdhcy=WTFF{mSpK5643w8(+9`(pRbi{E}U(u&Yn9-R0&Cjjal95@Lv=Y&)5*Mg->!
zLM}Qqq~EeI+fV0#p9Gu&82T&0CH3deD%j?4UfC73QKscYrYZ5czLOjBw-eRq{)`S!
z``ZxJq375b(%lo~EA8+&__M%w0Ymq+6GFOOk-gKNoVeYx-`*mQjHNLSsmEjQ(9##b
z7PB5@FEfzH&Ul`W4Zv#^JJ1-$I_!z+kj#wNW!wO0f@?`cz4&ZzUfdsgqSqFmg7j)+
zs=;k!>!*sU-9|ilqI}DywagueVN@LBR^{alWNYgVPt<th5{`G8cjoXj++|!Pp&VMg
z+FKXrDkig@&|L)FD&aDLCSRx@(acbUWJP*bp$L+sM(8t<TSXnSYgkwx`zWv3SH1xL
zD)39d)JNW;us)34WA46I>f>B&j-@(U&ZP~+7jh-b#l@e%U<qx*G)iZPJScYtr3?@4
zIPPD4OdJW{S3FcVav$2L8v@D0RDG4w<HB*=Gd$$)bm$xYI>9dmJ^>j1{thn5#A!Yd
z$*=mx&Bk@zYdSCJ5H|*aQe3Zk&<<pGYejZ<@uQB_Bf=Rp_R=Ur6`&qx=Q&(y2}V@z
zG=UysW2IHKH{KtYKgu10v?T5log;skI}+JRoYkL$1c5p5b%iQw0glrM?d0LbkZ0WE
z0*LR@HnB;;<>`Cuf@veH-J4Xi+AdA9e`HwR1t(_9dk**}pbIeNy#-uSzwIIJE0;1j
z!_o#elBdulC($IA;M@AoXp$wFx^T`ary^+<8|g!lR&Jp##%(KlmBr#xWR>2mE5f!A
zdizI({JjNz(;gpzCl+ffA29qigG=h~UN!JC+{XBs7wM;B&m~rzaQ7J351u#@li+LE
z2I{7OKMa+rIXGJ4EYI@O(-QKt1A2|nlkt2l`0c=5fZ?ZRNyyKekzMDTIesPre&%i`
zJUTrXU#C9}eVzVYUylOUCI5(7Z{nG<wz$BLaj?b*lkXDB5tj)qZiB-%D9_LHkK@`7
zO{0qZQF=^0Rhy~HYm8yDUdZH^KnI^=C6S^|M311%cgu>HB@#7$y`QGvRC7E{<2j}*
z!+l3Nt`=}0I@&MGV?T+vCy^hI(x*C=MEho!b%xiTIKiE7&vcHrOZsYJTv!i1l+)~g
zZUX-@a35gm;dO9H<{qTaZ(_9X3+f@bAU>W9Wu5tSxXwJnBVk?g7J)eNn;1vyf*4c8
z7Zhc-B4DIwSR(k=1Nqi#W%hG%*f*|{9kJYHe_F*F)V*f)L9R7E<hP|QyFM=hKMgnw
zF#MheF6qt44&<nLNBa59&<V_}ZR=123uYjheI`n0dPG^fS)~Wj+3T5=8)d6{i8G?F
z+FB-reC&gc>CZm~e;s%OFns(OTvC5>n4sR4;=yp`*0p_nWNMcZ$*hQg^p{+U-4GHP
zuE-KZ|HL%fvd%}=$|FpBBR*PB%I@2jfv*JC0)~&fz$Nu}t_%2>w`p5ooLScXlxY5b
zMgo~#@>dkws0mLuNq^LhPLhjdZc<9Ta+_TY8nzhh;SIBFAkl8UT3iqp5Dm+wcX|n_
zt~V6Za<po&znc`++adT#!;g%+<WlbbfO5d_I}Th@f9H(G=73|WtZC$7`-t^ux#e4z
z?6jUlH(5-}<u;4`1B(diXkz^(_FtPE<9^)Q8}ZWvJu?sN27dzB4;X$v0GIScWRH@&
z|Bv_yM!>R_t2V90KSdZwc(=O24vqmsg3na&Stv(>Oa5+Kx8@;Kk2O2f;Ba0dg?<mw
z{bZPEw@EjnWy~hgLpMS^?Uf>6MnyR<KVBpiyAb!*d|RdGGrR3QF09uDCuhg;M(_)O
zivUxOo53Yr-j83zW0XUV;0%s%la{UuYxq%7l!P_Az>&DnmD~&@6X{f5aiO@NvaCHS
ztmCdJAzuffYxdLbGVFeU0>JQ91}>?;^V~7`Ld7enZg>lic$X}<KFo`bc+(?ixCbKo
z?c{Ihe+>L8;8TF1{|NYhK!2uquWTA=6w=FDzbMubOWD_7ax)POQlh_8$c~<|5W~qc
z*Ca*aAW<Z^s9#mt==saay+)rF#g;iVHLM@&l<YiG0bUC<0EWL2;FA93JTkv?^U58v
zxfBU&rt4IWdzYMVU6IdmFBB!8h2}^&b#zS&>F$W~m2ub$elu_@VCdc*y*K9@^ECUT
zU=+%FOjB%;H89h)TF72vT?g5=knDy&veu!9?jiCu^QLzya{*8c7`n~ilFUBfnDci?
zw=>v0_TYOAKSh@id+nzDy4WBDgrd?ng63!uXF+n+?zHvI-v_5h<&Wq{`L6^2EbuwN
z@NrM{-jv%sk0}5A+1b*s?}Uj@;ygU4b?gkJz0VS3rl34sGeWwDqI`v}dm7^bC;$xI
z3UEn=o_XfbozofI>}T3rxe~kNEbCFIjtDCqPrS7Cfrwsvl%LSs34R%HIbi5r7ri%h
z%rl4H$r8H6w6r1mWG+$oZfOn6`AU?p(EVTV_kq6yhOT@1e^gGPn_JfJ9D}UY8_{ix
z@)f%0fo}n}0fz3S(R)))^UN*p1#8!K9aZ2T98LL9MECh9U!nU3_<sX`01VytqW6ZL
zc^->yZh?P#G+C={W?0XyXJpsY)4<z-HGrYp4KAs_^)wjA^E+qbx2-$S73sm2M8*@x
zuwUhK48u|A@%T#!bn{Nrh$sqzvD7{*q`yDPU&{Sc@ZSUf0~q?rGyjuz?le`6;OOUJ
zyp$(+FuU%vai>*>hu}O0bP29u@)IeK@jV;G6HlM+xN_$Bjnbi4ZOf{i6Y_O>L|6FQ
z1ils64j8_AqW7j9%=5_h=$soYfqld5>VlkMX7xn$o{#bqdcOkyE$|j#=)D)cH+0N1
zhu+B;wylxbwEZj@*xRiepeRRw2Dj`1+xuqJxl#L{71poNJso@nunI7AyQ24oo_Xfb
zZR1o$w6?=3-*HUJJrUh~<ZIT|?}NVryapJ$e*l-%-@Rbe@7nNn4AHXoMeIAr$+q(g
zm}D1lV8HEe!W|L#pk|GnZ8nlE^TKjZIy>9%mw>MTRs)9qh2WC@O}{7XQ^Y~9`c!yu
zSrwdHKCP{Nuu;tYe^Srke#6seI9isIo0M~Y-*RHL%@6r`KB6b>a1i|Wz}tY~=iTVN
zsekj#X@`?9+&Y_0M$it?)c%8``ka(&Z$!8Coa}mfI`}GJ9boA00GIS{_7BjVyCZZs
z-K$=tBA5Y)^!8J#puD`8p;x5O6@_EV`Ux`tjj?+{SnmDgZ`Siy!QTLW2N?SQ0GISH
z*Yo+E(4S@egCDk{|D)jFt?0dS>?AE%9@3HeZwFrwoC_E}x}*1|-p%uf`j<=jV5cYb
zZ?;i4q>r(ULJl64Kgw6={sjCD;CFzb`(E_k&@;~?=q|>~{(QMHM1$~5ahWyuQbxkJ
zxHn1TxyL!qPuR0VjrG-fSvV37M)W7G$d-Ev_!+?R=sS61=-r)TKNE~U30D%`nAh)h
z?)4sY@~j^9Gmf8Q5|g<yl7GX3e-qhE2{s0K!gPVybcsNUd}ndg|DkE-gI|Nc5Bw7_
z^)R_T<nv&3Z}6GrN8YRT@zZCTg>Bp)RbUiX5PTluhXm~1>{ySgQFyVgWMV`?n$N(7
zqdd{%4j<Z7HYV++%fwTb$k$35+#wT@l5)-FEz?ysaQq7uTdd}B6SG!?LkHVJ{&&IO
z>C~6B;~n7N1fB*A|Cg-^`G0<M$oH<UBl%yCBuGRHQl&IxeQ)B{g6k8iH}Q+2;PKaF
z@VFy(eL@QH*m&!GH3qHuLS0vzOl;zI4+X$_zsYVCTOW?s33jlY1kpXht+exF+xdx|
zN~UlVQS6uM0bg*7{@aP?<GK_Jy^pKRFO+W8_uGC)`Kyk-JBG{PpE&Lz<yQJH5*yzC
zrc;=Y+%8@CiZ1^-#}fZ~Cxf34YVKyGe`otosG@spKbGVYHCa^roQ^-QV*@#}P|GPo
z%DXCsa;3e~Z*$KXAoZSbA5r$BDwe<*7h#9VI)G$__el%}?VqdEueJS-a(^gcR=)3g
zFFLVnm0Q=~{7@kd`??}fO;yS+F3#BXW6^KltMu==wl7?R?6g5wRoV4!on2g%@Bd6q
zdQ{;z^f~Q!_yhgw^l}PQ?mw$AU*fi(0GL-gdDq%8T|U=d82hws-)8H@_KV7YOt~vc
z;H+?Fd{(T{t*h0E*a<p)m!t1SEEe<KSW`hfjY?ax!70dVNH=g5vV%~%WAr81<@=vk
z{>N?idl-Y^gt>yyG1`Aki7)g5f4RLnfnzn7pD~-XXO#OHw`n->K+5v$A@0zkykUEl
z`$_Gta#tReN6MY--yQf=KLu|vkJ$bf?1od_yN)Jyw%Y?aH-`K0cWn12yV~<8AbTC{
z<|PyEsPxaY|8qV5THC$e7An8ixH69zJ=^__^529?@aI=4_qRIsf_7JMJSFJ3OCaJB
zZp<s5v5TIvOSOA8KH!4_n!mfu_McWZJtE)zu5$lRrIzX?Vjf$wFl-&78sI}=a+3a2
zco<aEf^R9e+Sg|za1m?vnVLI={nFv^bA7v0h^<;dtmq4l`;K;hr-aM@RsK9YT8F>!
zOXWVx{a|drrvD%V|E1y?`<#=P`-OY8<6q?*^?UMl+W(wmAMyKnpL5(R9J){j_`Q=t
zo%tMH)il;AC?Cc(cw9}zU;;04$Rekg;%}Sauhr5A3yOEi5OY_Q;epC27Nd)lK$DlM
zstc~xyJNT8`W7$tQ<eUqD!fSVSLy>5+w9(?5-a0hREe>~@!H_D+q+b3qD#j+SKY7U
z=OpgY?kCVj@h5s4V&}TQx1F8#hqgLFFXI=!hLLTwwb*@LI4{+%&B}GgfzJVs2h6<m
zF>p!mM)%Xt=iJK@;&<kj^~ZOt>$C#t?3~~Z<6Ybl$TakG+j<-6ERpeuk)&ITC*nUd
zu3Ho1hx_>h(p(8j>@nh|#8C!!+=dyvbCG$l4gItVjHEZK#*pEj%^|-B;K#_5{|Nq1
zK(EX4y8&F%!;wDyg4}yDGl|Y#-#HuIPgX`4ukT4b=zJ7cJ&B<oac$e9KH*xA#>XH7
zL&$;)$zt1f2!DV=MFyiHU+Izlu+$*O_lF^(!ZN8aBLUw%A{pp(Ni136S0ai}CL0*n
zF~2b0Y}X`;7BZU>bGy><%iUy?KOCd~@f3BNzCk;Cl!{Cl(p_OW_fZbB?>PW|5cn-%
z+9kC<EN6G**WmIT|1n*11-d#ob*)(?T3uxa)zsIOI;ehPzaF&BLyq<5cpY~IIE1N8
zRE(|EW!s%nmV<h|iGXn!|9F#;Z2A&lX95@L!?akfZ$!mmLF_ycTL-CaOUUmA_^IU^
zS>G-K|2S|3VEF9?msH!&z53ycTc&*hhm#()+PZ}c)A6C$;lxl|aeqYb74oYkKcV*y
z_<O(yfT8DX_z&qpSmZoen)e??Q}}M#8kVz-e2qMJ4fr--Ct&E_4=!m>KXTB%a*9Gn
z{eI@Jr(Ct)-N!@v-94`LaAJ&eLT!~(z%-ZiJ0(INt9Y7w9Ub3FqYSPSPpydm5QP(Y
zpn;Ykgee~OOVmEmL<-ZvZ6Uwb#w@>u;8j2^VECO1E~zEr*UIq&AqJ0;Df>Z=&abm^
z?@`1U`$u93ld$++i|ZD~NCn0YquDH#6~Mt5iC8iq7`O+whkWdUjv2SNg5L`~2pB&0
zflEsFqi?eQFh=&PtHU$ACr9`m^$-_yh`Yl(<SP^kX`CM}h{}I%wx49cn}Cskq1yp2
z>6yr`t~kfOZtI553ye1fE}!NG)7y&R^VdvrQX5}!0%<!QLOHo4agSV2_z!%n4;WCb
z2O?S-NQW9&0dV0m@HoD2<vG<G&Rl@fyIW92jcs&pS6E~`Mz{l!>v68VFywzf{F!;+
zRq(ffKLUpT8Rv!kThTn1Yag+`6U*ps6o@wT-Mtb}H1GiYpym|NL!d_MO=_<+=Hc;S
zNV2gg;g%};o7d44A0CV45qztGqq20rg^n9%UdS6uBt?6)GX~%C@|zWQQ63xMylM}%
zOoC5@wxV|^=X85K8j%+`7pSl^P_EvK!*bmM-=<t&1%DcN4lw1KxG5~xo6)>>`I$%V
zhx^7+XE&~T0>jb$ME!kA@$pqB>=!r2tOu~smk>gn^RcHcOQ!X3?!-%#H;8$>t^_0T
zBJ8PMo)fuTD#Qu_54VXje^8Zt>lSk}iceeZ@@*MfJy`xE<@bOxz)gui+@=Knsc~l#
zh>Gg;BIoQ_Gg}KZGEcw(?kS;-``$~#a`#d$Q||k~p8&oEm~#IST+%JkeNcPOcns!s
z)~;n{9h0g3koq<jSa|uqoriSEPuSL@9PQG@jS_AOTVCR&iT_=%E*Vd`EWwF}L43E6
zp98C$&nPUrC+Tg0s#HL~^|FxP*3H@RvmAUgumv#u-UTk{Gts!sm8S>%F6mgC%W{u;
zG3bQPh+RyN`kG_Cm98T=qV_X{Jt*?$&=5tjg)+x9*tKp=W_VG-r<6}E=QTR6oU`WZ
zad?XPhqwa2EPD^w^NEn}_u<RbbEZRE1A%(L@I3)sl93za>NUx91J5U4xOr9Qrj0v;
zYurrhOfF^WXLvAtiFJ2jHO5{ZgF8`()-A!3ke?mzjEpqjE)V(Wfle)SWSzPh{2t(5
z!0>SZT+-#y_`NvC|KsYuZA#nhpqKZkD*}U}$p}$<)Ej6vVcebe;e=EC02ItIbEa$J
zI0&1sYK7;vOmJO#gW|&fxNvfT-l2%U+Rp5`dNTMNU;$wGI|W=)|MzDrB!p(u$gG)B
z>o#hsaz>s-ggEQ$Iz)>o!#TyG4mX<3d$75+_I@&~pIgX3P5x3p4}m`hJRZ>$%KgPr
zXl#z?q7O$bvre(ezh7CcKu1xmaEv?Jo~}nG8jvd!_$V<ovBF)*b4r2$81A`xMPg85
ztW31+SA={tc7^2>K4yY108Rk<>LGe><Q?W|<Scj#lW2hicig%tj6;_RoW{3KM+1vp
zuQ)l%dW}baKcc%k%2((<4*oRoEMVxq6umd}%<~v@Pw9vxTz!<E(bZi49zpqFM7R9>
zY`eFB&j(Hb4Bd}|OWG05Kd<E2O&%3D6v_H+%)3m#1A@<&n2YHG_r<IqqG^`ohCiu?
zs3iIs$1$^dc*wg})p+&!cqLSou_~u{DC)>W-MUls>w{R1+ngE9&R<u~t;*hI3?I^0
zhwb$W{26)BpTYkI`~xujJ6rz4ek(e~herZ!U2I)vA02_TJ)+x2zJ~4w@GF3;0YmpW
za7phj3)icMbL>c>ddtQ=E!(SppdJ)|2hWF(uiC*+MGs2#eHgQDLRpRKWAv6QV)Nza
zSB{QV;T|Ncs(3+#%jR4x9IjQUPW07hK~tc+#;{+eKT;^egcaEo%>V~K71m?z)@*r>
z1D^@Z0Ze%oflK<g<6mZhoO=A#G3v49x@g>!uc^ncfqxr#4ls1n-T%7(^^Jcy!9^ie
zcT>hYMKSsodJ&cPZp``}m6xr$_{ehP1}H!1Vi%uXE%|J}_R!x-@`^C&jk)vtsmh_u
z6hBuEZbwZuhQUUum%X13%hL|OW**xHz5}=@Dua}yzj;i$-^lKj>ldw+8En1Py52e<
zUf-PLNN<D#Flwa!Yi|hYJWrmc-hKi8I`Esr==7&I9MFmM=dWU(1b#&~O2m=_Jq)tF
zY8*SDn<{#tsxU*jB6_Xcvh<dMp98D}Ogn7@mvn7E{u@mBWSi0=p(f{}1=aervOb7S
zm6N9);7H7FG!^CUW3JQZKjOx)y!*-Dl=r9LzXRR|4E@sW|GIw$^t;Ym-?p-QgYeKc
z5i7^<ia$qpNy2K~qeZum)6@VbS%SYo0kL>OO%};wV2@sg6kw=rb1eabm+Fmrf*fr2
zekN-7h`!9<7l2<0Tmu;X#$FKh<4AA!mF}E<tcgEu<m5g6&r=_Hs>d(=$fKt2$hW?R
zg-1Gu3Awlou41d2LcUlW%Xqe5feKkFQHW{BF#JE;Wx7)0C?ylE*qF_$D!~~nQq8)m
z`s7d#!*#dCtMO__ptLbaXK>v!fD6y~OmEiEDS9eGDK$Jfe7rYdQ~}2lRXU!4ajrYB
zv;ZwZw1ZMMpgy4rN;$x6E37XFvo1=zQ`0AV@wC**!wRhw#>s8U`JU1T#oYZ;QJt;E
zNA{OgJmbt()77bVpb>xI^I`q%rhZKOJ`8@|4*ZG&rv9$KFs#4#&kgIXWy{g^w{`CM
z+g8e*R{ehGUiFlt_B(I6!J{nroECge2tIcPpD!Q&I{c;Zb8zr_e(>25e7+iHcvA4g
z%;2*s`20nGc^sYJpx_Vcg3qVJ{Q7>0HvVU|wbvhm6D{f*DRQ}L;;1o@fIF4Ng|Rd~
z2gbxsqeBkI86Khe624cW5=40SlI_6Bc^p{uARH;DIfmmfAyMw)KoPwlFDW5f+~B8j
zyL_M@J4^D8H4WCo^VvLC#A@(;Ux>K>lGr6E0*=%*)dUSCj)!mO4<VO0kcZ^bEgv(A
zXnT9roNZir<m*`Ve7#`YUNv1;eO;}Yp<7Wmy~K&l@@HM899>Q%z*y7ydWX35tk74e
z*i9-nO+JPmnLV+|f`1ZG&@I0aVYus+m)K|omSeR&QIDnnl~<Lc4oKhXK>oBu9p`*p
z$DY#8d0eLEjpB>DRC+oU)u<<_fexRTfJ{J?e7j1{&s&iEt;*|8UZL^*GD$55KCk$A
zUzJ?y&e5~HvqV^O;NGwwHtx*INv49I0-On$et0vuq-Xk(PpnzHx)a^z&>@DCz6!g8
zbP2E-=#?LaV2JQ>^@43}AfUBh&W<O8t&ZDLF~YGOhgffDduN=|fo@g!bINH&HG;@*
z@!;oCC>XjGmi0y387h42zCYyqAbd6Qv&=v5g2yjH?-?+BF94U+AKz=)J|D*SSU8;p
zoC0hDJa~Q<jYZ@dqC1F3Fh^A7#qV1Y!HUJqR(=vWP?6_(`7tj){5kkWw!D*^PYDNy
z{ww6S7k<n-`3U%rfL8#+?}rzM{I;(O$NBw{ot)Y4ZeO#tbA`;6E7lPfWd*j?8<9P)
zSi50OplG{a?L#QUCiJ>c6!28|m?8p!%hj6+>!)l+ajWLUahlDY64j0KK)PIDdr!0=
ze)jF+0$fXl|8yQ|-dq<|v;X2Ys=%(d>wJDrqe-oGx?J`bxGfi7z`k4JR`OXVzt5J9
z<F{Ss=I0Ze`^dK%M{VgO?@IFvk9rr!X)i{sZY7aZbN+6ypF$Jc*C*&DF>%06ZF8}Z
zPv{*luL!l+qNHncoF80-s&gO33c`Kjq%`^&XA1n3&rd0i(t;DU36*G^5tieN1&@9i
z&Wo1y3A<>Rd!Iw0(}c(vW)HK+s}?m(^=Z1dKNPlS`^U2L_eJ2>0KI@|&;8(%?(auF
z5VWUgg08^+c<aXC99PzLDOOdVR(uqq^>(@Rz&ELAE(`)gmcoP=b2DiN_4{N|$wZ7%
zY?^O~7^R>`F`yvOV*QG8Zpf;4TYDc4`AuJv?SI3;rvbA7!|yHNk`_hx9lLVuHUfUp
z>DaoKz9+JQ;82d_MF#?yXLtz5m%G*tGNAo=IP}03I8e^D55b$gl5($NM00`_nYj}C
zjpkHJx#>iaTgRRwzd13g48J($=h}hv1dn@0oJxjj&yQ#v`+TUPu;o_kV_~`8f^Rdf
zJ^)W#iryb!%GCre$@u5q7y0)w<7(xW)f-lB+ab~Au{O9zU9VNIE)Zjb%MtooFR)8v
z1K^JkGxdZBds9xjFfC_#Ji44BGjy10_l5lIfSy^`uLl1t@HxQnb2qr8{>~K_Y}weo
zcJ3A#)S0$PY}dRco^^#f(<-lKS-})ZF}F-}O8e{#Bf5v8d}Tg#dhiDX<O7Co8Mq`P
z@5z-{ZN_$Mq!`(a7Rp`cpmUnP!<sZj<c31)6lXw4^6OFmkMa|G7lVHSxB@Wru8-dL
zM{i5_3PLuB7lY1@EZz3wxd2J8K~I9|Dxf<XpZk!vx+1y<$k)iX{s?{u_)A1fO4wh#
zb>vAR+7dN_^`rX;)>=ii)?N(3GFliX^+t4BFAM8S%C`o56VL^i@?99cH*yK{H2q5C
zR}ypbG-=OSE4OUfxOPh)*|N4TDt6(;&nWBEk(j6kqM@<+F!%FT`!~XRem<fje7p_*
zzreeI;p4;Ty`gWOxqQgMdrhDU)W=1pZORfKC1I-<QB~v{qZLuURJXN1qQBtd*?Kq^
z{CuDrF!V2u-W$5+`ETftkzUp^nDDj5Gpzd&6ydZ$#AHGD7W&rXQTe0%rTlM#{}1pd
zz|em$dT;2OXD<C&gagc$+))1WQIuOFx~=GGN)o!KgRcNq0fz3n=)Iw5o_%zQQYnE!
zvNUUl)c98EOzS;8)3Sz{dhU(r?Tzvide4Ku1pE*%^nMz>H+0PNaC%$TuHJq$y*=LH
z^bSV!$}i83qv_x?fjNLA`Rq@xt+AP4gy@M&Fhcb9*Q{CG*)hMfk7~@Sj9J&=wBS%g
zXIGS`l<QvbuL2JPrd&@(?@f8k)0C^RdGqR(C~r26>_FflMrwVuGOdj>e5+-)bsJah
zD2B^CF~Zbq>l0!B@jsbu$6D~AKr>+IkBi>-H&1P5(&${hesz{=+e}7H%h}eOiIMc4
zfa+v3IkG>E==MbUO1bX@zZZA_Fm#`Y-uFkhOLheq8RMl%7|4=uU%EoIm#j!wEhxp`
zmOn-}vnmj<QkJ4tXB-PeuqL&9Gb;ZT+47GDp9ahX3?D0^_om*>)6{>k9<2)JudePb
zD+m%Be3hL;%UVuFyg}@ngf-@7CS)d)dQ5DHLK)A)eN&a1@7o@_K3<`4wn9G;Tw1g}
z8S=L$qA&II9QaGXj{w8pFQfPU)l&|Cef3n<MpPy^`mVC>u*dezvCdGnHmIQ5r$YLT
zS7z&{4g56VOu*1z9=$j9VxIr5e)<>*XSp#mtQYJVhs|*95&b<;{!;$$fd35m1z_mU
z+!gX?%71O7M_}lS_;F3(bxr&`^-)E-dP68reFCSl)Wac{aD{XAFosGU7G~mzuquY3
zZ#;&NxO{A!3;leK*uhqEU}8i*XL7d32tU|T%l95mdII-_RosdWJjP$)kG49933Na?
zH#vP9qqe8RdhU(NA?17s{2RbG0aMQBqW7kL&C`@~)wWINMaw8U)xoOTSJ+HT(<mQL
zd6@PMmVPG_!N_PL*d5VNUzKg=X7Dk<1i;W=6umd~oVz~~f4$*M)JL|g<u-*-Z^Dzf
z8ze3T)^X?p=Ibf8$C)u9#-by+0T!iRQv0{VdblN`BlYkw_~XEnfZ^l$=)Ebwd764S
zd2RQ+jYQj$tGPZ-GPQ$PTc*#jzQX|wA*xhBQ&<7JBf9CUv*jNSJ`tD#7`pSL_lBN%
z_DeTd!Mjf3tWwpPu%=(9tUa;OdL%Zp!EWXxJvJzK%QIoQcagu@r+*9l8Q{5yrf}Au
zoVc-h{c6!y+R`cd7??A3vlPg=Y3a6(4zUZIKl`-KE$1Cp8I!H!CNnvwQ0Pn&eKqo*
z(-rYieoeL>MuATNCIhA(W=HQ$`OVYR!}`!LD_iwQJACW77VGT-35XX&0I0%vj}{2h
z?uc$L`I>#}{ooG)j{=77esD?s-OH|DeIg3=V!;xU9vSS@Yny0yEERi-s!^y9JASAy
zbSR?hUz;s&J$Mr^958ezMDI;G%`;oxBk9V%Ex6!2Zo2huVRf2ownEBk!a`du&xY;Y
z6Xh%Y{4Vf4z<q$B`$+WO&@;~?=`LHlg>ZH&k31w8^7m$tHl&XvZ*@iVtw8z`?%(Rb
zM*yP%Lw`l|zQ6Gv)^{#_>GWkSD_HM(WW76%&G-IHGlM?A6p4Y8SDUCVL{#WvEGufE
z7#NS`Cve0Kh_RRnPIS&u4Z68+e(d>9SYLbL$DA8~0RAfQOTh5^S8z$=`jNw}Up;HR
zv{cSuC~G^5GvvZ0dDd~y<7}X`E^%B@yu2V2L!9pTBf0!27y(yzDyJr7sqMLtpVsTL
z{bo7%xj+YC__;26-xbOCU(1mf9D|>r^4dNtcMwZhnvY{;f30k6x*U7mIA-}M8>7RV
zD6B#eS?84}^<WsA=S<Pn_B4mP?4bBo`|}}xuR!0-Cw~L~2k=qElW^XjU3S>6OFKKe
zSw<w>ecwnfvF4O;s4ofW^h9(PT%WCncJNI=7hvk)?&!U#htnhZiRs6iX_GBb>myUv
zwShVFo8qW-&U4tZ*>#CjyeQ}}x*T8b12t1<wWDjwalM;B35QTi81L(fjN_K_vuGf0
zh_%?2M4+L`4tzJPk3$h3GTu_X*nR?KfZ?+aT#^}Q=4tp`zk23Y*>KK0a<>_*taIjA
zH+ihAp*y^AWvzW7q`QH9O~1Vi{AS?ufT8<1xFi#=<4}%X>Q)R9w~8P9Yz6fy#4r-o
zD?j)=SyXE0e1$8p<f(KK;znS(A9si@QaFH-Ral%X&}mPuDmOak>$y=!Y5QKtpa1D>
z`_+Rt0mA{q--PIWzw<!nRxw%Zn|FhA>j<_R^A=bi5bPm3cMNgxmnY@i9ntNH@|E_u
z1N<If4`AqiEqdP{UCupdu60GG(S4N@`f6RY(fS=u&QVVjqVuw+59CTOhUK<y$d<bf
zd>AkhF!a|)?@hn$%IUX#^n*YJ#3<-v0d2tFYS92(^e0v56_o<ptPhjT_ykXLp-6af
z1mi@X&qsPkxT}g+UGL{^Y4ACWs|xmK!)U9e&UF~u+tKcbdi#FJ_r8cPska}4{{r|G
zVEBG3dT;u#d76H_S<a>_PRuzp1>G2nn#-Ns4dS7QZp)3?`dSEn60i&~beBi(4L$QT
zbOXJ-9IAnQW$~%jy?ISkNYGY&@|Ct9gyr26<tyd=7WnhP_W(opC((OD&peNyD{a)*
zKA~6#vOhcqS!-`ZxArsH@=gJt4a^4&-IJpC{q@gv+fYEbfZ(CqvSP!swwuKN_38UC
zuwp~JlOog7V>xq0##M}uu9w1c?~d}9a_<9w9(WNj^vgdR^0zBmUpD0E-{Y(xuxRQl
zHp+l6JAo|Pdxr_*%nuwiNXBy2aXdj_2I2yI06xgw;HbmxjlUe+CbH*P+{dsqbMWyJ
z1$I7q#sMyixWZ`=-gnR^lVVJFzNGbe+!k-JOUeJx%V9Y-M0`p)dcdy*dI3|8d!zUL
z)#DN62v*4UJ>o0mW1R5MWPNzTZq{d^=n|gsC&Cr35L8_D*0(B-`<;UQKlZ)^JgOpV
z`_}DyyE>iZrpeCU%^J4QA>GX`VHFTG)8NV|2_Y;RNK8O+^wWrnxW|pbmAH(<sG}K0
zMMaG}gIh*N#69l2#$}Xoobi88E!~~aX_)zZp6~mg|F1l6`rKa5d(Nrl)~#E&3aRWR
zY0qB8NA~pCWEufrFre)@12QGO-s_qLo$o7CQR))d7KTj%X`;^LJ1MYNT3Bbc6jy^7
zuE%2a6ENJ5ebaEAn2Wo#PL{V1W;tQt-|T_)vnaG!u?cr)=?c=tbHyS@SYoO`UL;|K
zYg%#xpIE%N2=iym?RVvxqgb}P(jMh0#423E!HSoqe|wbu<lpz?7ls@xK>O!|Oi9-h
z{i^E=#xKOwOtfe#s}e>8%SK@GUT;isJf_lU#2TNp_>XAPX>mt1vTch0D5anHYayQm
zoC0Y6v()FBSHEihrL}@NR%~;yW4XsTX1;ND+Axeli$-Fs9>jtl{@v2=Hl>$%--rAe
z@Fk#m_o~k|pMKT6tFYL2oHRHRXRzZAHh#jY$UP-#i6pI4d}W*C*DDJlF9wzXny(Hr
zrS7g*VtnE{(btFWsb+EGxPy$F>FE+|m1fJ;cY?HY1Ll<|-t9^+`S}9m-N37W=6z3n
zuKm-m+E2{;#)R+qKuAtmG2(mN9Ag`reih%+g!me-$oK}YlKv3yT*y)22te~zs?Rl_
ze$~8Hl?}_$k6E)eUZx7lZ=oTm<DO<lJ0_arVFhtzT!IN}s?s8UZHm7|=_meOkpBYw
z70~=|sLwU8e(i=|L|u$>A2-Fg7+W}Z9bfnDk$x9l9rt@0<T=1RK=YQX&o!TZ?S{8h
zTp#*zReIb+<FO1ZD~=tQss5BJzRgM>`FStohk?fc&G(%8T=VEx&4=bm>`-|MI*v6p
zu@YTS@j5N8bR3@0*gRw~t<NQ5Jq5eF%2=1bD*Y|IChqTe$kTvXfad>|`dstsSIwWu
zzJ%tT#!bK@1@vUWac`K$YeUP-ACwKhGS7@Zo?^7TChcfeJQRmVA@2g72ecips?RmQ
zeobwMIDsVC@$t}N6Wf)k5t&3gd~c}yzcwC^>5%6F^8szg;p%hEuU}(!;OTZuM(C6o
za>x?}@7|()3SPP5ZB}~8|3@G{4Lk#A-gngJb?W^8ewTe>s^h%NDjO0mugW)2ALO{L
zxY`{y3H?zFhq>`MCgYw=%S($|Ov3cq+<3?HO&N#ab@4bH1Gy4d3TS)k)aTlN{hA~W
zWY1!>LUJ**#5+Las9r2E9v&XBa<OHqn4lb_X$%-2RCa7vJQSB_A-@W|31~Y$Q=fO&
zpTPZ!<%vbIo*sMmQL)56K9`Lgg<V0!R&CU!30hV9c7fr0OU7Z`_3=0y2Kfl!Xh8E<
zsn50l`c=mP{h2zfUKBGSr{dtnaC(XH0JsOqQ_Z}D_P0^-wkW;i_mhxc1a<?O_kHzw
zcYZHlh9@#(ta#qPA?En+n6Y#8aI6p&bG#((c<^nN|6AgI&x5=GI0Df873y>CuYT2j
zH(<%Rsx`}N=d7xWw@Nv6^J_iEvK7V-j%Bo@^HJ%1v*O*V^pf9CKz;^z9?-lms?Rl_
ze(jc5wEUWPR~jaNDn@a-Hhk^UUw?Dl-${_C1G50lJ6C<K`SfeIyrSjTyc@k;c^eh)
zW~G<>y$kaFzz#t3KA}F>eEL=M#`l?vWwvZ?)=V)j%h{*7F<KR`?}oU)Lm`g^CIOmv
zw)(ug@<k0CZpp<+3)(P7@d9IQjK6?0Oe4cZ&xZ5~W)(`A=(1kGEL7~+iN5h28TZYK
zhy1?<@?F3KfVSgt^||(2ziR*0blHNke(0~BM|<pUV6*y{`$I;*Su={vqM0E~JyVYa
zQjV9uD|vl4#`|+&$YsDxK=aOlOsTv6T+#6A`ubW7z|*EW!-}JFnMzDlsja6|eqAXB
zwPs>WYa`pl3=1&MVPc_Qp%wGslpUMFqsNQxh5R_M6VP@%3z<@P^JBW$p$$NV|BYVY
zV<T2tGTeYsYptMmj#B%3G7g0|#p5su^1;A7K=YSFrqq2L>T1xH7QFilLvcbF8sAs>
z5B=Kzdmy(0PXe0%&yXo~?|&kH%>B9<vH0J{j37XlhvJG#s562eNPcv`>5WDze?G{4
zfPj2Yd{LLP`ZdAD%jwzn3oxqVb7!%v<Bap!H!h<WW_95SUD{j%3+G~19?5vejcI}6
z6StQ{4Vo)SM{Y515H}I&2;Y!@SSB04ap8z&BH}+bgZ1JYG}}_V;@9{T-+~t0RHko&
z5BnvhVMznbAGH|fs}nyBvx`4`3uD`mu>vq=1E!noXu96VDj<RrGw4p_v@NkE;~e}*
zm5blWV~Wc#$RmNEdXEC5<5Jmx8xmqcABK1^-0r5FGmJ8&rvksx_j&3dHvlIm(Sv<?
zu=5DwI~i&w8(3=sCd<Ggq{1aQfd`8%NzkbDw<hR+9`Z}TD@pZ>+_QowL;tD9R&ghn
z0)=sZ{L%9cHnPM82FZ%6F=QtFVS*<d`dG##cuU-$DUfFYa{--nTySqxEU&b{mzI?V
z%4&>k+qe%ZOA7tRy*T`*+(!Na!Zmfw=pCW5PVsJ49F!kVKz<r{CJ8V4o@=UCi4o+*
z4JWT$Q-u=`B1T!W%|g~RDt&wLTb(bNzsLTFKt7<8_9H<b6yd45^BMl_z<MjNS7Zy7
zM)-gdivK8WwCK0+PkM;&&?nesls?C!#dJ*nJto!zq4z|F20xMUZBjOnpEp6i4QNSX
zSM0n8tIlM;Y|N@YpIw3d&27@{0t1zKR23~@1dHmZMRwy|`lEL+$6ZC<#tkae5fy+o
zWsiTWh>2()CP1DHOqK76Z|XS3>{*PRrR47N92RlocGP?u?XA*Rm!NM0<nw@wlIRmT
zsBZAX#c9wr&3G6^hIWS*#;ZD!PAlr8@A|2XUz^fJ@p}vMJHQ8t`qlnWs(9MaYvUOl
zSSVAO(&NVs20z{+Jz>b>fr9`_6r-|BI**g7=N^^X*Rj7H!@ou}E7+kOmmUA!pDz7|
z;s0FvwOw(OJ&!`(2|TObi<erAr(PuOB159pw5EquJ^~wjozH^UBE><_RJ%yK@FJBf
z{r+3y{stkB1ttRIE9svCnNr2YQorWW`A>Xm|Fp`(JfJ(x*x)%0HzUl^bU9<RDV~kc
z<Hs@iu^I9W!0!Of^9RV3+EegE(5EqTnpou}OfqeZGnIcK<JAE@e&`_{b{pou0zN?V
z<Uyv?s^XQ*pOP`-K!j<)=U^IeI()hlarEGyvDBQZdvae&z6$8`Lm%;-2>Dc?5zu_+
zK&BK-;n$dO1bhRUEbw84u=BA_jd7s||BU4^zE;K827P|$BffVae+F~_n(uFrDYc~F
z3zyKv!GI<Y_&kd5;x2rRUrGPUZjbXtA^#ev1T^0=$dsB=#WOgDa&ADA4}?BN*wmS@
ztV8m(K%XD_$iK%RKMVW?(0scgQ}U(oZ%i;m891QH4?e%*yR0*x@wMdh|1r)t2J$3e
zDxmphL8jD{f-e*tPZ>C_sSJE&#D{zAS9tKx_%EG-ZHli6`uxyG{@n=q4&ZJ;^KFMr
z$*0<xWaV>Q$#}}ZaZQa3gpIfbCm1&+GB$rB{liAIF}@tg{eeM%<{Ji?Qb(%%i<FL|
z3<M!niAGT;;N9i~!n$uIUmf)Mp^yAK3-Tqv6@ccu3Nod-6!9z_Gd4mQ2tKM3jiOF~
z@9G4;vhO5cJM{UXkNCcY{4-$P8RtubOsOLUUnCqZl^NJbRiaVU3GiK;z~}p$<SU0h
zKlBmbQpk0{T0r~v8_1N}QpK~hBsf;(AXSM*Q71rneFCA-g7#4H?u1@H-Xq>OAb$*e
z0chTDAX6$!;pdphn39mnNU9o*qHch<d0*a^@1?(GEpgt3kSl;{K=U3CnNn*C-td^v
zm~kpYsfsk}I&$N_yp2Cd-tExqhhFmcImoXA?SSU}05YZKRB=W-5FV>?R@RkRWx2Tv
zb@^V&8~jt8cP8Woz)^taJr*)0e+qxc1jmmp39Ag2RVG$vZt247|GVVf3cY^lC4V1+
z{0z_rXx^70Q)*7Z8!8zeDh;X(mQ^QKceZxn?NGe_yW+fI$kTz@faaYKnUX(MdsI4Z
zTqLM6SXQA}9lEs(Z|jfJ-_6kLhhFmc4#+!zM*+?I6l9T7_*)VgJ9g}t5}m=KD#hy3
z?VX96{vmmNcgJ~$Kn?-p0nK|5WJ--GcuPye;ZR8QdeB5QimDW=OLuhUt@uguZiHSx
z^pd~VL%tpO6QFtTg)CBvI7h~o1QBVS!J;a~>QYN*-rzqaudyx8TL5_|FcQ$bC6Fn#
zr>aM#p)n<hw9a8wm11@2u0-m8N#1qP>xW+Q_Y%lkfSUo$`v=IB%2UL7Ok`ZBG#nDW
zBMP*tO0l}MErGX9@peG3A9{(G--EeNKp#N!1|U;vOTmk?!ML%(@uHU`c*R+$F;<uE
zP2g?*S^B#Idi~H#yp52XfGYvbdo^TAEve!h99udzR5DKVmISdl9W}-()Aj^np$+Fz
zW2TVWlz!rW5Auh=r|LcWg6^-=p!_K-t813x{F;G&Lx%A%o+_jf8+kq2sPq-xEA1tH
zGaw%f9HQPMpVlcqVtUsusaaViW@yH*-stj!8GrTQ2Te-vI_S{z_0ETU5pb!}n`r0p
ztFYOf+&!i*wDdLJr>Pj?;+4inq;dE`i}qjYXe4|0Kz<!~J3()3oFxoxVdF<}K`t+a
z6UJFga!sTTr8jsV=Fs6C5eLY#f%yO>`f_uZ>p_eQsYlEZ;0GuG_}82U+p!HDU82*t
z3tf6sz)3POK!EweCZ<RU@8~`95TB?^cUl_~qd&dqa~iLag9mbyC}wX9ljY!J*ye{_
zWUsXy&;9{9044e#?5=%@KNpAbK6(HU-?xG<Gt6-<h8G+0n6lTw-eA~3iR?Z|jTQ}%
zgBq~SP5DE%VI@o92_8npZgb?R`mUFLEr%WOeO$ha0U)>cX*~K)BSB(}0^^F7&o)|3
z>CaZ!uE%Tcg?vBokn)Fo(&ewAdd+fJoCQ;}j2AQT@V?B;Hl?RS{zjCKA0ht}VE4z0
zkwL#-yu6CM_Ckl(_#U~1=(elh2i12)Ie>gHa7e=MV|LISMm(ofMXMC|gr=UxdOYq-
zzRF4_tC?ZAq<<TsL)VAvAm0pZO`;cfwdhhCd)$eP@t5|evNg`QA`{bQpdRs~umke?
zzD()=I6?nEA$uOco)~~mF}u6yFBTgm5yvd!cEO=oz~#j_lICerJmpF!#b*iRYG7p&
z9y~R+W@Xh0^wh8)%KgT(*lqxk!6>gR`7GT<<2o%$?{?@Ygt4Tz4e~3%>q;+q(bi3Q
z#y;RHDjQZT#vVpBVrdzx{2(zLGTrz*6MJEapv4D8v^$1j$$arY7_UbqkVC*YKqnoy
z%IXH<fjhZyC)c>pA=UU(U-T<|b@;9J<7~+10vB|z537kmWj<8q8=Ik0#s*5ul)hH=
zTZ+rekY5Gf>R#WH+NHDz>a$d~@$U`?i%p3TV9^OQE;I@+D>jY5yU#}!#Q)@Iu>P;y
zlTKpTv(ul5Yr;3swpkuM$gf^S;i2#7_x1PHG43E>c;Br*J-}BK{LX(^12FCajk+fO
zb^0odmL$rReVpiG0u1c**Y&vT?@jg<mIcu!2x>7L2PJqFf7<$eUbPGC3}h4{N4HO8
zORHR<W0QsPc)Ic*M}u+h5Sr->LbpsX#VVhoimdI89r5TFx*Rv9$@1=dI9@&nLLLGP
z2XyLE-bLrP6oskO*pVaSM=PPGAu>{Ro6@@?LGP)MPY2d_uUB+#L(m&C+Js&@y(H@O
zd8NHOp@W#H{J#eIP2e4+m)>vba$Xiq^3(<MQ3+&!;&$9(k~flYiwNgMrMK`A)4(z#
zLho?Mqks}XCmjd0FV$+*ok1{nkg+k3as-i=`GA}hfv8Y=>!72D(t94{3xTE-dgBe(
zK&T&R+!#|YGFq!Qnw0)F=n5$P??V0n_#}z`>JwuN6-v9Gh$)sOQ`z0B^cJ;B-zm-$
zAx{BjsP`x)o#LTdnH^XXj^W??d9qER)4W@p?y0b<f-7Ei@$URe_Y7So8%HP2Sm!~6
z7VnB~Aic{L$j+41m`nq{<92yW%t%KoBsx*(Y-J0rSdAM?pqnfUS>`r-Q%6PRafU2k
z{zv2M%9KKm022V6wBJ>$>S6)y2e<nf&le<kX!w=BI`vzM<C&1p0nSgZPe;+BC|bsk
z1$4Jl$AOv*(MEqL+7xn|+7Y7MpR7aV-h!{v=~n(xw1t#|cV~;}2sY|ZhypF{R#6v@
zfH<0LAz35;=o{=N*rMMMUl<I9`DPaWV|!Nocbj{Kx!O#+|4W>B)lDExB>v2_-!)wi
zndUarb(3k&C0+7{u`9!cmJY=sgR+hOL@!huL>Xv_Y*e>%jS5HR<HwK1+lhZdHXg_L
zAfS`XyoTb2wRLs1^=qacaTJZ)$Sb1@d($l^QH_l{rEeU5OYcxV9s>DLAex|W$ti29
zlWW_Qpbg^-O5aBOwn*vQ0{KSZmIQs;K0N7Iy>7t@n7BZ64FV_}0i(G$R<c19DHre`
zdRmm;cB!M0?EC@pKj`?0xZk?`cGdeYx-*7<ZM~@}L*YXH(5o%)c0$7YpQA#{LcktD
z+*MvCej|;t2+Iu7fBBo9reBsVoQy;gpJ5>&IwbpXobU<m_)&reTp<Y!ZlyunqTWr=
zfGUt+1Ev-W8%TF&4TzK~bu<@%?7)hHx!Ml&jAEZk+v!vK9`&--_XFlg`F;IeS&QIp
z1eZT<SGkRiAq4S0Ux+D-{RA7g%MJzB(*+5gPAN-qcFJ(0^2tV!8d2d0mcv3uxAc(Z
zd*_q!^7AU>H-L6PCs`inQ0bY5qKUFyhzu??cJwC-BBN4+ezek8_>^h*aZKfA1mt31
z44{)PkNaxe)k$NA(zinXR+PgtAfE+nOwiY<9FnoB^}C7AA^7(pw2GDjd4fCcR2nVY
zkDwqh^u8!XG}nV#bo{ZIxI2%8Z{WXq5?x%7r!pI4yCXv?w2I*3*Jxbi?}d(&5opn|
z(ybE(p2{Kgqhm_Hq(t8p?;$w;9GM?SJ&pc?ieEM46+jK3lgtmjVBat}In3A{APdPV
zVJU1?Ct>`kT<L9r4om5M4Dyq}pA+=zIMSrk`bx2@+6X8gVSE#i*X(348B6A)0c%ux
zJv)VMB7b^9?gRMcd%|R`x4wGK+WOT&lpngq4GfSMvQ0`)x%v&2n+nKP!15$|me<mZ
zU8qsB1P0K=9oW;X^lZj&^!5JjknaTUPNE0TZ!E(l>xwmG5=}HoGqw+)AX4Lu)S~o#
zoS^R~$Ug(FKgaV!`xn!P%v1UvOVrn@^o_%BwSDs-9|kN)rH@W0(!OUC^|dK|8x!<h
z2e}!zIfXu~0}@lXJ3(Q)($|jP>g&vJA%742sPs{2TD$g(>(;JZy11tHWN7VeT*!JG
zXppIR(|`I?@icN}`7YZPAFo&l`AA?9K#9KE-bMd93|uTZNfG!!;4=nM?bND$N^g_W
zLFMO0$hQEusrN{?&Zni=QyNPi(2O+P5xJP*U$$-uv|i{|4F5YMic5K(jNiIvWUR=~
z^C4dhT&~{h>L;z_0YA^=@Du;`U=cNHrlfQK|Mma9IG`Z47s_(f`dqvoz6JSR;3GgM
zU0-mWT2)hjXf18MS6+)fapYzZ=h#LQ!@oY_%!6|&ofhKIl75f+Jqj46R%a>onmDdP
zvK&Qm54MZ3VGx~#)%WE4bP|$(bS@ReSrlqIvrE0|dsyi);hV?kPc^sxOuw>H{f*c=
zz3Ck~Vz>~&|8(jjGxQ2sIyG<VI7`TM3KFTVw~Vj<g?Kw!0yzv!0CY--@2Xlcf%C7K
z#$^ouW(X7Wy9=odtqLYOE_lAsbY~z?SRo!(BGL3c>I~2{L24#lC*m7B8TMhO%Ml#_
z`6>rT;{W&exyqb_?Mu**i2e)c5fS{Swo=exF0FVqUD$*UCLws+X_*LdQee&WGjzn<
zWIHa=X|x}GRr)C;F)5M;#ONE;i9$n6S8mc;BGD3c(1@DO+44P|amXrk`(+<E{$4^+
zAq$|1CI|Caag4`?e3W-pl4y2IYv>d5jQo>1g1!;;tVuWYqPH#l622+>s7Fo(n!Y3b
zh+D_p!kUC{N}tqk@Qb9s`YcxJ6TdDqN&eRX>+W+_rN5z#>3S?{hICWa2h<GdG{bYZ
zG6Pr^1(o%P<#T`8$3-y|*(5$i;V&Pc`T;MBx*+<EQOJh_N6Ys_6<JIZ$17JYjf580
ztX#cz9nNFf#uY5v$fo{0!l)`zozmBopl=i8tAOhg^wD#q(2)imgqVUx_4_t_SND(K
zg8UBfLBj8KeO0~B3~V!-Vf3R|seY`|Q}|N+e%}zt!+=qMPFhcGow%zo1bT)T5p|6M
zT~veVNVg}gN^c!>WIzd>_s@iUHn1^?-m03~hU#T>ceXE7_caccCU#Y8v@5+kp`(w|
z`wHaOfVYz973-rx>riMNYAm7RlvJ~CplbjA8rNG4xdaFUI_WsjQ?^h$5NZb+zaf>f
z+;la#OzB-Gb%=7a5%ML#<w^9eZK%O=8_;Y8CymC|^K7cojHQ05c*=`7TeOw(B8=Wq
z&v!H_o_6Te<)H)ex4;icc+fpvvywcJCE_VuwG)TVKBHOb3%(pL?^7U817^whL`Y)s
zs9f1l4Rv`iInQ`esMAK1(pIIfF+tzukT(HWcc+hT+Q)RhzmHBbpk3+R10A~m{~6>j
zfp3!N#r@8eYgVoj`}*X=)_mi8jL^weM%0KwvK$ocj+cY+kS76UfKJ+PJPlEWN3LOI
zZ)odnY*4y%IQ>fBI{90X|LY-N1YDY+k8CPlEiOl_-~`-!4vO5bGd5$HcWUD)$y1Rm
z!(KF@G&Vx-Qo}+85M`lB@qL`Y_akKc6|4~s=%npmUAelJxZ!{moDSZI;61}=!+JN8
zR~Bsq3CGlIc45}<O3l8(GJY$-rR(Pzkk<nnlJM8B!7{j%&#NjM=+<#DqF8KPh9NQC
z^2@db&#?%CGNpefbPd8g)ULb*`5oYcB>M3@!vej|F4X&>-f!G0o;J~$E=qlc((B(7
zFYgl|PX%Vm_XNL=8{L$ij(wsMbX&pkB6bHE57W~o;*TOm`9%LkO>I^@8==#$?B5J|
z3vg2s9z<u^$y85seVJL*9t<${z<L=T>=UcB#~x&8Q~E!ax<q;V5wh!5)8K$k+7IZ*
zxXCKf;xw~m*hU2$Cm0>H6i6%!up|g%ar#Ppmpm#PBJ=wwsax=^f_x%yQW8E)5<$!~
zB_0~wL{ARhDxW41PdnkUV7Nuan*Phyj>4$lk+OK-k$nX$=ZJnBeU-W$)QdCGu~eUF
zhlff#jo0G&n*%u?=q2A1-%N;$9Qr}%(_v&f))u77rX%Q6`pOgZRYG10tVpKsl!p0O
zVj9}ULEAVyw<1F-f{dU_PpP*d$H2;!{+0y&PeOhcXiK7Bl}E*41?P#P_$%W(TNXuX
zB#28ENZpWljTXgI_<B4pMUY1Tqvd;@;<9S(YUzeNp>7g4eJL=MA-a;{7wt-KU4q^-
zA)gIwOs2PT=}GboQi%8z8n+6?vdD>=UnKLdH9_ACkY5CLC($R?=RvfKpsmPgg*F`l
ziUO4-*`5TI-oiKH{ttyb94MCWb@Ctml-1SHyB2!a8n1~iKB~8<AT)l7D*&lobhwEJ
zrIX&FZ{l7cCNg<k!Z&0!G`A@J%?bQ}gxmsbOTv%(T3NG3JS_w(WG3vy;-r+biJ8!@
z^mZiZHQq!U0Hgyt#mYPS17b~kt9<fdR4b<$Z*T|C&(PiTxN6ngz<uLkGC#_tE>Z6*
zAuk11B+*~npl9ECpxk4uN5trSTc-4EPSA5V<a>b!lIUr`4eh0i(R-;}hE*_EuAzY<
zdFH)P=0T_2HH-?Se{X{R^tUiS49Es_(s962XEik^SBjz9ez3Hku^YLj8{BxgX;gYw
zK!+X|y%O@Zz!rc?7iqr<GNl7sPr68(v8-lo!-|^P<-<lTTLndOh1Xs)j3(C%T2cfX
zy$G$if1&K?0FUnf^mrRG&>PTp^n*;P>vOfVer|CwP30-p+<Ip{`iQv8tMGu6_jJQL
z-7v<R*xQBHt0^BY^S^?)pqI|WXFy&LoTIpiv2c=neo8;bE%~ZX?2c`$;T>yOV~r-I
ze`kXJ_aJ`?d<kg3zJW~X0Q_1kRvv;!1?6X8i45-zcu*TKCSynOp87fIvJuj+vi7)N
zM?+o;tN=7`4P;7P*Q4CWzc?!v_h%Iguu6*;E9P2&ajMmy^->R3jg-9Gp;yQACCIM<
zZvvXP9Wtc@@mEhIO`d~7jnSxhgYU$7=RjTv90_RNV<1!7zrS%-+Hz|+wr}vBW>|PM
zuG;cZ$x&&P^mi-tYJZ=A{0#6spn3lSnbHCH+fY|swNmT{m4i8ND6&Tz*3l@k78TeE
z#aH-loNo-|@xUZN^G$(FX}^9ZvP~woqYUdPVk;C*wkp1j(5L<T9pu}AI|0pi7i3BY
z;2$leNz3?mTPI0RS+R`kUg*`lIq#vL1M~za(f|F{%LKMbhIf)-O%lItRQfBROY1)s
z@_OJLK>M{3GNl9YODu4o(kmz$E&bX9y_)xH$Ugx;1De--U-IrZ|KwuUf)&q;mJgwF
zT4Pw)PV8taBVJDH6mL27YTn}^p9ri0H1Elf576Hg*l~r%bdpxf4#n3BeVT6%<oAG&
z0L}LqWJ>$>GtM?0ZU(U+m-kXMKL8r@Y1mC%p3<9wGQQ(Ji1S7v9}WB((7cNwQ#ycr
zZCJasmgXiW_0w0P>Ob^pKU*O`1H1rezLy|V+HZM{vn_+49`f@-_zA$zIr`~UqgnC#
zKaBHEfjkSC18ClPkSQI2pYaVLx^otK{9~lQo1s_xdk^GR;Bi3nJ_VW5e)F{p>nL4@
zR~r@z*CJhpn-s6_qd4za$WwsnfaX0IGNl9XcOm)(SS+`?o|dJKt-v7{WAS3;4U1Oa
z2$>7TNwut0`rQQmF~1={20R65{#}qM?bq+*>=nPIMI-N|HPE~tV+0H^9>b3C>=c#r
zEg@+~AwJP|6hjUJ;{a{PM97r7?x!iw>!P2uC~~Zv4I;Ap*VOi(Y*@IFJOf+x=@VQq
zEcrG<pXR$3^6!D$0L^zNWJ=wZ??g7aL6%dC&Pxm83>eGIGT~vn;@b;-n$P*fH1dE#
zK=bv6OevLr;}5{Uiiq@Y1?h)A>i?Yv`CQ-vK=WM!nNs)uC9tLN&o@@`?SVec_YLH~
z13v+p?`O!A4xk(_R!@5*ZJ(MH-|SE0d=-#S0BQlv*8rK)e#>o~ZGvuxHzE%KBbd+*
z`^QN?TcKC``5NSRfcF8-`w?VH2jJ%l?7&2`>XZ7}toVYT#rbAKUH}{kXud^|DRrBV
z`syLhma-iVj+cIJg<kFFQ;?qn+5pY_5@bpT;OCN+Yfi!%WO6~Kq!%sF)1r6_KacZ<
zAddwm0F>zee*H{j8)kTi8P+iRZM)Lnn4o_P<XeDS0qxfvkSQI2U#n`DuC1w7Pg~@a
zpG4O#Soy>PP;}I_OXCC?&%MyA<C*sb#u$M?faWcNOliOVbz&{3s6z94EVZuhf*HU)
zUvm~(p1O&Ww+?zW?<J5o0apQ<_gcu54!~b*F+od?Pg}c86xw~d@<LCW;{6zUHLv|8
z?ll2ffacAHOliOMvkPmIF1^qboFx6NfL_hJ9`bp>g@ES01Tv*{Nw0t9d1TD7y3%wZ
zKbFoZ>kMlhc1Bj`lorLi2YNN{UdXPmFs1`&-gL;6y3OB3-Lg`Bb*OM%jw}X@IqKX(
z`pPFuzmI}`&A%4%X}}qP=3ft)(gEc2swyldTCXnHl8rHto;Jn16M8l8dyqc_K2co6
z*sZ@h#0hNmhPU3Z&?F+2A0+(>cEt5JLOvHbAJBeX1esC_ztAaITeZf2s=q7cK5tBn
zy;E1Y)W0YaI(98)sEqUfmniVZQ0}iathH3V)o_c^rtI7UJ9Hd|e2x2)Kp4<=j)zRC
z+w%U)SXoehI!em~>Se!%(gGMQ%<}6|6dX;Faoq@ew7qXYeh>H%(Dr@;nNq5H5*bS!
zl3ygY`}Ed=Wh(!_iQBmz^2NYqfVOiJWJ=wZvqis{l?4^MsWa;=MpZl)eObV`pP4g6
zKd)@6w6`7h=(vWz#TW)K1<>|RgG}i_%IhpY6+i557B81o{^9XbT!}H)_(u)cda0_W
zvY|ozN*CJXt+Zh@D|?$@kGA(c$e#jV0NUOT$dvY9Zhr}DleF&BWL(F67q|09$bSHC
z2eh4cLZ<W|#<jseJRaBv3`lm4tAF@DIkCFBdMQo(^e?Hctx+vRl3-UT`}e{=9p{R_
zVJ<RoJfQ7g1)0)+6z5;Y`Xs@}`~YSDcG#!we;M){z}tYf|6RzGQp8^uT-rY*HeQw_
zWI~UBy3F^Y@8i7FA<qKl0F>x|xAi^=TS9lxC|CNM67>HO@;2Z;K>PIoWJ(9%7w&tA
zmAA#oqTBPP;`RIx_iG^JVqgrQc_WZ1bz2^^f1OynA4;m5A>-Kyy*eLnfqVyW7od6X
zg-q!H{M}~*G&o*RzMGc0_U^^W2f!HqW+uiP>SjuQV{e>)5ab{b0yO_P$dvY*ugTeO
zV>tcg(&_IVSOCC+t7)nAido8k=-2-D`a7Oc1O@?`e<);1Dg2L}^OCf9DQe=1gr=LS
zK)i)nU01ohdf&D_-k{?wP&y|5{hG>pd_Q%&)2jTfgFo6|&yVPX1KEJ~HxDwUZp+#K
zK5vt@Q~rZx{#L*r?eCu<w*fB!+TY!fDgB4}+kGY?=XI4_)%gTcS%u!G$inVV6Go%5
z-~W%e{pUiy7`PPB_Fn;+(tng+zlilo!*8@J``clkj(^}MJPQVl0JQzZkSQHV{1>1{
zBdP@zez|p$?A$~`6aBNW<AOd?aZT3dR?L>=q7J;;t~(*$1>B=-A&a_gZ(`;D-?L_d
z;hkVu6O3lXzc+z@@;^;u25>N-<1!aArFAK;OCu%m{`S9TO-}i-`(C;VKK~pUpC<6@
z_`C#pH}I;mDP?>X{pVI4V|b4-tYd^7jmi%Hzv6aGhCCCP1L!!-hfFC&`O(#Ie)Xya
z*!hI+%N3O0EKW;L;iLfIq_9lgS}va}{of3|+W)&DKLR`sXx^tGQ|h+fC1t&cPDjOb
zI(ie#0GLlV3voFXJVf&Pevb1V1Gy4d3TWQtkSV3`H&#NEoR2D(F0GfH*TfSDW>D>~
zL26R=wSZs8WiRBP0gP_M?6V<L>NYO_ee04oI33Eqa`0>WY9KcNCjmNsr$DBZB7QpO
zFokF3>SgpKSJDw#p~k42C-ZG5^lILBA%6jM0Gjt($dtNmSCX+FjnZP#4Np17G~OH+
zyKm8<c+2ptqvmab{9E8^K=WP)nNkXWQ{@Qy9I|A@dmBp=E{zt8NdzgHTcd8ij88l4
z&~_H%8O;(P1W-!Zp8PV_>E_pHQTD6@x3=dQ$S(pf13GSdAXEAe<A&`;md85)%j3}#
zGr|zn>itwW-=Q*YeplSi6CtkyP6f1`r$eUnAJw;i)5>HOuTI&y6L#o$z6beJ;0r+8
z*#VhSig@Z8uyo1tBP!*MkfcLwLQjX{EwkdhM?+o;tN=7`4P;9Dt#@(OirI@<#V8s>
z*8{8#CT*oBQqy5FU$#T9_V-1|uL5rXn)hwUln%gOY)T}i<R@)qeC3j_$d2=sK|TaH
z4A6WFAXD0}pK-R7_kEfbZ!`32KOchp1n@MVd3Qmkl&YUn5*t5{lUGpx<5a^s6<ca2
z+>SN;zmonIy5qd1kPiZ;0h)IfWJ=xoyC@m!N;Ifq=v;69F;5Sjw<_Ky=+*w-4*722
zK0xz62$|9W<m(E#*N*6JbUTr)E-L-?@Hp=P$fJM~K=XznQ|h*!>)MmRT6Q@0UKut8
z1-Ti$4Zt`Zvz}x@_AQXSjnJ$8y$<rt!0!Rgdn;s02jFi*^{PtRuvnZhyBo);Q@nej
zSM%n0uw4hx7tp+Z$dvZ$ZztA$Tc|e0w*vY!-|3Lg0X71f?*hn_QkCN|2XMc=e4&i%
z9_Z72pF{ou_y?f*euhk``|_K>mg0W9ak%80ofhXi4stcH0?>RXK&F(+ztRKnuTk-B
zhd%A!vyfi_UI#Sa+mI=B?_UC23jcyfNdJnwalV5f&je-zn(q+Elv4Q@IspG#6yIj(
z)BfEK`99!5K=VBUnNs)uC9tLNui{AQpC>)e*AMbwpa{@>BOp^s<zM&!{A*Wy>!45j
zcOm580@nbVZwq8f-TRlomcqZLqojWyL!aieGh9XnkOgSIY{--jq@AH9Eak%uNhXjA
zEm%)o@m4^u<~<eidf*&D^KOJpY5(m^BI~~GO!?8$&o=1Od|yHS9{4+;`F?^-=>Yu1
zJ=dygT(OF!I+Jz|pr=jo&d!YURzt1>)&QD!9b`(~=BGY?bYVRfXG{-Wf;8e30$`F}
z8C`^wA0z#3g<kFN`;b2az63Py*N`dwTmCMrTvAh=`ns!4@s~Mq{w0uC0Ve{Qe=TH6
z`_13D-<rLk{75)IhOXB2Y`OE8K7lqaQvO4~_P-tSN5H3m=KlgRr33K)BrJV^nR<&)
zsHTS{a>|o;et#`_$7RKNkAPeWR0EoKC1gtb&F?O(6*G0`w+R^z7<Hoa+oX6~pjZ3*
z0_5GmYk=l`3o@kx@VDWVRZD7Xl)GK#`iIQ9azLi+Sm|$(FU~s?ayhUN(7Z=MrnFyw
zJF`|q;cf}_^|AY+1sLZr;ctiHZH8X$?{>(K0FMEh_esc<)}<JyD=j^CSxs%_8o57A
z`O(z%U1M12C{2xZed~^setLSu`T9W)0D}NZDX)_kbz&KBc*h&oc--GtdRHXq{RDCc
z@GYSI_#QH)6!{jr64y;d^=hi8OU0ds_!X|0Dp4wDO2pr#+oSt@6%QG9`Eg~<%H^w9
z$x+@&D8;}+aIuV6S#~^Lk3il9JO^mM+8|Tvwp{#=d6j%{r$zZym=pIa0(mk}257&g
zL#C7>zjQV=&@8Q`m11G0?oJ~{utLVO33_#Tza8>@z=MG1eFQS4{kEr_S-ZUv*`|0s
zxpCe~$SZ&o0L{A^GNly$?vs;Zn1ycCCysUEvB(<ihb-<R(0v0PrPZ{fym~i9xht=f
zacY4*I!-*#Wq5&1fKtkO`U_jB2ez7&UFEPr+x17t+kpE39mfYCQ%codC7U7h-;L$5
z-P~{REs^mw^5b?df_xlM2~bKI&!qEt{(IIY-iN4D_H9kD?{Ub_051SKt}j8Rl%jm<
zl194#s=E-+in|bB;?x7+Ucklj<~a0JRLQvb3*vDZ4|ygq2hhCpAye9KeN158LU$of
zq<+m^n6?Cf`6^}(#9I2X=SG{CO8#c(*X7Ayh-(sHB%t|&kSV3`d*2dI&xX<}>#>`8
zIyB;`(UVtHucpz_#M-I0?oR$Axvh8nXQKKRly4Nly%oU);G*hL2y>0{YU$rP*suNj
z9`fITpOjB2%iaHsSF;W8Y{Qyu7|qK5vYv7KpM?A@@B*Oo=S9erQq_0t??zXSohR;z
ztVkYj%D#BC<4x$lpGi683FCmX%;MPX4a2`o=1*a-xPR9`z8<&%pp-Iy7X8n8wbJme
zG^~}v#wO**#|eI<^>!IPAP3O-ln<Fwih86g$+Ft|s_Nxc)QVIi2+6O3I}~pP^y>0`
z2ILLEd4T4<5Hh9xwjcYj?t2YPddio}eA@%Pns-nimoWk;1~hL8WJ)Rg-KR*_V{kEc
zzSiS@@!}^to@4euN0)fpl%0*RL)*Cv^2@-hfVT5Z$dtN`&wt;_g7T=o&b$SU6=0kl
zzs_7C<5|=<Zs#eG8-cR`ZRZBalv3C8gb4$>H2nubO<HGHN;}(NhmL3ee#m!VG@$J)
zg-og2{y6IGFJWat#kSbw+z${{z_?OA3L*GAl)a6xN84N0-(?&O%muW)^C46EcgiVN
z>Zy*EQ#y#3QCdC6zervkCH6{BuEffRm}0)~C%7KMx<yGps;{m(DcMg%%dpS66|0;z
z>~EGB>hJL~A2-8q9hW2gF5_6B0?=`(f=uba>&5>iQAysc87(R<E$~~%<yput0lNVm
zmscTEN>N^P&BOcx3^gqjO?bjs&v>&BhCX7?C!V0{e<02~4f1@T9MHTAAXDl#Ka#Lk
zlwt5=;9?B!$wecUCp`GyqIjF3SNq!v`DtJmpn0EzOes~n6A8y}04DgH^pYT0BmFHL
z5a*3Ro(9YUH1Ax<l)7(6lCl=mUB<8jy?8Y9aWo5naf-eNC={+z<sbUB-}ga&7<d%W
z{7*opl*;dtu`$2ncbB`FdDW<ReFNjXqaaTNrU06EI%G=S`<;xnppo6k&R~tqIRle%
zUxMR+ae{eVtixZiTKe4t{o3!lAm0z{05tz2kSV3|yENu@r@^+I@_nA_z;k$t*E1;2
zTLd`*OaL_RL69kR?{_z>aQ)u6>mR{&z^FA>OV`_KrQaK&-w*xteC!pFw*WT-n*TP)
zl-eiDby7N}$k*!n`r7)2;zO%xf$E&Hqo=U4Uby4Bnc>0x+`i`V#8PA~h&{hwS10*8
zpijp+b1?dYKrTRu`n6r-t9Xir3t_>U`jxAf4=av6)eXV|qo@Gu$|?OvL6=_drUvpU
z!0CYY=Of6Jf?dWf8%|kWRa`WD{@OLw>xLE2s}(mN3M#Inlj&m&kGfpV*5m3tVD<Ky
znP#EwwX$d>)Qn;)fW5@s9=B_#Yh>mKo4JG7wP3vMGV|?pbCx&IbD%xa4%q#~+V?}V
z3weP!9$*JDvCL9hf$g)?Z0yEnV(rWV(`IIGZ#rU!>Ei7)U)x_V;}#qe_iGm9!+~P}
z?bmN0Q}U>Ms))#Z>g?Cyt1$#b%h(l^{Texz4-7)CUCr)iSQ9be<e46y4;w?Jd(0kb
zrq`QkdVBXQwA0-EVbW=MT-~QDPP?*eCwP6}rSkJC<j;Yx0c}^tP-$1;A<~{1b2`~|
z*y^h4VZ}3OvROgJYQ&n>pve+QH?CzrGGlhY?1k_QF*7_qyBLf6nYPd6<375dKgAkr
zg|Rkjh~q$}_68ZR3h?T3Ru6eSa4w+jx(_m??|v=qIa|G|c$MQ}mSM%^Yw4zbK^t5B
z0%L9LUGoL3vvxiE7FC1=Oeeq4%<%TYvX5S$H?sf>3OHUnJs&ywoAd!a%>f>s@3jYF
z1xzw^oE0`lm`mKf*$_6D9m?`;X>$8oX|Jy+ZtnodB|rqw_MQfr(!!{;ciUl|;wbGs
zSZpwln%^jD{`c$*FU;MHTwwuEq1nR>pvZdrV7WYZu8pn6u!x>Hw7|^6yE$f>+lz%f
zy&3qlM`5<zlQZtg$jNrwz3kpLvom4ua6HXhhBbi>wFdB9_fS`CRU+(LaI*Ac5A4)&
z{}S@Q0N1d%A7RLpzFR2mU;3*geqi~m1#;>8f@XG(iADdK+43zYde^gyUB>NZ0NdAi
z02`+FO>=pRV18fI&Tw*iXIevYGy9re<V8k0T;PRSFnp|ax*23EtRCi&G#Pi_Dbn7J
zut%5Qt0DgmxE0WG-vOCY*+J6IF7-;ry-uuwn-iRc^(hCArXqsJ=HGxxX=1HF8(SUq
z%>!>=bFw)|PDE)|{GQ=){(g`nz(hdvH$bMe@NmihU9x-!zm8WsyMevUSUYQxFK3!>
zi!%GYg(pr%p~We{Bb$yzOBmW_sg>p_FpJGX(=jKzc-lm_Z99(b!k>MlV`q-&;iGVk
zvZk_$mJh97xo5n~XC7%^!>|{m2&Dfs8OJtdC$$6bLjD%m3ur&eM@T>FRJ*irW<tK#
zp|(x0sjghTmKGpHp5N#adA<c%PnrInZESS~oS<2X#S^p977Q_S+`;sGAKI(DUcDxv
zmEygy2rbXf$wHmW&dNgToSl|s*%{t+JHzJL9J1SM+iu&%UD;T894?xiipI~Tx!7D}
zE_dac{TSEHo8db{`n6TrO@7@2c?Zx6Xuo!;&-MCY`c<?ev;bUj30%tY5A5%OBL^An
zuD+%ZO#=G4MP^of+^1ae6^@i~BEG?pM*=}W^G#HrYn~=`9*gtQ#uhmhGZuTWFz;ex
zX<u^?PFP+WgmV%ITNK|$=+o!REs$>o?f^93gODk8b6$xasm_>Db;``~7h#9Wtp41%
zkwuNUeZ6@;Z+d2i*%SOTEFSCM`x<3@J)`3M0mvhP5<v6Mg?vE#u~S=4a1p9u;b<=`
zKxd?`ZwA^otEX*e__QgO*#kL$h&j>}rxDWMqU_lWJ{^xcAm0x>1ZaC+fP5hK#KJK@
z7LJo)P~Qxnm1iL)nb^B?peO`WO^QnJOc{^D;y8a0@<gBv(EJsU4}?D!jsh&mz{&?<
z)cZ!ZgBiP7AiEIDvuBx^EEC<0Oi!A}o7a<8e`ID~MCC}c2qWUL^L&T0s|CEeoqQVd
zTflpOwrk{QY1bgtuIF}c*N?=Cg$LKyuB{tZJas887hBMZ4R{}6td$)l{@;lMFHWoP
zyNu%lW&v~M7nnTP<L-$*7FsR0+vmaRs~%X5rG%Ns?aR#T&HIeX^4WPdcaP#`2D)1r
zcG{c~R@C(?SFTO%?H_Pk!J1(9XA{_w?qbpMx1S~B+z5MhK5vG+1-J>&{`?Vgia00u
zGea)8nG+m7+5-n>8ar8Ew6da#kG8T@i4UGFdG|uE=Jf?##sFX_pm`TSrZj1qY#(o*
zn$S)b4Nu@DkpkJsPN6HDDE-UA3IAsHPtlp9AmW^e^)W3^wl&x_B+KU-Y8GXhnT|Jo
zPET)NE95HmP=mMDnq`ht{gL1~(#~dO2em`DLB1Dw0MK?mtUlN6kbaG|L(~fSdS@|T
zaTbN8+GsYb4NQL@CEL7a#p5Y)8ROtD@$`V)8}I{~rwB5o9c3~O`uw}Hws^YShNYl|
zoyqRRN$wVQ6T`Z-0dpNWRb@r!Ok2J|`cnrz<%;JF$eVy`0L}9mWJ)tCB+s*l%2)8v
zb}v}$LvDJFa{HMnO6*?wa_A$1`enEAjUAZHr;eS*$A{cKJVm|DK{lU3-Ku=MZ=r`5
zW@HRVADv+zY|hRfdI-+G9?SN4y|!Zy^f*qwZy+{c<2<dzZKp^1Vbr6YZoXq$)oiIX
z$R6ij&qOD;<vi(6*%)ar#cdAcV}Ke!`|~IDxy~2;3V-OVL<Oh39~y=$E&SWX&^&Bq
zhp>BGW);gr5B6Gy#gm&{hrDb~aZhokc&2!#>~c>rC!WVAerfjj!p!^9G_SSt&g14r
zj^_0lcit|y{gOM+Yxl_W*m-%5os;Lb+h_&mapqfg?6hjMT`280N^wt3<wsA*Q-N84
zw*P#{l%D9)?^?ThWmWCc>d|Z0EE`umqnhOC+SMpo*q!=nhT`^XAP9^GdICcMKM;|}
z#;xp9%h-ku?6TY*bbHc#+33LMnHjyU0bXPZy7O+Y+ri@EZfyMFF?(4hoV$kEz0hw6
zq;VHsd73%2M=!(pqiMZQ=8DvDvGi*X?Dpdw%9p=G4uo9B5J3BNJY-7xdRmv~Zv2|F
zT3+)0oBmzl`lbEzT`K+C4*UJEpZt3h^4Gxkfc9@l_<;SJhb_@4?-G1eOG{+q0&pY{
zz;*Yn>^0MP!a|oH=cpVr16z>Tz0Cn>n62dT+9S*{5nO-wwsLq@CeJBwaa^pR(A~|<
zL(Rj`0MuP3?XH7ey1bnS`Fh|cK->K$WJ)Q^+f1ybpHSXPQKY5;hXXYLhp|s$X=FPC
zyCn87vl;C@l5S>UQRQr#<Md^_=?I0+%;ub9{dz|pi+9q{8yII@M1vqmt(Qx?iz4xO
zmqDHj90q8+uY*h}WqG0~Pp@6OnyS6!n*mchu%<a}v)%z)u^s$0*F@X$((W+a#q3GW
zh%Bs^?do9`x?!se;T~${4&)J6*dAnK|CpY`c*Nv*9gSC;(;wsL@)?^<YoIU(Hyxz?
zAHzO<J?I(hGO~dJK-*shnNrtr<4*M<W`9Ca>Fmb??hFfStRLhWj|*Jkhi5`kFM9Lh
zm=^(FEW8+s*KWKp$~H+qT41N{|2zu$S)dKje!LEu(%D_cm6RXFa~fvgu{z3toU#!Z
zb{R6oW8BVG8QFbNLJF**9ML;8Vcp~w#alEk&N~6}OkfV6c@Kx2ns**n&X((|m4y}Y
z9qeS|Ui4DZaV0I7kBTt|e=GfMhF<OOpCGpaPXe0vZOEy47t~=IFZ?Yi3xYNWh)hX0
z?qJt3<6kUbrPCSE%yQAf_*qy4-t-KmPWh>@1TRLLvZH8xyxvA29|kN0v>h8DQ|hMP
z7O!k5iHK4kMX4VQ<N|Az>|jx#9azVkWgrwiuoilnJ0s1L?bxGihiCci0JeGPN0-cL
zW&zFzb`MXXlQoKZbpK^NLKdLhUM1tz20L{7@)qPDfS&+u=g0~Bvr}x{ZTaTIwt%wp
zc)ZfNi|o7!>j(-veXx_ey~566wo{lEvl5+7H?DAnl|^Lb8tYDJCB`qVmUga#9lAbV
z2Kg4?HbC3?BxK>2>UVZIKOvqo*HzW5U5a7Yd6jF#xJN<7CK@Fj1q=tA#aOkUZNa0{
z7;f^Jqs$|%4D{i%TqDxB2NxOC4d2A9Gvqi(#Wm6{-$Y#Jf|$-LeMknvfVOKfWJ)u-
z^aFMMT0=vKR@p5K<*XR+0fkc-EIAt+H)6kwtPCd;Wi5lUbA*{Y0D&6i2|1%_15!_Z
zKdVQ7o|$bJpE0W^@zh-_?b-@n9j|SW9|Rr&v|Ud_rqni3_7`<OOWU<jJV#r1c&!Jf
z)EQsm@_!!nfTQT1<HcxKJibZs`WApZ5(omCrwlTs?%J1ywTIW$scKH`%K)@5Eo`N+
z7ldi3XfDgK24;fs5J_Bqo%C-b^y+$k737<Nt$^m;4mmaNyxNnK@Lp^s=WSKI#^g9}
zF65Cw37~n8g`A3a!OB&2HPy3fYsAH5@IK7p3ibr@fKnhA!*DI^MdUp$2(moBj2;*|
zqP#COZ9CnU@8n_>tXGeG#<S8bo;83wR32Lx)@c##kAI8Ge`N=i%X=X|5BwF-cJ4kz
z+S#PWwQ7!+<v{1Z>TLIKF^Au2vKI5_TbX!$Y1p0U9N)!$|1vW+oP5j&Cxy+SxU?N-
z4s~(MVIFg+ITRPRj>}^~;@sod9yg>k?sd4w11X(nIJkC)l!=WH(mffFvbfL5^f-`u
z@N5TeL(1W~P7hBuq&%MQ<alx+74SkQ&yx?SCkD<6JcW>OIqmfH^n%ov_j7uC`atT>
z{Z3y`KS%*S!0GStLmJ2jIROuP1Vab&A<jV0AV@=bku%sc1kx}*+!^XAf;57UbcT6`
zLmI`4oe`dqkVf;MGs;s8sf3SlMtg#gN_ogB@r;2K<`JjV6M{6Bk8{GF2&D0Rf-}}L
z4$?$E$r<mN0BJHm$eHMw1ZfH{b0&KZf;5#+!(~btr0INyGu1N<(o8<fneLeZ>0mzF
zndzA|)a*5f?+6u}frmo;;ZWENJQCuqAqQ6gL(RaWA^up%aoGrX;PDWDBIIDa5b~2D
z{#3}}Hi8~_I>dK|oHQF@5BxdAcZD2`FG7AM#Geg0nKnWncrL`B4>?&jf**Jx#M?qn
z4;$eR{3XO+3^_SAG9d6$i2pU@<k`rAz{?@NJLDAD$b`TvA-*T%^t6!;fmcKPwUE=>
zMn(i)5AiobPG1{Y5qLAi-wHYXZDdB^?GSGdIRP8l5qKxW-winfZDdH`y%2vt<P5fv
zC4mn@{KJql)JCQRJ__-VL(VW8*%J69#6Jx=BWz?$;Ik0_JmieBku`xYLi|f=7?C-F
zuR^>7*<&Mn0$+#tHzB9gMg|4G4e{?nPS{2k1^yP|--n#BHZm#jLx}GUIpb|)Q{e9*
z{$t3QXd|Nn{|ND)Le69xSrzzai2p0(OtFz!fuBRXG3-pWkzIi^!+d?%nQkM)0%wK!
z*<oj<jVueC6XqMj&cXI<$mfRn#;`NTo(uWBFh4)+9AeLdd_kCB7<T5{heEz6%r6c*
zhuP(jFA4Leu=6WB3i;A7zbx!5uoptUJj|~MJBQmxK)y1}H-()e?V}+7Hq1ANoulnz
zAYT>cSBITN_OBsd6Xw^3on!6eAYT{e*N2_Ob_L`uVcr~eD(xkZZwT`n!%mgG6!J}B
zeskEVwwFQvU6|hzc9z>KApbthw}zdS_VJMa5azdrofGUD$hU?0?O|t?y&Cc#!~Bl0
zQ)|~jzB9~Q!p@0yJ>)-y`CVbB!CnLT?l9jLcGlV_LB1!<?+rUA+v_0T7v|f;&MEe9
zAm1P64}_gl?b9GX80I^|&VSjbLw+dC9}YWb*o_PakA!(^*g2Eg>*?sxFn=uUoW<<3
z>FDt=e<JLh!|V-o^kkSn6?V>L_C`8-I?Q*59c-q4J{|oz%y)&I3z&T&9X%7~&xW0g
zn0+xFJs0NBhn-89-9$$(gn3)oxs=(L(a~SR{Kc?yIkT^zqnE<`uVLp(W@9TnREsd*
z9d>@p?9FuaN|^5nJ6AFLYC3u~%wG#T*D(89I(j|K-v~R`G5dNtdNa)53Oiev-AqSs
zhk1M0xq;a?($PC%{%+X0iP<;P(R*S3e%SdPvu~lJ55oMzu=9InZ>6J;!u;c~^9N?%
zN=KiB`KMv$HfG;WN1uiH=V9lM%)Wz;z6kR#!_J+|ZlR;E!n`Bw{E69j(b3mo{!Q4q
zo7vmw=-V*=F6`XH?0f0xZ(;s@*tw6{+v(_sFy9+??q~J`boBQy|1s=5$m|_-^p7zA
zDeOGN?1$;-pJD#5u=5DBTj}WMFmH@Fk23o)Iyy7L*GHVknf(MEofY9{N1P{_{S+OY
z6X6>o&eP1^Nk`{K_{NCyXJ+rBqw^yC{D|`mv!A7-3nKi&i1Qq?pQodXBK+cr^8&Nm
z=;)FNZ;Cj7VfKr3bZLZN7I9u;_Fw7f@(8~o;=Ii4-E?$igl~#CuP}QL9sM@KH%FXT
znf)3aT@~S1N1WH0{RSOf6XDlJoHv>M79Cv|;nzo;x0&5eM_VGiIpVy-?04zth6ukg
z;=IS~_vz@S2){Yve8B7v>F9S6eoMsph}j?0(eERCYsC44*`LzUA0qtLi1Qh<Kc}PH
zBK-D<^98fNq@zDZ_#F}FD`t1l(VY?A5^=s}_BV9&rwG3*;(W{O@96062;UZQ{>JR@
z>FAyazc=Fi!0f$rbYFyTk2rs4_K$RQe}q2}asI*VpXlhp2;UKL{>kir(a}Q@{&2+k
znc0nW(s?ApTO-byroEny9*ywFBF<T+eKs9E9^p?!oO4Wj106jX;ZH@Jb4`0A9X%c4
zJ0s3{rhPsg{W-#SMVt#v`$9T;Cc>YMI2W1r#dP#sgg+l~E-~#U9QAqu-bQf(yfeyM
zqBsHmDa!APsuSSdQNAszPJs7B`Mptf0=zHEw@1|p@ct-&AgWG)4@UWps5${Y6y*;`
z)d}#CC~u9b6X2s!{#aC<03VO?C!*>E_+*qn6;&s|r=xslRGk3-9Ob*B>IC>qls_9)
zC&1^T{Q0Ol0lpCBZBcas{7aO-7<J?c@TDmKYgC;8UykzKQFQ`*CCc|i)d}#`D1R-g
zPJpjR`5RGn0(>*d--@ae;M-B&9#tp6ccT2=s5$|@7v=9q)d}!}DE~03PJkap`NvUp
z0{kS(KaHvr;Ac_(c~qSMzlicLqv{0sRg`x`)d}$HDE}rZPk_C?jq<bWkvHem^9}XL
zn{(^=#(I@E=hgG`>s8)dP|q){S9x<$J-@hK<;^Aays2L0&87AHvU-&_m)G+v>Q&xc
zS<g4s%e=||Z9RYOqzM@X>3JFEb5^h4*4vxvb4=T{A6(uamfGJ$_w%*=srjWof2TJJ
zwf%hLe~CH2lw1E_&;Co|zZ;{!mG+ur&;DOlP~JTW7oPLXbD4QoKQ`C>%?f+2_v~J2
zbDb~UnJ4+)W?6+9_qo#xJ#Y8qh1QGMN>W@Gx24Szue0aH$0sTvp8(VW`ug-#$dtN{
zuP!-dO?3k%yvZ9|!-`|K84Bu7!9>x)wduw-_9!z}1Wd1Im8(C|uD0gLK^y36_DcR%
z=-1;1FGJn~yrDR0D0_C7@zAck^Tc+|`5?<TPRqx*x6<pMAJ;np@=RbZp#7?VOsQyw
zyxv|jUA}hJzpx(L#mNUo3hEZYv+`Om$ev@y#hAjCY4ydniykZ2^fI0{hwiX7SS6<L
zR;V|c(xsm*;M4bQpN9NA@FJk?*$tUe*Lf0M?TJ=nhhG{67PpJH;db%ufDyY<+^+ci
zhsN_Y0{LKI9-#R)L#A|^@_(J0Pt%oedA-=Px1fn#V_w2o6T2BN6oGdv3;_qsJlt35
zYo%Fzy)(@GzOLbzQDgPNy%kRTa$=T@naNp}XM{Ni^Ji>3*OgI#;dMVI<MgrJo?+RR
zJ;WYt(}cyRn7PXIVKQDnw%jUW(^#$;M=5t?{5oK-zR$}K!!tlYA)x&k44Kl%F7p?=
z`g3GGb_=0V<?`Rt(|j4Yak-6Q45bN!jhL5d;%WuPOfru$$BMEV%#!?d(67fAFM@m(
za6O>;Z-Y$fY&E}Ck9#KNk5`s1R@~T)6{vqcX~$mhXgjjYUB)n=7|?c{2AR?xHD7YJ
zx)0sejwtr`o>gB<n=fL1;xjHWL9s#nznHxsa`-FTc#Q0^dSC*Y-MgPV*L%1*3HiGM
zGt)9@TE#$DAFp=+AI-!Dx`XXOre|~y+{&?Ys6Jrp`2m<gWvAPDm<5=bWngB5wTZD?
zn0o>1<I1uIxu%Fb76#`?|MtLsKi;76vQHrY4fqkz{<(i8{hQb2zOM9dRpklQ3u;!%
z`v!Fv(UkQp(Gp>_eS>RKMjvxN^HFI#40BNjnhERqw<`XlpkK%LM93EbmjRl;6*8rT
zD!xT?leZh9oQc6(-0`m$H~jCH^Hl=kpq!?wY-6o1<3<;iyj&Mz%(BhV1Jjwynvaoq
zpJjV7{emW8qy^Ikq|I@0YG00UpN@GrR)0hpM@D0wjGHeSkJ|{y5nv*q?LGuDrLOn+
zx|R!J_cS!_)W(!8!ALNlLWZ8pjMp#}oQV<8o@O6OKGvLqxkqFL%4fc`V>5VkJ-q|+
z!@%Q!w&NYhl-`&x<F-+adv>*h%BQHN_fR#R2Mj-qPAM;#Mw2C~s&9svc<QkNX&LF+
zxNA4q8j%HK&S3~&uDMuDcQ7gnq+P)Ual58Mjsiyl+O9u9rc~bL{(!V==80=7YxH1o
z-8Cl4)$zbyhQf6(y8+V+(*x$Axb5GUXAQA)@S2l_nWAn_e=BXGJuM3pp?zisrX6_}
z3_K<)klDYFIkKmBh-a|37tictj-p+sb6i7QJ?tEh!x!dO!H@e)a}P7~*imM0#MswM
z`mtBpN%h0M&}H-h@&N6}AjrZG6<2*fLHdy}p>PD|m1W|d>vp!l7(f}D?(w?PEi)Zs
z{C&;Qa+VG5V<_G_rI&cmg?t&X3DCSZs?Rl_ewDnjdRa_+Qk96ZMRyr60E;|bWt@+q
zRp|C&4m{Y0$dz)08%De0?@;=Q|0l@lhvPmlp!tVFPVKiSO*CcYc%T67{sXMsp6JfE
z^V}Imi&_3AoA?&Xf0O0C#WHBtNuwCZZ|N=LUI+d9KF$Wnmjasr&3_AIN?o5nSh98*
zrpy!#Ur<%KdUbWZc=UiQsW=F?x_*WE2|L(bOq@x3y8GCp-Q3lOYShVQiEJ9{`bho`
z=-2%uegvNJ0Hy$%fA*1*|EFcLUhS<>?NV2MG6V(;XtI9vTw<{%Yn1qZGZQbjTH<A|
zJi1yQ{TWAO=vf8EdUK4K>$WobP0Gw3V9rEq;BohG`#m)Eg<EOviRQ7m2a#oZPBpJ(
zcFu2TUN~k5dQ5j7=G0kJZeY3Q^|*(ZT|Uel?s4}s?S4MXgZoQ`1Jf`O8+UPig=y({
z9>TPvS-3<U;^~`d7qTVp?9uk{e76U;G<rc=fL|}iduGCW92fC+md_i&9pGaz1u5UO
z(?^>j-0duM<)b~#%jC`M*c+JVMwWjAE7;6D7#nP2JujjE$6mrbO)UQsR&YM<=;WK3
zt}N!s85>tM#D$T|L$g><)3aEt1^5ax&o#Ywv$RG#yD0N0w$i+VnakK6Ec>v`5gD~P
zgFHp<!!uW4az`IeA@Aim!#d1$jG8=71*J&l>rUibIS#2@zY6&q;0HkGYtB(JU$?6B
zO{`xb@|7}k-pbY0Vr}M%yXiLSne?v`m<D)pFLejoU>RHOBIMgh%yDp8b?H3YG*5R=
z&zo*}sg*q1tT+E;%7)xGT-sHkc*(9B$o~a20oty1^|`L+`c;<qPE*7-+o*8=qA6lK
zSh@M5$v!gCtl8#zs$kpP<>z2xnD|>gWv6?}N8)JWiiuBIJ)X4kp0dn8+IcI?m6#>w
z0zP!-edM<Nc{|<qJv?u<U8~-w&(3zknQ`WoGz+_9l=P$MXc<59BMf;8FaywjEK;9q
z`}OOp$~7y*OgAzA+VX9nxnbOBWtTByMh04QdW^?sx^ZW%zYCLKso}bSnfNbLQ?caV
zs`L~8-H;y!o&q%gbLw-=t6yXM)K>cYp|K8O2KZxa8s=d4HHxR@Waak7Q;V3<t|&)K
zKF=}2-$vrghujnBE8i2GO_#`aLFmUeT?-b>41ppS{qJ0(7jAGP(N6Mu|9HRBTL&Gw
z{o4rn65w(``>_c!rLOH?;=Yn&gZr%Kw3BsN(5YGR?SVec_a)@7fxjt^)aw^?Vi}J<
zr&!RbUFjXSC_c~PSCA`!YC!vOHe^agUHX>|YwD|NSD#c|O+A4*;@RTqa`{=ycLIt=
zCV;6S#x91%ZwF<VS#FvS;>CS)FaBE=W>xfZY$uIpI<%Z<o*==$#-Pl%Ht_m!O!@W>
z<Q~6v8To*=YY}8hUHfm^uK0G%c>LiiwuK&fnJ@kqi2sL+|Ch=Su8}VzwqWY%F7_AO
zn1`p4(2k?2&UE#2V_y4k78&Zo&2U#nUdG65Z<e1;$ToY9?By+h)XPk_&5`}>0mH2{
zOlCCuyR1BFJx(zz%wMw#a}3bTWP4IkD*bDL{eIX_{_TYP3GgML{o8n~^lx*Q{+ITz
zX!ug>evLJVh84>TV9WO=s)CNYuMBcn9p8hx3cp%yV?E2j<PqEk_w+D%o>gR9c@bBs
z+k-)2#}i6(r;T^b>xFzu^W>S<3H+q~=P~m#R)`r7nJ!Fg$HZ~R<MhO}EFJ`M<9nD2
zy_TP3r{f(PkMH4B;Y@VRv-6x$PKJXgOL`2&2YxgQW{(m`19%#qGBSA>^YwCYf^_jb
z8)qgwBZGw&O{)zB*&k8)5C8T2pZ6eJ$GMC&K*#4n$dtOyQ_}INr|UUdEDe>}@_kC7
zDFQ|SM*?$zLBQQIG>^EA9eDOkge50$q>brI-U+U;m@R)jbDhUL;}Dw3uJTxD)^gnJ
zyPV;i-bcm8<ECpqmpkwvGj}jEb8ruC4~|Fa4E%t?G?>CP&Xs15#zp)24AblK2A2#*
ztkO-_C_C34;5Iq_@L<RBxYEH5xm>%@%C?rdxXW~{M0dIXLALAyCu2CCX>?h?mr*c`
zit(zwTO2P}Lm-EN34o5<caSL^K)DiY&8ZEQFf0Bhi)O?>VV>bdSvrp!8?1mgFFV(r
z+21_E9++X_`2r6*3R#%aI51<7ot1&<AiPfwz2md9@+~tr&D$#@4U;AUA!`nwn~$dn
zZpY|?i@7mr0@Lc5*W`!uBZeUOZkL5Il-$X=crM9vE^}>Ueb6i7nE23txSeVDci~AT
ztI&m6soNQzUSKB8VI9$fWm?|Z_EhgcH%3}`4qBO>X+y1h5qa-5EG?6yd#D?UMT)lC
znA`}lW0H(pSw+0O9S-?K;3PoDZ7XC-OS{ZV(&epkP3^KssCr#xl`L_O(fM&Qa2U`F
z$N@s49^UUVKDIN=0q!2SfW-_dx8rp%H+m4B4|J?tm*W|m$uTVHH78iP19LNba*U_p
zGR`!&!I+kVq`e)m#}9j`{je)BFB%vEXnT)>Oi4e_q|c*?_Lh!`+xsxtI|<m=-feh9
z(A~*i57`@ly_v8#v$MVF%HBq4Z(W(Rw;A^6`rHEfW#BbH+k5yDY44z8<@xwK_1f89
z>ZmtnU26X9u*R%yF7fiYJbF{Ugno9Y4gWUX_|iSbEb(NG9EB$pZI6ZNIJp>4L!&j-
znmw#9@72gGH)iH!;-O8iYg$k4Yh>eH6Vfo{Co<lgFmuE_)6MXl48}-;c=`p?+8D=W
zw9qirDjtUZujR(vB3u4GCy<fLY+jNRrc!l?dAZ9oh4sa~=!|J>MA}s@YYOX+Q=z<w
zLB7<@l5yD%zja)8LjD5y2GDU?Rn;Xfi)4Hf<096B9MGI~rMV@GH6t$K<qLWArhEx*
z$)dP?hwBzD;}T4W3r*(w@5M!ENEMe78JFL7ip$k9E*MBf&_t@6C*#rvzxBA&`;fl^
zz5{ez%%w6eg<ZxMbzI6T>l>=|380|j7<B%p;_7l2dzcxwdje=<ip+l2G`awpVy%_u
zW-=f+U-FkjzwU3H0C_F&8$k1~hfL|TgJphPab)LwDH?w0+EwDQ`uNlJ{oBkd%oogb
z<5~8wX%vq(&oRmG*=C7(Au~sd@vFK+mH*H`4*IEnzX$mr#8(~X|0`rlxfPOkkb3Rp
z|KV8u3{|F}gPm!9#aIXX3llFJ?XN)mEc>U&I3nOhSHPR?$<Hz8p=*}ya=CC(*~9Xz
zG>^Bfbj!(4%Sg+xF!SC!(KQ@TZX7y1-8qCGx5*snjOWMMC77mSKFsWc(W~>}sb<s4
zz(cQRiuVrVId0SI;DLNMlrDBvq@iIKO49hmG<T02D>nnzwmc70;qzTN_D}~~k31xP
zdO7n_PhlWG$jm{1VXiq0J%>!dw~?LXTgwk7&b2uw@!v7$7Uq#ZI?{ERcusAn>HQOP
z_eG66g}=|(G1d`gi5&hiI-)YZ!DaFIPJ_G}XaIEnegm1(&MFz-H`HsV_|6gG?bT@R
zHGgKT(QK73_c3vFi#+;4zAXG%g#5fr;{kJ!JJaMvp8h>BYqG#)4zM%frJwg7gv%Ef
z9&8_mi}egPh~+Un)6|FKaq&T{)H~SBbo<Z)Gtr42HHC*RVwmc8BBlV_nHYO6;l&p*
zoFGrk#8^Q;-q&XR{WfOf7BD<;p6Sj3%ZQEQIZcc=Y%r}M=%$uhK^NMjdzp6<!=xwX
zOk$Jm`Iu^x{eLJs6Zoo%>+#>2yS|r~<h|@HAqiW;7Q((m*g+5?n}Dbwiy&Kspt#jk
zaj9#xYSp^Ltx~lWTdj6cskLgYRcx(QY?WGVtzD$8e`{N7|KD@(oxBhT`kQ>tyXP&L
zbI#nkvz$50c$F{K<E+P*MeVin)a>(c4*0deR{+yqzXg{vdT!KSsaVf$+N<4qbzvBE
zLi*)i^^E<b!e{X+%)hw=q6B_X{m-{*#nd^?i3!&1-e|8F?QaT;+hzL9?hV~iij|}7
z=OvsvV%#|T%L?D>l#PNNm*&%C>R0)gTH3xVkN0Z5Tj?|OSbe^Ix6(cIEc-;%G!x?f
z(0pPf-{|$(`E(BWJYWGJMfO(@bTaR+5if-0<m=>Tz2Lo<^@XG?N3?@>(__Al>u;ql
zbKdn$@JE5~1E&362A9(Dyvwv7Z6;?EPI@VGbP7TntQO4IYgjg=Jgsw_M2^kUlFjca
zj_iOdPm1I!+mO|h4FjJ9OalzvGr*-B=8qrm@7mqB$=iuEB)YQFh6AF6&O?LoqH4h;
zm~*dgVv4Rg(8@4`WEd>abUA)dkVco)Luc$D5T~4E!p{%A#Q&(A@^H|tJ2~QWFMJq%
z-Yekm0DlAwpUX}=I-lD%oVvbg;rb2h!U3=HPdKSojs=1WVR9c1wyG+{oq@CNI#rhF
z;&dfiNH@FEuFzfm;zTlsuWUP~px8+dvWKT|f)bzpV)Xg8PUNJD@SEj5B5=Oxdp0({
zzPu}B1;F@;_j@^BJH6O947bbO0rb1Gofl#qQrN(&A~|;>hnd%&0)H9!C1B+IBe;}Q
zC-Yk4wzcav?3}%Q?%M6!7p)IfmywS{KK(*A+%MvbasivXZg@wf{UDv^rg>c0V4V_f
zvYTT*>NaNEdn)*Gz!Jdl@ie%U&iciswd=CY-K-w5WpmKL-rz-buVdZ9kwiaz9LmrX
z%@wZCd7sR&Q_?dWR7LqYD0V%&z#isy4@&u_Z}g4yk??cucQf>z9AZrHSr?qWw9mgu
zqx<>b3C2C2vo)DP*`+>0*a7KKdsav7oZgg`uRr(*U@TzdI|ck`^0n*tZM~{)8;0<6
z28)buDeGf==rU+Ca-^%U3&{!ca6{)&Y<r(^bQLTu!cMH8>K`2qwXBKw+XH>m-=7D6
z9e5Kk{CxucIr&?FCt75+Uk-oA0<%LNUscvK80#~stBgmGiXfTK{uFf<QA!epGX6C=
zOU=rsac#uctj$@z)`6c6>;Md3UjqNX@HK7gnKEP)R+jTH4n$@5BCgACx)M<YwqPcF
zisX=Ge(2kMAm(EqbWHpF8T>y&cT1L!O7Q;+AB!8q(Nk1Yr2tP0oZP6yVUGww0S~up
z2PHOlkN$>MBB>KNrY0=wQbKb;sCiw~KI@@t__`eYM&MS!w9ik$|1W&4UBe<`?Wv*1
zhr`+i-f%k?=C0CKE00f!XarIj9Q7S>(c~n+$EDWw^4$Kc1GEIhQAMbo@U{7^at4LO
zd1*N{;<s#Tc3v9=J{6b+7=CX9m-1LA^BaMpb~c6U=zg__C<N+W;ZUq@JUwln`WEqk
zI2q4#a?$dksNm!Rqo9CL8IBWlmrnv8mxe0O9izv4DH~S?G=e<cHf{@Pr>M}z9U>=z
zGw`wYF+58+9O^znH9fSy{xn=8TMZi`c@DtuQuvj1aiWn}*+2mxMds<Hv7WNyez(0G
z(L^?N>*hwHQ%#YlN6rgwBB`t5<(=?QH=%1&zLTqMc6|lfvF#KiRw|ufL+AvhDR>_k
zAeZZgl-bXn7V*~%FQ$Lo4t^J~yB&WW?RU)l-k!gCTeqRuBexq|J%kIs;^kU9g*P2@
zD!Nm~)J|UE$n#l3dbVAy<y_yY+ZgwQ)3g0xB={I$0wCpR>znp`9lK*w(}u=Pl2zh7
zxH^v$aB=KLVdZtxg_!*$X)5Vhlsz%s8=+Chd%0iV2Y&^49WecG`nHINTRNHV+S8Bj
z+q6jU2@@!#&X8&6E8*mmC+H0lqG_M{rE6W~)C8X6k8}s;a<c-jf{7#FPOzLT^9DPp
zG&70bNsbRhB`r@=0_A3IIu~VILDH$RdzOZ`zJ!27Nqp_{i<2IEh>VXX@=TrRlIV>#
zFURkt$D?jybkO>T8VBXoI#m23Z_Adb-ETxbvyXfP{BhtZz{vk5xRj3eWJl^3M3&##
zIE2>Zxb%+_Lv5eBTw8a#RYik!H?Jp-#EvV`#?V5SRXY7f!C0$uR)s@+>(+>$n(f(s
zFadlH&;S^I)__YXisOnIdj!Kz%)_y(wn#VN4m=Zv#`42v|3F!9Gvkyq^P{HJgR$ZW
z?IHR*EA=>CDN{~MW5mZE=u|>S`o+(|KL9=i3?JWZiuf2F$7xy<$3ZcCwC@))Htbxx
zCfhA4TJ$^a)tZ%Qb@<vNe7!_p&CYwD`b}Vc<ic4h!>uiG@)?Ix*p%d#+m${mX%{`c
zpYR6Q<1<b-ofu#b42a>?n=zO(+a7kg$Nmeyc~(@cT`GdS3|b;bS1PBcTjeo0qZ6k?
z;gG(Ny|Lr3^4ApGeky^Hh%6`VLcn&rI=u&Tv|GfnUyv%}$V?`ivLQZ8p5hJuX@eH~
z92Ot%`@RGX8|anV!~C8)&z(9uN0!sRE|Y!DQvFNETWPP?1JsG$5_6JzuqkTa^p5Ov
zR|`G|XaG$6UI8v;O>B1(m^gCrx_{N0({^lcl8^$SpLN*8a>H9N^+R3Lq9%o}_@RJb
z%SZCq?X#`7{VLtZEArA_KI4=`g2=I1`iG-^PLQAD2gQ!I{ZdAb9KT0?zx*iPj5}L;
z>AT7~OV8F7bd<ekL~^_apGH6SU+}JH*j5E#<oG+dlv`rENOK;1q<*q+{nl+*X*OlM
z3Z`CHM5bOBxi3jbx((s$7bGs-K6Pu-x(`)RCbh-s=Ey|g=Gi$(I*ZxfxOtrOSFy83
zc`Gw>FYTxVyRm>(O+jwBA9EQcdMBK&x`a=Q<rVY5jLs0fpo=c>JSV-`UgB3q9WO|D
zJM3M`y->+3GisWhs^=8t*p-;Wq}<Y=hx9M<D4m3H0ejyZ!XPlL<+x=DdSQ~YnA(hA
zEvuQpn<<uO%AZ}G3UYGC$sh<*(oMc@J6+Vz9KB1nCkM`n+PVJBtUhEJ_-0@mVA}ac
za4Bm#IS1^}U+5}M`pdGKnFX*fk%K9k6zAb9l0>hfS$oQp5S~T3P99q19%A?4a3YwK
zm(O;k(Ya1&A3QhW?*R18Jo5j*-JRsh01STx;8GepS;x$fIW=0yNH^Z2ULnQ}LETah
z(sO^VF3{HUD*dZa4|%M<KdX<lz7Wx0N&OAfFXPn?@biIPfT4c{xRj1|38o)T#+!Ic
z+ldtPuY!IKl=moWT@_}Quz}2Bj2)?GPfYhU>NRx#0$y<zd3*pvx69da|6d>LUE-^u
zd+J)OY&NW((X@3Ha`)WlU1-1LseRu5=<<c|&6oY~a<K|8JHpp5@kUza?gDGe(4c^h
z=wm79BznmPO!Z>I;dE5zr7lK~M2yC~0JV#aLptX+&e_3c&U=IWpr=PH&%PX<@lQ_g
zpg1{IFG_gBPY6~lwa?ETs4Mjh?aU7vih{Jm2_x&4KoKRt)5GkM`a<PjMcgX480eF5
zT={H_UgXZM(Hk(TsdR(D!Tr|7kyn6`I3NO-PLE|JAJ)W!sN8d~s~{Mkn9>YQ5tYN$
zWpm`CVVpc>?pNiPDF2Kcw31ug2bHJ0vX^(=1rqG)x7wSoYwf@3;CEW>aWN>jZ_!?b
z#BHP;xFqTqJ86Hj9{m#d&A{z|xj%i*iSEzc%cJ}Aa2$uq+@Di6oNDgPf&6QnxAN72
z{9Ej|@}=qbV~vJ=(MU#(Zis~2xodl+tg*cAY*MO&{skq0ogBfZ<Bxah@#S4f07=3~
z_SfC~o&jFIc|l;ig*2U$kWcM2zQTzDJ{uRL>U5I3W#=8wBA4^d{_dc#jd~UgkTy#9
z4Mx$%y=Wv9D4b;9tn|BzFtmS-bsBpwkL5?cowSEM7gvFQ8+Z&b@+Z!X<bNgBk2l74
zct(EG0q|UgbBrv)(WO2fX-_|mE)PeSQ$vmFC%lno=0CpGZ1*PipiGBDx%Vg9tkS$e
znN$yS#>_j(Lc7HCh9d47jBn{b$%HqN23gt1F0%W$^|z~W0Rd#`IQ~$4zL&|cc)RjG
zafqg&$A}_+@70lfOX0sVmTxQgjlivdk#E^~k$ijO``S@HVzg~pV<sMX0{3>k(0#J2
z+S|42u-AuF_|ecOyT(F3Zx3}ceT($W^hkPUh4g`<91c)>Ft~DVMGUg;97%P@#X7;+
zb#S`gmS%3r#l_iS9h;dQ%ym-<?741Ki2>d~FSPFx?F4t4STrn$OZ1q+X=%)#+8{R(
z{>lwFtiD?57UlNxdZz;SE8@xTo*Yc{y1E%2^lok$2i}X*H6F%nJZ;(?k)B0B8rvOF
zNNu#>AC>;K(tkypuW8V|Uyj;yH|=Hm%Xh$^1zrG5dv5(g)SlB$j-Ho>SfAY1Up6;Q
zkNU~$cGxH0PKaXt=juSNb)#F$8n|DYfUCN@)146kEuT)7`+W(G!hD)x>bALpr~0we
z&mE!1Cmef{I}1_#F07o3^7`b?5Iq%<XKinMGAA*Ib_OSHp_k(xmzl&5QT91*@zlg9
zq6$d0uHS?{9}6yb1O|CB7!}!pJ<18}+^#_tX393z=g&=tAxppP1mAIR9n^i%SABs*
z>{DdmXQ6&`)IQH4e`DO=UIqUH@MplZ&x-S-_HmX)?bAK>S7_HhRHRD}sPE{vByQ>R
z?ptB|+!<IGdjn{nzNx^@<YjsU#VkWASiB^IgzNO-G^~J*foX!gFX-uyO5~!-#o(Yj
zA)vauIg>=#qM&>#A$eD5w{HR7@IfEK-zf}r`)ECirbzY<s*h7aVs@&l93T9JPo1&$
zr<^vZ<JBaQbl+`}oO_VN%xh18zXZGj7&$)$mvUWv-r4cFTDQ4ripaTF?T+Hc{Z+}~
z!OzuWj`dt9XJs(WE5V|Yxrh7iIOCn3{z!#_)(LVa=gtU<WF$XVU!|PIYN0wex(!zP
zj)=d8=InF727EJcI$-!a8(d0f=j+jWBR+sD+^g0+sRHX2b-q<nuBUP6gTiZp?rV(I
zs3)fT9Q9UGuZ*W}fWHI$5ioTB4ld>BbfbeQ$ZnEodatO<l+~9&DbPjc<<R94mC8FK
zdF#KJ-KWk2Ukoe*4BeIBQaZ+EG5v0Kw7`gx$h@MKSwqY92oY~E(J#3)$8>g6Pd)XB
zeBTHEG4MQK===g)$}1iGRt%kJ9TmyP&A*7dE&|@Gtcg{6x$Y?fo|;`oS#@_s@>O1t
zr8^va0x$(IbmxG7HeGX|x>ubS(Y;-Xt=NKy?#b=w?u+T(NWEr#@BsMJz)t`}ciV*#
z-KXR6?t$2U!pIxVkFga_MYH{y{Xeam?LVmSvX^&B#J?|Lojq8WBzxy13nbcjGS?r8
z9w22`C41TlUzan{+qoW!--3mV>3pU0IbppS>|&)CsAb+9Jx%!pKCyA_U*sqJydIu2
z-(TQ5DbYL1Lmt>U#JJ{N@n(Ie!Zg2%pDp$|B*umZ8|5@MJEb8VHy!>A54<~7(1l+q
z&T%V)6Wr1Ta(nKuz2jA_I#qvYJF?XaOY`pNK0QZ!nEl=x;O_$O1E#(H4lboLyRXxC
zkSFE%4NdE1aA;M(Qn%ATURD26R`)9XVz|m~Ks_-}7?INa^|=4<LNCgD>6gpFHv)}-
zq5Cs%DT_K8k5+~2`{RWA8bf}c`o16TCoc~@h+b9i1=heSq9s+96_m0dc5(??*PXNN
zg?eCSKv||VzhD%RWkhvSrY1Aoma7p&pJ71u8F~qZ;wER825Izd8JFXypscIUS}vWd
zd#dT>Gvt{@5A~el@t%Nf$4EkhKCGQ%?4I(?!EZ!z)?Ad`=gj~=9#{bwInM!?va*Ap
zq3Mt9<&-dTM%GsKbDA0>%UkvB(0f&)LM}oTpv%1_EIBIFL^-Yr*2vuHR;ZBMR;B+C
zX?M|o?TPO{^v!+v9eCnm+sXqBf4we=_`5sSS9IL(NBm9SzIs*T+BL#pG#P%)4kyE1
zMd9VA(bV_=$2iQ8U*RGg|E9ZmXR?d8vB%P>0wxY8;j)k<h8e1iq;H=jTj*#3f#Vc<
zj0i94nUTq_pY0Q8XCStF1!x0&uj8-1=+_(>#=oBIPZ`dylcgu?CAxQIPQ|fm279X_
z<rDR1I9M`gNnPn+A1kGa`Ah0cC&>dk(OxpGbSe*3a-vN*^Z?_!+$F<HhoLL#I?-P;
zzH}T~%7TeZdrL-_j>5E}WMXQ`z|sLeD)xzkG6kvpe)N|aUZylzhGr{Kmc%`?tWM7$
zNKU>Uu8u3NMSajy%~aFmq(Rog7i)ck#)|c3o0p$!`qmH-vLFp$7i(VbYr|M7#$Wu>
z2D>S|#f?uy_jfn<uaf>H&)K8kPXJE==KekpE~PWO-tY<Io))g0b8^5<TW1|0@ZJ=e
zV#YhYWLk~NftX&|rP*<R5co)79AM~81((u%)cM9xWkfkQ8c=Rik_13+muKswcH@5Y
zlaZV))LT!zBIg6(j{x5T4Be-|rF;&$i?&W)ICb{yXh6%7zZm_{VdSmKy%GKNm$J`!
zKky;INWjpa2ri{FeNHsbhH}SGQDL(>^?VsiFH)GWlt(#V<~eK|rJg-8-Ak!=H19?3
z-QatGM*u_jad0W0lWtb__T*nZjJ#F<!$|Jnvg|sh2lz-}9AN052ri{Fef!i^Tc(gH
z{d5_~rNtYrjZ7U>!+_A_K{fdEWw5wNvjwd}hgXUX21j&$ab<pSK9&JRrMhdro1Y)L
zBTnV~COY?Rcq;Dy(65KSw9n(<p9pW4XZbtsiip3?)<284gse?nziL~^-h&#p>SLH0
zUytMZFX3B0*d@sK<!AD4Lwt>-_*Sm<rd{QrU+_@UB$I(d?974|RWN|?pUT6s>jstx
zX?BcgA9K7k?oIbAy-(Fv<>_Jh0Ao6@LxEiOJ4yRz@~xZU{q-u*Baw%$$V)6k^S#d1
z-H-Q{+L-p*DYjB+T%DGnDt#&Zhhu}e;9(3NcMkuY?<aV5^Z1WKz&+JlpAtfH@Sk+^
z-D-cdyG$=fC3J=I%IsqI(Xg7kBrK7AyK)B!7xyUJ^RVB>ih4-&p2*R~*z@P1JS4W#
zWciS*laLQ^XPPb_@avnE%_ew+yyJR<!bXaN%c#Zz?^<QErJf+~A0olWu$)<Lsa`JJ
zx#3~QPi*JGK&=X+<<if765aP!?rU9q-yf2Dd?h+e!1T+9z@_w#&pWQ`aNZH$ckVe>
zgwHxJX|+$^WQUg%!`G*A1?98j!`JEUUayRPHM8AEb3>e0d7PiiSWmcvodPePUNFW<
zROWe=$-1&&oIkN%r;7>-6Zo|yf*ce<d8Kwyf`DsoFe7(XZa^X%g2ba)b2Dy9KRpGL
zjr>ABwTs0DYoWhrM(*hDCruchPjVASj01^!i!Y;B;JR*RR_+XUMn$Dp=ZxTqVO1dE
zad9(16~}IElr0KtPD_#}IkQS<5HflOKDIMtHu{NT9jE`PoD<X)%BfX5^alS$H~1h7
zglQdkIUWbD%FZ)g!OMXvK#B%Bv**I8rD@fMEuxDWM&k^#UhqoTKn4;CRQ|W}=TZHQ
z)MeJG7lK~_v;gLQ?gp3A**f)<?Q2(UTfIIGrn(jdc|PRMvJP;*oG*(c1{Un!2(3ui
zL9yuC7MgWgtug(B)Nkn9SKC$!NCSp`4fyAv9|uW2C8mFd^(pivERN78VnLSv)`))P
zFJk$H9t30@`y%)gz>fe!KhYA?kNdF`=h-pq$l2Q)NIfOSTB!VH{7<YWi`u<@DN_4g
z5?$_zE;mP)5#jIr|AmXTdpzqtzc+TFL6GBgcZze0d*tY;%nwO4GNZ6B8K{$l<Qu^_
zHI)OC@KaP)<s@s!*GU56jbMo+F5OJ$&Mu{A+N;r%>6v~nnc4Awel?PJCGr?~&jQ~C
zd<ih}eid9w$9SSf-VNJlZ<)DmRpa^%tLJXm9vZ2wJQJhjE*#^&s=lqPn*(C_21E7e
zT-qHAC#Wydiz6neH~p)KkN09a((WIDd)MF>1sFc+z@-@b2Xk%XqkXXYugcU=8_s8Q
z5@#eciDJxNN|Q+}q~}~8jPu5|1evRY;+8;P9~67KC4i~X>@eV}^0kPcozN?Tp73)$
z_$|O4fZ^vJa48+<+jf3%hBad_O`j;N-#jVDdQDwUnl-?xLl+$-N7@t9JxINVZqBu|
z0niOFbSuE6behNT2vkc~HgQMJJvj;GYsqL0Shp)8BZRw^usUns>v8|5enbBX@Gk>j
z0Sx_{!KHi-x!1HAG(_5y*U+9g%Peb*lTF`f)$Nb(KlK{AI2l+8AQv!n)8JA*Q||Uu
zC0FHZYN_Qc6{=;jif)PNEu}s~ZwL6fKr>+IT?j7abI557iRAt^ObkgLF6hCS?mp@@
zbpHhYci<zy(ES&<l+Tp&5UPg@+VDoyuJzYt>74|=7T5q7dYizdd=5FqG;-?twV~@-
zVS{Akd`<1JoE@}nHYMl2nC@fLYvg<d{4L-ez|egUT*_z4c?i{&Q|ZXP!j8O)M+mS^
zBPl13@5*0C^449SrP~00Ja7VF=$-^F<!Jt^qb1vS<OLerh=sRS@^QYVc3RF(%bKnS
zMmo*|G2K?`HS#_I{zKr$F)f*w%R1;CqH$vF>9r>uk=lt+I?-}YwCaBo$rap?t-l|5
z9WWd)a*YE2Ou0sVe!=#}bazs(k?SkqHv_lDv_3<wBT{P<EacX*D&LHs|8{h&uh^Ck
z<N!v#Jn+wwZ|JbY{ElBc%<nj+*Fb$nu65uWfXy+Dqsw&&l`-6>F_tsNIuO^pr(M0z
zfxiU&0x)vC3jSGg3>gy15iVj18<vIru7m&d%D19+E4wi(M=kgeU<4rL=yDuFWi)b(
zww%#cYh3TncJ<y2eg|+5VC2{hF6C&?(a11Sb@(71@)U<DUOPNVl?Nhu4pOhVFX@|X
zt2<By7`lDHrF8y0bwahY@hU|q7s+h<8p?Ic0jwQuscjF$^c$()(7zJ=t3WGY=>Hg8
zit&#!d6(8o$`69w4?YEN@sYzN;c1u!gparp*puBK+LO&bKWXh(H)zoz<_8?&aXdxv
zEY84P{2jz7Pmb{dFTYD@I5du9@@CaO&Y1OfeBW<I{|-~KKA8wU9heOmJ{N#Xd3b4j
z-WZ=xcjVJBSt|<9hE;1s1{v+@Rt*l|^jz!QCD@H}UWThYx<M{cX^#15h0bU`5<Z>=
ze+76QFnmn-YQ)ED9qgDo@=?>@aDrc1m_7wAob&;k75q5>4$iQ1rHcV^ikywzbP)ly
z6V4cvl>{Zj=%y#hT`(UlOmrm|33eUWJYXAHmFC!hg=dkMklZ8XWGCdrnNQM~+!JVt
z&)D7KP?HZPf3}~CarC>kvs)x!UVJxd?@N)x>~kLme;W7+VC4K2xRl*-d^K}^`Pp(V
z+PbjKacGaaScm32eZ_odzj{$y-xPHiR)+KK@O0~Ry$nVBd|5_^W##W9{%UT?-iKqr
zHv`)M!`}zsQa+v$^#>CN?r{FXPb7j(TL`s%>Nzje_g{*>A7ipX;p^n^b-9?7?N?7E
ztQTOkIGO9@=Ib<P@Yu)YCdXk$d#v8b#-y0|Zv{Y-!y8=g@klLq=3>=xq2i3Wu2_y*
zgA(7ZRs_6~!&>yf=pq_iO?(!triq&6`va;~ncF|SYj)D@ZRZrDuXP9YmHGcp?Txhm
ztDF@!E_$O>KF(2Uj6T5}hgg+=irT5+*6j1W4g3P&62P?6x51^D=ezU!*w#){H*MV>
z>eO1)kgLUP@cA%w-hM?@d(cAVCc7mPoTc^l5gb^BIaom0JYVI+pA<%Mwpf!lsX5LF
zxw(7)9Pw-2mgTn}_z++uVECN~E~Vr7WykwEb?dfmI~tp2Z^1S^bl+^tjf?`a3H|4O
ziFooM@tHQt-fXa57H!d1{w41J&{+x{dCngIe;@b&Fns*+_K1(A@j0J4zv#$E`{$gc
zI%$%4&arI$i*vPDw%)74%QeyE$Jn;=;hOMuRrvai=$qQ`P2Sa<67E+&$;C5hupA)q
z+;eu}<91qhx$+)Xc6C`#_g011XQ9n0Kq4>Cu`!+CH$nID?2}KluTw7Oe3z-<N`;fA
zQ#C+$>6%1C(E}_0<gF^`8l2)*GCo|S{EO8R8z(PLeFzxgxrxM?{!TtgkV6)qBs7MZ
z#4>;Rf-zX^6xwB8P?)r_#}-=2scx>{g0jt><IgQWflANC#wQu{!bj+QY&FEHIFTT&
z!2&U=z}ay@BGJq5y&!`bCb1U$oNgXb*zNNPscyUOMQYV`YViGve-rzjR>!&DQOopK
z9qH_KA4d0UbZgcQVFma)U?X7e*A8$g<70ou&vU<~nft{7bxU|ay<dV_i8IdH=%jdC
z+lj%!n2){CsfUjAoA<&04g3!<d=%Uf@$p=I?q&QdkJfJ@KH5f2a%TKOKZq@xu9aLF
z`_=t~+{6@myTnR84nH_<fpq3`F~M!nC+S)_n{E9lYNwSkec|s6@GF380K?y-@%N^E
z+VYxrnD66ANImzt{a<p`KKG|OysUkRhk3uc)UjUhPkqQ677Qa)(~=v!((AqA8$5lx
zWWp<qv*Fz*VU6Z%0&Of;D@ZWcTbSPSal~hEXLcMI4n7H(1{gkPflKMQk2|~_4;u-x
zj@+e<3t1vf-<q_3P1a2-0IXTgdg)h<|BCo%fsR=pJp%p%U@u_!_!0P#_-LmW>B!Rb
zxG81X5$>P&A3;&DFQ%WqD@%VE_*h^fVCYW<m(uCJ@~G5hAHDw&g+blFBe^f7UL*Gd
z;12`e1q|KC!KHL;|D(tqauPa7l{V~EL_OTE-ez425bud2icm3B`Jedy-<_r3AAA%r
z9x(Ll!KHj|x!X}+d7s1*yG60D-ml(6K?KkPoWa-+aqGj<@=1LEp<~v2cYr?tJOmg%
zegH1zuye4pIJ(}nsaE3G#8xgV&w^?X^n`CpXX{Elx75jrFy`8J2gBB|8mr;IvHbUB
z^}^l2hXJDjL-%BGDL2OJ8x!Yu`=NB_PN$cZHcq0Oj{$C!Ex}O0r_aBM5oowBXYE*n
zuaUSs_Edh+?0i{6jwU`0PLU2KPGUuSyt7fSS7QyE*4|GeKKH=KO8AiR<j3G|00#iW
z=lrileAdK%_pij~B8JZ}zQeQ)+t!9UWG2RM1mRS-GJH+Tg!iU;E<wbj!Cs}SXOvAU
zorpKWqypWWMQ)x`#_@I@&OmN)5Plv^v?m1hiAipc3L-C#9$?qXY?G6h8Brd7?~W`T
zq3bVFxM2koiYMB-jD#zF*^w;l;`caZjBhWWn4XQi-&4-Vw%)7ksor3{U&+K1mKJ+v
zc-<Y#C31fk{CVIdz{ve+{JrtJX*PZt@%@qHscW~KA$RA1`blKK(2O|)mi+2ZgmkXr
zux6+j^b!@Px@WS2gP3GZ-b6Cv6ci^*{G1}v91X;GR>H)=+e}zxsL!{@d)01|TAJO6
z&xU)m{b(ilPT)Mi@Oclol%*ZwmYVxBb8S=1X5*upjx!P%1mpvK*;^h^|BnL`tX#Td
zI!+FCXA(D~cQHB9!_$^(cNF`LYCrA67F3+GiH1B=^*}KnwP>>+@%b@)nDHjDoA_=(
z55Vxb2wckCn9oXMPa3!9^ety>*tS(%ROv$(MT@Iq@f13se(aEcaUl#!iud8V5dZch
zo6xS9R*bOy@R+KMsJ*f+9nZDEc9XTam>P?&ZI!x5dDGMhYGB;+_a)-{4?m6YBlrJl
z@ZSQz2MoW3Ov+LYZi)6Ety`n3X;<vQHcsBMX8O*xt7mVSx_(2LuZ!T7|J7lj%I|ay
zFU!N%zE?X*>uvRR4{PU8oGwycSuiv?K^G#8n}g30HeFaC;U3}^7557U_SfFWw*OCi
zR>}?5VNsmu-?MKjol2LbQ++e(+;s79ULVz&w{@l@xZl>h?R;k6f_rWK9Ns)7IIj#5
zueymrZLqO$cn&@>i6r=_oFuiBNGR(uSTGZ=N%szduRFngPMy;~hrMKGgm$~~iF+Te
z^=>cT^_O>7I036mw};?w+Jo@4aW@J6l-=9LBo#L+I=a^n>ojLpu#D5^E0lbFmHhPP
z5WT@3=p;@FmgP>EtKFx=k3J-UUh-lUyllHKf)3Fv7<H}u-z$2u&Q0Y$7yhi3y+<O|
zg<p`IM85q2k)FwRBIwiXGFg!3lZZv$-mN*%PPvb3{VnZQP+=<f3N2qWM-|=@zS)o1
zj&e(&A^-Y7_~DystahId(f1U7^2IJD$!;?D=ix`+Q@ly#z8$`~FM9L$@XanY@oTn_
z(7~nZ7{Y?!`H+{J6I>O3c%4e!5F#`uzggjW#h82dVNmd%w*4R3MW+UvM(d2%FQ+@v
z>RbY`4XnuR=k}1!?GC2<UL+^1&MBCo{npMqT|Y$tVXvl}Pr!rz?jp5HJ?pA3sIMyZ
zW2MegE9@WG`uwhw%Nr{*6%WQy?kuamOVr<Qq(7T;%5Q={0sIIs{rxR)DTket#?Pnp
zcj@d68ydsCV`C!&$j@Xt>dGkcw)zk0CRtaH@Ol&!<&W^{Il&f36l|#MB5{D7sShZ9
zOxyHh?d=-zRrf%4ex41!5oiPqU-y7ZX<QXOf6bc@eGbo*xaqT}9gDpgnjkqY?zzvo
z(S6BL`<&|Vb!@xWikAo&`?k8!w|?yo<#-ZPi(FlT4uuD>uf9dA;v()tFq|*OB+GTB
zSA%iIpd6sMQU;V2&JJ#1A1oyFDE)?_1G47{`D^GA$zy#Zd){3JUJDEZj64g$r92$_
z**a}`(4+N6D9^&RO~kj~(J10nwBY)3wXIt0QQ_;7t8EeCKF7L^ne8+^Ok*jI)@W#Q
zJQHc1H#&c)=MuyQw#Ml@w4SIgmUF`9%80*K=vP8t#=XbE_XBSMhClVqh`*pdYG<>L
zFymgx-{K8xW^P#1uFWf2_2S#LYSk;k*H=iB$(vtr5neAs3kI*nd5Mym%miJDZ{Df8
zKI!_EUF4eUhuji+>20N_tMFLUO81KRZGfNpnBUFd7Xp_8hTq4)r8o;Cew)nscHD2n
zsOt?)+a#uZv;&hy#ozE*OkU6pof^Ildx<7`N9`gYt*UY+<1M)%w6(z<Ft;$(O^+o4
zdIqJ(L<U$K4O};s^kt_@BTr&#+OND4HBa@z{3z-TmQ~p&;y?XhHr`Ah@PR-bVE7*n
zF6GjW{&F$@p|WQF7J2mGyRdQC)&NH55pi{%oB`(>4QFFaubKLc-R8C6F9ELrhTbK6
zB6<flMD5l4ltZ5<^PJ0rwAcBU^Q5ENF5gq(JL1L5hdaX80f)VoJ;`kMj=DGBx{MW2
z8D2nvlOcdYVt6n>CchE*&#wTM5^cFm>ES`IvV41Zke@y^*iySFoyeW<FHPw242c;p
zy-cUSM_A^J-<2>`I(3l>F2<SwhY1N}T9o!vm<ipY`V!hEg}G6y>Pt+9@tG7s<|+%^
z(ll0=l@6XF+U+@d#NZk3#&YdejxHaV;aXcWU|{h;pTCSh)Ez_o7<rT*SI!*03Wb=r
z+PRcYtn{NAA4Qvo=u2YRQaLEPukX>04cs?*jy?qs9^(8LFzs9lE@gd3`&iR2n^tXW
zYS^}QHSuGlL$<0fg(lMPpm?_qV9~Y!pEvk9*_jd!n)_n9E2-D4v$lYr12hAM?&aW8
zI_lTV^SdGP4?w}cUHtU>qDlKbar>>b1SnbQR7(dI9X`)PSXyc$d0(SmL-!Bh{{%h(
z4Bhf?9i8qDLwJw+UF7kZCo1FLt1oM-M->4oc$_qm*8OB)`@ISDfF~7Z7bug2BLdFH
zamV)zj`&#*J+rU72>g2BX29_CAh?tlVt+8BKQ`?!g;WCJ*pM9<<TmU<WBi~}WSAAN
z(D&3E+FFC>vBbz{eC?^HqODsiGr`Ha-r1;TwoPd1ArW8Jx3lwXH^G5HfZ=N#xRlQ3
zS>fxD;Yzq_Rx9OZ_2Oo|N16&tQoIag%{7P+NANN{Qh9{+?v44l6gsATZUDa>xEnBh
z+z&3LvwiP;++-nL*rHConwEH9tWDR&#-?)!R~B~<t6^v)_s7&%Pkr({Bp)UZ3Qz_Z
zdKKVO#&?V_5kC)-S7FnJEgOYqt2#@Jd*8<*-1<VfZj`=we5|QE7}Hx%eMY`B!JC1L
z07LI4a4CB`oa31LfBdQqO~WGrcSZu<psY_(C(C-=mBlFz-`!>9GS{g`+LmFFoCm1a
z(ESkn6QT1+mTmwp<+)DgPm!~2yNoLP#Pb6L-D&+jr(7?R!F(E)yj;@5BYF+gXVz`2
z!8Zb10VC&`;8Hs4Piw-h`RpxWy5?rJJS4Zn`Zwf`6LNE%o<h!QiRta7K11(S@Hc_C
z0YmS7@Xw~VVD0KnQUA%3ydc$qWLQsnL?q|v?_}xD178N51Q@!Tz(1Sryj7cHy5ulW
zD@#$<ye}z2E`xS0A?(WRGI?OeI#W#tZjI?bM*T+aXTV<uUIh&O_rZ@wzinN-m?iNs
zEQ$ZDo<h~kgPNl!V-`pJUG}R*`A|Q`8KK6Q@wIVeEdQg~^SYVf3xMMRLw_T<l*8g|
z#?Oz?A1Y%-qcE^2WZ(s6k~Rh;l|~x_liC=l9~IGmjQY!{U!LEefgb?g1q}Uvf=lUa
zUg3;p%ht9t8b+)yhv&zIGH$sXBL7vrC~*g5EG;D@(TQ#msds3M1$tZ96zS1%J3N+M
zFU<#E04xEdpylgyowSgUc&j$mMi+jnph$#Ku2HFs>u;qlBj=;w&jT+3M$X@YOX*Bb
zL#OQsv{~Jpl{6Vjx?fp)I9x1ilQb!k5;IXG9TUk}^WE$?G7@|uFa<Dt%mtTnv~fg+
zuV@7MD<jC$7+a1j>(a$<8$;y(n`3%6QlA;O?gf7k_%>kZJq|9VGkWH5wH?8Cba^l?
zuS@Zv1jk151>eig2W8;>fLg%Nn-4B!MXU#E>Y!iS%KQ^rZn3qvONZNu>%#5CLG`w6
z%^2*AX9?Lzs4FxcjF|m6axDs>D1V@=7-l&aD(34(`<&=WKR7Pps};Itef%)^kAdd_
z!`I)yrIf9S*2UL#(07VHSmr6i+x-!5tub#O+1C1yw;+=|^@!ZD&NLjNGlxS?eOOl>
zoDlI>|NZQJnh$<5um&*vT>viSy4c_NidcVa=Cw29d5u`Jd!rz;>pq~{9aPV0>oq#%
z8JKRAFy{Be;VEh`1}IcdG}(p9*{bKt_(-Xr6!EhUdggg~3;eIZKLEo|<_8f!ojot@
z4x3L451UWAI%Ma4MgxKq)-ooQ5WG5j|M(yoo)b>js5T;I;HR!W;%6oF0^Z9wwFUeP
z;B3I~vkP2GXZxw?J2!~YFWq=NQ{h2%Jdx+hB_^WGf|IlRsg{`DKI$`e6mNn575E2W
z=w%*{=rwk-e_OYDOVcI@vcUhs?c$fWTHNvustdJsGa-7$hPR`8huaY*o|~z^)lUA_
z$+7&<Gtcoh@C$%T0K?Dy;8Hq!j?o9NL02E|IWCKQ1-C^!-KMQS`&CX}azw~gMSHGF
zbs0JmCmgdIoTuCLOM9n8e0>bvO6bac@tz>}6VMefe2oT|a+tq#Jb%sEuqkY&7PYZ`
zH~AC!(UMg}u<Ep%%!s<lo~aQZ&CoIJa~1e)z+Hgh<5_SiowbiV-_h+ltZlAM{U6$9
z-?WII^pjbBD!>N=!vVw3Qt+ek6Y5(!Vd&}f=V$2P^oXBU=$Zcf5cm&)X8^;`JK$0t
zh{qRWPh!TGaQq9GcI=fdkM>IIWG8n}c5?q_8#(Rp&SOTH<D5-qfJx7c_^I2Q?Kkz{
z^MOTx;b$ATl+OCi<{eu$uR@WpiHOy)=X@>md3sJ*JrhR6&tB-6b>K_jZvpQBh9B>T
z5kIdqMDxRkvEIqF&)n@z;ncwRdmtKr&;5YC%t8Fbtt*PF!f9&;iaMFLy0#nk@^ZV%
zv^CaQ&AQ=4z1kdDHP4RtS_)lr-`0We0L}&sUpInF>1-TYxOT1Vt&T7Z9W4Gl!%)jH
z5g!MjW7_Ah;GY8aQ&~RxfJ^DDeHM1!JnxnM-<!uu&yD!n30*U<UkrW&@KwOH&v(J4
zG{^h0Hh+wG{Mj7$qJ8R{k<r+?m%>i{9c?|;txB)yeA+x63yADI)o^UYPw=DcyjcR?
z2j~wNerAD7DT?Rsj?Y<RtY>dkP2se0QZz(=sI1puXLRS|;e6+KJuRNZslQ=f#Ltb;
ztK_|m&-a3V2lzf<_<0>%N^7i-J`z9S{-RawXwT69!~YhB#&ph5!yybc%#Zk~c{-ve
z{EP&j0W1d$KWD_>oBL$0<~cK&yf~0oD{mEhfLhD}{;nD_Lz9z(j9(n+3|=&N%3Pb%
z@J4dz3%Qd&(3yj}_yeuqNEW}4t3Tjq8V&06(al@g5b?Dax@Nue8u;&k_W;A!pTVVc
zw3{$|VJ{{-p(EL-d?;oEPCFYFsi*R|i0<egXV*0gz)u8D0Sw)B;8G5YOCI-MGWmr&
zATl0@SDtlI7Dv`G9}<t#N&*}yiK9F9?2YN}p<W~J^WeV(_5+6Qo8VG9m$!{>+m@)!
zDkqdUb%?~x3nF>To(b!1miylayapH;eHPMgj`M+;cHI%0EGp|Gc69|X*AmyWlK(OD
z{psLMz|MB{)U_O{-(DEC7tOQQ`j`;Ngd~doYzYeqj+Ou*=0Nz))r!+S&cXp{63bc`
z@&6h$8h9)GzYqQw;BW2dHXNDmNC<C)@J4I7A#AQkC)^m*ZFn{-?;7w^fsKF^VX(3T
z-36=8%!<4O%1h859!+8+ZzQd?FQ)q(G>p8z0Y3n|(~fR^r*uW+6%bxQnmr?HbUjq!
zLkZU{irTs1xorPj2fi6N9T4_JAJ7CY<!E;Op<_pEC*H6Elc|3bo838+eX{Y2!EP<4
zx0m|N^Y9AzTfjSjq4yrRl+Nw>+fgfRJf9~}O!)teO4)J%Yn`r_*<$75NWQwCWa-TU
zpAReq480}bQjR9ykYU5bQN~EP5((c_=UC1;mNi4yik6Q!4l%t}>NE0v2mC4ES-{Zy
zDY%r*<vWC0Y2$@*1}q}JsmP1uNN%L{dP>`b*t#T=v+VgS-NE1^fw6$0I{{qE(c~O9
zw7r;eBi}siMphml(YuuTjGVWE?*_gB7<vzZOX*zB_SCXB^34u6a$ijEW9l>GP|i=$
z9|ErehF;;%B6@q`eC}p`ZQ8JTZS5AE;}$lpnYw;Qr~qe?_AR{U*(^>8UuU;_{Z_PN
zdo;Sd99>?BE^!vUIpNRaH&G48g&$1|U-w5p-V<G3(&2{#!`JA?n?n4&@b#b3*PV0l
zhp3w92Ny+e@?@>@iTX!R>t;f+7V5rNky5O{EASS3E4^`FS0(>eV~?GRWk3w>6tBo$
z!tv@95BF}O7=ceAZ!-20VvUReQc(Om<-SJ<1VVvl?4p^8C{(ZSmi$6F!#zEClsk5V
z@<${mk`GJIcc#03YKAvm2z2-KbPp5JrsU~K%xUwy{<%SVkUxb~c_C4s5HYqxboX46
zeRd<53?qIB)!rcANtX-=YNz^xTxwEIH+!I)PdH*y!2~;}??|5Q>8kTET$!)@b9lJD
zHX$edRJkvz&k*qhL|o>cwAPy+HiSPA-idy2nN;^Bd4R5TaAUA{I^)!N`s0Lsp7Zxa
z{O%cSoWkx)Joc!+@1%d3b@?vvYk=zk)Bhd>m(nqRWZ3_R{J45O<EfKgjq8e}jP$vG
z=UJCZP<~=maenGxU8OU`8p!kWau`w0h}_VveKGxyso%^G?u+dIfv$j|KNMWbrLn!e
zu}co=Z`!(b<BmocU=#N{74H9!kwckJ2&7=`CbT~K8O+D~;wIseA#0^KNAy)^I<!vQ
z3|8gFs2!T2Qx6@Pms`N^0KNtoKK=_X<>`2TYt98jJ}@F7IBaC@i5c3bc4)-74-<ar
z&mX(iUIH{^;KmNR5rW9mY~f1fz>>&bC3ZJEW#<s2h+fb=2uP9<2J7;}h<t%WMkUZE
zQ{JlzV=uo@!uaL(FRO6nNZ<{P7SI{b@$~?rwH?FFuiO&J)9_OEzMcSnI&cPH<hcbr
zl&3>H;7FdPtsA0NmB`T8z(@Wb-9-iWi6YkSr*4(g(<#Yw66Gv&25@-Jvd5_^O(<PN
zPzlZp!aPpv9D;2`EnT-Y;_E%=n*G+lz|;G<=YZjB3AmKralFw(+BpiQHg8pUDuw;z
zA26I`yZmZoMp^P!$lgbeb+=bV^2#C%wn$e>@W9?-R0=mm4|Iu|r2BbZGElX;KOqp2
zZ@e_AJIc2iM96O=Tj-zQW<#rfSLwV+fIX*2{O^W8^Spcy{3+lW!0`VfxRezg&hf%_
zT_l5cn>|0e#1-fgKVdF<%`4XnWx_qy#6YUs7SStvIXge}2OkSe0t~%n;8JSh{g<)3
z$<mt<Mrh@BR_xV(QBP{MSC4%%?3gcWtJxoniA9nD%qK&xn_Q-6xPzSBLYm;)%Gs`}
zWIU15vOSg`dP{jP&&gi!mw{IS!_QxS74cJcTC{%Nw=%kB`I#I=QZ`&+c6IlZ(A4TO
z{Sp=+pQtycS*`w1=ft9PzF%h#VtGwKm%u(Z{T~<%`Ul;Enjmn`O<%+6dbUnnrRy%y
ziB#9&d@%-V!|uWKa)QAZRM?ekHu1xBa9+)GDmf{SBnLcMUsm=$3H<pBW%m!J*;JHw
zjm}*c%y;ipqpIBNmHQp}nlO4&;q;&)=oxGZ`jf&-^JVfDWxuTKpQ{0E>@%pqa{_{d
zKC6=7#4{ydXPordU~t(Sw=%%2q<sauRN@*<)oyK4=l)0~pHoW~x((A*(zBmcq#2wR
zxOMJ?Nn*mMdeoCwv~U!uy{p9P@f%T1n+R6}H_s>{1CMk`-Dr0Wx+LvUUzeW|%*GBL
zIpl{|DJ-LlgBA7(?)Z$JdtxlwVSJUH;7;`aqWr(A>hL!os`PK7im2fiLQ)!FoqM9a
zJ^5>ubB(sI#WOFIKFIx}O8!~dYM!2U=8@~Kap#VDOE|nh2Y-sHt#fx!=`J1Y2%20E
zM>>1dyYh=GB!$c0+W!Uy&US;mmsM^tF>Xr(oS4q~qFR1rO1l)2oaN(PG}q~+mo7TW
zueST+{PBzSsp;n&`A0SGl`6M8oF((8*;9!CON6ERDM$WoNOqNftUqt?LU&Q_gz&CM
zA}$KX(j&1&shfM`|E+Pi)-`nY)dnJ*%(AB@?JnfEyg<!5^6x_Or}{JfS+&Qy^U|Z*
zk)IdT2a{4kF1bE4PTlY$|9_2p{HW3L)k(oj{<kcc9N%zK&jpFPiJkq|m8$Fb+(Egy
zOjB1Vm!l}m9u}X{*{^R`b`RI7JE^np=hxMB_SLc6hN=Dn5_MGAeUg3cQUXuq`z3Yh
z&i*0#Ss#8zg44Plo&9W1-N4Si;^uFHYAR8{B&+A2R>r{7;aQG54)Wij{5w^3M(WzF
z($^gNOX4EUTqpm2gYxfD{?}A>vHb7>mFBg5l|3*b)AP?b3Z*Xo^~%3NRl8EbEh>G{
zp%vsoX`B4}Wy-%v`8TWTg#55orN4CO4-4GH2)<yD>o5}3xPx*T)anBHzaxF!tIp}{
zs{wVX&c3=5=R|u!Fg_fKOWn1HyxY+ya4T}J)n)IhaO56?iFVC3dXeKM__X|TJwY(9
z&$YTxT;8lD;x+cH<9sWJMcp+4$AEP<=CrlWTK6tn_x0AhL@{@C-{3TVj(R7>kDgV$
ze4TL35%x15^SEU!f)8FF&1XAb%kKBC1-}c}4Vd}t_ux`?#qpYV$M%omd{)yxbYtm|
zCbZ{X?^gFoPwn-7q@MI-HF}kAeUuogi%FO1=ad0NcqdCq8PH#M56B$?fO%vP0m@ZR
zTrL7V!#e}xwwYpHNGR`(dJ}(G5I6Y^$-%OamC}4uB**C2v+LLC;In~wfE3YpEb17S
zLzW_^u5H?~L(&r7sNs^A-DE8uqSBs+^_<oNopC-1---xbNPO#vPAhd*@?Pfu2f@Du
ze5W0qj&Zrdc3QooX?x?U)nWiX0YVe3r;?>4!*Xey1983NB5GTI=YV$yssM8zW`j$4
zufut1SpW8o8^T>c!@cZ*!a#plh@TltRXij)222(dWy0)0!~!evlNq;1-^9TDJg=wj
zNx)q<Cp`JTK<hKiYKQZXTOxUHgsxey-VOdu;M;)V>j&Uc9_!!_9P$<R4ur;!^rp~{
z^b_@cQiJ7G5yMwVt#;bt*w)<|(F@+luCI!~Hv+o=L+{fA5xu${(Yos6_!`n{l%%=P
z>$%teW$>i0_WBPx;pKnB!pog*c=>Vk;X`)#?nND5u8uyuC;IS%=<-%{c~CvcA=4-7
zi?j74g>AU2?)Ongh1h;<3v-4Zlb($;@vrTicWwLkHi``Y1>1hz_V?TNpKSZjcAq=!
z^quzd$L-mKTdcutq8c-dymX&eaLK7-OH}%X9x^XDmfvJN_g)(>&`EdL?wxkPYoY&y
z{Xg}%&E+|{JZA6LkILm~HMuKEBL<8P?y{@r1#haLE||qY;Qm<??O<Z=UH0U8!BskV
zL*wd^M?8cQ?f*sz9ryQW7SIa(QQk$rILH*{|1JCeW7RiP+0a`j{-!lv8(!j{np|dN
zz0vLp=#3Y8c1-Viw7m9GO~gFCy0=qIVk&%cj!PDWH2#~dbC>Q{o>!Dig`a;(B#vme
zu$=O*IrP2udX*EauQFNW38%Mazr9=c>c{8Axb?rD{dAA69^qDWc|A+*pk%&+Gyh-N
zUp3p+dgK>vDDT5fE_WtvlXyVe_v_pXY~S-Pk#8cNF11U3XzP7;oks?XTaWY~w@HM8
z>+RfuxdZ$fUG4Ut@o!C=_cJxr&iLq%_jR}*P4dT*pJC$U-^({`w5Cjc`;hlTNp7K8
zkotG&fx>Cp<F4B9xs#T+e;wY@;pt)Br)8%4gu$R8%G>Jdo<pXP0#&1vpGuwle<aTg
zMjW~tIh}4({s**@edK!QrH|F<bg0v9t23`aRl^aVWrl|LeJ3@?e3X!UbctT<E|p*S
zll*S{S1Ne=h&(S(FDqD?N#<^FHzDEK{+a$(eq9;tIpVLkq&K^#ge@`qsI{(1uXdX<
z14Ewg%HIC_R4EQguH!wZdeP-`qGtQ1=t6Aoex)B%eohY89}r3p$)3#q=QGiNmLB?_
z&#U|{OixUxugHILJ)=P<ACN{49|j)2-zxuZ%{GKo#KEn0fRohy+TEop%gQd*+(CK<
zz3x^!=g>QOu_D*0_HLG%cwocFm`C<9<)v6p`PZsGPPJX=_30H5?bxQKOSm^UqTQ<!
zd&nYOMx6A5mu>$Q!eabFF3&18wVU0&*Ol7k*8fQPPpd>gT<)G3-RK?1Ax)tUD*Q_K
zSw}xd&LWn{6@JY)@*93beNj)kK-X3$YaF1O<c99+j@~anQYFOTD6e*FO1`Ms%WSH4
zdy)~<Ny7;~Zv{80*^T7T9g9Oj(Y=n|E&pOCQXi?;RsDXoS)zPA<mhijHDReV`gP^*
zSEuI;O7*O`MkVG9w}%D8?MEDaffEdOhmioLAoz=|-?wct+etvpAfq24J<lFoMS^|G
ze~o<H;_7vkCcd72+%9=g2UArq{>p<-mD;V6g7;G0D!#1rzil#kIAhf9zVo8;A65ac
ztCJ7<`X`DwdH9E^-=>_ODt%i1iPQGzev@iv@Nvay`Zr2X(GM%{R;|;-|L#V8Q`Fi0
zZd83YroR<`cU$(m3HJ68AE;@ssD8Uu?G9D$d`l0WTHDL(r3&VRN)?$W(=SHz+`->w
z*AdR!=v06~fSKpc1DDb<j&ydOTf_=x`PL{vc>Qn4PElVDlmY{QMZnbfebppc3q0&t
zzsJlZKUg00$mkxp=y-*G0uLxpmq`E%G4jp9{R~xb89h?d$-REgKw{1omMNdGy8K6u
zpDENui83#l8#-`*sGaXb8m@+YkzCKgw>dxf75M)E=XY7TYQd#+JQvN%HS^d-vSet%
zpdi$}^$uSP4tw<@ZQLW;dLpz}k?eJO9wVGD`PxW|h{tP+0Gg%wg+70Fm}&P?rEiHN
z8i#CHEiXrWH^WywAIZAzE8q_T4+G|Y{2E+J$GFB>zC|s!oyZwcHqO$OzmUWAK|p^%
z;@SBew11**BBl!bRs@T^L>}hVl~F>}0U2@R=;;qYou8)%N8Ijoz7nS^vg&>j@mcdu
zRv$J7d=Ah67(TawOX=vJ5c0VRBP~w5B1Nr}zDc36o&t;mL=kt7wr(kq$jKUQF)6_D
z%q*0gRE0s0S?>76_*{0emUWwQFb$8(%2y)3_CnX3<Gcj^d*Dxi;cLLV5nqeqJW|)i
z@v1_;#5iikhE1|`8{IPHR{QEHs%6T*Rd|_w^^_d)0uU#)c9+sqSvK`?GNdVXx)#_8
zT=?o4I}13R&r40rnM{rWi6aycOtk=2(iD7BgPi<KiG7Ud{lBRkg1(=p)_KF(1r4)T
zqS|cvReb;9&*(KT2fq=x6)^nY2QH<fzd*>p7~M*rZC0zrZo3kHlV**-$qKPJA+xqq
zB|6pV&hc$(cdP!ji0;SK8&I$GJMZ`SLID}T(CrE?rK4SDNO!eFBw8nScZKy;lLCm2
zw>FitNDHkp`|36?H}**}z4g>*?$ZwNuK>3IhTadsr8q~@^OL-L)tXS!7WD|eUTDUL
zhOa%s*OKrxd@h?cXWUJg*)c~9@T$e@CN(gh&^-xPH#((3MJWj+g3w-dw!T|o&AT!>
znQ7P`wM+UB*>R*7_%L8JVECL3E~TUWY}hWx5(IgDR?&>t;yaOX(vX)p9r;u}hQTH#
z^@Uy~KB*`S2FQKc%HA@&|7m$6;^Ri>R6<AY&%NM}0zUu@AFqN-S=qrqC*)(1Y%*7!
z5*v+P6`k_+lvBP>NjG6#>{PKK%X3OeSireRs=Lq3?D^#|Gfp=}aX}h?9r025UiQ8X
z1)l=U1PmXW!KDoER1dys>*_XE?u%F%8L`5F#y3d@4l8753t3^lwUY%bj0$qg9pA~T
z(0z5EkgXP_!-)CKzlr#I47!!jmG*fK{AJ*mfZ^*ca4DU)&oTl@OAl^QQ?6D4Epwvv
z9+BSq6V$=CtO;=t*#j}Xnm=Zr(-GhkfvJF@w;5c@5ua0%E}5}!2SeTfh}}aX^nf8R
zkmT+RdAY=E%D2-!S#$7bb7mrGv~_+OrJH4)?F<NO=RDxeSbpf$^I0fA_)EYmfZ^xY
z;8L18<Y&nCk2R~pNd1M4+b{<Blt;>X2N&uM(iKN%_s5lQMf7Uk&)PGN1fK!S0SvwG
zf=lUW&lu9<{!fdjIq8ROTHsh<DG~QRRR<jFugMhWxso`{XDQDvO;U%kHw8~h>-bCv
zNoFh(#IkEeDS3>SoG<CNyrkol;J4wp1ujW+WFjj}q&%B6?PL!v)<r>1pHxuMb+kRo
z9c@p>PTlWgS<l-V%c|zzMsity%C=)E_+Vf-VB|U$TuNCSckhsMvG6%Nmd*eARhy1k
zI3EvR&FR?pqhqm4qC>I^cqh-@9~|q?c~yE8QL?>}9ATWqW@oILXit;##3`JDH!Cus
zY$c7K>cc-A{9VLfEA;E2FZcNe;6Dd`1sMMR3@+sdv0Y-#%y#EKHT{Ldezl9Sxjlr*
zy-L!4;c+l7d`&(XviK?{ulZHZxFio-S2pgcL{Bmz!QMIK6x9>LfwJM<h_BIq&bHfp
z@Rh(?!0@#LT*_y*+ahc!q}}$Z$D*<F*IcAS;=uH^{3-&7&|pJQ+=%9Fl4++UCKFNm
z4-r4lLC>_)JK!Gz{{jp@tm;F4K3_W-ruM4Gqju^VwGio$evn_~-5j@%SO6a*ZIg*6
z5h$eJi}+azJ#${S8oUWO3o!iD{x#y~;rP6@CH8v_pO^SyA@JC*6Jg-7-)d3A(uq>m
zW9h*<BdK6{N>&EfC|%A$>nhfqxtv5NaZoA9O{Q#Jmz&J%mE)ufi;}(Ut_1{@^T{bn
zfT8FiBQ8GyWX9R!ivS54SUKNqD8Sj8R8;(;*eM{0M*^h_seC-!8>Wlc?hq%0d==fC
zq~C-8PY%L4uc~UaJ;FYYK#IyAMtX`=8mkIdnb$JETOtfJ`u#w^sP!Y+P@~O%joPW1
zc1Y81(!Xy2zXSLhVA|<1a48-0zlZHq(|<0LOVfs}Tl$GkRYvo=+QF)B^xz!p0&>Gz
z*OB8U>7__S-reyNB{JPEBjys9^al}r>x1lk-vzu9=nWY91Hq*nao^CMe)f2|Zq(oa
z@(Zj7pdOlY^>zBloFb($rn{4R>v=D7UjzO%;C{f+%{ds+J>t5*J>9G=M%_Ic*;^DZ
zvw%fmBXBDJCQFVoCsR;UP}z@JW=e|Dr-;Zgc13;>`P^A3GXFT$IX>$Wx0~M&-J5(y
zep5Rr9FiPbG&osD=I)G)!;V+&C9C{ocbljubhms_lJ|G^kXudZHlqXNI{3G!eODrf
zxxW{H-vE3SFmnD7TuS|s>>&=9bH;{k+ndbpv+i+`H7|zBP+ojuKGaoCx8x|KC{~Gd
zP(j99_R)#F!bE;PD^s**h4Q%eXB)1o%*r_ZkBHykZ&`k8zy|<>0Vx{z%zn7eaJYE;
zT3I0vrz;G%zG<T_Q7MxR13T}SUNd!@aqCv_?*UH&rhRh%9?{-4CmPpHUeCk&f7B0f
zsFmFexgjpo|C8hp=Z3F$MQ{B7(e*FTzjCdo?cTaaI+4)@GGuhM^GXucx<>F4J1^ZY
zrypUkNcc$FnbEdiXx_O5TP1yI_>IfSu?}i!Oxm)}Av5PGJXtszO_W0ntL~%t{=>hy
z|J%VY04@QHe68S8=En2ZA$E2({aK`}>Q_s$-{DAATE7j=LLG4aq@=Y=Kdr5KReBbR
z1WCU$gnT)!%47SLCl5IJ+?LbP!*oK_-~7*rpM%gd`z`ek@_zss!0=NEF6D^pxKktu
zfic`HZQOt*<wO=wyD&;;(*ZR?D<>zplcal{<eVaXtKs8_?t1Dq_xT*~XMmpqhVIb+
z7t!s$HoDK7;y6~}ecrTn)f(ya%nPe%hn}t86~(uEs@3}s5gxhJhp&smSL_JoqwAx~
znDEU{o$wO9!RSwZF#mQ>+VIj|)@5p_Uf~f6*Bg_Xhnig%l=tm9L=Vp!6O7N3l<Y(p
zOD75nmd)X;dB!wv@o}{H++1(P@w{Ka`{Vf^PcJR=mIaH~qUGF_8!X;zyLMBqQ&2MX
z62(?0Gb)&vhnY{{^>*gnuK4-Qs^Cf{PTfj$nS`EqhoX|*s(_7hhHJUkSe}!z8{8AR
z^qu;k!nH25G1wN>&`l5YTsE5(?D8tg6Dg9s4=5s8_T+$deBNJ_KB!8t`67%nRpvWG
za=Vs{#t6=3h78a#koqq#90Vd<`#B|fe5L`?ElwtyRDL-Lc^o%qEIN^~q<rO2q3c*B
z86NLc6T)-nl*{{@B;(QK@X$Bqk1ZeT&h}^dV=;g9-FfbOcdol2XY7EnYHnhznlCGb
zXKd#opD=U(u$}4pC)(MjpVWzl<SM&A2h);3`BNu#o6779RWAn;a{9&jAN|7Yo4*ad
z5BMcu`pv(<rJQ@D@zeC1SjWNI^zCSEI`u8F-}+|sriUz0cj@biP-Iu>Eo8JBMZ@)V
zrsW*RDeyASC7YcunTm;}ffx@dXTQ-7K{yrhISWr(!{>7FuL7-r;q#~ejQAWL+b4C8
z<Fg&ozn6!{iFEHv?68l16m{?KC&G8Tq7OfbK77p$KfEOB%~wS4M%>QP<}Q6@PwRdA
z6q-7rZ`MwqlHL*zgvd(^$p}~v%plPt2NHe|bRm`cG$+R`W=-CWJjBTa*_tx?n6kl{
zy5wwqOs-cmUpEB0<~YvMb<IM15wDBwr8URf%WIa|%LDd{lXYf#(TxP$_^I+=P*cO#
z8OQaTo~|ofACL%ZZic++UsV1Dsy=+3alHS9d3pqClb3v3)WTE4*BO2Ri@9qRr$Kfd
z%H!))j^n8so`)MqzB_(Y&S*LR8|00qqui!2ltDp11q0b7Pbz<}ni{^&@Yd({c6}nd
z_EtlNNxbpVibWmQ=(Pv$dyv#;At8Y4ff@ZuL_u_pGl9XoS}$~}RkgD=_ZY9b`@-UC
zg?ZN(Rr*Rd(Z6g-rdsv)zNZq^sf7g59-UZJbWCplk|p`o>KdKelG#vnOs0R)lH6)F
z!XD@ib1!kaE-b9(%%ep150rFy)K3~ej{1SDdz!&-0&W9LKlx?+z40G1*RY?66OpX=
zLeJA?0!oY4>jZiEV~9@1o&RF}eaBi?mFn+!dHK3LuNS7M-8oqr&NYW1j`=iWFTz9-
z)`-1D{4M=nm%``>{fRA;2jg}{#Bb%lvh&3-@MD1afZ_Kta48SR`o(Fny+T{RHY-%d
zZA?^u7Db%?O%!E%x&%zTSbx>EZdQYxVq2#qo=(zF>&ad|ClMY-skYaLxYM4`5e8Qc
zr*#Z(K8e|XuIzylDwMF&WDB3Gdt<6F+Sn%?tcv(Q5c4PP{U>k^C9F!o@V^0Eim_ij
z#Lm|^ZMCW%w~KlEK_|R?8!e7B^y0)Hv^NPe>|H91i&=~goY2+oJTf6YrWWsYCcSA-
z+8a#TG$LJ@@2AJ;;>+_VebJsYVMSwRYjL9<Qar)kYZrgfcCRYnEBC6r;!W=TiQ>J1
zduyurP20USN}TkhCR+Gq(T!QzCz9(i_%4HQk?Te9*MT<yBiGyDQaV|;hnhNkud<W5
ziA;Q{#{X&gAwE!2Pi5bTZry*fbZ3Ac3mgX+x{JW297gx7#<jJz>sM`GUmJFfv!fG~
zD9_C&ah{tx)PiyDqSlyREA<&U9|nICcp5PDo&%TCsb55UYNaa|aUL)vJP#oAvjbR6
z&n4W=hU!SZ^e0(*1Hgv@BLPEi47ilfBj2KJtHOkEQPky64vD(FC#Kg-eMY{Uz*~X4
z0YmRza4DU}9d45^OHHCIe{x8aW%#X$<U2@xhMxCd^xi-QF!YMRrF@ori%_iaNEbG&
z4vBria=svWirVg9OH6Mm^%;7bz_$Y1V;ZubIQo5ysf<OOv6eHI-|vg-eXL!*KLdXa
z_zhs>_$|1U!{iXvu+a;(>;9`_*TYL?E$aZpj$O|JwzXf>ZZ)4~*RNB+7XZfthTaL_
zQaZ-F32%>~*Fja*!mJpo?x)L<+NJtEWz7Phe6cZKw_5r~^mkLgSwBAo{&V10fT8~e
z_~)f>v^z(je@sXE%>!cj|Chaw)4=Bf#{q`^VsI&kwReZ-K5MuZZfNdN;Th?(v^hXr
z?#4*{ZZ!;y=(bX?=|A5Ce-?NFFm(5UOF8=UaVXW5-;*Q4w<R9;C+Z2#NdfC!N!Z3Z
zG@7ohbZtbx(sJ79j|86pOa=`7Y2Z?h<_8vLpfcWW;s$n^KFpu5C8pOxeMa89!5;)3
z1`NH&z@>Eh+(h}VB5GMTu*-A@f4=&`k$jfQ((3|V3G@aGy=rhNN0V>JiEV>WI3$RO
z;$6_*WpQszuaWwUe7KNUUj}Xj482>xrF1Ueq0~wnZ&9&B-zVy4bR)nzNv}2cv867O
zlQ_9;blERkxj+UmbaC1U>3&W*vxDuCgr%nRkcjS5>NWB<fu9MS6Vp2C_;*4(ISsXC
zG;5Ul&T5S7-`lSKUxB{~ybTz+-UXL(RJjiGQ|x&6&}YT;>g=pM)4>~n#eku=3|z`l
z?q54<*$(<i2S3Hup;7y_QlDwRN5P)}o&pTLAA?Ids(gpIn;!XwRSt{jrJXFjKHzo0
z2*A)A11{w#^0lMZxqSO#dd<`~n)+lNcOCd0z}Emn?;&t09qkIXZf6#geQm$m1so0&
zHc!UWW_60}2F7y`{%`d|Wz}MXio0GI?SG8(1)0x=M{<5ly@qbabu7%}tzLkkTMPdA
z=x#yf7M`?rB);e{;#Al;BBH;O`VIXn!0!a^1q}Un!KEx}^W%y1Lha<1L-9!Niaqv?
z-h;N<V;>j3j(8ABuh2j7t-gb?y28k@yPwH*r|ChQsuhr$xLDt%bZHty@)GCec_)*d
zcspC%f@D2*-+4}|B2Uhx&UEIA-AXTlct4|@di5U_Z|AJ~F_9egURI7};AaBo0!EG(
zz@^;1B0iUjuZPQF+7WlD51i0lYC-t=XyiL}Ioc8t>cNDyVz5(|B%UlABDU~qkWSYW
zR41G+-FF~tPA|98?-Drki**S>Y&|!xx+140?Hy|`bdnW+QMo~v;m%^w5<0m)ARFKt
zlygwww)q|HpxvlYeG=a_6XC%Lk(@QY)225Z20j&-1sFN60+;geagm&B;y7f;Ielm2
zsx52io)ri6#r_9c9n`!gu_1fZx4IA3W0RcsI&Pku$>?g*YHwC)6hu2keMPkSAYG7g
z@lN#f=CF_Vv1l8k$nRw1XG`J%KmDNUf&>fo&y;h8#=K+z(bc9q1Bk^sQnWRDCP)0g
z2Y;3DC(qeO;QtlggDn36xRj1|Uv2yo@Lwjkm2*xG;C!7mr5vwup8%ne=UnBKh)x6b
z)WmdFfu9R}5isra1h|xr`c>#~g0pb_+D)5c9k!FcRqTXD1AT$(<<0THbjUyASX)v~
zg{~z0cUcgnKIrY%Cn{A*kuL02RM|!M&f|zU<y7H<ND4Rb93aoHR1=Hg`VCQH2_Gw`
zMSKT|Z2J^~cLjO?hVL41DMx4@LUctb8wyuW3L9s+btfl3J#~>B`qV}3vp1&GNIhme
zKNtK$;1a;lxf)zbNBa`F4{a$I3hPHqlDp7Aw9N7-CPI9%($gb(UZWmE=L7J60iObf
z4kzg$osR2O=!kbk)A|n173dBhMO~O<wdmKCg&Cz~jbyRfPjuW;4#spFsMpXv4ZI0B
z3ovxg1DA3{x^d)-j-*?a#P$->53oZ3AU#|63Q4!lh~#~adJWxQfxij74H&wA1eelr
zos7J*x6j+!M4Y)WyL4gwaGJJ7&$pV&aj*?<pd|J^7}KfA$@Y`+;Pt?CK#Fvz$2#~)
zQ2&lCYu0YtbQVj}P%wUXr-lMASE)g1KYt+51xTgSc41B`tuY%EyARhXv<tWfQg`L7
zNX|XbGIBl%{ygv!VB~xaT*?vT+|XXm(v>UN1598Ga4o()R?jN>>lSIz;m&z-IS|vU
zOl9c}1|JEG0}Q<x;8NcC|D?SMd{x!e{(sK7=MK4<ZsrgOxy)e-VGs}$A|Mi(qM+hP
zkU@|sGAL@*h-k5ONGVn77!ehRYO1J6QKPkr*4AhpsI@g(>)%>i^R~A2^|kf?U1#ro
z@5v>B#NYPw<gOdZde+)!?|t^Twm#=#=8y1u&C-jK0kiXJH!e)KwmUzxtx7VMfW7&$
zN>a}9jdu@GeYNs$EBeG?X{YW)-U;s29Fo74Dd%Zac~x<_2Uo0Lx?!4{SjmDb%bJvF
z0*W?h{hy%AtVex~{0#_XCZAvG`d)keOO*0ll;>L0bFrsM>z#oP@j&c89r;{v9x(Z|
z7Fp8vl=CX+C&X4tXmMgWNM7B^ZUfeCH%MQ8p^m3qbE3+pz34OL;5Fp8!MnileTXcn
z!+NG4i*%jXn&}-~QBBHrnv_>elQPhpi55MLnzu45$vX{sCYTEh?`g=A4$rHj2PR41
zOeJm8e2wUfqfhd65Ax5zv%v7Zge<9pcA0j}lnaR-EpM-y$qdc5J7*Bbywn*hwR@ln
z-)z;)RQVdqPQJeeA`b^6f#EwES<?6_^`1BLrtQl~GNw~)HLry2&Jsdhm2z|k#tB}w
zHfz3m^qJ?l1NlyHH!yq;B1<}4eoBls`oXlGo{uMZKAvkmK!Djv!Z_adAS-7nKfgq;
zDX(cU*BS(d0mFM4vZRA6m7jZ8sZabQVxGUemNf@j-Dd-Kb6}V4ef-?<KE^*wJ93lr
zV45{-M5Lr}NT7%r>I|+H$mG3U;8fc^B2}CYD5raRqs?uEn{9V$=2TWH3WG!4%(4vj
zfA@`X+#n~!tbLH{ghn&T91eIfzV8TRjB}o{Lvg#W-7|E0`Yik8;LWV&CzgAy)*9t!
zD}I>#{Q~*_z&F778Ok|w{tm8KsiIxx)z0Q=-sCK|&M$SQN!Cs>SzB|G;;TWQ;aiFP
z9dIQue1AfgWa7w~{bc^~W1gp(oMzqN$7<c+mt3@zjsZ7@tp{xO0fl;o3f#0n$mL3|
zU?_BYZdy^aI6o8*jCEN7?H}q#mKQmp4A%Ks;Eb|S-3=CSUVb1u>g_X~0(z5dX(oTy
z5yLgp&Mb0bL3?gtu(Vge+nf3m+r2;FEVNq^^Kq^7m7n8tll5{I^7&vbFn->LENR9f
zRc^NEPrsjoD<t|YWfljYRt`R`7Djfej|JlG4(G0r)tBo?h#*0ni%2Lx!jZCky3Aag
z6iUmOLUj8)H=LOhjb=Y@7vzLW*iRZP8kT;#yvJrZYuqYlBS#BL-0N(&m)$d+|8LKa
zO;i`b#1<%jB6-Pr-y8V^Fbf!ezK<+vnqKGGrPq1d`?KD}ax1F4R;FdXlpljYA8;y|
z3$nG`Yi$(gc7&|D(S#u3_MOlO)>+2{8KSYO*fW%sAI{5R?R@}pNuWH^cTl)^L{YeS
zOp%ix=2DaLKrDT|_;`wYj2pLmxNP1?o9i6yE)B@{N@u9|nc?kCt2|Tr*@hpce1`K~
zD+}ZT<7aPVNr!8126M|^;=NI`faYe0vtIhVZiYL^>6J#km`TT*58jWOw-&vI_X6Y%
zV3X#O_j>C5g_o~te6Pm?J&8`#(>klCXr+Iw^)~zTzJvS$_!t;}K1Y^h{28y~R(twq
z5g0n9vsu>S{M~+yVs{JI3t3N4$^PgK1y7K1@CeCmmD<iy`B_zv9RHq#ycTQ#hW{tX
zk~W;F>cJ9!xk=7nPzgA!`mEY)c(e1Y&ECub-p~K?yC~M&9<pAbGtir8M`@uM93mvL
zQDNV_aO`52lbZQasRMyA!7<^1_7*!72=?bda~_LvW2E<RfpdZTV>?t}_p&!|Cf+$a
z;Yh4jm;b_~A0^16z&K$1xCB|!c0GQdc6Q=@VCG>=$Z>`WS3B>^27|5Y<G&0X#D#}L
zG+oApYHpWxV(k5nMbnDiXlP_vxYxx!IUa^1!7``Um{PZIu(Ts*E^?M}=L<K!h&$Ds
z&G)%uRV`Nj9K_yo?3I4Q2grX0e+9;$e<DljU>s_$(ok0++~RDs{>D8M-t7y=>D~hI
z7&T8-5p!gkXEyQ@umTvKE0HC+=cxSpNS6c3pUhk7D>R5cdyDhAZMX5Ty^qsBC&zAc
z-g2#hywo_&F`K8(W@smpu_m}pF1BIM@N{Pdml^H1L#5nmoh`q!toSnRKfH0ii~k=X
zw}F2GV^?~yvg;VVuk6cYz2ItjDVS0u>pqnRY#Mu<?r?}&vz&t!p&M<dlIB<Lmo5!>
zJLx9S9{)(fA@%i|8ZpDFKTp|F3y-PyYmqMjmjh$R4akxXrkrCSf0jy2)y2z~F7_@N
ziOpf`A7L~69nJ+TdG{oQY0ymz68upbn)xobf_aLTYyZ(Zo?nRne?tBj_&;EHqdgSw
ze0?4$KUpv3`I`)AvVZD4BKOPOMd)P71-9EfZ1*YL<fIk;$L=+&noPfxYm*+ZLnS<f
zL7_2b0segLKRm|&b;y^2D}k}&dSpqaeQMXARPBQa$(~nr>}1<JZ*zxp3ETK&YwM6e
zU-7%bJzl$CuXzum*YJKSd?l_G0)}@uvZODx-}yQpymoP!H?QiQ@{v-|WS{Nj!Idg}
z^ap%I$qG)`HBg=N*sRbu%_+_dXK>)Acls7PBbc6-5ex?d1x&N`kqkLGV^G?ek%}O1
z;1au1N=e-+l|S{^VV=_ukbeyB0LIP-kR=UEImh7Hsq#nWK{1oCPUkc4dxx{tmb(=q
z)7dW3L#Dt^bjKu`JIh+Fc)vui;f?lWz6X>6!+Sikq!xXy#q3M;@g_ojH`~%k(_(X&
zS2E^4$NH2#sJR>;&5j1`ap_#u8O?Lb3%G%vt2iA_#1a-w_M4pNE@SI7f>pUj+0_7V
zobOU@Z%4itJP3?k2aqLoFy1+rk(^ATk{51lCADRY)yNqqYY5YzZm+^X0f*A)`b604
zSsLYtgiIz%gbTMo^lAQBuOxpD<Z<8_VE8XUmb6{B|9g`2x#mh0i7f6lVmGL^Y?u1B
zPMWlx&hJ82aUZs8jt>nk3`MT9bHW+t(E**87t0K?wLOh)P?~eVrbnBV8IGkzgQbDO
zU>~yRH0BN>vt*NTuTV+)Y-gwR=86NAXeCvxQ~B4T?UVfb9rDNEQ()}>xBmZTUy=Fb
zxyo*rijh*1s*b0k6-^FXyI82~Um6|7-k}2NCtH?|7iKkUzN*sXd_^_#e6Ro*zVnbJ
zrJkdM&s=Q~A6RC`Gs=W*wskJGIx1Hxus==shDwMq{yw%|`PYO#Q?CyozXjd}hHqqV
z#kc>^`a-Q<B{fEd7v3#e-gvR7<_(A79WUB*qt?C7K59ZAX8R+~0M6qq=Kw%XmdruR
z&BO@|<u}Dn8S#yrNIoY@`PY$N!LpDX;>kqL;J!V!S_b=ZAkbz%F~<UVMq}Ks1Ic<=
zvr+j|kG<yoc`foS;7(xt`6;rbH+4DdpDb_Uhcr)(_V<}8u^U;vmU)xi&bu7X>ccxp
zws_S$bc>IYRf}QXtkX|aLp>}sL9Jv|UZm`ZlqK!RMeYa6fw5x(awm2qLdbVy$QfNU
zBzCc~qX8cCe1D95FL)3bJDxz6)WQ6)xv{N2c~#s4^bRbJNJX90tKwQTpA}E?MUhKD
z88Cd)kUQZ^ToKo3|ACz60T7imooR=kIMQp8xNpQ<%nERiZ6G~Nn0$7VW_g#yaXhO`
zio$Pfr$$v@-lE!n_>BL%kRJ#8fU&24pHA(OvORn45?`c0dZJebyq@SiUKjKs0uNZ5
z?LKaQ_B4BoE^MdcSef0A#TM5N$ThnGi3rJoh#cAJ9^}f8Fn2%~I7E$1CzMh+6w4YM
z95OXM?54A>5Dv##hLMA3!BC(q$T^cZf6Gvg&Mp46InJ;3LQ>6T%0IeLiTTG%kuL|E
zwNEk*+H#EQC;Hl@gkRO`xrvMtpTj*#IZO@a@bBxi-ez=|e0vM|Ab8KGx5M!jErQn?
z46e{)tRgfQaeH5p)u8nj_f6Vcfjkl%1tf{R9nO~~^%|24P+Y+6@A9hgQj^xd$*2E%
z<OZ<4>-y)dxJ2G}+1A5gR5tx`t+&Oe_fN>5fX}+FSIQB3GtrxAjmf0GX}#tBlJCbV
z<f-5UAW8BgH4c;4Ur6Q$di9>JGE|pYW6Qk1q^M~9ThV2n<88=yg1deCkMJDT9AGKB
zORe#x=#E{k%H1dEi1S_Ei_!kB)dvg&re0McOB$p5fqRnuVc$IJxvSPLUU|xz4J%g3
zjOwCuy-`A0z589~n}A*K{?_(BMtsASw@tDScgP4XV+}fIx@jC3n?&qV_N-P$DhE(E
z8f|x+b0*``GJ7p`rKVojf9!~3huGPOd>?oa7(4eMOG>?8gnT}4)!K6_Dwb_rv)Fry
zbE#Uydem9V3p^tno7R)J=tyUr_cG=0n>C*`K<N{{G~^O61sJ~X>i=*0<>vlh-Cy9L
z7uEG<jPz2FA3GhUbef!nWj}KwlS|GhdfYB7EGQ^+3Pu(e6a|a>_b4a{_9>thSsssC
z^B0bjy|dnbGbRr{W7uS8qBF6yuy;YJ(~I6lfbF!y3x)-U_8(F(I9OURBUsIE<hKT6
z$;R={-Vis2Uzb>~-lFpHAa<K_^f~fZ;2U843Jg?!cRKEn8qjWo>`6FCTxM$z5p1jo
zu%`R&v240p@z$W%tgkFXz5rYZ4DTh#l2XrmdG*A!bc0!wQ%zk_-Ej%p-Q0-)teef9
z2%@L<8pV46y~f}7kpBoi0fzT8WJ#(1Zb<IW!vv|Q@<?m0m@7L-?qWX`u#RPqzqd-o
z-+x!}jUSZcI}!O5a0W1Z=O9b!bf1imt@aeXEB7k`$XKrUNXUs2@6Fh(`F5kv`1b<x
zFTrcT@V$X7>G1yf7g+H#uj-`95?z0l<+7!|k~wz0`<O3Vm7nqQB<}>|<H3o*@XkS&
zl)B!i@^$G275JILTIAjJIE$snuNXF2F0j7C=0n+rY_)0L9q2Xw{uFsHcp4bq=a3~G
z-rvMRw&(0>_F8_$B}f*rd&J%G=Aoje{#xa4Y;cly5b`K64jA5v$dV4{ub;K3b^{Oh
zJD#)K9LojPowC((y6X5eeoygkMX&MqF68^c!@%%9iY)2y{w5|gr4UzLE1OHdk_(Dm
zz~<8VNr!8`uXs7Uncyu#?hgh7!#f;V(&7AV$69-{Y%YC7HkW>7e}cz=+pqEXV)3~7
zI>oyQy~f`gk#7RG0K<DbvZTZN>sw#0nZ!KwSMBzg%iqVZSA3tK&+z>R*&WKb4H&+3
zWJ!nf)6XV*%)d(6V=jMRulW|B&+u(Pz7$*m4BuvCNnP^KTM&{W?Cm!H%06VbIf`yj
zejY%t;r$T#PvFm*OZq2=Ymc;lhHU~4>Rsow*IIw&u%!MO$Ti>;VEj5AS<>PCG94l*
zrZu-p%*d}eX>YlJV!A9@Oqrihe(grD@#`7nSHNq)@csr_(&3(;pS5<26w_s1DZP$T
z3YhJ8N83GAy^J*|-uQ6#c%WDM2S+2H2<8IAdlj;z4GUGjeV6`Rw{+R6rHeOItX{No
z>FlK&makoM>Y`N}<>kWuwm${Doo&BnXIs>I!ufrW&in``KO+|D$&p-sR)mMAamGI@
z)GK4MJvVELdwkAFBF(bvD?QJS_Ux5&vJ9VAut}`MX|_XW5+kfSG{Gs$=C>-fZBzEQ
zVxP&k|3MyC!F&!d_TPalsaUV?PFt`1F!s;8NP_IksH1P2`)=TKmqS2*x4n-?)W@6Z
z<8k%zLc4Egc>l1s_w&-vi88*|xhLD|HOiUd^k51h&5g!RJ2iX?A$bT-5Mq#(Ijqp#
zV&@j;6y`>ArVbzAe4kz!Ke7nwn8%z@elVxpxxsej2Xkv2STB|T?R_8297K9q+NCm|
zHq)(fs+<jlrA!mCN*uSR6kR}9>jEMrY=C?NP2mO3l#C5d{{cU>%d>|j@~!a}m2a^T
z$$rcL<Z>_!NRoP#I_@#~B@=KJ8y1~6%Zto(p0&?8&w7+&Tv0b;Pw((!y<P7o5pq3E
z)RS8k-&S;+=X4A5J>UUgp3^JHlCDdc*Gc8Yx}wSj9Em?+L^|ZpbN^WQ80KhMKzDP#
z*E`G{i}#bzGyE<pi=fB5-YTLps8!ojT$!||0(lac3XDDLktLaWUZd@5XHVVA^W<G9
zHr0)zALlKHM(9KCbJ%^?#^5>^vogLY4gaGwP5oqvmo*`#_9M(41zEiA>6{$kRuL)L
zS2(MkC3*^}>UNcH&Dc?e9a2AENB$7}f56x|ZKSgE1wC){f}Xcb*tzr~J@zHq#-{-<
z+Qu$E#Kyg0>!t|xGE@*vi^!xvx)&26Xpbl6D&aGniACvz!5mBWW;+vmq{p2|X|P~&
zn4^^u*{f-X^U~w&-%>JRIwEPoq8ZE~3=dxIEvOTKij$uFJe`x5kJv=r85b(kJ8bV#
z{xxF1DHo3;KM!64#=qYnOG=#&GXBk6v1W<ym|ML)O*Tj`W}<wbob<UPP3}D&;+`!N
z<!3odRO2W5G=F?lvK}0RJQbV(4F6nYNvZvL!@q9n`n9VrTzax<4s}-NRSq5z!GLMj
zZG;?(%b0ASTjZ@^#CIyccc9n!{V4KN;AvoZe}OE?ls_{*GrZ+P)=3w1aD`OJxyzPO
z2J@;$)7#zW%&}gCb%?N5=qOLjqiEjP=p^qD<dNVgV0e#3?h>!Cr}F;#P~K+EyA{30
z-<`<!gP#Dy`#5sfc!{Tz%KP@Ays^7gK7WZ`GhWLZ<61?a7m#$gb}o^>47b;=UcFYL
zvpsH;yZmU4=7#cy5X5n;QxWYKO^@~oMWe?=PYZEhP;?>zbbE%*brweZM`?Cjv>jXF
zH2&X({1fmfF#b0qOES;<v#R#*sf0brGi|kv@`^86C`JAEw)F<#pBGSR$GiD5H#d?S
zT%4YX3F)R?DnBAeCG(>Uxi1(9By}l2^o&#%q*>O7=~>=i((l#!>wNmZi+nS<4H!Qk
zMV3@KL-`lc>#~QG>nSVLrNGVhBya7hg|U=0T1}4iF`i~goS#r(U>>L3hljlwJZHE|
z*fv`xHJx$RJ^J~>XP$p-tZU_gA|R<t{vNlAJum#*Y`C+nuhW@>^U}Ra{{nOw{Tq=t
zf$wxj|MV40S1oBzQlF7+#kBstKK-vDzX9Ivj(%w%F+UgcbFD2IvZqs0rPg0OE@}Tr
z<S}48kkqC8Nz@K0hUwOI8R_2NR%!k9=!)|jd4KIhehNGTOnImruekOsR^{P3{dq`v
zSh}fh?Ya$1m#EIB>;x=pb+(7!ckEW@pzVDe{XPclb6!ugZpj$ID{Q_UcGD!_K%|h}
z1w-6?dXwpalFG=4T$}4#LZgbDl7difa3n9`bZ1g9KNKQ>$C*K=By(nX8oM__vFh-N
z)ic9$(%hqhg`rG>{D!Aba0!Glo#=u?S;fj>PfFSZSpuHmEMfD?B6ovxg>0pnLs1;(
z%(N%i^FkX5ArpU4m6rzmHRa_Y<e!0NVDh5{SyE^3n?yS>XX9#>734%-%{Z30dVySq
z8v7(N)E5Ml%jKn>=SsA1?3?Qjlg6M)+fjV9Yt_Od&t)WXHCPCY9m6LmJBoFjmao@!
z(jFy@=-V26#C|_$w+0(By^lXS??b%Lxj&n&6d4-ZY=lMD_cG@bgp2EDLPOm=r-b;3
zB~Gn7&^^~V)!{|y#tQ<4v8>|Ee1}WRvI3dJLm}oU7x&~xa*DHvo$8EZw7^YQ^4-aF
zv)So46byC>S!|tC8t5J4!R9;t_*Oy@2n0n#0dX*hH^{mkf6Ye00(X-X6ZUL|gM-}|
zn*)0V3SBPW_#hbmP?kO34~AP={|Ns!7=D-Ug|TAKf}qXj$hU&ww}Zj#lchg%iF+0+
zAvC|QIHA?t?&NNF+_UUC?kU+5atAs;w%MMS>ztTVV-Lum?v$1B7xjBod1xe`>-2MY
z7Wwz!Ltvgm?}_R;EYbUGb}T#WbC`0m?t=7f2sQ?84B8FB2W{_TzW0*@$w4V0Eg|dI
znF|@DNX;mxgBRlgoE6OBCZoK(NZ(Q6k;Jl@*fY{=w9Nt#+fu_hk*rbS89cC2QkuTw
zT<8$Kd4oe3Y`)T;dQ$mQhrQ-K_dVoWz@5PO^HXF=<~^6%uTGTjnq=R)_Q&#~>*+y^
z{|DEuX41C~(T@(T4D<>Ut;@2;5hHthVjpMAUS$vGcM|p#A@>D?fU)N|WWPO~_Oo=p
z7FAus+WBB6p7wEM%-WtMucABxG*P}nfp9Qmd|EiovuCt>ZNeIs1D?|LA3jt6A3%N_
z>;uN07m+2I`rm0kVCwQkYt$TaUR?!ak7{q&@gv)MG)roJUeJ3du5!JFNc8Pf{IO$`
z{KJvQgJXf=uSV_?fA#uP7p+@C+~dVGKt*+95+<;#|9NsHH_}6yaG_^HtLAS&zbPO0
zAwLgZ0){_*Qv2u8ssG2XS}He;6ydmCHv(+ZpK{4?$jglXI@TLlQb-u5{t{nA23>5a
z3WxGD8EO|+=Y`xf+K2o+-VFSkw488meh;_AVKAG<KGgg&H||JXea?0tGmo-%zsko2
z*tv;}lJ>I>xgJ~%j2}NjmgMU7rvCc#koTJR{+G8|Ti`wW^MKtJnDsfud7twJcc)~X
zO%<KT;?mIIEGgrhsNSh!3^qTl>}Z8&tG44C<m}0=l@E*^{gEZ@(EF1QZ^x92t2xYr
zUryf!_h0snuHE3Cd?WK3`<#DD@XT7wS?!tQP0;MJnap>}q(P{9R@qYrpRwl#<U7FK
zz}WK`a(C=WG-vLY?acW%A+<eomSfJSpl1#XCr@f~tmbBAk5$F9fl!`PU*u6>95D8r
zfGnxM-uHZ@{1JPmGbWHHR_}hI76ecJ#(QEPIo3nj^28P-ZQ_aTF*XTL<@3s}9q`8a
zE_VF{c`tYl7`xs<mSpZf-!Qe4cE4IWr$u$=Q|iz2N<HTU!uBZ=$CElZm#sE={|JY_
zV8z~R5U#b|<J1%L)LWH5SN4=2m#mkQkgLHQVC*>uS(0hDJFS;9mtO1{G#P_xJcE8}
zTd#V?^!N7tcxG(n7^)O#t4;IoM!#tnpFw^Z{2CbkcabF>v0YRXQz>oYd)XbeiK4IJ
z1?~ToB>z<8Iba?z{0osK9g&}YnW@q#Mts(h5tYAC{JYU_{BK77C1?SL|2^cc@_R)h
zh5YM|$Whp$`OBv!`Hw@M1?B_8zYJMYxsG4nX?eu|xf{KGOLb>c1Wxygz<0bNc^%gz
z<VLEmiiEe&7<=Vlqsy$Wv>#0`s(fgICk~I)ix-jK0KWsqj=v*II%2&rM%*nse9!l+
zXpx$+z`6}H3L{*cNY(gZB)pvtj%N#tIMWhUqxB_aPt~+!y;y*}7Hj~<o~_7|I-8%;
zujzJER42$3)mieRxB4NSi7k%xcC1e%J3!oLLjRqeUgnm`IDRqlff@L=9Z>ePz*h^O
z<j?;gM~)}f1u*s;g)C{8?k{fA`=68VofT^~EM2#ZTeIeS^GAvPJNwM0dApqSW+w@&
zE)D;00#;jWhD58ji?|+usH2=|jAR@~eCKEm@6j~b5;Q-QEyuKJT{gNWut8rQsh3(_
zQFhm3mnq-7knaNzYFiIK&P=h_KkiXu@|$uPlecP~Hgwj(EcsJ3-L)#fXkhZ^G-OHJ
zPgU*de7z6k2>FxfR}+fhCdUgxu-o=NdOyNukbTZpra5v>cXEihSK!nJ*d=HeW)z1<
z5@B>A@%cxymCC!><8Ir1&vvdz<WJkHDt~rkSEaW5S>%_%FM+Z9Eo4ctlsJgSZl;Ac
zF5WPI(Rmdd*QNnxxA43xWHxY(^{*Vx0;<E>)68)$tM*rlH-18LpYR0alfbFK@HQb!
z+N9$*oAX?U^3L*In*0sN7l^oimF;~Dlki83%U$cb+&&RT+;WXJyXVp}op`Ay7qTsF
zSfpe?xS|K4GXt)4q#Xhvl)2H_8RzuR9ymKXCpg=w8N_u5!C<fKa1KG`)45Z(2fMIC
zK?%|NNFX%IUgo`1#NOuDlz-NYWIwGGxdMy^#=o`5lHz(?Rd>kvYQ4%?ud<kyo%0Mg
z2fRJNH}N6Py%w^*%00~)!RFop&P<1(1{uAam|K)P#fkPK9-nhY??_R0j}oT`!M?d@
zwlosVPV4PD*=efr+3iH8JI4q1+3eN3$qtptl!Bz#Z<HSguyZTlrCfi8{I&Q{o%CZU
zvZPP6{qaNQ)ei9^+1cYz(EkQrbL<u;`kJ>g@DpCXd1rG<YqS&08krZ#&&%#bXShcw
zo?gs(mScEE{oP<BRuIK`>peSiVc=fd8A_?HdP~{6347|XN9?^5xd}WDOulE%RQA4L
z<`?Qx`!^lf>+5{=Z4TX4@T^>h_^2b7A?|aoEVjPRTbW<gdwglQZ=esW61jnXfw9HR
z6J+!Y<OXsAV`CG710%hPFCA78E-4$U<l+gD>d1+Kfq`CW7crwiU5&(I1HuD`I{7C!
zb>6>O5h-`&?^e+EMb0GxaHP*5H{9E~UhdzN->09SwjxmO3=GWV!sqEFY%UHD92Ut5
z6^{;&88kXP_NYh>7h>7Y!>p`SI~N@%TGLhp&mVJCWOU^G;^UktlaGpwEnX2hKhvIN
zhq)iBDi|9V9zP-!JT_c8*bSz~xJGKkAZ1OkygE{OtsVKEoyYOVoQqNXo#js234s~K
zmuZ87W2X`jG-%HWXJ2hcuCYfI5h*s*vq!{^m3vD1Wey)ukoYz`*dsg;^Lw$lI3X~D
zMH>l?&IZ!k?Bdtu3BT^OTF(=!({Z;r9MxXPg}QEU=hVQ4v;nbE*(ZgL2~3OCI^3DL
z)9yL4a8$w7wtIG9apAn4x*XShpvpx9&)t;c$B<jVTfmfy-m_G>7^BPa*UP(DE@<=m
zHif<nJQA{-LPg%sf7;$h;Uh!>-sij=vJMukq*2M2P`nYYq~)rV0_PMqQ3ts_lW)ao
zTwX9BGH?_ZHU+uzW@I`!#QzA!&Mb-)kIoGDiVPswwhRex2}GW;1M|r#-I6zcr2Jcs
z{c&CHHz8jNuFyWodoDG8f@w$PWjt3_ar$8@F^daX8{~XNkU#NKi`L)b)Bis5r{Hs7
z^6&qUCGF7b2dVQJH5=B=Un}niwno`iy(UY}uv=&+E6G`G^PMYCyUIN-(T>*sN%=Kn
zcJlpQi@XI~3k>f!$db;|&+VXIZ#VuW=5^|{0c8z=ouL~8c0=G3+xw{Ye*RK@8GNJn
zR{dwxdZ3UHKT+o9m<LSD4CgW}%Qd~DoV2X7oDp0rl2O=`$*WV{bDVHiwcFc`oE<)A
z(xUK^G$+nnUSz3rPN7@Sv&79TVx6F3;>hrrG>3CtZt$qIIRB<JoI63Th|15(IVO-n
z>mAP?BF@itKBF%aV)(Y-=9ZnYEU}NUCj|!+owO)xX5N)t*OK3tBQC9<s{E;)lRS^N
z2KfT85lE8f-alpEv&olbYc3qgzZk<~7-QXA)XPcdo+X}o{4YvxGdkk@y|kmhNB%4L
zJ23g4F;{U6)9rny>nYW%>zFZFx<;+4G}sq=uV%Rm%&Q!Z^=OeyWt9da86kr4%nB5E
z3%Op;c(OBr`#chBE0|-|eWv|}-`IBr^7lalF!t?6mQ;15al>)zy~D+9x%J9tkvDqS
zVtXC;s~qb^&pJY{6Ah;im*Wk$dj&k(<`d=i<V3gKs{gC9>q~fzUBxw=cL3$U*mVqY
zm+YFlcFl!L*KJslG)&GpFZJwV)$MKUipssV*frAFRKrS?H>zR(=HHY(_3)Yg@9oHq
zV3)Sx@cm!C&O3GOYOZ0`Tax=wT>4m_6!ozhwEj=fW#-ksMjm<+{YhZ_-GwY^*14)Z
z-KyhMn{v3qUp&eh12+Wk4A_l<-rmnYy57eC->-^1nV<6NZA$0-<;hHZWX5}xxdS;N
zVE16!EsX=kIqoAiSI={$Jzc&&v}kO83ex?H7Kg*JVrEX$BK=NqPn18&q`y(({8|1v
z8)vxvJ?j0zS>_K2{LG)^ahLJrV%3@c$aY_K2(@yO(=Ysh9sQGoG|-tVn?9<(Q2B11
zoXnSA$U{LTF!?eKSyJl0Dw8h+AY+@;s*97wliFHTa~f+c13<aA-g3aUJ}&O#W@l7#
z4dB4EVvbT}%X?uAb*2w32V(4>%AN+{hfnJBgUHW=mw>V7kI0ffnya4E_LJMc|CTSh
zaB1}ts__cKM9WJ<%xSd8cq6w4bxcJDaPnAQ3|QCnDCc6zZ1R0V=u{`y9?1QJC&;Y1
z<k1SZk3H0_3S1E45KmC86}SFN**Sh*vi_Wn{8#XIVC;NqzOr+-j^{r<rM+)w=P8K@
zLE2(sYCIKqHb6{`4^>Q!BJYd;=SuH4cdJ+%GrccQ1ig><)bA#EU+zEj?+1AQ<9hW!
zMtEP8;vcGC-J0?zl2xA<TX*!35*&778GX5}n)_eEZtqa2FEJ*z*_7W1k;{q$4l7K2
z&2o!F#YM$i?c&?*;^@SQ&M~*zX;;}?z*L+$dVn+VR;G*3$_lYSeXKJrOKzQT-nB#X
zZ?&Ur*9r{?Wt7U6ut*?pLU9j?Uw2kUl+8kXx|RKi#y_gq4h@YAiwx&TX+d$AE7>`7
z#%(nG#|4H|fb<&(3lhqu5*24%da-lKt@gs=^kQx?<*EL!O<O(5e%$8A7dDa7CUNU0
zKN*dAU*2&zujq0G5(mq#vcnb57<+MaNVfdD)!x4w?ftXUWb%PH;Q_g&oBd#?B;Rif
zkyn5<z?6qKktMnM{P%{G`R)xA)%8;@W|*o%m(s)>46D{-bHsYM=LlyAm&H00LL)Or
z<&G@nYLie#o-@)tE0{^(j^L==vI4I4&dkW`6^!O`aagf)QfOvc+MrBUtb#*gG$^^m
zKPzWWr+Q?GlUbQNGB_k$kQ)xB1qnSB9$QXN#~R^$Y&(Co-Tz3ezgq9U_S&%Wul&?x
zyqNLGi@|bW{L5UR{A<?Zl*$e5>!r*Id;Pb*E$$t8ueo-M`-6b@@eAAg*y#P7=Kb6m
ze9fCvuP?K<mCbiTQR%|uM+uFt|I4If${;u^(mS*C*xAmh5mpcb1(`87lv@yY(oPSb
zk;dwBZLpv(7cv$E-K^e`^vr_H5M#1JHe}HS;#h9)NFRP<2RZc>IWv4#(C&45^xRNr
z%u;80gu}a;gyeH`(6%zXO0=CF%;&f0qSu*8$BMIJPGoJk4o%)~JUy$!YtX}Cmkcf|
z%W#5ML^s=xlM#tIM|l@0m2wI9Fx68d@?yAffD<bS_o}$hmOC%x|7DdsrA*TARo`NZ
zc;=DG;i{Ej=F#Cv6@kK|9roczrUt8~Wk*JYD_4S<gTuor?83p$ka8z7GFUlnaJZzR
zEL=RHD5E&5D41VZActy?D(!hecwJ@Am_jmRbz}`o`~|_Hk|BIs89cG)3E>%)*<Q95
z277v+y@UO{&w;_A-e*N{wD&nSI6Koh*`8=q>o`VC!TF;dYIUO1?UnX<p(){S?9j2H
z#jHur53ME6PhDiDb0U`sS38#lU$8T3G6y-u8B^0|L^e4!>4S*sGS!}zb_|!H^|AXq
z)v*)%(N+)Pg0dmiLwi?*M|#!FYAsadu!(YJ-s8_9zX9F{rX0R>x+;ec>3(+Xy!Pc#
zjt5c6cq_0x@qG3-a%}1M0kuBy4wq!vr+{qhv-k+!l)aq^0dAsWn?xpY*z#$Bsx$hB
zCpu?2m%6#x1+lbnBpl1&Htt9btq$>9WKc;pi-tDa+0-i*&t~#Zg0W!wQ7->9669jP
z2<IWQxPLK|CA4`=8|IWb<(av`98o{Zy~Pgq$n_#VGNPRm;6{@EgQO@D?=iw>Rt{I?
zv7SFYP~}E?jFUT%IZh<kuS_c}$O-0#aw3C*{lh)Oy#_I^_x`Rhoz6x0$sXaoJ*22|
zdrv|5&K}{$9>kBdtTpTcbX#Nr&!$}qRImf_QoF)EmI40<PHa4rtC<zCitK^Wi_(~O
z+2D){4-8EVjtUOp5?^^TO>y1+ospa;I}7;|uoal+vinT+T;9|Ds)mh+K9^aGE?(<R
zjrXmO+!OmIY}ZG=40<1Hy`LZ2-@v)g`F9@AL^e!Z7qq?@F^XxI-c+z_ZI;^8(!w0y
zjFa)_#!3gI4+*gq;tZ}hE9N%I2~?#R(_-9x#bM84-um>f>_~p3C^9i}OprHPft$rc
zIVlk68HmTCk+gjB)g{z~{L4Z+GAfepR<K_nGC#N=a$2ykPkKQ{0q?>=8`Ccjv3+?z
z|0fiSa;LPLA1DvSGuCif%uV*7j0tz!;d_}gI6KhyZacWm&dQCY2ZOzHBRK^(+TrW$
z2`-Jv4@Jsi#_N1HSd_JqS6C!FGaPoK7pGqy931{ndHBEO!J_b=%EKR*2g8fGxB4hM
zZDe44a2&@?rv*oISl+44VMmWsn|?Zlu~IGiZE&i&+voI1O?bbP^`zrm5V($)r*pae
zsO>UaG1tAq&I=AD3c-7J_Ug!D=h*x@XGPg+=j3?V03LA7aNYi&m8^HiBF_QyfO)?A
zktH?GR?l@>%KRFkYNc;ucCEG84+mbei7Rz5BDejq2`0mOcVr*tk22%Y(kz!<zqFfY
zvjcdDyKGc+<Q8s2iG_T>9^{@*oZ4*Xr0h^EyKk@$S5R!B7t%YIppAL`vWA6*azR-|
z+E8a$78eQ)3DBQl_#U3<9Yue|jtmT(;xI@Z7?{oNM0}j=e5$_Xc)yz&xX%vdP}=H8
zYyZzq_V*?u&jIs*@qaP0Br~s&y8h?w{;#N8>&@0npR{f&!=yYQ8x!`+M(u|P@53f4
zVk6|MOY?qg76H*)Ge)<6@Raji`o}*<{tY+?j2+xNC1zMnv($5_O<CWlTeNuP@v^$1
z`o*ife(@e}DFY)MPU;Z2B9iN5MbomPB|)c0zdWZj&iq$Fb#YdRc8b<3D18N1C<k$1
zagN&FVl^J6?5ly_w9l)NF9%lvV_yTZB(qMMI{#8W#LKCas7xH>zRG@ILJIBVBc1#@
z;Bc0J0lBlvrE+1<I(N8zp)VfkSY=Nud}dtv1@bq*U6`~dA6ZiBxob1NS?!(O(5viu
zb*J#adao4&w%OJzgkT}37%mJ7c-txmIE&?ND5+tb;;%)&;opdSCAbEd{P-cVqyy8{
z^V*{C88!UNR<UHUdgJ;HQ@kfuHxvWDE2IAX&YQN?5McXuC>r>#xBX%&ftsh<1+GN=
zsvEEUM}GwUQeOUpoLNh}FJSolBTH)4^>z20ly*7EPaI=!hoO|5HhY*iy?;A>WwGTi
zj@5`QIUz1(4RGg?y1-!?2UN=Je(sb&K`28Nl-8q_U7O%FcHNA8A9x5DyIw?=G=HA5
z=S}_DLB6ybdJ;-*+KrCg;Oq(9$W;A)XD53H0))zA+9nc;1r~d=HaFX0W#JOf!cA^j
zpkHW8uppA5di9jgW0aloMal8#805)d8ZdU&AWPb!;}>;Y?~hxuM7kVBoJlqno>PzS
zkz<*mNot;EoU_o;dyzz6i{@`cf1K~~{PrOK3_J@A|I5gdI-56D?aq|7Yvs<Qyvnic
zyWj7e<VCb9;;ujTz>n}Ej8q=0{EeNP^ml;B;3#1DrXou^yuVYpD9?+DUUzZA;g4+V
zYaA|eDkFn~)zbGEO{gB@b9|EGZxBxOi@*0EH-X22;r}`Ek@?qcT+<Q%Hn&s$*ktYh
z;^a7|9QkN42^jwCkR@%><M|ya<9gLzoV;}L(iKdLk>?ELu66DVFjsUB<2fmj2h*&B
zkr8eWhR<|WB0cz-<Md+#WU%+}vT$%ES0z=3SJJ7h44>RP%jv`0dO+wzrfze?dGsKi
z@bbaoA;SaVK+itmzLj!x=@Mp*s^vYl(jMoY%%;w3Z0@~!l<q-BS^9*mGH!`#o2vY4
z!+z5qxl3HD0F(gZ-*RM0je4K)rj-50%&M$PEQxbu<_Xt3GV_`(M`rdrkA$ob(`L{P
z&2YwsdL9#=n8uy=6GP*B_XuVZ;xNO_j`U_nWjI(AiH*y0B4fg%gEp&{EY&Ev2wDF=
z?1lPd)6xKEq{H24;|X}yn`_E?OPD3^+DYt;pP>9YfZcJvOS$<S@?St3Fn)!WD!;z&
zWSv&klc|g9ylOg&QrjdOBl>u4{d10WAWG}zM)@z~7Q5@xCI|XTgSOT^lhgO!L@VT^
zx*5uz1@M{o^jhRgK|L_`Y(th*qxUVPt{ZE6nABY5?Kdl`naOn8?Q&Fdzw>>^`VxDx
z#2Tl+yDmITY*~XX<E36ns;^ddw8CTR(-+8T%ZT|1j2+XFCGFPlodtRx+O)IEj>Kld
z&5|j@!RI23_1;6=*me^q4#=HeYz!noXOLj(T-hDSrTd(n&JDP^>y9dRGBO6!@y>92
zb2GOSBs7==z<Srl=mH|gn)hb?Ol9{D>>7_<@;rZn{0#UxFn0eHS<+{^pVO4m-&A%d
z)}x#3?HsToj@$q7AqDlP0jm|Gdq#SO*qa)4nTU-PGoWV#S5h>_VaH=O8=ePMhu6uR
z5gp|r1gp^RFyXD5t?aBiFInzRL0$xw0b}PTWJ!lFchkA4(c2SLQ^ixhK|SUFVH<CT
zdCEO_%BAv@7n5Ow%~QsXIm(U$@R<DiJ@VIL!}6pZ^N=Ow>wO&?QucMI{4%>6xsCfO
zuHmMC{<!+MSAG1956Qi!gVuI-80WJSw2=G@#9SxBUKb`(n5E7ws_qqy6tcOV(G!z+
zY%Qf{o||64s_*ca{6)ac4g~mZwv!t!m>520c*eSuaP1ei`-JT<7vkl$Ug1AU`L`SU
z<Jd3d;b+Ld0SAG}=dX|@9X_9{*Qi{sCYQI`{1^rbL6KLlS~!%5ThuEy^H8;%;@G;p
zqELuBA7#0*C{QfZ!mD@!i47_>CoB7AtVr6o1bHpk0E~V0$Vaws>Y_E6sJ0(TLsT_{
zMaT>2Zj<G<brYL)qoJa}1>ORjdxoPzyLx(K^OPMe@R)Yz&&X}y3t;T{8d*|)C+nZ4
z93+j%tDCb{It?qVhuJxOyd0aGoY*E~)ob1v=O^2lTI9>XW?*=CB1_t$&ozCa<Di>%
z=0Z6g-Ol%B`)-ajCE}ot_2ha-PC0qKx+i37xgCvUWn@HpMM|S1!UJRD%8m;K)2q|H
z9J<U|=bjpvN@*geRPU2<(J3mQzQmq5_DFfkTuD3}Fc27fPehh<gz~h0&I<1`%9@1~
zq5{w#+$gcs_B+3HtXtUEnIl`nSjM4cbbGVzLDLc{bJz9E%H=lbQp(fQ(gr4~^l8ez
z2KeLfi+#J0?*k8Nn+~^5uAZMh)Rc`C+19(+?Ei{sy=^|dfmN>66U2e>dkV6o!~3l^
zkrvgh=Oy3;I+j;L5s>SU_dB}+)<?#3n@#1;<otC-#Zr$#QCFtvCrdqA;&K7-X4@Vl
z#kqNb_8a~g+V9=SFMyYUvG4E5k~Y+;alv+dZ?q{#%KzDm>P%C{RoE{FzLBf22YEk_
z_I_r5;}xUd6KpEh-zmwzlIe8zJS?Pdl0z3&!Y(uJbtbswMHBKOvETqqJlgq%?F_Kb
zWZe6(KGk7a@iUd(Ggc?d|3c(Cun`!$e}gP(nqCk3NPiw;H~WLV!&@!R7T4Qy^o}EY
zj`llOhpmqZkXYjKrlS7!;^j{`Y~oACovJj4z-pYQ&&bWHakKiQ^(Iu=fV_dz!^1Lz
z*}>k-1Ev?^&VsZ+cA$5<8w`)^!K7qXW~S34t323`)kWEzIE}!6v)sX)lW()5v2btZ
zY=_7sN$+sqU=RJuX*x&wJAO^Fe4d0{3zh=o??z-vhc8F|&5A|bydgU-OoR84ZM~Z#
z4PKUaNXx6zHSXoQ(Q90&>}ZB34v*B6gUIiLKLTUNUy&spethKLlw3L98zarLcI1{a
z7gHSc#z>{o?n$cE{;y58v!@_00V{yvy#iU%;rn-U86zxPwf3Uq`+qU*M=@CEH6aa5
z$mGfkDdbFN_L5T=bW7G{^Q?#=Lw_XM4~Q*NcD2B3+W)^G{|o#dFm`3ub;mCAzFeKK
z=t^RndKN`l-WcZOD{HudR$CK4SJ|-u9%IJ_<SW1yVC=XFx$F6J$_oABmh4ek^KaYQ
zlBeF)8FJT-GUOU#NPMxfqZOVwL{dKfjhuY}=Rbh4qY7D)DW_XIY)@*E^LF~eVQ-Ie
zKiQuApv__W{mzd9))RSs2pbsXA&m@3?;$O}FBg^5*~!Upic8jw$l^>iQ5S|3jphNK
z;r_*TrY9a?^Acrm1NNBy`rXKnfxW=kdk|UDem!oe8{2-qMzw$QygjZ2?tNPIddI3x
z?~feoU-{%2ef7N1nY4BJZZyD@bGS6Z5w}QCj_M5|SpH;ZxG}7Csj{nlT{0ghBTok>
z0%O+#WJ!mwXV{gPikRkAvxU|U;+<vD=4Lq2Fm-I8GfJvj)iTA~h+dN)dy!uNF9XB-
zKC+}L{oGRb-6!%RIVJG}8M>U~4PAcVSi1`(LztBa4W`qV$Izr&`U*qXy~war?^2=K
zpQr4pT%WXO2J(DxIxzOEMLx1U+*5OMVv3@@J<oK_p8Dm=o@V&s5PIz&@<-s$z}RDN
zQ1+Pe-SIe+=aOuKW>CkjRb3cP61I8vWU;)F7a`yZ?T?ebPUX-784~G&QolmkQv;u|
zXBqN3a1k)}+>I>hi1wJKXBO7HuB>^MBUS`6<xPh*nfZim=A<h3B^9lU@}0HF5G$>$
zYOy}%Z9*L4oQ{R3c@{RGuk34s-`E%0$Q_uV5E%Q)ktH2|9-sU&T_Cy9K~3RvXY>=E
zc}3JN#=pU8nM@qwoM+~^L~s2{WydCXOh4y`$oGSXfwAK~WJ!B;JfSgqU8Q}00XuwM
z9Y$?`Q>!Xxcw@IrHCX$SQ2=(8(5uODFDHaaBpxiviR3t!%V<4vsuRtQWH|*Va9klW
zFgOC6$2#o6e@gcC9UbWF_VW79Yn0uU7bf%X1mt;O0Wfxd4_VR?pKqc`mk0c@dcbcw
z)&sJSO+Db^XaNtD0K+V~JDD-3=ejJudyhHOJm!904zEc(W~+9svhyHznD@{BAb%}3
zUX-*m4_VRz9p5{39U{?gBz9!vd0}-5$R8$P*w9p@nyt8MH6)J)5>+THomo<wwxbrF
zD!xno+=zTV*al2~{S8@COz%5;VMT}S`KlG(icMJ~C#dgq>_+E6!24*i@ANu{*GH@`
zi$-MRM=1P}497i&UAe_vDL7zgbYw)@)}S*WE7vY0OnX*V23O06nM(}!D`3m#@Zqzl
z-Rbf-1A;kGcU)+eGoCrPaIl~(93MW&>ux-0huG)2#+eno-nKW}(XncbF5P&YHmH2B
z*_6!pWys$FR|4bjc4SG1AAcq?ovm9l?zHVj`!=<8i+kwhWqYq<z1O1;Ze{YGjYn>`
z)4hgzle^1X2tj}4MrBVce5M?Hft+(O^&J>{W*|%IulJMf()TyEuV-c>S(E);^+J70
zeXR55lrB(j*O%C}SRywhWMrkuLLO~EVUKW0QLs9L)3l*tr-*smB0C%?V1{>izkcBh
zq-DBDCTs)869Q;<;0$69>m04WNZH?reR1rQ^0NoI1-u1}{r`t7>G1U}QQ1zWvUw99
zGU;I^KMK6bkH0zAhs6H&CO_P0P}<fanf?eAMUxXCg-j(|8|mzA*BiUrHYq!2T#|e*
z)*{z|jlkHs8ClY_8oiz~zkNCP_CL*Loon`@4U3n1^XAS{uZVA>z)PLGD`5SNZBWx$
z#M$OZEjy1ZAVxYD%3Ipx8uQkdD0>dVXXe8`M*cVW8W?+yyHwfpg5HOfug|xd=RS39
zot)DoSljPau(rGT5HlVKTVHT#XFg$}LZLJU^D%xBrQJEUENx&Ynpc`ODm$Cc&~`h$
zGNY_VWl`Fw*m2?9iJYDuk)FoEoy@dN^57RaD?%^Z?u_t^&|JGBaE_A~=*!MDZ(}6m
zhRgNy$4=wNW5_Rnmx1x)e~~3E(eH^@Q_cg-CjQ(!-FmQ!+U&e9tEg}BA<jI>28yyi
z&friE|D{C;lG|$zdv)Y)k6yt7EFK;#U@rwflbfB7c2+WKcP6q>Jd#xh`Og=3E_S7|
zd%<^-^=<|7Mc_NY*u4!|(hfa;dt1u7qu9->O(wzW?YnL1Xs^CPOn#Jw-*_KqU?`Ur
z61m`vB@@@1fFH}goJo`kZz;BBv$CTV9#jAS2l+q1xh!c%KC+}2^u3K{9oUou?>*pc
zTq~-%T4oG4c$I~_fm*R5D>lqMJy7Bn=2S?DeA#BZ6Q88Is}z4N`VIdY<SpP@VDjN^
zWJ#Un!x>B0$#I0D23o)y<;>W4?`QRm-t%jAtZVvUMo6NO1=CpL<PxB>-O@}iLnagH
zZU&K7Btx3ED0|xAGxq!kIsJ0hgMhJTAoAht;c^)DOn%^dCXJ4@(=&q}e5BN!#cH^I
zCUZD}Gs`>^(c5yhvSSlGHGG$LtpWKy@DMO|e1I%zn0_Db(dRYWJ(r3_-llkOLp(M0
zGp-1xgukjP>`AJ=?g?85`cPk^Gh;*LGK26m>gpgCo9NC4M!A{Ug&Dz&Yn(m|(YUD~
z<P_)4im=H+LU>#$OHZ5ZGuTU7?tF(WfcM#%Iy|J+aINyA>Wbw1{WRp|U^Os)Y(|#U
zU$=X1O1r1}8F~{vIm>iaz2i+$J<f*|_;)!L*tb8;%~CcRTpakb9X^2x91OhFIiCkS
z#yKlc5jr`n4Qu<pvg;tc#qdi0{snnbJ+a$>vFih5Nlkj+fw|wr<nLm&t$(gp18d)s
z03!t;7yMbil<8l{F9j$1zR&T=(~$R=zt)1h!Jp!`iM|qhB8#_pmdjg*nAoz6(2Fe<
zg{%?e^~iBUc8n_~qQu1HXZRAvA6zk!S9o4wfd8^&2EtpAn;$%>{coaG!DGGOOplK9
z{?(Y^$ikASlUo=p7*d!`Y_d=wl$)ImPZ_@*5*$2aNcJG_w*#~L@!QkL-m7hAl)E^v
z#byKW??bv;Ta`ah`8)o~WV>9Ad<r-NnEb6rmei{AH+9@4aY6MEr|L?ZNv{#!EdLwC
z0_fMr+t?z7F&wMNlbHm%bPR67>@Ey3i|oi`-B^~VHk;E`^dGk=yISBi?~6Yoe-6F?
z#;%ObN46_56s+1TmgRbuJ;6{=TNc5xEVf<~u+w#<3n;cMQv<;kZN~z5s_<XR-)iKG
z!R5f%aTBtnS$e&(qx_L09eVY%>IY&;sb@)xZC%%2<&juY>RD2dw4`2grSXR<KU(3b
zf=BH50{Oona8=TdJY-29>2=}ql=&ZdPX6BLOY}pf{QlXtc45Q<XAn0U<*|-MHjHu4
zV<R2{sbRa~uSNe1z6<|)<jcTjVDe!bvZVfcU9Kbk#MDKj{ide>7jbN$Ka(Bc3HovF
z1qphq;YZqk^c((vApZw2vz*}1MLrULVydDYfAit_Z_@swzX}5JzYh6ga5*skUxO@Z
zRwv`I#TRbS)ui6OM$NPlAN^gpFOw=ciMz-u<<(ntv*K$(Ulsa<?*rsd!RNs6{To@*
zVfajE*-!XUDq)-EtGYVLcM9@3U@<U!tB{Yt=T*0alh-LHAGWQ(!FiRpFg}U%>7JML
zZ+9p^_oBB7#p36$k>3L!0K@w!a#whh&fem^(2KoJ7F)}{g#CWaKFyh-hqYGyj}`y;
zYm)r4kxvC@0>i%q`3U^DoM>t4>D+kJs02gVJfM$rjb=XD_+532;%!226^h007m?ot
zzXgW(L*ygyipxIY?VjH~J-=V4X@UJ-%|6MQY5b1gs`x9vo8+H@JQLIa!@mIe2>d?o
zt;*>KSlfm63RR*<8J|T@i{{;p-YUL}-}{kY1iu7^_f2F;hbh;-=Cr}SnGE;d!?x83
z^$iJ+M=OsTZd3low<dYViVThihIbC~5qNpd$riN1en2z7YFiJ$e3xcE$?=$LZ&$oK
zgbT&u?<2@hfoFi>eF^ypyz-noA>MNcapfI~H+F53w;XvC7zYe*74i{yz2@3a{EYUv
z)wZ62_;Ky=QsuFy&Whcs_#4n)#jnKg-N=uECxPK_MwWD#=d7rGFOBE)OXH8WbpZao
z3I4IBbfd6Q`~STpe>w6fFb)|0D&!;Zd#{U5{C}e}|64VG1Ny5V@cc)96g&wGe>3tC
z_!YJ9rRDSgz0Uk^xl8;1{Um=s<O(nv82)NxNgMRIwK-+n%KM6_a~z43QBrL!z2BJ&
zr5FDzW()`PahV<p2MPzIvAFDJyPO`7&eL=@wZ)|aL2BHo?AQTM72mylKz<551B@N-
zAxj#g#}#8z#ueBxe-x_Z@FO!Qw$0^a6az8k*?_fWU>|1$ySE28{UfK!Okg03Vg5)~
zgUZq~Wd8RUr-E_)T#i2K8L8S`%C5@ml6F-gp9D??#;z5}lD6vk>a8j3Q}RAnb~W%m
z_r|hU>+10^A<M99C|#;dj(6m`*Vr-+n?!H;EM9=4y&P(|N7=C#o)|omKd&Lb4c-OD
zj^86oGVv2r_vPxi_P*<a=B*90rF^wDjIenpupwBl_ui}c%CArIO-4Qu%ms$;4CJoz
zjpDK7dDlYA!ogk|U#qf|0bW$?1YQccDhw!W(EPj6Z~T20`4#XQF#Nwk_VZt-_xG6b
zoZsKkUfHapY)+(X?v=7R2UzT}WR{(1<*?V@r~HoJkmMbQd^|W27~VO^UF97ky!E!~
zXjJjS-Rpd9Tc-l+XF^RNaG~~6?QX^2h<@YulgQ2B1z`AJLY8FaZOpxC9r=9}{BG<R
zZpM@+J;OSej`4Ahdd^LnFLq;+ZxC`N7y}I7IOMMKjrI7(YrbjL@@aCFkS<sEEC1@z
zXZ*Vvxe@FFhVMS)uJVmb@o$aKzZ%WghCag=Za@b4!0;6zca@KECiyu*`#0U%FrBSo
z+P_B4S1TMSlzMs*@^`^?!0_!xmegOLQ`xWE)sCLu(eSax^`_d3SS_ntdztdFHrrKB
zJQQ)$IPex_8dcT>`#MoI3C5}3@lM~s(IIbI&}w}^<@=ZLn)#7FKj3Z$Pzj7(V~{0v
zeoke5YTP3g11s60)DESF^<Nm~bkq6Pe+$mHtkc{K)2!4ysGmPPCVy^0z6;y~j2%Bg
zmeg7Kmh+72++32_+vUHHUH&(5qH3_LrVn7>k}l_(_e-r;o=a#OYa*a0FudcCC7JqU
zKFxEH%TncW)b_?nj#t~YqrLasjf80%bjHgiC%#e=ez~OZm6Dv7OA1~oab7Oz^-2kq
zdpxa;RPyGBwEys!=Wr|Xz2HG$?05uOQs>V>N04iGSJ^xkW#z82XB-w~rvSoSE%zGL
z`k(0Mk6yzY`ysxAI552Zkq^%+d+a(Vo#7`%QPsnWce&DAFZq5Y@>X!2=5qLVwb!e4
zkvjcp@>`uN@Ma6AvIU>4&#XLVgl#oDCt9P1v)!6KT>NL6Ppd)mwW8bjX>aGu4afk-
z&urw5{FL>Wii+in)-SIxCQ#D6NdI~<OkGCwywm<NqSzzK&l>a^-nGc<z=fJi{Ot4|
zqE6VxS<gG;ESDxur5erCj80R3-a-Bl{C~js_ZhMz6PGe|omZbX8(g8cOcvEuCCbiy
zwso7$59=o1jdM-Pzwtjx^3Fj%9h?IU?_%UG@tS=EXC`Pl3V4Uj54H%MljsPvXx=9D
z8h>9!eh0h<4DScXUE*!G^{%cR`@KH)#-A#G%Wq2ZPDP#r<^jXI0J*EYiCy{aX&>;>
zT6K>q-bVDAa`Y7P3*cp7cz=y7sq^;1t26B?>e573GX{On<_B4=ng^@uF~wVabCP#7
z@<dPt4DU4Lj(9t$H;LmiMK#-GXaDog9<I6q#6KY#u71RO6mJ81jlcIJKLLIQ4DYkZ
zl8#t^lB~7+q<P*cH?lqN5cAmu);|fdDD80l<BB)3Bgs1ec^Ie!hIcfwq||)wz+ZVK
zCE5tNmF;=wbjv-R4YY~dR+typy!Gfc{@#kb6Wj|7@BPS<Qsd7kUhWq(?L|9Qxt;BK
zX93Zrg_WQnR@D>A&ri^2>QCs$oQDCKK$5geo!#qHKEx0Vt}qQDe^J6Kri9DON<0Pp
zsMS0*=rn$<LS75j`*=2W67R~-lNdwygQcJKwcU^LfY#rHF5|~5$iD)w`}B9k4}DdM
z^5MVAhbFB*c1u$K5ai)tB#_kAeA0)#mHvA2iPWO?*ZK5+ANdBbt(*GItsshEvq#XT
z^|$!+w;}%n{JWd_y>_ZS$rj}W_25ZWp2pvr%%_u)PXVU`NnOn+{pwL}T%#B&wf-GG
z{d<s~1V8Jhe)ZZ;l-BPFLygw|rB8p+ZJY%Jy+L>E_rFS%6E~P_vg$NXEjnvaD*c}C
zAYTEl^7H8Pv#I?|e|<<aX_eH6N~-}_jaq**y6Uw450U=_{_NA=q{qWY)}IJvdlW23
zS=#`qRr8eJo~+l$BhLV{fFya|U8&c}s~c3s-cIF??N#Mzt55$<<a@yV-PEs7t1IO<
zp`28u^?!mc({2Rspg#yQfTXUL*W}d->S^!bY1eA~Gtg!9FGpSp)^<~WyQ>olc?yNr
zEx=3lnx_e!rhR<{`B&g|A5T}FgFe-$^655}Pfc2X?9OCd+@Z)7U=)xf`P9D)<<<0a
zj>d(ftvdkw0=51+bZzCk)Q4@zKLS7Y>HkEpiyp4Ldis-5Y86eRM`Kk!rOMMmAJ6|H
ze=Qu1Nk6*5ql?vXcypY!6G*DpJXPqd=ezi`6nQyV1tdv+t?Fuisp>bKcPxLXxOVZ`
zqIq_sGmbvtX-57zc*)0;djGoV9{Af4FaEoF>i4Rrj>3H^zan=f%T*ub{-7L45<j|9
zu2hJBMX*~FRBHXp(Piq#mB?GbR-gW^ytmbmLDjtnbW2;K^&jx*{}}nt;IG}(?>h~n
zNFGWw=T@EOsoa_LV<z$(a56CY)D=JA@g9XDdDtUq(E1yE`X54m1U%M#{VK}6B4`qV
zCau2>U2%++a+G#AZ6JsNV}Do5ky5Un^P~DXw`%=0=ra22kk^BYeEJ*pezU{X?{*<c
zRXg~EX$P&Jsq(tl$MY`o@4*M%<Vgn5@ODxuroD<Ou6g3SlKxCZo(@g~CcnDkPim-8
zMYPW&s?t1L(P`?(ZsZ5SBR-z4lq*^2OoReeB>PRi)oPwE(P`cvMfcF>0eyjuLsHKN
zAWQ1Pc*h%HdI4+r)4ZB9ys^hd%iYK>WL8+zmFlgUw+_9A_j=?V;C5hm??RSToH9N*
zWW3X!wRQ$Wyy4ym?}rR7fwkU|3)SoQt8&tcUX!nZdtEC8qCk@P+j+jSimDDI%b2c%
z!Osg`y=~MyGtg=LTY<a^)cJTiZ$DFbQU*US>iX59d798^{CN%e4e+*)r_27d8w4Fl
zG<0p6r}(}k&p6}>U=rwdzO@?+y^`RGJ*}Qky^p66`EGFEx8Z3&UU}6JRcfA3d_0-E
z@eSmIZu`^0;ON(o)o7j?(T!4RU)Lh90~dZ9o_2$y7UPapr+N1Jcz%og9%%hGJSl^u
zH#Jj(=84~*EZ0+zj|bJj<Xe}^b!zATpeoqSnrEwz=RV{Iz{B5$r`;gnU0r+Ve`=mK
zbeiXr`v7rZKo4O2>2m!^9SppuGA{OvD%T6pX?QL}t_NGb4NnJyf<MrxS8ASSbeeYO
zedG_p$3C7eKc9Akg4RU7)oPyd2b1H18OSriTwwC8^Kn5+`__JN@S*Cp(>2#T4d^uE
zgC~*qfoFU?o%h>2;z=DOd}QdXR?TNUl;j(TJQxfI#;@-3wHqvaOb1@4%4b!%s6%%>
zzmxXi7UbK(T|U0f#|s_%Cw%P&4WB5^dd=60?zrarkMR72IB-Ccy#G4y@1^kh1`nT7
zI-0cpDs-9hcMkF*u+*o&%jM5Mc=#+){H#{Zvm2eJKD~(iGWeB`r_1%$KZy8SqFH5O
zPCcL4!%3de$Ya3-VDhWWJckS>+B~wj=Go-q*@1j3xbs``_y!YyHy%}Ko>m`^{Rqz<
zM8LQ4$3Lj}LKD?$o*C$jqg2ZEGUOFtwU4LE<;*|0_*b$VG-#eCAJ1FJ2f=$jp3eK@
zspZ)p*j{y(zoK1j(mcgYNq;6IPXW_`$+s@^bU4WP+H}jU7R|TS$Jd1X7<lsA@O3=c
z_^%;s(|li|+tjDhpW-X%4~&0ZF6SK#I_d+3R_r-dpK8%*c<Pa_0^jWtkAI)RAuA7C
z1A675Qu7=@r)h^iM*cJStB<GicF50@()s>gz?(yqJgL<@m5(O<nT0$T%mYWxw{|=$
zE|IX7YJ7g3_)@R+H~92Fg!~A2tlRqAb-Hg5{f%0Gn@@k{WB3B{LHF!$-`Q?}pjqp$
z5uGTLc3>UyMsRVr^>@(8-lm>-tLEA3<9QSL9q_wu^R(+^Z}%9USLL>NPtuRE$VY=?
zLHF`0rE|SQ`5-#tny22!a~JY1u)Etlhpt52rm3nl&nM`tg;$<S=yBHnKqipnje|R#
zr}UTGl$D4(0+pTue$;868g$n2U3fMiUj#1o@pQf(aVSs9ibP|86^SOzvlpGFzQ2R~
zF8G6wr)%{+bx^W1QQ=!PPyC4_&oRi8!Bikg@~vw;?FJ>gge3NJRnF?sW$MeF$UDKk
zKK-4y!~XnA9gN(YC}@?M=Mx`K^husQ$N|QWuJLp*7}-r@PpZ*8HRv?YWfk&Tu-?bh
zwft%~7<oYQt6uAGLRTC<DPON3{|dbB)8BbN!=GQi&g?_#kvD1mvAs$Ahay*iQ9x4H
zpSQm=`>;pQs`b~Q%RKMzBi{hF`Sf?~IruxVP3l>{pvqH=Pk$ToKfu4ct^bhD>!YSX
z#Wm0Pr;>i0g1i8n1x!A5&5!mo;d>yd()xG!^gn_86nOgE==XP8pD<qVKG!_fzGQjo
ziQF6X1;&rAl_!6vb+7ll8?^pfpZ?9rSA%PP`aADOwkxlPc2@VRde@|R4)}OJL;f86
zquV?kc2=JerWVap`Lkqxor1gooCQpNb<LlSJE_eOwP~Im=rr|YAM(@SIUi5g%2x-S
z)8|#b#eSjcOJsktzE46v9#jJxhorvGLY8!x`Ed21;+Mv!$2T&_;3B(;akKokhT(af
zf57E7@ypQIewzGfr<a~4w;HrPJK!_z=c~x?fcJp0rxjUJr~87sWlil=rqBC%)8|{5
zJ_pwMZcKJ&#a~qU6Ms7S9F9e<0@Hvbuiua|UvC^QA0ij}bv$$aiqvzhzaCx2-&>LI
z06Ts9JAYp!^v^SQ2dNdQSH1dIr}ej@%ao)4MgCfJKhrJy+s%~!S~npLT7MO~jQ-P+
z&jPjG)8DSM-lFw4Y5k2p{rixg2G4a*fBVk*8;YPs>$jdw+Fyp;7Yqd5c)lHU*5A}#
zFz>2)miu_FMBW0nc8{lBXZ>x>5PM0L(*r*Je?<NmeA+$zDV_CqJ%&oHzq~n_Pt%dB
z!EDftd^)s~{)a?1Sv8uc0iCrdmHy3x$Pa@@{XCua(-ZX}rIX(3b<*p#{x)>gY5h6R
zG4=z+K$6tw&im&n`cpdRA4=z()U0_Hh+e*X;{fD~z@<K(F4XJP&iO}DvD>u%y*~Y~
zBfkj_c29r1PWi`Pt3kVWK$WNB=abKS4DvWI5lHG{yO-K2|3sd4mDaz>r~hW;TfiON
z)89d7{8ROE!^T?8(~3^>9R3&iYvK5L(vL1YhjyLu&vZUDX#G{_+613G=QEJc28(?9
zJ6{(_l&AJ90)Gq0b|I@p>u*GtSr2#)`2}#mr@!<0`S$u#R|47;jTL)Y_XA!?@{}VF
z1tWkYdEQ;;(Zxz_;rV;uI8TLDt9k0sS<kN|zqTXa3~mLIgs1cQ|5Sg3r`^o|7sAz~
zc@Cm8jy~b}9Qp6yUp}7B`?U!k-yrE<`l+)YQ0pK6i)6W~L7oRr1Cqp#E|e?(An8j(
z5PL;Ej~(bT@6{&c$H0?5{hjy!688HCNne?kwo>c=(x<=RMSKChfU&;|`VSc-eGN&C
z*1rH<#{PB48^Oih*6*9y|F80(PV3+6)BhXfx52yJ*6$x2)w?pK+Mx9pzmzOLmB^#P
zIAHRp3+2Z@DBA4Oc1vp3`ZxLX-;8_<xWlKv^KnGt`F5~P=o(jVm$X_nPpgl|KEV11
zhyY1aPP@R<;h<=%Vfv*iuQSjYN1xQU^O0AB3%bYC@u28?iYTsmn$T&=)oaLafVX`-
zT`0F542rHZ-dI(dC;oD>eosX{5zGO$&bO10B^_p5WQGFf0KxPXo0cw-v#{+4LCL*B
zqOV!=H=^IXx1K|O6}%1%|69nCIvodf%3f4+9^uR?=E|v%CmHkrPN$yb<g0UXuj=>z
zE6IF526-}=3M5In={%p?yW7FWp@)JpAFp}p(P{kLiF^;Z-^bH=JDSRqG7Ne+=+(Fu
z&GQL5O}UBulK5vJ8+6~FcEh12@kLUb=BYua;i*Gj4=(yvJne=>j~brXuhjF|>*M(?
z@_V55Tk*6X9_`UYm6|91YSN$S$kkvrkkq|$(7`b23F8&>r<$+9$Jd1X7<lqq@wFQ+
z?KMnwn&(R&Psy)bs}%GB-S;bH*tB0UHE5n%bei&THS$()-M8X7bokT^Rg>m9fX-Ts
zm-hEl<iCRd@$+;#Zc433DZ{7dgO!pet(vFu*U9nI0^~EnLLf=XL+9hCj(JjsQ7;75
zFv^PmT9xxgbes0!=g2RDSA2Y3Zy!>JQ!jcAM2+T&yq4rCM;;1B0OMEJdD;!D4yabh
zvg$QY9Xd^U_#yI5;1(ZG*W1<9;ngc%!E4k!2Yo#MMdsdRD+r7~UFYdwnDuJVbTh1G
z%{K$x<~c1#UJ2Iv_`05d?S@;wHu=}4d799<2`8kSzmEJSIOyZ)e7u!f{@M?_T7urN
z%c^`$zyDrOj)$s{r-BoJ$-mCWLml#@4!_>ebXJ|_+v?+c1o=_$#QzIlyJ6Uy!Q(v3
z>0fBRFVS7k?<61ly}_Ip7y=|oJ??xQ)`@?I49DK~IAbj;KbNCBj$Yxr2KicWy^pW+
z{&XszZ&-HFln%?P(mXBbH0AJf<iCS|`FOfs4*kQkcN0W)nrHlPlJ)pB<TJoIKvMVK
zi~eESd*(G|HE5njAI}TOFM(fvE1pA!Ykv^3Ce0IhGwIJ@<YAx^bl)F%e8aX@?NN*7
zsq^t{L;ex?@wesi58pmiL~WYqAUfk1FXipu$X|i~`gpot-u%P3j}qk|{<<pHRc|GE
zmLabItAWY4&c|1Wl<Py+xIRg?vsId}$;WpP`FG&`Z^hT)u<ldCSgZNsZzuh$MxF&~
zK==LYczE}jCal+d4d^!S$0v}V0#Ez+y8hnkV3_we;~nD<%@=tm*<K7q9tFk%21Q;y
zJ{nn4cgK0-`SZh#^Wtx)^0O8FroFl!c@KCB82+b`C3SC{C+vqG=e25n>tHg!`y&qm
zLxH4jv}5Bt80UTE)yUuI_8*<b&+j2$4}Rd|>0-MKPs%v&YgHvHHBSpVP5Eg<{s;KC
zkEe^}M|k{u)c&iRF{?)NjQ?$tX94n=U?J#!zO@_Y)ra(WvQG0f`gop0egPc#Ry^&;
zd7Cv+gXW36oAjpwc_cUrbl;y2#(7(eSG;dD-zFd54&+<Go!^SD-8k<W!_=aAT75ju
z@8|=AG|+v&QpS1TQ%r4|X9hY=xm%4~2R3{wo<qlZH$WA8Q`Ms;bk<_Lyw~19ehd88
z&(pPW9_2e_oYxSllsu`@JjL%N$9YxAQ^5&9Qa8qV37(X3-nNh)=hbVzt>`xG!-L2V
zgGYUQU2h*!$9daBG7;3IdD?tDvERE^9w-9Fudeg78|U5Rk)Whi^DIE8DG!$-Uk*0=
zc)H#WrH=D<sDk&FDi6&*o{y3L4F3A9csdy8-4aTS^WvJX@(;=9RD(PZoCdm|f9=M3
zx0(E_(L6iQxe29G&Ywcw51M^ET^#38{@Rc8?g*)IUW4Yb-cOG6%8`eH5y1G<#c`hD
zNgd}kYC5Y$^VRwIZbrTZ-0}ay*KVA*GjyD1xn;%QR^_7=-SzxV@-e-YJD@=>kkpNF
zUedoq#(BFu&N|IkgYG!Gg>Mb=1z@9(uZ#U|_<ZBMdrj$}-==x?qSLe&?;yVm{@~;3
zdOh}!^L8hQS~O4mgJeCPj64NQ2a>wiKk|?B9x$&dt4;H4_3=D}{0MmLTk#w+&U;A6
zV(+N((B|XG`H=k&pcr)DpZ4RthqXtQnr8tzP5XBV@@3%4Z_DE!=QSy!8qL#;&N#+P
zd3zuEL-4VWr|ad-KhAqJQ4Z=gPx&8{Jadpw0;d3zZ(SVcNx43BocBbsoo&>7JA8c2
z$Ug@!eJj2W$9a1VW3%Rqe3bNWB=Q(A9(3Qoj>mcXG-0de+k|dYKJGxi3*6)5>&E-B
zgH!*;JFGvb%RRbHdy)Sq;y!{hV8&T}ktKC^oHueT?Z9CMdi9#W4*iCI8}jX7Couf?
zB1`JtIL~80>_D&Tx61!d&~NfP^J8R?4<vP?9UD2egMr=ws${L^`Tt4#62Pj8v+Xl;
z&YW}Zxoh@4xd|a8VM)T4u!qR1EI~j)LBbLQ*}`fpR-#g*h#D0Y6(uSn?op{y_0wqm
zELuOzXRSr+60Q1CYc*B0Xs!OwoSDhJ2?3M*qt89>y}8Wu&OYzVJ98@$r%LB~$eVy)
zMDcX7U*<d=482#~Hd!xu4k1pJp0^>t3$#S>bg}-pJkf^UYqB3}lsw`8i|~wvJPw!y
z^dR5b8G1(~PqXCN9>wzj<cERBddAb<&}$Y%t&*oTiYMt9?)?HXfgYr%6GQI}nJToS
zcSOCbLfopHE{D7o*xoa~c81=YlBrno9FF4oJLE5buX@JQ!O%PEGF3{R;=e`Ga}MOW
zz<i(w`FFCR_ikJEX*H6s0dZF$az4KO4)V*utI>R2v-fyC?_lt~?;3m!lE?lmV(*ne
z9t@NLDqUUN*NgCUF!)-e!Pg@BY7w{UC-y+z3)~aM*NuLnqrvwP?<hil5%sSniii9i
z{x5(HsC0FMr=7v~v78~4OP)!HQ`Pg8kk<g~qj<W}A9XbNKIOHdO7b*D@%$O`JHY!r
z<LSiUJJvRE)=9qb=aF(63wazc3FtxowKMoWllj*udA1|YT13k0`2&z21|Eyz>7u>I
z>tB0=?{i^+wMw2=#Hsu#Q~m*;Hy{kC^mNhQYvbu?@O>c-zT$Uf|A)90-*(7X1K0h3
z@wGGfTFtSp>RO%TYew94_=xA@50HNX^e-am>*Bs%RQgUb_`c$t&62Miafc<}0?3Pi
zrBQrcoPTq^D1+~~tR0B>J&}(G5U1)d4nzI}@Ol(aH`;Nu!S}5qDwaH<FC*=^81f*X
z6yTwo^Q35l?}X~vD<w~D6we)y8-RU1<2lLT`yOO9lBXq#hqhw<6Yu~%NKbo%?+1~h
zddV{hajO1r1?1Jhx*qdH8+<>yM2(WC5pjm0Jg?u)kpBq$If|zn^)1@qtF!nbAwrAf
zN&aVqXAI;DU;@AcuLoVU_uP7Yvcb32YFk))U)1mIQGAa<J_sD@8DFOc-!{n@mV76o
z_;S87wBA4g(1Y}KZt!gvgyoWN8RAy;<2uMU05?bRb!U7$+2GsJmY-FUuLW_d{=)bg
z{(e9ZAhP^oA@k5(dvB2YBQB@7><#g?Nd79sulTQkd<}2|p!jcw%tQC=J(vBo_FlsW
zqCOo({3^fy!?})Q?gQ}9jecy<z)tMFn=RaTAbH9Wr%LBy$V-8XqIkO4FLRy__TFx{
zNw!L!1Bg?l=M~7W0nJf7U93MYPqe*v8`8o<s72&k=$i;n3FN^*8Nfp~^R1n|w@306
zOP<;&p4%Yb0o>Iyp7!?Mor0)R^0Y+pSl{CAKOg|~AU&Pfdkr#Gxc@-%RU&RxPHQ1=
z0BU>2*UsL%TQb#4o<mVQe}Viy@KMirI@o*rU8Y9K6aH5uJrf{L2Brc%$iI{Ay$9N|
zPivNZ^@zI)k@NBG3CK?ZPe=20&EDhnyo0^>kX6i;{!rBO6Ns}$@?@XD-8Vo!zyq)6
zU9|TiJRR)4M=Y_yS1$RMA#T-A?1X$BaAOo-H~NW=_Fg0JC~726a}>`%As+`$^o*yS
zz4y4BAT&sxvhO1GVjkoLz+yn<UpM-rj`rR`UMrd;PeT;X?;*bm9O)TPC-&ZxZR2K(
z<O_WtDW?+1gMl(YrK=m|)Xv^JB=axyk*I&Qh_e=v@_K$7<U4@7qIkM!@A3NA-rjrK
zayR%YB~J_DRQ8wW-?;A=2mvZRU9|Vwcskm9&k8!NUh-8UZpBv%c{8x(|BJ7kz4x3o
z)>U0=k$g>vyAB`meEb~pm%!Iid|kBnqSAMgz1PG!i~lOht@ww?ym&g~vw?E}9(cde
z#rZeqi?a7#l(hrv9Fk`@;#B>`A;`}F&qwieqaH@vdoL-XddZ{xC(@3?kb41r0F|C@
zwBu-d?`74qH%gvmQ9Rc`t_ODYjOQeK?=Z-kB~Nn{&sUJY0lw=oPn09)t0G0MlBev)
zNWPs9`2t`O(1UzKdZO*U*Ic5|$D+P9AkHu%<@LJ>^6!A(NAYx{zD3)6M^rs1mpt}Q
z5uPH*1A(D{N>3N<J-1$;Z126%*3VW+zS=0hyCCla4)lz#Q+w}C$yg`(jz#gsYD`N2
zQh*+$uXB6vEkW2I`Q{*QH4oeZ`3hiL6kj*mRVR*|N89qVN%A!#Zq;8Lhx~8gCqUU-
zl!&x;*WMfYGY9s{KN0n`67ehkb&!7vTmdNlZIF5Bp1tR?pVr>fJ{A0j5x>gse?V>p
zj!VvN*eyc`cVh2-j20P|JjFDU&Y6(U0nP(>;5=RImpM-dd+$@XNmfdp-H21A=eLlb
z1)8FGx>$c)o@jgTnCQl|8p)&S5uR+wxj;Uk($fu|cJ|(9lBZtsEQ{jV0r?u>`kwK$
zxA#65M2(WCIg00BkiQ3h>={od_TCpVRapO(eC0+Y{}w`C0xSc1kbmv$y;jN8DtQh>
z@%#bu5#WuU@pQ2Fj=M~u{}b&f#3Jb#3V9eX3g|(4PPX?>v}K=GEcxmXcNHS%<J&!u
z_X7_^^L5SM<Mq6Qz4yIq?^Q{jV~A7Pdod={;(=s9rK^kfUWBKEz4wE(_ZlSM93H<+
z*QJoR09Quwb)%o?Xz%^VJBnt>(-g(?A>@yNV?E<(XYbY7AmQPds2BNGq+U#cJRO(`
z@X*cvwWGavg$;WzEP3jqc%Fj%H1J%{csjB7w%Tglxm@yTcBGuLA?E`5fJ#?4%Bh{b
zw@v0>jpSK|IBO9puje};Ujtkp#nVN5kJrEU_TF~ewf7n&Pc!0F_Sbiif8ZRRNP4<x
z@3rxCwD)!hI;~aml_PG&w+!+MV9oy*Upsqmrw!YShw{IPdf14#>+qiE<GYYQ0R9@q
z*F}3TDt#x}d)IQ#ddU}dm=>0NV<1-m6968%VefIiD0{D7wJxnm@@z+(s=qh@`9a{(
zD4uTA!)SZ&21V2=d0G*tnpcFpOp61O0F|C@jQ7#@-Y(vTc?f+b%4rVbR6M_gTnB9J
z8P7@f-pwE@mOM>SJRd>+1o&Hzd7|vS-6BPmk|*C6NzYl3rvYaJJan`F>tOHQ<`UIN
zo_fR?Mx4BUH$r{_cq)pgi}oI`Z_)PN9#sz-B+rQ`o-9Apa)3O52cDiT+Iw!jKH1)D
zXzOR2B;PW`9Y(x7UDre21?=t_U#Iro-IB3I@*R!hqXDKdzyt8m&GdC{@9mR>e;4(A
z65>|%eGTMwz@{j^ZnUdT?7jVM`5BgcO^93d7oR}>9B2iIOyAd#dFZaaS2C~+8FXrg
z&IZX}9*poWhP)bB4=DbNA@k5Zdrz>R&fu&1T;%s5#IN%EeaIgIpGeMbv_}wjV(>k#
zdNWO{lYIH1NP4G0o({|ec;I|p?4Mn}4u;=B-ZmR0Pd(yP>3SUUZ-C!M@pQ2s37%-f
z?@5uSX329RiYGOOX&FE^pwiPFo_2=cA;Hrsd8!bnO3#&$w*fnP$kX2Nd)g%m{X^7;
z!%;k~kiQ20)kB_648LbpjVP9UWwDWTod<b7un_1;{<Smwo)b)!lBXex=OxI$2ma7Q
zo(_iJi=3%O^4M{a^b|oJ2n+>!lAe<dzn4|^Y4wt?7I9Z0ay}mHfxH*ECz`KocAs0%
zI~ab4?PBa7NuCzOStEIzc&7P*7=Q=fZo6prMe%en{9d)iM&B2r9#$f5)h};^Tnk(p
z#n+vFqNCyW8aj$%$#W=*=N-uJ0U!2|r=8(<M9dVbBu_XYQZL3so&-z*RQ`3RpXg}#
zHKSJ4NuKRdJdKc_0G{e0PbY@o8)^V;kbEZ)w<@R9MD%|^HlWhgopNet_`NCeuUYa`
zA<kMv%Io=+khcLlqIkM!_qp}2z2WzkYl(%vl>Hy#RCd@`kiP-Gi{j~`-525MX!so!
zhF_)RD@%&-Erh%TSO%#4>j7Uo!|xqw_%%qr1Bkm$=Hs6r9|hix;_IT_7oEP748M25
z*(&*xlOyxhGRPx<F@Q>67w6$FUzFkZzNj5o?`Rd}R);uMJ-iF@KHxwUPj~8JwBgqx
zi7F+}F~q6HVNVLvd_V|L>FG{8jyC*0l0AEk<f-KGB2r%8H$lDx_+<}yPBQ#HZW~6l
zddb%m#rIdpp8}utoG;1%{M03Dlsx&Vk#tRgJRO(`^d$c}7=Xt(QM2T!N1S1qe~&>v
z2po#y=}x_iHUK|U74M&--kpfz38yiw7tjY#>FJ{VC+hdf2H+Q}zYR;iWr$m)>jua-
z0k`&$uTulCRWO!IzN1lmdOFigzyW%azRnH6uUx_^$u|jct9oApc|CA(6km7RS0@JG
zah0ESlJ8Iy-=87B1H9iQzV$1YFRnht&HO*KHLwQB6V8bAPop501LFXdkEiaRqIfzO
zJU^l?Hp}?y5SPlg+accx+#MDFsq-y5{%Av|&cm0YT4nq#QStv9@{a(`jOgE`_}dvc
zSGe(qz7p-I9C0cA=RsZoEbean?G2l)oS<07-w+l53y@y|4tF>HP7IoDZYpr^q~x))
zBI)P_IS(iVR5^DkpV}ER+g*kl8UM1V_<sd?JFv66@pmv_c7mZ^#(y{}{$r5;4t&|&
z_)j)m>SZ=*jgqH09I;!bLaqd60d4toO1mYhzIHHJZtxUqEi(Rk#8rdH`1tt*<R^ir
zqvAicy>e3g9SoIS9&V_Fzn1+!;#BjF#BBIN02zQvN0-`lM+4<%kK8muy^=gth*R-w
zhI|=tMR$4H87RA5k~$fG6XH_s?|sN00-r?1-=%un(J;A9mAa-iNS^$h2+w55Q-Df9
z<yV(@Ix$T4c*KrWljNyKoGQN_g!~Bbcoa{U%B7t_a;KYLtup>r#8nHWdHwSBVp<T0
z15`RrZI49Nul9yWg9kfM#m7axszhAM4p|R*6Yz_u_)l#Ybd0~F0dhB|(P|{mp(vhr
zAioEE*h8LnhQ~h7Se_S6k|&%Su{$O}o(xO{c;M>?r?xvzPR~gO$9}=Z;|hHv@~<9o
zhw+}5&;5`e0ve<EPCfsN;)^mk4#*~1F5_=ST&jLKy|Eqw!~i^;ejPI^{%Awv0YOkB
z<F7<qsy$u=c@?lWD*i6DlV}6uA<-7=W&Dj%@xKoF4dAWr#($Dw@km>PZ<IXAd69Gs
zhFl7a08~D8DIMU6GAJ53NwbW<HY)y`AnykD^dSCd&%wt*&?@6Uinzj1me-@NAb$gV
z7Zrb(>QS@-aZr?V_*+p=%lbs(p9^^&Pz9*`Iko)|RgXHk3gnRN56dM_Lln>NAioT}
z+FhPb4Th&(rYgx}=SR}h4{{MO2<TRNIyV%a<wSLorv`DV_HjMrUBK=ro-Wm^P7H+S
zWWF^>o)*NZ+IeOH(|Q9106~IyJMRaXhtup2t>3V2<KhkB&22wswkW)4&6<^wA2+KF
zxBaGac=In$|NCa)e~Efi3tpwyLCDVoF9Axg!;pD6<-Spmw5qCbf9K4?mH&0P@*mKa
z<9E(1jPFvfP+>%`K9C0h0|BMi5Xd}q9Dg_9C(Z^8ShjHevH|B0ES(SS@KbNd;<(Cr
z({0dQtQi+;+Bn*efD9pgLgYgo;#2u>6XXWqUO@5P51EJL4!^G^_^Q{oXG^NtvWC<I
z)_B3#hy()KQd&+Nty%K5B0g2`Jbjs#3S<F_Z$4xmrc9jSKGVmE=h9Uh2ILpwwP3)-
z>y~e*u3WfeiAZ5mBe{<}N=PGl1P`zF5<NlT@|jHoX0qWiJU)k-W_C8sWz-<HnM@rL
zpwwe|Oozr~Qk$gEtXSq@cD%(b7IgT}FB~RjkzP(q-JfD`^{D(_<X0o~3*!^spEW@~
z3cLp>{Zso1{f{jadhc0ulKwRdm!M!$>+q`&KM_(#|3=-%zwvOO{R@`%B*~>2bSt5L
z5=SYSVUD9d-%di)3_s%^SaDW-Km0Mt3ecUz$GmZX<+lQ7#6bC5NbF>*zd6IdofzYc
zFtKPJ8%q}Z#_GkiuNPn7A^f8(f9R{q|7OUK08aoaJ*|*=__*qH>1i{pBdL0~eX0&x
z+B+RnRoa78jXQ0saPE_w>FPVDf25w(K;8^&0aUuKgUmzuXpyd}p(m9SD%%3y(Nr&7
z%^Onrm@%Zh_ZSOBv_<<7X`!^2?dZJ>>P3?pXAI`eSgWFf|0v>D^}Lny4nRHwivMHC
zJe;PUbN-F1moHwkq#FE5E#wFK0U<5q9^(VIqTFUsi@Zbd;s;WItBF=mv#HmYWg66p
z3xtFHSnnLBr<>Hk=Q=ek-KTp^pFvZpZlFQXAk|IX%kYU8@4SWwuf^0)9j~QZXe9VA
zC8nJ9W<Hk5vYFRTW44FJ(a;yv`Ukb?DC(i{_%}{5E3ggSMy#2vKV$gUx<y!umFfrL
z+;98EYqpicT!|4Y7V&usLM)H<Wmy5oN@Q79SWmz+8x{2grRhc<`Hs-Xh&~gE#{AwC
z`CC@Rv|_yH?XVK^GGG;;^7r0ik-tBjCCWAb%udUf4;&X(ujBdKKt9#?64F4981CaK
zve(V#YaMNyo==ld-uh+iVz22pc=iOs0cse5{9wM*UoYkvoI-V`Q=OQxF~p$BG(;H<
z>fTtL`6e6FOvHfq4-)z!p*+J9ZM+WQS*=?s7P1nbg=kPp4)a(6U1voW{zWs<{m4q&
zG);my5Rdn_JRW8tlYb-s{(^k=K{w{N`WxvqThDb6YXUV~y-@n`lLwiW?l{z<&H}y4
zqRIR(^YwYuw9p;;lk{ZM@IiZ|O{AsJ?rn|Wy2Wx$4HWelT7jI1X9>xa4%4Txslcd$
zL{`KKofJO{gi%?F=^)07>mwa%yi92g`6byxX5pi9uPDD0D4%>;e*O}S0YEOG%5MT>
z9`;QT<yLcY`^2<h_2Pva+{RHyR&615WGa8Lw(xHBW1@X!WYZX^Zc#=uQ2Uu~n;9$_
z?}C*2!f{aWSHw&p<>=;%eL}B#@T&gsZpilo4+BcC-$LeL``A<J#oO(A-eXjqyTFDf
z>$GcG2JMF$;V^U&!;Kso<boR-C9gdYYnu3k*XMM|gMczX@j8P9Z;c!eJIN21cTuhA
zD_%q=fxhDZnENOYJ;pbVb{oq!Vw^lX7VVZ-WXoh{vte0w91R#F2I<4mdNVvU$w<cg
z?78}RPAv19G|@RLL(kMR+`r}|8!4uv#~9QTFnm_&3VQ?Vh2qW(d2A=cV;QNs?Vtzn
zmd^FMe__eY48<hP)mPd{r8DvE3=Fi%%o}3POnkNi=v6vV#KIWM4fTr6jXRg+$Be*d
zCFps)EXz+lhA~C&jh<q>4fa@cXtw3|qYOVaj1Vo>7t!;{xwM45L1<rcAx#%!cX6yJ
z*Ja2*Ro^y4-U@67RQ}!onTI*DTu(6`tmoMqS5KB)M|jb0(e5-e=nUS3`Ajb84gqdF
zjgq$o@v466Ysf!v&cP90FJvALj}rCi6ufS+g11`m))DOhh|d<p7ex^l$BFdLLA<IS
zUj%tGPzR{=HbCa#XX^1<QJY>SZZ*0b0}!8JeWq(qn%U?FVr&!jXa<JC83v6@3WY3(
zZJ>^YQW-}Vpw1VOel(<Sq`b=GLrn`O2>nigUyYB>5T+#pX@JtN2r>^pGd?cn`qf-T
zFzd9|@Me!0=UZkrDmF7>X)ZKyh{Y?(0;7Z`LWO3@UyJw^|J9Ih1?~hC|3Sz+{LK7d
zt*byCxf0zQ?|!%nUlHvKse%{X`dP@Gv(O7ei7Mz*fE+;=>_(24=0uSn_RvWE%!FJ4
zOazoZk3i-j{(MnSmYgS^X!L4c%-jFcm1`DmK%Qi^&=2Vcl(f(~-F-YM-c`D9MtnfI
zqOW_jomLU=)6IDpol<-iPCSa!Fyb&v4$+XuLsJaucar^PA6kZS1S407Bw_+OSD$6r
z7>bx4zyvzS!PnzFCW{|LLxV6T*%-Y19urSLCMSH#c^#p9bn`}H%*M?0Z2bm8?jmj`
zG^EM&mqyAX8*(Wy5>V-{fy_ha^<mM*rAw>V6%06+n+9iZTwTqpMKd`-UniuQRJyO1
zzK-GNFuetLy1+OHI?3qc{76HoVNmoskf`Bdx;cWDpwhV0Y+}XaLcWx1dOe{R(V29S
zKA#V4T2qG5y9s*Pc+dOoX2^d5S^%Z@3CKLmlkK}zuFLasTU~u|CCs!9V*XLN89xVC
zf}evsOpg$42j**8wq-GlUKTB+L6X4IIdeZ+L$itHDuH<GGld?L$|8EqfxHA*4k$e?
zhs?t`IiBv6Pf>qrY6=D{U03a9TU7&rkvbVa#(kJxO|?Bx#E<qn3QtGRL*0$VI0i-T
zCuTB9Ciy~>hAg4SVeqJa=WWRE0xgoevvs`)|GCSTY*@z24ZKO(0{{<AGT!j8NW4QJ
zmjNRI9!?)`<+|#{%hxYo!zb|~?nm%!k@40>#k(EyPT=}3#XDi;!V3}QO$7Sl<skJ2
zFg0{2^<z5i^_f<{V^Y7xY%fMX)1-PJ7{K~VSme_QaFjuJUT-|ZvF`z70;;@<AoEZ&
zRkZVQlcU=^FE6*Q^E5S)XUOw}G?B&6qbv^7CaS%K!n%^6_vO`i8ZV(u#tPJ<JSK}v
zYswaS)Pbi`>TwO^TYx=)(&Hh>JRDyj`1ehT=rN&&*WRT<hcBRm7wq*^I|lXuorrNU
zKubIz&!&}hC@r8v`M@ATbB^HGMnv+#4><`)2NZul$UM}YA$YfrkMPfo@Hdc`FkR>T
zpAt;hIsXV+j@MklKaNhL1-#Za^%A_bh*#zRR>-@6TLHy;H)I}um?rp+$|tX{<JYZQ
zv(8O+BY8+HJ)}PBX8kdu-3IdiB0S4y8@Y5Y^@%h$<_g|c#9NMddAa`p*&N9<FQ9nS
zAoFlg@|~RDBD>#|+5Iii9&(f0KRUaIwq<u?Z^63^@s=ZA&btY69q=na@!kZPhg0*e
zbQ@3;iDLfzbj)saT4SEzKZf{Ket!$u9EEfPia!f75A$R>=gajUp5GT%Z%{iuSnRn%
z<oIHd<5y8_AEx<dQootQ(#;sX#9+M0CmB_ABuQx-Xq);7J!-(C^tcT2wZM&l(&I76
zJS^#CU7%*+y7kqoH?Ben7@@04kc85JoFMN3UMJd1hL6UXj%C<s7$$X0sj;dQNcN<|
z6i&yD48*{$WPQHS;{<rZ;Nj&F9F2W$pf8~Gm;;%I+!><&4L&<k@AC_J``@^F#p*Q|
zujU>Uyh^l?Lztam%Ks1DeO$n&{D<j&OKag~kX=CkKxi1FSuHvROo}Ya9#3Xq^zOqh
zmE+xHo?Dj~n~lx-CNoc;qCZN^3A8`!h0n|T3B4Pkmzp>I4)UA8+kn!$Y>d$RW7%Ki
z%4ejXU$k(^Io0bHLFcRn`iilak_LLYcQ0lnhw1Sk?#C*Hg}aSlRiU2|LtiGC#q|p1
zqw@;sTVgIJ(B4n5D&b6m8Eu<>=Q3ETafY88(W#@YS9l_aU;?7P8Dqsx@^8`kzna3+
zcMBH9$Qombak2g}MJjg@eH@AP<$0eb^jCyDNPKy8y1xz&Zys{6e6UFO0i;W%`x(eD
z1Fr%q-S0!@q4W77FE8Xk1y+-g?zrM%MWi^b$U=(OXm_#<th!{_j)%`cVAuFzON=%O
zg)Px2`SZ&o<KGC#X8@A`#Xko!4;|NqBl!-gxK<pauOn->@V@do3|lZw{g|bW<mNqZ
zILoO!%_tut(%pb~lMyekr%ytD5%@izcnih~-j3_{?RY0gR#|GsW2%0DVXh8(Q+tVJ
z)5L+SM9-wDv4)d2KAl>bHoEE<JqPpkxXfhMXM8>zfg>}1J(1?Htns<5@A!T!fuVCx
ziDmxS02{`rpIIg~hYe&yl83SqD+EI|ZG4!GLV~6lPqDUcK&vbh>8gd^VVSO-kaq)j
z04iOtL*}8SQ@c!-=L9+1PO6%RDbp3yoio+x+71{;eg{)a9}3m4o0OJ@C^uQLl){pj
z=`n0fIXyayrNI&LECpIt8`o2=W%DqhUvfpn9vA?53@{E*`fY~H!%8_G)<%tsqJKaM
z@co&U)wR5PXeMuo$?zR`@XWsnYrST+8KORvd@e0R9qf-y32LJv#$hdSvS$Wfbr|2d
zSP3%YV-1!RgB}e!-bLs&#F(c0Xdd}5v^TDI%}AklGxQ2WFJ50hf&5S4TR`buc!tn>
zce&`#+S|J_U)z?Gld47{V_y*&d!Meo!810ICFrTtM0K(9ZR#E6qX`}_ssPQ-WGUIH
zECy$+yrV)aE<c|2hHB%Dqi)vn?9#%cg`Tz0LyZGFA@2k32b7-E#|b@;%Juut+pXiP
z_I$~PYQEBw)ucbcp4Ul}ev9rtn!L{=Qx4PL#A`p8MKm<hGmI~j!iI>kb3N3TX`_dt
zSf5X};tgA8MxucwgrF7bquY4zx0xQa!~H^iFZ0hr7hTA(7a%MzEch9t^+d<E7@3ux
zn?^J95ErA_#t<vPjp|%I0sp*@9ZqE_m-@G4>*c0-fEdie(O>UOA6iZc47b5NlW=e-
zZbdvh3z_sB@qI<iiDZH&&$*6xFLRzE=4^j|QtHH7dHPWjxRQD=bsi(^d^(O5V3tP;
zTr;3*lE}})$S<|N@;>A*f#ZP6&-LR)e#Xxf<-S#pYwh}p$~A4)P%F8Hd`U<vY4m>S
z&g)uy+G|#}5k#}^@ADNhSVw4F1$rSh6AUaj7DCRWSlP_>VbY1r&ZTb?K8^(NVu!J;
zwb_cZ{jjJkbF_g0!yCs<SXfdP9qkS(=a5+@V}<dI<|MPYlz0aFmko=@N<uny_!`1I
zI-C!pml-$e`lTd~E(Io#JYzZo%|_A3G))uvaTMtdqrUNW@C9UJ0?z#bDnDjH=HcUW
zM1CBU&q#h?X>;+i%7xefKn=sbO8HL&n?;Y=?qlIkZX-V7(RSOpv~ak;WVA2IiA6nf
zN6u@pD?oc=91UYYVb&(g9W=4DKH41!tu!lrv_CZ%=J_M`n5J+my_k-pzajQG>jHZo
zgV7vo=CKLDFf)N&XiTB~^*la@=Amh(NM{q$p~i=|A!kfvS`MJnc^PCLmdqFFT)9j<
zBk5eWaP^Xv)xs6cZA|s_kK{T^>gh+~k>I}hNA#N;sQa1t%k9yB!AE>#`@2UwYM0U^
z+dkWxF*p>T9HJg4DYJLRV066`kjz9qG1<x(p2_@e?=#TNVc9*+VcB-MHKw?njl$oI
zQ5c63<M_AA_`mWb@`7GL*O`6w6*NunZ&tFEb{dv7E@dm7G*6zn$sEJRDNCnuj>xBD
z$cHfUf!Bv0Am>kFT7N+0Q{rTiPcO-S=1sYO7|Ev^ZfuQR$8Ap3hHu5*;Xd)W!*FZG
zPOtkI?!MlPKk+{3*?8?~PcAK`XBeJTAFKp_1}e1S$<q7PEK2nG*+P>pOkc!S*+$Go
zY}I9z%-1`XWu*JUo(Y(i^uhp!3FAyF7znXRC3);tV)a|Sh|MUx0RN;obu?SGb`hH!
zUdmRn{G<tNRm{kwfo#>{MQl{+nQWC6pK~5twR90HNEwQE>1k)PRl)M40c_Pdi&#cd
zp&Om2Us45IwQLcaoOBLb<r$nh9A6EmO=GJZ&v@$3^3fdI?@o{W293!xY|~D(7qMS5
zmT20#9fo{4aR>RgiJeFH5NmMg40bu?HZaziKJ=KSY$Z!33q%{`^|5u4D3?0qd$BB+
zn<2jf9063h9GN2ftrfE0+R(B7y5(}t!j&7VQ8GC#)(z$d7HP4*VeaFfKKF5ZqWic{
zyn8Ckeb@T~)RM#W@cG&?XP}YeE2P7X{!bDIdo7O9pBAI-#{2UBhge6*@J|RmMq=ni
z#IS8E#l~iEDB%VY&yt2GW9K?E_a;hr)5%!9>t}4XeC|MS9$xz!ej`6G)cXqJ{}o9)
zPH3#1dnKjY+^^n4j4O%db-$d*XVCv7)>otm?-TexD`TbjXFHIYwx8YJHUND>tWU`}
zIRsfB66+%}tH_`xrs44ht8uU^%JgId1?w#Kg>EOts0DP<NNAQwZzs+yEP>ui;)W&1
z)9?|({s-oq5q_1hS0H%tf1=~}SktY_J}fzu?8z{)O`DzTfy{=O{sfGBjOo@H*0?^2
zc0$NV*8To>2`#hp13GpbwnV8p%o^UN<PdA<tR*>6A>O``>?G`JlIXr#_Y!MA8OM+>
zH<Eh7t|N)=t92K#?k3}~)Cp5#FR>cPEZ+#+9Q71+Zl>mZD62n0X*`R|i0>U!g+Zr)
zV&zjmk0y}*I<g|vJBZD{e-LN1Lw#oNs|mf9lyG{U13r2;p}S$$m{*cCU%H)S>lukV
zh#>nlv38JIw%_ZcOytF8>(U~mHNglYC(ettV+u`wD1Q$@QsLxqZl;ZHE1C4g5S=4L
zrY9P9Ce60iST(Z_p*FGa$Qf5qC?8M#aeAVOv_4MRV>HoyJsVTN8_5Hd-A@zUS8f@O
zGyMB0yMvb9N!jhFjLt5~uBW4KrtDTa`ZgYylWWp(H&AvB9d|8dS5uQ#?x5^fv~n9|
z&(OhsJJud<ZzZAsB8<g)?LdNmZ~()tXC}?iZ7#78){Y$qQV{*=t(5jj{)SLkXS0$9
z#f~;UB58ltLsyXC9%}3(`mc$xR==8HEV_p9Pp_e|=X?7*qk<TsQg@P++Xz{r|1a@f
zL&#;udxYLkF(&JI#s}2H2eHqHu|&T+>fg{ak<YP}-eTt?LjRB8Io*>NSm!Tg-w<<f
z=uVn&6ESM^w}^2Q(Vv8!n7N`CkLU%;+4oUny&g34(&xq$d#)iq9?wmL^2cCLveVmB
z;`GI{uP5Ir!L!7Z>5Rg2lqXHkB=1sm%UV;t=zp|nk$Gqcau$#asQ%|7$UJnm9)a;-
z!n!r9#F&s&hnl^G)RC77b|GL&Q|(!Qwh>3u23v!$RZCc5sK^+g`_jBL8>`wr2iqaA
zK^%&?GmA^6b~?AJX+g4w71AQh^f6<&GYqOePK-lhu^xJq-yrlp1ijRJ?={H(2Ye1F
zy?xW=cy_9F6le{%#6@E5+uhhg3!Hl$!E2WL+6U86q~m_7Z4Y4HhrLtFcBqH=W3&DJ
zVYOr%VN98``GjN_F|L*x*4!xcn*;ty(3g+5s~}$vYy*^jcSGjkxSV&j-%sW9`-Ra8
zRt<$6avNV54+EBK=-p1Wg8}R$&`bj704)9trZJ|E_GZ~$cX|GLVq8KkIbo{bCG=_q
zuUbc7mDu+J(g3B`aL7D#zR$t+!upBGI}A5i`#nIP=WD+&VLgx+`?a{17D{c0r9suY
z4!0Rb@IjnR=2h=vV>FqG=}dpU+{n{=@sBjE;bx&<J@}P=`yoFCJPRoO{sNhYQ|q^C
z`TF(n%#yXTGX>x2fr5>@g?_~|BIETq$g_d-0HxopGo^kPig9|Ed`9L`OV(7XW$Ua)
zeP`fNoiyqnq&(^xY&Yd=p9Y58L7hHA?R$}jSk1$pP#WAi922`kJ~K8E6AcG_z7r4U
ziWL8u6V3iPL;F~T6zfrxTH6Wx<&dG+L&86uNc*RjQ8U0Mv5BzK%GsD0XE;_WF-rII
z-b3wul!0SE?dy(>ddM911f>UIhkLN2V8oc8^2M*dG2E`pOb)|Q5QDKADITQOLv$K5
zOr~E$JPfTFcBEt7N38>NET0!)LS)@Vt-GnRDKTsE#KI{jQ4cxzF0pQ>)*k$oA$r?L
zC_3*u!oDZP*!+jhfN8S95!4e0P|r;;LK#Mcpp}4Cm^lAW#C`Ad@&8*&LoDkSGTIrH
z2v~0u>mAZ(G#iy+jkEDh%$^O0^`40}1~*#2{S2X>6TO^GWJ$M>DmGp(V4=iRdjefx
zJw>cTq^OE5NQi;+P;aa6Y=induxAWvB-sP>hY5X%V(!=b7P60EmSKA^E4Yo&dx*8(
z+E9eg?jZ>tE62aeKzSGz%gMszgl}sCem!;|bg*CMGY%^Tds&J85pdoKvRLlIV<a$?
ztrtC_^#k$V0xv<`hCZQWeLH3UA^3;Pj==zHg)(h8;#A;v#J$wcwbNjZ+X<G%-S6(B
zw9a&HrN&i+)L==`yp9+<i1%7z<ndCSN@6iC4Yy*^_NIA~v1*-X&atk*bb^%ACH8C*
z#0N{Q>!~@11+l<V0u%EPX?ug6(^T3@;5y2(XdazO<X&>~L!y0D&WhL>iy^N9)&Z)0
z9DvNjF6rm6Q?9q4)IQL=WYyExbYV|@t8352lo}4|xPzHq4(uWa?qt;L@5L>43`<%x
z-=O*|jO)xUWM2G@g+hGKdp|KI({*r76Lat8M}(dyphp;b@c!998+Id*11LQ!AoI{5
z_W`P+_Fu&MmTbpjTcU-0Ay&U@#IkoCeu*w78@nJLnrEb0iN*{)7W?o8hGX<bKUl-f
z`8~uOPF^R*3~sA6HwwM#!K?beyC5F`9s-nJjgWcR+QA=|=ih}Z*DM+^U@5$kN|1Ye
zmDfg(JWIO*(DG?-?s{ANm`uNnho_&O!?ai+3s5{2ka?(-eoyMjd6utU&iD9}sxmPa
zT~F~c2?Ns0bP1hL;0=~Qg4(ySOK!5~Kd6tOBbvN1&wCS^yz~Wc0;Lb=2@mS*MQ-hv
z(WCBE#N}yzT&5qq%AVf``9a`OK<V{3WF9)M_eS|2a}@!e1(l28eEcfCOfxRiv|(70
zNKqa#l}`vh?c4}oEaVIz2T*)@ka;+zA9jQ-sd6xO(9gjR`m6LII3EMrQn(K$x+B~{
z!B>O$!ibOO`&P);05<@N??K2s92z0U50&rh*R10izrK3i25cqI#5-OBb>xo(E9tM%
zZ-`cg4SOsQ<zr3B!FD~?j!2y2@QhwVFBO9<kN7u2j}zcg^CxQ#_C0}gK<P0GG7m3x
zrpNl_OE-+e-Vaxyo;*w3`O<}azVsTr?X)S`W(vHY17?MpALoP|Yp4kqDqlRnd`=cL
zx`xn4-91XJ@=2l3cJPJ4$MfYD$aewz0j1CHA@k5_zAUR=SfjF}f$X4sC-yb;(ppWn
z8Ef{UeUKZl+&m6C*Bm-T=XvA6R}7le(g$2c>YfsMgyu%_B^PorFa%I~Ooz-ve24X8
zw|rJrFIm2D_4K8)mPucR%1clqenU_tUZc%ayNzI()Gi4*{(PeZONIG1OUOswK#z%h
zWv_q4ucG;o(5Hdx06v~Ck3fDNcnMJYTzH<)XRGw<Q0v*QKIo#BZ(74^3bwj_W4T*h
z|HO#ls^iyQCPmn#b^=4=ea1X{sd16dhWBSb>WOjEW2t!-!&p{e`(|V9GRdems2zim
zI*xjLEW=4pp<b+7_D}H}ES}BI7(ffzjEb|Ji502d6!gGB7P8ZZ`|yfYWj)g=#js7V
z;+bd%X@Z_-2U#}8^)MU2)*^<YOcH_z&{#TL*A0IK8<jBH9>w@*b}ylqo3Pl)Rjxy)
z*6_T@mqSRms=tRJe*k<8sC>yi|1{;acH{EJD^!JPB+a}sHo|;yABB8l_ceMyelr4o
z1P*2%9DMyQ2MLbHT&zzV|0IywCk5UXs8CM2X$EL9@xY!5Iyr{p$=7KCl;2F>Cv*}S
zPlpggw!r2Wg#NYAPxbRxLf!#f2Ppk-hs?u?&gz*|J+5XAPCC4X%@FNLJ%eV_(ZVyP
zh>nNjFZdCvUKD&Sh)?l-3HdAFTgk!wS2~U-qCPLI9amlBdc}mn6V?uM4`WQrbb=Ar
zjlWLDKWSd1ADspH0$?$q(z6~i4>i&c`rstdzqvd!`B8k{nKY6=p%8eQ{zbG_oe!Wn
zSg=95_`c6zyzNIP!AIHA>V7BE)r5G%h?lpIw;_KBd<rPupCI$lX}{5~KV85FPOe1F
z3k2DEg#MLiiM&r8L^DqAQ!m7vg6D9}OG1xH^CR_f9^{LFHGtBi9x@N7?N8fOsKb#G
zZcEQc=YE9VN40#_rIwi)ZkO7xW0!gb!QzgrWZ-G|Z=qKUc*A(l^XE9^9|8S>h+esn
zdFV8MRKMD$R|D2`dFOhB-bJ-(=v=AnTn)w?IB+LLI#)jTszpz%>ix??pBnI~cKd6{
zHvzW+DxaQ!%)`(3uWd?|FUG-$ZDfoCwcs#zQ8q0!^RV-oLG!T9nPJjk2KFGJ&Pb?3
zvqT@;@_V6=wjk2K#zD>n3IL_gA0YE^y8cyZf=>1irrXIr<aV;iC7*VK=wy9EVW3a5
z=NR)a5K%LeqNhlVqh<+%JF;z@h0U@g<6ORsi9Qz2(GGTHlYP`jVrl;b^pGJoCL<RY
zHjElP+8Hz?)*EA|!im|oWBNIG#nObH>J;E$1c^0l-i>3o8a6>nn0k^~4x5b_GTQaA
zg{*f%p55DB{6Zgl3!_)VRZ;a)m|q<c`4g^+l-Cf*Q-B$O%Ae~Y^U!H|we_<qhtR-f
zXM4HmY_oW0dxYMIA4Th|v!&>4gKlS=*e5}Dw#g>8)OtsCwpf77M(Mhp?I?7%g>9WJ
z^eS!^={P3!<n7>V$Ug#fVI&<UWFFLfOFiBGNltj<Tz{L~pbd@B*KRh>*R&Gai_faz
zS0i~U5sw<L7eZbOYywn%{V!x5cFBFnH>b;f&^<7>en53?%}ROTrj^vQFZmW^>6gf)
zX8JdH>13n9#hB%criNlzY$zrH-X;q$ueE5V$4F!`W&oc%>2}D^U{|BFb}U$(iH1Q?
z1F&=r^HTSdfDe0&MvfjZV&JyofnARL8%`SteTKplqlzYyWZqy9>i#J5FT5zyzn4HB
z43q&p@bROg--kE=xZXVxi0yQI={zLiJZ+v20|<7YaS{&Nm<$GzuH)E_#eD97(jxhG
zBW~4C+z0tLz|(-r$D@#W$nUVer+Cj;vvIYYBH!zFr9;q_Hq-wQm|fXe5ivr{X4V88
z&GXP$4>RI*%PQh&z66_dL*?L!_*>o->Cayr(Pud1vA}ph=`$7b>GfH?VIjsFWJFxm
zG@Q$5rpvV^919uG>(4kNQyM0fe-eDV5nmV)y7NBBzX5&=D83gU^U%>hB$9r?C!LYw
zDl1?KHPiXpo8TPAIm=wmM#*O{iSVUCE(1mZimw{->G&qEUQ%7FJfG{xrY)q71o+Dh
zZtll&ahh8Mdvxs)ES?4pFAf3aVj>mm#Ic~Bj@pVA?u5*9^f;0gEanTB4-&ePZsw&?
z`Dc+YjnHEf6yf>uBILJ$_W`BndDTMCUDEICu=E#I`Ep_P>X|hwUHcWgn9rK-R^{s$
z*08r-{1b+@X8Mt>y{YG-nPH{HXJV-;Xp|+Gsc23<795GwY3G^DW5D$XXW4?xNH+aw
zSayg7Z5qIU6CfU<V=C*wWhjU}6F>eHoGJ*$Aswe$h=>R7LxIV3Fph%8kU(0Q4+~=c
zbK!@Cq;94S6w9Mi3Hs$-1Z{DcUS?b**KwQvBJ$x7(pfI^;V|U?1>OQwKKunT4<kF;
z1+t%UGhrI9jSb`yKBPBe?*n}rUbJ(KNCT*PSMcR8jqDSYLM{i!1B&lV$UIzniuR~7
z9dsK7-Hk*$WZ*?R#~2i8Z`yl;Z#Uvo{xSO@zXBWq6ko=Lf-he7pN913Q006kTse@s
ztUCQG_7f#_`Y89ckNf%%aUYw1!d`tdebA#lz>2Wx=^=(`CZ<vNPo}$Flsy{d*sBjr
z8_fS1=}o8f*9Vl*WqK0ULKzOKC7I`Yf>}j+KB@`!?)BZox|CZjsJGR|TZI0S4rSX7
zp1Q^lMY?LBx9ZonLB1Zi8Bpok2bqWB3NbF!$n_VMu377rubNW5bi)KWS*==+<(HfV
zJROIKw#&}O4B0ft;Hoc>o?%R)y+p;S`AG1$B7VhhEyKDGkOV0H639QtfA;bVm$fNS
zvmOq0=fIz?nf@K8f}lVNcI|Z|?8%2Om(OeYuu#V>T&_%Sl1bxSg{uB4^r-`%(&q-q
zw*q$pN}v6Zc}SP*aGm9c%!|0H6>dKKnrJWD8FUc_P4}>yn**(quNCnrK7Bdvd;yXH
z#Wxx<52qSemh*m2Wq!@o1c{FWCb}809lqywFLZ4|iV+PzA(CkZVuFb{EzK}Zi$Tjr
zpJ4G(W-)Ks?$YTeA|JMcSLwAE@}s~(K<V`w<kRW3a^d<7ZXevH+jg#70N@9cnrRc!
zuJ!QUqP~V72X+I@3834>Iaz2kiC(DA1T{&0k}ryk2Yn$A1cm}ipV5$cIMw*W>*>sz
zg^R1*0q-n#z+0+4;$+YYKKP6@dWiwA_*0pF86WT0cSF7hxDQZ#Ps+cmd6{~ucEP7;
z14=kqxNjB-`?D<V4LVcH;ohZQth{=~G3gAPNf7fj$*Zl1<a-eEa$q%}c!#V!eZISS
z4q7-k{u!Q)IPFvIzSg?0kBg7ix^EKP*9`Y{D;9q7-N{jZI3r3PrDQKs@sd{?oNdNn
z={SJ3@6ePyBX$M72#1^Cc84yD28k|~z}M=v*f_xU0;~%<++)WkT5t!zJ`97G3iexk
zNpM`YP0L#lGH_1X#)ylp*Gt%jL}pEO%%G7}fb|$yA~<&yd$ws)kDb~J--u;#daBMs
zaqiy+C;DgL1aP{MXjwtT=<P?b7+~Py<aq2&#9~f|ZJ<OC{M@XOcn+Y6MxqBUgS^_W
zr5{rqk(@*i5PnW_J0bJvwXSny)#suf)XV(l_25p(_X7_DsyrIy-&OgmXLLQ_wZNUK
z55QFYO<JwRqZXF%)itcMOP&*mN3ApWT7~&6Fbq&UXF=v6UY=8$b*|`-t5@SZJhm5$
zE?U24HBP?GUcCxl`O6lr<bLq(!HfcNJ_Aa?E%RFH`eQbd=XEd6RQ*lYw$dV;Wc!Tp
z1zH1pM#z<OksU^*zK|A0#=)j9M1C|t52fc3$e#e80ZPvwAoI|1J-nlylUHwAxN`ZD
zHg!9wiqq%M!m`Kd^UK8}lMm86=ucET1j8)BPN#5`fqzUES8*)Or#ppDYk8~CbJFTa
zJF0<v6|fUfdOir5hh0@7AIqelSw}sWRP*}=W^TZ_YJS8(W-f1FEu=|ou^bnNK_`CT
zYPc8k0y;I++Zc)6(kBQ`4l@$A=itQPAgjzD3PRm#<4)p?H!?{t&rV|G!vmzR5#mD<
zLd#b|e{D^qzsuk<kPGm@?VFDG1hv;&coIZ@$t(d`m!MstCurK&BK~EFOO@lVAm0hx
z1E~D@8Zr;3FURHU;pnw|Nt@$>5&9dNf5;D9$<Kqt0|__}vV%ToXnS;@6L4a%DC5M(
z)1>%xNZ4;AERYDh+K+)4D|tAGjZb`WF))dIHZEO2drxJfEPOW;f1&<>VZ{Vu?W_RK
z>guSlu9lded?V6TUK2^z638onHGoRj#gKV8+F>5rKL7Fy+m(AYKj6e$an<w%780{u
zd(DuR(r_c+9XJ{!e-q+Y`FafU*T4xt@jGh;|B?>#htu+}U${xMWnS;9axuf2j}5LJ
z*y7cW8aT{?^WQj83-g)s<~z$6-R5SYReme-We#}Nc)ktt&A{z|((47tJRFzj>Gw$g
z`P1r!J7?T>i~E%}RM)!ZZTU+Ct6vj=zE}X;LEol0kDg7_X<@+frx=OYz)ypbVZqtS
zXQ%js0T#q5X+B5&gkL={TlF}N{}OtK)<xREAjoF`lK`dnGRQnkk?XiVxi5NJy;lom
zu|9Si-OJD0%;kF!JLny{b_HhM1#~&}nAohMDb8?~V$zhf)Yt^a<9e}NMd-!GDr}s%
z^CqqGJE7+x=%LEJ1@hm4RzT_LTQBrHeS7Lq@76C~xcb~>%U4$OaxbrH%hZR7*2uEW
z1e`XvXsY1^X>u@V;q*iZzW>O|bFfMsB<{Ht?R%l$9Po#cPkbD^6!I?MRzT_Z31l9Q
z$@7(!(oQ{XKB5cX=<3!=o}yp!rJ)zZ<8Jt>^9=njQ#*<iEirVNo1r$27H1e~Gz%9L
zq=y`D5>~VEA1qPJ3m40zG#p{DhG)e)7_?1V7IG2_5~-)mp)fevxk%XM#JHH^NK=|#
zYNWH7=40-7#q}=#k4R_vhDbSF1o>j%Qb48iPRKlTs~p^P&e*tSLp8stD5>&(f^D=%
z$aFp;eNVL}6BQgvLv1=Ru`DewodySn7`%9`WRDS_2E_-#&lnCKj@I;}(DNAdsDd86
zJc1kH`wR>Ol%CH+=Hd7SVthI%?`=74dB7N0j?=wvLu?^Wun+k8HynJ!>lb2>`V5ER
zc)?ub(^}1JJH;33XZH>Ev-&2&2PQAxiOY$%{DtNj@g-inZ%kglL@S}t^!bn$G~Ya8
z`<S%=|G{~KCC|%X1+>hMD^9Q)JR&`rum57s6^Ez4oZ<%^BJaKF`A#3q^?go1+Sf6L
z<lB9zcb3og3>?b(I{f01n~C`+Le8X3CQf0od6b{A<DuC&%Y7zqiqzkcke30g0F_@E
z7mNJbD*fsAt?GP!)UID&xNhCTOHiUY4aRTmy#{G84tm_jGt_<jhlmfwBV(_@v+kZ`
z?Nw_a98Rbw<cSZaJ4tk&Jtzyln|wDeHayyx7fNMuSW3k8G)}^JJM7Oa$guM!E%&W7
zjanSMT~E+VG3>>eAz0`J^Y%CWB|{umG&*+pFnb)cN^JWKTKEfiM*TN|qxuxXU+lk<
zU|TPRh5Gll@@jw}E*<jF5UU7ggi^gvz#TaaGg$Rm96bxO;E<jM|8QjFMf3(jAJ)yI
zgnkb%9Altf!Jg6SKyp6r5UGHp^)Jy|<k>J(f<w%4feYvePvo-#dxW=C+!}$Rh!N#+
z0QnupTV8+v2Xdemwkx2@qxcu1JT|Nm<*;>A7s_MJqKicB&1vww9<$d&8ay|7-N!NJ
zKK6@uZ;N-AQ};uZ6948w@yOVV#p50H$S`f6N0m}+O1zVYgF9sjMJOlR!L<&tC<8y8
ziYw5(ILdFHkFtqB??%G&iEmhVvED)_lXRFIF<zgc>mmMGJPs$((4z#?<%D6O;R!el
z<M$=|lLNs_))yYWu&C3`(i|a&0)Fc@l&(FHZb)W<gzEltj6iZ)ES6?$+IN$+G12!s
zY%lsgCFUe(g^vf(KF<@j#jYcvU`8{Eg;!ZQeGWS=eyac-V(9$2W;!nP7<$3I)P97r
z5$Dm%=oC7904vC$flvT7Yam^0*Apl33bmfbb!xxmk04G;jd0S!R#tJA`bH|lHy*$@
z?&lBp8-v!tUHDT1=V<FQ7*TAKwVYWC|Hu8zll&L=*()1&T7*|5&tcvqpDR_eV4xqG
zd`cjdCE0liy;(o|M%-^?ma)w9E!)One>mvlHEsetFlHGE9?yO7{zlWVS1>vTUYP~+
zecMQK3X6joXtO^3;p<)lv{mok{b_+2h%KoS88eY3EV+QKHL={e3MaNIO0BXQpzZ5@
zGE(7jWn!%(W-Tt^I9-!CL_)tKbT!>a=vCC51<$hO<bR3rF5wQ-Gt!UHjIqXCI*YDK
z?3=R0yc^f(z@znSxU}3&$Sl3TJ(+IqpGT65$J1%naOZB~nWg9AraAFpZc?kRKS<bI
z{RQHi=N(}6HIlt<o3ir=+8HbK?Izw$zF&xjCO;fiQB^tuu9Ikv?k5GKM~p4SwLVxd
z=`Y${cypxPO@Mq3a6X{g-CD>zv~<{~Kkc}I_2=q!3;9u8*j@iC3@-Tj^LF$-(H`+-
z8v&YRhG@LU4y=N^m^)t^N$<pBu$r$m4-on_fxk@l3!g*QFU36^fYPrQWF9uidt2U=
z{>G=(Z}FPdo8V~FW@f+<uK|vDI1;r-oORmBz4CU@_izT;R|HiDqHFvoZf}Fnwh3q7
z+1^cD&t>!%SjXPaJ;DYVo9IMtay6C+y=$RYIrQTF**%b72i^pf-qW{8z1N9;toavR
z=+9)n&fKtOT{RzOn*BTU*Zri~|Au(98t%KVP4{ujDEE=^I*NM--B+o7;Tveg81GOT
zGQ4yU7VKx>hAEty$i`uVfM=vN%(6cuSouA}&&sV)7Dj2$-SA>1mcbJClME~KVS-(P
z8I%SFslniUXOc-DA!DtIhlzvn+oZAaQ#@zsspb~%c9MhhZ<iD63i2@dn1rsPdQJtF
z<*a~XI5;-63mR<0F+`0150j&W{gL#aZ(Xnw2)@bRRXEx7a&nlk-;s({*6Ni&@Fn-1
zCkaPeJ|QCl=qWZO{EIl>BdTl3*Tg!GsGMmuaWML?G0xT0xeX^L_LCc_wTnJX&Sq0b
z{gqfBla=mk5SOb}#0`tbW;WYNi`?h6xOJ(|1?>Duzor(ZHDn&k;)P#v6SZ!J8;$!2
zrn9sWWGM1r2(D#w|NJXzZNs142QCHdEB~CwVgjXR5=$L}6{WOsY}8O%@eQ%QB`e+6
z;7B&2!dx<x1=n+qd#SY_k+_c_4hD}PrQj$v*(!9`Gp51O*_Y#_IoKecvxBgE$*8M|
zwUexLUxWMkCl$tgdlmW=W>2}6;3$X1(spql-gNHK!YZyO)(vE(`x<N@Y%i%uEx`={
zTQNvfVCwrgS?Rt8;rzO#0>^9M7fT-`?q?5^!h|fw3i9Y?&xPLA$tbxCtz{3B9|;bn
z=w^Rx$vfW?_BC01oZw`RXA6rTp(+WVu)<lthOWa-?tJTih*L<nn0X{jPzA)N`E;IB
z8n?>F->ty9S%vucNkWB?Jhd=zNp>3V=_*PxF39R1uiobx50ioXOLMb+O9qH<=MPbT
zEuMfAL78+ty_oh+!5oNA9<$y^!?ilYN1jpIyR73U!$yxA)xUgbU-i%X=1$1UFT0#X
z{lgI>$CnOBM64sT^4pXs&iRa(RlRDXJ{Utw%?oJ%I2F~#bgtVny3kEyZ+b!Sf~<-0
zrEwOYt)hROEBcMbx`@5;9^~V|cYx|QVlEf`My>QOdQCo0+uynN2EQa=-BPh)jc)lK
z(Jk*0kG^6#>{?y>EC}Nxgj-s1tbPg0qm%6cMnA6OAo$If(Q!DxmaorH-LzJ7zR-Ia
z^a{)V?k33lfd>Jl_n#p1P%rg8&=tMi`E)zITgiUiH4L{&i|~k{Z4Y5jCOH@*r_9DW
z6AtO7>5mT;1ZiSPLIzfBD-+|3kcQDn!HdLrjgWG+-#B0BpMOQff9xE{7Xm8*rT=q~
zdDth{Ne9pELVqphpV0}xp6mg`-HiP^_GEd#e8|+ALb-GZl;$(Z7|bMXc;$`4Oj1X+
zGo7I6I7K6@k>f?OY<3o#P++Dfz#{M$*g-$8^~5Cz1<6hjdoO&>!<*ZgSQq)07-h7A
ztv3dcUzmL@_u^emTPV_-d}XAbO@zDxr~y=ZABW7tn{z}uKkiC;<@gkx;H*Y^7k!kH
zM$ClW$7kYE<Gu+z>aLR<Hnlx5MYxS5$%M`0v3*mGgn-Sj&7f1`gXRKsBw?5yK5w>>
z9yfqe^IUkE2NMh|;WLKyGMrOFny1qLCeCcnmBj8(irAUPOfuCD$YoHia*0THXltaN
z_J%wPr~p*D=RoG6<GxS(_JtdBHV)>~n>v!mcm8j2odEn?<hNt);Qq?T;2-ZrX(pO0
z(D}z20UZ2;mfMI?jn-3HE%a#spYo@93i1oU%Yf474ahtspLTt5<Lb41HGykXPqq>6
zsk{S=?%EZx*_dDE(F|VOM;ldb%@&^9f<OGL$oy&~<PE?jfa3qdHo@OduHQ7vb+PvO
zA^9uReGLut*BDf>5cZ((7n|(9c~LBmeMsDQbKKW2#2fhT@@%^!PP;a?h>kVSM2_)8
zK$&p5)4dKaV`AD9X;vRSKTKHzN!m;B8oQUEo>=;AB=#yeukzbiJtn+WF`8oivVi4T
zmVw(rs6LWn>c+37=AW0a0ann&K~4AFFgDamGBV}6v23)Z{{3V&p-rB_rr`$Hnfjbj
zxD+RV^F&jj<yqL|2n>c2jN57}EgX`*mdwqUA2_wvHH2M?jVWuSj>(lia%ntP*x(RE
zb^HNmjePu8n7O9<{%yoc8o9<wumWW?9{1+lNYcDGAIz}qt^d-ui;Ub$bP}}6{e$@#
zC!gI5M}I&Zz$scke3*4Nm-rKhj`FcRppO*3fR9tU*m#AI*C>63lCyDd6OL}*LC8{E
z8#YLPhLG992Zh(OhBcyIlwB367t<ln2NnUUUaW)6gSt;j-6P(<UQ88xN1~;?;5HKO
zr}P%R6{}p>cS%J*$IQjL>zULKZ))IBfU1h~n>9j@Ch(|r(0@Sw2KXLOdeH4ckDptA
zo4tDd#+n)&E2v)5$xc=r_vqnz?IPN1dInvEu2~ywoD*p;RcnPlmEcqQTn2d?ume!~
z+yI$}Zs>z8kBuF-)}T<;78?p}*4~Fc=kl$+8EQ|N$KN9LX#t<o$NDvX;{!+pls;LI
zc~JX&otIO7p)9HDbsaa(TCk1FccR|n_ipaQ();gSm)9~_uk*x}Z*Kf8>qP$4fX~J!
z-0ry+@~yy~fYRr2$UJnsud#i-!Oe~1`9`GJDC5<qat@YA$6$r@E&4RvFrY^+w@c8&
z#_Q>JF7M{C6i5e<zP#vAkJk%*v>lQDH4pMYpcGL0jEBrarM&-dyYxqCuTOrV`(Ewa
zMeW*Ey-2Wq5`<&MTl6^5o;Jq9ryA?!x_dZlE^dMtO-s@5H*664)Pqlz*Fnh70M7$T
zpWj2~;mx11x7+E{wx3koAD3ReMJH<SU_YrBuQbDOB{_EpXqEh-t0UuIKgiR8S%Bi-
z3YmwF_XoAlkLByfud3N_iCc5s(wT(P83GIhcu8@2EHDhnn(jcS|LEFBD7CO@8cu95
zI8+~G!VJWz<8pmy5O+(#DbYZeT%2IWn{fe*>nO%r<KJQz7W!`z`PU5n)V|ZdA=8~q
zvjC-k3}hb4x|4tFs+X?BLZM1dTve@Go;TyFLtNigje9wv%y8KHzP1jb{$im|75Kv7
z<MsVg$X5Y70j1Aw$UK}rKivuXc(=xjeL;TTRf4NTJ%RUD2G;W?>+a&n7-J$=B3vu@
zTM)mhPydD-dky@Z0L8xpG7lT%e)PVJI-9rh(`6BQOi~|X?j&_5bsrggs`?hKv$aDk
z7dO||qUm{P41@av4VkIfbxp<HH#mx!jB~mkc$EbPSwlTE7574nD7A*;_BHG!vJrG3
z=BzsN!abMZlB68G<C2H5<XCtQWm(C?4VGpl<GTq7ERH+$^2S_5&!YqAd|Hm-VuL<~
zRPsfCl4>Qx$9JJMpSVXs!k3EtXhnL%NG~ssz_m=91I!0he!K#ihtrn_`X6_cXe*JV
z%I7JnazYfwM9EVi_m%G}<deVO%QtrTKibEIEVui*)8pP>Hqyl8#5R2+%^X~;XZqmQ
z1`imgFtHCV!NKhxrU93jLQH9_eo1&AbW%+lw;m6m$ijZ!eips~?@JSRxIqr}E2%_N
zI?GD*R(fz=$vVr6*PvTrrqQn`{hX5X=sdE3&XhH{sZQiq__|1YIs@{Vz%)SR*Br<^
zywt((u|t0#yf4H^)|P2;HDzn~7&cS;9G7Y1Tqy5}Mv2R`!<P&G2E?!0a}(r01MdQg
z-&-&E2TQx_xU@&w^UDqyqgNX_9F|@ruX87)KM5zLC9k`q82l-YV}A{2xUd(MOHI2M
z*5qMh=?Ag4t`BBI3>Ji{Fs=LyPu>m9##9>i)H2-1n@R?<!A_xPgcB5&Mbnic9m}An
zO2<yfcK~+-Djlyt=3%S6rzw73XYCLh;OinIaa&r@AmOS);KKVJ9(<@lE#G71;+C1P
z&3Dq!*}JLm>rabR;Fivqe5~_B`!nINScL1Kaa-yNHw6Q%QeP}Tpvyz$Hlct1^%4E2
zK%NgQ0+jw&LFQqD)PGi|`tx1;PV`S|C7+4g#=gXUF4zADLwnBRrO+P^{2B1cXC|%^
zXV5-gFZK6B-sg+FpMz6Bz9G0@X@%Jbx!<3S_651_&D(|EEznElyL|)h`2{iorT19K
zJPelp(jUwH&-V3)=liVAb;qXue+#>Xn=f4V$MLH)R*}g2DD6Y6$<^MQPjO8<uQfd1
zZzq8fo<4N7tNlPTfg7qk)L$*@KlD@jKLhz?;17V({~wTfP<|9Ooz74A&!|LI{hCYQ
z7P({%@3Vg*+Hor%>mhw<Z;ypjj}9&$qMqJ<$o>SK9}<8@XBp?<5NRe{Y@~Wx{Z64@
z`Hd0%&Vzgrum({2)kEfCpS(YH!>rEg_43slqSR}~sb05bj(y!7SDvI=J^X5MK*zxW
zp$reM@PV3f@Mw%Pg80n?oECDusA-LnKr*?$DF16@`Ga5O-@hSycVQg|Q2LcX=Hc}E
zZTwjU_jgml&~-w;I`Av|{vOB&f!_j3zto$Aeuk`{TRW|v?zQtW2M4%Sw;I!~tR{Md
zJx}2`R<Az~`}r-p-J><xMcCraf-6}l1Xl<jIxc2bVzcagxIE#S&#}%(YKF%;<8X}<
zZZe|Y#8GxdJnoUVLN@Ml4QG#L+>4h5+>Q947mH_bzf4-<dWgsK(PK6iQ*R`81MWq_
zP3f-^y%%m59U+QEYq(LQyB6tE<#H3`hk?fdmF~Ym<{@7BBgp+5H*szLhr;VIQgyOg
z@oP?BQqoHQDjt6zU%Cl@(b9H%a4wW@YSZy>%036Fo@R%<X-2#;&tQFva4um8_RuZU
z!ugm!*yw&4JtcQ;nN4TYQhSkAV)ix0c<^cs!_USP8w>c>g<IFSo;A0KbXDFQNmmWz
z%|IQX(p3+chlUQnBho%ysBU5{Hj=cYn#E|e%h&K8=1Zcz3SVY4S=<eU`>*&=Ga7Rs
zoD>za9h`gJE$ct{R6d)x!1e>u0HsepWFA!gA1u#hwby532kW?P<iT>%U06=Sr9r9J
zxo!15qP+vvZ~>x&?wIR^ab=Q`LF7H$<+sZ62d}F4dm-NsJOU`azJ<)gIC;KdtGxfM
zy<Yi+r~&wKI+;xck-DGL$o{|{Wjwb|;ASMxK$>j8(GOk|%(EQJ2=MsvBsnx>r{E|Q
zPO$LV748?rlH&XzW}K-OZZ!$w(xY^fg@QpApGZT!k(%-J6I^bEJ1DVTpR6yz{<5qA
z<$GlL?~cs3Yam|^Yy(uf9*4}sJbAz1B<ZivK3$k!&WuhN8got)``&n-ktW=d_B>`C
zZ_y`B?Pg~n9ceyHjCE*n#Bb^>*<8ct(hT!LmWW@0!I>M}6e2otEN+)zWyQo2;~bj6
z;*o+rBt_KWy1hdG(5;bj84P(GFd0z#-vOD2S<6H}-nzE4{ye{M)xw%i3Z<F7;eDNv
zW>)&TTQpDkv?q~-GCSF<pd+xgHi_oz2^2qH<H5w=d<C0Q<{A26_id~hOZ;eY_rilB
z#JyomUS9VRFTDJ4xd^jSL?swo`HXB1HU{ZIzIjwge_^I!Cn?R7NhbwxNcb4RCd*cW
zi{hs8*4=ckNVk1kq}+N#9t;cvRJvzF=3!T*NbgoTo}E-~Q`-{G4c|I)!d=xmz^|!z
zi~dg6TCr<62s?F)=u)gmT7KN~Wle`Kdm^8;48>|d5t{LIno9by*=RrY_X+(DfM2!a
z-$OnMyay=#5^fjz#j9~b`Wd&^&wW?TmtobBb4(o{*WIb(i*o9Co2l*e;zDA$OgSVI
zXH8?UGdGGBg>V~R0#*y`4Bt|8J^WtNL^LCu<|P>^m`n0}KND4KC|pS3$(`t%%4&^R
zPqIDBh*h&1?0-KX(o+k4Rr|ja^8LUgfJ)DEka<WytzCik&yUWZT+>8vIo<6o|3tJG
zy{fmI5a})5+bHWFl;yuCQvQ7)mjR;yrO#Z*Jd9I*1oHP^+UGBCw^0i58qh%ABYU}H
z`FD8mI`AE?QN~8aaNjgh1H9#Q0A^Wbybkc*WDp%;q{=#wY0aRc2)_rt{$ZhKBlJ-D
z_7>z%fxiPvPwS4Z<(s>8)=9oKkejKiZVvayc#FP6wXcwQ2~Y@EK$yR<(tTJ*_rzgl
z=-$a&LcbumA0VE0^*ppbBJ`XCJ=D6x#gMNAwgXDfn<4Y?v+Zdt_nDK5^8BoMieMZZ
z>`q><q1p~#HkD0@&pieis`<$AMr#!M90Q-qH{YFD0|C+jrB6S|Jbd2a_s-gvFK#~C
zplryf!A8`!wQg<0#SMF)lNg(qMQU3=xOYXChcxXmp;sMvRX*JT`F`LLK<V`?WFCGt
zpDNoF>m-*R`ng=vLXQi5La={TJ`ICB4wwumeda>u;pf^VTxgbzh1Jwa6{}i^#j9~}
zD1QrU#oBXF%}>YTh*AY6n<&CnMkPwJMe5T4K9xT&LOufg@&B>+=J8P!`Tu`+PtTdm
z<UR>x!hIzf5D)<&oB|3&!CNFDBoGNCCPC0uiHM3P(cN{`)g`X3a(JMtuDXixMpxIY
zx`=nYSan^E$EqBX-?O@_W+ow*`1yVR+REeguJ@$7>;0~ytE%gG7f||q1TS2RT!;Nk
zhx1Rom#i6&R!AgL;UC1P%klGsCf6F;t7tOIekb+bqCAsjrl^TCRi{b_dcaPnu?-Qu
zPJk~3X91<x26*Ax?+b5Rp5%Up1=dM6G#2(TRuk6hb^1|OgK@K=y@Oiuu7Q{<i%XC5
zrm%Gl&?gz@um-j&S(T5n!3S-<nvgpaxng|l3-|*<r&}X>4T2Z$b~#Q`CHDoi)vK($
zv|>r*;C1$%JZbMe$+3s}FJa-jALB5IDG3bLCS+L45)%S(euD*xBfN>6Bza_PU$H9S
zI^8u|A7)&xi{=5h{UKY=HRv&x-$Kt{!`}k_2vqv*fER9>wEzEchwG8WxMW1l>^k#F
zqm_+DyNrKxaFRbCE1U5#@gT#<a230=%>EeG3yOvo`}wbn<<VO3VOt;1A0zoW3jP$Z
z5GZ|q3oqO=vi&zt?6}_}hl)=wuU$qDjt`X~dDW#gl@;fdiW0Y7Kkr^)YG)nGc<^4-
zE${cX$3jn060dh@kCL{j#w1RHU`o>LpXtsR%F&cqlw#(<{@<(^$zh6fG6pcYPqeYe
z(R0Ys|E1H<8|5ftP5uNIrwE8vrQol2JX?r|>PMv9=F|p&p+LoR54><+NV{|$k0-R7
z@323^L<F1l2Yl~~_22IIt;oFV)AkUVH1>Tb>Wt1V#}4%J1ZMX7a#*L~j-@eSz|t6H
z`dP@$%xRx~ta%(^dS^Q?XPJYCeH)$$e0ugyGLrflX;2O*HQCFUWTXvd*(=9L^1m!j
zobbA*jW!a3fn=79%SV?vkrqd5+K)Z!fn@b>ho_dkc{%olz?jIt=Q2LZ$|epZOJc{f
z`$|y-Og6STNYVRr4sOOa<a|a+ryK0x6h+5!4UKlX&b&QRZ&t&v1D64nu2cVHr>iFS
zx%`ZDRkP-dl6`_Pes(>$zp@hdnpmxl)i{~mB<{R$;tr&bJ?hZJO*K+UT&PUkR3lR+
zF8`B>JH6w?JsG2lM|709;zCD>JC`jvxiWF58Lv5vYz*cy<NQy<sMHrSWjNDL-0jcV
z>DoZLHIdSyo_GZQN$?y{>ADMExGc4gq{H#Avhs?G8KO?J+Qt`!eWP9MkI?RqpT}#)
z9$A*~_7yeMa$~i~c1>$|-j<(!M`XU>2>3Bz91yPieQ}G=wf4v69akzg;|rl2-xwdm
zv)g6(b%dqf$D85r0`~zGzlY$3n<>l9s1C<Ll$`mii>naCz|Vf&8u&TY9``wDXglK}
z+JlBGi`9P0DlYrjUa;foxieCJ`@@d`<AKuSWO(7aUT328IIgrtSo$#IuM@lSQsvIP
z0P+6^6X@(38g2A)#kk#K*<t)(XFPcxU@Zc}{}`YiC*;JxDDxk=Dt#V>e+Ik&lwK!p
zvGp1&_g_@4>8M^7?Sz&8LaV+_S^I{(k|lEE&Y{}p@e5pYS-?BOHP+QX$(`;<!{AvT
zk3*cm=y7-x+^HjaWB&dsJ^pUp=o^2Po_?i%c7i)O{|dpSU8Q?D64Z>rR%!x;C~*j@
zUDGe{T$p~r5v-NZI4}Kzm<zoZczj12f$H=NoQYG6USop!$5A8Ynn9yiD40{g+=1KM
zi*+dRX1s5#H;xr6_v(Rv=-48^N>8ZtRAu=d*W-D3Wna!Go)^=X#`Fq(rr+<4V@Bc#
zA8XHt2Q7=~M_6=>5xh-z-_H7Sp1E-RHr;U-uNUkFeO6zeZ-tZfoGI}fI^)bA9C8lp
zKioOmt@9Z--8j!Via0q94=3k|*gJRVq29f2(>=HAo<5=8o<6?#_<!l<=ennFdQOIG
zvJw1BSgg-Aj$(E;HW1IppvUhKwjp8@jl~I`#3Y|L$DbY#=ksNHk8|CqGm*O(Yqx_z
zz3y-)P!;!2H|CfHw=hnp?bOW@gQJzd(2b`Y*lra=Eepjb`vKj1&=DA7^p6`7Tk5Fx
z{Z41Y$#Z(j>w4x4y&!J2p5S{;kNuCq@P;`9!|dh<x<1RClCm&;;Rx$}E_mNAPc4*}
z4U{iYpZK>rwR|uNsPc3^yl~IR@4NN#d%A7^Xi4RY@|DGy|CV(MhKye|EJMcgEjrJl
zGcB5UFO9`6W5220l(f*(n-&ez#6}9|fKOvZU!38M@xgOS85FxlLp(!A`dqH$qdenA
zI^srq#*9phBjraXSl6-ALv+3|SR-gRL5&~S@!E;r>OJ`sz7?3;BJo-RFWhE1E^tPN
z`;|(HOP1LSV8U+;ovK@1tq#4;yiT_~cdHejPu$v`q<kZjy<A@M!W)a#<m9-R_zZVe
zQap!MP$v4ux?@h`ASSnWw%*s3>2f<~3~&!N8AD(^Io@j=$*!fiVa)UD&KPEMdK+0z
zH%Cfk59S~)jNynWb%tK`Bh528_;Wd9oAX@rjMMZ%dcT+{b}dak`iUL?M&cJFej;CY
z!@mPQka6z5o-V7bSRxHaU`%kguqZeiLrs0L<iXSkR-`x$ASNAK&*IExuRq2mG!D2h
zVc{2viYwS->rr@Dq+h!d{x+}~sPeTRUbvv_Uv<3Rru6Jp#T7G9$}%-Voy9ooefBtO
z!bUOLdY%0v+xlVuE63tf)qi4$#(y2!`8kGrcHAr<V0hof{0WN<Iq96C{)}u-GJ|UI
zSw?`fvfQz`Q+=}?vwYLs-bBBHMRD$ABOx)6=*5(QVGK*0Ar>hn9#6J>rkfSU^>&ZG
z;8Q!^Gw+VXyA1wZa3N6fZh#lAu*-E9#Wf}6<<nK<trp}Y8jk@W!)`=~6-Nxe!)~f1
zSF*?#M@(h_6KS#JN5FvrB~O4lh0WR=e8KK>twrkhDe~3#hW{SE{Xq^;`i+L~UcZ`h
zaiG_6rL_#tw^j30)Dzp#*@2FV7qJwI5#l&hOx0tsghcBml&Y|F5_0N3v(v2(xk|6!
z!QTV^43u8e?zQz=BF7t*y|lLVQ3(f)6<hl-8PEIFKBDMYYgF%5YZ>ud#<mzO*q^Rq
zyw2e!#%u?+X|R;h-y0i?WglZMy|wX--FaP0_%(xH(+zK5XYU~Qigg6$X#YTGABWR<
zv~%Qav0^CE=kCqc`Pt?GYNTGqP)^)&PIU&U%^h)h&Z(F=%@eJP_??{W$Yb{saOQcA
zNu1)GoDHmr^I66vhIuKKo?|(-+9wJl)nn~yO$&Wxr%wa%SK|?Xfo}xQ0+l|y;Dy^P
z?LjO1uWi$Z@BfPOm8IfEvMh4NXm2q*teuy`heTht3-`s6ku{5w&(BkZ3N2E8aC_u@
z)-mwMf#ZRapK+foHzjtzV~PAeY%5>%0&R0_Y+3evCHn9=7M(77@^2Y0dbI{!^yI_Y
zBdjD+?{NJ46zBX*ma(yBJy!6EiN+L1va^)&@mQZLXNpr;$RFX2^~ZWVe7NvA#a7Rt
zbH1}EWsbPtIW5IVJ;LH9q!{ytS=?;Qz#q?y$P}k5<rwQfCl!cg<t7H<$sA`NPbN#J
z2hpVwA*2^zFo%hgLB?s;9$UBbc#F%-5cUbpzBP#}oh!0|m8mm~XLR!?C##B2cdFcE
zoc%jHKdVTuBJxYr)0e~l3ETrzdVT^g+)Vksug+_3o1S7ry;_ZxR`k9w!CeJb0$~qo
zAsEj9(>v^_F!X)oT8?r28OEtWBZK<Sr<=@<u(Q&ih*2veo=?HVYLCmoAzSH1W~C?D
zC^FAvhYqFS4&8jvp<f;`)2)SmwBr%FKQdmh0RCifIuK5@H(ihW3?4fFT<p`WX}_2f
zjnlNNbdFvwlyVvfGoJ87dhLLJ6}$mddhLZ5uKjrsZPSZ!a<=xb6i0NIR$3?L7M3#f
zb(<LfO0*Dz=zrM8P7+<Qt^|xcV3NR5WSMzzVor;VD44+^P39WxGR@Sd+b`<&y>@!c
z{BtBdR>EHdE(J=@8{mcOdfjV{uzND4bZPlYD|hErTgwQ=YipT!7=T5BL=c=L^7bk0
zd^mF018rhsexNsrSsv7zVO9&x>h{@sH6vGzAGX3D_W<uNP<p)tFWmWZK31LM*f#yz
z=_M4}t}ne;jN#0*=y4W3-l8KcdZ9&MwTE`>%l57Ih5PIa1I3unJI05+|3oFr70)4+
zy|7}6rT7%4&lR8LQJgtGCwvD3a4zbFJnlb_CwzX-(C{^muX3qp;==zO;F0&&>EZ#>
zOw284oRF~DL8EY<al2s@I?DN9RjZwT!3QJhcMSY#U=dL1w;Eo!p607PC>EWurDW)E
znXv<{jQx*p**;DuWBsfh%+cMhfqtp#5_7Fp@QSqKEV+%ySNYov|1J0tDE;CeIvo8(
z1{a-7Epj|a1Ou(wWIgi@tWnKEF_}r`_!z0!T2AdHDXVl_uTzk#^jZbK72FGyUip9N
zv0l?xE{W82qG}UZ3g&=GU@^E<EHf5|<b;15!H-dv+Ru5cGnzR))J&%DH;@@tH^v>A
z0_R97tE_S2h?kmCoRDSzK9Yt%`nQj1$t2DuF+|BEKkV!3?nADcqmFjFSsCJr0oLr_
z8RiiEOsuo$BaN?g$ldDu#c8M42GT>N*KP3kfct?;uSWPDmNU|8L8TZ5Nh%sa8VtdN
z&O62`YpHIEC&@90<xLDUEEU}t`t2@TzUSeH`~mP|!O=j;UkKkr`LkBqh1@Dc1!yo6
zoCp$Gu=|ej8$-JR8ztUw5sDNhlflZQG)mDj^N%upirlt-n~|^5XD9sIpcyFrQXl!*
z`c1E~%zYOXO7%pMO0x>g^E3pgm_lKZ<(w}7BQW0YvCi0WI<SRrb9#K_T@d5yYs_bD
z#kYHGy^GLG>3tFWRp45n^u81RXQnH9pJ=7+G!!ne()2}LdliNKN?k`h9|GgWY*K}}
zz^X6mytY0q$W!_xKFWC)pf6DRjD<f8eMTIr(4H<8D)ia<)FDsla~u3U;Lkwm^8)<g
z=ri(Ah4yu&P%y^UC;qPyeMZ4g0@Hxf=QQ}k(&van6}pCXwq0bIC8tH|wHdi8of_d^
z0j~q4R||X(^_p9{)Y3(~n#Y0Tts-=hq5TnkBClmslPgS`EHgJ+CEIVO)7Zx%`pktt
z6`To_K2`8N)W<421=DB(CrlC*1Xi|oM5hdW8>=Aaih{gd%72*fReJm#{$21PQ1Xq(
zdn}*NEBaRj$e#(OSUP;EYfWuZBU}^k?i;Rwc8Z*Dy;@d08v=H^6e3sYwG6%ntN}`|
zE8u&WF4L@&JJOgcR(XVl*Du<n%y>IxrbP58inI0DjU1)N*FxqFr{)Aok8Jp!>tQF6
zojjroDzd3j*XmfJ?2lA{cGARHz2qu$hNV<6-qvRs@{~Ro!e0)q0ZO0S;d`jh^l*OJ
zdG#k<y9q_YCD&F%q|CC2W#J~NM+<V49=<1>S_;SnN{`|2J=J4=`BE{h(JqJX5s9KI
zVzYe?)hF2Lu?9IxkB#s*fj<DH$5!~B>LGF`sbC0&cfceMIdhiwj9b_}O)}X+!J;HH
zeCiP)Cff3UBzz@5(8#)Q&<7~_A^0B3Utpzys7>segn@<Eqw~W~gJq^wN*ks8HH5F^
zZ-l=IYywLDeegY%FSZ1w6}3@dPiG3$CCT^`zLFpRBx^!J5GeU0;d?B9)u9Uf*qH)W
zsPwy%Z9VFcqx85Q{#I}YP<lKJ-$OlS9IC|?tjZ3*7j5!EOR?o^PetUX!S@A&fRcX{
zd{5;UAF9C3ohi^L<<}9uivJDpw}H(-$$u2S$MP!<Rp6e^6tF_&J2}-(2hY<HJ#yfO
zgAqXKF%`b&dWdPZb|td0YefpuY(46cqtfFJ`1`;^K<Tj)zK43uJyeNTJ69szmLLC2
zME)T7k>E(6<j;cdsr(LJi;p`~pi#=NCwvwE&G3H)4+ACtMfe`e@1Q(<-<bkdsFa5c
znGVlJ^cV`C3q}Cp#Q0Xzcze84*&ps;yu=#Z;%+g(;nS`X4HElWWcX_cOU+l^0KXaB
z4OBdzffvpr?Fz(pVh<!Tt|e`zvP$AU@rl`@A0x(A-!X1-Xut7_1t%@yECCkE=qY@}
z`bFzJ*XVCl8rbd9vmA+HAcXnwUUvM`pNqtQ1pG1JIH2@f1TS3I>0nu1n7XXks-d^*
zZ`*@D1FWH;KH{J!MzQF3dUH&_%ftF}W|Om>*<vBWF~--{KI*zGTc6Fyi$|Uq2Yep>
zRqzH-`g{v7T!CCK`-PlmX`3%m<AAGHE~ykR2)66>s`FS*`HtAY{S+xB&PPpQB!F2W
zF;al#RJVJUNUjT+=d<h|Bd4yntyjVGk#ss0ehF9xlwND#h3k4e)EZwqq14hSDKsWu
z52dhC`5mK7+s*DTwvsaVfErF(^ZA^eg4ZJDHxj-oM<2kOJDr*rDESNEg{zhO2)^rN
z-PSbA?lR+}HX~A|UjN*&QB1ZysaxJsixyZkNtn=h&$!a9ox*sKC(F|h%kEy+w-}i7
z4PqN+vLnGXQkZJ7m##C;%vM(HkJ^5c^kW^#F)T$-a3;I0oime-pA2(}ewog>5XN-t
zg{jMt`A<B8#6#r&OYr{&EkMQdtQYKf_Luu*7RY^g?ejkz&+5|R$gon2{<Qg(cxPU=
zx8Xf&dpq%bMDt0nwwdXPwH)TkxiNXZ+!1k(_%w2*AE$gIdwjhTS*qpaNG0c3=cM$3
zUXL>~R-6>gAX4J7SXy^DL$UEgI7}5Iyb1a7Y5v?klhas}<;u<(ZJhz)i^*lpf803d
zF@c%Rd2W9u`+fV0J-_0myvtzS0E?$RBOTL?TMT!;Ink4hMRn_aEgWd4&rag6>dnvK
z_kmWR(r4I<cKUQZ&O3N$RQiZTL!uls>USGY=$!G~tUqBT$GxU@je$ja%wzOo$!f2_
ziAIJvKnF91Q`nM|$JAPq$L-~`UaWDT<psu0akk-9bCx4PS+J`cZ0o%Sy;Q!|!~Yum
zPU_nIy!A?s!jy*$oJu~OiqVW@Ch(k`02SlIgd=M?FfRhEw4(TE%~I}<$WZT1#@|@)
z1I7cDUKhg)w?wWt`mV$E?t_O;x3>ae^xa}eFO22wGB*lic?A~TVw=p%7AEtoH)bDW
zi5aYAoWg>E6muGNjo;-rig|q|m`53Xn0y@S47fPzmeYTO-u!fDLY(erQwtL_z5J<x
zG<QnS8x*-elckTp*D-$alI|L-CzvChYh0F*J@l>`Zl`ZE@lfR={w2;f19?Ejb1}Sd
z%Kk;i<Ns0RqPB8*>B_?D(yHR>(ixT2k?NvoGG71<Vi-0b+-5T(${S3~cjtIwF+=W3
z&ElkYrr}+wSPL|IyM=+T<d8EtE&ShfXYW<cWU-iYA&WWBH2OPEfClCAS*<S5j@QHJ
z9Yk+YAG`toFYpCW@k)Q$j#t-qilX9GRa&}Sl=g!4!l3pbFoMDO_Y5|OzU1zg?qHEG
zL&9Rv*b&bm2T5s0a)#G!<XFSJ>|J1Yj<q(W+BjdGr6JO_F5lL78T#;@X6ai8e-*eE
zD1C2+7q08|Wh8n{sa!2xbhSO?9iufHdvvXT4)fRZ&5(HEX0eX&NV|Th3fb~MC45!h
zWB$(EKNtv<{Q2<0t(WV_7j)R)s4ZSPuSy(1Tazbjkjn$D*yHgU^%HwMrdxEd*yz!0
zd~Ap_X#<{gOzwM)(KH3Vm|m%I-hnLm5z9w7e8j|tFPqSuY1UG1VW%HsTth@&H;=IO
zZa^;&dWn4gJN$d#BcSx&4=>y_xo_br>9?=<mvnfpK=`m^8oO~;!*&yGov^g@Jp({2
z(;dX=HEuS+&9vtM-I+qSp=<}r)km5A`O!Sm)^p}75j|_+*MrM}((`V3;m()qG-Eql
z&)sfavD~&F(Q>;!?p`tJb~)>(#iFWD4DB%{WCkUoWlS(uXgZPRh7EA;BTdYmd14)5
zjc2ovsIM`bH3>vPD;#C(tu;l;MULP>E>L<O1utBkOxKRr>qObd2rFx!PRdq%ma902
zQUcg|Bt++N9(Syzg9x`->ahVis-C(Z{&DaWP<lKMFI?CC&5rinMHDKkrebn4!oN$L
zb+wB{bizjI0IPAR8*QgY{68Xkgy2sACj+HN4ZLt4%k>r=&(BBJTZX06jNVK8Ni%w;
zMW<Rc-lDxkySfV-tJ>zo0Y;{0x-nHB;NtKgBVbPR(mmqb7E*4DSl7NrpC%Lz9%<{_
zDD@HV$LsK)h~KY9^qmSXoLU#salcp|aF|xrhtBY=PRMqhE^#x5ew=u<aood(FTu<C
zi{4|8O*zha?5LA`+8OKg-Hu70noFK>ob>^#W|q`DCK)3h^dvmwNqNv?Jm5*&=t!w|
zIIpD(?QC|XeBg5a!IAQe!@13q@~P>3!b2R!G8bgb)wes?W76Ns1=dN7v*UFGdaLsA
zF#OYCCs6tD61;F-&$|vDYTK|K5;>Y9t!f(4n@;RL#CE6V0-VdtWEcwJs>a*$(_f2x
zZ;XMT3}yf&e>S{u>U%?_Z~J;jt_U6?mq4dgO$bY8oO>c*i%3{H`8q+ypYT=u{{p`g
zybP55f4~c;+HJFw{z+KAS{hyFxRp~~^g74y^;SMhKQ#6@SiI-Zw7135=nUgH`_+t}
zXzLMtJ<`rjf}aiM0j0-$c;UKhXTy5PrO|0sE5ixF2E{2rTWKzoxxn|0l;1%3s@>WR
z|33H#DEa?_7p@z7M$rZWhU5)yn@iTO(jmEJE9d|uRTWuAS$?I}dw(U)j)}AELsd<(
z(<AiHh(2e*pAA+4rO&zWJ<zB9zU{6xI?d8(mA2W(kjf%UqZX-8Bl1-G`~ZIt7`r0+
zxZr!DPxOA}o+)!_OjsENR2A6iQ;0mJ&*kv-;5R^}&kgWB(WmXc)}Cqfag;_aQlDnz
zDSa~Dpe%#_K<P6Wz9;&$-7nfReXfa(q)^plJAJB<r}ViK{vL2YQ2IOs-xGbJ_hI%-
zo9$8B@P0{sI4>lu&jk3X;25CvITpSr`W&*~v1dx{YNHf_s;1cKbOUl#{r5NcSHUiz
z^m-Fsxc2qGXnFIjQ)lzom4#`9;ID!#M-U9Z*^f3pXf5rQzk(NtSH9qQ=1s0JDm1f#
z5ikzViA<O@OMM2v8PVrd_$8nmD1BDI3pc9Wer;Qy(zAQ6O`5gn<~X`3SMb@bnLs<=
z?5C$%Eo8$~JAEETo=Trj;Qs@@0ZO0m;f3oWecD!n;gi7@kb-LHGEJSj(u5*_BiPR+
zacC;5rrCNFycN-7Is6)M0Z@8e1TS2t>CzJ|iZ+W+oj>bVn*3yFCeU8fNt6p@w?S)}
zZtK&8Je4kAz<&#V07{>I@WQnpkBcfdr;l71wm%a5l~q6r&zR@YJ~mcs=4w7Q*bB!9
zob9S+*m7sS9g({jeg&uoO71!E!llc8qZ&63mybiGrd6$_i43q;>tnIz+XPyfQDDb7
zc#JFugsa9y--3S^d?00s@spYD<h4!icHbNJHmyuL1({l6rloIzloNa>vQB#{{0uM~
z2q)xx*X4M4J2@vX_Qqqw5j0#&9WKJCl5#c>rut647yf?mP?Vh5pA#P;XGV3UXx436
zS(YpzuR+TDk+4;H>HRM41LzNg6Y*+aPP$CL@Vcjd#H^pzzaQT#Qce+JjwL+NPhSsz
z8Mrb^&d*A}ldCyEA{?pVR-|Uy<zXjbs`UF3{%i2xC^<hX{VX{P#4x#?e4~bIAt`6<
zdy#Zo244wkK)Afa3->eXpRfU1+f1H11FrBi-n}bWz-H2#9;GVh?NX0M<f#1n5`Hf@
z2$UYi`?elEu75h#BF$QKILxYmw(>3lZG&#6hx@BVv+VRQM4r;;T=+V$9w>b-ga29S
z5-}I25~Rb{s!7UkB77zP2Y90y`=3C`kAWAihv{*M^sZYc=C@|s>2L~ilpgEhuLK)`
z(&IXK;d)#?4%t{vsZ8p)Y*^tQYwOXB9Hocv1J-+hOrZ4W120?;)1xCTx-1)wQjcZG
zQF>eh|66b)P<q@9FI<n)BWeNtAt@1J6kc{=3XZeW;Zwp_@?$^5{s+hcN`4StxK7)r
zwiRDH>DCg@T<h)NL~rX<?;0i>=_fQx`O64j$-e^rI`BK7<o_OCxE{xUdc+1-;cNEM
za2S<00i6_1%CUMW$e$zQPxwl{=OfAi$OKA$A9&$<SPr737d<RGCy&~llixTr6KEfa
z&Iwan_Migc*3Gl^s6vj?<3;#?fPVs|$8LDxx=4p`zqW0boFmL+2W!q<S(0B|%l^!g
zJgXiZA8dQuidEJ<d2?1_jMDD@wt0)9%8sQ-p{@7ek0W~5!CwjLfztao@WORke*Uku
zPUCD)odwRKoBT&I9%$>t47Z)++oj&k=%xBc*`Lrhg3&<feJZ?gzmfB!x6A!YOEF-v
zYH=PL%kr00mMkx=mR@d2b*b3PR9;+>yR5XLs<gT$Kk~1dy!oZo=alk7G7bNPJq>@8
zHHo;#*zeGm<#2|>wYrN5LSqQlZ6~pv(&xXBSq08Mh&R1Xv0`^Q9c`CiXUb2Q^4fla
zo&KBAvk*N+|KTh6>^<~TfQm;Ayl@NT{O48DUiaa~V`lNnB^9MpD_5+55%Fo#Z!=yI
z=3-B@Xr)DWME}daP^Z5_7VI&;r_pB4G?A0Z%)k&IJF-u5SGi40C))7)UA~jtBja7f
zez+^eF(vLK&q<7gaV&KhiF$%C-s)o0sYsa@bPpE(zcnzIaF?MEv2r?evYkFViNEUi
zxc`Ms50DR3`mBT(?sd7JIbH7mJ>2wBXG~=`IqoxFap+Bsdu%V;`mxrc%U+>>u*bO0
zt=*$@YQuVt{ox#KSE4b_Z3K=rg8C7jOyg`%uN<?l*E7o*)ca!yYZ!3D_jbqWN5nDT
zEat-2)7LO|2}@I%=3H~3QLLY<PjdDO52I^Mr`hSyL_7<Krzj`>Pnp*Q<AF+t-@*&`
zdYQd`rMbrT4>ui-DHW$*_N{k6ZESSw_3qbPmUomzvn@K+qNN*|nc8DK&({pwALh)B
zot5dpUO-e*T*{26he=V7XNY6y@v#BJbEISJ5wktB*i#=^mg5=vm2M2y-TedooX#L~
zpwk@gxq&&D_=_ad^*X1Wl1xkWGhCQpBt*^^oME19<T@(7=Q^U&tD(qFFYU8PxtRoi
z1}Fw9y{?28?qg{e@&Rf0?{L#=dUbJ4DJjN|`EB-&`5*Lq9gKm`v1pmtEWgLN$fe!S
zEb(m9E-s_O#pQfvx2L)0dNZw9W4<w5IGTvHW3uacoxN%lnC&HY{F>2Uy%&8xXYLmq
z0aW~^zzdfw_ha{$=hz%>{EjQH5e0&6xC>f!z0SB;7Y3R47(eOErS|8jUneKh@*<$(
z1oKMF%E%(TeTl7aJ^BREN0i@P@Xg>8p!98l7cN%X1Nn6FFDt)=j0x4AL@mywrd`cF
zKm{f=-o-8~W&kh8>V@d#FEnQwgCg%+eW|VQ*ndabm+Rqg1h)X;#P{R+cHgUqo30#T
zFg4ur)XXWbsbMV3YHX@cJmI+Tk@KnAr$(w)k*aN%`t6R=Z}b;@gMta*|A~Gl)|6JS
zEM8ICPQ5xkRcn&^)k$4Me(!*P0lW-UemBYMYP>}GhntRarYkAF7n{|m#Cf#OjdQhF
z4y7GoOctX$g=KcWrvE3>-&qD<32K4TYYn_`UG&oqSH-A&rVJ$&tYEqQ9;`oWyf0#S
za;)mx3i-`a-<{~A`jx3)GQST70;TUzc;Pzj-~Qidn^sgyuk3t!Wi)#X)B$ai=nKzK
zUEyVR`mRAArSF^YAA`?;()T~`!nIG|!&Q?Js4m|i7VxMAlvOk3%+wdgy(Bu&SeGCt
z2)9f9$9@&j{|5Nmz-FNIzYG5Vf&S_Z>r{PLTlKY~ay$KhM86;kTK$9;*8YQjK<OX%
zwXOd%vS0kt61$$QDz06Y&&n{?|I{wan_5v?EUL}y2FE|mO%A=m@k7!k4A6aP{E*I)
zxqJ>^ii<xf&XMdgW({!9aHKiYooVdCG+9(3xD))wEY~fDbEL~z>^=kgJi?rLhHI23
zffG1K8Zo*b(=YwTJEj;MWi#8H&6+9C2xsVM!#K)4c6GkT^yE1EI710KXDJ@(9<w@E
z{wFWNafFEhhLNj>$o~vY$jHcboR)6PcJ<>;&!i7&9P6IDT8}SwE_M!c=B2uib~%rA
z&sgn}{~4HYy5lrfEatj-j&o&C!^)b|9W#D_bKr%T8bESt!XRU&^Qbe$W}v+e&uIMz
z7sqvSj09wXAiE4sJ~Ph5T8Yu1>l<|AXfxkl2COx&lJ5cOtn%Sn_}_pVWZH}N<F0n&
zs%_I>3~tV^D6UyX9;A@!DcDj-;VIlXcKFSNrRJOVig3SSjVMt091Aa8`|~T>%9&rq
z(RH$EPb!+V$b+mU+80<3D-e}t$jr4SNeQP)$~}c}mD~#W8n7BDxohFOmpi+%TokW}
z$eSEe<T!cQQ?rz}lkkEBD9ZCY@Lzzhfs&W@tu3$pJayZ6PO&>@X8a~$w<{4Gi9M4q
z`H<6gVJbf084@dO?_srzQ`0y%k=1%hnDOE$NT=KHcJ|S<zi_Cah*#5UJN=80tJ2|I
z_)Ec+K<RZoyl`Eoe@#^SW5HwATD?x6w>E|j%3oPTz&?0mj9DmFevPqrVKWZ5M&>`^
zEBW8S8{aV=2$cL@@ZHNl%gzTx&lRFC64sns#CqukIat?r@UlAfSYMWNon;Xod)(vI
zz-axswjRr*9Fafg!(Rm&fYRd;d0n;d%5R%LYMn}9AB;9^)ggKFe3*ke%^2?-ZzhPN
z8!+r`aBh6!X^G=o%<&gF6V^FXF2ZzAN{eY+B>Hb-jW?pkWwxJZ>*x7z<h!XC{4fv#
zO229F!qpyc*Mq}leOO+ZUtYPYw!8u}m&HpaTPtQUKevSg2lPfG>j@Tpes8omw1FFS
zqeAy&4ajh29c`33QpG8h+jVm}me7_lYT-64<HuUV`L;ecAWsw|kzU*29{`U4rB5Tg
zaKoj2P__OfqK}yTu=Po**UQCv?eC4t$g$o=k!XvLGN*|=3SA)M|9wPWFZhw*NTB2u
z!VCAY93QDaB>qC)v~sc1Kf8$+<`qM4Vild`O?|~mhSyE)F}{O25ZE;hyV^d?%Wl?<
zd2!Q3w#>wGae?@Dd))dss9$UA)qq?Naz#2k0{;T|J5YN43tqT~r5)F2<odcuI>>y9
zEX3Nbzs^!DR?&?WI}pC-^i3^K?2quWer~zZ-{WKTvf;?|TC3HDa#+MXW46Khpq8A*
zI$N)?KSbL9<Kc@z8BlsHhZn9^uA5sgzgHr9$@GfoRnLJu8^wBiw^)Msz433BAnFhf
zwwq!MaoFqBwqIn+e^`bu(q$+7Yv2u_<i9PitM^Fx5&3O;!pG1P{?WKldtJX!bcJVx
zCpbgvY<a;SBlXBc_{m^85KgpHOWL(ltOpQ>-Q>~l5+|Wetz9Fw78Ea$W{85?J|l>s
zsGxXWxI!ss17WK1x<A7I32cdy)Bby^LphZzOVP@Q46%mI%D5sK{-=bc`kne-+Cty~
z!ijjaUtic!`1BOHIf>wt_}ogeo~@JN&m=5W-<H6afwQ8*?@2l-YZtbJ7E3~d41Y6W
zDgB>;e;)iTD*X2Il^y9Ho~B$x6a*5?SR>U;b*B=Qi|zbQ-)E<ZC|?8N$AIxbm9JCf
zbycpEujI9<sh<!v^-OB&ea22hd&+&<mCi{g<r>)!m<fM2Qywsl2hFq-Q%-U|M8!@0
zd})-up~CgHKAVxJ;@t@UB6tNTecpf<POXPi>r^Xi@=Mp0mQW6@{(V$Gxmo{*b#UVW
z<6B*unZq6hQ7w+aoJ{n&jfI!k@(1sajH4U{KO4*gO8#1S;hvHE1s;(5Pn7(qk<?}u
z-@Pwv1aHOjX$Op#T-v4Vr}(R34hW?A2L_CoQAU3@&IDL8or+D#fXkhbl<4#)a+ZbP
zfq_c&94^jjUTvN&I+jEAELUF41S5+Iy<vl`?{4%_<*)^QztHbMMBjLL;ck}W6RQ1C
z`i56PSZ3ZR?)G^5*hMiY%<Shg#z0q=5r+-6qpfjjW@h^s)-EY4Sgr7KTaO~-1o@XJ
zN2}oLz<Qw4tsY*u_Wd%Y$Kat;S1b{x=Fd4tymJL(S(rbJ)j9`^wc4xnKU3LyGF<F(
zKF%C2`k+lx?ry>j60VT@C4ACPlpmnvUIZ`PD0vP^qx9R!t*KpN^*}l0>bK@5aboYC
z_QAdR){oux>AWA|iFA40PbJFcjzrf`_mDUbO^RnGhu8IC1H+=kV~o+(?z>;>38{&R
z3BC0IXVWF>i&C8_o?h;(k$NEAnc|0Y>KLKZM>~gmLn&@fsXLPPvXqfePNLw7PtSJ@
z7LCyo<08X+Q|FxcB7LzwUa!Uq*m47-qEG4Zqa9}%6U5M<w!PlYhfj%bkl!LbTH##>
zoth7*^hkskuA6)yJ?QO-oTxg!QshE~_847qj283aM!o_xEqJZWf5HtCu8_ML{$j8J
zD7n9Z7p{A`e7}ogSaq$==lNV##T+o!8QL?LjhbytH)o0@S%}Hmd3Mh;be%1~nef&4
zr{2n#2p9&G{2Snf3zgdax(eyHD+jB^iVHTo)Ra`0SJhTpy_^PPi(Mo(MHh*$+ZKtv
ze(hC9K87THL3egqRFOEtDEG{hMdEs$E{D$@)B`>b%k#zIFH2*cgWOs9WV+wtocdx4
z#gVd5c!JLSnH?94Wk#!R{#*A9)Jya!dO8K8(kd8Rbl+3hq89~2*rgBMXs3^+xx)FA
z13wrH2P%EW!3$SE$xa`&-o0J=lvGsKltz+A?0-%wI)U%R1I7wY#l?a!1vkm%6L0D<
zX14lT)U*bv#|Gr6`uz{^FM?Nq(qp-9>rp7r=d73W7VY$yUt3&lPe?eo_%=HAdgtwi
z<vnd$-uJrYEwboC{1C<H<rM8Z^JpVIE8dlsx{40D*LRvfnXkOe#GiCmijR7iEm=WI
zSsYt@hGHmij<EM?&M}fk8)H&jeVv>==}e4`O&y#xF~DbGQXt^#P0q#TV(2;KW+sD^
zC_ORGnEW(%x+l%um!l^+bLmV+AciBV12^jK(c;ElW0Lt9C-~X^wY|i{V??puubW>Q
zv9%@}c&{_ei*&~nSCaDtW3+3c6N}1$feDknBaAX*8uuUVeOeFRtQ$w>REgG%@A2E^
z`%n6*^u-9O76amdO5Zei;o6V4MbdZrn)2FqZK$Y@MHbK3?%@E-d{GGuk>BM_Qf?99
zD!HrR{{U_SO0Lgg%UvMn<&w+oau$(m)&D0Km&<8|ZKgG^P+-wqi*9C)fvJX77R_q4
z+SGlV^Xuwwq+`6(&7q*_oO&Keb-0)U%JTK{8pmfkdwCO`ain(^c6lAnIA@llm%%lI
zj16Ei|4Q98$Q`TqO$%hQX_aj8d%Y%uR@jdAr?_4DPK<y#*NDnyq4AJzUZt}cuhuxr
zeY|gxk;Xxyu~zk~HEp)je;M&q?eRMJJHR%e(qS*WaLw|&Dp}goY?lu6MSE0OURBBq
z#vDt79rJe_R@C>|-r3RVu+7K$hW(8cSG>dRItHbWViS<pHN+^QoZl)e&$F-CYH*IB
zesPLJ;@R+w32b=L3=QYH*hJ}fj`m+;830;fuI8LycC3Vqw{_Pry_5|p>G~MjpmQBu
zQBx%M*zqnhBl&+m{KeohpyGWkyl^kc`lU*)pN+)Zs#@l)EGZqra3i&hs9FjavnK3-
zae=nk)0^?|98sSXngj9bq}<(vtG*k*gKq^)y@ur`zzgST_x;?VTuTKZw_q0CkN8P$
zWY=o<BYO<h8e8gx{2}ZLv(J*Y0=`$qA33W0p9g;txCE&9Uk)!^XYZXQx?0#~j>J9`
z$``ReR@>phNZ|mhIxUp)ng~zHYk~g(8~{pQz-7xjUw$tSm-Bud#=EAttTdeFRjaKw
z_qV$C4H3`a1KzDCL#+cRN0>(%{Y2KcNIgzL&RF6l+WlJi3&F)e>G4~5;Xao84BwIZ
zbf||~@5mmihuK3V>g>0$KEz)A3`P^&)+t>hL`^x`9LaGEqS9>IZl`}Ua@2dbA3odd
z()t6XM=88;)8x8|QPPj-Vbwppcl3MYi^nM+H}UD9H|x6%%e&L=&#$z8WZ9kiogVEj
z6if`icw?*=Z=kW*INmtQdh3cA_31C(FMOYV27aE-);&GWIns|QVB#~^tmR#M&Ik<C
z&(IgJ&Zx@4KSVkQAGG7wi2f>mZ^O3&(-Vo`boiddkN(xqjNg0zKgO@>5j%bjQh!m7
zw!{AwJONbxy(F)z?@#5c{1e}yc_YNT8{&-1P#?@H9AxOaPw&KZ(mcyBl6ZAbq72~)
z*DU3xdn5g#5d0)C4Jf&%!dv%uQh$_{uUs;n56@M##fvLMot0K~HvQKAAc^;=&he72
z4bI_IF)R?%fpEJF=IxV3&W<wede#bF+y1DX4x5pu`mv9~?*{JzrH{*J>ys?cf$qPw
zZ995gW##fhrfkrJZ<)<@$Mu}(kC=<BkC-~g?H+ALzONwA4-58A(`_;Vo)yD+FqyS{
z%ADw&(o2lr?baPLMFY3c_?-E1W2U1)cU`7Cb3M1}dT;Y&v0BG=%{y%Umr4CZK3)oc
zHMkZi{eLg7tNc@bBp=m@pu#$Oc+f1VAjj%~OwgX=V~{aLQ4<d|;#78O!6$6_pAx<r
zS2AN<S~AE0N`5Z9aQ)@J+)?rzEhS%mhg#o*Vd)sb{i8jUI8yA#Js@@s|Iv|$De+j>
za92)D8WyY*#Dq_wIo6z^_aS?OjkZ2(kf-$71iu;F4U|5QzzerijvwAUrEPvnecFGQ
zgjGx0uAeK0HxG!dt_RSGQ)&#M00XUk?W)=ezftPriH+#fAAT6f2TGr#;DuWt^%#6e
zeJ$%r`ri>HicYsa0nX9(aJs=vJ9h?{;|;ccTcK%M!IO4+Y#@BqUf&M?0C)r_`LDqX
zr^b0><@%*|`D69}E%_rwNpCUU<N#cb!<`_G!98F+VQAku^Ua}VvU3t^WYb;oUZ-mS
z22tZhZ+Q;KE#&YwLJyl8(CVJD^$YqV?dll#abOY<PK+D2U-zi=vg@C4id<|^{XhmY
zrsE8l=NNgMXNIXZg;*?|3y9x}kM?OS+@|<qt$*6qt5ND8-mAaEzXv`7D&4-6*VX%^
z{Am3|?PSfUTqnlq(io?!b9}CAYu3ykzaVvf%7R!iD7V?3G^u;WmOC~ONsklZi$Ez*
za?gSnuCsp4;GvP8O{8O&RyAMFy|3e>cI^foLV;aof76Tb3ZAv)KTP=Q{rLp`3(x|T
z{O{m}Yd>DB;w|Od{mQ}Wzu^v#+6-DS%Bo)GaRB!`x>`m*Rk74dJqqG%IU@bb;j2I`
zP<pJ9*HyYJUrFp(4=Zhy4#8ly=<bczwtB`39jwZ&Ny={|eAVB33;qM}2~hGsg%_@U
zK1A(zQmR-Vca#NtJDeEWF)J7-P&+QHV6=kgWd6rT<QBr84vK)1y98diPS=~Xmm1kv
zz-!8~i?-X|H0^m??smde@!b!Pop#L)l-wA2;kt-#cqQ_Tpg7l@os{E)N}JWe^2$7`
zyBYP*s_Nj-%9^|xta`8(Os5sDohNG6TTv5eNAu|?mz#60m96I~=%Mty75*-8A5eNe
z2rpdwdLz6a?3Zh4*<2P2qz~}&YD~3>Wu$Dix7y~SowlAoqKDEmB@rHE0pUcw)_y)g
zB^2Z7k@0}=ghGF9ouj`N+n@SLhF?Tjs^4-R{6*jrpweLjym0H~_h0*Q=&+Q?4*sNq
zV|gjpIm)y^nOH^GPqg{k3wC^V5}u0Bhwz_(&!mi=$LCxzfMrJ}naJQmGW<|dBtFN$
z&jlv{6`vE~h3i3lEFnpS3;C2?=UAhqt`YrxJ2H&hN_h>0r{c2%{#oz>Q1V`a7p{x)
zuCmOkR78a*-f?Tq|AF?qs)*-{b~>gfN92xzp9H1>C3hygaNWM&(Nfba>+JokB6%l8
z67cdA8u5|(y;;hyCwvv}ZSePi`=!jT^D!)NNZwr59)>e=nw639f3xG)LRe$bU)0+%
zDK0Gl5`l0c{Pz3tR3f&iuf-HDx95_7x!R0e@oa$%zmTvB`7Od<2EQCsMund&zZ=@O
z2Vw1%^5Y16oK|fe3P*T#GW>@Lt4fC71pg*@52*b45MH>D?9aA;uOf0}Bv{*ViCEUL
z&Oxr!ikw+$j)~+;=p{SdLaCAOq6zTx!6`t=9hYXyohHW>cFTEhv5q6MT&&*st6>?(
znr_j90bv|#y<=;lR?h-~1W#Q25Npxck#kvmb;zPIpJ$bGSa_+JkCRM>Fka<jsaS8h
zRBWs{mU$Q_OT{qR&r-3)QA@=_)>5&>QA@>!T1&+iw_7TfVvJ>}SUyX|Le^5T#ZgPe
zLe^5T#ch^~VR)?FQn8_PopZ|7QnB8~MCbTnB0;g|_N=L|F^&hvg4+xZY~$Ajm_O8O
zjH5&+T`T&ho!$+kr~1C%2LA}y0aSXw1}|Jk>xc5>@~Jk<cGf#swsSwdT%Ycsqp8;I
z2%*vIc8Ye{@`LGi_@W#SgC7TG044t<d0mxb<y-mPW)iqa_AS>tjy1;X2}X(@tKH=|
z_G-uYYa9tzJ5sK3#EO3AId=OLd_%@xhA-s53I93x3Ml!R8Mc0P^4!ZtIY01o)`?aX
z*VN>N2MYQ&n0t*)rrtmoWRod2U+*!sF(U)>v9IQKjbTpjJi{Bu(tC!{;~i(4POpn!
zoVu0R+Z~@mGFF%uvP=F?x;a|UmaF|}58t%oQ-!`W$uAL~t?)mBpMZ+btV}yTr&QVB
zdk<IJ{?Cq2^{SPH#Ea^Q6YM^=Pq5p<>A-rO`Ks-$vVI&LMN_)tMQZGg(-tq{#KJ)g
z1N3LSP0)Oc_9AUc;F8U=F!%H*#~b>JEXKtZ<4(hM&VY&DiSATK7$SKvzLRQ9H5M`L
zo?(oG_GdhuRX0c5-cSa)#UlJk{OcOWAn|SpSO0;Xo{glJYA5y!zL!hu4ODuLgBMPn
zTdc`(^`D)dA~EwOFA?=Udww?P)&`&T4$C{kqFG|M4_ozFphP7W=kYt;o_uzBiOoJI
zo8Rb0FzH<J{-0zn<_wZMb=SGZIOk$HVqWmE9iMvi4Wh3oAAg7cH)sJWKK?8_J`3bJ
zG*iwO9A12;l~$D2iY79<o+xc}==F|w4a+;jqFEcQC|&N<zC0vKrx-61rG#*l1_`^J
zXGcXzB)itM$Bx%B^j6<%e}aDyJPK62cEby&#$V1jjQwlYd%U!?R%DgE5{+GWU)ZKR
z=Y2)J^0DzQC)iN;<#Im#c*ErwnAJbd&lmUb7-zDdvw_H+(Uigy*raFl6$8pz=u=z&
z!M$Bt0l!7Ql)<k9mjR`J1H5q4WWG$3c2<9OzErS*CK3V0>K<`eqjYmDI?197HZhv<
zvGFXX5oqQD#+Sk{n3q$g7jl$qL6UXiN51hlospgsj12wPh9gH5Jj?ytj?a(iTfjd=
ze2(Zt{{&P46`$?!!rdju5o^yr%zDUrZ{#kqM&}dy6HdL+dAGyz7FqNO)AC+3EN`Ag
zH`@1QKS8_nv2k@A*3m}tN+s}0EfyOmU8Uw<bs~I<tH@PBwd3;?Gg+Ex{Gc0i97oa{
z@blB@yvT4DVr^JNexdnW-5Bba?fMmm+}~)B{mfpS%}UH%{T$C#MhaKs5LW+<oj&Q=
zk$PnT{5o(MQ0emuyl}sf>jer{{*v^OORM|VoB#D}H1&FOSQO2V;+I=|_C^*;eQbOX
zqut~X$x=WHj5Q}1$$H9g&oIMR&hHIkH=WP3jivDu5{I~lPG#MC5}3hnr}JOBd$@Oa
zpU~*xUVEnDbjH3;G9J_^FsCtA$kStWpE*>&z<kL_I6FB`G;G4v{b;Ap*q|MMQGP1n
z&jV|LN}u)ey6O)o|7X7svJYWz*f}mvv_O~Y+J_DZ3l)#GdkcL3?6vi3LT(T}g<gRi
z#&|&=p!DhsFWe0Uc7CaT@z2(4@K8~*hsY)&t?EQMaJ9kl7+*Gka~Gn<t(v5MRmfNU
zx%=QB15W~_-?Q+-CI4UP7p~&dsuqP+d=A5RKwA)2v0<N`e(`-H{gb)yXMz%-^jiuq
zTu9mp{l)2LR}I+TthX1xP8W+`H#mOKH4i|;8?D#3VZW{4cH{?<FY@;*_<f)iDE%D$
zZ2j7=Cpzr>m9J*I4EBi(o@|~Su2zc<*!mSp`9i<b;TMB4p!BPh*VX%={1w<z%@c&i
zIH_<tV**z=inPSuRD0H(#z<q3HT2jh<vc9I5pte}|2udUC^`R>*H!q+x8$^Wr&y?F
z$x1I0FBBVWNnK5Q7Q8*xrELdSfMsAjNCuxyacNJ1--9*aSTF$S;LXXj?Vuhk2h%|&
z_`blUHGw<9I&eA|4dTIPlU&;KU=uhGoDA}T7koI;r9BL;11rI7FaWe3jVy3CxD+e~
z6G1QV-wC7#xD%`ci@*`U0p1+XI0Co^oCT(X9B^P9*T93|YH$`950ZcZ-ag8u-3u-Q
z3&BX>1iQyFR{?$vYQTID0)Fu6kuL2ea1Xc?ECv%m8u(@m>zlyc;1aMHOa|HD;Aofj
z4)_bW7F2_IU^sAr_eW80fE&RoZ~_<rlEGI;xU`*M6IcyS1o^-L{xOnuC!hvQ0V6;>
z_-KSndk)+V)`KE20VILXL!=A12V4azK_M6p0^sv}@(yePmw?4!66ghf%Hvt^5V#SX
z2TlSbfD8OLmwW=7!6l#=6oMf@2hGE&8^NvMVo(CcgB0-DFusGqufbVh5=a7{4rP8A
z+yl-4hTw-VMgfiieL%}#?g76AE5US-4Gs))X|I91!Oh@&a5|U`z8gq7E~{Kon!l22
zKYwXueob{r{?Dyd@=I1M$rrESBG$pLT9daF+e#CPSJhT7E#+`h&i-67QPc8Q)l}zK
zRF)K1C^6P1m=(pfCCjWQI=R96<nCdJayTo$qH58qmF2b~hX$+e5-X?|RaMsX=*CV|
zlncZ2)dF#$=%EtB+Y|C@**75e8Fms}<VLyursMFelvCRkN%?M)Fnnjtxhu$_<y|FC
z+n~j-pLcgBng5H*Sd=A_{B!J0?RNV8pM}aQk;>}-<1nMN{yzx0O1z(f{JeLpjg_2y
z44v25x*YN{w!M*Qn$qGGJ-fBUI)b=I_p*8fBQrg^wXCvYNsn%{6z}YPA|4nNsL7Z9
zBJ8DCbP{U&TZ>mL88fP9_jYzyWp!=-d1WkeYg1?sN%|UbpCFxtQ?{a3nCa=_YLzhe
z(8YCeoK6>)%POm>Lpr%Z+6K#CQd(M7YOPY~xK2{{71yj-WTzdYbUkPV)N_`hr*3qx
zrV+aqU$eTn3iCzX1hk@fd8x=4>$V;!DVq#?+0&w`>dKO`&R!&LUCpxIMS_%fR)o1p
z#HFUIx>eoNNmRH@k?rbYacwuji}QJ+s*^+8Eo6web}pofHM`x0&`leH5Ya$&qpNjG
zH;uKpr*mDc=Dz!GK~H)FT?i2kNjFi6YHSXv3rGw$1$7?&lJYJ?Z(EDor$bnQ^`MN`
zmeUP9k4=W<E6XaoibC5PX(&1?<!x^4Bu>^nHRpEuCRq0f(p4B;R$?S8Dc8y4NT*j?
zkuPd4s{<RUzYcvRqHfOXSp}z_IM06Lqa}1)m4zRWOdF-TendUdMKM>Qt6O`nPn##Y
zNlSTecXxGKfhjG!duiL;XGNtOk-S}9m2DLsrA75rdhqImU%SOvS{O4b-}XAwq_&!`
zg>!^C!^Pd)VjVQs%{}F{mBroMQr7(~Y-+X+6X+%+YLxO7EL82J6h>lJ-u*3Qo!mlK
zWLbXk;?CMv>oU4h&4#-fhrXuKchz*(k+p7GwNfmP>q?iZ%GD!6o!qc^RT<xG7VYwm
zE_z^#&#f)3$rsgVr`;C&7K_SAcboxH_jRU?B@BJbIu%CUQBt|2l#d0Lcz2cy>Lw=I
zSi#(hFm=<?>f)+pSnljtX?53<a>gCHxo1^v+1PwRI=PR$5M7eaud)uVV=XKTqoU8Y
zw7POtRaZAvuU;XHjCOg;Dokm1+FV(pswyixeT{^%(@It}btR%J9jp!p9SPAF=_~`8
zNDnu?(M<qt+M#cgy1BYG)TS}&^5zw#D^^sVQ`*&As>0>gl8P?hXLaWiN^Va=EU8*m
zzNDgZbx-d7*<UO&>8w@ii%8{8@=57@&XStSHp$j;2~@XtQM}bHwbjKXrHhM8mUkoB
zy05!?Ixnb79K%Lb2Hk{HQ@g6uIy)SY^*P>cK;1{oI!C3uaLSjSy{dFoXKzthCyqNW
zuIQ>y(C*Hf@}<ixGqT;~J2#4utyZeD>LMI=>59%;@yIO|r6rwJkm@GskL)IG<ZUB*
zc3U@hb@7R))aq)0B79FV4No_sDx-(LI<Kczmey8PR#Yr16||cm<-Oh9wW6kW`Qqa4
za-6%0YrCs)SCC$v^?g)YtXNiB+*u<OzGrF4>dNZws(=+sOKMg#bVHNhT@>Y=-QUIm
ze%*>KD__GmRi|SIDiU3d=*Vhz1)I(~?Q*JcXhG~MwtMZnyQ74Te|7f)ONvXDbyv5n
zSX^Gq5mentq+nH-ciM{zN3kdANs2FDRMtiRM1@vSMp^B)0Vyw|q3K5bWf<xsl8efU
zYr3nQ<gGmju+yPer9U4mSYhoZq^?F<!U6F?*wwg_x^GG8;#Et#kw>qi2QN2wl~phj
zFZ(84_XbL6Yr2!Vw34FOZC;je8%3!5z!uSP6_<$fP<wDMmeji|-?rU;64|o8(@mJg
z6`dt=)ENL>42MVG)uv;2XloIDYh?7<S|{*7^1l@LUkdy$1^$-;|4V`YrNIAE;D0Ib
zf0F{bu4^k-RaCU%gk1!&uJc!4J^sUc_=AIkgW~s);1J7ixZ{UA#BXhI>tNv*q|Hwg
zelTs6<u~2ldb{}D=-%fReqHL#slqSJTAL;Og3YVN=3q_RJk0Xz-1k}cX@44Kh5JqZ
zxB23FY|wAXyV>!WBgpRuwdsy}HcL)-Om|q%H@E(1`MX=+w|wsL0^5mL2v;Pc)T)`v
zxBshczow;^#THn!q2?5MLF^jQH0vQqy|7V=L#*YLoEZ6AUJhTcd!pfqx=r;@)NPbE
zOw+X)GjvTor}a9vm#!7|Iv;AeWx6)@tjP7oUf*)%K(AJHJ+oJ)uJy^xhFUIpEor$u
z{lDq<?*;>_y&xREscZ8<_;*Ox@<v7dcIw(75WYS<Z@8|7hMx%)E=0=C2I~6c(Dj6H
zOK1~RxVm^<dlIPY*pwD_r6a$$<ZjWm{4M!V>wa{*IZD661YJ7^sOJkjr+akmOwXB6
z>wd4UZ360g5wWcR>bHh&{i5`%^Km~=*9*CJUexs>uC0x_uEk<}6{!1*kh>PB-;Jd6
zk3jtnZJAF@7HwH1<I|A(Iof=g`XkhGo?M;|c_u3TH$S^s*Z#iwO{j2%<i*;k{P=*l
ze-{=1x?WF^(~VirTW<yrq{Z?M1=5nOH;LynR%GZ}RYomTxVo)RZPm56x4sV*P7jO=
z=vqPGbg1PTuDV^<>TiDzDjZ=+SU<Iv{I7YpzRTZly<zN^`spi<$~j0$x9=~?sm#%}
zhx)(L-~RnLc`YDA*J9HBqU0TnJ1GC72ehw%x_+bM5#H4u**miB|8)0T)3SMXt+q*q
zz-p#*@>f+ej4O^&jW}z$OMXphMOl9Fsx{|ujLN?$Rn8H)BXq4{#G}x*t|95aN#tbG
zPtdAuPi$*{{X@rBl#;sP-%{@P4sVsEKN3dWmY2!#rY&zm-`n!O%>Br9E$c{fY<$)%
z=$x#1D)+)SG;jT$9BSP5A0)SI+k1$7Eq)WJ+Pvi;As203D|0jaxTay>U)SQ?v!Qd`
z^X&RD>T*$91tnx<S{1Z9twxrX$PJ;~rMbFRnOg;2o4Xd;)`hgANb$+q3}~@dCR0Ch
zPhH-PdAj!dyl<ge{y$}DiCj;Utg2-%k`<=9W0Yi6J*gkCZ&26wV+2`1=yd?URr2b(
z7NcvUfw+DY{v^q(>rH3r+JAt!-h%&M$*b!j>bMeF&sE|Jh<n41cW{(^569q7m3;X6
z)-hXoueQ#C7H&NiddAj8(6I9sdUb8Sw**?|T?=jA{F8j=#XXpNw;_J816m;JX{~_z
z;zS_+cQXDW$&1^CD<ZztGR|x8*S3p)0l!a_|2qYLQM>DPY41`dn$tdmwxsP9d`7FR
zLo5M_x|RThe5?X%6D4n5gKX#b=kk9o_<P%34-(^}fOviqzCd*R8hyI92Z;au8~=OB
ztMIi?vFQxN_2=<-Nj`j?`gNMD_Y3h)mAtxM=h3x40P*~t`1eXad_7|uvE82W0<<aP
zE$Dk0??=VIfw%u@*-q@l|EJ{D^V_MjUjrii-T3<@uddhe`xg1X2K+7Uu4|-6FPSFU
z_yQs<<?1MJFUvC5g#UiK@>iFlYYzhP%)|KaN?twRMD6jZte0Ex_ex$}uOq$wBGar9
z|AqGHm#k~g0}*}`{+p5yKTmqxBGY6OzCg784YUH^0P(+8e1YieSr|a2?Fq&Ob!})c
z4_X#1hbs3M?JwMand36TEl)Z-N!Q-8a!FmkB>hrCOwUQDHOkA$gZ@5rb13q>=5iAL
zyRLVkaqc+k#}7RpQU)R}PW!1f4jID5!^cbBzGH)VIXSi?^W9*!>%Cwzntd4j7+Q5l
z^&R4wMcSlbb9O;+K`>c6;@~J+yEzBvK_|6NvRcZ&Y8k;ZvwH`}1$%3bJZGMv`SSdE
z4y`xJnnFZIA4*#=V;D4)F&<iwQ2?EmF%PO~!OS!1WfWze4_%viIkZ0WMrcFk-B8hw
z^`mc)KV7?oKb4k)Wgk4KHE4D8thHdBR}cDv^tpnIf+0F^T68K2O)SUV+^YwTpd)Ao
zok3U79rOgfJSm>jLff?T;EL>C!7M_`4jvWE)Qmjr*lOOqSYnlx7qnv~Lp#(vR3BT@
zuC<B^=QH}9K*YTe|5VAJiN8qlQFkB8Qp05c@qBOmVUiEwPm=th4@Len!g&%c#Hr3j
z&|>Fh&?}r*K(BUUx>-xwpSE9w+=b))n<L-B6Ywh~zZPGho2Rt`UDvJw;yz65Td<ya
zRoAA2?w)U^?0+Nc!0+(?EBXESt&;CTd(3j{+8Ev<A*TTUM9CN7FO_^(&sWg{+6ct+
z*WuqO`7QVlNxrM+8@$w4Ks^5#{wtDy6~9&TT|KW=@@@g~d?EgYlHZ8GN%CDjpN>&s
z%}h6;uJiyjK0N~(OkWMHOWz9Z$`zc&R}2t$72%glekFdT<hy!aqy9Zr*1@Oa3y825
z;tO;wUDN9Lrnz5!*EHgPBl&&!t&;CbejWXXYh@qeM*N#4zXktZ$#?a<wp-V(e9PAJ
z_xPJ6e=GjIlJDyIX7WhDif5IseQ}xOHxQRAx{v>%{n_}|3~K6})`8H;tuw4zyK@af
zU+dZ|AmkU~mrK41|8mK9{xs?T`CRLA!MMV%ZtL_~-M@d?^V+}c=NtZF`<)8v?1Fq=
zd-#_<U-S!~Z~TSN2Os%m`qv%i^D6&}W*uJstNbf?{4n*G<*#V^;mKF!_pqOr<@a!(
zSMd)%ahUO!<+tt^K3~xI%j5@>4ln&x{Og|mW%7%j|7FhyxBjx{o4@>J&li1ln9s}d
zU-!?$d|sBHf?dDt`R1<=@A<Og+Tx0!wJc^_kOd(@u_8n)Bn>VuWdluV_<zc-PP=;i
zS^aOigF%K3+1K~JJbPm{#%!}UK{sdL3w<p6rR;d^K=uLnj@_53Eqoys<*du$dn0E9
z)E&wRWomsxLqd#DhsHto-0_w5ZPZZ+w}$p{$4{YFXv>J!5qx!zJU9|*N1S{F-+rx?
zt-5x0>n+euT--5nw7_u{(6i%y2fZ=wG3buCm!N--dmZ{_+*{C&-7I|;z2+KM4gJ{F
zajUuS+_-b0x24@q@Bge|Wl-0K^c&i*v*%qQH=5@}#a0{j;2iFr`_E0#y({+dZMg4E
zXveM~FpUw|#=tYs2Q&V{H{PQek3t{Z`p{Ngdt~b)(7$ed4BD}q=a|Qr@S=pG1YLU|
z?Ll-d4VI$wk`YTt%ZAnlQm&=-$IjDFtDB^0!O2+go}y{zP16dpW@v>^AEWiJomF>z
z`mw>sb{sc&`O3L_jg$^6sG=6T+y>t|yz<*D-`m5j|CRi@V>?u@<3x-4Z?n|DZujBo
z&tQP%_|&jmteo%(NIzcs41;y(#P?e*5SJ&DlVT1<%tieJKRmY7pAlQoVGw*HdE|GJ
z4}Xm0$Kp?yd?9{?<PTATvT|cT8FrMMD)?F{vkrgifKKF_>rKXE%zVCf>#{Z=WmxZF
zy)nw&dkwTXx0Mm(f;%?x{^uRcS7ZNCN;Jej8_$SR{PWP4<6nk0#qWb2h;M~zxdV89
zQ0^dTF0P{#2oRb*k6_?uOTG@jRq`#&GqlD<<{F~J!y4MII}AH*?=-Ygf3f)j{N4}S
zd=UTEzsq~tKCBfiCw{=nKm4hZ|8-^L`?1Y8O1tO9&uoCjZ0$6#2K){@2wn%@0$y!v
zaAq$4igrnGt@C+OzRCGHw8i-ywD<loj5&<mKLI*%|3qlP{>jj(`=>!??4JjXINk5?
zGaurQg$Dfb&_w?@=+XXZ&>8-j(AoZZ&;|YyXqkU4G|ENQc7c6y)N={@5}--@lA+oA
zvY|Qqa-jY8^@k4HHv}4S&*;zThW5Pv0`x`wCFs}sx6r!m%d#2U%Kja+A^T3~pR=E)
zE&4Y5Tlk0zI<R++YdCOt?=L64YG(lvW)=SVlCQ(xAo+Uy8zp};{wB#=f}8p72jY1T
ze!Ap);pa%cAAWzy55ylTdF%O~TmF8eT<(jM#X2gMOM#HT0bfAySKwbQ`HlFuNPZLk
z7Rg)kDX-IInJvUWRr06f7fZebf3@T<z~3l&@%%zYU<HKC=NN0=DaV_qaF2QyqRaoZ
z&nQ(u+%H@%f4X)ze`@5+mF{B9BtDoB)U~v{H0F`^hxUh<l{r{K{o!x*x6;P7mO_O)
zbiA{H5l-r&R56mRStFckL@}Qb7cpwd|0AQF)Lw&t2rYW-K6+e4j9EVcEQ#oz6Q%!P
zo>lYa(c}HmV=0Y1`@Vd>FV9YmdS1+tHc*~E+NNo@;@>9AR?R<{j|M`fn2QYpQBUOH
zua)&0KeYy@UH%&<9bWqvblJ}rl-Rxq^XIr+#yb}}cR01=DFIh{e9-4f2&M!@&Sf(G
zJ1%cL`B#va6?#Vxg&IOt+K7WA$;DI1%NUuLT}wN3KG7L+QX1TC`d#Ds&(G_3DXDie
zf;r!*TeAXL%nCfotiXq!*Er-dCis&(HW)`-?0JZy;1c*Ut4G*+aBu5AZC~qtSqfEX
z9r${8&d|l5gJb-F$?SyN<un~mx8Zd=Jr1ASnic3EVEbQInS^!7J8Y|Rk@YNo`Tuz7
zCrMw;!)D6goq7GWKWZ0hw`qUUc<-GtuJg5Tyx)3xC%s?$zSs7~ObW~}-cD->KI^$P
zxP$Z=yZOLR&zx9(&}{v^*4+95>GMhJo-R`9$z7~U078%b_$hDL{Am1nlCQ+ST=HA+
zpO$>fm%8>fP-)O%92moP%5iKDzJR#jhd)~KN8*o_`~-XfanB@tfv&<|=f9Zt@Dl&^
z(3|}CLI3RkEA(;y<IqO`bI=$4FG64OzYg8y-v!<6e;>NX{}uEb|98+%U95vqSZ8c3
zG!PpPO^h839U6NS^yt`W&>68}Wy<W>InWbhPlBEjdm6MTwgg%hTM1ngyB2z=>#Ox8
zeuMbawQc<IwZR|lSTH-tOfB<Nx;7<m3U6_2D2}(RcPJY=`QS9(VxyHaJT-T#8@jl)
zq{Ccp9wgi6C5KnP9IA2K|I~RerZisSy$ZU~TMzxUcQbUWcRTcc@BPq+ypKR1^F9N8
z-n$d}H}Bt}Z+PE;zT<rt`o8xg=pOHWXtcY?cd?J~eOE&_`mTlk+P4|H)wdmbzwgh`
z2Yrt~AM-s6ecty1^l!eGp-sLfXtVDl=pNtK(7nFB&^9iimF`_$D4$dvG2)sLTpihG
zBzZUTLP58jzlHzYbsHsq`y0<e|MtdyXhZ7`Qv0da=b<mQz5;!<^$qA-t?xji-A{a5
z2#EhSv+_ki@Jnf1%4PfVEBtkmzXbnE$#2EKTk<RzYO`KP$*7CHm~wSV>{ZZfV(X#T
z#cqafjr}w9!PrNjkHtO%eJ*w<^u^ehq5q8C1${5}J!o_6N6<a7UqQc)74r{movy{8
zvG}i;*&HbO!T94OKLP(}$xp(cBl$x7g_5ts-zWL#@bwr+4DVM=EHo}A9-0(07&<g2
z1RWW31ax$aSV=M=W*YREn3>RHW9C3lia8m2M$AI!qL>nBS<Gr^8&}oYoW#%k?r7KV
zi^#|(R`xom!)wd5-C{LlXD!+<>z{NzmoDP4!@Gkw&VCao#!MvjPPS5YN6ZfRH)7s^
zJ{9{ErNS;V6a5pZEl>8J41LA_3iN%eE{zSw2Gx7?ht^Huw?Owfc;lQtA2iMv4^8q7
zh7R?Gpd)=pKu7z=K*#!yf==*FfKK#Hfga<V2|d;~2YS5kc<8CVGoWYs&V-ivRzWo&
zB#2yh;=3dti=QO<6#O*FXW$E&;{LJt<0L-`{}{;^;-4b<bukx{0++;G0lg-s9(rBO
zZ=pBF+yuQjM$EVUA!ZZwwwT+Yn`5>@?}>Q?x+CT(=yNeUp)ba~3~h>Og4(INCuSe~
zMEdRmLZ6fI1q8pHxkCZLKaMXT_<QN!3kbfHx<NqjEAgu(FZ!ygk9tvHT|n2?2i8L`
z3v7U15x4?+b>M2~ZvwxA-Wb>fy)|$f^iP35LGKLQ3Edjl2E9A*2=uRk$D#H(*>i#C
z;CBXIhBgJ>guWAaAKH;C*Umz}d_A8!a26J|b#0lk40?-k3-o^De(1N3Zy9Yl$vla^
z{3+%s(8awMGkS4-@9Uwr_r4vvx%XyhZlByf)WLoJ20c4?c91opIkR&3Y8-z4@Q&qc
zj!MG5#JrSHk9D2MC}WkY3VOWv1j_yP%pIA;A?wvFU3)#N8Tw(?r_ldo{RjG8)_2e!
zv-Uz8d;b^t`+K)S?e)z~!4~8X4dv2u+!(qEYOk&g9?Yd}R&J}dmH0o(AJUA6iEX3t
zB(&N17;3MGKF=Xmz7Fqw7Gc}tHox!v1iT%?wZXN>sSn-^t;$(TY@7Oj)?dW=0^)r0
z9k(#HQ*~$6ooIUJUg#Oy7Hx~j*IXvCb-7}oepe>6kE;(f=$Ztb?3xWd$yEtG+w~6g
zJy$EV(7l$m0}Y-B=zTrpc^vw>=L6_R9<e5&aQ~BxVZ65g=%3(!+6cYwr{|$9Km7!)
zI#^5m&pCL&N(KA-(q5CXgYOhHOBQqH>MK)xtIQA1hyE(~E9jNME1`*f6Z@*K&rH5#
zcu(b*OaXjWD2vn%;n0z<8d`4oRdWh5qrX#CE_CiwEcrkXIMivK{9oPK@l)!m?RPHO
zzS5cOwxM+Vt4H#6!{IPZr_<%a9=^xx_4#6AVq^XOKp-wIK0YBK5toEZ#--p=acQ`8
zTm~*vx?a*{N!MGtKJ8p~JJ(GD455cGO1nTCAGafLbllCUi`+AU7Y4^_*95)&er3ck
z@}I4h4_Y<I(4HIguR%H5XM?_iUq9rAA%^zmkhh^f4e6IR&>WCAM67xWC4>wuCDaSr
z$Lc9h{3-q5TiO`<%Z4`d;AsaFwKEQ$3GZz^x^<MckY2O;a_dY{53A5vXr&c!PE!$Q
zDb;E9jBsq%8nq^^S!-c<AgKR;?0pA(R7KbKY{{l4ODL(ZyM&s?CUg?W(gZ0IM0yJ-
z!XqM~38=u*Ls1YbO%_WkDqTb%0jVkwq==OT0Z}m^paOy9`=2{AWOK<%e9-TGzV~}(
zf9L$qId^W^yLa!DGjqnKN!8dj4o$wsiE6n`YuDy$na-|bdb^%^*gY5)pTn}1-gY16
zXZN%F<B*kERTg3owTH2A9KJRxR`u*rI89?LH)UfT?VWJCo-Eb=gmOxE7sm$SnzSs7
zy^j-YWLub??b7bSo8@!uDe!a3XzO3Jm$X`T8O;R^o1mMe3uLo(+fB_P@=QBT==C)n
z2LIM{3j7z-CGgv(VsJ5TFS8onDdtQI_`J;d;Qe#g7xhlrpu7WGmDozO?E8}MOI+SK
zWv-Qv7c9^o!MSY)8{RE9mDwc^1U!HegO?;eAwKAxX&cfOJToj4Z{#Ks)Q|pb#IxYM
zzaie*82|H?);GX!S&PA|I;uMGF3#}FKusk3FzV^&v(JO4<)r1{`{aBJel_PBcv?xC
z+v}^x`m=`YS=J&jFCZy!Ii9~Ta}BeewKq?}Q~12u3s0d>WPLn^BkGRFleeetc|3&|
z>J~ztS^qUWe<$mI1%9i3O+1CQ;_BfkY!l~Y-HUb4jd%*HSi``pTa$0sJQ!TuxVQ#u
zTHF@TUx(tpcozE?4}|Phl33D^^)DG*qDMP!XqjuRc?><bAiBT3fW3u0AGkosJAipY
zz5=`|<T}UEvINn-{eb<2`~q;1kaqz;7V_`FKZG2GzJO>D?K=oKSjbC&FA14`X!*NK
z_vT|{M7kjUR>rzqcg*2AZEXS-gZ<Ul`G(WKc__js%cu(;3w`@OqPT1>Jl#?0BQd^n
z>;l;xV;>43$BgY6<5lXYx9@#>>hpAxoujYJi3H9cIH~=kILTv~8#X)9?Q&tBK62lD
zKUNog`>og_%^NyzuO?o-ysmobeX8J*+iq-J$%)tB+@N_uF9f|2q_14Ra(v}RmHSm0
zP{kXw1hOJV*BbmpzmY>n_B^)o*t^HJ9@}<o_c6oqs>iDzZ*e^Nc>Cksk2}8dbk=m%
zcIpewg^`8z3L6$SD{N8Nv9MENm%^079)*1h`xOo-98{QE_-NtC!f}O@3a1oKE1X~W
zc41Co{^bHp>M-3%zJZH(o7S@pxW^x|ZRlaz&UQe)=6wS-m$6Dq=d$k=)FCJNO-22@
zkN+Ul#?$;Kfky>4gb(#!m7haxl8++)Dm2afs$sl&vKf7|=6T>LmcbVMr!A?qzR(V-
zwH!5ypK6tWKVA2wx_Ae~EQx<b|5E%b@%Z;A)JI#mV?sCZ?g@jz?FsY1*CphETeBKx
z$*17%uVG;gaLq07O2hMqw-wsd_~5^dUM<u)StfWkKGgfM2K+sIP*Y;-z&GO~`$O_r
z9^^0Z!83{v^-$L}<Lu^E;H{M!L{IY|$crt5@hw>G3HTN-*DZ;L95)TM28~sRw}zM1
z49@Egt!^iyzS6$<0hjvPUEctAP$%l-9zZ`K2Lg>kt_-Xv<S3w3$O*uPLT(IfF61O&
zJ0W)fb`)}FU{@ih0Ey_%y0#0bum4eDe;oLvkkf$Ug?!g{V3*-zrc}$O0PD-qwuoc;
z#~h!yuAqHZTx*6@5cH^mv%Yvu!C?mv5}F4)v~7U+hc+dA^X0HnK-;+$);EERYwX^3
z0@$d|ZzKKMGP|?s<d0joWsZ}xdpCNzE!+Rl@KHN++p?A~rk?F{x~*;Drb*S`ui7r<
z(wP%y!#cNHa=feI@MU{D99K!L;gzGAF3*6w)}`~=30O|D-@&gls#o(GHLG5`I@P5I
zfDf%c418quiQto~?*L~tN@|o>ua2@r<G+w#NdSMy@(_5cGL|AWW*X|)H8ba;+*^?O
z9{AeK55WJ(ECILX_Crm3K<;By-!3wsPHZV@fwy<-l7400;rJr<ovL{@;_Eqfmv7&{
zuYCK>Ps+91RvaqVp7QaLa_zOQ9V^d{m-0!qJ*Z<4`Zj~Qf~N%a0`C*l2fSa<K=9Nc
z@^{S-B2U-iAewu!K4=s8mY^Nr`9b;MyMp$B?+-cwelp02XEdmCRq&9?{lEt*?<jla
zrI78hug0QAADaQ575g6e+StwDTVi*B=f~~^-yeGjydd@j_{rGsz%{uB+<))f0Psq=
z)xgcUb-?T8#(@{(m!LUv_=O;AA#>kdG3tFKAa2(~)(hDKvWJkden^Qy$exfrh3o~{
zOUT}ky@l)p*+<B}kg4a4&g%!+Pssj|sV9x>@QZ`E90-}udnm@7hY~UGAx$?9ZNmw=
ziQv!Zrhre=O#`2WdK^5Dx;fzKy7}M>bqm2?(5(i4OLrRlvJUI?u{zbG@Z=AyJ_P)6
zrHz@Vv@V&cstLb>sXDmX)E>N}sVjJjsW*6EQ(y4@rvBgqO#{IPo2G!<O&h^Cn|6cm
zH5~;%Vfq^UTczfB#dHnw?@Il#j-?L%N5gW5;a6~<T<73CZY&*t?>aYz=6NN9=r}az
z=1U>F&TmSoQaTR10J5AH<2nb)bv_NvFK7;;V>(gq{1HSljn(K2B02Sm((&M~zS%?Q
z0WJY4`F})y5Xt2wKE65C@GsPSFB@)v=X)OT#4q7J8m0Jo?@Qp1`;7LX9_mZrkNb}H
zh3tC?oO=#<&+Oy=qy1r5JQgVdeNlJjJul|K`Y7pb#s_il78{p>^SNVu6#N6qtd)Y$
zFEOIY?lM~?CA@Dq{$1f8g4>k2kSP)Lt<4$rGjL=+3pU$38?rK!@^bbK$b3E>pB2eR
zX_xnn|4!RQQEvU6$NYPbwN~lP*{if~cnNe-TZq=yc=YKQFfYYs_<@}>oX78e&GR?>
z?l(Qdyv(eYS3NI18{_>zz;XTFfLq2U+Ao6JhCGSZ&!mVWn#mDU@LS0Kpykyg*$UAg
zG|e0!dV+ZG&*<0&artN=#am-og3>}tw63%cWp7w-SqEWMA8#jJfBSp=jkj;VO|7MA
z8RJBsQE;XSWmsBfdS-~|IXaB?Q!v_3-{y=GEhpZWlveUaNgP|{(yLo~4^3uE&B$7{
zYS*q)r*7T4_3G8D9~Bi%DMm>&Xedre4H`7CTH_P$q=t7=qehL9now$5nws57&6U(b
zl@e7ciBikb)ap)3E;rfAORY;&n|maA3p5(IkKsH9QBR9RlBwTCtxG#?qh6VNZCB@)
z`_aDCr*psi-|P75^U3qlxv58qT7c;4VCd$MogB;u9wR^Ik6!3NbaYf=LFnwLg6@uL
zEEsFBhQikz&LUWKRs$m{%*?`SvPf1-=>n;XHSg-PC>G6PFfJtyZ3iohX9;MbH$ulq
z6V?=+BhAs8NMuRyIJIKQ%*KYWq3lui7#oJ!(8JjXMm^3W*^_J(dy0)l=gAm0mW^ZM
z*#!19n~3pUlTnxK&jz61X%J=$rn1(o4QtEVvG$l#-2rRvKFB(;C`%W3u^wXG&<WF>
zJ<O(Q9zkbJFV>s&VSP~}eU?3kKC7wdWiP*HuGG4C#*7*1APKYXB-qoj#o;z7yQJs4
zO*n3P>51G(Mmh`5lb-IJk<Lh*H7h+I=bq)9flG0B`gCzs?oNK^vM&D*r(f?oY5z1;
z*14oeovx8yuW#pa&S*S|m6T@@J@R-Wv}nby!++rmv{B9Mcb&mt)Os4c@cwUSei(1>
zXUxx;QDZhQ1P`&;EcIAxOFPt)I$IW7+OroeFGF5tSq|>7WLR|UJ<B1BnH{!#4*8hn
z8sy(BB{en79BGNf86%gYXKF>{2FTw;o(BJ*_RiWq?0W5z+Nev_$*<d8v$O8*y6}tF
zJqLcdZV5Q6KchZ;7WKaX|E7KscyaxbD70sy+eO0*7TpEBe$mk4=DNp<A4l8Rw<MyZ
z602TPqXey;l0m3JpDFnfb>W{%F2Yi=wD|T56OL}pNDird;O6g-ZcaWs`KyI}7Um}}
zJW<p<EPqe(>lZi14m$ivvfl{pht;+nPHy2Dkn7p*^W^#A2Rlz%b}acjzm*3qXHF#h
z1e@k<4gWIPF{9ZZKX>>#+4xg}v&ZmnlM4)=j+p(-spO0nCz!`hXL3NnD>dTtPA7l<
zOmYX^mNUu2EsmQTa=%Yrpd9aPa-)^6*O@WvT=Hk>9bRBhoKJql^Pv-_&OaoNOWSeW
zyWWN5gIZSYJXRdsXiT~N<?$brk5#e%=9T$V@>dBx7ri|G=j5J_({HY5busx>uR5cW
zJ$^}k^0(yNrTc$L9{0r14SUlIlY1HtFL1WMB<e4+{eAbn63s0IreQM)v{MdJl+aDU
zrAVQ`o=8=J4=$<oV362OJ!;Kf_`Vs9#QhA(4;Z)g!kZMsfsR9cb0_DmJW1VWwXh>0
zy$L7=1f7poa-54q7_o0m1Yy1RS8t=SOphZGhRhifLKr-7{1NJ~Yg29gVnVte!k@cu
zsX=&g_d^$H#MFoetG5&4GM5lO(5LWUgzb<BjcvRvgmiu#&|R`H3rd(ce9#8K2R&9E
z^Wa4?8BF+39WxvQXP#P5jP3Be0sffxFmJS1jh#^w9$I-QT9v~qj{twF+EdlwX%23J
zI=?PNhuXe(h&On<(DtYsXNBdW*STMKf7FKug%1W#j7UNqY^oCZD9PLs|JDxX2f?W>
z121)461di?wW1}UL`@3F2+TmwYsOXZKa@C2Pb<-q4rLui?--A(vp@SlHd<3kJc`RX
zzvgJz&$&P6YS_cY5943ftGG9~rUV}rP!a%cDlvf%DH-x7|FT|aGxP@0|F8qTb4L)#
zJAgZd+#2nrwxZ3n2e?<r6vsfuGWZU%jAhUaE%oLgI!+=mNys#ARgPWlj5bym5arob
z6@ADck`DmC5OQnW@iri`C*i)g0+HMrceV|P<fon}ooD+SWFoRR9f=VEAd=ewiAbig
zzjFL<`d4WCg2?VJy~`Hpp4YvpvwEa@q<bv(_|}l@wFwaiW_f3Ouk-%STklifC*G%#
zPg9?kJ_CJb`Mlt>#3$QlozF&}y*{7#=zZ(^#``w%9ppR9_eJ03zAJqX`0D-q{VMs@
z_iOL>pkHslS$@y^z37+ix6yBp-vPf<ewY39{{H@z{M-9K=s(MUz5h1<<Njax&kUFs
z@OpqF;O&5nfHeVI1NH>$3+Nd5df@iJgMoXE4+ixP>Wg0JbwPPSJA=Lms#Mut%|Ccl
z@R(pz=-{wFBKny6nFg2!nKqgBn7%RnW?Ez}i98V9AZBn(o!HFS_hUbZ&5PX^dpP!s
z*i*5~;%wGM@uq~5g!eNKWtU{v&25m|w5VlKa#5S2_C-C4hZj#M{-LDwZrLq-+^S>H
zzc+rh^hp1INa|-zdylXEXYaOq?5b?0cjW(MqIdfJq|T^|_dxx7B<j@TP><fkR_OMy
zbL<p*qsBQFZLw;sns|JsX?n2TnmzdJ#b>u>pJqQk2k_aa`2=(1KE>RG&mjG(xq{DC
ze16rm*Dcj8(XH3LqT8f<UAG0=hq`6DtvZT3=g{S&Cv2zgE!{3%hHkGeTXz6C3y||S
z<UE3$J4{=3myvT5%h#Pi&R>!9V|?C1?&HW^$5Mc!AJJWdmVq1&<X(nct6_N^M|njT
zq)*US(Kpi9(6`cC^sV(Z^=<S~`cAOgBO2+aN3_z<h-j^!8PP^RE25KrPQ+0Cqxj5?
zutx-8YZYv*fvpy7osCaT<cPx7q5AZQP8q2+hTyXtpVS&})HsF6T<vj1*}5o8XWX?t
ztW!p3e9|L4HSjTj=((H#oFwG=zy(4+jo$Gh5aluJO5?Eg!B~#LAhJ&eP7|_gTprgr
z6xC3&%Gfv*>tQ>H_RR;D7x%%2a!HP<ngV$$i1M!l%GhrdV~F~_$nF{s$u)M8Yb*oT
zxCp7}1)B<@eJOUwFj3yQ#%gPUGAB`#J3pbkm$7g9q5P3^vRvm{q#lKT07S>6_(q38
zBx70(^8+a|=_0v~={$$;A!8?fh-=v@uBRc&RvEKu9AqLoPCk%`<WGQ~3Ar)K*(RdQ
z{SheRIg#Ipi1L%4NcxK0`GMM?d?up&4*-cs-Ua+v$ayHM^F?``jIx@D@@xjmI7Aea
zMaE@G#(g8AJeQw9uNH`8*LWSSV_QcZDIJ$qk#VjCxZg6SRJ$Kb=c;ssEaS}Jba#?#
zjH3cP+eCCd6q}2PWY;)OuJxtM_`QAuQJxmQ_+B8AUE^p_ol3@sx!*dKyLwbt@msjY
z51~5M9`U<Wv`*Dl{4QgFMD$%;=Mnx{U8}jMU%9Jm%|$(HemQk5UO$gPe~qlAQ}2wd
zt54NU#qYtRMe%z3#~vS}_U>o!L%luR5Ds3pChvnfyq~8Z_;sZ|&m%PQIFr0?-%p8|
z=oRRNesBN4AaGvWAEMOrM=ACEpR4_X=a<*^j|HE=^ZQlsSK!(Z54;1s+|>LBikd$?
z-+x~7Zynbf^?!|0|1VbR|Nf%>PZ3t{uKDkCsrjE$VnDjq|5KFu|06E-f4>sHJFS4Q
zl5ka9;IWd&?z9NFf8p*?0)Ost;A05x_B-%V1?QDf1#;d3jV<6l2tLB#ab<)-d7cOw
zbKvTU;NuVY40YFtc4d7N6yvQTzKJyRc#O-LP-X-JpY=Y^0#9T)BN#lbK04Q#;TX{n
zuerx)2JQjjGv@iohWqn|{MGqsVaHIOgXq8e5bzNp)7YQkLY@I!F67O?4~6^@a65?V
zq%<bzV`1L|JS^m&fV$)S_%(n{h5RsZq>$$TR|$D5@Tiarfu1M$zBPe~Lhc0|E#&#Y
zcZ9qP_?3{q0iG7}Ent-|_;IQM!-d=g_>hoOfIWqr222<7eBdG>=KyyJc{lKYkUs^|
zJip$R7>fkD&iBKuDJPL1_`2c&zO49uoh5p2ObA4eHcH15z0X0&9*RZpi;gvnwZk)u
zJk80jY}NZsfZgC34U67?B7Oo7C8yp$60+heF7Z(E8@z|pUP^vXCBKIc&CN0RyhL{2
zdEkmax!9oO_cUNI6EpaJ1n%WQeL9|AwZRoX^DR#$kC&3iQ_174<ndDSDE{Z`Ui>&d
z@w68|f=_)qjyKIlQ~c7Gy}ZLAdntK*c^?1Ol*fNL*_E7%*V^gjHyRdiCBH8}Z@^Ai
z{B+dT@lx{pDrZ+b+xfm;)nWJaZ%TPQsBg(j$?vb^_YCMtc2Bwz#rtiC;F|P*aegSC
z?@;lqHv)DQ@(AE`A+G?w0iyrOD&RXHy7mlUwvcmxYe4u>*?YiELM{OQC}chU4<6#b
z;R*B+vOlnjkgEYBgxn0+T*!&QRzkJ`+X?vrU?&i@`#J+tg#Ah2Y#}><9}4*x@E0L_
z;eTZj|FI-sPa&rP=LtCrm@nirz?(vjz<;KZ`2X|*J|*PEz$_tu0%Z6<HNpQ%19Y8-
zi_0xHxz^EHA?`DX?x_dRBxDP)rjTm^i6~E9AQ8#+feAux1Z*ng=0GCKlL#atxebtr
z<PJb0k{<*Tk=z+bL~>VPHz9WiJ}l%%fJBt1H;{<rzCa?9`vZwc9tb2Nc`%TO<RQSJ
zLVgTLME2ppCxrYYaIBEW11Ac3GVnPePX!XuzINa|Auj+f7xHT0TS9&Zm@VX7;73BP
z(A-U&V~{dtuR!-X>T$=>5~filzk**w3s}RdnX8%cyO<k++srobA<8V>Ddwq=pEth%
zUSR$P{IvNr_&M`=@Sn|>z_k`F%56`JC%BKLGI&)>Rq#+tb?{o2THy68^}%B-vEU6X
z@!$<D&A^i^$>8mkxgW1smO@@(Sp~k@@+SD(mUqB0WEni$@-FyV%R2DQmJh(USq_31
zSdM@nwHyUMZuuJgTg$iLXD#Qzy&`=h5zi%Z6Zi*_AAlD`7J#3LJOl2iy&8qUd$l)%
zZ>yaTzPI*1@K0)g3VyiuQSdXh&w!t;eHQ$O+84n+>KN+aF4eJtx2e+xJhjfF;G^n1
z1-_^5-nyt~VRX9&<BDIekI_vS-Hx%&^>2d@DIS8pVLr2AMDYm7NhL|B1GXw@b*CnX
zAFI5i!JP)t^FnPUY9CQKKyj6+eRKgYL24f*gUqnI&V8cz>(oXX13S&0{9Uw_Xg1!x
z+Dadx-Ly@#e_h*6HneeNU-Wp$6F_ur)GvKN$kZqOHHiEf-vV9xrCW-2G4(@JAM~5p
znfjr-f#^8Yh8hT>cl%!8&Z_A9fK2Tv*M8}?)p-6?po~+m?xU9RTPQ|mMcPx;XWa(p
zqJHZ{m-ZC(SNHD@9}C(~GS=dtAMtJg(KY{R!fyvBvyx8({O@o1|JHBm*o7Y+N!O0N
zXQjAS*cE3S>=Nzgdn@_&C>;L_fwoorILv5MEaux?_?EkLz8*$uaap`PxG&G2$}!!q
zzoI(?+Iw(aB3r=EXHFOA#druxPrT1{>k^Lg`IYEc%k3>h$F;=to!nkiISOMEh5DZh
zc!z0;aD_8~Ye8|4*8$gq=zD(v+#=){ysu_}dcnQ{xCumg@_@3hF9z?fIPo4!05%jd
z_4_$N)bcnDJR|H{^!3Rx=rmU}S@Z$62HtBNIgK4BFDSJeXxw;Xyc0i%+yvMZMAv2m
zwia@G;9Af~*w+Eq3;Tz_k3e)EwgGnt`%WOuM=gYXEpQ!(j!Ci4KN9i|pcU`gv9QMj
z6U4hW5tt<8R=_o&r;z78;QPW({gCEh)RADf0PBFrC(!`!<W?Z^eN(LBbs+L*Zv=K9
zjhR9ZqfZzp;|bF|*~dY2ZLWQi`1Y{%XQ|-Nig^ehLjLHk`34_~8C5@`C;g%_mukFj
zJW5mE$2D6w8?tLp7md#<?dhVZ>b$4Rrp$uk5zu+;bKb9&9FQD<x=7$j^r93Qi|{<T
z_F`!jpS6e5e|0qCD8A+Ch|}OdMqC6hjJOK^Tg30+%<OAM*{RgS9yg~!9<S8K>`HCS
zp+pH`mf9B7twrsM*Q>h1(oM_>Spa#lr8p8tt5pZHDQvYmfv48uqesR?qmL{474X-i
zKLp<%y&wFO=p*14qc4H8xOQ=<JMh&?ta>Zvds+?Pa`r`2$Vt{@a6Ze7&*Ch?s70JN
zepNjFEAiiho0Zun(-ICRVBC4bl7_H%E$NEmEA!FPmHBAatmawxKV`>dqwb~51M8pL
zKNnAjGP}cA9E#eKRrIjYXqFMhBf(3GOTaZHX4Ib&F^dh)fD+S)&lTe{*qut`lnW(=
z*m|SncDXezSO1Gm^Vj?@t?|T^7jMpWO!WUYAB~K!UXk(Lu6~^R9qTQ9Ks44{`hd#B
z<-_wWWBj=r_wCM4<T@VQ)o0`y58s{tNavmC-Hf&JwxRz0pm!JWhrGLi&rss3?C>Vv
znv9w98RRd#bv`kOk3hb)nLayw5?P*4KI8*FpZaLoXFgirCQOGo4vEa>+rih9b@c7*
zt7Bad)4><<2=aVUBQ6t_;4@ed<H0YAX_ZJft(Ay2GnA+zJN)tyPI0FaJ!GGV9`Y%A
zgLxzftrEGemA?(+(q){wE|7cs&+w0CGZ7o23oGzH0t=6}bH)EE<W_;nc)v{xj5e-e
zF~)eK2Ww_bH0oHAv6nH7^)?PQ`m#rjj~UV1X&ePU(>M!!u5lswBI7b_U2a?fd2{fN
zU@w*zya(mMzTo}fk)d_alU!e{+z=1BVQ4dOn!${|kg(oiS~eu?QSisYMumB^r^3d<
zt`Bb<9?ufPTZU^{tMJws`O`MM9r%p!)!`<V5uOP-C;W%-mh7kSi;xS$uY~K_)$m#o
z@vL@4G~Tz3A{v9Aj<^z0iCv9|vnEz<V2#YWHnCP#-7FomXHCc3X=B#M;14TnQq9cX
zm>thHWpB;)U>{{~&(^XX+4<RM-{x3zaLqZ5z`N!=n-j;T<oulT6f4ZR1j}zZ-{%&x
zv$^MUwd{x7AHjdhy$Jp^-XU_`EDfFmcd;-6u?_D{47}p?8IqepZVw`v>NZ3qQyoXv
zXILfV2a&xlFhR(6Ak}loPW2qB-;hjon?|DE(iBKUc3P)~h~!hi3qoe7lepGx+|_5g
zARq1PIv0-WHF7Q-)oWxOrY&Tu$54K%%TOJKWU8mQuFXRA60&~-l<TxmJ%#EbWVZo{
zNX`Xr5;Cn*5d|VU)k9okeo~!;?C#c5u#QB25apqIimac!u?>BaAhI(j%1aQ*Uce9`
zS0tukhab_`1)_Z`5*t4Qbsmf|#f(cWo1uT+!&mcyM}Wc30uA384znK(w+&TTvEg^m
z>+Gg?n(xz^tG?Iq#<=M_&2KjA=0Dj#ifICM_(xX`tQv?RlYzmI!vam<jRKp&vLkR0
z<b5I<@L|ZjhVzE9j@Dvj-j^-(yU;h-DP^6bA>mKpUpAhvvuDwu9-^}tz`ZQq;8iTu
zELs+9sbTSCCQBqNwNZ!BVx^fD7C)9~>0}9HT`asNGvAWP7Fb@f_^?;q_7G9u(EDZj
zgO1~9CoETCXOW($|M*3kz-va<1CNe;7JN$NGVqO&UxS~CRM(MKD6u)1(l@k4=^NTr
z`w#T~Fr}9#t<G@t@4Q?$4_vIm7~LQmPiyo8;9aBdU9&nD^Alzy-W`>X*R}N4AZq}t
zj5)6UtcjIsS*?^>*5ddV;}K8ArDnyWTty{xNI)NRLTZAM4M~^=d49rL@O%*iy0pf{
zSEj3{to+y{t0~@Q&9f%vw9-z>nT)s7?b~Nde$ZSf`32sS!jfB<({@|bm-zfmIa~8P
zdM-6_8ZArEGy!j}=>XnIGYNdMW(xRp%?u4@w`t};o~xM$K3_xQSYFV)2>z1hW$;%u
zuY<49tOQ?$s0-8!l!2U?nr!ejn)krp*Q^6yui1dDn=~Il-lEy2(JNz&@H}E{5o)X$
zRfG|cny<0-J53=tjV?mprsj9Ze`u~lzNtyjYFP_yB5M6DwXMKgYum!oPWu4lj@pMH
zx7VfVqS;v8(>gt7=grZ1-kFj2f=<g8>0Sh1BIf1g>QGD7oz!`=uXKg5U(@{oKgbQ;
zP1tYi8o=9;s<-R$t@ZifJM{;_3-oawTE<tpk@0#D8V!uEmB(tlTtkb|RK?(4ra+UN
z(^t>b0CF=^GB}^v*Vi=Iq-7&aqhU$EE7tfH(>B=mBjPwpY-LX01=B^y*Olnwbu3X9
zJw_fS;GZ|s!eTI<M_GX~HD+jxmOUEt7@o@EF{2<q6_W;eY|Mlh9h(|shdd+Z4D3J0
z`~rR@#+LEW<Te>kBId6>V;OkO%(zTE51CJaPtKeIJ~eX=_=3#m!53#P0e>|!2Rv8I
zz}=XM@;}p3GO~9~Wxg$5b#4=%IlKwu&7zo7%oZ-eQ>Z~iA}vNvH3e^>=?LCgGZFk5
z%~bGdh~|O1hh{e9bj?CMH%m0HXmo6;W*O{nXjVghOY;u4W@+Blc(ApajmWcE^C9fp
zHF>bpI5yl(j9){%B8*%^EOgB`uz#z$1WqH^P^N2cV6P&L3C~cZwjp?uHd(7<Hf<Zo
z9kkuRQ?!rZIqRkE4c=GVAC>{yRIQ#3(GG+BIASSj*}t?;V(Vz_7|3I_6L5qn+L_>U
zwF_Zif=Elg><w*uT_ziY*`!)FQTHsK)aR7hq-%8V<H=j6I|N>U(QbG@>%IX066-7?
zW{47*={H>wo>8lQFrLmK`ssKg7wGfAcj*s-A4cqH)T}(_phuan+sNZkPp&?tI_A{Y
zcm>bp@*1ma7}#5weU1JDlP8`kqcZ!{Y^n>{YHA8@Q|6#{$Lv!rOEnFLB~6)ey4JJ~
z@(xphDTp00IZc7=wCS8lk9pd&EKS4;s6%3g#pv1NF;C(N8yE95p1kQX-$T9_QwV+)
zlZoKF6tS#hV-2iz#wa{_(=(QXM`kv_v(+$jH25=_&w)?Fd~YpVnE7I+2YV^=wM;!*
znwbsDCd~cTvL3l<xz*ViWo^oGW_qih#PZ&M|5I<igLpa*mwDS=gXQ-Mzvt3)WARKp
zjrqskn0cHId7hYg?Cw4HIi8!Nx?^~rPX3R+?Y5Xc!ZWnr^eK4RcUuuGT8pQ}gZWzg
zEqE?1LEu#_p?KSc2~Sj%MT<9IEbLZGL-1C@`!v(i3Kd>jhxb4CEofnpc-z%xb-|<1
zbE(Cgx)$gSOvGFYJ^H=|U?v_#;V>Z92CeLuhyJWQ?Oa_ykE5FY%BpJfJn}u7vX4FX
zdg$0yCBnJ4!AI%Y@&^w`G%+1|ww^Fxq_1HVEXNS*2&2K2bx{8(GluIiZ-Zu-cbc~^
zyh_*n^}22W{Q`Vh{{VepHuF$Ma#abO9XN&+xU3q{$=D68ks@Pi<zd=CAK`UU8R5m0
z9x_iQq7a|k!Pj7Rgk_+$m!+)I*DpL3bxgiib7Dm4Xs>)_HQ%EV)y!>m!Dh4Bn_0{}
z#z-?WdWp=fz+0Q!f_E@?2k&9-Y1Xn{O4N}XF}Ls>6e}yzreW&hVpMYsaURSw&I>(Z
zzHtGF#vB+|4RT0aD0p~W4OmQZQE|R3TA5Q~jcX2jQd}~4>$tXvBZNLQ>voM+iCfYV
zF}Qay*Rf{fGNxwuvMb75lkqNdO|EC%MD6TWR$O)h=A8`Awz8ednz(#5T)rCWcV)()
z8H;N_T&cJk`olttt;NA2BFclsU0`t?n>JYSLXIeYqFBq&hgR|`BGBqe&>yQrp!LC=
z6)g)a2}9I_aLioMGc$aY5tzU77-smCMhq|ef|SoE+7TE-*Z^FPALRYA6hCw@dS)Xq
z-*Pppg(o!^&n<sesgG8V=XEaLNBzXJIv=Ib4m`2i|7%Zdi@-XFUe*#Vo7sT{ft}fr
zKYe;xl~L73X`iaLyjm<<QSIky-Ppyu#wyAunWAF-yU(!E+)`IbJiYY9wii$AAjq!X
zdG6`vE3Aw_oV9y-qRV^EX-1S)>G72@b}FIeQALTrX0^6NTf~8<xBox%^tQU)qkHmg
zWAPDIsZ3ul_n40;_FzvaJ-!<8toq=I^(zSkmm@39kP{IP4xW{g{&->sA`%zsAWDC5
zQw{nsKxntHX24`2PX^8t@<O0o19CCs<-$%alLC+x`yK(_684E+=qCozG54cihSs^9
zh)H`%=od%^k)75AptTNqliRESbwv=_aUfO)L~?!LV?urc_@t0$0%r+%AuwCW?*T6e
znSGA83`jW_kR2tT2O4L<ULfUMC(%#-C6}ARcijR+_EEs`LVg-JQ^>P{bA-$;qrD8G
z{8r#gLUsV(6Y@G>o{)C}4-5GS@HZhFe?{LuNI4F0q>yQSzcoTW57b`ad5pkBA=`i*
zg`5KHE@XBU?K+V19k0P3_B)rIz>7k@4E$ZlXbQ4%Aj)qC9uqRVjyF4q>_%V*A*TTQ
z3ON-xSICQj?+V#?1CcmEw67UhSIAaiLlBKeYXod1>^5L$A*TQb3E2*OQONl~BISEw
ze@gD#Kh*MRrnGz>{L_}t^O_}S;k=?*inhu!4L#ds+dnxtPA*zO+A^)6t(xtqTkb$x
z2%}@r{?V0b|6E4<M|Y?FLoJ_1+U97hl-K@w3HDdC?}OjndReSnql;kgR-pBAOJ~(L
zV)6HA!^~B+VVJU(j*K9+3=wpAd*;;|D{G+dp#tq09!<x!J#+WUDr-edoexaZ&e?^w
z&Br3X&OTTQM3kK`AUjPzfXgU5e?a!J1fZrGi1AZ;jF4)MdTf%Vr3F3m%GfA(ZKN?V
z<IpY|kCqZzgE7yd=EB=cXJanLc(KBmt1<Ag{%L#3ni-E)c*D#wXc3LgoCLXS+vx?^
zU(9?7{N>D7u=O>U7Szp5Yi<)=yb?VtRf!LjrnIJb3@yH9uWVWI@n@-ue>MwoF413y
z5BlHm!PqQByoA46`w&_fDZ1X^19d~e$Ll75^SHXR6wmBT{amzO`+D@nFZ`m%YVfx_
zwu9$+<bm(>*ag1ZV>ftb!^5b>_BQkZKV@)&^Y|@487@M$dUo>Eunf<&;6E!7T|&G<
z@h<<~s~9}VI|)9TuHIe2yL&$ZKE`_t_%?5vFLluSAUKb3-BpQdz0GGE-v0-cX!S|H
zNxs-uiEMsQi5A^eSy5n{-!?zwQR23D_3sKF3SZBlLqL}Rc#8ra0^c9-8F)xwC~6^%
z0~>=k4QvYDJg_-9_qognoCSGK;9T&%fqTK58k-uC$JhdVuJL*BMaD(o%Z$sx4+I|#
zM!&eS9({9VCF}`e)$3_txaVQp!5f7)LQT4z;xQQ+J`QqDcrJJo#7{&Sr^K--a1&9P
z$G6#C{V@JjzbVm`Z!6K2x0|-(x&HImq?clT#WUL=t^sNuQA+IorOGPfw-gWZ=#0@B
z7%`bK1$-JJ-pDA)mot8a94vgt>3Ax6#N^#syR-1$%K8;NTJa<IP&_povNvSojjDKO
z&Sjs2{A|t?^mgXu>;nHi=Xdb_O0?yRxxeJ%eO^?fNW;v^I$L~Xo=x#AyZV&Xu~MmS
z@&8kuV&{o}f4vb}tN7ookCYkjdig)QZt}mmKEi7yrMwnm{dgjVN-Mm_c`RcdMdeMF
z0ZW!LB4-W!Q|QrGVuJD*$2_`9#UdU5t{Zd5vqfvd8<c1)zJ>twTiosC;;ZZ2RMsK+
z)hEq&8oR2*>7VA;&A)(6_D>Gj`!{&Jz7Dp94%2*hm&a?nDG$A$`F|Rh`R+I}a!ii~
z<$ihIvJlv7l;bV4p|-%I&vYu|Gg}P%ix%$v;(jl8UM}v<a*Z!@cVwA=%BRIg4*gx8
zEp}I&Yw7Ev(M1y#FIWHE`bCGjtydyn-%?`T4=sKSeIdh?C^>x1CD&LvJUTXynBzK@
z=$7kPqGM&}c+uPxs=w3x6q=ht@|!>+l4-6A%~K(n=Bl{PQE{CIMsvX^56uVrSjaRF
z?61sMq4{AInXf`~R_I(bZ$-{mq4{KT9+>N#6ZM=hIsZgGCrr*oQO^mJ^HS7v!sHwk
z^_(!83r5%GI!5Qe^HBIb`A?XKLTe*A(YE^@ztLYE%c5Sth34O9;5ak~pT@a_p%J42
z()e9^257v?145n#bRF*^=jyA+ySUEVr!g-y7jHVyb?i$%bUME49DW)H<2v?*#=NXX
z9va^(=kvRceW7{%G`1K1F=c$OyKyjb&cAwGFU0_$K7--F@?t{M_!v3=pT@*|45DjR
zkBP~z%I)egF|OlaWLy9m2P5MGsK>#`7y<6a!MMf_a5pA~VhSt)(RHpwUzi*pLt}a6
z+F7n+c`FiMpv~uKuYl;741HBiM1NHx@JS(00L}u@*y82DRl>d+_`Z<uXN*q4g|aaY
z?!-0Fl(WVc{vUGAhwE5V*LH(zpCk1*%6`Vv_+QDmAGF4$T-)-``V$|=y`_6Y{fTn@
z%L?@;9xd%ROoc3CXfTvHu5+0Gx0Y|^mNS?Co_2=o*wKpihnD=xe@6^x`OAHy|7q<H
z>Jz1BlKMse-TqLTO~#2a*Y&aZ3QTLu=?mI}w!%JTb!VfpZc=AMZv%Re41>Y>8d4{e
z6_ZXI&cgD8;R5(ChF`!dc~(O2kkvE!PES!auV63u{JbK;YkSoNukRHDe$49>`1f8v
zf?xL1p?9bS#slM9x{L(w>D?Qaq27;zPZy(tcS9~aDwtMMJfp0k$X8q|yMkI5l!$x<
zwKShGkS8c>r}4EFca&K-@iS~aqpX<7SLSO~X4Sne=%M1P?hRGe+neD#1D3MuobeIG
zv~C=xgrn!GRhcz1yTHQN$Q-JyjyYY7G<IE~@H6D$V~o!zYZLM{vRjo|5u1-Rrd8;M
zD(hnNbwKZ4<CBj%jt_`O|5&4d7T{e2x`M9@SO>mQtZlXp@<C-ivoV3w(KGgZ;A`MZ
z1Gj-k8=Ii6(9B4+heTs5@LtBg;Dd~*;6pKDnZ_!Q03Tx<4?e><2YiKbCHUaVgHav_
z1y@E%nGoC%{Ndmp;A4Zwfp1pEEzb^_69OMiNH(}xj9#X3%fVscVKi=e5crU=@!%|6
zkG{3W;cda~;WNNjhi8MY34a&-hwxv)Ybm3VuPF0DeyDy8eQTSQ5s7>y`0*LfW}qBZ
z)`O44_+%W%Wqk6UtUa*Q$&Si~FC+V5aC`Pl@QvAd;PrEw<Y07kPFwIUIbFfm=Bx!@
zpR*DCgPbkkJ92h_|13r<{|5Q{+@J3BjNvbQS281J>S~NgdIqCPX6bsNe|Emd^Z3`%
zit4nUx&bj_Y8d=Ijp%pn>bcG{AFBs3uUIduSAQ>x3gf`)WXHS~dehpYFJZM&T5FV6
z8l`^+tujh08-9cTg|f0JRw1M{2rFZy!6d9ONb3vI>Vovo=!-Q4X+^>5SW9#p`eSMB
zP+B>Z)(urw4aEwTv_55JtVKyHQPMh;v<fBt8wTLNKr2tqz$$?+V0FNySPzg^1EjS8
zX(d4Vf9yq%F0KAYYyZ*8e+=u#wnYDKPplM6>%>yDl}T8wa~t}3>Dm7dPyTsYjT5WE
zx5WDIwE8=({XPRL-7dr0wzRS>^#dQq>WdVMMOnob&v!DS<4nhDe{-?QAFc8CGFI}-
z!P<TKc)BTKJgwBn0-p>V6ZjQ^Gw(AV#HYa6H7Et^IizA8hs9XGVGCAl*dJ82GOf@+
z>od^m3^dk|Mt89)E2=rFT}LSAD#2z%)3o7vPQ}w~M?W#ec%jv1ScrcJ#dtA?OboGy
z<b<pZ`3+&8qeHFeMYiG7E_76ATIl#tduVRx+Ry``1)*PI1aNp*4fHQhLzMc(VN1gt
z7^y+4^Re*G;VBpmY!AO0ek;6bL?WWqca2Dops^YSSecKZ=eVePRTHgaK&u$gNXHb6
z8?(b}asq1-T)|odv{H-}qcqaYV-Q1Tg_-(GX!Sm3SzuXgsZ)z)H>K7Z7fo}TXhzd^
z%w(c@ObmXI8!>e$hIy<tc6jXQ*tFPbSfj!b+b+%?cNO8Ok2g@p-CAF@F140eJ>p~I
z<Kwr+)7+)Y@teBlcRjv}ITpT6V`mHAj?S=QtOmmvvOhATvuM_m4Wl;f_|F|eynScZ
zZFF|^z<7=4vh9eu|6O*I92@>+6mx$7`kTL|-sW6GF0FGxt6Z4jH%UXUGezU4^=WB!
zT3VZy-57N<?dF#^$(KT&l<MfMI9il^o7U;0Rr+X+J_bLz89wneTB8pu+0r_;w2CdQ
zVM{C6Ix*vk`Y7nn`cJjbs9hG0_L;g(HXU{<>o)*53)wZ6n!0@!U5V$91-fgiZN|37
zIOYey9U{MLTde`wWbq(6FU?(`*lW}dqxKukS)iCD)PDOOMAKT&0$tm18oc9aUuwhI
zK$M5tW97BOnxWm5EZSZao2{LYscp6aGz$A}1a1-bt-w4G&3ViRQtURmHfq1EM_cU@
z<PAVMuVEYH?V=6m8r#jaJ=d@r>KP!q=9WN;`9{a2HXhA$pt+y#0@s45O}P#z=RQ!|
zkJ^2Y!(Ibu0?~150&5GoE>N}$t?&c6&W~sbo$^!rklKblAio666!sk8S|P6oZV>V&
z;ASDaYdgAYFAhIa+Ftx$*G5#<H|5^V7ey_0Cq_T*f-e)JkWrFqnXJF^n(GO}<LnEi
z=6cGd=K7PUxmrC<EWV77^D1hw)f69R+4^fN>a2ZH3R5kXuMMj8ruu7=x0bc`?g+W7
zcXw|+d$>&fb(?o0+o`Mse$e}jcUAVix5lRi)1o|X!CIHI>TjBliH$+ItY_1GX86F9
z>a)|wgY6P^RvJBX(C3T~j^m^8t${V7lQG+^wNhuLve}!-dTPFJD|Qg2ZbQ^ZZKz+~
zy=J?tk8bnBoI1a~exB?z#pf#PpsoFFtc_9!?dm_&zbbnarSEX|xmZ;`KA^v-Uv^MD
zvg-mi2I$x(m-;1NFIW0#n`3Uwn82y1U)o*#vaa>cy@9dD;VjN*#al4J#Z%i-se|@$
zse{UT=WNWQn*%?tCtGP8SUF!iNYp;7;QyEq+z8yY_PH^56D%JDZwKESd>~lIJ`o;Y
z-;g-whcX-^+C<&d96FI%LTjQ{S~s*FctU9NP*2uE@d^irg`jR49@Z-?k@Zn(tEpi_
zG0SdP*psl26F%d$VexF8;xlI9I@D7eg*U;ByQbkSASZ>l2{$nAKemTYhvm)icfhlh
z+HI~<yFDL%0r`In{{^$}E-5wLn23gWA8=1|c`Nu{LmczF*Y1_kXwI4S?7XsqFZU%+
zi*?2hVW(qDV#%Xix~A{wjPV&BY=YuT=JjUoMb>5+vh>V1t9Dixs{{Y>8*C5C@Njlo
z@gmpBjzx{RLw0v?d-e?Q4cVKsb?k%e4<T=ZFS$PI({ZRD$LAz~Hx_m4E;-)pIn=5f
zscO}E$g?x&Voo&s1@!=Lb}siqu8#eZTcaqxn_P9c0Y+<<lf?UB9!5X>Prn~{`<6yX
zv{L4{b}#d0m<jtftVXV7dCL1iwr^?7#20v1_}+O}&>Y7kpH`UfntYEp#!TeghFP*W
zW|>y*LD*eexk;EYi=&lk>z1xCFW(_Me3MvSnc1_nruP?ktJG(ja@x9G%Wdm!^V{Kv
z>rrOa?iI6Y4_2VXOCvve<IRKlv1kRDFvIo}{|;D#{TS>g{7?F0JzQlacG==>g!fNl
zrNvwEHxeHyGREy2DcU#;vv%)p1DDR%mG2@xnuO2SrIzr(d%TN|;w|)Tu)8-;G~PMX
zdMMi}PA&6pp_ROO3%QZYcof-ArWW#fv>~X4Ok-2z8-uU*eI>#Jb9c*M?VGRjUEW)w
zfmN>jJvw77+STLTz9k~FLKw{lE^Tj9OPh~4k?)Egcr)<!_69NHq<&627UlA0;Io3C
zQ^ugI%~_wLWgE)0z4=?>XRI4>QMAC(W)LlKIYNaMpV4ZH1M#ll<5b`wL1Y*B?Laiv
z+77x2Vxr$!_Bm63GmZVDF|9<@&rEFtJNlScfE=I#5czVb&zWKTRV2s?q8JA$AeyIa
z2Yn3M529#d4DY3tAQ|&uE##x1lb|9HLoZxikQMYOh~iceG4!)FLCwSl>Iq5(4F@sQ
zM?64Ypk|;XLCL^3Kr*(q6Y_5$if>IZttkdpa}dSBBC>-%0MWQDif#Ql$bh$oAE+Tn
z`ks;@Q;cgFH!Bq~#kQt7`Q(S9_|_CRi{VYt7(}tNdV>0Z#)2k+UIfXQ!!p)2!yBO^
z$PQW$$_Jr0fXVpRspzqq3L-xj#V4lt*A!cU{93f`LjmXl=rZUAh}umQcPj<-G{_F3
zI9s%y-Zc<In}*stb`ZtZqO}~UjU(eOkgv)QB-cHqHBV_hQ)=^&uc`xx)-jc9n9|y%
zL~_2iT(?xVi_)--)+=Rb$56a3J7^!M07Pr|*+rX%;>gh4Y=(A6J5UO!FDMm6al7mw
zYLn!H4uBZmBcUMao3cWt@zoC0W+?7MiJ*MEEw0lW1MdQg^Ce?Jq(NQ;qP7XOH<%f}
zO(d`ut`}qnwXF@^igC$}fbCG1d;mBC&%_gW9zp*C$ymz;kbePDn}yc4U?Xup5UnRT
z5i|v~2*gI?`+-tGG$&lf({@58VrdwgJQtXb?=c^^7VRhy+lJUUpfu2PAUh}>v>3D$
zL}SP){+RUn$noPec6=;|+CwxZoW_H<2eG5vk0X6J<iDYD2yzU99DhJ#4=COx#kwT_
zKl%R2-%q}N@`aGUonoDl|BQTQ<S(On>@<fx3dAm8yd`KKh~j-yTuJhSrGRKXMHwHB
zeDxF$vMwkQ)J9MTAjM^*c#P!79uA`ThZOseVjRlxUUD3|9D^>$pVQcL8e=YfE96(9
zvE_1Hxg1k2$CJyk<Z>K2jUgvLi5xR7$BWCc;&Pn093w8rhs&|ya$L9^6Hep7X$&~|
zI*7>ELF2tsKs44{j`Nmdyct^TCop@FVT5g?546k%s=h_b%%IhWV80IiCQ$ek%c&U(
z6UBz&ZE}k5T1UwBfGvca1Z*kfWFVCnxN~>P43cHJp~!guQ<*@rEEh<oGQk8QnaTy5
zklO$s6f%_)G<H`x4sfNA9Y88K$WCR)VIimJdHJCnALRm-70U5}R9+}{QC5&F%L|fa
znW5zI;^hX(RCf4)s87Tf*ce3ira&rFNTzay$`tA!u>pGudn)j0A=`me=1_ho@QRSH
z0jcaEJM+eDLlDVkAeBKR%kqch9kAsIJM+ODMIzWM0V{(jPgP*BkVAn~Mv<M$qvwQd
z2d)q@l~4PGd;oY>$g-TGeQmzHtWu5xnaV4Y?LaECNS5Uk$vPvADdzT>!1skL%OWLD
zB|KvwlBp~jD`YB@W`byZ#Vp`@Vc!YdE#$9&-+<_Mq4KH{h>lYk7%gNfzvc*;uT9MJ
zFMy3!DW?33fGdT(3YaBiD)YV*^53=AcT1FUR1Q*nV=4oOfan^i+-n3PxdX71kf|Je
zU&y<GdxT77BbA9CBL8&Ydm!5PB=Bn?QyJL+M0P4GsccN5{J<Pxm*penp|X(5!JSZc
z0;xPCJC%uEAd-E6aYD8M$AS`I9|xpzQps=TWhBY6d{pdKUPdaiC?^$p1TQN|rt)$S
zh-6t-DtSiYyMRc36i8(y$+Emu@}OL#GLvK~H>r$V3t0oCvQo*D&dW<hUJDx$^2l<N
zWLb8SEXz-lWf`jEzrf2YMMn9e1Cjh^ag3?VqW436pu5<`RHo7MOywGtY1GgAAdun_
zll>u}yST(u_R;Yv4)G9?e<+a3L)w?h#J?I_m|_akzSDv8K=d8|YHVRyHYxW?lusnf
zGKyqbPAPdrS*6I>=9+TYR=n#z(&TGA@SJ{(7RSrl0*@r!5%>pD%6nV^Hye`ihHq`?
z1pbs^H24_9QSjr2LPIFKWVmVYg*)UHEF}h`C)OkNY=D+RSI>9A*Li;88OlEO{0TDi
zs*1O=&5L5LIlMN4Z-#df{rTSXR&ME?f+*;HyoW#@>rL<H+1?Am$@7T$ZQfbnIo@l*
z$qT7R>)}Jl+u?((#J=(V7V;_Y)8LoAe+Bn|FA}wBcq8c@UJpFV#|oa{LvQZJK25-z
z!B2_Wkk0_{K|W)Bs<3fB;~~%Xc^-U`&x_zM`DB6T_^btA@3R4X6FitWFZ`F4nbYSq
z<QoY3?uQ8Se!e&(e3&?+Z$0oRUn_WmZ$t3L@N42b!k1}c1APahHzd_}2rOfKXZi-Q
z+3;*)j-&5l@FnnYQhQ|?_zK@QkdwTfdPe?EJ<EpA6K^MYJyDnU_3&%V41RuSw*>eZ
z!Grwjfk(mjiF5h&@e5~t;r~Q!-fsxF-EX#^2b<%!5b_Iti@}%pWr64TZ2;c{?<l?(
zJfjxo^g9jtSMrZC4}U-OfCTs(!Gqu}#gY9V@~^}m@$UtBu>TP7XW%)-eS_~5vs?Vv
zfp75t2%P+=I<^zOR6OYc)&Sg%fQI0<fcD_i17?7eFIC6V;ZM~v@~3*TR{~yxeQCfd
z@YMltfxiPUtCr;i<U)QoU@iFifDPc}cg67oc0(r5E1t1HTcC}#4(t$!IuHD?sI3Ps
z1ZT!5BWe`J6k{dU-PjXyKjT2~A;w`wM7A(KW%NS(E)A9mM)Hxp0IzKucEorS@@->B
zlv<sFx`L+!^#bn`)GtWO`opJ-dmF^dK`Q+g2T>Wf9zI@pn1XhI=LhXV&X3{oMVmb6
z1o+7yBg&|t%2mP11B~CL@**m=s!)4tbhT;V)2l55cU1cc{8xB`as9!5Xk`TiR{}Q&
z$AjB~yMw0&KMDR+a2mKhcmw!1!RC;5%o5TDrB6F}h+z+z1wJ<<3!J>g2DT0!V;nQI
zMku}!yv3-O!(WV?@EGGA51%o%hE+p(We$4;+#|dpdUo2wSBzRjxC8vX@b|&DhMxmx
z5s@gVx<+&Z?-wx<Tt?0O6*7;S*;t7yPF`M|1wLMUyVwlytl0O!*T!xJ-x9k6JU@0X
z`2N^K;03WKz)!}02X3$?S(~ud@CBpAWL<65vNx?aA(LO&zzpyWqqjHy1#ky^#CQ+H
zmw>ZIo4SHObbJ-KqlyE*7I=(t<hTC-XYcrCpstr;0*}gw27fBUk&(bwXPkq)2%h8-
ztSD2Hg>oRv1Kcyq2iz~KCb%tY9Qcf^4d7R@{s1q6k6FunvTJ9fjgkETcq+Wjc*3*S
zgFCa&g8z_x3H)YuF*wVqmxJTvv;l9I(-}N9XEgYjoTtH`$(fpict<(!LtdA&3G(Kg
z4|8;EYtD99^5L`AvafT#f$Yrr3H%ED*MUq6A2!zBgclq2H~6vf3+C1Vua_GKo}YUL
zoc!6i=kRD#Te1k8yxMpM;MYdWzQ|OBc1}^fBHWXrCg9DAlE7OP*<f#7)E2y5(F5Qe
ziq^q?w5a86JVo$-<9z}TIPU!IBJi~0@#qD6ntb5w@siOc_+BL|!5#33!_NwzIA+?x
zD~@&^{Nh;21fFqRi7KUQBfK2P7u`%MqLoZb?yRi%bY81Br=5OpYj3rEO;4-2sM><D
zD*I234-M=zug&3wDtm0=u%0<<M=r}$*-y0(YpFXNc7CVI{>k2D`+|$pa=%g8yM425
z$E|e}OMX|`{Z5Q*ed)zsJ1X5Od;LkbrY(NgRPcO^%06>h&-i)+x*vT&W#4ol<K0DT
z#;hEovVXduFmhte6+b<zvXAO9$@b!dpS}00%HI3X=7E!gl4h(^*_-w%>e}RG<E~Ft
z_HM6tY&QC*R~MgG+4r@WQTx-`<G(;4G9}5M?b>U3uN^!*#}TfwpIZ|Z{JKx0ON~|b
z7uGk9DjMEweTvGSn7sG%Q^)qt8mY2xJ$N*%Zo6;y%vRZ7Jy83jL#sx<<WSjXy)$%5
zttZ!fy;WuZ{j0(LeICz!>$u8Z=hu(Fd+GX_tCv*vE%uU}tamqU@+mI+eHV0k?n#fq
zL+933*?U-bHcBnob|6`0?^$Q-iwkEz^lCqqef!k<X|*QaI5l2nU$o`imQ~wNWh_$J
zU!F2P{qW%I>)9&%;pJJ2UP^2C;ck_EWYxgD>zBRepHkU3$Hx!rS$pll8!G#nY0nny
zJ(Ik&3jexy{&$AN=&0Ss0cYb>_M=P2{cCBhS~(A@>;a#!nO8Q=z5S@l{&QHRC69TX
z+cs5Y|13RawD)J*7A{rUV}^yE=@b0Hkqs(4f9`B64wYj!zH{utg}dxS*X;Ru(z{fz
zcTKarU%o!6dGhocu13fks(K!H_Rwqj%~bZZ0Y5!^C}HX%8eid>M%aJMeY@G`$7!62
zYieI}S#X`Y-BzW$8X?y$+I=kk%}0NEQ)SP3cmKj>!@gU)U1k4zSZ>%0Ui)UARN0qR
zAJgVW^?|#usO)`y2+xT5SJx%}s#ohz&!>f<9rIOPmA%u%OUstNHR{baD*Nn_Q#L+3
z$@|Ixm3?B!x06?&ePrWAm3`Nq<^7k;=|5+Q%HDF|tNZu#XuN-o%D%zz+RXtQqh8sk
zvVT9=v2^>Y2fjP4ve#bN{Od-$mcMgLWgoEW^|!_@+xvSpYGk>jLpy$aq(|O2AH=Kd
zXIj_15`6VmdKZ=bok;_ZE<a@c>~WR-R1eFuSNm0aeY(ot!fJZ$n@x^0%T@MQH+(;!
z$B{3yHmmGO?K0o~^10<j1uDC--P@U6x;*{S&nkP^3ftyOFXS%3q{=cWW>)VE<0Vsp
zS!J&u|KgA5-Zm~zRM}Vhtyo>O-1tLJmA(G8#GzlB>#a#s*=HZld}dJRcJ>7-d+fJs
zbhfjWymwUgMJ4S9HCQqHg?yF0^_GPzRt7gb_La(>9sd2sC0~cW@tey2<-}84pUQjn
z=Rg|l<&s7gUS6K4o%?>2%I=b-jL74|4PnoqrJchzp)YnT%SSY>o$LfGCq=}<o#;*7
zt33kl)Sd;us4Yayj5H<w{L{LL=nH*DiRM>c^vTuO`j)a<&mX$!=q;U(czvjedh`PC
z>oLT`iw*UlxED0ywzNfkcU$_L!N|^|MeX$$TGZE+2njS|*T6JN>pIM<mX{B!=VkK>
zVXZ6B(jN2QmiGVhmi7Z^75}|0?Y$V~T#bGEH@CMP#vr!ZxCiZR8Z~Wzhn3pixBjoR
zy?LZp9$oYAYKMOj{7tY2qcPflM+-bN%p-gdGyH{i_!P9gd8E+0TjQ*HUUd|lHL9A>
z2Z52@XeBDqL3tco9#e-$vrScEgxW;}9g1LEHi8aCvy~BazJ}~nV%o|GI=5gMW1eOX
zV2d#>96g^FiUcWFBP%}!Bt_Xlzq-o`WDi+pS{k!ih>8nOixLmg8Z#&ct>u`r;6Eb<
zDO$f6OO9{k5>towHH?n6$5vv~|E(T}25}zN6B>gx-Wtsktc}svkcd7A^n@yX5G$>#
zAg@;XAZ}rFI(kVe)Ca+PA8sqX4}R!naP57tWjqDTw2YPD4y6wwIMbAg_}G~gO=W?I
z&-(%7KmMj(iNo2>>`Lsk(l>Gb9(@xP@0Ix0rB~t_WExrTzE{GkL@F8}A{E`chr%_E
z(Ld2!VNs$U^9V_g-?O*k|84&+Lyd*T2T?UzjtwGNjt?SPju9eRjuTSs20liJ<p278
z`91t6{JwIG65VGxPKo6I`h)pBZ;ak^8Y@Nj<UiRTOk<=@f#^E_U-1pwMq)e`h_1P!
ze&UzlD{hPYF9TPBXkR(T$_)7*@gE<n*gSX|UqwyL3?PlMB3Zo_v1^<cck6xs6LDV3
zTbKAhEzXM^S4O`njVZgc_IDxfC5Y_*_1W|L;JP00-|4fbTQ5^<2>pa&7B~d>49JPT
zPcjj10uuco`jrUtp`QRzGAkVAKJYssOPdq=?;zLXU58$*veC(iCW9y`hzFtp2&1X)
z5UR>Fyi-Zd#Wj+vjwnRvgbC1_D)~zHZ4SMo%GL=w?|&@KHwiW(N^`|ACqtjA*h=$F
zgHCh|{oj<A&<>sGV=^ESPKQoJ>2nTj2K3pAt@L<vpc7F#!~yH9D8ovjmFAlV+kBDl
zpvboX`a;E4n(qbZM3lO5V2hv=QTl`fTMV6u(x)8Qi_m%hYw7V`f{lohJnzfUi6|ZB
zfOxb_p&>#id=)k#N=G@c*Ps(oI>Ldy4t=R&D?RTr=tOUcJcKKt6H$`KTM3<r(s2%m
zhl_Y!pcz6ZTm_wol6;08(BDyPrRPOMiV;!ziUZcMVOUp$l+t|UjwPZb^R0pYt}5Sq
z(1~30y$^k@D&IQj>qWjVd3Lq|`es$W51<oK`kDh)(qZgFRlaS|x2tS<(21mPf^au<
zB1-gECvguL5&i}xViRHpWBq0j9(U!rr)~S76H$`;?uSl9+r=h!00NQgzMnuRa^3e+
z=tQpjeg>V$b>D-~zX7@a9^XPIT8Eu!3*mRrFRAkV3Z00Oyyh#=iCoWn6*`gYd9OkL
z4di;>-=PyxS|!f?2XrDz`-SZ~bc7N_Dt(5`(1|Eb75QpHZ>Y-G0y+_;=qQef(34d8
zT0$qHG*BF`6?7s>^~Ao(&~2b(sRLU>Z=>WZy}q{4i72%c$7=_jh*EnFtUYuhN*y?`
z2cUOTY^BFbflg!+=Oye8ohU-s2p@({R72PZdq5{5KO&ui@Db=l3BpF$3wm!*Lt!KA
z3!SKmuo3o$PSjY~2nRqX>h=!*5`?MHiCm921UgY?k&p0E=tS}2c!a~C6V(&>2+2Q0
z)K1t4M?fcPAoeBv7j&XnVIzD3I+5$XBcT)hQJ-Hk;gisbT8ncKj)qR;db}~viEfL1
z3CBVwiWcW3oB*9DO4taeKqvY^>`Q2ePE<$aBb*7H$kjF%I#HCkKEib9M6UVfK_~i1
z9FK55^aY^0!bZ3dI?;#1Mz{nzQEg!(TnU}1syHv<8_<b@gpIJhj?*LjmNG)}bBzPJ
z{(ql_K2c?R7Wx#>46!faH0VT>#&f`WJt+5ut&XszL!U2fwS{dVbRtSNg`<3jzDU@T
zh3!S?tA))hY;Qrwv{WTY+ZyOZUy1udNY3r|L0=0S;X3F$K~7;K+y$NJw6GC=4E<A8
zzR#c&<%@iT2caJV?G!e`!_bK+(OS`z3ZN7168Q*^KquNKY=p<56CDvY!V}PmJ`py;
zFQ5}$7dFC^&@X{pf6L3ziE>0f!e5~itra%HE6|B31_dR;tI&xSihP9Epc7HrE$rm8
zBytFy@DJ$Mm3*b|$s5p#DBTcwZ$d9p<+}|XOSvdXmLCj$PU!<p;hPu+EV2f||7jLB
zEA(z4r#L=g3iQDs*YBGOeLBeXUd@M|r?TZkC!!R{0juTVH&^9544vp#abCg#=nXt*
zr_y^6551RSL)~8-ZwT}`paQWkp#u{y_JAm*MsVB*orsdO9fVHgYI9%`z$Fl+g4Z}+
zhW?wd$!GF9bVS-I^9<Q>E}|tr@bZXoI&`9!gpF_pbfOi)MmQ7tEYKUmMmQTf(Mn+>
zoCBTcZDAvv3!Ug|VIxe3PPA(t{|<zct8>!N=QhGAuo0aP;5G#@faMis5KHO3Uk;sU
zkGRi-Z$Kxa)cOqn&JO4$imh~CX2O30B<~%e7xX|7CHX%zLa(aI7XrPyDxVp8T~)q%
z&>N`oS)n&o<!c5#S(VQQy}c@5N9bKu`MN_Va{V4XpcA>;dO|01we^Nh<Z9~+oyheb
z^oLI5Y8wch$kjF&I+3d_75Z?H>p4b1AFaxl27L^u6W?9IvCt=gdI=lh)6ge^9uqdg
zNzf;Q?7~L)4D@F~X~IVM9P}xmslrBRhdvkNdVT587lA0r=U_4P*HrmlhrUXc&jCGC
zl`jkW`>K3vp|4Zr+W?)&o1a?2Ezmy%QIglP75YcQwpl#;+n^Is`a{@uKqvb8`;ro}
z6MhVx$n_lip??aZB+Hf0pc7G&$18w-1mt?JPD1}u<dfI;74)x#ZH2fNC-l=G*L}}H
zCvq*LE<pbgL`fd+C+I&5+hTFNi_nQE$+G7vbRyU9b{+Z+k<Tvny$QWY*k%aZE$Bp)
z<oB&(K|K#d=`HatiGof<sr4y-U!$QDQQ9hO3DAis;gzSPhoBRk73U;Og+5y36R&-i
z27ManvdBj`6Z$MAU+Ft+b1jrnAWC5zSON4OLFdK33dW!v0-|K)fb}mK8w8@ViA;p4
z(1$4bO3yJAIuRxB6Fl#u(1|F8p<pC@3_1~|P?2vKbfV+Oc^<;Yp%a}HHp1c1p9Hy<
ztD~S3Q93K~J_VhKl1`jsG;|_Lr$xRr=tPvx2-{fb;}l!zcbfqHX_aj%^l6F>bwIJN
z9s2jGd_O}kRN1aT$C{x?rRQL=sM~`a;y*}O7dnxvEfzYFtId{ydjN7ho*nvfm91tb
z${CPrz69u_Rkq2{pHtbUKqsPfYXbkBrb3^q%C`XeLY3`#=tPuG_T&35hW?T&->cBG
zRkj@HM3lCPeRH7`QCcT#YoHTR+9Yi6LMNh>Cv5LQC!!>ew-!1Pr9zQ!9dsf}CxmT1
zbRtSW3)=?hM3fw&?z$2B2a2uq_wA93vKEwzapaVjFb#Sh$U1`C2rby!Ldk)?6v~Ly
z8hSsFYu%Q?XI&RWsh+}t(7S<7ivKF1^l7{1lfG@&eA35C`E10Hq^~t!9FLHEczGa7
zW`!dkbn@$!xxODY%mSiRQ{<}&o%|)=iQ^G&Y0_QUY97&-qm82@o?~jD&;>dLnvG(+
zK!-r5KyxLrU7$mtQ=mDBZ+FIvd_s3fyFhbgv0b2}CD$E7cM3FD5yunT&8@_K!tRjU
z1*VGa=Bgr}K!>n9gzgk*uEz736GVQA!tRhL>}Fq{&nfo{7W)Zw2y}}4PNADaL_UEI
zflh(uP_bR0L!eWjIZSL9=n!ab$n8$KUFZ&J7iez8^O?iNaRfR9It7{|#CDNCRp<_Z
zPJ!m?BA-BqK&L=+4RO9ikx%Fjflk$Svq|I==n&|X*h(BPS>zMw5ZCGS7TbLUnngZ|
zNnCdb-6_y)5%~l<q%Mx*5a<+kb4`(7phKWjqC9`3$S2St&?(SdOI(k*u2iAR=gT2<
zr?l4=#}m(=Lq3P{cM{tj0-XZQb;N!G9Ri&K&2`0gfewLAf#!OAyScH*C(t3#DbU<R
zY!~Pd=#(hGr#PNN9=EC3PoPuSo#OkM{ls>G4uR(S!Y<G$?f%^EkjIs}%qQ&TW;~x$
z*v(N~H@6hW6}m&BI8LhEPv(yn`2{)zIwgwz%mE^wK!-SvIY!t8Is`fenq$RwfewLA
zf#x`|U7$mtQ=qv4-|iIWOBK39+69`e;y3~w0?p0E{&Ks}&Eoy;5PGWA14Mp-=0I^=
zabKNs{}#e7&>_$%?c%-R5a<+W7SGYj!zoI+ChP3^QGFDBzmcQi0^c62SP^#W2G?a<
zpydZ#7hOlF5c2()fnS%@%_`lh(l2|I&2Lm~w+a2R`n)`j7uPfUEI)rWq5o3Ab)(SN
zearPKLSJ=)>p?<ae3|Q^Lbr+Qw^ricL+Z^`x=rYMai8>Je~Ci93p$GW#GMTt`S%VN
z28nWe>H~Z`)zm0S<Qm%j;(Fn-QIbTtJuHuZKiQW2eZqU97RYlr#QR@fw?w(WqYA$d
zMq!XBx7%&}`s6_+%I)c5e}7?+D7WX==g0RI28nXJxg*~$pFfFmyEFXHug~0{Z(ksG
zkSO;zx98g*76yrOdwvezeu!5UnMAqWwv}&xMr@ZTx94}}_ot;WNR->{4f+1^_mL>K
zr?%$%dkTX@x!uu@Z<qH~qTKGh$Nu?k@3H^Ao{#hV`sH{LiSqo8L3}&sj7gN+)o4xR
z|L<l3^TqQmzqds7e(rR~Tz<ykB7;Qd6Wkst>=M<_Z~n79U#iG=2Pbg*owkkGu7=BD
zJfD0&N>t}_tFPz#zbi6GOnr~ry9&ER^>G|sdA{0WgT(wU+%DfI62)U&dYF1VpS<r9
zZPDB=-xm@~cjS^&{J&&*A(5r>{Y_#AiR$}r6#s8|-z2Kf<5o}L=aKIfiEi_&Hsss*
z{<3_LsLFOnRo_4B{a$|rKfghoLE@bg-a|0Y=lhQm`6N2WaC<Fbmni!+<za1YdA?9#
zkSMpSQT_d$;{E0)GD=kMCv~k9B(~w_m+yUvY1O!0=9j2`e(XJYzG!hgiMB@EF7KyA
z_48%3^L)d^{t{CcaeE74mng48UcT)w{(kEF7a{5w(k@XR|6W+@KKFO{^)L4ncJaOB
z{g$ZC>~8=3``o{esDH`(AyIvPb1VKkRTUc~I-cbANMV<#-k(+H`Q-B<@veMs4DP=F
zVmHsP`Y<EJ_mt0-M0GxQdW@Uje^LeSpS$Z{Tfys3zt8KpH{thRxKOc*)n7~QuHRn4
z@@uWAzsl!ZVnwgQ-T7_exsu0|s6K8ZH@}}cpF92a`@H{2_j&%T`#it9`?uvjpWlKC
zKELkHf4PGD8-w}tE9*xR-Thu_d%=A^f3}JI`~$^-B|6{Y_Kw0XQP%I|bzHvB^Sir$
z`4#;Cx!d32ru>%IeFtOs_muS-iFdZ&LvVNg{S|!vtoQl*yE}h=9RFUjz9Lcmb=>WL
zvVzy|ZvP7v+&{GwzfQBbFp28xbf??y^Y^<hu2Ytq5?O=$yMJCme1BQ*kf{D1?(Sb|
z2fn`?yCqS*zq2#XXAv7D+ACOoIPbUoY{Abj`+X#;uhX5L>Zbi=tKj{&HRb1*<-SCB
z=TqC;-Dmmb?)S^D;QhD9^6QuVIug~_=}r$3&zXE~C8mh?iqs{lkK^w8(<->Xxh21T
z*?%h0A$}KGUP!Fy`4?C4{O+!QZ3Xu?R^`_(>sJ!h*Xd4ocm8@6{Qt9N_xJqT-1NUR
ztKj)Nx_N%weP6ZR-S=mS{CmmrRHAzS0`WV^dXGePK6kpi^Ixvu@9%DZV+g-~`M;5<
zz7BH|&nNu_64m+K=}ysqE&I15y34O_Us~_;`Axac{wH_$kJaG!MgE^8s=t@J{ZqyN
zLcTX7s`u~m552$pRPg`f?)t42e16>RKca%?&%e*|W70qL|4+Hk?{BN%^OJI)&%e9-
zpLU<uZ?E9>yE}h+1%H2c`{&>1`4?C4`!f^&pUd}>#Mkfh`fcL4^1UHZ{r`9O{p}U3
zKc@Xd&(GQl-oFBoPnLTU)!);d?)Ljv@cun=pYP8B_qqRL_qo5j@1I}6@9%E^towX^
zx7_Fc`|orA%N2b7+<pI(_j&#c72H3+8GnDscAG?Z&%4_0?)r_P{J65-Cb6RXTkmuK
z{0hE*++F|m3f@0=`+HU9-(U7SNK}9SC;y@UU&?*nKW66FFW>tT)z=>)zNh?sC93ne
z)9d{o>fQxBs`A<!PxcD%aupO%ZbM>#8AykaAP$g8;v@{!MkPQeFi|>$Nr0VXW|B;j
z;gU&!>KQPcwh^IvCLyt&6rr}^qP9^%dV)ap1clmzEgoxBIBjE#ttUVbI^S>2>}_SY
zL(-4$dH&BIWZu2sz4m)u_qE>bExteZ7T>@B7T=Gy|7Ewh{>zndsd%H7+I5W9|MzaO
z|NHv6|1onSc%sIQ)pG4Ej(>kY$G`3t_pkC6>F;~DsK0Ez#qsaI#r~hZ#s14~(SCjY
z7W<Ee|L^n@e^x4f64h_2mRdTCb|0<(P5q>wl?wd~S2|G3X#HvHYi<#Le|C%OzbT6U
zOFPbJ_wU>y{zhB>&-%Il(cT}a<b|p7Of9wZc<dI}KU)8@`q}@<Tin0T{>k;%>H)dR
zI90nzEw$?u?Y<==B0to;54DU2ua$#Gqu}3r%DSlVYN>7a!>1zsuU8(Z<)(s2z3LBC
zOVz$s+i8iC{}eMT^1d4PQ%mhQjw*aYZC5ST_O+#U{qIxy8KMBHrS?7bUW>=SyG8uj
zev9}YqvRK>{zbKnpBGs_^<FL2d8p-6x7h!EQTkWg@2k8LW&PrnxS%Re)Kc5teS0GF
zd{TL!mNB)F`dLc7T58|l6lMIIl(?))k7}uX|2`#tsKz(d@@PNf2W9^x{cG|6d;jG7
z+VQtUiGOL~)O#)duXIP&d7%QJmPeZ+_4g_DYN;K+Q1UO-cGWT_A@aUTuWG3@_hr$t
zFaoFM-Kyo60GbPRf7I&l{ge8ab{zYotp8ogywv%srP{Ar9{nfv7cCx+RPuDxajB)+
zeqZH>%OmUeH3d*DWAY>QYCf=9YTIv#5<mJ-$*WcMF}2jL!=}PWKbcDZY8m5<)T?qs
zEmb-2<-C+U5jF0tmPh+ZzlJFIH@Bbrx9OjhAKLwEyhZ-|@3;8={ZZ!s<@)w<@xm?k
z-?AmL&#RSw)bgmZuIhfPr568={wnf*k%Cxi8UI0~{*cnHS`O6A=e{WTqXCP08~^w}
z9)C<qq+T7jT59)y`7N&h+FN`-{^iIx_bW40%cCuk`YfehE&pyIR{vwTP3t4|$;u0A
zsh$7P?Gd;#1x_vF%OdrOO1)ZY&o><Xw+LLF0;iTozaOd3Q0moEtKaSaC;9*1@h?Ts
zQvJSa`C%0O>r45jjBDLLxqsUCkETZEsjiD!-WLV`ly1K)UW`J&?<jIj?N2Sgd{Mc0
zEz0{^xM=tBPe#UHr2wd9%bG}if>N)RTKw6xC<13t;M6iki7Tt{YN;K^hsPuDE1y(|
zQOo;|M(VdKFQ}z<|9|!$xnT$uuRb^yxmWk$_nQ0v(7+FWKLW4j9X<Pp$o*YPzsc`K
z?(w;>fB47!V&u7&FaAT||BK51)r|k~W3$6k{ZQHW-)P2Xe{)QDDDNrHuWRO4_350j
zDllt!<lIH&&m!Yj`Esu2zWSBObJc#S)SUNBJREth=I02_`=oiUU4s9w`!CY$-#0Y(
zC7Sz6&HY-<{ns@24$ZxG{)b+Qte;9B-`1>G;j1^U|0d0Sqvl@Qeo)iC_W5g?{nS3c
z(tczA8(+I|zu$a0a<9tQZJPV9Yv!M<8Bdbt{sZN_w~CLeG~>HlgOBGl<9S4LFEstn
z(cDkh+%M4FPtx3L=aZ&+K38)eueo2PxwmWX^ECH~ntSd3Xy^C;_x;k&PkaCLyvX_8
zwMuzZDZi(b&nx9RrQENSo0RfrO1V`jTa>a)DfiEhwEw(P#w+!ADWy>AW0bOGZUp{m
zrQENS&nsoTQr@MMBb8Dp<(qFs=;uql<+cc4eni6uK2hpl*6`QgDfMk{MA}j1-lt0a
zLnkBk!<2>mOsW5G&36p`SE;}2-3YvTUiXSpKS)!5O{t&%pEr&_W@Kdi_iO6ol={~+
z^edG5i5-!4R5?COssA4he;BFM@6fEzXr=y|W*zQQ>L1p$KT)Yaq-iH!saNstP0e_H
zn(=JY(C1Gz&$Be&ulTy={z1)sNb`QB=J`a0AFKTFZq2<xb05&ihdrA4{6urVPs49N
z)aXk?HRJidX1see_aAE7+pbx!pys|<)BX_6d`4>SS9WUfPu;jE<tYvQ{9ZG@-)hEx
z`PY&5RsHX;A4Tp}KmU`O^?O>=-mkkO@Txxf8%_U)k8f<xcQ$gb<^iW`o+oMWJEYMM
zOEq|Y`|(J7Dqk3&;RlB_<Gp@50zXn&zx5jY`ImE%=jwVi{5Ep0>d&2;`@#Pcd9I$T
z{<&s7mT2a8|L<>vcWd@{-igR_m7m$)jNGgKt>jaYd##^Qiw>$Ck#;BouimSrOQ~1w
zF13D?24B_ZqodRh)!>r~U!~ELRQq8=l=}Zv=t8A?6~0NK2UR~;^~isZQlF^Nk5u@d
z9Eq%h>c3O#@6yn}s^{GurGB0UA657<ntfB}kr1W6<`*~as|uf?k(cVcAB<A}jDkNZ
zKB(|N)_j*pt#3FJ=~tD1s$KJgDD`!}iomP%s={Zz7pYh2L|s=~l=_7CBk(F6sqhbc
z7^zqJjVd3%6{UWMLQkr{ScN}#A<~XYhiZMh#@<!=#OWyYul_O8j{2Pj6<+`6NWJ=f
zRh2$1QR;v9c?5ofLYON2zg>>ht8oOCu3wH)Kl@q)ev;CT3O^zyqL=A3^~)(zullo9
zy~`J+{<VP-_;{rq75@5=NPU7*ui}?(=s&K%cSNNAZVi0Qs7QUHQa@5D7e=WcaYqDx
ziU$7GF_HSIntIz^k@{&${V1i}7^VK@@ez2v2Hrd|Qm^`VRD3UtQeUczz)x4&QQ`N+
zN9t!N^(uY5tEpEWe_0qc`l`zRvaZ~SFKT_-FC+D%lonJzbXdbzluwAp%=_O6yo!%%
z{Rs`ds_nd{;Wt7N5aTrcs`c+{@JOB5e$9APIkQ%SziK<XG<d4Q|BD7*t<Tlahg$!P
zhTo{`_G3-Gx(=^v_)4tOP^Jdo)%BjCSqF8#RT_Sv!v9LszFNOBO8eI|>#5G`h=$J8
z`fqCXSFPWyX<x1XckOyA55A$TS0?r?4IZlPJgm`w)Owd@UsQQpq=Db0ypVD<f}g5f
zQ0wPw>ecqMqtrhbrQQ~${##M%*F>o=i&DQnO8u57_4QHepNdl76s7)$QR>^G)c-6>
z{m-M+zZs?emr?59k5Yd=O8uXr)L)KLAM^7Y@kGUk!BOgOk5WG&O8t~5^~Nam_eQDD
zj8cDpl={V*dX=AO%TG1mlPtU#Sr1iT*`u)!ay0M<{wo5n%BvjB`>~%yo~!y*hlbDH
zp|KZxHSN7G7Keu%uM9j}(_YKFk@i*oH$-Faz5ik4xvCGor{Nba4g5=giomP$Kd$l1
zyrEf-Le2B*8oB#&DAJy)Z#|>22cL?K%um(3#%t_1ou>U?Y1Y3;W1s%9>&E#SH0^2a
zVY6m^FI>NIymx56$2nWGKSMS4_n$TP>eHJ29izyb1T7*e_v`->>0i~0H){H8)yO6J
z(+IrkFZhmTz3$T3yPGxe$FD}-SM_IyrvFWv_J(Wh{ZShDKWp?8uf|`N{z0Ta)ov-*
z?4Nd7rvCSh@Q-WOvsQ!u|E8JmGn)CnpxNIJ4Zf_<%<m_f=c6?E@745oRI@)HY1Z$5
zH2Zl%V-Jqe(Bmvc?^gA6t7g6L?!9sU3eHFFRetkFjo!XNV-L*J=!cK%BlM`o|0~Bv
z?$!QxYQA^7@$Sg;BxU1*8hW@_Lw`r58|nQI8a>FUS^pUt_`#a_P1fA+)zB;bKC&LF
z9UK4G$i2#sUewql-5R~}CC&P5)9n8V4L`o?_Q?EH`^>D^eeufr6lnOvIE}m*ql`zj
zr%q_v8!$D}zENrKgOQPY)lO{E(93Nae6wrl?IF#2lV*K(X~wrx<IgNt?0c2}oa%|J
zuWA?lLPKwhHT3_ln*M*Jq3@?P>-`OdUPdYNpQORJF`q~JSNZ2dn)m-z)Bh^Xc&Bwl
z-dFt{?`r0IL_-hCFup8eN5zu3W9X>Z+ha!#oB;2RG!qqkn+cZ%-4jDX8uGwMzKK(B
z@PEJ_pw#1o*28f*7a;im_Y8>PLh#xSPQbMZUV|ZNcpeiobP9@$p+kpmS^}5Kuvm2R
zz{sJuh3|%s#j^)S;(E&xygy<L9)=&>HZ}|vz8?7{(B>s0!*HW+Q(wdX4w0{8V(z#D
zFN9kSLyZ3N7XS0EuUwCfw1r`w-WnSt#q5DJkBz-HWC(u4hF@$<a+S9txzyt<C{14D
zN%mGalfCQR&g6nhk4ttYR~M9470q1Z;bpuzWP#V^C~y_td(TX7-@t_)XVgY3s@#>b
zt0=jkbWPtd;ZZuuJhHp8sG?7B=Nga0<tixa7ob;OQ{b$WJ?{QMWBE$^1-G`yS<*M)
z+Jb)cT2{5Xv|x=_S@mdpq%Nnktg5WSv%1f|3yW4&^}X;#?rN;MS6<g=dqou$p1yac
zXdU*i?>Vn6@U8`h^)*)p>(4eTaE{dl-pW23l~)%yqmzQV%%!Wnl?DCSVo+R(V|7(!
zQQs@*0&ew#UR<jRDk|iDP=RZeT-l%1aXAZ|Yx|zD%UR^EtSIOk{atJNCVE$q%TX%3
ztNO7jt7UgTI;~t^){iNyme=)jk=Hm~1r>c$Fy`v@6&3Z(X;i>fReh5tV11tcbiTHz
zA3V<0FLvMpI#+u8Bo2U;0RQ@ga~D;XdHTUB6*xyxzo0$dej-g-fm`ky3Ck)VPWqe*
zmap%o6t>W3V+veKe*shb1oRe_7CHN#g}2C6(05z%8qiuq(DY525S$E+0%EMNv>zNv
zd85kR4|xLE@~WbnC?zT<_Lj>1;Me`**4|2>MBh@;TUoWLZ(8xLcU2aw>T}Uq3F;fD
zqCY|j?Ackgsy||>s&e(*K0B>0^m-x$*H7KUS0PsxIiLwBO`8j<Dm`n8+(i`yl|_Z&
zjPk!%F4cYPQ?XP5q2b7dr5@kS)le0>uxj<{{y{<}IZG@04eRn$7xfRgqH@*^%NRv*
zR!8hzudunBw;oowyvdOw>RyJGeAi9&k1&YGeG?)ILzH<u(Pe)aLYctL$5P?z$7p;7
za^;!|PgQieDtnS;Pt>09v`oH<LI4ir^b{5)GZ}<`qPC<$7Rqbn=v-EXT2oO_w)Q5H
zM};dbs=S#Uqk@5blomy2G^^HE7I~AQQLMfR?^S>pH0mV30;AwuG|f8#Sy5C_c(X36
zR$~La&YKuF7&Jh_zfni!DyUqWT;}nm%(^*9mD^jeIywstH?z9b;{j=VT{mw^0lS%b
z8*Z-PChQ+F#OZNYvt=D!)%yyN9Cb)4P+^f%hH=m*9E>YWpddP$stvBL^h8$%R3N!O
zK;>1Q%IHh4Hie~#E(eR;AVo;s<W&XUqI>UA3T3kWk|1E1Y?mh&$`vqCqA!yI#x^Y|
zEV_cDwpX;S$k~U&c>`#_8pWFQIYOn?{=)Thj7qCFh@xn8uFgw+r(aXsphAZ&yFNIH
z+QSC6+-?+jkwN`aThEjoMXahFv3~K@fkgrLco~nPE`8W#wc1kwHgI#8o2qr;Rxq%e
z<6#(TgU4MYyH`h-bvHmcm^I&gU}}S3?Ym!V{UxCmdp+)CFeOOPs9i;t@vD9Oz2*lP
z(BjRSxVck_-)FB=-@Sm4Z`utL`pw;3+!sULln?;4S}wimqVV&+y9z_~)m0hfW1r(;
zHK-5%fKlJn#>I1X4)onh7^<&P-;DpEr!Y6T*<MB1MPI$J0_or%IXX3<H{Q~!u$JZE
zC0MPhNd2ORilWtQdMCRIN{Uujxuav43h4C}l$G5?Z&KlI?#oho{i?_QpBir8c9zmZ
zA^ciJ<yALPJXX6Zll$O>402OVkO6M)h+&AE1rofT3iN@WsAv<0*uZ;KT~y({nX4bz
z2~~s<K3qm`@kY45WSs^YyfeBscO#n(-$myrHv+HrltxGQ8$o4v;mvfV8-aNPVZ=vW
z4GnZ9giv%v`$phOL^hOm{}C3i^&mpzF7SHQpcSmJwN<NTIz2ANiISoUr7$`xig-qH
zL8)<VQ7Om_T#eu3pBq`%Ew%Z#ZoJ7~xmK6v|5@8NNWTAPt=@?K|7gMgE=tH!CM?y$
z7yP5nwI8527f&}f4R;yTvyy-26)0iO=)(!S2&yXOQg{luh&t}S0ag~d%5EybVc8*+
zQ<<!kQJYj`OIX143#f0MfMr#3Y1voTr~ez+_r85~E&oxww}gXXN_4skAuDC~4b+Ih
zx)d|=J`N?v(6~FqR!8HhxfTn>T7^up%?=uBCGU2J)gs!d#!Q3k!W6PloUf|KL#yAX
zadv@1O1Ty%{e)r<SuB=uczNC;i^)i_X%>rVY8=tE+I`a6zsAK$cAC+<Us$9`*PEjJ
z(xhgQCB<K(0h@(fywWBzDo+WjyE-L7d`5$Os4I5dP&YIL_<OF|mEU4ViOE(XOUakS
z%av4jQu5&CGc?>M@Z`n^T-|&?6h!_?<1Q=zO}{Knzl7o4bA1_pldd07eq~Eji6h$~
zcsywL>a)+%u+xHTO<$=-cX*JxSCrO1U}?8uwZur_^@zEXg(+T`cwN06_(NsxxB+y{
ze>EtK4OP2^QP7~hxDL^9F5(7ClWECS?16Mh7H?Uk*_Y%?QZ`jzjT`g|4QyUXafirV
zNVi*OmOLS7=m{F=BLDkRJW0J&q${NXRw;psuF`m`s4XRrS<uK6w8{(sLvNg*A%}v`
z(|~5_o1u>OCK}ot5DpqrAEZZ*(Cy9SHfM6-GSf!4FbJCCquA4yRly)h=LE&>lmlCv
z#7L?-LPM;b<aUd;dKz9Y<Y1@&Ku}5~>a__+JH^(E9TeB=MRzV5e5jTZ({OpwLW}lM
zyqyl$>8Ng>pxbs*rJ2^5sb(K-%$26%bw;&XcQBo<#vB&%ArY|CfSuJM<SwDo+%iFp
z(xl*Ss@tMph0U3M9X++s`W70Xrwuy%>YkHK*a$t^!tb}^2GdVBo(zhID7IG)lvAwB
zTP6M|V+%Yq;bO4qa!;i=i~c+`tUmaLNWPMoY0318$5;M1X&U+69uM7iu2D>-Y3FD~
zKBg}$;)I~u783OhHesZp^}=LZBP?@_7NTa_kWT{^(RxGTR6oU@Ab(*x4RD4BwsZ1<
zDdcfWxtC;G=O%xyNH7X77LZ1yq(`p3ZW^3IwPx&mypNXUQ(Ap6U~@DWpG-(3$x42+
zrNNj)WSwoHnpBdo>t?#mN*mnV??Anu)*WHEIy1#tX}uX&sWe1SRr~alX)K89#K*rW
zO)j36Z^>q`_4)F)%8V4F5un_0wSfldJ><_9Bh54rFXv~_csrH5i=WT;DsKb}9{lnR
z``_NUMgx6-$JiH8$rccaK?G>BkG^F<71g=R;)c-G+A~6KI<P~U(976C>tCcn&K?>Z
z3Y<;Df(B{b7GPyo2G!<L>^XifHhkAYUR?^s>M<vgC{4bSQP!A6r8+5<2J}*`0c#+p
zbB|;^-6`E2qQR#{7>iz{yL}0k1RMSuz2f#ClR;09nvdbBltK%y(wi~9#Gtr67<717
zi5!vGEfR$ve;cHgA!+<&F;$EMR}<q(I^=6Ti^Y`O9-v99m`V4)PbRRwy7zk`o087G
z@1{Xk;IWnBoV=V^ULOc)=xNlMX}DTfjr|I#RTW_{KvtWjq)=vmTL8tUsZB(Bss@Gs
zeO+b;^KVV}8I574Znh|6sxfDD({L+Qn6tR1%$(6dBltEmqmxmq!kmGckydaK0FJVP
zJ<w`%J@(q((<!f%gH&-<N()iV)u1$={8vlpoB8z17$?2JNa#xxBc+6pAfJJ*#q@&Q
zUB?|>5h&^K9Ls$t9Xl;#G4s)5AZ(hp6Wqlb6rG|0oQDQ(77HRbemBK!7J=6qXyEBQ
z-o!^hASI<G4)HLJK2K|O$3aZTm~0ZmZB1m91%yZpgT$Vv4dyV2xdT{wxia8CLa{!w
zZf~I4_bC=TS<6C<-iX;86s<IPvx+|Be2acev-Pytd`!^56hUz*?}<BhbcE+EXk-2*
zu(2cbpJ6-#gH-THw6%vZsZ}ac@n}b&t3%G;^q0S6FZn#nEv95;n6IRJ!f3<PnvIEP
z0&6lU?lf+J7S3=D*rEvitpXSoK{6=?*mCn1G1y6edovSgfSR-$Yk(kN6F2mi@hMkr
z0D6Rn0L;YhgB5HrgX_>nb4HLy5V_mHcY^VpA=WeGV8&(O$q*}5nQ4U?n1Q{|5AG0;
ziYesNl`s$e6|iHWIWImhe&z!?J29@J{4l1hR54{!EcpI$y0clxUqP1K4wBu1#-vd>
zmLXIv9BuN-l^DxqD&B%k*bL5m_GwCVRjnpzXH^;9Q7?)cO5{?J*zl)f@?K@^g`8N=
zf{W^MX~QmzyR5^K>24>w$WjN0fkzwN9Xwgw*Xd5i4W$n^To9!e>q|6LPqnFmhotmN
z5SZ0&o_n1xClH|Oh5T%t?f}KPSa6QP_=P1$v}OjyxJ(=PNUfX5CoKNTkNi1Q<Bl6f
z^O`Z{Ly%x|LuE9`74$y`RD{5pIW4i(v|+&kTK7H;*5?GD=AQ1-GykhI=LrAPDJT~~
zsF-ZRPfOjDWT*8y;W`M$>36qb^ed?_A2P*q-RTGCrLtU_bEs)aqi_JPCnW@g(bQp*
zAQZ0Bkd&U*K;YS=$CiMC-VhH1Etfn?qYq*9bx(G^B1_{#fxyZY%WSlvh2p~UwJ!Gu
zG<I)LiVwvNr&E5=8F+Pi+v9n%_gCJjVnVHjyl3J@Q0++}ca{k6Z!d~e@l0#x6e;<t
zm>zc<6pj68wpDK2@uW2VdPrJ!Su7PD(o*maY4sJVE5!6@L|9WaU#Gae2f(hKB1^nW
zadsg~v#v<fneSJ-rERe^s8{k`Vo5O|1jM5O^`aUj_{d&BL6cytAGDcqad@xjk=~EJ
z9ygNSirFb%>sVtEZ-*d4E8mgQLvuq}(zq{Zy<3_BPKKY_tCV^k2<5lD2P(~t8$~bG
z<_mdGC`<NL`@ly0et(r|CjQb!1C=bKF+M8J=iic48f&+G>iE<VFp&@9*GJ0>Dal3E
z+i`93lC$N(JQi{57ec3{b@}|eJ{8I}`EqHnkE-+WYoe-r8tS7;{xy*|A6hI`gnvh;
zQGt00)h;B-2U(3@6V)&Ufg$nlq%=smrIz*8`PFoH8Z9#imgM*Yf~GlXky+ARi@Tkk
zhFDub15TuiQMMmK8SyfHj=;7DyM<RWToShO;N(+}N%Jpdi04Gt%#6(7Qt|6_kxaE)
zpc?``QiT4ToM3yv@j#B47ff(GAU|NkvM*|CBIkCRn9_tBmzdX_NQ>PxGliZ3!d>v^
zN;ATe*+5iJ-!PL=&vJ5*6NuXsFq+!LxNgUTEgefb86B5_9<hCNcrkb(Xde5pkOh6M
zK_o5V|037WP*DQ`4540kRazPn)9F;qML`2xV(N|#F+Rhx#u)07pYp$E^3I|mY4lAq
zP0;(xq4;)XW>NKpj=)Mm{_RlvSi=Z79;CW6ys$%@<YDb%CU_efU4Mb*H21ez0oCa5
z+QleG|9!(ygbZ}=UM%X=4v|B(g%q0-5=QxX|8Zr&mF5N>ZCmCPG@IHG%)@XmpvKCo
zb7aW8IDgmlJv84ZdT7w$9S?Si#`9F1N@G%lV@JqlqVyE9rqW6s&9_pHnI@&s-BuR-
z;O<B2%-*)L1>jnfPS6Si2){d6ERCmiS81Y^ocT;nVDw*wr(xD#1H+nM&1stn+7Xmz
z5L;O}9pDs+nKaNT?5v=D(*SNI8A7yl7bTq#UDIfU%fiCLgL#}Y9~7+t8gQ83t1&k$
zwd}Aw%Hx4t%%H)|C~2dvVX2pBr-hYjmY0nG%@(TA^@y(G6&4!o!aJpAX<RS0gOB_?
zCdEpN^F?wd)f|zgUD>`H*e+<DL7IP!K8-oAZ0Ca=V5Mb+bQ`Zum&r7XrOd--8msqj
zq_IE~lJwhhAg_xIVr~Pl1;)xmA1o@+Zo4=LG4+lKsw)=e_+!Ut!<OS^m%!vfwPI8z
zSSKTo8)G>kiiJtozWkdA)~4@h?<ntx?;xpOjC;e@eF98pdBYpDER_r?qT#Z`blgA3
zk}QL-Us(V{N%tOF236?OBZ3;-QgnschM9@<Y$ljG#t|aF4l9E@D|9*lHF;TybDPaD
z{curYCND(#3CMY?WdYX|@S=wm0<|WeCHesCmk@SE7YILh@eMWyHxZ=~!Vt6^)*mBU
zKnK=q-Xzg;uE~{ZGFeR9XtIlr#Xv!}(vR!%TMMQ`Af1TuVWSLKmKOR&ObWdWEIAXi
zm%d$h5*n8bE@Br>X=1414VY7QV_4BJur?{|uh65ZQ|NQN^eSFD2Bl&<${Bj<MAZ**
zxlRXN{3VvE9$mX|{FqmHf}Rzl;L0$U1(zDP0)`tss-r}xf%kAz=0{i^uFTJ;cqoE{
z?H#YcjuRd9pgBDFuL7iPX3JeT+r_wJ9qs!XVW*I2h5!m;zXdJbLaA1MZ?+QxLzo)i
z449X`dxa%Gw-b6bRk_<=>2d5AG$D-&%@p5kUV$=~rZj_rTUKOJ2^tw<hcuF}qVF3A
zcPeHxh>RJ)Jyu4<Qgc{5L`I&xD6Gwd_jrO6jiy5hqh-0^8wLu1`Mc<({{sC~vP;QV
zWGOKe%t;O!g%RAhct?9Lw1yK@s|zk>_+VKlt!t@d_PZUTvsaV|`VWYU!`PXUrZO=X
zkh57^?-8A6O*80cwFWv7Yi|c7pIB+ZB-t|AxR7dead%MX##D%(rv`-gtldO%VYt$a
z%2UuUfNW4LVL-(@p@FRmV-#5zFus^uy_R&Cb_Fa884k9%wYq_hVqLQGKPRX}tIRS?
zaNko-2*UQ@Ck<kO#X+8Y8U|Kppt(DnA!*PScuiJ5r9c|OzIIYJa|vtuqZwk^O`k*g
z-3<#V(g39PSKr376&WJ$W{+7(fyti;KT`nuA(|;NKT3-huHfFW2;Cca5gx<J3;{)v
zubOAk#<Q4Db_3~C9JDr{yauq{=CIOWbucT25RJ^l;G{e=y$kXxhW=@d$81=&xH(jK
zPPGiiw!55f=2_j)(nu@Ms}B%$ZsOwrRlEo_8!UL?-<q1w^ZQG9evO#l*TJ1bU3BkZ
zS_!1DPhx(s#>~n&6e!4CS3VqD78U|Sth3DY05I?NbF|h>X6FjBndPT!mRU48g%;>g
zLyml)`YD>GU%|~KSV6)0f;JfFw=suluoH~HOlA4>LCoRm+1nbReTZ?6%0J1UR>Avp
z40^|LR<C1w>AQ92{8@7?P#vtZFx=m6Fkm|l#aWH%)W}XBY3lWhV9njr*!2TlycVt|
zXz!v`$R2{dViDdlJAM;|<(I6mT7qR1yZI37Xtj*wn|<2_6q2X5vaWZhKBwbR@PsZ9
zI!)12%>`&+sSvb+N(-s-Dnxs+qPCR!Y1mGd!VtG*P(`YAkS4Vk=xe8=HV5%!_*;9s
z`fiUkDEivD8yf5^yT$Q=$$VwHUv2LHZhX&Rk;5&*d)5NW$nU)e%oc4G2B`K$R)c8c
zNvLpP-)AX&pROG5YWN#id5m2I?o}v@gOjBMD!qyqwu8&OL%!|c-r^HM-a;A%F>{&9
z7D5T2G6U(X^m^S@u$RbA&>|hpvbVAt39T%J2By(-z^u1plyN|l1lIj+DE^Zf>R4*7
zLjR!(Ls*k^0-Fmy3#+b$aii(H|0MY4B$%JjuY6Z&gx-GuHd7&uX@(~Y(giAltfM>a
zaw{|1tKHw}CiiwK&ZV)yD;?{nQ|#$esr)JpvloNGknaeyypejIhS$90g|I&g?1>Re
zf;(oe7$<!$(Z;J{2HgXu-6^B<7usbSxR)&%(Bek3EW9uldxRszj^&!|p;pl@C451|
zH{?D^iEs%oqP!L|`W}MxfPA(Ef7H0590Fr8Muf^9>DqqQ*<a6wU9})oLUo@#0+x<#
zxB#6;_<sehp#{o#J{b9maIbLkaNjh=MGxn*qFJ_!rda6_@C3ay=@M2Ctq-t6;w`52
zkYx8x5^|epeJhdOthI%||2<R!neE-0eXTFS-z|!tnJ@iHx^{}~$vZ<(wOqU378Yz%
z&1j&Cf$j*wc9oh-JHwT=s07y-u~!sV?GWR!PPB2fm`&rGQ9*I=P1P)f2Ola<t&WjN
z6w$ErqPQBC>1e4{!XBf?DiMyIu%W^LLlGg6=7-8fFg|V!_IjO=yF#B>jK-IlgKTh1
zdtxyzXez@tTa4L$BdjZ<#TPd=50Q>H3Ia6L*}9y0b44oPy(@UPZ`Z$UbONq%PA1!I
zL*epWpU)2_!vC-xDia=>frxkw5Cb;b<_jv(Sy;1&KLc_To;7%j@rw~aF@yncAQL>p
z^1KCdM^nQ}tRS<4S9zM#*@Ysv&2M*0vqON3LkK3g&F>e9KibT1PR9}i8@-W=J<osI
zCX8)$a@E&a%NPV+=EX|gW)&7$+%A3r=z(ZWej*@b5a3BT1McJ%>Uk}jwRp0NB-g<w
z;9#djt9MPMgBG6D)0{MtHov-*?P%d^V3j<@+DhvS+0OzOO-4#s%LmpB+sro>Y@kcf
zvvBTw5Ti#!<iKo3=s)5H2H6{^5xDSi44QBkb`c^{2t>fljPE5%0n=ndj9l5Cx8Znh
z^xA4^-TO4$-r0_Quh}Ox^JbO8)GRhAufh)n+l5_4hIGENK(jDQ_k{OU%EyYa-xGAU
z7vAoGxZDYKb{r51mVE4KHUdgT7A<tsJgb}~JsumP_0W0k2$=Xrqhz#YN3#_)cotra
zw1N-Va6x$JY&-YQzA(n*%F&_?K2zhl9eBRNVEM77wd8DoZre<&*U`9$;k<qw4^LPv
zYb<anxbx<m^`aRlZOlWUIo`p3UTphleqptle<4hJW7yK)AH4L5_^9~3CPu7S>r;;B
z@?QHwT82sb!}AMYV(mug(Z*8J`6ONF`PV8N=1P;VE(ex1%I7|%mtr^5FX5mKH2tyq
zyA4}~|GP73+@ZM*6ze=?GWoqCBu1GeQ;2d3$&_NW6?ECQlD?kiTIo0F_WhWY9BDRv
z4zJ8X;O%%TeT&CJgPL2VahG;;{EE`5M2R%}ib#Kh&R|x10ry`~%5^$yheI-4f$LHn
z2v2?BA$XPB@<iJwvX90df<4P_%@IyowUEa9=qI%X`a!Hdp1zhwHsFa4UhW1^l%V%w
zCecr@RUbj~dI);<zd@0j&3=|pW+E7{yehpRkH%UXM5*xF!n%!Jnntdxbcdc^#Cv;V
zQ)n;B&3G>qQ%`r*v!0iJkz_OJ|JGzH`0dvhQXv@M&tn$-gNLnkW@&OLyqWs++&r-o
zCbPZxgDmRB`u$6+Q_Phc`~ga-*Svcgt=+zeot8g=2LUsh9ySsV#KJ@XgMmxwC|2?y
z_AVEg{9)`xQSz}3KED((1rjQ|Q*@nSUkA9uo#&wbe9k}R?Ed_<cvDKbUT(~uo=L>6
zv|lY3mhO;;gS((IJB>UIjB1s>6B~LUMM5y}D%#17#2%>f2xX!XSxUHW5&OZ`&%pQ3
zE~Td64jQo&e!VBeRx!>cjO`FUh$gMHHHg(K#keP4d-j>UQ!EIjL+P1Rt=lGM?1z^Y
z`p1BJ7<~sb*=t*6&SRer`C*!)Rp{JySj0T>xVz}udXButZEmj@^F1Xx$hV|W(ymfA
zwRDGrBH$OHGVfGrVmO{CLg#~fHbDe+HZVtgwHQIn1~<Z^BhCfu>fY$|pz~Z0?gyp?
z;UN%?x-x0vC3wPNhBk)-s!&|K%#w$|yNN}!$?}6DTX+FC`I7Em>nbxiSa>JG!U#os
zM6FnLMT|xOtEqv+PNGA5q0tmyg~reOI+ht88&7xnz-v~S1sKOhvt)$Yn+enqG%Sr3
zk+h3KZhXW0M;equ>rR5Tc**-2R$lrBm0YFxox!GVkEo=$6PRr%ZXEr=e*wdFE$$48
z#6XoaA=D1DPEg7ufaKUH7Lr(&OCFxv`XC6}b<bQcRJ5=|vnDk?;*Ovpi)5=9hc=r{
z&(1MbdNZj~XQJvB6Fl-_dJD|koq@K;r$`g7f7ckyT!Fyoqtf)y3cB+|1Er<_d$OhR
z*Tf9W0G-*qlK%R(oD$*as+Oko((OJe5y5c_?1~PtNqRFD!GY<LJtRJY)*xzO5y25p
zldUCKvqK`W+`(GoR?%)xq6PV6*3*MJY#TMi)<d+7hYTOHGbrBJL;BOmdstjZ$$Cq<
zCCT^{j3iT%9#}GEis=}1fG4wAI=>E`!xVwo2}{Y8#G<v*fJpSzIdfkrdSvASR<FUW
z>^f}6Ks_ci2N(+x2tWsiuiZ?!{_rpS23ut+bxU(e-%HEEVf85}UWPB_7cur=AW+-x
zFeTU^rV;&2V~u6xUUIp49LNc%&?SJ;%U)KAAe;vHSm+P4>rAh*Yl7^IM@_FiwP$WZ
zVo)|FA)vg4#0mGBV%qRxRtAi~RK$sEb#7@b*gHI`?GSkw!ZZ#DTy{7jzN>ce>JC%w
zE5>Yt(OM}IAy0(iZF46ADbSA0=CY0~E?IoV!R%gVm};iU7hwyvub4Yy!Fa0Og=t%s
z8pQ*1#p6i};K@>+SxJAWZSqvh#<_2<Y6~_bhF8s=M`QM4)m$`euju56_fdF^X6-#p
zf2}>j4x4vl7Rjt24Nsv8H-6<At5{3q*iK5$115O}eFRVW58wp)IXtVoLF--cy&plz
z_phUTW?%|kSf5L$YtPUjjOITf%<x<`Q9Eq1H)Ek!b1ck7Lk`0{wb|%A_+mh^m(s^^
zJE?JFZu?X7EylTW(%c#JOIWS1NP3yfKFUJKCxsGI*y~xLV~6XJIs-M->5N7b{T59h
z!=R)zn{CIGd9EB<kxF-`bh33g6?G+a01muUlHFvYMX59B3Gn|Opb^x8yBD!J=m52+
z&7j}F{qY6rA$=j?A4sKpQ#wsKJrIZd$Uq@Hn{1^IA)Q*$dzp?FFQnv@?wPack9c)Y
zonb~6tB)g67-jF&V+=gxmjK%gi3IOqO@1Acd2&pP=(8B4ZTJlogr|L9o!LZR#H2yj
zGSDIXdjk)@4h~~TVRuEjS^7p8h3L0H{1yztlFtg-^wU7*3`(`r3t0J`sE6SBZ*0g1
z&}iPkfVk=pc*L8~j%cuj>SLSfb@a**=TL?Kg&qAD^w|p?Z!6mW>f_gWJXm*b2w<P0
ztsS`hHx`dHtQS%aTC)ob8N?BrM(%~|c!0Apc2R=SLEm)4=|+D*s7{7&Sb|}8SbQX&
z%B##u%9F3po$*9)e(OwG+=;7Jqu=rQ+!>pKrageXC{}iNoCRB4vN(5fE_nW8TANFg
z;d(T)F$SHgHkYY<{yAEhuWC=zk%Dke$la0=eCzWk54<UomM&eogeKNgTs>_(Lr=im
z*j#JK$uSy%;Xaem_T-ZsfJaJ)w1`R!Ig5hEc{6MqmH|tk;r=Don&WM-B+WI>=AGNP
z3pc?T^Nh2Ts1>S^EtQf|EbpN)I2&ftdsv!QEX{Ch+gT&!q|#rNwL;Ta=TEV)=o?B1
z`nbnNkFJBMX+c~H@hxkE5h-4lTx@A)A^jC-@E8y&fqsUho_AwXOvawVc{5<=v6&p}
z^U`i`D{lRFwFZmHhPm8km1!$>>T*m<*hTV)o2J?kJ#%!^f>bi6@r+HW3+WuR6X0zU
z9Ml&25pd#NvUhgUFF-vvju!4zuHXSf^UG-miTx*r)rLNxtc^+`H;B*-UKM5(3xV%z
zO!E9Ni&+F>G}8s3RU-(p32(erQ%Em?TXw~qLxA5v{}G`S_Dy~SG~WY72`zH%5llG8
zpybYg<L*)>`dO_(Hu*78I0%fD?Po<Nf(n5-##7U0&NR+rQ-iE+v>iD-pObx!v6Fs;
zfk&OuFCkE-xhNMMSp#Pwe=TTih4Iu&;l@U$&>C)!E^XXLPsG{3i{_pRH|Gqm#~-kf
zaDxB_F8-aEPMINYJUtJ#4f{DEPi}aoq?Kw~Si!Qun_Vxn&vpb%wZ>zj^0mNxAuo8U
zwTJ3jSQKn9z>b4?H4e`k0*@i%slmaDkDQU`PKcWTrf~*Aj@Dzrs?Hauk#vG;b{P|B
zgfB?07h$~8a0n(hYR39XLM1_AY8G9x*ddpkeZDeoqM!@XBsB7jKR0e7t}jNe#VOOg
z*`~SG$RMbM?+vmATow`mW?wBEp%C3`PhJWIJ3Dt%;jTGsy^I58=Tk{;2TV6ZGkwF2
ziy)<*rd&5w<t_m~glV(C_$k`>K9V{d@B=_S^SgV*Jg5sBb?`J`0q+7Acon9%eQJsP
zY*<aK+(#qq6t}2R4({op(p@y#jtsDh7KAU*0`v^1$Wx(QAvFPhfsO?xc>KG_f9B+p
zrO3wUtbJd|uR)3-WJ5#kEzn{~=%EDBZRkl#y3AQAwP@^B<RI!!O<}EY=*1w^?6!v=
z{)O;wMNEf(W1-nh6*S59QAEOjikLbt#()rV+<eFZ?1pl-(EvTS2ANnu44^l+jO9Yd
zgY>kvg+}Q){sUyd0N^+N4`kXwF+SC}z$4}%TtZ{c2ScG_aC?pmm8}x4kTfae-S+0O
zDIJbqqbhL9L9P}W1HIrnJQRyy?UYoNu`ca1KwsWb?P2W;=mLdWhYZkNK($bt==KI_
z;7%y@97-HyPx9IP{yZ_RyjWPgz`b#ZIIhYion7{H#&<r}`E2L2ytn1K^tHnxtF7B+
zTgE#d3pWpVBf<q65#R~`4(r8o*Oh^*gC40~Y)fGC3h~hbb6db~k=r@mE+N7*=$sNY
ztu}YD?K{9;YULV_IXH{UGP6U>3?kOb9ZAit?^MAD#{owh(%BI30LB8N@(QO<Q`!l?
zLo=O}RY)0jxeeN2E-W-VJy@tT+)P8mvQ=;GDC_t^2ew->u)`U|2p=OyGE&RK7!iA#
zHso>?@heZ@sL4)8mJPynqd~<OAk;o~lVxIn57OXsob@o|hF8in1ehJGZ-^W~^shwF
zmlxs@a^=!@;Y96$ccZQ3;LcBJwCh!%b#EKYv4eY>*e<!<MJ3yT)zVD11S)lKPPdAL
z>}+I5(9>{-{!fe(Wq!D<%ik%DyCRcsU)*Gv<#z0JCzcsbrP#v{BBLd29uKYO+yrvs
z*DQTM7D*=%s$-Gj368~;;kZ6zm1jE|c`Mw=i?z8K(syIOkp4aPs+5Pc5J3+hK<<PY
zxE=|kV^Y|`iFn!2P@rn^viQpQ$^>tMSA;iyI)Owt?h^(n?+adnee`D-7H28$unh*{
z<JmT3Y?kC@i*HlxMUz*Iyq3r5B9F$!(@uY(kPkQ7f(1W#C9fXIV<vy_*<e=2<YU?C
zh+P4zm*oe+JCGkZ9n7g4v13;oRuW0H-a6oy8zwBU`ZkW^`;k>_Y^1s)uhZbjeP$k#
zMA<n>aJ9909a%YGqDbi3u0M;6Gb{u9E|F1dI^PgVu;kpihQ1RE%^={wA1qX-WbBou
zhP-S$C)&k0xgCbq=Cj%BkRJobF=z7F#gm8{frt46fdCBV7wy8m{77lx^4Cj>mK`l#
zo%eH_^zbF9Tbsyf1_k1sFOV`N)9^#WCQS)t3NLbv*B8u#ml<9ev7l=Q)cB^r)~%O0
z)(-Z9^qcTra)F7U;NUwK?r?!15h#Sck`SYCLpvAJL?;O(v=ySd&TXgsBQ(|NUM?P4
z_WFUcyrcWeZD4d^Q&OaHOt;$n$81)ZVv#UwM%c3qTYo%e6085m_sF6NTWAW*gvn8x
zzcL=qe`a%qu(Qg=g<ZMGqlKZI2)^C~7Dyv5a>B+ydmYU>6bRM5dx<^x<*;(?G<owW
zS=1i{1+~$mC#m!#)tqF9<P6#*ZAOg2CQZ6hIEw_F7SFJ!=5{+(EQFdQO{IaoHd?)q
zc0!~+U6-2EihX0II{x|HS!^2z{abAZ5AYOjcjmMqb71RP_87C*@eeW9(rs-r5<CXm
zOUm{mj)T<6f2rGrU2rDu&Zg(Vxj@-qJAQLEBm>eS?6mrQF`mA)ixTYQ)WIh%kjYEm
z#`0{db1##rz|C%7e)8onQZ&NX!`T~0>aQTzLMz`5+zB@UW1O3Q61y3adIFqL1A2vH
zE79KNVK!r@wW&10&H{G8p=`37X&QFUjo++rEZd$V=>B|!*Q`|NmTflHYGV&A-xT(O
z{TDdj%ShqsjIozwA*$C!uhr?6%Zwr)$Ly6RT=v_x1{*~y1V+2RGX#}f>cylCtggl#
zDh~Tr!L247D()03_lozLdxRgmZagbSA?|Dx7Tc?EoX*`{i?JO(*e0IKlf};9D<Y63
zUN3-R^bCY$MxNMc6W482dj#A~FIsKVyf3DT+mYPh2evq+nya|U61C=otkDUp@Js7x
zJv{h&(NPJn^*S2qlxo3vKw4OvuGU{JJGymsp8D_Sfi=L}&;jAkJ^(_ZUh?jP)=*`x
z;w2x!F^+ZcJ~0-QBO5v|>{9y>rpmKmoSYwhznNy8r@VZY|K{_wU>{!`fvH_0a&|ys
z4?yCk8}bl})%I`G_`M<kw+V9Q+SYh+{vZHv8cjSTO~b;0`hK`O>xJT+6Bz1k@M636
zwztB&9;`bFuQCEw5M3weAW*9l+x1h#UND3+xI9?*BC7OWY3d~?2tbG**0r!Ua6HBu
z$h1itLoCU29$N-1-$K8Ov3jA|Zh;%tDsG46DdpjL4P?w2sK9?gEbVJ25SVp;#3`)Q
z3>Tp-bKbT#q){#W`U7H4A`M+6<lTF=W&0bYObpZh{N5}fw;pe7KDd{@kxTRR?7(H_
zU@gGnA-uo$`D|vb$)P|VTwK9MpbOl0i2ZzqY&c=^)^;x2<gsMYw{+53_R7~9!a7BE
z#DAG2Xn8K_^_kEf4u-3;z`u@RmCrWe7U2f-GWfTJA)B2P--+$T=-OJn;`?B6#ROmZ
zV7u(6%5@x4Ykg*#1u-4pt2ui)R(rQyhWg{D{B@v*lD3U@*=-YF=U55YU06Gwft-C&
zvb!y0vw7D&jvXqg^#^TGdKW-0V}<WR(73x?B*rfn#hBavfGpxyVFvK&*-P6vhBMSI
z66N2mLQwb_@Bl=YYmP92AU`lxe~iWJZJ^0&_j2I(f}<SC0fzw|CxDp;{aJhcBFBHc
zY4eYB3fka&^y?Pj@WC+{K`6~M9`4!VJq4_)8EDYyfb4H8n<=~|ix<8hWWnkKIGzL1
zlxqRwhCCGhQrpARtESuTDaF>+T<t*0Ce`F7OW*t=E`fHI@54SqW%1XwlJ6vR$quXm
zG!(ln02Nwlrm~ZC8&`T$v6$gXYNk6kZ}vBNK|)jv4nCk4NyM8u4TCoGJl~87L4>Bk
z+bMG7-(?*I$A0S-zZkPjyuM5v%@dGg3t2fCW0w&dh55>o6N{h^^lV@^7{Xzdxl$IV
z0Z!j3t^^z4n=HND+-zw#{wh%{f&b_PNbVt;yP3YBLuM>J#EDWE<6u`uce9{7&K0wE
z0S@oUwRJ#S=fJ30+RCo5u$-#`;?GK>SAaWpC-vPpDuj(4EjsyP45(@^{W~6Y#heEB
zadqw3+As?qMKC}}MJTM`ykmMraa%x)T_%5@bwk+N*g+iaSi@P7aM*?Kc(;aPiYBVK
zfF+PUHmW$OciWDcfk$H@69>DV_eS{VxN@3)ky*4jL|)`)>ObmU!%p($yJ#YU`fo#b
zLkt=XLqAxPOJXm`RC)wtQ-PU)_x=J-h!XJ-T)aN78299(c`pO+@+`&T9Bo*L&CHq!
z#v-05ZWnWAPQw`eEC<*P_c}6yIDxCs4NA&I6xNK$EHLsFB+?)zK;;G&Vji={4ZHae
z`gjjR@cWoy!9xk-V&WA<nzNr5;6XUo!OK1YEDKhnq_?!iZ*BJnYB@cFE@sAmn!&kr
zNHWh8Z`s1mr82bM%+q4xIL{YQ8kjS|oi*SD&9cHD#RSgjzLvJ0ghcO;Ac>%!42EWP
zuvreS$$Jc&5-6Gq`VQD^7LqT}UBIT*Ei}=NGeKo77tkas{4JCOs}2&X@dYu@)+9#N
zB3+NFJ_E<1e8dl}i|8R7Kd}cEWWk29ZK1E>El}p8g_NjYhO;U_9NPjvnkX!U@1KnD
z(;FyW&#zhA899!}oCk;RJRt7CHf$~xQ%#5w?(Lw&olxE7oZ`TfUKfo&ymAJDh(}ja
z?o~>*BHb}u(jDieyOGvFcQ}DAC0l5;vlFzux%Ee{P!?jpP-?1ZxQm(dz!UuI%YBuG
zAwHXrF>r#gYX#=X<{I`aHf5o77`Q$w{A<K9E6ik{^iyWDz|`wl%u8*EgS#9vIoWW!
zo*bz(Iz&GB3|z%B4PGQpQT0CIc&GkT=(o~G3V%M%Ww8N_KK68dM*#TS%dBFf0#Rd-
z-e3rLDQfq@69|JCLT~qP+P3X}2ky-3eb8{_vZV-rZ8U_}Ru~XOb_aOv5)dic{p;p7
z@tdFtY@Bt~0RYZjERukhUbnjphu9D{0G`E8f?T2XTejMuz(%sJ8#3~cn#jr7n_0~p
zv?!c~0KAE_ZbuwxDcy@u6$j$jslIw2%+rU&XnkpEb2sH~p;`4bdJ#@_nO4w)+ZlA>
zI+#zK9{Vjb&9OSaOV%xPcRgn^poLU@dJs;sEp#%be(Fm1e#qfm1|M(zm}v^Rs&J8T
zRPf$<rO#CBbPmN<?m|u!O$aBiJrE8I)|tCAbCCqP?(d#}9Eu7Nx#vNkTc{!MvFgzd
zUaZ(ogEmv9H61=%c2;}>GX@DDd%v?aAYK7}3uCFZEz^c9_0sL|<sz5yLQ_WolUoTB
zrJj7dI8=;)F*4J606-0M5j&n4wR~*L%^))(+>$G>^@k$Slu9Faf`A+5bZ!mcfL=->
zmRv6o^6>HABP*uT?1Xt0i?e#y64F`u-H<QnZr1pFL17U4qSaJ{(;Pea;2kSy4#dEb
z+>nx43{^j@;zA8YI<k{W^Svt)`TX0UMG+AA27<g2@pgoEX-Z0E@s8d-R8>e5nmhfl
zT9<QX1X6s(wQxIW5UTlMlLl54T;W#9@CAE9;Jruwx^sIc&PC9p`4B5`NOZC31l2hX
zmaMy5JRWGRLwsDfhqG>ng1x^QH%`#6eY+qee<&8sYy)eS;xBhd6KFitwr}bvNk6ab
z)MQ$RbFEhTCe8=IN30V`Vtu)2nhuU;ky1la{$=s8cn=~HChuqLMy9kU=D~?^80+1}
zlBC8hZ35MFA<hTt1$9lQ`5*>yuoy=$!QyvIr||e~>E0{yCtIPRg0DixSHlPajzJP5
zL{$dW)u&s<`3G-cZILs`#+@F>15u7UI5^;S+Qj*z7-<c>YCfFmVFv~Rs31PLwI4!I
z_g+Lsry^y@5(;fDgA%3V18Hmu?|?133u&yAK&j$W@!K|}Z>+;<S0HWzO~qhs;%xav
zkCcAxJ!Eyjq4bsexVx#j5+;AFmDMoLp@vN+iwE0m;)7-4*R4Su6=WX{+;=z}f!MJf
zYU>%U8v<Ed2$AqnI^D(G0ebz|yl#lG*N~2lG}1Jlub4&U?}sBFyP&qCk>1Q6`c@10
zGIFlGJ)-VS>62JaJc7o<r_(I*Z!MMKSo9E=D3yhCg?Ii5Tjl}GEXcNfBy)zwZI)(V
zZWr6U()iwkYzT}<vjNk*rEm_|vd9I3P04D7M;#|cMyJG$12ag$On+Lp(1-)jEEq<o
zuwwIjDA&8{3^dK!#AuJxpwn5E8k8pKL)gb^WQ(2e?52mdgq8c!)V3a<Nd#7jM5LHP
zhVB3v9x9<nkVWOp5#4kVKJ)LffnEeP@DSbA?5z7s7WkvMm`(*c4!sZ4)38Ne{}qU^
zZ7>yjVJDn{NZ%7{|CHXwqP_?>^m4=#^^5}BnOkFYa6Tc!cvUKxOw)F3H7ic+31FTO
zR?ZDbt;|Q5M$ddhy<BB}1_;m&-4Ul&%)4N$Ae9wi0Vj=L1XF@j!EkiPM2{da3wt1?
z^EnutDb#|Nz(zCm^Rc&0HW&)*r>!xB(|64DUl{Q&fQ(H+Yy_Oj0r7Q#GdgKM{PNSo
zjWc&e>yQy}j8^B`_~t%tk{P8F{x>U*9Xk<SObwTh1H9(T*@kC)nmscVd;YTUpM8$i
zG>|6_9uG=c#VF31WwCm*hen+c@+ZP(^+>PtQq>ryWq9He1wHQ{EsCE{McBL^nqEoJ
z%iIboAJR=?tzHCjW~7AeZ1~{|+)pCm2m->A2de{;%LJ=joc+icC`E`Er*XvIBw7L^
zvN?d1pfpP$=Of4WVe~)-j!Z*hV~KE@Ov#o!r~t0engWrr6#LCCQUplLAn@a+(AT#M
zOS_ycdy1KC23-`z{?c}2qS3i-c$oIUQGu!Xb7h(31}FheW9)ymPKI?9b}=Nw!R2tt
zK?jBgslH)XFgpm>ijLNwlneL`Bh>i_fM9@i3;>4#>%uBX0zeuXO1GNi(kESkm2zMu
z0yT(9>yXiiqbXntJ9c<4)?qLhW1Sn63N=PoMh4I%GSFx6Dc#5g7)UXK68h{Ph##T{
zTjzqwB}~0It8ant)&qZ;azVHdi5B@i&gUKJ1Y1dTbsuNHIPhQ?T*z{jw~KQs;LRAz
zN^GE&s*i9w82OMaTJME=VvgvWwFan_XTqxI9VuP38Y;N8i%Pd}E{pqQxZZD&&rlL_
z3meyT*-WBG?h;cGZ~(8$jhl*y^i^r<Wq4y2WrzobzvOHKwDAC(a-~R#`f+!H<okjR
z!$Ec=EpKmr1P7JO>^Sp7L<9F>R{#mW9gB^Sei9p!o>%_;AQs|jnO}^%wiC1Cb48Lq
zNBYL~YGj`I+dOb8=Zep5Vh;b8DXqFLJ#t;jzmDupQPOSdG6k~(+h>WMa>OH{$znx{
z%Q)`19&QvI(b-_2p|CdG%&S0aqkZH$(imzB_Uu5W1r7@iNV7Z#JDSIb^_;X>lyof3
zk>al-QVIt!{BzKP5qf}%Qf=;loG)V$UTw%OgQg5bcgqhs$|1gsAz<8)w^J~=;DLkC
z^F>3aaGZig74PzL#OOP9I;`NIW9)Fsey8q2<XXH9lQPJ%K;T^MVqH))$T>C~$jbo*
zAs2YDfs*Zs?fV-9jSgcmsQmWxI0h1GcgT)X<_;yfk+Zna4IowD!P%YCNH)?Xr1-c&
zK~=?PkiN%>Jj0<|$_Ltn*J5(yh>6@UUK!OZTtL<oM?y|V8REH#ovX2m>2K@^zQIY3
z!%pBBQORf;qqm5pRb8)^{2;uU<v0+{J81gLGK*M=6kMChBywD=8!cUudo1(0o^tRb
zqy^^`z!?jvKOH1x5HeOorpl8X=Xeu39jB|qZ0dnY>0G$0)G)2(VP@6B)gZrvwHxeu
z4&8hod?_*T`5xKS1&yG#WpPJ2<Y($>J_g53uPD?aMzMkolR6#b0&8<rFDIuUP>UIF
zL--KqQQMg7O~-l**(HnPwElhAt>AOs(U8Z9V!TNf=Yu5$!Xb->9!IMqhy$piO_ruy
z7VUD6zqJ9mc&)hY747A4&^-<l@^Qv#-vxHAmaRL+yHUAIx`@#x0UInd(gjhn0CrLe
zd#ND(z>j|lrpqCc5;Jo2;cAaP)M{kIaI}-1nurLlYnjQ>!(kxhTm*++@jnd}m+ruM
z%`o<Y%_3ri-#Xo!bT_bVe?nq*x<mZl@!jn70wCx!Zv<V^F$srF-O|b{tV_+|K;P|-
zhvii^IO*%$@EGbUIaE-@zK1*b=@b5fG^5Eq7e|pKH`nraGQ<-N#VIC}8^;Qj+Pkrw
z!UiTS0>z=m{|0&lEXHi4g>T%R1J9_OW5jveOXO_{va_|cMa+<LuTv6MTzyN7{9s4G
z;(+Kq;s?%$;WnPkiNK$Uz|X{p!U12TcgxrVqj2ItD&kSW?^=3FW^bz!U3Jp5OXfx@
z*0BQ^s`CUp(%hU^X%bYdwJn_ya>aK6;H|APr+0FeBm@F<1a`X%OLm)-cs&mq5<aFe
z0yUA|WbqITFsRhXy@DKxb!GL0;atdRT5n*#Ccnl0X1GtMW9i!(WbZ37B7+Oy*;xl{
zTD|Al#nK!IQSA0uP9-d-;n3>Z0`(u6n($qcFp$ii0tmKh9gTz-Bk8dJ*i*}~XuxfV
zdML3_SK_8ocNL<MPxu#!wr-53ro}stpTRK~5|%xP^Ugr9NLW6OTw#f!lyV?;KuSU)
zQa(Jq1~r8aZ>5PmEzsmR`Reu*#4e5EamFZoGXRt_Efkcy8vK5?GW|z#{PxNIJh=Q3
zM90|;d{zb|xR?DEnOUDNC3h}ja_}c0kTBgAoJ=V@1AERsQ~&*E7SjNrc2}^Wwe^Px
z1g+#?5RL^Siv_7pBQeUh%sd&cuX9*LVO(Jm!8Y;jY|#<)p9B+iNngX4Mtu8n>9%Ho
zcKQ|f$3z^I_vT$LL*^{YX_klq%X3xF3U9&^n1X1l7?T<ISe9^QwqfJ8Ksyl~J>sS1
z^1j6{E)XRwZgi{zN%iJ!*&dM{FLIYxPUfV`3-C3_Z9#t%c-SQ@JQC5_I^4xx_D@}W
z$Z{Wz1TxjSWzOlZGE4ban7&6dwgml%8mlVgF7``*3IhT`KS;jt?hcJKE^34Poen;P
z8HWe!-3S7|hR@&3LS7;^3#r=U*jLwt0EZ<plx@PovO)ukz_JuJB!`JcKpzNYL+=T~
zJFt}QtQU!nE=S1Ef0^CkOGi16l_G1gSuE#R_SX7l@mlyI&Om?Kc%&M+?3@rfRBtiP
zSOBvKnh!pnvp2x1$?y~SKu-!dqsigjwUo_8*v*C$uwz_sT)owii4*fc4cJ-W)?-7v
z5#c-Mz^z3(1|H|{kvu?kPC*iTo`Qs`*|G;{6a=1E!%peNhihmwlfEBVR&t<8x{o$o
zJ&vJ--hNg1ks%5eh959xu)hI&J#fvL1(sOyW#e;5NQX36hjn!H4nyE#aJNl#hkggY
zo{JY|c)cve!@3IwWn^ZQA+H|fX3U&AQCL1VB~HzdCR}=|0qihtI{lY_JE9h#>5c~R
zq%5BFwyyMgS9%bc*4cFaba)6a2L19pi|rvO4ZQByCSQv!2YzQJC`f<k3I3BwaWm*$
ze+$s=Ip0D^o_n^&XNj{8X5Isw4{;j(EY^^P-XV;S!jH~h#&O_7F?vG!FEGfF<(SFo
zrkqK!h0RrjQ3vg0;|jW54I4JoSYqB2mqeZy@eQLBUVOU%c873aM<9SlTY>EpgV46%
za`TD(#SN9nZ;R_~7lHXmN={((9HMtv<QXeiW#5RzR+z>c4U1Xu^3e$#G?(8(0z;Tm
z>~L!@&OSxR7=)mZLnX*r-Op)vv+*eq+$ARHr`p6jz)&Z8yb=__dmJm^e-6|ltXZ?~
z30Aj<!VM$50ffi5U_J1?8UH?7yN|rNl+ug@V9cR62dDdXiDeG~r!KNmT>Czo)a&t4
zA{cm;sYtj{4xr&93^<~8wrl~@#LDu3IO|!;Xg6rDFj`i_PR90jgvx{Q!6g(2muxnS
zKbW!uHd|;GzJ}6<V;7LmMj7slOBk?U;KZ<ZI~YHVGkm@YCnY#Z_`0RDq0%2dx{e3O
zQS+8XB)=Q?H9>!<X#v+4qspZDUxa%=2E`9xnWEo*UNC497BnbukQ~f}9TApO-8*_@
zq-YLK%ciwJCO$?Ew}|e+`=_vCz}Cgag+WLdq^46QlgmuUiju@<5-sJkqz6I>t))T&
zVs<=R_C@K#o)m~Fsgh%XlffXMq$ielK~MDs<&K~iym0XOR$;<Qz71-!2}{rCSU0de
z#34o_DXyy6gwx(Q12OOf(wfb`T1xBi2$_6CTu60>^R2}}(@yk!ydwxVJ2cNj;8;ky
zc%d;~@?S?-lRT+VChLnG&*8MABOS*1_AE-ch}4!D`~i#^IF10aECTf!@j)zn5Xvcc
zhiGjf-DO2;c#w}s-et|iA!o>hyQ~>d87+Ux5YsZ0>=CcojWlbdEeJ;|`)~X>aOish
z$RHY}g;(--BQqDc94Zs{=Sc~d9&Kd1iNDar>g{nbT;q-id#Tak>mZq6B{+31dXUj`
zu9=;x;Ji{Z&T%Blf6kuAV!lD13q3Wlo2m<$)xaN*!<&@hYOr)P$aMcc=8BPer@5>H
z&O-)SWiC6WTp|r7&X*=;_E2F9pWF7AT<%7Ldc<=mZwt+^ig{f>FPRnyU}I_xRUm`6
zcHrl2W@Ct%PlGb#?)br_Odvs>0Zznbe2<2^fR+Js8{vW?^XzQArVNc84v3xMA1l<6
zE5DQkhWwQZ*fYT(>me#A+z;1cLRsLGvgxUlPfbQ5SgbSH_D1J3*|K;=mj4LkO>hMz
zb4U(WS}<?IF|qb-;O{BeONXNYj&o@n*gjiIqrz6sZ@dn;jyPl!XZ5#vi!E;CZX*Ub
z6uvuaHbmbOTVWo1g}<SmPl!*z421tQvnf3ynLTns0NV5wX<zJR?1kgwCpaJF)aL!<
zxquJ$O$#7aQ={v_$!laY9NKI~rtwB|2U-XsQv+$c6QJRm#mhKfx?4``{$a;+qGL*f
z_qm`x&M2q@VFEd;u}l2ch>zg3iq(%2oyMogAWM)92A<OqY<nokVMk765|)OxWf7x&
z0D_54Y<c6mEb!@;FWrKys#-TJN<J^*FZ+}78%PwJ*dqy+Mov-uN1V=yZSKfw>ww0Q
zmScG|nZp}noJh)BBxl>QGG|>{;%%6NnE0X>;XMaIf7AUS;*`j0*9VRFa2EJrXO59M
zBFszgLb%r*@|=g*48)=IJOfR)QZBnOF@$6mj_klW5rdBwi2Xg~V8Zt!n_og~D)eK}
z2|{P}!cvWcSAOK*V}veoN$fu>9QUWBGMLG4@{8^l_***cXBiH~Dp<A&hSri0iemU+
zf`|gbEd+(4EN&)F=HPp1yHNvA%R$6~CEF!2G217e%t9uE|KNdx2aYebCGJO@JNDvI
zII8s3TN58Z$I{)GIW?;aX-*u+71O(z7?B$_y)lE<T!m8~AI-6Z%3cH4d$6r3eVNWK
z-m78-h4c_cHPCk97ae&%*hWJ!8W9LI96)B9EV}&xD1~j<n9e1Q`2JUza%coc>ZWrV
zpalvU)Xfucec+|G{gVC?7+E5|?6Y83wY2VfM@wEK7y~B<6@S7Fj_WKz;^6CI#?lUN
zW=5{G=yH0KNAg`pe6aoF9sEZ=AdCU3_>6RV5HTwz$j3SbrMEL1tn-9}sTCSGh!iGa
ztwFbx2BWgtydXVufjI;EejCJ7{IX&Y7<&3ncY;)Y)%K<(2(LqUb*5v5_%F>oywvg=
z%pi%U!9O^h1SP8xxP!xfIG6^qhOCptv^KEiCaOa?8_H#kyG<-BN)~4jEh@CycTJPN
zhO@JsnbK-LK&ykVq`A_9KOOj&)$tzxwt3<I-FAE%YhvzYABESOoP{(4_E%8#&Hxb*
zCisnqPYc3*iH=JS3U5wTTYJzF3^v1#uG$65rv%4<CR~bdgk;;z=_Jym%gnhFpnX5z
z6il5DPa3dHoc(o=7`GDpmIeI*6G4{lD8`Agr$u&KPF2+ttRNwm;KFSFY~XO{bX<$v
zTqw|Mw!S%=51(^XG`K%Au?_N#KadA%=zb_i<ly^2``|Qz+<gH9V$~g*4;;Vn9Mc4d
zhTTu13fNz~gXwPI>3}7`pI^f>{-O}_06RP1wz{P)v7sPV4CW&E7+k~QduDoLIFYVZ
z6mUd32_Xl%tvA>zn(&p0Aub(qma_2<l#*dMLyS*&4cCjD#}W9fK$gboWd0rku!E2s
z?m~ocGtTnCH|Jts>fl3#{3a9xs0#<nfcKB;q<>{b3+=$|4k5;P8eG^#gAjAq;Q&uI
zJj=-Ey2$TCQJ+LZdaH!x@o?DA#o^s#E6~$I546xMJ%7Y9)yLi+`4D}RgR$5a8;<3y
z(m4f{Z{dnU<QLuT3Xt91xfOw=pqR-%aee|vI1UHk0^ao0dOCoeIunj~f)$X}V-qtc
z`=P;LBeBj%*#IFy<!&qMM7k90-UDqo^H$!$OmY%jd%KUf1%g>Ujh(_|EW#I>bQosf
zc?Z(}p|5~TvPFe>!5TN%|C)zMEMn=17>9$iI|KB{7UcDt0^biG)GFjuVh#ZLvdi}M
zlw^X*SQgW;X6P288qymFUYsbnMfmp2;Zv_Q=IPm%u&M(BelzBT94toect=of*q_r_
z+2Q4Z2qf09ccw5)e$sKE?f;PX?(tDo_x`upYtV)F3)XTA-~=Xu69`Htz$9@e8PqdC
z0yz_y2%SJs9700U5Q4xYfZ73}dcq}Y2S~(51+@c0wLw5_pipg8tUajE+Gz3AqQa>S
zkVu^8{oNCyz5Gs}*Ylizp4Y==X7*?Az4mSGwZ7NS7Y0%>unB^T(DMQ2!tM@Cyjyi*
zHqIR8(NuN!euy1No~V353@*&tcq!Z)BlBhj%o*ccdm}D$6^BBaY&vS@e58k!{85C8
z%ltWJSro%=VkMC=w6-MAXIcCiLU2*y&to>y&PRf)qP+D(b&I)m4fkE$_YPg<OK!19
zl;8EkHhP$hm}WJ1rGy1IzoNS(V)cGjEjzBR$(0*9sa}oY7T&oM&#&t_l_hy>ydryQ
zkK@oMR0wO$UWUV0FY<%!=i8x&^Y#!rB{vf*AmNw+6_`VUzX*uE9eAN;*Gt+6FF8QB
z216%zm|T10QF91=n-;EszAYZk%{_l#Xi`7W*F>XDgdi_?mJ}}Dzd^j4k(T$7n1b`0
z^xiWXcB#Ht<QwHa(&Lz+h&ARoHSR6tdR@jQl(JUR5F6y}VZ0rGjQ%HD+mTj@!D6pw
zHIsM-Po%QeH0jmk#$mLe0VhLH)0m_H;yEduWv#(QgR;d8Lw-DOk`A0ShQu&k_(Fk@
z&sP;A<ilGj)VQ9K;NvE_q>FK%SuUBukta4~LN`Nb`M4u`J~Ly`%wn5@^_$2aC{s5c
z+bl|CXta;v2+IONiiEKz`*`A8m>@Z1XpV1UzHgYUx^F)&kq5ZaoSmwI6cA#q8zQYT
zUIw+<7HZPY)tDUzpOYb{7XfaN-I6laCK~3oY_sX$&TY}x2rne)Fk-egsilqdj_6TL
zFV=*Tj2ro=#F`WH-LFB$C{-nv&$;OSxlfA|V1R#^x2*|9{M`NVDd^s0Lbs9%TDeDf
z84`mC=?oIn#lt|3!57T7OOnN>QHs)5B_cI6AH*+?idKf3==~B3R=Zsk-$lFS0bNBB
z&=C|7`r+I;yxT!_H<kf^uvO%LqM};4B)qL?#EW@RdE@4g1#3ltA^g|6Vf86v3`4Q#
z-vY_4SeiDWlBMigC6^ql)_spkKSD0VN*A1;A!FAKxL@Zrmpl|UA9wkhMDUZTl|kw%
z<cN8jo2GpciH4hS==+0a*>)^$q=+Z0frzD>m~x27lyPH{Zu(-3cTw&8*$iQ2yV6Bh
zODIm4QTXBparo4hMV=s(A1l*<V`3R=Xsyif@5G(yAWRq|HbefMUX@I=7!Ht&$4B+@
zhO^?7!QF6KX$(Dz96R;bi+FQyU#rsmu6szv)ylhFjqwMACnVBryq_G&A_)z!tF7GA
z-{T^@Z81TRWxPxtBtVDiBCK(x*p#=CDCkyCVH)WFbStJmgd0eItI26fWYp%aKgVeJ
zuKci7Z{{YUHJY{hVT@Z4C`gQz`ZKPV$7u>f^pHamMaVmo=Y~R7VnmYIu@G&AFO*S?
z9t0?0KgS)soxm)QI$N`tlsEjGjELP~{URvQ8yH8{7LXk!(YDp<l0%|<Mw?=_`Z*G1
z?oLDkm~xnilP0pww&>r6k!U2gFME!HqxQSo)V*tYOnN2>PI)T58b>Ho+6a%b$JD=}
z-$O>=j&@&2dE!)bh^Rz(Aphf#<++lR(IBzGM1YOxP<e?mo3ThlI99QDm}Y~Uj~?Xp
zABf5G2wlClv2m-q8aVj0uZ6_B)#X_t7}0mIieE(s+1!{~`I;D5uutuvd(ycjC~jUj
zX1F`0qleu0aO;^0Upq**=^PGFuKGx?{Uz4^Eizv;MM_Js#;Dm6b|nU7nz(QD2dhcg
za7TFTsh&Elh1mj6C9GK{2N?t5whHM1=~kQt-EXn`@F*F$h(wL*Hwx%eG9p&zRb^-h
zgWR#Rywc)IAXJCPg^!Pcx(c_0f?g3_iVpu4^n+$(D`Gom_Y9)upff}+n5cSDZC^@u
zkS-tUt<~mRT<jSH`d57|8Axv2+k|~q6wLKZ>n&T@ky+mu(^Y^DsA`T!Xc~dttc@(l
zBBHGH!Y}lYoZ9GuEV1TZ?6=-EY<QP-aAB?;jQ;`M>f_5!YY;^g^MWu^_U7#2Uv?CH
zfic45jta#G1JI#tSb6dBF&{z=Z1KUt`r0CXarj;>F4+6r=`9#^xhok5GBa98Qi|I`
z_gNNEIV|1!(7Yh(?evoGWZ_PUh?WzW7K?;qZF*V>R%YJfgyN&VrdD<LV#1%W&sGOo
zWWd4#fu$=-?_I*(x`tc)0-sgxI^`&BecX(!Vj!vDWx)+>e|Csil!Cz>QC-J8iaQk<
zR|sH+A{3BIa}}Y(Exy1}p9J`e>8PF|JP@f1?MO3jJ4@D4n|`@O6>qoFWSDk6o7#Cs
zSd`uCaN%lmc}tmzkB=Aq^5V#*S8@=4cn!Y0FZwhlQDtoV_}~uJ>qMZ{$51LZ2vu09
z`-j?IAnWVex|W(^--1n;{+fBNq2!$^y&+P9@<a@f(GdzYkz$8M$o$YGDJeLA5N;il
zIi{(Juq#g_a<VN3J;$3eEBWW4$VH_)`R5edgZQ-@2T$`pmqA(`b}a^0=_L_7rT7}e
z$y+?^1oLxknfWGfSdb<XgZAwi*+$w|X#U4VCouH@9&m%$oMj3}sJaSekZdpAf0K7?
z%K}Js^B9CMV=!0Rl?_W|V-y;O)<6x42%6)Y5$J%jGqTdNpF)f|p~IW@wvY@{{ZJHz
zr1Y0x)Q~qT3ER$ykGY?mo1-l#1V<!N%QISyN045ztw8QlYpAAm@6&JUSt9;%3lpUi
zf5g3z_YZ$g|248t|9#eHhkOc)0d^)HJp4-7b^CsHQe&(T8kb~`eBL999}nYXtcf@z
zo{Mm%$Q*U*B5}TrnuqNyRLe{kj0B_6Kv=s1?N|=$pJ)Cc=Ag`)r7rdiYTq-+C!#C;
zW|{j}V&mu9EKL**)lOy(_FO_MS=l1O?{JljiyS7v=+Tck!|{;_QH!0w6^CO5Itimh
zJ%nI>&Rq!3-Fpb6uW=V_VWHX`&Qw>Y+O?0wGo0X!x**8=24z%YglmM(Z8-93w3Sm0
z#ZUDOPF3Pdzd6<PZ%*}5=myGE%S9(5k+)C@DvTRrLt2LD>vu2^p<wkZ#zq%|9}|a~
z*l1KHER#ukBzmo+Vqj;oIbtJfpJmc#o^59gE2p|b6~oDF_k5XOjp1j^nBF~IB+08J
z`$eMpvf<Zr=)T#Ib2gJ&KpKI{?gZkBld#G#mo3WM%v0Gdw_s^wb^%$;CF04LPZrdT
zaVDZ<>4?2OQ%GDut-I2ZRiy5Hhxj~n)R=MSSpwq4WG9A##RRkuJOW=Gkw$PDkke8K
z51d~bn(hu}YRO}#(-N}?AqGFbUzno?dSv;<TK9A6*@Wsy#IBtqPH<|RKY?((2)6N>
z8L?FKCmRX;+(X?E*(|IRX|o}59=ZToED2k&NQ;_KB~<oSk2CzF4#O5q@<gK=iF8z{
zH*dr533X5&UV|pA3(QB0_p8d?kllu5tQp`B5(c9@2P#(?V{kAqB!qbu%Na??#z|H=
zoiI{_bgjN?eJ9qZgcWsl!3GI6z16S0dFqy35vV!nRTmQAd%*(Xc15k!<3AyWJRtQ4
zkezyue-GgyPpwKonpk|=cMxsl8M(zIE=jxuT1W;n;pQ9(#VF59wHGxt`2xP+ih>Ms
zRAwjEo0*xL;4@-ok3DUSJ*$3DFKP#o9-PG-A_9b===YLQW-4ccfEO2cXA5!k1$hB1
zlZ5?W>d}PR?N^fFHQJY-t?i@?4UL8H`9A#?QH4In>@w7b(fOO0??=-n&NngGkrbCu
zJYFOXI6Q7r>ltRUHV5CUMQ~sY5=Z(xy_y^8XeGVkzOoeWJfV`2H+`7wflP{4v`K$%
z>P59pO#$AO#(DDUB^p08tj*ZuYV3K@mRpgm(;?1S14j>&IJT`>*cYD{NgMlwH4(N4
z8MZB&m0LZ{o<bzw#WLKIor;mjD51T@$-+WT?$W&7*5_$H(?tw#hy-KC*jO-Iw>qLx
zYn~91C)OS(lPXCze#mJjONXNuB7wezDWG&y2r1Mrbfm#yqBlw&`Y@I5F?0Ck4(6<9
z+=@mXn^w{uAw=uAC_JS|z))!V2Tv1<I0P9~rIhhj#GYT+-}pVnEuZt<VKHJ~u|j!|
zOW4G%9v}8*m=RkuO~NYn)y^5I#*Md*B)qCZsd!utEkY9^${e43VL2nW%5c!tUqJ+A
zfMXR%s4!aD^6YfwnZqt3AWfdbyO%sY&?+hzXB8?7!y&&$gcYI>u)!`xAbzL&>|}uL
z{+(G#0-#&S^@-k-{Co`ORKe&so<Sg@10^SY^YZ+a7#>8~G5QL79`PbSI8KC*e>mf*
zj1_%&<?xT(;0Uh>+_Pb&&@gbLIEm{CZy?6Elw3i$QwKWW(2)dTk!m<*{Kv(fd6L6O
z?1M`*t0h8(pyqrsTz=tv5Wb9i#DdJP#iC)xn<aLF-T7Th4$aMel~=D^$5staf^h3$
zd_ia|p=428mokotz~V^!Ks29Wr*Nf&r$vpw8YG?}4bcOkQ@ckZ--kMK$tEJMf<VL2
zXeL~Lda%Iws|{jDjZcUuoUn_v3AwifCmP!gwYXDFU#o73Q_os~g_rsnmgh*13KD+4
zUEM-{GPJaQQAX?*|MOth%->#-rWUNk>M)Upjv7Kc+q>A6k8+-qqeHU@HYuWZi-T;!
z#qdx|K4R?{xnINpA4|Y2YQ=B~3F$smNU|Z3Lgt7jAKX$uu1ONRl;iyk0atA}Vh{Kt
zU&#Q1Rlbp_Br)%2ufr0f&9m*{C@%riY42k`GlYCqYI?oC1;ZF%9qQ^8de_8e{l+lq
zIw5z+yN27jl4jW@EQSOjLPiowlw^vRqu$jK{m7)xMXtc==rWSJ#z&2GB2>;RtTFfH
zP5lZ}3Xj8nLYFjW>qdtj==F|!9!KVAuh+#4UH%SyT!ch=?OrGaW{LgdMn~F^=mV40
zU7zq=B*n(?PZZZ9(dvCAE$N2p_JeBnel?QOr%AVtb+%`FS9_n}1+Q&9jM1?{d~DiD
zud%*R^FvR{1iYE}FQf*D+fW)pfjUfn{mvI;6fZF5p1&JgL%3+rSldYTml+d`)dt36
z+bCm|p~^agP0NM)+rWHI&-0jfm1G3?>6CWN%9C~F+I}BBM$acDDr)3(y<Gmdcd9rH
zIDvtBJ{3=fOg8Z4b}|x#jmce4%X(FNoPap4AhfjL#c4mAzT4l-L#COtlqFcqd$v<o
zy$lm~i9Wmf;FPLt$tR2d6_3PCmgQZ>&ZLc^NX>3S5*tH`{3i?vZF<B*ffl-f?!Te#
z{S6BtKbr%Ing>shq)m}x_;}##+tEzZ86+HjRB-3y;OCPA2;2PMmvwG^xkz`sfz}0E
z(YEr7tEovImadbBW_<hCeQ^hg7~F1(>zWrnh2Z800U~EA7owf%=shHIGTb8!REyPa
z=^W%$50>y%i)t%ZgnR{R#&#pQqndb5s6TWlGpHjKnR|5IRI>t)$2(l+F@Cvqi-dbz
z!YG!fKa)E^t}ZE2E-FwxZ88^zMixmjYzX6knAsU_DiU4#VX@_i7Z2hUMjvaK<g>!<
z8p7WS3`(S*i-~NZ+ekYn)m9Kn7rMtKUiiBJ=I?Bg!w8Wd-0@tJ+2;HihYnOuoX047
zgK#s~8EG-&wwQiyeoFn01MZ_nO3cVRUyzcV_1KOXMOm+ABpHLw>#MV76lE;T$b1}Z
z;lo84nZ}?lepZ+>*CU$Lc1C7C@>%B02gFliYSeXf&~LubNQ35%X)s<Gjxnf|`{4n@
z-Jtvua3QzWuMg&7mCD1L#6OZC2l*n2nB#vTk*tSt_yt$L^)h5QRsg9Zl$ipLO=yDH
z<ZH{O0@_Bar<PJz!svI7K+C>FeAJd<B}<Gzh>1^)X*GG{o5aYLWuu-{ts_((<#4sH
zEv$W&6yYGCu2w{i#MYJA;DnWZC=8zY_M<vnK7VafWrp37PANS@x4op)7<Jy!ig)RC
z@=waQKWSzb<WDI`C+(7f2;=K@C!}vbXs>+SBH|(}WMlT$buz8Nk;=<5WMd@qpqY^!
zSx&tp$w$n7Uah8&g+p!}OcJ?*iUob1Zn{N{Dkif;{e`J^Wv%;RrBfx{LLGrS)C$+{
z4^jD#Mj5U%aD=Ow!fB97tSe@mrH9q9@z~spA#8FhKP8|V>c~S^1^d;_so@f&X3EDL
z$9hD{u_#EXl0|?(gAiVRn3VKXSutg;>R(FTjGr+;lM^hH(_r$`3frhMvyNz;6^iL&
zPM#W^Y9*~%scTm|*0+=(p4VY##*<K}x+I4uCWUbjYDrD*Z&{(BINh0mUcnudq=j+n
ztx#uM$@>^ndUjlod-c{>dx}s`l+g_^c{kT4wx<woVAa{7xv?Ga?5sT_?-H2>eK*qP
zxprzysCS4!!d7mSHV1a9Gd26wLr621oq)VOqJ3@6M9%DIoQGd~tZoie7U?2A$*eSH
zs|B#-9;0_yG*=sFb~BfLS+30JS9`D#6hrZYfNSXvSUn~2=G3<!<bTOkm2KYUkyTK2
zqZp;YxJ4TNrw!nu`iBO#{e6pn3#_X&zHjC9F&g~iDP8CJc6$WZ#ZTuqoDLZ}oQ{^$
zk(9vyd%J)8*tGVyi*)D)-0{}=N-_ogyO(DMQ^;qE5K_4fJ*Z6bA?WX~{03jTmgII+
z4jx05BzVa7B2>!m*A@#SCSCUizm6J1RcZ%$wrA$GquviBAO@S29<+}bZ?dDm<k9|~
z$NxlvW1Tcp#xsrt3A{jKD-6eQ{2jY1j*Bc>xt{}2ErkrT!Wl#iZ!AR2tZOzNNKj;!
z5khode1pr1rB{_9(37Z!TG0)o$?#9$UciT~w*Dtf#^WXAscbZ|toHH7|Fiai>;Fkx
zr~d}~rY%$>$+G%?(UzRQar?h$=I_t6*T!{npKKi>nOFb)TJF;~Fpr<UCim%*jU<3u
z*YQ7LGU1U^c8T1l|GEA6efrzB;`iwS_Dx%aM*NTG`mfuP^XESO&&~Y(o#2v5%DCFE
z&M;|jGCa(7SEd@HC~wt)$)BOjaNMOHqRXC2@EpJ_Cs)qhT3VQOP?pGRvIew_U&<1_
zhtCil6Hx}mjWLMLU*XmG-XRL-6)G8~$WNqGLxL<U;!Bem8dov4?qU=S<vqdw{QN0X
zrsgAX<YPDbK^{g7(eHwvqCl>Z3FcGGRpC&wI>(_pnUELf*=|w$YPJ)}R<3$sS&ozw
z8o+Of1cU?hfN%>jg&q^rc%&$B*BGb%Kod&kI9fu6k#!oE4t!6N&M)`B$pxnxrllqO
zjZ92T#HLw%D|qO+Lv-ZJw`~qCz&U~1oX|ku61zFcHJNW_SVar`M!z%Nzx34?exzmS
zERpH3zTq8$`wr%3T0^l!$_lxI>*ReQc8pm~WT$vGha@E2LS$-SE@rKSj#DkT{Unm)
z3cuO(2qri?A!L*s_^!Vxcx$PiB&Llki-!_<R-PCn4)80k#Qlnx;Ml0I-%Y!R<mWa1
zxHW)?>%Uz*^6f>-!24|gDZOV`;tIaC#3@Ix<B8&bbAxFgyWQ@Z1eFqU)ba(!bOajP
zt?DsIYTHR7>i(A(Bj2+7U(fIS3&^)uvG&4Vstmgm!5ENZJH^M+%j0o*_gK0Ua+BEM
zE<chX<M0yf6PM>^NXl_P@xWMMQJD=jZzTp(l>G!)f>hsJNMf)cc)TYJ=eZXiYNbX5
zPOO_!y{cfly2)>(br^d{LrTJ`P^fE~$6yPyM^M_b!(6Klg;$a7+Kj*effUny86pe=
z1NomqTl*69DcBb}W)4PV!*Bi$daGw9y@il(!i_Ou6&S9wG79-IjaFmoBjy(#d3TwZ
zr4s2Lb1GCYj{*P)o#kOxM52TUmP)8^3n@#FNgj2P8wr$NW&0jQ05AfT6RLrmo7@=K
z4<W--j>!~)oQjE^J!UxYlFq{PXSd?V?<=H^9tLtt3?wa`PFLB9nvBRU)=)nNfltKk
zTJugG$vV;&x7H5@f`lD}15@EgJp%bps0?<8CNXdso;MRkWbEC6OJX6OI`~|L@WmK(
z7E?(nHy0V>isC?6T@lmanE~N<#f=ecl2_<b>bpSLg9m%+TIIxQoJa1muz3(F9Et>u
z(Ps#{KT1zyd#YWz5ybSEBB6`a>~r^8)vwq`J3oRjg`q`9!Y6URO<>g$Vn1Or<FS7c
z3hMc_Mg|=+i}TFpK?Z#btFm7({_VUd(4KVBTGDZXlic#H?dVKZeRvgbJ`!moGJcI|
zW`{AG68JEeyO$YIwp03-YjC0yX31@?Pzwn4KO*mTC~tvEAwFAs!r}%<!yhIh^l;R(
z3%_hc<(@JZoMGsWtjE8$?I3YG*z+P!GOh;o@=05XWF-8X@ME#hE^ahuZzU~capF|v
zA{40(XHF#FY*oFEMA$;@Bj6o->2~a;o-roo3#|2Ph><q$h9OtFKKT`up%{6Kgl>6S
zb|5W~Wl4<1$pBJ{I)wS|=Lw$Mvxg&(FuZwM%chucR1qD0?E)P=psvadR-TMTqi@X&
zI9ppWa$F9jbNiE7EjE|Bf9YD1|2{klH9~N#L?ib~UF#fz*{RpINdyIp+12o;FP?;f
zK*kkZjy&Y=Iu^@_2b~|ultg}uO2{cyBtJRTmL|c0mUedT89W_}k5AXfrNX7{km#iB
zH4LeWz~o-X!Y`}R<8Z2(U-BANVF>s>=I2~VwCUx^&XKT&Z4%^Ar#y`+9eeg0tz<6<
z=NKePA`@0h0Z&+aAP0betME89p87+z=(I6NS{j0+{QU`-n5xjb$w`3(>{fJXv79o4
z)h5T0Bt6&xF`HU)Sn_wo!0wkCZ8xXhG%{Pb$!n6uAwZZzb#kGl`+s|@5tyUMryuD_
zmXk*Gt4XGFC*y2CVGQUbj_tlq+gS9PZ2_IX+N)<)ZOlmWI)_iDU+ai#9#O^X*GGMo
zx9DweMrQdc=WoSphO6DO9AGn`nAU>Ad<h2+;$~aFq0$wS#K#5unfRN<hyGpvrZTME
z`oLCvK>2D2J``K&^FxMaWdvGk^o-#}8HD%awvN=5bF<VnyD&1h*F|Np;5k^IfzSa)
zmkUeQ=IwPDvq)%f(DS48)j;4N_iiJD=gJB!m_f#A>1EgLg5PGRQind$b5{##VbNjC
zb4daFU>OybxZ6%dzbp_3!~jooB~jjKYBE8^4ca+7@|oyQGnsvc95NXUNemX>ap<k+
z8yL!ogTgrJ#vMjpJ=S=7fiGu}#4T+RGj)C*x1yvj-eL{?fEasj6_4q^U<U~X>yU2_
z$!twJRG-wOpnbUb;%nT|W;q>(<=JJ`dNmot*Bw#!CT?1oF@+wXPeQM4`7kvqy}Ld7
zq_3-hh>5B^Jcx`Tcjs*pFDtesL?IajM#TaoOY<s<IDfHYJ~46g&?+&$Lh^c5YLZ%X
zT$J&?8>QJ2+2m-v-p0~o8qHV9`$%aB&!5dpXQnXNW?E);+>@8Y)HS7T627~aXlkOE
zWc0nVn240hPN6l?8`ZMof6Hq!mw0fa5@r2HYR42}awjPG$Qn(`f8{6iNlmh<B4~MW
zH`xhE1{T@L{A9JHQ%rAvWNHw9FS#A}^}+ANXuzC`f}<aWwxvv6bL1qyADf>Q#vbwI
z*?XXX_*0VE^fZ<}Qf*5o$h}W+jNl0}l-W+$D<2t$-DM+}rb>28fgw5<`N-EfD(AAo
z;FdIQ6Kq*txZuHn6rd#H4G{^MaB11=Dn-nvA2*k*W@hWvF;ny~wP-PfRK$3bD7sPv
zS9rL-*r)DZ$@EdF=B$JSpi+!f5CIG<uB>|-Mv7?=bwNfZ^G$yvMdfy4=6I6`2O__#
z8Rt)lM7Tt1*-$`F{h$vMoF0ZL0s9_2+81pcV{aWXl&}^~WsiPY^^S2<2<z6Z;cysk
zlSAHv5q0fGoU3|l$vheQ1Ns_0Ox!92i}dPXK)IUGvkf}1H;n0U4JAls!xs-fq*b6}
zUUJ=-rpnr<+<TDur1$bn%3@aL6}j4^%q%I;GYaCLule-M?tjM56A)=+nqR!%62beO
z6+Hx#$pklN)`U6i!mifdf4l1$3}NCa`b=FTS`#<G_-~}7K`{%bie)lvWZTT;dQYWf
zUPlHQiB^i9#3kcjC-{<pEN56e&ozTuroa5qW}dKXBm>SE2$ec;5LCBHPIg?Ptfe$N
z7Y4!8cqXu&b?uSB!w)}!(Wyj8GB0;DO@(_kAOVxT{coga7CiX|p4K2-Hjz3NI&MxU
z4g`L|HJhWhajJFEenRE8J7r+#l{%70q<M70HJDzE>1X4H@9Q1p3YeMB)~yG0P5MZ8
zRz)^<wa^#>jU(RNFdS^?M9a3%$GioH3LTdB0z>XV@)+lu#*JOet?!{-#AdUc-1W!q
zZ-wV?9wG+{1)+m;5f2z^U?66wX~S$vLr7e;_0#mi!6KI7MIf?6Pe~E{sD3^}Up-Z}
zzl2zAUJ^7Y9T<f`Rvr5^?GCP3RlP$UqD<`yj>yc>x8!R=%c1*c>?qLJ5_Rd0WkQaI
zy${i|7kZ|QB(rW>pT0F)=O2A!sBx<>aUcsyrPfq=w?gjssu1&QJ5T7V%h}UYfT!;r
zHS~}!fi&R6+B&#ExdQqRA$|yOS2Y+@=-lSQr$i4x@cUj26E6YYO=TbBF*m$jqMd$^
z3Ms|}fn#NQs2DuG)I+e+jAPk!x=MZL6v`D{%NCChYcd9R4jXgmS5N8+Gt<n^c%5d6
z6LEGC%G<E#Q+f3-cGykV=C@H=c@6QFEl5V3ANw<eRr^T1n~g6Ima(O#u~AhuaskN$
zxu-1$PLt+S!Ch=0@wr%LuWg`0w~6OmJwfJ#gcn>z<+E5h1ps-fL4AkKP4uiUTM9Se
zP6%szGgF6tOkKW@J}h1Ja!1{32w!cG8MKf9MR189;hMr$#0C3F&dSS=JjlFBa1!}r
znX~K7q}Bzk6~^6PDHlg*p8GjdMkxl?r6~q95FKHCr^LW0$3hhG-h?7;S4omhw?R$*
zM5Q{6@5i_a`sx|n`_k>AqR6xb>$)7GZ_H&z0)bLh^obf&+@w|D6E#@AzyFCEQmke*
zDtj>zJ}MC*s&I<T`GEs-w-}p^cwBm`@pVF%9;t^<or)@4yFWi)EZrOA5V#+Zq~#7$
z8HGY9B0IdchJXTw>(<hyX%E!$9*5KPb+I9vF(%V_D9@G3y!wu)%1iTprBY=WL>xqC
z;wq(l*(G#;i2;j5XTTX&mXl6_4EUd~KP0*k2HSfOmGDI-uE3fgXAl?%EzBV4@3+^h
zwCc&m3ge6pTRTfl?i($_sv#a}#3*J?H+ZQQC-VTbcsViuUSItXMKut@h2i8HNG}V~
z#_53+qSV3WH}RkSMb!{yMR*Y}^L)fBX9+U`vv-Yt^&CAkUj(aHtc)KrpedS4SD5yq
zv7VfITtJEr8h9<7M5epUh*XRT2Hsd539ru5g`_jxx=Q-#rJ@H6jNMu^DKO5ZD_eLt
zHT#ozRgJ{2NC{uH)iF4r`?gO?Mp3{uNCjXM_B-AaTe|x5QnGD?J7}{W7pP<?*cdbc
z=Fy(2Jx%oBPzk#sbTH9BpF&DJZEm7fj2h-Gc(bnZl;taOORw^{D=@OayLG7tJ<FYu
z$>>6=GgcTJ+{hl+`xgrTWHL8!8n3-)mBXi|;?(xfEl_!fv*D0LKp+9<dze<BFuk)N
z_;#x=<eM(W5Q*!->4-aslu<r^kodY9+QDgFt!M2hX+jQXyt9qRvsgEjj-OsarVwF6
zXuH?LfCV492X7QQsAq~Q6Jjttu<jhQVhCN0S%DY3FlD%VddhIwsFz=sg*vA+nc!$_
z8}f@lr@Se)49I>6tqi|$Rw{eH&TH?t5@896U?@eNRf{=GMy>pCC_AcODhQU}U#60%
z=EYqver6)C=IqRtCUxCL%r0ro%a<GWGZoANGTzB)I&|e5suFU@6%&UxPg*!JOpYt0
z&EGrYKF9dpq9@9Yyu26<BS&rv!#X+x2C>D3t!?Cz%B?{*TwJ(3oe6Ba%H&oC_smOY
zdNNa5QuN6;#Oo&2+#TtO)EnNMO^^$(mF`HF=B{TxB!NjU#4Lcu*9%I45<2689prT3
zg!1X;NtJrXDkdx$*by%;@jC;7p<8!IpqE$l)64wn@=`tVTn<5~X(z(L$fuNqh&o+&
zPZ6dla@`J4Z8&O-?5JZL3<aBo1?6f-Aak{^jzn%Gsik>%t@bl-y{ZOmTRrtDBIN9k
z6BWVftWcrd`G|Pdiv-me=Aaf*2E9~>D{6T#Ype7(grsP?>MJkXh?u0$;od8s5980O
zxm*~&4}6$7vasW^zIg#xsN2dP`agaWvXp|mhu2#seMOHu8ftDch*u;}w9FSaZtfW5
zGt4t`?Y(I<-dM0jw;?xjqCLML&W<h69}x`1M0E6I*l>0%@EKWW)KYZQi)9Fu(+H}|
zVn>@>NQ{#?;7SNn|LJ*iUBPvR{aiUr2E639Os!sA+(+DLLt@6T?tg@|@)seBxHkDA
zW)o`_pN_L^MqGosL3$<*g&<L>;jl<9a8h1_00M_YpN?lqaSB9o$SQ&kjBG#k1Bkpm
z=@UpQv%)+E9HG^n%}|<^u8}0YaGeBT!9spjD#CG~7?0<I-8^11tzDg<sL11_QzdNN
z82NzE#9yPczeP_pN{duB#fF5_>oDo8c%L0=bg?=b>V)+(RSdrGWB&aTLl^>O+eO6^
zQGEi$*cW9mgN17!1*^$4JrBk>n?S0FFbRG^Gw-wY&YJzR*5D*wqyB*Y)<7WJrMXd4
z_(3+}uHMkB(kSdwObRZ-hrQG)Irg6yrRG+70?}|Ztg2T^Iginl=)fuX8|D|OrTi1a
zlchFuyeH7Ar0f`qV2$xI%nqjU1e2Wzc*)3vYRNkk*@Y^EsfiNok0H~(CG#F8>WML3
zCmFPh(9NYFrEHCI2!}j^;eTG#Ax73eAWm~9P+6I}hVPOK=WYmF@{+a8q7<oG&K9pF
ztnjK?l&7M0Foj)yMS9SU4sKK`)Y*mD3r<iEceff)ils%)Gf;)hpuXgN`jO$#_Q{;<
zvfYyJC2?gEwS)s0FCKc^z?e}K)9*{inR^Bs<BK%67Y%1itsBLm7+36!0Ay@&FX6HY
zYIw1liV>x(4$wnEjl#i3vbqE|OX@IEach&R!Rn13NL&mu-fu2CLTxv!86K7I{>OH?
zxma|5#NosT>7OuDZR1*h4FS6vwn9i6|8bX_iY0<p9?O>$1zL-5;FpNfZZ*qt(JpqA
zSnFORIcD!Mwmp+j3^Dy{Jea+-E0;wXKFeQcT^4Pv;~3A&@w*#*h4VPVHjOm?@9ySs
zL&keZ;9;$PM=<|SYWAO$q*<JK+>~$a-NI=c=N`S!^Wgb5(C8}uCvB9pJFCp)!el57
z<DKDcCb4Jfw_Ld>lh|yC3;ml<t^R|(PvMP*;K9g=xdI{VwI8VnoADMLQ0<)U-Mdjf
zpH^!*-mf{~FL)YqF>APh#A3@~Vr|M3f?>-&jh%C)d#6}MP^6!qMTCtctoTQ8Id+*C
zNBF0E$Vx0<XRY<t3-j$37gNTC*;LFg^7(eiy+Pk%cz7EYBuj+_h!<Khe9twKVp-|p
zt3k)c%@-;(h2e%=Xqi{kD|i@W)W8f@c^W(5_)O;`PKqR87=>9$H00e1lhpGC7_+J8
z@eX!t!n*iLa`FeNcf$)V!etXBCITy4Foj8&!ys0%1u@h^cG20j^Fb&W-c30}a4bB=
zGbNt^o%D*0<M?XPL+hvsCIclll*_QGBqLOREW?B@Zj#KkAFK?_5@iT7Cf3=iaW@+s
zSl%F1_rvrcVPwVgBonDGd9KZ^GN_U1K7c706RZ(9b23d=Qaj-+d?dz=k^~{|&y^U!
zc^`2`krpmLJ|O!Q4GT)mlqT0hWU_odsrgx6UXq|^oIww)T#J>y<$)X|HcD&_I-w(h
z2y7D+4TO>zVfG9WD5o(+AvTtGokK{_;U`zqmyPO0LQ5bdm((+Y){Jah`6T}hX}PM8
zwLmhY!?;n@yWSpNajCN4Fp`jsg;&f!><MhkYA``kpHB~pE{EZ7*Md*EO|ZgAB)~PL
zlWKbyS&Un_MyW-|<qkNr$YPx$xYa$E?d7J~Qt!(a9wVeH<=7%Z%3zYvvLmCXlb_rX
zg(LG*yjMY{%Mb0ZHD%hFq?REidtMr*Lk;H`UspC|VzQNrmfY$=3}cJy?PE!*T4}kg
z82RwqpO#NzW69~-_ZYFTOy)6RKUckW!So>{M~>EPQhGcX?wLSBNaf5jB)o;QjnP~;
z7#eCH9_Yiv-U|K_*N+Yz<gF%4o2*N!oZuomLI}CB=v)RDO3p3Fz?jaef@TDHMBgC#
z2T3=*5ouninojX}GBhQW)`Q8ROgeX_2zpE0<+efUooebZ>NZjhxOLp|*g@52pNM_^
zQl+m#frO}1Sw^v+YN^{b7-{?-@)=+PwHO^R3R7s6V8GuKb7#IFRzTFH9EmQJAHmg?
zVf{EA9Bn0*S>T2CW1$pLju`X1$O%nB4EN@|Vua)R+n-cl$+Lb9wPy9gaMy$4Xw<l9
z&T8l0?v0o)s~e?Wjv0wlh+OhbTMHVAZp1fXHE?17YfEFH0L8+QFRycKdBXS)ITTU%
zwiW45W0L(pG)2|q9SNuE7OHF4NI{ot$MZ>TS?#Qn)ZHqg&d2i^Hs1<z$NLb+M3;@V
zn$$BsL$E9|;bjPBEjkSnWXy%}G|J%Ila*P43bP$edFu!U4$_Q7;xS6kw1)Kv`}(`y
zCnc(1bfc=;jc%!1XNqbFBhTD5ycZJmA_Zd>b^h*<OyZS=_z;=@R!)Nj4UI@rNpu@x
zD8caeN=B`AwMjla9NR**-Pgf=SxV=^%M3~4cR-h&*7ljOaUZ-(O5`9c^NuWC8+kbL
z2ofpXe$glLM$Qy1nGV@~P|V=M^H#VWZQ(gJZjB6a{hM|o1$61=B#1q{s3wk=A-$kb
z#918FmHM}m<K-#*klIL+3}@V-YC7e6ynGvuO8sE)c{8*6t1iocgbKwhL-1|a)br}f
z*eoNPmS4u>LdAPW1oJaNPrlQ8Pa1R2%0KKJh<{ai!I?!fFyw#5@cR|*=1);Djgd5X
z8qvUkd-~4KyExWREk4&lRJsQ4Kx)+l${;?eIo6<!BWqmoSYyOFtQ?djcM(Ao!|USR
zP2xKK0fI#roHc5ZcIA_!HeNXDSNu88G56GV2JpdmIx&mVAw)zTa4wx^)_LA`n`&IP
zcJ<qsPg7cJcx2)$y)|t!S=?``OHW||V__Xy6fXr9t6CP(;igQ{XvnLB&94>sLQTO}
zru(u(O_AXKyv?YG{ECpGwclo9xj>O$B|`^ko;*iJ*+uS9*oWbXxtf6WMQ&0bQb`Fz
zKDYjg*AC%MqIldoD@+Z`36|`L1WD&|?{wMKB~VW$J08u>$`Px8_K2e@z5}wIm*Gqt
zMoiPS_5ZL*h-5?@W~|3yw)7v@*Cy7zAZwYg?)!(edc#I%Kx|QIXPsr6r{qWU7)ET!
zw-OFz$k13(cChDwjKrkNC3viJBu$R<A-Tz&!7oPPT2gW?YkOA?p4LW@7Jfn2VDN>s
zsBhmi7I#=tdiP;=MW#k;fYeLwy@yF}+2~hctJJ}_iQ#<7Il>7=%{qw7PY_mzOY#Kn
z{An)fzewl%ACZIEs<}UvoB*CowfOXiZ(*15wBbe3p6T*@LhhC2>V{MLOk{)pV?C>w
zMAt$8j&NbiQYR^3ZtA*<eA~t9vW?hw;FYpnq7sENP6x|v8ky@zxYgEM{g!I#Cq?=g
zPH68b-NuaGTP$BA5X|Juc4?6@R&6jkY?tGdI$P68Dezwil~{8*s>?B69J5><O;{lf
zw^XzarYi4GmmDWnvI=8IZCUMLJ;E4uE?Eyqeo0+>1RF^FSl8?`ZbCflAcR!E&D;?j
zidh$v9BO{;V(&Bc6?-3DB=-=@4e8{Yo2aanoxX_tl}jD*4H3R-Cwyx|NLG;a-L}5W
zlhwK|QcmH#`<EToEtuXKq7lP>o+>=mWwu21ARdMwF20+K#Z3J<q_nmH>TzRD-3O~A
zJbN!%nDA}=5R;#IvK$2t<--$|@%TSQzZVTp^z~B6`w&;cJJe+>kVf{Jo^Ue@^Ab(7
znH?l%Myq!zxLazFm)AjX0G;Pf`#6TrQ-dULe$*jkEY%U)Ja3{Gqmec1j*?t6GF@W?
z8{5#j7QUm^PBaWgzqN<L&0^EX32><&F7PaT$P7K$x#9EY6`)({6X_UF-jvq`j1ll{
zikH`Irl5~;L_z|t*2DC5oZCD}fm%xSx@O^r6}bZ=RvyIGZ!X!bBhBSDSXyBhL>vf-
zeYim%7#wZk8NsL}(cOEj`hSmx`mo)f3}JJ9G$d@U{Du#Pyuz|F$Qut4{>x)fZzBCt
zmK{UTKI_{yLj8%uv>3Bt*0~w#YSJtTcTer|L8wc~HlsfjH5I-bV?rm=ZnB>`!!2Yv
z5tgxall48_%)}dufE6Or7~YZ=Mt7bheUG6sQ+qS#Dy#tgV|0}f;uOH1h5Ml?`<O&z
z!K2c<I@33TS17+lLXpxl7r8SqsYM_3>88I-3zolbk7Q74jLL)Og`E`>7O%!W@`IaO
zg$d|Yf?}wD$K_zGUVRVQz4sFYR7cV3BiKcQ@W`?GwUW3w0z)62{1YnP)fqoVVi=Cv
z)xh9vd}u8g4ZL_bmB4RA>|uM10}S{rbyX)br>~O~i6JD?yjLe;&<U7R+we6&|0d}I
zZNx$I8lK?dGX*2u`s<S82;w*L{;tI9PoaVi+gQF{wIQhU8fU7nmlm?x@WvPwvees4
z_S;4qBPHWMYRl4U)^=Mq5_EN^lut3<Pf%A$fM?8>gN;BYBd5z{=J@dAI>*}WPFF5@
z7W|#=vwJ7G?55qG>*Y_9)9Lj3DjC-OzDj!m|EK$$6P>=HJ|{d*H;nfMr=_Iz&2kZ|
zVVc>#zIL;3|E!Rj*2kAq=kt1}DKEh{A$I{qA9o?5n<hsMq`92-te|ULB%2>DSJ2FM
zr36{wg3C2PhxBI$IX9PUY|!O&+I{w*t1sVu2{qjKLROHyCpw);KIc%M1A<<*N~5gl
zNT+jH(B%ud0t48VL56*Uc5|qUk71_EObd=>ThlepNo!`f?*=<oZz^cHT%5eUrij3T
zovx;)mjA;aAE9WQTyl{Msn0C`#Lxm)@ZbFZIm`bW|C<xerrEg)lv%|+<G4<)hqJeC
zohi{gSxnPGmz|5`7CMJI&ER<1z-e+H*ddtWQhK1=TkZxoU9v@cHw1-zt6wU&nquVK
zE7w?BcBZhs#~c-u9x+~So69xMW%mt*@x3hIv!?~gA9PAl<3ks1B=9fj2$GdWm$BQ6
zB2<)3GSkch5zf+QcU8H}4}A7i&WIF*J}J0AHnYOIZ{|5}-pg`^j5uD<K$eR{AO8BN
za-Yk?;SbMW{>Xin?iBwsExu@GJI6_v<j*8&QGUo8z9xE|lVtIq{F&Ijv#EYj)90TZ
zME2)6JqPJ-W8&X^PwHuBZ7uCsCz<6ky%T9OjdfWU{>w2`PM<)wYm(ev{$vBdQ8<6J
zoV80;^l>J+T*FK!^$0F@c%5*kP!iX{nzf`5dA(5Vc{iJ0YS9P1>c)*e-ZWDsjps?(
z<uDuMhl?Nd-wPOaMsB3tH<=D02a)4^^T%s<sv8En?DBl+>&^l4&{bid_{QDav5~X?
zDD0@Nq(F*mC^|8so{{QIajIo~%#pAbn4<{Ox7tQib4rb1*F<@EUtDB8JTG_J<@(!C
zX<PlZW`Z1vb$k+F<wDYylW`_-9>e%{Ib9SB7&?%jPWmr(S^DtaJDq?PeaI*rk5a^_
zFh0>WmYT&5xkCQSm2w|x5~=phnq-PvW3%OZBgU=2@I9Ck1dL?7CnK%T6q@wLkF}_e
ziOQ77$Dc3C^|`Y7C(n<rdHFGJ?nKTvi}!{y%R3WrAjzp=eY0*@H!g+55qD+$a!L*_
z8E$rGmfbFkm{Sysymcwvzyv#|0mR`IJgc&?96%P4PvRS!Y4Iaci9%X7t+m}7n^|0^
zPd3MB*2`+!Ye8~23-WfaN1VJy*2`M%x04j^lx!&~PBb%3_P`jHdO6t1+6HE&?>Ol1
z6dE^qrF`77$@CM3UZ*z=y~EE9H`mJtA?@7zEZ4*oR}xW{JU))YK&%XTdTLgmw6rv5
zQkwdn!zZ29dQ7w=-%ekD>!~``9esE%E_rrNW*ldKPJ_{e9;Fhydo;a!He;2YwO-dG
zySl8QZ&sD*oOR(JL8l*<6|x&`xF)61zHNe9)JIN67XG(BcG5Lz@BhF5ZMUmWmTfo9
zQ9K6guY6cTw%6zN<#rD>rZr~s!7!>S2u$#d^CihTmhCc(I(hOu?38ZI;j}=)8ZI;-
z%koFf>m!i$a}hs5mi2KF_0)$~v$l_uA9fg}Woa3|`q}PK+iO>v(9e3leTFipczu(6
zxx7fZzM+*v?Fa%+`v6XYg5gf8ndD-a8tA)lct%?5&)+Z0^%PB@gtD8?o$GWCbh^@9
zu9Uu93qG7=4yle_lxwFOsx=7%ohd1keCmc=SBhyCFeglOrg$f&c<G)arD3P_;Y6Tf
zoQYo}aYF-Lyl~dFTepbgxC(rJ+0;5apO2ZnXY>9v<TM!uWZv|qq?pbWpS^%>O`r9_
zR4hlan(JRcQMGT@*lFg%D)nZ_y3O%@xJdrU5x>2xruIAuS!F#Dc{m)I|GaC`3)B*x
zg!L?V_m}cOxDg8(CGGZpT!_<lr~15REpmYxyUS<$H+9Dxh5=>sSfjU>2$))y<(p};
z`xo*9y9=fu3}c$JyRvDHduG@DWdXSqaCP^WoSMB>&YRf%1|Pd}3N*Hmxsb8J$FI$x
zw8<FnG`rzx{N&KGm)9N|DL>f1KO&6jb25y(R&zRLU-{YhsZG}E92({BT7QVu^Erq4
zoDNI!q6vmcMq2swGG!7?>l^BE4z-)UzJy51BK6LyefDW`m5gj`#r4b=iHT*7DCf-8
znY=9aP?dG0Qfr-@)_g8^l<YQ?&FBDj*HCg5Tsf{_4re|XZ@`5e(TdZY^2XUi`Wn+-
zA}7lO>BnozaqKSJ<?6?j1h=8|@2BR;y<Z#2Un9kSjRgC(Eb;FS>mNUot;Olq=c@SX
z#TOvi<vqh%lAmnd{T1KB`qW>eYOopq@3_!rcROs)zr*o8&-H8&-|UXBwY6Hd{S*Jc
zX&}CyJ(H~sSo}HbrJ0^JtmI$vw-9LtD1KtH@EHH)`;H4IB>-Fe<5$lXto>#KT9Qq>
zH&3=!#W(0aR2;e^e&)|`mt@m4YrE<Hc-Z&8eJb&GejY!e!`7G0D|#Cd0j4pv3(LSj
z+eGS5!p(~T13Cg~201X%jz&JjAPwJ#%`tSADknk+md&-9>bl&aYVO($q)ag#z<E%K
zZ-HP>LS-=7UFu1@RU%z3IV5~3am=#&t%uh^yboyTIl&>m_DrFy!rVU=<AgzQt}1@P
zyBu{pSY1bc09J0|?Whtm!8QpgV>hOsVMJU%^sGL)aL{wxpR-L?H(^}Duo7FNhaj~=
z9#GbfcV8lnPYxj?RHB%%Zd~ptJcav!*#AKtdVZ{#d}cKJob2Ch9xO~w?QLdjNkxQ2
z>l{fxA;zNGoj+YIS$R-wC5zlp-$Pb}dL2P4X~UM}PSw#?j4+6WOX@9W`IR_*@YYpw
z<dyk(V$8k{zd&iwY3c)5|E=hXk1@p8Z34nmG`}5o{s`squxe8>C7m}cBO~3o%?ixG
z7PR!RIR37~c8*UYhFK%2MdF6vBCrMb(5W`O3lcSp1wisBv_FEMZ9gSV7vQFO>S;{0
zPg$PVGCtk=pUPg4oiX*br!tt^$RgpHN6T%w>X$Wh(DuW13v5&}DCA1j33(Pc0g*bd
zJb~@W)0Rc)Q%hCsSyRB{f#iIktlsgF?1P7g@JRf0*Aq%<D~<V^9;wURFkeWT`oo-F
zm1vuyCR3c_OLcK-JKFv%Y145#flj%USb4;kIZMK02<z@GK7!-V{%)E+&IXoM9`B}`
zV1II}lE$mMte^yLCX~CRvtfb$l4;oEEKua%Rltrf=4R=nS2^nBlpsGN<GNGaf7g$v
zjNVLi9@|vx9KR9om{CO7WCw}P#Bk>sgVlfzs;EN5yBDw9c5*Y^#?5fkLXKDE#?VH%
zJb5ED$#r+cZThPG6Kuw2QBJkkr14G}q?b0RA8g0Y!&4=M7^mR4PQ%q{%f~%`oI~HD
z-e-JFK8t(B=rEGc8OeOAM%6(ywJqPUt5=qFl3n!zhiJul{zAeD+f+rkHVwS8j0V&z
z%F(8NkA=CB8~?#F_X#@eAEkd8Cot-L%yv&Ecx?Z!3d&YJ9f&AZ`kL7$^%E{1UkPD(
zc2#8aq{@I!GWvE-)j!jNr_!0{Ox1()@N_OEa3Xo%|D)aBh8bkuW>+h>$YR95oa96z
zp@page@Tl@IV`MFOY;6Qg^2&uUH`(npe{bNdV$nCzb84Xa$@obasQOnH+dyM@e+rZ
zk|DSZsQ;~gAZ{hAR<I`vFVF(W`u&Ogm@hvDO_`D}POAP5tI8$mZEmtjW9qw{*FS5E
zm`v)y2PIlo+M>$QwN_i@@}s*gn@@edtX`X;GrG}MAoPs<X2fh%gQ!myG6P$kL!XEY
zlUr$<re?1Vhnig_R9dBbKB|9*D|H)#V+u;8*&aMQNroEYVQBF8s`rX8Wksfm@lLk=
znYyGwRnCcT+Fq6Y&8E+(>xtisV&1#$On5ciBDII76B?MPZd}3mMeu(;Zv^dA-}v%l
z*^oHJ0|>Lwb&DnXZnqU_keJJ`e`^;u>tG;d69d>{I_|d?eu--}_zeD(my*o(Sh{4z
z8>f!4;nKuU8A56#;<M~A+jMmr@`)^UB&SpCzfbxk-hFGq;{l>VpP2So5nqkdADzV)
zHe`SOZ23X(F%Gxd`eIq2Q}8yz9*WhPMaikdqzCtkwFomSZe@(H1n;p{s*e%v2)DJh
zD5+7nl<SGckhP1UamDQkubZ`4-N>LQ!JL;^i+J>55ycu#^*lDNYQ!uqWmkGzi;zAN
z3L&8a)?%eqPKwg3msyKHXv9OWD(i7m$-Whh)W5Pwv#iB(i!H4}5=~_-ac5)>m)A?c
zG>c`8k|DaFUQvmTMGX0LG9oyyu@<4jyAFOQ0y?e55@Ob1bfOlkwKxyzeZMLps?u5v
zHcDroSI+~LrtWPNa^YaT%-Jl?Z6sq!-CM72uomyZ|LRwB>*?;Y_U=a2kEqvr)z?~_
zL)`_4lIm4IYq7WypRJlxPp*e-Ji8HYBvnk2X={=A=tRG;7Z0=+i|FirHLG4cK5QIF
zRFC%~$w#Xb)Rp>iKfiPY^+$e3`uQK1tO@lo3!D1+AIp-3k675;&;Mw)EVQw(rJuh(
zM;89TLIY=6i+_s64_RzvQ96eO{2t&50O=kU@H>F50MbD$;5fjO0MbP);26M90Hl*x
zzy|<L0Mbn?;C+Cn0HmW>z<U5s14vh~fTIA<07z%Cfd2&81|Z$V0)7jy9Y8va1-uLJ
zEP!+w3-}Gda{xqBTwww406Y&M-Npir0Q?j{I*tXr4G;y8u44gj0qg*f&SL>@0_+5k
z?qdP1051SY2eN=)1MC8jE@T030PF^kPGkYE1N;m?x{(F^3gATm=|~oE7~mxU=}H!G
z2;k=c(wQvamjKNG(w!{eAiy2~=};DM0N`Z+=~5QZ0<afAI+X?d0$?A2bSn#Z4PZY&
zk+644cX$=x6@UN~=N9k^z^edoo|BEp7W)BS1DIJ)(7OQp0Db{5qn<=X0rmp40Nh3C
zR10_+-~a$A&O<F=55PeHzmyq~U77)Y2{64Lk}v^&4sZxy8kL_c;3a^=00pE;TfmC|
zzXI^p3!50b{0!iAfPb%thgX2z0B-=~*AqP`z%GDa15B-_g17)L0JH*3saGi$uoK`-
zfV_I5C}oQs0B-^0)>HaKfGEJ*0F&#bU<SZX0geDns#l{e;CX;|04CPMAtqZq2k;vJ
zZ#`6T0z3=wF2KJ*e{KQW0e%Z`XTAEK1#AQOPk=k>mCFL20XPb9JIMzY@HD`C028G6
zt2Fu)!219Yu#B^SCV&qBa_Wh9lr4S&a10>39tvXto&-1!kW~*^ivU{zeg|OIs|*Wx
z0^s)mx7AbhTDE8e_z>Wg+IsT+ET{qK4?z2Yh-;Lswg9yO?F0Hn9NG-@5zt<smN>Kt
z=wqOlfnYR|9V0-01lj|1Fb@3~=mbzR5WJYO)#E^)0R0?@+;)K;1NtwZmw*n(p+|xK
z1oR>hOwh7bJ<z8>KLa9VUZ9OYe+JqO^hO-o0CW;)7tpWc(0ZWHfL;J<jYI2zJ_p(f
z1b>UPRR{D1&<>!t;?REpodSviL3SfsJpyzZ=%+wO;?ToD{|)p!&^vMHM?il85_W88
zX=KN>Kwknq3-oRrS_AY~pzT1vjYAIswF7MfqM)zrxEkmT&@(_s<IpOgvp`P+340h@
zg@MiiJp}}dw?IDx>Hum2`XCNH2-FGm6QE;p=mDUwfSv?`e@u3~ALu;LR-oU-p_M>g
zKu-X{7cN_^0QwrJ5$MA>v>Ye~)ByB{I24;RM=fU_-2&7WhrR|{0kj$Dqd3$Bv=V3&
z(8qD;Jkb3>5uiWDp|5}*0Qxb|i8#~=^dQjVK%c~+4xk?bJqGk&ap)XS80b-;KgFT5
zK&yc2frw<53pxX|8fYWXpW{$F&_h5QfKJAtzXGiRS`YMD9QqPyEzmlk&*RWvfPMs2
z2SjMDH2>c~4+H%N(5X0d8t4(AM}SVpp;JKr0rW7?f5)LOfa-vL1O!W#wDmdAI-s>c
z1kDTd8PIy5H9&ujLnnbY06hfM9*6!6v=L}E(3v>&DNsGoDxkA*=ube80)>Ij#i9QK
zdJO1?K-9*TBYpz(IM9PYopI;{(2s#00QxEp{ShbvbU)DfIP@{lCZLr-U2*6mpv^!l
zfWD4HZ9rRqmIKA&&>w&rfMUoy%i{vihd_-$Ujwb^mVtnt0O|r-8Haucv=!()(EV}f
z_?$$w?j}np`>cRl2XBW6WheQ);ihh(?9VK0ys29#`;>+Ho4SRvKe6!WP2ED-f3fh`
zO+7-{CoDeBBFBm!>IA@#0eXb8KLSJmdW5o%0X6~j2xT7uYzF8N%Gv<70Q3lDe*kCz
z=n=|31ZV{45z2lK@B~1QQ1&~3tpGhj*>Qj;0eXb8V*oz^=n=|30B8c}5z5{NcnY9L
zD0>g!X@DM~>?pu906jw4e*$a+=n=|(3$PuaM<{z2;8}nkq3kyR&jIuZW$yqy56~l&
z9Rc_$K#x%NHb4}hM<{y>U<W{tQ1&LkPJkYvtQFt|fF7aj*8sZ!dW5n!0CofP2xYGq
zB&x17tJkc!o$)U%-fNcgJC@enYhn`^^2T=eny*<{F}Azcbg{5<Y<I6Y&%*s<dwR`R
zEIz<uPp|0&co3kc*K`2<5TLu)sB;rOQO}I`V-LX)LfS>b3H3WE^m=YWBHMXdGyd+c
z+C$lMC0DTfrhi=f_gnw#WwoB_&`RE;t^NNu+WXf>{QuGxYBgN!qWKN_-?}&Ix$z!U
z{q`J4AQu_F^O_)3SWHFJ53bW$NkvC1#G;l;r2a-@EVjFkHtVc;aN*q?Q&pdk=G<1K
zU7t>g5c?iV%zuVVjL~PZ)8AE#S5^xDA7P)p8?s64Iv^Y?kV*-!D4EZ}x|mT)^-5wc
z<G(KB*SenxF(6#<la3kbP#wjJj64!J>Q;+|uXk#-F4JF<QbsFRc*N9mI)6%QMgCUE
zyRnmE3%}2OP|U>xcNvn>ONiQ-E=fl0O*U=ayEL8If}#90dCg;DRT2#98G)ys^QpyD
zU5ml;JQiB)N_8;j>oHS=)<0MWcLkT)W)`stMHg4LRO)q@OAgx#367>=c#|Sz3SGGk
z8(;)WiTo^`tP3R3b%1AEUG%|OQo}%Mt6<z%xK<L?Np`rhS|~6mPeOpcOMhfqJ5pm4
z`U=aKITV%T9ot<bIWOtM87(g-%^{KJ6eX0?ignv+o1vza+2DmjwCJ?Wz;yZNi#ph1
zBNf|c@cV>qrdGF8O^X=nTlCqf`c?%wRKM8!Dq*}uH)Y#Mx`;E@KI>&YyV5MMGK)RJ
zo6w{t6e1o|Ox8{CU+et&0d*e%3aMF!0|B`6sIY5eZ05)kr|y_V{^q5g9RX4nVBVOM
zYR72AEe%Z`1Uu!j&PV0JR~7!K%kZ96^C5Zhe16w7429&Sdk71+nlSR>s~q2~5@r|t
z7R%gt8M;XJ8FEs(PCGH-uJb3WROmROxgXmvCxk>^%=ae<{v9X)g_bgbR?$a(u*qIF
zX<?JSZ1O6bEXzCj@RQ`m5Qf;@GG};OGP>)Ny07~8!t?4)dQbFy{a$&B0XZoIFMhj0
z{P_q1?8uueL#H`r`##sdBGifXxcgtS8Z8#(2GwDk$(?!|b8>uLk{a2;<Jm&uXIp4D
z-zU`bczH&iP`Qb18Ev-jtDh>5Z6<ph=Qk`@4H%fWVQ3zG0#0eRV4InWQ?&)u+R))}
zG+Gy(FkMgGaF4A>Ej(_UMFjhjPJZ{=W}8hH%p-=2a0v|am22^G+2#=4cv(mI>1J1D
zN@Zo5STuF<qgZ<^gX9&d<kr4CUs6*pP4z<W@EX}|@Jn2ms^;ShNM#0KG&n{qww`HN
z5wetMQ~H=t#|S|7QB5MrK?_M(^ymX~g2cO~{2qtaz*XUCTbfD7Qdf=7Qr|g&7htl8
z4Lp(Si%X=y(vVb*E3{2b9!;??jRKj6(&vZ;A1?mb+=9q4<?%ePt3cgZ$ZDSclt;bP
zr^u73b_gUyZkg&SG}xlbcT1y}d7@t7X5l9thqjFIc1h#5(UJ4asho&8L{=WTs9_D~
zwFK|j2{WX=3sVbuCKD{ev{!1OFz4h@IqcmhcPG^~IJrH9;_^<wY4LFJtQ>PB+BM_B
z`@AJGJ1$*2ML%MlY)&DY%gO2=c`eqkWXT(xkw?!<#SqSEQzCgSo{Wv~(U;;?k+UUK
zZL}JdIs(PiLM|b|d_4T^L^b4+C6$OPFS9^$izFrL1DI_}89Co)G?7|vKX9*VpMFv(
zM6a-1Ay=&7tyv`oV+^mYg5&gC1~q6eM=8f8`&#OJX?1<63XG;+6N>03+!Tjrgxm$~
zcT#b}pGWy59SPl$Hc#FC&e6BjZG}?RA}wGg$gne(Rz_NKkreg4pncuWi66blkvS7u
z8@DP;d}*B;R1KRUIYkpQxYuctMOBUk<03La+*~KAN%5s^co{#tXkS=Y?e^POH*6+F
zWcsFew~&n$>YV0*0q2Z38}RV;VF>P@+P&QtwwpVB-Mbt9ZaeCK%69#V8R_6Omin)4
zx+_Px)qDGoKA)tDnL8Q($hy&fBS=Z93D~0_-c-&zgu4o2<$I;x=XX=%WvO@-WXWMT
z@q@u~b0-r^t_<P5rJ7UL7@stWxAofb`bDGs%pC<8R!d8mP!dXi>o)rGVj2U_s~bDM
zIiJ`!=kwD4{`t`4zdE13=hZF3h)xjyL@t}z<8JlfvXu<3pC@#wtJdh!X8$kM5-2(x
zu&Y!LziHYYm0L)O#;h7~vXOU^P@3kG%&<7g2{u1fvtP`C!~HOJ$TWa>JRCt=Xllhw
z;J|BFDY2#@z7oc#i@izE8PFBwc_qQD)}4Km`u99FBDEx?yIK0hJ$WUPGTCc<c(RNm
z7~wA_Gdfukfm<$Wzy^_QHM56JjcU74xM3$C8IHGpu+)QN2oQfdpUPoWsPA>CJGZN%
zJZq;r;Q>8@sU{CojWktgq0@O+<t0Vs-l$jCNq{XZG{(N8f5Gp?=}YqaWk+ys=`fz*
z6w&TpI{Bb}@WUc()I_6a>IaPh1d^|RmY5NHidJ)=g7Z`CMJiqRjly%{&|WQf=2}5Z
zJLQ{qsWZSFN@`Ok8S$tr?yN7x|II75giIZ>NZrQi1d_9C_n?#FjE_dM?30WkXFuMt
zYLj7-Z4EOE^U<Qt2d7TOuQQLteV5Bv7I$es0FUA}JlXkYGV)b<qs~j_b}Rde3cERG
zme8c=X#Q$D0>+$?u$ka~(xWo%GB6>Hkms^A*;m<06hd({puI27mMkRbHF2~<m{%?R
zydsfdQC+e|3dZU2gz{5vjm$+7ei&==N<+Tk%C_PoDJOb;YPconJf2F(*BsSrjTv?Z
zE5}iH9p_@PPbk<5O#e-ccT;$jA$2|e-(+!R{wSfEg6Y}Y5iA~kek!RHoMJNtKxT!<
z&9s}k*>aGl`YK&;dEjk=ObG_`c~Wc#J_}iSrL2_mw${kuJk5ccW=S;hnaqNOqH_3U
zl$WT@%XE_<f71~?Z%<{YWp3tj0&;P)+pXVwq+I2VNPU$RFYCH3%!wm)FliG`z{8ZB
zA_k$NIf;fiqU}&vrv}1AX%ss{OoDUFN{COGa`uHkCl|}n{D|w*S%LiQ>_>G=3c002
zBp<Uj&o-C*dPr3^t#3v&O-^miLE2k2jxwa9$o!x;LbybVcV8F^b773a!xe4{SedVW
zYL>hs;x;r2uzkXJK9gYC)VbzFDWm~|+NfAvyCl_~DySRbYq?csc5w)j2DN?CD(+J_
zpg(Zlq<XIjm$bUl!r%Vq9GRbThdB3ZnCb=&jBNHz)6O@GDk)tyUcWF=-pl#!x&YNI
zf?I==NP0UXbpPs#(h6gEtTHA0(GmhgHm*BxNTOLTPi-IJI~A<j3d3TRDxs)+-n5`G
zlE4qyLna3jc6pPzMy8L0<aP+@OglM83%$3z;Dv@0ZzH_p>fYU|KMB3KQ^&?KeY*W!
zdIq%oWIgT+e%93Vpi_K}bi@R|H<PQ(Q)LrW-_$*tp?nUpGy!5xblAsxmrFPEMqGyp
zjFyf=$2E$Z?{rbf@AC0@jVA?Mz7#47?q^8Lf~ikA{lBMC%H{=~3`Wl3@}^!fUbhcB
z`XS!bPO48P=Bbj-DZH;L_qZCxbm>2i@E{~LgnK}ghhuW_1nHqXEJVfG5@%7<84dUt
zj4{x`cB0q6zw@cE*|vmpu{Q;l^Q@+SG+07<WK-(AU<zq`f^d!B2?^yOivo0?G3|^_
z89~@C+E8+Z(|T<oQRW&LLrnePtbh)UDX|y%$YL8gXo}qED;O*6CyUxn&eB=UdtvlH
zI8ja7u7;&D3|Y6WP~AB}rKd{OqV!bQeWL9Xh0T!rilRdAK`6Pjm|#G-kca!J?diI2
zx<w9piD#}$-C1S{c1u5@^9I7RNMl*r$=ekmsSbxZ{08@|t&@x1j|8wWtOs!2mBY<x
zTe2S8peF{3L`3Brm(|<u)#@2yUxLOf%uu~ZjWbHS78(7|wX`#3ub@xpP%xiF|B>^9
z$VkQ)36gnyajJbw#?<Lq^Hkb+HL39Fz0c^X7IkHA2~@>bj3<l-)<i0flo$h4K_|=$
z#%<?~xeUd~zyb0A)r`^5dwj6t;i5ZcatlWa_tST{5sCOOtci$Og6XKjJx{2XSu;0L
z>X!uE@UBm>_~-7LZ847)r_V~C)jYY*RNvi|L1QH1PH<C^ii(mbOMQx|Y)ah!_oYac
zq@^La8S4|sjW-r_LReqZnIa@2&(*rU+U`$Br@F5bJNPLPC=z2Q_3)zLT_f9DRPWqo
z5wNZ%5a!SfSOV^%vlFR+Mj{eSv2h3T4JpJEWOgO;i=KCHA+qk489c~&S=O$pgJqDu
zwixAZh7|T8G$2Mha8TcNhO@tV1wjp*F*&1U`#Iw)cUescrILxzFOe9lGon!GeKpJQ
zoOet@1U*g$wY>nsU=s0CC&6(l6JD_~u~T}_#i^bWW0<;^3NLbc6`hi_T9GVOLc$5^
zp3b7QS#EZz?JPDJn4u}z26chDa^F#i$OzjZtIn>cqV>S%NDze|HB^m%*s>v}YS&SH
zYgXwN<t<dVI(9UxMQfQ2(hjJ=ZZ)J>%msUq-f<LJV?i!j;{;I_MOUazL=Bf1JW1N-
z`SMf;9@*X^e<fDx=j_LpIg4pQq!5w6)fKr9vBFJ*4&j&RN3noh)U2rp1WYwK!m51L
zuE~M1P8B30S#H~Kezk7LQ?X5dM$C)acULp{<YSw4KW&$wsVn{FOp{Dhb0#ONn?owN
zmJxBDnv;y_C&#S^AT=E$ies&GROTBab-_quXa_?-fllz>u$*cH&)#Q@<&`7a$t^X$
z+-R_n$qecW%rxD`%(HbLrW=W8@0ykV?hJ@KXDDbmD+?J<rovd|HpXz1t@t@A+P=v-
zCN#`I5K@;?*{`r!!dWgSOtH2wi(Ki6yuu8z$+9c~0A)z!wVfMZmGMf%BCI!Jpg|v=
zDRM<sAtzGPc@h>9%PO?r`Yfz_M8e1_lI@(KDNF<9g~r$}nl#}4;Z%4k1i5f3vkm9j
z&$Tx=*O_JvJ;TuwyFv?v81W`9-57ZeZNU~)CztJKZn!!27sLjMx#0)-uy9~>i5g{*
zAD1gbSZK$^bh)~gx#JXqEFnYH1VR#7_Z>f>+{^$B(+H@^K24|~@tI5yxh|Owc=*JM
zi(+{AqH3>jU5@KAvd&5}^UYl%RUp{yLPQ-J*GB!YqBEo<`LiB$oqS}J(2g0NJ6&qh
zaSRw_<0s2F%`}DXHOimGKFOiy(*C>qkV>|^Exu)SA)DpP9Eqq{0D~8yZs%?Dly5uN
z@*)GIf<Xh~CWI=rcz-Z$EhmC8Y_!FJsNig~7@>D7+cq8(bCj(()7J$T%uJn0uDo=f
zVo%{r5k3u%hbvx;UId}_(!88bn$(FiP$=tk1v(L9R0<k{aDUb5Y*JTSbiOgH%RSwg
zcs?tg-zi;|H8B{_Ok@z9+SUZ;-7RlbLhk&qXDaNAzSrpJ80uWo)d>|LXICD-eo^YV
zQ^VrDsjtnN_U-NNG-rAacW+XhNBE2}@XS<<5ytH?$(^+-r!J;JUX1+TLMbRr3Ik&K
zyd(y(vmI*wX^Yaq&&Y#?CR6qAP;*YlpO!J~Jix#XHTyJom@Uqi&KKnwu|HE?-=XH6
zX7(1nahUAbw?o}?n!AE^2(2IpazlsE^P{L->}OU_=m3J%uk5sC%aQ{!`q?Crmjv4i
zW8_(@Tr6zswJS;YWdJ1(CI;(+lwI>Q83Vd_dGG7gC&RLF7d<&YUAZ>WgNM_DdBnzD
zU64e_zpp3c)tJzwdXow(-&bQ!g|<&eDI$2;2}G@D5VK+Ya6Cb%*Az7z{?C(oWJ&2F
z*BScpAqMnS6)0;H@TWVx(R(cE5am9%9iMa|-cvH)D?f=C{kdm+ew7C~1FR(iggVEi
z;&n}yjTrL;YG$y$lv2T^!D(vRoWUvu;X_RytsJ?|JFJ$;j`A>E5A%3&&L&!W&V)m!
z*ozN2QGCdhagHC1=OD+kqCj%h^ux3vg`P*|u8glY@mye7ka8zhIUZ(Ec&#wCTtYqb
zWZc_stMwQ7#&3^HKUo6v<WzUoGNr#x&WPAt(8szli8^Ishol<TdY6ZLk}PtltleMh
zhG)K1P^^Ws;vnTOCAxs&KUoHM*-mBxDc89N2x0v~!-$p#INV;)yW{AywboS<mOARI
zb|cHWvr}>7#`KwkP1FyC#OJco&BV>YFarA|$}L&RLdCFTe-O*<{7^j3j#+aF>Xavk
zzQg!8N?u`Jea@oB?XZivkBF;gG<{xVEK3CQT~eI!QHCnagIYYk&k)fcC#btSd8`Cb
z_o4usrLF6xqtM1uEsK)k)L4?{Q@&ys%H+*5`krC9piS+_%4m)~oHAVMUDX9%cNn*y
zVcW%Q+c}jXU<&&nGaWiPxA=CYj;z|6Wwyh#M`Yu&`XVd}s~!W0^Z-}v)2kx0Yv5C<
zL3}t75}FgU@<Xh(N&2WzqF>`N1~N$bWrd3sgU`;^nRQKS7FFtG)p6n0yoDaVTx6ud
zaytx1;uFf&VY{2zv4aUQ>8x#@k)-YyNS$B0o6+-r+X;SmEKU5_T5#A()aj+$4RQlk
z5%5p!f6qTc`a$^w>G@2yep{cm`Np;cWk*YWM%yd(#Ehh1=4zBrhdFZ=gf=3uUv-SJ
zs_s>l^nWq;_Hj{`Y5%`-o}->xnfA1+31WbQ5-O&VGQbWvR*MSgqJk3WST>>v4Tw)j
zT79vkS~P3B(R6LCBwH%&-Y=SNEtZx`t={cTt?c%tO|zRyclQg(0Qdaf$2DNqw!8g)
zultYR=5k$gJ)YP3cszWL&#|Eb?r;&PZSJMCcbM?(`uLAPUr6iC^3-MZsU{K@5AejP
zWz`?u4Pj<FZ4++7%S1C>7dk6_cE+p>%vG~z&z>do*l24?2nbPVTo-&i1NnVsi)9CN
z1oo`i#)%zxK-5p#7XdXFZ_1!!{4IWPyk1g(<%`_36T3>(vi2%ge}8aEMvcud&zjlj
zmSQ}>yNLn8;d*vqT#PxQ3)0QAo#u`7*|B1RWL?W|0)EUugO)aiWPjW6okUs7?8fm0
z<JFyky!q9$SFw8{Lx;$OHoIFxZg{a~RDHCJUKwhBz$<B@a}EwjCa!~eO*TsH9>(AH
zu_iovDlUxpJvy@h4KbFH=ET0b7jTgn|H1E0kmb*W_-f5eVg+8qU|~G^W)C*v4DDL1
z6SGue7y7=h{?92gPVQJt>UcR+p6-*Z=1l5y7ehCSu)V}zA~u-*u`^GO4Mda06~m>-
zeYk*~l5Bn?+T9#6sO!m|#QpldY!P)Z0uOa~0SBjR?_%T#*5_F=?_lehB9iQVsJgPd
z*6&M7N5wJYgnw>o6o{(P8qw^>d=&!EFUv1jlrDb+<LxCu2~rBWPpg_QtlDaFm&uGy
z0!p!$nW}}gZ1_b?PwEa?cK(;{&>ib8usx&y@48R{s0ZQdKgH9qT<>0YgiiW`t*fU~
z6R~11P#-DXk50=w)a{hA3v~r9iBz+1GO<TRObW;X>-?!@Dy(~sZ~b3op}S@?JV{Ur
z!GY$7$-srVtKL+6v|U!K>KQVT4)e%CHj*9mMiOh_W^mJ=hcGY+Ex0C@YEm1t_W(v)
zxK+9I2DkQJfL2W{@2b#uGwYp+u_$}o=4TOD@>m@QW>G^+m|IeKr_Qahuh91%p@w3_
zzvWts-|Nb~u$?B-G-^M~F1@%P+%p7eKubh@Guk*+ek!RsQK(i%GmSjcYPKMrqO(Ba
z1m)=xkNLS8(K*ZPsxd#;iD!g9I!;pl4G)|MFHVH^60`1{F%ezQk>!uSZy>ppo&C&S
zNM~z;PP5`+bB(ZSM#2zsTwgB{6}d~s3nh}My~w~TngoeluiG)?Y$DqyB2mXwmDaW#
z`Zu!5lnQ+b|6tA^#Li)%p1=N#?3{yGX&=m${SND2@~HQ1jy-0iei;Mo$2LdxSNTwE
zi1CG-04Q=Zv-R~S%gjU8k9)H>$Rqo0eyL84?8-~ZHIL}?Q11Oyd6>(^hHLRFL*9!)
zBY47{je3KT6JMQmWCNxJ_^5;rIe6f|&`z2~aE%TAZsPZY2>cfRe~PJV!P-uSyakNv
zQtJu7v2KtRQ{Esniy!KnmrD}8yDO2=1sZ0ZdCj^mu~b*{k-O!Gd>Eqyo-(;}kIhZP
zNyN;@@E6FD%{F%))<}G}&4NO*jy=s)5dpzGSwDC1Gdv(8bX~T<xU7SZq77ompdHR&
ze0l;02{|Eo7l$|SczHCaqn?*N+;arLSMDTwl^h;G_JV9(#r1M6ATM=O0ItX2Pe55{
z?2^KbYIN&g^xO}?PO6oQ_VpYA3fObxK+ll`H&P_7NO`PFCwY+Ix6ZVJYbxOs@mOyI
z5lJO(w)THY<46fcyHlF$3<~=n`KH};`1Dgc)`MgB5N&+GknVPkGw85`{cxbWI8i)Q
zyOdZ}Lfi56rI9?CJvF+W6)ADn@1g3#w<nZDthjL4q02j>o~Sg{>OqAyMkbf3jEm*!
zCZRA{h<CiEnm0A^XLS>^1NQJ%cxj<}xtln#R2dc#1YiwqX9{52y0M)H7#Q33W4yyR
z3S$raNQ@klldsZ9YuSOztTa2gTWPZGMf#PpCRnCN2bwXoh^z`#G}elfCI*`9`d?)r
zxL3OpsN4c(S94xX)+5CKVg^^_9jXw&S3!2g!&G)Y3TQqVJh69l%NS+yM)<j&SuR_r
z*Fd0ZbR>x~YxIIj?I0;pgx`Be&&3SwP`hz~Gs;X>ew}u0)QKL%le)U+;pwSCpxkJo
zOREua53ny7(x+1pH_)|+2a-@Le6twNR@aExLR=$Px~U5<UZc<s$r$8fq2fRZ2T<3D
z17vn7ApOkhQ%3&dpoA+daS{+FX`Fj>*mL&#^maH{y*_m(VKT(Ep#yA6%1nzQn@GjP
z<<%tWO;5M`cnP#n4|!+>5CGBLPBo)b4;E8uV~Y8cNw62g)E87E`inX-uUj9Ya$UJg
zpc?i~r)ekXRxNar&h8iZJGuMq-oK_Lva8cxqCZ&!oTQAr_SFql7}n`N^e*c+U<Ns0
zUy1NXDO#s0cjrgae4{tNY`lTq-w-E?t{$QLvksPCNBoYN$}h#Q)z{&aXyrTG_<($J
zdTp=%f?^*G`!MW7o@`DbGFa!99j4EG^W+?~1upm-EInS8+vfek6q<vx<VImgW0uYa
zttjeji}#BUdLCKM>V}MPq7MZ!b%kJdSr&0ia`VJ*-V8Y_M2<U2F~PZ6J?B<gwxqJ`
zIr5R42xRk`*1voB2HW0$e&Z96Vg1u5-yl+7%;hh>^hHC&U-I|w{7T+wRpHn`HB}ha
z^SxzHnou1h(3bE1#&$%Le|X<H5&$Erd}qz}lS&T@{N2a*#Tlta{@ro=D&1JxWM6?_
z>py`v6r)%+_v^5)!pieo=*^1te%oQL`7P0XE4U(*BhCHJSVuzbtM%bEPa=l5TjWS<
zWY4~qJ|*GP1hGrFwwG{F*D#mM>v}|v%KyG`bS4KbyHu{c-@5A3b#lnQ4#bU9U={_v
z0mLr^qkPNM(>B=2I!qa|=x_S$^u6_#N^B>AETD;6gusi~aBtE%en#M|p8sd4==Kj(
zA{tY4dr3ked)PO8W@~fwROfh*z)gbjO=Z-RE;Lq+LrAln4H<x!NhA}Gkq-OA58W!G
zTU?;SN_|x9ZEY&16S)I>gNo_mMNB}cYAioAX4pxkI<>$D)A<hMmm?ZWS(6%rzT}o-
zq%WL>hbOfP!N^2giIdIq#D}687Mw-8P|<$e57FJT#k)>$GK#pk*+FoTp4r3m@AQ)v
zfkL?#vv8}pZapm>;Cg)OrHXKX;Pwk#`=8groOB<=|CI!FsG033HF7mR6b}A~NEGho
z(E=VJb`w8goG%$>B!D*k0ayZjB-KlqsVnlDr}rd9NcG<$kREcEwAGoq@g^oS6|W^e
z$dy?5L{3~8W!WhBo92DXOu;NU-ZDu}O;}iv8>x=iP$<*!TT?4JlH(Ll17ALj7-fKH
ziuGcGNp_hNDPFw4s}?T-b|KRT|JXqwCY{LA`o>9Pi(<@!WDP(9SpQ@O#R)fu(sCr4
zt4PeDs<fM-ne(U`;U5RBVY;Xigde(8JodKzroF;vqUVfsi|==Ar}+e0Z;S*XLhTDu
z3y2c|%s^qmj~wq4J6=zY1!7&}7U#eK5Akt}2oTYo>ubCa)PrVb!M&e$kS(hqS1hsQ
zJ9ZXk1C?-E?%X5%RWryZyGTr8Zccm*`Pbrt9VX^+%hd7bKKRuB4GjzjLx_i$$}5PX
zfv-ASj4v1)eSU01PKiOt#WIR)>Xx@H%oZOzUWHf>B}{_TR4#f4fw3BG^V2@D<~?s+
z+5KXk-o;I)`jqn7dk&(W=w;dBHvuwr;5(m|;GqZtGeK;`54O9!l0ug%Odoy%ld#g3
z@I(QwxFOyZX4Si$Dyl6JC;W|R0@eWlH^M@gk(omT)0Zy2g`#4;k#heDWEq~68$46D
z1hY&Ra*vE}?)h^ccOp?2y&wAZO~2tLR3f^=Xpf!~MLbuXny51`RnI^E9z0dU+@SW;
zLG2?*WbU#m3m`tz5Ds>$Lgnew5SMCotgzJUA4d_CP)d!g(hu5VO@p`Yeu4xlk&a8F
zB}2~5`i_59fU7-(eDQrx1iugHJuwBnpLeZC1FGPq-Mk;r)+A5LmdCibDtIwK`b3LK
zJXpv}S4(McBPoT%WUQ{lnhKjW`maad?o>;4R7Y=@`KNVqyHjR7H0??7&Eqb@71Gnw
z{^@N$7K{n;nks>|g5*+9`yMrLn1&y)ZOb+tvR5yP!kjawg*9pT_j}`Pr_M<yVTsY%
z7sN9_w#aYQN2CXL9YZh)FKJ}pUwj4)G9B^Q@jb3fb5`jQQsP20tPs}U5#O)CSX)8N
zjG(|dXC<f2y}iBcQUl)Pu@w94N4EM7VwU+HMVaSBy2V;9O*F=>^Q<0($<lLKpIw%n
zjOz!9_<KB$7U9KMoM3aW%(N^>KXQ7fGth7TS070Q9-tHhW8qfBmG;j&4HqxqO+WY^
z*X2035QdJoN6H0G4!<T!{i-N*0#*yeeo^iJ<=ZaZSj3G<^Dqp2kDKnIh}VCQ>!csY
zZrdU{G&Z4iPQ(B`zJry*{~Z%EQz?-Gy#*#S&wi$$-^vt3thgK|x{a{C-p+CPoNheH
zn1ja#pDc#)An1x)2_%<W33+4tUAJOuSZkFF=+^fsS7{{=O2_)1h1EtLO_ZN@eb<wf
zRj7%<$09=zCYa7*NuluP$(?9z2o>LTE6N)ZUkF$Et)=C=*B<)Ha_1IrFdeV8=KX`2
zhzqf?3~jUCDofQrd>+Z6FwXt!>!e|^oJPdzp)B>R)~m90#@`>h(@7F9df0<>0GXpP
z=>*q)2@w<VKqUynzMMC}&YWtL{M>4+8@^b7Tt6piO9P*PxDm4&CBu?g5Aui%SJ%p)
zdNU>6TqE1b8D>a^NkZM6+np<t=w02J$ge2G*KPKxq1~@c%L+Fis&M~Cq$D-vV(aHA
zD6ba!?37@KwziPohfD&Ls~pysb*FY<Be!r?SoB1rOAzbDD*Rz!1az1f1<}&==csg5
zEO%dF-+6{@Gv>Fauuq?3`xx85ung+`7}S1i+Ygz-9y~Fz0br3YVZkwb@-eU*3{BgL
zO(0YM=lTn37(h-*?ZxGXFu7S-MX=HAN1psGg4}-8M{o^)K-m7wCQq|=Uk>gza`ZP!
zzra!1-DlI}1Ph<ZY;sb+x}J&droGsXJep~Bgoh(eSPHRL18978eWikXwgXAcLoqDN
zRW+y`R(z;VdWu9mAbhTm_a5oJlsG;wi*C<#y+<V?kFYT4#yv<|ClHYi*c=P>adr-3
zL@bkhB$P=-%EPTf#r75oyOv8kVs$oP7h)7b%_d#mM5<bfH6IbTltMi8?bk^-o*-`f
z?gVqi1p(}xR=Io2^MIt@>HMyvk=(dS+*`<aeM{jeYyI|BnD5|zSS1&Thxz=s&u^9U
zFgO%5c%CZ1?wc>(Z*!OIagl2HTLn7AO?v?U*3%=bl0FL-W{A$KwCcYK2<%sMpVw{M
z=IS@rPy6OGe@#z#cKuoXXPZN8TmsY4ul>{KyldN*uIm^=L$<;2B$!hmyhKNg)BhXm
zAI(qaIDDz~uaOh~{v9WfU$GA_mIS(jS{df1*ZeYg-8V}(T+ZzKt}~Do1biY{!nKL`
zanoryZ9K17y|Ich6c;PqLhof)`XPeLQmj%T@p_TKsc9Wj%YLI_2e`{dy-6aBgSOJ1
z?>K$wJ3`&9Ul_74z02Dwd%MiDw%C98I)sm$n((UBjBma}x!*K<=vAZ!ys@{xS_Q4V
zR8X=0gJ@r_vqCL00n)3cqooF)!=T#nPd*Y*3nstlV~2HGrNs9K&}sD@>3Vw4?N@m8
z)_-#Q1h?SnARC}wbHDdXW88XH4NL&wMXOQ?G5=PzVk^G*$7C>J(`cg&G9&FJ=Z-W9
zq2hZIaU4w(G``HrzXS|Qlmbur#kZeA$o0iPiXHMhp7VcLhahsnUA&8Doe4f`7tgxY
zfw2H%x7D7PO%T)qiol~xtfKGyCvEx~#i^olzhVoQ0O~kVvH|H!R(Gaj$*|y(4d3op
z5DmaTxXG3#eI_{d^~{X&iLzL8N@R_rtk+x2?)M4n!nNWN?)Cug!28Rc8F_@<J7Jpw
zhLDAwJsv;85i*HosWUeHZ@gA^Yi->Ckyet7hGn3e^<g7JcQ?iVW1p;Luj?z1)v2s@
z(52xGqSXMl`9GNOb}C1%ii18%6#uIwP?BJotF!Fu)i#@c05E+Sr@F*_S9n%m4Txz1
ze~J097-kxIzzgz#Tf24sSxMR_*oCXz_VwI))?OyT%<3odL}F>`=hWaxw7b;?o6hxP
z=rrSHT}ss#%1-IWt*3OMwDaaa*_hho&7+A#?@$6G%_6q|-i)4im7jHRSy=EYiB=cx
zAHT6;dx{IxYHmRP6o^X{!8!W#GCqN|lU?8xpaty&ic|F$IEJUH+&KngHl1#L=sfi^
z<(~&@pI^P9JM}Uqjf0Btz86%=MV1(XD;%jQ$HjS_+C`j5WS7`pmQ2&b;(gsFW~B7c
z6_DG;i)(I;vs(aT_IRj4#RuDfi;hXRte{IfFcF&88M!-5092AEe5~t4MTA~=;rQ`)
zLDLG>WgfOQ0cVtKgoqblH7`F7D!9O$$f!1dolTybO+_OkTya}}M;0dJeGixm49a{r
z$u5z7V(sO+Yh{gECQgogvjqbZu}$%B5Ya}aqJZn@EDf-96vd~K1ySIBb|EBp*+&yq
zberrT2cJ_DI;}JkSUFt=g`#}17CU)$;r$TU%`xv2;NFPEM+6v5ZHP!NmDNT)@zv!Q
zMp3WygE*}D@0(m)jraM@yNm*o+_r3Q#jqt_%Lxq&1psg@Mx>S<aximB?3-lzIbxFM
zNW?YyAc1?6IEB=*yY&OAbkj-^lWeiT+$RXVASpF;tSO8EwrqnJq&(d##BHb~Ut;%m
zVL2?_^yP|inS^NwqaUs9%k&{*$s;l$z9c*{Gp1NHo3N}j6-WKK7ZwW)oP3&e)x_J9
z=zPZ?9t(_8+Ll=ttCvVO$e6`!en4uiD2a>mL^+rTK0vg@Cfu&>$5I;_r~~L#g%3x7
zST~C=<_d85DxyQJ3Yd|ksn}>%N}-Gxl7|PZn}!C|D(O@GPMUnR5tjau)f@HX!={yp
zB3*VJAE55Ms8$C|QVhU@6IH<fz*mT^(^eY86|^Lyld+Fgv+qesfn;Lq>*v<{$}@c{
zONeWb!0uRm&nf;Ej5lJ-3U}9ww6SVJN+z=JF>v5zOY_G`CW9k@_<=9vvJe3y9$R2$
z65>GuVoB4-w=Wlxv-wdVCz8m~tx36ObH9|DB>xzT<fe)3vfpphudX_7TqQ7!-A41A
z)8d0MpX=+Sms7`w@gD6*;>niQ99~*c*C_7VV&ca32D~oUZG6lwtdkOa3+|GXx)okm
za@Ba9e_UTzDp`}SWuyt}J~M8zc^>k}EHkk<$tP;u+qgxRnpj*}-j5lw)}-ffy(Gh`
z{5ZI=XJ@6qqkp(LFlqDc1UQg;7=V~~!R+Mq@tH8)Z>PYBua;luEZG@v<F9gx7euPC
zE{bIBrvN?a<k(bm_b79gqjqMucSznL>E~19+SE`PldeG0_Qa?4AclQijz>8<`A3=|
z5vJVj>bA~Eb(7%hZl&c3Sz#81%Sq?MH3-?9P;EUkA$*27?(D~~1>NP3)S>ZUMzQkD
zXMdz)tD36ku@}*Ebe?}iq;@y}B_v<uq6{7y8~X%%GyJ3Vq}VOG-!T@7ANg5(=)aO9
zZ%4vHvx)Z~DCaT9IeHinI{?)aeH{5-juVzT0+rZ-vSuA;7l0%QX)&{I5a#YVbcjJA
zJar$M*9TlU^MIacJvPRC<f=Av@SZZzS-*hV69Y5obiNvMQLVaYF?Rf|kE6xZRaCp4
zqrT{Bcx1^>jU_p$Dz6Bbu6tJcdqoRi>j#8-et`?4#VYO=KQu8B{oT(o!7|J;sKvE@
z;fG-QBBcAKZps~H*=i##vnTrf19J3N96ipWF`7NUXvrJ76Y%Fvodkxf@qQADIy2O*
zohq(VP3%-tWR|>1BIX#%6Qw=b#`*O_3>L4N+n!GkbD8Z7aju&pN+qz_q=dOKN#JSD
zs2`J28a(9#WK-7twwa2D7*AkVrS3p}MD=XPcB{xha{40t{kb^4R{vQ5;iK_egR}w{
z$47-Z^fKaD59?e~nK{r~7t}EHa*du(3hP+5B({o_ZB`8$4G6^=9mNJ|FN&k};@V$$
z08IC3`oH)onh7|LzO*-%zC=2X1Nf~qX)z`4cqCTbr8)&5zZ5gL9ZN^kQ?kUq8hSAm
zi&PCy`n~m}-o3GYgqb4}`a1Ux2{iR%{dBCq6ACPPFnG)|mM8(qZwOB^e`XPXjVs=@
zx|~xaAYyC~$$0WFIDXoCa_=6BcDi(r2WA^$)aWWp3BLfoQ=c@Of96hh&FzvSjM^1s
zz7#vS9V>y^NF*C=WLQA|z&CIdMC2Y2HEvT@#Jos`=;47PnK^A)dx&5PA{=C1w$6v4
zzGKI|ey?dGTE-EzvY=LtY2Wqsw5oBYa@4dbp`*CMbhl*XlQX<aT-$o!UL=@AT`lyS
z`o9?7QM%eLe`5jrTVQnj@<eEk49F~bWK|PW2ikW%&cKbb1A5V|Z|Ts}4}kuYX(c~Y
z%71s0Tz(pEP7c-MEiBU;2e^A5!4HJo*faW<xYDcbXLKt@`Tv6alRI12I_(eGbS8os
zU@4tt(JKq}FTg+k;q!aICd|ZjHbBF$8V9)ULmL@Yg~izZpiRA?t*gp<J%c?oz}CGz
z$L#CGO*j}AZHaicBB_c&$WJ{#><`%_b(m>w@Zz>((tZ?Rm1%P5zQ+K8Hml7D)Ihz~
z9I;>+i)ox4>UO;b1gBfg?^5v>k5PT){;k_}@kSi(`i8@%&0PC@UFN(TP%>BV*M&!5
z9Uc&(asmzdK1+!%P0wRpU(Jf@sK}Sr)^Idlz2Ox#sY^NAfK{pAiw8^)86j;du`O|X
zB>`}i_Wxzmi&p{k2=5pJN|xY3XPtRAS!H&=EV!(^Ks9qtu1Gy=k4)`>Ti=4~P;k~G
zyYm)IO(>GKeaa>PuR)T88I<#o!<z*9*jG}2nrj4<^?>y~gl6?U&nm{L4T24UG8Vg#
zdy~0mY?ugagh9BUBs$%KeqAfcm3<%R5g-lC@9h;fJU8j;9UB!VRgZTZZ=DvDEnqp=
zH4)i@n-KB4>CO8{EyX63KO!h4zpG(>Sm(5Fvgw&;>BBxXr_27ZO=2uvzz&=L1C#=t
zT;B?VhFZ`Kx=r2-;U`(@?QDovKpJ8Tu$CmsE&%iPM{HP4nhc^~KZkjv)l_UcB+=bh
zIGRbgWQOz6%+pYE)OsZuqhHX2`E5)_;Blk7>pwH^$<_TfOEm$p$rD(JNEcb8BPC3=
zd6tFQ7)AjlGJ&YM)<b68C-+RRzI_H}FMEeDL-#NJ$ShDJ+B9LaROfxu<nOA`NWGSb
z2#3p)yItH>#Ka(Cu6NERnG=SetSSpQk)`Gndg6Rsud2lCmV_Od{Ht*HPBib@H{0}&
z=oe=KOGfFwX}Ko+gJjTE`OGK?&Zg@<`T~&n0#zgFiw>Fa9cZK!_mpxm6mG($8F(vk
zuKCMcHN4YNk127Sn32|`*Ucd0U>u-@S5cu5u`t}Oy1+&a7f5nnM`nVd;c6HK`nqE#
zd6RHUl~1r&GCTp$M0x0`CkU0WFfw<><s*EcYKUb%9tH(u<SezQO%#Q`S%vS-;@xVv
z-#o3Bw~satXS|;PIG;qkG``%54;58YJ6e!=WbqkX!c2>DI3P<c6z%egtVG%epOJ&Y
zv4{~>NZow%VW0I80RQA}`=d6!izLThA#_Dl%187@@b{=Woyu=xDBB;i>EU3Tcc@a*
zbAM1h+a$hY^wl9?pGF3f?@kRPzaYJ6IU`Q~p0x?Gdm{Ryjzo?uF>e4OC3Bj$f!UZE
zq2?Tw4@>1>##)X{C90S0q!WBNhZf__0e3UjKgwJOO4uxYBVuoo8o{y+qT18ItPO(6
zGaHpuWU#dbNpu+d<2L>2`r{SME97`t9knR;X*4$05~S4fP#N&{pV~AcuD6W<W-dBB
zljNRsZxr%0c{1C0nZgLRB1)k39->2Ev9(nTWs%N8!J~~tp0-!n2qHvk85SsNmR>jv
zd`_u%MKVH<eTz-!6)^lF0=eeVaj?jgX?0j;AK!ZU4-|Q>#vV}|niejzOK~XdB?H*<
z?6fpivRtY>p&}2%e09+|a?}xzcNM4~6Ao(3t3D@Pw+{yZv*3X5I%<EyrWX;6(}Tmp
zicI!;G6Ko>0V_bAipmU-+}A>6Q6ZGr%(7!X7`+YoyCQN-av~idnxwLm#^fam4uPOR
z!d@K&etAWw>gR4ot&3VD5gI{CEarms{yFQz(#@iTq|6lbft1}Q*OiDi=F~qt#vJc4
zx%MYnO<pd~uB~PNDfY{<S=l=<wy3FX%SxCoanN5GFAFkm3y=tY`_F7Y=MoHySx9Ru
z{oI9tnmLqJ=3c+L#C-yV_GXqse2Uz`QoO>?NCTcbMA)@~Tyh_Vk`g&e|CFbcG|Bz|
zM{`&+x8N#~pF_^beu0yRK{2seeynJc8M{Od=@DmSKQ~B;0x1fQxxsB`4!^60^*O*&
z`ZHUnwXVt{4Ku$Wae4s!azyeQ^e)}9ZgblHZ#LCo!&nAJ5kCf#NqJNqf3Jy!>0)^W
zs2E$ka&$AJA(cb}rJ<){HdGzS3m7RUET;Um6D0ns+J-VvDH_U{fEgZG$~+9G{HPA%
zxxBe^Q&(c#{elt3WGhqod5Lq1M%Y5n_c5&503IQCJIWbaH@c_<(-28o+QuKia{d*f
z(J^muVerrjKfFHDb?8CL(`nys({JlDq_N$0^=AEFM2l~`I$pLFMh_IkWdj*&_5D{L
z)&b7l&pEc6zL~(bb<k%0NKv|O9kg7wB(bgTNn*<vM$7a#2$1GSXO?+g>#N2mF-6sy
zxN2IKDc5XBMFMZw!!K6wD>jTGTyAj_Y{#Z4hnQc{ND26GvOk;9b}MRae5b@OFYnSx
z=mi0DRJjqA1!V`WMl$n}8@Tt+^0zo7rlK3-FV9q*CYg%o73krNTKFhf9Lc(MGg;QH
zOvS{C5C-A};aT02@mOyIWVj=<<eZB4&jad2C`P~1mtQuE0E(N|S^$l6mdu^ml5dVS
zn(#G-EW$uc-eewHNTbU~I{y4?RxcA%rbcysbo)Y;(#bJ>S0%j7-dDuy6ecM7yZm_g
zm#UD?FZKM&a7dhm#Uz(x4O!a>2a}d%NwM@IMy<t%<$Bxu9u4VyNB28J7KKk#Xy-!n
zUW18jWzGT3xm~oP#K2$YFz05=1gQ2i{WP-rW8Wku(Y2lI<Tb2TdM&2|jO=g;>0A&z
z64)Xv;5`3$marw9l{xlSOOJ|u<=2gLA`#-v$ho6k+yD4y8VS0iu(tWlpRkD3;siXD
zVGh>5XeNGvciq0jrni=*OK<x^WhKeaCxSo8PMRP;p9=mw$63-Ph!w{wRT83yoPIiZ
z`YgpJ$aIQKq9LUO@0sCLdu>B4-#fLl?s2{5xV{n=7rz?XIh8&oR$33T%zT)92+shr
z&Z+T48V~Cf`>OY?>J&A*%S?dgY9PY&j)pkb4(3{c(V`aNjN~|`xVPVtHrMoux6Sp|
zE_lV3>1N}U5mO@Wo=fDY3_i4JVygT^x-X_;gjk_(eE4+B)BzPDVRZ4~#g@zjI|#Ax
z@e;f@c(bIWAI{wbESq<Tq0#*V>JB+1_E<SIMcy1dgu#!n=3(f{96K4j^GBB-!}9UA
zWnXhhr9A@S7&YFivqo5j<_q7ZIX5~I_=(6Da@m)C{f%GmdEe$KeAC8tetAxJ?{gS;
zU#Vrh*LsV8t@W0N?1Y(9OF!ITmhE1dYUUu#(@p7mELFg%#|L~xtr6a4c0@869jFrD
ztbBMVOO8rt7tg_<j#seayl#dzt2?@KbKsqzCA%VNNjik4CA-qQbd;DJLjxZO=6l(n
z>!VXJazYDqg~Pa_Q$8DK{=gapxlWcDnmSe*GqMh1wVVPyW-}(#jUZAWoG#Tl5{pDm
z0-HO5!xN-?;GjZ|L3}Sw&lqP(#S=ovz-ihER3$za3z|ew#=XpR%ycdJ*vnijR|AoR
zvnf4+<u^(Q0IvCx?D>oxBAnNS-Yu09NeBcPbj8}I+{k&NYmrIdIMLg=Fs*4UDF8cQ
zlZ$K*Gn+`JTvMd4*@jKOZwKZRCSrkgOZ2@jDhG8y-xmdSfEm0%--noO5x~JD0J05A
zG6a%o%noSAhOrCDM(;7~yE->phj}D8Yd|dFOA7?Dj&8-jq8ft7$w82JO5ft>xg`w`
z1sBK5Bh&oePt}jRCFMJ5#h()<iNhFc1(#u+)#EqlG^}{BBIw^mAw##BQPK=N^$&-F
zJT^wdkPp}@^dkPH10(S|VSWlA2&-JY+PyDb3_mv0oY$|HLO<e>Gs7JS2OPLT%E7V6
zNrj;E(?PSVs7`?v5%JqD!DZKGnS;`Vg*6(|6J2<r_n~}=TTMVXA!j${IE2s&eLF>%
z>_E!Xd5iUkSj{r>_2=9m;L_YAb*o>ycIiY09TU0hdDKR}4GlP0spwS8F>|c0yzE#G
zN-irN^$sX9R^Tr`bj#xpmWO)F##qpjYM~DNyiW+hbalTUF-m00RoRS;gaEOi{WnN&
z>c2c+l_N^&LA=^>f8dv~y3Trkj-=h@8tta@vApzWT<9{<9CT4O!$1Vm>khmA8i4`Q
zxSq}g==y?bJz0xMmPsGOYZh2~2_iu3K%69;!L&Vw9%y1}RT5B84ral}Nbk)QdJY7<
z*?#Ctyk@}{I)fvQFZ9YL6CrBb@@z5xgu`0`Pm$N4vG4^~EcarC#0QmyId82$$(qTZ
zB;M&^j<3r$Z|KQqOx#)+1QBovxbR5YLS8wstCyLiFOh3Irp<Gi#Z%44W@7K;Rl*@)
zAHf6mZAhCEgg=}d*q9qoHR4@KW@wAo{PiFffv%*wwJGMF2sJZcu8*d1b(R^@u#EKX
zt8^GwR-qM!tCL)}v?#hnE~Fl~uyZz7GC(s3AM<zVTT9JS(HH_RFp)h8ScQ<#D~_4k
z@ZAwAyq(4MO;bG*A{y2a5z+dewu+P~qyeQqC>aLE&oCu`3)ghl<s^4Gh^SrDy&a{I
zcB}6rL5hBJEfsi=AH<i!Y=qf!S%;J6q)nyy<zSZ{UAm)0-+fkxkYwK1qU!N`2pyV`
z7?#d3Tk&6ca~J3zo<xXh@G|k*I?!X-!4^s%Wp=sF-7QQuLx302WFC}qzc6XqJc+@y
z^q5pvvRckKh6N{p;&nS9Y^yv!;dWL+YT^Mv`mN@zP>9WR{xp5vHk}Vu!pA5Y4Qf~$
z%P;nv$9a)1KJrJ)j<8J+IEnUl#0$lN;HN2W;bQ0-2D@L9!`O(*Yh=mH2hpOhmB&fI
z*y{8nmSRk_l|VD$!m0sr6F|I4ql2DaDgUc#o+y18oL5PuiUbW0qaC9Hq;wRpAL8GS
znA~72rWd2Jx}#HHc}8ks^^s&faHq9bx%C#5P!Ue8PL5P6^SCd2>!idyp+^{<m4s1u
zg1)(Q2D4FyUypO-y|KkIQBC0CGZ*VvVtaVFyYs_0lB;jo@>rfrPtVr3WTEN?ZrQ?9
zW@PILJY`BrMNEaB3U^Cs_#?F_fD)#PzXvJxC5$`4F^RAPTm^t%m1xHj?DI0<e6jz_
zRl?d)3z-dC84mj3A$=OpRHj~>jj&ALTkMzZEkfHudXIB@$ywUTysQ^-9?Y_=pTM54
zl}p9EEtg`e9g>BQXa$6<4&WB~oR>>EE=x!8Suu><WX&*}h1;3<!_{Zet3z0e49OGq
zM6N=y3DMYXsNETr1V1q=iL5Es7+6_3IuoZKO`V6D$K~t%G#zPRRyx_Th}<VzCd&fZ
zl4@nCY+1B&oK?b$5suNzLwA^s_qmkbM{tz7smnKejzl)Db2fU_1p2z!h_cA=Rg2rm
zriHXbrP%hT&r`Q`XUsK!%jE&?5^U@uLm-r}(DV6znLt@Ah`Y&t6?K_??ke5UBJ&y_
z9uM>ax{|9M+P)3Zn^#S0!&S(a+e0jCq{XbIZtW6EjjOWE?k$N^7i<v^0>KYk)YvXH
zx=qZTVHdNfI$f#gfYj33CfuFk;4Z}aD9mrt)Xy#00^=8laY=@X-1dUcl9U^-wE9vG
zdAa21f#A^-S7s&XU-v)E<c;JovsM*#XNk*LxTUO5$Wo~oDUpGkaPQ2l!c-@d3(~?I
zb(4P-6~jk2x+Vp7n;|De3SlL=hsa}(JM9yT!8?l>VF_orB6dF-S7YiV6T_vr5<T+x
zYvNhFojTG3Bu39eYoKjK-aT{1XY`%B^pp)VQq>+C4zc$AYIql!(>^e-pbuk<vYbN#
zvSdD`U%kpOc&`tG$c-%eDmEojH)uPfvj%~Ta6(j)*NI(u6W>I5Tb>oI&Hi>oDmdu`
zfI^as-}FH{%&wfHZ!h4@dWBOe>aBdM`VJE8w#qtiGI-#Z*JU}W8{yRR2%k&-V*P_y
zeXlc$X;lylnzG!X*ZSwkh6&MyqG^fRUkSI?rz|sY>}<zmHl;gUxnUbQifQJ$4m^km
z!%UJoe)?r6pTmd9qKx-LO}2Von#33ToN8G&m#@Vug<<l9zVEmmvXiN~m{<dgR>)CZ
zXWsDUz?7I?C|~pC5}5nGtis=QO4h-F`0(GZ-znZzQ|giwei+p7D<gBPPG>aq@7N(7
zR_t-5da+ZpKzgfHW*bI-3<$^r_0=h6w*gGf2{WWntw5DPZ8)^BP?dKoP!s(z^uGS^
z!hI^$QnXo+I5>o>w~B+EBG@rax1PgAXuPdr@p(<f;%5EEuV*;f1}o7FuUTYn^wycR
z^%e}XxG94PNXB87@vGTr(|$C7fgRN*A0zlybqi9*k>4eT;(%fn8k}YRGz$t5VLT(0
zQ6#rxVsb6xj~am$P+aWkFmVN-W>6z}j=6qo;-(i&YJSE=<icti8kc#J*^|`Jv)h`~
zbCCIofW)!raR-Zwr<=hlTb5o&7uXMdEv}U9#i_Vzv;Ck%2NL9Xko1Ga-i1?_#ue5B
zG}*<piFlKZREjpU+0?l<nQ6@<7(h-PCXs;S&A2%C#DmCYt{i-YtHkYvI!NcGn*h`k
z4`??1{_Q?J?;0lWqEG|*-B|o(9De#Z83HOkFQ*DZ9-4MQ$I7p~sc{SD<e-fo(M3%n
zTr=Ahe>ryd*ql8_^gT@kB`~_qP_X%MlhJFp`-&!qi%JQ`)ZadRy6>-lmA*F!-M8eg
zDvQ<@pF&LcGsgS$O0X)Am?@-Dy1-+1VzDjuWABwY62-_bSA%o)*7<zPym?gLw4d`u
zktllEqG#K8mWY-0#=Y1!>wHC1!ZGZjy|5Jc&5-FciaYVf%d4+FFAxCmx=Y(D7NNoC
z*R|HoAU7j}oO-HZVn8_(jfA+!ZA|$Q2lLDtb6fEeM-ndED3KzRqncU=qjgM8Zj%H7
z1D7w7>j$00=!|{xlq~B5-CHPm3lA0zS+9!%t;3fL6+06XKSC04bn+%%O#(otOUBP6
z^!t)(%b+6PI*go!ZG^Z28`)0in}1Yz>T`S!omVUe+kF+L@k8ska7F|V_<{%YbpTN6
ze5t6eR6aa}C1e+0yQ_kDR&HSV9lR5xlux7`$bn8nR_Luh_&&ao{0|GahnlJQs77H<
zMrZ*A)LMaG0jE$kW38Qtv<7r}KC&OL{MI2-JbJ5lr2cM2DxUgK`V&2dBW6e{sk*T_
z#)nHFKV5Nt2NYG?SQS$rN$_nEbzv~$pt|k-xD~WCl_eAoCcN&TTGCdfuV9IAzFx<^
zcM<ZgV1W=2SBDDwA{zW4j|75aEDpY@|2CE@UbtDT8%kcut9d16N?y8IUiyT*6#lcJ
zRB&~x$t`LCDz=w?+wlkA6BRIY$dZJ6l_n~3nv)RnwpK9HscmnzSTpL*jc=#_PFCIJ
zO`_$qfptuE%qWvv(SX)Eiv=7s5f+#3>I_}ngf9hUuqoJhLec82*dlyj583F}1~w4@
zEIYK??EP|UoGv|!^z#=>uBiSppjTXA8v5HTy{<{-EPY=Sn24-SJsiB%c3<%d`9SI9
zYy5xh2#&7RXIZi~<0u-}z7OXMV>~g$v^IV;V`<|nOPS<i5Lk;Dfy=SW0<Iy1VprPx
zkgkeJuWtYa6Voip0Vg~lQAD|7(BJ{o>o2g(A~;v7yiP)^rHKw5I<yRdO{`oNR$xLm
zo}F7PDI?1ugf}4-m_PPvRUwqw>^L%yAu+1kq$kT<4kQdH*G^FMIL?6QokesUv{Mwb
zxN6#pb$dE|TZ~MY2)KLzJ%2~RJd5n5=Lt+Dt*7x7A#ya}F3A>GbBuWb&)4q?g?SGq
zY1?@UF7%2%e??a{siOUA(nVRKLYNCaf}$ivE$l)S!!*|hDGFcKQeClqyB=3+JTH$j
zarIw(sY{O^yt5XtTS48Z0_C~5;!Cl3r=LA1>yWRaxL8M~0VV(X=Z&Qp1o#<xUf)~b
zBYwYB=$g!VA4)OW4+98a_%8F-9U^M1+w}$FE(7uyA_Ri#F(JI=)SxtdAE)M>MNm0R
z<$0?qy>x>$XBpTcnTDp$8<CnP^N6gFT#%dkjQK1T*AzV3%pBGcGnGT1$RXlK#jtFi
zGb0<0P+R;;fqtYd_)`FCU;ni5YIk=tuvGAGez!zxSJ}E*YE?nEOgic@TX4Iin_5#V
zyXA=w+q!AN-pvkMx4d+ht((a}UH)sSA%#gluq)-24JP?H;V>D<*br}g05|C)D$)Nt
zSR9~B$5PN%NDqXUP%daN&plpoR29%?#eq?|d?SEF<NB!35>PgSY`BQGi}9=`1B4C!
zV}JsPGz;_Y+2VWGjJ42ok~~2Si**AxpamVfiUOKniOlnhwPz7qKfce8ma^-r4))U7
zo@aZ2?HRT>@poMnZ-2(74=!6}#cA&ZI3dnp^GO`>*7jXCy`)CK7SGtQpuzEvhbLf_
ztj^XZ*o*5rxCY1t$(j6?%jcZs=aK90gbAbr!(4#>2mi~1I+ow^1@fO9lppdB5Y260
zALWd&qF8tFd;{@Hc26mA_E)2;aA)u|f90{?|9OZ~-@cjO-zd|ir~O?y_FO8*YW=70
zD8{#+^!>i>{!35YYt!$;v+%D9`28OHIIN7prsJ_~|6`9mx9+mX?qI_DpDFE|mp}IC
z|JY;y?efRA{Et2MZ)-2Bge~^}flBxu{qp-Y`}0=OXnAS;pW6gyGle-}hZ&3sZn<v;
zssI#N4*16dB>%?zT%L}a7-~{;fb+3NvS3X;g#q7LsIM2GsS8~8;|(Ll`b6Ft+h$c9
zFk>HW7%6VWzFDU6@e9?ksrRB6WI=)m4MSu!ORmvZg?#f7BmUn$LSM!57H;k@G_a&2
z;vmEU<1};QWa+wMCs_tWzFC2lI5p0AW3Xf(W=CO9i!(sg<MxcRe!1hy;?{fP4E~b!
z1+&DN68s0J<c)_#>P03X1`jeN%D*yus<*+u8#J(OKQ%~B>hxRykKV>O0r0MH=8Y#s
zu^Yd6!mL@dMdk(bNc5x03f^<F=bqrNZ9Tt82!a9@Jm&5>mL%1^5}k?VlJFtS;h;^6
zojb+0gFH#p1Ex6k1;Ko4h^cK2*APD5;Vj=GpTXBx-zJjx)q4f$e63W#(9to`ti`{I
z3)H%HqhpTNxf}IO@u{sY3=X@<2j~bVCvs_S9AJv7Ld2xZT$H3zG%9u^6#y+aMnutH
zQa{3;SQf<x&YN+ki%_lSi9z8BaO>{<`s}mZ({o{=Geg>bIrbQ+TX6%&`r?{ziHVM&
zpCA%1^-lxQu76TMrh&}P7@ZlVN5@9a^;xE(*y#_&RdcN#oF>xeJ?Xh|^;N}<dhrAt
z7l{9obR;05RX4$|?v%fGQz`upOIgtXN(&y9&Ok#FiM2E|iNJc6`MS8wB;$%nTxb#k
zNjRw-$Q;>v01~rl46H!KGfNMfXX?FMs^;nlH>5shUc+`|MT{F{p`eLNoZhy;c1)Ns
z(m_xz0gtKYSxyBG8!HU?);0Rd<z}$CvG5?HY5PVrzL}7FNMvb}9!Q<mcn}Vpb4-{g
zfyJNGb2+`iI^Ex$0^gFJdjZTd@;c|xH@LOLi3>yQYA@>S0yzhn7=Q1REAo0Do?s;%
zA!qwBA?Li>t?xM?_adN)8BRJ<)lxkYVLnQF)<WmP!lSebbXb)-LAZq`2MUFpcS-<M
zQWjFpn853)Fa=&L6kIScb=^_3LM;f;&q(uKm0Zt2ZY+`pM*iY=S+1JMwG-RWVu+14
zZH<$$9=4)^0Ilw5^xpP<pq7vKnqiU$qJQaDqWZ$1jjFK)UTPVMq>Ohv$CX%}V@d;h
zO-;VwCh_botw|p*{je-OAI?i`mg_6+&mv!xtuo%dW^mwf7yj|Mgd|tQ-Q&byIW$nz
zFjC0VOhu7e+@(i}d_FJTm6>VkpZ%km1n(`Wq`(YCB3c%j>RI(G1TL6o77F)W*)((y
zf>5b3+lFcQCQ>V>t_ImN1A43{gLVX!A25Go{v&M2jtp3h#zxh_p(Q%rK<fy_hzbB2
zhj6N|h@X2vw_znhmuvp|(i=JRjRQZBOW_qWE6n77M>dqNzT#xX`vp@>%uC~mz!6^+
zFEJA_-@s4neI38Ye!?tri&S2BLlLIg7<g*o4*t1XEVUqlW8c#l&i6ow+-N?mQ@`YD
z>;xpss?FS|mM|kLZ+FAvOnzBve0TW5ZRn$k?>+W4weBnOc=0WQ3%9Psp^N%tv5zk4
zYQSgMr3ark$zJs9@&Z@HQE6LpkGraJfw@!(s7*3+>Fdr*KV*y;$5E7KXiEolgqoQG
za0DNDWh`!f%QXyDY@w60S3~H_=fZGiLCi?I0TJ9-jnqo|jj>>v82%vh#cC`rykm@2
z*Q0YK6amvA-ZFe}ybqTX19GL@aYcu?GD9iLHad(fPZX`pISzCM9Xsr3sEW9VMxL@X
zH{l+!CSwm}n(C0*{HjuuUt3W{mXVQdURv<pz#?vLm~CnG)c5S5i`zU91E}&S52=%;
zx(fRPka@~U6iejM0`sbv53m$dbmDOqyQ=6;%XvPAj^$Dbv@MpDQIy82iN5<~_5yp;
zs)z0;LzB0W$eGuzKE=E>bG}y<wfR3>ko-lV1&zg2p10tMMEq%ZqY7%&Jt*~fcXG_H
zS*{shv*uuDJfEFJAO-dd;XWJaFwe|)5z`am|71b3O6vMF(Qv!*P$solZeN0GNt&M-
zXh&^Mh4GK_F_}o+Q@bvSISm$?nwCN<@vI9GXE+n-9$LqC1}KKhK#WwtG6@+?<R`-1
z&-~1<L9q_>4Gd2Cq25L+_f0g30>;q_9LnN@aw?Dica<4)m80!FhU9xWNwYIivFUS(
z-Ppk~XZJmZ0i(YJtFa$KrF-cHjmZLtFVG{&C}FUmkl_gvnXRMa=oc~y)XG4nsoG=m
zjyly{e!70KP<K-|>{^ZkT0nw0)`6ekdJ%LcqLJwvk1>ue>IjdXpN?;a@9lrOcDWcw
z#akBAmJ7!<@(>|H=OywsT>M^O7kiJEoQ+ANfCS_tQrrmjCiVzKpS!tYTpLr-XDGkc
z#bG?6{Omb>^Iob1N7&76bdL&p8Lwd(jnKuCFayO7HVxbPN7awp^=zu~X0j?c^Yr+`
zY-qP|PU1qqWDQCU*c{y^o1&mHuYRmSmJmTx?}WY{5B#7GB1xP$t<+q3=zMM%bBxCT
zE`$fvArH)!6LUEMc?~C6THwZGXXs%WZd@>3E|3K{Os*F(P)C)@i8MJO+W!q9azb2i
zP$95)<6eD@b!(Dbfr)c)Z!z?c<wD@X%^7kk*D1g~?znzA&1pSe3{Nch90S`C698{r
zK`>f*r7HqYQK;FzkQqoAX5G$&FBgcVjr|m7BG8DP*iNXAQa~eO82!&aXMFX=LTA}_
z6vUx{J6rMqh<{E<7|!=`)TvqBQ?kJg6_aGDMy-_&4#zvj-;SvQV$vOu)K?H)9vkpt
z?(z6HF_co;7MM@A5In#TuE9gbP+E>TNj2F5AcZ!vD*QJf4en5tXwCWl^^D@jgc*Rm
zzFDSif!zB8G7|{r4)>z4hg^IVkF|_r3YJd7VIZI~nhEqxCtpVv!*ZEFZhGQ}<TUr0
z`x6OHlQx~j?7LY#$V(zMF6Wya%*oys4s<Xzm_`X^#cFgD9|Q30lRh54-wBxAkki6L
zj%Rs47Hatel~$!>P74<@4*}KqiK)z=54|n*)IZQEu|BIS&(BZPi_*d0A&KqPtFvG3
zLby;z8Q3Ek)N21|`etYEhb$pyQSWC2`GOL3Oo#D#|A5`@%|0D?be(L^TiYI*5_NN@
z)FKzub3ric!+C4lLxBRYt>tmRpXo$@36l_C8le+AFc>)De=F6Q)8xDK7L)=|oz}#`
zI9Xc>63oYHdShUpN)CK%{)7;m#w1W#ONbY%NvZE)Lpk93q~V4l`AZ#Es7ENu{j87=
zL*XOlLhQiV3;1@ox=)HBJZNu7F_<|kE0{g4T7-CQvQ!Y$X!a*&;e6mG0z}O=Z(-Fn
zKw0*KL6EBV`7yFHjg(}^bengXAN7^NABkVc1c^XB9d2#;N+7d7aydJ(S`zInAKM5E
z8CIxNYU&9l>=r)%2@Hm8ReXCbM}NxE^BnytN7;(((54^5e%;C?BlRPkZd>mxCQeLP
zs+>%r(C6uPYi|>KQlVEtAQ}S$Ne2PjPWCpk2RBJ7uDSc!-9UjR)73llSxyh9E2FJx
z_>>Yn<oK#V_{CTUOr?qWRCVNthyk;2BFAzP_EneWh`(VEVQNe9#a)lOkRBK*OUE+O
zqQtZ0VmTvCLnxRdirB9d$;gSO7b@vH;eo}9m`+|Ev{@Vj+!Q+Z0sX^xVbvaa-Ynhg
zoabA@^oRv^v1zUV=?!Wt-P}!-3pC5-&en(uTuX;4%%i+z@ocC}5X}mSiM8Y^*3$5<
zh9bg2#7p&$P7sK<n~vtte_5YhH)sAh6BAu>w}=Y%w9jIFKH$YZT}slwZE8GDw=2&O
zS4FJ(;H;71;W{ac$%_Lw;0Fy2pM!|W!h8mCS#awk+@x?@1ONd~<Y9GFU@I=_A*W%9
zSVhdghu1l2$it?gg^||v3XS<+tY6y@8k)UoecK`RUQh^Jd;AmnYX3Bow@;=RtH*wY
zF|tYkshyJ(QR0ax{%nC;U*PED939>HWlp008^0>CfQ!7bkagva+2{5zNTRo->xboV
z@`60QtO-kF1ywJ}#RF|elXGv&6*wSvQEV>j7w1qyWGwNn3V;^n;=yv@UUHBClK<7a
z?=46NuLbMW-32&~<nL1qsdM7&9=2E38+zTv92z_qtp?eo&6|6hF3TnzWHt()1KEX|
zlKHw^<5nR{z=|mGQknBQ)FZg$7kFBuJT1CIa>cA|63xA+5)yTSsZbBSgjuheph5P$
zR31geIA|4lQ8_e80c(aW&puBKCLA%?O@5rNC-JNXI=tjKz{?J_a7JZZIEl8P*`Dsb
z%`1W5_E<m$xfWNQOhqD4TjK9MmC#Xf+D#&p)f1q|TffRhCiX0Sas8^r<JC?)%^=i-
zQ{ka<XYPDvjKs5g;Qsj{sz$R0b?E;qW72~GA$w|*JokBgmSJs0;U%}A?u=_IjEJN+
zHyuhy@tT*zz*i?sHNRdHAvFRzhQ$odVOFv2Ch7~o3U9;4T5PI{2$W^uKDDX<Qw28M
z*GvcM7Yjbr{c^+&^R-{}t_Xdawec6E2t3{QjDB`aXtStkzq2{S#PLg<CQW_a_Fvfa
z2?F~uMD4K*QP+!cI+H$ZUP|&k>rFZ-W{kdP@LLbvu|q{OF4ojwjvx(*I7}@)_LQZY
zfrl#4SDiNbZ$T*ete4f_3Bx9VAYI<1m6Eh)@J=M#(2K}7h-zg8=4CYuh2vF3SM!QI
zY6uP%iVaL16}oT7Cgr{e<2P<}TSxXNm;nf-9#C4Z@0vz?TH-2Li$rTScDAXRZKDn@
zXb{;I!3FQl(6vlarA=D|%#($%1Ly#l&U`2B6462Q3tLjNmafu+Eo>AOzA_sbf+l0v
z3ZxX(=-z^s6Yq)W!VyuSE$(AXJuP7W<dLb+m@RXfJ8N6P`2yG(tA}qBrDoU}p=L*e
zfQ^wrmmFVC?Q&Dp@DUCpoH4!}ZFW++UA}N)?FW?3s5afikURInkV$~lKA9tjAI1Wb
zszzZ0v2RO^$c;`B6NYpLV#ymh&XxA(fRjsXIPG;KA^cyr7uL>Tdr1fpVOq48`RF^E
zi%7!!daJpL6H0uoJ#DobXutrRF6J!+vz<~Tmw9G{Nf8M=8CetDgtU{5c515-vJY3A
za(B#+6!JE(U8M~In}eOD#F>YrF4ar}{irSSwgvT~U7;UTJX8;wl-8lL7t=aGga#6!
zDzsrx)-NSxk+lGmsL$h^Dhu)HsoC>{KXOHZ_XKhwOn9Qy#)3w60#bw6gq*fnGzPNu
zWsL#-sCdiC;($Aw*TnNtml~r{8e^R_Mn4*3b+9q|m!?*m$1iJ)L|N3kNge&X4X{il
z&P%T;J0x&i0voUk3CgLa8O7vwTuGS-_0uG-OLRvpwl!`8g1;s)IgtR&^oTDeZAnOU
z7d}p<x=gVt-2U%q_4&-#1fD(^;eBXfVv5T<W_*+kCo;3<KLvzhDw=X&26+ySB!7@@
zF6gU*Fb3UsCw8Hc-N^K2>2s?brXuIqJ5VAd`W&y2so?})mTo#Fcc-a1^cqWC+Jfg$
ztBG4RY02_@f(zic4yY6Y!kv(ch|bPJxGpN$40$vWM?6>LJ~QI!B{34{P2@<K^ZEJW
zOkd~B%SqiGc)I5)E@A|cn~C_V{uSwqS=wwJ3%FP%b%F{YBNgsBge3VpkszY_C6kFE
z1ILa@b%4YB&?0&=FTiWfNOUCCCILX7Xa!lvvb3u7uC{&2549tYv2YddGJiF%tV~Np
z!1JRH<1T&~z$(1lGZc81TTnh3AQF-{R+KAK3-8EAe0qgqltx@|39ft4VYB|ZJqxfy
zB#>}QKx})D{|D)s*Glpl$z_x-k$eao?>%1i6yN>M&u1aG!s|i6tsTGHf3G=kDdD)b
zGus_3-Z@>5+;6t)nMX(hJ3hg+B<|U92`M_2tQoPcOtOM{k>@GD-E-FbX;NYeE3+-@
zZ*+)-R(O&=Jn@#iL>GLXjG51%zbtu9obk*qganp4ktFOPNQk*0dL@$_9gYEQVn@q7
zY+WIg?PX`tM~PrMOS}I~9^06*RIkaF*$-@u-JOz9fDW6H4oSPj8n%4FUo`BqcKlAo
zXC)Xr3)*iQs9Bw|b$gR76xH=eUY`;oODwG@90t1M4eC~AZ<0YoAbH^u6;yV75)cDd
zJGR3c{q!-GCP3HMZxFl1=ACt|NL7tY=j4Z||C}mrF)>x|Oc}*Ky>RXEr%;9U`s`UQ
z`Ift#nXM-EbH?^|YZ2Zl92*S~xC?TJQ3HBQteIikL0rf(6^90M3^Sw|)`Ddrx_Vai
zBZ!Z%npl)AdcQnm0Aweq5gCE}lRgsyCxf{WFE)k4TnzxXU^ejwCjZmaOi%$JJ|wZ-
zu8ev?4>I9jjTg8M<b3|gyg0P07&E69Qym2^XeIJG)68W`q_%-WRl;Y2@`TkRYsKxU
z3<K6UnMeB_#^S6-c7#cY)jU!&iC-Bw(TWu?{iAVEVJoq143Jzk9N;eTG?0s`f7VjH
z5;~IohK9F==pp;z<rh~<0d|7(D|rTSzPx~tI4a;R^o+h8YADSlm(k00ztf0vXfPHQ
zg^D^Y*FDYL=~TD-<zHzVCQGP3u#{u_fqDk3GedwW`5ubUKc1PF?z1KvL$4F#DcG8?
zj|fW@F>*+TQ~*NQkW#W*7c*^RCFK2>)kM)_6!J|-%=k=j1x0NW2IhMMLY_ie!U229
zOQuHyNz68xr41heH^;CfCFn3C-gnJN(+iu#RDiEu=<x^;7%yQFv74t8cqNPx^SdiP
zro`{>Lu+nhbu)h!%Mx~wWuhF}I~aCL2%qAEhg}qW@L-2p6xga>LPf-kGpS9m*vXi1
zN+q*5!L&i78Pb*D(X;k6cwbawfI-pXoa2+Kp%Xw<I%o^@o@yXkCS{)i^b~4QOI`Xr
z`*K<)1o)YFBuKustjT1qENy(VqKc^HNoAOq^qgsY3g$_~av`;V-y(v>VJvtnB&t0Q
zsO5o8&=3J*WgIX6Fc&VA8hrs7dP$Rnz$|HkENPnzw|)Vjds4^fa%;&rIGIj`UfO#A
zEx!`Iqirfet^z&YA+4Oz1TF3vfJ=10w^rujygI4x1TcJFy+{xm<@u`5W<4U!WR{Rf
zl==A=xTb)1$FnZf7-4QkJvbs}GZIzTSDHg9dQJ^ACCnB$GjEV=S%0A`ZsCLOfxaZ5
z?g<D^DO@Z}*q(ftx~ioKDbaNJhd@36zxWvn%}$&Cj2qeA^OB0_0P;!7SuArP^uE4a
zWQvcG7=IeP;XF66%MIce!Zb$QiB*2|Zz?Q{5vp%>>$G$y((;a;bDVmzXZJoQd4nan
z9xj|{A|EV+YR_*6I50$0#+t|)$ZhB@0tEw<IK-{}G!0=yKS;x<ty26#bd_weU1510
zOCBj<2yFu4z8FQ^F@xv3h?W(Dn9e+)6G;i}m&u&z`gLsVFt9XX&7uD-fPcHU{}uU3
z(SAtVcOo~V69wBKuLh|Zy74g`h@fb%GD7DtCsKC0?7gs|$YZQ+Pd6^48yk1R!WUWT
zgz|08KkUbEpg=FJZm$K0tBE7bgvCUrQ361Pt<kH<gG7DX;*;-~!yre~xT_1Pgpqv^
z0?)w9WkexjZa`*O?$y3iSR_Og8oFFB!JzT3t!*EYH+>dW`EJ3di}dl^KFhJMq|cFW
zB7R>ycUkI58?BsdJ;*^1v_{z+vZ!L<;FJVQ$u%7&K`O_gN1oPqk#HndPo1WdHlTJC
z^f1hD@t3H7_cL~`j8$VgMV3)nq({I2PI4>~Qxf3i$BJaV@-r^|H<^Jmn<OIWCqg<t
zCJTnYy>b|*84|`)SkgNn!jr0=;V1Ng%d9QLczb(}^TbcMsEUguEr;|Tdf+BH!$nDk
zxl%vE6|L4gJLuT@`tytkz4%FtH3fQ;jZ3HqKlS_&U7SxqXUTD@NRk}*`5bv;&z|t2
za%POStcIw2qH)3{&h!)9hqMp3AqM2VkSZ~Q26*WGJanZV-60+vY0@zm0Q^{!EP|1q
zU74P7(}Z`Ua-=Y^V;o~z4PL#0Qv5fiAi}(7*IJk^yBZ5NGVr}mN+M@S2pq^JIz$}8
zJdM{q%mdo2&*<6HL-)!=5#3IwX1zc<oo|&(CXvU2<?7i5Q!l-oa*d!|VeQzQ=>aHq
z)FK`2%FXz)&@fU#rN2Q7kjIc}3r3<ywe{>F8Sk~u5wt$-BApx`>r~K{zu^}6fisNs
z4KXK}xab55e24-Inb1#q_YeyAV$>9U(y;CZU`x~qGCaBXMK1opy0~Xg$L|fEd6YAa
z(g9#h=)H>8#n4{dg!g37VLdHWr!UqMHsE;C=>+3gt?#E)nC`}zPcx~uQaX<~09rXJ
zrqHR9-4KP$8X~X}*4e<#iI`GYn5w3Cl8A_az%S4PL3oR8Y?v$oYj??-`=OfOZZc;`
zTpCP#dffqu?HwxMvXlf2h0^Ay^ba=U_Xy>>m8ErW=8BhgQjDojd%o02hELex$I3Hi
zikB(WZ4RMJO?aOPi8-xo7jg$fT-<s{6hdUeUU0r!3Az6<l1#MYMa6*NQMa~fbp}(>
zsBmP=z8%k_QKgs#tgY)eVhkkTAK7zoi4pj?de`J!_)Ea5rt6Ui>t%0#sb<4L_$2YS
zxcJ0&Q7!Ry$Iw&9v<vGX6l^{-1N%)BnC7VHnU?iV;#y+S9)-&KK>3B9?U83HF(1Y1
zA027%#pRpHsoprTQ4MmZPYw@5?0rDMz8uSs5)qve^h=XVNQXdXHkb+r#>-Dn6a=$#
zWiL01TCw)#M?nxjS6n@gSSoR0bqlh96!4aAufBdKWjJD~li&#4IwhUH=ted`p!)g*
z_>aRF$R@j!kmS3VQfJY*$9DW7m0atGv4>gYpIMZWXqfiP?mJGWS;Z}q(**k-&>!rU
zZ}mBi<Pl{VZQmeEm>51zX?GMSHghT5ZPB|_6q7Y}*R5h%xi6cTTu~^hA4ez?L(A2%
zQPIJzaPkrqyEJr`is+tghpuJ^GO<vCL^4cMyHH)<1X}8X@d$bcwn^QR9?vT*qxvd=
zls+`aRrUd>d{Nr$`x!?4WU@_^w0_vat`J1X+E=-5;dGIy*6mWE1l_b3;~9<WVtyj^
z9t;Z*7D%2K^xVE_dd)P_W?BmKj6k87rd%cX-_NlEn2K8b^K-nf>3$Fsm~gBSptx~5
z7PJQ~zRS={HK@@WB-qG{)mQMztfxPe;Lq($RgjaupJ<5+JCnq(eWm+-6dHUl&IE11
ziwm{`8D5wT=;{5lgdXUR?<FMZ2n<3hvfVs64*-<xV4D#er!CDiPA}Gjp+p7jd!BH5
za*@Z2KX%orb9x<M?b4arHw{C3WFmD$A}7cLrp=`LAwm$mL2Qf8KcyyjI0^ZJ#6Urh
zNG)KqzD3q+B>8nte3<a)n5x1*P>;h=5kLq7%9v@&mOWnxWVS6)sC+`fGDD;xCc4)j
zHB~F1w_*YyB4Sam7U7Z`9#hZu+yE{@$T$E`iE=aCoI$sxg(DchjVt7;4>0KA!TrOd
zrgnvxzFLD%JAK)8FM@5gu0zkP1uz58_zdv3;^VSsMHYU77KLhO<-aHk{S#8q0B{4!
z*IgXRH3)2_k%hRVL*FAB9X|uhmDo=I@o6x}tt=oI&W_vAH)_q?3R95+z;y?}<W@mB
zc<`l`@^DN|A*GS~z7Qh<fvLmsj+~mUbr!>bl7ZCAhU-EkY5_f1u@?MY=PXYchoq>c
zch@F;pdB(3p}`Jd<|m!0MdFjlu!zG8Rb$3}Nc<|&y7^l&)2wUmY;1RXUSwbZ+acgU
z#zupwD#jlsrdYvl;4v>UBQXrJ9-G0Ry95=6h6@KSh7u<xOa}pZ$*(*b8P7Ox$&~`3
z_9MOGkx8f9>;leW4fkF2ix!EAAAF2Q(HoI9+EjKxt?k}A8otN5UE33U8Rrvro52wA
zUU6D3!f!YPiGl@3{t~6MubCQmCZ)hb)S059yHtoMu}N>e`FNIsuZhnkBiy~@BBLw{
z`XgF+*txf-w&?sCQ~M&pynN8`cGP<z@tE1&fS$@|aH`ubCScbPY(#~;w4unPRv+XW
znNe8XI$H2<P8g4FOxmM>X*lX^Ntr*A(L_&tRNo*`16HjC6Tm}hv6K;v?-4CR-T}%h
zDqy~H^5g_;A^Hkz9nGe(HeW45QntmjDiyp76C1LG0M3IYn<f6Kp63!yFRdYkzx-qs
zM3RM2;YfGsD<`py@xIw6Nnq@+V9Ng)foGCMp{$Ac9{Edat=nbZ-EGAq$lQk0L;mhE
zLwgiFb(p0z0=;gijA?bO00j@xS9EF?yjFTY{m9Z3YXFGesP6Q`x3CF@T^uhG)YXCj
zW+qifpaP(Cq?=>4JE~=7<q(J&M0jf-vkQKAjB$5Xi&j5`5!Cwhn|c!Dn~)5;$-Gy`
z$NNU3@NaI2BvX8wgxjpi9;FAS5voRT8WTa-a(t}L+}v3NT1qnB27Tp8LU9^&zmqZ}
zuAdOsVA%+qxtI+a2%MJ5lO-*LMCAcmLChK`jn*@eet0Rb-lHPOTf?-<$)2ZA@??-V
zJa|IiaOv<(9(`B3j?WSVT7&sD;+~|fkVXstXP<K0<(~p$Pe4BI+n>^+uRPDEv=9Q=
z^C>MDK^%-+`IZ(yi(h{W5Qu;HEk9~QBm+kG_a7r?zVl<^+FA&6k&pR+wK*;z?df`S
zA(&eG&X?8a3Nw62z>Hg!87;Po7hjt7^lXX)BuB+r6#K)78Wc|e$y<pPh1p?X>4HG*
z0&%IpjxbbIF7RA$_7SfddXnt!7f~7E4J)f)M?{tm%Fg2CUkryH#`&z*7U~s8gx^9)
zC8l`z%ZH)p8+}`db!Y?G%{&ZPJ#nY}wg+_)C_M<$mg@rM6Ts;JW37o4%0F23SUkq2
zzPz74E}eZZotTgYlqd;i5Lyd@V=WR(kBL`!Kror{<Oygz7DyIW7$z7lED&kPg2l0j
zJjcq`@ggca2`#X<!`zBt3Km*x51$I|L9sMa7Xho>$kX6!{Wuk4)nV0hs1Tkw1BRvm
z!giUOp<tu9_<w}tRI-l@*$mKa_I$lC6jA}fVo_r*j9{r$^&fD%QqS_HDBgrw%Ok%9
zHbA+5YMFN8;q(Dxzz7zTcqK&=^hq<+bt2iQ&9BU-GV=B@<<*nomzJ@6P6||<STu1(
zc#z03Hco2C9u`PdKkmvi`|{MPF7)>deN`4Vvo_?pRwm@Fwv(tm#yLJbQ-cUw9|cZo
z<sK`(nW-d74}j~Ai6IKD4PVq?4@pU9=q0B>3J6ID=^}0j5`_p~?m*e4EY=N)NaVPO
zs0zkKx)<{pf}?2`b056Rr4sSaoQc>B<rJSN6IVLsA!781>FtI<B9e6IVt>0j>o(GL
zBi0D{K<E3qU>73R2?Q>O$eRNk)HXmvvR1qpo@mEp_3ta29+Zw-5}G?B20<U0Yr|w0
z#7>m}J?@m>%5f)TIZWn|Q0d%VI;@nxt@&}Ot~ehHzQwH3*YlRv$4uN#7p4iL7d2T|
z5jV{W3svlqm~aMz82d0gmmgW|!sw|(kGYQO`A2m0nTq!teTguAflH+X8+qf;e53F&
zWMDt4c)s!T4NpCtVc%zymUUvU4u7fMrzUib!nrB1RNLlSmx`0Qf$1lV<#Kw!g^QTq
zOeR-~U(@9JN}ku=33|{r>`kN5reUEVl$d2HtH4aHm#E^$(#5T{_=pa1>qRWt?u=Rb
z8q!*U+4P9loc_s?zNak;H&hsSGAu<VFIx{khR|cMtFT$2qgXc@jIYiVwaY>$T+_WJ
zcFYG;#tJput+Smbyv)#v(t^Lh)B*+<EO>@9iGEtb^OifO$i#>OVcWI{JuW=*V+rKO
zt{hFuil&|$L)^`JDe{$dVyL^BaZDg|@MoAiSI-xQKRrA?Md$V2GRh4}Xl}6p3b+n|
z4P>eD<XWaQ+9-H0Chn;2Dx_+shEpBEalW;KEW}b7Lx7t8ae<y7=sJTbhs_H6OE$QV
zjo1E5o0@`^M1Ic&dkD=^QG6&4z0mq37H!mJ;r3SZFW#Y7lLFlh5t*8Iu~9bDgxxtD
zE>W16PWB-l;;o144&}egsj%&d=9c5{ybI_KdElcs1Ogz<Ck#`v2zrxIed0{aiDvOW
z^ml|?y8|4#vW16*$su^w7wSmG|Il(mE$VI-DP^!Hcw%`dtZb>)ZR<jVhl)aTgO}dR
zrR4=Da00M=5ECC)Rd1HeMM~iPPm@1T-f!I^Z(8rS4$|y($&GR5XU%h8OK~+)ilg3C
zuWS*YeZf7SX+2>ABb!IgwT{Wj%MOLL0W`YXpMHDFYCOnC^v&pDpS}yV5>mP#u)Wr|
z1>YOTLJ#?+XnWpf>(GdBh7rXn^XG(zC&uw7>6PGT;Q%%WSXFX+SnVjQ$eOgc{~wP8
zi*c!<B``*O;MU_2oXEb1Q~mP7hQ*;B;6NN;f!BN5hb2S2kXx-HT34)p@?FWX8NAav
z!lS@b^gNkjbC2*BRlR4P6u4Q>JAx-rmH&VByWe?H!F|H!{CV}rkDDJ8X27LeJxo|I
zGy*})Ak6q`de>HOb7Nd#^Q>xew|7b3c6sYgRA(@z^wG5tJ)r1MG4LzotJAi?VG^e<
z{Q$#GXuYU1NsKR>K(AYSwhcYo2Zi`{S@&zFKG5L;|GKv=L%ea=VU`yl#R%O(Y-^n<
zL&N_AX2AMf!I^;oAfduyNiDjJQD3p7%BSx-GB#1dP&AAN=ILs^7Pd42rCb2#d`6Ad
zgz`(uS0A`y%eBo6Xg*z`f4EoXnh`rmb0^L;u{)#qTEe<B2`Fxe$*+?jNzwyLW(Bft
z4f|lWtZ*1$tISu~zmrvDopUzHPBt{Uk|u4q{Z3a>W|IDa_$Y6z<}wz_Pgskaw^l)V
zldmG%WSN|fIqTOuiWo3N8A#GUvEMnLeQdk#3$zGbcbo8;pvlY01*8PsYnD}rV-Qa}
z^KBr1a?5%aMwTx0@HLh^*NIg@j<ZU#u&A6)G5s9EVkQUHMwy|$+fx#mi{RZl4lI)=
zUzceX-<~o*<;`?Erp}kw5$hq1?rbwW5LMwB;%nev4((VWl_d}|c;T#|TGn`3eSba&
zeZ?W#&MN0_JkH>wWKF@ITbO}r6U)@-G$X`v^cTrLO||aDbI(WFJaXOvl{R@1+t9P;
zJ!nQ?tvh4ty?9wx=>M&@3BKS{{DxI#6w4))W@f9IQN10nXu1Ej-&5^U=x0g`#M7Ox
zKSK|U(zS?`Gsptp!8_F~{U0P-pB~^yJ!fHTt+mmmJ_k}oiJr6{mIr*kwn=_%qupO$
ze}N0n=tJwB&GIoXYPX#Fk9AG*>s`9<A36IKcA#2yM(+I-wsdlxW%<QH_Jd%Q?uR-c
z?|#RociTIZ*NWct;?!Z+`ZHMe08e;9giFcq)u&hcRS$Ekkf^_6QxeS!c<W^gyoFah
zPqJ!37-s$BCM0dYL>gYk`P%b~%_eAH&+-3FK_>QBt%rd4T?%_w`!bg~Fprub*-L?1
z(w>0d8C&iIY0WDceQ&8S>>lyvuwVrUp;q&d)-4>#*MBS1<iw4Ptr-dCqd#HPqmq*@
z5-u=ds`cNS#D>dIN`b?oQcQGMY%M$bViT59508(`{<o0pUJbv9EioI+vJaM&_+?PB
zm>lzn)BFx&eU5QH%Ufjp$1}bNH4#I_t&;94ccTeg_^k&KM6ispwoI?UCmhQfZ|kVm
z_hv(q!%7v#J)n!S#rKuYdMnazBk;_Zkf8N_PhzEC%?QM?eRCHqrf@7KeB;$O5gj6O
zn3R6_<)sIw3W}kfQZY-8=)DKkpQjCx2+TTi;#g#pmXSdfVfeJ~w}DMRg)hfrKR`?V
zINMGW!7RM$zwNKt)FzsqU~l`sTg~=c;2RgEI`v*)anwa$oLjLXONWZihk(Ms`+rz_
z6EHc8;(vVdz6&fMIJ%<Tj1VpnSZ>f@CXj=K07DXz5OPeGWm%SG^D+#}5;nVofPexn
z3MiKha*C*fAeS5?w+Awa+}DWm6%lom`^>MZK2`np?BT5c=bz`v&O6heuCA`GuCA^=
z-u<4@2Rcl5ez5Di!5P7a!6tNIfuiw;2Ry;y02)m|Hhb^RRV2hy_>2S3R66>?O?R0%
zg{ns9q1aFzE0<`|%#IHH(Q4x|QnM@t!`KIFnRXlbu(Vm8!=}q<H;*NJcG|6UPZA#n
zq8kmD(akrOKxX=+Tlgw}I>Wa**zH{kCv5*QwfDr2!=-edkiZ{@bNM}Cyr})zX|#3a
zU0H58JjfF7mOw}7=HEgT-llV(e8h3PUFd`a|2>vYJ(3mPN*4B~1xLRp<<d=5(JkQ?
zw4OeR95$N4{E>E=&@75VmoyRmEbls@&u1q*e&!Fz2;IHcqdV-sRrCH+=(@mxM>0E8
zL^E?}({0o$@6c8&y3BfucY?iXB&WB=M?0;W{H^BQg02sm=-B;{A2i)DL3WgLLrn~C
z4&JAqiJALXeL%m2cLjGd?EY0R5RQfv{_SS68S>laO?OTR*SMQ*GY{rb{E!-gPO+{%
zjb_xr!E|{Qy=R=aCLQo`xHIeB#x!JndG)0<t9U0EqFoMqad-RjhqN>xH}R7TPPY=R
zZvJLZB}FQ{`3jo-p4#-w3Bj`y-f6mP0-2e8-*0aFImLO8yz|UA{xAFi8OZ&@duRb*
zJ38<|%h2J46cBiw-W`4+t<?OD9I(S{;Wn>^7X{Or?w$}n+)o#?2PKN<KS!!~Y;ZNd
zp(LOk3N)$)SMUZ3die!kjB>?_e;jeSZ18!Uta-UPd0ueBhvCLoG}C1q#chJEKmIX$
z6;u9B_bUA%T%Ycur&igFPo1vFT;F^`H_hp3-JEW2JCLq$q)mBbI_bRMW*^h_gr~@)
zm~M~0r+IR?CN0`e`V|3a8H;A?yyJ}SclbD5>k9cwa-?g=X0M)17ZH;*sF(4ofn2-0
z1<COs>hhP~M(M}XuCp8X29GIp9<M+(B>ms%9eS-xxaMk#y*1q(u6q(~QFyPOGrFX0
z&U+lG5xxdKsPr^1xndFTh@VVmg|^1fe1wkPym={y_~dyq#S!UBy*ggj<vV96#yWzX
z4S9R$3CBOyLwAR8cxAoSH&Hd|Jr&KXkE1rDyN`Dup>0bS+`s#3d3E!>v_WyFcZ!EM
z|7sbnIq{VI75+Ttk?`}|{+SLpZcSVJ9_E`dd0)V`6l<Z)o-1k4zJm7cQZVowia}6(
z>4Qs`)0Q>b-9tW4AHPi?>|4Yes{1GX<J@5SM>N<kp%6F)ALw)pRh;Jcbi!r}TFc{e
z1NbS}m3Rw|rUW4wZ2m#`429>WG`|^s`gt;fpSf;6z2yBfG!I(yik<m#wzX+vZVw%K
zrBzm5NRc=3E}>tilZhh<QYvA#<uza0P5;VeWH|EgHW$wz1}Qdr#pKD18a$_qtlwmA
z^^?z$mnCfRVUYcZ-V$?j^O=9XaY3;2hYNx&>C*aRoA2QJhk4H;?VhGPW<))9UOjp8
zqtT^PmWZ}AKY8ht$>-8WRjNntNBjmCiZ!lo?%;m7IUU!h$n4{^bV}Q(r!;SL>D;F;
zZKgXv$=z?>h`J}e3xH0g(shJ1O?glY-a-n#l%vS|tfnoURO-x+4{JW-(#eM%Pp5S!
zH~;Oj$yZW{g~~hOBYs=M|F@h?_waQi_mEahBbBD3`I|T0JAvj;v{R5YU_q*Rw<p4N
zuAsH-?Ya3^k>9!Bd>(`-WJ__>=EH-<=yk!qAJPy_4a>%+JmDkijdW`=b^i|&)I~0h
z!tGCO{yUlfvzwo#yzT#?cplm0=jpdi==|*r+K<DAwUrj+=vJ6_njd(AJPdN%K11h_
z_ow&D4Q~Du=JW@v`Yu28vS2BdPfGx#l4NZBzqI9y0_^yU-~C@kJ_p-wF`w#7%f&&K
z4seqh-unG;(f`p~ADYS&XyX}GfEJ*_+vtv?eRx5iUVcjlan;iz*NIT%x4lQIarnE<
zs~O!%riL9aNeDN2pF)}827Ji4=~prw)3U|echOiZtLi)yr`R2#QE9ZHxR*Te=5W~~
zZt%@7YrbO%Z<?2}m*N{d_I~jl*0i@dn9{;;+Qi5^tA6CA-!bscsvmgi1w|NlXN@uL
zQkap(-R3u&w`#Ugm-frL!Iekdjcn9CaFkK^>Cs1BIv4mb?@*cJ23^|AM`svmkKu1<
z{GpC;{Ej+Yei%+#-E`jsTClvEF5Dq8P7LoO@BF?A^!*n4PTyW7mzUm$_6PFzXmFx!
z<r`Di-JIOHHrl7vPLqr5);9)=XxA0pjzN1GXnscX_QRX0<KI9F8nmT=VxaWuV!H8;
z)VKMp=C}FJj@`k5bR}6Zhqj#jaKcB2lMOhAmM!0H-tm}VD0nwmN`3>KL8Wl`HXpne
z|EC|qU1;WZ{kaR9YYWv^O}`U7N8Vz%auHqiL?grS<ki8?Ir$VxroE|jdb#;g>MjRR
zxZw)Ym9MiOOs0%xy0kV&FQBG{7`h$q(%>mFNp#HZ?O?hD^|zymTri1Bc$I2${Vx^<
zv*<mO+r3NYAc*tTZ_|F<VCK8Qyw%;kwC9bll-`!ysh5ccy{Bl4)l0%-&Y_?7rQ3@>
zpoL<p9^E4xZpQ10*OLl&v#L#8{Up6{f_8ImOG}I0bkvGS(Y6)2z?Y-`NxnaXcS_O}
z`w{v}aa&2-H+YOM59I-sPh%b<&t$sjbnRwM_fMer5nf0uPV_>G;CA}|8u_meaNm26
ztir~tqXmfx6OxHUVm18>6BGKApIWPVjbxD6lzx+c$+Ubd#<xVvKyU;<ep$a~HT{wa
z_@QNBK}&b=%a(yDE!|!6H~3D=z|5H5XVU^)L-V%`OqC}qFRAI9xb#JJ>8+Z+o=cxy
zm!8)2PrLMk>(Vo0ls{4NSxrCQ<)7P<59YTF%)k$Zt12$?aJgQtaBf-4z;svNOiNl2
z>pI*lc``a#O+VbFQ+WffxP;-#<HV&tmljHm=oQ9^tBw<w-T>vsdcty>;wobLQdC@3
zxJ-~fEg;+xEV%p%`I~DQAQ2h9@OjXEr4GMj1m5HneF1pCU3!DV93O_OHo#f=nGHd&
z;OTc)u!_s?3Z~)X65`nKm5qS!ufv}_0&n`B*#!7C6ZqFMFijpTJ*(*(yL7ayr57}P
zto~Be^bKA91$Fex4f0nt-RjpeaBN-v<fdu)zNP%-_FP_<p4RlOTzXqwdZg+5xb(id
z^pd83)upeLCu_%=ru*&f_d~;FH%m*tqaB^OExBO!2)(E@!0oR2)0>0dg1UA-O4?cM
zURQ9Td^uRuIbr#VTOi*Nb@`4NGoQ&l@kQkOp_i{W_!;Nx4Js&uS+n|<wgeu3xm~8V
z^qtZ&VBZZ_Qyi?M;)0nDXt?xN$a!D_|AbyJeFSbuaZ5d1J~-UrtUfix?c>#_J-CbO
z(;h4uS)bOeQT{I+eriic@NLF-gsBOx-nDIjyV%2#k34~aQPAb=^3Zm`ZRGe|C{I@3
zlBTck(dh_&E9I>sq_t;xd(b&K03o(#ZQ&(SUfV*3w~;lczX9pS%(#8hUq-&ikxlGi
zA5^A~q&3Uvr*;G`wkK1m!LMbKy`)<7m&PX6fg2#=NlLG{6Y~Ah(Vt5CE_O4wm~-TU
zw0uxg(-+s^R&HTu<o|(}KOY>z;QWd5S2E@;qvcDrBHvS9z9_hvb3~FO{wu(#ic9Q*
zd|wOk1M62i1%o(adm#3+9mTf?8TpaM2}(LtHOty9y*uc9pmdo|6kH_b2c(o%UV0DU
z=KJjy+`~A!JQyDZd<@A46+}r?1&rUO$Hl!s=Q@v0SGb1o-9;O}rO}BO<1h0S;9-T)
z-=biS>mRcT%l}G>`|jHK-ZHSPWnLhbWnNHZUgm`}1AP9xNj@$0N_?9qMH`=)sc9j!
zqtj;|cg11Jv)Ykr%0J_?FfA?Lzm1<sKiOU$Z`F78NlyRoI4i%XxI<j~E^1jyH*+wr
zOM@#M16F=*Cg@If<&*xdbYe=()8AWX0e7({r-k7jBL9U!8<SrcE|p>yhC7R(77`iy
zH8@8;j>Q*9EA~4ob3ykpPhPp;8V2XWX4kAv4#mTOkL@1IYkxPs*m#|o58P%6{A(Fl
zEDx5R()7(;`Vx6EIi@xJYLBmca24~F4_<Q3<NT-Eg0$q{-otkXcQU>^ILL|J)gyH{
z@D<6$`niCN%TFC)*FK6n#^L6+^e$zxz2wHtaCSDk2=uggqKEHBC(`r*k4{f;q?6n3
z`g=`rYq@?#`VdZ*cFqMyOS|xJPR(-=XEAvtmZXKkb*}!L595L8Gi8`g2;--;6!=XX
zp6mazRE+Ji;VR33%LsM!<6Ll{RnL{5$^!Sa!!f;Xp%)zB#Om;g<-i~8mEReh$N0{G
z#&7x{rH<!QnKs~u%XgBNm(}zWoZQ-4ZXFEQ62aX%2+K^L{Y?7SK^jtE2}~cW?W5B-
zIn*@0Ps?LF(Zl16&X<f%bkyi{EWM!V8#p@i<jKk@YI-bh(l;82v=}G9n&O^t^<6;Y
z$0b}ldMg9j0X1|+x6%o|V!ODkg+kn}gF8Ly0`66>T{^-kBE}9(1UjgBoPN}f1%6O!
z!TQ1TA(=4bshi9&x=}Z9E1g{=yBw|*x_MgDGz~F+Yb${Nrbo9g5J#hLE`g11Ap-8p
zo*X)Z+eCrFxvqLnZlxUXpVNss_xr9eFNTv2BRj!af2^DY{9=!OPdHWh?qPdAh1B3M
z<39G6T2~_9v32=oYQC$HZ_&tn#eU?=c=@`+eI#Euw75G+$N5YSwE^UNaLt7L<8hQu
z>Pfv8hP%;#0EIAo`3&Iq_S&N(+(F9epf_<_2_}cc*}&gaC%4@M-xVIOpRbRQU->-b
z`(Q0$i}ZuW_weh&*Sv7He$wkrhx2z4^6loyftC@aoGAFY!JR!zTnzlrPz;sB_D2T2
z-Zny8y-SMw$vQDVQ^Rl_Zjh-#VFcam)u6lF(dF@u<^$RxO<yaDJGu@>hL7y-R0@<B
zE`1H?^?Epo3k;)IR@_*2!008f1-%t@^k|eHMz5f_Ngi(HatCwcSXpuFJDdzNF1@1Z
z!^d@#Z%xx5_UuP*@B@}ZZzO+%Ct0@)U%npvKUIg9ah}Z{d;HJ&_~H$~|E3Oq<(TxN
z8-ahe4v%?-Pajq|k;wcM_`N(m?*#vy!3A7QCr8QnLzJsCoFF>f8C;BCNi`^uO=N=q
znY@Q?2Hks`<Y(yzi^3~JpBF9QJd1);@o|}ag!fX~Oed$z?a2QpuYXSuACR)Ahi|(6
zGZEwy>3e~1_Uhdg+{&c8s2ye+E>i~XJ`dL!UMXcWDZ{1i1MY|XBmLw4mFKx0`C~_T
z^eXqIIXUrT`3qbw=wV!ran|mI`_qEB(Zl6s`jgKaQI??LTOR=aK_5RLNcKL7i>!#;
z@QDY3zuv1?56}0>UWfa->N)zQhk(D$rytNr1ImuR$s>9gc;DXiKps7vUOiKf0Jp;9
zBNv>&baSlPI!wF%HS}xX<M{wQM$@B;rr+z)>j{@og{Wev9{$SYv4=%2H8Qyj{TB3p
zFTbLF`q&Sh($dG`F@CI`+1~+Q_VB%Z4DSs(2yVF4qrm;b!{q}3ihfx6RmJV<_~-dL
zbr+V$59Nb=vvjO?kAd!ajxPB_Jm3-ozTTA-cb&tre#$(uuKa8T^afo2=J9B4>OVZw
zJdpYmBrsd)RG$RC-{E;ax3=`VrQmxhNB(JcC(g-I%u$wx$4Qec9X{X6J`Z{YZ(O6R
zng!hDDW<h|^+n)!Uk41yxE`Fv1ump3^YGa!>?{nwy@q`E<&t_0`S*14UO;hzmlzk(
ztk|_*_HV$=MKRRB$&aJv(_zH5M_F;xJzO7ILc>`*CtnA>R~?Sar9R5xDN?uLdY1S*
z@Qud1jN%qMx^qc!r#J?z{F35M_UhdmenAA*J80H9wr{QfK>2?E@8N&}8zK5<eo#$u
zpY{Bvh%U*KiiK<9ljj9mLE|U+@3hc)U;d)stqjEQuk_pwXOEKq0e%g~KgV|@78C{N
zy6Kn0r``lUj<a#UTE=YU5Kqd9$c&%FTfoQtisGgLbv?2J(n@`Y3#Zn<hZKLS{L1_@
zeN04y_E?UYw?TKTcC_+~iaXHNZvoLOgWqGE_?+I=-T~dqyz+Z7ALwNZY3(!gE^zU9
zHlt;6@DbBp%=1wGAoBEqhBbb&?<3!O9zR_eFS=GTzKhM>EXPmu0q{pr+5C^?(R&gD
zdpr5N$*rn5^DhL)4U%S5JietrOw0GU{a7B$nP86N7pjJCoJf5Hd`fb0`OD<V<dD|%
zRbG8^!D~WK{GJ@e;)piMLP#6G<&Qzv*Smhmxj!J|x~Y~|`2@K2^?S<z{6wQu)%5dS
zI`>mCk$r5RCh6~m)u1!bgdb!+#&L9(xcFOL0r}7LEqqF>To(rs<G4VgX^Lc=s`O~x
zc7J}Ht=}`6exvKJQz>rEfh~%1YFwo)NXu9KkYHh3@J;z`k<zhxC7MxQ>{m^taYh}H
z)8qC`t_|F2&dyJz3SA^M(e*U)vSNI3UEn7=JlV@|8`u*Wo}=J)s<@N?dca?y{87Ds
zz>k(5t&j9wTzVu=mR{2IZ@ctBOo6pa`qRjtasDRHllMXsgkP8OvP*{7E~$JM`3|f|
z)}MwpK>k~u+$la0&XWA}N%ew(G`VIr0)D3nV2Jggo2LpCzoTyD#;L-_!2R9vHMONb
z{FKP4KYVr#qZfS<INu-W4bE^K$#AJHfjh#<f&B~82OZF?J_W`3@v40AN9HfjYOUtp
z_4~?Jpc~suo{y5|lYt;Ncc%5zp^3nCH+l6AuN66U1K%AU;Kb$Ro7f)tk`v;5y@9yS
zy#X04<HyQLehK)~>+oU_ZJMlJ6>4MkF7AMQTYLF>f>*d6Jz_z65K1$7R=x~;$;p%L
z7&#JTYshPh<2E}2_c@Pl6tpug;xM4`@A%jW_;noK8xOzZ%&C)4X=mWic6jDP)@O3T
zEirxLJG~3=Imb8Yfy_rZ+B@B~YguszI2@0g`#T1VUUFB^gH>kx%y9#<WU5!zE|KD9
z)$vIV3fuiD_>k48+<ehplSg?s(0{?p7hwh&1?NMI*HJYMU)%$DfBh~BAD4a;1>bN2
zG5%9~1OHuDPqyF3G2uSa8rL7oiaXZFi3ROj<jbvfAJE&r&W~P$99Fcn*&VvEP$;d}
z41(<MP7jZl{y-PBirtxxIQ4Xq%XDtkS#F*kO-KHv6D&X32Taxbc?6$A-(*(TFVpva
z^J7g;l^MwYpv%vG>pTcl^dVxa<mz9X3A`Ui?+fl1IguEg{L8a|`=yf;&rf6|&dZV;
z|0M%z@-G|+d~DwtPx~>{5ine8HgHdRbo(F@`Niyg;vnFrIvmDHt9M4zU-s;EclfU8
zM|b#;GeCxKJrwkAY63yF*X?1@#1(I62UR<;wQKD#;Ln*5<9mY_7~ZR^1maBg(l|mt
z>1YzKV-^-5|G(<;-z(tY4*3vs)a(CcM?>rD`rF~4bA`uuE__JzD;I7k_00vBJ2_i@
zlS`3r2XB1t)3|J3@Yo1^It%=qPg#B2T23Df*IAcYrH4&aqDH^i4gB-UFUvEBd3lZl
zPF4@Y7mfqIy{<p47Wpsb@k=vU``2>7_dEK*Dg0>kq7#t*grm2B0ww!Nf1@{gkbFSU
z@R^f=KiHE;K6ssLmk%Do$0?M_^t5;i@bP-}0<tG!kNYT!6yy4V%Q`;E?vRs8W@j<m
z6DvQl3b>ai0Lb!+!Y@nvi2>C5Tlv)i;J5Mc`QTAu)b}rv1>nx~%RfQN=kDzKXHju~
zaX7X!4>GWyXHLfF(5awzgI8{M@O#E}_sd^il8WP@>C=F3^W++Zf7W`9oL8340Dir?
ze!Hvab2oPkm4oq9J`4CWo&GPQ8PUI)lf_{-HTN*NWzGfuDpyaoLp_YoQ&)52dEz|a
zmQMf>`uh&!a@4-`_eh~_d_>;{zSpZ~dvGZu+v%n;$A|UX+WEkL#luG$0Ewi1B5{6r
z+Xb6Q%h!4V@@?koOMWcuc^6&t%jI>2@5JSqzGS|SeBW^Op4+lA=p50{tBT7{@az4Q
z)L6%F8a3kf&0Ye!PkQ($+)~?@wqU4zH@lg>4EVd9zuVSw)?kk5pEaoCB0cZ|3je}A
zP+HLBoVW`4(=I=^_Zy5}9Bxm;ua;->O8*G>V?6%)g1Z^t7wjh=62|XiXU>yz=?3IG
zv@YM%$hW_Ih-L57_A&mFHzMDwp8n=^BSS7c$~BDP6D8o+^YnmT{Vwv$2hTdaF?{mp
zz@P8&)rJT_n}lnI^^elczz;fpcpXgxY{3Uyk%ctvapQXHZNR_j^n~?Gg0EfdjwyNP
zpS0c%{Ii}u=EL=s|1+3=K70yaMPT`GKl<k83(32Y{}|6sx6@fK&e$G)4xj8-XuFy|
z7w$v8mmQxxZzV^V$~%gFGkIn22X3DU0CGQWL%g~zxH_(n;foId@7r|=mGJzX)YR(l
z@DGj;Z+sUY0)CF;oBAOcY;~iZJx)9foUgZ$H*qrkjvfK-AlJSNXk*>4Mc^I0A&>Xj
z@vZ@7-1sQ}7WsNSKJx5I4)f<*e+OJFXSSCGk@Euii&iz)#N?8E6#3?_V{%{CGCN!<
z<N56H_ta6rkns~e4g714A0AIH;Sx9;>+Ev&8Q_keV04)uakcVcK=o8TF+Qr#0{=S?
z--&&Ao!)i<C->6xz{hry$3dDh(Ky&fvm*09(k}q_dB^Wz@?`bNYWhE1I@jj{sgFNC
zXI=!I<qk*sK#s<gmX!zk{y|xB>rMcW^|%i)ojwkW4%f@dOQ8E7N0;a8GT-TixOf9%
zydGD1d3<=QU!@BCa~}Pb*gvrHa3XB-FZ~I)yFHv2H>1{-Fr<@z^a}6`9G?88<svpx
zv3TBE87Hpw&!Bgmqep(IOqFunJDi_ZRop^{qjG6_GQ3}={{niAa7D$f@aXj-P{#W|
zXITGDz6yFj_WExWeklDn3jWF!k9hl<s<o3-`8DM8+cy{dn(;Z>2I=Hq{u^)yI{M36
z7KJwn{Y7C!pU@m@ujD^~kKFi5dKMlo{kAWB+u=<Q3U31clB*~8M>4Erhsi#~{q`;3
z4w(QT>u(QsFZBdhGQ5YTzcbyqQhFQsU;6lPqVU~=cxv79AlI2GTRoz8k>B4Bk_%T!
z{#<zRh<cPh0Dgj3UN_?R-Q2ybzU2>r`*U4=ua)|;4YYPGeFWSun&SFKVY`$ch5wXs
zEs`)&B&-|#Xu^JyVY#Ev`;VqOMKt?URb0En1xNCu)t_#Ql9Y8_yK}tr4^n;?{3Q-|
zx_V{T0RA{fkK;S!5o-r9{wj)l%;C7bzvJp}<rmiky$)|&?+y<Zx31fBPz|5_6!1rQ
z^3Me~GTj{S_%!`De6$|$Zv|k4^{FGAFLLc*y;6hd@JZlz_vq)b9+3}ja&RZV(r19*
z+{5P(QOpI`jl@?z3w){$Pk~hCpVY(bv*|~z1^7dPnE&o@zO+v_B0Al{X(RKcKaYI7
z*X3)~d@@drny;`S^4;a<3;vJ!>kbdn>>Y7=*52t&G+$kNlV4B$n_XYSB{l`_&N>_!
zP{MJ)uy!ab?$|mxT?RS*Brf0Zt($}HVRiTifL{^gjgO%%fS>O8AUjU>ez+a4D((S?
zTR`)ni<$09s+Z%plp3x6;#cLpu!OVA(HDXLgGV>VaeC4NV#D>f%$C4)I2`ebnMmC@
zS5{oNkE5A84V;2AeQMnb^n5?CQyuS4?#H~t=Tv-<_vY$X*arDlI{NJI2)_RyhWAsf
zFdfJ7659g*H-~4x;$hc8tsQEL^Vi>3lD)Hbu=dSt2YPWFt*zzi!Em8y<kf>_)}4H-
z+XLV4$|t#TKOSbMvR?x3TOKZd3RftfW393BYop*aJ|mr%b%*<|;R`!}?yXKA+gffI
z45tgfHw<#*T)Mi+A-yB;KXZJL{~=-0oGeTj-J0Sq3jl;YyHCh=$VwT0H@ZWupu58H
z!SOBb$gq@#OY92V+g|y-!4n2^^-AmpTx{3-TK*^+K7~KY!G;Ahx)sHr>F9Dh9OLMk
zUS@X(-FRJ|aWvT`1*U%H{#rxZ_*T<=e|PkQ*ZI-PukHc5cer#~ucnrzSZi>qhb!(0
z-2FaI0#(3SdC^|L#c_W+bVUEGeX5#%mq(|c<HFQKs3X!}>MiM*zvAAY=lf?7{4*Kw
ztscdFfP3GyBdr6`1cBVX@Gknz;l2voYF9qT@n3ZEHa?4!fV(9CQ2ea$7||noi41+#
zw_|oP@RvHed`{`xB1pEOCZ9waxP2V1Po9jww5E5vbY4fwGMzr3PDycThZ~e9E2pOE
zC%W_?&ySWKO#vTM<MjRg^s=TWUHT#NWPDaMy~)X&<I?vrpE=^z`ES+zP|j73&Quy7
zWa6+=tp7@}kt>Z4lmF2E$Tu@U#+HG$mVfq#mq`Qsvp=AfFzKL%uTBI0PhL6QI2X~)
z%b#ie-SCy^z!yDy7yN}TKL0cvAI$)M3s>L1mbX@5<K$Z_jvApqLk9qVpTm=16+F)J
z>ELAnXivP3k(~v6e*lKKzHh9ew|R1oH&!jd2hQxgv5H)L{?$4=WwCat&IX-UuiTu(
zk?QSP@?hX5x%$(5dAT$HuD@m!cc4eF2j|gjzCqJ4FaCXqmhaK+Co^T^mGN0o-1j}4
z*)x)+8{eZ0=*{+UE02%qnLd{lx2D5QlP6c6rl(yx#kpu4v+ssW9*Xi#boHG<^SrN0
zGb}njmh;dY;BNQmbz+^plQur2jb3Iha2I&EF5tQr(Qk&UDeiiQBY%MOmhCY05GRk~
zJkUGZ;dmS%o5{w3{u#aGVdKLU#)+$q6PKMozH%$$#HAO2-egoS!RzI`Fr?LW^(`oF
zp=-CPG%voH1xUv+yzytD@)v+0+x2d`_<@1l;WYZJx9gcBfM4a6pXYN<n3uc#`xV9Q
z@96S=BAf?l3*L8prj~-<Ne(xoWlp$(ls_jte1f%KF$-LydRH6Z%-*GzgWgef^0@`_
zxl%sJjYzwGKhy^N1ji?zBRY<O?Q*OG=EUKP?Z77;eU7Vrm+^hPUB&F3@l!eq_*d4l
zcHnr*BO-@IVQme|Vg0*!9PsP9b^rsGUeff~PY&iV)a04$LH_Mrej1049NGWVij%>T
zusA<U6QndU8ojdOzUJtWUbc_a%ft$l8~1A-&#!XyoIDig&*x-AC&#VsGHJwmoH`zK
zTLLh^dfbci*}Vt{^#(tpY(_tQ0`O;gag2^|XUy}%J)Pd0zgg)8KAwLO-{SY{HqhWu
zX<M2pi)5^v(n-jd_VgeZep=c!N5husfyuGf2mCp{9I^kkkK$g=?iEf3uHD0Nyq~6-
zWFF)7-<sm4`{f7EGcZSXnf{WRlj>Oc=~F=WP>*gO%?pQ*SH*GS68)eDZw&i;`p8+K
zZXj06<XceO;{gih_RG=Rw}eHW2NI{<@|OkykKgPd=&$eU$Ln^ouDF;7VyjnF0M1{R
z;1DtKL7g~`|5g>ZNgcfx7`T{*ZAUNhb<msS$;tN@tlYHX$mGgDv9F`-PpK;I5f7K=
z0FT-gqgOf&<zDOI`hwFP&g7Xr9k?Sr{q72vh<@8u6de9D{WH5!J`?%0`qbakQj(Ql
z(R3ScWc(rbb+~?{&H|mSogBG6n_Ry#dYQ9<8_Nz^KPo8hc8^|O_c6%%1+9qDO@9k?
zS2#J%CBre#F>1Jy;&^S3|H*#-VAcp+>KxEZHyLhfOE!E$<e3eRcH>lb2)H(fn?dIw
zej~W0^vZaXbL9fyQXog=E|VwYtETCV#=F)FL8lQeQk)-$jo7~*<|kDZ7wa|og=AOK
z%BS&{x(MZtg|m8Q6}P>sC)v&R*lrJLdNu%n`$s3H5uNlRKBu6j2et2`+*>?7h{BB6
ziHH~8hv`A-65#Lm@HsiRg^p$QDO?7ezaO*rXzupCJZo~}M(gFkJyb_e?YVbxg7KTU
z0{Ejnd_H)O3Fk*UZyyzb|F)AC`?F*!$xv~y#Q05I3EV|>I0X85-=URXRGh!AnbZB!
zys6##ztK%y1-dsmy6m@n+u0Xu*Q(-%&xfttnx?N2#O>OrV<f$n)D>*_#I-0l^yJis
zg9v>bJ{`_y@;c!E;OI|n>7>X83#v0rPB6N)9|2czIJQGC2`=XyD6#rSHv(U0Uui*u
z-8O$+FZC1PepDwX2^8^`57$l=#a&*96UFKyYvkG~`YGr&*V*frg-^OY(+SMvU$_bQ
z4P(0UWc4m;`i=nr+^-@XPe<FwTDckY;_;E=5~Lt$<TtwMTY&TRxi|O?3#gZmd09Id
zzVr*=w{MF1=nB7!aVX5YdYSyIcL4t@z{xIh{G1jn$gv@}*{%DP?gVblAf_9S2e&&$
zjBfcZ;QjLm7M}^yvHw%K8@LNy`Mgdh`@i`<vbeqO0d9d;evh0*<p~x!OezQ~zfuO?
z*Q>lYZX2%fE8w1X<+Fb*>ll3;yE0t%KHzrna4X55N$YpR4Jpo#S9AyeVtIC-?8&ow
zKj>ZN^*?$=spwxX_gk%x)4vCS-@uhWPoB*GC~Er09=$vVdf4t2@o|WJP^%K{*-EGQ
zFzEXIwGS8Y*fxjYOwQLQ-k|;s7Ryg;|A+ZYso#L!k&aKYr{ef>n0SVpuMH{g43FR5
z;6o<c%iGyZuT8G0-+}HkjxNtP3WDd>H~mjM3S3Ja-5-H28*0sO_|)%#zo-uXF7UMM
zWq3$Cktja~{Lj}0A>IeRD10g842!~xr2Q6Q|HLBQ2Dm8rgQQ}Y$0C}s@S$qjip8|8
z{R+>5Zam-NaRB2GBv0NowF3PWiJM%q&mrH<o?QB{kC3-LIJu;r2hJZyBfaM$BD15-
z=-Q|D0`OBk`xu2AN&O-@X9~#}AL%OaQyd=@&!hffeyYiPNO9{0CO?kbUe0yPg$FzH
z<oaFl70`|2Dl8Wn&snXU-B0`lxP$%jMQ|%;`16g-IB`YAWqf))%qHkreQJt(&y!O=
z{F2z)e0Za)koDu*Yv6N#M>mikoE-m#^x1*Qhwsb5eI&WycTO%te+Mp}|C8M!1Cv&|
zMz5l{I1W$kLW)84SW+jKH$d-o#}~`_`=WE?<v2N~{{dXW<F7q@Ui6}!Txu&f{V(AB
z`M^qXmsU!Y!sJ&{T(?IrAMPmh<U%F3Ulgdcev<kR==$fh-Th*+92Jq1O+gE4dzOXq
zlYJBU;&V^D&+zLE&GQ&+{G{Fj?%p~%kU>J<qraror22-hD*j>5emK4#7N}4%K1%O^
z{uz!w`<vvM5M^RKmh-#7jWtg*dXeG^b@b*7J+k*MK3E$kz0`Xs_d!RG{Fs$YE@JP*
z@mEt^JZ^KmbI2*6$!F+&&^vey5NsLXbL#I%|5zICMxU@FhOd4C{O<$9)4r5&G4w&^
z9rgIq1oWh%J$w}YMeq@?Cj;)<E7b&i9AD>g<o8@bIfkcjr#HnlfREQNS#KzC$9nno
zSigqW1g_D%u%ftDC*Qd(qpeRQ)&jjoxYh<ZlWSIS$u&)`Z7qKo2(Olbiypp4Ex}`e
z)2sDR{<DrxK3DxH*Sqe%uFU$tz3kz-aZg)!o_@3PTR#olH4aDi1#u|~FvSC#;j4<j
zuo)THFU^Kini!i6cco9Xl<`~G5cK19U$S#JCoKls=++c>vDaU7umic^ZKE3VJ+v|C
ze$CUbF2wb_WI0w9#`vgg`rr95JC@!IxKdMGzpijoX%31TiT?80Robphf8+DrwJ#!H
zr<X4q&KMz&>^8tX<nbMaS8FTB?cBOOaPj<;_l=1C=noEy?QTtR8)*QX{hoPY>srj=
zJRB&P7p@}qhsh(k2k5uEb|-!3c2UQ`<W^AJ)Vg;0CzH>eKmssaWlzwnpNG>>Mk>Uf
zt&OwMUcl|>%I%gXOD}5rUM{^?o~(VUn!bj|PZX56oJc%4y+@NGS5jlkSKAxq#`EyD
zmbX@g1Ja;xt&)iGTdUffoJ=nhUq!xuI)2zMBKt-4M|0$8c!<wy)D%C{<1YtKJ%{ZK
zIhsVo`1HP@|3)4CbA>+Hbt;9z*kk}qKCNE^-uN4S?{HSr4c{_wgiyBcg$DUcW8}B;
zDw_UX$1nLeVs>RY2L>Y@>v1$0{F<Kdy2(n~@JSH)XLO5-o8-x@1N$C3`1%r6UnhrZ
z8g#c%IxPcB>*yt>AbrC+dOu@{cJMUH=vn!x{l<qkIi~jqzSET-9L<kb&yuDWTsr#`
zX)a#^{)TIv3OZ9fK6`L3uIEHz)A%b)1I|CM(4*&A1gPa0zBV2BN9*j&<)ZG9touU(
zhA+<q{;?(yV!PfE{*vqxA8_~&<*UaJ9SnRiG(4?0gx?hUi^DfY;9KVaf0f6N+zUw>
z9_~rSXoHx1tMh=5_ss<-b4kW;_AsPJj^AZ1Q^U8!PEVDUaqwkwt{e`$KM(0817`Ce
z!=)CD4;MAS8J}gv`SbtoU<He{JM4C1a(Z1}jPgwm)_;w^s-~~y=}UxoLPVp3)0f&3
z&{^W)^4KSt=diNrztPPs1AYKvqj(eTlOl7-{^fj6?iIyN^XT^S{d(-D(f*6!bW_Vg
z*FT?-=W}~Hu{AkW73c3m?G1hhx<`+sn?4eB>*I+F8PDd(`NLJkVV4rtZF_lLBaMn$
z`K|4sx3LO@_u0HM5MI6}Q>2H?X5hie>nz}>IeAh4rugV^eJUz$l7|~@eXKf8daY-p
z++#d?eKLCSvgmX-A1f;En@s?6e{QEYWN~%c!&{}Fwj<;u02?P;&jbCt!Z=?~I8X3B
z;a4R;9}Ljub9!4lANhul>n5+%caZ*D$2a+zGGO-w-}2h4rnu*vf4PkIL6n-UL~F0g
zrJ%Qyr-u<P1f%QBV||&b<s~i${zd0!v)`H)dyx%~ka}fh9Low<^uB5qRhF+x_Wkeb
zRiG2k@5!H~eAe#PZ&OzTr|eOGN((2(f2*dy;`rxz+NoS-j~)~6Sxz|&pSl+G-qiYV
zd-mWyfF6$ejp%pR0e`r|lYU~lOtbMBPEQJo`*#Q+rL`O!9wYKNSnge!(sD3G2IwzM
zThnfQEBqMr|LWOuI`>ccz=^ec^i$xnjt`FGlH#TDgVnF1xV@b`*w1=`3+9!1`b+IW
z4PkVXCD8qfqf6~TeucGz;WCOVIvmGOXo8~xGhA()xS^X+F1g_HkL{%PzlHq6RQ#N%
zDegK~AHIL&a;`~)FnUB*jlRfG5K;J$o=Gh9mns^|xp*_m+gIswd3>K<TE83rRmH`A
zGxqBa$E9uoy?CD~;b^8e9G6v`9QvoSxZFI(t^9QQ?#fl%9`qak<8|YHS|A$U4yj+D
z+{XbU9Ph9FhE$mRTxYKnw*u$Klk>s#jLVad9ImRkZby&i!LofcCoFHOzh`a(z55(4
z_!U1I|Eb%N9<K-Ue408+8X3$k4k@n7wI}P*70g#(An`LjU7)_D>2=~x&_CSE*Uc7>
z#(zG3WBu03$^H`fAJ@fYUKRVhG+ZF|YN>beqSZ6`E97ej+a%xMNPe{Rf~Jq<FBdia
zX^+o{ULYY2G|GBz;eM2Nq=)Yfo?&>e1f-M?lXL9>;6HHu@wukQ8J}m7nY?Nb0{3N)
zZg&_8AKfZjCSi0_4+H<YM>iMzis{NZJ(Fwl5#Uxe0m$>@g*px{lzSZc>ic+o$M_lg
z9r7hY%g5)n|HSmW<eC%u?DhB`dJOo(J-gTu?jrnmcn8RhuiE3lujP$*^TR&D&ktvd
z`!SzJ_Tl4g;yL6y($za?<42QAr0IWk=^Rgc&=E4d$UYA`aX$(qRAY21n*I$(hvN_u
zc$B+v9Gw?HCyw*f@9(c@`cYoH$_6&Jhhzq<ekS+yOQ3hIYp=GJZw`h-(gD6X$gg&h
zu4Cm_UIBh9$ES$Hjh~4>BYoZV0AT;_hl634(4&X^+8}83k~QGfU7-F1PtW*EX?od}
z$NEeS#qmc^PiJd-Rq?NR_3y<63B7u~T(2zN#TVL8Pm+;O|FV|F{y^nF;O`!fUT1iy
z=uIc@Lmf804ZQ{Yc8=freU7G&WyRg$^q1GsUJ$yA$iL?$G8wEE(HcLMVR}+{7xZI2
z;(bQcpL8HFTupKQ`on1Zk+ScBUe58$^hmzL=vBvw%f1hKk2-qXkI$5TOzxYDW3_$&
z+|?c~!u<>p*VyV&Rb0)(_24eo9vX(6J*#{OdN+9O)P;5DE`L9V=~dxl;A1^u`QHZl
zdwOMjM5}>+!Q-PF_q}%e{AScMxy!@l`TW0jJS#srVX7cjdHhCLD2;-%om#nmH535<
zfQRo1K4H1``1d~;zu6|>{q@u?1jf49)iyrTYXJ8tk8Xr<Q=KKg6f=&$X4VA$7*{_&
zUrU;*`eOaMthj9)-EeDuH2!L9fzC-D9eY0k&97$|ov0bO*$x*R$d5*+tm$)HI{Qxt
zIlsbiskK3;(fUMIaqN5Xzp?fkmJ}z<7>@iC6@&8!66>H`Xb;oFdZ)=hqv<n4DUQ;4
zeF)>&((p~vM;I8ZM{zySLljQ=<I{Rtu+dGd58Q;cjc!}Ze+Kl$1N6{MBOX&Wy2&p9
z->BYM#rf;P{(CU2-Aam!<&B7k@mJIIKBph-=lzxSxsR_gvT+JrB@)p_cv|iJwYHWE
z2K5C^^zbPeU@jOui78w#2o1hq@MxoC<wje8&UFwA$(zch9l2EOD*1aja!l0pR0?=s
z-o2y9yP&vlc=hSRzThtG7UApN<9?Lf5_FGte6Zb}J)#{8io4OH+kx?~BjndSKs{VL
zwoU}ycwLg{lHujyp9AP7hl=9<;mRk!MdqKq2)FlQhla_ayfx@<@A1)%^)T7jW4PKj
zz@6jhvL8eCKaC#@SJ)P~*x%u}E%jS!2o9GRF1a0Wi(UWVc*0kywNY`aPqYJY_51lK
zK*9PX^F6-zFkTNRd>QyX-T2GrP<|%%znk}+s9cSHc_-li<LX6vgL%H50_8zCZr}3G
zz~AQMc|J`1P+-8dL!lM8epf$^?>;4bEDlehPxJ)iBe6U1optSSKGW?Ee&N`5`Vj2_
z{4eVGfIz6P#N+XvzzsSauOH4~y0XFF$}cI-Uq8+T_cAWW*TSgST=}hggKivOW__S;
z$tO*zEc1s-iu=&3SC?$uB*(vl;a#E}T_WY!KP!C&^!<GeqHpneR;kfMtylC_;2ZVl
zisHWD@zV>x0|&yCp3$vM0^Q^FcOEw=qU-vz;i7$kgEfTxmW$WbejBc)xYry#jzc|U
z>fq#C{Tk?<;c#58GkXpfO$H9DR46wWq(|^q87HnaJwAFv<HXg*iOWnuxqd(I;d$aP
z|0=s5aJPHy*TFA#;B~3HM(Sy5>iFtYP#jiEO^(!`hP7W}8t65`6%_YF*M1z2qj7-x
z6NQVMf7?18^giR&ryKqpy$pL~eKIq~SD%vN{B_rEUJp=tPE@{%2Y_B9eH@wz+*tj<
z>_~DJaKG~E-Gh6+diZ*w;dZ2|_@|wnY-_oFFuZ{V0^!u?mJbHqFF3ottYv=i50>YA
za%AamP-E(owA^Y2_}ezd4?JIeVIaI@EymKr5j0<whZD(Rl84P@?6LBS$0Gl8b?q{h
zvEANwW9P>gjsyNQ$6s5^O9Ofk?4<$fxb@>&G6H@#ho^hr`k8!N_#}-E!{wC80e_^E
zEBogMjL^?=1Dw^b^#stn#+BdJa_wN4mH~<$_EsJynmkVg{v%gD-&05ZZkRq*dx7)!
zZFXRXXvYkymW>O=lYraamCyH&lY;Pgw+v!lPCO`iC+Et^$oESxUr*R2Z1;paE7$Qj
zGSm-zi_<SYFJ9&XD6Hhd?T&tF5ct!)cF*E|;jDK}t;45J1%B5$erAK8-~rc=6IE`7
z(}4HKiC*k8;rC`uH(cU$;9l|M-Gg{<5AU}&TupI5_i(*f*XU)($ocJOfZmM`7yOtX
zjZXF(NdKBkuV0rjT(JSp^sB149elZmo07mu@Diwz<NB^1$#0_kvDTMOZ?cLT@aT48
zpIc|}2vhIW+rv7^$%*~8>bd`&zVY399&mY&eitr0?h3z8?5jdLxt<Sv?C%F1EJ909
zeFy1hJGlmD@uQVj()9aWI?tCDaz$jj`f&X(d>8b#^YoL?RdLwt*YW`)>*!wq{N`(+
z0Jejl41~{#)%#?C92u1GmX=?+6!?$VkMZ;x#~YY5z2EUQX~0_tDUih9WomWnAcfZW
z8^W4|db}Q`VErH;T)<=v<dY_a^7*WOk|QYJr{GguTB7;<f1^2S2{P-sb#S@TyAPi+
zR4P8n>U{(1{TnA&_Gc+zL;fcD_4F5qwEKB4D19T>HO*NqfAL1-kJt4nKkbj;jQin3
z$#ly%n~$4b*M5Th@%_@gf8=%=li0C24<F)=^Xnkv`+>4I4=<P3g=9Wr_tJ}J?eyUm
z;7|ALRW{sA>{V9I)k7a9s$9~y0spdo=eYl3?1Nm)0VKnvZU=6W!{L2KSe}T_#TFFT
z=iwsny`DxdaR=zNd$^ppzs~wsq_~vBEt4msGo<McxO9#)Up2xmXYWLLyjO$&$@xu^
zw7P%JPL>rH$3JL(ODb*cY2_w<33`oiX~j)Ju~M#ozQE`WHNcrXs)}3F(L>zb=+rcQ
zf0s`0U7-2y@Oq~20{@FWT%N}%1sc7g;{17v+{;IPE-8HM=iUu^{=BOX5eZoa9O3WW
z1N^UD`P^>Tk7&2ly}*qnXVd$v;%c7Wcj`Q}Gn_>F4-TwenfpK&f1wY2@78cR6%}`n
z$ETdLQp0WZviF0M&nKT47(q{Q=Q(;j?-SF(%iC@rXzK%@7q3I3M_GB1rZ?JWT~r*X
zp`I&8sb@`bjr@bw2SI5poV7=!IR8FNxhR&$y@ItyJWduK0^LWPTv#7uaLDs^Bo((C
zS2GU-zoxV2jK7fWsJw38^v(KB_7UJWaP;TNlkr>7^cfz#h}XF}0C#uH??laC`8DX_
z?@0YIx~bm)Q6GQ1hUs=w^qsw73h%}D0A+p)`~i+nvOg5(9HB>wJI2HL@%)MUd-8Xn
zccxdbZn+1%ejF%13LO59tdG&FDXx(n&HNse8sSQcyWQ1;+wmgT;3miDG0<D-_3vzW
zs5lK-o_J_}!`B`M-fzzw_DSUUT7}{G^b^2u;L-2Y_3us(KT*rcJ_-DC$2Zwo*<Zo0
zQH;mKisCqC#{YQS;d|nSw`b}p<rgr)@u9`xxJYq+|LYfjyPu>Gms?Vt)l<qPS8O=F
z#M3DEVOK88|5_&?t8YbdzI_{QTueR#dS7+)Xr7TBS#CygA2}SyPo5u9Zsu9gTkPpC
z?Xw$U&r8pZ50`uaxJLEJDDHZXzr42)KT&^Aya;-89ggZt`;UgpIjgv<9ggFIqzJSQ
zn4wx5z2r-v*XD2>2cV`^f`%(7?iz<<dg74Q(QADf^g11m#~TXC4x?8bCoWkXAH9O&
z8p*k=IKTh5<Nm*P?$)lpe?qyxarK~e57~*>%U-<mQ!}pscag(UeMKyhgr}T+P~4v!
zj^(#f+GEr>)}O~mx9}I>Wb#e4v5!mQN?<_CGd@~h1^z!yzr$}$XzAatW##miesafx
zCCFgoSnFSbS2)p63&7ITnjY_m>#s{MXu7{|tuN?x{%_(n&_4>r5`7w<`e(Kb=zwJ9
zM2Z`WkAkM(7}KeXN3{M8<y;V_pW4z-Q~ET1uyQJjTg&0#iCcPA)Aw`f!4!V9^w!r=
z&KfQq-z`0@>CeaVmyqB@#i!l?KK8R{oto@?TGI`eQCz<(hwlSeKBAvhM!|KDg3J5^
z<^Igk<9XQ`Zd|l-6aNG*jt{l9+%*^j4Oboo_tC&eT;X3M>3y_nBraVW1$W9wT;kur
zJ>u%o*YeRxBXO0{a4SaQivJmf-m;On=*>}Z_r`*msQjeg8U?pH7L4JNZ;ytH1!K7C
zsJK`#hAX`@8ogLBhAX@~8ZH)$;WF=yhKmJbxYYZj;bOrUt~M$z7L4J_AB;wCwG)it
zhCUn>=LBQ8>_?;GoL~&s`thhZCm6#eJ{c9~1Y@|$=r|`B!xdMLO3w+#>`IiFCK~oB
zr}x-#V(A4<AIp9YY5Ha^|6+Nv{3T6~_Z8>s(rcQ2r^_GQ!H-st(gg6=?Cc)zJAabL
zzrN!LXXTUw;6Cl>AcAY@6-{5qrNiU2^s1(B<kA<)lkt%VL4R+TPW$d?yiV(P!=)8x
zaTwljy;4Gpyv&_;{0=ED<>)PwC!<r+^f*33_Iw~N&-hL>fv?XwI`Hr;J*DZNcj<@8
zlclFMefAmvv<!p?@}s2>tquCSx%|1h{1r{#-KC#Um!4b)`Nz_aR!z5hw+tLvmp`lN
zTRHmhI30ft@|QI|K95LFInlEGiBEyQ%^iI>GM1jw^hs{MMTcj+{Mq%9f2{r!HApXL
z`WIdKS$VSZOPc;kT>i&?`K8aG{0&|H1$Fr=4bp3xzLo1=^indSVCAP;K!1BjA0E1;
zXEc2Wm)=!ZenHbim%d+J`jDoN<u?^IeQlQ?4xW`?YLH%TkX~t!Ue)wXT=|GBTltC4
zK|V>BjuUE@p49YRV)@F|&6b|o0QpZ<0a5=e@S~+yH$?gwar;Zi+|r{>kp4#vv{L>j
z_|eicTO$3lj=w|Y$<iZDA4|RkO&?3YhctZ~NB^ig`ejWYtN&LueOs5mqb`4PEAT(O
z|C_x?Yx)$IpT-ATzfS9StLKp7#;QkA(}&01EPuH{dR5cMva^YasK;<UvU;R6J@V@z
z(>y+pl6K?akm3e?9PbyT@sO6k(#CIcYm~Q>!|`Yt>qT1AQ}Qd%|LVt|tft5D8<OiN
z_umv1x22;q&#w5FU#xx=#U1N#{9bfhz4G|l27Jf!>_E1-S-le5B7I#)2k}8mPilHR
zPGbkK@sZJV^a8Fo`xCSuCJll{r=+;C^s=hyW7*xrcHnb6$LG=VWb|7#{X~}@h+|~w
zB~2e*zSX0u>9D4#N1oz;X{Bd$TDJ!u&90mo@?`00O&_k8mY&u0;p3z6QPA|Mjy}bK
zM~T~46gS}E<enF>6WgmVf#1Cxu2-I{ydh1$(xr18kk%QY1}^TN-T`#(@o=(k$NLB+
zl8pqToA@&DWASIWg5vreU7A0i#N97Xn?d8aW@1OsJKV>S|EAS-{W+_+g+7kjaX7B5
zxUu-N_Db)Bawj=@h@d$BHGM2PhD+=WI^B*A)l=fedFr%rJtM_6qE}Pg`93|^tvnex
z7e5<n9bY>ncLDC4I(oz!HN*iPy`th8@t4{a^m=@Hw4Ooa>gqeBxF0(lpU2|J9)9?;
z{+`|q^!$Cax!`+DFc<uc7*w3eyR<v-uvXlkIW9v1b5#VxweA62$t&O1*=e1|#TToJ
zYeX-*=lJL)_X4hw9ETKlmgA4=A>)`dv(x+3-s7WJR9vHWZr$g<)3g3jQrvKV*5q5&
z^b36c`Tomc?OXT?%6rA(cwOK~wC|FU?Hhd+_(t}iqPRx(pmh@H^||s{U#Q?=`chKd
zck6KIC%(R9_8p)6DvHA_ko7c>t(Ydi%-29C9@m&J+5t9<uZrTHb9}KKCj&_xj?~53
zgVJQsYoy1mY2em!em1wqQ_>!OJ=0TwYt#-!#WiY&#D3$WmsMONdgTW6OpjChqujCd
zIHT!}`fEjTjqGwX73IBG*Ip!F?HAVm(KO)xREPVqwCg;tU9;22C%3ZV8p$m+V|?@q
zifcr#s<^S_XYG(Z0Ofwg)%Rq1GI<m=z0alB_fw;jnh83XT}r<a6*W2qO@GMI;r?><
z2>EAbfzFF{xN}AR6ozvBs`bF}$!kb)jpS8R+*tCmdPK8PZoNF{P!#ohT78;sxSHa|
zqGxi84g$Tg<X_VCM*Tf`Fz7U@XQa4B_N}Hk-|osjX&V2@t#IuybO_2FtDYv0WCplK
z<6u#7@cPV;$d0hTsY5}}Uw_Q=fq!ZT-(Hp#H<rI`{6%v>ujuJrFZK)d5>;2<<Xqqy
zwMV45M(t5iT%++JGY{o9@|zNe0oRCLL2-@fway<Oy^`V@(aSCvAHAyL8qphC2zrg$
zqo%k<?U6Yg^cv}NMR5hEFKQP_|HyxLb|AB8ob(ju`{j0ypLQ=e{VN;+dX4&TVli+-
z9)CHU3#jkEifhzA(n~<^8b^=)6Iv1=dvLtRUrlim3?MA#0c0Q5e{yzjDd_Fv=)s~|
ze=KQwqjqRr20F;?l{d^DmlW5KUKaEk`4bhzjYZGunOP2cW7+p1O|R!a_JfU1vJG^`
z8ebz#|EH5DkFW7LC7ah}j|83geq_d7A$D`Ld((>Tz~4|u_bfMV8-JOjfJ1a!#(!yX
zYtN#lk7d`5PO1ZRj&bD$o&0EYhBUole^*??{(dydYt)}Aio4eF#c~t<mlw?%e}zua
z8>^m%OB@5-s~){vaEtUOfBdQ`u2Fq6U7**fz9q#qs&DJDpy%s%E=UW1G)r{$t)#fI
z^w;X!+6{X5d-aWQuO{E4;O6~_<A7^Kub{XmJbFF2cdf^#m+b+)M&n^saeu9&cPrPo
zj$UO2==t`c7w@U(b3$%kaTEdf1xIhbJXt>+()6#_&G#-B`SNQ@bz0)$fvFtm-QnnQ
z+(tGe_Ri;Ad^nwgGPaIcRs07YKF1daaQtSbe8_P>e&-pNWqegnKsj%Ee6=HAd)P+X
z0hKX_KN0xvd-xu_ccCYEM_8(>ci|-9&-3tI;TlAkPB6=xeZa8kP4Z;m{di0tzbK2=
z3rG)VS$&I&>vii)e6H?F#<k&E-nMW;%)YB{svq?K?B(kUe+YiUE$EYkO8*=`gTQ|c
zY|8lN-@9kHjN-5=fpIAp&<tT%9HFGRIX*qv4!x3ECXQ1k3n<suJ3F{fr<|OBP*R+)
z?<;X{fDknPT2BSNyIi?!&w5#2dDbLr-<sn7;<Z;ta3|wBaJ;HR!huG&dK&2BFY4{z
zM`?6hPY2>-uYC93RxztRRR4ItcIz3yALa10T~4;G_mfi3aP3o6+*J<8@2@)5>8<HY
z<{O}Q7%x`RKi)ss5gse;-l6wib@06{!}Ps$Hu9yse0kX)nGZLRUDA1e`_9aHAe*S1
z1N>*4e(`yzOIUvW=)V0FKBg}#<gZL5`;V6Ato)TG>8Ib*Lec2f&intDuE`~NKIks;
z+S}q#@b=`~Rc^UTW|G!3`VR8_ujjT*Z_3|A{(W4zEGOzOET@0P{V#Fh_;BfqfWxXG
z^icPWQ}8g>my+WA{=)aQkU<rk)7S5T-sM_f)|Xysxn5e0AvCoUtBT2^qWE~<2G>U<
z*e@sd`YD>kb(6C6C)&Jj`I8r;ym(&&=coO|l!s(be>Fd?+Rzv13gx$UOkaZh@%y0J
zU%!aK?ElkW$(SPz7XxScvX>%Xlh+Qtyic8~D5FPjMxM#$q*)Z!e$i#f7x9nukNti*
zZ!^r^RTUTecWys_o8K;(%Rz4}oXM%IxH*nrKKFSW^VlbyiEk63XW5#}Z}`&wZ1qiD
zfpV_vGQR0PJ`v5ra8R-?44?R%3W*?A-^$w4CBv_fP3%X6_fALDzV5tmaUI}>udAD0
zl{Nj*Iyz$5<hn16K5@B2>w+G*9^1ZF6}Q~k9lpP16R~gI;Y9ibWvfqSeb9Z<<0Btj
z$Fj@Q>arVOT0i~YaVFPf61abP<+q2wmGaxMf4-fMV-Bxhq6PWx_4u&&%(AOu^vjAX
zd+pwVef}LdX51m&q(fh%Wc4g;0QzS-`lNq+K?LbH?}N8?Nq!!<Lp=I<zCecLf$JxD
zy>yoAZ`m&Zf2CL7NaZaT0rUB$_ni7UJxXqjd~-d1R?0f%O6u(K_#Y{56njRaMf`r*
zs^ac*^k`hi_{7%{6Zdp*mxONeC~boBf9~P+MYM8Z&piD-+7!6cbmIb_f4*xlT-n4l
z?-~@7Li?ew##ep85&b|_=Jar585`+`Uqc4ge-qn*?wX$5a(I764%ZO7w;b%pq;j*M
zGp?P!g#7Wn7p}f?%$%F+6Ut)st?dZ>cU*nhu6~0_%RQ2Y8`=pte?4`j$Z=(!?bN24
zKe01#pL6ukl13+`>G?RFI2subDJpJwJjCi*)$}+X%Y2KX^kY;Y+m?>s+g4}=U;g`h
z<)S}!vn4|pDFS~HBi9w2k8hXC2hmkKIa~S8?gn~g*G^QvzK0}cfP@&NMV2SZUvS3V
zhFFt-MlZD|=uLKh6w|}~6aC`<_M>vR%S&DfLe$AM<uYz|1Wi8KeL(MQM~}{#gj<Q$
z^~iZ_SemKIM{N@Dcewt|^1M&TuR<YYZm2Ap)X`rV<NK-Q)0*Gtl)eT!@%vAi&OMTe
zwsA4D<DwI#LFdgiPyqL@^9I7th{2?XTkL`F>Yu_%cn8dR1H=@ymGKiz2c5S(I^P`7
z7r4^{=+MJ)LWdqe=bHoM%n%)uXEYmh?$P?PzmvoLGdVuKtm@(HNb5nsf6d90-~aMC
zDg;Qg+tI<mt!lD*@_l7IGviCnAD55tENV6#7))PkbCB=sH7y_C1Bm-+m+EyZOEK;*
z)z_&m4NnrXOZoL#HqICyg~LH_wWlu~dXa8NxW4F32L*C1-=->u!V=`$%E_foo+j$|
zlBOTy(pewKTOv(3kbW~<YANXW@1xHLRmREv($)^G%YdsmxzhVLb)K?vCBs(=mxfO)
z2R`;^xqS3PC?f2H;R}l2*7a-dH@^_U_1H@YiEqP~js*ReUH#bK$}uB--gU1IKhzHV
zQ$C);n+zAO`f!P~$t5}p_@f-2&iM&`B~3iy_d`|{_kD-sdctIgVe6;brenSf9iSV(
zmz?ouF(dsPt{|xVvw9944gAkNx%cV&2Y7$xaJ|SJ1N=q~A8yExrZ-U+(r?moXy1V>
zZCHBiu}EJPr}y)t>1#>TpY+=a^YxzaduT55<@vT#a`NMO^H2}yuIu>Xe*8D<mQEjw
zD}bY^mi*)XF88SsMfQt~kD&;-C9ePSeSCkB{<4@n5qd4VjFOAx9l5c8RFm7<6A53B
z?S4eLWy4Nse+ROiq<oZnQQl_Gp7Hx5&XEeYhi6E+?O69~=j|6}myF-)Dah~7XZnNh
zqTQ+IQ1erVpuePyX)4q7uqNI>A`y6U>kR(L&`#eUPLS`#|NM2TPIhdSk$I9z>57}U
zHhy6HPS<jtCKaKF=kx(vNa%;}hFlii)G59ReaeVRpJ$7JOi!z4qWtHa9cyd(I*l75
z7<#yj=(4Uld43D{4;`NDC?C9^LLZ;t;}(2KYc35wlDbUQdX&FCJbzouQ~lv-Qr=UT
znhyU6ZeoH@^^=uw_d1rp3p&*`O&)B|pA{)A4PPO*5<Sf7S-b@JEuG#`d@tNn@NM!w
z_j-Kg2f**`^_PxtJHdAZ|1|Qhy^~i0KdANO`D;f&?#8hB>yYBUS%)Ljr0s3`llmd(
zHHzC86nCAY$M<TDJb&1F73f`2ha*o#%QbzkDDDO)r)BgWjc26Z2jl+OgTpd?g}7Y(
z3)h4G`yTzS;AuzS+M)0x;5r?B?vK9|Wo?%?sDOasYd--#j(_oe*MDGz=#uMll#i)e
zZn6aYlJ)Te+o87bT5ad1bvR>Ncp$#>iwiiu`#o13SD)w}(CKjX;q%=Gj%d%S;(p+8
z%pV!}VeMJC7xWt8Qf1)IaP;Pq9i^@`j9#e$&iZTmSD?3sXNU4wH(@`4yagHa^qDO+
z3hvkPGxs6?&)38cEYG~$@5VDD@zvc2<@SC&6yM&*ho+q_-{f8ZhU%}!_!#hz*YcCU
zM){94Tlwr4&Jc4kFT7aVaUSpc<JSZ}fDakJ=V7thKEiVqDn;6_n2FEh50&qxT5k1m
zl)IaLZyCtRlk1;<K>Eopo&5ns<_@Oc3|CZKZym0U8SQ7>JpDcO1n6yDXIG~)ZmA3~
z`WIJWEya!ROK}0zQpAIoiiKYa`C0jyr$F~+S3Zy5Co$a|%_5yWO+F3WI=-IBNGxx;
zqQ>eG-7vbTXMq2fqswuS<D49=|CSW@S&wcm$V>U$O;p{SyeiLvZX>(b`W$eL)+>h;
z*N9$iob)o!qufU8pB2TO?#U;I{oXlRcXIKB><geb)_SGWN5w61^n%6wXzh`HaeQ>j
ziW`eg>Lt*z{x{bCi=yK8ar~eL#!q#ebh0m_yuBSA%sh-vQPangkKs~P(5a96ksn2I
zGqQ6|&#Q|2yr+*n!H*f&<Gqf?$u;o`=$bubdGvYr0GOT^6nC!k7swujRWUmK!6{6i
z0}^S&Ctn5KgFQYv<-IE8Aa=z4Vv@=w`+vaS(}W+`4!4H~=(s8Kkap^Q^injQUGoP8
z9>}Iyd8xl6|K(nJ-N!SsTi%W}ydRd|06va$@i;{NR_&xHAF-1C2XMb$)A(Y4{y4GE
zixK}_jM&iPaGFSCF?&Vi=Ccs_<0tY#)`h-MODQAPuB~r@z8_!g;Jg2n5365IaX)tT
z<M-msl@b>cajW0%D$n9Opxf-)tF7hgL5Xl)J*fV{)r0Xx<yKDVJ><Jn>2N#9&F>ta
zofem4{73Ht-^l({6t~dPrTt*!o~irj^s)5=(0j$<c-^%;LLR9PfvZ1%aRW;^7hE=y
z&!LY-)+>kgh#U<AvrG>&9|PCp<V^L)HHRlN@d)p9=XZ?I7mP*Bs>!eX3GzSU^qBQ!
z$0lk1AS)lVLgeD;Lm?#acdxuQ+_2deCa8I}VU54S8o<Bp;iGUb(Su0VLL=!Wkpwd$
z>S<6U<FBw5@=tSm!ThZOeLl?4@qDPVHt=nF@LuEEtE51RTkp9ZSBc`*5(m6%(7Lvj
zm);2ZPx1N1i?||O{~t+5w)&Mf2L3eXC$zQPGN_^ITljqpQ|P+{cHGA@V%y5gY>xb2
z^6ED`JYLwHEpEYVz75c=lN3_G$LDY9JuZm(F2efrBFt(R@k{RF`~Q<$Azza#hwar2
zDW@Ix)3={Mt!MotwKeeU6Y)P;|04i?O(fd!b0SjQb!*`VmN(r>da^W-_kb-1bQkI!
zED`z?=jhf!@pgxQP<YMkgX3pMl<e=P?DEbz8LpzZyOck+2X?;`E0^Jhb^^T?ubn%C
zKQnWkZ1t>tN;?C0L>=xi!Eu;E&7QLd$z6cIwyu2XM?K_cxbn-2^XC=aqs%KZyMo^L
z9KE?TpP{a;1zUY;io3|eb@RI>hv9~H13iEI?iuBrPI7nPe7{QWE62~SzC+{0CHFwa
zGd=!tydp*RkLCxiKNJ;rpTn^|r;g61jMj=w-qt?Ro}l}?(eUJ`567qX0{-_Nz6bH6
zp1E8~4+f1*H9fgE@Y?*;57Lri<)<|LxjK562qn-Xrb(Htof7+iUL*Mz8sMz_#8*Hs
ze%~j**J&&1*NgZC6)FJ3*S-q;J5HY&zk}k7Bk}tJe}KbNd>{9OXZg6a^;4sto(%l!
zo;<p-QrR8Qz-4%oM{64R1rASs4b4OFYdlU3Db9ZnLKlK-U3|>V=o%lzDWI^q$9EU*
zTkqoV_HcZ8Kj8oF_~3ij#X8mTZS+g~|8MjwQ~x)7Z5r_P_UT)!SDmBDJvrll<3Di#
z@PnRwvRJRkdf^i1ClqD^KVJC{&HCTyCuak{r^iow@KdgD`)Kve90dGZUVC+69^2*X
znYCBuVBp`b!^<EvI{pyg{r7~i<HhdU<?;b1*63$5z>n7tO&tonZ?8wYZ?CMlMs&?y
z73P4hiqY9COCQqocs(X)XOUQXVlMI@>*R#@En0e{>GR|C!~FaeO<x?RAHk2Vzt02x
zcs+~HSuA!P-f$(w`EmHs&J|}51HDH3v#W}`#qq`C%4yt^b^Dcz^T)?uY5{O#@%M(7
zQ&HRrpTQ68k937U7kk@<8_>J3f7gBdoSEvv+GiJ*P`mKPa<{5~ARy=CV?TVzVA_Q}
zc3pV&OBc4vc7=zaK#FTKY0aSDXja3)TP&_RE@lE+&&*%(qoz?*n=-Pu6x->{F_25V
z?!|F9GSFC(p}&}KSih+#KI8TKZunu{qmB2eV?qBt=g0DV;1j9dV)ypWn4eS+@cz0_
zH{z{2-6q}h_-|bSeBHj|@MxjmhV#2^<c~W)xpX}6zCO!~v+;AR_c{D<sH<oEo)(%N
zIDd2K1mKR?()2~<6BED45~PX6I>ZT&T_(TUg}|TZ%|9+03@;b|`=UX9Lx*?()_)5Z
z122o2M2GI@k*mioy?6=I_eJrP-Y-v9URBfmeeSleOh(Ima1Iw~{W!V|^nU5+@p{O`
z&d)eqe{a1UxW`-Z1J5JAF&G{u6H$8DSt>*it2bgv(8CYymudEJle7{g9c&Muwxnz9
zmw(yA%le>~AIw%hlD`KZyF2~jefckPnY~NouSBzT>nZO<pajGbdy%qS>NZK~Wh$Vz
zhiiBCD`Z^jmbgpz941lsmuKmgf9P@Kzu3!f?=P2$v+n!UP^O#UTU@2}3FMcTQ4&vl
zzf3>NpL(LcfC0fUz})(D_K%v+=~Z9L3nzt_i_~5?DfoaX&?lJ!(JyQ7p{J3re*Po<
zzb8vr!=;}A&g#kY%U%+lvf<V@3yOQ#tABU6hp@pfA|=tusN7ARlAc}tt(?qrpt!e}
zzdiU1gWD<G=J*+U9=JbfyNR8~`z84Op{~D2F97G;lP<glMBdkI<rZE9E{^NYrFP%X
zRnTx%#a-jd<@OQ3q`!-PGu+Tipf}`jydReYAkvTb6{KDUF6;D{<DS?hWcx;V`$}5r
zn4T2=gnUQ4e0<*Gmn^3?S^DR7xv#_aa8|PiwLc@@d{4fz9!uv5M6o(B|1o^#Rp4*)
z@a@6v(jLJJt~##X$-e^szVgfM(t-8ujzz?d(M`Ul{I3Zh-oyQZn2&|wa?%%g{3g%B
zKY{n>-+koL(LNTLG#f7YFW~05@+sa-aT)v?%RN$@KW_BVD`15p-i^}7uchLBGCVCc
zx!3*;O8z{h5B2M#k(J>1%YBDg*i`vQzKMKBr)A&-NwM!4O@G?8C$Goz=)oHUXo5u_
zI!%-nDwAXDJD@w&YoA{12h#2Fe7RA)AEodv@V`;MxP2n*--rf?=e+)&c@Ma=oFCNI
za>-zL&N|EqJ@A_!`2kCq^eL8=KE=nO&kK=Gkq^NiD3<+_LH*7v?2?_rh|<s|hw9om
z!RX&l-xj>W=r-8QHdx~}OisI%-^8boZ@qec&r~+UUVHeZs2J7Ybo-^>9-dJiu{g-J
z)gP#PYqxdwHn|zflgk{52bN<G{FENN&Y_2Q`S7a96t1GxFS7;mUFzDI{h@<|g~b@R
z7IPfj%CmN^eG&QEoqZ?2R4i#%7zvwQyerf7uk6;qH=2i7ze#NaydOUr?cSB5;;!@b
zCx^zbJBOUv7W5j$?MsSl6t_=q2YLgpT%L!}I0ZFz{cK2aUvapT<;mn&(e!%#m+`J{
z{lW0X?NRP)jvo61r*g~6Yu;d`V*5JurSaiS?u8wIf7qkn%gfTL0LDk=%fQ{^_46Ep
zv^nk`#)r{O?gYH==Z-dS8&cd@^CF{{-g$iV%8IK$PjMN`t8U&l)cW7)IlH+FaIqc*
zqAJE$r0I?7SyNo2dKP#6?|fOgsoj8UM6aT_UwQ4@gYym?Hgo<=ad*%g3uk%|?E&1c
zogG-#azMCY$O1k9@!12&TseO<y$|p|YXSp2&dv{4h{c$X^HB3Kb)6rsOIFDA$jYnj
zi~P5F<z>QeNO>9Oy~Tb{X$tTiuD<pAe$0PN?FZZ*&JMC4C6Stb8qmqxrC=rdyfTjT
z+b;B}CjabI<X_~MLnED<1Lu#F6_@dF{`<g<UUC}fJ?n7nPu=GFq2X$ZyV1i*oKpL%
z;fm8i54XAU_(1-0KIYH#yQa7;UB3>$$d5)RbpYu2^RXNjj&c+TaDHx8aq;;CmU}#K
zS$Tz-ptru`pAN0jKT99d^v}BVL*>c%DQUXD53Y+}G&8LJnOP{Ok=%>p#MKn%w|9P&
z_RbuLa@!sMEC-tPsA5<>%8G0AaI&9DaW-DJ&IY|7Hv!1~XL^{G{xcoNZKj9&%kVv&
z^fqpf4Dxk)^mDx9TIpN=${Y&Zx4r(gINS*SK*(Mb1Z(_M=K=r4I{d!C!w+4IWB7}C
z+AwRLmY-aRd>gua?Dw55b{U6+qNC-@a{MIIvj}G=bgdU}Ig1vHkuW*79s#=WW})YK
zE?MhodR0=~CQcq`NuyKI^i5qqpnYn=f2{h>f2u7;d7F9l=)n8EJ18>3%y%3mf92Sb
z%a_a|-%eh>Ha+*=7B)-9He?YFjj!~P$mjb-{<@mAOIdM;IeW(EDmE6nS@4(TV@Jd7
zYpMhE<2Vzy%j;-_sjm9Y9u$rS{&*)xI)}~Yq{&v&bY;5fRiYC(e;vOw+(r25<a7DM
z`fH*K_>~^rUh38qEm_WuX><#Ud&RXApYLA6Ksn~kAAj=tLDUVpXL)pccztPj`Nsjb
ztw*;58=~cXyVf49J-}V<=<&EAk*t2!!AbgiRdGjn?VSx<r2bjN39@nwlaIa7wA|Xo
z%1P%?j_+6WVoM~)jokekWyQgYLjU=_hjcE4Hbutg0+T0z-d8;R$cJ-;pFF=eT^TSr
zXHEp(e{XY_jL;kqzR}6g@U16}4{!BLo(%k5PL89myH^yqqt`B7!Ao4hE{aFHb>PG)
zpm%^*zqasHsb3rWvsyp12bopC>vWCAM~oDf9%=d)9Di8Bu=F8K-@v8A(ph>*({)=3
z(Z|jROD}8sdM^KLd9w71rf=cWm)51%G<`FdzF3~j9whZeLh<}?S<5|x8kxCgFnE?F
zc+cPpYe;LCOaXFP;plSQh$h#=#-+02zSIPu%;RM~7=;hZ=oHaK{7&qy|JF_i{o5UV
zwl}gAG3xxMbO!L(*Wsry_jP#VKl=^fuk`T#{mO<*o;i|k4*Le`=8<K^bvt^zPnP%{
zHjcKQ1$zGeMcc2y+mna)@0#Kp?Y}LY4Z7pqe_Q+}@czD+(eC%nd<(ex{bk={xsH0j
zZ}}YH<9QIxe+Qfx-1v|>7q~|A>4M@K&8HLRf!<e~{4t-lc1&yf-7cN?(_Lz6?es43
zZP2M(pAAk&eMi}skQ@U3MQ2ZV-twy0lllCfY;91}i`sX9zh*5k!s`(wJJwSgWKUuW
z{lKdS^7%*o{Dpo#Fzh?UDj6p|in38?6a|`nC|-i{j&}9N`?Ad*Coe_%eJ=gKzYn{r
zc>msyh~k#q&EAs_8r_Knqo2MU^lx|L8}HYAUF5ScyxR4A!zZo;{x=>!Jy?6};V_C0
z$4-wbil6H6qu<M(`XT80`_6j3eP^a8(KvDC1~`*{@+y@33&&q@3qM+U6-|H9rSrc1
zB1<wyZR_rbC|wOY!{<Xrr>yC%-uTx+{f@8SsZfg;KecN>XRPriaqWLkPip$`d6&^|
z)%0~;eb8dozG+Q=ya@oFr_2d2ka_x?;2CCk4#i&Gc%Aw&`0?ZEdJjE0_;g%h4s^oC
zvy$Q~%|^ei<%imxemEEot;w0_;YiiINy=y87L=25dfL`<<6u}6MZIwlJICo$!pHP^
zs;Z*Zt8yFizv=4D?RYVlmOH}!k|?abDz^jwkcaQZ`wsaY(Kz062XGfU9F4O*OfZsd
z>_#trCvg6JH==pG;ihW-s^SJbJrPO-q(PqHee!`X)I;c}>1I{pex1Dw<;C}@ENe;g
zLdz8T@WwHdPx)@(PjuzVd-2}k476*OS`l{3@acPjKdBxsCT28zxeR=}!?Pa~yvFqD
za|Hd?`+)b`%iX_0GfXwxuDx3C2mU744&;x}yq*Qd`<SgAYKm*rUPBLnUL#!VgZ~|8
z@~SBA8J|DQccRhebEStscV{Or_OGr&g=pGi^|yXieHi%od@TFn6j<Yx1L=u9G6wNq
z?(xP~?GfaA!Yjw^C3%UncggiGW<M&w0e-lBGI~`_kN5L)T=DbLO%K5Pgb!dATzmWu
z^m?3J_<RHHpd99xWgi9ZP&bbAJvf6xw;TI;x@jKa)-B490e^_I7d(%~0qbmd5#_7b
z=j0Q>@960B`L_3k{=8X+j^&nq68H(90^{r_(Ef`n*I|*-!>*K*<!tsV^C#eEI)2((
zzCRegCk1?ekfwrD=zH)sK6$4J=$hP%e?k7OoSfR^$>dnk^m;#3{PA9nv=|@RS3&2*
zH9&~%`|NN_vG23d9cN=-((K^3%*<@Ic5z&<`a1HP-r4%2wSVgGT2D`(x^aF%wm+EO
z8a{dhcz=IkWc`BNy5ac3KY;hg<47Y)@hOp*-|Rnu|DuyyR-R_-_aRL$dGeSQo+mS(
zS<+)>g-7C>goE@qX|GxIm)n^CS$)!Pp}a@%GtC#-j}>@c2;@5@li`zZ1OJdGuPzxE
zy0CgIljK>68<k%59pG1d3O^u@c!#LbbgXYqm(uF~BCs)C7k;Pn`PnHHe!NvGHa%R7
z>?`Hh;79V|6A{Lz2j@zH3_MC58>pwVpHB2#77~i-WhO)m22C-)v%+Uc-ypf!TCeO{
zz!lW6aDSq0Pd`|jDbvIG!s0E1!Grh#TP5f_#kK^%+k%LM$+h}<(EIh;ak(^azHcpt
z)5D8Ij}g`{N-5wkcXDlO`D7s6x|#9x@Sce3lYv00PoJ+Kzm=ES5&5@w`w;k?#ZQIn
z_Hbd7)z|Qa-GKM~`Unft5m`STwq|k(hR^H{{C>Wk1Z45pK;HshxTc0L?g6~Nf4dEK
zvW?@qrnlBkwLO9V4#Y)ztM|SUC%(NN+6%ZpIvkBl5;lu?x!c*_Xm8+-_4v&SyIKFZ
zxZ}6F5Aa)h_IEKFcd=|^L9)XqC*cQwo-XkXCpj=^^{Xfzs}P8<@r%lIm~nJl_XXX*
z`1RBK;LsvSFgd5b_P^nilYxJxu0O0TdNM1#hWZ84jec!^eBarP8$3VTQ?zkm@R-3J
z|EU?kPx0g);dpg~O`*|pZhfO49RR$4uSg#DA<xTbrYC0a3p0U#ua5rLMPp@OS`_?C
zzL0DgY2_3SM82E6e4TtwfdjoCx@tIl`XJ!{?X^QbNHad~UCZI(^67(tzuV~#^*`u)
zJFa_c$L)vhyt!$n>-UL6k<Z_Un#TZ`$F(wf(b_x>$y79%I7r0wDl<pR_4w>1|BQDB
z9!~`sE;$#tV;qkA7scCE0iApm7xx3+_auIwu1AnyY0_wC?kr#FFwj5HlW#s)CQKhD
zf7|6Rzbc-Q=2s*ZAm4C*&g^1R)35gEM!5ISmVMCdV*F+6kJQlkDlY{6C9Yj~Khm#7
z-<OgfPur1bI!S+NNsE!DFR3Gt?+j1x=Y>t8_w&L9lppDaFD=D)zu)pYDYb)mzi5qk
zTq-UDey-OZyaQ~wJxFAMOM3N}{UW3c3n9@Q^J07?mjgec4lg3g`|AUSPqhL6uH%FK
zg(E%6NHBS(js*TfkG|U|1b1ID%UNntRnxz6JMwMd<?F;cUnh4}!&Q$0ZkgkU&sozT
zJIo(XcL4Vpk6wgLThVCeFtSJgZ}>td@c#TSkBxMBy*fuYG&vTI0e-T_k6rM{d+CuH
z>sPr8zuf8S$@8m2SnfLVBEiu=7Wh7=$2`9OQ}kHQc+<X8R$;>@dVrrd8bALR^J8+)
zt^nTm-}`Xi7~g#A?ro|mZoMY($Nt|UIXOOsJ|7W&7LBqWK9L9gZ9IOuAkQv7hfHn+
z5A)8Rww?(546nYO*wEIAvz(pS9oUJt4NO%z7EVGw|6H=&udntLmejYZR6!eOOn$XK
z(7E#e@%H9{aaCpi_+!HIDk6n~sDK7V5h!8yOb|8QTj&x<%hFPk$;?eM?QG1FHf#+F
zB7zcRQA8y!EP_Z_6cLrM%c2AU6+{gRA_7`O1w`ccdCqe0nLGDn+Sm8@?H|pY&*wSM
zdCtDxb6k7*dsi_KUDLXoTm9X7H-3_ozuIUojuxZ5xmfT0hU-D=?^Y$^W+Q(6>i)U@
z*3}L2vrd=#Bd$F>zZUIsfv?+;tXICeKOqrsADZj+nX+D^UGm4b^hqh-W$4ezjLC@w
zpIrTTaN-Op-)6`cWc{nNN4FbOXG-~->e5GELU?rRgQDCV&HEuz%uUy^vn8;`O($-@
z`GaphNXqB2C4ZsH|1IZ8cc(j_;&ryiSiCIyp)!_wcyHo4@kew}ijcJYpFaU{eJDt5
zPS?rG@u7ZhL5X27EPaY3*7YlNzO?J-%1)k_4a@U)!$m|w%gy?{l>1(toEYB>^CFd&
zn^JO9b#mu(*!;bKD>r_D)c2erx4z|Gw*Y8;V;4%ff7Z!8+9-F?R?1y0<*qXH75EM^
zRq%AUU0>Kbxh+cWJ9YZbZO}LVMXB%6I=L@#x)jh~y6G}{iIg+f>k2$L@!R($Dfe)l
zz6*sutlPT!+AfuHSJ%mXx<TKRlDox_%kjlizHrCBEcHEDCwFy&T;Er=PA>FSDK}lG
z@5c@LW?d%b{$R+hZ@Ilej>fl6-?Wmm>C^4u)Yqgw^SotQ-UA`7+mfu;zKwrfBDWds
z&w9}?^Mv#q<cy4f*5CI{3A7vXIe8~u&bTJc9j}aCF6HxXI`DWIGvh@P(B+q|kaC|h
z<;1wMe*Jw+$<@cNB-)CTVXbTDl~UioU47in%ks<956ODts=livB3EU2UWs!gr?6W2
z!JD>oLdh*~^+HZG?DcZ=t*z77t>jd4$Z*91j?|~)Gp^*!aZyIz6p=CKv)az-t7Z7>
zT|05^P0a7hm_T^<Sa)9|<(kc>CzRYSM!xIsX)hJ2k1Y(S()Lb%Tk5SJm#Gzzg<kq=
z`O#~)PF}~a>pN0jRd=M@^1650wcMDJYqqaF>pH2g!%eSY@k`s+t@tZlp2wLeNIcFA
zh!0IjeRtH!qouRRPi>?8`1RYSzjT9?f3VITF%GM<U#DBwjZ*$5Ltfl-rxIMJ3*98;
z%zZBR9QxP2eAaqLzboaNom-eza<+2|dfwahJ*n?KuANe|=KB=?0hjL=zcfGA#Q#JS
zeyRz-r3pXl=9%peHQ~FP@Fm5E-1ryk;y<qVxXV}T_-V!4(r?!HrTsR(OYzqHQT#jI
z@K@J`KiWk9gyK70|C{RkZ)w7ZZjtuSb^W(=@lRboMw{?cinqm|elT<TgcNT}pYA4n
zsR=*Ugr88n&Hib{+wzBQmGQIjZB6(t3$NRYKE>BKQ}B=1vxB}vnpScbNHHO2zK`nW
z=MSa5w)7rXye&PZn)u(+grD`JnZpk?;k%pgr6&BC;%)JpY{GA8qJP$pXD$yR#oNN~
zQ@pJ{k2m3`6>qE0q1&W=Hhxs`Hv1-;@Y9O7l`oo{Ise<5@Lf&#KE>PYA5*-ozD_jZ
zr<(9vn((u3pE>>^#oO%fYvO;j2|wP1pKQWUH{t1ynd8^igzr+kt-mfQ-qv4FDBhNS
z(@pqUcg}2oNb$Dv)2(=0_@hnui6;EC;;r@Tu9@v`Yr=Om;rkSCi{F^yZRs=7gr91{
zZ?W*YznpcqjDNHKa!kpcQP*G27c)6*Jh<l=+wPe;J-ZZdOOH|$|6@(~i6;D16Mjn*
ze%8G+$1l``?^e96zK$y1R$nI-Z%e-|P58E-%xr&`;%()zPw}?!#}setkEfdOv+k4j
z+4|eQCj5lrZT3w!;b+}HbNYmu@ZC-LQWJhm@izM>6>rO*=_WiqAmeBA-)7-;d(ox%
zX6?nKlDpY$FL)nBEYOLY%-!+zgEOc1xZ-W;G1bKXmL~kHpUxb9s0rWQgfBJW$C~gH
zinp~F(~7sX7i~Y2@w260cN2b8@wWbRT=BN@G}%P|7RB4zi_k;Tej8s>ysf>MY{Ji)
znmK*Cn(!sX+tO#O2|v+<pK8KyQM@gG+a8wjv*k}$6TYtrKWgE1doix~X6;4W&!wHs
z+KXu=XG?E-Waj(~Dc<J4y9r-v!jCoKCz|k6P53QM_*sw2_}kixF2&p0i&4ef%F{#>
zep>Oi^rgpUE{|=Bw}s!Wcw2ig)`Xu@ysf=x`-Qa6#+MXtvv0f!Kc#qE`fO>!&-$gb
z&*neWgzr|o&Hhov+uDoqCj4X*e%iw8_JV#T<JYXc7*%r3+KaBoXHKs^#oN+jtcm}L
zCj3+reoGU6))O<^A8NvPH{nZ)x3w4Jinp~F(~7sH->hFt`)z!e;%()*Pw}?$INC)2
zgyL=O#g-;~=t*h6tvwiR!cQsQ7JvH9%;^(Sye)mYoA9M3{8$ryLh&~HrxkC@ANs9~
zpN(&8!gpDC-Cp!5zFB)Qt>l`u7vsN^_S({WQt`I**wV!Rtm&Echnn!+P54q1eyj;U
z(S)B;ysf>Ur)2zW?M0X3ZRuBP!jCK7nm>xSmAC08`e*%K+HY$wx|{H0inp~F(@pr$
zA7uEp^yzEDk15`kJ`+v&sV4lECj6|YXSTmf@wWWwYr>B<;m0k!ZZ9Sk->kjpdPc^h
zS$jc$lybK8Zd1H1Kf9awFE!!En(z}%_^BrRmL~kHXJ?LoNb$DzqEGR*_F`P|w)C57
z!qcB-wy#a`w({7ecw6`-#oOA8i6;CO#oOA8uIHrvHhxU;Hv1-<@LLpbE5Eb;JahVm
zn(*CC_>$sn_Kz#xmOqnC_~|A*Jul<u*RR`)HpMq<FUFNzv-YCzg_+ZHRPna-m}ugE
zstLcP2|w$_ne7WT;k%pgr6&BC;%)84q~dMu1^q?ZZ%e;W6TVOJw)!xtcz=1(>)GQ?
z^iL_?)?Uo|tF+(7cPrl39*j5Pw<zA0K5biOPQPx&+tR1hgdc0dPc-4D6mPSiUXu3P
z@~5o{-_?ZgYr>Bz-j+V&inrN6)x`gnCj6|w$@tsC4>jStoA9M3{8$ryLh-ixJ*{|K
z{cd}?N%?HTk1F1lKI4kFm7mEb`nM?FR)0f(m-gHElHzUkd$I{X>mM_xPgfJZq<CBU
zj5XmWn($Li_$`XJ)sMD+%J|vxr>hCy*MuLn@OnHjuJ~r-fwotqoulslC*LDGPoI}?
z?|&RuavKe~pnJC4UX}VLTsb~ZE-$*l2U706OjAm3(_5q<fA2IT-+>+Ci|_UM_n6Yt
z{V%Ea_Es&A@4V!N&L^~H)#qM(S-%u>zY}cxj|9B$$_#(UH~Q1*H~kiA!DcrexQ|an
zV;G0az56cvTBMw37r!Haics9&`T=|oEW_9F2<;%{-(h@zw!Za`LVkVg3dr;KDK~3x
z?so@WJ4t^}yY}#RAL6^+0$;a_&zJCZt@r*x=<QOz?8<Y#;v;C^_uLao&bx1g?Vl&?
z=x=>i{>{4PxZl5oc9Z(e^vUsyy-L4M#|b4jYS@wE?<9TS>xO1aeSbE}LqFda%I|!<
z1<506H~h9eBv4<@&SH7-nyfy@Kc(dU=7!Jd_DPXooNlVPxZm4Py;JIaXglda-Y>@Q
zbl_sK)=~90A^-BtO@R6P9G$=8drAL$y5A%6ceo!G@);?g33|_bav$mMXNH|s`5ttY
zzth+88GEmkGw(yt_r00l%edpb_bGc^y+?~*nxAaKPb>Z+*MG}}{8QUA+9vgz--Qmy
z_gMz`GjW~1x;#woE9K4a)y2Ck5_a=<>irV<qZ=;XfoQp_p&U$pK+65ekQ?HAV{vc8
z8U(Myo!C#x{nL;e;O~rl;ZA&TW;q@2i4RG+9gXrj#1GN%eGx{ywfyA%QvM+~e7?^Y
z-=X0{Eb;ZsDgEN{8(ogZJ}l+0aN9esmq}5M`deR=e~k~>bvRvfq`$xKC<Bt;UoRE)
zcuni++v^<B>CzRG^788mc@BM(xba{U%<{gcnox4*x%TrtSSXp&yIUT*;u6@!uv>hH
zgL>I|70gftLfhM&l=7oSI_i7hTU!uKpZrv(l)tF1ejP3AmvM88)?YeI%3o>f7vH~?
zTbFw3z5e23Qa=7RFZ~v^-YC*<k-DF2QR}3ejyjyaCDLD?alcNVypgD{bpqm&cEg!m
zA%R!jc82>U@!i!4t>NvsT%6F7a-&bjt8}02k^Y`{{o!2|eo~pANdLX~Bfc{}zU4*3
zp+0;(UQw4C6d=~PK<S@2R_Z_OZ94vJ*FV|A3Gy2F6I%BXsc}N<xri2E@m1dmEf))8
zS1CPP`lX(q9IW;9&;G>b*4<j!3x51V=)jK?cTmV)JE<T0Yvkr#B;r7`PUp!nskdt6
zXMvw~<9p=LUFh~k*Q2h_OZfu~dC~vyyC%o6x19LKJBK4*EUEpKE|C8AGW?Zs5e0u5
zF21%b_X&sSbm33iH+G@)_YR|c4yg8jfZH!$c^<!b+vF#{DCPIqU8gJGU-$MM*_b7*
zzk9n5K-cf7Z%cXeUESlw_w*9ic29jry2-G+zqKIhRX@KouIzU8PDpv3-~9aww;QTk
zche(uy_EZsnU3P#vU2OLLc92y#cijjZjkb}?;3UZ-8V|PZ_8xBcQH7(SLIZw@@;Fb
zKDtTD{lkze$S24JqT^5Bm2!&=J98~RWQFGQ*KYsR{XHo^$B<ty-my}+3UBmg>8`)O
zM>McizV}C$S8d1C_oe)l+m7)48Q&GvW=-o$s5R1umLI=O${%3l+fZw_NZBD-FNSd4
zkDDG-w@dlYy6M5+E#rm(3A^8i_1z(XHdjvGxT4d4RPnF4JdfWWbM?4#cS=2fFyu<c
z_u@JprMsk@c`trJ&IiOZ;L1EV{m1W?h<HQ<x;g*Xx4h|wuk}vdBjwET(y+Y0W|%+k
z_NV{!y-IIg`X8av|Jx1eKkH{wes*B`pU&lH2n~#z{-G%;zt&9;ylWr_0Ald0?H*Hd
z&l!6ATE|4I*|*WNTaV*LACY?3xO!WT<DWVorWOB&%kwz+a<;EfL#nxQk4imRSB~cm
z-aSxSuKO`5x6Y8O8t(`mrtk?R_hqA=6k0?>S`Zgz=*PswwHpNvNhsFo(EUppPXBgN
z;q24UAGIDP^5X=)Ukn`(S|`{3$zMzPFBo<Oy-VNsq?9wit6OipBctu7-$=P@-0*v6
zuW0?7$cGi;-G~+FIp)q@A;+96c*xE^bUIBuCH;TjwTJH;!8hgTNcthF<5~K>lzZNg
zbMLX@22J5wZ{HuJ{MoKN=Mz4Jm$2LZZc%doW2Apcjyv@|exeK0cF;3Y!KAB~=kK_u
z0^>K4Ut)IU#cxu{54iGd#}RHvpzRI)QR+4CvpNap;{6EB!WPjf%Kw;>yUUm#XT*J4
z{NOf50{lnZOOO$Fn6eY2Q2fC_2LFo}Ix_OYb#Z}!%gD<Mm6*sm{;iVB&9A-}B;pwH
zQT4OHk<#fjrR1J-)0N-Ld536s7x6`QO0kxo{EGz4cg@$!{$;(q=B56AqpmGd{xYNf
zyZ8UJ{GH?4&)4UwVBB_l`fn21!?j=b&~ABtS@H+DdNB`C3n-_Eb%ayo?D&*b9L6a~
zqAphD=Hox4|N8b}C1;`dr{%_#+&3gF+GoC@fyYmL|BOzT?te;s$GPdq_ugQf#23^d
ze)xk@;@w|1@rsoHiYw3kqkMm6jd4-2wxjzsDSxeD$FRINL@3tdJ^GiF`=~K*>1*u}
z`PtVxSN`RTDOE+(_IJG@{hj36!`}~liw&=u>sUJdC;ubmcXs<1p4Z9wML*ByIA8xF
z{)k)db-iDv?4R212=VI!Z<heyL;8cwt?}*H3x3?Be|$uk{DaLcZ%BqO;baL;e0a?$
zeYC68_p`k{eSbc!^&xSuD1KZd#`yU0C(-2L#}yiRTqC?ZGk5l%Pm@96uL$bTr*Tj^
zAEpkL;rvU5EBot*+2eX{fOI}gwM#kkJ%r=cHR{L9`=*XJnrYJMG7*;k_WQ6Gk8hsV
z`Waywe*9ejkdH_Lsfa!VKfdr@w&I(@T(^EtA1C#F&dAsG@;)tnADL)ubvY=lmGUdx
zdd2rSUm-&6GX@%3esZ0ZPrBue`?U{?Bt4<!dAFSDaziO8zr>a2dp7qK`j3_GaULt5
zQ#zJM>vLxxi`E($t<$wTBmLKng9li!z_$zGkEr}|5fMqK^R3&F{>*!t#JxDO7?W&W
z;9)?@edVn>{kdMAE#kAL^&mNZlJ{1wX`Ls`Uc(P4;Z`_#i`*Jn>eq<g$P0hGDD}SE
z$cF-tAARGN$&!@2PzI0ohSw)B&QNyh`1GA9<xZ}X>ucz*rj?wzZrIQF*7@{Jm!-ZR
zxca#M<0dK8e=HZf<C5`;l>56OS8ln3<;rM1J-Mos)AJ}Xugbg4t6Sc;D7iO`bkX+@
zVmyb?aqT0wLDCcn@e{4U<m`h-rCvI38J6K*?ApiuI67Kie8)CQxv@IA<3&8UJJsc_
zZIhIv?WCX_w_PvGckA0l0XRXmMJ#cK(${v1^!HWQAJVh+<3hfQ0ARlPKa$vo$h%~#
zVrZd6<#vX0NTTI3!=qf+s3JkU_u(f;r5)yYrG(_r`Qpa&bSY={(;1ns8F5V?4^YtW
zsbqB9m&s2`f1h>R3$Fj_9pu(^h_Cda+l%f`N%>P;d9*LG!uPcnU2#|c)TgEV4X!-b
z$AuytWd*F)KX#6ke^ccHx6dVguQ2TAK7;>hd&bU{@(H8-W#l?khKreBe(JN^CO_*u
zDgSA=9Pqn1KNIEW=+-gBLx!O9Vf+Fqe}~aNcB^qsw|K2%?(A;9F<u#_<5Bv8^!Ha8
zJuyxx$@!spE?Vc?ev0q=qLer9chB)Vb66)Z*PFX8k#euP>EA#5s?DtrAOb?A4!`Tm
zQZC`z-9P(^&8;Vih+eT-Ux(|a`{-p-zQY|q^w0k0=GLE!PWhXgF*B^s*U8JJ{GCQV
z7351h1%B>8$4}cccBPbmk82N?%Ns<wIYBhs_4+5Smhz7Ur5`tJ3U~EiBjsN+>{&10
zgI?eAT7dkuQr>(oXuW!`VST@woo;`%<vUV-XG4EU?i2EJChoYCCZwFXe&Oc3x2)~z
zrR%p&@2nf7+`UG6lzAbS2fhnDdv$tDD|z#t+G@*JMeAf-cj@Lo-6Zv!_jc<2EU~Oz
zK<kb~*ZSMOE9K8L(xYFEXZvB6&L3UAC%z};H@NcRJ-4|i076ucN7}wG<=*L*6JGxj
zOTj~8-JbVB?&oL>$=mmbx<%x*U0t_I|Lcr-UVm#$6ytt12H+&r^5c_I{vB?)=ke7u
zLcY(CcjIx7lz+j<hY}m4BCLkHG=8s?+sT!a0y^9Y#e4UFp&jB2!EtS?G2L*-S)u!+
zKJPwA-skx|%b$X2JpPySs^uy?ZSSo6rN8~v#7(>}a7ydHcK4-w*YBj<$!@#C>%T{d
z`niPfALQqeQSbQA67h#`1@*>(lTS(i&$#&}@^@b`K*K{f!qOjac2iWR)5J5<pSNz<
zaxO<<nTki(A0=<T!<lQjo-N27DgKwL)oQzhM779?WMLsrdEK6O{YmQc_IEiQWePg1
z@08=j|47X)HbLjt7Ul1B2JuhacPJP7)$~^S(BX_eC&RhMEr;CR4T)LQ3G$x#6Iy=m
z)mxokp}$IhH_2c`zaf^gRQYo4QF8ZhCk44*#e7oe?-TLw6W8o5P<kf+F7+1N{K0xr
zYp=-PvK-l$Td)$r&52w^l8=#;vF^lOo6fJ$t5VONu6=UfSI4_s@#cH1Rk^-WmD3!4
z84F`8{BP#V#A{OT9j;!UucNqNqAv1<Z=uC+jHpFVn^SV5|C0WGZ=}PJ{LX$z7Stg*
zavPG5G!C7}YKB@)lYfu{>{=%Oh=T2M*9#DH84gg#uk@x2@5MShrG+{6pzKuMTz`G4
zM4RsviE|U2;G)#33xbtL9lz3BmWhxS8SxV<9qbR|T>djC|A>iJS&UrE@`d!Wyl7PK
zFQHpw@lT0AGLx&i1n#HeGr7GCuja-N<8_f{Wt`Sn<i@9K2PwC^+n)3KW0wp;q@#X~
zQf9PHzrG!%zr}U_(1x>RVg#<^gEJ*a_&LgsiT{!Q?sx6t@X+zGzqH%@y7HrM-8T8|
zw{4qz+fLgizeUNL_v5?iC5oRY2JU=~c9#0TVZ?V>#&;O~vAe!Iq2&HjCnxe@SeE}`
zo~F3+<L{7q>(`A{I-(q^X2wm&zFnmJWSxGI!9uYt@ZP%`ZL_5O<#qDP9yUbbbJX7{
zCEv^*T|UQlmHOAa`f+{=B~vyN-a0DnCgsd_)J^YzcusDk{OIg$)8DoGw#m~T+a^D`
zjq;=K+&2APdv2RNy=&X#C$~~w_d}!amipi3mIKi(xaD?C@#g+;pL)N$kNXuV?#hSu
zlKRYdhK5>x%>`>nwC+P#Lq*}8qrw~ATgsd3IPQB~7_KVy?l^yRA1OcJ+KYW{EF;aG
z&CeVxa?govQF7-P{d7*fOPZ7GQ)1tkw~s}w%3*8<yL9_Hx~~l9cB8-OYn|W1A@#NV
zRQ|bJ{`m>aoTKdN{*d%{h&%qn`zx&ni}Arg%d{IIH~l{><;7+obj&`j<ycmw?U+`)
z7Z02#X+2ulalEwrc)6T?yjUMOOxaPIBlUXk=y5wgmkrj((TdXX4e<vK#NNo4cIn?-
zZy1)_Hp8Ny97bn`%+c-1=pj=6k1Bi~N0sII8tyjTcC!?ca^5?Ryf6F++pu0fYrcMn
zP0@O%!&2Tn7nT##m>i$;aMOJ{BIO*TKO9oi9ey3jUyizCQr;Uc*YC5t;VU_Fzp^Y}
zt|)Wq*XcbPm-@zy@CW28zXNjHU_fqg4TwH^V68G~j!Lh#4(b2%MtS9jv-nun*F<iM
z=a=00P97@duQAfQB>T0%dzDKck@99gSP~ObDel^Fn3VgY8xP)3mFw6mc&6y9@3TH8
z<?GiM!~i(Zjx9>wT;DD6evewX)9GINxYTQopGqxj8sxTYrCh0NEA?%qTxsrB>f1`W
z(mbgz=jLbd`{L6|?lxDB>lr#?uGbj<_{;hDe5rTJkT*BJ<|w?hK+2u!<~!@XO6t9_
zQSX+8QhuYWm+!~LI<r3?7fCs9o>+h0T(^U5i=~|Hdx0*+&vC=sAbx58r6&Bi;y>W}
z@2~Se)x<w7k@oq+*X1>&c(c3)-4{He<gRw@;B=M~5G;MW`*D3sWq3JPF1S2QDY>mJ
z4`YW*z0K^Lb%c~_X6K}mYo@Pjnbc>V=P>U{*6BE{<o@BtoA+zbKZxGR>z}5VOMMsC
zmDlgf^7@0u@;bV5>*7t_Qts<U_+`0Z!_zmn{hd&9uN&d_seO<>(KAT}QXA34QS#UD
zb`t0QF{9qo%*Y8_M!pT1Y5kZOEx4$d&1G6fMWl3p6FNrf^ZJY4*$dRTY(Z<g(69g_
zg1NI7$gevVw4h&I>aGV(t&#rkb=Ot;XP>*db-wV3A3b8h>D<j?FY4UQLesgMWfz9O
z7|O|(Mvqg*`=q|NxcwKedmSXyEopg$4Ot?;gILnSQ}a10eJ9e=pLgyF>pSul?i2W+
zgUWVyJTQ@w^1m?hC&L@sN>H~4V~&)2rz^Kw{L=h{h1cb9O7SDEfA<`iI7Ox9x(8%9
z=NNLs{N0DYyehffjPg=$!Lk9j+vtaNyFEwgp&_aFI#(~Zn@d=}u3y#i6Wb`?mzDZA
zzFh{u=g<#tT`fi$hqu1+RviJIUeh%xzlUqjD)CFF0}V?)<MO;exwNrAXd*X9`JYyD
z-o6j7FJ8v+KSiuyor0~DF0Vb9+9<=n)eWD|&mnx?Ko8pI*d*o6d51XN#`34@*n9fN
zMx?yC&s`PcvuX=o^}#|M#yrSGZU4kcQhtk@-@HHeEm0qiMmOm%*W;&1`LkU6doVM>
zgxpt-LZ?c(Rqp%(?@Y@lGgrxD;H$Wjy6Ycfo29(@4)~CKzh#Jbk9Gb{j!L=b-SF`~
zw%jMp@i<q@O`I;}%=5qM{1wjz7whs8`h=8gbM^I#Uz+b${M%e!)&R}-DSo!gA64gn
zv<W}1cp0jgSDnBL<|uviNok+?zOByB+eChHW%It*>OMotzpVUo``ynE1N!o(`%Edf
z%xwqx{E+-EslWAV<iCukPS5dAOZlq}y}G|K^QZf4DYw~`!*~D!Sg*mbVX-^!ol<g-
zy8AG^ue^t-*K1m@lz+v{Z%xau*!!B6KX4?pJriRxoSYF(iN}{}TsKGIZRbn57PowJ
z`*c2Q6wi{XWO3~ZeO}7HR%h1%%C5`m?0PA{uFxgYf8MaG+=7-s*(F(`aV7UtRj_!U
z=G&WF57?e{;>UiX2I7aD%71&atTgy5x;Xs(p2$<39;I(e&E`1+PInco`(4JAlKYpN
z@4QcOkcgN5ZUnsof2AP?)hEaYs82vsAPU4`Dqd4p$?y(x`(^GA$A!<<Cx!7RwEj!}
zl?N-O3T-caNBTe2NT({VVk?8S+^CYP8gj$3y&T32)%~uNu9NzXFyuCsTy<`_=~i+V
z8FHl-ce~q_+oI&2aOL=Y+V8vd$W4a{8Sawpq@b*CnDO)XhR2Hd_qSdt|H}QAevy>g
zf7^Hecm8$ylx~s!Gp?OjXA);qHlfw`zAv3tau2$4Tn|oUJ4+eyfBm}B#1Ew2{oHtQ
z{gmg**2r_$ZpAzusiN(f{;~9@<HzTYhEt9C&~}@YGuKOo_*^8`-^xZi-Zm-a%yo?+
zK2M@5t`2un$ql>l<9;2h7rye;b-UE(y%W}p^Bj+JxZOOw*<1M^y+g{iy6pybqruHl
z{Men6|Fat&#{a6H{XA>qCzOqTcJwYOZ=UZG@4WfONjg4VcT4$|u70E=hGDusYq>Ec
z_Yp(xByX9*EzeU*E@#LM2eg-6_sDR!cAiG}O8Kw3dU+nSxgmchl$?3~Pj3LB6uRl&
z_Y<j4$8Yv&X`xxW#}sd_s}39I#C87BeKYF`DSne{H?Ip|e(NhQ6H2aDC)c>X6S`l9
zccm-G^JTPW7&oVl_)RN09UmP(ZTGAPq@IIaJvs49^IeKR)aB*KU+WuHylF?lcz96H
zgF+9=a1MN{RK(-z<6Grn-{a*1=kcwl?day?92H*QW76N&jz{}`A?3~e9$imROdIM+
z+b^a3fIDs!=aNT63yM?781smluls|s$EEyhJ9_c>@#fY{E9=IO1B6HXkVhMEGNC4!
zQ|tbSx$BQNE70ab$U6PTo|55CxOQS*E5C18(0YalbOA3jVO}fRd+o35Y3c85!{0LL
zZ<#o*H+S|j>2I0vH%F!W)E}k4b#8ma=k{LU0Qz{|AV+JSeW5=|`MZs9*0kOt3|k{7
zxNA^Ld0e%MeIKvFq35N)&${W!=g2tO=kj^7YlQ*;y$bla7&(CH(F}}XQ9g0Te<8@W
zNv%X<f0MtSa>ot*vwyg`wI&WS{BX1Ax!gZu{O7v(tCYDA78>31{;JgXDP=$RH+r0p
zWyZtjD16pyQtpSY9QS`BqXXxuQ%e4xI(ZT6K>6{1N&T-F^0}5Vwm2saW++_SGyeM4
z*`wpx_iriR=j!M7YGFfrH5nkM(gTyU#kA-wQlDm?zxNLGjjru!u-Klhruy3lv(=$m
ze|x%^KO|F3Z*a=$&%x=klW_{wY$|u~kdrGp<;o$YRHf41jsNCsi!V=6rG1IeM6tQs
zQ$Cd~v}X(1YNl9l?zowb1y-&hz`WC*$_=K<<<tnBYJlldEt~0e(wpcT23o5)bDhdi
zsxn0P8}P<*w(87-lB`pvmklE2R5myxmGqF4p}ppLL9zxA^l@Ol>A_-eKA$SlI_;`t
z2UF>4wpgH1!&9~bN&32h43txOr&P=qs!qArDWv*y2<H()fTP{Z(eCAV(|-)g*;Fm3
zmLHRX<>d-}c)n*`#_6vO(%}Y@A97NqUdkI#e-8OqDi;T`Ij5YeI`k!w`wb*w?HvQo
zfccN^(#(LL`HN<fq56OHt_7Yw15T=1D?5vFslf`(H3$Tsb}E%(`DjD|skO8)P^7XU
zP^qS>*>p8u>Wzgv=*tE(>=ZJ^a!<9KEey^ZsX7(9-(Zo=M>(bC#o-FQWWf2<rlo~a
zt$K7SS955ug`SBhEu0qgaRbXcc@Doq83U9>;Zp`OScF=RNrkR8;DWPJf<HGwghMYI
zKq{BZ)9#BrL!1I^jvIg|T@|Mag4X%*T0t>q8H|@`@mMEaAI!uf^y^?I(Mj7c_6!<G
zRjRq-U}O~+PC5jPC?rv*zb?n=IKf0C?XgfsFm$q^<s_$EM5@ze28QZ8kS(0pJ)iD2
zP(Xu6)d~gtp%)Fjf3ULAaY~S$y~MDtSWY{GsGi*9fcv<?aobSlJODmu;DhOTgUeIp
z4aXGAXuv>TXpqQ|!JJc|@B6R{Jz*dN*>a_tFJ@|}uc>N^c3A3}BpR3f4In#^N;}I?
z+i1CgrgLZ+d#lCXO7<j&HX2N6Xr$7e8gzP?7&iznW5e;z5FV}Z0v$}35UxXit;6Q!
zQfQ+K3su9i_u-z0<xaj^R{o>7@-H^1QmT+mZ{YOL8z@3>kk*ANU0|RYXTT}18Yww+
zi-B^KIBFt}NqX8wg(FFP66P7jrKF#ukuX5iu7x>NMOq6`l)YFenlcL?ovE4r0Vff0
zViB}csc5G&K-U?H26IrJo0~(!N53?1G_3Qo)%ivACiJF(JNZ&|Bws;t(1(_JM!Fe?
zqEbv3O30}S9b*WfSx!4NVjzR*`NcxDT+E@VrLP-ADw8QAfV9&)?4;>IgF!Xm2Aa0i
zV<*zC%RN&dl%|LQz$9R_+JN9LRm=HQWdog352td-rgE6RQ4bGpOl@%JCk<e>N-z3A
zddG@7V+QA!(bPK>H(>60^60_xwLGl@E?bX*0W$+bbe3jfArx)nA6@S<QOCeTA^Nou
z%0|>>`nML14#*}*%hQKedUhg>O0*b&vc#wLM1ye>#y`5$P$JqQ`jLUaf?THJ<Wuwq
z14UaS>mVu{ic@ZccI~b+1%(p1oG?H&s#%Ioe-&CV>NmJjv6xHeoK&G!qR$vO`n&l<
zPI^Ng%^KZk5GdO^_n$Ce(SG$*(K@I>&&q)T^d$6-BR%8tJt+B*sX8k#NU6}F2Itm+
zOm;Y*8qB6?$Y2raY_&4Ci~&uB&Nqnu8k(aj`c=Bwhl)n?NdwGF*$TboD9@x#8vKv}
z_G|D614OewAX2tufcaY0;hx$Z@_fZ0MXeQH?le$t$%+HL^Lv+bN>u2t28Y318ilDJ
zsn|PM9H<qzqiO5$%td?cCNQWY465K%OK1)_lQH6}8H`gJ$k4?GfUzX9rWYa6j|>>`
zNYAZp8m8YHAVMrxYo()77#!snaL+Vrm1j?_Eb!ipGfYVX&lWPyriJBlu}r-NT*+nA
zj)XsDz{v7!M&aKv@ZzvjMw)MwK7M5|KvPu-ziGfI2gUM;#P?tAnJN08+y*+rz%toP
zu{y*9-4jjJNo7QqU2K3zFU(YO4&7>iC5#iR^N<}F$}HvR(sLG;c01ZLMU13H2uYx-
z^NGZCyTX5|-($k{%(;dp^kSkoh~ECYCJ~}X;S|HX>JZw`Os~jA`j<uv#cFn7q*t{I
z#%y5DF`lK_N~)Y5$__hpR2`bj_Lo!T5!z&+19H$rUpBD*R0g@>2pb1O%PWI)zl}u#
z7g9MEdBYIlNlH(4P;@jOJk~R;zn0Bq)cBrO7{ox?aZch<M#TV8r<SBD3&qrizHAUq
zs+=1!Y8>5Xk}RL67YwLUbyB&N<qSI9*~fX-aP6m<0U$Dr%}4d(($#CFR#zPQticWz
z2aBlG69!ZnL8v@uNN)i1gu&#wp#b(D6Vu5J{6lLz6IJeDw3RJpsM}yl8K;t_vVn+_
z!sA@}qJgH$gQD)zj|@<>Z=$VAr!Zco=L`-W()6~qo(%wo=^z8Z1gqM6QX)p(esB}O
znhEmgM})&Omdgw#(?2+zLK@#`U}a|@=cKFL{m}CUj*e7T;#tRgRw1t_WVq91%)+?@
ztv0}cjTsa}+GIfRhXPw!c?5mcL^+?hL#4a?=rY9Lq38WD3+HPz8=sM>%GhpXd2eN7
zwwfM7ZZ0qdP`-FP4S0hAqa^o?<ok<a2u2qfjGR?edbshW9~*?2&Q$0r0~)|cP2~O#
zCwNOV+BAn7bU8tuBYx9ikkTwlj+$8~qLC;K8q{FX*_5rq;ByUdeIBI`V|~Ck8Zejk
zGRywT0L#@7Iz)hP7$BA_oHDXOwsAw~iBRE66zcVC8tj2lwTiSE<9&lddacq0i_S0z
zBOdY22wi7TrEH<#WO#CdwHeIc45~7c@8xwJdeZ=N*+OkoBtakO^GxDaO|3W`Zop~S
zU%?7QDNQH(;Ifk*2K+?>Mn}ivn_iTDOfB2FdU6}j!?hAUYzWFVEA*j0ne9`aMVkhl
zYX5L=qtKy-kg8VP>iATZ3@M{IRRb8G@U@0;sn(Aoi9%B>s4=5Y_|JxLs*+dAeM0Z+
z_hQ1<VZER}Il6rUSdXd~INc|JIiyeGMxR6^p72RL<CBPo{buZ$uD3HBiuesV+$RzV
z#r&3>>Jy2DI{l_h_(YQ7PQNXG@QH*I(WKv)Ju~(8Mk5^wzcokrWD@as)NjsapG-I!
z4t4kqy2&RLNkqaizeUgagyNA{B<VNly-vN^VWeTa!*A3opHw8&*%6NWt@?~lDi-dH
zMMHkGCVf)LXfl}y`R)3rPb!?~=;(-q{e~SpP;Y)T8jr_f4P`px6H9c2LkQJx+ND0R
za5NSPBUrz2kND&wiDWDqk2RF?od)ZzLvANKLY)m|eZEf)IUenZg_8{>{uEP?r<-$o
zmiubfb%sd$V6mT9X4_-*iy$~oZv?>!+HXjWhq?8odD_M81&`6v02;foj!-;ApR-X3
zy2VCy(9<?5Lc3%wVMXas8x<qRMuln2paw&9o#FJlGQ=fGPZ*Ti%*bFPdc9|mLi;y$
z(EbLT8*mC~XP$$Bq;piJiXr1_gRRs`rD7TL$>B|OYA_z5D*}lAd^SuE1rrf^)gZ94
zX)KPGXul1f&2^FNq?HEM+dG`86nl9<(~Az8PHyDT_c2`@$fQPu%yo@2X`Zk3DoG*q
zv>{X|_Nx6BqYvIA=NZU5E*QGx0sU__z0B<^jJmKOrnbc@%d?dV2CJAyU>KBl)R^p<
z|G&cNamtvGuRdy-3h0FV_EfC2&&A+_PLjWSFtn*v>5Fjbs2&KBMc5IVlP$I%!<%Ad
zy4MxP%Hq=&*`qLT<*8O-dxFn}D;H5ae!5y^J20<?4Wu%wR^t6L$*ABjW|?i+bu=@;
z7`?r?jcUZ^rB_&E^s(Z$+2K==r1Sne1>rC~^}o@;8?Z~!j$&sPYgrjel>V!Dgk$t+
z)}Z!-4-_+tN_*pE<HwLfJ5<b|%pbyw`snXa8W$>v{_@}15ld3niT_nhumkq_|4u_9
zK~Mj88ahIhDF0WnNOsVt|2qxgNC*A;zf=+Jp!Ujt6_0Q%OsD^ER2X&qVfg3Pr(9l9
z>@F7vv7A+*e*)~U4FE?OUEvI31~ZJ!;Z%m&s+xfh*)}bzVU=}>iEAHnd#GYkOAEuO
zQ<>ETUbN#qX!^R9KB`u5=wX*OOcBi-{Tq}ty=Mr$vjq3883t-Y=4OUd=-z3CNh)wv
zvA8HzrV*1`l*OcbRT0~O^feQQ?6M-(PVR9*BPE|_P>kIwY>u3fFN2ERhc$sTV-=X3
zIdrIt8ajFbx(&ekO0m%HHK*YyeGatSim3T&d%23)`W)>N`-=CNa`pP$48XPr&UEBp
zQn9SMyPY>0>g&C&E+~1{Z~8eBe(FV$Pu*f)^^^w6iwr99H8as+dSV6|QyzNTCV#-5
z_HYP8&6)UEgw{9k*yyOb@l-ps;|)>;6!&G^$zx~!X8~-!UwM7qBvoUM(ZfRBm>)D^
zk3c*crnL?H5SHLiZ$L%rJ3YMV)Xgh%H(Dgh^TitG?;B{9v&!t<PV$?@>9Smw7A3Q&
zK}Kv>Bw`|R7}IPF7Klc)z*P`%OR|UocX^`3yFr=7>`!+2)de*?cQWFPis|i;ll7J*
zj$Wh_10AVQf85C=GjyD0VzF3%IOW7L2`AzVU_SIo!C*ofjVBY)j{Xc?u8~9}p3HQh
z?Y|d@#eBmYe_h%66ss>I6OCcyia-ylEJ-h7XegS#`MDy7$@F>nsZUU^UUYOO>5c||
zsG869qz0TGY-Vn0U@MAw&#893ohYt{gV#w?AAbLc*gcwqGfUO>rF?9Q4|mWxGbxP6
z>DC$f7(L&>4`iKOMwaq-o#t6{V7)m#BZVrCM;PtiY6#1YWOV_Xomg9UGCUkV6?na0
zqp7~Sfpq8YVfrP=fqb>SR9b``8~UemdN~nBLEC$?VWX6u!+%6oro+Lq%kvY(h@qs=
ze$;dk1^T=~aJ;aT(_4}^E6}j_3GEYIl;|X02ViucvNNZBM+NGX%W8Xjo(mi^gv4+t
zEdhisN?fKpTXN{r5;VfQ8VDvv5K~<aJt&bJ$B3STLl+mGK=t6jAl52GoK$zT_vu>0
z!cEyql@4>=D~eSK^}0~EQ_k~b5yuD50BEZ2PF06Yy*EiuM`ST>nKERtFCi9xAzLUa
z8|V|l2B%!cm>^r>BaI(W&?YBc6Z<W!pOyxp&_rcPc-a^UC+Q0k1TWK&z7If$zX<0t
zmhlOP-vH#Pdplg{ZT=0X886<F=dv<K%|FFS!0;!9!A3^(0MV+^|6oE|t4G9qwjM%!
z=~k%;UfA_GTsm-9o7f}b;IVsz5fi=R3=y~&*F>m;q5v!6%weV7H!?cGpbU%81gyhy
z>z``%<`>K5TB$0IBqI6TvCDn%<Cis5z8XLumD*U>AD`K%0V3x7>ja2oi-%;9V%eN|
zvi2+x+G2A#K()!=tEUffP<Gl;g5?IkDr(OgLdA-dNsBgp5spc4ub{N;_o=$T49S(K
zpKkY|r2Ffo-IWR+&MT3NAfiL8Y{-^GDVbj^sdEN*88ng{m2VNweP!r{dd(_UMxN|*
zmZ#Uqiv@s7s59I)%u8iZeR!9PHfY!oJr7t7JAuWFb4aZ^kZc!+aOit}IF(N0%npul
z@VT<5J+^&87V99i!>3&}?bx}-HgPoz!GjHW8CJ>Adv+VpF+&*U_2NWN+M!JbJ|7cv
z71U)0oCdtI+>hYyHqcZhoy{&P<}&oWff`ZV?QGAs`4lo;X<BJI2dH2=i}YF3S)p$m
z&SiAJ>B`Y_rZZ3f^BFJHWkuTGbXIAR>8z1sIG58WO;?(}ZaN*h-E<ac+HkI*|Cp`}
z?Q@Q2#EKjpW;%<s)^K*yi0Q&sq3O)f&8E|#UzpAT`iJSv((dPa!FCrZYC0=)l;P~5
zlIcp*d8Ts%eaCd>>8GZ%NG}-9HT1U6dZDh#(E+BjL`zI(g$51hd<^Udi#TOpq0brc
z+)NI~HzrJEsF<gRO`wpfVz)e1=v{&{`o+QANNK1-t)KG@nOjcv;~?6H>Y%(+fFC--
z1cx0o>IEtq*gQ<+3r@wM3+q5Wv-rI_q*6)s9-SJZC+pB^Y6JbpM4ZAPG}8Oe^URw!
zl*(?X)HY;kiHR0V#e5N`-t#6{P7UR=G*%Cxi+AWI6RQnMqaUvWhq4)Z-9YB23aJby
z+}wVoJiMTDJ7~-^Y<{ZDNwlI4s-XoCesH`^q~NJ0J(R-MHI3IpdAhw0KrU@?9QvaP
z7V~)wYTkOj5qhzNa|krYgs@hU#pXqxjxx~^oZ%`~X}At6BURx2QUhFod@N)5e_I`f
zMUxc163NmZO}JLd6-N;Hoj&hbv~X|)Cix25VWt4mqykTUCRQEF7E7??Oaol(6w8C0
zwpW`VzJfqO=14zm!Z_Xr=<g<k<9gMh6us*L&$z`Hf^VQhO{BIyh3_}A)LRFZ^R*2_
zSvtc2m%x&5*1HF5Il8wVsuhYwdcF?B(V+sp<3i7hB~E|Y*+^j%%9fG7g%llafJ^gy
ziYb-rMcu@{N}4`tk_DXS6UQIFRfks6<t#Fwh;rK7of^uehO_kR86?U`IJWO1&%VP`
z$ZoFAQ3E^zU&<gwj;@0Ws2eFdsSZPJ=7?NY2acqMdY5JCE)yI|m5Y@jR{DG$jL!~e
z=Zigaju<MgN4*c#LA6Y3BkCm`ZJ^6iMH;SiS24u>qKP;qoIRmiO(=`Avh<req=4gc
zy>qGM3!V|n&{hDPNBh@-l^QKEfsr&P=7u_mTMzo20WD7rrPiZepd0JJTxul64f*4B
zXd%Nn|3*EQMJ#ZPnfCjlXCW3#a4@YvOH9ncmoM4g<*5-A`xEO3oZ{>~BD*2Ap_Zjf
z>zHzpt5@&*8a^r-#!>bl((FZEGX=89gZErwScM%7`bZs6;0g@mQzlw2(&?tVmP03#
zrOQnWO$`>P=sp8mk?O}WT~3O>ny9m}cU3CeyR7EWo?r5eS>bF<QPKo96zN#Qy>f5}
z8E}$`<a*~1Wl{Vts{=E=OKRw(MALttk6Btp=ar@{K6nMzJchU`_jBamd#PvE%3P*b
zOj^^luo32tgz`ST2lEb3*`+>qRjs@M7TjUN<?Kj`o;HyRKE0qFzHHc0$)^gCI?%w-
zgrqhO^)5ljGe|vkL@qyqGwS$MqYkb0&c`=*OHwuZnu!nL<2AHLbWa^v#P~wgm={gB
zf@5y@pij46@BWHs;!zGN&LACTLOd&=6AYvWttFa9B-<HvC=PI=y(y>Y8WTn{#EsZP
z_1G|{`pYJk&1AT6?D<vC8lLO&f*T*A{CFK+z<PR$(k50cr+Ry^GK0Yloof=9K*{Fz
z1`{30;oNfXiqs%F-Cx%cD0FH1j{&Vh*MWoC^#02{(|}><f#SZn4n&=BXuS_w#qm1N
z2OgcpAmFAta05*FMIDmQ=IGTrq%epr@x8_kL!4Y~utpy<p`jG_5UF}7OP?@-Y`?=f
zctstCuW?d?L-ar$SRTUS3;or=R&&kdA;Ruo^9(sUm8F>BJ_h+-7({7B=YPC`AD5+*
z4QG$&Pb+kpfz9oizjSHu5@%DdoK!wwaPzX6Y_IxWiT-X73sCrIkFR?MEpSRW?T8_L
zh7L1fWUsWo-#~Gu8wV!QGoEFDo(0#MD8}~a2c`^Y>4Ki#c}TnRNbgFFDKHl(6Me%o
zh51!D<6kEbHU%;cHUv{89%LP7;D_VmTQ|0!Fo<PEeAa>?h&V&uyKoav%6UcZdxp%4
zVgdaa&ZTl~pO1-sZ#RF-OMf<GR`O>Hy>oN;J`V)~q3`)k&umF9z}IT%E_#;^7Es6V
z>4K^2=mzn{91RDDWMq=kryC@eE)Y?|c~*zM7sO(ztz4z28mMK(jrhn9lYiRza=(?!
zd1)}#0Ix0~KZKV)gHsD3y>fw?&IzE*C5c;2zU-ih$v7E~1D7t${E+Y%1K``HzZ-%_
z){0m$bgB1U;aPkXMpnGcIN!i}@a-Zm`u48k<yD>qooKSffoku9A{I_Ebcum$;ofd6
zTvcl#Ji6ZySY60stv=JcR2MLM)nJe29#+`c<M2Uu6x;o;^z6hgHBwJ3;H)s<0j#mi
zmvg0>50(>vOMU24cPxFkk6A{~`jH&H?JCa%4r^JJ4)#Me>h?j)sq9Azbddq^(vX_r
zkI;{OglvZB83Xp#Ry#WB9pCb7@`z-FI)aH9^#v0hbao(tFJ^BDBog?PFp$7`^6jn;
zvZ^yq2L}^LIy#UDhr%>!VWM<(Ad`sFBY{LXl%O{(OegJsO_0f9oF6(ekijXIlLCn_
z&iZ`Q!gSEjf|*E&UJYdMS^2)-4zvuP9~@y};#9LR9dwz6>7@ID8EovmY+<6b&$WTJ
zMH93*km-m}DUb+9lk}xvCKjT*EKHRCVqp^WuI~hzhHv}l1vBw5<t$8;E)HZm;&fXe
z5ytN2a~38^v#$#@EfJ=VT9_COT9^(x-@<g#t-%a3;Ta1Pqg^HfZR_Zu&R`}PqO^sH
z&}S`7jBd6t9rToi>7<>m53~&pPTa!8sMo?I=xhs<q#Fa72)<hUjfIKQjyD9^7D1a6
zwlJNvHkd)1bEbuf(sdRlL62LQB(>fcXj>#q2V0mJ9b;h<bh?G<q-%m1v>=aJm>9ij
zVLIr5n*yyybI@a9B6O;SiP4o7rh^_1X0Sc~x`m0-2frI=TRcH4EliR|f*JIq->@)I
z`l*G9(<>IHgZBMiplvvBb%ce9P|d=`=`stGr2B%IB>D>r6Qg}@4zvx&F&A5yPC7A|
zL9M^k!o=uq3)4Y=wJ@FZ?(YZL77ayczJ-ZV-okXy7lN5^h;Fwq5qjRj#AuIO0&NQ?
z=;Ib9N!efqwf+JN6Qdtlm;^m*VLEBo9|YPKjnGFdOq?7G(?RE1m`=JSn8885KUkPJ
z?R;yXZLtpO2xd_0Qx+yl=UA8oeb>Tt((i(qM1<b@!$8{-af(`)B&`c(I>L08g^AMj
z7A8TzwlGQB{zrkfp>7{yVWM=Lg^ANAEldYp8_ZzR@k<L6rMLVz(6-J59b{oTX>}kI
zL*3qNVdC^H3zMWrf*I89H!Mt)_P;I2>KJP9krt+tP7Y=w5xU&M#OWam(?PEVGtm%z
zU^39QXq1*)m^f{;Fdg(Y3)4vt1T#3p{tpWiqxan&Xd7zq(qINPxME?V^c4$}pnEM$
zC%qKRV6?v19f7uC2D;F~#HnauI_MG$(@A#*GpO}1T9_#9d1s()n6b>YFiF}F%wU9n
zk%fuUZ59Ue9}Ck#v+oMDE!jyQ4Q4vSG-zR>biRd2(5)7xlb#7=;#h9j<?bNc;y7;J
zX<-tSwlGQhY%qhC;${mIp{FcNoOZe=&^DYVj0ZF5>w7Isl+Ly=ak|mMbkJ`sOegJl
zZ=h`$1%xe3jMiG11f6MNI_bJ#2BUz-EliwRe-daLK889tm_ZwIjD?BN=@uqN*I1Yi
zdMud1*#Aun6QKj{3$z*+hxAyO4m#Dsbkdc<4BC)~EliAFw=f;_!TSSkLrbyJ!bEAr
z!X)S$7A8qQwJ@FZN-%?w!@ds$+J^bU5f%nlu~?V{U1ni0{|RIgXhUAMFjy~pFvzw9
zRtXkcm?WJT%!KJn!9;}a3?^dqLNF1hJ$@Q!R|kD8m`KuKAc0BdSTGT$TY`xw{XUq8
z(M~@LvZ^CNu|NW)Z(T4ErcVVESWgKi;`FOvB0+C?D9Ea0k`4?eI;kg+K&N&}FcGE8
zgNYdZESN~pE5SquwM_+?+u2D=1BozJxhfVWLSL~kF}l~n#OWmq(?NSZ9Ap}9d7y>C
z4EoKYg^AE57A8t}T9`P!Xkikx=g$LeLti`B!gSJxU<SSLMHVJPw^^7NJ!fGOH2aZ2
z+i)%DM}rxR@dqtTgwD4xF}l^l#OWCe(?PpD8faUzlRASLjQ-OW2J6Qb2J6QbCQeUT
zm=4<Mu|V4}4u}Uc7zgxPm<XM1VPbTng-OtFEKCRO_=`Z>;++%@W-xYGYhfaEriDR!
zXJO*>xP?hj>n{UsOJMvI%%B@M#=_uxWeXFfYb;Eh9<wkBdeg!r>40AaT8&N9o?r&6
z8>d>BC|zk`;`FeENzm&SCP^QBJkU0bURGL|FpXH4D1F1i#ObFNrh{IwFxYQ=BFMG~
z#x+M+7_1*#m>6AVVd8Y3h3TM|EliU3`E{Ue=oc1Sm<XL{VPbTtg^APM76$9b76$9b
zPX^kCt=;(+CPH}&6QwU$m^j^TVLIq}3zMWheiLXL`h|~Mm<VMpOq4FLFmd{kg~9r<
zg~3(UzYVsnlRgs6pvQ15Oq9;EFmbxY!X)Sq7A8qM|1QurY$A6AGuT8<S(pf&V_{<S
zT?-SZ-&vRrdh2wcZRjzg!3<Wc)>)Vcon>KSbiIYa`mu$<`tehNw&66xA;Aphp~qR6
zD1Fkx#OPWJlb~N(m=1c&?*nZ^zi?16gL%bj3xoAz3lpVpS(rFIVqtJT#lj?M|33s;
zjUMAj3lpZ3Eez%t76$9b7A8TjS(qe!;OQXSqL@i6w=iMaXknuCH477`2P{m2{$XK~
z^uA|;ZNvO0n8EIQ#lm3y*uuo=UJKJfFIkvQ+Ut*jwxP#ZXkj8$v@lV+#KOesP7BjP
zFIt!+?fGn=ZRj!PT9`0xurN`&$il?vHVc!W=PV4)&-^LSHk=IjsD;7$v4z3<v4z3>
z$HFA&84Hu7U7icJ4fCI120cdF!eIVmVKD!(Fqr>X7|ehE9B3PE&5H*!m}B%>m@u7f
zVWM=Sg^AH`EKGuSd_K^&L<fZ}49?F4GnjpxX<=~Ht%Zrv;}!<%$1eohhBHwITbNEd
zCYV8Aa=L|y&@~n&Mvqw-%zrEl=07h6T8&+no?r$GQm0y&2wiDmV)U?uiPP&A2J6Rv
z3A7EDldKG6a6>$eSQtFTVPSB7#=^wt6$_J~eg7I{TMYLY9ARNPsTRzjFS*RZMCd*X
z6Qh?cOq}-F5@;J<d0K2?uznoOpqIJS!i4E=3lpWkT9_EU`=vnJa5eON3zMY0h3TX(
z1T#2GcDsea`56m?^D}=7v<>G}KW<@gekPbfFLQx~iO`QMOq8CrFmc-T<v`nF3HpeI
zNs?n>I_bP%2EEKJ76#{MEKH1c{(GQpINjP|VLB*fVUl!CFoRy^yA~!wzq2qgdh0&|
zZNtIrsD;7#nP3Jz##t67Lf2cE82#G9Bxw782HJ)m;}8qeNyh~<Se5#ug^AF$7A8i&
zv@qDecqPy_Y+xJ|%wUeO+QMM|V_{<SEenJBkA>-=H!KY1Kd%N^9Y?=#q=kvl$rc9l
z9}9!|kA=bc84J@%A9yX$HnjfBEliX)T9_Dp&B7$;0SnVX|FAHf^uB)u+J@GDsfCG9
z#lpnsD;5UlXDm#TUJ7O~li2I^K-<v9FSIaGDq5I0U1DK6=uQihq!)u3wDEiXJJ2?)
zJ<YW+QQBZ(Vsw#(NziQ;rh}fdFr75}jX>Mb#(&hp;He4=6Q}bn49?G3m?S-8VLEA-
z{{-5GwWm%C6Q#6;iPL8-OoDE<FiCnUm_ZxA)0=^|;d_X<g^5zHg^API7A8SAT9_pL
z#=_wI4DF!rIWjJMi=*`qTbKx~wJ<R{)565*It$Z5j|VfD6|}x3(6-Jf9c*FZbc}`R
zpwlf3z8?r=5@_QevoH~Q)565)fR-Su6QMZuSQwn2u`oD414iGlidP;p@^!bL8ff0B
z4i(kqga0sa@3Xup))?Q{>gh3=C@l?S;+UOR3<mGgEyw#O7aNeLCV`2-WFV95NYbAT
zhTmOVRxEC)mE>)S@7ylPtR#*Lb{Pz=s=x&V(#Md2dlrP_==ClLrjn63{n$o@={bX{
z;d|huxTA2F?Sl-%b03{_C@A^3SciOiSHDR}8N*Yimd}sSrwqiiHWI<U^z}9>NlzM-
zabZ{M4xUXi*TuD?^Bdod`KTdj1dG=$Xb2Q8#Y-0p!+Z^z`sDX>K;3KPG`*shH!r%o
z!|+)uZp00Q^o#+ii&(S#D)7!bdVwe$KCoSu03p*Zid#|p2jY=LR6N5*eVR%8na}u@
zMI$1R8-x#Bm#UvLrbinkWw38(QQWwi>`Y)a<bD6chQM=LBXfc1nDaG9d0fCw0|tn+
z5SOpfIR@yZE*=1(?;1?b8NdTmcww_bPZ}^6u|!OowcT62Ac5eyjFkhc@Gbou1IHy9
zc#O;-k2A@k>;UwiVnEpnuF31>2lQ~p`|>(MqYu=fS{z3v|6WH3aiH&cn`dRVBEDzG
zhw)t|>b<)(Xuw|DBto5ZelUYVajS(1(=!$ZPkrp<8D)fntExLKOpMYN2K~K-L4R*y
z@Vy|IJYOa#@{(&q>)RD#)Y<(thDSepdKSiLi3V^}H3PmUSvG<e*VP(2E@f<_kZu<x
zp_r>IuhDIOjGoen;dA?)rO!if1w%fYZpUZprBvCOTgdcmOqEuPqUbYVNmDQA3VeRf
z_4(<+m-7y5Z+Kki9-Cyt`#SWFdedE<jlq9Jh{`Ke`5C*l^={OUdVnvhr15%8Tzh(#
zfq8|B-#z||!SK7sJ$Uq)pY*I&%k-XI*isohb1pI8ARNA(vO)v((83if7p_=E=lam4
zD~_JKjBfCua~IEDx`KXXpz5hS`nQ4gvI+FwS)NTsd01$`Mg+t7M80HDD6764{;I(u
z?zpYN|5VvjqlEtfrq*3OqxcHcKt0JoA-}4EAypR<oX4|KQM$`U#pth~#ErL=Y9_Ra
z-m#l<BHwURD79-hDpFQ-igcug@VZTfirVE_6Tz1F#Ts6{3QzHAhbI%o*7OsA-M&}Y
z(2YCK>+ZVWdA4gE?x#ps^QGP>wkTpQ%=i8;$E(#ta(uW>6FJ<YWZ-9NTwI5{AT=Vz
zzpY^wchR3~)G!wVv)43St70gZrg!h&Xj?KtT|sas4F<p%BYrLb#vJ6k8s;>XZzR#<
z8Z*qoV3qc0Gy~to?yq5F<T6}5i@TGS;?9>98pdr-xMIFUMGfHQsVeTOJWsoGd;>Da
z^ZGhOv>}gb=p?+{EXE}N)QD$X5_9)`-l>ek!>!_>-;Zg4eJ;TJ^wg&jqq?4<F;81(
z66e)|;28Zp2oBL}0Wi)ox9!=GUY%GcTpR=^sSpHr(nWyzLfu37M(BW>b?<KAdvMDy
z;!A&RV2pV0{jMDd1602Lznvc^9W0A$f9D%;wU{YV#sF|}W*V2aWaw-IG;~e?*6)y&
z(mCA3-cOGj818z?@a%-~e;are&raaF(G9fkyFCTC?F;WK0$gN(j*I3Dv|P;a%g*N+
z5E^KK-DqGOOobjZ5Jy6<8c+e_(z5XS-uHOMI3B#vfQ8(E0XPErw1M>F#g(fJx5L1F
z1|T#u_!k3|;W4`VUZxcpikWVm$j6x=UJBy`KGnbm)55NC19B90mw^qYImAC22&5Q#
z>)t5HNWJz0X+Qi#OUl^@*F3m%j;nAT1LD$E!6iSql89gS<bS8%O4K5Loe#k;-rP!u
z)e03{%P%es`WRgaWVnbMTd&0rFnFM#UECpsi?V*i5QaR+A-WI0b;!MJ8(r~zKk_3W
zERO;9PYkj;fE!2Y2}LI9Y5Y1+>ta=NbA$Az=|N$MTf7jo+)7}a7$2^;bxxZy^Z@+>
zpJs2Z<Q<SaP)GDJtGBwuIiQVS4WNB~U<)Kjx*O8M+j01Dp!k*LUmSLlPQp)}Ec`$l
z-VC7685k!4V_!Egc$6<dh%9-@%FMd8UN=Skz)}Ef*Xi(aQ9duh&?SbL#vTg5{$yfY
z9a2B^0^~-7HUe;Sz259Env^VD*PD>=e;*K8wjRN+wc&L-!~QOuG1qimQr`EYR-XLU
z($%(;+jP8emlv)#%ZSYTh>Mm|nYOi2p)u*91qV;(`9<-ntj{y9svIoj9Z~KQv9?p`
zWdy9X(QZGMbpqd-?Sr3dG4ht-P!~I6ZZuMG@~ghGT%8J6gYg)l7SjW`fLA=F-6m4Q
zGne1H<u@_?I37(#H{wSJ(?S^6JT`b3O!F=6<-kA&)0H7i#5bV#PH!j<3^b}0On<73
zJGSwxc@qJ|s8Iu6%}V2SV-BIx$X2T8F@~It#d0pw$OamnmG5Ms8S{In^fyKyfe+(`
z$%YiGAi**jT&b9Cuvt)nL2vBGyHJ_pMj0>)$6s#u>O~$)DJ8n+E<f@c6RDw5r#Bmr
zciycElP=kL+^t_&#!q`J1l5S17KmN~)UB2I3RKVyrl3InbFZOLAbb48^yY>f0jxtF
zO!H`hyN)G5xw2yMrpFKv2KVqwOSB#^1W-q+_~qIox+z?fcb?%(W4{W(UIMmuo$Fmj
zr|Uj|5w~?1O!sVboDv>rp&S^`S{Hsc7;e2EEq$(-Vk>vS@3n~zQFq}CD`!K6&8KnY
zAKtcd8yXFGwN^Ae3E2!JQ9j0?>;FQ}8_=U8r$eQ_2Liy80It;*(3cF6f$S#H<j}GQ
zJ%27Z05G^GuJ8J2d}{@N20<_P#9;JUBjmh5-u6?^7K!W&M0BCZiYR`gja5x-4>LLy
z@K`ODF?du@CmK2o_?tiTR2%T50T+rWu21=aR{*T#7rNIqWE~fPkv6pRh8ZQ8u~6Wr
z(vpV)^1GR*F?h15q}#v+g+;qeS%`x{p!QK5e|16NdV4IpBkR_RXS&^f>JvhWU+#9H
zYXIpW^JurRe7obL4bb}lt;JL5y4K8RH!4v>l2x!uEqc>v#H%M5&~opmdRYVK{?O}t
zuYuD4Q-#sTyoktVo?^dhfR-6hUJp!C23XSIumKKg@Em|{IUS^NQ-(G^=><1PpD|pb
zi=-bkAP)m^)%BuH&!+J~i>F0FYkt!Jl>wnB$RTCh$*0n1{J^;33Ae^#)$y?g<OLvJ
z_!$g9%Cy68jld-Ixkl&;K(0@2T=2jp-EPQf?CAjP4byX;cKe+dVxIo>2h+9l)1C{D
zgrhU~Oat;Y4>?4n32tmX1dF2WtKlj;gLH={(2ixx3T}ITwh?+0&|0sqv^}F*%>(E_
z@8_ZTiDJvQU_1DU0I)uRA8uM;aL0RM{QCI0z;$gi;O_;)KR31H)8f^_7YtDa?e?sv
zR6z#<;`-^@Ap6r*413L)D1%%Fb3F9;q@kvsxy{P_R)wQ0!(0A@0HU%9=VoX>c86sO
zVrIDzP91%WMn!9LcL4TV1IuOmd3l#sJm>k<*r0*sSN70GpZi?6y?Ifkx&dQb`n4gX
zpuPX>=~hq-&|1|MorK?RN>*waTsD4z=|dpt=M5bKISGj9+Ys|}`L~Yx5YH9pa>Ii}
z&V0dBA(1Zw;k2d84QeCaqBxPBXh2>9B2DI`?|c!ixK{#tWyS3WEP8&|n$iKZIS9N2
zpeID%fm27IL<em#T_1xBVHx8$6<U^w1{-cs;wUI?0LsI&Oa<V(y#$;)AZ>!%{&q3r
z>5<uU9)mnxbM;I7R^VEL81rK+*^R_{#K3W<as~AP{rFt&wP@DgJU@OeY;c2VzGV6s
zyjkazm*YBbT2V(bK{qr)_Z!egv}T-lzXi6IJ6CR0KKL>m3GG_Qu1@V5U{^G{P7iL+
zX15s3aH&bswe0p1VUS)0pc5cp%+xTS=H<X!{}~AX60lc)xY+P&!2Yjz!Wv5jU?%~S
z<q;L&cHz)L>%}hG?Nv{g3#Nj=lL4+>hgh*P@!QQ?vBt2=Yo@Iw7%GNolmf1U_0TT{
zqBqv*km-Yc(IML5U!D>Jc7oy40UxMx?*c;vPofRWYrG!}M4ttUwZFC6T(xNA<)2(%
z+3$6uVj7t^4>&SE)aiK;DN|rv&3G`68xvxYPSv>G$j(SiJAc7WlqlVzzXo^1pe)Z5
zTW=ias}-0D<^Rn})p#*UW9(EGBxwS!29>C38`^ZlefpVOxv}7s+uST4^g<6_7OLP`
z1kBy#l8h&eSv#H);8!b9!F`KC14T>_ESy%?<K$Bf<J*dJVh`Vm-!Q<%-q?nUq)>1Z
zG0zUcEG&pska|4NPgz1&gNM8mAdjFI&u<8q-xNpF;ijk2)OjX2`BHUcW|09r@w^1O
znoHrm8E>W>7#!P#9MoB?+i%Yv3<uI1R;Bt~5upZ&A<&#-N^-+kY2&&gtC^aY_(gi0
z6C2WoSIuN2y$o+E<SK1yxzEf6G{ehgD374)jg-9z%Ke3J*^YD!edg24GjO}N`25MP
zXIU^j6bR4bYQmk_S)kV@aW>5DEIm`0|DoTzNMmMx0j42QsihVAWQ%}V`upM1Q5;OG
zr#>*ag%V7!f4ALCY|Hl0Bv*fvv@aZPea3cIKif|q1*+A%;1xmOq)-+LyRn2g)^l;*
zfc{c1uh3OH)Tvfz5vXehI$yCE{~1G6W48rhzXFDVkL+w;fuo^a<0{lp24&S_UuLPp
za#E;GPvVWW?0!5{T;Z_=7PS3-xHOm1Zmq!Xks!@^w<ZrS_E#Fn0#-8Ql-%@EMJ;S>
zeDIP^wo!c{gU#Xwy%?(tTxTM$x_I?+$jPC%SWr%73!=RGn&85sT&*%BPF5a;ScxTM
z&vRh`#wtPhyq=yQnAbJ~ac)zBh@-^nbpWGNaskJf_kKL1M1lo&3+#zK1d{!O%R%$o
zvtAoqpHxypgvhyW<`O!6$8CWy?u64bsEUV8a(r&X--Yn*Gv3ofgI-#Or_CD5QVOp|
zSE@(WoSM_tP>#8Bx<UH-XYN#8uCZYktM0luXu9oG&tkc0ux(-Tl(o$pn+B<^R5x-N
zZ`g;(r#1!RRk4iBZ?^bT4o5QNUV~X(1sEtD&`+0AIK;G~$FEqxXgM3J9MZHDYRDo+
z!+~fd5M5lv0=8^3&^zt1i`M|kQbQjG^#35Q>CSBp$C|$snuRvkZS-}<)9DOH;>Mas
ziM|C)7rY8@9f--!vR#AFL7+TF)$*C_@bVO1aiR+haToks5cu}pwlOiq`ls9Z45sI0
zs}-+W6u3>dvgukG@6XL3fakS_@j!RQuL1>O*V#s&CxfMffa$m^sL}|X1Be%uBO%r4
z-N35WhC4d(&zpDj*U}rXr1ls~Teux}H*8Sy`vTK8DCo<L&`k}{Dn8Tj0AO*fk)Cva
zJ#UC+#fs;9_wa&{NE`^F<YqjU12GC+MSX^(#=a1MO|bvCyKnJ`A%b^k(>NA_E&@ZN
zz2E7DTt^&g5O|a=Q_PEJ!)U~UUkp6B&iea_p_915iAIp+&%=|Lku~^~E901{h=#)K
zW(2bluc`T)Ep@z<Cozql<S|Om8v;LN&j5@6AB5ZeE|f8KLZctQy=EiRKZw`0=z4&<
zz$xh2M(9meBNCEky*nT#Gxd$468pPvF>?{%y85FqUggIlW5YtMUO+B@AW5HqAv{zM
z(n34GN0LE)sS6}ZLb!4Bri>w1n@)}jX1Y8Q@=TH^E!6%TO!x{EHI$}p)X}n+mjOCN
zIz9*-2B?>olXNj$4Po>6$+f?JFqKbLHt3n2S;RNum1GR7)%3<>a4-a?#sew5TR0r#
zMbz_#3W108Dss?>G<$Gwj)iDDv5xfuyU_G-y~Q+xcG(ARZ++f77H}wthUm^z>_pG9
zHsY<9y1HP*H5^P3N59(Ea0W|8_u>_mG-mspuD+pi4qY&>OVq<W{KN5#8n%f26wf<m
z$W<Nzx*a4BdCQ31zVAcqd@z*&)=SdafOKIOe(CiFWVg2M<Z3xG$lX};&a2V<Cj1b1
zHQ~k7`P1xLw-qaV&kI3q91aWi7jwNEoDurizMjnnd`>WYr2!A~sx}@%WG#QP;M>0+
z_KAIP<OF>XE^UJ7S9|1o^g5Ob8v`ZTl%B<K)ayk(qi+OrV6oD^h_~<WfkXd(*7*IZ
z5)ym-JAFV1iQh*UzmLan)|APXm-2UAWyxvhjrGoZ;lv&|>J3NdS$0LWYsdYd31_SD
zK67F45Io85;ERui%1sA>wUU?4ME(fm+N2KUw{YpNCB?UKbifDwNEeU;wUAtWIL;7~
zNa91DH;F7a5P3+m7l^A!AEZ0U6jMhtuMfcPH!yvE@wW!1mZIrz1}2V%w(jp)CWc{q
z`GGJ1H!;^&iiLK#R+ezkpk`$*1S38%>gI!*FV?x}!-^{u=NC&OG|T7yAlzby>i{0M
zxV4rRTJV10+`D^{C$UC-`cRm0)G^EDl6QSX@}h^<na9yzS1%x3PI(b_PS7&F#(Md~
zDW#4o2l#-qH6VhcTkD+<!6{k~XMmprZJ#+n+Wo+QgvU~WFo%}S$QHqR^+V?xJY%wo
zvFwEw&yt;<k!?L_I}%G;?N~PD;|0BbpymR+XuPsSp8_DV)Naz8Hk}QkqRnY*$OtZS
z2hj8Xcd9-z2X&n{8O34Xb#T>(iI-h-8QS^aVEjPfB2H?Tc@FwA9tR}V>Euik{%r7K
zKa75gUv6=&Hvva5YEB!MIsM6<NS%-PQYT*%GVP+&p`doP%W_%gi8cnJpZB4vR(>lO
zz8kQJwQQ9SX#24047fc<rtxQK2hjG1Y>iY1Qig9@>~kLvx9)dDcTr(LP7%+LvOO5(
z;grfHb*^v2wN{*M;(p^n_9Q-oT82+=_;@}&1E?NZAMzuo16jLHNbxr{^njKSu3f@P
zUbx;5mm#|flfVj{Xo^Vafkx;LfTVRo)2nc*$yvLK+fEUcmNIR{*o(qJ;1K|MF&jsY
zP|**mRR@yosWd-bEx$896}*-F{!HW(AP-bt+l4aBurU~T)$?S+i=%EpCY%P0IwH-J
z1hzA8^a}%fH2~W+*5Df>@D$KGjlix5z;3JaJs;x*nI^l&J^vnhOdwh|&<uUP&UHCl
zUflRu<?a+dOZulF<bnq!yf9sGAwc(lI+7p@x3QHIl=@$1FVPUruc{>VBJeO%Nt||9
zj2p}w!Vgy2G$WD$;T_n);dfvg*~}lL<}s4M86cB@k29D^_;7f*E(nMG6O6}vAwz!q
zB!|rFFTMc6OhnxRElUhM94|aXe3}r#r<q9j6v4xdjQjLJ{7Iq5OFo?xJ9I+aryW`j
zVc4e}T8?Enj7>40^`Bte7bvt`Bg7k|9}Q3r={KZupD_safJ333xB1Ob;b9fyF)Z$x
zIOI1AydH-5RSZXxjq;B%5%w#BkCu;sXtd`bhQlGBK?wL5COUnk1o$Ty572+DP}I?=
z=m{n|d?CZ2?GFPU_2CF0#5krobtwV)wT$zJAifm(l+feLN623<<Qwz-NyZ!Fwf#pq
zSe)VT>kl)*2Y1bIq5pWsBff$H`_B@J8pFL_$Tz0XlZ?k2@f|+~yfN4i!+4my-X4T|
zJQHzW`oPY!7;h{n6Ab%8h4kY>eZ6wPEgy$;q%qJrjQg~}memY5R?yQJ?raqQ7ULbh
zBtxi=GVY5Jw7<bHA9gfz1o(%$fQNlK0yRC1`|BL!PZRRKBnEyJ<BbL3VTO7A-52cZ
zjQgxasQb+Y9QNVRzJl>+V^WR?`NqWghQI^T{vkm$+Vh&gebHir=CMIB9|4PwWFqFX
z6dq0y9(?Hu`70RjXbkva#`&WNGl8Jz-$K6+ho1fCLq6imN5~(=c-WT`z)xj7;lrWl
zDj^^8DFX2*2zP*PP5`lBrlxXoCh1P!#T*~!DP3B8(T9=wq6M;BZz4%&K+f--9syXd
zkv_bz0qQa!K9a|uEv_=K<?`#o$wuf`2Gk?w&x^zq=)^@{ASV8~27DDhHoXhz|0cEE
zB*985&y0~;iN%4b<(H%?<Ql;90P56ID(Pnd*t5X4%3irUBTmVxTo>64JC9r<?X*bH
zS>Sm|)AUBa0Jv4*YH#w|sw12cw^&I;CD!t#(ul1Qr!fdO2-4kw=yU_hA<{92`&9_I
z0@#fyPD~yxPfU&((jIzuAUe$|L_HJBNB@A+O(<=2zg~n^X}YOyu?Tsx_z0vq28r;=
z)4(j8_$ltG5~pp&jPjO1^ilTep2^*Nnd?I1k%3G2$M2G0v{t^LX+Adit8@qOM)Zw9
z^j*u@Of-U6I=~Y1q3lcwtA(kkzl-?8HyQw;b-LiUgTQ-)3XXTZhL;%Uff7QZT~~0V
z_$S)8W7*NkTT@iypAqjs@)y~S(XEd157?a$drv~U7wKo2iSg)LD&1)%`;5wSsR-l{
zc1JtVJ%C5z^{_kXir0iVIu+^rVs@f$5aA+SZejO2qfl(uElWG1iR=}&9}Gy88gZG%
znmSirxa37MxG1JuU$*n7BiT<QzWq_62ufl;_K~nvkFz)Q0pMERfb+rd*?@5lyk7s(
z1<Uc}>2D1m${<NZd%O_ph$9Wcwg0Lh@D6}Ts>WD71p;~EuA*<h3T}*mWFpf3aB6RP
zOg?eai_Q+fz7CA%rgCQ%4I*b+k{$vq)`r-L7T4WpnZtF{_g^B0wIf$hts5P?`oGn1
znN7n1a&3y9XeK~Mdx@~HTrL!8Hy{{6BMx*3eu_1rRoJYeLY?b$77H6oM&I-SauMi3
zfkx#<FuefR|Hs~&fXQ7H{o}ndqw!=B(fEqGPF^($u-P0yP~W&YNP+@cvjM^(*=u%o
z$nMN!W;X}tdZQvnMGlR!p5QBLJV6eP2!e{R`YNJ;t_mUox}qoo!tYbnRo(qPW_C&N
z_y4`m^XGYVGu72q)z#JA)z#hg4Yv8<0b_sBaYV^=%VG3$F;zg>dM<N4cq)F*#Ym)u
zzLl>fE+5`%&IdFB{5+v1LW$-^0!I&;&2IsNP1xuAEBQne{ppVft9jg8k<Rnb?!LZi
zOO%o?EG4Pn5*J^S4o_|AOd@gNt3UDBoF2Cmf4&;geEc+|Wn?c7E`+4Cpp@Uz;!YWX
z(#`2Sf+KXqb<z;9+}s5rQmUG#oq$zx1e3>5o*t?RMYAa#{62siDZW;<S3V=X(TAIK
z+8dC>oEUH%EaH{miUj0DKpOEG-WHq-^Q(nGbtFUNnXxa^eu>EE-jo6g`Cffes42EG
z8);vO0;j3~{=qu%F9q<*Aa0~$xR$Ht_aS|HsfEVm&C}lOi96uxG++;abA4CxQ?Sz`
zF#ERae1fUGe52BQ37|%5?e)gPG@y+qLMrxU*vymDsjT(2{R?T3=mWkJ1SJ?(_KCB3
zJ4$#)mNSVRvEN?~Ym)c2v{pm%3B<^)Du0f0ZDC4r&xVG@??f>L%rNxO^X3x#bYgBG
zvCOW3fQ4-C@+2+feSo-X1DGq#X964s^mqG83^*NtxnMmvxJS@KRX>V?H2C#g!CyLH
z<OxEK!CHF)X&7rIAgUt<Y>Wfm0sw97p@+q0EF=Jt*f_5WswnISy`HYZeg~L0P3HDk
z1jMc1uP?;Xy7LLDf({gMTx#9`P!w`PJ`ULgh-b;~k={cft%rGylhu4C1fp-tLzMZ9
zM&9)S%}Bw5e$OmY(18NaGk76YrUJ*A?*pD4f(H9bIQcN23<wM8mr2lrVNJTEVxCn9
z$lC-VvjCdrh_+96{ai@XUhg0-W%Ei!`6WIz1u<OpbgknDzfodtlJ{UrlS2s_c{2nK
zs|O;Q<9s1KfHi6YX8L;5c{p=>rkr#qxtzmuq~l{NB`4!)D+c<EJu)+$C~PFwP_P0G
zdFInu0q>uJbhu!qQidisoYGi4$k9M?;LxCy?_+w#7$rf+^J)tL=4}kS(!Lx#0x&gy
zdYwS`jm?MBfL{oJbm^Qi?@j|g0brwksB=S%bSN`Bgsl!@ilb;g&v75buSO(;WzY^9
zQ1~6{c;lDcE#`?SDCJvR9ZrY<LTiQsLN-gn06>l8iBs`i(;uVnOG@Meivm0pPnd!m
z-7&`r-ma4t3nER9khi-O$m<fkoB=3jqyj;6VTh7^vvm!M@d8woe<%Io?FDuVkI|2V
zW$W;gGB`O23T8h227TZy!#^8o2sb0E!?fpVu@xZqM<UcJW+(kt<3v{AjTB(H_VNYh
z78InxXH?SRuLQi2EOiWWLuEstUI_S6&~XA4dinkK*9qo;@@9Q}_ZSv>gUy1a53X<A
zv|G|+uU;Yv?M-da`5x$~)&`J;>ek?Qg;H~j<ZS}`Ow}Vs3UVl*+zm=4EX31lb4;Cz
zRQA~hWjCO#QU7qBi=Zn4Vf{c!QJycPJJ-u>7PGW9k8RLn*RcmlgNEogl7pm>sa16N
zLfdnP16v6dW!^v~GzgCmQ4qnDm*AU2Fmg}ySCKu?d=OC8y92HnNdXoEV4;^E)~%#H
zuz4#A8mT$lgQErGK=+odnY!*Ls0tFK-+I>O0KNrwhbOV-l>jQP!ip)dw<ci&eN}T+
zI{4=R<9rjxEzlzE10Dk)bj)pPlbKr@H@AUrG~kVmoi=Y8rAl`puifmy-ZO(pVf10J
zy9#`|4hD_xy|uAK_1Okbc4BTEuH#6^0}L($1K(w|A;PdWHxg94VJJVeHs4#W_L;i@
zPC{ROY8rGIppFDT%M~Ks0eT4kcpdmvfH$&1452!KfF9o`_8}13yXdqjsHMa<{3!L^
z7a8!Ndn4$oYL3bekrP@o=bf1X{33u7y|%Hf&M@88QF!`F&ke~?>7n3CWY*DNVDmUC
zJ7qkXilwuH?vV5}XNRy#d2nzAF43D$1F9`?z|%)lfae3~y4by;`wF0ZiAag$iAo+R
z6^G4l12O^lrEl@n1Mp!1m||Bnp_q|0;QIk|YDtL|a#WDRQ{hOX*^37s6x;MxlA1EO
z=@jv5hDf$fnlp|Bz%>_PG|KnXPe|<B;56YK_|ZrT40+4Xn-L;;j->SjAj>0D(5VEw
zl8UEQbEXR#8{Y<DgTR5f8D|sNbF`_!J_TSSxg)mj`BfZ05A#C>G93DL(y97{$MLT=
z_0PBBCx?ZcGzG-!BO_S?MpsW8^FCniMngEWK@CZ~sdpfE|2v|(vuS_c3TRB=Ip*Rt
z;5PwmBnASwm}Gf~hvtaDuLnbngWuVhOr%?Y|2E+3m_uH$;Q_k%%uciUVf~`}f}$!v
z96Y=<GGvy$%M%O0Cj;E5X&VZG16+VmU!0<XHyCe32_mmJyD`_Ayl2KJ^;BvV`<yuj
zT$o&n6Z|Ho;8)(*!pWOGGjwVCpiIy{?cI&r0xQ6&fc9gMq6R&QL@=~g=$!S~6r}n~
z!R#VSyB8U5M*XFerYiC{L;LjO9sT;f_XLxn&7k*dfH3g~FL(>)8SkZ`l$vvEHW%@9
zi@Ec4^h;Z94bDDbJrM<T{R+Y$Lw1NIZ!OQWbXZt(3ICXn<3RiS8mjGo{z{6Y^Ne}a
zV#T1d&Ou#AX(RuNp<D@|lX{?rT>ZUxuneHKL}71yUlP^_7_Uh<nBI(kLr$%Romeez
zJ{DB6kOR*3WGrMEApS+Fg>47SNo7Hw1E|rsWh|tziAvy&g`Nq*1H{`nJ+Oxj9P<8<
zk397>YXNob01(H-^ajgrD9Vv4#X|4!)?xFWu!g{PrNDj>t6Ze#TYrlpGVFxyfe6I{
z!)gHxDJ<~Jj~v}^q(XljKnayFpYs7vQ(><RU<G&tcm@E+4+&^4t5@)YpnwPTuxb6E
zCoG_q0J#o~5bh641bZ|AGZzIkF*w~u@uzj*e+fx+_nk6Q8)l{L{UI+~03J#QzZ+mD
zHooVAr#a?R0jhv*OoAo=f*S=3rE4<gJkX&l0d@@UhoAn}AzY{v!W;0*85`H`<U>32
zwt5AhAZq?VB?#<4#FSHuUijglWwr{ZbXyd{S7P&Ijs!#nVn8Jhcqafl6p`#Hq`)1D
zvl6p2sN{hEOatzFJ|y!>C%ZNW5ln?(=f>uiGDoHrm;pfJ*ygKgz#pXmSHsBw&$bJa
zM5L$#MYu}2h@JxQEWU*R{BK14zJ(uAVLN#U-4Q2f!OJd;@v-2O0j7(=pii#)S@@Yk
z)IJ#bWTMa}%GyOV>`@`)n!vB9yQeXfI&SI#7d^=e-Kd~?hriazk6kJC)Y59fJkqFe
z|BrYRYDwAdVBLoz{Os*lZVyXyydoZDfJ&}$oFalXvKBz$SPWkJ(Lm*i<}5{N&{o_+
z>CMwuaHy%5HYodkP^R}t?*t5k<V5OhOcKFhwg(jZ?jZAW-EV<C0G5!*rqGJ2tq2v>
zt^T@?O&4<`Fy|6E8(pYN@uCRDDUkR3c*uSV<W&w?&UWER4W+=|8Nw2}xx8WNFHwr*
zENzD_Jap0g#j-&LpN9cY0nfSEqAyx}@S#5Ln;+~yWYLOkC37^2QL9er+fb@z;;LMo
z2E3KnxISjwWAkuO`pw^|Btk?A_8W^47x<NR;6Dd^?%Wd>EjVn^VTT;LfZmV5;^3_P
zoeEOmFZcx7mP9`s;3%DlbQt%hL?~g^1jhL>+6jc803iYF`D6<4bO59B*lGDA1P_I<
z;L8C{Lhm8u2*1NA{+jtzj3GmpemV_$5}=ybd9gVizZ}8MeYNri_CPKQs(NVOXFNd<
zJqu7zBFI(n@vtCBd2n?I=j(s)9>@c^JuC>W_53r0yTi}@K1+&o*>&ggPnTZz_59Q4
zQ4AvBT~wsLK#OWqzt)fd_!*hAsOTpfF!_GTN|2IEe>aFd?UGQcl;tIHbm|48{b}^R
z!Ld_OYY<fD-LBp$^GxCw4!%t+RD15A`Sv|vTtBS7N74M@OQ+CmeZJES=id?G(D@`H
z%lm&0vh8+Ux{GRS7r6NM=>&E5onlE-$7QddiUdU}*b(sdks4He!GBL7%aaJa^b@Vb
zcKxjkbvI@&;Ggc2>}CAZB}VxU|8!fPTP?D`^Zoz<oa$7w>1m2>P9^JHdoAql*Q<s;
z56;TaC%k(PffEAp2(^w_z<GL~>i8{Dq-=RlDb*#H1>(!cNY)c9$%PUIrKcaG5}$m`
zw@fakr&mhJS@v^c%;B&9FSwuhg+LXNY;mViNkXJ2nRe@YL<Ei7^CVy|{9>9o4RSX9
zzmkdTXC$~AE0XhXl7MN+0Qde96(qAB9mMd|v`0r%5ql=J*3dy21Uv=&fpqW}hzh?-
zu_<A`>wfbqmD}9U3QnCVL&czZ5HPOcLF;xVK!X5rsMY7a`6fU(c*2zIVgEz0;N8r<
zN(o(D?BB*8EnD|xp&r170JGIJ+08o~<TzyYT7_?@R?Nj((}V6!f||aPF~xE#CCf#)
z;)Ri4bL=n5=#H`_kza4Zuep&_Gew4s^n+R_Zp<L1ym>1?*boPhlfN2=jCe?8usF=Y
zp|7XFZUzhrw9fZ$_($*t>0tt3<nqI(K77R!bFJC;Ya9=Vz)nqpeF(4<7rP_4Z{Vk+
z#gCkhpor@Kgy5q`h7RW&?SBsFIpD!x_lzBI4S<fUdnUFqgo@yu{4(IZ0g*_-M7@H?
zQJ^XB7MquSBjD%Xg1wf&*cPj@oFpgMf|U1dr*cW~^6Uc)2%er@%7E0jXWzHDdW5{#
zOc21O(vkFF{2Lat*X2P*pIF&h4a&w+%9fX_)sf2Z5v9t=u<fkx0V}~eiS}2ZA>xIx
zYMQSgCCYOx5W$n9IU&eB_BtF;L=dcbo)e;U+9z%H1=(dNQF1gc5vCg+shRHv;0?>M
z#Tz!ahBVfW)NotIOa^EIT6m==D4;h6pmh?aA5DQ>1ej}EAk5`}qxmYP$n)zETVVeT
zVbqij!)D*Byg&kKyE*|{9e_wizQb^48t_5@>AgTqoUapDVVySB&@GJ0228uvyZC4D
zr0!7$_&0U?Ttf}jllS@b%RY%*Y&!6Rjx$>Mi|S?re%e$({(J4_RK*Eke@lTq_gmD0
z@b%d%0l}4A37sr9M-T?HBVCx2-A~S`T*FT;<X@kN{Q8<hr5r`}72C~#@tb>?(PHx_
zhhdwN`8G-8(&)VyKWzZe!`f3|$8)uy5ti3x3wGZ9Irg`6?>~v(C%!q%B=sl40HD(j
zDmyTrxr@_HMPN%)U?%{^(PzwF=;Apo_OE$c9rzgF#H<4!F1MVnuv9(ZpK-w6-;p|a
zhnmMnr(cQRL_&U^9{ssJz+O5`PicHP|Ndv}_w%kLjcD#Ha~yuMgqA#wn7pY1=vi9W
z)hV!_QDsN!ULkcPzAtJU+w@(g;{k7q0}2*E=_4uAz1f1_M39aqiLW`=BDmjwkNtl3
zb+&?|kRyP;1h)@Rj-?y1W+@8N;2*C8zlsRKgb`W13IDYJx>bOS&F|@7N{>0%HfOH)
zYy$A>)4?YO;5Xv4@MaJIzXb^Q=JJ@mNXNkthMzZ%0UIWme2kffeBX3Q^8<~Se{XuE
z8Tk|-vs5^t*@=Hos|EDz<#*HMLbwOrAWRmUD*ibw9`g@D#m@qJI$C1nzbF^<`=K{Z
z!KOl;5xsl>e#5BNh+lfG8>eE1*FyT?FfjSo6ilMnM|^*ZmQWx|jHX8JpFJeR7F&TD
zv$FSg1j^4-6op?c_!>A?j$Iss)IWzDja2i0NsP;W0ClL`L3_;)QIH0I!4K2n^8x1t
z0V9%MvClEbBtb(#ZOXuEw#NaV1;7cU58l?%6S?mNsF8w&H+hjF1#d!uqa{!9Hij^!
z`!<3&H10d|v4G@qypCOgG<9DFEVATrM$Fq%p?@Wssy=uU{QB>CKk{-aY<UXoB*1)S
z-KVmwXN2gHl3&y<c^D-=OO7&LeRIIX8luf(Q$T@A9>Tv`2R@!8#G?KwfzRNTx5UXa
zxCdY_WXSg$RMO_Mx$rA!+SZ!i1e84V#p9m7hb{t?j%1x$EeB$46Ps>qfB=g&pFp{*
z?CE}sz&ziZTkuZ`xypp#aUMZ|W!G|A<S<+?X&kfw0d5rLh1EX}8Nr-cJ$-;W$_l(X
z4R|YnUXfgR)=xl^EjN}dco`Km5^ZaXYqP$@IvsVMWR;sDY_u80VSYX@N{COH4a(>v
z+p+o7&$T`HNDuo29yCI!=@U@sqXp-@^j~t_di(zbjr`vr@Q$C7@ujuK{0K#OXj~c0
zZ$%nka|eF9PPP8vLsZ!ru7xfCS%Ajt0-I77z^V@q{X{DCY9bML3e0U0!ff?&4d>yI
zN?5Sq)_`eP(18NBYZZxQ_eqjT<T)*oLi6$6sPl8waXQoG;K2~c9_zDy9-tj%=luU9
zSflY09sS3LB&ccBgq6ju`MyQwG?ZyuVnx^0FS-jwxSs07x9i(;ZVN<>5L;|oQI^VQ
zvDs3;=mHdB;~L}h?Yey6RQ|ReHIyCni#kG}>}ZtHxqOV*R)8HS(k5I6`Di_QDEobb
zvS<7fyb!2xgsuMO1MEN%Uhw<Zp)gf}D7&~p*)HORLvu&i^7><4UNoMccY7UXRCq$8
z!qZX6?_gs5E(P41tTtrIRAP5iwIG++qx8FfXt)*sGtavNBUS#rCHVK*_%|aVI89m7
zKQ3kR^PcF>M}19uTlb1P9a#&w8GsWH(R+M<!Y>?j=+C`=CCn-nvmgFV0^y(E_W!&E
z|E!g(!>vcCZ)NUHf|`CU(~fg>ZNBM+b>JO<Gu1&vF*>*4`sCXakdFp+7cP*8CErN{
z-VUG-opRFpV@kN{Q5)zUq}jr5zMnA>gm3F1y=yv1Uj|Z)-w~zFNN>>R*jkno32Nzh
zFaAwjv~;|cz>6_P^xb9W-<Tj1mj1_Y<4nTR|4NkNemNhMOx7*g`*+goF`1;M&Eti<
z_T()d^CWQJ3EXs&<`NXSwWHHUH}D&dBHrCm(n;?&{sX8kl+XQ*<BlGTsJ6S}1tX<R
zBS_@YXBYa8DauEJ^44`Yqj0?r;uke4yecT17d1gtooHCP*WC%FutRNfD1es@CHvF6
z)db^H0uL(zMh?GKR}_CNN&J{nZKP7c$j|rrF?2KVqB>1Qd;0IEg|+}_v3?H7ac9_Z
z)ZK_)fcN=n;@y^Hj4wUXbdj%Gj^>_t3t|Y%ra~A1f?qR&U|m#y^m2#~ZQV&|{38v>
zB@wN{zud<~ZUrAVBL01BihoG-RUn5smx|ptY|W?eGb%KnRUS?s+JU8Cn<QqNpa}OS
z>PO2L+#9DKEk6$BC&s?XVn@s8Q%b^yWdB&F+mJ;o+M)<YY*P<MO$&=|YNxFD5n>so
zEiT4!#o>WYp54s#K$;3Cd*9SJt-y(ECdutwV5PMsDnSijLyIXnK?;ibCy2$`hk595
zv4xl39~U|(Ji1X~1%;_2ETM5v5#oFS)zaG5xYiTIEY^IAg=#Zi`9QoGycyKu;~N*B
zf#T^kC8UbRT#bs;YD}zN^PdvULE?<=Z7S~}D37)_Qe13Y{63;SEwMtXXwFTjxI6V)
z{+wtIV$s@|6)251CMX<fRCoc=ot8kJBAW42RD1HZUNxC$1g?klEk$}vZOIy-L|YQa
z*fAx>cZtokq>Ir;!?J&wX2X(IPeRqG=snwxDD@#l&Ca?dx1a=p&S*6|k3WVY@@8~1
zMm~y-TORmeN(s53C!!#&-6`a8)DWN9m@QQBT~J9cG<Ts0o>&S!v(H~sgi2*$)&kW(
zd!g%1(MG1%I^}P>Q|mLR#m`~rbxlN->0EA)aG7SMT@Qt#O|#M?s1!cbnTBu+{~q#@
zXE@WSchzpzd)U=Olqck4UilA|Bwn&2EJ@e#sZ*nT5-737sB>FsxO=O0UT;8g)Cj}U
z84ouqJpiRK(kpn2iDVjyidyo|x+OFJnILz#Ec}O|C@Q6v+)}sXPl=M@?gBpWhRmZi
zbHF1BUb5qRW3ogipFt{evqERX9p%RfH@>a<W`sbrL5K;A<XgzSk9<)r?%~Hj!}k0~
zGo}F7Z=|OcVd{B(c*vcv%AbSqiB(A|e$YUEkg_Ar^PpPmYKEDU_MF70_kcvcTJ>4Z
zYeyApHSExjL5^5H;e7nxM)}Q;?Y`zxW$whA^L+J~wMUvO{(Yop{tI@syB!|r*%UzN
zsi5<~Q$*)AkMBXlrs$6yPdRO8pZ@~s3T|c1qnkzakJiENQ@0@iYbsCFD|tUk+%ytw
z!;9s4#q!8-aj<o;h}4&n`)2SaevfLeJBTwjYV9-3GfkE*I?c;(&G)w2DLn^J6mm=g
zG8k4{KGbL47NF4Y*FVh@q2KH98;%<1fM0I^nsN&4Y`}1$TW(!GSjHGOKf!PR>z>H3
zM;Mpl|Fbo9{;IvQ_Do6vU2(u>09Xg;b7bQFkpA>4`5HiUPZ1EzB<B10>3`kJg>Q~9
z-7A9%T0cBvRxMVLg%Ov@=x*3+TNH?Aa{5mw2>sImGJ8(tS`sGI;4h|<Zc7UkY%jNa
z=_*wxGDMq|Z7kX}NPG|^=K7wzgnmY}_-%p&Hv)e~zg0skuf2S}c>s_IVCK_ffK~vI
zSTusP4lqaO@U2C;1HCDz>!FvYLVpsH=q1DChY^1ckUezGGrUk9dJ3SaHiA%qitDhU
z@iE}18ABcP`+%;!xZIAM?2H8Hr2s{k+0XR8E*-qy5}+p$LUL0AayB4#1L1^K2E&x3
zhO;TnKg8QrDHTd7;B5XFdvo05`^+-&5=8z%pKe6!#Y5$cJUc@+o91Fqh{t@KMwt0P
zYj4E$$As9maspJ%_vVY6^OV?$Z@YU|RR{pt=&mx?qN|C%)U^ol2oj$vhZ=Iah?K)5
z-u<lqU)TS)bp6P)RoDMp49tA{IsfZK-tt@(`G3V2HlKao|1Nn?+#AcG&M@XQ{EDtM
zcKW{v@QCMmYaDPt08hr(ui%RUcx!-11Fve{-I{sSq@Wut174UqV;=zYNo`-eC_h0}
z_ZE|hcJjip;<%-2SDNO18kH_Y>0JH3*h=>UH%gADANmzY_X*>X5V{;|0e`pGd@uwv
z2=`yUkO1P6&5Z=)n4^4`XBaU@<cY@Z6am=0HGd~O1yzQ-dypBsy3OqS`~XZoca1X7
z%?qLAdja3P0l*XAyfMG+bym|$Oqn5wCpgG?fY=z9fDTmL$BATm(aZPE8p?tduW}FI
zbJGf*{sNUG3~((m^BGR^qz18;m^=_fhOp*=b<pnuy2?Bq{QuZb8ZsT^e*oFGZaUZp
zypWnqO@kA##2ksAX$|4RZ=x_&Y%aYMrL5ElTQ0ivMX4fj*$+@=1)%HHOU(WFohE@T
zJz-`Y5p3~UC{D^?%ij3nR3U6(358A#?iRrka}nTC<ATsZ`7{5+%VRC_z$ii+5JFRn
zmOf6^>le>@iQ1#Pq6H>+<3jQOC1xFpMYxo55@d<F0XW)cb&(zf5=&7R<GTG-(7GrO
z0HuL6R?iz=+E^Tm^<H4rmB*r-{IW&@S)8+hV<#5!a2GCEVlHEd9msCd;(2U|xgBL9
zzeUIBjpH2saxZ>eq-{WA>FZ*=u|<Wii!uxpXOM?1T4F8$AYqAAU|!*6@+L?nEhvc@
z7lH4g3MuexPSs_%6HCk-hFEoxq>GoBH2`TZGYDFeqHm(enOdyuc9hv3jTL-)mI`B;
zdUDsHB+=j{=79h7Tzqqvm?Hp>HEM}@-Yb=Qh&mTgYZp3IxsS#!F(+^#wK-a7hunKn
zDndnz@xj>xqYzu+Ij{2KM$7BfSb-Yckm;e%dbKujdici!-x?N~cX<1Li8&i((mLv<
zg$sBHL~$M^ep4a6YPPhYE}4gcVU4gZ$}8q*H^t>Vic6@ETnSF3t-?=3nTY2K`5x_o
z?x(~3J8-ovuCyNVoVjYk5v`?=-Rl5t+mu8X0abfL$=cUKOH41y(p%y$>nrZBh~;#V
z_c<`VB}uaP0n_$UtR+d*{SVTXIA@goOHOII#2kfUkxzzVD%y2G({?n%dk}cxXip_}
zL#s;Ph}2(!WxF7HoW;NF#j_=5?mQ>Hb`zP~feosB0adgq)2(w4>O{u=R7`Gc(<V-r
zg_*CTD*9S;i8+u<XjI8+xds5~vnVdP7POpR0|aeiI>z0=;0C1^e{F$^pI-h;l-rqF
zIR1+PBxAG!)~bb0SUYva5iS6N3Y(7cZD6pl>BZ+RQeo4}zlL&aNHnF<N_!h1QKQ$A
zWe0m<#5lF67e%3IEBt^%lzpti8&Dw2S#+zm#BAXrJ5h$awk76MC=t<g^EPZZc$m<l
zs4qFx%c@27aE}76HQ=Zy38JrBtgV@f<gviy4;;`oj^B5mf!;nWYqlV3$EFb24dC1a
z>KTCYcSJ+fuGbKIipYl0(*d>h`DkW|dE;x9jR4L9Kv)Rm0zfPw0c?JqBQ20~0kLFZ
z7fZ~E|D{Cv=lk$eNb>Jb;kPBoKS!51a{T*z{I<lbliT-trDlI$fZsyS0=@`<rDuPi
z)9wgbfWdzU;(t%0f0!Bk|E9T}|GwgZ=h)w||8JT%Qmf8GAh~;RUZFe>-}##-{iuHr
zD)jZVR<@b<?f-P8+*Bx=7dp!SI?~acH&7nR&nqEZqr{#>tj9bpymBym?y+<YVNUCj
z<?cSC%ubT#G-WrNrXBQ+XZkO@)ns<;Gb8t&JNL4pq*Lk~E?4uWOGrGjPdg(&8B)vf
z{I0v2Us~#;*B{5AAK`)+^L$GwD}S4!ElE~Fu%}sY4@j@Wq7r>Xb=m~wzotM1)pkKy
zGX*M1-61%~cwCwcT3cz@w}xH89bviz@5hRtt%O}LV7uU&%WW5A&#W#WNOMjh=4qCE
zep3qZ2_f3CuXaj=_$Eu-^|vG5ai#XS&OZ2t6g8mDD5(=8B)_2YO+(%o$;GBiNPY9E
zB8l+aE}`|}7lbX}12JJSEkbMCQ$-V|H7c}z@l?^IXKfQg?6CdzwDDL{sM}4uP}<=r
zcEd_{N1go(7cj*!p)~r!J(UrOshOfu>Uq(gQtTCq6`?e-=M>Q`ETod^n7OAyViwEW
z&QV(9FWys{r6L}WD_JFX<V*IHEGCcqrjhPJ%pOAP*mRmQAvwEhJRvbnOdmq))TfLl
z=8sV!_R*(|C?=3GA$G-6Miev1E+KaNQ%01h5TW**{Zl*tNputjJa?377E%lLoa7;k
zEXj5u)w{<eG2|`Dijex;o|A+gEzO-m>%KjviTT))oD@=BFWuAr;Q?=nDzO{(n5a%9
zmhQOFJM?9HDlC7BIlsxY3#AKQt`xUoJ^GnAs@ZMUM{>Vq9%;!X9h)M303H;_gwmre
zA;p*NC$6wibiW%=#5XF6rQ$FG&z90Bb3)NPO<kYv;qp+iw?>XLz7-?olZuxmKQdTd
zk=WWgYC11^Lbzd5F<NoSEMX)BZd5-WA2*8<$O_5koRWlNxsY&X1}X}jRrZ`a%4{sA
zT^PN$9>WxgLt;_aU8!ytYJaLnbvK)#N*}^$t(g?!b6zRB%HSiCCc9&wE6#E*b(XT4
zM>@c2PhIY8rCJ^)P;>74SBqcX&!5``>;(agwLa4W%KiORZU5XgS4g!ptA`Mz#r1>l
z+UoEIe37cVm#(v$HWBykSA}Au<_b?8*bv$Y>H6TV<Hd$Wf6X}uq3qwpf2MEynbk#B
zB5j(N2p@&Pes<7IiV*Lft-@d<k9?ybbdnP%GgKi!SMFcGvTe=aOL_zu$i4SARaz<3
zGQMX=<ujZv{AMR9OTN?xam;oR;d3fV7Hpe#D9?oK^vRln*(uoHnxhS<b<;huUNVGB
zy&+^IZ6|?uo|QZLUTFzqW8iW7bOdDz3<#RX-$wI2k}k}AvrD8n>_C;Kn&+v3=&y0(
zF;i<D%$Eq(kvnKyC28%2Q3JN#!=^9CNNEeM(hZq*;k?g5DuM010oQq16{%^*@rk`5
zI^u}hs<Mvb7NN4ERjBcfR@H<~olgSKa1D#-W%)q9cOzeQm2Y>OF(ETNPs!n%nCRnc
zzbRIP;EE-vrk^B;4;l=WH|Nc$(0Ey!(!%B$v@X<POr%*jC$3NrW=a{w!I;ru)Z&Iw
zQiM)=AG*AZh);_!|GNs2DH6{v--BXEPKJ6yt~gOfwg}mha}YL^#g1fBo^=RH^ev;S
zj>gQl+E}tkw30!fVxZX1^WxVq9Avi2Y>iEnnKP?xt@t<{%iEqSie+SD^12Rk4H6al
zC`MLQ=(U;@d07#kWNsHBUvsbu3ju1Rz;#|wR_J=y8<3NuCS7i7$zX}49Q0Igzza^2
z1`BVYS831iIJ+nNG4$qzbZ**3@beGV2GEyl(HV)!$AV|gm+42%8|D&SuQIIvj-YX~
zcn)9hA^ok?Cv0WT)}P{D8tUGdr+~2;lZLH&jW&=uulCZ=^<NUEBd5Y-cnGi0opYZI
zY8v6cKS|A7mZ=%JQ*M-Uw=>ilfw@448rFyTrb8sSL?y{a$jY>#6tXIoAL~h?W~b0v
zzCv3!+(!K|dX^K;j+3*`%ANX0ou)A-17~{xvXBeU@~dHE*;t2OvMhgjos{T3wk)mA
z`6`w%fc;#A8TVj<%ubncNl&IjnsUbB+N9(Xg6?p7s>wR7&C9}x1^qy{krGWT?Ci|U
z&Ar=d!7G!vB4Z@ocpDX-d#_a9G6fGfbKy=?L&+wXCnjjm2OKsFpJt(dvEw84rp-s>
z@~!lI_*sCpeIftnBeXe?7d?-DR&8Z!1v{k20+_W1xE|^o!JC-1kZQv3@Gt_vQT2dX
z+_UWtlBM}eJ1P(mLxPks-%N^N^WGo=?%9waqNYt~eZNy1ZHENRUB{~(5>YMikO-Bq
zi6Kyet`p=^MO83`v~fF38zlB4znE@$km!aG4vu{+K;T!Tj1+F^xU}%%W3;7^85M$s
z<=;MZ=o7`I9u{Xz#CTlAiK<8Ev%sU~siE0Vv!OElL;}N+OD$y7<aL^3ZG&Gbf14tP
z=6yPKOrsRYM{SXsOQugjj!0+E<&(@gt$m0l<VUcA3W>Xp(_Y}+c~>~ZxLXDsB)bXY
z;)yqB4E+aj+o;!OxMDw2Xy@LFVIrhoe7v%dFE=ecc0E-+&RIx?w#0*+*ME2f=U^yY
zpIi8&_>_nDCjD)uMaWGmS<jddz*h>6KSB5g2<6(ae2RHR_i(rA5|r*F>g>6_l@Y<6
z(~8}!sR+`a6q$YUP7yO}my8*?zuX^}J3)%F(5xIBsSOO43uaQt{o^F3CQ`sauJ2?~
zHF?){*<|~b5Gu9gc1R`P<|z04<|0-M^JdHIl9QDu2O|UbnTPg(^L?XD<sO>h1q?-K
zb|Sz;*kg>031^R?c3u6QBF_&us9e1Mb-Clys2t7)bq1=}YINVx<<hFM85hDWUBVzr
zuznw|T65IW^&M;1Ebla0_aBZ1ZNYWarjBE2b)j6y59dppjp?@RkM7ZSx{c{-r}GRj
zQ@5)W+Cpb{d4C!g+abbh#7R&QnsW*X^+FEx(i&c!Qc&b@dLBBbb*&YUf0+&u>P;%#
zRJCojE<yjFK50`n51GEKM(p}3DH9?e<!UECR)|V6A*6m2A^FOj9T#4#kbo6tQfdt3
zLt(V0PF`sW@*ld4%2E+Zn<5myB<{7BC8%#j8I=kjPOaET6l^XK#Ng+-V^Vq25usSE
zUMgtR;T6;$?k;UJTJ^gFqLPfWuE6FtlVt_Lk<G11Ybyq<gNApPioIK^Sf<8>!@r8E
z{0ag_fqlw8%Bw$1cMOShONz-ZXOG;NQ!KT+H>&(w?Qm`PdsOk;SLfcj!P-cM=a2Qd
zOWbdGggkbf?r7%-;oSJuIY76HS$eZhbpmm5!pEQ%H(0Y}-Up}c4_2*NyJpQgGbwVH
z2UROHB)nF<Cgq-hsR-sD%UXj3RmUz{%UcI*hHHP8_wYePzy+kWF`minxdVvh&S@={
zdJ%U-N(Maq*<vPz)u|O_IRKXL>xz#!t&R7euI{MRxvZL27j6}FI3qXKBdc1E)oH8#
zE^n5-jzYYwv@NE<^G>0B-4@}HSw=+G<bJ8q6?@%`)!=vT?9n;C0~ilh6m_h#Y<kT(
zZD!U|A*7kkkH#3|fIy2w3+1bH_tNKM=9_U5?Z8u2#NjggQO9{9<B=8CL|0DRox$M;
z@gB(Cr6F$G*7^om>7BGR`2*c=svs&Gxfeb~R9xN>5kGqR|4X8JJtr4+*nrjZ8_k#q
zJ$YtK_`n!g&mC@bWO#&nv&j7W_3j&^qc++T$l_8c8EwPY-x0P2o3?kI6&eiyh==G%
z&hS+Tz_3GfFfm*}u}ySP+|8sdAhwAr1)^O5guBFzm~>>H=#VxN09$1TC?Y0Q9cDGQ
z$Dyq3)y^fc%I!!P_4<F4QTJh^Hk>!RM1>EZ9aH7yaaE#SPC=|n4545p@l(KRkGGNi
z*?*%2MXZAomDxkkciYB%`CMsKY(k682RJt6>0o|eeAdSJA)+Nbl{CAA*p=t2rZ^<}
z#F^gYI8=?8oYND&2-~}H*$9#+aacRFMsIncJ#LPh8P`KNMkljOl~F<?vq}!^YvY1h
zi>XCH@RKL(4mT59V_Tmvwk~gMP)gH|q(-Rc@d3>(W|yepuNSI1WcRYc?^1F0XPe3E
zOAxQXF=0>;i-u`a?J6_F3GMs300E9GS2r4Sk!AiR`P<aEqebW3+1f{*YJPKf?+ATg
zY^P9r^QX0Gv?O6@Umo=JHX9H>(>XMmtqj=}K&Y9}BWm7wrZ);k8xPQQV!ACr+Q!}d
zhco@Gv5jY!$q+)6A3oFf;#RH%19TJ6R;~oQ^AM^8lXHtF*TL-PFu19axo_6|MN})C
z{wlNPA51Wqrmr{)cbEVRjT3l>k}U@22~gZTtqFH{QnI2?ck*+FW(RW6w-QoPhp0=s
z^gG(MQG;>Egz786IvfRAO3k>`J@hkT9#I-{8C5A{r{`@1T<jXxF4VuVyIg1ygW@AT
zjpw4%zff=f?C!NCq8~T^Dz&qeYQ|2n138^g8mr8mvnYCk4bRA<LjG!HlZ{VWzP%(H
z^~5g0y*a%O{0})OR;!M%rl{n&)O^5E2t9sJK=(%=Akhrxjm_WC-(92Y;FCh*@=Kqb
z`t@)W+@|5UDz{z2<^2DCs<?S~t%2`pTZ>DBW5V~8%bpzn=YPuv2%ki2!L1@(j`-qJ
z#cf)xUBKE#6vA`}<9B^k1jxwFW>x4h@H(v%R%Yug_LxE+Jil$Ids~mhcpYNQ6>mJA
zHp+fSBT1^r7B}H))6%x%2*DL8CB$}V$C@j&Jp;0qs5xc^>><;6aDjA#NoR8Qm>Fw~
zj)@E<VQl5^W6Oe}$M_jOqixT9SuaP}%U?}9wkSYiAv4@DE>0jz{oO^L?V6qQp>3S$
zNcn+?=q9(QLs~Nb+mRMshjm!R=k*h-x0C!75;$DFi-^^5)Ddv3;103KZKN3k1rtF5
zH2@$i(|W!bQwNr7r;d`>5*BR-rtfs+i3*hJsIVjyeF7Zow@0Si)da)>u4=>y0(F64
zV-;8I>=67ur+w)?80ieJ*+AdVbWpEdQY|hXU@mSKy{_IR`t?W^3V!vKhq)acQvUpF
zT|eMzlms|MgK#RGY6pC&1lu~i{8Wf0s8+IDx;1>^Kz#kux(W*Ok|7=8=5-4WH!UK}
zwN5C0nG|zYwZ1#Y56-<L2&NZ8<1CIa<3jqh?`pf5Mc^p&&Sb!KahAqm&^;-KZM>~)
z&gq@eDAOYr9AQR<*@4#y(`;ghF^w6HMwX-JGu>}b6OY5NzXeqUM}*u%yG=IBb6VOA
zWZ4`J;m!3{=u5v>S9sR?jGStHD&awO0X_<A$rWzcU9u^{i}S(8MzU9g_{(pcHWNAi
zpP4K7XAJ-6oQc8y+A!`FR&Xe0T7=^Jzb}+C;{2`8xwUfu`TAfwuh7%C5`E8@$MxBD
zX=B&3T}a-dq_c5CX&#d}Jbck>Tx!1mhbkPMtP<<s?o_Q(ED<QUQOHIZ9IzE_AUZf=
z8$^4~m*Z7$llB@2zF}(FoqUt9&8DN5@YS6y2$zmjOqZax{75C0%d3NKJ;>6@)q@Fz
z5s}(pK93V;srxfWBXKrgpTscJpzqsLn&Lq-Aw-^kiwe|-Ues86m%r%HkVh7Yskx(F
z_}2N?Nw1AsV#P2m!u5;FJ<|Byq>6j6LhiV6ZInF;D7&R(_xTLr<fGinYfqPu|JBcw
z4Q`WCDrLU%_K!0iH@>Hb#St56=UvsXJk{`l?<#NJu~NrM=xP|MV4-#el}-U-nRY;4
z`>{kj0Pp>=HoK(^@d0cLv@RBChblLhyWBM!Z{oA(4q+7HECN@Bmr{$(gtYRc+tXTm
z@mY!1LI%f)zQif+frClJ1CD_MVZLE?U?tXBB~!t5aeJFP2nAZ;EWTtO1Oqv$A9%Ki
zj%=WtU_9)V3xYmPJDydrvmFe94c8UQT;n765uNmQBi=TrmG*`!t9iT*7G+G_DN5n{
zBR|nYUy{6c5NnHNqDLZljSQyExdnRbkIQG~F1lWJA+>?>$Y393J}=0nx8yLghKO?I
z{enMe$3&{bh|Uc<r&O-dM|1&we*h(zT1aSJeYlaK@X*LO42cfbEo`PHy{k>2Yx3ZM
z&ec2XfXq6SVCY;2<JPt3RACvY3JIiFk$P4;tF)JB{e^SBhs(X@T%!`s-A>I{`L2GN
zgRXM=&K$(G{Jgd77E#=>_o@O*mF_~GJEbcyPLgUM=p-`BK&nuNz?F3~p{mBq0P`&O
zoI=+HyM*;uRfPCm<FqAER)3rDV#CpRO|wg?KmCttj<gd9Jk>NZvXVj={!Wc)mdX#+
zBO*gaCm3vlct;r-G6~t1(ua49xz7sLA%77~jS4s&+9EJstI#np&&NgyUgii#9!%(y
zf3*X5FWVo?hTXDtxU-wSoNIOpxj7H0Y2aG~#WK$*f#blZqyxFVe&C`AZP0r1bq9UO
z0QQ~7=|9h@Z9?`QPo9j-M=}$pkMA$ybc&7NO<9<tv5?3KgY&)`#BE|?;Chzuf7)My
zW{RZ5Y<;e+Xy;3NCp*|aBwkeTY#j`Xr$pjHFTQlSaZAsJA=4}}KJ!7f@!BAsEd>uJ
zWW(mq;C<I_sUk|(13NF`KJjpML#3K$(0tP@<o5fks=&5vwVSN6<SGYj-1UF$h`MY{
zixB;b65oAVPGn>LW+gpW{x&@cqO>RO!|@`&9@#DgRz9Q}jSWiKBLw@-w9Cmd<Rhdz
zgyh&$P8x|dhKq1umGXUm-+ke;Pwwf9#Ovu+I_qyzSfBHcJrIG14Tf6ULlIUff7`5=
z9@=adK5PFe{4%_rW3AOGIfMS;^%rZcPI(#hBKt?d>{73v-E$l1=imX3Oe>KmIAPCw
zF}p;(p+~%!Xkf6rqS(SZiZTT&l(V%bDT6EuYJI(fRZ|hhKT`qXi;bHoR7ZXUV{CxL
z>h7An{;HV?p|a>v?PaPS-2I77%bu3=rQwDz<F`ISVxPxUGqQvZIBz5Bq#}t-se1!E
z(UGY?!h?1cb6R1X#lb;#Y?hO=YFdOzyE4O#q^2F}jAXYA6nh7jZNr)5RFu`}wcj&S
za@YJz+fXY}f3nvUJW;Ck!%xO*yu8Gnbh5<z)Y{0P1fLWb70q2w)MDRUS`A2*E6dfT
z^r&^0NOAq+u5-{xtp^W9j$A&pF&^YlO0Bpyg|DAdAbDJf{K^rdfMv2OZIDEWPUzlD
z2>zxgREQoVU=HONz+O!D0(U1Q3COLnUg4+^dVH^?hW=}!hiTML!Ip=~1zst+d#>Fu
zhGir|q-*gcpnr{hvFp8`EQ<;}KmTN%v@JQ6Hd})a53Dxt2E&8376I^LXTQFyv{|HJ
zeg#Pyhn7voHfn|ZZDN!6jAYa2Mf4<lMg}*^Gs=!?o?lhs8zz?AW6w}s1&{q`kE!8y
z0o!AQ@D-pvZ4Y*%5)KNsolw7f7Z}{DQLufr5(J8^$Kbjn;W0FHLxWbr$}o2zNtbQg
zjAv>a^{rpQpZ9Q3E0{=jLxwDog^8fYsIvo;Q2T9h!EoOzH1*POSmt}jG>fDkdbUce
z6jt~iVTl8i#=NTS3hq<aTdU&Q^#<d#>l@&ub!JJS93H-7BI9+>RatdS?r>%uvr*Dc
zvl|L^h&!WaF5^PI{5;_jBbhLJ8=>$`$PSmWdmzp&POKEpz1SI5qpT~!@)Q3a)>!83
z64YD9V$9)@ox<t$duwAOYmb}Y)o)3*qchJ*uT8s9*uI}qqRZC4??r7hoJz7TbisY(
zFv*PArZsj@m*=YGcxqBG%5mk3)hxIJ$kHX6p|s(KfpRci3|Dbxh;uPOSLdpO5^<vN
zlbhzSi7jw|B`PJYqzVqYK5Uck{VZ=L6@9i>0TCzWZ7HLb%GT-I_M_;@aECPT%>Pgo
zbN!|r?%YntL!f21_rK{8yZ80##GM3D;iypD_=<Xz15E`_lEoKncH##kT1`femAyK=
z1gw`Kj@g-t@P1KFWgzQo+M%H*UyB?TsnjCKr@2b>4l!8;rZ15}>wcM0sc`cwHJW6W
zh>#RFEQl0p=s-P}v`Hppiosr^XqFilhVT4OWi0D~(^tsWH=2kcEK%(qoP*R0@Eduu
z+AdTco2}IBGu0#g<V{W~xsU9J_=yq$K^R__n;SVU`a2y0Zs4mMnl1=F6yZcMbF2u>
zb5#@`ZG$c`N0ftjS&ivaPjfq!=y?YS@rJ~ZC&kA3sfj_faSQrjs4~nqA@*_MaCG59
zLQH>h<+V;X4$YVdaQ%UiR<3tr+Uhm%_ozFkqgPx=sA78V&2OMqn{i<<dXO@bJ@9~I
z#W^!|XOt2rm!MxtWE#H8hW_GKIC)C`yjEqyvu|+1O^G?{GQk8SVJ$ZxrkjvPe3$9v
zq;ZEFV<P8&&#Nad9j)nvpA8~!Gjc)XEg27$?I|i8Q{sKxPT_FaeC0GO7fiZb4`kq^
z$fG~UvXQ?0C?Y;|<kBwGzoJ|kc50+PFW|eR-i!qzWyAWRKAN3AqEx$S)7LEI%F`kn
zA+T14UPY>2xo}#Nxsy2_vYP9~k4-hf2(P2ybMF%RI}X-<dQuh~<*Q>QRMgBAMe%#!
ze%zlKgkMuNW5WBzi?yw^%TtlF{StZjtYjq0;!V5^8)r5kCceD-Jy|=nT5{#5$M?i^
zSd9t=(;^JNs*GvZPLo-X4ahE|`gGsx58vy>O=l*vOR67mn8@$3;3NQLlWCKp<CmzK
z`>VJ;R6AA9m9!xl2Ghf9d%EP{d|eZgwdY=uwe7K}B<*S+1ncJ;ARP|LO9D@GrPFwq
zh%vNM#o-WJa7>%Uz89U~o~)r2(pzj{3itGZ&?o!)icr0ImG)<3RL9mXdv@VZSK=E2
z&tmpm%)0FK;B_<~FpLX_4<DiJ;G;($zt8rg5#1$mP2IYzw&iIT?3wqN5W4COLeOKN
zzx(i-w%6>EveVwE&9gS5bGWZkfX~t0gL9TqL4Em=Dkq-|4&=@d(OjK*efge|0tFM`
zT;{9fw3rsD^^n%aeIqnW`DO8GS~7zf&R1~MgbuF9=Z!ha@?If-o1l2i^%6JmRc6mE
z^wNi9tN3(e9&cn}<v1p%ll<k|u<J4%Qh(l?wE46~Ul?ylYbqU_R$D4<Qu{Z@s78+4
z&`m~<Q&+uZky*WAh|UA}emxHM-I@7ni;A#E09q&86$P=6Gi|Zx!@l$&0@Kl?h;;gK
zD%#MtBUX@x`<#X|cq6M*Ma1=-CPNx6Ye!0K9jlfL<56K)K0Zye*$ov=#5N;$(F5)r
zj^lpK?kL&!Vxbp3hszfgp|$tP+88X)T-1s8jnt^%wMhvs8X*2!Om>LwI5q9qZ*Lhv
z{biWsx@xgdu=_rL5FE0mK;w!s-m5kX*VlFl_c+$Ne02yj3n$BK7o-mks;IRsxDZ4r
z%PS+)yW^*O+hB`ahcAIr!EHf-8q7oh!~Gp#{UHLG#V;}@Ll~M5w1)%G&^Amo1^ZGS
zMWbi<GYBn`$@=WD2<;EV-hPG`o1<_S2Drsp^V^8)SOBZhXQ~04I3stBjH`^Yqo_QJ
za9iOeWmyPtl1BuBdj~cF3x<rYTb#uYNEk8-3cF%ifx3*%!rEfZj7cw?Hk8tJ7GKR)
zFz%{qzu|#ziLa=E<7Gi?vM=x9VazhpmpIdL697)Z`03y3+)iz*y{OgUn!&>Y0e=}2
zVXLT3B;(S}a6Ne*o)i%WYa%M=V$iy}8?A5DrXm%WZ_~CGdU?zY<UU%FF~Y6cKp&~a
z$kC>Ra&?kfn+_rI@zazP#q3sK9_lXja!h-`DIz`&Lu%wPa%dmjhhvU0A@`Bfg{)1#
z-wIEJMA}fz7wCw-+JVo~EyupPgll_af@{uDwa~JeOaR3}w+brOjH3SfOqHHD;=wci
zT0wo5^)6vchOXXmk9Otmcb_K^(OL`Gmk;9b-b@J5r;jRe(Q=p5axyJts1r+vJHj*z
zkqeZVM=TDPyH^x9n=vVR`&+dAGyt1+ERsZES@#miEiN!+nks|W__7b4ozq&LPyf*H
z(Va_cM|GO*!r?V<tHa6OG@R)cHrOQZwpvoi7JA9T*OtpjFoRFrBa2PDkp1L4guIu*
zBXiW$>=cx1&Q=}AJ1~AF($g9O+bY<aT~c|~`;-Wsvv8gpJ4dN|ks<i9&Q6-Bb_6qm
zov1M6bymt)57xW6S?c<x9d2~7l!(wJ{1z3;CP(ZLiT<jRWqT+brv7xc#0O15q)(#q
z3=Sf4Vt6y1;bm(B-BsST`o2$UhIW^$Fd%z3VyK*JmDBxxRg!Ln*ZXE$Wv5+L)OJxM
zr)DZb<o6#?Vm4D5RH!P+AP!P;$z9t0ip7q1hmTpsH0v5R!&UJOEA%eqyK4x-;j-kU
zaG!ggNRfs7O*^y`>r|U>+64co3srizRA4X#XC`i?0C=@;*%r*^>{tNY;bzAS4|Mhg
z0AKIniCH5mX10cFfwVx-NcKqzL+OvhRuN6MZLgUQk^5GaKg8|8sIZ7;Ldw^DMD=60
z2)aQIt8rGQWrgL{Jf75;E~#<w4z1~gOj}H-5Uocx&~~ZtuTQFKk?9tr4c?3zeTF7v
z&CiM=cr(6;a6=zPZV|~b84BUWIBXkp25{#YxlC2oy@(0$uw}LC$n|X|p?RN6-HGYm
ze9DU4{y7!B(o07HGFj+8Cj*BTFR73$1&rbCIB7U;4_J8jm#?gKxFjrD<_8nqJS@`M
zCa{Ea6(;u5>;}7+nL`#>Y9YE&IY0N`+DDP5`%04eOsefv^vkBGR_I-Ula-Qb7Q~0X
zq<Z1QyufG!TQBwv=IzXmHhB*|ncg@y>RrGQ2NNS!H@*QP$<fB_v?4tBD=G^09h)w~
za8Hh-GiX-6I!L<EHM`;K#h@BCCt$Pi|HM~S4n1%UV)mzyK!GR1OGXf5j$Stj;*qw%
zx(y%^#EPf4co5%4Ye%$2h_KMz*qzdpd6#RGf|LDE2h%!5WMWpX7o*%zNF4G<+u9xs
z8WMKBTMUpp7@FkRUvMZ*Po<Q0!x25ujeTO9v|!d1+7cO1fpZ*E^y(;7^V>unZBqG}
z*9Z}bL^(0^CP%P#OKd+l8h3X)W(IdV=n@MWJ=--}o7Cn8JTYr{-2)?HWT>*nc3rc`
zxb0ePFirEZKGNBVHazmVrDQ5#UYdjBBy3mm^xDR~H>J*J>rxuYOMQVl`8uh;emyGk
zZTM~-ou-_8(wOT^oYsdt$oX7XENx?#pk}&+_(j*LGT55nZ^+gxBi69qY1^g`?sE6z
zJ$0Jscs3*N2b)o$`H}0Dc1&TuX7pkJs!ElQd~eFC2+9;|0~~a~Mcgr|@Ss-oJbDU@
zWXuhgX7NU$%`vA$Os|!(DIQW0#A|-&gyB51q4(x5=Le%TdAw>J3bh6=TcPZ@?Gi4n
zHz_v>ocp;Dvu;~3#yuH#+aX`7AwOp4mV9N{v<acTf20KMd1>&vE4%=aLe1)}S?c%y
zT<K8U9pmO_!J{GsEmvX@1oYMbN~e44%B!(crjnlrCB2++2=9mW8A=9D2IVUQ-Y?J0
zt(M0qcqz;-ETDG;P!_C^XMT8U?0sn(0>DKc5!JP&OF*O&(cqsQ(%}mzggU+R6hzkH
zp67dUwO4~S<Fe{1oCw2{8CH4O-NEFc$MPD=2{%ncx(c@E^d4WPTVd-REF1Pt<e1lo
zJTwU64}N_&_T~HVrApXBz9Q~wMS5`kZQ7Ikv}DZ|>lFkM4BC{~gY;lYv6-)#V23_Q
z@$<T8T+J7UdPb^<Tn4<mgy)Zcp}b47Pw(>E=Mfx7Qs^hn+S8^uHIrR7(m$t_UxQ8v
z#mjDYl=EAb!{jgn2ZOQ~5|!opi#Lw^mQFmy<N!`^4ngbQ{nFFu1`t9VSKdR_l?AUy
zcZvvy+##ainQTCbhVQg!l}3hmV~kAvLh0BkD5_=Glg>J1T|(ukJ5%M8-MZ59#`PC5
z?<jTJj8T3-Y=k<5;FlfYFbt4Zt%75aU4s3?U#U1@Ep{bXUD{n~bcU<jR^fngTu5B|
zYc&E1jz4R&Y$3Mbl4TH?aDCB;I5se5Tqs^U@l;aoE7mGyob!we)&KrYnhMey+|xbC
zA;+CkW9YY2)g<R1Au`;hq4ZoOENy%-q#_k>a0JL$RbL_NC;?l0Txz}gcgjA!HdJUU
zv<c$RT?M<EB^kmrY?TQ?U3^z#9;nbig8N48f_LE*_^=s>#Z|@xb?>{CMLnssMzdgE
z^#`ee)DjXXhq2<)k>2f9FzgNm!Q<~RT!O{j;S-vF$0dt>Qa#8P-bX(4E)n1>_o^W5
zFnbD_9_BodQyM%QxgYKxx<Y)HBk_5;+DD53Uh!G#&wfC;;E_0-NFTPcE1*sqnXuR&
zjk{uAv#}aFK!{JrB~ZfZ-0A^4Y7qqCalAgKQ&4s@U0Kv4VVnp6-@gU&O@K>85qg=Q
znnn82ze+2jPa3!}2ms;;j>+kqkmUk*qs(tvQuyGWQ747+jPf}7Z>hYZd%U#u(}|95
z80;<%9f>0V(<Rit^pN(0_2vS*s(EMB`;7J;Xs~VO<t(_f6?uS62dh>E`{{FFPt-Rb
zw#jksna<5hQHV%yc8bIs|DlpgiS;@HQF;9d?6+vM0|k$CBEqs{(GE)ygB?ih5Gum{
z(nnN`*sdgbND(!X6n4>@lEIhC_(3m;_JWkFcWIu47_0SmcZ!H#el#L#yYoSwTEW7%
z!uy5tE}|Crm*Dl3i-CiX<}MNTQ;$W2u4id!+LRfo&izt5oLNIO(2lf;mUareeA6;{
zmJ;jMsdY7NwntJ((^Q1hkCo#dap*w?@0IYNCWP9Gr%5}qJQi`99~p>IbI($30(q5T
zXfB+x+xU8Chj2PEtD2K<HLZ4|IupO3Gu8O>E@Luy?xr=`=ur=vF5&zml_07~?nv)=
zXOY@h8mmF(6pLiyY>?wZ_2Q?iMkCV4sMjOqEp1HbJpDPUFYzG*eMu0-tsjjza(jw&
z0n_%NYRtkBASQ5db(c0r`95Ttvgge+(?hSD^QA(bO{ZDp-1uCTw>C0V#btgR?r{`2
zn0Z5RgS8@IlJ*M948MaLEDqUZH_aaAEK=2yqH6@OSaMSlY5SVfq=v6S(H9??gNpo_
zS=4;wph#^cEB9pr!JM%E1UDiYPcv8%=^-OOuC0hrpWa7JDz1?l*)@dnW?P4%O_gkR
z3Z<K${}fSNMsxAFP@CL$cc|iawnROQ5_tU!wKq26E)+E|Na~jy20XTcaJ7BC?mtt>
z7de~{SF=ymX1FMdx)*6t4cikcU%SXPJX7TpVS<f63)A6<XKL1~n6`M@;u$Vh<>k}3
zkMCqC50Oc^eK{&(z3wF{p4CK$d&i#)vqp8pCu1{mdw81`0@wXInN_Hlxm{#^Ol6J;
z<Qs~6EVvO*NiQVLu-V@>@=E#J6sc$vhRw)5;|1|!E1I#jKX*yp170Qy;~<!783cJ~
zdCO@K^2W}AV&2Q>X;hn#d&kR_tUM16qFZh|q%VwoQ$Y$lo^mhK+AcJ1-CbH+`Th@R
zEv1LlhgZtI17<>qeY!;ij4~%gvs20jU!je#Th)E`jcXM0F0)CvD}uW$Cv`G<crf5*
zQF(~|HR%{6y0RJE{lx-r@5$bqJ=b>soK~22hp_pEvf~}6RstD`f8Dq>F0v=ngKO?m
z{lHn;Qi?4k$t*iHP6ncjHMU9JGhU@F=S0PR&5Ji%72|hgSy4o@`(%@S+(t$?JK-m{
zrI>bp6K5bWqaws3Dh%J|)ek{s`H{{{&qa1uZH|Yxh9Mer8&)kh=GC@c_sZX<3|}T6
zNReWwL+VTl?(*59lYlPc9A)<(9a4VB9Mv7$1Qy>L!+Vb~6M)9g$Tj`JUU9V|bT|>B
z6F^eIarP@Q6PO8MdeU5B9<`xHR5-|)haZ9MvedrMQR$`o&=gX4XW0B<7oJcw7~utC
zQZ>%I(`P1y$Y}?tNJ(OD`cOB{)1ogK2cnG%l|v4SYZo_2RTA8iVeS4Qu3g{3*`yH3
z7TJ^vWU<XTH^Qs9ddO30_}qiO9o}k{*DjL%StXnnE8k$e-0PK8NRvY1oHlK&y*m|r
zO|cTjbCTW5<CNvs$09LCw0@ZFLjQ^RQ9eQ9t||D$sN(5>Szu{BB!8O{*E4(_ih{Q;
zFlM2xa*O<J${=?K_Q&>l?!?;Md1uC_EWX-;TMR%Mms-ay(nfGZ#K%88KmH<`JPhp;
z^gp?3@?Jp?p|bQrCbcY2qcVc+EVIYkR^mS?1a3cA`11*=Qt=gsI&G4tBT7j4Cb$<J
zqIL8gT9|y(uG{LjCn>GK1<f&`(0l0aP@)@?TR9RTccyUrP6*xZ3DU-}lbi;x4}DCS
z)K8)J2)eE{I2e*O6GCmrVihxTpGfX5@wDQuFS&=w$;qM6yO#GBArG8`3-J#gmdeB{
zFs-^7lUf(OR%&a0)Q;RI?vmFCQK4zw?B>|(jNJZmk2YkouDZ>N2|p+%sqnb?b;`>Q
zaDO=x*Z64K{lZ@@=a6g%eS55vd85rjVcqMMQmvIg0)OP%V{MLsV59AdI&8=oarelk
z&?i=n-6Etb3i=u%t;>($&$T-n>JnidRiR?!><8+-&){1ZT;J<hZcMvv)M4_siJc+u
ze)@XwtB>|K|4_AEs$8a36VniVS~87Pp_hVW(f-;gR3?>Lv_W2uLN7W!Szqhrmr5^1
z>!Vqc-6qY{kKs=iM+K?~p|7PA^a7Qz;lL{=nrRWg*d^%WuA23RlWe6Py$IW86#b{m
z)X27QR)VhF=G&}&W~%aWEd`)~v~-+5YG>|jh4;TRa%Z0<0DgAEE0o3>5<-v2jkpP6
z`?lrEUQ+G`?l|Z-?MM*!@5QpkvTX}kKF7I;Q2au>%qQ>liU!Pf;rffil{>xrK$ax9
zad*`Gb18eTA^`A3wYvfU#yINyq2{&5o&!^wtmVF<x?;Bn&Cy=*=8=@LAIE-MZC2q4
z5%4=JRZy%>Xl_?-<Sn9fdO{Aur|P%N<uU<AqMWBm!rrtSip)upAdd@+$|_-%jZ^N`
zeCkTs_b$!^;g9!njuE32-oILfrgsTX$HkLxpOtHRtH^DwG|f=9lxsxHY?u0L-=K8l
zBG8e(hj4Vvq0o-pJu;!&4;cm@LdABhX@}-E)vZk0Ng38_#I<oHO!(b#r1E7uxNVDP
z+t2rN?g$_y1XExM6I=ZJORXm3*php-G}`8A4Bpv;AI(^*g)Dw^q!|}mW?DUY9g}z?
z_|ngWh}C?wiYHy}w{*DH!$zX>dX_6T?Qk0{nVe=iH`}u*+Z6sv{Yd5FG0@p->F9Nc
zUrcle!bjJrI8Y9_pX9X_JC4ngy(XWV6w3IFD^@?DGp_VJW9<2mv<zWYEgR?%p4mtz
z2Q?VIB4}4Dx<?o(;UOO=?vkSKB~kF@IWk91el#w{&2Li11Bm<v9Vo}NGjd0&oy)w|
z>>!>wY!}3h5_`v5)nJV;k#9dMx9J3H1u$w@60TF}3+7C}4c@hf5T5rsLI@vR1!IBy
zUmd;fg}OQnalvYQdazxjTHP5)hyLww!m(GaR6P-x3AL_6>fJTH`hH?eiiMDJv6t^x
z%Km&(XkNHZy8|D%MHBBx#MZbfBDP3)Hzvr>I7TXYkr~TIDw?HqOC7Af;^rbQ506Um
zJ$2CBH$Nu@;kaYdx#FXuNEX{Ar8m^UqHhn5OWC2vB`6IKAYBRDbGsCtl|<^x_an_J
zO|YX<c-wlRl(9G4;6-r<YY))rZfNB3)COLG$T&01^lAHw?2JNq)rrc0D1mkul`fuY
zFNOq8ttAnY!hRv<q+Gv@EYFo%+`7<o2$vr@Zj#+l2aT_RVahzrxZv)4vPx)I^zacX
z&-EC4`t&cZ4(I79g6Bh9a?7Yi7+laLjI!k2G^oM0XvPHn*IF%wHo9X%ieKI>)IA!r
z$HF;MEtwW6en(HxTJCD~LNc~**ZV*_mZUbCHDp)e31c$mPbS+zW3~&;5A<mRY2E$t
z9r4XhSZ7Rdcjg<{DU_`?6z_vWDnCpW6XV&zQJ8%{bYYNU)%GZ!-nd3`%x87(1bNGu
zrEPH1NHBq+@pxw{+&-^dIcVwDR@ePW6&2v1_R<t!c1qp7O4?E;?e*&Cy`&(Rh^xa^
z1I<!@vC{GV(I-l3m!hvJO4c5jqKzuEJg(*G!t4^f#~nWHQuPYIr*E-M**4%(`P;+?
z6G?1o_%^ds5MQ!M`^;_?gN>@4Z@l{w-AQ=~ydH3krA6p1tSQ~ZZF65!bc1T`f_}qh
zt=3oWt>WXBWJgy9$@dZNAkb9-2+NuKwi8ccs!tpy*b=$76}&}({rDG#v_C~fze~ow
zDgyWmMP6h)WUyU6E|Pw7i%1+*k2f6MTX-7O3DrKNW9^`o)9e%qlUudzG0)8UjXuoA
z5$B|*#zPp#KpTxxI(?f`wC8#Q?p)6c!?oliEu(^em)7%W1y22KCZ*(%)0A>tR%jNg
z3v%Aj*+?B>q2_iW^Z_O4S+Zm$WUZE>ztlnL!5ea8PPYP`C4ZYZ`BGB%Ow_LGqk{UT
zv$QR=HGuFvxkKMB+aby|qnYYsl8sQ7pf0If8VzZ{K+icVcU(wB-+IT05RHn|{gu*S
z(e)T0R$&0H(u5#B`j*{eS}B7qJ(YZ`t^Ydt8$A(?F~%qKD9cg1;Qm_c*d%MK-FNSi
z^@z8A>)ji3<iTB#I(2bhSif#U$X)t2X%f$0b<8H;kNCaWDX7Q3U8~S~q2HPE(ht$=
z$1Xv->RqZbx>aW5J=Env-V%woxK$}-{wmj8285nGvY6x#-%6Vmq5U1@;bmY~XptG0
zk{6yWQg{r`h2nA+v<SlC?@l1D!Z%3<5Mb(%qOD03T9@$-c~nXkzgOFAX90iDAsMN&
z69J_wxLU23XB4Q&@6C}Exw}^8f#2-<J<F#mhx0zU#a~5WsGj@GPTAO6VPyhp7g4{Y
zB4?Sq|E^TPdPXYinRQsVq_Vbws-41ZzjH)Uv8g=L27m1AJFmNU(?}8TnnwDNL$pPx
zbZu9)b8Kj}&s$-;!C$h#T0y?tsfob0Tzj%~mEN`IDP5jv+v9ZoM;J2rnvR5Fly;`S
zShX;pM}vo&BKSu2Bcmk3yW_%cQrU7AEcJ$TnM+$Ld%F8@0)+KitIqqd>KE>8(~gVZ
z5s#&44Sc>%P|MS(f;6Ioc>Bt%DuREf*7NNl;uxyDeTMHmAsG9gFGAJ9WFKPCv<TWs
zsp!4K_#%0i6umo%0xc8}w=>(NX!1hUM8pyCBJddJEu*4-`XjE}u}Nf;3NlEgOj4Q%
zr4LU`3uyK5NX_gNBDEb#EKxCP`(7e`oH1lWiK9}z?PCeu0Rtb(D6!~T{P&M*YwN^=
z>@YMJTeQO1G=;NMj!rIqU}iN}OxgvlLN9Hyar!1)o^afFLJM-F)(?f|`_P$|kTIXI
z(w;AWo9vDD0T*YJ(VcWf<daonQgNS8X|q|7AW(;wIJ8CuH_wy3R^rfs4|(~Hqs{KA
z`QZV4KdCy{XIg~Kj~%<Zhq%-&YB>{vKB?8BcB1ouk8gVcdb{ymgYwXZRW&%zVu(uS
zq0dO8W8@H?ONp50w+Qe#E{q;wGh8kNJj`b;?Y%D9Lmp@x$MDk335`<~H4C5Leoi}*
zzx;&|h1-yjVIE)1qZ{BN;-;uNdDg=ZZi+^xh3sx<gY-}^lOjsxG8M^7z!nu1AlPC=
z1(3(qGu&fquXdhMtHT9+;Mwwc;TKZX?Q7KVF}rmGc|6Y}a}@0FyISI0r0sQir|GJW
zOO>H73d3|3#}$VMI6YlO@V0(gmBE(3+IJ6@2>x_1R1;);;AIxqG4<s+VI_8y$=4ZP
z8a$rhkJF6`;|o;)j}mE_lXy%JfAm$Am=+O8cbq#{%T)M0GZ0Va27kcqxePHIGcM$o
zd`-zxT#)DvxMPxdrTL~^urK+#)=JDmz7pKo!;y}<!|W97Uwl(*#g)$L4IcJaYzRGQ
zQQU2%5P8#%vl2<#u;O)g_viU5G%FE(6PBO2QdoQOupZ;+!0eQgZ(Oay#aSi0HI^dI
zh3hrJ872#Ud(@n=*QPzkkl7{NZoDSS)$h(ZlBF-tz0?SgV*Ws?S2HeE^WRbua<ruJ
zewz%T&rOr`i9zmPJ#q6?@!s<2{FcLs@KL5B1aH`-gl$FdtjeAt$Tr1$W`CODDfd;&
z704>2Hh)J+!lm-xtZ)Z}^(CY|05{x>3XS8gRa$s%!1qGJ&y^Mj%Nz0iytHH8Wb^IL
z!;<e3vhP*$^$xJm6GLXZVBP**6^1pj+Mo2;Q{nZwAHGw<32eB|QW7~hz3OO=95NF^
z`Sk0RLxUlQ4@wkEaJ&j;RM0=H)k3<6St1>Ulzi+4CCui5oFOu(;#Tfx!-)Lzeot2(
zeIhC=6kC2Elw*{96*}Oq7{z;=;(G+r0e3yd%yuc>?<N(vfhKsC)0!<(<6&1bZfH^0
z!}Bln+Fmd}vOM>_+3~i?Q}K2zF$d+h=6i8bz_bYRH*Rs23Y>8@h>S(o*kWk_pGzFp
z%wuU<#x3|hOma32@GhZT{e^PiYY^K5cLV7_$<aX6-FYB+yxk`l;_l1dC8wB>0}%Kr
zF6L3F*o3BVQ9>AB()U**F%{@nWgV8-bTFR-GHWqSKEaHhSfkJfl)5yC$xcHZblnDC
z1R@=xg0;UCRn+yl;jQ5OQwK_y;O~38)bpKREKxqC0>7VWk>cOqp_*n7J#Z1AL2jT^
zLoA4twS;{0JR{!ejo>xaq)=Zpp<H4r2xC+-Tphm#qk&>Uc9PrBYubhQTa-!E_-(j_
z$GCgM;MTL`4u(i0c)wkUeeAa?x&4H6!FwqQ`J#NiI*@UO!dpk+i=t*s=so;9p*uw-
zh+^)ts7K4+rutQIP)5)AQK>_aKR$J(JOX|5&6prgYK2gKLTNKv^oKvFPNuB_x>RT;
zrQX7Owe2{h2+pPK357qh@DiX|6y3$W6po0r3xRX)iwWXa@aX+KIs8Z?9U;732;QuO
zvxqbd(Xy-eX1q*c#SM@Q5dt$V^$x#Z1gnFNy$5}uzC+Mn^FTv%d!wseklOzoHX4&$
zaDY5bahc!-O=_S7zodi%q0#TE^qo??|AQfaj4SVzH)8K8^-~0|MX0R(t5UP$YmFOU
zb>}-WMiGigAz`n?D*H^AP<!Ful&V;$H;mNAF`Wu!2sABH_1B(6d}W-DWC+FyflL1G
zWU++2N0Q=+N7hd-s}0Fx2eQ%Z6nY2$L+RR?+AqR%=E?)bMf8_(M1Lh!Z<lHVTHQ10
z?#CEo9u+B^RHQ^yJ;`G!)n*o2Yv#iup=W`QmLr-h@Vm8~Qcm#d5@fB0!-L$g_TIP-
zJ}6#py6Pg~DT4%uizbEWJN_xm<98_FukvD`@B0!Y=9}$O_g9aris>>5h8nUBsw~Jx
zMGy==J&d=l04(ZZ5Vyd;5QFrOBoem>*`ZeH=$;-gjKOEIN`Mj7Ao+oQ@#6(fzHE5G
zW~LJoDrAqR#W_K~{e^zY5Hul;{$dlZP}4^zW8N;UKCHlG9~Am=k-_YgiZ99t0WqGS
zbIGIfDajjkE6GF|09u6DhqF<l-s)pw`es>2VNK_{0Sf+^F`@9@rz<7t5<id8xU@Hg
zJb6zKu@XzNT*E~LBDq~i-J&Et@`lcBNG6UQqZFBE2-g4w`_z0D?^l=8w*(ZSEd>#8
z&=lO2EXEcTBcR`CQRTVXK)zHucAEE?dkbZxUSs<Wpz{7{=V`fv$M@pC&kSJQ?xc};
zB%Q&-wnLAaw}z2xfoxilYk`N5t@w@f6w7iJU+rbX)-ff<Hq%)v?OuV=k`jrK_8(m?
ztt#V9yKVdt&+|$^Js%D9`VZ^jaHvCS%-dUQ#)1LSHUxCwg?DzCHmUbBtslkr#-8GP
zB8m@ho+iBssXa1NrJ&oL=m6}6+!Vx{qw_+5y&8<ok;j>}kg6f4cmU!rJ7Bxywopa9
z2L~2rGY7&Ad_XXl>4wl=DMm(=2lleYQL%fV)gk0C>YZ?>WOs;u{mpVzpYHvrJYFM8
z+3QqR_KF!5J=~}Is5{)X3chMDxbOZC)nPGqU$`z2Ii;+a?NayV{gnm`(CXz#eZ7#F
z($ON?_a&Qy$PPIfb{}uXh30EtDzy2MgsR0Wfsd*BXrgHs%*j`%G<^LZo#cXK@la%e
zHrEtE;eK(wYbWtw%43AI=?=aGxwgu3{i~F9Uw#k~Dd-~1!8=kaZl$ab)|gx<9`1-_
z$)H>nD8xMC3QJlligiLt`iORqN~gbkbWP1!9fdn8+)_uKy*hyW^Q07KMh_No(E}kI
z(<P03)f{aspH|@_nY?tcha2nsm|~|QU?DLBA5P(17{N<e=gKHa-`}!}qhsba5#To}
zh?rJ#?%*w^Rn4RzKl5Ofo>hKVkhQbe$8QLbv{TJ3Q|#lw%KcH0ojs7pGr*&6`dbJg
z05W?z6u#m1Sinv!Vl?RVVjs^-xKA1M)Ph-u5iQJd4p`tx4l|mw3cCWVcPoH&r?=&7
zA9@i<66o4%Qc*+X<TQ(FhE+xNqN0Vtau1AS6FD}cf_&W}s#orHe`Fn-PVgCJz7`z3
zBXWU<r1Qkv50Y(M$oC&AY+_^sLm}HH$tr^SF;}JD3`A|A5WzMxCb&O$b?SL#NgWau
z_7$b>-HTNtI<M$Uu1suRiM0jmJ1h*NbB15x8=Z6u<Jusmm`P#!&})==PxmkqJHUYO
z5a!qKk@$41RdMeX32eX~cRgfeXZd!?3;gdhtNgSf?em>#80NKBf<MV$|7uy)kkV{E
zQ3;wIi;Sfm%rd`fcaNDAMu+{EHeHoA;GT!YSz6_=s-N**(GA0pE0~wXKnHMHy9d{f
zl#a$3!Ya~FB&V9_LpA2@k>um5rd<R(aES`YY7O!r$GW8=>d-Y4ucu-nc!gjNWSj9`
zq1-YCfBu9IZ3H`TL#|D@pQKXA?5R^pO0{E32&9@Wsc^bhw3zd{hs#67Ubn4QKBIzm
znWCriNvmzy?UZ^qY5kaBlxdvA8kh3k*Navougt+T@eY(T45(WA%1osqwa-&3z5{2^
zt@3lLHPya+l~OR#o3}B+yQ5wEl6{Pm{1Cy-Ure>HQ>(HUYS_|}Hd5&AGZRAT38k3r
zMt#N2a#oFuCohv`cn>2U;NbUMW~mi$<}y`}odtjO;9l&onx_Sq9I=P4nHIrZyu4lw
z(Oqky%xh~8rFv=?>`Ps(K|IBzZ1lPUQqmF{HW?qyvNyj0%Q~3XI}5W@$hECdVImLq
z>b}-1l)1WA+jO{8w?2x${Nvf#_ir1>S2Lr6e(y@H#*3Q2>r<Z$J;7PZBjS)nW>V^3
zbA-_G?AU)byQJX#M=K)^sazfSu0y1=_S}hLNSPwr^NL*Gk#edd&aL~+2mHYs%~QBS
zM^3LdXZV`{>-}#rC7*XX!zs)BJ4r7!4g!$0jXpNH8UHfdMeMe<Dn9P*jO6)l1y-EU
zL8&M(++l6ZZ&Pr%%j&0_Gg<(rSf?gR9{}nuJF8|$%4}}s64F#h?g@FinW-q|diSmL
z3~@}{>2U3n?`U@Bhu2Z+5H@UW+yAVSHfGhZldmplqQ%QJGa<Mq9HVvUe!04DSwexR
zfeVD>R|IKx!u#o5hYy6b_a9q_w^fi?uY@lgbP4_O<5mAP9A*{E@*yX5!FZ5t-jzu@
zTx7j>nuU+A3P&RQ2w1S;7CSIrn&TwPec&+6Xs<<53m&km<@i$vKsH#yjmL=*6Mq52
z63$a&S87rOTj=PQ8bf-w>OUXdi)S)fUpAg2>$uGPGjp>9;x&jlygax$e>6U(OCcXs
z-^)(W?gGCfN=I=k(Q)pGjM5!PJI?v8ij!cn4!uQ8T7-DXF{x5V?lF0IBSgL;WWV(k
zk;et3wbtH<`Yxe*%}Hu#iKqc}QJ^Zf?gsWN-}^@He0o!X3P=UsT{F9c=p9Pjp5>jd
zkN4#X?+ow7A+BwQi*qHVAJQCBC<tFwuurDVgz&iM&Ds#j&#qP)c^$1^71lyGQM5vW
z8d6vy5$L2)I%<Pbbn~eO?9!5*p*GZYr5Y=K>fJ2=O)-kn=W#&KGec63RscLQ+H5+6
z`OPXsHb!3_KAm&lUUsZNcA0V1aH$5`gAF3srRmYL<3rnVVYOekwww2L{$|-!BG|`R
z{z7?HWt!=}OpR9nz4_v1D^p9(eWAQoCLw3L0KV@R2uXn?Jhik^-RY$3ZKFC}Ii~`I
zMrwE@+q7fZxiVu=O}K4%F~cg@=V%L$P`6QTGa+;j?$y?FrQqr=FUvl(N}r9}4R&<$
zPB*O)AZiy@cRH3f^Y(yy7+}YZ?xHat^8Uf^5h4wtTMuP3A;jkONjqY_maM{^-zMm9
zI9r?FM_;PJq<-~j&PUDQcpQ*jr}@BzRf4WGHwJNby5qsR*TV6j&~=O!-WC+{_pK%Z
z00&3@5CUc$N`g!VAkqy$7oP5HEyH2EvD2M4Guz}NyO#zqd($@r%$m=Xu86`oj<YKY
z;{fxG0j!37H-x|kiuF}S2B2B<4<YDn5h!nE0mb);16&SH;RD4U#73qoDLzxYU2HqE
ziD=@peowqv*3V6|7I1ZZ&(FbpC&+?}Z~OJVPb!cIEHA$4*P~Q?&qxh?rP$T5%^N$z
zg)#8Jony0?p5X<vU#dC7jmu2$tObin*ee2<wVS~ro`a!e^vv9f6GbW#**+~p!G%Eq
zN#+W6`hu8&`wgPb)--NrEtFYTKL8Zle9}E*`xeM_$PoCj4uve1PFe~zB}}ra1k%lz
zRJmjNRfX$Ol%vK>NWE9STL*7~wQkkuNNyY5H|A?+ZBpSPSCQsHwW4~@EyB6LHGfP<
z%sp3U0z2vvepi3jz8viER?1(2#T2_fcgXu~H^y~_&kS)&SDJ`t<kkvSL;zJ{n=ror
z11bQArGsZrb(KQT6nsZc3W1k?u#PspsrcYuB$iMr4;TBl9f?fM%jpXzrbQ^-=P1@F
zk%JnVZw@`(!6%lH`A#r@@KJ3H?bc!0@YVHYX$ByB-w&R81gPQb2#{wYc<2!zPet&}
zBS1dwLO41C<hcj|=?IXgQv{?VKpwQ%@<o6gx`v}40pbE6ngl;T3gzhtE`AhhXV*BC
zV_oerR35XdV?a56jS}S(*!3~YL#>0Lm|2Q6loO^mdoIpK=^Yq8`(!_$Y+rYeOP4*q
zL%S}1L>khAYsW!gAHR`P-DWpgdh-A--Afvzr@SAt)bIS1atYqge?E9DZ@<t9HRDt2
z>N=9;kmf@j%Q;<e4}l~L0#C(KKYLp<a=*~Q%CF!sGMnAvDZ+=rM}(C?sZzuiXF`O1
z*{4Nl-!y(Od$4Jdl2@c-kVtJ(^!(3i%Lxi8f^T@nHI5GA2Wn|Y9vsK(t&GS_Q#CC@
zc;8Eu0h}(-@5p^)yUbDpVICIW2yJJJ)ZC^NA}ENJ;elS+j7sUI&nq7U6!|^@_06w?
zkJH)PH1uJ)%lERU%LTB)r3i<OP5EUXkd=_X35fBh{vT4elKAbp)(;9sZP;cwU++L{
zhEsMnk@0;UX_U>8Fe*(cd{LXkJ>w6!eVx8yekC4>b#gmQMJkMI#h5_89=>f`LqG=K
z9Uui5tuSM!a?}w5S$!&t#62QZ4~<*4MafZaBa_WS{SC^+%Tp@bCfKg%5QIrZtlJI<
zaCCWiP07|%{Ow<sX4I|co36Nb$LolZWa~Bxy!*HG!2~Cz>IGj-XPZqQ^iey&awsPb
zemPWkV+gGHdh3{QxYKdMNu|#R=k-Z7FeHcZa@R}<@{7I}h{rEUns(?j5?>P)?Pbsw
zK|fxrc^t`m2vpN0rMD|qhT{3KngN%?u5KrAva(LLKx9`E0{eYkr1b0pJloGLg7X)}
z)mx5!-j(6%$7U+Iqv+cx<{OsdZSogSQT3gTZ-lQdN!Fa)QtQaeMeYWip_)}tnwxSu
zq|WoNa6L1O?(CNth8{4IDre+Y3dBoc$<#QhS&LMEpOQ(4z;D$@(}>g%%rV=g;v?U5
za)iU$1)owZ6IU7Rw!mCz>mGlV(tsT_?a=Jb*+G2QliQ-vAKV_~dsfXZr0Iu%?niuk
z>DxAzQI{}y_IHF)hIf&es@=T4)jD)=lpF{VCW)bjp>YUBNyzLX?r?!9P`KR=%EGq0
zH9F%Sak!9Aw85_Pv@zOXpHo2_Jlk!+e1o}bdAV(th7N0kV@QML!U8<;vf8*<kq~V2
zzOnbURr@g-6(ob<*L`M82yFSTs+SwSKDR)=SY-DfxM6(#UUn7b#~wW5-A9dV*r#cS
zKF0I>l}ZYK&iFklY=3v1vgiE=F1ZLhe&nZAvM#>lKjRUj%$cwe>n~D91tI#!>m6}<
z!5MrV$2Z4uAy-rLWlx_af0D;c3a|ZdP@eo<fc8M2BE#yKt#vpQtU*s+fDQZ=X44{k
zpLL`1cRJhPl71jsgAVLUXBbncHIrr`_r9B=WHFSU2tNPILlc`IRV7~e0|Of%H>_}h
zMbcEG0Gl8+&<vTi{hSyIFuGmA@IVovIsh>`y>~_pz{No|N?x^B`w#Y79-SQX0Ooo(
z;<6=N2nu{QH`!fz$6k66!hye;xpVHdkeEVjrh3uC_FEGAK%Q6~2fSrqL0$WOGXW1C
zRr8tFdOzLpFbGB+H*ml;5SJM?q8UzTo@{+I*o)lVcgjc&DVI5y5zZV%-g|$na&u4$
zdm1NU4~x=~`>8HV2p^Tm?Qj!cuSJ=WJAT*&AWl)I2jAJyioBtinY(0z#fl5n50@TK
zctnza{K84p+t)qJNkrcs?7k?S9TN2>Q|8fdvbN-!!1s`0F3LHhZMx|Z+ob?lXTB?^
zAW8Y&w8Q0l2SdArxrR5030pn$-p>5ewxn17#$Hz;TH};8!znAS9GgYbRD{NHw~KaS
zQR->Ys!_(Bn&}c6H|-HEn`3@lXdHXTZplSYG;4){qUn<QKdeKC%p3z{M$TEf^nrhW
z;5A3#B-;<t;&GvR@UKKlM2PjEDA?xMlYlNCVyhMG>-xHf1N03yE0@|_*sH-1a9+OR
zd1-sg6<p-!+aDs{kAACS!kJ(>Vb_Q-YhC&(YwKW{r_>k}s-!UxK<SK)`wFLoJjM}Q
zc5^BUg%IM)jyypvA%vJclmsQ}I|HEF9l$r9ksJDu?2$cF3TUI_2681$u#R}Pf7yxT
zGh4JL5XI5W7xf@jOFMO`mPbmsV>&KM`l~97Jp>KXc+W#2Ug0bp>D&Cy>iOA|s&Ba;
zORfCU8SXZXJje;#ZG-X%uIt%p#w}0V&-BX^WdZ>$MASc85!FyuB}uA%<C(el+_jhW
zrUZ-^!obJMnJD0BA?7kI$nqTHXXBuK#X-tOWtyc~FVyCF6ucXybe!~%2XBH}1YtrE
z6C3_QnM7{d@jboz*e`c4^f8eqT^m5=yN%YMmEesJih`rFmajx>X(x>V`bZx>og(<>
z{!Kf^IxkQSRw!q^Z0k^o1Mp%Qcmp+i0~F5))IZS6jCe;7f;6Jzfa(o)<<z<L!n(Xz
z$nGuzUZH||tllyvp<$Z`5U2Bku<ak(qOE!ghwX}QfC9taN{<4=w)g08j<jEI<*fF1
zb$S%m;bG!b=+&F7?c8_E=*5*eo@(`S8^#iQLM<+ZTzV_98<E!CudS>@`G#5IF9_w?
zQ&3)LCWYdLht-nOWxgjydGQpK7nv@h_>(CpXLEtfFvJ_p6r>L}6GC$BKN|}@p^7JU
zfb?x?q<I(Ivu!v(jIqnfCA);|L64|S*}FvOyx;`Aru{$Q`aj+)d@FK>&p_FrzpLF?
zO^Ew2B2aC@_@^pBoG{;1oZ-wH;Rv47z1`987RT6|mGCILMw<!YG5)AF)(#602;N56
zQ4v*u8vykcz;Xo{5=8+sr;-eTy1Y?|PW_ik#!h&U@1UCpa8%N69={PuMSJEvF|@i;
zo%Zlvyl4daq74p7<BVfeq#1ZZrNZ$T8Q1@z?!5!!ysEt6$6;nMePCHIu&~2q<H!cY
z$URiW-N8-<+er)wv1DmvO{_A}NG_?$(n1TO2QaKCflybwl!TUu9=doTBy_=2Lf6tZ
zzyjYn=l;&Q_nGIJ(MUGmzHk1BJomZxcgj8Y+;ck}sj*#<-1CaXh3<wEbrC7)m_m1B
zHQ=w}%2*8qV;VETU<;wuN^s3^dXrXZo4Fwx)u2&SA@9y;v*>6^W?_wDooXK)oG!mA
zb$^AY*S<B1s06C_UIOYg2};8fe`&RA0)eSX+e<Sv0_E23CckpPd(kN>6=u<b2@IL9
z@!L%kl<Qh~jD0p8M`;2S_GXk4&xwicYIK%(0Hj_<P|}L?lsN2gt_$d^vP#8jDQL~&
zKIU;{98BsCRv+}Khw-G{vk9G`xAX6mZeoKG;c4lt%xL=>R~zs%c^;p-dpa3Ju}cZi
zA5ao92|GVza*~yf1XQAF!2Ia$;5ZJ4X^YroDyA*c0avez<^XkYX>&-8oK<XpQp1bQ
z1Gu3vnq#X1?87n8WX-5Y@epbhL&Gw_m<GTD?x9swL%8xxZJK06E!H}(_sA(}7mwzF
zxnHq~3v34_EAJT?IeVCntW@PnG`bTc>O#J^X#Ok@XMD`9ugz)8@IuL9#ctlpKvNr2
zDE=pdai<5=xA<b+wD0(E*=?DvMbSN-3O3=dJ~Q?PD8iS+4qur!E+O};@1qJ##L39c
z&3b#`cR<U~USLWn6?7|b{V1TG9M8_svjDVNBbo%QzZgya2#=(AjmvjL(S5<}gO%x_
zzEL`kL><=n<rYBDrh7`bCP;9@-5{ZFmECSnS!rjQ8eE1~JSd6wrfGF$sy&<N+C7;z
zqFr8@k&GLQ0RwxnXxE3DamFdGA2;n&<X--x>x#2Z-X+JA!fvIp7+qdb+7#s=+<7Ww
zqx0KqUg0?L8f#n0Fe}=5vvt&k@>7PxV>2y8&9%rC={p$@!_C#n;P_R9Ul|fjtfj3V
zB*kJV8D`F*Z2v=0b&aIbSvb#5wa1+}sG{ibKWXh#x&$j%_-z+%$}gOeu+tDUGPi23
z+Q2B5h<S)00x=8iGK-hXnw8CLa-X`*J(7C;Br7fOun|$(vck$yS93HkJ5r&2&6Jq8
zc?7B%*+<i6LU~p6urAqjqbii};JoUSYuC84iE1@Uk6{pb6uojD2<?^P5OgYn0>E*U
z{kwwJi7BkVfx<%dgp)a@3O}8b<)_A-%9M#L)8(Wz^{{C2JqLD<C|mJ5Yruk13;J@U
zmQSe+rdF%cDRi2C9tWXE|Fh~rc4+&fK`k+0CX(|eVsnDp(fVqr%G9@O97PcRq%u%X
z@PN}~a1bWc!aR10GpLQUz;zzYfbvI9OSMP|p#tg{J*Dn-;irnH0rQjP3dcd5zFxrI
zLz>dZJ^<IszChZMo=GC(!L{tc!`(EiC;d&)25nio_lX=n4b+pN5bxxq!&fwJh~~h?
z<)^2zqqsgs&w`<%?a}rXCvnDLcUAN@4#dA}Q)HTnrH>@-%U_X^zD6SmH35yaa<(4f
zu{oA-Z(ij9IPfR{)9wq|noQ$3>)dcMo+gbn&Tu!}lS;xtoU?M$Z*Uia_^nc*`cIBY
z7YOVtY|7&|t%%6^DXtbje#>yO2u{g<upJlRV%nq`Rl#@d(aJx~r%EAR*pp7oPZN8L
zTBUEaclgK<@4y|2#sTpDb_F`p?=~ES(&+Fz7?O&O1w(XqZi-mgSNQu^Iw@l(U_AqJ
zSaUa-50Re++5dPf$TwtLN|osF@K&1XjHZ$QNKx6QJ>eq%hyDvjUu7%NBg=Kvx5%UD
z<0$+;s}+RK`Aer6u9j7L4sEW`*(0iTG7jC9nQ`<;ArKZf-Ub)f(jE!nDd;hId`?_;
z6?UqM%6uYES2?pOcgvGWNc5g79C?*fYn?1I>$`&_SmUJVU#rr{EA>Lo`u2pC#I`}n
z{0SAH#k8M8i^`E7u~7}JW+B>47j+Ds>2{=V9P6VO=AtUtIc=S?h3G1{emKqqSAsBM
zO`6munxsJ*^j1f5H=Ws`V=W+A1gU>hl39lICxGh;Zygw;cb}$^`LqqnXYVlY-Dg&U
zizO3g##OrHxLKVA7n<UUwXGBzCMH+VIZ^SPMG$+t62%ObnFr=j)anvoQu%wksRN^J
zz;r*w6oB6GIF-UF(;o<@Yokb75-OPZaQ6oH7jA}yWqII0H(p<taW1y%-hT+p0%GP<
z95}=bIpat-ngUCGj|Xe>Q&ColjIL{;Yiw(cFm*k`M^pvTFE%1xzsJg^1ym;q)t|{H
zyjHZkT^%#P{qYl2I6gK1MpYot11aP%bXo^5HnMG)c6aa%2DB9)h}}<AWS8F1oY_Z`
z&?9v72#Wkti+UN%o9>}YkE1zcxZ_En!Rw>a;<^gmcQ{XwxY0Y?%)xHk<XD&mV)@BH
zu47@_rp<g{tBTK`YnW{h-?Jc6%^=UCIvYW9UV$wl%L^K3JyI@L9qt4&{j7Or0iHvi
zr<~b<hv7{WAJMhUC1lvM5gB>8mbd;|H|>HoAMDpFXxMSr1%PFn8&TXsZ7h$kmo?0_
zhXz``(Kx>UzG1$SyR9~gwm5o+@pnmrzmmNDgwKVoDyLW&J<rs<cXRzw+F=8<1G<ER
z@r%GcbDQE*$v}(RP5Gsg1fO)--zI9TQ3(+5P^h$=^1#*<a=d=K5+z6J&(Eio+bCVe
zBnn)^-7@{R<b>N3PpXN-i6#{DEMV8MA=kptObI@Jxj{C*Q$QxWW|85>vz1o~b!M;d
z*UI;~U7>TaBw6*K6L9)66Fo&NM|^1UK1h-SK9jK|Io>lBOOhq~=~$91*3ZO}<X{h-
zLI~jHSPxAv1xfBu53m1!8;*<Em(`ewc$x@66HsA3k$~d;Fl`NYma&@@JCau^(pgFA
zQng@RrLeZK4`~{DzP)7nmaTonoo)rlxcyu_)pk|koUx4SgyRO!8xQ1O2qL?*@TgZK
zlf(;Y-O53_64~yOm<8=u9a0{Sbl2Pw3L^T(%WSxpktg%`hB``rQ;_cNo}k1xUuL8K
zj1a&i6CJ-rmrZ-B4;|<pu_gH6^lN-u%}wDK*=R#Yb`6EDCgiaukqnRPhEtW{NnQ6;
zdjL2vQlg1xDorPJ4O8Ym>4dH&@GOTi8XnW7J2^MeQ7ip)R{*S^us0~2Yjsl=M3WBX
z+SI6%c^k8GQ?Snks=$mXwFTYnlMxY-PWxSS(uywcA_!_B+LL7Z=z>m4q9b}b)kUwb
zkvu3%Eyv1A6Q@HvmQkfZUTRW0d63!fUM?nNI;f{F6{nkMwWmn_QME}Idl$J?_`Z#<
z5S5f*M#Xgi{=k+Efr0@?wTFXjLTWRv^!m1<O<U3&qHhr!!WKcCPe-;NG;1f)Xj<dA
z4s$5nlOt&}kpcQ9OuHq|967jy51>t=#audwmXqA<D4Z@e)l!FF?xo_p++=<*fv3mU
zmRZB+3x%=WKL~j#k*7RFe%&YPnX^{CiENaX(CBn@G!E|WR@L_1J#=i(vB3kw1GJbb
zL)_N~joCHX$)FvOIg~cZ5$UPR3QO*UBPB+}Y_BT(QT>gpnkC28TIj$mwNhMZ>7SHv
zTdhcfpynkeUS{gn8V%~*CVO@G>ZKMkbRR3lSiJ|1ML7t%X+#AMd=dF`HA&YXSjA)%
z;T(=N6yh-$uVb{X&7{%hE31R31P0!tjMPo#(@{F25Ni>f5U8cTL3o*s3jKrT072o@
znpz@NW32I=1WFxI5%9N-sb<+#P*da8JyIeC1@HeM<_b=f0W?k0N8Vbd7oXcV6P*Po
z-#V-uNo`)|H-R}H5^NbT2ND~>VoO%ixDFaAka*b<)p5KNPDY(n-SAbkb=5l;Oqe7|
z)%u5zxZZveG(K}o#d3WtX(M==&-yz`?y|Py`v^+*^M>(hZf97*rG_#Gyj8Z2Q?bA?
z*|d6c)|Z|#A0DIjUG8`DcQfGj1(z$=2dg#r_9I~iM`HO+1-ibTZL;L2Q(ab_T?{rZ
z-~)F@agkyb;EluD#xOlR$Txz4pEq5ld|AXomzwFsQsVM+O3>H9tXq|>>%j%4w7}#C
z9-ag7NaTa}T9h>f+N-Zt9%Rcs#dPM5Qaq~K-jd@(XjgSK&KWAl$aDgJ<e8p~Xj!eT
z&IQ@Ur}mw>pc1*l!(W?mv8Gvo=J7l*e?;GUlaXi~g#V%pa5qLeQna9~by3{AM9*>z
ze;<FB@btGckQ<Z{Y|&MPB_}97c-zYTe38|PcI=Ru1MC~04ZYB2l;BuhlQmvLqD3ru
zT{M~k#)Z#mj&*(6DbRC;-4S$oRc$BFCUybg^@^05_1qyhjzp&Kq-Bm>9X5*`_j*1U
z%=GalZ`S5EAI%@2IZ{sA?k$kcx^hZz>7H)z4b~{B88*F!?9vaS2e5^!)gN*xUOH1M
zyD+}XD+g9DQkLWOV{69&I3~@K;J8Rl?>OrM<ab`A+EB?m6Osofg;a9CoQ)kF3sA+i
z303Gp&J<O!y|OB1!Dsumspe&>2*9C=X5hGytq9OJzocFn3pImS`!S|IqixluO!btH
zmsq;3(e8sgDe{^E9}j-13d;vBwN7RIhYT`pB1cg8e{`dXEBm%|3^D1n-5bhBG=+jA
zFH2>jIY9N$!BY2Ve>9H5H@sXm%lKTOB)~wy3^!dqUA6aGVsoHHb$VH4h^~B?0_qoE
ztLUS$qk{&M)_;xiE_)r7P6u0c7)m$U&}~cKMjd77Ej|j`=p@XKvF#=!L+Wd;D5xc6
z_;LoyGZ7@wp^n3xMh9PX8w<A#N})q9mO`_xy%k!$l-)qI%R~|50@k)%GR7AtK&mgi
zU8SSxD1m%Va0>D;1sf{fHNh2*hbu#xJP{<12HEMvh<08X3RpDzWROhtSfzS23O5Ab
zWNKh4OmLTX(U{#}EA++!>3|07L6S^K(Ky|bL<WqjX~_N9LmBB~Gl#_(Wrr%G(2(1P
z=ZB@1Xt@1+^e34y(Lc><X%Ca3#U3hkO^_negAmOo8KKcQAqtd@kTVCK1XDtz6*3)0
zrnOG3z>Fyh=rp2Ih`7_na+MaO#w<a$k1f3|^p<<*Nfo#M8#eHocfuCpJ2YhpF4&(b
zA>lG>1X(;+?FWvYNSQit5Saw{58tIkcmmn>Ow@yd^EA-Iy|v-}+(h@wGt;y^l22^z
zFZa`RTXR6)`yMsxp`L!))e4R3HOh2vFR7T+XjY<2U7dw*ydDP9drXGN+Y2lH)up)W
zFqRy@{LT2y6vbEm_>C^bOD;_Ey4!x*U|6H8Sfehmbp3lbivcc4z)?;Ich&VEVD+aS
zr;dQ!!%GjW@yr6f_73DVH-bXuP`lV32Ha#)Chs9VR8g`y9nH-~MpF4<cp9T3lE|K9
zt$T!YK6dnQ)CorZ=_X}J&epni)2l*KzeJW`Atv^w_%XVd`3Sw2S>7^2ck}@8QU#`a
zvAr?*0)sSh)6RRLI-+r8y-SN^meXakENH)Jz!w}D-A@-)@MhNGApk@la6<Ir?~(vO
z_w{%H8l`ij&Qrt(JAhC{$q7YhG@n6*<>s*SS>BD^BO{ga2r#tl-VdruYa_B1q{||!
z7!!iCmwKaKSsDRK7fQchQRXePDw;;#zcwzjkshB@ZGFh`_hkGH)~(1m=)Sd~UgYdV
zj;qsi^1Y@iJ92zEnX_#rUExG4uRM=LYr?&~^3oB?%_9Ggv>Z0MB!|~+D+guLcm-YT
zdUTX`x&UGhMOS|qYWE7GXWMA7aIi<kL5|~^GqYTxnf}7|{){wyU$n}ufiCl>jrWWJ
zgh`Y<?IT*n%VpN8->yma2+|^GcAqVT+U<Ud6eLMat_X~6Hz)Y6D+=NzWPHdiN<3j-
znO=9JR9d^K12ukto(JlFMfZ|$#MCP%ICv91@^>L$>0`=GV&+ix?sa;{R&f&u!A_~=
z+@p#^vo3i#2_<P=rqj%F604z}4~z{QLPMmL+4H$ws=~n9%auhh5}yfm_Jq8X$aB%h
z6SYBijc={c{W>&1tWCWOx&F0<+^eEV<ZAy!0-G*c?%}EF5xOI@JVNW)qtr&YZ`zHw
zg|}_uXLXHm5fBxH!l8kV;fzjC$neL{FMF8}y1fq&xC(?xMG7<SqJ?E%&3Ad*>6umJ
z`hn)Id#0mtVY(p2N!|X*g!Bh{n9$zx2;Iii9r*JivJSOcWK~o})=NGGD%7@lPlQ~i
zDLsj*C}edbtv!q!ifMQp0NXzeplp0k0_7J|T<VuiEEGt3t%E%Y604#TpwGKid36(z
zekLuGc!w$Ent9$mJUmL~PEm$hdl%5g6gBGt=%D|`Ff?rdIY^j%=_jmX93Y?mjIv1A
zHuv%F5pJ&M`*{<(q+n#5Yr=k75bf6|&`EWv13jo7N^@q79qpNcmz@F82YwdBefAo0
zK=s;l2z=&|Wyj}?Paz(R-<@uQTfCNY2Lg}bIM*eb%yJR0t8mt6#*IXl!-3Pt)$SnE
z+{yK=u_1qFgO2o@1^RS4i8t9;LyJlf<2n<kStLYVBF!~dvC#?|nMBchd|oxuxRWyg
zc87dA9vC^4ebpBfqr1nQHwc~%ldh8<64#^dv{RAlxXZt9C0ptG3->(ebm=Q`kfVY9
zyJ8(HDE&Yw`rI;q9p;@wo~>U5cXfGL7zk2AmbWCc_VN9^{P6vlhM`l))c+-uny(2K
z!}T`>)3A*9O7r#dvib{3RTTQ^m$h(BV!vQkjW&f5mVbKPvmL{tGjzaM{}shrF4L9$
zh4)o6b#V#{8}iYKGUwi=Wr+_rpwcit;}{9vKji1>n72}}h^@Qe_xUtoqRW1J{wcJP
zIeytEp<!khIQXb?;`8?oOHQb61{ogyHL&b64$}A#x$^jWut_fJ2JrRWnk!4Kz1)jQ
z<0Z%SetJ)WmThRgMx&Z3l>390_ZjJ8?1NZ)al@AAcE|6h@i&a4<9X>q5#+hw9SIrh
za92k;<atUmFI9H%ptu@2^6mV30z1qtH!x}uWPRs1P=szFS<My@_|2Mo+p1)P7s?~C
zg}>CsD<_@Ms%Q!X?)@!KC{8E9@DF5z%^XUdqoq?b^DEdY7c$<Z1#EYjZ+3dGW6;|!
zcaM1Y+w%nt=>)HKgJkq=C)pnS4Xl7)jYh66e9e4E^&p!a#kXiT>50-e-pQ(3K$#IO
z>odyB#mF{}&!>G?Nw}Ub^>IvjNaElyzZ8JtMHIVEi+d{WS&1Mwg|x`EbQZ*#<R*(o
zuA|A^{=O3x19@&q=EeFSGEOV#_f%fjd-q%K?Rk<}<8fp>>-!0w+g6rGMusW=rY#x=
zSF}^`%|4!{GiX`1gzP`kV%c`Sj)x{SK8$G+Pp1yY0nDM`m;V!V699f@KRNT=wz4`v
zUQnRwIGY9F;UClke=~)%5XLb!j&hIsVWaZR7#kTa?x%}tizr<9aYC!zHMwOqD&kW|
zG7CjObj&yE#Fs15a`1)BNdHsvJB{LK=W2APqh7|}pcMvZwD;GJRQRdIDso-YG<P(P
z&yW5|LNqhmsECiBXp(6^9Y3c%a?uR(+@8!UL9GU*v-n>4sV9u1<RWbm>1%`U2urZ2
zD%m>m`C&gd7*5|!b8C4dmGC$6Hq2S*AisY3yf3Vw59gq#(`N8x=PwLC%+Wz_M3nI9
zujyG<tz8#IzjUSl1Al{>V>)Z;?T%@D8u?W^q2j7F(Kx=XnoG^Is<>uD)QNAuPS3NZ
zcm}caU#|SE_*=)$hK@6+Gsm~<ew|9IW8LZvYobYf?Eg(_rq!#~uiFq+@o~d%Q!}kw
zyLR=us1qNT{w_6B$Lfya`c+X5U++lIwQAj}jx}qdS$w_W_o-NGSFKsKVM8>9uSfqo
zHCG2IbM5+dbR(1dy#21!Y^#cAtnXM$mW0pC{*an&O~)B)Ru|Vqd3?SzJ==!W8#b&f
zZiwda`KCXnqIIlWzkdBH+H*XO@7Me(HQ(yhYuBz>Lv}ua@B98IHQ&1R9YrEcS2^K(
z+n-bOb*x^qs)HzRh>FN?S9-=(>o%-ey><;-{$Cu@t@vAKYE<<b))&tp`=3FE>;9Tf
zy10Jz`ZXOJs1-~iM}M?M#t8u=2NcKn)xM~TkC&%p8aqIj{m4{|`l4~<x;mNr;z2sb
z%m>*f@a<hb4;=dxQhtcPfuEt?0W<N@9KODNNrLTQvYvVy4!ol&<htpUL~a_RAB?7v
z{w4pN)At|j>4|2L_6__E_z@3GM?h#N$}GPA!6T?=qYba@mS{@1CyMUo7}$WnfwqaD
zW$VP}=OnYy%=joBqNGh(_%@ZyLzjo}3fO)+7src5n&UUgoZaP`td&I>$JYb#H{c6d
z_>z-6zOHMS>%egDv8WTDUwDs%wgJYC2p>P*FcbF|_?Wq80!h?<=AK<q4&NS=%tLx8
z%ldc`-}W}nqsr<+mS-ljmg&h~j`pGne0y&)kB}5COylGK+$+iZAZ_atr0Cx6<0J4l
z(0k8dRdDk7bm4ss#}%fhIL4~g;gQiZ&)c^u>cZy%pG_w7VwtM=c)8D{STuoLKDwu$
z;Py~Wk0Zkyd`30rc*ZGYc=!E{J4bd0<87oHqoOH%y47b<qCV3MKHljw#RxK}sACQp
z{{HXl2)dmRc_i=fpB0A(ef;QeRKmB*l6hzmacpF$7>(o8Gm}~9Nm&|oMicn*s$>qD
z+vual+)r;NP2%g@n&j$;rttLxO>$98gRh@yoQsy8q8WVtdNLdNj!N%-eo=fDAODoh
zbd>znfy0t3dZ5#B4u1pd?4|R_w74-G>9;fg!RkX5&Uxexr4qh<d08S)>ODuZ$X9+?
zTK>Ud3jeG4w7Fne_Ve(fd$4!in*FrzXY6QH!nXrH56=!oRs25Y)0JhZ+Hs`6F!_DB
zO8#^L>F-Z|?->}bmHT?5X?*&2GK(y#MYH&D_fw63<$))cq8!p!C%=!?251I2>cp3;
zlR2mcM=SK60=^ti=8%V1qDg#sUxN%B07TRHcv~_Pby*c2^^Qcd`1t!|CK}N7@cSRp
zKRZbuhQDM?ZdR1cF^{wf|4p?qq_<Y-xBH!z)YvF3?=!RVU`7rZo|Mc;1G_!C5g_Ws
z_pW3<?ua+hwp`1rd0wB)OQh-jm1q)QK9-t;91l%)&*0nRmnTG^poOTpY@PUgS27zB
zb1o{1PInmh!r!26l9apnj7tumwkNYdK*?6Z=Qkv?4bm$k1T=*&x2NQwdrRmIpJ*1J
z?n-8nY4a#*bNsg9Z@@1#8alOH#E0vX8A$5x0lHC<7IC5}e7-#;8<{<AoSDU!!it2J
zhifjLE#lLLWR@BQ7QOqa1$Fn)qAKm*iaL?$f@Ee|h#45*&G=ClK3<v36yMFzriR_e
z7bVcO`zs#PHyDkh*eA4jmd<vC4_xtrdV4#^YV8W3`>FX;G=qX?uY}N9-jJpH+p@B-
z;y2;=6(*hGr^YB0%9o_$mw@}+bo@(rhIXm#r}OxJeKSRZ{qB_H1TZ@u74rUNefVH8
zyaTxth<`~(2G>R@WmPtfYd3<49__fj5`UM7#`Q?wqBM@ff#X2@pLAq!ZIoK$x>has
zRA{Sc^cctX)9}}^J&IRV7R9zgcLDOIbZGExq*~*fSDASyQZx<JC$)!G@`vj)ZWqI1
zti-T8fq8j4HaIt0EpqNotd0ZoFEMO;$7NA`JLKrGP7?$8>#EX_!L|Kvjq85i&=pky
z`O6rzy|TO*rXBDc0Ix2FwP?WL*?zaivplO1O#t$~9U-*6f4Uf+9dHhS$J2qqvk_{I
zXTQTOngs46R)vi3`2voCEQav_JrC4t)6v1bQEQF+z0_IIE{yUBZ^3a(0~5f1{OVAO
zf4}Gi+Gh%tPN3hgCY1`LF{;g_xnSKh+(<N<0^I3q0ZV&|Wu;BG*ot%ihqo+37*C`K
z@Y&XgKo%o9k1S`XEDC@Ax@NMhT$C(EqzmA=^(_&BEJn1sEE?hLm&rRNajlY)y0BBk
zi)kJXcmjaSHiWihz~I?_x5jfnZ6>6dGC;mQ2HnxS2>VfGIN(VDKKhK1X9EV$_PaHn
z4^&1E)64O+a#;lIyJPTrPJU6*fd`)g=-1Q1!MhP_jrZUR+*#m`J}%VFgI;k0N)OP-
zfqLNasp#O|sI|sDZLs9+Ty%>WU8?19KNG|M`Pd0?AE3_wwe1NZ_l6Gc?RRtTFIe>q
zwaS1*5zsd%iBuo@<VE?NRDx3=wCRbEsX0N&Xbd!$Q3V|Ap^Yjd6gZba<%>#9+|Yjx
zoIw2;_6#sLJ}Imn!v^Q}yE*67rH%EB<}b_Fi;zfoyropTd-E5pTl0)Dx^H4b{)(ss
zMm`y1sB1BGcQV+S0UK|Ba;P6;2l}z!&GmD^y7k;up0JLlz|85L&CKuL7NfJ1#bObx
ztv|CR7NJLDxw#%qhg<V(HgsUY+fz?|rMEu5j@p0X*BN?f`(RB<v9Wc6yH_ih(y~r@
z>mpj#N#kh}yxf(}6EtN!E?!f${7SDXzBVeZsr<@>Zh3biPrc_4&}*rrzG$PX+^6BM
z8wQ?tvekFujCO&+o6;GDPL1*AI#u)H?aXd|0H_by6#9r;7Ndp)b{?2J(y_t0(Q1uz
znqG8IT$h0Q#Tfb{vx~5Q<=n7mfZ4q{)QVw)bNk&I=ZOO-Q5Eq0TS79|4V{1pDMSGN
z)UByRAd3-gE=w~{(ZtmI1INau=Ub~h5}Wjd-rbRpT)oQYAE5g=%G!pzAkqh7qJ48Q
z#`}MlVABw2*|xCGOfb}${a$>XHLe({O>Gu~aR<vs6!KCn<VN%0@K}t~(Hj<F!p*AS
zg!vo?e|Mzw35^=xEoyWR^~z$rY@+U*h3lZ#t$BQYD{UgzU!<v7P`+q;Sf}4QAx$lW
zei!JzCY?SsVEi=Kzy<3%d^ETaE+#>J*$!wSb@cI%Z(D@@ESjf0c)3)0l1R#UfM)D>
zbIoX@*;O9gL#GUD(Kt}Io)y-6*J310V3&aTn5U#-gL9+RobzVwk4_VhxS%R@#<Zwv
zj-Ut@o)=@~^2LaGVvJ0HfjiR~fliFE<~mW0(^{$=+n)pI(9TfdUw`o;%(Wi63dlRt
zp~1J2YR-2v6;j{oYR&hmy+Jtbmea^#&4H1jU7@U>JlQqcDmzuM@%D6fpdVvz@%rHd
zBfj%H=(QwE>BMf?jD8Bd+~e#}MGt)YBFv##jV*wq960Gu=LlLd4x4L9O|<vG!SlN5
z83kbeFou2U3l<@59r7FypLtHGM?(hJ_PaH%=?H7B98Cc7zNHX);@T5n+5zVPcsv~#
zJR70rJYUdZbAt|j5~vS*D%ei#C;Jv-X$e|+(0G4qv>=($ZZ4VDbiX^?6itIj_wKMh
zKKQ~Ds1Jp%0y4KJ6&idSsn+<el?S`|40xodl^FWE6LS5ET?OW?>Db`hXf@}Y=9$Tv
z@Q&LVz-`;x%!vMFQAT7$N&t_}ZHWkEF{1OxvRY+P_#;ipylPRh7?E*+7td=ZixGh=
z_In;#)~GBB|JJ5t-nl4QjK~zgyUuSWixGh=_In;#)~YNDe|u9hA6=9zMr0P?6Z@LU
zVniT|{cbLcdMN4MdE=f^`H51K@qj({wV0(-!=3}?_NPITI5s#pTCH(TD=j@`8g0-<
zzY=i27{k{GWEQm)8KBPqwe<9mdqW5J_Ish+%OgUOf`2ha#2x}#jQYI@j>HV0FS{U=
z!$?35``wxxxa4gAq4Ke49KgSe6F8A=S0Q|Kq2qf3f8FG@U74o*E4kMAcUPzh`-<D~
zj8H$XSG>hkL4e)~)E}m!gL|Xaocjw_uYN|~z;O2{9ekMsVDCj>J2hzf+M;|>K&A@#
zw<#HE!v+if?RRtjE$&x0R374|w0dQZ(~mu5sd2SiY4oYQsFBD@o1*Iq)0IjGhX&nD
z)w(q_w3`Cw?fb*}{l#Jw^S{D>5q#f}&Od6v<Y`_5s(85~MqWOg0&II%sGh-hoIs4~
z!HWR>XgWA}H)73sPiS9;r@Z(T&ePC#biVaRW-57RQY9YZOHGhURxtyP&h8Gye*R*_
zKB;__z|Zs3`GUrb&*mCST_ipctxbTdr3acho$oJ3izl7e9C*A~c@@uPyg`%pySXOS
ziUujTp?S_KFfZx}t>;PaJb^|7<Srn-v^NzQTpOk4TqiA)k1p`xP@BkC!Q@Z_KSj#(
zJz=|{qau71B)yRP=8I9ongru#l|upcEk-r}8|;_B_I2s(L;ogDbNydHcM<T|A-<7B
zRGqF*t{$&V@4OaV3E=)=ea+hG?Te|D|23KNkmY$QleA}(0X1X4o7aq*Jw1`pQ$E<k
zt(vCKfc%pfg$v$w0<AiRKL_0H2g9ae_>jPUH<ut`R(#Q(^>#Xw<4wo~Rjd5|Eim!P
z7&DhGM%WW&Wd<x9?ho~1tUxdJySZM-K7-{tt>*<QXB?dTNjXXlu0ORHWt|lMqKebh
z5Ak<NbN-+~<F~m66V*91JX$u(;ve3s_&8<$0vD@?QP`1gx>Afb3?{!&bWUeIQ$O+5
zziCCJbtZZ&I>1}A-4Sz8#Ey$Y6ME3Q7twV8UlhLtv2REhAN6nQXkP!?W@sIdW)Sv9
zQvf~fP^jD67NgsG=prEBoemAYjZ|~KFIczMFDxkU0B#!q@2L%CZZWc?kt>4CZ(1V<
z`HcKL@^!2?`LIeA4LY%o;%~YixZl4mq8VI}q&5yJdxm1l^zULxk8IQ+o&BCiy45CJ
zFn!VmQn$xR_S^l>Lh><-5-^qEEC_vixS5Pb5Hi~D6dB8W;ajc!?DCOl2B6(lfM@0T
zz$M4^hBi7C+rg)ba)oa_(A8OV3d*P60#^mla}AIm%Q{=tk@DtJ?buLHd)vxgd{OC&
z_MQAh(gX@WU_?dkJ~Dhr9xmGN@8qQys+qGcdj}#zE47@`>r>=lOZ-sOAo24q@DrU9
zr;ZCW^Pu~6rJqeLbk0x@U1Pm@IGRPiZ`4$a!$jocDm31MTxqX)foO^L!mem9(K{Zq
zDEO5z6?lLJ*;lwjF{%VOdlp*FQU18p-l#Px9N;#(_-qzHM~^7r(RMx-%mqvKbVufB
zyUe%<DSgi)Bc!_;khTi+@7%_up+o3<__B_15Wep*WuRJ-$6dlFFXRo3@DWCuCZSUc
z!lPX*ya36obWuhQ1g}%V(jHB9#=mN|PI&|&{7<6zgDzM8d6t4%3+{CncI90eVOh`J
zIgcK^W#{tYRg3=lG+W16m8@jbK)HKptQzIP&E2k2t`aJ&&{NICO>iGQ?&DPzX#J{!
zp#Z)&fNns~0r_mD5Pqgh&XD|X`Z*(4NtX(H|6RQU%whNWXwkc+Nl&4`DdXTgJ930f
zda!XZw8b0>yrI>CjvR8IeszoFK&^=UKi6`J-Z`D^^XWc?ZS*iA-BNvKZ*Me*;$MBH
z*3%KbotPdT)c0Sq@&^2~A%3>EJV4jrP`!nhmP3;PwmdyQ3((V^rLx7a%%FpE{LiR}
z{EvCIG9_Uw%;S-IbT<u5E*34K+$*$vbV_BoeG|Qv5KSU!({q$1exYH>@hANUJQkjC
z$Q2%>DSV|2y*t4&=j}PjEOjlM(iZeKM1wEnq2p$J2U`ggu792iF(f5Q*8gVc6@kiV
z_W{P~@~)0j)z<~@W6sMa-tx>B?46*1@eOgtsfOv9Vc$;@=c2eN@H+EC@En~oHdN`M
zcZnW5HrltLeX~4-w0mrbuEao=?_H~kWcO#ZMbzNoBlSt)BSj6McMR=u+Y;s!`Xx$&
zFL|~8UP$Du2hA!8|4wfz_dDsLDwe>=<N$y1OSPiN+D7o)je5%XGfxX9y+s~(62(<P
z=6x?yshTPdQBgy^G3F+EKXEjg2H+oFo(hccsG)WY$P^R3!U3J}N(GGRUs{BJ>&lef
zzN5C8wn2_YohbJ%D?dW@r*9x>ycWKU0gE7nopjp_HKHjLJ^fY6LhBH8e|`^Le1no-
zSTI7RMz>bZpxC`%Z47h|9i)dSmmKd|4VM91->$cOSe5zfSyZq}jV|ZQ0c-VZ5}5a2
z6UQ_s+!S-m(Vl^^UfRjClWvL}iaLS2|FtoE8jup#-&hq=Sn8WkO8Bi@j}Av&!0J5?
z%uJ7nePQAJwE)~N`{;tFj3q-rfxqu&?Xknl6>d>k@q%lc@#0Ns?{HKF#aX4CotKb_
zqP7+So?E4-gd#=T@jBB{s%@qr>>NJA{v9PhuwaBe6}siSyp=}<(<uCae_bdW;;-{4
z_UU_U)$2vw{eW#NT`#nv9lmr1IbL#4<dj#yo~nJE1)J(!qf_dE_&v-?lz#s_DC#wn
zD0@ffVkMq1o(9B=?v=`rIF~TQsAp$)neIo6CQ$meRFow7gCl%BA2OeLUy#mF-<c8|
zb7~Lm^C4>uLS#<009l73ac$NyubwXSmG$DtGf7bi9G!N*RHX<jOMM5Am_)Um7L%mX
zflU-aC7Vm7R`;-IR;c;zL#gG1IHI1~Zn|u5>&Wn6lmm&sK0sAYBVaO7)o(CV!3U_=
zzpR%jrv^)Du@d_^Gi`Vw3+Eul#p<mQ$R))Xq_;@+(CxeBDEfQH^)2|jgme-3IeW!N
zqo1VRN%fL5n+C%8KbRgi(%qY)Y9AQJtx0AImKH2RZCL>C1cW>jij?r(ACy|>@<htg
z!Z&WRN0JkBDrt2b<p8(;!Ktu|He9)OR6J#uB0p3$r|+$+i_X-fst2qak(f>EBr5^k
zGT(U6Nfd3GMr%#Smmt)m1ogYw1>QZVBEz@qGm49zMd}+L2EGYqtd9cjwv~J6?WCdd
z$cpwYG?tjc_XGc^8sr$Gl5o&IXivZ}UQ|W--<)oGq6sN`Q#O16c2qvFhokX8_zWzX
zAfCdU2_A?IS}m2iBmBZ3vq8eZ@UQ^WJF@DaGL9lQZOR<JA{#V%`a-YCs$-=w5(Y_>
zPH)O4(odB~Z0T*;<d=>jlcDEjQ$BU@r|@}MrE@CX?@gcRo!OL9tN9Z>4I29-gEdMI
zUYZrIIsMcQd7zkPjuJ&qrRb7+md>;<>-o#}v@aX@OE53SY&$|{xPD6Mi18=Q$A_fO
zeAs4oR))v}MQzSt{%)ljpa>R>>AFX^oU@gwEVDL~r3)&%X>yTM{SYN9^~`B)zP%Br
zti9=Q-066bc9H|xA3p}<qf-Xy!DAVh(rnKhlK-VW`8k?E;$P}M(uIzD_H0=bMUQob
z9*DnuIjY>pC^tS{u)b(J1M|r7a?P2TRpG(f_uhk$cOe@bLo$<q|GJWqsXv3o%((rw
zc-Ge*t+e$F4;^lo8@PAKy5J^0#xe`UT2X7U)<GO=SeLD>;%dniECJYgt5TYk0k+;e
zI1a3*t_Ei2z{hSBoKoQdH@luflH7#ezPd!o*;SV)j~n${qFAf(B-7Bj!reZLUdX)$
z<gL!L*tU}1X0Fh-wH56g4t9aV{5qAMLxH=ry6PjE#<+Y-@K)X}8Y$HNGZZp52p*)x
z+Dfe^Gh#U}PWh;Gc|o)^R6gh$iPmA3_O{UF`BWQ^G~H(%M+Hkrl~lH|%B>7tVCpAN
z(3+9pAdIG5o%q-y1J-;*o9zvC)Hfg<<<i3Y-wPv``KdrQx*&RlSdg$Jtxmc}hx^v8
zDIcX5fulJv_O>Uf_Do?*j;rlt!IBU6v(T1*j5{kfv8>)E(#)3WuU_ToPl0Z4=Sia9
zyAxV*HT91vHRb3>Rgmo2s&(TkoP6L<k6JNW2|CDb@n=Djv@S~f`B9sMb<In<pSd8_
zlu5boI%?)8bxcX)$9&f-OB$2M3YVf<Gidnx3SS9Q=#_Xf$gX&r^ep|BmfBWLFYM+C
zVp%XMP=DeKBdS6ny*m?%`A(n(DCWCCQYh|hQrtU_dT~{Uq%Acwr$gzFLtXui6=P1U
ziDF9KBek+~H&rO5eU}<+%-zs+Z+o!1<42QvA8^n*Fr^X>YP1&GR-QdJxP=#1CGg~H
z=|F4fY^BL7p=uU{UgR2GYJG-xO2YWLwCj=1e7dr~*lm?ck9tx!A>(SY#c=UVoK&Z;
z7+%TctQhmv1wJ}Oo)YyiUw(ubH_QXv9n$wePl5IV&uqF<Lm`RRaLI6PU$rL^?;wHa
zAn38DslYJU8?W+>yJw7iQ6IN&5?|r9<!!eX#VMysk64PQ2^+qJE>b|bY_s{&g^CyS
zr+eHa{5a&h>KQ601#LQ65_B}2ipi3ov*Fa_WJ!0};WRO?UY<sNI=_Q34(e}GF0yVt
z#71{1v)d{Y$uSsBq2NO<f*9G532)JX0{9)=gF{gsC5rn41vta|$PhY%5G#9_KQ6WE
z_ShqpgZ-m>`YV03!UeFXJB^*}AqR2%=Pm&95d8Q><tR^&*J^wDDq#gUVn7`6m|7&_
zS!OL)Jw=<DsD~aX_kp=_V7;|xVax@(b5c$L;KjYofOK@|SqXr4)6xdLwE%#=aw-tz
z5S7o5w0Zal4UvIz+liu`Ta9LcakTFQIV<;)S1BK)iRE!XU3)MU(%OsqlTdHuNTna4
zH_JJCl^}5fI2$X9*GDFD&ii1yDFGi}2riyeNo41X`DllYQFiTS)9@g@rBvR?^;e5Z
zpk28*l?U$F<E=(x!oYhYCR}E=n+5B6AFEPWN*Wa3{mxwwke>0OH1feT^wh+3ot-^A
zLPH7eU#sBrk%v<Gtw|#mn@hIQP#3$#X!n10;8;`y(7VzBWo)o?9`>AKX$_VKJkb=8
zo;?H>6Pr0G;-KAAtc@-o7<Knvyu}Sp`Yn-y>%br^$`bj^1Sm+S2^C6fS|v89c}TNr
za=~+&7Yda}r;dc?1SEXza7@xh{2QaectW04iZky`0CaYB57GVr(0FlGE1rG3H5M5Q
zEiKq@8NcQHZ=>zw3r{DMZENLdxmT-l0>pkXssbKndwsLtguyEmoJ4a>haaX5H)ISR
z@Q}7@39*8jLbUH2k7tW4VyrgG%i^+ZE1X4hU}gHS>VZdz9)4_)wds2~+7|+nW-!)B
zmKC&-WWV@6E|#~>kvgQcoHCy&$kSP6;t<BKY<>GO)fg?=(~hpq6$-ZqZ@W?8v5>Rd
zcv!-@=;37T!DB6;UYX`qf|_<-g+P}1+P6qj$M_AE9L<99A6%ZQ-=49N5xN;y#R>Er
zmopfa4|X5b?8{90?ASn6bw<1fil+}7D?{BQ$DI1D)~+0pX~}R}Tmz}C>>geJ63v0{
zUtgj8vj%Oj(>DlzZYv2CxuCIVFP&`^j!V>=x1hx<@l5jMLztI|u5^T_@OMdlL|8vz
z0G9H8aYI>Z^NuiJspwN-q#JB9)3bE2Of&eEo~@(9-I22L)#s{F*7(IYGFxuCpS{97
zq7M2$7bNxZlp1CG{1pWqOJ{02c$&Gwn8`?ANg40B!fH9gg-?}{?d%mcMWV9+cLs&6
zFC4$pI-86$Z-TroNObNdNPq{TbpmZP?37OJkePIvu~)xDTw{VioL=Xynkdk;y3Q+Q
zD7u%<sk1PvUaKysKkT+x2IJblO(h<v9Fz*2Ma6ya1!)!d++)51=jUCG%Xb9XB=ZPq
zf(by4gxaifH4+N!5pmB3(<Qml^{ifsa5VJyCQ9e1sM(5dr*~c;+J|1O?Y2(mX0qbi
z)RF0gT+pkl3i7`CL}p@RCNgssp(*K($hSLoF_bi$#w_hj9O_kXA5DYH54}t)gx)(N
zht9?C95Etn=>x-@IOh}N)0(Q+z>_i#2^n;f(CaeOYoNrz(Ji#Y%CRx|8fAyxt|qEC
zUuD8&q+jgxtjXYeyZ;TUzB8)#Tgfn2x}(LY*?ELCHIpfBjZ}<}y*?0!G;&UzG@jS`
z5cA~l&eJWVMKX~T;~gB`7|nperEdVE^V8M(4thLjKJfOa@1oVWh9ha7-t~Sm*_8ty
zFE)NE)cIK#sxwbP{E6_(ue*55a=1LDGy%AWzEQ<wSlg(uFxVa3Bjtf~EQV+uux(t>
zl^4&I>uQ;+ag;s%P0CfB#}Er&<~NuspTT;d?eI!gup=aDErP<A=Ao2ObZeBHACw{S
z3@BWBgIaz!Ti~m%D*UBES2V`1B8aO}gha#jp=`EW;+6eebcOXD<d^7o(QKV2^@#MX
zQA)gX$rv3NJijv9AB}_2V{g++h)oMiM(4~d;5u{9rX4$mhiL3c<nHgu9~|kf_E&n&
z!Iua4FPQf9(?#AKoFq?WetI24VC2qssRoZ!dWlh@)n(2u%P~Wf*(hVX%{)#v#&)2!
zI<{AaY|9YBYc!p0-rp*$&ne4Os>?byv4ElbO0vf0KQ>_V;hvc~HXq@?Ac)Lc#n-dB
zrAG6o<zD79%7M4Rn^nEESXkamuUwLXcNQ+dU5XhApaTC~J5^R&_gNLVQxA=+q+V95
z#h^`@{3lpV7+55IfY?=3g{)swnd8&la8_w9)cFvHGK<nz-lDZz=dMI$-p2iuXp*l0
zcki$mW;71iM@*koc&YR}Ft2ZfU0+$~Rnkl<V4bm*{V71N{b&RB7eHcD_s~YVO3YbD
zCjhs6Oo3w#$|_F-N^kt<4hh1he!4ldgwm&cCKbhzq85<z4UxtOW3tW@95xu_SvTIN
z#;wIK(Pl@xD{^Mbk1cf*V=-m95{yMTFmuP3!BocaL0<cnLExtil#*%SV=c6Yz5DU2
zY*SjMW}`Y93~5(P&6Kjy&LT^Y<5J-fG;&fp91PdekbJ6a8S3=qIUVaULG($)u^bZ|
zIN_|xMVj>b(?~&^P1*`0ZA>9e57Aq((AeMqpVaEae1P>>P3EW$)XLo>J^i$0Di5qz
z8zxWC-T!P%iphb)WrgHkd{wMBJYdp>{7GOv=qt)6V_y2-*nR@c<X-$F=8js4Zq%e*
zBS6~nHMN<F`=V7C)_w4ac5BqzLGA3}Q32JWp;1&~Uug}IN{7}Fe1|avCKCTh^9R&g
z0$WkGU>c=D?~9z0Gr<>Ucl!#L{tWwo0#LKGpr8puA8G3zQS3L|?0jcCbRw!!+cC7w
zg)uuTG`muQmhX1E)?dp=be1s6q1Z$3K=Ii2FeR$1=20Hm-l5rL^Oh}_FJw<x0(%OW
zAN#sW!u!n(8ymyyw+$=2TMah0DS9s^O=keQ;u|5j?T%Uu;|g5_<TdHg;M+*G#<wmh
zMH4{%Neta4;TOZWVb1|``!_?S7&bV!->q@ZYpI*)0TVJ!z<x3Y|A_a)T`h)n4?Y9X
zz26FXH*oN7znk-Z!3Mr=$!#jcT3*xz;5(E+>UPM-FGiX)a<d@w#BYc47(C>$-}A{M
z50S+M>ICvlN+DICr!P*R6nfL3^YHJ45*a=uvfuMaw8~#$nFrv@6*yIpOBW?bKxPu~
zUsp2X>kJnB+wXb!@91zFZK=zh1>oNALNTfQzhqJT2V}Ycf1Q#M{tXuV+wXb!caNEf
zMfpZJ3Fu|B%_O;DQIez*%!AN(TO$Y=je!&y%X~VOjt@STXEoNX;rlk^z$)JjJ_{<p
z|DK8`QT4vU-TxUrOiI%Vd$7yc!hOv|S8>$QPy+2dCNI&uAxtd#z9Vuu{w~Q<F#>+A
z(xRKVBqN16x1M4#H3g#*H_e=4TqOy%tyGe<?@f;5M&lrJpC3XtkW;Q@nvp`3;K&t@
zhlfKhVlk$@B%!^-d)#KK90*<XBUPqG^+Y8Yv<JbvAG*sawPc*`G-ND;!GL8{h9C5#
z=|+U$vncK$S{E36#Ltw`q57T0GVSN59<sb=a8|8c<|zUmq;N2$fX$HM4!fipji*fm
z!?c$#4_-d<bE~b8r0t9GCuHg&Hw}-Bj8#W>4AIUM*#XHXZ)gMLG!S?HB1E3N5e9C^
zI`~Ob;1*cHigt>L=)io`1+W#rRTcJ9wQ_*|@?dyalW`sm7<DX>xtOyA!-GZGq&up&
z!7vFzcDd5>kOqn}@a0w%9>=KHS7^z!ip)|KA<g$ys*}QA%F&Sdc|n_+11GQjeW+(0
zEQNz1*1wL4gJF;)&)=?itm5~;ip!ytv;$?04Ny+HOoGuH?gGPU=9Dm1-K;x>QWyV0
zZMA*0zrus{Pc^aEU{p}AST)?J3dGMCGLJpXu`DE1ZAfDV*lmAQ?qf92R~gNezN(2N
zLX|qABETQ;r;v#GrV|lFN#p^2&Htp5fE-3LMGjm`+Ri6UWbp?`XZ=|bV;ebn8?l(%
zM{dNdgkE=%FIbW+QUoi<ZkttXD~G#vR;ljX5|u#j=D(!URVvFo6$s;3)@Vuvu(CUP
zbA`9AMAHDg=5E{E+4KzU0FmZLZYP|>;AAwvU@tfO%3$e$cDFeB)lX)Jx(CZLmzytq
z=hx5)g=V#}!LqEd1n#d#?#Cdq<N$s7@(~B&yr5!uVfZeW^3dUE0s>r?RYB<H{xtt0
zJ!0TkI2#1>d)GZa-G0UJ<A5EzJK(eYFhCGY*$k(j`p)*rwpcQV*Z~;S!j_@Km6740
zXdH;2yoWMQ^px?i2D&vd^p@Qzu9C|qsw&g1X<db@|A?C4K6A<Oq*7@S?$DV-y<3i!
zdv*+M>aWlp2s2=B)kBoc>cJ6N;{U{z7UE@GgvYy2&;T-3+|xzpQ!R})2aNVfUl*QD
zl|D8+o7&f_5{IW#DJYRGICL;IIuBD_l%^Y8EKPW$6Q{p{!_5#JYlRGnI`XqdQM8Ay
z>O^0j-HlL!HmMzE#n>rLPH;WTmYa}=lq^a4f+h9z^ChgDZ-X5Q&GuGwSF1-Gb!<?t
zzCz)sZ88_MC*xy#K%rWp`_(9oR@|*QK$)~D!;(mL&UI&G>hQ+P^~jZ2VyI5k+=m{j
zCd^*_d5=+nQjP?{RFBZzO647!chUMH#s9QD1qhoSp|(&NY?l)+#K<+lNn%RgK3p5!
zv6(rX2tK&lr=3hHMuv~EYIRQr=_H=JQGgJpQ%)Sa4OL`us$M(QEBZ`Hr^!&lBFnQ9
zLL0V02B_)TDjjVN+jymyRKWF{D?Cqa1%5V+k=4(N+V+%3={k$CD($X@wl2-9)|?h-
zSC(nPq$MK3+&?GFIbTW+Zku9j2yQrVZ%sHmwFuHWH6QQ9_&c}KyG`VBRXYymvZtDn
z#EGz>5*JIooi?E$7c-PbNBDLL7YNp(9FQM)nyR7RBOf>*hCoz;d2UKf9$X34<$EP>
z0dXx71l(eOp|lKUU*n)mJ)n;ltx-d|*wPc4g$#Jk8R7;O<sr?GN|mL`^>veMl2H{o
zAN&~A!x6qeZA|>Y=V?nHT!UM5BKH{@iFi9QVe@wEj;h*zLMQ4zu<FR@LqEzs%}S6n
zHF);{B|_sA2paR4M}^a(PD-6t#*sr?qK-=SO#29B(K0wl@7-l^l*|!FHI;mEPA^K^
z^YxsS#IS*Kf@_~vquuOm$qw4QujOV#DMb@m*B3X0>x-!5J$%bpX=J#E&hkWg)Ya#-
z&Q2Z+bWEssKqhTASVyVDKMIJFt+&Ekhi1UY3){81@@`CTcWTgnNaQVXOb{ke@=cFb
zGvt_#)Kjv(qFIM&+ru$ck%q~)mq?@cEk2q8^1V8gf^+mj!&{v;?_h$(LYBbir7w8u
zt^ksEm8<Qf!kD+1FN$*D=>5uBgS`yaApkvgY!-HM4sCjlrUA5Nl~zZ67c$7hbCNvg
zjgQW~$aX{u-t|Hk@*R{X@AHtOYa|xm-ZM}cqQ}BO^v4Z}qh@oqxy4OEv?b`Ic{{%I
zksf6N_;XfkWx{C@zXOGjYdBNaGpT2zOiK%|{vcfMaCNjoLxDPVjEvQ~-Q{D;3SU#a
zBWSa&s|4el3Glgejn+uaFU#I1;mRzig-I~&K*^`k7;4ARaFhf5vyDvM$OvsF*qa7h
zN*fwD+}-6KzT0I2klD2=!HGkk-95<AIY7SZq(DoMISHr(>(oA~;<dX9H)^%F8g(+>
zs;CN}C#-J`uy3H-ZCGEHu<F<@2sGO*BO^n@m|*M#iTiF)P4jH2cCqAIifpQBZf_4A
zLG2!(5Saf&Ih4P@;jq)XtHYVScfeZ8%{u3i`;V!mno(yD5JhJ=rjO$9l6U|@D=LdN
zb2r&M4&b{^K7nEKowN!YJ<f^n{l{xnlg24(p)kURj^aE!ecZFZDwX0#?mXa%H*s;n
zv5KQ3iAf_-&rCBlaW~wWd*m4+cEcpc9Qgmy6aUt7z@Z1zo8rA%i)@ZKhYlt;JUL*N
zv{f>lXPY_m?`o_5n>lm0tk4PeR(68TI`c*cxilqE+H#aHD@M8JT6vi$_mPrsmVG@#
zqXW?dGQRB0xL&%vUgBofGbo+*Qtx&s8m;TwIFKUUw&t2>=82B$(IMYSuyFIn7FmH=
zENo>*JGG}&1_q*Okb1`^Rd<~c(4l+hP}Hqy3>{wVuaMj}qA5UqadV4OoPfuYk#{r$
zO26Flx2Gu0pSsjJ(7M~UI88dls8hmmvw@TrVh%|{5FSd4Zp~r_$LMXqYLo-*KPeAc
zT94(GUt@tf|ATHD_)^aonowE=?&KgZincqMuG*op$@~<#XYC_1aL0Z?mzYBlBx(b>
z!XMOifN)w=y{BA06pe%4GtW}Gt|xBT6lofs@0k*xZwE8@)iHMkTA*B;u(xbrCM{N=
zp&%Xq02BAysm%P%l`trk3VK_2Dcyt;TB_yhh?}Ael#tdNl97`7f^ggGw9OwPIVvP6
zV=-YyX=7=b(JVoL&1XXp+3a!MhcPH<;>fu;JsE&<Th2)>Z^8tQxQS)UT3-oJ7nT6&
zI|Eu=<p@#N^}3Mbp-)xfx~`Ygp-Pi5kuH;z2$Amlb&+BoFz-*my$|{bIkCbnV4Oyw
zOLy1vqJ^6Ujr6osG>(#2D}txC$Hm9d1U~()VU~4Kw8t@U2!H9~KK1;&yN@VR6<<Hq
zEEiqnjn9wXYjqJUCSD-Bw|Emu5#Qgc`BJwgeM!w~A<K!L$P~c4&IL2giC{s|h+>H6
z??;PmS-qfxULmH<d@PL;_-0c=KUkDB0hw9Azx=#r@)#M&W54H-XZ0!-XA<}iKED~A
zKP^fePbClZnbxR48l##fO=Ym$&Z|><Mte8)kI|%xVsEO%Bq{kQZ=n0wFg>{wECtd5
zTe|*-{b#TiSR1YPs5N?l!ewg<PL+)^3v?2g&a9R|^9xElyYO2g1&%IxJw&g)%m62U
zNM&*BjKpX#=_a%BU0yzZ`XZPiw-8ph+4w0poy((?)hvC{#G({AJQ|zG6xL`-iMGA)
z(z<fBY)HA2H%`J8(8S|32z2)r?*9>VAF<{5`o-w9V^b-I9vx$&!<8rxUJAp?6OIoK
z`z<=L2}#ttX#zb@7}^NBJLPzGH%%QCf&G?Clm?{QU+74cYKThJ+%*lsogMYlR^(S?
zRxvo}h?9fi5j<gLFPj|p=}du((?`G!-N?M;_z)IawL|d-v&f@yX@S@(N7$nxie6m{
z1)_00Rpq6h!^(3E6-|gt#sd?n4mP4h+YnOj;1mc>fY8rgp#(1-rqg*u@w#AHgVWr>
zjc|GK7@b(*oHqnHUBlGHl&SCwHDaES2$QHLD2bLPwbK2C5VR_3iOwk~Xt<n%$cjK{
zLC5m*t_RH>uICKWu^l<iPHQ<O*hhxW+cOj4D$bx54p(schsQ+P@n9!gZ}%}SODp9@
zyZb=RGc^(az<Fu?Tu=AXrFcbMR;Pi04r4OVAr^9iRUbRr<i`jZ=*Cuk3`LZHWWVl{
z8Ps(=zeE~0Q@H>rm=*B`7V}A~q~^i{?PAPrD`kfa1%Cea#W~p4m9JJCBl}bpPX>2)
zAQ?x5Qa%XLsk#p=qcZ@Loq;I%RB@bS0f`TCZva_=evrML`_*NngrOoFUB5F#*8+`0
zj_Y2d?L6kksAF>bbA0SV4N{g?f}yD0q!aW7axF}_ejrroip82d^fC#0-%h8CM(_Jg
z_?OzDN;R5AnFGg_XX=dTSmAtKFBtb*Ye^JzP=1w2*pzyww@e)Vqh6<Ul6}0RO#aEU
zstU>%0(U8N!m*Ihsq$5#QBm=~2s)YSAZ-_5L-_sW*1=@DHSxcLMD<&DUGAH0+;5Es
zCPu*r1)6HE*Tlaty@@c%d9>@oBrO_Rx}1=tt7xhC4ME-!emjQRj_XjgU}*4hS9nuU
z)_a}lL@KU)zcu(U#N8l~4=>&sq8m?WzK>Gr>K*fFF>e~A4-Rt9@a`RTr9mbMJMIb+
z`kfOEytO*kYl1X5)`=kLQl>^7%I6>J!j;fX(iiGiv@vH;WpE7Cz4$LQc2t*3J&aGM
zy}xvepMIh)#(&a8>R~LguA)FG^fZBAW-SF}%`sCt^*V-0+EY^0?^rTDSjdu7w_}o1
z(y6QEBqa4bmP+xG?e?LL#{gt9r_&l%X7tq6a!!4pC1qP{qrK(6ZaQ~NkNVLgOtkxs
zT5#UTXNf5{L)+%lENTi`wYc8crflD=_fkCcbdEoAXx5u&)Qu$Em7j+TreoZG(C`j8
z558^J-lzn;XMb7U22I9_B*XOwt^?0#o>kifJgc}O4n(OfvH3(3fL-yGhHMYX>mqJ|
zqi|WbkQ?+4ar<(bwvGaUaiXK3hbj5!2oDH~VBp-ZDkHHj3Zb@5+>Mm6ie676+?pkt
z<hk0d720gk1>|Snu9_SvkDABY@7)I{V?)eML9zs0(?Nn99Jn<|;830n|Bn5I({4tS
zXDn`OWO+eIV}?)3KB|fBWC}JxaPtehJ*!+>#YUf(ke!#>q6x^m?he&#LqMA{w%)(4
z%k1G(A2eIo39QQvQ|7s~yjmOUp7y*V)3$FY1F_60tMb${I14g+vw>S3L%TRY*5OPE
z1g`m}5*j4EY1~XbwyYk8OS)nq+=kmJ3XUdF?!dRyLNM~`_miNpp$riHI)6AoV)sIz
zRe+6ryG2l`9WsnybcCLg5`*PQ2B(ywMdu;$r}0Q<93;Q3q~me3aj#ki09{1IEpis6
zp8XxwCfj$g|64X+dD(qLREH<}r45bcXaZ3A?<!<Woqc1p7$uV1hDM2eC@Gkmc4H#Z
zg;g#0zM=~yojr!64c4w99jR?I^P)VAe@}T~g$7qfDK|?kILj(Gf&Vsc$c1Y(4$=Y7
z%8jqSu(EbhfY{$XaMqr4&W@CwAOEMCi|vmLr)h}MpobE>4n{!m5D9<Vwvy{&Mf<t5
za^y+Qfz;L?D#?ZUC$7UCaClkWxEd@+f}3!W#kV`izL%!qq7oRm`;WCsV&-A?8u&e#
zHJD#cfzJW<9(Vr#E2o%S4n&XqQi*F&ADk=8$l#o=9I*j6J@<H2!pN)41!acZy?QhN
zS8LBm#1w=_j7@u`{epMa?3B#8&Q1esmdI9Gph9OkM2<H=I7M&E6b-l;s-khk!4((V
z5QbJVdZ1ZBwOq7;wv`&7t!SqKYcviOWq+k+z?&R3YV>YgQ&M0szm)^Rfq9TLh)6-g
zY-$w<Kl-m!o*@5Ht0XxJ!wLvSjNXd}o}p6Pyk{?G45sdA)zrOpTl9E*Tu}6>Ay7kJ
zw^l}KqY{(Of!X{1CY5RH54EmSAo~>T+!{?0<N&mJ9zb>9DS%F&XLCqX0?O&X*CyeV
zK_S#F!GjH6ZJlObZe?bB@LS(%P+77uo6$bi_x)LES)|e6mOMwvU7u24MeY@rppsnR
z?r%dgS=j@wXs7#2*F;4~Hu~QxVO68SAim?R;}@y_l*UHu^tvm_k-4|^K_J61IgET9
z;Ah>Xwak0&>V2e-CV)V9(f6{Ikay~iN+^5BJ+|Xu7*C*Ta2yW!B^}XmILseC%3tgr
zrEr`-dQ^eJaXzI2CLH8*L!$bpF}~V4-E1>9+M@{JFrVId8nr`1v%!d6hVbDqzv5n`
zn+x-t>YkztNBR}qoI4&2;=2zV7%AHct#HJTFAyRe_{&IP^2)*k^u&@V4MT1kssAT7
z2WC`h_!N%UNj-jy{$3qUI9=dFI7D~4z=v>*4leN}9Hui<(p!_hY4rUDr7?PxduKVA
zKy&z(Ebgadzq4*s7#JEtH}%T8MJUnjtKrF@Y!(LhyL-X#<Oo$TlGT<Q_)**!R!=A~
z`cXnpr`g2l-VXmh4_5={sDvbsnIr`v!SgtwUFvf<G=`_^{G5fVtI32PWs)Pb((t33
z-3_cT{OD$Q8+?@8c|-dROUe<a(2(VXC@~otGC4QqJG5ZdE$<Ab<b?TN7qo%FvRi~8
zlQx;9jolC=(3p;Jrh<ciG+fYTdsC2+lhJ6V!(`2SYb+5tsnr;16&*HB@spo9LJiWV
zQ&-7$QVOQhze??sfv10!Iu4gO0-~p`l6l@>nIra5=EQ^bj@U=J(97>%4eyT#<_GNP
zlAj#NURtU4@ifNCX&bx~hNCXpzl;{~lz&3Y2>J(&%c2rK{_K(3d{ipf52@Me=TZ(-
zIxX<C=E3zvUjo%gbg@Ne0qI+y8T%$aioSXMxZo;Kgw2SUPiQoOAv=KPAjRI(;v%=L
zl<5R}pt}p-AG#d*vbz80m)c!h3>Acs{uxUd=CGfQ@_=}SL2)Oo9YJ;>8&*8%B*3<v
zuKdM7u?512Kqr2YhiW>7*S$2AN9PxT`L-Cgc0`L~*db2=acNt~wIPFR``rT9d#S&Q
za)7%w25aNe1#4J9Cjj=@bWreWMACTW$t4|kBVwBY+G|#*2Gp(sr1ZHeMGB`3CINHJ
z%K72y!@@-GTt{FpkIN?jeDqN#NTANzWC4zvKVA1S4(M%<RuXK=w!XRG+6$mdfV^*e
zDm3cQNTt=G=i6P8#+$fufP1dOrtTKY+=8tt3z5JRnE-g_W5IiKB9O(1&Ld05GrTWR
z3O6>TbRYG53lb-!GY$L~6`M(9bRd!aZe1ehY$ibF?j6m@J#A676o}=B<v^sO#ALIp
zfkPJiJ)bPL!LACtA1iLE6&zli5JqJV=##6OsmiE88v8w;G`9Ou@gKap8J!m{P8y?<
z2l`BFR3ME}O_64}Mt+<JEi2l0)4B$oJc<<jC2JsxyxR4i0@^&r@){V?%vA>mK)J#j
zRXC6dhb~Dn9H!H`5YXse+Y&8TNT}KAXqwh#`VFY@Vhsyb1%Wfp(E1T94bN%RsRHpa
zZ~msAXxwR^Tp5JuG`!SXNHPO9xlF?a+FNAtw|vk6X&BV^RjRg39ES6puKB}2UbzDC
zAc}8ZJ$<qnGN_%F^yL)Y31$82iK;XclQbTLyqv5NZ4m9s=z3q_!c$>7ywK9njvUEW
z>UPV~DxEZs=D^ik&s6SYw<WF6TYbqDXV(M?GQgvXvmC*2j;bw|j6qsBlg+si@CSpK
z*qSaKbl__!T$6a_G$cop2<NM)NjO2a(A_*!kl{fawH?Gjt&RDBoQl)5@}B<kz`)r&
z@0dr)b2qn!khZWzm~>)`?mvjSfbu~@tGg>Gog)%OE(DrJvD_AAhKCe>3vP6ZID`^i
zPO>H3qNe$OV&!;fIO(;Rh#v(9`}1Q^bAUL$Ras!DUwR*v2DO84xu(N*bk*}D%Kgfh
zCr7j7xGvRtzvt(Li5YrSs5~-oj4VL7iRMuJ0o#p@1~3XNx~X_Z@+kSuc@bia43&@Q
zl@GHhS=#{~GF3Lu{=)q}3iGTx8Rsu@2+men=b@#v65YiTE86M2(q<kNj)Tm#N=^cX
zMx}bW$ON*!F|~+a9EnLtXPNx97E>sB&RMEw_9s+d+G6CI3)d>G>+lzAOsFPoTb=St
z#AWUy+yLi{SLNPK(@p#YbP1#<jRlVO0~}aftfFb7rsBw{MJ+tHND#i_AkxBTJw=s~
z&dK>7Gxvl(yb*6W>{9~Zd((kw6Ax>c?nl7pFl{8^=J8N@d>oA;4{E>BG$0E*L!JW;
zp}psS+ikxV>ytGlHS;1$ezT-z&Q6E=W9r;>4~O54Lg~~~SU+91&X~H3AXU3!>N7Mo
zF;PQ@WE)@EVwNRsuISqw^_i@!#&&gxPqEHInC(vu)zYd_seauFof0s<yEjx2@vyI;
zM_}pdJh$3GseWZ%Qqk`POFV2;VFl4XU#Wd<a`g^^PisfBN_?L(L6wLrgWh?SzcPqi
zl1^q?uS_a))kI{1iAqk^=pzV9miucs`u#N=v6etrS_#J{1u7*MoWTz5m7JVA^_Bzo
zZ5O0g%Yqxi3c4uKd66Oz-;|DQQ*(7K)rIg92~45n=L{hhcNs!mHSMI6|69V&cn0Nv
zexb_9{`4o_XP`ya;rPKsG>4M+>C(DJGb5$@iO)>gYA*<?Vm#wDT$|^qU%W@PH5dc9
z%O7%J;z>P8W&*46%=kby9$_zz8M$1i6SUu_JS2RH#Z?w3Tj&_8aUQJ6l{wRZ`iDLh
zizlz8fmpk-d&h#cWnU9s&Y&iO>PefoukT!qZ8Zk+{HvIYa4L>k5?%Ps_7Ua5?Ij15
zYuOvuRWPyRyXl0UG}U?n%dCjFn=+rU?ddP~(3xvs|CiFp_PM17qainOERDByt|wtJ
z>UXUDuA(e@l?B@I_7WIxy?XdWFKZ*%l;W>UI{0zxg=GmQZxU(j(ZH_VwGz?Aj=xLs
zmu^j=W@<88bB~!%+e+5Oigwxh7>%RofdLaW@U&s$2s~}fY$|-jjs%=fF{pvNbTXk4
zcU%MP6T5q(Dww)UnTyM}xYnq19`2TfXwb=h`jE<hfChgu0YEa9f?**i^SDq%_3ew3
zll^0?9u~(Z-;*!KR0L~ZRTdk24s9XQ9{2{LXcmPYKce!<J$N*|VE5p0AF7pD*R^so
zEf15(Em#5!#DxOh8sx<tv&kb2w$z(>daui?TJ0TCCz!rbnHRa_MwDqJ-KPe*vWXi}
z$mfvF4X{0NFeG=nQM8#uiL=JEWFHT>k7!d&`WvCj5K#$bRvuAphRO?@MbKKjDl*H7
z6v^LTh*JxOD&|eM`8Ybwo4PwKis0j($NsnZk=yukVB_=34({I5)}mtqziUZU>#p*f
zL7_iis<P0O3v25_e?FFv?=Css>?%L1bguASbWxq|qK+<efZMN7V3{nUX*A`_O+Sab
zvDD}-2Y3mt738hhf&Wg6h>VjRwaqjUSpoyy%1AaHBR14^?wYM{Mf=%2uC1c<a}6bK
zzvfqC&LD(w+)SYS_4DC0WJm7IokH<j=7Z7wPg3O}J6u=MG>U&=J{VPb8jLJ)&H&+8
z^C9_Nn-b@fuMj`s#-wv7eV;2~G}#7PjtxqKA^ic`FnZ|Rq0!0!kITCcP~?*X)>FpS
z5NWVb8S0Z)rD;RR!*6!uTN$aUN1oTI#HLuNg~1TD*0jyljcX1L3?FE3?;9KH>4-|;
z=N9ElP|}=IERc|`2h%9?(`P{@)Qg(F?LC-7h8v!(3e`2@dws%!ptMHh`fE0l746P)
zrvS0<IrBrQ8e&@mT+cu!XcXYN3dBQ1i%=G_Ca91(K;4uMiDelhVKZxu_zdSaqiKLX
z`kIhmo7h|+zcJ_{Ab*t(4Ze-kynNgIZZrqP%bpi9Z4<i-WZL771Mj8JPsIhtMrU4*
zZ4ewy0`Vy?2$5~{yFiXTZV7ldy)YFQ92=c^Io8>)Y2ZENMIo+D6fKZnMa={4XgVsm
zH7c!g%RL!Q6a(}xF>srUSscp_I=a?r;c@u8L>#0+gKzsiFW=fPM4bTqa}3xbxdrlU
zu+fVhzxSR9YtLZ8ul-Kpmo97>DEExgy(@>xyJ&0UaPN6?vOEXGU%V8^nUS8uBkeLG
zr8!Vqdi?cr=Xx^|JX0Et3v9l$HcBt=@+2xnO0~0)u}`KuI|~Ik?M(03;GmpU+Fn@s
zLtKwB%x+Y}k1QrgSDa>UUIJRW(i$nzDJsF9BYdOENHhnIU-25{{IIc2`=E_&|ITf=
zm6TF>phlcG*h6X}R&9UxHNjFZrK0>qkXo_4;Z{<Y>MrGvZ6}r7IA5MXaoe}2;_09n
zZY?ErO2sbjaC51CkZqme22=eY+jc3YumJXOJME2Qoy=ZY=!D`k?xhV%q<Qjp>6;g$
z^a3~~%>_w#(w8-QrC<3bJz+_jrqgdd9~MF!AeE-mJBDMa*uzRQ>K{`3aoJB@B{ROX
z4*RwG4<aJ1#Qt>|?58$Rp_}lQ9M{OpM>ywx&Smii#e=!_(e8sgX<}>=#&q}BYC{_$
zlnIpak&~({i4x^d^#7zoU`kmnzYd^!=pgrA(JTr-?saP1%;h=mi0Fm>H4;JV^0yGB
zbDKh}d_)Ecoxs0qQt2G1(0!a#iT@frDLudmv4w8k{XqUfRgrPih?J8YM39JzCI{hH
zNW!L1n&%N*u-9FcK&iov7UiSW;gL~yXGhVFhESDY{Y@*$YxF6Vp<Wx{y}=3iS^Qm+
zJw!}g@JZN<g~Ul!(UQmTz~S<4=RiekGXQzu8yi?jhnvCpEL^8&scq#5Z$DkpuGN_b
z#E?Pp@jq>RS>C`-YFJuOC~wF~c@3ONu&q=9dh<Ns-vOT<Tp38=oHs!;_%uN8`zBRF
zI_I5ROvj>@oOzKHa2jh257M!{C<oL}rlVVZy(Q6{O$)m56bSEnvzmB)qlxit$Vp4^
z$dyaW(G>7*R$Mt~tcvrlLOYTaX*Y6Pn@0J$>r?e;{AiO(!8vn)uSZaTzb+nVYo$EU
z>(HXNICk!bze^g3*Mu!@e^CzQ3-jP;Q%n&LCQ$^!<L5!rDo8<6AL1gQTGR=s`@chN
z!#!w4PVB|OX}rPq(LQ%#<f?+2GhNZdZJ0eHy`!kjlTruKhf+VK?TS(>4&ZnQAYqtA
z455GJ!zaUZ(FwZy(97y4%qMRzJoWQvU+HH2tj+cPotZJcB<>Uu<stv|s)vPFHjt)(
zF#cZEXjPR*L76G9YHIrV6<$qb>)Nq|u^L@IsL5fl#>r67co4+U{VX`25yoqjio9XG
zMmJS(1>O*ZJB*4hi(;=sP;O>$)OG++@TEN&C+ijf3cW1Z-w{J`mtoLG0H#I}mzros
zx>|~i)Y-)KE_?HqT4zdAfznY<!=t7cxT}SY$E2ImI+(dp>q7RoO$N#m`owuUeKBz9
ze(XDLAW;^wbX1c>qNln1<b($5W@jY?HOj}wZ&H3v*b|GKGr)W02Y?&bqIpmiB1LbT
zXipPQzfJ;T?FXAfy$*Jf0=1)dUiV0a?s(~mI)U=tdC;2ZZp#2&`ZA017k#)nR}VYA
zVOtl^9(4iWKR%KQRBvy#&~VAt=D-_|?VycqN26)ruDvB4Uowe7*`sWrkuS_oLn^xy
z&^Jz}l1MRGP*`RZsBe}5!}yYBRx28FEom!-CDAkp{`1FD3A+nTMYcQCBPaByl<#WV
zUUm#cMG!gl<Eg|NR#X!UcnZDdSOnbn(qXNoG=bq!(j1CE`xB|$8BCMdfchS1k`ur<
z?UN^h#VP~9Cr=3I9J=Us1_(ENYSAn)%oK`$_tU8`3#dbQCmqYo0`Ld7Dlng>SC`}?
z&oqBm85%8*^mX@?_sTE?z4jcCKK@xCQpZH5T(W*4Q={u1DJ2+ca=3Bf7Z7{Y3)7^h
zs^h>1Au}NUU1dVtxRGdTRdt}TZg3WOcYa=llWvfDUA0fw4bzN+YAjAU#iuNw8>C^#
zSkLI*?t{E}I+_C$7kxqNj>o@Cj$aE8E03;{qJ!bEc}V5XcRC(>r@H{T3$XwGC6)CO
zxspvnBB?)<86OZw_FM3hotGhZ$s3^sqjPs<gCCcB9@|#doCd_;T%(@`d-wZ_vgyMs
z3U)1y^3fH|DOjr5W~Wsa+2-oFwMzBPe6fLT%7{8=y+Kn>wPVYH(I?)f49n$g!G<Ym
z0l{97K1f7r3KsV%RktDr`+>MAd3IAeNnts?i%cjt=(0M&?U~<Gu4_HrL+vyyE8F!H
z;jw+b7hHqq@NNl7NBA7OVj=_zBX&mtCBm59wY(qzJzS~L%d2{fe$9-lvyAYGffU8t
zsvMW@&=I6l@M<sJ4xt1E-4<ap@0;}9WeU9yDG3n@Aa`6@c!Q?L&}Rd5d%gM20Hw|r
z<Cd2e6VP-L-OlI&c@23GMK_2F8q{!9Lan~~2U@%R-L*4^X!3+2@*iJeu?_89;1E5y
zWI>{Ssup!9ajsL`o!DOxK+(0CwDCyBPN_i@cP{7jMU&v{<H}*SLYAJKlTC&jrO}bS
z!_f@NUGPIlD2!@u>gX_`q$y!j#ylHUFadP|;I^Nts%+Rzlhx)DM@1qUh@17;Jay=m
zs`S9fFqxVR{>d?oZiCgzoH$K%`UJX<iX1?vPg!2Y?l8+!VH*_JY>G)A$tzP{%D$n)
z9nmagdf?AgNk>V^c9+fopH?CG*xh8<Eu@(|qK(;h3|496A&)cV0bKdH5{U69kG(G~
zXdP&+gtvPpMucb9WTP}~c%aIu0=M>ylZL-(c<69>WVGT4j05-?zdVTq2I*Q+*|E_D
z)T`6cEo?~+@+w}(6DZvITd<fp>}Qg`dZnKtkt1v5uFPgHc2~2Iqp~E|-opgiZ$~a*
zE=Up=K(?zcfI882&Qybx^_&t50yj8I)jZj~WNK=c+4G#8+3zOHkaS#;RwD<Fc|(X)
z^rgSkT3Rf4fA`_?4t`jyLU(<zD~fW!{MzqBY%^J5Jm*cgXRu1~nz(lVcqJLOgc<%i
zEZ=Nm6wjqz(Vg)U+Owc}&fRw4nyFEHl$biIc&$+f<r7@ZhLv5RNQWvitZV{9Cw5IN
zM51he<LV8x<geFIEu}SocA2$}$0%s!6Obk7WB1)vFLV!<JeR5=2=%k3jNsbZ(2Rp?
zYePp)%O-T(OmV_UpTF#29g?;ToD((kM363xjplJJ<HcCS4U*)g0_q(sk4b@Qq5i<u
zJ@L&oG+Rs!?#ta?c&5%c3RCDCO2Nt|wK!{j)&o9wyX%6yN%EWpb-`WG?(Bn9%M>IC
z&o8HAPq=W6uHv?<({BirP7{`<m#O-6M0Ym@>8}4I8&(%UcQlf!$%1_Xxfy4{mc+!N
zE2?pe@?*U$)%o@>qnG6wTAg&IO1A<u>8i<8<CfefJWzETfQSW(RNbcW3U75|?x^8d
zUraYaE;;@+(9RNVt~`3TS5pq_WFIB_;g2?h4dzsQ%`g>e1CdtA+wxj9Bju{qL#S6t
zhrTJ^HB)0vV6J-}Pa^)G>cNVN7@hHYAqlqo6d`K%XX<2{NZn_u%aW3p99IQv2oP@J
z)ewM%-|5~Hnu6TB9;5P8#hlIh|H0+nG^zho8Se~U0&p#yGtW_G-IgHNhSG?}Y>VPl
zF}EOznCI8#s3e8Nwr2%%^E8ODvPWHGClfngceWgLn>8px)Fg>WwMdrt&eU~+eIv9=
zB*7x7H)rU4-c<I+iZ!VKS#kyEi0@()dZ$%iRIH62;*>UHI4iiN;bFNLu2`4_i{8xW
zVgv4fWR0-|6(3uzs;(cd(lvlgz`v4|J#d(+RQ1CP(e~h=afM-witlO5-lF#EuuRKD
z<Dj~64XD$0pC!k2XAfD6Z0TH<vMx*yY8=|avsF<EWna2hC6KFDw_72%KfB}`ZXFE~
zZ<&4eytb_rZnuPI+a^Kf&UMN$ZzlN>ww)-)Y4%NZO)GaYQ$2^m|FT{|SW@r3Jqx_s
zs(o;*HoB3{IwN=Q1}(+sM07V(mR2ySm!ttRRo2o%a?vz^qU!_PhKVYmzIjF(WGWj$
zTsDhRr#zu~X;<fG@;jV4Wc`vAsjCcBxSD`x!GUaKvz|fWM?O*Mrh_EoYJkvfp|z-p
z(hq!6a}+&0SkKDH7+vrg<xx8G<mM=s-KD3G)!#XLpoh-O6&jI5IRM<b2|&SuG4*lD
z1>@gR--+eE%yKLuQ$(T>MYj1iI!Aqn&M38+{})fCUa9E4lC<az{<mATrt6C}Sn>Ly
z*m_`>SbH=FY5r-OO69lWQD~&bOXq~uySYwQ9Z5!=Ath6|WXWzn8d-YKQMv7ClomAo
zn2#+P_nDZF+-E*ALsAhymkE{aq5D6nmFb2>=UiPAOA7AHYZLV$dC1$ny}4Ovuj`cu
zjA0%D9*wFff7y=aIA8c`eU#^LWRY+jg^xZ(D?xmGm$|$KUbj&rbThT%K<n70s4^__
zgTgqfkPKePu(|7oROrIe(Wn#X9cMRJz}-Gu-@cpzoP~Fy^q)(qC=2Fo2hDIrPjy(O
z-Km(?clnbm+Va&*h6u(jxkL(bpFPdN8o4x&lmo)CbR>wXL9DmC!@TL&!;GW&8_!K;
zsMg&lXJGwcj=Da~9VM|*6}7V~1JM)!|8!m|u&J$)q_TA=I^Pw(AO0?h+nRwSdqKwv
zFIDDH_PzU>Gt#Ju?&_{O<C+G*!!H0(rcXkz?cTkK^9<aNglzlF%Vb2C-s@x}g6X&K
zaq0L%9dc63YzMSP)kRD3)#~IWUTKk+dMmJa{YA>^pzeqX#;Gz(6pnUD9`e7`xtPE1
z*2tRzUR6-0TQ|~#gI*b9(XdHF!Hm2*MZR3!X9n_g`V_kDA@0USA0?lm+YdCp1<x1P
zky*g+8aPJ3xHtt}ynO%S?7-HmCjs!AMFO2eVL;!&@R6<J_@XYyPOdwZEm>q*R#3O6
zCg3Nf>P<k=*>x%A{SP$5R>##k_PG@T&ja+qJ<Y)NNr(BtOBgHUf%m>%;AUj)q01i}
zNRI+FW~f&Pzcx1wtlP@Xcx}`}5rV{{vnc)KzGf(m92%oYK-!7oPd(TSrcpRbW3b&4
zk#?c@CH>7{lJThX6vU0Qzi||=Rhq%5{iP_E4Q(8SZ@IV`h#Fc72s`R&6u$IODu_gE
zKCnmuF;6`Xgu4cTlo3Z9I9_qYtvlYs?!~mmj+fLajUpOy6!#9N%7E6ajUq(`OpSJ-
z{Lh-==qz9YN6tRXq3oY)ss&6S(M*{6avA}^=Wn_#T*D%NZ;pGp_;zyTcOXmL2iHec
z7qe3j9+E)7kam&>w&<pVqfy7_^08FinX7LkHP3ZKMHD`AM1>ai{Hg6Y?*^(X0rjes
zS{(=2FON3oELpESz^d({as4iN?RpLXFS%5Kj`UOT>t_VAqjd|K*-=DWNd`9!SC2)L
zKsxJ6m6uN8aBFfMxz#hJ@_2<(!=9Wr7$a}kl~XG6Qhy#IZ01KZ;ypIy)zqNhrepPb
zGCA1#K&di4O9;W%hhAEp4CaDrBN7C}q8?F!e`Uwl(Jng6wnvP;1o`iNwd!HH%=?jC
z@BFMY>@3^*lH;n#EJsAdN^s>0w+~A3PKJ6dS@FrIL|japJWiAY#f|@>lx1s>kNWEA
z+LV2R{)Xo4OTZd<recZ}2O~M2txH=-Phvj3JVGn10GfK10!rw$&%(6@FiBVRM2a)>
zY{jz~VRah|Ky+@PTb6`*(I24CdY*zG<zs2$vx6H(j+!<3)9>-tO^-eDSru2O>Nc`$
za8%1}f$TK<Kv4oE7R~Ev)o)0tddDx8n4<}>`O_DG-8d5<Z)S(;PjiRFFE3i3Q;p_;
zwc;g;>6(c~*I6`^rCtbIYkmFK>gNdf$R~HxMWCJXQlMtINs!q69ws)|C`ZBQ`%-(F
zi)Op&cd%00q=hh97i8o>@Kdc4meZh1eb~D|s+%yaG6Q;(FKba?(A8-cC+#v@!cn70
zt2~w#y|<Ek-piFNFYxIdPy77vijz?VT~-A=Nv7kTAVi5(4EQvgP8u0js+0bJ`E-Hk
z1lW7dEB?l8YAoy2nNO%QEv{lVU7$Mw_MY>~zcHH{D=&o2p2PBL<OF!z@G9^)pAV2O
zEzOJwP-2cwAl-Q~5TzBe2bcre>#sWrd<v>CI|;baSDyq};uAv?pmn_FB%m^%4z?3;
z_kZn4fOU|0Kz;UPK$`Oc*z=B`1U^Zra846|yYO`<0hYC@Ll)pY`t>IPR~!_8ivZ01
z>q!81n9lzx;BQU_u=px)98Ee-XYsdg+A`^^n|T9=>0F@#e*6t5K^1h`i53#08DPEc
zjlguzY6ksL(^*P%U$H*2nK*k_?T98pYX6&+qz~|d@q!QV{BR*dcRC|h3;M>`jL<?k
z+Cdz3fs<>mPgkr9lUfrJ*HhryqzNGY*^qe$td6R(GFbKp{QS@+L|GL@Z*hEGi@!^<
z3rATUO`!BM-l|eA9A!<^h0+(^uy~ZUQ5Q<zZ~`dnqA8UA?Fpc)kD|9ZNw(wfVzj#<
zDxvf%PXOhNXcDEr`*vtIQyv(VeIhh=r}4N>b7p8xN}p@fAs45~{6R3sj@Gc<hnIYF
z2gUHga9w@}1J>58BIQ_zJ9z-hpM?Zxy+iFJ{mFvlgsI;mq<4=2;tdAH6E}YR>zj>S
zH#UWAx4aXS{r9$&I7($#j!h%erSDQU^~$l^F_5CDzsMR(+wIY|k{7BBY#bnudv`t9
zuUi0fi}f<P+(c{ZQ72HIuV}IR$#j{K_EX7?343{nJb|qD{WoQR=REX|gzQ4DA4<i~
z0e4$E{v}RNM$ZPN$x6nqn-%S{(pLiBe;cmWf-U@5EhJa_42x&8qA4f($MAQFy<eAv
zQa>CTi0GfLQM9x1GXQ$&zpG9g^VS^Dt*B1|=fHoQ5FUb!Do~#Ap83&qyqIc7*viof
zoZlKAThKjk$0XWfEC|TadmV>YzE3%gA;WfzQi|=6Gb^{Z^Zr%3`qy1&#lAu;e;lY^
zkD=R+#KrJ!*t5Xg@cxi<!v^Q}JB4#)m#(w~!z<`15Zr6g3D~C_yc$>l2^XYIE3{Y-
z37hBw&@)>A^fr;kqx3uzfO&fhaN0km^Cx=|rvUTW7U0s_lNZ-rR5AmcpPn$Dv`^fn
z0<e4Ds8!y$PMS06E<pjz$`;_#{F|2<Hd6%9SuFtStYLbcct=+P*2OJgHkTPKz6zkp
z#(*-h?E~OuH(YofICxxgq2RYQCX#ZXZ2{+Z!#1loS<Hgi-ENxSJes#K*(sU>%<2<{
z(|asBf%Nni5cS}Ax_t!KS#$yHa0{SmJ-)9&w_y!1Z)yQf=g-r5bRFvyaDLJluio5j
zF-A{fHo@1Uz;l3K@qvbQPcb3w>XVqUwR<kSW<(U2b`caVX-p}_v>{V)T9Z2@8a||+
z)C{dVpuLrPr)V5>KiZgn+6mW$QYnHK1{$1i^}^FF4l|(jo5nO7R$_A_;rlP554t)#
z6@PtjnCxnsqj9KN1j<=0pfz`xw!5eVsEbbqB&o9soadhmymRRA%LIVle!_r^HU*Tg
zG)7xwZ3pL9X952E#zYo$hSl4v-z87$meGftZ9NEoQ*3LIWa6h;^T1#CH=tvOS~~%L
zUSlFQAoH$1B|w+ql$@=Ix`1_?Ve$aL4pl5BL=Vtsfm-{py5$%;f^?(SG)Sju?eLNm
zi`2(~{Tid8QDO3ylC(&@4j1A2B+x$I0%}??QIE=(6V3qZr!8Qn#q4#M61dL+>z*G`
z4L6oP&E3^ux<ESzu$3nVGzj5~Ks@W@AiH@AU|rk-W?CFyrve1?RiHh;1=O@)z7AD`
z)Cs`7rv=y+>`EflX<+^5$-&fcbq;X%ym@}pN()!(G!VqBIUp`?0ogk;KNhY-mcX?L
ztUWDYrbQ8Tm@azl0@$k?gEs66)1ucjA{xR@g2vaI&{}8+n@&%RW)@@~c}v6EJqdAa
zV+JIcErR$ZjhQ$Z!E7BD6oQR|;F}r~ZdkD`SPzG_Q-J<TV-nU|w*bkp?JS`F*aBn=
z&fWstXxiDpL-E%~Ny#p>HC$5h|Hs_Bz{hnJ_v2TxB#R_~@^X|y%SH;pHbIdc$1#CY
zC5~MubrLl;iA%`OTCG;n#?tP3cjXr(Q3~a60>7d{OAY_DRZF36C?K9OkAet~nm}8%
z;gRyH_(33qmw1~{%Ktm(%*;9W?!DTTwC?|xPm8>B&;8DvbLPyMne(_Q2D_?ZpyZtP
zG1`k7gG!JC4E3^P$d%}V=k!i7hqokiT9P*!(d&@sJHtFad3tz--QPK8^3Bu5Onu-5
z=Fs-hM6;!%DsJj1d)J<+3)#V7>#IQJjw`p`6z4+vpzJ^PGSsd*Amirw5F|N|0}OPe
z4!}6)(FZi1<0J#Uu@1nvLGJ@vw{e=0KF|O}&u5%vxGy#U);Nsw4D>`DfN>6^Uvu^r
zg9q7y@?U2`t2HRjTl67a@;Ak3SJi=9tBYhQiJ^+gkWpi|$hDEa*r5clz`r?}O^kQ3
zqy(_fTfFNTX7_M1TeS|gMxFJN7--eUqUNT$Uuyx1U){l2>+8Ub^Q--edroyP!)>nv
zww7fy9(6whmFobEb6`Sp!sTL^HzmVGHBXb4wcw4v#kdbA<7?m7!ZXem<2+FZUai6B
zJgtwjo#4NV*@-$p$<1P<s~Ur7d@P1~Q3D{2gT**6OU7Gv&->mL!@nh&&62z;Uw^}{
z6*KtcX<!ubtC+(#PYWmKR55(pCu&<cXF9yZqHU_wOH$iY6L3m#@Z@<Z3D?Qar%(Xb
zi>2-iI+(>DDJ#kdUc8*G4D~aeVrJ)kQtB6C%4tXyV$n1t>PCATysZK$M!ibWB?Twf
zNiOa^D&j7C=&p}(GIij^%{dN_{Kg`q+*=1)oZqNu#%Y{ll>6&Ii?d&fW<ACkhIweE
zaGtw3$5@ZA6w~;M3ygBcKZ)ujcW#`os1;^Mv4e5e*MS%3C@P-w5_=iy`Z^#N?Gttp
z`x$34882$C7jY3);E;bP*zZl|u~Pp~8H;l`%e=mx%u^kNMaPx#3>O&X+>^BxV^K75
z3sVeqRULqFZlTuK^9lPH>y|n&onaTty>`7~8i#OzQC?ODTAYWaXg0Yz#W0^rhKuT%
zI)rh_)iAuIRp%J}NuNsWrzP(Uh;lLt(ZLLUKbcXCN-uR|Kpbn6N*!Rff1S*}5vf$=
z57%>sSv{Q0GO+^})emy#=NWX>Ly7&Sqjga*^5r`iWPKfAi<(Gv<a-(E`UW7PDf=1b
zjt0Py%Uxugdsm7_U{eh8?qsm#^|R-^&ocJslX)!3c~?CRdG7O!{<B7N3A^pVr>)Me
z;lD1*Q;%?YmD!3zw0y&Lim^8*^U(3(OuOf^i<Ot16Weo#vO}AKKE`{m;*ziY2g`BL
z6FAH=^1;u@$PRH}Z(KPp>Wznm_nh)c27jY65x>m?u4DhMZ52ICFwJlus{=M}){n|-
z_VUg#*yDA8#<}QGP`fdJ!Or++Y31Ywh%<RnP~I89XzLq<>iO-x40(NnpzYoO2D_sU
z&^Y%!+6uBcfZ^_~12)c!kHR`<eu@$AuLHTBZeyQ*hT-OuVWTE|5uZLPe#o^K7U%y<
zqT<E)K}$;gM)`|}pJJ9<lUb`xtY>r@zpkIb$_)Y)e}9tk-dG22oWCD!1kdfCX2|!|
z0qy1nG1qSQsTe=w{m(Mk*Xsa{bI79d+8|(o(boNIqP9d8bI~9mmW#v!z04%H2(zVb
zu}ENORHw*%-kHoVW+*H*Bv?d(?X+WfR=Ce4HgO{&gQytrYCD+Y<;k2AJGUMcqBx<C
zu`|g$bj;U-N#R0~vF@z{vmPU?QNt7i-rqQ2io+P~p~j(-+ds!}k2eUGFc%o>+<!~d
z#T99U7g3~`#pYyIOLD@a`W*@^`k2Wrr-@lOz8GLG2TmI|4KpU0#p{z<>F{z>Nv$wr
zOEArN=l{DX0tEqQJ+gu$jiC<O5~LXU3-KH{%utT?hZ$SEFk_y<pHL>^WqZK&h8Y0n
zC4k^z+bZ4s*9DN(ur(bSf~A#!UIx3q4$zum20%@i(a&Ia)B#%4R07n78AV3Bw?U|0
zm@&nW_csXIgc&mo_D~(5HNy<F0*4uM4EJ~)ur<RBz`8JFff3L6tPH<oy{)I)ILzo^
zxV~iAsCln9%z*fzFhf{OB(sX~t(G5VfWL$plg#o>$*k2T)-yVduQ<bC4>t%@!i;&w
zd!i29nqdYS!3#5j&spVJ!+#gEQf_WY2r~d}!i*GyZLI^erauQz8)oz~+AEV$ql#I7
zm?2yw%$Q;(pIU_3ioy)X(5TKF^EvzTiGw+2D6A;V2uonXj1+TECri=rFau)1|1C1d
z*ClgK?A&@(h{B9%#{O6`4;}OMU{aVd$5@Zofmx3c)-Yp%0nhkCqC%*!bplf~$7t&t
zhe{zqFT-8mAXvieXRLBE=881J3o|B}#p{z<EkDeFeuu)0X=d`i)5I(sX3R2|&!0AK
z8fMHhi=QR4QjK*}Nv$wr!{#7(#14T8{@c__amGg)7H5FPBtu{MA2QlPEI80mmh}f3
z8#a59MjxZUNV$l|<{{S`X%I4p8Uu{?vN~{UIx_~BVvQ+AyT1<9nz06<nqXsw(H^P;
zwWeJoR2yx~G2G*gg7w0U1;#w%i=rIK-By>#Cf?{^wDonM){Hl(AvoaZWxVU_z^xf@
z5Uz_j`Wf<$I-u)n2o5=lj5nQ(8#VRyh8$FZP|P7bK9|fZ#?e}S%s~Q3&@s<ESAD6r
zBGolcjqBLKXqPt%Rl<%w27FN+z%|1TY6maw7+}l;bzr;6A|dV|Y!i4)GTNK!K&|QF
z5vq+mW*F|<$*@uVtUvNlHWGR)Fqd^-PSlbm?{*61)jW<yfqI$I{$z$RLt;g-M??e@
zd`vR?k0y)J@Zf{wfLlDrEPtHLI<bT6(jy8#g0I;A?B>5N)UKZW>jI_tqnE+1uLHC$
zldJ(qKO^4JKx7K^81CK%!cw>}#d!BO3YS1<80_I>(3R<h7lh0+kDn#;T7D2hdLD{G
zg0EU-T*H53lyPO;!eK~?*=#<2>@*JPV;;98^IAq6a{0z!fB`?Jz!W4L`j1AfcYwt_
zL;v}IitP`v;5bBC)*pvlzR`<ArWySM%0(Pn54qkrgpfH7nPt4M*MVEpzcIKJhb%DK
z8S~O6$<o%0LkQKxAsvjiz7EuyhLccj9Ma2h*Eb5*i$nSu^NvPgn>eJ%X!q8ES~Cuz
zhTu44it+BR1Gi=zLbxstnPJF>>VU4R?>G*bW4z#NiJBHQ_w~jhRDn<&B0R20<`v^~
zEk6z+0VEFTW1g90-fAK18mGpMEHc{b8igux$TS0fpbp@gaR{}87l+I;=I86ct{I0A
zwuwXL8Ew`7NmL|l;F_);q1rg4gW;}AhK=fH{c(u0kvOEExx8`_ZYx>>@i-a<nqo%(
zmdr3_NUSIhiHKn0ka=c*(bp3@ui<eB$pPoMms##gW}Vo<b?FhsAp;ElvScPpQ%;IQ
zrWox0Iza0($r^{uFyccEM5d6B;T~@wEQJgUjCaO2617KLx2}dD&<+N>JQ;Lldf~+(
zeaz#QWM0dU3`oyIamWC3IdHnTh2xM(X7l>f$4=vrY3A|1WL~NXZfdEu9<q5;Fw1~f
zJSr+iLBfVFHYyGQi#~?_c{~e_LzHFxameOPUK|p9(^lX&_^%5>J>+`h5JKiSB*l1J
z>%gt)-xyqqL;4x*jyh0l#vz1i;*cVv-CGB0O?yG8HV&C$xceIg>%}26jQLQbuuU8?
z$7qk&fm$;Tp@!f%WP$O{_?C<o2_LJKtY#cSxGoOqV951#K-blG9EbEW-as;L)ZEt_
zhfoDVaftBvvt(W|PS^6|5E4M*kZI=mv1HzAA?q5a#*Lg~v>!JLRpOA~F*aBHcQJES
zGY+A4@ZyjZV{Wbk+f5b;>mh_~;*dT@%hZ8d(|;sX8;2Ab?(dUfqxxBY9HML_4w+#t
z-(G~<isBHDqfwv*X0+kki54SfNUSIhiHKn0kUnOAPqG*dk3&cfILA}W^4-a-6Fayr
zJ)$^dmchTC%tS|jU7!?)EHKy^k0<t>g4Sh{H4f=u#PtnCrjU=}u5TbLg$(_ScSoae
z3AD&yuS*79nO=Bt$TahKUox-d$04NWp*UogxqSX~aSO*G^UUUFr;nY+A;EX-P*}r%
z7n`=+)KV)B*{~7EGZ^vD6qy2%#~T)i5RYlbzV*8@phG-35>cM@M<M|CLXiQ6KcZ~J
zOZ1@Y4Mhwz$0Cyq_@+95Yx+1An1YcRhI^<E*qXtJfi=;{9K$_c2W(CAX<%(QvcPy}
zd{25Yxq0iu_2Q8Z23_AUa1)U9GTilbz}5^%Oj~e7($9c*)B#*GA~C=&Bq=iHy>(#M
z*U%i3OfleWGH}%N*Bg_VDujX(Ve->tW-%Vv@`Dm1fkY+2_pOe0^IvB#t4%?DBi4A8
zy$rXjVXzXH3^3x6I*@C|C8jC7z+{p^Utb5fn>`W&69aA{lWB(gSRJr6oj(I>Lz6ki
zd(saQ4NX){>kmyFABjymn9X&Iuv<}V;<Ger)X$v$B$;E(&{$D$5|zP3C)3RTYsqpn
zJUTIgz-L}yp64zsy_4%xCW=o|jJ`FQi-r>Qp;Ca-&uDklfm)w|)(EA@koPtcnxa9*
zyT6gR6i&=A;6n`qCe%4b`*AXAq6w(4AH66g_@Pz7HT*YbvRHnUV)Q)}rlgq7=F`S5
z9H;a#pIc5NKMhm{n8|@;W;)>Frke6tE|c9IzSwn=vEEpPx%G3rUZR+>p9OH3?9fj$
z(#PsRjB^h>DecWsjPrOMcyXS*hi6>)1;#n!M^WQgUE??d<KbD~y@P?)uN=^G+It!8
z`jw*^Z@r&!?x+JV&Rh4Y&2D;;k?ySnG0si*5S@QM#bEc>0a~MX*fF1Br1@mTsJUCj
zG53THdE|nA{*M#2D#q<tl1J{b7FRsQ+_olj)zMpHtXb!Yamp*l6X$!9q25>rWSsNu
z)!OsAry1>ib)eQTg~r{UWt^|qffqLidQw_Hdx3%0{UlKzqFT48pB-f&4t6i&=N93!
zR0q47mr;%)vv_ARs~8nus%IU~+_==U!uY3&ZQ2Nz+LHjzT?aF}Jeg@?N7m33a-#bf
zHj@mmBe(_}dCx_Lxwj6u8s<~o<|)Ryzaf}t(isMNs3CyHrDdeYSB^+<3k-Aa&k_}F
zxqa@r#wkYMoXllOuCb@LA)mO9@o#B7pRhALzzhzY4o2z)Pcr)Jley@Kai-r(*O$%b
zvG5@WNx}@K1`CBT_cez@DgEeJ>LqvLgAUWo>inOJK2VPR_?MQkp=jyMQ_OTao;fG@
zRhXCrzgPF$HePu<M8J0{0>QiB6j!Rn==5lp*adTn{L$r9(&Lh1^tt-DaBY-pOl^k8
zD?PZralEpw=U^#U$@Zs*hNwQmVaF3vpM3Tp*+hH}y<aQUGB`2ZGiIrK!qiN<NM#4Y
zR9v!5)X}co2UZ32U+XaX{+H4$2EJWi37S3eis_-CpQSnbzeTEpxuMD^eHQ)1-TGR~
zpq29Im#s>*40dlM%APKda=DdGC}BAUyRV?f?OmH5w_-*m;pi;Ia(uSwdQ+RGmeV6o
z*-GP_POn|?&%HF_vT1zok>%Li%<_b*b-=>7aU6k}$mcSJA$&QGU%#kLs#O>pdQrAi
zpoad)-CY9EQY>XNgxTlX-l+W!_uJEuh~BV<MD(VHhOiAk=fg4mLM=hIW+Yn*dRg=r
zoEfbG#J%0sfGgI$fvWMp96g^MNmp_QvP9mi<ZyFFWN95tmreN&t$k~*yel`7&khkx
zr-K>FjpQn(Q&U~BoeHCx&!j8appWIh_$;Z186)1XirSgbfQl#%J}YA?+8NK48n7Jn
zGONE4mf>1QAVVX=01O@qX86@-o+DD*ae-FwlmLcf1cMhuPX|nOyy|)S;~CRMD`|#*
zr;goL*V?^{)ca7-%hJ9>q+Yb*9_%8`NsYm9z2|acgkg=e&eC|W3A#azygv}M-#9-O
zwN@`>f)u|v7Y|^@b$eIhK--@Q<jn`y#EMW0VR)>NM*fsv{;Q{ns(7~MFFjk6A>;E`
zcXxg9gdO@VMKkk&IPIDK{KUABk4MO4Z%}&1BNuzv-0aW^sf7@j+V7~QmqHWB7E;^+
zol?S`%9eK3Lp;lsX%!viJ=1U?TVh51)Q7l~nA4OR5E)$<1;g3Wx}IBUj=p&!pADwD
zy&m{YX}3X{iM=5<*b`%ArFz~hJV-8>&V^=<ZtoJgtPq(0`{C+TU|eUJ=O6!;bUgWp
zP4}((s-18}>SA$S&u}S=%U!tO|N9Jif%wH0ztzm=(_HR>*z&C~Ce)bDQD`mfv#l#L
zlP^I(CaGLGSI7sm4EKe2SZV$`akr19M}m2Vnn=aftd$41I)R#%h!fOwZZOG6vllIf
zD2_>MDO;hcJC$k8mQ4Sx?fUY0es^pyQtu51f;-p6_$|g!+tVf8(RvVl^MZG=J3d?}
zAq`+#SEj1gv}HLq!-dS8v_-Ynh=8Fs8$@K-#WD!*_jQX5Wl>&lDkzJh4!Ch>WF2*~
zvUpARg=OpLQrXz)T^lj|+e)QE39Z2r9KTp3sbmjT9(-V9j6Cv$t%H-QbqP|$bxJV9
z+~4v{kz&z4G0pE)(KP?saPvbadLylGHDC-W17`D<OHL=dk!;0g?`D|I1J4q62dIIE
zY5YLUJzYP##OhItp(DT|@<5lQxh+{8!?!)a=JEjablo#q1&!a(>Dqw1J=G;8tVzJf
zP|8`D_+XZWdCgiDs<jL_)uM7GU1F`*!JEyqAEy)o3J<<qnQ3dCw+G8<r0Z4beDgGs
z-<K~O%+pFzFvY@bzEoOD$HfkPxg};?nCMamFwZ{Wn&aDCFvo-Gp<8I;>0=I?HibE1
z)cW(LVGrjxGH<E`-n?mO-Ir5)c=KisJ#BmQ-ml0k=b8RinFXV>jg=Oz&NT>af<Bh=
z9U^UPeZ{6K=vk2|OhJ1O;ndL#gZ<7G+61HNlF_|_>pXv=YUPF%r>GS{7e&jxhp37j
z`jX$hsKRv|lk_p8o3@C`Eeh_(4h~x@cV1HEwi~~ypP9@(cQIy5b5J7n+KO)rjb#r7
z!Xo>8X-K$m{bLix2fbBWCAQE0`LjHJ#Y6Iju;@lAsiqu-7n$z`FIcRqI<y70GYR&Z
z!<B3~NHN+AcSx;rGz=cO%MHYw9U1eE6kA7~tA(?xP%CAVxEfHQ=p>~I+h4Gr*8mGM
zd!q<tg3!J$S*wL{;C#%I3`Tlv!uY4{YA#jJoUnfPBRI{B_NS3B2t<|>yF?~*KRHLH
z|8MF#@fEi2a7=orzBE|&xG9~;L+Of{)Vw)0G&a&DGgY*AsTGm7jPJ$Kbbe?oYu6OZ
z!7NMm);%KOfu39?JxKkD;6ZXxEtYCK6;{xr8~Lmej8I|mKu7jT={6&nEm;<*YhTPW
zsjz22trG$NT3__+sCy`Hx)zKm9mf^UqPE)BFq4-vBz|uix9n=P@eH@ncL%klbgH)1
zub!)I^<yXNzAl-pTWU=NOYLDJ@-0Sh7g*R6Q?Wu%-sv0+J31io(L3ERwv*gO>c^=n
zvgzJqRpd=ZcdE!&5c#-A-j_YBJZHjm>i|*fc>)?6GwT)1bw8IdPliYvdWkj{rkPp#
zkuc3vYTly_l5I040sxOyJ>VF5!F!-S8D5yWE5<1U{n%ZuqbqJ`-Q^U&Vuv`&9`~r$
zj{tEdO6=Zfs(7NBZmKz3O*d6NSxq+`IOoyPC1i%E1!2rpZ;4DkCde@8s<*bm_`zci
zCNk*iGN7$P*`iH&IcMDtLs<9irNTH3!CBVgO|NBbMzqy*pN2CSCpTKJ)0-*d{7`ru
zWN5>FC>ZeDQD@XR#`f_bLi|4Fo_n2)sj57q4GcY>S?>w-vK$<$d$QV4J*94eZ-;E<
zh<}m!zUoh<6{7P2*P~s>u|#30bcY6etwwAwI!05WmS$>lozMywJ+5hpZUDCUTqY0)
zKuZwaipS~K0UkC(O|k5M`TE#8$PDHTwGT6%E0^I~0xFp1_uqbO88}0QejE4C@Y|pG
z2kFuDFeaPp%zg$`=LdIbb=ZjjalyGZmWY)UkWYDJW3eW^q*|`q7{{X?DQ(pbZ%%ns
zH~RhAlLle;mBhuLRDqzrgEyZNStdkpDy=oyaJ&vpX?L1p9FR^;9Qd8VjTp>v+kNuw
z(uT+x9bo?r62H&OSHgX_OM{?4;L%-M_)AuP{k)3!_4B-eTJ<wkX<w`=$O6o9CFW+N
zGAtUJ#d98g$(+y8;!Bq3wUGgeiZL=)80_g8#`?yFKv-Y=PSI?eNE9#6_CYS6!=>+B
z<e_(Q(V&@p$)29kba}J~Q5OAwFvm}Ce769S+0gYxv)ItC&N7xmOmNzv6amfdSIB;b
z`mcCMUSm}j3h8V^xlqESm@j8b6=WfI;a3p6$IACp{@c`YhxLjzwP3Wm>Ar7sO4X*^
zJj2SlV<{gr8!qMCaOGNL6N2EqmcjP-aYM9}3I#JE^s6ar$&BX4j90ivX{}MdV+9h-
zV?1gMqG!;DbEUFDc2<_98O^4Prn>zs#Y-O$X$*)b3WZYO;{<83d<K#w<1Co8fX%f!
zxmbqr>`*S9ziD{)C?%pNS%A3{EJ#&-$Bi6beaCxAFo)YZZgi%qvak`k188D_p8kl`
zwM@qBm}mILiQunV3{4bGAwTtE);s*g3KOn`Yz7I|m)t<LyKX!;WDB|4w1Q@v-c66(
zl=~-gnSG`|rEZ`4sMK-X;&?qeZc)4*HGRJP4s9JzAG%f?C?_xrXXKh=d2WAD<T9zz
z(Zn_qB@yHSesNL&TJx|Us$!hJZ&y5FPW!e4dFkNCgnQ|LW;u7bAjGYEdd*cnXg5sk
z>3ZR(IbO!w<fo#Oy<8}W)tOMUSqXxQ-9%!lY+Rg<uFL<^qOqhQGqjhia4^Z@W<D-r
zC)lEwGt?4ok>yfk^gsWEa9Nr`Qs%X_y0$^GB2BX>AN{0=w0x_i;w{4}S!w22iZA^W
zOCzR9p;u~}ET4J7{}-wC|FC`1`qb{pW!fiO(GIR)_ncI81x8ARuF=1X8!79_usp94
zxiB=1r&#XE9x9H}2AnB=bogNrJ!3XGz2|PtS+<yjDdrJ>Mlky8W`ve>OfoPnOTwP<
zNsCPx=(^_#S+a&b(VVF<qu!**UQTD%SAS%SyE>3R2G2K`WZAzcb!aVT$r)2jT?_q3
zUeOnK?7S|aIMl6$3B<GWjP;ezO1l(>hs$;a)J-fcQKKJT*?|-=sa}YvOGRSmeYW{Z
z8a6YSXO7o>jyXq`izWuqhe^1eE65#<t)2$gEamqz=G)@28CF)~rIp-vA}6j1<_zWx
zW9|Hcw3N{eZzc>iN+OTyCK<`*cNNFrk@qw7yS^kWjLY&4Z;OUqMT3(1eoQ{i!JS~+
zt&%HI+tCEIC5;RBH7L8%c3YQoAu!3Kl=FAc#G8oH8>8N)?l%UrT<KfC9Ip>mj13Eq
z<z1!AEz{}|WSe(@k$+q-2UX*0#OtwqfG+}AQQ!JC=`T$L`o1W(f}q2EPt<NKiS(k~
zSrV~7x-RGiii6I!NQ&HKv_wi{7SPyk6P0MVzZxPIa(5{=zB4;qF-I6?xF)0jC$<xY
zZQp-X+!i%jVuIYjA=sO9Bcm3#$auGXU0Q0<!Lvj@M)U!O{<g3P+mj_gnyj0_TwttI
z-w?4m`{tQOUDr;s1X0e|iD*-n&fcJZjP5#Zb`3d}E@QoOD0|3A6g+ArndQGtcGf~~
zdm=5VZI>tx_3N%;8qT?haLG4gbwwwmYTckoyJtht%P+o609>VQ4sD7b?EbDazp;lO
z^z31=aF7Pqhwj!Hu7##cHd9!|lf7*wQE{#NU5S~<O}lxMc&>XhDZCeO4X1NsCJb<`
z9aghy`=~}ljI*nyab5<va-Wb&2F=+#HVq?HdD$K1LLQsRUzi`qCX3PZ*ly%!%r+a`
z4@bLgf;oQa{oj{9$igA`k{h2U)OIPkYV7Os2hwA?A!QMQpJmwJS@7ZCInOK1dXB+$
zaa8o7EbV{ZRl&|%x~+%n5%e+OfBr~%)@@+1W>Htgz(m(S;F*cVYazNMD!u%rF0P>C
zcDS_&L*_8A->pT&r2U4_fZM;uHRSCH8U<oyl{BK$+Xob`F>>fgw#!AP^IW~3N;OUJ
z`}41d+s`>p(eBBWu^yKjvY<imW7}BI{;Bjv$m7rf=bWRkY-`ttdINQV2K6%78x%Cu
z09@hr#0p11%WwsZ3I)>)xb<fu?TUbLio)QMpNIWqK|jO({m(^%Sk%!jRsSeMduYMc
z1!k8wZ@WEYi#A!FIL|Q08-5|2&A!~5+&<b;wyfsGHz$>>-AWs_DcFBHE)j$?D=mhs
zi3w5r)=-^v0Lq4lr~*ZMCzH<KiWDU-!)4)rC6x#R7mSzZvNF<AE?}v_2}T9`AA%=r
z6aDtDq^bO-ag_}-=RxN-TP@lrhSTp)6e`)FppW@{;J=w)7+9N2#&eBIz!At{t7|2g
zWxRiG`8__B5;9jXOKPt4fla^mMV@f_slQ8CNyT8<jb3{q4_E;PoXHYPW)IYi>Vt4q
zBW;LvQah#GI59Rx7R;>{I^S^q8)}z~H?pPc4US?~piTz5o25q6rAwvs;b4y2>&G3^
zZbx*D9t+FWjYe}hR+jYvRtq`dhX+_&_8;)dy0=#dVGoL7Nm-`amLsw*jpa0L@gv56
zMoBEF>8iAJ10i5ZO$$qN6aAQ1enKZDxcV|WTPED1yhk;)pq>W?;x@%Lbn0Qyp+h3e
zqCHuo-3x<vkirIM+Xnxa=Sag3!6un=b>Q`ym%4>XQ$MqD6c46e>RMPI*agaCv5(AF
zfNAehd1BCY*m3`XY>}9Gsp}rQPh_*Hzek4kfiSZkB~OHtFV({nEqS|%WA3G0cbv5O
zl9uswk<QAif<5AK-{*vy_sQ6yK%2V&{+P#&HZI7%4UcRrG8aD;rE_^~jZx(@+UReK
z!IF$whV}Qv4Ck_ALmD>v+hTl;#KsiW8lm%s4(v~fd1Ur<V4F(#5$hUusfe!WPT=m1
zrZ2HiCFYSC{HMG}PWva_1`bdAk9t(MePt>{HO?Da{+LHK>cb;t+S^KE=q&wlZ!d{k
z@b*Dye0Sq(TmV1e(M3TRf7Zj7N6Z4YNm~J`!!N)vX>)?gWnq<ESyxw>CAA9s++H0R
zCr5VsW3Veg$vW{v{8JvCHHF#2psjk;+Uu6#VX7*unWGQ^W=sexF)7GQWlQO?V2*9c
zLp^L$RsxzS<gr_$!k+CML%wZ;n5!jv{o=>>yX}l2N6Ex&E({WPrqdPYFwH;Xv8da@
zt+K09DB(6wmix1RAo5%P2c7V<!wI(b)M3xorpLq%O&)OuM9sp{DA8^RnW`e2-Ezl5
zWHwCGQKH=ua@->uJ2-Qs%E+EL;*6{&sb;+w#Uhc?%^h)r#L#7!9C5=0jU%IH{)kij
z2{(Ek3zNlEEO=xc`lq5qwz88ianPo4_l7NIoOtxS-2y{{B}5g5$2_V{yP@c`BZh|n
zja+iByt9YK4|7K*T8FVGjh$5#+@iV>R0aK^Sk0&t?RqZ_Q|e`&^(=o|>`+{)pKF{o
zhhAjV58tlZEXk5Sr<?~QX4&D>sJBtE{;t8b>`aEnp-LvZ?`qWBx-(9+Sr+NkfQV*&
z1wXk;vp3Juev;huOkY=CjHc{PgtTsZP`E!;T6w94v}_ZcxIx;AxnoGg)gkRCh<(Sx
zuZf}a`1PxzNntPV!I~VZO-o)gB>q+>iZ{8RTvj=u=1Gwfjv`HL3i`QT+p=6glMIt!
z)LB_sX^FPqM1DU7Zb3i4e<~iw?1k~N*>=OD+lQF|Yfl{n!&bJxC`ccejG^ED#sT*m
zJ|CN)2bDVm&boSedPvk88+u688yk3=8{KX0YEjy#+Ny99a@Dm-ZPj}d?Zyo@Q5Z~f
zZQoy%TAM=xqg{pdJTB?1m-MdmREIm_UB`U*!hCt6Sj6V5?9lFLVse)G?%pq&L5ay}
z9(>?eGcoC*-$Ka*ll_sr=K#ZgDFnaqn;O8@gy)9JmO{AmjQ8&)U+hQf#zjQ8jgq%E
z;~C5|%p1$n3kP&WdOc39(R82mOjMiKt~ZW|BvB=WI?b4WTJc2{5II<-JzOZ->k&G;
zCZ5Hu#0j(1BDuW~XOu_6aGLpjE1oZdx+Gh)I=S+;@nYq$>C<3=LB4lDDiJz@sQJ0%
zlx9dmzA=Zf8S@nf1)Eeb+CY+JYLx~`X#+(iH<PgK-cm5dsHsDO9xwS$9&b@F#1vV<
z5{%SK8LQ=zgCpds!07+cJ8f^ZTw<JjSf1Qt+<z5RNABEmBRGj6RMU)7qn@Qeczt+M
z<PX86$Hoc=uO1rWWo&7Gu-Rx6;7M$9c0IukS>`p%JkGsGcrDfw(UxL`$4C{?8RjD|
zljefb*>p^J`XjO|5x5Dkbus33r~xw3C1*XPiY&_wuMn9Iq%{+PZq&pT$Q(|hD>a-1
zl_v-9fKTIU6>U<=pjTC)pGE)7QK>@gEEqcp`l5PHiQfUv$#Sz^V>@McT&?D~Hh=gk
zsg>6;$Gncw%KDyxR@V0pTo<Baqg{wmi;mTd!2j<JLl+szz?tGUc+IQ1Emk@da`}p4
zGv+7%x3sf5M&1&LI!4}_s`^0AFIuTw6P{pmEKu8P{x1;B+|a^J){`~1Bj{kkj=fF<
zq<#0$BY)qIYNsCusCGi*JbzSUFi9!34$|F7P4~S?W)41?8lDR~G`FutaBbpTXp_m(
z`O_@=;Gats$|^8YSSlN+k|*^f#sQ*Tm6F74N4+N~PnEGVq11-%lcDnb1a+4uD^(k4
zjSaA+UPZ3Y-eX*^m2#MfxXe6z3^4w0zo8yJQER?-J$hpzBSUeWC{`b%ZMjc+#qQ%p
zbN=8?jUa3WSXKa#|JA9=<gbzS)$a52Jjn1m(?=&-xjT^KRpVzo7Nl{X{2caJaGO`t
zeGfKH3*pm16I|7UKCbG4zmh7ON+5l%l?W%?kv)$-VGZ@qctUP88k$06Z;2#h@6t?b
zOI4*qew8lLC;3ln*HbRq>V@{?Bv<EwH%qnLdIoBsJyt#-qbMZ3P1T?V{_#}gKQtME
zUe{Kr>h&B}8u9L=H;y$W9@2t16@Wyn7{~7FdgJ5l%NpKHhkksSuPkWM*%JJYd#P{r
zBS4?===%<kWSFp9zrz|fP8#+L`L%L82MxPH`y-g;_J7&mNk4!ee9k>x%5rJFZKnWA
zRO~Vb9;O)h{`-YNSuCb+`121wU{-5<yFcXi9C(=sqLM-z$5{JV6G+YhYk??yv&f#V
z)faO|(d*Ptc)iZqImS3q&7vAT!xj9aw{k_XX%Rj5>+f<uHl*iFn=<EMiaEXVZPK*G
zxR{|B6ERTR*lt$&me$Q{*P9e;v=OFQl*ivLBAGp{ZeK*zm8WTHq>k@5vXQQ)m3nEU
z1(xJj?+}T!>dJMgRfqmWD;~^P_@DFNrdHfx(R5$x2aT*)zw!-&cUpc=epgksl;={b
zg%zwJ3Xr39>tG&V5MHfF*f-sG$wDLRhFwrT^I)Et{qWt93J!EBW9<E5c_EHWKdsrZ
zG7U~r@AfXGa+u$tl<2VLooTyq;Z*P*%k$~)72XDINDo$ocS!0CC^>~Fw3%Av{`eGw
zzWIFuZk!Og>B`$)V>WMk`BrsSjD4>5Rg6g!R|V-Z|K=;Xk-oF*mEyW^i}b3K92J`q
zIwJK9OZ&7FBDI-SvC1nZxHY71X2&sgK}QwCwOx|pi85Tfp3_~o<|=eP1RF-z^<aNh
zVGO(RQ_Oku2Soy%TfxRR`(BR3TMeKa>twoi+1li7axfE;^<38jcND?|ea!nWW<>^b
z;L_i|YxeVE^R6rqwCHYXZw`}-jJ(dp`i{x)dZDH1e-~DUJ@x4NZ?=p{F}q{;4LhmT
zLmRP8ek-LNRo&__RkbS((_GKDfAas9`s%VlxV~|lzeF*k^&QTQjcunrD!~j_>%M>D
z>X{2V)wic{4QK4JK;8W))Zk&Wt-EI@cHB%e$XgZc5HxP)hioKyeV{Y38w6_?9rB!E
zke*M8WFau484jw|9L7xUVS(OBCq8=x@}cEGOS&|9sfw(IY2I?s!7Q%)Pf;JUIA(6f
zcuU#EYXz*6^ZMrTvNli)kvVjk@yW>hOYsvPowl+HeKtyGoRdC1J)V{Fb1`(go!}Ag
zi7{&O%6!!W=JA;SfD~xKCv<NxN_EPkrH2lr^O#ambh6^Ae*hPf(iTvVk5{_>ixtVV
z3I`f96&IvYvR?v|6BSJ$v{0+qgK@x_t#n=bBdd_+fxK|i1EMdA2z|~6VtV%mbJ@@%
z-Xq&CEYy6Z>-q}w820u*c;!Ks?Fb7#*=!u6`ktKVy7k+PQ8wY{)Pb)3+XeLwDs$?9
z4ok$YM43P6Q4Gu>M;I!M=kjTs4@AM4!%7d&S~`;p_vnBZ6l*{FSg$|$HPP>?P}xlV
zl&KO#S=Q)uBG5z(sV19rL`2zU(wR}aB*`OdmN~xpQQ@p{GNMnhe7LNPbrPYc676mL
z)C?gamptJSHPW5+vH=u7n#R4W>+BzMkC@8}<{V*(tvXDX!O=1E8LrN6e^YD|HJ#dg
z?w-!BA@*US?Uda=ksjL)G;>ZX=wp~G9+Oron=3K)>c;lPm!{Q2N^<Pd<xDQOO_&CK
z%x6LPtq{JPqstR_W-CbIIWB^}|J$*R6kT7hSqXex45yze!6f57`v=lm#+SjpG<u!3
zp4Ifj^g<~&LK7g|4$sAjI<I`j=oNBO1aUaJ_V?uq;c|%`cI|9C!4qm|ayR?9llQbi
zJI8Xk`ns1Z@eQqv5olD0L2E<+T+%a~Gk0`)o9f80*(<WVy&AC>bQu>)4>*xmfcF-d
z`3HU?Et=0}hxj1|pnnxmRa=`xQ0;bBX*^$Y$!+Z_@9vXtb(MEl;=_8GowK1^o5OXd
z3CAv1&vLbUPD%Am9}IYXKvz0?0~|iA(WA~T)f2NsZM8sEgN|GfX^Y$3fmncy(wu*r
zbXcyn>vtW-f$BrsXw6@CUG%bOzbhgdC;M-HZta>26OxaEk;r+vc0F4d4*D79uYchW
zO|6UW5fNJ)wO<%tmFzXykzC%i;7uj7u^^aXxY84`usm{Pl!}X%e6l6NCYWU0!CyBT
z-v)6~k0RsW9_+M-PK<rj=2<~KET3S2frpwJ$Y5K3$m(;EQQz0vSoGc4@i)tuSF|+{
z`?@^0OCO`|UVR$Sx0N%&00aMB`{`lu!eEAxk38u#ao7+{GW7LloGum{gMP;TjWbUh
zkIRD;gFoI#CO2kBf&~Wr;aLroenSvE*}}bv|28$kF7yU74EL8$X`r;%;`**>2Hf-1
z#sc>S1B{sJXdv>oK;S;nP+0nGQ834lN6&7g#J#~3<2}(x+}%NNjurDg{I?;hwi};2
zVZ6$@4Qz(prHNpY0XLo3K;Z2`AH)5mp|I&7IG@{>|2Cw3x8tnNECW{7G_oDixcgv|
z5jS1XK;#>PK8E{ALt!U^pp#pe|2CwBafmjUWx&dX4QvPFZ3mMKd2fTDu|GuJZnK4V
zih<WZtuEQI(q)d^BZhES6^P%QoJTd;OMGS-cMLF}($j@s262q%ftyqKE|QEo`d$Ta
zQ*a@eWSr7(3LYgs)H9~qZlz1VAaJ{ePf<|g*58~ZIEMLVJlv8U?X~N#HMd?M%(4Fn
z78v;@7qP%Cl+iP}QOM{PEpVxYX^Md^y@3M9fKaz*pW+xRdLac~z*#VWBwtD4iBrPY
zHLQ0&$&y@siAZE3Xn&g{HKQC^mJrOIu=e9@6Fv891nRbMn2O2HEJK#9xZX~JNbRaZ
zK4=-=9-6%Lq>W8EiLtSupR08DTB#b+9M`zdYI<u%{D6{q;eLp&!*fAO+M=Mhbw8;B
zN#f>lU9Gu2XOgA+50MhLt$MM&ChwAxX=~SSlTAYQAHh5$?YmU!tvfKiOq1@w^fDkz
zS{iII<7z+;lDOTxUb7&XfZBBaB3Wze*4av7UpC)g%Hlfp?Dj&*_I6O@N*?Or%F+!7
z{y<SxO6m!3SQN9_eZeFn-F;at#HiuwNIXDcu7IaC@<|3A?iKI~sBu^KN$$ki*Y9&H
zMhzGcZYt9K$K@Vu2e6mw6&e4t8$<`};t!NIr1re_6IOcN732n}TlWa7eF3tIT(nyh
zQkZYBqf}^$FoV}+B%@V`Tu-9+1My|n^IVJ1Z<N}&&z*QOx=sF`23|rruBQ9Smsu68
z=4|p^*<JQ#B0ggve3{?2P1St8rE|yETR5-5m)84u;4-s*X7UwfhLaw)wcSR^6`fm&
z+fpbsWu^zO5WUQy(Zt%@l~Ol_icb2UJTc9vsa&_5$qXhLICZ5o<sq5&JOgw{_NaME
zdPp{&;oEd_Y;0x1nd`Phkau0h0#$2<J(RvqE^(UWlKY+~ZPZg4&5_6P>?i8aeDbRD
zI<xv+WT<nWABFtADoE*!YB?3sEP|&PtL+7@rFoGN`%bh8MRsLmvdmr|o7M5;Z0Oqc
z%GNB9cQCt0g>CCnIfz!dT^LnW^|#Hh>scGtIXjToJ!g14SYRRc{f@M2x)=SV``pv)
zXzHP_H1GD1GjUa%qg$(!c^8@IqmAS3?*vX}yub{zeT}PhXv=0Y>msv!v~jG%8zqxj
zFEGpO)eWmPMhlzf#dNI53?FSA<EpKMi&UGrX0KUxwaG^FM;@?I3!CRtFG(TuP5;1e
znDXbP%(^-MO5GV0nc0_>X%VApOia~Mz5!7u$9d-TS6ii;A&&cLg2ZPqL;_y5_2(t8
zmSJ<DHy!S#sn{NAWiG{QeQtV<+*0aSlb7)L-nLj?Tr=gpc+GCxc)OliNxkIGV1YqL
zwljFu24ZT)zm#TMO2wkAip(PQyLGYRdMWFedWD-Va_X6u%!Soe!cwOiHSioZx#_Ih
zpc^*g_uY(uIOt=%v1HuhgAbS}+q>BVd+^O{;u0YAkzU?HpS<KAsTT=A->C|U%>2G&
zApp)otdWfXB1EU&(BcVE_rY$Ae%h}&&8$C`EP}SLgef)J*M5L`jsgEG8Thm{u#sSQ
zAqaL@J-w9wHdQOnL2Y0CR&(9$yNJ2bOA<`x#af(Rmg3DS4Gm1azhEf?Gdyf!Z%qhh
zn9Yl>^No(O<H4!FV+Lnp{oFBPV@d~@!)HRA^a6$DS1iJ3j`3e}y<a2c!!^?1OQ})S
zuIgZlnY8|%&rG*RFTYaNtU8#*2jW?Ay_EG*>g8?d2xb}nik*IqbSKC1YveQOWAKOL
znQ&c{=~C*ljSo)FGxX<f@av&@r{&i}88C3=rdS4C2W7Z;9n|>=kJ$rsy-BKkIG?#J
zUBSl7Opmb?&r5}ijZc^|JvU4s8xOB+l12JyNVNAaXL4_>U_rlatH0sDINbx|rh;*s
z>F<~}8^MW&31lh@<ChH;GW)V6{_~tnDNB3Ba_O<>jAqA**;4s3M=JO1%9e2UVTSp>
z^=9caTNXmR_?MCnS}uzn<~z9fQ1dwc5zH`)OKweM)r!N8<gR*oF?>1zgjAPK<Jh}R
zl-@3#c;a@BEmvfFM_n(A_~46JRJuW%x2DSSg3I31?lAA5B|ID5g#3s{H~aAB@9OIO
z6=y=KTDq0i9Ps%`(*jyy?sMNmS#Irq7auE`<2wEMfYc42hQs}WFT8oDY(V!f>~s$~
zL4sR5Ln{^XDPvsT8KTQR>?x0q?RECL(mT7px5QRBSi+Wd(=;i+=gp?gUN5P<+@{%9
zO5;@JG&jm$XQXkcH>HYxZ~DEAPSvUpP7Du2PUysAcXjC|)c^Ue-kHNr#u={0+lG>d
zoNL$)zhODq<5mQg+py*Xptr#KAnzT_upqC<ia^Z1={|2bZ?Gd^<-E~JTh$7dZ?GRV
zHHOcq`!>76%d)&hWun3E)*FK6<yJkG{R=Uo%t;8#eTKPyvf<oK3U`iSuN&qDmv2m(
z4_7X?VqT*L{fzu2;b3MkXXL0a>-^|tBgC0!F@7{68b%YUiX%>lSf2(?sEAe<RX5og
z9E@7Y-obxebamB#C+EnQ+cpVOi57}bGc3&BoHU!Hrte!ssA9S@dKngyvEW!4?b$k(
z#U|?kM)<-6Bej^b@-T?syvyzPCz}1#{kJ@-*iFgfw+t03_&>6y$jd90TmX=;0AKty
zw-^cFjaj!A?t<^Iu#`yHh400T2J<ZFPetI?C4-r7CK-zx9I&+>;=l0ck|dK)5CzR)
z$;{`Hiv0d(6(@`Px=}-UOKRwj4@7aUp$ToC-~ZQx(yxi~B(+qTzPDv6H^(5aI#d%(
z#Ec4c2Ym}_ir@dk!-BKq${FJ}#qa<95ylCcbA`)tP><XgPWR$d*x2GQ!w;ulD$HoD
zQ@tzfXGmvq6?Qx2f^_+us~!x%(6(Nuo0J?YN=y+eVezaxV_E6`3`J$@<7dFasMqGO
zBZ$#nemA4GjA3pUU(LS)$k6$;)s%NNkfF2tcI@u17xOwVU%zs9*SovyC<?i>7+vbr
zp!Vw0;%*J0x8jozG?m2;yubN~8Z+Zd#8;AgiB~|UxQZW{l&Tif`CJAwrCvYbttsm>
z*(~FhmRqv+vSQ3V-r{#w@2gmB@w=)ASh!gh>aF)k?=E$T)gc@8onfG!KV-n5nYWMO
zJ4RW$_;G9H5bcXf580DPT&`crV;=`UGIMPH7H)BS@u|O+AQrcP(@cW(BE{6rAm3!$
z8ZQ<4BpBeA%GEEsVG_rh_f_$0uhZ8#{A>5G8aK|MyL>!enq8cgWu#v#BI)LlTU8UQ
zt~wRzOos$7vmLSH<=P>I@@3gW*$g@a6?Uh4`nkl`KN4LaMo$V_&FK@^<|;-4B++m`
zzj@zLMrg^5^VhJ)1SUGR@YQqc8H;t5<>0kl@=nk!jC8TXobL;!na}mF6p874lwNsi
zPA_)&?al#!+fyaLYu9fbAEN7)4jc&j8SP&cl{OZMFs>a$U?(1<lq>jnS1`w~|Lv4C
zM$ue63|phNsc4)7Y^M`SYlxNE2h#2y!em9Gh)4y%njDE4=K1tLk%n10E-_CrUe{|I
zgli+EYjJw9lq=#Y{h*hT*S%rct#;6Q=NfyNR_v^5ML+itX~oP~p`3L>;T8av<}XC5
za6g&yC9@N<z3XVR9WYgDfvraPPW?1PjQ_1v5CcmlKL4^cBJ;dA>G_Gn_K5pkTA$Da
zH{(U^=rA+G*lz{kq_RwL<_$?@;IMKP9iP2}D|*sB30GGwfisA%0k<8>RYGQ^$QAvV
zRM;FE+}&2&tnhHUHH}ZB&hgt19hYXqiqS^)m~VYBX0G?<^iYK{+O)!%Lh-N>R;S{=
zxQ8+q@6d-!Xb@vqc9BWw&*7G%Ij+Dj-zF6~Xf_!4b^SXxNek=*=Dr=ShhZi_=vP7l
z_tti8Q=VYrI>;#NO}If}9fBL^c@VtaN^&RvZ8Gp8jk9+(zzl9M$sj+81#@G<4jDSe
zE>gV1O7VOAx5?Zt@_bh%o_%UaQBDtMZMFIt=urW50|kxgyH(-{g6tft<u$^sl+g<o
znB_w=(#Iy@>uqk6u}S^9L{ZGF=B-1s2ktFH$9Ujwe2O|^ny~uFGIqXKWVPz&w5`Re
z-=13Px8L>EBI+mn(E^5liusPd|9^r%xkUK#XpxzHR+u`)9L7QJZSamJD(OLdCvToh
z{KE%WyjDsLz#ovv663?v*53pyt-Z5Q*w;^?@(jQI*$-<aDY?M6xcFfWMY3|ANHkiJ
zlx-cBEm=xWZuW+%M^xC&lC7dF`_n(db#QIw`#oGb#iiEFYK@Imb6OM{j&9sJTaBUN
zg)}tjG~HJ%EAx&z5+Vk(f53@hZ0YF|!_4s#TQSeg9~IRJJ7LBqw08}xTFhTCSQ~>r
z#<=^zI4su_R=-(*NiO`dkI73IbY3Gm)vb1jP3$nmFCO_g12{%&*E<U?6UihOyXq6d
zPx5Uqd8*D#^_lUtGKAEgoBf@AjQkqqkf;?#JUh)Pn4uY<DF*no0EJS>!rZt9!5o))
z{wJkclzr8>Xen#VVc<Rn{B=C=e(T37qnNa=w<|-JaJQ%E_G@HDo|h7K2UEF1kC~c0
zVzHE3Unuu%hdIMya_~>Ka(~T#?V9a>v~a&IrIIU@WQHZ!bJA~am4sVGf5)_nR2%WF
zb4EFu9$?g$E4t{Y=aCwN?jJ`JM8%W6;ZqFrvnsd;oP%rN+*Kj|AW}f=Ha}brf=}5x
zU(A198ogRN33DBsf*Gt{#yDPuRV|vs@-#{+ts^OzVW?+5<adpFic3+FYVckL{X#rA
z_q#G%wBJ?abv@=-$~<GXd|CvTUia`4d!22aH71l74LTU-x0CS(bu*b}MrAXZ=c>UV
z$LtuaY8+dOKIV3$itA0Q)xMhh(s1F7%=1n?v{8CY9VQv&S)YlviK3Z0AQA*zxDuc}
z66o56Y&isV-oH`C_%e0@rI(q!=yS}h#biF<;phU0TNZ(Tqg2Xfz!B){`n*gbb>{ke
z%#y<Z^Sk-;Qpq~A@;zn(9N^bFzre3AZQZn(E|(1uT+S3jyy8Ek1<ZmeyMTz>waSLh
znQbp>Uk2;aM7|#)1XIlOm0uIy*t9S)rulZCJ3ryf1Nf_4(ABMU5;(8#A$Jh>l;1`E
zK%d&Yl#Q~XCUY*e(87--AK~vuz@uDVU-EY(*eCK1b|q*?k0%gRUs|YsByXMa9&xQ@
zJBXJe@M_IZu{xpLGRSYDKJef*KWIebhVtVCBsxuosG~~~hw#6Q3%*tdD=233$ChPo
z{xAwhUEYJ6euF9Q?!Iq`^3z@^I=G}u$F#n9Nrz`VFxJ{v%=}smGK9gx_fy{#{<`tT
zZ<sh4{Ag+^tHh=O@NGJ316pUAW7f}kOf;WL;E9R7jA2n7l_%8Ac;bcSIL67>MS?!i
zb<Y#_i^J%x<?pF5lF}lUh}z2{{`7GX)z@P`YejTPNx6Jgt5LAH#nkAk)pEBM8Ieic
z9@=vie8<Z9zkek1mNAt{OzVGtz-(j84#^|`BLuif4|fpC6aO;=e&vsOBULMpVK?p5
z&5qC^jh($m%!G$8jGYW$+&Ry?#A@rK%%?JFoj)gocIC~wllC`FaeMARCGAR?;Fx*B
zZ*JdC+e+!BufCDi`U+miMoVKz+8I__2gd|nrHM&zO@%eqHCH1EH*d%m8$^8tw%EO*
z%=kUu8e1{dhEIA1mmi4@_ieFk#Dg);I+I2tRDZ^qniZKl<0VXTPqqDmdu$m~_1g6`
zu+|y7-N87Y5j;Jr@F!9)YsihUR$CsEh+4Ag6fxL>&#?rre}ZdPEs3g>jaI#3V*F|U
zT8d>$L*{0hMfmeyE?*Q+xYIH5O5>SfJk4^x_`ee6)pZor&zLS8Ps0VG{|N>dX;u(}
zX7kYKpb%5P5*<9_`S{pSF`LQZQr)2!1ZNy5<c5NCKtqPSrypBZXzS^joGS=cx1V)B
z+{H=`*BS4nATa2?u+3b&-rODh;{$fWYr|MIBd@u;U1_xGE@<xV_{S4msA4YXZ|*+t
zq)^ghboW(r_xW;jLYukhSIBFWybsA&l)FF)>9G;~?)-)zjbxaAN^E!=(hVrG_Q(gE
zjJpfF>40`~_oaW#)L>1xa-ZTFnfl{P@vB?TI8#bk`Byi!n}=Hh{Oj!X`VdWXHH7*#
zOSDE?jT()fbX?fRO%mMnewNAHv<rFKKgSd&kGv*;PZ`FV$l7o>T`DP^b@Gqk+|}~w
zg4NO!s~=SG`Y=Siv)79j2vm?DMM!zprRdvoz9cHrA8513OA?18O>?F}ZEk8hd%gLW
z<|eI}TLMvzHQHk|G2Jwb+oW4sl}7E#H0>hIYa0dczpxE|(JR4QM7@gpMof6w+}+#p
zLGHWpQG5imxqHiXOmJNnhWi_?vvMP;g7ypB2Jv+tQpP}3)*+Z8!s*=GZWk@XD6EVY
zhJwxu-XLO_bJ2uyZ`Lk$wvkH!m69pCjlwRBL-`%3Ac6*23`2nEXu&QqdaI>+pvYSy
zfrG=!NU-+8HfuoucJM>oRMv1nrei|E9-n<A)H{VRi0lalw0!RYAUs%}t|X`oiliRq
zS6pkE^^eE6LEMlGcf$|48`ii2RxIgc?|}hKGoLkQ0tlu6N_5t38*YydiT1OfB%`A#
zK!Hu#S)@!f@Hg}Dn{RSOpAwv}=}_t1Y@Sw@hRo=BUP`FN^ib-y%MIHtj!HKmR~5~S
z6e2GhOFEu4)?xD|q;p|}m<^gTkRj9tCiva-<A3B1v+y9bXc2(pcdPzpXwcfv`LKNr
z)n`F<EUt1@US%hh&6_Z%oQa0oxW!gV%T9XjGf8c^sj9J44z4A5a%ME0x3=cheKu4*
zN5rdcUHWisX1J8iR!ZqiHf8$MwI^zayWunYqV()Af|RP#BN<Z|m%~)OFp{BLoJz4w
zMl$759H`xg8^$vG3d6%uW_V6d1~H^_*;35{s8KZnoLyYcWpK*XPs<hD$upWgSSXDR
zRX>dtn!nqN89w?#d9b?rV16K*AE|1wGTppCl*MI4RWh4Lv8)dcmPgY=1*}rg0EG5l
zdtqC+8=-xH+6U=FQd=e34kRsAlGl5npXJeA*Wp2j_aNMFczB-wFx+W)>daWUOCda-
zI*T>}cinXt9;HICuCMUuV(*b@Ezs5~&Giz<mnxaM2!vio;Qj$|lSkCf0ewrDF1((v
zWa$=^?GvJ#RK`cMm~W0}E^NbiBj&+ZKF(H!Mjr_6Yd+x-#*m)K2CKS{cHAZ8!HM!=
zP>ywIL83^(V<|0IKA6oGM=;&3>OP)QKhsc$Xv62K?tgG(G=3SoXv?6^q<(mkMG(?S
zk3^`rjLj6CPxXC@i|(a2FH$ze^hmaRT^@%EKtFMj7{N9|G~fNXnk){U&AMmiom~gB
z#R}*r9o>lBPk{Z|61|Maa~G|8h&h|8o7P*^{fK)j@6+c!dU+g`<?@eR^i+Yt*IsdR
z44@}3ktwUq()NO0#79!l4ek-{Rm-RM!jxcl+N$oU=mSLl^un<yJquTTRrhq13{9ud
zo}L}QM9g$s23g}$dJM#wOE!p{)PkshX}rnw8$ZphkfG0a2>oPw=V!DF5zM5=ut5WJ
z(vd9S?5k6Q(IQ0{RV-^tfk&ze7?p+anP0QcIw!;G_4hw&nX1z>PKR#Eo1^W#P<Clp
z??qEW27#UUWO5%TH8Wx1Hdg-04mZVN5_EjDB&KltxmIv{gA5rQ?x@hv5`xEGUlbP3
z0UD>44&KEeE@ZLvV@>c2@fiZDmf*JG8wUq`Ms1X;1fk=69Z{q(^g%gLJEb|=@<#PR
zN-4=qQlzB}v38?C5Rtx{a0umlwS1nIXvksSq9oIkTS+fK?$aS?$k))fjhnl7h<DvK
zlA#Hk$^A-JBhuWxM+f&%?!XNbWUODjLxdW{5tAFzWio01ONmy10s>@^2b4?!at3`u
z0t`xA0-x5XFlZSa0B8h^_U7)PUBZWaFK97&TUmV-^6VPT4HK8)D&j^^N0e$>3H(7E
z)rOkL({L?A0-_h?=m)x`gz~5v`G1GB_*iZndn;imnv`Tx2By0E@Ze~Zj1bs6GyKS|
zPBm4y7M}ivbj;H|)k`twE^ZsiP<%iMK%^f`w7p?-u)6t48pN4#v&%Fc#pCb~;8wP_
zw>fy0DtHYG<dj>UU>u2di_~rKxyr~XVIXN&a_Zp>X<t_}0TLF7(=;7mM-aj^8K4@b
z?HH{yOgjrV>xi8g$zamR7I9f=FvinSzq1p~&P;d(5s8(H_=w9+o`$^+qffh_juMu0
zITJQ^cpZ*nTTSffhOvxFomO3Qc&tUnGtK>M=$e-Hr<`@$<|~aqkDoG7kF~f;Y=y&*
z5>-*rI8PB85DCFK?<PdrY@>xOa1*C^BAL6&hp!F^1ZfG-#S7cyEwo_pE19xv0M&bh
z=PK7BTDsRcM6M@1GvWMGTm@?m#DIbGiG-rgk85~kA=02BxiK`h>T@m8=Y+$jdd!Fp
zcEsfLWRhtgmWh^*WI!fW8@Ah>{~`r4qZ1~qPic|7kk+bc&5<brjx+3J13}nw(LeKy
z&gQRAtfZ@}N-SPMT?whUTvV{8o)lCdm3Nk9+~h94#dUUe#nRykh*gnhangrhwRtOV
zIIJP(AQBXx<vQ-HzzLBlPV`%6CfLud<|OeR&Q5+Dvp5c;Ls_LY+YZvkd5r(rf8qAd
z@C4=tfA&BwW2R3x^sy(L-g5IdCur9GTwuluBSCBT@yVAr?U`fbywE=0B>AVdN?~LK
zTV-3jXCRye5Xg<<25-vMb-xE>)s}-=`b3C4iqDhL-BhjJ9|B#gHas>_9<}s;^y%5c
z&@TFxRBQK#J+kW=ugRo6)%D63Fheiq;h6%`nCQdajhm|N7&*F!Q^;wEO$STzN4FXJ
zoxzTOwM{mO=5u{M*&drHS{!N?Q=4H&y*|abCZ7_=JNO8fnDt!G7H1@UIfJQ|3)@6n
z)YomZU(bR@X&)Qk4(vOwU`+@$wbomC(-e*gyje{bP5v?!O?uNrAL_C3_S-gJamD4E
zH9ho)%w%%XvvbWfp@fPl-lUgDnw<3NI!>mj9GvXoL<2RTOjgj_N_uRsHJGTY(#zPO
zhnnhd=zL+{1Z7V<9gQNgLI$*yqnQW|QM^(pbXEqvVY212B}~i>VIcXQuR#zCyCYoK
z^Yr?|PYQ!~WbJU@qYq3EmiG$QK=gr?XH?0?<I&>92;G)G<fz6I=HldMMxW3N<Yp>;
za3ZshEY4p0WXe4m$uRAhqZN?lDlvK5k;ydg9igE7xFb^RWQjA5SWIJ<+H1SqBmz!E
zpBd_G(=$HHrp~@$qu<%Hm7Jd#Hw<T8<^ZJOLMf9SG7moP9-t-|ZF`52p`@F$A?8V!
z1h9Eq^UB;sYVd}#gA*f$_-~FlczCZ_qN8lVR*|og%O5sMNDVvPqYVqDI8Zt=f>l2>
zi=!J=8q49{Bn0OXG9|4*J`o{Pd}Sj1S$*KfJ&&!o@>s<%zQT@RZw3rSzh(f(c!X3n
zlhM9>qw@jtc7SoF+oRJUbNTPLa%-IQ=GCn+CUzw}Iz4Af7LZsxj8$hh@;v_4ayXl7
zbE3gi^M!3ASe~U6mv4zkV~YioOmuK2cL6)3-sL!3ht8dk$ZRYmmuJiy61{6eK$m44
z7c=jYjN|D;N_9EL{D>Xgy*g(XnempiG8R&w7Rtk5<nno%tDC#8RWfF%{m?uLM|T{M
z*NI4}V-Wj8M5E=1+trI0LBwIQjsw~ZBh<{hC`XIeM_(nFhJ0f|9u)OK-aJ9sLyB6S
z7%GeyU@}#TY{(gteIQeH<Z*81AtaqkTztwEH{>EMjUsE-^xW@p>5&ZiW7G~v6*|X<
zQuW4BTh;A(Nkld7224ZK*TnHc2aFf;TzbyKFmx{eh*us<{br?qJB{M`ra_T~_5hd%
zw~~vvs{1kLpXs9;$sJnNz2M+Dtu}fD<WueqkSV{7(Mr1q@NBYK^A5(aGWn>Iow48n
zaQWwKBe}p|mft8bAl^(djyU2Go!^YhOj!Y(yF3z1t-_FH4GHf3GIxxjj7+3UL%q-j
z=Nmiv2GE^@ycfx|oSEYPO(6D~K1Zpw-~9@sj^kJFufFQ@xSCyqE#jcGnd+lp-@V_E
zf`?&qDT58_Ay>{)i!`J8xta<sB7t_a>DAvB07L6980+t)bt?OyQh=o?QE{=cF+C2_
zOp``(_69=Ky)r=%Cp;~qmfK0gZdLb(9GMIkD6>u4>7<}G1x4B$BI9a|vYGJanq)JM
zZ3Gi+k&f!PN5+bRVL(6T{C?B)h5T?DyO;6g+ujpfoM)`Z-2*JmU>4(bg6~A>xO>rv
z|6TW>GFmDeG#A8x!}lDW))TRhrBEUr|9(^UQEBnR<w3FnW(9?s;s@>>jMyyBpj2|1
zebkx@t~E^Qa&|wcr<}`SsK)GrKH02>mGHAe)Ky2Dol@n<mP|FPQ8kC)a9JCu$C_ow
zK6depWbielUQlP6wd<L>0n`&As!_68M;a*@%1K9oa+E5DIOmAeI+@BLz&+xKqzTsI
z%{Qyr#QGiX05Kig{KM~ZBaUQlHcMo9e{z)?<dMwP<uVe_W}O9(j;<1IawfzLb&cfA
z$fY&#G0LuLe9<<V!%yA0<REN$F$m6z@JRm-4|8Wq_yJOH$d%Ag4cz!K$&>by*a6-F
z(W$nggl|LPYC<y&r_{eo4;D)F`TFMWi-hLni^%a*1X0=2FfDK6&hKgFbY8F~L>CFP
zRkHL3wTf)h2y~l<Z0eF)IM((h;o&unwRml8;Jl`>50D1Kj6f};ooUp@RMG7=Fm_IR
zqzy{tTi{`GhdSRPMl{Coa_g$ub%L`=76F~)ln%nE4?bEYx;#M+z;IT@ai~&6UUsnK
z!8!kFb=kGWcyN3*JUg0J0`)t_VL)h%LKB}XRv&5qacuX&M4)4tW>r`wxJS-|$C$<1
z7ij&82GY1)tl0CQpjGghzUJ<MU(0Xu$V(Mei8A*oF<Y4lXexOqij_%EjEur^6M5P*
z#Q1r<Nlg*ORy2*wIFhlTC!9xMeRMnUKjg^9u!;kuYQc7%azZp+=(Ip4k8I{64xn5Z
z#^$^NvWTm?zwF3EhuOwBlJBZ~!;$IA$`P7GeTPTf(^cKxBw#E$lr=O1<njjxLHWM3
z@Axj*uH1;VA0fkE#0HQGRRQG}+*~mXkG@0~$FA!BiJL<6w50*FKB(SYKvYmBo3*LP
za-taSoqVBLjefZ^{q7N7Ioh0;Ud9YhB1|=_6A1vGY>#<U3GLfp@^rHX65|>6dXG2%
zyCB-Bh;(G8*{KdDcI<L9z7<U<O^>l%hf@xZ8ih}^T<p_eicwjQW;TtYSgVcz%Lv6j
z<Y=UPG^x-`INPd|nc04Ugboy_b(^p;o0|@yxvB7i+tFm^*g=XDR(1cdRn~h<wsZnH
zoy<N`#8a(e3(W)W$;q}5)gWP=6fNEs!Z8oZ`*Ji+rrP{$S&8OD^B9kgwTZ27gQGwi
zK#l?)+}Eb9fI&lH5=La3R(C8n$m(*u?W<B<CYpKqk*c!B^P8_CQ#U@=ral)-0pdd2
zjp9*?`#pZsE)rw)2tROE(b+zoY(@%X<F;THFw>)oZY;br_!Ja&D0}!1lzQ&eMlP8}
zy3}8bB^xtaeHCnwuyuXG$zz#|b(Q$xGBZ8GfL?}b_Ph|kpqplsn$!@ckCp|c?Y%93
z%?_LkiM2)YQS*}`Sg%X$w((Zlb-}s360t526MP<Q0a>n&PTs_<J4B;<I|Is_ZV6hO
zR=Eks8}YB^vAO0fsfqVcgqm!2Ql(sVypjUrc<}iDuHb9;@`ITt*=3Nu<@9*bq$u5V
zk0FCJs`1A?r>l+9Q`G4qmLceRtc$Yj>r@)UqL85(Ev4@m5-4lee~aymF+CZ!R<kX;
zg>GRaRSRqCjD~&W@2xo+eHhw#GgbA}-+yzg^{dR&wQZ#Npek2JmyTuOIJ!jY)(=e0
zD7Rsj;a<i}yac$H*AAB@2iWe~2z1K@XHs+oI$^`_3Lhi0gxJ#lQDHB)t68C3en{J}
zSYk&B_Seej@@mlGGGb!M;aX#7uw5#G_oP0M5Hn^chRcd!gF_*6IF}tGmq{~iZTUi3
zh+dMuJcdPfQYe9Stswkm7Ez5Cn+wM_>>Rd{ldA1W0fAX2khW^W^)P<+07pK3O~!FH
z{9Y@iogl(b?7Ip=W;nRe6{O!{lD#eDWt$u5yx>b>$8~E${_Z-rCMZt^gF=<D?{jG9
z&Hd)kg*wPW#vO=$V>lrhKxBcOq*GghPVcBksgyQbt8~XstqtzZPMHi{@H$S+IS1U*
z`{9E_Ea!rku@@$ToAT`Th$G)&8^Q~^9U7_fCa6v&(4HIWKAoV_nf((v%u<y2LN`iu
z+Qw@zOz%}X&F^MT+akljx)*kve4jF+IB3VKSun2|DM6|Av<u7Lkn*;+kJ6^;;LVKS
zTEx-^E^ON`dEekZiNPrf+;5|{b|u<S#cc-gwjFiq<{5Lf0FAt-YqhAHIc9<8(m1n>
zWfR)$wN~K~4IePuze1G#D6{3wA{V_ylpS9b3QRX;dG|<)*0oT$-eyk`rufyW$>col
zryy9iJp|h3ly(7VyAT|xeM#hD<t1y^d4UXEjC)pJIfWCQ!>i6`oORn3ZZ_a>RnmuR
z-CW(u9)#{WD#Djo{RU3uvQyzdlq|0s9>w78T-+%_F_?O0%vKc>a=JY#m=q`vi0#wb
zu^e)DXh3Llxa7E!ojV~DvggqHdSS*-G{AsHXnY}wB+s+M!ZR}MCZ!I&c)<d*P^wLN
z%{0AVo={FwoPn7$#mbvC7DKkHcPHEv_)T^>0%66OS_h(<^$6tV!&ErJC(k_Rhb#!n
z8QTHk)6|)@%L~}w`!tP`42fngM72-Ts4ld;F#ohZK{a$+wNp=fjZkg$Vsd<^x<4q?
zqV<U2-(38#&?I@b+h*mbE><fvlDTFC-&5LmYXR$cls`Upu@gJvp4>nmQHRTa@rEC9
zO|ggp!tsl56auQgOBNHho0ZIqwfShX)T-{!T&%mL^bnp?NE!s*emWioIqt|q{xI<O
z-Eq0j3uM5!@%P?howJ)^4cA4-4ugJ+nNObKbH|yN>Y~Cu>|5I<PqYk~{~leSkS2~S
ze)`q2^Ht{sVuD<)25+ysR&?S<>tqoHZ_*2Cu<KYNqaLGF*Gvr4wC<k-r4Q`DgTyA2
ztIgU4>?UoG#XxrnPfFZ)4v@2&(U(OrmFq}U)vz%{4fRNdv@=Lu*me+OfPARnAyGP_
zkQ>#m6m!Oo6xZYzo&QJShrxkq67_cyG7nK^6^!u7yrU`5I~=8TUZANdwe@lnL>;z%
zv)~BIfYYuvY+-qB^!b#xJ?Kd&aQWr8%Qj0nFmTj!vM)jrvm?nmR+5eg^>};WE87UB
zFEveCrKc6@R5a}=WG*Lgo(;}JZ~_Z##mpE!MoxDpqRVs<VwesMq7%OGGqxnOLEqAP
zkNjL|`60@%TKW#1TgP*GlQ-yhl=LA(*`pL}&!^dYKnb{k#85_+lE*<CIlo*~YSt&a
zB{x$a*i*MyW~+!?k0T9Y=Qkx)9hjvYa}<Masnd>XnOd^99%tvJ8CQ<aJ0maV)9ia#
zM3!^e<Y<}fmm_6`hIL{sh88Kq^R=f#9%=fhG(451d7Us8nqG2>`-9F$3i)XBM}=IZ
z{=u}+{M27?!Q$A&2>OVwx}@x%sCXOB)6!lZD_irsrMT4?a~2g#ey+Hs>l+L14ciVT
z(@m>DuX}<Sk7UpmOg^^iGeV~N*h(H>^(`Ut6g{)*;$Pagogwg4_|%W>LyQ!$;G&Y9
z7d%TEOoz*5=hzd8H7$S+7eRw9)y;d_L-a7wpvs#f1w^F5jsO6DsQ6tfnT9pB!YHq%
zG-OCY0C<k{wgR5J<f=Nj3)>E)?NJdIGeWKrD2z9En8}69X@bc0lER5>kX-7o-js^_
z>&`k28Blb(G$(>PFVN%4inhPrQ`cT=(l{~OKGB?M(S1ey+1X3g9EXP$s;ZOR(0R0F
z%t3DVnh4>^=!P7GY?Gm)LazC<IvY{d+XF-n$Nmyo)h>`xA?Jv<7I)|a9&$`i$^7bc
zz=IcQ&!%s*Qyx`NT#$oPZwH{xxK|#d&FrmGJt2=lmOUlo;Mlkq#ng1bp4=uDf$Ymo
z!^2K*?2_swTWpt}FQ@4x@O7b>mESP_AWwy~9lW>qxem-Ip{U@|-*JAz4_DJ(S9`ny
zCuJo3eud{L(D8~58=uSR74ZV@@k-o7N3J(+iWd2WSL7E|1pY=e?-%wrVh&o+5jeLe
zFX8~=#0Iv^NfX)wb#M_RhSw*N*T_J0u;)jT^KL?S4}|Z0Px5BMuoJY^HDTN)K*}b#
zvmxO+(6gHk=CimgRV2sv(dD1<NBPU66G$!{v}e{`VcPDNEzvcsaHt~(_=gMFZI$p$
z;C5k3tJ)8V9VEMGb+>9mq}g&}AHha$-sI#kPqyXF!SFDBoc7NFtLlaEY)pBu{@txr
zd}*}`gHfBv3oV=o=9J6gMTRHF#&!U!cB$QT*j#!fmL1829+WZ?kvVyg=E&^ZogUO8
z1_q5`sAE~bB$=9WimZV(J7$#l?P$rnviqyrhW5?cn0se>FgsS33m^Qq5qj)gL?7`u
zEaWvNYQxw%c@OsNb7IU5D%D>aM(XXmyCFK<3M6YS3ZAXRkj~<XUcAs2(pWq>SKsmV
z6%Wo+*F<y`M3;<rdJ1w%Vl=D@Vf7zM2cpZW(v)E|6jVQ_YSa_7E&96AO;GwY_rrP#
z+78W{$YHB~rHIy{*q#uPlnlfHC0d;VX;k8RyR{Hn1Y+?|n|R{1+JKuMyQl7H`FwMT
z3LOFc*gY*OWmH4(c>11}=2iR}D+j12?rBlO2`VVF_q2#`ZaF2Q$HDYuoRXlmAalER
z)VRrVcbq5ElE076`G5Ggn<k_1Qfu`FOaaXu@P^-DRDcs*UGF`SLZfr{>>AQ;&RLvw
z+m;Q_btfsEWc2()%n*k_+*B~x7fFDa@y>8&x(^NT;Mtpbb{9WGdQGlF@iw@3IyS3Z
zZ;WK<UeFSDbZ1LohW)jV;nbFwqX<-i2S;`xb+HxO#OxU^eSpKp$jF$S9u~Tkj9X%I
z86XZ(5`>>>#-mM68l=a($8NCEK5p-U8*rqKX23C`8+0Ll)~1zjG?&#tQ`|VT($e#O
zzVHBJQqmV~_Nm$2hsT_!*`be})Gx%x?{Y`dbXekd3w8&Tmf}MVH`7z_-lGrp;@5!W
z9wSW<mKd?D+n7n$KOAq8_nfX*cU~6{OL$xnf6Mcwn!M9|xVpgXD++$Q)edOqsp_No
zXP7fdoMjI#;*xUOuw4mu1=L-;M%8uKl>iUFJ7@WIR}Ez(GLZMV!Nt0AyF&1Ne)Z%t
zoGxdbE(6D2!$4O-*%eXUsAmt5x^u^QyN^RdIxN1J<=am2kK6D)Oc<C#n{Aemw9G}s
zajrCyIpl{2_wrk=G35!ipV+9#-SEXLc)h~ev67brj?%+nH?q|=L~G1h5}G@zrhMz^
z5RN~|BQxHc($l-nyYSMORY)`zOK=l!M2v18`p07A;q`^Va@9k#HeN-ol;eCobGo3a
ztl2(YMa7x}t)Z$vLI)6BUF_$fuPx!~LSv^R9&dg-9pT(cJ2q}ct;{7x?&bWoNGHb8
zui3RLj!c&f#L~%yi+f;q8^=76mb{i~Mi<aIp-h9tdg1gEy%76w(5$uG3?KAxLQ~li
zh9hZ8sAI7Nqi-Q$j-O5-JzWv?*y&10T$KX<xwsQ2yG+md`ezOA?@weWvMEe*6PZft
zCCY^+RsCVYG{=!<aD7(oN7G_i)#KEi?tPpS!L+tCp0tN0<+5?Y)rT!t4$}UQs++KI
zk|~y6G1n~Y&X&fbEmye#T^UP^EgcgUne%}+?uud<vYAVxPtc~t-l{Gl>V{bA##k!N
zi~In=z$6m!WRGA~-QF2-cipZTvO_4+A+w#mtB{(&tfTachtnpbf{YJda2Ke^12Q~#
z@M85LjnM&RKq=PXfHbOJi#^K(cUcSBgBs1<6{WD1!Fz{v4{Ox6V9K8KHswZ43!WZz
z$I_i?0e#A&i)jJ*m`7IA0{XO1SJQ$A$Gr!hX~B~j_e9!?20EUca1yI!0oglRLobL~
z!4o9>CClsC6g=>bh&fXNx_3kjc_-reNYnXG<yb<E2gviz{fU?kJbcU@Px0&q9xODi
z6)-!lK|9*~F`>zz1ogPv!z@D*)PHbPHy}Zu(Su@bW;lX$B0{3U2=c5)reG0G;V3*1
zL7a;a%`gQ05l1(J5TyBL)p;`lL3%7q+6dA@m}GoX>={<73oNY3rX%mw>9WQfT1v1H
zDh7*70iYffMz?F6YPK|B)C(cTmsw1-M0-q&wN>1C2V#3~2m5wj@>xtdQqLlbTk(E9
z4(!u^HCI+BC+O{~EC#YS=BRhk!9CvPIp!uPlY)&Cn6`?!ObP9uw`<BSzd?SJp}9Os
zesIK~;$4^Tz=9YKmkZr(jd9lx+5^A3Y05dHPQ<_Gb~A}z$zaj7Rp}8NLVVrXwvk@z
zUBHPHXH~g2gqeJ=l-?C%DYTB>BzfYtadR0~vt*Xdf(&1V)gnYEWtA99({b9=>ZMgP
zbY+)w6==CG`DtdNglp>-DL{Mo@YVEk6ateY0+uQ@C0VHB&pwy6&a4(<kSKvUqEM&O
zgb9c#A$sv1_Sw+oWY1<y7ohM1q$4m*Th4A>j5#||uoz*sl)j2_Tn9uLKu4~)Vq<S4
zY+3lVryTeJ0dL!I<#X|$TXLXV7qBn!b0R5%!uS%a&$I1w>W8<wXy~v0`wXwvjCB#0
zbhYLOy>`zy+AI(>y6#h|tu!0Db-agh<W_CBMV$9Cr*!oc_o0&Mi`h*Zkx6q&mcE<9
zNSNrSVmB_<ioU}faiY!=KFtIjS2;OKXES4gEY`Hiijr&)bzNm&5oqcujk$5609nJ`
z!NB>pZI5}E7F_KHvlN4kr^7O&5^lFWFR`^tZpty1*90ALZPo2Vp|qH{pWIwuVYftQ
zW9OEzvE=&zG$-MN2mw9J_0;C16H$fnn@UL1(;T8ZQ`OzUcX~_6{Zf_NWw(d}_g}wi
zjcvmOOB4;SMvss;ZZ4h0nyOd@<%^^4-X*iV`cxG#=>|ySfBVs!d2(<R%RP|<fOp)d
z`X#$_(!B<g_0kJ$wfu{3u+~*w%l`pc&_l|FbWmGMYfIgvKE78~&{a3&#1mB$bj?-5
zkeKV}x9DM*HJ-;XG&ph#PP}7<URL*YsrtyPY!lV=7gX&8%q^zN=)rD<u?d<FI%F4t
z(>8uf1UP%WQ6L?OYpVNXF=xuma?zOItS%Yi?comrxY-d~q7Im1;R1F)1QaIDvk?oc
zYv8mOx8sW!a=Q^E^~95Z!x93M1CJ9U_~T8S3KuA`cjlEik%ISZ<X5Dqyh`rdhU$B?
zN=OQ6Dxr*}Ps-J}`Xh41>KWgnhWh>m3q5<Mo0fiwdsV9j>k@JMuwo6yXqTY*Y1~k>
zuN4#i0sie-XcjZJ^~DXBy_jv{hATm$Vf7T9(n$lT5N11SI6diIc9n{$IA!OwLBpv!
z+CU|1k-qsln8rbKy_Vj8V(&qSeMCF@<G>K(LV&0NHup}MJR3R@jZK14V{52yHh00E
zeCFxg`c^2EIZsI}4RwmrNDL4zRf6FU$`-X(a_80a#kHqh55{@&&Qy4F@hUvWv`tk&
zvRECqqu!d*)hObQZn<lJ<?d7O&=aQFD&<_vQW$UfwvC(BZBTTy+;QZ4WcJc^LGfwd
z`kOqUG1OvS4@9_W&rke~B}z9^^c-zBOmQ&`ElNcbsdWB|HVK6DtCU2*G2{uXeMBG8
z35-P)nDT?VKZ90@OK1~h|ErqBT-M;CI~EUG;jM$Sa3H$)&KC_2+%mWb24bh`tXa&s
z=o#GVn7+cYVfrfaLl^Fz`+C;zTHE#90*I+-@Jfbqezv8f`gGkzpr?;{rgbwjHrnLO
ztpjcuk+yPoo|9rx>^e?Lz7E@F*NJ<@-*)CHEQ!6V6Qe{gsc;{#!O<0g(+}718J2_>
zL>gIT^Hy2C-Rw=YwYiQhTAdf@eo*xsPS(2<&vQh|hsOsCV|(c~@XiZfaFI3`9|HQz
zH`m#l>Wp}Rn7gZX%;E7~*)69AjI0p)OHLfQ{_wy=Hf4mnN6J`7wW4ERru|8p;=CW+
zsTXDDz<q$f<C>GzgEhmzRg{paJ5MqaCZO77OV)Ajnc`42c<gz7i(S8Cp1C^Pm~LU>
zRsU5iptswe0$~2|b@0h9+fQrG7Yf1vdP>{VsZCCCfnbdkkXH<dDRySJ2VyAb!C~?d
z+~AAGXKh0{wAL`KSa-gd-#0u$h=vDBUPmQMJ{ut-mqFV<z)H8;=PjXA2R?qA)2>1=
zd;~yHF*ihe&~qqgTixZ+=iV`QYE$!>M`*xhbVOwHrk-u|MMlzyXJ0JslUU>=Zoo4S
zO{42_#1QVv8N${C62EW!zwFLz`ijlgQFHIrtji#i_F>~PPHHvlbiO8$pNNEABhgy<
zpQpjCtflNQ9Tx4u(N;tRh`o75x$l`g!tEe*i{0`9e+8}MN0-=w7(gMYuX3xvo-^Gp
zXa4~M!=8ueNSkoNLp_frevj=2mIT=rcuZ*0$oJT;W^(QCvF#NkyDuM5Ro`QKNQ$6+
z-1peNTGbfgN}nlp){n5c=0U@o?<^f*4A(&N1e<)>Yz435k1@6Br`LY-16F-pKgeqW
zsLW}wVtcRso)~um6^_zO7vqr7Q$_0Clt}t5PH!N66r!(smQ{rFRV(knU1&Y{byJZN
zd^nRk0q@t?4N>7XS}!eTckI4lCmLB7jF6b(!F5>(V}r0LAI@j+kw4r)2#w7bwib%!
zXmzlbl@^YX*+%1zaT&@k`#phnnc>@R%pL^aj%V_F!5Rnrry*X<gAS&fBJ!JGv@XFq
zN`t6V09Rm8ap`Qs+Q@U^YC>%Hn)nZ%hiX{feCrK%?{2tl#!Z;)_r&et0_In?v>g(_
zYlP|c(NO!~7t(4JFL(ayIv&sGhsvRysi}fj^5Zsh8CwZE0zh?J>+H5cOLb>zEp@A0
z&n=;Go2B0h=NBNlxrdvW>#O2fc}yG7HP#aEXl4TL+jtr{E#f~gj(tPqw)@;!=}DiH
zTPrx(%Q5}aSQpM)Z`<Z6i7kvyFL0sN>)6t*p5WJG)EegB^h_Yo-aI3!k1|-%L)`eM
zjJ&3Lh-sPQ*l}mJ+4Nj9F^p5i)Mu-n&BLOcDWxkJI+HRgb5OiYVSeX_07t8*WV_GN
zn~`b93$`elX<0b6(E;?E?PA@)1d9}`31N$*XId)h$4x~_UE2ZX=HO`CT$+**U?#Fl
zQ&l}gMu<+9FV;O~l&+k~E4Xs-?r>H$^p!_{_NDLQgvB(U4Gqx1RsJy%uHg?YcBm_4
zjQ@6AA&(wiyZ$-c%at^xt$WqR%EvCYyi!Y;vo!sp)@=oRCS@Bgqa-6bpzo=<P75ij
zELPszFXd5Tnvbu(xD+9)$=~Q_G)3yw`j5zGG!x#GdLcT2c||xPex3_1udi^`YXz4s
zB@u3TlMhXi!Mn^}5NiFQ=S9?Le8QCJF(w7Z6h=`psX<>4%P>BHR_yp-$c%<i&0!s#
zvtBFjQ9373<8P*!@N2@s7(#g@6A@2L5wd{W;bSA1b*Z)N>yz7!kwS|?G%_SUS}k9(
zUR}P-)`=t7Mc@Af*W;-kxbG|Y<X*<rK*a<ALM30@EL44&*QEl&++{BZ^t=y8d^zKt
zb(^_o+Yi%<E?>GDz!b^%?1Xn<E+&7J-&=Ejn7$`w1RkMXE$G;Ldbyu*87M|w*9QKX
zp{;(foA}BYoOxXyFl4*Ye@B@3A`966bw&u*goO~{p!ep15uo#ePYZvI?**Xt%7DX(
zi@{;V?N@{J8>?-(^0m8mqduL^0yqqj#20Wk7OTn_qx+><RLb{!m>a6*7*!4y3|=p%
zcHH)HF=_3(vY#uLD`W<rB$7h*i3;5_bB0j3fvFuWvIxm)VH)_UEclu;d0|HsPbVQe
zUQBKegGO|8b;OwYrOw=Ft8TX3;%;S3)|X9GhPU*jGZ}nC@8&eVG#T8<g+jM7oIjCN
z9PYHe{Z(7Q-2SRt9fCE9uL>vJuVc}Bj09MtMNZ%pi?K#n`wzEV*mg4x=D|*7F6Z97
z8M$QW$Jv|s_fCwgJOT-;NxfpLRU98qctL?el7L0$1@9IPszGn7H;)w-9cb7dveR6Z
zD|<ZJc2Mrn?E~3`=o%Zy;5<r+h`<05fuhoy^T}zcze@Ys<w*;)vqV~PWUaL7*S4v&
z>UT$^1&9dbNxKz!3#)6L7o2?s_m|2$v1EB2-g&hozBW6C>k|+tl$fs**rA9_XNfWl
zsc#=zr4Y^T843i>tK~4<q5gD^7EymzRmneCawQcGTUoZ33KZ?=!PK_hq*SU!u1@-r
zNMJod@`s>EqGF+golSN*(oV6r$BoQ?>WQ4s`J$SY%X{&mEFR0QJ#Xde&tB%{z!}PP
zZNVptxwK09?9Emo=Dj;N_E1&~d(Wh>Q65y_6c5d>dK=IlC17l-2^WSUzJ*7|H@w2{
zrUSSeuEd>rz5()(r@hqo3>DrSDeD0rYjf4RCZ?zd`)V(xN<}wC>gJ)o$6NKfjHIPa
zB}vkHCnt(1dpQ=-{GuN0-+B^s6YR!_2%fZ0c(8Y)?B<9B9_(XY(HEd-L;w%;w_Ibj
z5`U*S(cazdN<IZ8BXWAoy@GUrJ0hjW+Z)A3TX3w%ZziwgHIDb0)z$HMKi?HJ)k#G3
zl!WvtBBY1t9c{BhMk?+}`C+fsCjd%E%KZv?sJ`Z1grb|Ui_I_Up)Po*tJYG{a7ho;
zOHj8^owg){PCeN*)G<@9s01FaU-;G3TFFhY-oaAeZ|IFQfmg4`y%9Bnvd@hSX|L$4
zS9AbH7m;<|8&K3*8?H>2;Ez44@-|biNX5K1xNo(q*$u$GJW|w?_N!ipJ=2Jg*khmZ
ziqe`6eLOxv4UT(7pH2cqMvEuwPduCb3_^`)w<oLrQMNTGn%oB$yZY1pO&f57Lz1X}
z?2UtQ5;cPAi8|wT*Tp1ivZZ>x*8mri1j)79;bc9FK$BJAUJvvF6y20u^bfsOeKv|F
zSIT2=n<~;(Ui*L5)9frjuZSps*HkCGR=o;ElLvR;svn?Wq)Hy7*Qd1EBO<0((6iLW
zT1HBG6}rpuKEIl`SMVHHka$O|npe;>z+}~)8>x<0^6g$@-j1SIMl{5$(7b2=cc5sb
z**#FtsJ5dZ?ZHYIp|hSYrBHN3M3+7G@9~O0l~9u_^+~TN%@lOAaDo8dqHhOECJ)ff
zuI=fnHQGX*0O{RGcpgedn#rq?$D5jIL!_kFpkt2tIVc&mV_wM*cvUAmwjsHdZgike
zrji?zHT3h|I66#alWXsJ6K7D#NYi`O_xqmOe#53nS+82(^>pvGG@Ld?8q3G^RJxaN
zBRb{5zQ{EJsnnIp)$*Or?I=p0)%E+|<3H)i+DD>BihBJ0+j1^N(dew>q54H>)`@nk
zSM)wl2dHN^C+olyo`L=yLhVf+tKab2bvSWlP1X?Xnp$|_8rOL0<7{QLFciO-R+jZK
zvzWI1S{qf_;I0N>@SRIJ!jr}Km-FigZ^OJ1+&;|DTo(NIKf^J7%?w)v3>h|AaL{FK
zy4;xZA+n;~mNSRo+xxaL6Z+r^?#-3oZZUY=v`!%M>8dkbZ^kRky7Yg8E!%%#+l^S@
zpx9cH&~5$uM*8W(J)~TfX4apv7_SQ#w5W*^y|UESc3plbOL^HHF7YIlWnR0v0xAQt
zDL5d!-Q2B?rI+OivitvI?`^>3N~*f?o6K%!;x6p$S27EW^paheUBc{qXTnFEWRmP;
zHy=YLyBk@sr)RonrZ+R)O?OW+SwIIwi1J}nUI+p@3QGKo8bKur=!hUuL4pECMBY*1
z-BnPd_z^+y{hd>Fs_Nd`_fBPZ$@B6&|2)rb(sfT&ojT{#sZ*y;ol<8mZ{Dq`V?1C(
z=B(MEW{zRD<B9C!bGXC<gw3&wC8Uek1&#GhG8*-fy7dS%vd13onJ&T@^*Lx$c{kEZ
z5e_&g^^y01ds5^*+91v)Bl6zR)ooCO?mPH#{lx}F$QSq|Wf&^f0zx#PLntzm4nZcA
zC9YJLhW$vS!h1QRuN%DLLz)+lxTHyFD7e(2Ng}?#*XwFf0fv5Rob4NBR8|H2u(t|;
zqe)$hPm>5C>}>vcWxjD=@wib#s>D|;_U&=U?$c_p={cGZCw1Kw{kNI71}QpEqeGX#
z(4#haln%aIrNFY?R+4rj?XimKh&G5w(OB#Vl75(3Zc~3CEJ0-ouivXx0n)t8;WbLc
zsz7tC=+Y=g+^r1Jia)N#J)jc&ozxZW1hC)eFo(u3GGnf3$w{m2%~p~IkzUXQ)BK|j
zRB$hOXgQydU}pV$Ar$MP&O#}Rl6{_?)Nrdg&xCytJDYPigHPv0d9qSI+Bro}VDX6{
z&R6FUqpvRr+D!h%g{m%d68V?%q({x!6{0^HwMcuV`xH+wnYa_g+O}^r33ZGse7CQc
zSlWU8(!Q~<S2NtS)9c&LHH-~fx$3H?piM!1wm8)o#=QzU^!{k9_3!;H-QTLqeUtWX
zLC$&QlD9FOlk<&=N_H&^uBD+xMG#Tj2za!efaN8}c;oE@vz(cL#eX+HZ8o(}p?%u%
z2R~?;Z{RfVNu<n`b?}{pO4fEH4WdW~6WealHLXZ*IuJ69%KJ1bt})MhKKObl)Ii>B
zIPDmkcTgZUeT605zENEHRs$E_<jED<uTdv57{`ggd$f2u?6VGa$#>D+t)v)oBeJ*I
z?g_|mI=~l?c+i%C-_nwF_8JTPA^`W1e_0JohUGfJ@JKHi?kcY)1}`vgb%^r@+THYS
z!S)9204-5Sk2zg^gS?M}v98|Z4DKNHg#A<)87Ewqc3jx+$Q+g#e8w^IcXKXqtJ>N(
zit4qz`tviMymGUp5zn4_hhCgyq6iaJjM{-R9-_o49v>D-AV{X5&ikD+JI0QIpEs&7
zL45>7&dzp@9j}if<IDC2Lf}szq-z+DwyJAd(q)E{r{Rh?^5D=MxcZ<T%P8Wm(7khJ
zpBXFS)k8WQzeSG1si->5WlwX<CL0_B^mJ3UzoLt7HATY;CM#pk?8b|a(=`P5aTt<;
z8&&O_BjC(v0jg{U_jQ5E;3WwV7@h@P<ifADmhUgu5d&>L*ktMVmyiRlO4n;h-H-mL
zjQgHY`AoC&U1d7r#?T4dDkTHASyd=lFi!e8%@<lE)mMk=n{?M$E#n`tCIeGoXeL1h
z7~;1*#=S>j0flDo{5EMxx}k+3jN+c16gu9%@k>Gjv+}(0tfyof)W?*-=_Vm?$mECA
zR>j($oiqr;?2$^n!9`XJYs<)8d7I%WSeh=4fREgg*@**NbYp~j7vI%v`;t6~up9Rk
zh~FLNMO`3_-$NfAQzNzfGtItOf3nQegXCHD*o##~N>2=T9M(uTZ0NkRI{gT1wb=Cm
z_fk1sNYrDV!z~@$JTif{D*O~<Gm0QT*+9}NAm94)hcuh05(?TrZ3^bgs;K>E?~e{p
zdU%coX6>Xd6=P>YT5~XX&nB&*B=@tJf+`Y>fUpBH_m(!3H5d8cKp!H-44{b;ll`o@
z-n33+qsc!c;%S}S;faQnnfA>;JP{E}H6PENDyj|fIdOC&L2agE{ST=sbT@H8yK1#^
zh2G4dqX1xO=7i%h&IBrw>=44tC^`_y=D}7Qw^UXI_5mV<r4!#jX#(vy_=&6E{eWUT
z<kJZNllUZOH6-zLKvZngpJ@H+$T7q9sw>ncvZBu#0Z$2qAYg>B>>j->veF4h(PeB#
zxONns!wgbiXhiA^*}m9k9G`WL5%3g5>%np%uTdvw_QIpu!CN2HllGd}C&Xu|t&D^~
zsv9lGbXX$Z4h!GgHdh0j&CYJVzl(`sZ+K#tm*u$?Dy1a;*>HQdN;%#Nvb1s9Y4?sX
zuX!}@LWP{R+AV=eu5T4%lht)grgJw*l!!HaAGGytmHCyC=LO^%I`0f^P7y)`@L3ar
zFDviuwuF~)^HXgJHj63e_)e3k6&Vs1{3aB{%fj|XEkH;qg4>pg2;*r603u*_-kb=M
z%z&PRr&(o)g3j=}{mb94)vbz{&dP5{nz>qMFbUSaM9Z4FT4>Q^?ViUa!ZK3J^2%ix
zQqSjvrZy2B3US32iTWAX@fPHB`U1Gg7>&KUep$)sPH?easwTv**CykVS3q(>kzch-
zkI)XaNPrCfsNmAhx&1#|f?WxvW~>Y&W2@~z?U1;Q;2}lX)X_AKJ6Epx{Q)Z*JkoL<
z4|CxX5X7zMOjwyOq4`QT%Y-&fB?!F{6(ntHMp4B+3#ev+ok!FlDrALht_ZPbO@+qq
zerZgGoUfpz_}zOyq%Z$P5kbc)l+p-|BOp#&($h^MJ=Iy5Z&<VFafsC);I%V=9##Yr
z7@dBS3mzvekml2nxhD9FlCe)bt%icQfC&N(8Uh&^Fs(=j$cQ36grD<*&Ng4v!-w)@
zr1KKw99@bs+2GQZ`J~k-+#W;$zQf3b;OQV8Ieb;GB+46&%{w}1JD9A_!xE+IuBw-?
z+CE6qHufofWzV60bsj2uN<FJ`-FfwWgEDf=O^QgUu`Yk@4=7o)jU56Tx7X`MJjz|s
zqVN|Q$TGDF5ZKF;in2hBDZALU&9U?%u|UIqvIjIspordz1yd_)Ec!V_Xv4zRr!Y9P
zkuO%Bo1h~2!rR1_EoQY@`yA6|t;44rT|)_$bJ3Zn%CUH0(_G{0f+Cwd3)Kv_mYII&
z_FA(LQUdBW^Q$_^FMpd$Yj_uouQp?uabRZ2FMF#gz%ySugO*)@%Y?2jHH)yNNq97t
zw==Xo_=WN4Ah{S;g2^!@#<|I<Wkcq70Jrrfe7s!2#dmmAXr=rfaqjSa(=L?QyL>98
z7`s}H{>OT1i|zB~<>Jx&<UHM6b2Mef>8InBc{Kn#-q5&^$qkPZI{76gXw>h}m9TSb
z^7Z5TYeYJtjjTu`*j5`Q!_BvE?3_?o*_H0^CUwbbE1hK!x3ychWTzV!w?cnbs&be2
z)f&hWAyk*6FfbqOi!e?YTdO1ZpbabT55+o_FNfoLn=(9LG8(n5_4uGE(5dCH)iy=U
zBb>3C0yLr*#8D$pxT1lVgC`rRgBKgO5MP+m&<A7Ca-C|-z-z%$>+K;Un0$z|fPJ)T
z{{aJEMwWh*%~vs}Nbnw%FP6MQ4k47Y%rNDJ|DpAVB=1c!-<%rK*pg7)ioi?>mPv4L
zAvQ_5eEgP-!rkmd%w;lr+n#MPX*xrv;q8J15+hJjLz;<MGZQCBLBdTULvUwXmrNYG
zJ6mh)P&pC7SfdAxu`yy8a}2jQt9)sDj}S6LisN1bK{qMxGrx?ujG9()FKY6L>FuzT
zTYiM;<j^+sQk1jiV|Psv7{RBt)#QAFGOf(bVJAT*%*TsS(uY1{?Z*p#{H!0=w@35^
z`pldtPjeY0L%Kg>WN%Kd6|yJd&qhPqafLb)T%6%Kk7dc5ea=W!Mn$>r=6sl)D&q!G
z@bgpA!RZeemQICcPfn^xMz7zLkJCTWpcP=wRwZeF91P|tcX05BAJgVZsvYmxTyuOG
z&N1ULsV8wOSf%tIY`Q&RYs@^JOnQTBfFErlbLm@BWJopoeXfo?`r-b~=ExS426?1d
ztMG{@kb)~WVj|L<YaN-<Yl2p0?sii(04RHL&gDCy5xo85KIFqDD9O)2{mQ1sV$aDh
z;>B=J(xq-S+<`s}E5429EzmjbVv%edX5V4bYB;+f)hNc9y)ACb!V4OHT~|AEo14zE
z1(<WTeRFnLKAYP(qvm)>-};iGwCw6+24vJ;*CrTB6=VQ65f%rprt+)0u>Kjnu@n?m
zk=@#43jfh`%2&?GY3T=j=u8COPdAkT;1?DH>V;;Tkqa_u?NxuYOYFb<h?)#AN6c(f
zj|Pg7U`-%O`@Vy6{$l@2_xz~=lMNFG{&h-nYt2-->uChhDp=Ff9^Jj!s*-}@KA;Q{
zDiH2MQbjvQaUy-D-mgfDI2cfYGEF=#30dJtQnWX@sZ2z&v?&p>!^2T5VmU(=Ux)Ra
zcBG3;Ox*$l&>*6~LR!@|Atz~bgcHT_Kk-pcPI~JiZ5EsMMMhZbfjJ`|LTauNeD1Fw
zPe)d+r|gcK8?;~ORUTo3Ev2V<Y?X*#2~Jugy)dN6hQN@zV&n@ADMRV0+GKzk{TPr{
zlKL^AtV{&;7*L0K49G6GQ>6u*{o+Jm?<X};o<hzN@(~A%+ms{z2HDWrYVntw{`Xbd
zG{6oC0lXnma>DD|;iKpC0LMq~e5M2c{)h|T5yY$Axjr4p<9jd@(4W&{y1Hjml+HV{
zs#;SKGC(9s-4!EBmRTk#zGJ0OZhHzN`sfFHf=}y8RtvdbF+upOe(wdnP~;m3<Knk_
z^Sa0?9k-%1o4Rl$Xo*}k=SUmI4RsiqrV&Mf8YF6x|KFLn`la{x%L?mi;X;wpz<kYX
zo+Y3<J?S{>RbM{%q8j1*j;dzZ<Dn8x-T8%kngndNtV$)RL0!wqlYOva2F}8Dt=E`^
zqB_Z2&SA>l5G-<<Hh8@FtT}jAO(Sl6mm%oSzg&IBQJ76T>O#Pa7u>Jga4-9|S*Lmw
z9FmB=*)*avNJSf0S0?J60@C<yoKuc;I^%KsPo+KE<&H2qZCK6OL<sCh+HmZ^!9WSA
zN#(e~`O1^q{!S3H3Dv*>c6m2xrd}0&4(WrFGBR6u6rf7$T@A&UOhf>ATcoiBoU!}(
zj4W%C$ndP|5PgO>B6wH|D^%+;$4cx0v>tA&kzK9^S7`}QiqV`JJBkVhihjmfUU+vt
zBIiFxkOn`gM`cx*`80}rj2r>_UhVaSH<Ab;Rwmqm2o!?%5rxLi$jp+bz^+p~8grnL
z;hc&criG*V8W~YtrT|h(1!nkgmQ5?~nDr;1h}<S{6@9-(-U_NgUdCk}EtsC<SJig&
zBLFzoO%+}De75P@5jh}r7p;1=I7#7CjdOarwH%zD96N?2zQ~~!Jo-nmugCD<BW0ny
z<ERoe%M$srh>0wQjxL)i5WR!f=sKCo#KZXA{ulbUrHr&8ts7nCGz2ZkP5?Cc1?>kw
z0k`PH;WWWOx`$=ZkE=D%s;*1@vFog%`7L_d(Q%IQ<~jHmp;anZQa0T)R?n~-!D<D(
zCo|n-Lu>Z@(X;YdQk1eukMCx~n{>WN@;%d9F>qHzeIw4M7nEA(Ja>VT+r{^lZhR+?
z&3UIK;)FmB7#$h_@s00b*$6Rsv)f%92N|kLgOKwDSGMU?fffmQw9?Tic>eYv5|7pj
z!B-Zd@@v11^E;h*bPhe(b%=6qGhq$k*ka9bzBWKw?Lv^I*wUGvl*w@&YR0M?E|=D=
z+OgoKEvte|9rMj<Be<Tim9afprKG<|Un6EDZWYtwX!LVvT!-bWoxPTVLS3s>_;plG
z`}`wO+Phz&KEw-Y!e=s*$0t=3oXK%*yLBr|)2UMwYiYs>`h=aK%A4EN)+4oU{nQlt
z-zHDnq)(D+lPCqdvRic!G7_53jmRR$3z!u^UY^=z8Mh|azTzBt!s@}v=iQRo&igG$
zxQQ`8RB7aArPxMrsBptJ1GcwPIYKd{n0}^gpOtG<wp&k_4pTA$*Mzj+6)IJI42H_~
zAixBj4228Jcz6q?BcalRIJ-fL9}3^GFB?*C2PPiIK@8z~*i--sCb2tG?Tm+u6&^FD
za38%9D6rLVv4UN&g=|SHV2ZDed?0XouFw?Ixxh%iKBGRIv>)ynRz;_5(SgPc9+u`7
zmTc*Mn4b3xqt(;4Y%fwxa@iSMHcGFRF?aV94re1@xNv#RGe4`hfDEo4-CMril<uFO
z<93&CGtPe$Ap&}`Sl|yIvmfpm9v;1aH=?mQ*BsvNyG;VsGb$39E1bVg)|Sl9;>7$k
z7k<VT?l?Y1XJ2^D@3vq4L8UV6tT(cJ?iK2j#QZCl71d;unF7kRbn<U{ER`iw|HAb8
zwr)IpEx@Xf%V`VN2_sD_hXjb&$zdmzOb#=xoGmTvLs;Iyt^W|SzN&a&d?ykI2k-fz
zs0uZomJu^AZ%m)iU>Uep*tKY1kf6C@HOAy@g+dfiX599O;H0<X?K)MX&vt#{Y=2$f
ze5OJqgEiHC|MM6DS7nXJ9HZ5G!2lnl2OZDYrzs(xH5N>vndP$?mkimiDdv$ud18<P
znvqvTY`-GaEgr>U82s&`LUYkc??6dNn}Fi>0@op>VR@*-6t0S&SU2g#G)p0^WNPz0
zy`#BkOl;$5PQqf%cHL~aP2H`pR=8V%Y~qjQuuR^5x)GGLMSz{luVBT!2RdM~^^vdY
ziLW*cCenj~YrC`;%{7%nPgQX^D<yM@*wc&7Q9USaxrW$23hR3G%UZg%rww;z#F)Fu
zTH@|&+)YMZFX>ml?AnRYN#h&Ku>+{-8jhOauZ?-(>F}Fg?wYD|OjETT*UjSIw8JV}
z4dTGUJ6q`9%)jt<L!lj%E}HpoM}*}Fk3)Xui~3WlOoYq`i)gwP($w6Dc;h0wX|_I$
zol8;^^}IgSa+DHkb$3O*`~?e82vp3M8S^w^^+WcWi3Sr3XPpEAL{m|&+Q!0bJ?2&d
z9r?CV{Ya@wQ>-b^BV;obi1p&k4zpfG0S^6(W^a@dl&e+-tuxcwA>J9h=0`k6gNP;U
zj?CI98W4fPwiu&<86I&msfsjfL`%b~M3qovLje3GvS}w_l34{kIbCVYP*QAmh?B#Z
z7MMUZf2J`@`npxlVwF?K1hLxXB+||gzfMz3$WY@43wM?0=ZFIQ%#InYY)kAtrfP+I
zH4r7v$zX|Ll)2OFSEb9e<F(wh;~}4JN-2QQh>bX;6293kBi2WJh2WXpYF2U8Wt(r8
z>XCD-99H+#tLlyONMSFFW2i8OT@yD)wVNnl&_m<+ZIo)JUhTziqnI)Z{j4AQl_S}^
z!jD)%{+nz57^-n!Mun{}iC)c6Q-rEn4isw6mMu*<FzaxyKqPkBp)T!gu(B0X7JaHr
zR1+#tM3kyT2+0zhzK@+MJBzG#w^%I5JsQ#2_9Ly>bll}yDRx1EpvT$F{@vF1X@?Ct
zTbXvE^C?<`*leyq@akmDR>$&~u8`;Q$E@Me-QzrzYtQjcIHt?1*%jE+Z;v^Q)p>(x
zY4R14`2!P1t}{A5CpGoe6R5{GD0KrvHM&GP7kIC7aE`o;gmyU>Ji2<tC1W1o4wRIB
z<PD|=TPUE;2`3MWGDo>r34(9BwIknz-VSm2X)fuxeWP?^gGb+@+gmk1H{C1`qtd=n
zI<(E1Kn(v_)R{V51Mn4o?v0u*#x|EPBRF@Og!2G0WNvn6%DTj4xXsXB0**tz#nNi8
zx?^7@rER7Z=WyI!`%!%*-mX8=tKfsXS&$s(QaSBm%nn91^e)|sbKB0@x+s_~>{@2|
zMG_lR$p;}4&acizta3bp;1ZfPCbX|k8GWB-ev(TNF{Z4ivPN;$l%s|ACV=jU?^?nb
zgRP>b)Q9$s&waCEgyrf<De>p3YD}71<(QqAQOBDMAxx}BqOCErP(RzyJpe5<7_)x3
zOJ41F7<{EBNRhpMzZ#b_cg@qDFV*jfZZHQu^hw{5Fo!*%Ez)FTp%MJpk4J?Tn<xH4
zwuyRUEci<el;IE1>@shx&`B+6FVqva^KZ?1;x8}?>ZKf7zztB$5LqCo5Eo;)@G7^E
zQoIAu?yLYPH}k~x6~ZjkznPsS60sT?msm_ojT|P4`UxC9b5e^C$^oIC^S$;bH2sau
zWt*t$3Z`{xoZ1E%u?KImEr&ybXHQ(frK%ud+MFgD<!9NuNP#oFt`f<9M{m|t$@F}_
zR_H>xor(;}<z&xTdxguzUuqUKG;;(Y^lX|LZ;YjA2#q^5Q4EsYB$BECy?TzDu;FJY
zG1vDDNAV(C4mNX+FuwL7QRh^dTyxGSEC#xdKh}L)VGE)5KK<EQDRsrppVU%sYw{OE
zNPFgp72O;lLrzpGpbx5bkpt|s+oo0SfLkoxs&Cgl+79!Dhv(}!H^$?9*Zov<5;`B3
z5H<m04umk+ne;N2!IK<f0oKZac&0v$Hw#)eomwl#t3}LdUAne-HRkwW_T7ThwW8GY
z2MG*z?nq~C(~;Wbd4ZkjUj84o`)~?!q8y;gu(|mynhJ=Uk}?sJMd$8vmTHM@Bl2Py
zrn(#Bz(SgR_)WAEl@+xUEb5_(_iAL^3oK4VdHY6*DYuKvs2mlqzR0)-zZJY$TVx^n
zIU#^$hU${<vJ}5zj4|QJZX81fd;eEdc(^!#)Kv2?XU!G7PQ%#2hN_x<-Kzq;!Df5s
zIYBW7XJUPrPw-{(oDfcB%9t-8xYgKndMT4+?bQldi->7R`f#GFSV0H!+^sW>+0B9Q
zfl=`GL)JzXy2$5X=B-iMm`{s~cyl0H0p~f&{0cs$YZ7~D7PXGPEsD8mN_sIWP`>Eq
zPPJNhxnP^2_qq<1uq^_utj}KU_KoL;6fwTHKj$?`o$D?HU7S$#_0bCim{Rsi(_{bX
zB!<Qh$+Cnv!uE}_Vp>5q9*)%oIYhuQ+U5mc)P%A#lF6YyV(TRb2OnOm#w4#U+D$fR
za%nRjk8nt|qDb}!PBo=S7zIx23`$_v9~doY)lcAvy2Vkw)bjN;s{N?YskL&i#+@(8
z5v@T<p=0Q3T*SKu<T>0Z(cO5op}Jk&-MC6qE1Et=Cb7bf@w3BNRBPLD&;t9Dx3PvY
z8GXgFRkE58tBP!X*>#4t;yQ_EyMe>;2jBU$2E-gL<3n(b@gPa_x(pkP4HZKy|8_+K
zqm{Bv-12Y_fb7=9wi|p~*32W7;AmwZYqUjd<+Z^M0fNPjZCu1(Nut?mLfcY()){sw
z7|&3KdL#-twaImWATUY7<49+WM&HmhvXcxThbTAI1m+;I7q*Jd;(<0Tk6}R$tGpkC
zx^P2318gtZ%;hP;ps^FJx{h|U{T+%~X4~N;qUF>%%4@+%J@rL*b#vjqtj>KR^Zdql
zs+QapSAn)~G|}DA#(BP7ELS3;%XtPbo&s~DL4%vimHg~<Cswge#E3nVgbu7}@x7WL
z!tcbb-Xrf)qa>3~#edKO&~A!Xztt;-Ot8UkWD}aM*WX1nP<<wn;q4l|4G!5>sd5pA
z!PqQd)u)jJa(YSEFL`ad=V$bYc^^eZ9j}ujb6dG((_?Fd2JXOC>08jfR*`}-szWO{
zx$zt$wN=`+P=cDR?iglD_CzY(>^p8tu?jLa*r?rITY9(jbr0(EO`vs251c$Ov5ztl
z7V*bfMCd2E>rkU_upiI*$eLT6of_!ddAuC#|5-(0ZZ!eshcyfubG&Pdi$nJO!?XvZ
zxsX%uT-xxc0_}srJY%a^onR_TCyoin-ySH!t2Gt;hu~=~O!xE6OL`b)&2qou6|AGc
z!9F-|+(;;vO{Mjvp|D&a9cHhYqDWoRw0BKWr0<E_11FT_=c%SSW1)`qolj$xL`JVi
zC_?}N9_s7a+P8IJOAo!o0-=Qe?LTCIw10_xz3Jx+7vmpgup|tQOw-Rc$VRBWkbGdx
z56aSVxZfDuTLliTV~bu4?9Vh9b-w5rmh{sJzGvo9_v8s^<Rll1NI8}9<`*oIEhUxV
z42~V3SG$Gv8O2P?IY5eE#z-Vp7oUMxV-Y?PK7xOQY{aC&;HQ6Hb0JJC_3?x9F+?Es
zP0(d3SQ}FjB_i;<C|dcdcQ+Mx{x$?xYYuPbA*=){^`-AokSODe*I3>}9#Axgoj>d}
z0N&t~+KF<Lp?EPThMJA4E9R;*>iR=gNQO4+x~#(~lR4Jqwugk1?4#*(x~|Tk8(lsS
zDyJh)1hqS5bqDtOp>hTL!cZA@=t>T@NpXa|A;Ln(s;Or;LXKLcX(OV2v{0`oVSKwL
zwY974w;6tqR;8UZQDw-w3w?ovWf+(>r??bkjU*Ss<KT0RJVkT1%bcVl<#?c#F)QMi
z!PT@9S(hDh+@li`plHYx5tAX%h&&Y4l0gxv+O?a;McY~u*`dfV9TF(Tnxmu%kKJbG
zfKUkCOjKt1>l@-<Iep=na`W8rtXO3yS<<gb$|l>hxn}xPM@&uR08~T??)bX#dLX5*
zF5Kl5_L%k1xm7S^Zxx`53fGgN%;{U0*=T{?IKU&B<##+tCBX1M`NtNC0nWPogq!TP
zO&ScFY;$54PA!r&!@~FbH|YR;>{-*=Ou0TlZ8o_Y6uq<mZrhO%aYn8Lf5md~aUzi%
z=l_K6Fti^t;+2M2a_^qE46c)~e}@ZWL|0lTE+bSFT+}J1FF)K=Vp$#Ug$ZVTiw;Fy
zMM_qW_WSWydl3{e6}?;1G=T0$UgOo=Wke>t;zv!3u>(&zHYF;XRGXjJWGk5TnU6Y!
zeWHP`wpz}5xL3qwjy93>RuX7WS#4zmPo_<glO`7={lDHJv;I-{hX(D0r&(Bxf?_`&
zsmv)V=9IYcoz7=|#Aq++wocct*eAR9dNbr0a;yzRYNaYN=TcNZOEU#Jn{v9kp-Z7M
ze_2O*vlKT`nNOtcVcWL!jy04n9jvoo;-kSG)ItLuS2Gc%a-F`=E7&Bb?wIN->u~c*
z>YJ^GLBDdNAto+>@fsFhD7dHQ%{^H-d{yE<><T+Y0rb<8M51DFtNk7$5oJL)43(p0
z%VH&#DpedUi|=}xJ6z6&A0F;ywl`$ki=jrzatvzp!=gnwEwc13pVqI!)?-Mui22gw
z3!OA0zk9P!h)FowtelA#lbjM=@sLY$Z<Ql>OL=(P;7&diyzOR7seyiDvB>9s=X3WK
z^H~Sxyv)%xz2>81k-gpmuq9USbPclEU(<cx+~gyjkHJ_pslkH{O@O2Yl>xX@<=mEp
z+q8_(6DOQ$|0SbloLpGN!z_C%$hjZ<tHC1j;SAhI)mrJO$|n}clO`EXP|qRLvu9MJ
zFqP4dWc=<B1Tqjy458~8zpK<7<thhUylXfXAt6Y^N4Yd!fs6nfO=rffIMJc|TK(uF
z(wblidN^;s$g>EDA0eb5xTUG%drQay3;!(Tyd>hA4VC(gA{+iGw<?UM7KRp6Mcjb6
z(Ox3Ij7bcr$M1CY_nLs3QwJYZG?d5Ggo6(P9nP8`{Oqrb$S~IS1H`3V8Lm{>1=}XH
z;<-U_1wpUQQ-q5hbMzv)aiM6WY)jI`b)`z@L3QdT$+&I`HrT>7?^mc0+=Dev?G}d9
zg?DPW>+j;rlASmlq{Ixl=jxH5e0~aTj3MIz^6m$((eN8?4wo-N9QnL>g9bo|=Pa|S
zZT<sVHsBmTR5?;ClT}BQmpE&<K~aj5ti%Fnzxts04N~!?mQhou$T3of?QfhnuH7{L
z#hY|zl$~2;OsE<d1PYahu?!bU5*Ex}RKJ07Tnd5>;jzh>pQ?*#V0;dI<2pfbozz_?
z=MwAwR1e!pE+4Hgl!4u&PadT`@>@D@iM;iIVFxrk&L@s`7H~@(CPi@LZ|F~S>=XKO
zHUobo1{(a72FZYAEt{4yh8~C@!v!__n_jNL<)4fUCWAd7PRd(0{kkcFKt{R|1dtIj
zc6VUOdAM;YgF#7Uw(<5*499QZ7aJPxuI=I!!T%f^oB4!u2WEkzgERPu;o7{fXav8r
zA`%vL(~5Lp5i@V}$TK`N%fllc<8;w)_{{{mtIxoXX)g>V+PfmJg7*w3)SE#aLU@a+
zW^=etoL1unPAFyTq1kR-XWJb*#~;|ic;LvFA(`R+;XcELhX$KGko0`#J6<vt8+~4f
z)={g@%Ri@_;-=62{Eh=)E;0=UKWa_>B2p$65dU)b1Y!gS`a1bH6i~|th3-iZXAw4l
z)tDq-SdZ+we5q&M?W%HyGp}zGRfTy8=#H;zgCC(7>O|472k*=QU{KJ*YQGA0*F*t^
zE4A8uwXvsMoo^`NzPdGY{averEy;K(uPj(@PT3rv93>joHg_i)$I)}}fMKV6Kun{0
zx##ql{zfN;N{ZSynlov$q>r|1TCKjMOBZAAb1l8njd`nrR<SV{(|B5P-BsUXigUvh
zLKs|q)zx+s2j}ZZyAWJFt5G!%ndlEEvE1BGVJ^hw`+i4bI;Kn77NulgexX)p521t$
zX7=b36Cs<~Q&2En7N)LB22II6_}phn2!?D?{$W)#Vv6?HkMS|;s43Y~<~#7Hc-WL3
zn3u9~Q?{=@U1t?B;}+q`K-8?7qWvn6kp{G23y)6Lk3mT<+Dn`JOS<fYDI-e)>mOcm
ziqO`O_K=Od9E-dVa(^u5QW}#=!UM}fhuiNHHj)fWP0jW{(BGWXHCLP?P;7IlVUQ%{
z8o`Ypii(K-Kq9iUNc1xyCU}UIB4zEt$9^4DW3KvU_Nf@zc4J$r_mXZkztww5S@ZjF
zE(b%JVlYjf?99Oe_iIl9w8diuY{x8L20<+=VmruYCDvLI+YW(7!N|ymwS@0e1&4o7
z3Wim|j41#<^R&BS6X&nXs-9(jglZw?%XQc&_xGoApKA$%SO#Jo{-B<WF7G%VH<0JH
zX!YPVhvFUIceiFJEh+X5q`wh$f?|X@VgV!Is}E^lNLKXXqH|Z3p8ZpA#Mu>dy<IWa
z2iJg%#m;?*@R$ks%@+PWny=N1N?Skj5#5n`O2_#!dP`<6zeEZ~nf+kq0SSJVgz_3_
zm%0gHGte`jE;ZTbGy95lR)7!&X&~5;gcA|Ud5q`PqWdXjqdrBo!wwyTQb;JbdWckM
zSt{y6c68N$H#BfA!yb%+MFL~oV7bMM4zO>m0mIFPTF|XNf|u10aZ|1b@){6DgK6(b
zAjg3lEO#~tl8QZ}!U+tU4H=SyTYgXEz(h1?2@&$Sk+5zcf(DZY!n9O)zQ@wVd0%Mb
zgStzqV!WP*r4);6rQS&|gt3|1zVRL{*EU}8rBbr`3X7(&xRUx-;<$cUxDx#W-e|~>
zJfa$Yw~0X%Y>3vA7FFb(qRO3FO`RLp2^rVDT8Go>JFXGHmuS4MzYFctOW6wDvo5-}
z7)J5|79?ps6MI}+;qBP)P1{x7!N9?^3GVoPhc;yOP$9Y+RY#D<s8jFcfGYO<u~gT4
zK@+cl%M{c5<^gn*Z2OsX(ya7l5a3tb-W$b$OA!X={h-`aKdQz+yhP{DgK{)}vE-y5
zGUQNB!Upfm2eezu3fkwSH7`NaW22R#7}Rvt4L9qKK}_`p;R)3UMeEAA14U)UN2IXU
zV{M<;3%yIfa3Amh$tYwDSQ${Xw^Tl&1ZmA5IJ~vRIQNeT(t%l80PS9IKR>o))vl7O
zuF!n2?MXM+XnfczfX&L-P`D={9=zE_#+06e-6266My|<iPxu(44FT%x1DV!sWKh6L
z7#mj6!*JXY^9Q^1V$YN_{YdYO6S1C=l=eV4dC^*>rB@5m_KykuntjD2Q5pM;*9;t0
z*-6a9(K^XJ#$qOte%QKQ-n+-ixqgqiS=XG26;VB(6jZK(^^f0Iuf2*t4F<)p*n=0{
zkXj{qmAUHU(IGe=A(Z=67JhdzzE54KYkNpnwFo*@rQK@;d9JmtbsakZl!M+qY1WvP
z=>8f;z==GT3~tbiepR5aBf+sHVtT9G*i@VORohZ0R(~j@@#&tcBz6C=Zi+(QF*=TT
zH^OW7h?4bo)o4;b8q(p&-(A)is7BHdp7#kw4LyWGs78@2s~SJArSM4_0pC#kMcr}2
z<;RHNaFwJn{7ZNYm?rHTW#ZUDeCWv;M3qE2eAgG`ZJhHFs^)d$!{X#*tw;2g-&KSg
zZ!qw?<FN36$hW)@3D=1uz}|pXdBSxy1aOyMv#U;CKXq#aM`%(g@d+wFf-dE(_5#BB
zx@`^I^NL)+$H@NTk9<f>aTL<;cMzG5m_lNG^u9k<IMSVdUdqfGp_1*l58a^wFhnRY
z^ZE-&+yw35Pjq{T7>f^zVjp+r8*~(6FQDz^GXnd<?{Fky-K;tet4ue_tc51y_hczq
zi!5K}AKId|Fx`KmMr1JLWgXr{$t!6tXxasZLFRNtJ94<u`2m<i^Z?8s>d$uQq0enF
ztd2};OE~!BXKS)P@dscuokN`oE*4e2z<2CY{W^vOBmea0m~z8cmhnIY09UDXPs1>=
z$>hb3I=ro*>>Xf%m`BmvK(eV|uwVbA>d<0{y(&Mn^VCmiR1AaU3wR_Zn4zB%)2qIu
z>1kOem83bRBRTfuk-sY5UFiELPQdiQ6+s}p1HwJa(XNx4{TVe3Ht{a$wjHcOZA;%+
zjinDkyM5!Zu51^CuWOoltZLGnvKV%kiZGm~|1?Ti_bcY65Z4Sv5w}%DfHH$eVmR%{
z+_t1AOLO&=3I0zBXz<6&rZ&HQ$;6)cv>IL%rBJ61rCo%vz0z1&YL7_CYTGNiS10sl
zbjENX8T^f)V_hBrZWm}#vT#_-6q$qb(xJRU()y#%iw?=wllIk%+|sV4^UHXe{lNF?
zdqvW?xN;J!K~V-DyERfvw5nyOMdX(ATCCtP;iC+}nl4~8A&kH~f%{0Vp%Bl$B6Pb=
z6N}_h`z)}mLQo^7wU*mfQ9RDtL>Kf}01BUp3cvX@m^Q;p<>3nA(6D56NtAU4=SEW4
zBZXG#OuN#hBXf*O`$o~WR@jdCPi<<y<4y|BvcVg>bnpSxdKw`YtgRsrj=b{Egf5p^
z5$jom4RlMy=nB^a6X7gD&?6W)CREBd^5;kFD_d~_;mIHd=Qq*<qg>_DQV=dnnegx@
zZV$iq&tr7>Za{nKAG#=82S1EtmTIj~3@_x8vB}PccLw;}+T2n%XAAcIP*98Py?1_A
z(M2T@jFZk7a*O}aWi{Q>n=%2OO`ogI78j5pG-zpSv#LY+EX1v_!I>WFOZ!IoX6MHj
zH5!+*^pQ2q6K?!-!dqb}+mie(b@J;3KV7l_+DUF3kj6>-g?Cwj?1vm<3zH1n9(_&y
zQXDV$GiKOo*0O_;TT>cV=9vtdsk_<ia%lK>nqP|aH?9-XuM-`$PDrl}>C0$s^z(}D
zmi1yfzDuh+hcfJ!5m$~=t{p$i)^JTzRN<xK8+K_Dv_(7bE-e%beZedKA}SgYfWvli
zkT0}-`LJG2AfeN2eSBFrWH}<>k)9|KS%Qh}tcaYEOl$?chH*oKLFa{3lm~+aPn6%L
z8%jXg_C&A3CZIfI=R7|T+YDv6H~uyqXF!~#NV7=ori9-AmumP4SUa8Zji&^>-E$+p
z`xNP#X^ktY@6f&3O<jnsfH;eUG+v0W`$8(>PG_9)B?<Ahmg02I7wwu6hhOiI?kxdv
zK%AwFACX}<rTB6>;!bCjZzD-k7M*;1LrI9!TJhAsN|kQ{p;#a<)L*IFN)i^QJ4g$X
zDjRx+H@~4<!j#F+=paF3Lhc=CiY|l<G?=abey<)D7K$EoEPl^@rgUnq(TV?pr+!h!
zFC|s@COC8{IHA8~^rzkYZVk+?Z_0;be0XDnF!62$#Yknvf~VKkbzsz={<Z1|iapZx
z^><MTz$j?+X9S-cox=8wa-?h5XcKI-+J=eyi?n`oXhiD~4qPgX){1p~=~K2X2#zjJ
z+VVA~e2#+8G0?T9q&mw5EvA5CsL6+Ql`W|v_!%Wvn-Y496$K_RGDEFAfD#i5%Awd*
zDr%KlhJcD4!VAoXXzH1rcJl6o6j=b_1r|Oc1aep3{3TZmP(T_|i@~G9ZLB^(q}@br
zAJy>*9kPs*pa5d%nAE5hIrUyq<%5?IWTq>X0`g=~tR><?Em=AH^$|LYZ`t&ITU?|w
z8&&!NQ>w_|pnhGwQfqYXk&Q~=gephAd|D4S;?Ltb)y%0EbuB@tl?PDOSo6OX?QZ67
z@Qz7+j3T&TQ0=8tW31o38Y06Vz{~r!`vx&JgtVzMssRmVy*(xywwTXNurW~Y(Dj|5
zz=!LVa_9ZHIaGs0&XO6XPC?hL2**wQU=rxaEhZGj2B)w+ixWJt+%gBmU6VCuJYy;m
z7{VfDvz*z@&LJE~N{JH(nbg0a8XeW1G9<86FoRPATS*vLb7*i$k0g+hL@{b!QM!pD
zg<xA8%c?`^BY)GJ#xBeWtmqu#0y#0UFzQyg)vJiw;Qi5y{#G@}@4e~5g^N<i^F%Vt
zv}`)R=DmNX!RvXX`c&j;*>rJ@oLFZN<Aq5$K_Ri57L78C62L`QhIDgSY6uq!?S}zd
z*YDn5C!Hh8{!oQfp;2MDHiDoiMI(rixNvmDZHGY*_k>744jRQl1;gspd&sOYR48qY
z+%LU~f8B&pMn@$m3r*FWv(dCHjT#6!qcG_Q*$)B@@jBhfI$4%X#J=9Pc(fwqiOP?l
zC0un50M&HTz9~F&LQ~0ls^Ho)^UY3EnQtbFA-E~bInDpJb})|Pos$;UAj0zb^2_IO
z7p$Q6a>!k01Dct1;qP5vR-$;F^xk<0apPv{LUbH`od`1@ZRPH;&S>6D9Oy&3ohb3y
z&lo&KJ3`r|2)<j-mn?lw-1HjwDmbV*4(05y)&}eX1&Ohak>AonfBR|L{V5tzI*B58
zf4M$itzx|>7OWco)2}pFF-?IzlwH$$(n$(NECou#<p0mAC^^s_&f;S12naIfeY;R3
zDq0SbPD|2n6w7^T=_}S0dcmX3(Tjj#Iz<<T3>pAhP5_(;s*<os3(}EezdNxX;i{DJ
zJ$&Em1=%nJo`Vh-@ULQRH}>l=_&;w(1sRJ)dW35};m+D)-dL4%{zvrPHT7_G=`lrU
zn4aPO9n6EhcWG{reJY7XACWh@?G*@~=X_&i7hRjcMCTCOaKmco0`T{`{|ynv6^80U
zyb>u=Hq;*cdxecELPJ#A{>!>FDu&^Pq&s*R!&oV$(!NpDirvGs=*hdPpE1@Z_n?@M
zXbvHwZCPl)YRk=q^I%liLPLeP?fM6qMCwcUC}q{^P(-^yS(_T~Abz!eG)Z9ew)eqO
zV`hvsXz+2<f0)*BNaz=i-#5C2S(>C-;`ODc7z^T{?HjNDs+J!U-SpEM(N!7I^h_!|
zxH@h}M`SC81bEXVUWF*o+NqI?%}3;>+odPfGrlH#4R`H;z#BrIYSbVOis(h>hEqY>
z^b|E)6Jz-mgO8V-h3YmJvj0k=0z27-4tM-xb2@~8KndpaDx?V2k%m2q;noE?K5WqP
zB1fclbAtSjCUHzGWNfT$2mYx!K|(-&q7kYh?RwI~tqXd5(qQF9k4Ww2^k~y<#^{0g
zED?{L|J<A!4u~HuoC?yWCnao6(BZQNA1^wD>NclBR<{_V0<H%awj<}3kmA6_=A?+i
zp&RTGbxl`uK%3x#3~Q6tByAFHOgi<XRiruycJ;pq)?NgQH_)7F&(_2UZY+{Qg{`kF
z!-?a2%7x+rmg*;91Vr{%(&kI`P$)1Y+-rC@6IgFxpmrmA@#rKwR|Rm~cZ=SOh%ZET
z-n@GW!D9~-oZc7#mp!@1Vy29)EY2~TAPo+Iz>yPwW2UwK!M`f*K{%UM55$h+9bA+4
z%@%LQ5@k&jqBL*)KW~l<Te@=+w^Fu*he8Bv-q!dnl&qEJg9*wws&akGAT#7rZ8N)a
zdN#ZL7yeBVKqsanlP3F(f0r^$ZxnQx0?G8+h0-pQyFyASdBmV8MX-LYu>()n;tfZ5
za!r6{y#fC`N=8hHN)L;oQB#CGI+I6C<-<}g$zQQLcly%h;Mdh?ROVdD9_&HPztUuJ
zGw6C&?Ycrah%Hk>Ifza1<Ih2S8T1LIBlf7*`yYxKE?sqYV2|48;o(e6QhZ6bo`K-c
z;|+FtMS16cYGD>BMd`V<LM2zA{PB=c*o?z2^2Yt^9@e^-{6fHjvu&&S^cKyKoWi)7
zc9PLYH_l_n%Z>bka$|f#Qz*K-bz!hipR4mjin8CaUV3wlC~CR84M-<ZM0T>1yB6%d
zB!UqhhJ0Uc!O<yHL|`(ys57ND<LRczppK`B2b-LqluzW$T3Jc(k}6!^c+`5WI7Hb?
z+_LFpi*XZk>KEk!Mrx84Q&q}w`v@sYTExv99k3uPgNY7ym);v~{jcVOmG7fCMx?Qt
zln}+RyC{Q~o%7Y=$f13E0hX1e6=$TBY<7prAMs+zC!tDl_&8OfP&a$6SAAf=7s{Qh
zy<rvzR)TfJ?TZxC2aw#Rf-AHhuHPt0wA1)MwI3Ykh~dt~HaR0^mSd=mDgPAgE|^C#
zFSZ<6pvkCPbwpg9PGjM2S%GB9k9K#yQJE`Eb~2fwuC%#%hEeIPU}}6y{Jqyr!^1E?
z(TP~Hy9>BTU##iBo;Qg@1~93VpMBm;akh$tt#{j^dgln2xi0J{*wPK(RI+yS<824B
zH*9dO?<>{m{cogTsB!ozdF#J3Ex+eGg7_F72P@X@Ke(6P$a!)xw@tt7zZK1|zw7am
z#-VsH{VmZJPeyAnPb{L)F-D&omcm9fg-E`j-uli;(c>ptvoSq>3N;l=JF>Hy1(^Mh
zmugLWFjV@s7S9bgS8=iYZn_9d|LB~}KXROwrV-qm!EaLILOLA=VV5jY@*QT8Ia-<B
zUM}dHHdafcSlu-;=aj*Q=3Rd4+j^=u+liJccb5<VUYhNkMdCWR|MX>I$_D_=6?gR!
z81QTT`QKBm22Xk6^N`QFOy`7rEbyve{P}A8a)Z1~MYn(NE-n-&De(_-Fgz<z0CZp5
zEk|$r5gZ>P4r<`Hb0iY3B2C#YhUW^w563#7(sQsAH61PS5hg;rn>M*@m)TV&XJ&`_
zt**ll8E%a=u<ZuKs4+QEqH-^do0S<wkP|>vP0_9eJVQiRpveGTT;pDzH+SXn7S)=M
z>Kq~&xxNpRW6gE?vc43GF>-p%gCA9VpywOOuvv3xts-t_wo*Al!zBu~Y+AO5@>8X9
z3Ax!RX6C#JcR^C}(riKSyI}E~oUPQ0+o!PIM5oAaN9X$|q!0U%GU?#kiM8h2bfrd;
zh3xeh!P;*~70_jJ21RGr9&OQ>9z)%o$hd*h<+VShOX(uH5)PN6*TGXluh4W3>xXWf
zQ{Ct%p#(hZNDeqm<EX(y@@Ikxd+WfX;3uyZl0|OsMc<pDM1{H?r(atrO`}H&ti-(r
zj1~fq#2PYI)9HJCJ5_N5($tMks=iPk(!*1DHmZJ)zEBP91~FyT$JD8cTQ2yH#XR^U
zjWatrbeT+p&;d1hNkX^?v!Q0CFZU*lFt&OuE6EgIkd;DYMVEhq@z6n|SE)fbfeOws
zr@;EP6+c+4lD2J?R1O)=z&5MZ2fKePcSW*S8P%~Ys;JDBc2w1x87hXfN%KB^NFEKv
z^)nC0D4i<lpmrG@#$!kGsGbHGO^A2n!gb=RuqP081!$r8?vH-3JNQQ#$x}ncH?9*J
zu9LhTj@*Vor3HiuWARZlo||sZD84(dPPbqL0<&wOq?6RWTmw4GiTMTs(HKJMLNMcv
z)-;ORdEzs<2irR<K2D4K&#~U^w;|O#X;soQ!iUT;PIgM`POD^W$yCZ5yqT3WyE<4Y
zl>I|d$F?thH=kxWC6%F=DiFS<b!qb{p%T2MO%7E5OpiS<8C-{zmJMr1o(%fSS9R}3
zUKllwGC<%{{cdel80GJLenzW8oI0blvQ7JPJ{;EY+G}bwkr0KS?dHI%?g2Yf`RVRh
zsd>Izy`X^1?a~S*L{slSt2~AF3wGo6VwQ4^NyLQIq4UjHL#(%>ZMaY0No@qM7Gen2
zE3qQ;1b3_}=NWFUMOij1-eyEts|bAxO>-$^Xc77j$)fzam;DyHaXg!DF)ge+nu$nC
z>>Jl8?!&Ip1V{Jyu<+1z`h$xXKD<&sh&M0BhW}pxa6kLW6o3<Y#);SRyF~PZV^2{c
zG;U98){4}8x6I!_CP<RH`+rgCP|7pH3)9u)si5bPXoF>+Dy_0rCZ|0a(tr5gE|--v
zbqeBrn)zw;9!j%Dy*N4#<tFW=usNn2{+}e52r7kyDzzNQu$>D@l$%r*3upa&p`M+}
zH(^{7U;$Yoc1s*}p@;kt%FAFXzg;We%km>u^L0wRhr0`x>us|&zot8O!(PEd+P6G<
zqngb(%VtIXzC5Ro?d#cXszKa7(~r2Qp2m1x-}&J7gS(x_$c@BBE)L<=R$}cx(>=fz
z$Ma(J$Yo)#wuE#M?xnTpXQja1`ErSZ6g#Kz(&%U&*-QST-+;@vVOSpr^JQcxzCQku
zKcJg@U#uQ~!o|Z6^qNmNSba#4Z{RQ=S21w6OpivrTlc7>T*M_l{h^BI(01|b!TJBv
z&o|hQw24Q`)<$r{rPw#xkI++U&%tZf{O8(-UWP;L7b>c6Gm^TvCRi_8p%r1$FN1%6
z6(GC_Ku6CSYO}O>a&16Ii2A+A_&cZf-k@y^J^@fih!rVwju20*{kARzlbUz+76G`K
zdW#~`6<nF8Y6Z>6Q?;ge^<&~!=8bqX8^|;DBqX*F@7&YPZ9$7p(9@KIO;0+vnV5^^
z5Z8sFZu^@PS~$N7moqoTx!f&f4wuiZ{jx5#T=wa|D76&peX3k3d5{4`<iQkQzC8Gh
z?rA#EMdmIx8rw|n_#t<4H)S(}pI?(cb(=Buxf?X2U8b)2ZC#qcRPJrBz%*eY16(PF
z39=D}nc^qNFdoZa%V4!?r5rrl0y$T1U6nry{?y}O&>!o-uZ+W>lWShmuGp5qAl2R1
zbk(2<hZMw>Vv(R5VUa0*f-F*l`5~c+<`EcYuKsKbYJaU((6FAB$)r}l&EYDKXDKY}
zus)YvC)Tdl7mqBvns)ehU0E}%Da@5(nV=kDnJK<}mNg%aP)09~=AJ&Fafn9olG{uI
zt)_agNe$xTw&3I{vu)GU!)qKO?wV=C6Kg)90WJ3u`#dC|YRV<TT`4XK>JcuQ;>+h^
z;*kE;3|(7$%^=lGJ)FKyHDOF#3*y)@_l&3#Oz!d@b>=fYwUPm^6lVna2xm<3lfxNB
z?>7jc^dzJGa&ONz^CDZ;UB9&U#EFOOUU*xxEx7TW%FJzUb*eTu$E#gjWg4E)nd~Gc
z5gv*6Ns+VWJ+@~5Go$QI?DMa51De~3a94`if_jA6rug!ioj9c9LM6>duzH|xTOf%7
znyOH%nF(|?GqTwZu#wfe)Zy5<HNkCBj)i-Ao30gG?+A@6#T!8~!W&b3`Me1aGAl&T
zlTV#%Y%@;25J$}9BmNF<GieH%&pFi;=A4FJ&0x9uS(;0F?~WDkPAPI2cVg{t>r!XM
z<1TDh2LwVdbdk?jig|))gn6d;@|hQ<>0g<FhMgE}VmzLy(#*y<x8}LGCr_1a!N)e~
zuZr4Mz^>dh5d<TYHpQ1uX?GNRWcYfL$d-AQpX#}<cpT>39<}_04R}3a!tly!T+tPl
z*SgD_Sp4A{=wWlXL|dLM>88qEcZ6pY1=PPp%A6^6uI1WiM;RRMFA0M;=+?B3^s98G
zrk@NdA{3_h@`b{0d^?4hn*C&T==@xq-)md&`VmiKC0y-s7%SiZ94!J4yB}NgO<ig=
zC~3&v9%#@gswV_gP3}avE5%enJ;GE|eECdG9MZEp^rX<!K1v$N&)IB^G_bgXr6z0R
z9>wzzw9Iz{&H}R8{4}*su41R&c4v61WAWT4MGosvtoaXJYFTeOOX~X-QYEr&OoG2s
zq98+wh=M7;d{J1H6nEZbMS>17YzB3ee|=l<+MQ`rJJLbC`f5f}6F&DnH$KHrto@QM
zP2_XD?@6iBl+SVaE5&CSN`%j*_zCklKD6sMhxu#{^7zmV&&kii@$-eAlo_q<ho%)D
zk70J}^Wt1Sx8`HI)N(nk-+cldGSr%)c%^tN1Bmd}6kk4X(+KddLIAxohi?t>FO^GW
zTX2)kN7GbY%W_VdeRE19t1-ISna9^Vn=$%V?$!cnjw^j}xJzm(ru$aAQUV|YiwJ-z
zzI*}j9pR%w7`?pDm+SedV&`ZDrcklA&7>F)Nq`m{wwAU9l8Q0g%!UuQM_ym@YE{!s
z_MlsH-)@38OOaW}*KV5mh%U4fzj=2D1Ws|kInb5jwIChgwJE-QUN;}lS7gwdvuWJY
z3=KDwz<jaRxV_EMDywkz3q4WJc6>{UT+Y6&H#*ascXy}2Db6+rx>B4Kq$8X)#h1_7
z=HvN28MLqsVC0Uw;dj;fS!k{byYz}ccK+k_ApS<5W}e{`uA#5l(H~`1q^k?MTG)js
zh+HY=2$~V*nBvQ4PGp#qLI*wH#5LbgAxPVTH~)@ePe@N{7DgTUr#_s*%1F!DD7nE+
zt7_MK2V!&Zm=qb#Lc2bFOO&zFj~-I2<9F+3#1W#=N&>%9te1gASZ|6ipY^K|VxN%i
z=K6f0GEH$)>bfBU5`qlpAb7(C#o<gHv73{)lvk!(7p;$cRTq~La)yGoNB%(<Ap17m
z^=mf;Iutc47Z)@6$(PTUaMcxY(g5s`^8}=8pDiN1PM6y!(;Fq7*ksVWy-t_g=*1V*
zA2J<LK<mgGHDbZd1oLutNNoW!1lIVbWsu*hg=;piu3kz3*60{59vIXTcJmB{(YkGp
z2bq^o>eqjQcYaONfKmg$9M9zep;l9<BS1~k7NU!OQqM-+a%3q5;@WrT364Y)g;|+z
z;6}MX83sB`^9ayA$~gx@B`*ie;GHs9szoIuri9}DQE>QwKBiE|@MB|qm9CB#m{>~q
z8r-%3N3Tz^g#5`(YL9khB}5O$m5v{JK}0&Fz(|L#^h$jz7n+16Ll=KnNX30JNFx=d
zBvC5#_}-?gibP<s{!VBNb6xw2Y78EXD-CaYQA8S~z(@mEd9%J3Dzd<Z-xZSZkPOgB
zf+<Oq1RmYHbw!Z_6(jKEFC7vccV!iW8jULnZ~MN8BuIgg1Xbs)+rkTmD*djIg@O#x
z$bu<Jlm#`sU)42(mgx#IhUF(ZFDDy>xfrnda%v%ChR*O}(z&c}S?)f}0q&<hsMfSK
zEpz!&xf2)k*?jrv2ZQx3zkKaO3?sSV*R+VOl%Jhe*U8tnEbjV#2KqN`<yxT0>U^n?
zD^4z;sSCO(F-|NL67_E{;sJ;H48T67!9<oV7++l7flf=fO25A4;!_oB&-{p>Z%`}N
z5%pb1!nOk7hT0U|GxT=KHb^}JkYKJ;Fhd3=H#uF&&Ef6=zP634@rg;YriH)OOVjyD
z$}$9yYz#z@Db>*uAU>QpuBjUGPE?hLCRZ$zAC~Zb?;BstRE-mY*pwqS<=D(z-_n{_
z2<8p?(mSlqT7DnpM?h8|H2UR4CKQSj^V5J>(WH1)tgX43V!oOK$k01fcmMSJQOZw{
z>{n|QN<C7`H;MoreTpKj>}J=r+&(qX*STe?IOYBU<lvjsfUP_-Bwo&O0jB_YxH;q?
zKS*f*N2taig)&pcd}F>=RPW5JZ+R?{Fc{7xo;s=29smi!ZOTr9mfQ8X;^K@fgD}PM
z$aAi*dkY}jPO5SBekw|?qp&k8NNqtkhjtuqAUntUma|%{<ItEU2aDBxm7@f<rcF)W
zX40{+r(B(HJirgwtZ%t05mC%e;uTt3(c(K6LvaqqH^xI<W^YxT{N?k}amZ9#E-At2
z{ah4cx-yqvAWBk0fyPKYjdn(si^l}0Eg1-Sqm|Y~fc)(2901PfL4E5>QEZB3reU_I
z(3Ny677sPQiwyvxp;L*Io8jOy6Ue1RNGlZmeOrkJZ&N~X$Je9CIgtH5fE@RM9H2Ir
z-l^K$6>D<}ySLfObPpf$5aa_&dZr8{Pqp6Sgq=P37a-4RE#ywh-k#3Bt^z{>;!F%e
zrWm~d1t|nfwq1$NkDC4j27e<Z%*#iI0oA2NU#?YIegI_p;C#7EH|*B8{8pkWotUm4
zD;BHV+K9-#S>B}2sY-3KIF03ja-A{k=|ouCW!Fe18E!EV!|BN#(|97`$b*#{GOIE0
znZ!mRpwo0g4>~Uuh9=8OK?&)v#7M`R^tno59_s}?1rN5?6<aUGVD;j<^a|D3j&DY#
zt~7=ByY|v97d+QU$!6E`VG?eDdahB)@rE3-xm|Twj<r{vIbI*lPZ!5ZkI*X6nn*Y+
z?%n-cN#d4%N=dO@i-m8~lXOXrn)~lWZ4Exm=HUk^?=lPNza;|iE6$Co#p<A1tj=q#
zDmyAWa{GGM`j(r7X=kHU1cpV(7P1GgZ@Hwqjcd6=5s$$gB3A|09j!6MV_|zF5)-MJ
z=7Rvu4k==vj1fBoO0W9CCL2}2ABX|dtej9}JekN9XzN|%cR@?b52}_vZ(3qq(bv_R
zca;SoTVsnYLrzQ;2YQNqJy^%{y<3a4-i*W`4UcDm-0b#Q7!rUR*Bbi2Oy2?r|Jsg{
zemfeYeX+uE?!TiPDb7_J$LH!`ADYYR_37K6h=Lix#?-7#maC9lUh;Z1$z$!ptU}5Z
zQ0JPLu$6Wu1~ENJX`*VCS(riqT->jkdRB{a-dINGk#HOcP8M@V@xb8vmJevbS$lO9
z5^9hPEWj)!PEpdP00^{6cw4hZsF#ac@Zta<0U80w=|m8GM-<OozD~G|Yl~4HHnAfE
z7~U|0z;y%cCOx+<WSR_X`dI!5k@Kt`d)%x+TL40yuk|e-Oa%hKC5^Z^WkVQEBk7--
z?O)UF#7#J|bny&gX%3J0p*f9t#DwjgnsO%q>8^{hwNTF$s5a*hAlqUyKtc8v9XMWr
zvoT1S1IMt|psAIIl~VstLs)LAcS<eM(jFi$#L$zbz;oK^EY?+1uWl0_>84^>t;CuV
z$l`$W2W>tUgOpBrt)>A?sa}7{^ePY-As(+O&e7u5rnwO3meKi8=9uoYw4?j&L>a+Q
zr}ZovN}NR+fj!t{9U}ibR%)#)#SL#|s*0P5lW@tG=ZS<_J@M}PN>s<dejlbB;&U()
z0Qm7l458cX><aX-n`r|$>Bkya?ewNtKT-&i>pJmeY;Fvi5Oo?wN_I#pZfKn%e%uH)
zI<ZhXI+vd=k=7V0DJ?dAy$Fb~3QQ<9>f3ABz*4ipv}*R+8=`<Js2lqVKpmEqG-jg_
zlr~z<>Dm1L8>3ClskW%UHcj?*+Ba_5vtWTb5`iWx(6a6>-V)3}WJqBBo7K_~H<9M%
zkzIfw?H2fw9;MYELNs1Qbdx6%o22EvGL;+7?IX_7Xxpz>Y=~RRa5hXr!Y3dVx#<ce
zGhkbEJdx0_zl;De=t!bbP%bto%@Ius_E20ajmGStVs(mK7_C|k<0cS%C)hOQfGP1#
zkLJ-YN2d(vIJtd(fi_{|T23Xowq-CzP;1Or5ye)h%<(htSRb|F5Qm<xF<h>I<2S%1
zwn~|(bvAPBajsU<EGI8c=d-0r{pctZnFf=LhZYP|s8ld;Cllf1z;+j>Zd~7TJ`s|0
zbqLr}A{gdbrFLB4mJ{LFzMUn#6eP-Fp;V|eW|Sl8Hxsp20ol>CNH1ssiO&-7AD+)y
zQml(FR<!NEIXb<o@QXBdKs>Q^-NR3eKvpz%an<HRquJ%_)t2*2tXcMSX$%)*7^-Es
ztEW%aP5PV25?h8fWOo$uQsROKtD2`9O=vXPnmCK+sK@1sBFs1bPNoIB8yYjPUkW*v
zdO&q(bro?=mMe|Y)bX5FG$C(cd#r}2qf$MO{HUd)gxrS`8C=54OB1zxjh5MuBtq#;
zHeiN|Y8-za<HSV10O>3;O{Tl{A)7zuxfW5$n`7rt2pR$e+fr4jCRQOQ=~!u68>;6u
zv*UVZVjlTtwSNydEG9NMRVx-BQC^6PdgyU`1Uh&mU*E;9SG4vUi8LzaYqQ54jSb)+
zQ6aG_mln;FqIP48CSIq_&mO4J1A-7AZB;#gLwsJb)304mrMJcaKwMhEhM}I-Y+u$s
z^xujZHDOSsqDIfR3WBk9VY)J1;YDUyK;mOKj!}@$aq@^-xe}M7Ia=r#W+kyTBVG*m
zSR$O3R_xwO6<WD2>XoaBwO7DP2Y^`YRr=+taq7`}#L*cra5VPucJSUfzhH)@0zE<E
zCK%fXyp~Vq;jaShwHmRw)S*Gb>%5k>_?im<TJp~7=|9>Yl?yna8@Wf2>}h?=g2uav
z$wEL23{*`9qTMm$tvsk%A$&|C3KP>u@q{V5T*)XkF%iQ{2fvbe3%DgM*KM~%@yA9%
z7M0*rs<EM`#ehnrWtQ}w^{r2jexI!2R7lP6l|)ib9V<Yspq=F#l@xsK)@VDJ7*J64
z1NQ;y_YyS#%Q<Zz0JW%1=IfpjYl~*XUht13ASkP$J-;~^H8w~7@lnm4CX26~V!8UU
zQe$$4XUB}L5H~7mlIM~2i@}Bx!Jx^;j?Yb0c*_qA&L=K3%4=C4BjX8x?b<H4YnZG^
z?0zM#4{73Dh>dy*o&!DGPH8c-vrUdzr9BSJPzNrX`QK<dc#blrt&3Zr!5w{)Gtk@9
z3(!Sv1k7ZkESjzqk@uGgbXJ5trrRE#tFrHp!7e0%k@l;pwk{?D)f!ze@VTXqM2=w1
zphq!gmCb;dtO67|?NU!9wmUtBLC@C}jfnE&JCwY|PZhxLLo(3;cp;J94jucq(wW8y
zO~>93iD@Gwua@xCIzIu8vsdbVQ7gw2F_PDh&*kWxmw@!D`PCQ@qTl8hdIkWK)iCe9
zEy_Ex66hqAPrQFe&(-*eH$^VdX@8Z}Y&DU91V%w-3^tPp2E&~8w>fA(90hdJazHj6
zxd(_r=YL#z!Q(=y&eUfs$6|Gs6YDHY7aJ2tbImHPBv#UDmsZ(WS3`-l9CJo*Kx37=
z5-V5dC!i8A=_+OI(}-1Gh}q#HI{EsX?mSj$DX~Wy9nQ0&<R5=?BKc7P=hx8+E2$OW
zlaJL{P8<l~)YCr@tI?I(M}K#G7-v#zbYqtj>*QoQT3vndk+h}u($}>$K9rNGRR+7a
z#>di@%ERt~-of}_E~XBqw`a>hd^FWm)CT(dd*j2om|Ca1x4Uagd_d<@k?R@g>F$e<
zXehO({+_;`!T6AtQ!90Yr~O;vgIY?*uWRd;?*90wvZ;Obb#LwK?TQa;DYe#M@8IA-
zSA1OARYYRTmMuNq@qq=Yo%Qzi_xJTR(Fu#G)dse7cLB@z(1LU%d;5C2fo6PgE9vAP
z80_oq?`xtZMpMy*^bT(6+S)`{oKLL>3GUs}*FD%oW1LAwl-%9h$M(gP%$Y=*bWT?$
zC=#ZVb|FhQC0S+$tRG+}RtF;kU@>Oru|I`Ye|&9?SugyRbg|k42QdIyc&vG|rK_Jj
zH%s5AOs1=!6*V<NpoCPH-u2v(4oY!ELw=xSUj=@kWYV_zff75iexP*NcTsy#;=`II
z0*%iq0v-Ee)cy+*hz_#HcPr4B#R#N>3lZPHzU7PBYKw1+HPplck?^yLV6#)W@><+c
zgd?DMu+ZQw{_iGl+vcm)N)7&NTqVFJ&<Bp#^82d-PRx~vd>{1zq!#}m5s)ry*x(Q{
zDFf|pyghc99wItL5-koXqQ5>y^jz*}p<c<+hARgH9Iz|mk%(<~G%RdS0<TOJ^2c?Z
z3#-+^{SG?7P&IX>u0&h9T*>M9$&d|QO;k)2LCIUEnHUK93TaC*^scZ47_`7GFvX`Y
zLq8M!B-_l#8<UHzsPhzE<UvETQC)m?R2_at`ZX`snU05I9phP>?eusVbe)b*vd$}f
z)31_2khId2*JswW2+H&_4!upY**sW8M87>cLe&_DBP@8eMQ^aM|1*fSg`RdD*o|(^
zOepcT=QIW@wfNw@QiSLbYNolN+oGr?)=}>-p`XQgoyYkGXK0K1i+a-AE$ZdS9Y>Jc
z8BdCRNQYc~Vw0>_PoP0k+ROh-%@Df)K7j_iNh1bN9K}(@uI<5Mk9SUS{=y;FG41(8
z&?HJOzeNrFQA<f3<bM~to9dm-JWz|9qOxW3FHocwj7q!?x{F@wRgTHSdM2#9{Yl_g
zA2BS@40G_l3`vcM6o;)YKA9pgK&I086Bhw1_FKpd8G15DJxB(|;**JEcMqF=aglob
ztm*D$ET7aS`)Gb<pZLH-I_`8#$C37~)%I6LYn5r78PeKwKBmWUc@%J%WBZHKa3dW>
z#C)F5bF_!qYJ3HW7L~5wJ<p*Ci^*`(;xJ!hMd!(&d&<akQ7YUIKVZH<f&IXB$rJqG
zJZ=tSiAn%>hQ`YbK!X?+6sg8$V4@1p#TbwwfDCMV;b@-TfrA!H=p5A2K!+-o-T4|o
ztI43dDf;hF1+ln*JDCiJw)R#yuzMu|C?pw6G09MCcAbW++}3-!%MNWX+E4)nh*40N
z@Zix{+v0@b{b#7ppNsWr6!gROO1abOm2TQoW#6Gzfsa`IEUSPda#4B4<d+Tx9(rkX
z9WXXVxIZIch$X|tsaXuEQZwe-a@_2Y?!(R8U)J@h|8N_N&x)cFu3D_sMs+ZDSB!#T
zP)i(Ex)=3zm@gUPB!ZJ-Y5NI9%RBFowJr%9ek{PB(arn76R%GC!}rmS>-;M4^tOzl
zs|oY2Y8uJgBWqg1qbNiD?4?Uud|hHuZ?tXnQWSb_!Zbaqn|``}*2HOA8xOF?cUj|M
zG-f=68@KH0?<EGD*5NGO@%CBvXNt539*Tubgj?lb#W9LJ9974i<9g%pmV|ayjoPq2
z_ztF&&HhM7b2-qGY{)W{Ocq9)__R;W9#dz0l{y@AHPE+<h{=158BNRAJ-0bh`avaI
zVO&@Es;Q7L!wqWTX&J<(WkUV?%XQ_WC>Ho4SfrVl!KtEmasOv>U}{UgYofnc7^H>s
zd@Ptrg+2B4O?2mreT9KyPjQN!ULCQm^zBpdqW1O=4)kuBptj!Eq%A-U^z;uFwy>>p
zHU_c!@Z!2_*_TL;P=>dmG4jOG&~r;msj05t1;wg-SGoeV(`?IDvcS7m(Q`A6x!Ez~
z@)|2P0G<6l)%puIHy1q0`lTS3R)aKW+*^6NXHO}8`!dtAjGc#y4anU*e<qG|NZw{#
zjBIr7k%vEk+G3~gz_<33_cr@>)!|c~moOBIU_UANC5>Pb{8XtpTM(_WsFlp8Oye?|
zyTZd6J6>+!&P!+=9g4}3GOX@LGM6fnyc7${oe)e$-3j5gL#D)gRxu@vXPb2IRoYKx
zPl2cA8lBbZZiJx`DfBw=k4A;kXDeCVJTXUOl4WS1TH8#2v1&$}i``N7h1=}q9Yi(O
zCPC2!cP1gVqjjmZxCvqs0s6Bxu6C&@P>5c?5Th6O1RG5oO($bY+cAHYaSwD>Vm+yS
zf{B@Li!o6FJU9bp60x(*05Dpf@rBV6U*}qG)=g+UzZ4q}TwG{In{?=CG}aLyW{Io#
zIR0(Lo{x9RY%$CvR~c@-<G>;;#>+8BnCcOaSR<zomhNW#p^5#KhJcJGfQ%MvbEP`n
zibgxt7?6wFXudHM#%r+|UiX!FA2zDZiP!2knXTWju7*e?D_4xkI}|(H!5E9R8ulQi
zy2=Bv7(<Uh7K)Se95hDwVGt)Zlnp<PL7`^=E;Vb;PQ9LPQtH{CR=VwdW*Ca}N@f7i
z6>CMtw;Pvx_NvPUfeu!a=epOlkUzZ>U)frm(IW9l(}_!Wx`#k>doy|_f2+Q}o*jrz
zb9@g8>aWHGRZxRHsqTmAxFfs4av&=6BwHQ&%%Ld=_(L>`fdCWzG&+Pz8%%KrvgwNh
z?Pz!i$-|BlO)kgQUVOE@8R#M>$T_WBFLldIs`EvBKt^|xr{V+EpdpH#i&0D%Vb%j}
zH4Im3wfSm;@99IFoV{BRbG1k7hPr%rtjj3)!ThnX{Xdj!|7+|}CG2k;iB&08?k<7D
zrP;8|{C_cYgaWR+-`GgY$##}JAqx%E2vcb2j;Q2HA5v$M-+|wayDwyx+1_HLm5Sj9
zYY#x*$L+brm`pjf%}EBin@op8u_}UL{Ya_GvuL<dHJ39^XewW$Q!uY-5pWOy%6K;%
zPh>`)iRlanle<Zyk#clpDn>DBI3!EI7Gqu&I+5Dik;g-?4GJZs$rbCK!9q=)i8ZAk
zhP`{fF*Vq!(#yd{IHXu<ukD7w@{^Oe2*=r}$=f%g6~%pqKJwb^&Jz6gfH?a<sy#_!
zy{1JV5YCR+?na5Pye*C;blbTX2ade4Yh9yEx_C<u&S0CK!!<fK3eH`X1ZQ5rCDa$!
zE3n_wFWy?jCgI;dP@7=%mo(Hb=qGb6RK7l0D(%L5yVTY}h5fDp(OWXe5DPw;#DdOY
zG}4wxsbPw4>`MMj*S80gKT~Ry!^xkC7}dnjd-3(LAc>-TNws$+GG;FwMh_-`Cd`JC
zKa>27CV!@g>cfej_u*?b`74ohDfu&5m#33I)1<qQ_<29RwysU0*?y9k_T<k*(!u1<
zOtZw#qo{l_`74b&+meLYC}Gx-{F#W-mHe5-F!^%{wMUabvy>)(CMlgs{5*!Qr;@+Y
zu+JoarYm-jC4VL%zL@-(5Wkf8`6c*zAyFf}gqXdO{F!1z9!vgAM7fywc^Hnp=?YSF
z5!g^(alI5%QQHf%c^cxPwpru)b^A<(08S(Wl=BT-G02y5BS-{RnVvmfouN)oCfBIt
zC;0aAsT7d8Vi|3souy=;qeU2z1amqOW(N*_%0<2gbtVN!B^EfF0#UE$a}VTcOR}5-
z)yR`PolAx&mZyOcV9qDQ%;ZZ)>hnhk>OwM9rCOP*aO$hal7VXZnK^3bVj2jxcr?2&
zCBw{53lW3F#bU?&Oo?<zYa+yOzML<RplqLjWTHvl9JHsv*OUlkQ$XgiVso3gW345o
zBN==qk9d9{Ig|!M@;;IR04YDh{+`ifpvv4FZ^Fk@K&rURg05zgL2&k1LIfNkw2%yS
z99L~Cv|cWzz|_EH?(Re)&`!(~<Tpk`ODQlol*}X5AW7BfWU%?_Y~?u5&E-U(UDL-w
zf|%ksms|lnu5+X3lVKV&rAn1YdLa?$o?@jotz_%5WT4snG!&a+(#2#j+`;DVE+vED
zj(cN<<St0GrtX0Yk#t9EGQ|ADc_i^8!ndUW)#m1p%n(p}BG3raFq`&$dY)FNjx><@
za)p+^t`r#Dmn8K(m<&>!s1=U^WGES=RD-;giF%`nKzruss%U;Tw;jnF^URKgWZ*I`
z&Fh>Aiz!g`$yx~lT7jO*jpk=&^GAuSC%kLaAQ(LUlZjRC&0{*L<>^!+(0xd=!yG-G
z0#b%<B^sScfx+se2zfRI=y-l6x0eRGoD4LRuT|<Z3aN7`V93>mhR&xzR329ATnfm1
zA%6_(1{zvPgxZ@YQM{P)y}>TBOUV$$DsGCQks#5u-&;b06F{`3K$LNZJhvS{?W+Op
z08lmss7_sVBm*3uRKhi$0z#`TTA4`%*_WTmKa6z~Knp2Ac!V;q4aF3wazV|!6KOCd
zP#L*-(Ba7xFr+=;n2}S-FhwMJEamp)kF(l5lLClT6}kILNAgGJX`E+MAZry;_qpMD
zWESPD3(Knmhppao$rVa0qvw+W5KajER#E`Uv>-9@9!rL*@l;6uK0gbinR>dE41=W`
z2l#*q68Dq)^ApH&s94#S3{^aqJCrZw_RjN}O&T0czK&#oBfQuoem^ih!#kPLWQf_^
z@Jxx-&EXWFLT+RpM!GgV$5SEqG+@lL4VMbGA7`>Nv@}g9=2cUn`4ER1U04l_3}3)4
zroxTEFYI=HA{F}3eC-I2=wvcjt#q7tbt)O6j(mN9SW1DI%a^&8(}^%xa`VS#aw9OL
z>1zL_6u{ZJ<4ANxT?UDp@zMNzZWxK0NAjdt+mqpD^0@jtN+TRf0jgkssx|OPGFTmV
zy^A%+dZ;GC9xOr;(?CxogOFzt5GNBM#$f%xv|+JWN`XSwC9K~y8szC@Ff8-Rs8~*e
zIjW@aTry0lP*9Wed<x8TnPMYVK=p+bxH97F2=A3-m`W|58^g&qHroJfO>~ls!GSO4
zS6edF@mVDA$?eZi^QNag1rSPu_>)ZpIRsM{*^>a%kp_dU>@gZ+R|*hxDhd2xD##&4
z_n}mv2THu@8%Y5=!b2ZTftV}NhT(7uM0uKzAjgwIinH_6G&yIIL1yyGf?Y@hp~Y=6
z8K5*#R5Rp63JmgF=BN1tIt8dUgTrccb}A9(ep*S?7IG;O=z%<8d?xYxgP4cqX=pFr
z{4FQKeLppGKJoJy?`Oz2H=a*)2#yW!*^?V7F6878XCc`wR4SBmI;koeT}cGo31tI-
zlZhMTokcvqgggU$3*=NX7^as{^GqVtE+pB2$w$`9N+OUu!jZ&H!3cbrY=<6B1lhB5
zEVl!)QaheIfITRDq15qsD*PcNQj1iWNv=>RBEUXhRZfO#BHX=rvB2TRQX=5q3UWtc
zOUsF=a=RAjP)|jSj3gR_`zvMG?MN;{tJyH3Epz;YB}O`uxGW!_+;q9^vq%z+3C9c9
znN@&yA|)}*)7+lvGITid(S`duyGr$Yh)hM?gj6B`?3P!lv1ccf3`t2ym!4Z48lf9C
z@{pZh1$1xa7&1?*w9Xe+f!(J<T~<~ByT1zg(oH^=2&)f<b1Hxin6@UalL8t(LTyWi
zuNASR7K#O;8O>IB{vkNngK+}Y@x+QRp07~Qpaoq>1U-nIz6zsROoSOjLT?HJ%N?R{
zC*?&xn+#o<YUFlSaF9&i=^#-%N@KZE1S&M<8DCVWCRVt=TtaMPA-6{+D4<U#LO(z|
z3Z}srUPhZ#YT|4nIBwN|+xmd~aH6`N!Ws0i_?j;zwnkv$U<`C9SNy1lp!PVvvDQ?`
zy%=s=Is{n+?dc#im$K;~><38&*@s5D(jnLlnFvBh`TE3+vM7!u(whL)G77NKL@*oM
zw1uv3FTF@DxA*i$Lj)|~U=ILSd;t3ZnBC^lB1Kh=djP65{~mw?bV)D!g4Mg`q*5y$
zEpF|n7Ik`tH1cpv_P7UNcNYcfuISK>v?jZ|da3j8S$#MI1UUY})d9P^_+q3-ligh`
z7(S4E-*&|Vl5b@$`Jma&GIWi{fcV9naUaMY5{@MgNPZh-#RpB!@wVd8WOonC(X}1}
z;(HC_UXaWoA4m?=U-5!uk$Z{<p1mwd9*|o|ab!IdM|UrUz%F?-i4?kkT=9bB0X@}Y
zKz%$QFGwc54`e^jbuUQ9^SagX+(MEx?n6$#EivxVWOqLk-Uo7k2jm6GQ@CyQ0d)`X
zI^YG#g!h4Dp<D5SWIV6;z;g@Z=>s{)s>TbFS5+@a#`6XbJo#ezxECbT(+5&5m|l>K
z=ZzkCZsiH*1<CU10olW;w^zI%dBWYaI-Wgh&Gdp~dip@BHPZ`{@x0js&u*rt7bMfu
z2eOCfyB8$$eS-&{oLzI=3zF&S1F2RxFG$97qX(XRacSHKl9!_;FG!y6UXYAuy9b_q
zte1QsRkATJNRql0FG!NQ>@6O6@+vd#1Ic#$k{2Z7=>^Fa*wZ}lRO^usB;QY8@`7Z(
zdqFauPxruc3(ewjAIL$P#Y<k0By}rZkR)~4TRrd`q**-f1Ieq*k{2Z7=>^GnKEngg
zt&FD!WN#O7bIA*m@$`aZJim8!Jdqrf=;;N?czQuHo?ehV-=FD&C(EY~B(E|{UXYBZ
z7bN4E^}w@-`R)VR%k=buq*=V;1<8EB%>&O~#?uFq6HhF8K{B3Rkc{WEJn-aIX50&s
zwD*!1Byn@a3zDdm-Q<Di0C98N3zDd`<ONAGzv2VAg>-WEb`Lza5S7NgAc;y#UXYBZ
z4<xT0**iS&9ArGbAeo+CkR)|0K9KAr%s$%#&#jE77bMfu3zDR6#RIaB*N*ISR>!li
zi>Ng21xego@`2>FW5o-SsFdySz*Frzyda56OFoc2G&fhgAc;!ZJ3a7Jo;4rHUf#cZ
zK@yc#ydW9RyFBnz`wlNirl$`i=UiLyf}|BT`&<t^)xN_AQtdmuAeo+Cki5Qc_Q12B
zs5I^a$=<CcFG$AI3zGT%JP$n8zQYTW`R)VBtIUcQB+vIw4?L9z(hHLHk`E+%%vQW0
z8PB^t@Em0Q=><uv%#s%*QGUe-ax1UzT^@L<^~ej7*CQ`T#?u3`pO2%m-K*o-&*{>}
zy&xG+FG#jSd?0z{%Jz8R+0AyH7bHo@k{2Z7=>y4onQX5Io_u;V?ghzsdO@<i<ON9*
zlI`=rlXpGiUXZkQEO|kagsgZ$GM@b&c=E1i+zXQF=>^Gr_krX!E<50XC#Sm|_kv`4
zdO<SZeIV5t`4$g6)&9r}lJWF{WIVkfneT%hc=8%I?ghzsdO<RtK9Ia}Ww(0ZsrE-+
zkgPwwAbExTKPtn+&&RG$+whHk_QEawfP(x?8YJ(eR(yJAe_i(Z9%J81lpptk<gt4}
z^4#=*9N;x>`~|DyIlv(oOJ0zy!Mq>|&+H35dMA@%`E!az-%4Q-&&=$X6yRN3l7n{m
z*~RQ{DZmHQ07)Y*FDby+rUBB#2&NR^ucZOfs27hbz%Qf#vJ-vzjSBGU!Q{axk4aSl
zcBcW7iMagJ3h<?AfFza6Z&QFL(g2CsXP&MAKac{*+F)_30{mhcAn|%d17@}+kD9f{
zf_|~)?leGVVUOzia2g;DW=N;)drcZ3vG6x^+N)nq10-F2{%NY~&!zyfQT$<#7TG4w
z{-kR0TWKw_N}pDMcRoLvj(pm@ct8OjN&{pGf1U#Tp)^1m^~xVAz|$#!-FzxNw5%XM
zmkLR?>#|NxxAq0e!%@kLmtL>hd~PZv3C7C93Nmfp;LRrL{S^xG!PGWMG{)x@<ZIF(
z*>1n6Wg~6sbhF(aykE8XE2(YL1RwuZ1^I<kNVfF$Dafl|m_kqXVlD4gkX@;eH1?oF
zL8kJkn<QlDxe78(l)BY9`z{6fP+ITo84Jc0<m*x)X==22D6MWjkq<mn2i_$_o6AG0
z_g_!zoqcFsKE3n)BDhtx`Nh;WX++r{Q;=7`D21E7Eb}i{klm?}B=bYV3i73?kUZae
z73AyFAlcg%>`;)uo(f6xy}Cg`rfE*R?FY!k`xWFDQ`@Am5A`X?b=y*?#2&n%MFrWF
z3d!^R#}(vD(;#^tG~~lg-Ur?4u^4o79^c!&AlZ7<smxxViYM`XQR8_g6_WTauLz{J
z$$P71pElWo^J|lI-C>=|?l05u93Z}Dw<#X2{k{~wt3cdY1(~`c46v?yhJs9;n<^H<
zhw^O4o%E4;KKYu_V^6bvy4feW*+)XQkc2Gw(39gUym+*QB;<_Gi1;+^gwKfB?pqwt
zluxlFyV=j_h36oRebHw<8YI4-(N^c?G+9!?`96GS<8MgIQtFIj>#xs;n;f5i%7>m?
zX}-VEt4-qOX^%F0cwgy5`5r#?JL@5JJ?v%mYm?^tc@L@UVY|++P2&4SpElX9Yul*g
z^ZpbG>0!I>yoW5|0bBGwbWFARgQ;!u`u=VO`Aeyg#P^F{z5D9<9==Mj>@kme*jn?V
zJbQze`qYThR_z|XOAu^Uke^K(JD+&^^-g?0=OdrWuJhr$ik9)v3_ZQPVb|{fr0qz1
z*sk*$5#LX^;58x|yI-3mA&>dA$rj-Fy^2TQO5;%<jeW?6n|&nnmvrxGt6>jcWeDz8
zy{FQ%&wK2BH1^gTRGVpbNDp6n@S>;kgx{mu>=;V6SbEq3T)9s{j-^5pl@>i#nVx>q
z3@aWhY)?OHhUcr^e=x0gK0zM$*h%5JZuCCn!y|U$4Q)}qr}>n6*sj~@vBveVUFXH4
z0UG<V4?WqgThxw|(`i&<yRKc!QmQ0xp%r0NYn!zF5uRoTq}Pb}9!J%yO&WXlMT+vD
zNgI*6@u7K?=FaQkdz4;yvITh32TyMcu!k+cGhS_yW@x)vjXli*?D4h$d)NZ(@X;Y`
z0S1E}GS3#^kcT&>hdqFUUcJ-UM?B=Smpywv-0WprF?fL*(Kl0Msh7_n&TAf}SysIq
zA?DXR&5ny6eDCe@T@iY_Xm+%<s}ZHm&0fCkl6|3qynTDJp6})7@K#0?<o;Ah((_#&
z^4ZH*L`OY5QN8T1^P(qPfWh}FJk$0vz1|jJuZjoIGM}bHdf5Wp>!Ig+y)D4r9^(69
zkJ-_yqT@X5x?aAO)8!)}Yyo;vzL!>n8819Z=9fLzquyQ``-0DWS2ulp#?BVtsL$Bh
z0`wX?`v8Z0q>e4XQJ>k-=RM!q0<8Ls$lC(!RZsu=j7YuZ<wJSC_j<xdLf8WIqI^G5
zY1s!)b$7`JPqr0L`p}c__Xp2Z+9u5l*UPrzDW9<`AD|bWWG4^l-cxlQ+lpTFWN+c3
zhxOabH+ic*lFYWEU+=VbobjPN+luEkWa?VXK0vSD)fur5J=s<~<fG>YNh`k83zD>A
z!3)w`GjMFlvd@Uv0`#I1$CjM-kz|f7@oSU#e%7l^l6k*2iAv`@+U)bT75ms$yyzjH
zeJWnXV;1+ZU-5z$p1wP&KK3g<=G7+eA_uhwOYvs+v90Js`9Ah5w%wxIOtU}x*sti<
zCR>$WZTd<`UpKEE9=fhir6}>?CZ88y@}a!)D|)p_I;8bRMb9)3PamHb&wA*PKDH{o
zDBnX8GU`Klwko~aR42<>HKMeYtB<Y9c0Kkqk3=8)6+65jiSL6xkZe_sctMia$ZPCu
zRaSlI$$mw@Hc2xa)_A5$h__YQ$5!P@A3VLS%09L#hkW?XR%OtyBqZ%jzmKiT8K1Fx
zTa|rmRi5z~J6n|tJ`%!y#fHz^WLxp1hh^2rw&Dq|-bv=q__WCu;3=Orl?CXrfA3=p
z@U&N(-fNt)0DXAG7T~z{@T7T(`_z4WADzq=;G&NtvjsS=CHZ)Y=cJE)fUoqCkU`?+
zSs!|`4{*`L3)jbX-FY7g@wV&w*avvghev!0?4|3r(%9QPVjBC|u6wNqJ^NMO01v+R
zvt8Ha)jL@%=RA1S&(_*S56btmXKz&Zp0?}hSJv7#r9abRPWsuix9lMy{cNpW&?8D)
zW%@a0Z{;nj_jjkrd_VgD7xM}-Eo!b``2am)xB8V2uuHX>cFNYzKEP!?i_`Y+{XJxZ
z4e2&Noi-x2!5;JBJKJDy^pQ{Y>;-pfZl=Ul_OlI^-Krqde3kv|*?Wsu?<C1XUcHm;
zeaUC+y)=un`rPop(&))H*wA~`h;HAJ?4#~i(S1LtAYYscNoTu@J|j}mefktQEmE|f
zJ$pmXSG~V7wRfV@vR;qUP8|A`XU}K8vki9A3zEjZ<Z*V^ukzHD)rfvEZAAUFYA?S_
zL4GC`lK9@LqdwB?`F=jz4Q^9yrtJ~>)$QQj3NkH5x1arWCp|2deva8Y<3mrj!P@nR
zQnlg$jeXg}66j|etW8Jzq@D5gt9*Kg)!6?#jq-f98@xn8K4&;(9&yaxlE<k~KcDTc
z=osCDscq8O7YnNQSEWMIelwU<kf|#ITWf)iPDwl0?q_Rl*=H8BwbtPypM17E=)-r;
z`?u(`cCZ)jojy95&tc!=1xea_#AifogT2qIP2$ngYZQ-8r*LzCZLnoM_O!KlfNiiL
z4{i>y$1M9JKE2b}gKh<x-aF~!!yZ%`U>j^E23adkQFiXmBc*a-e}0aiPhHNayJcVc
zSG?bcKWkb9YOdIrsUUMSUaLaC<5LRmvxbraXYUF2DnIsHU(78X+9mV186-z8X~^Xi
z$bR1EF1=l~c_9W_ZPfPVt3Ys3Blxl1$=wdHDfgZ?s>aq{oeVj+g_OZBCPGdjkNVz9
z<;Z+h2$a?RKYCAEtHkVINNg2Pk>NojX>mxm`1z6K7Q2-d9lS*i>A`zbKnMBg_smZy
z&^zx)1*I!yClf*EOXbGkq2pDOjFaO^GKSI`+{!Mx^RWhRpBm`v?AubDqCdqh^#_f1
zy-8tt>Vr|SEX>c%9S6j6L3R7@DMRk*=_M`D_LHj*8KA`Ri!lsEcta1KzhCdezHl~*
zo|-ie<Y(uL!};0S&U_6IE@6sH;%!zE)A7WC*?H8{#}2q)M2+yC`-D^VMs2cEKKg&z
zyZ1P$=l}ozuU3bxO{R#A=p|uGYC77IOsN#9=_r*<hpkO%M}<l<k;L0O<M8esiV>28
zK}eDjQVHXnkdf0mycy@5f3JBxZV$|3Tc7XWzl-_9=kvbqz5DC=dcF?xn%C^kwCO#4
z`X66`;4lwwAE2p86>Yq4NgCItmBt60caHZjDyFwC%l+3IMC?d8-TXPb8jV(5;QdoC
zk}8yiUvaF~YGmTnim@|0cbq)U|9;*uR{)c%43eDJC?6bDM+#s4BPiRxLvVcOaT7bW
z@7%$Alfyq17gw1gKRLc?GF&B@H^>g{8Dx+_KKhqscWB?H^w0fm1IJ|58Sz)6Lwj9~
z6sys+zs^gGiC$I5aqUXGboSq!TU({dPmKRFk*bo=VOMzHR&vhdIl05CfG4@|dfmk|
z<Za8r-dE=2LfP>$sef*K4gI+{we#;!r~WI)z>(kBx~XLoXL{%Ou`_3Qg$Xu$^pDlk
z!rUR>xuZ@)te5OT#i!{sXwFNNO`kDv;!yv)Wn#}uu4|RtjB~uhBb*mb^po)Bs^Rj<
z6aDc;&XmYkRU(sT45*kH_P%^(rvJ*`WknheumhYt<Ihy&Z&F(4zY!4no1kCkr(&e$
z{9q?}@(lm`Tl_DIajNf{HhJcRifLt=9`QECvsKP9I>mo(TY09Bb&yFJQDt5Kl9bOt
z;kTpC``e`dr{uiyT>7`k+&c=XQ)M4q|F_B9^L=WyjPv8aP3G=mxT7RlG|+Cnzpj!0
znt#0{+x~4b_u9|pFC>TjZ8CR_mEqObd4D9&@xH~Tjlb{9*)h|2lz)x0BtMb&9I>X#
z_VZiLn^87oNblTA-b3KeBis*^kDZYVRC(rzUu~ZfXLw(|*d}k8o2x8y#_Vb1+xSOX
z#nc(6o#!n!(Ll!jSj#`=_OBT)kt&ld`sg2P=eOi7Y3p8>)YkiosB<QdZ{vM!OLXk?
zvL4eW47p%zbeMnYsIo%Ysw?CTr1}c)Qm;yf6R$EUf9V+FeG^StZt30`+CCA7|90tr
z{7dih#Qw|3|J%RZ+i;_M`KL3yuLPRfrfk~z-pmKb%FNdc|G91c_<8R9oMF@adAUAg
z_8)<P-uDK1nJsMKWA|3lzhZpuo4DQmWG9&Mmz_X*{yf0s4|Wqb$_%e*Ylk$)`>yyQ
zv%Rxv#rPgGXZqI_<ud$psw_E|{Yx-4NrHoh*i!!z#eXI`T_W%8Ez*0yz}^Ffdg~Fb
zEvdge0qT5ApWeIQfZ;uIU*!||+f<K}d-NONrNY&wW=x*seG^k|RH=Tlyjnx;z|YF9
zqL)ZA`;Y%|<*HjK@A%oam*c0(259HMIgzR>%RIWuGQD$2mAx}o?JnkRD}PtB`*UzF
z$B-oX7oDptBwX!389era>XzgFKm4Priwafyul};9w)5W^3O1DI0%y40IC;_BQ&H*v
zThza!UM1>Xqm{LpF>^w2me=I)r(BKxSg8MFZ$IuiHut4m!7A71{?EM=<z(+d&c7TF
z>^(AJ>}>y#56R~L^8jS|-ZyTIpLtI7EdIpgCOJ+YZ=oyi$A%3($s0uUH<_93e;mZ7
zql5qJcS&9-wf$pV{&+3n=fh*C&nWXp{l`m*RF#(!Rhn~8sd1X8{n0G3a_=eZw2Emn
z%k_Rlh@Jh<6PzEM>U~dcUe4KjZbq)K*Vx%w=k7h0tNTkT!xfoX=%0H{2mgL!dhaW7
z-c0XSfdAE~Y^k$@d7I!bHU8VDnd@Xr%{OzA`x-fagLd$LCoam4e|xnt{~kr^|8C1&
z&qem$mfOdAmQD1YCcR9E-*?_#?GpW)G10wG!(Ud@zt<k#d(1m9`j>fMgg0$cziBgb
z3*Gz9?|mEaOu4aB%5&o9`J?i_IeBJz?)Y#{lH=o`)AMG1YK3>QW4rLQWVVZ+;5l;#
zXYG-HJahTG-5l>?Twmxi&aNNowY}NVOa1qDV$Ab%?ea!5ZtR3!-ZzSS!*%z*zPTm!
znmj$XLXo}ivw2S+&sBN)Fr(?>{{@h{Y_BJUKQ~nu|7NnojkqrPQ~1|d?o(|uC-UUi
zJa66p67z4iM|%7pC#)|1??q((?^y1ROp47rqS~>^UB_Os&_82Q@0z{s#K}|3a{o{6
zmWg*h=361X+H{py&iVNvQzl2f?U7sS|09{VUGA^4UA!AMGs|YpY%|Wg1vF`Th4-z@
zUT2VdW^?{nDUHpnn2@`QD6KYd(pc{*Z>s-&kM1~G=RYrgv?Xs$E2@lX`gzm*-6cAH
z>NI&llh`CX%AfZ?G~<0&@PypmPRWICsV+CuyBj!l^0eH=Wg=N!D0g3q(4r@+3zhvP
zwY1uCO|O_B2bANS=D!xJI&|-XjLg~hRkyI*u>G@0^(`8yzGRwr-)6cFhx;~r8O~p0
z5uTB&#^|X&P(~tqmTdm272{_3tHeH3_2*?0Sj3J|HQ<j_Li!6YRYPTeNyUc9>xsRk
zay$Ir{QS?I@V44=m9m$T8MDuk9kBWxV$yis0{^ORW0(Dr(f0tVE^5+vS#NjI-?T_%
z&y_Zk+f~}M^47QNPU&4q<qjkNr^`Fqf2c>>|HFFb&L%Uww{g6$oRwS3L7r&;SQr0r
z_~$?W%)mc0@XrkVGXww3z&|ta&kX!C1OLpxKQr*p4E+CZ25NY#RMYwDce`eFJScFy
zp9VsCKRN(+f9;>=&AtCs!}}Md{8mXJKP|;a7$1O#j8DL~@M|90GY3!NaudyQ7U6}a
z=VrXG@wIr?^l!rhCZEAw<KN>uOiz7p%5w9NG2R@nG+v53rhfpw$K)sAY2K--=Zz!x
zxB^cZzYEV8--d_qx>DnOjt7l5E|B$_WyaYZPniC*@W^6$wXXeh@r>~s@D%-;e*_Pj
z{A+m9_&0dm^fdDBD&)3Hz~tNEapPgln|Y|fv!?%QJZgIG)4cH)@wDm5;vti7=<V>i
z@u!Tp#}lR}_jYG4@0$Ginm4{w^Jab5<BrL{gU5_JwPd-D={W+=m~ozrhfU8EJZ=1H
zJZXB?s+;}r72gY;1i#Q5U_bu|Uxe?A|A@!<DEL-*{o1l#q2;nadz0%w8mZr$?@jQu
zIey#XC5&IsZ@uv~<h|+jA4BkU#>e_z=+xwnspjX951Rfs9x?tfuD>^^<JpdfO@247
zzw@Wd&EonCeCog9`fGdY^}Q#U-2NFi+v{jNYkWBF@D`Dt_ZH$|v%jsuBgS9GqsD*4
zW5)OQCL}jbeV@NR+oc_@Z{|0^!??>hHGeK1!Zm-L?{yq~4`H8P-h_FN+ceL62Cdj}
zAMw4Wqi+*b;#+*L<>)&D499sB*IU2ppV6=PTGfBT^?tp2J@15^n+KaO#%=y+-@P*S
zPwnY~>m7Ra{=V0Bte=7F{d&z$^4;4DxKFP>1J~R0>M`Go9K9p2ehseo*wt^V#_#jJ
zj-$8RHJ|dmwqxfx?YlQ`+*iMy^TxZl-b>e>FLAwtz9To~-s4wXZ<~ucPJM3*{QdL6
zu#*3Oi*dbMu0L#!kG+WV6+h_Ud)4vx^gMSR=ziYIPX@`Kf+wBczI4I|;pqZ#?|=G_
zk>3B)&?$6M?c{BW5dMbmMb6#4ox=1uANgL_iS?HEX)@%0AismWo=@r)<@$@9r%g{&
zJj;9394<~fJQR@kUSjn3R_AxTTzr`C^_&3vo405CkF#*s_%wPpnDNZ@y}-GX^SQ3?
z4fGW9hQ0PD>G{B{?`Ay1IA!ZN&a3o<ZjyOh)lSCwKKbyzvcB5?3tnmZ8+s?M+<X?3
z*LiN^yLTOB&TqZQuVbF|yf?=8LZ=4j0bSp7$=5Xfm-}AN$(Z^4FL}4AjKA+evR<pm
zrzXq#23Wwu<Q>z$6%QESi5D9GnEs?0&$qbC?-UlxaGV<6g+xQAp0m{C8{-M%$N26Y
z<ot?xgq|LF#Q5oWf?rOElRw9I?>c9=9AAaZ!==6#Ic~AcoA+YRe_V$L*<QLo+<`xA
z_S;ACzRZv2pTk!fe;<#T{vYt9$p^eA#N7T?YTWhR+aLJN51r>WzI*FCL)Ld4>)VHX
z;zHRU7B!Rg9YX&W(_cnUq=)n@WIit>Uuec3_r1VL@S8&}`8&z~VveIn@NbQ$eJ^y<
z92YvDACo_Taq4mRBfiJ<6zwPbTcz2r4)wjzaYM3R^BHGHJQf!J5kJlMA}4OvcMSQ|
z>5|v|s>1hrPQ>j0mumkY$$L*7{^P&oU5?YGEO#||mtVs_34fM+s%WGyTPS)>`v*vW
zCHYT%FLE9<`>o@h@N@fB!ff||@7|M%Io}?NXU%-(uD^1}^(y0C=#Ow74l$noz85+N
zuzkIk75?Ka^6Shvqxd7n=lfpI*<+TwnEdBvf4J56LT8WJuO6Z&bG958F}BMlJT^nT
zkR9<w&GUD3F5`cP{s8^De}3tEk@Kh-f8B;M{~<H~2jit?e{1i1J;ycMr4RXMO#dj~
zy+Jb`R?C@&SDJZP?0a1&#GfJ+vtBF7hbGH@buC3H-@W~WU%D<K|C;Yb&Iq$!ACuo=
zw$~m!VAiW{BiXM?j311rOwTdCd*^dAZ{6@cW<102MJ7MV_d=(bU(jW<I~S9Wn4V>L
zU(@p-UZ1?~4_oOkH2cZxc)%?86W_h-f3sbF^1YsuFz1;A_Rq~*T_<7kC3v!y?9bkA
z=|7IgGsXwtapU9gwDDPZ!uY@Nl<`}9_b#%`yxoUCWcKGL@mXg6U#34cNY<-ZUM4#4
zlMk5wU-48!p7(hj(a5`jn>!!IOn(dC3!Or<UAp*Q&q-Cta#wlxr*e;8c!}9RhvUV@
zXZl{`JZ9E+A^y1WrSyc#SYKJJv&wgGKQZ&X36C0okN&h--|xuBOuk-YnV&4<(f#=l
ze61O0(0A{}nb{Bfk&m0@j_}=^Pjg<KLcZ8+$60ua*D3mZdNtmZejVpsnm5Z`heu5R
z3wXxlcj1-BzxKV*$(r+O;eqT|9oXMo*<c6aBg}G3eD}_)X8U&Wz0j#|&Kra1Nt^95
zhMsk1f15&nmRasxJZk*kxNGL~Hs9+y8UDUSpD!Nt-8(Ot?f5M2JTLogs=Lg?4*C=3
zI^hF6W7g|CJhi{fXCcRLP49J2?)ZJe?1u;XUeAf~JQb3~IwiO>jpLW+wd3gtn|T<B
zmm8mohm2oLf7;CdfAC`SytWz-G0sxP`6&HM&HlE{ckkJW`?31``?>E0PR!h&+{fEM
zx%pXVdJe#M7(W`%8ZX65%=-4j7nyvy@7{T-r_6Jl^}5*idd?0rKiB(S;4CuZzngr_
z92cADkD2q#E4XX?ecy|m^=3c$4v(7g7dDZ3D>r_K@AaHQGyWrS$9Q|+z2{|q-Cg&?
zet3}MNS~J@c*yt#xMO@V9x#3f?i$~KXU%#372mzrFH_I(w^W?tVi);HAMvI5cfJ=n
zZ=2(^&cQNouNprX-)QE)Bc3we7k|?DnfNB-)A6T_U+%kiyqM?lTYUHKr-fv_BJ7_J
zlh2s*`3v|C<6rn*<OI!rvfm-Oc_?tAW`Aytmm5Fc_d+Lj)ChkhdR*Uvhm6;3n(Oz@
zx8^=TeLQCN!vlRUbV4oi``eM9W%6CgJ0?Gje3CyG(EWC__VWQ&I{vwM%=j|ji=35a
zd+qYQzzLcA35Ogi^O^e3Ab);BY_AcxWAaOUFLLfQ{cmUwA950;r}1IAesBJd$e*9%
ze6Qz>F!M9SckfAv@o3LAc+8CRMLc50xvzIWCbyr2OwXx!%;c}oycz!%%^R=dO22D*
z`uJYttTOX6-}ib>+HBuz@hs0@y4_ddG2<Jw$M`FF!uS_>(s<p&bL01}i_CajJZroi
zo-#eB;8Eja@woBx@Qm?=zW@2YNexFHOYjnN9=MyHfEnlG<Zm_e|Ge+s`_%jeW{mzy
z-@W5^wCtb7HRK2No6CNiGRN16c&vH;{#@aEJtt_!v(WbfC(C{8VwQU=9^kWV)HmQs
zliz{Ijem=$jR%g9?He`YY45vte&+d0m)oCw*yPL9&2c*4_X1}X?=KXvUd!nZndia#
z=!ux~>hriWQJybcdMfdd8Bfg?vR)D6E%0(P&K{aKKE`+N`O9p_E7i^U>Tx_}@?YX1
zlW%&Y>_1K`*-!L5*57yUeO|NO%gMVZN<PLsT!JTzFQvy_D(CHT@@vV*_yDw0{5{R{
zAzhmP6;GI+CP&FU$ISL>@4I)rn0XjQ-r*1N^gLGKdy#XyIUX<f-MfA>`{A{|7dT-v
zKezktJ&&}L`3bRJ8_7paKJB~rI>qcKyYPhZFMTg^?l9y0m3-Xf>m4oglQG^D514sq
ziMz%-<0;c~vhPLCU1mH($%jqPIN!b31^mgHw`cp0DZYE}hnnk+E9nWDo+Wt1_#JrE
z_`~$aO#jQi*LA|?Jg}2|$h^+_p8lBWuT>)R95;Rto-p3pckevUCt^gIhZD#LP5u<$
zz58aoUM?m-%J;fXxtY(2zI*R?be8=vO#X6u?ls%%dVH06eYb+15_A20zxEqX`CiY7
zn)BE;@+otk`3&D;uB(6Xy~tT=#<PFR+&mXKTg>>6^u5q=%ysfG^0%3Mh41y8kQwJ<
zysz<l=vi%gp7h<@Z_Ro2Z9K$B8hESYKYrD`8E5lWx%KkS8)km`<00cye6Qy$GUHr`
zC(ZtIBR!58&m+DUIro|M+DcE#^t??zY4V@Z9~&zBo8FiE4e!f-Qjd8kJ|?%mb)9v;
zOWxaZ{^Ka$y?Gdt-_wPBVGViy)qG!kOU-;AjmP-=_hR}h@PzUCzI)3ZoWI=bd@pjg
zoAteeo`4zueR$CLdc4&5Gx!MOX*_EDExgjnU*8Y$pqZa6UTXYjJY>9fYuPSg;|=i<
z#+%|%<455M<L&TO#=GG=jGv4b7UZw*AiUW4XuQ<;Bs^q%I-WH?7kBr`U+(32iScXk
zpz-B+sqs~K*!Y9^2;&>^a^qX^rN&>ulg4-9mBv58v&O&0_Za^j-(ilsy2r}?lQDh(
zUTM4;o;BXecklc>Hh=z4ARjZ&cc<cujE}(M#?Qx>8ovxr7+->~GQJW|8h->|XZ#sF
zW&90%i}4TfwDIro9mealk@>GQUW{jrAC2!ZejM(Y^G{#A(D-n?*!XnZH9j9NF}@5B
z8NVCvYkVCZHog^)7~g@H8~+%eW&B4xX1s1&nde2u55^P5Tj8sWpMa-~55Tt=pMs~2
zUx@E8eidG6d^w&qp2YVUe*$;R^UjNSq49U{fblQzV&lK#uJI!81!?X&p~U#Xc+hw&
zywte&y)b@H$ar5oZ2Sy-mhtI$%=iL)k?|FH-1w9DQsXb<tBk*gCyjrFuQOiIPS!VN
ze1Ck4@uTpxaqn}8{CV49{3JYMd>EcJJ{I3&yaIR3^Zq<MVEih)*!XhXHGVH%V*D{Y
zVtgB3Zv0Jrmhn&VnDJlmMaJv5m-&nvZ-y^5-WE?9?}e{3J`ztEpMh^N9>>$hm*W}Z
ztMN+X8}O|0E%+YeJ8;KbcU9s6<3Hi9@dh1aK1+-rf(MNsjfahQ!bceIgGY>y#><UY
z;8EjO;IoV`!(+yi_#)%m@VN1J@TJB-!xP4T#8(-w+fn9okMYBB$6N<`-%a43ABv6l
z!b8S~;eCyl<5A-=e39|1@woBjc*6L7_$uR@@RaeF@h!%8<7wkx<2#Jk?j-Y*F@7Lk
zXs&yY!2`xmz>AF!#$DrM@e<?b;z8q=;HAc|!9&JZ;C+ohh=+|oiH|V;A|5fm3okeR
zKYW()U+|dmx}9bI7a4DY$Bnnbmm2SiCybwpCyk$ur;Ja*)5g#D-FyFiZ2s$=h2&?M
z>+_rOjPVEYxVe5y;Y*Fbf+vlCsQt#j$NQS+@xtR|o<|rz2#*-=fR`H&<5A-i@PzT%
zcwh7Ua)Y`#k3EVfjlYbqGyW@{GJZ&@tnU`%o$$2r{`d~#6Yz}j3-C(gSL21|e6kV`
z7~h0PjDL*JGX5JLGv1(!tnWJGCAeeu=Wck^_!;;r<1@71_+sC^_utKNaVz;fCchSU
zxSy~02{+?~#^1&R#y`c2jsJ+d#tXa3{FE3!2oD-R5-&C0(f4{zU$egb@UZdG^dwF=
z!@tAnZ9e~TE}k*I5O=%h=WoIz#*^A_{2A>zKEG!to-z3^HP7!s={Rd1FY^{L-UQEZ
zpH}m2akpOna(in}w|pO|Zt_t)VSFK;F}_UmrvHB2Ey`c+vv|b#JKAIX8$4tB3%kku
zWK8}r+^wI#+>Us}_$he8ctrb+pRfJ<=J#Kv{l-^l-t2FW;0cp|9?uwmUwazlFZV}0
zVtl_7WPTFHkHj;^kH_8p^7{wj5i|aY>Lx!IPZ+-z&lq2YyMg@WZq$C`uWG;XPqp8;
z(_QAlZJ6JGARaN^8c!JSiD!(D(EdjG{nNDH_yX-WexvpqPip`E`Td)<-}u|wZ~SZR
zH(q!m^K(Fc|6zE<ct<>8{1iN6Jfi)L^ZU=&e&bhZzws5?Z+xBhADG|&g7zE#K>LmV
zr2WPNA?D|x{Qjfxi1BWC!uVi3W4v7Zi}U;EX}|I7wcq$^?Khs%{wDeTuWP^Y&$Zup
zK@XXSjPYXJJvhI=4IVMx3r`pysr|;I+J8uX|3d9IzD)a#KcM}_w`hOU{Qh0qZ~R;B
zH(swN^JCn_-9z*HJL3`K{qcnHaoTTumi8Z(-@jP<jo+^Q#@B1V@wE0g%kTe4`;Gsi
z{l*)e#QYd9!Cg1MzdIf=?tRmOe_thG{A}$v9@GBA^ZS=*zwtHNZ+w&X8{eV*&GY-e
z(0=1Jdoh0F2jdyzLEJqezrPP2F+N)RjZfEp<BPPvMSlOy+HZWV_8Z@({l+uee`J3D
z_u6l~esAW-cyl~sycBnj%I_b5M~qL<e&chr-*{a6kIwI3sr|+`Xut87wcmK9_Lt=M
z|EB%M59q`E7;lAVjE8WyWq$u~JYsyR_8Y%M`;9Nv{#N<@_iDfKr?ubsPVG0I)&67h
z`)i*p^AIuK6i*m$k7tbc#ogBV{bRJ>_)P6Lex>#sPiX(K`TY-TzwzzbZ+y4*8{eb-
zZSwmY^ksgGx4;v|yW$z+Vccz--#=0NjnCD7<JW4x@m1O%%<tc*{l;I_e&e5Nzj3FZ
z%!Au5zyClyV!Sn;Fy0f-7$2ei?eqJmX}|FW+Hd?u?Khs({to&5o3-Eg+uCpZYwb5)
zcnb5=F~9#XJYu{fo-lq2o-rQL{!aP*=WD<5tF+(v3hg((PWwCO_rIY1#y`-0<3DM?
z@xZCf&vE(vN8u6U-SC9*!Fa}ax%QXl_s`RQ<JW7y@zvUIJf;0z^7~)ce&e5Ozwv_p
zxq0wDN9CgtPVSL9$p1f1vHBSCNDc8ezI%TUYkGR&ZrA+rjKm|xqj<vjLhU!cOnZ*c
z?|(phjBn8%<GXOTTYk^CzI(sd`kJiom_k|Kx~IwfxVywB;D@O{Ebi8nd<Q(05HH?G
zyf5xd6u*l3JQI)27VlUf`RUqom3RWb9CxGQ`gvl@G=HP`Pvq}c|F3u@z8O#Qb)ARF
zVx70}SQp6;#j|+Ec&!04KePB8#rotA##8O3rzhSP5ApW`-fb@b(F<S8??u<f&%o0M
zOHVOA4c}n$m*VcVlHbVsF2xg*#C87f!D9o(v-EGm9lqAf`?VAQ@dlpREcx8$D&`)a
z<Dpc(7Yvm7N%4F2tt9Rg<B7{9e>UT6gJ;eb*X`R&doC0Ykspai&J)kDUq$gO^QPN(
zA?`dN`3CH_%e3cS@n!6{58#Q@#CI|NEqJQG_;!4k_Lqq3`hJUt_{Kk-&w62*pG<Gb
zucF7rorw5M)~hofF#BzP&71vg9G(hE&jR{q;X%{0SbLgEz6JT)ara8`#mxVDJaevi
zl5wW-&`IJ;==n(VeBP0FdE-BR!JVFxzY=dWNaiPcpm;G}g2#r57qHy!c&MYe_77E$
ziH~9YXXBBp#n<66&6|11ec4&=`J$;g?$+QfjBoP&&%YmJ_|6XUG1LD=HTjx@IgU*J
zVBf3u2g#4%_we<+)CYIF%lgh^K%?=*RB=7-rsK|`;<`U9^1bSEZzdl%+iNXeZpO0>
zZ*Ar+gU>Sg?|rYj-1<Xgev)Rn&GAL1rxcHMmi5x}`~csp_D|5fIezEhNzVU`n9q1M
zJuAtF%zSRZJDPcT8DDC~Ux{}!`QPwWCVzmpg1Nt=v7i6h%J)KNoymu)$qy%=HuF5S
zn*1f?vnIb34;&=(U(CGStNms^pT<KMNWKln=}tUzn|Ortb{5Z?p4!9qJ`YWO_pX1;
z_HAEHzAyQNInRv2oz^m*AnP@=nw~4kZ!z<qz=LLf9<HWmJNXoUU#Zs>yQ|6XA-}^c
zx54ne&rb{A3!O@n?}|rGk@ZcnzF|CM=3yef$Mnp_owm}W<G<GTs{8FK@`a5gujjXo
z)#P6#A30g_YZ>RKc;-~`&A4;AoKIrrI6V;0nDa(!JkeEpBJ}jcBj$N|1RgT$J5BvK
z>G5`B|FHn?Wsdh7eXlw{N%AQ({>^xd>$=YLzl|50`TQCWoBgoR8{Xc|Cx`i7=tNCE
zcbMd!H{BCty=Jl8+-~E){xa*EyX@Ip|M}$OrvIvH@+-(EO@197Xzcwz-b2sZFI3a>
z0r?U$KR@A4sr2af3V1KCa_bc`*MYg)usJU^J-L@-Iqz$Hu<up3Z#jAAcv)`5Ukk^X
zho{Z@USCbmYVui=PgRqDoqV8JmRrnnKgZo};#2X0k+NQyzT)fgVmxT(zYQKX*QLFD
zuR0GS$ve3n&wJ?gNwk{$Lh=!_y_Vtq&GGd>H9cF%k1*S7S2g)>$p_86)f<(YpQ`KS
z`d;XioBqyt${fG_@mVH6uA2T?<iln>i>t}sPCjJjdA;_S?U=5n=Ogk_v)o^*$u}A;
z`%la)x5W3V^VXgGA~O#|tI3~DK4to2)#R6ukDKwY!JTIL`{5>hsTt3XYWlw*A2K~P
z&)oZda<K2--?5tKksuy5+oex6J)_Ad&3aA8)5aH7({nTVm>K_Ce5g6Tw&A0VXYdKe
zzxTcBcCSB1_LG!ZZgbzO=1a-1GTUW9HTenT*O~mBYVvXNTTFgsHTezXvu2)Ot|nhe
zeuwG*t(yD+XUY6jntUrfRVw?fK7WOLuR3qT$p@N9zL@j*)N1mVkPn*t(rWVel24ia
z`RQu%JIU`c>y@o0Uppf6P`JO0U#}aR;#1B3*53E3^U#-k*sRx>YVtG5JFYBOpQo<G
zi_Lfvc!}|c@lxa4@xI1)`(AbYd&o!4_#2Gf`+25??}g3?)8Dn4e3*RP^iQlNKbL&S
z%+IyB(@Ew{@8_(-%guN;R@46~`J@@or}!+><BXI2WTx344#eZ;yxJOHWO{nyNs}Le
zFE#mTc+_0~EWlTp{Efa>-M&fkX|ukY@rb!@e7l;SugS;Eb}1Y$^Almac(;H3$6@$f
zGjAR7b!Pmh;4yQZ9Kq9O-p=>E>iS+qK5N!@MK$?#<OAlu`V061GyV^%>G_F#(DVc*
z$oy<E>w6TQHS5(451XFBc%r-P|MQsVay(_`Z63bEEcbdmbG`JuULZxQ@z_{#z0aJ&
z6Xt&G>$nq?d^g7PIi526NkN&+L&)Td@k%q!HuzO${(Iq0OIfboS09PHUBvbID~exl
zdKTg#)3XfUW5)A<_H%zA#rkg1o;zi^Q}>Y{?82RS;`%<tw|LAfx86jVpP0E%;^LvM
z(&N2+@E@J=lsSI;<59E!jKkx`XW<F+dVDb+nI_BC`@py3spaAh>$@H=<UX4|pQdq#
z&#7y{_&>rEeWXX<@Aw6eoAX|yNisi4GyW31*etg@o-*g9p?HA%kotQ6Y&<hU#-rcw
z5W}63`Mv~CnAf>$w1@XQma)E@@Yn?DnNvf4utWRDi|cXsg*x}~^!`lEa+!ye*-s9}
zOUyh3@lxY`@R&IsN8`)P@iHC1-S{HBuj#)TUt{uX@x&#vz7shAY{OG#JQ+M>=HYwX
zy)3_{{$!aSr=7T-mzv`v%s5N&a^nMhuj{00dp9(^N3m=!C*r&J_j(h>U3{kR-uI#8
z-Wc*8-rHFI<4QbaJfV5>d3O)fA2a>Wkk{|YV)t?0!dLP+hw5L^<C>njXXoapz`4WZ
zoB8g2?uyBGAn)+`q9v@?DR|O+uH9HXZhRK~@rcY@q0SHaw8`H}J~bhK{_i6nxK`#_
zx65WcYkJ=Cy~ugMe2&wXzSnh}zS6JnSJs}Ao1c1)!*T<Rv)Fg<^|kpNty15;{iHB|
zoF|hHoA*0Lk<Zl0&qv7zO@4v)oBR#r3pl=XyRY`Wo|7Ff{W|`~eD}UL(|nK8OY|qq
z_&=aO)=Q3~1oN;*{dw^cHe`M8MxTHGwx4*4{E>L%O!5r0qwjSc*DSXm9x*-&4;hc*
zG2@ruj`8b#FLItW`@>4#z3tmU#@UzgZ@^vdTdu=j##20xx5g`d_x6WVW&YRIk{|r0
z`PI^|zgKX;IWlkVDDeZCpH_Hiy?7-(A<gr90=Ki=;dqAUO&6c)dy$iA?A=)N9zo8x
zbMQ509<IReF}?)fZ2S&9VLq?#A>Y04cPPu>&z~Z{)%3hfJ~&qLdVbi2XH3s$^lV|d
z^;zGaao2oaV$n1??<LIVE*|c?_c@&9vfM@Vbiq@T#C3ld;Jf#^pr?!HzUMOcI1`W7
z7T4ph0*@G<kB5z4ho|~Uk9Vr}AGi5l<Rr~J-;ZxI^ZAta)Ri7rYMh<E7dk=Schh<P
z3NJNYSRwmo$api{G4GSM^4<HKVRQcMj0cSO_TBqEx{!=B$~Xu5?meHH&qE$ZKKh#+
z7drka<df!kVV>{a`?==4y_|g9<dgJ=n73la^9=47e-n3&e~xF&`R6y^3!JoBZbNUy
zbDwwQG7qwLj&rE*-uGym&+!i8Q9f5Wz&KCBQzkzgkC^;q-@W&zcpsr7J+sM2%{Z^Z
z!^Us%-MfA;+xG#y)Ew7O`0hRbo+R5n#d4n`?{YlqJiO_9k+Z`b@0H}kX1U+{?tL$Y
zS>L+n=H}V^UM-V9(0A|iY0Y+Q;d_zuoH@Qa`0jm<E8jmDWBh$^hwHr%eg^%S6J>qX
zr{a+w`TPIHnm2weo?_n8^xuIedP$G^I^Vs|bvM@oui_cwpZZ?p+;7&mV7km(&|JSY
z#!HPi$K7!<o&e+Q;Cqp?!u0p{J$JG@jimga{&>*rZ{t00l>4yJK*$ezZ<qLwi|`13
zBhRNxHQy-Y=Xg4G*5d*E5UFwA!h`s}_&0b6-w!XEA>#>~{uX!y_oml>^uRNC6d$cU
z`-glf!q3qjTxQjKpBGOVkK^tE(xdqmc+B`(JY)P>Jk(fvbe`Y96L^MkeysfmN`5!~
z10Fp{T-UeGOqsWg@nSq&EcuvT7vbq9;&bs6HGhbBZATu1@Cbe|J|2(Zy4}ym6S$uL
zufS6#zYNdddL5X=15IT-%~|e~cnCiNe;JSBUGVquBz`>p9iGK?K5L&R^BFlb<R`t`
z2>zo9o;KbV4;>crbEoTk;)!PBqws;abGY~l{46}#TwMO^I5Y7qKERR3d^~i7Bu~X}
z#N+rFe1rDjU0Ci`Jb0w^JcRGk{88dJ;9qEeiFgzGf5nq{1M-c|m-$S!l>BV2$4c-}
zYw?%pDaGAm#dZH2h$q^Jze;{89&0OpGrmB3g5s~^H{(t_@$TGzdlV0K6#t3*3+kQ3
zhco_4JaL@(o%oM<xU2Z-^b}nn^N_@^^PakMkEVFISIGb0$1-m%@mO#1tNoukPB%Qz
zC*KF+349>yH5SkIll+PF%)o=Eh~L0?7U1b2;x96uYqWouxb9agac8*rp^iKr#$Eg{
zd@~-x^}gu4c=mMZX{r00_M9P}rso&U<CF1vvp9Z7N}d|0IUdF5k?)3Q@j7hBakz7)
z^xR3&JUlr@{1ALOo<2)FO#cSljflU2zo`9V#Rt%n!NcRkb^JxMSucDB<7|s(CgkVC
zcoz3+{m0pOv@Ab=B_6{YlfMm5;JRK9Yd`)9<9QZOmrK9y&u`+++2S9vVwKu6Mf_rx
z`vV@GDn5t(xy~G!hirxTmE@1aV^Q(ejHd^loGyL<7cPVF^abLh$xpz8bHu0M7vPDx
z;$i$sJUdVP8J;+o;i=2SOBw&YxO0X0{fuXm<`;|qRLAijud6Q+@4#|D)}9;0?~}N*
z2T$Vn)RQ07y^#IqcFB(=-vm$Nlkj8k&>fQZPHX<-1U!Z7{xA>^tdx8O`SExR?}lHX
zJ$M8BN<5A0`Q!#Xi$BZ$^Pu*ulI6aRKaVF?i*Lg}#-nS*-^6RomH7$ZD}Ef?r70eN
zQ2dFSj{j(_`E}y&vE94jp(n)keUJf~Pl<10x#MwnllTfp9y9PXem8z89(yX}%NqPT
zJovQuGx$o}c}9E{%Uy>jH;X?){y9AQthnx1Z{zM3@d|pfczmn4KELd9k<4cre}a4f
zk3T2*7aVys!z0_pQ+RvaeO~+_yceFq+tVM>{EL!bOnwHQ#P7r}$0KRU&ttpasQs^r
z&&Ahj{w?ts$K#8de@DC{$6W?@E5$oA&Tq8m6Y(LAJZgDQOu5%(DZCF}j0ZlI{D*i;
z-1$sgkH;Q(7#~f3IG)63GoHzK@PE>y`@?)Zi#Ostb|W76O7cI_e~<dt;<f015qG~4
z*XzBHapzlc-Cl*>6G3hs;`qb#ABu;+lf15Pdpv=k%5n$b+3zL4jGl?w|AV+5j~C&Q
zAI0~j=XyN)lXw|DtMCjy6yJo0ewMth?_0S0i?~bvSIy%WvD~IH_J?03uk+avPyZ&~
zz>&v5JcD0@Pr_rrhkTjGd2BxJ)a>DVFaN)eb1NRk*Rb6m*L<Pm_5Ah*9;hpRDaXY(
zc%n$W1-|cm&JX*F-{Qz4h({ZUx5J0xN&ITO0uSvc`7r0<%kg+)@rN1z9eB8jc$*qh
z^aLI|So|}3Uc#e?i|cvgL)>jHK8o?|!DF~y*EPI^^*uuJx<9wU<1NIevR(S)PD}AX
z4OzfcJkUyf0e%IZI7a+Pd<C9vEuLhYkK(ao#Sb9AU3=Py*TdhzlWoPXz`w*p?Zmy?
zJO1N$Jcakg_q$Z)A<$m(XW=d$#ZRHX1D@(2`M2?&c%qZIzOFn2cT2^uqyKE}!KdIC
z;lVDFZ&^!z@NYcQU3}j{@fCQqkNB7x;t%2Jlf|FGU&Isr#P#*UE<AOL_+yOcOFVX}
zxE>eI0+~0rzxZq955b+&#P#@XgNN~V_mO`v91jkX{QWh>=i=F6;`(>ZEAiOr;$PN~
z{0=;NhWIV?RN{d#;>Q$7{%1TC5g%M%yzynSUWuvVZwWi?@z^=y6WA{O@a%N)x#Y|6
z=nU~!$j`*Xv&9E6o&|W~Lh+yIS*|`;Jc4h;or}cZtsy^n3D3+EKMLQC2V&xv)3ZnW
z@elCAg)$HE`I28v&%t=;Qt@$&zayT!OnhIqZ+|?sNc?iP%b9ri-{QBi+!?sDSbS^^
z`N7qA^lI_*S?(Qp_8Rf7_+xnRdhtV9?#p<1skrw){l{l`2G`%)alDDjJ?}?ul>BQo
zBwvh&av$L4Jsz(u-U@ea6A$4%HGh}*WO|0<$<^Y6@TquUjrfPm=UnYiito$%{#)}8
zh+jj`E!zK}_{H=*fCnED|3-%Iq}11mzsbD4qWzDHPp&2Zpc0R55`UK-XA$%Elz5jK
z@`EOL;%RZ+&x7jE<a=NB&EkXUAA>v3itBt%!=qcoPh)*A##7IUPow8rJh)w4$A2Fl
zcwT%s*Uy`^{|)g<dNO!qhxoZQ<OjdvnK#9^<Hc9V{3PEJ*Zr_P9(r5+K>7#c5&VDn
zG(7x{<j3Nd;VHbRhWy|rJiSZuUz1;}{%*c+Q_qO+B>w@Pd{6vw{5L$hTl{pq*_E=s
zY2zp0!S^M9C;0(*1|NZ+g@-<nym|$mz$?gKf(Jg7{N3yi*W#&4ah-=1>Ys?8O8z13
z`JZ@{<N7%~_Ko;1mir+d`Br>j4f#RAzu4~Ii9d!Pf=7Q4*ZVUaHUE=%4f3brsh`E)
zXStI!|BLuT9KVaSzeZ0#IhOqGcm|(<uf@X!k}qN&w&9Ul;^&b608isD;=kjG+LE8h
zd864?G7o|J;-grvj(Bum@ox*HXn=Y^yd(Lu@nl2s!|;W8x{<hxuf((aiw`W2{zvi9
zf#UjkH80|^V(|^+KhXRkIP3ch?lcu&k2n6etZxdR!gyNZ!NVj!3_k&nHxute&tN=*
zKaEH6WbOkzy~hT8J{~<>{AK()JltG-BEAYw;ZyO)@!%1X*YoO&c<d<gIpp8PoukD+
z!LxW4AA;BLUTEi@XTv3u*Xz9l@k~o`y}oLRM_P${yP5y!hG&fr!ehrs{$b|191k5U
zejhzEv<F{SAU{}$$Aglupl2!Wv={%5o>l4{#Pzs%1W)7M)2RR0hDSO|-us{aV;7#q
zKf`~(Go2*=C|-26%x9vr_)~Z@JbIk?6uc{*!FB%`p*^LN*Yo80>RrTtWFD?lKVJNI
z`X5p6Ccd^ne((YwIZ^y3@*m?)NW2UFD;~mi|2!}*>zl+w<lEy}{5*UR9_=Chz3>V=
zg$MA<@HAeN^}P|#^pu|4$ls60PZIA}AU}9g^S#C2Bmb)Q_YqIvm3Z`I@n$UdSMBdB
zz6syYyTRgLubv`4w?K-T;hFy8LGo?!zyR@XEVnxz#!n?b6i*DKhx~XvjW5M#;?c0=
z`{S43DV(QM=UVN-L*!TDfkD!99^-ikj}I1KM}8|F9wL4{z5~zVtMISz#8Amk!fReD
z^BEYH?+4*A<Hz7x<2~@m@cf>kc-nXw9y(p}Co-N3@EAUVdAI`4jG(_j{y_o{j}rH8
z^ZJkb@HBoB`4sMsk^BYt%XlIpuH*Rx&lvwzd&Ww>jBz&fZh-jrQOAkbpuYr9Ob`!{
z?}jJK#CO+`@%PvKIpRgE*J#b-L-1*MV4CDh@cDQMpNU_Cr||ChGTf<<9^HRd<4Ihf
z-yg%>b0xojffS|j&<yd*xxU(sr_UFEndN??{TGObn4fyyj-8v&>@0Eb^22{L#bdL@
z^|~&odAtujC*q+CB|nIsfq26BS-3M-@)wgo7mwjD703@3;E{_Z-+<*V!J{$pY4qHQ
zXYfPFufv^7B(LYI=kXAJ3q9{?555Ke7EfL(JuC4#|Ka?(KztP2<p4Z&xj4gdTH$G2
zuhY8V?jp$_$v+r~hp!OV{qQV2hOZ+(4G;ZG@)eBpQap*5;n(5rRgw?Ylpn0ZBXRL@
z_~Ur`dU2PY?RXZ~<NX~x_#erue~Cx&bLgqPMCLPt>-IVncb7<ydKWx`x1^^Z9>*gE
z@`E$*>{97j%e+m&lQ)V#g<p)vmWe0nzYY&B7vD_&PTaXgd=mZ;9!-dQmnHt=8O`4+
z?)^{y@fM!I_5Q%8xO<!A?<Zg5zswsRz#HRPyjFqypdIe4l%9PU=P7vLPVtw?pQ$}}
ziO29Mcyx`p9v5?Q_a5=P7|%6$8efjzsXg~fzL4YSX*_nncrp1`@dSQsf&AcW?SD}6
zdVZ+kU0~$Sd!e=Bx?LLL$%n*SvY$7{GmnZt$#T1BKKF$J-lKMb{GczM+90m)D-Flf
zkBfV|z5gi3qZ`Ffr{^Ngr^IzW|Aoh%6n}%B<#=S1_%ZnXcpTU3v5k1<DakKmyKmS2
zXT%%RvkOn)zmor-`m>VP{oyy<-6lSsp87Y){KxUj=y7p(yX1F}?}R(gi|<dqx8`3E
zUxE+AQ!k1?P*;l1#$#`a>+|D<cx0#egDm$N?SD&LkLx?|?AzkK*gqe}LmBZN^gM^h
z@qG*A2Rre^ZprKQ*cZ6-f%pJ=oEv4{!p0B46L^?>3p|VOVVoV+E2aM=@;&g-C*u7J
z<Od`0_-EpJJ#!A8#?PbY3OxL|<Uhsl(Ek64JM=%H{-wA+PrZjH@u}p$!`-hXufH#`
zulEAbfBo`}_`@tWh`Zm4KY<UxGx)RYKjZP__mcPC=I|fq<DnnK_4)T2Jc`H2--c&R
z{&C#hBR$WM-==w7&ksBC_>Ynwz<sdK@XT-GFBC}8k9e|%Y}rY8on<mVZcTB09dr<$
zs3orV2ioBA+T!|r-4{>eLB>A<cj`!9eHtD#J_nEBf!b1ZB_7>Zdfue}7ChWQ{9XKE
z?cY!Q4*VHBga4;cey{_N6-!?4V|;>V@f+A5e#YYmOTIhvS>JoY%I$CIrujY1@z9~-
zNuEbK;@QK+%kh)&$Wh{(=^u;-TZ-%Rdztp&O?Uw_3lDUX`~>FVGCYR&V!dv_)14)+
z*Bh(x=yBr5((@Rez>mY9$1`{>`rpB`rP8C<8(-nh@#0_5Q{!ft&n(`Lo<?}+1j&C+
zz6Bo4eSwbmXpMKlBY0ChjK@rVDxNg?EAce$y^Qi7x8TteWw|Zz2k`{njq#`POi1$0
z$iIy{J;aO2e}%g}^S#C`GC!e{#LMYvj3@CJ-W(71l6(*P+u^a^;`;tqZ#>&a{CW1n
zk$9?~_>1hf<#>F6cw!$}@Wps=u=s8C+=yp#Uu@((=1AOGjYo!wN9o^yr_T`A=fPKS
zcVxbQibsvtNXWdUaJ_ChNPV>Q=zh``&){{Kw_bSmOv#^#568o2iO+N7F&R(ey~)RL
zcdX<eCm+W%xZclSfrrLR-aCB!$2vTN55%|P!3mN-m>qN%9$qBgoBa290`G=5xK-vY
zWAew~!7HR^GWi~O0>6^&I8^hCCBI=G`3IBm>^0(gp1BBjuN8le{u?!q@8o=bH=e#p
z@@;C!KX?vzmW#i`^UE$gbDMZ~`ai+l+r_DI_TWK$H$Ny`A@k#|l>9gJ9Ik$+_!)RR
zJcfU@kNlvQ`rVTMxIlau9=%sQLeCUDjh8Z>OYlHa@?FWt@i3miSK?XY8}Ru3(ld<w
z3!2C8WV!F+i3cTr0{JYS!S(r~=55T|TFG}I-x!bJ7vd#&2JeKQpgj*s&rA4l+<91B
zUq?*CGx${Um*L?@B)<t?j=Sr`^}fXYcpN{Qd3X|c)=T~j{1rU%nE2gXzkP@Yo)n+J
za(}>Mcr(22?J{o({0;hDJoc3IjK@3U*{8*SqGzD`GvckuPsZJ6#r3-V5<IX){Gyst
z^dCIFUEJA6{7&^3#m^`Z--u^l60gJY`!eqA6d%txKg6T>$M{cp<SohTcHGaq@bj<7
z@P*`C;E}f_uh)B>G>?}t4+HSfF3JD9rW8dqzgzqW`YUkfeet4w<p(i5kQL|j<HT_n
zPtmgy&)}7eXFZ<&T6#9(FX8cT#Y^b<08inMGXFo}u^%L_^A=bs^OnW+_195&WRK*h
z)87rx7$2<pA0_`h`KfsDCvk7{`H%V9gJ<!Z@bu4;U(NbHgvWjr*ZFx7kNz(HHa+j*
zVW*cb8}M)NKn?MW=r6oe<{@4n{xp6l9?5;7q4&`H25s<AE%Ex~yW!#5;`;n}8lJ+B
zB0mz(){*=LjB_#`EfnvM&(R)yFn$g0)|LE;_$oYt_ragRllZClPTZ*{Ju<6~lf}b$
zzkTE%)Lg}RX<x~Yq32NCX&_#M`!L7hfrG?#JpJ$puJ<v<;7MH9>wG+m&tg6=$D>W8
z|Myxlp#Q2j6Zclff82$;uDFhWJs!gs(!U)KG?)A&dfw4IzJ~l)c(8@!^>ux%yEtFr
z|D)$XJawexThem`o;^zZD)OE2*wNw(@l)|YiTG%?*O_?q7;(MdJ5769i+AR{u>eoC
z5&xS0rRr_PAHna{p4=CDdXKp*_etF8C|=Hby^cpai9bZoS9q|q_{Dhr)iQ5MT<>Ev
z!-J)g*Vh+aHIM(ya?eojDtWzMG#if|FRuH;ay*S6M9-smwwvV7Wt=Z*&k5r5@Jh|&
zmH2OXrn}@X!}q^i);D^h_$d5nJZ(IL2SfS!5qRAAbUbVPUwF8O^yq$aD<0`7zK(f#
z7<YT+FLx^*!_Q~@yKtws<ki2^JidZ_-8C`~!9J32$a0(E;gj>1+Zj*ddY|DmJkeM3
zI{#&Oyq~yk$GLdm6!9k+PaMzSZ?K=Q#8U$#e~@1PXg)0d$iY(d3Z9rEzLWL(2#=j3
zeknZ#_sBd1qT(I!CU`ja1-Ra0ywp3#;3?xh@Zb!|-$Bn%JaeA-FZ4`MKVSSo{5(8y
zfp|-LF2~ce#UI0O!Q*qq_h;T7!IKw@U&=hZgooyfx2NX|Ja(zL9$$s`%KSJB#CJ2!
z!|*Kr0Nxo-UM6{O+Wkiuk1Q1Lj+f&J<CowW{212j20U=3^bDZq0X%}wBfnL9{+*xS
zjRzNt&m{jdp1ej}pO5ytPv*hBR{RQ<dpMrNH{tE^*maUGVg66n{Pp68)scU2CZ4`Y
z{MQEJQT5g0+vvFzPplEw`yos4>^<W8_Yv#y$b<R$SMg--3!1&h0``Y5@z5jU@5*o-
zC&@gl6Ca5;#AEm@yanz&D)|ZciFg!u@lkjje;S{MN7hTvaQqfLh3oZ93U?lpy!u;s
z2=779*Ld7`UGGM5?sZTGuT8!Up2bhX2jZa(vfR=5L_C4(^U(r4__*Ztd2kIL-YCA6
zo^81MME-hxg-7r#+p&RnVCKdj-XwYXulIR%cmm%@e?L6(RDS;i&Et#7UyKKzmb~77
zcm$8)LGsUQ53b{>#Iv}bA8L3f#@zUW&qz}Ja6F3Z?_>ACW1A(vh2@UH!_SJ><~X_#
zk8BZdO#UYA!A~at0G{3|dHJv7ynwsgMD#lIBRu?^cwhQ|#}oKuyy;q5-@tasU(Ry7
z;fd$P<-d+|I-bS#xQOE67bK~^2v6ecSndiu`l96Lu>U-&{V$2@Jf!i^E8>mGSK^V^
z#K+QK%exTu?<e4=;fLVv>-6Jo@F=d^y$7De`;k8#cixbmXYnYW#`QdK1s>QT`Qyp2
zz{9vcUq7M#rsPMnUEal$JM;Z_?SETbm)qoFjz@eI%RLTv-jVzeJc38?+wmEAV3*{_
z;aA`>+`CQTKbGUccO_qrufr3@U(x<de*O#X$928xcrRFT+c$;lesw4wdrx|{vD{X8
zc(?cxd;p%s-@~WinfLSai?#m)aqn{1f2_uXABum?_IgzPV{zEoiidE$@47?#alMcF
zA?{R4PZ`Vo29M&}-@u!Y-2B9Fy)J5w2S1UX>*?u;r*SS5oYU|O-jn<|?fF!CYT*@l
z2!D$KU5bZ4m;7Av*Wzj8w`%@>lJ_nT{Kx&c^M$x~8uuSh;wj@V;ju6C^Skj-Hs8O|
z{;$OKd|vZW&L_qj<B6~H^GD;+Z}Pnh9{M)lPsIb@<@*>sWBgn^`F(zV0UrAy-<RUy
zJ^8){cYn<H6rMHyDxUf&KmQ3H|2f}(!y~`s`~K@?K7+sJdrRE;E#FVX)5eG4iQn_{
zQ}L+N+uuLxv!BevW4InKH{fynQ1YwsEbjeJ|M57UtRek{6z#xM1>*aW{}9jMP4GRq
zvybFU@%oR+{Dg45&*tKB+$G-*PvUxg*cW$dO8)`mN8m1gAU*{T;r(mL4=%>zb)}~R
z`D^er-VwhI57d*q&gWV@h_@jB3?9Lcz~8~+CjSMV!u9?7+#f*Y&U;RMS?*!<G{RlH
z8`lrb@kj&7>weN1j~efb$MD1HAA=|H-{_yI-cb6B$uGdu#+Tq({0R1|HMqOK^t7aB
z9UjJy!MEZuoR^!<n|K`8^L!<q!0XcUGoCcw;BlGfl<~vywDC@O20w)UlX2$&S+4*-
z5)a_*n1?BNxUuBtvto0#zgYY-=KlsfdWiU|yr8;Edzy<kV!7)zkLx@<fyZ#&PqyQ6
z{3v?f#8dd8_$PP<KN|l54;&%m(fz;XM$Q9x5Ayrtaa_mK98chl$p`V2@t$}F*Ym(o
z+-V`>(d{(>ckw9w=iqVtVtgJRI8u7r;Me0J+{N$0BY1aw6Q01E<1gW9d<woB4;>}T
z^`6%K$M?8%w0IF-_=L=J0N3+yF&@STk#CJBaovu`;~89!_fv7FM3!4Z&lz|SKM$Xz
z{kZmDsQq|P@>gn4OX)AfZ^T2mZpXEF1V4=YW;}+=v#R5Kji>Q><Qt`A-omY9xyRu_
zJdWRrpMr;uk-WD#{Kq)lX)Uh(bMY8HSK`j~nm<<ZXW;kY5qt!`1yAAH{{bFqBR$>7
z|AxnK%@;o@>+7_Y{8aKmJc?_+AD+dpAs@lx!Tj}|jR)F^UqwESCvfe*7kArBej530
z+K=n&lq??VAbEWs=YUPJUdfK)7tqrZ4|WpwZd>_}Zg>XQ{2)BiIX^!E4;&}1<G%=x
z<BRCO9(POg^Y`EhT<7O$JlG{a{~n&i^?CCbJcH}&po5>1d5CqDp52V6Gafx&T=%!3
zcpBIJEs6)bNq!bR*WgL~Iy{MoPskttcJ0TflmAHb-6gN*jZRO?_|y1K@|WPr6D6<P
z>oq(W60cK3{=retNKdGTxUTOUJb~-_ZpWRT`T0(pr6+=Gei@!J`E|H^lJw~IdKnMn
zy8nEEr*S>L3ZIqbMte!m9_Ha#_1@y|;bA<|Cx85(;3-_kAM;)q=B_i{lk@YHcnsJ4
zfUT0x;5z=rc%-lNbY(o-@dQ2#4|q2;{N?tO{78H-9>cw9@gLLh@F|ji2VaB-Pt70y
zOL!dD@fSZQ%gy3C{tkGwzx3!h`)eN8{7sraP4c?Fm3R`@{jKYES#Dr}<aIn(;!#}p
z|J(5_uE*B~JU&o*bUd$Ve^~q~=I3)ffnSIhKF|CQlDytWYL2JyTgjh*M+Zwjfe*(6
zL&SA`r)wV9^}PyD<9htwiid|vkDi~`;?6K}&2PnHxaQx+gTwRlU*Sny^EF?Pd5D~z
zpKpR^aLu>I<0B-m>)RL4;<~=$@bDRu*X<R<(|C;eT&DSv`S~X_kKau`gU3cmUiY8h
zac8u6oP5(4WqsqgZr`qW=uFAqL4G)%#b@H@;L$OX?}A@~Cvjchg0w6*c$Vb#_=@34
zT=UB{ACbJC57*&oT=RjKq(3}X@_IZ@#N)UwcM~2MCwV>pG<{imqWBlAS7$sjUh?|)
zJ_GQ?1o746pU1;x;(hT`UXlI;uE*mGxI0nulgWo)m3$o6{Vj@Taoyh*<Kaotqx-{~
zcp6_xfAiO*KUOYz9nW;!nJoSx`4pbTbvzfpE<NG1C9mV@_J(*8*YTW=2d7A0w_{ZE
zxNfhjH9uAI-erUTSc5y~h--cu9>cxq^&cPMk!g~@0I#z{#+kuC#*f0&6_VHeupJ(a
ziXTM&G(3)9!gWXlcc)AKQS#^E8T=>wGW8jf|Aw9=>gS0s#qY#p7l<#$H{gNU;(A^B
zJf6VMFOUWA#@)G+e;@xwdoC95&NzR^!}wWv(VJ{{d@z1E9*9Yg&Sw|R<GNi2;KBKl
z_ip3(k1{-qf57@)h-WU9y!_X3uGO9eBEQmem-=PmW%z@50>2G^3=c1q{IGrG2V3#v
z72+=b5}v+Fydm@X37%b??{#;|yalciAIW+hi$|{&*WX*{ji;^???Qew?))d;FT_Jj
z#Lr>9{)H!To&RNc@V}B@PJRuZ#`V7Cqj=y3$?JW;&3NcWas3>ack#$g;x!rnr+9Rk
zc$DRShi7m-Pu6-%<}JKj^6HK86h4^#65PE-@^_vs3+RNW>-O>CNtW9mPt+6F`%4k+
z$Gyu8|1len7fD{0;y7318GJ1J!|iyuf#ki@tp8Y#2lvbO*YQ9={7ZVi#GU=cz1toB
z<99rTr<jL>-j;cbHJ1G4<lEta1I6|8-}>N@gT!xTxx+Pou=o&q#^X_3_qW-22H!+}
z0iHZWdLF=U(4MB^mlnwn?!%oD@!E{%2|UnBTz@Za8=gH@{95{7$K!3pr{NjxZ!3NP
z{y*HsXW})z7bdyaH3_^6-UQF!*WvB(SWx=)^G15$kq+W1)@uarb{0R8^UT?r?;?H$
zemS1)CjKbf{U$uwU0gqR;yyeY691-_40NM<AMtPT=hgd*Z)CkPc<?mw?kx8w%?}X2
zsHXgb`nzP_vV+C1s4add9y>$)ch>7T^)tnfV7dM9B(CRy;kY|S^7{EaQ9O8-c$#ru
ziaTS)|2QAwG5lz@%e{DVyyV|yJkR3s3F6*mlK;ry(K7Ke{8v1KFU5<!!rXopn<)7P
zjI%2qpCtYOJ^~L<7H@*b@aWm%_tSqf9-Jb65&jsS#9w25-@)V4Bws}Tk9eX&{7ZWF
z&B*xUQSmd`?rrewOmUt6Q}NXK;)k-oRp6Nm#r65(a_yNbUch*6!ku~INk<;{;Yqwj
zUGb;z%;l2b$^P~Vp8A*g&v>Q!)%pIL`gP)&+K&GydXMwNjpEIjhhjW^vv?`<d?X&Y
zRs3S9aZ2$xekFbi?yivh8TjdV48Iefj0bO%{4MxgJdLkroL6hlD#`yy{#Nz7#LLOA
z$Fui{>-EnYcpxc$W&<hu3Xg6SpGg1jcm}^2-+wp9#S@ZOZ-cuj@yp2f!IQ?z@X(Wz
zuT?|-!5loiN&JD@;*0UXR`D%`;y2@&m&7};-1~6%W%1eglXwC@AAd#juSot#_P6)(
z@ay6alK&YGydhqX@fW@?^W*Li{}=fdcoJ_!zB`_NQ}Vk1oPh^-ijSaYIv&S0zZlP&
z{3<;Bmh|ZB!DsL^zJUG=9(h~xv+&>X41Olw^aEMn&^!70Zg>jU{7Bs0C3$@wKNnBn
zUFctkXH0%M9(h-KO36Q<J-Ckl72M58{t5D5Yd?M<+oi#WvR=+^$<HO<0gvJTE|4D#
z#{(ZqegHl5@yJKw8*55_1@3+(zMTA1c<OU;y<YlEd;TZBwYKy$_(;YX{8n7A-`e3>
z{BHV3;)(AiU&#0?@Z=ux^{nrWc=Shc-QPCiX<YZu3?BSR^4?+MKlbrn;QRNVe-_vG
zk6PgIU&M8}9r5t5;?o#^A3XJ&_!j1Kr1tD{vcJ5~$e)eJYKeb`&sMJ^-kW*20#DZ!
zAGe>3|8_joMEpW}9>r4!i(k5r<X^(Whl#hMzY>qR;`;jrH7jL)0!N6~B=6$xk>UfS
z-sy-(@jL6t4|;3<Sjp>s%aM2*-$2hKJl;m~`Z-JI;mNk*qgdZ-@IX89mGs<=r|`@0
zb$GbF<o}Cr#k2Sl{0%(bLGpV1eu@V=itBmo7tI@Q_zCmbN%EJ|e-xg;H{l)dXlKcL
zxAFZ)4?J|7_zU<j?JpH)dYmb^i+eAh{l|RV=^}Yuuf=%G_%h9RmArobz}<NEc=7L9
z@J96$#QWmg@z9ClpE91EcrYY>I{q;p$Mx^OzQYqeB(I;FUE3?n9oMOz;-As8Kb|}(
zKkwq{Uisbz&-NDA{jfV8I61%nG~DScelhDi3Xk;@*YTI*@l*2i=V^a`@y_&If`?BN
z|CaT-T77`{cldJkf#Uji!K?8|SX|F<PvY(%aozuS;wfD7-{7&ql4qFC?|2+9V?6tL
z8zQ$|oFS5*g1dMWAC7mx)A(roWIQ-jdh~VKXgrDQb$$gN87BD)=~;+p@U{3&cw%^d
z|NXdoy14c~gQxKs4W;M}JUm(Q`g&@&=J7BS_l5RPk^COcx4)`S6W7-@bv~E*3|5Hi
z{o8}^<hkNHKP8%<E<T9mcERH_#78xk@rUv3f5aE_JTe)N-5_2}&v|&_M)4Dv&r9(P
zehK-1<I!c3e~kQ6Jh)u^rJ(%aHazfxct_^vVLY4`??nI8c>E>t8}Oal|BCpL_@{W}
zRh;$Rqdjkk>+?&&|789{JH)#&{{8S6{w)26;NhK;FU60=<8O(-OwaLn^lfq7?)|m@
z9dW&m9ffD`JLs9D{ktR|$Ir*zcf}*j=cU^Jp7<pE20Z(|_;AL*77u?Y{s_Je4}2{C
zBg_3zy^{Xg@`Eq&*camZd|mSkndiWl;)CgFibrwX|2yK@uOzR}3&XVM8}W|x%*4a^
z8?0{}4}LHCUaZ#&Jobb5HhLb=o;~7=I1fCHXX^I#llu2Quj5XA@qNjEj0X-CKc4Y?
zul>!$Z^8?`8!Wl=YW8sP3GBCx@W_$kdfq-7caIX+>y~bK0>6{>8i<FFmb_kXPsWqD
zUT@FG10|B5N6!*Gj(5fH!qd3U=i_*yrSw#ie_eZ8<@=X->=^N9$=A!u{DfPJZ)7_j
zfd|@%>v^&ikK;*tPQ^oQ^Yi2J6#hK<+1eA#&o99P?ZkCH@5iIKj^|lCizn%S3s1Dq
z@Ba#SJBVw()>kqQY5Ylgit$88$*TwPXeaTl>{ln@p)TV0@p@+zo;^YQ5%OhtvWNIY
zmOCAHdy02rf4&5d^b#LQ{wh3$hw=a7f!>mT6Tb(~;%o5Dc%qNw2jZ`49&gTm@-goA
zmApPreTQdoy`R6&*D}wsev)rMe-k{8H^N)vNnG#0b;HA_NRO`XU_4>G4A0^^Z?m-L
zROy+(a{rB|@NxL<c(A|Z?`He1#WP{?a`Mk={~+<J+3xRYeyI52__ugqgm^Jt_ZykF
z;3)AK^f$wk_#t>(JdHPHd-cY%qowCi`iJ3xh<F=(A|4tquIIyPcnTlJ{y7JCCrVzg
zqb|c^lf=(uoY&z_xwyXGzeW9Q@j2v^+Jo<Ay`IFQQzgHM{7c$%j`-2!cjLin;<uCk
z0?*+3`S9Q4q3M#>^N-`b(C}YR;iu74hzDj!zAN+73=f|tuAd`uG#<Pl--FsSTU_r0
zl;UapSk|it?p!GOzASer9==GtA>*8gNAZL3Id~jzj9-l>@%`}I@D#o;{s^ANo8d3u
zS^QA^Jv=Z^#;MQm1>Os{+&qV4;uYi@;wiip$72)x|D*2A<0Ct&doKb6!WOZH00|;y
znHg+Zy-Av2jAk^O@MuPiG&W$IR;&A})t**&yO)^}tJo3<o5B_#@DO2NLIjwdfG}W|
z02TofLf}P!AuJ&go7uzrojRx1Thf@Am-l)4W2W!7PMunA)v5JXZ9RqM-zD-F3SWCF
z^VbPKAbj>unZH8#Wy1Ua%$HvfzAn5j@=q2%^fZ>&^Oi3az9sw_B7e2;<)^c}o@f4q
z@YO$O{zj4is_?02FxT^PKM}tEOy;`Xyu%HgZv)R_uKOW>Bz#%8?uR^Bc;B;GUiU*T
z6+R~X?<78pTK+jKugB3(65hYU{L4}fUm|?#xy)aED^~Od;j1rUUKRcC*Lwbn`8C3?
z6TT^2?*qAB_}I%>{$1Lx3h#RbbKQ@+^^ZA!HiRD#{pSfE_-mFwCj27dt$?2tz8>&~
z@cvh_p0|shrwQK>{$=5-!q;BK^16L|ht@BANb371g>Su@<#m1hn()5Y`21JG`-R_0
z!oBNHI3I?D-&Xhq!pDSvM(Wow;RA1E{dzo76TT*V<JPR`iNcq!X89?3FE1Cq@lNJ2
zv+D0%n!k(rwZcCweD&STUm*P7gpa+4x$Y<2{HL6*P2rE1eEWUjv+rYhz3*j6`1;>5
z*XLFp6F&9<=4V9DDJ{RwydwOW!iTP5uG6)u`G=UlMdJT<;akFWx;`O%<-;tm`Sn`Q
zM|}Qs;TyugAo}n8GtP&#Ygzt6iRUiin;&Ja*NYz_eCuP(KP&P@;TxY|uFKn#v>xGl
zo#J&`&nH>FA@O;?@Yzo>f0)>Ze-gfa9rNQ-PJSS~|Fg_55c#|PoYOV-dFD5}9S3lc
z@Tspb*XQ8<iSX6ynV%=|Sron@T-)cz2%r5r%lB@{9-b?F^V`hxqUYtp2ficWO1`~U
zc<bMp>v_(97QXyl=GqSYMELA~Fu#xJzsoN;y(_}kBt8!iKK4VF|Cq?{7vBFP=GRJm
z9wmJ92Ifu4w`Ji|H=j@%eoN~63x&_#iutm<_*ZK^cVqtX-{FAYE_`i(`O8HA$F%+n
znD3VPjV}pb&N0_^{`*=!&wRhc{}#XGd{`|o*YoEC!ncN*KUeZ0Cwygu`R9Zm7Ty|V
zeoFM0g>UX<{zp>Yo+!NkBIde%f4=Yy;SUr2uN6M@V3xmL_<My9T<r7fwEl-M|AOTI
zH-vAEGrv&k#ZR@K!_4*h;kW%S&Y#v1=6e6heS|MhF#n09H?R36%-<sXi14vV=HHX}
zKT7js%>PdErzO1aVa)aX?URI0oe+7^^D^Q6)68qa-!6PvxX%Ai3ST?P@|Q?FH--0I
z#$4N_A87r;UnTOl{1xZV`omfN3W@){gb!TK{Hc=9S>bDc!d$<{hYDXUGM|?CmxTAt
zGVhmgA1A!O#9W^*^q0a1=9r_IR)25Ryv+OsqUU46*DK8LD*TJWHxuSX(X%CdY@YcY
zMgCUkQ&Ycsw(9dg6u!K`T(@5Z&1=jbB6=PweEmx1?~!neTK*LCvy#tC!uuM`XGG6)
zgwHmaYdic};akFQFZJTRT2Ghd?=N~bgb($YAC_>xCVcq}bG=S|gVukR`71=v?eT&r
ze^wvO{0&kb?jd~Y@yy>T`p*~M|3v0l(Q}cOe-d*&9zQC)^<?H_BL4{CYfoW5AUqMi
z@l@tlOMD(HeC6rPA1U#9uJEmAFyAZf#jAu5{RQ)XkoR@9@c!pAe~0jEg>MMo5dKBs
ztIuQkZwddd@RjE?NB3L({Yvu}`23ETz^8m(c_H)HiTr@@vA^{Bknk<xZx;Cj!dG9!
z^4iWnLiqBFnd^SnqSpTs=ARKgPZB=xSIpla{CUDRguh$(YlN@7l;uAu{Jp|wU*_}A
z2p{@i%r`~;o5K5F&ire_e<i$c)tA2;Iuev`o5HpH1;RI8!SZ_E^&!Gn|C;#+q+A^n
zKKm->gTk*6zVd43ixQuX@V?hDf41<aYkA>1+?Q+puVr~O>+0|An!k=Y_eT2q{$BW+
z@B<?M72$oa_vL>qd`kEsk-t4Uw5t9J*Y@f>;hS$@Jy(kSCBmoP$XvJM72#{be^>J7
zD&gyIVtH-%o*{hsZ+!mO!pGjs{Gk%=dxWnDf4uN73h)10mLC!R6X8?B^?Jk|urZI)
z+qcH@*NFUi!Z!kbvGCQm`0@`I-g+x@U7lOQ$KJ;LYSI7a!uzgfuE$w_EqwXy%pW20
z?-#x){NcjCp!L6l<?kW<N5W@?pC`Qkx5aJ*^1Fqv1$@8ojetK&_*TFlBfS5eete!U
zd??_5D|{;8pAy~@J|yw~rtnqa1>wJg542Ui7OvBKKjHoF;`nHOvG6hBI^P~Cd{+3~
zME{cT<v`DKg|7+UEAnp=z7_CK2_Jel$7i3&e^=`d_#JP}>Dmyk<G)LI-+TOYjR_wT
zuG95!;Zp(c32z1bIl@;0{s!S|!gYME5xyy0=i66=_q~_nsrhgH4yS7%;P(|i7VvT5
zv%-6lZzbWI!k;Jnal)71$KmRHc)9RZ;X3{w5WW$}e_8lez<(~h|L=VL_rOM3Du+V>
zzgYNGz#k>N74XLjUlFe3`7+__0e`RXtw7J0g!jMS&;LFQa8x{nYyE#Hd{($F&kq*9
z8t}64P2svcKTYfZ0EesjTZAtQ*WrFj_*%fft@R7n@9|ccI8}Cg-OvBs!UqC=MEF?1
z7lh9W*YSC(@D<^@+`eA;TEMRpz7g;ngl`4>9=GTC_kYlj|6buk!gYKu6+RotUnP7w
z;LjAk8t~T%Uk~`lg>MG@df|Q7`0>2i9XS320l$y%G2z;7Uo5;OT-)uE@HOE&y-yIn
z8Ss|~@Bfe=pLYo#60YCZKMS7{uJ!*=_;SE+kB$nJtF?eXK=`I`T@LpN@B6SHpIPAp
z0e`IUv4Fo=_^fap&$kI*5w6qqIpJ#o|FQ6mfZr1XYD(8uz%LTs{}GPAwyReOUlINk
zv8%5VK5(s{-gV()!gc(=D7+QOe_!hl_-!!IR{0<B^Mr2%e4p^GfImWb|403Jc7zWF
zd`0+_a9wWSAbeT4F1Mc$zAjv+_v^y90{%<k10VC_b9XFYQF_OO>-Re>d{(&De@ys_
zaBZKf!Z!l`XTtkG&f#i1{2Hx4;2#&hCR~U6ufjJ2euLKk2|r!8#|BqQ*HFNB3!e)3
ze&MZvKT7zDa2=nH@O9xj-~K}QX29PfyzlQho?8ANgbxIKOZb>@T`%r*7f#o@@OMhR
z$O>Qnq@NEbg|7<N@joqmBanZA@U4JfExi9zzW&b%9}4(Sg--?i?wI(Z_tFaZUg0YN
zze4z$a9uARFMLzDt{1NsKJaOdr%vxjg--?i8^V``YrA@De5gY4Totb0*9F4Y13gED
zZwc4+qAq;sI*yO#&lBDfuIt6Swf=yAO?dx?pRPU}6tC)U!2eKqOSn$gMZ#ACUKG9-
z@Fxi02>7b-E#W$!-!FXNGaOHyZ(kEW7Vz6(!!5;sHsD#|%K^Vk_^NPSFP4N4`~!!p
z>&1(OZwlA>@IK*vpY`+e%fg3*Yx!RYp9=Ur@gb@z&jEjs@Rfki3SSHO6NGOBd{y{X
zz&|X!|8pFFT`#^ad`!5m7q`0y$8%Y@eqV#a*8)B%d{em2ho<np&-?H9`N9W;YyEE%
zJ|$e2|IZ3v3HZ;1ZwS}*V&I+}|ABwxa5aCZ@Ro2LZdLedz@I97L%2@YD}`?b{957t
z|HR>H`ELjx3iz!sQB37wO1O^C{e&+I*Y)C|!dC-+mGJd|zgYNYz~3*t?+YAHT`#^O
zd|9}z7r*rf9M7?T_S1EL;j_YZ{ErA<3FH@quLb;R!Z!l`df{6EzfO4n7ybDBr|_YG
z-w_+3RXzuNSa?ggt``p%zA9YTi)G=P!gYFIDZKw*I6j(xNcfm=QyzrR3fJ%VcK7CZ
zE(dzf7rrK3*NaKvTLJG0ANmr<N0<MXYW)HKsPGNpI{sf5-uGocUAGwEcn%5I={isN
zRKO1lZv}io_)5V4T=<%B9iP_=-xRL%?K<Io|C{5f`HzJU1bpB=Ql0~TNcgO9T`y|F
zH-+nZ@#n%<|CPhl`S51p>%w*XH-v8m@>|0DH+?<*e<b-F@Qm=OfL|uO74S2{R|5WG
z;cEeZzwiy=x?XGw@B0eJQ`d`IpC|b#T&MSe!dn5qMEI(3oo@}{>%#SWe7^9_K+n~}
z`@hQZ(e>i<!lwfMOW`ZRb-lRneL4P{0Y5H$=xeNBr)yF8Y`~u>d_}lU*Bgbe1^hbU
z8v)-Ez7_C0-H+qhf4v`{jPNnxI^Ql6J{#~S2wx8P>x8cc{L{kMh3k6pJ>g?t=lJM)
zai{xpJo~=ET<62E@B!gEKOZi9Dv&=bycO^l3112LyM?a>{9lD{1pHURw*r2j2S`5u
zn;-u}!iR+Gda)pUR=BPgE5cWW>-4@&_(s4#E4=TUez-RX9}uqJ@4a?$JjaA<{TB&u
z3D@=F3gK%3f2!~;;ksVDN$dX>$4B#j622l_hx;Sp>jA&ZZjR@ca9tj9!u!ANr}r}9
zLjgZ4d@A5C5#AE6<MVFetHO1@{j2cxfZu8l$8$5_L&E#M!|~L5E)_l?T-S?73tttk
z>%~ij&;Glg-VX|27Ovxez3{a_{+18qcy0vz{=&Bcenfcxcl~gi!iNIBB77>~Zxh}M
z_&*C@5w7dSFNCiP*Y)Cl=X3n~{)6MA(>o!2DBxELpB1jl&$ERu3)k=E?ZQ_BJ^v_t
zL%6ONKM~&lpBx{}?{fjib4s`_{}aMj1Ktz9C0wWL`N9Xb{PbR}^$XYO`ke4qz<(-y
zCE)iQ<an+H{9@r7!gYN9M0nr#I6gYxo+^AG;BOW_7Vs|!pAGo0gf9!%>H32UIi9P+
zb$s>;-w5QVg>MCXQF#CNIsRJz(}WKN{B^>o0)CC~R>1$a@Rfl7Quvy1UCw`hh|{$x
zT$l3)2_N`@|K1-id@A5=;mg8xx}GC^Rk(g%e=B@F(DQNOTf%jDzFzpy4>>-X|8|Ds
z-x99N`2&Qn2mGk;{vY}2st6wo_~W#G;W}L}6uuJhtA(!x{5s(q0soHhE#bOc-6G5B
z8n}Vusq^i=!p8!BNce2PYr>ZU{&eB1!nOUsR`|e=IoxHLcfDCo%D?b4!hcWrz)x6y
zP51+aZwNnoGj<pkKJ_z}|KQD;pU`^#i@DxERu#T^Gv1N%1kwL^;j_QRT<dv(@S)#k
zeh1lC_9o$Dw`H#PNv>=8+c9s8{?7<s6R!7HU$5ow#PT{mH)wg`%cAGjdCs??JG1<^
zB_DoY_`qG6>wMcId_(y6MbAZ=-;L$3lYNE{6TW&+=K8+in(*~MVE$>*b5{7uA2PqK
z#OKeno_mWPk^f7rC*W@szA5|#BL5!Y%LA-uO!R+3>$wl}e&PQpeB+Ope?#<qRm-2p
z{F}nRD}3#~%x@6>6V31E^IH};|JUx%{8kd~orJGHfcbTz=ib6sb}@gAl+S|jvGbY#
zP`(d3ta+Y!Q}jGS_?qzN2tTFe3oQS;qJLTV)F|_1iRbf#Z|r6M0@*+LI^nI0n7>x!
z-zR+FV&;Y0aKP6IpFP5SR`$1FFMRzN^Pfn$`l;sA%)cZ2j>D3l4`+VSZCL+(g>TI<
z|JVi0_X=NMVcwN^9uYqFT;}N3s=v#Hx1Prw(~s(}DSYMm%<mxi@MPhuFZB6~gs;7b
z`CaeAdfq5}<4w$O5dD9r`J0*diT=-MzQ%lp)%1Nu_|RLJzeMzWTg$(dx!y1LOW{**
zWBw-5bB7Vm&%Udf|48_KG=DquL!$pe;ZyHmj_#lOd$923cQT(6J|%qPUCcM+y<Z`G
z^#jcHz1wvy|3T)@lK7k!K6?%G0pU*(zAXI5!k?r0hgkk=!e1-A^<m~19;(0h2w(jO
zb4)9#zfTF@xR$xLS6>&t`B9OVbp2R(|EHPXS>EGqN5u|rFu$DD_uW<aitulV{QZP4
zf0pGRDe?v3o5Jy#gZdlS{BtZ{6Fwt+>hsL65MC3$Cj6z6-p6S9e`5JLsdvv5zWy)F
z|5Eh)mGIdwG1vRDUN5}w%gpun;O`K=_7&#u5<Pz}y!BP)-x2;5t^aGxpDz6S!ncIq
zTH=3;y;7dP&hqObe-Gj7!smsbFMQ}5EU&*)c#!ZF;UAWEd_wr_zq5QIdM*{dA^cks
zpJn0e|H1N45dJs9$F`WiT;BWVgl~SI`CUc-mhiqGFn^%P-|mm4T>Xf-e(x6wUlsmJ
z9Z%s?H?aI8BtB0TzV>70FBAT1E&o&Ie<ON6DZKAz%pWZ6$bSkS`z7;7i=Mkbh~v5b
zU(9bW_2pvW8@ISbX+BTBhbjs0yCd^Y--`o&s+PZi`OhRiZ_s>@x&E&9^TO9M%<sF4
zJ^V`e<|CLtTjKe^i#VRG%b6dOe7;Qh`W4JaCB07(-dAFNMEF~UPgR&}yLzqW33I)l
z|4UlWJoA_R4#)Gy!dIKje_!Hx`v*&YwwOO(@?o#=*{hg8M)<t&P2sv<_e{;(EdL&n
zf4%V44)Y%h|Fq^^=7)uUPxzMbUrIc0cQMCv>om*1P~?Y&ubg4NBK%>(2hK9@6Z>;Y
z^T#s(U&5aze0`a@uD@^4@=s*0>(|G%{F9mMb1(m0_|%^=f2_Rs-+c(jf8%M)-zt1q
z_{uYw<1-@lH>LSAnWNcNe>JV=Sw4TV@c!p8f10H0)xuYw$NU;8S05DK`b*~j$?E$y
zh0nf-`Im*?5*=V#zZ-iobA3M812ums^I_5dP~pojXFekJbW!;FtC@dD()D!VE3ajK
z57F~l;cIVT{&|VdC$;<=ng3Mud|UIsVg5+rzq?P$&zqUwUibyV`_`E2c7ICqxA^jP
z;r(xA{!xj~^M!8;zoY1XyVi3x%il}*r-cu^o%vIRe@pn<JD8sme)Iht|ABWgznkRG
zpzyKxGQUFFmlMKQ*O}iz^8Ycy*REy$?-Kv#Y59*bzpe1U(elC{FY)=9@S%^hy#B7|
zYr^|K!TbTz@ccsf*uOG=jFkVok8`@#zry_MlCBZqYhP!s`)|jDk9~vrk0d^)H2)@Z
zJq~@E@Gap_lytpG`0}?{{*97v*9af_Pv%#P{1>zy;h&KD^<ClXKV<oa#Q&BDI9)?O
zVg7rfXP59P;SZDe9~8d!Q<lF*<gXOI{4?fX)%Hqw>sQRbEAnp^KHGOxkz0uVPigs^
zF+U`Fz9oG9mdtyi=jI1F{$sz*{4S#B-oj^Z#r&}Fi-oV<n)xS0&z}fi{vDq`LHN{d
zeEtgI1Gn}0hlOtmznO&lFT(q7&+@O7aJPi73I7k_x5NO1?AYoZSYG!V?<IWpcbTt?
zd|voKKl4`$pAfzwT<e(=zH&#Fzf$DS3h%oUb6u{UC44>LuN1y~XJ7t3!pH97^Xs(!
zyZZd=T7STQq4nR*m%j^MsIv3F=kwjd`|j@ZhX`K}_@%;^f1l-VBl*x2z9Rf3@*bZp
zeCVDm4|AdZUZeHgi@EM^d|2~8V6OY&UlP70{25Xof1%~?!}1@L@_+9moZhMXGrv&m
z(nEwV?_&N4iT|a-H-&5cr-ir9XL)@-!>hHPLFT%B|B&VvGXI9?|Dx72#JnQ;@C)Ia
z8RmMvX!iuie>2NG5&0S6Q+ejves;CIa6SHdnegQT%dd)__X!^uVg6jn&+CM*|1tA7
zO8oyrc<VvTb$z_;Lph!U7cu{a=-(~8|6=C4eLpOGOStZTK3;h1AuO-$)jPF(z`v{I
z$9(zwUBdC%3iuVmTl;+Z=V|$Xe_G4$XZgD1L*G$(FTy_{d`S4}ILmJcf0Xdn0p^dB
z{P|PiTL+n+5&2hW`9sWgd-opU1BaRGdH#P9J|_Hp(eq2KC*bEza{O0?pC|H%g>MA%
zR|@Yt!r^ND&k;T(T)(gP3ttod2GRc=;j<I0r!M@?$2dM4!gYS`6~6LNme=|#!uu~_
zuJu1l__}Z{|5o8+M_FFaKYU*Jrtlw0d~VQulI5Q-@9VC|IiAbM{rEJ5_f0YXYti!&
z;cLQwE_!Z`i7&FlYbRL#wAiZ&;X{`(*Y)wwgl{~O`A4Nc^C97@v&?TM_4j7zcqsj4
z=6e3;V$Cbe|54)kWZ^3b^ScS()batp=!Cp4;Y%XFBz$U~^*lrP$AoVRzmv|-Y1Y%X
z!18}9@;%{e0soxv*&55AxgC4>rtr-k^Sg?kz8TSfnt4U|-G#RT{y^cI!u7c6V&NNS
zSkHS!&!xgw&NA2SS55OJ=6XE-SmA4rX1*o)@ND6$k7fR6qJLHR(BqiTNc;6xt^Wzk
zv23dTJ|TR4nfZ4_&sT-7J(0Pd@BN<E|0L!EB7cXIoNrUYb^HDR;j_Z;Eb<Q#z8vsJ
z2wxRm6#1_3z9)0IX#UjS6NOJbh4~Le{zaNUmHAOA=daWHpT=C<fe&c;r!#+o==rSh
z4dI`Yanm=2udT3rUF82u_`qK<|1F8<T`uMP8G0`BpNgKm<}YTxD0*guuL}Q^WN1xz
z>s2hT=OvyZd_(xpB)u=v{B<n<K(PaF5#IM^=8uzbKPh}!cvtwpY5Bipc^+lJ@iKYu
z!e1cr_ZGe-{ENc>Sop>o>p3EJY)1IN+kM^;-g-B4T^}DOd{g)*MgQ}Kuf2!m?<@LW
zt>xd({34ORM)<%7nCpJjmo;B!uKPtde>kUiUHECy^M}I6KFIQzHc@|jg)d*j{N}=s
z319gT^KXlu%eDN6nd^D8Gg|*gm>(DUS86@NA0+(mg>MM23%_3Lxt8_lcJt@L`##G2
z6(WBS6S=Bg5U%GHpCx?uV=RAPk$=7L72&!cevR<HkNfifB78{rS<&-7;cLQmyL<;s
z;81*qKEZlkEAqRAZwlA(85iFF_bh*b$X_9RO!yxQ?+RZQuJu1d_|PX=&mNgaeWCE#
z&okHdd{y&*WUj}9ZxBB4Pt51VK7UpC%0Dyz>8&_I_q?3byYdz0Ya)MA_}KN#pDz5l
z!Z*Ib{0b>=pB6s!P39jF`P)8<_4j>;`LiV4gThz7&-^Q5H<pDj|AhIUO1`~Ac>hnC
zzfbrNgl`DHR(K8(qxZP_GnW6c@RsI3_w~G4`0Ov3&x-uJgs%s@ui6}}Hv8JWMz^+@
z40e;VUGtErr~A$i=LbjTlX>^APto}(9Ub!jST>i;c^EX89n23^6lIzGP_E<(F`b)F
zhO<dNi@-{`y~(`jo1b?@hqQ*mUKb0^B`y@%+&qV^owVM#Y?2H+e>${mUi+s1HO=@`
zXYOLMxKQdW6i=7h^`tRaYF9hOPPbG(wODGIOfR>3wMwzxJhP4a*=o|AJH3NIJDIO1
z<!-rDuWzHGTy2u;96~NuoAbR!c^ko2Z?0Y|m%6oPV}GgLt|jel1WTPoQM!!)g@@O@
zO_Je=GPb>ACOf)=Yql`FgKHtPQ?Qw#>`nn^hw?jxoFCe|Q_!QCy*q|IoEzOK@LYCe
zc&E^Z3x(WH!Dn)rp^=>;kR8ru@;k+#kj-aDcZxy=`BNC#DH7SCy(5{zPO->m_U3a#
zJ4ItOH##~zv|~JmM@B}nnVlk%%M}Xw{LW=?Br}ANc8W?Sm(OMp)J~Df4v*$@h5XK?
zGB-RrGPL&`WpgAqlFy88UqTm>@~M5(liQSj*!8)kZqgad8{=Y7A&rLn7E7H|oxaXO
zZNA$PV+f;N9-bd54b2sj%4kIlTs}XSDJA*JaFR{t3uN|?uerkLaBgIdWbibcEsR!1
zvLk&-qui|28r2K0>@*vLCIT5zHNx$Rwz+*`y#^PP?n1M2X{p{z#?zKewLT~{<>9&c
zLUuT(>@907rzxVN+a!)0qCdKKcvK=@)=!J2?!q7}^z`(>uncsT8s!U1-R5GgJUHH5
zY?a!{zD8yGOsRFU*65~+%+BJiZaa8ouKaYj*-l7ns;ow(b`0C-iUrwGO+>Ggq$0yE
z(@XrnZ<jkl#Wk#Q+WAE3%+CI;K&V1Dm#uQW(JjrHk~&{&RH(6XS$C<G)N74XMyLi?
z4<sqlZdOX&lJSuQ&!n<rUH!*K6FKR7Pb1&mdz$Mws@(^r#RW-(RBW`u%t<;+i*CkL
z%U-xi@LVl>Veuonf}L&~b#-tLbqiI;V2=qBGPQ08PWt^wh*XMBBwhIElujpooupeW
zR?B75Kv_Rnt#ucAbA#pP;)RuF`Bc)D|1K!ElS+baXQ_U{LQ-!f?aqa*Ql~RGg@4Zf
zb$nSxoxvkY6HHmHF<5KVx|L=l88lHY)vM^ol$H$O-d0jRYY6JYzNAC_G=t8xYu!XT
zKn9kQ&Zz`-VIi?^g?s__710?gE>f>f{p!@Jr80G*jOSVh66R^XU0O_9O;q`$T}&D%
zz>ZEzNs&@gq@)->=%=?!lb4kcv$ic#m1M40H8P6}NvTydk8^cof2-Y`uho-wscUu3
zC#7z$ogAu{s#X;Q%SorxY+s515ci43yp1t>t=(F=yVxq`Gb1K|(@CS!Y)`8qw4YiY
z<AO{*k+de8r!876ot<d3dR=AWjUe6!#n3#X%S>TeZ+?bXn@~eBwE~UgOaP$M=tEgu
zG!IF`i4VUi40#%-jeugk28y&xZQ=|0y++odg=~xtTiN+ir(17UvorLnjqIagiI5xS
z8TAY%@2aVBL-1HV(Q7pDpJ8*=&Y2`>xl+w`8TFm(l*4I&*QUI2Shc*rI$3I;x~$no
z&2$`)QB@35Ofd9pGkLz&?sONMl^#l}YfHUqQ=2c9lcOkeMoGDjs$J|hi=En|ZMs_v
zOP#4wHJNsy&CU!)bVft9+(H=EFXCUvFeYgn464m!vN**>{e)Z8Tct*=e9Fx~XiSh_
z4Lj_uB=bpo2CaYzm7+`0R`DN=V~kOZ1HH*PH<~D=2kR)xMxt7WKz&~wRnjn2@BOvz
zcoRc$!;-~TcWJSMXd7fQ5wE0KZnThdRxgY~*~YtC9&a|f?PeVn-uN$7Ds3n%C&kl=
z4ID*_%!84llIK2HNdyZ=*9}b~bsb$)sw2zV85dR0lup^GQBghv>*Yy!594i^CF_A~
z*&^)VV$W9KGbpvj58`D<(W*`uC&<++on+BA`lj5VkRXfewncy%yc{Pdq`8}b37$a>
zGD=&`X1!cbN{yZk7Ito&I^~O~QbrK(HJwAKKhreymuBVo{5-6T@v=CLHxBo1atuv_
zeZA)0S8AshOVyfvD@YJp=Y4H7A69&>hpN$q4K<31c$IXKWvrjGA(#sROvt>KLyJ93
z6cG&@7F8NOQL0JJ`QmtSl2T_wO;1TUwg|SsWR!y&Nw<ZfO)ti2FO$~1ZIIFOB3p}i
zrzQsw&+@+BS!?8>z1{7#PL$AiEgo>KS+A{Fv65J6^g)xe2ixtYtxz4zkt9CC>#0=&
z);yiGk#A>wNsv<4M|fY&_L9$(-KyI%RjE~)-37ntFI9r9u2NsvDX{3;b@wAH(ezAE
zGMqfIE(WT;gr^Z!OuY)vdM^%fC#SoB`dXp+tag`4quH&^FBPT!MEWqbPN`j9sG-v+
zGJ`eb<y^bew$*W-8#5y@SE?X)5*3f?&}7GH2wfMv_(rMjI#U;Fx>ofJ)m*PuuSoyK
zgfQPul1IBO1j^=-Qs<!Ra2crtb9hTmskIIyXDeK%o0RIu+ZD$EQ%y1Ah$ubN7}tH9
zK0fKTc+G0lsRS5rbyXj!e9EDV)G2qLb(T3yau%&$t!ZmatCDoARZ(w~`VA(&G#I4v
zZh)%eYAUf@LZ8EM2wFXOuvG{h!*21>!+9gBz*!eiE2eb1{jSPf6*H&SX2?_lnNFh$
zM&2*<$VlT@ZlizhzS;RR6%+~M4p|hM&hbkuA<ILC-X}+q9-C5C7D;H)_A{N=QtX_m
zb;}D*&eO}Keu#rmlBSmy=bEb7G=Xsst26CqICbM}is#X)syC#^Te>bKWTdz=e!lu`
z)FQ&tdmqkaa|TzN$=O=hiPV*gC=KWfIf#1WZC9q<9l{*4BY}ZQ(ndD2Jy?JRMZvZ$
zWOW*W_c|Oen+l|VM!$3uAt#=Ny|z!?sx=x(g*s>$VObRzjuvS|X1rq>pm#PqY@W#i
z_`|_6qSwKorDaPhp>|R}4WxSi<cWV#m2xxQ#%^Q?b6`5#J!}K_upKga*e21#_6>R1
z)*lbsK38>{NZEd>jD9P&B@i-q)<&^Dk14!le*$}voTzkN>(Fbpnr$?%r>%mHWlnMg
z&Mnq#^t2?PmBawS8CTe1<0a7!q>9DUl}@ur<-dscZ(f3MER~Q`bG}kqin*7mc`J&P
zC(vjXWk4QTqM;!<O1!Rc|J|tyR7&)5WeTJ-S?hFQn_%iudlnO^vj11Ym`>X0i<~@h
zR03&s2KT|N_u>C()Q}#{<qWF1n>|2>(5pMY)*QTyW<lB_gaJTI<^;L`kb(5U<A<yS
zPebqTVZE?Tszl6a2;C*9|8B<GivH_pP;*bVoaOs&g6Gkj;yIJ~^?lQv*#t}#CezTv
zuKfB6Y{D~0xqkhs-RKOan-VjtPs3bHL8CAol!^YE5_bM3WgO;RZo)eo9=<8QM}}^S
z@6nN);yZ(7mYb09Ozx(6&;K{dtF5ABE86X2&8c>?ihg~kZ>~2Fh9Y+?siL298Z(Eb
zicm<h6*<(ykd7tEw@C8biNO<%)2I%WlW5RO6`GK=K0K!rJxr{of>lOHnX-0!dI9Ym
z1EXCBy03D&ga*>;7BJIn9xAmhK2$@mXr_s|D$5{qw28?)R%$ba4Pu8v<(|?}@}(B@
zkX-VmdZ0|KH&ZLsTANd)bGAzB1-3RVY@Dy3)O44v_THME$t%oiU}C(E7&O~K`?SXo
z`eZ|7Nv|vKizV&$l$y@-v5h!t)wWKVZJn?xy@OkBd$)WxaH9<{CM_~4=tro5f_Rh~
zMoip>E{k)a7qOOTWe;j=>3gzCFXX}mE?~s&ORJ}3n&ye7Xpj<fZI7#AneQZTCybsd
zHk9T`e$!ERHDfWHKS&8cTkk7Yj=8LM+@?es^={GFM)qVwI*JLe2LF0q!t%FGASw}@
zkxo}9EiCVk#Z^~E8HMqB6Wz8TE9|Qr**hAzEp!*_)1~=j8gqVr26p1qjM(;~Sm=29
zKIfLyq|W(Rvgr;^&{`7BzlZ9rqC#N@x3B`u*OGdLOOg&fsPfZGSghrlF|iG7*-thw
zH;Da6Nrk$Eew3}{nqTY=wpxcU_0mT_ZQf-tv@#*G)cN$ED)fPD4h<Q(&7m%+Vxpd~
z@Yt&BIXiOpLnRxktRF{LS^E8|r%JXT7D}dO`Qfq!q#%)2LB00MR1GTyaJ6dDX-4p3
zHmSp0r}WrlP(Pbj(cQw#z7C$Pb-LsSPRE*E_i-v|FVY|Z>xd>tAUK6x3xS?XYG@s`
z45lJz=t>G3P21y7+HJH*wGORcLQ8TsDfiUW3F%7{_$FvyOg1wr(d2CC)8QP#r2J8u
zK&PSCAb!Cz>bTH&f@X>7?VXR`G`3I+i}-ExPiumi#5luwqM?cNh$K)HAV$A*7)C(N
z=1?e@<3ZEwM}K%|q_3k^Dv>C^oz>VzNUJubSM0!ev)%5sx@sL08Dv_;P|j)!U1%3X
ztTB)P;OzFSYt0L5$b(wl$t)c=cc>=z$Z@)m-tQnv6VEjVt#`A-?qy}i4q=Z4S;6hJ
zD5>M92F6sTCC#XjI&b2vL+PBVwbZK}Z?<HbTRR~WQRok02@FFRJqU3eO%7{jbGAjB
zci?}2se%$rb5MN>S&1H|+|XoQ*z3-Zq7-5Urq4sAav2LXSO=g5HE|g{P(#n!JYlL9
z^QGOIBXAUR46yxL{;~yh28vj|ftAo~9Al(FZ5ilz8yhN&P^nX{)ebf56+==n9~?Js
z<7NAE-u`UbpEe0c4Ln-6KNsy!>+7hE&(WR{n6$rau#+}@lMN$q%>J?oIc9@BX2Y5?
zqElAul=U@b1DLW&oT^!GjxL+pY2!X^)lQ$X)Fyn|DtM%Ef257<BU_f*0LIbVsy4A1
z)}notI;Q;f>)yA}bRHVmHCC^c8pR{nKHIF;ms$&s$98EBi+ILodogK1)`HUsEUtat
zkMT?+!D@i^vA;y?q4ufMDHSg*EjXlGvT5I+G^)^GT^CBVQ=Q%^hcsKw#U^%o7?thP
z!lL8eE}?C4!tYgs2=x|f_8pFw8l?&)e%~B&45Bc@TJw0R?Iv}+)I+6Eve=pI<-+(v
z2`j4B<ARgfSZ-}&Ol4z)-Fb^>Ax$XQu;t|NIEH#P%w*a;8((T+0mPR3@ufCW=y*AR
z{BEP4rZpZ&Fy1R+ACb+K1HD$gx#Ya3gViMjyUj~Ki1c+_;qF4M*>XZWoHW~2H*XGO
zXATOHn~=j;{&T%xsj|CZ^XM>oQue(c?p;~JjvpK0!@c%m@6>_?N1XWJceQ8V6CQhw
zrY#XiN?7u-8GIy}YbR$+?i{JLkv9z+lZi!IVJg*&`>-rla-uxZz^hYBw>oDh8l7^x
zhKy^XoD`=@3-!`z8^zGIjSO(&@z4@pi(54=!R`Vlg_o2XD2p~;mtdv$lpE1YN=v1M
z;!zvmB@3l?v$NnSS-{$hN$VvG%`2U{bIC%lQaXe3ZUl~&Y_=Um{@YwTnzXReU<GSf
zhj*SDSY9md3&DN|bR6-evYQb{m#D@W(aF+6=}Ocm2h@>L*I-Rzk;Z*9c&;IK*xKND
z!b&aXAoQ!6Ot2@aR-7y?ImK)eODRe5lG>@#sh$%aDkv4*;&=}m$*|aKb%;aEGEUZ<
zyqm-hV(SePCd#5((ze+=*{j1~I?||?80{L_W2HH~csFUsk~77bQmuHjXQKvYU(T^p
zR{im+YkZE^i{lG5rwAOcSBgh^FtVO$BRbKA;kA~Y&@l|u7N}axx$lcyR8QX*1|s8V
z(m`U==nKXb%=Fr)+|b&!C7Yh(9c&r0iaLv>hU1EAS30v$JOU$HH9}LR`r;DymRN67
zrCxCyI}?wTY(d0a4!&ravLQ_^G|`@UrE{u-r9o_S3~Tp^1clTFh$%TI{?o7=FcnVn
zr%TwJfx6kYflZ^jx)mJHr`;Tzu2m}T%cD^NjoxWNSQp9ZS_2bYj?QMgglvWhbA`}5
z^-az6QXP98ipNS-r%{+jLsGIYaRz1)8!t>yct$hl6f;!@Z3ffhj2mA9m)4wyXr^?^
z32vseShGfZhHSWPvu2WduWDZu^tzT0kG8_h)aDX5r)O%|s#U7mF2zi(y?~LTNytem
z?QYX_siW;Oypu*1CB<oc9$^EUR`%ZM4^59xOcakKXN!Kndw;D`E6QFr6Yv4rqpRQC
zfux0HTXfBA=i>mf-;WvgaFB_z)*v0y5%kX-J2!D)y0{<dZ!Z;(qa8zE&Uz-d8SJTv
zJ600RXO~)TBmGcp@lB=TXcODG(A=p#BE^GeX$(R`e4Vgk%?4~S*2byUjAQ&#oT8n=
z#{D>L11j#TV_zg*oKtDo;Q&6GgGnq-R2wME*bcP4j>8n)1S_eWO+g3~2UOItrf$n9
z2LTt1=dtTYN15@_<{50Pq+O6cpQQN(ADwI=Z#_{N!WDT|$%tzl8)Z$k6I9bmQlWTK
zNkGpV8HqLud+~I559>8)1}wxU&}!2>g%+E}eo&g|DbCQGi`#3RZq9d$2bvi3*@C8p
zic|D;LQm;8s!ldgfe@()T_B9hrPNBOxJ)PX#hz2Nuo!|I@y40+O-#V~eOp3)M~_Il
zUq$q&306JXq^d{z?$o2T6!bXhd36SRhu|oqp(P_jkgK&pcG75MZv>8JV=y0sBN2$*
z!TPn?fQDlbdq~ofdkZl*8iARiOqAv#bT|exL&Fi#%up;-GFSypM;2?8X_&!^ZH&e;
zE0c|747R366kuymjK=bdRv=@tQN5VKj>zVsq2*!;9*MojOfLG)^0D-0^3lNZvA{Ce
z;~$A`A)1InOz%iE$1wdKQyWdha5OM%n2Tr_j=qWb8;)n>NL24gR4=}vi^L&XqcfvX
zy;%B=X^3Wev;yPv(U^w4(U*ypm~?1ae7PN?v6q>R)?s|*8q*N1!`Vz!ZzdLBnq-f}
zEE_8i*=#Hyve*C@(-4hsv}R^=QN37eiRg`1H+)4Lm5u7nNA+SAC=yz<y5V#1sBAPR
zqwNGfD2-_tj@8&~w7zAra2<(nw7zAd_8~hGjqhmm%|~liHd?c?qtQ1Xty$S<&C2eL
zzM;J_y}6;-o5$DQk=)5)MJAnR_=Y`7qk5waVJ=#;a?zTVi`J}Mv}Wa^H7l2m=0h$T
z-(0Lj(JE#nA97K>(VCUZNA*T)RxVnza?zTVi`J}MAsVycXo{nC2;aiTQalnX>$#Cw
z-OP=|>U=I*hjP(6lpBre9gXH>v}Wa^9nsw0sNQJnl#AA(e6$Ybhhj0y55;maAFV_A
zXgidT))t)65P3uSZ0sH9v(cDEdx-diKc+X@7sQzgQQ25+$wzBT9y`_2H7lQwS)+Wk
zw&bI=B_FLVH~=CRTC}$0qdmNQv>nPv>rg)04&|f$zI?Q1<)bw#A8noT(VCTy_6GCO
znuT*iV!0EoS@~$2mERkEo6-7~kJh(*w7wOh!@NSY%_>BDgN0}<EJSM|j;D#_Lm?B(
zokFzDDn#3?LUi<2h}O+Qv~CunEm<Mjk`<zTL>x~OOIx&V7NRW~PEm<zz&7D@JuXD+
zW&xXmW3sV2Uns<ENg>)tEJWM4LUc@4h}O+Qv~Cunb+Zs1lNF+4vO=^L7NWHfN4CUr
zXEd6>(OO6!XGiik+Mg^$`;&!e-7G{$YQxdGIXo0=V~3-46Xys;;u|%;(Kj4@!BLAG
zed*DjPIRykEeBB(9W5Kt4pFpZM7u-L(h@b<(GnCbK+*COHR4el9xXi4vJ)MkL~VU0
zI`YS%V39IHyNc5#JrnJR;oz;PY^>~MqU}N^+Ad_GeYQ-rwa7$!a+zowl8N^3GSQYL
z6Yce7qGO~?bc{qtB}8&E+84}3+Z!Ci71a=HE$H)xSZJ{xZ6?}7%tYHJ9Gw=^8*Q;N
z(cWYx+K$nV*GPP$?O3J|jYG8OnTfV;I9($aTC~l}L@i<_+DpwuZDJ-qfgQDqnW$OJ
zMD1cGY8W%ozH26G8Z*%zZ6>;4k%^kjOw?v(qDC_lwVIiz*~~;+*i6)LW}=oe6J6uT
zM9pL-YA3VNb~hWflQ=UmQlhd^JDH8z$!xTZ&PMHIHfkqvu3;<=Q9FtA{Gzh4dXbGT
zpJbyJF&piHXQMsvY_tcSjoQg<)J|rjb}}0sNoS)Y>1?#Oo{cW6WTSofY}9&Yql+!s
zsGZD4mte9{JDH6x%w(erGuf#1%tozeHo7vCjatua)Ou#4-N|g!dS;^?%52n5;$X>G
zNsW#pvQaykjoQg<v<HdPM`NKy#~j(Hoy<o2o7w2<P&R5kvr+4rjapBfR2qwK)Ou#4
z)-xNmp4q7N%tm{j+32Vx7wu){qBb=b9n0jR)-x9!;pC#$GZ$T<%0*YGa?xI9E^0k<
zQR|tD_9t^u>zRvMPdb<)-3!V^ttSr3jmpN#LoRAPbJ3NrT-18zqJ7U?)OzNk))U8-
z#^M{bp1G*?%tia2xv2HbMXhHpYCUsN>zRvMPaJU@OGVUr=AzaUC&tD!MEjn(s7=j9
z`<}U|P0dAZYA!lV&qZx&F4`l_MOXE3a&Ihc(H?0oYEyGjo0^N-)Lhi2;&|y;9HQ0}
zM=VEWW4)kU)OzNkb3VD~uss*Gskvy6G#9n0IPo_U-+a`j;#m2pY%F*3QJb2N_ET~E
zcT8{8rskvl)O@s`nvYsqI%zX)5ph0rj7BXjj;@Z%Msp`Rp3g_e^Ef0tsyCWDQA>++
zxnmllmNp-?wE3u|%||V5K02Pq;oz}2MEj}vsHM$EEp0w(Y4cG_n~z%BeALqBqn0)w
zwY2%DrOihzZ9dvh%|~r&K5A3*(SB+^YCZE&>zR*Q&wR8;nvYt~eAIg8qa*ix)OzNl
z)-xZqp82Tt%t!m4`KX=DN9|-jYA5qiJDHE#$wJgl7NR5fLex$cqJ7Uo)FKw57O@bu
zh=ph`vk<k2h3H&nA!-o|(Y|LPY7q<3z9+6dh*$!gGascf+gFJ8GU-T%v;{9jdzppk
z7`+gk%Pd4~Um<Gy3ejF>A!_?@UqURtQQKFD&T!HJ$&nOCZ69v4h|0$1bPLfL&O+46
z6{2JGLbN|wi1sH7(Yee*)b<skwyzMieTAs)D@4cWg=o(acW=b<EIOB2h+4!#)FKw5
z7O@buh=u4Fy%1f=FGPEeh3L4u5Vd`UsO>96XDx@Lwr@CU`-Y>lmcvooM`s75OZ6~p
zpFU0pCrnr5<X*mwNA9!W6Ew7x-L6i3{TRj3f8yWDQYqII=L%2K-9ag#VVK4=9Yw*=
zluq|Q+H9WcwYH1YD2kkx#wUaL*lat=3|V+BYGaD4ORNSDTj?IYWf@iHZ$$j>#TEpO
zE4{_VCG%vpVVczndDy1aeo3#jIfB&h!;uf=X5%!SA0S_xn9~Qe)3M&7d&Gmrt>zh=
znqd^k;W#xqEMJQVgCu6KJ($a;1#?+nkiK7D#F=i!Ct{%v6EMK0g_gy10QF=Zr;g$X
zZQST0siV9e&im@|gf9z^&(GkaCoP9B0&#k5%z>|l(Q>s84r`dAQ-#qyTbL$V488n7
z%p>XpBz(bSWXyq`n%JaLZHrJRhaFjz&X}x?jVo(QgG+73y0j40Ycs=@9l@m(IHE#j
zKNT7EWJ{)c#QEWL`AnZW!^gVO#V>>Eoiyv6$sW!?ai00f73T9^=;&O177Bi&7|1~|
zc%aie+-G%Oi*~n>riEHf=}h}+9Mn(8XLq}8kEdWlhoLwjw%Z4f9Y1(%#`uE3!HHv+
z;!<d>pUA$$`zDSVBFFKX=ORVHJf#!t#G6*Uv|<nAl}j#o81FoW^L&O)r&}31%RdoI
z95BMa@iAcSASIL^amHvz%j2^ybvp*F52#~sPR@*nZZyYatc((x!l_%{X=#euh|*jY
zBRa5V5=Z+la3iB&9Utt5Or30VptKZ-`NRnT7GLS=b<sAIQ!&QaCyWv{b%Y3wOo-6Q
zP>Aw~Pm)cEpj8Wfp_8W&GW{ryk->+$6Zr5^AvC`@q^!jc_*A)zLp78`oz5FFaaT{O
zuq($$<0yV*an+Me_b58W3gL8dbppJRK7eCl*vXc+!1G?LT%?dGIl3h5#k^f8h0a?F
z={Ic8=}KqkUi22|Y?}+|C?$2s4T@oK?u~Vu#&J7HM&QFH2Mr$``8G)BZCBgs=pBu^
z%}TRRKj18nGQLx+7+_U&amt@_F%YTi;DbhdW=VJ8khRixXYJaf?t9sdbD>a;qAu#r
zD$fa@Jq8zUq2F^32~1bG+Ra5+)ZjSrF?>6D3P~l8E(Ti|bp7(pHSCyN6>-u>LgPSx
z@@$V|7Jv?lT)Qa%&1gUn-GCsX0da30K{H1|84+B?=06YTz2|cH3}v1G8u!Fk*{I<R
znh+uZ$yL2l-Akh)ULqCoQ>l=jOojY(vPU#WI_*f9VipYNeSo9|0BQ3Ha?1xQVLsBy
z^(nrpE+@%VCUkYzjq{9)rl@)tcfLBVLsz@mL#^?}vtK(@X;hzg;~RCisQEQOOX$2%
zH%;jWoX3rZGq`U`E-En5!FSR?=24uL1&Bg>YIm=324fq0(l)$KbPhMeC;{VSp7JSm
zJYsltmUf&>a8!?T`-A4{yn8wv%#DjuM+1e*epq#T6NdIg*Po>1PtuXv<jJ@!;<$W#
zPjBz9p$9qx-X>8K<A<ER2bfcsH-qTB_yDOh(o*4&pdStqPmg)%sBgj>I9!J$WPnE+
z)vZj<bD0K!Vn=rEp*wZ1+C5l7aZT{0zILF(IB0{$wKem$s?w9=*6g5D-=wz1yA5U6
z9vluY4!Z|&i;z*Ca=8pA?;NW4Itz5*g^q$Rm7GQoX&blsoxLJx9Exz*7T?3iC-*&k
z>csK!X``^(#HsG?<q^B~P%+ro!C6k!E~$Ro?!gnBZ`_Ns5siuZG70tjrunkGs1jGe
z_u8uC_;`il!8`80$1V~8i$&*^=&0i8DxA96uoXq!D{%$~IT(>~b!~xpJbe7b@#8b*
zQ5qieylc+_n(W;;U$BhRBIU-Klq>GkNx4zQqSjtV4ZrC?y-vrLEQ6dzO-tE3H%JPn
zTvlxr1*xDmIF~_z(3!iQi4}(9Ms2yGrtEOLdB(&F9h@_C*O>u0%&UwO8&FfEN||(+
zXGw=6VIpW{bObH25%d{H&}VdMpp5{IEA<jD`B<cD<J^`~=UsMNmyB|8n^ND;_AV%B
zCXY~+=r#cJj0)&I(*q2x)7+_Ih#QKi$Qo}n!!naS7(7pS&l6euj8cHg3Sx^3qk}0S
z5C}=0s<zmbsn4UUk9%BTkW65jHEoIYnw6e^9a^K=#gR~_lAaYO)T!g@J)@IIS0P+>
zgyKo(hUn^G-6F_VXqtIxmc6{(wMX6KxEmeJ&OYzLIJlJQaOd5FRHoG7xjH!3<J`bg
zrvt-%@3<+kId`RM$Ry`*)gg`_F5>hn8%ZRaZ_G@|?DKBYY;lvJ;_vuA+r{BcD9{Gs
zT$2utxWxf0zG%R$)u@(n_|vH~b4A<fID=z-a6gc`ksKZLB98u1$a)GSOy~hOK8*mC
z*b1y7cT6PB=Y$xZ(A5h@ixfo+MeAM<M=4VGCzVzA#?|j&Y0Y)8<+`nlh#DS`lseMm
zvV9&?PGAVV&JY~v0>Rybh!u`DRE0oha!t2EBy>6QuLq<2CyhAScONbfG^x~l5bXh-
zvV*aqE`M}epLn6G>|*@5ls$=q_Cd;2Uyrmq8s~a-eOVq(`nilsfYIu>AyA~>xKI{S
zJoa1P#?6FC)h!xJb<D1bOk9Mn0Bpx)Ovab#PDihP>acMD_>5~K1AcfM9WHAfP{*n>
zy01OyUb%>T4`fyCV*6lHOjnx)$l4Gt9Y)r5KoW5)u5*bVIid#R(EHtk$^?0N<GNy%
zflSo4?i8hM9jUc85kjjY_g0c0gK6+noUfgAib~2*0-S7MZq=4gBEhrwe&BwH&doBx
z0GyzMK%L<V(4<q;REL|+O7rjVqE-XczC_$sjQ)m)@b>V0l?e=`;!sKvBq~9j*|i4=
zS1%eJa<6Hq`fUhZfPpTtz2>Tl*XLdic%i!OkLn(ZQE(qBLv*EVrtjM0UM)I}$tpBL
zXk^>n@g-CUlaQz!MpHLRs*YxY@1@;YA7#u5+=@%-IXoWtsFo4CwtbJ)GFhqvm<TjV
z8O`uXUo<#yT=;ferGgb(d+T4F>-eDnNO<3AoR#Zl@*s!gh)&bhz0NZgF=a|smZ~X$
zK@<*}B`mg+Dz%$!y6IsYHPXFzR2d<<g3gT|UjXcAms_^I{HS%Cr2{oP2E_sS$ENpn
zCY_;_%CQqoTI#`UV>`?^a#8lrghZCR4VnV}$X$z3#XF1ymrvQ)Yd10tmR8Fcz#$W0
ziky3MJ!-oE)$(PidJttlt`<zRpJHmFSS_mo>;5WT$>sE9v6j;4P~40p5p`qt8N6f6
z)5!Z7RP`S(5YC3lFg&2u@&O#9Y^CJ+nDItB=DhAG5#3pn1`}7YRGfFwPL=`zsO>Gb
z0+YeLDW~fv+N2WH8cQm3ZEjKHXqq>R{btW{R7Tt>pswF_I&5-DwM`(Ed#?^Ql@}MG
z73rvMOM)9f+6k&k%a$nPsJt1yIQ_3z?m{$a1@Ez)&=I>>Ux_)AnNl1VKkOd##tDIw
zGhFap8ofnTx@}JQ?*8i}H!=}4&~^%&#kd&VB+Almd+D%qOR#mo2rVLBsdZYom?YwY
zyQkHiMY`-_-UzY5EktO}Y1*!V7eO~qJ6?SO-<9TCJaI%n1?K6>CLJJB0#6<apE1={
zY0lf5QZW(MY*(mA7%eCT)L}~HqEPe<eEVVKp$oGxi$`Hg(#pg!?Vy@ir&Jqt%3&LM
zW!ScJLt>6%GSlgp_&WWIM&~g7bI2<$l2EUoWHiLOR-9eR#WQLtPeHU`e@^2J+=SZX
zbYirt>q0qC`AfqNZw!Q>tXmCpuTJY6aog|OUi1MwxJ<?$YLWJkLJ*cH=!$Vf(j0BB
zj9&SwYm*Ghr%*FYCpGXis4#M1%4!Bs-J?X3>RRrDt!CNIKadx?tlQPGUtQO2$gVvc
zo!x_rwvS-poQ0h(>MmXNZTu!zso|t~UZeyT506`bfkgyN`bBwBNl^oBJSsz$pfK3L
z6zZs9zSF}-fpKJMHDl2ChT%gQmm|APxk8ldCOAc$jw{*ALCp0?v!w<XXrG;zp=OVR
zQBJFe*$*XK@r4(smv9$t30Jt-zOiNp63eK0Jgcg*EN0l3UoGQgdYa5|olOL*<rAv-
zyN<5kw5#KFroF`OC|%nrP`hoWQ2^Ylk*npCYMmw(SsLIAbnfg$1vnOUsFukNY!@`5
zx0CZpHH8-UEO)ol+jNYdP#Ue+rbl2e=n)AvxiwFh(EIao3I(%vXk}0p%4$Sz{8D$Q
zL)Z|E?J!|xUlcvNm&P~!`A%rXo~-cxcwDGV`)+huMIFTM1IK>jWMSv2*YKY)1x``&
zE-c530yY}?vEx~CM8y?>6|R+4|1GH6$^j!M_ZoPT_3eg|;@j*^sEVcL{}okR-F!hz
zSQ&sjp_^DfbP}!Zm-cd=E(2GTZke~4N4^GgMibtc5;A~{#x_L7EG;;1`w_|`?)d28
z(jfh|@UqnEit=sa5o6V+9|T?j3Xe6<xGe^K7c8b2<#=W7uJ5TLN|d2g8D*sXC(&gq
zh*jqFO+=kTFoN(yBt`8CCiSN1y_?Wf3SpG(h)0oNLcFSGQhiTY&9=FR8SsYf?<o~@
zFPkqBlowjfqD_jvPzumRh+aS~IuYH;UKLtwsVpem6rNhiH|pqWXSyg%)EDQ}wbyiS
zmJv}UF>fAmnM^sUqSsu<47Q<%n;jtA8d4E)R-O1U%u*B+*YK6fSM{*aJl(4}Q-EzO
zgkdJehqRa1G3VIDg!a$rZEIlLO%P{}+C-ZK5esEeoa@6q4C~@9Y{0GDb(Y)^ZWX;R
zqf+IAU*|C@ts)3q18=0%sAJK$%6O!!d_2E?4pqx!I;@rkYyiS$Y;@DBae5GBDIT5R
z)O?I+aNCwHNNS2Kj8&;K-)=4z57Y2F?bdBp;|^i!NXlAmmA~z-1=tqSnpsFNAavq`
z;M&~?wW74jK8-b3lLU+gyp(z>($dP=dRC8i`UK_rAZBi-i~ur<uB=q+4u`Cr#QR1g
zWu)j8xKC%$ufWAW#vKF8W67C=1Sbuw;JAA$LbgZwGVWYae1;aldZ8S&Pnb8THBfHc
z97bkZ0U26ab48s5`$XDQB%G9}+zDZ|><7%3DB8{|%}gTOyqQ*P0It{Zs;zlNc|e;T
zM!D9YrMap%;8Jy|=ghB?QQ^!fItCojvHMjvMYxB_8ed_a6dF7lvwJLo;j={o{TVzD
znb*=m7vDU<H`!oxlswaOPFREw)N-T8^-!#qX+KNUO^q$KcPWO`2Nd;G<Se7Lb*s(i
zn0ggkY|VwEj=UCIwTkmz99NrN+?JqTox;Sf$|cjx@Sa#S#kN$G=8>CG;eF)d$zrwF
zmUUDNuR|rz&TE`^XP2t;=&qQQSK)@Cl6mIBb$ohef$XEfF#7C*y+XbVZtTD$wXJIE
zG7(w{r>jehe|IFx{aicGBhUU89~U|;9aWs^DWjIsjoL(COK7t$FV0qO4Qzf$lWIk<
z`Gwvl*LI^xHBl8e7lM+D4kXNok(c`9w!^Casu8V`TJ+vUy*Y=7U**0LRj^zk1zZX8
z;m@`aalOcMr|vALh2f}Y+z?}8MgXr8tJ<ndibu5!L3uo-u4To5-i0R{Fk#-VMb}k(
z(HntXH|x_VM1wi4)frf6DkfeBckRL5LKt(Yn{#NI38lfrzFMa3#eOYQqcNv*=Z)~H
zP4!}E52R5N2n3I$u8583wlhj&mwnylVhwvwjS^LE%o8j&)*X|%UiGvyV3*~$X{-j*
zq=**@%5{vu%=Q*q(#8&4S}c+614wzZembE|{<y3-#I(K~!)Q)jjDFJz)~Be<uV9Lq
zI^@`7K?}XMrv=Yg#^W)sNgFH;?^-m3A2HCd3rrSyEfO%*H`gay7?)6UN1Z~aNnmx(
zURDj1cCX}8Ux~Zaeu)Mb6OiH}KS^^7CL*d2O5Ld$yct6~R=X~sKw7az)Q_}+Ui7d-
zs5ZYuQ>NoI1#cAN!#9``XD(vb9#})_b7QH3SLFNw99*gKt7ABV!cLZxZm8BVP{S8|
zmM1Tm9wB0$RV~6sPgHZ-0cuAyp&mS=!k{N__hFKVH<YZ@l0)b}Px~VVtbKJ*#48YY
z2NGqv(9Oi7(PUrK-sA?n9BX!uH+-7b1-bb%Sn)RM7D2r33IU{*He?$iAiq~3b57t!
zM$OSotC-u`;6OiSj)S*dL*{xyJuqO05g2mCSHr9mW`(yenf5LE!&_Pv@QKpkji(gB
zE?qk^RD_n2Rma|>+hA{YR#7#t3R{G|MZUN=r~zxlrKr{reTPV(UVx>_mAy_^#{2dK
zFjlLwMjtbOY^r?o>{1}tp;30Ikml8KcciW>)Sd5Cai^#TRDU^`z&q{kQh8%U)rU1U
zm&sImuM?jc&?w%>qlZodK<Z076IGoBOj(@reNz5RlP-U)%Z%f#PHe!$y=XiyVw37p
z8$p-mOsrh$v~Z4IYgts$n_I$`NF)W(wsojoLgI;ZorMh{P2<f3>bW56oeGO9H4`GK
zAkb!Q7pT#TXi)V0DgsCfeMm3EOMyRcid^Yp-pFPteHmzip$BKzE)}ANyA-OGH=4XB
zPz*B}HPw}tw=Hcw@Bcg2Jc4!4)D}SMj5M%OfVvDee0+#?I>8mH7&zJ}F7mTy4474L
zKPu)b(H0pMp@Z!^(_Qfxia1^JU3-Y_9;DugQ9y~dN^DP?xL533<<q6Q^W8$3TpOOM
z7@%9RZKTK#5gR-}hxU-;+Dct_TV<6{FEsK<)Ci&fYa>hTK00kET8=yF9hR9rPn7#@
zZwN-@N;KovUv0iyX`X3N55n3P)d4+$P(n6^KKCJ1bK_r09`qLB6jF9z;(#x=k2^is
z+b|z0KEbnzF(<Vh#wgmgN9kAlBZ52-Cl&MzZFiy_6gG<@&h*wp&8~MCNA(!W?4vGX
zxYJF=>u__ibe6K*7I4KW<Dkk}VRo>ymxGmzM??>gdwa#SAdOGbdJm6J!y)Q{wxq;;
zkW0i%6B}66cL`z-IOJwbNAsYQpIQ#X4x7mWr+A9T<g3Q+)U+^+$s!bk`*E~Lp#tE8
zm@<jr{a&YD=_bpi-lQ*13y{wGv=XIpkY}L`4chQ3W{pw<CybHzwW||!6oanxMra)0
zr}1~M#!W36VEO==UYWDD&v-F{hTw;-(uP_)M2$CQ#Ei#k2=ICK8Nbtlr6QcO0o#R*
z8YweC+0mryUad+MX(VPQm3rlJypcp5DI#!~URs>PRoeKj-o&wNGG=Pr2D58Vk%pbL
z$J1*E4Ts_6yGeCU%h(iS$<9%CT<7qU{wEgUDAtTXC1`2|+@Yz+o8fIJPZ4(IO<d{o
zWY>Wd4|Yq{qs~`1ih1phmNGe|K<iW$chcHn3k9kM=YFvT?Hr`<V~y_$7T@rK-QEl?
zoDI?GN~ei$Now7qT8BV~fIeR@CJW9kd?iCBwTM=`<8EJ7E^5L7ldSZn?F%j8I(KhD
zTP^3|dovS3+E+bD4Wcd2?x&@J6N(L$DJr4WOxjJ2Xw{y5*?h2#2)#`HzVpTjIQ>=m
z;FPxDgnls^rlC><)67JG{m&FJE21VMQ$oDK#C~}b2w+AQmake4aPW~!;HusM1|01g
z`Va1BEj!EY>}o!73B;(RR#Z2ax}AZe^FamL4E5py2^w{99s~}U!#bpQUY*OyzCPN@
zNCvr$#gPObR;mr<RH#n`8@mIQvb{S+X^R#$s_fu=`O5oTt&=J5vH{la0*~sP3EXW8
z{O#Z=&%BYG)_sz;a&&!CY@H3(foHuJI>6qx=fDl~p0r+BJ{53`HDu>);9&OusdBrW
zqZ(>riYIXAU1GeyBydu#VoaxUAbo)cXU|UHf?lC&^>@NHQ%QA9oMz0Z3$G@sLQ5f=
zCV~)XPr!D_21uJcuzDW|V$M_+gLihYdIBFgQ$Ud*XMrtH=Q^o5tQ+NSLv<FcLZALx
z*v_ubN?9OCOH={E3#Bf5K-GFwz}z|Ab2-^GrF_}Ew38!&I_aSW)N9Ol?Mdv%-`jpd
z?#cMyaqrq=Kk?qyzboQ<Z+C}^&dg@1<8K>76?d0q@zsy*{`$K@oau#P=S&T!g_*ME
zI2mU0EKQ1-yKwh_DAOY?y;+W+tTkSx8|X25a3)IV(OpKtqkGZ`In!0Yy2DA&beW#}
zjEkI{St{}{gd=)g2^`_<s~FATcve>e*W2LOLzm#Vc^vZSl3|=(>8r`$-dddQ=n7?r
zaVv?h2?veRtp%<WZkZaTQypD~+oeY`I2qVwxRDc=XZq?!afmnFZ|2HnhDSz5vd)n!
zDwlHwob4Ir^+;w2{(Y4=Q4aT`j5r6csC*wD#ciB)!KE7%@?dmiXm9ErjNmME90h0<
zQ>|aBCC+A-R&Nedc{nSn*)YXM`tw&VV&cY~xIlrI-lh%R_C8THsMBhkFr{uM9#y&Y
z*W)lqq!gjU<@rf5EQ#PuFZT;2KGdg(*%0@0{ZfMOa-4MxdB(WOL`l$G)7j)I%y}h3
z-1kAtLi?sCjUvni`lr%p5Jn2S!ToWY67(WaUTg(2AWDKU7Lt0c7LFa;cj?2keQMs+
zBU%bww&d(IoliFHB-y9zdx9kQV*-}W(8FYKXV4N|tdu_zS21CK{y2&@U(hnJ$rRqk
zIb@!B(~5aS`#+CYzTj+QG02W|46>C@BTV%gWhfN2O3__aKa27-ciKZ0%)6<R>vW<B
zcvHPQ&gsHYeLhhnyI)$Y4Cjj&VD`@9{6OauGHSm~w3;nvB&$xMnYa0)1{p?_`Yh(5
z=Wm}zQo1$ks+R4Hta_q~YzS&vO-+3of`$n@OcOrjtl{iENX=2VX$_LJ`MaI5H$Q!p
z5o#+<U8EeK0c(CHa6F=5ICHKr8t~*Z2nE}I(eh1V<ZINBAwX~*Tg396BeIBTVXSBx
zFRBY`o{;~}Of&*4)v+{zuDOvw#&w;cd9&l&Mzv|Ah?h~C$AGBje3XSx=<0QEgOopb
z-K9&MK2T@(1@nvUX=d78&)(3OP~35#*$%E`;*5Kd7k$a|;GpBr<Gv5J=xHA=_k8HD
za8h1;2hR_Uo75LMDNlim?@O&(rgMP@yRqC`Q0F|Q0&%eyf?6v~2jF5)-X6P@_LOq-
ze9qvN;5%36$fLA|ZDo|E%ZIOE>uf!Sh~@UC<pSiztf(64RGzumlV70IbZi`S(R8sV
zKUeFX#`Z}%n=>qyp_Av27pVxPJ*M0|pY{vVw9k~A@_Bjo3Z0IW0IJbW&R)p+D28;n
zfs68m*NIPL2Ocw^!`4D6@E}84rOLqN!}%*{E70h`<7_~`Ic1z9!y{CTesl4={5Pu5
z&%Z+hvNOu&Q+Z&I%~d+~!aC8WM0|7F=_p_EO#IDgJZCIB1AA;VJ22jUEC=?a(nXuP
zsS7heUvNa<e<bR^sbExkbhgs>t8tqixOl$MZt}*SlracgJYT69Nn7r9bhZ<@Deqvx
zDMXYg`*yG-S54BT&K50H&s^5Zt23W|Q}68mYP8OoU)zU{Vy54QIxoN`AIGM32UM2a
z*dqHI3dK*&G-|$jY4mD%l9Y|WaQ;C9hcK(BpQ5q+^?j?*FCWfWOZw~UpyubMX;87y
zFJ>}XoL1lHrs`kd;^$n%s9-&&%?8RX=;*`$dN2CMs_{~RzB?Zt9rh@EhjXR@^_635
zi)zI&$wk!(juwVUhWvWU&KWn%$yRNJs@fQ;AqxUae!YzTwe@*9UYV<2iv4$~QsZ&Y
z2Npgs5=(h-v68<$WBOjM8<qRGix<iQPc5gz@f|!rwC$JHc+#E%7mi;x-JcE+%jME?
z0b;p)S}s5=S4hhRNXhA%t%?N=hSOP2V_fUv`BIBNum~6gr~IYdw(+U98tvrW74US(
zGI@~>-Ao0acJ%!6I(pn|%1!yaJeRvdZUC{NrJ<5d^?mt}u8L~IZCzB|@f`QYEu~Ic
z5{hEdBk+tfF{+J4ZjpxbQ8S}o?*Clqejd{jrP@)KdOK?M(s7FCnle+=iFMluOxe(q
zylRQ5<<*JASx(7~%8i?@mCHkHNOIG4s}?&ldb;VFy?3*S3XiikQZL5i+q@Opkw$aq
zrZc2pftukuvye2XZE@cXCgW)SE$)fkthXJDGJkpXKM**-V=PRO9rXvY|6_4blL!A#
zW8jq;e8fm!$WzIQG|ds$c=@3d<xH*BZKkcqY!tIMVvgd!rAWV5r(3Oy?|(}lzoXxj
zws?-wnZqW>=)vX|&9e_&&TWWmCC`+w#{iQ(X&1B_n9Gkk(Jrc(7xl(dwH=EWon-q_
zsm|5^ZzAuNbqod2@0dv&NZ)}=({RCdLPLL-Z|lf@Gb6^Y*Be$n*lpa{XU=#`by&!A
z)LHFj=nNji!O-$E*ag8`6x8=@yY{Hh<>-nR^zVEmTRsKS#XP$Q573=X_?C3n9y-}_
z_uv#Zk9*)SKI`-V)<ULf(anSAYf-HSz)H~vP5RJG<&9QSur18~=6hifixZbg{7<+E
zu+&e3;Zb2<_A-3Sei-|EabVp(oRA^Wcc|J1p2j3$W7=114vy35(fFU15oPl}p42uK
zxtQ?6UUz<U5Jy;HOX&&PWx5TYz&>`hr8nY!6l<&GH!gEfZC6d}CNfS39{WKW9BLb!
z=p4Yv+KA)%C|1NU-7irBz^6^PuuMPKI@r%(AFya{9}b=^*L!qT)KTmvXc&iX)BK!q
zf1Yg7sV&<3O!Fw+dS{-eYjkw^p(b`JXc3jiyb!%>4`==ELCL}p(}v=Z&9t%DMh#);
za6)~)98z_%UkKHH%#;E}w~5IKEc4QrnBs}P6`ZDTr{YSGL(w4j(_($-LaGI-m3ft0
zEF^V|A556Cx5|q2&GqI{dUx%a#;(Oif-j9>P12BDh0@QX*d*VPXZ2FdeR`<Y<~RR>
z;ZxV@akrJt;K)#9Smr=<-|$`6X)I`B+xCQN{Kjc+L36$EsGoQ3!IthC1{v5SPX<f8
z(*paUdb4DSBdErOYC2ns<72UT+*@=O_xBhT#BkeDgn1&^DWbJZ(MRTCsQLm+mAzOP
z^Mp^L=k1dT2RKolW^186SE%MbQr*iZ35NTk(d2lf^LBBkhxXXUN6Ou4x=+#|+F?;U
zOSQk#nZcfI<3Lwg`l62BZ5>XitITwGjt}K<0AF9307A!;xRyzh6FMaoWK2?pk+2f@
zo<L>x?!oj6MLTI+ISc46Cwx!7pQ48=5=}T(?pU*pa)i0IsOuz-C9k#WOHoG-0%o5|
zVpIad-Loy{noN0~q+4WSkvT+1tA`5tqgQGll<8J7QQvAO5I(a$hXUgl-x8wk`bBpi
zY;+^2MEKwbpD30O;q+?bcdl0To-wk3E)_wW&uD%d6&)+%6{lVwbRQ165Btpn$Ih!O
zjNHmH;l_#M?m9E^bZ|sHJ8)GG-E}%+z=T~=x$rRJm2DlUk&QSW#4sAW{mIqnQ<}^Z
z$7)+P)7&>bJ~0s!_mnznh=<<BOW595KBW?8be(Ld=kW#1^y&gA%siVfY_-5#2e&Si
z7tjv~2s#6rOyIK8nq$Rkor#8AF-xZ`7&+B?I8B50uMMW{%x~kO8Wim&tw7q7@8J2-
zRX^=1aPfSRS;U7mXj;s4jE+R;#7*8P%}H>hCN|0XynI_n@vG*Rw)MQNEBnsI=0H=B
zWiuIWnDHh}x-L&amgO}n6{|4GG?s}vtIw>^LA-Dd&G~Si1~sZH3)C07X@^0oR8v?r
ziV5x7qs7p)s!nlAPg-OKUvjE`cNioZ45b6zAnxbwATVC1<Gn+H@n*Z-Yjr0YXlB&7
zjQUe(@IyH_QYf4lDC{T#6Mo}Fwn><(X6ZPjVypWnPK^wG9i$whS78dsIV4nR31!qX
z8uD$GXaSjq#0f(sYW*=3gFUU+_483Q9YR#ci>?B6q-cyrH_>Ss3}@ZPgN@U*HqJlO
z&S(ry?Q2vHo=tGB@c2RvV-MGf_!OPzqM_Q)IdNbT?E`Ye-np#!G<HAJfHS}+Yn8*b
zO3I5G5=?d5>dY2ZI;}rd)Q&eOcoQ^5)dN`4Y17?-bnTmwq8ld6L(hBKj{$`W)P`sz
z$<2$4aXC)gTXphj_(30B8bE{Pym=z$;C)oo>zQcStE8En!2TRZF~eh}MHhNGPY-Bq
z<kh2&HJVb>G@C|`w^SeG|BR%j(vued6jLL@HD9Zt{k$}QaEcuz*+FN#M6+4Y;_Az6
z{V-o{bm>4ZF2E>?6%<wbt}dZ7T(m0{ck`f%lX)U1H(z8&toC`7X8w%ubduQDgCb&G
z=o?cbrcNo+8tB31tuh_j31*A3TAK-rIbSgvSGjKVVqB?!8K!F=n1(b$)0`vWGrAZ0
z^_0$pGA9heJ<e)R05?jiE%dC@<pGk04l9FbkbTKa2w654EdHvQI?Hg3gt`N6x?34v
z=%F^yM(jcKe(_C@`dM!_PvP!5^_zQ=WXSlD4l7Z=xF3292Z-?V3@H(7t^^b~q`K9P
z1b6yej43!8fvRRlzbB;tGk3TsgZ-9!IP{XHb(Bj7w^Z{l<&}T7NQ?86!ha-fr&eB+
z>)}aEwo*LR6U7}jPd8~~r6|rGqK3jGmJ046oNL9dYNNc8!!GSkf?e{giliF+TivLh
z&IDX|$nG-~Hr5q=@Cfuy*&QPb6S$Ja>ZODZF9*zna>I9^_<E%N(COpH*f(x1h5p@x
zC$V}NIJq8X&`sRNgLSfD?b?IMO7*eL?m@f}?bAZ{ox8$rDN6H0xGTMDUymy=ubtGT
zTV2XC*O~Rg)=JJ`(2Y}Ab`N4im*?2gY>^u)%&1f-C?u-H5}MeztH~pE$s#jCiL6^6
zI?YUYB*3v#FW%S;r+%y0(@pZW;}9ZMXAPXe_bJYjX_Q+ZGYCG=%!s2!ziq5swr$}N
z2QCTLPN{gP%EsM8(+!F{upLsP1m9u>h~+X@C@p?AVQWoDQ_?|Zxn5i+@n<cd-jj8C
zCSW2NHMQFO;+Q-fTLiO!&oNQ;(e%^Fc>$vH9y%^3D-nnaGNK31VtZ|cJn=7d_UHkX
zZW?Db*HwwfGumP55|Wto2Jw@OXm`Q0p^8c~6go_Fjy1bz>oKr}7$!NAc6|wNieD~J
z%@e@JEZtG#u(;QzCNI@8gik9}-hsRxo-ZP236T_{uGOg?g^$#7hL5Dlb|G~XsH88c
zJV%GZ_AFho-Gis7&*CEOlbcr8W%nR;lssW1n7a$UoIbZvQ7#$!Wx;Tv^A%>lTUa;%
z_QgFps8PLE{7(f;by)EmLr-O{@H3$v4}Y2{!rDb^=3X5f>DE6gs;bR$!=lpXK69T9
zK4_#%Ws)4J*Gm7Bt;0+?eyI*3{)g5&1xop+I^>-7^hjddsUx4%p~wH+m&XtCG>NgH
zZYEtsi#t-ADAuG*&IW@Nr-WHlaGEAT13?NY!e+>B2BK1UoZ_gqfuF=lwsk6n>T*8#
zsp8z-L0Ol;qiP0}DxET8aRbVcb{Yq`Q!=dq_kl7-KyDrOWFrpRkFf@xhmdM%Q${`M
zkZNgd3QQY-IQlG*q<7}0Qp8;c?MJ_OFDeGgr{L(Vo=PThE`PIfDIdxvC*Dn;p$;oP
zpOt4S$mY17fcZk^a2_p{oKclnYq|uVm+CUBnVc$gg1va+IB%Hp2WP$@2I>GI(Q6#Y
zIqrZCTGT;*d1oSSbV+YV$IEi65-F-Ck5hCX?e$9wAEIxsw{fF9N&C=;JB10xQUbp8
zO)C7}aJ*0`fH_olOFQk%_b<iseo7y>lnROLTPl3aDmTagr5q+Y*jZe|-~b=6hN=$M
z=>YSPs$AO!?_W~iE^q4^Pm9vX2|c8~Sr3Dph`hW@oU7tZp`exKRD_ZD+r$|zG1b7w
z>EymJ8ZML!4Xe$rJvBO<WFF(W8C6G8Z#Qs{6^uZHRRjeA)dIWfW=d7+G?}PcdXxvc
zHVqy2pduA!N6Ibz9wQ?3GK2TEjg*NW<;ih-GB@V6u*PoVD0Zdg;rYgCe2^Z#3p&;s
zpZ(LMP0EcI|EN)mX&=XGHhl@Yt@9#=(0pC31gdsF_+g>Hi_a?SOExGIjRhP#GC|Wx
zILM(+368s*G(A&KrV9_9{Y%r_Y12ugY<BXEJ{pCDQB2QAOG`L0&meTkNv~%QReOSa
zH&ppDl9+oqb&v|IA-nb{Nv~_CW3s4PCa)gP*HH==aUAh}tHNRE@hjVC)H`mG?Bhu8
zQ}?S&{xjN-txHCSAdH6X`)Ah1dYfe&T}){vIQ!LR7)@ITHIsdh)A#INu(V8Fr&G^8
z>X}CN>Q^dZYR7}`)whr=H-SkgUkXcvfNV(ur!+rJ9fdR&-JN5#Fyp+|jm2Ek$prJ_
zvA6=m_S!6F;j|qyJeD!X@iwqY;0&*D`$^Ys=}gfsYSq~HBxe8zS%rE3G>H@>$k9A|
zm?&&uq2=2ULpm03;B=G$(>V*cP3FQSk~q-7AaLgL-X%XHqJo}@VZUB5%IZv_3Qwx3
zQms*KuhS2cX0wz_kPbhG9W$l&!)RgJGpT=b3`%MzjANo1i+wi2w5kbvecXmaJ!Chh
z>DhlFM8b+oEXW)}{(C3lzw+{F@2%p|%Q-x&pxyXr779YfkESR~!4wG70*_D@q(-!*
zsY+rRGx5_89V+?TNvHA#ok}!>_GO*!&SWRt#|h_AhA{e6F|nvF%^I&R%|&TGN^$Ud
zL@!QgiqMfL#lcY#*}aD1-ifd;#htStUA9#Y9Mrg4hp}sqbS2H$+PaXLPGN4+R9zWI
zGbV#cHOACF(H&5y(5h-rb(_y4kyLrE+KaULy9d3d!BE$R8JM>Du9I)}jf<2lj+GZ{
zX^>O#^|<GQayXtw<6_gN(QZr%a`rfH)H((wA5$|D2wsFg<g^Z6FU$224lb=1l{?!z
z2XDdp+acz$*I_*d-5ocU>=X<zT!Hjp)9UrQg083ZkkfjKjykQg*Sm6chGoinQ7-9W
zOG;qd=!$~KpvLO(28$N^Ls859N@F=*)b<I1<2J#-#T|jV`LZ34j*@IdZ1>w~g<ZYd
zjg_nlYMErX6sgk6O7YBls#-g4wvyI#pO>n2w5A3Usp=ZK`*k*O4JvNn8dlH1S-rz^
z$OQE`(2%OkfqS~%1p+~74qVeUFc64V!$2mei-Bucj$_X0S{awxIWgPU&p?}3djdDV
zrUs6FbqyRNbv7-rQ_!i}8+iAtaNroN$AQc?l{t{wu12TCOtrR^)9v;|+ECXyRV_V7
zzfQVNL4|ak!kXr~MXRDK5Y$80DOCwwN4&LE!|A%;2**^r>iSRDaMv}c5w26ZZo970
zitP#nwc2&^3bE_pS02~JuQ{$uq}l||+Xk1aFs?_xwzw|Qs^SW4Q%_ux?J9{cV`_-g
z@Ua9=6?2a$k$!gr^Q8k2z+!at8|`y?u{DuqNVjVsjoY+8hlt~rwXdKfYj{xm3=gZG
zafsGC;~G>t!&5cRxWuZPaZJ^<z$I1DjC;D48K<C%8J@0R#wl94jB8M{3=dmM-yz*b
zhVI)%bo+MEXz;3-p?-BX*sse5M=G-G77rp-g^d@#{u&&uyvB8#nrqy*tG13ntj_9c
zr8~9iD<15(3dhZXyY^=L%j_}QYxVu6#`I|&K@|=C2Q@Wx4l8Wv9<8^bP*8nC=Tt2Y
z1!9#slu6a;xIn6Ehhpg(9!doDCv;BN_fR5Q?L(oU_J_`)5s12{ZNWBT=Sb4_mLb&V
z)!xw2w-ceOZ!SXDh}DRQ>==B?hJ*@yQxdvHElMb~jbRDJwzDs3xf^X}M$chp>|A7E
zB1X?`W+0O40(em+0lzCAI`3p=;Cn|i1NU>A83^rUX5hTDnSsDL%?xCAHZw+GXEOt_
zbC?;5jlcaO%+Pa~87MfnnSszwW(LkXni=hW4l`rL&XJ@WX=b2r`+5$?9n1_|cQ7+>
zJ(rnbksX8I*~~z}4rT_f=QcACx-n)3VmHdnD7hPLX7GLJ&fOWh7(<3BfuYF^pWD)q
z%+97pN$g;2$bBbcL+(3T8xlCTxgn{Y><zi^Y;Z{8oEC?Kb~ZUyVrQE}a_2BQDn>h4
z9dbX1*&&g0+Z~eH$?%Z-j+Vy=oWt}uay!|cK<p5vq;@LA+gE>5w1fE}=N;@1IiJe_
ziOkMX*x3Y;iXChaIiK4Ik<^W`LL_&i%n%FSXglP7%dG8<*F-|#|Fm{>&2ijDP(Ou_
z6sttqv@0)qk|na@ltZyZI(~4aQb%%WopN8gy;G=4<-e!90qg?USzvkAgG#)ap4nMo
z(ZGISCde}$`r*9JL&TJMNQeRtQD5RA>We%?K%Iw(D)A8YWga4;%0mQ|d8kK}d5E|Q
z4=JJo4^dy?AwudrL{y1~s4wzR2dMB+ge&n-1}pIpq2nY#ZGnfVF7Oc5H6HSqatLJ}
zqKg6#QC;UDqNeZ=ag%t+0Vneias-vvLo7FCuZRBfW1WYHDf5sJ1s<Zl#6#2<d5C~I
z4-r-3A?nLKL`0Q`2rBbXk0|pHaTOj?L<JtAzQRL<)Om=g5)V;d<e?5w;h_ju;-L&y
z;vquENr2h{4^ds<A*yRU<T2$C$~;6D1s<Zh&O<~^;UVHC@sI;f<{=hxEEADRJ=#nJ
zRh^0iDsz#86v#+`5*rCnq$45fd?Z+jkOU|*k|0$|5~|Ee5u{8?0#;bbMOC0B0V=#C
zOr4knD>0J*MQZ916>f@wC34DfC3X^aoExMr@RRfff|9<*Pytj4qs&oqQXnbm>ntVM
z6q*un5>I(#M^yb{r)56O+p(9+k#;~Tu`XqkNR!b>q{;asQkldN=`+TNGy|%LbQVWM
z>H#?nbOTn15JNhMl-WRuG(!T2l;+5f^x2S)H2GN1Rl`9(M2rV5@2)YjVI6r%22vzX
z2XdrHM{uMthHk1IJJevXMrP?KjTGkajPxVpGD3_E$OO`jM7JE!XU?rYGiQl9zW}%k
zH7xw^Cl(5DdxVbu`#<xel4qLgxWAugd3u;-r<Wm>3wNw9cSs|!MLoih4=$1;3H^)o
zr)P^uh(G_uI%*9voMvL5WH=Y|WSMa^LZgLT8sSJr$88Lf;O=Q48c2qi&$-ckF8Dl<
zJZjUI3kWHFQM1{nu;b<lnJejpy3TvsAQd+2Z$v+Tn?E4yrSn4dHTGG|TNH+lWS7`^
z7yWcO7HD$0!B<ARN9k^&zx64u6FZ0y?$3qujGP>fE$BzdgjUE@)W?CWN+@Bw;tUZ<
z?`9AGXtsBe1Qyz8)m!4P@1AgDok)I8`c&<(^t)sd+*`j5FA*jemA7^KSrS;-8`cYv
z_2(XW3|H9o+zYWq8p*sI?T71!PSt*IwsA{Kqz{;7kG5u_h=5V6;RpEUuDe|6X=cdK
zat<0rvYcaU)asAm4_|J<_+fqBcWNSvEIlanWt7i>=jrnL=(`pTbjt9rzXb_`7CSb9
z_7zia@au&{E%Fq*jKKu3DqpW#HV^aJ>iy&GM_$N+BbxaalzP&S&wG>|>EZof%h}Vr
zX2TS(bb6zF-1;*Kz?DRmJVX(RLMV|ai6@f#pdv{ZStL_afq>BsNJ{dwSuop1_|3+{
zwb%W2Y2Jete7{3YYGjl1=0TwGAB5UknMjb!_hz$TihFOTUsvhR?$_Veb0uz8fVW6C
z{R`5dYWfZ46n<cO>47v6V2@Grlt@sX6WhyjDc!mJ^Wgw&Bi0V^;mV}@r3UO$O@3<E
zD@+<){w~r-vcEV-{=E7!Tg)FigCf{v?NrJQ-Vys8VSN@)9o>z_@LVoE-W*vFa5O()
zQ=KwjqxZf0Ce0!0Pb`U`#SU=An?;a$!WM0zczG~!S@E!|DgvntSHB@oW|Y0u3J%S>
zp8`=1<cD%lxOCk1zhdaK?RNIH>}Y-WiMt4kZZI;MEpnC>LHBO6=#-B1{%%klc}jb5
zqEcRmasWEniCA~m6Tv>*F*K&_{f}8_dzVq#mb!T|ZA_mbEi>S-ZTB0ui@!Q>BdjLK
z;=uI>Y_<gy7E2c^rrdQYb<&7KmS8_P?UA2>8e;^{+l%F9_f-)OPG5%%<KHi+Eu@B)
zi#5tJtU<_Cy{*CNsZDi?x!K&Yple7I;m;T?XsW?6+rE)a2)U;Mp%<pjtH8LLx5JpP
zcD7<as?jRi8=W?aJnI-Y@7R9f){RzMz0WRavthzMU+?0j9R>RDM)zs<k&aK6vrW|l
zcG27BjUwY%b?YMi#*}~Nsa^MwRrj*B4{&@U#;Uq_LlPfzfe);!4z4>)){Vy}AngYx
z{HXfCOc?_+M}87VPMl2f$UINs5l6!o?OKrI($*lSkh{xf%5(HEOkN_>b-P}C8BP~+
z8W_S|mst!M2RV$z!N>=O>~jb>b8zQUE9uQkdJaLu9rL3`NJO1l@yvCcT=B48&Q~aZ
zW(9H2V(v;TW12pqLXcLH>7i6QhV^i?8qMOEwfFORUoj`OZ0AhA;>sY6Vep6#DQxn^
z1BT@Sm2t9zafymlE9pVFw6f?N36sBKCI3{In?Mm*b*WZQvwqC{w#*IpQ-fm3^8S9S
zDW(h>)w(ON=EI>ZCl@Q9PA)xn#R%Q)I=^(J>1tFNRzZiN8rA_L^{+Mk_f^1o9r1$&
zxoUDU(0Q2${LXUl4!5ty$wO?yFD&o{(|Vc;)5om^z0H>fI*;4!-U45m!kI12SJZNR
zIa}nsAo-Q$<H`);YHxbhXv)0A!^l{i^>tCwo`}ql=XISqRlFaXf&BQyRdB#lxxAEv
zpHw?N6N%c)5J5=T*`Zf!+{rVeRvzz#TWH|B0sS%1cW!s<e>W>U^24Jf)Lq-w0^KmR
ze0nfFgc{C;yV)P_H#<B=Z23alJ*P+wv%A#pcG@Q~$-(*^rar$KHKEZG*wkAqB@@`s
zT&CK5@ZfF;yRUNclkiih`>tVBX-u%kCz0u3jy;YSu`f@LQ_rsDUcP!<W?eT}cuqHr
z7n{?q(pBViyL9O|-7a1)PPZB?6UR+?iJYFMFHtZzvJSCZdA&Z;0>=L`-<(Xr>j-JD
zc2BHsdCMm@bJ5@>%0#5R{(k<??j{B=clu|vxgvF%tuy%&tq5Qm<~o8;x63GV<&g#B
z-cJ<65d_Idq7F>)=HrFFai)WfuIq1aOWkIo3~z(mhp{NffQHX#K|1Db2r>LzxOr&I
zN2-=RhK;M@owo27K21Dgsn#=;XI#$jPc>h@K1yNBy)dV$C~J<k6n~&w)L{I$zdOYp
z!Px_f?lxQh->Z96Y-UEz+2R%Q%_EC)d)AAPhPv6}rtVPdzv{gaUQjKW<Ni=D?m6V4
z)=UC>sO`m;^*j%?RtdR7jrB$gFAnuy^H3*vp7*xv-}dkB-I=;{`|F2ad?})D>KxTO
zwkv$g^(TF6r4ljSp)p2h-;d~T;p|W!;QeBsVErqG{l@-7w*>ba)Qvb}es%tFs<PKF
zQkl~G<8{}^Os+R?y0TNeUb>~CpE!6@QOmb@hV>`DvP+@51m^3r`Ff9B{Hmn(2DcNv
zg!A)I!c^WphPNre_|<SPr!9~Jxekie6rcR!rCh@&-*0zMydP3chUSH-Wa$e_fxa~5
z?#{`w@Qa0@QatPStU*yV#G`8?^kEPOdJVt3wUHhRq2NKVe!E1<L{t%B8IeTR?(o>p
z5TfM`DK6k#s*hc8E7sm`=Nr5=%Jr&4(W_anBMIP!wL2mq>rI&Fij<H%311&1^MRA_
zr7MC$$8|O2Lv0L06{=)7m40pctPbM>C7+_Oq;l@s*<({syY<}QEFaLKS%^9x6y-vz
zCK~p<if_269`Qnvh4l8JB83w(m-#h@a2I6S`TqLO;!t<ns=Om@l)9^?I*(%Fsbu)<
z%I;eopOcR_`*ApxuKjhB7^HY$PFvSS9ab{oq8TNa=rZf)21}f-@}gWs0sNmM6em}g
zZ(kn;;bwbuf*Ki@AX#%+cbK2x9bC|l5l<RH*J;8V{h&yVRJ+ApMv(=iMk{sAI&7(4
z)gPvlVZQ@E>^3#JzY3bpA~op6LUV?QW~<X~(sAGKJZI9}%-XKP&9m+BY27vKpS3d7
z0cmxL7di)8zH1h!1ND4kyaMNuIX6E0To<Spb+EC{_qi+Z4I4?8&t5^xRMhh9^JFot
jw#BBGLwY9|AKF2|{-CA`#%ir4zOO=|9L(qXOKtIgkEr{-

literal 0
HcmV?d00001


From 9013fdf9810d7a82a9b8e49df94afcd3aebb7c9b Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 13:36:34 +0200
Subject: [PATCH 04/69] Add cat to the container

To run with jenkins kubernetes plugin
---
 deploy/Dockerfile | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 74d94533d5..6937c9d99e 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -14,10 +14,14 @@
 
 # Builds the static Go image to execute in a Kubernetes job
 
+FROM alpine
+
 FROM scratch
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
 ADD files/docker-credential-pass /usr/local/bin/
+COPY --from=0 /bin/cat /usr/local/bin/
+COPY --from=0 /bin/busybox /usr/local/bin/
 ENV HOME /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs

From e546795e0396fe57c71d2909552c36feb7c82a0b Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 13:45:04 +0200
Subject: [PATCH 05/69] Use full alpine image

---
 deploy/Dockerfile | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 6937c9d99e..d723256424 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -16,12 +16,9 @@
 
 FROM alpine
 
-FROM scratch
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
 ADD files/docker-credential-pass /usr/local/bin/
-COPY --from=0 /bin/cat /usr/local/bin/
-COPY --from=0 /bin/busybox /usr/local/bin/
 ENV HOME /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs

From ad7f299a44de86bea1ff2d9a8e26806b3c4694cb Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 13:49:03 +0200
Subject: [PATCH 06/69] Use the correct path

---
 deploy/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index d723256424..484e75cb8f 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -20,6 +20,6 @@ ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
 ADD files/docker-credential-pass /usr/local/bin/
 ENV HOME /root
-ENV PATH /usr/local/bin
+ENV PATH /bin:/usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
 ENTRYPOINT ["/kaniko/executor"]

From 425491641ef85b52264a3d8268d7c6a618a21f89 Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 14:35:35 +0200
Subject: [PATCH 07/69] Add support for insecure docker registry

Using --insecure-skip-tls-verify
---
 cmd/executor/cmd/root.go | 4 +++-
 deploy/Dockerfile        | 6 +++++-
 pkg/executor/executor.go | 4 ++--
 pkg/image/image.go       | 3 ++-
 4 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 7a648fb1d2..6449e551d4 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -37,6 +37,7 @@ var (
 	srcContext     string
 	snapshotMode   string
 	bucket         string
+	dockerInsecureSkipTLSVerify bool
 	logLevel       string
 	force          bool
 )
@@ -47,6 +48,7 @@ func init() {
 	RootCmd.PersistentFlags().StringVarP(&bucket, "bucket", "b", "", "Name of the GCS bucket from which to access build context as tarball.")
 	RootCmd.PersistentFlags().StringVarP(&destination, "destination", "d", "", "Registry the final image should be pushed to (ex: gcr.io/test/example:latest)")
 	RootCmd.PersistentFlags().StringVarP(&snapshotMode, "snapshotMode", "", "full", "Set this flag to change the file attributes inspected during snapshotting")
+	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")
 	RootCmd.PersistentFlags().BoolVarP(&force, "force", "", false, "Force building outside of a container")
 }
@@ -70,7 +72,7 @@ var RootCmd = &cobra.Command{
 			}
 			logrus.Warn("kaniko is being run outside of a container. This can have dangerous effects on your system")
 		}
-		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode); err != nil {
+		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 484e75cb8f..1b4cc583d0 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -14,12 +14,16 @@
 
 # Builds the static Go image to execute in a Kubernetes job
 
+# need to have `cat`
 FROM alpine
 
+# need to have `nohup`
+RUN apk add --no-cache coreutils
+
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
 ADD files/docker-credential-pass /usr/local/bin/
 ENV HOME /root
-ENV PATH /bin:/usr/local/bin
+ENV PATH /bin:/usr/bin:/usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
 ENTRYPOINT ["/kaniko/executor"]
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index ee7c87e452..ab9eacd53f 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -32,7 +32,7 @@ import (
 	"github.com/sirupsen/logrus"
 )
 
-func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string) error {
+func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool) error {
 	// Parse dockerfile and unpack base image to root
 	d, err := ioutil.ReadFile(dockerfilePath)
 	if err != nil {
@@ -113,7 +113,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string) error
 	if err := setDefaultEnv(); err != nil {
 		return err
 	}
-	return image.PushImage(sourceImage, destination)
+	return image.PushImage(sourceImage, destination, dockerInsecureSkipTLSVerify)
 }
 
 func getHasher(snapshotMode string) (func(string) (string, error), error) {
diff --git a/pkg/image/image.go b/pkg/image/image.go
index 52035ef693..72058b8d46 100644
--- a/pkg/image/image.go
+++ b/pkg/image/image.go
@@ -48,7 +48,7 @@ func NewSourceImage(srcImg string) (*img.MutableSource, error) {
 }
 
 // PushImage pushes the final image
-func PushImage(ms *img.MutableSource, destImg string) error {
+func PushImage(ms *img.MutableSource, destImg string, dockerInsecureSkipTLSVerify bool) error {
 	srcRef := &img.ProxyReference{
 		ImageReference: nil,
 		Src:            ms,
@@ -66,6 +66,7 @@ func PushImage(ms *img.MutableSource, destImg string) error {
 	opts := &copy.Options{
 		DestinationCtx: &types.SystemContext{
 			DockerRegistryUserAgent: fmt.Sprintf("kaniko/executor-%s", version.Version()),
+			DockerInsecureSkipTLSVerify: dockerInsecureSkipTLSVerify,
 		},
 	}
 	return copy.Image(policyContext, destRef, srcRef, opts)

From 856265ee3091dfb7072de130cad120ca59315e9f Mon Sep 17 00:00:00 2001
From: Nick Kubala <nkubala@google.com>
Date: Fri, 20 Apr 2018 09:51:44 -0700
Subject: [PATCH 08/69] fix readme

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 8084161d9b..d6c707b5da 100644
--- a/README.md
+++ b/README.md
@@ -166,7 +166,7 @@ Similar tools include:
 * [img](https://github.com/genuinetools/img)
 * [orca-build](https://github.com/cyphar/orca-build)
 * [buildah](https://github.com/projectatomic/buildah)
-* [FTL](https://github.com/GoogleContainerTools/runtimes-common/tree/master/ftl)
+* [FTL](https://github.com/GoogleCloudPlatform/runtimes-common/tree/master/ftl)
 * [Bazel rules_docker](https://github.com/bazelbuild/rules_docker)
 
 All of these tools build container images with different approaches.

From ae59204727a22ba9971170438bce568c68891dfb Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 20 Apr 2018 10:42:16 -0700
Subject: [PATCH 09/69] Updated vendor for changes to container-diff

---
 Gopkg.lock                                    |  26 +-
 .../container-diff/LICENSE                    | 202 ---------
 .../container-diff/cmd/util/output/output.go  |   0
 .../pkg/image/mutable_source.go               |   5 +-
 .../pkg/util/image_prep_utils.go              |   2 +-
 .../prometheus/common/expfmt/decode.go        |   4 +-
 .../prometheus/common/expfmt/text_parse.go    |   4 +-
 .../prometheus/common/model/silence.go        |   4 +-
 .../prometheus/common/model/value.go          |   4 +-
 vendor/golang.org/x/net/http/httpguts/guts.go |  50 +++
 vendor/golang.org/x/net/http2/server.go       |  50 +--
 vendor/golang.org/x/net/http2/transport.go    |   3 +
 vendor/golang.org/x/oauth2/internal/token.go  |   2 +
 vendor/golang.org/x/sys/unix/mkpost.go        |  13 +-
 vendor/golang.org/x/sys/unix/syscall_linux.go |  41 +-
 .../golang.org/x/sys/unix/syscall_openbsd.go  |   4 +-
 .../x/sys/unix/zerrors_linux_386.go           | 135 ++++++
 .../x/sys/unix/zerrors_linux_amd64.go         | 135 ++++++
 .../x/sys/unix/zerrors_linux_arm.go           | 135 ++++++
 .../x/sys/unix/zerrors_linux_arm64.go         | 135 ++++++
 .../x/sys/unix/zerrors_linux_mips.go          | 135 ++++++
 .../x/sys/unix/zerrors_linux_mips64.go        | 135 ++++++
 .../x/sys/unix/zerrors_linux_mips64le.go      | 135 ++++++
 .../x/sys/unix/zerrors_linux_mipsle.go        | 135 ++++++
 .../x/sys/unix/zerrors_linux_ppc64.go         | 135 ++++++
 .../x/sys/unix/zerrors_linux_ppc64le.go       | 135 ++++++
 .../x/sys/unix/zerrors_linux_s390x.go         | 135 ++++++
 .../x/sys/unix/zsyscall_linux_386.go          |  11 +
 .../x/sys/unix/zsyscall_linux_amd64.go        |  11 +
 .../x/sys/unix/zsyscall_linux_arm.go          |  11 +
 .../x/sys/unix/zsyscall_linux_arm64.go        |  11 +
 .../x/sys/unix/zsyscall_linux_mips.go         |  11 +
 .../x/sys/unix/zsyscall_linux_mips64.go       |  11 +
 .../x/sys/unix/zsyscall_linux_mips64le.go     |  11 +
 .../x/sys/unix/zsyscall_linux_mipsle.go       |  11 +
 .../x/sys/unix/zsyscall_linux_ppc64.go        |  11 +
 .../x/sys/unix/zsyscall_linux_ppc64le.go      |  11 +
 .../x/sys/unix/zsyscall_linux_s390x.go        |  11 +
 .../x/sys/unix/zsyscall_openbsd_386.go        |  21 +
 .../x/sys/unix/zsyscall_openbsd_amd64.go      |  21 +
 .../x/sys/unix/zsyscall_openbsd_arm.go        |  21 +
 .../golang.org/x/sys/unix/ztypes_linux_386.go | 409 +++++++++++++++--
 .../x/sys/unix/ztypes_linux_amd64.go          | 376 +++++++++++++++-
 .../golang.org/x/sys/unix/ztypes_linux_arm.go | 411 ++++++++++++++++--
 .../x/sys/unix/ztypes_linux_arm64.go          | 378 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_mips.go           | 373 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_mips64.go         | 374 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_mips64le.go       | 374 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_mipsle.go         | 373 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_ppc64.go          | 384 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_ppc64le.go        | 384 +++++++++++++++-
 .../x/sys/unix/ztypes_linux_s390x.go          | 354 ++++++++++++++-
 52 files changed, 5810 insertions(+), 463 deletions(-)
 delete mode 100644 vendor/github.com/GoogleCloudPlatform/container-diff/LICENSE
 rename vendor/github.com/{GoogleCloudPlatform => GoogleContainerTools}/container-diff/cmd/util/output/output.go (100%)
 create mode 100644 vendor/golang.org/x/net/http/httpguts/guts.go

diff --git a/Gopkg.lock b/Gopkg.lock
index f10ecacc3d..257a9383ed 100644
--- a/Gopkg.lock
+++ b/Gopkg.lock
@@ -21,20 +21,15 @@
   revision = "b26d9c308763d68093482582cea63d69be07a0f0"
   version = "v0.3.0"
 
-[[projects]]
-  name = "github.com/GoogleCloudPlatform/container-diff"
-  packages = ["cmd/util/output"]
-  revision = "9eb30146e04ed241c8d5be4e0b9383efaa60a395"
-  version = "v0.9.0"
-
 [[projects]]
   branch = "master"
   name = "github.com/GoogleContainerTools/container-diff"
   packages = [
+    "cmd/util/output",
     "pkg/image",
     "pkg/util"
   ]
-  revision = "859166bbd7810e3c3fc072f1c33ad57b9f4acbd0"
+  revision = "564361979f3124dd3e6d8bbec027279539c8e08b"
   source = "github.com/GoogleContainerTools/container-diff"
 
 [[projects]]
@@ -63,7 +58,7 @@
   branch = "master"
   name = "github.com/containerd/continuity"
   packages = ["pathdriver"]
-  revision = "3e8f2ea4b190484acb976a5b378d373429639a1a"
+  revision = "c6cef34830231743494fe2969284df7b82cc0ad0"
 
 [[projects]]
   name = "github.com/containers/image"
@@ -403,7 +398,7 @@
     "internal/bitbucket.org/ww/goautoneg",
     "model"
   ]
-  revision = "38c53a9f4bfcd932d1b00bfc65e256a7fba6b37a"
+  revision = "d0f7cd64bda49e08b22ae8a730aa57aa0db125d6"
 
 [[projects]]
   branch = "master"
@@ -488,7 +483,7 @@
     "openpgp/s2k",
     "ssh/terminal"
   ]
-  revision = "d6449816ce06963d9d136eee5a56fca5b0616e7e"
+  revision = "e73bf333ef8920dbb52ad18d4bd38ad9d9bc76d7"
 
 [[projects]]
   branch = "master"
@@ -496,6 +491,7 @@
   packages = [
     "context",
     "context/ctxhttp",
+    "http/httpguts",
     "http2",
     "http2/hpack",
     "idna",
@@ -505,7 +501,7 @@
     "proxy",
     "trace"
   ]
-  revision = "61147c48b25b599e5b561d2e9c4f3e1ef489ca41"
+  revision = "5f9ae10d9af5b1c89ae6904293b14b064d4ada23"
 
 [[projects]]
   branch = "master"
@@ -517,7 +513,7 @@
     "jws",
     "jwt"
   ]
-  revision = "921ae394b9430ed4fb549668d7b087601bd60a81"
+  revision = "6881fee410a5daf86371371f9ad451b95e168b71"
 
 [[projects]]
   branch = "master"
@@ -526,7 +522,7 @@
     "unix",
     "windows"
   ]
-  revision = "3b87a42e500a6dc65dae1a55d0b641295971163e"
+  revision = "79b0c6888797020a994db17c8510466c72fe75d9"
 
 [[projects]]
   name = "golang.org/x/text"
@@ -563,7 +559,7 @@
     "storage/v1",
     "transport/http"
   ]
-  revision = "dde16f2e838706995ab9946df55f5dc7c5564cc6"
+  revision = "b08f8989af4899034b9816f5291a5bbb1bd576bb"
 
 [[projects]]
   name = "google.golang.org/appengine"
@@ -591,7 +587,7 @@
     "googleapis/rpc/code",
     "googleapis/rpc/status"
   ]
-  revision = "51d0944304c3cbce4afe9e5247e21100037bff78"
+  revision = "7fd901a49ba6a7f87732eb344f6e3c5b19d1b200"
 
 [[projects]]
   name = "google.golang.org/grpc"
diff --git a/vendor/github.com/GoogleCloudPlatform/container-diff/LICENSE b/vendor/github.com/GoogleCloudPlatform/container-diff/LICENSE
deleted file mode 100644
index d645695673..0000000000
--- a/vendor/github.com/GoogleCloudPlatform/container-diff/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/GoogleCloudPlatform/container-diff/cmd/util/output/output.go b/vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go
similarity index 100%
rename from vendor/github.com/GoogleCloudPlatform/container-diff/cmd/util/output/output.go
rename to vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
index 5e1cce25ea..8dd8c3e231 100644
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
+++ b/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
@@ -92,7 +92,10 @@ func MutableSourceFromScratch() (*MutableSource, error) {
 		},
 		extraBlobs: make(map[string][]byte),
 		cfg:        config,
-		mfst:       &manifest.Schema2{},
+		mfst: &manifest.Schema2{
+			SchemaVersion: 2,
+			MediaType:     manifest.DockerV2Schema2MediaType,
+		},
 	}
 	return ms, nil
 }
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
index cf4b5ad50b..47cff2e1dd 100644
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
+++ b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
@@ -26,7 +26,7 @@ import (
 	"sort"
 	"strings"
 
-	"github.com/GoogleCloudPlatform/container-diff/cmd/util/output"
+	"github.com/GoogleContainerTools/container-diff/cmd/util/output"
 	"github.com/containers/image/docker"
 	"github.com/containers/image/manifest"
 	"github.com/containers/image/pkg/compression"
diff --git a/vendor/github.com/prometheus/common/expfmt/decode.go b/vendor/github.com/prometheus/common/expfmt/decode.go
index a7a42d5ef4..c092723e84 100644
--- a/vendor/github.com/prometheus/common/expfmt/decode.go
+++ b/vendor/github.com/prometheus/common/expfmt/decode.go
@@ -164,9 +164,9 @@ func (sd *SampleDecoder) Decode(s *model.Vector) error {
 }
 
 // ExtractSamples builds a slice of samples from the provided metric
-// families. If an error occurs during sample extraction, it continues to
+// families. If an error occurrs during sample extraction, it continues to
 // extract from the remaining metric families. The returned error is the last
-// error that has occured.
+// error that has occurred.
 func ExtractSamples(o *DecodeOptions, fams ...*dto.MetricFamily) (model.Vector, error) {
 	var (
 		all     model.Vector
diff --git a/vendor/github.com/prometheus/common/expfmt/text_parse.go b/vendor/github.com/prometheus/common/expfmt/text_parse.go
index 54bcfde294..b86290afa3 100644
--- a/vendor/github.com/prometheus/common/expfmt/text_parse.go
+++ b/vendor/github.com/prometheus/common/expfmt/text_parse.go
@@ -556,8 +556,8 @@ func (p *TextParser) readTokenUntilWhitespace() {
 // byte considered is the byte already read (now in p.currentByte).  The first
 // newline byte encountered is still copied into p.currentByte, but not into
 // p.currentToken. If recognizeEscapeSequence is true, two escape sequences are
-// recognized: '\\' tranlates into '\', and '\n' into a line-feed character. All
-// other escape sequences are invalid and cause an error.
+// recognized: '\\' translates into '\', and '\n' into a line-feed character.
+// All other escape sequences are invalid and cause an error.
 func (p *TextParser) readTokenUntilNewline(recognizeEscapeSequence bool) {
 	p.currentToken.Reset()
 	escaped := false
diff --git a/vendor/github.com/prometheus/common/model/silence.go b/vendor/github.com/prometheus/common/model/silence.go
index 7538e29977..bb99889d2c 100644
--- a/vendor/github.com/prometheus/common/model/silence.go
+++ b/vendor/github.com/prometheus/common/model/silence.go
@@ -59,8 +59,8 @@ func (m *Matcher) Validate() error {
 	return nil
 }
 
-// Silence defines the representation of a silence definiton
-// in the Prometheus eco-system.
+// Silence defines the representation of a silence definition in the Prometheus
+// eco-system.
 type Silence struct {
 	ID uint64 `json:"id,omitempty"`
 
diff --git a/vendor/github.com/prometheus/common/model/value.go b/vendor/github.com/prometheus/common/model/value.go
index c9ed3ffd82..c9d8fb1a28 100644
--- a/vendor/github.com/prometheus/common/model/value.go
+++ b/vendor/github.com/prometheus/common/model/value.go
@@ -100,7 +100,7 @@ func (s *SamplePair) UnmarshalJSON(b []byte) error {
 }
 
 // Equal returns true if this SamplePair and o have equal Values and equal
-// Timestamps. The sematics of Value equality is defined by SampleValue.Equal.
+// Timestamps. The semantics of Value equality is defined by SampleValue.Equal.
 func (s *SamplePair) Equal(o *SamplePair) bool {
 	return s == o || (s.Value.Equal(o.Value) && s.Timestamp.Equal(o.Timestamp))
 }
@@ -117,7 +117,7 @@ type Sample struct {
 }
 
 // Equal compares first the metrics, then the timestamp, then the value. The
-// sematics of value equality is defined by SampleValue.Equal.
+// semantics of value equality is defined by SampleValue.Equal.
 func (s *Sample) Equal(o *Sample) bool {
 	if s == o {
 		return true
diff --git a/vendor/golang.org/x/net/http/httpguts/guts.go b/vendor/golang.org/x/net/http/httpguts/guts.go
new file mode 100644
index 0000000000..e6cd0ced39
--- /dev/null
+++ b/vendor/golang.org/x/net/http/httpguts/guts.go
@@ -0,0 +1,50 @@
+// Copyright 2018 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package httpguts provides functions implementing various details
+// of the HTTP specification.
+//
+// This package is shared by the standard library (which vendors it)
+// and x/net/http2. It comes with no API stability promise.
+package httpguts
+
+import (
+	"net/textproto"
+	"strings"
+)
+
+// ValidTrailerHeader reports whether name is a valid header field name to appear
+// in trailers.
+// See RFC 7230, Section 4.1.2
+func ValidTrailerHeader(name string) bool {
+	name = textproto.CanonicalMIMEHeaderKey(name)
+	if strings.HasPrefix(name, "If-") || badTrailer[name] {
+		return false
+	}
+	return true
+}
+
+var badTrailer = map[string]bool{
+	"Authorization":       true,
+	"Cache-Control":       true,
+	"Connection":          true,
+	"Content-Encoding":    true,
+	"Content-Length":      true,
+	"Content-Range":       true,
+	"Content-Type":        true,
+	"Expect":              true,
+	"Host":                true,
+	"Keep-Alive":          true,
+	"Max-Forwards":        true,
+	"Pragma":              true,
+	"Proxy-Authenticate":  true,
+	"Proxy-Authorization": true,
+	"Proxy-Connection":    true,
+	"Range":               true,
+	"Realm":               true,
+	"Te":                  true,
+	"Trailer":             true,
+	"Transfer-Encoding":   true,
+	"Www-Authenticate":    true,
+}
diff --git a/vendor/golang.org/x/net/http2/server.go b/vendor/golang.org/x/net/http2/server.go
index 39ed755a86..72f65c8f7b 100644
--- a/vendor/golang.org/x/net/http2/server.go
+++ b/vendor/golang.org/x/net/http2/server.go
@@ -46,6 +46,7 @@ import (
 	"sync"
 	"time"
 
+	"golang.org/x/net/http/httpguts"
 	"golang.org/x/net/http2/hpack"
 )
 
@@ -1817,7 +1818,7 @@ func (st *stream) processTrailerHeaders(f *MetaHeadersFrame) error {
 	if st.trailer != nil {
 		for _, hf := range f.RegularFields() {
 			key := sc.canonicalHeader(hf.Name)
-			if !ValidTrailerHeader(key) {
+			if !httpguts.ValidTrailerHeader(key) {
 				// TODO: send more details to the peer somehow. But http2 has
 				// no way to send debug data at a stream level. Discuss with
 				// HTTP folk.
@@ -2284,7 +2285,7 @@ func (rws *responseWriterState) hasTrailers() bool { return len(rws.trailers) !=
 // written in the trailers at the end of the response.
 func (rws *responseWriterState) declareTrailer(k string) {
 	k = http.CanonicalHeaderKey(k)
-	if !ValidTrailerHeader(k) {
+	if !httpguts.ValidTrailerHeader(k) {
 		// Forbidden by RFC 7230, section 4.1.2.
 		rws.conn.logf("ignoring invalid trailer %q", k)
 		return
@@ -2323,7 +2324,15 @@ func (rws *responseWriterState) writeChunk(p []byte) (n int, err error) {
 		}
 		_, hasContentType := rws.snapHeader["Content-Type"]
 		if !hasContentType && bodyAllowedForStatus(rws.status) && len(p) > 0 {
-			ctype = http.DetectContentType(p)
+			if cto := rws.snapHeader.Get("X-Content-Type-Options"); strings.EqualFold("nosniff", cto) {
+				// nosniff is an explicit directive not to guess a content-type.
+				// Content-sniffing is no less susceptible to polyglot attacks via
+				// hosted content when done on the server.
+				ctype = "application/octet-stream"
+				rws.conn.logf("http2: WriteHeader called with X-Content-Type-Options:nosniff but no Content-Type")
+			} else {
+				ctype = http.DetectContentType(p)
+			}
 		}
 		var date string
 		if _, ok := rws.snapHeader["Date"]; !ok {
@@ -2838,41 +2847,6 @@ func new400Handler(err error) http.HandlerFunc {
 	}
 }
 
-// ValidTrailerHeader reports whether name is a valid header field name to appear
-// in trailers.
-// See: http://tools.ietf.org/html/rfc7230#section-4.1.2
-func ValidTrailerHeader(name string) bool {
-	name = http.CanonicalHeaderKey(name)
-	if strings.HasPrefix(name, "If-") || badTrailer[name] {
-		return false
-	}
-	return true
-}
-
-var badTrailer = map[string]bool{
-	"Authorization":       true,
-	"Cache-Control":       true,
-	"Connection":          true,
-	"Content-Encoding":    true,
-	"Content-Length":      true,
-	"Content-Range":       true,
-	"Content-Type":        true,
-	"Expect":              true,
-	"Host":                true,
-	"Keep-Alive":          true,
-	"Max-Forwards":        true,
-	"Pragma":              true,
-	"Proxy-Authenticate":  true,
-	"Proxy-Authorization": true,
-	"Proxy-Connection":    true,
-	"Range":               true,
-	"Realm":               true,
-	"Te":                  true,
-	"Trailer":             true,
-	"Transfer-Encoding":   true,
-	"Www-Authenticate":    true,
-}
-
 // h1ServerKeepAlivesDisabled reports whether hs has its keep-alives
 // disabled. See comments on h1ServerShutdownChan above for why
 // the code is written this way.
diff --git a/vendor/golang.org/x/net/http2/transport.go b/vendor/golang.org/x/net/http2/transport.go
index e6b321f4bb..da91d19dd4 100644
--- a/vendor/golang.org/x/net/http2/transport.go
+++ b/vendor/golang.org/x/net/http2/transport.go
@@ -951,6 +951,9 @@ func (cc *ClientConn) awaitOpenSlotForRequest(req *http.Request) error {
 	for {
 		cc.lastActive = time.Now()
 		if cc.closed || !cc.canTakeNewRequestLocked() {
+			if waitingForConn != nil {
+				close(waitingForConn)
+			}
 			return errClientConnUnusable
 		}
 		if int64(len(cc.streams))+1 <= int64(cc.maxConcurrentStreams) {
diff --git a/vendor/golang.org/x/oauth2/internal/token.go b/vendor/golang.org/x/oauth2/internal/token.go
index ce3f27e028..30fb315d13 100644
--- a/vendor/golang.org/x/oauth2/internal/token.go
+++ b/vendor/golang.org/x/oauth2/internal/token.go
@@ -126,6 +126,8 @@ var brokenAuthHeaderProviders = []string{
 	"https://api.sipgate.com/v1/authorization/oauth",
 	"https://api.medium.com/v1/tokens",
 	"https://log.finalsurge.com/oauth/token",
+	"https://multisport.todaysplan.com.au/rest/oauth/access_token",
+	"https://whats.todaysplan.com.au/rest/oauth/access_token",
 }
 
 // brokenAuthHeaderDomains lists broken providers that issue dynamic endpoints.
diff --git a/vendor/golang.org/x/sys/unix/mkpost.go b/vendor/golang.org/x/sys/unix/mkpost.go
index 23590bda36..c28e42b009 100644
--- a/vendor/golang.org/x/sys/unix/mkpost.go
+++ b/vendor/golang.org/x/sys/unix/mkpost.go
@@ -42,6 +42,10 @@ func main() {
 		log.Fatal(err)
 	}
 
+	// Intentionally export __val fields in Fsid and Sigset_t
+	valRegex := regexp.MustCompile(`type (Fsid|Sigset_t) struct {(\s+)X__val(\s+\S+\s+)}`)
+	b = valRegex.ReplaceAll(b, []byte("type $1 struct {${2}Val$3}"))
+
 	// If we have empty Ptrace structs, we should delete them. Only s390x emits
 	// nonempty Ptrace structs.
 	ptraceRexexp := regexp.MustCompile(`type Ptrace((Psw|Fpregs|Per) struct {\s*})`)
@@ -69,12 +73,9 @@ func main() {
 	removePaddingFieldsRegex := regexp.MustCompile(`Pad_cgo_\d+`)
 	b = removePaddingFieldsRegex.ReplaceAll(b, []byte("_"))
 
-	// We refuse to export private fields on s390x
-	if goarch == "s390x" && goos == "linux" {
-		// Remove padding, hidden, or unused fields
-		removeFieldsRegex = regexp.MustCompile(`\bX_\S+`)
-		b = removeFieldsRegex.ReplaceAll(b, []byte("_"))
-	}
+	// Remove padding, hidden, or unused fields
+	removeFieldsRegex = regexp.MustCompile(`\bX_\S+`)
+	b = removeFieldsRegex.ReplaceAll(b, []byte("_"))
 
 	// Remove the first line of warning from cgo
 	b = b[bytes.IndexByte(b, '\n')+1:]
diff --git a/vendor/golang.org/x/sys/unix/syscall_linux.go b/vendor/golang.org/x/sys/unix/syscall_linux.go
index a24ba5fbcf..04f38c53ee 100644
--- a/vendor/golang.org/x/sys/unix/syscall_linux.go
+++ b/vendor/golang.org/x/sys/unix/syscall_linux.go
@@ -944,15 +944,17 @@ func Recvmsg(fd int, p, oob []byte, flags int) (n, oobn int, recvflags int, from
 	}
 	var dummy byte
 	if len(oob) > 0 {
-		var sockType int
-		sockType, err = GetsockoptInt(fd, SOL_SOCKET, SO_TYPE)
-		if err != nil {
-			return
-		}
-		// receive at least one normal byte
-		if sockType != SOCK_DGRAM && len(p) == 0 {
-			iov.Base = &dummy
-			iov.SetLen(1)
+		if len(p) == 0 {
+			var sockType int
+			sockType, err = GetsockoptInt(fd, SOL_SOCKET, SO_TYPE)
+			if err != nil {
+				return
+			}
+			// receive at least one normal byte
+			if sockType != SOCK_DGRAM {
+				iov.Base = &dummy
+				iov.SetLen(1)
+			}
 		}
 		msg.Control = &oob[0]
 		msg.SetControllen(len(oob))
@@ -996,15 +998,17 @@ func SendmsgN(fd int, p, oob []byte, to Sockaddr, flags int) (n int, err error)
 	}
 	var dummy byte
 	if len(oob) > 0 {
-		var sockType int
-		sockType, err = GetsockoptInt(fd, SOL_SOCKET, SO_TYPE)
-		if err != nil {
-			return 0, err
-		}
-		// send at least one normal byte
-		if sockType != SOCK_DGRAM && len(p) == 0 {
-			iov.Base = &dummy
-			iov.SetLen(1)
+		if len(p) == 0 {
+			var sockType int
+			sockType, err = GetsockoptInt(fd, SOL_SOCKET, SO_TYPE)
+			if err != nil {
+				return 0, err
+			}
+			// send at least one normal byte
+			if sockType != SOCK_DGRAM {
+				iov.Base = &dummy
+				iov.SetLen(1)
+			}
 		}
 		msg.Control = &oob[0]
 		msg.SetControllen(len(oob))
@@ -1260,6 +1264,7 @@ func Getpgrp() (pid int) {
 //sys	Mkdirat(dirfd int, path string, mode uint32) (err error)
 //sys	Mknodat(dirfd int, path string, mode uint32, dev int) (err error)
 //sys	Nanosleep(time *Timespec, leftover *Timespec) (err error)
+//sys	PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error)
 //sys	PivotRoot(newroot string, putold string) (err error) = SYS_PIVOT_ROOT
 //sysnb prlimit(pid int, resource int, newlimit *Rlimit, old *Rlimit) (err error) = SYS_PRLIMIT64
 //sys   Prctl(option int, arg2 uintptr, arg3 uintptr, arg4 uintptr, arg5 uintptr) (err error)
diff --git a/vendor/golang.org/x/sys/unix/syscall_openbsd.go b/vendor/golang.org/x/sys/unix/syscall_openbsd.go
index 387e1cfcf9..614fcf0494 100644
--- a/vendor/golang.org/x/sys/unix/syscall_openbsd.go
+++ b/vendor/golang.org/x/sys/unix/syscall_openbsd.go
@@ -222,6 +222,7 @@ func Uname(uname *Utsname) error {
 //sysnb	Getppid() (ppid int)
 //sys	Getpriority(which int, who int) (prio int, err error)
 //sysnb	Getrlimit(which int, lim *Rlimit) (err error)
+//sysnb	Getrtable() (rtable int, err error)
 //sysnb	Getrusage(who int, rusage *Rusage) (err error)
 //sysnb	Getsid(pid int) (sid int, err error)
 //sysnb	Gettimeofday(tv *Timeval) (err error)
@@ -259,6 +260,7 @@ func Uname(uname *Utsname) error {
 //sysnb	Setresgid(rgid int, egid int, sgid int) (err error)
 //sysnb	Setresuid(ruid int, euid int, suid int) (err error)
 //sysnb	Setrlimit(which int, lim *Rlimit) (err error)
+//sysnb	Setrtable(rtable int) (err error)
 //sysnb	Setsid() (pid int, err error)
 //sysnb	Settimeofday(tp *Timeval) (err error)
 //sysnb	Setuid(uid int) (err error)
@@ -307,7 +309,6 @@ func Uname(uname *Utsname) error {
 // getlogin
 // getresgid
 // getresuid
-// getrtable
 // getthrid
 // ktrace
 // lfs_bmapv
@@ -343,7 +344,6 @@ func Uname(uname *Utsname) error {
 // semop
 // setgroups
 // setitimer
-// setrtable
 // setsockopt
 // shmat
 // shmctl
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_386.go b/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
index 68de61b8c3..51454e1e1c 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1560,6 +1601,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -1944,6 +1999,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
index a5748ae9e9..c3bad0caf4 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1561,6 +1602,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -1945,6 +2000,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go b/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
index 6d9fc7e943..8218df140c 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1568,6 +1609,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -1952,6 +2007,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
index 0253ba34fd..5ce50c5c5e 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
@@ -447,6 +447,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -545,6 +546,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1551,6 +1592,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -1935,6 +1990,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
index 4cef12d8e7..6cfe618733 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1562,6 +1603,20 @@ const (
 	SIOCSPGRP                            = 0x80047308
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x1
@@ -1949,6 +2004,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
index 4782b3efb6..bad6332a69 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1562,6 +1603,20 @@ const (
 	SIOCSPGRP                            = 0x80047308
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x1
@@ -1949,6 +2004,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
index 86eb3063cd..af30fde793 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1562,6 +1603,20 @@ const (
 	SIOCSPGRP                            = 0x80047308
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x1
@@ -1949,6 +2004,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
index 2168ece949..db3baed92f 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1562,6 +1603,20 @@ const (
 	SIOCSPGRP                            = 0x80047308
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x1
@@ -1949,6 +2004,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
index 18e48b4f2b..2d74bd48fa 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x4000
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x100
@@ -1618,6 +1659,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -2006,6 +2061,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
index c069f8fabc..822f94ba21 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x4000
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x100
@@ -1618,6 +1659,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -2006,6 +2061,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go b/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
index e3f0e27e27..beb9aa3158 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
@@ -446,6 +446,7 @@ const (
 	ETH_P_WCCP                           = 0x883e
 	ETH_P_X25                            = 0x805
 	ETH_P_XDSA                           = 0xf8
+	EXABYTE_ENABLE_NEST                  = 0xf0
 	EXTA                                 = 0xe
 	EXTB                                 = 0xf
 	EXTPROC                              = 0x10000
@@ -543,6 +544,46 @@ const (
 	GENL_UNS_ADMIN_PERM                  = 0x10
 	GRND_NONBLOCK                        = 0x1
 	GRND_RANDOM                          = 0x2
+	HDIO_DRIVE_CMD                       = 0x31f
+	HDIO_DRIVE_CMD_AEB                   = 0x31e
+	HDIO_DRIVE_CMD_HDR_SIZE              = 0x4
+	HDIO_DRIVE_HOB_HDR_SIZE              = 0x8
+	HDIO_DRIVE_RESET                     = 0x31c
+	HDIO_DRIVE_TASK                      = 0x31e
+	HDIO_DRIVE_TASKFILE                  = 0x31d
+	HDIO_DRIVE_TASK_HDR_SIZE             = 0x8
+	HDIO_GETGEO                          = 0x301
+	HDIO_GET_32BIT                       = 0x309
+	HDIO_GET_ACOUSTIC                    = 0x30f
+	HDIO_GET_ADDRESS                     = 0x310
+	HDIO_GET_BUSSTATE                    = 0x31a
+	HDIO_GET_DMA                         = 0x30b
+	HDIO_GET_IDENTITY                    = 0x30d
+	HDIO_GET_KEEPSETTINGS                = 0x308
+	HDIO_GET_MULTCOUNT                   = 0x304
+	HDIO_GET_NICE                        = 0x30c
+	HDIO_GET_NOWERR                      = 0x30a
+	HDIO_GET_QDMA                        = 0x305
+	HDIO_GET_UNMASKINTR                  = 0x302
+	HDIO_GET_WCACHE                      = 0x30e
+	HDIO_OBSOLETE_IDENTITY               = 0x307
+	HDIO_SCAN_HWIF                       = 0x328
+	HDIO_SET_32BIT                       = 0x324
+	HDIO_SET_ACOUSTIC                    = 0x32c
+	HDIO_SET_ADDRESS                     = 0x32f
+	HDIO_SET_BUSSTATE                    = 0x32d
+	HDIO_SET_DMA                         = 0x326
+	HDIO_SET_KEEPSETTINGS                = 0x323
+	HDIO_SET_MULTCOUNT                   = 0x321
+	HDIO_SET_NICE                        = 0x329
+	HDIO_SET_NOWERR                      = 0x325
+	HDIO_SET_PIO_MODE                    = 0x327
+	HDIO_SET_QDMA                        = 0x32e
+	HDIO_SET_UNMASKINTR                  = 0x322
+	HDIO_SET_WCACHE                      = 0x32b
+	HDIO_SET_XFER                        = 0x306
+	HDIO_TRISTATE_HWIF                   = 0x31b
+	HDIO_UNREGISTER_HWIF                 = 0x32a
 	HUPCL                                = 0x400
 	IBSHIFT                              = 0x10
 	ICANON                               = 0x2
@@ -1622,6 +1663,20 @@ const (
 	SIOCSPGRP                            = 0x8902
 	SIOCSRARP                            = 0x8962
 	SIOCWANDEV                           = 0x894a
+	SMART_AUTOSAVE                       = 0xd2
+	SMART_AUTO_OFFLINE                   = 0xdb
+	SMART_DISABLE                        = 0xd9
+	SMART_ENABLE                         = 0xd8
+	SMART_HCYL_PASS                      = 0xc2
+	SMART_IMMEDIATE_OFFLINE              = 0xd4
+	SMART_LCYL_PASS                      = 0x4f
+	SMART_READ_LOG_SECTOR                = 0xd5
+	SMART_READ_THRESHOLDS                = 0xd1
+	SMART_READ_VALUES                    = 0xd0
+	SMART_SAVE                           = 0xd3
+	SMART_STATUS                         = 0xda
+	SMART_WRITE_LOG_SECTOR               = 0xd6
+	SMART_WRITE_THRESHOLDS               = 0xd7
 	SOCK_CLOEXEC                         = 0x80000
 	SOCK_DCCP                            = 0x6
 	SOCK_DGRAM                           = 0x2
@@ -2006,6 +2061,86 @@ const (
 	WDIOC_SETPRETIMEOUT                  = 0xc0045708
 	WDIOC_SETTIMEOUT                     = 0xc0045706
 	WEXITED                              = 0x4
+	WIN_ACKMEDIACHANGE                   = 0xdb
+	WIN_CHECKPOWERMODE1                  = 0xe5
+	WIN_CHECKPOWERMODE2                  = 0x98
+	WIN_DEVICE_RESET                     = 0x8
+	WIN_DIAGNOSE                         = 0x90
+	WIN_DOORLOCK                         = 0xde
+	WIN_DOORUNLOCK                       = 0xdf
+	WIN_DOWNLOAD_MICROCODE               = 0x92
+	WIN_FLUSH_CACHE                      = 0xe7
+	WIN_FLUSH_CACHE_EXT                  = 0xea
+	WIN_FORMAT                           = 0x50
+	WIN_GETMEDIASTATUS                   = 0xda
+	WIN_IDENTIFY                         = 0xec
+	WIN_IDENTIFY_DMA                     = 0xee
+	WIN_IDLEIMMEDIATE                    = 0xe1
+	WIN_INIT                             = 0x60
+	WIN_MEDIAEJECT                       = 0xed
+	WIN_MULTREAD                         = 0xc4
+	WIN_MULTREAD_EXT                     = 0x29
+	WIN_MULTWRITE                        = 0xc5
+	WIN_MULTWRITE_EXT                    = 0x39
+	WIN_NOP                              = 0x0
+	WIN_PACKETCMD                        = 0xa0
+	WIN_PIDENTIFY                        = 0xa1
+	WIN_POSTBOOT                         = 0xdc
+	WIN_PREBOOT                          = 0xdd
+	WIN_QUEUED_SERVICE                   = 0xa2
+	WIN_READ                             = 0x20
+	WIN_READDMA                          = 0xc8
+	WIN_READDMA_EXT                      = 0x25
+	WIN_READDMA_ONCE                     = 0xc9
+	WIN_READDMA_QUEUED                   = 0xc7
+	WIN_READDMA_QUEUED_EXT               = 0x26
+	WIN_READ_BUFFER                      = 0xe4
+	WIN_READ_EXT                         = 0x24
+	WIN_READ_LONG                        = 0x22
+	WIN_READ_LONG_ONCE                   = 0x23
+	WIN_READ_NATIVE_MAX                  = 0xf8
+	WIN_READ_NATIVE_MAX_EXT              = 0x27
+	WIN_READ_ONCE                        = 0x21
+	WIN_RECAL                            = 0x10
+	WIN_RESTORE                          = 0x10
+	WIN_SECURITY_DISABLE                 = 0xf6
+	WIN_SECURITY_ERASE_PREPARE           = 0xf3
+	WIN_SECURITY_ERASE_UNIT              = 0xf4
+	WIN_SECURITY_FREEZE_LOCK             = 0xf5
+	WIN_SECURITY_SET_PASS                = 0xf1
+	WIN_SECURITY_UNLOCK                  = 0xf2
+	WIN_SEEK                             = 0x70
+	WIN_SETFEATURES                      = 0xef
+	WIN_SETIDLE1                         = 0xe3
+	WIN_SETIDLE2                         = 0x97
+	WIN_SETMULT                          = 0xc6
+	WIN_SET_MAX                          = 0xf9
+	WIN_SET_MAX_EXT                      = 0x37
+	WIN_SLEEPNOW1                        = 0xe6
+	WIN_SLEEPNOW2                        = 0x99
+	WIN_SMART                            = 0xb0
+	WIN_SPECIFY                          = 0x91
+	WIN_SRST                             = 0x8
+	WIN_STANDBY                          = 0xe2
+	WIN_STANDBY2                         = 0x96
+	WIN_STANDBYNOW1                      = 0xe0
+	WIN_STANDBYNOW2                      = 0x94
+	WIN_VERIFY                           = 0x40
+	WIN_VERIFY_EXT                       = 0x42
+	WIN_VERIFY_ONCE                      = 0x41
+	WIN_WRITE                            = 0x30
+	WIN_WRITEDMA                         = 0xca
+	WIN_WRITEDMA_EXT                     = 0x35
+	WIN_WRITEDMA_ONCE                    = 0xcb
+	WIN_WRITEDMA_QUEUED                  = 0xcc
+	WIN_WRITEDMA_QUEUED_EXT              = 0x36
+	WIN_WRITE_BUFFER                     = 0xe8
+	WIN_WRITE_EXT                        = 0x34
+	WIN_WRITE_LONG                       = 0x32
+	WIN_WRITE_LONG_ONCE                  = 0x33
+	WIN_WRITE_ONCE                       = 0x31
+	WIN_WRITE_SAME                       = 0xe9
+	WIN_WRITE_VERIFY                     = 0x3c
 	WNOHANG                              = 0x1
 	WNOTHREAD                            = 0x20000000
 	WNOWAIT                              = 0x1000000
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_386.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_386.go
index ef9602c1eb..433becfd02 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_386.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_386.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
index 63054b3585..34c5be0fe5 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_arm.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_arm.go
index 8b10ee1445..f91b56c217 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_arm.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_arm.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_arm64.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_arm64.go
index 8c9e26a0a1..52d7595250 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_arm64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_arm64.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
index 8dc2b58f58..bfd415b34d 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64.go
index e8beef850c..b989d0f282 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64le.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64le.go
index 899e4403a9..1f8d14cacc 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64le.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips64le.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
index 7a477cbdea..93c1dc2317 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64.go
index 9dc4c7d6d4..3bb9a20992 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64le.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64le.go
index f0d1ee125c..56116623d6 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64le.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_ppc64le.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_s390x.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_s390x.go
index c443baf63f..9696a0199d 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_s390x.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_s390x.go
@@ -995,6 +995,17 @@ func Nanosleep(time *Timespec, leftover *Timespec) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func PerfEventOpen(attr *PerfEventAttr, pid int, cpu int, groupFd int, flags int) (fd int, err error) {
+	r0, _, e1 := Syscall6(SYS_PERF_EVENT_OPEN, uintptr(unsafe.Pointer(attr)), uintptr(pid), uintptr(cpu), uintptr(groupFd), uintptr(flags), 0)
+	fd = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func PivotRoot(newroot string, putold string) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(newroot)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_386.go b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_386.go
index 5c09c07587..49b3b5e8a4 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_386.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_386.go
@@ -780,6 +780,17 @@ func Getrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Getrtable() (rtable int, err error) {
+	r0, _, e1 := RawSyscall(SYS_GETRTABLE, 0, 0, 0)
+	rtable = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Getrusage(who int, rusage *Rusage) (err error) {
 	_, _, e1 := RawSyscall(SYS_GETRUSAGE, uintptr(who), uintptr(unsafe.Pointer(rusage)), 0)
 	if e1 != 0 {
@@ -1254,6 +1265,16 @@ func Setrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Setrtable(rtable int) (err error) {
+	_, _, e1 := RawSyscall(SYS_SETRTABLE, uintptr(rtable), 0, 0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Setsid() (pid int, err error) {
 	r0, _, e1 := RawSyscall(SYS_SETSID, 0, 0, 0)
 	pid = int(r0)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_amd64.go b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_amd64.go
index 54ccc935d4..c4c7d8540c 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_amd64.go
@@ -780,6 +780,17 @@ func Getrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Getrtable() (rtable int, err error) {
+	r0, _, e1 := RawSyscall(SYS_GETRTABLE, 0, 0, 0)
+	rtable = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Getrusage(who int, rusage *Rusage) (err error) {
 	_, _, e1 := RawSyscall(SYS_GETRUSAGE, uintptr(who), uintptr(unsafe.Pointer(rusage)), 0)
 	if e1 != 0 {
@@ -1254,6 +1265,16 @@ func Setrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Setrtable(rtable int) (err error) {
+	_, _, e1 := RawSyscall(SYS_SETRTABLE, uintptr(rtable), 0, 0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Setsid() (pid int, err error) {
 	r0, _, e1 := RawSyscall(SYS_SETSID, 0, 0, 0)
 	pid = int(r0)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_arm.go b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_arm.go
index 59258b0a45..210285b0ba 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_openbsd_arm.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_openbsd_arm.go
@@ -780,6 +780,17 @@ func Getrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Getrtable() (rtable int, err error) {
+	r0, _, e1 := RawSyscall(SYS_GETRTABLE, 0, 0, 0)
+	rtable = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Getrusage(who int, rusage *Rusage) (err error) {
 	_, _, e1 := RawSyscall(SYS_GETRUSAGE, uintptr(who), uintptr(unsafe.Pointer(rusage)), 0)
 	if e1 != 0 {
@@ -1254,6 +1265,16 @@ func Setrlimit(which int, lim *Rlimit) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
+func Setrtable(rtable int) (err error) {
+	_, _, e1 := RawSyscall(SYS_SETRTABLE, uintptr(rtable), 0, 0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
 func Setsid() (pid int, err error) {
 	r0, _, e1 := RawSyscall(SYS_SETSID, 0, 0, 0)
 	pid = int(r0)
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_386.go b/vendor/golang.org/x/sys/unix/ztypes_linux_386.go
index 3c56b20762..a805313f2c 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_386.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_386.go
@@ -96,24 +96,24 @@ type Rlimit struct {
 type _Gid_t uint32
 
 type Stat_t struct {
-	Dev       uint64
-	X__pad1   uint16
-	_         [2]byte
-	X__st_ino uint32
-	Mode      uint32
-	Nlink     uint32
-	Uid       uint32
-	Gid       uint32
-	Rdev      uint64
-	X__pad2   uint16
-	_         [2]byte
-	Size      int64
-	Blksize   int32
-	Blocks    int64
-	Atim      Timespec
-	Mtim      Timespec
-	Ctim      Timespec
-	Ino       uint64
+	Dev     uint64
+	_       uint16
+	_       [2]byte
+	_       uint32
+	Mode    uint32
+	Nlink   uint32
+	Uid     uint32
+	Gid     uint32
+	Rdev    uint64
+	_       uint16
+	_       [2]byte
+	Size    int64
+	Blksize int32
+	Blocks  int64
+	Atim    Timespec
+	Mtim    Timespec
+	Ctim    Timespec
+	Ino     uint64
 }
 
 type Statfs_t struct {
@@ -132,9 +132,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -171,7 +171,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -583,12 +583,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -683,7 +683,7 @@ type Sysinfo_t struct {
 	Totalhigh uint32
 	Freehigh  uint32
 	Unit      uint32
-	X_f       [8]int8
+	_         [8]int8
 }
 
 type Utsname struct {
@@ -739,7 +739,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [32]uint32
+	Val [32]uint32
 }
 
 const RNDGETENTCNT = 0x80045200
@@ -895,3 +895,352 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [122]int8
+	_      uint32
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	Start     uint32
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_amd64.go b/vendor/golang.org/x/sys/unix/ztypes_linux_amd64.go
index 92f1c8fe4d..98aa92371b 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_amd64.go
@@ -105,7 +105,7 @@ type Stat_t struct {
 	Mode    uint32
 	Uid     uint32
 	Gid     uint32
-	X__pad0 int32
+	_       int32
 	Rdev    uint64
 	Size    int64
 	Blksize int64
@@ -132,9 +132,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -171,7 +171,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -587,12 +587,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -698,7 +698,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]int8
+	_         [0]int8
 	_         [4]byte
 }
 
@@ -757,7 +757,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x80045200
@@ -913,3 +913,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]int8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_arm.go b/vendor/golang.org/x/sys/unix/ztypes_linux_arm.go
index cee5459ac1..ead8f252ec 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_arm.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_arm.go
@@ -96,25 +96,25 @@ type Rlimit struct {
 type _Gid_t uint32
 
 type Stat_t struct {
-	Dev       uint64
-	X__pad1   uint16
-	_         [2]byte
-	X__st_ino uint32
-	Mode      uint32
-	Nlink     uint32
-	Uid       uint32
-	Gid       uint32
-	Rdev      uint64
-	X__pad2   uint16
-	_         [6]byte
-	Size      int64
-	Blksize   int32
-	_         [4]byte
-	Blocks    int64
-	Atim      Timespec
-	Mtim      Timespec
-	Ctim      Timespec
-	Ino       uint64
+	Dev     uint64
+	_       uint16
+	_       [2]byte
+	_       uint32
+	Mode    uint32
+	Nlink   uint32
+	Uid     uint32
+	Gid     uint32
+	Rdev    uint64
+	_       uint16
+	_       [6]byte
+	Size    int64
+	Blksize int32
+	_       [4]byte
+	Blocks  int64
+	Atim    Timespec
+	Mtim    Timespec
+	Ctim    Timespec
+	Ino     uint64
 }
 
 type Statfs_t struct {
@@ -134,9 +134,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -173,7 +173,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -587,12 +587,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -671,7 +671,7 @@ type Sysinfo_t struct {
 	Totalhigh uint32
 	Freehigh  uint32
 	Unit      uint32
-	X_f       [8]uint8
+	_         [8]uint8
 }
 
 type Utsname struct {
@@ -728,7 +728,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [32]uint32
+	Val [32]uint32
 }
 
 const RNDGETENTCNT = 0x80045200
@@ -884,3 +884,352 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [122]uint8
+	_      uint32
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	Start     uint32
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_arm64.go b/vendor/golang.org/x/sys/unix/ztypes_linux_arm64.go
index 5ce7cfe835..8c32c3bff0 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_arm64.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_arm64.go
@@ -106,10 +106,10 @@ type Stat_t struct {
 	Uid     uint32
 	Gid     uint32
 	Rdev    uint64
-	X__pad1 uint64
+	_       uint64
 	Size    int64
 	Blksize int32
-	X__pad2 int32
+	_       int32
 	Blocks  int64
 	Atim    Timespec
 	Mtim    Timespec
@@ -133,9 +133,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -588,12 +588,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -676,7 +676,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]int8
+	_         [0]int8
 	_         [4]byte
 }
 
@@ -736,7 +736,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x80045200
@@ -892,3 +892,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]int8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_mips.go b/vendor/golang.org/x/sys/unix/ztypes_linux_mips.go
index 2860b3e284..af291d948b 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_mips.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_mips.go
@@ -133,9 +133,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -586,12 +586,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -676,7 +676,7 @@ type Sysinfo_t struct {
 	Totalhigh uint32
 	Freehigh  uint32
 	Unit      uint32
-	X_f       [8]int8
+	_         [8]int8
 }
 
 type Utsname struct {
@@ -733,7 +733,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [32]uint32
+	Val [32]uint32
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -889,3 +889,352 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x8000000000000000
+	CBitFieldMaskBit1  = 0x4000000000000000
+	CBitFieldMaskBit2  = 0x2000000000000000
+	CBitFieldMaskBit3  = 0x1000000000000000
+	CBitFieldMaskBit4  = 0x800000000000000
+	CBitFieldMaskBit5  = 0x400000000000000
+	CBitFieldMaskBit6  = 0x200000000000000
+	CBitFieldMaskBit7  = 0x100000000000000
+	CBitFieldMaskBit8  = 0x80000000000000
+	CBitFieldMaskBit9  = 0x40000000000000
+	CBitFieldMaskBit10 = 0x20000000000000
+	CBitFieldMaskBit11 = 0x10000000000000
+	CBitFieldMaskBit12 = 0x8000000000000
+	CBitFieldMaskBit13 = 0x4000000000000
+	CBitFieldMaskBit14 = 0x2000000000000
+	CBitFieldMaskBit15 = 0x1000000000000
+	CBitFieldMaskBit16 = 0x800000000000
+	CBitFieldMaskBit17 = 0x400000000000
+	CBitFieldMaskBit18 = 0x200000000000
+	CBitFieldMaskBit19 = 0x100000000000
+	CBitFieldMaskBit20 = 0x80000000000
+	CBitFieldMaskBit21 = 0x40000000000
+	CBitFieldMaskBit22 = 0x20000000000
+	CBitFieldMaskBit23 = 0x10000000000
+	CBitFieldMaskBit24 = 0x8000000000
+	CBitFieldMaskBit25 = 0x4000000000
+	CBitFieldMaskBit26 = 0x2000000000
+	CBitFieldMaskBit27 = 0x1000000000
+	CBitFieldMaskBit28 = 0x800000000
+	CBitFieldMaskBit29 = 0x400000000
+	CBitFieldMaskBit30 = 0x200000000
+	CBitFieldMaskBit31 = 0x100000000
+	CBitFieldMaskBit32 = 0x80000000
+	CBitFieldMaskBit33 = 0x40000000
+	CBitFieldMaskBit34 = 0x20000000
+	CBitFieldMaskBit35 = 0x10000000
+	CBitFieldMaskBit36 = 0x8000000
+	CBitFieldMaskBit37 = 0x4000000
+	CBitFieldMaskBit38 = 0x2000000
+	CBitFieldMaskBit39 = 0x1000000
+	CBitFieldMaskBit40 = 0x800000
+	CBitFieldMaskBit41 = 0x400000
+	CBitFieldMaskBit42 = 0x200000
+	CBitFieldMaskBit43 = 0x100000
+	CBitFieldMaskBit44 = 0x80000
+	CBitFieldMaskBit45 = 0x40000
+	CBitFieldMaskBit46 = 0x20000
+	CBitFieldMaskBit47 = 0x10000
+	CBitFieldMaskBit48 = 0x8000
+	CBitFieldMaskBit49 = 0x4000
+	CBitFieldMaskBit50 = 0x2000
+	CBitFieldMaskBit51 = 0x1000
+	CBitFieldMaskBit52 = 0x800
+	CBitFieldMaskBit53 = 0x400
+	CBitFieldMaskBit54 = 0x200
+	CBitFieldMaskBit55 = 0x100
+	CBitFieldMaskBit56 = 0x80
+	CBitFieldMaskBit57 = 0x40
+	CBitFieldMaskBit58 = 0x20
+	CBitFieldMaskBit59 = 0x10
+	CBitFieldMaskBit60 = 0x8
+	CBitFieldMaskBit61 = 0x4
+	CBitFieldMaskBit62 = 0x2
+	CBitFieldMaskBit63 = 0x1
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [122]int8
+	_      uint32
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	Start     uint32
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_mips64.go b/vendor/golang.org/x/sys/unix/ztypes_linux_mips64.go
index 17b881cab2..324ee16fcf 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_mips64.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_mips64.go
@@ -133,9 +133,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -588,12 +588,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -679,7 +679,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]int8
+	_         [0]int8
 	_         [4]byte
 }
 
@@ -738,7 +738,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -894,3 +894,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x8000000000000000
+	CBitFieldMaskBit1  = 0x4000000000000000
+	CBitFieldMaskBit2  = 0x2000000000000000
+	CBitFieldMaskBit3  = 0x1000000000000000
+	CBitFieldMaskBit4  = 0x800000000000000
+	CBitFieldMaskBit5  = 0x400000000000000
+	CBitFieldMaskBit6  = 0x200000000000000
+	CBitFieldMaskBit7  = 0x100000000000000
+	CBitFieldMaskBit8  = 0x80000000000000
+	CBitFieldMaskBit9  = 0x40000000000000
+	CBitFieldMaskBit10 = 0x20000000000000
+	CBitFieldMaskBit11 = 0x10000000000000
+	CBitFieldMaskBit12 = 0x8000000000000
+	CBitFieldMaskBit13 = 0x4000000000000
+	CBitFieldMaskBit14 = 0x2000000000000
+	CBitFieldMaskBit15 = 0x1000000000000
+	CBitFieldMaskBit16 = 0x800000000000
+	CBitFieldMaskBit17 = 0x400000000000
+	CBitFieldMaskBit18 = 0x200000000000
+	CBitFieldMaskBit19 = 0x100000000000
+	CBitFieldMaskBit20 = 0x80000000000
+	CBitFieldMaskBit21 = 0x40000000000
+	CBitFieldMaskBit22 = 0x20000000000
+	CBitFieldMaskBit23 = 0x10000000000
+	CBitFieldMaskBit24 = 0x8000000000
+	CBitFieldMaskBit25 = 0x4000000000
+	CBitFieldMaskBit26 = 0x2000000000
+	CBitFieldMaskBit27 = 0x1000000000
+	CBitFieldMaskBit28 = 0x800000000
+	CBitFieldMaskBit29 = 0x400000000
+	CBitFieldMaskBit30 = 0x200000000
+	CBitFieldMaskBit31 = 0x100000000
+	CBitFieldMaskBit32 = 0x80000000
+	CBitFieldMaskBit33 = 0x40000000
+	CBitFieldMaskBit34 = 0x20000000
+	CBitFieldMaskBit35 = 0x10000000
+	CBitFieldMaskBit36 = 0x8000000
+	CBitFieldMaskBit37 = 0x4000000
+	CBitFieldMaskBit38 = 0x2000000
+	CBitFieldMaskBit39 = 0x1000000
+	CBitFieldMaskBit40 = 0x800000
+	CBitFieldMaskBit41 = 0x400000
+	CBitFieldMaskBit42 = 0x200000
+	CBitFieldMaskBit43 = 0x100000
+	CBitFieldMaskBit44 = 0x80000
+	CBitFieldMaskBit45 = 0x40000
+	CBitFieldMaskBit46 = 0x20000
+	CBitFieldMaskBit47 = 0x10000
+	CBitFieldMaskBit48 = 0x8000
+	CBitFieldMaskBit49 = 0x4000
+	CBitFieldMaskBit50 = 0x2000
+	CBitFieldMaskBit51 = 0x1000
+	CBitFieldMaskBit52 = 0x800
+	CBitFieldMaskBit53 = 0x400
+	CBitFieldMaskBit54 = 0x200
+	CBitFieldMaskBit55 = 0x100
+	CBitFieldMaskBit56 = 0x80
+	CBitFieldMaskBit57 = 0x40
+	CBitFieldMaskBit58 = 0x20
+	CBitFieldMaskBit59 = 0x10
+	CBitFieldMaskBit60 = 0x8
+	CBitFieldMaskBit61 = 0x4
+	CBitFieldMaskBit62 = 0x2
+	CBitFieldMaskBit63 = 0x1
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]int8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_mips64le.go b/vendor/golang.org/x/sys/unix/ztypes_linux_mips64le.go
index ec802dc892..08849df80a 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_mips64le.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_mips64le.go
@@ -133,9 +133,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -588,12 +588,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -679,7 +679,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]int8
+	_         [0]int8
 	_         [4]byte
 }
 
@@ -738,7 +738,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -894,3 +894,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]int8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_mipsle.go b/vendor/golang.org/x/sys/unix/ztypes_linux_mipsle.go
index 4a99648510..3682beb6ce 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_mipsle.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_mipsle.go
@@ -133,9 +133,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -586,12 +586,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -676,7 +676,7 @@ type Sysinfo_t struct {
 	Totalhigh uint32
 	Freehigh  uint32
 	Unit      uint32
-	X_f       [8]int8
+	_         [8]int8
 }
 
 type Utsname struct {
@@ -733,7 +733,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [32]uint32
+	Val [32]uint32
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -889,3 +889,352 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [122]int8
+	_      uint32
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	Start     uint32
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64.go b/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64.go
index 63a0dbe94e..bfa39ec9ce 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64.go
@@ -105,7 +105,7 @@ type Stat_t struct {
 	Mode    uint32
 	Uid     uint32
 	Gid     uint32
-	X__pad2 int32
+	_       int32
 	Rdev    uint64
 	Size    int64
 	Blksize int64
@@ -134,9 +134,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -173,7 +173,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -589,12 +589,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -686,7 +686,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]uint8
+	_         [0]uint8
 	_         [4]byte
 }
 
@@ -709,10 +709,10 @@ type Ustat_t struct {
 }
 
 type EpollEvent struct {
-	Events  uint32
-	X_padFd int32
-	Fd      int32
-	Pad     int32
+	Events uint32
+	_      int32
+	Fd     int32
+	Pad    int32
 }
 
 const (
@@ -746,7 +746,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -902,3 +902,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x8000000000000000
+	CBitFieldMaskBit1  = 0x4000000000000000
+	CBitFieldMaskBit2  = 0x2000000000000000
+	CBitFieldMaskBit3  = 0x1000000000000000
+	CBitFieldMaskBit4  = 0x800000000000000
+	CBitFieldMaskBit5  = 0x400000000000000
+	CBitFieldMaskBit6  = 0x200000000000000
+	CBitFieldMaskBit7  = 0x100000000000000
+	CBitFieldMaskBit8  = 0x80000000000000
+	CBitFieldMaskBit9  = 0x40000000000000
+	CBitFieldMaskBit10 = 0x20000000000000
+	CBitFieldMaskBit11 = 0x10000000000000
+	CBitFieldMaskBit12 = 0x8000000000000
+	CBitFieldMaskBit13 = 0x4000000000000
+	CBitFieldMaskBit14 = 0x2000000000000
+	CBitFieldMaskBit15 = 0x1000000000000
+	CBitFieldMaskBit16 = 0x800000000000
+	CBitFieldMaskBit17 = 0x400000000000
+	CBitFieldMaskBit18 = 0x200000000000
+	CBitFieldMaskBit19 = 0x100000000000
+	CBitFieldMaskBit20 = 0x80000000000
+	CBitFieldMaskBit21 = 0x40000000000
+	CBitFieldMaskBit22 = 0x20000000000
+	CBitFieldMaskBit23 = 0x10000000000
+	CBitFieldMaskBit24 = 0x8000000000
+	CBitFieldMaskBit25 = 0x4000000000
+	CBitFieldMaskBit26 = 0x2000000000
+	CBitFieldMaskBit27 = 0x1000000000
+	CBitFieldMaskBit28 = 0x800000000
+	CBitFieldMaskBit29 = 0x400000000
+	CBitFieldMaskBit30 = 0x200000000
+	CBitFieldMaskBit31 = 0x100000000
+	CBitFieldMaskBit32 = 0x80000000
+	CBitFieldMaskBit33 = 0x40000000
+	CBitFieldMaskBit34 = 0x20000000
+	CBitFieldMaskBit35 = 0x10000000
+	CBitFieldMaskBit36 = 0x8000000
+	CBitFieldMaskBit37 = 0x4000000
+	CBitFieldMaskBit38 = 0x2000000
+	CBitFieldMaskBit39 = 0x1000000
+	CBitFieldMaskBit40 = 0x800000
+	CBitFieldMaskBit41 = 0x400000
+	CBitFieldMaskBit42 = 0x200000
+	CBitFieldMaskBit43 = 0x100000
+	CBitFieldMaskBit44 = 0x80000
+	CBitFieldMaskBit45 = 0x40000
+	CBitFieldMaskBit46 = 0x20000
+	CBitFieldMaskBit47 = 0x10000
+	CBitFieldMaskBit48 = 0x8000
+	CBitFieldMaskBit49 = 0x4000
+	CBitFieldMaskBit50 = 0x2000
+	CBitFieldMaskBit51 = 0x1000
+	CBitFieldMaskBit52 = 0x800
+	CBitFieldMaskBit53 = 0x400
+	CBitFieldMaskBit54 = 0x200
+	CBitFieldMaskBit55 = 0x100
+	CBitFieldMaskBit56 = 0x80
+	CBitFieldMaskBit57 = 0x40
+	CBitFieldMaskBit58 = 0x20
+	CBitFieldMaskBit59 = 0x10
+	CBitFieldMaskBit60 = 0x8
+	CBitFieldMaskBit61 = 0x4
+	CBitFieldMaskBit62 = 0x2
+	CBitFieldMaskBit63 = 0x1
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]uint8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64le.go b/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64le.go
index f20a63591b..72eab3d832 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64le.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_ppc64le.go
@@ -105,7 +105,7 @@ type Stat_t struct {
 	Mode    uint32
 	Uid     uint32
 	Gid     uint32
-	X__pad2 int32
+	_       int32
 	Rdev    uint64
 	Size    int64
 	Blksize int64
@@ -134,9 +134,9 @@ type Statfs_t struct {
 }
 
 type StatxTimestamp struct {
-	Sec         int64
-	Nsec        uint32
-	X__reserved int32
+	Sec  int64
+	Nsec uint32
+	_    int32
 }
 
 type Statx_t struct {
@@ -173,7 +173,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	X__val [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -589,12 +589,12 @@ type RtAttr struct {
 }
 
 type IfInfomsg struct {
-	Family     uint8
-	X__ifi_pad uint8
-	Type       uint16
-	Index      int32
-	Flags      uint32
-	Change     uint32
+	Family uint8
+	_      uint8
+	Type   uint16
+	Index  int32
+	Flags  uint32
+	Change uint32
 }
 
 type IfAddrmsg struct {
@@ -686,7 +686,7 @@ type Sysinfo_t struct {
 	Totalhigh uint64
 	Freehigh  uint64
 	Unit      uint32
-	X_f       [0]uint8
+	_         [0]uint8
 	_         [4]byte
 }
 
@@ -709,10 +709,10 @@ type Ustat_t struct {
 }
 
 type EpollEvent struct {
-	Events  uint32
-	X_padFd int32
-	Fd      int32
-	Pad     int32
+	Events uint32
+	_      int32
+	Fd     int32
+	Pad    int32
 }
 
 const (
@@ -746,7 +746,7 @@ const (
 )
 
 type Sigset_t struct {
-	X__val [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x40045200
@@ -902,3 +902,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x1
+	CBitFieldMaskBit1  = 0x2
+	CBitFieldMaskBit2  = 0x4
+	CBitFieldMaskBit3  = 0x8
+	CBitFieldMaskBit4  = 0x10
+	CBitFieldMaskBit5  = 0x20
+	CBitFieldMaskBit6  = 0x40
+	CBitFieldMaskBit7  = 0x80
+	CBitFieldMaskBit8  = 0x100
+	CBitFieldMaskBit9  = 0x200
+	CBitFieldMaskBit10 = 0x400
+	CBitFieldMaskBit11 = 0x800
+	CBitFieldMaskBit12 = 0x1000
+	CBitFieldMaskBit13 = 0x2000
+	CBitFieldMaskBit14 = 0x4000
+	CBitFieldMaskBit15 = 0x8000
+	CBitFieldMaskBit16 = 0x10000
+	CBitFieldMaskBit17 = 0x20000
+	CBitFieldMaskBit18 = 0x40000
+	CBitFieldMaskBit19 = 0x80000
+	CBitFieldMaskBit20 = 0x100000
+	CBitFieldMaskBit21 = 0x200000
+	CBitFieldMaskBit22 = 0x400000
+	CBitFieldMaskBit23 = 0x800000
+	CBitFieldMaskBit24 = 0x1000000
+	CBitFieldMaskBit25 = 0x2000000
+	CBitFieldMaskBit26 = 0x4000000
+	CBitFieldMaskBit27 = 0x8000000
+	CBitFieldMaskBit28 = 0x10000000
+	CBitFieldMaskBit29 = 0x20000000
+	CBitFieldMaskBit30 = 0x40000000
+	CBitFieldMaskBit31 = 0x80000000
+	CBitFieldMaskBit32 = 0x100000000
+	CBitFieldMaskBit33 = 0x200000000
+	CBitFieldMaskBit34 = 0x400000000
+	CBitFieldMaskBit35 = 0x800000000
+	CBitFieldMaskBit36 = 0x1000000000
+	CBitFieldMaskBit37 = 0x2000000000
+	CBitFieldMaskBit38 = 0x4000000000
+	CBitFieldMaskBit39 = 0x8000000000
+	CBitFieldMaskBit40 = 0x10000000000
+	CBitFieldMaskBit41 = 0x20000000000
+	CBitFieldMaskBit42 = 0x40000000000
+	CBitFieldMaskBit43 = 0x80000000000
+	CBitFieldMaskBit44 = 0x100000000000
+	CBitFieldMaskBit45 = 0x200000000000
+	CBitFieldMaskBit46 = 0x400000000000
+	CBitFieldMaskBit47 = 0x800000000000
+	CBitFieldMaskBit48 = 0x1000000000000
+	CBitFieldMaskBit49 = 0x2000000000000
+	CBitFieldMaskBit50 = 0x4000000000000
+	CBitFieldMaskBit51 = 0x8000000000000
+	CBitFieldMaskBit52 = 0x10000000000000
+	CBitFieldMaskBit53 = 0x20000000000000
+	CBitFieldMaskBit54 = 0x40000000000000
+	CBitFieldMaskBit55 = 0x80000000000000
+	CBitFieldMaskBit56 = 0x100000000000000
+	CBitFieldMaskBit57 = 0x200000000000000
+	CBitFieldMaskBit58 = 0x400000000000000
+	CBitFieldMaskBit59 = 0x800000000000000
+	CBitFieldMaskBit60 = 0x1000000000000000
+	CBitFieldMaskBit61 = 0x2000000000000000
+	CBitFieldMaskBit62 = 0x4000000000000000
+	CBitFieldMaskBit63 = 0x8000000000000000
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]uint8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}
diff --git a/vendor/golang.org/x/sys/unix/ztypes_linux_s390x.go b/vendor/golang.org/x/sys/unix/ztypes_linux_s390x.go
index 30dc10582f..c7935b760b 100644
--- a/vendor/golang.org/x/sys/unix/ztypes_linux_s390x.go
+++ b/vendor/golang.org/x/sys/unix/ztypes_linux_s390x.go
@@ -172,7 +172,7 @@ type Dirent struct {
 }
 
 type Fsid struct {
-	_ [2]int32
+	Val [2]int32
 }
 
 type Flock_t struct {
@@ -763,7 +763,7 @@ const (
 )
 
 type Sigset_t struct {
-	_ [16]uint64
+	Val [16]uint64
 }
 
 const RNDGETENTCNT = 0x80045200
@@ -919,3 +919,353 @@ const (
 	BDADDR_LE_PUBLIC = 0x1
 	BDADDR_LE_RANDOM = 0x2
 )
+
+type PerfEventAttr struct {
+	Type               uint32
+	Size               uint32
+	Config             uint64
+	Sample             uint64
+	Sample_type        uint64
+	Read_format        uint64
+	Bits               uint64
+	Wakeup             uint32
+	Bp_type            uint32
+	Ext1               uint64
+	Ext2               uint64
+	Branch_sample_type uint64
+	Sample_regs_user   uint64
+	Sample_stack_user  uint32
+	Clockid            int32
+	Sample_regs_intr   uint64
+	Aux_watermark      uint32
+	_                  uint32
+}
+
+type PerfEventMmapPage struct {
+	Version        uint32
+	Compat_version uint32
+	Lock           uint32
+	Index          uint32
+	Offset         int64
+	Time_enabled   uint64
+	Time_running   uint64
+	Capabilities   uint64
+	Pmc_width      uint16
+	Time_shift     uint16
+	Time_mult      uint32
+	Time_offset    uint64
+	Time_zero      uint64
+	Size           uint32
+	_              [948]uint8
+	Data_head      uint64
+	Data_tail      uint64
+	Data_offset    uint64
+	Data_size      uint64
+	Aux_head       uint64
+	Aux_tail       uint64
+	Aux_offset     uint64
+	Aux_size       uint64
+}
+
+const (
+	PerfBitDisabled               uint64 = CBitFieldMaskBit0
+	PerfBitInherit                       = CBitFieldMaskBit1
+	PerfBitPinned                        = CBitFieldMaskBit2
+	PerfBitExclusive                     = CBitFieldMaskBit3
+	PerfBitExcludeUser                   = CBitFieldMaskBit4
+	PerfBitExcludeKernel                 = CBitFieldMaskBit5
+	PerfBitExcludeHv                     = CBitFieldMaskBit6
+	PerfBitExcludeIdle                   = CBitFieldMaskBit7
+	PerfBitMmap                          = CBitFieldMaskBit8
+	PerfBitComm                          = CBitFieldMaskBit9
+	PerfBitFreq                          = CBitFieldMaskBit10
+	PerfBitInheritStat                   = CBitFieldMaskBit11
+	PerfBitEnableOnExec                  = CBitFieldMaskBit12
+	PerfBitTask                          = CBitFieldMaskBit13
+	PerfBitWatermark                     = CBitFieldMaskBit14
+	PerfBitPreciseIPBit1                 = CBitFieldMaskBit15
+	PerfBitPreciseIPBit2                 = CBitFieldMaskBit16
+	PerfBitMmapData                      = CBitFieldMaskBit17
+	PerfBitSampleIDAll                   = CBitFieldMaskBit18
+	PerfBitExcludeHost                   = CBitFieldMaskBit19
+	PerfBitExcludeGuest                  = CBitFieldMaskBit20
+	PerfBitExcludeCallchainKernel        = CBitFieldMaskBit21
+	PerfBitExcludeCallchainUser          = CBitFieldMaskBit22
+	PerfBitMmap2                         = CBitFieldMaskBit23
+	PerfBitCommExec                      = CBitFieldMaskBit24
+	PerfBitUseClockID                    = CBitFieldMaskBit25
+	PerfBitContextSwitch                 = CBitFieldMaskBit26
+)
+
+const (
+	PERF_TYPE_HARDWARE   = 0x0
+	PERF_TYPE_SOFTWARE   = 0x1
+	PERF_TYPE_TRACEPOINT = 0x2
+	PERF_TYPE_HW_CACHE   = 0x3
+	PERF_TYPE_RAW        = 0x4
+	PERF_TYPE_BREAKPOINT = 0x5
+
+	PERF_COUNT_HW_CPU_CYCLES              = 0x0
+	PERF_COUNT_HW_INSTRUCTIONS            = 0x1
+	PERF_COUNT_HW_CACHE_REFERENCES        = 0x2
+	PERF_COUNT_HW_CACHE_MISSES            = 0x3
+	PERF_COUNT_HW_BRANCH_INSTRUCTIONS     = 0x4
+	PERF_COUNT_HW_BRANCH_MISSES           = 0x5
+	PERF_COUNT_HW_BUS_CYCLES              = 0x6
+	PERF_COUNT_HW_STALLED_CYCLES_FRONTEND = 0x7
+	PERF_COUNT_HW_STALLED_CYCLES_BACKEND  = 0x8
+	PERF_COUNT_HW_REF_CPU_CYCLES          = 0x9
+
+	PERF_COUNT_HW_CACHE_L1D  = 0x0
+	PERF_COUNT_HW_CACHE_L1I  = 0x1
+	PERF_COUNT_HW_CACHE_LL   = 0x2
+	PERF_COUNT_HW_CACHE_DTLB = 0x3
+	PERF_COUNT_HW_CACHE_ITLB = 0x4
+	PERF_COUNT_HW_CACHE_BPU  = 0x5
+	PERF_COUNT_HW_CACHE_NODE = 0x6
+
+	PERF_COUNT_HW_CACHE_OP_READ     = 0x0
+	PERF_COUNT_HW_CACHE_OP_WRITE    = 0x1
+	PERF_COUNT_HW_CACHE_OP_PREFETCH = 0x2
+
+	PERF_COUNT_HW_CACHE_RESULT_ACCESS = 0x0
+	PERF_COUNT_HW_CACHE_RESULT_MISS   = 0x1
+
+	PERF_COUNT_SW_CPU_CLOCK        = 0x0
+	PERF_COUNT_SW_TASK_CLOCK       = 0x1
+	PERF_COUNT_SW_PAGE_FAULTS      = 0x2
+	PERF_COUNT_SW_CONTEXT_SWITCHES = 0x3
+	PERF_COUNT_SW_CPU_MIGRATIONS   = 0x4
+	PERF_COUNT_SW_PAGE_FAULTS_MIN  = 0x5
+	PERF_COUNT_SW_PAGE_FAULTS_MAJ  = 0x6
+	PERF_COUNT_SW_ALIGNMENT_FAULTS = 0x7
+	PERF_COUNT_SW_EMULATION_FAULTS = 0x8
+	PERF_COUNT_SW_DUMMY            = 0x9
+
+	PERF_SAMPLE_IP           = 0x1
+	PERF_SAMPLE_TID          = 0x2
+	PERF_SAMPLE_TIME         = 0x4
+	PERF_SAMPLE_ADDR         = 0x8
+	PERF_SAMPLE_READ         = 0x10
+	PERF_SAMPLE_CALLCHAIN    = 0x20
+	PERF_SAMPLE_ID           = 0x40
+	PERF_SAMPLE_CPU          = 0x80
+	PERF_SAMPLE_PERIOD       = 0x100
+	PERF_SAMPLE_STREAM_ID    = 0x200
+	PERF_SAMPLE_RAW          = 0x400
+	PERF_SAMPLE_BRANCH_STACK = 0x800
+
+	PERF_SAMPLE_BRANCH_USER       = 0x1
+	PERF_SAMPLE_BRANCH_KERNEL     = 0x2
+	PERF_SAMPLE_BRANCH_HV         = 0x4
+	PERF_SAMPLE_BRANCH_ANY        = 0x8
+	PERF_SAMPLE_BRANCH_ANY_CALL   = 0x10
+	PERF_SAMPLE_BRANCH_ANY_RETURN = 0x20
+	PERF_SAMPLE_BRANCH_IND_CALL   = 0x40
+
+	PERF_FORMAT_TOTAL_TIME_ENABLED = 0x1
+	PERF_FORMAT_TOTAL_TIME_RUNNING = 0x2
+	PERF_FORMAT_ID                 = 0x4
+	PERF_FORMAT_GROUP              = 0x8
+
+	PERF_RECORD_MMAP       = 0x1
+	PERF_RECORD_LOST       = 0x2
+	PERF_RECORD_COMM       = 0x3
+	PERF_RECORD_EXIT       = 0x4
+	PERF_RECORD_THROTTLE   = 0x5
+	PERF_RECORD_UNTHROTTLE = 0x6
+	PERF_RECORD_FORK       = 0x7
+	PERF_RECORD_READ       = 0x8
+	PERF_RECORD_SAMPLE     = 0x9
+
+	PERF_CONTEXT_HV     = -0x20
+	PERF_CONTEXT_KERNEL = -0x80
+	PERF_CONTEXT_USER   = -0x200
+
+	PERF_CONTEXT_GUEST        = -0x800
+	PERF_CONTEXT_GUEST_KERNEL = -0x880
+	PERF_CONTEXT_GUEST_USER   = -0xa00
+
+	PERF_FLAG_FD_NO_GROUP = 0x1
+	PERF_FLAG_FD_OUTPUT   = 0x2
+	PERF_FLAG_PID_CGROUP  = 0x4
+)
+
+const (
+	CBitFieldMaskBit0  = 0x8000000000000000
+	CBitFieldMaskBit1  = 0x4000000000000000
+	CBitFieldMaskBit2  = 0x2000000000000000
+	CBitFieldMaskBit3  = 0x1000000000000000
+	CBitFieldMaskBit4  = 0x800000000000000
+	CBitFieldMaskBit5  = 0x400000000000000
+	CBitFieldMaskBit6  = 0x200000000000000
+	CBitFieldMaskBit7  = 0x100000000000000
+	CBitFieldMaskBit8  = 0x80000000000000
+	CBitFieldMaskBit9  = 0x40000000000000
+	CBitFieldMaskBit10 = 0x20000000000000
+	CBitFieldMaskBit11 = 0x10000000000000
+	CBitFieldMaskBit12 = 0x8000000000000
+	CBitFieldMaskBit13 = 0x4000000000000
+	CBitFieldMaskBit14 = 0x2000000000000
+	CBitFieldMaskBit15 = 0x1000000000000
+	CBitFieldMaskBit16 = 0x800000000000
+	CBitFieldMaskBit17 = 0x400000000000
+	CBitFieldMaskBit18 = 0x200000000000
+	CBitFieldMaskBit19 = 0x100000000000
+	CBitFieldMaskBit20 = 0x80000000000
+	CBitFieldMaskBit21 = 0x40000000000
+	CBitFieldMaskBit22 = 0x20000000000
+	CBitFieldMaskBit23 = 0x10000000000
+	CBitFieldMaskBit24 = 0x8000000000
+	CBitFieldMaskBit25 = 0x4000000000
+	CBitFieldMaskBit26 = 0x2000000000
+	CBitFieldMaskBit27 = 0x1000000000
+	CBitFieldMaskBit28 = 0x800000000
+	CBitFieldMaskBit29 = 0x400000000
+	CBitFieldMaskBit30 = 0x200000000
+	CBitFieldMaskBit31 = 0x100000000
+	CBitFieldMaskBit32 = 0x80000000
+	CBitFieldMaskBit33 = 0x40000000
+	CBitFieldMaskBit34 = 0x20000000
+	CBitFieldMaskBit35 = 0x10000000
+	CBitFieldMaskBit36 = 0x8000000
+	CBitFieldMaskBit37 = 0x4000000
+	CBitFieldMaskBit38 = 0x2000000
+	CBitFieldMaskBit39 = 0x1000000
+	CBitFieldMaskBit40 = 0x800000
+	CBitFieldMaskBit41 = 0x400000
+	CBitFieldMaskBit42 = 0x200000
+	CBitFieldMaskBit43 = 0x100000
+	CBitFieldMaskBit44 = 0x80000
+	CBitFieldMaskBit45 = 0x40000
+	CBitFieldMaskBit46 = 0x20000
+	CBitFieldMaskBit47 = 0x10000
+	CBitFieldMaskBit48 = 0x8000
+	CBitFieldMaskBit49 = 0x4000
+	CBitFieldMaskBit50 = 0x2000
+	CBitFieldMaskBit51 = 0x1000
+	CBitFieldMaskBit52 = 0x800
+	CBitFieldMaskBit53 = 0x400
+	CBitFieldMaskBit54 = 0x200
+	CBitFieldMaskBit55 = 0x100
+	CBitFieldMaskBit56 = 0x80
+	CBitFieldMaskBit57 = 0x40
+	CBitFieldMaskBit58 = 0x20
+	CBitFieldMaskBit59 = 0x10
+	CBitFieldMaskBit60 = 0x8
+	CBitFieldMaskBit61 = 0x4
+	CBitFieldMaskBit62 = 0x2
+	CBitFieldMaskBit63 = 0x1
+)
+
+type SockaddrStorage struct {
+	Family uint16
+	_      [118]int8
+	_      uint64
+}
+
+type TCPMD5Sig struct {
+	Addr      SockaddrStorage
+	Flags     uint8
+	Prefixlen uint8
+	Keylen    uint16
+	_         uint32
+	Key       [80]uint8
+}
+
+type HDDriveCmdHdr struct {
+	Command uint8
+	Number  uint8
+	Feature uint8
+	Count   uint8
+}
+
+type HDGeometry struct {
+	Heads     uint8
+	Sectors   uint8
+	Cylinders uint16
+	_         [4]byte
+	Start     uint64
+}
+
+type HDDriveID struct {
+	Config         uint16
+	Cyls           uint16
+	Reserved2      uint16
+	Heads          uint16
+	Track_bytes    uint16
+	Sector_bytes   uint16
+	Sectors        uint16
+	Vendor0        uint16
+	Vendor1        uint16
+	Vendor2        uint16
+	Serial_no      [20]uint8
+	Buf_type       uint16
+	Buf_size       uint16
+	Ecc_bytes      uint16
+	Fw_rev         [8]uint8
+	Model          [40]uint8
+	Max_multsect   uint8
+	Vendor3        uint8
+	Dword_io       uint16
+	Vendor4        uint8
+	Capability     uint8
+	Reserved50     uint16
+	Vendor5        uint8
+	TPIO           uint8
+	Vendor6        uint8
+	TDMA           uint8
+	Field_valid    uint16
+	Cur_cyls       uint16
+	Cur_heads      uint16
+	Cur_sectors    uint16
+	Cur_capacity0  uint16
+	Cur_capacity1  uint16
+	Multsect       uint8
+	Multsect_valid uint8
+	Lba_capacity   uint32
+	Dma_1word      uint16
+	Dma_mword      uint16
+	Eide_pio_modes uint16
+	Eide_dma_min   uint16
+	Eide_dma_time  uint16
+	Eide_pio       uint16
+	Eide_pio_iordy uint16
+	Words69_70     [2]uint16
+	Words71_74     [4]uint16
+	Queue_depth    uint16
+	Words76_79     [4]uint16
+	Major_rev_num  uint16
+	Minor_rev_num  uint16
+	Command_set_1  uint16
+	Command_set_2  uint16
+	Cfsse          uint16
+	Cfs_enable_1   uint16
+	Cfs_enable_2   uint16
+	Csf_default    uint16
+	Dma_ultra      uint16
+	Trseuc         uint16
+	TrsEuc         uint16
+	CurAPMvalues   uint16
+	Mprc           uint16
+	Hw_config      uint16
+	Acoustic       uint16
+	Msrqs          uint16
+	Sxfert         uint16
+	Sal            uint16
+	Spg            uint32
+	Lba_capacity_2 uint64
+	Words104_125   [22]uint16
+	Last_lun       uint16
+	Word127        uint16
+	Dlf            uint16
+	Csfo           uint16
+	Words130_155   [26]uint16
+	Word156        uint16
+	Words157_159   [3]uint16
+	Cfa_power      uint16
+	Words161_175   [15]uint16
+	Words176_205   [30]uint16
+	Words206_254   [49]uint16
+	Integrity_word uint16
+}

From 08ce2a0724a6a2eb9a8ea0c1f2d45d6ade6bfda0 Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Fri, 20 Apr 2018 19:47:06 +0200
Subject: [PATCH 10/69] Add support for insecure docker registry (#131)

* Add support for insecure docker registry

Using --insecure-skip-tls-verify

Fixes #110

* Apply formatting
---
 cmd/executor/cmd/root.go | 18 ++++++++++--------
 pkg/executor/executor.go |  4 ++--
 pkg/image/image.go       |  5 +++--
 3 files changed, 15 insertions(+), 12 deletions(-)

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 7a648fb1d2..2c8e9b69aa 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -32,13 +32,14 @@ import (
 )
 
 var (
-	dockerfilePath string
-	destination    string
-	srcContext     string
-	snapshotMode   string
-	bucket         string
-	logLevel       string
-	force          bool
+	dockerfilePath              string
+	destination                 string
+	srcContext                  string
+	snapshotMode                string
+	bucket                      string
+	dockerInsecureSkipTLSVerify bool
+	logLevel                    string
+	force                       bool
 )
 
 func init() {
@@ -47,6 +48,7 @@ func init() {
 	RootCmd.PersistentFlags().StringVarP(&bucket, "bucket", "b", "", "Name of the GCS bucket from which to access build context as tarball.")
 	RootCmd.PersistentFlags().StringVarP(&destination, "destination", "d", "", "Registry the final image should be pushed to (ex: gcr.io/test/example:latest)")
 	RootCmd.PersistentFlags().StringVarP(&snapshotMode, "snapshotMode", "", "full", "Set this flag to change the file attributes inspected during snapshotting")
+	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")
 	RootCmd.PersistentFlags().BoolVarP(&force, "force", "", false, "Force building outside of a container")
 }
@@ -70,7 +72,7 @@ var RootCmd = &cobra.Command{
 			}
 			logrus.Warn("kaniko is being run outside of a container. This can have dangerous effects on your system")
 		}
-		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode); err != nil {
+		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index ee7c87e452..ab9eacd53f 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -32,7 +32,7 @@ import (
 	"github.com/sirupsen/logrus"
 )
 
-func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string) error {
+func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool) error {
 	// Parse dockerfile and unpack base image to root
 	d, err := ioutil.ReadFile(dockerfilePath)
 	if err != nil {
@@ -113,7 +113,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string) error
 	if err := setDefaultEnv(); err != nil {
 		return err
 	}
-	return image.PushImage(sourceImage, destination)
+	return image.PushImage(sourceImage, destination, dockerInsecureSkipTLSVerify)
 }
 
 func getHasher(snapshotMode string) (func(string) (string, error), error) {
diff --git a/pkg/image/image.go b/pkg/image/image.go
index 52035ef693..6309f30970 100644
--- a/pkg/image/image.go
+++ b/pkg/image/image.go
@@ -48,7 +48,7 @@ func NewSourceImage(srcImg string) (*img.MutableSource, error) {
 }
 
 // PushImage pushes the final image
-func PushImage(ms *img.MutableSource, destImg string) error {
+func PushImage(ms *img.MutableSource, destImg string, dockerInsecureSkipTLSVerify bool) error {
 	srcRef := &img.ProxyReference{
 		ImageReference: nil,
 		Src:            ms,
@@ -65,7 +65,8 @@ func PushImage(ms *img.MutableSource, destImg string) error {
 
 	opts := &copy.Options{
 		DestinationCtx: &types.SystemContext{
-			DockerRegistryUserAgent: fmt.Sprintf("kaniko/executor-%s", version.Version()),
+			DockerRegistryUserAgent:     fmt.Sprintf("kaniko/executor-%s", version.Version()),
+			DockerInsecureSkipTLSVerify: dockerInsecureSkipTLSVerify,
 		},
 	}
 	return copy.Image(policyContext, destRef, srcRef, opts)

From 5a8034226c7066fbb3523c385837573b9a0890d3 Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Sat, 21 Apr 2018 08:59:42 +0200
Subject: [PATCH 11/69] Remove docker-credential-pass

It's not really needed to use config.json credentials
---
 deploy/Dockerfile            |   1 -
 files/docker-credential-pass | Bin 2529418 -> 0 bytes
 2 files changed, 1 deletion(-)
 delete mode 100755 files/docker-credential-pass

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 74d94533d5..b251cd4112 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -17,7 +17,6 @@
 FROM scratch
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
-ADD files/docker-credential-pass /usr/local/bin/
 ENV HOME /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
diff --git a/files/docker-credential-pass b/files/docker-credential-pass
deleted file mode 100755
index 525169cad569d77775e1de954ee437fa8d805799..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 2529418
zcmeFa33ycH**8Afa9H9Q6f_{n#6}HjYoe$Lh)!fX!HEWl8jxzN)?&pPA%Un+12ch)
zhf!2)wY8OMYtgz^4em_>B?Mep6hV9yH$2lp1s4cz`F_9qIp@roNrLo!-~a#mzUwO2
zMb0_TdO!F6+|M#MjSG%XPfPRI|I$5YdH7X+%s5F3SQ%>*MLYpdk>?QnJ<^lm>4p4E
z{I|;mtT+4FXw|cy9-nHEb@+d+roPu|0eP{XMJgFRsedfXe{3#G-t0dC>qR~N-}RGk
z`)T*bda8|Vt9)6~^Zs6a<=cL`>v4=8Uyds8t4w~Ds{z)J$*|JZW70=8S4che`GbGG
zR*Cw7nLqcO@Poyj0(Lzo;lKI9QSiS5voD}pvgqaiMB!B>0v+~?^(?`Y_0yen8@~$Q
zzkJN5peo>Z%Bh!qcvu)r%Bg>>zkIt`RDCCv@_0(|?e2g1<CCPs^2b$uGX-FOO8qG*
z^&4AM{l*qm-^a#X|5EY(Q{=h(zpGW%zpGW%cU6_wl;%9YNU6Wvs=wT-pE1^<jMVqb
z-^8Co@X9tF96Efe__pfPL|MN1lRrI&;oDum>U+iKRo|=nOD{{VkXoOmh!dy(s;R0%
z)gXB`KFrn=|NMzpc^itq?)uC7T`cL#`yD0E9pmNU{P8<)>SZAwNj+4l`W~zQ&Xn>=
zWs&zxO8ri&ey3Ic4M%~ghEnU_n^OPv*mNoQdTg*f?};SWNdEG8R;Sdjo_&ebtDZeX
zo)Z_#!}*h1|8?ZJ)1LcU)qn15RlnhRr>eZT%Q9gp{=3u8Zn{*;o!vyrcsvF2H}S_^
zmZ=}&zdP+(tNyiC{Zy6aF3b84r_{gOs(-gt|F$8?{GVF?c+{s1*!st|Bes1hLZ16y
zvNrN~W+BtA>n`Wn@gw<MJ5BX?1iq^A-<E$R9UjjONOO2!YN$VJM;<FLtv^kMIQh#}
z;Xkkc!N7ko@E;8P2Lu1Xz<)6C9}FBM2I$Y^<3FDhuJw3|3knKHTz2J^BQ8JV=ck{3
zMZqbTU4Hs0MW_Ajlv7VBIOEDwMx6Syf}+cdetxCiHa1VDMtl)xrkfOFY@Sy)ym~`>
zO>aH2P7i(ES$lZba;tPB;MF6+Jf9vxW2;`qzbka3-?1H?ot^rq%Y53R`S5%6&@Nq%
z%*+euQT{>Wm3l+77S3TFzRInx23uWe4L4&@uAJJP=0AU&VWmVe^9YIfV*(QT>NKCm
zd`4>m5aH(9erB6pI({#ksUmn75W9-%fVf|tIRX`!Qt8S=)8-JQn~SABfeo$JG0F-Q
zE8bX}s~bT!7DQvAX0(IyyD;6;4X0={tKYEx9=7QxaQUM+l4w@1;}1n5AdfPG(3p2T
zt^n|{(HzNS!)D)#bdS~-bviWFPyrh%qCbtq7mrIcRG=D~*h53DQ`nHX{mo2I?8@&u
zJ4v0FUyd>Cp<d-LVHeaWICksW6J;K48Nd{BzAX8`lW*}j4^v#_B_$RI`d#fM(SOdx
zpnX1R?<ej3L^z-Z9x&!2g-8re_|e>i2_y^TFcYQv<*D%vhMUiHVX^@G_k%3?tIRZv
zEPku2Z@wn?KMnn(shN5C>_4B)6zK+7z(A7~WX5TDKTI#)P~$6XZXBDZv;BOuU$9Ex
z6k10r*!lFl9P|4=ip~7-&E~=_=zggKnPUHx{>St<egYy~$?<b?U~a0k$B%UPI0vz#
zzgpu=9^XN>&xwvXtEcv#edB-HK9!JpSWoRw{U5haVK@JNQ4jdp|N8$Felnmrxu^E;
z?z#Q(-O(3{Q}m*+EVx*hPGtVG3ws#C>FnaqUHDg9v<i@Q)5jN@&!b(`uKlE?<~r>s
z&9&(_jx=X|m+3KV(RwcTfeU~6r(e~2^umpLVT=CEKQ6!Z`Kv#h?9sKyTF7`V1`|ei
zfE1l71TE<S+8fj3h8onfiC)&~&$_x;OWAgHVP3EqTF4Jok;K2+qJMTjzR%V8uH*n`
z;jbFu(r^FwMkp+G=>^@>10%fo-yPxXO&H<P$;z->eFXhK6G{&H2$~KiBCITfQhKxi
z`@e(rv~rN@gRRNbBcQC<hwWCbs6!|-HWOOyUuAy25j?as3BPlw|9-H)t6&^b`V-rx
z`a9Rk?b6@EuKj6?E?4%xoMY5EMkrJoS#c(`aDkZoQV7UY4E}JvVUrfV6D*)Ll^(gb
z#a{z?Qg)TKs`MoOq6Fzidglh_`I6X8IC=(gp#vA?mR~|y_;*?nrggUh6J)+{b*6{S
zplgz%Ei(_`!V(YMwaEv<RUm^JoSqcL3WhwG=QoddN4YBntOWxo){a6K&3gWYgaub7
zz-(M$v!V2XZk6Tp1jQAQL7;6HXlB+1a9ce{lSFTA(WM8*|4D-X|5tDy_+<~cuikh7
z-2d+F9&vy6^IdS?@2}nCK0L8U+(%vo?!&-6_4OLiJWaVu{Dgl5UeTJsGhi33sdv#@
zZ5bU4%RR92S6cZidtX_cTtMp6J3)1$cS@$+zPK-BN29l%QpDm_uq&MwW3XPl4X!)w
zkulNhDqPqc-{-(fbHa)~ym+B=wPh{Z@0)X58sV9`#^#i#dY1Bd@lr|mT)}QOkjb_M
zI=rx>%1rGi8|{kPPqu2yTG?r9?nZaFb~gbp`;z*2@!@|Zdv+SYd$%nl$%p8}f@FU%
z;PMBdPAz|MeRuxg0LbNZ2s~sF+7P%g&-x@&rXBPLXT982|4xGbJ(&KS7WIhLiTMRY
zl`|TDvR7*MWjA+|6!I^5eE);~820Y2zu&L#xj${u$e#2~5bCP9MQiB80-WuAP7P`3
zQ2UcGvD{R1iPjW2a)rO<M9zt-^a!*yUaCd&iJB)cJ`BFjt=H|MVAdZfiU!TjpDP6d
zLExM%p}bdbb1M+8m<T=Dx!;_+RVk2s)&lj!Ri`@>&HBEnivn4HpHd*w2h_i9r^k$^
z0)cv{OG^xZpTL4`r_8g~L6tmcsgkbr)E1rfL-;+^#_wLiFXjCIUmXAbiXL!Wwe<iv
z{%T8)IR4$!U2y!1KXs4ecgG$Cj^A1f9RJ0}agw}fiy9Pu{RyAU$a*3^*z+K;nXZ`j
zL9P>N;g6AmR4-oN#_O7_S`<q&vVQ-`U=R4a;Q``5nsvnyoV90NkT=L<WZfirwbe+k
zQ0Zlo{tJ~p66s?T<?;2$PY0tmSO`9ax1KH1x!{X=$4TkJIm+8Z*<;X@5}T~ffhtts
zHAipsc;ZdS{qRRl?lvcP7<229+my(C(#cIjZfpWPSQHot2pvHDHXwX4`v@ReU+hAO
z(AqQ%*5s>^6-%VNqf*{Yq`a<D-bkdZlN85&J+%#Fy2K`vrQKjpL%SeUGof(dOhU#W
zpaK^}6Moe?@xaXE0XefoV*UDJkvRCxt8-Qzpgu&~s{iqZr1~(O1q_7rSEd_QfnBq;
zgM{a|R(lqx1PoflYrgg=J?%te7$x9CX14*7fCJwIt35!hoLc2La>ytI4l$2K%M$;x
zt%Zt_q{KtCMMD(7&tR8TL}?WW*D(sbLLGg-Md*Ay!OZjW3bc!w^-$Yx7T?X{yUqA+
z%KJ6s^@3%1MfU~N+%iO<%2Lb$zSS{TH^O=KXb-RDcnz!93cNO|*GjxDQLoe4l8n;a
zyh`a6v>VP_ifkgT3RIW@_g*?tsE|IqXrf*<;lr!d#{j%qedOTP>SKuMP0vDW!bz!3
zn-8xB8@46b5cH|y=qow;N=V~L=mxd3HjlKBHU%h!R>@RR&nOKa_=@Nh+h^qH#cye$
z1yYMnd_=)rP250R2Z^O1NZ8tm*)1GJB%g%mNuiD-Y6kKJ<L4+i{z{C$O2*%%9ShqK
z5rqmipJSG(M*VCw{&(>Mi(6-9#jc~6V>AUa8oU(QF9G{Sw_nQTC7RW8yNlc>v3;<i
zO!F<8>&|G(^(bVB&Wzc&6$m|v-C-<Upms*T`uoJ_W8VS)-4^eDkTX<W8Dwl-f_79Q
zpdX-|Ngl-?tto5eM}s|K5a%*V0ze7~sfrX4t<bemT43Dv0@Qw}H9aCP3A2F_L(NPo
z2&WrE@BJ8xFZy@RY8$p|4O@UHJ#sTYje#NN8B@{k6JF+T(i;9K`FHa((H{CD7X7+$
zTL<$yTlI*%8MkqRMQ3Y7p2%iBy^XOvkLAgjFRh|c5G_Ei3S$0?w!CJqZGuf7Xf(tw
z`*&1jS-&2EYeW&j#}Je#CubFavx*S&9HD$%^UHM>dSa7EJ4t8DZ`<kYEk8CunTxmY
zp{)l9;3O|2%;qw2f1o73d)$?EIJ2&oEK9=^BCpXXLv4@9)9iRVU1H4^{ao^wkTV6h
zUZ5M1yU-|SHVw=9V(10oG$6eiyECZ5a$LIWFP~Yu%g{yWz_3f}S&0!|8&5Z{QFszw
zHK{ZRqfds17hssG{L6o+Qb1myAdH@#Q61JKbvVN5(3V~E>hn=CniYTDg%)nPG4HEP
z_n6;J!k?`u0%%BS^W_eu2Fqi|0M%Xe`E(Qli$j^rgm8hyXC$Ghis;aqBD+y6+^&TO
zvpAC0EMN-Y$bMT^84&2W{3X><UBVK8!f4>OI`W-ycQqfF|5WP66EpZ8y)jKMep9>k
z2FaL5%v6AxBAM^#(FH64v@~>Ti>M&=NDY*oN+u@FJggBBufQLBi7ZgP2!0o+uAmfw
z1+T!FwJh6qah`+!L5FJ>GtdG+)C-IVIj8|cq#p)1djfbMm^VRGtJ6yMP8luvxJFv3
zz1nIa07gP<fq>SOU4L1BAgg8qVo`nuu8ea04^WnJoGApQOmPil2t9ht4}d@R>se|(
za~gSr1PQIKUWFwm@Zj3`Q%lWzQ!=tY?aT&h5brUvuRe_q8=Hj;`J~Cf(bfoKCxZ4%
z&8np8=Ei(_zrkqMj6)Cg1c6kAWRM8VT0uUXhuO^4x6;$Dq0*vhg>O@&M>!{<E>#o;
zO=F{=HjV7o9dKsbwMAbb$Qav<Kju9zLVYjBn<cMcFZcT1QvekFCqm{U|M}Rk9{~{R
zSPD;qA4#U$wjzl-jZcb>Wd*?-lLAnefp9wGf{{r9r4t(3ZyISdvM|~iASO0CwKH-T
zQ$qXGY7f_%7MgeuH`f4h=lI_FnruZd=&tENiut>56sLLN7dtuT>K8DslSQPgk*Nm;
z<EJpW0<<C!lZ1&|uq3KAaB@)C4tZ*zUt&IJ1)RVoq+~^2e&Ke#c-4HccA;*(RF5)2
zV-ZbwX=G!t__euH%Zgh9+U;$DaA)mElwd2m(R3FJBK!2x;yuV-6A16EJxUL?c=gUz
zXm8%*V6Orcv|VO?il?il1ciI!uM~F1A4*Bqje(W*V6Ebf+Cp*ejiKf8y-f?9LG2w`
zuMgjdQoo#!QpRal^U)H^){FPdhN$<0E5lV_V-ozB&9e_FY>#E2mezFL6@mKi(`pZc
zf~Y6_#hbO;TVfxBjgX#RdxUOW=hs_yX6tF6TY2k|hw7{GFb5t--c1>hrSHKLGr_K4
zCgItD9zlE;8tO7sq>t+*Yl$rds}%{2$0xFC=O=NTZuH0MUTq(u&05zpCY5u+?-OIe
z3jn;KxyGGo3m;VUWj8}3Lh6O30R`n>^++QcwQPcU!n0JIiPpQmxfu-nmCx~^0scXI
z(9b%8-}SX3j_3zNodbchhFWux)hSr{QdhD7?FXCZi$4gYK>?sS0TirgSt<d(T!1&J
zA_=KotLs~;za$M>@M#SXlg^?t2;-)29T>InV#$&|0q4p@R_&FA%~l<8J%S`^1yoP*
zhWRDBF&*$4r&4i2g$#iPOHzR6Tdn%_PH6;X`?F5Ip7xd=*%<#DM`L*|2YgFV0QjFl
z{8thGRUBV6><93*EU%uuK};6)qw7GKxJNnO#p|_2w3m8hi6m%El}GMf70|+uBhh?F
z!bL<rVdvN={_E$X@q+HeUt4?~szC*mXty_y11~q^ux+IVpeQUgpe^1Ha=D8wC;7NO
zLUpiy-f}&%K{tlpI1lnVe5)Q=rMH;b5a9c+M}jf>em;sjw9wCl>X~a0Z@c15#5AZn
zF@HIg^&;=+E%7W??_8_5e43$$c4ic|lM4AD3CJNP!$O1cf}kiE%^Vg)XfM=&hQ>nE
zmqywndrCH&rN#Sa^)A`hjQ%{e14H{WX7`R>msT1r^~N7T`_NBcoEOdPQxf)^XJq!F
z!7^`wy0-Yd_IMJb07w)a3Sm&)MqbtJj**ui|0^W(+AKN)sQ>8G2u`+<3#uRqm>C|-
zOa^5t0U{ijtn(Ht5ie4VfZ+ycI(7FXs+=Fx-oyr`fws;$1$`%aHpk>rqv^&XArp$i
zKj;V!e@&0}8%dci9o}NM8cbWuwtVh}bIkkLg)@?Ih0U>E&}wLKDGB)BXmC=O25*7>
zfYJ4<)`0FhVp04U(mcn6!{LHKk8F#1rHYN;?(_qcOAA=9mmX==TXyuKeCm`>k?l0t
z;OS5}96Yh7MqXLCw-AO$ggyutuz1bvB7NVQv(dZO5ar*dkunj2Erk;^048WoE-Yb(
z9$Evmy6VkZn@|D!+Jy7c<J-WZr-IFbM&_x)X2-+XwApN!0tCDS!lHe`>8FE~W1y$_
zAHWsf42!+ae-iBV+Q!dfvm8eO#>Me}a<oOo6x}5Mo6XlbDpM2DrUPl~lDD8sNYLTH
z&{Ha~QM^T4^g7b^!Yc^>0WYEVhSl%yuQfaZR6rb2t{!hB5!5`v1qy)nWma6IE}$3h
zpMAY<)D;AcLxRPtW}U%z-8frM`(7{pW{$r!(os6RLm&Q4u()*&6i7>Ocx(JIqE7j!
z$k!w9#<%N{GgG}tvk#pF;T7NvjoQ6hXe*E3k!YuW{~)cQnXnpqfba&uZbgNAZ4oBm
zMdZFJjw7EQs_u-V_|^GO2eDEWM1EzN;SCnApLIr=;R&X-VN7%K$|5ag!vXoKVDY*+
z{h$eR^v*TG;p^fLCICR0(#Y2Mo5~%YM<KM`VY5WUNhS;eSYjYx0>T9b(1T>tcm!PV
z*QKr*T0e}*Y(7JYxFbMzq=ho%bn_OBUjiUK@_8&zI<|40$TK@%$neA-f`ldPlbgS=
zf9__*Um*5OU<xKnr<tkLt*8M2@2@ZTnny9T&={1}nx+n{|Hi8=K1vvGIuMP>#F7`t
zaR@;y`j#)x+zXQ4BpkJ+aFf1oFT6`_@m<K$no5pbQLlw%RY7~~3q3j>l)~_!GdU6C
z49Ayd{`N1VF#REr3c?d)H|^Rj8`!22s=@3x%qT<HV+@_Mg@KZ47~MKw!}i)qdZgON
zx?rclS4JvxSZ1;+<469HdZZjo&aHZk8G%i$b$tm#V9njU;5h{W8bIgq%?{(5qpTbY
zEJ71s#`ZsdLttS4*wh&C#cm{HON$tsnbEagY^tz6TX+e>sm+R+q+~Sf$WJv7(PAF@
zxB^1}6<G4A>xl#4jey=`l|YQZ$i9{!AP+O8N?$`e7G@*mK7~HQ8H=&`$Pm%UUh}$V
ztue;mMxV{klO1V%K#KqmNg?r;KXh3u83j|NXamdu$$$p6yylZ93iC#`#Ew*hSoo-m
zzmG(F=8h3kB$~D2U02p|%=)KfnYZ9nUu>$IVWIpW(DcH<ocLqKqReGjbs-pD4lkgP
z5~Q$;lSJi<Hy_w32P+6*B9oyZQd+rljzA>j0Znh!N0mS*uIr7W3wEtwjmX1!%lV92
zPuS{b_|5q1MzE~bv?OmW62k4ZXBp)~8aCBJH$ordrJrt87J;rc+4!2{*BPnZT${5d
zoJSW4z*tQ#Sk0c`We?OgfqoF9#Z%ETBnK46kSi-G{WC~7^O{>&QNdv7LpWP}h5Hwy
zI<N$%`NhG^Ct4W7n7}L>Vk^?XdD=rb`{V-rIMzV>V7OOqg$(upU;<S@t!|!D&L{*`
z6KT>GC{Tl<4#$iRv*kbm*t^phxQ(NVR{9yD?2DeM;+u&82%$0Xd6gSr?#o$7Z3_h0
zk}>d4$YJWOOa=dfxISa3A?2&R42Yhu$^%&_KlD14gJLy#Rm|R>$%^+Vf<-EIgj7cd
zQ79N)SOsMyb^rmShCi@eMAD4WCrW{vAyy~=K4O8hS)gqp)A-LA-Af9U`<VF=z4^9)
zk2#20>ET0k<3_OGJcttV!<(Tg#~K4SZ)C@nIpa8_1=OCAx*ViGFX@;1B)ve=C-{uf
zf0pDa(*1i>s*y3}G$0@oOlWlUX$vVrG(Zqn9~hRZGv^3?`2mo}e6mah5TVc;Ia*>6
zc6^=IFc)7&_84?P_8G&xwt5!fKa}P$scyqh<Hg7xY!zI@<hFVn3A%9(2;F?sB&_dj
z;1Xr+a0Ezn6arj`%TJk{ZgUcX2&t?t7TTrv%?}aj5fJ0><j6zA*ODQ{FaRkYGh<hp
zRp1t~D-i6i{ujG?><ZDTmV^X`0Is8;$eJE=X&jy)HKzdA@Ta3$7yp%6oTmYIbw?2X
zXx5!~B@|yZbG_y{Awno_HC$Qgp3262PC^X?8gdG4h*pFl&He(@SejIzK6al{i|;(;
zf`n?;Y(JTh1c5Zw(Y7a5M*)QhR7MLH7sHRJ5*H$f{>o$jf~pLPLMMdF55D5>or+)~
z^A|r*k&IX5>UJDz8>7=+BS)9#PzdfP+S&p+ctAWpew8^>!2Y!rU|h@=-%u%FXBx*b
z<*@<*z#j6>zaR9F_rd*1;OdcsuQ(TsAr&10RUdri{4SMGJ^0Ey5g`mFvBusf4tl(|
zN@ei6FyV^_Q!#cr>WJrIvkmNr*Ie)ebz^TcxJie_!O(eKtHkb*QUFL8Q=E|FyD2tV
ziow@#8cRzm6+6l<;FtsYGjBt`P|6hZ$KKu#kPJN^Hr1!Ctjy7kYQKP}J+@v?+i02l
zC3(%{KU#dVuh7M^(yZBu=$<ry?P(ipX_xZJrHs5Y%gf%NRbl)#G&;twtIBE%=hd?w
z{$W|;f;vv@m*my+(^z7e7!|$|EkJ6~^ft2qKH!q62KbR<9t(AA+1ajLIRKpvfS`<?
zy^kuxT1o~SccD#7PknNSt*5MP;ga9}no!YyhL-R-@R-^$)HJ5~5Bg4!J<Bz)U4fXf
zkMr2Da%h?l;Hp?_Sq^OhWZm6LjbaZgIvxNJVUYatg>?j|xu1=bg{cfNT$b*ZrM&hN
z1ghKr0^jeNz3#~hytIVVA?JO3v{qe0oS0haewwU?JBV&j7Oa55i{>2Mxmj>Q2l>2p
zbVcr>4TF0;k?4Wnq%0oRT<Nt9AuGthVDvra+gMDb+vt}_sQHMjVv+f!W(j<9j5fYr
zylRz3n{dRVE&>$A?`LroE%iIJU`jx7Y$^INvYu?G@6J}Ell-t+z+8zRIiUR7*l-#(
z8VE<2p2FN+ipSqIEB_44ZH9SC#n+rUz*Pa=XLq>U3efmfZ<ydghGEa>$YX67LTE`g
zCOw#Rnj=@Ku>i?{MeH9ZWyBK3t}DG%i!&HRlL~>GYwia`+yjtIzke4VrC|gPkW@lF
zKJ%g0Zr}kJ3LXGPQ~1&AN${NBJv`c?Q{XGX)vp&k&qTZmvy3{*1td>7`CJf3EC9A0
z8sgK1>|5np?l%@xJ#7K*d+{I=jm~xI16Ic}ai|6C1-JY-+)6`iVHDiS!pXxM>_D+?
z?Hs(&Yp%V}!f_Fq^-pbN)}<D+9^>}CqK!LL2VfWsUB2QAlR4z}zo|Zp;v3Ap&l4TQ
zP>@j(uq_r05m#BJ#%W9j+Bk6ni<u8Wff`wP>|9EB!;WQL*zs8D42{R%b+{ssgb08M
zL<~LDg$Rf&5b+pBVq`zHhJ!8lQ-~K3HEjVu9z>B~W~zl5nddH+!Zv1(?Flmh3p24_
zb%D3`Aq7W4{1tQCa|z@C4+=R;laV>jD({b7&9*ES2q!pWnQ#W}78ZO?g%`bpzyqn}
zfR69{CrnBa2G@Da1?MOay&P3)U!nBW=?hlZBMZCAEQTA+W}{iZ_@h#;l~e##oJ=Ee
zPt?}^jC=~)|FI4^;4|pHB*lNk5X;%!d53Cf1{<oTmPSJ>Tn)`o4PDSfL$4t20}HbA
zUdZ<o@Wi<PB}Ku2<CQ1^{bB?u5_nUSag!=Pp($MYAv!kCRP*n-YW__#$NBeCfzo;c
z^DFpG&UwwNrm@c;fx8c8;v2K*_ExYGW?75R!gtCnx=v=%$0ImJ8nPu3;~LD>F=a*@
zPpa9p;?`>cEYYcE)5lt~Y1XoeFXAmI+Dh(-Eib^)r*-sGEWZSLU|Al8msaH(WcY=p
zC}-w)Fue_caJV=run>qGSWZd-YDzbqSTBJ}wu0&AiS^<+G$S_+9z+YDoL>o+7OW=H
z5K5>-XI7j?8JRBub)rXTjo2^2$h7<ld$m7Fbg>rbLDTGlPj-R2$z3GuGI`uQHb7nm
z-9hL8WY>beYcSwt62}S#JjUs}jU)*MJgRaf7*NezD;S`|5|ndCR8$K5T_&`c=2vr?
z?`J`4`aX0f3NZ0QnbRX)aIw^=lXwB_B%1_VfbK&}R1QduX*KJVG8-<l5E$`-u}0QV
zlnF+iXh79ChE+bK(MW^?P;76DOocFsM|PuRtAIc-I;Kcg3dRH&ZYU}v-`)U|fti1c
zRI(xh^pS#*03!kqBE1X&Jc$UrnZ{-PfDfJACgrCDq?22aj)_!2H>Puy1+<P1z5WIY
zH(Y%Rw~rxZ#srS!mx>A8JKEMbsWE{(G-qU=j2@_fcaz}mn7~BpVC`0_YN)oy`2g7~
zjiKK)6Wz75T`JhfGMU(1J1Qw2Fb3MrVk+<}H5O2DXLF<CuT=J838*446o40cnXP|j
z=MtR8bUOYJi&P~Sxi_hZtf~+{2qtW!^^vxKXOG#moxudz9mJ_QXLoG6+9`!X9<yAU
zb4q=sCh$Z5LM&U5$pqf(r&3HzN^`7wAda|w+_i*>d$q)GIB~CvjYC_BiTlU*b7=OY
zN0{B=!<33&S`&A2lh=Io;3|UgRJVUbZE(_rf2f(eaMC@brZsg(-ieYor3iVo=YhkD
zkana>Bj?HVJrHY1n!X?39T>?2u1Kn|_r8N2aJ)Ww&i=wd*Oc8i$(3(9_{w7>%wX}1
zaKkwVU-@4$|3;k7Q6`*!ryWcKvBh>>hw<D0)D5zL-B_^{rPAfh`M#ctb=cE-VVN6y
zD%Nbz$DNMLlZwXX+65ey&2CRjE>y%q$#doFuY!N&nky^y+Ra>9>6I>X<?GWNb94ZU
zCp&%NVfMYA*a};gx4G7DE1jM!8NE~i$vr(Y|NK`RWms*#_&9w-HC1LI+hE2Xz*Jex
zwH4^s8R#EKw`0-ulI7!j!!>x9Wr3Qk*kyRPfa%e!a`r6-IRSW&Wu47}Ho@S^9luQZ
zcWM?+M=@m<{x<jcMYHD5aw##oWab#<+4cJkJiA{cX5k4tFZ1uegBIPneB9zf%h8FZ
zsP%vjd~J{~=rvAfHa%xqeq{Wf8IFhVr7`haYR{Uk`&s2)sgg8Z4;*;9{$nhmCcI1Y
z`$rS5J!-1yx<4^pM;hI+UtqTv^)Fz+tQ^yI+EW{=W~r4MP+OH{`V65HeNB;44%Xp&
zu%%HGLxL@_E6a0I+(EdA3`c-n&J$k{b}676v;ADH@adR%DNus<Do~0J>=t5DgrHXJ
zUYew?&fX!3Mi2*y-)f$|3{)*-gdmBYbFl2$qx%lOh=a3-Dek++41TG$I`G&ateP|9
zfBg<@Ww;OfH&7m|(9A7;9&!6+(~J)Ux9<0_^0B`Rhsn@|FR4HheA=SLir?}X!|-!*
zE+m4ZY(*^~W8rd^F{S~DTqB1g7v7A{jMFZAh75OOPQzZC;l|_;4CAy3$Z6PHJ5!Gg
zGKP+nVzanzJDOWOSwzlhLZF8lr=r}F!seIIhiA9;#Hre{Rbj5w){@fDyP%UD97+zI
z9uB+e*#8{tP>R5qNE~)QxId8-yFprlv2Yk}Yf=GvFg`gqWemM#rMO#TblHjmA9g+x
z^yqc)Zfmm<FcMEGc9yg_!qwuUq!wdCrGVSG{XD5a`~d<}q%dI*&)jnxm}okg$n`IU
zUi}okz&kU+-k?{&<S7;N4g4{(+MZG;-@IDGKhe0{h;qD<y#vV$_Al=RFRGzIu%F$2
z2DZo;17G3;SO)!rc_$HR_#>Ycc_WyHXjyhi6L3K6VnenhCj4LX4^OBAv^hrhMD((+
z1<m`kJ6p7-ioD}<H)0#MuQ981<&o%&0EciL&ocnk6OS#}zkvXSuLZ6MTn64Rm-ij=
zei7br$oa2UDAdeAh=sf#+R-c2(F-TLV#83vd|@e&_GSWUDfq&|3-u|qz)VcqfiGtZ
zxOqFm5^NBI?uRk^zy<>%S<9as?1`*xiRCnA2cO1kON)sS1o(<nZ)5fdyf$Y2m<d~3
z;%KfVlYK-_8_bO9hh{`pvC7y()0yu@N?K#)p^*(O|6*A(P-6uOwc3S{;YA7y5l3n-
zu=&xg7#7!elg2Y=O7d8YtUZ4p><M+G&4#qwb!oPUV)F@XY_$gHJ9hWkomwPo3yMdw
zm*a1uym>wPivQN)xs>DLDf$e%jdlfyOYjB%fQ$3d6^5Vn0Z!FZ-Q-h4fj_x9B%;)K
zIln~HNf^b)5>-qCMOXoEiTwjbV3NQp^TS&J)I!;>hIXh1(V^9Ls3Y)e>`$hG#H+S&
zD~7ALH3tX?+S19#fO1{ocI;fjM((3^quAbu-Ll3TjAs60V)V>5*<7`1-uo;LH8a)6
zjhT_DKExFl?Cj(u^Qyg^%j(hTh52YH^nK?1<MhZrB>U1ao5UtHc>SkhpVL|`EP?ar
zT!bXQ&z$#`+8;L$+LV>fmUZf#0IxK%+p4V_BT!ol7Qd>6RwE}ESyOgZGus7d8Q2)b
zS+i81*P<K4pmyh$=#dE!y+cS`J$gRj#PH|mifqzF#rC}nBEV;kmlX)xcv!fJZ&4+&
zB1xSGS}^>Kz#_aZ&;ncV^K4XLXBJTbn=0t!$~KlL{YsZ2jn)&Jdb#rBCnu?}G{z7+
z2Rw^W%89XYh3%!qE%W`Qq5Xl`C!cRrto5B|3|Uu(^K=axAhM;MEy$m@L&rWp?huaP
z;WTFceIGVO^)-*`;KR{~-5As`n3)7Org}LfzaD+Oz*FeaFFzgFPuD_Mkv&>=9<E29
zD#-WbqVzNQ%#Y3+m98&<M}-b<{S0UbWAo!u$pSVp_F`vi77k5;wax?r-_%>)&j>~*
zq?In{P}{cP$Rcn0_u#7u>2~Vkn~@rfmiQQ)h~Ap+!D#nwD~nF*)I+Vl(w48!E)9L&
z8O+_p?e(E=0&{;_TD<Mo5R`Z5s>tM1Z}|Y!B#G*9hJ%y<NI?#7Y#I((kY^(c1X^ST
z^fq)T-e@_d|29R?UNEvg{x|cDy@Je3)Z-#~D2K^7rE`ncl$i(ek6<T7`sIy+zR>>k
z*+=Ou?-6fag*U-6FdW+i>Y4qe75Km9fX?pG{N}49dL`*EZPE9DF<FOkB>7-v<2H_^
zuo+IkZ6ol8>m<T(K3-ylXbC8b<$+7D!3SW>Hw47a_I=wT3fRlrb-=5I8d;n$GaQIr
zL344_OYb%w(xH4r2YzB*9DwCQsC*n&!2>e2ih3FI5Y)qg2nP4=QA2JEdkeraB65*s
z-XgM(?N_(8Ku4hEMgk5rBpv2xkMA^he@Rp@M-XJG_C7e45c|lsSl#e5hssd~D9fTY
zMV*S;6jchfnYH9iH4*WfZ*fNG;6DZ5*c8_V-&DDyIiz170?oh|b_4~ReQj^<DaR!5
z%BzrgdDg8D)AGxNF?))g*XL^FkqGcYZyLZiAIrdJbSw}^>cj03wdwI4!1*1Q5mY$f
zbin!mAoHT2ij(C>vd%;o=058?wITDJM&OEzbB_F{jIWT;hju}i&4e|8i73a`cuyvW
zAs}V%%D_A3O5t7TSOu#gH=IBfx6VIPHwIC}0yyjf4y(bKWD8L7_rLCoo$;BYO6ogC
z*PH^|0ox#JcTU}Tt2vx%Gzx}5>{woa0hpxKmC&7-;Bfa4H+57|oG~<<Wi($|VO=<a
zdk)2f0c`{Z4hVEA;-vB0iP0I>fr)&ai=6ut?!KnxfY#8VHT2vKEFaL*HgJ^H98Mjv
zulhD)pOfvtBWJspg1Mk=zSK{a7ZzjNeC+SSf<4>&XgIG5m{&^%=fN;x9nUY!@-R02
z;WKJI5e&%Zw;aR31OfBU{wyBNKKZAhd|NA)8<3051)MuD+JFyk+|wGKVNUb~wY(oa
zZP*C9qs~$FC9*^R8YHPbfZS=Uro6fj0-nQklPw^9xAZ}46v$_~9Ja-pzSw1ZIUPfi
z9)UIG!(z9bkS~WXX4P%#QVTQ!ox~jh1v1_xc|`)WHQoiQi3XetoCg~kJ#F2oNkG5(
z6qPlAHf$h+jI>rTJW24%1w7GH&IWMIHnGi`V6TwjSkV;+Y<vBQoaRf0`QfGi7R=Ob
zf}!a&A7VE$^Ux=#kacFgQYi{GvH=2|1uR$4=w!{iLS^R@ih^t+?6o^o=iuKUxbKG$
z7Qr$;wv@aT`wYQKGra*!7{!|-+kEMn9}yp!^E1eL!0mrJz_(rH243TcAV)gK2(w97
z5pRBT^z8~_2s%T@NUNmyR8f2^&-0gIc%F?mP^s{+Ew9t6Pg-@CNzzYqMyA?2s?7*2
z*|EcvN%s;CX$9mE^EwmohIk*``ys&bcv5@Xq9zJfsOu3ZE_=*E9+(czjDXgivWTmf
z410(X;gKy6(q~>>rTjg?0GI)u4ov?<Y&Z1lk$!ph^=zmmRK-}aBw*GarZhINrHqqc
z)@we3sFrC;=1gEQ#4|k6tc&Wcl~W+A+5$l0hZw8*uS>fDKx?=bGKJzJMn5&ZbBER-
z=QX3*(T%X(fU%kfyBavJA;O^T1}T+2orJ~Se=YnTNIv@O>!$3hJsJ=Ud>QqMH)svw
zKNx8QBA|t3`-&iiVX1OxK+;q2U&)4ZI9lCY4E=>hTF)g<VZ2~?>J#Ws9KdFcR5U!m
z^k~)#?h2rW$BbGPfCYs&PyvmZ9}#blqnp?&x>855L$nLt26HsxK$&?5Gan#?ZOv%O
z6Dx)?Hb21(fdw&Y)n1Wm?^yI>R<X)#85D8Uwu<%iwlz|n4!4Cnpfk2nJ`YIq1y*0F
zgMD@o`uY-?u|v>^IgQ1lSzo!wPRGc+jpbfuxpyh=hb@4-|2S3N6a0;-;0k4I`jX5G
zc5Nl}Sf3V^4`ZXA^MIu2X?G?o-6HI3S4uaWw?nECMKDatJdj}c5E}vXLlZB_>yTo?
zOUv?<6J#GKS!P*}WwH~DYVC0;Y;8kxsb$cM(nYl_Mh-7Id@%<aE<NKXR~4`*rp;Nu
zyT%d@3|JDq=7dV}H5pOyAV`ZEUh^N{h}XXLCSb0+{YToOwM13Y6(_jyMe9En!b>d;
zP{h6!$qRazA$;TXERd5?`NCt29`nY&N;CN}xlGrVoX8GP5qt*D{M93BSkMY&R%)GB
zSsP%Z0F5SO6@$VymoZLJWComrpEzc`=r^o_5GL+V8aVTL2r3klj`zmbC~sWNgIA8_
zXg)BGHD2jr0Q@C5=Md}Gn#p=}48ntmNfH0%z9t10G(ENH<uq8B;pWq~t0r7^Bw{_A
zfz55i6YB&^@sO!fCDc|GT(+$YB5sYZATFwrDM+bPFRHfv&KCHun^ykay1?B`a3>)!
zch3i%kAh6u#s|-Ye9-<~1zKZN3>m`L#h<LN-C`$R%v*>cyO;@Q1qKjHpbCkE-auI%
zI*w)yqkAS<fVzklJ&|o*4q)O7lKa;d{S=a&3<IuYIcd3E$<ok=nMT&#_c6RgqVuj=
zFhmhORnS8gxx?a_h4yD^3md?2n6`PfMQ5uwoDIRkG1L6oq5;Brr%hpN+GC$%lXJOx
z{W@r5mEkq0J=Q8k7v2xhgVA%nCE+wYFz4nYhYzD~uyAeZvn2y}U%zx$(Z5OwQA_i%
z(&z3z{H@<)-~XfIk<wbK=6_{I-ciBAok;myZ&@>}^o2J!&FOgLme)c^`LfKId6YL;
z_!-{6)mz$zmA-h#-qBaw*!tRbq<mLq)Ewn2E8JbCJ@(I1w2x<t9$E!Vx9kuQLqDY}
zUAS8>><D5T8-3&sYG53_jNs&MY^Yv{8+h#wG2XQ*-OtN^K{(jr1mUK5MK%WQR*w!m
zaOXl{tNx5VPBehSoXx{@XPijc0864oDKqC_N*iMb0p1^O73Dg*FZZmCWezBI7*P<d
z7<BOP8bP+aF=<@DR?9H`nWUDVAu7@Gx7fl$M4%ps^d6A+!*%Bg8P@3=V|sMNAcTOT
zHG@0Dy|kuN^+KGv?l%YxdG*3Qh>;D(6l{l2u48r~x;uc5XQR-X5IVP+W>SC>=QBrO
z#fYCd{B%**j9(8Wu!vi~<X^J<UkBMkjhRq#kbjs9__R2y+Pg8Br`7NG%^Gc<gq@fS
z=V?)W&ohu9&*mNV`~8F3bJupRHTvZ>wA5;<)=IrkXUmllT_VRmsDzwV*l5)y&AgcK
z%mL}Tfk#^;=VMdm-<a|07`9nLdIQ24nD_+L4Z-zTI}))LmwOUI2ng}amK1zIz4KcM
zeks0jltEY@mj)oVXIzI-^Uj)mHzBMu8$R82UL$+^AD|ziBi_R9&U2`Bpz8a*rL7E9
zD7P^>J-s8GVVw39ieafqLyPGh6ejmXowjz>0<22xlr<*R3KJhiqBR7x9AAOUS}vYs
zU)I9N5#w`oKtUA5N6nW?U1nc2Za^tOXg^(#Oz{~5Pb46lYEdDBQY-k0Y@>P%#Ev7z
zA`BhSsufD-R?JP0Z-j+B>mFK5Sl0{YD!{6MTZx_l7-Q&b_sH@UAj0w;R4;HZ(|n)=
zZK8<zU-eeKI4=1ac=G2~bG@wQfKLN$5aud9IxQbaMN8*^6yiE;j8%xV*bv?-t)VPh
zBhutnU32(caLntLqnE_L+M<0}ECCOflZRpQ`3HT$JDY}=qliv~lD{d?8gv!}QmPmy
zSh9zf<?=7|;xDZ8V8*Nh-S{=^y^5{F{-bm+eKY{_%*oZ7ZkUA2S+sBn>G&uQ)OTV{
ztd^yu$lSqpk%lU}NKu>CFh$zA0lRq)K_pii%R?Y&;*@c6`x0{bHMyi7MysJOKCM!7
zhd8AgzJx84Qsatnf9g(rX-#tm;!+iy>U~kZZo(JfS-cEi5RAP#R#3zB_`vj7o#%xZ
zG*qbEH$^4__y|Ut5r1ZZeN0n97Nyb?wcevJB@$K1Cy=NX1A$!cylGe)0eiHqL9$2R
zyz|U}J_tek4n22YX~S-9$rVV48~KH<ozRAhezS{m`g^|6rmnTpR^h_nfOZG(x2YN0
z379rwt@?PjJpTc59q3uOmzUps5N_5Q{)>HpkkuqEh*krA!13P4bV$w&y^U^*r*VAm
zHRHV=^Xflh)rv|JVUtKnzc8-o?6{jEKFNpOQ5TRCAy_3oBkMhtoP%U+Q7*}0EB2=T
zE89vCX{7q7qp<7HZ@5+*l0)Z?Mi9T(FrR>-mpE>bM22dZg7=J*^E=&`47r8CeK?z?
zYj`&_2Fqb$G_g^l;-&>eXxmmPe11TD?$vV<%13!~S`BMLPdGJ!pxCD(NZ;!lKf|3J
zX?pK{34~WR#}+X+nsw9?*97!v0{xw=h9K*(uq$f_v);F}hOTgB<uj{IvdqA{R$%ag
zKe$RT{A2z_l{nfiQSozEiNjd}tBfkD_)qZ~K_OzYKeJ}oSxYW<)$%c`%+6}Mz?Fqf
z>K^kHJFC}&uB_qAI?~Q6zL8m+eW0@d&fbC#vZhugCQwC6RrWfUIHolPL81Pr?nudB
ze<~BGm1#0Xz0tiXhkJL-Py1ks8p}W~CUu-Gnf-br<xQqUvj$)20*oOg^CgylmbvIG
zUys1bZTBLnS0?_vr+O)z?5ZVUGF`1?^`8a3xC_yGWl6iWr^*rD1%_fg3i`2#J(bH$
zE1Md^+D478pjLG6-j+<QVH^041BVL5WrRj4Y>VuR>~B=|qttoHewD(bT<u|tC`v>j
zy<BUW4LiFovPW-|T@U)^kL&k?gWL7o{d#A+n9|4=J$IeBkj9PJfBk0A7?Xpowl%}G
zri;CMS9!H?8DYrXgEB3p(SA6aQG)onr*rL@8CqyK^IASFf)32oLWkokIzAIRV;GHQ
zzPhgluJV5G?40l+TGJ4%XjRP^SzQcrva;Vh%aq}1D@!Y|7+Va3j_=|QxY0FPdgQhE
zN)RjKUML9=y^8X#LU|mXj^UL9sy)Hz*s~zK7f%W!2)!7@#L65BoCW06P%m95vHHp&
zXlmgMJEbVHK7{HA@MRc*@H0xEAG^fzZP2_vS!*gUXJ3BwvmU!7Hlj^#qKFRZk4t-|
zAiOq^5NE=aCc}r>=B{95RqT4P`@7Zk1d-QbuTlIr#$ta{YT%*UTpX24KHMuSOBi+b
zAG?g&eDGTE*`K?&zY@n!j-fjIb)<{G`nvh+1JdvRQ~ok$LulW$c`R*9SN^()Fn}Su
z<F8Yh*YX+os}uY+6kpK^7Jp$$Cz-$C*bg}r{H6EIUxkXl3T^&+Rru?E`bDH4*7Ifn
z9VtwP6Y1Jx`@v*qI83(0VX`y85c9}n7acT{0dVX33JB}LG1*`jlM%=?7m(nzkI88@
z!f73`cgR_hS7ZOQIPFi0(*n1qa@rDmG3ox_cRzk}<TYToJMFk$iobU%d8&us4?}PZ
zc*JHltj>KV?_5OSm8-_ZP+?f1Fsl2>ZGtePl+r3aG6HsbWapbyVLq~CB`!=6?X@l8
z&e+;(544xsx3)&lT}uj-kJVOAsKA81Sx?)FEUrk^oJ42MTe7zWTC9p-<nBR<wZUj+
zU#JMo0Q+{f*YAfK8^ugVjq!wO^t?>Wyr9P5lc=>tsH?B3#!zpFuV{TuiM4Jh>9b62
z<)zSIH5nb;YA`kf9M)Wu9{&fe+YE4vM4VLU3H%j+)1t4^nl2@4y~S!?fI4B)IJi}E
ze;yl|o*|QveBuXg>v%92=2pQ7Eg&?1nc)jYT1z@N*_sS-a{#L~5o{<aQD^0`3oUg9
zW1vq~>Dpr(@qtiWa2=2@7iBo=Y?#Gq=n6(q*0&_8YQxMh+WUIsi`ZqtZhK-|z+P})
zV=r3lb{C%q7_|8jemW%fIG8HIPY7CC=a=q>!-)9sT|^k-!%O*$c5{AdILcuR%1EZ+
zBh;SR$h+c}<Sl0%m$j^;spO_dv6lB(0bk5>Y=a5?M90(F%Z%MZT+J-aVi(=B;C4Ot
z3%zr_o(sp5%WcLi@Ei6@ejrnurvwIV<s3{@Z}5S_xU6T$8G2+5?&2ysGjn!EsF^zK
z_`>$WPFyC&CaSTahIeMzIG?AMmIK&d<JCeBfFZ*f<F%#%eb0*y>046NT66Ze@TS@<
zF_YM96JHfHmPxPUw5Fexmqk88nCiXK=)56bBut)+uZ`zNEB@szi)IcEMz+P*yUI^1
zM>aOFTyc~X1`}eY&fsuKI5V%zs6cQG6U@pW%wS!aaXHxVVL@UrauT+)VCq?BjKItL
zCERVIj4HU0^9I1QLa4zx0&Oul82n7Og3QWw41w60!l7Y>v?l!`-rgCKYEByLaG+dS
zUY-<-j%@*{dFUi<txY$rX_9wuYi3Ph=>2aR@jDh4Cm=X61zQziqrp)2(e~u?Sg^JC
zT<TJe1JSp6?I+?B%QdKQ8z5Qmvfy`evEgw7hYz2*Z5CE<Dgb|3<b5RxR=4A{m6IyU
zqSFU=l!P;Y!@(V8_+bqoa&s)30%J^ulZA=iLr|hY<1h&SwBDuAFWQnuq?ATp9vj(K
z+V)Qn!Be{VBdEQyL3_(0`^s`ZEo=BpTQZI|9MiZ`?SwU)#$DGZF^xl7E2eQJ+8wQ+
zWQ|`b43NpZ7>5=`N7y)v4S^U!aZc`o2$L4tL7KnFK1<lAf83z$<8uG&%5la2vKvc}
zKT+23p%yMdA$oYwMpxv`;3kMb0^w8Xhc)~|kc1+xj49avi!IzP8I4exVKW626<XoD
znhUR^=m`gbRT^RKtfPxCDbB?Mfmj+<jZs>pqZRY$E7jnzVV<nvH3r^eNH_)^z-}k8
zqs@9j1JJ8usS)~yj0^qdTB{w*9jQgwcI(eoT9wr{OO_i0N2v~uN$r3;Ljuw^JlNPi
zLg_SrhBS}r@s~@D(ttF7xz#+>Jv;)ULZpVcv7}leJmmjszKO!hF@w9vNLS?PlvAQ;
zIk^Q}7cksFd0BMq>f~|9CIXTxOK>MyJ?R-c5uas|uSz$5S{nK&t*rN_368=%^)F<N
z$Tk_qxWY}MvB8(IZ;|ehkRVb6P=)!-Q3?J^2!2s4F1whNdcvd|W47k%<TUdLYw$iJ
zJ05`_V(X0PG+x8S5EZ-u>gUMD*fne^Vuz@9$(AwI6Yj^0W^HlLQALU$j9D|=dYNs8
z^Xkzh&)78L$yqmQeT1l=&?jnTQ_Rg<&r~E&opv4qA;H!~{}nJ|qj1B9Yr=Php16My
z%N<8C;FPp}$8l84eD5pzPL_WZqb%E|tOXyoDHAQ3nDvz>*)jX*Vv-TdC+Ao9WVA5r
z6Tc}}mK|X5#7WW`as?P%lclY^7#3?5E!H+Y+VALOa|K^0n5W|cRnQtf&o|!LgTiTA
z(}+QVqBS*_$*xi>W7fx<GO6aGHGRb+3icJBJ3am^?nbqSTjLA8_l;O>dz}pA=szu0
z6@U1#QpE@;X-(KjsXg`$bw&|9a!qa|3?K@Jpdcbo=YgeU@>hc#;G(<?KWQX}OPv^m
zw^?eO5{zt0n5se44Kn|O<jGbZj3V}9%WFc9`XmMjH<MXFKd2WY`<%tlEU;4dS&66_
zgcr~@HqDC^(Lbm-307-rIn91_`a53QKh7ez-~vvhLlxHWR;}#4i`W)+Ht@CttUG2F
zNI$Tb&~-e&9D7w1h&#UZ`7aeP=ogLROpc`lRUkMIMv0(WxmfvxdSFC{?VC+@-Pi>(
zM&9#H^+6Rboc|G&uT+nXKml(2<#sZmsFFRAcdBWuPfE#r4j=r)%?D3XJw&t4txToj
z(K{6tZBm>6RRs}R>#T;PtcPlgmSv&!lz1|HY2v@NLE--b7E!xnjqFE|h-(m_i?D%?
z)Hy<O12SwQ`xeQrgzkjH#%%mXA}Xu1#<>4ava2yUft$i??4x70gdUCTa>=gqOIU;1
zMJn4*oEq7M$PPvW`Lu+7W~+0~fqa#Hm}KkH?wwQ%ZGi%n(-CGxT>u)da*CKkj3PeX
z4wu2`T?YQR)X07rW$|`~Gven}!eMC6;=7q3de?C1su@`SfYa_~gU66YD$gL<0{s0E
zxOiiY>|dbGaU8)CY6aYZXbh}iH}F;Pqs2(kbHLfX8_Th+XcEqdpTSI+`vI!BU)rIT
zhueAN-q!jWY{aw{gZ@aTfgjdlP?7b`!|A(2Bwlp^oBAB%*L>+(|3HCRgk7Qr;09hr
z6IZeG`mcv*i*Zd1)aE425Z7bpnG^7q8R8~AcZ(jq5ZftRDIqiT$c2FC+}`?T)6U<Z
zhjtv&I36-G9(+H(e9ib$oU*wJU?ApvirzL}NT)T8!KsvtGc$0@L3E7wSy0Hc+Y1&O
zk!NO;T$syQ7zZxF9c~l{f58IN=>Y+T_><<<;3*EKWrygS9PwU3XAv|ULceh<*KBCs
zpr^#pn{^2?aqh=X<RW*h@MJHvR(SG$%6=sL#04W`;Qb3}M={;OVifM{lzAcO>@=`g
z6bel@%9ww#9H*-In`m|4n^vo@PFJmB-DrxmmsmGC!o6;!V3K=O1#}wE$<ibjk8pVW
zOywe&qpg12ki1H50c0xI>!_p>oFU|^)^C<#L=1F~`Q^_QWU3(|7rMtO8$?-gc^!?n
zI#FIuJII7Bxl**tk>y)|xYAit$xZQTKV0dvE@zaFJy50Caw!iCIm7wt3TOC9!--ue
zMS&%!=(?^&WBsL++nW42sZ?yEI9cvth3o>c-yqM-yBLc5e7w1QAHF91AI#^i`#`rI
z0$_W-4^&)!ZXb@^lUFYSJ=+`Dy9R;pFe@6oik874<JXuv2Fin25ye!g{9J5wt<;U1
zQ11na5kNy~;SFejilRv7BSCDrZA8l0#)`a?OX@MT3N6KF5a-I-D|V1zW_+<eE^RYf
zys~^;<iAQn9~@E^c?Xl>w}X(3^7Etf`oh1Mmsb~zw4l&<PNR39A04|>ypDqNqu2zF
z`A=m@=%Yh|T=gsseTQyZdwDz);1~@bhgGybCHN@@%=74&bheg8)+XRtSPlD%+1Di%
z=SQ#Ti-}@p-uVXnBzW5#PXo`0+0#voJb(-5YYzn+dMTGI8$OlMoQruR#!e$h%uK|e
zi+hhN!ZDnuB)>cd!<^QeQ2+$OS`i3a#-f~EwgM*1F5j2g<@U1Nw@N$LmF2byL>TF2
zjITd|!dUwCDd}v-(rCu)Nyym>X#8bqh|9GAM4a_$maehVFgCIgJ8o3FA4t2K&~6!i
z<zc{@KxtZGGsafRwayK($xuRw8^u2Xa?2v`#h)$dTrW3JqW=pk(94D(b~K+K?Kjx!
zCjMI^yM4Zxz;i7VXk&*y!K28c`G<wfNf^Y3^Oj?fxEp8%9x1DY4_^ke_;#|+zKdxq
zus;qf%rBq{1~wabTZ1*>N7UyW#7E$1zL7~DI^=w#hCK3=Y$rrG4&}#RC{esuVIHv7
zJl43pADIM&Mj)7i**HRWuiJoADf=*6n`kZDx|bQ7^<268pEiukWY`<`W0nu_YJ_?K
zL(K=#P!bTttWnsV$1_ikEv3dpVc0iyyE%iM_50IndNbbHa22gJ4T9Emo${P<<*77S
z$H-$1gS9nB!v@uGI&uAlvf@4-bk!p;8<?U=|7zw}15fb17`wA<w4d4>E5Wp*0{OuL
zy&VdbjZ;496l}jy`4&%euo3KpQlS@6dtfuNa2F0NoE0nLjnr1YLQ(_)PA7qv7+M#0
z6>qFL%*d`+_4CD_ieTfuRg}@wlRH})b*LCC&;#fZVbGy(Qkls%NS9;VbNoeRxfw#3
zg73t|S<pycGk_$*H6wPqNVOswR}FOVg&6#xkzUe?sgXp`YKAzd1BvZlc>pzHH;6Ot
zU?RKe1`&xmwqA|t0_%aSvNna;9O70CTBsQ>%fMFlLqH{g<ythLM`w9)4jRtXL~raV
zaSv>xyyy}_uIk6`wmK)Lv9Zed(|QD^0^Oi*4)h`vkJZT-Yp`qNIg1Yg(WFU?D^iN+
zBi3<eo80bFF&HpErHJ0k7`^j)jHk2qay@c{6}y`xJ@Fiwf*$^i1N~_$QCyGS;Kc?Y
z1^r&}73g%36l*QtsK`cQY>Nd^W&9b1db$*UN)&@oIAw2?aRAuZG`t0k2_nTox@V3k
zTLi1ENifWGirrHpj#|^1M^nC|y2wWnm7h4FWrNyFb6Y|mr{SkLY6`gj1EUMD=X$|V
z&!YV_q7DqW4;5*lW>7UNNZKE)&dD(BD6CeHzH1P0GT0u3163Cb!Z#?3d>=azPcs__
z_vNh7+=Z^W+;J#uPTnd(kfWx+5$J^<a8Qmw!v4#B7e`Q|Bws-eHUVa!@bunXOwpFa
zsZyNH72=!k#jhPOy58`;w&YP{+dESj=DhhUpL@3o!<-0Y!N3nAYhB023^l{^Q;7kc
zbKv*a_2%z<xL3f-1~mtB+f?8Y;%DAInKilY1Rl;OU+OTL-pD(l559#vl2(%uTAz-k
zq~2OnP2RAyJ&hB4H%^0NJaR6XZ(0tm^+q8ZSCJzVab$j&%0djw{&7LXvD(h@qm<{$
zwsW|H#lYq(EE1ij^K=z-8K!%+7h~FQoc8`4$iUv(VyGR+#yR=4Z?7_q0Wq3-)}9G^
zhvbI=-M-qJ)6`s#x`_hNhHn{AoIgD~@EjK@W$(x0Ekb3-b^onhK6W0NpXp#PQR!au
z2FbKh6gvVX@Pj+v(0XrUrB{CQo~K+xAEfCUKh=AGksux7iDyD}AdGlE9_IVyV4PPV
zh)Et~3jf^BQ6``72Z;*c<bVv7+?r7HE6#HAmEwi+>24nQx!#F5E*8)@C4}Jm%yEJ}
zS@FR+Gfa_Wo1{9K15(IPeH=6zhOrZ^#=S7{t)1)Qx0uHfcK+~UvcG$mI^STBunTsX
z>;vmpJNS%RPbksd_{Lql(92I*2NU*jc_@gi4rG<#2cpl54mcFvS|we!D!3j9;)Z{W
zR)fZjf|78$cy6-0t90{D+jIMZ{%TQ~aZOGTovuYoSS#vxsO7V13%~Kg(Zl(nV6@+%
zSZq9$i;dOvZ}(UotiZ_ztVV4r+&-@G!?MWEAokL4B|xyR;hRvqEIQ2#Nh(Kp`D>Ug
z>|0Scb_OUm<#fXvQ9KAYzFD4EV66uZcs)Ldb$HP8@~WvgfmAvNa2={R{S+;PRWA6=
z(H(I4;cI4|Ft!oVdN@(FBgd@CJRuFh24n%KG;I}raHKRk4x7If!nhR0;SwT%q7WRr
z2GqgvPHaP;g(d;E+A;W3e3Tla2<!&b;Y@%?2c9nm8o1Nt?JPKT&qIx1)*v8Y8SoRR
zF@lj^8u}JR)NVaBGWvA|I-I|yY!1y*lVV~aB}3dlJE1W%m*A^~-8;~7xEC%3OP|dk
z3wF@uQ)NZY0*F(@#d<&*z%BR|J`MPfLtmf8(%WlKEQ=h1sD2(1Qdu5Mdxy`-Woh4(
zMOK$Z-sO0jQ9t%FL@bDDcTiY&&4uW~!VI~32DL#I1*ei+NYE4AS>u9zCG}}0Fz>?B
zZx9lMxwsl(Y%Vo}Q3tPxoyh8qf|nZAXRf~Jf4#>n_6SWaD%<?xf*<UF?r^;f;lM*#
zC=N{>s7Q~2VHXUt85Pw~_Wv;Q4z{NpD!yl%R1mZ}z|ok$wDz_^qHJf=KE0&eZ0ZXM
zdN`IHG9y+BzaPAbE{R$;E5$uFHj!anvG_Bu9SJGaR(ubx0dI5tSJBueFC;&940JM?
zJ)<;)J+0xNfQ3a~Ey=Z3bs*)-0T>w_r9x>aHNG*kFu~{zWb||}`k-oy(FY5ok8~KF
zlER$^Za&|2t>W|CU?iiob4^)f2U@HGqrcDR<Y3wdWsz@Un)r7^Ebca^bYTU1=}7@e
z-CvjJ=Lfg~N-7?<SzE$mc2&g>v5Nog?$ptV$N-DAa}H`eKge?!M{H>lYs1S;X6>U7
zYA6TQ({W_&cb-(NT@Kd9rrKL|VhTn%vFhF<Yh$g5xVHGZ_BCo3>p)(VEBTh)gwoTa
z)3+hPA}O`F&CNX%7PuH!xHmQed_xsUb5Vx<=;)yXuf|ksA0-q(sc}>=@|L>uT!7K-
zQdqEo!;z+ic|!|jk%EcP04BzJYo^PMNQA0LZ`fUeYp$?K#u7f!vMz8B2A?JT@j&S4
z*j#w})X`$$u#1rd<d~JRg5FJ@G7cub9guA(Wj~{c{ED=i(^;g5u<3elECa5``J|%y
z{oIn$k_o8s>*y9<oa%X^>}3wTR^NwTUgYd1cUv4$2^$T#4@!O)JQ#U5_DBABa5QVc
z@h(R*8!($kzfAtnR@QM_#7Jvf#K;bgiAOX!FDbIkx!e6{Sb)3#u;Y|_ebQ@3z(Whj
zzE$n9j#5Mp?ZYPx?L<tdxkDT_Jvw$6I1hVx7hA@Nv=;9UdXN3#=UnhxSJ8<$YQm%Y
zJjsTXvyJR4ucl9rpXO+<{i(hFgNks~+iQ+622POdsSK^-TJaJungt{1-q3sdWF^z`
z^%kr)kpV`4|LlZgN1aa?l;>jYOn35zx$|!AW*{%s!0$W-#5gaSHw@?FJ_trWKQB5W
z7yEYlc}t_yw_t9%2fJ`$BliMdh^4Ln3Q}1&4z;G>Eh#?B^M>cbw}#o936BhWk@FQ}
z0AmigeDQI3e97U9+2>U<q%3rZzr}i?)dj1}{^%xtZ<06fjt8^9Nj>$4_MkGTDe$KA
z&1dGmp*jM2G5Ns$9UShVp9x<?^@!`kJ~4kk7QNo>^qMq(m{W!R@;N>~#|ILRrLTtZ
zf%)ONU~a@W^vspa>$X|_F%8pbwWlN%s`z=N9~%qdl%+X@-QVnV@0t&Aygl6yU;$!{
z7m#qgE$^~_=YD|JF=#pYet<bsQ^pg`3f`_k6@bToG=^}AuC+pN7%3eHXQa}}J@4Ct
z#Am=YkSXl$wiNh}Lw`_$Gl3`IPl%Hvy$v)KtX^Qjx5_+%l~)rB3IzM=Li-yt+#c>T
zOrn>zh#_+H>1Us~28VxyW;}^pCu)~7WL#B_ccl)nOfXh`^kzW(4)Q8~4II0Ix#1j_
z+Eq02I3<)?%X{fYFwILHQ@jmJl9YRHK7X4y%2%7uE7Iij;@C87RN&UlXQ0L+@LxzF
z!Im{ejP^_Cz6bnm$1ONdsTP__Cu1VVooQ)cy5tJ%LbeiN`@VY*M^wl|I`!#<UX^Jz
zn2{P5v)upw&i!1iX$rQ&d25c<b6*8iYf^UY&xU5~klkwBVE+YnqvQH892vgcrLuD=
z?pI@;DG{KB@XS(1WgcAu%~A}@?+8E&J)b4bdZ6b*=2`n+<|q=Xt(@Gz0pbch|8TJM
zEIDX;KKm<cAZws%0D&!W*zMvbDt>;GY|(|NtR-8o?P$UOm6YZDFNw0_E=#5CZL2NH
zuDGUqgqUZa4f3AgCU3HS&=x&%0Q%nOqAzd%aO8D@i@tJKKtf)RhrF(J<P~!R2rOj*
zhS@E$I8WK5$UY4=-ZHZbuclD9tH_Ggam)Dsog&M7B9aI@)4gpqmm>QN7WG7AU!$Lr
ztcc93M}wxPJ2Xv^SNS2*9^{o1I$K_O%acP--sNJ;>+)oIJs>?3BKt%1>}3z+-xXO!
z)c-d`wmp@yx4Tc`31#1DwkZ46RXvF8l2ITpkEdH2IfcH15!`}4uB3g%M2df4b7shX
z#Q(x-rcGb&i*o4up!!hyn9%@45$Q7Nl*~Hp0`zOqcR_a*4TNvj;hjB1j}Ax+BVLZb
zn`%#%>mO;{kT>f?NazR|Ksc`+_136`CA3R;LUO+vf2%rEk4{hXGD0vt4Hl6zsNyep
zB5VVH8yWlT*gtL#+FEm>M0NEDJUh%Gz2?qo>XbaLK2qo5VS53ux^)->u3|J%bO=o2
zTB1PLqhW6&fZ<ft1(axd1r$zzSa+3R*@6Q+vp<iso!OsJyM{lpE-sNn9tMagQW0*a
z^w#ELtojTRE2&xcSX*{tpcRGGdIlaGXtgyJW<&t-DDw!{c+%q!6JTcuMHoVh3=cy{
zJMa+H{g#>7G}+&aEt1$+)8AJL{J|OcTCP223TBj8MJ(g3r#!Tb&}e`B&%u5IRgMvV
zBuwJoiOMu2*T(pn&d+pyzQxZBerE7<{dv)fzTYBjjb{d*h)W{@f2U`B>$KVoo|TO6
zB;z~Q{8$pcmxS+`um!KdzAQI3qZ8+^YyT-o?hEjB{Bo|`^#I_jY)=bEJ`5dmdpi2?
zw18HZr-f3Mr-gl*2lTYiHqNeDGtLe8c~bWo$rCJ3OAAkg9#m%}*Oo>zy<rb#to^*!
z>7rwq>6|Xo@TCq(9?zgsKpkSkS`K_xicYbJPBG4SoM#<mlRR)1hiCb!I4B90aUYa?
z65RII&kx9L;s{f+ij`y)CrQ@E_)@lLOV+lU0!y-hH<7F*7bPT1PEF!~hs>5R2<v`#
z7jG8W;uSa;-rODAB`UB@E<@r0$w&F^Fgs@ZXr}lFSUj3F&Asn57jkJnfOx)G#22qP
z5OU1(PKWkvckgOS=uZUQcdPZCKTuIF*tL`rA9+|7J@lycMC62FO>A*Qgk@?#4iQZj
z#i~M);Isi;P1M5GkS*?>ob9`MZ~tiKDX`P|&ozvDHDllVkxkG6`M8NV?Q6Z|Uwy9H
z#QPD3Z-FW}N$FTHLr41jOQ^Q*<kIKy*a-xVLX8ETEUSgEIEy`{S!HcGI1O+nA}qW}
zq2_40lDNG#J7}EG-*4B##VChOR5<O_S^K`FrKR<G_vuDSK<~u$C%APu)SRzJpk3`y
z1^DbR(Q2Hy))lc0&N?k6$EC_2P2*Cf)*$;fY^+4EUfKs4)*hYf8E9HAXv7*P+J~X`
zVp^rnJ~RgNdYflrH0bP+O41F}+?hwPFQrSdP=<KS5N_pv9F6dwZdi0!u$tsS?8T0$
zr=~--I-Ns3nD>uPG#ulmEE%r@IE&P~i=2ug#`y#Q+Cu@15CsU{thY4_C?IGh?*Zun
zf@t>Ei#RA8E&1(0_Ko7W1Oy>S5Y!7y^!Au%iM3_Wq5)T>v+YPn`~h<=cF~fZNB>4z
zI5W?@6YIEap@4%T16tuo#dP4NljM>%{yfGC<l@Nk0nuip19(sbu-&*>U3mhFFTod^
zV8{w!dlNgAES-7)Rpdqn`(`!7fRAz)3OI$T8Ez}r86_URT{VNsvK5(18O`8${J>XD
z9?L+Pai^&9Ntr5pYnPGzA`n0>+l)aui{kW5utgcae?jy_@iWsX!5wexy$)GWc@p)}
z^Ns8qRT)1*ebbm+jeI{}ittioWM8cEv2D9nl4l^f0C%6x{t-c=S_G!duP_k;MF1+R
zq73<^e3SyZD*l?CgVvdIx|4IKoddX-GsMn`RoXmg%be+P@^Y9L&Ds`p&FO|=faZ&`
zwq!0UgdQuw1`gMJ4f<=j(qI3;-bCoH9mELq*H%8EzvKzgGWm^pIhJlk#qmeguvCjd
zfe`&(aflU`I5hVyq#=sDL?YDOpkrUN$7?gN@mX70ok=57sW13mZq!~}g#HWVLK2uh
zED_7bws*BCZuW&sG7$@nld*kM{m6N+_%$u$A;2vkXV6rZk29u^%p6N&Bmn*Gb%zO+
zRv-b&2}Lu;Vf5=mv{EXRx(3@mxWTC*JC>kT9@y#{6~%{*2p58_E65WV`g_~#ddNf=
z3L&X6fLKkiFn+O1C=JHpANZz~I<7*G{toSFq5dq|@;*=@8=hVebd5DKj~q(|;uhx_
z!3aR<>xQn*8O&M^W_q7Y88?~+HSlxxk2=DM0oJ1kZe`ZOJ49=6(j1)vdPpG30xt=&
zC0BxtsJ!-|CeOEg#TL*KIRF=~z%)RQsJnN$x8`}tR^&A%Lx=!|ak1~}?J!@1F^ZEC
z=4*Q1N!SE}yU!EmYjfl++_z5aH2YWJ-6xxK(ASU+#%cSfP)aj5P*Xm`E_fBpUi=(7
z?&@zVkzWSYff*$qOMXF*z+%<~t9PJ0lsx@p`u*>m!2#GOJk>zr&zlqOw#@&N$G8M$
z0P31cWW|blaW_7Bp-ogQA~g}oF}>X;ItExpa)9luV~RGXlQ~AX%T+q%R-jSnv0fiq
zdTjoW383iKu(EvCu?-{p^T|q;aZ9gDl~qCCK$X3YTw9er$Pysa<9u4$tP(HKW{;?1
z)Mi(*i1cqMG#y2t&~8>msL+1IBEs%Ur`>zBTc_ndn9yl<F{-HRPiOZE{CK+{-|30@
zQ{DNC?0f|*^NU^iu|O9sH`ty1H66fc)}!ULlpqK0*7U?KvAja4OeFowQ2;_52q5nM
z-cXaxvDE`Zu|3=)7qK)o0aqgyyM^0v%|T_#rS)U7n5gx<wX;rj^3fYM8#uDBRsk#W
z>a?cA_O_<gPSDYHAi3)~sa-b;$(*kL7)*4H4Iii<Uq$wS{!;psvs~&2CMt%s^+N%R
zP*5><Z1Hm<fW=eew1<Hy2v0fWp~bI9>mdJ1Pundf^s{v+1-oykfRj}5l3Mt{b_cNz
z7!o0)$k+`dNPf%JAOP{Z>^=;yQnq3Np=r-vZ(}V2LX{+x71$ug37`4Mox)>)QPeYk
ztQM3qk4P?hH=r>WN>MYe9)CUo7H(Mb*-M5z68^gEKa3MW$>+zSSyks*+;l0nRGBwV
zR6s(mWl;U{)Kw4pR5+k#>-<aQI^rkgVoT%qa^pBK;V%SIaOb<4>leQ}|CpfBYaD(K
z6(^@^#_ORqIJzg>3!M`4uq_T}*40h(PV@8r1O|Vl%mQgiUt)JAcsPU`t!NRhr2S9h
zeM%&WfJnH&Ecv9lU#&SCfFypi866I^@a9Q7AfJMdzfie#iT~h`85AG4P8K$ECdy7Q
z_#AdpP0E`Wtad1AEl~hn^s`W6hLkwfDuHw{IF|hc4-WLcYiYlm@)heynIbC5eCQ<1
z3HD<6bkgkole*45%!ELc-<!ma<;UGdiXsaTDnHJT7ihjGRT*l&i<lokvLB9O5z1pa
zvP@-D>kUI{0aM|{Ju=9x@lO7;qwyT4%P3SZ<7c2bPOE9^vFn_iyX+i68}>ijIkAgv
z^#+JAC{`QkWDd46&3&!Jt^^}M>)4Hyj8(^jl4rRnsVJI4&jt>o>l!CQcSr7R@$&~L
zA$Z>7)er>jAgUnG(TCRhpwH}Y`PdkQP*5gxjEsRD{j%B#M!lrB%Ys4~d(4Rs6KUq*
zg!dAR$mYCm;k`w{i!Nq@_J}`%hh;N@`YkhmGT`SQmkKzD?E)M$2GYz*8>0jq;97t~
ziL(6=)~4xicvAtt?Qa73wBrCckHHGSDfqp$Tl`{+M{^B#>5}~mxMu)AGhuZNn5;!=
z3ulHJ8jwGL^IM<CT=AKbWN>#+mB4;Fx`rcw#^l8zg8AUF0GRhp5a1MeSM&_;wQhKi
zPU#weRl-y_giZxI&HUn18)#V=l{;;cL1Y_XW2cQSV@N4r?#RPHM%kF}mR}5|uYlB<
zbZ7Yo<Si%uv5iG!%Hjuw+A;@9ptg!-D>>2`1PcLK{PGmjbex8WKrn9lhfAyZ*&e7w
z>4*-jc+1jR>wo0p!TiL`b4;mHS+59{NFop`ki(~ueH=1vg(Zf~I%3Q&{7PSCs3MNO
zf=Iaa)rY#YkgBh~8{pPgH{IJ+Uu{20!JD7ZSC&?4adMQta#Y+3J0mt7#2{vzIFGr+
z$vYZ(=8t~_l2y92QVRcZuG3W?iM(9K!2=W*z0%A-;Q9(uB!?9JA*TExh9cAlWJ&W^
z#{m3NH^-&GZ|yfv;Wub*-~?cnlbIm(7F+quGHyh~XO+4X1hnNCp%rqBp}7-C!fLP-
zf_d1wi)$==ATp{uyvSxTCG(oco@i0c?g@xOPi8jK<FA@cxqv%mzq$A~la+j+bV8qs
zcYrN(%Flq3ndHT^JhEP2fW04wU=sR)Pw)K}`vo|g@vAe3^Ea>f?dOlD=M#L0*(rLY
zP><~1t!qyV4rt4G9VoUsd`#$-QZ)mQ<5!@gS$o`<H2_|ZITy?R#0t;|DI3l&>{R(g
z?Nkxo!ekh~4{a3#h$!~{N-6fv=dNO27L)pD4bY<4^QzcgU%HB6<GRO8w^{=YQ0%E^
zq_ur9S25tqV{S)=d4z(z;#*fP950VK9}W_X*?2$jeH+<aDFxgdg`0bD$IAu>UB+Ny
zW{~<l%fooL6n2BX!@>E`5GSR;@2XV&d|wxRmS8|!G-KSh6?L)Se#s>$*x4G9Zw!pw
zfr-uHKJb#lMff&`zI6_M8t|Jm?UrNMW?M6Y%pNk0A1pXT-OvHkv}*o^BqgQ<xwwQv
zetxSDsM#iKR_{oa-Ks#%ySO9sXr!3tX_-Pk=s_9<GzrPYSv1b9;P|rDc@L=`zzN@^
z%@0~#3{CB#wiX;@HUEKGeu-)qhQGUZrLB2SJ&WjthXbwoi5?k{M=iw^!7L;f`=@VE
z+y#XVh@^PTiwu`sB_zywD{NMm;yDRm$zI30e1bt7`uzJ9{f`FyOGy6&c|_ixAS6k5
zbR!^7rM@@~3hYKi<!dfSmCR$|tOFq3qG;zjMM+7C2#wq44XZs|YicynA_B)=7!Th&
zGV7WNP7mR_ZUFe$2`&JSB7kp$gBWP+Cx{_qn0Eso@taZl)T3Rc<^I!0rL;MBD2Bsr
zgI)ZE`_*_LGu#CO`<esszz{K{{KaYDrU5v?c~nw&CkXmkJj9=|83p$beK-Bs)wkSN
zJL~B*{@}}iNV5p!9SF3b-29y`kt1Eri700_s8()s6J#)Rcl}8S^7IglfU$xUdfcVp
z&nNtT!tYODAJD_u#f%d7j2Exv)xyxtMt_KD06)`Iux8;Ws0_uZP>FXJk6lowcuX2t
zvw$T9DN?@%BxiRa^)n0i_Hzv#ad?k;h636{pwAVwE9VA(!8|Tyodm3(0Ac~5eZB;u
ziw+XhhvquspclA6mHIW!@Qc)TCCd|r%oG`edBp}J;^vSGDU-Br>^p5OH3$YxTVPBp
zSQAn>!aTEx0Y?g>phEoaf&=wjd$ienL89#(kYGOeb{&803=8=8P_GmjxM)MWvl-`X
z^n_hWf!INvyd=?oPA$;s;@t!~h3x$qjOnKv3pS8?VB{0oDR_m$l{qd=>@Okaa()v~
z!0g$K4PGtNT!fWq;U(g5na2+XVP|zGPdBrtr1@A1Ok~BHp!E|o=6OTaRl{Hj1rxAL
zn0P+bhH02x__kr`2*=`{A^;jl;=l_tU4Zr{S)Y~_BJ<aS0O(XV2PW_rb?#@F&d_xC
z_cLfKvtF$}(sN~~!>2V2LOF9(V;VPlggVB|KM@n?hmotT9DuDnLjwFoORPCgJ$JCD
zB(f~$|B&`3;8j&u|9=9U5|rzWN+ei#4Hh*hDmW4a4GMaqiN>joXf4)>T51szK#Ll@
z32=M77KgrCtJO}gL!GPORGR=MfD?lQ-~^868nuYZ;6VPL@7m`kCqdiy{r!0!a?jak
z4{NWz*4k^Yz4qFxnFzI`NY<Gzb8pDd(da|6niDvfIPH0SPF{^<LM(7Fwvk}!cVir8
z^!Lg09}|_;^PlijIDANhf4nm(o4}c~r$4K?olOsa*80442wO<9REO8N$(5<M8b^$)
zuKE?4O{xF1N;dJ|@5AxGjha>Do#N8#m7ckAx4aU5DOj#Qcni!NVmtGN;o1p&fLx@a
zCL6y-X31d2A-HPhM%wh#tSRiAshQ}armt+2|35*ORp?O)sm96NZ1iNa#;W5Eyr$#C
zBfrqqg&8@sP}4*oV-D5Y>9|{+wKDZ(uVm&rfg1GmSzr9AKm8`~!mif+ybW|8y}GqI
zFRz@I8Vcx5fzU>8peH|5sorR<+_y__2y0DmoJF*P)2Hg$1nZgID#fJKYBid0*bbm;
zbhop)UOXH1wBcrE4>jqlwHoz-RojDZnBI58q@XLAQM>v1Y>JJpdW~HG9BKUg&Agqg
zw|rEmL1*YGJ^DC)a1$A_&)h*LDkT^+%sy!UWAh?ai?Ju;^<JXfa1fd{-A3^W7Z1qK
z>tsE47UqGxaHo@m!JM&?s8@kjBXdgyb#U*HJA~jUOhouoR6*(<7*{m=s*>N`&xCd3
zolfe~QMApy+5QV>MM=iY;jT)$Buav<$(5(1v!W!BL(<30d!er+ad`=~zowMKl!CG4
zo!De)D)S(<T^v<0(W<yd1uh^dEO!v!KRPB2SiR<jciv)3L&n<>k9dBtK3(HJiE^Nr
z)`f1kby>wQ<f0~mQY{@IfQi{3SPJt*c5mcUI0kDOKyL04Yi<|SIfH(}?`381yE=I@
zh88luuyZV<sV653A-{IjjEdW5OxS+<JDd8~qLNX1-geFG?3!6QGHPaoYo@w9*34dl
zCzNs_{33C}9bK+3-iV<VF31ZP3Xk8o#vbS$tHXdf-+%#*-|iRtWa@H7?$iC>#OgFL
ze1Pl1=3NoPSEJl*r+@v#iQakukWiQ*6=sGgbS^0kU~z7V?d;Dh)(-<Q6esa$gSBi~
za(0o*XMPPQ6iN;fm`aRS&4nq<wY6A4xKU%y`;xK2&4sFBDEES#)BZG!+pcf3rz3JZ
zTDjS^A~}?P(I2`7%NDnJfgN(V(l2s5OLES|O0rhFNMAqmJCU%~2(Sf*UNWN_$7ygl
zr4%l*GdQ-2)9P9C0KxXDIk$0oowWe-;?cJ}nd+IZHgM73yoL~XPdb3tBxlRf5P7yM
zid*H7k>OLQT8zqPhsH)_Fj>OSI7;9Lwor!z8`;Yu+fU;&x{=^>Q8s!^wsTyz`(BF;
zByezlLX^!h^5HJqL-A}zLsyb5d|V*qTGj)|Fd^(sA1iEtgYe}u=>>i((qHvY)A<ZU
zPd(3zqF6Usvk#+sv0l2hXAZLy{h_P=>9Fxta?V<@WO|{$d9}ZnN!k46YM`crNb(m-
z9x|`|&c?QE?evlU-6lATwBKs_bC<R=-d~Q1;S$qvUU<=e=N28RtRTE;PeJU6RCtqk
z0D-b@KefB-JT2z7oM&0f!7N9~+Ak<uIIXvzzRo28ZT4p($L~hRci@TDQz<k(SB7)0
z*wG9q@X$(jI#!6TWOHxQ_-_L>$3ppB4PqM@>Qysz)4f-SSoP}t0j^g}&E0w>4}$-I
z&(p_r$7g@r!*ZHVaI>L7?4qWm1u#{!mlvK}BX}ak!(FSEYdvtdBc#$W<(R-t;i^U2
z;XZR`2`N6;jzzsRX3zGw{Y=MXWebyY+$J({K#&y}e>VF=Em~eA88%KcAj)lYfd;rD
zWuh<~V4Upm&~}rbe%y6H*x!y2ha2gK7nW>~T0RN2L9s(Eb8#2c#`@BBoi@6vT|X}P
zcckL73}e62J?+U;c-c-!-v*Pu+sWVaB!ar`4}wpk<><`Wgyekuv9uIQeR*s$HQdD2
z*~^&_qkt3Pwbm~&HyluEPJiTQt;5ZvUm`e?3&u>i5PsY(xnPOiaC#PrvSbX0tt61X
zc?%0P8R)%<DwZJDGBjO|lp`Ig4ln8}B~eH2Xa?RM+YAiRN+#T)3k*-t0C~?GiCc6s
zwZgp=bGH_eSTCE<-g+Uzc()7Fmrc-_Ad8YuR{B$%T(H?MdvkiRDmJR0JeR#~$t9nK
zZuO$@)LR*-jMp4D<0Ys+Orv&$4O(z4u%0%FXu>};lZKa&N|}@6dW;$C&QO_ZeWhEp
zNr5RUa2rYC4A;`4_`2GJ^;_3Pddz|G`FS@1vDiL^_x;`){AFC3u<!4pWrT0t)(yyQ
z*hj*pqypqUZ^wkb0r{ZH{7qjwfP7vBwvZIAaxEPjcflGVNRBW_h;lM*8^re<Cz~)R
ze!;Dq*?P35F6*x--u*5vUWmzJ{IR5|`Wg4jN{jJ8nOb)M);=!mY*+?pl2UglmuAsh
zNC=8v8o_qN%Gy)JMR(b!rL{+LcnK*lz1Sp+_miV?^UpJE-9^31dCNo%&sr=vGzXzA
z<+U{hML(u#g#g)?h5)}`WZN1K&HmnCR-k-OU_nPn$QxK8qG&Mj*c1NyGH9;Aa9|mz
zB4-|}9v(crnpWCd()P>2Jrfw!!92xXqgbQjj$o~+rqm&>;j)c{_$9TqUU@|BF`!Nb
zs7D-bP=7}H!S$xw!;}+r$k<_qux>r5fK%hg_aC#Vi9p!DZBnd{1LdJs57*8a(Hp;a
zUBhsk^sCf1;-Zh@3Fow8e{%~T^H>R@RaK;#dsn2^Z&AD!BDWV#zoar4Us%Ph6BnGA
z={uk@eJZRszQp1pk1uf$Q#db}r)~rHK<iUxN_+Z2rKG;hmr*bk@{Err3i+|lD2U6^
zW29-3V&oBx5&#kL<&^TO<Wp-aS{Ij-r7Ai0^@`M2<;m3P09X~AONhc@Kd1^W9a&ZO
zMKZ;St~??Q{vf|%^Wvk)PNY>dz^by(lMPuO*!`D<`42pD89_yQS%r&8T+w<A7!w9=
zHSAUfKP|2*dncLtsY<6;Ri?)mc6>_{Q<};A4)TkJbUi@%SR~p3hSIALqm}6uT=F^L
z`Qp6Fq0KxU$5RE`ZFAPE7`mjQeF=vLN-CP$2tk2KA-!hIKcr3*ke-`ET|oLVn_nI`
z_@i-iOLCs`8t(8YuH6p2NA`nYS$2mIhlsp7hWNP=;vE%d&TLQLY>3}#h`+iM@y8hA
z1MfspKb2i#m3hMsWaZu1bmb5+ntCXYyVO!W(9(pUkbA5%Pw+Z)8M{3s>1<8yU=(QM
z3Z`T$#C$f=AG%iReA>Qfx;ua&9}{?A?5h?POUyg!6c{#09H^hNB~yOPWvtJhpvzcm
zPYS&ET)y(a`=>o6Z)?JXX^<K%@9?GTMliMv0y=b$g1oSO8XW#2$EaKRzli_;<o}b9
zWsX5R?AOswM2<mg{It{hXh@<Z*DXf6Fib-!0-`4P4rDjvrM40dQ+L!P=SL_{HrS;|
ztq$$kg?x)TqJ|<=yS8#(Z8B&4<AnUY>;;{fu`Qy9bj@$Gs4|zZcF4Bbj$LBr6_^b0
zEp7arhOV`FxPGV~$5U)XhfqhS7%9+)LUZ;BZ)Jl^;`c7)cMbqdwaccl1)|_xuW_!J
z3WjnBxG$GKB6cc+V+tzrmsF;Y0ZrOLWatr+P8K18V2eufm1hqXVCh#zENyGWYE7H3
zv^|YkB`YV*NU9_o|AH2my~e!C%$uN~N4PJc5u_IsT4g0sBPQ^yB@=@k%^~Hodr`h3
zb7FqQst-AE!mSd-{ajU*KC`?keeQ6?NpV$h=0q;9ICsLB_Qe;DOP@P|NStj5w0*O0
zqEL-knthcY1R=biSC>Et!l&!M&Ti87#b%33m2AxN!lfj9*p_`mA7*XaLVgra7^yOI
zQtyi9Y|n~WTW3*6GL^B!qW?OpzoI|&-2whzfj~v;nq*%FjXhgm77RR1;ic}N49AIr
z(^r;O1>+_C-r=5%a#E3g?-6+k>9;@Ss)CD=euoUJ3NA<bZA+%mHIaUkh9Ui)anf&@
z3YC46Y-r}eq+e|vlF!5y5=k+&%0cX3hCImkaSiX*3ba!%(8VhSRq3_aJ-~#8m5<Y0
zxZA-_VPmxa%|PTvpC;P=?x*_=QLFe*5~;xkRCH1NzaCX>Ygc3{hcK*dZdl)~8ceht
z@RPonVI9w~{#3(yF~j-{!+NoX^>c>x;H*L`F|6C9vFwhdlRuCBRA#QdO4QPv<-*LZ
zTfxE9ohvg%uly_;r|fAe^1&}mFGH{O$zclaWP8XYCdqLU_QCX7>8yg-ICAWK&5(Ms
z$pcx~og3-@WSlHE4kzb3Ec$ZTV&qJ!_!qX8PjD)k51$k>M<JEaSR<9l@z}q?`k2R6
zRrW%B2gf{Sk9qQ}%XoWkjwyg<^!eo+>sQ8G7~i!@Qan7}ePY=bmfa)B;I-^Pu_Cv-
zd`9$*5wB$vdd+x`?=7wCJJhU<_e^}bjSCj~<!l>)X1bq!&V}vh*aSg1_jP)Z?MJdM
z)%pb$ev-_p`U3*W{mk6F6234uUHuwW>bBVCFyU`Di#ZqJ=vq&$Cs?sHuS@u8>4;hb
zfBXrV+0A=6GN@7+nV2jX+d?YR#L<rvI*c?5Q&ITM&K=sZ)+0=Hr)y9|_UtBUa;sPK
zO45jK<Dd&wGBIk_AVpOR;!-tI82-Tw3(+ggqyD56-jLB*9~&K8cdTfPMyL07pXS@A
z@Txp8xC{#IKwsDW+-ak`?$rnq5NMEDujy@Je&~NLhO~7`v_-^<P{BX;p#HY|IxFX?
z%lJ$K`t9y>7P7-StzxN?rqo+H>h^rY=h}PbwLQ^UWtaMrvzG{)-Nsvd)wpzKl|y>4
zJ6rODlc@&f%y^T2fxZ&-S`8^o-;XsPmU<>gjkW9Bq|ah~>x%J&ZRv^t82r+`TzyY{
zlz^Hb7wiF!GQyv|>Z-6&wY8iWz93wGxsA_bbhZ5|m1c6|a@)_?g0bj);ks=-^RnOP
zYiD=6;qO1kPYGX(CV%GVF8g=k)zscSehO~6@$m?c5?BmFi67K!p%6fkIeMgze6jUN
zLHOt>(Rs%x?X9~1BCxxS&)JS2!Ho71;YV1(+cJbP;Otml@8q?6C_`(LUW~%Rv+$b?
zdJWkNH1uq5N;eTNb0Zh?Hf>DqY>c8m#=QsnDXt9Au2bqu#`i^mo++AiasRxH$-=P<
z3;5fYHJ5IiKLlGao<7<l%13%9f3#9nuGpBY;s4nZ1#IazV=-)pr;rK!%)B`HqovBV
zWMlHoX6i~DaYrFF>$zq*@7~4se)e(zyfAsd@@a?gU?kjGu&}7n6{49l7j8@rYobRH
zeLHu7WZ^=B9<2!d)Os$(<;LM$n>9<@W{0<5WE6uG@yuC6bVoN0^O3v3y<bB!y1O8v
znQr)x{LjjTe|Dbqhe`^plAH)rN^vfwB=_JN;?r<T;e6wZ&NNdfQa3(jERlN}Ht0pF
zoa<X;xIz5dSi#*3zI1+tR%(Li#`zwGpL_-M-|2r=oSglIvqx<w&$ZBh+U!q`+mj7{
z(Oc#eHcpo%8)xce*48|Flbmz9Uf@7qGzUUc14#f+oeTHi?^^S)>b74l>VV3%(W6!V
zVi9O?%Uxu!!>f<*&JupsqCEC?%u?hB1dkzrXuGbaAs86(WztINJ6s?j5|guku1aj*
zni)Kk_+Wp{fRYLSK<g6jxag@z3CkROzW1~SvDNx%HdOP?rtz{`Zyn>tEf@n!?yMQM
z+}SEG<sFy0;AvaSRYt3ov6+*(tLj>%5xzWsxs6k*J-@CW$FS#xO6KylikzEGrf6%O
zmH;biPu6Ty4KI}oOg!K$&Qwio_A!yE^F>D;hZx9s{jEPvKtO7cNBFM3(6N%Xg>?A8
zRW+r;f4t^oV~K&^_FD>HZOt~<exK)Sc8i&Y_W;E3>no#4?KG<bV!E6v+Exihn?qf5
zMkh+jTGWVOM_ab1B@5GQTv}#Op;du~GChiHRjyim%@d{EG_tj}*hP2o)2=H<&;{WD
zq@s<Hnu?<#<Na=M4Bj6I-pU-jza1X?w68vmaGzS6HH_JdwY<rA@8rj_nTO8~mMy%Y
zC#>-a(keC?bd#^}$Lmyu3@;RaLvs9KN&M6xTN0NEXmHdlGDKOKg6oHw$Qo}}DGiPk
z6nym(??0uXUo!RkBbE}tX$K8;0aJP*ThCzpu4h;lxA{R)t7Th0mA!?9{?H{9{P=MS
z27}(zj}$8EINT3<EmFlqxI)b-TQ(KRzMN&;Us?3mt7VctCg8;Rqw?$C<CE#1ZF9nh
zeriLl77wFE3ojmC(*rd0?wk|5PWEu|e_EP@khv&v@+mvwyB6Rqzh!3H&f3vQ^1<A7
z)X})~${uY`NM4%m2VrNHIdz@^5U!1!VC)h-!3i>gqrUSM+JESaND8*p3!uFJcW7cH
z0X~Ln@M(uX41Ux1HTcQKn`nX82ko`CPQzWUQ7LeqCR6qmh{#oGKVsNFM|wkfl#c9C
zttp)rh;{g>jt;xx#)YD!jJeNpG-lc7uAAj;x4A}L#&~_eLd#;Z2ulUwBS)~1uk0M>
zTo=14D0FDu?&@FNSv<aEkDM){KGU^xeZ%IXF-Yh7)@nA6oVFr)bey=3F&PvATiW)V
z`s<WV)kkRuU#Sz+{eZ76=<ctkoNQ3&a7lgb#il81v|YDo9m&G{sD;E|I8_12dphWi
z!y@FWil}7NXtcA0R3Gc6SAwKRQ*<~<a5Q&oiCsHfcwA$vG$$2={aBS5bY?HfVY8cl
z_J51Vm(S=3Ns;Dp5UA^>PbOy{pvkK{Ne&xeB-zlzX0}d@B^%#|NQJE$3p~eC$<Dy9
z@;Bp-{feJ@yLZmI-0&C6DYqhgW#pFQS7rJZYOyPmA<<6y5&YJ6FA-epw`kA`!(?RD
zFV77ogTbt;W@<Dng<*oTBMeJWY(%x)u%tx;-!dGeRYx2jX*(t1%8`uB)8_hQ@Ci09
zCrvlIQv~W|)*OT=%z*240vHWH#NeELG^fFVJg7iOma+_J|LQN$YG(=#Bl4dkI{V*M
zUw5{HOu>crQFVv`QJgWgItf=7hWm4*q;t%oY#rnR6FPEnnb+aYW0hJsA&fA0xwk*M
zpIbyl_{GiDP^9l2Qm@}k^ot4b4!sAFVV-C?*J2VNBdv+cWkw%w1Q5A!L8h#)+#MJ4
z&G3`+NB5+&=863_b<z2ayE)4FwW@{(YWTH>3Au-fxrfQQhZ*+30=ZS9S;K=K%D`(|
zm?s;ziGpdepNTx5_%=h|APOd*J{uwdCL_fXYV(7rld~49@3^<+Jf`w2){rnQ6j8OK
z7i+B`e2~)>N-zKJilQq|2y$U;YvZ8m?^3hWTP)0!IBk^VrYM=QW}L(J!^DwbH@jTY
zn>_}BtAE>ptYK)*UYaAb4uNpK-^G5iL1nk!|ILZGDQaz^%-i+KShnKIvjiKXyRvRK
zwLgz!{S(dkOdi!Bix-6;N;~SDA<zrJ8*4LBXuwg94kW2~tY~^!+Z{QaQh}Bopp(Ii
z5I)(Vh%{=I%mzjEs)CnNy=b`fGCUk>Q-C;+LG9X1IPqU_;AajsUHMPVF{wKFPW4uq
z0l^4BDo5cLA7`%ub<X5J-yNGlwFN+t7hbI$LDko`pac6hpOkd+yM33&CS>JG3Vk-<
zh2c@TI@G!{ldj2oK5nC(aKx(bz8-%>2<al9Rm;c*N+;IK$c1Pum$|<AL$8}hQ&2Qx
z7uExr%AHy0Eb}*WpCFRgbe(wx@~|jdHl>RIy*W>*L!V8~e^4G6<#TI64F*D!*rI_<
z;uY3Bs-rl3>2Qag67`lrnq^f&MQ)Z17k|tc9r!K!0pK$rzAwmGnhxB7#Tij9v=B@C
z<%_z}H<r?G>%aWp*|4BpMcgJxMT4v#$vM4EU=f%;`P3$SKg)%^<k-#ZfR@*thBsC@
zb4`<VfOw3_6k03YVPr7nE43i}vCWw#@O{;?w6m5MwFCkoF9>qx)NSRp_n9Lo9tkCW
z*;`XD;&wNtyOS_rht7b#v}$m3CA~t~+6{j%72CW}cKbTdFI!c&D_2uO5HlIU4#YWd
zJ_H<TA$Du32HdrYUu}tEF4s^>tI1fY?UORz8DY%iXkG;8T<TPI5lu(ou=pd!D%HVH
zFvT$JWBjLO0xO}M{vMdwTwrU(AG(~Bx<lF64^F8T={JWxqt$A$tT(Ckz0HSX)!TFB
zdEz*mx>Ab^7IB~WITy0azdP~OF2ox!y`sxymR#w64_OFBekNaEz$GfW>XMu4S4#pV
z=bv;@E)8;CuI(jfi7a~Q0j-FZC$B!kMsUz`_Kpk5IKAWI4BSD{`}c}v4*ftsw*1*J
zl|`1!POG#3MaJ-rGlZZRL&{Wa0-|6;LH?rd`q&J3lU_>^W%?(dSE+Vk2`Hj@%270V
ztO2rO>Ond<5O@Riil||ySSvEZQyGSu8S&KHJsEW9S~aEI0U9n0auh1zvL~Yu{+>{z
zY;T<ZA!8=>BnGP<yYbJtY?pVRAH2Kn7mU)W$`(#NT5@YLHQPLGlQHu`y%PARIYL5N
z|GsO!7&Jlkm93rnsMHhuCYnFQA}`PB;Ly6isj1P^^i%d_GR10y_e0pClxo<xsTQ1F
z$)fWsK4Ili3JbvF&L7pI?#O=+7&n&KZ1Js=Sm4zsZ4>(cPbFc=4E$ui&mY$P`@R(8
zC2i)1r_OQ~lNzyX`0iEYy-ImunsTO~^Xu6oZg?Jn6t31e69U_<ja6a$GfAolPly+i
z6oLY{(+32WVAZV`;zc6i^{$pRkHl*61jy2Q*Xl?E<SYQ8vER1Fve|aSpQ3E=B=8>M
zvTa%%%Vyr;zlySzTDFAC_S$yYPLHx7iKuNFHV_)EcqmpIJ<kjGCtEl%I%hLMl0#;r
z!w-y6wQShoGi;MW)%W9V#P>5Xf2dxYQq4#CJ;4EHCs=dSU31So*uA-@qiho`TeZu!
zES?P_%L{KJTe#A-b@=>PCEw#~)J&wZP!n2RcqlFr*<&Ojc67yV`!H5)fGRykm0rQu
z>;Z_<%3yXqsg-4mrW8Qc*}c$b*a|)FeD3tgXHiemE+lbHq)Eh!{h?na7a-GCak66%
z<lKe+sy4eyjQfAz;@WueRp7mO4}7FEugvxcG)WKJY?MNUw+Xja^^7hd)r~$*o66nN
zHz}v!4gJaweuxw6swpG6rt&z%ZLT%D&utC6s?CzLOk)PYYn6i+A$?aVnje=VM299u
zyw>(<cz?AG+pF&(jIL%U8U2VsVshM4Q1^YLVBuq;f>rBqdl|42d5zFPj`mnYroxP$
z|5)L-evOMXgx6#V*ohLb6IJ_+4s{l(-iJD)j`rE$-|ak`&eT5reD8uC++w6$GDio-
z<}>&sn&cLBsObsb?RN{EZ}~&fdcCW8so=~@a~rtTrIi)TY!zIbEVFXsEFg8RIwQxL
z#O4oidOn?cZgPGhQ`y*b^QsRwFI0Eyic{P%+Bb7bzMna<fQvBNB<Dx0Y}=r*_0uf<
zbE;zaMs$8$Q%0#241{LXA13=5W71379@c~~kqKe)qR3ZB01OjdmJ5J&#5S!+FBJf7
zn-|3aI5WQ@Qvm?09RRPjZ8!ma3tz9K&)p$1J5&NpcxD7cIWP?CKyEiM6jOD0+nr1=
zIRl<fpVXUW5-U}aEF5KPrW1b%*AD_SUcC#Dgr8s(r39LU^hZX22FGs8p5^3KK<TIJ
z!Ioe4>U3PMW{X%WaqPX?s!TO;{(BKwXTBWX{T-FCidH4IIG~cgRHCv}GG#XcKISSQ
zHggVtelYtEz!K_8Y#d_i55VhOe-!#dp>_1NaG3JPE136xte{PO?5u#1uO<a4ml*t{
z7Q8au0}r!^;u&S4RcUz0dSR{;aPPDK(G<EUdG!&tG8)}x@64O~>ODuqiND~I7I@qK
zOy=e`?7NGmj;_%5sk85LNimA*4u1M8juU@|v6^EQ^@4`f4<i%r+k7>)&8{Rv_-v(E
zJO)a}`@COFJeN{D{GM%miErUoW{yeV7k(|#xchETuO|u@x3bD$l)pTtB|4few*3Vt
zXzJlaYHNJZFf=)zjSzR`Avdb^#)^nqI)-gAc^7RE>N<)|K{-`>DYmr@cqtgwZ1ML`
z&fl$Jd0n3s>o9@CO-NC6tjbKU9YoP1bu0aWmFZ}zp;hMNEMgh0ufKqg8eqGoI)bF_
z(W*?pK2^akatnlknEi?=fju(1oH5-3$Jgg%Sa;=1BdyJ_N@+XJ|BCY>Y=NB&UAdKO
zd9v|N07=eI{Mkc-VTZX^=-^gA9S@8Y1Hv+tZA7Vz))N?+21J2&M?y#gBSA3GPb~yj
zrb<|eDXd;PCIUOF7n$cK$ULVgt2*qWtH;BGJ`{NfULi_oD?vUDY`b?w8(#CBwFm>7
zE_WsvB%#*06rfe?9N`;y;V_}!7e6|+kFeYittU*f98nYHK9%TUxXKrVn^73TjgzhD
z`%lLvT2o}!=<6XA4U_1?)V}8qF?t-L+NYgwL@UtFia?_q#`s9t9CYdv5JL~)p$<-O
zJ2)q)v5N%Cx4?O_KAzy<EdF~8PL}=bAL;9`sA#FW7@kx|(g0UrkGM{yi7?Dlfv?mj
z+L~+y2C0Bgf$#?o!o%Y6i>$A|KF|7^@#e(Ya;Pf&rG3hgqWyMTAM_R(Zs(6tP3YVb
z)^`(yoI>YeqiLOqaP|_Df0!X#oHIo0nBg?V;$V!9w<C$hj10W@d&u%|im&peT0kNn
zl*L!pz-zV7msN|{O7ywdeRh&DfW?KZ^^tE*L6G=w3TUr&m0Du_C^<$zx{SrUI+T&|
z7g0uwgA!%*h0bFCZtYLjor@UqR0T_{tp#-l=n?W;CS3{@E4{oWkAr2+wL9Ws<R0t3
z5U~$OwBW~Mxii)6W)tZfZN-E*$H($yyieYZ(SmIfzIU#ZqMGH?xpEucV-MvgLK@YU
zbf&K+T}jp10fteGjU5WZQ@L*<UT9e+3HTT}1u88jou7^?7}tD9e)H}(b233S>^_BX
z=hxBVUS~Fm6O6;1^trwD2vxv6j65qx!e<Xiy|ZEN0EA30?WHsEeguk4+MrwjmaefW
zTQRjJIseG9nd9=Enlk1IQTv!xZ=)5C8_+av@bWR6myaFXT0Zwk^p*VdX5B9=t3u`w
zb|T-Z;1F{2Cq4Y3oUr{0cTD`Ln<}xwl&zR@*P@udx!1SC_iVBoeDTiltU^rvK9r<I
zc~3ikUH0tMeYrrdnrY(5F@%}V9E;1?s3R*giQA6puc+vw%KZFomFS;k&rV@2yUJ~S
zERy<J%YJHkHHM)A1=sI|*=NN+q3*m@A7p;iKA5Yqo7k!UA=U7)ho8Se$|n+ATeln9
zHg;dXAIyrR`xGMIz!Vn`H}uuVV9=UBFxfLKH9GMa40=MZ;KwWs&-(3nrGLW8;C;+&
zoZ#mEXJ*MS3zH4!vv_1haxzB<nwfHnc=ZD`Lm6!46aEIK1BKZ(KiAaOvgDj!lTwvl
zIL=+L3X+CZWqw|OKk4v_^ow}8bD68`UX|&sRRh|q25+nC^La&kQ&qaH3N*b`VXi$K
zu<zTa!m1+_6AHKPIVzt%uqypd#j1Cm+3e%0!5>xidEL*qZ`0nbXk7#!v{y9}@B0HO
z^H`l)o610HMf&9tD=RjCTA?ch7{GLMMQgLLU9oCCix6CcH&qROp(=9{;H=kqfW_RR
zXImRLQV+c^tIV94Ph|y^k@nemyz1AD=Ca7hpG5IlKv<7t>P|hiHuIMVmC44vc&JQ&
zS&{l6SuyLy<)i|AujHIt^%RA(VOM2#gWgd-u=Zs9uXP->wMiiQtJbNz{(w#X;1)k~
z9HO%YQQOP!(^5HjTSfE7JuAyToPJdK+=KnhvA7<b(5td6J3ZN=cDU!ReF?AAKBfDa
zANN3Us@owszaX{#xjrlALeCv@JS#_?<KNiEpM{m_ZEgQEcJ7fz6d(3NN&cEEAs7a#
z<T3p!be!~OE!#j!CE@)mfIlS-crGE9{?)6h?9F7u)s~x0tY5$fyJ}Dwja6?uY`0eo
zezl?xZoI_p&HRdMxM5gBk7`s%$;z^pse3o{Mpx2^j-5Md4?net&bIZcWbD$fa&@8Z
z$Gnt}B$$@>m2I{G;1(LINRz&{?N2(Q@}qA7;I)dut19|@RgvjO@3`e+D0zBl`J6*G
z%js6ja7;ee&1ziIOS088hwE{#EtRNl*ly_^v3o>LRWz9+C1~hHI#-#$j)C05Mqy=o
zbwzqP@N$7xdYQ7O+uPo$WEds2UIpCj;nbYk)}!t;aFu%d?{jx$2tY~Cislcvi}%Iy
zF@0Xucw|m%hZcHF-v!z*8$^25xDoByr=;3T_NAJ(nXKN(aEbo1m6#aNd~Vnhn`j2}
zA)LtxJ=FE|ifoOo3y7_L=A|*^3`H)d{)FWhnELd}idZFPCZ2u?3da=YY)ON1Kkbw=
zM5L6n@%s2EAH#XB{KUA@w7-DZ%*J7I$12tw1VLsLmy1a^R6>B6@^*N2x!pp~(Oxkb
zSh_(Ajbp}Gq4bNmt!F1IWw@n8+z+c)rPoITHiFMpnal9O|5wkd^wx^@7f;UA7U1R$
zX4B7AG=J2yYUtO9s?M_b#8Z|b;ph$%o<hQQ`~EJX!L{IWRRY)wviZUBFcdyjS`DNJ
z4q;(YAWSgtMtfT&rsh;+%6pmm8)_*VW5J-e*+ceB&Zo1VKEc*Xp3Qv&HVuBI&xX0k
z<s7#{tV|1R3w-*|gO%$8H$#pYyv1h7g>!es9Fba5=nN{G2DkLt2xoQ_?|cf!y~JGp
zATHwF^u6Cnyrn*xs3qD2Ezu@u2iTU}o13K|B^%E&33#Kk9<e5#r`{kM8!mwIOeCJ6
zhxDpQ|6_N89EdzfCHG)@o>HoFDK+*$2yL0Eur1W{u2Z|rO)|O+{Y(~`*`Fh86fbrp
zq^H<mvtK0vN8cl6No2L!fenAwS1LSZKek{>ld1d3QNdQhtY?)v_v}MP%Guv<Z>i)w
zmdiTzWtVj(S(SkZ0yv?5MPc+~svkJA9%DnrtSwgWF!u@CL%g?C%vz#Uj@Jzw39wYW
zs3N@~$~*NXmv<-fx*XUnoJoJUr1@y8aHz}lHq}V8Nhnd(VP8^ps536(RK%}<dN}%y
z*ayrlr2LK)z$`<j)?Sd<P}Yh&NX{`Q%LS1nxGR=`2tU^tk;l=ZjLLS)&NV~oRVW`X
zTNErr!DM8MmgWda7usk^2SJzufe>6_k@!$5nZZl~Y{5rTv^D{qc;ce)ZhVWe-Tuk_
z{NDZC=zcQpXSVyf%Kgl+AHQ{xAk9uelyTVL=lq06jW+2O?;AbR<V=IMChF2j-A=A_
z7!V7&M2+tH=-BOESO=pn$rd4l!_z02tXmU5SZiK>!OxInvvFlpMbyE<<1PuesY=Rt
zU)&!Pj%FYquL5US0k=<LWolLCc2dL3T}#Kt7it{3$_v-q-V$}b9`_-%)o_b_3V%cF
z{Ok$HwoWCr8~?H-694+*-*WM9xxlWm(M&b<wqI~DoEa)#5{nM8+7J#YNPmj@_S6n8
ztGe*&Rg!I58BxG?l$Bi`uzBUlIe#>iYdZ?#MCuyeT6z`!5!GqhOh;*~JXnRXJKQlq
zqCK?|&akr4Vqv&jsIUqcr6;_v`tDG_^^bMC(&_|3GEt;d4k`IMCb20Vlfoj#-E+E;
z*Re;~&nWkEsQdYY`}q;B&e@d^klCLY^kLEdWwaD2?N}lenrkBhp6Rw=ijErO*VT-j
z+XE7Z9ShK`w&=^$_t6cL#J{fM1ZishRTY~T*3+qEqr8cExyoMNR6p6VI#ZWHY(<)B
zS)zKmMeD2l+PhE@upgrxE|K~}E0vj3+qpkVnnH877ZvkuslHXTE`&(i$Ib1#3yUfA
zp|HT+;Uf4(YwBl}km-dV=d)5E*<<zd*Jv<y73=~!g1>R;^p7<@U>zK!*mJeQt0_FI
zqcHomR`?ZGFkJzps;}iNfIfy)Zd)teA9Wx7ed<AAWS?#-`eMW1PsYyO)7t;2phEHw
zq^*<2|3X!oGjMPBuGrkHh0(MFg;Ud}qBDDIs`@mO{iIB<ol*8oe<HXQ>#A3?_cEA5
z9~QfJsjedRE~t9Wp>fa3%*CK_9BYxqU<y2T;Fwc%4v%AtU=tzoqk=3qF0^-y*;8n{
z<3_9mlsybm&KkdSRYm%F)Pjmt?=X69&G2SbpBFe`To2r}eJeAk^sY>2tJ0rx&~&Lz
z*Cprox6-TV-&GaTepQb1YHwHdSyr)mk(KKMHhY7Ew&m=oyuvl}ETM>(24Ku=cDT1P
za{}rt6))m!^VI$o&Fi$98eG+9T}AuSiqta&Bu~le-1BUr{^V5+{etxp1v(rIXmK$W
zQ=QnBgM&Q1%M;6#G9}pA6}q2afwRY{s796PrB&%?Dx5ZKtD_B7eO8~8={wj#CBRvo
z6-?>Z$rPNA+@iFpA5{%~yE46A;HE=roO*v%<H~8iP}eHAdsbcVI!tH<SJD0)(9vK=
zY7_6Q>#AgY)p)Pd(q7~JV)iL1bm=8k>DSxdrLA65Zlsmiz#25mv`zpTG`rPpYiO1#
zvU}3KlQX>zt4M7rn|?XhM}v>@>3f?F_i0u7y^hvV-@mTv^HF8ykUq4oT+`OVLbXS0
zQjRSr{mq{;S1uuzl)7X~8zYK}!LL+ge%M|)7#uXA_gAJr%>GrAR{AhWCTc-Nb=Oz7
zy}>wDr9Xi{vp*&a<DB0y&dJn%Br(>#G}fYQ8*d<brdQirRYN~<BhgcmhAw8#LCbAJ
zpIuXxezq$8c}41dIBKytitT0oQp@)%GAC_8FmyRNX><}%w4J2vv#2UFCZDk$Q8jd<
z1`X|719%WMlo$(i4i(Gh&#U^pGj{Io746Gd#2bINVHnO*V)_g6l|%@^RmRz4s6jH!
z(ZJgjsT%BbZEEafj+YpGJ4)Pj?3*}Un;ZM8bk<0Nh1IimgAi+X7E4*~-W#}s>wQmp
zkBUm~-{S9>23^!QaA(*!2^O@zj$`3<!$L%r920)0N>~`XGZ&D@(9lC@INs18K_h9<
z1r_gC_4y3av^Hiv>!grF3_E*J<wvYu;o^6Mo5vk)fRdp2NWFtP@nTr|_qfTvWr9zP
zkbTJ>WB52(f-L=fRr-Z&oo%+FCUnye%<-~|ODc2fU6;usgkp2xUAAhRV7th?@3A)o
zjtanxDZMI_xYBZB{D0<dryRI@sE@s(KOSe9qN9&jMW-(*)mB4l>#;Ml;ZsYwMojBN
zEUKJ;F_nY)oGoAlSA80v&hLuf$obD{<IrVFq{|dbmm%sxPT9+Nr`@65F~J6as4)hh
zfePTeu@aEl5H<57nrZv1DNWt*F#?jL4a(=Xq{tBMU{WP!)9ph9pe#4!OI7jDTWP8i
zmIMxRi`uZau0WZXIx@N7R}&OUtnq%OW)9u!I55NIp1oR*JulDy`O3+pjhI0ikr{`x
z;`1@eavoSUs1K}+f1F(4Pr%b-B!<k|Lk)k@k61U1T}Bg?f-M(Nxg-28AeXD(C7`!d
z>e3?%W9q4`-G6nWsn8kkq5p|}vW=4oxle!F8v9gA55jTwDSUIdDOtTiZ}wrxZ#(+Z
zN~G(U;Rt49qkx*2h|wW+ht}yt_{j`PjuTea*6kmi*Tv>eEX}oUL|e-Xsf?+ryx4v_
zhSUFf6X+YgahlNA(A%L85<^!k2ybQnR(Ys((1T;ip%yWqHkY>D5}y2w^k=x_JN4(2
zReU@Bx!OOEEky`Anc_5~DE*9`WT3?@v3Y%>s~#;_!`ZCS1O*x})VTUD@PK#m?BYBy
zF;Eayvw4E5so})k?U-PEO=j{o!qqi4BNH+;?detmlP4b<Ut{67lZ~g4tW49}mFXK>
z*6fnrlB=N(H}zBClc>I<I_rCutlv^!3CX$obb)NVE-YR!_`82~4DNdHz8QawyQDj6
zgL0V>t8KNA{fj^6vS*0$PX+2Fw2Cb$T=P*J89`JrA59G<dr&>m>;^{vhETN9CDC!(
zP00l(a>v?=q080kLDuTAsIRBN7|W9lgGop(Xtw7feM~;E!TDHYgPr3x*Cii@Za{p!
z*mw6lqMA47<Na~$d&PFH=5fX=@XmaH05M5wC*tSvFq!b4U9}H~T3OMK4#E8uSR|YD
zz=s~22JlmqQnsNh&=9WTV>3<X<&L&Sr#_b^3prSN4hKwk_MV|Oo|o~QXyzF)02j~?
zt&mdd+<pcKDG0xM$zhT%;utDFR&;t9DBJMsEEm#hIu}IY=shLqh*_THv;r35LxzN3
zJ}591#+(h7lI%CIDT3g>XJRZZh6<+~Z@k<_APEeDNLFWpfz8UJ#nu=`((DO2=6WDh
z)wv`dY!KOx{m`XX8@b;d(E=Z%8!yA%{^~MVQaCc|BBEPFqN_xS^u~UAj$!WnBMbwp
zWS67%v6V-$CE4e&SEgID<7BqXj44#*j^zhLP*t<2?M{0??gCjd2U+&2?P^)|L9P$m
z*V4aBEld9d1b`Ro-(i1=`e%_tf%0Sk4<FpmFubM-sdHmAA$Oa9K4T=h%1hN;%4|ya
z!rSkNT52gj4=VR3T&PnQw8bb?m*C(G-w>Nht8W4UBZ#mpV@u@>dUC<ip-UJ%!kb^k
zL}4=|74Br9=jKJBA2BS+f%Qgq%kcU4T}Mdf_MxtP{Aq+CMyz}yMf>^ZaXxm9DZ?3W
zY9Gg21#R=fo2=tdU42`O>V}Bwz8-5hd4`)wvKt`HZur1T@-6rnj^o35I65>!t9dP$
zr4?3YBqsnd82~0qIycDeFsnFkj$eZ{upIPs^fBWd`9chcfdXQ>0b$+O%@N42LvMFZ
z9c4OdCnYKHo~U=T$M890YAntj^1*@+F`a<QMT|}NwhYhQ<K*xu*>}ZzIee<jZ#146
zZ{%cZ=3V0g5yACvpG|h*=(V!s4Jk)Bbo9X0x*cin*-`cOLv<X(m@Sh;Aj)@3toydv
zJmXj!gE3Dt2D(zZb2i*=K9^Yt`Ye}zgk4mB7<n|00{^@fPVX@*M`qBmy=}{KSLWRr
zMHVyrG_hx?N%p^sLfH<rSR585VUzl;s~ni96Z`y92w~EY&zbDI{qpj|t6vc6D$#Su
z#hkOW_Q&k#L(I{>b_s-s&*5^;7SyYHeG`%|U+I{pfU=B4uOXU*I#690?*3N9RDz&d
zcpizoE4NdT)l_7}<C4M`I5vRk@`HWsr|=&jOz{|E2<t|_H>iA<^B7M5DN#?#b)5EO
zw1<1%VhRB{h3X7w9f)-`vXp5a318jRQ(;7kQ(Hci2SVb-b((TytYT?wh|5(s<sqmg
z9{)bI<#TQ^c~+^`ky83Ld{KDDQ-H2*tZwjbcJPkW_zu_j!ram!L7STJZ3d_1YC+4S
zaylc_k9nmAX;I96@!5E23=I2k+GY~5M6j81N>`iRIr9m^aO544mR@kWYL%+i3?|Ke
zp5t&#ye6Y^XPc)V6N7`ksNw>$RP$TN@9FGv@Ys*X8h(rUJ)7Tw;Wb}GptN1>I*}_J
z9<-H3z}?nP_B=2Vj={gqZsd*)r~K36$cSRoN5Dt{dK@hvZ%?63#QQiEF+)M6;V!wB
z9TG4$yJOnP)NDiY)<o?I=(ju8?yAYQgVG#o!j~${oV;t?^m`=b!W~b;W_%oBzyJlU
zjrfb7(T}IXKf3~#zZm20LHfRyJ9EOKSb;tiux_{2M`NmC5IKr7!V|vNVcU-Q!GYwk
z(v4nl!|q1ksu_$mTbzwOSalz*EUf=$t<NJMy4om_I#Q0i#;zRyY$rHxvH_1A)acW9
zZRgS+mraLX;Bn-~LwR{6EDK&CR)Y{Hzn(^WSXs-lm}PaRs<oi#i8o*hY>|!2>h|&*
z*K&Jt8lsg1ku>ckRQz(YTLwBNKo;)%w-~lqcIAbWjuLB2!4h#&lFfvYJk`K~Tl~|l
z2K7)~Xd~!7!5|L#mW;hRGg^n$9TmxrGXm+TyS%gR6>z!3o@Lydj6~Jk2v>kUqE(4M
z!doAMNT+wooG#-r?d)&S9sJB(;W&qX_-(kP<X(nm4xQMUF1Ik&Fr_;;Zq#c|*mA!I
zkhQH2OK7|8+BkQZ{TwknNn%@n7<^_h2@7Li&=)?@%h8h?kIwXm?YO)Or8v8itF>!?
zD!R%}hn=W;$W{FJ7y#xS#DBdOngLT!#o_gzit{HSe@x<?w*cV(*xmji1!DU)%H8D)
ze1q<A$+$xgKn`8gHAfV5N=t=rW&Jy`P$@rzj$R`7u!BXTj{m22<@bmd;}wTD>F71a
z`&eUPiZs>fw{*Y~v1e3+H6^0$M2izkUD5I@v@8ePe}IVk{FZ#wp)SpY-=7Zw&hH?=
zF5{J)E!U-PA`_TvtSbWEfD1p!hski6t(I?nIzlevNq^O<$ss3L-N1GgtdIXI)`Qg6
zzO@HB>BS6Vv>Z(?sGy(6xO+IwgxA{s4~$<LKY3zykg4tyKz=JA-zMRkw&aEx9F=N>
zfhO5-hjqxN_bw2Hd8nDRT^|p;3md{;RgOih<uHo}HQAoODh9oYufixBO`+E;blJQs
zW7$NpRz4i!+WLBV?CT!-8kCuU%XoXmkGU8MCfld5>=8zINHoIT#`kQdoNnWr@m9Yo
z^#zdHZxBMf(*021(2n~C<%Ov&7bF|sFpPM4E}eT%^d4PM5U~>p8ShS3-J+1fuxNop
zEwaU1x~~-P#O3-)qq%vH*^~D(eptBgzGeUm_qrMsD?GTasMa_<cF~3IpT9Y)^>Xvp
zqx}_Mx-ga3`*;-$eHN>^mrON^UNebbui1^N1`faq_w4Ecd2<Ku=4X!4W_tO|2Wjwl
zgFs&7iBa~L7-t|T#XG`Myn`(TI?xIvwe^BzYESBZLL;&v*~}Us(>HCCUr@9~_{yBU
zq*w<<Q1I!UQ-YS5HcJmMnFd8GqHM#J?Ybx%taSR4;X%<O(Z`XT%sx})C+Ne-py>C}
zhY~(;Y(ghD`B2j0RlGca+n<>8UWrC)=NpCNPGt;@(^0>qcEgkSs52WV(N#|3FG*A$
zQ|U_Dz@+;up!i(f<#YB&Hq*HrzRPhy*Bm>MBfMpxDbqK&pQj#z_~x)0k0yjJ^f&Et
zXb+O;m~JxO+4Rb2FLj-?NAJ9sL=Cl7Jf7(uk81I%c*<+>j@J*vSzjtj(&Ujz47BpB
z_<9=cDv>WG!i$@jh!DGq|1XAn3bJ1Sac-)z->&eT(G|WR(T65EGB5z*%p|^EH6TY2
z5AB@1u{jrt$2F8wEm;qm(x*{)0eRZ?dU)r9%m=^SzP;q^z8*cA^-;a31GLQ0EIcE3
zsqskBTQ%#8!-2w2V^Kb5o(9mHvyVeSjo<1`=UM+?*t*N<jWc!!iPJy~kVA}KHCbA`
z0-zWDe8{gbPKSPey`+nlQ#n<Ebw+VNy_J|KI_DH8*ie_`o~)f!isf1J(M%QYj?PRN
zfK1{#tC*pf!BC3KYTWb*{Q-quW%2unii4U$HB0~aBtM|bNo;=>U2j;LJEyn7d>_d;
zmpNp<J2)E5+`uf^N~xLXCuLicSN~SuJL({y$A;nfpCua<-`RIDp#9cd3}`-90>ET8
zWc>bPQtS5^Q@^!evhg{DA*Vt%j2zRDKQ<^D43@`<S6#$s9T?eALb_<6GBcjdFk)s}
z1}W~9=@Sa7FzIokB-vOG{4L&JSAb!GQmocMDp$B@WVF@-@M2qA?f5`XvR+PBY!dei
zWuUfPOj?6XSyoIZ8Vjk8L0D!Z8+db-i*M#Sze+Xot;DL%j9oS|7<3UCbl^?Lw)JhK
zzM+JI%{k*i+Vb>g@u7%ee$H&>2@3^G=X}KHa{y*$$ImiGYJK;T@RqZ2ny_Z+#MeW3
z&sbNDZLj%_8*4w_Ks45k{ZzRuzbmrCWS|q(Iqi#y?Ctp~Nw>47<^)a0w-)=B!;5+J
zn5^o^@Yk*xR?`r%#kmhEcT5MB!_MlQjq*&q?v)PDB_f##Y85<dDK6b8cgtxPf)(~;
zaAjm5x$GW>Cd*A9Oj_<~Aec*_^d9qW5zp@srB}Dzt3bPz;;-<FM;)4CEYY<E$VSfE
zipu&whAPF&QOPI&S0%G2QwXZwt*$}@2-zl1WhA-Uy$-tVk^M<WodWTq|5Ru8K;_SP
zV}Bo0KWu%~mmN0NS6n}EPwbQ3cJQffCi&@6or8=xAs*>tx4V&Mb_B;=`|YQ<W)G2Z
z^|ak=8kzYwr1Y!k-;tE=l+U=r-QgcOrZ73XjZJ8T<~mV(`raX{^_y|Of%hxAEgqV$
zOgNTdOeR<4)+h;aH6J7g5Ch;V+1Sf6a_ypQv9EtmrLGyW!Ac>^uCcFl!-Urt64$xU
ztSlN{wS=g48TaKvekX~^`Q!U<T2#+<2bKdjAAImr8GE^L$QG+U^0`!z(x^!4ojvNm
z+BMmD4+>*)!T5tN+`K5SKH12v8+sjnp}CUmtGD@6`ju~L;mCQRNxT-{urTT%P9ZFK
z&73PYNY@Jn9^~ha2y??mV>O~BIsb%yo7gmIINan+vlY!>(U6~9Fy)}+f>VdjdS3xh
z^IzeFa&o~Y4xT0Fc*;7ID_5RCA0le@TYmeCeslZLb`@`GGj7&j5<iy%Yn-Opc*W34
z0wboHIg+_hGPkHIb9x!kwU<_GUQso8SyhmCVrCRh>>FpkDv3TZoF+{?<AQ!GOlPWf
zgQmj`nhrOFOJ35_=@*ha`=@whH1D$Bc8>0Y(Yr%zE_Sh)Q(khZbz4-ZNtqytdj0ag
zBzm70y)V~qCKucXefah})o?^%vlg%8`=W67e#QZ<&62X&#R!Jv{Hgs@@9$Awziqc<
z1FPjcp8D0D%)W6s?qYRbHZbY&NJNX+<t2uY%Y-_d)aZ<6r6@gEqjQv$bH}}PNWEG)
z!77M8rh%;PSht#_61hntpsmgsa)z8s3DXv;J2Kh#+;o&Fy3H);sC<&fg?lPLB5{V~
z8a%4&mv|~c@z^abCYOPhjKgJ1h~`{YS>d^yuXYlY>U}?*QwXxd3_<GMwGjl`0k0$8
zVT60T?J~L*j9WVuo27A(O#;h1I>5yZ^|WV#tphLW`VsLud$ir75*k6X<c57Yhm3q`
zZL!g5v;8ItjXTES3oO}*aznqoVdMBJ>BvNf@U4xe?@ZAzo_A>YkNA3j&i42+vjbCE
zIO5T7$JgU-cSU{s!<hfYuwE8rVky-X%$Dc=mtY?KZ@`4fQrD@Tv5YCBUcC#r4ZnEA
z!EW={1Rq#M2nFFc`?|44H+`FP_acYwz{;45XO7y2Qk^O<Rt3<QcYNSlb2L_{)^7T{
zYi*=@Sl-#%Z(M7H0J)iL`bYV-SJE!rtRz3v&>`^eh~6z-$X)Sg0oawBDgVmHYM%~C
zxfnyCu+%jZF=O^bvj#P|IU$p{WhuIZWWQ@5amxX0EMw{X85^H44rj#HPVd9>3`Jb{
zr5{{ZFF;7_%d_z&=|AGx#7>lMK$3nm=~i!)ZgP%v&c3G~ln7=*zX_nH!~?t^LIdH{
zp*9lT``7)Q)7-OT{WbI8NLN%i8gz7y0Kq)u-oXL|t5qsDh^6Wh<HsOsv6b;oNW}-y
zyiZm>^zDPV%=Ta?vupfHL-Uw^z<uflb2yQK%YL@mbOIJ=@bED6_wCdT@SFiblxBdh
ztJl1z%jDftkhtq2>99q2+mFR`TCJTM8}VX#BAt0iN$x>?BRfr`<W5_*96x=I4Jmw3
zb2cFt0?wzNuNnu<(GR4M`iB+iOITHO2piYnOmOq2qU8MVnh74SR~=<vPUXnpW#^aI
z69~A)4=$UC@9CJIauE&Z47q=$vAwo5+7sT)epxFKCOBkb10jjcWLnw*dblp(m~&&>
z>n_iCcQbscukvoUUwD^L+I0&hkcEwt?CR=?hH;_{uzFx;@U_~pKB0Zngq1ZBUuYrq
zeQo!avsmU#jTRZ5CW~CWHcb^b;0y1g8<w`M32I6$q{Ov`Rc(}-3BH;(SJs_FoU;~b
z^RzL!#LxfC&rFuBga8>eB|$aaFCMx!tzWb;GUcyzQMWWjb+#;<Kfn}(XW!!#bGk$$
ziVvx^DMk<4EbxQf+lgds9oE+dx;0W?+~iR1D5n50Ij@aVkg~FKz4{r!C(BJ{d<hK8
z0iR<^T8}BsQ-SpIY-w)21M?JwYt8kJ+!zY}aG;qEm&7fM#@#P-LMALk!G>@4zaz%L
zrg=}_OM@4d<3g7`5>+A6o%PenBX<A7HbCua;|RYbDPUI>?mt<a6L=-9y8);7vn<^}
zW4`8Z<jDELDAM}6UKYc>XahGvxESr{EDXF47Y-oT(v239y|Cyr`zQ~Y!Xj?Ti83n6
zdST)N-igV+WZEbqxDRWhtt(id1>T)h(b&Yb+pXS25<pYC{}?2er~l;IZ?M>I66jB{
z<)F~;uDluY$x`q4S<?298FJU<`zx}%cEVlLls%dX!`*KOOYh~d)D1s>P(xk(2SNDJ
z7sn88mfY{{<_5b^RKwoO)}D35I4i9G@|ShHB<EM>*ME6oT^}BL@KAfC%`T#+@ad;|
z*nJZ6cj$+|!%k2DR5}UPP2u1Ne-1xi5Ohf~G<2kd<NpBs+J&-F?gszW-v)mTfkQiH
zIH59pzs;H8O?@;WUWlj{A!ElG`jNUTaFh2L!4>Dqi@YWAogPGP?z_hysl|Jb4Q+FA
zaQz79-v*553dU~mJ*FnQ+W@zm#ITC~uDU{t^*=TZkYin6F(jAEd$uQ=PW+l=d8jn6
z-_1^O`cD?!fBgE(``v$h`W1ikJ3e<~uHd-Yhu`zlMdvKu4T3B54(riBFGy5V(orVV
zSy*%?j)?Nzf&!bTaSg%Fi6q$==gB!Z7F=omN_~L>Ig+EdaNVu+YQG%j9g~3)nIS*@
z=YYI9`GJ?^H?<|dZitcXTyI6QnKS!FuTS&32-D`1{I+e-{dhMvwXJbAxxd};wNQ(@
zZvKn13ASn&nYW^l^Q~i~H|af^&&HHQ@6l{lbnAPPNrT2Mg0;~t#%iH@&2d^ty89c%
zmlZWa&+bR(nDrcE)+2ZqvnFSMjd&2lEeFHrTYcV-^>bd)Cr|UkIZvrS>E-^@xslNk
z<IV5;`LFsb-r_{@_n5BWhN9oR0Jj%CPNBw?#_gAr;K<yY$|IBY=kM|}YoTsr(-cf#
zfTA;1$_pqZnC;4m!o=xE30iJ_aDrsa$j&PokPgY6$5fM`kxtIuU(&60)*WC**po@O
z=pQm?jb=M5?}|N<_L{<W_ghniQhNEvnG)8poYzy1nQtN+&lg-o_a_=xcTd8i$DY@>
zL1oIKxq78M3C&49Cxs&5mUVg(jwz4a2rH=kb_f**FWUtxM<V#hxI*RNY7KN@?}K-!
z*@=vz69<ZE%y(wc(Q26Ktb}_rnV)Lm(ja|@;MZIg`sjC%_c6bTi7|^ucNOlJv_R!F
z0slR~%8iU?|16df`$t~*Lo#Y|8;%;(&sg<*H&Y$AUDo}gtfd`U%UssO&x_T{P!Rtl
z%39KqbtjkgobzK@P2j$a*$K$nei8f7M|C`<4^A%8fj3?GTYnnMrm+rx8)ZY_k!^v?
z_UrAkT|&0-ZuH3PWm<7NVxfFq_5}=Lxd~^v|D@9R$Aq)iE&<S~tJK@fIc=nLvJ`WU
zZa@qF=Vm0wV4k|m!yD-x{5?_DjtR1MOi*VgGbrUSBg0-3B(8h1i}<?bNGHDdEJ+X~
zmab>?(Z;SBN@bmQr|hgfsUY!W?kfRW`T81+vhNzo;>!@exU#1kf1d_fX+es1l}dkW
z!uUt4z<|XO!gw-^n&BdRbb@QImtd09^Lc}|K0*7*2Np$5uZ$X5O>L{FchEyem_S+U
z8YSfv$(i$qR3{5R0;O;Ba%hG;$-=KF@}^}YQe9yaACW+3YNB69CU3G;bSBR=FOln%
z8W0U@FHFvUSCR>4uL-=f{$cjNYyT{654@+=IhKJVif*=N$1*qCvsgwNj+P8L9;F_e
zl>0d5*>P{9yjk&WT3e(ZBO>acywe@)>>Vd^Y<k3#Bpbjpl2i=so#>cxd7Snv<HiGA
zedzaO>*eZuZo6#HlFjO4%v9f3P%E6#xLw9SMfH_feUD&dAlt0%vi&MoU$v|6Z?3*0
zw##^GEMsBf^N}{FO8^Cj6h>)<BruCEK&o-DkKV3|WUh*G*VfUltpVF*e1CuIq&Ll4
zQ8)X!toNN8<7`9QlVsH}IL>~<b+gY!v20Rn!W&(U*fW5b?F{2(L*NrQ1A>{GCdG>E
zpd#nyia73w6`A9ToE{f`CXEir6&dL|c#g|B_?%eXCXYNahUG&9dhT4cynR!stsIhH
z@rmDOLnl4fH2LW*+4D^T6?#(+w;AslD1Ui!_Kubc<!AHV_d&<-Jv+|~UplmfO#0C8
zv!avpYhKHK^A*C)j&yZ=?YMDiWwx2G;paCXu}<bGuAK1PO+Wc1y+M9KW0RP4kYDhb
zDNW@gO-zjAd*Hn~-?XCSwGf7G_K6PU$Qoa$3UrOGUUUYIAcJ>-eS80mhoHPb%AmqI
zXx)|C>RoX`_zLciNTncg1vR%X)l#&Hydzd_{uDvgmm|#A$VWjw0Ov)scQR$`@=Vb(
zO`Jimg+WbUo!VvEmr0;~k@l(Z*@+sN`Fo8_<W?1wOH9=60_g4nTt7GqtL5stT@+pt
z|I8=jnQt~@4w?k(N0gUEb-mbsUfq%kfr!{M?uJ}b2-_BhXMcm_*^x!zY3M)U0j$rk
zUdCGPgdz77o{8+u)<z4MZsW0180<10fmijYNyG*&fTrWfHoVb;xy7hBwuZk{$zt2V
z9KV)VPl3F8{3x?r*E3r5V%-fA_rC=pXNvCRr+r0~w|0_M>bKUH<g})s-fCyuj4S=e
zHHT9n?PyuC`XrXC^S$f-t`i$|{ZyQMrsCu}8Kp&5IZEb*3qS6Wr+bA&UYWUfSZxN>
z00-1AU4WVqZhTe-1x;Ov-kZ>RWw?=lyiV3|A?_ZzS-MkUw8^icTH4}t0$geqaGet9
zS^4w%E|ibXoXj!^Sh0=dBMo&x{{Nhm@z$)0$%(_LHoT29Fs$q^oX3#wtRe3<-d8*Q
zVYv7YwD5-vxrm+HA9Yg<&jNBpS8Ks14M}QnH{Ixx+usoCfzI5#Tz%4(@&@Ml|9I=L
za3y}P-7mcNQk4hmsV!Vv{Z~o{-gAA6^SD^eTg-1RYu(F1;;DxrOm@$wN;6?ajEyMS
zP{oUR-4GYDq0GJ%&A}L;*B_|5qT5uAZTg+;ZK`{_Z6UX1dD)p7Bt*%L&2uY>1=(;U
z6T4Xl?6pxF_d!u548hIST!}3rkIwzN9gjhy9+m9_`wzpYi6bw3;(#8a)^{Fs=Zl_>
z7(+yqZ1^K@;msxdNiB`Y4MHvs&p_~jg&^_zLo8;!Hw!r{mUx}N>OX5}?<IRqB=A;Z
zSACP-TD{l!(LWJt3CTZFa@t$2pG?sR(Rmt6dqIY#GTx<;{WRQiO;7B<gH=w}Sm0`W
zMzv(TH#e#`@b+In1uucO8|zLgyqyYJ?*n^YcqCt1y-Sk}5&!TfiJror?!(tBF3QU@
zQN<e9qbqY*<+~32T~%`<*qe@I!>Iz|$|W5<x2u2-iuzd>EF3#QNYdWdRPUz;y}^&<
zM}Gu>Eq5X(NVWqk10b&)0l&W+?w6}F?cHUcyu0-icnjUzDtn9QZ>PXJc{wuz#CANt
zA*PbNwwppON_Du&R>MPK>DxW>vLksS%vW7s2mq?c%YMoHiJ>>UG5Y;bznP*1I|<-^
zF@m^z7)Bhg{Q;AzjSZAlPs%aTUSO!=fdF{k$`@_vUlDj8S=PEE1Fyvu(#6-h*ULdI
z((j)=%bN3iYmV-(8ZPs>xH^TyKQqX4{9nTV#R#-l<n_dTU;5z!?;D!he$AJAa5vt>
z#Lv&a+)pSqAQ*I~Wk2+0%l=vNhK1SN`Cu$Z-bI$l!IE9bixUU`3$D*W7q$e*r*ow(
zbdygzfm-GxC|*_+<P(3qi3y=JF57>&pHO=5{Z3726psbor-+Ln@fv?Iu{YjBT5dlg
zoW}AsH&r#x(-*_MC>TO5*|1xl9Se-77EOs#doVWb_i1dBjkhy+E#3y+@}1{#X3(!_
z4~IXZ5qeFMSK^-I4`eJd-i9?1t<OnA>ksb@YeX&H|F5XUT!NPaA;&yJT($Y_O+li-
zx<q93XnQ5R6W5BUJM0#(g)%kr&dM3?%OO{jsA=y31IXZtiFt&2YrO=v^x+^e9vbsA
z^Oo>}?fEC*W8RMh_gtmWiw~o)^kMT{c_OXcu{bZ^+}rj74Ri9t%bC!~wup4={0YcE
z-f#FM5+z3<Fv4-v6*&mP8rY<*2}EYNBYt>oH<NUAu7W<QptC=>fV}L>P`hcCo%E7n
z3r{^a7mxk>0>rG3LJe*D-XZJsn{mGe>t*)}))wzjemhQ5Ot!$*-s8*`NSb?SKm2%6
z4tZmT_%WP)>(t05qR~<un|-0l2%CQTMl<Va$~tdH0hBoGhaH&h>`3~WA$JJg;LPDI
zsZU{m9(weH-<w{DGsex<E9My8kf{k5aB&I<o0v4T)otHf>sRwZ8dZ>(!^i-H##oIn
zW_d#6t81-so2uCoT~4j~$CsPVqt}3;BtKKh5}udU_Hv_3)HKpOn_LuZ>L}>_!3w%0
zKLg6lO~MLBiDHMjDhQmem*vA->eb6m(8b!1sauxHd{_{^hdVQT_XlFGi|@9uTCz=j
zRqfC%(1XNnjHkNzpfa@9i)8gLNX)y(eVECIus>!|#}asWghL6`Xm3H{4}Boopy+n{
z!Iw%~a6>s%hF+hzT8ZgHr|Kt@=qIBEc4QfCi<j{nB+liFh3g#D+dlSP6nNjT*=uQu
z&ur@K$4M1$-Q$*jgle)$?L|xQ3X~8ewifV%ws~IS13g)&O4~vz`bir+6bzc6ANHk!
zLFaTly{@dm=;y8MR}=zd=K+D^G5csl`Yfu}M_p2#IL>kx9pBpujnvQ3ZT@+qFS#4Y
zk`HY5^EXE7ZFA1#=xjSXdk52_Ah8#J+ndvgLHwe4?A<d`JTi$VUlCQ|`Shm-A=z7{
z%4Ml;+$>k9jJND1Wq=H3DMQ9PLT&23`2xu;Z*3k081xySqQ#!gbX4@PJ>#BY<TR+K
z6=UP?1iVT`3zja@3FOfts?pO7Jr#zBz6ud|H~r1#+-q;eON(W^chQmo{O;V~JbA<e
zj$Dka#XkBc5?^OeP|j$acYyJShPcFZ!N5q#<NUQl=D&LNo8Ldy-@Kkpgk5A>WkKtz
zRQF6F6qfXWQsW*<P%!XUVC5uWVRHFavh`OQ3|iPKyxcmZNm(<Ga0ZlL+jrD1x_YJ6
zP;t2XjUrzuZpfbpmC2SVaO`8MJ5aD=u5dlsVco#6Mi=66ExcL%02r>{-E#i3Dwb0m
z7~UM^w93^LN~vx`a(KDEX1v0ax)(c_4`A70mxn~jK4y8y+1hFH64&IWc#{U)UX%?d
zSe#}r>p>6<LP(SPr{@js(Vn;Do}m|IrRT~D`TR3_Rc>A%i(XX#dqC#K$k*eV$mQwA
zA$J*$<)+D&Tr#t>VRLtx#&JGItURrX7z>k`8VhOp#Y*fLR0402y*T_kM{C`%*l;kW
z!~M*y<`?buhee=fEfA%Ir(f?zu~egI$fX!VdW{Wf_za*3?cY8Gn?YlE&@L{E^&!J%
zw|K(f)p=0thuK}wHo{-2ri}OaiLv3Lo9H8|<YQ|`2*69xO5@;UHDcwc$x6o$%Ulfy
zoE@uy=`1gttQ!8NuZ++HRmwj-PmDcJjy=zaJ=f=+0kvF6PzA8s&)=8c;OgM@e7y#V
z3-lw|*)T*E^5Lu~pXyZC>(w@&Rj;P}Yg~n-%(E}oxNfDkc*%@>?zAbxNKA0D>PrYe
ztS&TEU4KHXqvXsB=M12u3+?N_WpIXYf@9LZLL?m=USb?BYRFT=S}n@1q2|qwQ5+sO
z@89zDf}|Vj2d#K_hRhZN9e%Th21gAXQ~@Q{@%AQRWjh>P^R;P>-n~7<K@ggd6eRv?
zui(mFi~eA*Hx9YOUI*P|uhD&v=N&rAULP@u67DJ(Gu|Gj$B@U|OZ<DlGg4L^x$U4c
zuv3uxw2D}6lRX2Y+y+1{_dYK7UfbpVq`#}%;LGLSDw$2hi#Wwg)eW1X+&9M|dDi8A
z+BCCBY@0dv`Y3mka!X!5<e<3D?+)`sa)y82NuYQyY1Yz;x}IX;wuFIlO1ubTm=_+Z
zB9kc+{#@novigh2o>q4Jfk?q=mjCw~g(KB>*5Z(67KK;3_K!I=2C@yxqj*n;8~AEL
zwBUiB$%e1BuEX!r%NC(+hsU_G^~cA`8tj*;>?8V`qcLQMlNs<+b~V+6-c#uN?YLmk
zwK3)%7@>BMdcV1ctW**?k5Qwv2NSG(;(mkKZhD``m+T>%B!5=1{NDBj$!MXdVuj{j
zA;aK{QQn)Cx3n|Ii^jpqabK)9`EIJc?5xkJ_1G&|R^0ztcY}4OT5kR?HUV@$&!0)m
z|DL$U3>%W#ZbO(LO*^xRTf2WS9!qhrS_01B;;g2x)&9VFH#c=JH1pZcHM_}!4!4S;
zKRqkNGxvv&1x6x2+t#0i2#;DwhClhKA-I|km|a`FV|ma&NgfRAfYvrA96yte?nU-)
z>nH2q@i4}A=ZU~UWD=x{HRhVtI%_%g%KI-U8u~{RmCWy!@FKI?d$Is#ihlQFfqR`&
z8KX0vPw<9TIO$g!&RjLjiYE4ONU#dYoEHpQeTOQ1$STByI8_z4&eE&?HT38l6V^q+
z-&d2^-jcRo#lZ5@JNTIs3KUi<H?tElXFP5egAV&fC_`y{@5hFz<CaCl3~s8O5Y7}G
zW_v`E#Z2nOh1AY5gc3W|R4M?%CDK};^|`!s+QR8ejor+`0a<NQ^xX@mbo%<OATpcM
z-i|?H!)>-MX}FL=;Z=|J>@W!&{B?iX5$FU&&ajuaF9G`;*4cp%Xc(jL#&2*T<~ced
zxL~bqKSHG@+XSBmYNUuv?6@C_CE{d1GgC9tDE0?0>!}6RVKlD=)fmlpc{I;Z4-uu5
zo4q@y16(K5yj(sSSBXJ0MQ^<63>G~ii#ACg=90uy%5&*g)`K2c)5Z=tBq%zCcRDhP
zFimqf#GHq@)$NiyC(&>{Fho|2TJD8%ZD)UI^HNTgv2BNjeC_6NIB}k_6NpD$+1(KW
zh#zH$=l+QHvFVhEqoF4uFLeR@?V;YZvC?{c;hVVShMA8o1jfI&cpGgn5D^ga9y$fG
zZO%R+n_G}J<S>K#;eQnvXFl}nn2fXtGiRU`h1ENVZpLa=j9{O_1R0K2QpP*vj93BF
zrG}`$9(*PLA?YS7QLYj@x)Ph?^Qx8D$c!I;+{a3cic0LH5@nPK`#H$^Ulwb~eE)uB
z8%P{4!Rd%W>-)xb1AAF6DZ8h}LU$W97V9Zf^#1En?riU_!&EAI5x;+Q2?F*{nm>B<
zwyw^NyI`0XNtpmY!~s4s0{je3g(akcoW9$2wYN(2=-SmEsKiO6g+pCKUSq7QEU<__
z|1|`rvquNr8T*78E-$QepRh8`@MkTqCkZt^((if63v25&)F!tex9oImm8Q655)am>
zGEFYkxjfk&_#A#Z4MBTr=TRh+x2i*@8EXHFO(<bWV#*#^VAPE^-od!b(K4@jGs24b
zcVOV{v_*bseff*u@%QXh)FS=Ov%mS#UxXjWjN~sG)DPDHaQ<4l2R>r=V&1(=0CWl_
zllSu_@4LkF3A~D1ZI%3+d3+1JAN@{7RfhaRWd(Yu*Si+b!dbG4w|cXAHWdAl-C3kZ
z+M7s9;O*(EY24Gwd7o{v-Xt4$aqm;ryC6}k9~Ai@F{R^aa>vsp(UTOYwM+vo-hQM=
zaNT&5vjjasYT#|6a@^*Ua~gOJAA=w0XO5}0X=QuD$ZF3KCQEIu%UVY%Z5fT!1e1;?
zQtQgJ!(CsQOW@SfNowP$-#fIp9WL(&x&FM2<PN;r90Z&a2F#~;l~we-#P@GzGAmnh
z#U)NFNTx7fLe+_sX78Y1b3+e5bBhrIk;v`A_RU6<>q!aH1_F8&sYq~3xd~xr#1D~_
zesKLrdq*g*)jNv)d5QaOvesr^4~j1RZ-=6XCEL$ObAhJ*@dd4>z4vi)5oKI6Lo(NS
z@HJ_PK8}O%{1%<j-`q1+;Fw`fe099DuZa^MmUeUETY?#Bj;aZYhW{R2m4MxHva7YE
z#4oG?e2O;G1qOGVwVOD{eVwyf%59=XZ|8ZR{<msL9HY19b-0IVhxUmM7r@PLYcebK
z^H=#RUL(@<_na|nM`b6bFpVbKpR$VXauxN_m&j`Ntre}!IeMBc?3n+NL2D9aaTb;9
z@ctx7odR8Z^9X3StA037ZS6`D$nE!AA=m9aMZuw(SN6yYN1>dyeMr%^zf#7!5+siQ
zTv(T87!;kQx|jyh#|E`pI_?AEdpHOpn9e*dCYTC9T{v(@KEQRQMu`VFDV{kcmdy@J
ze4$x^Y$cYhx65`$Wh|S`5idm9*iV73*EvDiGCr1VXEl0fl&#RRJ?^sIdSon{C^M|r
z#PXzrJaJ*{tBLhJH%r=@pA4QoOMDLg**|>VR%HLFnNtBXzSYlqisp-5mZ0X_weDCe
z9*EUGTx~Dj6v^_P<DU-Hr@P&!;4FmSYg}6&+~S0xy%Rt)dp9c*ZV>pB7A6B<kLr1L
zqs9oV{Q7im**ZdNAI=8Frye`&QfZZkU$DQB-DHzMBsXA-yzr=lNnWJnjCVN|nil>G
z9`ujBMV{2eouw?a&d?n3JlC^iNAc9+ox;cb>|j@T@uRU0k5tvGz7U|{bC1!&g;HIv
zpUm{Kf4AwSyL@L4RPr6_nFMXHe^wHBjW?JeYy8qwIq!+VTDt(%7~+9puN_gGmul*f
z_LlL`>MiE41O5q~R)iX`Os{$vl^w3co1_I}^GhV3wLqiWKhIV7@F`*;88w+c>VC$j
z>fEPSiA*f1Lm<q)2hn<~w>4^pT>Iv7T}lOE<w=qs;23{^+QPtF{84|~o_&hnw)NqC
z_ko(b_@iZ0i8;Z;d;faO*mi?{FwZjKaO8A!UP%<VQx9TI?6ZldO4NH4m1BX4qUQsM
zNyb0Z>zrg%H;TLZdF<?+s+_If(K*Oly<xe>jCX-m3sUa|sdVa#wuri3KS>*>_Kx`2
zolk3XpJpj*M>kr$<$R!DUUQV8V@>Q%MKAmTu_6BX-Ar`6L|Dc<KkiXzjG4wQ%G998
z{~RN-q4YPr#6E?GUjk`83=?jrFT6pnuKTfpcj$GFo^I8*jCV1wMo*ts8Af|#>3Wd(
zEbNbe6&J%?agZMjXi2q^JFg}6k$zfJveKE%ZB5PPQU9Xzzm%By0@d!Ct9HBws?}TY
zFUM6pzWYh^$bJj{T+DBm@Ug`^Tv>!sw-YKd^s?g}S_Z|fK`=A%PnoJ<up@s#-@ivD
zQ`frk(=-CM#rL8EZ~yDncL^Djy<XM3>TIq>z#gRpxGTzl@)r)B#t!G&aOEU|dfd@X
zACtE?ZHyGZVlUPo;>El}9a?<dqOTdR;A2;3_?t?@aGu`fJ;Tx*k<F$+P;{fvm8mII
zvEx;&wOlJ%U|B*|yl1>A(XcVWh>jP)P?jO%-NmDg;J-A2vG+Y_Z$y(=2aIm<u9yS^
zeI@D)Zfw3;m1k~szbrgC&b6|ZV~10aJ++9P(LHFdGILC6V|(2tgx0X7G#8DLt!_<F
z^zJ+mxw7sM%*9rPfzsaD*326LWRDzRKQz+n61ql~cohnl)e0#BF_Sn4;MyKjAcqd-
z3Ga!0Kgxg?umLbybQhX=usg$r(<qaDTT2{_2c1>@#Hs?{7TDhpdbBUko=vWB)5Q?c
zV4k|tPjWWv6OC_79(O9LCXqPz)-uaBeZx=b4Wi<nYn&RlnAgBtk}-9>4tIaE=@54y
zNZ-XL))BLsopxJEu)6t0JwO&dO<cbcH>ce?3;+x}ASFEMTx;TZYohLiXyu-G5(LQh
zz<w%E?M>}V%a(Ai!L=CMuk8@I`0+$I3j=7R?WOSaCiI{OI@-3`v4pnUt`67ylR57o
zI4peeXP`;$3Xa#dTc1q3q$|I5;tDhc*M)RD^<~M_{r#X1>X}o<9IrEq+v4X`OUN3|
z`y>*4-^_>!zJdBwXP?5O1khz2%nv{SP~fMB*?CbPy9jf}DUg@KDRXRyQyM%LD#izX
zHtjo1In{sc`KU8o`QUH<Kv$M=h2ixTE7n&IebFy_As7C!b$I#QQC!t`WqU>0mb%G)
z*^5)pZy9@V`vF{g$K`F@Y{#uI?K@1ppU8(Zd$iq2QEtS^96x++uY)xbB^JWEn)}|q
zJlaofB!I$3JFBPwqC-EG6et&?`hEcLDNdq>BUYJ!+t+@$N2Bd`;eXk4C-%3K_Zdg8
zzT{E4<WafWp6HLR|L>dglBsrZ=RZFE>DzZd@Qoqg)7B>_ny5YI6>B){+6Uh#kckx;
zN5Q$u+e++XalqE|r(o4u*oiG2fUuoY)Cz7dB>p0KroOJ7l4`T_nt2Vqxj;!1q(M7T
zr%slHXNWg}jLp+Z$xJ!vlV!5-z!q@Bka{(XU@iw2TpUDJg%g@~gr2Hf@+hLc8eABs
zl&HqZV)7YuK2KY4T?>abD-DtBR~R{c=jJap0y@mc1Gc#TkGVIGue!MY{}bS91mcYr
zB&g^`qXw%sC|aVRi3WRPgN=J!iwhL3S|kaeq6U*du5Ye_+7_28wYBcMqIIbWPy)EI
zxPU7z)%P_nh?cdI@AGx$eQ(}L&`*Eg@8^$S9?E^c=Y3}8%$ak}oH=u5Mk_p42~Xx)
zj8S@)f14~}(!pFygf`VdeS*22sL-wQ+wc^cQ_S^Rm+@niv-d*dhZp&MBACJJrZ47O
z3EmkaKmQEH-5U9fAN^?@4IWWC-}5NHAd4Yce${j>L1+w98$h3nrQH+;O0m^;=~d%w
zJM9zJ#oldoDsIU8=0NcV^^hr>?7!tnVty_B7Bb}4s`BE+S2LrET&QPjck&p%v3MHS
zeUMZ}S7@RX)H3x}|JBC-5)&JZyxV4V!ek04$S>ImlW#xmz~nPM|5unmqPGFYQ*$|l
zdxA&(@%U)^(TfaJyNDwqr8N@oNWY9nNH9@9$+8@xdvY(;vw1--&OBX|c^dDY5|KW7
zfQd1wxm?(b?6+^&Bv0o4ig&E@mUsf){?Vx*1b5S8kzFifq;-b%e4gG~Bf0$OFLjPY
zv^Da^zk>HqHT^o|0{H9>vjKlZKiC;Do%R=ck#i}BF5BJ9JyTEUOycjZJweQuj8qs3
zpttfE%{Deo4|ww{7|n}(1#2>wxPA?9Lz_*sp-%JrYIgs}^g~g}d-)po`r?K~Y@+jK
z%amlKW6+x|b5eo4cthIAk6nM|AoGak)NkCbc6-qy)`mktngSg82UMy6aY<fNGX<zz
z{6n);Zqv!S5`K=#Z91!97t93cSyNExAA-3^d-@z08cJ-GyJ!m{Gxj^7n66-el1@}o
zGBWR=PzD@N_-FNXSdgK}FgkS;NrPR6_lJfu5V(@%=O{zZAOm`iChVgOYq8#`;hykB
z-IgxjVvn}Jg0FI~4`>3uk=%Z>gFocRPzB~DxJU4J1@OBF{uIHheE%iP5-MqE6f5!N
zCHj%~vhcDXj=?N{ug^?9;?zik&J}1z2h+b^Zlg?Fyko0)UjD9i^9ud2Ws{3B`nGiR
zu65}vn6Ig0(DnWWFPjd2Xf135uO;YgklACSA$P?Ap%xj9-+(^A<p*%<HyGRnCxzhp
z3F(JKN1sAz(%ZideU)hVzxvcF%|92>_!bWVg3+OWlVt@PUGU*ps$>z(v|-}Gf;zIs
zlff@`_ec0DnP5wG;&<XLy9I{hw6Ola(aTaCL*w*-vOILG9@sZJ@&Y|<C}Ryms;!i{
z%)}i^i<_g@e!_rSR@^+9H>B)Xdu!3#vgoz<!jPk|_J7MP@`$$}E0tDirf{4l3du?o
z?Vxw8ckEP)eg)jFtYa!$KD0w2P{uQZNCAY{Kev!}K*UOIO9@J<ofr3lmQ7oz1}^}$
z?AkrikI#N+`msmbd(iTdz)R!LJcn7&OJ&9Lh2kpEN0!Tq7er?~q-GVbjn@BF<nkgf
zz0J+pL&O(<=cx=^fjdR(>+EAMV%TKbsLO9776YV^?_N3x(<~krs){FkN3wskMh$mK
z4C>=4f$qrdd8C%gWUWxtgv`=4FH_LUN~ZAl&!(q$MLn`0UUQd~-uA5TFA*D*6)%d;
zzyk)>8>98w;0xA+Xf$>1!B6RswPlnx%uwe}#8nRUWvXwC*Q6P*^h_DY)<#kXP=~+f
zOJNpy`|uFonLG}FUHzTKm9%e+VJ82V-~P2_*e@Kb(4T7jPxbXfz5<_KJ?eo2$$!P=
z_{peH6?w|>q;fpsaujLPlbZjUq<%Ar{u>UpVp~YZ63}dGXXP95v5CYRi}eHY<>4@}
zp9o@CgXkb|uY%Gc%gPeeKpFnUFl_1>4LIwr>N2*MI4i>xwXLisXPK>(ANQV^MagmR
zxnP)|E8=4`<(bK$i{Gcp*t$JnUMvc3kQFR;`T;|>Cb(>X>7KvL3XvsP-we2Hu;dA5
zcyO|}f8PI$PgVw>I){%WfIwYyh5eWK6n5ZKV!3|+pVDN>RuPSEDZB@oHOPB;{aNtm
z<+uzpLv)8evh|(mDzejjQ!G>|uTjeyb`V%p8rKalt__c8zsZ$U)fI?8M-5HIRL<TM
zPd1=KdZCclPTJpWIt44)ASf%AvXDabs$W*1mS-k}t&5baZCOW>{}C4jr_P4YGq~!Z
z3%-Q;3SUM+?G0eQ!9S6W??{4a_?<^+0Ew)%cWU)=AF9J(ATTebcD6=V@I`;f_W}dL
z0N8(|G69X^i#E*DS6Z*-V{_SP9)U(2Vig>Jo_J6v;ds}s5hP4u_Ge6%r~qr<0-@ie
z5!%rZGG9ZJ;I){Sd%AtKcQ4Xc2sYPp)0HqtL`LW%hcBl~m^s3YiJAQ?y9Hl@43d$J
zTu;DRyihj{mHQ<+QRYpDFJdJ?mM7J&@v-I%sC_3-ov7W7-lxkdtN#LRcQJ|udXGVK
zXE6fH_#ezi_Q~vK_f!>j_<mXUB@IK<w(F|WDNdMgs1V6S4o5fCTNfF=iZKr|uz8$A
z?>MDsYj#b{q)+E9Y3fR+NY<yK_=QnD7Y0Y?9eUf;fmtOD>pA_^I>m`UN8|Nqn;%cQ
zX$MRRTMy&Dk77rN64q5sO`v7tEQ{9c5}kKK@4C&|IxpNdXDhXqwHgx$*efgO%_^Z^
zBt96P`ZWw2eVXNdk5h`g3FCEt>-oV6O6yr=TFa3X9PUnx2H+Fa2KFcJ<v1sfI$@X{
zlz)wuyMiIsdMwA95oE~sw;$~22Fl=SLgJslP#V>%*3B9R$iGm$fpJ1kQvVq&D|qOw
z{X$CI48yP2n#MmM&=YxRZs3*-4#6Q`S$?a7D-7U#oFBkF*A4DY;QY5;ZLy<5rR1rU
zQk=o2^Ea~+98UzJ0(v0J-`76*UlWd!x(+4T!GvApeURfn`u$=k4*x-Ri*=V@YX^Ws
zI}JaRZt#x7@uQ&>$L0+$SxRCVuXJU!Q46N@x;)5SM8rB~<m~4;*qcLzIJAJXTih`p
z%i`0pZ;3cdUJjt3jsl81yDYIAaO(o4V~eeR4yeZUSDzFwem|Nlu)1ccE*0?~J_Z%N
znyzSLJbCirY{)hsxjHwz&pmZF0;%0aoX53NOT7(-J_Bk#&7dFp|NSsoCc(rvCdNSt
zYF3;eaH--H#poD`njRHA+@0t3zxzte@#Gw(;6**3tq*$CpLqNiX`-;gIW#)2$tRuD
zgQEVc*aTKu>Yq{?zhb2%I<HrOTiB$M)Wal865Wi`KWAwmTWt>sn-1-B3UU&l1wL)p
zb>xYA&scwCZ_W_n{S+to<KtN=E$qmiy1i3H9ohW{XmDy#hKIuZlOLUKi}CeeAo&*~
z<nT{iSX4EzqI=^NBFQXAB;u!RTL{)hh&EpCWm7bM)b=M)Sn5x8$5A|$3;eHd=!nPq
z%bT6!v5G7nE9MQlf)Dgjf#R`raI_&1mpDAfn-HXvbX3@23(%H+b9-~N)avE7U2bSD
z<3$*bQwho3XGcn;nv~knVs}d2y`*(=_98re3#5L=IQ4Vit`3PjDbqsY98Q=_kQZgI
zGnO@H6d4pb5$v#$(yCY7wrCgdikN!8zr*nqT-dP*BrQV8ik;wW6ScpKaPaN4H;h8P
z*%wm5?7#oHyu-!?Y%rYhJRmh={5!69+)E|ls0`2H&*31;<K8SCo@3ion)JjH>a<Nw
zSdv!{ppLVjal+FZ8tSY5Iyx+~A?^?FYL$(#69<h=`m5UNy-1xpySa9!podIEQsdF6
zN+_`|GXg+1=y8@yuSy*&om=*i+89|Hj@-2w<CS;`{7Ijf;!RIO|A;x_pGO)wj{jLm
zIhr+Jt{i19M?s=l_4;F#qsZkrF|29L$R3~^JM)#nxuKT(3COX4SN|OSQ|wS15uVK2
zban1qrl1*9j79u0<sue5ky?*D*`Srotu$|e!k1>BnQn1{&;E%Y8vgHuO@5nPBtECo
z2CRCDiUs)JjY{z+kVcEo3VS%L#iuF9i7rRF#nsAj2WkH0uA(!K4iU;`4r|^t{5800
zzM;PMzhM1NZGeN2X<MiF<J?M-`gn^CGab@`{X6LrY#YSjVrB#A2L6ehwKA|JPa3L%
zA}6QcZ#o+O$B)5#gZZAY5pxgI*JSR`l?b~>4zl;i0R5=jUS%0W?3aVS$XnpISE8$~
zfL(rYygN-I*wwyWydo&>#UlB{-m4ayMjQG9OLNj;Ou6?7%<F%@exxdJKZD$$8+mVF
zzD~f}py~RS95f@8bfqQDSp#rG&!O*VM_b}iz0vsXwOO6B46xyIe<`>`{|f!Ea<_}l
z;Yy~BS{-a*&roPr1ElfGp&(1q!%YCwmT6?ma+QPjOGcW^b4Aao`|Ktm!1MRlTTH6a
zKMG%xO2BH)*tU!c$tQ$g0|&8jf1y36_LGz*BX<Oa`=<nThjRMUeg*YsGLCdmzni_Q
z6)x!C$=--ms#H<@8oo;J{p?9aL2-;vj5_yE*E#rSj`d2?VF7^RqfU?Z&6xh%SxHN3
z&QWpK@1@E(vsFLY%cPBM4l>i`Ag$9n2AtVyuatM8sq!?lYn>nai&ITx7h*YE0ZVG{
z(#i?zxGa(+``@&T?(bnK{b%q@&77jyxa8`6)RMEG$e1Ove-`VIofbGcmvpzqnJK$+
ziJP-vKlOwg>}mQ@D%*r1GK|Nzd%0WBTH{SKjHzk_k=c6IAIzDnvXZy1;Y~bA+_gP}
z=eMspJaa$if!nM~)uV~UZQo@YlR8LAG_nK)FMd3YU<M(7?r1t#m!XF`xI^BP9K0<f
z;)qi0f;rg3xZqZa^tj-b={Fht;zL`*J9dy}6WBpaSAtK|7Agml1T~H(><MIY?#s#p
zxZx~pBRMgY)xPf)eBY=2Yx#$IL}&B^L{W&1d-d!jxiej+;+ALwXOK_|7nnl29lbhq
zphUe<mIAtc#;ec>KKz5A;DQN!wudqH;FV4>Hoa7z;if8ai+|By(8Q5Pe<w#eb^lZN
zd6Ajbh&C`2#5z^BRZ4EBNW(-am#bNs;}v>C@KBp}yp7Ds=gn^dmrHXp!O<D&@yQyw
zIYXU%;|&{u87(p}XQyG3kx>W8hIPAE;`GccHH7y$hFwE}Z#jc4z_{DS=;OUg<Yl~G
z9t|KJz1b6IAGH;f1-WMXXqL>(g2j4apM<qWvXg$G-&CulhUA#N@lcq4fZf}#i6`-K
zssxOd;esnke~#<HKZ5YdFpa|Sp>r(1d!#d%f74y+mVuXAx76&JE@Dxgm=3koh2z4#
zFo!|2?Nx=VTntl8d|6CUb9}l4>@%aLH>-(~IBR9Deu`J)>;!x3Q#+i3BXFyCj<<Z=
z3qLwr7%SL{qlg55|EFwJ4Ocke7Am|Gfxjla5mWOK|E$*>bZJRSR)KL`A!|8u4XbNX
zCo44>xj5|i8>pOnxtz(!dErnSD|CDNB$;VgE9AqtykzPw;K}rQjN1#qh@YcP^mQs;
z+dZiF?81=M&{rQm|FBDmw<v)CqJbgE?FHE!KpGt-@*jL)kPSZ%L7FA<hX7JFoA5v7
zAe(j$L1wGWi-Gj-akx!AB=l9*zQ5zE-Dv*~d!I4{_>uN5z?h>ImxL$%*51u)_z<Sx
zeM(41_RbI0ZtYzbKxW$e_4@{S^I;)KYwzCz$hs^5M45j&$T>TOAg#Sqf%KntxK)e~
zeT|XT-{TdvHyQt4X9G=7ZI+_kF51{fdiuvCfP3dU+O#dAur}^LhIvRk6UT&V-9@$f
z>YOk|{^)vZrvV{IqsTu3$P7i^d(X<e_RtWdQRHTWG*1`g*w>LGkrx6pa$EwKf3HJq
z_il(qUluw1Iml1ym`z>m)nsP<Xb(4dIiwyesH069yzG}|Iq63d5b3zb&0@Gh8s4_y
zX&`5_*7VdZm>3g95>`|~4*BUt`7d#a&#@QnP=2h=4ik<MSy|g-s5a@a1{Ey$=%hyP
zbYe_6{aS80{14dCXW{6hvKb3B0C^{r@S+Hc6L6%hs40zmN9TC>l*`?O^!%kA>qwMM
z<*0kB9EI%n+fhXXjS7~If;nuz4ATC?pcrQmrfv;oveAx*&R!1o@AdK(qY@5iTrqV&
zVi5Kgqk?RXUs&&Q<@1$lU6bsN*EoaW7}H^Yy)slXlL-wh=bKlsQfNTklQ|mV_}4}H
z$n0(cqATsd>wxr1$=&Z5;7MWmphwW3VkjUhO^mK~V2$DZmll6?XaL60hv^JFV>><P
z4|4o?(H<d2vnf@tAOoE&estyL?HB^1kFxyt-sPWs*NRI{2z}j6U$0r>)RB$96m!EB
zB1)RW+)?E?R7y&OOi2e_6eD5mP~{)6(i(o)kWkrCm3=-nt07%m^h>2DBfa+tWq=ph
zzaC_WTZ<OHZD2d+hQLh1`UGI$1jc`IU|HS3K7k_so({P;_74>zqrjiO*fqRH+%U}e
z%?dyA>JV2reoJKdO|yf5-_C>I&JhB}Z_fl=nlCn*A~w<jD!WUaq;f&Y5DekWF7Ix#
zkVB6`sf_fc=CZca!K$0sq#;V05d0vk{)Oovbp13u=9uPs8xmRR!J^(~H#prJ<`rYr
z$3#mY9jmT%U=>v%+U+6QT^E3L?bwN~D_-0!l)+f_^dN&{)hk`OWBY`_j8zW?%)i97
zVt&|~FjjqiQD;{DWOA5QaVEi`uqu8G>BaHlRp`Z*O#ixNMwpxT4OM6y+OpcUw`)W0
zQ+hJ;S~!Do&8#4U)kBosVq?KwU4zE=4wY}rbZ!8SI)qcdbz|hI-M|h9%&&Dw{xodO
zSe@_w)3v*^ru2W$Whtp<hLDc=kFEDrP&4z}d|B=+J@Ahgxn-R5C$MW3i*&~M?rlAN
zsosvcrRe%i?a{_orQs5quL&Vji=V~Bhrl?i6>nv^a<gTs-g4(2CP=UU&-GKhyyldI
zEo+mqk5ZDSXLE<iWZFL{*8y&A5#Z|TJs`<aajV`%oyNhcNjTSYGQU6lezn^F+J1l=
z5FU^Fi3=AlG`b`se@Pc{bf+T7bbo26NAi{F2A3(+qK-Pl?d(YP58y(R)E_(MoL%TW
zY#a0*GS*R;4T)VTZ04?)+w(j}MXW*5drh;b0KH$_LsW>Y(z}<t+J3YcdH$_+Dy#UV
zX#LGb_+eZ?vW}q9<Yio!^=kDP7=Q6bide;r+PhA`t|wZr)w9iqyvS@<?6vx7U&5`#
zlLzDXsn#ogG5x3~w(QxdCoaCvdg9;r2IPJzY=4?fd-wu_SZNTgbsZI^d$WU@9Z&x2
zY;a3G(m~hsl)ejnIlQlnzl<5t^N>%|WDd0qJIKtVJV*3F7sMb5c8hlcqJS#!2EFtT
zHYFaqgn!-I_J&p{!!l88FZUxWiPi5~QuLvw4^dw}4-N0so@*QNxZH3CxrvM3qYPg%
zkHoE1k5b2(dw<<KPFPCf_o=LC<5F2k_gO9CxBwwDNmyL3xj$1u4O6dM=T67u-OwtH
z8K5A0%VDq3wnv4G)<7FCGVANmyI!CvjjV}soM1X<wBcLoi+e-u!y29|ykql5%f;{*
zFGJT``W1pv&I|Rx_$QUg`h?6*FokMdz%p&qGEC&?%>4zE?Em`QwBsGRmT<Yd$QEt<
zROqI4Ew&bmq^%{AHBxK9UQwX>-Oyq*X+WS=_0@ZjLcvyFETD`c4iev{BCxAJ_NO}U
z%T}T=heU_u6Gow+_H<rwg`jQE2yd!ScX{KAtM|eWx@Uki8)9)5$2ZIu(zQEht~o&A
z1b$2L$q<}s9Ba0;P5nqoZQMOzNTyB&B`ocHXZOe^2JS9{Gjc%@&OzK{vl>Soho4$5
z{DKQ8m$}U+2_*fEpE(NUnA!=mhT5v&i_{quH#!+_uSgu9S3Ygi_n=<g`#7&=QC{jW
zKKbX}Ex8-IK2@lCRcKw&|5#`w4Lj^$!HVPo&vj){@JKymGyY|%zo@<yLo!_grDYEq
zZ>RPYkjS5!s=}F)4-e_x0if*<cu}bOYdDTIwHvlgTG;sw%R7F%wc@r;@hZss%jY<G
zmkS8^v_o9-UZDkJ`fdY(_;qR7cS4g9uV~`~#%bKBq?kHIx)gsKP5!|W2c7w>#E50s
z;i}pjXwUoD^Oa1k7!@^A;y4!!<A;E2tGz*2lFu7?IsX=KsU96@h>>G?M?>uCjr_Iy
zLTo^wA6C2-(8*zq3m2kwMYZ7+W3^IHT^1PKnV6ci1?g+kt}@f~jG#{42O<60pE5$q
zhm0Uf<!Gzx;<g6WohP3w>~g|^Du$Iwhlr!4sV7KeEL)NM1?+bW?6=XeAK+W^Qs0Oj
zKEBJ?@14}gX_orXcv@}hQq<oZUmP5cYqRmV{dwbyrlXk;e+wIR;Rmkjta1D>LH5je
z*)v#nk$g_T5OKyZNcOX5Jb?t7FuSc&2XSfE&$K&3ce!}a7c`Mpk?b{~v;mdUZvgA#
zyTy~ImW043vh1j$>laQ~FluPCZr_bdZ&fmMl$F<S%!wvHwu0Y})?=k+ZO}F?e8OS}
zZuu>kGCJ9B=xA@}(M*GTR}?Rs94RkeI<ZfAdoyRJ*DuOxd#D19VfV4B*gStan`Amu
zeK;LaDCUeY%dI6s#hORE&>v+PRQX<+X%ZlDtG(?H@kFlzWtk$f(4SLf#80K$rF<Di
zV$$#w-x1DPWb=CeAv9v!jaEvEJyqzDb*U%Sy~7AXNd1ndkgVzv`3nv<!C&FKcvpfX
z<!pE2_n@2gB!ge#T{mZXtN%Inthg6YnG5x_M4(0ALx<THt^`d*;zM4Ix4#-sJn4GQ
zv-1Qhh^x|J0Etc91Cv`(+#0R_05K@{Mr=|`r&M^q7_V`z;b93!OR8tQ-UYFahk3Qm
z9i2XtFBRUe@++{T8krepaW&eGr7KePn{q}CTrq0!($e+w^P&wfBkWSIJjMu?#XD{M
z=<MaA39+re#X8*`i8b2Wi9U}u)R8vYI|D)4B0;G=an#TiqliP_p?q4i3Tk_*0*O;`
zIsVc@5KMP3>}=Gy-BE)uMRBV-kQQ10x{BK7Rp<XIQTBGe)zZFTbmEM>(r3km98X+z
zr^JXV+dRmC_+2x;BD*y{<b(LMcGW(KYh*C(nJ_`A%7DSE*mhKXl94P<IXdsIUe;_`
zvOK#CZYfg-)KLLc+NCV9q;%!yl7yNaN;k~c%%o-j4?>`JL^<J;YMY9j_>de3_mXa#
z5s4s75NeE`s>o(R6|IENXO_NBTPS{6a6A{#1(NejMe&NsPm~wWuYP!RVrBV|x68TB
zu1DLSbqlgZP^gYP|G4rWmmRbsvV&A2HeG02XJ|nK(YC5IkzR$8@N_t*On$0<Kz^)c
zkSCCzOQ1m8^|0$Gmb4T@qe5Shz6(*oH61E+ZhA$cHFc3dlabu8f5)uqPo6f_c-5cm
z=Whoijng!8cF3R2_wY1oyhPd+w1R$&tMwpHlQOP99@Jx5el-5$r0Xp;7`NCL>T&1j
zz)eu}MYX$u-8$PUw~LlZ&PX4!Q6hB|Q0f>8@FF{$V*5R6A%-jniZgj=o6azQ|H*Ec
zpNt-A`@nyEC~eN=xswL!(*EbsU!Cm*6<id*58D;<^jdv}3##JY8I>BAnCri4+95fj
zPkCZ(y#CYe%L#f<eB*?vbmd1x8y*NE7H#+^R6)b`rO|o24=ig~8ErV7-lil5iY+<Z
zIBRb;1@Y*-BPqJFWX0E}N}5XtZ!BHkoLv(AeQQYr1_aR$h@QF3h838pz1=TeM}Sue
zr7^%X-X$P#r?f1Uw!){dfhz{jUq3%P`uk>9fY22-DCDrZTf+sQ#1>B5Z0cs8p-WiC
zwBC!+dxf@u=?Gye=d=R2^h52auzibXEk_K=t(eOb@+^F(?L~j*+r(-^m$W?zL*6_t
zWWx;sHUFew+2~|pxHAP+CV!c|;&UPS&ft~n7vzCtU?^uS7KW=h>SMbyHK-KDQfjR-
zZ98AuRwP2Vq~1Ub{15*@HSh8d_4f>)Q&gt<f3n!o2X=yK?#3MiSk9&$p=`jDQbzt4
zC^~;X>`nhhSJKpjLoG3@V+kN4&TuQ~Ojpu<8@rZtR{-X?beIEsI1C1NWcgRB!g;Q)
zyEcakf%VeW*xbbUU9Rte<OBCVhH+;EHDFpNU?esl&Tsd>6ps<Y84f$zQ`IhfLcQf3
zdM~`ne2N*)#G-O-pOD2QcBnnCgL7*u)|TZAh<hi(YnyYT4NsWKewKQ2H{-Q7b>sTM
z?{gz~9>;Rs6qxj5oDRoyln(Fc*7TEq&<lp19}e9aB=p9LT+rC{)`o=!c3If>WouVQ
z24Jo$mN~FJHiW2XojM=@b6s(t1KT?cW?iusUzz_?hthyBb$_rct{2%kVJh6KKhzcH
zIoMMMh4{%Fti_M3E9iju@yT90Vr8N*h7B!kSjR0AscNU-KRY>;Yj07gr{(frW}!T_
zpNn1UY+pHl9-dkB8*1xf%w6<5T@uOv215t~s!kXYRdDUoG!Um-j?#&?tG`F@x@;C@
z6X%RgZk=sWKF&$N)EcOt;%}n$ms_@8xG{11`sY2TLbS{xfr2fjIJdy93rS}U<lkL;
zWtu)P%o!Tw@$(iK<X-DTkfNr4nn9x5OyW}WNoojctF%QOyQWZ+84yM{&2mMeYVat~
z_Olc&KH)r#GsFF7pS4=f?-`<KZ`JaRs;2>z0y6c~0@^RPhmhGpU`qoqhs;?HED>hS
zT!H;10CTMQ&lW4~gY83=8V64ez#MDd;lRdptMnAW{8_>r1S`4E_JSrZZD?3Baaa1S
zB(8oLG?bs{yl>d=9i4eb58#*m-70O^8frq0aNC~JY%8CR7FT2Ub@k?b7lNb&)_-W8
zpP#N5aULI?S8~A!j`M0mvMh}3BR$ZKO~A*KoD@qRu)$ZMVhTv&h^3(ln1)v-p2=Og
zb>LUsH=ca7PVmL+CLZhNzV+O67-X3E8cs7Cjm9t<jbGqz?;0{7%os2>=j8~!%lX>2
zoO7;%5%u;0D>^w0rFNM5Jnk=gMz}>@{5I6So+{vbH5`(5W!ir^f~;H@%0N4_{Fj3a
zg+{lp7$_+ByfEEpXqJC>0OpwF=glOo5DsZNAs&!sam@(-rw+BNyVZ0aMfiW}k|`!@
zq>#ghUe<{BHAWuQ|0Uckt6u%-pW7vGVcU)V3ogeiVT6s6-wDN^b;;psOWh|O6kwhj
zq?eXYdm-V6SYKn^X$OOrN`9@<p=OncqX!#~a{ND1IC$RrO;>7Oty=$1uGH-e8UCIQ
zyW7H=dHXCtP8Hm2D_ttgnBuM*r8fPxd9Kc&2h(#{e{WakuHEYFtq)<fbBh~%;{_qv
z9H3g)$PC!6bFF9XhrazIfe3+B+1Yr+3N1QLR%lI>$AR`3ZMdDn0%{;@y^jctXx)Fp
zuxN|L{R)t0$f*g+CIB!~!)~hd@pBzV{>`$(+c2Zpc7;FDUbTB@mL2j&I=iowu2)dG
zzFb&2p-P*0xNxp#ux)FjYkHp>YWx9e{9kZ-aUnN|1oL$pPdHXx;|au0`%{KCvjVaH
z5i}6Uqs1!dA9sH3sNhI!TiqWX9AXQ%oPq4vf#~nla8G?TPO|m2;qz?6g-o@Z%`iLg
zteB^{`=sQGfS#0$(^cXjGZogYk=Z^eZ`;{~LOx6z6WZj^;F3AquTqIcYRho{C64rk
zfTQC^z^EWgRMVIg^GI{T08O_Zv%73$f5blUM=LTC@JAQ=y(d=aG~Zej`TiGnd2!@E
zZL7D6z1-jP?6y8ZEV+a^_XsQp3T?KmcWixX;eJ@ma0~r(aBk~U9FkRXPDM4N8Jn7(
z3N|$jM}<S0lJU?9-jnmL<-=UY&`BdLT6S^bEvntX2FKkCY!js1O+t!dQ0xBL!3@xd
z4IQXArTG?_$=Tf2>K{=60e;~8qv-T)w*T0Hl8?xJ?Do&JpXdM8_78V`_5a%b?>QCA
zi83s(?e_2e!|k6mg1(2G3i!qr%kdwUIC<#G;B>Nm=epC$_TU$0YOm5~LDwrhd<}7-
zZ4Y;v&UTg0VEq=OLt(hoQRGFIz+V|Q)KX5aYE9(ccPI2lE9*xbJgtY0k<%-;1R@kb
z+4l>A+q;ePVFhrP$nccszcP`FypxergECMB-(^daNSVoPAX7*|+jjbKOeOl)$&`sO
zOl2D0--`^P0Nt83m|uTN3!?Nc#kSuOp!R9D0^6su*<T^Uiz5H#1Lw#^-VXq%ck2IC
z@6OcQHl0lOrAw{s$*D}2iF=cg+tVcpb$`+Rd|9I*_Ts_P_dh7lMOYE^=@`+wO7yPk
z(A*HH5^)Rmo3+nR*uFC__py)cREya16t`oxFWImf2SWX(9?|-DF}ZC2d~(oOi@Klr
z(ij{s@dTQBA$nYl$K)L+<(W`2Far0iBQ(zTfO#cVR9S#b#){|HqFSjxvAk`LzxWZA
z8_C)~q~mv0SF|(U%MN6_eY3H^9&P|G`#v;Ko0<9skd&9+e6e1GE_bDc=RIaaKjh$I
z30K~$4(`vXP<h4#jllWM4zCx(=S|q;bicbb_IPnQuVcwGwid6BHXcYnC66;jvubVh
zvE!?l9WhIdr23f}J~k$Xge!*?z;8KO{<jcQZOdaY=3p~Z@;Xq5O;BzFVEa<nA<8#i
zQpPs!g<}?=#NOm=lMi7q@jqg|jXaz?J4#FNR}bWSELpmh#gj{K*V4^ny&YaZ5&LUz
z5b7dbG&=52<8|zX1{*K8lscSp_xg{tXCmbkbU&OI+dfd_=RRzNelEQ9VI(RuvqS}@
zuPHe3Ndx^|R;ZUPFlt}`T9N_X&w(Bvj(W1G=vRR;h5kSxWI3>%!e+Piaw}jU$`}cn
z0B(5Hs!oO77sfVs0O+rN2>b3!3Deii5ir^E_duqeaO-#(#T3WBm_!$Z&o&bcHDR%+
zadSb!bZ4~75lzQR4dv*G#a+D$<x6&V8^kP~LF!@#_<9^#{$B^7J8ulHKbSqk{6X>y
z-v|=<jddVI45N4JDgaop+u6I7wI)5~#EDTXUQX}?U0>v#P~{C;^S<ri+r4;YO=a?!
zt;v(x;R9}mzL`5AYxng^tBM!Y^!Kl2uf5B27Q5S&SliZtpoH8p?%_fygLvqPP}Oim
z%3i?v-~ZVtx`<|{h+hf&ccIBMZhd7KoyPjgVilZtu%KDLN%u>TzV0uYMUsB!2EX*D
zhKykIEFsf2x%18lPRqw&+r@jr2(q3F487f0GK)4o&h*$DwDLV82DEqA+(hSHeL+dn
z)Pf-;b?s~~c$NMv^Ny`5Oa7AM)hh~yjbcrt@flL1^G3Fh%*Szx$Fq_5xOa7|f-q!=
zyS6;q!pMChBicWNYQy$;1&=+itO=>E@J=0Hf&Ihx8#QF51H3D|I|MqKdvM2=MxQ<=
z#}-=lQNfAjLsyh<SQqzBtt?M0L@GF8?SLMo4WqI~C*BwxedP7>`cH7{zFLv^u=GV~
zfzp+qQDH&esD}SU8~(MOmW_TgI`Mf$;)C+U%8JA~DyhBAi&U1nz#Ssc!Twn6LPyy}
z?$8xRRYze;)c3gUS>T!PBDj4=FWTSG=0Hsx&uTNPMyN{i%yd09Z-?l-=PeSqq~Wz_
z!%}8&(Rnj1p>9(h>(wNrf#dD0o49-#JkpD2?$ca~R(9cF+0O~G->W(uj2<&+l3i#9
zpWI_-bgw-@icf}T-=mztWCB^DDNmucl76A_UnAM;W(aUAoGLhaY_>TAn$9ZF$&YBE
znu75|7LDWQfU@Y*M~@j-hPWRzD$&B>DE7SnxH68!o6*29JT5VDOguqg#Sjidk;1ns
z(d;v=a6HzOr%kS{rA1T*fljaV4t?-QZJ)hd;Vg{<HJB$(M>n4iD4V5U8!a$O@^Tvl
zM@Xjdj3>{i)CRg&8Dipzqv_{<9jhh&bw71`NB2{Rk=6{;7;t>R1x+Ux4B-fYXycRc
zh<ADwlayfu6ExnfS3<56D`%iMo<6x?|8cAfPM<+?bY4wCp)DtTYFIZE)bZPp1u@sh
z>$e^gt;d5*CC{&&LuJvYSH!hd`eu8J|8_k=UXcMy8EKLYMMWrisY$cXqVpOGq}>pr
zJT($Zi8`G7b8|CkJNb`QxrXHPwhyD|L2Ly+`*04ETv9uri47K3YoJc1EnLj&0{`sa
zu~N#YyHDGDQjcchIFqLTy46CWFQMgq3(_PpMErb&(q;OS|MImw_YvtDDA0@ag6`}$
zI+JZ;btLGI{ZIMU3XrCs=pKJNwyk95^z3gD)y25($!lt|Zjh2t9D}_o7{uvJ2(*5&
zhT?!Q3_5xG=w}^*#dz<~=F}DjuZCvZ>Wku5l~sQA->4%Q8MIw!xV16#eneHR8Im@t
zmN5PSx$D;<Bglr)I@v!of)W|J?s8yF{|SNR360YM1F9&nsjhHvqt}Gs4Ber?`4>C1
z=Kmsu)_y8wr7h1ypRN#V5rH|*eDqE>m<JZ6rYixicNAT?rzq<9J++&C8sSz^{rl{b
zF-%&tV4Tz<26X@IyREH<gk6r-h?`}|(2DWa)_D&a*aQCxwZR-cmjqxX26lr3`}ngE
z7`&3@9}8IYX+oZ(Pd6LnSO=NgH`MI@g4{iTJSYu$goC`ZTbb*itIFIz4Y`wp{N(*m
z?MCRuK>9shOE-oiOJl0>qFcqmY1-kcI|%Q5=ygwCmw(vg^lj=9TuJsehrFrtc#C_-
zGk8AlR4k`@o<TxBgW-5i3)#q#I^IbCaAcw#(|3D;BTgFsa{Os$IufJ5+#V-&YkC-F
z{9>@wLfWtj<a~JQC4zq?hSKa&H=sPqqYWsJ@U5+BbT%U#$7fa~R%;YJa8&f^>YUMd
zm+dI3QFtMGmvR70v_T`lXm7U)M*KQGG8(QNDjl+~7QqRFUs7|h&Ol*(zIsT7cMfa$
zZ-dY2WZ#lqvp=eZ<85||CtlNz)F4OgtLfr6<e@yVB{h@Va4Nik6*xeqR3!E^Eh2EH
zYZVx8dH&<asv%VRBh6;v{$g1QIvNvFOlZ4q)DHhCYbwZd+CUy1#QkV~{JpPHH~I$<
zEh&07(XdVhi;}4-ZluDPaT?*=yNs#(^a$~wX@og)rG+)Z(*(t$5pvo>oMjr}QXnNI
zP9w~6V3WeLEEA?*02a~+;~m@)?}myqM%@!Q{|txLH@k<>+KtxuEq_!C!DD_b^a(ds
zmj5^V<o|AG%*y+@2dl&9&|w~%{rnQp*w6X0pE1b!M-!OIud@<y+7ex4A8nv0Yg3F#
z`tf{VzpmRkoV`r2zf@9V^VF*7X)AQh3W;19!8T(ATVuGFJ6I3|%R_Pb%&#u+Tk*-o
zJ=C?_CM*;HM|Ev0wXvEr;Wuh~Jss_W!F5{Ga-VRX?D!6gJ1VJK(f0c*BPnjYqNp^i
zf7MR3SWBnr7I$gy$<Vd)d_irPL4}$2%F7{?isBnqF)cjP_WCbSlY7LoSE*5WJe#M6
zR@+sC&JD0RAM3kwDIgiC+N*1?RH~mT*-drMbDI8|uzK1~oi`){2E~eO>n_8~Ar8De
zJef0Q+KdKp_$C0`{T{3Qwy**>CRThlh%(!9bH1K`F~CKuyE5JV0Q&#B)4tyMlTaJ-
zg<Qq&#dHvUHDhYW<i_un2jOq%@U#2?{U34kM?NlQUJk!in&gT%#t=7I8dG3G!dRzJ
zM;f&F?8%auP`qs7G4TYBl-oEvM$H|AYX(A!Lehs?r#c}n3LH*&q5x16@?|6Rg@P#3
znUXKyKEVCem(@_pUCh}cz!b)(eb{cD&X%uuq92?p<mwkz;eREdS>B7UB?QYqj<+s?
zw>Z!E{aRwG7RbdQk8X@@wmog^)r7Z1u*pGhGn>%IJU`CGo5BbwOFN%wCT9VxU=})~
z6d6%?cmk_P7kbmFHg9&tL~gQTU>ZL=TueM@old6GB7zWL!C(eQxrue#n<*IbK(PJS
zI(oz{m<HPzyIOwZ1oGGN5oqH{_W#8;2jwiWVpHSPNG`bgEx-Pd9qHO(LDwQYWIe#n
z!+yqS0R{7{>)ID17UhZg>NAnqu87z@n{xoXUO5d}(>^jHvy_N2SIxR--(|FS8N`B2
zw(Lu(^*X4!X^MEv7{l=dR2B1qVE~fmF3#r$=^U>l7E$2=x8yD8_})eSRb6L&rveH!
zm6>^q)qp?9f@83w>t|RBBu@4tT6br!Jf>KomsncYdE?b*bM8WGvzkNxt0768-54#^
zN6{nmH!4hcC!*-}dGbCm8!*?rD{2=xj;2v1mbXKDwNF;V{U-aN@M#|#$r7vD?m(gR
z2=CZ3VSI76gYQcR{e;e-*`3-u>6f$>E|3QrS<CVN5fKsTcsdPk%=QOiwOImwS(aNZ
zRSc;d_3~NI405!6<PWBrwmUmWYfqi(i%$P)oAiaEFwIi!9c_5bXnF>*OBN~_ZFFSk
zzS;zs>Y`Hq%Y-)JgJH@QtvQKFLtcF3_hhavaWb7as|B-)RCqm6nn$!{AJ!laa{KK~
zI|t(j^QQ?q3<2G6HESJhpZNPt65UKXo~M1j#Y=chYv?6Z1+v&9I*)4G66R}YyVf%Q
z*)*Q*<e;<`BL2B~y4~;H2kQSjt@*mp;|)g-O1xNZF8yQtMk8g!&oyGuT2#TF*78nt
zKrEQr+2@*rt*uE8d?#j0=RaBKS9L$iYk_bQdU`FNUW+a8kF7PvI4a%Ue3s*xv-Tvd
z*6{Of;*RwdG`f&Rx7{YqQv^~lMY=F+``tF%kfeAyspHh_pY*2LJ36Kd@x=d6+FxVs
zf5h6TY2h~7FJ}SN_%GYf<S5;9LHl?3Z`%KYNZCmSRSHa?{;y$$)jBuYXqqO0wtiXK
z#6Vir4LnOE9EY4?9d~~RL`hBn0s}3n>4&xQUIK3$rV8g{l`xQ4eg+!%G4GP}_JGXR
zfV7-j$&XTU+h6VRZXQ$IZqe@lG>3NXo9X8+{X17xbh00Xd@N|+m28>;dxRZjc!D*f
zesiy@S*oO^^D%Y=41jcQBAYw2_TQHDo_=v4z0K8<UU6pHGQ?Z71-<WoYAtnojiO3(
z+8*x!^T%&b6OM6B=!E~I(rw~yx8}KU%8Uw`9iIJ*vi{LCjmP>>c-ws$3HYze?{Ztk
z8)3IWKb8NHXXQVz-4B-^oqnC8f06V{q4Wy^8ksf2O!C^JhBiy+qhf!oA$_c0ShT>b
z3^*rjWgJ*6V?|cRZ94?UO50+_oKY$&f#&?=U(Sj^T-3kpQRvZjmwo9CVXe~%PuUuQ
z(x+#b1*&wW$I;uOw~ANjv=xF$X2Qx*Ytw_OH?hMc)SI_bhr7#AME@_#w|!6I%#QNU
zOP7C3=kgE#k@8OmfA}k-%af7a)1@r<Bt#(15NZY)dAvY#nvSM-I@GFZ)AXyqpcl=W
z-MKx{>717*`5LY|@t)g1k$W2h%KR!^XCZY)8`&3}<xJ{i?pok5pt9`(Rt||=#yj@M
z?wB?+Za~0c59>^?|EVgGF=(pS|2ZDLL3i_S@!Pfiy#6=Y`)qrU*6V%=NFFRK)Nkw^
zo!OTpCUX6v$#)S&^YVMQu2Et;As_bSAA5|<OO33_qgnUOwfcg(-)^wFYZ{(~Z&-P0
z*@>0ClR4aXP>f13Rd;7`qG5v=J=y;u0VfdqldaRFJt)RC{b@kbP5(D=nWoc<H+XkV
zpKSBZSPEmh-M^F=B)I&$@C@CA?{2(p{@j~wn%+<I5qPu(OU0i_8abwX5Sljik+@bX
z$E7Yu`W(O;l;c^_{NKBZ=7fV52PoTr(EKt*DF0mZGpRK+sYIMoguD)4;4j9^qt4^I
zVcCwW%HMpGVVOSKemB+mDQV<b5uRHbmaizsVwWS0Woiy-{e<P$uA+5e4~SuTs>4z%
zINq&(rf>Dcl;r|z{}G73T?^}=R%M{{1XMpkU6l{iI*Ejtza)j)xn`DOJuVzRX1N9k
z>zy6eHamn`hY0Jfj;x=**R?nPB`U1pD>9#MXSQ-2Kq>zAuARNRwe!;Hnci4w{<UrN
z#;(~k;S{&}*+u_Erw8_4NFV#hnNQFeAu)}0sA9%*&biagJsii!F|f<GXiny~%U;H}
zsyt0ifeNg=E8@wM3EGE)G342YiUhbRr>2)f*c^gPrsK_Ya_;QKMtuT{+>@QQ*|bcF
zNFkdGal8eu8XClXPZ*lg?P>0FqlLfuA{&SH&Z5~rX790Hxz?>$4w2HD_65C(tUee7
zmbzbCuOwVkhwDv|$Dcl7EhO$W4QEhQ_?v!+VV>Dv$|TwMM9mvoHXRiovNXPYvjS0L
zpmY7RY6|426dz5X3>(d+xQB*<Iz8~`Cb$qQ+5e=2HNwfyI;6~vHKvg#NNYA!8f6?d
zX<RVA!BF7?nHzwbiX4&-*ExnObDA3#n&NX`$u@>|7zovsa6p&A(ZBIH%S97{&0P-3
zc;XpBRwU{K<c)l9Z(WjBr+T#Yv{VHr9<^$zsBt@2krf!!;mxtHNe7f*!7ZM=f^!#M
zyJmDed0aOAtO~qHJtafWm5ki%14-|8>a{ZN1wAxv;VdYI%4Qyv`Hq71FW(-sYZXhm
zkM`aXOvTCOKTrf3t%Vz>7R3CUUel3HHm1oZ!-p#I8qA(PbLb{(V*ky1;r(6#5{Y_8
z&L`|Au}VG7{_kT^%*r|5xEyB8@i%OzBrDMs*2Xj(G|lTGT#~spMe1HAH~vMV1nl}U
z^%{1CL%D`>9<g%L-E19YJw(^I1BfXgCMH1z%lDqlePIV_7Ewe81c4PSaeG0XSPNJN
zA0q;y>o33#%2fNcG+Z+Br|^+u7WR>Qttpt+`C{YL;eh!||HJOrr+z@6oFpT;yM2ws
zB%8F|n~5MtF7RM-#D#6Q4^}tNY9dKXoZo2%n9N;NAwOP|QoY>E9muQz<nIDW)ajM7
z=J2CGFZV<THa7s9B(T;xz3Q*E?%v>u#78rk2Dwbn1exsa=Vb09%*v@=sf+5G`4=0Y
zX)(Wsz8)TBrq%%Z@5K!LWh4pxMVi31*6CG$UhWI-`>Npkb?&=f^#|yh4Csvx)DJ+9
zaiDtDUu)gkj!YXfna*~ZvWB|)zm_IT=C&Vb_$zf$T@L>W|2%#Te?6!G;Xlab&nHRv
z-=zGlb$ZpGm;3#m*1lNq{WSMoulfVDFax^6fffaz_*eB^ulj4P8{UzrB$Me+E>k?n
z^px~kGWRrxzfu>~Rq`+R&#K~A4y-yo<Wpor53m2(mVeF|lB91=RQ}dFz3PuRC-;4P
z@IC6j>s5b%PRM}n>_DdkpgKu`?|RiAT-%YUDU<2FJw%^5vw}?8%mm};by3|M{>^s$
z!wx50Yju=!)sZ$peAtVDAjeIIdB{^0glptzX*&HJOFv63y4+K_KA=h2tRr3i;3Y2u
z-IPyp2A~K1*-I>V0hRhq$8Z-W>g%^lCd8As=V+b2p=aXeoZ<GMq!RZ8N_w(FdJ4gK
z@Ftkb42+&SV5%}OAWmJn3$rQikU}pNdj0=4$jGKNRO<ndOplPeGC)%LtH?G!CYq}B
zDKv@Jk}<l>pG}aaG<d9yV|UYuQ`3p5D>X$^IwP*p#vhaZ28(^i)IGIdH;|DbkmUkd
zEzQ`elwCt04-4cE2BJYb_YU42a^G=^jUh*Blb{YsLuJreo(4&MAa6|~9Mtht=G&ZZ
z-)_l#J1hMyncFv0^A(xTS?SN2D$mJ$dr-!Erz(%md>h;C+rF7^L(<=pxrrg^#%`ba
z{EDp*hg;Id^&Uou)aB`KHb$<@q#u?}Pv*XQtn|J*_sPuXEf}``DeD<@X7PmK7~UVy
z0@pF#F#Zurr}<_~brqR~mIoVZ2;}4|OtQ~&S=u{xSMlA+%iDFJ(1zvl!TNx|Kj5)B
zVn2?6sy?6PnaQWIoxu`3$DQu}OwQc-d30V~A%$BcOR^VdO=DvOOB0OkkvWAT3~n?3
z`lG}J!m3_DfxjMOrs-n)38hc|H?7+XJEEI?ey|iu{TC%_-*B~WxR?9kJm!X+SnsC8
zOwnaldb>IkfQ9oTxr8Hm`PSmCY?^{RoViq<XijV-MzFf7Bzp5AVtZ;2Fqrn@t+ja3
zcdO8hQ3eEVulWFL<N6rkHypf6FtO-R*--waEaZy7*qF|FWrkCZKW~srk3)FA_~YJm
zosMZw_&><<Pp=@}aOqnv%twK;T=WoFV6ouHUz$^a;hDhUcJAx05KF4k0>%z}+uefw
zMcy!mDyHp4P*3fxdGfyBLD0vL?ymlcJG#+R7|<N~qes?3uB*;83{aW&8m+%TSz6Zg
ziYFVgrJe<gAtf6t$eHIKD@DR9u1kCx78VGq7-Xdww3(u(-Ypo>C}}#{I6a<llmrJ^
zga475$dvRt2n}sUV^at`E;?Fo7caZ&!T{ZKtE&t<O!as?*|1#*#bE{Fe3^WH+8>^;
z#u=^otrSi3RAQlR>L7q=S=-GW{q8?<wpo8dT4?$=1U*7;qIUf;%Y`fGYgrt}ewUJa
zw5?K0T-KXcs53JhwT&mg)N1oDT1VfFQr~s+mqn-VCaa>;dGsiRU?wS?;5T?qt6kB?
z*EQIK)NuMT0YB|zC@_EIwvDC(kaVqR+!z3nQ%8upkWO#VB}X8_-ibN3sj2_3?XBZ`
z>(Mr#bk4Gu%K~xP2i3oyy_HjB!q}m;G)7;-Jg&D(tndAEWaL4kJQ36}4?#fKU5S27
zI+oO2h|c<m=o>a&_B<7@@{r{i0zNdjisfA5NR_+)&;kJrdR%av_0+iH8a}!cUx-g2
z#Gxg99Y!>dXoquJ6tnQ%DLOL#oTWVHuH~6nyKi>3Si8N9W=63)1Bx+a606f`!5n)!
z6Hwuu-^M96P}rMY2t8+1R=J1epVxnc$=2`2c=G1uW293}gCIBl?P~)5UQ}{H_PExP
zF|-zeZ;GEM`;$N?%0*>plTac)eo@J|EP&3!oGST^p3c#CD#T^*jLKy#*=;<tS1p27
zu&~C&wf{>@+l;IGx9F+m<6I`y*W)(Uas#Wml`$sgb<|fa-HmkLypt0h={jNh5jLi^
zF?ETgJ2_j{R7XP=@VV`S`1xi{RsVv*OMd|wpYC^DJW<J<wr{x%tmPlFvYzuh(RWy%
zlBNmcqEFYH)MH#?!dZl-_Q`IF|Aq*;lX{Iy#Lsb>Ys48Qa-G@a=Ygkfc<KbHhh$`J
zc*BH6&|FYsL(73*BRq>4_f2@Z`kSNEKM{dD-G3_ch=!5OgUo7sh@~G2(+@@IhvD{+
zjNFKO#<6WOVBna@Wx5oVZ9zq-J|4zEPd1U26<olG$(_(*bsFdwed)N!ywAHTR(CAN
zLgcW~gx}ghDkE=E$yn<JlaTRZ!4k$K-H5ESSxVrPHE@b)<i%F#5emFt=ofqiA+RAb
zga`=I#eP^sV>;Up9r`4sN*V+PIx;MT`Jz|S;~Q^*yvS;~K7h-}bIniTb0#e%Mn}i*
z$n;^Fc8LXBKFT%cR&If%m?r{NwJ&}E)n|fNqE^Suf}rashYuo+QJ;U|MC<y4p=N53
z84>Bu@817&q;NX>=cxvH(e5&i_;N#FQOD>vMi~^?q5-fbI|r=z2dB&t+<P62kyDpB
z4eQ)h$0-Mes#iI>!E}^LPd=vkN}SP#5dl>lomX{1-Ikuw###fZieY#~ujR@F>SN?G
z8Qi+FD=S8KQyv<E2r<ftPtnVa7fg9;gP{u5y*&@816oTa@B<jtf|=cf_Ly0NL%xl-
zwB>TFAbZ01jweSPQsGV0%%j3f$kMAI{Bdk~qSwZF`yxOlzDHM8YlfHUrm=eSa!=I{
z$~ci*VF`v@tu0)cnsknEdTaE{Ay03vdh0oGBWB{{Q%%kT6qC2q6@f7G4F9*maX~qv
z0CHqwKEXFS-8xueZ4K5@GfSp5BIyQpNyAL*P(L_kanM%99KS6pIS=)DzUVSubb%u~
zXw+IVMQKdEn)J&bkF(qpkO*IE38*nYWH$YElx8QZ6c^FBo6MrtlDNLHUg5q}>dQN%
z@TF2;;)%=Y9d{C83HM;SURY=5cse%e%}Ibf;ku#Tx`BOHqd6y{-c}0}6>o0r@|`1>
zev2Hw$pv>Y%=v?nl_xBtS8wyk;&s(!bmKB2;Kw#qj$KrGK@Sr{?}Q2BQKU-KMU=)k
zr~Ldya$CW(F~FD(z)h)nXj=c_ldZGvaX)kIr}J#E@3$c%m3B-eEB?nWbH-2Cb%)ZX
zU8ltYJpg8OI?}(&?lp;I?=D_*{XfN6aL6+5^!a=@l3Pn%w{gAj7R~aKk&l;j<+Kwn
zH5N-oYQo1m>_M;ihowI?hPPzxrBA!LPY|O75}R^^xuo1qpvR@fG2EFoKsndLD5rqk
zw~=S0cz|?M294ip9P6IZ|HVm0<_WCNq<#s^59u$94=U_F*Nd2DF>GylK*NFSSsJu|
zfI?SY>St43xA-6-i;^?K=ZO<!mDO+sR~7o{rD`tdRq#~p*W#nt0wh6u$|v&eTfU({
zb*&M-^mf~uwM;m52jfH{^1hw;v0Wd>_f>80gqqiNe!{3F{amRwV$SOy5E{dkliSDZ
z*KACWcFa|>vhuQ`_45SZ+M<`t^q?x9=m&eN%MM!U_|EBKot)$t3f>>y0gqQLd22=i
zeI6_~z>Bu5Cu{2m6px*cCI+>$TjKxQ`X=|9KGHXpruf&W8`JtGcdYwj+hXo_UjlBF
zSzrff-RgABYKPoQrYpFby7-%FqQ4(EJ>flT^ZVjW)#t(MoZ?5EB^t$`Ccf=mSD1%U
z8?QnsFp6B~3{LnUn;E}*GeT$d2)^yWgz{_Y7q-`pC!hMTUbpj|3x--crE`E|EQC2<
z`O0-ri3Ndo{`OerTVE*@rwJ@Dl!1=b+n~o`&q!*2Qznsl10a~j4ZjR~5Up@w*rQ*l
z8n3)cOrWU}^5XyLN&{<J*j0I)9DpHhfQ`Gtz}|l*1h#`pI}k8`JawtDl$&m>YJd;X
zAJS_6-<GBMkX95~Y>UD*%cWzl_yno{ciLp_WS>ns4Ou9XEEGx>3Nv)0W%Y}k`6-J;
z%q$(lQ;DAPdC)I|gQOWW{DmLM*33*`B2?OTQ+NC5agnu?KWQ8GU~P@n$>>P;(jI61
z_>V16BO_<*LLZPkoav!6@JwwVW6AObfR0J04L;c+rYTY7pq{oeV?>#Bvi&{{M@ifI
z%q8PZa~}3FG~|l0ZvKvPt%7v6_o<*td%3lbyYU^2wdm9FG2>7dyJ(+I<BMj#;ZnlA
zURC8iE*a2{u|_kzI)q?IS_ovfkHKyqh+TASf3+PE(R51?xx+{i#JK^)?qLWCQf_Zj
z+^}m_RLy}5ip<S6)j^GDJ*&9#`nTXPPtNS^W@vq_b94MP$dKqYUgU<`N++1f>2zW+
zK=Qc~qg~<4-W;b9-gef<0?0*V^vdXTZjk_Dj#CMbno3AsL1^rTXnmD^I&0-d`M-wa
zAB#2|PEv3p2F9!I9CoK(Tt*F-#p2$TD2T1`gdVG>@H-_s@3OJcc~_3zVQWd#Wn)Q=
z#fM;}DZ0da)K&V7(?gr1^-HCr6MZpl0Gqbe5kUtR+Zi~?nj+YF810ugZq4?p8}5gE
zJjkJwoGm>L!Mt0v$QAb<Grf-8o3I4?GDlw$`8+44*)wH;i#v7@nHfe){w~C@j?Jv%
z=J@(IjX8&LS9y&H!D-wJ)j`^ATh|UD*m+HLSJQY*&oe0Qj48ZMaj($e3}|rm*d4Ys
zodF4MvG%4bIXZS+vMdXNuZq?yC<Zmy%6`?Dn~g;4|EM&ZfN1WKkoahI^uxet``>7O
zRoEdg*f|6$cA~O0uRUqB&dffiwaDaP{-2zt2Ma*=>yCpUY;bwhl1@e?`<J*RUEsYe
zb&Hg=d%RvBE5jdk7`1=Uu8KRNfoX=eWdk}Yd7ZouDP7>MF2t^Y1M+cKkt$Xy@+Kev
zY~1vJiT#FpJo?L!sx}Y7wUhZkPXmWO9HzHqr1pUj7`h_MKQjQM2Ee`~Fc+{hp9_KY
z6`1lz*}b+)diUB%4)WG{A;{i>>>U(XXayeNz`nXC1O|6!`5zPGEc8r2`Vj}VsvFqz
zfcYCPF|1Zcv|0eQG@S0OLe4qgdH`0gOyR3+uiMn4mYsO$H!jU3kV@$lGD4G)Z^Bn$
z4N>O7E^{*SP`6Lp*(d+C_fWI9vRu(&!F3w1qSKF*q;?*&Xwz_KHM%P@oi{h8AwXtX
z%|uvlf^%fK;2N-GGK*eX4Oa9uax?`4b4#>g0SOgeNq)TLvs_Nh<&5Fl?15Pvww@Ks
z%9=F%SIM#*j$l8by?n!p(Sw&&41SAqhq*KXlhp>ppvKzkRkzJkojb2$NUIcfd1AB9
z;3YaDKV9VZ94JoUB->C1RcnSP*&cKuPZb<^%aTe(qLR&V5=iNzSuA0w3mJ$NW|6&E
z1jm4_(Wu;_FR|3`q;xsi`xE{1fqJfzM$yd7(0mcclBDjY^Nh${==+w`ZKv~3RP6Y`
zE%USIx3ZtEle^qGG)^(~fwK_DTv<=2L&!HpbisglvY<{lAU}D&?rT(;xWt=XJ7@%2
zjmdt-2XBQ=eZZ=YCuh0Y2WB0R6sc)kup?40dHyP-R<MW^%~he}<0uxtgoAgL9#c|f
zumBSCa_7>i48_;m$^%Z68Dqs&Uc}F(3n&7T=Du#v@~e3Lo9)?RR|dUo&#dM6M_)vy
zWaO~02r;&EeqA*)b{#=?eses5jNfvZ0j_=|B$8&_RRSpdI?nt!XM%zDcqjyl`pfe7
z2|!CSXMP;wKu^9u1d0wN{ttJRN*$g7&2gZ2JRJfxCG%PU%1W@`&v1S3cZR^3-9Z1E
zDHU3Bfzjejmit|nmM|R{IkNoA$l^bEp|H6atys@tEPk$DlacJdg-|h~l>zLCw%Gda
z0*CWie+dD?o6MgBM6iJZoQoakm0{!ATtRCgy#G^bOzkP<f7xmnzc0Mfp<TMI2M%!h
z1zjqaV0yh1{eta;Q0I#U**Uhf_Vl>dn^llnLiS;IRNrwqdL05J@4WoLlnzqFoU4(1
ziiS^|kRvC*qWa<Afo)Hrkw{e_-<sbTu_EC(&zNX1Kn>ej{Ac}~fXNm@1i#&gEd`;Z
z$CUI%kVM%e-Jzt_L6RE@JSFW*S$_6-t8Vf?LL|>qb>q*L*7t`JxM}AU{s{fDx2c~?
zj7XZuGEDG7vk6Q1IS**)6}1ORKB4hWakl*MFO&ZMoWlSWSXhGa8Qo=({3%B^c@DfP
zS}ID-8)v9L7v2nMl=>3p^nEo9N}(m8!L3SqBS?x_(hMcd50V_EYLxUykmTrju9E&k
zlK+;gZsZGHDRm?(DNt&A)M)A>Q?Xt2s~siMZT#v)pQF?CDNfU;D4-7;&l1`{!LK6`
z1}2-cx{xTlZCez&d8|=r%7-D8cT?xSggxUg5~pP-G(|~I1WArUW0f>FNOBZ9QAx=l
z$x-MiCB03O|CFol&c&hX`l-6z&om1C>kTNR1G&1;=U_Mf#3g?vl0Qfzovz`nf6=W3
zd+R*gzrtl2g(?_DP~;7l^G-oQ6nf@ZoAyNs-3m&}h*OpkXPRZ{)9C@I<A7PM@B<K&
znZV?&x_3!aO#%1IKhvb_jM&5Di4g_<&z=emC^&%^t7F(M+A<3;Esk-fvMvm%8LF-I
z@#3|$T-0-A?~>u0qYcwkQt{e}yVP>n3l$7sHxXaOYL}t*H7S;=abkK8rl(_ZiP^jx
zj-4{kRa@jWsX3XJCQolq%uz}M$Mt8|{v<l@T3>I?HK?DX^WMjh!fh~yNp!}p&Xig3
z|5he6&6JspeD!Iln+Jh{f9UDzX3Uy~IqI|3(fSIF`w4fuL;pK|PpWt5o%)e)3#ZYr
zxW`!{tjXf<V=_sQ$o3qe?*hnY*HNaDzSNm3I&Y<+9X;OmzJJM)#!i1&2|GO|)!v1l
z2K*R5t@&fXPl+!4bk6@5e!AkRF8qYT3iyc~esdfLX>zO8hc6#@U5W0JdD@+Ws)9oy
zQI+r1?3HGtG|O=2yJH!&o*-)9@8FUXpZve(5}Ao(AaS@?y`ECP8GiZhiU0f3DFiJ-
z6`h#o)wLm}iBY+qby~nQzxqSKG`|Tm&4o7^(_EyVA7z?Dl*`)&)9lIzm}dA0W14f9
zYdrgLd*IIQ{F96fe-aE52<D!Iz+lbHc_Mg^1~<Z^lO?;!+#L-PQ}n5z-<eDI&St46
zx7Yf73?arp=_UDvexjOSiYlki6^xAg*UNq9-vX?P3FZ~}QZR5q96PqzeJa!^yRw>3
z6Zll9>QN*zdJ|MW2SpGpEJPc=htk~r_H91L@YF`p4^z762lCLgPdIc5Sqg6=z|{6`
zk-BMLkg#9Yhl^BIi~z5DNtd4vD}7pvyYE4&5fz=|ue!xahytj0U*8|viTA0+CYCwm
z6rUN^`F@`{LN@ZyI)WvdYZ(kF|A+LRZV_%QX2z4ze9?yeH315=pDou0Wz(h!i|GD`
z>9EO<2OW0KBi4a$J*Io@vHG|2z(CWgA6tI>GX3Rc`=U8OqPJ#4{hw1pGIBt=sFjay
zmA0Ki{)}eSGMMWVk)d>z6Co@e`aE@-@wS7YLj|#CX9%&YQIs-Z3qgGUR;MyvhkN~7
zIJYWQ7VvQw{l~Eln$JPousut!xoEL$|78USLSy<v6Da1(W9g++)i|-v$cK$U^BxTd
z^d1io=x_Ql0==C6@_>D@#Xm=&Ta}QE^s%C#{^O!Gv`L%4=_h~nE5e^{lU>;b|37ud
zKN)#OCDQ``&W8-UG3oakII2sH$#IQI=3Z}KXvd*eIW0u~@bAdn#B5SWnxv%NBA0Uh
zOCTwouFptD_Sq8BR{MaJf8vRzMRpVR+N0pC;x72>cH(XLEAS8ZwsSsjrzAO1rn(sh
z-Y{^ByS`q|91Q|4wX>LM?PCvGYbWw<%zBGHc>T}QkM%`U`pa+ZONd!dRRY(!>qms!
zSKUfqIR6A+);%6-o*DhsCpcv+`&;YFRWa6X;G-IeyLlXj;g*0WrNQ7H?RofM0Q65r
z^3&C{KVTS7c{srMP9DH`ynYPh>(gH@u`eNv&r(7%@``?haSdH<Cp7!_zXZX5k7yXd
zyU=@hcX}ry_v$=-74kdb1Ah>9*?bi9$L(-iFwBYZz1$lGh5f;i&^yGroM_snwe5I)
zc60Z0cxWpx_fjiKGrY+8dh{Y^S&HdEQl;1M7I6+pb$L)gHD<h|BAZCTJffI(vkdH5
zyi45)GSF8uqhwjO$zVxGzxX#CYAm)2V+vXf`aIM}F|lA2x0&CYIfpApO+4USk~Uyu
z+pb;^@po0qD1iJJu}_q<-BY1*c2YSrer5GkazkYb5``zoo#;D>h3N3vK&mztSGBcL
zRlGq1X>wRAk6A7^xBh1d3qj91+0eh8%8O3Fhw3SlmS0R>?0x=;Y&<sTuNOI~9vbKT
zLOs)5a|k`~iN4WG<AYgJO<%1C2Qy0UvC}*{@|G14c}728q{Y3>cW)24w+Hpp8o7lZ
z{ZZ?+_JOwSU|b?p>N)X(uAab`wt4<gnvxokk#yIlF74TtzKs-F$$@&Mf5kt!y9L$R
z7$}bMKiuHLwRBUT21W4Gzp$><Q-|i%p)kOM@{BFm27Jx&$8s@}V*=<Thhj2P6h4g2
z7PID#wr;+V&453oZ=X_q+nAp+|B|S{$;i&;?Ao#Mh~_-1+!!Ee1u4lvsm;Pl)AC=x
z<XBwdb!8i=<ae&V+>7ls(8H2|lC<Fx?+^eEX57l%O4*aQLtsnVX49&@SB99^Ca_B@
ztW`I)(yD{H^iCIkn^d_i{*`Y>^Cz&xbV`;jF6zR>RJ-WeP_;IZJ;_zOJJq(``UCtu
z>C_*tuSX4y+SKz$YaP+8*7tsCjr|*ovu!tTL!N^3tFaa?#`r^?Dk1%ZktQ=7FA~_8
z6Vwq?@DLAuN3mKfui|vh;&^=vXU{K)XKyG^5D4*E@ABj@MoGe+zS=H6bSq#}nXTsT
zO<@>%=Ido4-@>AL+lpKOxq$^P%oe@%i4SEx%Vy7u;?I;PXAXHkdg$5Z2<(Q>SR~Ag
zU$|n=7kgxtbBW)Ow**+i4RuP1)_)~M?)BQFu82$chuR1U-ecr`+l9CM^5P{50%0|i
z8~hp$u^h&d%24~74#d>#ONUP)FBGRK2--^F_c?wKEG8#1Rz)(db!M-UA#rmoI%Bc8
zn?_F2QMlJXZoKYB=Lv4q3-%i3`OmU-Lgfq(hHj2+;%z*xnHb9FyCdA#XZs3!EwedQ
z<O7$O;KU=tseWU2EyGJBI)aWemriakdvxc#N+94|oj+B-v1cuj;F0esA%I-RW83Sb
zP3uUTq_k#2V$3q}pZ=M+M#t4kX!RE=(i&bt!^>&-<caY_aQ>jq3Pdm06y%Fuv}I;N
zopLhB75Z=RBtxkP8y$78KC-Scw!l1q!{|+2tH-^CNO|hKV1S6H57F(wz|S}I{68P$
zu<TW^aU+w2WMr=9NY+==bArC|a$oY9xh$#WhLXsf!y$r~J6k^t36WGxU5ZOSe3YhX
zzQ4t-=w$9#!O}uk>?7Q|()NO1wE)!-oL`N=qMZ*Yh$s0U^yy6byK(JuUWo$vX<?p(
zX3<py&>o@Nwue@Dz1Fc3RJ&`uegPsxXyc-(A2SyyfuAU)o-?fU2Cl)IKkq={(>ZaQ
z<H^gSc;_=FSf?mfBV;)!0@Q|_1mo6DK@@XN++52}(ek1p5w_L}iyqCO;}|);=1GkB
zI^4bT7%w52&W_VjXhSbv$!`(AsFXN?N+l&=lnE5dgdw(;R9QL{qs$UW7@*g9E-G1l
zoev#2iRg<KXpNbewlO-5pIlne)fVXcsd#|aJ;8BH{`=yhWMsp?g2Z$Fq5&p7RQoqj
zc-uoA%9y8)@{<jAhnm}x{u}9oX<v-j4_ng5=r@`Eg>%`LE)}{~Ds-)X<`)w2OU$Oy
zYK6jHpp(oUJSTZEqX@jB2Y=VmP9MYsASXb%Vap_B?OZn;GK6kK#k_0TdKFMNrO#v{
zE@UcX0!dpq@e>D9M@&V-FNN8D?_kDOBuOf<Jdmd!d$+`|>fjPPE0-Vj9xG*5u=O`X
zLgd*`0^$w63v|#4aUsAT-}d+`xKpf>;$B0+1S`IwpfY%O)io4U=^cU^oO<V<|4^d?
z0!~{fx-Rfbekv~aH=)o|HGx^#(H}Y=eq5LFk@Hj1*e$rz5eqU>{-K-}nr<E|hb;FS
za}IYhX>Ehlk@r6i+BOPq5n}{a=p;~RYv?v!PMS#lh3e>-Iy$BriV!Mo@Mxw9&>}rE
zJefBsyqqq#?pO{mRMz2I(#&uLW35PfCHowdnD76YgtmqL=a4E@o0fpi^bkJz!iSlH
z{_!Fsg6z2bo3D|(rVu)(+a=w^;J4U)Fh5Sv;0Upop0E--)o*Gi!t$2*hE2kf4D+vk
zjawZztm1~)Fa0xq0H0(-0dcbJPF`lK!>4^=e1N=IzauaDr3HbPDA`SL_DThUW3m2;
zIU<R<c(s4X){0;<6F!mf$E0duc^9er_CwJXsk-$~ouulossm{f3+j8wGBqQ!0<x+*
zx=7WN>m7r2ma2n-RHO>U4%hJz61r%|XKB`(om>QpHW{fj6ye^d?+}Us*`_TN6&Lt>
z722326f;DS{HCekZhefYIcWvp|0AG6p&c;i-}yYObX*`=+Z;b`RQ7K6Jn==%SM?Zb
z%!&x*Ub9BD6fZR{xrVjOv}3^k$G<Xc6f-tD(y<ZCPd(b+ay+k|gRM|HR-RLdJymZq
zvab~^=Km{0bKBjH=bHUbp9687DIe0$cK+-&vQRt6A0#6atQ6?@$ZcCgPDy&P5EWOn
zXxcaAGOx}Q8bIJw(DnYEr#hyw;fO)Z`krR`(~mRs9{gj-s_z5J{tHA(t2N`}G|T^;
z-jb1*8bV+aYyS@c*aQPB#1jPAU%P=>eoBL>9FbzC9{kf>xtDdza3ml6%Y_`dta0pb
z>nt^Qi?TxQuH$GN%;Hd8$O?!u!9Vg3!!g4F1fc(|ckqS51Y6!ltqR#{DxFux1Dk>&
zMm_)DgY$~YttBn>p$0=t?!Tjn{u+ICh?NvAsuR`K?&a?XN_QFEBj%}Ms2{_`nNq(`
zGpsr)-4-|v@#|GU|68~^#+`eR<0;E8*Y)q0k>r1X*+vDCKZMY+ZrVi@2NT!!#ki^f
zD+pt4-So9S0Oq=BTBU()xi(aqfhoV=lg6bQktM$zN~A8>wm<bmu~z*TCDPFhIQCCu
z*?R#2qC}u|s6*(B2G8)PzmsdttQ$l1_f~`B0h;l6f_~lX&^)ypnu7zdN&|ZWpAC&Z
zup5~2`-iG7TApXHljDw6Tm`qV?xAnSDsiz&zUU6Cymq@|6^0;<6SDM!Ld3(c3Logy
zRYZXL$Na+T|HHIUYm8N{Q2kHotJTjMK?ke+?cIP<cS9+$3Z@Vnp#3+WhUBxQ$RJ;M
z|M@B**4h3|M#iK|xs!{Wewf~WKGrbYe|88%qxULE=l>*wp@`leVe%)q40ruLlmQ<s
z=YcB2M||~1JCM0`ArNbIgFs%?*Y2%;^qrv9kIZqc4s78y&@t5qMh{u69qsox_-Wc!
zE#gKS9<ctw9z(Cjhpdf{oHLNYWBScXp7zDPyYR!PJXgPr%I<e6o!{EB0uCSA{B4|I
zs{YTs$FyqN=2?L0!tDTX+Ct@D;7=SyZZC3^fJBmyaB%n!iAsp7^7zY?vV|1?O~EE3
zcZW|s!zq>Jk37OmzU|bq?(x!-E~PI+_Kh2Xa@_rb)kCnAuR4mUjn}V50S?56oXGnA
zirN90p~WsDocNYMDdxsb+^Elq2GAUC&OM6U3Z_ZhNB-3uc#^t2OyLgt%KohFjE~A8
zDprO`^+}ZX^^wA+7uYn{;KnU6oheJKX0VZH&#%>=s#^p*_ePy~l&*VQPyRocjbagh
z_9SRcG_;`jxm#fm#-<#L?8sim%=UOCwU*}4Ha<o6GYF#H?c+fA5fa$P9-k@u>^eHy
zeg8&NCa%|zZgU_nPEtE&H)TK`RzmAEB?KUUbs)1cAU8P>CFpNxGn1BMt~wkoam!eh
zcKdukPxU|9GRN|K8&4kk8|6vtzKB_cr7ENPj+|2$xkH${2s6a9aT&_aPoE+$<&&oa
zzReN|WaagvDT-YQ{|pJ<?iBC$fhpAoPSYLe2KL9U4uNUL=6~`_2UcWVwVeZ7Jv9Vo
zV*CPN{zmG8=hbrmi#EDS2cHHqx-I;1j&4}xW+I6Noezdj_T%WSrJY*R+qGo3aA=Ih
zOq2#Fx|W>phT_kz3ZZB%*|k$kMmVr&x0ZZM6a9liE!nF}OI(Az$hE7q6nxET@Y!!x
zBm2hPVn^<4EM9z7A8qnpzJ|xC|F+W_)jMntHm=7jypf~WFpL++mv6F{7Jq~yEn7DB
zvVP=rQQ)CuR;K@vmIK266+95K+GYVGGn>^Hum34;z{ADMYbKb~)i-an2p~D6yjvaM
z<7O5muY|rECLbM7JnNEgY*I1BTdE5Qxdnw@Y(>uolU*q|@|j9aWHXD3b+~5yA@C7G
zd87U48)$%Fy>r`y-bArZ`Xh6`-*DLjjF9>V%9OAmZg_aJ=31-f7_#1@hGX%%=!`!o
zdB~e?IgJDV+Brm=P4X>Uj*8cR+a4eMHVzqgUnc5O!*KDss|YpZtaco=35-dcrO;7M
z_KU0r8FWecb2PO{R?<8}L#uVzewjkJf0Z-4$f3W`PE={DBAU$UlGou?haAT|3gdS_
z-w*!p(%86l4Y7OHJA>+9SI@m&yR$H;G=FEN=;%>Y>P5x~1U4#^)`M2Fn}rPdWB!-K
z^C0G9uk6b81%W|BZK&FLZWtc-_YjyZ27Dik>V*b&g9CdYY@<l0`fqj`{Kq@69@m6Q
z+g@Og1YppRN|(Dq@2^urV5T&h0P`1sxqpyDzq}~~(px2s706tDwSJ*E$%PrdzU@A-
zWVqkiT+V@(@4r9N$g#=`m1h=7{{S=B&U+kY>nDf6470BSgM|L40d)>+a~RB&Tq|IH
z4~KiN+e3xyEZi?VL<|w=zb^d$5dfW8f`P(%mHrL54!0@s_RFHl2L$ZyyoI7fLw)@l
z3;NB$|6P-ljDOE63=U|r^SN&UCFJC?@iL2tzW&D-f<>@97Vp1G2M`ug={RL$Z4WBd
zb=5dDWyf1wJ9snSdPl<F{_{J%$+4RxXqN}1=jiOzNHl&(CJuWDVc=Y<ZuaRPp&#up
z>6j1r`;Q<Azt5x)9j!CYh5Y{Q`U)=KoK_L06yScY0hdJ6f(m4j4GPH@jbN9-6*ba)
zNIrW9v`OlQ)s$G_)y)N<qIf~Hq2AsRxN<i6H0;lte;1}0czjUX6_3?r4h6>)zdgpl
z=63^oJOFdUQ5j(V2PzWe(R5DL#E48XRYP+`!%pbWEHxrFImPTWAu9d+xMv&S)qR!R
zk5F@<zu|Dhp`sfO2Z4isq1Bq1D=c-u*M{j!cN4!X;1K|~J?!7@fX?j(^sd@5AZSNC
zH31a;DGvDNZorQS_;Y=AJ*IxKc8cE=1wp6KBU<LDOnI6+9_Wf1-L0q#RMegSV^OJ}
ztCY`*jUKU@u3fi>N;&<1F6BdJul_VnhEG)l^VmRqU+!+dI2AGsmQgDU6<X3HzKVOZ
zT+g`>#^U8yl~uFPgN=e-KO#G8#G~t~AxK3Z7*v}w;9JKmZw1ci!gNt~cbf_g&Iq4w
zwPh9s?qNkW&@kwibj(>A3pbKFp5Z!;sKcSGHx;5G7Wfx-<mUd5P7{od(gYe$paij=
ztf2^dS^$L@`xC9T#cx-;?P=D<iL-WcxwPKZVbS~Rf09PHLmzU!k-J`$@Ho3>v?1H+
z!klMmEvHXEHv4&gqc<;Tc&B!I{}>;a^!p3`$NUi1?ocGZU0KQv7`pS8Q+OgxjJOND
zX__Nb%<lW(BX3VmXiq$*l!k1rD!v<?SMTesxn_C1^%#o@Zfi|51HS=^Go}f*4szkP
zaJT9v&uDkSew4?$KQYElR^AfD7?)Uiq1#nne%Xs0`;zR*=<ju5SWc*Y=HL5_TIix8
z=}T0u{$U)9k%~2fPS=BEt$yRgXyg4#MN6Pv`xa=poJax&THkE{Df?trKiOT5$+gwu
zV4!;$^yCcmj4(9ghK32u+>t6A|0lM~tTh1$+Se2sYPPus8z%e>g~>PJT(4vEmAP%@
z$P_tiA82c^hiIcTid%Kfz6bgHkDMBzKN^pWTnsbPcz6(>3d_#P6AHy|^;;$r30B`S
zL9yfoX1HP~Xms2MbZUFi>BmLqz0DNkv4M_{Vj-Z~cSOQM&@omG!dE;ip+{}t?nNY3
zZ@nU0wgJuk()A&1!}e~n;s22KCh$>J=l_2|Mk6v#RH9KqqoM@YXkEZHD6K<9jXNqT
zidL#<Q3#?UBqjmI%P6Sr7q@D)R;}8)w2Es9C;@Q+w2J#umottF?tn}F@6U7Yow<{M
z{eFLcUYfc0p68tNoaa2-dCu0aPE$|&4X#K{)!>N8L*2Uk5P2A=->m-)D(jxDENfm(
z*y24HKlRYH{n8}2aM#OX-tCegq>&MT76!Dp%>~~K*EB0eK{#`uNp+C;esN`)@5qWq
zL5%3v+a08EG+aXV8dxlQ3kl6De`we+sstkT%Rl1o*i+~vF1|CSKgC++Pq|n3CUsQe
zdMYrDunKG7p3+CGWjwI6fwJ6<3+DbpDizl-%o{b=GCieCpYz#0<0~th5v#01Id|Vt
zN<vhw<&_N!=*OK0wOzJLdKAZut#0I7s`-BYa*`LvT66yQd)<TaHxA@BUgjD+@T3>D
zioxhNmrXIS3-eQp8aBwxQ&V%SuQAUCd1~obuTCJUW1Z3Tl=^1=cMCSJE-M@V>wigf
zzFW|TzvBmGFS>|2y63M?XGh$)zwTo?wl~K{>43tF4sJo^$l-8x_)TgxweFld2fohy
zlwYuWNB&{=?S^U^SL@kQYvvGDxBhjm-~DhKLhx|W2*Lkp@qeB8zpg+WJq+{(3}cZ-
z>!QnS<!^l?%Sr+jU5MUGup)3#WALF`AKa7gDzvGBn{|fOoCmLcc?Y+_t{bJl%W=9o
zM>sOfT4iU4)5uzupOigw{eC)debi!EFLZ%?l8o0jDv|f$B=l176Y9voQJJZ!LZw4X
zDlL&7vquy-27izCrlop@M{SZ-p!|_m{@UC0F?T1Z7ot1n(zLDKgxA=LFxA9q3fr1<
z5-t=T2%Vs?Jhcoqum7I_XrH?-RBJEOU(v{y6SF_Dc;ok=md?iFjaA#x;r?{9rcY|B
zNk!_b^^4T|-$^J{PD;TQ3uRery&y9b(}FcXX=8aAdE5z5Os;n8vPl<bmb9(jy6xk>
z-IlbiTu0J%fQq>2B=+|(4PK2;jL4w1_Fzvuhaj@9sQJTg-M&gM<%pP{_}1`Ax_O>W
z&JAjtw45yweddU;$U`kvi60HUrl*AUe2$0tz}?9ZDzyPzD+mF1hH}4xV7Ygtx{LHN
z`*l0uu<%HA>2P)F@B-(C5hIjHdZ9Fn9F9nzRk*L$BV#sk%9|Tl66}yzWg8%H9R;RC
z6!;+=-&SrI^}y6<CMN*9_0_voB4bJ+MqA}ifW`wDQ&L;CTk)3X6khf$U?Z*u1Zy2i
zjr%RAz)*We3>8k-j7pBKR`?Ek>wdGFVSE1@F`dThoHBP4LMkS%GrszlSDLM@F)&G{
zn*f-qDC)~=J?P}$#z1ZCc^IH>D)kAzdF40bw}dn<J`z}8CB6>}5tVojEJ%MMzTt=w
zRhjFdVouwgKl@Tv{xR2lGhKLKC+pkEo(<H%(Cpa>-kzmlJ#luOe&KBW252{a2xA5_
z`VCjYs3qxapQX~9y_YIb-J@e}{$tW%-fWLHEh_I(n07XOA)0VspX#8MaxGG=Pl}U*
z#F)o9b}~qwryrtVQ`_}9mcPth@{09p1--hnj9$4QN<<2QNzYk_I=1D1F<ylkSv^&`
z8`vGKTB~Iu1`2(`m8?+)r_|;5C<8((l|aYW+T!INW#eGa%I(_}rIGw*d*cN6_D!O4
z<d>bGY6vdUX=1`!ox=#7eDTF{E}TOP_n1dHcrRGO#I`(_3Ecv4fl@un+<mW0dxz9-
zdP<#vmt{&U@d?=E@9&Z-AEI=v&SDm1YORiF=qEQ}e&c<LbN9aNF^4oYAii^k>8zpt
zn-uK+S`SkLp#Di7k)063MtxB^dT@K`tqZE9sJkTy8a%s-S+!hCXaYOwlTFl_CH^oD
zx%y3Htt03<?sSbfF-(2t`O&qGNNH2;*|CH^pHDU4Yp9Gz2U?V%`TKPn_DpB?dTg$`
zPv(3)iyc4st*D}Mo9D8*Fjm2ZH@h0clZCdMH#~=eZDI9GqN-{$aRp6IRECd3g2WN@
z!Y}Dd6w(1-ZpLKGO<V(!<G~+NKupq|%+UhACToF5J{m5Y7vbjMEZ`VvO|g$26FP?b
z>SdK`%(r$=-vG@x)JW5N#rePqJCwT5?mz~bL63f!#B)#5TC#i3)=edQ{wbN_lKiQu
zyLx)pNq>j)w?U$Y1|Wk2^aD$uA&L{3cxLi3LJQk70=;acluqYUg?sv0PfxzX9}pHJ
zuSA}(?{JBpYK+is{SE!R&_J42$F%s;{GEu!gL6#q|DhiVepbX*VP++HaZOC=Q;Gzi
zDny^wMH37;YL$;h!-dPMn))B5E(Nj{z<wFHdR(|5;Ab(!Js_VuI~m8&RV9pXH}XIG
zUQbuB@zoDwO6WO(6_3T`l5XxdG$9B>=dL^X@=HqLrvML{W2990BQ4fQOZ(rcjOZwI
zC-|2Kl^>`-v%@*>uwif3dchj$dhS!Gw0_Q>Sj%^ggBwirL1i_w)1c5n?p4;c<v;ZA
z6y_FbotsK$WN_YfG-foeY~-eu;<tAv{yO4J*5$8a4i&H{EKye*^g^mwAX((MO({12
z50&Y*{7tuTs>7<FK-gdm>X!yrgGDXfCT!3wA;Z9o^fKM9)0f!K!MVyRx|(Ly%x91_
z(>P;|_vTF0y*c;{@ESm-pRj}ep)Pu;MW6MNGOL5UfY#A`t)g7|lJ`aMW0F5Q*=4!j
z=**ECk;;>7pXYs%Ud+Uq4}!=fFPYHGKu7cZw=mmS!H@OXMkBEX&&4RW2p1M-x8BYJ
zM<BoUsE$A$f1X-A5fqLvJKoZ-QE*xR3zFbE5rTIQPgbeHTFeGQr>H|bQcbdoE{$5{
ziTCL;S-Va**kqGCoa%ALt|hk!ajqB6FqMAjOX1utKQoPo7(~p$Fa3u=k3sn8zj{?v
z3npu!bXrOD?MPv2Sb{EDL`7O9!zhU@qI;mBD`vP0h;qN@te%c%sdrLeR1C^LDvPF@
z$gZjBUoKVCg`~1aO#uIT;ZMu;2V@GIvX+KW+3=9kMbtx*$53ykIzX$j1}sPq(?<${
zaDb9cjEGMquwbFgZMCH|ON5(#OXM##H4vdn)_W8s57o?J`fNGnp=Z#jfEAU;CW$>7
zr1k);oUZ=7iEba%rVEZlI882UW~CS6OQ*P*TX;J}C($irNKC$3e1bH(r_TMU1KWMT
z@6i{-*Qzg$0@s*6L#=;upQ-gv^^*w;c3SUD+7h3(R6hkQ3qTKGZmDtcwWyNo3M49_
z&xEe^-Q&x=x1_#1(ALy9)2Gc^bA1Q<`cD48)%VHYef#uNKwUv=wa=$5)lb*<ElXMZ
z^4I*I+V{9G^NEuB+Ht0+?-rl-r#07ihOh6^|66^1e3^Yq>N~;LSLV~Yt+~E0EhgeN
z_`lWn?B9%@&*`T?&yQ@vDsi7ryI((D>B+(`@yiXIu)kJ*8PJJ8vx!W6|I{9m$tyOq
za*k0sZPIsj(ih%2Dhgk0`5q?+w{9#y3T>2@7l-iFXt0i=u`xdphrRCh{*fuLDr~x>
z&e`=zfy^E<hCH&-0N1Aw=dBMaKYhsTK9PZjDcD$ZgAp*zHmMReFsLjdU@3PrYe=PT
zLbnQ^4U0Liym?i5!{$LbAW6B>OU-hX=a=C4*5*IAgsqhz*<50JK)w_0kko%R4<g)d
zpl=o(i0RjR2ckB2p0}JQKNTCrN}sx4ZYm<8LB>pvB~>bEM@xzXx<sB+Q(1N<eMj|U
z6tK}Bl<v;tGZRy)qCvZPW#Y1p+K05TJ0B6Sr8S93pQ}AsK$s*o?P{|6vr!<&szj<;
zmeW%Htv+j?r!sYKULzPcH|bl`>XnQhQ_}|OrFq_Zc4te|>LvhF&3*JS+qdPzN(^}K
zP1qfENUC`~`?%NNKjP!Vy^ptHVlZjO&aEAn?VUMx#?Ik_EyHN)`9`!f^ESC2;uVkA
z<?_PRe|6Za^!!1u5RhExKHW;SB~tM<dm1u2nXNRe12e#0zuLjT`izJX8*jDD{n+1w
zRT$XT9&GZc7??#9UJk*k4Q%E1R@&m>F)$j){6ApsV~^7K_(IFxN<E6d2;j$zLFoFX
zc~c~{Z6B`(Jy(%F?gPkn?>9xVjeChDQj<hSku2MH_YW$|a&1zb+3U-yL4gBKHsSl`
zd<XJqAal5`9TeTcy0LWAdu6)ZA=`K5`v$PP0Gcd+eQj<45AMn<F;~|Wqph9n>x8r6
zHKZtVN6irdRgrwuRPPOX6K@|OH*$x+n>_wO+jPZbNaB#hW^wm4o7_VmkZzMDH-aUZ
z`L|sHL~JI33dgF#(PHk=1^<JhC#FX&l=x56rD3}-LNLPfdrXNK>sok%<9yP=4R;Dl
zCIM;*yJYtqs!=V<VbWK1Izg{0ojssADZCzk!LvJeC5{u12E)F>eez(FM-Iy#%I$x&
zYUrSqspi8xz^avAfdR^fHQ<M`Iia~fi9@r)R;?ToR1SYYqh3y4{|`tEZ6C5~r6<p@
zuhN2@_B5{)3ofRl*x+!HJ^7g=W>kY@B}H&#Cu(wR4XTOtO2cb{M92O5YTEOp8hn{8
zIXSFGTuvW(XIKI<8UYy_j&C%cS;gk}{Hy8Ao{(I}0%|k7hOE{3dqv-YhFmsz>v;4d
z;ugk&O?{#}<%SMS(_e0*z{ZyoEw8`C{7RjFz{s55jC?<L1;tx;nTBO7Om{$hO?p@4
zz7y9uwm~2W@7j+t)_W8VxcLI1FiD1ibCrb5NOQWa`m3*qRi7@Dn@fwMo7+rX<UWk^
zvUDipq5CLZK{{iJZ1@|r^qZsakxdz7!8X6NtaS^$jAG#?+@>fT`qB6+ob!y%jnZwl
zS9?a|FeaS}+6P8s@K0M`6K}kh9+o}!wSn3hS${Y^-*T>4h#1sF#h{woSBTSBh|^cN
zQ7nN~94bg|exHOV)oN#dW!kys0p2eH-p6ut+gwKZ@ap*2>R?#a^s8>L=@jmPn9KsU
zNw3ufl`s5V*0IkQSVtY#_eDAgTi^7Qh!PtE|N9zv<eg#J<c!NVfHx(b@^CFeq(vl>
zf@=5q$r|^I-C)96fl#+an-uY&m+7-(Ibx{tcq*pSYGnK^$&>zs1kZ5P?(^x)s@$=r
z&&>-UR!I5f?ntmu(Uck$m~X=`e|TDw9t>56I0AYwE^=30EBL4<=>y9*43z3~Z;CD8
zt&uboBJ8!vIPuna?dY|;K@}9IBwk_dy;<41wu0;+s))b7hQD+?Tmd>~N2*}5i(md3
z=fM*DJ)x_Ab?q%NBZB3?{(C>|D^S9}`fvGPof*r|_yqgIKoIGA(C1&9e`fYy`_~~P
zi>6smxr_1Uv2tx*<m6<IBjc25LQ!SG=EM-g^Mp^V5`$L<dyT(WtaWh}6Ds3bd0a)!
zoH7#ZHA3Hmi))5u>uN}23DQLBfW+fu?Xscggy6tWuw*|yz)9-;Hf=m9IB3NP;UE_J
zi!01$gw3d*wOgF8R@6D08i=fYDO~QiFj@2W<!DNRK$wE|`R2|9eNbAkSk6xW8D;CJ
zD$*JF5HO{byG=~YN{Y0}`67nJr^s33x1_(A0TWT1KN&6g9VtN{8Aakb3;q>#om&3z
z*Bu>-@&8585M-=AkChL<JqoH^eS`pohd<F-4O?Mm=?M?i@cK+wDQ<^$Bhme%=VSBV
zZ`R1PPb9~L<z3S#hN!HFGwFp=SOAuJT#^n3(-Xb>bu3ZU6{4WkSg-PjW9c{lw=6wf
zg}CrhCgm@us!KxRkmXpR{Oj@{dCJ{li<2tAk%Kl4uE1x`)l1L~6}9!;tCW=t`TtP%
z6VrvJ*uboes^+QIi}#W<VhC3&Q<dLMNxO5at;Gj}dan?5%Sw$l+hmq2ajJ!^JnD5G
z_53MoLH*Xhc10ai7DN3$PKgdtpXqM1F;_%!H>4F$N{7tFctMYy_~9$W1b(3J6o-T#
zAf6;a+p4AWb$*en!cl}atB#9__IgS<l6Bwi3Z;gbXtKCMnvnpnd%MiHtvdBk9evxd
zi+hfRM-)|kM64*7jQKAWb&wS$B${>h$}JxF%aJi)ran2pl63%XV}Lmgi^^PodemL$
zp%)w;gSMjY67>5@6_&YO1iXC<<XHhVi}XMjg!g^VrEzPCTLK=&QR!A>K%2s5%?2ke
z5N$0dV=(ItUgd4gXPO|eHB)-qn>S#W2v+Y~;qM2T<${IIvxspPtpjF4I^DjEjUFcY
z2k%$eb1=igisGZuX<lyOt6s*M7s12CAUWbraZx>Ni8)eD%wF+fm<)~f$qz>xjzEkw
zEpsLLIoq)Z7eJ<3v^CZanP=L%$AVvN(=FJm!pgd|n#0{&e^OoThg9=}mi_h))p9A?
zH`V%xPcaP~?Dd9Hf=eU)i=mYMW$o-&;oegQ>Oux#8eW1;tM-@phS0-%aW;Uv&q!!=
zucJYXqjrVCqq#)aMlvJGcA-R_r9sr9`o4sPj^c!piXlPnEYk~dHGbsUK(+O+RO9zs
z8|d3G*@8oQK)$7aF(QHaBtigCioJzp>C9o(g%+F!PY5;i9gc#Y>NVg`wQee>ZyEHd
zqF4Jw@Maj)u@!u+a&1l6tAdANEtElpvYHISV$!2Q@-VPak(aA~+Yhc5v4Z4YhTBP1
zN;%Z0_zp~Nsg#1}pK9%;RJ?yq3`Wv58V*hZUt4^`cBVex;7haQr;%cj_=KH+86^IF
zyGns0Wmf#KNIl?>YETqqe1DF{+(wJ6GD4{G&z51R0x74)z#3j1e~8LKBTugtCOkvX
z={EGwCLUVih2J$yh8CQ1e^yKx5Kk*}BOozrCmJirtbdx573*c>^U0K)oC(<@cZNE-
zbx}U6jsOC+Z4iSB5Soc7j$^ioz8lGNuSdF?E-6=4uB;S*(-dGt8HNlBvjFwl^oT#z
zbGea%VyjwwVVAnbU5y|sWW(6`KN15uAco&{g#u!dB^hU}Z#s9C!OF8R9iS$U?wTR@
zo&;`dTtDhAtB+C96#wzW+#E3u=pWubFY54o3z&&{%iVug|Hye4_<j_ydpcHt2=6LY
z0L3bG^6z4)sOd8Iu);YTxLbVgrXyqNR{bmZw{GK~t^Q0^f0{4gfkR^jSoMEU0ZU1B
z`+JaIkBfm|SjyZuf&5LWUXqC02h$f?^K3xSXqud+*0_}zB|+60kMMwo6A5Zn#JQ^F
zWkF;U1G*rR6o{ruNPT@$3<u~#{06ay4zqpki{nPq=<osoI@i;1Tw6DcSOpzU@CE$!
zSFs9=4p*vxMLu=ud9hUMhFYuMucPgFCNpcfT2DNsy-_Ak|G@gE_-+hZ!+aw}gY|nX
zKO}vA+#Va&o2$}eRq0xp=PxV4`cJ-quYVcC%dlQf2f0l=)@R1om|MK^5?}oxld$kx
zv81@v0g}sa>b1g8F%=EEE{nv&)%B9q%<<U`W);>*MAMWZi#c#`aBNVgoFDMkf;w%(
zQf$}ncQJifRhYW6igB*^Jcc|tSNutg3vc{$M_=NH7k<h=!V-AY;usVh@caq6%Ke#X
z4)GX8z<yvI4*J2(Bbn`c)Y*Wbh^Y_HR4j;Qv|)<e=nUra?Tfp|Eu<=FX3JDmw|*%(
zwqBuTO}-%|36qe?=_K{`OSC3Guk-qK_a@;=8vXuBu|9-f%UtisAL}GDKWuCnIu40t
zuulIE32rMkBgK1+6Q$=;8s2@+_C`G!DC(@}72M5B%qxhT%c#vI?M+QRf&w~q0Zpw#
z^v&8pPI`N$SsNoVhKtQS5PJml81(9e$8pFc?D71C!>nDVkB7b>Js%Eb&=G?vPD7Q<
zVCFLihmPK0ogxCMNX%&d;Udo*zJnqLt9Dr|3G}=zt`aRG{M1GySS8ASJUju|rE%Fa
zu$w|KIuEejJlNd_$B2#0v;HjvgMk1m_h6rN0Xq^fcZEl3?(wlgkj*mp1(pWRcyuCy
zsDX=-yc4~@_4KA5ZKi<btBTzV14HcO11Av}#V={OO0a$&r$&$Zc1rjynDq`-%CG(-
zzwJ$WBMA?uv0A_WQQ7n_NdEFB`C>Dx_yF^q2$&xAZ;pP6@f><X6?-1qm|joR+z7A;
z@%aga5)*s<5f5ta<f;W6edK<4n3ne6U6`o_&72X%IcOf@qx>7@R}@TpM<Y?KKe7*D
z{P5=0-5XfHFJ<};6=LvMKPLY+o7gzMdC*M#N4PF-Ta+h*b*z4w+my|XJmbrt|9LJ}
z?wf9%c)BmH*XUTsm|mZ);$Bp0IQVx{vGzP07LQ_ejFWPw;NG|!?5I`i3JrGTCe0EZ
z{aF(~%46l|kOyOR>?*AGR2{!l9YL74-L`0mx_0D?yLAG5@hLnKiQ=00;~Y>z9!H8l
z82jrF<&6%e%YQ?<`iTiN#nZfMaO(0+fZlzXwxNZaxzZYHwLA?u+%X>0n}^0Qg>&Iw
z^CO1H4J%P>7xLZRt6ZuvrUB|=8h|0->^iD92iSdXW2?lKapeUGxSt}dqfT|WIo@=g
z-UY0~Ou0G6fX(t?t#vVst@oFQV6|4-IUekYgJNLT|MvstJ|Ty@<9T?#M?c-O)?@mx
ze%on#hIZd<i?I1^H@M|jHiM~xrnGf(?XY0lY~B@TtxpFBr3d|#YBf5q?4FwOgWA;H
zH#U88tX`QSH%Rr4S1N=XD;)JO(R?DgxdIA_O6gT@^B=o0>`YwrKRPjc{Q0oc!?Qzy
zJMj3QI{aGDZ1N$}C6FBpnQ7QTfun61U~CH8T5H!~i=)I~I5IeLzH8aHTbV_4{zEpS
z(;mm-S7#G1M(^A5o}VMsXs{wl1jK*eCem!T{xdDh7`kW#x*+k^AF9d-VACP@tqaFW
zDAK_pwL#-tnjyMr6p;HA1?RY2Thegw0Wp$@;oT1Okvm<yY}Ki-+t%@7_P-#|%I~|C
z<z7<-%u1<(*W!+xG4a!wVT$hO7rwaTv6D{c+vE;Hz_@3;dG+9NTQKo-G&4=FzNRVr
z5#Py|`K}`O0)Zp<!JDS5HzX*XyO<9JnJjexipp8*SZwTt1?+`Dh*`AZz4H-Y!OZ2P
z1heHa4tR~l#$5p(Cy8O+N5Raw{^?E1Tf(Ex&R80le#9~Bo_|^cC3nfr*3|OtJ3c3t
zy0Uwh5=G-`RO>{!bKUdr>d-O#w9b~_H<1<<{hid*?Ig=3>sj3vd<qf+e=nt<YJDHP
za3^3~s?b0HuF1Y2WP{2II7Ktl&^<M6nZ7YGO1GuIdp(^U$K2{q?2iAI-SJ;4*R=Zt
zk$GOn4`^hjQ%kvMtK)@qTL*C80mltqgdvA@dx14*lPAfU!$$T!@j9yM_L`X%LJ4@Y
zcqQ(uTg6X_8Q>|z?0PNko7D={?K{+}Zu6LdwWk3r#jPA=fNDm!g{94zp@UD{gVv@o
zxHZk%ES7mSH%Xs&e#02$gRwBmT-sJbzX{`hj$NQxxjzY?-9dH}2%GU%P)+uzZqsM#
zp+$@9szR7W9;VoF80D?5l`z8uXVv>ba(RBKJ5jhqM_iQRa|HO{`bO?|3Huf*?}#er
zM03A_&Aa3X+TX5GeMsv+k3w0z?>_q-Uha(r;oza9zSPtKUHC`bSO+JjT5SGI9jX?1
zZOC8(v!h`6c;vK*p0Stm+-AKnUCs$YAy)>2Q}BLTl{)CPi!Rm{pb`#yIo*xfH66n^
z=*7v$g#!X=_0<m()2P-bZ}Cc~8uR80*T{hb;DVV}$)KedF=rkoMZDl@UK0=K663$P
zKK_|T(k!p(>%z8~Nk!ee@&mkT4p|9F^iS^Q^Xa)q;i4i%OXxXazfyj3S3)JarG1~y
z3ifHttTS0F$hjL#>G{7Gi?*kqFW=&c*+f&9^3PKFx2X1F`R|_hU(5e(DgH8A)!4XQ
z+|%e-8nS3mtRYxT?q|Z`aQl>2G}{9|vu_L-url|8fO`Ur6dWULnmY62KV&dU^x2oG
z3i|3dsa;WKEUGU{T`@|3D;9p48a|iLERNEmp41gX^!J2ie0nA|ttT%^Z0L1KPky;z
zSbHI5%{9ko57l}=*KV<sWoc!r52dWnU#d*JluGe?Y8z=wCL{#5i`~T6ylTD6cKtG)
z+IcC{G_})5^y<UjL1v@*wBx)lQzJmDB5{XhK5-$l-s??TCO4)JZp@aH(q~uQlDpkm
zJ0W40mGhzBE;`GGMO||?c;&XS2lRa9Htn6`@cOpZ>lU}qHP5TX{n<V}=j`A3f9db?
zKy*(J;FS9%k31(EpLzM)cc;HM_v3ZWUDh+5`C`D!+2fUIhjg}AM*BquEY2QQ3mW}3
zB4=w}7{kNUGjdeu!M$l`+C~g7%1zkF8n0$m(5&C2K3}-|T)oZPP;a{~ys(nhN07=|
zesB13Tpp0htNh#234oA%qChGy2|r$x-+htZFXUZ>x-1DLDTkF~Q0*(a_ZcgmX`Xa9
zm7nHv_)BD-GHv;<+%L2@Hk;UQ?--LAN6H0vw=1<Mxa)f0?p=Tn5b(qjV0b9^G(75-
zYFB+WvEyE`8UQbI<;rwONha5F4ys`{vaMBq35~4uo1Z=r$(ufzt{>J_H0n1S{=yx7
zc;~~Ue${@J!#gqvD>Rr`;m&7$tY5qk9#!2wca)$R-wokNr}UiX!umA{{oT8^vMjsj
z)#;_I&wn93;0rdLoH=eZ%RS(PK7G>79X&5hrL%`XQ+8I(o$|Qudk5sA1NnHPI5V5Z
z4_JkL{{s8I7}g<I!5pCWE8Ji0@PQEhrl-`Z`R<=Dnb|$i|D28B=Dsw&S*p))e!I@)
zu`g&7Gh(vWG5s}|;28bUv`4HzkXHJSzwSY$qSmXyIzQKaJsS0Lb==++>95sd|Bv+l
zjMb)|{w@7xs+jgRPya=e_Y(b^-+`QchY<NpJ=9|zIQh&}b2D($hoC5$S64vojz#oJ
z55$&$z!WGtnAJBc&m4E+f+4-OoX9ID@bh{IuUimJX}doC-K%NtKt<f?g)ixaB}CbJ
z&<j{E#cRAf)z6yWsTcmW%z9yt|GD4)yhhk9_d#UDO8cYJejm}Z%DUp8VONynT~*9?
zf1r#t?)SM|G$~zQNg4IBuvIE;xOd&)@){sb@zh2S1MR_Asc;=n)dI(H51$ylYAOXk
zp~icY)_gJH_AI0ltJHyCdcOPiH?;9|v|?xba<?iiU6V)Q<^h0TIEP;0US?JZR_kBe
znbo-V!MF@34KGXb4%ipFbq4#;$Q2Q<+=IQ@1?*pdxz(x*Bx<e5F(IL=X-Lg{w~HDw
zPz?$HmGoC?swSUGWyo#eaX+q0ZMcM?gb4R_^p;KR(FJVB5DXFn_J+s3ybGA}y8{jP
zXr$t%oCUTg#juUbpY7*85Y-93FvJ)<NmN>z26dUCUZ1n_hD)^7y7t6~83fANIPTtN
zk162rePU7uPnY|i|KUmR{()CeEJ}+gr$3Gl(A?HNV-LkNII2!zIc;zH%u2aVu~Nn2
zSn`8LZnDrR5JBbhmOi^YOh3-jr|VTc20JpUWIy=F3{V*%*}6Bk<B0BZEA}B0$6qn9
z_FZYz3%<`;;E92STL)>>0PST8bKgE~WBt!>4_AsHAIiY`S}xgBRTV+<U~nON)EcPv
zOyaQDH&qm3<y4D89L-SbM2(Z>gj-NJNIVj~+aNJW+#kKK6fQwx^XUCKz0=vnIlY&0
z9f9aCY_pZs{AhJc;uYl(SNvw~kGgzoALb{g;59vz7;9)WOyKcs|9CF&pFd#v9X}mQ
zg2bOmAr_(#h&8V4Muqp=^<0+!HVW<)uz*}=n7>K$^|4A3VQQ_mH~IUVA54$r|31?l
z_nLTHJk_kt`q@N}t70;_y+Aj1HVVil9y>9XWK%HTeH13WepD>UVvlb`Nq77vmSmf2
z+QOvd+*d^w{3-gn+&yzHHz%?3remi2*Q=edN}L)i#3r96`9h+VMs9|3-z=dktoXT@
zPvU{P+}V70TbzNA-HwZG8lhw|gfAufq4WJgA>kp<6ZZ)bp_?BoW+;g8<ENw9*M5JH
zv3`kv9whFfTMN~Sr58bNZrsVe0a*zC=toR*`d~$)U*}ao(p*vOx}9&+6uJIe2+QN2
zY#I#=)%6ubXVvvpz4c}ha(6jhA0&oM6HiUyyJsqZ%DcHgu$496>{2UC$0g!!pP0z~
z3ZKRO=}Z1h0wh0=`sN%P>l&L;efNWqE2<-`WNzKZzomz?pu)`@Nl$3nJW|g5qTH|z
zV?Z0_runnG|L)6mSD)%fmEMF#Sqg+pn|{1O!d+sYii%4bX_lf>9rKEFo2FkF4bSGg
z54gaHZe2z>a7?+vO&c80y#g6+-JYU@#1Ab#-hx*>OHq7v#b?S3I3waFebY0_Z>d1D
z*R6!kQjYgo4NZC#Kw4%P=iqW-glrq|^-Fj`#Lp8%9f^9^D6)Qfle}hq#sz4q;JI*+
zlAjsO4i67L(lJVFx>^-lo*mKhSEqPddMjz7;wuzK4;?LeA;y$%Eeg?|(Z}3Dbe(w*
z<e<gMu~{Lpn-a5$kB;ul3@`o1T&bJrL|ZYv#{QddB7H}h#p%$*<9`cFD&XgdC$pd@
zEFo+y5)J44rfPi}sZTZTJt+YM(@&|n?Wj3FtCM^mS;{MM)%hZ$Vr!j>#J33RvlbJT
zquJ>ULOBU*rCK~C-4hTte?!zb&(9Oppt0iTvHuHZtcMxzG*+=yUb9@1ZWsT2tp3kd
zE`C$$fR#5#AK=v*(d_9f1Vq?3JS--dZn>7O*6qVt+cOg+ueXd^1fn^VG2-URT`w0m
zpID*t_m=2n`i=uEsH{{%)+Z?X&%`A{z;7_q>I!DRqbh^@tfK53dm}hG+%E%PGKGV8
zk0**g)2H|TDmY+X6Pl(&Tk(5+l{+M2B2x*koE0`D$AyR;tOB3<+h`RyOJT!R;7E&K
z1)gK2usQ_~SKcfo)Jc}`CPon2&s-w}gUVx6-Li)5(wSzD>NOt6<;pcu^B#4&Z|FE7
zLhj+l()2R?Z`fF=6sRb4pO|UiDZ<st$>rtkWh)Ob6{pEEt=(O(6o#t+fk|#;Fld+I
zv7YnYONXpB>Q48#hGaVlK^p;{oUPdWqNR^tx>Dr8^_#SmtsaT<8ts6CRO^*WZXdE#
zz6sRv95HCI?njz!bp*ev#<^)YRFtd#nF~tStUEIQ=+|fki<6t5nkW~cBfja0v!gg)
z>TMJ9l~0@EFIge|HH&{$HQcHeLH@MS-kt1$v&jpu@{8=<`X?1YLvm;d2JuUJZMNsW
zwXofCvE8Y#oo_Nb4}t>@n-Z~I?=Ny3_#Zk3TCO@W!YS9xci1j<cEolzFdC1Ff&L-e
zUAWW#hV9;%Y;3npf$bhEu$>w}_@Au@Cv;`Hm+*MRQIJMV*PbR=qsdan*+zI&2!mVw
z3H&W#wp3F7>^4Mgc(L6gt*gvPutY^EOZ|&q*?X6Nsk4+O|H5=BU?=iYG^4>RGgQ(D
z+Z$BpV*+)WpM(xYHOnh1t-cPf_dWA~G25WGQmvEGCz_h&&NbUiqpc6Yqk_`R2Xh`n
z2dw0S$TKXsLfM8cU3oa0HLv^-UOJp{y~Mpv`&OEt<I54ju`jIDR+jV;*%2?m{M(Pc
zOw9j&L&LAzhrAFnzOP`=%8O1Mmbu&u*SF)-E$aja91QfZ>>(BCpkBi=$5aeM`ZdJW
zN>LSC?&?ohA4KG}7FyH5Tzfjw`Dce^Ue33>s`=vYVI^vz_geC*=`cG5&=xDjdf%Nn
z&txQf!1pX}(^@`vIlGc2A;Wd3MDi0p2bEV&k{TXv`nkpQbGjl(OysNlj$`zN9I#d5
zaTSwI+-s#_m%bk8OQUB>bV?{e+50?OYW6pK2?w*hJ!J|3*+_JPL~pCP&r(#z5e1rL
zdN5P)|DrxHkQ38QPl=QLrk{w)rf`>^hPU|_PG-4kl;lt2Q<FbtEKL5ifVSFw$rd-&
zz9zLlwxIS$Tx#-1cqdf*4@UBbdCYuaS9wX_V<>uu1CA4^z94#I^Up%Y^I!HpcSv1X
zg<k-byS|`5K+sj|(|M-c6YcTw(oVF~y~mJB>opTUofC70SoU7#+M}eBdl@vSbN56^
zH^+~Zs#emhDCx{DNfV-^E8<66?VwyIM@buY$yH}bF=s{o3Z9Mb8RmzPL+orXm=s5=
z^nA=U>?itb{7`CZ(Q6FiSQd2Kv3N%ReLqooe0`ra`+A>$)SB|2(8XW;MYD)4PmqC5
zjVM45JUlqu<w2{e&8c%|?(F5GLOoxVj+oB9!Qw5j{pJ|3y~g`*HS*u8rF^Rylb`!L
zSR+V|;Rh~dDDBrH_)?#r5%&f~*-j2-kl4@X-+ztyuUu1pu+#98`uUTn9}wdv8;o7N
zTqvtD{uLFujfW1=XruH<5JU)tfr{7$mCH*xs-#78*y8&M=o_Vdvxmr&Soe8r?03)U
zr?O0MIzSnJ<f?ipA06DDseDJt+1_nI-?uJ8`q-?srD-NJc-)N<B%TyRCb6E14-yMs
zQgO+<^l?zz6xJyuzG(<6-hWS3JO=C1tV2b(K|#Pm=?st3r9N|ueIBM^ROMKE*5qgQ
zM37rN<qXaIwD-`+iW;7|=rE8x%z%=^_z9AG3(rNIvyn;cr0?A0X313Z7)M0fu}^qx
zDf<`&CU!p=HT9C);t4O;do^t-uG-UU5veS+mGKfA#M}^qMro*P+G?OQPMs`!I(MdQ
zzjP0YBR$tF$KlDnY<gs`UiAuLsZdja8g*csU;!2S`L?k_YXw5{?WUy4GoO{cI28ip
z^lnbO4&ei|*<U~0c92<`JHl$H+|j;7%5Q`@TNK1SB-zBC$Hkb-f;4?zHhK7<o^hMz
zLp$-;|EQx&#%ur-<B>J(iTO)5Evx8{B6{F{&L%o<Jb#v>$=!CLxr0EgGt1x>zl*!!
z?wQ6);P1u)a5Sr6+?(5bF)c#v#QKbouv(H*H=MQ}I=+hY!~aV5<U_<2R{n#hb?)Q-
z#m}ygJX*kWOYjI1$BnDf@$9UIPtK@OTj^XBMLFwd%3Lkybg1Ym=>+H=b$t2x-6SX#
znuzS(g0DUsXr$)KnfxA51_>r7=IAE_|155RB0%Gh&27*n6=$4F5AeJlk=UboUXM&c
z;vb;QM@Eu~L$?tki9G~Y7_ahu8-1Wi9{U*xg}Qr&!-UKE)Rc*Jl^L81Y_f=|`{mAt
z$=vQo(r4N|>NSJ^+o}I-$6rZ2s-*v_MTvo;g!_tss@erFPoGN@jMrg4^UN#U`)_KD
zlej(}D$<D2ZApO6=c6g^xepEO(5+&~iy-c6B~Uz^4%nuIjwtQ1{bOJjPPF`h(K~>B
z{=R|D+bjk~H*o$frMY*760p?<`->2NnzSbT`+5AI*(+9*;eT?7m@g&i@t@W=24?v0
zS%UxZ9x=CH49xJi{001X^I+Y(;Qt}*ciR~L(Oj}S<8Zo@kz+}BcGmaTsAo#fBMK6O
z(X&DFApW8-dUN|?><A)T-vgzuIVOgw3H~Th0MXvj0m97$Z~&~{H3qn$XuYp+ZD5%Y
zshbXrrLtJK%)PPH^vCVPKwcX$JMo|0C9xL%lV0E$FHH;#rB~fH%;lIcizkCwb11%P
z-W3ObJG9%9Ow-rAwRA(GdbZoMzJt&%rtDyqe%SjUv9~EjvS*r<JxFZNhmN_KL|=X#
z8Y9N4U)~?R=~_~jy=|z|wVUSIomQEns)FQ-u`*|scg;giv$M5kN5iRB3MTNOS7{j~
z7BtCZj#UJ!|5@xM+a0lsc9<r{ov%p<e>7ALhL81E#P0X-PK#T`jfp{`*(#G!FpZzR
z-X>M-Xu~V?NDx*75}6G*O-mgg@b4PfT%@Itbml;B*z_b9&vsF9pcpO;1%ReXM;lgD
z>y3vhJ-Ag&vE(L08}~LbvE05TEZC_(f2~%R#9wLNonyFDn(<175~&<@PmkQnxV1#t
zpmvGSf^Tr0EH}r}+b@gQwD50r5B4VuFM8kXMfy<+kk$opHS%)gP^DWjT;1o#rs!~=
zfwoD1*G)&YyB*NrL89&%h0-~jE3vPCvNN1L8a_~5*aQP&;oi+P9w{G-0B%4eB>!-+
znZat4jBZ0>l3_C!^PV?9BBF=TMANGKmUC)v?nM#&e6|ecxO%QA^Ck42FacVlG0iiy
zKZ*Spg{<|90pgld##ABur}1~t!pTFLS5;5mZ%#EN3zFLb*wMz<9jKG@q7&VtoR2Vr
z30A$#i^d>Tz>!t+Sv2x;W?_B-zjNHnY4ExLaW2(A6E5q5&piu6d~T}|KF^&id|u!$
zH6JE?4mNzKt2{_v1+d4aa=hgu%(+vDO~+gaR6d{$5xZGO^;e7LA!-Zr{{pT1-9bW2
z2Y(kWUJ1QYQ;+rh2?I&5;!@X?uwXS3ySm*=tox!ri;=}&oP>@dl-TK3nCHcDO{=<*
zl4|}@FWJ5mmXasfbFmh7Ru2mfMR852IXr08B-^k-3mVp8X^t7pbg<X0DxXcZ+YSq+
zY9?k_CUF&?2<FY?XK=^DA(_Nf50h%SoboeMU9rk>V}@m?inRx~lno1dEFPAzH$5KC
zg>Ss7&UDiP6E+-4_ox^F{B<C(+*1}~7F#o852!`wCsbhuseGJn5@o#_a!;THZ4f*A
zz!?A9q+j=EO|#!%5bmj8L3*~<$4GCT(24%nswE{n8_i+e_S-7vu>4Y6rg%6vYDjxx
zE6@VLDUZ-5=v=uW@6&p^htaXD59!C!x~)-OPLAV)T*WG><7n-<=2okWNsmX#*OKg}
zkT3esZ152axgNs*$P(5u{H@5KQPu*oRg{i@Q&XLYUD6&<sL4(@m9=V})U+M|WZG=)
zG7Plypn0j*4^-AdjRvZ@B;y(tU6;Cc0lTpMYE;kE?rPjQdS<_iVubGxtXov#*Ieoy
zm!CF|f!VO|RuY6vxJ3LH-a<du1@00Lw{r-$frmSP!&rHuzB?K?mlaZ!T5ZhocfVBP
zvZ*oHJq7#WBCp$M;_lz(wuP*2{)^U}q4AsU%xzt*3JXQv<E!7T3z{#I5NpnvuUm0H
zRmG~dX5a1MqUP-H;ciaG;H){#z_}-dRH5#7zP2)VjvtA(kD9ZYHOIZfXgc@(k0m_b
ziN6)PTmwI(JDSA|Pmr2vvpb?ZGc;6pVuaMSZ5SxjM}aW|);Yiijq&O8ZG_Z3S{5V7
zF$8mfJE$_&P+Z<JcfE&;2(puhyRugd&IocLaPD4T+x&Qt!Q9~93)Q2UHsS4u7t0QY
z8b5ZHcp5)k%C%m~wI2LN-=%Yz88a!ufKO2iPKa`H{%*)C%Dxt{8i-;V!!wsU=$eBJ
zYQNuLJ8fw+Gq9=Fqm>t!k*SAfY4IQ1#(j7>-1`GJ5~e52ItGEdKNP6;x)x5=(t*{&
zqIqSHhE(u~(waNErCMwWKSA!6n}v?DyS7P1|FR0V^RlzOHbNd(_PlH#`CTJ}>s10Z
zjUM#Y_+3KB$(=pi>z)ef9#gW?70Nbgk<VtkY_JXKj`qxobY`^z6l#!N+~q!ML^&NC
zRiB;y6r5bhmtWxe7m{XAXBeUOSZ={otJ%4IO^qM$2a7@yO#a{?Prf3U^o@}ymjJf;
zr|u0Kq#kNAYKER?y$`w2M|HH3K1%FnePlDyL<kfUtTVZvM(O!ygN$gQKCE#c5H=&j
zA@Si~Z&F<!qIbeK)GqhFVsJb4jBy{G%lMBV7I0%ixK<CB-XaFKf#9A6P7+H{4#j_}
z2OATw){N8bfVp=(QrpLMi4F7*ecG!hb-*0tS?u?nohqMd9nQOk98>ts9abvrScFdU
zuC>&#e9WH^aswAM=0O(6L3bh!leQ#=lX_^jzP7xcYW)LTX$`oEg%o5chdoo%-r*~=
z_o<dzdw}t`7Mu!X^TNl<OYq?qetDHopx0Ua;y82n?kc-`x3$qes8Yr(Cy7Py5c%WY
zWjAm%elq^<5C0lH?qFe-s=@U|W2du+5!IV#^?Lq1bTa&TYm_}99wZPpEBcU~sQ{0`
zi{GmASEVzAEgn(FYVCwbQ0|uD2y33c0;^3p$2ZCdvS|FaVFrMe$!D0g(s%VhJHll_
zqX^J#L8BVZn8n}alwS~D!#7zq<3D%4hHpf%R*kQyHTO0;t5f}3tA2NjsuqZ^i|5D>
zQnD(j^OzmFA{<Zoe(si^YuT)j8$L4*f36ElF0&b*=9TM?uWnvh9wBoy$Q;mvb~ik3
zW#m}o<FO0N_D9g4#g>X(Biz`D|1v_k#Q#t!)rQI7?;_q>*AFedV{t$?)z;T~Dx#P9
zC+MtRt`C{=%d*pd)R>Fw4ZG)GE|&POPpxee<9jMOA({1eZ4xN=ul>RDq!K5p6TUOL
z;+st@Jj35?WRW-kSYO2UF>)4<Fc-Fn{PZQH2FZ&~XW*TkxsVs4xI2VR@uxLp6YFQa
z(s1wWE4Gd-X&SQ<HbsH7QNLu2ywvp)$|n?2?u2h6Rdk|nHZeQAI>}8@1=&P-h`-zV
zoz7^t+p!T80@iIK<5*X+2U!i!zfMS^fy?#T{c8v~zUM~o2acmWj-Bx1j$GkaFO!Rc
z=1-Aq^k<z7siRYeu42m=_$I3!3r9GqEj1<^bSg2?#KU}yeDOPYp4QFPUn1136opzF
z?*ymzx?XtO44$U})3Gp<n8I(gL2gv?(^F_8rgNgdl{(d2<EuRGDGiXA3qTXq1}F7u
z{vPdSo6|B2GRyy^A~D^U^s-yR#&4f`sPDKD1PxG?ccKD=lll-1IH^xixshspCR4dS
zziCb!l&4>v9+hnH^-h}ZUY{nU5m!d`n-#Eq^-+)QQhxKV2Z=@el9glTlRbHq9Jn@7
zgKtE3uUcVkyp1GHw8~k~?iIB8sJ=a|s^ymrjhgsZQW*nYIA2ZNbAB+PSMyKnq*^Qv
z)ZVtMrB?nh0jAW*garUg(;PxLs&Cr}(Q5gmhow|dU98Fu5;yXZDAv~63u$q>G*+1v
znII^Lau+;lwkw-ht?cL}H*|BfQ8w{$^gc-M$jd<K{+j$h3w7o$g@@e7xA_8+*ZmHZ
z+UE@bLA!IDG9G$Fw19YG!CScX(CxpKKLZV|%_V>bPDJy+0$>(ELP+h2MjrGp_q_BL
zBId4OPC#6PO$51TXYiIy9;YxE=)gwf`&C<i=XS6h3;fG&ytpGn)DoY?&j2wEbL|tR
zVNMx{D6IUU=z<s7-S*ZyP@$0>g=L+c<fX#P3)CJ1F33x5u>fPGE{g=&^-nx`mRHII
zyJ=GmBy;PaAT<Uh6tNi%eCpwliyqrdGWEepigSF<U*Z)l*TBQ=i8p!EKk?e_r+Cq#
zK+JA?Vt209(7zzLA5RJ+?nfTV9TSzio%JffiehcXAYn6c_^9YuJ}l~REIy}t<tPU8
zSgqpH!GrhdN2gCcq=&4%x3D#;*%GqNK2AWZuBHOn=grtmMfcT&RW#fbBsK#HA1K?%
zKb_v9Ghu<MHU;y450=%!)dLmfY>AH@g|ge1wW|5s9MXiFLo@T&0Cwq_F-LHFfi*v7
zY>W$|Tq0w+>mVS_C2#w|0PTs-9`YoGh@bOlBL253Z@8;+e}dmKZMm^xyYjtZsu#Vh
zhcc}YbCioY%8SgwNidk2U1=^|hAi?ztdz>DMO6tW2>}*n0C(lttzzj6AIf?00b@Kg
z&IfnBge*3R5C<DUy7-e}{IpsqFgL`XA__FILgbEu;@V$I^tQRJ&f50C9^Q#7z_bre
zOB7s&1ozYpo`ZdAwz7v5=%A$yoDGot`UJb>BE{po_Lyq90yK^DhkY)53pLN0Dg4n*
zBYnq9-gp~KY~}&!QA$iPzvtWNkH;VsYpf==KVnp&G%QMcqZ0Hlzqq|gMd_boVv8lz
z>7Zwatv0F1U%McY2Cr`JwDKr>w(=0F%biI3;Ews*#kj-fS<ZUI)WxoQ(zDmm$Ay4k
zTpv`WruHI+yf*vUMHLkDY6+C~F3=@t*)Y^B_b^-e*n{FV^xy-VND;LB!<&%ln7APE
z{P9(0G|%U2khpKSbbYEdO`2#toLRtOq+ri(2QUgUPTR)PnL%bbRd%nQPl(QoFWW91
z9GD)odVH#7y}@R<hfJH6)@eG;3y6Wu2V~NlE_<PhP8?xKNhc%5pxx%<ny+JXuT!2d
z{=_mu>BnFwyt+`06MO?Z51u4HuQHdfKcM!}msj`pvIO_ZIkxlsx_2xo`U3AB=Y4@u
zk)hnt`vOBBr-aZKsEK@m9;5{i2$$xcx}{pbk@k~ouzN?*FG#gE>vPQPPxe(zx(Vu;
z-Bv)A^H@Mvg#8Y70-sUI<3m*Tj!=1-6dLoSqySV}x(8RQZmoK|MM+rdQOWAC^k-nP
z_wQG;QIoH4q;CC&{(&?juz-JnAo>T;zapRs^u2m?;Mx{iws3&ST9#>}973C)O&n;%
z4(+ijarZF&lE0R^b{-Vtd2Pyd7clpY6W;SiQ;gZfU*eOLG>-E-4T8+yhKLsJ{IQ$H
z?fmg$Lp%Q*fM)0C@}PgYKO#-c>AZBb=5!kR1qb(G{_J2@Qo!;=A4JvB(gd>eyLb3S
z2TB{qaXunRjZyKRtY!o9K!enFG!LG?k4`5SYP!P>Mr9FumbNW$SCIGxh{*5UNlgfd
zAMO5n?$_vUcew}0|5plKrBp;pW6ueLe18nj-Gc7`0e%}_=&-G5^NW8P^&aOOk=!fa
z7c@pu=50OAp8@S+BEkbDOevTyXzA8TzPwvIlF7m`y4=K?gsgzbjK6ziU2{r&bsWiT
z8O<bz@jxtKycWldj$pQi_lm}YlwGYfxbokm<X<YLxjhNp<PJhT7BruK=+vH^1gd1d
z4uInNjrd$xVbg>xkXL!~ZS0h$Z1UJI!_~Wo?dnNwo(<cs79WEa$lBH1a%&Dzg>(!a
zn7?RUGWF5B##3XC(lltQ<xPl;X$AQX_xS#TSJc3=l?RoVP@v@02kvBJwG-`3tHv(c
zy1-wwrMV97xQ>oUC$hl>;4hBHZ7Hm1UF<Kuwl7yNr&dfETPJ486mfSk27a*J7%f#;
zC*oFPwb@npKc|LBsU=k$W1rE?t2~foxT>YXd~M@GW593r_Ef3J4Wm_|-%z-pzSy{%
zj#lGvEi&a6HZPX&V4;Mblpt{n$teE*Lm}}VBu5D-d35w!CwoMzawkfnw%!G%;Go19
zQ_%T<D$aqkQG;NAbfj&F!x>1tWRE^XYR<q_vX*p)^=&l^DWq<3g%q`(zQRn0|D?JP
zPI%yIwZV=578(1TKgv&5uS_TZGQR7Oef6-#Gt9Bup|zQMoUmDCjcP67t+uhvdP-Ng
zIRkKLzPefs72?fyxpm^gp;8FRar)unx&GE6(egYxp~BU&y%N%cGyc$-kfOgh?6p5g
z@FOuPk&g*nZXLgW0$Y+zes+W=s_5<Bt#c>rY_}v=aLs#_JDqaHscg6Br?;vc)OMjO
z@{JuJc35cajfPc5o2rnkx_*QMY@T;I43c%mV|N0_bHOn}j^7geQd0>)NPg?og#*=v
z+)y2Q#Dyrr`cip9Ocb$OSt}sGs6oCj!oK8QjPY7|HcXt5+~E=#7jY4N!cI^9)O5OD
zO*5LhR89_Yx(+w=9s6ys8x8j4R&qVbX(YW-Ujm>q>52Z=_P8u)RQ#Ekp2C3L+8Z0`
z8k$QlqrD&Do1K&9Rrqb;I-+V_PcZ?`Wbt9GG)kp-P;yA&wkh>QOT2D2*`+5W*KC>6
zD@T$+FaBex+%G(oLal=Oy@%3kP`R0<h1*seM$v$BRnk6>ztr2e{jN>RxYWFDlXM5G
zE@sZPyfFEcmpMR6r^Iom9ymembk+m{3W6bo3dIB1?Mz(MVa;~SVzhQ+u`P2n8If+e
zqNrQ$FG=w`R|<;f+S0_0jf!4JKp5$W3riuENg-^AB<1dkD}+w`6~-59#9!6ouWA5d
zVL5RW9Xec9RJhbvFxFqM3W;#K$g*}Kgna5QVW!7}(d*8R8zvLX%G=~GRYXDWo<=mO
zQ+yHTr+td?fn3GzS{aZ+3w(1J41$X_{sgI~*4scO^$@Y`me)CO4Bs}p*NcK^Z&#1%
ze)<Ckr>>p*OFSA5=}YW05%$kk*7DP_L}TJqSnMCeVjJ$Fj*UE2PeCm;sC-lCH{;I;
zrDoPm5bf56UDe}KYz{Tgz&g*K5Vo6s?GHN3FE<o(BjOTI`yj=ba6DR|6WKNvF6{cG
zrf4wPRX^-1M(lE)0Nv%?qk7L89})Cb(GYREhGd>yfwDK6`XMMHUc(t7whz@{G1c-<
z;N(8m@M{mX(ZfJ{2$JjHWSV&VIMW^~69JGOX`VY$stDzh`0)%W9TSwqbqbO344?5w
z3zYP|%Nq27bkN^!^j?!d;7wWHQAEf^3pA0gQqLy#<{}GgrxfAl;N<G>Hir^4f}w^A
ze_*mjE#8v&oNo2@FqzJ4Fs<839;SGDR;x?aHa_>8Or=z8OI^52M(-PtJM~aTN)HmY
zzRNEinYmq!!D2QhLMH)<s<khF!w;t^XBz~lZna(v0*W@Z`S1;yuPKiuVK<e)l`!p1
zdeA==8klRtscieX?H-N67f0V#b$gQ*kwlp&<4*rpmOET}B{rbH>=+d+&e3qVIG|Tg
zgv0-A;^p;XJ;4y6%q_UfdLo<1uOCYy@KfgQj*==jjV0Njex@b46Z_FYXNDbAqK-m)
zQV9Nal?P3+ArJ6Oq|YF4`JX*Exeg9xP-`^oO|={@Sa^%JB|p7QATlycs&PHzEc1La
zmH*~@Q27df6_tKLP}#~k2F#e}cVUOhu%}v{rFl%;MZJG3ueeZ>HwtaIRKc!+#MSnk
zZXhM1hzjt43E$ta!hfvnNHuDN1Q2y@aDi%p<xxBw)Q1RJ!TGyr=tf;c;($BDjyR?~
zMs4eeZKI^+TgH-Xc6B{VQY{0iMGKVwePIY=ykG)(A%iHfK{WzdGk^EF+_H6$*f~J;
z;O8WAx6p-Tz2er8`h$D;A*jmSbPkM0YVsCRqf;O!SwP&EN5;SH7Q@Se#J{^kt#Jdl
zg+b^_NpL6m4d-iPCPO4boT2E_-xVp>Gf3`B&2%;sWg&pJ#>1ajOEt@DcVfIl@YoUN
zC2&iS{NhjIhmZK%ZK=NA$5-<jm-FdSUNp_I5&p8|e}Wi{D-KCA1RA?(2)Lu_ojZP*
z)mxarsN$;)3{yNr1H&Vuoa-9nMo3ZSr%}q|q-bC`42{|?uwYN?>*Kdr)A-ciddqrY
z@)FxPKS*rNQ&71%E$nz^&=PJ`2@)^e0<xsCuNI~A{CU=bc6}5HCwG?s#qhW{N;%U~
zN+@}{`K2-7#t3+yuE2Yi0tc1bSql{#U?3eN`tWM>*@Oqt2VSAgHgya=5(W*1_fT~H
z{gOWI<}}_fqHW!j8zt_Hy51%3^1O*uaZo6cuVR{Ki)%}YaR1yI7VI)#JK^xo?g||K
z<jtKq0|gU0NB%U1fhA=Z5p_pWOa3OaQ_-JJ{61PNR<a%(fa3Tb)uz$>tXhF#7U<!t
z&DG_=bFM5(d=WnadK<Xc_4>27p@jfItL7Ub2j|J7C<mfhxuy2$E10{Gv^M*MX)#p9
zTbHwhgQB8yKf5)s0w*jvZh^iZR;Y3<7RaUVrMoytV^mCEF#2IVAn`Ews8X%u4E*s1
zt8#%Y+dc+s&ch})H|1_TLe-(d1bnk~3`pg^ha=qFzI6JfUhk}>KOUpnwe<)5ir<(q
z`pca*lRBtv{O{61leZFc8^jpWjPBTa@J|^sB1+M3Ln6A^iif!v$n9ZHUd$}#<4eU%
zukUtiXbo=LA=Z2gF7~!0_huiOSOWrUX&(dpwY4uu*5eSO6k8q=5dK2J7>@7jEq7U@
z_5X^0SJ3*ubNvsGh;D67o?z}DJaWVj;qg8NJ-LD;(*qyzAU&`(z1iR3>9Dtcgb)M1
zRfoq2F*i!S>Zcz&@-L8K&Q7uR>pVHv`%fWhy7iAGnblc!i&>p{TS6Kg3mlQgemlwI
z#s5_v#RRZ_+O&{{s(#w{&q#x~lu>wL*??aQ11aOPOtSX1a?rmpDjOdiRZD=o@8CL|
z`0N8VE`B}L`VTAna=iwX+bb>L?y>Ax-BmxC8(+{1LpjCd#T&2znfHMj^i0DEx)XhW
zBEO5qZ;tAiC~t^mWYd`>;#<Qu?r?6g^k_EEtuq-pxyt+H(PWUF0BgqMf{7t)exV$f
zWiP9fX<`0)zX47sDLk>A*BS^0EwSs=d?Jd$-BOykw>$=cDV`UG{eqLKv~r-zPS0~&
zZ$THGQ_@An{$VH)-Ul^veK1+`J@zHqQ=tqh3a5W&^lO9)LFGBu!{w+__ih+>nV5eC
z(>p7gU)Yk;Qx8>MvOnV}jz{KktUab$7nZBHVe322@uaXF3l(x6TXhjYkoe1WGR>*h
zByVmo3-H5L&@?%*FKGsP%6bAF#VhxrQ8b6&>9VR(7LRK&EaldY4U)egl^)z!vDN8S
zOcB^%dA7n)+2ohAWz@kY$K@PB;+nAPkzufEEOD6W)+Rie!}u5^%LT&Qr-ZoNxS?u;
zA7+lVO+1e&@}&Z2pQQ>Cv#bK7GEGQQJ#X|3mw0mWW`D@D%>rAZSjKdo^m1S2K{0I5
zv51Oh96^cx?%-P1Q(UkgJUr;t%l3*U&YJtH#%y2tUbZ@4)8L~Ock!$7m1%#UY0_f$
z0`Vw6-PUu22H5ptqBwM?Q!O*;U=UyaKcTzx!gr{XbJUv9sihwZbZq%dvMxeH%-bys
zZP)!QYU^0}z=xQG4EmM#JNx7J?pUCMZ+N$8<@;<3py7Bm<jw654;y6ubGPsB3T&{E
zxthDHE&>C1X(_k=7a?TsNON3`%Jp#V^%~P@!9XkLTELK3+qi^5sx~%Q5bOT2J}aYS
zwyL^YkCGtMq1ogM+^1uq2W?@cn(q1k;cJ_|s(<Hv3t5giGbBq$f!m_glVB%ng>r79
zr;+IlT(AtbwdlCL_4}o=D~<CDgsBStJ0OJ&=|^C?GLR)r@vX~Q%T3UFzkxO}#l?kI
zu)il~fxoGU%=h%0t{hEIsV}+UC9J);^z7sdIY?dyS}l#A>b@P&uHptMdXjz__YTZF
zd~>}esU44=VT%y(Gl^sF$@%4@io=R6RUvGSiq^sN93|U#Kit3Ex$2v2V#@DB#+vXA
z6x@i6MsO%N8v34YsgR)xwo^f)MZrYwU}aX#D-J0#lC|FisuLp}NhxBa+(Du9GBIbD
zt-UxUY}}{um5bY`-BrGE%$mg)jhn~t<8@KH3*qK-M*2=-I66dY(vo*w8}h|S_(FK6
zbz89P&RV-An;37IXw*(&rir;LS;}ecoOn|~CbdRN0x>LX%vj80HHyp(XV7RmExMW*
z5_RU8BbI{xLy7hFHlD%AMC$Rs;8%d7$U?)n84KswDo*HLPX|XL)#C5fO!FyPzTR>X
zjO$ew@vv1rQrRu|;C|YlW!pXa1<A8!LbIUqeEaEp8b5NJwBjSPAf0(-_hsLG(b|z}
zAv{`^S&?~}_wO>xSPhVB-VB(a$2DMOaX3U{e+~?)qc4U)DXp~MpXJSV_aF26*LZuf
zoN`F5i>Alhc&F!XmSYt3Ad-){EfR-D6K(+S)!kD!&!5f>L~gI&_)b@(qv1DHGLUUX
z{N<?**df^-8>wcD&B4N*m27n}Y{I+$RA%<q#0e!M<o1-A;SU4#J(D|l70&N^lRek{
zd@s4O%M47#<&IiOzRxG=Lnnba@aj+?bdpC<xf`!R-|hK3;MJw?agW~R2b;1D>z_wC
zHWzjc6EnipwBv9uiBn08>#Gjg8en|9wUfSDru}~pC4yfR^%ZbG-=tz;1+KgMyii{q
zJS$WlgSdz%-dP3EB_m>zSx^6_EDIWC!Ixe#>wP=^q@lupLnTa~KBM0);+9UD)vaTv
zs=z8R#Kyi$1Mec`s;u~!=rGK!=;rQcRet{8?uvIjVG*Jb{&^gBH;Scuxg&Tgaj!ea
zcPuJhG9?fsE|B!#G-*v!(SK9C(l2REXHYXQu^=xBn;qvqJX?KZ8_X2+c>5|yOFMLz
zMKw(wgO91$zA?fTzl|6Hi0--qh~g4Rp@1zs9|HgEEA#)fZ&$pWpKaeCMCy|Em9(fh
zqB^eAh-x@ZD2%B3Hn8XQV7|1@y$A&wHOC#vn#TO+7@}PK;NESh)AhdAWGS0CEIu^a
zT1l&}QIeatAq`M`xTFD~7r$>K-0wY5@mB^L`h$GbLEKb}7WXi|xTIF&3x7hL%_3?R
z0B30z5w@spA3Vp89;)cYcSIGb8YwDML0pfJ*!{{-AZkAI++8PyYau8N5>(}NmT{)#
z*ZNzl;<2J%p&`hQi+%rAV_F2Le?){gQR!03_vk%4>m7cGx3g~|W6#8aS7cc{<3Clt
z&vQ`uA%8i2vhpo{eaJS{chnq5tQG!~LvX&}#82CQ?wepnRk)AeHAps+ibjPfe#%$T
zBJKysd3@Q7v{0oAx`DeyMeAl;beTMoj6`QNMVmZ?XWRJ5Yi@z5x(L#J-it2%+5O(;
zVRt_NBkXX~;DyB&@-*KveRy>kZA!KNiT9v#keY$xX@o2e-QsJqIR9K@rqgzXHQ2K?
zgjaX)QDOjC!YC&J{~89eZoM~p*f4s~Vi9^@ecq)0Ql9C<`fcqES#T1j`37@<U)OP0
zHuH;bJbou5{y=T%fW2yh%IplowdGj)$CV*2_C2?cx{H3I$a1&7PE9S4+wB_;1FJPM
z_Z8-EbS>tW`#YM-b7PbrLBIovjVMvfH-##@FcKWU=NeE>__ZROwZBI!II%4abt7h)
z+{#|tW<A3<K0rRYiZkmoOP)OF>Fp26yz<?LoUMNDvI7RZ!ZB$miM;|Ti76Pl<+%sN
z9E8!X2zhep$DSuUBQ1La-OJp_<0UELK<gs>3Cl{ej{ihiE#AeXZ2nI{^3Gi}6vdlm
z%R^UEWGj3BPJ2X{(1xqZ-MSOQU}COP;84D^XE(mx7gKGC1rvA~GxI{J+SdERQpuf-
zrCRUBiDv2W6a2XH*OV9Ra?|yC*T<z8MG;CbZd*pok=p}c=<{NHN=qv_-0~|;LH=od
zr0H?EA+8`x^y7q`(Ctu5GrH(TTrN`zlK;FN813&hDo2hvME)qs%l|807|$i;rKYZs
z0F*58DcTEl3i`I^PNr{LuNEk+MmH<`gotSs4n)_kgY6f@udDG)Di1!LRcuMS+!S)b
zq-O0T-Ii`rwf5-S;KR%-DO8JxQ|_PUuaA+7XQy4*DY-4{5Q;XKAY<p~s;`SE1zU8y
zSSYQfn<mREa6Y#V_BtEpNoOBXRt@p*5Mu3i(k@Rls;*XxMg|+yOqC3$jX|B;@)97l
z&jc$jckG7&P-AYxUaAO6bY-k9@lpzjVu5b1>JzpK4hTiqXA;ASg09z@xMv*20p}K&
z&{b&s0_ORtI{B}d@B#_eLQD0Bq(V7{4gT=ojL!Wv37AfKzOOK4?z=N0uHFxEa0Aza
z(Y}HkyYhqWDk$+EtUfi=ZNw%nS{()4*`V{jQ7_~{zn@Qn?PYM|r~aQ=BAfXA)KH1c
z_|PknPS*9GO2@Y0rLMuUCjUUP3|Jz|Ly)+NzdFTbnsQ|m1NEa8ef|-{=wCBpDEc^f
zy+@H8S-)TM%%$=)yV`QR`H;!*;{RwhW9V-5Qa|<%Oorb~K-xPYawK*o@-~6RJaPGj
zpYG{z{DhYx&qPQm{wRDxDc)}+4DzmPq2T-jo#b~7<&Ef4-WH|ho$JfnbB*Qg+XcT~
zzC0~69T1-2?P}KXA=?ncL8pP?+wQ#{V0d3ids9<i7ekiJr<dp#nmr7+qo7dMHSUo@
zc?o6{P0$+C>rL}izFVXC9UBNx%P03&bTrj+fyxgm-{Mtg8Mki7yM@GvKv#r8!OGDs
zegqdJPaPmd;Maw{A!XBES4))${}4-=DZ``?<!zSOXm(0CfhM^6IQixV`he8DoR$*|
z^m4uG--5=ReuBy`g>H6uja-+FeO)y^Ww}qOR>~`CTeKU8*hE+g%BLoL3@Yz5cz=Kp
zS>y+kUR4Cu@Z1-DnFn3Mn@ZougX&fPg342T`hC18{ab!1O0W7Cu8*LL!rO##eA2-U
zUXhQhZCQ8sZ_}A^d^#FMe!V`otfM1b?NQ_ju78}CvRl6Qck^Mpj)pzjFV`3SvvXmi
zV7O+XP$ljO44_*W-f~fmvS;<|BeP7#^54c}%=U_}AkG9!^bYrcZ$xYfwtRna3{Et0
z3xRX%X#Hn4acBHs2b+#LXPS9DS{YZ+xDz(;ij}6((YdcBG9>`Vl>(TnQv$GODZtrX
zO4y_n08QShiZ6SX;P7vG3&aPDNG>e}xW)kDcH_PXAUCW_+O>tW3Z(^=8*J~Tsi%oc
z?pgCfE1xU<`jG$nQ9mzU*S6*U%om^IdY;^;MACBQJjL`~wER!T*;asRG^Hh=?cvhT
z_PUYA5YZA)&gf$Z(rv!mjj7iB%BU#&{Tb(^Le6lf6Z^w$-wPT)r3MDqk-LI_TjxEM
zlS4aPr$q1?JW&oaR(Vz<S<)Fe^D%KOii9@}@P<Aig2_$Qj8;$~MbrF8lPq*LV2FA0
zOrrU+d+2c43f9B&geN=cC%eq_>20LuQ?2`wEl6C{D6g3fuF4yh4C{q^1A<I6ZE~-r
z+YG#-@xjr3GPC-C*n&n)sL?!<I<3VD1+0B=H4qeD7%rH@HtnchK{7Xm+7~szS$>ba
z{2#v$r6YF7V&r)x|9ZH_3^e6_?qwCW&<e}PL!Fo5^~K6+1q<D?$zzTT!7ncbx6wB&
z;a)TT13b5lx+0r6$|}I})vqPTo#e>9q*~YyVZ{Ty-CBSz6|lB+5o6WG?5XC<c*)iC
zM+^l&(J^D_OdM$bM27v?&1BP1N$R?4YoU!KCK<K@Z6=`8+5VnZYA?a>jmtvc;>9;L
zE0&$Co^Fu&oEN2B{I*=0$iUl_%x?g*3p&o?L6y6H?=aQ8$Yp6|K8Q&~C;R%GI=Q4t
zMf)0$U|GYG2N?=<<=%$e`@C|o*}-$f?-GadN5%E5Ksu^d>e_isul2`6>AAIeDCuCZ
zcJd7F6C~~-pUt7)#zVB$=s%M}%&&jTH_uayhBsNQ>R%epS|jmN>&c#%&=4fFW8tm-
z{PpgJAJ|~CDV*UOP2)zZzecLRMiv`~lwpuN%YP*I1<w9?+3~^>9My-I%Ta7z8^*Mo
zusgIe#teMoWN2GH2ix0dXR~lNK^Pzewq`xec&5?lSX2_bNJ#|sXg;KdG;A$W6FsD(
zhx+JYxIJY1ZkCra8G)n)jA8UdEyrqJWEcnM(DdQL6*&agEmwO=!qpm#6jhgG?aDb`
zG==EINOfhXMTk`U+LG&kqT0muumH7b*i9Xnc#{O`cz6{M*~ER}xeo3Qd)FkTdT;aI
zrPLCYRQVU?SX)1>Nx_UnqDC{rW>Pxt7C(0%$?T3WK&}m$E#Y^&{{svqI~xDOon!hK
zclL4H?Ic>OZcy4`x!Nr-8wt0c&~5FJ-POYpvAJ$L=*aya@EffkBNfh{5`J5gy@5n1
z?)r(c3DdlnS6F@#Q@$cdmDA>OA2m+ds;G1zqtf2ELLI?B2HQ7nNplDq&f`_xL9lYs
zc;@QrYl9Q}1XoM>4|=hoxBK@%PjhhcKn<_EZ8p(2DB!!XNyQ?ywf@Rw)}PK?t}ofd
z%0qn=$es3`=N)Sq_D3$KD%=^<FcDa?7wktQC0@ix5sl=pQQ$`}#ayrr$mbH1y_40J
zyCk%?VI6i?JY)P+%Oc?L<nP{s7B5p9{cQnoJcrM`$fkJJpG{t4Oa~M0(Fs|zh>_?T
z?@M`^Dl_)Gnhkp)g^P^|-G%VnM#ABaJhob;#B+!@uVnR1{_P;6PQVn?<1LEI`P&+@
ziT7UYOoVWLDVv<~tI#H%|7}R{+)LP%&>kVjim1YGI&8oPM}x{kCvIBSw3_m#q*~q(
zDT<L#t;E~bZ;Wl&!j$)8be#0|NnUSrfRN=F3~$a9onpfYaRjgWs(;L09CZ<z8zZIJ
zi#lt$4+Qg?GDT5gfZ0SNy8)#c%xtFggwo-JDX%gxrHCfNmtk|Rrb<%8NxJ9%s#0y5
z!<XuQO=+FJg*Zhco=zxsLMvtrdHfl9B{Wn}{|s3WYtMYKui2BT2`XiNT^$3Bb@2GD
z6#uG{Na{eG!i-Rm?!)wDnswd<AwZvoWJ<1YWHMDM3ZWvP3k-Y#@n<n)dHx^8HWYf?
z-%oX`x}?OOBVN-RLen~hL4n)i5cQfAos2q>e%2!IFu`0pw%I37HejmT_!S>HF&MKB
z?(^-8^qps&tk1o<CM=h&ET@QRS1b`K+2o5+c~?i}<*#$!(v;j_n6q;{@vqV#YgeJz
zp~84y(kiy~CiVUM|9?b_&K@5U=v2hYtr}b;ke|lUik%?Yjh1L3J&oGiGC-tHp{Q39
z2*4qF0!8a*jprp5z1`-|GtlYxk+&#b=h^+Mg04-&@h~X!DtlmaI3%5SH*H&CP?FkP
zsW%&WFQ)QoJ;7pPgvCBDhgjrBnzj^;+MC`1YyD%ewqTq@blLbp47=aqlbCif<8D3E
zVRw+Mi6s1#${TnNDsSSiCX#;7Z*Bt>nytJz26Z0K`KR5kU(t{3eJ%{&O8axdm{MLW
znnO>c*{a^yu!|=qf%3}&A^FA{YU~<@bUmX*>!*JBn<rIy{&jcDmtb?LxT^RM1Y!ms
zVYsa>G+x_&A#sXqe3YX^o+h00zs5hlL^4SJbfK{d0=_2C#kW8reP99mf4ld<C*Rlw
z-`5Wc@x5@xf5kUtXSGs9%p}m{Ie+n%#ieZKUSbc?D-fl+)<u_@B2J4EUcm~l<3EPs
zfdi~gu3i-#C1HO4eQ9uc3}l9`!}?VN!m0{81dc_P&wcK76xKRU5&Ex+e$hdAb?H%r
z?$ZPF)7=VMWQVCl#OD{}>txRc%AWCOh`d%r;%g=&BogeIjx=QfFCMB5K^|(Nhgy5c
zCKrb&V|2{<74kd{H{|t1`9+U4vOx)JhcIYn_hbye68=a{-8}(anm%cyGGRSYSWhgn
zImD??2Q&PdFiqwzXUfC8vFqhav2@gagKPWU$ZK$;ty=2#TJya1n%`TAY23MK^>Wsv
zrLwJ-Z!GrsA+yIUxfyAzzh;o^>7u#E4FyJ}bf>?tsYRC_7y+-j%SYciAdYP#e1(`h
z>+tpFxz*}TvK&>O9>DanPSEnpL?|*m(`#^@iiK#{4X9i`5OiJLR=!Wb%E%}n+sXyc
z4H@V+-i_vYpq=e2cc1QLU8jCV7k2yh=&s$`I=X5wU9pfKNEX!vBGZkw)afd|QCs~|
zyRgcpwA5?_MLC%!#)5pQ{Ay#xoR(O$_q>gKwD(z`w1QWX{28CNQ-zh0750FdyX1U}
z_I3}N8Ub%!$ug)zcnBAYrZWV1<|xk0H>wj}qwn^f;z(l6_lY5bnRE0*ta$+Y3uV_S
z_sjDrmrcEB?xUDmm}!vBZ5uJ}Gw3L<jnl4}t4!f1ttPdC@g^QmnS<Xt!)limC)$kx
z(fXGC=+wkws==sl8YG^!C)-u?nOcl7;u>1x$ileye}4eE31Uk><34mn;kqSv$#Yny
zJJP`wMtHf-nvHVT4Dp%(qR=8cn_skZ=W>F8bzbg%>;@e*uflg!PwRl(1^#P`@1utB
z>&gD>A3ZEvX>&vQ;&U9NG_F%uJQWd|X_O)GW;Y91xC!#O?O;~Md$))ckd!|geM4d}
zbdf1y>!db{<Ic0i*CYZ_$aPo@Gn8RY=vU*8XEmKjNmG0DlRS{E%vE#mh`yp2V_zQ~
z;J?Ov7bB978Y(V80baqvP1UYv7-_A~T_n3pdG)#T^u!Fx53wOaA65A#YiMoB=#E{I
z=2?>LB-pu^!of5cOQ(aN-vBR8mI5qyx3cL@wbhmGlXpF5hu?Fz$^v6S<NM<F5f&$S
zEHHNMjdS@RRS)1UZ^zKJ2>h-F=)U_H#s2_<lTPul)YSVKe_;Y@ibH6jggL_mEM;pD
zFPvqH20KrHmK3B1vLIWHOtmhMfVVe_1@w={TkL_ytS$3pUXGqcVa-~S<YUH`<^+{f
zQ}AH+I{%FUq~<nGQCXQLed8)r{t~^i-{zHdsTmk<awIN0C-fZqJ>y+4MM8mXUR6D5
zvV}ucO)%Y;te8t+^Nm5@O{h}SKQF1E%uEA-yO_P6lrGFk29-No1wK#Z+Z&Q+S;Ijr
ztLe@6Ah{`j8A&8J6cp4b)_&RLVE6WKL+pOFSlAT?8`;W#TMEH{>-vYo<$1OFd*XH9
zX+UA!qkP@#Q};~1=PAE(T1hDvM5WkSk_tUlnM_JUxnrY5(SKlWBXNiX))eSImT3J#
zrd-y9ow!aw0p@22P^C;>ENY4&+O1#lD@^p{AL>JC-%F<TFG&6+ss5cgofq86EdkS`
z{>4}%w_LGW#M>;K65Ss|hiRZ4O8E5mF@El=^ivVc)CR7<gP-@X5qT&7fD0|e&oHpu
zD-F?weqD?s7-2A9c&V5zsN8$B`RS<^0!|>D+)D4#nooyU2h|nWE0r}x7bLqIjE~~@
zO~3^n`+G0XV-^a@R4zXoo|$Q^Jda?G7`yT%zG-Xmv;4;T-t%K7?EAARhZ{)5qp%-i
z7SGRWNfDnJ$Tm`+JVzx7=cNmO?8qex9W5Pm#0oDZb-CRPxbH6wIO^WrqGT~imA4r|
za)81329Ez@Q2FWxU=v*T4jlkCy|`0$Js`p*N|oRLM%9b6HTUvnxULO~tHhtY8F@u8
z42KfA+4?}lYOkR3@?x>+?0sQd$8y)F9z(Jz24(`S-49p^xHINCi*KsI3R)$edJU~F
zeJ&UrWP3u1-6MAtTq@E*w{*fE-8UE$FnFLen2!3{GemvcIO-J^2Xjw;0Ha+OhJMT|
z?Zj`x#WyAUF~Mc|St1FQPkGvtzsC2P98$@_8uS$Cg?j4Tp6Yu~57gCbYF>%Dni6B1
z%FC>(kZo$oN)H{3$~cSfLGo<=N?n~MD7dGHN9#o6hr}+HA5^bh;5AmX$-i<tONlgA
zB3yD=qkZRA9pl%a^4l}j(y;pb*SG3nkmOr@&rPx_Dwi2dRM6vGf@-MbPBBgu^`&Y4
z9DTRW%2kl)>gc;%0LR3}1Et2Q#Pi4CYYeOT>*iJ6Q<vW=(%FE}KDGUnnXZSDJkVXf
znZCoHwsyAKqNG9Pd*$kg>uTv?vjOc*delEHK6=Vh!}SLZNz__-n95OyB|7aH*2d-k
zV#>GRxjba+<?vkc4=S#(dl+u)csF!iazki;SALr?faas4$H30$HvS|&jvoPVAjr9W
zN1KjZ=RXW@JKxW^1^Mwvc4pJh&ixz<v*`<7nx874@0Ptsh9xEZJ>lozZ~Z^QU)Tvg
z+tP1|48VSaD^gSQ^52_2xsQHGXYT2Dr+%~kH+90?)J84+Ch|$Y)5G7{{07P2t_#m0
zRyUBph`Kg9&UzeT=w^8RYD~C9WeWBT)rINDcb%(mx{die26CF&o78VK^@+kOMBx?g
zT9(YFgY)?R+J4Jb<pUasuqy4!ziOlx*!D}E$NK-Vb|&yuR>$8@fU8l7Hz?7Fpi!d+
z#TpdaL_q@teWF3*R?$+$q7*AyghWw;1aAUdAFf-quC26c)w<ML3sh@Oz!Jm_#47I8
z^|{8jZe`Pw_xqdk+?yu}^k3VT&xhRSdCr`fIdkUBnKNf=y3OAI)F^V=%W<{6Uoz7Y
zXK4U<RUc(#9{D^=x=I>@U5huJX74(YG~QIrvliQNmOUFuif6IKXy6Jv2=)L$xt(s7
z)bK%k-cI_K*i;!$eXgPqWJ>930yAoIms|fz<O%B++{k2y#%(GCy`hn|!*X~NDWm6K
zr!L$)?)O;&o82duvP{{`4roEiH2du4;r%madcFq9i7l1!1n19Fe+^&4NrPsm)cQ3-
zpaD3)0dgD#lQrMpZSgj|ZX;oREQbjk1$w*8gQtg}@>thAYE_*^9D~nV1p4#Up(w9)
zwVglmM=UR;%9e-`CY9&jEr3-1_Xld2yr4wdgG06G5VgD;OBULz`^B)OZgc=`%jhG(
z)1Pf^yV%)Kry|@?6WDUMN~t)NO<(E(v{Fu}{Ls)YD7nsF-7lVSDg<a->d^MZ-s}+8
z=rpfQ$_N&U<mX@CTY6o0A&a=BmW8u;&rBK&2v7H{?;BhhMg+#Uzrx*6%ELl(>BFUG
zF;P(PUDpq(H>4({57Grmwx|+X!EE*r+I;q2WSy7WX&If>1Vmkx6KU8e=RExgY%UAl
zua=eZZwLUA_ijBs5}4^EaN!UMc0oyFC;|OC2^hduC6L}E=OC5;hXFg~q_5X=60hcs
z;WAPPB|VT&!PlPXa&&h~n$6vSa4~4B3X|@|YcS5(Qo~8Vqj6+%)zD|sdy}Fu=nm2W
z|Kc)&I;O%}TY58D5kcE>7=+`dk}2ZYzYL(K45(rgwII9TRN4Qd(<!a<G?m7RtWXwS
zEI=1gYvf!e*0!S4#FM;WT2(}!MK^u0ibUMt8je@_*y2qShGpAf-Jw}CX8g@F{<7K_
zTC=w08e*o0nr#oQUN;yEFq;UUu(39AsEXHT#L{0eLX?fLMkD`)<0x!qNN3L!b`p1#
z($5)qhJ^d*A_R|FN(gq3y>wHb^WLOu|5Rh-E{mD{{9AIILH`AXpkB<QOKdEjwHJy}
zjF!?ETjfd?S_Dg89;prQlG;nD$)(cgK_`IaPt>;N*bb+;=<b;MU4s+Z(l1>q27FDg
zqMY^@{n&vb*iuK&y1DpLW)xztpB%Ot+6oOO6EG+STk!BnVT1Ww$L=&3Ydarq(W6Ft
zZV68C%rR2Y&}X51p1PAtbtjd6{t`0E%r}7!E}q|A_DCbKRQ}+>YBL(Mrud`QqVHXs
z3MwT=Or=Wg!9P_?3^c3fx`t9?Y8+%94+X&SG|QUa;I#Kzw#&D#^JBxrLreY6Lt7l*
zl{f$#vBkcqlR6DXu`?JDEI<p4V38hzU)SQnrSjV;cKefE=O5y8=L@u}k7DwcHeFAr
zBk9`&*C`4@`uXF)!e(-t%XEw3U9g^{mt0ca2Rt7WKEKBE=rBvK_GgL1m4Zc{P(s_c
zc(safuR#uDg7o(?o|LPQPA9?6f1QaXhToa0qG_t4X?|?e*SqJScLjD6Y<%7kfY9GG
zQZg#;nuB>I{DExa*Y3?TQ{uOL#dHofa3itd;CNeILAb}ypLQnVRAsNRpmE_8y(gD>
zgICyqWYT9|{5QB6eGbz((Uvx7BtJu2pk73q70HTKvueFbYrQ#NxeMy%2vutMUw!~8
zf5h8fYT(;4JyXo(7)jHYnIh_OcByqtf56uvjuOS!@JMnM`qH0XG1WwkdXrwyVo%65
zN)5l%ush6^@kJvSZ{9737F0I~>5bTbqnVc3vXJ+|p;z%$ylHnb`cJg*x5`gEt)Ggv
zy82P6nH|X|^a>VC%OAg5!E=ot`}z3YxF>JkI<j+3{B^vIYRaijZshK~gpxRCo1bwg
zX+P3ux^yo&@*<x6k<<9gy-Opf=&c*kdf)S(SfMdvb4T5H5FHLsC#n5;%aSTmk{{cH
zpA4ydmkz1kJozJI{1vHxosPWQ5<;wh&~RIk8}N8=_L`57AC`JzqX=iW0N_&w3j#OZ
zsU#q#RGM{LV~|0^S`r=`!RQxGN9`E&>w0^2sH;>p$@zM9?jY7>Q*74dxOCQyV=?Z?
zdqlh_tV1)+lTHQ$LwXE>`&N1whf2~`RsyFcywWSy1EC^iAE501@J(NdaKp-S^@k&j
z?1YsVA&;o}Dj6iB+%T7+QmJ*x8+UdqUqM}23JO@DdB6LqdJhF#^j0^}HTFtQazPH7
z{pio_;`A<!dczF~b#Q@J>~*$E$c^{9ES-oq9Yw(iIQuj5DwfAnTBOxBM(0ZAq-r~c
zz5yOitDeBd)R!8L_9lJq&Dj#U%aNWE4f@sDyX92-!#?%sckv!Wz1>oO9HE%b?6X?2
zYfqT@ch?RD*RV(_WSOLO8=a*OL-X_DK*nbp#%JcTwqvxf06sY);Pm~n{bv1n*wxvm
z$q=;Ypt<nC(EO=<^7Aj^FD_R8WC0+QS}%1{F%D>QRI!&DWyc5`u~7vX!ND!%dF3qN
zaec@#K3#6@QK5ASey4rK6>*aG=YkiHR!^kv64!flvGFI_wq2!$8+k32H2KGn{tBTE
zf!juhWg-MW2@Ti&hxOPxnq@{R#zCDtvwf+U_Q14Xj#2OuYZj#srKW}H2j$vW1X6*i
z--n5n=A0>0^%ALx_^82L<pl{=l|yfY(Tg|VX58s?hc3G|zkjME`%K;Wol%L%j?Ixr
zk=(Ssmu#a!AI7skau|Qrpob_U?SOV^O}T0Np&e#`5^C5PX``kzq5hb}bH7hSV}RTx
z^xzb*(m0qV%72;X_M24Bi4wnSi0~S`cPO3Daa2t(_*-F9u=??twCIlB@i9C{G#245
z1-l)kiX(J73KKYz)-f=&y5Ga<-mcoxZbo9mXP2f2$-m<Cyv31VX<Qr(9WNxoZ8pE5
z4oR*>a#Sh27V%sV_AnG~-UJB$Mc!Cy<Qo?V4_D5e{F19btPMjlG8AzoMtCk0v0XD}
zoJYA;V>alX4YDbZm@y-Y^&8b5!G9SumR!hNNo<bII*#t^WJI>Ml62Xpwaz{zU-4Ss
z&0`o=U<NMLu(rI4bx+_Ni#(16!CLIocd3F9Q^O)D*%U9Sfu^+QgB@AT+oPO!eovK7
z|CoM-PRyyQf=>s&;fiXd)G)TVeW4n%@U#CjnwlP=D!qiijD8Rz{du|yWJ!i9kCeE3
z<wI{F{i*iFv%!*pW>z=YKamsM{9UV=iHus)7XTEAZ*^Ki{F6&g!#9D%RD33U69V)U
z$+T!JXaMaKs)bg-XhiK-W1;6uKWI9+UszMMpjNoB@)|hgh?$R8@pDtp_)>gsgH)@F
zOCF)pxjIW7RCpMwQ%2qoP*!RI=i|&`8RTMgw0?v?y>IjS`ooB%$>wMw3^RxJ%-Imd
zG$Y2EUUGCXwgv=X$oSFbzpT`!<l5|ot^NJuh%ZvqV9ePj+!G#)2-np9a^hbS6g*%K
z@0e_0r{5X@6P@4`z<|o$hd#pr{^h|4psZhTP>9b7zQ%#=-2-25z=ES3Q+G#~7TRfZ
z_prg3VQY&s)|}k=e1weYM8Y6~nitUt?M4Z8qKiJn=kBBKdE57c6)T)6`BV~5mb|h3
z@g@t7__tb3Q7`2t**~hf&~G$nI-;tRDsS*AUaY^+^Di&;D&DC-*T1|kcWc&9U>f}Q
zpQ208)Q>Ryo#)3|<#ld->d|l5B_dOa*(dDIE4q;d`#NI?r_gTyjX#?DlvazVf<?iP
zzHc>__fSMaRuR9D=&7<wtJqUqMSOXC1WY5};PMa*IZ*#Y9N3y3V3r?j6dSPmbB*ZB
z_eQYoBy5%+Ff1ovZ=YviFZ2M5g+wU>V2d5tqdmYZKiHfu<v5~iei|Wax~crZ=M#+9
zc|COLjFY8H7?$h*9LZQHZjZ90VEgA$qNQ}W-R66H*c0|Y)L;_D^BOv6KlWE%Wl3_m
zk>f8sH$O95dm$EOpe}q^mQtoDp)JchLzJzAH?z=V>-OX)bn0F86~lDeKUh;i7<4L$
zyjF#;-{+ORpS%$hoj2CrPJ=M&G0@K+qbE3H@HFU1J+o<T@Y;?QS~C+Dq6M|)gU2oh
zft4ti5)Ey!ZrZGY99h4x_p#~&27P%9Kf3<gES}$gnc4!T>o!|e;SVqQ6f6~A)EC4T
z4gdMycW3xRi1!$^8Gm@OC{%pGfREx^RE}fFV+15{1n7Z+TbkX(IgA(BO^o=doUL=o
zUb?i_&Q2+{=tZlCDipUb*H3A?&gu9Ql#KTn``7gujv8B_qBc?%oOq_G#Cxws>fQFp
z&7DL7;7;f7JIBDjzB>YD%6v9pKox`=@){l7DK|#oO#i+ETrk}c`;7aI#gch8rev?3
zX!_?5pDAvU(T*mA^aiXJ(mBFOC-e2M?(3-zmQY0cMZUNke^y#5w&HJLspHg`iow{G
zaNT+E61>S7+w^nRtykJ-1{RK?Zs+fu%sxS7W>nI+4w2~}gYYAdqoOqke@^e&xvPkm
zm|p~l{JB`12S3)2zuJAg1HZupjI+_leV-1x$Epn-$53X^jQ$0m{KC8VtBKv)Lx6*z
zCGSPvygTkQWk+{QmcjZ5Tr&y{V=DHKXn$Zm#*7ofR{pmhN#nz${L`V8aYT>j*=Bho
z9d@_%A^ZO`QkDC|Td;G6$a&F|z`m`dFUE;}@aE}OMgCtRSxx13MR|~Rk*)fnNQb+w
z@0R-`fHDuk$E=YBFx%1Y7<SyZMF8^z*y;cWW-$KsEF=Bc^$|c*&szWt);PwFi>`Uu
zOK6TT#$}{J>2BpI_<*^ObS>*^y7jL*_z-(FGa3*27wU;VUQ?{Jw%GE&_s?nk=`B3A
z<Qy^-wNcAFt(PK;eM;O7!Ov>nt*v>qQJK121$=F$;u);e<64|EXR~hEy(IRyelR{I
zG96Fma9~*MCywH^*8=Ou(pW6DhYOv3J4gmhO0>_tve?gtsfUni(N_j2ZG5xsX<KCF
z1p9mT<S`K48Qx_OTQ?r9)yIQdz15r4X1GZQQ~0ip{kx^IA1oxOBIN~NNp(}PyEB+?
z|5X?gJvl@4Bpz6F*cPkeLI0MhxLmAKRYEhCSW<=OS#}CM5XNAj#D=n+5Psp22Ei5G
z!6syqH37j+ABGJQVC=c(uGG2*iucs@Rxvi5s(3xV;8$iU29^YKNrg(D#Hj7qLt9jB
z<7v-tGN$(nd!?!3m+BAHP;y^+CZ*osm88D?3G%8~dF9TWtvO1)VZ8b8ltpAQwJW{W
zO~`SLU{`O}$67C!Y#h(#ReT;_&}g8xS=E-p^5l<P+zzRZD<^uBI=u5cDo4i&K~<G_
zHMwnG#fB^QpmrdSIHWlgq`W4%JpCKGa)0Dyma{T`XItfb#%G!PcqoOilZ(!Rz>d&W
zwl6lU+`pB|KcCG8Ua~JZ0nvyi^!8Z#6U+)+D2L%xEv~r9M8P2|L-Moq=nl2P`~xZ-
zir}HU|HV~|`|+xOXjFftL=A4Nm%*ZQtF@tr8S0}$9UO|L7>V>Btxqsb7?tZ*Ale-s
z$5z>r&EM|Df$DY^*Ooz`pm?xcqZsEi^{f=MdS~RG-Ul?Sw}ZuwpufgiBu(*>kp3>D
zNil1&c|GeTxwc(7SmMF3Z)y4f2{cv!IX{2Lk9N<|33^X4xCepLL_1y6kNtg&Ac7Aa
z#Oxjrgyas3Uvn7WSHGJ+m>+LR&XRLq)95Vy9@Zt8wG2CR3s0FL-nm}a^Rt{kkA2Wm
zCB}GVx|bH+?5`3Rale>o(>A9IaMCJo&Sn?f`kv|gpy%b7`NJ4e)v4FSM;WSwIh!p&
zofxE-)^}qzQ1-9vi-TQ|=-?y}ty`(`j~O^N*;>Q8GS(Z7^(X97Fs|aYy4}Vmt9B_c
z4X94m?NZdy;*K+7JRDqEAdiiPr0KNY;P7KFj+Ti2%->x3Vsqa#y^zC|%0E==nEa~T
zA}{6|roxdGtFA0U&IDBk#l?N{m1<fNm0Z+*W2QEb`KQ$dT;Q|~eJR}G+QKx{WjKtb
z?_*$E>QBh*aFucg@7?JXpeURe(#1%w{=dv5qz3)`c!`VlNuh7h`XgE!tfY&i=ECx`
zVmCZ-e*8P!MHI5oeuK2DsQqq=HQrV(Q5JW+X)6EN?1v*k#F)w5KjdFoG>VvZD*r&z
z$NK&IjjLEyx7(=X2-Y6J1Jdo6H!is{eH(gQ?Vs9@75qz`oEjvj%~x_+-WCB|X6@y>
z#fs$Zf(8u>hy9mew?EhAVk^>ns|4BA2z8%m!n)#>y7!mQ4X6-;&d1ozXYHK019Eu!
z35$i={~SDcuyf{|Os?c(nu8BIf*b8SI_Rk<EyLX}Ul#nP1#Lcpwv*9j+dlyPA-14I
zs_Pd%{+={;*089yHcBZ{gZ9Rw^8Eg5EFwu@fU6<v_ULF~J*eercy7KTDn8f}tVm%G
z*fvVM-O!hISS`Ofv-*Pgrj@t8&(N3JyO-JK!MKI1l})PIdAUppI@@Eas${KOjIv=z
zHK9*z{LEsMg~q)54W@4H^hYt1`6ch;yJD9JGRBJZ%>6HB@KC14JFU~r)n{gw8--_5
z{-c&$!;0=ng%{cLsmwYJnrDxi$(c0#Y<p%kg+FqtJvNk#4^GBc!<;^uinv2I;7!UC
zLOEe)fg>__g*y2qZwy=X>Q!&=ImX+N_F6aZV!ahzRg!ME`7}c||E>r!i=K=SvPrRj
z{#86<NhdhKdv1vU+E`-Okm`5?8}7h%_(=q82g)0KLa0m3O*F8b9oRp^4Kg;S=qIp0
zhhS3->?2|!6t(te5p0AGSsxmLO*60-2lmcQ5iqJQC%7~O!;PZ|w*nU2Ew6A<Q;E6c
zj6HY7<+QurO8vq-3R|&S8p~b3p?&?t=Gg{aDBs6vY`j?uhwK<s^1QrGc^aORAv}oh
zbcGiWlQj!BP{`9*FYD{u&1h^<aI^KdXc3utEFWutTb)M}8)#9Q7vx_0H?&Xynd?f6
z(mZ4zZ+9Q%NBWPfFo4HO9KI#1?6sk!wkp2Ju3xL-ZmV5+ng2IZs%TNW)J(cgMxcg;
zE{*z~bjv#ZFoK?0Gil*kdp@^hTFs>UTI_jh$&{K&k7(IP4c*Gbnn_ER*t4|ox#O*B
zo|+qxIi4r?XRB(dXr~YRpJHH7&WnIi6vlH@22fci|7#)^RP}*ZM*vN$f2Ya?veN4C
zFAnVJXsE>0a6t&>^y^^<wrg}mYZ`H02<G%_o&&ons?-)@I?BM@W*pHK1GRD$^Md`9
zl!_hUM;Jv%IG-^@?R0X8L(Q=r)FKGl$ZKHlNg|+gIvI0d7173wM&<;6G_cTEfFO9|
zB%`}?v}IY5ZU9n!@vifM8jE_v-A>m=$XffG8ba+NsJ$IjP7kPKLgvcFb1=n`JhCZ*
z%(~LO0SnG#QbVgm=EE-0i6ZH9MC+T0yo;4D-U=<q<+r&oOqIHl{D$FbP=&MfBfsVj
zW%v6smBKP9!>EJjZq2h+LhO>$yL0>-q<^#tx&szlou*H>+b3J{j-@@I&hg|h%$G{b
zf2zgfrFU{_&oPiK_8ql{Z`W>IRR`-m<N3oxq{ODxhp3*iwRU2yf!%UV1k9wooq<Ja
zZGQ*3?y3kRY@`2@Ez-NiSm~l+txoLcN5yV!<~|bOp*S-zUO@l`36G8{kFhb^0cOYK
zcRIl7J-GNTfWh@DG<ZEcrt}0l{U`7tI@0&@^te4;Ew_VRFmHx6IgOg+{r+;<IrL<r
z-u<wHob&X36ls~)w#@RLfX~a?6?;B}=Rep}Twl5WEQ4XMtzhsU)iMGM&k$n5#Z~@Q
zwwypNv25)^Qw)|@rlbW=nHDsZl+;YRdM!Ofjh39jMiu-0YfzY(Ra_V$LpRMonK(03
zM8QtS8Vk8mnOIeirpk~;sW*w<6P@~j>u(=e5UE0w@*b*NAe}8a(t)jxMk&lPeJ<ex
z=Ila$2li~#fLWLJYzXG;!rxpAojxZ*)VRAFFp!mGbl_<R_*zsI%`9Bu0Q=)P4;j27
zjP(7~L8p2^k2C5K#hvOPk8X@GV2ZmRkil8UboQbUV3EO~;~DOyKV$~%DXZZh%Xz$a
ztjT!Y?Cwb3Mhd|mAd#SnsC_?Z0F;-m?0&?hy20m4iA{ZNcdmyPEpE=~)qYiQyu-bB
zltKF0oZu?qeo~nLPU8V^KdytF)`O4l3if)z!iVkq3hpYFcj)K)-<EbeHNr!iX0K=x
zcS}4iqh-o8{51Q_QrqAOmTIHYlcF}&)xRVOey1k=DH33pMeE<fW6y?QPEG#iy4QoE
zP1~wf{)@0VHCgV!3T}u9*gCLT1{SH$I~?SXuZ%!ieVzhja1G37yrT5q*7N1L$8hmK
z`ZDX{clyVgk350c7zWk3`?x&6lFNg<3y5(ta>DzK{e(|Mf3&eQHjigNmgKMEsdM-Z
z-n4!Bp@$!w1-14&GQPNeyU>fzWwKoHxH658(Kh}#KTGb_Mrz&9KmJwXDFlGt<1M)~
zxhAm*<DgjYts6G6gr(xO_%***(puQ81n`=Lyj46KzeW~#&Zb8GUK#s?erPSRLU?3~
zc_*S*TMo|#IsU<;yntfdxOG6XZU0R^v2p|Ft@)WNN717_D;WPamptf6d$Yh_xY<T~
zMstE$l!saz$Z<@n&0>dO_EW-cBdt<~K4r_2ucZmEb|lv(pS7(3-iEb9U$VQ;f;aY(
zp31NA-~^HqjPeBien-_Qw6aZkUNQ?=7D<)`k|jeel_`lSzXw#|z`jm5rvB|PSFxnB
zTP78Ii}y^euI4!tX?&h%9YZcQ+^Rc(cY7nEZ2N&Z_|<pBbnxRx;qXTktdm1%%@Hk(
z0V~}-6e<5=-mSYJPI#fizoYqJ+7~XC^ZfbhBK+&rGtjMTRhIvVUMfDvM*Nk1z$|)s
zgI%k*!Uejja6^`0H~k7E!Y=#8B!yb_G|No7azOq0wxEo<BB*hld)7h&#ij5tJe$&H
z`EM}0#7VKpPEuLw#7oJz!Q6sYXrO<+v3{$#O};&N&77}tP>Ja%cwd|2$fJ`gp!4e=
z{2;6nA=_T4O52~5nB7>sGQQ{)+^*GHP?tI;citQ)i%fDSpmKV4N<;AJBZyx&n`NaD
zZEvZjlJSaQ*?x?5YIk!!Db?^J`Cy5KzEhds2BQ9Lt#jaSXv-Jg1FR#d0uHC9lApm#
zSAR?y`p?<ir~-sL?G}`jkv8;=iZwG1Zpuv!D}w*^p8wcq;y?M0H>X4B;t88!OV)kO
zEl(9|rvD{1uz=XltrD5LW3egU7~AZiH<3rqRJpNP^>WeBmWov~DjECE+2kP1%kyiV
zD{9Kc1TABsqx&wu!At#i9Y0Om5gUAyR&lG|DppNzL52T(s9HP?<B!)`e7ZkY?&%`c
zHbtK!K>cGL@l64;7Kfnr@7D1NY{{SK0p)EWP18U5i+S+#|G?jl7R{{wMwwEviTV+d
z-LK~~=%x~nV$hO8G0%Bg(&xCQLDPWK!imBk^3eXPVB;Rvnm)6iFdw{h%@@36$&k6W
zEz%rqie&d;hG5;p(uXeLobL8_wMx>({>t1l487hp1M|sWsvGU4=C}`i&|*2=*rx*W
z<^&h)6KxZ%Qb&vm%?g9a3d5}ViZ+aj*Xs^Votc|l)miz=;)`Bl=Y{Dzi<wKig4eGW
z!AcPnT7;3YiZ+z)_AU76Aqu{W*`aRsU`Xy(%NwOOcun%{)$N1dZeCw^&YUfcki7H_
zg3DNM0&6JXr!z{Lw&#MBUSs2nT2AnrTBYJuslL5=f98Z_pBFoTnf@jahf%<)_;2Sp
z_2&FOj$gWtwqM)HzN}G=tdZ2VyVR!<;xy-Q-iIz~NfbXcRTvZM2|>$7W$WS{?spJI
znG}`<QIY9ENI`W{$)>iN5)T%o<Yer>f^3=$j|fv=_z?LL-0>iyT-<3>y2<lJL3h(1
zX0`qKX8&qRh#Ouf`8cJ4awU{Y;F@`NEbDv>NpJ?(;jjopI*oo4ppw+U9pj6>u%%oW
zkqyG2a}7uP^CZi`OSzuLR&UQJoOh=g#;#IT1AjQuD2m`R=rz<j)^3nnDf0afP~`q$
zFGhJg7h$o@6HJ7N+z2$hj$~3LE)%_$9c!{R`0y0ZZKnS(__o&Jvkaj@hlfSi&ik<)
zU)Wtjyz)aow&8gu#qvKp2&+~25B}z^?r5!8F}qj$$}a3Piq@FVOxU@M05T4Q;f}Zj
z-AF}xAB!K;=TAjTaY*t|XfseBwn(A%HNi5IXohb3wYO`p6NLg3%pWvmnpAsAlA!k}
zvq2UB#wt}+EWPw>saI7=pWq8P2bR+fh}N%EF?gF|E{F~_^v4%*cOn(1=9s!HmjzL?
z5AjlGFyA}AfaYG69C&r=l-y2ghW?UYi0koiJ#iV!bPwIMBSX@RNt9M=_&`_FP*NOx
zez~JrDsJijX?<#X*j5FBlczBGb2e4Nv?RI4z|kpivo<}`8mw*lkPku$f+>$`9B%o^
z+Wr?SiFi!2goE?7?n7Un4x1=oc~I%gOv28|70ET+-t<NCHHdsJ_Lg<G|6fTkiBBT(
zrR~i8*N(2z54BlkSRk;|zMncXF@cjkFF`)H(z8-L)^aw>r56~tf}ud_NK=D$Ce-dF
z@sRyNzf*pH_}%t1@+QNEnB2q`QY#BS`@M=OWMG`4Cr?k*Hs(uDgmp5)52|*x)|@JQ
zV7*9$qRN^=J*d@_gqaK`UzV*4s{x9UK3cMS@?K=e9BI~N>ZX5NmCyLEL;1v+p%-_O
z&jb7Z7xMZ0KeO_gq5S^vbM0s3X@;$<d{#g94dhco_oqc<g}#yaKjd@F%x%c$XH2no
zmrv9lwjg5k;m)N5r$1wuPRBFMkKOfLf4*K>YzI>(m$nAIsJ*=TH6?vFELD#aze%2Z
z{<8Zuu#ex=+WrPzsez!mSd;vmtWD@rAKlLnL-fVT*rpY-X1hMCaU%Cz(*jEI$(|j^
z8ZtFa8bmO8JN1H7vqPBthe-93eNjw<7ECW@;f2sXwLcyF@*c*nja}%+=W5E4_JTT2
zr6psJ_!BGr(&+>9Di^|wYX*~I=Y-D%!Myscc-3jsKCuz`mlcbL*ya5Au~S#VKJym$
zBN05o)A(rngogR~dw{26#Vpos=C9wAER$BTta>#Lqu+P6$`Aw$Wio15BBXv{q5Uvs
zVIq=wk1Z_xoN=7j`cWSY)Dd}p{s+&%XKLUPNNjH}+2;s`7|0)D54MR|!%rkFcUYIT
zUsX=9jzw$2*S<P9E$-AS_Tb(sL}&toKLKF_+Th%~QJkkD4J$PA-Q-!*L!Luh{QLu9
zqN6nzXR@%5m6%fy2d=aduf+V+^<gRAYp_(tY}^B%OZe2}q!m`z`cn`T)<q;<B#9Rz
z)dP*$SSde#>|MkviMzGy`MvoVN*r^IyzBkKJD0=9(p(05gBk`%@-KO*VQVy?V2%@;
z6YTsak%_hKC86i9upfEH80V<uy-@Py^n!iM{Xstz={GpSGTFa8BY7j*!0x6_xl<_l
z+QAep-IUzd1aIYsaz9nHvif}t5b2|2&_4Mka=*D#?%m|A&AsSvx%3z5=}%j10^&YM
zde;`K=28F9>f?BnD$|&V-lJycunLs#hlSq}sQZ3~`#vE2j%vH_C%Nyv!tZnn?t8Vq
zBY%WT{k^B3HZu#H=Ji`PGqMaI-u#Ia!yojdQgy6PtKQpU_w(*pZP8Dd1J{}zmzE>u
zD@S7EL2eBMbgptA@B)r?5Eo}Z?5PhH>d+wFZb*%tqEz!J>|4dsc=Kx#NES?Ij^#!m
za#y*_cUZ;5ln3C~3LJk+h$@!WPw|$>iMI=KShU5LBT4<_&!qk#n^4gzhh5d7iFl-3
z7>!?BAbIowVbyPr29GW2z)aFhJ(Bunk{0(!`fUFY;g`{A5er(rl1chJ8iqAmPh^tr
zjD{R7IJq#B)YK!XIg@mLkE9=El1}K6bfP5%MGMjC!`(Qxn?66P$UqnWg^qui#LY1e
zU&Q-iBkb=GUO(4srTs0Je_%r$eoF=JEgAa4>Bk>IWLK?<uX#BuZ#&XUflZB|Ah>Hs
z^Cyc&R+Q!B5X<7i*~=qC3=0Y0$yz1bHZp9^rlBwA<kY_gq7tFkFDjOat1&RL^ZyzD
zqVT4^&!Y>NsS;h%*?bQ#%0lUKbeLVv<C-(=gl;}R3*9H)JSv2y{dX+UpT}wc9S*ux
zr&q@W4Z6g}E%D~J(9<RR{r1f*Dp#%7y3T@cIKk$5VaXw!2Q`{oW{ki1)vwL@XIvR?
zzDjxyHgediH`j^cw9$!%YjezRD+n4R*_z6-+30dTuc9^H%$iD-(&Vq-T>dTj6xM}#
z@TYlP8O7HTxhCyrW<;cI^E5;Ele7ghc*JM*Z|dQo5xMni^l&f_D^-9>$>Z~Q0Z)_T
z-(sMB0oCA6AXIX>B;}I%TT@aFP;0!YmjS(w5P&HYiZ6ts%rN}IeIBB$?lXUxjUi{<
z`GLRLmZs_Sq2TPFx-rN|z11HUT>GR>Vzz54t+l&>1gbRa=1AcbmJUwcH*B1P9*86j
zR8oZ{UD2!kC*=Ii%t*2+;Q*H$OOJ;?Aik`RK%m4q!Nz@r`-)h4ZwIlU2aZ=V5Vqz!
z6+62J#A6wVMTh|^hxLHCAp>!ZgSeyzAJYti%yZ6<uqbs8PRk^n(<AAKOwy<xNqc9K
z?*Cx~p&C)pCzEt_kEFEC48g_)J(6C?B-Qjt`dudJkRD05WRiC7ku=Maf@5ySq77xT
zG%_Be{cUu?*(+(T1ZU^Nw}P{c`c1jtw%DGnyQ^c$X^T~aPjJ42ZR!i#t}RFCzl$3z
z;QQEktcGzE?Y)vfe7s2-Y(5iTa7hXWohxx=PC^j&p#LI3XywJqkb01os?}d|q$-7H
zikf?w@>I&%0e3hJ!fwM?CkdN29MO2Rd>|)S&J>NqMqc(Of$|~o0B<(X15=d2=Chq*
z-d`7~MpN#Q{amq_+F(JUOtsk^)@RewVh6YM&q>BAxWveh?b;&u&SrYPe#(i=k8S3O
z8#Xlk^D40V=f|GsqXHv4FOR+SCm@%{mg~p!L($K9S~bCPHEp|MCF#7IDU+?IWsCj1
ztMxJ%M_dDm)EOOK>sLp6i7z_5eO`Bx$+d%TXzCkxjyL@kOpNlryGX~^j67XG1Pf}%
z4sFq{SnOt9$;|4Cjq#MWRn+(=6x4usVvWCBjek~Nb;UCFgeI03RpbA@Sc3zqsqZ|+
z912t^MZv?2xMco{8HaI#zhn*9rK+~^jvM^QnTo5`y7j}q70`H-qX9xKFIYj{^O+D`
z4U_WE)G<2&6U1BoZ-nXZtL97@OtprWUJ+FWb1rs>FuBLpaHe0E#pq;=PC&)W3pyT?
z^g_;x)U!Q~SHKu*{h#{hq}jUE5e(^Vb~CK2OAig}>CyvKM_a3&)UW||3GAoo66OD-
zm+}YqP{-+sOqX=?H?+_ke*=A;s_NDs_^G6F`@~ayqzdTVk+#*DU3E2&>u}k+y%H;O
z{rq3@vcn2I-sUI!cR5f5z<nIx>%?{v8+&K2R;4?NFY4F0`5d?0G`{Gh+{VpQ>48xq
zUV8CTzrCHE%j#9_Jvzw1FRI_yf&RFD4+nOUwmF^DyK(b*_1m*Y@ds8%8eK@Jzy4iU
zq1Fw=Pv^*vom$uRO04LWW-g&aC&uKYSzj4GVZ}JvWn-WA1@?EY{z^&8EqoPk+C!2^
zY>dU5V|r4Gu{NpxTaLBq_4_;4&Z!^hSesG5D-V4dH&5Y=TDA4`6Vd_>C#|oxyffm>
zkGg^*h4bUhx+2!$xF~MN_c}a3te@rZOs&6&hZu#X(+^R_oBP0d2Hi%!0s^|r;?3>u
z1))OdZTEu2>NtDKy};Ue@n*%@9NG)x&5DaJQJ0#I^CVu|e`bGgw!hcgU*G;VJMj#W
z;3N(&8Ok5?d-yp~^K0GJX^UONU*>l<z5+Uy{)KeiJwYw#brUN3eZED*r_ZT%sJSyM
z(5g@?*TFSE(=gPV^r^SzL!BJu?SW}xBk1Oa{@&otc8HE86z|co&xYKuybf;NeP-5+
zT8C1xw87eE5lqx=*9JE8hgA8qF^3o&CG<)bV1SClh)rjEp+CFD^=BtgB>J;}?CQ_f
z>6iXYzrob7Nn^#dh}4%<7L+U$2&KTRY1?;d(4S*EM~9srcW}*`NCV$gqG-INIZ-jm
zx$D$zGFj;|4`3tx3eq|MVhKi{qc3hzda_98We*yj6XL5ed`)2{M(z?FE6P?G>RW9L
z=>K-3y(K@@PjWf{XBPN_ej&UJO$Qm?9hnJ)l__4Lb&IXUO?-w%aF$2z3dbUXrDW<#
zsFSwkv<q-;sPSDfs*{^o3GOBDC~35WrV=qPPFn0&VQPAc@#+ugg`SP4CetQsd{#f*
zVTVYM^Y2oQn&jOjOZXj^IzM+@#b4srJ`JH7WObb-PGxO4BK4~L;qNZqJ?F&Kh!tZc
z8x4(5OqQ$|=ld$8)>%CwEdE_8dQI}&l9}WD+a(QKZB>)HB)7U^OZ?g!NEMT}7*vKy
zq9m7)=kq*(KQE~A2VDZKnpDZ>V~Kj~R+H@eIj5vESXfq*Tt6<EPRG!wnk1{dtoym_
zc2#jG0G2#UWU5!u(4l^f_A6NcWW}P=yc$N&l{Iv4we7#GNsWB@NrmP|xCn~#Mi3v;
zsv{hH`Xph}E+90i%%+)YQq$<)x)aS118XNSCz={Z6yK-DM><A6{TU5YR3)&y;1OH>
z)*WY9quGK;XmrTkOXF(Qp`9$Wso^buRhfo?9sQTA@D2zi*3cIf2Z<k0Hx$Q}N!*p!
zq^4}8Oxvc9X4SyfeaN@QcWRVw#lT2?GFsu(;l>hc7*xD1<V-%sdFfJwKbpTM&uN`1
zY0lFDKWx2K_*tIC&pB&VQeLQ3s&o~<>1A4#kd!B<V@0kALDm|G+IHBa(_?@O-rUSx
zygLQ4>o9)T;XrrV8?9d=V);q2`er5{^vC1@YJSVCvwLfZv#aJW;T#Dl@pSRB;IV6o
z_HOk)*MEyIb@(>$o%{b8U;nM)!{$lsU5+3NE<f19Ys+>bKqzN_iv-C6wt87Sr0nNE
zq9oOa3=?KW0n<}C`Ap&}lG9i0%Wc^ci46%Z03F|l@PZ3T8$({+GC%e`knpX{E}lEV
zy$r*<`QDF32Q%*HS7zxjo+peVI#c%x>FAKvvww#LeWreF$Om>+J!2}ixGuwMtdHT4
zy-&%Tg<?Tan!y44Wyw5t$FMxtsSun}Ai#seZx$iSrxR^sf4(Th$dDutfpi8pY>=Wa
z!S%a2){6c7<&PR;7vWl7u_MAt#Y!?P{Tl?eod}v8g55wc8U$^zQvSkZhuaO8${!-M
z5|c4I_otj8`#RFg@ACP_`g~PT#9G*NZ)^ZPz3RvYKU5xVKMa7j&Zp9>2kz1y;&VS%
zQM<-_K`<W0nAK}&i-;FXNW^1S#8W>r;Ee_GYaY;3+tLF4U}8#x)7qp|(w=YvgAJ6c
zwabZ|pUtolMWvU!DO(~NO$Hr1hn4MUz;LBTA;oN;O>D`VHGqC>R^g1p=l2=lbu6bl
z@LB_Agtz21e8@~_SLPP5Wu5xWL`Z{|*P9)9-hQ;@?^M!*zxzl^$4q8@qHgl2bnT^7
zHlkQIq8M>hhI0oPjsDear|aXTCLG7hgyXmO67Owv<15Nq?p3^9U#}9BO-}Zn+%|?D
zm`RCL)vnCt{^St?x~UljOtqq>V+vUJrZ4^}1;qS02<MbMMg}{3$>XUw(N5^9wya@n
zzLA=y)WbrBsOMcm!-PSt{n2390E(ZAT@_u1Z2QPBAPOd>fG8`CQiM4GyXVZvz}eyf
zRUsIL53tD&tm4!N7?Q~e1_2g~ceFmcD3WTMhn})opI|;?-t=9eK6X(q=I+K*<|@>J
z(sqex)451Hf-CNF7SoK6eR9fS_6U7Mxx+RbIcbx&KVCt>O3v1kUX%v%lH2c$u5YvR
z{z_f_7I*6d;)}gr@x=v`byKXG1UH6EPS)~?iKV_&`Ct2(b@EcD<`v10vxS`#@=BX}
zvES`sRqTYkVjYU(t3{y4Whi)Fv7Txt^K{tcwyL}`3MK^X^&$(N&S<4mM7}A3iJyyH
z0;|pNSd<Xyg1jWXq=}9K<^?luKqLO@J~}LXJd2NlDV59$uxv@qtvhx|KDtY?8;hr6
zQ=_Yh2dI`e*ep`eGM{?XC@b4qddPF3%G>4s2&@LQJx%_@ro?7C$_jwBvo44)9_kkD
zRBV}Xy1YQI^}{~$O3JGJx-y^@6=GpkjJ=EXgfd!t5ixH6J!d_QS4o3!O>yNj<p}ZO
z8<iUh6||szW$@bPYWkh6DA+iUa*Uz<Q;u%!y?m?sP^OOYn(dUPve@Y1v#@3><BPFN
z%i@W3`j8s<J+Jk>KC*Pke8OINwnOC)B<Y@Q1z$J<QI2^53rHF!FwGiI+(>Fwd~u)4
zt1DXKiMhO;nCeqm-MX&N34YafVCcAVWKHVCj_QhMW}FLP&E;FFD_UoqaU!Z%jVhkt
z*X*1(juH6oUdM|W+_Uahft|CW0}c}{3<b1)F_aiytV)82Dy6;%&^U&%_CEyo;+Nty
zEwmqYaHy%LN6KKP+^0xhvJHJhA<>Rt;aueUz`xaxMlhitMQU#tI{l%xX&8+YA)<o~
zr6i0JnU}AnuUJXd)8nJ|+`{U6w1HI_kovcjqP0b3c&);e;LJ}iH44?Bplg0edw3U>
z;T1FTG_NAX<$b}%X84@s>K|shH-5`L3`XONWnNM>eM)sK75>lisy-Yjig76wjC46K
z*z-==r;Mm0`jl!au}i{j{p>&Yqug^onMMzwA*~Mg^-|$)TT{tQNtk~g&yA618l3x%
z53GZdH5T;{9_K2PA}gh5<;XnS;78*|zR43-nmSjccZX%tkWpSXQN?NZVW}9+&3kuW
zWX};5>aySfU)fRR`IgA@!pyTjlcxDcgNrYo2@iiXxXiQQINZ~|Ngo+&IixiV401@U
zZqxKEV-wtU6uP$8I1H`16TzD-#q^!uFp=;BYxj?WInS<aTH__Y;=_LWaI3fBtI(hL
zJf7G=pCBUS@x>!BE}z8{U+$BWGdVfJo1E-ht3(OV%Z?9CBq}iW!WcBhlAI{(<kOWo
z=T0Dx`@}f^B&SCr&r8DR8rH09G%PrZ=Jm3narC8;-1?{-HPn!>Xk5mKk+GD$++o9`
zu|wYn!xV(`Nj&uixvDF^jwg2CCnx9F_~IcGs~N2)cHr&A)YJ=es#`z65KKLo4dfq=
zYkvRAx^bLQ%}A_)_;72-(Gu0nn!#JV)mv&RUWq4G7U$%QMN%{P^J2BSxg~swSd^U@
zFs5a34jxzWay;=9QYRmq95E>)z#0VEm;+DAFNM1tnzI*-i7)Ou&EO{peoV6Oq;aXq
zw4KbL9KcM*Y|$1lY1=U_bzTQ3;tR$g0K>2=7*x(laQM$^@w}PUswdJ%RMSVC;MX0V
zH;x{5?pu5X<VfRg>`*K6`0CXkRi`e^t*Q7ho@#;1aj9bw<GOfiA<!m(J9&WJhAVn`
z6|cq<*YWD5M$EQ_7k<N$*wa<<#N~X2hlVTqR14?=UWtIru4Y}#2?DCA=!hrA@l|mN
zWjKOou#Ol*>9E)2DeakO%M6Tf9Rv7^S7z)zneG2GOoFC}<C1M^EYijFVX~<MKXILx
zgO4Xx6Qr9wHaTQQbqBtEcm0(JQ%_=nt)oY&Xs2}iior1KXHko^x->YJ#hHvtWaHd4
z4OVxGEJ-nRWi`}P;)~BjHfuQ%i@9X=5t!q(@x%}9?XgT#J4Rh?WlcpJf>26EhEhCL
zwM@+kss3?oHlC=u^(R!IT6bWyt=`V9D4IMf@pW#zsV`wMJ@%^GT|d2<is@*nNv=+x
zg&a5%qW#mc{-l9pDPeOh?2SuJDpw3Bxb2g#on==i-7Fev>_V?Q5bZ+h)zfh^RK&1o
zt~9<YgeySEsv4w((4LUNpQ#MaSn6#4@ui+WjSg#OG1Xg%8Ah}o(VOb{Z`R@$9_~7X
zGp|-pli`3Pa&-<jKaLYlXUH6q3wKI_$0kQaeTt;%dN{s1V{Se!ory|BMd9Xz4sWq?
zHX>ksE)9lmkZ0dyVpg=%RVI`<v<>oJ0ZcP@LAynKlL44-1~Ke~<~*&=i7@S{*hI}w
z^>s7*e9Q^H%gQXFHqksL+t&g&`sbzoSh9j=-I9@L`&9k<r|Q=~4L-kL9pi;S<hRxF
z2w`QCF))$xu8htFK|5C2%Z*{7xm_cCcjdmZWL*ectN39MCN_!%-aic!sj<HOT*W}A
zOkY(H<b&tsxHcIEb!(+HPFU#|XfZ??U7$=~znS2d{L=<e?_Q?yPgBVhQAI@4_|@Dz
z<Ez~+2*U~RV98=AXgSUKB-E&BQpjjf&WJR=)2OE2=(uM(z9=2l@qb!jGa81w!~)wj
z5aL>6JfdOWP}S2nDV~<C6__xm(2NJ_??j={Ixns+v>Xu_DniTT_}r*c@=_W+^rdiB
zspW*#?4O#;q{K^gy}41r^ZV%HCa%ZHNd8otqX=utuP$~qMO6e}EWm$zwOcEkup_wM
z09S81mGNcq#nXy7GyQFAmbqWZwNZQ*9oSJqX?77{53CZcqJ=*LtB9Ls=xj`DoY-TQ
zc(YARjk634prCQ$jsAaYoHu^a**Mc@nZ&2Tmx5|Z4dR)S4T|SRnafxnS0<ZQlU8k{
z@{L0po|cgHY<QQk1~+VYZ=-{1c*>Nm5#DX>nX6_(vStP{HBBXl@2;|MEGe>gt8a{B
znAivpYIvn#A{9Q6hDR~vK$&<o*32|KV}O^U;EMO1Dn~S=DwkSqp;k4C9yZA%iPZ*s
ze_)-Ts<M%FhUcO`?xY)9SrJ9b^kMACo2U{BaD)!%OSyMSny2qc9l(Y|>Pn;;Z9LZT
zma@S1w5SiLt<h=XBZz)r-Qx;~SIR9-?8ldkW2Ekr_`UNGPxQ}~mvlD^kuZ^8?5PUY
zsDOKn5RT%Nzxlbsg7N0xTc5eW1-p}Ze&J6^@KWRR6e765y3JD+@YFs7EsmgPG85^K
z*sIEqoeywL$}8rq<9KtPpp!F;I~A4TuFkeM)upHGAjfxH4$pEdV1bN$3UOJJti;!K
zWggX(Tjdw_1$3;~*blJkWNv)%guRL;C%$6&<IkyDhK~NA;Ah4_fhMm!)puK^B7Hg4
zsqy7ay{rB4m1=oQq!EBL9SWf;KmSq7Ra-Px5_m<4$?-*ezs<g%QefZb*mt5|gA#lm
zm+~r!gN&?BRx-2DWL3n-wO0-Hab|S~M^iBhWG68u$2s$NSpC){U#P)v!d2KiG~}jt
z!NfVPJ*hgR{Zbh(B}r!mjPTlT(#i;z<6Hkxj*K+Z#~^N(S+?b~#%+=dr4uEaMUsYR
ze^ApMCgUQ>_%89=R$0Uk(*F@D2&Npt)FK$7LgU>RiE0OlD!r;pvCrQ&9~r%(*y-E5
zWE%D#Wy&&rsg)e7nh9?QU(DWS=_6FL2w3@OU2Z3WN52^YpgYi07C*kklj&*Y?VWnM
zYgaw>Oi$^t?yz}E)6>m}7k%8(a)o;O3yI$8>F2izo9Ssi8KtA|@QJFZ4FzADJ{{6>
z9Gv!idgXs2g7m(YDWh^v{70Fxa&v-LW~tnj+s+&obgL@27sB@k^|JzcTT!_Uw^})o
zlBpc)sy}dFI!pe2y0FfYub=fFmAte|rq=%`Q@4^wRj%=yA?T@cM}IQ}?5By8x!1Nc
zcd_9Xj&$ZX{c{$3nxmPu$MOT0aOH(MzOC4)ZDRU%h)MC4yx@}m2t&GU6MdArWix{E
z@PZNB%9*~{fHfq^bX*E|_1y}5`d~nV>2ImC_VXXVS$*3hk6253j6J=!<EMEFGXfk8
zsn7bys9@7l`OA?C<+g$5QTo<^7lC0ZqOa5b-C~RE%hTZeuznN)H>gZ+{L}cOoadfy
z(Da{W+@RPGe<(M|Ws15%%9tI0RNBiOp~HJeiS=|eALleYR-!?t#^~4roCjW{nT@cZ
zsMbWir|@I-OPPYIX`=4j6x<UhjRhr@NW(9@`KR~=^tt=9zAY*f|2lJHaI4mV*Nzdm
zv7}tR77p~;{_wNO=cO*s(+Z47^ObjW9)PS_8S7GtmBQ*Er4+lAgI$W^e9Z+e#ZwBW
z=~c>s3(?pA!Y|AT*?OGS`LHEk^lxa3I$ViCF+%zFWOLpVcbx&?F`r*7E=@XGjo1ea
zcv04I<3+8AC)#(C7v;j*8f44AIg#!BHU6YB#j9c`CeQ6v>Tx_rvpZ<)ju7PxxO~i3
z?%>#*b(3uJq)J`;FxqPyQwbKxv(D$S-JE}Ie5GoclM$obYLE6x=<-V45&_4nMOQSo
z>g<4qUZ!Rkj$K@yu$<(za-t0mhpmUK(eejZ61jwuKzbUM^+bO{FAH(V<05=i)k`6c
zjr3GA@Ua-y)%atG#<;uODL>(vyKS+`xYPv<_Z}?SNTIlZDBje8HYudjbT61#7IXHE
zvddF&o$wMW_%<#%QOjkHweQ5BEkVB4IQiNL>=06FQr{y-OZ^N4Rv>}#z0iFpLkrtU
z+s2r$QJwrEoiMKe6OrxM2h98r#FDN48b2bI_J?X@ZL+9dy!5|DmFAcxOy>|cMh}|*
z2TTkqLQLmk(2o3um@?HCDW(>`+=5(fuD;6Of5{E1rfCSBSk+%hs16<GQB7kJ{{FXE
z`USP5*Z+82a!f51(!@6^$|{80V_k)$f7GKk7F_b*i*R7J;Occo{|}frL<kWMi&X8G
z_1}!It%~suH%Rea6G%S~zoz~tnfk{jUN5=UNzGf_kfK_>gjCu|Hg=RjT%duEBs+<9
zYq5j)mT3Z#tTlmjf%WB4<vi>gmLQ@4>80k_NI9iaLESf#MHEv{$=>$gW0P63VPB}A
zHBre*WaIoXUNuqO=3EMZthQV$2~RTl&8Ti0V?71mKXl*GSb{fvua(Tx&oM^tYC``$
z<G(NYl|8U6{O_@4N^ZNhBPO>6zB49wA<vjxqR0>0a<#3R+)u9Ay2*XnzHiOsK2AzT
z-=Ze>m+pJF7CztnxTqffdisAa!y|fNoA5ti>uPd$`5!QKHMuJ;{$?d4Zfn&RX(uwd
zs=tiM9h>_1CU<{JzW~R<ncPa0x*y+qn%oV{jdbm`_V|YEM%YZ>Z`d-u){E1=S;3>2
zdK!i~-w@kY#h5V=t_k!oxqtKjFO&PML0nLtF}b>#Ycbz4O`y}{{*3vFu9AJ~$N#-N
zPBd&8lUx5kVCpH^1OIz$8N-uNP?_9MrKsx6LX%r=CifbS*F#qR)n;-{eloe`0Lw$0
z;l7)zE0bHP@98th)Yar(anXM-!<~9yJLJE|mMOVADC1mibz#vBSAE6Ox4y?7h{eYc
zR@|6d-`Dex=@RbMNWe?}hf`k+4U09bYP3w6^*ZuR=lGlZ9s9t&<l!(F&aCTs>V*>1
zg6vpe9SG9<Dkz^E5piP<F|f?AEdw5olITq>TkGfDv#p;h?Ego$X+5$%^`B(hTiF<A
zXdvw=QkgAN<5se#7k?(^qORE)UBJ4AP8A6iVhez$f5>K9W~+vd(;%E05hXj0d;LdN
zo0RYy)fR&(M$5LoCt79mUss9TY-0Lklq2{yt%C(ehuTkd^3(JK>-bvizV6|Ec5y#D
zxt~7n=U>lR#`W&!AMPixA9qIL+P6To*a5d(p)t9OXt?;X8@(y$UO9AqeDP&WcyF1t
zFUvL=b*4tJ8jS-m+NzEy#og^-$!Q4Dz=Tt{q9Mtqy>LBEa=FSRyy-{L$>0Z$8UGv>
z8-4gjX3-pT7=7IwhSr}Sy0x`X8Oc*E+~2BN_cN=Tf{|cre_~tf?=Cq2d<B|=Wwuj)
zr~sy^Sq*g_BTu1m2Pg&WCxYf_q4@^<^cFu0_!HshAtBl}Kc{T1e42J+p0ZdsKC7%S
zS?U6)N3)qOg1q4JOnueR>XW0&i2b)e6I6)i&7lms@E@Ohp|%bsK4CG#RCWR&gNXoy
zlSZQJCpA#h>gDDG1q$tHCZIlf#E{qtshcdCdyy3EYs|nO3S6mqNC4R)9?lQ8RhEK?
z%QQabAU+o6uJZnL?5N5avu5wX<r=Sg8$R@MH+!pJCw+VG{Fm%lpuw*yvQ;jcGd(89
zA=q?1Lgmzw53eGyLqura>AbU4(hj<*V>4B(E}@i`OY)W6w5Pz6rywpSThUGq7i?f{
zX)1QwXstRQR<1Q%Uek6psXn;1EP|~;z(L;8u8Z(kK1Ml!FWleYC+vuJOem=huSRb@
zTq{Z_=CG3BOJZ+Xc_dJ3?t+7rthhA-JCV;SO(pZBe*RK%nyM|<bdN>foyfdmzwlm5
z8qZqic=M}L=x{u&*c;pox|zFlAiZmWKe7SPnp9<xE>TVhG|3dNk`%zQsU?5pc!N2n
zKrmmb5|YOh_`^pVk%nCh6zO`*K39>A5{*}h*l0ZeJF;taGy)7;f%f4MTrAo{Z#vL2
zCpfXg-G1X#;xpPzC;~ReredE}ic9GMY?qqR5Oz;tud?(!`gbP`r{A-8HN6_h212Pc
zi`kx@Vyi1`C44drds>^?_%lbgvi&*hji|W1;I7H8(kingC8-PHAuV&Higk_V@~r|^
z2@tE@;SV1y<w`Z|O4yJk*2$_}^K8LGC#mwSV$i)k>3hK7NFlZ$zE!~2js|eNir*#J
z^X_@k0;Fv%q`EJs7K$aebcJ}CA$h1yDw`mFo`Fc;LE;iK!{o1ZN6c!GxAZ$0$!Ru?
zFc7?5FN={OBD1c_DNnCpcpJ246ZO4qjGfaUf=oqQtqO7ukQ}XhIX{tVOT|vPIMOE$
zlCr$J&bpolzK4Ckgt4nLNZAJB+4}N3)nL1x{{$@$LuN<DP>z0VV!(vRP(PlvARFG5
zdKG!>1@C4<*08*oR<C*XRN>i2S*stw2}7y60kq}1k~04&nnjcCF-);f0>oGggw*>;
zR~==39xb%#eQUc~c9JSA5*mNPj`SB&XOQEdy`l4WuPCNNB>bq><bSUqlT`mf-8r5=
zhLuGvb>oBcwYtZbA$RDW8ENfA=uQP4=P&K%`DcLX_4+=#Z<t$YY0b~nf2<6}o_`W8
zVwHF_f5TeD@~}lX*7HU<*5x+3O#<xOdb$#;8|I;*a^5$S5bf_iB^^PmnAtH<A&AP6
z(y(`hqM>`wmT~c1{Ah+*mzh|XG1`|JZyMkL38==_Uul2}n})~vBxkZi;~hSGsVj>0
z^{0|a+n8d0u#JCqDFrb2-As(hkNw7d<)q5aAS;qh|H&Fl)bITL4^%`a_>3IqjF23u
zk+hwN(Zx?~Hh3rRGYn371>8R08g|x6{9Xj|&@Pbav4~2O6>bjcun6FGT><F{;SPDG
z8g|S>Jg?4jH!sVY?3kB+FH;;dTpypKqBz$6bfjrk$XZ(G%ybfLjR4-%6>tiGery_K
zRC6_{svRX+$TjR(kUrk9$V6!B>xu}L6T4#BSA5aFofa*v5MNX2fK7L@PeJ;0T5uH&
zUM*Oh=lT7ZZ`mz%W`~_PyN8{)Q{Pu#>p!N;D9Bl+zq#5#)vdihEUnne`u4=eVyC%o
zm3nZ~hnW0S?9=EWOC{tDp8JRE3yQ7L{{3$T_Va@y#>dXGxkq4}j#;ccD;(7A#StiU
zIVYG6RPeYXHT9TC>aI%N=S?$UAAgtP52uFBfOVE9RaLUe?Z;k%Z^YvDN64hb>-Xt5
z75?J#F44R1;c}kD1{hqd>kQD{-w`}O?1z#*dtijT?J#=x?<#4NTd^ezb+IeP%X>#4
ztr$yy489Patx;<Xsm<p%80n~8(1TiCNKH^C+TM=Z<Q~+H6Sd}TQ8V|Ebw!P$_Tu|i
zwmv<mZ5L7#lu^6s6NB8iSNF2L2^+!g+oI;UW${aJt|N8t0TBcy#@kg6lzgVqImFSq
zt_Phu(fN&#Y(<9EQ`Fr~3_57Z)YXwah<rOFGSP^v;Oqmy4(>rDE+WTmiwIs7``v@v
z9Fa}?cQ46m@lHu#25p$+h%6rz0W)p*HDJL9LbA1zAch*QB^vICOz1&mYDmO+4qHC9
zlAP0n$XF3++y;^4LaSExo(9jqYX}bSL8nhhr`!tjQ%7gh!0v^4i&6$f+n}S%+vy>L
zDUQhHC6U}#_jgK0NUYe140S|q>_KFvi2P1SwkEMM5t$bBc0>mDAaX=VgzBSOo@2QZ
zb$@6NBD;#n3ELuq7#7$ZS#Uci)qo(eU-!biB=%v@wJ=DX<48TdX9UtT;65OO_k?F_
z<*8J83WCEOoqc=I`H|7Vep`9I)`gcGSk;5b7!kR0TSPn&DGFY|2PF5?`$kx_nu&!(
zij2t3j>zT#5il#s+Y~X_V_QUOMWi%1-w~PIgUCV&i0Vg85Z7Uj$W1+nTqYuq3CY&P
zMMGdn81!*O@_G<CG9-eUK;(Ib6co6u2a*0Fa^kj#U^j?m2Y0?>xqrP+L=GmdSHwFd
zq3$3u#SwXSj|iBF>o<S}9}CG=N|LmG2|8Zz9Y^Qd9&|1W=}>*p$#HZh^`LXC=v=ie
zI<6mN6cW71xi3hgxCfo>LORqSbZ&7y@K;6M%kvHl1Ov88C%!mo{VL5y)+RXDk;;$u
z@y`CM5QxLsB&Z$asHJ*PyI9m76rLW^gPK-dsF51A^{nNgV2?#RN27K~cWQrh9q!&e
zsPz`Lqq<Pz-1C&jUb^_=#>b7C<2sn{sGZt_+EXe@v}`9hYQNpRyCmgL1*?RIc)KaW
zoTpV!%YvOwz`Z$u$pUk4y8CPW&@22k%+pjwBJ{`9FyhW!@AS$Ry=N^yLyMQ{FVwP}
zJ=tQokrl>Xa#veLo;tIXJ>JQyB}W!HeVx>Cvl{25@{4{hwrSE{ia+cr<foWz^LYZ*
znsr|isx>ES2QL|36eyk&I^>hVbMXBu1WJ5BLoc=ktI3$J%}}ez-OI{1Ok1nxgMx)f
z2S;=C>&(F*cci)XT~Q3?TkvWPGJ6T{xrcw-qUFb3?!(4m%q+@Qw3l(mM2Z8GnFZyi
zx+6K9Q^@H&giad)NNn0O-gE%y5}QWF6McCgx|Z0?^CrbAQ~gh7XFZ$c2W|dcVUFK_
zS0Y|RG{BkYO}d2Audj=5Fu}3jN$?8#9Ls}>yp~PN+1OR7QjrPykgi5<d3*_(NUms2
z$Jl1rn*~Y=2c`-iyqLq_PQAJ~+4=;kk+bH#<~8x=Ka+-lhiq8Ns5vLzd^_(Omhy)P
zUbFI%SnK&`mbE2X_^6C};|h?4JnH=4@OsAN1~2)9zOml<BJKH(H|<OQ#72s}oRKfr
zbJ_Fn6gEipsYGeMdQ?ZhO=zV~Cn(lb)taY4J@<cd>X{0L0oT~ON+Wj#j;?mDPpW_S
zHgYiu!GmG0DXu9>c_wDr&mQ1kh0aZ?h7eZUn`C$EiF|qR)@x=MMi)kq+lalt`7p`{
zH^Hx5=levI2Lt<?IS8542jULw^{69h!<*$HnClPLI&=QSt`VY=ad0PK!Rum);!^<%
z@Lpf0CaqxUIaHQ^y=sHEYmTvi#}3j<^DsDzuW7SDS<I#nK`&Rd(|S;;5S2PogG29P
zSlXvVN1nvy*OVO0SzC1+d@{(7{eCJZKXa$mL;SMt|CvG^ioIv>0*f9QrAcdo!>&@8
zWGdmq#M3jE1wUD9lKd#@NXZZcD-lW%gIwk|j|$?TJXaoHlM_4ylJ@&#6SHp8K^!-%
z@@H!_v>S~J!6p-6YGENyJ^-4@OUNmBiwj-2-{Asuksa=DS$bBKE>@lu*lM>IyO#5-
z4Ze<33e>Jt;eTe<Nn$xTjo(Wk5L0zBTULXIUbRx@?9#pJ-p5r4_C^NnkDHmQBgQ}>
z^7ile2R9~f>{W*~bQRNnZCJaN)NW(8*oUvBEQker#YmW(nTLX&rJT2lNtqJ`7~)Kq
z^AZ#|=Eg)%iY*~`aIBcSN~zuSD*b}RC>>*V)=?It76%6xJ!(Vh#jjYY`$juO>puUE
zCL{kwh=e!s^>zLFJ1otVAgv^(+sgnAwty%-PQlBjXUUndoTIb{!c5L%rU&Ui5r6E|
zEmg>4thdZi(hc%M(#Lm!36}j<tY$&d1G^-L=k7NxWkE^$KK^9XCOO~M!-5fmdNLN`
zI%{wC?w^d2y3Q7q@{T@QSLom1I?(GX)!I_Zn6xWh%#IZVKVpeQC-1?*#us+K*TaQ5
zkITlUb45ROobAHD+K~A-EF^*c5_4n2A89$unYW?kH?!G4LSo}sy0`rZ7j}=|TvAHk
zMj13uX7gvM*wpZXzF<a`Yrf$O+GF5oU;5m0;W2j3x!^AdDutk22+CQNtV5(r)f;)b
zwudX(=$i7+nWBRp<4xD_s?QDl+F|njG5<5Zql3@o8d%qOhKbD%n!&G-8<HCI;e+&v
z!*(U0Ux?M=x<s-~=d{&KbZf(MwF2FJCS92Su+!u`S^Hu-xsT|3(6*Jl_UDXC?e>{>
zrv%Cby*oQ{=o?(Bbg-O^?ewvJCp0cK=*N(4zXp>M)IWqek{e{VfvkO<T8cQUG0u7?
zUMNluqxX)zxvzFUYK)Q^USJn96Qd@MSW?!sy?#oo+gfDys{Ij!Y>x)F3+vtZ00bx)
zC^tP&n3FEF)~lF!YIwj0wnlAeYg8e(=lBV=ZLT<u?eIealiUiw$A&f`<@Cxo(ub2~
zeR*2Gji5f5?4Z)^YlA-`8+SN}iwjaY%Sl${T!1BOYDu5P&+^!#e9TRcGM^}0+1>Rg
zKG*g+bx{GSWD&eztkBfVLuuxrOb<v>0rASPtB_eO>T0!vQ@JUy)73)pl_xp>eR6kJ
zdnYZL83)rWsT>{0zv`$vlFJWu4+QE{>}D3|%}e!KmZd4p>e7aSb*N?g)i#gb-Wn_&
zO{?J`n9z|9h0qx<)O_|B)E_KUHLbuOaI@kZd&(k$&>@puS8{^0Ix@++5V`Yfa0Z0h
z?+x)2cWhA^i90UQFL6ixTElYtbmRS8ho)Z{2Ta-ueo%bbEG)n2AG*K5E#9VOao+>8
zf8xkaD8CHXq*Jyi>qMIm_&^?mG_~j6g555ZF}RTbayd?_^-`IY@Na7prnJWIrQL*y
zYcftpKMt^&&bC*4s)`rlSG}V)%`S$8aHoHI7Vr9}=SSQl&wbP(!G;@{$t>grMU9-1
z;WD@zQJN<TAD<Qq7R_KGeQP{1)TlTN!57$(<va%;a}!RdjDnr=sGtvbmxT@UOL8gm
z<m65suRRL1#EGt~)s*!{w;DcaBcne+BnM~cKt?~v;^bQE{F|XBZJa`)ah9ovDbaeE
z<~vmM2Tt8pH;x#!P!!CzO|uyvV<<RPX9v>2t2^sUoq%6it72n8G@+ctgcFYDLnRL&
zq^a=0Ob>&09snaom>pn+nl<O?7I<ZfmLoaDbnYq%@hV1~9qC2<$<#$~KYI*Jk_&g~
zBFTLi!vuG*55b+;Mm5d{kN&AjuXB&~d`srp)Tf_Lm!VnEn-1ngPv=}XY40Fm3yb3F
zjOW5tC#lTplfKjx(Ho~0zhKkFzpJVANh*cN=rj#xRy&41lOAm)BYZ5Dq77!IUe@X(
zI~5xFrTwhnhjCl|0hz%==Y3x#*2Q)eC4EMyOEax{gQGQi^t%Fee~%j1p7wR68dR6_
z3p*9TdKm}?MfgggxrsN;vL;9e<eTS`*tC7TSr)|e=bPt}*wm|@f%JTHTjp%aDZnsX
zC6UJ$%}?{w^i2K5_??yvh2r4#=ghf#wJPGV*~x1C<n_@~idE|1u9ppLyX_-jYAV6U
zf5EZa|9MM&ZpTP!OsNZ&ng@B>uN|(^_C!#fc}|~?^-XNbi#I<DXlDU9JmUd<peXSs
zov<4G>i#gh-zaxYPQ?%0*mA}x;kfdyyEU#nmC+<aN*atc91YA;F>kQ?>@HTIu+UAx
zT4Tb(lW3+WwZz!H<X-DVxf^_Bq(HhFCU~ONAnv{|<S2bMg$VY~zSdfqc8WK1Au{4~
zm7+ByR-|uGFQch-m_K?<gafOW%TyEDdf91>fn5}ffLXnq3|NqINQUhYNws?Uvc-z=
zWQK3*<+qt<s~4nCJ!mbd)kE`XJf%nIH5Ho|9bp_KsodkxU34UU>K?Sjtk!q!K*hCW
zt?>=nxG(sZ<`(H=&<bNAK=4oI;DbiiO9fZx&n5f`JNDplCb~O&SDH)b`m^}lJt;aQ
zu^?0BqVWfe<%x~NX4XSb!HBC~;6W#IVVgzvI7haeXW3CyM}5-!zd$~VV)MU`?}S5p
zHF+d+O~Kb^qE0zs2&Vo#5fQGVU>iOII^f_X@tKM}P~;p&9KF~(SF0M-qUeu`b@-JW
zqqbJb!qZt2zFepBBxVq(yx?q@P*HK?xd6HI3C2E~AjazErYBP+_}94BGjLK0-<+g5
z=DsV_1Nk02e7EUw7De!U1r@Xc8=0w~F7msi1lb{g%y@yKVBvCt@0g+0*96xU2J=DE
zzT9Exl0QB-p^|j*nS#q9N7?7(MO4tR{&qDA`ryh?0b0}ugXdXh8{EP-a@_T!NR9)=
z$86<zoz&p>4(V~HM?i`NGVo8P*B@Zt(i0KE|IOd)ZAR^{QNw2Z^%J$eUHLmi{B3;3
za=aD2bfQ$m-(ll=aD@0Pbo{+NE5cueKpLJj{>Enb>nbekhWFS>hQqa#;7wS`xSH``
z=eUxlhW=&-NWVD0(wM(7wr*dWsa$@+U#<!*Q)4Ituu^Rxf%l!`v?iYTk=jhE@R#RE
zbNa80FB<gIGf^&Lc@|A}2Sh4zS$QYpl)fy2CK&Y*h1t+r%-_&hXGa69`oKF0mv7XX
z`=~`r#onaZ#49`OggYIQnTZ2$F!irXch(duZ1%#nEYnh(!pss!o(XnU&(z0n5m?Q2
zh-fnzL~_(51QADx>u|Upo{pxjWpP84U=|K(z^NKFPjD(1t$`eZkKpZ|ok;oaNpy7|
zA`IO?|1Ii$#LNr909lrux*^Th81+Se%RU^{7akrpi=9Zc;NHP#XahU#=fCbi6_J2D
z7}3>tB!31TJL42YIq?Wk#AV%cIu^Rp&*qQ4JfXjtuFjA|FlTER$PcBdGI9C?xgwFH
z9A(L+L{QxQAg%3OEp_SuUN#f1-rQ@(2!FzjMI5EPL|xaKbvtnGAvu!+uY&`9GVShU
ze!Gx#F$Sr0S<rT;L}~@-)FO@F_J$qwVF+&JkdmMnM1d_`_4$%`I&WF<<S^>w*{t+?
z%n#VQ%Pvg_0-f^%Zd*5KZEzs`_8?=xLuRbQ%&O~D4y8*#62)#g>|v^1bWcOB>ROy;
z?0(P?x_5l9EL-0A4-iFE(RCQfXb*aYTCYQt$&l0jeDMC^7{Eg@fRVE4v5S1-bDt2S
zU8=0Jd~P6OipRy{3gpik&pbwDIFE7I?KY3GVW}e0br&(wqv|}G6~e09g3h|-P<pG|
zr>t&2+VJW=TQm$UN)EeO8=Aq}a9>u@)FE0U&MNAF+nkDrb^XTARM&=}y(Re9VH8vA
zM>EBwFlEv|*ZFrT3|DkYobGPuY^R!`lT}qc6a%Nzc#5bE>!q<LQK3)17`1sklxL_8
z<~v}V&d3fN{WEb!ckz;(BXkB&;c(KTiYHOO*>_5O5=}k(Ue0@Q=X)4$WLaUTD!92=
zIiJOltf+R{<N4DIyj%wB7n2ZvnzL*geh9R)I>s|}GULnRD3n*;E#TKxe%Th+Q##VQ
za%e%XAiV#FHjn?L(Vw+f+!5(_7r`Ae%{gz*qv@%S<D|`9{D=6W!jjYJj_7j+kcgCv
z6PqT+6ZyO(S7xWX>~%$QwME9(yqEYZO@CAI9xv^)hOX`2?=p)~cUAx9x8qIPzwFms
zmB$LxtMZy(t3M$5&JNFxO130daADkD@f*1?u6~~?-oJ`K)xD0r=BQLGtqb+|`93&_
zaqUOTNabJ2OXNa3;W*mQpJE_&Z{bPTA8nQm&{Oz0^rh_OboJX?zV?T4cydURxPryI
z{7XGcl%R%nz1lwpYG`ywvL~epN`D{rDA5bAgGXsM>_K^h<BQTi&3b&@+W!bAZ@R&$
z1Q#&bl`g2@_romj6HoL~dMY;eXIOu~&nm^*#_O<|1q;<MI3{@B&3dqT%!;=gs=SKj
zmmbX#X0NCxG^0m33UY(<GDp^{aZi!%m|dBsr-}MDQ?jkZD0`Ux*x!$k-$Xl<-j%A5
ze4Mjq=P<5Vsd>Q(+i!gsxBS=6NW@w~L}fx$9wI7_Ai`J(Q7lA6^ROX6#si<_5ZOxY
z*<wRCN_!hPn(g&8ixE45hHoKWMvEB()J?wEFt{M(*JxR%Qc6TjQ8VX<_A_7VRb~aW
z?Pj5%Qo~rM{6~wPc@-Pt*WOE_PUg6U#OgU4b9jv}n5P^Z5nu7utbtzgZM$=;wf(4?
zRNuX-TQ~JOE;Vpx(i+~EpA>I?QhmytuW}m6nn<~qjhKe`yyNwfShl^_+TI(8InanF
z4%Nrh@Xr(d@jM6a#UZt0;)wz7<Dh0fE*^N6m)tTg*;>tZA)GB_NZ?!NaaL-R2FJuN
zk1t4?W=V%uI2{^&d#FRwnhW?AUo>j>`x@iTpF-76ouZWUdA1sHYV)mqT>V;~;1SC{
z<YY_%vFw|Gb7Qz-Swl#!o^i5d=nxE~!yib;&zVB{s8|((-9t`cL6H28kcPA{RWd1_
zF55MCP%k0I=?^Pb^oTNt6`*$)Y_WKv+kq<0oylDvjR3ke+|;j;)JRh3G3aPj@agwu
z{Gif)uay^-%p;Hd&4Qd@baAAtwO*3`W*d0!3-Oe?wwmgX>p*LRYtDyXYC-Sd%QGFV
zTALcA_4K#RB5HS#ofx)+Z`t4!N~y3x<^^B%-g=Xo;X)#jmhg&N!us?OHG{EO7<%P7
z%VskGL7TQmn>JCj86TiYc{g-w(u|k+@ak1gi_*W>^keFGImL*$;_diV_vn4jvJMWJ
z_2#^n!=}0P4f>SWOps_1_}DEVMRls2)Q34=NtG`>p_>}d_%?J7of9F<mY3mYg@mQM
zt?QV6;;N#LdP|LI0O>MF1y|hkZ%T61^$~<BNq&g1{h`icO#emKBD7!cC12r8)m7Ya
zglXJjCp>1#@bgF+&gou;>Y7yH1&#f4M$rxjs2$Gu4qtAiRHJBwXIA4;C)ZXxlf+Rr
zpL1{=B^#%2PuC=&_j*n8z4RGWNpSa#+bR|qe|TM##u~m1&(LVUttRyo)lYTB>(j64
zTCnsLI9_&B#TV%tG~Jq9o3T`0@~iZ0n}Kz4eW~(76_sTK!{`NLC#b7)Hwh_C)=lr$
zxM*Z8dhgP%Qn8bVxlUn<G<aI5!BY!6JB2CEmRICv8d6tV{#y%%1S?Ci*rzcCYc8WX
zwtZ#|)(Rs|sK;42^H&5C+xlSdV4<z5mo-t2Vb8@=?bGn8Wf(B)pw0~UGey`5NR9%_
z>T(Qdc%_SnrS_kP<zf=@lD^*RKnHg6eCd~FB9?Xc&mYH5;tyd!GDCO;11jT-R^Z<B
z;T&tF>-q-9@Atq)Y9N~mG!>RPGSm(3^T)nMVv=4>Hiyn5C-_~3+-h^s)X%b9qG>;n
zaeDd0$=cWUm5T4zma2zp)@iKqMc5ZOC#Kv;!ydtbrEKV7ofx}EXO?=&qc~@dpJ$V+
zx!o%Vsd3?2WA?r^ZdT(ga+i1d(=uGZW_sD(PjtK#<4^M0#!Fmu{!-l-^Pg)=#Z|{r
zuB@0CvQ!rrm?sqpSCe7=$Qn+(1kK}w5kwrhnu={7UC?e(+<!h0ItUHXg$lMe`1MTE
z{n3aOvqm|=Q<<cHZWoE`*p%SiE{VH%Y$?X@>xDl!>i~3ZaHn_BWBhfDtKVYPZ)V6J
zyYFKv%SmXZH<*qo_QFT{GU!G9w5IcQtW?5oTlD*^kkWI#p?7X0;c}}flcF|7%~c&z
zA3Euou|iUU^d_cG>X0P;!cROM+f{$^WI3ocTJBO7UxaFI>NA5I+fAv)-37(m)tyx}
zq$Z;_ZIz{<N9FQ^R{+XZ=8r}RLd8kwVyT0#lO#gquVKXc%sAMtlt>N#^p`@8FGY84
zURc~}O**OCOpn661nt*`HFdzT5t;9!>L@ekEO^Esg3k#Qq!}D$JTW&SjQV3moUSg8
zyNq{HkMio!@BU4ne|6Y3uM(-#!;v|aDEnzr{_^>(0-B)yO>NkgB-$KvKNXIP29`Rd
zf7g`$4UdrrrC?NskHq?iRaQ?Cq|+au(LPBPNNa;HW6o%mHPO&Om#GML#ZnO<!Uei9
z&z<Qeth~4b-KNrbEeNvo8dJFkzQqcY?Xn}{Zsm_Vee<IJKCv%HbbNf#YPwp?%3mcW
zT?B+r#~|;H0wZj$p8r^Z5!SRY2i$#qtO_uqB$yHU4d#@TsjzS?XUZga$*J0GtiiA`
z-`Cchji0Yb`^QLBMaD5{aS~i-5`4+qXQ?Dzq}_D12FlzO=cNxKzy_m_0Dni_2^@Aq
z7p|5LrI(W!hCnYFiB;M-Be*VQ61(gWB*tWkDNZ+eJ@52|@?=5^=u4i_WSlm;m-J<R
zRmtun5L%;PAzsdk;6<yPAgu+4f-FXm{hT1*)`HKWp8stNQ>p=gBrkY}9#i&xcSECE
zCy&;MU}ISu^CI)Eh5$nJI8FUj9{uYGd6?b^cRxBN)aGAUjbs8H!7mqBY5gITmPy^P
znRJ#H7cgLd6piG2bPx<$T%Y`4=smk%z&oQ~<6Wp>2itzW6PdzJ9s|?7l1oJK%cyi|
z_xg*R)u7eLai$ZRDZVw2+^7fs>3P0;M4?<~3~;SqI23WK6S|kuGMT*)pgEh>2gMT)
zpw75I>v^ZcxukE$^3@-^=S#n=oL^V6w`2&LCzpBt|Ksglz^f{*KJEmFL?xb}M5AH}
z8f)<O2F02vYEY;rdZM9Po2qS7u{EvQq9lMeXfO$K+#ChPDpo74wzaLT*eb<K+XN^#
zTLrXLyrQi-$IuqFa#P9o`>)yOWG4aZ`@G-x@jT@0y=TqLnl)>!S+i!%%;Svvl-$hp
zljDUssPBfglw^k_SudxG$|r=v__Lgktsh3rrjva<mr1+^%2dIg28OS$itZQ7m4xk1
z60xKxHcp%87x(r0#?SV&H8mVF{bFVc(MGd6u10H--v8cRO2c@!L!Cq0DR)(N9>URq
z-bA{)v_o*@UuE!NH_cqGURxI2>i7}SbQuNa!r#P>+*1~^qAmzIK&&Wp5uer337z%;
zH$GxtiSIo?yfrSlAu;M{ebrkc*^wqf05flFsfe5J?zKR=^ED1b)=ZfqNv$}zJe<>Z
z{m31DlbA2bZr`o~QK3pa@BYnsErK?-sDQLz)o_!9w1;>5Q?&_V+ICQ^^(ShhnP&wj
z3xq@1$#Xujr>XHgF^GL<bccAWo<a`H6ta+RRPhRbY2=(1-88c*jjf^8rQ_GCDowH!
zFizHdx3D}jwgEq&>uI2dbPw@RvYTw6f8sv1#BzcF_vK9RnI@;3p^Y1xRC36sNiK<!
zS(3UdGNZBKE_KL<wPH3Mdb{T&kEYfZV{IwxPMJra$V)W;|0iC83XRbXbasQ*qpaJ?
z3!C?cBO{}-Y;t#3Ch3fEk))AIy55ppei<r=t8b)&di2l9Uq|))9X?}xMs;5SSK%y)
z_h=kAs!pQ_Bt@JrRzT*I?l?ZZ_FI)JHHJH}n(1tIc;E01z62+1Jsr(KApL1d&&;?6
zn;LkLvp@NgkJi|SyZ6?0g>Tc|6KkV@<t4q-s|>L#`^Vv+B~lquALD3x?zm9VPXEX=
zE7&QR8vSkBe5klPmG@#*2sU)5z|^kR<+aO#78B8qrbiLa6`EU2`IfObtVrKKInV~H
zncZe=9~DnNt#5wxz|x-MAA>m_Oct7d<N{_S%Zq1@MWR}9A|3qHAi7m`J?w6uW&Ou_
z9Ir^64r#KV6OP@;+o*T5HfFamqqi|JNkSV_&X=Iz*Qc5T^dKbe?LSMFhJ;q!w^%Mt
z6O=_`{Z$2Sa2WSwaxN7*m6b%3^HV<bq{D{UcF>fHP{zNcWRvVrKr6g}{`+)f4SUUU
zqniH+;nReMbh|&b`}XJ-6RZT6hiNFu<`uZNA7)AR^auSX#&SOWhsb7k3!mJ#1)9oR
z{ZT~H&DvjQt4i+MzUZW;782Jrwy!+XjpV$iU(P!$CrMB39}$85B?8U9(7eMD0n}69
z_35#m|Lev7EVk$m-8Pxs7x`@igMCw14^D3F+&QB2Ux(!G?A$ppJ_#<?1*cW98+VAW
zCz-~9T&7|h;WZRjtpHTcbS)YLSLerrYZ?Erm2|pkgYI1pZY?Hzb>(`Udes8_=#GSL
zZ@Zhv1o!(gV8}hIaoG(_aPv@W8}Jiii!aUNl>NWNTVEeMZvCclt^dd!*YZ(r(?#c|
zO4B+#vV2_Ipwe@LF}$!ITZ0rGRMWm?YEd;<Gfkc{WPET+(`nj$-`#X(qVoM|BdaU7
zOc@R$Q;tm}H&^HG+*}iTcueWI*!&d}+P2^V|8;e00v925#BR9MSWF~pU0%QJoK)$F
z+~Az<dM%<cv?BH{B<0pBhMSUep%Be36pxf>gn}W_wC;I)TlChYqa(e=y+k=~9~ehD
z%EU8zDDjNAWszn0&fg<EgZ-1^UQq&Yp2=?UU|V00fPqbpTO5LU_KZJdrTsDr26c0s
z^1C%2x&6xfA~)Jr!rYo0#QN^|R{Pm>fc()gmY@Da^egt=M!*04&B0QKn-)@q;!w@b
zOZne0z#B%%_-%+c)KqeT^03l_@~t;6I^m$P=(WoCV{PA5Qssumfp)_P!@gXuizr-o
zgHEA|^n4ug(Gbd4>Xb9|zKJLi2->=>yJ>*MinASxd&UG1Or#7>*cipsNfQtZnH$TX
zF9{VSlq;ciM`5ge4?eO$^z>r|wm@{Ot#@&R6<q#E=(s(ViwUQ(mF+sh1V5ZYSmJd|
z$#6yhG7+`De(G1Eh9}Q+g(Lq+kIRJnVmvrKKiD^8so|UwL_8RWl*w}%aax;ySrS*Q
z0$d3*n-$(+%+gUv=$XqGl4d98)JLh}j)Nd#9plc)W(#}+F0kWGZoWuQ?0RTl-+XH2
zni(glYDkms9z4(IDu$a2Gx3yJ95eLv#IQ4m#r9N;jWsk8sSrIAiUVVWG|nWOtJS(E
z@R}hTJEI;CJ8t2<Us>eN(eX(g!p7|@{hG?_h;lKjA31I{fNEH+fpy_10qni##@yio
z`*8@?ATYt#d0D$j-&1+d|0^Oydn?0LVFoX2xA}5sycz*BSvw0b*X~>Ky$>U)=pW8s
zU*HE0S&3@JM`!JhDDy+!ypVpkoohO89G93|fJF#`_ic}q%|59dw>BJc`nG6^r_{6$
zA{lJNxi`!ZH&i<Pz;yj95inB=(?c-o2jjau*p>ajCIaT>c;rs+*YNl6G=1?hCK<@z
z{FR7yfiH60e#(80a`&hLTAq-xk8OkoW&g9!{OgSo46V!mrp}-XeM1^Nh9^Wh!y>F6
z3c-9s#(A*&UyhV!?VSynTjuLp5T&y9;E~pljKHT4N9d5i>9nEu{1VHDE*@@b$cpW(
ziFCCWxcek#`RKcw7wE|gTr&bUU8FXFJGs{9@&d<E7Mh#2sIo~~#nh@oRE=ppX00+~
z&j?nN9SFKe8F(p_uz?o-9rrGqdZAfX4W<jsfu0f9OX3l9cPp+#6f&5~J9l8DKTTZE
zfVx(CD6W$pFu<Wvd9l7bNZkOW7uT^K?9r$P)rQ9RvAYD;m$_fk_f%e4SELtBT$hF!
zytw|uk7`f97y&bJ{Q+R^ZwsxEKW~ksT4$f)*O{mnqQU$%XNoA9vC8u$3~Jt@(B{n-
zbsOCK7+&D@aa8C`N{`%4L-zFzso2sNhwUN>7+5{rEw{=rY4r_Sw;=*<Y_=u@M|eQ^
zVh{Gmeqi?j=3ezk&hOXm3AQS=yTN34-`%VD`_kL9o5isSgm`{D6|Ym6MjSShKaTOT
z@~LS=jT5j^xnT<Ps0$e+HxM3zOR!)vS2M6H^ayfIRxZZSy2-#P!&zi_N*M?yu?&-!
z^;+(T*dKO&*c$PD{}4BkhH1eF(?S}D=t1~IcEa9`p6$y}JN(yoX6N4{+{kXKt}TuS
z2gWO(6*2_bRK6%=h<K6Lm9$iCzP1_=v0JA^K~3c0SwRtlV^ENzwj={pvOA~}tDorK
z_K0))x_zMUf!Lv;wUwc-zy8<rA=rK~Q$sDK>=s)lMxP4XpbERCqv@AMXov}e9}V^R
zPv6p+vloiUbS$K~bFMuvnysJ84KqGJrAB-E&AC5zAGWLoWA|ZmPj%(CX~PoOIb3`>
zWp5q|6S*t#^XwB(olTGTDW&=GctCBf3ZP3&*D#W8e#l?Z_6rd%i-ruRa<3giGrc7C
zyQwT4?c`S5X(zCGgZo1(U!8iC^-=3Gx@W^Q5oyXW%*&}U=x*&rkrGtO0{i=2n{bGB
zt+h%q_M`FNaYPQ1AZu5^D9oQQB<0`fxlpZbUqEzww_Gf^z7B<5;?x#vf5}MoWq>jK
zSgZ;mnuw}`JK;PuBE0Dilmm%UYbjN;CQ50#Y;=dzITTN*wxl*N`ASMu3E`|(NfYJt
zsz9ktZzwCGC~R9f89{dQd3Et5j?-5N=v7@-a7kAu%U=kG%nwZ9pb8FNYuNea1vcE^
z2ry^2M5pBx9|KTqk<gJ+S9bYQ!4xW_2Wuk5m{|t_a(d8k3-^Y*b*)xU_eSJ7#V969
z*nQ9qvd(92S}SrerC6n3rWE#zdVWFgL0rMRvG$Q>$rCsRrVZIS1vY-$CfV=d^=mdO
z!HVBV*5sH{cV604y-dWKEX1vV>7LQC&O59Q3;hk9sHrDQ7t$iX-EE^-VzXFcvwQ6X
z5#~z%H)<St#K6plsk?A&3Nnf*Lgvb;yM6EttM{W`6M%#%wwPmbsZn9lwuy&1kF^pD
zBa!l6YDL7bz7Z~in+ReWw2)h?ddVTiR1NlQtwDO-pHCKQA;sW3_hG$8o1PExRJf9E
zym(BwmDyJ<B^ph=KAOsnd#3YC<ZNCjBr4ZT8?F~?Fab1(T4t{pY$V@J-vVzA+p>g~
zOQM-qg=_e^t7He+_YAVZY*Ri=O1u)9>nWfspjf}WF{Lu-VCy$}Si^L_X(n1$=$4)2
znU@Y`qoZJxXrlS0Ey6sB63_F|jpNXG;S@}^7IQkAnVCR^m#ii=Yn<<~NY3-fXo{1Z
zCngJuUO0xCY-)kflgs?issVV9*gTK5KQ$$s*xI<^zYw^J^z3TKzR4j{RYGxCqBs#U
z4?3vxde*MWFOZR@32w+RdZ`j<T%fM}yF#R=>)k_N^Oi@w^$cpELBfDS2q#O0?pN<f
zN<zV#xm@yy#$<gp+a9sx0YkmVxh_N7^ueIyHec=MLOq<U2`yLus6P%fUNVnbpMDmX
z&__lmF=ezhh3=wkz6^|be^vTj>~!q0AHE&2mkQMC3+EUX?0l*ec_<u$<R77=(=5s5
z<HAi(ffdn9G@Wn?g-PT*`-X*lzBKa1%B3^%2(0LG(6exN_DHI&v`{@~`s=MBked7K
zjn5wRciN)A8hF1no?Y_F#EcPOn~7Bkh}@+XK0M1cNQKoiw;c;&v9@a|FcHiYgC!7*
zMfxT1t^Jw3bh!)e(@94iz=e~wb<&8p@KGe3PIc87U8qXNE#uDE;#>boUcz77Q|5w!
z^HFx&_!duHMTjl8rW(>&<<>z+dv-7H%5jB2@=k#($CXE(^CQp2damY1Wdbx_rN4-R
zoy`td&ONp&Ys-VXUI0SJyFA6jtr|bj%%u{)>SS#pji|D*YUIFhKP%pEcF$&ldxi?%
z7P8BY(>9s>HU=`7m*F1TCKj8n9h^7BY+TUJ;@Ax@F&EIjD@HKDGjx|vzK~GASldF<
z<H6hqe6daY1TBUjIWAX<bn6mLCn%CPc*O0u)az081Y05B;YWdlzcc`t>@k53f?9r%
ze@+|PaOD^JaB<&*U4IoWVF_Jf2|onI6)h@{AEzH<+Q(FuuU<w&Bm0svnZtA-g`%&o
zu``m+WxX>yy?UchQt>J^$aUuWp+WWUs)*6iB9I$bzcX4U+l1G>uF4oZi#|S*V9d&O
z(`Hyf7J@8>5G!-v4{h&-YoJULZ6B4njR{4s^v9I9r!5ae^S5?@J;)3+>_gGwa&D-$
z%zgD%YU;DTG?KF1?U)_Jy<8wPmHScLGyt9%^)w)1IqnJo-Oqe6g-EfrM+(CnD*Md#
z8cpJ4=czFQQXJGR+gGg(hbA@69ZE1F8|&sDu8notLhE~aMT<H*H|?#y(D^5nZrIL+
z&Kp2#<fw?AI#fvAabu{$UV1-*kxj#!eUkcf;*&NbN1jpS?mQxfDD2~YExgJ0KX_z}
z7M1#t%DXn|PBG0{Z;;`X+`Wfi1hD6xilCrAa?0--RbALbi`Vx~4EN``mh0;15k^E~
z=D2}j;nNL=+kN3biWZJO$Z;>LqbRq97lXXqLq5GGf(Ct`<9-9A`=_sNVsxG45T%|U
zE>K+qd05m_T%q)wKLj4#A_b^{sWx-Ny^JkZDZb2&bF6(Ng0DAd{ecyZZ*ge6KSRy^
zn@Ax@GAZgqDpGBqHLT4+L(eX`!@!oWkDx3Lcin1Bv~f3k$i1SCGaCQZATwTy%RJcG
z{lI?hi8DId>DHA--@t}-5IVx=9}%UtREzsgSWT^wI>&>#Xf+0QW(XEHunqW7pu+R3
zBh53UOFT9YMtw5ox)~hiud@6LeExa;s@bUeLAuPquJ&LT_5*t?1gkKxvprbOUn1C;
zbMRIJ3tc-BxN*LDBl_XpK!UqZ;ZG>+$jHOMlKv&f;?UT<K@l0XUDWT}dP#7X&I#1@
zgGUH3xN9x1+ThTBfW6z^o8SvW6i44Sf=}sg7F9=gq>C+i9NZZOtA>N|D&_B)X&iq{
zW-#_(TyKm)+h#!<)yb9?psRICUg$%tM)Ske)2joGskYRTIf#Re7rN=XgB)4DclH9`
z*93K*?`wj3&-XP!Ll56?#cqNKmq%S$#`njH`1Dx4bwvj;!hrqxnMhX{-wzJKyzDRV
zU_~n<V8%ZiaZ>dXkMDZO^ZG$97Gx@~GU~H7zQ4zc$ngFD`20t#iqvEbJv9XLe4p>Z
zHb<*5uyaGOxHa$f+pN;pRzylOyvsZ`k31hqFusq4`90tN$md_suNtTNvsAp+gI&@O
ztTP1je1Dz?%a4kO@%>!}7UBD9-@GIG;XRoI_shT&-7}s{@sJ_?%%Cm2;l?~enLz|A
z-ks3~qo(p^M-PfEfuG!qEjD=JeaM)k-a>i90_?mgCUq<`B>jaCBsGMV-d(zo_jqs>
zUE&Y%ax-r-dhgM%h9zn`^eVS*Im-{;Yog7w-kWD&;f4z-fGSV2<D>k!r%=8ugv?k*
zZhsHi7$q*IEaz#5kcO<v+~jNjLbUJAu-Gqzyi?5*<Wdirw>-inHjt%BaHVQ2RGBSs
z3m%b!V@_!~AaU-_l%Zas=N{c~z^ESGP^Bcq+k?n65N4HWqL(_$%S24pLa}SVLB-~c
ziJsG3ss;|fJ~Ta!+!4XkVxDs?$*o~uM*0ITVKT4I=#CW_Vm%HXW;;=T+I?zHuXx#T
zg}6{1$jWR-V<L{y3M?jvJqpXVSwQ%;G@dY(gW}1vxJqT(XEedSuoz$0KJnz~#qu!`
z@xj(zo12<_-byfC*IUer?>a#zjLI#YD*Al2)V4gCDgNN2<%d1D%cPa!9HMCvrR%y{
z+y~eL=_;mkeei!uWZSjB*{%DHx4)8|;URr{#M*5;1}!U7qd*s5_Z8IMN+dI`w+eGn
z8g80lU}$jP>PwOU<yZ+))V8up*zwykSHJw@QCy^dLBZvRh!*Axq5NXf#4`HF<3fAL
z$?2M{8I?_Z^~HTN+|p3ih1bupV^yBn)H)KkcIFf^rD^*G&p|;Uq-IKai;hjfKUr&h
zb;#m_sgx!9CMJSR1JVk_2g|E3@(p@5K8j#vhMZA<i>JQ78Kp>^9(PB*h-Wsa#cQ|T
zA9EEFB8ip}U;2GZ?{tX(JyiOXPpQ1Q(KSgMlfTv+GH+e<Fa}#49&bsmU@QGx9C1nZ
z>F*!;{;rdl)ymn&pS(J?9;DqffBT5BTN1=B&TWHcT#yMgO%+|*sF0)K1AOF6Fo*|5
zd%)i~h*4CH#K!+_I$I-{+rKN?CO2mwa1d*+N2b)~Ur^<n2ZdD*e*sr(DzE)o1w4U5
zB8vjVB(yPglNFZPeDW2+>AvN7ik&AaGcJtqRKL_%8xM{bA~t?_=KJArQ?Zx*%$FW#
zqE_a$^*@Gs9UIp-#HVPWFIl;Lc}<HlXnRcNOqDl;c(rRnRKNbbyu>15>+-sYq>fUh
zaA66oUIzBit>8^<nlYKsT>CPsT*@j{wD%Nik-Xy2Fuk0<b7y`)FP?6_h;X9Pu8`Nr
z{^T7s!CPu>{rlozeQf2>k&K4w>F?Bd+_~nwxkC&)bCbkP&S%L}Jmr6*@hl7V9aZ{(
z!7XJ?g0Sl3*6QRo*05$Am|!n6v9PiB{Z(9RM`65s841mA>nz^34aQhI*-g3BL@GRV
zROjzLs1KFT5G<vK<cD_4TF`hBT5&9a8qHeveWbL-YR4p{1!L{Tv_x<&Ag5`U=ZzPV
zHBtF=RqWOkRc%yfCvU(nn(yShX^e-Wc(E7)LfSA89(0R@+J2wL(vs2L8kZNUB5K9_
zv&+D=SOC{FNRKjG^6gK6Z)y&ZH7qD->Qqq^6elX5y>3cP^0_$PSk0m=q0m(xu5n7*
zo{Cv2SvBoU#f?p_NsS|lj8)d^)HS*CVlxO3{Jb=gI;)#qsHau8zS~_rvNOTwhO<*+
zSc9`j+ox1aefrDtI9|tLgt5J;lC5ged3`s4g`GKbx%yVUG36NBI}(gP2+|E<c=_ZU
z?pI$?1*5m5e=5Ga*WT!&u17RhODWsdXoX}i;YI)S++k0md2a;HPK_n>Y-RI4+?^-3
zNxqhTR@)Qt0Yvu-*#!2sX{y;>{2q0jxvO|AolkMWuGXsPcBEguM&D};D1;%wi~iSx
z+b+*3v@8=LOC;{}t*wb<7LeRqsHm>_l9?WPQGH+jboFT_Z}r)fKH0B67&@HcBcFcF
z%1u#~^ZL|x@u#a#=APAOcHe=0>YL*wnkr4gd#cP)l{aTJga7T_-cMP7UZ#FMxCJ<H
zqx8+}P7Fn>r~a1B|E2!etVJrhS3I*yZqT@Ljk>Qco|GXWA@?J8DC8z<ba1!>1Qn@(
zPBdr(i>B9Ansp#CGG#CEE_An!^kQ12;-;&bifA|asAJ-YyOxU7(?QI5y+sfFldAPF
z?ty>9v&SQ!efcLg>qbHDVttkNG^jn4u)XB^%4v+4+%34QMBr>K0Kr=6ADU~EO=DRt
z1oaSe%7r%eLk{-<-JrH2;xhMWNwH^jX}Yf8SUp{Tb-6<GVvlB)33~N^Y}T_LUubd#
z<Y0(_uo5jr+FRd%bDeOG-ExCK``U0-g?#06Rk8g>8YQKR=#{8NtY5FYjye!r(59ur
zU1p;Dc!cj1=%I#Fw`G7<l3%_V2`U)ksu*F{bUh({aF-bYB>kWV0kj1OQq-X$g>To3
zF7IEoUCS4J+G~qyz4%S`4ht>`kdz{hSFW8=rV{I8i^mMCYT4NmYdu=y7ALW=6*UUi
z{DPK5>j-!E$31y6y#gV$qS`Z$Symj*V?@RqZI|}SjuMfLYOKd$MAa`I9=&BW8%UaI
zeC6L}9HSuQdZLJjl#grK-ZG_%$JOXoM$;+Bj86`EBHm3Df(LGXR{1BZr0M<n+AaT*
z*vDV(hY#C}#B0CO)x)xX=#~=EobJz30_>{P!ZO36>n69^%CH{zM%V-7410jSfPCp=
zpm{vWf*RdREhuMq4Yl~5?NxStny|HQchM$#>H@QM#H2m_)nmV`5dC*;zaXh&#d-81
zBlkiPRhz!e$2+IA#oqD%DB{-4n#vbuR0pGVI?mX5a%|6bUx|F7v@5Jx?C$urFmCht
zQ}IE<zCj#76HC-<aaK6H?#zsl@uWti(+8^F%zC!X-i@V0le12l3q=-K+V-q*5vQj+
zbx!ZGO(y8v25lD##}Ik5@Ynif=tSl7-XxxYIik4pn#$K_%&4whJ?*N*s8xy7WGsuF
zSQcBlYeqg@ox3HG#8eq&hxz&57!Q*ayT#TezJc7n88$FAofTwBApKOuSs8R`*aAb|
z@HUjEr!S<N-NrA9r>Y4@L1^cjg^<AD=n&QWSO)G9gLPN34)jU$lRqkNuk${IL#@Vx
zW)1@M1EJl-fcCUEX-_+1Lx#WPF)?W+Hb~>(_{x<Zvp>T+$1@|G3So=gk_Uxg*idxS
zD#B@KvPogRXCCx!6-p<*%zb#i>0Q>bZSXzX8fUs!p%j!-9CC#sMXnNAl4;tgRqx*X
zZ1G+9`u3sPG{Z;VmWcDJ_=*yxp_zxe%tJi$&_AgnlT>97pn?j46DcQOU;OlQ?^iMr
zGH@ppGDV{x9A4wn7Pb0A2Md>0offv*f&chj<6kdP>^;8yuh0g`Dt5fKpd(xV36Ako
z{6Q=92y>D+2d$(zzhe7LUSq9u?PF2$R2?e8bt$de&zN#OQ>G=S>3EDGX9;mQ4+Eih
zlZ#)DG#O>C)|%v2u4}>-*VAs>`*;OpYt?-#wgC~%HOjV7<-2wJ`>`ofLRY8z-WQA?
zQnUR@9%)YU*q%Abqv+IgBB*lyMNvVBYFfvh##6I%N@!<g=M;poGdwMHw%_~qx}D}>
z*RjOkrUP)l@4~+LnWsO!mmRNZdzM@3q1bL1$tOYoc>FPNQKewADt04>Rpw|2?A&N`
z`m#*-><~cMJ&)-*RZI79{qf8lzI*PmkB7W7R&B=D)VhOnaAy0DMe4KP4LeWzjxLJ$
zYCKmqy%_1Da&-|}M_U2uqC?e1=o#xLxw<>kU}n=fHQG!8)4{1RcgE3gVNh4TD=Eqt
z6DqH3iF>Bj_tjkAS6t0Jb4RAH4!JeagSSpyIppi7c%1z<fYe;yS4-7bOU>NFE#>>_
z4eP5C>(abEqmJ1En(vl;Th+RmZ_<rpvm=`~!Ft9w(+7`=T)pfOwYyGo>|SSfp*QN6
z<e~z<W8Z%s+TSRiaH0zV!+{A{joNJ6I9agDPGM##sSKVt-zVg2m?*Tl&>I@yPywNZ
z`+YWnvV9TOss};is0MrJ0lDuVwC-3);M<k?+oye)pndg)p(OjVgEW6e5fY|Bx^mqN
zx*hy6y@)?;F0JMC{=wrbRuBQAa*}^THWR7S8RNDw#%*TyysA3)g*f3XCyid;ww_y?
zy@{4BuX&NRLHyohN@sb=%e}XWjLgj%pwZ}V7KcaZNCTKs1cc5MY35KPcnY(wxuC;U
zC0P<dnQ*3;{5zESPuTCh=rL9IqeJW~C=T6Enbs-3pR7Cb^(k)sq^DYs4l&W8M+v&!
zqs{E5ugj2y@@4Ko>dW4bu3Y#&A@81&YcS7`Egssk<Cs{xx#d!|9O<*;w0P@#oEr2-
zuFkIL_IDGHeu*ugmCI&ujMUfz$EVI*JFaEhp0OLHnX8v9@c$0fDfc&;OD;8Ladq<D
z_`0{~t?si@&F8MgQFHYqIfXbisB&5JlD74Y$2AU(FQEYaYth+f`|@#Md@Ft>>?~A4
zN$xU{uvh?k#ff1jDA8fp3w}`BdTjna5dWK3uDv=;z27@ehFhcdrsn^gFx2aKPKZf&
z`TjBK$#;tPG$QLvhGJc^P`S2gU$~}fcA|8A&oD}bRbi{f(+}Cv_43#0tz;Gf6@@3g
zqp<=}c$~7kPa_wiFy$Z)HOg;$iCf`e>S)T<Z@DdJn|z`a3ypp@3o{?!ZW`d`n+T{b
z5HoP`28}Zn63!qC^=j>`>cKdRsy+1P=TTHwEPlq5X@Bx=kFI9PSaQGkhH1ko8)<iE
z#J(53k(gfjAqJy`r+1lnpZf?1(HAm>FnjSbceIMJlO;V~z41ArcX{rdgOr)_CLss$
zZ*}CXx$ES3?kbgB5-Ifg*C_N+E0Ca?p<luyOOJ5Q9O9^WV&aG)47$}Uc!*_0HzTWu
zoEZ+wx?=m&D>mzB>GXc*-KFyWG)Rj&DE*gT^#dc7N&Hg<dw)wIKC;k=lfDvs3T;gS
zpL^<ixpAfgw_G%UGE?W_VF%aLuvddqju^xuM|Z5fR4K_JuLkpGqYO9&fN<7%bEOwj
z3+#u%qTUutK4Z!vxkx`@WlgtH`!NUm>+BkM9(}Al&kA))@rOtuej0jRXU74=A{QL-
zs-MMHf#8hKCW3)ALA+kGls$Q9NK~$#dOS;E`Qh|cP|Yt=!yR9YddWu~AW~exbav+Q
zmK^yv8P=`}3aSU%#_F0xl8e@S4^=)t<;0+<oCK`6?KHFi+iTrrqTI0UT|bE@G3!zV
z9rl5abf0_MQ@OS)>3$LSvLv6b81A4<n)G~C*WE7Z0fKqbWbxo(GjW2)gi?Ie&d`}b
zEc(y_A2n(_pERP?C2tblgMvE-7{=d=CvPya2RC$BQ8(RbKX;j-J8DD7WN^WXA^nTG
z(~3$^R6KRpLS9%N8%BwGloqMwB%^eNw3AwEO*!{1HB*ie&Y&`H7`C#doRCRLe^-hj
ziGd~#cZb+_GrwTD^fDZ?3C^>BeNTca5F_unu^4hKIx?FoaYz2zE5x#_LW!%+3JsXx
zbY5XlbVn}jU(aG*lFeVN(Yzo~hA<}5>C@#P&SHGeo5DDuL6+QI>)hCv8BBkN$J2{@
zAN_&3(o27E|Ijzo>7h;?VInokh^$XRi)V13-1K@x1w6;@hOQq+$AeT`DduAs|N1h*
zj@*`;Ks{JmW+E5<;wY%lyLhoM*b_RAY2E%|to`-DOkx&aIEWDV_P_e)JUy@W&wI3R
z4O9D*{$+5>hn(Q|5HGAimdI_tP*|sYw0&=XQq3MxYFCmv5z0Ynt<*qDHfhYbED==U
z7>Ji7DxZqA)={1v-uL%Gia-#z)da(fYf_iwCX)A?ySS$E&#~5W;A(<IabXR)ZhQwF
zRh?Xy7_}agJ})-sCK{JWuHmS>Of}65&_PsF#d=A+M2kYRzAB(#znaRWv3603#JU7`
z?zNsO(%2bIiM=-`xM8JzsJ;ZVr;Beh4Grc_=2Z>xXqrDk03ejYzM(w!s1xI+yeW3*
zLz#R%GxluO*t6Mf$@gTjP&kqV{(_1Cbff(~(l^VpNS1AYpq%n+0_vJyx|vt)^>_MQ
zxu)rA?U1((3(^vWa>^9DuQ5kbOjQXt4NO$MOMoWc7mrzZAZbbmrDymf<Dlx_#5sr9
z@EkJK%;lmW3+iniaT;RWfQQQ(Bp(YEDQ4X>-dzoP&5$m*wccLYtH7^2sKM4ie-+(u
zXe%%iuOcoZ!CXZZdBM=g8?M}$nmAS<qXd%5yZF9HzyvIk;|i6!cUXX7BppEkhOHIw
z&&hzq0da?UG)66slrlu6+~gOXQhCQc8%eUmAiir!F8>U(Aad=eIyk?W!7+0lP`TC)
z*Q&k2^!#|`j#w+loaH1^!;VV;vr5mw@crTP8AntH7Z(?^$vxJpscq2wnc*B%!m68&
za9sv#z7%WSK!R5G>Vk{+FXopOzG1f1R~S!)9z?!+!_|#5Y0ZSR%rPuDcxSjdo9G)=
zZkiQURwvP+kVnGR)r|G)J|d<`B=dtxSjhO?VWz_P?h6rF!<ig~WMZE%M9hSCzY7cT
z+~C<vD~}b4z)N|0EE=>r`BHiWeCC#nGkQL3Kh?-Rifc0eD_A>;wGNkwlDl1^DZ17K
z<BN-{D>uhlKY}T%Q)4QsE1!$a`Hh5c<x=qh$9#VNN9sB)Z_*nNSi5o4ucd$0HjkF>
zW77UU8$B}NP;#V^#j|s>blCH;)^jDj<deQSCm4dR@=IKjOAVErei3Uu5}>n!L~fxF
zZQ-jMjiCvjz8}3Tc#IMnI9<z4y38}W5gI;q?_I&yn(*tcx%YpR@koKB@(#T>!kx4*
z#|>5Lkgxz@V57|sRP2^-`pP^heD6UUnHMizN&4r=<%WW<Rv+XNvmp;}%q^ouysThz
z2!owQg04LsmEIAqMd+lbtWszm4Bu~!wQAp<o!r1l9v2XvCys$Qp*T|kl<uoIE~HPc
zrcW?*tc<7C3icc=wBO+j)&9g__t!~Agi$~2ON1dbC(FMg>klqB$ba0^7xE1VBgiPJ
z&Hgd6ELUnOZ)Lx1zZ5;+QuVZ_N>2D*1iSeejnSN!5It(dB4UpFvT^xSr`peQ`;oiI
zRqmxmnhV#K&oT_^`CUr|LQBi?#7l?rGXg8cwfLg0@jqAFPi*n&dkCZHjP!XD^2xEq
zSJOMJM8+0>VX%av-raGDHSUh+rt{BIhkF`gxz(3ioYk1{hR_S8Eg$8Z8r)z!b*4W3
zIQ%r(K8?|*Tf$G%?bAqoY7Rfu+oyf>N#(oyJqpjf6X_P)r@nWc(dW7K*je42$Q0UH
znV;VCtKH4locXc97ap^P_w0PFnR0hOUpoo=twduu5jgro31x=(?XtJ5JQx=)wt2Yb
zrpyNj$I-!=hpOa79w=4tkBhMT{7zD?=c`;gjk(CgI_BnA@6Xl-8{M#%-^fna@KR84
zzw=~ujz}My5-dOw&Yovuw6`5&ZGOfS$6;k2&S%YSybcHH5ZlF@8g?slvG2!czTO?9
z$j)?ra2yWo!dUC8bUeO;y$0pJi$bK$lS?Y!g=JFbbSIxNDKuhszC9?e_!tglX}0fE
z4)TFB`u5t?VePA@7Iv?;6dVF?o~&M^{U`X@VGd{QRlYl=B(%KtLPcztvTr!`EsNN_
z4_Zb9=$35}&NxiW`K~S55W6xixs3r}%0V0nJ?I=lzp5)=n09A!dp3pozhT9=ulk=a
z`9hfymr)QMnPrD7*TQDA5!wFymBL)h+S@PYk!|KCuRk9wU8rtJ`Cn9s%q+RM76=M;
zWrL)mkiMr6*n3{dXHCNcb_x!Q84F74hn>d^=LW<vIWrCmrVI(bm(Mh{a$D1$vQgU(
zRza=Hh;dq~lXRM2kxn))(zOz3*fvdDj6u<`bA_G|I+Zn|%$zi+D+D#68lS{0@yXH_
zk%IB<#-TuId{cQf0X7DcA!v0z{M8*FwIe?2!$j)rNQlt(MDA(}B&rFp(ARO+Q|EY`
zO-PESbLUIw%(&2;N_MHDKsiqozI6XIT_?qf2%(W|W~IrQ^peKna#QgjqRn25tg~!t
z7LLi4PhUM+N?R?=w1(67)s##NR7!&=I~$m^8leonOFEhkhDPT@A~RfruqS6OSH~`M
zuMw>n3@Sy$&u`rrBi^rY$|yVH3}V|bfiAX!lEVh_NwiF!KQKR;7&xTsXYO4lyBsB0
z@RfJ>S4e03y;uaX#a@f6HMht_0Wa$|Nad=mcT7n!DpHt+U6hMf%#mV<$KtGe=VDXV
z--^mZDeZM5!$IA0q7c;mXkHEKdnhTDch{W}8KSZr_fOd*z<H&8y_7R2kp3hBMhE4%
z6$aKbHo7l*$c_aONLZ5lCPPROTUtql*BcUgYS2@mJHVrJ?e`<OfzNSYCAV9k28Mm=
znH853dn_P!3qW>jMZ&1Vu}JoNs%H8T7JWgx>r>ZqkbO6v<gMNDkss=G3mBm;9&n)4
zhq3v~W?KMA=x-2ZF<e6v76zrqMfVby2o?ROW6-;VADw1=KG~gik<s(nyCdzyDCa&r
zk&p9cs077*ryu(U-yZ=pvY#t3$mV<Jbq_ZF_6V3!tqd?XNp&Fto+64AG0JE7zT2B2
zm%kLrY-Y$WZ4Jsj@;Napv2zjx6ZF2qaH~PY7ITL!Aj~ND3i59F7p#pZ@)Po@Cp}K^
z15I&95-0?d{U~}&kYV!m(1`M_egEqQcES7z!q(c80CP>gke~i4l4?5!U$&JYOm?*+
z-lq*2{hEH7O|qYWv-{>6RE4hj?(NTs&ALe)+}o!EnM>r39n9pMA$&g#;eCb`aj^va
z-?s76kI;?(W4tZC)&M=}3k-ovr|cI`4PwJ>ZyV)-G3uLLl<WSm8ax$=nHjEn<2zOU
zr;=USFFICM3<6#-;AJlJ<`vE^teNwvski^h)(5{OD(_-_Fl_M7=mD`+HUt$|zaS#)
zyhiGbFd_j;LNb`~QpXmfwUN;hcdbsrL{`c~77Q%Q>L;<#RPSV!p6tnr-<R>H#GOV~
z8d*lhF#=?9c6)czk#OG!^TarkEOJd3U%?J7{OF(T0l(15;dYJdgk2R!>QML9L}P52
z@kcwL?hE--P6>wGtfi0>?Ccym_%m<!B_zy@`UZ(H3^Faf3U_OdvwltGUH0j)anG!z
zyRVH{CsBW()+;8`7mS@+>cd_wR}WXIhxHIwd&3>Th_ZEmiKtRc`yj4GTA%^xhI&yT
zTrIqaI=dF^n!jSRZt?w34_txLqfQhoYCeb$qdfXnRfn68QR3%oJi;;Sy#haiIRLia
z`MK0$)6fWw>ae2g@iAGbA*4MlG-%Lklq)-7QWfrHo1EIRN9fWe5znk!j&VpozY|pu
zh1B6b{HpY%xuZQ@pqGZozw0}j=WdB;6!C>y6K063HSS_uK7jqCAJ}~%nAct>c(CjG
zfi;I<)-7%y5B8;gU|$3bB*(-jt%@gUeUl&b<NW}S2GCtbV+Eall74kR|C8*TkV`I&
zNA?3vZSKt<<UuB9?28Q4d!3)@cG0~mm{?M|ws}C;Mja8DI)7$a+kjyF%rYS)l7&>%
zES`cG^0NM(mH)~1Y?PG>h1lg$ZPkZ=W3w>7rB6zFbQVRIgQKa{3Q}{#n|_KVB+G({
zrG!Mj9-qXOYo<X`7taI5SL0h($ig8ki}RAUS}Ydp@2SK*JMd7)yrqWO*;0e@g*n2V
zDb~$C&-(bL=nlYQ%5s0C7u@6GEU=;y_~8nD8cckkdxKm;*02(<7itZDL)TnayqtFH
zKwYG$SAWE24e|05S9_}@KUE=BJ#QLOjnGJ#EGLUevdU?DiE1g9k=*`L(>}4qgz4Gl
zgPGvEb(xsAv1wh`)@Kn2q6xz#6kpCyNK{S5!q&<uGh-XK0|Iuc`Dr-x2zNnnJl>bF
zxjU0MTS5&My1V4$oJ%>JUM7bGj%1<VN>JLmuCAchG3h8*&1UpZ-<3=M!kl1|$>}yN
zg;vk^s5qE`{yCcEG5&+FX%P^{%Q<>=@@e+fOeF}Tf~bp~*{F-wjk$?j!eO6^cdsFF
z<+#?3*N=O4BjK$R4qQE9Waqd&->urRvZZm~*3QA>t&C|;x-*V3Wek<+SetjCP{yNZ
zs^S4vw{lpPlwhy^n|dYa6|3(s9{Hn=Y42#}Y88kY423U82NMUumF2BV2PdEH+%cl_
zokMb8?A$Rh_Rvxjs_{ApJ>)*Wf{b!$d?TWRN}!Y5<4hsvp6P@**Y*;iUiidjohIjK
z>!#_#X|iyd9OOOr*8VyK#cvB_7TBI6pk%@JQ(4VKMd~LBD_`}akGfanb@7_x4*y8}
z0TY5899{5F1CrJaiZ<w(2~FFBHi2QjsfDyaaY$R^qgH6U%`Kb7*TEDbJ$U)CUQ$=F
z7}SWIwQsrZ^mygd{sdxNduz6h5Auq@ae{D*3pRNY)m*D;f>SQH+SbQr9brWt5MN2H
zD!k~+9^fqf=mz<2eNLVKjLQ4dn_+o~p2CBk+2%799Bt4~$8Nk|3CR<NS@B!0Cwg<B
zSAl2Kq1YJl;5-<?>}cE+U|t^&E-F`BiH$ks(NjdUv79#w(ZrYaBB34{L^2auvWNUi
zVFS9?LhI`+8???_=(Cll@6}KoUN!1|XcRS)L(_Bv7`cOv@{Ec6qNkaT&^`OF4zo)T
zpgnZ;uJaj38lz0LA20LG3~q0&%EDV8W;4y#fD!l5qqfCccXo5F#e(=&ZuqRt<)W+i
z(2^&zNJ?17pi-;)L+getihmaRTVEKxzUwa{5;oqJ8K<qt`{~#s6hbO5#jjB&m3R9S
z-sJKT9$G)a3@9F^MwL)zj{AB&=Z;@)!+hSa-q;@=>$q+}*Kb$k)rE!Ww~gM+JDUgn
zW6k_%tAG)5iYUsCT6_0hQDt4>uDPF6#`jaXD_5wC)93LA(CsIOxXDy;%T@xV>zCcP
z{(zK`$BgQ%;Ka?|eM`0Wl6e9$ay+uJHgk-n^6m@^b|ZfHk&YzMJM$%WyXM`aq@du3
z`eCwg7-)Pu1O4#5v_RCbrlAr;g`g|$3hsU#f@l_8**SwF0Q2VXPSL0NqEB3rH-;x5
z@(#1&#Db}Um_0+B3sf}BiHK^pk}Z35N7u9b=VFq6)w)Z54;eo0(Zt>a>_d+O#jt(i
zp}DkCgtft?;6ZzqGl;QDj!ztn#zDh5qU>S~yV4ttv=v#ajVGVyii-hg^W17y6F9sO
zmr3hS`HO#P9c!P}`H9pQaPTdSrP?h`wtFJDcwJ#lFezV)#VNT+$F&WljDc20mBDeH
zu9Z>j%eZh*HK#eHv?dX2&EqfVtt&|c-=>Ve#8QqfXd6&d`DQGI7uS~DN~$YAh@~Fq
zO*vbC!NXa>unp&=25r!aD-(m2vDWzlP7T>UJ}5ea4w^tv!9=8RdpzKO@}!{X7{2mx
zzq69VH=GrWCF_U;S5azq?gJQD({mMn^1Wq)GlVlTK_c2o*yyT6a)@`Ux!7(1wP3>1
zH(2>BE$$niH6@ZAXKRvg)+C>`(6gH4Uuu%e(%ekm?M^kY@QeE19UXo#a0Lz4B>!AP
zyy-nkjD?BzCD50T4>$d@#s7?W0v1|><ayrdH-5%u{S|`slcy?OX21!VX7iN*LGScP
zL*CFZnM<ki{_wJi7Tccle$1m(jr;jsB46GPy;F*0Y*r?%=I-6dSiutpzPgE03mSOl
z#MBjt&?9;zbP3r}ENH>~0!tN~pdb3dee{D}OO`tfR!Q#zQG43Hi}sttsE<BD6wz|Q
z>}^A7xO5X6%k^x8z=i%b8uaK(VPl_MkgdNnz7j?ju?qgBWb_L|P~IB`n)i48r1F|G
z8P71pd&pX_)KYT0*h!xG>b^=~b-Fs*h#vXJTei*b-@Q=w#LP{y@U(xoMZYQk>z*7W
zguEe9k6DyYgP4nlGd7N=J!Hp=P?(d+Hf5{{yIcw0=b-nQD~ktde0eS2+C3(g>J&&4
z@AgmgRI2H-P8EioY$4c_-4)2I)z|54-HX9d^G}@`n_Ol$QE_anw%+^LGnrm?x$}Ip
zVU;pxhp7X<oSvGJ%O0zNQ}g~n8*{k3;jKNeD7^(cZqLn}mx1DH#4MV*Q#X^xS{IXf
z{Oq>T#k4ySj4Q0}?norZ6;`!$55)aWq7OW45c3#UxeHkwk8TgLDZ9CR=ZAZO)^fce
zXLK;iPu2pV^k%+0%+}Q9;Z5ldXXWbd=<1NWP1ZP^A8Y#!57&QHiBNzbK}f;DqpNUa
zkGcM6y|IyTb>kjvmfkr#7pO5w#Al6qGYGqJ=5qBadk^wHh@Qo92p`>5W4%rheNz+d
zG+%}5(Ld7Vewc3oP=iacJs?FT?j$3x%xvqKEFHc;pZaYGhA*fnqqlcHr?fE|wgsO3
zJR)QRTBmc?2sfI!L)|dtXck%W4=~mXeMW$UU5p#~0bvC><7vV_uzyCH(i&$!*{xW~
zSJSzqu4o&oz8uG~l&rRN#OX{SA!;eORxNdRgf-DUvOK~)EBWqv`)>S)#l@*Zfvk|^
zyXjhfV~g)BhSWsR=A}8BrJF+CIVJ<WY40{*R;1f@ZI5Vx>^=S>po46Cy2m3(8aE(y
zL{F@WwY{vSqZxGIE%p_6KCIF&ypilslCBc8kF=seTaQj8Qt@}sOWR<8dQmg4olILw
zEp`XdNT^XFZk{gPQDt*LcS(t{hnjWb5FUv`%I9FVJ;m!_)72urMEX3%Ae}TFDadky
zvZ)GQQWPIgh>KQ>UK^)=vl*HhplX!L{}ScvdwJLW`k8F~q;f;I1m$KOjG5Ak-MlJa
zT8ZJ4{-;>s%15B}ojhf<Hsp++r((qHrLO_V&^ulp%zFVMb}voZFEUqdGLAAgmP6PM
zHBAJ$Xb=;LnO@0TYcg7w;pOJPVeP49uiTbZ@8p5;%Mbz?uZ;%LE1z5RTaZ6Hs;&FZ
zSHA_X&}~;hY37Fc(5F}~&Z=EBB6VSRa)DaYmdoK;P5W`?qSM>zMkKqcP{&NFv-9a}
zV!Ts%Fa1?0qd(r6|510>uiarF(>1gAd^t9&&hsl|xkAm?pCE7Za~iGCSLLMk5Im?Z
zhbxWZaPIBeRxpAyCGEax>oO@XMmRPqBR1;GqAgYuXKiA;f=$6&dQTR-t)HM^t);GR
z{Ic@sF2kZf@TILo3|A6QuF@5dmJeTYm7ImBt}0VNO?F*rl^R?|gUi+6<E(5NyxsbU
zA~@W|W=X{Pr3&_A25LO*(p!8VYTHBO5N+ES(Z>1Jon1Fl%9}rn%=L#+r90?EuU3mj
zTLpWiPqrQ}So*Bm0#B@-r&$HWNN<5rmq4?e^hPo7qKA2s8J1yQe(7*VzN4f56I3Na
zP>il@A?wwn*dS&~^Gwb_ZC%qcdw#wYo?Qa1?J6&ZfK#5&03MJ5QL;*-_*NYz-hHqs
z(rxzRk?848n?ITD-*3HuVTj)Mt3;VF;Ea;D8yQe7h3=~3JspcBQx)O>R0YF9Mz)c1
zt@JWFf|8AujkMCnoT(5AW-pV6fdiUh1~dakmiYDBxxQEm^Qx%cx-F}AD9rXP<8jhc
zg(@g<isDm=6hB6#{s~fAsjLEZcP4dslrIg0P;BmzuvVncT-K(#G;m|QaBP3F&Z+^p
zt{A*hlS|t6;6^ib(6n!=HTBpHm9Nd<koP^9Zfq-wx2~}8^vc(oHz|l?gsQ)IO-Ved
z)l2<C8LG;6*SZf)Ia>Q%0_G8(RoDY0o5J>M9q!?SJmZCQbt3@<a!hZq-f#5Mba15Z
zD=;luxfjhH`4C)~m*K*G{3p{k!E^}`%%DAfRf)bCc}pZDU$=O_%J-UTcpxP5{igBp
z)btXLyPvt!NK!XpbO#|HGY&}vF`_-Dj5{Y7)=B6A8wgrg=3{e_*!*|jL^vhnPdf-`
zGZi%53*HqT?=a1saiH<;gZ9%SK)v{Pm+NUXsFlNJth=R;<yvm-DD%XZp(Ju!w}VO6
z$2^EF+`Cv$+adT~{%_@GDW+p^ymjL?6<RJ@p*DxgSZ!y#(k@7RU!2IT=d1=QnzvCJ
zNcPEP??p7wx!L?lu*&6FVN-GOAXi<3ojh}gio@vzx0lCrpEUzHHNFs*Ho42Tp|IE(
zCY4tb4ZSrb_QlN7)}ud<=r;?RJ;^7jrrf1rWm9LSPejYPf3ce@ozC!%dZ9P{FM>7*
zpjIguJIZAVmeFWQVwL=<AXv77ozP|?B5_C(U-a28585X(d52TEU2B(F@^DvCdDksH
zU2jjl>u=ai{Xk`m0EYZYElX5&h)kX#L+co}KLMHhIMGe~5iYy^<Ch?FL!b7?W<8~X
zTQ^mS1{I<~MWpK8*&h(g><=9u?+p=D5*&0sBAc``n4#GoJ!nFpaP-4IphC0YOZ4DA
zepgtk8D5BIKET&t<_r7<kzr<drs_h=fqT(qH{9Sz#s7ufaC+8mU@4X(Gu+4cQPRcG
zCPVh#^uA&@^u}m--|j5*{mou_G@WK>pGe{=Lq6{@<&-6#_mG}?Xg*oUd@q7bKmMBl
zKBz8P0kT~nn@w}_t#?0xY%4bV&h^HF8%#xAKiLI;^)G+VPt`5o>|OrPe*US;-|JJA
zzen%#&;0b|Ti8N=M(%dURzLlBFZ#R<SA9zQ4Ea>}f4+D5H}0nV*sRdM8<8(@dt4qE
zxJ&<f7}VRR5`cJec8<pPRKf3ywI2;5?UA2(mCFdP>7Xp7d=2acm#^_=oYaFcPho~Q
z#d>g0`Bm`}wW~}O>Y>~oC@G$qr<nv(L^(WIU^I{o+=u<`6WL4j;Ku#S6FC&U8-512
z|2O~c57eyIP4(h=zrG*QH>kRx<xW*==iS=@-5lyJN+~We>7SBobT`jk#ryKL@`YIY
zZAu2IDt_%Do_VOXhhTPx5@=u*#am&tlZM|=q9R(i4V;pIj=x<c*=_4w2<1h~S_m=9
z2w}pAs;$yzulG$gh!A>k760^vs6z+UFLTwLc1L(kFxUDJBVvMz@w5+GJThL-*lo~W
z*gr{?zp$yhyX%J;rl2g}eLPf9Jy>U3C<10$SV05!>D2%<O{M|8dvY2Tq)(!q?)N{T
z6WRZ_8~xc|pTv4<0H58-<Nj12#Te?VFHy@b<*~lEK8)~2_Qdv(3^Z=2Rh{AX-BtaA
z@Hon_>X+}Q>YFm7L!a?*>i??#eLq$G2luZ3;!mnSHmhCz*=tPD%&g*pmZp<fbmsbT
zsSjgBFYDI-5WYC`P@)I-Q@i#fLvLv1om~HISotp5tiG;W-EZ%M6TV809$M+CM_t+c
z>p#>6zKr|w(=dibr~W3-rq4`g1@nwGCCUCNnCB&AZPPg-WhfytJ5(l|s^O5+yR$x*
zPZE(w?KYr{uPC0JX(dx=Us1`Hj;PFxib_%MnszHIXH!$xd^i8ckmuhKK?%v!i#}8P
z%ggXj#WZiZUh;ATmF-GiVzbuuqraL_t4Ys3cqn!*L#b7+n!$ytJ%~m8ApN^UH?7(s
z=X6qrhQ4EVLCkr+tK@kKlAf3e49?J1E(LUmH8-O{BbIY-4Z6kR+%nzgPW%zX)z$L-
z`0f8Yd-XFtn9|bSX_J~TAdd#CrOE%Ry;`%7mhRqO-QD~Id-b-oW@BDTM)u(TNkTIB
zEzecqlwjSxaMdTyPhzvsR+4WtPG){U)pOTVweIO1&&$bY6c`>d91iV;M?{1&O1eZ3
zE<eP>8xG17ihkbbRC3s;-i1Y2r*~mbyoo$M>;}=8^lAOnRYYH<+DaQp_e)H_f&W-y
zl8K}xCfQ8!ROUDD?YH+dH0tGt{HG5yXpk+`Ad^eM87n*UMVVj_Qy@U|u3QS@T$`GZ
zxz<*?S&8iKvb=5K?L7WhC4>Ok+~@k-<yLKYTze|7Gt9lp3Tv}F0(|a{UUeVnb6@?U
zkoHSS_}D+R+~FEU%Kz%X?C{>JU>G|=<+A*Hrzd#{d7igC=1As`KVG|pX;=u_5rS3$
zI>@fy)r^nL7jX|-)dTvM5R_GvqTCP^M-pyA4_ep*`nZ9z)!F)>=!p<-+4#a%zaDP`
z$RaaE*-}N#Z>rTSC8UZ*+m2r?CQy$;@lt%w!e7+k+sWj$=#L>JGhTwSJVxlfOgra>
zptXQL7?K2I70;Rnt?dCl#bdGfAHqUM-KC1I4GW*H9MgS{$vrtvw!+&=ThxcCqOoCf
zXWOga<*PjNJwO(xCzUN#^cSlryss@)v`3ixfiSmzeeQ+&lFdCetaOpV<=wJLJRP2-
z4>vARHj4L$`1f%25msql-L;;p*ZSN;ZBHGM{r2jAeQpEDa&_(>g>v47fA@U3(dWJ`
z%<aP5`t`XDAe;Lz<qkrToVi?*y3Bp%2T1v-aOuiM+@4_#xeV_!|3Iv>>-)@g5@KA(
z3$(6WE1kAkHp^yr@Cs4uO8$p?jdiyudZ>zlG}d;zPz~76%N&AuGq&Df8`)H&mfz@{
z!*{Fyxa$x_KYgPh7)sNx<PdoDZtDSChm8m9yHcUSaovBDEyjgYjaWema0$lsAl0t8
zSJCHA0nc2%kRPI(`@R$VZ(%ST*D+v~GH8;BaqvyGjyVv;215xTsnz9_A<x0K;Dzh}
z;^VuO4L2EPrn}-`;l|8I{4?7SMSW-W4k=YOp0Rpb-u0j$Yn8FwwU${B?9;!F`0s4l
z_wmu;Vp}|k_dHQ<U=Ljq0i!!}+--olr+p#ou8yScrPLEXW8T)CP$Qj=28cxX1O2Pz
zQad92)`LW~O|zK?S%`st(f=*_4f5`N65dnK*8)Zfp)ZaWZxm~>2j&3*R(9%Is9H3~
zt=0>bYh!H#$>H99m(X4Aht`^I1~{0v(5SV*K!b<p+S_ABLN?3U2^*E~#cq7!KuYG^
zeG7i$7=Bg<;)&E5>^*v8P$nWZF%lb^En^gsNDVqE0b*-GOow^T1+i*&CB)h<p&;!b
zztg_#;7gT#sh+L_EZRP6FY{Vd1_8JR#aZQSCe&dJ{Y7NkQnma_falu=cV(&tG7-$1
zuDbcGCMAL&HQ4L@c6LP~`1xdeebAUCp*?kEs?p}fRI#ELs%AHr9-j!VDN8^F9dS{^
zDFq{{gERBZ#3-r>t}la&#zc~JkV%{0WsmRu&;%=O8id17BndBE-1+)u&lzxW*pB5r
za=_XBT!mp9XAU{(2|AsNDBIQ+=~HHRwC&ZP4~!p%DTzWwB9UqpE$)3-$-+)$zLE$G
zP8Vb6;36QkbI{YKXJ5Y#_LwmGC2hD?qZ3H3@f1AMP&K=;^f>LHw9GI7N4ICd*rzCP
z&L>D+i)TDR6+%YT*#@D<1=kPL`MeWJQ}uPE*@3-#<LeNg7#?B3wfao19O;NEU5d4e
z5~_pK62S@gJhnfTY>l;FOrX#o`J7YLMzOzQPm}_#<K)sm1)n@=XNFiA+HhZN1&V3u
zYgJ#JI)`<JIi>YH6P|Ni1-D1*lrOYitzauROdSHu<_wHTze)*k>FwN*cr0}iBhy%V
z`~*(IZ=X^?5_u~G!gl>Ceu+|VJi4a+AF;Oaq;l>BN{-rn@$XYa__Z*TAwy5{G?w*;
z|2GFY)NtA?Jn88UT+<7xRXw8Xpl-f@4<3jJ2LpYxLo}*`6CvGROGG*_y#^48+ReJ-
zu-f94AMsM4Xyx<ycy5qbv(1i}J59wAb-$-t-S*==)gMzoP#FEElMus>rc*_Ib-0lr
z(i>t1QCw-(cGC2&f9kdA;d4#pyX>i5!EyCE(GF@c5crN8pWKqZMoKcu5!yO+ydtUw
zf|eS}@+wHWL6iz-cTlPYKR&|;>jbYP8A(aWI;Z@>{G4V&-@tc^z)6I+E_r|#cgdk%
z^Iy?dw=W=ISrsi&GbF)FMj7PP_6Q{Wp5wk7LaK0s-030T`$_~7EOXq15K=W8<Z~YK
z#ET=4VtaQmknRHE1`57KvJKk&**Y2|{-!cmrWFHQ%{sG;CR(fJ5Cnt~bl{{&x!RlL
zmJuYaBJ)Kgwd!hpNadZ=57z}DWVTgh9@pXhAio<zW?Qw>kC$J+C{nw%Y66h1MYv^9
zFpH<BRqaR0zDVUg6pbga@p{ev=H4V$qR6^^ts216;Vn7#u)1+HpJxyb=EsK~sz4EA
zh`T&`Vc1mVhNj{KQnb<1!XcP2F<!A}e$yf1vi(w>?@l8G2%P48JJK8*{-=r}Q5L!V
z2!p)j@(3hngygtH2$?13OCIv<C^6yl9Cv64nI-1K9&*@)kur^#+n};LUbtmhB+3oo
z@2yIA{RqSAr6@DxtFFcBCuQcvm|=pi>-I1At!qvQnZ^HL4|#92i;cxEF-V3JE3l2w
zT1ZzL<!@`|$zg#KV}rcVLmtzw>Y+fogm1#PmP8OcOilRhFz@xw2uVwawZ)6AYsWsL
z`t=QwY}Rv63jJu$y+o)lkbjKs<;JGUakm2L{-SaK*GPqGnQL`qyrQ~DSg{eSUjMk;
z?dNO!W?iI4>#eg?PKeK*zmKFIu39$j7jk!cjPzjp>U5EQsZs<==krocbn^#<D`kus
zojL9YsPPQkcDw=dkFlJ|rI!-7uT~qdWXiGw9J;V7JE$;T%~osB;SM}|Yz99@EAYB5
zYAuKYQurG6)6a1Gpc}^pq-^S0gO#h3@1IUT##fDlOVqWpxMGYlDx*RlPRYqBB*64P
zrqoN>X2ZPZ6kZr*n-rOtsVuFl4fXN@xvIA=7ZGD^jqsQVU`3$?Z=NXa9~@Cr`PS4J
z)VQ?txCw0x$j1o|Tec#h-7UXfCXB{w2w>hwNt%H`ECuPbZjTXRD!+`qh5+vD;l9TW
z8a=7(^`dCLYw@gd`2~?q6n5@165Nl&j16imr4{n)kKdiHN!Db2*743<AKZGkDBrq$
zuPIX?L(^F1qrtFMnPJMUBK}BynU%Sp9Y*=5TlorkNyYI3`3k!3b$1CmmA6L}E9%N|
z>q^NrB*aSCsPWTrwKw=2FGpF`Wb<C-c#%{$!Gk>X#Yj`F&}M=BPN`rZUXTo{VCHL*
zg`-1j7b4?z3MtM^c1~%F+B`{n#Tlziy>2962h7JrD=~T=KqV^Q@>}_BKD%|pcBnzN
zf1Mw}&9ZG&0@<<ycQ*r$+bcxYI0vMRstgu}JW(j&$jMPQu^Yc+2xq2Ux_7z*tYv>`
z|3zlrg<WPNOXah%c7F=+d~f)Mc1G3~)L~uZcUuX{0pn%ShMLYiHpDpF)4%t__hbDa
z2ZfMXjeVQib}STh3w-ID&g)B$wOA2uZxI<Du2aZB#?<Yr36>al^wk7CvxgGWHD!<z
z@Tw=H3Q$fey&-)PUJ{BO)4F3oY>phC={H%ekh&4Ay8hwbBiaTcoD)UUSZY*g>|{E|
znn;v49q)d{DCgp8VAx~nuc%b<gxC!a)ji))vlWkzU$>aEfO1?J;R$kOl-Q=Fm7U^k
zYJMFFNyk7_>{>5Ik&LH5=D6?b?x)i$^t*MrP>Qub#!LDh{z#2T@2C;dD_qg_l8jlY
z-a_{@5kab{*x%9(l`Z(zDDr<KcBp=(1b0pO^glHwr0x&rW2K;Zf2oWk-8;--J0l5E
z8`u3@#;0@1|7%F?iVf1Avv^t?{ShCqkZ-6(zoBjAe*B)s35{@r1l#%{9)bgjU`h{A
z7!%WlDxmc*{j`M=^~jWI)YN=G3r_05z~<6?&Q|bUt}JfCo~ki)6Pc>zrA#_#y5S<k
zqRg-P-EsZLzP=p4i!rb_`=?(gCdYrWeI_b0t{QbbaMG&wb0i#q+p3d0Yl6=u&<X}Z
zD<+Gz^pXgUIr5kLa}wsinohFq9SdR2L@=tl^5a<heA7L;i8?Gi^*s(5508dveY;Sn
z33jis*`Y>wd2pm~i^J-DWsHWC9}(|sG{htKWg|h)u>UEVo{{-@a%J3WkW3{urIQx;
ziUr!t4=2>?n+Et>TrvZNJLE~B&=wLPql_iVAS^ATf^9a_p>F*HMjn#;^#>!W?NB9r
zaEMewTj);E2ox@3*a-2wQn_dQ(nvO@<dhd?%j(-24Ueh3Mdw5yp>~d&52Sm>S3h%d
zBvl)k+~@W(_umMgena$(m*Gmk!0J&XKbp!pKbY2jEmDk44*o}#d|QQp{wJE4-*_Gq
za}l;8$PVm>?Ax@$9qN&(y(UtN%~F$l3fa-!>6<Vnnd5)!0rRyq?PY$J^lgOI@b!$|
zUuXEQC-nY$ng9B=-d`vBuRs484BWn@aR`o_s@VLM=}Nv+?Q#4_E^3X>IoXEaYJa*x
ztSt?-Yl0JTf}T#H)f|7{{;;vTAA}RZ<Z@(2^m#zp@k6yYlJ37Rz7t}bZ|@AgRR`z5
z{NXGx;wBC5S_oJ?cwF{wBDi6${n**i3ARGssCAy|Q7=?;Ky>Hd2i33*r<xP|t2x0x
zG4ffRBoI74-KxB`!G3-r52J>k+KfX>zAP0k0kzWMLQuKeL{P_%A&<y}a)-l7g&L#b
zB$0Z=yn1>mbYFb}QgK!craZ;RQ?|X{J5@}5hceqsErlMs&@|tjKui01g^+PDW=56t
z7YUYejsKK(uI4m><n}~zWp#3GBKZy*DXWw0@q9mBz<|En#LYI)`ySdY&{Gj0^^&@-
ze_gT{l#;&Nz`bWK{fY%Vg)eLE1$lvlC^AB(89OxM=wIJaM~ov{Yb21+yDJJ!hF+c8
zS4!?PBO_vTALs3r+s}$X(t|nf8X(;xzMS7hC+9Z7Ja`X3FAW!SZhl|PlF?3dLYc6!
zRVVKR*RH14=M44CRCe}4dz~v*iU)TZXKB_zz#9!&lR53#bfz^fgn{9F>5D8U<4lK@
zu*B2)$<l>-RXj|%=2Q9Jv~%N0qWv!TwM5i=_=T)U#Z8*(4a+lXnH?L)sd;fO){Jwp
zW_;u-v6R)9+i9apx|&cGcT|_n3LkmLM*C212~M+eIAESp_fFriMb<C|uF4l<t$$LD
z$!E3dz+7nmc;y=HtKN|Q06uWP+XssOhCgV(YnMj);{<ZK^Z{Oh-f8`ezMYQ82*?4|
z5lGTF{{%?4L*-=g^0YQvQmXpnb?Di+ujvQzNPg@2>y`g;pZZ$#w6jB1`p7{xC_K)3
zkizkN_olapjJ($PAR~O~Lx{N1cq%St1)?f;`^wg>x#_PG?~w>5;>@nDN<T;3LJbFl
zXNp?h=lv1h-4njLRNiCDBIs5Mp}7N%6;pW+E{-G}rKBcHa;IL0s8tiu5JnUAi+}mO
zu<jLarLL|E;zQz-*Z|MTAoAAM%Uc@&%C*j1MAEpwj@{MjG<uN9Zzj&h2E&81MhJ-&
z(sK;=32e32?ZaYigRQ>p2Q&`x+w98W_paY6V`%T^#b>B3tW%o3&uR+skU#9P_u)#}
zdh(Mp3qXAGWl_}W#49|1#3)te2Zfz)42(}&({-O#9o<d874NG+N-YyYFdp++H%`0q
zQh5uTBE(}oCdW-L5(f!;;l)FlvgW&beaGzhd?W+y$#G|r;BN56O^+HSg-X>nO)-o#
zeo$S)MuzkRIYU*rF=ndh{i{@DW|Cv0`Wg3R8y#yOEO^6+Qp(bg!*lG`oG#h9sF^Ot
z#TIt)rSZ&uz!V`6;!Rth)baAHPnyBbU^ZQ^smyP4X+`fvr=!qBndR$@)WuUq5LuUs
zXDXp()<b%5doWLmn)q7Fic^PQ_S+m;86T1<8i)!pLkeF`B>h1`xBYroJT=E4SV@+e
z62|lb48vz$W}jdBSq;IK(7LT8mO4?zaXBF)ZJD{JK5HMI3@7s+#t0pefxtR5`D?I|
zhq8q!^jgu1>g1RgF!lYK=Y+P^O+(_Xoor(2;7*>d)<jUW`Q2e;TR$##`_l1Le?;TA
zZM*ZR*L1uibJZtpildi8HzxGXG1AZRIHtzu6AVc<4f3De^F1Y~Au^pF;5UO<76okx
zr_amNP4vFI4J!}kyC%x5wqIq<zMflQQWV_91PcT9$20o!=zV~>S5*iE5Yg=B3b*MW
z(q`QKgbycNj$&eG{4sO6*oCWFdZuo1n5s%RtEzeX33=ZGU7c?IHIz966Ev%9^w7hP
z7T@XbzTPxhJ>C#c=?_grhs=(vvrJJW8L)oxGtcmds$3hG0eeZ$G!PLznWKj#miW3%
zd^n}0Fvpb+&d$^u{~DI*UB=qwF`&zausXy0numPZrV!#;g;4Lx^Nn`bMjcOP$NT%n
zBZuh3y+SzG6Z;FN_a*k{NN`uFI9i8tG9^{UpckH~#SPZh2#LSjuqc8LDk6b-NCNwG
z%$dfJ;=VuFFnecQ--`YsGle>8tvDW#52>n0z4`Ksei`l#GgK*q`vYU0Tdl%9o+e@y
zLIGqur<J)we8rRdm2*DjxLZg~Un(v10ag)gH!%tapX9is!}?6|R%mm->RqgQCz8AC
zo;bIzY*rDsPJ@5`@`?O2wWfD0v#_pEfqI}tQcgTs?-c3@vdGv*VM$HpxSRPSJ_>`k
zM^I(gJ-g@E|4V(=`p@*P@1d!mP+yAKuGGBgYe^pZy55B1!O}YYqObMKsUqhs*q;qc
zv9=mPA<ivI)*c5I(T?&_(CzE58%Zq5bes*1=%9J|0^ym{wfB_+qWuAVNYWQamfN{-
z`G<G235DGYvGxWlE>rC67Hb4WA?vf1)cW_2rG*U)Q`1kE!Zd_e0~!7Bh@D#*o}Clz
z1$9RmW!m^rerfnnk@-?(4{~z2TVD2(q4?t_f(G$nsQ#^;{LN`h5YTaHBdrWERbx`P
z^fX5>g3Vkm`Ym&H7;Z4<_im0z&j?Czw-msJYe?;ST&4I1iJRKOMj1olV^Xbf5<Hcu
z>wn##*44R^>bQISrLa-{{>n^=G|uYRQi7@riJiU`*?3&-y>T9w>iKRC9?s{H9k{7x
zv`bIe*>`^|fGb0wq=2$#uEfhnuMdkzDO!w<a^2=t^G!<s8_~<OFZ~8DE~gQRyr{QC
z_R;6BffzD5Iik-~(&zq4=wf5A^c-OYDSPtDf*_}HK#4ujlCs`L$ZJ@A)|gb$W#8rz
zt}0OoWTBqQ)E(t2l{!obD4@+(Ed?N|Qm)d_s9|IoFX-YhqLr6=WhgNm|8$iqQx7wd
zwCPlKv~k<7h726@Vgp-G8*DuLzAEXp|0r8^d&ks9X;O$Gb;`b1im(H;@-q*f2Ea53
z1~Ju996W)OS_hT-NCjWw)QEk*A!H)q>!({+(70CZ7dr42o1vX9v};1NvpTL1{zIfe
zdfEQ~gyCtN4&iqKwXeQzv~Xh_Uai={xkey1BE=Yc8*-&ktEf7Txze&w1gY$7eA69=
zM<B4EH9N|s);R9ta9oGZ)_)me98qSq?kE@*YyM~sbhvK6CA{Qtrb0usd<7p$d#xc&
zS60T_9#e&_+wx~j*E_ew^L+i0_FSUpsqF9^mp^vg)q}@g82f%l*RMEF?C0)-mqa5T
z*#?Eig0A`bDkxR7V!X6O#uV2_w`88QuGkL_f$5k$bS*UW?0WdVCA9S~VQT*p(&y4O
z81V;*DTD(A(R#=GmC^b|1GjCCw$b#eKb_kr+f-Xo%Ajq_B)L{89L_Syo?0fT=ONb9
zhV(pCOP?NeLngyDI3qJwTpxb10|5KP?@Qj2=-$@}aDYJhG-Oz^GaOF#jJ19d9!sua
zGd<%Avp~L#71!xbtJEP!uj1Z`K-ZNf_ReqJHYnB}Q=$(ddSWfjPXw(m@PoY`YkL!V
z03;K;T&J3q#M+ngDIT=00z|XIcAfaF>8UhB5OnCX<j<YAlPlp;d6z~f{pQfQDKvjj
zDKz52JR2)+u852kAe7@Kg<$0Z6A?{FxnGg*ZWe{}Y1q$M0%vvU_o|imVi+)Y#w0zW
zl3Gk3Gm;(SR(x#8eBSz+;>3TfRI`5>JIYlERfNj#XK)KVa4hPIVs??^)(UuUfH}^j
z(F1Kfu`k}glx1ePBx&AX{7`scRRqj<yiH~OkwVhvz*+8aU);A&iNIlD=eUancZc8(
z7Ti4#sHGx^EfECP4KngN<4X=X<>Q8(#~+>>-<syi)Zyk?8pXjT>N^mEerpl-Vd+}f
zP<BV#2|OSXRrXFNZ>>(QN@G8Qze@M-n$x<^y&&<$RkpHIWa9><AJFjhlNz<ox)Kha
zkm2Ay{JTZW)k|Nyn^x@X1}ao~@C{wXPW54>C;{4)J)fuw?H6nNWyqbJJ@k~nsg1p!
zXU-+64jFb&C$y_J@3pu6C3@(Jf~R;^Ftm+XashDLZkdkD!osQ0$r+UNY7<*%G}Xj)
z7lCVj0fz0mMP<`<$DO0HGg@9`#EWz$-gDdHil>`d&SUZ9@KRUzSucpK+xBSU_Lfj*
zF%GJ1)z~#pU#Wd|tw~SOR5d^fJ+`=L^UWBSDAu!l(iGK?ce4E>2>lq}?52yi_(czv
zwr(FVV?fsr+y^_1q2nh+_(ibpXc*32_MsR$wAEea{$=XdE=)y-2N&w#@}^ThVU(0W
zyMNh<2>lzB{=K+FRJxc@4Qk3*vjb%CT2rZ}YoV+0c%Jp^2%eu4o^3eH+#i*i#d91>
ze_iv`%Jgt)+n{JAq!F3+GCHK+H`XjldJ1K}zT&^$=V7^PBrVst&(X<~TTNUI9XotX
z1P7y4j&L|R#G%TXGeb+MpI|zK)1G4YoUN(CywH<B1XZRdAp`#D%aV)ZFrw@L(X1_?
z2RJ`^e$+SB>AlY9g`Kx;)ZIWCk6YF%!DOrI@8CJ=c4-9Jpxy*)%id8<55nf#OJ+>q
zo=43^PLY4kbRXosUbbC@jl6CvJ)(X9oS<uZpv*R?>o-$Kv)yX!%_FQhGSd0oCY)Db
zM71uTjy1Ad45kYMM6E<<T<%UJ#EBj`B<i{|-^zDz-3bwN6~*VEdjOksT;Gm66EJs!
z3i&Tc&z1mt?A(tV=#LpN#3%Jfk=Iu+gN6hAB?ygaC^O-6y<#a=FQZsqjNQUzzi10I
z(SP&+XdOaUY?|wyOwxfjiZ5hs7%?F)w9pV)zBSW=<REw`>-TJ+-EJ9N>wXA?+f!hv
zyswPzONJ`JeJ?CT6|)dc5Lim`_1qTA)D)$ijd**DsMLjihs5{zQ97qz+5hOK<`H4p
z#TM%#5(E=*^{sFG3|GvDh1iK~Avtb-SF)H~tA^J1jHpJS{bu#0f=Uay0($bqQOa((
z@CLndp{EC9!F+c<_&|i}^1ehkSqZ>-midYwNB8dsHcag~H!Qp^{jwCpq7SUh@17kg
z(=55Sp^7^l{&I(q!){n`lfDW2Je?WlvOLsFo~L3BZvv4kuteaU;vny;q%K66dMv1)
z^a#}i1qZ*Pu?qXs#0)+_;NXm<-Rnd!EEw(zqtMKp!1m31`@gg4F-Zf(bp6gf_YGVd
z{m+B>lO(y1y_mP?<xrpC;?4>3UYTt;eVf95`di`TXBtz#Ak|O|NMxEw$G|AzQCGFr
zMdDozv=^#WHH7Iclfpg?32mv5pON9PoAwZ5FFns)UZ9a~G@YNd!rsSGk^T(dvZS_$
zUi6O5Liwq^5t<v%1o1LM2p)3p5E-VAFc@#_oU=DmbA>iUbMM`-ElUS9g7Ws<tB+#m
zQ=cp6*LuNCjf1ysY|HeMyV;uOlc}(xrwiTj!e6#sZ~TP`H{8dEZRyO7wP_~F%K@#g
zk7(IGY})5rw(mQwtY!Pq#shh3+zWM#9Dw>Vo~p7>^oYK-Y~K$rZEFX*I0T`Ce8T?I
zD4@tv>$0gKTnno~LtC~V*f^l;UUG+dBIUpZSk*Xkgn2J|PsNWHJui^18?LcRggxU7
zZ!YD-!G+7*m`U*G(*K_S<=4Xe%f|Q0|DQ{Ckv}$TA9NTv)Jw+dBx7~ZbF#+DS8Xf`
zr}pJc>~7e!AEW5{Mixl#GBX)AuEOfMnv(*4qlu1OWp;(=4NsZ!zIBm)*i84d+r#ta
z*Ur$!N$H`y@rEaTr}{)?clt;njKt`cvXa?}QZDcT8qMmoe548B|LAza3n|r2c-K_T
z-qFQx5!p3kez<Ax+jM5K9a#k}2TS)~!bb>v^Dz<a1S{vbYGoO(RBDGm$nZDms?k2f
zA8a}d(wgM3_a?^`E5j60-8mkO%eo*9n99!=Ys2q@NX+&$l3OR3>&b(C;O1;LEGnZ4
zl_+HPKM2P^5Q8Qxstk)-Vew0SO67gFUxr(iAr)qT7eRZ3GQ7wq_o%9&AdKeho!5q4
z`z5|B+U|*v;aDLs;4P^ZWiok~F4?Pt`RbSHk`%7@s(g1E8>CmMp^-%QIF2_EY>7@x
ztt;LYHk+UjMP|FAStIcCo@@oDMQ}im5dWksk13Tro(N|v!%uyN?~jUPfDLk7N*QK{
z89WgVQii|s$u07jO>d3l8mU|dyy=^o_kFvOvv+&ed<{kOSHdv+>&L06w0^o#ln2{#
z$dd2wA)jzB6qTattC3Q>e$z*OW3#^Q<qxHD1$~A5)sneETr@^03?=m%3QCZ_0ckIP
zNRO94M32eAUB+8Hvv!=7xR<?Q6-WAFZ50y3;HC%kV_G~_u>a})7$uM_blVRO1yAxu
z)$QA$k>`URE-uF|Z-`HNF`oMrEamxG#zf^ZF~tjN?qqRHEgVy~%>9IL9hl+=(WPc%
zikC3}-1Bsd+L@8h%P<_=Qr}zK#zuO}nBwQka=%hVW|7-{P8sI;3^R|2WH6?ft_)Mc
z3}u!fPZ>J+<bL2W`^n5mE@O%Te>bM+(~yKFFx*FUYF2aI^rAGZ*IW%oz$FJo2*{TT
zcY$(&ZH3X(G}djKj3UVik$R0HYlPaL{?(fzU;Gar7x9t0UoMMeF^zSHvfQdv>L{@W
zmMX*bKEsfxcf>T-H<h82RCl*W<I%Ug#;V$t#=;uOYOFH%A^|gCapO@DEKFk!RiQ&d
zEPTKGP)c#Tr*LDx3>$^xOG*W8-!E4xLzxg8D8%@Vy3A@U!!Dz-E?y8pz%*7Z`&!Ug
zy?ab*dNK?Q2WPo)>qUt44JOjP$KU@d&o#S~=ldyg7xMfiFVD4-=eXoKt~Mdw>Zeq}
zsc%Y#S2rTV^K5+Jep+OBp2-u>$Z+<q+Lzg!A&<=$Onhf<v?lp;kMYXIZdP;v=43tl
zYAaW8f_ZA})I>072NyZ)$WKgqwx)9F)kA7>Ikl5T+jo??dj){a&ns|cVuNOn_$<~=
z<K*4YM;%9WYngS9L*>vv?sXz}==hb<)nVh<Vs+Yn^cPL5&&cq7(zrW4uZ)TM1x<$E
z)S$FcsoAc-S{eT0GyMLrNZ*<aKcWl|g&90^jZ=n?_~f4Vm~~jFO*k@}44?X1IEL*g
zOysUjjOs`iYPbs~){9c{N$<x~gN{poq{+$@U7g2$WG7_>`{BR!2zEUbD0Hvw-&e3_
zgct5b1p9GkWLg+qIyN%BD||N*XBH(>GXt}Go{!W$@bE~hO|bu<ERQLbJYKNRR)(MY
z497=xqY3u^!``>YM^Rq=Cm{;~NoNs|s9aWzHh61du_hME0#PQoU_h!7QK{M#TdEW`
z0X2}oCV_QWMWwCQOR25aT5qiu(0WM-62M!8DhO2(Z?mRK1S=pye&6qTW@cwL8;tn=
z-oIWxWS*U8p36DsIp;j*InOP|3?{ysIO~yR{(EPa1v_2kc+{;wMX(E5==Uus6zyN2
z>I^6-?&^@C2Qy??8I)izXNC(1*eR?A=yWRBKmN6g3?kTb-?9aJ2Blarrdd!1DPC%K
z%+@e~CBy#D`l2xd=DA~P>)3;Y<2Yk_2A<8l*8t;!-uOv(JAU@dXxy3A^EGYN2Doj~
zyUD2}>6x_|n5Ib2gsGX{t#L<I&lYV}17!jCMBD#7V>&jo4DQq@kDx%Gh9`Bc_Kn)A
zjgWA44TrZVj!(Kt&Fryru!aRdcq+3Y^5`?I{(b`FIX|6Q^X;s8_74@~Fxg7_87%O*
zU=`w@lyW9an#fu}0+R%qY*IQ&HYo$o<~54C{Xl-X6ir(>@TkW3vU+aQR^guIP%m7I
z?s&e?nyMW0s*BK?KZ11HlvQC8K1ZRsfDd?TCadKGVCIv`s?{?UxP>;jLHU7d0suD;
z=ZL4|gK|K0oQoOCp$&8NC@hPI;gQf*VHAS)*H$4_&-G-2nBI+JTQu*c1r?Zf_4`00
zE~Q5|!{K}SdY;)bC3m2>1i><Dm6-_jv5T3?GF=c3<Y#k^<?!@NwfBp!6OGK`vPiH(
zHa}#>!6drA)i6*0F{ri`tz}a!L9ZCRg=|Jyf3Y8ejP)039K>P0+&+>qW`&0DXFJ#p
z!N^?0WH{gB9lT@t*H+-u(Ia|n4HLm5iWD*h6lrc_dst`1G*;W6v!54b3KxbD006N-
z#m0D%y!eu1j(bZTnGFpGppnL`gSSFApvnb(P#O-_4O;#20$+|ES>tvg;9%nxy&bp3
zU~*a+y0chNi&Td7Tny3c#a{LiGAJ;$%}qD{*@jP;kK4xpkjyx@U;~%GPv^pT_Qw-&
z_jhb2h*fM12pM<LWX66ftu7BG;a!qkwP`~7Hv4#wbB(F~Vhn`+q1d3tqFyL<pzL$1
zks7W>JKyDZ`Vb!FUW&$*83RCex0?BmuH)I`TjuA43~V51!nNke3<aRhAKy}C>bS0n
z%dl^`1pGv78khj^!>$N%*f8RaV#9alJnKrf?viRC?(De`%tcbh`kw^Ygf&rVjpW9e
z5N7*FsvUAjb`-|*(pex5oj0;~&V^eG?$5hrAcBk2B^x$wVW$9omc(wz456W>Pl%1j
z6uL!zWXIT$OKVZl3g+P6G=!Wno6&*ROP7n{xmU&}b=xt!D`;aHX-_;?ePUbTLb$8X
zA_618S^&JGIy67u=3=QOQgL>}%jnRJ{(q5R&_fJx-wf}@yQP?df$OhudBJUnH?lvk
z#MDS^_%>oJiwdHd+l=hD84HAofgbxE!DNCKgnD$5Ky54{Q(=51fTBHS6l^Du)5($~
z6erqZ90C~maF7JCTZ6HotJa0mo5^>p@m6e%0~<m7Ls&q5HrXf>Y_v4DhAB}d{I%an
zu#xD8GK|&~^P|12%|%5U=TFrQC^D>sL{8G4rOPT$(#`x7Xj>cZw7P?m<Zjilv9V}-
zx}9SeqBVsZ<e(&{<f;eQ$f`KC#005=fUTJ8nuI{ctwIs792Wxo{reWn#ik(*WyHMY
z1B>5kLGeWu<gW_s`?EJ&00OnyM30@9$%(${dhBw624;ZO2+5RP`hc)WNA^=}7ym02
zE2v4}?+{v0`TpP%+@XO<M75J3E@wMHaz$^M$Ks=1UmQD^kbk)K=};LzspU9v7%8y0
zMs7UQ=1k&EJSmlEgm7-a%szp7jiVh<E1w^Lip&%BANnHru76b+RM=F32>@R@BEYU+
zZe*b9(4#NLe=ODXe~-~o%r}8evdjtr1f}s>K!sg{gIyUu#;0)PVhfCUuB4ag6biVl
zdO&Yxi@(NYXR(o2Y_w4c6BVisg$j&Oa|~AZu~C2u`!e8DDAO3C&6FyOUx9LXA_}$*
z4f=b5QisJX$6S7t#lIoUTmd^#)+i&jw&0p#krGrj10$N;>G7LnNNsgt3)iw|YcfAw
zt?d1z=pGY+(@tDY?e@3CYUL7M)jw{9^^E>8AcFjGZVp5Aj}ij9Jidc3^BMA5pJhm|
ztt=g|WJ>P$B0Gm5I73_cs{xS@hXf0EYju~fIJATL2)0d-KA>K$Iz<t{gNkbRBDqS6
zL_3;`tfU}^`1;jZcbHxe=iuH}I&A=g1=7N`gcQct-KtRGRbe+Noqg(NEE}L`W3>z>
z(w`-b1q(v8#SN9x3>I!tOtn4b{;CAoI=DsDKOOw^3N6DAR&Yj4Z?D1G1ob~d#EAad
z;?uGa9<9}9Vu8hozFOT&Xd1hEZIupxvBFwgHTBGL94J+HI}+eSJ|glZVi6-&&gvKZ
zVjZ0LGnl`5olXLz<5Zp})tQIgX{>`Cb#3JhNZE{(XG+Rum2wM}X&T5>+e2F=D!350
zSV%Wtf+JtAnP~K0hr2Aa2#>?VeHP6jDk@&~XKsOr*=n)&IeaF|&6p4yEghR;22^Y#
zLPc3fU6qBTWL4H`S5);|XEtI6KQ}ij@EU8=wN+(jYO8|z3*T#p&6M5*!;+8!rp2c)
zDRwbIc7l2gP1J^4+1}RMUy<uB8V_Ml(-+v&)CNP7oJBRPtsJi=J^o8V+10$pYG$LF
z$@vRElxp698Lq8@lK_XQH8H6=Of6sMWs9ul9liZk>}%@gY}q~GOFbQ%XRwg~$!!Cx
zXxscrx-p^!<;<BEGBRHy!eDdk+r0y-#v)%BbK}@Htj8`E(n)s#IbuPiT966^YLEs(
z(YC6`EJjCKFQa!R0Or9bDez|bKSb`E8w*izTxJ)n-?u|wcbfZo$*ngxOSTPEtj+7>
z_wD%IS+)`Vw7Mt62(lFeCK1UtZPsNCUnA^X90Gwg8?EI3Lju3^8YPch9{0R0Z<w?W
zcF;D)RL;|Ab#FjilyOofMoAgP$C!minO8{R*~eBY+Jg&0`5`v^9m?K%M3%t8+xQ*^
zq{?^<8RLT?V=|5~SuQ8LPT&^7Um#Dh(R&E5bOu3&V}AwqZBZ9O{aIE7IH87hKq0gt
zGzRu!UqQye+|%%FtZoIrGxvq=+;>PW+Xe;cD`X$Hlr7$SsdK5NajipMsbnWO=^)Xl
z2`7;9j?}vQDQ}0-rgbwM;%c??B(a49_36b<OF{<FgLPK>_ndUz+GUl)VQTN;u6?KA
zuEt61lh{f|C_Pi?jCVGWu;U*-a?!iRqF9ZD7QI8goLnmyPbU6_lM7`@F2pJ$qX9jr
zE!X2Hxo9QYW40J1cWP`#7`sa!ObAn#CA%}>>nz^f^SEe&|47hTssyZ@_qRG<kw@|!
z(f{{e2gizI3mTTFo;O(^CCUjx@mqbTQ39!vrUy$bx65gLW<(#{wFUByIJ)A(L`EGM
z9RM&*`eyiW)$yqK@lYFf@n<>3zhsvDOFVraUgC0_4MKfp4J=ag#y3D0&Xq=X3=xy$
zcUUTHzJOSBh06Fyhm1WoiaK=~wliWq2JffM5N9P&3qpf9G=ZvFuPyJ4kXW(&!H5Cc
z;w7ZdF%@H6g#crx5Ete@wCnu(rs<@F{r|O~?xchfITg0W)q!0{9IMsM_Uiu5^=knV
z+Jiq1`XWjC)uhZ(zoxUq*zilK@M;hlGR8omj)y{Bn!AJVyaD-j<VHWcmt#S*PHs&|
zC;_I@aVHmbC-mzyYN0S$`bo<`gzlRpdDuxq`}i&0w^6IRTEOaHNs2NJ!IF$#<<fm;
zOX5Vuf&(k2cD+EZu}FM$Lj_o@DgYQj3<E^wIbQN~go+otrqIX^RC}&;K^3($a*dE-
zDVMe(^As#Wg;rHigqr|?kOY-}fpwP_<6>qtWo8SdhvlY-)F^dE=y{Tdkb=;zP6jtL
zrb5Xv*#mBr>LqcaVuezu5rr<dP%2*I=NY@Ail={_DxNN?c>e!_D(+1Ab{20IVo(kv
zu0Vp$QjIuHtLuZ|Wc(+vF0Diz#FKMrK8#Kr0S3LjmZZ_s?kCk~2r7Tr4yT`lWS#0B
z{cM#+kOq=rvT`~YM{}g$sBd!d2k*Gc_{i!*6OvX62V}(=<VGnH<{yn-aHPY}Cr)?x
z85h*@cCyYW@ip-sh+<}qf>GQJwg;TVaGs;q)3B-xe=x=Z<k1}J=-6$L18s2~r2!`e
z@^)VwE286A5go@VW9V0Zl?VzHjJ9%k-`Ij6E?ExDnaovP3kG44PT%y{q?(#9N6qzP
z7#w+b6z*>B`B`Ltb@j2FKRDQqa(N4wI15mD1UFcsEwJRNA;TLRTM$6e{y9HI(HRTY
zsG_g0LENahPhv)<Z$@ltP0fK(bN?LqP;30KH|u)0d(T%QJ4f|=W8tB8j5`-BjoqA<
z*WSKxKi}s1;#>&_@n>x^k%GR#f+4nmw?$`Zk&8Gr7}?)VyE%kk?pn3Q=SWOd-;Cne
zxSG*5`$lPtzbjEw`gT*mXp4_QMC8LBjUOH@0QCkyAB}4KsC&=71Z+#}7Ti=zfZDaR
zN?+W>zy#Yq2vDXMeKQXR6XfAm2|A^n^7y;k6U~_y*;hUH6xF768!B;%Fqn4<=D9$1
zv>wF4!rE;5Gb<S><Qbtdpdl+yi8eOw>mFI(!2ZF%Bm<~KHq<PEOP57J`MZj!v5IK-
zr&V46&kMhinb2yLg)FCcWc?1Soap+-{oS3yB0EM!*4Hc<gV`dK+RanyDN<@|Nuv2G
z|2VQ8g;)N;F1}mkc`W|u$oe){@#F&qtHQyq!;bDIm2nCtL4{`@AQkM%6NFdmp7rD7
zd`RtC4@aSyu}+~ni>I4JOL@_laY;Z=-&U}_;0vDlj4dI>+N#lo<;6u!b4KE4(}Z6%
z6i$rw&KO;rex88<wASig1TZ+8S*yJtKj>#jYsZk^oq2YXe7}({e4bl98$XQfi>K2$
zT^gVcDWy~9EPihe22cV%7s}@{xE!&%l%HEcVSLU}pO2N#v&z^V2F0bLK9{M_UtWRZ
zmSVx_9M2c>v#vf*=jVbAm?EJWnnO2q9&V`Rc>{AoCF+=$kTFo>1WD~5MOB0}Ob<-Q
z)cd<7kpn*MmW3z*zcMRMENNd;62)8#+zLr$&3@9%!|WH%_Cc143B|^sYXH!>a`tmn
z4}_u{S}`3!zbE=ubH1#KM2nCQN@@M*G<<^eI>@e^Lb`79I5Cma+QiItD7Sk>Da!3*
zmD?Nh8$f46{AUngj?7ijL%&JU4J8W?U}$-r6ukO!1uzRPW5M5%g6T9S%p1li*Jqbt
zX2Iz2uG8v9p%6fQsjG0b(T4cnph##Fs={Y}qr%}H2#`Z+IUnJyte=1vIRn2~#ZH$b
zkU$)t-gC4uDHCkxk2Gcgn|@Io@s0a=aXemzw&-;vks~P5g4*Kse2L9Dq(^7zU_S1O
z8fBby_hmRWD|S5`!ogtO7Zp`{bY3w1wde*|Cv#^AJEaBZUZLY`t0+btF$0A(=zIAF
z@A3xObJh4>hC0#b#qqJ;M;ZM~P^2C!%Y)mz57OnWOG6jvtW|W{bMk15?5%H`Klmd#
zOi`_h{(t)$n57>TA2}%?tRr`PnLf#2WWO~{CMj?OU{J&*{xQ&^e}cLt3&5tC9|x^^
zRQ3%_;D94lI!T|mlXl9zaYNkp?(%OsT&DO4Ne>=&Dw&!pJ)|SPn@)a8l9Tj%NlBUN
z5vFqBA8&*+vL+hE8U7HqLxhH5(h4VV&GN^8gk(@^8CqQtelZ0^U(cG5z8<G@#ZN+<
zxeyzZ;&;Ps?^3tP`c{lG@13*Iw?QoEs0EkqBTE_jbh3J$wrWyF`ChEws2FZc>aE8H
z_A-72gR3f6m)WzTb>VZc{{ah>Pl#?3|D`)m_$5gx2`b(J0ZJiVf@eMqlR|jbc_Vaf
zHv_8}(sz?e=HI6<f!nHwsyR+KW@lj;mD-02wL_&C-O^g8^oWc%9Q!_qB@P^Q&?S$H
zF=RTQ=?Qb305A@C1v5{grxyAb8f_;0qlAbslD`r$X8u_q=s&?<E`lcYUq9n;EouLg
za=K|N`*2sBY+W__-!qxBNmHmj2SxE)?Kllmwy~eDMT@;ERezs-MwxEh2pbZ%OUM`t
z#R<TQjq||}lQ3w#M2D)zYH?_elIYsv==zfAYXzG|@7)vK6ymvA*ux7g((g93%lXKG
z?3gkhU7LY6!mq+mY~W;080AlhzEuJj<2W2Hb6n=R(Y>Q#>W!{Blo6haT&Vbxd=xk5
zJXKW1KVVod5eT{eFtRQ{ng;dQIA{VQ72QJ<D}m0^0;{!WfwuFS%$4_2AB=9;l{vbm
zJw4nV&y0%SjMG+ykLzB3F7#AJ>k=%43)H5KGX@?PO5dtSF;rMFSv6S}n;j~H+YyU4
zhV$vTs1ay5vj<HwLpjR;6Cek<s2TJSE>H-@&k#W9DHBEI9TR9%9EQ<q7fOkC$&;{o
zeN*^n7T%aDFJc{q+NyrD7w#nY6m1UUJRzLQbJ*%16YVsG^LLzHHKx1)WPXJcI*~C9
z_KO}9e-KHmYFhs#NUE)}R|?I@jusLBa3<KX3Ij|RJG$gMR-C&}O}0HtOmMjjgXqJ#
zH4I}`2%pn3zDM?*Pyru?HA#!*JvUNKi3P(`A_8hz$`04MlR1|mn=DJA4I1r@4iPHZ
zJQe;T9d#oLePk^A{0qqG?1vXZDWNs|dd$io>HkRuib115g|lD*477pw-CS7!R56v?
z?!ph}CsY<g)*$~}qZ8u;#dBp~<w@j_e5sbZA8AITGQYV1dl*SU^q*LqWPa~%vY}aq
z(pw);RP@Mm<&`MEkmaLm<ii*PL4?kLa}fMDHOH78FmA{#Hpb)`lTTALfMXLf>xa1Z
z<BEbDNZCNM@><qwjs5_zbeKxdnCIl9_9b>3dh4Hv`hmtw)QI{~t*Rf0s`_<fGJf}T
zYNky4&77IAO4$M+LO|7pVb9w9Ci9i=p{~2_x)>5FtQJ_pxiYywdlqdFF78>vU);Lo
z-rxCWP%@e33MSA4FrlGy%)IBtLE3Go%R!2>p3=-K*24=rwNb4{L}JMFf7T&t9HX#*
zGRKv{&kScU!!Rp@aFqE^W~fAzIZ0LXmHU|TT;^J>CaK;%157i5Oym0J!KX5q0v9)F
z0ij|ds7SyIqt?9Z2CkuSSf~n>v_6!mz+3(>ln=0HlIi8)o7e%`UJBaHET}PwzdPpt
zPKW#(pAaU#JyrfwQ9t0G$tLCl{DZMmq@he`ACRR{jE``O)89@91kWc>kzZbX4qsji
z4$mfOtnz-6syv(*k)?KGsfxVipAL8fgjel1B)phr6;2Tqa(TI`0b^clD>U0r1H{jI
zAoiAbUW)dmP?A@%O%9>R&JuJ3=6$CsI}(g6`blKeQWU>oMSo&N-tu{Wdp_YkoP3IE
zl=%({=TQY;wHrR)WG-w%J@B0!tu#Xv&BKBys8)<U$msC{ESGuL^aF~+-rug(f2rit
z&2!Wl!qY_ejt7|lgS%sJ^-;}r*r~rge3Z8Gj!zMdpF`Hw@E4Y4!Aup3SAAbm+z+_0
z`V<R>PAu47yB!_$zaX(&-IwD)i>8?){zh(uRTF80-p95WYy&;3T7G{v=LJ3b3WplT
zpnE>SS7YS83>xFvdeQzlKZK@v5fy}cVsH-++1qn^=+Vy#wsW1(oi!+%QJ-ilORlcj
zpI-4kzWoyl$~uPbr@s*)`1BM+#N8H}r@gfLhgnWipP}@Z@C0%8n=_skb@a4*gS}k&
z@%tvFx|AlG#J89)_}`<@!J(<pU#dem=2^*vZ_Qq7B-t-NcO@g>Ci9z1Rb6+vSM19X
z(R&^fj0O^;vlB|pgHL5g{V=&hK@X{d=AfWt{i4-xR`x3N!Aw{m&=I9}9}~3oxz3J`
zhAAk7-iB5q7j+s%B~iI6DzX@5gp6JjjGiUYZ6(@cZ|doLID=9j1DeL5<1XL`bT)=Q
zSb7lB9(yH}{wmjW@<?Vq3Ns2e{qef?*dDH&OW$Lh6`zPPAMUHd(TYfrqh@r_&0!%+
z5tnGPC)YUyL?4@FUOHTfZNPGNA|b_>4%Ww60IWp7D|Nua0y00sTFrV?q3_*}!<)~A
z0A8&}2ir+t#)ga@_!dfULc+_CkV!y*A$oKlm`+?9wDJP+t7%I{M*t8=w|V86HXs6k
zs#j`6ne?F$VkRu=Bw>6W%YzOmg{+mqF-7rbhAb-sngn*NU?fn)-=#GfrR7CRybH}j
z#o<auqY`cz^jmSR^i-tG>x`6sk#(9k%5RK>HYtB9pmiW62xyEfnt=9dued@{(HJ=l
z?`Tq5-oXh*Rw(^Ne9b9|V(ii2CSYFtT9m4s0z~r!3x2Cwhk#O$n}GZB6{5)rTWi38
z@c}5*{NQAWjUTqLS6<G5?4v22{@B)yLh2A;cnkJ4n?R{M^IjCw`i#4S@sy|4|3T@K
z<TAmcFce|l9GtE|Rd1tk3K%p-*;Z&hetoCA`|D@F5=D{Gvp+8&HL{1{2i7C*&O$H@
zj=Ss}`^#QNfj%g;7m`N%f5?cKuYHSE@OfD**g<2<Nub6U&?UM5qW*v^vCFpY1D=2@
z!2SJVMGC7oza3>H>yOF`<S%4?mwoKmPqPD17-%DuXOy5!(3b_1r%`7ZLJD0HFmIXy
zMTb#(9@f#wA)U%D208=W2ja`I#BV<&O0fs=nJxI}21$(*2XM$(0IRSN+1{pWJPe21
zx8@&>IBHvolcPSH_)Jf^f1~m^-~%8}lj$1MpFs-XC4#9F^Gp(;#nb*c2O)`mur1Ia
zzC4_-Bt$%TyoZRN!ah9=Kc(1@zIKkXiOt)w4~b1`H3zP<?81I@;co>=-$xZoSoznU
zm?FPc|Nde4*~q@-e)3oLgAZ`U_K(KXHK*OO7+EmJ!ZXeM(PCEO+a>A1;0vChv6GLK
z*fLiwt!qivpDw3v1~)*(fa2-qAOG<c&Id_5*lvy2%-!|2a9~?3rDf71U-6?<^tycX
z)!P;IM@2ZE=W-Tu$ss2rO2&j^4l<f!+pSnRIL%x;6fD&4wiJ|<d)im4|0`-k8|RV7
z-D6B6%aE;rNIvi+EYoR62N(U@R-~>?$LVtwI5f^M`L-d9)$(KgZ_DagInYE-y$iam
zOUx|bc4)5iLx??73v(>)aU6wY@_Y_F{pQ`j#$nKq7ThR<0}uWIUJine&Tu3~v<gKs
zQsNU&flu=Ijl|ZUMyH;Z$<z>1tarx7K0-n6HkJekAl=wCOn|AC@N`Z>Rg6k-zQCT1
z&*nMrE5bwOQSNG%$+DHVV33q+gAbYi!o4^~Wd38BGD<4h$C7uvherQX(wFZ1vW{PF
zGT#Y+8ee)EnMh>mzV`NRFg#6cod!{DT|kN@wZE(j_2@Vxu+K7)MM7Y)5Iql*fuEd@
zRda`h9gL7ht+o+w1>2WQ%N+o#IjDMTQncH<O6?6$R|8RnDn}@YoQhI=u(+rdYivQo
z=MrrbMoDkt3(>+kwKe2Go_TI$|M6UU>17`=jP{}M#5^~cs$@wE!GqKRX28qi*$2d>
zdyn>`zvd1}1)(%=#l_ZAZfgsxHAiogt&})rFGE`{Lljtqb~$nmp?U2P5d0}O!9Da8
zeVN=>vcDi!GTb<QBkOcJuE8kpF#6Iu4cT-4q}Z=^AB3(39S}Mq+Mc>`1LPRKEG+kt
z)Bj)>PDbwq>qwZ9xR%<W_|4f{75cD<brd3P%R}O|`ej1kiDRJEFcMinV-SUZA7_SF
zoCY!AdAZ%hgz5(IoGy|cMC0o0d8UK*iQ_IwJ!mK;3-8WU9Kjp5hY}dT2kzRazxJ-q
z!692XmI-h|K#Fc1RNJ~-1xr*=Z~g}>(c)VYE#Rg9nb2j)^rx+2{`V^)i&jA4s8e9J
zH1+RLV(V(9O_JoJ@<NoCPu<wb_!p$dFdO(0N7#612LBSA*=N?BYV#~A1P!D@HTE@!
zvBKY46?)*;>VM8bL&x?84u#ZA$^(^WOs3l{7kQO(){RR6C0hxMW?q9Ey+}>8*%F!m
zF#5k;PLmZz3fEm{x5%6N);u~3t&NX%(z{er%sw+|Ox|jw7<)drI5$_$hBthF#?VJ^
zUyr>d_u!Y|>l;Lu*?==f4c|=3m>pZ#7slOseWZy=-}ycC<_7+N@%Id~8vREy8H~TW
z4b}K4mJB?xyLIi92JPYv3^!>0mfhOrjk~ozzG{?)-y88e`$m>5Oaz=Qo<ZA|W0dMo
zm(>O0+%-=vQY`^N0By1lDesozSM%QE!A;jExGA~)zt)~UeIiSD<ar{>JB&P6qFQfX
z>+)R?4Y47KfwT!F*F64DYS0vbgu$iz9}Ltx_s1PU`TzW*r~IXdD_^U>i@eei2k>W(
zewE@*znKLq7F}HrpUd6Z2N}&#aOJVhAfjlC&;BmSX6|-54tg<Jj+M+W$<Bet1*K)b
z?@C6CSMr;uv95%D@ba-}P`z{e;4*YAfPWrkdKSk7vuuArnJryG>@9oXcQgbsNjK<A
zB}-+LKAyD`+3(XLewGsJS3=zieKoBmh=FK}j){a8uvt~^jFM=Zj!hLM!`ez-gA<`i
zi#1WOV}qW(69pSjzNq?8Op%0Qwd#fUh2D!qA!A}*vC)6+k2o;LNxr<25$iT35eDoJ
zBR&+Hn1?~TRwoBuH=maWY9L>63l}G}U?ONrOK<|V1WqV=vAP)hDB<p^Y6%+sXCd$T
zu@Nnp*zS3Lba+dAC<vtn`0QsF4pkijC_zkPgZuzCehAVLik+0(rzgO`C3|RUY-)k0
zj|(<1<b|WaT#Q+3wkx`k5S38K8pTs-gFc+%i%xkP;{NGKD2PoJr=ml68^GeBgHlpm
zbQ@~C_YRVWWI=zV$Ag3qzh<y4R44N969}YKV3*yxG8BdWrF)8mFrShn)?PHU4BIF+
zXslf{r}AdRUnW}MLbdy`K4liaH_HNK0VCeTSn_Y<ex*xhK{7Gtw`P%y-Oh)360dh=
zt&;S+Wp9B-u092P&Z(2D#&eXXEj|b&pbPUEU_DF?=IkQt)XP37Pi=86Um}e?;92a3
z6btb>XC}C|;g@|eAKV*fjO`yg=Tb!Mx)u?udXLvhA0vCl&4e6EQbvg8By5>8e3y=(
zBJQfE_OgI@YTsB$T=j*G)tudGjQ0Q-Sh<rn=L6Jw=X@6!@S^sgVS%BJjEmix76AO%
zK)pyDObZ*^VFl?6-%Z21$@nBTd89F44sbRP^#?IKx3{$VeUJ{wGx#gnzXx8l^btoM
zn<=WGIyP28l0}GRL2zt1gcuts!4z#|$hIIvs7=SMLnV#-M@<;EvE;QcCt$w%<}JW(
z0(Pbe*K-?p<T=DlG^RA~qcj93#-=szD>hE*{X@#_`xV!WZ!T`$ha@0wRhwQ?w14ge
z$lDf#b2=QX%`nc|c@794yCDx&Rqs%Aa$YF9DK1L};c;V;S!UZ{C6FRkehL#nL|v`_
z3Pm@!zG^nquobu^Ji+|WB;_I2%t)yUaGp3viinqk&ZZ^>fTvgf+T!Wc|7+O}O5gd>
zdcF9~xO=0htk{z(1kK>y9s(4w@FoxbFYs7dp5e<z4BUx01fAwxwARYy`>|cY(l3<I
zltO6e100TWBq^=5_Ceq-Z2V$RNRQbrypuNxMr1j`K((!Rnip4#sNs}>w0Nr{YGP4&
z<gN02@CK}}nY1kBK^;ZeJ?ReB6Y)F^b#;oGav?3;M{owvfTn(@RM!Xh4z>Q?HWX9Y
zZ<S{!)o1(PV6d@T)xT4Dn#1o={gyS;(;uj`K7lg5@E4#w<fMH8`0?<C-Dj|pz07mu
zU?ax_`2|aQ%7M~b9xTv=|A&OfEKwQ;Xqb{X&2j@BI0M%`w3)dqW=%3Y-|qxJ8#kp`
zaxkmOKH0*p2&3uNRjKHu)jtFbP$n8>CWH_;28=OS<^~hNfHs7#@|#cp0j0%!{c~N`
zgv=m(CS5;pkQR;nMUq|THWSz%m>aER(gNl*mF)TL$=1Xlk<5Hs)phD=uDYO{a30`q
zg$1sK851vp=yXEgj`J0xCb^1|8Kf`OR8A9$>fmoY3A6w@GciU1EwYqt0(R~G8U=wd
z5zb_O1pBb{1%biSzFPe|ik{GPuKoq(z%v74Le1ft67XM+b@ZX%oVG&9_PKj%TIPao
zC!xS0ifkug?JyeQx7%D~<0##nX(dyQa0qK{k!*rH88kHLXC;F$0-Y@?*+1RMq_n|E
zW?rH|>aojJS8o>5@M~#=IL>_S?7oRnsy_%4|3cCbif;_iR?LJSQvs-&>H%U9L@dk#
zX=L<_z7gud9RGX4;isp#8cuj%A!z`LC>;7K9HzbLf>KbOY9&*I`wzT3pvYMrl6~Jw
zrU>_fN_Mt8nNXy+l?)OB!riNqeX=#V(hmp?U_-+r*<6+E(hj9Phh*k{EVKbgx%*v(
zh<QGJxzIQI9nkkr)}Sbfzf#f{M6`qz`~}iWpHl`#6YqqgFGw%+%`rcw=8O4!?z0w!
zz9(2XD2hCRMY~A$)fN|&Lf<cmoP+98mF)En$u?Wb6ybiVl5KG(6Z$@EB~z{SBb6-X
zP9~MsS;<t}4^YVtxRXg~mm`^Zr$TV;UKiv--!$w3#&Vota2uwkZ;JWOL+)cQvEU%h
zeEK#iC4y3t^@mn(Aca?-+T$CDyt0R&4cHs86S@WWIch7_@HuBmI{Y%YT+KJ^dzheU
z-~ur8$><;HtbroNDQEdc*+ApAfiOagHdpjEr-x|WAW`evT!n<H)6AECPLrL=T!yQ-
zA0aJX=2Dm*eySXqLf_$96&%s`AQ2%i|Kb-Y&@TO2t8_~bzH=04@Q9;}`NLDbR!`?W
z>Ht%^^Z^7Ok^*u>;XJ?58oK~L`ki23fk2`mlvzlT8lXqVA=4^4#`Nedw1f=b&;r_T
zw=BU6YzV9r{yl#Z_d?(vglz+(Tg;fe{xEAkGz$Q&T!`WZ*aL4Ru59YyZ(_4?hFX?F
zr5VSgNRbdRCNSvXZHR!1zJl-ZqGbSJIhq<Unr^+<U0VnG2*|1FLz-uyMW<rDfno&^
z2w-4Niv$8tVbZIL1j0&&D?p&%Dgv!i1WL~*fqt7HkkHCaAP(v<95H+J69V}GZ~Rgh
zvn01Cj=c8xs=?a;1G-1(!}&OPK#j=&D9nBfu29ki8h|Z9W+v^-JF%sQP$-AA`MaK=
z(j7LHyzTKnQeWI#-zopU>$~1t-_vNs&hYDKuhhG5sKAV1nmPVv(KmewcGCJS#~(C<
z@-?0P?Q~n;l!?CaG|VVCrVH6VxT~h}GFQ{U*5?QYRt-7XZacaf4tvSdvg@d8=+p*h
zmRU~L=@7mdIL~^HK>chFu+(AvL65LT&lmv;@aR*INgI(~Dbsn%hOOvfMk-j~I^XA~
z9E0^kG2atCc$N)xXUw<kBAN;uz<f%V79fIv`WB%Sd^{?VZn~3hoh#jBq%&WyIDqpj
zOVN9rdOaQwpo1|#YdqAx&R2{2GRUr$HEj^1A2>qd<=6Si@_}7M7;k2CiEB_V`e8*k
zJ$fPm#4t2@Hu`0^QGrSb{QW!GhY=q%PY(1KBkvOvn|2T)ads?t<cqok?Adl<aw-lL
zoiLA+_3>Io@1R>ByI|DaFzSR6XM#YyF~x3m0T>D1-AbUSr^z!g2JuGC1ULicz<!D+
zpa;YiB~u>cj)Y#0`F6THZVT0?-%Ww)e>bT}g{n--9i>psB&tI^sEP{tpKFhiDS-U+
zZ8wl~mZCk5e$Nf0v`2ZZw8s^I`0(v<vuck*wnskYH(z$1b<Q)#+wB38>m)gZ&sL>?
zWyu?a1yX^g$+9S0lnUs(UULI2l>J*ofPN?wK>ygLtSm~}1GfII9(lh_@glT1#`7cl
zEQUuQc6aU!Y=cDq1DU%5OfW=`{w%AYLAy_nuEVPDG_96AxA4HYpI%#0F<{}B*IfJ4
zk_v6%{%gZOomtUioiFdZl;`FKnt9rN(d_TzJ=(tjPd##|N0qjkSQKo)r$PM?X=ERb
zC!AGjX*qJ+bB<Ow8hMc-y(O}vJMI+1wMU3p=W96`CGYiZLl9u$wb>H=G^5w~o<xwg
z*Y^wpDCo2>K>36Ea+msY9|PpzmnHmyS(SCy17#kpcoVYV_IO<EbR)*X?Jbzt%&4b>
zBwhE-;tWf4H0UuJWXk@yu3y^K=mKRLA5C;l6zQVq3rFXFWuAVOTnFT5lR+(r5TQT5
z3>TGL`7`LCk;+H^=mWjeN`H>^%D5!Atjz53GM6!&^cjHQA5Os>S&UN6_R(pm3SYQl
z;6%U<kWXcGBl)7$ay?Wulf6n>oae-^^F4ABkc@wd!Nxk@3jS_wwR>U}y63JLLntvg
zW{(ktF#^|Dv<!+M7+|4#bO!hr8x_I7KJ&9j4{~{wHANOJlX-A(5|9*M3Lh|JU^R?I
zj)w5@dJI2o=4E;2#NHftOB$SYX!HUd`zbmaP@`j!^+Evg3-nT;IqGj78?eG0E6kVB
zxHPN%Jwb>D6EAwS=hy`S%p3?pWkEd}ECm*`5^!^B4|A_Y>)@n``5xi<p*sM^a0`rb
zrvFkmMzwD#!}pivyCR)DJJQcve;G=@5WC4+wAxyLsvCXrJ6wfBENR4rif}a^iY*VI
zwZLR&J%Ug+;6<mqV0DOsgMcEfXrBHbY(z&G?W;%sZA0h6nRQC>z{92kifaxANh}!7
z3LgPInGjd&MGAFv$;*K3%iVNiPN_TgX)9Ljy|M6_Nq0P!M7M|*or6XL!$;492CFP(
z3UJeTK<L_8Sl9=s>}l1jf|JehxWS%0-A&Asw6v)nk``==Ujmvq6h|$Vq#3u;^2OTT
z6%2l{9UGc5u}pK?aakoegtDY)NBAg|if{5yk1Sk)AL$mGIOWCJ={j#Oy@XyZ0RMGh
zE}NwtQq{f#uR(d8g)t~z7w)e?9*N;48xliBA~989R273y5_1alt%|`9iP`GJKr=~9
zJruM`10qPwaP)sFCSb+vc4C57%;Qj<Dh&XVT-TyN6$5}I<}{d<R!oM9`8W}isbU^P
zM`xwUQZePAiWTEmG4KxBF##2`GZ7P1F)J`+wsO^|n9Jenuwv5E1)hPhC+wIEiP`3g
z$&{EoKm<EYmc(3y@x2}6mzaKVdfG7oiP_|e2};Z|_*ju9=DQeful60%%Fs`F)K39+
z#sR1suqh;#RxuPh%pCKfUdk5;Ho$~%g5S7bs5~h<cahtDd49sS!iHw>5t#p@J%8eW
zuCN_z^u=ofGm&4Q@<Mv_Lp}W+J^gL0XgAgRSVAPj`tE?YwUz*PtRKa40SLekdTa?O
z8QcEE1RrXd;nZKI>Mx~olrN}%rl<Z7IQIraBZ&I-CKIdUI@Av-w)TU?!2X@?2U8S*
zT6jin40C`|XM<s@-Gj`oNTW{rB6Q1DY8=M50-vo^*v9s-Bz95ihXU!txi$P??e{X@
zz}7IC+H%n=R+~GI+EmU{wm{B;m~smn#Z`}4q1A{2vY#JZAP4XcU}SxU4KfdzR3J-g
zfb2>IkWXV7?#5k$*3=EFwuNg6M3Z?UL7wPVZNi_4_9pzq)dN42ionm1@H6zl&j>gC
zcqjafcHqa01wW$+e<Bs(m&7iTueY|?No{~1-<!;<up;qm;b%q<{Lp*?KSRRL&;vgs
z-0<U_@H5(hA1@aCj3)evRD@p=yWq!SW<`H~0Q?A=%s=8_kFSLvc9s`@=vRTCA>n7}
zfu9j>`0-Bo8STK27Ylwy6aGXh!Y_$k@atd|;U9hg{0N%N_W;{r;peu{g@?FsRIB|H
zg#`>Hrt7daedInUOKh+Z8TwBa^sQjUkXSMFV8sYGR(K~?jCQcXi-i@ViB%#Mv693t
ztY*uSR;xB(h3`#fHnA#nNku{)4v)`JH$DNvg_0Q(ABG-$7~#eT@5G1E4nBCX@L@FZ
zNu(k^lGugMePAeQC4K-t2%5~1IQQ*{@EPOACrG$}2Seh+(1Q;n-1y*~_%PbR2QL;r
zj3z#bRK!OTyYSgW=BL);2jGLC$^0dD=N=J0i`@9s5H6I=koYk4;KK+vK6ocSjCSzB
zi-ixPiBBRG@sY$Xd@^i&_yPDJXfp4?*>XpOPe!^+e$br=J`9NuLk~WTaN~n_;=^bM
zAG}!jFq-%zQV}0X?84_vu$HtBKL8&DP3Fs=A1OW=ZhSH<d=Lsg2)+0q!h=tS!iV|9
z=2?!d-x&@*%ualqRDur^yYRV^8^6hKNGAAX0H1?6`0dErC)15jriBke!3UuiA4GWY
z$yE3-pMy`PgAcP4A19UI!^AFpZUbv6eDHzolL>rIKVp2c-1uZ!_#hN~5PI=Jga@B2
zg%9&N_+&ZwFgx*aQVBjx?80XaSWDr955x!iaLvnb?%9#GkKc`t-@*r>;DgYM4<bDH
z_!U0P=iuXa@L_i1<D?RNnAnBSZn?{u{Du$2#}9mBICbsF@Cmr_30U|b6nqeR@j-+K
zpMb)L`5b%#4nE9Ie4JE*4->oa8S3DJ55y+`e4fQ2M@NQF(2Y;f!Uv(?gV2i)B0Ts6
z6+X=8;1hK4VRqu<q!N6X*oDtzu$JOCd>}qS;Pc6@BgLo2jZck*4?@8Qp%))Sc<`xF
z_%NS?PmO~QvlAaDmEgm~E_@b&wG=-1KzwR|&!8j5CoMf;zoElX{SRkO$kB9Wx&~q}
zt#ECIJvw|6kfx<e|HFI^K5&l6Kul5#K29pZhlySI{2i>N@WBV-gA>us37;Nm`=n*K
z@xcj$f(I@svce>MGLrDgQ1~EU0-p>AA58GDebVey3LhkP;j<G>Vd0aZ@X2U0=YMj<
z_++~A$+YmvwD8GHZlBB~d@>b2$d|w;)4>PX1s^+=!Uu_6_#B<UCsW~**<?O~(_4>B
zAEafu@qxoc+6BHyD@<yitR#H06h6q8z$eSW2UAdjkDW^4gTyX;#(=e~_Q_KCWHp&@
z;f&lP#K-T(2fiP{15N-dOv1;XgpXh0gM0~m{0=^T3m-d`!Uu_6_{;`tS@>X}M)|?Y
zv+N_sC*Z~>VBr(6@ChXITObLafWim)68Hohe2`t*$4;g2L1Gs^_sPM)LcM^(CxGz}
zj@CWG_6fT230n9BEqsE>_ym*i2`YS$FM&_c!3Ws|A3K%82Z>$yY?9-b1)re8Cy4P+
zJP98IzU@8BB4&EUe(_s-oY(N^(C-KC=6a6URr_>fCY)%I({g<{FF;(;SHo*9Qw<@b
zckYC!u7_e+v4J1KlIGxaXmT9OHDlHULodS#f0%Ts!Wuny9csQt%8%}J3M;|HTzJj|
zEcGcd@-c)Sp=L9R4uvl-F=oM2cqsg1d@&bbq<yt}vIG82xBxj3$aN=1b(TI1dj@e1
zmL7dakG_dH3R#e1%+1nI#qt#7wTg~@j=4%4@L}i2{A50%w^kw8nYpCJN-FLyo^R`#
zF9N96)Ij6_=Cht+0hplS{RNn#G0sB^abBSu?e_%dPh7AsK-}dz<|sjAuE&PEGN2FJ
zp%23)O<&2b3O$NT9G0GZpdIVb(I!>`RB2CJe5B(>Cj$jUS<r%D0va_*<f@Gj$P7o2
zq?W0p$<M*f2l{Z@E5fr*oEdfBcX3EZdkb1RX-gS!0xoe*{wQjYUocaJiWC`|;Lo%u
zY&AMyvZi#3rf1E~!1T-y0}O1Q06n2*xRMnPVlW=(9E~6xx4u)3ItGB6+edH-1z{(F
z0Igc<<<y@l|1_r5QAqX&y^cu>e+P4d!pbVE&~>d8n_SvUFV&3vZcoguRvfK8YH9_z
zrUV<`T3B~hllEv^>wf?*IKuJA175J5tf%LaM}jFccUT{1-a13Aod>^gfdxQU-f|ms
z2`zcxdW9HPQpHaLm$(yH-+5CSY(FgOievJ_m12*!0P|Vp+S<m<J=&~>v~umb_2t?w
z-}|6mxmNh^2FwQewME-9;m@e$W@JtlY4tPIFX*giIXkSTh_w1)8EGuxHT=DazjyH$
z$KPl8+mBMS@0C(_^?yKxgC14kNh?)&`g1BgYn=*5z9M1azc&z+O?+(U<9$9p;o}QF
z+V>P|*A-{gFbHKWV=yIa1%qi>k2APBtAWAHtQH30tQ`!hvf9dvwOtK-Y~W)PAKUqO
zpN~)Y_=1miIoUJbqx@V{)*#Of^4uiP?ectIo}b9`3wgHh(XLCwpYF$_G=N80K8j-z
ze6mg=#piZ>oF2quMkyY%rsFYhmV6;7#FbA118j9)4Vn-zX?0v1BXxZPsQwqy?^=sW
zcD>BU8+^RO#~MCf<f9RIyphoars$MWDj-B)nEvxsIH*pAC&g5F`ma@Z);%g5dB22R
zVw5yCKH3CNGzy+&`Fws`9sy$Ch&lcj(tp!t*p+>#ha!9TEC~mFM?w!-!J1^{8Dwfo
zk`g3s*A6rnWPR6e{2fRoq+O5O^&!gGg})EVwKs->Pj+ShQ~(1YsE;*IgYas*TJQ%w
z<5mp`C1L;CwHc)x-Goe8NDk#@p(8p4k2iYpn65Au**5sg|I(&~k3mu$H&@}RUEf=`
z_XZzs@4dd21%$G8sOWXe8C{r$_`kBi1{9MaU6SZqTdAHiG%bUleZT3hw5jhN`^TT;
z#~ZXE-0E7bN3rtj8VX340)A}gn`ZyGDs=&Xc^F{E2F0O(QSZ4`{|i^NY0KFIp(d`f
zMPE>bP8&v%#=ZwV2fD`iY$U^en}BoFi`Bol)8oGHsbWdw#K)@SIo{-n@^PAjRX!|1
ztm}(o28QM5c{AW(<}7UySN-5uaQ3fiMt+=*{!^>{jU9D42;Uul8vZU~+h4&)Ihjy6
zu`(aOs`JaWa3lWE*kQ0ucrRLQ4gSDN+t-$BTUv1HYEX|f<F7Ti5K}Q&2(@AzT;c?v
z606XF+5n_M7vGFOEIKKAE&QG&FhYaT`%f9N4^i53$q}4A@`Xd!b;qBEzl#ERToHKT
zVEEk^J_vvO!t2{Vf8pSkH<D{?Zx641Vc%SqiJ-L}HK&D7)MLHh0;)J(>&;-zp?z~<
zdHew9{qLKbjYT;6u)X@`kEBwg3IJ^01q;Fm1D?&Fw!X;*vf5MDPgl|Qfe}EHIxmi{
z82vn2L96|4I?6BFToP>wX`v=qa3J|Jh{LZ@TK%0!STk}?nvi`WqCrm~ILHWb+0v+=
zMRI9%`;ZXd&LjOVfX(3j+Dqj;j}3D{Ao=S~D=!=C0ydVX<frk~CRa(sq>+gey2I$*
z@XKF$3NodDsN(0y1LL#Vk39I>=b!rqo>`SRPp`XfXgJiYLK|-sci%VO2=zeotq%uu
zZN08-&<h%M?b!|bW>b&sfDbA2TvXLw5>0Q?ak6j$PW#@h{k}n4-U!wmt>U$3w&L4O
zy$7Gudx-Yi22Y;II;{O}&TriYcmntpzzHB0WUcGK8^_>p2>!~+DAxtRBx}GR4IpcK
zd&L<qydEaMtW&QzQb{qYO@}$pfm`CAV``jSa}QsxLq41>{sO2*zR_yWLxgb87;uli
z`9oo#)5t)ZKhm{VbnR8WV6Rp?1j&H+tKc3z@*(lAK#brw-lzhFz+W%p2<`5|U$Vsx
z%a^BO*X$BYeY}MC@$Pr366h1z`81RK2MtmZ{W288UL9_%a+#V+pA@y={)fnyel4;P
z9Euf{8FPn~%dxmq2DFzOXO|a!8twxc!hyGC_O6oVZiKKYG;B*r^oJ1Eeck4sQ*K<A
zZf7}^lx5D#DxzXnxiL4ryy)%lTC1=*Pqc1E{>-_@TD2WC&PHAL+n<-W?!xCDbH~C=
z9+0jNTVqV~eTAfws;`wwi_qj^RK+JoxbUl@x3${oh;crjkC#@A^7duT%~hxUP8qOY
zH_q0JKGkZu%-TuG<9S;@KuT@y`F531$3Ey9++8g>!u_4pdt@01i>YXZ%ol>2QMD{%
zQMA$`ElASJHLCu(XF^~m(B2>L8Ga3bxWUrevK#Z`BFVLnurxd09n7~C`G(B>i46#H
z75mzxloSQ<-eYMXEpjO{{~Kwh6}F+8t*B;?Q_XqqY6_V0@2Dm)_iTuP0`Fb?8t}p=
z;Wr@wdk7trq|^HEk=MV(P|^-<=#Z({w?hg^k^d+QxH%22EPh(y4hY;1RPeb~!Q*y<
z-?ugx*|#0&FY9kHK~wunu3U-i>#aquCg`yWfBD{ZZJJh#GuLR&6X@`O&q|sb;WSPw
z8HOI`oS$gDLq!`Z2jZAUy=d=j3`@@W$;5WXX^Tg)yx4+vJ^j@<&JDq+H=(a@f~16`
zXUubniRXI`zX#%Ql{sQmu4~uA+L&(rVZ?@R#IG&=8`9{}y?6=C9S5y7xJ@r=o{bZ>
zn*lZqAJMn3Y0qq`$SP^Z0%yn+JC}5bRUu6q&7A~X+3at9u4d%rU-rjX_Hn5cB0YG=
z+MV;~t+#28mjT-=PDbKDsOX(4GZcNt`{^h&oLw8}zZum_rC*jr{rCjC3rDg460qp8
z^OWs%0zmnW3ly!EONMwbJ5?OAi5WJSti}%Hwdk9hcQ$_PN5NWcu9ZUcjQya2<LBD_
zJlx>GQ|&EtCP1U4Fg_oX$}ma_og;P={suUcjAfsLtm&Jgn-}ihb@P%Xn!Y(IQQR${
z?6!giul=^n?Dg8g_GNbUXm4mvEyqgD_Lq0(3@z*3u>!4k2OcH|^u4iO9OHC22l{c*
z9_k;c>czJ#tQ41zI4Gz|>(fK)GtQ5{0RGr51^+MVFqH7N-b*iO{_gC$K{Lw0|GoVm
zCH{{K{x{_zSspF>l1dzwIs1!i#cafNKK1JGr309F9IxUqtSQ1Tt@eBB9aCNd@e9NL
z26l{EeK!>kx8-{r5-mJX1O1LuBh(946yfDuJZnZ?y$3y?R=XJA_h{8U@HY;_p6YQJ
z-BgdmAf|d;kdIP6rt>iikHsvG;W8^+VTF%dVS^R6Sm6#UY(uCoY$X8t!e$j55O5Y{
zp;wdJ;a)fhEEe*R=Zrb$y>O_y2mZ!kKmkbjn2!84QcSZ71h+YF;9Kz!*h+Xd$a94}
zYuNwd7k1hnVh65AKEm9=Asi_E!oiPv;15OP5#*z@qP0i&Nm-qg4nlO1ZpA}tkhplr
zGI_3$=i~BhkY|fLcgV917C@?Uf!^1o1sS|06c1^`<`7Vzc*s8fXo~j0&##)wqdm&;
z<51I*9!rXcv^TkV(&9(1o)^~%Ir1@*ofk~i?`H$z0x_I<h}{eL1&+KPzqHz!>Kz<8
zN&Nyho~eF;8xQ)B+UCYP)r;cBm*Hst!gtK)N0S@>%;GViuOBOna)8TmE6>{NYi`52
zMqur5pJ-dpeShH&vv7AzU+wu5(0Wsjb&9;#V~>761*nckA~jju26Kx8>xq6mE(+jr
zc|IQHK|HQ4#iMdM9t&pCL0V6?;*Xn!yYb^UE3BA%g})K=K!X+YsBk!9R_?H3o+FQ2
zO?LsRtG*c3RbPSXs(*&+s;@(J)pJo@bv3KAWC=fRv8t>7?Fv;?_3y3fs{h<z#XM$J
zSG{V774v)>eo$OUsn|*tJTEj|Iu5pd`~VI7=x2KRn>b8gtACWQvOVFTi)4Ca7o0(#
zW`T5HK}zr&4x(Z2=)>L?RkV_s*zk*c;MYyvZwd`=2hW7SGu%u!>@yyJx#(f5v9RDu
zi!>3eSnt6YBZIQn)Zp=}W!NrQ!+6RdWD#-KuOOvIKVA|&Fk#qc{w`_Yb5cua*mnN7
zWCx!=X@kLia)^5>Ak5;Bni#;3i-LGuK3z{=_rgIaii6b`K$@#BhBQ}Sf!JmwpZlr~
zZ%6upwT%m^he8>E@V@{w)pM5NaU-j*9{V_-=d<GK3tRZSl(kl01+f7N0CVPGg@6lU
zByeEmZ#SSg0pG?E_)i$NCNykwDE$o-HpJ3iT26ff$c3N={G1A<h3iNvOGy!}kBHVs
zKx?6;_(ToP{RgxYaSJHiNa^Zd5jP=i^=QFOh*~{Ka1%hQe?pb85BQvcze-#*^bW!W
z0b+7qekgYF4zvhgCI<PusI(;V-Vpw}d^(@yvqA;j;sU_ScZ7z$jm8p{jZH;2S{UNf
zc~F?wO>Ds9q7`^tUZXGkR3TM8ZU-ByfsM6-jfGFU_{qvVx6##Hc|c~CACGwiuR55|
zr%t%4OH27IBTUuPXHnQ$2&ftapOUy3iyjt`j|j*|1mq(E@=*ssp0LPku};@v0Xe&>
zaf-oRAZlpvG6quyuV653@Z$`w9^AlS=HM0v;lVo?R1IzeIoRoRMZ>Vy0ewQ~b`VS%
z!s4r^4Po)sSEDyUFmnituMVT<Kv0GLA~pDgMggN>ISeQ)Srx3x?O5y-AVWMoxJ;4G
zYgz(=kn=snZj263`l;ESh1i`T0zI119kE}bUkjmMW6w0(XLLt=xzYWmi5ckVmRz9b
zE$jg+{2TP=;gW`!&kvrlwvpMNUqbX#YtVu0uwv-`Tm2E4%O~BW^p6;1`{5Gow;D2x
z5BkV-teva$twz3fj8vV$F3OPn-BKn~`)iedQ5Bf88oD7xfq_I1?MaSp+Z`%*r6mg9
z^%w=4=)Zg_I7Um``<Wi)bUa4-1?{*sb<?>8n@XZPR`axIl<F*du;^e1tLe(te85r-
z`R(^+Iv!T9myZc(UwUcvcU5}z{YM?XJNVGYnzQ=k<OFVegb8q9tg7C^(~BSWPaiOG
z^+5#7WpZ&5Y;1Tgmv8`2l#cZWKpqI^C9u<DBXSGAK(?9xIhxzTkyKJ%vq{d~O_9N~
zz6BW#yS~$(XX7PTc}+vw#^3$WS|fqE4`(%rUGbjQR26rYP56mU9++n!M=>6O)!3BD
zCR1F<O|qPB;vX6!iGDoHFt9pXG61<eF7R=!*I{Y^$yGf_m=E;sK8L&C-{Tr0kSF?Y
zWGYNxVflNI3-E-k>6stvQ8?IC`u|+!W(LKNrCcAPb3F@I<xIoM54;wJqF3W)68yrs
zj$t?su|^4SO+mSMMazl6UPlKf*4^M+2-V?yMyAI-et=YtE@Nr<rDMTPsj3(#+)5O%
zU;R4#exykKzAE7d!<VU8Qj^alA!7+mC`^}PqG1VFBysBW2RI6P9)Fx3GHSTn59hIj
zPcWA7I9Z&fJ^)9Bo{l;~vFyQ60H|dgYH8mQ_v0<netg9j1r1M;H$t&NB_H-rYa6Zo
z?Wl@(k!vr~g>Y+9ygxH9{E#boe7z*IEpITLG-<7uyGc}{J?-`%SWKBNhNCQZHMRmL
zIH9|~x5d7>MG-^MKV^HfxlzP$7FNi@a3{6zmO`iT_2@tmrCeEPBvkgxvM3u+D@?!#
z$hjB0Gsf(Yp7<aSk1DiuEt5!j<ad1TNA5+-Tj=Jk-Y99olKBpP;0>sEq!)$8w8#)5
zt6ZI%x4KXPMD;)wmJeI#bIhovg-<Jq>`x1yY-zKSXizVS&6{rGQi`+*IQZe}kaZq}
z8QO+>R@?ve{B`)UdW00$y4%9VfmaD=b3;T`mr^jTJW1=NXoF+G+T5Ih&I#1Gx3dz+
z<^eQ7o`bn6aCMI4aAIBULE^1`Nj?L2OMg1_;#aDZfvZh-639v7zQ2^`^+$2&SogDV
z6bWvj$ih6DOUaqnK94z(&hN{qoRNe+nk!$rB{W$fw{NR6YcP&XGp`(DFBii{IDT=Z
zOSHFeqe_H<WSTkBNdy#yOBIpKT0*kO)>mK=s21b6qBko}&{pZ0+N!CU<#_Sq<Q$xj
zh0CIrHvpBKrh<mnz4+VXw6KRBT74}l?HUf8<S_3Y?ZF{72{>@aIw)uE{PatRKM!B9
z@PnMX@#DHS^D?J^B>evL9L9WCK;bx$svk-4{z1VDB13ah1w+w`Mi+{JV7$?w;s$jV
zRT)6RX@tfNSS)ZTJfdJj?S=|}0STj%{qn$mkf7Lj0Lqq%G~friTAnf_z|MLb#yIaL
z!GvLSIM9@(f9xyh<2Qe@`%8R=Y+4}jq~3c9HsHM4Ezbg(RQD5gkze3oNHfn2dT8B&
zU-FnJ+ewr}&nW<b{NkZsWqFFWHiUGA!c1edm0+foQ!@+S3@b{xco39Ab1O>Wheas?
z<Gi;VN`c$fn{PaW+EbhtFg8W~Qj#<x*+{5Qy=$I1%Emtlwd+~<pDjM|;y0#a`4B@E
ziwcxvvUR2W+x~6A41RE7X&%SoAGF!fTYeYYkKLF#8&_JhTFkjCc?a9L<v|2$f|Do-
z$>sl4?Z*-Ty|fY7S=jqTv=Z)-oSIemW<_6g{fNhzfvJW5h~O7h^!JfT@F(f32a(E*
zIf;_s|JTzBesBF3b!?w}7yosY=cMXQ=*cYUG|O4ra<-YbzAm<x9DuuKL=wIOz3o-Z
zM!m;Ll!Wj5Po=_lUPpXwek4zjAIOhVe};_@&S&l@dm<o_2EgQSv%FbSD8MzmX;Wm4
zIR)^@Iux6ct?-EGLp#B|?}thBf#K`sXO2eA`A(uF`mDv^vZFql(>3}?{X4f>*x{_w
zvz0s>Is{iP@tcbM7H?JzgfQq32Hg<`mtaFNeTu)2%_4vzN7ElMzt9*qZ#yT69!c_X
zc3MH2`Aa8J5<Q+=m5Lr^9qEyeyXyr>ZRK%Y*UD1)<6CTgc*!hgeYYjahgNT$2Nz&}
zigkv3fYb8yDELa$7WKV3cc-gsN4Gl(s?6^8FHQc2vg~i8yx(xlzr!--iOx4rMuucL
z=#Q~Q=XWd7JU_NA0S~`w_2+~1pb^SR>i@Zb9v!f(f8@=Yg>>!K(#gzjU#oowzrYzl
zuMB^)pfYcO%6w6){hgC!sY;TEB>0;ZK#~BGgeS6ua4~WNOdK|9lp(};3!ge#6C|9n
z6J+d1J0bdpYKB1TX7JyusZ5D-N#Zpn444v&Qzb6ym{_ibF4z#~5;dJ;P3fl98A4b<
zYIaYN<wJ}`&C~w@Vsn9!ttLG5uKbCYA2GuRrVtH=#@g3?{+W8?j!aIp<m>8Ad#TtQ
zw}bqGJrZQ59BT|GIjUY^3N({#{hNP%5{wzOtM}?}t^RhliRTPhzyOBHlj^6c>Zj12
zo0b6%7><pVRlM=ExCh=cdz2JyttcilTN`dLu43!tnE(Bk)h19TIN2?P0%N1GpVTV3
z>H#b|DV0l{V5zSy<V{zl;GdZ^-0^Du_X*Ig6x9AE^y=9ey#~C~3B7uDq}Pq8`N-(i
zbN-Rj>xIpSqgT(brPm98Pf4#X_RrF_48<5t@slW~NMk=onMfzfbCJ!1!|g;#`nDJV
zbnJhw^YS-~PwJn|<KL&1k52k<-7-LNb<23Ox@CcB*d|*IuQ8wf8|X04R&L;WFaLCr
z9wDN7w1cWek5Vr^glM09zY}^42Ou5k(Z&8)>Yx0Yg_gTNE|sndTDa8ikISGp%MRNg
z|K)Meglmb9xIY$qHN!#GqDNAHEcW(WXLdr5TmV6OkOi_Vb6bW)G_avdF!b>n*p|lf
zw%?5%`3YT>>Px{`>`PDG?&?ePy?v?X{T69NU+Olo1cl=|L*XZnfsQj>yw!o8TKx-3
zpLVVP3|}ifA5dh!iJKIRSqSH$-+U!}vV5Y!g?@58`bo>>08MO<tZ8tm&PY6<)9i8c
z^{<j~yq(<>=<FU#)pLb9CXUYlj^><4f$iWVY?I}wi{s5)%F~+sPFSNSYWjBLO(}oq
zE0(+@jW-{{8JnGrH?Q>aQ&Rt%G5`Cxm8?efzp;L}^N5BQnd}Sn=<L-xbif%^FDG}v
zr?CDd7CR^DqZ>NZ4?V|@JY)W7%nGAwdf8(GH`2XIIIzzZm);8un*f8QI8_%5`%-nW
zQb5)7=u?Bz#VQvUU!{vxujXwJqk*~j)CNsLue^0pU-oAE?mWY8UrRs06mSbyfQg=U
z5+(H?nSjRD51=YE0w-kDc>EG*2cs+t1CaBvEfrrODtI|Z$qnpHn4-%YVMBsMI>cov
z#6^wV^N=LZk)4FQ4${y9@oB~1M;`Q(+UE*y`%rl$>zfya70`c?ALw>O0yo-0qP^~P
zn>I;kXa5yw8!iw$^vCW}<n9Oq>|-HNz9NuTcN>z~MAGVNn8`&bOl;^>FbP6k;wF@i
z7Z7SH2&L$lVt5=Iuh5D#AY@m}VRaDon19`9iCybUpz0b>bS=WW5I%#y)#j-Wfz3{K
z*vy09*Vw;fVbA@dVV06VxBYu@XW}=uqdoW6zktG>+P@!@RG#sUvVS2X`^IXqNBCJl
zkg?A|n7?5Trbcwviw<aY_u#WJt$UVHm664FIbRQ!GI*h?J9zYfT=v=>w6Dql@efp>
zC8l);hgM~PMGsU==PO8Gl>yoxsF;Lfi@Srq5cODbMlzwtY_JFodjR)=QNLUAu7F*7
zA&3ki*G1-Gz{B~<SFnQJW0?0oh{nMAy9t^1wnrEBc^@|X?o&G9=^|9}?ew{nKY4v>
zeZK9_D83W_VHe@YrIzr2b_W0Ttl(SuKc)QJnp4An+_#5c^zH0nozVZO2VC%ry_MwO
zOgW2T=^!sZbW#6{8NM^mhR0HbIbKD$9`lsuvreKUMVLvTJNVP*rP6((f20m7S}G!`
zf9N_#K2j(!(cJb71YQc&bcC(S1h^e9SS7TsF~j#mQn=5|rJMQFLm#bvI~7EVBMm$@
zX+l{(_gxQ-Vv~Z(rT`e`-(O2IT=m4a-z0x4O?<l{`CD1y+vVPG3maDuUXsmG;$rij
z?7)@OEWgBUx$!I)8Itf{n-c$|F<t`y1#6u)vd>3HkGfm)2ZPjTh4@txEZ5FxtSG<X
zYDVjf(IuwzhKY<RWlX8WoO1&+1j`sxCNa4;48>hXf}|0Zz_y!FzU>l0w<L~AgdgH>
zC;r|xYySvDhqw?;DGy!LFDHR2=BAVEwoanyv8d|X=@%*g%%;@(<>~uS{I}DOoMShS
z?hO7*Si!f_k5c|@ETfY7g(Q3Z%Rh7ue;4&pCgGo)YtvtJMThx48NZ+IBuZ+eFri2_
zUd@HI1mg?az%3gSoqeaXLrMCg^6=x0kuu%@r_$foweiNtj^mA|R{(Nnyg~gB2r+2E
zwXKmaN6sIC;lyM;`nKNqUN>XJvBtohqIW7zN1dMmtEx7jb)aG}Uy&=^1|w!qg{HT!
zVcx2>uqUwLolmYE;=d$)@E1_NYx;0K=x;tc)YC?>TN#^BU%!9Js}gT*aeo%I!WDMr
z&%DJfY}_j8EH!7!vD!k1q(;8w_YnGXJVKv@PeV$4Qt3Cr=icXC`mKg}Q7!dbjUZ;J
zxF}ylUroDVs<v_&vC>xF$)Ips1+I)+_L_=eP`E9{tesCG2**ckq58=l#BYxXWpMKn
z^xAs-tu-IK7igZS(DdL}*+qRO{cFYvc3UM;u>{3`JAEMKU-?{Weem%;-&!Aty)-6Z
z!*A&We~ON9kdr70$*T!P2m2&Rp4r-|cth%6gcSp#?_j^5EPMgyj)*1(6eSQe%fpk@
zQ<)#%?UrY6`*l$tD*T6Z1%D?|GX8|Z)`v;<<O$G-P>4sM55EcjEgEdYp9I>5y8zm^
z>W`HDiWLE=`lFw-_)hxMF8BxTTIbPWk;YVP_rRb|aQozUsJv7EKqdW07$<Uk=US_i
zYOc=ZQ1o_KdSZA8WnnoK(Op<KWN<PkPbib*P&6k4wErRhk=O(G4YX-s$!C&t7P=7g
z-%g?=CRlr?;!m%9bkW}~_3y-tzAc~5{C7Zy9}4oRTuOAuVz};dDJ2OjD2VxQfYOP-
z{ioi(G0ESUKK}>k_JcSyEmPS5>DyFaNSEUuq1@SzqxHOVe(6>44tnSOR^0(&)OGBi
zD|w$CCZA~ugI@y5*Fkq-`ut*e7E$%Ps9O0Pd+CnP5qpHh<@kHRKoViDCWXr}z3LfQ
z28VMw4gp+;zdx-uWq%76cl-FI;};w6+T%Pt<6bW(iG*iLyon->Iga8taWR)ndO;|?
ztCYgO1*lheOoNW})ato{6Ep>@dgk}FRWPPNMs3w`TsAljYX~#2hA@LK^kL$wG9cl@
zbR3#iKM!tWS)8kPmdwS*0A_aagAQ6P(E2)f?KS+pjK2-$3%>!lJcz@~|6SCt!v8~$
zwP~3|ifd5zx6`ju{-Tws^=mH{--&)b{QP)EXY;+^ZKTdkAuAaj{e#A@QGKWW!Nbju
zXMBtK-q*1%fRYrjCCM{Cp7FKwy{|7vdw<jU@ot^bYwz=&(5qWVdR>Z|kBna3z6HJR
zfAVnj>h`tty8regpjT#R^lE;t6MAKKq}Qpa`N-&%`7P*G@x<ZimHD;ws<`b4=;iB-
zUcY^|6MFeN((AyjM@lc>x1iU#SiaD?Jo>(tUgrYp6!O?b{VVHP@9W!%{*5mKMZT4N
zE9GZkMS|EjN&c3bSbQh?w~ONoWj`Nn!*AJdiEdW<VsSJ+>m*9*WHJdwhw&8-ICI-8
zosF-g{-KXs_(7$fVUMpc^}+>JMhT{0)>rhE{c~RY(S53Ai;Hdn1U26Nvy1r4_-bdL
zB>a;MeLr>%na?_jlJRHl$@n|#2VFLsqJd}rui|I+++PJJ_Fy5Z2~wE$-g&<ie(@OA
z7DVAFi8LUzz2P|X2mVV;%L~7_CiWUy8_cOUgVld*TSi`bbzwYYJVjk#Ii)yXnnWhC
z>we?6X_-W(w_+eu=i{Nd;1?K+T^SFZC<`o(#Sk3sJA3R6irI5z<O@B;QorMcEZ)J;
zO7mR66`z%Ce|2&HhdFn(hbHdzp9x!ck!I86F!FVolPHOBe_9FvudrK9OxaZS>=I?q
zCeaY19I<C1NXI3%eC!Pm7aE=d0vct0n6?-naV1L-!q%vE$RrUIMEzKX71+Lq5hg7(
zETYUY*F8*Lvxth?Fy?B#-)u7g^QB&xz5I5$S3e|;r%ssvJ$o>-M%BuJ)OaCw3ghsE
zs@IYSQr7~4)};w*S?ia?wiJKr3G<JKcQ3OAkKQ<94iguBZm`^?CscjV(Ov5Gmwu!D
zO^dRV+8+e$Fp+balPJ0UZ%UzGlKs)0=~vlbwFVRUq7U5uE3k#qukagp;=ekDH9P)j
zZ~Jvozw+o*b5ZXk{FBxviW0ueNtBF#G!_0`oL`js*I*%mg?|b?DxSYcLuU&W1-Kf!
z1k5k?13X_lzt~m&5S@ADQAzYk;tv@Mk8~0x(WiEaq7PXhOG&%h|CZ|>u72Han56lD
zWd2H$&#~WpzGH01`Hqc?-TdWrEo#1F?6;Wj7~6&Uj@P>EuaNnH=X!eDD0#l)u_wI!
zKxgwEbCZiva{%_XfW&-<^b`vl1K70hRTg=asC=iGBxaaf59T~t6t72Kwfg>Qe?SL&
z1O<pHK*s@{#5sAv_h!uMTQZ~7t|zU)UY*Z}Xmu-)M!Si729oDR)Uu`yb0eb*Hq~xQ
zA&)lF^kn)J{%|1?FhTvlnBG^$O|u?b=8!LTtNMwxXC`iHM-uKbAk3oYT9+4WYF&oE
zrHMFPSbZZXWsa=_&0c{!$=zEd$%A#nNe7!2R7>sOy19p!UtIe^1s72(*LV}T{acbK
z3)D1=okU4(ZPWtpi=0lDh<W56dp#2FDtP++FfJ`mKe~E!_qN`5t*&cm-DOk3!#|aW
z^M8)y&ieVovE=}#OC;}j_(y8*r{t-^?$IRwX9Oxi`9FydS`ci2{(9k;QirZbH^a&5
zGlusuM)->kRgA<`XCLryl^@;Mp^7u`=En;^VLd^(4-lQ=2c~aeJ7DZW+<qnHRIUEn
z{=JLiKN-K==d;^7sfFT;fX%lW|4I27Sau*R?;Zb`H?jCm#(!P0=UZ(LswkUCqZ&_$
zLZG+>$bIWFJHaiRm3L~-YxPm&_S$%s<e|01F)tf7uLL6^qD<!GC%K0}L5zT~@UbY>
zc3T<pa0+#dYv?23Zo%Zg(hklfDlFFq^NNL#m8p)bkjK9PfAi=%;qUGp`Ma(Y{$`$z
z{Jo{d;crj<TD|C4&lpJg_yhV#7Ny06pp82Kf{;(GXoSTrD;g{212XROsp>B40IuaL
zq{mv!cm>{a@REZi0vBSfA{H^KwTf8M=xy)cU=4z$_rt>|eXg~N3Xr99K}N{W;Z`fQ
zRfF8ed&r$c?=H&MNT6<x$>@X!qp0TF$(NLW-|th)*C{Oih~-N(xY&1#(rx%HK}*<o
z<_{jS4TmJ%@yLS1$(PudNn^c2W&8zYb4IZvOU7id1vY9plB6ew%F=srg2+0Mg>#0V
z->ax$ZOSuq2}rVk<7@20(Vg0da_}6;AbqoY1KjA2_TfYGQFH3?hgSapI0O0xllI(t
zhB>i(B`<lH6B|AMmog_7-H2(iZj{-eF&szhSLNzPZ>{K+ip#*+TR@iZ7C&~xZ3Zw?
zHfNO-wQ);aKYL4@GsfL{k42G`F8|S0w?i5Zw<T_86{KOLR~nM_PttmXBzwD0r}RAe
z-A*PK`*ft|RKU?GJy$Av21!rsRlp-b&pz|#D|&LBJk(FAZeU}B5#C6JldFS-uV&#^
zv{y;ND{-KTO+ne%LNCDztU;hw;iSoEs~-q)Z{id<k<dISu($~eDb`eA%OQ_(ij8r$
z9QLV-fWBq2HX3U`*9N(YsSNfg;pD5i2xeUT^uyEl@bgh>ekFzV^3f-qkT=Er%7Gg|
z-cIMEHXeq)-L#l2K&Jr(HDJ@&wQ-X)?m-&M#?9F-8ao>|N8FX5F?v$V@&!556^V^-
zH-FLY3LJSfB^_o_aW|MnYbvlFJ&E4kw54-E%desNcYtjCSU1f*{aGc)=jdCUxz(8O
z;hTG=>9Cf~tFBk-5K70g@Sw=B4kdfrz5RLWlC|qJnx)6GFMi@^WTK<OR*yMqeia3=
zcgo|(EVE^iD$?Kjq8Yv(kfm7vOOk+J@gK?%x%@2Bb)cIEey#qe9rjaOGWj$<q_t^(
z>!U4SQ@cs4I}`5(4X{yBTwuwR+yTb1+(;XJJMv=s-gQi@)h)&okppWtg^$|X#FcO1
zb0hEJyw2um8;UwsTi#T=y#kHDuXVM`6Fwe$1TuwQPYgIDbE1U>?NT>xJaBxSdTiuv
zw;lx&jgTQy)?gHEUU~2<anuG#p+b&?20+FJVgp1@YgCFXefglsV-~h<9?$sL<(Z_9
zD@Qzp#-(R(0Ji6xumqv`G;*m_v3U?jyX^S6NQulje<5NO|B9|@+?RoKv|fz1L^fjI
z1@=Ax$G$?Y@Jcx^3p?5z6wD?V6!8TxqwJA~3X|I7Zj|liDXjXSaDsi?w8mbsOWHx<
zetR29@$iJ`*2V)Fb=$)y{)I>MRSb;jUqv=#0FGX=;i#g&ah#Q;;w{2ru~lr0qIr9N
z(mWCE8^4TH2GhYZR#g7#0I7`HfndMZTg<O2fyOw1WTBA+|62<F4t+L;Xt7f1e*=;I
zI4Spjrb9*MOpIblZDD;st|;Va5F+tRGa(_@pY#4#?R5<m<&p|q4VwFxnQK2GT(&cu
z-vT0N06d4ZK}mEd;W)(Gq$J>Dw!J4M^(H<rDKpwzT30SJZ}60~%=~%M`&7@nd7uIW
z=<X083I8`xH`;Fob;5M^FVhJc4qt1~Y9Hq}@Y5_k+B?_W1EY!GKonS+l-N2PQy>Qi
zBh5VBSe{!$1VDp%dQ`ob-`S{mlLc1vBL35%C}uRVSRH#w^Jw9e>Ct|<X5X(AVNo<E
zSxTWE%V6c=<O6uLOZC|GxWMI|>S=oH67)gXqb4hB2x>I57q<8G$}$G!{|=gJdqqGu
zYAsk0O_)&wnr<|jPWCeM&6Ng}K6$}`_SV;NG~B@vJ<~$`%ySwoeFU|^D?9^c5ciL;
zxIBUnmXSfSnElg$P4vQm(f^S<0RsFddUPxhxDesic!?ztrNooe%Q9Ear)HG=$lCfk
ze*+U}+nFeUtOt#IjE*~46;1Ul+#wX*7{3?tD5W@G$Z<2IG_*?Vn+Xz|8DXHCoh-mf
z?SG?c|6sztAc8;!^h$?}@(pwloFNlH8Po+<Q$UkuG&lBZ4SMPhf;=mWXF>Z|UUQH_
zk!JeWtJcrqQGY)ojsgA>pDu_ILc4$?l(|5Kgr*0@K)#IDe+#=a3mPyp7YAD5Ckzn9
zG5NwV@9tL|gXZ8a#Zqt$PSA?YZrAI+sG0-s!knL}rC(Kj_vyxzzHQhCJa>W~#in3^
zpKVI~P#Um3@qj8#fCZ}p*!V<gIh!6o0ZxoZ!-6RB0(>;zdh4rp?I^Qc0#pLB!1fBX
z-lOvXE@~yA#JU?*Pbi#&N|7%97MjMqY&IHchO3d1+UHlQeL$_56c|2GIq2pz1|$xx
zV}{p})?{4r*KhEq3`GD-vcstq6Wg3ZD^5qikXI}H090ML8-%J&kK&H8{q0(<?Bcsq
z-@6~48J=CLMZ_<A&8Ejm0wG?k_?SG_1<nESF4|`kPnyZHZfMYi(;>t+qDk7Z0~esH
z^ee5V^IK<aB%oYMcK|wWuzLu~0yWGalju+zrA^QPbH-w!eJ1R#<M#24j6%@zH~`Ki
zc13&V4uPPG8D-To(W(c@AhE4~HBbMywAae*5<Dh>zIQ8}j(ymi3)JUk%sj?tORIR=
zqmt(@fO}?w2hbLN^Uzw0>Oy1#?nL8Qy{Ki*DYf17k)+(5WA$qqglg$qi3}KknImg+
zn#=-Kdlbs`WMQp@s5xmy5|U2OU(o6=LFW#bW)Y?tglUG}tdyVd-OYqA=4)OK31vGy
z`UTo4=36E2F!P-L%l8!yk5s&K19%zgzwT48o;k=y5U`h$i1YLWmfv@<9O}kW)xXSq
z?L*b&VNz=CtR{2JHqu<qIe(1kTG#uU4}GA<+M;HH=t}R*?*&kLD^?~<ezSa((!8L3
zF}o<TH26bDA5?j{fK8d2r$^C|-0+|(FQ~v>JQ|H+0k1<2=6u(N6{X<p^7VSu1~}ja
z_|`XtNp6xrH~RnK<GzspK@UlA)?Ex@3#3;XrN=IZ01aA<IAhRXZl^vRu^U}cPvEgz
zSW9d{fShGMJy+=hMNYYh4INMJR!_%cj~`UW(`=y+?y)+aGU8jPNBa+CmHmH!Dxo)r
z>QUc;IHBzSxde$u3+I-JS6Ywtf0Lg;Db?Jk3OLZkts9n^gFo;z+4H{y_uYhUGhqXI
z<Uy-nr})pKpM3MA?(FNO9;j_v;na+1yP#gQQHz~Qt!5yCZfWDJQb|8@G=rkuxDt(p
z#)fYxHhh=e)<5lBa^tCtYtGz4w#EU%unC|uZiN5jkQTe2>}33qv?{Faf!o5A&iV|s
zlt8Op^Mz7dIKUPqoXrw&qv6?E#YX=_x3YK)7YstwTzs~uYaC#DHarkh&d!;@Z)aKG
zc+#gN3h)Pu@S})-+C{u=eWe+fRuY>9hHwG7^it>-<E$7`*L|VY)k|U;!6<R8)QTk|
zS=<=pA=T2?p@kr^b<by^%^<<g{6cXLc8vS_nSEIRO7Qiuej3@QvW5*6eZUHBACVOt
z<r&L<hY_}9nFSRvdfw5a16>`}AjBy(4Ne2QNr#4365iqXHqoc;4yR5E-JI)}>kyc}
z1dFdjKq<>yRQ3Oud-u4iiZyN=l&xsuLQ_Li+Y}j?8F(ovO)%7jZH>%|%!)c?=CLy6
zVg-tAP<Gp`b~7t0Pn}a%R%V5EIm$%=@1W+j)U<T%uu?2RO!n{l%*<xbuwZ%K&-?!I
z^HZ#~pEWbzc`oxjb6abgPmdTuaTvPeIbQ_FDpElUNKJDlA*XThd*)`8@H@JN0=%>)
zWqinT7(1uJ*l9m-z}Ru8*n1|Xu}+4QuSLvce{4T|%SRx_KQ0h^M09QlFE#Q|T6Ia&
z{K?24OZlTIe{`cT>4w=2-T3V+%FdM=!fuS`JM+O0>VP-VjjIUYUrp*aRIMM|o<%+*
z0%Nhna9>e=Q8w#^^GaeY+kqL?J)sT0>Jvug<0$e|h5aVw)BFLNtv~*)g-x@5teux%
zkzbTE&{^lpz=?6T_dU|sEE233X}|yNQ?qpOAxk=|5)X=~65;^tybG(+FqFSOV@vfa
zV-V`r-28#6ADT~+^#fCk$m0#?i$8q6wWvi=KpvjO^c#y$_?sT)Dj_Di1XucpDvd(o
zH5!03IUuBur&!G=y@Rq)hiH<Kopfv`%mn7QnT%}o6OOP8&2cB>jPv`(f9%ua59IX2
z@CGXB3I2gb4G|w9NeRXkC(SX}PYsf#&EBn}c^T7Akp>9NiEk6byYDR^vBSGl=hF@l
z!+Y{?nh4+}R4+8Vk3p14kSu9hk)JlNoP3@0WE#~!mFkZ`gDx1!uvo7xZj17?{Ff;a
ze#1LV=SzQfbRAFW8m0|{Yp54l{Hq<Fb3r5$!rSF_rVJP!ENq1v9KM(LIm$tTMRZgw
zC3q268dqRNFhPtf;5?)9&!$H<8fmLG4a7#2XF4;vDLg^O;l;+3Lp*AwLI!D&f$iK%
z-kD(yEH<7B_t@V3in~w@7SZycf>7gn@yS+%60{MrJL*-08Xp`bAF|lcnijlV6g-5a
zn;;5KmI@xi3*OWCnN$=EgA|<^V;n0uf2TJX;>V?)d-q%C^ZM#kY>J)Nx8}=0eRW>!
zoED0${fYTJPf7@>#Z~Ejh&*BNWazmk?&KD&=sWXzwLO!rp-PB>j0aWp89%@wN`2N(
z9)<OPD;21er_DP;b$6ajAp7C-)g)Ry55aJ=UR%QLXC)<aRgkRV_z|hFddv(auYj?R
z6=7EyM$WJ(F`q}1aHnwGs%I2;Sns#ytpnNVQ}cXkK@224wx2(i)qgW9)ArsM0dWfT
z#}4BWDT3-KX=%j~CQh^}f01`Uu&8g9S0|aQcm#rNjk~7pC-Zjj9;&<gVG*=n6ppsd
zn%^~OXmDmb-3^j+LuhG6TjM|#m0o6>h-bk@he;^#H4IaXo%mB`O9B<6GLhUE2B_*c
zTb4KLM>tQWlDsiVLVuvcG^Rt`Oks9IBs5fn7`mH9cNo1x)sPHzXriM1H?eeM=tM@!
zAtaXsYUaAXldQWIL@^~{hKIZ-nMMjYOD#2C`Uj+PKbK0N!cFXB2+b*|{>5V}c$CjU
zH`We4cK^%=6k{xfo@kwdb$_99_`p1L3EyJfMBA800=fPCvPmn-dcT|%dY(Xw9a?@k
zWyLHJV}<6rHj#${=u*a$;0?U8-xwgsJjWfRj%xz-K4$6e*=R6mEYxj-3Bipx#OxDI
zBl-3cPb>u!W;7qQpc=81AqBRpEm|SOoj?U8U`Ug3MPuEXRtd8t3Dvn6g@hcW&hq|r
zbouk5mQx9+Eh`C{S;a~u=gk}<b3Zhn<?glZ0CfomZ>I~GK#kL}5cI)o{F{Na5QN!A
z)PllNRrP!9p0!{ST}t&!x_cRyN&G%-KL0#VI;;#*Aht<L;>(p}Yye<~0ZgavoL>|$
zDd>>|kY6-=G)?;?(7{pQ8arb!d5x{E8Jz==G=cUrc}aKJ9jxwM$FsWcV-1j=vV*sn
zT)r{JZRL*8Hu!VV+R2dx<w88T38x#Q2M!J<zPL3IQna@dLrApKFSHND0L21zR~L2|
z1Ixsm7A8;r2f@3s69TNlDw*_IxMXGmaa3~403fRfid!J`nAd_Hjaa;p=KUD+q=Dwu
zG=8_{?F*$*mw@^o@IqD3GcUxtS-hVBH+1JV?uNd=!(ap7s-$6tZ76w8;s4oJ$G`i9
zWG@(pO2fA7!+<kvV;+q%wESnNA-QbpKt%Rww@BI9UaB0C-5+6X*_7QjkFuj3+FACn
zr+D`FW2EdfHZpE$nmvqVA1$)8-ij+Mh-c3qA!VmCS`6RMyz-6cy;=59k^M<(^scZ@
zJo}2*r0myH_M)cQKif-{-{j<#XVYk|uy;WO?@RBHva=0BbDL%_V%c91*}nq>(7)i>
zN1C#aXqx?Lmi;!C9Y@u>!lv-7`<|ANdr`&PHqCl`4^=#zXN^GCA3-Ryt;uD<hD?R`
z9&H;zX9mFfLE2*&A?^cn4GOt#GRX5lu2slCfy`z_@x-G%DW@m<sEv7S?<r3{p(k_r
zlX&IH%k-oVe{#F><QaN`MK6>VHj+K*Am%b2q$lZkV%QLfya?kyIUsX8#>=_df*+W_
zM}*J{J86XnbkAUCd1vgA?Abf_{3*@p!DH8<qH3Hia1f_l*)(T5QEHvX+v-)vFkRCt
zuXE5yt*}ExqE<L5BG`GNtsY;eEf_?_62QExaHkbM6Pz?;$IKoSVlVjc2sg2K02eF*
ze8Q0PGk!|QZD^(CRT3RvD%9q!$DLMqZ>uEFt+|Q0b;Gs!^x7m+wN8HoDOzXVqZKB$
z_UO5}=Z0rm6z)7Ry!b>1=h3#sM?1IM>pV8R_*k2E=bcA}w=0Ef=AC2O3e#8{<LxqX
z3eKZi@zD+}cbj(g$k*-w92iee&9X6l%X}FVL`hc^A8mt@+SNCffF>U(!RW`*Srl{$
zOQ02&79Y8yxb6zAaI>qVwlcDK?opCxyDAteubCoOr9c1%5GCJ9xBs(!{A1()iG5s{
z%k0Au5ex(A8PT$RBn&ys?8EN2k7$LD#3ASYAJ|6=g>%c`R>Jg5_OZ)vA9mI=RPAH-
z24){*S8ceJFuQ7Zn60Id(3{#v3(&?OUeeJk2>xiBc6%F3Q0=1wONWwMDyX`Ys$^*&
zoD)T^N`Y4P(WL)645h$i(0ill8^l-iWmu;TeaJTS%%l70WgTY?vpMu<u+Sgun_HiY
z-`awWMD?WnjYY1UR_J4SQXBO6UD>_$_)^XJFG^B4sJruc5!!lg24(}d;AzfL44rf4
z@QDJf<dkGh(_<>J;O5hd8;0x7vpzj?j~<NU<@|0CzJ^B1BI=<7V%LK=^PX1xuJp^n
zyY9EP6fPCwgJzY`0oAGdlS2J^G0{|CLIT!Z2l&41=h#oQW<FR|^BecGrwRhNLhEZR
z?w|L-GrteN&KsiK{!r&=XWg8vzSIrFI^3qr?sOMk5Nvjw#+hQO)-WH2lvzW02CUR)
z_H`8(*R^q06j8@3yr7lyr{T^`xdmf*5vpyi5=HpJgEDVl%S6I}o#$F*4xw^7I4h2b
za$FU~=h`$DhBo4?$SoMrid9Upd1E3g)l(1@?eon&NA=5mZ<r6hD)V3dYPQZCMa6e^
zR-BTG@6cF0=fRKRC%0x`YJ>c(h@>F-G+Ca3ej6FjE|^Zv<(jhtR0cEaL^g)yDa<(I
zblLcl>|dzA4s-TLCav%+_OVPWBDXi_Mx;KCQMj+9x-!vq3USck=`bKUzIZmHeV15d
zgdiRkB|Ga7EZ>F7ldF#4jJ3bAI|q%XCJ>CjA;AvM#Ng!k(wRB<DAS})!6S#1&eZgB
zwjBpEM_w$3`bG{pFyo}|Y-pAKo5M4rRdRgMOdY9{I<-o47O`-M;WW=uy#?u7r*A~M
z)|9S0OV_$F-AaGD_l%9}NlwN(ep$mWtN7(Zb`diCzm%W7sr>q_|G$#oSI_<bLw@<|
znEYn*OBTOO=a<LXMaWO_mznoKoObe+n8w5(YT(1r5`yMj<}9jo*0s}?(CJpO<Q^j6
zfbfM5ci4c(sSDa6ibmDOCumzV^bc2)8CTzld6Acasp8T6Z*zEAk+4m47vKJlv=I`#
zB29bMj2t>uLLS%x^2g(?=6`d^*|kuI1ZSOn&b1!B)_E=@OT$jSSZvqwGmdBJCyB;<
zB^So9e3X{HXV`LFGLBVmgK(~XLaO3oxU=Sj6N)N&F&jfJR<&mbiTPaTInOb-qpd-M
z$2NiZiX2R{4ocA044pAK{``#Fle9HSGg?hfiZ9LVMl1C371@VH-Gq10);MN_#GIdu
zLmIJTD{klH+S8LUq5Dd40nJkTeTdQjzhpK|v%(4{!wj@}*qepHB^wcM!J=OL_M9=g
zYX{D`PR49o@wws2F%`*Gbz?jo@Oj|<GarY`Ngk!G=`v<=BBEdi+)f%pwcM8(iNBRI
z){XI`x53=uIh2%LsG^QQjmLx}#Z*$2BU-F*&UehtmwZbXGU?{!H-pt0lMX_By-0lS
zp{pUhWSr=@Iz$%TF|{Uc$Li3S^Hd8GT<z&*#8%7T)ohK3n2EfYtcqto!er&1@IvS)
z_oNp>M!7q@kQl!|%a#;>Fw>qCzr|8kNikcnD4O1#>X%qs(@X{LW)(D^`o=FN5*7QW
zv`1|oP548EP5Mii3!}H{vB3_D!0zeTx>2JoWaA&tv*<qU)tqc_>=`;<Ta*3V-*iT1
zLSlT~oO`f9kaZiKgYF5*#FjAhfPBOCsw29y7M-9v|Cuf^ScC9y-<q5RKZ5g9FchSw
zVuv5mrQS#{#sR8>z?TB&jaRMncg}9>j!2B(mqTq-XYG-9h4{eOUotP4=Es{Wc*55t
z8dme_<whoU5_x~3PLJvwC_<y`y4ITWdo*(NKG1mBW<UBgy=xDS)Q#VpGbPzosmIhO
zyQ=i!dNhiv<f?OHJY6)lSiS`L9G)&Ojdkt9T5GFu?k<<odTYoy&xAKa61DJFS|>PC
zI%zT_F@E!$_DQhX(4_eNvtb5R*~`axvbA7`s{}aNOZ`1R;fp=U<DT$*=-hfAx=6Eo
zC&g4be`?U3M}pfGCwfBKL$WCW59SH!q!NsjwIl;{22*(7%J1v^wnA6MUNR>_Jm7m8
z#DI7KSy12Fg)@So2#N<dBei-OJfJ&lH@kHGo-U|1W~OLm3~B7f>yR_a)n6NY6oHPw
zslnFS>cuMFovJ!07doJGx_k6@oaee{wRRRAK`E$*zv}*7D^wXH0qzS~!qp^(i-2Ae
zO#ZKU>jj=&EsXG}i_P#VIb%)ny0?g@&0~8Plr>va*pBXKc#t-~JvGjMROoZh<pM%m
zun&JB+SmU{67Kp2U0l1!*X+p|uDkZ?F*Rg}%mgc$U+x0Gd_Z&3DjqY=qxdLSmrm$r
z&KcvGK%RJy?y5)j>|#CsP)?_r59zKNz4$m%^^A+(mp;^mh2DdlsZiLyJ-#@-BREA{
zoCb|Lu}KR303%tXP@iBK??n_ul9AFIKYT?t=Rg#3)$jq!W=26z*JFDJ`_{EJSj$oK
ztY9gc5KG6P$$koG*;-|L#WJFy-<%k(&C8z(xy?Pv*9unhbrBE0V)ixj2{!v0uDivf
zxf>`YEd}jZLzOMFjYpDT)bH?hVkrY{CNzq)ftzq#*-Zr97?<qg+ndnMAy?)Jb6-l+
ze`37^o4;rho=gUs9R4709SK+$cCxa?t{>gAEGn1M&>DbIcZe5>rE+&z^^<&Ncj@C)
z1g-zjmVev53?+}}5-5B$Wjpr(p-@Zpg!N)57>L5(U?fStQi1ZwP`LuCs|t0hGcnXG
z)Dj75bw3hT%TQO!P+bMoOH&lC=C=%Wn*=rbB2a67lmz$@lu1+LnhMpsWvIIQ0|NZv
zT5GNxGSqMZwcs&@t7kiz1;{PJW@8q?b@lW`pnm#6;%fIa&Q&`VYD_aw!YqzT0&H^;
zs7x8^aRD`NvclC*I0m%^vzQ}6z1i1VfS1Tn4gcg^wN{~KwG7o$f{MKe)N*k=5^Gm4
z3#i;j6|S_Fp^7E5*cfBY)nFMaT0mWRM1gu=Yf*p?NKg|m0=4;oWETIO$_4nW3U#id
z8A@2-B@)yh(bil&C_{}GP__S1xZ2qal(4|cNr85icM+&R_e)%zc${;Uu0lQDGSm|i
zRQHQOxn!tp0d@Leg{z>Jp$14$pI&1vz}_-cCjs@O3N<dQMP1e27ZBjB7lHa>pCrKd
zr*HvQKcsNguNf$zt7Q_@zCPAm=`z&K0&0p1RocPKm4LcKf_ma2P(SXKxT<`NbM;G_
z!qvo<p?;qj5MZl|K+TY$9u-gzt5EM<V&+P;tAP?%uU%~|z_v0}{bbJ7;RhA23Yviu
z0<4p`>UR;SWqTw6E)r0aRH!RjhI&<kDvq+|Do%!q5>WdeP`D~=Zx*27YJdcF_eG$}
zzL&WA`cW>xyH%*MEko_NH((akS6Op)pA0olK<&C;;p*phEpnADLFHZq>eOzDt7DIF
zu2NK}=URs9E<ts@2voidHA_Hko1}2nxn-zzsR03gbfvWbd&p2>0&0v3<p?zkP_!$j
z1U393P@jpuIScsj{(}p!{62-NTbh9q78ol*?T)nODoKXAQ9vcBP~W#Tb0wfI+!GMs
z;}?P2zf&@ctq*gqiYF>uO=}tI4GF5jZq3z`GSou?>J}BMb<0pUN>DFf1gf<Rb@n07
z)wlO5T;0&dEI?rvD<!Dti$E<Erv@>za0{p*D%8McpoFfHC8+;iVJ*PxWGK6U`YKi7
zYO~GEm4G^acfc&hUj(Y8QZkFL(zpNzs8A2J4CR!dPV~0s>K++tjDY&=o&Z;F+aRK1
zN71v4N+V;JZTf0(<FUC|=^=bmEBjuHc~t#XDQCt`16gcb4V%TRjP?;C@hlsSmEB<v
z-cI77F|nuXKvrtwczP1;u%yBC$2%mky!{{-%htOCbw!O<GqKR7Oe&nO=-Jw{!uil_
zPp^PLFdxQ-(TxbnGQv=SFkVGi5lcGuBXniex2+l%&~CaF!int?4+kFLJnXwm;o)N@
zAU{GIj&Qex(Af$hUq+ZE5FStwma%SuA0d<@{5>|n!>XPZQo2e;=q3<;o}lpX4fDl*
z1gz9T$+mYTgmG2~#oHt)eR)5Z(o_}U2<rs+5d;sqgmCh53mzVn5ylIIQ+Fyn><^JO
z%?;J|yCWc_7pxF2h!cUBYdSTF^N^_`tY-aNKM(D=lwOe#qOB0#lo1vRgulltJoIRe
zhnpmXvK|&vikA`k354fWguTqY`gstVK5|<?N{?6}?A;=1dh>l;N}(#ktBSP>Db14*
zT3I1v$Ouye!ooWgDJ@g1RoK!X31NA63n^VHBeW3+T~vf)tz}yhZTi5NfRt{rLil{M
zB&B~(<WhPgMd9IY#q$Y0<VpxXL|E`}yNobGAlOxe*@|BhQtBfiJZpvU+a`&JBlmJ1
z-oIVp;pt#mN}|PWO%6yY!V1AHBg_^E{Zxd*SIP+Vk{|rivl2q#WfoG3kr8?dgw^8|
z9()Q9Leq8$VS*Jxd4(jUZ&JCGhNuX4Um^3*ne$Ml2c%Tf&4PzVWrS3Lux_lvLt=A0
zWJ?H(tq@wv2xsr%JS3?I9UJIPWWU!Car#OLp}!Tvzse;ky&@1cI}{%FDV|SQYsKh*
zl(u%YkkW7&VSqqLQ4u18WIYH?XG#cDtq^_`r!BGgP<c0((w^HC9ya=9DG7w05<;jI
z!gDghlLBFqiZDX)-om$T9u<(%`&}%g)LlmCAP|m@QFz#;NJ;pm=@LSc6~da0lBPep
zi%V&Wig31-tOud#ZW6-LOD%Y~OGeNI!tcon58ayMVe80%lya>Q&TNo)I6i^%kgg(J
zp+uneyiL!L5PDl7yeK2&350rG;o*qVriGNEC4}!fTS)188R1HSkgFm*5-IC}HtNH-
zZchqGX`&UvHZe|M?V;#SE~Pdq!mEnc5Vn*qA=GuU;NhP#!UF<f!DvNFC5onnlzK=A
zORNyu$q0Xs=R9;)5ptVDsJJyCr9oB*ACyS8^oBrKI!fW;gwhibw)CWguru63N+V^2
zAp)VdiZJqgGk&RygfQI-;TSvf2zy6pQFPB8TuT2Qsqpai-!g*G^fw~{QtD`hFjq!M
z7YKb-gzo2L1ku+>lMq&F7E-!GM(8XMRwXGsyscQPu%$K<!Wb)r{}xG_UX{Y7bc2eJ
z)EvUf#DJ8Hjut%JCnJm#2;beR@bJuEvXroKkJ|Kj31OZU!Z~(YlhE|Z+c^&-R0Ln0
zj38oMT|$6|C@X~5WP}$4Ld6J$hxB?GLD<sU5<*Fsg_H)%2+;yzoQjax91lqnLYfuA
zE_OzfkW$$=E~VXx3J<^3$~*`u{W?4#rG^d`JUlHUJR%S#st7?!ixbwmR6<y0g`mj@
ztpvi61cirvY~{`0=cCORu%!nigqy4oK4B*_2`Mcf%cV3~MOb=4mXhergh&YcF0qi(
zZ8E|w0^#Ivg@^UM<rpVse?Gb;podH=1n+lJoBqMUd6=Oh%vPdkH!h_V389M>!h9Lw
zS%FY@i^4;1r9B8upB)z9VRd^8DP1iiL<of0D#ERb*AUkFZwVpA3Ze8{NlJycaVdqU
z2%nynH7(lo7zyF`b{0H5BqK}^2rmp%q!gsY2O*_XLjzJ;V1?lOM&hAn4Cf(SMR;HF
z8UkU7gwWRt;Vl_qu|QZdRN>)-(jG)lV5o#p5o#f&n`MOl0->jh@Z)J&4<d>ly*VJI
z$yNya#R*HSC$Ke{OX*#FRzTVwb)iN^5VlkxA%s{VWXT9q1wyonkgjN2c#ZxN!n<uP
zq|{YL2o(sQ-lXs_{CAlL5k-HvDIlc;D}*n^nM+Jc@9SJjgH(ixr(^`7hvy}PLv1X0
zxI;!r5(wYmBOH<*o>Md}^bjo}WLqKpu|{eSM@MrW=rbP@!kd3I!^58VfRuVzA$Vkj
zT!BzFL_rv;_$ATevL%GIHVY|TD<kw42o4qD=$|qV0^v#t;chF0O@)$_z8l4*v=iUe
zlBD$KNf|-RoKy@6Na@cI3mzVm5he<RR2AVhMGr#LZ%YU-Ss~bDgu0QOheJ0gJlxzI
zLXw0KYlZOMSCW*L2!uyegon?_QWAQoxiKK6?X4}Olqe$%5(vKzR(MEJY)N>Hr4qt4
zD}=*eN<8dL;!>KfB2+0-5;5);38B3eLXM0uT_Bttr0`Is^eRPs`1yu_lvcE|kkaKc
zLPvp+ts-=3j)xZ{gi%%qUyD<QnCDx0E0<C$72&Kh7Nt)kpjVk7A^aR{!NWZ=!We;2
zFi?@wekF>AafIW815$e43gNHSlBSIjoQIAo!tcuJfan=7kPz%v2rtVB^8~^x0~8)Y
z*k(w7-&@Sh43H4k1zAWbPDY3l2t8DUG(&E2!Y}O`6p+#+D})`NOHwLH<WgE5r|{6K
zIfQu<LcNbZO~Usro7Q%pkP*@ZLLU_&Ux{&|P4|-!mRccPA|o^;a2{61Dm)||m!%|n
z0y_r=q;!K7!iTFQDJ>HS15|_$t7Qb?HD*Z&yBjQ|G+IWuNg%AfUg2R}a|pd9gc(){
zzkDX~ux~h*(k&`N8>KfR^sse6KuY0O2u>LxQy^^Uuki4f5~t~VEbto7N(i4`u#i%u
zjL=0Oj8PF%f06Yd+Jjv}a9AO%|5TFF>RY&!Dz8&`XgDS#2wN(P3rOkLzb$yUUq(m~
z2zRRpy%cK|y~;cZp}-2^{3j9*zYpU){LoL~VW(nCB2M>}5c*glye=aw5C{*e2+_(Y
zOL*_f*npHaoVSqDjWR-CfneYpHd2r5RmECG6wQ<n9=1aGex)R(ilJOePpSwXD09Z0
zxV83_5Q3}_X37YY1;U?w6&?;Maa!<Da(zHbZ`WH$sgsNlA`qTc5f&=GRkXM%62ed`
zgwH;fr1b91TuMPI!b{3(nUGRP3E{vw3m(SG2nhmVUW_88^~yL-Na@S|0V&P0LZ}u;
zAF<xdp_@1l9aMx>N98sxTHHhlp_>(gOGd~R2roq|JlxqFLXd>;Wu1kTu8|RX2!sd~
zVW{HyL<D;Ox`33%TOn-xP}20;crK;4uTgmDsLTn7KHn=6!l_yd9{wRC+$|8IRD>m7
zSq~xt-6SC_v_c4$5&j&)dHAT0!h=h(CD9&E^$SR;pB2J8;#1trmR=GFu`0qm#d{0i
zS|}lGK5HSRVKPFjKq$Og;bEKNy+wPNBq2<(LOA$=r0MN9aw!c}5x!C8`84kNu9Ohk
zSRp(kBTN$rB~c0w#YbdKi_z}BYXf@t_g@xLx=coBFA#JU;rJmLLA2@F62b^8gs<M0
zq_pA&E~V{PDLm9GnikgDPeM5Irv(pp$_S$b!UPrJH>EuYP4Da*kkV``gwy|#c=&lR
z=i$JW3J+a=lBFcPMuCLT(+XjcjPSfbNK+BMRx~XT`b!AkoUxG7buxloARLcWczB>W
zgxxU#DWzH=Z27k&rFDb2l%_R7_*IsY@EXrb2xn_7cz9e!m?RKt><SMn4$BBaN_Gk1
z6)S|cGD7`8&ciGfVTv+?CA|0X=zx?4SRwr9JxNMS1wz9W3J-rPJ!8=x7Dxz{r!Ay(
ztBi1iK*&=ORw<rO@Gw9^c+v{tr*|bDb`RiEYOf-U{z2A*-!EMgkWvRLggG+841ut?
zw<4vjKgtL~)3YUnk4{-gsh5lpE)cq@2wjx+AR<tdgrHj?eETm+N}tAYDJ|=z@NmsR
znFk@I&3yt=I{t?R5BJIl4uNo`ijb<b2f@R12_er4p?0~%!>_TNhZQ{)9vYPRAP~Aq
z2v=GmyecCU2!#GB!jt=CDTxU5-PHjp75#1@rGYX+AA#`Y<q8j-nnQS4LU_Omq3Rt;
zN*k`{Qo2b+xOKnGgV1!Sgz)!o7Cby9BRnh+ih3wKoKScW2%km;r1XXrLYRyYBoIca
z2=3+(CP@fGtPnnaTawb-{kfF3c2{_)*)2;+%sRA^5cZt3kW#XYFjOFnR}tP)^dP*(
zimL)rO1DBd@s`BHf$KOA`yvz`8k9CI+QT>rp|cf2zKk$SAUvQV98vTjc=+?m01vCG
zEu?gnjL=OW{Ct_h!-(d1ctb)MXN6F_Op?-<{kW8-stCPz%9<9lKe~i)@>dHU9+VNr
z3xreHZ6M8SgeoIN(bqT|8IaNoRtOi~lz2FGE$1OqMOacP^U#X-?*A<zL|Y-eDI+Wt
z2!CTwhMxzwZ5C1S?ov6U()&j)+wL52;IVD<l6b_sOXw&z_eGF%3po#V+Nz8X=Y%z|
zZZMs0gx8Cv@Zm_<n>|P*{N1H2R;u*wQW}4E>5n%gX&mj#rO{ogD{2%fdM&(g(WiKy
z70%yX>cI-<^V|6DlX!PYAb4biT!HWoX8Qfo0KzgMZ;l|m!=DnuS|eaHCWLEcgx&(-
zY87Fu=u>b6F-~|xLb%%sVbkl9l)j7MQu-LX^d%l%7ygGMh`wElgz)DH3mzVm5he-*
zOgG91WqY_)as=UjdP@i|Ss~bDgt}<X!y4?;mw50;8ij`_2_e=B;k~7jl$HpDVJgD6
zRWc7EmhJ2wXuI2wTSzHUMi?XzN-?7*@vuV7=W!k&K|Hk0k`Sg@Asl{9;$i1CTuR9*
zLbO<6<p^TUs<(vD-U=Z{Mwl)Tc3^Ey;$ge!V{-)I;Wk7Bq_pA}3n^VLBXkr9cc};t
z(R<_wqD{XfA&jy@_<D&XrImfSln%n}NIYy5dq6n?Vg%`7pM>!9&lWt~BO{Cv2oI?U
z&o+mUDe2*PD}=vZm3T0&<~*F}sPNDr<}Wx8kRb7pEg{&g5MGuM<_Ux+RD{c~=KJ<I
z0(19n+m#Z+x?>hnijxtd1i~4tB}jVk&s1>)cy{8ULej$|D})`dNKz_^;!=7>MJN^P
zpBzEVZ$Bv^)E~9r;RzWbO(6JSkrEHpV!Xx?AVK1xi-fS$3gHqNq2VgdL%xczRrD!1
zf|$?y=CVMGyTJ<K!<Qu~EfWZrs0df@l|7$`Kxq=f?w>5AG+IWuNg%uk&mc+ZvgUYb
zBO%PNLipt+iHChxaw%P=B0Q~l4WWk(-2zeyw?c5r2$=%mEl5J*;VLl)!}TD%_f!et
z(<2sAij)z$2!yLtgn{C%O^$%^DA`h~gy673SpT9VrPYyKN*^NHOFY~w#?6Ygc9al)
zJ#4|l{W3y|K)7B-cxJ0?OJbbxW!Hcn3ak*$FP3=t-OhQyiB>WX1I1bi=RvgT7bJu}
zRtT@l2nz(l%__nZ6*3QE>>n*5Y&c{gr5k00z5;;`E0gr_{r570h@u@OgomvVzF#Cs
zsp1MQrO_(FN59Dkq9@Q(LI|=#m?<Mn76{wWCz5#hPU(9KJ=AmwX!`9REu_>*MhFoI
zcd7_`6iuVI26)?Y31O%e!e?S6!q$7<?aigMAKH|7_=gz#b6XO67$+ed_`!mQu`)t}
zKzL9>aNGJ46{D%Xj7lRSmu>cR$jD=x!-^K8Db^`Be+lB_xm?q1G=)$6haD*+wbD27
zkvNriQp2`gN<!zOsTfwOG@44`qp5#+B%67q7neph#xs&M;x}@e;e`vkpT!F2qp7V2
z1Jb~$K4LT_5QfVL0|Y`V6`}7o89|IhdP@jXtq^`(An{Pylk-r3alFLCCB-sAFt?cv
zodZ@GYK8EejPRsD=%^z6TqGli5%^RI;r#;^QtB=vbPx!ypcILRg60syC4?j^gf(tS
zN*`U$rPM=3h;9y{uv0)vNB3LsaF>jr3xws6wZuc-dRa<B50fN>Tq}e#FGxHb@4<QK
zqasXI5QH9DNeI2I5MGoK@&v+4W-io_T%m5;lSD1bz~{;73#~3&;WXB6%lDCJM7u?X
zAZm)#0cSUuHN$sN&*bp>+udQ&tn7^5C?E#~l-X)7W9J;H-(N-3evpc%t$3I?2{j@c
z>V4HXlf#z4$bjRupl3EbW5*M)YJiUV68*OepeNC1%&B?-`u9ZNjIYNwq5qfYDQ5bA
zh`tBkl5UdTL-a{zdIr&Pm}JxR_Y-}JnLd)}ztbUKYCW$bI!?!>lbP=QCrN{|0jEjq
zb)?65U9@Sovwwq*u1Qn+A);Sqrk4@@Ejo-{h5wZ3SDEQci2flRDzB!WP4w%{^vOj3
zs@9Z#9MNw!({CVpF&&1kmfxG`qs{a-MBnz8DgE!~LBG>X-$V5Mf11*-Bl?48`ujxx
z<%}u)LZbiEOwT0x=^9h|2Z)|!rjH`}h0~_={fX{0)4LJ9otfTH5BefHa#oewaiVuM
z)3+1-O`N>jBz+;#BhB=;iT=Uwru6fOew~^AB+<Y4&6NIbqQ{%*w-9~(NmKehL?3CU
zcO?3jYE$~N=Rm*1Og}{Qy}u&8$JTjDpgCbimzvXhdfbN|tK$2B=zn@m^hHE})=bYL
zdXSm^AkpU;rgBCTy@Q#4J<(q}VM>1)(Id=sUmfUgA2+2xLG&myeFxD$qBHzde%BB^
z)=Yng=!JB6otl0=(TAGpPZ7Q3m?`}|MAyyq;Y8nl)Rg`jqE9f>HKHH*$&|jf7W6bT
z{V>swA2FpbC;Buq{WGH195$tYjp(z?^f^RtIAluy7}4|0^xKKv-b}xd=!<_em2(Br
zyP4^2iN5RyQ~E#7f_|l$zL)4L4w}-hCwhM~{R5(ZdBBu@5z%il)3b<PwBMBeL86Z`
z(?=71>poNZ>xn+zOuvli`}UgB`~Cv`0W<vs(SP1!O232XQ_b`>L_hVtDg8S{&otBL
z6aDYqru0t{{dqI}9-@bu>BEV>aF?l^Ylz;(OxKA1#!gfE+CM?Jo9Ty%{(hAyeL2zl
zndzSqeRZWN{cA)YVy4d_`nnya^p6oe$xOeU=$p5j(%(q*6f^w_qVL&eO5c{~lg#u#
z&VYV&t110nqE9i?*AxBsEvEDz5Ix;YUqtl!&8GBOM9($TA0&DkGkrAC7i=<>b3M^J
zo9UMkeQAX$y{`uJ-e&p<qW`<xlzs=%`<m%%h`y@Kl>Qx}-(aTCC;E3AP3fN^`Uo@q
z9->!lFr^<(^l@hTHALTCYD%vWeWICOdm8j3C8qR;i9Xp(FDLrRVpIChh(5zie~svM
zMW*y~h(6m)e~joMX8P?!e__3;oEwQAZl+&B^d;*|>Dv;$r<wl8DbU~juPOarqDPzQ
z>xus9cc%0o5PguDzKH1Gd}~UdMf3zS{XwFaePc>Ln&=KQ{d%JB{MwZMGNPxN>ApWe
zKeX1A{shq<G1GSt{ns_7^lOMd-AsRn=w}N}>E{zY+f09o=&j83dx&1}m8qQJMDJ*(
zUqkd)zBHxRh~C3Yul*hL<zJZ6A0~PqGrgSXD_5J+e@65HX8LPHU;DW!{T!m-Vx~Vv
z^bM;_>2D|c7&HAwqE~)qN`D2>?>5uh68(oyP3iym4fKc2^u0tkJ~5?VPxL3v^bd&s
z=SoxhMMQtrOwS^EkeU7<(dT_^DrYp&JDBO$6aA%+OzAHpdW4zoI|=&RADYsiAbJ$h
zJ+|``1H&GCgqMar74&%K3RAXKL{Bu+mlA#52d4D7M8DZgpF;Gt@0-%65Ph(jK7{D2
z|6@vTC;IhfdMMFX{@axPR5j=^X8Jy&zyF>oeG$>GGSgQOefhhl^oxn!%S@j|^f&%x
zN}opb%gl70=&vj{rH>_gCo?^Q=nLO5r4J(dC1$$uE9eDpo6=Vj-Dak*CHnJknbI#O
zx^J0@UO@D0GkrSI&%J3%pGx#hGd+RmXWlTSk0$zbGd-N>zrAisU*`pVs+oR-=qHw%
z(pM1u5i@-i(SLf)lzu7EA28E%iGFa2Dg6|pr-E*DJksFv-utR_Xq9sQm^Sa<G-uk(
z8Eg4P=}(A5`EVj1{!0j@lZMCp&pXp&s&voO>WRZ=Xqh9F&LT!D52w|T2&2~@7jU8@
zJ6;Rtc@d5IfD}5>OPs^@(HJ`P3Z5c-C7-Y62MP1FkH%C<hr!8kpTr42hl>iwF>pGs
zVoU|YE)AT~)r8+wE$~~OkcKC0_FTt7!`UNn{2z);1v@w=cmJFLAmRY#@&q=y%pL|;
z;S#RLS7mk7T{`N}Sl4~Yf}@UNHQ7${)6rKGfXCMNIx%^T1H&K@a)@gR#auhh-a~T!
z8R+XLQbC4(2)qyEyes@<UJu<x(D``bbUq%A6k|n76XV9;4KR<!<I{`_KQ{QPzYT~-
zJ#SB&mqd#c&XZ8mH2SJJ{Xv;f7YP{WGsbMDH77d`Ma*aik!blfY(;?BpA?mfQ!g*k
z-Lt|S?jSwBL0h;D565EdE$?kg<r#EoGS1?}5shPAo0DVC;nYG${B~{8F(&xw5jdq&
zo4<p8@H0PSYQ}oT_>zlp?kA=s9g*7|!DV{<4sGFkNaJvUOIJE{51R@%Hg+U7Sxr$D
zs0G!*+1R_XX6mj(x(j-ArG&e?_HKpsgq;~lSX>C`k{vx6f%Aqr55WiY_{~{8kO3v(
z{Kw!^q@*+wVgk;f(@TxI(M-Rr1`epN?ia2;h$%hFUi}|quSjstdl$53RIr~ow)9R?
zt?{8)h=k%q!(fdimd;2+JtttlCu)zvW`d39A{_2pLmlo*9P#B@cP7Ww=`jtuZ+qaV
z@7gh*L7D>xFURRFT62U*9Mt}d)nSbyL9M7rh7e6QHpFYdE^w-9^=6|ludMTYg0?7?
zti_|-^VnH^<)sOvjq(z@cnj&7YmaveyUI4U^zTL_*oODF3*h+`oa5(x2X~UK(XC>?
z+Pt*{;5->k_GTx0Lq%zc*54jU#;9)sX*txm9p%w;$i+e2+<_Y$37!n!RFU<#9#gEx
z;PmRvbR?nftichWm2?Cs#F~I+I{Q|VErd=*vQ4$*IY0_G=6B%bGL7)1SJaCwCZ(|(
z=-v+9N0;iZ&DCp-+L5eXt~vl7uT_20{}q2v2|@n9=I?_`B>uR2_4Ak79DkQ_{wnuh
zl)s(aUrZtWrIG&7PT2Q4{Qgw<jrc0f^8(VwZ6Zx3FkiyXdWGrN>M?utxeY;hta&~`
zeH>_Z)Yb)Uft^5H*|ZOO65@w@I@&}6+Jp{A6YhvF)8^O0za+<;O2$dSzD<h9*yD&V
z(H8C?|KsW@H;<RwbD2zsZzGoxK_LyMG6bfg&3}z$zyop{VJ9whVMq8qLR6TZZuTE2
z0uF4mHb0)yG>wimI=l*6;4Cz1JJ}oxW}co7V0JHv$_3ZDt3#A;4~Y+Lz(LEMw8sE7
zilq#xlpS@Q8LC4v?&lDA8npQvSw7I<coKxCf^Y|)O+lwS{&e~v3R_{i3ylC$_vW&u
z%a4SlBO({G?5{*Er7LVa4K_XnHcs(}>gXQ)2^HiX_9<Q9TA;0LMD_V$_56_AyrPV5
zRAXR@%JO<v&*xN}+E_qk<A6xQqJMNxc=RuTY5aQxYf^8qi|*ph9&)B;zw`+AuhYHr
z!GQ4$OM|0Fy)pE2D$i1NLifBzHbidF7|BXUT}f<UgwB*^hRNjc8Tk>yKv<@o(m}@e
zwZa;_6Ulq+*#pb(MBb}Odw!S7Rr^aQL#HyRuoV9dYgRa`mHqbECX3G_h8q2n{`O%-
zdn`Hv|LP+;0!)C^5n!Dc!}UJzGokL(XF}a!3jpB;LAJ2i$RGPR3+ucOwb;l|ejDAW
z{)yz7n$-V2vQFp8G-|I1*YpSIQyTp(i}Mf_0;YR9Y;1qF?r*Y+y#8~R%PXPj35;9-
zlDc75sW7WFnAKrDW(zf8G_iBq{7$T)Y}Y-r`LWIH%;s}Cb*m<jrH{8W?NbJrT{@}K
zfd=G4E7?hvhGbX}An`!SD0JVPENTc-boXq8?Q-3P3!*)oe`&@gx~o`so$|&)C^)&L
zD;-SY?%Itm{-Z_FAegbbUf~Txs(D^iE*R7Cgr^WqCy>Hp`-YuPMQS2Dh@s>j+bvfG
z`g+hG_4T%_Y`(8|YYJ-s%Z9VdUAv*c1emv?zsx70JBWo&ABOHA5$Zt5v62iLat$(~
zgo2<;@+Iy&pwM=DeC5n2tq?Aypi3~-a|n_$!%bi};D;aeZ2adIR*mhuP>pBg2&dFX
zn>T>l6AZNZ_|5x`s08Xd9bx*k=6M-V+WdJ09J8G|lybnX(u4Pt{-Lv)*=a)U<dj|1
zw}CTYUdY%J!p$$1cT6d)!){y%HaM+2lq7;Wqlr&|2L+p~HPTI*pG|)>-&6gj5yN;@
z{lUgFe)~pay_%_%Wwk2IZJTo&SyfmrU67J{186;!s-8yPj^i4cJ0aK4q28wLGmjjY
z>R+Ja6jCBu>I5oe5_wx@<=NyD=qXAE1U*G#NgxqTAxDjoj8Dt!MMdJw_Pj2*Nzw{i
zC+61W;*e%&&f(D;{LwPm`BShXc#H1aq5CREYK29jEI$YxZyt^8?Gkg(A^RT?hr@F>
zvf~7D^tF<mN0GgXl<C`!?1=NM7OYaJ-pKf3EpHr@qIo_*R$dzF-7j%&T`mYYF^SG|
ziP=}-@5DL15}n2Nk?|E7Ht*%gf@9aGL$3buRT5l)5tYx*+75+a`o&kI_k?Vs<12F_
z;H8XE<ypqh>{&_1Rn%Ns7NvI;^w9)rq^lx{+K<=4%*h`YDH0m1XR;bFw`AwK!C3GX
zvS_BBnC*}chA&(`j>swp>XAw^;wpq-={Wf4L^vj@7~39XEW4Q+p6==ibI<ligwai*
zbQ*Rh0Lp>dr6k8}8tb{EDOAE3PtQ)maF{CgCc27PJsqwJZ*K~n*K@G=z1k~91=MY8
zl(DgU2Q2hKih$}rrTu3PgRR0jPeVoFk3x-G{%k<UAS5cUD7~v*ZaY@fB?#XMX1WVS
z5C|^?aXW~3X*{UfYdi&z>Q58^wfuXU_&W@l;cB4bu6I)WqmYUA*`Dex&Zu|WCele0
z?y&plf@zEpHg|zM%zYR?u-OLVukAp7**qTk57kx~kKn}a*H3o|8XBC*V0Z(@S>0C+
zB}J9lp2NdnBmYT=^OO@#!(*Go_Fn@KE+CX%Z87Fg;NB#h)Dc1Z*l^B++qU=&x|Ky4
zy>wUDCm<Nh$pCGAQDCcpuRwu|@sPOY9K5g>+tPL!1Hpm!7MP_XzNY@<RnAW==?I%w
z=?~tsq4H3ZAqWcymiMM1K&JQ9-HB-!OTlxn-E7p$g;=AZwphe&vPae>w7tP{cYTvp
zicR#u{Tk`516{(ltnlhjNdO6`0CR@CkJMPAF>@R0PY$7_`g`)CW>KqSN2)(SuNurf
zNwH0Lt&E}r&2^8sy7QvK@mnj@pUK0F#N|j@mM|+Ap#d&4H3gj*ZP9UZg6`>Qdj450
ze?R-7;|G!lvF)*X3VzJa!8jlRc_5hS;C@!B9$&BJe@L$gP><zxc2ld(UraYKJ1Bn1
zL-ErTypUtz6nf4?#v)cWyhT()0}Phel-DdJg@y?(RI)sQM+&zN@DzYnY5BdV2pW~p
z$Z0ff@W=8N`!}31G>Ax5Kk4OI9fgqcw`a7~%Zr1;K}C**_;Nc06n0Bb>VGu4EgI`y
zyUgFa^moo-33d^nSXXlb^`Mq9nPR*FhxuG8<{*YR+_%B)V9@bVC|p10Vdnn}H+oEM
zGovod)11>5K10u$-C|OL+*!EM>jH^^O{Xm22(CmhO<hn|B1|*qR2S6yjv=&R`!dQ7
zkrj{yxe}q2L@4wQh^-PoA+|&&wzwj)*jadjr}rY&(<ty6RJBH%zm0a}Q=K=^P0U`0
zXEfYo9U|5#UvgxnBe>Mz4j$`HusdiH0l^b9Tzgm-gAH^X5M83LlImwCn~tVI6AfO-
zjiODx5@oO-jlxQ$!I^7jDzmKRw3Qx=EP8=%P{u6XSEM`Z9+?BE{oYZeH@EGd>;Q_q
zsO7Arut(U>1yL33=gc%ne+n6G-ccJ3jBP#foQAx4@8LHa*afV7VGkPDaMMM1c#Aea
zixQ#JHUCMv!Mqp-&S{vDOVnO1N`lA7p!bl&GfI-lJ_mK2heqi!`<c7p!f?0uA#Ab9
zMHVK=IY1OgSS4APV_DQ%_9LD8YU$Kj$tDS9N2NHBFWTYnWal5$@~5^&Wgr;OP}UHI
zAqZdOaEGPfqy`6y--i+%?ym9d=POYw2mtx>ve4Qc?p~d6D1{>)zlY#=+|E37ak}A7
zcRd3=Jss=r8v8pL)4g_de)4xyS*}Don9o2BE6@g6`_BuaITwEmEKguv#j?Dp2$Teg
z2^TYW19_fO*cdYHOt+!-v+Xdz=|~hLQp4diO`SNMH15KMwBD-vdpPsn;<(aNR6fSS
zb-2dTy~h>~i`QN7^PapY_84{@YP{k9kOf&_IB(5F?~IWo?<vrHU#KyoN{o_eLV+Bj
z18pZ4C3{0*X)Ur8@a$bH=<Ek~udmq=5R(XtJo_6L&iM!X=~JmaGCc?kFqh`Gm7ip-
zb_!%0O({rmcmg-VtVNguEJ0N0b_6=zg&uulT4LbyN@9T5y?TSl>o*Ql8JAEQ{#x+1
z56^(P+e&RA$<!a)U{9-X4guLy5y-Ho*V#`o$jd*NJ_5G15yvgSmeSkC?eu;@tw<8f
z=X4Z<yVtwyM21GOIR6fa<uPJpF#{F#Wnx)X-6)o;DFxwMh^5-;mkCcuGI?u<B$M)s
z$z(XWlwd^bdsDt4`}G=ZLeW-EM-0T5YI$E!4Nwy@54Zy;XgUn~Z2Fy;<0+xj8sZz$
zBU(0<LH<ra*H<aAd+-vvz)D~$7@!+Zoe#+5Yr<K}@MM`R`?XOf9Vx{TN&!=;cKMm-
z6k>k)cC2HeV<ogfvD9sAO}x0f{>jb*V90P|#$WXTWOQR$Kfe(cHp#|diLvmX9N+FY
z)m)BmFH3wTxW$GnOqHjlnzcdA{KiM7>UV|Q3wmFNZ5lhT=k1e(Mm>3V*ECl3!4J_T
zAhesLs^3i_Sx!~*TQ)PK$GpsuQTysbDOhlz_T}2*tve^=(@3WZKDte+;68si_imxY
z<+n};LXdYI{czu!h9Hj+Q<R<nBls_gHNGz0=3UOprA{XWZ@29|dg31ZZ*dNT(0I<d
zfZSQ-mzpa7k)c-JpcJC=H%pc0bgKM{t<6@xBN7|g{kc@R^C)0tQJ!=uk9Q}{=DBuw
z=iq9L5ji${tJ$20J_VK!rhBzxhb1hFs$^9jTyqnt<;$p5^b<~=+Qg@nB);CNO`sxd
zUcwzVmlC_XKF^AE_}%AyP>@!L(1|e-YZI(|MZE<l)HcB?q_hc6AwCyuX>1e4-eAV(
zUhm?+z~{r)kz_C}O3NQ(UB$^UmC03gSQ*k5zKiD$*JkexxVF@~jibfrkmvl_q(lCQ
z?(T4P9ks!m9}3szdC74&PsRqu6U19e9@h9aFrPw``{-8Z&1AonnH%>c>NUWDVvrrt
z-Wc!YT|ql+FB?5?>Qi7D=U)7r{h01a@nOMv<~=%c4bckITl*4n8^SV1(AwM$EUL05
zJ&EQ#sKW{!OsDb2ENG9#)m*y4zrY~INa)9Hr=)tFvEf>FPo-D?CU{7nO^yQfFPi-X
zR>4q#;+gkTR}U4K)XJB8J`5{|jEngFSp%up>7R9RPz`8){vtJ4*N6&96jy&|3=;%k
zR2!5#mDL$HY5toj{+sFk8w(!)UlajNB(S+hW5;@!M7=Tz(8M0Tp{`uh@$!_T&5W1N
zFyWWk#^52w%co$mDG$P|Jhrdc_bkMC*$yU+dq$FHqV6g0@`QE6`2p^*w4eDh%(VpS
zvb6&d*_W8IM~Li=!|f9{&~Q7FvSVDq)~sA%2S7yjh>vO4fk3AhT#fxn9KA97ESCM~
zF`oSy>a@DT{>ig%`%21A-%l{!Xqw%{vcD&?^Tn*NY@Yp&zoqQgQ}+9sW}nKkKO(Z1
zQ@e77-OsZJUy!oLQudxrv)|0JUoEmf$+P$8*^jX=>j>WQ0l6UK$6K55{=;Ar-Ek<5
zMAwyP-vJ^-w~`&sD6-#3+23xOJ%?rgKxF?8X;As;Jo_?set^i1!)=0$2b*U99bd6`
z+sK{}`lcf5FCYN<&{BzSdS}>(YMONy%X%HpiaD3C%^;N7wj6FcyRw>!Bm*EfZuG<9
zpw;^T@ti{LO5}MUf2oigHo_ank$1!bfb!&Lda{rDs2*F9@?<kTnZutfQJ$=#Cw=&n
zNy?KY^kf_LOFgz4_RV^KeY5FFI)4(X<awB$T+W_^9b$PpfJcfUIz1^t*U<R=TQu+(
z+%-<ZpfQK)u6`JU^oy#|!fhup^HQUAvh7BUl7DZdm{necwt)6uH!3HY)>kmH#sWF5
z!&jZto##f)9E$qB!E=UG=&oHfIqIw*HIs_&P+6nhTa2<pAnx0+;h=&F%3h<pf$rQ8
zT58z)kdJPx8oN>aPbOBD<oQR;)z$qN@I8FW5p#7}(Ns{G?EoGI8!@OeO;Q%vw&J&e
zbzsc8t;a2!b>o?g-QQq>@TIL=^|&Hmk@l`$?7dXS40!=;MA}`{WIsdZ1FA2?)C3$D
zhMVNdNJ`gJG{GmidX_X!4;ej9oP)EY{sQxOG+-3TvoSry7Rwvg4Q`=YEs!Nbnb18$
z_PCuS+MLTF+7O5~yhGJwt$%Swr)M?YS3-}nf1$t|TuOg~{7lID<`qC$(Fnw7Zm6rB
z;$3*$Sv|fi=LW5C=)fe;==F)Yb=|XCJIn3Zu`_ch)&xQZjP&RrpX;6#lISe5Cl0B@
zy08zkKxNsR0T+w0u}~`gLQM9ncvuwEj6#&zYdW9#B{^T`$rS2;=ro_HQ>D`ovbDTi
zdWPDkYK5J0>yx$l=i#k#>#x=F(%8*)THZ#eo*w11eQ&M~yg}%mu5UWYq0n#wp*I5Y
zCCE66hUo9O_0`vcgny^zkanUWUiP;WCa%EIbnr)2ac)S#90BVVpnbB6QG-Jxh*&`7
z(`+e~ABvKU=L6+uEZ6QSLQ4>(feU|WEzxzU?vs?dV>&a)ASYt3JNm@v-mtpkuOIEA
zb$?Z<J0=!`j54?tQNEU!fCg0khFqg{&&$$eHF_nGBfW_<V_A*x_kXU@VYe(zR--|I
z^0mBA!G84{x%J~R?vtuzTR&IM#*};kzE3cM#imT;)7QdS@UM<(dI+l<{x(y$-1^70
zyfwhht$$L>A5WMswxlm358J1_*CVlF-S97xza@(aFUyUknw90o(S__89pp{g!hB}k
zn2^y5d*q(KR?EMO2<4?z+qkoF=&WwZiPxM%K&2Mh1C6x5mj3}BC*=9G{KdG@-D~YA
zRCle7#$`R_)P1GMm|dQbhbhJfMB=>Rlo<1eY&VYPjKNQ>a8M8Qz#rA}+1!C=W-x8n
z^ZbP}G$#$+w8HEj!3nuO)a*+t*jd^NlhX`?N^-M=Z0)yjC`$6h&Ug-g<Fhh&)#GM9
z>aTX}j3`t-KC8Dr*B5>bmIlLg&(QU>B$@2Vo>eKTyhC>{CN^~Kvs&7_=i<NO_osJ6
zi;M=d{dgFmUjhGPY`H>s94U!W$cU)Vbs6EJ<}hl$g+h0o5sY{TfM&eVOaYM0$PB0V
z7ubL?l|9$ptGKLJu}a2o@sd%RYZj;{Txca+Xgh8GQ%DI3#AaOMFD3tM#^nxoE)|vR
zt8lp3-8vGk_a-FvC!5<qm^sliuShBgiS<+Ahh3~PJVQIG<i_441p-O;a#IVgK4N^v
zsJZ8_%ea)AAvOsx1M|KC%Z)qeeHj;(ho<(675E};;d$YT!<j3FNo--pT0%9BJ4og_
zGOlQ3+@_InJ4ePH92xgB#(FvZHRoI0di!-s%)J2X?TeqxdjCd7X0Kyir4-HLOR{$|
zlO>iYMczla0a^3Bgd5HI3jHk{)QOuc8;p8pz+}rbPa;b&h$YDGButhqC^<_4CX14a
zn8_ZdzlB3lk}p<!o<2`OW~<GA7k6a3B{_pN=R*7-^F_VuE^5B4`di3uu_d%OCM+|q
z8=Jo=J<1VN<v_f*Q_zntz;?}~f=8m_AnpMH^Nrh7eUK+Y9Ek>MkdiQ9O~$dFq~ZT9
z?HZQWZ~jaQ%>4f%+j7<T&Hp%Aj{AQvm$eF;mjayw3m%=R^*C5|hz*+bj$==V<%@9h
zKd~{=lYs`*fClsv%oG+Bo6(u3`@@obTe#^LgP!cHzclCS+dP9@dew0_73?bBKGriP
zIN4V;7Tc0tr+LyPq6n;%Y#iC{q{Fp+tgEW}fU)3m5^HY#bs3$oF&0J?^ez4IMk9UP
zPBf7#a6|0aL4|)7T7nj1gYYMg{tO7HscHXa8hJG5$pq@(459uF*0YkRle3t46WYdc
zBP9{OZ*Kh!WXFrT6K!riVvJ8)P>)u_H*MMd>98vXGbz3P*xngg2cMz~md6&9BPF=N
zC#w+@*jy^QEwu;eKGax^elmfh5bB%;7xS7h3l;GBJLh~z)+*uT5Y8fwlS>yA7k@xo
zFh+&KfQ&{kgfoWWutLx^qQL{>SS>dD!;JP?VMOlv!82P`zl9Y-*d_I((K}7S{AD<G
zHZf6&jw{%rphu5Ut=q5}hzFrv$JwsQn0gFM67=ra99*k=ve1B$VKoVWrDYn`cOB)4
z&gzlaka;II*H7r?i`&F3LwDbdebc(@Tyl9aX+C+^Pn39U_nl)StHyfn^^J|(=WySL
zP1yUB%V|ywDSp=7_l48q1cN^4h&-nIw&;-%^f_QTB6lXYtJDfv;KwZCrIeMIs&_AP
zL{=oXE21Ty)P#a`+5kjG;oOjbp5`UG51ZQ98Z-7p1j8Q)+2L1dU;c{?4j`jWm@L*^
zRS*X>5u`&LemOMg@uxDLqD?Dyh>>kK$LwJvcMb?3*>%Q&g;B<5(OA?7K?r?&?1+GI
zdNFb6)2j?#I&n;;L%jLr8J9Bgxr#A@U`f}p7Js1nqyw6>S8vtH3}O(y$r2I}>?v6^
zSzN3hQ^9*bo(aKhHVCZ%+V)<FB4)PJ-Cg#0SEH>N^_NkL#P40+8>#JalejZHZd2S@
z=3#iYo>WQY*#J<ClPl3L%L<Hu)p!;*c7G>UB}{jh=(`M|Ks~=y%TFgOLxWr}7B|%I
z)3v@O{!VuX^c%y1QZ5Oato^|Zn#IMuj+BRH7M<s!wD~JYRL;6?+QQfA&K>sDW@?{Z
zr_;rg`YYaFnE4zET2Pz<*NM?`1xDQX7Bw4)KX*G7-oGNV3p%F=7|g>oc6yM@_99PF
zoOK9Aci}~Mr3-ce_CkUX48HHJ2;>e#8RPwKBva!ZcG1Essy(Q6H`Kb@%$rcyj!mqd
zMRcj%hruE%uR}?V_5cm&p+TyRRNmdJpui(=DSBrCS|GWOIc#hvBa>=Z;+JfVmRjU}
z3o7$>v72x#`qfSJ_r%^7_4kxte>&IS8AX3*pug|NHq~Fdfd0a@`R{T4wbvHD!u7YP
zg2`nuT|B86H1C?3iGmz+_nqO&!={cP5Ns1sGSl4|zwY`4L_!HhvINChhav5FUg}MB
zA=Tk|$XqHgkU1bbqq+-I-Oubos#^rrwTJ53Gu8cB&Z_teU4-gTUWez;Ky@gOtFE6^
z-kYqTz$3Yy=HyLP$Ao%@RQE1dU2_G=L!!X^jt2{-XqSBd&vqLc$lQ}f6z8!2XDwYl
z;z|o&j1E_Vb(KnXPjh)ie^9HzNFCi!gcdAP<lljEFiRA@qf-$5+|8mAhTYH$3e1k0
z4(rmL<)<kAo}&1B${2+`u)6yRJZ8I8I0y$M&+C3gAR>Mm{cHGelCapULm-pK_S0_I
zBK&x$(H09T<mgZ@><0sB5Ol!)LZU<SHf3BFR}{AiqQX)-;|A-b?7ASzper^SFbT}v
zKmsYn{6a=N9fS(Ezfv6Sgh{--s8y7>JRy|K&K(xH4b!OD@$^39HSD`w8V!R1zsU3m
zci4rkv=o&Rj@JerrYD?FdP6GgSNg)eyX!%^xKixyu2n2;YBaW3<I`$-G~<D0{Pbhg
z=oT<|?+tKWx{J1tkxI6$qNP1vv+C`9$=8oU&p(l$zrdn{C#*B8DLq~&J@$^El0CL(
zhX~d`7bik7)>kO3_d!*O^%Bl{@tkH@Zxvu2-<$JSim~pqGuBVhg|WV83yF!bej~9C
zs|je!6E^xNX&Q^dR0-&zS*10~<m=D4OsLA$Uzug{y7XKuhr<XxVdrNP7bKP}IYl25
zON(v70SjfO$L4}4z@jVWh|+0SxV>OP)IcnCMMYvzF#wBhQCG4-)&VrbJnXaikh~vy
zv?-7xyJ3q}aP?^rMmp_7rnPRG@Ir~<C@ccybcc#gRB_9<8}}o`Q)7(An<F;wTx#EF
zR>(;l+1876p+?uMfFQS!A<Vk)w}lpR5n+35cite(<OOlq6El<LikbK}aWi?Fo5>qF
z&6vqSq!BG-ViPl|=*`UJYq~Hq`HZDyX3|Y=Az^)vbP8gdHv=u>i%+-}P>rgw2aOiE
z{YFSSep!D0l4u!q*?tp9mmYh^ur>#gl6622;l?lUI81_=K1zz}3F+g#Ia=$40WjS&
zy$|sAf|m|hGPWm?3DZB?szheY?wk0Z8f~Iv{{LepW5#>vd4<(CnGsX`|Efm+zk~aK
z?%P*#w*>!RLF$98b1%tVGjDVxvLdg^|KBbA|0eGL_X+>cS5!UUMdgA&a|pN<dsY1*
zU=|ZSRKqcWLm_~JlBBOaDTRQCSbrgjURz-X-mu*t0z&-lkc9whH98Ab_zMe9^~V7G
z67B<T<P>oWw^GNr7TnL>KtiDy@bo}o;VZ-eQOv?wplFN%y~>psu=d$T3+EhA3^-TT
zXyGgda7LLUJbpQ|@V#_l7QT(84a5M(Ln<nh^dpY}1m7eEZ2E{>Iz0-+0FFXx`%r%F
zj{zN7P3iFq(qn%N$Q&S8|3qw-W2_gEoEllb5>=IAz<-}<hV_PxjjXd6AhCX)4!Ur6
zJ;~0ypzyborBz};KwF-$TYum&fGZ9A{HQW$ILu`IN^6V(Uwz1BLRAjLfPhS1m7dEn
zpmvtu0nC(B_+tPsplQ3%VWQOfF{q*UVEr*5!5;%|^v3|K`1oVM9uWiBJR4#_8X5|V
z0j%qU7=Sl45ChU$i~+5;`eVSok#Y>k5itNcSra+9#ot6au_Mj=y(Fq@3NtVKZJ~)Q
z5KW{7X?twrVuhXLi!-B`ovc#qq`p)M0<UH@V<&r%Mh*g!os`nS1MaS0vhxSXPCjC3
z13|#wM8YBun1aBktoJ6mM~y)sU<M22=l&pYCev>NPf3rP2?F-h!XL6AfDK7J2rvs^
z%4dqd!AnEsfGNYDlMQoybIG#%Cbs;4oWXb+qd9MfCIKMe|Ji<{e*p?Zx>)Lu``=%H
ztHh|;o-vAScnC8a+$6A`hw+_wam&uknuWaZGl);jX3)=IZ%WaMA*NBH`MV9xl#+?9
zW=v1$_|l{lnuy(B0$bh_uXFJdj1QK96Y7r2>%r*P?Bj!%o)iV<o@B#)3|^KKPY7P@
zir}@1e&c0kw%y;=K}?IC!FC_kQ|3>>Pcr^zlXSGJ3Nsn#xUqNor$<wx;~TV52t_1}
zWD<1GU|;ej@Y9VWnU(keF$-e|SR8aBf>&pne1T->`wb``0%fmXvJLJND02DV6Xx&j
zHhuvF{BfC6moOY#+?hLwpc`YJc!d=;#?%CLfoc7eiYlTjOlLV==WZaGlp2q{3Hg=4
z>SXyb{io5}8P1ca#Wd`$^3Weteko<f)JuLmJuWXwpx>Yu(A8NVtSx9w5AYJhVxo9v
zHt5cVEAavc!aZh2o#)$Y`8tLEb#J`R{&lBMPSB)R5mbc<yCX0#OcE9)M`Fz>!ROz&
zjJ)xCb8gd|A;^rm;|@bcdhWoSb3Nvq3z0K%$N|l{6gRZz-kCu++GkskaC36-rsVid
zGj2+bFU}gQ`^p_IDk>Yj{RL6Wsg7u6Bn$dS_oN>BM`nuM;~QpSw$C=D3%QoCd+AbM
z3UkB2ie9^hXG|sik;<oCOCD}el=0r{6j4}boW`vPgS1ZS4!e9kcW+D~p0H_8HM%z@
zJ-kEd4y#?)=-$$)7n(~oagl{GINk0J+s%_iW1x5=kx>CXnr>hdf+bJb@b7sHB+l4)
zl&%4eSRa>VrMSLY9L+hUdab|r%W>)9tNw>x_D+zCLPglBC;g5uv+?mjl8W0lj6P`Z
z4(m@BE-G&&><gr8*%MnoTrgXY{VzV~@Ez!|dsaK#edxWBlh!wqHhH61R$Co?|J@zt
z#RXaEWqKp0HJf~No)6E^^mSm5{)Kx#p@~RrEk|1}gMD&U?Zpm_+A|JM0`|I`(p~iq
zSD81DW-uc{SRwRk1TB-2-R9z|6%ND-N^C|tne^-_TH$lFSTzgscGkDf?vB@e!YQ?w
z(52bk(_TB90Sz0)YHAyeOR{SpD!U7GWKK;lWkq5eLUAb13?mJyF2-+~B#1j(T}TP4
ze`J66((uISo<emZOM-fl)Bjd`*J>6TF>}j20FM2ElF3`bDDB3r|M7qM2Q;0s#?k{U
zYIN0C(t8egOW(Idve7h3GX!Q7>JH2Nj*K*;50P{>Nx>Vpzac{T$0|FK7V4?{K<2<x
zlC3;0`haQG6|jU`>2vh%utB)^b0b?R%U0<vI}iCAOW=N-xWhzLllU`@Ufr2{GMDi-
z4c-tgXcoEU<wU{a65hJv?gu`O(a>C&(?M4=uMdq{gkSP6+aD&+<hi#&FFuctl$^m-
z@UdV$co%(5DbANrkR3Igj|tOB-pjbFL)#8#qBVX*xFlWJ>1RNy@QRJEZqXVMTmH<O
z#+)F0yl3!NPebJKhqU~mjMl4bI7#K1Xoow|o*chV%ex+SKrS_}H{G~Lgwk4RJ}vL#
zHJ4Db6}RokH_!@Z%|0ip$F>`<x#_N8mTL)-c&?16Nj^*luEYqp?IYv@!{HFtV0uzO
zNnMFBB+2FBRjO5tzCgS)Kw_S|As00M@?m2}*r73>_1<X5FW8<!{bd*cmVaoc&22A{
zaUmiZFa8s+B;r-tO7CRmDiK*dwkuersgMz@5ZXJOkM9XkVV=PYr-uf4`?J)663@Np
zFL8KdiTEND)-)*%+uGl2TSt=Tuyu3+3EDz@HXhvExc3{gClqk}mP2a*JlN<IY-mMl
zryhx2VR-eOM(D$70&yZ#q2-NX3ZZs@cYX(9eW<lwi+8gY@b_@!Sb=-;>hzDiY(Rh>
z+g(?Sj_-n(l_rO<z;qiH@-+_&|E0{Hu)4{OVS#Is!orcYjbY&#3JYA5Y+$%8jQH=m
zjxKCq_$5ordcD-9qe;REa>YGik(h)fKDgrjFN?_aZX6yhS;lLfR=vg_8#p+%_h<YM
zy?9NUI|EPHjf??$JhAaHQ!M!j?^@>2xlCua%`5W0N(7Isf0Pi@qc2HfqBk^!n0{QN
zh^gw)X2kS0(ul!9Q!%~Wfr;rIy0|EedRSVBX%oGbmLkOD!`t&hzn-xAZU2*)XaVi1
zH+ij7n-kM`|3g_!;fw(i)4;~ZTuf@i$an$`<1k!gz&UwrM;7`UMxQCXsqOMEMjF~c
z64`=}W4k!KU06w&|J@bm^R}fQ9^2|Gh3vhHCE2G0WdBehm;Kk=MDKc}8QBj*8X^0P
zCMJ5*B~13$(uJ95Czh6(=pbgIvP1HOJ<kTL|C4#vioRA#^|xm8Jm7!m%?g<3(tl9p
zN$%e^J|2L_#-zoFMOherh((bm@#rWGRh#*Ki@U&1Pds;ENp@*8-J&<Ka3!NTy0_11
zqt_m!x05|xuRYQh$o{uhP=#<KBCYY2V490X3qhBiVllj{om^5Z4L7Ff?k^Y!y^T7M
zN_KzCk$l>s`$YJdcN=cXf?`=OeBO=pBO$mya<Y`Qhw!zRR=U&IN_)Nw<)F8SFQFUH
zGZ*N?a5{Yi#(AO@`+5srLghaF=?1z9H%>7R%6b?S{5(1~>{8|EgH6=;qTR))C>qis
z`qB)R*!?j!az8ytVILRCj+)|d&nHfj=ho3hn?Dzs@tvsIS+vZapt}$$$glJ7s7)=R
zQImhJRQDtW1D2$NmsN&0_J&ZA6cSY^i#;U12*dt1m#bZflwO9!1N0xJp}*|JH*t(l
z&Yee$!b>~VdB(rkz3~RWT*WUv*+q}9)jaJXsJzzL6vr$5Cvi+~n;)Ya)E6Bk3P_Wv
z4hTWU=XiUADlWPS@fDhrMQ*BUSxBq?Sir!JD7+=iRxk0sFLnSxcK96EA?3C9Gt@o7
zGl*>-snOwHNHrJ>{_jtodyek2CX9_K9_v|r1l_9S+5^eH&HnFRjHS1%%N+5WX7{5_
zJP<A|1tC<^uW%zw)G>iX1eGQQ2YcU!FHUxCs@`ENsw3$b5$vM7_IkTg6M2UHBuTLC
zZrc2Jm?Ubng|rQe3YR58hVuco9grko!UfC_Ap)I!X(*R!PkT=AT9Jd2K&{1DBj^=#
z&vfPUmUy2T_5({CgbfR9V>VZ{F_A!#GlH`aT;ctZI`zA1sqXZ_ys1>_4g9Ca_RC$=
z^2ro1Y@P*`BD3Edu!F*T2SjMxy#QVy7<XH#<ZvoE6r%@hHtSFp(kWJKf%}unvHN#&
zbBCd>f3v*YHQ@6Gec>N`*d|0g&m4kDzEHU8*o+wLon&GVP9%TRoIUtnQaRgXi29*|
z{rFZ&Y(%a8#c-V^&YJg6XDGSyJ`k}<T@3UiQ5*kF1iPVTggx^4n=)Y+CHmTJqELEM
zp!O%d_}A9>Xyi-Sr=`c7#;83)b1tBQJWt1BD@;%H_HM;cstWnDibzDUdih*pgq7{9
zK=(WwW2L%?nd33D84{|yUuSI2J<kL%te{JG-TfjXVN0P)+)=iiO}d+vq`T%advW25
zGqiwBs<NZyMwc4SznE=i^UHr;fWl58MH7Gh1vxk69R*=3@T}ONa!_|62*R3b^<BSH
zH*hTG9P&?T`TX@czJ)aYOio{2RJsQyGlFTSVFc}o<@;f=iO6-P`YYq~pUmRun?F|&
ztgAua^+$4kT}D@=E!6RWG;H?u6Vt1)8<@3b&uu;jzGcBT1?%PXf)O_GoNz>z<6A)3
zqv_y#&m8f)a>j{jXwEfAglcq&z|J64-4R)q9C=<i1I_soo;o~}V@DOh7x_w)eZ{wX
zdcJv^Cw*dNptS7Oc=I?D4u=XzcGaK^y|Ij(#F^OSR2Dm;U{GkX=jmX)GV!Kfbqw3{
z$hqgA&8l#?xLv!j=-rl$dZz)*iEqpp#u*aC*!;@OwqkE9w(sF(yGlkkHn9uryU|vl
zRh|{%@%{`g8s8T{pRuIzCi}Ay3Mo9ofuL2QkI!F?=!LOW&ajz-uu*gXX(ujeNO|KM
z5XUe(J|xhHw3p~xI|#0#Q5o^9K9nf1?LssJ(|EK!g}^5J18sHh)1Hp7bL>KK2;U)e
z?k5xQbQrI@dsa|TK*h;1y4UeGAcDwBq{0UpD$qERD#9t?MKGtr+#JO~)@mt>Q3Gj+
zrCTj;DwPf)z!kBWi-LLQz%vvter%_2KBQ2~KAVkE2zS#?8e&2?9R?;liz^+NZIgG-
zC1ZbKWBX5b?M&wF-{I-`QgYR?u`&A{o(Fx&ycK93`bw<kEWuxtg?+M)n|&0rTqyRi
z!?hE*IR$9PnWN~fq{d?5jD=fqctTL@5l2ih`yvSM2jo096YuX7$FkC>D0~Q`2Bl<u
zqr06<YQdGdi{A~S-`Q}I>?eEZb~0DN(r~ANxsxZ@czqhw?Zl2fW87)pL^q|sUFM_>
z{=wC+8u5&XEx_2@iBKUPun&tGy?6$awD%P<%xp$5Z2Z!H9?Wz<tiL6DArZk|pwwwF
zSWI5PYT1@fe^5vt#|;|cVH|Z%Fr$5L=<I8CG%M!0hoS%@i?uJT+N004ffwLUI_G<q
z6hA|a6wwT^g?>XsX%4~@FK<Imlk)HdBNmUTyrD{Y8?t$MG{U7Kv8wH>{@56m4?ZIy
zoTl?LY%E~nFPeNfdcwpmRfSlz`+YsW684ME^f&XLT4B#%>?zH_*dOok#P7*?L@Rue
z^pdwT9WtYSAWaqQB`F3<!~4OQ#=;BAB9ulUyafB4C6#AOg0)vmkhfJe0*XI3_O}LA
z7a8OKAl=99tUe4x?d6i{y~a~{V5={&)%Z_|ADOqCV~4$wH{r6t8@e7mdc{{}x2isd
zsKqQ2H84)nE8>m*&A8yi3uJFLqM6@6p?!+k7`CEw7AQ1l3cd+P54sD%-2vAhoLe71
z1MQy$%oAn7aU%Mnl|xuOZqmza{Lb&~d?obhK}P4T#_t6O;xt0^m;CAcRcz{iQ7hhs
zbDry>Ejj=!+I0<&mvgiKeTVoOyl2N%BYM2p`VY?>j#mFBTD`Np5_2rRWKT~7pBiM%
z-bne`YjQly5bZR&6*(Q*JWgY!bg>OPzAEQ9-Yy8mB<W!Kl;<<BoxK?-bg{4<8=_uy
zDN2}qjV|@ME`|RL^*M_wSHMn+FqN~sdXI6_Z_F-=s{f$kw3myjj~jg$jT&GCtOE)Z
zQZmJZSIG~X?B7mp()e5qmtgt$kgeyA;S{hCy7+EsNGXy&cI3uf6{7!Xeb=x44hXvJ
zF2s%r8gd|P+^l<UFUHhOGG?v)y_8MKk*7f}p&6aP25Z)V*_j+!Gd90O%R3F_u-Hv|
zrHfD*zOX`_oK4t6j19yYZS<<&(V1=BbIi71Cu93H_Dd(D6UetrkL~{R*vQ>uJrkmQ
zj`*F~Q<6OsdivtdCbFIPY$vvVpY_<tt;xQvj!1ME4<ut-^{%61BR4zR?a>Mo!XfS+
z4n&#errp|Mtu>uqxS-KvprNB@#rOELUD})V{5=_$>8=BaU3hCH+4TeZsSejs_JK@B
zK3M%TdKzAQZP{nMjP(Jw{n&5G{7T*qHp~W!7)LUN45W`Gp(llJd)Ml&XG3Y#-JVb|
z1L?+u!icm*yQxh<O{9cku@4zL&K;4Jm_Ec`EGwnY#J4=clVgf>cPrg<4@OWWdesry
zBhFvp(RUr=`aPH&d2lRVlZt`!#dOXta<s8DbR9zb%M--66)=RtfSD+%rOD2^;Pk5G
z;-jsS@j-TMkHjbl+3Kqi3tFKz$&n=vS7*I^1n=j&TWN*kVO7`yOcp!@bq^|_PkMr)
z6D37ZQqdjV0fxlVDH9OM2b~f6By%{MS*E@u!4>~%ho!OB05v?T7az03rjO89Ws9q0
z_54HlJb&>C`1_Jmy6e1N{KpVIzkz7S;3rG!c)FqfbRnSq&C}iDPlt(#5^zT44X1Q4
zPIQ?!>n^wn`t&^;^x+eR_yo9%*kFShb@T;)%IhDB*Px5NXnAbr{t$|^yZ%4c&Ii8A
zs{Z2}Y&wv6r-Dub8+z4|mQ%5qf^ItXPVaP@e^AMmnc}~ivH|Ik;oV@j%Y$ZAR#d3{
zu`;z^L{yd=5Fn=UrxdjkHTAj9KdAi_Fxl_@`JU&wf3|^Uzr9}YJokCdbI$jC|DW&q
zo^#%on;*IV4Q6DxJQa`JPxAg7v7Xl|7$NH+g<^$o#ggU8hwGR(Dtv=tPgutbH~bbf
zv}?$!S_$MRaZ^Yl$u8!_hlAXhElkd{AMCF#9gycQ%7y!!qRZdVt2N!s2Y_GMc65HD
zDundILt-iuq^av-IMKHE|K(Kao1UG_QM?1-lVje}W9`x0cYlC)GCSfDL6D$ei9*lL
zp^~f$=3g(I&8mu*_KbOpPq0rC&+i!<|E_aQ6YuU9@ob5rchjq}cb*|cG%}KSmB!*;
z@pf{!>r<1qX-~PtH3A?-KJ&X2xR4+9sWC$5BLX_foYL<CUxg;Ou@)tWWmQHJhv-YM
z2u!Vr^=x5eId)0YzD%;!4W)N2o51BrnA!xBn1OAM1}#Abs?-+c^GlA!%|inbF^usZ
zD|=eTK}vKNsnL>5SpVVJxE?XZG;O~Ihw)>o{BSnyu6{gn>s+BfMF`@}SfU#(yO|hB
z8N(gC3pX^(49FzCHcPNWPHpya>LbBqb!^-=S>thV=z7&x{nTtW3*XAdPi;mQMi(Jn
z`jZJ+^G;Uly`BC~Uz9!a@3xDf)Xop43sp2!GX2vIiLCY)5=Y(i^gcr35V6QQkT?Q?
zQU6gN{gC*q=G+X4UJNA34TVJM&&aJk&Ncc8yByt}z8Zx3jW?k}kKisxh4$m`*Mz=)
z`5^=q*!&BNckw3_^}OckF|p-C_d4={?jd^}X+wZscE~BR*dX@B`?lk0X5)H#VdzDp
z-R~VkiD6zi{U~~SF1*rmsm54sD@)>D-HA2Q!gL?SxN7!DP)8VIg^J&>!N2AOp^rCP
zZr+18eZBt_Q&kwBosk*?pN0WCV=-~hS_QxjAFkS1v4lyyfLy|_aq-KwFkgbLIQ`>q
z1S?vZXISZnkBtr=d?Zri?}G}<4uFYmnGV08jc5s%!jIc8j3jLG&KtoN4w4pcRM%(J
z*D(;1b0(fefbpJL-aDM#1MA*2%DT{~W-D<$#m-5_I)y<usG{^#t74=$zXzsZtq*yQ
z2VxXVzR;ar=Cvx^oCGv>*DwrJ3ACmxpZa6}Y0P-qm+A99DE}P)->ZvmbNMwVXijtP
zD{e;U-e|jU;00GE+-}qFlo`^FC-LnyFR(<<G~$}02Ld6Xt*FA%dT@In(|{jt_YG6A
zoQ-|7laLW}@Q>K0UMH4FYa6&8_ik-+v-V!vw55LBw)ptfEOV`QE(9Dga`vbO;*9&T
z)bMO?Bm>ar^sud$Lh%45f~t{)T9wd{T+uLot=>lxzvp+{8~et_eG1M_6|Fo~n;qQ6
zvw9Z8GP}RA_MNTq<chk;{oQrr*<lx+p?4N<i-k94a`kG8p5TsEZ~@m77$l!s`=A1E
z^~t~1zVlCFZneqBuh}@f4xeN~?f56^rHT?eDk6zWnygK%A*$0>bW&Y%D^crs@?}@a
z%-;!jcTj0VaurZl%&u-o{;^^FmiokdeEK4~_cYv^BWvO*IC54=ef73TVm(h!@0ze@
zgLf*r3H<59wlxh<c1!&`o8!rv@`ggZt;UK5qRUWgp%(WlO+ssUZHl2&Qw#xyDRJ`^
zA!41=Q@`nX;!+LCzkuromLbmH3WUTIiH5yM$Vu+(xSer!yN{<T8<+-9Jk0yJcWKq>
zT~mwQGPa%d<KKi}oGTGeKHiXgj#lP;TcC++l26O68uv_W7>=8wCGa;)9*>sCCG`G%
zKqrGsx_iq-A%-yA<uRuCIA&<9yc}(|U;X5C67EM1Z{JbX$|^j)oc%mob=?Cz;3i<^
zxvRwEtboRGh?Vy~<L}%e@d(Pn*!kuBXLkFVIk(f6xnOjYSYz7JhMeLgo29CASR!N*
z`j+_npXH|H0G7VlOFGGV3=2a9_)otqO@58F>0j<Hlb<#Dy}*9K(~e~WubMoJvm|6*
z@$^6B2E}U~9ECY>G&?vJHVh8O9zmES*qwDvt&1<OsjZ+YC{R<@Ra?0$bozb^+U0Jv
z7gEqqp9b+;6x_9FV)SW^Ffc8a5^6SW$=Ku-dNM_uPtF%dst_PQq8)lQJEd_d!MO6^
z_btEE@9~@Ep!3PR@9HNNH0H2ICH?}cr=0Jne;L+b&2e?>HI^eNpOl?}9hYpLjX+V5
z!krsu9BSk6nsQ*E#u%(5R;j?=YeQs#pU??LtN$UgxE7d1+Aw`DS}4)jyo9Z#?{RMl
z_TTL<wtIa~ec|{0s)K;v>~sXgM~B<TSa*wSR%98e!V&P%GY2Q&sTLfeq8EPYDsn@I
zfFs}O$yQ`0qQvjmMMeL%FoHj7IwV#6wjVtUl#!EoWt!;OBziVEQn5T%$uGaO?3jx{
zB}(S2_G4+Z-EeuL?FHRz&n`e<H$^%x;74THrDX&)Ys=~;vL^IXJW-aB#Izw*qFs_Z
zCqj#QR30IMNaqp!sEsUZESt#pmTCjOcA=%UW_L}uHV_wOC&$qC`Jv3`+ziPiW=LMr
zu~0TcvO?vFoNI<8#taF0Xd7p;JfP8+?Q+rDS&CXeKKn@WME5Af*Jfg+gU_(>lVb7I
zP<DC-^v9-8ukD&dfQM~-9&h_gEcs~!|I-zWG8H2tu#sYMFJ7!Si$&D$Oh1Vr7<=TQ
zzo5`fxCK^h&XYPd?UV{?r~2Bmu2Uq2vdG4cO|T;e&UAM7ZuXD)o2iN;+$CxkrP%ms
z(v~G1&2GdKq<N;uYpQ<o=7SWXVD55Lu%7wp*f@=#VtTD(zk*ykTiu<yfluDhCnsn^
zY12zid|Bm<_9lG9>m(h*moa8FW$u3`I7oxe+Z=F^_5y7*X~YKmi=ypxCzcwm3FqW!
zb3FquVZhuDa~!qFH?+^dre_<*_0%WdW$LAY<=*3;mXp*RPaV=Q{#i|pPGnPz`Za%)
z9M>oQJ#zN`4b^|0IkLWQ)!E*)KQE}?@PeMUy-X<`D=_QSqhD>Peqr{F4apZ9#=p`)
z{x2IHXbkl|YKVK2f3;4&!{sk+JGJwlk&at<nA|GI;a~Nsb4wah!|SX68cFDQBd@XQ
zl&+EEYa{os8oyc=lI7_uVud^6SkGIw2%5e>iWoHvgLU}8#D?U*Xt`}(L-Mlnc;S}%
z<jED0Wv7(YcAZ=qhFZKa4>5P++@<)qmG!CP8&a3i>ec0Z8A&9lHST>Lzan~6ed<OO
z+nV|$7q6&Y3Ubr)e4~A;lTR~b-W;#~#|<U*7~bSNy+4dI;&Zdfk^7ku!lRAjUYBP>
z9{Q9g6{-mORr(|7qbzb&SLhf@2Z#&(Upy%Wtj8Il6L1inj2GhNWIN=VlMBnsiK@`G
z#|r<3ajW9V%V|jZ4@arMzl;BN(bDPGl3($ZaeTG?3e`rs1e2Kg@h)Sg%#YV>0Ob@?
z=HZjUsA?98GJ(~rsi0}vt}p9~4I*y-w(C%i&*O4q?@)$tJmE!;f38>T-nK<?01_)!
zL~hwYReFKx7ao~JLK2>cZFo8E742VNxR&g}=|{^fxih&KAD!FRz|NifllEM<PhTyE
ziF9$bsdFMm{+XN2^c1pb&r`9&b!f#IpVvNO+O?;KmH;Ec=5GR^QVAW^kI#I;%wl4D
zVJjeJOx<CeMbf^#iVb`EbzBvpU4n}Ir=C!Q`L*Z&vVm0aUq5^Cf_k5LWs2-YqwEDH
zTAD~B*u?ho$in3+;Enq0gR)RCBjhjP5kFu?{|}Q~21upzo9I(TEI9&}4TnLt$e_uV
z7TBVUX$%TMvYHUP>TZ_qs(cGy@H3{WYJ{GNndB2!oyKz%E%)!aDW_E$To7$Hh=SZp
z%y=U>Ci=FfM;w!$q<H1?*T57z!(n9xCH?TB4V(tzqbZieT?Dvk0ssmH@RwQlW`*7B
zh_>^&>tO(k>trB`)=zB&sS0xYNp|QRdQ4B2*ws14a!6cH{6hu3c1g&>>#;15?zkah
zA4Jg-45VM{$Cv2p1y}6#7X4=M5$T*lL7-j`UCSdDHfj}iJlY08Z47G<`lidpYgBnm
zK<Xm+y=XK8WzA>igl3t=*CzWb>Ii(^#8|N*`AGeywCs%qv!9J=cMzxDH@)D@5Zi+E
zVnP~{kJgi}l-yA7;_CIAUThfmFGAkYzJ}yK>c?%W=RAu}?O71-e3L_c1c_Jt!wI-e
zYkC;W(!Y+VUT5fzg<5W<I1VPc*rko8mPWPIAy)m?%o}5=2cr+z2M<Q4*mY^t(9FvV
zQ2oZ&MpxtMi&?Cpp^Piq!MLA#_<c{%_SWFHRRJv9?00}`R($YtrT?qHm=^FRFaC`L
zXA;~K0+Ag?nW{nQ_)i=!hE{eGqeO%v=pbX}b~PGy5L+)G?5I@m-?ATwIl&<YzpNnr
zoY=uD9+UIv&pe8E_OhEAiQe_>4HXANT~_H??0K_R$Q0{Ema$46$lJGHhL?yF8Cf>!
z`GqVZ#c3SN&zSchy8!a|!tQ?C2lReT=(^6J+$>b!XD(jJM8l1d1uYng_U%_hIxe@H
z(<Ae>Dy4n<srZK6#4WJ2D5}pG8b=}v<uQ^at_`o;mJ_TLQJqPN9~rcEZxYzy=nL7(
zXscX&$V%)sl#932AeBbjDvh?){{#8&1|oW-v5N&6{%Y2WIC)0dG)dW@j}|ymgApS!
zLOB>|<#9QfaHF_)Fe&E6592xPF^Wp7!-*>iuyHclm8Rxo%qRL+3ZsY|$~G=VV3P+N
zwqf04k)K@$=PYHFZ-Zd^(|rMD!~2r(9%89XEa`}*a<h0>u4ml0=iG16$NcHJ?{0PA
zgW?FBDX=)Yg=;LusZZO)Dk@RewaA^`fC93&A`bV>)N1O{r4=6gs?sSefR@i<V&~12
zRp=erTpDfU2SW@LNgNc4Ic-no_U)&$8$6pYumr))n~~|RJz|N=r2ojZeft+89n0<J
z%GQ@D+4~o=Z6D%+I#Wii`qO=Ra8Ji7bSrMwdkLm!gNFbgiB#BrqWS(OUvRk~2&5*D
zAQ0qR6zofnq)-R`)n+d8fclZ~0kr@(EqA55^%Ec}a{#K!xu2MGUlZPgPn8$Wn|0-T
zQLrMYOBA$w%DIm8qe09=!>h1VntnK-2yXc67;Xq^)<-f)LYb`WpFVRc!r6MFNYq6W
z8cwmb*2i{3Dw0SL%sZ$i&7rDn5!Sm=gd;h@RlzKAK=0n)K(Lk{pbuI(iz#RTg5Rcw
z2voD#);Ib5Ywg>wY<;BnAyxZ;UWvVSDf@aOW)cB$Fgi?$$pWi~H*qsgCB#!IVX9TI
z>IY=)Fy7OTiT)<lk{Uov-zt9}nWQ%kR2(Gkm)keyMlT9ff~8YAzTdrShzDSx6#_S?
z@q=q7$ZSpHfnhrw7@Di#N4LFz8H~%t^c4;x@OzcNno+nqpKW!bo&IAV?Y{F3!=Bf9
zYd=tUnMH-Ihvj$|`-Fkzzyb0~|Bg*be_J^lUUA2r3Wan;o74&nK8<UYh~pK%_<*dY
z<7s;hiAwzD;|C9}_<y%?M&V`nNPlBEn{n>AxjYu`@9zPG#u9ek*01m+@R!`;^?Th0
zCiqLf9s^1{VCYYZLd-MJ?3Izh>b6X9r5&3th*n^UC3GeJioenrELNo_a_bjGD|L&{
zZ~iPo*{&v%Bba}CS{QlIcD)(cR#(^-wUwy~0_2N(ur6~V3!VaLk!6db<vefSfrXvJ
zgZ3R*SnZq_^W0K98}ln2TFTD9L#>5%1z>O@_Ac8m3EP)a3oz8p)e>C5*4pr1L4Lib
z+<IO4eNXV))_C)KoBehSTA;oNS1MQ%{IETP=FmCBc|r6*o^qcx?bd!0tL{wu^9w`M
zj^s-Ig$KlbivPU24@);okeZ~zrwOi!*36=4ja@sUF<nyu<>#&vL#z}YJD-;`6)b?G
zDgX_TpNmps%lfCX=uF?sXYD&MOmpq#ik7|GcU&3iwDmWHfgX^TU^pqXfji-)EQS2O
zCv$3oo8gHd`jT{-rNW>NG>dT)tW+k}GA@(T;lHdhFuRzm!#G$t8^~41kkaeCA{;AG
z1xgN1RaX8P)zGfG!a0trs9x0!nT-3kpFVSf%m?rUCHvN<ON0gtLTUIg{k9Brz<ueo
zv*Rs)%9sUfV*Co(9nA9j^cqTF7XBr(u(tO%{zooF%Go$Qkn*g2+j{DM2*3gB8RZv>
zIkte3Nyx|uN=-sUzR7R#p0f{*DR0xWkSU$5Kx?X#ck)JjDG&1=E0tlxsiA~W+2){v
zMq|UNd#VYW^s~6Sd793V5<70S!g!jxGTh6oX#>noZR}{e+g@TlbS3w7;a&D(v9s_D
zmlk|g50a1IMY&a)r!pU-^YU=|End5pYXj*p^@;8Ob_bMd)5?WzRpb9h|5KqhJd>Hi
zc(gImz0<n?86Z&ir)8wjIoj$80=3KTlM$1?jNvYe%G(HPK9xS3A9mEa_AZJu4XE`$
zZZ&ae-<_Y}=ogF;9R2X^gczeAZo(k+Tbz*vl7jrM5f11n0vgEejMtE6f%6OP2GET8
z9(S74ru4;t>t<2YS4xiI3j@qMhoq=r)ob-rb67CC)VObT(cXu4)$NUfUh2-=!`pPo
zSv;^E7IL2YGa1MU*m?K81qp?DMji?fq6sSe_9NY}vQiYNQhbXk^G33l0>?c7s`r*j
z=&OGrQj@M|DV>D2Y5@B5ErFam;rK6*dr~rB4usxV7_HgpAF|hnL$W{mViZ7er~tC^
zkILI3C&cXg<4zCQ5rxTnqj!i6vF~;Tj0f~v)66NA0}tKCr{|Pe(A!ihBRf4~9%SJK
zRtTZzLBBOZ<JZPh!|F+y8~;edRo&*iUGwziT5;@^=__<<6IcDozE0zQpe9~L(yH?%
z7F%hv)-Ir1!4bxc+2v2%@Tk+94peL=j;0{QpHSACsVt1Snlqnb<Hr2*nM^+yjv;Sn
zgX%C;pj764k`cMp1b<q^#z+eHI_Np?a3JWzGN89;hy+72BN%Mj>UaMs7Xt7s<vG45
z=G6kOB-E2jo-D%u31Br~v<;gPMfhe_P_V28h2{Og-YkyB)JZ+KL5eTTg}qciJOCjX
zcK^&%&84Fli}q0tLc2&vZ@qG!#<8wK7m?gC`*Nm3q~o8|Z&{b8PGrrvvhZUDO{8-P
z_qMjPgG2NPP_#C8Jl%SRZVnO8WMNz|RickaVZ1hXl~@o{k8!bRhy2)So8GU)<A#sj
z)$x}N1M8^uW);>=d}jJ^w+QuIsZ1Ir=b|REc#UNtGC)2-@L8|e(!slt)ZS+zi&my}
zOb7~WsD0${Qv16qdTn7Pzoo}~?Cb1eNPfs(nqvcEjbqR-WjejJW2xy5M$%ffz@EY6
z0jBS@XZ`ww`Vy6qp!9k~T7H3k=Ph2z|HL1C!Qk?5_J5^5?r;BPyhT4w&+X_`fk5$*
zUr8K2qm3iCj<J`{o~$k^`MAbFrnaRasK7F6UM+StJfH`HKX@_kQC>ur?Tw3YTFf?M
z|3~E3W)()KtCp@2ct(MLpk$A@-gy^5fTtq2zGa@BYi@N>6-!EqV5(+IzTO$})>(lT
zhG>bMg^^oVNCJY)WQK4I5(7}HADctwt0U{JXHsf)QJGD0CJA)r7rgn2%vWp>ZpZFE
zAtiuq6TFdSOQT!3)^trU7gJ7zO|S-#v1$Jh#FKcRXStT|JoSf<Tk#eUfB~A~V1FiZ
z>v*g6L93P8NLbx5eD)mjtB26&oT}AD6RQ#{s=Cf&fe=oCuXZxN(Jt)Y4+8sVdW6)J
z(C!g(^SchsnI8!3UZMxXE0~DGs&l<x0f@^Z-d)xhi)gOA!u?qW-OI`aR~l%~jv>MJ
z&C`OVdiCQ;Mv_10%>?>?%sEhykF2g`VzKMIYC5o1%sxRv<`sYMZh?vIH0_)Nrh-h*
zMg^u)(sImmvw?}z;lR{Fqo&@)%82X-p+F0v9RFtA8*zJV`Cd=l-8^~t6L;JCB0pY8
zBIu4iLipp!^?$&G5I);f^Y)8f&vm~%lr*T?@f#HpIK6(uv*cq1J-cuyJUQpkT5mej
z>=WqQ4VrGRF0A#M?PiGea)aA_+ACgu*DiV~C*<8j2I*zv(7X;>^zU?SnLVxdD`do8
zNrjpkcUB_DtHF==e`*z4FvntZ=GA-|K@NirP+1w~r=^o<oIe}^fz#8Zd%WW!1}H|#
zagF6NnYSdaId_nHv1FJ?@k{ze)Dxin>CQaRvQ-GQ$RJfnenY7b>WZb1!}R5*?;bS$
zq1n#mw4#%b=ikCjJq~o{Am_xELOZpX?R(>1-7##;QO9Cs?<{T@+Tv_*s34(Q=j=M|
zrH7MaFn|V*@Er+__=f(?x5(27bP!O)Boi=O@G($ysjojJSIB?!chdNAZ`6}Z)MeEp
zn{5M5xdwuw!XI;RM%F}#Ox=Mta%~837?}muz-!Z3T8Q`wT8Vj+Z>0KIk{J?LeM?4^
z#XY|tm#IEWY-#PV4@(_&dX!+9d^3H7tMjn@I<r)g++8(To!7I1Mv6Nm_vuvV&-txT
z@S7^(<WRK${l6dZdVs3|EGnq?9IOQgwegajJ(@v!h^hej^KoMR<2XV%UBO+}zcu?-
zEGv+Bg+bJ{(2dy*woP)uHAQnDl~Dk&b^vAy7c>!O)jc^{w_a&4r$%S3E*gqu3+I*`
z<H;GmRauNUXIO&ukz2pPkJUwcRY@aTeW2VdfK1o*R??P~MQ)WVMV+5;2bE)qf|R1_
zwX?62n2WKs;Q<SG7d*$knEe4=tJg%lHNgWhZ<r*iw4%h1c|a!7Bvx&-MNj7t@51`(
z^>a?F>6&yb`RVK}CCukG*7h|C!FoOu1e@*3#-+M4u%5<@aP!KzSGw2t#Lc*4@G#tL
z>_*tcar0T6ZlQ5fsFIn4w*9PN-bV49AppzVPOX~UI6ZwW8r8pWx%k96L>fD}J5KBq
ze}DVCA%BMx4U(Z?qT%lc4QSAo>V-rM+Dx+nAN;*KeW2BO+-X*)6q(g&!#=B1BAFbd
zP8Ot5mB3CPZsXCVZbm={#+)W%f(Vp>i{uNlO`_aAl(*yME$!Ny#B#AVWdS}BnJ>Dj
z^;vQu9FOtzr+TW@8^W(?3-Ifg+$^nA=c3D4;NS!B%-4FHVaBD7S*o|rz9gnq(bbR7
zVM73zPz&nb=-mK1&s>~`&TQ8u+6%|-0-e^lLqP9+Sg$lLLZ2V`wNr7$Z+|D$>izI3
ztzMn2R7nYR1muL`V`u{@>DL1a{g1BR*dI`%jpJM|`;lJu=D9J0z$%$_@|Hf|>_ga2
z4$jgi@y6fpOf&?^i+R!R+<3R?i;u|j%G*yx`l1~&NnfNzdHSP#4;t2Ph|&}b>@mjJ
zX$s~!o%<p+3Uo$o=tde6?51tiuCP&Jp+863iTd!l$ehww&8oGAApo@86uI>c3X5x+
z@veEbz}YMk&XFl;#@KjL%7R<AVOij|!r}15>J4+gz^dofMde4tl5z|bHFl<`B?pkm
zVy!*b$qC~N{WnbEWuP%YP-aUEhG6?4m{+Pu8p7>Z0*9r)6>^wya5$T*HY@xiIdM{5
zL_-8KgA+C04dL(P91yyf{<P$jGl3Mg!twZqRVjJ3Dzi*Gl`5YcJ+Mk4j0T$1k2!Wa
z-zw0IGh_**p0HM+Nd(x}td>00<){jI)5n_3>r+)~lujSQGyl;TT(lNh2<J@l?9Gg;
z@_8qdkdw&*;-(Dz8P$PHOkw=QU4`R{0{<%UAWzXRL<Us|u@Ct=#JhhAko3;YnXiF=
zXI%eb+PBnXP$HX_<%a_Q*?`-356ACL2O~2eo5M&xK28CiO4;5D+1?8Esw$R*AB7M}
zf<H+F=W&@jTdvNU9Mp)zDzHK9tZ@-7^!_+NcwYUHd0!DO^W;^Pfmzz%rr9wNcc9Q3
z35+v8z<e0V9nkqg|DOSosstBG%u)`*yre)55r!pJEJKw0P6HViWsm{P{os|a`r+Zt
z>XLw23Vp4|S5N;lIQI~opA(!}_`JGkw+jY#NiEHNrCU`K3^ad)V4z(wM!ueV7c0M*
zJyeIOFy#C!PkG!HZBo<=k_R(R+nQalF0yQ~MQC+!z*^HZZnPX@6DWqak<J-n`!(IQ
zswS~>_ziW4BRU~(8<;0z@4Toa=XkhZ!)k(awUNZJe2dG&g5A1Fmuf`HsFFISKWKGW
zkzuOdyMRGw(WQdn4RN<3Yl&@C@Hc*~t{ZXb#})gK)>Z7|Xcf`x`HxxOVh@qzYJ1j6
zE)}N9>?dWDQwRzZIVy^`#g0KR8GIbhL$DOU_9MbiSZie-j4rY3c~n-te&%)IZbIJF
zF`vykD*ldEAu!a#E}KOZuaT!&AQ1V1n&^m@=m!zhGOqg5y_`+EC&Fd~<ctu0uk=s3
zU$z|e{jo)X`py8>mh0%L7Zv^&MoH(IIk$`}>zS~Cex=(>t=s8J39})rlQuHikF#Kf
zH7$JSDEe69O%B^y5%cOs(#@=XNBsSr=Q`D1A*mx@_ygqb&~Nou8d7~#Br&g_m)xg*
z`v3g7br(-&wDkC2?Wg~kdz#pBXe4o@zV;^Hw2YL#)QBe(yP9X+V9_4SD{IxG>c?+5
zu|C-y8@H8iMyFpE_s(XJJ8Hu<!{vJy4Pm~hc6!{HFkBf=8Xu|3IN*Qg>*=ft+!>vI
zNX$DOGgta8zGDNFqlL5Sdw0br!I^|E(wEBFI>v!`gaa`U3;?Jng499|VNZ;hOVT!x
zC0%_7YhGC|j!;tn1w@iG_^x(vO{gNLzjk^JF^LgK2P1)Pg5}pCEQpyms?=Z^d5i=K
zSWHR~Bj>RH=w3tO_uXZdgY2vJOT^y-ZqlEW|K$}=wH@e#^gjqFcR@Q|@T%rEaT=Q0
z3$p{EzQ683m!*I{Haj1<!v4v>w>B@SMO9sp@!PWc%KWvzspkCif4$-<Uk%#Hm|Y~K
zDdvqpWLSp1{Upr+Y#_XcgXSNxPmVVM42(x(Nx=}N<Vw7zh*5c|Y9tTJmQiXhk@LFf
zRosl%&DGp|EVKVtu0{^`$jxDQh97=}9a2<j!0x=oU<Dh(5x3;@V1H^2-QP27QTp}&
zOljXl{`wUeyI?TeF7(Jn{kv&gJS_z&@8BtMDq>23K|}JLlNuVh@OL<y&W8>#T!e*V
zsf!5Ip0#tgss4!fM^tNYKAgfPjYvUZr1MOkQslipigcdHkGNMmM8n1@3``^QH=58|
z#jX{5`YWEsy^)+#IWmf1oj+_igHKUHjuUkh_`PONoF$AbE9p)bMV7IJ_x7?#!i};=
zy&W~F8ctyOZ0RSkG2P;4f>y(`ThrVqz(S{5qO)qd;^j>8l_Z{xxO!HqoHzD9SI=Im
zhv*UG>FsmQuI(COghlfOes}d7GmpU!k9!yNg`3>P$8De!#5NI7wsl^~?%pBZ<Lp{z
z8~3dIiP)Py{&b-W7YQ{b!2p{yKw+}Ne>L(R`TpiUn~i5tq-MB8IZ;e8n6nYyp@0g+
z|2~8ZA*5O9^WhkO>piZC;?u2(qNw%R+R@z<-IZyGir=NtVEe$v!ohWJW8bh=z-#*V
zQl($9R{Xbu#zsBmh2gKfv7s8P@W;|bU`NdL4jB-p4>6>Hw3>4uq7xd^e^EFxnLDnk
zqc(>kZApO`E{N*PJV=EkE{c9z_vayupMh6Z5j0~9d|RLr;tsU^>0m?KAGx?;ei&Bs
zi^&bH<2#l(%Pq|aiV0^R6|h!DoI;?}TA&fcgytNEknN=)%M!qmfxgGC*&$RDGR|@*
zZ}N{8NMlVx>*V3g+1_-iaF#z(QG6l?XT4vC`k%8(+?WT>9%Kmp{XuFnZbD_GpF_v`
zubzOqxg(=(2l%i5lGNtwTd;&~b>rb_rfiZb1i%(nZjq*;O!MS|%`j}DftNPlW?9R}
z@e7^e**3##*1)y>2rW8`McMzv=v)_V4b|-oQ@1x+W5M#9CSe6y+ZdYkt?Es4;Ek53
zfIu8YJ;>1>kU?CgafVa13_CxX5*ak?wBfQzhlPnW?7VD*$dH|WkTawdG4;Rq+lg&+
z=8On-VMtfgjmdpvve+Z3t+Y;H@s=0hA<ga6o0%%C?xsgrVYH+bhF=TP+mWlueSKx_
z5h|W=I*-CHp5mT7UY=?RKebj^tsgBbm>EoEF5x*-m*3Jy-q_ez)GfytSh7JFW8Pi^
zSu9|Trt~MN#s5n+jPZKTz<2QRSk2zXAFy8-Z$)v}(E(JIb748Qn{n4|JgM#>SH85M
zAhCTa>lV0Ckvn;zP|MFrcbL1qT^}xZi;-f2gRpOX7Q`jC@5z3Kc2g4RP`->_b$q8-
zHx-cuKL>+z2?UoFL>B%P-Y`TVdulNghEiGyW(9Ux>?|Ksit}yHT4_(S3Styv5WT7v
zld=Cw634(R{oN2HVv0pFR_Xk!anjdxlL$j21nma|?HV&fc(%>D0*9|6cHrBwcOH)o
z!yVIpOLc*cIW^f+yJ=f(VoRhxu??g4YgOqTH}0U}S}|X=2Sc3bDRJ*Y%+ba<CvmR#
z32YSd@3^)fuwg(DC}6|0Z>tMV<%Idnq(B&iVSJa)9ML7_ki%nqVKam9yj!pS#bE>Z
zBJMRB&oclzZoydDn+K!qREkFcV08g))1QZ{{V&~RF5G6jQ2wF$Y76-av5dVlpU)<h
zG!yV1tKIarQu<?JM(u{t4@j0KpRI51b{32l%-$3Kbewpcf`UQWIs@r?wrPk#>H2Y_
z>(*FOPHFL93q)60;S618PcypO0%qtsOR6QyHI$7ho@;GGSHeFZn65uFc#o?elTX)k
zq3cs~j)krVh_38rrTq*0H8lI1Y%isBDX^`!)BBpBmwt9$NXs_45{f@U)qs|Fu`8ym
zAgDEa2!2CaGJ*>_;T^a9Bg6aC@=K!S-Ajy?Bkt4%TE5jekd~$}GqgO~8VqR}(kNgM
zLu4AMc^~4<%n~n<N4acD0hoWjUU`%DFvICh9^W?%>Z#)y>OFMD&c1+$l0Dr%o?<r?
zLa6q$Pe=V}v^>S4Arh%93NFT3TpGy!TajBm5emFzOh;GU0Yd^`ar(8e%{*62iPhpM
z`1;12y}OD&s_mqhVw+(e!KjrT!q-UT%xGg#QiWm>fC_()J@RSOBHI#Uip>CX7OVGO
z|D)e`$e%pJD#KrJaH&S_np8I=w`ygw?k^ss+9|Hu3>_Th(+7#jfB2pe`S75f<My_8
z@&z`Z$Z>08w?sZUkH~D&O_#F@l0ytGkg$W^AZ8ECDy}|rVytj;AepDXC)(yo=JS^;
zETW>h`Zir6FXl??2A1!vgplqm9}P^ERAjBXFu$NkC^F~Dq8ouCQJuC?bI7)k<HG<x
z@81Ie|JdMwpREbh`@ZW4Jof9iydU73h6-?lIq;;V2@Dw@9PnJU=VSblcLxA|{pSb8
z_%|@N{{Jox0RP+E_XB+N`v9KUzE@;nCjy$-J|fbgu~=ezX-jeXAUh;CRP-N;8asCk
z=+t7;#s^`e9vbs2!cOh^zMVRC$o~U1cFq5_0|9^jbAtk2BEYZwPC$*b+TV{F3kr7+
zIOjx1I&E4hV`F!N`d#zW-0cHUKW^|IoW^Pw|A*fWdaz*5`}JU5!R~wTUrO-$Z36(G
z)-)*UJ(kk=uY4;2eACVE2lze)_^wqCPMQC678=P4lyErTh|ss%`mbE8sgYN}In4SU
zW6T`HCM?MF0i3|GhrKVbm-qcU)RX2t*yzUvBBXbEJwe;Ie->J{FY1Wi#j9M%KMCZa
zK_-p0@4#&NA-(Lq##q5LJ{G)0!yYr`x(T|D<tX>le--)_HA9y(3%RW*GQUHGDb%j3
zH`1IRY)r<5C%PW`oY;Zv<FhkfeOyh4!#=+gFH>z$I2g9`1N-XYnPMp$8}K{dq4r<-
zrlbFHo7zPGeAAil>+ZADp>$&4@TxOm7vyH9&%z{UxmRv?2JpzO^Q_0_)jA8lx@eE7
zmNQ$udCs9-Blg$Cu=D-{py_r#umm1HZcyS#;56iTjKXY%-~65cG}|6}j3gEWqzL_`
z-bFZrFWxk;v-y5Pbdb7iB;gc#P-*%oc_Gt|V61sJ%P#xRpUq%(fB&-|CmO>*of-jM
zqDj=UgPF^T?pxshnFD_vr(n;^Mc$YS5xct<H#ni)^ZxxYCKtaQ3}*Yc7nwI#SRN4X
zm=d-LN60Cm^=Y~*(_ORf%5?|xfJU3vHHbb|;7@+pK}3uqcUsZdmKhAkRAGWs7@6=d
z1V~%nF(4lE{{~+n7z4iV1{nL#;QRIX!Qq>6Ex3a&*UFvMe;@@4FxcXzF@rnM3GR5*
zB+Ln4V-6Pu4=V6yznViqMlRZgghF83X06YY`=^Q%+D*MmVB7=;WyzT{zp4504-b#<
z13a$=N99(Ce(wj*lFIjiCo<1>{8ib1j@-C|j?!E42|L++&hRD;<xk`IX|M&iS!`0O
zSeuG{U3D?D;a!|FG07N_1*_UdmZ1F2$4~CtSy0e|xNl}h31KqRz?|>XL+z7tZ7}by
zpXk)^=VS$(S`KA^JG(fsZCLAw#I~lEJqdfUx%mVA%J%!|KXJR1qJJByROxpa4eW|O
zk$GQNM)`o80T9p~nRkQU(dDYhvVF9|x@O|0)_vRGJv`EJ0B_ovjPBT5H#^!RiABY_
znHuRlg&RynVPxSp>_}u8S%qFRXA6<5oOqkb$`?6Xh@GpOced}iEHeKz%CztJ6tmg{
z?b>%x<9#@y?K^1WhunA<uWx^M&&d2K+%tJLB(k8CyU4PQi52VFbUg9yklBZ`g+?Ut
zI;0>M@4&>G^@%<{&>}3h0PlHj=&&6s*2Zk;6gDM(7bxt=KcIM0<Ndiiz;eNys-vG~
z^d9S)8jXtqOjM@G7&h_Ntl~7g$xw%b4X<9JT{=rI;X=Wf-b07Dm2R}sJf31VRB4)P
zT9&+2Fy2)#`omS=-@;K}L<UmD&wk$k*~sO?0kXtZ@YN4j0bEfENtk?LdB!pudlsMN
zYCP$~)hI@q-)D?)ex&ms;my6`f;HVGpj3w=E>QgN=%<fn_p_C=tBnm#<_U4Jq61I$
zV(V)ar=0&LrE8b-ynr=_Y}=`iVT_lG>V`2vys~Xgta@wU&Wv9j^DfO1<<0Cr(!OIB
zt59t2H@SoUJx)ZHfU-ixoZG7@;p7fmkduB;b0(?c^S)=qIF-wXAcjBo)_|x*uAbr#
zQjd8`aV1ZM%7gxYpZ*umjBxi8*MHLl{Cp_$;^E*0b1!`yG{ZKi=_k1LD;EYp%>S-+
zW)_zZ(V6xgt*u1eyX8-&&!A!<Qx7aaPkg(N29L4lD2^84FS+%%Qz;FiuOo`nzT<O3
z{?^|Teb%#!?Ac}Pz7v!cEAYJ5p5HK|o)%{w+`gkli<(;_on$%prF(+1?5Lu$qpa)<
zm6#Rj#L4bUe?KTe1Y9LJ4ThGla4jpq%rl+5*S_P6?wRtac=m`ryCKr~TPhKhrSADJ
zc@86-ve<A}$K`!-H;{k`loXOvC|)C{l?I6%iRTKn3%MyNHk-zx>|ReL6=}w2^6y?f
zh!LAv&pT_S&@3657d_k1kz2_a>5<cbC9_7*h+3RNPnziEU>ecCY(c;^=X}R{elnN$
z?fF2(=>IgOdi+fl7_YO4b>tYYJb#hFOK`sTkKhCHr|uD8$$O(qboGKOBL{QB6Wg#J
zpHe|wU*$+()R?hkCDartkVs-A@0hwO?5mmhW~8$lmcwuqMsB%ZcixouGNYKR5rGn<
z5(lw<Zwh<YyU1btj;2V*C1w#1ZW$(P*14z5qS1nw7*s7A?hmmBalp_^op&N68hQva
z=dcB1D>)!4Kh@s|AR3yge8+jrx`fCjB>MQ5G#<du;~CYet_7~&Uc8>fivd{}KYU$7
z4fC6c%E`~exnkoW`*dlvT~`KMci2^`1@g}#!8Nk54e7NIpGGip3r@pomia#*ilF-7
zr?_Ux*+RuKJ3`-D!*1e%jm|wHc#4nlcBJ!dH1lM&7V(}}Teur68z8gV0<G0M=gd$x
zzQCyMDx$f%=xLJ<Z!KnZHOD*Y^oMSya+HmO*VUM=w*g%7+B=K^AJ&D8m~Ot-pYGSX
zTkG6<J%fCkbtR2yiLPvr#f3!t;#<Dxa;`%FY#v{NSEjIUxtqfOJ$Tf7H`tS~Sid;R
zh98_}XDT_1fX4Jh;Ols}wKzRefO<AOLOw+_DM{UE{|s#mUGCq2z^c{?C*%yfXU+`p
zqw#hSg0P5e^;0uHuNb-`mj#7_AG|p^XUH8B{CrG1{=O{X(4g`*wM;dTrY$-v>}?p5
zPj|^8%<D4Q_Kv&mx^Uq6V9=UH*YgM3_pni7Fpg!?Lw%T%K}Hv?rKhO-yQGXuZqw#a
zgHa}v<whsyiM7o9nSZP;CKtNEd!?ASTOEVGqPbcVz4fPi)vUk%bl;^6YX7IxP#9(Y
z8Bi#c!_Hage#e#guG$i8(&2<oFOx+G^h``rA5QlmMJ4`$J$ahgMH3iNv^F@Oza|Sr
z*ok0krw`f*ZPoZ&11rtui+~a;mY_a<x2y9Y=|4kG@pWG}(fXn;yCh(klsUL)VH=Nf
zwN&i37PpO+U>uYUgjP*3NI5q7zd|czh_Vc&lI^obzx|YHso$AXzT-rd_lm!I^#COr
zhMgoYH@xgrCZZmw%yOL{I90B_C9MZ)lktcbCZ0;4$|3!zW|2>?ZQoYfa(&#ZXU?%_
z&IsllhvSQqtkk=lyrg|;KD)uGV{G(*%S$@HSB;yNHa){2)#W9rc_iP+$;@!jAdSUH
z$pz5n-aB-b=Qp!rqwKCs?f$<j70opTrd}Z~-N5{xbH@K0hwb+@<FF!KcFAG8=MDb}
z4wJW`(dyf+vR~`+VJjOQR(8Fs?1tS|wtL?9-#Y-WW+JvS^lF5AcK-+h3ne;AYvpW)
z+Y?6DOnjqdZ}>x_l-J?%ih`B;zcByA8wT%?^GK%C`KP)>^zz8B#VW~1w9oWovp=Pb
zhw+?yvsTHN^&D%kVcQwrh&@=`JpJgp$gfAluBc@X@`KLs;%rBqWQogmK5OF;Y=tsX
zRGiR`u$DH#ruV~c5q5(P4BozRYS{d7yJ`NYy3~lS!5U{P=Rq4^FgK_1Jb%#gQ%mrR
z2CT0~-O21swxRw-UTjNZ`=v7`d0n5y3~@Vi%;cZ*niIjg!nBoZadzgeYUk<7V7qJ-
z%D{&fy~&iEtQ?7m9kWPW;F<~W9CC*J8+D=G+e+54m)QMO;&Q3u=G(pXlfx@jo|Rhh
zRPju^52D1DHF$-&1QBeph+H8evpw+Iwo!wEr!4-&mYo!cB)&x_WZtJleqD4*FwcHP
z_39hQ<X^|s`MT*h@#520RBxR=r1yVR`LtM4DpQaHeu=bB%yJv9fFk97N~5I^1_EJg
z+YYqh^<cQ0Uaoqk!C|$*l*twBZSnQ)-i`jMIijQgd%J+HsmD5W)qt*;-D@YJ)Yt{O
zPaSuvJ<|37sma&deOt5=OnruXA*d-Xpg|wPfIDi~`dlugl^+aSJps0wQbmaXS>TGr
z4Th^o;!fVDioRC8^@gQ$iR=w2m_1v_Xby2!lfjvdn94l1FzV|IoV6=3|K<J}<{Sh>
ztoa}aY|caA28Y1J%|c*6{(MICue5jmZTq2Yo~F4_*$k8y+hHj$#!qi1PVPfg=6n&d
zct;EUqh{D;>`YyfBc0(jBjWgSra2kbrP5EkFY0t*h3%o!$G~4Fi=D0@0d0}izd_^7
ze87XV)s3UOdtXAi)zDVv%|?=J(ps&W1O0$_{Hvl@Ui>n$toYXBMixveoM8u0R-n5o
zSGMlyzh#`Zy7+ot7W&6s2p4<BU$P9OVBEAXb@@~8a9+35qp@W1H4FAFNELtKQzOZn
zY`r>`EWL~eeEOSzX`V9plq|dge_a1hYwXjHxlb7|lzxf_tBYTsFtUJM6v9{yb$wJ-
z8UribJpLm)`g%9>cv~v>@xFRI&;Q*%pyh28fkVsXv2g!D#oKQH7Zr+amn;5{^vSTR
zV$&BAXTNvSc9UQ0U?q!07|w{Ic+>u$^WP<Us7r2^-mN?-{EnX}HC3NjRk70lm;h=G
z>68agWZwTe`cw%f8q<Hk#OLnpG&q5C0#Zz(qDk17MR~+WKdiMtcF=U{47xCdf6YL9
zBU`sT(sGtwx71MqHPuw`J=b$9SkTi_cC?r)mSv#~O0%h1e*CoUZg<h%O)wpafD=M)
zwp1Q$r+?tlJ1Js5o`FhoYj5i4hkNJ8l2XYwfNIewkjyLp6%M)RSJ>_6y<Zt<c`ZYy
zkcso~Gh>(Q^$bbEyNwBt!K(R}-R=kgBLyPlc-#L8W?}I4dNWSWmkoz|tCj{Jieuk0
ztAE8&>IoiaD4{|1XQ=vn{ww(Rk$Bwo)m^}!-uu6W-|8Q-3;4gH>URPEX9wcPVMY4N
zky>N&62br6Z6W+7ObO1_$_U3ds&j<H)LVeOQZ=3mk;gTk{@2j{K-oYdlu*ry7S&I-
ziq+wM9RYYQFKXCr?#U0v>gRmI5wyawx<9uRj%*7BHGnA}p3Cy_!Hx+I5pV^QIwiA@
zWv(B<begrN)B2=1q*PusQ>(E!e8mA0-QrREr0r3a$VJJH5ul_iM2SA&D=J~Dp2Uul
z*(b%kG3Ulo6P}EvCT+G;8J}mjmz}L2KO@!BQ*uVCts4yNY(0or-GMmHQ_IV0CjNuK
zESp^Md0P)=q`Xj`a(RI~<^QCA7w)ouqzj@n2kGC11N%36cm2EYzw6(H@6*3acT2wm
zIF}dBf_7t8xDcLbH+rIYcaXjv&}MPwT-u$u7qnXt(oR>=54PlUqu&9uKf?aHMeF%*
z#D*&(pXh1b=f;3G2eiG=k2d-~pFX>Xf3Gb3w`AeJ@sqoNf3Jb?-#q+%;NNTZ=(m9X
zHvSv&)jaU`YI|`I@cY5Pd-<8XOa8jT9H>EPFnJ(<{dQQc{N&*;GVd;DZ_!=Xiq8D!
zc0D2cV%y}|SH-j@&nXv<7bIqiwVd==toq&7&mh&0LCChpbjsj5iR3z+5{Ldtj$jjV
zQCXg~eC%@nZD#&uE7+sE<q%OH+s?i$l(L4}z6q+7KO-O#t0qbu8w;{O{kKa{MYU2z
z{ovp3;I9$<*&GJaP`1@XI_>ZauQd5eNr8a!Yf9WoMj!)}HSIOTaTtVYS6Nv$z=~yc
zcnvT7gN_eksz*N@Bd4A6v-eqDS5m|2^*zCZw%7Gxqp%dyX#A1cXqgG4yQWsv*kJsT
zwykPzihASnAn?>~{glgOuavp2I!vALihC{y;z^!)VRE9*Vh6~K#>0>UrRmSr7Gv<A
z*%P$9oaZy-;b#U58S>7O_lnzkg$#1Lj@>gv2H;o3IG@(z%qvgXMBs9(cwwu5#c}HY
zbxQBjZq~^zp-jP^W?kt~8RRNo>0baKy&WdsdGQ5VMb_zdTut~aw)}$g-CyjTw36eA
zE!ZT|2-G(N9kEx1V#;DD@gY-;j0hs$2BAlX{f(s-_BI^J3dAXd#GZ~M_Hs|A78KTV
zZZIbvmo*IAMArNelJwnqv>ki$#d!roc;1kFs=lXp-}=P!C$Umv%t!01--sku(2>)+
z#td&rZmREjc|?8UIlUZtK!f)=n)p{F@og(`-ta>A`5u|iDM2%o(6UA*HHNdgIP>vE
zL+h1iprs8&froQ8X*Z{j_7tf@3zS5~W*RZK>ubk23h8-bA8xFF>WI=1T1UH{J`zd1
z1`=4pT*o<FJzGlZhpp(?lMT=Snf^R?(#fn+KEV3(5amwp8Zlgx%{~4IhV>^APvpqP
zTDr3}l2FM1<gU8m93%E_VQXD#z9^d5*4J`yy;si$aBoZ>uh&D|3!Y(2-<ZC)o{@GR
zgm(N-Hrr_YD7zS>&vVf69<ju;YAq60b$CuyYU2-KeS2Dcz4!UAe#t6&(OsT#m(A|7
z!CltbCENCI-Q!=n%f0UMLwEU}T{30++l$CNw`D;7`9RDmroL)u*wGj1)Y?<=W3wG%
z{T!5AQ5;+Tv!B}E$J}mumYy>HO=Q+PFOXS9>TTHI-}sj>?u*#hNI4+5QY}=9oCO)-
zO&Nm}3^wHd;3!R#)<g_!;jQJK+Vl(_lz*oJ0pUtzL<D7Jwp4=-?#!2}(OtQJ!G11E
zOGVPP2yDB$MYL9dEeS3vQYQ*oJKppmxx)Ec*gXyqPnW~1{>-818EpjA&;CZ{**s(-
ze|@tBx9zMQ?WNc`#ilCH;mGfek%dRvj{qDHGRuX;YZS#~^Wf{NNZT12@!n$qLw?Ta
zNa7Xl*fHzqN_)xKc1g+*<OEClsO^!+eA_yb!x_U~25}gUAXAE^b=bR^iRwNks^4Lv
z`WZVT$5PY2OnZGpBMZ(~7|{DNcqE{PWO=ofwH+)>t>?Tj4QLf7l4D;W@VP11jf`A{
zepT|dJ+9J?zg;`4L7!$kaR|W4j~Z}-=_!KRRmA7niej|Uw^5%|IeIzv8=fjX=<t!i
zb#VzgwDViip~;i6xg0W&udgEyFV(X(Cs$D$R1MK;>!5;ERFo<_p(j8~|ANPa=HP&B
zbp4OgK9dW8JmM*bD#i&I8BNX6B(Zm1uP44M?2X@n7k@50CDiL|^&K3AC(Oj^y&5XU
z#9>F-d)2b98W@B))QLq0piU4~=wo<Oti76f`)sR1LQF;?un_PeyWa}sk@^3!o*Ii?
z1X8aDxih#zHb*7oivz|23dNFRqJ57KhS)zInni3<RpueK6^mpNt69!MOVK0V@W#vu
z+RrImj6eR*adwHwY-%`;os&WHncfKe8caUS_ip+YWXAvUHPUf{qES40n>811Z@3`3
z#Cmis^D+r7HU?xNv&27lm<%+E$gR~o)@t#Obd@Dn$VfJ`;#8DNb08|4-AafKP+A)r
zdFXVumTMbb8B7RZa8D*T1GoYJnB9;m(4S^Hme?Kls0Ig!f9};G*f7us2m3qbWC`p~
zYY+s(S%*Jpd;Zf`S+mtE(+5l6k%}-FUmyK;`Y=^bwW?l!n&MWM)Z`Lfvt9Z1&iDG#
zC*v~@&|mH1_{1xy(rb|ue4ZLdCp&(+<s(QivPPA1;NaONRayg~VyMm-D(&H$|Hh(5
z*dMjtF@(I2$_^~X_MwsaA63l?L|Md0)?pASkgBKJO1*Q+<H6wgN*qcJ;~T3|Ni$7E
zp*nx4UXi01^Uf%?jd!wEX;Y54I8m87og+OfI7br+spr}v>2CpyeiBj??PK5UT-5`Y
zqI&K=IFt}hEs}JEYKAimUVz=QjQW#39HTb&KJ9zcjC$S~EXHDIpp3_t%mq+(<pSB2
z&su4}{5{CS;w6PB^ZnN^Lz^1WChOZns-m3zsTMB<6u<{pGPI$2^hRBxy#wg0!~4O;
z7_za_JpKj4b7nECL|!`0L0TfObJG39zX3|y-^;7b{$=6AOApR7|1nvuOd^@3N!}Z6
zS6g0ig?X3jcQCupptpL(>`}O%`?SBy%AHH~DWQn!6>Yr;Fs92`7#*{OuasPI4_8aJ
z+lY%QgXVZVD1cz9fF^yX==ewPAH|GkundoLg{h*v<nw>(tjj8nAT5e`1|~avbR0|(
zeUsRi8)lu4v?EdhZ)}9*5qmUYpW61FfcX?Z12CVD1Egf`)YKounK-PEo?5*<((x1L
zi$8ig;my5kPV0(CqqXg@ZO12g!9l1}k5jU6ESLpu!@BC%tfB>NQX&i5H8pw&@LU@`
zjQ`uBhbvxssD_VGj<+9y|GRH&SWkV=3wy+erR#_Nxvr}%dRRQUt-j~=65St)<6A~h
zGD?4kkPk|Y?qfFWocFNm-vdv2ULC+Q9Nky%4rLJxX-IX^!?-zxjYMXCN(a4;U)$hK
zL&d*$Qhnlo`x?eQ8ZUe;4vS1V+lwCw+vU^NRzCZwFE|M}ne;B@>3PLheUcrE#I$fs
zlhf^oZOR+hq2*C8E@?xFBZqV?3ihcAPZ(Gb-2&jTRKQhpSBZ)%{rfIgWAt-qq*FP}
z))!ow!pJ-o=sK-1r>Dch4i0B{eP}`YB}uV1PXf+q8h;*_g>#yN^X85JKXC35!dV2I
zG;5Fm=a3ntU8fBJoWlyzHPQ%w|9pTwgQ^**j>v(k*+J!R*d<iVZ>^`};CuI&17+ao
zPFO%p(t48Qpko3*BZ<THKk`{u{cfbwWY^?#_D3R#yA8#G=$afk(S1RRh8e>ZZTnbq
zZ@|atW6c7})AYuEeuA(&hFx>;5+tuBeg*x|CeaLdZTy?hPO|-Yy@P9ncnWzArKk5R
z?eCUGI%k4FTUzRW^RiqlqC1OUI5taL?121>yVn2LSoA;P8lpaoXK{N@BQ>s($w4C+
zA&XY!FnX3$LEaA}+al8SWAcziW3+HkP74?Ub>rzj|JU6>$AP{m{z3Wx{`04NPU!Q`
zv5V3irS9rdKa;wvO}y9F`Vlcr+o%To1-2jmhta$tnNFX=*YWYsi5nV$w)vPW(y=ds
z_T&FOwDBNCt;=l=tV0bq1795dF&O%cHSWZ}PA}3z;CufUv-YWMnrzmdSw6(qMSu^z
zUt>1?35O$e85PXphcjFF8UAm!Ig>pxaI%FgXum{F)3<x<n%#tF3hq|ZO8>2Y0k~G&
zWo@zUvhbr_eYZcN?Qb*p71!du&i}+7i;99o4W%rSm5^5@sSnLF<D2@}1_-#x5~zD#
zX3z1bxW(lfdsp3_Ccw_AkQe3Oy2=gpD@0tJ2ODdfmneA-X7OX5jp}jh;Uw2NjRM2$
zS;jwQ{$aLC-!NtKh^7w0eTm$crfw+Amo2guno;DgNq4kmu?1^iD87J<A$di3kwN4E
zWGnTH{LUKb6jxiYJu!fG3pa4mTDuNRmonVVT_u#R^zXUU)Jx#fgrU5i^ocQ#{girk
z;s=kMq1|H1NbU2Fe+$B$@4UM_dUZq<TyP|_)6M3-q9CJEvYT{;WV$jzziyOG(9_}I
z)!bDoscHInlVDk0{3D7K`uE+wv(F#4MRu+DvE$_c2EJkqfcxFS;<>U^=^qbZex5<~
zIo4qD{#V%?{nG<J@v@)X9(+>dKIxstC#mAU*#)nfFoCBq0cohV{K#wOJ`+eCOLn>f
zsf<@*d{4jo{BvxrVTYaBm?}Lss6J&BC~k4pcji`4jW~u@d$#74A01fpI|g-F^OO6l
zudN4>oNyS`tuDTCq$L#O<C3jrO4OJ-VybH6j_rND8+n|*GWYTCcx-DOdGk`<n>+O;
zZB9k$AM@VK*Bfp5?SK3Yn1Ma#GE$tCU(-L|Rqqq8V4}kL2+nL~=i8@SN`+oRJ}0ye
zjU|~wkjdf9;E&nxjCl6Sw;aoZBUu`{fPt{Ud^o89Pjo$$lZ1im4U-iwe9|o-cVPof
z4fAm7@7==+jm#?Xj|==8zJ#{e%fDtTJvc3+hw|Y6p!4&m!UFz^8=T=ncr8wNEn~ri
z_R}3k3;*5xyw!g&2?g@A`p?h*lwG2BF~1#|_eY2SO5wjk<KYTny2|7Tyh0Z_E-#JE
zvAIke<>Z9eD7QrTdhYtLe|)GybX4=dGJ`+rUjYpU@2rBMs^HH23KBhl5iqA~g&~9A
zmMPQ^iz{D)P6uV^6k3fudPU})DPbNkr;du$xF3CE`RK>SQa3S){CK2eD{#4dlV^me
z)R`1%B+q0+q;rjXfTQziaMsLqRs}JmNXIR~H!bX-cP6`?HC9gC&^nEKcEW2M&pq3)
zoyn23jUSu1A+o54Y?V`}xJqMxDjsC&-a8XAfQUplSFmZwP;|^citGU+dGDV{R#{69
z$}jl$bM7B>sIwro<)Ua-uK5r+I!s)l&vZ6@9vD0NVauc9B0hHk3{!22t-%20{wD|d
z@<qva!>eGOyr%b&Zzy>!ZUOvNDgH9kiO0m2i~xa<Z)*E2X$vzyEgv{$lSDTVzzx=f
zjw1%A^&o|euqH%f<4OILS(HT<KFa-=kwU>)el{_>m}XOp!HV*iFEs0gTsKipYcQul
zNkNj(g7efXyO!_BJhK=5^poJ%a-sRZP`in3g{{`980u-p0j8)T%h0PD{Lu^%XC^rP
zf3amMK|#K2ouD!?eK_Obpg1d6SnA6}4+C9cJon4rx-Y%r^Vph7)jAy&Od_@&zb6l|
zdbmT@{}O-LsvK!W2zhBzJom}~gre3nLJ)?|z)?UQMV7_ba<h@Gh{^$FC{ZUs!4rD6
zEH;eAL0igW!&V66xqyueyHpbC{EQeU=+>SA7J@)p?kBIEFA)3#dcirS8?MR9Cmjgl
zD?d{7Vb}4MdxUnJ5%c%R8(m_*o!3r6GbXc}CyJ#!VAo)!6E3HHY3QXZHDaS_a;K)q
zh}$<{m$6##0c)H)_7f;L4hx6qCaG903ekAa-{&~NVKF8=FB2?frrnG(lTE_;S{s?)
zY`@f+Hd(#Ieue%atp!z`Ho;W|u4KZ-uMOD8pxh*Zz-L=RZ#bB%zhF!=!EiAe1&PZE
zqTp1XDp(c{;oMB}645Y$qm8^FeeO^bm1aRtn9{%2K}{q(7y{L6v(!H~BsZiVf>yC?
zcAH$-uLU5(FSMq{#?TnsGVLcJZnPEf!}TPweZR;p+ogAT4jNb)->YBV8LwEtKk-H%
z^N4&Uw0IK;X0LcPmVAfRruEg`vq#dKz3Gcm-B;K5=~>$=Z24R-x#L~YUXwo2I!R;z
zcOfr0WW0Z$Z6jZ58q&I7P}5$h)4d9*a!BvbGQmYn2U(W2=+1s8@8nGQ#e_5j&t@os
z?fkrp(Lcc<W6TQQ`V$cj6*fzJCZ3e%z1*%rsh;PGp!fkLsp2uEn(i(-0HQU-k|Pd?
z(<!lSJ!d2;Y%rys5X4};jWdSH&^62Y-F%zI8Re{{P!FWHN<V~~j|33#sUYjUl}$)0
zKPjCuDH_0>H3c^E&_-r2E*A<kodYPCE(M!|y*CXZ&7y^Rm>z~=@UJ}AG>-#25Zv)7
zy6`|6i?#<VBPax(!bLqnh$Is#2p2qcxLxlVAGFg7x%gdNR{A^7aSesT&ki@hp-yD{
z|DgdE&7_Yv8@V=pjC$5UW?Ooq%``ZVBdgEMzkN)co_F36&SuFv;TLjXlS+V_85zwr
z1~=up@&EEgr^G8#rNj1eV;47ADn9-*HW2CkoV;}NBuk&*o=7v?IZ>R5@U58LfFoTJ
zOC2o*7t<p6XJ+pwc{!0)Mw45rV|}b_f2IvdV>Uq3UWt`u_-rt)sw7z<x3ach%92gP
zk~K47#X*`3k5746ogluID!yl`OR`6qWqggLKasD2FHOkx3dT(n1a7MIIJ*c=Ru-@Z
zX#<v~i0)eoWkG7}*x{Omm{7+0%~IsgkdnT{FplXD@#P=(ny`a^nm$QX_~zLmf5n6n
z6rB06(g|Mix7P;PPL=juBAiKqdy1cPSLXlh%MQ`yR$nYxl72<X&MVz$g~QR&(pMSM
zbn?c(_@9t`6n94Oe)Qh#=nWY%;~9XSB9h{GG#RBE^-F!R$3R#xj82OmyyEkZb2h%j
zA9|g}d387nvO^b{#w`7Wl_a(4S6}8W@iF@i^Dqx0PU2DTgs_IsAq;%mS!&-F-@Ycq
zL-9KoJKljmjM_GxqNYGzxxf9#0qaS#BjI-T!kwx;RoePlk#W=&x+sMup~pR2ia_2F
zYAe!#iq-41Kxs@_`@54{j<Q*VbtFyE-~5gnK5p|bx%gfB8Tv^o&SZ1mSq@Ld3fBv=
zMiFd^J}bP<kLG>mf4#vtU{{U2eNk>BxA`yT{oW;P59Jl}o1TO6WH@G=-Tv{Yz<)VJ
zW^Wh%OYQ{buI5O+;@9@baKtIchV*>nYNPqb_H^(3U(B@MqwRMd54?0t_|0dK4DrB?
z;(=80GU*Pl^z<sR0;~<boB{&9W&Q)daE8r9p+e>w>W{tA^v!WM>4JPWp-WH!NRK6|
z#NnFicOqUdj1W%^m6_z2yff{*zM2N*f@uaOj%LyRxL1gd&DzTrUXz#5^K22Z@sbkG
ze=Mm>jXj8dpNj00OHfo|DyeS`Tj}<C$}O-YL;r}E9d}}4Q~|ncmWzvFj#wK-&AqGR
z-q_2J(rQWhYvyEGhydg5w$VNOe?kk64#9k(j|8DKKx{yb)*(`qZNj2Hxh{RVsiQF5
znSb`oZGMX3M*ooZZGP(@PyMnj@YC;df+P9-)DhK`nTwZAju=aoh>XO`3QVMfD{Lg|
zr$5b)x9f&K-QVGE?S4t-z9@RQy$^{G7xc3}``7b5x}ieoYmy^nQK-~8()<rsihG1w
z8(uOD^Jm;2a!%-FgGxTO%#=mJ#}|X?b1TV|5C_TGtA1xTa~eb9Y_H&*%@P@Q=8x&<
zyh+^Cz&1R=66};72j$z=%dxO%Vd{oP?GVuMUMYpWaGEqQ5(uDaSa(E0x$3jt0985e
ze9QSQXsmk7z^KJ9(wXXYt%qy00>+f+s6V+2vrK3LEYDpf<O7K;f;!Ip$J0WDBxm(f
zixu79E82Gi0LE%!iHG-b_6GetQMC?0wVqU1gWObxH&wdvx1R3c#+sN>6L;b>iP##G
zbZ*c&?~?BO*qS7#T@b_DMeIXDTw|L3n9mQ!c;)!%ork;o19iV<m^~k@`zzgjrS31u
zx&JaMLM)&_rd3v84`Ns*N^(N1nqep&Y;>WA(=^S^Cyn7JuM<+Elx2r@KBlo0q`=)r
z=os1DrXJyunuo(VYYPss(UyBaRw#VbEFqsofMxcPa&zzDi+HN&&kSzbhSe*{@^lTY
z$kNR%+xD06V*)c?r?ukT=~!ygI_4vpt$tC;n)&P?-%8Fd#EPk`h!t{DIS&f_ou>*=
zb1s6p5262DRe=&|W=w+;3F#m7$KW=o0Aj&SraW3GOXAz?nA!qx*r-Jf4-iBzXppKo
zt+IdBd}Q^sEr+&aM7L`|IQJjX{a!*opSa_A!h?!BSR%}G;GXxq8m2(G9>DKggWnUw
z0>29$R0Rcm{RZL_g6G?GH3ds8_O+xzRa!}Yl>3j=sgYci@!AOOh5PFTligHIJJ|}i
z1V3D$wuE2)&8m!Ylk^H~mAn_+lyS8uj!qX)uJ>_&&Z+VW{8@If<zNOZ6{x(Sd++md
zzdL9Eu!NjT)geI~>>uLjn!ZzRVop^8(A9ZxUY+Ys;c*@U^6LCwRYL<#sReaw^P^0w
zoAg6tP_;HrjlfMo(i^}0s|IO+Jw&e7WONAmtpTu(*W>{Y<h60slb)cjsy7jI#}h-(
zO*5;TZCOD#K6Pk*{p5jNW2FFK#snsvp61v?jb$WBMD~~3rzY1b6^L{!S@dV}s|Iqq
zgeW~$31VT7elI{X2$@QcfHnuVPY(iH4k>RAK6ikI#$3L_Kv+wHs?b;LXP-l>+vrL9
zJVt*3MT(*}pFs^J#>pX~RA&WcjXf&En=0M-dj*xF+A}I82hPWXB;YRwUuU^2tj3Yz
z@>+-R3Mtm6SalEMrvTFQZAwrDRqto@E3$Pg2>9_FY>%O}D0-qGaPpI(e~oLD#JFxE
zCJQsfsjyVOAdW`MjrtaQu-xhxoc->~R2Cuv_`CE0m1jG%OsS(G6L4-VKh9y~aZ#BP
zWasS--igLz^xke^UB(0Ld|%UnoA8n<0+JS8@h1ASOSDEG=BlYYDaDPpRv+N=RE%Ja
z^`R(wwN(pub2aKZYCL|@Zfh&dtt~`qQS_?8D@zViSq?%L+4Op#p?)k<D^s`(JCi<x
z|Bl|6?llDxKy21PJf076boY&n&TZsmHG;YCHh7Edj1W=Reml$zsDBmglaJp)sry5l
z$PPO5l#x1CMV05_v|ShTxXDJ1NVX2ipw5`!mPz#j%33|(ZMlEu2W$8vxeb3#4SxWE
zd7afn>Qse<t}4ej%MsvF)P>ZXmyyO#$^%d`Dd3^6ilWyAz-L6;@zCu-<rExD4lcFC
z(Ew8qh&)u)+`p=RR6cR{b-ww(0xhU>YEb7F-lxu&F~<3n&6C&LbL-S@=pxS&)fp1c
zY|=oEynT>*bMX3m5zOm|wp&$UY%dJ_nIbQW@($R7mr%jk2O-)&HmJTI?Euc{oQGS_
zVv44ul_iluBYEArpPjQagb7hLUN8m2F}B{erp<9E%jK@2{O~7i$r~z|%if{QD21Lo
zbWIZGxfGQx+%nq6rt-$T1R>5(&<nl7-LgSVcgr{pYFPj4jau`h1~n@pot;)8K6cQB
z9DHpK;9FvC1^7aH8qoGKA74Xp`h*Hso(cFB%s>UOxnYxft|62DGy*Q*p2)0BA;Tu%
z4~9+kkA=ggTZuF&Q{DzCE&r2No`gS|%@oy;k>P`k$Wk{*-A6iRzlq9wgKet)`6tNl
z(?M?_Xj=NmdUp4E2HW4;nissu8*f{@_ENz-V7{-$q2I<|Qll1m$Z<DH3jBYLaoDI3
zIVv$(EeA5A3o*tXzgfh1s+B{c_hAY0VJ)Or8%1TOvw<%l-DNZWvX8jhgUE~q9ZL+$
zbqopR%3Br*E!U`#<VY9U8KNQ*ED^=OETC5g!q!toJ~t70tZw-j_DMo1J}SxoI-2*j
zov7tk9B)ClL3-mC@A}o~KSKybQv1bEy^iP<sm2p(%OdkGMJW(Ms}wns_qrjA7hK^D
zHy{B}?rpRJ3|Y?&=$#7vK0>IDRS4rmc7k9J<YArC({zyGA@PJ7TG6^BHa60rlmY2I
z!W@${x7oEtai#~|_?M9){;39^CljP%iA|j4IZE%WiKq6}_FVq)>=U9!!DJvUw9D|=
z$ZZpP6dILV$izJ?G{wSEqM^T)<P=wvz4U^~Bk#B$->mpvCfVo;QrDGiq`o+a!)!W5
z$mq^;b%U2ntUE#W7fjrwmurKU1_i&j*l%W<^wPI4I-D$H@+HhNG(0Bi5^m}hBA-xz
zbAoi^kK3%EkgaahDpN>hX!W!}3bACW5I-Nf7&Ewl5`$p>sQ@*BVgt+y)l%sKjtm4a
zh{1+ta&(?lo4k*?8Vv7Yw9mgZkV-x#?&ugG6G7>2{erb0OQOyGHBQy&Yr{423)8@n
z>Mvio(OJNNb61HkS4!XMz5aBsGIo#dtI&60Il2IJ5cJk@u94<U)uEoFsX?0%ehj|z
zf=_4Ve%elR`aS5UP;Yn8`?o)W9L~m3H#rRdyF3=|7vt4MmpfsUDnJ;GQIhvYyVWYf
zXjeM0-k<=7H40K@ap;BIh&u8{9r!I}SSfHOjkJe-gPck(Du|_>e78%$s?_T$B2)$b
zK2N%!;zW_8Mp#hcLBxD{z%dmWF^Ai<kAXr_M?eW3N4c3QiHdamQ!RTMcqWPDd8H42
zQw@jp7OUYd_C!)Y0&PoG)VB)``}cva&u~~E4FC&=W^xExP82Kw{XeS0q11%w&)GRn
zlQy`gTQJUDC4{r?C}e?i?CT7R(%u%8qp3l^qmPY2A7^|$w~s}9<^SNR0ews#AoWXi
zuG&EO`+?(M@-S?pZLS^1<nhZ^$1k6E{Nhy6z0Q!sFI|F`-Y>Ch%v_$%&qJQT0U(VA
zDY}QZ`qTXb?v?_<*K=2?(v^{AUF}@E%ogXkODAbi55BTK(FrZwn;HJ)dNadLtksBm
zss{R3?#%R%)+Yq3Q;P8R<%+dZb)X--fTS>X%{O+-*kAm1E@PL_pg)m8z3K`WJ5<c6
zi>Jj>H=w1?MaW69P)rc{uuR{8_x(rBfhJNcnSjB&3G^uIR@}GyPUWEK4ht9O_GOyX
z6MbnhM%ks1{?uextxHI)FW3Hc7kz1@FH_i+sVTQFZ8F7SUkV5G#YXu{Kv6m^O1@8@
z{PnA0#hWs$XbhR<NAu@i5_=``)+>9({tJ6ReZYVQEY-janf&u#nSbv$Lb<?V0Kc>o
zFCdk)0K}+qE10W-cr=@N+O`ut&lkzrY;H)6D6daVEypK7y(rM&U!@re-oc6T)Tu3|
z+Nd{}z_PlS5oZGdb8KuT%PV@OE>&9EyB`x`sIgvgYO?4V(`iDHEsEZz-HoZMMlEGQ
zT5z2tx%#o`(^F#~d3itd-K4F|s-2AG-pZ#`6u8%jfCNgG-Z&kZTcQH|<;fy$Y7?{n
zTCO@NJ8S5F|1mcgXLvFc)%4!&536!>v967<F0~Wht1Y{y{UzL}edFFtJ1$!V7WGfC
zHUgYAN)HF<5|+}h!u$RmM_HJ+XBF&#E0kx@^7w&dw_W)5@N++h_gHheucftw^7k&M
z^4|Z+%U8qhX8cu-hm(mkv!A@zMbuGw<zhdOy4Jeu?$_tsw+Ht$ufP;+(h<y=Fz0`;
z>V#5qH&Kx_B7H}pJq%XR1T_PN4Len{-J?;Q=ZsKu@4RKC+W!ZJ)v+S=7FfMva5#u*
zF?`~g*kuhfC+d|LnEM*L4^(X|_(A@c1!JWPsA`G9Zn6^S8LJYqZnHO*Rx8g<dwRc!
zk=1OE>(}%$vTe)bTDzK@fW#2zmS0`w9}_gd^MG3sA6g4oHf&(azy>Y~8rW>F7}}7{
z%UZzBN3eV(2;x0%wKoqM2=UbECGk{*nWRXk=AB49i_@Y{k+@g7_@(`rmt-h@%0-%O
zccerR`;C#Xcm@6gj5CE@5Nbnm$YtwmsIAQKw!rz%kVFgt#%IS-y45rhOX40jsR?MB
zaVp^kbGWI%xp-kkE<_{CWgIqll^74<q>>{zp-gNfW)PhI=-`2Y06kS>Z&$X6skzX@
zmr@L7iXcLXewbnqMf78d)oQL$=zds#Lw#bFDH}~kRI?L9C<upExoI`}VI05@^kKMs
zuP)l?Z`<PV*d)q3y<p?A1<`gjFLijDTnw*t=L<p|)H!qtsH2ihucJ2f%OMw}v#+gN
z$eY`=?dQP&0kte!0NpCYVGdWO@fQU&3)jkwiTZ0tITTwd*rwxpQI~ILk?dF!={U@O
z2E^9;zYFX^xWM`b(PG}zXp0#ObB-yE)(8i&!<mW|S5>M7nf#XXgD}q)W%N|9*EpW-
zUA7e|4>EKEAS4bTl}d2c-TX>_Rno80R?;2wInR2R!+9YmPP5+i<2=57fEFqQxmWz-
zf0xl;fe`w-(&XdraMl7wLOfhl8hG3F4ecy<-(HjXHfOrPf8m>X-~LE0k0G46aB;fb
zeuiCl-B5QVH2TxMz_$AVLK6h8z2dF!X2I^JtazftzuKDCkP;%4r$2#O%4VZ@rfPzr
z0wrYDamtL<yHo|TzQwL?)t>S~x7u%~e6;5>GI<-1((^PckV}LR`KZxBksj(x-%gJJ
zx(dUrpeRF1l$IW9&QNIvP$bzT!vU6l)h35>NDup)vZ3`sTg`)TX;3zt>mJA!8D)mr
zb@hIbvO$suunY==SK4vHz6I&G<UxAH%L%!pH*)X)fm3$U7jYL3XLIt)%^zGS-2Zpy
z#|f$Jss`?;^k1>auI7zkN9O`%>=l?2Vf81a;uL9^qkJt|FR`j|r9WISpO4)h%zyp9
zz8z#w1dbDLioLU0Lgpt`2I`jx1e;N?7QImibmops#Q%cXJkSdNl!u+8Yk*@`ZM0~%
z;9B~T;QThL{K)*u`JO?gk|%N1Trt0%6sB}t(1ARED>CnGeV)kMe+gw&WdL$BF}$e>
zZ(?>sN18YYhygEOZy$a`t?e%HXh2mh*L>&MSkKEW)0}X7Y{QFeUd|RM6_G@{KJc!u
zs_AMOL#om#j3G9tg6R*TA1kJRCYI=_>WUXtWkXo8EwOhv{OcUD>UXeT(3|WRv?Au!
zjbsQfjM7!cVW=zrtpHypW8kY!kwTllz7~`u*j&jkJJkHpVeWFwZ$XRv(+n@_rXPOn
zXn}nEK*=Uia+*t}9H~@Fc6jKxPkqz+^L1^n;57^#j`BC#p&S|w+4!%_e<hhSeu=3b
zU=294LPenWR6wtO>gG#CU=3rMT=t2^oc<V=W{8<$>S43)3=^0}jaShLhGIBd+D(7b
zSQ##dDI6{!QSTDjof?}5@roC{9qLxue&N>NC$nL#<6GKu6=I3Qn%i~5pXA5%DG;bN
zv0s4ob<4r?4?{fn!>`H4Ao629H(nMbSDO7W7Y9;Hf1)}y(CFOQ`f)VrjB$c^7snd~
zQn244Zq!3L2k?2qt5BVll#dG3i$hU2zQ}{u&O-$A*McHX{}E|jOmQI}u`>}D9Nd-Z
z84V!M+)U$I;cwO0fM2K~c?#AIDBdgvn3bU&;MBmcv6cR9zXqI}^1#XG&lxxO)0H{!
z7!;_S01AU=n!%%Iv}xu@P8D~ReqG?j09LM^Y|o=@m<g8Ajjt^O!mDy2%*WSk;LE`m
z{Kl-FLjw4c1HuylFesq@{lRc3kZBMGcv>LC`qMoSj7iC3^>K*6MbUPvJcGcq1>V)U
z;Pu0w_WOj}r7EE(bTPpKE^YvD7X<a!1QCN=xF`&IEpBOBnW;KyX@A|X7@21F%gx8n
zXaAG-!CpE2L!u#F2{-;xYaQ>gict&&2u;M?ayhy|jqiH@;{Uk)vao#{P~E@g{n~$Y
z>2BNqBK-&MYmsO0Un#UtG``>lx&-)#gAgcR`;DqZxT2}0oF$hmkbqPqoljx1LRBPK
zG$;%;3RQY;y2w5EPXwIwmvb2+j~<bEKUDt)#2_>WH>9Oj)m8@j^71#b`m)j>^`Bjk
z>jUc<GAKg{TrNssloMRy`wDf`Khj2j)=`<V&j+(9bbdemV8H$9lEJF-r~i_!oS55{
zf%+;k@BR<kpG8{-^k<)-KPcS5$~FlSW3OHHNAz);$3Hjd8Jb5*dzU?<(tu}OrT(}6
zhn`Icde)CVZb|1rnVsB8M<WSO-PKN;ta$K7Ra9s(#28Y->R9}M+y9wZlCfxYu%#C|
zC*L0%F*nyA%bx=AfBDe+`(s+CV`R^m6oBddiofO;^hoQG{`9B((_aSo8^3q-g8cb9
ziBal;#rAGnMa0YR=0*Dq+Rbw<u_MD-nMuJ>Pv4T;O>7b<%eb9?`oo9rruy3HKm7oG
zJuJhQdGwp{A@%K*xpn{(U;}^Cw;Ai1!MJ}h0PITNe#rLs3<B~WNZ&to|KRN-^1=K|
zH?BUxNb{4DyO@7LH)tSpPe2{cZwR=yERaEqgjoK*f`jHpC_?BWgP|Kp#;)2Tn0JR&
zq`W$Qv<E*B&Bbnx1xKiy`{ley+M!q#rtJ7>=B7$Feii0N0*;E7c|>~9%r@50(Ktzh
zTMGl3$3hcU`L4c3bIzRBdIF1Eu6l&+cT%Mn+a;L!?p6_e$F+71;zL9L%$E#ilhj%h
z!^k&!vnr}d4@>+n&UY%;si@w2Xl<`ndR6@Qb=KBnTzYTk>He+1;pr3Z=~^yk1=NLR
z^=OuP338PMkp40=?*O-6zxx5@zx8wY{GiaSHQlTKvizQ<_g_8?y*DX=3DDk$-tmCG
zqMQ;77anB~mIh?aGJ?xC&pq{zl!<nIMM#%MY%WX505Wns&Y}B6i`DIp?%%M8n^gZG
zbie*#qs3)*3Fz+VJ#b%}!RWp{J%H{rIz@MBZ!lDzL-!ZfT3e5E$)Wo*?&*3igVNnQ
zu6V<K1?fjM%zy_3oc_cEMtgW*vwrvIf!BWq53nVD&JZ$7e~V{mb{l_Umh?Gm1oR(L
zZM}qnF{Rn~ZIeb5ldYM6YGQG95ZST;MKHAD2mBuR^@Gu?YouV!r<dj?7OC>Y_8~Jb
zYpp^MpIjqcjasJ*!?q=Q8&34l;|B~BL7Z4Mi(rEU-7CG;7crQ5AbN?RCwl3p*|teK
z8DiMz4BgOsAMKbVjyls?DUEaKy@RLww=Sja2G{n9dU}hN#%@T@!e;p2{V5n-o`cbT
z_<Yp5kUORj)`l9W(n*FgIJk@_#=)p8G}j*cIgBVg8|j#<chXB|x3a-Q@x!Z)XV&S$
z_tvW>Ic+sI4AV1)2gNtMlx0KHfF=Ixx8!<!y*(NAbAhY!LN2UR57kejdwPzZeqH<e
z_w+9GfA$l4y#FrjWo^Il0eyW*z(ZVAuh?T?Uq@TEMP~SMCiVCJWDxyi{Q07x;uR35
zF&+FF6Fy@>8=xX!!6x0Av>7v&`%8n|rwWH2C=YJoF&Dst$ELQj6;NsGAC1SZ(1jYB
zWvFIJ;kR28YA->MO^n2lx^(Xsv)onVxGOccKX*;+U7F#pS63PBUgOgHy$pA~Zcj&T
z(bF#DuHL!+$@hTh_i|XvaMF*z%v=tLKTZ?dEOePn7WpcQx*wK>Ww9OekP%G(JFuSU
z(;qQkRfi>fpCx3$d1(&B23<f5I0;6t;KtMg{FjfLH~%>RH(z2u&wR<7*!znRH>FRm
zG~BP_())kZy$g60)%ic3O|p<+)`>ziB52U4iS-f`G(pe+0cUZeL8u0_ilP-NwJ9Vd
z+5mw~fORv17OS;<E8bdf^-?jS(wYDgKt;d{;FXJ)Swa=1N-j!%pU-<{c4w0f0+#3h
z{PQR?J9Flo_q^x5o%g)wJ%0(~<{kBP6`$59&ZCO~$alR78JIyXJpS)M6;Bm+>NBC2
z_0o%u{3lxv&}WPPa3_?bqIvN}oO!c_m6!~u3rHR>FTlkF4m?C-M+W?6XD0@{Z59z=
zNu5*&1HQLH=;D1`91Qrjdb)v6!wh)l-_Y4Kn*k4(9@t9`1v(y055c1kiXMCdTG|j^
z4vrpn?C3-f*Uvl<J*;gIdUypF2R*D*PnYs(G(CK?)~1K<k99>42hA_ggR${*tLLEb
zbCv?LFE0m&pB39X;pdVW2g1)2^@5)VaB<-05%qKtpGM<n;~E=3Up~?meq#97!5tz)
zMbav=v2?j8dy(rRX(22rP)1piO&R<N7nLn(I|!7c6r4Z2b^rtwLD=Gu0ZZ6Ew5=0@
zPO3Zrg3_v3chEB%7YBmo$kViGeCj}ux#?jb<){4XvE>P-TOvcdmL~(P8Cgtu()@3M
zvxOJnY(f|E<e^VH$&-`*(1kpyQB}^x#UW2-si#$Z8kQ#?Jahnga$`(;u!{W+s2QJa
z8zz|>O~(vCS7HuBS4=SjVxT3>rS|XSV=*S}fM{lxgc=tQhO8!FdI#c?qmCK42BSgQ
zMPG%zzBX-v{NN&4Z9UHwdubk9puO}<E?K(&{4YW81H8a)ykFY40)-&7ZF`X(Ji|Ts
zlL(UYIT}gk%T`7YWiK|p8n&7;RK@*pX?iSdHT70cPvp}D)T}@N7Q>qSvDWNV<K|UM
zFb1=!z&gnD*!E5myI^ZA;lc?7)oJgnLYY`<y@S0|vz)j|o6ZYr_$hnmq>nqX;9n{_
zvtY#D`SDf3{eD~=_D;JzP20n#VSDGw2Z4j1vUd)J9*2JMGwG3mt!j0vD|)=nS|Q0H
z@<i4tdPKq_!G277OjbDQ!OKt5<I^8@qQ~rVVqAtBmV|>I7rr9Mz8e<@J>IFF2Kn@0
z>2dY{bwQ6OD0u*dFoix2{sYDZ_epm}0|-6BJ`?~WGsAS}L^6Xv778O`_U@cj=9qUt
z46u8-tfGj#ql=~9VK(^2%j|60a$XKF8=L?Y!Z1TM8@%p=2>rtH;cW23vX1oYoDB|<
zRy-Hu;+PFyqT0^kQ|D}O!D66oU6je*fuA?C&z<abfI{g5Op3Q2ozLf!ShJ-!-3mJ~
z70I*9gaDr71>a8yD-zo>S2M%ntr40MEGL=ol}6E2WM(*6RXGF~ha$N^J-v`m!;0kY
zzo7Riwqa_`;5zhQ+!6=q|7oPJNdIw%PLPtqDu6+EED;j{&%7iEc$OD@1~T<Qra7i2
z3ISJd>4boHrx5`$Ec1(0m4k6{AYh<+dI6t?5wP$9AmFHI1a#>C*J}JBFYGlWq$j@e
zUp>R;2WNp^bC{U;h3;JcUF{x#moD>O9HeG$yZgs>^O|qColTf4C6lT(Ne`r*a~zZD
zxX;BU=+1tvC(jNBGkT8ZbHhFFj_!C3eGM#9cZjE<gUjKCQxpXtL74e(RIs)z9W}lP
z5?}3pZh232g0O-PbFcp+2SD=*nVMfdj8wl{(9mD84@nvl*4n_wRp#w~23r1WaYYAw
zD3|Nu<m>&TCEX!zthp>iFZ8Tq^~!KR^BXQ5SRIE<CNh@a%x5-Dft~p9Y3pGIQKa(q
zt~g$Du)KOdpl2RaMbJ_3Pv?3uIEd?IkcBxvk!!d|6l}-FfbEN4J7E)h$Z&789xB-Q
z&^%qib~0f*z<RMZ_we!C^I-6M`Q*;{JtbBjdUo!^jmHUouemP@za7_`%(nYU?{xWM
z0Ub&Nw&aNZn-EmX<Nd$~Nt#<9;=(>m9OJ~X!$`p?3i$v$#YspLc;0+(aT^c)qOyS@
zig+D7WC3$IUs$q=7c<zoJ!XNz;qR!^2U>%g@6>9(-Ky?rwaC2QZZ)5+Vgdz)CasPP
zw|a10JF)Ao#p;!#LmlcrU{|D-*j<rUI`l$XiROnJzz@Li6xjRVhYa`(1!2HD*1ns&
z&p1!zc4H`vYfD5>G}bqZ@WmLjWaK#C?v=8KGM|i-0m+E$*1xzH{=q<a#G=~Q=E~lQ
zD4wL>lEcpC$E)T!6v1nmUv2=_T9FkTW7{3S61#izw(tPbMEd~JQji^&n#?l9B{2P9
z>;p)<SN;tv_e?WFA>fa30BPAGP<aukBnsZ?Hy;3BvP3*%Kx~ZN`&vwl$v2g6QV=?E
zw(pO?S&iT<s(o$leIUnZ8D`^4HGl2FU~FV8j15QVf{n4$NCpU*u#aq2U_Sa2I2#J6
zLq6avJlMF2f`9sf=`Euxdb|4HF|mh`zRvXa>OF@`Zy7&>-rR_mu(5|^^-<U(m_J2t
zZb03c-n6+_(G4DDf7#=WHjw58$EA)J6AYd~1PbCL2CxX$+VT+(IY3(=$+`S(Iog7o
zXovdS&em%Ffz=EoYwb=(!KS0Fnz2)Y>5G#iPfk)#+<0B-<5{fp+<cOU(-(h0b2#ue
zKEG=J*=0F6Wjo%5+nh2S*i;(Nrx%v>=52yJ)p(o8TdjH)0X2%dvC^xh(qHolEB%$T
z(u*RMO8u%*sh^b&QuRxvWm3Oe)&CxO!zji9rdun|llqtQ3G06WH({WUi`0*FzZTG?
zMV1)L;^+xxYgLrF<!qj$Y*VO&3RDJ*Oih*S`}w@VA4Q67z00aKC+YmCFJERO)O099
zO`8#Fx(A`AD|I8WC#OSIeA~%2Z=TbJBTA2=GD7oqO(z{rO`o;Ks0mw~4jrZkR81s`
zNBBMQ`+$It?K|jclFTlRf!|G}twD*5hv|H1eu~fqi%W3G9CU|;Z0PIaP_4CjvzR@d
zq<BcC1H_(00?WXlY;G4RLc2ucmpGymXe7vw+aOD1H6!Q=vNAP?jJS><({>@qd}yBK
z02vt_qClpFlOI}P?Nf>gH@266BuG$)1NXTKZhzZ3mK%;amVs}h2)NSxAENRwEo(LZ
zVq1YvQD8>8=4VHl@3(hB?&>n6QABFRH!4l=#>~E~!av)7Kh$5pVQ5uza=AOyg06s<
z^2)B$8&~&30dHW7p53N5>_i&)y-2fHezAiVAwMd7NaO6FXkWj2N!HrsNc^f<Mxt?b
z25N6wVt%}jzs>jM!lt#FQUD?0S!TUFh1ANy!Fj~8QH&Fdw`#Sc<wpr{v0kO1wXx7&
zn=?@L;ezSz(3vcj_eS}zgzs(#-?fA9cqD9_?s~_+`t5wJ?tA3n>o#owvR?o5Ele_l
z1NJ$4$drRf15pKFV{m7N0zRNF$J)@Ir!Dvk1)IOEzg8n6NWoosizM+Q%p^V==7D8b
z5Xj+<c1iJ)JN;1Q#s2SOaCriOfsMwY8V4k_0SSA7ge?ais$r@wqZo%+Z>=2Cr9eHe
zte@SLoHCKE6xcasB3mi2FDM<+p>N#}3!)B{9K%Wu6+s_=CkXPlosV5p(PEWniyu0g
zI#l90yh{9Sh1!B=shIt31GVZ2>TZ-)Q_W6Nr`gK7RyNF2l8I}T!k4+BaSAN3-i|MZ
z%dbjm<@OuYX;(N@k(#;vHmyedHAV%Le<dv6yp|c)Gwlhn7|kBW;GS^em2&ezZ~w{%
ztJ+Q|Pr_c~&}QzqiN;$zK}2Hv*i545HQPe>ZEao*p*!%raZWuULiZ)a6xe#Av(V+S
zC7j?>8pjm6DkjYmx;clcEMD2Gcxb)2hRmnbPmWN{R&MrD7KT>)0{bmmP;RIN1@&SY
zq3}%kr3T`6*jkI9kjDk_@esBciEHrNXXxF0d21`ZJ{}b@3{SjyYqfcKxB=f3mi5P=
z{jTg6{DAgVC5@`~n`r-3(x_^`f%Z>jJnWzL+qLS~L`uDl(ZqSyj)RJ~6dEb19L-Xk
zbe|XxdH*14JfZw%X#+#-i+5GEj4A8EyZEY>v85R5me6hn1V#@vqOibnpXxXVxl0>n
zd8hD#DC4CYyKTp3bTW84wC85w?6pn}<L%erH4>5Is7n>o`VGgAebWPPhx&j}c;ED`
zxm{lHVP8^Dbl0@QW!&-Ff^QYO7L`?oHPo{Vj%CVLY{I|Z7LSG4s`w|qh#~HKvi(Dq
zW}5WKynl}+)W&Ny7f8cS>wYn7Hk{V|W}p>M9M=86`Gm6MMci11^7uou?j<lZ%DR^m
zky+_+&Pos0x|fA8oA-(syqLG8yo{(Uu>nSODxTZehS891{gfF5kbeR{iyrrMA?ZUj
z%kTSIiHIo5Mk1I)AHl*{HOZpFq0&Nvs_7@qay?4iidn8d8WFdh%<^{*WR~}4pAXx-
zE&58(_>*S&y<<9=<@X{YqH7I7vpo4ga3hTPXTW_w_RL~B;cvTMtC4V6+b(^X2>=w=
zYksC8rF5nuJ`cpVSYB3u>sl(W)${gi^FAjONO(T)Biwic&3g7epK%2wcMHxR{-)jA
z54#%M6U)vW2JPO1wUlMzwz3Cn%qdHkd+PO^vJ|<ecDSH4rZt&F20v7idTzIa%$aJM
zb}7xS4pzUnUp-_pJa1jf<X=lo=GRRY;!3m{11{jOxU7;N9mM5tfwWurB8Ir^bvWX3
zn>24uR+oFK;Bqm(igs7M31<tm-&u%1#s4rc;K8Od2eY>fE-j}be?;Eu8Rug}&Zlf2
z$tl)(1-Xr->HfDfhWgiJ;J)k>48#pn`{3U@%8$djMfjxhEqKpz;BiE?{#8jU`3ody
z{W9O%Ma*>cmuYj)=eR}faZ^6pB2JQX=#qeYn^9pnUCMY>s2Zofz*q#x{pl+$;lVG-
z*!P+W+qP*fz2Zpej1?A?LBX)YG!ZJ%W~k%XaV(C6D`!1ex0a`9w}N*i3NbjU$|!<0
zU~itqX)=_Gu8rX!Oi%@#BT@TA;XJt?&-h1&Nj^}bBh!`px)xavyq*^l8-RkDCt}tL
zU&N0R#xhEks9G&b+et_4s>~OW-#PRg*03V}N5sop=X1PI;_2di4s6C37Xcz)jJsJ5
z`{W6#ZXN2hg!equDMMZ=09Gfap3QB<0Qn}o7uYA+Hzn$3MK8YKX68$E;|?4nT(2*)
zH#B>(OL?DcX!aSsu$`bG$GdTd59grx+k0vLXF&tQ=KE46`tS`(23lFow3k^8?RdDG
zSZubC3imhnnutX7O(YJO$Lk0f{mV=>fGa3R?bhJIU(W$17@#wz`iwC+pyS(FDXSCH
zbC5<Kr%5$!#4#HG_f|KUYkkzZA!#O+G-Dm3vF&oTmq)xfpqJ9fF&agRD(#ISARwKj
z2hY7~wCO&tp@VE%Fc<v>bJ4fi5kR|D&&Hwm+~<_Hw|o+b924+T()Zr-D|J_c9!Ozm
z_~4t^6)RE9<Y&~DWt6nCNT4Nj(>f~(KTvVC+5!@MI<t!7U>_Lu)|VoYjI^b1cEc>D
zm)%iWqO`XxnEMLD9Yr6Rut7)y@&NsmV@J?6Ijq=BkqS+>Rj>P6sTcg_2%rGpjkOTT
zzGj&BMe1kt9TADCI)sINXq%$J5EdoC4%TKHWRh6Iu2>a^n9<z)7t&#cl5l7H;3M=e
z@wK9IqT~sAS#7Hj{}GtJNUJ-hs`YGb(MlYOz!r?6{b2_8?{Ja1+t<v$HuDl04UAEe
z`55S)HKkH2WN`4auz9-l7vSmNd?!48D=%P>38)d6b}sf??2jev4cusY2~K-UuvP*m
z@RJU#6c!j&t-sK!uY-u_|6xcnUJ-cQ-+)Kv3wHn$`=eqzh?5TZ7)LISKA#H>UM(=<
zrdVz;3?gP4>&3NMQ$KUK2tAxj5@ul?DK!)eBiR;m5`3v=x4^ZOtogqtUmCX~CqZSO
ztMtGgvT#lPtbc{0X#CB|GrJ?(0V`*w!X>x@1?QsFOb|QR#NUE?mY^Q3ZfxRJRjn{>
z?_{muXw>wPRy{&~S+Q~ew+dAtsR1Zxv67T|A7~5S=0ngH_(TcQ)rm)+gLSs#^2xf9
zf@K3AL<vseypbF?fs~ogpFZ97t#F1hHuGvyF31-HZGMZb6dZDtw6pXSpaT4$RN<R^
z{#YhIra&k7aeA0}?PrSNh74azhC?<nG-fjdR_+KzhB<c>8LpICOj1YLJtKq=$W^E_
zbQN`jF|ch7>wzCv^-L-g?v=`*w#~dqWun$tBXYQg@o(WP^f`!yV2d0PB>>i9Q;|N|
zTWdOY3&Rkaj?YccPIk}irY`4JfCle$aAODhll3rQiJK{~{tC$=7);E>wTOJh2M}K5
zE5p6yahkz2NkEwyX8<ts972aOmITJj2}Ix|DphNH_*3OwtcO7#Zd3Uh#fF`|dx>=Q
zX-nN%SD;`GpBs7)kYT=Ns9z9z+ST=hd=DYtV?KmvT**P(*pQF%2>ds=ksd-yFo^-e
zEeS)08}~vN_yL7tj}$>iPpo`A_>sfz=9+3ONKasJox-Jvu~(=}@B!+P0UwKX-@>^{
zQfIJe76)#Fl!|Py63IP#)e=0$>Py=4)g&Ltec&_+&+r44nU9TRJp>G`S(RC+2%SOk
zGIlzK_SsJ2#UWpeYDYff3r<1JKb_AQO>iEKUMCR``NGzOr)Cnqmw`r?<`Ycx59qOW
zHVTm7Y7tWcHk7>B{J``C)`HD=%%tOOtOxY%g@FbM%J{G_@KIslb013Sc<Vzc=Idbs
zwqkl|IAA{1OQiWwB?rwHcr<f~ToH@wLslR8(mn<qdDf~g=!XW$lF;c%=9xPcTV-%C
zL74)#<($I^Ewb_<2@zPXcCa$YVyVhd$0Wc1IhkEpY^97-O|nY_miCNFBxXGigMzJC
zwfK;RM={g88IxJf6LI)Rt4WqON|W=DP1QB4->SdXL$pgg6ao<ADJ;IB251efx*Ydj
z>VTI<1*Uczan1@~@KIqFZ{R)ezR!@KCRLxjsR~C37Y4rYX1}X1b64*D&5m&!b?-hL
zecIZiFz}_f;fG6n**m;}cTqI;XjGWJSzi{Iul~IIzV^9r25YmID;Eu|ZeMn*H?Ud1
zb<<!ydxH-h<v<Xx7>Gv&%Awjz@948zIrgwoxh-vWD?PLj|BUnZx1Ovm@I%w!E={Yx
z&&|6PyYMSnn|C{Z0Tn`D-0a&2AA0?5$7wYo4!Cg*Y{a%%zg(So(s(_9_K|zira47!
zg@NtFCDB(H_`wG$RN@VM?+qYhR%Gz@5N4Q76MVod(XN*MjI^AU7B4E5AjW1TjZNA}
z(+a{WL8N#kjZG$Hu%;pt!jM~ZBEwF5QwGx>VGNNFH4H(*LCRkvSA|R2pM)--pjCUo
zC%8Lat4>gN=~{IQ7#`1hBkSr{)E429()aE11@^EuBG2dg){E1t$sF78lOsn$-@;ef
zP^M!c#eiQ!vYf;6*7I7m1*<_+z$`XzsU%(AY&nQm24mlcKHx-WC5qG+XV$agaQohU
zUs;VRGC?C&;xRM^r8)rmajEsKs7Py(le3sOb2BpMlQE%y7;I&?0zm?CTuRlw{{*e3
z9n^q12cUf$XWHV&>cpOd@TzYqRKxyst>#h|08t8v{{6?7-h$_SN)hz2|K!qZ@NaLX
zu9NXnM0Qw1<PEgJhl^w62=Ro_G}^>yK&z=EMvSWg-?~|oS0`RHD1x5walBxjeP6+#
z@xl(n2+7D`M8Hs9G8C0-fU_M4E~QndY6V9xNODKP5tmMgo6xx+3@GM`deSXyd=M%=
zBWj^UP!p|>SBEN10!)S{)na`pJcY)v4xmP>W+WFTccBryLKAFbe{QWuQa{p5wj9UQ
zC3w9AJQ=VEj2ODmt)x@K{qAc~Fv|QxV5|g;$H#)P0=#9B8)+bfv*rotNm}(jg>rz5
z)87^Ht9SA)usMX&)Y;t4;pT+eY*tn%c|5-pE87Mcc~QpImiAqc2=XdX+ID1RqKryx
z39ccWN!ac)ra@-ypLGH_>lePjx2#q;6kXCof9C?R;a>J{8#htFlI1eYwo5tz>$A>c
za{$W`I<VY{39$v~^)lj$C%l0VLk}`1pDkJ;D5{5ovwTLM-V~$kBgC*a?_u0fOH%)m
z?Whdp#T>qH?G;J}P}Bt$X=2#TLD;v^S!#BH=guf*r)?BdfNx`Cwko#lh|niE^v3-C
z7TUr-V_@;W=tLM`oBB2}D7pTZi^KSZNRI|=q13H3M;8Dp0AkUC6VTAR6x`I+wrUM)
zi$fIL*b@c8{UA|l3vRAvcM#kpouaTD4L7Q!G=+|+2daWYkkbACL#hZ%X(gR44Rh=F
z5EGSXGaK;>(3wh#jqN1G{<E8PP<P^U@id5BDzSL(XNcv{E?FFP-}-7yW>TF0%;4}~
z+e-Y<Ilm;<Xp;<WvJBmZ(Y87N7>o0L;P|4@L?sPZzY-Hj#qr6VfsD!VML)^$F(9=#
z{uXe&&zQQ+>)-Fv<~{-q13QiD)>`#1Nn6TjEA`m+N$6uF2bDa;*Ni8>S)LYXn_86u
z*x#I>&8ZiDsa6WuC_>bLMPA@jF_qy4P-4SkRNBtUhPK2=-UsC~b=MwUw3(ecHUZU|
z3D_+X&7De)(qcYDBdbfX@pmj<nuFd|9)f}WUgjV{Y(Tmw87EqqT@Ozg&1(mRDT?!Y
zs7<jx08u*e2qC%+(1&^w-vR7A>@&_rA0|?d3%=M*pfS}dFW(yorL<%%Z3l(Cz1qCL
z$`>{~)(gm9fe${)J9Jm8OebLgpjP@x)?quvkw)BYSlBdO?^v!C^Cco~Fpg%gwkBts
zPr@1j;=(@7Q}Yz!fU`=Pc{VmWAi|RHA&n|ZWVmhP;7u-3HW7*jwR#)cQbnR;F40e0
zv|>J7faYD6xXGuuK})5SIUNo5E+qSbRZr*-djZhwR)z>@3sx!yVx*H+JxKjXlpoLI
zU$5~e&cetI8!&#N2gap+GWqnc@3>Ikw*wQkV>nS8lne>7R29j7Ute~0_UQFX){IDp
z)TX$G*!IwR_qTS}{9{n999?g?$7AEDFE{|5UutDLADb%JuF$RE&TS+b#=-oFHyt!K
zUXW@;TT}k1fif3io5lYKRb8@MF3f)OjSY%wJpX)=R0H?A0>akPB;pM7y9-Dy&>I{>
zp%&>BEpVEr6^A1V6}rMgdnZJ*`PSP4O%$Q=bS35U!obFvXUawwfbzdrVQ0{Y?xJlp
z9cMoC`4Ll}PjRJlb}Qp!5H)yYs8&ulYuJ$poA*&{FNI13r3QOJEG&|I_s~YrB9w~I
zo;b^085gjh?Fe7n<D#?$UQk;oLlfdf?SB+)@g9~cjx_n+{xt|DWxXO__uhXVK&4+W
zAc}kq_hZ}-r>IwT{qP8Q8&PG?H$El-r@STb%x<Msh%+2Gkp9*lnjz}NHW{n%9qf_}
zMQmcGVb;jQ=@p^lb(}d=9A`&_&@aZaH&*vvd){8%6S)&%c}`s8&kt+XXj?5JzYl1c
z|AhSJ&T&2PL5MDujyxBIhCw@y7|&fui+Xlz3gn8m;5!g5ejLkjTd)QH;zzO!;uY!#
zBOkQt)fgJ97~&H~LWGKI@$Y!-3#{-WC-<_WHa}7_q{rq*y!%X_YXw$qy$twoXzk|1
zB>vV-H^FyDsR|>Vb0S-x(gUqr4f^&Y*5eUS$N)2RbtiSMoF9ZCk;J!Z+Yy7Ip$Sz-
zbv;7(BH{HT*Y*guJ-d~`)mrsDHLeW&)v8yiaV0HaTyLW^4y@3ZJ@usgo#_p{1Fx+w
zu#FyDePb(}wz|>lO4tDL-oPr3D7Nr&6%SrksL`l_m9Y+w?r%OlVwk;U*O7o49m09t
zpByo$pAQjgC&qk%o17Xy7i~M0y_g{pDfDwDtpnNi>{dp9YIpUa|9f^TPb$}{{|Gj~
z55{F`)uZq)elY3?#4#Gu)9e2sMXQx{S7Qw33f4pmj@)_A2n8q=Y5Qg9;hiTTjF!4I
z`kr_?m-EQ|APqSk-F(oX)~r_34NPHVR$)zH4$Ddg)#`yphIn_fx<iAI{>6N2HPsbV
z!P2J=pbGY#6{S9->e|NMVlKdG(_z6F+CU8ujl^=SFLXj6HlKu%w+T5cIw0>xY#{0i
zd7*!!4RhP;R%aWZJV0lA9MR5ZLh$~4+WGUTow`3UsJgFc#yZ3gw8N?EVU3G7@CF>Z
zdSG=7+Sv~~*t~m{h0cm64uH;Au?xpJb8zzQ5u=@GI~C05q@BU1bVA<gSfnTI#6q5;
zokv$%oee&IfX=SZK9Zd!?L-SoWk!Tmi?$U7j*NFN<uehK+~0yj$duwd8b1*8-a&NJ
z`xu63#+D-n(H%68quP#O12QSjbfN7dq&D``CXH&_Ctg?fTiUMKe8l=a2W`WJfkkH9
zIcU#7gi&qhXy{{Dkq1-mMU<nbNc`pS`ynzl$z`q@rNl-mQz+ngHi?2LQ0w=Y^4qKS
zO77D|rdUTYUg!l_a2>sZp}*3sgIF&i^}xASAy;f1;uY($8A4Uo*}9liiAFIJPxir6
zw+&cjg_LH6*oQco%gk(&Q3@jBpn>_DFGu)XkXwTto(yxuTrzkp_*ru&_#cOjW<LL#
zV)?ZDA0^B8f<JAs)uwH;i)(_GbB6iOX+NOL@XkxhhS+UYS#2=_fnH6eGga>-f4eX6
zeOQ+U+C%H9wRVj`q{(9+TOoas_%#FHQFF?9*^_1RvU>?D4j^=gSHrr}wI>bgl9;LH
zb{aE5JrxI|rt5~af)nV2P_w@K`Zz@+K0<ADzHlWIS!A}zYX;VU&~y0OoN@yt9-?#@
zYm+3+Al8&$6_ZL-!{gy)I8Qg0XVy!N7#U+ot<+U%nLny2+c^nHerrMEXv*bmD%IJP
z?q~`Q#;J&=Qhs)!0%J%<jJ71+1Pgp<%hkE9dnY)$rH0Gu7QFu9Ze`%CR-{Q-npq|N
z8i0NcTzVo=$oVvIL@4n~+7c9|-7Bx*8;zhaJKPq?C!e6FvvbD4`h=)szJHH^b^Dla
z!8AxdOVBWuL1K&4Igfx&aAWa<T0F*&A}P7ZI>~#Hb*|P}wM<pQmy9fuE5aRlwL`2x
zXaW$(Ty-jmokH)@d1DT`R-p>WutKh$vuat!D;Qg-arP<_CxX27bPyim*(6(_P~Gg_
zovDs401y$W?nZeXMRng}JFucUL0M!(@-ZSh5uQbw&586O?d1M!#CB34DJXu)9Gvln
ze~YdUm^e@$%&W2gIy4oF$8Ww#D6qM%eiowbJ%5+{?`ik*Vygm13c#l;5YdkU5Wp)K
zXrKaX1c<fuuh>x4nq2-GLNQ&lu$c+eQvG4+SxA<4wba*FkE##fqH|K!wXA9^s?zE<
z@dnuH9I7kj+t;X1097u!F5u<!2A_^|`B!eJYD=CT-!z96F$8_%4z2D(-SvT8>yL0>
zTq4I~`FF%ibU&f+*YEGDT08z&;fFm1l4hPNp~V?xC&mI4FanPsTM`E{l?iJi@=oHH
zZzf4a<*Z=?7<DT!5ZrGe1(@bt&Dxp2)ar7u1u#RamNW%8+h?*?Hz+@MU)c>fD-5B{
z@a_A*M;yZ!2yNb@w`0HIv<^?d)!ShVOKgm)bk<Y+S;RJqIn)z~OWsV98w5UOAl@~L
zdm8Rk$>D>%M83fQPGC<bF;vqkTl3+}WUcNz!df;)4=|tvcr#z7lov9?N77Yc4G28}
zs23K<gr-2-rXgjy(gQqz(F85{Dio3z?jKdQ^!>aX5Eye>A!vLizOqMBT|112tcUq`
zqbpN@2t<NH>Ql=Sc-)kbJRtlfsFsWZT~tL(;W40dKXU`&z)<7<0qZ`?EJg`@l1uP0
zpdfJe2K~hfE?4U2<2_hZq5~k=7~e&EVu@U>fKy<#7$Y!YrTL@}9brt3bRYu1QJuMj
zND=+{bPnp6y?YzU3;J^luh5@z1<WRY!~EETYyV9=0U8G=F3)5fAdid1n`XT620rjM
zu0%_SuYA|r_&OfNjR>qB(H}0ir$s8$u`z+6dJ+nTYZZ#{_cB~5fRzHTwPH5Z?2Ua}
zBkz|gD+}w5R7nN%3o@^x{X_ZcjM9AEs&tQBpO#grg88MH*E3=;9ff6hgtm;A6>Vj3
z6e@`DRARV@g@AYvntfiO2(ZP<NW(znP{)CImkX$B^BSEUqL}FH7;`Rw%4^i-jp7Y(
zsGvluCfpNznoSUl(jr<ik7Y0p-boF>=n{4r+lx@F1mdDSEP?v1qm3k(qJXlMAc6#m
zsT={llrnOu6%WgJEr3?RH#`S;8xA#OS1Tk>Wp-a~%zmlCJG)sHUlyE&1ovKlb3ZIA
zG9c66jF8D4$OnwOG_9r=(_M0%r1nR6h_t$+s#<=j)qErOmti0ESgqzW^#fa}hif&P
z=|>8BR$Yhn7GvZObOn2n`^D?umf&-()cvb}3>)8;eTyw+V==JkBL@<{Zo<exjiwT5
zK>Y;T`_04-iJqN8Px+FTi7*3WH_xY)SJPfLjyTQWr-5}oM8G&qb$&Afahyap3s|2=
zh!t%W27VlY=v4&V0bvqzMXCxh0SQ#|#b+g<bu6pDr?-fV!hnJ?1s26EdO%MKdPd&H
z424?FAFMaRPXP#qTHzrSN)LMap%4Z-l?5dv9dDcYL4dX@6GH~{te~g$w^A&F#Xct%
zP%KLo%iz6WBB196JsVWX9F`Qk;H|=!4$B~4$H#F&&y%WDKDM8X$J2cE^xAJ=E(FsG
z<<j>mUO;K-Kq}aSZh9g=i&w*wTg~*8wV65c7$MxeV!*Z#s@bcy;evc@kkil)Nvz)d
z^=P6?VG8Gn@Ld=-iu{p|_o2}cD0UImQ5HGXS%kay>>>(fEE4A|@(N{LfMU5;i8JB<
zkBcIJgnr8+hG+7b)}Y2+dcZ;b{S-B*o7l~8tsMr{heGzC&b1207}V2LF&WgsR<YQF
z+IFi{D1$25Im3wKpjx{E49}QUju@~&q>FczAnL3dPoaAtHZc<Xk%2xhKTQ=^W;v}x
z^PaICZA_u-z$kF@bOB;KX$D(*hUG(jC45bS@uc7q?7JU{ugM8QFA$nS7$8%j7kAPe
z(o3~PFN?aM7nsJBkmjH(I0}ff2JB6LvPW6bF-N(#yjQdoYL!t|<P@QmeV02%`5%rV
z5n6fISwy0wI?>AW&LYQ2ErbzM9dm9rNdSoE{;l+CoYUbaa)D$~(wLL~PSVdr9kWWg
zlY>r;GWsCXrV``a78zK7@DdP`u)-pjbh$!Vgs{b^-Q4>uXYYD&NDs*$FK$QGMn`!|
zZ9+IG8VT+pv|cOfG&Btjdj0jgpdk=OU*bkxIEY58DU`eYuF9KHXTs2`=J93M=*HzR
zE?Z!7V&9{GJ50_u^mh2?Jr5UiMZVe!N3RvH#zBJ;+JlHoG>S0ovq@w~YBZw|o%bMh
z{9#wh@gr74e?;Y4-DL??ErUu~>q`>ya+sioYaK$6jmujc*yyIakc#0CE}t<x5vsA(
zXL#nOAS?&WGJzumMVBO3OJhOk=F0EEO1Pryab~i0Y9uTf>%4g=k95)X+wh)el33?1
zK{3doMKI_XXYJacE?Y>AqzJ9<SnM&xG{K_Ij+hMFA)p+>rG^VmH{5isw4q8BUdb^f
zp$m{w2iq;n+}QHibT0^D9Fn^?)v}Q4TZ*G^XRij%U<`{wgcP$os5%rHNIifL6|$Tk
z{`Ymhk%<A3VSO0-hHUI_K~VQvYIJ`~Uu-P|l4#)w0lkT==N-F!&{S!6G<2oJhF<=I
zW2h6Xp%x3sa6gD+?lIc;<5Cz{Q5aZLh$EX46?E8mF@+uTxAeADJ~mbgbm#m}pj(Pe
zH%{{2BC#<)m%Oi2wRR)Z#N!At<MQtv-A{H<y3e?*JJ7H%(s2oj@VA_-RUe}|etg*<
zFeKfj(|P|B@LrQdF_$+xVCo)$DFHCK0aHtek*dIaAFW!B@$v6>3lK{YK=bqIVi17v
z8CSJ>;a%|J@NKVuhudqU^tNO`0w8DuRm?$7!O$mRVt9h#@gnPbASyQW0Dk^_P@Y8y
zr5C9>wVDD-l!g{0Ou%+?Ycpcrdg=AQkwE?DH&q~MXe`|+Ga&Qz)6gcw0XUNe2^ckt
zY>wIQ(#(4DBNUxdrHI8^%m>UBa%nirlds=u!bPFwbII)*6tX?$2hXtRud<QsX|=u6
z)uBIau4Zz;0D`~v`vQ$NQbLmumT8thF1pvhKYqqY`^}-lVr!o?R4MbUbISe+HpLt(
zXX+DGEqUdSBBM06M$b4C+pDqbXWxu|nx7Fn=x)JLE~wj_sT%&xD@SHiY{qU$u6$n)
z*l1UStF#H`pyu$*u17#h{r_bIzCaM8`Q6_*0_IG)U}mef01g3i@I%F!KL`S`-XNyo
zRhfNz{xcp9nc$GGaPbA*U-K8Hcd{Rf^L40Hx|Lw_WtdmKO17I4CR8RZ2qHPNXtl01
zW^77y&S~vYKbf(ZK~EnAP+tYmNe2R`;gur_&|L@#Dm3OZZq4g&LDW7o?E!&qT(s(k
z6*lQX05*RMxdh;6jT3BE;R0;V=C7`>nF!!5j{g~mjO8S-5xO4Xl7Q(cn3)*ir^VWI
z|AW7}f~iEDLn4Ka5KMyzQ<x=Zw@A$PqK5fo$cL@ti8_fyqXg1_|54M+utYMZ8zx$f
zjj*#1N-lc?uXpgEL|kghLqItP=N{6iS~j1KFbErkK?MFd9Vq;yX&z`m;>i|#jYT;8
zkT}5wEuaLD3pF{&C0?7`t|&y_*7(F+-=8R2Wzs+Y7h2^j1T#WR`WrS>wa}OUH$g02
z4)8$5nR~&m;&Q+b?B+*O*Op7HIY^>y@9IXMW01cJ8+S`-VOCNdIRyWqiE_(FW#jG&
ziM4E@C@ss>Yrda(vQ~EyG9+b`9j6;JF(qmTILOWF{}NN8Hcp8gbRlt=7G2zF9dyu%
zE^6v$kR)z#2}xiq4vHkAJZoMCOC1tPRLBko>l3JmFiA)pX$|E8h&5iux$3$9#W;6k
zi^L6wRwg{@B0DUHxS?aMCOovrm#?NWT(jYFjhX^bi2GYdRNkP^UNNP6XG9_DC$^+k
z0>&G7KjMP~r#NWD$u8GQu;q#kXrSr;EG~g?ERw{MmL5j5L28^?$LNw+=8wNQU7IsU
zNOoX-oD3|f`OqlQsa`N8qyzI1NBJHGRysVV9OY0sEMxSFQ83y9I{U%y-(eP|w8Ksm
z@y@Q_D-W7oNJm^ui`zle@}Wi4FG{R;4ExXDJlH}&BQjNxb%%uFxl!eCrzb$b7D2#r
z%hFq_9APquT}r;Y87Bz@u;a8vX(S2)oE?%lYO6z^Nz``C4y9;wtr7idKRk_%jsIVa
zXuW8cXug#WVGzFw4<Z9TF~kxCTJt0OZu9cer~enc%ot2e45K*~E)f6f{op@(jE0tt
z!`)@DW?Kr&F6ZL#bwif{`JjMWaS;s-d|)pXj0miXl4drK+Qj1I&H69f+fjWHGd5r2
zs%k4N^SsJx(O5y|^-T}KMA-P$G4Oz(LF<_TOb{Vj&0WkFU}NG*6ti2ffx;IDxrAY>
zhaA9jU`*T)!NhO>mzb!7J^?05Y)t&NGbS3J?0^X;)l0arMfG2ON;V<YgUzadPBopw
ztSTSKRns~+pXSRO8dg|DsNfr6^F{L5Axt}>RR(aWe0~TR?%*Od2EIbJv(;Q<qlgu(
zk15_()sx2wSm=K4c=ET#S0d>!(h=`Jr|cN5?)NVL>J9jjtj(<zn4|fKU@x=#a_A&s
zLuP?Q=O1gck<qnzwp+BwQnf}I7=WdYN-jks#>jkZF^r>^xX_F#e%Y;2D$B0ehLm1C
zHC#Uv)uC$$5LOaPagLvzw#Ooc#ueZs><V0gT>W)@j!_X9+PnpP*uDbKk*gn+vW>sR
zK8LdBihZj2KpGy!(v=X;QXE4k1cu#NNE6dBr6^bV*t<feXk1T!J3y;KGrquDZvehg
z<eS+X8Va-3eC~dk##>;7O6duz`ChBJ2kRqr^j}9u{~z#!2C`^Xe@lvHT*fE<h7_6}
z&8QgU<I)USB{JM8sieKcO!JYm4!F3~>q@n_B;0}OO>#-c6~nJbM;4dPVgVFvmV#I@
zY|PI><5=KZt4hh*(wBs%F+YQESXz84vRL?tDkbYmYL~BCoxq}_EEZx>7<J81rMU3(
zD=ZsnIM)IN@-eR(^Bxv{(njE4J=pgGUclS3{<EmV`j01R(m}2l8lGp4XGL7*Ie%be
z4F~5!T1$qqZXxe`I^Ksa<500kc*XI*10tV?;_cUAe6fX%&LaP!w+-V&Bq`jp$TQ9&
zB`gABOC`qr?eRzegH>|Inq$?tfeYPmXmXwV3ZqYw*S|BNFncAFDAn}j;kuDsQh^QL
zeIcJ~9XBh;CaF!_BvlxA)0@4qkS_X$9&vHY&`4Z$Jr<Vm1KVt{XpdwU_1XfQx(+C+
zRa^s-Jk@Mub|XA^oI~ty#(Mu{m>%-U8a_dh>W5%)_yU<xehu-8TWP{%Q4k%k;s^Kv
zUtFyfq9G9}p6@T_v>CykW-W+}+*lO!F+zp0D&UuTKntP2hM0l)+Q2ISpsKKuS}gB?
zRI-UcM((EU;m7*F<C1Ti4;M(g?0JB_Zr*r4D}e|j>t!QB;4DHVg>kY29hJ^j3{QL&
zV9Z-n7S9ud6bvXYAfZJm3`nC^w5!z$C9<<}DVu-H+REi@x$n57&FWaj-;$u+m5&J*
zyTX2Hb-k<FE~P>puS^Tv#8<VA)vDhW3?RIY-x+<cJAu-mPo{ZqmO~npNJp&789$KL
z?Q%#11U1~q&#gxE0D=hneso_qRl^w6fU_At+e8K=T7i-IQc>C(dDi!NxeWX#FM;2q
z!06QZL(_xqCkjzH2xk{d2XNkiMJa)yNkMn5_3}xn%G#O}Kx!PT4}qZ=vuYL7+?bz^
zQX*e?4W?azkCEdzm7rfPwL>l$p7{bZq9z_ZLty^r`edNY^Q2tT9>xVC<d1T};;J4v
zY5rA7^Dj@HKe9)4H%DXSeKwXWjd^zXL>Oi<+Cerc21>H@mr;a&RU)O}&yl}b_yuCM
zLVy9?Ty9MYradTC6c^QODw~8NMO+x4aipn8W<(S&qjQvq;_x?Bn=9^C+6Pih)|k(8
zybhg8&Io^byz|vxL~_AtiD6Mp##QwHp3BM=NrW!8i@=+iWNvl7+D~yJa?cLF8jB)z
zQp6f&o9rz*3?UOBOxK}U+_H{!g2<DjRUkc$p+Bls{L&{;2;7U5aP`ddMp%S->{`AM
z2dru|v=u*M3MhN>CLwc{i3z_f1e9fR;RhBCs>L(FmUGQrr?Rz<66$C0eN4a(R&p-S
zvnA)1He6)ad`M26Ec-YHA7be_Tqw1c@rv&7F;Vt7=v0Ej>_<+aYQ<&08WEimznWxT
zdM3XXoWZk5DGle53a{b`9yNE1><TN0vMFp*gtg&$^^Pb8AV7da;KR@fTt8Ec=B?1G
z-=bhMJeT*PJcMMZIn^N#Ct00WT7vTMdtJ%HiJj!(oA+4qa5!p!JY4z~rHSV;xqy_Z
zovNh1zO&`oz&X4GrsB=0)cM085C6={ArG5aEYO>{P%RIGJgl@{J|%V790oU&rEmko
zL>>yr9p$0t5_~N35F$!8RR<Ud?x_%%(dz|rrmcJaTEYyGpw*?##l2S7ccxqhPUo9|
zD}Vm)lje_0o<F)rwMb&CwP=Buw((MFEsN4u2}J!+1>#+*3a3DPs^Un~Ls+ck|3V2w
zb`Jva`C26q={cjk?B{sx5Qvml-JGu;5NQW7iZO}^#GPldazzZGA$AcFh-;j$evBy)
zACn^0)-Hk$qO43l;j$444&0(zCF?;VrJGxZh7WH5?}^;ANX%l&&^L~Uq0hP!h6g8e
zL<oM4T%G?@Aqa!lGY#_H{p!TjxL~hka&Uvc#WO9nAn056LqYaBed3DHc)0w`mOD9a
z$d8j$nEg)S<PR5OIDLT~h1nk!)_kTdsz>tA&?zYB4QznX+rK`PrhfQ>2o`So6J06S
zS8pm!g`JgB)`QkuLud&-Fo88qdx>67z2rFOXXCBO)yR__;)Cr;F<vDc^Q8iCICyZW
z^~RJpGE@v{Mj?b_-h)DR<eo4XT548RI3`z9R4JKUoyxbdCRb@ArBrbaS#cdjI0%p2
zst1Z3L3@1z^zf1dC1?*?62B;`X^)%t$iCcgu4B|79g}#xFNPD=sCc}IjhK&leu;l!
zOpWBlo{!a9^D)cXHQW{B4<#P&Nf>Q}pRF?<59}E34SDZQd9UK}h<2G`S|zMBO3sPd
zHICw;)ixi7aZN_gbrzW|MLJH*(ws#Gu!!M)D9)mW+`b2-h9`z8YT$uY1UM!&RHKkh
z4d+<}!_<I}mdIc+K6kt-DHQR!jI|X{9?&zw_>d`gjw%@ypR1_C8K2ujmEx2;9G?q~
zHt}`Nw||L$IljEu<J)PzeSh&m&bPy}<<+MVV`>Z|@wo~%j>z8}@1x>#i-;PL&VFZ+
z*zvg&oJC%WIj%#TMSg=K=85wtP0V*s#IA;O-|o0QqvL*=<H^qc-5K1Ufz5vW2X+w7
zJVv^>+8qSe-<+t`u9p$TL|69b3@^jl+&IkKCUFWk4l}ngWggrl$P|v5=c`%^S!T4W
zs`X};8698MDrH6|RJCH7_iL1qs$>$#s^DK%RpD(vyhX^JzpdMhetO=@8GSUrWXq`=
zaDspJYw#<cfQStoScw9apW@$yS!3~Ue7Wo^&IL)uVbv%f<Ie8*S7oqdLTT4;F|4_;
z@Z>Al3y!Z6%SI6u(}!qvLlXv%EmL)HJ%TMb%2u^rUG|{ru(u2%*~@d%%8bE7%K}Yr
zn8(+MX7;za%g!T0r{l1;p^1aXVzEoYrw9Oi5FINuKdrXD>!#IQj2TVnMEql}RZn3C
zs;R?de92K0?U~yFFiOhY7y#3L$_iDGs8|A3bVQnY_X!}OH=(PYJA7`^gDIyWA`$yy
zZb;SUrjsyYoEIVK2LDUI4E+ZlG7?#GOwfbZVxNvN-~^$vYMx4?)ukMTMg2>vTFx#_
zu4?%Oe2DUGF_xj*E|KFX{X4Pl8%ZT)juF$Ay=G5nvu7ZLvuu={5P^Ei<cJ6)UFpdV
z^29_Th<p$Pj*{^=e_Qz_{!N(~-}EVwS8OHSnZWV43dQ*DpdOj``Gp6I(t*G?fMN#%
zJK(QU;SY}fDd+_F4?W=~F4)&|d2S;+mn)otBVLb^2b>7eV>;(Mb_tV%dAkKy!>~pk
zo?rr3YxDpon8RQPaDv-&F~$saXRu0Zjze`@&5vid#I1YaqG^cTy_U7F{9fPpAx|>;
zWQNA$iHwwhzHvK#R(?a_RYZ&y<2z_`pjK|6hbOV265<a#|5oK-O9P7<p6j^aj(fEc
z4hL4_S68JEs$%oPIl>n~_f>bp*baIw<prM>2`Dk@;6A!&;7tE)8Kb9<!x-HX86yyL
zk{&n<h{OLtmylPw?CHu|H{)U)C6{W<#M(wX0=fUguDoUqZi<eay9>lKZ1nj{K2MG{
zuDuRve?F`%5|915$`$38(0a+};>1asE<h6u9*ZG)lP_Hg0vJC|g))Z-)YwjN(?aR_
z&Agykh7`k1mVJ{WH#BZpX})e(fp4?ax7mmOZQi<2E_gpCJqLfEs?Xm434$$=0D=={
z1O5<Rv-jvjDv)Vjo4boVi-VO?aS1$~S;ebiUExSvg5L^!OcovY&pGawIqvK2dun3b
z3&G?5ez^zH6Eji<*L2ow{^MGk3xJv8u;|EP^mmO*Y+HPSZ6YiV+Wq)uMZ55?gXTEv
zT}>u5xNy|iKx4Rn{a*d4{`LLWGHx6b9%-8h2aW6Gr(!Vy4eo}cpGv{RQUVli%;Jd-
zpo$bwaCMZh5ab$!!=lUz{=oLvn@N-y&BdxE1mftWJc_mKXqf#v5?BYesD&6<JH#hp
zA}+a}M?BJpLL7=08rOwpE2baZjU=OibC2+Fr9LDMm-0%&pAS(D6B|JiTra~3F#F4I
z<&qeC>I?VSdNYc9)&ekj4dk;{raBOvYJOgz@+%af4>a;r->hz-N2uG;qfj>W+~}F)
zP@mz>oyhzO+!<JFwF(=Hl|$n(1_`hs|Nm!g2sae-zmk!LkOrL_VsE%ZE;JksEHv8#
zF}i**gxCp*FUF|JEIJml<wML)WAcmW&j88HzdN7uA6W_b4<OeSC9?~_UJNq+Vw_De
zw(=tdm-Z!1DZvb$pP<An<gq&Hg>@+zOjcmgNpce|U_N*Z03IL3;8FT&`stl*#Vo>V
zzV~YaWLr+=Rj8<G6}uhvy*5|e<elt=66!lc(ycW%fT!X}_UJq2LDGM8Ce{3BNmQT7
zix-PRv>163KSH1R6CZ&3_!BDbu4bu`Mh7WV)yTCJlu9>0ygsU0;Wz9=zldx&0qY~>
zXL4r}_+XNrjRRq(VV|kBAH3fl(o(UcLtclY$(sD;U;iMA3G7&c30B5w-N9$T&Sot<
z!J<5F%um816=t7T4CKtJ42s`V7vf|r33uzfoQ-hzDVVEDKo46as0=0Ul(L*>TzrD6
zIJarF^$8p{(Vt+LEARy4t!k5djFe^L02^qiHnWOF!jJo}4c!i%Xx^oPAo3#GvD0{-
z$Pw`G2C}CBTcBSsGK~OrD%DZi+_zaTVDRB8H%0c1qEo|{>C*!+Wl<(cj=;lBs@wpy
zbh8gN2&&A0vDT}6hGPd`-|fU0B>}%kV)cf;o2S_s&TV8HbfX{<O`tNC&cL{wxP@O*
zRNzZa+TzUD`>4%)`5gA#PUxQi?K^3u`P%I=ybaqEQOm=(Py>%mO45UgNvsZdj9}mT
zqVQ-SaE$|j9r)ozg6-c8%A5kO2mYWkz?a~M(iDvJb+u?CuYtlHWb_=?nE4tl(wcfD
z;>X5PJynj8cJ@vDU;|Fm2o^!sZYmw92aEG@Lgp;wizw#tT{BMAgYdz+)?n>t?bhA^
zZI;-ImgxrTZ&eXQI0%inHP7M^F=#V`ZRVq76CxnjG_5eFdC;?SqGUx3e*gTy{hJwd
z_HP4h!=LD1;Y8KHnRfq1+x-LLRR1nP|9~O*rLROcfthO=vg;h4Wl<fs122gC=)UJz
z_{N-Ac2seSK`daiPGh}HD2%>6HYZ`nSks@)i7CLxe#b~Fp&vEg(=WwX>l|y075@QZ
zG4yhtS1~{Y*i?nMOT{!UJ<eQD^a=LyY*K_j&F_wafPDl_ph6JeS(d%(15HB@Abv&G
ziW$a<O&B$6rx%FiLiB3*KstC6!)HpS+~eK2od;>>?VpxaV0d#z%=e{Z-q0+^N$y2L
zP}EVroT$vvgJ{f8TXg7j;Rb*Q&jC)M%WIgXNyDoP;@fi&i`2B<>?>syD&*g2e3S!x
zaN87A3w)q%+BN~f2eBad0D@>itb`urd-NzVlR;?3NN<p24z@6q%8|i9$rxG5RDelK
z4}bu!1%E=m!L_j}ccuAa4~!NR3c_z3_zR!Z#L7|?dQ$ae|GBYw&GK%y<`El`4qVd_
ziZFT8LJGghA3l$S;ygQd+1l|($F<IW`g6X;S$_zYY}lpg4PPCj^CXA&CABLu5={R7
zX)LGe+27!cNyF~G&;Q#OtS=gN_0Wwze?-+Ux>*9myGDQI!UunU+=RU++`_h9>-3FS
zv|`OksJRDgb`h4}5*B>$%Fw&N`WB(whzt0@N)@A3U&)seJ%I_x`?`Nef^H1%iBReU
z9mh#A<-zGJ5e~V~_ccjwm(7f~U=xV9;BKDmcQBpNsy74Y%kY83Tdd#!_**X0?h;#u
zvUgc>zv|RsN&Tv&Tf3yHPh=wB(3+@ce;{Y2`rACy#z2hz#Rva*<-$aLA}DBoWtL>i
z(v9IR4ttiKy<ay*$~`EGqS+=t%z-`AjtV9&)F*;W-)U+zpT{;^c)p&L3(u%u7y3OA
zp(=!==k97zK{*T#=};RA7Z7U=?MXZ%V{$tOmkE2bo0-3tUib~66qEoS;DT2XG9)%u
zjOtXyauWq+6uoP6B~fVfd6J;%3ZZ$Wgei6DFrF_kGN9{a*(^fJACh_orcrb5<1546
z(8n?_D!Mz&iwQI@a!?}Z*#qGX^Wq99lBAKG$3RtLrbHm|$NT%$t=uoM?+wqTLzP4H
zaTbFW@*J;Vo=ISy5~Umr&x<4MsnN1j)&7L02LaZdS9ill&>z4IwX$F)^)%d=zuVkq
z@i6!+OED{~G$e)@kNsJ1XbTvAg~M`B;VU4eS0)fqg=Z)fjT90GBmpPWKo|@t_XXz=
z9QrQNZtki0$XvKki44eDAA~y!7PI0aIXgA)omm&JPE0z5{Ub`~9ws`d#Fy|2^sxW@
z<2`Y}KL;L+fq%V<eH~yMm9l~*3lad#+-~(29p$VZEyKd+sjYycsTw;GCPaU2o21e$
z^N}vTh73YY#i940YRs?P5Mww$A~M71KyP{E>rVN1Dqu_{YBk(~KxmLt3J1F0W_xVQ
zY>({}`ef;`onoaww$mpFjZ!Mp2VO;_a5&68y_6A^!Ai6EER{%yc5r{Dada%AI1yi%
z@4Tc2Cr8SnOZZAsGhIs?sFZqu>3md(=JA0ml7gO$Gr7iabt-83Bt38`Dz{EA#oShg
z5F}a*5}g1NwWbbcpQA~eR-HvnZ*nNfTKwZZzvCZ=)%ung38jM7%>{`-?~_qFy#sz9
zQ23oh9X7#X|Dvm?ra};9(J<#Dspf9(bOy_JWaj^-Tg?1af`gecU9*|_)a)=b-#RSJ
z%rU!yZiN}!@Z2#(G4m4k62wlTW^a{+DuZHp(xplod`&5;{bFI}e~pR7%)(s{zvEzL
z44$<m6{@yRCJ<f$<^<0!&a9GlWwI_jOB)=hAkWS@vlGvLR2#*!sI`bdv!9%%C{DFD
zpQ4{j@SJ~9+#2qjxjr5P=yeWYhw=M}-$wI?P2?CP^u;nlAdEVZy9*hKIF#snM{>{N
zwlmOx$iNfOhWXi2)vpYj+#wLUB=_zlcX$6YNbXmp!iNoVzxsgWo&piX#l^FaiY9mS
zO&2iG9mH(eV3GbC1(~KwZZ)DCkT83<l73Gs92?dZE|)FD5#uc1rBMQE778-PBiI)w
zUOvl*`#xj>v~V(X8W}Jl=(^w7YAbw1f-YfA*`Ml6jBbqm(^1gjDO&A~tikaujHg{Z
zzR&S_pF#2slBw(2*nB5$96Lt?j@#<V8hCWy2YUNDec20(-ap+u>YQW5#NA~j*YAzw
z`aWZri%z69fTIwz`pKK<_STI>$IEqgD=%8@%UCao)FKt{Vg@U9$YyUnyLFT?xQF$%
zbuM5r%_!q{{1WG{@B5VN{gKne5IBt(R`mIJ?8t6mu74cWxsHb=5}bN~<Hd2%JY~=r
zd+cDKWw2J8E>MKeBV+eqO5uFZRtpff4TzjhxJdwbhtuVl03bbmmjEn_0-&b_Kqc!6
zpG~IFAOK)drd|3F1psVAVBo?q0DAk|kx`Ws?7v38<K^4zR@L`MMXh?Xf8g+<?;F$6
z_jIlH3z%w=kL?jaCJ<>CM8FX^#iEG>!~yHZRW9%H*KRw;Q-HpVG7?WE!%pxnPkZLl
z?RWHg=2Gj-Rj}&>-L-;7G%RTBQ^P2V8Ly69&<iJjPjeo}vog9u_qlecqTST7syBJF
z-z}WnPW$~bqu0eex3yt+yqweeS$tvk7kEd@-REjWMKsBA=q5J8cr?EUJ@Of+{R5WO
z(BOcj`o!;jM&@~5MdscBmN9qYK$ZGJBk?4LM0>Nh(Cn;POZ~!g>B475FdCX?dFq(I
zNi=k;Sm)XA7b5h&x&r0Hrujtt@cMtmN-md@yhcF|3~5LTqae2(VTN+@?BunKHY~jL
z!@=m#2|m{*Mkc-zcj4)u<C7{0Q?%WXW(LRB7I>CH10buv0m>=OAgMp0lMI$ztvELF
z-ho$-FSA!u5?0_A!y32m?sBvlCyp~3zo@bpGQNt>oa!0Ig~%SmbJZA5`@^xy)CS-i
z`2ZRM!ddNvfPyet2`byeYtRy6vsc}ZpU7=yhetv(i@3a;bf$U)V<R+{GXQ5H<a(qE
zH&2f)cb1gn7pLJ4hdzWJg^t1UTaquk8JHD{0$}+(l@lJwMfIU6EWoVH8!&sg9zV?Z
zTR2_u;f!BoG8rr(QLW+R%-><Q>kGV%koVAIocLnb1v*SV4P9@)+7wETysGD`m6$2W
zR~tf;cx#Ee&?%fj@L1IML&#Z-+YcC*zl5K_qs3T|i_cP;coN5{<aE5j!~9W}@`tK`
zg~RFgTkkZB&V%Jg!!AHX5<w%%W$txd+Yhiuv3EH<<B#YY_`9c1fv&|@Q(zckzK=?%
zJ>l!R7*mv~x62rpVsg!iACx#EnpUO5=jzdLP_d$1PpOZ9vdQ>rwWN^Iv>vby7>%!^
zKQuSA0-8TWbRU6=h6j?aGd$>&$$XH64i*gl%THpHV$p)^ZNSVD)Zg?>xT|s#RX^5n
zNjP1!v7IC#Z2;~JXSj9sW-uT8S@7Utx~<~&OY&(8XJL*!3#b0&>&%^4`#V(**ebyS
z0QmnMjGQl+ATJv^ih(^yK<Nz!c6$Tg`oN4hRdD8DFOqY>m+j5o>)qIP85eo-R%`w{
z@s+&!B2f<xIG<@Ve&-E*;|qKe`F7SSY^|6!+S{-#aTr`N2}y7{P8+5-Y;(g5bOB)l
zFw3cQA=_7hD}7WjC4shl4p}ajD>nJ?+~~w;5%XhXP8P=KR})D_g@G-Ffp>g?^-Xil
zkK_pn&16`JH72wngQL^+;J8#aeUsHR00|C2d_iRbn@-?+pvDW-terVP4;~c@4DuBJ
zsz^PMU{L_+VZ=49G)F5?g2U0uQF?F;+PDV9%()#tMbE(S^EuPt#D!i5N6%#JLZdn2
zhWq^$%KxmUst~FWd)7)X+<rPmr24a9S_Wd|-z>J{sMP#=9|#;r6GYf8n!dHUOy$uP
z{ZVYwk(R`5Gp`d05F_x4;HqE|{fIMtiYSY*1?@_V@duh;To2Hi4LjV3J3J;GaffF>
z_ret1RCy9gOq)vE&+!&69(g-shpH<dYw6t8c7ph$BDM6<<?O2!h{^yive^F!UC`pg
zK-y$N1Ur73%We?i^SoSQd~P;=4?OJv@>M=&j34`$pG8pC&FH1o6(=F1^0C+ekEA}>
zT(_=rHwGd#ZYBS9G0kxJuLFO-LjIn;yNcjKtW{8~RZxXcMG4imQNSuLx1KV?HK=A1
z7mPW*0SL$$SPW_{NoChc1k)lp=(F2_v%$HN6|6ii$rnsKj#8cK%!gyPtB>RO5_48f
zm38Qwv-)CIKeBW6?+bhfuD<j_yK2@_`HFLrwc7HC;QBnOlEJD#GRrF5ujFE_?5m`j
zQB$@`9$&`wwzjlzaBo?kFs7hQCeeflpA`xR36O?fi+f_M3)m@e0X=H|Iv+a#(2&)*
z#9@USH=np(Db}uGD0jecawiyyYz&7Uwj{IygR%`O3+w7=n!Zpq!?j&?y)w;qXg-3S
zK}OXXiIg?pmw74Y#(-be5U}`6S%8yY3oZm54!F>lx1#hwFq}jf0$jJG4-Di1Jkr_n
zLazuO<D34?W+8bLddSt6&Q~K88%H(Q3CldQ7mShZ6d)bw`wS&N(4i^x<M1Ce1m=^y
zLFfQzjs5bsCTfQ4Plm$+=z&DbPvte}`AxbwE^g4Nk1%G~1SP=|_+-Y3`~`l`kv9dI
z1B8w+2|&=ER_9_s9pefaPuH*`wP9O&@`{G-Ny!_N-$1K5;7%$U0>uyX07e{@N&Duh
zKPXEjtI2?SI&tba-M<2nXhm3J9nC9XZir5D;@TQa``7URc2n80I((&pt$O1MOu~@O
z7Q$C*2L&gYYul`vWk{Pgn~(oWka@$mK<09hGGTGiQ6B#T)j=LZS#T)=_=Ftdz=6#3
zm0*Nc>2nOE(WTZl-#y_aPc}}%0u5RwdAd2nrF;+=5%H@~d!Yzuj8$`~qr>NPGDbeX
z*!nz!pJyrcf@U0_n?c0dhb{mDRG%XBVZg{HZAyM@EXz?2is2i0T5YT|tSd}<#)tEd
z5~Rd&&*_Rhhs3;}qy_?3vE*>=Sif1GJo>oxo8N$_xk*Ky^S4BL$aRtW9wV+9vp|7e
zw&;M$s?EhH9_1N53SWZ$1|wN>oZJp|4IZ!6{8!`Sq49$!Yc;02PZ<1bt>z=#6GR&n
z)rCcB*Pp*NRWoj5iLN@|H7KcCO)I8K0HqoW!h_E%O&WZ@R`Vqu>Be%I4ro``>;A?)
zq^CWkr#<E%ME>#^2(_(qA+h9d?luD}fVB!Y0qmqn!_0wFA_e0v`hOhjgl|X62WsD?
z34-83D3)sV40Tj4XD2rZ-fOMSTAgI{4)NcxEuJBX#xf6n9AbY#|M)`ZxUvb{7dh^W
z?Rx;kGMw}AJ-vc_he4dcB0mWt!Fwx3H4u{)yBZEOyoU{dL5hf~Ez;Uz3lY}2HBfkh
z2)ej7?$Gnz*NkHhwJ{`+NAM-U$YO`s3hr|p_qp~xaKJKjg!4Uvy!Z~d$Y&8kxlOK%
z6)hqKfItT*D_EWr^i1xyMgs?p3k9CNOoFCUt)?HBrk0C)jS*sOg1VG7Gp&F$-SB0C
zH?KuAZb1mlp)^ZVq8<&fVpX9cXI9LHyf{GFSjWBHhtijJ%#LWORQNEuNfx{cZUrxM
zr;ryoGiS4fc^_#84jeh8W=8a1JEH$4+CL@C!ykuwke>staomik#*X&|&{=GWB*jCr
zQ{gJwF}pkNGc)-+$sDlU_O=616U8iv&4n$P7a24U@_F!pwTi`&mH2&QsYN0KGR>0_
zxGh|-Pqf(nqwcIptrze-OHSd?z;n{TV#}N2OMuR(RTKsa5{koU<N|uAR^)EDl(lq4
zqj=6Q_-D~2_5b&rgK9<`zH~m#uf`-6r_RP9b;P~M^Ts(`t!l~9a*njzj_)s`>-vye
zCd~hZpRQBOkKv(Kx0acVmH=Ko?;Fjy8_!65LfzSK%SJBvaJ|US?CrOf<d+I?kS>Gg
z$Lrb1OU5Wq&{V3~ZY}m?aInx5Wwp|Tlo1RR^n^8%*fThAqz1DCnKOE@tw2i8a4IDP
zUt`@JU&|=xOFqrW2-k{ni0VWpiy>wV{LMeQqYkb~l5T#$>M<2Q2t?+NgaZ<@nY{zu
zK<8s_q3CA5^mwIae8n5kjZQS9Ci6>dIE$v6Gw7TK-N-jWH;L?)R2#s29}sh5qxtuV
z&v2<oPOWb6aiDu71BJDNgSa%~LA=eMU&(npc#wx+8nf_7^H0UU<aDy+2(7MH>WJ!1
zL$!NX6wDu+kjxXbN_=^6{9i1E`%B@)!dEDq*>gnoXDGa?VE#=BJ$%NEuo2mJ*mL-B
zf-kT$yl|MeQmZ|d#vOgFJ2;m!im?*?j<#SCerR<AFI~Xxr9&>k1(3Thz||M@oPi5i
zB@rX;!YLcBB=o_RoIk(R)q_|^Q?*u-8BW{`_kCM9ByeG@|5BNbppR;mk%Fk;emXVA
z*a8*w<ar`nsU+tBI6%=0jc&2<IDKW+fuh`CTC$Wc&SEq_H{X!XGGyqAvdliG&>DbY
zjNzXI^9GPrad`1LCUqM%<6-_n4nqdDf$ZhO;NYWmxR(~3gj$el+l4ubR<j=kDb3UI
z&>OftUw;jV<KHa&(!F^bW@ws!lN2gAI<+t`loOz%lL~`FQw!m%@u4yQ(|BEgbBj{Y
z!-nl{pR1wJ7+N#}7WY-&fENq%m%-rZ0AcNQXoIxIhDA8>3Z7qvEB|<3Z{G(kqjUDE
zg?MDmL}|76+@nxGNp&5>TE%beF2BZ};BS`Q#nA8Y%ly@7G3~FC3;H<iG!XC6sXh>I
z?boz^U*kvki+pz>ewnAq2QqI9j|SK0jIRkrWbBLW!3tf;+5%X%4v#jW{*|MAsGUw?
zV_@J3o54|n<BDl<IOt%?OXPPN^PqX55(FK9rpW=JUx=4^W$0>L%{fIfO$H+3fT_^C
zun5iDtY?bxLVu)xIq2SUJ$$P{&sJW5>*s7-gN8W<95Lcw?|^$VLux|>52^|lcB%j_
zZK*&FV8;r`GPJgm%&Wd4+LYJ~eJUOm_b65AMTc0aR(JHj*@4hetOn|9>cw2CLNY1Q
zD#q;?1xvRXw|7W8xsR_z{WUg79nWLJZ$5Da5s7Xt!x=8X(-XWz;pxEL)asHIMD0+|
z*f;E&I?QJbg(F`XeN5xb`&?qm-`FKcfp7FiZcc~`J%oD9o;FmcD5!cKB2?&)`71T<
zyc|M*3iIA5A5xgNvplyj`y(D+R0609v$ygnq6*#`H((X?2WZg$wiovMsL=H;3r*si
zz}C?F$o^<vb-B=H-sbYbaAlWYh$t+gfE9VOk$}oF`P$co6NC3_Ep*}h8fCO0J$&eN
z)^oH~Ph<HYxXa21VwIIpsCuMI0_1I96FzpQU-M<gU@(+2<3n?~L3>T13@}cK9R}B2
z`4I8_D2rMSHo{?&mOTwZvh$So+pN2UUf40{ZC_w@s1b?1%{#2xJ}4iq=Y5NVXSt$n
z%^tXZ2EWo`WjY(f!}+_t{Wf@A0<fwMg<3;fnM?Z@R&{I25$3z0{30$n0S)XT1J^B_
zN5@33kdQpfAm_G`EuoWG*QY+!(KY2GS=Uf!U4ivc)qzdIJ#ExopV}DHL58pgP~*AS
zf^HhB#-MxgH9|`UFNZ)&pu!u~mtzj~OMi3f)Jx#>!Q9wFhfyT=9CB<`=4v$Fe+!n|
zfk0tI@LLFJtWPBu&DaC@-@44=?T;kSwC62e4h4P$T1_2>urIirtT~ubEcXhEs11&Z
z4CO>I8REuzx}Fen8k&qG$Yy~6V*dCkyfGC>Gi-a9BK{cJPtwf3b%-yl&a7fh4Eeh2
z4e2|!Wac$!^IqZ)3>FU2GKw*t2-ooMZP)uDza+!M?&53cjS6_AlB(LyDLVxLrAgSU
zdq)`-1g=fOzTe4ZM?=Xc;oy%Ft=i4<G(!Hy=Ah&j%C*)q5@8%eS0$P2)>5g68%vC0
zPF~;}g~H+*5l-Jbod~`k-|~<6SR&V@;m9RN7$UU;wO^_^k@<sBtyog1QEXd#Vq@<=
zw_;a<Q|wSigO+u`0!=D{x#oIYt<R*>n@EF5dZSETaei7|Lw9n_;BKXGbJ=))s28-q
z9-!WWx{p}M(%r~s>E=yRtEgyE)-r{&lj_^xDsL`*c~+OvL`CR+SPJF<uMj3iPo7ot
z*|v{C98FGdu5-Q9aQf>^koW=ob!*sZLWq$Fn^w4YK3`^+!ARead+9ZdmnCvft)2RY
zJ<^cfYgio&6O51a)v_7DbgWe3i+b}WI5dN1Q2PdUOzd4mt=h*nrOkhmLqpVJXi_m-
z!Uw>bG$~GY1aDeDGO!)uw|`T`vshemmeHQbB_ZaULz~ppsE9u+2pdSDR-KJvq)q&W
zi{EhS_x?y3j-WGel7Q$#aY>YMmrH!x1vJ_wNV@>cVVN49AJSCxUA??j7+h%19iuj$
z&F53gRJHM^>LLCne6EZ|Hrn)evGjn6BzD^HOg!6O2>&xkf%BLBbm5`(Q&60Lyw7sn
z=h*icFd2;i$keEn@?vHQPLGo>!AJH@267vN-qxwH#JV6>3%`^?_NcgXUsnvHMg^{5
zVHh<k!jZN&7wly2G8Njhh|fuYiI~qJ03{f)-CtX1f8>K0XfIJ{KRzykcBw%{His$F
z@YM8*g?8=AuF<aQA=*PbooLtU6h^hW+Du7cf&~aYc@2MN68MJgsn*Za)X#MM)Q1#Z
z=I(~={hMjkH`a5zmyK%7W--ZGB-0s8s$KX|EiMFB$#d=K8RA%JbxSk*%XN9?Ik;j1
zTAeu%H#CKk)PvegCflG*6Q>?5$~<2lsMMO`Wf~w47RwYIex+U6+)bI83CPhA#8mA>
z2e#@BUjT6EZV{+H2-Fo%sBuasd}2;uoWPs4mIqh_Y{UzyD2nS;5b~@hm3#_rU#h$U
z4PQVUE*CKMWaJrNuAHe2U!ryS$sXwqUjhmo8e0lNX=o(LDcoSTjnCEOQ%@GN<~boV
z%3~6LZ+J1`%7ZZ2AkURAjjapl=t4c8)9J8|4atJl%NUpb?fUHYqRU)JPx-uh(L<Z_
zXF4a1I}oEa{JXGe=-<{u(pVZdsn1~aEn}UGSexU;GlUnKI2Y$jhWLql$iF?^OI2#L
z!ePjRKmi678$Riy&G`fmea5KIe8!laVLR5pqmLX1U_2q8tmV)?u0A<Qn`6i)SMKl`
z*K9|^Ahfc#9hox`GS(We8O8F+Ce)sx%_)$g<G1;YiJ#imw%7kzh8LMKG((f3$g$CS
zrZ%SyA_c|XV=<rcoA+s$qv)B49Ruu7<L!w4pV3BN0ze9l$>-q3Ioh0Byzu6Itj+Vw
z_qT5JHv9;PzQeblpW}6XcZD&w$2o<r54`Zy%qwP@Y^->z0rDv`cMB>+Uts2{z7+QR
zz~>5^!}P5^hcPLH>!6w(p|{tQ80+yBN3!+;;jXY4`evz948iLzV(4*x2%-cjs<|tF
zKsmVAzo?2U<$wi?D5;gp;!CV=^UYqLD{g>_s8)_Ka04`lW!)HQ=Qmk`Yu9_71ea|B
zAvK%lnzm!PDMM6-F4cEb8EdszvTF?N{FoDDaD}Revg_<mowCapI1BD$JeLgMXiWK*
z$(QCd#6-}imr-3`hE0MNR#BPatJr*Gk4R`LF^`Xg0jLoq5FxCm-Lt-Q4n?1z8j8M4
zoI@doFDkbcNQa>a>~su8F;S?7g6oz>+EXEG9BzEK(>Sn%=<WAgB7-0`bW$L2VS#FF
zBgNL+>tTg=H3+I64#MLfI|l)}x;&FG!O8?dKTcd2;}Ow~^uIFxjFYGD)+~C|p&3oV
znI&<z$q$NC@K1$w**^0(92p=ISIFFQUW*W|T;bH)|6x6mQL6fvbCiBUZ=bi_0bRa@
zcIa)(U1y~AH!aMYn>u0MDkR7s*Bn8<)YA$1jVZB^KYCQx$XE3c`M(fzO<8I%nm|T^
zJQ2eW!%++$=<JrF%Mvib`IbcNZ%)Di3V0EAycwhSVLpU#@9^|6iRpzj;}U+piGC;{
zd$@^fo>f)!*5;hZDvZ&e<I^u3pY~RtZi72neJbP6PfLY`lpO#$4C%fUh3GV&_Y`l8
z(c2yMoJ3V7BahHuC{M~oWE_EsaTe==p(_4<p)jE;F7#s&BHg?bVF?zaYt`aHjNk-X
zh}nC?UH3QaL=e<xj%+=BfFN}JJJiXQGWyXC&)@sm^c*=QRq1@Q_8|wAP`r~lGn`g~
z(6A_FAaV^$M50?FG;GcK&}qdm*Pa9n$Zq?+>}ZDh$ZH26?7zQq2!uWE69qD8*`BjX
zFhs3dUpCT;Keq^5+Yp1W7fKf>+N-{c5O$FaLPyd5RdOuCuDG;o!dCT=u&>-2B~>tp
zf<zkexEHHOOfUQpyyHizS@?;KB^d@xy#)Qs1iFsWZO_OUa6n{{?6kVX9+>L)a4EBK
zO=u5&$j=PoEY$qFT*w%z=zyLG4(y4dJ78gc8^R{FcGKUXOlePq_VnrryHm>ijqc~`
ztul6#qY(KsJ|0KjYjt;^wl7g~pR!jGxw9RX;?~f){O$||MuuEQYIRdikH^0QPRBo$
zr@Qd)O{XV#@p)nLK5xV4sfEcudK*4VFHGJYIvp!?rkTfHpjaP%antE8yhYiap^xc9
zTxY-SbrRlQdlKI6#M=)-i}?0w`>pRdHq`4lFU;z~<c*=>e0!Juw%}+&H1_BO{M+Yf
z{Np<s^|0htM9~5wcp!HGq79)f^f+E6-yycPvKwnn?8eUfk{d(w_%>JGYIQT?Vc(BT
zz(1F}@Q>9ra&3K?>Py~?deiwyUwq<_`L!<{0&86Sp@W-qNi-lM@QDu&2_r3khs78B
z-t5E|EFseV)^8(BAvJW8_FKEfVv30cF^Ex!-C7T(U1JV;-^mmU&9h^CWv+P>ev!S(
zX?BwymA~vHO26p*D~5a8pNJyx6@$r8AkMtN+^=LP`wyoC*oZ;1al{CcESv%Poq!`!
zMH0}N1P6t=Nzf$<ncpDF{W87Ly>QeqanKZTLHCv405SDQDQCD}mj>M>ct>YXE&{jm
z5%=!Co)2V}?tWN`03LG`?8~Mt)vlmBRn>5w9>g5deI5%N$Xjj<Iaj_5M+D75oH`?d
zqUugq&Q&CI(r`C>*^E7HGsgj^P46)L2?y76s{=xwBorz`-Nz3eu2uKPy~<W;n-fG9
zItCcrPhif#3R8)}bhstr%&|P{DM-T`7-Vp<R`V4US9M&_<J}_^GEGOQeZX@ofiX(h
zjY$GmxErswSlwuJkHQ-|e}e85eyp(g{(WrKeI~zhV(|p2Mtb^!6d@K9VI49js;BK0
z;sJwZc=qVT1IS8XH%AlE_n3FC1NFRad(|TJV-#dItKhfWNkm9%#m)zw&aC3qu&zP(
zju6Sa0M4bLXFcvEmlz!VAd-BxRzZCRW+{bn%Gf0FDg<wb&F<<VjusOBezc+DK-=Wx
zB_bAW6e;Y2J{j{~dK)o5fuwgPUrbV~?Ec17CQ8cp8bzR+H*l60i|IH6Q)MH>hy4*b
zj}aL7*Nx!tyuD?8nNNc@(4v(HP3$g}H9gPl1c8lBPxSw=DTMz&rx`)O6ys0*N`@7Q
zbnI=Lz$>OyECA0G)jI!p&nXB0Xj)hCiZoQXsEE$+=j8W7%d{+NdO?mF;d-+}xV=^9
z6mCf0fhrwdSN>1{0$=70?}zn1!}o<QF&;2*(tiE1CE5C}2}`yD_@_`NSM_euf9&4L
zg1jjDC1{U-ASHLal4<NEd#xr_v3e(;vujf~s-{ZNHQ;0kYr-GbhEy$!W7cBsY6N}W
z+?hUQJ>XJWrBV515XJDqu4Cf{yQcRbm*|i+MJvm?n>`0o39feEi<d4l?QH0oJvaW?
zZeH{nxXy5olc@rjh-}XEJm%Cwwf_e5YBAe94-GvA-28{#M2uGR0+}M<UWAAE{9PFs
z>vN=(i8If)J{K1+j1u=8e(oO3&*9G*FQ0qL)aS#Wbx7n?e*RydYCZh<82S9iCiS^W
z<>ncwK0p2`4yV<65|N5tuo}5Z=Z)#VLZLr{e3Z{f368bDC27VO*cypAN@8OLJgzu=
z3olYJ#4Da;rIhxRC)L-e&jlN~AR+%$ln(a6vQjz^3MRvatE~J7&VwPOz|#<_iGaIy
zh~R1dpB)_~q~@#GCd9Apj(X<g6V1J>&p%@)0`8mf5NN(?yW{hd`T3idb->e6{M`K>
zMww_1%IBW_mmCvkHeAXs081E8(6i-MVehOiyU%(}v6osHp@Z1$W9<UZ;#aT?Jdd16
z@XA>KS}3=G`%XMq?Y`JNHV#?fZGr>-rs8=7f2He{Ja$h5C^A++GvXicICLX)4L+DH
zZ)}7Q=bL2p=8D12s<Qd!InIg<_lT(4G``slR>7MSquzY?7T)|(-gvfO?5yoWz8Qo!
z=Im8qw8gMD?X@>vBl<x2?f;0+4)NXNGPtVc(GBc;((^7V!)_?#U?M#z!7SZ1AF(!w
z!_6t|R6vO=k)~6CSBc~{+@~#cjIX#!40lML*~(UyL}0?)qed!&l%9nkxj1vhFr0OB
zl=&(W>4ZiCZ>kqj@K3)UuxBxrI73G)aR#Bpm@1Nh;NyrieT73fZF&S?4XNQl6t03}
zG0yycgv||PCJuWBx{!tZm1w;w=s;jp``X+)75>oZ6j%v>0dyrb04>}-#<Whb4T5)I
zJJP<=3;M6cIXB2`H45BOjICf>%TCnlMqza_KRver+b(6J8CuUm>p3g?*EfBI|97bg
zXQfTo(7afW+sRonr>d$wG}iQpdDjXcYg`yv9mjk6@GkL1jUuc=Ndw<>oVlZ*3!G%5
zk*2>}IEli?^kJRrx2gq{YGlIo58I*U`RVAi6Xoj~Q2paJ%A@PYvf@vSw~Q%WspctR
z_=VFu4ZKLJABT6*$pS(#C%pekh7*I<n`725h}rY_B-|nJF&|GcoN({T@TGIq_Tm4%
zss~Z<Yjgjh=mkh2mw;Y!V7VNK-v+_T3}O=q+X<v((o*L*rJ8=-VW6gy*1>;bQ91bU
zG5EZNAO0U}X9J&AS^xhHxn(Hxo(eh@bmr9ILk-0O!yGpCUJjiP*)+{rT2xdhn@k1S
z+y>m;95A&ar6ThIlT4EY%W?w(e8@meNmEHv&)w)3W<NzJ_kVxB*LCivZD{{~dnxDK
z=UnHyzR%z9^}U{;x*eN~A$d3DRLupuUMb&N*iZjXIob5@<K2kVM>8T-fY0L&ADY(o
zVBiBMbMRqKW!8Q)$bK{qiqFbCe9)dM4YNa^W{IYS9SRPiz*I$`(-ncXN>yu67Pd$Z
zVk-?Zv_A*iJqN;e*e$u(nzWzy3Bz^@(L=gCgKa;1`G1G+7k>F)<GcQw{keOPJ&UZX
z=kABhODpDvGF67}WhWWF7yoA0`2NK4w?h1-=cj+r<SLUX=Rjp+=cRLOEN1X*WK{`1
z1sY#1d`Df;yR!=4VIrb;$LGK6=&8xr?Qs9hJDR}A3ak!RRD}zF4LTEZ*jMQ9ex&H7
zV=L|C+H0yvn1&<07ji=nbpnbW?>vp-vf1%YjbozdpzjwxrmjKhACGr#gF>#z%c524
zQ;2ON|4*;L>Q`8iTQWr!xFWRI$p5T?PF+(?k>)eaG1T&Pf^7hSf~^5lHF)30o6E)(
zcm<<93Q!_dfY9}LgY%h5VL8*@r!hUu4jk{(tD4sBiX3l6yu+YzdUL(0agX-S8>sN^
z{R^ijL00zJJb}wVpFI7i9EarUPrpu3!zV8*wn<I`Bn4`yEg-SgU$}IDPi~-Wxc*nL
z@f7X~^zW)m^X<O|P_2iftObej*~e*?vojmTn;oGfpKrV_`Ba#K@Dkp3OEm3^SxkS|
zjOMJzKZCY=lac!=l%Jc#z`S_LWtnl<G=HIM{ya=^>Y^bfiPU&PNTMjZufzB?bXeWQ
z&5Wca*&0~7kwc1av+b@=dN&hn)uUp;WO}>OHEN!9Cu;}k{Q{<ot@N`f`!oFZFQJ&0
z{pH!`_n}v@(Tg?kGPAk#`YyS^0qIrTpI!&i^5FEce&itZDxN)4jX<ltt^1ClhY{D2
zNZ36w@#U5;XR`@T&?Pcodp=7iK2*?YOFNaDNL`3V{;_48i>MmQC;YMHa7Rk|GwS*~
zViwQhFz{UxGw~3_Jl<K6|D2u!$luKWfS!-9%A==nM0Ai{hGW=9e>VAv@<eK!vK$}P
zLU2y6EvcFCR?Ap^4Clvi{TR&;(%)C?p&x9CzgnNp`Ym{u7i*Dtc~P`T{6E2O#9;b0
z@6|!{Yeau}>0OzJUtat1xx3P@5&wmLov=A8H~sZ%#QW;k2|)cH>sRSu^!m&zgV3wA
zKfQkS;QueZO8*Ob#h%+0y-MGgUNNBVPp|mg+nxQymn&^dJb|Z>5)&DoCA+9!4bs$-
z@bl(z70Dp|h<yIMONungbT<tU5RwK_J~|Z}_7Qr<snYEq=0fDtNaJ?X6x~d<8>*SE
zHd|#--N#|=FF@dAX9F_MfSUq&{ZH^A7!!K`1wJ1WBB|1<{||hcSG*rS<cF8J{P0~$
z!nJSRENYP--l%KfuVf^*=(o0+Ih+6M7%3nt^hJFVlwLKPh;;pGILDV!a#edq7;F7P
zK;!NT#RNtTeol8Rh7Xu?KTm6ewIa{N#Di}A2u^s!<~S1DD8T0tjbIqV4IM5qijY`*
zLk+AD!=1oYOI5FM1K?3!GZLFdIp>7V!3d5eeTUzvPo0VT8TH)yGP2b-yF8{(ENM!L
za<R6&QJZZw)F&^~!pCE;pH;$B#h`#yA>8HNt2B|NIvm~OV4EP=YK#s%hj703)R1WA
zDA3IpN+#_P?*{u}b5GBcXllwaq-fJ)i;}fm?rXNH8=+#oHM3%*6nx*L>do~s^1ezR
z1Tzu4S@fKOONc7i5__X2<iF^d(2D-WyR=QNs%T<&WI_$M;A+mb8YZ>6GBcaK)-}3l
zXN8|H%|<ps^KK=nlg2(rF0GGT8iV16M3TqW;`8aRqEQw-=A^kx!XtmBUbw-nR%vi4
zu=GAo67vb0U&*AA3=|gmN{xsLtlwJ^9%%w#bF!6Y0Ca4NZ~z&%O>Q(#2)b@FG!2Jn
zU7>X@-IPQnzinn80Jf<lzst-Lc?D=+E4^5Q)VF*^K$)D9FRKx{-Tn(}gSNKYZ?}S0
z%(I$FkPlcR--jyS_4aiSa0b|IW2NjT{FqDcJyA=&-?I@AHd=l@eT#;Ym)wV5e=M8i
z%i1UOd5hEMK$fR{>rw+|xf@YHpC!#2VOVBY>2kSrx$_q3vh<tZ;Lv8Ty*x2pev#HX
zqU4w9`T8|56pnfk2~K$Uy%;phQ&D;;;o)sg4XVWE3ULVW$jX(IuUhr&qb2=fkam;0
z*oeQvgK=F&ed;vU=B;NfronX`V?(F$@XYf1)P7o{Ij@c9tk|A;ZT;Bw^}!`MbM@9R
zxvw78VJk(OWoC<Btt%o~s*o{3#gL%zqibCf+q9`c;3lMi6J%6sG@V6_)Td6bu;W86
z0U?je*tgOefecSQ(5AbuKdpj-P}42PtxpY`lHxlVnezesU}sEdx2#^$tcW-K=62UM
zl^Q&9P5^)%lo{yio~;A0X|GKcCqHRC>v~f^I0oWK$^6ue4KVeKU_-w2O?tg)y&vO2
z@fTPp-xMD=%$Z8j_?O$jO&ZY6cdllBn8Y*Uvyq4T)98<MLVt;rm#g-*OZkZtE`9z8
z$?>Qc?6SmL1V1Hdz^aisRV`6awf(D<R-Z4i3u05Y?oL6dR{2wx$ivWhJIcl`%yA{R
z|GlT&$c4#!Q2NYVWla!o^ZJRhRB0;(SYT6*N?)kQtqEJ;T0jO~G)W)24JMl};LiyS
zN_S^>jm(@O02mN%B+u8bKI!of3SbATj^rcu2}&mzY<fL1=e6I@<>~az=sBfYj~zy9
z?27S`<*p8|!8$ya{9tO#U7Li^73Ezov|P=x;3RHJZ~vF{lEDabon_)0HnfPFFgZ)Q
znQsTEr$Q2smNrW%aP`S6%2K1IP&2Dv`E@{gv+dGHl}bj0U-(59mh`Xf6;=S5EeR93
zuck{qUcU#cbvA`^;wkLa24}CnEd$fOb(IL6T<)9?_Ub<U4r0&m6ef@>69gczCX*cb
zB~=PnUF(bu82HFh@qmV~FG7#WKQu_o(QUW&g9QLr5&*<IF6Un@;}(xunLVO>a@)I=
zEqgIZnz3yJ1G_RS#!-H~D>z&%K2NKY>e!rctj+P7o;x$R?$Ec`qK=`H6=q-SgVDQ5
z*{9Yqm2RHx!i*>_6-JP#$)3)Zr7PZGxB(<I)+Ec%k|ar>oUPJJLsLfXQ!2}Hx!{7F
zbx@mS76f`;XZ|s8QU$OQ;z&X&)MkxI19U(WqD@k0a&;g3b*nIMXi{GQs1q<{UW3s*
z(2{ZFqKQuE%qv7jhe&kwZyMNqH6fvga@35tg$qe@sQMb!oS?E|Vg^<ecuqv57phhz
zz&5FTV|pG&EByONv#P;K&%P@en8XQ7Zs6IcQ!F3G=!hV!2=_KIn1%QP>jYH;Lb<pg
z-;HVQoEUz`Dh?Ofg*69PQNOJ@$bc@AVV_m+L)S>W6k~t{m76FjA&r4`gmQ8fVWaH>
zTD1p2qMjC~riTcX75f@06W@!^Ge;Ig2AxnRztOO6RgO4UiI7lJjEROkA%Y18?KIfp
zxCVq`2aDraD|qN*!r2K0QG@h>3M#NKu2SG9OqJ0zn+3186iHsZy0x#B7On|f4BYU;
z%h21pY_w6(AG)expxkQGb?Xo~K_0{&{in;mv)_cw1oW#A5CA5bpb!ps8idslSorW=
zbboKj_P}TW?2o}%@;{&A{y2JYq{%omv7O<sjd$%Y{a_~Ob=BIF3pL?n&!gh=UIdx8
z9f!udR&w)8$`r97pf-)?ywBP3&UPL|-52)!+gn>(we6hEh@E!XTRrRV7U5IKtY=kp
zQ>}^;DFEu=oDrp3t~@>w3~;`oF!cu<R&itbz3R+|Vc9+=6B05tRAtq2Q;j{$)*oE?
zB1eiA$LCH$a)ni=QdQ%gN^6Q!+m2)7oriG~T*;w-?+uU7-H#s~t9#mZ6wiFY#-EK4
zJ=AD~Si+4bM9U0POrU+BL;I4JkNrvzFo9;Q$NzPXEQLvCKM+I(B@x!)xqCZ-UfuhA
zFvHrOIn2KA{Y^0Ahjs|6|9x*T;}QLie`ihaZLYpNZ1boYT=-(!PLORh<UsZ;Za{X5
z{RY{Sxd|@Z*tQc~MF@}UpVCM0Bb-tusIuad<8QRTYwi2WYuMYJKcAsiGU~^<y^NN#
z<!$esu90l~t@=--eyF9sp~g<aAFR$)HUjar!8{A{EWXPh%UFFowceLkUwrPvl7xcw
zvS!y3=ujR1vk_*J)re-qvFzUBWB3?|zLE!wTBOc_i!zJGz{rRobtNt#9gMo`Ytm4~
z=rG25v`i4$<R4DZ!x|KhA`vmd!yj<wq)|;a$(*!V0l$(2eV&SPOkWdj{V^8gNLb@}
zQh?tgeU&%=$J<wJC1UsidxRg4tSfDOM(|_LPltv4K!jH?syq)H2e=Vkk^Zdv9pGln
zYlIQd+tjmZFuH@eM&U$(tgV&>avr=_P0Z)7V1=yC-eFX+ci|a`voiZ-40F?nM4>}N
zRj=L#d+&cjpOnakb#@7LjVzyC*1lu&Pm(L+UGM6V-o0kTq(6MZzh)BfPJEJc9j&-b
zUZ<Q+`;KS6x}-PWWgDLAlMefY!^KYcvVHPW3#Tj*P&A+2zGK9zEB{UZoM``K7(2XG
zRX)~ol!*)HvIBRy;Ig|4V))7YB+&z1pgt18CVes>MZK(#>gi>dwNGLQ&Y0jnl!2hY
z8Y}Rv1iRQI*Q8q@AGf_7REEoell>~QjJx%2d(!(_@yAVvy`T&%FLr+E0ONU{2gcBn
z@Vh?G0UA;WCJZtMgOD~D^R>H$`}5k_vkb#Mq-Eb#GC%qAFzCJf_CPu@6E`&vWq9qC
zL=xo{b4f8S*Nar?Pj%suBU1S6v+wxvxL<@jmLfiiG7N)!`MC!9sg`}f9oRpyCFc#J
zB04nZF3ogk<Td~t`kF?A6r+_v>6<sIXaq`7`sXR&0$DZL>(hUe2E(s#&;NDxR0zC8
zj%WS6;QCqwS43q)U#*qQn_R{qfypP64-l#EY9Lb2a{u!1iO;<r;tiy~o*zw~Z0e&L
zwUDyux-)re)g7ot#sg&vN1JCyQym2`nKiO5^VJT)$_;k)>(Egyud;K02yT}Ow><a?
z?Xi$EeGPx19udEcz%Wq_LcR$(3VR%N7TDv#>l>wgzII*TD?jL8pZpO3O@j)^1EerG
zkOt0!xBATFK`iqe3PFJsg48?CR$y9~v@~Be59p81ERZ+qrwV7UsK)R&n+~JHcBat?
z0>CiEm(!z2V~z|Rtd^DxDi2rH4}ec60@7XL8Vh1ieAUbQVOKdh1v!bZ5#Nx5s~)fW
zzE5jE$Zajx9tX9ROI`ml>GEA$Og5Igz&7w#gv*j|*uGM%ZH;BTw1=0n7?LLaC4z@7
zJEqMlVa7HwV_UdzgE}u?gC<A`Q*!!=pL{U;v}%R`xr?Q$h{Twzv&vfcRV{MAQO}}I
zj&g3lH8E$KEbwmfTRr1|8#A)buE>{b<WDKF1y=Z=MCu^<yM|2SkzSOdb@e+o=o*|^
zJcWHT7X2HOR?n$q^(aoaT279B$9O<gThPd?Tcv)X6_Qx^bSY4Qvs<IBPe3wCYAQ<L
zhs$iLZy7`xJks#t6vqA~LkaP_RjdX7OhyZTG{G294up83Lk^NKu!q6<w`Po=HwI*L
zG*d5C`gpg?=E%Qb=x(_}h7RB&NE79$(z_@_LPrNL&C(l(kK2uGI@YryRodx_R8eG-
zz-r}jm1IDm=#RR${lR5*6ak453dj>FFG%fcw@`{H-+5V`i*Fa;4(8tb+{>taXc(T9
z^WKcFX<tzK^mJ#hOTvS4OX#=;t3+{4*zLD#Mmrpwg4e<`!OOk%7<69%WPLE|FMm~!
zR-N%#uu^j{Y&yQO8WrIiUsVv~d&<?~7goUuk@m^4L<~sHx2jD*E#yM>(zk04s>=eW
zzph!QJJ~ZRk&^8A*bHcWryHd(C7|l1R+ZDm^lqxdD;3G5SbDnhTuFI0>|8kUaAD-_
zP?f}IDxpgY>g&IsO!4NSXboO*)C*t73r<{3w6lJ4NsMMvvBkeZWV%~UqVM_e7e(jd
zd`8EHJtIatS_;~M84Wx^>{_b;Lm6Iqn^+AnT37(Sf|UXv{|@aV?AXt5*c7WBi}6LD
zR<28b`TppfLG5wulPj2!pDL}@h3eoLW-&b0@6K*kvO+Iv^dgaClfOxOy^A9&nQbq~
ztpE6$%-vw?Km76og^&kQ4x-XX6aQa^MjZS_6m%lveXnAIl06+;=J4X8cY5YP=XmEe
zJnYy$C*JuLZv4Y<ukL&*-dTd?*qiMX%zN`k9wZ;@`12g`J3N>fLt-`dMbeXv;oH6{
zzKOzgKHTBCppBhHEW*ScE`~>PiR)A6RbJGwV@~rm+%&zj+CclZmVsRU&gwS7DUe#A
zT{J!!Nn^okhp2Jdf%t+ch#k`^Fchw+V`K}39`}o&UE{sWI9zq9T4sSsD)|_JGAi7c
zKA3;#weG<s{@^BoSJ{p>7ZovubbYrh8`OPZT1ip*B$e!D*3@`zdeS8{-xz<8AlgPU
zM^}bB{xS%S&YYP`qf*tGrBP)DOu(ORgwk6~va)&|J7V#!HAKnr&L8PJKdd8X^Hasn
zyl=ja%m^TvJqj=PI$6LdD#MV9P26E=<tc(uU%A`?=BUOFss<REtmr0)O}fMp)pab9
zl%nu_4{d`0O{B*H0~IphxT7RJ3m9-5{McDybDg2<Vk`)>(pIPvqxF?EffxaXVu^^8
z!KjyK<dVpCTrh4ziHflJ$GKvZULmVQZ6cEt`|}q^ioNWsQfwYQd8w-NYjm)`OMzV`
zNA|Z(SHCVOe4EUD`U=ccj{ax$u@7~5KYheJcDxIFq+>ES;j2|@$0BENWUVGZY9wAG
z*{EFC8xRs9odg)jR;+fbkF$2(lyR*-A*!fHbFdsGa1p_Im6Ni{rV7GOGgPeBjA_P|
z3elxTe6Cj6M)gy>%)AQ<o9GzC_8RG1?aFP{#IFXg4R<Edm(ilSf3C{7?1|!<{IU7D
z#e&Y$R-ov9nQr(iq;n#f=ZrTlai~u3<&=qNSrw!!e+$miMvaLNiZ|>ju@=F3>Bb!5
zOx0nAgpxpaKF|><%%tq+Oj=E{8U!QzpE}Srd}N_SBaabvCl&@~Q2N^MTqv<rP$MzI
zU@++U9*GP0@z76YeH9F+=~q7|anrlEeS9=E-7JmFMegHlW0!dlBu46kCPVIQ4o(mc
z`2`Wy@GJd-WIPvAjN&dqM4}S5(NYk*@%KVWfbmSiQxe8e47Fh13BAi9!TVGkKJzU!
z<Yj3{{$JLA*?N_o692sUgtEkqP!qubHM;=<1k)?b`T7FZ%s>fFzEgY#`L}P#;WJ@h
zO^MF<OqG89LF4n$5c{I<i`eRCrymod(FF7x!mCTP(l?rk=}1s|tQ8k;F1*FnUDeB+
zbVvURqyMHO9R2x)H^C^C2<jj<{1vq%`ptRoUE3M!Ms!zntTAA(W@A5PkhJf8*IE9R
zO_}mBPwDA%z>7$~>u~=T4K0dy-LCp2=ZVyCLEsv>Fzr;?Gl^u##mxu!bjarxtD@&y
zhP!mgZp{bgBHlJE5Ajs&_ropuu~8QgFu`rQA#BVq*N;Irgdfc>5ybAeorcAkixv&c
znP*mHIP>DI5ogYNG@mms@16%B^})V-t++VTy*SI6_1zGs$nAHPitX+Y8CHPEqP+TU
z2<PPehIRk*V-NNn3k$*49x|!YF<G#m_+bS0;tly=SLIjh!2Z4!7udtIV23|lh?;~s
zYLcfPS6w_nf17hm%xwpy-EFeQUJfjf5)E`yuA6YnD<HwI3DM&kyUBLIKSJxhL7sw2
zOfiPYnP$*yk&5-+snR8ivhZOhHoN}$4ywi9nGH-XuUx91^v~^zDKjTxCmz*R(4n3n
ztDcw84rVECIN{BcSh1Mxo>xB{b<d-@PcG$6;Dm>=5x@(P`6~g@Mu2S)^TI09#uaj4
z(-mR0$~K!njH1I#>|mJ~;R=DuEQS%?bQ6{=c7X%X5`U_SRYHj>x^*QOSgLFLT4B5<
zOfP_k1abZI$?>^bYYz{bgjZuC&_57Z{hfH{CRs9dlZLxc;MroWJYdX5dszOMA5tKJ
z04m6h?!ZUvpnu*b2tczu+`|t4P<INIo!~*vb>%WGTG=FWbiHuhaO<JRRX=9*2x}1(
z=UavSGjNUMpqj9JW6s%A(ni3VOy%fCL)NJl-!GMpcYRwm;UYid^aHS`3dd-AA<i^a
z`iJ`z9yF>)f1VwNL#Z14Y(=W{m-ecmidTmS8+;Kxd8o!5u+n4Kp=!h^4QZB3S?KDE
zNU`p_*#XwjyHS8z$P?b0d3dYQGbpV$!1TeK=$)H>l8U{zn;F19UGR3IiT?UY5h~>A
zl2<Cql=z-Vwp36$au27g;Thi?n0jk|=BTFuJP^I>{9NiWp`OX`HXzbio*MIA%Cbj6
z8S_ETchnp8gh4*$*SaJdD^g=-xH46gDW?o#yg{UDAbt<m#*5P5v2b|2r&5cL=WsOY
z0W%H|z4>hZo0~lmhZ%e#;)zj#w1)D?tzY1Xcp;Z`HLZjjk|@Zl&d6o$hxz}#oqizU
z(~uJM15r^JEB&zj@N@J-5pYI7R%G<U&uDWh676*6wZy5uw4^yV`3W%!6~ty?IR)~E
zdb2lw=c#HXHRi}65{nb6bivp($+V!zv!suce1}4Pqi~^56O)GQZW$+3nnX~_T5k7!
z_g4){w+{1ia@hPrIkDtN>8(F?a*}d#GAb)4t^Ks@8<h20_Nf9bJI`L3mW}c%gq8)R
zPpn2ZG#DGj-l(6reBQSr-FiN&TPJ58-r>b!?x!WT`rxqWUAl?d#=Sl6g)}3t1<`4g
zRgGqGi2oW^1dvyE_k=ib-oS*oae1D?jIfqVgbRcyP?#@Lwm@NSEfP=1EYQUi<`h?E
zAca}k15vv26sFckoTf0Xxe9Ys{+mc)rkxj2W_VP<D@<v%fimh)F6l$0FyEbv!aQXP
zlcz7XKDtJ_f-TfP2pIg4mx!j>XTpF?6mX5Q=e);;(kqrER*OT8au-Ol(gheQKTUoN
zE$?c5wC&c_u@$+WhFb!L>7+Z_%tR`@4N6Bm8-t!vOhOZ7;kzWu902@GWT3z**=(Sk
zi84&Mac-y?cPE7spp;WmXtyV$9xG@}a2PmTG#}khqm<|D5HysjVGZxBJrkNlwjq77
znI<`ti5q5KoXH?ifsugLln_#D;ZJUkz%_c|^_>;TPYcjULDyBZ=vdpjCOlvp9ebq{
zDuzmg34%Y<nIpp14K3mGRO#>Ub|Sn+l?A0|ut}xQeLFJ9Q{F=vpZlJp+;^MGsxJ+6
z4bEfEcSYnePtoH>^O$%h0j|Hio?B2F{zma?Vb3svKT>>Zksg0GaIjD9{i%BsfuNV4
zh+gLAzB@Di^^nZ#D(D|}cOcgHAmBL>XP$h==W4Img8m?)D{~rO5YxM$^eeyG9q8%Y
z7kA`PwSqU>jNZI?<NBO8bO${VYD9I2QB&rx7A8Acp=am`N(SI#%Z%nF5cDcNM#mHl
zqdshVH0l7}lGZ+5d1rP$3Px>j6hx#d5F%xk=2z>t1S*K#{(JG1$TB?VIR{jQe&P|b
z9Zs(;;Wi7bXhoYXyUYhIi_XvbkgF<vl>`~xZZs4!m4ugF4{fy@U=D3{n@8WPJ_~J;
z^<(Hq@jsL;hqBEaO{-LUY4taOn^Ugs4VD5<Y_Dk9PvsCdlu8eZTlNZvO_GXGLx;_e
z+CHS^&ECI;e{RQiEZSB3@wuBFf03<e3Pt#b%3G5?hxhT~ogOAJ6*b37i(r&~)YuQ~
zmwuGl4~v<71|)&{PPHgc!R_=!JFB@xZDvIn#cLjQCIeJ#PMr7oRr+LtqU_FpOCEyQ
zOpbvvMZLEzM{p9^(DsNsoub}r<x6+edqpKyLNw6Q7zMnRPFHJ9JT?`@QYol??GAe{
z75%8**YFs@?5u2~M*Ttlvw!8((&@hMx4>a0;jL}V3{3H*Bw}sSL7M1&D3TT0)SI6~
zZ!EJaw5U5_5bJd+^ZF!-l3v3CzO{az`X=0!g_q%d^rBp`Z<_$jjdXKuO9sMl%N%5I
z&wLrom%q!9zY6i*&7V>ORgyrasuT&7aEe;usnM=P2;r=(Tcd9}m}tWsjqTfQDCJ#U
zcu5I)1mJKb!bafeo$CZKul@Mk-y&wfkRyL;tw}J@L$MT7%Vg<Sh0lu3dRR;m4Sf%*
zBz*TXj`ZbXq&W?v8GO(33L|vNGfw)z!uQLptc8Y6T4mgm0lrF-+>}^91dcEve9T?v
z$$<DCOva<@#w=Di>}dx<m1>wO42(*-5Co%c`?o4#@b!<g3x(Q6l4t+e3H6PlIcvSn
z$Ov_l>#T9ObyD4pDhm4OiA8-H5w~czp&~V^)L!ZArxwCUo6JF1gZ<A}5iyN60Rs*9
zf{b=p>Vvt2DM{}ivi*#==6Zp4Z=%lHmQM*P3GP!-0n74+GiD=fI)5zR;N<c9s&ByS
z8p&I3yyPsIcnaYfL_%!4WxGu7yfT!Blb>)5tQJJr5G`cudX$cW?ac(wEy-X>_e}is
z;w+$Q1@8!|Jb2=B_i*ypB$ygy|8N90e&f9=jkIcRy8&iq!bp9Q;-+S?`V)!N$*$8O
zuro1II5HR5Dgj%8g#%dji`Cbh?18~s=z^nW=rQphvp=TuUyj!KFJ_U(Zc6C%q0F%=
zJJiF$NDn<Rk^Dz`DoBN&c*8;)a*WJYxVof1i2bXB-P|XxZ{hqQLdd?MEkk<m)+`BU
z#0p|36r>R)CY_)e+`TKqd#{CDf6QfKe+LyLFhq(4IS_mdS<x9+GoN*jww)hgA+)B;
zYbE#}c{%6RMBk%aXYHp#Q+%Q3gWc2F?7Cy~r7J{S2o!lQ){;-`nYsS}hmaI+>U}b-
ze_a@de|XI<PueBot*!<9)q!xJ&?^2$@iE$ohG9T419pQcL0^$Sp4k45rs8-uD}#!c
z6ouni)g#d`6-P)Ufv5qwoJX4xT$}9HcD?-d^YN~3^NO1Ac7$JGl^L_43fEQ;JEvBv
zB(b60GBp=oXA9ZQ%9|mv$a;hv#*tPSy~`FpJ5v~F5dSC;^tq#4pTPZMp~|1Eq6>_P
zl)k>o+oV&k&ap{Yz8W{QU;67G$R@SS76hkf>`_AAG*!BkmwsJOCeF2inKo-l<jcv~
z1f?}AoI}lv-?QK(U5JG*ka?NmW5y=Mxw7}Acb*oRp3g+@(qA_N9XmphP%8Z0UW@?@
z&d>1se&HEz)CMs;8`WWncWxGWf>D3`zAD2|Z?Vc^bt^?ADz9iQBod(z-G;?{;EB{~
zY$|aIY(%<NwYkMlMkEZJ8@(EYNC!ReL5M^xBGQ@d4x%iP-uYxiq~oG@j!2Q<g$F+1
zBzc12G(x|E*lSBX0k@ViY;`_;0t7pq;2PdC6Pv&cY-d9A^y@0^7g8bJa`8j>o8N1I
zKq8Gu;+GVI$Hx6baY5;ETvD-VG(;|j(a=$Q>pATAaYPU+vV!m$Gs^rAV!z&(!-Hsk
zu>CKt`WWq(seQs_{X^3hLGNq0)%;GF>Uqc7vNd53t52*%@1MipUPY}B^tTsdq`Cd(
z2pXyMX^rV?_(tw55p%!j^eH8&*uq<dUA#-@w<VH$u-^=Nsm;i~DfLUFZZXksf4Atd
zTRzU|4Jx(jft#N_BHZ)CP~_RfJLyD{Bg5W3nUVMd6JsAs1S1ZtV=eKQpVAkJvCk#C
z`r?5WC)EYD<uGoMJ^y9VJKvhA*%FE3jU@cqzA1vAR*^ijDizy#i{$UjYJp|*os;KR
zr%r3I06%$JdFsrD_CFVGV}kR$MKwi5GiP%xW7@>orBpXW1x{<Yy9haN-jju)Jgg~-
z9?~g@9=2s3Lci!?nI4M%70|zG4HZ{V@gCGsF_bsGceo~7zOSa*^yDU<v;o8sT$?Cc
zsy8ZY-7NPq-t`r9K7Bd=@L*|Fszjx<K?@JNnS|0+%e_7?)(f4%m`GwsO|r_blh!m>
zR;S;>)tSS3H@(tsIcs8bdb!<7cBNx~wQ!9rP5M}#hpA@NVO^%voTm@*xxW@m^XJzG
zv8jn+@B;(#@{Ak<Qj-W02$t!I<p=-|zuM$r{ELrPD<pB%QYTE7MnCW*ZlB>`RKr`|
zde6(PmuVi+uzKHO872-gfeskZw@%Jja9U9}=_LyIZW7z=8WgUZgqu@0={N3u71qsW
z4It*~CgGc?(Y)hyy9r7w@0HoI5fR@%f$<3#-;n7k@v-Q6%PdEP3CtSEH~DSRoAlMj
zFSGieFrf9}rJ2_!>a|lx$~d?wp*s+RqT%7{E(Ng<KO(4nOkSfq@?%7Z4tfWu-DiLe
z@3|8G9s#FaRPjOhJO4D#-@Yq8Fn^mjIxAeU3;s^G?HF)GcjeY={B=EsL%y5G-z)m@
z_r34zn!hi(_aA`2waY&!e}8$+VEkPgy~*Y8!=H#8R(t04`}6lyS>Pac=CA)_{yxs+
z$HDn)YXt}Bqma*RO1!h#v^XizNBX>z%Zy--dTydn(L^BybXWqDJ=0tArPsMMrs*>3
zRqwhwgpyHb#VS80zj7qDL1lA_g~Nq`%-aC*uFbv9w?C#HvKoI-)j&3$tKCe9Zfe|3
zw>IKs>~oJRnVz&dvFdkD1)fMGpH95P;S+yl2a54Gvc+e0V$<u1v2U^i^vD_4&aWRm
zKEctHis$)u##)k6BWEyD-cvole(3m2ZZ}A5O}xW;nX_{iPp&3b8#!JoP-1$kf6BvE
zo>Uc5Xh>x}K!vzjE&anEUHoqs1mThiBE1UAI2q})g*Sg4f<5h2x<H?gcK&|4Vu-1V
zA*QN=L`0Z|=%z8cY0^z5TVVFP8iYs8rgt&wVX`{(b2tdGE#9F;$nghXprc;QWbi+m
z^ssYW&tzKyGWqE(%H|!=U3+MEEyC1Vs|fUS=05r=;vG}Cn}5-yL?SqyWsIaIwh6s#
zd$VqkC+IquV(V&0B#uq6otf(h*Qg*cy*qsNMZk0v5vl8Y0n<YOZ!lc}Og-D-$0Jlw
z^z<7PuQ>I9?#YL4*C^WLuI<gU1>TJ5^Di2junpbb6mPP1&$?ajXVzueTaUS?2#i#>
z9V(VrP<7aAtKXHZam@7If!>OBN#T+kVhXR^Y%JaRoG#Y*uywUV6UX+pg>SfL@)p!<
z6V**z!uO8-m*y%GWi+b+?<w)DqmCyIwv8q=+VH9z_ietC?OFe>%A!e%W#RpWl}!-H
z)l~Kuk{;=gsghtCqO>aG{hxS3cHnOCY>R(;pyfM${h3BhN$EnKGLgs6-H>{jAxYJg
z4_1daG@AGUS=VIByI-08Qxnx%nV71nuwvLCXLWpemV^YQx6O~CB7&f!8#(e&Wc7hw
zQ=6MVa)6YgeQS|~F}d7rvJynsSxlGxOt<u9oAhN{xb{1KUI-O5DmzIqiGA$!+q`(J
zv6AoTxkxUN%PuHTWW&=6Voc_Z)5GSim8;fGc!m#z=xL)MX9}i{?R2Y08gw#`LF`M*
z<OUQjn7O2h@GpMjS?CsR7hxfkUw=&(<QUBYUe_5J>IJqkL8WauLdxUYzE)&l0CdzT
zTFQn9h6j8l<K;Wu(gy-A2Ab&!E?gvs+=AYf_Lwt(?+g6OZ}phJ&U@b(L}ooK>JJ8`
zhuuMjPRqqyP!zpW;4{_2JJ(k4GY-+xORavruFHMBD1#Aw@61{Y?uC{95(Sv~^7&Kt
zcTqn4=9f`{0nR_rdfW?$eUU8<r63#p6MNY5g|J49w+Y=RzUqQE#8tiTlr3;!h(O~6
zHFBS3Mj9lc=JhaTYbUG;_odn1Zx!ZuN|BoUHrda9T`Ieuz5AN|>_7Re?8>^>GF}#k
zca*S|eGNmH;a8jf)fetJl%JcHT1@fWS#l*F;xZ@}F8&`$I0_?(fwOejD|BT`e-yar
z>l?~3C1X4OOs|Xe3Fqc~t|PR<3;gGF15E^DAtgD-SfA4=+s{5PeZhTxtc^MP)@@__
z0}DUD+CD$bfBtJJYqE5j`@Fc{=P&%t0iS98Li_wL3ta1$xzDG#&zIOxVQ%Y73P11N
zBH-`vpYQ2De~E|Ser#(F?wX(%UR?P3zwGlb`p<uEN?iJP9)>?x(ji6LPzklM(PpK1
z&AuZW6=3<SzAmlO*Eqih`#ScJ8c&W|Z8eYZH6Lj2#{5F>Qn7nsy3?CjpT(O9qa?CS
zJJ^IJULxrb{f>gFx`*fR^t2c4^S=j?eTn_G#swPgbKC0o(N~;6^Z7#iyyY8wy080m
zdG^!W`+vGH`{}vv(=mLy;ZKm`CeEi>7uzx4Z<Fuj7&~zfFB3`nis%RDU$6$I_h}yA
zp7;2pdfd+AuDr*G@YwcGf>*b`ta>0fq%8?!dZQ4DZ@z4Aq856;E^Fr*QIWpM%EV5}
zd@T#Ko-*l=yEjk26xFLYKh>L8#920`&wF!|-Xz_dpXI%|T5mK_iEn<J_vRA4Vdq3a
znX)$#l&9*=b-W3C87WJ1lE=XPw_C;6d>fU!pEh$8vioUkWT?3+RRod3-|EmLOaOxE
zeYm$$#4izRVlzLSBmO9cR3iQ{Coe7{Dsc~AJI+0<Fn=f45sqhzPx9Kw3VKbY^PzX4
zy|Y<H{|Wr%siK_FBB2mE1Mm7{`@?(5M+bnnwK^AG^*zH*w%7#T*<S!&?Hw@)yq!Y0
zUp}qc1P@B$E2QkwM3E+Z@-?^7wOLx+2WfRYt`qg^7rJ+5$iSheJfjBL3W7`ps7FmU
z`4m3$c>uj62T%`iHvX~sZ=SvYI1ST-55xZ0Xd#T(Xqwxgo{y9!(G)=K`OwPY1AlC0
z<|c;^u+Y5*=-J3R+OghfUWF5L2M*-SP-}KhuRMH*$pV?f1}0cby$`T=^v}XE0((&U
zUUfdStq`m(|0-CkBHDt3H1Lcdhirh6b3Q|O@(s~Ds71S~r$d`3+<7U^_GXc&fIhc5
ze)gx2=3^Lva`yMmZo5r{V;lKvg77))BD`_1ZMP*2gaBo-O6B3-zY{I<_uFnyaydC$
zU+IcG%p`|G(xt-Jaq8*G;&vYVS6%u3^g3ukL=)r_5y;(Zy)TvbuA>LqM;7R<jCdB%
z@<PF){TWQ+^5BWj{ontDo@^aRakm+|Edc7jUwRJ7tE@Ya@-whMD9LAiyMW~5ormyy
z`4PZ`b!`KX-0gJUpFgAf7q*?w!%toUS#;!=S44j)pwB`_pZAgRFMTtQFL^vWqwpPd
zMJDAV`R|n2$nf*9jNTOR^P8Uo@J|oIPwhs6jD0Zu7+`aI^rK+^`+h8kuX+35=dc_V
zuBpZ@aXp89??0fHC2x9PmY<Jn?WbjfZEiodf8qSi?fXl~+e{uPsNXiX564^#u@~n^
zNuGRs(DPQ5R12?s*$D}5Bi}VVbP>kxzdCQl>VJx<23kf`c;3o|s{a4ryp^B76v2;S
zlK;a<dgGJh|1yONkbLH|K=FTn-pW#^pEw;2^WZP(&?yU(baA}%@8SBnIr=HL4(MJ7
z4RqyT!lz!$!!I~HM^VrJo(sP+zMqP7alb(od@EBy0q&bGM2J4=G&WCu;&cD*;4jcu
z{5<YVr^48tq{k;x*W%)zi+A2kac6($>ci9-0L1*8iJMwlQfHK>8p^r*62SpfIJZKN
z&rh9EMP`P(1f|i<2J~`M{N|p{M_c-zJP~M*AMo-C8W$KDZY|e%;p%+?wOh^qzhS4G
zZvKCm|5qiFGSjy6fQ6@;VSk%_VqI*LcTh>60ujPTFMu5X^g5NL2e}i!pY5;IsT+Jh
z+YLhf?jj1sJ3pbKBr;a<jBVcbpMPE@Q<6X-+9^@J3n^S#`18N0Xs2zRp^WC?Td<W{
zS9?~+D~BY8Z&axU1rhMwucxuDAAA1}O{6|s!iuDqf5$)z8$)*8BQqO}dE`#TrA#&K
z+>NQ@_xoRsCS1xl08~-<OZL3-fsyjVLFoZ|X}E?NVGWI$M2-y++4z^OmR&d7@-!vt
z3Vuj!rQ8%kBw~R_fMZqP-GkvU6UhdRi=|2z*=HE=U^+-NSGMYV8&dEjq8Jw5uUle-
z&5256@mo=&W<{KSpF=T~`};(1UO-1nlUNdAR%Jz4^HV_<B~+tLCWT5S=jF-Wv85@|
zv4K(XXm{~~U1XD^X(`%{R#D^sHaXI?I!%uDHBp!IdH-svmOV)p?DQg|xucT4|3y?N
z{g}Fis^2gOVmlX#`VxqqWBoGkvL#}pn<}CyBa--!3F#pAyE|gM!k7g9HD8v5pZSP`
z4qBSHds7hp{wYf#hvy^UhtYw|i(je1)+l{^a#?&XEA=Ge6U5u(^2%zHCx3;aHTGOK
zjF0SI&6Z&;BuN#5A2t~yqNNfRv_|VE*ragFAwp@f(CFB{f4u7^x_Qp(S&R!O!?rc9
zK22GOcb=;P%;$}F9;G{4UaF6UJon4&9w^i-asu9A)1Ra7Q#ELgR6RMO((QL{<uJ1g
z+-4i}WQP(QphTl?c}z;QI^J~`9XUHH7V{w8eS38q3(KX@Is?5^=haFxJ9d=EJ4YE2
z(3x4E&ghI^Nf?yQw{2y3*>_&fOC=o9wxju!N%UHSKK+`kR{co$AaV{bH=Dag>csi4
zu9(()e@;cJtZfZff5g41;El<v(+t!IN?S6B+@`UzeXTg_N1pxGK-L=?^EpB2vZ1{j
zoX|!sNN)dqanAdN(R&A^-oKdh-Yt2Hc%${1G=YhS>Nop6U0m9J0;a0+T4j$}t@pyY
zIW$s&78<SJ+h`;fR!1fUPau>hT^-TPp)5no8`|16%C4M1KFWivwm>-xFK}uQ(zaSU
zkF2Yv{CY(X#{BbY5AV^r@Rm7vPv;6x1#cpPx52@?pfw-f?hgpBD<^obxyZ3VZ2_;2
zo1fRNc1<^WR3Fbc=zf|~L|Jr<{EeRc8&%Af%X;$|jJfS9kI@C^<ZwWP5pdwOEC+BO
zGU^K|+f;`!Vdczxq^$N2zyw!LNZnz_fp*&1M<ElUkuZ~+%?@yo(OiXK%rtE-D7pFZ
z**Q=bIjHAkp`IQ=JwF3=aRJm;^#_33l@ru|ztFKl%^53(#yfwd`Y{kNpx3sSjW%0w
z@;}uxV1vU0oHQX9`H!goLPHK7+f@qrXZ5R>r>PDPw?T#E|Ehe_TfH9u30KbK-y@;6
z`jh?!gHyYW+2SX_@GdeK^JcRreN`^V+Z@Q3WkGI=NN;tSz|3vQhkA=X`T$V7a)P?~
z0!Ml^2h{QcK#2X0{c>L9K--S+4)jRd9AOZH5X6dh`MUJ(MZy#FU2|3rYeIp{z?N2E
zr%Hd(th{&&!_1{4E99+F{%C(6v?VCL>_}IM_+1j7_P7n=3Tjpk9-<F~)DJD-@&j4F
zp*{RGijkWFkbh;LnUc4AhP3Qqodep}_*<fw?bn0E5dK}?gOeh39Ko%fg%W>o<dB|M
zN``NWuY8o<Rf>1(9HPt6&LPB?#Y5?p74O!wrDXWV_{wepn6t^^Wr@7=-|wJe`tRlH
z&w!TxA&{&V47#a`Zrl@Ktq^NMou6uu<H_0Ua)6Smsbg(9Gp*&OgR_eT;@Ly^cl~OI
z%}CH)gQ9`h=skO0EgAlNeC1P#pni{-h*u@JaV}9k;cjO_yiY`Fh)fct0H2d&C<^k$
z>J1PNI4Tcy;3gu(8tf(~OFSUmzX(JJ<`Dmj$R;#{5|aq`;w$L|L+|)XN)6v2q6Y~g
zbjhzKy)UJWL{M86gH9SH!cuE$LGcESQ=eBk+J#Aqbtq8A2wze73vvn~aE%(_I@-kS
ztY5nsoyMdJt0_ZzFdSpe0%}G4!33gEQ_P7fC5hq8rVv4?ra~<nX%l*eGn@vIHQt!;
zixk6K>!I_VzPFT{4-IN7LpNUj9gX0%Z(S@*lFKc8O$7cL`KOb#8C87I>pA_UgxjGi
zzUb3>7&PoA4Tm+4#upxMPcABn#UET@n;CXIIV9S|ohhKryLCJ{v}S&D<;l$WKWd3~
zo|ApBu9gDJ{YSgGMzF*NQ4L2!&w5vK_V8iuI)o$s;6;@u&nNA>gH53Cm9)@vTV|NN
zq#dB<H!@RX$B_8k6z^*0Pe*Dm_!lqO{roNVt$KC0L@~;F&A&N*H@@%^eQ$k<C6!C9
z4g-liclb}TBXZWO^q6pW;bGR6_>Nq#40Ka`-f%r)(rZeaE{<h4-Wg04dXJXgW}o#p
zHOHed5lq_4V1Jf+>XO}wp6w;`hwkOTmusq>U%MA};*<a84PR~p#w|k<#oH6Xr{1e)
z3zvnKQ53lV=01ZFLDOD+WnqJdaf5?Vr`-D~4V(3Z;PM7t+t-TIU>$qvTe57?tfQ0k
zGKd}cy%-N=`Sil%^sWy%!%A3TeFia0_VAE(GLv<Pn&z~IMZd7_%eyP=@_G9uFg-l}
zaG&?m-$NS1r(LNh+~v1+VWL(fFzMeZI?BvVi?vO4pgNtZ5U4o>Kv2+<@RH9I&QT+*
zF#jE^U7W?r9+rfg4jmY)y5E}d&$L~7uWc>|!luuMTHDcTSEC1t7`}Rbe%n#}<@<d>
zZ1r~|2%;XZJWag^qOdEtcC8Wd#RS^R{}~rkU?1s0%Rbh~-V>(lANDi6oFPokHL;5c
z=VP;vnsI2N=ar#})CibZTUO%C1;ioZj3)4fCqH1AliLbc6uJ4G79?Yz{ORezs1rwu
z5z!<;88?yGGvKAn(rg5!S}z*ZP;MK03Zsu^?0z0TSADp^cOkzOlEv`1t9JD9ql6kU
zd>JS5o72e(KAdqLdHrS0=a@i!R4}b@e2J>6sj4KLy)v@E{DgKY*`X1n%T)8vbM57S
zSKrA0<NDT~=HQcx;|UWZ-|nI3{XN*hkNrFTd<Zk*M$Y^c|L!yMDE{4>t(v%R-h<?v
zF{X?@es_&nWOw)vclYkT#4SF7XK&!3f3x3A)iKK6H%3q0Tr8D*cmL*n`1gS3A-%Uy
zL*~0o33)>R%$zMLzUA>hKDV3K@C*p2!D!^!+}wmzqDltGMBzZJhp=`d(v-KzrowJ=
zohGNI_j8&R`mo%^FqrKL@dwWt`S$7|&B)2S#aFVe*V*r7PR8hXrC7@mK)!~_iR6H4
z)yEV>9XfcT<36V==F`=W%)Y8R6%p4V3*cw`v976z*bm=*<uV4@&*xrH$}qF%JwV)R
zCX1(w2m)}mw#siBs@0+OZ%K6IeovSZ;g_qj2VR-0vWJUeeC}2D=yUSzmJMnf&atwa
zB8w&6;FFT@`=bZ8nWNZy*7hhk$>vLmRB*fD0JRmw*58<|$OMi3KYT^TjIu;BN`XD`
zh}pf@J_!k#V(y|+LZ4A;Kbk+t@BIpX?{5h!M`OuV^yldBzSXm=yy4z9y7=d3STW)s
z=S`Qp=pl%%vA;gzCWM6J{zwQw|K&rwLqA+#s`L$eCBdXKVUYn+%6Wq^M<gT=uQb2D
z^7JT4fgyzKeuoO{-djrdgt=DH_{#8D+Rz}(>DtTfMa5-!Iaf0rj%(@&5=<CM!tI;9
zR@SDNc+mA_I*a2gYlez4tqHt&aZ!BU=Tt}XF|7f$GtvDD%86@cf0jdH{f^KY(^q;k
z{Ec52#D0-Q%djU07zF;9zTiw;hYn2)K4(YgwJL$CP@=HvS$C{Ltc!%gItv72cfRdu
zhESC73bX{H*b*MKj}ySEj9QlKbjB6AReK1aZj+Kz^Q}=OiZ$EU&S%=47Hd<dji{y0
zL@g(%)l&Gp+SK_&YjIW$wW)(^AwYe7>UJZi4)4)}l8~OBGbbKp%{CEqO$6U|Ue;7%
zyE#)7R$8+hAPo`fljC>e(!kM$`gxv?Fyu;-c()Ovss&p9P{rwqK6juZJKgL|AB9~Y
zpK$a4iXuu|M{8T7fd)BOubba6(hPEL;gzZ=`WlUIQXo2&SyOpbBEJ5$m)|Rxc|>$@
zoPJAw9y3fM@$%_f&d)j|lJD3s`&9B4MA=+%Z0a9!M!H~#GAATHM>SkdC;O=udLa>u
z=z_+6@^D`JQ6Ai9>WtFlEG$Oky3v60%GbVDI%(ETdJwU_B;2n~8fG}Vrh30aOBE61
z87YfAj*L+`RTYKPHaOTTnE!a0<pf4BW9?vIOmCC92}<`dcq4nXJi)}QXU!1VMnF#D
z(>gI?TzC2ag4FQppP20<@!zc`_|qVO5YnISg_Qmjf-loGLJXwZ^gGI1LXAfKFlt1k
z8Hgm|+D~90Ka!ay7MZ&o`=)qh8os4UzO+KVv_f*tfk&D6pm`!c6gg;@VQf600HX?a
zu;49`#N<2?Sp+HTgq)W;em?(ESS^^Y&4hLaQ;xmutSpnr+W5siC8EOC>2iN`Ij8E1
z$#vI<E9diDv$Q+b<A5_WwGU?st=nL~v$9nsvY51dS<p&I+N?@sHteBqo(MEaDR|gV
zj?PqdGV|cADqg9vM6jZ;$mpmDOf$IJ*9u%m7Wy`Pk1|LKG5-wssTO*r3$D}94C50)
zi*AUyQy1+$0#nnJYTkP&R`#;g2zHaY*)UM10Cg=1PxbTjaNC_WVcl54y;7HUPiS+P
z%Llk)LqR@2C9uHCiUj&b9%(xt$~72*NYxGY+|f?t0`$wQ_5CxgQ)(Mud9jFh-l3tK
z^*ssIRNN!~!WjfCQ7kIMx3ueJFe*J`7|o2#IdD(ssml?bHNu(p3dwYv>YzzHzGh<v
zbj&&HZqfD_j{&k<uOrtO*?5dC!=?#an>U_r@vP#K+EgrT+NbDLELhhy`W9;|VPN>U
z7)ChwYl#p>PJX)^7xpR2)UEFp26e^VlRJxQg+smfm~{~@qbYXkxTkcg?+p~K2jI{k
zicFbz+I+W#=Tjy=77so`vr|%>`sPk~tq;CXTsQHV_#)eK&!beIyuGrG4>E46=T#i^
z_yg*LX$OGI38M{{w_8SXcH99absgO$b$zSrldq;_-s_Xc;A!Ng4zHELi`FJY8%KKB
zf)kGTDHD7>A#}WhK(F@+&U$3cP{Q>IlHOZ5llX)yhk@fUt{?BmWpO(?vbZALzNgrx
zqze*WEp|<)51Md>QTv`2!3p<jRo(lx>&TO4U)jDK#{7WTqL48)#~F7fw{Pj213!v4
zoJvNN|GRZg#k|Y;f};wqzCy6)$lH{$8(ae9<>5J@gvnWjJfxH886#`nUWY*JtC(i}
zIw#UEb?zQtd97OgWOe%+YP7a^y&8<K?5mr&JwERx0vHa8)#QY!Q-b+LMcex7-uYu)
z-=lS`a;_s1uj_cTZ_1$?>WkN%I<8w{<07IJUVJRfiIz~X!G|ghN)ep;)Ls(8rEsJ^
zI0wO59baUV;&`}B4+#UNyHE}rQXh;t<(@bXNAF#mI{b}`_u->ydzYNr^%qG_{oW;s
zj&(>506dkRnUNe>mfp!O7$sVB6-N|Nh$T5u3^i3kBfxbGA?H+%`NL1*oGQ%Ci0LA>
zhQDR!fQeWgUn=M-!rvRc3k0PBL2)!6q=hJTvQd&XJ-w%#0xg7>mdNlZ+5plmf-H#_
z=DyAD&CdF<CRrD~+3erI>v~bEUOvvoUI2>Ih^oV5J}nHbljb8G-cOLhxzE0ZCT2WH
zrs*1tI>?q8kpcO~M;+n7Itoh`cuO-vrn5;D36Ej(<y7qaix@BAnT|o~LP+@Gzi|T%
z))qT$4CQDmf~ir@-h;{HNUd5SvC0FYpjmBo>#7KXtF36HF7qyeL+|=IBn2yOaOL8!
z%N8q0JFL_OS2A$m9Sz_YPIi`LBdyw2is3^)a`DT$33{Z>gTp)R5!z{wn8Vf=-jw&~
zeuV|eN#=2#^_9n+V|5o;CxoGmim~HuTIS@fMfz-80eiyouL<Dsk$lOcf(r4kPSX6w
zuzrTf{DufZm1%NheVm`=!0$0w&zEBkVsCs_UEWT&h6`GjLAMVX6tNRKW4wYKfqxCT
z*#8Q0Nlwh6(|km(N%vcS^wTF0+El;O*LPVW8gJqA37L52Xc?9EtqHLwx!lda2;7x8
zCcd|u6rw<6Dn<H-HlJdWZ4}xxs6;ljiFejxg9K3+XHA8GG?6qhQyl*m<+J@j5k`Kx
zVW<e%nrLS?WpxCVEcd-YtX<8}diEm?bj+o^aL12$o4_@tMzhuT!)`JH>^0wW_g2>`
zokE7Su%KU3VTgJIU+Yizi`^}3W~2n|(!2Z+WrO&kVv>2iRuI&rs+j2c)q2pHUZ<b{
z<~j}XijR?KwH{^$>;-kAyQd{`HGhkkor&$fz?^f@l9gdnDbtr4wbQ;<{2_qz!M&Pl
z)C(z$iCuW?d9MFm(P;<BH~?+ly$XvnCK>`(UzLQT6*@&h=2Eqm1>|{Vp+`Zc*sdV6
zpvX#J#KQ{qUU(u{J&n?T!g+>2{Jsfe$q!88vjjNu<vap>KEKid2!M3w;BH})al$Oe
z)fgS2R4x*4%SUOLuUd9`YL*2n3d_Ch<$1p2K_OaU>^Ss^qv><>$<{AuSY&|wpNmHs
zz1M7FQ-z_uktz@vf0acp(hAsuX-84sPJ5Bfbo_Kv!N=<QW(U>^a)gMe63$e^KbG0o
z_zuq!+3cPws<Dc=N!U#)N(%1kUAWIUP%cGsGkrDPWbKLJZ`p_bIctx9^A(2OhQCJG
z0VM8(<9xfG(l%AAXVfwH%8|4mZZ1jmJ;qbEsj{PKXO2yb-H7dEK*|q&9r}Etc#~X0
zwGf;j1byoJ?psaDj<btUs*cc=g+-b&B~Pvfr4#c|%ERZXS@05$Xi$>=C!r*?%bK=*
zw2OER?>&M2$Yl`w+&PkGae>yW4ppN;?E32>yR8?z<vfX!fsOXOdkll69|63t=7Cp8
z@9S0fu3+4^<p8YZabLVUS|M$skb(5v3vwZ?bdYYI-4D{shYbwri<UbG-~KR=UMfiQ
z=og=Rsm#W%;M*rY&&kZYd+UHsrq3ha2a(3u_eVHe*qack8pJdQv{nuGzD_cEpZxN#
zE*+%&qfF3!9r{0VN-nBn9IAht)eqHcc6X>+OomzY#y0%N-Db5kfFMBGFw+70m0dU7
z@$P>4fSx#5`3Ny4E82$BImFm~m*0dlSvjA+9t)eRk3ntae3z`K78BaHZWqcpcQc8B
zzxvpMSIDSKGdS<QCC3p=ZOnRioN<nKKOo*U*Q#|ExkN3QXg{+Lcc=>l^!_li$mTk;
zPUcHYjE^D*^P7}cv=c!ir&I9B_{=9BiT1U^O(Vib*y3SzT0pFghllb%&tunS`HVM~
z^4&OeU_S4$%#`o2W1#81M$=q_mzD2;L<AD=NNk?9eXGNNxyxWcVi8M_hy(f)QWLoE
zPvY2TvSbkYSt|pHm+I4`BXPN^6aw;q75)cNU#Fj^N#`cKYb0eLenlo^f%v2>9<FpX
zWkQX=G8H`{zJ)drU$91S4&?DOpLq1z*9vP9f2*C}<Jk??Vq29!4`N+cNA&lvjRo=D
z24=y$JDvSI3KpdDSuhCw&k@jr)4z(>`V(HluRr~}KAojRKl<OMPj^ZGu=!AmK=Sfj
zl2;5s@|j+j;tx6jRW#{Hzrb<OgE#=`C;3kaN^TIo#9Ag`Sq|*)yA7sDo&!f3-m%?U
z2jW0bJTM1hcNhl_9t#JOxg5x$e{H4Tui_K|Gsu1w03nIhpNJuW?N9s?qSi<ZB}{q3
zZ`-kY;)^p*d;h5*4|<z@G5ZkN7e~yDh!69MrHIdR2+o)+aOqMHl89aK-S3&iE|?&8
zn_7j~+l54CLyFiCI{e~xn;wIwh<>#0gV=Yj$`adNo48jLIbs*~(H8&Mh<*Q&5PL~3
zvHQnYKE510CfT>;YcAL-ZvJe3;uF_;lJcH2ImGKc+$z!5(TUX1O_3kF?R(CFHi*ED
zxek}rBE7GLuYAj(JmW@PsCojZ_Wl@TkDQR}ST&)Hhc~xG6v#w7hxX;HLPAflXV#<t
z-fdR#&yN88_lqyJ0BD!-#HbdK%0>~tTRccq&}~S`GWiAKE>`o<Kik|7`Y*hfGia0(
z7QA42h47#3cxLAp<T{H&{=H8;xwplWHKKohlot1UCO8-mb`(CYKa7w3dteHG%)!_o
z7<Uy<z7Ko{3<lpg?{yt~K8n0?Mn4)JG6;O%wG>ErU*&%X-@YyT66;p?r{A)gTnRnI
z(eEEu_JeQEzXqn?J3llDEqg!s;&a{X>|OL3_H8*Q($AWF{Y)Gu;M@PKByMq!rEnkB
z=?wcM#@cX1j!1;-7UnA9ZxG{}yy&*Vp&0Lv;*y;Mqd3x`c<f=YK!+1VVw|=2*1y|F
zrf^sB{J!z7J80bF$XU*UByRww!QuIe;knxIe2Nsx%+DppvK<*#m^p**ypZU7+`4+2
zE25c>hi+zmsyelrs%VC5Lu9zpH}BeTjSY-@H`>J;uJkt)x-qlEZ@1ti*LMmwPwyug
zm+u&uY%jWu#@mNNwoNkK1@wAD=oidylXiD#ozXq^lJymxt{b;~H%@p8V$=WTa-a?B
zJvQ15HF`fx@mX8r2Jbfi(H*o$2&g=Ac5d4xZ|civZX3gQ{IZaQymB~%(N=lPDt%>2
zf~C)!+eX`^+j84xd<@5zX*-CO{eAG);hPl@;a|J<Uk^I@q2*~%fj)JDXdu3~pbALi
zyU<``PS@kjGosKyQySO?kWF3nX@@qp1Q8t7*?2?Et4&={lbE=9){x#8qZvl!sqsT>
z*;|s?^|x(~vJQ|{&I`GWQX#oH6(&__WRhWko>!QxY&nJ+HN`)SB&n^bBHVPBPHbk4
zlxR$Wid1d!P<eViX_SKtXJ;Cvi4W7QophswH5vx+X;q3hDU!I))7zoP*-qW;Eu(7g
z+!Vo1GbL)hH4}L-<NX5Hpw5(2!Xd(~+HOeOGZFi2vYHHAvd#?L>cH*K5pHBPYy`xg
zgG0q`^=G<LDk4nM2XYtga|rC!7OatJu&WAyuNzEfep6Qd>3=SBouk*q^!BZrg<W#F
zn<7EyXd}Np_opj1-0prC44QANiv++g3{lE>mPKSbYrej6DqFgPS`*_D@xb<%Nj1W%
z>1^r#e7wUp1n7BXx75h}C<N)C=Hh1~YC^5)MkH=p?Iu?e;BdhhwN0V0I8wtk<TkhQ
zk@CN6L(d3#q7RvjmUseLBFU5)5849lm`j>80q8}FCWSuHq^Odg(hc<jF)Guy<>7_Q
zN>K2slrF;W+U#AFX$XwO1O!OE+69_oMJQ~O2HLEqOenlZy(gt7wxZsGB5!zg^MG1D
zHy6<GPxE9<2g4)$+h~MjJF`k6A<4>v=5sLHFMqDDY@tU0n~+r<VILt?9$FWMpA}A2
zDF<nd1CebCn`yZB#@zge`K$37dg$0nBh%1d><yA(=_FYWX8L!Y3_B2@iI2@5Me4Dv
zZD&Qi>m5m#(vFYK>W$BPMZa_w0DJ4_CLcH2_kEDqeP7|fziR)sohLT$)3)<N&82NS
z=O~kDRc+Diiq7AQCBcQv9e6w*tkw_2wqqu3#2*}AR@3(0iL9=+$B)N5n(T3NSuxK)
z#1d9LAIlb=SLDpge@hDh80TPHS`Cp<-;=Wsk9TNe%J_qmj<0F!`;a@IoV$x!c1!fF
z(|;46ob|%&({zV@WJ&y!@p&&=?Y7M%)BJM}K6ocl{IUj+8#Kr<wGMHwP9(Pr{jMJD
zfox8`79k#O)P|Ug;2modYwEEvP4&qUOa~B?`NvE5tdD1<n`tFx(4&@mzb9s4ah-(I
zs3iQccb)e$lZ%wd^mjeQayUCG*u;WztsVv>ID#R(q06GCiBG1BWzhDvpWz<vGQ+=o
zEIk~Y!pZ{?<e%jTvKQz)d5+ILPUB{I=Nov7hV#xDU_#**Ll5WPw&b|Cy_jkn^?a?<
zj&)mbvxJtkK%0@!xwi@4y~Ts8^fnlc?PG{Bk!pUP*_3a`JMA3c;G{pL<X;~4qr)rQ
z;B0FA^I2a9w-Qv$K*HN{4A<cpW+|(E9gg8D9K-84hIjNVLFM{~x7I=(BBiQt(8o#N
zVW#T%gP*8*dp+?C3;lt61U3(Md)Q-<k%g(6@YxK<qiHgonHgeWpz-WfZ4a;gm~#+&
zwkt*xnCfH8U6&ab6ZuS*GOMKQrf9r{tI0k0vYd7g&!;1It!M_5Qm5vF0u)Ors7jXU
ziUYk+*0fDO)OUnJ4cuFN&}cWgUZDZ6P|W<CA<l<xkW@BGQ29q|d<v_lX5*{{4|s`+
z^kykd%Jatbk0HzZ)F4!^s!z>ZYWL$SCr4|^JGSrFY;9Dj4Lo*Rw-qT|ZSLa<K#;hh
z0^7I@I3x+l1&Wr733lprOW08|SE<cVK;L?A9LH&e>1A5Z!VZHcxt>&$h&1&>0wRbl
zyWDXrfy-}lN_xWI2acD2YT1Ku-F|4-{kW?9c)_2aYnvJla(*sc-bkzZQ_LVK=&x0)
zCTF!ubVXtmHQX%$4oV-I??N!qMnbTiD?17!V5|I-HoN+~93Hn@zb9^t2cJ<5sRN{X
ztyDQ@s@SOSHRx>hrREU$*;Lr^m3_~Nv^jF^$0P-Gjt#iHHVf@yy$YC+8p&f{x2;Xe
zw1eK=klP;mDCrtZXgKmBiZLVoS>OQmh-Vs#(vT6lh(~LBjD>)a04Ew0epvI#oFj|d
zmKs137%w|A@g3W>kfKfXJMou%`GNC{h=C^rN`J|kS?<)*A0upgJg3i-EnYklX?fb&
z;;j7*(0xg-&By%Hp3sdgQ^cR-^2)`=X?Hb)-07x3B0Z~kr9VkeH~0Oe=bDo}KPcTA
zmFB)J=YD?9y>hWuBd9LpUNWWc(2RTE@|uCRlvo*V%A%Wc-GsL+ajH_G?@Tn-_ozl@
zy(fYtz9#lE8P~@Ity8tfbi~Ps7fWouMm?WfepCw>SFo{WUGn);$GvdsxWAk_?r)mo
zx6vwHVgnGh^Xn_;Xl~zjd-$-k#|T$7P1i%gZl2dEMyaEw`qc6DyxYRFdbZ-JN9aO#
zU#9yu-3KT2{6h;NnNuS-U5{NW3-5i};l?;M)9IUMDUO{ZF|cMcqPD~hI-pA%tlAX@
zV_nC(ihA@)a8C&?Db^e>A*cy~HC!hrd+L&Gj*hc>sV?~kNt%(5>Yc<n`qU@iO8?u;
zoR7?*Qxl(K3F1I3nUz@Er`AP)==L5pE(<5!<uO?2?C2JNNu<>CaOPs%Q(D0ZPFXu(
zBm|glifR(0a8jpg8Q1wL3n?SAJ92kAys1*(SV!iO5`Ek-p`Ol6y*e^?=|M31oU>Au
zICCe@6gD3?9dz_JrRy)vRa1y^cM}Vz^7PdBgVQR9@b6`n#dSS@DVZ{StGKQYw3NVI
zT~R)ccV0@;z)vHsQkkSCa9##GnFVzp52mCJt4}^Zx$hZqvP>%^eoKPF*b0BoH{}|L
zzeWRSRBa7AS};)*=G7%P*CjVG?=Ok7eo{=_0w$3)POmY}`JoZIvbV(_ykP&1S6Lpm
zQ}*R1CZpZGO<ZI?B``X=n*GHdg&*GJxu<1ExPV1>DPE%uD<_|DsU9E^_5fxHYw@;0
z*I?9?sBX!$)X|=sWPIq3sP6Se6qdRlVx<+WE^w+yG>VD4*`b7Rm4!<-MqdGuvOtSm
zwCBSQK$<sc2>wXto&!dOf#VN+#{<nP=cN<bC4Ppcko7C7%ED6fe7-VU01|z>DZc0i
zRR)n<rAyr8G8$Pd=n>GRM)(yjDoT#0FYD|=J$v9wkh^(5g>5w#J<W}@(74Hm!e8b`
zT-Kye6-@NJ5vxnqpIBCxJnuv{l6dR*ebD03Cr$}2I}z(}yN$oFrNJ>GmZ)Br9C2b@
z@}d)24VYsj>XVPvC)d;`pS3NoZ6;@iOAt4FVt)mQZjdRF6zMxXUN9`Y*S~EOK#1Qm
zt}-JAsK-c%2!Y;t%+0;{ERJtOma^Dc(qL94hOS=IM(Koxi(lT+r-`Oj@?O>I+AzPE
z#qCt=8p=ivOKDIfFQI`5fQYPV>pTTx#(qZf%M{fNYfOI8FG~QZr&|$L(xyT-*QU!v
z8Gl`y>0{(5f7WUpoS^jC^Hn8=ZE(LMD_s%(?j=>Lv=&%Ux38^T(H=jXHgvi@n1a%i
z|K_WOWKPp;*5(qwN0aR3h}$ChUauX>iqeO=z;UR33V#NND7=BaFGbRd^jDO{$Z5Y(
z<YNlQR<-Z+%e6243U2nZ;G|y*ew5#So-j!jyFEv8EmHc++DU~|EOP2EQ<MGm_fJnm
z^+)>q8U?)pjCXA|K1YtmK`NoMn!-ok6k5huKd&tCAz`<*mdVtdb7D3GF*2$OjJ}<Y
z=kM*rIzz^boooji(hP1p{$_y4-3@3vHce8ao!&gK3<Lg2Ios^B1=hGIc%S{g*^bO3
zE23o(b56Br<?3Sf4+W%T+~GZG!v}H-Y0edd1t*L?Pb}7aS{YpEA1ML7mGF>1xz)}H
zs`Y{_9qR$X{5XJp_EIO)g+FNV3h~=>KcGT9{K9|=VMkJ>VlO@9hJ1xm6hH#>@9lAh
zdpA#T+@t?hAstY*Z?V2;U%QmcnzK^pJzs)PzHtA^c(S^Vo%=Oku7w-hC@bR=-bL29
zK6M#JhmLHCc(TQ+@jVoHAleQZcu2G(do4qzdedXKYdr>)U--NeLh5aEW+@Z7%c%W#
z&85eS>?>!8?8(iE<eT*zWRu)kpL{ZXIL9TP%C?K6>yw<awj+^z3#%?UxdHH|B)6mw
zV=8Lxe0-kCPd>@Qn@i{e^u3i$EcVOC1oZzi{eeokb+!Z%)d_{n^9Ane`vd0mP$`p6
zAc)x6zd!Jm<GnJ%hx=5a;)WGoImA$gAZp}4g~+%U#=RY#_gOQ4MddtI%?#zhMy^v=
z*VLyblbPNb@A#@}2qt~DE;VVpbXx%FPxnjhj(heRsl@#f&$$AuKRKN|%^dPHZ<N#z
zXI+P%(*qs#QM3+1=hSs+akfsvBbiBTwZx+0T$mP2gIP75B#$<!5ba8=^r!n(?iLtF
z9f?Fm5v(l0GAh;Y`&1OjRMgxJJWv%b2XOX3a;#mq9!J(r0-DnSzKqG~N`lFXw#wpI
zVd98<HFLd#obQhD-_3V=CN(ogvq1;|uE|xu+~<jj>&X^MR@}BNvn2DFD?<uTFX+p|
zSDB6=fRuJWRw`($2RO%Z-}l0j&IcLo`XNrIZ?td~23lpZ|GxVxa~3}0C;ifd_pK2{
zs;zv+f}ArxD{_$!E+j_5Cx`e?Jl2-E&&4|Y&~&qf9s^Q3LliPhilJ94m5FhGa!;16
z+lT(qqM6E+5cgQHu*SONz5nA&y31vWXgz`Q`vdOpP4a9g=_MR>=?|_RhBoxHd|1s?
z%aw;`NEWQop!5*m9w}c&=9Ia0Q+id<JSaZ;<CCa@*JWYx3$_LRHABIm1xYr5vhW18
zm8)EG0NXEP;G}N3lP-*bNg4dv2n4CbF-m9m(U}3v=i0R7mn7zU-xD8VFY7m2-!;SD
z$5z^Vfd9lTyboe`MZcfa?^Nt(zI^AaGDEE9cqNKkN^iEJ3R_@=S~edScCF0`D-aHu
z5^M1a)!>0NdZm6HX%#*YnzA_DIzPdvKRhAI$bu`$fIwN@j(6eEy`#}zXor&75O6)|
z-H5c|&$ZkXMvzh$$5C^E$C8VQkIz0dk%C*z8uPl2(SjZE&V;O2M>m5TYbY@5Ww30o
z6qbGzGuMCs{(T0G4^)EE@6_#1Q3yO`hzsA_cu$tjP(tx#L{g)=kJNhXc-Jqa9NN}#
zZ#H%X<*Nw{GOBVm)6!iAU3du_Z~!fdald4Xo>Wjb2F{O@u0sxs!aINAh>GCB)v8~z
zCQ9GKB0-XzT(y3(_LxS`V=v!cQpCzEwnXrf(@=(26(3G7AU;i$iwj{0t*EaeTVGi!
z_UaMZqV8-v7u2oU_u22{WJv9-Jw#o;B@&(31=mR`1y|r-n;P80CjG*>Tw8nw)Jmu7
z<55%EC@zQ%voFEy-o+wTWTc~fiC2a8wbBqgg)>{i+?org?ja^QTJ+v$(w31(zzGxf
z-h=PUr6-_~xQ^wgi_;LuLTLjyxo5Vz^r<qKxRRx6Er|X4<qW!CnVo~Ky|%CK@tp)i
z_Xmd?x+h3*raN2@vd_SE^>>9ULsO#WW>t@W=+-q4Q7a%Ut{*P2sHgWKOu#d<ya~A0
zs)-WogVYqnhDLzH^%5E}2`h_k%5@XoH{WrJwfnDCX4dXsPfO|NtOHVdm2cJ2eH+UI
z(!X|ZZhuLHA$B(b$RU4OSl69zJLao(1~p>ov)#8P5iX0q?bvT62BC`MljyfHGBksf
z42$}9GCy}m#&^g7n<SbV6HAuKdaRj!U?RA(7()?%@Wd}adQ)*x@wj(6L7g|VUZ=Gx
zc9qHgW$m|(-yS2??>BzS&@Ca@df}Oxztk=oWk<~VHVFV_pGUS_s#_J!xSvC`(i``~
z6hRxQaK@s+QTrcgsT_V8+C4QpYM4k;%7{Y$^8~&(DeQViz6XJQuqJnE*$ILrh<&%-
zOK~8r7stZNXERLl;kJ9e<Z9PLiM{M+BH8fMgri+WXXaE??LK(HZ(iZebOc>^u2mFH
z`!_t%S-PI21@wGf_4b>;l`wj?^DaZGf3iqfq&iomf<huyJw92K2xpQdG*XfC+gEXk
zEMlW*<`<S^zmXp|0>F3ojhoUEk#ySlh@{7nD>jnem^YvFSVxK4Gy0Kq6Fd-f_^LdT
z)>#%L{QSS5gc845;o`1<9^I;aKzcM^lA%S&8e-9c{bn+>$l!I*4<v<ho5-Y{L6}R3
zWL9{tKR&`V@s!7Ow>(Tg>@dBM75_%>tnj=MrO^v8y=10@Cv4pbruq9daRv@@AGfe8
zf~$-GuJ@fhYUI*`=I(Rx(n1$6$^EPIw87wVSKoP(0g1CHbg{oK^H=K#V4P%b877VP
z@rrjHrYe;-*PM&@6h+}DwpgjN_jkKokBoO&=JP47@;pz`q0XaAUBUlX<ConqLt^4T
z;=#XV6g0tyh@`cixkp+H+Ob7XndzgC8*5V|_OErOj40!-pGT&wppT=lM1Nkk*;D?{
ze6LYlsK<5{jr?-kF~%Qkq~Ar7&vvlHNs<q@4~aTbqf2bakIsM)S1vCcpWCF!r9XA6
zZg97<&}zZ0HZ^+Y4J$L{(+`$GPJI(OU<GEbW!Lp!9(VH*5<uwG4Ap}33H_t>=QbTl
zFs1J{KP&&C08t5SsbzWiuLH8(oFTm{RT1**l0Mn#Y}tfXc+dTgmW<{x8%jmIP~thI
z=n5|!74RX~`NC$brlUjguCo;vL}erq_=y@fMP@dDZA_m)0Xi`uP+KQvgOG1uyOGP9
z@Zv8>;{9uA;-%BSP9$OWPkftHCPOYy(V_s%?=;0cl<e~2#?12KGbrNv?wU%2U?t)!
zTZh`#OqOz|gD9-(Q>W8|KWl=r+->?jab3J)n@Qg5$O=0u*>dFP?8&P`Yf~2;zy?ki
zRUX5_WDU4%(KqbfBzXzT?#mI&RlL!kWTe~fxX+al7092Ewn34N%8G07!*gw9vGEu=
zaeN@>bLY=;T3Q^{PD@Lp``ngPV1SlXR-DsoHRgUtTdgl~kW75M`EY@gNHA}N9UU)$
zhmc%cZcHTC>D5%*eaHoc*-STmj_@1%=L+L0HMT{KC2g;lW6bv)?NQ0%yK52Ld2fU|
za5xdXXaEu9kX_Bvaw1r>D-nFY$&BvPb{R|(!^%r{C8&eR_n_5%`+qU<4TM?+{_7r*
zr~e*FqB&Wn4b2QTqK2PY8_|HU@Eq}=TGm-iVYcgqGSeDT;}Eqt{h=DTJB_%d!|$PF
zCWGf?#o@tdi5!2y89S;GrJ<$2t;x33{GHzWRUHx#RTuv5pWvacLF9%C@UbZxdFN-V
zxmMzgGt>yCNz*DpY~OL+q<z|iKDGP#z(Al<O%`#;j$?Oxd|w`Z=qS9d5<0ymg;X`a
z+dj_=9f|xhk1>(*LyWqZ#jKHmov!4xi!!O)`td4*5#9&pwNYU%Kzv$bLp#puT9_iM
zJC_*^1`ElhAz65q+ShsTm=&vXXs5pA3fM+?qbvKK5_T9|joeJ^A*XeX3AT|bliGzC
z*;ztZ#0kExq|5!XgNZaTikqnmM*41scwQ791yGLXh4c>l{sA{n%nPxy{0wR<m%4aj
z3g-)vf7v4Jh$qY{1@4-Yj8#0bOl@&p<*#P@u>x`iGCA9HWdySGl|2PigF=UBK$t=D
zt_OI`>`FEr-WiY24fM;7&**S>2gW<Ec6a;6=RK$>q+`e4@y<Uf$I`K5pLpjf$TxQ^
zVo(yAO(<BaaKUk3RMnak%7bbiRNDj1YStjF4MHIL=lsrzzA*&l>xl<>;7d5of{pdl
z(aL4MoohG2$WB`@G~tRw4|d2`{PR&)d%4($<VD*$sZcZz#5{W>V_ILh9dZ$wSA-l9
zZSq!yA|32%4bDX`^C_GDh_ib|U<SE8r`p$U;io14EXY{k$DMJteNW_|Tw^GUbD4TG
zC_m_F^TAL?WrT8j=A-`~lz&X$S7Ixa_Y%=+*afvX{jpu3hyn|Bi#kk5J?j2>Kavdg
zTnZFE@JK|Pj_td}JFPzG?O2Pr+?085VG6=+Lat9+Gp_&}YuD3!fLS{MSICxJT8DGG
zU7HxLtYl$9`b$=LUZyB*AhQ3NJe`IoGUBE+t33~fogVlP0K>*yJa;A2>Rq8a%p%H>
z>D3GvdIpo~Sc(-IjDHE_Fr2X=;s^9@$`}*TyD{?$S~UF!^p0l`$e}l&4nXg}{3dFi
zHVjwOd{gp>_NKoB;`%IucRBR#*fA<T_bhd(f(!qOtz+x>2b?uyvG^Bl?4A)RErURj
zK<Mds*R{NN)`|sG&&PwOO_rupsuc^9?Ob)7p^Ad>=O~zMWUz{Gw~la^SihbvzB&%)
zb$x2+I|@@5qwD(9{ZhNr6r}Fv!>6#Bz6LZ^fN{<SO+cz){?QiZA8o9MRw_LuHS|q=
zDI=*r-EVZa`L(FPfVHT!2E5$W9fqZeN=xne?biGhx`thi7<fh9wilhY{$e(V+;HEB
zj2n)39xpF|LnSb9fi&S!51OH=o~h<F<WWzW^Er)&*btG%?QO0bOp8D0rbEovo?=I{
z$&wdKQdAZ%Iib~LsZ#kD1b{Z&Fg4XbhBVNRC0>5AO#O|njmDahkHsH6@a;9l&9!=+
zaQ(V`do9?S<baH&3$!+8a222z(DePtJOF|QdFYK<TT!)IKa@WRcps$HAN_XqR<(+V
z;XfYqTS(+LB!hPPM);|ipqnn;troDLZJ3UJDUqa)ym3iCc<#4vqkZ}uJga!7Kf%^*
zcLngMKt4Q=2~3q0FWoijr(C3H?eP}Q6!gKIIUB+0Y)tsqJu*VkTpC%N^vo=AsWjg;
zYVHFE>Urzldu#T02ngxzyZSU=7)DbOgn8o@M;Pd3D~?7|x%JpDQa7(z;phq%Ibc7+
zhkR+|$j74%#G@@A)ijSAL<6c6etZ=L2VrbLBrnBu4Cd7S)92yO&$WKiJ$4!FYctIo
z9*S(^`<l`3`=Sx9QRw5sp!tSv9;OikEeu-3`~lNVx()+6(~cb@TbMG<YBoAb!xLCP
zb-~LAgWf;y7cdxBr}TVatoF|og@d3rC{_bHhldzvj~w9#3>3~^6=_}$#Rm=)j?NTy
z(iJ(Y4;FZiiD0upVK93Ar}PcyzD~#ETbd1$*Wd8@%Pq3x?OWv*3iFrYpV+rgR=z@g
zMANTwb%ViOX{eMm#c9pBx5xF>CAUpMvGIgWa_Zey;ltKDkpoG{Euw4d;=!r%FsZ%e
z^knwxQx`DD@gfCp&&E3rwU?F5ckw<c`QoYL-qsB1=_=GZg(Ecs_M|PEGL|wftyia|
zW`1@-{n!^0n|4MsIG99vuu8S*gNeQI4jmWz$<)YO5?^?#zW5dO=E5)jFygN<EtxZJ
zw3*L@J7N}P36*-eY?vD@tB_k*U_16<&(wyj%5>2P@_2)S32M@m2^n6k2}@`WB&)+B
z<Q<xtyfn2g`D7h4dn3QvtuOKrUofms6EVyf7m{|$#Q%v0*W#k$9S`vD>8a5_pYnwl
zrWC&_{N-jeA2huB2YJW>#TH&^y+)T-_az3#9)6dH?=g2ks>39Yc&Dvx7dB*NQE3gV
zb1KfFpQ|!37qa5PQoGhuj4B!kmDZ$A+HW|+d3`MqWrcHp%$}{sWKW+G%%CbCRCMdh
zeuNy5Y@)6j%2L;@8cL3*zZVUsYh3Axtr`RoGzKtm>a*VK*`j@1<1her^GY4?*=!rg
z%NtaLPpptW3^1=0I@oR;0<W7Y>w-^}YkpW$od)w9N_jF-C=ThhbUMT3Q{)9Q{R`0~
z5!CN%HMFMhz~O{RD-vGsN)n68Ybr|IX4h!3Kz^z>?05we@E)DKD3j!_IrgBlvJug8
zDTvR;A$|K+H<xC)o8m|cqC)aPSTU8W{&YXx-^+6}aj&@T>wEDoD4lb#hGx9lP*i~G
zFRMz~tmp()4Lcfi4aV=A=y-2vd|{C)>UggtzHn2i-Ic``-sbKq;tOZEyPEjITHUq3
z*GA>>MXxD;5}a`9VY}1%_{#ss+qb|+QJw84kcEJRU6epX&_yE#6dNo`u%JOBPH>|^
zQ6t3~{Vb)5Z3+oQ1r1Grtjh>mTdmbf`&n=GS~aK@C4k&iM6e1f7q!J1;{~yD74m<c
z_neuX-JN9Nv;Fh?k=>nh=A8HbzUMtREAJyU@r97oz_!n&ti=(ZV)8tl_T@HpEe;JG
zacp!fP}NDFJ6(weBQb>NXm%=EsfGD-7gS_~XbEoM$`43$A;700+{iGgmT?EoDq`Rg
zTEI$DW21DB?zrZVXh*nj<RAPJ>lKOp1eQ=~YZ<m_W|hS*&W@NT-gRkbSg&`2v+qDX
zj2Cc#@cQ8VqwvGAw2afyKH9y|Jf#^&O+OPL_`8C$??HzbM*B8ns(l>3W}Fv0H#Dl*
z%ER4L`Q!AD5Pw{%e`NE=W&FV}mosiRXXKA#D6bZYU{C|zV@SX+R?$aT|1kqDLXR!5
z>IBx3%S-h6o+LCivoaoD0!(`o0zI{3g6WIXY;s9+#SKG+D>9@|lte!zF5ReJveSa?
zn<rL{>zrZtrg=06UyJW-n_3HkN+19wR_7RZ#&NbZ0tJM!kd^=o(s_=t(|byXfIZ%;
zwx#BYt(Ty~8G;3tz(=nIb<Dt;UNj@<&|2_3=PiRxYJW__2f^9Tbz$Uv`kS+|aW`3Y
z{y9Qfe9~olmLa(-VYY0Ql{I1PVuD#Q$Zc2z$Z0icsis(nAp}h=KN8=I&OxIFQ6=6X
zX1*x0)ipv<(jK>rrxTaqbYh(OTm&@AAcM1OSkJr=vb8BVpF6cV(p^I0q7TRxy2feL
zS9IiQ)TivmVbr*PS4w;C2FT_3nlUOiCDi<79<eJ|-$VR9R(;Rr_lx<RUoMGeL9k?s
zn0Z+=A(!XH1#9aTg+9fGYJ>q51dHh6#Q6k5EJ3Ng)0HO#DAvc@cXL$|hJ!LD(DYGn
zX{;O?p$6Eiy|LM^;9{`#WRas2`{Fx?!b<kRCX9L}P>$#fUVV~sggvNQj*xwfz!&=T
z3Vyj9iFfqsSafucK+T=rbT?+;ww{jsls_x;-t`Ah3(haV5(1Kes<dKMPpq*5CGHaQ
zF)=!}aAHYx)M*@7iv?a^-EGvYRT*`yt@0epivCf-<vECSCQN~~G6Ux=rDX>BV>#=k
z2wDOva0)nN)&AaHD3C2P;t;4>l?=hybe@{v9=>$uRkF3yiE*6$x$wBeL`{J7!@;Z!
z81m>9a9sy*P^ZHi<^^b5yc-j%G!{`A`nt`}_!HplC%_>cm8Ia$aem*Wejm78EqV&!
zP?v0xkihy=)C!YqtGIM;D+ld&F!K`&*sROx&Hj=J3XE!YX|PtB@zS9B9+w8Z?nFdL
zCxk$Q22F!Cq(Pn&Y100aKXf`C8XRqTXi&v;kxPSfy)+Ot78<zCg9eUG0<)~QL<q!|
z>0lh7Is1`x%xd-dw+in77O4uZhT7p>9pUwd`|3|Ua1TJx9EbZ5cn7%Yca)G3T0nCc
zD-26ag+&n?uvXj=UtvfJ$5$9aa!Sy$0U7_*tK?@-$aKGhmr^Vsg(wPHk2ov-u%g1@
zCA0^ZUCVBaWx@Gb;zw0RjPKPFS_EE0*ThC%cd!RyRej1toKo0qn$!9Udj#QQIrF4P
z<`YZ?m!e07zi?$pc*||d92>~3;YYFA)iuRb>QzE0Du3Ap%$TVFE6#cqWG%3Q<$Gao
zbQm^kIioYIte_Tai6M<G8{tmNvm%7rV2Bg6-qvAI6%B`U3H^hBD514afx$!6baENZ
z4+S_OFF>k<t+kKR;5j?Fhz+K!afWwv6~EWoFTj>*jzmD8t&1J{<W3$(j-W~5NH1qm
zA~*t0sOyXY3M{-j>O*tHK}$FS(#1~y@Vg$UG-4g&n!jq<trPMMT?ZMsL3*SN<nFsf
z_h^{o@+0g!Wc_h+I~<vXrc*ic_tHd;sLmXY%)IbWICA+m#Sz3&AiZjVF6wMNcX=nG
z;c$d?9FF|{0*52iAmTxOLcPh65s#1~n6@DU3MG^gsg7b{-#E<?$kn$-A{LEkpK`|F
zeSx(ILx~i*G6Uh4$v%h|JTr}}gnS|AOCG;i-L8U{4UFCot^j~A(m=RhDd(1pu}1Uv
znDju`Q}A6{0noVra_jC^`&N`Jutxd!I!M>IdQ28qb!HOi3kZk{`gaju(0_ci+IX~s
zl`-<zgU>Vg9rt6&vTI;vI<reun&+NSk^yNH+M-<GJ!LG%V~E-EYE{g3u8!HxZ7XIQ
zgwv7`6NFv$g%WOL*Wkw_Cm57y*oi1@8#{TRdOI#x0~Tc}!QPN%f?U20*(S0%z~-@i
z6b_x91ESer=<y2CQCLJKga@LMy%X#3`s4nHo(tQ;<%Fj{mZyhJAL&(euuC#*Dn_&R
zawMow>Ac>$(#uJe!mRXws#MoYSGqf?5@pD~Nmcs5>269=B}$xqsj4*1>8>oP62~8Q
zAuEB(GK7Q%UktjOo~HyLM9U7k<l%D|Dx+xN@o~CHvC!q&zxvbV<ckzt#<pU)%ha>6
z;w_7QkmEdr;YaL&yd1H^h(#B&ao9~~WkCHNoJ&0wHq{vy+by^{#Cl^So3p-MkI{G?
z9$afU`$5c-e0@Ib!x$xC@U3{Jk5R?on=)*eFRKkSxGXC^1kJ*@Ue@%3(@L``-hpo(
zP?4l^y9jzRtbRz~P@X6zSkj_y5j~mxC7wB0$N@ziJLG*5y!@#Z{J;>`d`|VSawXft
zjUmOX1X+cH*Xs>1O2phYws7s2JYE;B{aVFZvp)#lzKPGw%R6u&hD6>{eajD60H^t!
zD2hBaP|wK3Q3V`(j=bUz#AJpJAP|aVSeJApCVUMF3)kVS-jar7<*j}KW)WK>iqzMa
ze^Mb$HuF~-B&5-_;5}EZ7-ezU6;7C%{jTs=X2Gw(B#t=BYIHXIo8a6@Qs#`l_!Pq=
zQE`@@i_(ah6^ul)uoW#(3eY+JR7?O?8P+`=6cdCfJU|CEtxs;F5bM~kibxg1ab==!
zJp_j7zfaA1#{`g_xR8rfb%%jofQIj!UWrH~h}RhxA`+re30eK5>k<wj8K!8e(Gby6
zmex1p<N}bOlx`Ti4Wlb@*|Q@rj_-;@SKD3T=&h<BDb*Nxd6*hC0=vM~T1LT_CazYG
zyk+)}vwh~D=&q`{szwi+G^#X?)GG^M*o9CV>qw{dy~p{qPU{RmC=JsO4ozxUu~m^#
zm`cxTUkI?{0T-sSZ-{!R4k;3<_XO^Y!|_TA(WhS+CwKzqcTOK{WMZ9u0=b{eP(mt5
zy5zR!k$R_{si}8#I{ZkuaSM|Pr=bOMXk8O-5@R^6-XhC(can1DaCU`}{*y?^soR~Z
zi5g~R$snB-`T7BF)0Y)bJpJ5lMys_GxqvDa<X$nQh9XRfskMhAdl`u?F{0e7U{~Xp
zVP2HU^uv74rITO9E3(cSi0N%y!Hd(cuHe&^OAX3!=F)}^!9^A7q|;C2q|;?`(kb>s
zYz)pliB$(Kqa2qT<_qe`)2(ufL+e{cbL-hgJ&bq%J#v4qUIWQl{@J}~Ma;1P1GjB4
z@4q6eJCi8@rjlM$!UOOc_G(km{8scDBMx<j3fErW&UyccIR^G>UVa@wm5a%)<-<gi
zh3m@B=j)j}jc8AptlWowN0Y@Ent2T|SqsHXi^)=rIr>N4G=xGlyDC_4&YywRS~bTN
z(gpz{K~5nDescP=Hsy45s+@Kb$TU5;OAU&E(-|enBB$6vcEMzh6$qXEcM9;YhG_w=
zz-4+V>hD!h3h;04PZVG;CaP^M!x2hsuC$E<CcZm{5(|n-h79y{B$oM?vvr#VT5L4}
z0zBF*CS}S=hjjp&;#x=G&jIivsW_^1r(H*rKw-IEjtex;fv_yOb<B#aUIX2eVpZQ@
zqiBn@>U~el9j4z?VT6h@7)b9yKUjlJ555fJpkY8lSq4!%2MMx0Y~6I9A`CPR$w-As
z>k`tt*q%mx#v1P_{4_^?)khIp69X1d0HT<Mt<!wk(Mip11V?Ne31aVtat3dIjStPS
z9UM;&9hv?!#|Mja^T~xqCXP6SQ8ROv{)Q6GA+9UYYq66;J7Fitb=PTt@|?>8CQ2ji
z2F`DcI9&_P3GLxB@ei6NE@M3?czUoYEW*pLg<vgntq+Du2P>Br0YCfCvZE`v>1Yzp
zl_JOP5u32J_uf<n=%Yd;aG<TTN1!3=R^4{9w7m`+^sQ4?Baj=0Z+cqA6VE}yDO+;h
zRxPI_5YjQ^h(bPSDj3r7lZF=0xx!f8<BsK&ySVHU0!zcewIn^TUc=q@(O|ID%nhH%
zkrk49bAO_vI%!@de%-ero)ywvZuws|6=MAkl<-yB4O36K;77>%$z>`C&NE_g5Bjb=
z*+crW+Rq)2IeYKcF(<%(gzYoab~X;bLf|=9T1QZGAptW3)1BX2k^n6h{56{B&rpCq
z{Fn>qI4_`5T>yRl(nLV(<V9|FMSRTfaX^2uD-NhsBcKBq@|uBzojai_0R47_Y7baD
zM#Lq4u;I&WvS)1XT}#7QZiFAP(C($k#bt1dQ+Wt0$3QT4&WWLy<rJ6*3`r?`*Zgc$
zm#jv#A_Sv?S5X}Xwki~Tulci%+@MpxS@wqwJ*xiG&WN|7dq**0pD}8~M<rd>7B>z(
zDi&&88Vw;tM_Uk!yR^KF?}_zJ!3L-$9O*KHWtkfqItCX_K}f03o1Aq}h3`K@r6I5-
zFY6^P_vvFx7&{N&9W-NjI}$sBZjQza>&M383iho0(&+2P?oFdw*Wk(eNdLDZnVYCJ
zNRYu0Fbf{C9wjXy1!3U<anp+_&01u3)!3V<9T=cmUS5tz;&(M3bSn2q?+qgE_T|v&
zSRU9snFn0$-elB&)LE>MS|%85x(PRX^8C!X%qOp0sStm!p))Rw8^fzTFD@LVj)gxj
z^KIPixt^Db@&ebnIIJk6Y#<KLLMo}u#NA@N-1CD{Y=SCneVr=^N^x|0S^xJVneUZG
z*WfTX&cqQm(oN6<dFt?+vnA$2e2K(P;wl9TUqPVB`I=?~dsOS2c=Sc2za60o)gE7w
z?OKp+O1775kQ~rO=%6Rf*rt$8znMxo81u;trm?3>k&ep>syLC+h<EL?mDA|cN*N!K
zZ}rf7=0(Q0p~i~hT=ePyw#Fqj{GvQ3mtsBC9<lQ5SP$$ipR<#pSd7y!S71dP9=wkS
zvE1`)rsb-_+<ty9t3)fp6jWuu))Ug`(ZL4J?})|vb|x$%{GGtUu{os!@qGLwD4Im6
zy2h<4RZP85jn>@EeL;q}PLu_+h=%Tx!9JZLv{Egq6c35&Ii?EA3h2TL(F3}Wtr!yb
z2bRubF=H_lms1C=3G0=wuOxsN<1)N=26HHf{2_jJzJ#4G1^j{;5Nwsd89tntBCLd+
zIdD@vk-ZIdkjTc&#4pc=HRjAjj7Xb-pVe!#^pm9?vm`;rO16w%iy=Mo8In&k=Np?g
z6GNIo-gm@-nK_*rP&bN`U}HId_>`PN#uZ}*Y0;btx<4lwA|C1RrZB@<>SAO!bd2Tx
z4DXP$x3esIE|{-e7L8@0)K~Jy-$n8}P%>HNU)J#_jPgeLJpFWe?9QF9-=S?Y7%w$J
zD3}(EBBd2)?G#q1;5Vh5A{jxs#d0X;4n8+?raj0g5p!s<oD<Fp;VX@kIZq$BMkDp0
z<Jm}qySFpb8=QSNNeBgyuDSCcT8IRPbRKsggB>7oKIKT2%d~zgR|`4Ytq}N;aSrh6
zKprO*(~w^vh1%+oWcqhVkO0Z#w~hu7HR30u##wh$3LJqmv2IuDmjIh-uOo{(nfe_a
zssz&dW;I1c^G);CzJvh?HN`0)VXReB6)a?XPKhH9u*Mm9ZfEgTGtl>cDOOqS=76(H
znFBuOU-2ApPvn5_9RXVD*6ow9a0RW+;WM@-a1;ZMmJcb2O4%{g*?c4FfsPPQ+5;&2
zLh?u{`^w)c?NtFNybcPWeG<i?@vNxQUZvc?A;Ws|O{KlXY_7;2$x*3L43Ur3yowZa
zZ4`xi8`}iT6f^sLhJ1YoF`UG1*5386*ELpP519LcJ%AOimkMx0MSQ0ki|nlm{b-py
znuN9J);|Wa8A$3WK_#j2@eIQ-jKDb*_~ilxE^Gpm`K~qOmKjiqP#Mun@?yE~enN$;
z2}2n{DJ)6BdJ}*x)>fN5doC7M6WRiDnFOTWvffy!#Dt#4X|v_!T}$hN4JY9Rgdg@@
z>T}3y`wli?23|N*OZ@|K=@;T!Hi`Zk<rAwf<rA(_KA+R4`Dm>G7NQUs*@_}SYefNI
zbNmHAU^x8+$EmpX5#8U@y1y56e@k?KtN01U5-mL3{-9yj#OX@xVA*7Rla&whz;5Lp
z-0c;)Q-lFBKR|YETcg-j$hQi}u1XEaB!1%jgCn%^KzUUWSx~AczoaurucHplMQUgi
zIO9`xswQWcyRJoR1PCqO;Ayc+I%A8w!7^$M{GE7FZ8NN2N{d$G%NV2l4_AMB_pi%&
z5#1O<)qg&T@p7eM@(<LY4xMqg7{y{X4(iBocAU>0fgfrU*fzRy^PDf`P|mqu5f(sD
z#qd^U>$VupEgg9f>ozo|qh;I!DbX@ywl*(f7R$n%3Zz#MD(}7Zbi=#}nYUVm$w#?i
za&1V0<b6{^IGz8f;>Hm=7;d@4nl(VtD`%q+g-A;xWE=yD8O|DwW6VUI;tJH5D3ojq
zq&78f6Ky(1Y17S0n-EsXy7c{e%Z}{Fb+l-Xgi_KJT4`D1!4J4qfCg20YBVqdn?lTU
zf!~f>$71mq@T&rTeKIh<;<P8~M%Omm7zS*bItUjcbgkdsIr>)g>roVOi~zQkbXnHe
z_e?zih><__%O@?fW}m2W|FEla`zqDMv5_Q2l|4CbURvDeZ57;)Qn+6txJO^N$I`ce
zOcim<apy7$nTzv!hyjiuP#H&G#&1q!ye3Qn<1cU+f3s#h2m|7A4ABnb8}l{tTf3wp
z?=t>)oU}rbEFjP@rap|HzeSLT4$_P&<QY#JpnyUwfdUI8vT`Z#rsg^h=PHNh3D@-)
z(B=BN;QTYG8r(e?EeGe1_2GQ5K8QN$xbKlMk_bIIBTnf}hMTuy)}5JqJ=6qJNiud~
zx?b$Nxx{q937Wz)vmFXMnJbUGS`tl5;lZ1|;-wr_bd7yks(AgdIZ?c<KOe7Q*xNY)
z1`%<@_DaM@q=(_r4}D+&gBjo?iuhA<GLXyQ^(s?b3@Rc){5F<WGk%Db7aFlX)Hkp}
zmg~SO1fSX@BQYcM8?i#xU7Y-e^cAbc(aNUcFer0;3$l$JgLBrhLjAs@ap*|>zCKtS
zg|_V%<t=qjPr1AO4EOY8O3&^+JyS;;INI8X&Da7MCTxM$k}5E~RYsHxm?^`YJevXM
z&{acXAnKR#cpdao6uIRAYh-^Ra@?>?Xo9bJ4^d1?K1=+?U-)jy`7fXlju6_LT~myG
zYrP+-t0^Mt<;J7zsv0p9hg8S_AOfl2_Vf6uH%9U^Gtj4n-VgqjL#u*;?9dF<WKjm-
zDNPngB-7z`<@A7e!i@b*Lx_^~o9BVZS&%c0h(A6jQaKa$&r7f9R7Q4%@&({mFgv%a
z8R?(pEJBZyjNQ$3_+EVjzGR@88Zk7LG&Ha_ak~TC$Y-^Q`|hnzo>Sn1cSH#-!qz&$
zKI94wLBgzvh@@Wa6>j00xZ2wkfv}Vr@+D!g85q|wPM{)1ppWMH6X=RU#d8l1N3#D)
zBi2Qrw?~S4@(Gc#PsLB`+~+{gSD-WP((`0RPhgC_42&lxk@>(K%X~01k8}kWL1hp?
zSY2da-5k3a=#(&B-Gg*C1KaOX$f}?otHCp@P0h;eK*%_3N1#;4x(L6R_8^%j!AVwO
zx(Jco%hxGAM6V2uKv)3N$G}QhF=Q$+5Wf-b*MDSpPCh}wkbBWB>Y;)GagV?cDyyu)
zCv^%$gZwB*K$T$)SgJs*P;_k*MC*&cfvQ|J<xn-AKj!(6Hzw&C0L9=i!`gnDD?CUl
zSaQ}i2Tj;~brRLYI&qr<K$HWh3ZX;`UF|aiJ7qjY8wJ1((l)M~)+L0DhXOm0sm}!X
zf^!z}B_DfGzwJ21V^AHF=FPl`%jwz56Y+vFJ6a+DVzigL_G?NpGTJ|V#zjzTM+nR2
zvST?Pz6)c%TIpJW<f%mYAzo(Af+*j1g5N2FMa*e500ioC==<hNs$CpvVg2eEV8~T(
zUJR4)yHLq<E#<k2@?7P_$C9skl;}TNiN6X#b%~BOOk9iVI6E%kx#!LGN>|DNcDS~D
zO3pagu)cUDQPyP(0TtH_T!X_m9g|q8H2y1nU|zCG{MjjD5*Kn19#eD|$rQT7FXUdP
zkL|a<c*;ZfauUu^biei=LidySsDgA~SsVg@P|=*D8@*)Tf3lbCs7kV5_M&RGyk(`e
z?<tV|w~oli=?%-iM@^Q<EXl0TMVq6K=hsO$`V*s*1^mrynOtHm)DO;niVq*99mc&$
zn1QR~?^(;)#xm<+@t&#tcz$-f{4kr8Vk>_1K~vV1i`(SK`U5HaxC&!%+P`FeyeA0)
z3mZoiKR{Ejm>k<aSV!7kutZE&yqpY{_BlBJ)dLnDa=5r^jz3t%3alGBX9lPt9VPVJ
zR46jt%>BWaT0K|j)pAnBD<&g1v?(S#XM4ru9Z86Y{3?l}nEYT-Tue4R0WsMEiS=q{
z%J}uqWOIuBLF6HlfLjK|@WBuCeAI&!grArJJ@`BZD)rkcjrvu+_yi8iF;q~p>`xS}
z6M_+If1J}{Mbett3i3Sm2vg-4p)U$V^EwfkQ8YDid8d8<5n#`wZGrjX9{^J*G=V|R
zhAd}T7{LiMa1$kuCMhCxA-K1^W!5u~?{95+Dv>;i?FZ*DUF=7nD3pPH^kyFgx{qRZ
zZCy80^(aCMw;5f?Hc%2@*_K^1kf1^~P|gtsmQss|z;lWznv_7qV>Wq-cp{rK1OK}(
zg@}a>{&M-qNkYWtzk-N;+qc(;gfFrpLQ{qBO*7Ks8#p|C%QyPq`|REne2cki1$0a{
z4=+e!!+QI%cJYP1)cbekWFG(hyYyBT2p*qY#+dyU$v5*Tx$+_gJK)xRYK17Kwd%XG
zwD}XP9K%|H*w8*|@dE_oj%zfbAc~J*`i%?S*!~VORK;|aVwY7Irk2`6)zoz%SV*{V
zPG-hbtV@wa8P)ldViS(dl9Ua)Cy*SwST{>A&VF;opk_&PSg94FH#ihbf3j!9dm;Hm
z-cKNTT&*&6j=sC5r#K=vwhOGhRj~!87Bm;{3+OjW$C5j9()o-y%)n39sOrl4_eVAB
zszr%r*4g5qcQKlQwYwcAJ4Lj&6|?;LyiVmY;t-yAco2Rj!74`@K&UX65H4;~5Q4W{
zn-3a2BKYYoux8*C4}_|S5H{8MLwKsrv;;E$Nn+^jaY#unL92t=vKe@PR~+XTq%*d7
zZ5u6qs4@#QG()ad@+2o~G&}$v1{WDw!9`fP?ug@tVEtS?r;W*6*MM@|@C^~2Onx_i
zk`;^OWy9`Z0a{)b<k*O1!T!c&Nu1pWS0zfV+$&%P^7kmHt^E%v)WwxmF{`aav0FZ*
zjjL3%t)fay+6At8L(Ol5u*Mx`ScY{leF^nt=wQ7dT}G(acd6D`+dfCaFL@8v7jS1=
zXFaVtuWD(Ehlzn>XC9WIesZ5zP(=)yWS6qI3my5_QWokI#|pl6I3}}gWY_bz_zS>b
zNy1pYdWbHWfxRCoIcQ`{kORhIS`OC#+iBIA`C`Kpbi-f_3F11&cO>y(eeoCAxB>(m
zjvI^nN7y$@#e+Fq#fQr&*eBvaiT_Of8M`8kb;XGJFvqx%6^8$)2Bzx-8YcN2GYUv+
z1I8|_jU94lFgul8gTZ8J0oJpJcziEshUgU42+zqg@$InHpnYVaQY^?uv9oY0j#TRh
zjw^xaL6&4_!q5rTrSozcKX`b_ki*y=EL7`50f#0U-pNL!HJdErI%Ksb5oQp#Q1_0$
zt`-QvhDV?R4KTYL3t$&#tlzTLh`g}HlsDSwaZ!~(W+I#FSXrg<#0+?1g*>VvSA<)J
zSL`7r!q#9%AmQ49HwXn$g^bs+Dn(YNee@5=H+J+xMfzH^A5;s$fHbObpFeH@CgGe0
zq-QhI1O0egG5dBUaKIlKJ?kkw`amn_4V)ksMbv07#x7H~tybDJ16PZ{CDh{F=wpLP
zQ!O62+5*5L72s&x8?yaDw`%70LmT!w8Lm-AbV?_%YgxFam@~yUtde*(M-e)jZ9mAm
zLKIS-xL7wPHo4{-G&vL1T=sN{^*fR6d{6^UWZPFeO~~6nN_=}B-#%MvFot9%!VK)b
zj-fM=8+jwQgj!8l*Ji(s;X`t~mrw5d#KSn1Ll4Qrn6SYaew)a{`aL+qPt*y!6>6ZO
z64No5OH9<6Ij75w42YxO_>;$6!toSmGf5K5DOo9m8ieuSK3PQp-U<6<WWMW0BH#qY
z8~cehAr;M>H>5V{I7IKjC}>$uNQxDi36h8cs1>qq&^LmJU|Ov?9$=tlZs6{`Zas0c
z<6{z0va0_C3cd<DJBCMp#_f;fJHHe%eO|yA9YF#ANZXp2h{X2<gAMm7Vuos<D=@k{
zgQ4PV{K5YokShG;7z5CO_B<oh%-Jrt6o8yF7kV(rBROfmV>#cx=92TfduW=3oM4QQ
z^Wj=AIir0&<XkJYNzRWSRZZt9au$6P3}xWIk@Zb*{1So5z_;dP=&bPzL78tI$|TX_
zgS7HRlJpEV1f=4gUcuQ>5=Sf6jiir3?M9{wqcd5fdod1I9p9U>UO`S*V!c<TF>7@l
z-<!3X134bH+C|o#P4Y51@WA<4WD?6+ARoE2_@P>n)MesWjvco&g7(*8LX)y+Wj>Hh
z`y+++H!gQ+|3qAr9onBf-AntNV?4CK)fMH5k0j7uMA;gPFoO6q-l@4+Qv!U&O)rq`
zFmW$XN`nQTxVUI+@8||hywVnRHfF66df-F|92d+0y8e?&qss=qsi_7t>ZML}L(9k5
z1vz0fNfaoPkDRmc(ehG4*XXN`9>m5Jc&l~gAHn==hxyQnB>vx}_>V3p0|w{=<XR${
z1p9(h^>{oFiz;Q1!4skYHI^FU;PKzG$jtgNo-76WLzf1dZth+G>2b!aj~24|E^h^!
zy6<Yvto{KSSPHtUvwKLINk-->*Ht=e8KGDp$MTA05(cAjL?+Ne`C?v(U?9TddoRRs
z<j!^7Yw7HYa7lMfC!_wY;+DJdH{5auEbX_iQrVo8Xn%n;u&2d|Y{V*ogVyXC#o!R3
z5@V!%!GSy#DCJ~r)>8HdeO)b>ERlL~_EBgxmUGlnSIWLIT@8m6h=#vb?Uk~JRjW}k
zn6F7~YIueYU12b-2k!&pF7hzW-=4igj8e`&E_R#)l{Y8YaEH{|)4k?svXJ&HLm7+&
zBi8>zjp7S`NLD0;Vqvq3;t6pS9Yy+hsu#uOy*-Nbt*c1=oJ&I!jF@A;;^0^h{sH(0
zlad3e^1G0O+j_tC4m^=A!9~uNxh|1z&i`RtA(6=N4VZl6rmYxOBvip{>4aqPsrN}N
z%)4#mGlm`Y+bPrAM5ZBfSQkUOLR?|uFo_RwTeVn;TRA1RLW^6}j*DA4r6$|zHC5Xa
ziW>;nO>*bi*6qE7YO>exacNv8TbPoGgIh*BTZJhPz<e5PFBZ@OY<*^0@To0ch@pkr
z`U=!<ap7wU)IZcvt9b(r^#&^rHS8UsuAJfz^~PKcbzX4x{cS-F?*Llm&I@tvkp?zS
zT7j~Db++RtFt|wp)6r!d(g-0wo*iNQ>jAS+f%)RE{J|Wez%+A;HfceBOCJi6tjp)W
z;tG11OwNJ+V$nsH_f~lY{R5SjP`Z4a)TS;E{j&msy1elo$nv==^_gUUe@M2pufH9G
zbDtru^?N$F!Cglc+!YzYSH!#-am|58tk|gW`|555gy1L9hzjn0w%En*)Oy!eIf{IA
z0)G3C@+fkK)Fyu8blm7fBRazO0#d&x3o$|co<Mbf{OuH+jr@Q(%p#x4v`fbSq#z@Y
zgRdq(w`SiBl0FUdm_$zzn)=Vf^k-PH!#~ml!js-=Vkdal669T>|17It9;Vu!^d1R@
zA;~NHWC<Y{235t`oF$0mobj>{Y#@l+ccCI!e7?l~g;yS4Khi_5uVf08^vc(PVW{Ob
zYt`>456ZSBz(4Jh)L6fmfDs8pq?_Nwh=i~lIWN=VbOE0gXbE-02jEu-{EC)YSD?F=
zyZ!w~K-teq(hD;J{Da17CGE#$YQZKoR%}>Z-A&VPc5lk;qny;i?bp&hR;kk_O`^}N
zGH~1-4KJ@Cnqow`#0mtEQK9uD_miLlxt)dK0AGZ1A!OqDMT}eAd0)p60}%{pmsiRm
zdTw<X2sMz@<~m+0vBwX$Dw%^Ehz9GCB3_qqQv5YD=jYdvvoOUlFWD-csK<mMz6``9
zG(a}d8vP?zk`as$_X4{W(g<1lpRLLT7;L8eQql+OWIu@;Q^iN?s2lvPR4gR&V+QVg
zM+@aZy&4dtkwB(cviz}}KfUM*Wk6=tvmvk{bch~v#!dDL<r%8cs017voqb={{QDIQ
z#SqFL-UXpdJ3n)38}=&hY#DO&49>L#jB+d|+?P51d@iYgywv=_88{qA-isZ;#NTh1
z)bGfIQhJRCi(5X1j2jRbccev`O8csrbNL2^y!GXs$p%nGG812L4dAT}DF!g_dN1wv
zb@wRrSgB2gzC_1?G=OF~76I+UDbzh_;lz7mmq4q1G5%QZ-wDD#??iG+`klaJS#mti
z>}aYDfWjvPGe-vJ>hV5C{%Xp8&yh7}v+ZPa0htY1oj-Jx01{x`cyO1PVUZ{3yJILI
zHOH>kgnJ%Kh1s0c@uUR?FLDVNkgO(@H|`m?{@hEr<{S^<-kU)(lW=`>bm^uAIGBKB
zdm*XclUrR(LRKG-zX&TZ)Dn0gA{<^N)&`tyJ@+NYp7*`vIP*desvaP${&#?J6CB3*
z+s|U!&sm?>QQBcbYiUAjndMT+P3RkqiR5ta+`?Y9{fXgt0#KuX>9?o(GBV4L$fr8M
z(!kV-$`+A<;LP5bq943C3{Wpt#g{^SW>~dw0%R75!0a%rQ4vF|g{%ZaC+)(TN<WX*
z;c2jehl&yyRVKqa$DqOh0+<EzGSgM~p^)M7rNx^Z(gE;BsiR|80#HfLge+@}qA12u
z9J6z3|7})vUcrItL>{z`U*#lSVEl_=u#A-7<q~C%hcPxT-nAlJa~(~yHFLg)S#Sny
z1<%<LAQcxxFt^{Us-e(10#HV^-s^&L>ID1-eRLA}HfuSb!O;laUeM)B<WnDW25s@w
z3*-!wjKx7-UKh*#O75`JCvAiB>P^2MOhtOxt!%w;I|S{2ljB3PB!8pIm;aB-mn&X9
zuJ~%|Pw-In;uW=%MBg>XwWtYM8^`4jGoq-9;e<kuE3ENDwSmN~^}&1UNR45%QQ(-A
za17C96{##T2FB7ea?8zQ9h`IZi`b6Hn8+?w{WvWMA-)OS$T=%QDW-(UY?j0YG*H{G
zRH<Mz>?nv{;sYUZa_zhqjrYm$D3X^lC{MDqcWA!#Gu@9^hAI)b-%EuE^XzJ$XG5-t
zJTp|X)Dm!LEk!fHN}a=kM8eikNi1;Q-+EvlQn#%UbKF)rW0CrB9wd4895x*7wiPIC
z1?h+v2x>iuJv01;)^UE8tL7r*OrJZD&l{~RSutsVvq@G>NBj`q7_~~8*LR6Rgf<Eu
zn%T3KQwEk<D|heV?h_Gw(s`xqK+utpu-7p_Pz&o(DFrD=N_6W%*G3$J^fweMUoS2M
z3HACrfLF;PSGTHYkV4jNdQbsOyP>slAYOEXlh49#BV`rF;V^%*=UT&@u@+6LU8<n#
z7f<&f8Ea1Ai)bD-K>0c%8I_utWx$2$TO5Aa_cE%AB8XJr5Zg@>4<%x&S|GN6*U^%I
z29zg|xeBV5g@S6SK~{-r)ABsY{t>j#DvUu7xh7cKdVXAMIOq9D{#dU^2q%s&3LtV!
ze^RJbq*Hwq&2usE%J7UdC@9BZi#r8HWEDVqh9L{r(0!uLu-iOVPKF^|*AdHk>M1wk
z8>Gjj@rdu5YrM|4q?5<_9*~_>q}~0$Q7v;AGU_&<+ZO`hK{pZKX(JJfKqn{D1@RBy
zhTqbr=4ilVy$o}~$6+|;Vu}jP0BhEBMa$MGMjlUin@?;%IOiJ@sQvM8PR$tHl7yU9
zB;S}AJhgdRH+&EL8>d1}41TqW-#5zlQ&&yv$6q`zlJ$bW;XtpP;DiBA0dIfg?w0N~
zyyUA~_@WA6m`+@+h-ba5m)r?^WXODskbdZsZs2pfEVG2}!*c2L-u6l_?N?=aXkRI{
zN&Egf7)8Wrz19fY?|^J4$=5&A(Zei1h)^?YdPMO8o~n6UN32O-!ri{$1C(*8v0)ol
zZx<U!e_-^-Sd8CLyw2#-Y;4%i+fU@0P7h^3fc#aO0DsqO+~NcvpJO>ce8MHbrzWj<
z0s;PYm6rf3J9-H4qSPh<!aArV0hZ4N0XSqzkd736dp|ur_JSUP>A1CkvYD118;uPX
zsp3zCV{r<W*of!#lDaq*R3c#T<1Q5jFG!)n)}MH((A>d8h1U73O)B(Rpj41lcx4W#
z(8a5QN%FukIP?RWH5r-(9fW!@_)Q!S;5IMuZkYd5m$X6(proh?$0Mc&qH1NXQ>qGu
zmVl3q)h{oGgzP!0W}-7h8_w5!-*0})c^}rUqt4+}QonRN*iXBGSRxzI0QCwi)V~ty
z<h=Bnrtw(4#!hIAq@FWZw)!!b#{WtkW88eDm&R9SdT6{zYLmuIdM`m?i)V2530(=t
z6xgA$2Rk&XKzDmB9}1xu^d->63eN_2u1}QFB>wDC@(G3{&7Z)EfBg=db`lPFP_;qz
zRpsPIg0m&FhwdlQn$%MC7<1LJRSJt6GUEqF0S{IxDN>^VwLM<kv_wl#0BdrX9*1!V
z8gwSWYp|sW0b4_6EO+vwAny8_93zS-#hqwjzZ4W}rim@Q+gZC(0i!b@!lRINJHqdl
zl|z=;WuTpv(E$3iv_qe1rET~R>mQmFac=@a&#->+whBHW<-n*>K-9kEH}&u(e@gZr
z|0bpU=Ep(qU+F%e1KMNB>d3C>Ls1Bit;jg_3#6`F$i~nyta|*)!1_JeH3sWLib>Jv
zC{!iGaAI>T(C-nDb4d;MTZmQ)z=hDNA}moLFXbr-%lNA0Bcy_+>qW?61_%WO?9vQO
zd^?^W3M)>0GhUks7b5li`h$%9tcG8M_FpB^o~ATOKHH<u*!2qaB>H@&)x6k<f<C8Q
zl9oP!cIb29p+lrkR!r09*5{Q8NubZ@bt&}OaD_j8E;u0cxpvke(dS(yKLym^FzsuY
zJX5F-aRo)EYaoexa%vc4z(VfCtUK#s9-iySoFD^Ly4UnjRiqdbZ5b_Fp}R|$XuEfX
zUP>oAB_Rff^Rb+_|Ki%c{*o<$pv6Os`U<bz`{{SYk{m+I-`uRMLbmlvH11ojsRIRa
zyuQUpK8{!Z#UFp|FN&RcG~$ohi2oIu?deeCYy^wI0Vs14mOzWuYPu79C=Lo6Gck2-
z<}|;m2~csXf-+8ko<e|i54r^SvYIF*5a8FBdkJvueh&ebNNpPa#X5XrRu1zIN--4_
z6Qh~7T!?`giJBg9=<t{;xltWc6qoXw3plW{Po$;mbt`DuOl?cjFPZLY!~T4|)>pr7
zd&BJl(@7YIU=X-wdUtFm1-kKET;SFhy^0`telsxg%@jpgqff#>TaurKNJyM<&OT9u
zAKwDdIp|b@RucR_#_%2Xa}wphlJXBLr^kPkEtn{ky!yxM1Ug<~Jt$Z>!%P^8-)OX|
z3~z4h9?FW7PIBfjlXF{7>sck`)fjHZb6fY}CmA9hp_t?{+#G?E#7C}6`q{m-4)5ZQ
zQyJ+y14J1E=;=gcEE>8>sZP7WNL!l(H<^mSxwxQR0p0FGf&s`m;*MuF=qEXH#BiSe
zc-ODVBa$7I3MWGTah@;a(yp78(+MyIdG#ccSUQ9=t{^|F3_wV%5gX`aTpa<Dk$B+>
zB}sYlnsnkM7i>B*ar{=nZ+X`8VbnSDw_c{IRX;7ii@(}NC$GPjrW4CfX`0Cr``1tx
zYxB*JzDAYW5&=w-zhUjzpJy~*66{Zx;M^BTfcib1+p|B}DfXv+PnVitT(w~hTHXW)
zPx-qxO3Q9aHcD#c){hptMrra?avSuGTjeh<_8O(Pc6p4_SyG!usX*_8P)4b1lJO}~
z#^(sHt)k&MMLqB4XOu!TO0#YPZ68kx0TSptZAx45*QNRn-a^Asb4Y83_2o*%Y$%#U
zl%uj^fioY7yKu+OtC-9X*`#h#?5t7P{?PJ~^%?dX*)@*AiNj--<nK`V%odf;R4L}i
zRl>;BpRNM96CMTNb&ufeR!WN6nHy|)NOaiA-*GiZF${#0I+ui@+#D=JLVYC_PMDu3
z+k=sC5)r~NY4durq2ccZ=O2MDINkTk=d*Cy5X{+gwH|T6Tpp-{ni!+#&yak=PDoQu
zBAbh3)vW+wSuhI&KYR5px00HLIAN<WcKYY{Gg>$X8_YK_H&tY0zK>-~=Ni#a1NQkR
zr;N2V;C3dJuC8AtD^%7In3yKntmUMnUK0x=VZEUDCm7Oi%R{l8Y3LQZEFu5mt3`wh
zTTEfTdPF&`bKYaT5-56((oO>c+g5ohdo%-!SH%5~Se9&SOu3?zSfP-}gowk^Z$uf)
zz*~z{L$zFBUWayusJ4FPX{%O=(7}uR+nT1@!r-l@FSB_I*+T4CBX${VoDu_dz>!QA
z9j&F~Y1Tr{cHXN}UFYR-bnLt*<$;zLp0|Tj`{w_i56#ohlrRNZ<!7dOM4&wG6L2r0
zZpuk`4}4#|cjl&8ZnyhD>Gd@~5<B5s<<SOPk!fw4kz~kMI#4Rd^$%vCmktOfks(#5
z3$%e#UW+pXUYvUPqMpzKX%Yg0Av+aAa*CR?&3j9)dV@b>&<p8S)1&AA!L@l)anPW)
zc?CMzwYSV`^FH|6WAo0F+5~;52E7<rj*T_22;c0N5F~C7B%j)atV-Ok51$1@l=|;(
zJ`QLG8<r7S@D?W|p}5jnGXT#E2PsRWCL=DWUtTVY1R$7*U8EujLI)kPo@Enwh89Sb
zSd<G<S<%@BhsQ{@x+euKIE#qW=YrbYm?X-O$Hp*F2sD%^p~l=Oj7(<~TRrO4BnB*z
z-lPHGII4%+)xep7XXR2l1{-*<7PqniD5uzZsv3lPKf$6W(QA;3*MMPSzJYUW_Y)zt
zE~DWW{NB6=i}5waG7sV$`!oA?>6dpTUr~gM0;d)+ix?~En5F22plCVV56Q(Sr*V6C
zATRj|9RUL5a*!KKG|fQMQ;HIh9|Zh^*|Hh<?b5hd7AvtlKH{(2_kN`W2%UbVJH={{
zCDlK5cMnYf#j#9pT;jH&sUu~}P)S}E>0N0=yX6yltE&g{wf|}pa_h(~+CF{zq(T5G
zDEKmsz&p)x1mGmu@YNUiBe3a9-B6|UCgMmTbth6h#9I6}>JI$NIK7rmR1ZQ_oUIls
zzj3#y9#<M2DajtlpS!5z)-ik=0il9N^^4X}`CnHN32NR;H!Cm;kmCQz6bRIdp71Mq
z{4$nu(tiFO5tq!~BH{`*h)G3CB-k*YjAl?JqrjrzB6JV_Q<}qS6lmtW^^Ahony8oL
z3APB99c;J!&NVb=2m%Sg)q+wlx>LUJ7@BMs-Pd*8#^4I_T7=Dv$$;>&&yutHJzZse
z+7Yro4RO{OMqF)FZs)N|9C|RfKCJ@T?-V_b>u)^%xs^np^*OyZ_dhj?$|S`<PGm8B
zRm~_041JCeUkyKKtKfZ>NE0}3&MJ9mmvfV++AuGzI-!9RRmJMW>Y;JfmP&IuQ{=i3
zLPSZb;;;k$oRjKqSAFwa*O5e;PmZ|+aQ6r(dW^DA|A6(#y>U1tlZSUgy~40xuy}IJ
z4i-)E+awkiqGIEjs$vl<7OPELlqkSbZasL5GOiU`*=62UXG+b$fLG$$szZrq&sS=Y
z>;+G5p%_^uzXXe}N-(ua;}h^}n~GN(RlKT@dR$>@>Q7KsBEWb;9*33e=~3Mse{o^R
zKg3>hgU-|Z2Hmx;TTCf)W_aB&w^Cl~s$M(7sXS6wR)a#=jr-14G71(swpd0Z^OP8Y
z5le*jJ(2&^RfPiFgw~~u1jbw{=$qY57;#sAom3~M!DJB{jBT}>gF+WrXTp4t<$@PZ
z6{PS2d=VheesKh|Kw*CmDj(dF%z49Q1REZfj-2HaxOW@}vc-N3!Q#v;PBbd!;(eTQ
ztI#Qn)p0j44|gXpoZ}wlh@7Z_FkS>Ob(Bjm;d901Nfr<A^BMYKZhYGeB@#uX-9`aR
zb8*)4h4_i!!BHt5x}-q{oB&weR!LApmLcnha4;F$7J;m#AeS4_{j9hOP1*g#mN=t%
z>aQjlAVG6_+yK!IS$kzojht>vw*l$F5%H`-63YM&_Pyb8ZAy=stdI}^Sb!R|rer4e
z&D`Ny(_`h1DRd;BQI;*AQ{uIz`Ig6;?ifSCp!1k15ur+*v^0yn4tm+)zlPdAof2W@
zeEnAqQseb)f^=Yk3sOuv5s)V7Nb;$3y&&E3sRyJhU64MjX6p_}R_uBx?q%*IecZlE
zJbAC^+vgC1$q-oNvnG*8U{B*hk_zfk$4@AM6ZVOk_Tg*jL*$<$h9x59dXXryM)M}}
z!SGeV`7&ZObMN|!phL@I*SW~+Pz$|{EvNXXu3$3P69}z_?mAa9cfr<9XcL=49~79B
zkO)gDB-Y!Sta#DUZW-B*5&2Q|#)M)yzn?EOE;FJXG_s;Xd`m$PpUi;Vi=75IVJg8w
zc8pQkBlx_V-{HNX=W^H*?1X@Eo$OUW&p50~Vh`GQ1hRhu@Td^7ZY-8-EzLj&$wO1;
zU|<USvOO~pdm(O`3sj4F=O~ipQ9NM?oPcJ*zeE7cz)Q0!kM!E~1RMgOp>sS9L4!%5
zw?_FlbiUKj0^N|ohRStAdl$ta63dWn&Cv}Bk6`@33Q>oH|I`qzxI;ly!G<bNP!K)s
zX$U5d5RGgDqUWU{YwaWmZz<GAC1de7Nq*HdZt{Gu;mWUA8L#l>s_THsctaLG{aV<F
zB!rn;xLM?@<}%V5)(OsM^YO{jingP2{(`b#@wS0a1)GJS&@2J(Nz8~*MD%>GFiuIs
zUmkFz;rg>g8luhiO*DZxLqW2;j#OwK)ZmN@A+yN>AzcTE5&KJ)ikm(m53Jw(45Z_1
ztxLKje=YjoN(fWp*+QYr^C$~8<(&C(Frxu^VA<pu4g3&4V>y@36CL^~DFxxmIT23@
z7Nk=~i~NQ$$*DX=HFXysDi*UMq=^iQhrqF%{GjaD%axDZWAV|l4z}~PkJvs0U-d`R
z+o4L~UntL7X32-_;=@$>Yu#m?;gj-_`xHOWA3BwMI6a};srB=TpwvG#rIO_91e&q>
z&jILUybb$UOp=!ieO?jnHafxpiB1p(oLFP@j;`U3b#xuZ-3eIUFG9m>t>pwZv)|(P
zJHe!Fs2RZ$X~A0aQ%B^0D|js)iQ$CEmR^NPzYPqEVS5Z@vS@qgcFjQKel$o%SVxXf
zg5?M!pcNu`Uo-=mmncP5gE@|=&`9U!;?h>Ar0uSe{?gX%BayZfe+n8d0S%Mr*HO_A
zgr^pOenmt>Y2F{vncktpQ}N8)r#F!pYiiJjqkoI9b%+6+!hGJg{vp~s)!kx>>dD$D
zi-3K#vG;ur(KesyXyat1jg=QE`Y0RSL(%8czs2dJwXqu1_S44Cw+ej%*MdIV66ga>
z*75S4hY&C8{UdUrlMZ#<*%mk^6;nIIl=v*nI$^qA8*P1cgIX>S;%&q?Yagzvz=ES$
z`ZY>iw$&5ozw+W@R&5wVF2dbQ49L{Uv3%eLh0c3aPX`1Jitt0h1+T^3H#m>{4HX*+
z(Q3)gFuQ|DI@fn2LKv8@Dlw~3gGwUn&b9HGvB0LeNC}%`vr#&drL}5}fipsIPO+J%
zjvj%x-T|!cB4)?{i#vD1SL%&wfWGJ%i62x)El&~OIB6ttCOAo2hi(|y2|WORp7q+<
zWWRc1bD@m)b!+$4T8izJ5CIk`LPKIdKSm)7!znt>K9JU~6L395S?<;Y(U9ZNc{g|b
zq6d<z_#TWL2a>m(PtkP-k|Euqw2Y?(v^bMk&aveA*Q>fJg5VN9^2H!f<yJ*i;#gA0
zea>{E8F=q0M<1Lb((~%!3Tu!mA+NgWLkSWzeQ6~rO4|fJC+Kg`=f-HsK9QS9X-T=L
z+BtD4iJ74O5`mjy=v-wiWVuh1n{$u|GoO}PGH8QMu^#KBH~`D!?oE0W@iO+SLuVsy
z<gEPYwMN4F){#`AHup1VrF}!x$Js&UtX<Z>F&Wz^06C$ilVyKaIhL0-@FVhD-=(lZ
zJgBQ)La&nc$#i%Y95LXOsd@{fb-suK5q~fhgwW9}e&q3ol1MSK9n=645+VeVnIVTU
zj!Nr+AIzy|d4IfPtLM=kxvpSK0GzH2tXW8iVt1<4io+Zy><5_CE=R!4+>>N8G#QDI
zDs-Z}D{G-;1SnpUVZNFBX_b;;WvcsWv=N=a@moD_P%><=dBk>9HWXCB+a3LcBfavF
zqWjPp{-S&A`y#rS20fL1LDB$IHnZ7Oe#J*^8x+|^@F`^_S)_-koe&kly1fU1t<`cR
zr0gL##7&Yf+$_iV15S7{G#367OhNDzKhCT>ZU?0MFvrR|*WlcKV%8CraUnkw*yebY
z?C%<!^99Ak9RH2n_BLlVf7S2H3pPB;Z^Q*ek!$NStcf@^*1fiVD$CI;T6Avc>V;E(
zMGSS;Alv#UHmhoX!Ij+tV{vb1Ut=$j`MSqQGCF?<O#uRzLT1C~`8)+p4UiO_x)srx
z)qJueQgA`DH%Ns9TJ);MDXS!`?0(`aw|ic33b~O~su2Tg#$cyW$OU9i#r7z1#=C$x
zOqnSriL5eR9W{l|YUGF#C+C94;Ur=n{d1R?JSCL?^57L9KkU&|lAyfUK3xSLy?x5f
zz!2Z3NBKU@@q0Q}EdjoPI3$b7v{8<TOzThas1DfMBz+Os`A90TX5by)r)zzl);B})
z_GV81l~1=>)6PS;0Be6>+KEQ}Qq<g+IW1uSRCRrlPjhCVi|^Bxhf~2Mp7znw*4VGv
z^mN=?=E1#wsXRr8|Ax5-V}9q;Nc~>qC!0m;ysrw07V|ZV(_k%dkdL|@x-MM1BOfv-
zl2sMO0)X5JNRfba;q9*mDPiQ>3sc|DMy@MReKP)LV@<BSC77M9fZp^_D&}V3C|^{t
zMR2=>A_=JU2Df)&-jM)X*LZ+A6jWa1ivS7+7pUZW-aZUeFri2KPxM8lBK4{Dcm>So
z%6;xIH_3i-3=8`Sm7EMW2m1+MM-Wxklspi<cC;7D4sHSb^D1=2#wu`@Js>q5re8qW
zsX3i?ys#0+UyMcM;zUU_wP?CPFFfdiT{-kkFkyMHbz!U;-`An$4S989G}N*bzq4vE
zHIAn6^I81Nu6aU!Vr@gq|5_U^2Vy*VyxsA;%)$R3@cZfIsrY5pjF5Ghg<Pu1Rhoy5
zV0O(LP77GXxx@+*hcO8_B=JXPnN#40a_E$tP}k8OL=X;t{-PK0Id+)*$*#G;>0QAu
zzi@hs{3_0J&=K!n;mfbe1b&6Q=s1n_D9&zq-a7p<U{(mslJI#$$s4+u3`YlfGbj{Q
zlqr6}P=(>edpne>=*So{00Bh}2orEbAZN{fUe(Cs3lLX5Py%5XLP*e_@B-JyR5Awu
z`Q|xD_!hRpAGjK+CJP7x<Xwkp_)%z_DBJMSeg(I?I3Ycx)_~NOFS8<-0@2=a7AE1l
z$roRsNqlvug7QDVN{8~D&wYQCi9Cos0n;!Y^=f38qd2~TyhLXH$V+$}NB*L5K)!1n
zd8p$58UHWS;{WV_6#o<c6Zl_}4*!_qKj=CcVhVYOtRi|-{AZ$!%;%#D(OqlsOAeAE
za@;2y?WQ76*1|6to9IA1&l(KN&Vn#ipg@~PQ79RQ>*)z_Or=<@`!5E>T(#_2%_M#u
zF1!b}9v-|i_0h_Q3hx(V+lTj#!=!Hx?1oq>*Z~rqE8(J9`8$o^DN9^lq)>S!u4p?P
zDi0&nJggx_AJpLrsrh)ozz$O6;YujIAH2a(&hh{5%zcTgrd^l@`YwkD{m$ToX4T@0
zATIyaA+3PBV6H9)R#*(<$_`~HNq!`al(N69ZFwKL$WMN_Khp>fQl}7#dZe(V=iwn`
zJ$Mm-zbFa#RQR6*x`>C04^>|eeCP*15_2;yJ_IDNI`MGiimTY(ws5pnCKwWLzG6ws
zAFSmU0>2-m#m_uU{5C(+hWz2kN`J=OjJvK6M^}y@;JoiiS)?R+QYUAo&M#<v5v%Ee
z!@BZu4R07)!{h>#s?ybR9=FLuHxq0qtH38R330229fnk=y5JopDsiShbutPDwOFPW
ztVkKaKi>sESs&!u37`3qw%{M^I(a9-LkD5axkhDYfDglM6$fc7T=a+tA{)t9xhTyz
ze3WjC0HvWCr6hhFE<T&x^F0#qX}VhBqXRtRNTl%7!!BQZ9{*N}*I}^e(F@wfXPMFm
z7$|ZS{uvRZm|<m)Q{-#$A3fc}iAnZY=b909YAnbDYw37}qjq(Nf#a%wdpap(Cuzm-
zwK2dk44x(NYlXrOe#IMa11*K0m{rjq5uA|q#5*4C&2zJiuE1H7f9#P&ApkhRh#Cj2
z7*S57xV!{CME{g>k*>8YEwDCf{D2yU*TfI@)(M84G@(8+CLU~lTnZHX#Wl^>UK}nz
zH{b6eb^H80QlBYu`25_n)6>bJ@$*~bKf}+>dQYYR?Z?k~T1v&T{2%$5{eR-;kwh^a
zKc80eTS)nh=Xc9J<6p>f!uVGZ;YMYq&v6e_bPeSb0w&S3Nb1Kpd}a*?iB(A%)L-f~
zeo$i_Qs=RCCDTewIr!XoF_QxkhVg4~fTtQEirK}evgNl{5pD*yf2briNgw~rTye_!
zbim<GlS4;5)8t6Cyg%AWMF6N`_A4m!3p7rWvJsW6*OQ1pf7%f@ya4smV`C9K^mMPx
z$~kA<v|`%`HI^x3H3!I1FWv#gFqddv@6IJ&#fnAFeq}VIQxLM33?Q#l4LOR8%A(bh
z^v4fa2+yt)TmY^2)42*xymc3JdFRU34ZzW|fKRIcVf8iG3z&_WjE7(9BopCh5Ks^d
zECP2RBr=^P=905L4#)DW(I+U572CyNi@YFp&A^D6XbN-+SsnW7sqL2gt!d|hgQJiD
zO!ntJ6#u|^AAcd75r*jbmynf%_(@L`R9{RyCK*v>dc`VcTaRy1%mTC$u1KoG8*<<s
z<>9-mi;vXVc|BJ)ptRg+5n@43$_s)~<%6niuWqw<WzB^`J`uwh=7G`3VR+c{OF*vm
zBv&H6rd<wMhsaFk9IE^Y^!{0Ap?8=wLk0b*-ezFYo$(o_uwY@8fE$EDU=JydQ7m45
zRn`mq<6P|C|4nlIKCLFHKQvGb!KvxVrnsuYd(Rv?j!yJ}W?(8bO~)u`G?${9h}NkJ
zn)3mTJw+5gN#FhK*Ex=P86zT!4HIjE^>w5~tS@-X9F;kA9WL(#?8D!h`g0@JZBN9^
z+QSP?ah6oh-k<Tzqt!U`DB5jZEax-)#4l|4?Yk##&$#J~ZDm{gu+0ERFhqwc##^7^
zH^~8GFX=FJ6T#0=%X8L6PY7{0j%w3>ZB_OdnjOz)D0~Wyn8F9w`2imZ6q`TJ0#4u_
z5>7ZLDg?x<iQR}0dn_--`p0^ne^uJNElaQ)6YG|7VJwn?BeEi)><i6qSg;H8RT9h1
z5~SDTIFe|$(3og-2JZUXF;QVYCfXOYb8;N&7%O6)p)nt!G2fw&^#Z60AY2kl%p*{}
zaLZ#>`Qw8AredIv=|~xoK%fBiDcBN$|1qGdu?zvrsV4wCFp4-0UpqAyjM_n-fD=26
z80yzA&t7Kj`zu>j(aIZdwA<csvAzr3=8lYYdpg=}LA3AF@wT2!Xp3#O+ujMmMSaWN
z26Kapx>Ze#b}OG4?OPRZb9_RZ?Y7q+w*!aV_KpfRbt`P_7HaHU7;mjxLTgF(AUH>#
z4*)AT8D<SOq0%KP8EwSI=TTbVwJwGskmJRwK=T=}|JYtxe=mfEEUU$R*}?jGqBCMn
z4A2~0ru`2-wHNvWt5Z#nPz}popd}v9pcG&>o@>8ZOD7S=JBSj-!9rwW!zB}G_!F`m
zdC~9DBsvxr3P7K+RwRm8)T;x#i>^@yrJUx?Ik0=988>g`%Dnxwx4(JY{E~>^WoJPI
zQ_lyOHV*6o@bOqEE|9PlYpO#-ct({GHv^P(fbY<TKohq-Yur`)#W96j)>_s`7}MV=
z2~DtHsrS!O*AbJ9#-dEx5IEzUeYX=k2{OcKOhy;=Jgw^vHk;=Dxt+?McyJ0f1>Udh
zkuf538s>tDC?~>eI$M{BV66zejKWN7_UZdut<cE_TCI~e;oF>Ff7gl?R437yeCDAx
zE<2^u*q!T7?W>AB4ia;ZtM!q=X6|`^Ls)>NcEe*iw_PJvCeMflj(aYcu_ACLAi&CK
z2R4wPGoC~7A%N^Hih!+UqxwyO#QL9Vv?c;`|4|GwtX?3E{k2bg;dlOny1^(1N8iyQ
zIM){`&sIH1HX?x~8~P|*pe>RjpcsHFP=7k!dY&L-27=uwo=^gJS%w+7shbj6tSN!J
zm9-j}6+J>dRBpNxxMW@PckBo{!us(DfZpc$5C3=gfB4NoEmG~ke^E{<{DV7t;g@Yb
zX5f;pDe(XKC4v7BKWYR1q?749R1dpUk0L}hMbu$Gtg7FV<c_@i=?{Y5<hx-Y>dFW~
zEop>6^pMc^&x_SDx)Sk#W6e-CEmBg6m{~L3N)V@Fb{+<A3zk{S&xEr58vcM<sqR<`
z#rh22RMTH=dmNuN5kEpW?KU<h8-7<#Ezjc_cDwQa8wEW6Cg^`~&TUFR0jnFs=^M4$
zkVov^!~H<|fEzJHuJGL{GL<NNLlc-6U~gvN#{n<%1n+;nAk5n`9L&2yyJmqo3EsaP
zF1)A7-d`S-!fTC4Z^`1&xIgodV;w;2L{wIacqO9p^G;ql)TsQiqZbt{M9Q%GC{&Ij
zDrb37`ETPh>xnk;+1-U;CgSsZ%>`u_G(NA30y21n+!pXqb8E~ZVa>Tk|G)A1Q``8Q
z<b%)ZEFb<XOt2H##OJ0a!Ds5QL%~PqLl0d)u#g?H<|}VQnjQYY0*2`?d@Oibb}Fa7
z(n6NNsj&%4Bo=1j^Mcv$&j4mawd5t~k8IjWXS1x8S1VJ6SdhV#IToq|%Ls_Gt-mIh
z0TZX}fol`qt8a!e^qROZ>3=WugH|k$?RibyNAUS}BuQhE;J;dp&(Ur?Mv^25h%V72
zu6AcYc@vIkI2df`gz7_9bN9x#=o;At7~cwDH3k1~LQua~?NC-#9*`<y5TsTVpbGxi
z!ZW;8{Sy{fkHg5I5JiOs?CiN{3Nh?>jO{knz{HFJ9u;ujn}T;Wqb|;zC^qmELnUpA
z@ym%Pc&zA<)h!$G{~dh)*oboc!rcq-7a%l78`eYDfs;*?5)cX<0X4f8lo_(x{uMq{
zz(?=G_?Md^^Q`~DLWSg42B=q#lUK-yYQ7@Z?eUdDpI3Mno^|<9aDwOYB>9VJ=eFtZ
zBy|M&5LY&oeEu8s%$Lu5e+XChu=Yp^{GE1AYWq+<HVZm{>B@qIr2QkYI6+b`h=@Uc
z*Hhlh<{#0`D}UJl<LAHz&@$|%&kySPC^np(TuvnNq+;0@PDS0IZ+*MdmrgbR@?CB-
z{^gx;GN0<ezkFAk_P2k}@+Jglx_?BWd6;`N>Q}C#lI`FiZijU*R_PkC8#27$*`a?U
zq(l91YW?ec>LY-!%CP_Xozs<c=xtDBhh&e_|4k%cHRao(PrUy98ERPXzT?}zJv!5=
z<}C++p$vPCTgFDb<v#F@?BFz{dvrnZ5N4Z)kYy8m2syo@+X~+=5E_86g^IA=_jCN-
zzZ=;MPyb=({esl@-~4fE|0~o2p$z-2fZL94?u~T#%=B-sjv&~r*jnH;<iMAtZ=z=G
zBrI=?%uaeE4gGU)7;ZujzV+>g+-m;i1F*<RHRE6YP@3`qN3`{R5`LTAiazv!{Dm{@
zL0DE7N68D1Djz?j{qixVwNnoH?uwa<c>9U=_o`I;tE?{K02pEpivD^<l8=Y~@%ng)
zv6`N4!}cE-4C5S&cb_;OnRXNUM~6wi9diQ8xsS&ecw2hi>H*@F>1pB1k(q46(<<*8
zca=zqT18lrkmM>`p0%z4X!Z?ol^*EY(0_Xx77wdxUj9&wLlk3IY3!U&or=0u-}?3n
zx0-)>Q=0M>meWle@24q$==+t&@$I+I0i->A<MqEdr26*n_B+jb@l*D?Pl7}7mizF-
zOsEVPT~OMv*Y{(gYl`DrdB6cj-fz!dU+MS$rw0?>7t_c7ee88VpZ8sReO$7)OOMZ+
zi20K7L3?$O+6?=m1lK1VOr~d&Ju_4MUy^-K(uXVKo=yo!a{E%>-sM*FFQ4W*Jpb}t
zY09U$jxPEAB>V;^doXW(Wsh$f<TV+o<&R-YgjNR1n}<H?{d=+GuFZ1T>+#rf<6rK|
zx4r!%N1(jzyXCHs+cQ6QD(WVE>)U7G>~mGYzkEQN@-wiVyxsTHl=u3c<=f--%s-x8
zgLSgWYG4=JZN{_r`qT&e5YK*qG;f?e3H<e;{{e)|p4y4>;8XuiT*REdzCCT1Q_agS
zWgqvsWo*b>?$h55yPbw~ugUe3^uvr>GW9}o{bc<=q<G%m<yP};&z|NQKL7GvY09U$
zhA#R2B>V=qXWz8`W0b9ll|)}v{@6+Fm)~2^PC4~|ptt;R<2B*2#AL@m?8Ib})bZw@
zt#>bSg1V%fOj&-r@!Ivi@tPB^^<j3T1gR24Xyft!Vie#uHUw{}^H@;~?ImB1{463$
zhG}<T)d2_i;g$`^le}d$pMU^uMpA&5%s=Hn-u=)KW8ZQTMHp@0u-U2DhP<ox25fPv
z`L<{GN>e^yYnu1dly~}`<?qJrwZA=l3Cmnl>|r6SuqP~9=NZP{=2KtU!`I!^icr*-
zUUB+=;U+%Xqkp{qV%&kFYpM_5_U(zTQTCQAd-$1K#umKgqALu9;{9E@Gr2!UbUcLd
zj?Ztv;@T8K-tDGW(#DH}{oY>`_ZkE(EHL`Vi(g<dY;yl@y!chJHv#@>@VVc=y*h$m
zAD8ScQt6pwPp{mQOixcd<U{|#dk>|)y~3^L%TIf>JIwGeUy-JKwD0&MPCJJw_5rt|
zmQrtj${&mgd+m8@`Az-XFTd{icFN%|2A$w7KU{xd9r2l(rGUL=?!Uen<9_e>J`BcN
z?=EzFNs_<lcWit9A~=T&JksVEL=Fns&#71^;ViHF2}xCm+0H^{18{)o_(D#3o{J}^
z;m2wCq5X;{8*J1s0sQbS<~cf%3|55%hxM4Fm$qBpfO}bm|I4kP^n;5j^|}}@e_Z*r
zr@iZlrEj?_7<SHkPDLMih_|=Gt>)XF-IS($#YU%_Hr`KD{?PX<pXRzznnj=d@pvqm
zO*TvRI=tmEqh9|q$fv&YFW0-N7on&xzH$1S2<bKD)km88SAKRV_3ci$#VEBs<zH@d
z%UB~#e+LpOvwj+ToHN>oki*>Rg|z<VO{{!PVZ`O`^ntuj^}sy6Z$85GdEfOf^OL=K
zdVEIuw^v6H>{pY$eJVYZ{L6s^=boPaZ>IQnKYwITbRD=aKke;l$|t%Gyp8wUEKkDk
z{$vmCZBO}^&v5b#B~SfJE$?$o`{iBxwo?xOvL>PYu>H$lKWX2;6oc{Bw0qm|FN=Hs
zNBzrMECTp1_!q%piqp2ozZ~p!X#S-areRb0=lToRNZ3!f6@B>a*0(3V-EMpKWogPM
zV)1u7@Yt87DIfhk%X`KBpTB?Ehc&$^W~~Zuwc%gZ_|#Ya<p`Wor)kL#ul~67jMIOx
zJFwF4q^W=4km}nH`R2cre;M>IFMw(KyFZ~a@k!%fo;cfwknhEPF5ho2-+hDM`@7xg
zi?se_u+RIhfB8YOH&2hxW<-$5g5l=7uS)jzsr*j1zbXFO&tJGiwr@xr4X3uR@(Z0@
z2ky&Hdrq42bn6f1xDGzK{UrQGCVOyiedS+nJE|T3fceXpdbVHwSZ+Jz@GsZ(@|GXA
zf4N|D`~Ibl{-xJlZTOcfd;CZJ%P)rfSNx0MaHP|=$G`kBbZGviX|-cRy!@ruiaf^U
zw``45u|4}{cY58a=G&gV%WcNLywe+L-cQs1_U~EV<hs!|#xM6``E9Zpu|x2hZTOe#
zeCjLz^4CocszOm;dc^7frkluYkN)xc_qzkJ_UhZCee;#dzpQb~*hCumM!Jbfr@u7*
zr3}krQwTXd?sJJsd;TTI@BO>o>94f@<xMPOP43_IFK;E!j-~f6GyU76hGP9ovbRsA
zXR`fG@z?G9mz=m~Rt)gvm;I1i&A)tr>!AJ1A4*d`AU@xg1aA_4o85|zym;y>|1v1Y
zYyZ9QsPggM+b<szY^NOlrEADre%St{<=yuE3%4a(O=cVZ<v`c}sDJ5x@_)s@2o8T6
zl$swq3*aA0e(bVkj*;{7kGh@YU%qfF`pAP@-+pL$yY1P(OH=;PYiZt3Q$FW=mR}b4
zfBxf_GqK_}*(}*l<E=LQOIM%z%D-H&!9i6hnuh*2xQWd6=pXklBi(^md-d(@ZZ&WJ
z%D-Ia<{H_Ax7_7-yuZx}m03THfBE7xA42wi-=zuPZ_mFx;rITq4-(!F)3}o{KI?UE
z@Oj_$FTYIo=IQb2=igo(L9ic4_V%gtOt!xX&OJT-pGfiV9((Qb%O34Ia9@7fE7FvY
zb{%*d@3&c=gkQVsTa^D;ldz=6+n*}m*V*eIQp-O}SfZL#4*&9)yVjKQec1jbwl0l-
z!THA4Wpmr`FZXBtNBzr_nEwAS<i|3I!^KY9p7G0;j)&%7cD?K<q?i7#Ji120HWxb;
z$qfASt#6Nh#i{0Beny(|(XXa?KTY|7?^(Xfb)#*JU*5;!))fCz4zJmUe|gNOzVa_E
z?oh35ddBIW;|{E(b{q7M*WY|d_3b&n`AX$qy1Kc>Hu)XzZ)QSe%10XiVxHnd$VG9V
z%lF&!FJ*r3zxR$KK554<IX>^Z{w0{~&C}zv7!hQ$V7U3Qvt2i?xtGenWc!=qul@Xm
zOJut&aWtITzRHhncdPm9=S0`R`<HJ|Q$Epk@X7Bd;ny$OgL~^M|8bqW_AFWcRQbK`
z+B5(1+Y*+XCAAO#GR9pS%l8l4znr`#jeo&@Tx(Zd8~$bF!F}zl-#_g6{R^>N;J@Kt
zh{I0I<tNYY-*RBzA&p;t*W@Uqm;Mynr18t(MNUOB1OI&M+uPl0{^jqcDc}Br(@h)i
zrzv0YJ<EURy3scL%S|Vxnh|>k-fF|YjPa?j{7Y<wgKFFKjN6YV+(f3-ZiD{u`ZL{u
zSbO#D0lxV}<zF6i%h-f3KjQuMOZ1kgpT@ro9^gaB%inZq!uQ+rFJGMK^ZxX;3GatF
zcpzhZ#xGC!yzly#r`~eg(d0{u&z1h|)e!`HYqGabrDwAJP4U<5`<E{cslGkOb>P1I
zv^%*D+P{2Gn(|Kna0r+DeiD9*-HJZ)sr*M*cdc5o{HgLY6PBQP`%~qEzH?ylc_04e
zvo^~qd&(bAd&X(Q+rC@w3b~#0H>aWxK5l(`g<H+HJ-aDQ`HE+qZrXT1P5DFLvwT|I
zzWV2P#vkvamh13V8}@OKPkpejD#O0M*+Eq(>Wgoj{-&E4Ymff%`d7M%uJ-ENom?aB
z?H>R_er|Ki*o3#-<#)Wl0|}K`KaG9N>F-0xVXIu4@cs7e<C|fh_b-oo5xyU$acaXp
znm+Hl_Hll)cS(=WNdNZg2!j1;f~ygZB-1m=ejG^gH|^WUH{+f~n)m0IJ<)X_$^Gm2
zJWcsT*KxG*ew*b<_}!oEF}&?5`}Uc;mWmjqmiO7^3X5-f*WK-uL%!D}lpk*VP5BC8
ziXg+fv&M<BefDD<ugb6!BJps8#XH-Jzo%X2vmYbar1oP3oB9;Vb_^cl$3rl%6@yzc
zhOcXDJBFM|A=@!{qS)UC@Jx#Mc8t>qN?juUS0}FR9kPUrh-Kj|E`ix|%*@jaoCL@-
z%L<LmjYd@O`LHhUM|64m1*A34Xk9|I<&7C@xhur8px65Q*XTB?gcW}i`VY?e4JZp3
z(4}*p5nw=LIA#ppk5}FEAh_6s4nTh>&iPX3BX-8Gtj?vwH)6vI;Noe8&gmN5ixN0e
z4JN`3OR8}yU<3`CqcYu=XFLSiE6?O96zVu6{={Jk&QB`<sO@qrEKY*=$Lc(j3c_2?
zqZZ0Zf=N8C_4d<QhOR1k{f=y)nIa(JJdh)C#$qAQ{lIA?TZ8jw1M8At)2Qy}0lcZB
zUMM6Lh98`MHA<&XD2;A127Y6-zHT({KijDPrq$^Gjgh%w$Sz~}ikaO?8nb?Aw64JS
z8UHq7K&cjoGa9%idP=UGi<X1yc!)?j&Y`NnRjcF~j!?4d_wK^6lQ=J$2ilE#A&f3t
zVmQ0?f?^&Q$8)rL0xLOe2_j?-U9uM}E+I0Yw7$fpn4*x!-9BJQHBURa5rtg<`YmU8
z&N!KY_pcSZPtqugRP$IA;*S>43|ML-F2czuyIWq1gKL>zf$oiRl8F+TB>F$dyW{-s
zFKh%pxbH0+r@7?FxiPrZd-iV9H3sx}wFHl<g=~Uhcd2Uy&AzyZT~Mh4#jr{Jo9VZb
zM^!v`rJO&1Ze;E?qF7Cj%kmbmEqBM0)gXSLgoKb|W=DY#a`x+}P%QB2QDDWA8XQ2$
zgL0!HXYp$Xr9mlx%vvqG!Iv%8J6Dh|5i{`jv$Al=Cb>3)673u@LrBBc!B@!@P0Io{
z54^lMfx3o0400O>nc!=Tg}t~@a-raYb7icYd+1)Nyv}`qv9Wo^K)DPGxAu+d%Ij25
z62TVj0XtC@C-w-5VlN9NBWBhxDxeX;*0C~d?4Qf4atU!2j|(lAM-6<Gxy9hQr?KZW
zIpusCip%N8DL90jlbl11%kc%|yyr+ECuGMVXZ+$uJ}V}Jv#qh;5pC}UkBO9?wF{J9
zW?fgID4jcYBq<Ha2cUvbh|uN{ldyHyD|=gc4rvhuRwxbB<JYu9gefBq0RV(y<EV)E
zQO4FXxn9h<%130dQf;lnVN+lPUIrzf)1o-yH1Zqg54|=0CLx>>Rs6ix$b4V)6HHVx
zC_0LBgsco?V~D>Htul#d|I<T=24zr0voR&3z*7%Mv0r|>tJOv<)oNXOxfZ_>BOLKd
z@Fs)~_c1J{_z69PGGZPC6^#cp+^|Q04%YG(C^9d4b1lEGKHvQx)#t7x9jF0Gsl^Es
z`>D^>)W8|k=l#^@uiMb)=lXhR2}78m&%Hy3uFuE(Tl6{WGELByGaZ78u!}xp%LO3~
zTc^HEg3h3nRVyj0I9z?UZu_l*JQSDDbSlhf!qwrTh`whP$NP4o1{kF{7fY+KSi=cC
z8W@k13Li{SVL2+;nsSVXg2^iUkM4)0!neyUGHt8yD?3GnA0DSw`1awB3X8FXQjo4t
zVI0L}z5S9RF0@xpuq~l8N>*V9dFpzy3TFs3?W*v7T7QT3p`=0d;6~O`g@tgm%=ifv
z-shvjw7(<!c!-v)!V7cKtMKDrJ1TtVC0gQcEOI1Hh~fl<1Tbv9{33}W+KYS=jRUNb
zsIW!_f~ZwE(}D`Od!O*MpCfh)GZs>J6*Al`L`XB3?G_kOcri2ZuV*`n^;1WUA=8^-
z?H1d}x9WM*pr`Wo=e(5zth@%5Ti&*&eu_A9R&x9(@j(6OQ1Qv&F5)q;n5VUyMnOYn
zu&KOD!}?&u&uL_0<p7j79O53s;O!&$$Q<7VH+Yr==kMYjv@4gD&_%6WAs>(+umh5>
z_=-1i^Js0i;)d2>!%K2y?aTRftUn9ZE|d|R(+5tnG`hp6Zw*Z;ikKI+mPYp(^`8bK
zX1~kd>Xb1m*fiotWy70;^`GIb;>H<6T8-8<rOlt=pzZe}(Y1VU>MFh$F>?p#7tWLy
z{^ofBHzwb5Y^nLH*2wS`!Ft}db<T>CF0F-ZEBZA`Z~eH`9E;MWQ>&!pWc)nHpX2%S
z;HAN)s_w;&)%n9#6n6((z@dQ~4D;qzqq!BaCXVIp|DFUrIDw~h;5yN4Q7LOGF0LVe
zhf#WJ8%K4gtHpV$%d3`I50_K)tcB|1_v+(L^%0Yg=!kqP^R4fsh3tkUH3Jlz(3FUu
zcv*NvQ6WWG`ziV>Fw+1tTMbg~M-qqNEdLcH9a>M~)!20)!0Zo#=9BmY=fH|qV<1dC
zhah-k?tDHMPd#vL#2npP+PvrN()t~(rTtfxW&%5+ze=J9vN=TCVLfIll`NKi8L1k>
z-<~>(XrtpybZk}}G=^`OdJ=ve3~NLb(52CJMsy1mN?~Mwfy4W)#*2hJv((3D@=?G4
z)?2#)WT2E`8-RP({#KmzE6*Ta8FC<``D_Lb8<=&FCDU1(2--MUn6+DVZAfy4jWrVT
zETmeXmf1T=K>f~kI{6IgnL$e(%P-``0%p#bp&S4pN(A<ZOlXycJx3!U0ls$jc^XY9
zkiCs@R-(47Tq-@T@RWcI`svenYCZSKA;kk<qaD~3Xx(Ho9)Ec7Qx#8yT*D#}7=-rs
zEo~f^KdfPWbw^|OCh{9%Gy%$OPAzEY6l}UVTNHJ=ymB*6l|MH;#+=c)BeV?aegYq_
zTv7re7%Nxu1B0=1yI?RDY<LmmWc4z{?_F>Lb+BQIJc;B_Dy`p}9i0CpxPxyUg0uVb
zTND?g?(Hz;l!#f;S~h$`u)bC70M3E`C^KUIys)Hka;MhPw?B_WKZ-;*vhLJ(B3g1I
zaH{pZ3_W62BG`o6gO!NnWRwkmCs_Y9o;OB1wU*8P=PiRG(RF15KQ0@-?v~?A%}Bmd
zhq<T$r5?~)2q;RUZ=mL_@1ka~>4I(~*p-BYFwf57x8ci!_5TL0=ir$50d;!|gAE_z
zSG>8EER*Iy)@mFgie8pZy>>-O_twE^vU_7B|BMyq!e|U%I{kbj+83(xUc@}#qf_f5
znJcJA*~UPq0rDnvgL&3)T(?8ZA-986Xv<;1a^Sko%@I+JiSiL_y5tD--P`HAGy6Wd
z<=58vPH_&3`#8m2Ssa$jv#k@Q2JU~c$3hdVUh=bHJ*Y0Xo>~EU0BVG4U;y@qrky5;
zpBHR84}oIy)DuQGf{=U$)oz}eLqZ%ZY*;T!WUahFpj;v!s#Q!-x2kW*aJ5>0Q8oUk
zKJJze(!OT6l924+uREchmXfJ`!7fNh=eUG4f8J4v2wYu-ybjmdx=(q-B4(kAj{}47
zu+I;uuXL@>8J^a|`iNG9br`@%AygvUI&K2t1{_^$E>>`K4gUHTs6F8*jV?D{cvFYx
zqoV&Xc7J3vf7UT#4!sk*$O}u~-X0nFHAH%9=$yvL01O@8h5(mDKWllxS~Nzt8w$?8
z6!eb3;MF=(&2~ZODW{f3-vo|9Ncq%35wofl!riTF+3@XC`%<n;o4<hTvm<nwdqY##
zmqkCeKcS@<FO5SXyW^nH(?#N97XT?a6RvN*bscUdr8wbQV~o5L#EEJwIh7Iomd)(S
zASiPlq$azxb(MWO+DFL+N1WHNy5>uM%fYu`Lq9xk*>c{HCH7JH#?K@030j}(&>Dga
z+sKjXF;CGpVu;AN9RU<Co1j$+Ho+i?5wf3zafS`*LK`%D24fv%Wwgz)Z|5VvGi1Ge
zI=)+XZ-H?{dJco7q<jaJ685l|_OOWd5Pk(N5t)uI1pH4djunT8tR{U5sdNB|QO@wU
zXa0iFln0xJ9#LF(ux{!Q!~9jI(Ygw`su=+z`gO}2s5BiH|Hw_euy1teMNrG)W!C6Y
zGFX%xkq<D(u*LfNkGyJ3yn=MY4y7-4)AAPrR!#^i8E1J~lS(bytY<a@%f1j7?~pJ7
z-)R$oE3imBPmr<>YJmn60emwQJXljCoDlkh9dx?Up73Lm3M9nyzh({RAYZEx0JPlh
z?LCFw6$m*2LzOq4)E6Tm#n*5Oi!p|{N9Ycr4>pbO((pmB;Rq=hA2x=+9yAZqzksZu
z#wO$KPn^JH_Lku7i%}G8nvzr8uq)W`JM{xWC4S71myq-OsDoifj)uMgQB;K|+g05Q
z=Nso?C~-?pu<53*;@gg6eV(p(3+_u9jU1pv@@GJ($8-~+-Y$M?UjEa7m4+`k=S_KX
zSN<b-0?Ri(RMI#h|NJtuvP0?c?}GD-QGCvdtWJfa8z*$igch*Pib(X@{7U3mgXRvr
zhUUjZXMk~M)P|D`-u?~TV3|1~KeKfB{^0yt{EASd(9(b~s$T<W{uykzRJlz+QG##i
z{TlRsEqlKny&nk9Uj!co(Zp-V0)T6e&5S?{DuWHb!gHDylDrIH)L(%Iqk~QP8Rtc}
zk6QA17TWq}+3+`l^}|tcJ_?SPhDX(J50(vI8?5IQCwM&cv=W59qsz>h=&v<6pC{>$
zZp=S*bYu0YnWe2u%A(&T;yVxf4j?@pBGF1HKy4`2FO-4t*atPkjc8%8=^TWy)yVUn
z1HP=fB^z|<+VFw8&PYYY@yN1gzV*Bf3-gJx%y5v_x1XpCx<Rq6ZFw4T*wR5x9EJ)+
zJ|yll0;?0Y0*|YRtbkeuwL{7vV%8!X?%di%t@wY`eR+IU#o2!XL?ePHB4Aw5t40m3
zLD42EdXcCna3gW4M#Y-9TBV8_A;E|N5^qAdy&OP`)+(*IwA!k5E!w(;MHaEh;sT<G
z+SWOSDoWLW)%?ESXJ*b_f%q<e{QR`!+_TI)^X$(v&&;qXk$E1;QXK)GlJ*fKj!1Ef
zM9>6yr@K*uOQ6KZ8uc#qak<#I_v8=XWkwYUpRj)fS*j-dAZ~ZFt@u;;(Vz6&-br}?
zJ`x)W;S=EDL>l0+&9ibJ%>w+`1n{lxTB>&iKe$Q*@4rpAdWdumo~ewz@2?cAcI@QA
zgyR?s$5jCw%(k@uF$)~k$j<%{Btjbe1L!%k-+%ZQB`!y45VjYmfMDGq%27xS%LYPC
z0u`d&Qt(idPDh{sQtO`&3#E=5L87I<Q5jq852FDajM*5_gIZCY_zAf=>qz})X^^0+
zsL1^(_yN5`t%T!OqKkS2Pkt^>$oMIIP7%;L7u~%6PcS<6NMGS^m!q(CzQun7Kh%@&
zzyQR>%mqp~RsS=e0PW7>)L`qv#-vdHGt(`d;0gwYScOlNI@`!Q#b8wE#c~)RyaY)x
ziS|;}PvBvzQJmDK4g)ah`2?Ad%i2F$&X<;PQDD0eh+usTM4_Ntky6+Y13&|>O4aRh
z)^-5E18)O>)cH85Xeg_6`y;2%5eN3rTQP(7Tu$1#rRLmX(4nQM3E)wlLT)UP?4qIS
z1GU}y5}$gP7Ps^SjrSytFB3DLGQe`a1ennt6KRh;`X4d07?!d5@IuD$pg#lwcnu5&
zC}{NyRRr`;WCnKG^y7c*e$!w41FZF+8v`on38>YN>3l)~_z}kl*pVj<+V4jd?v>MH
zz*k=0qrcrv2BvdSz%?*szLVkN2h|=26~gO{=JjH7RtaBMeLkiRkx5=A(Fh3NhUaa_
zr1poZPhdd3@FtjkAe5zM`4oQ7Hvh?nTz43gN)z**{|-?;u^w*8Mc7kJ92d7hBH`wc
zV(<YF!lHXpj3ZE+;cv2u5GGK|ZwCM4TQ}AR+`~E01i1L9kRPdg|E|H+^PnnnhM0jo
zLY-y)^DTCm;g42jz>C=ZJOJv<zhuvr4Rt>b0LJHO0N-jjKtKhDT}aQGS$tux3j^lj
z;69hVNUWE-lSc3QLlRq|Jsw7xXf&XiaO^#3wBrwIpS2h<mMW%rr^)^y*l3k|>Tq~4
zj|1(PgrsqGV~>e(bv^SJ9P~WyTL-<Kuf|<4Q&lqEg!3%ja58pFQ9C}8ldub6u2<p5
zbRq)u0!n5SEyE4|C{c5-)+2)ilCl^XBI#|p&a__W$(diB+w|?RPAh#sNcs1{40812
zT+ZNkEk~j-IJOcE))-%Xu7P?2J=3~_nfRD?4;pdimmqjJx*mS#1ZoTTscc$$yiT6i
z=Hi8l`bNAUiN%W;u_0B8+g<0@?}0c7O?K5mR5F#t!5`^R?jnwnXp?BpV6u5J5xfWu
zpyRIkS6pur#?z&<l+jNxo=!cUj)wrjxlYR@5HA38GQ3Oyi7>nR2VH5W<y8D|;}hsk
zJ2Q`yA1AsoJApMNANDn;9HHmMk@&fAtp`TDD{?F0*3Y^MREv0{;h3JAf7bL~r${4#
ziA7|(>H~_BW&oLXw$_##YU)`(_-8N}b+As+B^b^37!4f3=s)3vyr@-AF6LLXzeO*v
zCgPQ!(nZI#*6n(OK2<eOX>8*ujbsSuU_G6SyEk8NrwX;vXSDi$u2u)N#PDqSNY8BH
zLr$#@`>KF5)dvvldGZ*Lq!K`D5BnHON0qL}EX+D}$f@FdczyFj^mw3S;P*ot+6f0j
z9a5w2r@~Ck8Csl(ubLPr+*ORxN4gWqiNoh3x{1V!P}U&|03$I|vvlLO&C@E_m?Oag
z<Ny+3rZ8d`6vPKy`EQJDO+854GZNp2;}gvesi~pVj76Rnlm?lJW{^cofPVmkO3SM1
z+;!Sbm*<Q?I-Ut068*;LT`Yu8MVpbFx;($0E+U)EB9K5)J}Oi2oHoQeQ!WbCZdn>s
z!^?>8B{?C#k-pyv^0VpNqn(z$@q0<m(f*;lzrWlkz1IO?|28HVPF@M+hW#fp&d=Qr
zo`yaLHV_Wb=c=I{8`gv`of#+cArJ=U!HGigOF&yG-WcM>KA>Y+ZGv3rAS42NRUke2
zlZZD0f#9mCdmxSj2^V#|9r5~pGRQKBc%u>>z**1?a@2h!r<wjNA#D)agmVdp>70=?
zh!pO4G*Y(IX}c4^p$n%?&YK*(Jp!~P68oJMxmzT$AJ|7SB+y%^R@GbED7rIu8QVv8
zf7#8avs*Z9JWg>W#NvoAMJ)Q!l46wb&xxKW&y<Y8^y<45g=61_D14{}mWtJM<WCaH
z_H*Mmfxc66-LiM44sgATP(*QFJ}Y>F22t{{>_DQ2ZjHzfCL+X_qO^z9p1)1!b|Ayd
zF92e)dczmO>idG#-S|F&I6CtzP>8MVhy@(0roN@w87-hTqhpOa=ymXg5B|*Vk2}+z
z0<OUy#pDkdG5II&d8Mb0)aMs#gaTgRm*d7@2mIv_I9WKWam<n?PF>|JX?li#T40e}
z_%ZRm%eEBYx+;uQau0K3;jp_j?D7r#t&qQH4UE9fqBu)WP>x&q>XkPMKe|HhDn@-n
z?cn82|0N@52#{KNznrLb&I$|*$7*0$Y5vw{>?TW&X=ym$Kv2lP@xDbG#t_She#4KJ
zhC_Vf#{1qfes}yCa4r7;f{+^@bdg-UrSZO-Kj+wLi(RjwL_%N;5;_PcRK==F5al<1
zLfip%ukY<4I-}MZQ4ipJBo4Y5gD%0KhiZOMudOwMcF7_beTZYtS5KS!r5%q5hRE-P
zQ2p9I@J9m$>Xg@j42JkZV>W<fh3g`12+ju5rXyv%D4@T6UV-N|J9u6I-}11j!|-pY
zZZNOw2ieaesK4s{JoH8mENCH&cetwKD-_oi=EyWJdJb306MS}b;<Hg1pN;PL3a=cC
z%vZFtq^?KD3#Nzgx%zWGjPOYL6+oXs@58iy!$`(KkioyzY-g-31_Ksohr9!&awLqZ
zhyq;+=CnOPVnYHULv>UVTb(vBAhsfmYEcsp>P6Kf+GWdVf|*oPKH_R4yY642O^_Xy
z3@I$E#0thDE!7s0q;qjiE5rZD3Ye^3Tmx1ByXa3z_rI=&%6U;ec%rtxdA}&M+Cy^G
zVw9MahB67Mzx`S(*HS9bVzz>@Q|ZaLp#{SJzGRXC%fKY<V3IU>*-A*Fo0IUT-h~-)
z<J49hZj3xBeh3*EMyH8ih-t(R!5Dr(H(2)r0VRKMn0&2RO`6ET3SeP860a6{HCUVY
zO;9Z20EoqqOuMLQd%AsyFkomVv=PM!se?VDf&*}H%DxqFWvayZFdCID+Hc1XP^m>S
zWeJq4yrsa$mP~vsC)g?TlM3RMi4TaD;Dg?VMuxD3V8U>YjI}}IU}C+-K{z;#5G6X&
z0tSOC%uBmVdljMc9JT!|Z4lB14~5AC^<v1u<R=fgi4bFyz>9T(#$m`Z`*!dWjB<a`
zlU9V%=)ZzrM>k_Q;~)u;AK+Nh9a<HE)4`IwRm&>~k8rjagG5{%QdpiR;!&)b1_T2*
zjGw&$*S$;S4X6)&RqMHYz5@bEc<tg?@n3%m@mXF!So1~<8o%$ruD<xl@|Sff30>3{
zy$T}{g(|jEH|%!2s*ZgXBQ8uDaoTv->+#kk^o9CVs(>(FfCc<=;JfB`wYW{AeJrPE
zG~}!b{@>#2!zGtwxLW*rV7`hZ7Qw;~;p%xpe5***@ryBf9F3JQ_v!XA+xR89^n=F_
z(I+?jUyWag@`J~}XjkKBan65>-&M3ovv??AaWK2lv|x6boLcKfKROr%Nd4;$C8?U&
zS-{0}b$kZ3pTxyl2SEL)3y#yVa-p7fFs24_g4(u@r-*99oI-jdm8ArxKz)KO%J~M=
zu&7@|WB#pF`v)xqLa-Nmf*~+?2;edBPw;<yBD`D7)4IGl1Q$vMQVxAI<ZDzgl`Wfm
zwu?D}dW2HFdJJ#sEE#_?{w+h|$$Kt*CQjjQ{=TW@pq!gau}C1|^?9XY^@qcw?W-_n
z(>}^OE%#-53TUPAuQatKEKCxR!)_eiM;GTWlFS=k%7GJ63T%maFwfNS$Iu4u?3Hx>
zj!E`nhx2>WBppEUP7+q{R=DrqIJ12E65a&3@Hgcz>9zkEEURt;WYk`~*2Yfk6_I`@
zjz$eI2+YU0OOqSxRn)bbx6wsVkS-W4pqj_PB}8Iyg&Nj~*K0pUNhrzeblMJ-22lSb
zeu>=b!CSej-B=&!C;5`R@(ETiun*CqFfl2`tRw$HZ^UW+BSFVYXbm38aKLb0z8l}q
z^~PhkOQsG)G>V}P$58jdP{%=%qp0<Ay<z(mP-CB_-BWTlASZ93|BxDkEH_&%CaZz(
zBeWPMTmd8uSC;=>!j*j_T<IyZ3oJlHtT=-fn~mkGH<wXq%h$*>cf2hl)X?(rpUvY2
ze>nO0uA{Uw)OWIDBTb=$I76sG(UE5RY{Dkhwn(EIBA6}&@sfma{ktI$2+M{@TU30~
zR^Wq3SXL)(?R1<Uek|iWK!;__K<EUFnP+**rUhiYe_xt1-jxPAP$Vc9hfCm%$IQLB
zqZ?V<EK|&MG0HZwwi%f{aH2Qhn_uh(0ugAY81q19^%mAuut}FVP3MSG0@_|L(XQr(
zfZF7%1lG?0kcf7R2aDKw!<@Y=CrA_%xGKU4=g%UxC4p(mZ^80XX^H{(XOL|7y#)1h
zDUue}`$+cRy>c98D*4tmD1Sq~Rb%flEoYwoivu&Ay+xR`<<qey_?am;{I43yOxJ}W
zY0iKcNx!yXY!94SO(fOIt;2XLcdhWBH|UOOL?DB4A`m(uN6q<6BM{tdomVYYXoQKh
ze}AZ@>aRH2nHa03Q~`S?uO>8ZLgfnCK$~cj6huByByOcMs|%!Zy^;9NrPP5#kvNW5
z6{4)uX?dNh3Gjk=#>o~+vO?`)KJo@EI1Zs@{0^;V`V@7oN$pFRn93tS3hU$>DZPzM
z;Pg6`Qi4ivq!)LS&ZKl6Xp&o-Mbm865-M%sQ#JWtJ4eg=n>1Qx@@tEh3}xfY`WKZ^
zLg5U9LW0UXFC@x<!v>Unia?D*L<>3U?4#J+jxag(up}%FHt7d9ZaAlTF&T-9tZGlo
zzA1T2t;l{kBVCa}Ba0$S&N6=Yfyg+jXpnkAoWBkwXl`t)Sl5Iy+kLSXZnU63?pTBF
zSNG2BKG386yVd;^-TlB6RSJ$=q^oBGZ8~jHIsmJPPeTzZ)T`tT&D#E@P=M;p!;MZI
z3^;Xqw+<2ku>dU)$Y`B9F0Q4#)THn%O@z@XdEhXt3j$;Lk3!+GQ0X;2Y0eY5nO*su
zq!)SBnhu{(Bt+3^dDVs$87nQcsHh)rGu_^R-Xg0h%1(W{bEb4RioQ!MjnS$&1s@kK
zB*qLrZU^M*gd(H$_S++qZVc?S{rd&+k(}<<($1PJX5@UF=86}P3*xEeLLd<)SSqz;
zMBt`1i4;S^ApsEORT<0<kwAk&3wjNnUVs4YR7zw^InY?qY_eieD?6@9p#B>!qAW`i
zNJLFj^|Zfpto3_ei}J@pFQefyM0x7jX<}RoF~(po!C(_oCTuS99HKl^%@*Ttj(WTV
zDQl*&As<ieo{8r`KK?zuJL371_e4Ci$j3z_Lm(elx9>_m%H<8i4>*moOC5Tsk&it9
zr<RXK;!<=~zz-3DQ*tj1Xak*P$QKr-Aj!u17cofohW&N7%wY%3eb?5VVPCT$yH-M`
zJ!#N4y^=oYHEBv=w7g*keH=bk#~xyYpnm|Ru&-4LS_m!{C}q6jXj!Eo`hY?(1>u{z
z|Ie`geQ=eq{>k?L)c-1&cnQK02-Y~L9ONDffTm-joptr7{YPZdf=I1B?8bT(aUQ1_
znZSH?`QI=?IIBoeE-qXY?VMQO1G?7Akyzn-5YKjOP=}%Sj@wh?gNYN-A6gv8%mn{I
zH>kmLBhw>AKVpGr_4KL;x<&3<TrF{DKyd9R6o7#x)d^c%{~PUsg@m>DCTsUwtphk&
zK;cdw9wD5j-tw+zfr^{JRjKee)4rr3PFWufkS>gNUg^y02PuwrRy(siv>xsJaot$_
zs>1=x43VHTWU!B8)du@10X|A41shJFO@^l}Ed3n9PfS)Zr;4=tyty0$LqLkBjNx2t
zcG&R*zsuT;`pN5fJ}cV!)4F2;Bj&zt5N)@k*FWEg<qVha?3KU)O9rek6R<zOftIk*
zeOI*eMrYQ8f|0B0fT$Y*gipcR5zNv<e%jFI-<vV?3)lm;QQ1XHz0+D6m)X)DZ0Q=b
z6z#mJegx^|y3G)-f}EQVN(U2)J6|;rO(#p&$+TVlZ`?ju+L>72AYX!4tB^{+ii;+A
zak`ZdK6MkMCY0c5QhCKa8ABbr5)Chr@C4CM@FjS=AXlw`a`yj#htfyKZ=;<JK=Cxb
zy;BsYbJqo#{ceHq%BmDK?J3B^7Yq!pa^rpAh@f@o183TmG+in4H|Vq~+IfyM>wO{m
zS@pw-(NfgQL>Gu0pu7V7C$$xbrig4HRVD;Udd$H<HU|R36cau7674*@?tHX~O3xqE
z6rk)<E8d3)JR={vF(ZXXZpFR(h@aAg^rgaO$Ws823a<u83D_o~LH`Og9qqh&>Ojbr
z)ABR?^4xn-g>my;KDOV+qidX&(Q+{nlO@gF?&=!b6~66K4!gp399=5!Nf4k3S84cX
zc`xukmO8SAI<f{9ZMI<kr_L;v_ImCMTpiO^$Txw$T4(-wqo!Y2bPjxg0yjQ{dj?>(
z7?Z^7oLM)LoT#sGW0xS}IlY(|6TCE7dg(e;E~?^Y2!l7et5F}pKo0-tS>1OH>(wp^
zk3vJe*nrNh*)|yBljdd)0+)sAA^TNo8iq0UO%f_%%4egQVus^_257MnXHT^07O(Gz
z4HO-QzEqzWZ;rZtlXjvc&W695l6hIRR{T!Xs>!S})+d%1oily-C~{s66f|d-wG#>#
zp4RM*=d^{c?RZl?v!AiN_k7<Iy)yk`9Y=ar#{GPMs&+qNx=f0rmPCMG$e^23qL_}a
zMhi&}J>ocNK|A#KN(<Q&8yFB1IQbmMn)-uv&|???c^q0ukQsAk{*hpvgnPBS83(}N
zyz^_q#2*L+WHQ8vNzN9q-{<&Jc)N!)?M1vo8@|qe8ds|JaWLg|xJq&u()jZiJJ1g|
zIkUJHkQQ<j)UGy@r9`(NdfMm7@}DL>{0U7$M;TY5MGI8<+Yo8lttLsNv%Luwd-0uG
z#bOQz3P%iS-dp(Gi*`<MT9}99ATN<_jRrp=S#f7{z7${kNH3ytNIO8;I#%~njUR!x
zw2EflU%E)BplqK3-sk6J!29Dj(H7S{b)yAU%#I(&%j)GvL9t746;LceFR#34p3d*=
z19OD@&L$v&^>pj_*VBK&T>0YXfPj1Mp&g!<Kf+u`JFjwDr!Z@SR}{X`h;v##)D?I6
z6wDf?WeY{e=)FFwlV^CZ<(sh=rSOdE1Zgx(@>cS$o#dS%d;e$|r(>_Y_q2SYp&8Px
z74aIK2Kv_<6mh5Z@60m;vgc(?$VaslZQ&&sk*pHUXew%;5GB9-jx*~7-uEtm4m%IZ
z@St0Vz#YGk{AOn-=N5Icjk0$guNs3wg^^Z;NDs}N&L{D*2m-Q5yaMqbMqlZjht&(v
zTa{%Cowg+c%8Pm}0JynE?*0LHD{{9{9Y8bOKVdg$h7^r<?}nX^_}i7D)XF);N2Ci3
zKx?ro5gP3_%z?AQSDxf6*f0o6$wiGQFr)G4%W4bx(6&Pj__wEZ7)}azJgolIU&ma7
z?%YNd#$+*KE<%g~F<4HHHl)@~q7p>R#kdNZ(BjWf44M(@*&vfKc?7_q%pQpHv9ByX
z%}9nHm=x4bW+q8^w0ZF+fW=JGZU9H?<g^%<De(#cCt0I{FHI(i<I+m?nZJorP0fmf
zs}^-c6N>cZr?f#p19OG_I@TglJ-w62fU5>32H#68hVm-nCZtx}k{&T;>-{9%yUtak
zI?1rBUK3E`|BSjih?Yw;pjZK%p=VAe$ixY(Xssl0XfmC)+hvq<j5J^w2MuY1o4d*-
z)L!1Pbz0#hC9I3q@0{&gUKh5L!o@(y(&%EiNk1kxO?^@d7svK9rgZc-mTY25VZ@V6
z=^YK}rWAv-EK~<xIf@E3qmKj7hkeiQ1s7Ir+gmej-lnfDog`5JrX|HdCst}4Cf#xV
zi=0ae2yc)z11$#YS?yQI?0#nU_)F1qLH77Eq}rhUMC(94!ftGiDRQuCWWD1J5;cOo
zXXsJ2E}wFUOgdqwu}D0>(yM}#wtebV6<z~Gx*>nWl3uwX)HR_gdLQI9`aO&#OxSzU
zl$j(Xn4V8`$auiQB*90M+U9t!=tK@t0zmANu<$D_(xQJT&A^UK-B6_SZte~j-}suy
z(6Mk#B5^EVTt_t%CK^QTq{=*))yKSO5?|N+DP6k$5+o*rH2u`QlakAq`=65<-mp9X
zpRNFcq>VeVJHS7^T!7y@EtT9cJ0W<lAe`rrz!66L-$LK9fA6I4*Xz5}_sP2Nj5PLR
zDRLjq=za}+DW~OeiZ?_<^V*D}cJo`T6=o}zncsS5VuqBrqljbgjf5Mf!ZV-H@Td*9
za*WJCV4z?DJO?l2tF5P!kC=_XeLQ5E&0s+zDB%s`V~7v^27IYm5fJ34ssq7or%Snx
zmM*4pq%Mc{%EC|UhaVbvf`A_ya>fmfPbc9sWIO}%suft{k*ULw3h`G<nMTlA;H_Ep
zih=P%-Ir-a_eBJFd4u9wF(%2=s1;}zIvrl!gt~Eb9P|86WO=lcS1<PKzu)0YGIeON
zCa&tc*nr&6PaOy-Hl0Kzb-IbT5l?Bv3H^$-J59Ttfw)f>p})JCAZ)rH-s6g|lDx;X
z{Gc;!1gG1gn;RI9)-oQgWqWrEYzy4zrh}2I`wSHqxlY@9&aUC11{`(=YGJm#XgNn+
zfm$fddtjU}1~w1RquZ{UIy$<ongvKn6aHjMx;8l&M1OVGW`4=;ql+6BMYsL5ZVkSx
z`x`rKLL)8=ov`<TTy64JbX)Dz<D=Vdta}Vs2-u;hX2^R8mLt(GbEiuZ*|L6h2fn#K
zx^1G<x|<9lc(;n%+dLv3FDLJHfbC7f1U_~d?92P!rO@3Bt_Q-V*cyfYX@kcDjWW8p
z*B)(=5YL>25UtE0$iOQ_19UM_LkVGJpv<a0m@v2lT)u!E3h7m!Kz|s9p_+;v6BD>q
zh+C1|g_2067e|&TP{*v+b|3BNQCbJPT07V?7SrxKt$Gh0wv|-9Ab>~-gPrYN;<SyT
zTaC8Sz!-LoTSIuuY^&xCcw{Vvj7$)O@xNcSb0~H*P;m1OGK_|TVIpC>L+%<UG654x
z9cX3=z|nj|z!AWBYj55PU^?gL$uI#^$RF<lrtyn3W*#BC1u((Pnn;6{D`jufeAy7A
zaIo)E!F$8b{>+*XY9s&#T8alr|21}FlFBQg%Bv3i*Cuu*Nr9~k#eCsI%!KNy4tOga
zw<oMu?!(%8;p@3Y{4i0~0sNt3^}+A?hNin8hHX|a<r`P+p?_Hjvv}B_+@K*Wb>Sg_
z&kg6$qt}yev#A!XDbWE*PenF2ePKIr<H`vw3Cjh^u!Qhj4Y9Bk?hKa8b_GkV*i<Uc
zps!DUmo)C<@LavRyY?CTKDL=&5rQ)!h(rN`1E2Bp>p5=tj0|)z?i9h4!HYmb4*jX{
zL=h@nF3mytp%L4hB##&>%#-Gl1C?xq?!7<=4YyUMywPdc)bLdM*g7f6pDK`H3A-4A
zuY`PH_Qo5IPXL6M7ZKUx&?tLQZaM1RC!qh4enf&fi!S8)QvVJ-jc#i|Wj-$apWz><
z`3|Ug<c#*?uW0A~FpGQfGD!jBavpjRR-5xapIL>i2HXo%gLOse`OXd0p&9#)dI>9{
zUO1=|4GD21{1K;xP6bAa8Rl^)*l1qdgl;kWVhxVgzgFeut9>yk%r?X}7HZ!nwn)rZ
zv~!@-GMw7em@a4jbgrtv?jNlMa+{_6RTUJ=i^(6*#9U>Ov8Ezvh8-Wkxfm}xGAuK~
z&7vbCOg3<uos-1Zr0B?|E0gsR9_6Upu*iZyhbcwcsOoGd8ev7uM=xuA^u1`q>=iLL
zz?rcF3tVjs!a%q?*;GR~K{RFxgxm-sp)tQp(c(x9<)}?4&E6S=VFRJ~tr$ryY{`;l
zVmC-()M!Tq566mq0+;Fvl*K0X#DSZ2E|N)>q9Z1ep=>v@5aklIRSo;wTk4mw+KeQM
zfoQR+3jaN=ewQk%+^j1?IzYmxetTb=u6}_XlRnUBXHK^6C6P)5J&;Ny5!Q9IBs6au
zmc`I*#)mqe-myWuZZc+SyPwG$nvQ-awcUuGM)MvO0GH6bL1=UR&j}pnTa4zlCFVjx
z(9U<0G%N7SzP8QN+K#~cpHkbs)5G-j@+TG%S^CP|RbQtNn;;d42IXRDmahu;k>+C%
zJNjT^-&D_@K|QV0av!wgPWVt#8JZ7U0W@0y{j{Xqd}D$Kr=&=UXtOa`Sg|u6eDMWJ
zN%yu2Zod!di;e0JxdvOavCMaeLFd|QNEtDQLY@rDoJ{*V=q~6zt{1Qg+N)eU-{zGU
zb?W@=a;*e4vprVSL=+%D%fHx4e;)pbcA_&4?Zm}i)J~JdEp?&Ju=Aof=t^0n#f+Vh
zfSzX4c)de;F*zv22V=?E;CoaLVKcVY=|=DAmN~WQwB7>c1BFB78Qq4ga0PzDJ9k<o
zeQI`jY(RAlnjwX-Vaq`l%Gqi%>J6B`Yr^Ny%N!E&cPE{FM=xM<D1ftkr#`-kTuPk`
zriG3ZmIo#|$x%$V`(=D<8itc)RC^p-0CB6Hz($M7hSU*WG+vBV93fny&wd|LrNRs=
z7wiunxRl*NknDPam@fRG%Z=XigFX^`j7P8v(lqpv+5+1+Tivr~<`8GAmMnK+fBz-}
z*V3ZJlRz|xu2Y+8lTZNNVNih0Zv+Lfun$7I|0g)uYm>!6Ihfkwpv2+;LiR&(uo;^~
z%vN{x&W3}gEO*I6tyIH)JN}7o!-ULpaxu|q`IB70&EPzgKM(&v#e=@6$n*y7b30jv
z{A_i$dh*63eg+T7yc@DtVwSN<MV>zaZ6xqz*R52e&Ds>6Az`!d%%F`Mi7)V|>W|H7
zfv*clF2qWjXR3FIujs<Co5D9L`YaK3{T|s6b#a!vS-^&9*J5ziQVG*!1N)>S1#GhV
z<z3$p>~jfrjeza-tys^+JSOd;BXT%VM#ga;-Iydz*Q(j-1$g1<5<FY|F6-S{S?;Q%
zZimVnU{zj1-${MJ!FnpHi6V-WLIYC@P$rgAfumCxAJAhyS9)F|2&lmnOzWeVpQ4az
zzYevl@sqAD-5u@JF$@`YKCUD2yvz6}HoUYvp4a~80&FNyQ5^BkE8)yV)me-l4`eg3
zTZ*yFpaf1Nwwuj|#(P%uZ1npJ>#ri7$C9UNiA6e^bt6%7w6I4~`7c%(pzJAGb%^%P
zWP`@1$<;|->X0=<+B=?$eqZafd`=$+t>1u^2+dt<Pha??)3yd$y}9ef{rgloZAU;o
zH+OwI^?~D@wnN~IHFv$bTh~5LYi~Mc-k>j5!90~Ma$4zM;WP`UWi>AJ2iUO18&tK{
zyzmt6W7fWh(=tsEk6BqVOD+6y&XHq-7jEjG1Y|&w7*&@|_|Um{{YdQth|UBFXikjN
z6Zk`-lgV*R6V5}AKxk5$a4_)AtSd_qP+P7;lQ3UH;H9p6AG+X1*iMw5`=jueFHVO@
z;%Of>Y(1Wyhr2J}{Tv@h%XaAj%d)HHt`DXhSL(EW1Oy=%D_GtW3)w+(E|`tP&&15#
zNMzpo=}pfJmRtWt56T<%aRj1|<?pR}7u-pBu?OCljS)(jYjGJOhOxsB-mk=ZxuXb}
z2^%rR&$N0WU`!fl81(fY!s~kSsL{-%sp(&TFL=jNqk5oFGri$JrgmJ0n_<qHm3G`i
zE(^Ot2l0wTj_IC)K?~G(Xo_#384+Zgff`vD@4Mh>xIWA4&%?5N2vPr(Qu%rm=^4^v
zjrdMM@cWYpsocR7IYv)O!TP_uXvTEU9d}hMT|m-cOGf^wSlZ4%{(K@?@C9w2m`@aZ
zd3mo~Mzzbp82*0=QjR%l=!YQmSg7-gr3=}DY1Xz^hW0c8{Zr&}Mvud9aoV26o6TKU
zoO$}yW>vX2XvKR*2%>lfDXF`nxl3Md{WqObZ_u@G$P4vnY;_9G?1g`Nquy#Ap8?*j
z&ZW!2r9e8a+J#^B##mvrM(EY4?*Y(P@VayHa<FU%5^jA^Fo{wV;6^7f>yW@~c?YlE
zjn_2eP87x^9R38kJkA?3tsaYm25s12;C&H2xN%7JuW-@a)phR~cR8&b1YY|3Ee$ia
zpxnQ%(&&!X!w9rDXg@Qc5{#t>#?ptk^;q->w8Vwb6h=^}wo#_OgTf~G*aL-hg}g}`
z2QTzj%TSBqzsJ<W(na_vr(=fhk?V<)US@0k)xCWAiNwqPsWQG{Y9w})Xn`O$cl8+l
z_zO<k{b;GV>-r1#f5vI`a1F@s!w!njX!W;1S)G}We|p!QV_t7Pn@xIyUVKx(QjCG;
z$(9=e!<7kq=L#782}Uu#5qx*7<y)GNNknWyw|G0GCccZexuKdN;&k0>2mapi&d8U9
zFbm%`grNg2gqewp=B^{#cYD2l3P8KxfOZ|Z?Cj<)8FK4PCP}<Oi`Q$oj}*9X;Y~oq
z^$aO&ayctcZo*Ry_M0*|=jHU#oy^xp2Cv<&J7Y31gC2YG)q~leCZ1m|^mukm*CwZJ
zu8g4H&CkDuV1UE&2Hm?(13H1Mb$)Y~yx6)7rUDPYe@8z&3g_>@VLk;U_!FN<x6p57
zoC099P%YkoZXe+@tq3gZ{4EQJV_E#tDDP_iYSZ0z;P1+&w>As<qiYQMp8%ZBbC3(#
zvgWRNdwuzNJ(8}24mE&ZhlgaF?KfTUjnnFA!1MIi+!vjEvklW9DS&9E`Cu&o*~({z
z(FOm`a|!fo9)FJSt-yPlN*e9XD~Z>1bF=x{L-sX)BoHr(oF1);hVToTTf8q=Q~I$f
zhLnmP%uzr^UkJSzs>OKK7_<Ldko7VqHrjb%{qaeOzY8wZDm5wb_u;+lG0Dnva;rxN
z*3+0Otxd}@5Ar^<p|p4T>dDzUKB>~?M^gM$_;<_wG@s2nW(bLE{D;2gP~p7WyE5dO
zU4Azh-zk3@9LU9HS}Nf`dgzc=M3$^Qcr2K;dGi+N6P7e7{`JgXU?hZ~mA>7~8~7f~
z8><IpHO!62@Wz~?PJXfU%tGKaCqC$|N9k*h4`HwS)`R%Q(lbMRg57FL<AWOXQ|vi1
zse}bh4fvLC{_<$HHMfYzx4W@Ri+S8kzFd#Tdv9QK=7YJIOeP#<gV>En;Kk^+0Z!W+
z2gubvPTN6!<!W!I_0>Mu{}sTqvU4~merMf-JGesd-Ha>kU%_!Bb+G<*Z_7X^U@GKr
z;u7W0C<@7sDv(XDQUlH0c+)(N2d@;!?N#Kxd?a$Qeffig869gtJNI>3&Np`iZGYf>
zr}bfJ6~mDcf=7TwJzB7{aH_fyTjFb;_WE8x6D6#~e#pow{9~JG1H{UJ6C#Q>$q(>3
zt0-#F(GVoi=IV)T?)b~vLSk3<jXVN&^U{5TPkF=$0i`d7!695y15uJrKuS1Z(1pSU
z4@gHr0?SZrU8q3?cdU};b<fj#^_HX}8r2{g=#s#h!IcCS(g6HmOmhu2?iG9j>JTx9
z>_^vH_9&h+2x54UVBwmBrliXQK?i=|)j1jp>Hu7mHE@Z+a99{fiQ01=2Vz*ic`+pd
zned&GX&E-&2*#cu=L~~V@i2|Zpr53TK+$1HT??n1UzZZMKrriIQ*k@}ZQVW)PmaVJ
zg+9(z#8==k;T|1TXbK8<Y6@yLsgTdf4El5Uh5k(QImOmgBDU_+lT49Ws56mWB$j!y
zPzNlw&d^u`K%~z#;~hh!KdV&)Y*&GL1U0e&e&joxb>aPt6vBeKnWK4up@<5JSAj@a
z1&g(ww$5-Kdy+}OD%KeS0dvf-ch;-KOX_kQB*CtM*MM;WsC1Q*3?Zr*UI|Bt{|~vB
zfurUREK;nn^?+bp24L!e*pB}haEa*X>D9JcN>oZ>PLfkqU!8A7Rfr7ybqfAWUR=Y&
zy!e>kOJ4k-L{$xVPvctGLHS>hbOJjlt;YO<HpMolN7jK8>NGn2RY`Qtr0rDH2?hmN
zmuGOjH*6zAVyT`YQAL6nmN7*TQipVROw)fSW7<10CRudaaa&>-cgC^|gNshb><ohY
z&g&*tcheAL)C(QX99e+Nf^0y%v18!}BZ)$%lcqjKy)ros>?x6B%JvDCxw(Uar4`i?
zwDaA<-7NQ=s|%9!o=yx|5!kg96;nD`e=s2r7uaf17zb9f);_p^4|D}^V%Amt5>t|7
z112+sLHK%%GhP6O_hi!RUk@^!@3d}~<adj1loble*6S8g4CzIt&a8JtK7w5rZsk#!
zb~nlHh^U&?k)#-&Cs0%js|hI;!wbAHoQy0ca0eYP!+|Qp&R5<fObNcIM~DqC+Dc`J
z7DIClhVY<}4}w~Sap%yLqiNtAF2<0fu709B$ZCH;BkT79Ln^X}iWt@KoFpTj%pg>W
zGDLCbU&ZNm|4Vx5DEfxLk~GdrWiS}V>(`2&pkHAjrM@_3nh`X<awhDq>aD)vp4?vE
z7q43dmJs$j3Og0p&~qtjn7Vi4GDl-MTJM9(VQb20a`?Kg%Rr)wl<gPk1}3FIak4*A
z;?iMP0hk?Xo`);DDffHbpI!5K386orbqAW~qZOGDz(#1@cX)Rpm@!Wv*iUp{PnQMC
z231(}&NN2?lG|IdK=PW1;x4&M{T+sm2`J{kkb5+kKbsu{5@ax+Bt^1p{aGVHm_)ya
zoDD@Jy2Wa$vXwVaNl4F-6zPHL$x+3Rbw_$`yN}YNw{F$#L(Qc5S+R6>os8{fv32X!
z{~(XT98|uRNtD1K%^pRzNS@pkyJ`^*0i-hY4-juNy{CP+v8~11e_-p?7k}4+(RUs4
zo<S5xzXFO|1cP<Z2S}%l^om6~ESp<3Z!|nq0XwH}O^xoKfF6c3C~3tp&0T)&R{4q9
zoU8Q}W^u;w!NvHAFcdX`ow+v~$56x*juj;{*=JF+m=rsS@wPaSDetKVp2NdJK8$Yb
z@3h>DnFE}?QN=mR6Qnp`WMG_Zs@6LXN8ad~?8>s&oVNRrN~BF9`67lr<iS)v$X(!)
zeqP@j%c)@L_EN#ZvgD||KX!*juK0~suzk^7LTzblv}+MK&jcyP&joysplhy5nPWDj
zZYdfI$g$U_;~mfTcuY08{Ykt=hZDxNiqGQ>z{HD1)x73fm7BojBpkU3J3+Zsa$d<q
z46G7m=kQo7;ju>05LIBMcO@3FJS5cS!B}mWG!SHIq-o)o2hZR^W$p?t3qd*g+hHzc
zA;|)(wCa)WAnmBR8fnADN?ToTDneTHh~V79@Xygh5;qR~D8puW2f+}x7fu}mLAt$M
z@kmN@M06^O)goDPX1SZHL_6wIriaa7!bGUY6^+~sW`FE9y`z{Z-6{&sMW6tPAf4_d
z?WKmW4!sZfhqjktBj2(?dUySJu}t8{V)gxJS|17<MBBkBrrO)A>><NsW0x7L=_nc&
zuq(G77PbLi;hB(=WLun#G-s?~Wev^Vll_Oej>sE!=c`t4Ng7IgKVV)PlXYiz)0~}g
zj~J6QNBWD7By$#-lEsK%YK>qf5iF>yWJtB&<$jI^^RvY%U?yT1`ujt=3+COwP6Cs)
zJvd$i$8jZt`Mb$k!SsfW3m~9_M$cLTIgO|%&PqoVbt(g5xFwbw7)1@t0)hXN6lec1
z1A%VA1Wsl{2`fZ&n7(aHvI`Hxo~rd5wOu&2eG%=#F_^RhQ7OBav_hDzPfqCxSUKfX
z%!OJ2&*&a7oG=-Lahbqw)sNLZTJKnO!{cj22IE?z_)o(<(pm?ar@Elh`zbbie{br5
zN-$j|m=23x_6|j23;h4!#fW$8fvGTp@d&7a@rv?ve2S=K;&aKbgrcM1#c-j@e|s=m
z`^i4P3BTvpvVy|eOGAmf16zC|9l{L9;41qObh5tzNojTF`<g6+1}`L8pj1Wc(Ok=1
zqF!q^ZUo5!g(lO19En8vH2gviKqw}_WFeu1B&!0oC@C?JjSS;|Ek>5r6m?|NMg)K#
z{U-=!GV9Qj^=5J)Bm8aFjLV)l#u*E?#c3&W2@fkAXNn0lfCd2|9^AkO`p8~0W;Cnr
zc%VDhWAmNbdhE_NfDKwHDN#>OE$t|#Q8&C7c%4owClc6%Mqs*ynA%_OMOaJgaH|Ur
z<u(aWjg#7~&dDP2FAeV|hZb=hYwGtBKilY>WQ8;ImMjYAtpvCU{b=ksphX#-AxGKU
z);FGEFl3zgvbX6QL%V?$yg>s_qvK<3xcJ6>uqK4PXf*@k34YVV@T=#L3O~>{{;vk{
zjYqy~eB&XnSVW4A5!Qk_(yFsAOhlR-n5ZMm=bG>JKzHC9e{*w^4*U>mRK2y{_{J~3
zoZ=gcVGA7ct~1!F_{OHDPj_mN2i-PZct&?lokwQ(_YD+vAY5-D-^qBnm}3Y@3Y7B^
zt#Tf_;W?Yf%p;0z9&;zb&K>OA201q9L9l}z6W$dE+8c2BDaok<A?T_1b%&sL-XR2q
z#SKKtpUX8j8H()Qi8v6u8IM%+Izz~@FIhs02cL@5M^D#;1PxOHaf?$!$io=qq_|)+
zc94!%gHb=b!^{=)>+l2T37v$mW)zhQf~}^+#AP5dL&0rEWa6htg$S35{0i?|XOfP!
zc*1;eGaJhNR+|E89Nnq)sFL5c$eeh)R$K)FOn_w<3wXFOXh3(YF-nPYvAkCkUK>^p
zPIR8$Dg)I9NGf{+MwMm|{>*NHHFtI<;UD}o8{r?Q1L3FRk(&OtA^eRmSi;j^*Xh>4
zOMLn?65ec02{|yjBt5zn!e?;VN$AXe;;%zyNbMt?Vh#QFzotkq)CP@+Q5(b1Da|Fg
zO~lx8LOK%|WWrpEdE86V&f1h~>WXfc$Qf-zC=z*gV}X&mk~rfsEI9LT;+a&@ZTmWH
zeQB4X+XiBixr8S_p}Z^4{|Xy#=w<^2apA|-`a+K$E=d+)jO=#Ye}*jpj2yA4%-f}i
z#~hQ`h3KhEms`~X_!_kSf!5G`C;D}ctlh-Yce4Tl^O3S;U9=Okkokr`wdO<C647NO
zjsR;kRx5uowaWEwMzm0yKYU5A(jz2=D5*)hEi(7EGh7{y^N7-OC^(M2_%Ebrf9n7>
zvZXrud{CY0x>LwTMw6BV`Y+SxTjPO~*VG>^J|8ky>xd&gYBOLkBk=K}cusQux26fb
z=2xW}**aC45jvhn5@UeV!ugV25~v@;%_!$iU*YS~&i(3F_|MAawnC?6ZoaU^eyHHV
zmCa*(C3%D1P&`2KNI1t;aE@PdW<i({m%E5)N9N<e&fHt|6jr+!fD|Xrd*8AV1}o2*
zk*<K|myGm@yZ}W=OlN+TEN8q<Qs*YPvYJq)uadIU?>KE+7@tEsing)psSFP=!vQV0
zRgmWmT8VnCgbxAs%u&nk?v6q{bcR-lKS|94IP-^(=0V{no7)MF2Ni|;FJx|DZqign
zVKD8?GdHxsoujd#c{5Su4DH!O2KT^UuJ>ZmbpAjg>J}G;s9V(jcM|gJ1!wwEqRK(O
zgCLdg6V{Ek5gMv9-iTicNf{3%_^ffvPl<TFcB2)cg5hRNZU2$JjOH<BMIOAz2RxT*
zXz~p8ZNKUc7T^1Y#$vqykz`gfr#~cqOY8xQj7PFQ*%5Y`*AT{{NUCEWpe+2a%ugP=
zkxjMe#?Absj%_STcc2ToZyEgXFQ2u>C*gGjcHpFwyQwwi#zbpm&v&n+{L)osWTx)F
zK8s5()iWH178AaAi+v9y@h6}Ob@3a<`#c>mCuL^qjLxJ13#sOl0)uI6*KDv3wV1G6
zz-gMp=zWUq;$CrqsVqi!kf16`(1E!2{~{^-^yKl|<C4tlFPJ2FcBKX}?_Q+&A~9GP
z9VsTfa?Yx397+%+KY%Qk)hz5?Si}VX)Ug8EOALi=9w(R~XJo}CvSxN1kySn*z=Td{
zXI)<@U3bF{yw)ZZJwPI>6OA262Ct(jLDRoomxZRw0(9Oe14s@LnLFd+J}f_5nKlzN
z4kfGL%S)fm<jWw!_|1vk<jY=q6ltlmt;r$c-q~PZgVgN0r$|DwEqqk+R&qk&fbK$Y
z+cd%B&_oVJq%-zzQ1X<PY^aDWi^P`uNLVBZ&A4l`AovMQfI6FsxOj75#de;GkkG<x
z5+K`b8*RFSR799ck*NqN*|aGL8$$8HFDYT#qc^Dtx=_1g0W6uDOl)}}b1wS7TB&+*
z`cxqOlKIzI!aUdx)E5>CWeKawf1Z%Yj_1|kD~!hI^JI#~5OEB+Y4i|slZ2{9V`y7s
zF=Vh~yj*GwV#J5Jq_?`i)7rw-z8ABkP}n6P$X%&Z6IS&w)}ShsIVH4aoZ>?D_ETtQ
z+(v1(kJDC6+s!j9+osY+ezWvoAkt|)i9Z+x>xlPESj^s1NNT+hZvxI(Gw~SXEgSJ_
z-3l=zJ<66a;<YJ^jZ!*pQyBZ=1ywP-JJfqHD%4Afc>nl*Hq!jz8U#MG@JP*CZUUc)
zf3h+zQJ_#Iuswe{UQ-47Q38>KIZH`hFz_)rL?Na{3XZ}X37C?D)a1MlSXLv&8XV)Y
z>NEffP$jQ((NW1hnWO=R&gu?QX5N;Glsn(chLky111Xd6NKIO1kn&%TTcik!q_XNm
z$0aGg(uCWT%A&rG2KyI@!L7OvTs2U-PjPyeJz=tV3E9LF5p<eh$v$eIhw<_H4S?Mn
z{yqHhUK7v9)izw^P0aJ-h}zP4{?JbYC1lfHFq;HKs`wLa_gBxc?a6FARcx+Uw6i91
zlbfhx6Q{6==(fF_w!6vM(QSR}vCuqatPzA0D1;|-;d2ph7-y+r*E4S+e3@vtP#yh8
zH2mSa8L;)-RYT#lhCccO8oHYeMYlQiIAS;juD}1q!UgCg#gz`7RNE&OOC(?nsoft%
z)59`hoMjsgNu%jQhODI(?<Y6<GzYHMbKvl!t@dShQ+;wJm1~O>?n=mt>!A2hEjLfK
z^NE;|YRalS+m5kyei3Tbr31`*B9eo;`Nd8?_g`3x*U?rE+obwLd%9<FS`jp>NehFV
zG?ytS68wb2uaX9m9rYas{$HRWs+<r_0&r*aPK;}T{yc>R&X?l2#rm_8)&m&@j`it_
z=r_VsKsiPx5G&Sj6zR1O<Od)@#ePcc>fSnjPni_R@4`oF&?TtlF2z;m`e#`Wcrh(>
z#-89c907K6!J$aSc)^Jtz}I36+y$F@(fxGY_<>NA<vnm#*?^-SfZD;HjdK=Gzp&_d
zr}bkHMP|qAic0Fsp2wFM`Ca<3r0qN`Y2v{{+A+)CwSXC`vCtc}v}X-0jn~_SyRk1j
zHfet6_|_-NWkE0YA97>*s3~teRLl3hCSKr17ecjc&zra(DS#Eck)q?>*pe7rNvxGJ
z$5j}0!f3fbJ!58war#KR^P2^YILR5{@3FcApP+?~Ep9C3eabJN6#j)H>Uh9ix&(i7
zWObIBwvalQOAB>>hr+g~`!5FWXTa85-1F~Mu3djF`0qo+MmM{Rfy0b}!|bCPTC%4z
zV<k~1lvuh@&<K2$x@8L|4|L`qxOdaHm)9NVb|C|)?>2tQN`M*y#f!200-CcHO|aSM
zVi)Gg4v94bw#h>E$sF<*IG1>X*~Dx)HrK|!y>xBLR@WVpXxST%$N{aVx7@Xiw`-u{
z6VKs}1wFGVBy@HKp&EA)koHajX=(WSo})|IADeJj5mIc$xNNH4U|b+1Q`G{@20?({
z`I_~DQN4Z$TnsGsZu<5z>`#TQ1d%9R5`7ZQ=emQJVSC4};PmQ4R=T-git-R~<9auC
z3QmNWlWRgPYw8@ZQ6s!5+5B-`BesEt@3EwbD?ib{EFlEecvbD@3a)A)F2eK%G-5U7
zIbjzR>KD`@?PM}F^2fjsm{+q^8h*ae{8U4JswO{Gvq`k8&*E}*6$Vn=dK2idY+pHv
zAAyUiC>eTR=o;QK=Wcm@e|ix88M<2J8>qz`brlwg=y3rHW3_W$&Rrw8HOkUk=*Bp$
z-<iRqVQ>Ww3j#X|4lkOfaY(>`N6v7HR$*k<n~^U7TgelkB6=eV=%ST80m{y^)E+~C
zn1~`k+@VpeZQTh#CksIO1SkOpj0qvjJbZN6<(MP;P#y7#@u~VgWPK{J7ZU#j?tc|d
zDI~><wV-H3%Q(0*$QjT995k_nKB>t*K#3OL9V<29s{Lit%fk=aUN|HSx`320DfLf_
z*bA%t$)kpx#0%=j!hSgzLH+0gu*8?hLuBZe{~LZd|G*4>xUgj>=zs3!UGT%%Ej#9i
zJ-WdUZyk}$4_IKHqZUPX0?-ixP&fGD*vo_;2EJq{_1*oJQd#&ReAo}<hc_-w;fE(*
zG`;*P=p_q3ynE;_`Qga(vhagfUi64wytQ>72zT@5b(Bsl-de@Kp8hN6jhUPvT%k>P
zw4{kzF^4H|B-><FzOGGl%do@h;RrRgnuDr()-0C6B33Gevh|Y>a-vhv8;?)iYj{)V
z;aKNRyRV-%e&m*Ib7sAWZ5XAkM|gq#S6g<^*xf1d(d6TuXain!=AX7#xT)(fr|mfW
z!d1v=olpQ^!j-wneXM5Kog*5KNi{*J&HE9M5c3YjY7Vm|kkk@NYONM%f=T@zhNd1(
z&v6UzAdr6N&@0-4f9;?RI7c}xWqaYSq>`<RDZ;F7^K=hMMwV@EVw<rM)ze489+ej%
z_g=RrjPLGCqEF!o+J_aBe3wb;xn<uw-Y0xgw%v)oiq&fzpu!E58ulp|-n8vFr*$cQ
zqM@LX7=1<PZ%IZ;87PG+L~mE4hA6n5iIHxj;B@rtM2B$ooS}OH1-I<UF%3nZsVJB_
zV`nI+nLerl)uk;*;cG#KjGdX(rQEdwq=TIyHUPDz#6ld}31N5I+PJ60;8kEAnC-4J
z+~_x5?ji43#6)tJ>e6uP;G?&0@4_Ip^`>4OD|QZ~j&>gIv|fy$f*oukh9z}ch_wUo
zbLEVCXVxRT<G!48&-Ceum^q|G#8$bng~4a(LNa3m@~d>8`5L&(nSVP)3Y+Y->ZKBh
zPspHUs~m4E<O%EF!Yw`BrNdpk1!rz}h5Y5=y2#W_=RMhkvMl0_*dxLz72K*Q+v2o6
z%?T~!*`DV+$mH-{d2k0Gn3;2L&~JExz0ii{Q`F_0DO8ubDTWZ6qy=4fB0Y*>|Li8M
z$P3sU-q!s<@<nD6!)Q}Tdboq(o0<&~7<O@pgBM8*(X~R3yNGTDnbuJXI@w+BIxah;
z2Zb>aLvGnx$2(cVLCB@vBE(kPKEmf%1v>LiTqL%IpHb8#zxS^6E<s%_W*jTAMMql)
zCf!(?On@!M<iQG7<>s#DqyXl&n+Ig<4}a@qZATi?vBG||yR)uVV`YrY>?L8v%zksS
z>NL_7!)oVO2-XCA0JKbg&(-%aoR;3g04Kfq5;l#A&)3p<U{TlG0e6Wjr-v!toaA}1
z6(#)vFvzod(^u~_OsO;$HALd!f(W+NXuBL}v?C{31QUEPjQGtsVzs4lm&5+>Mm_BH
zBy2J>kZZUpC$>|l<({0*tYi2JH^-K(|9cK|fo^^>kE5q+#2*?ZU`Q~f-h}RqzffP8
zx?b;WG+D<G<0oJ^yJppHxRJ&+GhUNfne<6GE?^7RA7R5fWBi&IuLB_5=zh>Wnf5(M
zEY=)A%bPp}GF_-A^D$PFvz&D44ZzGAESpd46>8yJ<WCa6&<5|XpHCM+Z$V<s0hWY&
z!+!be6iBGCpjV7f`1bzkkThk7WLPpJD09Pd5+mcWwf?n?WW+R3F`j84(JkrW=*8&?
z;_|)y&3l{BqwmoD?0klP3&iJxyKS=E`Ykj#fSGewhYHN_V@-XC)v=b9g@q0GqIjf1
zPD&cGVaV6MY!qS-Edc9k2zipPY+TnMTh4Nq4hon&gqkFOGgp0UB5HW0f3lYd4V9yQ
zgPkBq(w#{6_HktMdN5xg+5R=;F2lpp5qVhUoTq8I2`&5Octve|+IV!YqVP=HpoHHT
z@KyePnwq61m`Lz;6IvqEH<+E=wbUefoLQCB;|xresd3U{#5?=~^caa1p{N72NbLAR
zl^9ZY6|zhxnHHjM)1?XlM-Am~o`7MF*1$_m_#MH+1|KU9K>w#?lo|NgGMdn(ng%Pm
z{yI2Z>Sg&7ob$W8Eax;*iHS~=5)@9%s(p!{ItD*7%_1!(kR&=1HiW`RlTYZR;1*Mw
zmC`O9Kf${=ej-KW$l20vH{|)7Yek;*B3mgIjnjh#W<&u%lzi;xlMtnE&dnm!SY$g#
z%&Ig09=didQ1*}FFNt2uwzLnhb#guTg}^2zlOo~ild6`S8G$!6X%wzUFFA7*czWxE
zbKC_V_u^1H@qJ~yPhmxTOra3j;!ZO7h3flfs6dG?IhnwU9Dw&-K&)0iA(SiI+VLn8
z9Kywa{es^ly(%t_UnnCq@96V{GT!+&w~zQ#w;3M+iMasqSP$SttiMET|6)-S2TjW}
zj~5VGjYPBDkq_hzlXLL~+#=B?HA)cd|Fgb3-b(oABDs=J)iR?!6(1#(S;TjEWkQ%b
z-d2aoIKV@D%pq@*hs3~24j|BKkpY@Fi-~41sQ9OL$i^nXbLWW65irITCyEvB()<Ba
ziQW03E}7v3vuNWFDOF#~_UmT3KYGy(`--bDmX4@FGdW8}ROI@v@&;4ExIu!l5<s^C
zu_D9J2{S<ehM+!U-5dZ<j!CTdx=Gp?L9g76kElU@YjU5Y&cKu-DiCArOUWGTb}iv*
z-Y*3KzAIpm0Y-rVtZ@Sa+_Gm113V~Q*mbUk5y${hKFIw-RIJx`UP`(F(Ls*-$As=M
zz!}#F0~98yZsV`7@Xrd;Gghrrg%2B*!~<*9L62+8mX~)&3J*wzCg1^gpFn@tF->C!
zY+~h29E{}wo@S>meoVv;GEWZhSAU6nBh0<-6K{y@@V!&wF{(r`c{~VMO#(XZH|rQ|
zE*UX0cgcuz0hXp6D5q1`wf<}o{}G^@-BEQE=m^?1^hwa}4W~`h&I}b^rwCXX9%$Na
zaVarg-meGI<^r`Myx2u0M-3j|9oj{Iwqx2Io0WFW6)Cj)>7#~r6|+-lC!Un#@Mr^O
z>`mIq6u!{T4tj^QyZ4VNwCjh$P^Ka3_gE5+<odUv46)oh=RV{*_Cr{T;Zo`-f)Sii
z<u%|j-iCTdM#PPjPj{>E8Pg-~DEt_WBmVf}gtOcQA3?!uUZ{+Z>6c#-@83_d7qV`M
z$PGL5-=RmS_WP3-;#za=6ohesKMrJ6pZ`HnP`0q+aSMk36_&ICgrf=Ys9b-w{&{SD
z-z8!2MEKks|7Crv1nWG3XJ>xH$mln@;pq+M`VZlWx<?w-;jDiQxrJ0e7(--gq-`KB
zP>JFW-o{|P3j05HRV>(cMn&|CuE-&8xVhhui|!W0xG-6ofzI{%BaqdeT_j!@iPscV
zmVJa$N4{sAIWCf<rH}`7S1NPYC)IL6B-I-?c89YDUn!gwPSFbGwC8h7UIAhH0<9>Z
zX}6#&nrBhg#xDA!|Ald9I6PfvlLOP5GEP;;qiWS7nj?>W&Lc;1AsD<8<C|S&Pxsos
z7k#s<xaqy5mJ?RCY6mb`e4^usQ9k6ICIIfgOb7jwhuN_z7>2Z9M@PzpRAT<XE4TY0
zze!p)Zzi&tA7nes5Av_%2jNdpTj))Sxn8!MS$a4X$djE-<1`O%x+uBCNgcSr5pb}a
z)jSxJkpL{o*G`LUZjRfvCQ3z{m5h^5#uxAh-}+NuI5sghMAJLGYc=u8{gMiuIqjG;
z#5s)2f#Xc4UNAx~X*Zj_iqT^zAr7B7u=FN_ka9C-sWpi_&O8wEu68E*&XI~_UY*^t
zrXFVi+Z~VhM_no2#D<h|s^^xed+8GF@yP$28tP~Tw4cODPdMk=%WPz<7I?2m_0`q^
zhJgm0LP0u;71tm$WSmn2rd(4$NJ7RFnf@{(WW5(ooOEMbJK7Q+=AGr_G-+zC47_9c
zSwrx@c7F*7jz8-e+abPfB2vso(8@U#4A2`-5;Kws`pbOe$0S&EGpI5S0)hFXv6|A-
z4Covt{53?5a0fG1a<GTwrX+$BV&kwaZ2t8x_RUZ(65l-%9}NfOV$@h)f*R|!Q%}d?
zeW<U#m<tf|Lpn4P_bQoKXP^XvG(ya;i4_L1{5ohQ1UTb=L8LRl0b>{;f;!Xz&Y$;8
zM><$UkdCNDALw!D6@qcVi#3YaRGxzaMiYYr^MGmVNG=%z_{~3CERPM|oe`P}XdBI9
zdXq2u$MYRD*C4ZQsT<}Gl)bI=hWVH+B$A_xYngd?FlHk}db+?ecqo_y`e*N54(EcO
z$Z+6b*$wjNB-rKZGgAQFsPf9d2|3_|6#7rZdCJM>k;8uX8IcE}>Q$t!EY-RVsnEX9
z&E!p1odEaX>u~@!iu1_TpGtA)_+ts~%9xLutoaLKFb*Grzlxptd6kzH<eZi}QShPX
zI_q~=Ykx<bwIuI&Jj_*h9{!&$RkCh-mpb*0@4D0x+rP*B`da+_Pvf^;m?%9G8Y-^_
z`>7LF7pm+?aXQrX1sdu?k`@@HjMC40>jXWU55X2!An(~H_sWUq?R7a#12)7a=f?Uz
zjGJipBH8vH?Lv#>7vYgw@)8Y=IPUuMR{8vmG5oy#T7255KfSt=?vMF&5I>Ele|nUB
zI!AvB=fCeExUnSfN0%1lpvHn|iY_hzhve<SCfOD+pRaxy=4w9N?w4}Ak+-MecE=OR
zZ~qLp{UKmXwdapO`KtpRkV=1W<K|-0CPdnVI7E;NT>?v`(yzF2m~hEaKmE&Bf&)P<
z&R<^u*bRE+r3?Aeu;3+89vDst!zo^*T22P1+?K%~ve8@?7`Pr?#CLx<8Fi-(S>Cd|
zzF-Iq0fg2zip{A21E;CERNr8|K;WoHSpk)5A<ne*I2R5`J#JuOC$%LBK3d))MP=aZ
zvEwea{v=@RLg0>koq{iC+ByspI13YJrNmh&KgG;D&i@kuK^rwFp>Vv1_$Jr2(+HF;
zm@<*71&U(|@XeVSZ#cFohBQfZ76HDiXi>V}5vXC}U|7rfzFR^}fGSiIxWea*NTGnL
zDDT=(R`Uro8FD=&opixor~ZNuKwRwNC2*#|IAe@xE)F8PIJ`)08j6AMX$EeDI&J)e
zwLH5Vf0*M3IjFBOk`SG!)thwMmv90a%n9Of*G~m$?O5)@khyGK;}nhoFGwXvEiM}2
z7jTCv%XJa2*S<tdNr0Vd!Oq(jJ13ZrHFm(N20MZ$VCO=51pN(mihVoKFb0aU7_H=|
zNM^FO(u;8A4`{+G%ppK=kRH0nfFAvcSYVffLi445sUT18+0pt%2BEqiHS0tm^sj;J
zW#K1B;}fJD2Vw)CE(cc2zQ(dHMKI=7!S}?pB&(nnY(ImChYw!suEx4ZI*hFw8WFIY
z0TY#=Mk1*uK`Ve%Cjtz%4J}+P7vNlW0$iYB-O%Lc=*M7}_OBan<hx+2Dqxf{;~faY
z$uu1hfDXWTvL8FJthEL1S<wQua|n>oqEKTDpN7<vlB1`JVY!X;Zn~R%JEhtMb*dJr
zOR)Ei&l9Y&;Oj(<FEBWjKtgB5U2u`0NEl%Z+S1V0f#YJ>3UamK9H(`WfJZ3IM?k*$
zNDzS`rhil~rb=rv;)S2$|58C?7!RKsu|$7XEQ2oOX+BZ0Be<|J?7gPxFg}ZrC`2f(
z@Cj`huFy1>R{1vwn<c@qllCPGrSgUVr%wW>33-Om+@k9P{>0h6=FQqUeN20Lp81Oa
z=t)7C*_Q&-o@7g#cgOTzCm52>54my?xstWwtXzqHU+m1f3~6^JLl^<NvD1nem(IgA
z1v_643@;Z(ypd3cNT%_hklIa{)l3l?-C9M2*Fv{Wu4K$14aO%FYc!!XVCY3@n%#5-
zngSwAI*A6fb56!3XJd`e5bL$XF8F{N7XUzQEnqKpZzjFf>?1OSItzAkZ)**A)q~wR
z!))|z(3tK8KSiaR4ldep2b|ZI&<X!Q8CjI!6a?E7PBZ99%o^qEasULo@sBQoar|&6
zpOMr)WRdvpLQ#k8B`*wR68#hp*(nup^B7w+sW*|t_=Wa^Ut_7IGk1~W{Q>g#SNtEe
zL>D|ZMjsAnM4_79RIy|cyG16^NXBC_!BkEh647bYyFQpQMZ?!0D1#t6p@l5F>Bbu$
zB#_b<o{?~6%O;<fG+HnPM~fid(kzuZ5=dOgp`Zy^a9zk4G}!pW<np8@QxFJF$%;U<
z!UKURvH-Bk$EptKIdhytoN{d^f~hq~j2T5ugg`ep$FMK#)~dvqO}Y{df`9CUvXRc_
z#S~f?G||->6SCnrY;i{`6<LG3;Iq?hHj;}T7kuBtE&H-@_t?9Bserd5CKsc;1O9^_
zc03C;jsh#_@sb^q&{fR7!B11b$K9g4CW+MXM!(2)<}YXS-0quW8%qR1#~C(AkxS9l
z6iUdWruL3R24$^iE6hYj6C1{kY0iBpSy(0`@Q)JfWQmpPSeQA;E)+zWOReoq>LXD2
zj8|>@9lvE+l3`u{6j9kag@V~~u!6A#09>*noT>uD&Ld=$NHMQ2C6c=3c>f+D7I7i`
zRkqAOfK?_tSFH=wFgJG#bTrmy!(2qX{_u1dG<*Gr>-}!#N)eD5b&R%L3nMWO(BS9<
zh7BU{wmTRlnP|ZE`eSwsuBEzc=M5MY;#~?x5ch%pMeGB2FxE3O++F=ocQ8_fOwHn0
zag4{z%?c^40s^i|iJT@NM>fD$CmjWQR)Q(Tggw*s)hup^Zia3c2eknIpvtsp=4sdh
zQPIHh)h4L9h*mAy*~gi=4_O+!y0vWNs{p6Q6||6@;jQFrStac1Ni%e5lm*e2Kj{>r
zeGu9B>wun<ezBGAV9dxPX;2aCbO*nKa=6Ko_CX(gfci%Ek?`G+QX;G&wXd=FXhsU>
zEf1o=8@;aAC%5BKMl*0psA5esdb3|+?MgbHOBx;d3NPj-jqZHx2v4u93SL<?wl3(*
zoiZ6(ayPygh8Ir*DM82hV*RPtu$|Dm{0Bx0O)`}iSYj--!TSgrP>=ywYl#w&K{uui
zq(OBSVCpetk_3#9#rR-h@*!9?;akx~kI@I~@Km2-Fv>d+?QHSP#5(XwDR~7hDgQyc
z&<{Kli)FnrC}NX`1eh2l(jpPV73fe@63Ir@C*s2SN<0VKm>A3;{$f!r>>#?hbdhQ}
z5-?2wO#u_T%tx(dYx|Tv-PN5`8LjP8zj9Z9D5O}F#^3L<^$h+tc%uhEIMlDq+Jyp*
zUO)ptL_sqc1iFfeE_`($pciZ*FRgM{eJAoKUkR%LwJGDX!zxf;{nD(CU=JmN8BQL^
zXgGTCy8aT_O^pjE7Pw_F^EfO00wz;GIRcp3Lt{o0EN%Qt^!U+gGR+|AI{q%?aIi1{
zg{pel9uzi7f%y9>fylcFdZ>;_5R=i!V}Ece=l0=UtEgsqGSjIXgb<q-cvD;n@<Y70
zW(VjLszB)qW5p}FkEwHc54sV%9OBa|Jx&YJ4DGcCTrmD{jCD}*ShK`Ca`aS|d;@?2
z26en$jnsn#{w$WlPSD;8L6VNQOWd+8jXyUpP_VcQr_ccO@lHb{EU^%!L!QUZo=K=U
zlEV<{8k`tZ00BMdq5wVqO+t2?Ll7Mn@ybWT&h$csUHNDP)E0rMjY~icED~zqsKmcm
zT9Ryx9gaUDrFC_B5pc#-w~^+I{7f%u@91WrejEt4qj(wtFfa!0-Y8{>v2WbL8{O5|
z5TXvaK=7L!Pm7#DJovDH%m9=zM7hA&<6<4mnqq*lL;xDr4Kbc>1Oi*T8V&pPDhv1t
zqc%vac7ZEOO%0pYGp8US1OsT%W>UN<v>H+yM3;~(bgJ<YWM20%8SKYVM;S!-KMa`q
zAQ@9x<>@mmPhjD3WL*9Os+L-SFcRYiKx6E$gAd4v(>h1M6PHwjj!&|^sUzn?z!VZM
z)zvLa7ltjMb&Xu@s$0a!PbGmzU2S;_jR2V)cO*SdgwRYy5PCTgMr}U?nEA?LCZS)v
zARg{w%=&*64?iX~qdznrK3kYABOaztfuj2}M73#DSa1FWZFi~ALgXW;NNS~&2v~pK
z2q!gr1bhZ#IPFuzP-yyQw$GTCHpFN>P}oGG(k_0ION37mRO2eCNv46o)L?tj#<uNK
zbQYA1)^ct3DEE2mwogV{3LKae*yb|~nJ4@SnsaP`&BnC{h(0lUY7SoEM!(GqJ9C#f
z-b5&l)WG%%suJi#=n_e;>DY7f1(H9*9CZ`Bh|z*3!c6q7Nt<p}b{ft;P9Up^sA?ig
z!r2irtN>Y5Ktb4(psmyLunaV70Q=J9lap|RVTgdH;U+y~bp%0{O@LYCsRPH>ve-Q7
zRHW8M=07+}y@DMfN`=V6A9fdfemau^O=y|r`wO}drGASj^-KRc;r%48vGGz8Ml8qJ
zxHMO27Xjm8(5~Un3FuG95Dc)A<Hew*Bny=miryzfCNH5y=pF0oGcw6!f=o`{MesSz
zXmz6kP3uW9MHbXk|0RW+k0pnj7YP{!0evu32|f%D&6ANB(SVJ#0p@DKGe-y>bdgf=
z=lyR4m~mNX^FIhMNAA3V9}r;XNK3m6FfV6~>zfDAe&U0`)5vN+zb2z)_~Q*kVJ!u=
ziO2@+8pt-a|HF8*%3wkoP2vr77GnFba{nL4n<ubHGYADF-W;D2Z=NaI%&SF|Sx3nh
zn;{XX6@M(IhwH`(4ex9iyNn?7Wh&Yltyx8s>4E@p1>$6>*;`W}z`GE1?cRtYftp})
zm+nf(-RkN6z#;#F+@^3y!k<7sV&Ylg4fJpf)aWrdq%yDWG@1F{!;RxsbaDP7OnkpP
zO;3DZjAyy(G#rMpBySY1F&S)LQs<znj^9Z?DeXJcUf1~!u-7=S7yLJHomI(%T$fvM
zjQMKF;$RYchAy7LAu1lvAE!EFA`w&lGp^yBdLNj3!3{zpwM}(OU{}n0RYYru4Z1oC
zf^n?DG9DPg>1+Y^PuNrY*XE{40aC%Un@Z2^itw1RnUtQ`Y3K~JRLz(v2hI!7%TV@G
z$X-e*Mba`RRogBSy-wF1RECb)>O@bIHa=j5G^tq4#6wL*EK-Q+ygst0;n?!{fWwCs
z<eY`9PHQ{*x5ZMGvHpcFlG~<aIf5ir#e#29y0#UiYwIIiBcoG=!@ldv$*G@Ov9!D}
zAN~jm2i^jKF!PTS0Q07Nl!pSiUhtl;0MAL-_eF%O!%{IK$zZ0q@yRHBA_!J5g;1~H
z<(<MCHZN%hEJI{CAw%l85AXHEdmVSN6*~qg_g53q47wJyB`^lH4~K$?3R>aB=2-i!
z-vyPg{@N_XVu#(vKd8x?a%e@_@(Dkwz}^odV|6_`M|xv=Y>A)r@u?W`*Y!t^j5YSy
zLX_zl9h)sQ9s}gJ7L471%oJV5Mv(R0gLO%UaE>rdO~)&$TzW-d?#!A(+ZS8rPsCp}
zW+0@B8~hrnB1ZGc4F%Y3VFQk4m<&XZM^5y#f}d~rWo}L`7rA|j`;AJrp7<;8u}o}V
z_nQS^jhwok&JzpW)!UpW*5LM3A3RbB4m)sBR(-w+UqEKVl&4b46R=5@!BVw5@odO)
z*1t)1N1_Tk)@AFlK@xmP@7AQnh;NW+Zm<$jY%j@y?xAfEMXD3}QCyf|h<0{qCmk^z
zHfjUeYFrOn<$`L6F8iF0J=HoekuRaR*k>DUs~eg~G(LiYqPz?H0b{DX-3q(jICU&l
ztC{ET><=9GgogkWr05gwtFgI+V@JRI2kn*GhJh0yh4ck64LU1S*PuXzKSRXRZ&;-P
zzT@{%RI;cTy6gCrp=WA;=b%5Rm2vnI{e{>Dy4M3i$LJ4t!uVUD4kKmoOYh&oKEO--
zCd%@X!`a7!>Em&xO{I27p(mQC9@d1$oZC*oLlJGKm31gAXlMUmHgUmGMSY=c8quTa
z+olO4ocSBLzODINDucSi-58`G>Gj6dtb(ZlR>g{GRP&9R1m@jXe+UKLa2ZnVo7=iT
zY!I3mDF9~rX15)`8kU1%lL_Nx`w`T1U*vj`qGMc$zI&wrny*$B>nbrcAT~_?A%@UY
zIzKFywaX+?8c3Nyd((4pR%-LMu7eA5ZtgAp%Z4gLmP;ufJ45S$0~b{?91x>GJ#dQV
zIH>KEL919lu-jEoHDrMl`a9FkVmREqne-qVG>{D%Xu_W49ZKDo5&#-C1B2CqGC+AU
z!!EIuS50t)qkyN6Df*G?owTTihHNPCO|BJumwcoRnLt=e@PQ4E0SGUaD38m}hCmsO
z;Rt1BNz|{Ne?8ah)05NFqCdrs!6eP<1N#|)>SrBdO(g!1Kweq)vEzLS_KILdYgCR$
zkLxKrEZVLc!~*cfq92`AiUV_5GF!o^sMb{&a>N9a6`Wt;uJSx#J5sjBX_KWxgTIV;
z<6)$}hmrcatKyKaM|ne!V?B1XmH1ll32fknrTMPczqCAlQpw3QdSA21bZF^F@4}ui
zH8^?%qeX4Y%1G=3zaP0(n34v#WPh!x1vS75ut1YNPvA-#Hw%@6p+?NW^pM~eU3;t8
zleO}PX1;9$8mOfCUc(Cn{fPl=tjzr^0xC(8kb|dHi2(I_-a_?7-2xM{A>=VGAYWV9
zWLlVHg6xzU`}V^?^=F%aM>m-msV)Szq)Z(jkq4wibhUQaf0PzfO_CAcB!43IEP#r^
zUsiD13m%0l3!k?JE&(?4Eqi0aO>S%(Nd^;Mnjb&uwxI=Jq+X>U7*yYZr3~lFR^JRo
zV;8KLT|Z%amjO#uE5WJ6>MGrN47wAHn6IuXOrm92Xx{O-T6v2=`XhOnVkVvyKZ5*_
zr6~pZ!PLDrR`A5sTV`%9WFpRac-NmQ@u77wsSu1`nNV?+GKoaB1DruIiJ+M?;V`at
z=`zcB+@*TZc#Z|}`bB%q!OL|D0uI{?TIRP{5@`&L`IDk=CQgAZfXW&NzJa0v^GM!>
z!>7s;O@XViqAoPI;a(vXdr0>vksPK6)KK)qH%d4#Frd^PS<l;|#Fmt^t0=RwQ~CnP
zpKHsj0ZfH&(*F=X09s57q_D4YCU^q8tvE1VHE?KP`=}3KyFM8<LYRQhD=%u-^+GYN
zwA+Cat`~Toe?9XTJViam@XeX^BcrNYcH;$awfv3Y2K;}z*5W~e@su>Q!gZc_jUqz&
zLJ5~Gos4<vb8<yQ;*rzyBe}~Xv8A}*s8BzB<rrH(E%p?)PgT7a1S*CSR>i}laK;9b
z^9cJwT1|k&`ul0JNhWTvS2sQZ%zvs|_JuQZfW$>IHBX}rPnH&;KwUPBX0An_xf*Rp
zK?Mq+qFb<Q-=+czfV7jl3{!gOvX;Zta%D^!<O}-7l*VwL>U`*b*>M7`k9Fe^eO<*w
z|FMCKh}u|lSs7bUF?f}A+$&>iD+aHr=z6UJ<$x8@FJTGRP+xIymAM~LWhq{kDQBiA
z-<XPkP}6Zw_I(G=H_0`GJpyScP_3tF;|<sh^X4w26yP^!oUt=pTO41wvDe(e3kZLc
z{F0Kd<jozB<Tqs)x!-aGV<VV)8y$hDvvUaw(7`;p2Hm9oN99ZB20_twL8Bmz^%Is)
znZn9_R}?Om8+AOU#@ADqRmNVW=H_tyLUR6Pa@$?ns|dG%S)0l<zH5V#Z7Ztu#2d_d
z>|)~**tMB@y{!vu3X3-{ZbyrVY*zXoGgN7=BLM7Sne+tK34=*?@imm$7QD{?sMtF7
zB>+w9CED4;X?c)uVQ)B`X|Pn3t?i3b)K$=@I94pq0$OMw_8oyRgO93$;cLDXZ{4gb
z5`_jD5M%rxM0-(8y<bAqfd7!+RR1tbrK^dO8k!&i&A}1i3}BOSz#W?jRv7XoEmKKa
za%jtdvIL@SlQby~YhrC|NZm3}yR{gTNww~*Z*^2Y^wy89;!o%+sRy~2UF;~PNuD7B
z-T)O=78K?vy{Rva79+DWG#F*eZa$8@@0|yejv`!0oqNbC3VErUyNalTVPPH~8r1|o
ztHuk1Kq*%N4B4fxS}qc=T)#VjcaxNE8vL>)V3rz%7;TnNo7xXRpz{EJm#PcG2hwsT
z8ynS4(Jz-Rn{Yi}#!|uqC8#-!<{Tr#!N+EfqlWOCI)wraKL?Fzb2yzYoKE+UC2sE9
z+OtOAYQ>}0?FT%?-0M!@VlN#JsmpKDGD1-0)=V{NHw<}z9dgQeCn9&y?f6seZTvTg
zf+UOj7+)VF2Q?XzVBcD?f`xoTu#rKd&3S<4W(!TSy%YZF(EJ0bAXeZrl;|k2*dlcD
zPn_s0d<i}=&^okd^Y=~oIr#=Rv4>-bVF>)xDmRW;{!2Z(mCp%=>e6L(CHxd);FPh~
z3sqI5nc%Q&StGWcObRMBT}WC8tO>Hry(~o9m>|*-I9?MSK<cD$A?SfX`<GB{K6@hx
zrQYuabl|+7z>7+uk26gxr1Y8@K{pv~3d%l7YOqwj(A$mCctZE8Mc@+v4iJP`pht{6
zOwP6Q;4<tGDzS(f;0G*Oy1EY0i{|2~4`xF~Djw7rJ&pk!M;HT3fq!DvuKCN$yX42a
zLDP|cu3%;gKwAzIfuo=&1o*L@NIcwQoXr$}iTU4Q=&yjhgOCjWsJ&2)gsstv5X}s5
zm*$;VT#$2yFc05|E-qMvn+M_M!MNGstI=%y@kHb4?K{&R&J+DMmVF>;#DAbz#nv)-
z9xspScOAtmpk8cw%R+c?&aB_lkBbj@>PYNWi<NydzY<r(PFh&PO~PITBpfhOf(H6S
z$sLnwmcdyKL%OgSu^jIVb<5tFJlMr~+tJ^mJ)UEO(6IlhXZ^gLskyUqS4CoP*cTh$
zDK7(<{n&8~<#1n4ZZPlRn?C!TmAkAWw%Q%M9Z#I-KY$dpw2$+|>fwV|NfQ-3mlLWh
z%w}X2mwBJ+EW#sc@5e`#vDYdFuf|HmAiZ00$l8kB4HaeE>JEy;*03ISI*svcybPWJ
z&56k9;<1Y&F`g3$ZsbDSCOqa3P_z+l!%c?<v1$Dgz!0$m%+OIGM(7EV5aoC@l$)=F
zJAO%Ks-`t%Pl;aC@5fR4Dq?HI0ar)LPw|#8ko-ha9ffrqZlU@LMGPh`uIDzJrtf5D
zi7-gt{{2*gW_ai~x#O3v6a5_B7ItP{CT2sEU*}PdmWss%j6^YPEZzA6yYJyGAvTfV
z(t$&=><!1GrE;Qs;3>o7TI4zUmz9^Uby^#QxO~^^zk7rS+HhvQ0u+^Wegvyq5^n7F
z%G}rJqKeKClg6t;m6sT=Ju-<MbNZ7)NjC5<*;``m1s%g&Z_IxD(Gz8gQ_tlqrOx~@
zMMrD8#NMfh;X5NHa4?&Qla$fSkYcv196=I7h!)~pKW;!*ofP0><*xQp1FgqibnBw|
ztQX7?9fndSty^H9O|iRIo(pzP=MGD{RL)f6uhphitX=vy>O%c=@U}<_+ka~g6ed0M
zrz01wI#6;)IG9&${1N%ot?*96<demZgtwL}EE4J4R|%p0P!e~gfq2Ew#i%TkKh*WL
z8Z+pdafZf>&04CxQL>~l(oGal3+Xm2!vHFDL0n^eh3bui0x78*XwjI1{}Q5S@1{a-
z>E_JOVQ!O9p<UW5lK{w9&!BvdKjG!3Bj2`}+LLPjZd;d+P$#ghRP3qtX*BFbz8gEn
z&KI5?%A7C!qfmB9-e5e-RegSgMX@(Ojel;#?C_GjeQ-Bv=CCjN?6^0{f+YI$%8Tad
zcz!7*w0ZL;A}02jj%+>i7i=Jr0*h^#eU-I*aTgvHPqey2Z#IKPNm8y3s*;*sBb1zX
z(ua@Jj^dan+NCY3-_b-E&w4Tuf1E4rF<L1=WuP6uv;=pGS*0Ns3`I6tPhJ{!<LAQ%
zv#TfU+0-pM@<LRyim=-t10#cyWxxmLsUTk-fl$0qn|IT}MTnrHtIWV=9p7(Wya|60
z&AMR>8{t>Jm<6s%kI9%BeL+vz`d}G%^1#lQf#Dri+y;ORaJJ_GC)DW#jmKwTNA-O>
z_03}5ERmal9^+*swqXwquuFieb_K9H@LMq1z6l2|L2vPAe@aqk$$@c`L9AS7-Ft|y
z#P66#*kTFFMmq;OEw}L|m>y9M-Zz+F;E6hKsgwqODBOtwPwP!4ume6&8WjhSUX_=(
zY7vJ{|BgdP&pB#Rerot9nK_n}!6@rg)lMM*T;#z71owTGjPm{hfru?b0x$2}Ob9x6
z-z5ZI-WX|?zyb2H(rf^rx@#M#&`c_%;r}+;*p&Sis4VUVQ2Z}NaU|dOjEbRZ!^niC
zy}ZJ5?WpFfx3B)D3;tf~K5QN$+r-8|lpvc!b+4Lk*G1bQjd8&fd5oG_IMq#@Q3zto
zqWGXOA$r1q)o3En$&|#9*SFtw*ufIbm9TZpoeubLk6yUZzep8!>XqZ*6LFs9o&0#;
z*@JjULRCHvNr2$f&fsi#)F8MeY$=gABYI}5JK))q2gbrN!ww2)*nGpG)#sW?=8jh|
zMcXdb^=_;W{0Ooh^VsU6D}!?%oL0S17s|W^5V)b1+<4y}8X6qg;IuwQ{CR!P89@Xi
z*RnMH|5*DL_&BHZ|D^2@)tI2ESjr$sZ4tDjt7TL%AtiMUins?=p@{}9X(wqjCND)%
zw-wiAvFlRZqDZx?b#K*D*R9KPMryaNn-<Og`+c5s-g#$|DEs^8^J(Y3ocEmPJkR&J
zoO>CbKt9nJf0OzD*j7ld1nKAFX(gY&7_Gv;5`00%r#lxIpnxx;8YSwO?&q$uN&1px
z%Nl$dOEz}$r(31(nAok-fE(qXW2WV3og1*yi`?+?Zyrs0$&a($J81;XGRI})V}AGn
z_&lAX?4&~E0*g*h2MI;&(71SwphIE`8Gdc*D>y@)!t*w7T(^6;`AZrNuM)kXwrd1~
zUfg7qOP8hJ_ZcRDd71GLF2eJ2M`F971LUL8!7fyMv=pl+@zL5oQ%(xcD`;G|NBz+_
zN-?)_UFjv|jq65C9)oD_=Ri4q*!>b;xE^-;O6)FyFG??oFyS^xm_^VsP87u~fR)TY
z+&Uj@lrPQ>H{VVE^8>rcn*BShgg2}Y_A$f3qFt9>fu>u*$luqWi)l%q!0-13(QBAt
z9el<6q#>_yEooRQG#mjM)}rg=YvlK_)DIn|&F_N-bU(}9Hj!8o9zTxhK<Iyp01WnS
z<nDDh#uAv{u%_dFvt>17sm67O)Q4nq0_-i&@oc>Pjgfhi$6`%Qk4yxVuX!9+NVyW8
zem}0knefazaM3e&I$qAC!Q6Hl%gua<&5u)iB8$wYf|m??_nYPun2#v|ff$r0f^f91
zpZ01(odnd8S_vmde218($N2=|88eti4}C~h&EU#qDYtge#S%R$syQK(5|~Grrs-7F
zWa#}OYW}TMS4;rfB$l|EmmLpkYmK^>`sw?wj$6$2-$KVuLD&$8zOv%I@C=!~6ki=-
zoK(a(Nz||eW?`k!FiQd(23|kPJr@LU*Wh-!o0ONlvS3=*hmqgC5N>{ikNEB-UU;MW
z;Fx<h!}SGPgQx?#fN%&I-zSbNP3DKCE~l2jidDrD$FtZ~e3@)ClIGB8GSsmZ>wA0|
zD!V<tf?*HU{GRq%X2;dRw!tRb3I4P~BB{@Rq{T;R9n1VytXVD(rSFMvuBTa!Qs5wL
zOh!KTsFe!FT#1kD20L?vCRDJQllR%wD(zTchJFJs{|OH)m(%z|6lmACUqL(5`+WX6
zQe_v?LIBwQ8!g@VD6v!{H;uMTDL%Kti#D*a%L!u@-e@#gJ2CRI1|u&^D{^(V(~#H6
zU>MV5;cc3JA|Dacux>E(5^SPfOkWFW+lC7&5!C<~%&O!tb`^KaY8IDjN5ipYNM3Bn
zKVyk2arnsi;&U5+yrLdM;ipDo@fVTPuwrOo-c)Ycmv~RNjcyd->1a4<sAbgnfYef&
zFLtCQsUt#&b!XunV%^Lv(UqrJc09xp7ILYA3Zr#IPlPFuAqiVO)GS@8n$!W1ojL7f
zQP`F>kP*BuWt5hW#G@=3`igpF;h*AgqL^Af30<q(ZYuo{BBuzQHvK!Aun73<`VsN4
zrI=HOg(CCG_p&rL&5Dyqi~G*h;ba-|247P&JQAEo>x?Vvc-pM|59mEcH8+diNME71
zf%Mi=Ur}v4x0&&mA<|sPB&{USBx5uJshOOShIKpm934pA=ZwX2F}D>u<Rgi3%OBP$
zr2vX_`PvC9015(?Bcwpvl;);f*n%N(B7kyG75W%=c=4brn5>e4RN)gNq>#o6Dtw_F
zTz^mm6$dZzi@a-M5HG>BqpX%m*P{~27=VM{J-v>B%~fn2V$K~03UJP2{Aw1Htazmp
zkJaSX!ogu$U@|MSKm4|`vcB$#(m+L^6<ih6Xx^?8;U~7`?8}QsFiJu_&4K@=nNsfA
zEf3ttCQ{OpsWR^>6R*L2nKNQKH8;NpV}R}yC0hz@YrBjKH0+VHhcJ{^HwpI})sOa>
zN=*V#TF58T!W&Tr+yFCfzB~+$DbFJ>2{q+lFuV`7o{epvlKCEgBp*;+U@paUjgD9T
zm%;|1CDU=;|MKPCr5J+cwn=8rYUs}*7>DlqehTs0%bY(3w!*`ec5a2`;k#lZI2<aL
zntVLpnpQF~H0}n-GnqeHehQD^kBUy>S@xE0EQdIR*1XLr1Ng>c<5LhYYOyv=#B>z#
zSs6c$lHV|}m|7StY1gxa*+u;Ei!hsDr{s>dV7hm3`~oOiDL;kp^2e7A5mjXF!{kqy
z2;zTcu0Mlf7AUZ>fbeH~^s!7^H+Ov3s&Mlt`a-Yps}XeS@b<bTYIkzYHXUI84BsJU
z*{?Mr;XgbA8&a@eH59c1Z=pS&eo(l1D3jrZz|-3G@H{(f0W}w|R?VtZwz#LSBfLd~
zK<35Q4h%OvC#G^Oa{DW<BsO5}7=)Oe57(wB0<l%wLp9LcoQzcAc?x{4{5qLm!S0}}
zmt)gDt|oG(t!3v+xam{0KU%DgAW0=n6C(nUM28?A_?zPb?Y-^s0hx=G#Egt-Q@!Dh
zkv|>w!SzZJoKE9PwO#}X_uEmaU|IIzfh=f?MX1OXSpaLMvfR&t0W9)HTOiFIjAUS1
zcw&w02o=bw2V!nIT601s6>t<@;rIU{bZvO0rET$|LN~(EGI%h+3a6<wzYW^cY(&o$
zN0*t6WfB)mpu(uSU0hmVN^EJUy7Y+@&iu@kCIX{Hx%cl{8eEGlErKoC@?A-(Pk=Z;
ze(JSE{@^R+XZTh8K|e+tXyPBQ8HezXG0CIyt7lWN?b|N*b}kNj0hjSU-Q-W^ufImJ
z?~<S4Im{lRRGWNeLmU*rZ28CH=IbTWZ8-a1f=4k97N^X>qiCh_$;XBm51<YhBqB`1
zbWLlG3M2zL+Wp!X6+-}w6A|qJI0&Tp6>JZA56P66*ct1)<TQj{dDmMd72$4^7=dV$
z?IWGtjhlczdP<&zopw?bbx7UAuntEuPE)}7I(rvj!ZD{JMi%5nHTe+bN0mO#QN7Ys
z$OeXhTrb+TGgh=JJ5l$T<)_S^kQsu~;L;-><Ld@(ptPImE?AJ7WX4QCjPpsYU*u|s
z)j>tv-ISSw@T!E^_E@S~sI6cx4Xubwgs=(%XTa<xAEMNztyS~+&?=WPHq(c#Y$W2O
zzIGH&v<x&Am@jHwZIg}dOorkiYiC=;*dOH^;s<Ht>Vc<)sRo(G=SE6Mot>SfRi)9n
zU_Z?}!c5f+q;MP<xT|)(<8LPKUvLR%jb{2|uc^3}reXhs3c@qiZwjiWt>zh#90HKD
zdp!G#jEdwrW!YLR{lii|97Bn`fc@m0F!tY)VMWp}U@(JRWDFFz76&PWB2p>IXuyBA
zDm~N#?6-?NfuSm@NDWn_Oyb<vxlcrMSGc(u5kf5Sbu9ile9c_-T=Dgr<FIS^c&^QG
zjgSSF=#hco>?&E{#jqgWnHO&Qp8KAmMpC=vxS|;M_Ze5zgiaqs#R*zls`F)oa*@n>
z$#~~h=pvVabGIWJ#bQ?>I>TC{xOt<}m%EiA*1LEQh+}i}(#X^vzb2fE%!0$R#al{N
zt3Vi}ItxwHQDnwS4Fdx6gDUiA2__oJd#(wwhy`lEj<tDpXX5{j>vv;K#V+Fo1mHws
zS#4v1)NC>LmURF!rV;cxnZeQEzWh<>Q*~Bz<7{NfVmt0hm%3r*U4K+h%)6KvOA7;n
zSJ&=_h9ET1td2$6hJ=xX9A{kU=eI!%e(4pO7N$8JWxzz+sf&Ov@Ig<CvRE@hSAOmE
zeKyNEYOi!)?x@a%gs=+C(?|Mr1VC{Mb3wi69-S4@udOLkNGT}(WbIMJ*Li4?ZvaIb
z0}Tj5yiKyD)dB6*>SjJZnS@vvc-Tb**Aij7^h~M;(V&B9vjEq(s)N2;>o9FGjRs6<
zkoHzva~ooTc7|B1u#`KNq^|?Ez(7YaFj@fm;IHwH7v}9cO&P49gJJ@x&lIuU!3M%&
z-cTFlO+T803Q9Yk8m5fx6&}ji*Q;5sZ4hoGfm1-2l7-LBkoe<y`5E5MA0O&OS&?}a
zJN~CG7mu=Gh(ABlXGj1F)5(eqcJ^o=%*7Smzn+@!#FRQ&T2Vo%^q38r?3i;v(wCo>
zt~~d)-r%REYkx-p)I{3~8?N-r>5p*0bmxJbRJnXDi<2C3m%=#rn~EbL+hJwFU+G`k
zaJKRD0<;)mp#UL$ZqNo0V0Jjd<p2ao4r17B2ENB7f*S;CX3tCX3uqsE*?{U2+K6RR
zy6xv%DwUuwp)$|{_(qkkk`vxl&+Dk1Q)sQQ?9UWWWY$3u^r%zJOG}Wv?7VhljJ)ik
z{}R)A0`sz{zFRsdRO?d{7%0ToqqVjV?P`4eRv2BF$F&~RG7t-j8NlpPqZNf>x%mKW
zm!PhzSUt2){$j`ahJK*!1bk@c$S;ZJg^(zje^)M6kfMchzkHJa$b%tBH;;r#CW%-9
z+7C#BL8BrVoHO`F#lSwlfSXRB7l@+q3O^dio@iP~GS>X(3w1W?(D4<w1;Gz2jrmlL
zzR5CL^znWvkdN8@UnE~C$C^u;C@;USP|DYv1zx8{(>`SK=}O<>qxp{M4L!J0osESz
zE~YY@jHSMl*8mXE0Y6UWts$Gh;ZFIrrvqW1?~Pq2hD*X2rTz(JJ3be|Skr1e+iU?G
z_#Al$;P(rLRA><WL4UpZ8=BHR8GH=|Q5LGBk)YI~$wq<{$?CHeIZ`E&CJ2G}eB?ZX
z9dQ_InQz|h6*=d2g@eeMgjtUkITjy4&cR3%M2^K&Z^*fKiwxvE`LEuQ^Pr%rXXI!p
zgvPg@^njd~?kA;u{Z`<$BF8}>Sp}S8%Ut{rr~6wBYm6Kf!2uZ}IO@2X5#Fl#aLroR
zm?)v7F?xpm(z}anwnbgg9GUXZ(0{eUe1a3&QXe9I>}9;lgIF2$NqgZz%;Z3Op_1Jy
ziHD12#yQ#xI`h1#xJsTA7_G(Cat$8P3)jevMPaSnpi<gi7$>13$A^IaDv9&hB1DB7
zSbrGV*~QiJSlZIJ7gx#+2ex20V_Y~RAY?c9W!r!-j--_SjugVDuy3lhSQ<FeJ$1s?
zcoAP)7;c(0NUpXHHy>2UHpE^(U@9vMi!pyRGT5%+*iS7dfwF2930NOLvK}H5qhXJC
zhQdt`v$HYI1)Yo0mrB(TZg4aJ1msDc;0!;9X6KkMKUe6<8?KBJS)+K3#csEsPXdy!
zz_yBgV_mPyM9kBeI}Qh)c|0$M;0)#kGIa|xZZSHgC-9W-@Y2}ar4``kGN}W~<=BGl
zS%KGw;Y0_78FUOgjo6Xpw6h(gkrEJ%<#{9;{sfXycf<ZU59d6ycFNLDF!D56(LUFj
zf?<&U0+kWUkO){t&<f1T)15a#X(#~9q^mKNm_tfK2x!9sOPTUsSJcS*e-NW8e|xcE
z0!;Dso*}6hyjep^*>naP3c#o_1vpozq977WVApBpuTytHlT-&Z;k|a1@O6a3U5c!j
z4F0!^bAaq|$#^5=VEa@SvI>Q8D6X{W{rWNVz(NX#URNTHrAHSU<<#J%Q~@>R-AQlN
zL&>nED&CQD&cC_}d4%VUJ{=Pe&y6Jyj}kRnt&__3`oZy(q?h0m&cSS;MAc2)UYsXN
zwV*i4m*8WW{IV^FaT)JM`D9C;y|fB-9h-Qi9GX!cUpuJoL>=9us9;&J{uaVFQ}?B)
znlx9h3OZ~TMPVg8iw0m2t*~_yA$~xxBUWpaIvq|jGh=gNG~GFK9y26~;%aeCvNiBP
zo)9U0NasH5aY7Q{$8w+sQ+g?kqLAuC0%Ql5%dwWJ9c?6^E~wQOBxdPY76hAQ4wML3
z%IMZaMAhk?6Hp;B=r>4!CTXqLj<9?!f}VA*ErLo0l2HUSjo$+CGXB6O$|-0J%6bb7
zVq%UXQd)ga+&~N^3nz5atv$hNaQl+oHzRwJyd|rN0MQ@Rv{J66waD4$(&n9bs`I|R
zbUdL>D08+o*wa@c-(;xszby0CWh@i6^pE*0<Z9mfG8Qqp>Y~4<hE;@pY!ahMRie?P
zNqQ8Y5r=KK=kZ^2@GH;;W*hO2@NSf}w-+}s4XB~zE03?+1alb%$W`BP^LSj*?ED_T
zvBbb)bGNu`=(P$4ls4UgUaY{F$#iyVd4*45&{oDwPUC$N?c8#7{=6YOk2Xn}3O+}N
zu*9|N*@sbbiqA!Ht!`opdSN5bHvX}vw!~edwtUW-@fn63AKHd3MQin8Yw@hrrXhIP
z?nTw50UY6lIRwXW#DMk^Rt`$$Bt*x}Dg#CZCg(%-9BB)zVo@h0xbU4+(<;r-I;oAx
zakR6-&2O+=$W5Ho5*hly6NKyEd`}d}1QbT?EljthktpCFE(uWnCG(eP(p9)Y+;Irr
z@sfY61H5;udI<nVPzoC?$VIgX3+f7CLHH0ZsjH*~g1Y)n@<s^`mCBAkQ~v39mj&LX
z&a$eWjzIFyi?L&>@O=JIbye4oc^?gRZi2!nDMm3(Tg-3<JsG{~m26l{L=2Ly6H)#~
zf|XK=kl}8y2oRVrHKTZegLb)@)yA|;W~WQ@c(dkh<Xw|>ONg>a3|P@FiD4e?{Ze}$
z<-HfWdlT0XfU@zCn57AS>bW7%bZ&;v)fj_l5{A&{qC_DX_=1f^@g$3u%CuNhSH@}r
zj4)iZQ)+zF)T!~YrVhqOOkGAJf>}1$ERhEqp!Np2+CC^07B!nn6H3F1RH<#ODq+wc
z$VTY`*{1X*w_$Ozv60LHc_6)T{-M$n`4oQw-7}Pq9lr=SZDN_OmC&5E5~BXc(t^?@
z3_USJ_me8_fTU4oz$;9(4P`t++g-{KWTgANVg1n$BX69kR~9Z4eh3TG@fpN2S107N
zize+jD7R9C&1Jc!KY~`WP)ehX!L{Tsh5|S91vhl0e;vxoP%NN2BK9S<xAf#XxVE$j
zAJHo>)TAf4d$IM1mivWg<n%>x@%FV6?9OZ>@Z4N$l(keo6Qk?^Y_X;21-8s4cA0*J
zJenn(K*U8YnI)8>3W7=~e*uiNSjD0!F3dkme@t6NeC~FIar0VOSs{R2aCLx3H22$9
zDA*|wk-iyM4&_XywXrOs-|RX@BNXg90{6$q{_7@fL3yEjwn?jBkrYZueszzkpKur;
zaG`Ao``?h?zes@6-c9{BvE8Q57s%ikrui(xgs;>jb~SpT`a9T)M)UFEmjkWnoS<~P
z{M_3^NJM;-wP>cGUSPT<9wa*n030U1(ru;ymX(s7l3U{Nyk!16|IzmNOyO7`az|+&
zU62etjhC3hTZ9RN7%z8rWHhoz7%63q2K21MAzr=ER(;tR7r#cGD|x#It4vn<xgn{U
zzJfJXvO4Y-m%uE{`GMyWexiVWZ?NV~#Rb9;$PmA1|Iv)zR^;SpUrQ!C-`%qrz2gv>
zNc0;Kzty{rm!Lr$DR>$oep`eg79}E<OvGQfcQ)c5AlVGd{v+~poX<x5T#O-a5O9*0
zAbw{XlMCW+v^nc*1T!Sk3w^zX<5X*U5YYVC)-$KJw2i#~1@T*1D;hw2Y7@EwFVuRg
z1^S{Ty#u}ImY#sFycYdWkD^A*t=QX!oC3yahJ2up&P#^=y&6CVuNCNs&>g!8^yPT@
z8-cz@P6p5qT=8pwe#^4%K&P#l7I>~ecd%4dVu(1{YO&ZORE~zvZ(_jjXi6GD*acD1
z20<j;KFxvpXv>yH!UD$9`km|96ahmD_(8n0Fg2BX{VZ9CR501?{7K!&gTcMR{R;c$
zq^{+4Q16rZ+kXmnBnu<*Gk6F7h<Or=?7Fv<An{kTEkQN_X+#n11rvgDOl~$ot65@#
zLC$y^GV4Hx+Lr+3i)_M*WZ}pIHbWdbcocs?hPH*xF3UOEZ`-%R6u?A6OfXXjgqs#}
z?4Tb**)}kSEulI1O&!F6S<>Q1<lnr7mN5i^H5C7sj6dSIuJl3^6BoX&SRrkxBjwdF
zb*JWNys|~PJ|){r09wn0R`e32?&As1wsw29V=)c3L`!WagU5Bb0L7GC_O0XsOJi~o
zkc@N~s#7QG0svrXZgIN^NCr00>moPkEf|{wS6{#pzoe#AmcoNeD?tIFxr*GHkAtU)
zKljk^;XU$j!`(}lr3a3CYsG`@wbI$5iftnSbCqrAp_(>Kfc0|o8Z=6akxc10V}rM+
zK-VM=P}5t>8c2GuvsAuYf~{+?LY>`<>njqNps6TIt-z_`bl(DhQ)XN3K{5o!bluR{
z0`vKfEJAcb+K340I_}C;uHl#L&nS4*B>tp(`o_Ob&Ze<X8bwSXMP!HiQc|hivFzV$
zwuiX8Os(BoGA{g`WGp1nY4=6Osm*ZMv|>Uuj-+;sRc-()=sF@7obOx18?W%`*>(Wn
z>xJDcdNdDHG|<32=ZlO1fMc$sea|E9lA{bAjYgW_0DxrA(I2EzRmBXC^w7~g>joeX
zXt;88?rX{yO_@1#^uQZ@_i$z_kpe-^S_)O~8;QKoV+hsrhmIbcWj&Eu5qNEfj;K36
zpBDL}x!_YxkWaO8GfUc;iFDgB+1Li&ked=`x|XK~>ixqr-SWK>eokzG+Df^m%%A}c
z+QNAmjRI;Srghb0KJ_oO*Hf#EGD*mjEHQ^jvSi@(u?#bc=Ll+#map2Q<x3lfo4)tZ
zOf*MecsNzhb~zfy7>yiZ8}!PO7Hw_Mw#BB~C&~t=L4%&jZW-p^Q$}?tyjOm*22yZV
zkZT!orzP7WN;9s>GL8|dFi4bebAP<J7i6!x&LVrO=X*tV>t`9rzU-PFkX?f`zX91V
z{Wk;I@4ehRvR{Ao*C4xSDap@5_8Xo<_F9R=^mR|jJ`dfuWLpvEG;aW5=i9*$Q9~fi
zjNF?TC*!^RHFq-rwZXD^{CLeaLKT3PGl+rlO2f@|Hi?R%_ZV<P*9|cbGeFY`A(ogA
za0p&E-9}xjp~W!}z<SrnwFn=0w>Jf5b35G^Ii)Qd^0r37D_nK0lmD~5%m0&1`M3J=
zUn7deLGc=-3CiEvyxuI^OW$Y8f9WsCU$D`$Wz$k<*@|SQakl)EzWilsa8Ulf#XV7n
zHt_?onQDhb)-0(*n<6-9l@$%Fv0RBnF?J|CaNTMmX>K#5Lz|hMc0KlxPFx~Gn;S2{
z(B|Hsa%l6cSaQJ5=w8G)=INOC_#sVbkL%$DBvFBY-wS!*D`X|S8X;GOwKKg<89emg
zidr1dur!@Ec_KdC3tR0>J_F|>Pd<fA;es9S2y7y<_CQ%8y2HX)?$;Ux55Z({f*KqF
zm+X9V@L-INi<IyR5eQ-^b_5~*WzS4<0!BjP+-vgaUFf^brq7`6oXVuby6O6RV~RU<
zF!vckdfMt1@*?qYaU*{{`wRH9S0+5KB?q$L1oN$!8WMK?h(SynKM`ljo`opx%szvE
z?D{5LAiWv%3GAQeUbo>B+P?{J&c%aXX#4ej@EMd0w1CxgA`f4$s)8DeW0T48tg$eF
znG7W+y!?BHYHK0J?<x^TT+(W_?Lm76xp?*}zjq4#9}cn^{U2Hn3plL^tb>U!$!r!L
z%c1DeXcNBok+un2rOs#*j^Wrd8-(q6V;h73hs-9|ZV&0#k`3|D^?{KBHmv!_Yj$|^
z59}!ThKh?OCU4P8*v?<X9gX~*wwUrkw+}F*d6QjJUm&|cTgT1Px?uCk)VPPK(;#<Q
z5C0~7ny{VgHy`*Z&Gs^7`|#^B+3x0B*$FJ5lSJ{4G`GuD55xg2%1$B^H*Nd?@@YV+
zTRiK!4=il+%=5FfRM96WoSW`sr#k)0QccNxKzt|k4`i%2^3cu0J_DJr(6uXBxVnZa
z0*GU8XfWLVg3d<Xv!Q=J!3A(PNJ0z*5bU7K^~tx$^K_s5EV)-VF-NYgn`pB)1?J1q
z&iw(=5xNI)QR(H)wu1$=jp8Hzk;k#Xb!FhX%3XVfZC_K4h(o>EmQeO}o_}q&D48uQ
z!7M422rG$uX3KkZndp(@y%)M5Cooub7|8)EH4mCTXm}C00wST-yfAatXbnrLvoK4D
z&ZI<8rp<Y_1CDutw$rkF+G0vVhFZvJ>>@zdtzT)RI7@PnNO3{2au#C>(yYcC4%inp
zuA3O1{Xz@6G|V7tm{GVLp@6b-SQmb!(oI_6(hF#+ZI+_>2JG7@6Hurq2Ps#vUc|u}
zJM*F|+*B9B1$d-nVqyP|;iiA1*5P@WQVL3N1adPsnQvTsPPlnA8EfY)diiD3=phB{
zZcZRJ1eSWS?SNrUxn>iDCe+>(n5WPeM->-^5ZO53h~T`!mYLSlJwI1P4NC{G3v{`}
z7`tdB^Y?jA1B)c91Vk_6ueO;~-i$0ZLn0el9LhwB3~e)sH0a{|HdFpZU(rCZ`G9H_
zn8x-VL`ppRInf%uC&7=>*KvO=L1l5|@cq+)_p)BTaqYzVEz@i)Zw%$6=E8n8uC2om
zFN5<X?Q9mp35<#3-5fpw1Eh1;DKi;D-Nk*2a2Bw)_bP&4)Y*LxbRux9?^S0b$en-G
z*^<C@Y2dodU3-PAze?+@5KOOW<|VTYA+r@*!CzFu=`6Di>MXN{&i?HuVhwd-tm1T5
z^XOS;KU=LebQ%-XS(-3Nxxn1{9NP516ZWdq8igtX0Ekt-vhDxQ9#jaw3l%0#J)VTx
zvvq0;G%-R=q!&Y<&)KZRO7e|?po9(?k>4u5O7s%>Rg(<ghV)2!-Ls7RxI#y?6mf$b
z1%X1T$%Ko<x473jY4{q1OWv=C%f_RAHC%E~I{yflyufuq;JV0Ndxg(-q~W3gIpH!h
zkqsASOSmx0AY7Pj5H8FbaA}cksIuUqdGrjIC%@Dh{-TM`SwMT>gzx08B2Nt<jKJ<%
zp_FhMzN|!gsFw35-9z>CGmzYTCZ(igGnI3~GjAVE8w=yR9fmu_*kW%Uyv1(QNEK~@
zsooh6=pZQ2a?WjNS_$KgD@@8e+`7D__@$v=CdM*t8&=BuVXi}lpx)b`r@lcO&<?0L
zp)L(vFAH3+bk|;?Nu`BKf&~8N@tN5|WwsP5vkVHA*#?EmtRd7VWE-(8p=usI3w4$G
z6*l0urzy8gzb*WK1Omk_ow3}58rPnVVN!eB2e%V&po+cii`z-z=0<zl54YHC=VIK_
zoX=j^Qc-*k_w0;+f@Q$#uu*9q*H*>XVM_WTsFn!!K;e;&YEyXgvxL_k6rRlTGxa01
zY7uI>*lq|B9S|>ZPnmL<H|y)5g>5Lt3Gacx^`n97`R>{){JlvF?@?cP-#4r9T(bou
z)A)piGs~dxm~Bva%o@V`;fEd!xaQHb@OJv*S7_u%^I^cz9S#3zv90VmUV1$czh$z=
zam6d#`6?S?jDJ`wmJTs6pPvgelKIP*Gs3993VwKO1F45s@Iwd$7mwk+4K8q|vJHD}
zhpbqE%-~{+e`N$0JCXD_19%%zh!mxL)AA%~vJu5&;`Y4!mnV}11{CK7Uh5kB%*wwT
zQO>bHD%?B+b)oM%M<%6tp-sg>LyJ6)${@}`|3_1%aM1#j=cSk?z(6g+s1uU6Jy7k)
zQAT8JSGsoc!vEFu*aLOaF6i*QRaOkSDHF7gO?JS9&KPCjTj0RlA@ecE^d1{dm}&)g
z&!2l0T+uRLaI-J<1*iOFRM`1Orr<UZ6`uHMhTzVh2f@88YjU$g!8c@;LYCk*7ZNDA
zM+2{W5FAWJk*OfJCLnj3kLK;Me#P0KOTx_s_LerNKHQvZZ)t<h#y)lUD)ki>r8*~(
zx=ixfJ=}CE6gj?dS>xJG!ZUavLwFt<z;Gkz?`XP;!-`PkMk+go_vl{OaA?6jb85jo
zt<o&McSxg2$9j}u4j>z}Le($>{9{~D6S%GoTsOFDukb$XfS^r3OjMMDF_2&`nwAOF
zR@;rKSrSt!N_b&p#d{SxTrKatQ0+H_LzW96X@b5UntpeD@++*6c>-GO#->rIMqmPL
z3^5Bk+1C>YDT~Z!e+x{RXe48t7hWSbGH2JV5FZepd0rkXa0w<Ut;Zy#QxFQ^4wIDD
zhr%<)sY@veH%&oRf-xa?A|@M@BD9F@y%L2MvAw5^iGgZ+-%c9HCw#k9u2~xfu;xch
zs8XY_L77KE4gaLMAGodzTvxekukf*toy-H1ea#hDWy_q|lGqr3L7<a4vkl6eSwrSi
zuqQ}2nQI<Bd!7eZ{R)|X_ZXCIF?L2_iS4Xp&+K}2uO8Wz_C&WeScCTFeLWa7$QhpK
zuvdJ8ws*a6(6rt(XuIP5Z}3DdA7vP{A*{+;o=)1$6RrOXY05Hae?^~xdZK>@UfbPX
zY_Fc=q(|M@(3jYG9t&&~JIVYNgBcvN1vTPj?w|zskvhn^L%JXAeDhaHlm94x=pI;V
zkx9Mxoebz<E)S1i=ZAUxuvbC&?uAK2y^tCF8I)55hi)r#>~18@y;kJwTaaSjenjU-
z@VN0%>NPp^DXmpCSz1+_rBw~Qhutg1FaLO5=B~ZaQy&rcDAI!+V^Y@M#HVEAo}Ux<
z{1mwU<LUseqs$iHYZ`}ZmLc6(yfDi@RPLA9PNW{&mD~OmV9<#rHVj|}S@RV4%gdg%
z)y9(8dwnE{+pr|e+&vr=GR#O?FXHu9FP^qj)dCS(zhV@J`sRln6otr*`4Cc75lhGt
z6!CSBX7+f`)-EOK^#0cpXjprFLo5MAIg`RZ?^p4{_IV@7a}Gtjy*0?=x~Ib<D!|b0
z?^CtJSkgfr@E36Nk1{oe-P-PR%J-g!C|{+a13?~Q35o8Kf#)gNz#@a2n8m<aN{2!q
z<f2}TLr(@HJ?I5MI+;;%#-~jIQ=Xv`ZIUBY!u)$@L?8c_X*In||Ed1j(tm&%{1)lY
z!<c*wH1yg9*gVNfe}SET*OT-&$MFxsv|l6r8~)O}^uPFfhV(UPp!8qIi=gz?<n}84
zJ>Sice)M5Tzm4;a5-NTDoYKGV!Jeh>1)l#l=^wn+|0sPC9u1<Y-5%0k!>KynCEp^n
z$PLek(1)V63P9Z|&Ms&)*iVKJ3(QQcu=K^5BNo7RQ^VHSez810Zho^aLQwjhB-$~?
zzPK$P0<$KuaA<J5Ad*bWz&qFBpd$tQ-)!mdL)6Lf8XJbXiHePfg3yYJkfmLdwmIR8
zE$R;aqZ;1;>fBVFXBPRs`2GutKRBvjtME3w{|&zQr?)eFasHpdg$uFALU&($iL88R
z5~D?fL5GpQlaRp1#W8``))%ACk4$Gua7P3nuBFO0vLFgElK)$~Zh8^W@`B7+`$eb!
za*2~wGAi9`V88446yB-1R$(`a;5lR<z<RxFogHMw;GP{ggxQGvCSz0X6A%zPh_F)g
z3X3kXVn6EkZesUc&ApD(zsA_?^5@=-&E*SwF*c{;#cwb+FT9muY*zdU$k~TWjJp||
zGKnm^yP8Pgc@M@09djZLsyPBRs2+eKgRDj7@0$m$&85H2*I>9@WoR?Wfx}8QuBOT_
zuqFXZS(BkTTXK$S{w@3=V6{(Y`u(WjjpCaK=yb~p)S<O1Ef@@;ncZ-}fZtgU2V*x`
zKn);s&I*G?Dq&AOM{>F1?m{-EfGSk*MY~-edgsceQN`VmB%I@9tyBC)9zC_NLnben
zt*p39s8A?{S_Q(z)U^u_RRxuwsF5v>w)1@&-77e+uvZHvCNB=x%+GptnMY5sC{Enc
z4aLrQt$)rpUis&Ra=ML|eT4Tx<E0L(*YUCg-^?&xmG?nHkA9gpUivw$(~}a!Wf`xl
zYe)iL-xPT58?Q9y(vxe!b=v<+iybq%?^XxqHnx%JkOf){X;Z^Jv6`#JJB5x5Z<dp6
zjN%4I;Dwuak*8xgjz1t8TmEqjTQYLS%EHtr?()8HZC^~lSnhg8Rr+*V&(#E4@sHX<
zA$B%vFu|cfvK?$TWBUc;zP`63I-~(&_zm*IH?q!I#+TjP6ZlZmdbb8!Q6`8nXKWbO
zj_s_07AX)X^^D1MnHhS^h0(|#y$`KQ4sJl3D8m@c4;wiU@cRk#9!;OVIu|zR;R#iK
zZR+oVX#XM8BgrM~^T?fT7McTM-nM;k5)t;0A8>Lku`Ko0uQLT^uFUZL1z#LL&%*iX
zn|g)wo(p_9A8?KjXA4@ii^F&ygtG>Ay~4TnjSM(XyBl@>n42FYw4+ZyCtg3llQd<)
z`I)mFoR<V%{~9>&x~YRRdu(4JCIa0_iV<ryz<ajtP_~<hQe@`b=THcYL}>8{Z0RE5
zuNS)cvvdnnUm-WM!$f5)fJlHO;DKpv%?Q6~hUa+szl8^9764fH*y)b#0`uOD;QhAC
z8pQV;nbn_b(eUu>UeU0_(>@wX&*}jUxp@B@&~V0U8EBZ)1~jbTn(S_9Sb0YeXn5pI
zhlZyDuLTXk9=glKM5Ox?=Gc4JL)T{ST@T#@_CC$gU@r?MeL&sm1&@VWp}WZ9Xioz~
zjfnC2$8L$1!1b)a^&EHY750BU-AyOd(yE!aE>O7unqpwkpNvn4MP^C7s#>BS+1{%*
z0mr=eLjU-H`~pORBm9~N0gtCeNT}TzyfA%U(;7-l3C|m}TjHMSUB~_r0)y!j9RiXY
zI1h)Klj_ek*dWVqiX?|eHf5L8s2%u|9<S|>EIOXSq>XU%b|^SwNOqb?!}giSyD%i{
z#`0G24SLZ{mi*Sp^I=dmnHdk=G7k=R+7H%6$TDF~PZOwCvF7-rsNjwK>otMvPIv7U
zp7v^5R7wy<HRSwkQ88PV%PfPUVz#_@qGHw%)o$<iAS%tHXHlK-iq;TPl6GNGRKAPZ
z;tnX-C7*EQ1FW78Kf=LR8R&ROZ~Dl{D+glnrmx&wha0#Z8D8}cUyUWaeJ>5Ah9Z~1
zPz8Z7X4_0A188t;d1iub6Ivq(h(rjHb~2eRySFheKg0w2OU$J(;Hh~Z+fkbYtX}FM
z*^q#ffM?t8ceZM9qna&7H9f}!F4+Yt!X&hC>;^~G3~YOx3*v*k<~ErHoI4BC1V4Dk
z&4kUK4=eM5WqZjU<^wy$ll{rd?xbo^lyM%dxj7*l=l<k&r}B;J&*JMUs;l|E09?Wu
z5+vRNoGoRHQAURn1!4v*a1Mx*XvE9hbFQM$d7lby+sGh1Il<2G^~*p{aP!7g&HNes
z;pZBaTy!f4^+MGb5RbHVuo5NM1cM;G=fiZ75iPPbt4QbY9_X);kE_xH0(+L?<&U4l
zS)IQ?oOv3PFi0xuE^bsNGBfP*D`L*Q29m*Edfn$|@5Q3xtKrrC^A@~N&GB|7DNP}D
zT$-G`Fk??uS1()xwzyJIxCRoVWO<B;ZA4N*FEbF4o(<(9krXL52f1H_W;;iFpXPm9
zJF5m$F8M*&f02H6))j?T+X~B6aUA~{^G?FvBXuBQ#JAyVzvVa1A63%afj+)m_(?wi
z2S+K4*(z^LGIYV?;haMl_OwYM6<dLi=@P{oNDc0}Jy3(XLr{;6>j$z*l_VodR>V@6
zs3}IhQSxHEk$*&p$SJJg4>g`lDlo(6KxG#4b1=+)4kF#o#%`gwjj|xgT0NW~;q1m|
zHxj<Al++j%txO$^*~mDU=D}krzL6;0dSfk<wTGIcJIs7>3Z;mpf+PU`i(7oj2Bns%
zRjf@k^@7wUNMcQ@3T2qBT7jp>A&YMF{jq4D^MJMf6WE@S|3Wvy&4KIbT}6CI@uCRq
z$}x8hRE>;KxL}K0L<}|YaWojFhC~xbn0E9hH4WGctWI<W0R%ZOdw~fc10|Y|sjc|d
zEgC4GJWzYf^yEnZ^(6(d<R7?Q+=!LonOieYU}<InFNVBW;T;+{m!`cUcZsl>M}mkm
zt%G2vpfS(ZKUiy<;$>te7>`}N+1hWl_No*$zy>@=X$`OePd=}Zs)l6M5`<D0FwOi8
z1MOOC2YZN=u=ff_UPQ(Ygs{hhXF`YPcT--weZa<5p|zdNpYm4;Li4!gOk8*+wuQ$N
zrVC8-`;l8*$>4Y0{-C)Z$Gjk)6t-vqQGt(=`KR>}tXK0VjrH;yfpx6Kq)-uF&yrFJ
zi)o7+aSiT~d@)<lY}5aS@4HeH3FVB;2ltoEhyRFW$Tm9SklyOqOekllg2Ab0vWfDM
z^C>h=d6-Te&rY2jd@r+44!<$8lo^?&U|ZQPbM$vV@W7i4BJ)p?&kIkL&wXt_44<b?
zg}#^%Tc9~hF&V{e0(e%;t(Wn}6dRpPzl$o7Hn1L6hI#fE#kGNH4&o4M5aR1^_A6=k
z?&#gP_QAexWJr~)p$Q~UZXHWrT)-2nXWl3pfRlt<MFV8PObnVp0botYl~`BPg>^MJ
zLvM%9m^TtA=dwc{Lw77bz;SMUM`CVa7}p~)wJ-*Rk36S->_|*ZYsYk;1K}orTAFr~
z2dbOgq&k3FC~4MO3Cxuf2u)i|1}(xNZkxv2myO&cJo6zk#x-0)36z9k4(*=#?k06y
z5rU;e3L-?I?rs$Y^z6V_m3^p(L;_ZWp^V%f5gLZYQSaABh~fuW7D&@hmrRnlG`mgS
z4-3ZGk6o|1*N}wTj;CS?Shi$n?=CE~Ne<qLKWax9FAkK%PAc#%w9=I{+6}29DhCZb
zs)st#?1U&E2oto?z@Y%t0h-N2-b<R^tUH0UHVREvW4%!BKOF0wzoYskPyH?2r}b=;
zY^lSAr>>W}oW>s|jyf8<PAe{SRi`cn`6DOR<pT!IoI96VO|Om?1$oLpUX!o<<J8EY
zxXlG?sCMQp{qdTiPxE`!Cy6&#GK=`?DB~OWIQ|DNRl<&KG<6HuhHB6Pv%u%^#Zf)5
zK&Hfwum9MF|Me@$&MJiV8-=G&V}1@|@%BCnBxF>;IeR$i3FjNapPA;_nQ()Wia}(`
z0?7lZqPQ>@q}-{@C<XX>sjdgQ)a*Md%{%`Q9?WV&<u^qIoH5B*pCk28vaI-O7~Tnh
z1?mqOu>J`UgbSDt22;4I=2d~Y5b34!TGUfu1nfr?`>x);X(wKb%q=%$)>V44fpF$?
zAo6J-f1}`UY?1je4w4x|IFd8$pF2;EXAty$o?M&M3GIQ_FcTt9pdpZxGItC&|CmQP
z;8;wY;uGHu39yr7Zdc=vc(sbJI0<(88@xiGO2lEQV0h+p^3^d}$5}3?)`%JA(VGBt
zt?VSL-(jyvs9rQS;_ayihT|2;AUtp6UeU&`@!_WPafd6|yp#1R5}tmrUNwf}_hF(y
ztV@h2KcBJ?ht|Xr%fn3-e1ZAPZ&ER-P`9gc#TRX4O#{{GrK6SKV#TVhuDe*;jxto)
z*l@0`B7zvhVFuLonzwk7_$PBLqYdIDJ62N0I{37}y#0ip&>JOp8_6V~K=MR+j1~bF
z=#(=laxf4d!#vf-Ms$X~VJHK~_;pr{crol@oeoOw%u0_8!|~Jb%9W2J?FZywD&hEW
za|qg0;l*;xN30Ed3*ZjJaUODn6css~4}C^>=B=O#SG!I=2mkL_zbzO!sbEaYfW5GJ
zRv&OzBh^u>sVPi{GwVLcFf1@K^N|Pt_`F@NaLR0x3_GF54{HEskMBbsd)D2G|Hs$O
z#{Xy3KQ1M{*l({qSK{Xk3ts84B~F|iL%MS;Wk@%`rF)L)?(x%wn`Kiy(vMXAT`DfS
zF;iWtOVat|yA&MuGAFwfb?FqFxD>}S#R!)IQ#RM(0R=SkL^up?p7H>yT|Q*t*o;%`
z7mdwbRKebdA&79{M|A+~E<~ZQ6xetw-1<>2F~Jbq8wYG6YW3#ilyr3gJ;SE`m;<PX
z<I>@V4}gdl!ZYuaFDxF1yqy_KFOz*-K+0I|rVHCNWSLqfac(8HV3aouCsY9&&^Kf^
zD(3@SwjLyxt8nS<i_3){_YdV1cXe&D(3_T%lbbW@=PtZz@{l_z21p6z5z8k}rjAs1
zKP6D6uOhV{-{aI0akS73;J(Pr-&IXEY+CyO<{4q0a4*BK%&xn>Kqnl;<<vG)^d%uO
zpLAtXH0gh(XctQn2w@GqVX*1HNC-`SO=>tCr@1=iQ<GXoyj&&^{x7;>_LVHm^M+af
zUvh#5!HE70Y2XS*l&yMPHBQ=w+7}jm$6+f__wz8<*c>SZ{zhDvN7f0heMv?+<_0Gh
zRj~pkz{`7+A)Pwnr6=q*f-WDsE3C0bU?zBJ**W0if30+)sha_Nv-*qwD+|pC$)dsw
z%|dsqXjlA&ezE1BSX3iKHkVceTneI08$LFW0THG{_(^Xe3>fk4<Z<A~m1A&rY%IYT
z79G&2znBX3A2&VX`w#U9>NSurvgDFc<Qq%jBt68j$YTW#QR=G|9r4lRQaTEWtFe}p
zCYpog?fA8(8J#?trr9j{T$n_kwjx!GT+NgE#CkRc?3$t5C(;G*YWI7~I5y<l3h&@R
zn}1EYvrpfoZGy?$E&w1gH}xAKT+FRIhz=1Za#+}JW<V_^pa27E{RqUy5n=CJ%y9}&
zpNs!Z{9jTh=qX^x4uKI%Q}5vgaIfJ)>Q%k#Sc69$9p(l7AQ(IUMi*zol7%U|96{Qd
zn2_5&p2VrUj3?py8H`Fi?S;zbY3Gi)_A+fdpiv_ItPC<M*y@*_SvevPO|I~~{J(6w
z5u&BS2k_GZthF3lytTQWtzJ}DY?$mqaVBp|rKy`Nz!|78YSDt&h<7I+92<gD%xls5
zT#wc#PHEra^;oV*q>APoPN<p`)UY3;78Jw5BMg-bKh!tZf2Nv+DA*;bb{92rfh=lC
zJ22~q-rHUV-e75v3t-dnE8^`-ugKyJ=!fQj?gShWY8M4(`W1IAXT?w>vc(0}Ug78~
zLV!9w4O<CCAc2J!u_l-wJi}=yzJi8G5HCHSK55e$K-z>rY|R)ulfJWiq>lsATqNoW
zOVbn@GnF*4jX;{XrK5Sdd4rVvcQQ^8Z<Y{0qx|rUf3Q~Z)nMxchzIzoAuGV(G><C5
zqx8N*D7%`BLXvUd*wH`-+%QF4g@tBd4u&o4X1_><aXL3)s<7W9L3R#d!BDztav1ex
z41lW$!|kXhEMXl>5f@2~%gB$YSzv1mF$#WNQ`vS-0vI)D+0-sFeNpGsW?9_N;(vI?
z9a{eq)*ofdf1#?c*<42d!yA3nQJ{W^GZY_a5FQ31hrNvf=n*g1Z{MUzkDa4Q1s>25
z<`m~~s$htM$P2X{K)qzM?(+)lO^3soL*C<7RX?lGP*wkXv;U>2$Dw{bvgG%U(hmSm
zKw}m33)8CcRCFv$lRVqPEPzxH66Sz_SKG;Kb~H@?^oK5)@(ch(S$!e_wu0~W-AqTz
zL`OtgB6r9HK`B#EIN%aQ$yR11TA2}EjKjqaMn-fY%S>u!nMctWAg4;esnSKWOk2ji
zIj9~rAK=$q;G3mCXk4rY$0wj{)E(5Zqc=TJs&xQ!Scf;YhoYkny6}`{maUKB88Rx`
z?Yv&F!yOj8S$O6SG#%)$2+wRG4>2ZIcN8K|EXC>UcWD@V)5L&mU;ZEo1Sloom*bVW
z;eFk*OIGDc_ZuL+!LN2-^0Un8E{d<o1#g3&c$HZGvo3TgX~AsW&Rh(9UIgxuDLqm!
z?wz0QWXkXfFP#(KV<DEOhHq=%fooKQ8Ta~qt{Xx{3#3~O;++F0UkWlduiv*<3hrF>
zOFTdh;byM7?e+Vvk1RK`Sb^O+>#j!GgX$K887VR&Jd+2qOJA2UmjGCO)n{br)1^~^
zC-BPGB~;z2LfUPjTbn>HFsD=cFkH|F>_-$!sEm=GGR7m(9l<0%fc>CCR5{H!k(wdL
zb*DAJ97V#;&p>=8eUrP>7bD)wX`4U-Yz;0zf^>D$(v1IESqyy@cS37KZ5SrRBL#0O
z(=@;&<UXq=A@I~Zc`+#C>Vph=!ZSYAuJK0Z2DUX&4e?*-$*-&l9ltT`q8AE{w|4HQ
z+JK#lvQ;EX1cGbWcR5QkVl3tj9(N4Cfq_X5zf!WR17FjFDLZz3C&&Q%u_S8PO`Pn5
zV=*Oa5gy=J%h2wQj$x!j#0l5Ng#U$O!FcWfNid+;JRu1}19=ZTH%*rJp^AQ-Xarwy
zaFB47HcVO`Y(b9sTOKoaLoYP4sFzlSqd8vTjH6i<_8<*@Vl_F#@hOi!6IVEIHRSqu
zA&gQ`b^QBG52{|fD8Mcl`22^TCa3e7Q00SeOb;E&z#AkC!eV*J!d>K5RRNFCI9nne
zj>je{fkqzV(l<H0A5!qVpxyX3f$5B)K0+93Iz%|(YC}|~E0YKFR*-9cz*pG+X*LKT
ztT<e|n359)a|XOcqwzKo@!#KJ;V^ciOisbh*byj!p%)rIPJx1s_=J2!WrE*QWin&?
zSx%7wQ7NA_Oa2biBcQlNsK*~%S*J@`60f6*>7m=eKo=@UQJ7sCm@RVZc+S>=Z=ghG
zfV@E_sa<JHoxd~RP39M@CO=CppqUb^3ZoG;nl~kd9eK3Lrb;s6Kp4aV9?D3TiZX>4
zI<C^Pffxg4#hVwn3&x_@|LnitbtOal-=IQ>z;_RbCGwB?GCwDEFnjR5&|$bHc(p1A
zp`_FhzHz;%@Hc5@fFwY~*@uC)e$muCc1k>XA@n~7S7*iC_?Yx(PebPqY*Go8-^NeC
zKxr)5(g+eU0<rpEAR#&UEB?T0B2Zws2%Z6{j4Ejqu@h&wc?afXzipFm{WN@xPCXu)
z{x#H_pG5h|fuigA4@wa-B6O>kI{c4PoESkg`h7TdVS^M~99F$=u(&!L_ic;fOs@@4
zw|RKxXQVscIbiZ7bUAg$$LuKrm+lKUBqs=5ItXG}HeU@a!0$VJFZ6hiPtW>WPign<
z;c2`xzm5Ybo7D}&|C`tK>6on)69C{K7!Ed?P5088h~W=XkPOv)LLrUGbpD~kdw5D&
z%xu=$4y-#5<rUWLhyMp*UC=f?#~kKvyR&8Yg1f~hX5U?VA<_$-Jg+-La7c08F(|%B
zh}arL+(b1JG-cNQl)=4bykieM?IDK?hW3&}I<2qUSDoE$Th@NE_qPNMgVzXW=?XM@
zhCaA$S+NnUM@>y<>I6swoMY;tihK!!m%sIs<cL$;ZT9JfJ}(sOfpyS&*iFU_qHZ)?
zFP)W5H6w>);SMA>Ie15*+E-<Ko2I(IC`{^HOC53!Voynb8Xbd<^yB9SNw4k&A)4tH
z%oMw|$tM{gHCvqr>vRV4&1&CWItsQ4xSv3$%KyNzs5aP;)2d;LByCH>{N$KDuAzHk
z%J|~4MdtY$v=tul+X}qMvVYTQ7vigHSOy$D|MTMj*JOa%qQ7L}4ayKq`lIfsJw(IF
z+_XF+O7jZq&$0nSI+EMs5Z%wbgyszLKx3KnS0+f-2Svo3E@L5*Kx}Lt-F<|8eQ0Ii
zxVDYN*~>5!7{Re~%pD=k@x?V5Yh|lmpkTYIrR+e2R$w;!R_QFFnW*9yD3|SUukfBW
zrP%z=&Z+~dMM~@x;Y^q7TV1$Pk7LuM@y=N;qAXmreu=*4QK-A~aTK8ps>!al1n}wQ
zpMGb?1nh6HkTNw&oU%Gpd_aeKk`2^i9he@WZz}ao)PK`LKGj+z_+pTm3ET?fI!LDl
zbu$ysq1-sn0O?Cp?bfQeFTK$1dw0Xomr2Et<7)3xkG^S}FIc#abBr|<PQ7LIK3&Lu
z-3w{XD8vjp2MTaHKFr2vE%DiH{+AzfQ9IMCOCSw5dw}hmT#SgY-Vm`BB*ad+0D2_^
zZ<z=NFCl7vPzx0M4tAl1Jfy->n1iIm6~1HB<gV8pm>^^X4~31VJJ3s(RE!IwHr^u;
zfMj-yxrwm?9>F<aVsVbvKX4uvoY!f1T}hmSy&18N3pz=fjSQ7KH~WMHM%Fk2@vc@W
z00U}3>XUa^v=2Q?2^6$fGY#MhwBMWX(SAOk)-W*V1+Yl8H|cw#y_AokBf1Vnn?nNl
z+S@Y#pNnOnsbK-Y;~N70ybG0t>W=3f;87ai9Ob`hX5TimZt5#xs#F$f3Me@_k2Kdz
zJJSby9l#!(y5-x<hxhD;_jN6bcR!LeEoTCalZeJ{_VP5fmkqR+XyfrepZ@`S`I>+y
z*aS&84Z&$5<IGo`aKJsHXY{Gv(6i?O${7GhOlCRIlkV;X4}|rSVI@&rq^K5!N1Pg?
z<-{j-w3R=wALI7oM(|KMDA6TgA{^urj=S)R&3jWdf{bL{;)@$#SFsvVz8VRzEwJrE
zjN<ZUj=Y$H`aJPfK-+4RU{n-Nr7(7z1>5td2f!xgw_3oq-%KBDm+?y<Y*7W<R{EY`
zJCN^V4s4B5Ji%7j_f~>U+&Zy8Tb5y34heJ0Qa=S+FUW!j`^v5zsOoq$3wtZvo75x;
z2!BzS`@ZH|4z+~jOKP21Lha%85xCp#-4NI?LlLO_Hk+Id_%$i~0`|}wQ*7t6%u=JM
z4fKaqIG+6l8ry^^v<z;h8$}J%_^7;~rTZL{ZE4d=XvqXb5%MDqBCrRphb&TCcO1~_
zo5q!bZn20gMTQP&@o-hD$!FM;-o*bA+-INM4ctfX-#fUaQ~?p-X&b2m?x<QyfE)0s
zBmEpgg@GJNa4Q;n=+bQ}ehPILa9^=6!EL!^=VB1a$~A@f1Hvc^apf8zzU)h<vS^Jr
zGL5J%2t=1r;Tdx*%HOp!-lP(>l!BzCRXwsP6X>ubYE`Qg=zHjUALvjIwW?Y(0s8N5
z&H(yDa!&dfc0XB0MRnS^jUA8$f!?o1xm}wEItu5TFKxV2>jRyI`FOp2w{Cb{8Yf;e
zS!j+q6{tPZqBb3Jo)ybzZ+}9rWyG{ZRW)0~!gN(`)Dst#LLaZd9h%HFkNO})k2TQd
z$HMtJLM7pf4hNY#XLbaYHggRVH7E{zhj>13M{{^$U026H1CJ4^{WBxG5QsJ_ru*4-
z{FOvSn{c@BfMU%ggiNF`Isd{OdJ3443%e1}U+HhynyM4ejJGwC^I|ouWfgLTC5LPn
z`UL}R+^89*0v9fJP*nDSV;MayQSuqOUBt%`o>6AbD0JJL;5js18csGGDx>9$h3DNa
z)*Z(r$EaPkvBWSK0T;}Oqc9zftf|Hyx?xc|0B4ku=x15-%}nt1V?Q6|(}#FSR!jL%
z=0K?(ttLDkY<n42x>x-C|Ki_qso%`MHwXTI;on17{Yw5l4zJLSe|Lzh=#77Gob(I)
zga25i^TE$ySJkxDZGw@9)oQ|jh>d~&m@m)Of3(Xr^$PG?DmR4R+t0e87uout7CRy2
zKmBtkM@C_0e1m?i`2czj+jq-wgG7pob45L&7XX2qG69g9eZNvzzzewv{S`Fs8mz`<
zTg!UYiGKWG-7$=-QpK2b&6R3hx$dPA#j~5dK>FD1G!5O`q#duE-G$D@BFX%D`X%gc
zxLHnDK)&i;)%>at5c7N6^%>@OsB9IZ(?MV}p~X$Pa%4gQB57sE(QwybP~lzJ^ZA_c
zf0pCvvigm}$r8G8uvH9Sd|fo${5F_|l%b6!<sL7DXFQH4&zuc{TgDe-&UH^}4(1{_
z#QO-Di#c;(F0{GSe7#zk3N^DmIt`+5d|S=)&`)Um5qrBHCMF5n@3s!-l~?ssY{a5)
zoU7zG)%7PyBwNyWRX@wCA3zUZ{oMHD?)F?muWG%#df&cU-}qx`xcTqov{!{WCdlwH
zc~zI&6>X`@Md}sdnK$!2eK`%vGTgwR9Lw46%5NGULQlF}L3ELsI7OAmrY)cs64*{#
z+=kB)tGbCf&I(O{7wA|S%u@}~vEm)HRPskyQ_bk2Ds?$nXcoP|=^Um)eqxD5sblzb
zlz%%$_`E1J(*A10W>IP=?kU6Duw^qP9gcH#2Szp{^`+m0PkP~7AfYeb@zu;7@QM%C
zujK<wFvcSDu4m9_&q-kgroF;2CDcW6qVN6#H;cTN*7v_WFMPtAsXyaBT(CTKH-6P|
zIQY`R>-q;(nA9GUM3q|=ok>1Fjf!Q18dz{%w}T2X{${CtOZSs{5#3lQ8xDIHT!oWe
z_&>D`{-X_e8}%Sz;hWo2U7SES>UdbB2I<*So1TsbyfMW~)gGbeh4x6vd02%Hdn6zL
zA*$d?G6k=o07F*F4eimsAJd$Nj(VLve6DvXHezA8iPJ=hu2o1&b2N+?&&bqbK-?T&
zXr^pJJoe9kkBHDRH6jxZK9CXUfGfDSrv(qU?yg1(;3OsFCQ)qqyiYMogUhzY@zRED
z$erUZ+EatZD<j%dIlzV(s9QK|8qU%gGZB^mE9pCEkl!vO_A6$cKgKm;UYw7+3oC6o
zI&Co-EzLSjjF=Z11~scgrN{qMsjOw*WwaMjKQ2rQqF0_x#fUa5S;WslUtlLCpUe!>
zT6YGfxN0JnfN=vC;AuiLU!@%LTlj;|3dpA-voMj~Coz=TRkR|Aj$Vl}A7&7RR^(=o
z-hja&j7qVaM+!m2Rl$a(6W0^txhxxnWB0lJoIcp77!^cv+vLGFM9UKm8Wam^eI84~
zv`a%;+g*jJbZsb^f1J<yfL;Psg-_pQXX|@`J_9r6_nD}2%{<%0^Fl)>qB^9Wap3mM
z)^lmdK|C#zsxltrg}J^}r$3ZXRHZ$O%8dOG+PxmEHj|EqCLaJjPse7wO6#-4w{NoG
zjQE~tP`08Nz?lXesH&o@3(U_5B*<k9q1Ellq<%;r%H56?B9lR~hV(~GCXZeBb|B|q
z6BId99+Mu+5ITxPMP<=$H-(bGosC0YoQ{hf%zYnG4O~g)(s8K#=0It7ecQFZsNe+X
zugCvT36KCm;G)_`NsUtFec-49kx(xx30Q*e{lZVquu;w}m41}tkG`_;xcQ}i<8g15
zS-MM(p-FywBBQ_UIx#pTDUPKw>K9lPMPR<Op;Sr7vt~{uYPS<>7nG;hB*BE5=oO4r
zrme05a(Et3C4XU}<rh|`2KTBP^sZN!AFiOFn(Y3&XyT&G>R7U1ulJuL_QdBC01b!*
zijRtocqQx|ff6c`eJWsP4U%B72gc18$ljL~*vAU|T|@q^F*jYwxxg37G7m}V3^P)<
zFmrFN-7(Yu<jlY)wIG0#mMdVJ8sr)_r-D6Wa)Z&`isZfGb1Gml+er!n5}M2k7|5au
z5E7|KoP|vi9{U{%gOH;XZ6zgA#(KhXax53MtKrT@zbB}U!V#>+4dq^C4KJ$7WpOlE
zf{Ix#rLea@Gy&(SqNJwx!_6G)V32kcZkk@k!@b@|jE83LT)U|%q9b%$G~x|c14zwv
zZ3WQJO+6CGAlfnohO;C>LRCscCS~*obM)mJOMQ$S*hx{1^m0U6^27*RZJ49}(WJ4l
z<iKy(wL%GtFTxCDU|IS`I29XL1)P-(%|=nGL`_mQ^$3ffyWSB7q_|SVte>xwkkfS_
zEkn(VmuaXfToeY@NZnJLh-Vn+0zoQv|990e(`1BF+&zOr2z;6PyFAOR?^JV!lwmPD
zZ84#|$lNg&(C2Qu&Z?#Dnb%YtVd-)n)#e(a2#<h&(F5RLegm8(9|<tkvC>1xQ945a
zB<d@Bi~uQ6fOvx++K+1Q+a%VoY_Rk1_^yiIA&2zxixPf{A*;caSL>(dTujGgLC`Zh
zy%m^b#}b;?oHdgy{Kv(ZE`!N5J5rDF7$St&WCBkWq%DC)RY`L2BS=@_MT;;B(fq0a
z!gU!}747vt^%fXs_XJh82nnppt|5rLOGITmd7akR&oTSk=_`{_!&OghUo!MH>ysw}
zpAdMeugY4k9fH2jmi7Ymb}93O%C<}1XF-2KCG-^Ii{_6-Dgl^&v3#(~V*P#qhR87R
zKnxR3O#<qvn`Px#sUN4lB?q_FhI5Ye2E0IK+=eHIC;Gimfe)a_<7z~Q6HA!^m>uLx
zD^(fh___-y9!!E-dU!xQ7&XXW(nb!+B&d-n1Ir7se!d>sLSiU5u&6<}Zy`2qF_Gun
za3rD)FFjWCt?hWd0_9Nnd1f1Vh>WB*sR}^Y%zTn+M=qv^01)w+{~V(kRBJ7Wi_{<z
zFDV5jFpg$v56PZ~&Y05<hxWXj5ffzSk1Q+}{n-NR_uxO&iae~g2Ku8m2Z1#!D}^Gs
zmTL(U5CF*yBZU=D`jJAo83zLb#>%9i-?_40{m!q*@7t$+Pn?d=B4lheobhop)ENt-
z`Coy#du!E7=%VX<uzeIzQGiXf5;_6{JqutVCSV@t>Oo$xkkzpfKZd<16tE(BC_p-<
zI98E75^Ld9vn!H=h*@aXig0{Ort-GE?a0KKl?7vxI}e&jBo19!0oy~oAL$KSd89XG
zCB9xDz(1t<vvBi7Fzd*~z?DZPD)?q-vDplJM_R++=8wsknOz4C_cWAFWEtu8CPN8m
z(!JBr1(~j*)UHz6wXA1DECF*2{cGe$pxBui3h6H^0!*dPB(T64yZ**295qe(YUUp1
z>xAtHg6Whm80zeDp|2Gf5VBv3MYG|vj6vpTD)yG|!&GfTk@nb#`cNsn!qin6JvNuW
ziI8?9=U4pCs8Iiu$V=(rdU{sW70&n12j0tU(h78t%CYn2Ui+$DXrQ72)pAXxoMGRJ
z-2+RMr?k6pb^(Y`XMqZb2ymN02qm7v4%1!cxyQtR0)Q(e@7WSAkiUlaXh_h)@{iX!
zz=ONabJyPBr!YN$OQ4vPSnibH*>-c?R^3?F%l`&r?=)XA59hi|60%^yb}BbuMUZ68
zPRw&#&C`MXcRL(o*-qX`g#mT=n^vg@Aymn|AiTRkQ4D)SfRZv^dKZiLi1Iq^Jyv15
zJG}=Dmn1{-0!h9=8Z?advOamleS&G7*KQ`I+^*)7ZWin=k!K6+=JIuPn}}k<^X3-c
zf;S9FvA@G0QfJLDER)7e+g<!??F;FRNI7$rPN<pC%`k~g?FbD-i5W0gH6}`amQk-H
zen|d~Ay_GuQ<2O@x=<=yM@+$1^c)nRAy=!A-crGkYoA!+y{@-OJb{BQNq9d>psPK_
zbDT(-=DDrZYN(0TYV=h@iODw<k{?ECVr9WpvyCLSrW^ZsfduJxV=CJ`_Ckjggdju)
zB!1iNhVxiR=67bhF>oL+VS$|szp~p`vawU<`Y@^p=4Z}f-2_ZfQ(XZCOVrpVk1aI2
zow5Fjyp;^1mE<_WRyQ3(VgW$GInp<myBGl#DTUWwDBD=UpLdS_9urrm*T6<03w#0_
z2U9wcY%Yx@IB&a98grP8{3_B~3(Urxmw&`9#JBkVD05KXFX{wH(DzHsHvwRXa|a33
zj-}uo)o+xI^h!G35lXd0nwXvB4H9-VawZ`r;B848_siUB^tqKR-0his)MxNE`~fsU
zh(xJ@>2V0RpC^F4(Cc#Sc?O~8=+TfR4%SP{l0rQzmNEYKGaMV@04Wzrj&W1|2dJvc
zq}_BDo}7g`w2?%TVwOJ=hybo)Mj7ArIt^y)8>wRI(11`d6AEZ;FxcvMylD{UI*#|b
zP?aJY8zn2my`2DXbV_ynEk7rjpvl436XE8Rkhd_la24jDSB7HqANsTW?S`eJvHyOF
ztz-|34S5eNJM%i*S%?Cax2AG)jVMYebAh7}1~s(d1aLn13Y4eq1A&^zgiQ(!-r4Jq
ztEd<gUX}5x6z8dNu*y2|1lcOHDukyMY!pyK@C^88*V>@7)vl?zb}T5Jz^4?D+gZu0
z!VV=1WAl$cPXA*6?Qk_*_(`8sp&%}Q={%CGfmG{|ez+c3Y!)3DP=wlK{=sJp_zO7X
zawC}tYO0|C1<;Ynm(gR#ijw(*HB|&I{>ZdHiJ{Vke`rJ^#|1#easkz{TmUmMSq6*w
zLK{m`Hq8@+v-ISsVmS{*-TFAD6xO<eI&N{=2f~=*d6yz}g4EQ<6gljLj@q=F)w|=Y
zEEbyI9|$%1+>e>F^kY6b(XIasQc@9C2_3`-D56e0i>`mRul@eBm~Vp@V%vf&8yvRO
z1V+NqDWf(*O6cB?#+N8d91fg_dYduD=V|M{4=t?UOICRRs`h(u#<%9(^#21YQ4jky
zCS#ShRvR?tvf<zBf*2YgOSjO7`8;A4*suf1Q9x;ctXzT7K6n(3_G@PZjCQFr+EF#y
z)u%8xh0)#$X<2dTDSPR>{6Vupwi@jua|jsiQfIWGwiBRPah&DuV1svrP0OL0U0K>_
zqeL3*iSh<bQy6WOR~74#58}-L0LiRlKR?8_y@RML{X?=a`Xnv*EsesP;eX(r8k;)u
z1G?ar4>&`PBJo|LevrR|d|tStd`C+`gi$SFpEA9`boBxaGZkThnwyG|z`(|7FOY@r
zQ9a7PT0zSg>tyrvxoUW8NHUAB^+DgDpf7naz=E>9UgG;GM|-?GS#?;HYo8DvNDG$!
zQ<`G*X$Y#2iSUDVZ?iVdsZ^^ec2`Uaf+%USB^Y;!!4Ae<WSEP)rtw<hu0iG4xHa+3
zK^k=cd@;16WVWa!ul026k*irX*7g+h>N#p4EO1n_2im~wukzA%6h}q1OvfL<;QM_B
zXYp5J`fm0kiixMtFERWs+yO5#aP{fZK)Ay|<;@D)eX+?Os5v*B7SJ55n9^_u&|tW;
zOO@4}4@U$vCxTqYOJhUAopH<|pgBcOb3mH2Ax?Afj+%4i!J1tptvM)>nlnt^K!zQS
zX5|R5<XdG)7C+u24!ZH9(m|`rhZaOadwSu0z1q`@L*4A@^QWrt()QHmEQSeWQvS%9
zZK6--DAXVeD3y3{(OQ|DT}PKZOnY!hQUSfVEV%q-i~CU-YR*1V-{NM~|9{8BiWjr+
zFxuf^?S8~V{FGn7!%ZhxJiLaqtZg2dKs>y9t#3&WVh+Cz4+k978y<?~jpAYHe!b%1
z&x(gqwlD#5{s-!+Vh`rPFx4GFohXYXvF(oZ>Y*v1N<(XiD@ZqO1|V7I4Q0$IYcZ_N
zYMgu+jU|42ULB8{_4}eGBYr`?-)ViI6cfl^`7bp8V$1!b_6=|!6J*{vSr?h!#jj8w
zut7BQZ+LDcagox^hKQH{hV1+b=ebcZBd*zLzQz~h<>`+Rl?s2f6$7M`p1ABHpsg6-
znrc1S#)3suYkgCuZ%(mq3OX8N2{r#9lHVNc-lPr(Kg?&t!I}T~X0SK>V@o9JKlslE
z75D?`GRWZy*|+cx&SS*FsmC++!1T9m`#1iG{nXeN3D0{!*0m5?IF!Ys`8WKc1F8Q|
zQZ#Avwm}lSEHEEnjKBq8+iBjy*bxh-{23O$3NFAk<xucY)X8k}2^tQF+43-e(Wm1T
z_jvlp!N+s?F@)qk7CzDPk(>haukSm%;HZS*5nC*(kU9dq$@<bfH4Lo!%(5!WKCt-?
z{?w8`HRMl?_S;Bv3`}WYZ-KN5&~MU+N>h(vt0Y#JmE;m^bF>Iu71Ac>c5VMb%8Fzz
zJ2|7}iFaf1PjOoGkAv#|pw&P}hHL@G_eJI<X`j(hdH@dC5kpr6C4!1^iZAL}+A%Zp
zOSAY+-%!_MkV*nq;w5N#fhk(v^KPK!#q=R&hfaP5G*Sw#svX(vd5fk_0sGKi_~Jc?
zI+<_er!d7I^piax)pz}Yv$eMp0;&PTYZ3F=nOx}deN<B3o|VFs?gK$wk%`%~JiIZ*
zjXKy=PN7U&O_RjI)=uW;>90zsh;Ps~W~Uwnq#aAH!_l>A?0eT?1_4Tk)QB}<Zwa$Z
zj$pqRdKjm-3BB7E+t4LXRzgl?`%!X6lUz$Ghm@rUSR$gpN(9?}_t103L0iEA5VeMg
zT4O$|c71qu4mwDdhK_5Xirg*v=%w0Aq|jswW#rOotEj<?SYt?5wi+PcONCRmgD`11
zHf=E(xX3)c7r1_-<9eFkGGAdW+Y9m4hyy0TDu7xPMkFTD4#k-{@sEMqwMF$8#F9WJ
zHVjI@j6?5n!D!*yXIvl(C`HJdYMz~#%s=ON8q|~6GaZQ~aK0XFMh%#ZZduIzkqZE)
z62PefaO~ipsYamH@fONPSw;GoRh6QK-Ks^Q6gWBbYHvA|MjpnK)=`1}XntUYosc6d
zll4fBtXg>|V!w|carExHq$<7;t9#dm!ZWAyuE)CW^qi|}0(wRpD6@)h|3ag6#5ANU
z&4M$J`(Ida3gSnwzzbbgN~L2P4n@T<i~)Xz?!3}XxZ(@E%`-#u)WzBINgEkr?tMr{
zntS5q%A0zu%DCRDGUwR;r7G8#sWe9e0WRn+A<<=I6&}*9fL{<c90_d`U}AS0(k2HV
zbIyU8d4TIEk}s9Xqa(@C`eQ6*?e#kXdEmcYf>FaOv46GnAwi^(J3k;S>v+@Lxd&9^
zOTRCIPBcqDu$57ke_+N9z$gGJ=9Aki$#fpqYqah}MMM>=iS6x{vd%HK(y;Gg1xP`1
zu)w;N5$}e*lQADT96yq?lC77)&ZnDk?!rFU^b`(x4`?Zl4PR0|t+NqG2*(HEL4}vU
zXM8};Vc~fLa}U9m#3A_WjysS{r%mBe{gxHp;H0MM*Y^-{x9?%oqp8EfGr2;GHou`F
z0muwlUg4dNec66Gusr@<SNRTam3sq+kx*2Q?)L4YIagv#@jfH_hiC4BPq9686Za0p
zebXX>6LoE%oS~T?bh68f-vYWiap@*}55IC}j1BbsHvDiS<$c<}>=&N*CMcS81@^Ws
zKsX67kiDSEJYFT=T%g}faNoo~3G;)4yMHiEKHyXg?*wUi#(XYYwt{6pO=H*Eav2FQ
z7u`%HF*Wkzm&}Igc(ae>W{KgWi6(+a9d~4<+cY~}o#{Mb9gc^95g(afH)`aL^_bXY
zxuaRH#Cty%Y{6Q*PYXf0ke}_(&#+@Fk4WiQ;-}IN?+kv(N0*pZe#Fr{vxQdXwwpxp
zhrE)x)85kZ+%+O<T5t2>vbEfzk=rQ_BXI)e=qT=>iM1lwYA@Wxl?J0YbEa<is3H8>
zL#Mgqt|d`DvGy+MWdyiW12H&G)dtKtvtq=1Q}++gTqrP+{s#n+Lsn$cx6BQxmgg=D
zY@B;aWq?(PySEl>(c%+ZP|h6l2T2k-_)x*t82q5*VHPF`YO`^5((#&Qlobb72KI`T
zWioKOJaq^xggN*|!OFw(Ll&TNI+VxCT`iRxPw2v%4S6BvT^`uW9dfkZoktu@p;pm-
zHXfB(xsNg`hZzGo<`kP`!^G}niJgPV#%3cW_S)Hk1@M1AY-!;@2;RrMNrBD&Fji)V
zvvt!ykjK#e<0Av)5p6q~?T&MgXaKqW9?To^#UA!Bb8d*;g@ooRDc_V0ftkGryKi>4
zuV1Tu1=}WY<emRHR#_8U6HBUzt&YJeC>b{&t7KHO>>6ugD}57NMfQSYx|#<Y9EQEs
zVq*VkO)LX?XJYqP6FV{6#2&9E_SLC9o7gsF;Y@7Fm69gI#2yu%na><h8%Bc_=$)JS
zlh|CHP{i$k%ZDr*>(#*Q{tUDGJ<RSu%5%Tx1Us-*HcXXS5=Ew=Lap!qw7xu$iq@C&
z<7j=CA$JCdjr>iB0Y3TLZU(q;EIAh1?qE@p?eRkcyuWXN!|`eOKCLVkuHd-Y?HKvA
zW3+tw0e<9DQLq;#9g1%@SHm6n<_EF&Q_w21rnu6V223&84^w>c6g9==Fm>j$>qNai
zlph}hR^sE$eUf3i1ma+#xfV}5Ztk9Xau2EN%;|WVI!Dd&!7$6igKT4l<IMqCAJRDQ
zFUGl;9}ls{88e6Fw3$qL#+$BjWL4(VOH2w+Q~zcqFVaeO&JwkB4aOmFRCq@L1#5wV
zuYrP>%5%S#`AoX?CbV%1wDH@eVzP^1va#0F22imKlf6G6(cNTM#nfc?B!Yim&M_p;
zabFA@Cs#Dt+@5#p3E`Qa5>pVEv}bs5i%f3@-Hm*~zF}_Odt`w2<(!#D`Hsz9E;H3=
zY-mk1ko!w{CWBzn5Br8-&9LY-hYR8^iwfe-#}7yxX#sackAQ2oegb}pBb(N!_f+K{
zWo&JEY6b1&#A^k0@5m30I;;kRxe?1){Rde~SP`v0cD0ua8%s!6$dE;uUaXySSG4*|
z)r-Lu(AG<Trul2ETlK%psJ__z^Mpy_V>eKjJ#Ae!W?i<>y4-e+v-wAcXUcH}LF3?r
zIppok(?;HLb7*CgZhEK;x&3fhCgEy^3&c5DxMw<qO6w3F5Ejy`$FY>&OcdhGt~<dY
zd?V8yvf}MGm_D<=I%9Rf0_j`80<&0r$tpUHHQL19<w)Dab}a~%B|Q@q1}elTwtXKr
zgH7}Yk}ly}MC9Z%#8gceqhJ&VecE;e0Q;(u430=zUA7|x&3x(R@akBGPe>=`lIwgO
z*QIYp?1<V9gy~@Wf|&pf=nP)O+dzB6^VcVihaRK<qm8^k|A(Ls{U3@xyTk=TmEuP%
z4aaw8`U~1YpzVT5;tW?PU1`j#>w~(p6Um#x=8#Y3I7g<pE#`YS$*h-h=EdglSmY&L
zQ{~<O&<a~KCYgW3p*+_MgVi&T;&3Tp+dhX&0m&(3q@VZqM=1-Eq0{gUMoO^p0-9x*
zJ&N>GKoD3Kq~-56eGEMpQb)I#%?tgzgvP<i1RN?Q>k7>MSPjzg23o|g`3a;`f>OR(
zR*Fb}gtCLpoFX{^$y}Kfeg9Jg65${o<Pl#D4h==S1^<w+ga)Jtn?r}=a{P_3l?t33
z-v<%jm_D!&n3%K|*7PlzT2_(l8yoTZq^aeJuVWYdfXVI0?u|rsdt)^2zf(_~R9T)J
zwyu1{ntJT5wJ0yvwWK2PI=-8-lpk%&FHjm2FAd+`4kwClK}CFV-XinX)ugoB<7eeD
z)UOP{bZH-uhvqK%5mcrBOY4`{R9pp>(=N6?g#xjXjTK@M{sLnBrE&q>7|{ajeWCsx
zQ(cMc@aBhga&Dao0S5SE(lxm5u97#{FX#|UrJSbXGERfVeVM(F^4<&0%+(Hi=~j_k
z8Qr^!B3_skf5LW=*kABhBz=HMA<GCuQkhQX<)4+qA_inF6VEK7Huzl?l?oN@#IGj9
zghE7g?mExEwo9m9j(N8WTVkHhXxyudnkD69^4}VK$iBKx`Nan8%%2;w%kKhNN>btI
zg`Qp0kS|fv1t46a0k9-b3-898zuh0G@T15Op)hQL6v4hm76Hp&$v2qX+^XwV*kLP$
z+Y}%sCie?uMj?qO(F|R^_5rv^_Ls@JkamT4IMf*HO?VAVr*YDGgyKXdamw3PJuVZe
z8wn{ehhGIg`MdkX%YSY?chu(*D)-9T0xmSks{k;U;!{S(1*YTAcH7YKJS=GBkQG*J
zO9fkXA|xu#YLI+ZuRIQ825ZU6mv`Z47<4#d$M-k*9a&Y8c&Q@sLW*aN0A8a&fEXNn
zQH8ha3_Ps;7Ik2&?dr!Y0Wap{YIn32Kid|6yX9h&Js}s<dL<(zi_<-$yoWp_&*Z$N
zL<E8=t`uib#kq_0Ss)?8l;r<Tn=%dTG}9!bRTQtLXXKRN&U5?-*1D;fQ><xYr7Jqd
zo3waN3@Bw4Ut#mvD5p}k;RdUZ(HoFvr=S4^IeLW}p0k6H4t-fXW=H%QziD7*pjbAn
zqMpG{10tbazn}#tWx#I{+Fv=QeEm<No?>bv=xfid-&sx@+P!{oZ^fskz<-MVGGB93
zHA|zlMtzO&j|Lyet`XiIOP6hD^dg=GThQGmQea;*x~9xqShvm|Ei7*gH!awN*<m)5
zeB5eh0^56Jnj_CK;z90vgIAtOkRYcn3GTpu;$r%jIJV8vR3u+mnhNB`(lkqMpmHKf
zjFs>gP1I}lBoUA#{dHb!;irAI6@Hs&2ZSQ&TXi6S?x_>jfG`lLu&v9C69Z*3YK=%8
zQkBBy7FWwX0(rTAuALl9VEp181r0|7kCE(jPAvr~pMtyc33#Ac&9)1nKqiV5&a*=a
z!-JlopzExlC6HZp8k>}`!`$BFewh5d+FP26-xhIMrozzO_(IF<V(x<;Zd!*rhMT{z
zH5KTh6v4AEKqrm4mXcwhWUi%zjPr(n_wOJj;A)OJ-cf?y$8|4;Kxk`m5v>rcQbc}-
zcgSPk-<2Nb;y48K!dd$TSd(M#`6aiTBk?V*#W7}t*D45D9D6U~M}bxLUa*1tYJ2ZE
zTx0K*^H3$+gI^8!p@x!gxV=nLH7WU!AtO7~8iQMWk=FE!4%G^nTfbw=j`1s`IbR$u
zw>Ck|+j*1zVwC-Ynn3Tyy5z_&ycVnMotVp=46a=-HwR(+7j=oT3tp;;dHwn)2TvS{
zfbacq^OH<LOClxo>klIP3z1nxzI=$~vKNYDD2kXABO(l@Wy`R<Ywop{7duANY=p0Q
z7Cd1&N@lAi(;ikfgt=(^mOF>$;8Aw}cy+mLto(f5q$?kFlx(Q-(xmdzl~0B)+aH4v
z!h&u4BihAY-ta7vd!XW3#VyCgZ*3;@Y;IGn=q`i#{Aw_<%m7%l%w-I_W$un327VrR
ze@W6n4`|rvuwd?_&4S6Xrs4})CAM@B*On3o2)(U*8I6EPsoh~)&6$nTZuIgmm+X8C
z?u5u9_e7DYO7WD#kNKri-~N2VrDFXNC{w$f+7{gpT>aSwykYwtZt<P^2CZ6YehZkM
zXcJjuqbdPM+D*ngx2}r_R`~)3#p((NLa3RkKTAH&lEGg{e$K)nGUL5h*atg`i~R*n
zk4hQBa@ZERfn_rn-5mfRxL77%<}dw$UxH(>#`+}%!D!HCQ(%sJ(EqYkKVv8YAD<>`
zB@_FGx3zecWL|iIWUlr$gDgo;gKJja<!3H>QP;a09o|WvIxFAOE<D8~b0O4CJw;<j
z`eT}kV|3U|1BI!?b@wR$5zKiNAj6<BHNnM{EM%7C+Em<V?+fgGi@h(h_p|K%9D6^<
z-YZq`V)kD1512eDD6PX&4zeciPuOYEH+hvolUJ2#@(#COklGkampO|z;u*0#eC@rg
zJOD9YNOKEEP*u6N3E5os`t?O4dE$Q3NUk5o=#vFw$OZG_r}P!$msR*{QOCNKsXK5w
z5Y&DB)~fE>cjRdv+T?v=TMqQvlKr4eDe72&sN@Ct7Ey^$F7Yd&7Yqa9Aw(l))TdNT
zw;?JGLz&iD>#s+lrt#4x)z8KUDigzwE^GTw?oYntq;?^yyckZcSetw4YA(O1`+TqV
zR5%lCy=A7`PB-%OCBI~y^q>H6lO6y|#D1xBk<dJOg;=Y^E2)>jxxL!=dMR}TS%?fo
zR9TEl{rg*eStW8?i)pHi8rpe>$eV34N{srII_m#1_a^XB6zTgoK}JVln0Q13f{qFp
z5G5#Rq5+3P?P$;-=tjidct=HzBmq>8ge1Uh(~62K9=qatthXqN2OdC>fQSOF3Z5t)
zJr3@|;=!?!-}Agx-P1jp5Z2xQ_w&z3nLetk-ur#4>aD7OsiJ9JAWUYC#8R{5WE)C*
z9`DgnTtQOc4{ZG9BK+VL9~t1{cK+gijob%HPSLIouT*V}X)m>1Efy0Fd%{?k-%CB@
zr2S{CttFCDBakGJ{nl}1G60iSU^oZ_;-&TSi}4~nCw6p_><RJPA{-%Tl|Zk;wP)jB
zX6|0Q4iUl}=_d_04?ds>*W5g+(5gHDKwz~Q!?L8Zg|*_dMwXMVp|mtdit_s)A!=NX
zfAQrDlBP1;>Y7^w;0!7HumT1HKLl=gej;qWjKb=4%Hh|3Qg*J{ziSabeGIS9wZ?Q6
zNahm}o^$3#YtsfQRpNSR7Uh-&EHym;!>VgI)xy0CoSZ8tgMCF`m28I4w6c(2<pQ2U
zs{(U@ieOZ=jf5MjR!lTdh6E)cNoeWc%CACGZ<~&x4i;u`Qh%6yrk5&e!y;AEuskny
zJHr6?tChg8p^9mGU1QR)WSyuC%MiA&$n7yKDXghP4!W|*>x~$W@51p|bA;gW59o8P
zz};CXW`;E?GgFkU%#6T+&jeuLUJ7Iq&%n%FB;P7CBl;teNs5{I@bebU3@eVeXKzl6
zB7vhAlfojx;2otyPKuu=7awA)EM9OS(P&Iu?mEq=-G&O(sEKjp7o6g7JDt)S>n}A*
z7=+D_h@OSyH_EXsxVoZq=BbKU3>&He8~cMHHU>fq5mGtlxCDiKtDL*2pW<9Ua*lxb
zTtW&kuOhjfoQn@u!x8^DD1}jiiCBV%4r!TD@wW1Lw`b+^R(RF>vpw@l7O}gMpd}Q%
zBL4AvAW-()@iMA<r26S1KQwpB?A@=TbI7)E8P7Ax8`yws`Nb#)f33ihb2%SK_wE#-
zS=_ZLty#1;eWffR4F^R@iIDE8!1hG-5ThZ#=#B9ghDL@uYnE~3v%&sLdkh3`_+Aao
z%b@AyhO=JJ8rJ<WHCW2CT`?Z7RP!mlT3r8fgb-50KMGeH5T$vLG!x0XPP8w5W^}lx
zb2d0>Wky7ysyG6<u@S0)!DSrt%btc#B1L>LI9M3lfl#7*d135d{vBcJkOj}`Ina%P
zdpAIm9V}fz|GlSFv@n0o)c(j7!iYNZg2Hu|1DN56oh@#3SA+qw+9g;pySym&5kZ+%
z1(?u$VQeW1O&T>ke{F>^99^EX%yu1w(*PB70Ug9VlLj8!{4KK42^|iFEX5mGSWUW`
zWu$0>9j~DH6yhN1spkx@UpIb;fl+mekI=LtU7dHdR_9$(CuY1mz8nBBPGyQg=rjE)
zhef!w8RD-`1Z54I*D#`@q4Gtuiu(I2+JS_153<cF0%?cG-j4qn`e|<+Cu-9r2pO!0
z9yOOgoe$eUi<Lef7HadyX_zJj)9sAom8R(M-O9?0BhJWwJ6wMYE1-@DXLNonR5(-a
zb((|>J?VgBCUF-tGwCi@{g_IKx^ZMAcT#B*y{pr8LgrAvs;>xITmKymJR%l$C9)Z3
zMkMF_Nqz+b9c4I*o~UF!cl)S@D0J;^ziWYfR^TPM2TI2ur&>qLjES&+f=!f`hU+hq
zia2ivsjWLhfWd$S`bo&0MztzI2xuSxffwL~J^MCQTZ9FQsjhSJxVgG+K*p@7s})-P
zozu0G9KTVF$L6S6DseN`BdikrDK^Amw8wb?Qp}Uz1Bk1Ey;Ts1OVC}2zPa?nb0vEQ
zQOQI~XEjS(fj>xVq-7;%B@wbv;ZcGK00-XZa)KG$vKs`elC2<q>aA8b$W$O`Ww3K;
zX}BmH56iH563}{Q1*eh;4i5nh#XzL!0+@B*>L?Y}0T^)Au=JKFnRY!!mB?SPR`^KS
z5Uyggoo;0W=98)_b~H-Wp-$gSRYHn-Z<cz=A$*UDAtad3Lv>c*JzdJafO3G>__|JS
zAD{;=A{1G?iSmsK7yS9oMvU~6Ptk_mu@l`SVHEfXk(}x26a%4H>>H#G$5%ls(QR1>
zT||H4FDh0#7Q^H$Y`4`%R|OGouZ&|ABF3W;>S~n|xLN=SbxvUlS#CRMI=6~UPS5H2
zU;xN!KS5BNzjSiX@WOm%B~@Hn``s7AtTW#nT)n;X_^8@C4C4kEcFtcq>0^wO91*Si
zxiSRGeRdAb9A}krlX<S^<`ee~syw@DzeNDJP2y$TjI4S-u@%K{bV~rPr2mur@byHm
zb~C6n79_Xu52rjR5FjT+MmF#eA(pvWkp&SFS#ii0CbNLJCW0;o9w%cMCOZ4dF%MDo
zq`e$KeaY#0D=H5iT)Xj$)2(7)ytDI!g2A<4eu2kTN8)tz-GxiGBSB_MQ(^7KjG~OC
zM$;;z>0RW!Lg5qDa4ys#hz8-T#eQ$ipBOP%2NkVy)a0*^sDv7#6JbhI-|C$s!!x+i
zQT5KVt1chd`$%L%Vt$G0kiTTYDU$0(lzP4EJ#D?{$R*-<kunRB7D*$@m}kP5x$)6(
zo%Z<aXzH7Tgchp~8#onosA`+ItNHupPpWrb8?NIz%IcjJRT~rO(5(Mt%7M*4)KB1k
z9SYg=G9ZuKXVoi@Df8i?;JKWkuCEpP%1|PvR1mA=FQ42kyzo>`W?u%*wmV^1USm~f
zqp1Or171$rgn8;H8tkLyw1-*eJ^)sCp3oIyO-8eL+r)b;1;!;yf%_=cHnHCS#$J4_
zP|;UBb^hLkx2l99nnMxQuy)t5<_WAG7(5_<>IXRmfYZ_d;GrEaQ}hS>M9_6tlXOs_
ziBuuzgx;7yr#O~6DUL{7>UP-v4Ef;;@6hKX0uN6fId6ir#${$!n;x*UaK!;OVs$G#
zn`+<LXdEo=4!=2Q7W;Uu@6Igw8*@1_FXPaSgLC<2`QSYKAH)Cx`(Cs01Wbj)f>9Q|
zb`~`43|lv0kN{-chst{zF4VT0r`N&vj>Ib%r~;fth%20(JsF8d*|>C4!HS@F>|)PD
z1BJb|4Y#iKq&)t_t~#3@?xsG<!P7{6#PTkC^3f{sNChOY>{e*<+awUFz$5{*)5boz
zJ4*$kUEpMJt|ES@&!>5_8xa9{vm2fI?4sWCX+V9tuk)!&9}d?JY3aLz<vR%@j12D8
zcUtwXufp}eG7z!K+p=#eF+u+Bu=NQZVpF+{LYTqYM&3XGi1X>lFKm-R^B1oF1os9?
z*FK5@gTo6e+qA9yc6YRT_haGuH|5=u$!COT)UW~c#uNfDXdvG_zNS&S0EFEMBl$06
z5xzY<W2tP-q|;+F8Bb)}eU55I(6@X9g)FtPzm-zN4xtPo1wAu>RJYHvN#X&Y<3~vJ
zuW+pm>xDH42hC(~<bllIn!~0Pi4f2i!7xJ^;WQ4Sd;`Por*W?#d~|}E^3KG#$^PM4
zGf^R~I)v*~RyCbHq#k+XD<&OnaOwp<1rZ9i>9R)PhAF_@NOBm~{~;f;X#zHh^b$x(
zp3w`g@fL4Vw!?*F${U8{8D@&)?Q<ldN3+<M|D~&Fc-TUePFBD{n;pB`pJ5RYpL59=
z02Z!DG0;u%f5qgpCS2zS2;-^3F=UC4PL5_A35TJ#PRrP){8TRoAP!lLivS>WH|OJ9
z{_*-{bqNq?R%(`2<G#TTYH+ociK&1HKAe%xeO(n-zz1%O6wT#aDC=ZE#rk}8DZ&$@
z_;mJJ23{$BmPgf3U-@z97|%utNATT;Jg3**SCwzNLcT7OJJ^gt;ktJ)IfJX7;ku=q
zrr{0(TjNh5M$(rL%H@`L9qW$uPv-B~C+K+05DAF)mCrF~YGp;wpdo}f+MWDmzQm-O
z{lw1gO>yM0r}nob-np9uXtrJ!q*JNq?d`5T75U_mqK?=iND6#Dq{n{Zh@IU03&ci@
zU&Pp9#pHbYB78!9m6(`A^9b_GWX9Z{fKMnzxw`Y>emDs$2gV|Ht;J4A_SPK$ockGi
zT~3O>d737;b~CyR%(;ZKDW|ik7PhJ-OK>MDpB^2cZqKyU&Zfr>70*NAiHKUXByt`k
zR;6avorf!Da|~Osx_vsV1!r?D$~n&FWA;1KIvXlVzn__mB>gIw1)74B*wexOZ^}B#
z7<Cs^0e{nB*vz8tCl{F`iVK@y)<zT;VUao%kdK4I%`Qc;b%UGUCk>&#>?**LRONDf
z1IdTz4(SN3B!d^&f3`S-d+H(yNNaPctk+RW{5P0bCVrnp?{+KgZSD3zxb9|k6%5y_
zp(ZdCjRRzImR-LUVhD$IKe^zd@QeU%3i>D$R&YvXQNcx3;C(VpAAU4wzX$L3G73WH
z0HfYiN39Q_iIg%=qD&Hx_=(^@y>&Iea>~rmUQ#_&q8hPp^nbZSv@_+);VECbT~{U4
zI-e9MX0lObCg7K8sl-;mr$lIuA=^j-wV#2udVr<LD7ZLWk1fC2)UB-S+izu(VyQSZ
zz~y*8Jv#+j*Uw3>7~b_UApknY6c+*}8LJ$YCt%Dyj~GqJQWCvGAZYXaNj7k@@KzKu
zejTV;a7(!EQUW?TTt5ZB@$-blT5Dq5N`6fDlV?I>?IZj!{*8S=4^L_3=LuNi3NaNS
zHwZupy&@ibFioT)-Xt!^hTAG^T1@B-{*z;0E%Vh7VrKCH{5aN!qa9wExN@FOm8a6t
zMelSJ)e?1yBdWp>S`vOG<fuAm|K$*6Xi8!Hb7A~*X!I8gl(Y2CcQhHbJoXIkg>U#L
z(_88ijkqOz=J=uA%7R2G%cb#<*ljV#&qW<`Jk?+3O(1F?hL!yBlW?W1T8cfxY0|W3
za8lf=0`?3p3lRlRk8ayV4S9rF1pCTKD+mgs*$U)n4u8$i$DL`AN^&tyRL|fGC35*@
zc@)ua6w$9xIge&8o8l6oiH^#uA<kTd7oK34c-yYK4pvS!Vmp)ZN?_6<Fb~1-Z8+Ck
z3`HeYOm7cXc4jRR!y1VIg$iSxjSE1|<th?a!A@yKHO%&E|31b)?Xe}oG8RFTuv8>w
zHaodA!Xg6%5lfzsZ93W$JFGG?*7JjMej3&Gdm;xYstFf(NsG%rUe8vS!pj_RJGVhv
zz83#>z}`rMMF9j#EhUJwOVr1ZH|L_vxhQuoCaMc1dU6f%V#ACv*eHcZH<*Ir|JV3|
z*tSf~p<SgTAg4l6MM1wEMQ6VOMc4Ewk||)1v<X|u;Wjk52g0?^F&KZ=5hR`M9=o*v
zj`yHh0Jczxyn$3aI7oY6_w}dHOZ#tIp>ucOO07pgD1!g6m=9&eeP*k*32FMXa(qa-
z^TH8JQo%ArV~ikNXZ=^g@HBD`zpP3;EhXgB%7chZ9@1PzNFtER90cs4r+TZrZM$}h
z!Vpk$*s(Dh?258xXjc}^0J5&E(C2N5FHn&Y))B?r`WxY3uU?#28j)jWy@#^MV#}>x
zSGBJZ8=RXk=|Wjy(B6ayC_a&ruZVZMR7T>h)Ui=^;t_$7>;B1Q4I{x$^T>~h-G2*6
z{w&;!H+aK!ioJV;b=Pi=(B8pl;2*lI+=9r24pn1cVW?2IvZ}b?;;Np+66U+3iV~`1
zcFT=^09`gHh|xe_DP%zc@-(H00}~~Qmin+@|Em3@y~M2rA?LCd3l8TjiQfb&*_Ztj
z2o1uOAE6X{-cs>s3GqR|iGPSs8SptMTt5vjHBRCBOL4=%X)H{1!ExakU4SeW>77n^
zu|Jv_I`Cj&bT=^ipQk8B1MG6rgkTo~Uv4Hr$q&3M1<2Np+kb3Id{}Utr=pbyxfMOr
zT1A#yQNu5+$THrm-VvOTglbZ<vd8mVfoi4{AXMX}GBT&sVIiPCeqUBV_5iVLtUYRD
zzurx83<4p>-NCaU*MrdZ16_o=wFbk#^Hdu_`(Hl`WiATWAEWKPkoife%sIO%v{}kS
zr?}@N)X6M?Se8SnD-rWqw;&<(y{YJw!@KdM#>RFZgMIKZ02bL#9>x?|fd@}wazFS3
z4+bq}SOkNU&B!rgKl}z~p%MO&D7kzQrMt_c_XLebM$D`O2-&(Sd^HqsjKnWo-m1hj
z?G_K#irfWwu@ZcbPZJ*~kq8|vh)|z*{G=>NX}l*8FStHD<4*v!;7SigA3eaO=txa~
z7G>=Om!k7fF=XxfaJ}SNID&g&va$<Wt89Q<*+^Acr3b3aWJSldR#8W{qV}qyTf+6H
zIT0h(sUednhU-_6O;+f~la%l(J|jjgf$4Ple6z#nvm8FZkIxjJh2gFOg3qrY_d@Ym
z642OpNb>o$*IMOsFG9Ai>JY`}3dLtc^4ruR00zQF%;9#QAAQ_@PjkD6phIqVkOHtF
zaXHO`Y;-K0G8wRR?Zpbks}P04*y+2gcqjJmV#cWz-^1P=?#8K()l0E=Ye<!}_B$M|
zxA4-j;Wrjct~!%q3V|O1alR00g*Ev&a-=u3=VPW$z!qrhF3B$tCy;`Hp=+e=XGW=k
zDX%LS%`ejw7T@Kd?izWG>^0N`7xgi`6V%xkvM0uYI(JiU?ytU6_~s_#bK3W)vhNQk
z@eSA4;l{D&c@)4Qom?F|Vt{Ko4ac7AFfk_fe0P7xY8Cv8I!40fIpm?`MDlyma`r}3
zb}hOAB!gH^gEZ4MLIMnj4C+x*0!I4CaJox|Q%Qy!ZIFRyC_B98Zwmjh+b{X=p$B0A
z%dnr4SsW4biK)@i*#9>q==X>2y?mmekIo3Ri~UVdQ2PG=WY-4Y3*WsspcKBVmhUL!
zJ+~^8mX~;y<El{%8%HLb6Ry7w6}(A`M(dg?2brOFJGwMKTQy3lNFfJd08M*K0eY(y
z2)#gaj-KX!fs+wYDY~s2whzashwv56odRiY#4|RA{hyNUEI2`slXmbS@Nqez+POmt
zu$@xX4j!wnmKC^VHOHqMkC;imK6yxbz7|T(9j9RdO&<*nJ^(c9JGfY9d7uHSnnUwr
zKP5>)d)+^YH7dinz#S}_|B>DwDmF2jok#2+l~Hx38M;YTe<V2a5BWMMoFribX_^SF
zltN_N4QN8-BeB{HouI1eh-#iy)g%^aRy^PWHIP6(Z1)@?dhemsty{d5;`V%Y4cB;@
z%{2g&Y8$RU)S(o_;-&U3f!e92g<Xg#n-geLu0x>b{-Ftk5uQB~s6<sy0<D&>lLTV#
zB~>Cqk4YgC=o~cR66gR`4GDCss>UVI6c?zj1nOZsP@GDjP49aNbPx$tdT@FIk?KkU
z!9xn2I64_tu=}*|jeYdFY!TuDcOohmpNS3@?qOBc{X})&J{q3W7{3-b_7PvhqP*(!
zDL#8L{ttdzqHSws$AbMUgV<cCT|xUQ={Ffp2SnSr6!ZAZ$6nka7H#ayL4m|F`_G%U
zHziDuLG!gAp8gAw_t`TAgAUBaklz$^rRV44lgci1OI7v{qyUw@Vl$<uV2p}yq@vtp
zMS;GpRP?o5QEydIq~g?6uh83PJq{q+*B#gb%c-q?i0zuMz@5!|w)efEMd|2sX?Vti
zsIH)Icm~Hme2%YhKbKxTTccONMRRCE=+(FKrBpQkx}h0&rvuq^s*jze>MH5gF0Fbc
zel0JqpKw6ImEpQS$aU4j@e6n{E?jpGe=Ct$#owwbQ?!t7+uYZMzT~)8m~^rfAh+wk
zC-nC5UxK8scuATfZ!#j#T;42WP4$lbRkuq-C6I*T?LMtQ@wgNq6isnLVHpop?+A=v
zU>R@X7kLJcr&4sVuOoI81*bpkKst)r7i|PeCxJ>ziGCwK0|G8p|8;CD_^g!z#Ha6G
z;^S=HtU8v0&*kA3@G-ymU*K~^I~SiWt>Lpn4x1-Ff4~xmz2VP;?MNagED(I=bZP;g
zMW6pK@VRRr7oTwgu4EsiSPc3N1WqGdd~W-0@9<f>PcwX$g<8NT@!6j6`5LmC&K~LE
z0@0n7ZCzack<*H-t(F4hO~bbem*n_|R5mGD+2gHMHq)(ayi}H|cB@x<4H+yo#y_y{
zKw7o?`csgh$!kf{>fdxl4|D=Ju;q@YdF@FKt=fwjE=|5V#-&LfzLxMr52h*pE|CJH
z$+O>(CPX7S5_hb8qGNV%U+n}!e6edNw9iek7i-hQTX4K`lLG7hNm#FJ4c60LSoaZF
z3$E}~w789n^zhay>f=`Q>eocN;B=&Jz34}Mi>#bVgZjyz0QCa}^%Q)WZI?z~z5Ed|
z%SwWJO;49U>GiKr3Xnfx0X0?3Zr<OkZ9M^jeF5U9v|={-V?b_rn3e+nL+SaY;2&S*
zBln1=P8_M`0OsdCTpZHN*y~b&IGm0359!HWvz60=&B@K!J*8Ir#SOqC3OrKaXK(`g
zr|L(+u^utGXSWOYzOBLiO?O4xpnd080{3yv#iSS8Oar%_Ngyxs5F0v@0`K0+%QwHe
zFrOtL?ZIC6a$)}BOGlr*g9}Iax>hnQ+cVgLybNEzCwUn^Dh;i*tgHDCkj86pe3s>Q
zy{fg@DA4+k5XAo}t^L#aES~WQ6~B-3gx#<F+ojdJN4s*FUbmi>0+h=I8`IIMP_{F3
zJo6F2#@>m6;Iz7RB*1PhpQR=Et32@U*yX~%Z)@;>bCe^W+rCH#|6^OdE=b@%r6u?;
z`S7>Hug$R7w)`ag3y*At{&z_M(*MM?@IT>`Re}Fz3__%(|AQa=cK9#x(Ep~LF8vR0
z4gO#CKppyjpQoe$D?a&&P<~$JkQ&SdY!v!v$-x5q%fJ72_{VzSe`SXY{{;fx9&E(`
z7ybpGrGr1eIsDwzBrW_${ul69c;Mf$-G%?wBU+K4>!bkXXWOUg;J?Qw|3d#$T7v(Q
z_kTP6ee$1#f1#XtzX$r?B?UzO)5GtRe}P}}w$jPZgX?}f{9gNW(=RUluWt?h;V%3Y
zpQNMzDr{7n?AeI^zRDqnbnt(<_P4|DlmDMx_#f@oiu}||0kQudr-OfUq8a=<p~Pw7
zKk|PB|Bjzr_{Vo`1^)A;fXM%bbny3S4*w}F!GFn`H1ucimCd<-okEckzf4x+MHAT{
zDQADA+{x5pFQl(v60RS>QdVgGVS){_?HQ-dM85HGEex1Hl_gt}u)&N?D{I>R%#^@M
zgBQN122G_*sk^7X6?*73G6&<T1TvHTD~85pYIY7+CA>n;Qs_JEz`^Sr7G%~83hD$N
zJVmEQCpY6JYJV^5hs87(F=1RC0ueMrm;5Mvxxk1ab6n*FVIHIy`}AXKF?8pC%*rrw
z%uqhcsRXU6E=bwPWror`wCQ9}=zKKE)L>F?{(5lk<Kz@zFWgJBiMd9MJ@C+kE+iZW
zkVEoLH6CAp?xOwVyWrZDZpSf&KeB$#cOC}grP6|9!gUFNRB%+dZW+m86?HE%VjVG8
zvzVL++CR$18Vr0u$ZUZ_0QmH;D&tN+w?<&&jGY<dZo#_D3FDKz$*Q`WB<I99c_SpZ
zM*M0Zo!>w@zft>DhLN#`O`#V%csDP=sK9CR6=%&IM%jr^)C4QI#5r&g6F>qvb8-i4
zJ5L73t-#;)=Vko7+?k!xnH1P2K*YewRdS|F)NA{))u7`WE**7uHZ@-VfW-3e=L%C6
zMFLPB5?O8}j0U72YKBhy7o-5|OD(SGL;_<Bq7*tD4{-;aLq~TOWx&J>66wYwMWA+B
zo=*1&?I-WZ?`|I|*^i=I?g~uMefTtJw)j(Jq9Q~(he<?uc=};_v7@B}4b1=O-KJ7G
zdX_=z*_XWo{5$zOE2;gJ@u1aa2*X&21#}%Xp>|FknW14@i7pOeTFHrSyon00a*10e
zaLZP>Q6g;P1BFy1vEJUi3bFpZ4z-*0kFKY)_N~`ro5cps3l_^Udp3W#XegH@p)U3*
zdgLrfW?*eE=JeWVm(TC!@dIqm6`rvHGyP7wPMv`p`MiTJE7m4QNk43WS|r?wrBE#@
z8WF+KjI<?&)j!)XZ_1SY9lqs*eC+S=nY_6%hlwS*b&{RM?H*zy@`jm#L$`ofNal64
z;Ye&?fAA5=<jOgn;Bx&O6TFaW9tArwTT_#bNBlFhKKUoD%RQVJB-+QZY-0^?`G?Ck
zZqfOw=yp73(NEQT-trGcMK5t_X4R{rL0zk<-t(4!hIzYSN{y|NE2heV5wNf@7Q8Cu
zRi<sN;VuT0IZz2?;o>XvUZFYD0cv+=OgO@5oW=*BGq4nUty6)bkP`!`o4fX_`c@Z0
zzqCzagNQz)n|E#O{ohyOBg{edAh4`T^q1PSu6Ze*tmiNFdYV!%!w4jm?Y=Z6E~DWc
z*I!M^F@4oBNE!nx@K#&31FU`j3I&FUQ=ZXC3_yD1>8f8n9TyFD#=RN(^#?H!JzyZF
zzDvEvBIQtC23<=UN<rN5`T{9PYw^#us<FJpN{IM=;ks_fkip{K!z722hA#zB$-VVI
zvq!IhA*jN1o+xFCKY5s)m$d6K>L8Uf^T1cOQCyc{cIyXR3~N50ai!i6erk2AIEZ#{
zu9R%7E_NiWvAR@Wn%%Z<mJiGHhu=^m8>@NCzvb2Cyjorz<&R;`r9fh_@y|@b!oYwm
zz^G(u>O|zyN0E_kWEbVHLRJ*&DeSd@sq{u+ul0pZE8HcxN3O@Bsnh#O)_NWjxXOlO
zg{bu?8o*+WLyOG0Gto$4Q$tZquJAyi$`u<hX~WHfieeuR=HbM2nNS5xTyDo{29nGz
z%Pn4|>5#K-xseYulf!jAaD_dVyO$MOH)ACS(!+*ZL*Nda;6leAB?dCTaw+JgMRYJs
zt4~5Xiz{*^5d-*R<;FU$@tv)-RF<&AChkiT0yKkaDe2UxER*U9<(<{NS_rAESq2RC
z3bAo<p4noU1ACo@HFEhoE3fv@HYSGG3=L0^RdeTpI<Wl58L|1i^yOzGXL~m5$F4_n
zrJZEHJ#$qnA-5+>gh$2^$HZb43*ik~Uoa>H8U-Ha4^0fYlWo`U+9r!1u-{SDp-F-{
zRm4XKO&mJT7G{avj&+nXH(;N<N$ORDHFX?X#DsoaHl!22y;<hCCMNu&dn<?8nkd_p
zR?8E~EQIYt#+l=?sS}y@d~ku`7Y}zn66-s2fD?j(&ivs9v{>_}BfC3<^0cY|x+L+X
z^8)^hY5@LHTMW&Gtj2hf3+t**HDcO3>cXO0exB&uZltlN;|XoaL#t^^6g-I+l2UTJ
zq9xD40d`nW9E|uDJhrcFPg>^0JL~K`2rgr6Ygk4`{64`;(wSwaws!5~GighE_EokN
zUd1)@M|l8H^4Jze$%vthm33U0Rs`Z}?|LT*rz-Xc5)kY;4X|RT`BD+m*|P&h7dMwO
zra`BJ{{Z+h&{+hae&v+$I?oB(QjUGpw}xkYB&7cZD^$5`!RyA?8W|g~Q+oK;r=&<F
zV?oL|=&2UQ{pClsV?P?8l#D_F>}N7#yc91+zG*d^<sS+_gpgr{&56-U%}(wM6rLrT
zq>`^FVG$f`F#!wsn;n3Yv6Zo>c^(=mN818`B&c%j21uwZ72dK_1USGXS;|_GZDedQ
z%nDSzWdceL#s3VpLF$Q=^%BT>X@fofIEfi=kRPz)0?<(@En8Z<$-rhmq^yX2{vA$=
zB=k4RCV`c7yRZzDH5VrvH*Y~4wROs6s<KHA-LBlG=$6N?%aH00<XKm2Fb+*y`7Nb?
zL?-qs#X+x(4r7C%dMo1ZQ`%w&OQeE_?AEM)o6>?h64-9--Nan`sXj{bcE^h-h<}z_
z`+_Bqp0yBQ-+mU{%c5&|Vdv^yk*bL7J5l#Z<pEsHqIR(O8rl$P)4+c-8mf08<6Lb{
zv7vewQqI-&>grucL~KaBr9<ANe?_FeUG2|wHLZ2cX7-VJUP3j0E&U6P)G`1PAb**G
zU1yZH7ZlQ1BOm~t<y2P|3ok^N8pA`ZP7_6ki-1wpD~Or03}Ca{z=d_TPrx~>Bp>8~
z9AYl*Jn|5a%HiBm3zfaS{e431Wr9W|2@v%G6zT@T-mCaUFIn-9BQv&=&rqwIJj;}K
z8)`N1M0a(tIVI1iZwlARHd^KsEWE(YeN+kF#0t9GGjNnDZIQ+t5TaLYmgJ#X$kRka
zf^0g5JR{Z-$QD6Z(J~;T2c;15s)Sb}aG(ixud!#pr7#wmlr@j_?W9?6OCx|B7C+sH
z$_gQy|3bfk{J?=DIMc|7*-j(lW1+=G5da0Pqj!aWgDgtB*y2@IbOI-B*>m}(3|*8;
z95w5>$syQr=I2cm>2cXetsEui09sii^XVlZ%vP3hI3q*W4$Up+Ri^!d;n`v4F+vEw
zmC=38mm4iUHOnYfaPj?>S+ZYiR3T$2DO8sDlYL(=r4T9SqnardSOb^dzz`SQdF6Fg
z1%^ll5pD+)Yjh4`f*v?86ATlfBo6>`G4<W$e>_Xn)LFN3tN^5lk-&1{DPT-fxPFs_
zuv=uW`;X=LPprpRkgB~KT1M4b^r@GHr(j}V^ZFj*-2~;qm%l?)Ab3tcavybWAj0i^
zE4$KpML}N#K!~;E0yb0Uut9<BXHXp@0Fg`xB@G}I?S7OkIHl@nr*d&VTqUR6P-8Va
zOiW))+>g$EnQWnp>P~x2Q=SqPVXuNCtjK@-QhE``p>y!VhpHFR7|j%TtkCyAb^zb>
zSc*ZTo&*pdye1z&dF%(@Qng1C07S~uU-`=0pP^D0A!v%zQGNi=3;J+XkD^vugkUS$
z#8;5}R$$IgdRwAv7p3BK6pERlO&eXDzTcRN(;<7t=@t2aIIUjh!AWo1<-y6mcoBqQ
zI}Lv``z-6}zXB|fhe$I2f=lC<5b+#zbOlXw90+kU#{(w!4%a@8FTxA^AA!utNL7`a
zygZcK$|Orp`j8_hSw@WGow9Q*LtUt3F!2z~Zmw_))=eDfSV&DR7emFQL8f+MkP(DN
zQzCj%xd5kBIZ5K&Pnu5DdNVjH5GCVYWpMH&G5fe4;@B^E6=cZ3gVgb_m24r6K0vq$
zZIpt7E^F2;waP@P3@r$68+++OXK0{ydsF2|RXl&igdql2uXFein+lAf1!pe?h{Aus
zzz&A%*p4y7EltLe*k7U@MpR|kL6(m?qHBNKT}*)p8{UJX5*@G-(4|Dkfs0bPa3$Ej
z;T53Sg=o5eNq;Q-K2zy`G5L-4LHq|*m&*G1u6*bC72yqB7uL<+g;tCh{16}^EpC|B
zj1~)DbZCJOW-aCis3?cq63uv$cZww88Gqpo>2RTEaV)$H2?cKhYQu+6j?r-{N6c2)
zTee4q#PD4bsCp(xLXak+AtF(`tQg{>Z7xxQtB}qW)^pq0$XlRNvvY-rN{8#Jjl=`2
zB_mmjea+E|_5=wP<@8(GZ(aP-=FQm|FN50mL)~3s<06IL;#>XWeTa)deptH)PyJZ}
zluUw(wkT;r0B8>S9AiO+T8<xCS;xHT4M&NXefgXp1*aU~bTRDB!!Ia%Ly$o$G0Ch|
z3eUJhSqbPdLm?<PAZUy8pFX8q9vwuai4ncCf{B=-AuUVAVyw3u543fSR0v&R(Ej!W
zQLCnfpaA!ZO;R8Qe?!Sz3FWPr@`isXZ-W0Rt>BN*SuPm_{%<tL|4tYGaQzAqu|On%
zV!~c-hb5^fKoykj0?QPvyZ~gHyg-vl^jac~Yi>^^4!{F(hJ4}@XMYkWel>|9GDiB0
zd=vCxHZBz$cA^qe2&{-6?m&OL->s@*v3uF_lC9d0_frB!&>9;6I&9o>{=_eAf!q`1
z3w!p9AUC_5Npkz;ZG0tc8F<d&chEZ5Foy&U6Vo|pH%Dmxw4CK7K{3D*P!(eVyp|b=
zhS+L78Y&B1OR?M~LKV6M7wGD@<#9G_pcaGtcF7BXi?%ma{>M*AwXGT+VGB+P{vF1N
z?|}BNp-`@Ycw%h~w<|l%usSZp-3mM!wj!dVPEM}Cp^)InZ$WkkF+gO$SRKO!Q|21b
z0Y`{{zOew1k#8==QslE%$tO6@z948;qG*Qw5=9l+C4rPchT4!U#efy21*31ZL--|j
zz*hF%EXc-^o9rORv&sweSB7hk!h3GP%Hg@_IcC@3Ip*cT;PCv7l|v1)Bk&rP9mFwh
z_<vXsjY(%#5Tv2yK)^brfA|rcNCZ`nm4PaUkAmEW3wv>04l~ye`3l<1h3jskSP6px
z5x^dm5hd)PQDtY4_`|AFY#G&=JFsNr<}I!4gf5e>dO(4%b6u%`RB5RI#)K1Z%Xt;C
zFT6u-+>ry>@YJE0;(5SNgn-!X1vH8O1WC4MbrVKqJr72e;z0_3s@Qe($#i&OV9W=d
z+7x7r7aOTWuxdYhlW=@_U=Utr*j1Z$U_Zw<cQ)CJZra^spH%s4lb!LzcC_~Zp51*F
z-nRV(|NMC_-mZ87|J*qox1G*IufqzA-$oAy#ek0uo(M|XS+Y5=P(b=Vfy;a2)XTu(
zA0ddt3<r!aJ_!8|5Apfjr<IYhZ_r0kanSprKV_hZ_M-M(*g}c)03D?_R|u`cc|U9U
z3@XcKu|QPXc=bco23F^?jT6}h;EDh&xyX?VE6{eKHf^v#5#gKtY%IM6I#jow$(Eo~
zfrY(@O|fq2d5U%{^f(>@o3k8j9-OagBQ{w+Y#N_b*q}Zh3?OwnN6Nd{43RcAgFU2}
zY*Y{n4Nz@-i+yKF0DGXPjed7|DR$Z3w6Qyfc+AvoEF^_up{;lbJdRqY+t~1I5|4`m
zEP_ehXfT4(W~hkYuB^HWM0u{KeE0oY{oR9}?|LM^i^_KgtM5q68hp1ruy9?cHkem;
zj3j7wHS3Ex5^&Hfm?dA2$7lH-|NCV;jse_L2{lMUJB0mD@i=}m-Gdd#@V!~ZH(auT
zH@_U?{pLBoIaR&+)%WIZzIll~P%H3|@6BYs$;TV}=x3pk*E`cDE!odofxKTou~Zf&
z`4jGXI*G>o)T(`qm~;fAu+)`@dG@j}D5a2>B#i=dZ}w=O%xGJIBPR11bq`{njch;R
zrhXXV!yG=eZ^UNAnE1Ws832C1WAjt&$@Kpe-h<S}8^dThJ#cQphKs@-S_lp2t5dvi
z%HljLFnpqVsNjS(Yh$nMBXBN#8gO3h!08Y;2`|)mu^K;HMt!W=yqK_K{Oo1^TKZR0
z8}rw%sSSc$g4d~gC|lhiR)9T3AWC_H4~8_>uomppT+59d<ZubIE4J+7IJlfBAps3o
zSVGshg|2any$E^YYUAau?YXVfdel*vzc^g`AugO#NplOWc4!K*1rA*Kb!{i#siasy
z+w}nKM4kb&Fo_Y9TlXJy-DcKGe1ln^lV}TzaVlvBP9;TotI`KcUk4UbQ=(?sVnBg#
zF;wybM{=~HF(89+h4|Q+FG06(DrwfqQb0!%>fMhEl~I6~1d-s&F$sGkm}4gnk!Z~d
z{5qjI%Nr-9VR^X}q!FfQQaJ1ndkf3odlD?~0*!RI-K@VLy!H9JR`dxwT_pGYmf#5H
zLTL+d0D-ly77|44r~jDr)g?ZOK0FP2_AP19yK%f%q6NKQdI@@4;9%p&`XxFk&**=S
zzaqs}SVMw!kW55{v~&PCN`N678gw`m%{@3u9gs>K%78S-2}pa{3(tiubM@11d>ly_
z^+IHS`+rDj|G#f}EMj&~%fs1ni|aLIy(l6n8WJ}?kNsDe_xXdb{nd~CAGiN0qH8by
z|JUsojP<p@`fvZo`1iTq*Z%PT>-Jx}!PoxkNB4;T1(5#;<u9A^Cpwj5hyWHb)@P(~
z-@0vJsE%|olDY(us1vhHb>Bft;YnCUEe7uFpV{mjDx6Q>!qfi>>xVW`H@jwNGlzBK
zQ)feZb2PMFc5utzP<c+jmDq-G7`m(g?K~(yHnZV*2KlQhGjTR0jRM;A4DYfhDDwq`
zJ=^ZvsCz((_xmk|rAH@8kkb7}%oW-lrHG7z2pkw|N|^RZfM2#%OND=df*(X03wsXu
zBZMF5P-$gAiZr`wt%qh%ZEP4KrWmHozUc2M??8Wg9-2A$hs+@T!v#6Y`v6@s!a}Z;
zQ^;=bue^2%42Z*!f2?sTM}2Tzgs&DGbJ<rs0)%p5ic|O@)9lUofiJ-YXQ%`dtme%@
z&imGJmrU{`T=ydhA#=D$18~QAzX;boix;ZMgHq%yP>A!m8^ZOo)HgYXIXV~L;CEuK
zk-sa+W&?sS8jYWa-zZ|mhIDLp-L!Oy;LdF0trRx*2R%g+qzLmVdPot?X0!m@5@x@Z
zi5d96R>?&rMMt{b6rFY-GXcZ*L7e+8A=^myrIB%;N&H0G;IQJ7Wdy_j$yzvf+kObd
zuT^f|NB{AcKo>l+r1t6uKk1~g>%-&|j3pb}v7eqR`vpSCL?`clpKNBs5I$@-xY+$-
z63%w!Fm;mi*P`)6%ndMn?T4q|NtXEH3$+z4bPCOnR?W-!>zK9>gZ}8jAWTCzv>)!;
z?T20CtA-ge*(UUc{Bjfm=XHJL=C4#D*e{~8^9)XSY1TaHQH-);R2*Qc4m)q#Bya5(
z{|b^7gWklDF#*0*`T>C3#IJ1Fp<|}h_p0{`MapGCYE+(l@$kFqi`4QFr<ni4c;$-p
z<<%?`s?C;aLrWb%G=)>^_g9;QXVmia^|u7ioK>p4kALGCzj)+_ji=Zmu_=VrZrj~w
zQ)-uFC+)_<cUrI;$33_w{}G;Uq2{#q9O5Bj(*>GebtNn~9+bd{Y^XXPW&?sd8fJV0
zghy=1=m?aawjG9IeLAIgf_IM4QcJV#kw{^X(Jf`$Vc%Eb|3>?kd5|2A!zzaO>9rUB
zZqd6ADMV_0{_X+y9mEkf%Jp~qqS61r-$6f>zoWeaVU)kyoiv20{%&bHn$Qrs!M)Jr
z+z+(YIsVQygp)`%+O<AX#Al@7@6LDtMB_H1et-8L$=6?xY+1f8c-tW=2<Np<tN-%<
zSNYoZMtb==3=p>{U#;t-efCO+6p$|%KTka6@&6HrmMQf5^Pl%bukkmh)y1^2RZoen
zx=K97DFIB8%t;BUpilou7c;F#MuF?-Ai|897T9e8nrzVQ`WjyN^e;Spy|Nd3wpsSc
zt9&%_#ZQN&zDtRp5TUfO4>`i2pAgv_KP8F0_3)HJFrCyXMrn^U`XH!X5=|P*nENh;
zIc@F-1v<E<N9d4({{#-MG>f-DL)~fT)RBoJ)J&YxvNK%ADOeRub>N3$I7eoq1Ptgz
z$=0jmOpz+`BCfDd1O4HVk-W9x`UgpCIW%A-W?u0?#b0NmwULOw%JIwi>)oW;IorT1
z08oPeqXtAGo!RNCNaP8#S0JgtV~RcDlvrz;okygIHaln-cqZd7#8i{$>SMI>5>r*u
zTp@YHo{WIjD{A;Io{6&fWPka@HG*Q{7>1pd=95<$hFx+m*fZ8Q+L9ul<M%>;pIn+E
z8GzLBPHz1Er>>4@rHII9_v}f3!_(`@vu5%Ec0eQ~9@p*y=~rM}Khfc1AQo_^@TQ&3
z=)vY$2e+WgQ0MPGv6>qjzp~mxV>HFs_%ZuLKpOwOUznTg^XE#QC$c|O&i+t2@_yGG
zgkfiHT2{A^uR)bkpd}Y&a$yD@VG%R*D1VS3G<`Y?Qu8nZef4)7=f~iGn;R7sA?%PL
zzAmK`D?^zPt2pR{co>xj8Dr^bWcE`ToS`~tFTxA^ck6zYKr)9F<w_ERtN_9I^Q6jl
zkaY<yiv>1(T_P7~u9(f00HY5(0ZuD)+d8HeIo!4agD+J>U#d+G=DMSc5rUE9fFW70
z_L}zqMq|6~0#ieTb0j2~%B~LFaiEaoPX6#*<{Ol{M}fGoijh9XSgY9zF~{{xxhB=j
zz_AL%r`D?MrwGXfd;^E6=YQAFVdD_G*aP?_qD8Q~2>aCki~4auTbX)mFF$fb^Ey86
zeK!Ol;HXWCJ-ZO&eUR5O^1qb)FLmLn-QF&2Z3V6ng?+;HAM#4);)fR=P`&f2a6MNi
zA%!!edgm44`iIm_+v=Uz#;T|Ku3gnJQg&?B5vttPRfpgLWh$ydxY$PuKO|&ew+FZx
zBzy`htw7c{N~XvkDHgQ<dVQ*NX?9zIUO1M+l`d`|!O!qEy>#s$TR}_MRQ7Yy9M4h;
z9+x2<N~TE3I!=tDHt<a?om5rh<}uCDZ2L~V;giTLxY_*Bmp#@xTUP|#(T514JrSUJ
z`b~syoc40;p_nsqvB-0?4bkq)`~Z@w+XG+YS3n%V)^_nR`oiICoaaCwWl*s%fJIrn
z^0FPAW~P>6=eThF<LU-1y(C<Jr@8@KE5h|$dy8W2C>?b&D}jY3JR}6dQ&EM{UJ6d7
zNCv*XK_mlTjuXjHU#aP+?fYSq{7*Q&mDJs=>?_G*Iw;x;&d%6vkWV3g3^_Deq>kv9
z20nf-E5JiVKc#>U`GWS>dR3ldt8`v!bMmDZg7oaNJAnjb%Kuad>>PLZ93`+V!U}rF
zO~v6re42BC33M_)5HIJ2LmsXfb8ftJ{`~h|I?MDx5OgM1Ox2hgatIy&J61EeH*avx
z@!30Idj9BJ<dC#K*0An#)qEIN!eTzm7Que1`$qm+&hMn|r93ed_Gt_4(-!+-M6WVw
z1zxrxeW4hoY&WQH=wAY#Da&3?>6nO9a8YAm{!q>%!7=?!rw9f4Ez(4otOwDuA6TYN
zDGy=+OaZGDwt_-Rkmhu+CTIwLN-*t(ScfUju5q^qFH|YcC5fkDx9@CEcQ8wz@-e6T
zVt$JGIem7jI_$$O063zoido*3e=y9fQT#lAO=X0doGF;i(kF9j%G4|)!H^{fQO1|B
zMOnv4o87YcqlUs5gY8)Ej^%{wXtF_yN3ifqNOAvcWkrP)#qg1<?pBj+_B8LCJiHmP
zg02Z!)Z1TVCRK5enZZS@4`K+4AOt2XR$%7koM9L9=$Ku5*)j@;m@r0>Oc~fJ#AFFZ
z&!|ks9&y8*<I3^O({mOv6p~O|q<mpSSFMi*Mw8BI9snb|b#l$p<eZb9oL1=ZcXX5h
zxqu<%fbh3vq>>ESfuh8txZfx7%NW60q5S6M7fN|4Dj%uxCrZTI8aojYD|)iw*XJts
z<i+QSe!3q28!?AY^lS#Y2Ptl$9{d66GYNOLy?dF5^)v8^gax-!HxIfEy1A!(01L;H
zvCUHlXJXu+`4KgnSBM}!C1;USMHh=Sy@pdKVd{Nax*Mshj+Sneuj-@}waV7_hI}2k
zQ1;WT!+0Xvz}mGE{A!KeeVP{2pDd4<LcwRL%3@I3?-!>iZ8__Kyp+lB961G>N?Vpr
zX=gpJl(sDK1eEskeMv<m?CVeG@s~;qXM-2;x4Le50TM&(X?-BCRN4pldHz}|?JRu?
zJIoUEd`wNNnq@0c1C-VYLd~pk(q^~I_>)xHVGSP6ZJ>dK(3MH(`?B20+7^f+2IWlj
z0zVGVxQEXXo|1aa7JqzXWMCHqj*(+AmTHCq^5^^2+NTI*E=TlN1pXT=dsFHP{0zPn
zi7FNVHVZ~bIS^u;m#fT=NFA2$tmjjhN410t5K6C69}S8atCAyclVI-Ze-78n@ru@K
zYB3N5sJ3y7$JD>~k|RWw4Bzx=eW<~3S8KvL&Lh4cxN_!m^ubT}>$pc!hhg(KJ<U|G
z*TjmbBdFJSS{m)NWCfmRp!(Nob0eQCQ-c#-X^3$O;%my9TN<FGZ<>R=bd^vM8rojj
zQNx<0N()_oxJ=2h6K2pz;zgzbZ4>(z1E@3KZe}a<h18A&uzMtSl56NF0Gw0X5T3Dv
zlyD_r1r8KIR`%}Gj9Mh-9{H}3A?uzX0jsnGz#QB6-RqYCiE+6=37S}q`uOKtn+f~A
zAsLL9i#4{hQt)#6IgaZDc7z$&QH!?AHE{>p)oeh7hk+d4pgF`Ays*!Ci#;y*c}N`p
zcujqh>lB@`Ykv9(`9knN-(3Lb-?#)OtBs^Dkeh0`->eq2@df?<we;_;!1>E56!dOX
z2SAH_&P)BQ+;bcDrXK}51r~rD0wCiiSB#nxzrdEn-(mzMV_4$P1HWraa}+Z8BT|Bf
zv+Z7QdQ1aPO@OCd9KRkH_MjMydcJekqJR7jkUyr3`4^xdjJb^E#hy}`LonuRKrbeF
z75goDe`EtYmRyObxNOJ$N&pqOOYinwO5T-e>m9{bRwSBz@=TBQHVpVxXfsTA-$hB&
zjr1Tb3osZHIf_wEqYYv=kF-8|N*Qe<u>eN9R|cu%^mDZS(`c)moOE>T6aWdusl)!L
zNbCDH_}q!K+K6OAO!x}{6Pna4BdL6m){Fee?6#0U$vKVNUiWZDcD?{_8PbL8I!c8I
zZBkVB2NL~1R9X8^ewBq-igC%s93`bm8yBQK4uhcGEA~u@E-<I)9$MN=boYcevdcCS
zO!K@P`CiE)*u?;p4EC9ND%&1vvp?Rd)ijEej2$(VR7ijh*T7Wb8yR?b6ycmE>@Z=5
zPUBBf5hAa7$bAq#k+n|o&bYGsPlqNnHA{C)9nTiLT0Sp23V582n0yJa;3K=9_3J9T
z@z6KrdYlD(p0i=8PdUxqO=7;IQ^}p3a@f>7p(qBqFrjL|(}+_>tYC#Iu3=D3y8sqq
zy@)@a2GLuD!Op1%E%s4Efyw@ttRH%X?bZ6mf2_dV5vubPr7{~dqr51_uUwSKg%zlI
zKj{XdO0YUztON_>aU%wRTSBRXr+^URVxkfv*dtg0N-HW)vHKS+R(8LdP2tbyfZU-B
z``kJp*4sD634y;arodP8&7JXi@_4m(@P0p8`$g}AhBFWKzxUB+{AHjG2;K(_=!3nd
z0xvu&nd<u+CLYx;3pOB8{S=Ys<$=5LF2nveX149d7nqN}7GfB}c#1vqXx!e}<=;*A
z@i?J#dEh#f#6-NV!j56RSz?CFHl&Vck3;(rhAA!Q_bhtGGoGE}&sBNA|E_ik>Vhzd
z4XAbB;TB@fHYE3F=QI$t$|0(c9^vUfkr~a#xAA$pIjV5oy(q3GH`Lq(=S7(VgoBP`
z1>&mY+{Iate{Kg*g5PLluTz9NB0a)4chMjCNiKssWg15=f_Dx=QiPa0q9!^-rDVc_
z)6%asFB~rbG3-q>Aj>~sS~R25@hd!C&gJmsW3-a*c?1OV`{_zx)zBvemh4c86?py4
z7`}$?KwN_z_!eh->8-+)@~9!sz@g`;dLk@|y}uDa9oI%OIeQX#?m3cb|9%s^%cpwb
zr2_fj9gqgz_wQ7nD0p$m8j-kacr$n>H^HQLu*X+7hZpu@zKUPY=O*Pfo5eRHepw;4
z>0fxIjl8GNeGkN<QKk3Bs3VrdoJK=Zja&XPj-QENf4EbEoL&ic(4(kkDVSE4YBqw4
znik_Z|EhQP4cCvB*6vqhM%YlOZmbN`=~HQ)qsC3=ocdki+F>ZLyxrk_x#59WZ!Ecu
z>C46j_)s*8Z6Gjb#-1DI^BN}i4A<_5ufhupI!CLU(CXQY<@lYa)Fdpx)cyb~0cGrD
zHY?*0%NV+5yp;!_jkF5~KbHkC$ym#U9Lw7Uk9VtJc9O0Q-_2t=eCJm9kv!1jTL^`U
ziOtLMFnI>=MCqVDB2P7f`3>P2bNE2zq!;KxEY&q-nA`SNf0Tn~^nVcUcB+e;bS1b_
zuEhSqR3GKi0U=s(tla=TWD46Oj%k*TU7T*7mY$kr6siXMq`1T=z<060tm%}of~YIx
zoH%pEgtb`GnwVqXVXJSPE{`59#A)P*ReTj*creDekH=wpNpi-YVw8jP+g58os=Pbk
zvmYI<(10z}y=UO=gbGfNS8vGRuo{qwoPzw-1R6`1dlOv6*(Fm@1BZ*8JTLosuB+H8
z!$>O<o9v+iK7{J{s@_G`(2Sz|#Z_31))2o1MPyOH3=Fbkx2dAe8H1~L^sU^)vf=ux
z@l+j5*ch%Ij+^kpNu4v)yVKRXwwx6%HuAS)7d#n9aYSHS_*Mb62^~`X%u$8>ZBqui
z2a{_oaQ;>0$=E8Z;@H!}3)^K6uHN3a64`U<KAsAV*cD%l_|M+?E&0N_NFE+o%{Ghj
z8!EnLHJuYLL47ONV2#U^v)nyDFg8*51XT<02m!VJvKp#PVgCAX?KBh^vb^2CX%!eB
zDjk6(kgNd*Gt|Ty9ptzzU+uY2y1~oaWkc&U9XzHWSyLr+*`ZUjS}J<9T*C_jblhfS
z{QWmdPVd*^@<R7&4UR?(^7`=*YzeS0mfjy<)v3@bLE@ik78@;D1NL7<d3F6PQZDVE
z&+_Ohbc~}tFd9NRgvayH0OeO19mkl=Ns-qz6NYhb4kfQkr<|a)*Ok|{Pth=I^A0Yq
zN2OTv2%By~y5e6^nPO`aEA5*ELA$MsC-EX@tMTi~0gP$aijRTj;esX<(>1>Fm?&nq
z$lFA;tFthZVRuL)x|fPciK7lG2pq*+LPRxn@>dX1S23yloy7ySi0A@Q*(E@9_SfX3
z-C2IpBM8GI2==ArNh0`r)?sx!ZDlhA`xJUCk8m==4vylaV|o5dPUc}<$sRb#bG#HM
zpWP&)nh(pe4Y~&7Gpuu4s(rZbB@B0n+r?6HkoYx4;@YN+aNXnjiBdnzW<Cq;a*B}u
zM22>N1&Ubt45fbgP-I<EQ=<{nm*QFBt*mj|o0=-F64yI(QujgPf9o#BLr0ZqpU(F-
zK(-e_q}kB${3R9rhR!U&D%a+1kTrDRY^DQh9CwdB^ebU*f&8#iRhcsKth8DxT`{>!
z#m8sTy$s9yh{}q+4>aV7$8b34n8pk_9F)tJVa_REg=czL9HFxQCg*aF*SQpUWSDw#
zKGu!2z+&RbAzb*0?t|j1MQv9k-n5r~DF~k}KO_>B$BQ@-F3jIP`EWtFqj;gJ1H2f=
z&qZxO`YIeGU&M%6Wh0>{V2?V(gLLb1&9-Tb*rsc9^BX3>06U7iehN;eXM7>EfV6_8
zSS->C(s3+YhHy6|mf7nz5?{)2-CRC&#Dcp^ajGVshkxt>r&Rm^+@f@Re?IOZkL|<N
z&!O_;!l_N2LqnwKdrV!5CAjk^u>=F&QkK9&v7=5`6qAq%_HGnHFV_+{BNfd9Nrz%W
z!Tb#qP9s>#rmvcU4H(H4XWrC49_uvHQY_x^Bk8mu@vi;E7o-!W+y2Q%Zt$lZKypL`
zfz)FIReu8e)HwslpVcTNoOrO6xNmm_VxrhKPbZH97Bb`lGH|Q{o#lvUIKkha8h=i@
zzA;h8w^7yaRvU*gn3YIWk+nz-DkF%M9U{lVebz3^ZLqHgJc;|gJx*VLd@tH#%Z3cI
z*k6hn)GdRT5;RMGl-u5J*f@WC-T@HSg}GVutX>keU?g3?cnZ3(#W<-HOHc2?<M6^U
z8BNu@`c{Ez2&xuO{Zd}nubXrT%2bRCFYI~%URPeuoeAsLP5ypTH?=+8gtLuaYp@-)
zZzGwEwWy-%a4`3sQ@x!<paQ+@qXuDAw*dG+O7$bV@-s>e8b~}~Z~s&*%U1b8Rn;w5
z<>zO3y6kULyBWM2i$N0PALNk;#RTdk)btk^8Y6}g?(=o3n}|vY<*yVF%5YhkT%bdr
z2cAZeMI_Ab2sNN&S%IHV@pg@gn7!ZSY9Lojt&$N+2JCk!zbj*hTh(Wubt7b!N9T%|
z_~auz{R0A#27U#^+x<RarxLj`*gmfQ=PF1Y(wX6m@*5^4T0^45=(WMHZd5Z&u`i4z
zo7$;~rfstG4?>z=+ZB%VIzY6&M%1I8Zy@W01a;I?Q^nqQ3k{;HB<au|Sq`*Y*$+HC
z{oe}z9P%$h{zWi~x8siFeiIQeC5OX!6(TUp1E1h!hW*XH7_FOk6*ibS`vQ#MjUNX%
zt-!!?vI^?Vkr<A9*sFh{0i$66Md3yRuf;oJ$AS-WJRU^k8thiE01xnK|4Tfd;w;cM
z_8qC8-Y%csr#?kpp_zEFJa85Ol8pxxsHm%)RT2!)C1~F}QEfaBDD*w9<>TpgpBq4?
z@8A}jjaOO2x^GnDDeuxS)NGzdT46jzjJ2hIG0L$5&-ur(lQrs6t~YwF*L$wL&lh{1
zr>(~dy!wXHAt5S@(;>XfUkG}pecvFD8;Z~k<*;O~l(ev=q8eS_NDglyhqu@<q`s;l
z97-05lt;T7H7vElUFwA&39=0<unq^_h@9H<Kl!PNi7AiC3;C9&TlZH)U2!wt1ub)q
znuY>YGT7i$KTA)S(DLF9gj-U7CBR!V;S8e}7PVJ+W@eWg*bWulqs6Sb*HU^}(u$of
z(tEc35+Z!gMhRzXmd(S%2K$cnv}&{Md(*ufa2?p53AX#}!T9T83*ZgLk{J94k_(?h
zBsoYg7=pH$oGi7GbDPvbO?XVm0UOTXqiiWjTSn5BGkTrKIr(aUM%xsHS{V)YGh+e9
zO^$7%2qxiy{H<5=cLD?Un$1FX$lpBH0r`_(m*9#Mj$Gh;#BX+K%>yXKO8vx8GArqR
zN;L7JqN4dGyZb^<abZigk_^YVf*9CylZccML&%Nn(anL27&ehSc(eMx1g0O|aL?c$
zugNa{`BVfQV5$Xa3sO1#IgMA%GNLOvrC^9ybdghRH$-uXlB~_<;AgW9{IMCz0{_sB
z%Om|DEY-Y4Lo?-9cha1Y&FXghTpi<Ck_&^5wf*~{{)s?Pj5fuv)F>$d%e3zqs*E(?
zbjHJE4ppH|^Z>0g4Frrh^N-gX<qFpj-g$iHppAEnop-oSPd_KbbEY5tb=V`Wfp9$q
zDb=P;ev<Mf^IHc}5Pav07?8VC%7(r52Wk~<H_#N32oift3}c-1Jwj_`b;E|SMvUEa
znI<4PUOhw6EW*za4v5`{mUAp3r*2*46eI%u{3R@O{@SW>M$B>aX4aQ{Xm<OGKj1E!
z<%GjU54e+<+(}CNLO_^d25!5RiFPA`a3$EcM2J2(NcAd)dSNFu0;V2A%<bF9!Qy|(
z2T>zNbs<)OF=+3nheDhW?L)2x>A1GlqmM$bcZs&&MgUY`>1^~h25ob@ED4P0^39@b
zfYdG<vo^2_&LpYOG>60ynmQ(ss~@-yoLhh7e^@cbSn@4uIQT^9-idsL8l1!-+%jx{
zF61gaWlTwW4#F~!-JbeK<$WViO0_*zsmJ(ayf0zjAK}I0S&j|5+%P-#Ko1*vZP>q}
z47dWoKF<8!`ad?G-y8h_t63gcgm)SC=DC>5duc!Xvvl_^>_>SHqJx}$a9fLAG40)>
zup8Be2X<kSZx)JsCixx)6p3l?yhDqWNy*1=Hh=jb!VAp!=D;90?{z1`z2}8|;O%{=
z`s8!I&tW|&@6AB$Gs+z~k-wx8tPE81LH-gPgo6ESPWMKim{<V_Rv^FB`!q{G?Z*jw
zngoG`=NUDm%FnS%-*SBM*3Gdr@zy?nS7aT7mx#BH1073qu&dW686f7L{sL=j1&U;X
z2%-$!f~1;#@#d6x>;BIfZ(V6J-U`>tbXF{M8y@2GQskyn6YQ6+P%4Yu)dH4WiAAij
zz>S|usZ*R%w<k*-qDsL<1V*A1c7K|g5`=|L<=2pRrD0h&s30uV)%SQe)+i+I11P_e
z<Wx%95&JtlmV-BK>k0@b(<~hu=9ACxbZ*2087(J0%jmPqsMZr@Jy9_vm+eC*>~E0t
zqu($w5J|F794O%^*gE(%AR>N^i&30>S*>7BhuX^8aU$7E4WkTl3no@l%16*{>3(nw
zz{;9%yeg;yF*qN5CdLWI(>}XG#cKvdu9%LYS_(L`6GWkQSvlgD%Yk~x(aRR_@4HVk
z{H;JxCmz^e=&Umkf<|2r?K2bE%o+)~;^yNGbdG?2q7loi!<8PEw<<7BhEXUU`4XN{
z$U==6DkCbBXg?Vb<?jy9$l)87nRYm?imWqtyN7brZp<vqkRv(JKE{9WvPo9YV+867
z?77AfD2`vz9rJmFrE=Wi5ZvV2!`W}N0t;8^OsS9;qhdcsHIPAKbS-sEV?^c}MvQan
z3@>9P5wqKcD2LR)Ode{IC1oXHoyR?BM`ri*_ph9RE@VOBunLI@otZv|U9PArDFZqp
zUD>vY>;-4hMcc#@{hIE_;XFN1J$BvWE5NC(ItVcaB*D&NgLRX07lTk{=-wFwe=b7;
zC~8L>BEie}<+Rx`oeO3^a;?(nVmZ*1)PSfB37Ua1_!{oAgAr?w@rU^F@|A=34e}Mr
zCN>$d{s2)3!$9bKr#_eDByjv~Xr=)+YI0N4j!j>(0wwLHcWBcLYv7ghX?ZxO3FJkc
zM6_tam5fz(kJv|^s5AwXKsUzMuq&qUlt%n&M&f=b9=S&0U+Viz4$`snFM(pcpi`ex
z>`C+W{%|`bZCoP|==zMZ@mOE=E_*{&80OVsjw~oWMD}ednQb49?gyPM#tbl0rNDCr
zxoG8Jg+!2mvVG`XI>t#f%(lP($orvfmIB(A*85)#+XuB_ZVGH4gh$4BxXnm0s20s-
z0#;`lsNAFlB2YS&<%mTL+Q~k8KX4Q>>+cdK%kBd>5;Y!whB$GH>YqH%rByYX8GW;V
zOno*i{R=5)B#s0aXlpTg2Z$ZlVv>`~5(^PXcRO_vR2vaf{j+!)uERcaZS22&t>FSR
z_)G^$hJp}6i9t5#`B5@gs^?zJd$&k4&r5Ed`RaDu6<O2xut?k3BJ13YLL2~c+u1al
z)&v;1=UL2H@?ASj+Z}ihQ&{_-T4W77HHfX;PN>scxox3|i{T+Q2v>QJuQJcM$ec!D
zEwcW|hebLaqR9GP#&C@F-Ik@yVMbAG8cRzfs2$t7vG%~<Ygs#7GV|Rb52)ShcJAAZ
zrn`2xd;VTKWb$JovfDnOeTZSB5a>U?#E@Z-{kZG-G3Wym2b&(6s$OOCl|&k__(J^{
zot`=a%)BQ@K6;KB#D?{X{J^G{b5gr7f6dfO4QnJwbGsC?I(}|u<)B(@P?rxO{#;9~
zHh<`vJO&E#kKLL1>JlJn?$<1%P(b>fI3RQt9R8vrEA;SR=>Yh+5~4@<AbwQ*fPG9~
zSMxbMAe|0KC&b!02IJ0LKyPN<I!z#p7_nNx!(5<#NVM1n+OKH*IGQ+oU2eo^=V)zb
zTuJh>E2Aq+yd^JPaxn<GR0>Hjp{S^Kon$47;w&`KDHNX~rVvI`BA6cfxkxVrS4n9+
z8-<FjZr_b*3*>35W%d^HFUl`MQ6qNm<6A|Za%X1UUL(l&1@a<+ru--dDF{D?SfBbQ
zh&2pol(`Dm%9w?owsFZZQ35+JITondA=2t19rgJ!LB(I))uBy14l`P0WgQ|2k-QE<
z<ZCwP)39IeajhcMMi5$DEePcRA*IX<)Q>g-5OO5$Nc6ESUcgCE$1l5>Jac&}V_&6Q
z&U54voqftH2LmXp&E-_j#qX_LH!fw(@za@?ZiQa#OWy#QW;nh-Uf6@M=8p^!yIMxM
zfv9qf+LTE}#*DONg+SjCMZ?rsFA@`G){-_wmPt~i7@4UP5K_Uw)F!Q1x1u?;VqFIr
z)|f%GGh?TUo#D}5!v;aowBoviaB^}}6_&zD_K(p4mjEwtmn2?+2zMXth_L9dUxcqZ
zb}u>p?iAtpG0i#dX-{|_KS0ztRdipMMFw8cU9`72+WjtsXYI2i*|%Vf?TZJ-b3dIt
z`qy0g*IcqP3Rea?6qkvj(`bRY=tB(^9_k1#LIy*QhtV=im`_&2nX05kdtnKjX}bO6
zz5$ohw^@!hC&GPJPS&o|ECG$mOEE9O2jjt8T2ppUpn8CbgC~ch)2)NgO6;5|(9c}Y
zHq7dc($w~h@jVO^qb33?1h*KErPEy^7fG1cEtTL+lVBpifkl<(7|f6aQGSW{IZDtS
z8Fxs)E<>`q1-}FJcf%e!Jsb6#q<=EL_-N1Z#XL3(S6cUjL=ay{Sb%(6E9;Br8C$%K
z71{Dk<(Y)*YH(){{Zy%DwqcTPWD)=d9Y%p?a2%MrL;s++eCWh5bCo@sPn9&xmqkIX
zYNeSfns;N2k#3AJKdGGqo|&y;3@GONw{(J9!|zKJuw7z|QH(L>(z>H|6=PJ3X}4y|
zk0-_`#EQ1tBK*qw1HAQIC&nm@_0KcAjYs8$R%Kq0IDCNm3S&iij4-UFI>K0XeoBN<
z(Fb+K(EhCMLQn}Pjz>L+H6)-=v4+moK|o=KGS%B`h8rge&?4$w#G&I3Q$-P`9CvD%
z&(Ul9V~!z+Ikqt77zZq#(=o^U=71M&hGqC!VvhGIQxGCOwE)}vGC0mZ+V;hAh3gh$
zj(ZSHNz9RZuM=~KmlDktFNMCRy`X2SHcQ1ET?pAaob}T}%prr*+a&Ft5(OopU!*O~
zl&H>YtT2~>mv9TkVomIS==A{;J+X#EafTc3y6^qr#zJ}Sh^dxkBi=!U8xuz<Tg@N?
z0uEa()}aWZ9<dkoXccc2ZX9)!;N2%B+=#7L@B>u?QNcTw4maYLrHwT@3Zz~dEL342
zbkF|h7z$-78mM(VYK?!XVvQ$85*yMqO|0=l_g1k{vBs#0f=y0}=ka0V#2Wq6#u`He
zST80LYs`1#5ithklyXZMZ7!eM_3o`aH!fk#@qvsrVoT!PB<2VVK87&|x^Pa+;r6E4
zndTSvO>2~;i%<&7$Sq*4gOFU>JL#4EFN2Uq(;tL<H$F88A(c3#rzoVeqnl~46NG#;
zS{W+=zLZ*}f{+JB>>&vG>ZrXGg+f3Fh5qe9NS=V_l>`Yw_6A4$sbaW643|4@FzNp|
z{{B0}0$>qG5fFdmsQoje<Rb<u8BB`S<*%6xBcczv!{K!px=|<9MGT7_KbCG<oLE8c
ztA-=&0cbXHr!U^I>bmDK#*+2yk1-#-X0t(i9eYYGCb!ft=99w*=;<uzYOxspnTyF#
zI)V=o`0{u)=l)D}FN`+l3Qg#g@`ES_(cg%2{NuH)F6DZQb8Urgzn>zmCylMpAN4Iu
zBj~<X-|~ZgD-BCehJiZe?nH6zj(x&bBg^Ax94d=>BKi_dACfdMh|<R^B1s*$MfVT=
zoykuK?N-@5W|l_wp7m1Ia{__+%0}E3Sv7oEq?O$b1CHQ_GSu)Ki<tvHt)Sa)w~LFr
zzYE}Htlch#{wwen9dG#GF#w$Tjw{%MZHC6Ie2If+&SrUeYt9xhp~p~<xz+OASz$1L
zqug?))+#_A?WFD{MP@bOE;1z!WP0a}AmCuvg3O_hD3_-RhCUqP{R$U_y|xTT>QUj6
zU8iAAYM;W|ZB0c-eqNM;?N}>S(4@Msu+`T*&avA5VxJ>4FJf(S?P(V&B}Nda2^p&q
z@W2GHs)kURf!D?{;<%l}<mkvy9e)utlu?8q47umAju#?ETNl3d1BO~?$8fuKz@gYc
zIBdVWnY~0Z8CDOPz+M*wZ98h?pJBZwYcc&RT*gn-=@DRylJ1JAVcvr3Uyv`EKdK_Y
z1qz-;8&Ox0SxXF9C?Z<(nrx3niIAuVzl`B1W0~?hNAIsuJ6Aq~_K7C#W0+?LMM%M2
z!0kz>ASQr9`WS*C$IPwdLgO5J&{Mmb%)rDOK|>&%ON7yV(VZrahLA)eI>><(+^jd|
zp?Q+}G6_L%<*jr|mk2o1xA5M)l_WFFKMCG|01!&lFWuPw-EHXsC#`{s<FekgILu2|
z&EVzsd-O^?GxT9OA)KQ@xR;o_L1b*2BE&Qyqxnavi;|9HEV%qKI@HGqP5!FM7jkb0
zupZiqKn|m{nS5alI760yK{D;Jqj~6-{-SoV2tpZ-W5eFOl1iXqNU3<z-wbn_$Q(v^
zF^yBFH{C$xxGn{_{G&^cl1eqpXec=`I9xE+?wDol`{r%~OTM{5u>>;cV$DxceJ>;S
zN2!H)B-3upyPbjN$1nW3DL#>EFGEHo<?@l#B~?>mxq1$!*w1*Ls}R!kGw_WzgxABs
zNi=(4U>#f#>7)c+x*LW$TO?KYNJJbJt!2Ut9X=ecB_CCj7+^~YD@P?FVYn}q`xGL@
zIP6a(GBmLAHFQnB(sCKUiP0lyy#`hDkJr>T{uyRJ!@LP1_=3EqK8hkXE=7A_ze)=-
z8W;06{-p#=5JCVZEG71K-Fc*-GDPvmQN+IV1@><-nDzL>`@jqyjAadgQaaNzI!Egn
zv1fJp1^Mg<p|D3Z2P7Sei7<%?c5JUsk12^ii2VkV<7pkd4Y$QBp3i|6m7b&tX}h3B
zYJQGVX#iEG^x82`u{*_dX4PEhc1(mErZ!K`VCW?3&bIh<!Zc?=8kLjus2o9hNZrcn
zCEiRTH+zdv-P`Y_)`2+Emw@WgVA)ZOHY7iqnJwIRWJnpmWXDVVEk5d?KbpxVJTf#_
z-=~!!6FYv!kV~<Sgh9VHbpA|Q8a?!eFL8rWH~a7fYGMT^wpYnUTomtkogYqx-0bcA
z%ABhdL^v;Y#gX;Pe*O)}9q<20#Lp~*U9NsvV07l1VHTvtSxSXkQXSZri`ah$+1j0<
zyeW9#jKxQTOhhn4H(d)kSXtE%WNDC$ZxZOosSL?msUH=i=&kY*HS`bXvJq8(;#EX-
zLLAc}l@Lz#!h}=~OY@jB?`p<g%E3PVk5&jbsuv5Hv}FPK>7>CfI~_6fiTK_Z&oX`<
zn09_lQSf>AN+mv^JsgNT@nw#MJlFD=hcGHmJnb8x^2O)j>7Oz7XnB7GHw>;Dgo5FP
zGuHqg94}D+3Y_ioYTm&SsZx+$`;A8&m;@XE2F)tsn4=I_Pl1T4m<yuRFUFB)qB3*9
zw5u68EqV-f@}X?26szSehLn{Ptwa~1>GXb!hvURsS~J=;gJupnOTUDzyIB_9#xnfM
zML92u%sc6jIa&~ebxhQA5CzuJf-jcS`0U`r%CVO#1A;NiVFVZ(d#tM*KoS=h;Wkoe
z-7H=g*f?wJ08n9UO(759CHYY*PmUfnVs9r_sXF*MZP5Z{P8QK60VJ9e0m*BFFmv|W
zzbJb&&5UWjBqFRD>+gSAG8K2>`X%^xNjw-{xKbt~O%}02{p)Fh!Gb4;xQfM`3HBOD
zjA&5*X6oN;{&GI9eVM3RA0m%ngvxg26s2slQH1&_whUr55s^YQp6TgeDNjB7<!sev
zX<{j%HTaEuOXSm6(6|Hv0rs+yupn7Fn!dF7T$*`Hw**>iv4Rg%+=zc5)98o=?7t{}
zrYkgug{;6^7ic>)X|RV}NbHXWxp>_S{dlEN<#<rz;PV;DkS;gevNv?GLSK#I7o^N*
zXQ}E-5{uF5xlXJ5Hf!|&X?04n)!!ZKw7TQwy=%3He8E<)O15fu7!2crY<Jy3PtpHQ
z?83FI|Csb<TsvBNF-c<}+jd%k>hm=bPmX$sSWY7L5OkisLWp<<NH_dCg$}|XN(TQJ
z5>c}FhY|;BH0SXa0;DuQRp_kHK2j6WtS(f|mSa2Q{%_Ip!2ZJ|pofOnWI!=>5Irqt
zID8Dv9nPm^Q;rhHMi!e{0YGY46(yX_I#Bv!Ls83}+X;(1p+)aeWXaqfEl*jIbrwc{
zcVI%ET@PA^m`r*ZOTNN{{J@%<$hU$+%z=NqoSo)jhXi?&{BG0&C=Y=^1%CeswHEI1
zr$Ij=%ASgHF6?3eUSMIRMc6GS(5X~Y{4JE{b6`m=w?cEeuvVF1&u1-qg8e-CzKANx
z9Xy;Rx%Vn#^t_6XUln6yO;a{W5IYBmZJ0XMuznAu?v-Lp<+QS%5*0Z3WWySDa?tFy
z`Z93%ld8c0<76T<T->x1LF?fN@R>~IA9+s3@{hwg9*g2ca!;H|)BtkgS(xidgPhUQ
zNkq1io(>_6nwfnwoEln2#ReyNdnXY!vw9NDbyYp|*sozOBCaH0sWc@svz3@^=kD;V
zqRfan@O07eplW4kpvrtn5S5Z|*RhPMD}I;Eq<2IKv3@jLA4&;)5I>ni+A$@kLHiB;
z9CE6S*mtl`K)ZgRgSIm~K|i6<UeT#lv?;1)R^Lkn?W0l#i2;|Wh-gPNK7=OGk8@8A
zR}yEK{Qf%B-e05Z)S)3?%~9r-)EnLQd1SdWZ|h^d6*vh4p$4d8|8S~DuEmmY8IBpc
z;u6=ATqw(okag9fC0S9W45n(aWlIv4nrKN*Iz4GgK0Xx&^8;s(HJ`m4e-+}f9FAv3
zIG!1iv1-5vbqibuK&gzGWIOyQMmg&6+=v)4h=L^{8k;h43Xv*e8o4T|S{4S#+$QU+
z<#|x&1BgUzvv~0LY2!iY1swl*k_<(Y0LcUtGH^8{7yGA`(jJV?LtniU4#v)--l+gF
z*&!b=40BB1+Ml0-W@mW=MnC=o&^{u%v8W&TOCu3|x->)@?E)0`^k8~{8%xwK%Wkk|
zu-X@;T7P|$P+wlk{IpOF^`MU`c=cYZ2o@Cq;rRe0UlhggBkg4?jPV745ws8PZdd5f
z04^gElm#cKkN`{1VsFU@r>}*^dl2@)7oPq)nOnQLlrWYMX9ztEWD-V%H=zCW_Y{oi
z*#aV}z6{@z9=MuFWI(K0-K$w0ZnEtco>h@Dt8!oiX9Q^-*+7U!5pt&FW8}oH(T#v$
zb!uoAAA%~$=*i%X6Reeh_N5JW2O`<iMKT3Hgbc*5ocNUyKVTrk$wsMo{%ZQd<Y;)E
ziZ%n&hiiQunCH>gQhNTLK+z1nc(Lf~P<W=(%Gv>E(O06+KkDvGbqUD~Wsg((ni_7Z
zL}DWb(Xv9@uVOXSpqLJxN)u1o17A<NeXv#p5N4KQ0I6`?{!H=DS><d855bR-rDoOv
zfDt~wj6Q!DOT^9w_IJ{BCVf650FTcvQ6uAP!?)G47?S0Tn2Hi42`|gKk*FLzXqXvz
zevC|z4^k84xhx(lLJEs%DzCdhxu8Y#P-ww%zG$J4QN`3M!@7wPg>t@MwnMd@%&ak}
z)v(5N3c{TYf<Sj-TzdBeMZjv())9`D>?7pgA*?e$<-~8riRa;a_CML@dnmd|-%}K9
z$@d6dwZC0>kvN_sTz{*PrT$r2W#yO+JzRU*65ypB%ly-n=Z^}L5-ZijDp~#~d85AW
zjjyFZ{5kqkE9*j>w5=vo#aGIZ4%n|kg!}i~GrY=C?yKNU<0wU_AWul!iigDZaK6z6
z`B#a<L}7t{0z;Yfk_35^j?kP6@H+k%dRp*>eBz%^51f&0xJXBZHJ_}&A!liQTiriZ
z-?CAU89IHmt8d#*YE9oByIzUQ9`)@hsfL(z)|gP=UhfZU@-l`S9h14&_N07I_T(fa
z=u^+_A5KigPuY_zE_Cr*d0A`tt+;M4@S7&p5WoC^s!ihe18_4;6`r+fPa>qFwkPFg
z){+vjClfvPWa58oPX-DqVoxqb^+>q+AKR0T0(6Q!IkQ3$u$nUZ8|=w<I*L>F<Q1&{
z^ysJGp8R{CJ?p26->>}Lp6p5X*!1?KRKReR(_>H0Z~%lg`uJMSMaQ1(?}yiKPl{TB
zSJ{(=7YMxnxjlLM6rTz7*poZujRY{_;QlLnvix+dZ<BLV^-bB6pU!vn%{-wseJi<U
zFZ6AgR6~7RnV;0R>vH#GPh|g#>}0%Y1}-LCi>t6)AaK@X!WG!`C{|v%p(dWM;{%Bq
z0>?-ZcEHX@n~C-I?!E{_Ti$OYJe{Ybrin?VJ_JSxuvpv4I@Hc##DO>igM+jKoX)Kp
zW0*q`xpAQ+J_tUJ3acxR!m7NZ9w(roqxmC&DBMIzG8%on5GAYHCO%-Nq8Qik4(O-J
zg&VRmB1AAK{Wmv^?FFRb{dI(ww8xgazM(CHyjIpXkYET<=doS-FDS+-+c`MFfm^2H
zAWCUtzl*(hbv|aezF4BFK(C!@41=YDXsL~z6H~D*C?m>_cv#3b|5X*cgQGI{gqQu+
zu?5hJ`8-&5V0}dZbS?<;=Q<(h@3~*lKqGeIP$VhCuh6F4xtORfJbqP8hgM=<9{uXM
zERQEJ#xH0DU+7-VhuB`A3?nou`3TrZwVAxIE4{EriAaP%=7=PaK=xAUHnYRW+|3Mt
zM;RzJtg|zDfs9)$Lx2e6`7xX&fsYkv7^_uqXCIFWLLeL_a6!cN=TQyA^|gczZxkws
zAwviMjnb5r#UDv#9EzgYT?NUERYQ$fvE&K3BQ1zI=A#P!AzaKUQ~LTcZ(-gS^Vdw5
zL5(4EyUR%mzLLaKN(~$^NQ7Sp=$G*_iRW~OgbfpSkn2Cpdc?GgLNY}j?U9ni#@qo>
z9wk|{grHB|dbVd}-Eb{wiq7Ao$F@w<E+Z68>jXvz8PJrK2`RT1la$3IB_cnLBF2yt
z3L3UR&-GXC4LuR%s=7$Gw{#p=lK5M5qCV!lj9(>0bx7ijWatUA|B$qH#<8#y$QpKI
zH^y*Dd%^jpp0It8bB+(7FNlAHg^0@@c}6Yj(i2Myd&7<{YxaG3`UVo!zaHNl0)4>o
zvQU~lBwZt_ik2v|0!Gr1Z@8S~W6VX$9J^d~r6D>pB%&u7z=*8v^C0XnvBT9X6vtD^
z5CO|aKB0_`FcK{?ja62UK@7oHS?G$MI}NV0x*pl9D-vJ3O(VIg>3v$aOdJoipX@cB
zxQkL871>C{>?3-Cg6*}XRS~eCep8y^?$|n>uZxxOG1@|C6}0fLml16-kf4Ko;#)1@
z?O=E#ruh{(piC*RfR_&?drA%fyxI$(AHGt+2V*-HiV6PaC@Pt4o7Na6^$qlAjeuE(
zQp8AC=h3p^DPRsfbB$VY{r}i|_wcx`@?Lms>oSroOSwCNkV#0uaS}zo#wJ{3%a-ND
z7h%bXlMt+tG?oTSGn1K-FCl<JoM6XMD+;A)2}K3kh900Qx8|b|1PN&ZoT8Ku8VU_6
z*D)p_E~g|=lJon$@4NQiv$Z`=d!Fa}<9m*tN3+*&?R8)8ZCy7BLu%Gsy5cYwTbS5g
zywU0bl;GsO+BW6%fhdpb=DZ7;;+;QL@$(Vg)G%&O@c*<h=1~ePoUub8Cp6^Q_8}lC
zBfRZGmE-ShlM+%1L!h^oZ-%;|o6R}`ex^u1h7m8-)ELsnQ$>B<1K47N(&4o>!ZM*m
z25d&SSgG@U`0yU+0;}*v<m*Z}Hi?&vQ#yE*J!3Vv^HCNTn`r_mCPFFx2eNc2E<E|D
z7q&F=7xIn28(xWi`~rrXUu8Gr?xtz`4B~j>@&7~@tp7sO-NI^k+uU^bmst>gf)Yo@
z@A@si>h>vk$amNdHr@S~;^w#5@=bU1MqYfF4R_V1RjUB-BYmR>nm)a?YV5gG)4RWL
z<Oy8fC7*rn!u;KH3rBY~eY$?^xjRNXnm&Eqg0bgTXqeRqlK?X>g9I+VTu(!u^U)Sa
zU|fvR)Oj3o;Ms(Jvv%nt__pP5@c%3P{~T9yPvifyaDN}q3H;xO|D*Ung8wo2e+8Rg
zP|}!u%iSj?xXS3c>7M_IK%i;#7^hA_)4c!bH=Pmp5fpF}9<O=$7G5qWRo{qP2oj&i
zwwbSh?@HhNEbe;vi%$XGcOl?;XW^QMzGb+w;HobGb{@y!`|;{0ucN^U5+Ma$f{aUl
zD>r$f3&=X)hw8V!pSKk}be$Nf_;NtwC_GBbu(bbJbuTh5zvpQWUP^)@_&(kO6ZPw*
zTP{P_pX;%3sJ`#h`mSSr-I<=75<F$yNaAnnTz~E8qRwOJ4vH<1&2n}G3SC<D6E(g-
zB_?w^Nt6)B&X7bE|86d1%fWBv_w-{WQSYVLR|{UMe)})fGeJ+iiu?l~l&ihpdnwA_
z5ncWR>(N&UmfiFVuN`6Gesm&SIN`xo7S2@82VV}s@^|I^kE1_#{S-oVn8JxaF1^P}
zOpiWyJ=*+8X^?ThBy?2Po^n2_tURXg*hUZskcXvfciOH$`a#GAz6V{pdY5~L_JMNq
z3i}>r7<E4C1KNK`+n2!-m8)}9S%L43f6Ko-pGQ*g4WQ#U;|VQ-bNtP6PP>zNs^s+u
z$#g3g$x7ed<IZJ&9ZdB#F?Crfe;uv#k@kqo^Gn~n1f4kld*e;_h|yHWZ=^I&a)K_I
zJSAtG4ASzK+CV5a8x&XFbizCnZBqJWmuozE7yRD6pTIM=HA9pQT8CVI7Z*rYvxIv+
zGV^3aS^qZOBlFcEohR+>n)?EN<sOl)L+j!Oh2uHAxE(jCJYV!bz>U)5!v?4LYOmWW
zjGD<z0R%y5@J6<~uS3zXCqDtv_P3?CT#RDx2^5>nhb)D|wBgWhG7ecv$BC~(wRn{a
z%fAD#WXky|APbfSWdYa;Z1y(MQ<C948DMPoodhWN&-@%uSH1_{Ua5S2<+8c#TM4bf
z^0gj;7{~5bvokt=W`m>mJsThrA%ZTF*q#6-EN6+2x)PW5|AEtgFIq?qN5^8Nw|}6F
zR`2=(sG8Oqnyb{Y!xaNCNQNK12$>&unTPwQ>7IMpne*tcP3sA|2g4u_@{5$=;n(S9
z8?-ds#SFX+0XHF-bO68y*<P#wc)F)d0F<788OZOZ0Qs4HaccVe$V7Sn&ZCEABvaO)
z)j8JDapDv2l!$(R91qYY7|hpGLjKs`Bq9!-+sW4HvTKg~_!ysf?TH2)M%zK=qdfxY
z;tC5tU8F;M&eqC=vH&JnTmbO88&^TCm8wu&)(sX7#XMRY-R}lk?g*QG697_Z9i&hj
z?!SYzP~M(?d13!OtM)F>Qp4UoDmj1T(lI{A?db}^IfPF^X40%>5%qf(*k*Buey{7U
zf1G2T=UC^t(tA41szq~wAut~#cV&-A0-S`vp^qaE)-pMn_prUZL%1rq>8@k&*UwV$
zonB3SsI%;Y6d+6NhOiG(>_T||gA|`-={1rUiXWulsv+!+QMO+%+m93e#a$rPgB{+j
zzM>tZ@i7QmT6!UP&N{*Eos&!*?fxL2$E}U-e3VW1NNMaHdV*K@pA%vD1OmR8{^ZFo
z!6G^SLs}%(V>VXDxL{r?5nn*yh)%wMkgSRN0)l*bdHl@_I(e1&D-k5{1q3}G^X7#V
z{vbYl0pXymn6hQ@iGv~edVzF-`K;i+>t61_9^!T4EBLvC%lywBoEeVrHfZhNofyJU
zpmfGPvcVhiu^$m_z^Ffws3#vm_ZPp3UVkh2ft}6o8?0E!+Dqm|Y*u2v@-c!l;m=PA
z;5Kx=bOZpPbR$cZKtqxg;~kREA)JBc<mV9Z5rc?$MSS3mDIohpj5D-t{bPlfJXW<T
z931aYEJKTzHr%b<$@Oi-!pR=VY3?oO6~2$}6TEcM*za0K8}#!8$dJRN3rA!C%5_Uw
z>%(@S(#=2N2?-i*Xp{sg4|)R4OSZ`Az@G{8?H(3U$Yui}*x?IhxAQ|Pl-_(jS<5Y>
zJ7(;;^ct=KcAhv7CFiuk6Qy4sVew0EmWMWps|B+774B{SzU$W(Y~HqJKJis9B9349
zp)^O*Wfghni5FcFG#IZoTL08RRD?aX{t;IZG4EKBk6%}@A{Ve6$DTq(F4u~D{4VW|
zBFPI91z*s3%lU<p_kjVw3Quz8bNs@8AJQstFC4C(XP*C5deK#QF@5p#tre?q5z8Tc
zu}{lR2E7N=9sH0$4)ca09C3&k>~IGtLB1le(I99Z7qX9lw)s-ogzN>Hf3E4S9q?~|
ztSSy(VN8BDfKSXOuS1(RjeiaMgbKUeHv`t{Hv>KcPc~sMIlM#2S{R<Yh<mrMf4p!7
zz7v3<U@%1|QJLuNh@bx-rHkJ#1a^Tuyi~v@5Pe96Y~p<w0Bph!10cndpTzZK9fNi~
z83isE!kbI0e*9v(2E8I<!Z)CjxDNk%G8U-oskhn(0ED`*(oyOW4HU^HY#VSw8$STB
z_Qdan&K|)B0KRai)aN>RNbQx*m?KW?8N)1I&#%vrVYIDJ{Gl++YYO{FZLbb~tfTiw
zFQ!U|yebL9ba)Jd>-{+v@fhaLEvKY5SEUnA3CTTm^3l?-##kFt){$pqC4jw2Qu;2?
zi4WkX)a!zrcq<@+o;X17t>RtUsE=#q!9t;+;5{ncXtu+3A7r~XrJUrTAunuq;}5kV
zma?iM0+*Qxl=J&CTgYulpqxF-37I^35FbG2KF9T6cDMG+*%p$@p^j5D#EFmc<Ovk+
zKb3y{HdY_E_J5gP<JF6wesSuz^yaf+GJO;0O4Mlf?Ip4AzCn$B*H7Dm_MNxpdF=n&
z`^;a3!x3y>O#Q<yq%BeUS<NZ#GnaER42lkDX505NCN!vLD&BP#>V4Y#%-^f^NB420
z3tKON`K)DYBj&R{D0K5!bv<4#D1GW2xxoC6vjS68+&NiV{HN?oF?TUC#T3=a`#42)
z&N^F1J=XX=csy49$eQr%)R*Dkc?=dbIiz&<OJxD|b7!I!oq+*_-+$vrF3nLn%K7UJ
zl&*LFRQ4_%`-q+#g~=;ho?z1M!5PQz{R7MDnY3H5PhBT!xw^@G(dzOoU>P1Ey;$jM
zU>{Zn^)RAHuymcB<Dazy$ZHlqT$buL+ALLAhR?EXVPkTM9*adk!Lq1G0OrFR+dIeY
z7&D~1PIhrMQ#xOkHSZK1!Px^I&EO}UXq_KIRsKb;8274jhszX2g>`NN5Ku-ZvzGyg
zyO580BNL<~H(0vGR@PQBmTK!pF|%-FB#0vXbJG#thKgyR>K9fmiQ#}4Ml{yKcRtF7
z#}xEubun#x&HpNI?5|>+DUIz)$SG^KEJ|q8+w)8450|ucVCZTg=_vK%=fv$KfV-YM
zi_0e``o&Z-0)mJ*ynqc(Qbetn${qPFE9`Q~6KfebRQ}S=W>DLoq0{{Vc7WbCT{@=3
z_Aeah-1$@KR}h=@Gl)%|7zxmx<sVn@xR~MGTsCm-PUjx4{`YT_?T!9~0$>et`CH2l
zKv_TlZa*T2qzQ1}<Nr|V1oOJ4!ko+Te^OtFWilXSZk$FbL<6Y|q^29AzJYPY5ey^X
ziI!iAa&?YxOfcbi>DfE<-um|<jAxpngr&FrYdCGB`0h)`7#qnWBWe{cAYa1dF)<7R
z^OA43<p0!?FI9(<pZSI+k95eBPPd>ER&>}-*gKg=yd!9kV9~klnPTHLmiD@E+M6EM
zv_Z58CuRI58rvHwqGg5b*#NAwN)p<b*IlGLhR}kY%h;Y$9yBiwW3hr#YqUdATRTS{
zf8j|IH$rn3lH7YG^MV%=X+u=mtt)q1k5}KjMCYF93rmls!<by!6rj2ErXL69iBL@=
z@KS!#)d<}$OpXK~smS&yB|>t@il##`iYx|(=$}DPH68hg^jEuVk)48@e<W5iCI3iI
z^yh(L`hl08UP4|nB2{W}VH|^zqD6+#QTlZUzPRhR!Kv5+Igu?Wr^pf$rI%uGK)!sI
zsonV~c??GZo;uM*ejUH?)<!lKhB2rYq&8^|u3jOAQrnNBTdMQ@ftKRXo=q(+wa#m)
zw$rxMBqH*!Y+)YdpQImJN~RFTt1oSgXekX7-BMrP{NHP-U&2m5WlMS6P_U2t@MBti
zG!=~n&iuTRZI079LN?&wY1RQm)9GCS0?<V;gEzJoh(3G@h<|K@S#hbm6mZWuH`<2b
z*|)QNj#uy9Oj8n6G;Ts)#Lea3caxpkEl2EIn)hAGq!8@`PX#0-1PlCJ(ymF%71+T|
z|Gg%CKZXkPn$#&K2nC@Xl@L_Ra6z1Kf)=i&rN1~|1x14G4AG#PfYp~JZ8TYw2AC*a
z9+~SY^vFDhISIRLewj}d`#xj0BgSqYjfg!_`jZG>c6p>`1Cf-o@J$i1Cra%RzNbzz
zT+Zr<*b}9nV^HwlulwIc#4c@%!vv_s$j3~8GW~zQ>i<6gwL$-r=y}=CtWcyrVLku*
za#}}CM}96mW*>yb9>T+*<cD8s>kOl{fek}LJjX!$<apyVS8}tEoJGGxw!>kev2kca
zgK&|^L=XUlBC9PK-}xxZ0U1fQYJ7%!*F+P3y;*Y@I{7&$F7Q57lqf68fN`-6agbzW
zska@r@mp_!0WO*YA{F9sF-&n$>a-Gt!n3%4fdp?94r??AYjo?!De*jObastz0*|3+
zWB_3tFpw~`Tj~elOxXMT`9z_hJdrDn)J61xqnVCUhn-S}>g9kFcIKqSShKx6?;8Sn
z&oBh?78&H{jk044fmDvF9+E_o5?-dAC>9tT2|7x@$5J|L3`N0xy=Z*x1heYHoiJYg
zoeQjo-&Gy%;g=x6<Bbhhcs+denQS=r@I9}4(LMazGZ=}s&M%gDJzV<ZYLIOgEY~u6
zeMspQ-y9*mJ}wRN5f%2ZSEqqNuPc@*y*_UAD(z+Ty2RDyOI6|8@N*5v8(#xrH+ntq
zmn1#b=AqYWZDtXKO(u+jrkW<c^HG+=(d+kQU7xjixnCQPJZT7NH_|F%7nMGHjz_RE
z^>EJ1-%P3%g5~Urn^aJOefWj4FDe<qKKs!!f_=@ZQxNR9Oz4`?gEmxxq@(nypDSJX
z1SzCEzUB^G%N<~budnpeo?;3h$cH2)`{*=j9avPFB;gUF<A8*4KoK7iEGNWS#zJzD
ztvg=bz0?S?eo?sVln~#Jez&gst0qT?zkl_M?z-C~61#3_u}_GL7l9BD`a>w69%a5o
zG{s#%J;Wx0?2w=8S3eif@8_UerN6paSH~cQs9wQ)kU*GEFTL+pzCf423lxEwJl)aT
z$$*?(dP}DBI64K(>c`w<_xOcBl+Ph>5J3(Hol8&hHqcn<`d>R+0V(t{U7Xf?ZsA+5
zBT)@?j<-X_zX67k?5>s7FENuew>$obeIf<i!@d|}(xCXGd}1yphh@7%kN8`q&MYqE
z224s;%Hr|HFFvF4T1!TrD&32n2DayUwEDyW8K+9gcr{(y(vyEudT;^S_=A|HEL;Bt
zwc7piA4J8#?@CU#%@+L5LY4G9qiaAg1gf~E_J5QS?UmRh@4k07#753>L^R1djdx<q
zNacYhYI?^r6dC`BD^mG}t%X{(kq5Ex^JLRI`27nB`1a4yHJ<-{=NF!ToqW{qt{){j
z7vNj;MdNF{d|ro8<7*CMs-yGRYV`3ZZEtRoqZt`b*-9NiYbj|Gqqp-I>$8d0tBl^v
zB5N)+*>z^dr3{9`$4meCE@dV(sEv^m?Br!EdY6utP_jKTWcng2=V+<)`#1bfI)_^}
zZ-qj?sz)u_(uZD9BR0<N7fy%0L{8@)?VM?Gsr&JOd&apTAcbt)9q@?5boj^kk!hjQ
zUCfXPvIRhd?xw*|YOYjH{y3u_DZiM~l!|ZS{41uhzP+6_hN#sJr@RGI$<9XME+GcA
za-#Ik8O{=OH>tF(BOx?-=Lvoct~C4nZ(cZYtuHHRa{2ON91|ZTewp7J(kYi-($TSx
z=&e5>={>+uVVR3ng}uurEOHFSVYeKw7_Z)PmdV2Be;??jNom=(xN5S(%S9X}!Iaxi
zswP9*970O`V-Ji4+(!fM3FjVfeE1p_pZCLyT`|cgI+o>x=40`l<}3X~IX_;yTx>yQ
zu#@*v`Sps3fbtuXbUfwvc{_*?Y8ARY=M_a&exO_`KNpa6ytMR%XI1&(r9XSA^MR!l
zmV8JsunQrKU{5V$PUCAn_t#~T;Or}%B)HEeo^%jEd7$FuhzulH9uVSvc0t{{EilSN
z{pK{8+H$wcUOC8NMoI|p3RCW~%|a-y6QJ_mq$;=F%SY6XQF<cP(rq{Syts!Q^k3>M
zgl8|g&Sg)DJKS6U)pXG^V@QaV5Gnu`wmua#ApK|t^jlcD+gh0NqI2AR(a~C%g%>uY
zqg0X`%e)o_3$~I4WfJ%9i_jYo$_twAI~%Mjs%a}Yv<-sG-L3_vO(>#=MDbGIS2f-D
z6q3iLy8q-I;qQ1m!LhG&UjF2^@eR1?^4ZsIy=xA)Tz;{0!51a?kt{;2cmmfq9l2E^
zUXO_1!pD&$BD6W_?pdkMn!Eq9jP4%5#&?}Bc4LHh>+~Gz0y=xQP0t;%dD8oIiWIFP
z$sLQNyM;eek~g|T-cM=XAO2uj-YqU~G(w3XK-P17x`}|G$tFpF8dZOb?89rdEWTiy
zOqY?+(E}z4+xQKq`;p)_WI&SDRY?E}7$JUnf>Y&*<GJ#DAX1u?zC9p<`PjEkJSZ!l
zP7c5fe>7-Y$Z)3R0&n-F>tWb7CvK9MUs>^leDIvit%Aqxi@{2Z6^$C{l-da6+b#YC
z&x6u-WYo?l!xKCY$-DbRDME{0cY-B_c4pJ+(ugWNGJ42pLqTGt_pEeAn>6izl}Ab5
zQXy;r;`9HM=RuH_`Uo}r(qhv<cl;(o1F1p&i<f#D=$tB&q)gC~LiqP0HPEY9yl4$H
zwTPL}9{TGT4S1)4N}a!fUdETgL-r-8)zinH<^1}cKaEQ(e#Dlz^a*|Z^!cif8yIRH
z+n|%1S))>$4XzWOf`Ywo;@)wK%v<069!{T+pY!=|o9*GTpi4_k4@q?Y+q8j^s8$G<
z9Al<)3@=&PAxaOSVn{@+OMk0rypD+<&qL~&y?OjqydrY~F}5Awf^=42y5WTxn&fe;
zdR@dLev-g=H|$3lBV3Pzch-9E^;F|=ZlnZZNXEJ(P<>#S`kF!&^%IHfPs)^j5!2Zf
zL^FA@jBk6H2};2UZ%pK)i9V?sh3hOAQ<@`h78XJrQQZMESzUmJM^-coz#^1Y{G)qT
zTyUek>CeWZU+1`+Sv77X_4%6R4}zmm5ormQ4rOxdN&{3Xcl{RXr9j$nosS|Om2A+6
zohTIyRVf+=HgGL14OE3EPs?NkqU27ct2S|`LAj!OMyg_pO3pBdqVhg3eitm$i+|}U
zs&^nb6;<&LoTj9bIyg*PX#>e^`<9U$dVNxAK#O<W7Dg~iXfCZkrWCi7rD*Gv4?$c8
z4#40VcWBC@PW;4UFmpx3p(ck|<#=fYjL{Pxqal3WUX$S`kNSq(c;jy#o+rRZu$#f#
z>5XbrdT%0E9;5Vrl?)bLQ@e>58y3v5^vE3zZnIdYGClD9z^i;Yt~!tf9{WmIjz2Cf
zVv{sDrSbg;Ij&)%<@i5c8J6SCBsfVmq}(B+W2C4%AEnU2cTJCo5ujo3GeZDF28Q`R
z35&*I8JPZ3JSBa&nXb4iru~4G<K5Ba7_a_Zjp>2nF9LetL8Qz%VATUB&K25u4Mrl3
z&$B^=d%cDkZ`^Z*%6OKKof%o@V_@L%#;?j@8p`-be#;D1qo4d(Y2X)-@fTqfVDsGW
z;g7#~K63<nV<4ukL{e8?3c+4;_WbYJ-up%p?_<>`&f><9@BAJIodzGmhgZLM6qNnU
zJ8;nHp)bRA*T3QCt-r#H6T@(=ewt^LK7}~gn1=N4dNlq>>1%T+)a@W*SDN5>Q09-`
z&z1_^;S|`9J^wrsu9@7#iGiw1ODk;PVG<Dx4pUMVnuj^(^XNKWNZtL}014A(g5N*z
zlY1hspl)=6c)WV#GwPY3bX*2894j?v<wQ~)YeA-DEy~)n=^h@>|1XsvyIigObVz~Y
zrSt4;mDB{nS2&!*#^ZsS9FtO;7`K}I!V0Z6m3bcjT(BlwUn_NFq$aQXIch?oa?1Yr
zSFH~kc$ngnKf(R+P_X{~_$~~|i-W8Nq(9092V@ZiORarA)anD>n4oBb;mn2W<9Fy<
z+Yn`Pjw%rX^npvqn6=Y|rmxumZRpBQcI8p2Y<UCB{XY?1`S%Y68$h~p^N2LSYk!6Y
zs0%hgs6YSf^jP{E+q(rlD24zH_8y(PLici56zs)Eq`>8sxFV_&&zDt#U0WI(mP#Cc
z=2Y}};5yLaGWK19eTSdwSFfRLL4M;H#%S-Xe=MNinmdoV@%Mrr4yYLIE}oD&6WN@c
zENdT0Ki+xFlOIns&6gk7-K_HCBY3x<^wl8<hl4mY{#f;U;SmrHAO9)SN4@^<-~Vla
z|39~YS{e&t3pV1v1OK~l>-Apz_u;=E{{#3>;eQ|g2k}3I|1|zb@Snkd4*z-l7w})i
z{{j3T#Qz~_wT0=dKC^hgumu?`+=Q8$g&hO<>BKRCg<J9IvW45|w-e+3g*^zrun&nY
z>}QMty7r+A3-=+jh5H2Z#b7Ic2nPv=P^5)Jx8o<xz-b0f^TjaJ8%6;ajxg}ZD1I^w
zlHJcAhRdSZ3v;OJ!W@I-7&yncIn-leeg%J4@@E}?*7Ju6<k1=n^Nd?y+yXNyFo6Q&
z7SIk0i)e&}2O0Pv10O_S{4LryQd|&Qv|#{ku&6zWS})p^Jj~zJ0sf}*_}!eLdvl)d
zEh&cIl4kg=88j7s>2rOGv9_hqf{S*f4)S+&1iw3n8FJ?+!*ofkE^+T#u@*kNR;}dk
zC}VY}`sJ4)yNk@Ld$f<ghcTd9)RV+c`$fBZ@b$z+yV<Ub_6~wH7VXXPH`#}JE=ms2
zKRJy0ElRRU@QVgq)R&}xAKPM4-zbP@QGXJRgJ1ge52Cde^=Hr^i~8A0iw4q+HBg{W
zDuV{aFH=Zm88;<qrVcTMee7JeA%92d9_&X)EgDSGCrvt8l$I3srw+qCoTATgmT3-W
zS;CPda~w&5gcpqz#AkFE?o5jAOp2*x``*Ogeat;O%#vhBnSM^{m6O)UNl9{9mMTXA
zUz97d7C8x-U(pJ8eg)_UzaSv|u9Dx?^1Ft=N#>Q8^5jYNi}HOeTfSd@2SC+}@&n?Q
z+U3&{rXc<#wnc>$>s3hICci9UA<bG8(qM)~g&cD)<d}OQ$J`5f310;DFDgiB3x`?q
zViF9GU&bv;8y1JfpKP<Jc$mKjl5C}etb0{1S%f5rRTZ*i0Xz@0$zxT;^a!Ly)$%kc
zv<fs1qN>`E9|S#BZNN)BHl~Y28?)JAJld1P^3Zqf#Ug0BYE!b9)JKYsY=)1`!zo7Z
z7$#X(b>y>xMl&GcsxA2}=)bBnJIeg7PfMEDr!!!Ls%@zP^V^m#ut?joN%73~<5Toi
z+egTMRok-z%wc;rFAputj^qf@jwD&GYDel2qwhe2<I#oc^O4H45M6`hvZ`GJWZ<e@
zDam11s-LL4KM78&>Q1GYUpJ_lkM!+Ky1STUn%xJb5Z!1(pdQVr=Wvcec56fK&ZIFn
zSG8MnzcHC+yqi)<*7jyJ51KsL-;bWC0z-lZtH6usGCt6Yd_W#m^(6}o*_S30;xPzH
z#G}ZNc!;Nva1~fqJVy&)p{l;aMaJt#SMf2F1V>eYZ<$~JD7n6B06nG;h8)l$4dlri
zRp4rQjFOhBQX&+pQs_;h%mJ2cUwWAFz}qA)Jec&pd`dipHmmlHO74SMp})Z_C3e*y
z`W=s<WC7GzHH4Pu1D%RTdO*@lXZAtZRHZX%rkTzh1ff@@g`%q<Az11Cpci>a?!!q+
zp{n6@226s7BG3y_R?tXN3OJH1&~s!+ntUXkVO2&n_Ysg3k%$mH@`5zm3@8ilGH7#o
zP(D^=L?~84{IESUpaMQbVpU~C9N{5pX0p;9nLK4eRYpVr9^~mN$ST%7o9Sl`kXEho
z$n%}@Y*ns*nEjXQrvRzSfiU?P9%W19@{}ihuqwGcbz@adJ0LeIjhyd4KmyBaTO&L}
z=2HV~<a|oVEuWQm`Oyr-QdOZ(axZ`ph%~=KYJ~Js5Gh|(7^DKPg3w~A3;QYNsvxT5
z0VW|TrihB0rH_iqG<&S5tyD~BNT#D1Da2?Y#R48k<{9B2c!iH4s)4H8Q+by2cA?K$
z?{_;OvtqHi6`k^&-MvMgiB*cnMm8&cy*{U}R{v%TKl!xAkEJc#K6^g9RpRA3w#jqq
z)#~5XWAAU&d~$D8Je$$y*lvAJ-C+JV>N7E``6RX~ZXLE~n?9TS46o7W<kcE}sz>vg
z{x`+5-_hqpi`Juet%jd@&eH##h1;&>p4qC;wr%>%ZL<1w>a+QJeRh4~I;rREKEubY
z{f_A~F|N<pALz67s6LzDVg7%p&$h=je(RU@8T+KR<Lp1!^HchqJgLvIr_BFpeNKNx
zpKU+XXX2mr+5ETq?7B|t+qO!dV^`{P;u`b6LZ4IX^_f_y&$%7?oM|^~{hZru{@0rS
z)%r|WxXE>jbG!7})}qgtg`0Ve;;~ohv$tQL&0YG;b?dWrzu|5A?7d2#b9?mJyh5L?
zz4~msRi86A+4E+7b}iRu><#*ydP@7d^<VWlXU~~$E1vpC?T3jkY5PrFukj`~=yPm~
zKAWw5raKh(Zq#RPyWviK&Th1R?b2uBH=1tiUVT6FT77oC$?%}zls%LBoISHm=&kEY
zrJIRm`kZ`)KBr!(&spQoobhX~@%Q9PeIGOap0xIEGya}v)%OXDKQ^TKPFgu8t=w~)
zwH~d;-!s-<lQ$^e%~?P68h^)(zgvyJdyT&*O%6?3J55=CPrXj_ov?aOtyY{c{%$q?
zZZrPwHU4fk{+=~?kTd>n{jKr0@pG^7_q6fxWV_YJ_<Q0y#WNpQ{_ZmVp1fDvXU_O|
z`aZ>D#^=+<*S+_sf1C0B%$GF1sVDT=_6hC(UgPgE<L`v=cg*;^*Z8~5_<Q;X8gKGR
zqsx!!bIj!9gz;_6_`BKod&20y)%bhT_$Fuc+hu$^;rM%#ws+3>J7;`5ZS<Wm{+@RF
z!T55__`J*bd)D&HnVg>3sp&Qwy-XRs&l!KkES(AC?}=6oKV^I}Vf@=={M}{zJ#)E+
z8@olH3FGgXZ)v|z7=L#ef5(i!n~lF)E&n#-?}YL9l;dOL@0itp&g9Xoh07U#kL}d{
zo%|2&mnqY8UB=&YrZ2mUzb6N@yfY@hdX2xwu2A}EHvUc+e|H&w$70nmR5`^^O%oLc
zO!e|U3@iAA3Av8XQ8A#aH|#5>U@TW}7)}qu9>)_SLOeGz9-i$(7=g+YhMPRI2N|v%
z!C<)aS%5uWy(u-!p-J`TOfip<O7-U3Mw1x7RAZ!`W&DnGilc8lhb7&P;Vf<Z>JHel
z%x6oxjIFD;4&*s1sot6yNWrqlv$%FOp9LBJ<GCZvbhj2P+#!8#%fbqW|MqN#BarGH
zG*kI3$RMH`GXPuKiAP5`vr@g|Kz{)vqv~CV$Z)$-1<oc^@5;hj!n1oQy^pwiINi_s
zb?1gTwy4I?B(KkbG}Gzkz)qerMyl?~?&rKi^=|XOAvrwC_cx{oq+B=V)5R3pe=jUv
zK9g*Bd7?r2%;%G^*{b{4zI>t|V6J)n*q`hlVmu5sILgLzl;(JKKl_1Clpl6o^}t>k
zv*IbE)9L~C5B*a)4p6HH4yQANc&2oKQk@#f6`5~}{l_Q!kI#I*pW*S$!g{PuscBiA
zI*{hDs(N2?bXcDIF#IG==Q$FnCM4ZqK4LHH#V3qjd5S;#9eA)`hCS7TI;g4Uh@}<&
z7_#Kt6JvG3EAhlYD1~u9o}gQK!mQ=9u&KL8o`oXDI>4hv<~xib9^VhAM`-U>qgkb1
zY+mM%IS&q)sz-EGglEQZhK7H21`{)k4-+~gPgvIMkBpT!Gbr-})tOvU^2uOq!1OYs
zBZKl(JG(lU%qKCftIqYytWPy&N`{#p#}_y7spE!f3^O^^SAE-PYLxFej$pg-$$IBW
zr+kiPr2RO0V0rMAauz@ytUm`3jK?SAVJ2itJD)>h{^JSyCQc7-$J`&EoDJkt>W?Rf
zLDhv^vY+L^GsE^MU~)$>_<^{vSHl&PLazn#2mLWRk#I%uiQrMr8C4e!ri7l0+mjsq
zR2Qw>MWdf0`G@|fAlr{@!h8?t_#Mw-j&u2x_Bn{=Bz^En`Z%ckRU`C@h&9V^xfQfR
zhmmj%Mc|6H^nqg)B8g+|YC0$t*DZ+EY$%`sz{fQkQ~QLmYc>kS&<7Qv$gJ6TSf?v$
z+LM`X3XhuhA&&6i*p%v*nG-mM!7=dJoH3uxhadnTVQM<E`4Ni18qCp*<{<NGIx&de
zx(SZ0g_|)RgJT<p+!R}I9L78w9og*uQB2L$Y)`&v-!Of)CshR2Y)=)3D5Gn(V`#6h
z(wR}oeS2XL!&AO03>GNgYPOGNWQwPT^EZ;kj<kxznjP7GnQf|ptdz;pnw|UhiFB+1
z#3UY~cNO!X3phBbvw=R{sIsIC2L|BcQ<Pa;yee+xv=<#RD@#X#Q$sb~Xl2Un8j-WB
z=qL`Lqtu~Q#sn;6jrio#oR317JfxR8M&;FRObC$vYW5DK&^vU1VAG(Wnq+@5eE_6b
zgISs^C(mn=xg5BHj{Km^g3=+g6E(>q=os>@22&8~(>L0`pBz^s5|*+0vm+y%Ag}2k
zEy^rLP5<G3Xf^l@NWasOKCqp0r*uGZ!jUqGUxV_=Bt#7!GH(ILKo2K`YEnk+HK_xT
z!%R@btT=>h;Iog4ls=TGoD>zuZLBGM3gUzL22LE*Ku8U8roU#ef3L_XI8@-*4DPcQ
z!>pBvqMD)9aE>yoCY|A&pg42_2|k!RP@kg6ubOm$nwwz?Dj92rg+$?lCLN@XseuYk
zWtcm1l38&&_ES8;K{AG8#1tAFs<~=LgpB!0NK_n!;zs6`F>P0qNu>rPoeZbT*czA~
z5=B>&F-=mFF_B)A$+l;6&}ncK)BD6hVJ)#t4A*1|!y=bzFrk#9Vyi*Vg68QM9?+Dt
zxg?}Ad~!lb;>c@ta{W3{SCdQS)6(5k0~Ay>IVX{Ba}~U86!TPkMUgMGnol7*sU@Ep
z$qKDP%*(V8d=8{3*lY5pQET#}1yMCMBJx=alyfr|0_fOA?NdW3FIkAVhkk(%<UM5_
z<r+0$jYw#SPH|Az!9mtj2Ut%W`}>mWLmm_#vK}3WM`Ze|26hIR8a~A#)nPTow6RPv
zI|v5jtNdXs*3e=4p{96XuguTYj6%;!QAMJ&7?_}f6sBWfZ*r9M42P_V&>`xq=0GYB
zM(3+k9wnh8JFLYxh&f0mD1WsON@}qf&K9mt9pYS`VKn`)bhyJXpJb}uFxCQ)1g7#F
zK8$8(Ul|^SkP$AfU9QR_7OP!;%L>&waIN%QYdzOG&$Zrj-KzFEV$f@yq;jj;=(WpP
z;uZ{5YL|n>Teunr7xd$@%jrT9rAun10Mu;iqH0qYE$CXTIbit!;<I++@P5uH!UfHx
zOA)p05CdXi*S2Rza>KN};mV+SA$e;zrTRt(sU>PVXtzsxov_fvX0P4az4Jzy#;@I)
z5xW)Pwia%nriM#37W7-~c9p>5%3+aC{ICcCa;9H)phs-!+MS~=m98X+V+X@^?H|;&
zh1#wx8i)$GwhKHaYZ$d+#f#rA)dYA;%_L(NxQ0`(j_610emB%-Ei{lWw9vI1DXO1p
zKKkWk?V`53n1!}rJ-SExEjQGfGyp#qSd>(4PyX;OS=gXUS2JqaC<9!<tQD)DYEoT2
z(CxK*_CiGsw8F*p3aoUZw~~EWHX`xXCLwf0P1MQ=VFX+R*RaZ3x^x<zE}asmE8D*p
ztWXPWM#}^)tTx_|%41?5u3<}0+E(&V)drTUg-nOwfc~uQJG@tCn``?y6riN2#RPo2
zENawJ2P&<3d{ql=53*vJvE-3QB)A4hFVrP)nI&6`zR)EHxC&SnWcdcNUCQgVsl7Jx
zfXgHuTu}FtUTSY{2o^PB&?QP2u7c-RaDLDRu(TL%xR5dzMmA|m``T0{**7dDO=VoE
zn5(_b4xryydaS4Fs!uJYx=6WNFkb5++K6<Ka@4iAKowjI8}VS0tKYTz@`$~nl`b%-
zmUOV6vX&(n>=(O<u2ivmm}@k(T(}ve0IlVsjkfNflhU=+&YBA3HY`!*k<PTMu7u0f
zXKlK$Sx0bi3FjdkS8<dMxOB5u`eQiVr}C>7_IpbESG6*Pdab(H&M<y9%E}j9d1w*V
zS2Z*10h5NLFRncL8j`q{i#H;H#kG^xzPPmXBvLH_EH%~rwXi@*vkaFLv!n`ZuZOvq
z67yYn3pRmxf*OL0@}QfpbjI2*r;>qw`v-L?r#7cDf_|`4&@kdkACNIgEyh@C1l4ls
zMl=gt#SU5Ds-<BoYwxvGXP{cdrAvDT<FMgmnk|%9sUogIc9?3r7K0Y!#zJzhu7cGT
z`t!*mZOU4x=S?z-q-(FNS*wd9C~=8OtSzMXB4g$YmuVLegy%Qt`?)+IHe^-5mg6z)
zbM(0J8(g}wRtuN+7UMLbCeg?o^WiNO3H!I8vW~99g>G4BqRS|U3RU};s&X?;=~{?M
z;~BWrYOIBh*F`wG&~eOz7OusGOHAxqXmyK0{f@*Dj(R;!E4!8hXl?t0d0OtwO>C+>
zOM1}R7}UqL_+PN#&i9Yk5PA5|pRf0E^?CmLSS&6^xFjE6e#<)3!f;XxQ<a*Ny40K$
z0(8nyk<NWoi5fth8i1M_{|gWxTWI057sJA-mSS9#H7F4QbVNxd6Nk#h5?%%x56*mQ
z6PAYI+ywHYF%9QtkzrKDai+OVeYa%YkSI>IycGsL0zjlEi)chRw|8SW1ieKk-s|LA
z97B|1IyVdr72lx}hXF9`v)Q`%&f-uiuhB#mqpuNwnw9f|=F}Yr;=2p867YrkwE06i
z#bltbSe{Z%kW~MEO&7nr)dGn3aLg|zN}TKZy1^j68$%B@48*CF90xP($Y!=+bP<OT
zvDt~Z%$|wZk0)gW&$*O1m-n~JlC(ILkK%n;!`E?6oRe%S5#l0Gg{0$9dzeh2R*X~I
z>BJD6xjd*Iv=?WT+rUqBrVq%BA)TtzApYV|YD3CzaT%uwV~SH}|3H1zNQ3w)p{&?H
z-b^}$??5|8lyq|1P04c~#8V#H0KV7<kS@qPPkbNdkA^G&ow6<-r;g$TF2jy!2ha&w
zXf>vjBtc*79{|xvx^VW$3Nm~%{X1kiK0erw$x#`N#AR$H0yEADx-D7i1##-|GLGrF
zG(;pg7|wLjvPc&=+e6Ncr;D7B<S;5ur9@IPXD&;#I&KOI+9=N51S(YE%rPxih%<ID
z{KV<mDDe>yW89z<&-4x2EK{6&2UKXqIb_sTZa5DL0WvJ4O@|C*#c9>dcv?4}fxuS9
z3MbfAW-H+=9OgJ2DPX`T?1V0)mQdv-tNG@P@MW~oqABq>Mtm6D(H4k{euL1YQ&pHc
z3lM=6hH<E~eJRl<bRI}&IdFp$(rN?uo5Z={pj`$ead6XZ=p`1CP9sD*b(cUKI?7C~
zI4gc*mNRm6V)lWPnQ=@SqM<nOhqJg#ryS`txh_r>?D4|TXmJ2*0}Pwq3%cdVpH2!E
zb&B4CX#`(!V(=N4aktWMA(!e;C%L;SF0+i7JaSI4E5tWrVGDlIi+i&aQw$6BHY5W?
zIvt&XGWz%Ta32?Z_d`8V-NKp8>4p(;>NG8!2OV)0MhCKkV%o%ooWw?pW3Xw;3eLg?
zwO{BIA%=9(Ua;+`PvaO6n?V=nkhq{?MJzx~SDdm(EiUt&VxGilH|h*i9BnJI4~aoF
zy3PW<xH7QVYE#7N)Iotd#hw?ZRr6pU>^O805<57ASq*JTQKeEG%AUG(_G%DSk-JFh
zmiwBkj$>NWcyO<}MgYUyvWlvbI#1kwnAL&sYZ!(q5@Ez`;nxJh$f(%Dh}*)f3xru8
zaNp|2+eq_PH$tY{jfd%Gaj3?f+tL?*O&<#>nFK;DKp07-eFQqLZUY$q@Ceuo?sjMx
zTL-G6g2t>WwOHMjY@eIxr5k!jCVlIuf`u{=hVHGL;(&WA$F2Kh-n4FOVOMH!6sr^P
z-`>te9Z`pMJ2)#m3`GHdC}KCKTh}#!Q5KX5W<Be=AYs$Aj^K8>nB|nw?Iu~DtLskX
zK_<I*ZG%5_Fh!Kq5pHKH)M2VMo#{$*KV4l9q+B+i<l0?b5A3XVTH0{$hP^#H(#NrN
z9mW--sm-$6uuev_Y6Pg8(g9&Gs&z9ub!fJ1zm6j6FdvmkVvGlA1oxn(2{%Tl5L|$C
zWAdCj4(wS+?QCl|b)u71m8e^H_Q5?mIE0C0$h|t5TvJJ2r?arIbKo!2!5r2&cTUD`
zbxvWECQV~=_g7sCW_v#rD#Rb$o)ub$iA*Q`>tt=LLw3K`$#g7w9#X4LtUs$S)ULKO
z{V^{q@94%dP^wGIAWB%*P2itOL3wg*OWdyRvOcC(ejWDnI$OAoqedJ1!HpFJP$kPu
zwTxjijR$oP%jCDZRlU_QpG*-}C&Hu)HlIQ_hPsp>tc&E&LW#Rj?4baoTgQ)-Z_Z6|
zS_c~#vvo3Rfg3uvTZ|pL_wPKIp?DT|7V~y=>(Ea`5Zs5{>~Gyj0cu{2iMq_j?(SWr
z352KFXC_TuCUqd$KPti!?n6bk3h5_9qebnwI_WOY?P=J$%;<=&<RE+&OM)_LuCn!0
z)!4cgXKoRX=9U$JN@18LRgsn7DfU+STM?l1>M)-5XanxOFjDq13~G*6);3W~K>39m
z6WKNF3yg6&R-$QFM~lg|r<edn=g?prWN_Pm9f-Ck+cU&H|8=xPM2?wT_}Sbr^SSR7
zVfs^`7;cuNo5iNx2KNBQ7~1Cfl;mpu916lDK$t>uU#eZ#q2WG|!lX3UjO)a>7?KeX
z+^}0!O{trjQNqAqHzU>|HD@o@(Q3hnoBQSK3fX;FCd6QiZZww27jc93w<(W{vJbk|
z?5Tr)zPLf@Q{1R7*2C3b=Q7~tY<CxTtiw&SyPNyR>%<bUwiQ!AXW{Cg^=VuRFPK|+
zK}z3)EzpR|5i;71HdI|PTTEiW#d(uDwE|?#RNcC{vyKA;$Aet|u(_8yNMlcCieY2*
zBJE>Jj%&1aIx3catY3ahtEUJ7R;+YmTLDgu5{Uk$UL^38Ho@9pu(H%V{fS^JTLZyX
zt_*@;YAb^YXecUXCJ;<*l}wmhaRAJoK(JMwk{6&IBnhmNP%cg|wbjA0tqzu8O%SXN
z7Idv=lpvqAYUp4-p1?Cj2!aV*69nr#%LKvJmA_$ite~10jSvJ|9}IS@%syB!0KW}x
z74mm)1XuzR2+YpZ#H7*n1OT1R=ahZDEFXXxIdrdIp3b%iw?efGpeaE;FF^FW08CkQ
z%gCK?a^S?4E@8*|<rqqknp>cMeE_2O0i;Mh*C((@n|SkEm;ld1wCn`EdVtE1K$7Ya
z?l7R@+kkFOu3v5oE-f&?>QVd*)^D)Wga8%ACJTs30>~@qI1DEM)JPk^AOb+GGzYM%
z%J!g{SHJlXn39t!1Tq7%K{rL!W2ruc$ywPMRKJzWBO^$h!MMzkPh)bhA3zuB)j+D3
z85gts>N%Bx`7c=@uV*`}{6`$vW8Q)bfw#I*k8<_zcM0gKxY}xXGXQ<>fo#s}AJ~w^
z)Ce09N%v6Pm>pWb8@uA&tc?M+*Z?TERW#O%NELGwJ*PmYniXv0;Ksd?0uqR62LS~=
zQO{`?S_>3%^?ies<2pX6x77wQ3+mORQ@N->GD92;L|GP@!~wuqw@VlD>$wbpP?#8G
zFwV?CfpLvhfeq6E(!&GNjeLWZAGdN^&lLj@qYM!1)u1yH<NQW0)!D=S-SuM9N!L4o
zY`94aZw|rQ)Y;d1SasHOd@}+QyO<iJZA0K0RrR!?_Hu%WrN%Nm^va+H)1`Q|?eGS&
ze!m)z092W(W$HPaRE5q20ybm)U^eR+&-G&Xxkgkgki!nd(Z&0XqH6%4J<<azDbj__
zhhX)~Ja9b}Tyl6XGe#Vpqt^+bdR?Peqo#f&jULVn!e~b@tOJY=!?2g$&TPVbnAvOf
z8QSX};Bq~=i^3rjFfHpdu=mm#9n{xj?^H@w>e#2Uk;*1n>N5q}i)xP6!|*m*s=@{d
z*%zTknXR=)0Y4a$mev2Q84PV4=st*TaRTxMs%vgtLNK%+0Cjgg_Gt}b22f6S)uWuG
zHd)yqIIx#RV+V^FW_DFQR}wh+k!NaTzf}H4sA~aI&kdaMs>d`8=bJ#-0$_ZZ;e<B;
z+jez{ST}&g84TSd%)q7+n@S7{0yJSi1O!I|^`KS`Skd+b6e!4&D=rFb0HFX22R!sc
zkT2T&W4)L@UNG+6V!ukT!<cfj^@4iD#FiMHXD~p+gsFKF3808}PUX}xs+ZZ30=HH2
z4Tl%5tud52ER@WA2++`CVb;s;FxNT)5Qp}oz5$S)leXaWBK42%J<!FSdd#ADW4d~5
z8Q72+;IcA;vApP`0;k#Pah4B*Z0wyw+2pT*dh6<B5km&FUc>UB?h7E~2P8U9$9N62
z!>GT7;eb}OdL{`G%revNg1q?+L7q)Ow5klLX+{Hz?-bE2Ao9%zLBZV3R-?^;cPm#1
z^IN&bv-kMUH))8<>HxD$yIxXJ+sV~$%?i(ELp(E|tel1{cg@YkTUXXD>ogIIx6ZeL
zkmjxatW<-VI+$$aI0Hy+9kl8KAeqfEVrdZ52h&`#ISdFR#buXs-iPttgkHzGjO<Wu
zVDeqMvw-h_Fr~c}hvk^2bnSL*s>A+>1~pl1$8p0(Y!vIn&<r{l@5pvo$Vuh7p|3%#
ziH(OTPl0e^8Iu!`d$d~`I775kb{!FI!-`EtM^r#MGh{|U1C%LOVz2Aoxr6T%^?<p7
zFgSpf(w`dO(on-r8*M@-0l}>B7kwH~K2~o-k!w#4IKLby%Z=$G)GZc0xx21GY(TYC
z&=Sf1+eXva*(a*KLHN_@wFWf-L~<~s*Z{BB9jpy%1kmWg4u=NOgtQ81Ei{N0XTx#)
z*dWT<e+O=a)>Qs(;JQC;E-@c~Fa-8drZAdMnGA2h;>ZBISJv$tIQK$RI7PK42z{=4
zT9CJYr(v*PN;878A*8Bc(Um|La+^knNNN!6%5YK#olP;B-vES0>etoS2CQ~4yFAiC
zJeebLvJ5D@pRxxOD(|=`zCC%k4|2OfXF<}cz#B3m<V=}1aP<P4bFE!C|FIFvUTJC%
zyu&JcAxR6B$d)l=!KNYO>rK8B?IxpHqR|m-VF2}TDax(>svdQ#;E~AIiTMtxKoj<R
zVv~qUQVj~C1ACoNZ%}1u3m`zUrmjm<K%yIs&TNdqIS=FjRSB_Nghpj;X}3zZbg*wl
z3l3nr2IsCDpf9-c09uxiiqvxBJ2xG}kh<)k<NF3_*TGS2=4j<Rwz441+Yse3ZD!P}
zBGBffpdV1tVT|snjU3YXj0WmoSpT}Av_WP8v?&l0gesH2(5iy=XE1-;gGm5EG^%ZM
z-vAmKO}*as4mMC-iJIeqR6(P%1r~F9{99~vef4N@9|o_Bp%z+KdZS#z75-R~&=e6R
zF5xO)-3U}gVQ*Ki(zq1lc<U60K^wG-V8>ge<c(7mdJ2i~8dZSQU4W}w*LzBcaILQg
z0BxA=QnrD*2X(0K;5Dsf`QGY{b|s@*NnR~Frd;f_0p-L36aztZ_{)7-i&Z=5<O?Ab
z0!J6B5j=?9YY^=MopfbJ2+XOtZWtznZp1vqd0rom?Cd5K<)XV)nG{H>WjDkJ#-4y1
zWYaQaylfg@yg`<?Iog#%wkI=?^=@@xv5t6EbR({*pRKy=4|pgwfFNlY)p$z<WLxAg
zs9vl~4o+DucB+IW!P_nx#WJ$ww!ForC|N&NpHd$3j{^d}#R!w_EIJqvBTep0wPmcu
zYE6NuF#JaK`v$vd)MDUHi*PYbd~&^7rHf@ApL6%JR0Sv-xVo`Mw*`SynPH4NxqwN*
zuviQN&+uJ5*w5B-qf$VgX~>(wyjX@*J2<&X)?MsPtjpZ%Vv+T_DVT-i%sMqxk7&Wg
zD*GYxFfznjPTaA=Dy;y~BbW)Nyy9ETP|C!q+yt_i3WP&rorn~e$7HvTmOXe~me+}R
za0f(*z(aD-s9V(GVjG~DzF4fIG8Tek62QEQNf|jW&gg2ssguRJO`2s(4OGRv6-O2K
z-omCq^u4S{M!ZEvkYU&io3SH7i@oV-tuHhH=4Vn}I+|Zh72rq(aiIgC(A_u+P`2fo
zR#kWi^U|`(2~dRnDB2sN(8W-ADYgU-Qebg&v0I6@h6RE3?=L_PqwsutxWK`n3^)L7
zIKGP;WdLOg)hr;Dr2L&-yj?+^K1+t<hUW}78-CXCQp2%Ejh8SSH@wVnv*A|5OAW6x
zoG{#Gc$wi&!>xw946if1$8ekBUc;S+hYWWa&Kcfg_>kdV!()br3?DU|GdyAVkm36c
zj~SjceAMuRh9?Y98NT1}Lxv{}PaA&F@Z*N349^&T$naB!rwz{<e%x@$@QmR(!%rE0
z*6^(1SiSYX;ke;B!_9`DHN4btY>D;1;ke;thMNty8eVF6o#BMxHp9ydcN%Ur++}#3
z;XQ`i4EGxDG(2Ru%W%%{9>a$W_Zl8EJY@K&;hf<K!-ovtZ+Oh`q~W86A2d8+c*^ko
zh95FKX?WW3gN7eBJY{&s@I!{5GCXZ~*6`zoONM6*&l!Ho@Uw<z4P($Ha-d{5Zg|dc
zv*BkAFEt!%vi>(5H@wVnv*A|5OAW6xoG{#Gc$wi&!>xw946if1$8ekBUc;S+hYWWa
z&Kcfg_>kdV!()br3?DU|GdyAVkm36cj~SjceAMuRh9?Y98NT1}Lxv{}PaA&F@Z*N3
z49^&T$naB!rwz{<e%x@$@QmR(!%rE0*6^%h7)RRwhU13k3^yBo*6>opv1aRk!*RpQ
z3^yBYHN4dDI>QOWZHAW_?ljzLxXbW5!+Q+38SXXQX?VzRm*Je@J%$e%?lnASc*yWk
z!#Tqfh7TFO-|(2>NyA4CKWKQu@RZ^E4L@Xf((tt52Ms@Nc*^jM;fD-AWq59{w*Tyn
z`i%AJbIx$H;n*JQC&SH#TMZ`+w;66V+-11UaIfJm!#TsfhQ|!&3{MyyGdyW{!tj*g
zNyF2Irwq>+o;Eydc*gLY;aS76q}AVWv*FlHR)53IhFc9M47V9>HQZ&m&2X>bF2gy)
zy@tmO=L}C69y2^?c*5|M;Yq{OhNleA7@jsfYk0=+oZ(r+u|BK6;bz0Jo2~wan+>-b
zP8e=8+-kVXaGT*?!(E1RhI<W<8O|A=Fg#{>((r`gDZ`V7rwvaTo-sUac-HWY;W@*z
zhGYF!f5Xj&W4BoS4L2KZHJmWqX1LXGm*F<Uy@tCC=M4869y6RXJYjgu@TB1h!&8PQ
z4Nn`MGCX5=+VHI58N+jiXAQ>&tp0|Z4aeSK^*7vXxYcmNaGT*)!(E2k4EGxDGMqEq
zYk16X&hUicF~gIFCk#&+o-{mdc*^jM;c3IOhGz`V8J;y9OIiI5Hye)KYV|kVY`E2M
z!f>16R>NI}+YI*_?lPP++-rEuaL(|A;W5LLh9?Y98J;veZFtJ?jNxg+vxa93&l#RI
z9NTC0H{5JE_C~9};bz0Fh7*R{47VEYGTdgk*Kn8NoZ()>V}^5vCk&4no-{mRc*^jk
z;c3HDhGz^<8=f^hV|dQ+tl`+8)!%Tl;h5>kgyCkxt%ehZ+YGlF?lRnFxYux(;hf=K
z!()bXh9?Y<8J;veVR*{$q~U49Q-)^@PaB>!JY#sy@T}q9`psg;*|DIQ!&s7#KZkJ)
ztsDa_#lL$W5533txy!=KHT8k;u~>82d-=R+;5{a;%ib>zVazd=y?<*6kA-loT0LBO
z?+m>^62kX{@Vz0tB!r)R_8jqX=}&~-zbAxCq4L}xdLOG%50~Bpq4$#^{GkvATtF`u
z|H07viBS4yhTeZNgg+C)(;@s=2%jCorCRlH<@svpeJo!7J|4ntA^gS=9th!B>|#mK
z<#%o<zo$c(w9G#jeomo>p9^7aT|fLnX>A|#qagfq>75(G?)x3?{j$*eMH=0U|FRHH
zgm7;t{-vS!n6Q>Vm*4Fnd|wDJ3&sDV(EG=m%F{D;_R2dM3coy*-iJc(9}Hmzr<W`5
zROmgHq~y=NpAEe?_VVJ#7M6!!9f}_hy~oLrvh?MHlJIf);cK>K@3B}^hFe1K*M;7%
z4!v&+VPj7(zgLIizcCbk`n>Y|`Q0P_x$?d#gxln;|GxA)^>E=ggx>QT<NR~)=Uyns
zCT_g<8}+q^+e3IVl-{P$`-ejB9}eNpQ21|#-j_o7w;>!e26Oe<5lU}q=zUk{eIoQe
zwnjCSOD_?^M=#O@-1}If9QTCMCuEUb_})-{!y&vU6u&NnZw}!HLh*a;{nVmzd%)p=
z(0gYOxc7Wb8S1dJ2OM_xfWyunaM;-c4m*3mVP_9G?Cb%D4~5F->;d<FEcD*l1MdBu
zq4!5Z_?{4U_JE7;>;Z?JJ>amj2OM_xfWyunaQOaEe$F0n@0~s1@MI|bhe8-oB%}-f
zVCcQG2i$vS4>;`X0f(JE;P7-PJ!cQN_s$-0*x3UPJA1%kXAd~+>;Z?JJ>amj2OM_x
zfWyunaM;-c4m*3mVbU`H9Cr4A!_FRXSX<W*@9Y8h-q`~VJA1(4g!GOd-`NB1y|JrT
z9%m1@_X#PjAHO%0-ld`U&K_{_oju^Nvj-e@_JG6A9&p&%0}eZTz~RYId7M4q-aC81
zVP_9G%;GZ%hn+p(u(Jmoo(<*a>;d=Q*#izcd%$654>;`X0f(JE;IOj?9Cr4A!_FRX
zcwMMJoIT*)JA1%kXAd~+>;Z?JJ>amj2OM_xfWyunaJVg09%m1@_Zvd*oju^*JA1%k
zXAd~MF%-W&gq=O$!fy(_clLmL@9Y7Goju^Nvj-e@_JG6A9&p&%0}eZTz+q<(IPB~J
zhn+p(u(JmocJ_e7&K__$me2}2?Cb%D`Ih#8!_FRX*x3UP@6qJE@Xj7^@0~s1u(Jmo
z?zQ-_SYwKZd9l6VYVHjM=Fab{xs^w^fH(SErewnrad1x&@X9rMF3G)LyL$CHZ?`Yr
zuU)goKRN|`tG7D{dm74c&TwE~G2aJwtu`*#-83z-V`2f~%SOu<9P*SMuMTt91-~cM
zDEnb`gAljOD8^>V4!yS(Sa-<ERvLNl?U?00FMF?na0^)@@6y!mM{>}oQFl%0J|yfj
zHLQnkBtI#A-(lI4#Q1{I>N~Mz(8Jt3h&{B7kDXN8u)W6i5(&25lid5;h?7ahp_bv~
z?T4{Jh~aGqNsE5$#K*d~&d1!1#P}{e_by3%JKWTPddqvmeIq<qjPQo_qZ&TuA===3
zJsjb`=O%fkFP*vTM%zo=sQbCRO<9fDy@Wly#k6hkYTVM^-nF{}CkpgJmqu^57Y|(^
zJ#0$i-r$YtjGW<ablbK%cwQ3ku?KiFT2l|X0Pl8Z3w1ZKkGY>1<;Out?kUxs$i#9V
zCJsmI4LpthVVvFER?{eZXZ_1E8nF+E<=1U<Re`goddEql+!M@m+=xDa`1`Q+3CAOF
zdux$*VKurvTeiQlQBO$d-Zat&_GR%ng%@7-Y5B)T8gV2NH&EC%XoPqBa%C4KaiN_j
zh}<sTMr?q>=@;*Asz$!Rmax1XWooozFIoV^=XE03j5M0V2_n{?J8wI%<JHl#x7k+D
z_dtHQEoX9%L?gbA)P*i{hfNx7|C8Gx+vx3W-60<}@v)vDX_Q?}Jaxj2Z^$1Q)PjpQ
zdFTXK4o8SEkXt7jz5Swk&UA@?f<Xy7;Gq;9@KBOo!lMjIwtBWfJbWP(i^0R&WhzpS
z9sw~WA#M%qpQMM$Ew}A)$#U>7Hehlupm6>YkyN_x5fs8GCYp2u?gDrqJa-<t(~O=+
zDzA4FE%CV9HkA1udA*6p_mGQ-nW$rMkvPoOdF*BWWgcD{CKFP;<RKVhFe}>@{WOMn
zMl%><h<gQt9_erzBP8))h!Ji#Ec4)@=rRu;R0w)N0+3t%auj&Id6|c9gA9b=H7LOl
zc2lz-f;%3|icVU?x#=a#`4OxZoTn`4mz?0CyQEvtru=x+5<Nk&4ZNpfZAp7}qz|Vi
z26oy-!%I|S^mzAMEs;wuQUjEKa*S??unalDNPmeQM&R)sT!8`E0uS7&?g>nK6z~qG
z-c<j=qo1eN<tlt-uO$#)yu}#oskbjJ(OV9kR7Di#$g@x=yqp7AGT6USjyt+tsPN!E
zMVywB4Ty-sdjN5Z#8B#BHqX0*mW+(@Vq13xuPS(2Y6zwXJVdO5Xw!DF(0mUxsU7)b
z6eOxQ2k0(yp43{B!)Xtc1REsTQ}n<+Q9<Fe1eDz!+)KX%JLJp6;}TMqh~f=;eryS{
zm5U^$(ODM}tbs<B!gxPTo;}6OxM)E%K?3O}&lclB`WOS*UC99-W0-)CoRQFUES4Nr
zEAuhZY@+BYlRNN%{k1A^1_?emW)u`>^f6ImRuFyC0Xv6z-Eym|hFTU)%e96rQe!ek
zlb%w7xN^s!o9t{7_Mw_|F(08rJssU7a?f4trs-H|ybbgSL#xbPVFNqNd{D^C6M6#N
z_qmeCoi1O1Fm8jp6PQhEeVGlRc|p_Pq7s%>W-M1vrvrVT5xcS(KCT1p8t#A(D2Qk0
zd>`)c=D8o=XP|Eo$EkxpU@EzV(hoD(&#m_5Vf5xIKg{qx{UVs}<F1(w_<${GY5G2T
zjIzuJ=WNPLD7;)&X1z2b7^^svgW1g%6ZyB*5sdio_&a5cT>8#fVh3_#JEb7D<I@LH
zV|ch_mt6E5^uf6wxh>rf(~U~(mGZb)d)s;Bh$)l!<%mNMu8qTX{3e{8r&-ZrN0~UX
zg54n-tzUHs6!s+u6F8~X0osC(lX(!$dM|KO_Yltv7mA*>+T>Z2YJVbkZ0;7)h8@e}
zFY3eNWgXrvbxk6<gEF+qm&2$S&)qiRHdQ&G>{)(II78i^8^um>wS^IeH_hRse<$?g
zHo5HvJ~kL}^1DgxyTH+7`0&J42ftUL_X#!8<|Dbm*w`p~vPn1odp(G}<Qx-azdQTZ
z9FST@^g%D9`eu$7*Ov|P=oOMC@LIX%8b1`&J-z0K;)%$hs6r^YGRqr*NyK#_(S%Tb
z+G_Tdd8wU8FURU;E{T^DvNRzUpj;;AL_y1WL3pX@#xuQ2Jk2<gDgEE#(LuAyKI!Q^
zL$Rn*7f2k{_K*PP1)>al;kt1Q5pnqyD7u-W!tx_1;?=DjBm~G%t~%{7x;F7bSKkXf
z!mlO-y*OgSxF_g^a;S9oBa*5^p=btf;1^#5q2T30Sp!mJ%NP-%0$$Lc64AW8JA?gD
zLwdA37%EtLi|AeO>qkVxs)g!%1?y-LQO9s79H8q-_VomFgqMEc(oYLsdeLmaOV88=
zBL>^ca-@I?RXf;(F4X)c<i|cx++gxBsrHMF-Mk!H3siTYWk63jF_fLG;`RSLWk{NE
z^0LP-g!AH;DshoNLx~I(Tgf9PcLB++BrZwhmxG(VJ4wWA)k+H1C7xhqe_w(^2*q!L
zMTm=kaUuw+ry05oB1a8I)oSo648i2wFN!8BRLJi#r1G2cI8H2AS0SREED8vwW)*P3
z%N3kg;O+$T3Lda;4oE#4yo#5WYFn}oH)$hBHC6pnXYk61C~xQSMLA4V#Zx@~p&qqh
z=XoKbe-_jeqG&CA0YQvQNf4prC{EsQuvqL2U(~Wug>(Xb9+?OH>~JUJzWOS$lRPtw
zevrV92W@BsKgh^(!&Lo@9L+Q>^D|Sl%+HL`GCxuisFr?V^OJrqTPKpl&$4x<QP9ts
z9`tjx>(oE}gm`(zQ49dhx7-AvpOesXe+uq-r=OeXbQ5aghbG67c}cVf74iH$F*XPT
z6mc2O^UL{uDIU{zW~qgPqF%L9{T3ju=z;FTI68mG_|5!014G+S!hyeG3DN?RvWTA=
z-BEs~YtC2>G6@*A9EzObbvVo319`);IKtST8ew{10^g66q{7no<0oH|gEVn{ztr%)
zwW~KB#-Kdp*L`>-=!Y}wGMXy)J0u2D&~MN){r&VfEucoS@8@_r7<a_GEH@A?B0U_^
z!?i>FHn1O#NBPK!WquKH3%FE`vLF~vBpDjL+;6{Jgjnv!p|<v~YkMjUo}3PbBLR}F
z%ltU&B}Vrdp7_VqqtFn;IhDXkI-L-OpPAY2xGwwL`H{X|9!}ox!<1fElGei+%XzB0
z1s|5ituZ3=De;>;i7%5X5cy|F|CvQ;vh@tiJ=jrId?cGgYJ|hLY|^~=8dov6qorqv
z0npD2={OIIln}1mPqf1sG=9CYI*n<B3mm3&67~!^>fgoh-uU_YlZ2GK2RT`CCS{`V
zctCK7XIOH;bLBiSCZ4Vpoh*Xq>XqwPuU~u3O8<B_J?BYUc;fanCkM?QG0$@OE1nTW
z@(o<~B`AdSJ>8g-o-P~owVHt9Y1vQ`h?N%fj11`+Nx_hw9TWBxW00PXtjvs%mM{0@
znfNnRoPvJA8%}nfsd7@LwLJ6KJmsu?*i#5H;298snldvAc#^YuVceNsS9HtdMGu!s
ze9yjg@dhv_*I#^3xkjZM(_TSO{WjF~Dck_!hm=xL+KQ*OJJLMhr)i!dMmNjX#1Y-~
z5SBW4QLg50o`e0I6cyXh4~fws^sbl-zUPPxJZ17c;F%iP1+Bs_dHA0E%=c#fETZoz
z?4-Ac`JM*`3R(N;!kM1TkseWj>U$2S_K|D3G;^kBKDJ|I<%yGKUz|wWL!O+evP0(K
zz{EQ1ai%Da-8g7J%y|X9CiG0XN+l!~&U8cO<ghPi&I~R*IAL)nW<3}r#XI&l*ri8j
zEstX3v*dy!{RmQvN6YYC(R$6QYgVsVXSYs}nCZKA9(&XG8qW-Kb`E{Z*@2f&%=fi)
zaZf}<8A84m78g`_bZsIA>0+@qB88Bzr4W*4Rx(_#5s^a3*HT#HizFwfPzKyQ8IeNB
z*HXY`7!kF=6-yq2m{p2&G0ho~Zphct#Vr~UVMD$a784A{ca(P`+K?L-xg$~t`C1CN
zS0p0rtz{xxYzL(4*Vh}4(>LJn_onz-+00_suukYZnNQz<<!DwSeO=XjyDsSKTXyq&
z#kLFj`c_-e*SBrx8@5n{*1g8@Z4ZVGTOSL+7ntF<3oi>Toibo#3Sx2>TI2x{4jn>Y
zvCuD1EQ6H4Qf7%^qkFzKO|HXH^Hn8rc|y`*SZOi%VnW+fE9Q&O3&<TcH|SR$&Z1sv
zf#?p{+)RPmMlWzjS5e>K%C56Kf|kf;z4^YXMO0(>zFG{=*E&5p@Fpy-=)45Nny;$=
za9DpWn<aB$G06zikRzd>Z;Ga{e4a7rJJ^rgr&65u4f=|Tv9XAsuHMd}sw3>H7l-)1
zIecp<<F|v=BG0=aM>gZqreJQcLv%(I*0P@hzE{wf9o{SVX869cYD1e3R&>Z0<>fsn
zzOT)!pbObU&bDj!=q>0=4a5rbKGm~4y(Ve_6G^<8^(>u2;AAouCpYp=RgA38vT-_=
zs@ULSH+ySGbewIyay2L=h5KcOuSP-OJzpnL7{lB3Vz9N(rdDbV%);t~r+9m;=IJnc
zN2nlr<FX`=R88i1-quGp{1@-&v_q;z%guZK$|NG?BokTf$s>wdnPpV(vd}J(kjglP
zw@W*u2wdopw+kJi3Rseme78in!znD_5qf2G!}9j%sL&yAD+#WliVPiHd0uc8m3D-#
zK>=4q7clH?B@v6lI^L;sCK4*QwFz#-iYiIi+oc_<j`NQ09e$W2qL#b|`$c$L+N+}r
zxH@FYSanv1vUG`r+S|O>oWgsaQWLW0{a?XyTOw<t3&{JyqC&6nc*h&7p?B7XTF|N!
z_O>i>omg4g7W$g#0$vl{CIPYGnJ_2`S92odiF!M-BHK%w&^v6!NFwvi81aUFl<9Cc
z_aTX_k8VK@&x0*!wJfuyY>^9Td&LNh`GVeoQJ;8QRWRA*25v#`z<@019T<Jl+ttP!
zKuLAHQhP%vdYhdiDucUeuro2>?b?tV1S7oFNU%iAMDZ*j^A-aNKW<=d-YBDt*7dmn
zC6TVdh>BbEQh8D6^maw)7E4N&URe_7tv0F|Qogs0o3Yr5{cpk0$PMP0pNO@#3=iF)
z7Kxa**snL(S9Am3oTEi?#8ULVv46=Qm;2soi0sr)didU25+MpHpk*mW2TY_cuH5*c
zu}6>JvZ0B>HgN_<w|`A3LI<t}4Gc-o=3Sq=@XbZq7F*hN$s!gz$5;Pl)jWq|RoA!y
znuY(0)(C+w{vie@M~Hs}1Brjch=%^W7B|dU;vbR}F8wGC$?&+BH!_{Dgs0eI_|*{{
zP5*07QT}UA6+Toim;Nc*bLF}Sd5L^iVR<{M{Jwb;5CaImCQ9_cALCp{$^Q5Z{_Eu0
z;*h+fzpr-uu@wEi@&|+!{6pR<48-5@PhcDn^bd{%g8piUs(l~y58CJF*xCt(V6=ig
zY2*A|jb%3>#%$-PTtRIIHt3c4SPubjof9$U;yQ=;-{Kg6b>hwf`a3^xE;!%G7T+I}
zq4G&G*AA{E7$ebSx7jg-x7Lx%WOWG}O3U{j?3ZOs+hiW_hhm0Ou(5~lpW`CmXv&rZ
zeSa+{<P;=cFnw3fqA1IAyg4{q3hw4^#|0=)NXTs6v^|;Q9R69>5U;w#QyQ3eJI6*R
zp5n6c$vHBA-lg{%V$%rr!^qa8bGeOUtw*5#@SiVy{{W@)g&#gJn8b@!-isiu;KkY%
zQQ8nM!bGjTh8Mn-p&~l?!g?+^UXmDP+$w{(Sd1@d-Fp4)j9$J7(2}o@&UMPzBQ+a0
zoh!7e<MOg80(}vfIM6<4=Ajt{ovpSP<>akf;Li0j^?KFS+!3tzLMaC^tUU@G4*UD8
z{THImgkVLVod=oP%0Gy=;3lhBOy2nG%pMWx8w^WaRsniIoK>y9H5;&M@CGt5s_pS6
zU|$A1Sl>i-B;I)0m-8~;L~+Ri)F)+UV_JG(Q+ien>thy|BLQ!}jlIG7k`_)6q+}~1
z7Jj`r647h)!OQ(O=$XqCE<x?K^HlDcCpVQr5{Sieo<|$yb4$#}rNOM2j@*I^sd$Pv
zIID&?Mg^E5!siNLa)BJUEzN)9j2b61mr_UjeHxrD;;U=c<Im?Cw;Y96z6LDs2)y#T
zC`63GS7qe5Ahxt@LeQVA!JNrb*GtRHs=ZR@_0Z(rtND8+>{VdHm8YKUm1|$Nty|Gw
zsy*ec-t(PJXDy9peCjEA6%Yo2U2RLFyOCDYDPGY~ImIi@E6~S1Tt@B#!^_uA5X-th
zsD_~HBtiFz)+=^k<NK>Ro#w~#yTrui`N3We^(EfvJoG%OUJyIq?X|-vq4T4;;?@l2
z&TJ5IemOUKEloS%e6OcvL6?i#-h8jUE90*1whnrJMAta!8}-f!V0}lC9i#=dG34DX
z$WA6j$|a<}E0>#$#jZR56dk@2{E2rye`3}h6P;WSl+N?t&EI6@zvF%do8&c{<a~dT
zY&VwF(znaW1pUzQ1(flt*R6q#>@xP30r1lE4bjVj*aeOc3ZpsQ&l=!_3xdrZmRtIA
zUYn|7yTEIJ!Txq^w9IpE8pAh8SmYV_%!Gb59B07z6{{SCzy)Pn4s_sD*ul^AU@ZI+
zr5kV1s|y7w*}k&?Z)G&QRX-%;5uDMZz1@vZGFVOhxqQZT4afRpDws#yvTlake=Dpb
z3?)0>M8m$s?-{O5hRXa>^o`#wp$>?}@Os^f^}dbe^QNTz(y|&~neeKv?QE|>lAb8K
zGC``(74s0AFAa9!eA3s~0ZS&Bj>W#kBXeJIE8|G)TbLO*Ct$&u{WR~jafB^;U0Ake
z>l$CE77P=MUFbxFm%lTi*+JfWtE*pWw-j{YDXXq6r|(&Jtw1@GGks^wmA`T9FYhB8
zN7H{<`2xWF3cgG$h}?ZE0@i|WnZArAC>L1ed#hjO(Ja0@n##As_~-XDJJ3+1-B|1*
z%|h7%+X#7XO<QW6ePPBz*fF&fHo=jl)~@z7uOEU(8lyw7rREvR9zn7ktceP0e1b4I
z+h7VPVI_6VL{kU@EWcZ0F$*H+Tu#wq76di$GM9RKh^Yh$8{P9|L83cfgOGSU>I`#-
zALNuA5*ehNOA;I?f+P}ePINfFzBZ9AKn|er>k^nYyx1eusIn+AUR*Jm6>Bw}N?EO1
zdHOJGSBJu26>q<kdezEn6GON2l#ix!iDT|%0m4xF@F~v%sW%8Sa7-!~i2XTF3zaj<
zCG$CH{*?43k!{57=m{+XD;FK8!2XB~)F-Rh*Cr0J?j9L3rI!Z@F{<YfAr$JAgjAMR
zAXGUmX{dm-kK{xRMNY3IdL+~>j$4b6$k=1yj~-0MzdW)@ae6T!#sqW}TjEkB2A5c*
zEQ2nyU>-R*b*8qVXFgtfx^`8LkYGOdiq7&UAy6{aGLgajnFP02<I>2A4(1Y`gdSu~
zFM}mUf_GItRl8kg(lEGnA}~_&#y1wuYZ7%_Y4qwdiG?edWst39^8sk$%Ytp^+LsLh
z^)3u!Gv}8@R(J2<-cWsC5t8bI^YXN#fEKX4K)&#Ik}no}MX-cg-DriP0q4nu`E376
zNl^kCyPT?5UKv^Ie!tFg5|sTM9Wv#Ilw;VZ4k=@K4vG@Iyh6olbee~dX7ETrD9vtF
z9@<dXCS(aFAkCI}buUjPf)P#`bUrgIi)^P|iNNtH9wcQ^qk{&TR8L1T=;caFS`}ym
zS8c7L)Xb9s7B*}fdIaS;K=YReDas`(G(VqKB&;VEy?J?WVllW4=<-vwf+PzmVB3?l
zZm8BgEsqwHun<P44a>V0po0P`GL$Z+0rH0vr<luO*yUyOG8j??1kQH-vMMgbkPj#^
zuuO~1<JWS5V$8j~tc6d*WcWs9WK&2>1h)`tnWF;dsEx~u#=uuV_<F%l+Z<P%zB#&i
zia)=5*EXh2E5uCT)ACZK(DT{pic_?R5=U^Wwbs(BW58f^q!iq4ed^F6<qHWn?<0_*
zudG-S%{M@)rws1YpTCcdsb3XR7C1vBCoxW?Gp_Q4m*d*X40)AbdRe+j1n(ufHZd}q
zkh6Gl?G4M*;)joD$<Wf)sUzUnSzgT@8o{)EJS+HW&e~uXve#p$rOK;~?<9#UeSLyO
zDsCv8*Hp3C)seNx9ZYb(v;%8-*Crrt<%6W{BLl2Pbc}-ucQikLZ6b#nS#-uI`)eJ<
ztoLYN3zp@s9^efWd3#*tTQgVb!NJ1S{AhbD)~dB~-6+#CSC-AJ`{O-%$tVGaa}g`|
ze`{n*VBXv_Mz2j2^8L=%V8x=N<N{`04sl*Ylt8-ICW2Xpa^Yvz5{^CGktMWuav&jl
zw$Se~=35b2moj@(^D!03Y@*{7a<0PHCgvM(D}yrg#TIU5WZ?=2AeBXmTX*@ZBP?AY
zlB@p+?}!1*n8v_K)8KqIBdv<eDbx%yp~ky~$atrYg)>wT3*KlI-!k<fW35&q6}<<B
zm2ET}N}R?NS^Z*)xHlKDoO7C+Clmt0CsZ@e=y0-;6;mTIIyYRfqCy8Wk??n*=+bB?
zH+L4#Yj)>hRA^ti6e=v^dj)axbI*Hz@Qt2WJic~j^G)(5`Igtq^T7{lz{I0^-@iq3
z*Nl44PwZ-ac~tzrKCUr(PZR&{liz=PRQ$8<*7%dBiT{<?cYQP}e$^G0|K=`Nba}dZ
zyXWhwzup)XzYn(%@o(~tmE*tVmHEGniog7T#-IK7%I)_+cICBE@n2){d%ssX{x@E7
z?rWps^A;uk^`>^J!+u@8-Lv*H9UW2eXK`qdf3siQp$_|X@!a#3zgYfMRQ%7qOCwDF
zsB-y#*12~{RQx}Fv&K)9D#t(b``<V}D*nst!q48*#9#W_hcAwbe~;_`M=IC<<3HH>
zm8kf?aP9Y}mD~T>$Nu)`QSld!Sp9!mx&9w*T=ToA_#d|Rn|-Eo{QmdsyCo|A!^Xdp
zKdT)7laF6G78U<~M}PlOx&GIE_g{yj;$P|dZ?1Cwzy8j@{aaN0&sqI@e_c6#=GWJL
zDJuToSovrFqjLOz{@LilsQ90C^?$Z<{HMQ}{CHISS6TfhyDPU}>e}~5^54pr8vWE&
zrr&|pCo)m_e{G}2k8P|R|BP4t`4^+&pEIfP$J#5$fBstycSOa1oyq^%)5PETil5yc
z75`}~|Mcd{`5*q1_MxcwW7ht$>nq3q*bDnlM#cY6%RjNLa{RkS9{<m%_<vyew{5Q+
z|F#dmY(-T3o(Hu3dwVL!zxbgq6{F(sxAsr$t{nflOYV;3--lfJZ>SvqviENOOjQ0q
zbn<^s<@m!b7ylqC{*qNjf2WBbd+_bwjf&qor157@6TkC?-#!=>|G6=Z-*!{w@-O<*
z{gM2?<W4L9EtTUZZv9N8{JEgr;=i$S{LbtCZbMZ0?{BaR!Fwym-|@kBM)J>V?$`XM
zPZR%7fAGXxqw=5py5^rqR?h#H>VaHT{O67SdiyKK?>Kt-;;8sP8n^Zvs2u;{!d16L
z#Xn~D+hnS8{DZ&y&o@TJ&szJ%_EnC*c;7{@j*7q2=)d<g@slqssE>-j&ggIYH1WSy
z-~0Qh_y;Wi**8@#f9=U*eNpi*c#XDy+y2V&|MAJEuaAnq#pr)}xN`iBFP;5gQSpyj
z`?uXzIez^WCnD+ReOCX;)5L$pzupnae~*6vV~<b6ejlxzf9A3s?~f|~OYVW~j`-83
ziGRuTSLUMPZ%6+p{vQ7aD(64DG`&A6{*$i%4_A)A<rClki>UZ*Hhycny>k4~^S=Ci
zRQ#tM{lB$x{MVkixHc;OU%37ss~mr3_ojD8#lO)$NHKYu_`f^Ro{frs(#k*f_R9Hx
zf5pE<j^Cg7L*<{|Bd3Y~_y^C5%KxSAgBtIs9RHK&Uw3X){C8RW-qXbY&Aqoo+Mj1)
zGbjJrj#bY8!iS%@DJuVqEPm|X%JDnb-5tsQpLhE6c;)!NJpX@wJ}Un!UH;>h<KLXR
z^z~8kKlR5}|39o8|BrwCy;nuWe{4eIPft{i|Iv4!9Z7#3R{q()svLjl-=;qmmH&vv
zpMF>6_$%*t+n1x_-*57NdU56WbBnHzoIm-r(_f91<Dc`uhyExk|8JQ7Zd+10{<iy`
z{)edeKXvk>sdD_OD}H<+D*nZHX#b6!F8)~?BHM3`#g8>t&cE+(wyuxLf70yV*x8li
zx8MJ@!%^|8u!&gy&Z!*#B`bCvjf($-ejYN`cAEHac<V^y{A1mvn*H=?;{U4Z&wd=0
z|G8HFv2!bzKlbkzM2`Rd$=M&LiT~ltj=nA`{~6PN(=V@_|6l&WOgbw5MOOc|ODo6!
zW`0Q||9r#I&nqg&e{!xdQhv`gTmN5CIsTS6Ul>{c)dw~H>@$_)x7<7R$*B6z82z@L
zCjWoA;zN=2^GTCGV^>zr|BN?%A#(oVaVP&y6aVuU-y0c!i`73-U3vbeWAE@gqU!&W
z_gee^uyXkuTE25%RQwPBxyBzmP5e9m{>n)G_cO=;KdPMn+xGnZr=#*e_7=<kH1UuA
zT~*}xDVNsxy_Z#Pzwf+kT|6rPFIoP*|8M2;|LPw;9LfJbb^7ZUmGl4F<GVIS<-h8f
zmVf#*`G4nQf3qhl{y&@ijQzNB`CtE|=P!zizud`>t18Do>!UYB&fl!D_+zJufAbGt
z_lBta?;WxJKTY}n<TY=6A}apd9sQLmm;a*XpKOVW{|)2c$<y#(d+ig;qvFq+{24n<
z{_nqY$?B;1a~8k%?8@s;FS+zXk@MFvqyOoa%JtuPbivlB{2zIzwg1(X<99s#jg?XH
z|MsZHPt;VV{~w>c<g%#vH&$u<wpEq$Kj*Q1lTq=%ZS+5On)t6cZ%^d-^#>Mz`ZV#+
zt9|GdQTadP_-}RP^8ft1U)~!P|0&a-ZKsL9v*|tWi;CZB{U7^y<@|s6-bAGR{yn4r
z*iS0QU;NFZAB)QWBgVh8Kd&7Bm4zRDFe?7fE&s98<ez`deSaSn|8tgq>}2Kqm;T4m
zwNdfEWAdZ-e-rl}@KF@+|M(`fP{f2H9TubnL<qghfm8tr9Yt_M2qZuXN$Blp3J4gg
zARr3}VgW-HROF-y(xOOHkW&-^1;R%~K#>2;&huP(Zg%&A{{G*6z4o5ly?frzGtbOC
z(`T}+`A>g3F|UmOKI(5H|9q9S!7~28q5i1+W-b3=cDvm&{>2}P{G&~?&VN%z_m=kG
z?gM^xx;6jf+c(~m$yeVM^4&K4!?ty~BjZ2xj^Nj4Sj+E_J62kM9j-(8U$N$Ia<<hH
znf#XP1i$*KHGi3bop;LkUwTjQyKVSWC;XmY#vi#>@ar?J<xi{lU51RG&5AHCZI(6v
z54HZ5&R=+%^*{1Uoo&rO?BmTVWb*TF75r`+{x#PcO8alNY!dwXYu57HI5#EA<o^Tq
z*XCIBAO7s9RR4r!LcTiJn*STu1F8QRxDvu|!+*Q*(JM0j7rYJOpJy$9eR{Dt8UF*Q
zziY2s^S^ievb6nHY88Y(!<xVPq!Ei{@^3)?b=&Z_T3tqJzhWC8{PV5lUwXqOt$z=M
z{Hran=HIcUu(ba9IOwlFwC0aLmMrz3rP@IJSF`3<imsOC|3=8a!kWK*<%`n(`}_?+
zzD@bn{^)Dc{*SO{!2Uz6<^SI0Oc`1H&nYYT)l=5xSK)78k=nmV8pz*cE&ugT{*ks{
z2Q3i%&db*Pv4g+6FVmm(su-8EqILay)48zCGXAJ(f?s*cTK?>*Ev4<}i_repYFqP<
z`=qfn{@SAaC~N*hp=Bq^^nYy@gx_V&uf_i;Z9i0o_|x99=4WSDy(p7E9^y}3WzC-*
z^{q7j{15Esw5dOrIrBjqnfwJHUrVx<U-)3VRWknTON9O0b*%Yc`r}Fw8UMQ&{$y+Z
z*Y2FYEaNXZM#y*Bg#X^6lzcM&Y^*;wu+G2hU3sR;_@4s#&brq6pM1Zfbo}KR;CI-_
ze^9#0cQW}QNh18(Eo=Q-=PTPs%0CIx{~YW5?_9L+Z5e+<mj2xzu`%3VtixaC_^6RG
z{vx2iUff##+B=tDlks<8^3|Pe{A{na{Odb<NYn2}kpFevn*Y0tzn7KCPX_;^*0bh6
zwj-;YjNb+6-(|yJV(3??GX7)eziiS^$2_~F_1{at@5-`HKPSR#O8XDjLH)^f#X9^S
zx7blnrvFu_KWeM3`R5dPv$l*s&kB)#^%QIV4K3>@$oPvx`qxHS^JnbuAniXZ_lA(K
zrdsnak6biFCZC@i#V@VCHUH{Yiky`3R|oyoHP-w|*|k2C@z;m^r!=tUKk@SoY5#2t
zkgwbD-y8kx&ocSbA^*4<TIc^IAJtke<L`#yKW(kQtJ~se8UGoU|J=-fxUX9C4?lfP
zI)424Y!QEshSvNw5;y0P$zO*4W1lsDM5h(|W&Cjver3Nk|NV`j4jF#~NWX5I^m}ty
zcWL?64azUKP57g}ij?+04PyN2E>?ah*7}d$m+z8H|0h}fUt|2rD(m!9Zp;(X{;Nrl
z|MWC#`F;20lJ-A#0sFaZ{BP*X`K0~dpM(EY8e03`-_BK*mcJRGzr%)qPo8|z@uSfY
zf35@8;r}Z1xODz)o`oX)I~!T^PfASrK^A{)(f|Bv%^z{Iu+)FXf&KM^*8JxeJX|A_
z-wWEGP8<6z-QkdqpAG^2osF&2UuxxSY5i?B*x&huwf@Qf`&`<790T&z#@77re!&hh
zkgR`NiScj4?_4}a+JAK!`j519Yx(Kw*cmeUQA1h&|Crrptobv#6iAct?*sp-HL>P@
zKWzI=8UHrOKT1<;{)Ro~+?DZXg8kI9*8GomnbJtc9|ipv+D7a2qrG-Y+I|@X=~q8(
z?LS7W+TU9yzZsNYE}QgUadbuL{DXZg{2GftcP(rE*Z1u3sZ9QLjK3&r{sQ~&NZT)O
zV)_rUwtwfJUy}C!bz|Yzx&E(P%kL8Py|n#31nj4dw3gqZOoNBA@Snx>_lC9n>u1+U
z=U;yc;n!`#-*j)mS~B^kA^j?itkcieCoWu-@fUns_<!Y$HUHuLY84rOG|T_|QbVon
zx3}}jwle+}EdQvVu=ty5ZNJE$>q^VtTTp*;G_#i9=iBPi{;P>t{@Cb0G++D%nf|%o
z65)5-q@PZ^+w_<5S3rIn{cE)9EFHhkGa2O9v9{k&mHSKmf9Q0<?`&>uKc%=DCDZ>Z
z`p*{D{Kq!72$k_4!~Fl7HUBT~r%A(q4f3D1&^r7tPVd`YCjSD|-yAmir`V*H(*A?{
z5Pt0$YyD5uY<XTL|6TAu?seAuFP+UVZU0poE8<UIZ_U3Yq|3`P`S-zo>Q~nJe{}br
z()Ppm5P$k8Yx(uojgYn<8ZiAemjAWU*8B+{%iAwEQGQEn{<D9dD<KR2L#Y2a9M=4W
z>Ym*t<8KA|PaR{;KW*r+3Nrq}=_3BLcdYrhpYFO{#;*du+eZJ!k=?q;_<Mo=S~=_d
z6M6iDbu#|N;6I(Mto7ge%hQj`_!B_B(`Np_*sHIelkwME2>#E;{>AREZz<zfl3D$M
zr9W4B>+o-M&y?05OMw4$T(=JY{ljlb%a1*f|Mjuf{Er`eL6hm<0rJ1o#((w5zgOD+
zn27N|&RYJst4pQ*e-X@n{BqgIAD{eiu1x<*jNi@dub#7(|Mv1v8p!zTLi%^w_^$<V
z*E`AhD?tCFy1`oh|4y&}M8=<l{<n=ae}yj!Nc(@L0Kd}M+W)#r)Tt?xzY+4E<FK{-
zipRok$@ptR`qfHVr~m1l-X0|5kAeK>XlpJ1W2MME8Gi_@-&fmP^EbRWB#(@LY8#RM
z95(h_v!a;Pf4713qvo=f-{8{s#bol^Bn$a28~r<<8z-&*9>DtNyVmkge%`8wOnxhf
zKYfBV|AMcUzANMJjq%^Xn*aKXC8Xn@@4@)F)5iWoYKI+?$-niXu%DjKTK)&?7E0GI
zCTte`YM3?u^PSjE6O#Uu4KV*mx8WbMx%L+_{%?R^&2KG#)4I{p{^tsr5Plo};+HNx
zEt5YU_|*c|@@E%(ZLf@f%?BXghQHjB`psngA<e}4XLnC)`JGp6?j_@|y+z1(_Oj-G
zxnDc!{0X)zg>k99t@#K1eL*_@(qKJ=|1oR+#CL{&FVp`8;8zP<^WPnJH@A#`BFeYn
zAJV>ba~b~)od5T@wfw>9&q@0aU%>f`HvB)jiigPL7y1zFA8sxG&X(KpGX8hYLHha7
znt$exuSw_6O+x)`<Yz^Xmd?Mv^FHVwVJ*M?;I7j2|0eh!mreS6*!}bjS@=)j`qMtv
z@&~_PD^A9Lx;fZyp*4Tu<A<d4$CIiFepf$her3sOss8cT1;2K}n*Yr@<E8Dt4jVxK
zCD#0|C7(={g})qIJI*in0Bim?L!S9d#vfJ)!mnBL$M^kR+J8_9{HI#nn!oPZ*3$NO
z6G%V04gd1Vr54KcUyJkqp0JjGYJ5%U{KFEtLk;^mvaI>LuB$C=za4#7*iYGE&7VCg
zPMUvuLj0*Et@%sFq)6LuOLGbR)gP_-Z(O-iMP|RRw;I7$)Kb>`Z;cO;mcLm$ApI}3
z=HJuwyJa%@4oH8>Kx_VYPtB0lUyech!F|M<f7X?{&&%YO!20(jYySDS>r3ljKS2A@
z{k}E77G7G~|2z)r-+C+S_Q%v$j+d9|{}%Rtw6NwcQ2V-c{AdicU!2cc^Is2VJynwW
z;{~X{yKU^ZsKJlY`g11e@3N^s4}YPmwEyrm7=O|yTibvB+e_b&>Ax4`Ya6Zk$K3rc
zT*mJX7x_nNV%>hN^~Zu6GX8DQesI|EpB#Qrk@0_q?GGFNJL$Eh>E{seyKMM3R6X~m
zO#bcStnczuW`m~I;U93|wIwqCn99O_4jcZMA@S1r3&XJe=CqE#TbC<H*MF262mWu0
zHUHyB=Ss()Y68F8hQCFl2Loi`e-`|YKGj<Oq^HU~knt~t^zXLm|M|7i!>45Y`JE#C
zuFlr-|BQ7=`%lUNzt+W?|I&}G>dNGQ1NqPCiT?)tXiekXOR<rAu)F0pfNight#OU>
z3*(Gqvb-B0!+yy4hps8<Y1I{_fp=rs9_(x}&&IV~j3YqPjOT{+*`EKYadG&>_j>i=
zWBbB-`H~V1Mh{;SKUxx=IG?ym0u2MY@cM~{p<!VqoMeC3@vn+M=!d(&KLw%u&rhhk
zT*lA$=THx`JWBRgrTj<UTO{S55Av0l{L2T*KmF@1#bxsEjtBk8{;ZTgcjrz$Wc(+W
z3VwI2wfx$3H%^f8^Zi9M7Jj<FE0ynTd84b0|FH=|KHZ;{^8d4-(pnim-=9S1^2z?J
zl)wCi0%v6WN0|QnQvdSzuav*_(af7N{uErFO!il${7<z{`9#Klh3Rj|C;OXH{@C+p
z56SrX{wi)3e!4#?<*(fN#RwTc-(N-jlEvX|fB!=HyH!s7S;p_g@RR*XDgWH0zMsqZ
z`Ti^#lTY^-rTp()SaD0n-x1Rf*<Y0MpZ;^%ei?rT=uh_-rTjCFy?$TDuRjIxNA?$`
z{Ohj%+(pKpXPMyF3RtJV_kQg8ri{Nl@H>ZE^Ox8fdrijQAMB@){jsS2Z${RfDC2(z
z{Fj65FGTtK4OJa7{(`W+-etpIeAboUW&FF*f0F%)sQlNWZb<#d|3(P=)BSxY|BxL!
zr2OOR3x2x44&`suqIn~k{wL9XrL5y`<)0I!{^wPYPxrT>@;CoH<rkU!q_PlxvOf&v
zA6IP3IT`;|(4X!PLiwvjpKmMU=ld(^EdRT1S^J-U?J9mM;~xR@TlA{d{Mma>j+5~(
zLi>^ZIjH_o^%|{^@vjDcy1z#N|NJ;<`sMpWxq0}>{uGpd-r&1sWb*m`Q0fu3zJ=`1
zK=})0HJU2p|K~{&|8#!{%Kt=-E@?7;zQ2^l<kS5jDF2dqqh`wZi$VKDA?vd!|G;wl
zqGbGIApO$)At-;!!fUl<{Cs~ao#{{ahoJnAFIn`qjGyms<>vfke+J5bvVQLn8ULs6
zLjF5uo&T$Dh<{wh-zQP<yQ^8J|1MXSpOW!^@RZ=E>r<)zRbH)iRK_34?8h&<K9ur*
zdVTvn8UNo<|8Z=vu77@zy5cPve<dhC==xGB|H9yDM`ZkNsQ=ORrIi2Ox>4<A{7q1P
zl(qd6LJHiG@jqA$_H$YDmu_<BZyEmxtpB`a&Huu@3(v^-8$ta+O}6I$Dyf`H#{bKk
zLVvoxiP|sk*06mt{u!u0S>HtYb8jj4myG`*ls|NR6Xoyt&QsF-SA3?>pRP}${P{AD
z=9kHT3i#F2*7jR<ZDF>IzxWa%pRNz0^7G&QVUmnL8q%Li)(27k0j`x&|Me%Nf4V-0
z@_)GK!!|PcPlNt$vc8D&_d56bd>MZ$u%C0Qwg2nee|>cse}SpOey+yW_W!nUq%{2x
z0sHA>em~W}>*RsY$>g_%@YDI-lz(-xU+c^G>*_*(I=`3l*RS%twEUU``qTNfl>c(G
zHPZHP;n70AO6JE>{=*X&?Ud<X0qjrbr&9jM7mt_L|7Wid^6C6Y%K!c#_c59LW#B*P
z{6xzC-ud%`W&Hgi{^<NT%0K_k*Yffg(yvD5w^9Dkhod*k<gbJ9Yul~U|361lK9lj+
z2m9+}ei)U1F1Eh3{OJh%bbc7+zqd2$9hv+@2)}#0b^aUOp+i*}|6)kL8krwN<)7T}
zdjT2$PN=`o`9YNbjYX&5mGR%J8e$|s7a5<W{O_!(a$d&&`TqpJdcivUzYkL;$oQLl
zDAK=j-8%ly-s<04#y<x1r{kMc|A7ntDktMl+y?odj89Vjh;4fg%lI3AEyAyn@kz>G
z^6BFxWc>AEegGYxr2O-$YHMWtA<KpSbbO5RuNYGMB^m!l@E>%1jPiFJUiCW}{{>e6
z=NBCxqx_R^U1=)g{~YAg@iEGO+c99WjDKobA)k(qQT|`%T~cNI`yv0(@iEH(&HQo|
zWc+-8UiB!e|C8}8%HMK(f>i!_kWa_QDF4MtwHnLh^Zk7_CZCRvQT|Wrx%$iaH(~qV
zGd?2hN%=2#TCqXK{{i|hGCoH6Tb3_0RK`C5{I5#Jw<!Pl*xg%Y{As{X$HyrD@+CbR
z$oQv$|EA+pl)resn7T6lWmx`^@hQsRuK6$0{tLdpvd+^Fv40pOYoxb7oqC(euSdsk
zbWH#7e?@8NdlV!d3it@81UAaa`Jmn-L(>$ck*@|h8uRkw%+aV<Bkw4i&pC|jaL6Iv
z!&ir}GeFa0Vuu;P#>uRFyv&DlI6DT_YbkN6B^=m{hg%NuIjGZz(>Rf~dmrOWT6RRO
z$`6m{|EyP+oyhKg&M=qRxJJK*jl9Rn<|LMyFjk+@%N&`P^ZJO*k%5~?4IFR+I5ROD
ztc)Gb&Wkn1B#rYY<-FvO%ptMttXq$nV~z7NnW>se<+8(2{f@A1rVjKni{qWSoqd>P
zachj6_N&{lKZ;H4krI>CnIF;3n49J73}2s9euq?7l;%>sNtjbSN76F8c@B8x!sYDp
z|2I?pU^#mWuXI_`#DjRH$ES0C&$*uHf9ChvFopS_y7YX|uVDOD-6864qBf)`NYO1F
z$osHpzL1b9IvIcF`@_3=`2`nyG%l12kIKS6k<a7{3!6&i^ZnhmV~TPJ7%4yE?Cfyy
zf=vHUp!`#y|34RzkNlMm{mskIfbg$x0SvG|wHg2XUPngA_^)971NyJc_<Q_3fY;vw
z<adVtN3=ikqaDzGi9JhiW%kR6Zuf%m3eR`t``hcxet01th8y3{39T|VU+&zmI|x7D
z-`*Vr|BEHYo|DDjRbKylK2$kWMo2>Wxlu6Clh5qUWb)^#L_Xi2T+j0U8TqOHe@|Xh
zi^-oCMfmyt<ZcUo#3{7@yIIWs0p)Kr^dDl1$8%zl59!&Gg%`{CudG4cMUHX8I6m?r
zZNIY$@4pC;e|v>LzpIAGhscMtXwM^KWc<H9>(7t*0Qr!vn0k7<jGyl>u6@lhAjd;K
zKt7~DztY4l<NqG>5AfqS4)P(5nJ_;?#vjh)iwoq#I12J1eR5k_K7JlxKfb@Y?yEoS
zlZ|{xA8!2eCmH{(nf~(iyrLb9d`Rb%n8wGy0^~P<_8ZzyGm-ySq0z6(_`ikvH}bno
z`2Tk9=_BL6Mfh<X1NBC_Ch<sl8UJz^e?j@!4}pA0^Y2RkN5&t)3mfAS@#mTxZ9E|#
z(uEU$9U|jj1pW`@JD?tod`Jg8c!{^a1MFV~<U{IF@SI@eLz+=ysUqW_3;k!vuU_jS
z)&Hf%ja$h0n^5^Mj|Al+9rf*(J!JgrA^a#`fpbQX59!_O4_}e-tB`+?-vQ^mARp4M
zZ|(a*#-9M`7x|ra<o;*>f{s%8UvKb@efIr~Kfm}@QSOcC@t3Up;O7IVC-Gm3g8o0$
z`^xxs+<EG^e4(M!GfDk}pAVo(_-XkQ+G^t`to)hbBK-V(0A0e5c0)BDE^oPn>Hi9?
zzwq+`+!B7YC-PTw<vq&kPt$1qiJuRkeuMw=hM(#`VDs%AGX44fsM<wExnfiPjw(|2
z9T`90UsQ7k@>Bhb_Dt!<^q)!f=lhH55`L=xKM8wl%jEO@LDe4u<x~4N9{Dg<mVWsD
zklH0hxkJKF`PZdYSuW%6!se&Duh{edleK=AjGymsre3w@pZ0do$7K9`e={uz{#CE8
zdz$gTM$;eP-%Gz1D4)h(nH7gi%HogjkECA@<frlX`}oAqWbw!M*U@hV@>Bbd>(cLW
zS@`+>BJTeM@>BW4`i(jxlh4=p>wg9E)9@#r3q2$Ye?&5izdM2aRDN6cfQB;pe0{oh
zH;|u(|Ml)|cgx~$Dv!T=ijwh~@B!%mkRr~ummazqf5~j(zxeuM^}fCTs1o74Bh#O+
zuh8;^C?y#Vzo=aCR#A$K-g%12f0d>`zP>>X^I9AEssGjs|L-RA-?K7_{(OCdCgG>{
zZ*k?hET;c#>c9E=23^9Bc0>JZ&8_o_%>I0RgImJy4Us^2x%D%HW$A~nZ&34l|Bd0N
z@)w+Wj>rETYQLDuEc_Pyh;wZJOJx{;Q_9ch$7^`Tvrqgf$}`^XkCgP(nnrJq@r8A3
z)l~gH8rH9_MncC}O*JkxH95692S`g#6?5!;y5x9=oY5uGCnh1ieQNT^lxFH+wFXX_
zPaYJP+HPc0EboM9DFsMO@%Hp2vTl=9pFWg9tmmeNPY<0Bf~*_FzhlnZPsf7Edq#*3
zK_K+&k3B1iaq02NgE)di8j9p$YK?)($-|qe$-@Wvgos(=<smP7LpX#(w30%k#m1zu
z6$4D>$fWdy#JF0<i)JeC=}Jyzc4R+sThwXDG1_=BWC20FhsTUf9+}=LZmcIH;tkrP
ztrx~8Qscb}C&tIcut22wyh&r7YR%M`*w}QQZ0gnJ>d<S(%Ave{H9v#o@1oGY!1>8e
za*id%F?(L!rZ8{+%y$y}%7E{ge_2e_Kh1E=-fuhmBJUpv(Es=d!GZJB93>tN|G5{c
z^Y%l4{-+j#Mo)=$r=#Sf;U8?gy`xNjS6zXR?K+40X!vWBU;Ryn-=Vp{$99{OoKp#*
zvn6?VxXy-#h6dQb`V7J98DFXrr2Y*G2}Yp#=iYdi>EA89PZ#6;&L;(}1M|N;<2TTL
z(qHlVbeZxqD~Pv9JKjCGis45@0lq$^oAHNJP_C=EJ_62xy@efpGH~{85P5$zxn%Cp
zkdXQAu0n6@|LYC*SD@XD^Qb95fm04WF5V!Wvh++juD{Y#;5(c`|4ukR4(4Y$$_V?%
zQ9$xMfK&j^cHVT1$FH-Ozy8-D{nPlh!&j7weiFye-BFRJPrbW8{*le_H=LhP5z-H>
zVECc22l{)rlS8@vvx)srv}W~>Puc&8{R8+ZzUu#?R>>xOe(8J%q#umm28rT-0r`vS
z=MSe0BKEJ-x#kIOf1TJr&mzG{?LU~{(Z`_#|MacG(>Q)6!7pcmKZF7XKKo_Bqie!)
z8S%@uY2z2#r?}4QZ_NHU|It|*{R7s-jK51id<EPrzHV-4?%eY=NdJi6lKCHXx8j)}
z;B$_zLkbEn=Mnoj*G{j^?UPOH)4;?&5bdTSFx%rFo*%of9>-51_`jk5!SQ+Up9PT7
zgz7~9w=bOQ!SNlv{q5hyME?{MTzvf*!QYdRI>*qT;K!NZk3=97T9dr5{FmO5$8UHC
zfBnC2&FarAejTuW!U^?<f`p$wGB&^K%AZZsx&A8AKi3@bH=4if@J|!_D50x1bNmc~
zKheZKtXXP#-6Qz#jlMmQ<7X25#U}WZEz#MJ=%0WV?9^f<FJI7qW=|63OKGqVj=SJG
zEN2e!^%`~f{K5eII)Lw4p9l3%JAC^4V|RLW<NjZd_D?^@pniqpF3zID|4{yb;N<mx
z^PqdNA%_1U{;kOh@juV}YAAng@v-3ubYxmJK7TPH8p=m~vao*~l<zoy*jYA6{e7J$
zQ*lW4mPnp{lpg-}xegfx=Vv+L9CSPV>F;?@b?GFt{~&aPr2M7)Ohx|-(<i+BqV1J$
zc=>|q6aBv$FaAKwU#CA>z*89DBW-_k@{8R5;gEh*uz&O@!HVM+E?5URB>>U?1^qpL
zlS?PLeOx4crkdD?^82H+^-%C)C(zJ(ueRg*tKdIRPZa6L$?$bvKEnPS*uE%40m(D{
z{j*79rgHsLi2mPV{vz>9`3bzzfxIYR;=xItKAptBbpZcB{j(i@G~}xeKs#OQ@&va}
z6xc_B`tyC3{@oJ$K(mHu>3w{H<gZ0H8yfj5isY|?F#b#P7Zm$mK=Q3Vd48$yp*h_D
zxJdoy7qCCBkHdAMj}d<Qm<2Bm0nOL1?R0J*2iWHhq@Q^#{ivS>rXM?etmUEHWm7X2
z^Z3mo@%yq#{MzBKKwzL9uKX~P+b4zi=TU&~hWeEQ>Q{F78N~k|{5jV;!~O(+Bb2`s
zAH)(Zy^q65`|`z6As-s)pR_Lyn3V4eyin3_Zg`9I?8GyCeoO@R&lH04eJ&`9^ZOkY
zM9dYIqIzG_-<N!}yc+ip3bD^0CjNo)dy&Prp5(=*=^dJL`$QA_yls+x?C@VC_ygwe
zn#J)m3H~Q0_|QBjDBj0y-mk{DCu%I%!qbnN*yn4&r|HKI-wF6g>kSw(gU2t{fA&NE
z?FEjE*57PfU&Oy{FB{9}cLdZQHm??nc-9w{d)|0qhp!4Y&u7fDlfN_4Kk=U{pnRnM
z(+=O^K^9-S<lcG7$iJlh^&a3mVSYKbAMNnz?;lNU(4MD%H|hTjsRxRX@{#frbrp@g
zh#yz447X1fNuO6u(x)B1i{N+HUdrP3QAq!cGFSYOrcXQk!leGTV9&ubTz{3+A1;{q
zw~a(U`lu58$<K`$$nm2I{+}lJnG}#b-?_sEj@X4Xbp5)8Ed6&2hx~g8`X_s`f=FZK
zBku3wg!*BHJ){9g@CQM?1YgfdJFuJEKZDr+vBlya)c#wM(S$CA{EPHfj~#q{TSPRJ
z@9E(GhcW-4GyOg1|3Uvugb6ObK8jy}#?9M0kL&Ls`j;?CKX&-T3I2qrlu0~(H4?wI
z0AD5jCq)Q9eJlwtFdFXVUwWO}2g^rnU+iT5!OiT0^(t2p;opdRr0_~SywQLjxw+#j
zU;LfmpW7vhKhW_JJABj|;FXQrxAbKA^Xd3w^RnU}IPcF<JUIO^e<O{a-;eiyMufxs
z&REbt7TQO+zk&0K;P6#Y9PxLS5B<>BK8Rlh(m$@h$MF|C`$PeLB+zj^r!VFB8l?YJ
z(EsQ0Ebs1NH>^)}LiuHfk9uP~?B6+%uRn^&CjP%L^Zy#dr|mC0e6$bZ-+#6qU!NP1
z0{Ub6jEZOZm*M03FjuAE?2r0`d6Y>Bm&Y;u`A&j=*U8d9!}qKogZ=?K{ZVhkkGRq3
z0LQ24vka7vE?nOQ<5PC{^!GXqzYOE$uTJbA{uF3H%3sQldLpIzzZo-cuT1}gP=BEP
z4|e#Zd7*s0BtFUTZ=`-Q1?q3qzuDmz!hit%@q=owasN!)?{5G;Enn>L(LPAWuUfyE
z*{2ST-@;Q^-g2?@5B67J{LT(vC;HEBGMo2L&Ucdf^EY6BntqBAe)>p%51+JQ22VdK
zDZe63>Ti^v;<IU2e%EWQ=Ns({Cn>+$nv`F5_>=t573K5pc@OjSlR@xbGQk(M8v^3<
z_=L}Q{`JuH1-rO?GKqZ}nAnH%6F6l$c~N53XK!--vxxp_Ci>gq`%D=!Bt7<d(jcDx
zRnoqg4fr(u+u>us8wTU&SEn83=`(})&(f^_M{}|C591du7{4fij3$&#`}4c*9oc)2
z+b5gYXSIoa?C{x?IKL~S%amjuzu6>ye}w#{5dTT}{lM4**01pW+N{|VIer$wZ*7u(
zC_myLbv+}#Ed_d^?r6S#K0*ikE7L^(=TbKJN_R0I1nbY8FuwdZ0-4Y&`TT!~Z#tt1
zkKZVwzaw7!kNW=y{_KHI=s4k*s7f*4a{Oq5-(o2%e_bs7;Ql4h|F76NP}N`LgFe6A
z=lGc<ed;Ge6!mkKMqz!u3&-E>@QMCI3lvP3>0cfCKdFDV)t|_JYh~s`o_^@~MYc)$
zw8IYr{gHOByMwP^j?lpVF6jRsHA>h~%kE-)al!nM5Tc*IwH0LvdGXPR<41Y^jUwgO
zPLupwity7%9pocjc{r1=zlczwe|S2y?|QTJ!!J61R9d_?{mcaX4M6X2y2aN=M7SXR
z3<vywnEkcS1M9ai-P;tO_ODKQrS~`7J}zRP7Eu4E^`DZUmzjVK<cBd?4c2k|OoD&H
z#QtRoKYhgdGtzp~9z=8dVE+%cUoJCzo!JNX|8*7;^>gdq0WJ-Zh2(b*jvdDE=R1i1
ze{u?F2K#F|BZ9;CM`!c<%V&+`_^3a&FWP}2X#3Gle-+e1TJwdsdH-QV7NnnKXn)OO
z`OD4hL)(vb_|bsh80fH9nshVl5BO66KbfU}buW_v`$xH8eAW&h^)3nc(S3iu%JH)S
zKMwG_vhqt~__Tdzhfmz6a<p-?*1Uc~>(7l@{OSzf1><*4Xy4i4lkPD^J>ILMk-td$
z=p`tB9nk*5@n1W9ntoor)9^i6`bhwM>i=_!zv!KhPRj5LwGa_R%U?Tu+CD1XV97{s
zAKE_JXwv?&!^d<3$w!%ZJHD|IzodNMXVU(%!*`Ji-baatM|1oP(tex_^9MB8Kg0#?
z>!=XaOin*0uTzRXTbkP^oA}QMCjPSm;ir%3ME)oFW_-={&m{HpV)Fzit)JWBd&+;1
zv+av&y#5n`^@ngMzs`aE>G+6B6{gRqKhPVuy72Xr0r*d${y%gv5O5!2JA5aRx3uT(
z{@gw~@&BV({&Mg2?vIN7ly>+EB(OW6|EeW-`ToNZN=Kn*2H2-G%U|lgK>uckPk&$W
z!ov-`{^lg{I}Q8;ZC_A+g<fcXc;86tbcOo|j9)Cj8bke)`Ug9F7m@c*pMNUw^iRh}
zT0{KO`iUJrZJ&nDEc6W5KOF3j`nTupM{a-8eym9JqmLB7=<<$VaD0{6zqg5f?C=i~
zfv56(F^1bGocOmFOzdNaKZnF`%#==b4F5^=Pr>{}#`o>;2ap1I^os6Xx&BU~e=n2z
zXB^Rwm_vD+{C@7+I!Czv4l;k^RTKT6q=4iZ>*x6T%f*EUa{Ls6|CR}UWn?s=SMvD(
zQ2Y5lUmE%o{~rhG$4SOd$C2>+qbW)x`Mt`%XBzSJ8BOB1EcV|5z61K7t587l{5^S|
z*!SK99=|RUzuQgHryV{m-^<>7h3}si(7zFh`oq2n3XG5BBKpxs#7CNyU9%Fy_l!>s
zf%<0#_)pwl*$L}k?C>=Zi1cFfrOP<J3jSvs;Llvj>Yw}AJyxuLah8AH;IzY!0{lpz
z&z?)*_KAoB{4~H{$;&T>PwUTi__Y3ZtWZcJBmI-|@jb8)O`mr7Xm?OwiL6$6fGmDL
z0(@G(wZo^s@7>k?0xusmlK$&s`XT*qlppm(O2<D>PFV3GPybmY|K5c94=um!@TvcZ
z>|HI9+g~U8=XphFMC)&M_@w!(6fL8x+&<yNzokD5Atv^r{Ad@Xm@e`8hdkx8IKG?c
zzaQe4)=wxu;vmh&FF@b^?RIBwe>d?zM@{^X9lo3R&#<Ajb#DI*VxLPU{@)IttL>Wy
ze((EK6`uYTlD`hEVfDlP?1ufRU8RM8;QT~I{>tz2ZR7m9sFq<Ljm&Q;!_tq&@ExRm
z%7N_geSg2!_|SeMe-Zn1nZkS<!>93Uhac(-&i?GqpK^)EZ#YRm_e|m!vo)6^yJ-Eb
z=d9jaI6kevMZ7M!Y5uJ#1NC{gf@HuuCA%B*Z(YRx(;$CQ`yVIa_klLP*7uEE_U50a
zuZI}*2hu)`1pTRhs7(RMvxDH@NZN3i<3|(xmL~XEJ`q^YqYB@Uwu-vP{eOfL;urg`
z2D0?SFWP?0Enb^`I>P*adcJ*1O`g9}h<`|4A^wN^-@8hQ{AG&|@D8A(7Absx;|Len
zXD*b#iBP|#{lmfH1H3ZR(LIdokNDVr>GhWQhiCt7s6PaY-xvf$WUYOU>+gX2!!*$U
zD_(!tA6S2|!>7MbZ(Xu1_YW@8KjvT=RXxCzAmt0?M>`-@@e9!5&7UaG?SttD?GtIz
ze`Sa7>zlcVY754s8Ra`kKXst|rT)PVpXQHQ+n3DZ`O8WCXM2<K-3}l7AJ9y1RIl(c
zw|^$VZwU6G_NV-agLEhH4-Gfg`ibkWk@@GnP5eVs1Tvvmej;_=O#OhTPpm(TgY?-S
z?L+#1@|fUyUgIBtcKvR~S&p9x<*x(Ar<Otg9-hzTfc}4E_u!E)W8gU+XsJ1e`2NG5
z_Qji^{|xXC*l(r4{5Ly%I)9<ghNNlS{whhIouMG4>lf_s(e4<mnv(`y<oOHjkNK-F
z7PO@OWrrUPz#V|5jSJ!9`w`LLe^!8fzGwbNI}qr9?C|ODUoE-uDo_79N&kaTf8u{A
zKiUCldHe!&>*ll=?jKS}{UpuAKiJ{3VL!iXZ=pX@dHmA#t+O!wll~bye7gR1)b#vE
zxqY(8`tC%?zj%JB3)Xko;qQb$WCFdpeELQnzZ%4^2Kj6CQdYJfU~!D+2f+Re=$8D9
z;PZg^_-e!C{&RTxOaXjMpM6+Ih@0W#`2fx!@vjj7_Sf({M*h-?f17UN-(cDVsuw_M
z|4p6;Kb7L?$3@c5a=@qMOUnR6{})%t1dNS^XTNO3FR8ypqk|&ppYr>ovnR9<(4Q+u
zea+(+%NHH`w^u>>r1dvP0HFU1`g^{Au2<#y)B4Y^%s;3H886YF^82H+C)6K)`2JKg
zzP=-%d|ZI_bHK;_J#6tw{r~Qur1L!gx=8xjVv>IB@UtI+;y}j#7BY<6M<Mu{N&HfN
ze>DCS=J#r3nMF6aecZ%<x<`n=If#AiT8}033chfl`^RW~dHQie{&j+XILz#$vG~RF
zX<RUWxRsxFfe-Zeq1(>>kK4yh(*GTk{s+oWC4`amleAfTpW7#k*k`p#`mw{O{qxg)
zt@*i8|0MpwZQ>tVQ-#TMNs>PM9y!&6r%yLYKYy8|Pg{JjPf4H^i+w7_@4)_tz&~t%
zMJR^n*E(VT515T;?R{Jj;{DFQ^=fcX%-<vSS&8EdYq}Z?j?$uiXNMnMPT+?F&3B`G
zA)Y=nAbqN^zfD<IzUVA{;`uEOnBQfG-vQFSkfJDMyL4*B(~nNduZ6t)V)&l(RbYOC
z9X^;9;gz0sa~tW$P5PJGKtW6UAMEfkUQs~$l>DD?{S}hGx&uD#zqP}szu&w1_H#V{
zMv?THr#@&v{6FPKJ&{uVLkHLBBGW$;fT(}7!*7FvfX*GecLLWxn&@AI>92ml{zUYr
z`~*&+?Z>J^bA811r|rjRlles?`B8X9gExJFPHB3162p(kg!K6q)Xyt0{WYdP9bd4+
zr}|&rJAjXm2k5V1`XuFx9e!mJq6c5?D#ZP#PW;0W$SAaaWrvUL78G-0*J-2u>m>2}
z1K`vCH#__&@SBL=?z@<&+&(ViANH_>sB`<1@#}WTXhP}uY3Flwjqy7NDZdJ52mopy
zJA5sdzu;yuwT$uE6w?1$1@NhTsD1s>6ovM$HaNMZj8VTL_{~l5#Vibp>U~auuULJ$
z_*idaeP0&XUx)Nxlcj&RB>m^}LP@{XAaB#ojG4pJXB4sjUyy#N{q69368wr?e-iz-
z#6FL`D*j0AZ-=jv_^nxddpo24N$`^(|5E=(`H8yh(Z7JNT<FI0JpG50{FSv@aC*+)
zgZ1@_8i?ro=55~x_Wef4nHRYIGsyVe1oS^-e55<!r;m~T)n~<>@sqJXo15g{?W}&H
z9%5+-&fjx^{(UGQdDi^RqYQnfRJfr(@o&elf2p&m|2U!jj((lMdLA9{4QcZ=ReAXy
z(7!!;iufaK-;v-0nwKChzS;hE#(u-Uk@~{~?4Ke1OLq7!1O{4jeBXQ=KbzS9AoCBJ
z#Qt{pPQb-}zFs}%Jj3myJSRNM8t@P8n19e2J}n>Z@agZ*+>P4C^B0}JIuq?f>JOBk
zm?NP6(5_j5B|QDm`a=`&57htI;cG--x!GgNa{o-%*LOAXKX&-FNcng?|F^ri{whg7
z7r_5h{reOB=%a(+cl%+iF@K(pfBj*CPs2~~JCGN(XI|^T(<iMz3^J*|<tO~~5!6y<
z!Vlj}7;dy*!XbTr4e2wHmtThh)2AIi{k>yU*$|#Sb>jaQnWRt3PxWs|UL4xJX)TZ6
za1y_9Ch5}-za-#eI#ajb`HAf>UBXGmr?Qy;SIe@*0Qn2&)rJ%O=p*7HUG>|T{w#h2
z&hPjR#vidm3imHn;2au?i_eIQw1_jUpA>&4a)<<t>kM$eHvE-R#6`O7tD~D__y^V_
zr@(g~hxrLP)W2h+foW2F7~e$u;Q1;!)qi;I>eBOnetK8v9|H9aefOj3-{;M3zsmHF
zSm}?io)_hCPUCmLvTJ<(OF;S=2@9c6fA^k8)BnlX-F$sV0RCyHD4{!4uZZ#u+rt?9
zlw!I;TB7wuU50-b@KJx<Kf!q!>_ma#8F7)m{8zuGGW@Uwg296i^Ye3R|Hry+;{7uL
z_USUwAK!xu=dqcn@9AAd{by9o<n8wW{I1Id0@`2CBkY3XdBNh3Pt`JI_&Zbm^?y|V
z@J~bu-hUFH{|}IVJ@$ul;`BW^i{JHUE^n3LA6_fhKd0&E!>Z3D$nd9u{i*(V&Q!4W
zkErqm-~TPZK3{_UF@DkhNQ1>cP^6vIJ~1SHdeTh})90jl+pfv<FT2j){<zM}LrnsJ
z=^p9E1*><;@C&aI0B9e?&8h$CHUDL4{MID?*%Plhv`>w{LYy-FXHNCE54HnxT7J!L
zy(nIWpKq24eh$muF84S5BExS;{3q&<)FgTX{9BLX>(<Ng>%Zq8zfSDu18Rn^!4KGu
zeR!$HG=}e)U-2>2Z|naq8p?RSy9>sDJ?Y6rfCJtm?OOTryT151zpDpUv|oxA9FK|e
z7t=Ms1Q5hUitTHxe<J?BZC@k)tP+*^`csd65PvJoZ*j*8{hg1ff4-3VM*jfSe-88y
zXmQ~0VgIh2+Gq5}1HAtyK>sGJ{lYIbzp%Rt_BYNcexavtZIR(01N&$Npk4*@f9&vG
zhE|G_33T=AHB0&8ABXfg6w(jw`|Nr|{9B);wv^#d0el7Q?tuA4Io1E!4Q1!a@K><)
z#l{8uZa5zie?zGzvt{^8(LOLQQ-S@ZbE^NZr{6I4cf$0E_MhECsE_R~N09hbe%jgw
zrFi=n@p1mi?@xk#pgh6-u_-_N%R?OS4e8mBS6uM559Z$w!9LnIkp6?zA8|p9vSit*
zJPbcT{})aAAMEs35g2HLp`U!m`+ul?QlNhT>m|6p(hlE2@Uj1p;y-Htp%d_teo?Du
zwy*th|IZIG{cjQW$Nkyt^haEz``6ByDZ}3j_*gG-!TO_|;=fdS{C6_^pP_$PiGp?o
zoWEm-?|}Yiq<Oj~4)(<_3*-AAFBOJ#y1@TKKDNVG1)Jxy&71*yWa;Ng=>Ji0{XX=c
z+u=I_nfBje`uVs0x2i{T@nzl2S}vLXJ)rz@!uSI2k7}pCgW!Mv)d0SKU_k!T0H2P(
z2aAt#syKcz_TNMMp#ND7<vZ5faQ`tcemm)jTkL$T8hGwkqBvkHEn!@o=k&8?YEoR>
zpmA}j$tpi)j32qxNgU|rVT+BANlItOocSDFAJ5;hqu!FzVg|?6icV(7b;YIDG!WPc
zZyX376s7aOLh~FaSKR>TaI(YV(o*W+xpVADv6Q;L5B0ncfhVT<!13eIRFA1frpJwG
zrm{2226^5Mfdk{3sp&BZ!vkJ(({=G`7nc+>aCqDxL+xg23d8AF&p2kSu`s#kr`RFF
z^z7ub;R!>M65|Yg8`c-6pLyd~B*clgM_pq5rvc}~&SmX?$44PbG@B>JT}C*h+YW4l
zQWx7KA@fRJ#dSU}y!8@_zwPerjtqY)9sk(E+E@C=3_0E(KbCdyI^GvfDtvN5FED&V
zJy6b++#?z?{DAW%7mjBA<DUlNk7g4L)Rh81MWw4Hy|d>K|E*(=Tr7VEwEwf<>_Qw)
z)jCES8ag%zs#THqlOQhAkS$MKk>S_$^xp|x-LZg&<3;tLUP~;5xJb8!w^|^>|G?9J
z6Zm+JgU273w4)IhsrL4qB{KYTnL@EpBlWPj_*3*h<`jSW^Yx|urw??29|99XJ@r7e
zi%B~g^+q~+?Ni)82E^~p)&BZ>@Ub5<Nc+?;yII=5FlM{I{_0AohhYC{koarLm*MN5
z1N5%|?SHgC_Ddl(>&HO5AboGy6EDc{pZE0tiWa%^8l*=Y?+w!aOPs}DlHsRN{9hjp
z|FI1TyJYw$w~+XSe2eup%*Wzi-cPg(($6Q(9V^4X2IDK3KC#~g&tvrTH+!LtZ-|Su
zQja}~4FB#1!AS8v{j)))pC9jcJu1V$^MM@S(?1&|e&XUom1X!3HVb_8pIDF5e<yxI
z{LS-;c0ro4W72LJei-yGd(uDpP3)fvGJRIAdXv}B0`k`>;y=-^Ij9_u=Hd(LjWjjw
z3EsaGfInlC_&@58_(;w2FP4u;f9a!_WcbDC{?t(kZ2rVIUge^p9prr@|Au<wuXzq%
zdQDcoA7$mQ@_C4HzB?~rP@k1-e<ogkaIMI%xIdz3-trgmS1<VPJi`w-zuCq0x4?I<
z%&#c(?eRCn9VpH41I{<zG>z3m_JtVdv-|4*JSJFFkWead&L4Hg$nfV*V)YQV$q+yP
z{omkExcUb_Up+wo3mpIazsFBsw5y*Cztm)gf8pQbFR!$;f((BoD}VKi{~kYk+TD9H
z{O1-jeD}Y{U-;w5Z)Er-S^uMJ|G&o{|Ja~qGW<pCpgi?J&hbfdRmyyDo1ag!EQ8FS
zc&>r?=bbXbAE)eq@|OaTXPW+7ZY^A#=^s%4ulx*S{DQSFa{H%$^bcC`FeUoSeC$s>
zy=|bh*!Z|X=?Sb|#hXs`>aw;Oe=|BhE{UJ;+^{}-F_xW1J$$(TpTs-w-(&|tLpV@>
zq*F&Ud_E*BtRZc`@b(eE)c1s4tlCMut%MiiB8_$D+abd*!_q&$)W5;*@&0zgc9`q?
z0t&zJLR_Sghwj{v;dg=hp}P{aD@^d+F$EQV<Au0L4@I6XC&M4fTCe<aK52~~b)}%f
zZ@dr}=>@g)UKxJ-m4ZY4)EYnQd;x{ucp)y*GQ%&-l;L;P1&3~Df2|-}qiC*w#hS%?
z%J7?D{8qNsUt_lCH(sbW(vNlwep80O62>pp`||XI?d*(|1r>hdg}6u?jc6~m&pMdD
z;xf@6@x#{?RQQb-;v${xP=1o>&-(}X<%IlY)lVS)DLxSwY4gDclVtdbynezi^?|j0
zoUa#D_>C9hB7I7G?2HWG3HZ7VzM?a1e#3>hNPlZLp_dGQCCqQotIE?)%}T8Nsm1oN
z-cZoE&G4t>n|V-%{{^O>f2{43`DQ_d-*}<kNXykJ@v{uS9E^WEs>$`o^y8RSP~kUT
zh>P@z&<StI@Ol3azuYG2$G0Cy{8M})F4AIuWW6fGKQL4LUkCfRip%|Tik3&=H(rQ~
zwD76y_A-1I%rDg9g?(IA#Y`5gM}Mp$qCZ7kq}^Y>{<I8#$cKW@eM7`A#mDkR>C5`a
z_zf50B5i#C4W|sh?<T>Z-L%HfWZ3-13vrQtGi=4LGW-ly|L2#wLf9vsefO<LqyAZ)
z!W4evh2M~#eQ(xBGJGBJ6Rh#W8-ywR#tXk8Ep+Ll2QvI!kUpJ}*7(^Bo8NfhH>BfB
zG~FY^?_F7NXv5_AnMH(uaK0F(@Eb4uhP2-KlRwJv_qGrmYIT8smb7Eg{?X}$6n^7{
zxJb7)`Nl27e-Z6-N~9l(AIbZnnSXO`D`ebe_)`iG+9<;}+NX?3gLdx~qCeI{c{`Qg
zc%j}N`dP={Wca*&$}g7<K5wTQZB_C2fcZDGautq~;g6gp7+hd~sz2IauaaNkH(nmS
z;l;sR8xv*tWmx-{Us??jzZCy`3GqAqr1(w7ot5UVJZ}h2?Q=PPv5FK~JX8F=rH)UR
z=^s9n6{|a$e^3NIZD$XQ3=Y4;Vl9shpZ5>&OWi8cC&f4GC!qQddFPp>GW_02O#fZX
z{?(!lITU{rE8iV;xX1IqD1Q1km4?gk`?2;Tzg(^5_NiK3{7ye9{@rq|*U0dHoh>-E
zLvs8mR$j_3iXT?AOamD{Z(s8Z*N;*A1Z)3EA$Kat@Ok^1U#{){E`D3}ZWb!T-^Kb*
z_@%=7u`o7YLsou8waBaR8!u{~Cf&C+mEre+_PgFu*uMj5XQwhiXI-{NePABrHp9Pl
zymm<$ep(yB;W{JiL-Fr0c@9=*p%>MEZ~sEKW%%)lf>S*!@WY$?+b3B3ZcnZVm*E@z
z4@`s;`ZcWjA$VT|Uib}ZyS^=+li}wbCpcV3h5ac$`seH!`4oQRg}6xDe5_{4`iBd>
zCpbbB(IJWB3zX7v2E;{L<wP9cKP905`Sa=`?pQP$ms$TjjvK<?0?My)o%Zqha{>63
zHwq5Kr~T&i*$jVV*#7SsegmA}fb+N7zbiO!eWL>NJhf>eKJ>o?4PzQ-7&%Y;AMJv)
zdc<75|4{&b62W)C{1|n*z;)k2{E|wz&!ISoi!_&ea8Vil%(X%voZpH4{cgZl?;(DO
z($_-&ugjm{<0Aq34_o7pkK=;+41uftjri8~>C;AiONRgQEP;>nJ8}F}dqv>t_YvRP
zKDG9i=`O?Xwo2gR{4*REQC}6f?gxVAX7QV1VV_NFD;AgGUjzH&c%TCFB;A0oJ{0)j
zY&Y0wTx7sh!gxjc_3t$!Wcb^b3H?3zFrKE*6u6oq%KdPr`%>Zh3<ktSx~FRH@-qDT
z@A%{6JVR}kz}G_%pS6!H@PA*im(M>7NI$2b{|EKQ^rOxe`0mi)@c(YUnx9V=fIk8J
z1I};5d1!9HS92qNq>^Qkzy4}`jn7XFz<*_fun*2Z!+Fm7YheF80^ctE6boy0S%$yu
zZLmMgZ^L=W+8nTdUeur4-x~moSEN6GcZl!r8KA$C=8x~O|6H(tzTogb-K9zW!#V7~
z1^pEm*LMTHnm;)FR|bwKEYp7?^xtB6h3iA~d0_tnh#$`Vr>7!;c0u~W>R+nM@Xtg4
z72+e+UI+UZ3=Ur}P;H_N{}#c=d3tIF*uN0sTgUH)TSrdF@MnX6#&Q?unY#gBEiCYJ
zGyjuq;ot7;uK1S>|6PKQ^UU@6VE@O1!_S-kZdn<ABKT+Y%jl=I1z`Vhfgh&i_Vdp^
zK`|0|uQs9O*!WSv`6ZWF`J!K9bxas<cf!0JRb&feT$O(fhi4?1Zt!{f#wq*r@%8Ow
z{Odl;U+&*o{gBM>3<XBs-ryI-SB<yckD-abuFA*fmy`V+>ZUXO@38;je1RbK_x7X+
z8DGvHU5D#W&u3c7>i>EHHqH+7p>Te-s4cQ{CSZQJSO4BM`t|qBh5Ro^+Io8j@Y;Fj
zPNuLaqkhvp+1MSQNa~psY0O^qKC*$m9_caZVxp;-&Dd88JUGc`it6BzNwK41hO@bl
zsY6o8{8B@pS_4KBQ({pTA03oKvstUEXBz9vd=4waNM(#9AjyLVBba}vIP?oO`qgdF
z@c)ge`%5jtRFqhIP+Gd=tuc_wW~B0v`UjQk9$3F=_{RAwEPn>n?+>tl>n9XwoiN6D
zkzOMOQG%T>`E1EcCs_Uo7@w}k^1qtJamDyFp7R0lUIKD4on!t-dhu?JE;9Y+u>9dZ
z&nreE$Df7#j{3VJq74~ZTS2j%g}6xP-pzeehR^#qbr&zzMA63a`L~j&Im}POeokc-
z%lYi4;kfqFTYoeBfcdX^r!o9*#rzu{0_5ZSN4a7CYxbvM%F-uLAnQxn&HA$85%pj8
za-q&L{2OfiSpQDUKk&u(v}?c4tz`F9l(ua}KR`5lcC%-Cy*K~4VzT%h)Q0JEU15G)
z#IFMV43yu@599yh+T9;1!!O9{XYQL`d@V?PYM+QzZT^(mXCmwW(qaCM%s$R<ax2bW
zUi-LDvT~3;(`)VcGh1c)^Zpmd!4RcGZb<*oPeS>5zYM=nZ}H^)tTDCw0~tQ=f6*C!
zcyod8G{NWnGW<e(OgG}KqMZ4*Q8u$r!2FLnto&0ig(xLiKJ&HD5Z15E`;F9A`IPX;
ze2S+Zo;|DVnWYM;k7G`sIdV2J-s8rZ=VczBy-Z0@ZKg8s?{Q~C*iXX}*bCqoIC8Ms
z&zMWk{>t54j8sHw94mdGv`9-B;<w~sv=^QI6cd}Ckj%A79zIC+1D6pimBE%*q{a;%
z9v7QlD{Xi}Y+MJnU?7gE?_V^EatQvHD$1esL|VQHhm8>d6ypc!3k64J$@;IF@(x0F
zsV7B!jn8lKjVJU=>UVh+e)r|$NgsqL+UdN;Ew}?eQ7+PL^G}YD$>;uyUv3!x;o}d!
z@_qdn|DUfP<IiRn%0;^G+D~80<o8)E5ZtRo__?3)m5+W->&{XnyFGr6eUE0h*@beE
zwt4YricCKDul#bH_Vz!^<Y#j~%WjW+_MQ7$vkT=SeRXn^hBEnl{vf~HKI0p{@@fD2
zQLI=BHq%d(i!|5OlAp@tbN|UN^vh=UH~c8`r5JwhNBM1bp<JZ9Dor{nlh5Zj^2@PJ
zZhvX`S%13Sg>sRWc>DHAnf$VBej>kIE#&EMX)*D;UOSh<@5aT&v)w1kMVe<_?zuAg
zPviK+I=TD~75pVRK_CCOflnwG>9<R3jgrZqkMe!Sr+m|2nd<)7sg?Yn&7M#$(%Huy
z((##7nEsxXhd-r=kdXCMZiV0d*$|Cvyo2h2a*_U4@@gAd`1$--e(5<$e}cvG6Xhb!
z+;_OVO#V8sztTn?{wm%fDMQ|Ps2@i~=2rM^cA;FPJAQb+n@m2RpKDw`<8Qw4FU@~u
zLVez&T%^sujr>X`{~Z|rbGDO*e`6yN-&tRWDEy8ZCZ1E+cYd2)C>Lqyw=egX$$x^+
zkL8!o_?>U~ar`So%cJo7L##Kk@jR8?W*5pu+OXQaW-|HltbWEX^?eb3UXPT?7ynW`
z^6}Y>qFkht7T1^BKQmq+IGz*oc|Frt{w=1Dv$ogHQIH=s#>Q{63*{nRUS`Sfvhefz
zDZjAZYgJF>byeSbs*63FT__jn=r0cElF9!Q@}C>RPvuu)QS9&u|2yVU?xzaM_0Xcf
zY?H}%WBTtT?4NV_ao!59Y$<F~+?aGeX`9dDPE-?PQu-MW{b^rHVnWg=<7fXL`Wyca
ztm0xj1Zj~Qhbyx7M=_<{3x*wHVgHUY%UL=(t|(WY6zv=BXHm{$ib8tjNnt*0m#<;@
z(y<tS^)s#UfO3)cs!(*2O#ZuU{<!WV-yNj<?4gWrY4Gw}7u(fWCjUk%tJ^X8*ngs3
zmWLnvZ7}?cav1(jJKO&%lRt|!fz%UT`R*X)yK@-+BLl(<%jAE}>PuRdH~uu}Z$Zl<
z#eZP<vEGmGDaCk4TH*D-c>h2^`kT$#*Xmb_k{%+`pW8$}?pulS2eSSeZ5h?hs|CtM
z`uXMLvoiTpS^R50^0h1S_^0wWRc3Wkwtma(Lb*tjc4WOOlkbja>CZ>LJ4pHHXU*h$
z{2Kfr`>lS``4jUuh%n?fN)?u;eiHGZ?-O>waSI%G51=LrQ28rdH{W67BLV%R7eRg=
zMd)ECAICX7dYH&ZyCd!1_@nDG`~O&<h4~wn1{CmruznX~7O4huF#Tb>-$cBp9|+}F
ziG0^BlYf)RS5JB6yMvV9gOzi<pTX=xxk&e3d}f<W{%)54G#~jItS?4nq#6jq@K>wC
z{QoBWHBbwbi?rg_b|+-=@3Zi`edN1?l#l%^fs(}=l#BF4#n+_%_wQ$!{ZD)Cul**^
z{~8Fw@b@jx(oGJ+|IW#+V`bq_VD%gAwzvP)Z6Y80cTv7w{&!#o1ij~Wa(=<`-!giB
zXw6OH57@sPeO(^@J4HnPaE%ea11uwhz4aTPVJ*r2DDmDdz(lqINDAApBPC{t&qx>V
z+>0F^la_|{q2X+_D$dyHBcOtV!9!X+qWC~&-vIwopN%i5$9SDNm!Yx?5=3JN0M5rj
ze}eM|Jnv1`M`OA|`OUYSeu~Kt7=I|xhROev<&$_Z284Vi%Xuxxzs-#Bf5!NA)hML6
ze=OktqvWZOej-xVe{HO9_>7HzRu%E)fOQBI!fM?^MlU+rO1Tx~(v{JhWb*m?2hB&m
zD~IxpbrBNzXh)<MzpU?)<*yHze{=izcSp9c18+m|3#n#2vA6<?{@u*aqFkiw4wn8)
zCjUIEU+6ym&6Pv>W_}LkB7Jr9F{yvg-+<Yljo-yX`R2GK4?jzu#-#$q@dr$Y@Y+LA
zF4Ca`4;GPyKO~9C|H13uTqg3-zoC4rUt)izM=*TBe24Ep9dz{}lOM4DyH_%c(|clk
zg?j+h7x6VmKE+Xu%{{Hj+PG{T1zuH|fA@V>lq9d8iyI!7D26@QrbB$oCeMTKu*<N7
zq(R2OOPz*n;3C=cH8n0aE@4#MAU^8MT5k*@l>x@2#ib|sZBmrtI}zdkACV*2n7nsH
z{{JtTp4k>Y<p<kI3-^qQ8ypkMCKwD3c$36OqC6v8gPAS8e}P#E$v&^xpcWq@;zdcS
zH!gi-8UtG%yqH0QQUhi*Bzfhfq%v@$_04n}9y7#KY7HKQuW|lEy}GvL*OJPQm5}v6
zL??(8seU8+A80ue4dd4ClB}FycNS|G`d&v_x|Us-e~^xyduOpsJ}<xcrNR0*DnBRX
z7%$84Lb*sAcTWCXCSQZ_>ptsuee>~No@H78Ps&q;jQbMn4|8v1<F&Qe907Ju=lw&=
z**I#=LdI<-zfIXr()C4|X#e5D{*4*FuY9`xXK7KCAZSU}A1rGpVz`km=yxJp7XAkl
z1di)7AwN9+|Bd|6{`Y>7$$v3T$X8DZ`P@(YhJP^x*Ht7`;rBIoj%MHaeVhMTa$&fU
z7U<n3T_%6*B*E-{BHH*u<$J~-8nOOocCR4)@mI++s)BNne!b>N>H0ywKMB8_KI4DB
z;ZK1IgsXEdh2OINcxMpnlU}*Cpo}d12f_aCNO|~wsV4N(j<7t+?!?mK*;$0G31s(x
zrY!xlc?4NS#VvjfoWGQQ^4wIJ{Drdt|805v_h$C>Ehm?<E??jApE;2z(VwE-k&cZh
zG(aZ5Ub5hGx0TDs@i#|1CYRl-+WO1+zJmWVKA~KsyS1OvWb%3afnRQ@xA6X7-}v{f
zNAS9YeLX_pp<JZv^vSzr@+YzS8^2UI|BA1l@s<BK^Kbl$x}49r>3CEV6d?ZQ`NVn<
z(l7sc`VCfpDizQ_yqeWt+5U&vKk9^iAh4!{l$Q(qiWEdymPfP~ab7&U_7Ied^xHhu
z!esKh>MZQLyz&(&2T(53oXSVDAT3g0S_+fjgsz|A`$xEa<U50uzoUW(Kdv|M1RTC#
zJ09h)&&Yh8$qzWchnIgkYd^YfiS$p)U*Gai|EQqiTmD7uD(F}KWwPJ#Lb*r>RB!W`
zEd0j)5TAJM?}U9E(C$d7{q4e!a*_5a{7QeBe7=8#<|AK$eFji2(tj&|&8M}aWb*m`
z52~?$CZy+J<yWzee@yonen*>!;Y@z1Y%>3v@2}w4&Emhfz*8QI_8W#9Dc^U2Uy*_+
z9ihF4^ZntqhoD@f&gaib&!2HM6%z6)qM*b6R}Y1G)t-J6c*b=S_&=N%>QR7v*;XrT
zo~-{sVf9(Pe5iN+BdlY_a3jU`BZj|dX<;wbWWOd1H>z>q`-#tS`E>p}Uq9_;nGE~K
zoI%QO3gc<c`69kh4$=Vm6PM3m@gE?6&={8fu6WzeN{H|S7;dCA{O@9WANTn~!9Y<y
z(vMoi82*oj|4rV0zu}ed3{w8me31TcK)N-NkFV2T9R9s5{GW39H@)(e(BQ&<K2*r{
zq(2ly!jG?ixp9M!j|SL3n#I4G?UnERkK`*DaiBojuZ7>|@)fc^V&WSt{rSjOas?Ou
zD_H(?lczuQKS)0~u<kCCA22@GCY{N@$9xdXuXTcatkxrSuzCr<A_Y;fT*C4Q+hK|_
z!Q1vuN=}dS?Dxzc*bsP3+A!SFnGcDNW_x6_EuCSHXa0um<(!=A|BCgfjPm_U8e1SC
z`jriaq>*XfUgU{h@d?uTqsH0>|2d_@6O!0gYh-c5z!*<Ee<YXSd17lV)P8lM_(ewX
zc`tyEeA#q>!KraRT^~bYTPLKa@r|w7Bmqx{2)>OSnVK5s+v$Nnq@>1;N=P2bC(({f
z;=M|>#4kR*5E$=B4;H=0%fEp5Z_oSBk1NU{n1AlfBhnv4w}SK#&U=FRpIe#b+a)2&
z+w2bx*01&!OYbg5JMj4_D_Hv+{)e={<hp%i@=vkxA>C(uRLLuskK?mZfV+jsb+Pf`
z6|Db5XY&-InOsh>KNaO7J@{*ZA7%1CoXOJv*9;5#&z&andH*@TQ2sa`UKalLtbfMI
z)*0}5x-PcQ-!*P9_MQ{pt4nn0zHI%{Y!@m2Bik@LmJ2niH=GCc&0ymNyxo;KlI;(e
z7^Y~X|MD5uE^ztGi@|=}>~!Ywhw;_k{?{v&yYl|)fc{fA@Bd)sFQ0epE58tL=lP6(
z&ne}_%cz!L2_MgX2b;L7=U3uVyw53-?05J((!1>o^Yx3R+z|eOFhAwihb;W}*`Hy3
zOLjgH|IqAKkUnNo-bKKB_b%ZFG2AE@>HjX);q{*Y`3aj@y77^p6832F9UoiEuX6Ts
zl1%=FjV%57$j^R6`N}8O@;g0wd5BE@H%z|zz-#}M{ErrX%|`w&FMrO@-w3dOg-jOz
zKJv34QNH@Ab@;d6`YA>xe>{_~`^Zlz@Mz(8+Q|R=&4DLn^4EO8;-ASs3;s9zQRR1v
zHgcR<`hPlp5#N75!2a*C@be4nzbOSDE&S?W!AIo_bapt#`zf86{AHN`asP^oo8TXq
z{~u94?w?5IhXZ`qX^X>T;qL<BNB@&jNFM$~6aTZUq^O7LUkZxyRgjDFW7}Q|<?^xr
z0sY^aZ6y3Tl;0QTRXJea1~d8B_W!~6KM9bpfc@{(5c;P)mb36zgm!?Vgn#~{;lK6m
zx1Y-7H(1Zo|37SgBBuWw%Kr}H#aY~1evd!Sw3W$!fyq}NdgZ4S&RO_TKCU}9v;Upd
zZPv=<Ph|2nANkpjC|`NPI{eYif9flfe`6i<e?Ib49)Gm(JBWPj|HAZtRDF=l<!jH2
zbcX5wg?Cu|`^eAEq5P4M{;(g!%>HT33RIPaztD#){uRD{6w-fq&ca^;@*h1{h^GH5
z>R7%%K|ubS#KN!p$j{E9{2rM9;oL|JKiVB>yR<j>{vZMV|IYi&{yy?kB61e~7a;%P
z{zGQ+#|=p6Ba=V<J>mbb{K?Lt{94ctfcrC<$)DHkz>6~Z<5>9lh4NF1<ShK<F#Ir|
z(oFu%hkx_)lLPF3jFtbs^0OaR{vH4PkMWMQ;<LG5mdSschQDae!e0f$|FeJjhjNjA
z6uPXPO#b3`N%(Upe>cdti~nJjf2}K%|G@@-`6<P67XA&nM7T9L-_tDqzup=pt$!XT
z_Rr3t{3~^YeD_Iz`>P^Yo^|#|8XPdn-)!)|anSy%#L}Odi#1-M{*_W(9{%+u1U~v%
zfLEd;{NH1IQ~$s0r9+Lm{gtlb|F}M(32T38KJv3o<m=Esj_YJl{!NH~Tt7tRqaGd4
ztZl{RhlBjV5dO8?|1$X=|Nn$M{H0J1>|cfQ(f{GTJ{bQn?O8#(prOLgKPeU6Q-ps4
zoIf}n_Mb!llWihD63RIp`e#x8io60(iS^I_D*OTMv3yqi2ri%2KQ~lkanCN4pHe~|
zelz)4|5M8P%SSta8p`;tZ`Nez3kLMRu4eTgexdwq8~M0Tjo?z0qYy8+{|olJq`)7d
zfOgn*cN-6X6vY2zi2t5DSo+KD?f*|HDG&d;YQoO?TJbx|kAnQ~oGQYP@-W?@{lD#W
zjGtdsDyzG|!TQe`sQ-JyZz4Z0gp<ZUzIQhhdZFDNpdjkeDCUpNM*1V^|Ld)+{Pzui
zDS7yNg$cb?SSL%vuMZR9SK$XryJhZi`=-Bmu>ZswY#u{2>*c}rpNafjnE#IW+rJ6C
zcOMb*F}zg%vKxo_`P-iKkMgHCV{?bP@%}FnzLe7P@Y~8iWG#Par<JiX`3ISNmyi7H
zN0je4Y%PCNcCG$0`L8!;dl_{134fVK3%`EUTK<w^ujQ4=|B?Hj9$xv`k1GF!zkJLG
zNGnd<{k?4dMOF)uVBL!ZKksMu?FZ%k$-bBRwC|Im)P!ffU;%c#K>;OqOaI@^o=`8O
zH}-TmAk*&&m>=SZ74f2P@z)Rgp~J7T`EcyU{^%_Bo!{6mtzRpo@EiN5^<UXDyUi}t
z3+cocZyc8C$NR7Or9;1YJp1lzKi__A-j|(|er%&J+dvQeK)sOGYUwN`)6eMNX6!2T
zE9a!2n@jcW=jPA8{oMT7>_WYee%P#tbp10Q|K^tt<Nkb{*VlfH**Jjj{?}_Oi~r+i
z89olc`suZNxs7`g4%p!zOepGww9)Aeon`i`GFt$+_lxvL^>af0(2g=4*nPG(`#&3(
zaIo+EZVmcm9${k{?0yOax(|ma{5HE#FQkhuhn|z^*YqvWZ-ZRFVR^md68xX@*fYN}
zYveZW^VP(23ftR&-#t-ZwzfZ$-DVf+g>*`Trqc6Edb9CWerXehejOO3Z~XH7%dhMa
zd5qf_Ph;aM?liVvHM_U7_~qj)QR#V%+X3@H1ef_I>V-69=~v}s_WK>yKkFX|{rLPh
zU;S|XJxY2=OyXwaU%u;faeY4i-;APONEe<x)1Hk_HKFqpI#p)2YnzLWk3s#TlF$=V
z4$^ogh<}d+fmmL<_Xxj^dStTn%Eu|a*G%t#v24JWY^W5Q8pp<-@p$62;c;;(2}wiX
zwBpn_V?V)>Y&;oXjgCo3mkfiavyGTMgSUJH*VvEAtCXU`cchm#b(zKNQ!4s7VTWX>
zKN;s+?PTGB`jg{HVILefLyGgK9Dr*!fA1~q&w_PPSbqgJ55amC#$U;`uYb<<(?CD$
z-{<FJX+HY7gVayKdUa#}_<Ic6p*a7@Og~HqDrmgpmEX#9{hXlRFtA^f)r#Wuo&Q%k
zIQw;g^>Xz5)B?~Sh3#atlgDuI1@%U%u6${*p&yKoV*8k%Kjrw?8^3Cm;Pe~YNTd@w
zKhcHrM!pet#rUK8dD0F1@Or1Pe0=^?CK<m@VdKZz3HB#Qf36_)>j(3<a9tkCzX5vV
zdlqu(wE^Cu{_R`tEaq!JOn;ks`s>J?I_RfW4bFb(KeXlI|ER=sm4scfy%&!^5E=>3
zD$s6fijhAuNc!XFTe*DaKUND)zi!|UY5Jq{0?pE26w$9vr+!m??Uw-ggP&jJ^qC*2
z2dN*9i{XCaAWn&_CG6)aD$<{sewZ(ie)Hsj^-RBj`75Q`u=eYBEPBx%k-~mZ%qvJS
zo*bYE)=N{%u@`LqeqLUWV)YiRPmSW`E_;50Wdx_sJPQnm3SW>G`s*z|zonGYNrW#E
z?8nbPa_$N7=;sFgFn=MX`jssY>5TZlVEr@dg*0l-)$h1|QAEGJto`F~v3eV{f1TCk
z>F+G7m-5SDd@9UN|4u)Q_b|X)u<z`AuAc__VgBXk|F}N)_Rpy`<ofY?J--~rr=o0q
zLayI=nCFJ)6=C`UHV;wZ8~%PVeqIdMkM^JO^Mh1284mjoTtVvB0@5q(&*}jEdAL3q
z?c-4lzEJ(*>;GKYS3fL2qL_Z}3*PZf?Wy4GR~78!IhO(CE-fnT>LBB-R6o9sieE^x
z-nci?&=2BQncU6zeby=#X9>AH_ETyGr=O?aYq<Eo0meQqLb`Oc7yhL&{y^wXct*OR
z`t=7~zYNgtTgbmlSF%42_v)wrNBSu+Z_`Y_#!&DfZP#kFQGV#4UuEb&-pcfIC3*F8
zJpJF;PaSG)zrJ8Uq}?jl;rs8D$^`u~!G2${^36HItDpNn(oY*>tzTnstVpx|$@L=F
z&jtEz0Q((h_H(3r^>fzxkL(Bi!DjJ02JDBlxN}K;u3r}Dw*~C?E3=<6+N+;h`@hjo
z$*{H`^*ar(Y(2&1F9!7AU*z*gzxVnVSCIO7#_j71J-{3a`W;6D@t!m{@oxe13%fk&
z{DRvL=NF;>Ys>tf=A)k$6`cLLfPcnuZ4_KLO!z;1Pwj;N!+1wJv16sVT)(JZf`2;1
zZyufiUh>ATQYSe5E~g6|t#UMqH0W3;KTy9YzhAu%s29>>rLS(4>GvYDpCiVrpB|)s
zb)5fBKP-3AzB{&+-QpX+SU<SV+DGn--t_0F8=U=?;Cy$oeqt}qr+{@XDBo*2@eTDu
zntXTney$(Z4>0{b#p2iP_Uh*jQon;(57_LVKNKi`b$B1Fe#PGy%lA(&<>)Np1;?L~
zdHvu=@A#Xup4@)8{=@->!1@c0yTNPaI;@Mr^N{THL%vV@Eh@$I3z#41TEP6vC9i&J
z{owT53GH+2CqOw*!+bq_Z>C>KU_e@Y#FN9g{WP#2j-L-_>vz?kz52O=)X(GpNc|qi
zxpf%N$Ml8zBgOYfXLmS~$@QcDuYMBipYzdAYY?3MG_W6@7ld-Le(HpLV`e|p3;7;X
z^^3CjZ83?ZKOg;+hQaCQGKt?q@ZJUInV9KEM?RWWSTmZJZ}fbT$65ck`?5EF^&s_|
z1nJDIevj+M?8-N^-{U<V?v~lF8}~22c=dBM3eJAG-xFOw)mjz)0pFY1PX)y=o;N?9
z+wjlm|IokWS;+Le>ebI3q<-jMP!F^N`WL(Q5$c6>ZovuC{4s{*5A9d4e$K|h*)I&r
z5A`=;FVrvC{6X!yuxRyzvij9Z7QecWerl88^h5umH1aP${=)ep;CIZ@AI2|+t7+_r
zjXeF)^L_U5`qgh<`?-SDubo5K4bNpoIelTC1-{4l!{3q8_xCzBT_DRJ+n9gWee~0s
z24_E9--vz$<zB8BT>e1)kdAKpJYWAE;GfU(`c+q-^{>r>)2}hq1GL-X|EOP4m?wnq
zX*$FIp<eiWr1#dQGW*?P{#noV#;+cvex7+5TS@wZ{(IbS-cCRKeaqHXJALhk^}h;l
zvGjM#tDmEJaQ3^7{a2*^S02V4(C?spv=dVL{>JH}Zdv{fozDE9kAChT^)t)A*gjHh
z@^52M6lvxBI|p(5(e}qx=3mtRdF|(fefXjItRSWJKh(orB^pg)P;7r-y&=l)SMP%g
zUojo-Ju%~Ht{*Kw`1t_(1@HVU^_k$}7wdnt{4G@#{LYgiUD9|&4NDUJ`aP=~^=GY%
z;K%aqKDXcRUi-O%)XxF=m)4&#-f{fMOh2?6(xMH@{o<QHu>J8k8{c)XL2aC0rnL;t
zem`P6@^=wlv`bTX@62KSul4Oa*O-0*_4}Kw{MG;P+K)LyLlmYvq%{4xp?!||6!rUp
zytlI-^8HzLLaI!^hs#+0_0dlcQa_v*iRY%HoVn0{fO-e3-}sMz=ldH6*iU8i3-mv|
z_H(of&VDnR`j=y<-vaX9PCxwp>AI_p@egc&pnqP>*0-y-z52O>)bBoy{}TWFBd+@o
zvVD%>nzEocAKwbFA3uLX|K96goNx{YraPoG{b?{>g6&9@)8<LYFVL@r_QBtgV!p-a
zu^r~{{>cFSjPvXFd-YSF4K9Ao^n3mh^;4ohc~+($KR-mh=+(~^q<+WHzijib9|T+e
zirF4$J+?2@jO}^3e&M}^{W1OV^F36zS3j*yaQ4IT1r_EMp``AR{#;Xp-X%>c&=|i+
zt9)DOWu~8}d_(`7#Qd{**PB0-w!!K5Z~KR^e8cp)?84m@Tt5ZY2cZ38Soy26{UNaY
z(1X;^3F!>WF|^-`8X|tMTt@rg??~}I(ycd2uH^cme?j}zOJ@1^t~Y)i?Siu()}P(C
zA-{rPtUu#>v=8d#q2!0qHai>g^cUUTKmGCZRn#B6`niMD&y)Vzi}0Y_lHeCL4bmU}
zKq$s9zD^0(6|Nu7KgakDd5zVded5;%^3d-grT%Xtv@;ZFPobRk@E-RI!uZ4Ak>Y!#
zlQuLL^K;1jmo_YZ)xTLC2HV>m<nil(eCPlHmvH=YqrZQdj^l&N#d{KssGeut4C;66
zX!-3t{W-|`#ooMr&-4o`E8^W{qF)%BSH~}h@u?_T&`*VSg4arA>^Fk?y_tUWeZ5k7
zJILA}{Cpjqr9V7BQG;`KFkX@Jd5QdT7@v&7dK+3l9Ru|j%)ch?Poe#5yAm4yBkN!5
z!{#@;4|w%co|DHf)eqa3xb6qkR(fOo)TaLr;}z*{*L!Pt{5oNM1o{_#K9ByR_k2j*
zL_a(q676@Slt>TiS^xBh^LB8(5b8}S>V@ye=|>9k{EPk%^DjR?M>o!w6!ILM<o4t9
zI{D==J{9F3oaaZz-=ZLYV7-Q>Ghp|Ozv1(iC+=LA>BrC4QGeq5GYkFP|5CqALF%W1
zVyOSX)j#$&;+M={<NGh__t^e1I3CnlZa=;+BflKRr=qmNc1C6Y_zj149nN2)ei+yl
zns0{GzV~Ck(9mTrqF;U|%OC7~>qxMl+C{D(o^y@*?Sk+)ARnOI4AdLmWB$kAk<#~*
z3%pW7Hvg}jlf`dAwuYs(h+mh9ey-L6*#QEu{icxmJ+|NQz1jRfj8~-P8@E^`o8NqO
z0tkFs#M7ZNio&LLdD1WLV-%HINZ~i`XB5r8^Beay(%5%?<32k&`_6CN@5sr%^BXVJ
z3u*Mc*tIhK*6YC0Jlgoe%UNIjCRAl<j?e#YCGJga#dCJs5QX3CS^bP(&h~5_6}xAa
z7Qc(PigK^1c#dwt(m1>ELcNd<f4<WenSQ)~l3zNM^He{+|1RzW#Q#^g6#r!N>qA0~
z`$%K)oD~|X@H<mwy86t&9>w(KSBes9+~O&4|Jr7=8tjtkcbN50@(b7HQT^sTEq>1^
z7NYR`BC{vI!b>xs&h9--e}3s@LX4a4CmavyRw>17$8WgMZb;iV(?`qn<Lle_rNg>5
z{@piz>HPXD5&rhvRE~3aubu4K*WPCH?NKkJi`p)f?tjeJzwt|jb!Yth|Al@tv(h)p
z?8n!~@k{?d)^F|8Etkmj<Ll@6rIrzXnScMku-~#D;;YE?GuGEJo%H`>{ccoQAwB<e
z5G#MxPgxt}Jz+my&-1k(U%$rZ-@4=2dKh+J7UovmvFw@Mnks&G4#}hNyLm1i11x_h
z<S}l&qIlNXGr#e|e1SBi^ZoiV`)RN~OM!K#R6oqWnJIY`eq;X4OlHsQHp{=^?7#fR
z{2RsA|L_|xtT!Od_ssF!eElT0-*EkU2+JSpKa30Jw@397b_6phNX_;y8Upn|rz-f+
z9@U|qpq~)sI<1eQUPw2;Gv<g)zuH?^+%o-eesNX~^(zbdX>CRMi29WS{oE1aJ=ISI
zLn6I@v!Sv7LNv7Bl3@N-4AW2d(J!TU&g|C<^l<*_-<~W&^hP^@S^@3LFXujAjN31T
zv@hS>%<@NwxBno#PtNrF3hK*xn7@9wZw0pRsQpl1eBXZDx_!p_U83KKNVe|JN59M*
z>WA^D-|^RPChTj0^+43a%zpZJL(cf7KOCQFvQ=<k|5bF~oY`+4^!L&IJ+h%62K({N
z^g}zIh<|;6uYQ<+KiuxGUv>`l+YRZD?tfAr_0G1=zo>Wf<hc62`l0>uZ1dMI<At2r
z&rCnGYq0jqE}j2^uYPF1f@J@Us2Bem{q}?XoVx@b+Q}^a-HQxw@2el$?=p$stp7;A
zn~@@3v7K(G-?BTMo|WlWi0GHn@4vC%@VY`j?BBA}FEVqmu|KFz{7VwsAHeP7U&3F?
znSS$eKExHF50)SM!M~XKKdSG`Qyc!k>=)4g(wf*WGl%*WfOT-#pN9HnLjMuI_qHrW
z3PitxG@`}%+P?9N`J+9_AJP4DW<TubaFX%fQs8&gzl7hW_Cmez{k!q4clqjv`C~Zo
z&)GTD?=dWA!Ox-n+Q54=|I!#TawO2RLreU|^>af1%Lu3+bb|UlmLC}da%R7^7{BHG
z%eS7jMS66?JOmZ=K!Wx|`a`ExgADsY{ul)MmD|DUFQMN0LDb7R)9);lW0()neigBP
z^^wpM<IzmNr)U3v)O`t@6vg#_b1#TG8jsa@GzhvV;D~}NXCsKK0*-=;h-Q{$VON&j
zaSsH%+9QgZ#Enq{p5qb4dpv{p#4E&eOpM|^8V|%H6R+SA^M7yZ`<>}2XJGLszaRhp
z?Aw}tU0wC+)wf>V)z2n_`Ahlsv+9r3ddfH1%16p)pZm5h`8Ipxkg3JwyUM~}EV_RB
zv)cibkM$ed4W;CxK9~MMvQg~|@|WYgWxd7z1@bpkU0lBTXy?&hFx;s-n*2*z<KcBU
zw~PFB$+!7#7hIz9vHwB&PPx%^$XGrSCFCo0eiY|{`TZs8?~j~k!1}Ru$#?to)?HM-
z7{>1@pC|f@cFUKK$jsvU<GKu6f3x}&*PpvpAwMtQlKgoBfp5>%RM*r64t|f-%&%@}
zs~xA@5$>Ft6N5*&AJx=6*PIEze|2+ny_^k@{g9x1-%hyh?($7Kc}2c1m^=J^ggeuC
zJaqPK`OILzdrOQTv<sXKPizF;aktg|TE}<Wt?_3)e<ry@XD5EANpHNy=r8!L{$AU;
zH0>`Go=fAsSa>dt^IGA#H0|&7&YfRQJS;dW{%EoOxi9<A^-6yRx#}E8hxC{qaUIB(
z@q@^!O|lgFnfi8|_MW}76m2LRPkTLPp7Z~btqPw%1A+YBGTtjx>Z06q_uuogxy9t4
zFy4fae#po#;upxzeah`}2D}pYE2reQ689}9<+l>|FURD!68AAD<hK&{GiT(tQmKni
z=yt29JF}SlyEIDwe!1u$>i~89HK_l#9)h31Ir1Yh9ur#B)ln)J|N1=B+BHi%>|!Je
zpW4+?nuh!IDP0|<lXf@H6K!%ni%_YHa?|~?^&eHm<o{as7iX`bk*s6O?_nY&cCd_5
z3&r~z?<vVHrNi6IeMX)sxxiPp`jjGbmy9=O&+(V)KOuA;8y@DhlK&|;-9PVq^|{65
zzX#*r?pp>ww*3B1h4^h9Q+R*D?+WiH$$2=z@%fYYDt!L^S%vqd5<t1>ezNqfvBl({
z-DE;=Up4aUJX;VyoNo!e)x%MW&NcFd{vr25Pa%K&H+wirzrg%MO#CXnqxmD{Kl8SH
zyG`i7(0@eURVsCb@t^|kAAj*nU0<|a0_Qihp#7D+TrlyF%zxqg5y?7}4vxFgP0AdO
zUegd>a-gxN_WGEM`xo+Q$A)9wH2u2>r<6na=}w$J=X;eu1^G{g{Bg0LZs2?ZzrMKq
zb%==apO5w-<)Iw=vK@l;3zXkJx4`8KCERlG>0Y~e=Ur9)4CH6~@_OBW`lWt9!|2UB
zzGLza<M<8M5mJng&|Xje(S$?%UJ8D+yJ^QWU3|}Wi5tFu(mBUmS#18fY_#C#_5Ar2
z&fJd4KMUg%+y}$>&$QOxP=DKET?G5%E?+3&@;Tkz-#aOL{y_-)laB{}j_fD4KY*WP
z2j#zx`DN+9)cWVcac)igb(7CbR|)ZR-)W)0yRQgk_ouUe$NhWy{a5#^PI68G${o%V
zV7aBsa}1^-Li?N*%3<dVal&z8>Yw=Fd$wB%2K^m+>W(SJPYn8RgZ@7`MeO11{Qg{T
zUUB^Jd<@DzW|2v+y?^*}7v%{31=^1&#+y9whu8vJ_YvHCa0mbLgr!0JpAY$;T`KK|
zqx14RjUAK!%ikB5|0cB8-4{$alz%Jm{c=-&sb5R%+-*62vHUJtKE~|Nx7PPvc%hWv
zxAOaYlO2?QefJ;x><6Q~5LY>Ytsj)1{to+m--zm;{Wq>}x>4kJ(|P&*rjF^K<&=76
z^xPN1{pZwQC)m$Y<1u`nu8p5Zub-*=gLC6E#Lv~zeoNQn@#DohCcl5y`r(J?8Ts3-
zAAXn*5A-<wx}g3!KG#j!57Bq?>ua48ip#I<I=!YD#~H->7yV<fo$X=A($;(rzZb}H
zJmP}y*{%mhCEO40*!g6YKWUv`u(h;5;{o}T9h9FqVZVX#m)bwHnDrgTAt@K%v)vHd
zh2+2Po%08ge`yBiZ*zQLN7<i{4#@8}cTE4>Uqn1Jo|V?RPU1g|^^|Fx3$iZ#6F2nN
zXXvuCv-r36?++FE;~(Vl<F#~5{!-&H#Fagt^qRG<l5#QKKXgrdm;R=2bxw=Q&-M8n
z|2?%u<X@GS-)Zfb{5<#E)<5@c#;x)Gp4@M6X2;rZ5hTcid%gF#(LcsVXn)?9`YRpS
zpPTHU{H5@JH|wvz8a;#&|9H0RaL)R=@Lz%V=$<?2`7c%fF7~gn|1#%1k^j@Y{{6O&
z>3`S#jQzCR|3fDf@|pjO#~Qx-9bCv)%Hex_zV!iDkJs{RuYc`&rPN>l%FFM~@0k4i
zVIP8xAMQV~$HNE0u99DR<i|+N^2_pn>)w|>rut|7OZ)R?qsae7UVi7qj>*3Oc82zx
zdMdR)>Ui4E4z?etf69OKnWH{Z`F-Gr@(*1o^;batWC!JEIgNf{@Id)<?F4JQx;OCe
z!2b8*3ng4Tf4YqxmEB+8ZplAZ_XmBM*T27@WBMP3`j>d17$-wc^1I>z&n<AK8~a1O
z@;%!newYt?r`>Kr{ILDDw~XJ!1N-Z|g&mVW*M5VYVf?g9+`mgXbNK@OQ!c(|yDk`X
zPg-!mzAAqb`sewQkBI$={yVRKXVLn}Z`+@8lxvRTQ_jig?{hwe`nBcez5TrPlnW<_
z{6C!k5d5SA@+Uhee>>U(w*47_d0+CW|Ccc?L_X6+d2Kfg2HodwdggZ3e+ctS9RImb
z<o9L&1^2J`Cl%K}_peMtxJmYxG0wyIpF=-|`9e8=?D!AEz3rd>>8bh;Tk~Vjiu}&)
zopbVgCwEN#VJxSxGmPgJ%T7}Ny@4OD>u0+7p6%NBdGp&db^rYj@H6%-DZk(5_YXOz
zbWHxUc7xrt<o^!iB#vc2zreVhx1RQ&>H3A&qe1uY*!8cTZ|=LDbNh>uCFJM+9pZ=k
zW0Ef$d&qd+;W*nNg?xM8k!|1kK3x|-m`}T2azYoyKgWOA{@hmfzolh<ko!~oQ;X}L
z`)4SB1#m(;!+38Z{-J-`|G7AiG`Ws*2N;fxpZ~tTWKJ>sydmv>w?|%n@3fA|?~OM2
zAs!fSE94}f_~-mG`P3`lvt1VqzQ5n~L*7ySC#?C|^JRW9F7k8#jpG-WpZjm9f7V~L
zGmJl1PgyumbZ}n|!;xvff@{Xn`~F(-?^@$ObG7{T%<s=hmXM$Ob147W?7v&(_hgGt
z{Dd)IpMIfZ?FXGh30})qcN?Pni=ybiv;DT+BEf$^e*g61`Y$Cv#{(G`<tLxr@QZlv
zi&ZZ8p6%M@`@PJcw=K4RaG=QV2KGmJXRM$6cKN0J<Wv8YpM2ulmYesL_~F8B-eT`V
zgZ78*pK-eXHXy%qX2<0J7<R_#UuY*k1K$Imc4UE7-oq5Mgxd~2-7`m?{)(=jq5XUZ
z<F^;zF7m&mo{c?8Kz{0tZg>~-oade~+V9aXk6u-X>t>#>0Dcu-n2T}f=u0NN#SF-D
zLuUBFq5IZn$7jDkP5DRS{MW}s{&+zC*jYyZl$-94l|OooNtZ2u9P*bzPD}jUI3MlB
zfNswZ3+g`!{ku0x`3=Y){^gI8KUqTm?zP3`PecBQEjaFp8@k6`efjo5`QL>6D{heT
z`?9`d@-y=j%bzYGzx(p~;pZ=3UHExWe&VMgF8B|~pE&!+>EDkR$A7W}exi`S6n<jJ
z2fByvIw|}8Z{q)9=zq)~1pfi~W9R%h`Mv9k%kL~R{0hj!@*9Wzb>Q1h1m%M6rJ08d
zz8^gm<#)zSg8zX0;l)2r{^%b{$PfL~&QSg|<gY4GewQFYbp7Ujw+8X^KJ;I4t>Ay9
zdItV~V)<EqZTa1mCO(!=TmLCA=-z#8d4c^egZ?A83jPD~C(iw8_3xwn+VV#s{|Z}h
zOK!?P_#X?u3F^Nq<R5g6;6EUL?7W{=e%c>f{`k7&2d+}Y*K>(QLHU<J{_b}P{sZ!d
z&;N1qCrjYpz21}yTmCfVr+ijE#BfiyY5AUq1?8vxx$`!`|10Vl`2Uge`;fB?@v{Bk
z!md_;&+_ZOV&ba<-*$)_y2mV=uj_Mj?H>pF|6c4*G$4QCS3gew=@Rm%A-}EvDCA#Z
z3yyorP50Qknu71Yeh2$gFY_1ifc&vv|HSf_D8KRblz+yG?zaT>Px)uc`TgmD{NdmH
zwDQMMui5%fuS0&eJLzuL>*0d$zwZP5TzH+}|5eR2;QuF<-$A*y<#%5-@s(;nP;R<!
zZacc5{WcKt|3~Iuq5=667yPvPXSuNDkFG<0;-2n`g|#;q!_RhC3H}4}$J&2d`QtYf
zx1VvyU#k3OP>$(7e$HmQ2j$P8{C+C!=X5~+@Na*d{2t^iL%g(~-ql9_3h-$^(~y4^
z__jm2>H6=C`mUJ#TP+j(zou^k|39((@e=a8ubKEt$sa?4=stbW#kU9Le-!$kDedQI
zK>oyqKTiK_Czm1Koc>{ds=%lIqmaK2eA{us2*JH>z`{+l@=r18=J@A-t^HxK-xZg?
z)c)~O`#Z}x4q?p~+536QZNYKx!sYXte^)P5`P(u6&-F7e$^NW(V1HovqV<!1FW@e^
zcO)Al_0RQvJV%*&d<x^}NsKR2K8TxhT>PTD&*XXM2ldbOll$X*3+|uEtf%~|A;0?x
z>^b7K_a#w&dtXvV<v-#2=PwP)&;9dd*8aG}#p|d4uOWZ>nL_zfn4gJS`<Lx~UmcbI
z)?05K8I+&j{~nF=S*ZWmCF>`@jdSA1#yRzGmzQ<P&*yca8-AnmCoTL}EtCCCf&F3O
z->;wi#CiJuLj7|;6z5AR{|lUV+QZZfln=1WImA8P#L^?P=R<J(p#k=Dv78O27xkYh
zA%Cg$N?b?4@<{#je7NLOMo!9q2yvC_nEYAc<lpSN7he?pFO6FB7pZ$YIc{KoSz<|X
z{m;UFV~!s)+!*-W$4&Xe`<wirf66}^eEKh?e}+SM!jpUbuGs#IjI4jwi|aUbop2Ai
zXM9!GM8bQOX8%R@CHZIX?-|lZn1Syl-X!<I{Xd(@fNJo5cZo0PpW#w&x=+^M_*gOd
z-Q%VGbDzjx9?8C{>m-Bnhhl~MRa)Ib`IEArM9)*o{6hBc2>sQQd-)zDFR!8S{+0s^
z-+z6q@##l}FT{&-(|uyjtwW2+?}_|+xmbr`%m06+|2iX9ZXe$8o1V^|AJ6j3`J<$G
z^oDnFR)h>*lb038{|W#~vLk!h>*T?9xc-XsjKp{AAe0BJpLFp;4eXHzdlUuVv)l>y
zhxgX`mn8O&oCo{UF8EJAoc}(je|d5FsSnCuYX8fNod31<zpSwMF66V<MTEhxvRvnl
zIp+oEk1m4z`;Hgv1on@3S9DDN3oUsNowJ1PHn-4jPUC*z-iBX+7q-DXcpCd+Jn)$g
zhI`VZ|6C;UFHJ-L#LqXQRQ~+_9p}o9$)Bd2XooSL)#U~!Tqje82LrY%ZckTXA1}{$
z;=FH&0m40LR=1_a)<5)<^{eSO^Xuo6CFJM+3*sj?e{G$=*@*hd{{CGGdQMvBif_er
ziQseIl=^2r9Z@slrYwH2{`o}U=OkVK|5jdp|El8px8>)0a_X7t;yP#dQG*lee-ZT0
za!vj6dwTqiG0VG$0HwOgUKelmc~_O+!TRSjA^%ZVi~O(U_jh~o;_`F-JoW!@8}MMQ
zU;1xTA)j)-Vewta6>2E-PrbYODkST3@c}Pvs`&TN|04eXc&>~;ypwPLI9GQ}{(e}G
z6dz;!L!A7%!dAa)3D%3oI~)Jh^V!&E&wMP0+)N++bzeN~nJj)FKlk5#DC2MLyLtJO
z9hBe2Iwi(S`JWta^hrMP!}`K*kA8u2LH{{<86ez#?>~1_vGorFWdB0+y}bPXH67D`
znsx(vW^}3Tjr<Pygh6-YmxuKaTo>^S*Y#QJB3uRtcg=oVD*k`){iSQf{`mLhzaQjX
z+cEi<Vf|t99#c*kUBcp1|I@~pbR{7t%Y}Uo5%te<KzE1c3$IuFgs}eeG?ZUGzcU^D
z{?T<ElfP7dfaiwU{ed#98{j#nlt06AG2FyUz4JNsGUb7ReTv!t-<>D;51c=r?4bNZ
z(eGvZp7C&B3Hj1o&R$i(5BbcOmw<orY5!fk$NV^E{3CCx{v*&o$4>^GCh`ZrfANR^
znf`g6hkbrN&+{Ok`mI7aqWqMX@*^3}==(F97sLOJqW|dU`SR;s-!b{;T6Tu<ybGKp
zfphBllCgz$iSm1W3(E!Nr^|46nDdE#e{N|E`ltQxyHM<ZKz`?jj>&)E0K{vxe@0q-
z;^%D23I9yj$>dw*n)1`%%=h+OsQ9t>FKj03Kcj*5^T`g%UjaMg_AInNS6T8i{<<*q
zzsUF}&X+@e+JEMY{auc&W^8eZ>OUMY;ZXlO%l^Ccnmm5|WgXN1_GqU$mi_F#XCWRa
zKg+M({`m^!I(?8y7xnHstT_yVUcU5$kjkI7@H1TIU(!1V?Ej4&lfRVxe6oa{`KGf;
zS9F{SpL*tZ5dGg6`CR}$443J@^1SpHiXXfG_{8r8Ki>w{KjR!&;+8JgpT`g`&!@8Y
zzkdO{N<CAbS6O_@X|L<9K=^!*?y}n7+#Qsk`^WYC+W3^f`sWhzbNw^rFSY)8CDy6>
zR=Z*(a7CO`uepBZo<{%7mxPs$TY6u(Sy28tsDJCE{JQVtzrWz$TpT~P{D19Z@L+$(
z;9<0X{A~*5=>q-pdkxfcn0N#J!;rhma<|y2;+UZP?Ek*4^;h@6`sZ7U%g^=O)c=p|
z|N1!ZpYoUL|GJQ$?qxgm{ZCMSj-P)n_TTN(Ik*1YxwT{R+xkRw&Qsf>oMPOQI5`~l
z%KdL)zMP4ESy~ULk&AdIju`IV-o3vO`IjaSHR02KJ}UT02i9*VOUTdl+tmLm^gB3?
z$#|9k|7<@~{^jIjoTn#VNLu_};PXAY^Y^=Fn_}Z{3+I^^(tRV@A4y5LzQgoyzYPMU
zBj>XRFMb~&u}ODFsk)mPAB^?x?kI(}4ElDQ3*~um{8P{8NiNOX`dhXy^k3?Z>7skZ
z2X`ckr7ycbMgmD=Uys_+VET@h^~ZWej_#hN7{((L$4GjFULS9sw@14>O7HbE_hEUa
zv|ymQk4=~K3hmHl?vt~-J4*Wu#`{Of`$Cm2?vImup;A``9?*Sj!h#l^|42_U_~ZD+
z4X?=jht!p;uwFQvFy%+ooW1Cln!n`yNBk`lF7?Uz587Mef&1flz5&aN%l%NW+b-fS
z<uG0JH}jV7n}g}2eOUchgALA)gzi|s^l_ZVy{|BRD>0ABdWPxad64}6IMZj(b5ZVf
zrH|?Stah)?!SwNb&EHz-%dBVmcs^-#6Jx*Dm49{U?=fF<>D$HVhvz1&Z~9)I-<Umr
zmH1qU`gNS(Q!nOU>dy7cKc3Ug{9yY2ih9!?580CZ&rN!mK8_bf!C&9>eYDB=;lcci
zA$^1G^B?b8zx2Hcd6^$f-@6u{_*`xAnLc}7czx5CTH4+tn7&q|@4LSh=3o2W>zBUE
zP|w-;oW*?)z%A3qeZ_YBm3Ak(+~jLV(?|VW`O7o1=f@JC?EfENr7w2R`lT-?SFL%E
z`N#DKwtdOX@4!w{KHJ`|D}B_LgKO-F&ySS+Tk2ZvlV=2<ZrA+yaOB?N>3fm;CeglN
zxNM&$n~i;8O?@TWP23O4e#(6GlgMZNbKXuS-|TS(#$&q`V9-7C*e$Z_2bq7gFTd|<
zMiOaX!hbBDzEb@?o}*!(m%({;@~Q8ApeOQ~f7ft)ZB@tcNqsTh|L|_=EaPkEC9U&E
z2TA+HdqCUAj-zcp%26)uj^H_kXGpswc>lii%YyUDM@u^{_<YW`jM=zT`WHUGaaiH=
zGHIs;-~UeAJ%M@dLf@v1r9760TZe@1FV;TmbE0`O{;bKj$O(n%9F6v8_+4pl2|YaC
z_|M31rDrsqfhz+4{$IO0N{gG!!_eQQEh_Yi<^Oz34_}QA1SUU+A%mlDba#|^F<o@e
z*mTlAi=|J;r}au>TwUj3g87&dz3TjX;srx9b~g8^R3}F%Bkkv)-u1jkou5xVZ;0QY
ziaaZONQLB6*V!v6zm+n5%su~4miV*pKPT@CJvGAI^Eq9ni*Dm*GtMuTzWb&BrkDGa
z$v<sh2h;c8t?_(vcgGc4gZ@MNRB8VT-Ocv%5z>AZdTB@FKP|tNmLmWBBPBnD9P}p=
zQ>1+^#Pc!zgXFmo+uP9rl3zm4h(6paq>a3b+zatyy6B#gc<A<G>C^J37tcfd|D_yO
z8L=G??&L0~bkhEJ4D-*6QNJH3^H<5`V%6)6-SQta`AEA>R}PrWUW*Z4721*Z{^O-=
zSNDlzebQcSiheo!yDq}H9(;yV0e%GY?c`U2PbY>SWpH1Z_VzeUU)-8s_rxx`ZWpH&
z^W{;TGt6|+ZAHb#^l`q;-NERC@$$R0(XCAS82=FTf9!V4=4k(r?;@aWIUjtksaKh9
z#<K!HnC_`_u9>Rob8-HmkNnf~ljF1U>j%7ti|1b*!dnbCH~((U|FRvzd}96`jq#Is
zcN0GAy`3-)mORbq!$tU=p^x+^!)H41*r~z~^7njq=7*X-j*p&!^!?{#NuQig83I1t
zM~bH}gak5uA46W^hw(CBId01Il{%mD-4Q4k&{G%z-GTl#^VMSna80Vkw&H&GUcY=_
z(-%Sh{R-*ZQtAiyjr{rpCs{mwTz|my{hZ~@%D;A;ch7V)eRjEYAs5dv;raun&qw)V
z`j}sM&8ff-x<`I_*wLCkw$J7xednJm`S)f%ed!LSZxY5!InKa%A4EIS?k`nf9U=Kl
zx4j;NxSclG<ZFD2(YMP8;PQR4GdDZ++4)c8AIJZ?$@snhXny=9`KONMAJ6IZt@SS_
z&@Nc>;ahY39(>khQR3X1ucLp?EB0nW;4<G_+@D=}{O+26VXQA{LjF|=KBMpC`|t5b
zi>Ht4OBN$Mdwd0KXCnItcNUIUa6T#ej>#A1Q&;3G`xBIRK5#(3)y(+;J}*!1^s68~
z7a)C0&y@1_K|X!{V;xIhZd?iNeLH>Z_m$zn1IQ;EpBJ+qjQ%6j-39fP`<c-P)6IC&
zo10&Buif)bo!{FohWzvW!?GS~PnG-&q%Zn-$I^Et^c(%a#LsxyFCw4mI~n;(ys`Wc
zhe^!4a(&sI@SpY!4w!DnLwquvrPGG`n!Y&F$Nd}qW&Ya>&i_5pvGm;nT*W&X|BSaB
z^RjmSor`%{JO56#_)G`K@u?4&5x`~o$bR*@2jh~yrL>>4FDEV#`}tuWpYD?#OW%KX
zGx^5;Hsg8RE95i(PT#MPPrdI{QOIZd{s}w9@Lfg#H*DRHJSTptrq9RvJEpHz>}Pa!
zK7G!gJC;7$b$k8Snz2S+JD<AmU&v=V{${O%U^-s1^3~3-Dx}YYJNleOcPc*9z~?!z
zFXu`AxgX`zm+oNt>VQKJb{)|;WmqplzH|q(*L7GQ5Vg*|<#(3IXTBy7jyrAb<&W`x
z>6eYy{7YH$?;lC|i$0zoUrMg%SpMbgy|sSeN!UZ?AMyDD>OUX)U^+^T7jj*JGsdLP
zWkTTceX=j=vj0(9zh|uU-75Huf1S_2_+L7fKAvOh>}%p@JpWtudnLvJ81Km6UZ?n6
z>RRW=Y5zTXfByV9AN_dti|A^<Ua!T*ak&1##kvQu9ee$O3pwod2NmGk>kq=<`@lcz
z_r0w2u>3OKPP<)lgXW*TK1aV_>rKtCPl!HUJpVYq&-AfB!1;Q{bN3KqM~Fk>^JA1h
z^4Z=x4)%!kA8~gW><;;?7a5O>A9TCK_RN02!pHm{_YXZQ`4^Y{H&yI^KGU)Ey^Ve;
z<z>7t!mg9w6%ROmYL`o{ck?lx&Gd1-8~JvAMG$Tk+;ji<{VQre+cAE9IqYZmMS{;i
z=g&uTF-}Na(&hX*^X~$j<Hmjv(`S!cP~LrpAz#s-a`D1eg9`a!@awF8mIpo^`&^X6
zt~mN4#iwhHPw4n(e0gUla)OD+dCue?^-fpEMb*~F5J3&r`TN)p!gwEqyy<FVcRW1!
z75nLEhj|$9*c|;>mb3BTuXS8h##N~Yx^>_7G5b4Fzn_BqTlTpLkmK_yq>ud<x~1l)
z`?DYTp3x7>+W?CnLOShsHgRXSvt9VN+u0T1)8+dY4QYEo=f@J({=>RYWPT;E|1j~q
z$v>uxZmINf{@vbxXz$Bq`ogULt@$H+-7nL(;%C4W=5_iZeeO_Wq3AA2_SsR=ceHzy
z@xO8x<8CYSE9oxz{%yN{^hqwJi|)TsZ`=KK&X1AL{A2x3`@r-~L%)D_k@~L(PRU1g
z<UCCORz1&n=nm<&_rJxy?3c3US9JfMyR>s|{e=I5Ngs-VLznvkiHmlOf7<Ief2#dz
z>GR7RCGHmt$!{g@7mS}*<|viA_=N7vpFOSXhkuZM-G3LqG{1h*$38r!n=bd|{Z#39
z&*<tXmD(@qpV`$>V)_%}SBdFQoG$l5r7nK2hVov&Ci!2jU&64zi(sFIH%tD%D)kHO
zum88=_*VO?S3LXQajpmMoDT}ycNc*lUv9!7uGya8chZS#jz@BSmGau(F$yEz-7){~
z>~G?&1mAWdU{t~V>eN9GX!<>*|9Yf9BKVJgA-Rn4RsY4}>F4-=9O2pN0s9AfVfsJa
zx6lr`c;R)7!+FDv#7zIL6O4b>-?{Xo|4P2ch%J}?8UKo%zWKeTpZ!msA3j~jU;mx&
zzxaPIo_>yR#Sst3LHPY&M!yW>Cghjl0qvka)Z`oGvim#41;^pp-f|JnU#xK?>WlHy
zWjMUQ_u5aNko5nceSDaX551r7-}o<eEd9^)MgCa*(?`K~P(QJR-h}=%`E0k{!+tix
zVSSPWKM6kd_!7b=pL%3E=~6G$L;C5H@6r6{_zKtmhQ<E59|zL^a>vpiN4=W<2)IVX
zQPd0e`SGmp+>eca%3Z3y>&EdFwAbwVE;`-d$Yp{pH*DSSJMM*vn*YQ<$6pc)WNtc`
z{*@g|KgU0bPezyPk0bw?Z*O6~g8rHQJ{adDpZT?`#di?_?JoT@pBX>hO8lT6dSANm
zu59^7{eLR#U*9Id|C&JlztXYv4@LXaL;f&cdtEQnzc1E>+w*E{$3`zV`N{O#<K!+P
z;Qj=rpXp=#bf@75-KDP%t_Y_85~P2&q(44K`X5}siSJOd9MWa~DvoeV%^!Y+er2+6
zp`AMx`RVLp_{_IouwKACh==gk^hdb@zY6>%=-<S9m~bNCJI-hM?+&-tRJYV-Km5Db
zF!^L~!CkDWp`odH7C$OnIl^sds+n8JY018E%#dSSTASNyTHTY}+J@SB=Ci``LQP$@
ze1^D9zC$cGu^N71c!WE*zHwGA+Lor=&*s{i+WPsmv*eq_c&k|g6d7CV=NUPN?c<&j
zkVL*_>`L_NSyPacxq!dcFB%hfbnm+`94@xLLHD2Q7015$I{Cec5X<M^#egRV%Naw%
zrM)TijI7Vl`-uEj;yR+p2)P%!2ZlW(&y;RDOGB6N8m0Xzq)Rw-Jxlw3@;zUnZgN<K
zhL`rFy(`qWuelE&QsyX4m3v(u<BMOVSFk=jR3+gFy^RE>$IJUdyjU(Oz_@<GuP@O4
z8|Rms+5Y*=v~X9Ve-V4blz$N`d(q{0x$O4--sty`PYLYx!qg|f<Km%SV|hP__6~e5
zgI|MjC5G=pu0>-_`CvWBbmFn&<3|kc-+MgQE13R!k^azYW&}Bx{x^%K|HqC;Q*P>o
z<I&_(FC34KUs-4er=T6^&N2K2NYA(fP5Q}~Wda2k^~!h;t?@dm{mWo{p7o!8KR7)*
z(EoYMq@Tl$bhZ7b(55|IT%!Ls3hgt;s{c42M7zy&|4+V0och#pN_~&G3ficI`}k>f
zM+Ni$m&pJ0N`rrn&&1Nj^S{*i1?zkFZzeye?^5`;&xK+>J%su+x(fLUxi3O}!tg7=
zpN4S|?nerPPlxHI|JTQT{&q0^Tz_BH*Wf>w{<n*#pW~nQe4#Bj)4#j5o|gGt$96Er
zW3U{~xdM3RI2^altk@m;=xpSozPLWZ3z>4^GU0GN>;B7z?&nGRmwMLv;3Zw;+xCI=
z!LfIWr~hu?+JzhpK8JU#4`%xB=eQ#H9N)gsHR*A{cM*_>d?tS&`J9i1U1Yv4v&OYX
zQXsgLgYIKPPwiQ({_~{&t5-Z@(yjem9T{VOHT26q&i&(h)Xb*69i>ghC}@4gtCAT9
zM%f@!fAM)I2;}e7+fhmbxc(M$FEmdKf3|+zrneIjx<uAz2Cx20%=6d|y&a|Z{KEK?
z4TbRq-wpnzUg$=iJnGNI^mDb?$LzI3B<rXh4C<#R8;J1s2<m&>I)h#QGVW$x;r)$%
z;r;%*72c=k7T&KKT$tXcCluZ<VTFy?eqT|jkMCoJ;g!0}oePVsJ$9!jz7DpZzkvO`
z;uPsW43b)+&fq%vUh(q7@ss6<unO%4u0x|7x%~m?SFpSvkMfcJ%!Kdah0k^~@shs)
z{D%%Oe0OW(KL!2*%sX-1Dg%By=Cx>las!`uZaZ~g7*xo<N$<dH{mS;$GU#X4g`%Ip
z`nL4@#r4DWZPd?CwZ3f!jK`(_ZtP?ja&tW@>thf6+`6}|jsGg}oq<N5)K8TB5-#JR
zd-%XN_f-6Z(EecmbC`@jrQgo?Kb=*@^~3Qe>WBN(I37+h(j0$5{n8Z=?0T2wzEnNU
z{=K`(q?<VW6V~f;otBI6Ilhs8+xVAax7Mo?PhGh6<6mx5{e+J&@AG`nKU^jH`A1$q
z?uQ-IkDV?Gb54o&`gn}D5Dy`~fbzxmD)q1i?LYcwI_99BB%gZ7m3OoYi3>(!yR0wC
z|LEvl-R%6~;YL4fzrHNxEB=07Ki=w&>F4DUCLH!d7|(Cf-XPz!jvVI_)aT?ASHHIS
ztPUD5f8<-^cW1#r`C6CgHQ(}|)4zHAga0;u-u!gMg+cuAeA5FOWqfaSUO&-~I;J1H
zyifoeS1d<^(0=vrGIoRV4+q|S<U8@heT|+q-~1lOmEfQFx!B^b3qO3$_aFFn&Op_V
zhxIM&|2`}FiGG&XkN<JU^uzuz(?$L42sz`A89h)xw%(|pAKM@1dATkkW`CIDYfLxg
zvR%GMIqsUXdS}&70{Y?l!fmBJ<NiCZpZF&o(@&}X0&&8A4)xQY<Abo<l*_i~>@Pe3
zyTo!tdy)1`xh9`@i!>DSIi76mh4&tQu$<jI^pwZ7|HSW~pN;x`$;`t3Q{q#jAEt|L
zss1C+WlLv_eDwb~>TUl%6CU-k4C#yF+#IIQ?uWXN-|nAPfbYyT@iCk*_;$Hx`uQ4N
z`e*zn^!mV@uaET)++Vtb&aKJC{$=W)>!%;u3Cc<Rynyj^mOtu;dSLxS`F2G6k?jRH
zE0wg3(T^g(ANbdy9FtGIv3*K>4TOK&Nuu4HfZOfu^rc$9*gl+r?<Z*g%l(I72<>O*
zU&Zyq_Hzmm9RT_K)yB>+e$J<|T}{1ky;>CQbEan**HfUq9frJid%F^R&OfmI+|G2e
zK1Dcj@UJBw?MXSVI(yYY;3(YTq3gE}>SsC1*T*tGn|@wAK|e0q|HJ`ZTR)}7=iB!*
zxVQDQ1Lk4fTa7-cpUp5Yz;-WjpBv9Yx>!zf^PJfK6+!ymMZ64$=|0A?d)4qi4KCk5
zbj@R%1od+r^y3SD(lvSfc%OF+KR2R0#BVOdPXpFfQBLajtNoxiq?fp|@j$&Di0~N>
z^|QPJ;Q%Kd(i!4<bjVW$KG&JBUZXyi<2n7sA3AbyP(L?8KbMH1PmT%ffBT}iez^ZF
zg>YGp(iau#$DWrehyOU&D=#w=QV+{v#~tju^Wc96q?h_hfPY=3(GU4|fZvL7aPsd2
z|D0V5{oe(CndSbndAs+Djc;5p>+keR*Biam$?wgCLdulO-Z!1r@*CLq%>Ad4u`>T5
zwB=5P;}P2kG=1@(l(`Y5`u^rV8@T+t*V<=&o;(j;?V{k|_|o@%3-3EiLtMk>HF)>J
z`zmYv=xll3k;~TKUs_Liw3z;GZWP_!FBn^B@?HC>LH!-z7smF9jF$z^7f%e5=OTaN
zdnZe`j4|Ui;Ric8O5a)O|BxLF1nX{B82%9J{)@K4=c^YL-iI5EJl@CR3JoA|;jQT;
z^F!ANC{4qD=Fmg3CsC->6~+U)FCFpp%fa#IlTbb<-og+Jjx+x@IP3{FU7m~S!EW#^
z*58gb-_R5FBl!&H8QOpJ%X%T81!xDbUhfV5yW9ta?_IK7Tn2l{?~u|CT+Z+zkBe~l
z-4?c2EH%Sd-l5*;j{acH)y4F8qNTs^*Bht)_`OqGf8=jy{oS$Gb;lIb-xk+X=LUbV
zZ#GW-@q4Sb{>b0Z`up`K#}?J!FaJ=ezr?p2r~cfRP5#>YBY#8d@8gCs{fgo5kCzqd
zFZ12TslR9m{gJ<+^|xw^-r4hu*neXEQFU#h{=(mHocfEG&>#65T7QcM9<xU={B3@N
zjGw-yI)wfE@5ZUWbP4^DzoGRvA~v?D{W~{ah`)pr$uij9p!<K_e&P3ie_;Psntb2T
z`pevV$`i%#x7*Ey`pb0MIQ7Tx4cq!7e?#l<m8)m0DW<=nGCyQ4laJvp8>jx_z?rQ-
z@;9{pcK)XN!(#gD$qqK{U)POOf9VqXBY#8d@9bOMkBaFpVwK-Sw~bSO{NA&TKk_%U
z{-%F;f%*O>)?c&zGJIKK`OS3SIQ18OrFi?9{0*(Yp%a#FSqy&%om;5CaM{MGzjz7#
zk-wq!xA6Io3fBJ-e-B+!sJ~dxjZ=T=68a;5gX{0Pm$Um{?f%EaYYO$3=(Ta`kKg+a
zL0pbsk-wq!_x!wux?<(`jHQM8%WSf7>M#0g3Ht~BhSuNq6AxQlOn;YI`U`Kmaq2H#
zLVx6MX#I_j-SciS{VlV`uVR~Rocc?b&>#65T7S>>+w7uZ`g_{aUt;r(Q-A#4d&stb
zul?`zfB!P~_x~!UzdCFDDihi`^~dkc+xjE_r^cT>|8~=!+kRYZ{_TrBkfDbgy{(k_
zx6Oq`IZteod991{^HkexTX?@l9_e~>UgcYw`}n!N9i<B}Kk5FVx1;p#K;tvDq_?AV
zIi9EDaxbL&zcjqmMRG6nzT5||!!iFBmavt4%;!ZG%6fO9FJ%3@Uhe4<pHLO%+fwpO
z=|6a$@OwK-XJCFVe1?Q4#LL#-4cC6zy_o)vYc_AB_b9HvDp_!)-z$kpT9i6E9~@oY
z+fgbtAMD&GvI?#5eDL%870&<eI=1lsj6Q|)zx@v^yq_PVhK##rLg78{IBv)LOP{#z
z^&Xu%EsY;#>;>1KX6hub{_5n;*G=MFT)t12>kC#P!0)jxhV%K1XCLfqBR_{stkWT1
zrq#1onYGSBR^n%`m6m_5S1q&7l_EU<X@$dS<~l1JZZG)r_C^nshj>HuP6dC!{lmC7
zPm}c-OI>UK*_JYY?!J>>ALeXha7ew;<@#^x&t8Ab=qB_ra&g@j<>LNp@>x>0#<&mp
zv>V@G9W(h{UpN@)CZBfibIU*17dBe*xDfPi%o8&lt~+Bos_?^u+w|vwi-YT1c)s33
z*`E>*oZsMW+cEvw=PNMYO3Z_M*oR2{aor2&uc@a#NO$zp!g_QW)`!!-iwG{>&iLaz
zdj<I1&*Wj=JPiIdz$L%SQVG6|R}XwTe4p-#AHQtY-%T~~v;Uj@e!QH2!}W<iz9UcE
z(Y5jSe?6X0y)qxzpCg~RT-SPp_@9hEm=Dxn9e&Wga_%A7^U2u%U4r!+1J9E6FJI@&
zZ*sdx_D$-IuC2c%mK|ceVQc+F86HgajGV*=)7|IihVMRZT&BAZ>}wo+7vaQ#%cQjr
zzh}95pL`Ggmm&Np!kGsCRp7_pH}6HkcREeV@58T_t@bsun`>)Zo2zSTUD?gP_Ym1W
zKc}gtuC`__?`vn*Hs+tssmVT^SKXZRFsCLauQwM2GN-1cuDQN(ZcA&m?B1U}n}G>m
zIWuLae0^<m$p<1?{*C5Z+3??(eXk|YZE0<awbs?1*woxGE6*(uqP}r{bwmBESZgyq
zw9L$lErHIjZJd)!cZ(!!)~wpr>iS&VSyn-iC(dlCtDe<#q6x6{7JueH@$uDPjy+%P
zW74W$bpM|BZoYg+v5$}SCtby-)(IZ+v9q;LhS|&SKGS|N{<ZA`jLF)r!7f8E?q*)$
z{f&P9KJ_2R3GM@oe=B8dL+%6oA|E$@nNlp@g#)AR7k~Mg>Nj(w!TWDe{*O3KWcxBu
z{&zHQa9tH$mVXBgn%w@XcT9MU*WM>V{ceVJj&}LC_lvOn+w0g}L~tAGdxld1{;Q~G
z$Pa_hbG*r~1pmEljojpW;C~8!8tJM6-*%{1x_!^xM8EI4T^#!_E`)v^>A$4E%InwN
zxnugZ_gOIh`-U62<JLL3JkQDgKJzxLf4?&CQNQ;77Z(w1IR^QOb4#dSdw&Y`I}&!3
z<%#;e6Z^0zkB9K>{WYcZTL%AhAKdJireggc{XRza!unior|TY*5ZHg-S8RfuzrkyT
ztk2Xd{jZ)`x&{hKbnfLSRsGC7cf0j+lqL=~_o?o^9Hp1=e)y}Nj#32v!(DngN;f0C
zl)S4njnBUm|3dv-6JA1oE8PwMVToJmU4$R~tf%a2>gm|)MR~q#WVOUCGy@soe%jMf
zipl!ew0tkd`?hD6{w@6{y;7@sX35;;^+P>9yZzMVg5Ry22}ftW@O-gUy|hn*`(Lpx
zerE(km-}D2?>M6Y%evV3c<Fy$-pOg{YVI@Iu$KPlokOKxC;e>yc=P;bdF~58BAMr3
zD*2`Ta(Vw*dEZ;o$(cM_`WXp1=d4wp-`dI9UY={Xr;E3=_}@+LH9T2zn+@l63D1-8
z<kJS(aPHbh-WPx0NO;NHJ2^kse!e{awx4;vQb8l}oi)(7U1gj>@8xK{Z20Xv8vpa<
zJzf9Hb<;nW{7Vk%<eVgWcLL)OzTD~+GmevL`R><hAK3o74fbK-Jdx|R&Q3C9%AL1M
zB>ToDc#m!p8C9<7k*n1H5f|;U^e2<E{_vV}<phL}^|yeXvw-W~@m*Xu`<CNy{XF+s
zRDxeg{|LuO>o}KUoxBJBH2Amo7ev8-3g=7Ee+>MqVBgp;T>$=(sL#n?2!1Iij0dz|
zZo_ZS&FUZhhc@W{Ezy7cxGuT#Gn4&Hil}$G#5eU{s{i#m`irbrXuo()9_?fZ^2OMW
z9%}N7{nR?Na~<@jFpT7UyRXSd@&(q}i~A7CSNQ5R0r`?noA;RSE74x&zF;@&+i||b
z`HcLo2lclC`xiXOsl{Y%m#zQ(|1|mPV*1}j#t)*k`SzW+YjORv{js6+pTs%m>(YN&
z<&V?9`}O+ipXaXI`ggG3c3t|9B6C;{{W)WgRQ)H=zP<(cKT`A`e=L7~WOBET>Hlz!
zA7LFnvCt3gJjdEMO?%=4&%}R(?Lzn`KDPuuSzb6Ea}50Rd_oryui!Wr!lB;UEk1F%
z82t1Bhh{^lL^w%{Uj@FsAC`K>;~zK)seknH&_Q|VuI;k+-$DCuIra}e*&_O1lh?mD
zpkw;K7yW6DKbhF%6glA2gPzOq;0ddJO#PpWem4D6|1U2xcqQLOI5F5I?`&hQsOL27
zw!hHuneGhssWKcN`bf1EhQAp6JFIxy!G9e5^kNhK67ZRB+l_+Z!F|8aQC9`$Z+;E@
zN0-3^`W1=YjsAOsP4{)!(fAuE|9CzS`wQbw89wzr3E|PcQr|omJN}ySPknQr3fIHB
z2tR~+k9_KTJnXS=jkiTCK5@O({)PJX5PpR9Il`#|pW`XaH=`BDnT`Gd`K8K%i*T6k
zzrXsywZZle+m||j;r^_Pvl9IXZ=i{Z*-Lk&^zS#5Fg=9Zh5G%{lwYu&h3wa%J;VH1
zpLvh=b<BH&f5g1UGHc%BJ4uMPS9vYyBlptY<kiEP_qZ{}C&t|d?fOD){*LLU+dYyw
zt62X@&;QYj`-*iRu69|NZ(dvWu@iZ}SC$sY{F+{=FQk7X^o;ax^@<&`NtV31=03I4
zCXP~w{h#-we<QT-ZsvLN(_W5}-M@Lq#rr$T`$AXBd|Os8he=CJXgub75`8vtlz3iJ
z;sfcw39Z@Ayzg`p|3cm8Bfd$SI7uOIFLNIkS(GN?KJuZYPw1>6=DC;d<tWA3@LDY+
zAwqkdVB|?3w27m1;r`~{`$YT;@nX3!Xm*^M(|SFo_-{YTl*0#Me;!*P{fkfX;{)EF
z<_+2%x@`YQmnC~~pK`iCV=#Q$Db|l+2*mzA`Lqix=j40v|03)T`BmUQ?i%?W*bBy9
z>4A^)9}a{6%ZC*DKOFoN>IJsvr+|Mr+P5C+@u}ed=D@=6j|AVvxeyHJDDb0j=?ok(
zq+0a9GzI;0{_m4B#r}Mn*MBnHG5!CIb_RN2JW<ZSfY0*hT6Qyp7Y?%O>vHfTV@-N#
zXI=1jM?Fh^1^6>gD)i5MFP~q?XTHavH-_UOoEY>>KJ)#<vkJpuzCYv_@~0u3B-~|i
zzx?L%?D<jb|2_%)cRNkmKmW?>-y6~~{qwx0_`gj2h{mzoY1BW@gJ8O-|839@C4Q)X
z`<!AI5e)BCm|p6C4EQe2U#9+tg3tZ$bqHsU6;2HN1}mHe;Lo(eNr3-1wCmVTUJgFf
zO?Qhw5526I{Xe%6FPt68{!lxkeV`E7G1&XWYT4r~w1teP=@t8ztSJzhh58}!u{;;r
z3D1)s$)0hcJ9mQr55&LFJN?Z)|G&5^e;M~J+(*BZZypQvfnxL<s!Fp48-FQzrt}CV
zx+8K9t`h5$&>OP9S?Cw64-iev!w))A@9O1!Wat9aPyRn-Y)YuSuX&z$PtqsUFxK2h
z-xc|Uz5xJY|B>_w?V{sAa;2XzWbS_W-*Zs$;L(65?*FCQr-(KG@%6c4p91H*Mu(bw
z(zcLZbXh+{Q9pc-_7QPyd^>X9u)#0S!6ZI%^P#X?%>Q%H4`aDu`PdWl#^k$*fa4tT
zv6HhLsK@z~;}EmRH;TWC;b7dT0(v<B?Lqc$!r(7P{X@L(1O77W{H;px-^4gH^)QnD
z(T^m56!@Q6_Fy#l)E`}sKj5~8SFhCk<M~3YU(V9{<^8;UbNB67{+$Im{KJjD7~Nsa
z57dv$r!|9Mm%vA{b-LnQ6zYrP8!?2Rgn#Di5{vI5;#({}^K}vBL^xsiKLGmmz~2Y_
z_A!NW4g>!;2#5YF!N1b-KOFpPEdL|Hf6;0`$gpwID+;a$_wmc32W$H*h4RP#;haV(
z$E)-Cm#*ws{;?hATkQj$GeSPgANz~xPmF$;uk0_TmzsVK^NIaMhT|d~x&Gp#ENA9H
z?)(CjKju@ZeqpEWjT{c-uR{12p`5YY90b07Uc<rQ^E(3!=MefQjuF1mYRCJR)EnLT
z57c~6tbR+@nFyno8U3vg#p>87^_!h6f=uf8YCi-0us>rQhh8|J5dWr|qclL~1A^BS
zxli6Abx-&1S=zy>@0JY=`gWY%<hgg7_;<v=&=AZ2F)Sc>EwhFAm-(#rZ@XoQ^AM@8
zyE#g&ct0t!DW&B7WT2n<hIKzp428-Y`Mz70+(9NHzgu@lX&~+?byv(!h5y^lQJN<8
zdtBsCcIloa*2ig)Pw7PhjRC-2W!+c!E9=#Mwp;bz^>GP*a(;X`I?^CzbG%QN_1^;2
zfB&oield^9=$dh^EZbwmPbKUI`NYROv~S60`Fj!VVe(x>u<eAxcq<q&+S~L`wWQ;P
z{%QA)M!fzYQ;t1^b1~v2zY6@XuQK6~Z?q)eEk}Ev{Auvdb#wgwUKIS_U0o<oyoCQ{
z;FogRtp~q2z5i0pU-vK*KI_LTTP1(HOFL@^!}mrT$(gTo%P|1V{QVW$!>qp;UBcos
zf0J97@aaE<7rOHtI;$S6KzqdppX1LrA$;;(gfkQ8%&@(p(~5dcMEH!Cc$g2qjfdBv
z2l9!BEw(Al7cU#S<1}FWF@5l%Sq|~A6~ZT<`M%ilUx#oi(SGn_25$?%FXd3Lbd%>^
za85D%tLJxRFPz(@^Yhvyr~dC0`<h%T-_O{*SC%dp`xw7i?1|hfMZ`YoeO!Jk(O&tX
zUXId?K_>XvnY|pPI^4IP)yq+O68#Tv2N|CcI-C8I(GtGUY)oLME|>8vq2cI%Bo@nf
zlF-KpFLk9n7Yey1zC=HHF0?)FJ^8KlFy40u%lZMKzR1AT0C`{NFL)lQkhBTyiRWH_
zd0%KG?xU5x93^is(l=1jCv<st*#FHWeM)mhKbMKV#z}gFwv%y2z2aw!zJzYAF!zZn
zkymJ6G@vqv_i~ix%lMUE?d1}d5HGv@Ui|f``hE5vl;1^Cexrf%>+EmJFY}i!%WpgE
zvxj*E{}6*)##>?W`Tk87{$0GV4CR{T1<7?5So|>j$1Oh8?L26O@4^4o7QYJo6;?PA
z@Q2~Ms+4CM_$OQZDEKd1;n#uxoW+lUpXpa<2Nr;zw&d}_|I7+!G5B;D?qy37+3$aI
ze5M`aGYftv?cYHDrpK9-h7b;2JAa2FUVi5e-knE=8u`=RjGf{8J7YYJ?aFezaGb?w
zcm8|o6XT88R^fbM@ntw8dwokiz(38>1+a%)hv35hro*6T_^$x}0N7Rf4};%6(D?UP
znsgCYe?WRYv~xZ9pL&4tPkt5nt44$0*Mt)Re}=`c1OG9$A0Vd>ewpQtzvuJ4i`nNx
zq@s%cQEYG@Qw}v;)g|+#Oxl~l_G3uygIBqAUqS!VMFOD{#dGkyJg&P*$hVP{*j~;|
zl<zGGRcPZpa6KyPZuCm+QkJD*2blYKKlz@MP+d23&;O@b_vg!fP=2<L>7VsUC?elu
z5}J(qg3sCB<$YZ05B~}nF<~aO{Tygt$JoKf3kMOHxR*~rW!u}a8D)-ASBx*k`pdmg
zHRg4^0cDQT3Cu{mzg*@cw7u>eD-V=PT;nZ%;>t;(&hq`{$dLwLY=14;zDw38*Uu*o
zG>Bui(!Ht4yvOzpgYSZVKKW9eXRqn#-;qyAKSO_>e9mvYhVno@@wWi;zT{KA7o&Yl
zKJCTn7N6yOT&z%j7jjOu_);9Q*O6|a{|fL|Ru=NvovXpP8s!PY|2OD|kiQT3caAL#
zhxXzYjPKL`NcjI7#<9rvz%S)c-*hj%YrAKPmH#_1|L5$AdbrMURA<!xkL@43`}TH}
zO7)LDd8X9S{&7tFDs{AfOuevw9G7>M?DF5y{&7m)Rbu~`;g{+k^Evy+PNg7Si1VTG
zS(`XYC!jq@|GoN{U-24wE)<dWUGO>$_8~KS6Gy2W6`Xgo%xwzwMSCuukoSd3UBm_5
zdB<!PDTa?&vk4)2sIdzxCB7g&esukCrRYPbRQ-^?U%o9Q#QGuhfap%BRQ<qovVP$G
zPgOr;u9EL139YMsI4AbQ`XT%MKS`@El-aYezW7e=gV#N1zmvC51?)W-y~gs1afh8$
zc)!nHCj5xVsx(I44_;+rn6mW;nVq-I?|0EJNxIE#jrv)~!SmW$YZsVrIv#prqkeCa
zPv(qpYa6R)Hq_2?XErr8jBs1(+FE7LM<Z_QYOCe@lt(q!x3<=jH@m5+)#mZFDYf&e
zv)`K3-8C(>CroLrZf?yohV3)LZLP1F+hSO<0Vl^fKt5HOyPsEUd6-ulcrHO6I4&1n
zvq)FpI476R?Dm!Y+h#{vn<ZWIVyz2{Kbqav&`>4smVP=_cg9dj1;J{ZqCq~JqaVhU
zT{n_i-Rv{9dS>oX_BBaNmfKLPK4hEFoECRpb?g}PJNsEp)q}a6QhP!!ZMy5|sHWz*
zwapW&XVx~fxX0|B^F6a|_QWFjE9}C^jVem-+%drMfFHVJE<Zb=<LBNXrd~T2{Rg!l
z{vrAGJ#NI<5w;WPs$J2hpA?_$#q~YW1B`#Lohv#1{IsdBXun>@JW~81!*}t5z5ZC>
zpS{-CZmrEud19A>cFO-huv4~OS|W-Jwo|u~ga_NHE)@ZNJZjmUgDtyLZrPoKEW2}r
zWoHIzeA-SeaaG|F-P?v;wW;EV{m=1OAF1a9q_@c9CyH|d*bbzt_|YqaaQ8(&&F+8J
zvcKmR_CJ?kT+aia$+?i@eOPzvWn+;!J&sf0`wbEB&p?0G|Hy<N1)uBE$d7^lIr@jm
z-p0QV{;TNkrMnyc67a7>|JHro;5-igZfHNdSP!=h{4+3)>2@>z6X4JEOgZIuAd=u;
zVa<!Cz`q~k<CJqH`19M)j@`z{nF0S(_7}kCzK~lmAL-yb1TONc4C`i+=*L!qe*@aR
z-ar$+NB@YY4DRyC(+i8WUp8L|4`WRF*9cCu%M}9qQn+*~WW8Fjzq&OW=J0SAJ;Hs|
zx<4H4v())r9Hr@|dzJGQweDwI_YKy4vvt3~y59r(U<6zr#{07@|L0lv?biJz*8Szy
z{WaG8WM%*&{H@jBz0LA}w{?HNb$=ZC!<4_yx=)Vf6XQN--M3r*FSYJ7VlaaFyT-bA
zq<<ZJUKm^cZiQnMzXWc-S?BZ(t}k}ZIxOpX@g$Q#_OC-nMY8;I1Vz_gx5SvL_B7?o
z{@&7ynE&Q@8S%VViSM(<t@U;?Y>~ZU7GL0>y&mAa5#~Q=XS*SM&Sy~mrV+3wm~V3t
z&Y@g?VeKcZ;<`Za!|=Z=>v!;3{8Ct#&v-rf->fg<y~o&xD)2L~&kp!T>#~HC_6_`L
z@c*U7kAgo7^Wgk0S{?XLLl5a?#;(M`{{r%O&l`E#fe#1irToOre=xog#rI_6@c$|1
zllZ;f<=}H41=E#e_=uklizVF;A6&e+n0<V9sd*zl&!j{5IrSG7@x*<6p<8=8O5D$v
zNXY(0q1?W{TY5SfCG8xF5z2^PCGPXfh+ifDcxe~NzP*(ER^q<D@NKd`Qi%KiqVijb
z`vAidmJ;^^#^sq3_XVcqw-WaUhHn@DLfj|VE^#THF5>BaL0_IJao=D_-c{oM!Gt_h
z;y%KN#I3~n|Fk?);=aPnav8rA;{L+){qj9`A&z$@<y|H2H*`c6CGI<P<+l>|AExA8
zCGJD?<e3upBSz)7689yxOV~=>pO})oP|A&e$nUri_bbN4uhL?y-!mw1oRNL_%ebdk
zNINnxzPUgQf$n$YwZks_W!!1jJ@-ZW61NgB;*xIP%&Yqq!)Lbz=8brG?f6XGEBPfv
ze5UW0{1GBP+vS-O@#!uXeG3tv?gMf!M0`5(TZ#CLieDw-vt52G5uYguTZ#Bg$ulM5
zGjyNeONjW4%5Np&Gbyqv5uXWprbK*t5|$G2nU-ft#Aim+CPaLOBrGN3GxA4~U5NPf
z<+l>?nUUX0#AjIERU$qk@>_}c42xeS;xi`Cl!(uE`JE-~n@x&eCE_zCvMLdup8QrK
zK11SH>3<8KuEedxi@2ow(qH!eM=^Z9HBaVR|0r`P*f(0rer7Hf`yfPo#$K24ej(yB
zd69fyNr?E2-za{Ch|lPoWsVZ@>AxYrg^17eO=53^h|lOP;$MjPbS{zKLd0kCR*6rD
z`1Ed<`3524GntU*Ld2*0TA8Cne1`8VbCh!Ul(;=1;xl}gJQpH9LlU<V@tKilO2lX4
zGMNt&%Hi`mNuLn$nOY|HP>A?!zq`y)B0j_SNPI%Xrz>G85uYh}rbK)u?v?n2Xg^ao
z$a5j$Ga-4QM0}=xC(nh5&#<ILiTL#7w-W8Ad!fWHRLXuv|1S9>MEjW(ze=>9G5M`T
z`x%nBm3Z+N-P`Xuw&?i&^fS#H-d=0BpP_f8ya^GX-uqG>g^170+hQM-P`~^C5c?rS
zeEQ-yOQ_$Ya<4>uCdIE3@tKj|O2lVa;#ML)!|%$y5b+t4-%2@r%I~C54xbX2D@1&T
z-jnnQ5ub61ONsdO<e3uj8Iib^h|icjQ_A5}o+X5c&$RqjB0eJ$wo(qC@@~5j@tKg{
zO2lWoysMPMr#wpu5uX|Ptwemf61EcYnUcIvB0l5tTZ#CLN!UunCvii3^1c*4`JDLV
zJ@LtV;?tM7m3R@CboXlVCKt1xSD$O%NH?t=pYb~+eM;j^`!R91=u?RJ^yQfn@fo^H
z@?VJf%!pql+Rv2yRw6zl;x|h&;i>0OBp;FTC`5cFC2S?)GxV60M<L=f@`Bi2A>z|}
zLhOMM@!2kMDG{H(#HU1jhUK>s@tKg{O2lVc;#ML))ACG-`1I}+JPQ$@G5M`Te5U2M
z67lJXEK0<uE5DV9PgndZ5uctsQzAa2@>_}cOo(44;xj6;DiNPy`K?5JI^tL9e+!=>
ziCc*maY=X5$6N1E44<E1el*>X$ER))vHM4<>jh6j#HVw!#3e+0CghnC@#!rSeF_nu
zp7>QFK3(~(M11<<SBdsBA-|P~&y0pGM0{rCnG*3CzESiqM11=4TZ#Bg-z4}DB0f{{
zOo{l6N?1z7rz3uqh|kasqF*86Gc3=Ph|icjQzAa&@>_}c3`y8Z#Aig_RU$rP@>_}c
zjL5r6#AmxaQzAYS@>_}cOp9M7;<H_Jr9^y2<+l>?85X}vHa=e>fZ*Epbayk{lk@dc
z*;h|wQ{qM3(w%nU&KDNL@3~i*H{yG&9lx2^1usIxuPe4(iTF*)GbQ3T`ljehi1>|)
zUnSz#liy0jZ(RH;5x*(<twj8W-jMtkB7Q?}$-NNq8<F2i#BW@FD-pkr#HB?1X5^U?
z@#{-mO2n_5mh=e`zhQ}6iTI7kGbQ4;U7jfsze)M6MEr&&Y$f71ChsZ{zwPo{iTI7l
zyGq1wLY^rRzbW~xMEp7uwi5B1ki1YLetr3^MEpi1Y^99_zfqA*i5GE8_o<qiH;UnR
z$ra`eZ{XVToBE6BONjV&o|CwQh~I=fQzCx7rv;xv#IGlQm55(gek&2bzW7xleiQOr
ziTKTE*h0i_MxH4Vzu{*DA40^hFTa(D-}JL$pM;3tlsr=+exnkW67lPZUnSx<^punr
zA>ubI&y<MYm^@P=e&h06iTDjk*h<82MBY^*eq-`miTI7kyGq1wyF61OeiQOriTF*6
zUnSzVU38^H{6^)s67d@rze*bmem#**i5GE8_n}|C^JOvo-Ua-o*MZ+~O42Jt{6=3C
zeFzc1A$g`m{Kj7pze2=sT>L5#zrOw!B7W22SBdxy{Z+yfB7P$hwi59hk!MQ8Z@c_f
zB7W2ITZ#DfBrYZ5H~cqAj}Y;jl(?0M->5uOB7S2Mw-WK&F3*&R-;_L4B7PkSONsc6
z$!{g%HzDsT5x*(<twj7LBrGN3HzUuKh~JQ;MTz+JBy1((H}kys7b1R>@>_}cZI`f>
zHWvKGMK&c~#4X)kPuK5X48Jd2X5R1zt=;~H9uj>C5x?G_L|;P0Z{|VKmlDSh9u|BG
z5x>6p%@W5C<UT4y{3gY(67idn-%7-9SmIV9e#4K*y%6ymliy0jZ&H3M5x=g)r9}LO
zl9C=F;x{gFDG|S(JX0cmBNDd~@f(w8O2ltMo+%N(Y5A>0{6-{fCE~YT-c=%g6Y^V$
z_-&VWm5ASzJX0cmGxA%B_;n?0CE_<Fd7(u7#^tvX@f(w{l{Oaq`XZYWFXEPN<CB-(
zT@1g^!T!2~*N)%zmqb@W#BcId!G{p>8<S^B#ILhbWDz2Mo!8`Ei1s%v?<x_$p7>QF
zeq-`miTF)O*h<82LY^rRzZv<hMErWMNO(fTZ(QP1B7WQDnG*5q%DYO$Z&IEq5x*&k
zTZ#D1$TKD4H~g}cCn4fDD!-M8-<14TB7Q?6ixTl0mfuRmZ%F(q5x)_6rbPV4<hK&>
z8yCMy#BW4oRU&>}`K?6!X5_ch#)4l*WXTc$Ox)7l=1}j{V)*?C_BXi>{Kg&=eF+i2
z@juINA>ub8&y<MY^y7k0A>ubJewB#dr2JMQe%&WTze2=sM1KnrzwHvX67kzE&y<MY
zl>AmAe%&V}JR#!O*SLj<-<Uj8B7PltSBdzI%QGe7Hz9E=5x*&UrbPUPB&|xsuP48i
zh~I?#Rw8~g@~#r`8xq-+h~JFFr9}LO<(U%k8<F2i#IG-5D-pk8c~^<}b>z1a@tcz0
zN*fD)(~k;1gm^8%54y+IjX6cv??nzX>oK0f`p=siWp3=N{Qhlsky(i$%M7v?U0s)@
z7ti(MdDhXdjNLX*9f#*xlh5+Q?^t+;8vh)hOYLRk;XbQ!1oQ^JV?n+PejNL>-Mh^C
zjSBE%Shq(1VeoIT!l?xR-`GFK^&TGh<FU_{=K@xNAH%*9@{N`pXH%@7@v#nP8vKvp
z`3d090RNf(NH6%uf!`JD_dM{U;4g-L9PCe<3I6ri|HAb}HQ;+&oA8svjDBW;|H5vD
z&v0tN-;?WV5dLiN)6fI`&jCMo9w_|Rfq&Ni2p{W$V&J##hxEe#0`ODTIb1&YtFiBf
z>uMH*--7i#(JxGR?ckSk%J6{hp#7fOwV3@rVW{z#Jk8{2L>4^DlGfb#@uE(JG5l5A
z$AN2AC~zY`e=GAJ!K-YW;GN^R+^_}q6%t?YI$PrloNwV-{%1;fdVV;sezL(Sz9fGi
zmiyrMxSrGS1K|zak#8FJ^uk-`6bV1Lo+P31%X!+o9`DCr#!X0nAQ<08qs@JMJDDFB
zx(4^{+sj<8&=abUfIQ2s^i3XC_<W7^d@o&u9(bSjIaMz6ze1tTMlSxh_Y?Ki=YjOx
zAo~x!KzOIg;;P{NU|D|?)NfkStM{3|^)Q6{(91ofz0|`QZ|zTfP{I$&+n~<_@ja%`
z1J`g%{zGLydGMOFUGUCv?y=T$@+s{oU1!JfNwxp+LrwXa1^ch~PoCVxiD2Ee>zi`G
zVRE`!E_5pt?OU=-VR>h~k7Aua_rbCJt-?Cz_?$xf|34{T?KM4|4OzazGkZ82Q+e`V
z=uuFfB7g6(LCaI3S}<+l@qb#L)>c0JXL~s7Q$E_C?%@Q>NBeU<oM8EgJ=24*{DIq!
z1-4~y``@v=GPu7X=^vJTXOxtWXeNKYly{~nA2g$M**;nUeU(}-{DNc3ja@!I;yPB;
z|FZiod+{7a?`~6{v$~mub^+TREazd=!{oEN+7I!j(Qa}PejVCJ@im3*sc-riIqmk;
zi)a^krx^d02&WzU8`38meggbB+GR<kD*=1=HT;vm9Q?<yAD8kc!GFc#KMwwkGUzjE
z;#~p$Fs$?Cy5JR?8i8VHcW}LS3jA%*K4QMC1iuH@O@~bQY4AIv-4{R5@YjGpo$INw
zewp>x4#?m12(*`hyJw&Wo<|V^e+c$HQ~q-BYZpy22|@eL1^;o_*Yq_e{0i_tVK~r#
z75HJ;Z=NqS5qxBuvurQ(YYE&lKOBEsuza{@nDU|LQ%3jhlKZ|}6z5d38l=nekzPmn
zxV*bbU$V;RmG#HTz)^g-NnaTr>}2_uCP4P`fm8Y~N5Qe%>lNUaWBoUAHxT@r(O&mA
zH}ZtR522k+eiisz5ihfi|0wvm^PE@?z<(X><6JoafAbTd2l!8d|Doky&r8$m1>gAR
zIZ`R`9qdnF_$$GmZiSNu|2N>fILAHLzGZ&~?fC2=)Dmw9`x9s<%CJFUFwPMmpZlu!
zU_S@pl*507b_IMF{0Fd4iTxbi|D#uD?yoop`2v0%b}^0bT>4?-zX9=*zXJSCml(Z~
z9|GQ+&M)Lo1K;kS#KCvE49)M;)vc(xJ)dUFs_rP&J)yDcSz-5>Vf$paeO8WeXD)25
zZJ8w7LS?fq{pc>yX4#KBxpslsW~=*d$vn7eW=qzmG8<#fO*Of@R@tp88*>p;<B8Sv
z`PUm~H8s}ee9GtPviIEZ+9;cUN4Ryh4YAth@y*rsjr(V}8k^n2jT0K$TI$AC%je||
z7pbzJu#>3ASGQIN@AscFC3rg}R^3=|uX|>LjKi~E#S3tl!tp98HZE&|3br4sC-qRk
zoH=Kbun(6_y!pMsCQ0T=Hbm8KR*_A!YI8ek=hRG+TiL|i)LPx3+p4L(`o{X!`fA-!
z9Gh4_-)K(rueznBzNPiBw%WE@-QU|*)9Rk&7TcGto2>KE<Tezy2KOLypRs$&2-kch
zaP46>NYw5z$1>M~ueY?Gs94B-UvOUaf`a?jDJRy}#-`Rb&tnQ(Rc8e^1y2L}vt!k5
zEwz)U&~Ns(U_ZB{H5SgnSMT;JxEoS%cVJUBOGoKl%<bAw3|!AY@w<Jc{#lwi#FR^(
zkJ9N>>5sjgZ=a=q70JHk;$6C|e?sWctO=QLXcyt#dCVFYV*RrX>R0-QxpWT3eoyk*
z4x4K6DM#HFh4EG(;*mI?h~dCIIeo2g*xtGi=S<PRhj6N_aH_!nXnbM3MoW%!Jod3N
zoN4fXhNXun_{X6>r2jhb$6Eel;6HE4xd8mLt$2O#8!Y)3gFnRb-wuAv(&rNJyIXR`
z!T)fZLOm=4|7?q&0KXjVGp2Vr{UcxeYE%Ct!QX=I1@g<xgB0ZSt@=EHbdmpf$oOwR
z-pI-Nob~(?=#%v!>-o(f5BV=3oL!KvxNqcS{l6STI&`;v<dP4A?Ymjn-+kD5QocUT
zmoKk9k`=HI(o2`+s{-ZgS79SRzfT75&b4T-`9C-El;c5n7x{wk#)iSa-)cuxfxpHY
zKQvOwd72h~8vH+uegfMgQSi$x|8?Le(Qcyu82E2n?Ux1MS0P>W?}NVz`y9z%4E}Mj
zC*-$--)x1m1pJ?&|3m+A@I%(P_cHKv-+M!QDgi#fE5>k^gI{OqAqoCsv~%fy1^8`N
zdoTt5#Ql+vI{|OtFW~;ltqnf|{uhwnLHnBf(EBmJb~OH7;59TH<pTTtE5Tm^yd`%q
z{;R;>742D`GY|#;!3mHP{$t?RR2sg!x9Mjr27fW+BwvOAv)4@Shke$>y9|8JkHkMU
z;U&OFvYim_SAp^MD~IhAEPo$kd~S7%l)umN<uCcWNcN4sc#kg2pNH~yJj)a84dZQO
zKNtKmJg~<rLf~hB3yvF<ga7Du&>zl)cftRVdIg`u#V1()E8xF@{S)|?;p^;Gf&Ij^
zi(&Ai;B!2r68!fOKK*;(&td)}z2m{pjWb|8qze4pI0N`b+p<&<<&Wb7)8PMYlmpIJ
zM8W?(aKv$jI`CJcJ|RB_{(Y8y7J%Oy<%Z$=;B#Dp-)~(E{tEVcI~n}8gU@jrALBDi
zz`qE%rrwg^f6RU4$d|{#e;a&$pI`;}Bhc?<I4ST4gHQh}!M_gkJkAhPZqnelV}6f%
zUIo4nKEug?{~*gf<Xi*((=mfjj;nAR_EhMTeA*klmUF6fo*{7EGw1qkwfz~MWWr_p
zbET9|_n-Ol8U1}E`&NIvOPA$yG0G>u)0VW#=XBant9*9uit+}22;oo1I32?&2Y;5u
zcfoh9efkyP-vPWboG|zUEqhT3{&L`k{yp#?w!*0bKY?)q`Zro~oHE)Aq-z@dKXqVX
zdZXZf0{hQ!>cBtMEA$@&e*x_a!e0RXtya7~_`P8-82)1LPq*5E?chI;@=yOuz^^1O
z5pNv)h?OtPz<<uN*9q|N2aXy3a`5NF9@*_rAMxh+W#$FXvZowR`V@NeAt&3Pm*U(Q
zyZt$PSEFaPGui$e&G8tV55xB7nw^aQD8^~n{yZ6Wf$4Hl-j1~J!}H`Gx9}E*|CGhA
z1b+t$51v(?ebm3@a4%@R^Q7SUAX}mR8$Q<*Se_3OzRV!E0{KAqrtXFK!()f%Tri!;
z4(H7t#y`hjLwI2t+Pm~`Vso4efLG=d%ZYFCxz3={%I_$`KkDbmKg`qDfnR0$kAWYu
z_^seygnXqvX1O|_<I~o8x4WEV;`Lys7bBd#QQpXJ2mdU#zu}+d%Cr2(;s002Z-%oB
z{8ynL@)O{n06uZda`igK52@z|;eV#3=Op+CBfqGJ72qF$egeZufqyje-NX3(O7QJ^
zDGmNDD2K$uD)2`l-e|R{=QH4+w!P7_yRG4~e*3popH~3)m(spN&jZ0f0_BtSq#PNN
zy`tz3kk9t_NUL7;;6H(OJpEUJe+ld$`4RBDz`m0|4SXN%Q0gHH{$h(?2Y$Q7kAdHZ
z>1BNYKGc_U+QH|0cfWGZs$lzkBJ9I1IzK3xLi-TCDv}L@?O3|3|HCqmu2&d(jN{xZ
z!<BHxqMV@L7Q%z>Xcw>_Ru2B3wl)5v?;zj7Uk-lyZNskspYwq3Cx#ye|8LMc!>?pG
zDF4n!22URNVdOXcF95%v#rMJQ4!h%_U$_|jFHqhXP8|G~fLHRDfghngvih|(sGnKh
zmc#$@66N`h?k4@jSrY!2SvXz+{=ZNj*pEzsKaJtvRoISQL43mwu7dx44n(}*e+d5m
z$amVK)!?6k`jGsOz;|Hp$p0ApnJl*m{}b@XGk;<CKLy`Cp->)a%4V-uC@1`9z^}#p
zCd=U(@E=0F?3XzxKVP{feBzDv=&ziAL^%w>|Az>l<3_BX54Z3ThW}$NKJC#O;Dq?0
zJz9=@C!h9cbzdVV`4NO~&x6w*oriuu`(Lz2z0nTx@qJs`qfKacU}t@V@1tEz94-dG
z40@%TI(Yu(#n!JqH_v$VmPN8Z^n8;E@+*Y*kAuCzt+Pn(gX_EO^P^9<{P(5-Ljdo~
zf`Z`tw~sHpA84%~%ce81-bv4&*YkFHeZvI`V07hz3f$}Z=HR94n}e6GXAWMvo;i5w
zdgkC2wchuw`+G&S;QFtrl72rRe_Ymk1+OLYeo!Bt$RE7t`sc`1vffyT>z|#ttko5I
zwO=qa$2rbQzpjrCUb;RycyT>+{AyWmEyVTDDG6Jtm#kk4UP(*-hb?{eJRs=XaV`~k
zg6Hi`$NCETYO?OTVt${`(^h&$u|o_G<E(ahov!~2Tve9;iI)E(tovuI^t4&wt+epG
z+LDj!fha=E3ZLr@W7o*~ccJi3^l9AT*8Nh^k56MIUgDO%R*QT={r<^H??7w)UvF8`
z<ORa}m9-u)bdo#|l&{)Y;r+vX3gz`^V8D*^AVJ)pW<3uLD15)vT{#}m4n4Si?})aa
zQimHm%kPV;{qnEv;;cgZAPzf*VG@Tf?b<Yi%kL}4k27|Ua!h8ug7yK$@9vm*-5#bL
zL%D+XF*LAefqhKLeb7FJ2g&{i%O0(deT?ki(^;E+bocG)tj#{gDrG-I0I%%}&HfLj
z-QUmb|H$2sF#A1tukQNTM{ktui3r$7Z*)(mz&?)c=>+X#Xq?y}%f1BdW8whW(;@Pg
zvX9Pzh4wKd_d)xZtm;`{AKgRD{*hq%)@mOQEwqn`$?LF>k)BS_K86nK=>+Ygdw9<R
z`{+*T>8y`^Oiq<O8-e^xAJNkZ+DGrmp3eH%M}JyRCukr2qkB3*`<R^G(+S!~|CpZ6
z+U#TW7d@Q<`*>VWCukot@_cRf(V4Y=_Ay*5_zBoYe~!ez7W<fLlk&6y?W4bo;FSgh
zAPd?@cW_T<ZT2yGl-Q3F*D@HkGPvbS7W_BZzg)@jC+T0hpXB?O$y<%R8;)@4vVZAA
zf6HO-IL|;aD%dYUe~!tk!Z;@TPaa<IFrL8neiitqqFvAMX@##tJKBB0^oMA#x5xN(
z^gP3lBAf);#on%l-wys*w9^^>67a9X{07%W#_1pFW&dLt_~q;eVEt?Ye0v@4a`2-Z
zFGf3^<3Hos?*Tsv|2v{z#eU%m@Y5WBfd7@?UxfZ*68zWce@jz8k)H<Np5J&E{LeY=
zjBr+ge-ZjacE9jdjMtGbkjh>e_Jh%1WWVrI&&Wgn>=!05zU*23!V7mb{)wM25dM?w
z_n@D*2K@7S6sFffm%v4Th~abv|92Qqi~qyC$A08{2#4cuA^5+N<C7TYU_X-mb<StH
z@c)B#(BOY;;hascGcf+<G#K2n-}xl+#l?4_E72Z)$l@;mKMb5Oz01Kr67zxNKM4LZ
zj*FswlLUVv<V-$c+BaN>J_+Nc%*PD;M>)=caQ+4UZ5U_r!CwRZL%=`zY?#I2-(h<T
z_AG_@I*z+?-Bkj7%2N*iKUlX8{@!R8vS03kzY^(nSDN&4-ATEnpK0*l&*DeHUkH5C
zp45TACHnUaKL$SAk@1&IzQ@6LcdHn%`yK-a4c;?6boj_oqsNS!IB9ZZ%JgIU_Ud_T
zv~FIDTjB2EdTzu$rhlIS?tqE`y#~62Mh}`jXkIuxWaw~rggbW9xSDaZ$2E;>nb<IK
z-o&PftrOcO)l90L)Hr$8<c7&jkx7x7$gD_hWOk%J(iCZ#QZr@llzCH{rcOV)etN_7
z*z}eeN6e_6F>}W38I3cVXSB{}n=yaJf?n>iy{hNUiPaC7*V5S1)DoN5EW)(4oE$!R
zuTy%t?t!j5$rZ77uW(1Y?kLxtJIb9ms{e4e|NLIN_1$fdT+Oow4<5YNkfFnd3>`CO
z%-C78#>Se*w#^w|TXVpn6DHKooX}i<U~Owvb>qSE*Vb@wTjRv)rirzUvcPas^}<O_
zjgy+2CRb0MJhy3b)BHngS|j5|O{tb;ov|rxjZ^E|rnc1{F?HOL)%8c!&N_B@uj<BG
zv#J-?HqM$;BP$MP%c@QJv`S-jV`F_o)6C;zHKXLiERWvP^4x<h|9s>jw~t6Xa?~hy
z)Tq&}=Xvg={RhYzP1mh%b=}#qQ4)gd*2{fE^KiFmw(B;@y@cVm#D)uv+HJ;eyA6<3
z50EtPaZuyzJtW3~ZlgO$eh-r0gXhHN>@7(j?#4zjim`P~^TyRx&l_LeQg`5?2ab~@
zFO)Rb9#Y>pYhrCn%S2hFDbzNpzPd?Pm)1|NJ+V46c4}2b){ag&u{t)juDX7zEH$0c
z77q97Id9alZsRBsclVjqEw#GrwMJIw)>OCbB{W26Z=rpJh6)X<sT1|c%F<c2jSFiR
z)Yi;yYpj{mR6nb(sjazwRzt05tMd4krpCD<i>?;cuhKNia@j^%k=zukZH$QwvHDo;
z32pVQ`q7(~nay)sYUa;rscSk>Ru8x85?EQ)TC3|-v+IW?=X<$TznD5o{#EP0Iip0!
z16}thy%k|xx2Camlv}5_|Bt<Qfs*Sg&qPmk^;<1<>t$P(v5#!YZW*anRbBl=viqe+
zTaRwkE!*HQt?H`k>O$33MLi@nFm#)66JYKTCy+5A8PX&Z!ZLR<o?#M_NdVz6gjX0(
z0)$DpH%dr|8JM6&Zia-#Soiz>fA4cnRd-tqxsznA;Yg>>-uvwL{@?rGrx*ElaSqXJ
z>MFn}fgh}v>z1>xKju~v^Y|%XQL4;bMdofS>cK-U8j1Au_e7!uv4KI%_ffofXf%~e
zECJTCxv|7jb!iL^$Ct*ci`mq8u24=NFO~8I{1i$jOX>8b$?`<Dbb4`#e_E%K&7a9G
z%~$dFbP_p0VR8{bSXrFPVAZBd+2zDkIgv@9ujaGK89KerCN7n-vx%i_?$Jc9iiL?q
zVpxR2l|(61JeDYx63dwUB3GoyB`NkM7gO0%lHFKH<oHv~Rk#-2nI!%iP^J*=8N>`m
z`|;Bo!%u%a$LU>SH@FV)14rXriC8(8O{T?jo0C3x1%H+)?REo>+uiOf1ZC-yi#0DD
zbCd8^#&6|nW!OztOPKDZ!w+Fbi-#XtI_6$Zl#0g=l!3ct0CAz>9-$BLk=~&Q=Jn`d
z0?%kEF`rEWd#mNjSShi%lpRl$vWYwZ`qENjys(5Wju(pfqfQg)T)L75ZUY-nPMx2c
znmt*lEM}9y^Gr2&DuKU*ls}c8FQu=XS}rc8^QYl%zL-6|Sa|KF?3r{Cjh$IeqUJNp
zDg0sqP|vyQ(tNsfKK)wMF*APZ_=G!?&Eylg8TlhhAP2}ZvyA>EXA{}EGwE5jRhdoa
z&|jcUBA<BTHT0POk?O+2LaME@TuhgVHvMsq?dak3LOP#JrwJKuTHX>#hF!eOREybs
zIbEt;%I5Hwv6ixV{Qa!F^ao@movf78N%XOdQ6nt9;)+$v`d6IP*Skz7YH?<c_NzZR
zfBWM^m2ArGE+-S9FY-9(c4LN$psr&=gk%*Ta#PEIk7MF7UY5nnM2@-n1wb%p(lJ1N
zd-wF{xykWkhg{+{9_3{$=ppw?B42S2M+PFeqC<ToN<#zvM3~Xb1fTp^I-g18vRG6O
z5bK!-LW~#kmoet?WnfXEGLgmvq$|gBn6pIw<kZCRu?r_pVjU}s2`p<hUnqctR}-b>
z)1bGBRN^cUJdsTb3W1&j$N{!zmlOG=L<xkvfW@3DFD3HJiSziQT|l;(#Y73^@VJac
zpUI|DKsjAwEOmY{kxP&S;+Vl~0=+F{X0!8YR63h2;ct{BzzWI$fmiD=+frE1lG}Ef
zNO>$VUno`5srlteP{6D3bmz5@D<ptn^5~B*XksQQf29k5l#5q3kMh}+F16y_uv>~o
z_^uR<>LaF)UVX&%(I<~V{<@_heI%|*Y#s}X#CeS+^^wX-VoGD_1wvA3A(uc$N?9#X
z)+}X>Rl(Hq8RO2cFoy#G1x!y0t4=;Z@B#&`<}c;(_uH_P<!nI?cAy*pB$504yFhVq
zZX*Mp20llmcbAd{{Eaw3m%um@Nz3p)pT2^rFyNK~(ZGp}G@k{uf{6wcB`+O=d?M7c
z`;fbUdQyNra+YEDNG6+_14B7d)n|NgFh*KET3SlyvD#yp<~$&5tWYd06&4C()r`c)
z7t^J}rF426h@AtmgWQlN8JMURa|OWCagdEdF`GPo6$ptx!v=|>L>N4g&82xd<7B!}
z%Ao#})z<>JD%q3O(o*%(V)j(F1Q^OE9!XqIu-((-4~U;mEGHJ{&ScM^^+aiI)I7(|
zCKeMQJXr`K(msgMiEKKTn##?MFJ>=grxT@edNN;`Uc`#cO(!6uR7-$HK<az~lTMNZ
zA_Q)coqIH!u0V7t5n5-n5K<DE#S0lwQV`BpPn|nHdG5s26J|x*DMKA@Z*Md63x<uO
zG)b^%l*?9@^El=+hxG%^O5`zK@@35AC9Jyq6+Z(XJphQy!11(J3-P5=0>!%AV}PUk
z%6xe-fj{%-b}tl4$#m)<<Vyeq8OA(MsBozTqsoMpJY>K$c#OU=Bnfm;h>~F~Wj9%@
zg4YwOP~ZtlP+;Y0h*1kJ$tzGm{~95PS5Gdxlm*n4doa!l$yqj|?5eUTqK5GOBV_yT
z75N)@<zol-bsv9x_WUUL-Q>*7<hhdvDS*kWfPpEv9&!u06yX-cZ#WXce+p)j=SV7j
z`3OauSUet$lgSOEpBUG$%jqHYJ~jr4Co%VEVsQ*&*QIjxQg$4&S{75ZGyy&%D~7*5
zs8e<-eRXako5@xt^8i{f;uPQ^U0O&a)2A1!sl*jfxigdJE<8RL>*+rWVz!KX3Fwk3
z<N%@P67zt;Gy>J7vuSYp)N~@Zv|LK((*j%<fM+ua(9SGK9^~JOz@e}`0x;xXJe2<F
zNE4O9QZ`vA4bI~*5k$IdX}(%^!QZgJAn^EOjQLcuuvE;YuYv_axWMSsNGUE0tWi#&
zgdD->E*-J*B7~Z9w_rTSC4o}4Siy8dJAk}^CebncokfvR$l6L^ji5asn@ZFWxN=qh
zmwWQym`mkj2H1OJHqdJWaU1Bffqokpuz^7v7&3u)#0H`^U~7)sn&Y<SxUD&EYmVER
z<F@9wt+~(E+-Ga<vo-hGn)__ceYWO4TXUbSxzE<zXKU`aHTT<^`)$qrw&wmg1p-oT
z;8h}7sVWK2Py!G^x(La%Eb0q5b+weoxj-V>>xg&9B*e34L^BFL-3JkZU_(BF5O@dI
z3n2<B8OWJli1K$Slde$t0YVn8NC{$ZjtUVl@!Zs-$Ip))>>eAPm^?Re{PBZ=UgZk@
z8t0L6x{@gss>O0N76Wsp^wA%U^!ACw4&?}>lN@OxT?DKE`%@EX5M_{OsD@K#M<1U)
zKQ%sc608t-0up%|VnU(32*M8uBMVRl&P?S}bCWoQmrXJ>4Y6E9v(?figepMDxwDDN
zqF~Yq^8M+>0vHcv%$Y>B1Z@m#f9@;~9!`LSYUl*#HBrteH4urtbOM69!J24n(1;Mw
zFpU&}P$o%9jz=Uj1q>T#m3A{l5VlM6iPAA6QGhRlCxdUMvguSYhf|ZHjgZy>QPX*{
zZR%6QZl(-^pAw;@jK8Itg!YBwev6Q2fKiDQC=6INXHBvY6ev3;)0rg91ctn0kswie
zOPEQD%*j=kjtQ-UB#<c1<#1k+8dwgCffIp3>vi}L4WK6^d6E-kUZetn0vH4^Gs#N;
zNh%U11A>Nzy4rvIp;y8Q;A8sy@o^74K#nY=V5)i}ebE6`;)dOYQUZUe7J4@Ra_iM1
z#34ZQ$te*0@#ABo<EJN6=|ToVGPDYanBZQyM`otZncytgB2?!&(FCe#0~BSf_H?2;
zH=fPUok~<^AgJ>X*<u(og@wx8L;-)(HuV_fgnR~hD%r;tLCod=6UlU&jN;fEipgPx
zjmi9la$18k6n*CAE~m<cIj$MVI!;Q;q>%Jd`GRK8;1ZrdQ3jbYmAyPq=>{4dlsU3?
zOsfkyK8cm(aOam@1fj3<I4Q($kZ#p>79gkN{S|0U3kYF?ps$xHO5~s=qedSvt$Yi}
zjQT(tNbSueMWg_0xumcwGH-4H3z)oA#PMCIsuc)^TzY8u;7q~=3_b6eq0(=GwJ7tH
zf>@r-DUgazDpk3n=?ZWP_;gqE7$*=Ie{Gmdy+=+YAJd?cq9+XZfN{r_GUJp^A-aoj
zNyA4s!7`&{o>D0Y;1Ozh?JlSZIZ<I@fdo$&jgUde7>2-+{3Y_9?7=XBmIQLS3|&_G
zpg{ZB<izZ$g9i!X%mUfq5cKJMxr$Y!hNXB!3HT7uGM5H<Mfzd(#1+}5J=z!R8ypxE
zb$XybHq<*57e#C=o662X)dE4tO&*zoKwU0pF(Z#au(s)E)6k}~pkT}COVf}<uPn};
zLjN-7b>4+^%oIStX28!O=FKeU3YF~KxkLu)@O&1+JQS@;a*==sd8N2WYZ1a3Bj_+J
zQ-=v+*v$I!e6@mUEM#Vo4x08r1<EiKj6A{=>i};l7X%V~NdZ#i3KUL*iX<1axfB5t
zfK2HE7}+yBH8GV+<Yv!Iz<dWy3lfNHh*dj)92$yhE-Yob=4O(_zmjBIBp^al;oqaC
zq6#e#VoVy+uz;*v#;`#~C}9$bAq|Tj)dQmh1Swe+nC_O21>p6VLMi@IGSx+}SG#)c
z!Q=HXn*jWPaSNrw64XM_M^7+?aQk{_Xo82LMrFaCMVAV8g`zEIF$a;-z@5i~b<q4<
z*pP04(y~UFc7jy^-dLwmw-m5MGIzU=RLi9!Ai;^;kxZd?FdFY48i<K@kF{2-10ne=
z6{NY-*-ME_)hsFEsVbCy+HYniPoADUb7t73c>|GGUYML6c4_8oTPl>&m>VH{gp5V#
za3aPtB4Hv7RBBpD(k?$<umCYOr*bAGYF!zQ)y<_Zr*m#ErWhgtm~hGi9IPhSI|&w9
zPMc|4N~3Yekt!XKUSjlDut<cpD(dL*DZ;UGX-O!9(8x06k{p!|S}`ftP@Mp292Tlu
zB0B*OrCxx8_)5{-t02=}cQBlc7je5GM5o<U6{rQhD8Izjw>l9_!mo#hYV2&40&xOj
z2+~{^$O$zE3;;5-dsyMc5Q8J>N>Z1M<5Ei-tVau!v!g?if!_FFf3GOWu-5bs#CxOt
zMnwS{l@czoX_#OFXu=p_;K^1HQ`HC~$7+w^djnM6g^{QPG&wOh!;d0N!&aLv<>zLW
z^OeNaS61=;f(lFnpf9CMSpLzm^H_c{nMe(kDFpqv=Kh>BM*1m;Dr7@eP@sb{48Cpv
zyuUmfJ6;o;6hx^M3NF}WChgA`$B+TLqx2*-mBEd$co5z&t{fyugXGd{P=N%5CpH5p
zxs+a(cHJu_kVS>F7>HF4#K%IN#sF2IXzT;b0gwOzsZc>gA>9Whda01Af}f@U!-$ou
z$wjEWmtkZzYOIiz@-V8XK-n>1uH&Yb0|pCIc%iuD3D$^}U}7``lIy0F0=n2TCxHeq
z07d>1GMX54&{7$CrWJayQDWsd1=ec5oLETrOsnYy!Z;Oo#lVzsPx*!jb+<!qrH3dh
zw8uRbALt+K9f<Y~#zYE-8CVH9ku2>VwKM!E5#yoJneoZVIZvxq5IRE)1j$cp^a8DM
zj82z1*Ckj!7IQS;shA34OPTOkB1J=D7HtTA3glqg0U@M`5{1%<WgwLmZ5m|X?Ixlf
z<kEs)S)^6T6N>^n2c%ALHc=i_I(c{r=FUvPe!t>aK3(B_SeC){h0s-9Qu)CyFeP0G
zX4vXDd=dx@0iW2w1rI=&Wr=1X4F|Dg&P01M1t3H=>G2nlVIctnOW0Eq0|@lQ!6on^
z8COx^WwAgA&$vZk80Gq9NWC;g!~Oz>rnFE&e2Id3K!&koMmRtjyHQnGF(^}w@$)c{
zQ*<PDT#;z3H{RC|NhC3!gh?mXI~b1+_6-b0bqi$}I{~DN)=J}(6<v=>kU=nw+#GfT
zmT2Fl&cto2xk)jR`|<N2;Fr^9K_02L&5gt21-U>0XEX;P1lC(@qD-DV2cy?8x=C4}
z*lwp*unJpx3xF$E&Fn6KfzYDU3JVHYg_5B(G`Sr3S3afCv@{Ro#HLXW+zU{KEiMQn
z^J(bDfYwR@N|g{92y#X?Au1#Rlc{vEkjs%4nU&693jhdr1r`?}cOXiOCBav)D+rgg
zfk4u5E&5v|0&#<I2)WphEz2Wqyj)DBVG_4G0mODtL=Z0v(K39XE~bTAWEvS<%0Ff%
zK>tdZ-%47fqhV~WEzLpVy?o5bJf6&_xm=2tf_xrqx|w0u%>-p3;7-wx=b?U0Ei8EX
zjjhIula>YFli49oa3<I5R-Sv13~t!vsyq=nJoK6eF${xg3e*a1qytL4iLj73h_m|j
zBXYCA*K{a6sm;PlU_L~Tj*U+oKk>MqpdfxV8Xby7hGK(5eSHzxBJ3OLkHq`q@qvLp
z-QWT?T1p}sjyql`(Xcg{FIFqZWuwqzwp5gWsuZElK@DFdCd@;OV!{lT%1;ox1Gp~5
zds^23>th#YFdNnohlKH|bKtgwLX%^XanG_gL%A4`IXA0{e(pjZCgU{B9ajJ4)Xrw}
z%M{YbDPA%mg<V>hdd>?s6_lWKMNUqc2m%cU=gX}@;aly!*!rSf6KaEkjqZh!lnD7s
zr+|Y(Cq)ED_frc1(yLbzm(o?xFm5=KeTzs}DrLcKbGh0C;10AVVjAflxD}W&WH#M0
z14{(jCvv3zkf$<v!H@ZDhLi6e7I;GKz+WbeW$|Sxi-15FvTqlb{cMgD0G&=($~hXf
zxP_mIfPl$rBLdwTlWFw?VSGK~2_TXx4w^6t<*X(F{s|^w*oB!vcA~umQR1nAsB#7t
zXtzi}Vhr}?;d9_dj7XTix`>Y?k>^-8FUm#<RvQs#EYlLB`8*Uc2nbMtD*FGBvBHx+
zXoaz%!APt(2EsnjubX|tn2}}I$kigkj3=rfgaF#PQEcdO2WEP7X6CV}^AHhdr_LXr
zo0vR*{=^J$4U}~un^Yipl<I<riZjB#3nhY9h5|iV9H?*lDsVSjAc%`XMM(s}kq58G
z_>ge{o%i&?F@Oh6g8&{{F-UPdItbu94&%Ty8AAobg*h#O=AdLi?xO5~`ZCF}9I8m?
zr=gY=E4k%kSuvIXK}td%FN59ZU2NZhWhE_4NjGa|BTFnlg89KiM{21wq$<KWs<ZR~
z!Wo1aw_3_AVM{ZM9eFSnv3bJ+Uw{}!wbzIgX$Td%UF$<5cJR3og~_lSrxv!3LmaJ5
znFV33P2paENf~xu4F)R^SWaiiaI|u<wFv$JR|Emk5o$vaE?}~w!AVC7m79_m)qj;Q
zV3v^$Ls6F8*JI+XL=e!dMN$KmuZr|VG5SGOHK%ETnNF7|d_eYaGlw72jR?h7BvGfW
zNmBhaJFf~+`pE37k3{1`k!Z9ZbQ{u%?o<!N`yzdV5m4?SK(^>c<FFFbKVWVY+q>9#
zf#x+iF*7%YKxuhyN+!Bcf=&-?q^44S1^WoPCo;<149!5g*ONYGb)taH55yVPMgX8F
zKO&qMD<4eZWNU>5pw%4gc5~2Y)A`F5MpR@G*ALMyuqeb6f$<bj1sl513YbKJg^DU@
z1q6xLF$vI~U09|-<q5}zl05g}B}`&T>Qb%=96_zvhP1ZBYTl!Is<sI7BuG@T?4G(L
zslr`T+43c5`p^I&V8i<%1;S2LG(sq?n84SXBx`G=npD7c1JP5`tVIT{60isgf*Mu{
zfh`S*Qd}jNRKlkKRVENzw5S!Zbpmgw29Y9^$%o*TLNYE?Tv`-DE*3iXA<=u)dRVqx
zKrAun89-A+a_H}n+A_v+U6Uk{c1^NkICTqvOc~$A<7e?i0s()m;}o(5T#K3~xVcc9
zG)b~pmsCENg_s{?GBb4L@p(p4co?NTkBz836a1@u3HB!Jf4~rC72sMWLVE8BVwK7=
zh5*ub&{HwRjfkrXJyX~#P#J{a0{1_SU8IKVs$&t*2nv#AXLcdo*Yc~9B+%{TL9CFf
z2<_KII>Bz3=S%4$q$SvXEgb0`i1o#WB4AYU{^*e1ea)p8DqKD=W!mCk`9GdnhBpxq
z{1ga!A(MlzP?;D$i>0hV@j4xZe8tl{0%d{Gqi4>ag>l0-(G$y$GYv#uc2Yo^XJAwG
zZC4OffZw%gSKzdiOk0_3ZkkGCRav8M1c>>6&JYUXwHXxUTrmO)MS#?&WI;tOrq$D9
zreRe`!{)2tb(Nm^;`+2D`b_Dbu1jVh=758Oy)0={Aj1c^F=<$ej8OIkMEj(uqI>~8
z;wBQr7g~!oEt8ysvsH%b4tTbjJ2C~^05wcy6;y*um_hc_+L$dz#rE~Q@I<s{(_q3U
z$f7gcZ~|?EKU9elEQlc8008L;kq%%krsn`5m!68l?ge@iaq~w8y+N91KbTKrp9KmM
zc1Kdyh@d1v6%`U8f-FT=%QC5`s1l-lgR(QpkV=z29WpwYF~$jdKW4TcFgXwfu^+(R
z)?s`a>V-!umLNI9&Xb&}RN)sV@)Vo%#9EIIKyEWTl0I#)EF1fLUOuq|=^jQ6DNr%T
z=w)`c)x${`9eiDt(W`z2M?vr}(H|-0gA!t6#MjY;`g6mdTObhdA=JqF9RmvhK>+ND
zB}?3|Ajop}h&wZvvjyltzA^FG{!>$Dk00qF$wlp{!{~A;9UbhC^~d`l4a9mQLw&k;
zJk%S7aN9Qk($N<m7}Ra#QEY*V8$}JN$Sbc!k72JcrYW^Qz;O+JhfC?X<Kj3ZOdMMN
z25cPa>|r$_3eQ!WyJ4<`QCgCX%u5lq!VkWR50z}H(N2YRH{Lj~Y8CSEkKqQdSkHBH
zOi2Scn!$a6K~=ac9~Q<>Mx0OC%7#^6c8lI-SWpbdwh1?Iflg?WHe%2#xDQ(OiU0;g
zB689AD3&O}kTPua7!e@)5+y<|FZnrEiixmoQH2Wjlg6sUg?w&V37NjC1$20Z(#xba
z(O55Q6KB#Dm2K@_jfGEGQ#`=NfJBSn_NbQ#4-`dRunjNKM*;U3$B=f<L8lRE2GkPP
zMVVG5Jwbz<wa<a>SYrcn!Un_XFqS}Smc%PqQEVrf2Z|hb-;V%?6PJWlir{DwRH@0h
z?uSvrAzy%p00@t4QMl2K5@VOMC3<_*?q8r?@LO<X6}K=hNP_N>93*MkRj}-~2isF|
z><9J3VPT**GBD6PWIUx|u@hm`A_$Bb;I`n1Gqa~poPikvBLX!PU4ndaW){*gZE%G|
ziKG%_UN^Trc@YqX0a)7?G%ipuYuN&7!)FPABA5ZOPByWHN7!9142i@t1(#_xz#37)
z7(gjTiZo@VJ0Ue-vJ}4O(_mR(R0xW|X6$m<WQS5nSm8zurc7P30Q%M?lD3~bC?}*$
zT8?>gK<W)xj{`f^b!K9E+wfe0poWn#%kU-;mI@TqZ34oLCz;ozmaE005XV|XIGZSL
zAT|O$jC@JUpY<%TrhfzWJ+R6`=S7Ra)TM}r3>Hd-gL<howBAdt*;})zr0oI_Vka#3
za5X@W(pMpYTURbGPmPU+u4e3wY7^35NFtODh44Vw7X<+c;>`|_lL<5Xec&N60(1$c
zed|!8wrInzgpDYeaZAa=3nAEKK{8|uGngFM<%l;lq_^Yr25?qv!-4jY%q|Ex6Vr7+
z*?j_bmBHRff4sN9uXnJ2s2?^(@sGEYTeFG}jZa@tEm~XvJPqqiAwz%Xxv3IlC~%-8
zbW)(;Iq(K+Zh*-Uo3%nCfq0WsATmd2IK6^Cs(%2n^i{Ma`Z6QUM*hx=WgQqpra(u8
za?h9;WgzO(*379Ap%Da)8}=K?jkODAxE}BXoCb$Rl0YkLV=1Sap|6)m2f#^X9~ig=
zq*O8j0LVnz*IRL9e<YKXZ^s*HlUxg25;`RDm9|P!NPmw=1wBI~s#XTX2J?anOh9DS
zGDSI|XvLB0WQk%!Ly1*81v=1oz&Vw08gYE58&3^IvcRWlgr-C83;O09!V63eaDYT-
zYm+@BuOSmgLWF=wR*hMLZs0Q$EDw^wt0<Q%_?vy}8W`(=2&ojUHrewcwaF@bJ<7eE
zalna1Y9b5uY_pZ=C9^Yyg>G&h;*3*}9@JnvT+^^$ibE1+`${#>b%;$ig2NDGCb0Ki
zfs2FMNI<bKm1RFy6$~O=QFo^U8=&X|xsIT5AlYzC!SZUJEvvX`R0%!;0zlA85YS1<
zEiI!w0+Ulb+SeP44#xV2um>NFtB(#hOb7b=BSX>NICkSB12Oflkc|OhSX?A{JA#_>
z01a_cg*t#)iP|?t1=-0@m;DaW1F_=ARH#&1Y6!AeX#wEyxgkx3OpYz4E0o_biQrwn
zMHQ$<?pDOn71`hk_6G^<kB6a%2T{~ZXQP&05Orw+k}lQ~u6jMuQZBo<s5Fzp9`P%k
z%6OFm_l<N)k-#APxq57ern#tV$dJ%oK~6<?$mf<>3MdR4hmx2y3ouH;H8oEwjfk|W
z(pY6i=F`lrTEn=3rc|s9sDB+KWO|4&xL)V-Hw7_}1&ZLrNcbp<9~ul>6ayaY_R>LG
ztXYL~<8wtog4*;&t6s+e)kKD4b~q71iakpC$JezLgVY=uF!i;o00^HL_`T!!2ly;}
zVufzd9s_}l>U0JyhLg+6W06Sz;YjpwBsLrE8;-<>BYikG1HbVYwt;)W;kZNG+Y5!O
zAIcUFYKVrU`wMgE2E0!V`Scl%<$-Xwp|A`hlYw|>IFyLS?n!Rx3&+wprX#SM8UXhU
zWJLZ!5d-fa-jpFAkQSk{Q+3phrhtwG`pkX(lG4iB7x2!qFH*EKln(n8{;)O#JGKaY
zp#5O5hYhPEAX%e==Z|4Y(R!#9Qsi$X>T+R>Ryjc*&Ay1T5>F(o<2h!J;llYd<T}0+
z3Pn^SaoZPysz~-Mfg(9ko`H2mU;s-l{R*<AD?*ZBQUeN<Er)oNyrE|b`XBK83iwLx
z3kaWeQt7a(8*ge~nw4#edd1BEgGDuvMRnYOIE*7|FsN4MK*x0}Q7D(F1ps9amjqmV
zZxLVR1ABx6@RAX$JWJ_wA137oaUeqwO<Yb%;;+KMW`%9Sz%E9azyJk>HYLuRM_&ZO
zp%E5EK1EmLFb!NcsPnL5*pPH%%DxNmB~h2`I>8N0wn%`kswxRplLd*!`}$!0?2AF9
z?C*ymV=&UMZe9bifj*c!`lIm7=#AsBUZl6zy6kvXQiU$Fxl?vUYny_8#x5QL+6z-*
zYb3?ivl8nL=Arfgm>#`7wrK#6>^*RL-32*RI72p`fn><7Dj*ajFr-jYSKcPBim9H3
zytjFqt*{LJB`o#B?rR20Wt~mW-vps(2KJ6#(=Zxb8`%uxqTr-0EP+%Xj6w#`AD@}T
zIJwC{q8CIX<6=!hhgN8uk>y22I7uyg(}!WJu2Q7exM|aP*mTRRf^-#<2SI+!L`mHA
zksG(Qh%uhXZz6<QTvD5c+KNPy5hS(y)3uP!Nw>$Kyf<PeGE2=v(GTiTQ%J~{Rhkz!
zGCE>W$|}LR(txN2XqU&<sz<?UK*yaPmt*eIC+HUNl;rGiJDGT~@4o#9?&tRj@Oc9H
zIKjvhulXl)Z+PQBeUsbU-#aigFgO?)fMhffjSclhAtcGMj+5e&NERd}02oq?&p|p>
zv-u{-Ekh>DpsGVZ)D3o$@al1>Q}C21R#7LUY)_rKcT;Y5Z@u%-upl0UF&w}KPk|E3
z&0(A;tN}fo?^xpbZrw>$p$gzf4rCnfeJ3Y%dXkN7@m4fs!MZh&?_`pcd4&kk<E~iK
zmM4C5rKV<P<+z&)!xn2)4WO>&Q7f__p6@QDdHNVI4gru%0}6?+?5sm6zS^W4fmcA;
znjQ*VxQ`z{H~DzI4ZZ+(JL)cgIu-r=jWWIp3T#GLCrHV*8mJU77jS`z_DhkZ&lZen
z@NA+CGHy5YYH`kDmNAD2(8CfJpu$LkG0wxFfIvVaDxDUr5Epo*&b`)v_}qt8t*GH8
z5K_eb%xd1grx}K*LP`ydWj~ApEDNI3sh-RrQZeZ|p~f1I^Gm+Xv49Ugq#vXAYn_S}
zP;3YXLFGpMjZrPwA2lbcAX&4E8Xb%d4h;^)ar!FWH`v!7ALxUyr#?|bk)ildd>|4X
z7>L1FDhAw+_C?e^>O}TxIyECzV#zoJ8NlJf!r|E2Q#?3y0&IcA|BO%`SbxYXYB$>P
z*Tb}|5~b-<8b=8r0?<8*`-L#!LqxS+$fquF=iN9x0psC@0F1>+d{BbNCeMwZg8dr{
z35$qKE73WVo)hQDIic6mO`vTiqCzA|jTmHs?IMQ5!^m#*sN@NSTqG}m5d}ZP@Oat_
zelH+pkmM!oD<)tuFi|L-u%=MEDX^jaL(!mJq&A-mvOiWTra3rZ;|I^9L!zDwFs6PU
z`qeSn{!{(1BC`OLLMQgs^n5oxui%xuA(UA%WAFiH79XUo?CWi^VMEN$p}w=Fp=5}1
zftkdyHfvf@D6Ez8siJ@a<D46&lml0?)(x6=5P~x4Nt7ME0vt5}bCObH%{y%58-G1%
z0uZ?gdw08oM9S*8nB#0263s^M>;VvTM2)wp5@eu~fD=p;A_-YybQTm<Htwm5=7EMF
z@8;dGJ1OcG?ZvV)O48@OI}HL3?B`43sJyfE$nr#A1GEH*?89#UfimjRW{-|RE(*A>
zi^}7@<KEm^*u+3fp#Jb=yk93~(BEbh_g~6Zw2u$FpZ`@1svAyKM~{{lvkR4jM`8gQ
zD`wpVmj~~#lJGDHQheeH)eEYfWP|9t*!1Cr%evtZPT9;z8F6go#Rq!(B7=kdaLkN?
zO!W;wI+i0+!1(FO>Eqn+BF>^r;Mg2rK6aj7c7d}YRP8AT1rI+#9;_H<3Ab=a#Q;HZ
zZ-ea%U9^B~z+1NTdS(=yDP!@Np54hXN+cN>&Xar2A^1oNj^;yN829amXBA8@fUr=a
zRg24GbT1~|w(uwpfBa|>-6((&#Ae-hhhOB}$#MEhE?|CZl<98LVL^?9w(}}(6SCAu
zfXzHuD&UUCO_d|Yi^H?S(+LbGN+F&LCuVh+2pY$INn80oPo5TW=9H(4t=I~|iC%S>
zJtV^wu109^l}$TDU^=-wA;QC~1%5VXSuo2}y*w15BOFI!$5w+sQ>w+)B3BTBgtQp9
zsClqL4->LW)`G6`EnTp@moyubEXj6+@zwNSilUN8inybWqt;oSh6#AA8lvopEVe^}
zVV=i?qL^20xtc0ul)iH~;;P}jwEKp#D`jko{xM+7;$%NV8wcic0KhPxrFw8%V``;Q
zN(==2ZWQcA8#o7%Jge1Rz=`uH3bChyiXvF1s*UrhX7u$kM=UnbJAgw>eerlNwol-}
zhh2N<x9ZlX(!(efE>CnI0mRp);7Ca1K0kFrq)cN9uXWwIFmoQv0?elblMSdkdA8X|
zMOnO!ZTvQdw~x-MGmza}4b*(WxIp@5BA&M=CA)Z_e35=0nLJILq(zjk#Kg;$!{7tr
zWQ`!Gricxx!;JWp!rWuj3)G5DO}pXYxn{0Yz2_ifVMpHcorZ!3`hjkdwbVPk;^bzj
zfKT~A(sHwfWF;q5Sq)tl$2>!BPzY$ZZ!PCHR!_hNCBj^xpg02>zuxM!8MhZj?4U;p
z)F?_6mtLu1#v=u1sFEnRRIf_IFJA|eh%=v8cvz8tRM&_LbUOAhs7~zDqa)s19SXqQ
zAiJ1xjakU2VOV#frl!--%xxN=n6;xU(e<6P0ZCupZm=C8dGN6^3O<A+&`s$Jjyb^H
zDV^fS(r^@c9(tTY8akEep>@L3oTJg+{z0DL8i>I+wjah?Y~@2tH{a6f>mQ8w!eTVo
z9~s2ID9#WL^$!jWna`U5;%APZd=#WA=qC(EoSew7hC3^4gQSc170}6uwL!syQ_AsU
z+dQMTMV|V`VJuKjEFTCRL}f-$T;~-q>6xJHW=CNDJi`QByD``GTKmEh7@wttJR$lD
z$`ambWK5JfEdZd0sNAj9v2zdP9sqCL{B^bFHC>i!N~d4?b?K#FOXb1MHE2bUT8*Sk
zKe$>E+E^m&SPr}nZfX#m=%dHo26e@z|0GXk0D@H4AyE)Kw9LTjJAhcM(qT3yx)|mG
z;+gnA(<Wnl){ua&l8M*>*yoP8>Qe^ydMM$ZrOl#FST(+@0Rh-kV0{@_N*npudkq=I
zL+o?arAZI915z^fpsW(CW>&Z`n^QmTl83woG&wwMMFXA|;6sZ=G@COPqHBFfyw@9X
z>|r-H7>`9^&x&IY1pgv9dmA5&$A<=B<l>i0fJG-LirTF(RfohDC7bwoKRY`GI~AFw
zo^9~OR(RqXS20Uc4KQ5bmk?4E_+RS%d5GRt%ahf{Sk%PtYq<evm#+)fz;mJoVAsE|
zh4=OEYq4ql`|<+^0}A+NP{~u4bUcH}S<Wd6%f|6h$?r>*o)eL=(57&%6H10~yel|m
zf#cv1b>#4nCJIZja7$tP1WtuObWdRa+#Ig+TrhENr@FME5GjWiH`fawzpCd0k9^>h
z3-~PAGVsciiaqe!#8SBVdp$1cy~o)WoN5|{t6+l8HTZf0G2PeNaN-rT&STj2gFjw*
zyXOQ_>3_K(aNJK<N09)SPns@X1{QlZ5KFNM<0Ib&@7YVQ{SDqj9lY#qh4P@T_2!}G
zK?4Q9T?gMOd^!{8%wtaYyoA5iEho~Y+mN#89#1Yz_ag%!dNy0=8MqS=isi)=qy`!l
zz=S_vSnn=y{;{*<;>y20Vnt2uB)VBdM=&!q6fameR!RjB`NV?DuVE=GjDmhd2BFSk
zV<!U3G|pQO#AC7eV4wNo(LglP7l%xY{hde@-(wuaXF;OTSUd(1Sq>+Hgp8j$GXZ5^
z&Jtn7Fl36{twyet(3r_{H8h6w0|EuUP5~l=43D3fc{QliCL8&f)u0=y6z2C>DZ7i7
zSZ{<fj;+3JlE6p~t6;<h1m)pD6Y2=$H)JJ*U~C)CLaeK`&C-;x9#dt@X9H9nhiz{n
zD^pJ~jI*E?6J<ifuAIZz02n+zqZtej(~YCr8dR)Y4^CbUVmIHY35zcfkZR5quQSj1
z;I5OT=WV=gOKcm<2QMtd0(N24pPF%fuL7ALJ&jNU^B&IeNG<@B#}zioKmmJ$4ALV(
z6)Q!^cYNU5V|L()oocoPMXiy2nF>Hqyg9!)VtMMNI8$RE7M=)VX_SL``2Im}Uteqh
z5-vBCB7G5@*BwGqe=G_=1og7pNLQ4d80j=2QumgQ!%?J^#__Hq<i<Lyv$}sz=vQ~=
zCNp`^aBO$g`rBPNe-iMjj_*Jf71(JTQ4N4b9DHz;yJUi3gnmzv*w4>32L#%sB^*VS
zGwd}7!XU+&<Bc-YJ^Z4>G~H9hHpFi?SOhwOk3IpPi0!no2DY#5HW^>w6BBysm52zn
z2*5)<FYo?H6;d6(Zh~{1kSFPTX$~~13wX_10t~c}z{40ijB_^@Pfx)7J+%<nZnO;A
zIuLA#hq~+Tq0w1A0q|0YrUr}+aww+tfS{b<Q9o=L!@0=_d9tVE;ei;A5mWO9CZlLn
zLoY|bh^d^DpGd=+=-0}`rOgvKWuF^hj@je3iwDRU6b!mJ2869H(+#rIWEwjt{k_n}
z@QEjWpPeVo`v*YUvAvJI7cpsWuw~gZWG{8a85|sp4&d7i5Iu3Ay$`07-d^BAUvDqY
zt*igpCR;C7xFkl9kW)xd%b|_&434o|q^{P}`oM;RodcNdmQ|C3*%{tWgm_~OIBd51
zq1nhu-ddgu0Mx@aG?Q9~>J;n{{6s*2w*$8zSz)iEe$QQM=jsVxpwDWNK15;*off7@
zmY{C+SY0&)SdjI!6H*(|;JG|P`F(?yb$qDixu1ki(SNOy&MhNLzD(zAOjSxoYYhyh
z<LOlWmj*J6+1FmmE#(Wv*OkhZ>g6j}mtP-`$0LLM{=guJ8qTv&bq5s0`uhiB*g+TX
zDoDiExB^N`rv*@gx(_9sodI^1-OFY7Y<fw;<g2Q!Ve;hzUuv8rUrt~kp5rV}-=&}h
z&qH4Izm>y9#P=t7iWwv36meTwCY;JU4{4I{;B22cCnX=b#(L^I52q)~axNU-aJJJN
z(B$NZqe$Dg<iRX;M!xB>z8=eE#WYxZLY8}t5bAu%*n)pCc^KFUMFWzp66^JOXh@=z
zGFHu9vh>cjr4qIgp8=r!(45&z^ytV2QZBdtxqay6QQMZ!{(%!#I5)OR5?UNpw-XJs
zH55wn7-;$J7#zORWc*`2qpgDJRpY*ZnG-uc<T0$6Y#`LQ?9yrFAfXpv0&M_Ja+IN9
zzscg;_}Gl|&VI-6iOzT&AIHEE5$L<Uv?P(*^!CCNaL{~(N_+tUJvgU4XGS?k{GJmt
z0$`CIPiV)N@Ud+`KOH^33kMtstCSn|nUnKkMwJ1l-EjaebVJNHkV5znIa$DW9W5Hq
zj36&G1enuCF|-EajdNTs=&3%<1Mte1VT2TuJ{semlyCM^Du>aK)2Cn?0!p4gahP98
zvlQl0@tKpIIt#SIctu=%iA)#-P*;xp)|>(!*PXHYkMMZ7<~iJf=t1|a;BOY-8#=B~
z0uSIewu?X%N)&xzGN2f(a}*&V){kWA=B%~9W5)F3M6e-JT`%D~*490tMvz#-8GmYn
z@Ku6hw0_?}*41uam(?l9Bk;n9tu<eS8e(ZQ8jawa7LiySpK6AWQ6J1Rq@Qp(8jK7@
z%qOk-;8GWj_Td{xV3`Ahv4Kbodx`ksRWGvl#mzU4blt5;WJo)(vesk{W~0;<%Wjua
zlx`krPz;Km90TA9J2d-3IHxM7=<7fb93!Z3$;VA(KcPnJ5^^Qf+k76$GMxUneDRMv
zE%0&xj1RjwZvokCb1?RD0ZTT|1uH}5EC{;p3qwfI?`g0Pgnk$w0Q)#EYY$LZ+DaXa
z-cvLQaKnKs<iQ^axePA2i$L2VdOYmq+JJPbR~xAacAYrYx^X#)21E!8ZZ8vP)d|}W
z9QO=QopX-{1Xk7w>ox&_)|a(h>+I~yTKZ=Z;HWYi!^eR7u<49rr99RXg}RQtstCMb
z07L*J^XZ_Ma9=a@L`<qydWW=1<UBb(jm=Nk-bsJ0ibosnW>S-ib~DTB0&b4z$RR58
z)fkx&dI9Tpmtd4fCWP0HEuVuC%#x*`)@wN&bXJ-S=1v-`4DAfYZWa6z6c@LSN$Ps=
zg;Dv<u?~?bU~s)6B8=U^;%aOxO<8*4NmNmMwFa{C0GtZt_yvq2_*4MC(gb%U?0?`R
zs_K!1^BIGK_=qYUlyDq_n<DUL!j~_>xZt}EIZJ&9F7Si9JOkk#70K$2*jRfbzQ9sW
zzmZn(H^L8r9tsaxnz_-Iv>dN6-XQb7pfFuZKSqZHnl_9OOy4UIk$j~rJEP<*`1TG?
zHT&Ci21p<QNEUBpx#<t2f^4g<CV=C*r3KsJVhV?s)u()KjNkam7mTAoTT7^vF#-C%
zFWv-lejXf2v~tSHK+;<FWOTbR{R0}C!&IGiwvdGw>`e-(nTP&{d8^UGQ=kl2vY(s@
zc+3UmRAm@4=Qxlv1c3#vr&w=sn8t1xJ{mKKvv~u9_!?@j`F_kTbS0TpAW<cKtBhjd
z;?xJ_k{*GCS$JAl3MmPYWq@m75!kE}l4PZPtS&eOX4)pmdS#L@T3|b7UQBDAFNk`A
zn9WUb2GNZp(0^#Gte5l}WSk#D5N8}}vVxqo;4lgobgtb7&gf=c>ef&HuFXaZh*PG<
zb2~_sX+NYA!M44X-i&+@0{9NVH*U8NK{m({v*ln4_Xz;l*yalQLz2`mML#x&00nRP
ziv<Tg_a$o~8AYyq3Vh@UtSQix$WdrDiQ-GE(8Ayb33mkXW5yqYz{ld^IQ!K*gfFq;
z6pVgrXb_=(Wan<HxK9qylc67m-3WjWu-DsfK4fAJ#LUpG!=4b*?@ybJdgV{pG2L|M
z+-yd3Ce@!~bG29qu5o_C%Er7|--H2G@Ts4iI}eqIO4AYj5EJ;4xZ|P%TC^3tL<1GD
z3>ZrcNirItY0Otv>cxpb$$I}YepSK~4$ax^Oo3m1hCe#B34HS}`+8yMn+zpTImV-?
zhE4-3)}0p(d;t<>29@(Yf^wdwb7B$wsrhFUfS77b0~QI6ZNyhkK*-sM4qBTuCsI(5
zrYWkR1(DKw@cm4cnXGSe9m>HP!-0bfSl$Ty*cdz4Q&%+V0l-Ggo$9l?4c2_>G4QQ-
zkACqB5FjhuehoSc8t+Jf?pmiMeE$P}viM_b#&-rCF{fs{eI5fga5#eYz&~)MXJZuJ
z3iJ4AJRNxKff;(Uh?C#~KWvamE<sKO+ce0*1w&@t2~5Fq3a2MaMZEP2m=uI#3V6s~
zjp4gI%4|#&YT>sYbf8VZ2H8>~zJig$2}OOORCzJ&%a%(35<NBFS_J7MsrtqS5>Od`
zxQZV$C)j%;uL-Doh-v^T_m_y7_<MczJ1cf7`04N<PZ26?hbKd)*NH&1&!@~cS;XGz
z&BbQGJ1U+})Cp#x1Fidf73hc<*lLWobr#^wsy3Q0b#2sbB~;%biW_<`P6GhADPn}+
zZv3q<oXxkngBv7bEw|h?Xesb=t5jx4k6J0!0m7p`>6Gu_7u;L9b=`vbW}{`(+%L(`
zWYdq{pVR8ReNe5P<|LN+Dlh%MjT0`h!}`lp3o@n^;sr<#4N`<-&v;#9A;Iwg<9EQF
zK#(50n~doWe$qxa7)dX+GdM7x!{3Jh8d7qCk!RE1%))^M-XNZYGVCtnD<Ry?DD&$a
z9;!VNIYcY?Yl8V_VMw@De&1bp*u|!*`E;y!?c%H`5Q7i^aa{aQF(+oYve$Ww;ff&V
z0gXXx3OeGU$Vr85E00Yc^C=Wak}xM(2kKf0M2@Q%8AQV5#517wLH8=kF<dqZaVKqr
z>H#Fcljw+0RV!xNO+(W-iV(pp++!{6CWS4495mIakz1|5VzEN{6)uIhLG%*%jpeEp
zA!Tc;#^MObwciAB@4p{_W53)2Q>1<2PZGJdN1ON;G@vzb4@@kX#-Q?$8}SOjQUkwq
z-z{BMA@y2($m0yQVdbxI$&nRVU;o@3zmP0RQQ`MwAEcQ};9UG5D`rl~035M{G}ZcI
zBMW@7iD>99jHe=;fRX5jt)+-H;d&%QEfR+X0fAWMOX({jp~LtDzA6|%=%+9SL$+AE
zXj{SIU7j~Vjs-BwhwH(QdnNb`sewGtfi(z$8?b+Vx5fX`jy<xa-xm<oXJf;S2-?bt
z`JDkG5l-D2e+X;Osgq(X0J1DG#Q0!gPn&jMZ#c&N32QaV9QYV5exd#V^wZeYH>s15
z2HQ6VN8K#^KDZ84EuZ;+Uve2_clkgO$*0*H0@o>2GmE5lNxNM@qBk?`wt0-7?8tg$
z72ugoV>`(zK0Yd{W58LcJ(C36<6nM();~k#vxl2;=M9c;W{!h+>a~Wy4K3gMG4N_;
zw&$cs()cTWzOCI(AO+VcoQ}2M?lhkF@}U;BYW77ujZgW4e-2`XZtf!bDvJORSq_1Z
z{PPp)R^?r1SsI3lb}Ik`cUPN<2Z^3RMOc@7v_=Rc<p6IIYKMliI3NNX0x=7J*EY+)
zFDkB5-nV{&rgzFhLHgs%Mg}~o>gvX|s6&8fRc4^~@b6L?7K=Yb<DJ^T(T??$qDJE}
zd_+_r@n82xBd1aLL2LWD56X1bXAa7M3vVQ&hgpM><#02jb5rMLX7T5-;GhVd*$74y
zG>CU{YTZ9oML?B}F)|vO0Br*IoM5<m%yWK%nG$m`?81OxDWh-Eh69|CQD*n~FiwHN
zNWBhRYM=y|z6|#Y%s=*XZD(D0OyEGcNGkmFfp*+_$8?L3?><n~Gr))8lGr2NU9ZXp
zcO=k9B7JI|Zd*T6nyAv^d1j~(oz~=w6C9pwI9uV!?=U{DEq?Bx6lfI44o3}qN=(<4
z0F6U0Fs^mmPFD{ah=tt?xdnps1D86J3CI@u{XKjPXHiuE7(49OPt@0hx|}7m07(D{
z6$AX$3~+b(b`qN>2EafA=MsK90vn4DAN0Ci5B0jpEWs(aXOWMnFT0KEC-zUCntbFm
z{z(1Q^efNL%wBl(vBzKaYW>#!MmymCF8Rxk{N2hQo_i^mY5cX568}W9Qf%;P+QZxf
zuOogJ=<tby-e&YK!LH~G8T@!g9q;mFkoxI^lqw=!k4PT)L$&H}gW^`s(67GR`49S3
zc$zEh?_dBt745kY)w$Bs|KeEfESPmZgsyS)c;Leb^m~2j2{~}tb_EobPWvLc3Uw_*
ztpcwm92*cjq@ozV)P_w33wP{f38H<z(*Aeq5<a?vZ&25wC%RXoVNQ}rQ+M}_#l~7w
zXFl*X@__X~KJF*JM-Hy;6Z~~9-mcH$o%*~UJtOJYWBR=Iqo*bQ{9E-o@`65}`e)|(
z%O?G6CjNiwv-q?=udV9SeNvw{O!;TGYW<FR7H{hNi;kv0`?nfj{jN#x)bzD&`h04;
zKA-Q>=d~t%7DM`6-J?&}ykEV|<lC)J$2>=NnS5LHIo+<$)i!-T+p5otE&3d3*5?hA
z|JofIcg%C-c8#yT%shAM^V$xR&pg-OspFddF?~M&&&@dBt<P)c9?^M!R-Yk>IZl&#
zHkfC-d4|n%t9dq?XQO$xndeh0+K=f+PD#q@YxQ|?LZ6W<`n+~c^NoC5pYBiU^ZB>w
z^Vz5Lx%!+wuYXjZPyN!Qw)B2|M&7H>=YQ5b->1(TPwR8--THLR`-}fd<EuZT&!>LQ
zJpYA0oi%-S{k%S}oA}x<Xnf>7`n>orP299I@+&6)Z%#=6BA?Kw(=x7c^L)Np<2U}Z
zKA&nkF7KZ=Pq$Iy#qW$s`VB|pPnmMh{&!7xerHtPKYQ1RJg?ub&!UMJP5k*kF#Rz7
zy7nJ5K61a-`)tUx_Zymi<9@9t@`yg49oFacH?`g8zoE~OZ|Sq^D_ZXQ|7+r={k7d%
zZp6e_Z_~K@R#VTnb^NQJ)bguKI-WH%Z#T^I;-~a|(Wd{ImVaue_Ivd&^u1%!FTTw5
z_YQqNW#;eVt4;e~GWD6~weKlhT{KVU9oi4)1<g0TSIb>D&sFnWGtX=0dC@$lcbfdW
z^m)z1T@zn5&x<B~_224vR<CP&k+17>^*@?<`jB~kM4w$Zbl#pf<9vRPwi7vM;N-gI
z8!^v|U)1`pecixILElIIT+^@rhKUd9`;ny9@BB-%J|EPl`^zT%0d42`1Nyvf`nzVv
z;l57mEB=Z;Z<zHTG4OC>pVm_}^Sf%EUESKBi(~qnKB>=<Lpnb9V;Xl$+HTjXJ|j=+
z(|x0f@6h}s51({+Jr&kx*BSFXsn3xwoA}ENU3yx}hft;ocNcCOMo_|*=Gk=SW0*HD
zJ{!$#!!3byo0oaQCY^QIFrU0^*$xwK#nZOM`fPsIW7F9;+ZNy3Jbd4P+qP|=wjATZ
z_iW4NvGv(Jwod!B=_um$nPJw)`a4aSecRHe>3nBz*58f@<1#0xm|>>x#LY0<;>ECx
z5kFo!0u0;!@=1R6aokL2oz6B5vrg8<bk-9_W`>#Gf**!?^Wu|r@v`X+2r$g~VZAnt
zVM$o##Pnarj=?hz!(2y(Wh_XrVcQ4x$Bx&|Kl891_Jd)jJ2y4VK5xN5na=v{7+DYF
zOlR26KhtbF`@oxdc-#7Au8_d^7Tnv-d$wisFh2|N$#h#MpU!SgXFZMhVIHR2F-p7m
zVLJQ9g|c~U{W3<pVmiY+@q%I2Y3pH~EvSI$tdpH%n04B<V3>9C<{a?JJhs0Kvwp_;
z&f=NP!xs$8SWF($gPM6mLFQpwHl6t`oG{(aA=_blwoU{k%(xvF>j;@T8Rq=j`kezB
zW?$K1TTe?M%rxF?E7%{~u1&Lfg7r(kQI2VL4q1;)=aU1qWtoS4;gc8BSwAaanE7pc
zY=03q^8*#Vbhc&T)Aq&I!@0Bd1mD@Q+kAZTW~DZb?bt9o!Z7QwILL6#xJ+60b1!b@
z=h%q@wjRzi$HP23u}BQdoZyFHxlJCXhr?kn5Bp>DIH3j!Gc9E5VOz}@F!Qi)ga@0y
zDNv`gb*rSaPc`*mQf&SfRK_spk3S4Ef3PiEr}P2un1|zXcJ21^+dgnCO&BTju%9hx
zfMNEt3I7;o9y?FW!<A+_Zzt63<#9sWBrJV1?^(9ZjFEM+PkvdgpMAR%4cNAvPOV4g
z+2m(AUd+S#JF(adv(7dEsaI#Ct_#zh@DpC0#5?9;|7~98v0*;#9LoHgF*1)WBV)hk
zF0W1}r2Ut<K?SUX`E6V5=U$V}v2+IdY3Gw=?5*wS+)5w93QMfh=4YLDyfP<dTzt<s
z>tb6ZQZ{VI$$7p5w{4FlY#s{_%yZhL^Ia&Ahsew{)<+)9F#FtM^005VpM2*uwn!e<
zY5OMW2F7%ZY(eQL-+6VKak0*DpbtPhuTBdeGTugiENqYU@VRrlrn8@RUHHyv(!R->
zhPHd{+VQeac7CLv4SxM$gV&PBgtedAF2lASE$h>Y7Sn&`aheo<q(6AUC&xnG$1wZ0
z6Cs-(Y=dnxo%Qp!VJD>dWnJ*Ybmp~Vm+{{1=MNhgle$q6^YiA#r__T5XIRF9fK9i3
zU>;N>>3mmHCo*|u`3|>?eXGtVVTp9xrgtL5u)?e#9u2|(dcr(xw+R!*u=LH8W&IFU
zB%NW>d7H=11LF>eKA*fT{nvD*hYZ{NT7QGAkHA|)QyZVW!3#osvd@k3&(3*B-m?#^
z$IFl2N;#xMkP0)*JbU+S_wsK+r`e|R-;$(D9{`7b*#>EsanNlEGY{9r<{_VAnCT55
z3O0;P5+;r~yLU-hGhRQ8SIp18@g2jwK_|VooCd9*=}v32SJr9PezINA7D*S_a~i#}
zc1~oik;&HYG;EbH+r-rR>8Qr$X#v17%sfs@qo0l_+oT-gI2U#^59fnF409|kI6Cf?
z4K=keKk3;4+)U>UYTfLG!wr7eakes@b@FCet`Wmbmoc{b<0V~Xy3iyOW}Ike>p@iV
zur7{>=@JepTuGmsnh5IJ2I{eW-UEv6<wrLdmN^NvNS~!Y4WU+BmUGUs#0lynHb0ig
zD~sv$(y_kHwyiddlwpq7&K2Wf&>UM2x<K(*@~~~DGmh$g*mHcib+)!k-_R||<<-*=
z7)wL5%oX2pdTgDfGd9duY=`Uq@xVM=S)DY7{bzoePm@RHr@3XD?eoi>2PKcBhuYe0
z{;+{_!3BfwGS5zvjF<4kF)%-GKvbs<H$fn?;m&Q_BrJVsaRl}hR{cCqsKd(x_9bEV
z$JQe_>o{*>ou&`6*2JUWI$Hc<zD_9Ne6o-HWtjDF++IDQ7MW+J?*-xDJKBOj*zk<3
zoz#Pue6l}m+b<jP;LXw;_Q$z<tIIsnuAu`QJ5oAq*%k=L3=18=Gm!4pY3ZBHKj;|i
zyA$^>VPTn{eMR+Nn0%1wX1pG3GlA*sKg2hICDzG&Ojlau&y}4+of99|C@V5Q=b*`i
z*#}OVoj1oB+`~M)osLc~Kcik-h7L;{^{^~)^MlSal815Npie6T?NYw7^|L?BOWb6i
z7$!^xaU6q``4pIe+|IHRZVBLfqv9#w0ZoO+3G5+@ZOhU$tw;HY<Zo2G=3G(EVVd+G
zi{XU>{0Ot|!4*)-TO-aP^K&iOwpSK3fpMk-ms{D6^bJqxi-{|Yh?*|%8Slh}hs2o|
zl7)1Q<rPMRMSJzNP$0l%+n2&7&VrOfc`?_$64D==-)W&F<Cn+s$i?^4FyNC(j7$GS
zqtUp@>b;ltq>x{q6YAVbn#S@1n<Ci<;(MuiXq@#Qi)yX5ebNcrzUhw_mwuDjnDUIb
zw6t*9r9H-_auetJI2|3{c$p8i*OW)Zi?a{H%=pC3^^}(;F7<^V(3`ln)j+Y>n=b%G
zi1r$m7g!0j$9zt>ORC{}&QEau`C@&0ZBoqU4}bQv*FJ@OjGL*4W*>-$uz)7cJZME|
z62o#swr3l*yqz=q9u$_Un7r4%)UHRkLD-7C*MT&)2jSfbx9njBtWP?=d)I^ACa(RJ
z?)v3hft=<&`@+_2Txp)pGV7C&p)Fn<a$C*#F)Ow_^Rxu!U(3^i;g8=mC;egmz0Mx8
zHi=7rwYw5G?MpKA>iRLa=9l&Y@XPsujX^T-osI+osL3xCfq&b$)+AAXew?kHHS^oK
zwRx8*&pOTUBtPdn7?=7%P*|^RA3Q-oj&bG(JrRVmai_7%TMxePB-6yj_q-kF9$8j~
zwdb|-3EEsUK078ae<O%GF0a1Erbbri#T&vjg-Kj8V*2>xd!4Vk`D{{J?Z21d`t|L&
z^KSAQ`<}yLzik{rxfs{+D8FKy?FQ$Q?}Ovf{x!-3F~7d^$Io%q=SLkL{1CpK?nB)#
z$HVp~1oF=^HjepZE{V&;w{IahNL>3H7Fo^qm->NyFAbprKKY(EpthAf!{(>WfEVLZ
zUsI#kKdC4b-e=#-3uNb$?_~TPTZP~=F8IpKxL6l?eoTie`K5kCubE%!!;_a+UsFqS
z14d};b3(hi?%1Jm_SAG&-fMYXFV?L#-Ve&O+WI=%w`{TfmG&uqAqU^<$PvKhwYL|B
zG*{yspU@9vwBu3gsqa~@a%+uCo#-IzwfSuue8)LveN6M>4B%pZ@(o@WF6euv8S>%v
z*TN%<@x9YbO;p3`9}#k%fq=#L>>r!6?<v2n;^t-Bcbe|r#(gl>MYz~*W`*y0+lyfW
z9&{=J8JoX;d``z*U3_QXv%DQI=QFr|0*|d7TkpXO*3X3tj!)YMeq&<nd*_n#h9{;p
z&Nd)THS@{$5{Kc}!Xe>r3wq6dvk$~Gd)fLxY=q(2^2jGcVw?dxe~e3i!+V8*u`R;e
zcG+nOv>$Hq-c!!yRX{~7&l@7=_LrHk#18>}F+SEuxrwc^UA~j?G-`#63t+pgLLlt>
z;Cyj@osMmd>?hxI{rPL_llQIQ&}P1Mz8XbQwE4NZHb2uK&9w5#oB25(ct}{`_2p^C
z`CjJ7>FU^qjLggT+J?Rt!i5fnzUSx1nC`ge9*xWTr%(u&UtfDe6BwS2-_hlCv0lby
zJk5<FZ!#|9RrOHXCA>c=qxZ{O_+wt~k;!22wDqH4SEHdnte@%ypI&>79aJH_{HRZ6
z#Fl3iul@W^^EPV>R9XF}WA;7kvGO{@gje2n{yCqZ7x>ls1g;Ii_Qs20lK`+h;cYZ9
zUiNz%=sgjDWp(}=eh(s(#HG&^2=I>Y+1^(Ca=?tUJbuDkz;dK*#$hjMKn5Gv-f4cO
zIpL1nU05Kmd@JEs%S(NsEuHMIEiW}<<rrswU<B)=0?s(si0~HdpVPR@*$IsG%fnD+
z@=Kb5Uxs;WX$?#LO}o3?_B-Vr=VSLSg<|IAd()h}S9lJ$Z@at0YY#R7Zkc&;S$;Df
z$xoY*nQz9?dH$39G9FFw>u=mE2+sC(emZG(@aty<xcQ#-3I7PR2l-8g=#@tvUX1fb
ztqrZAi(Y+*3IuuYQFlYD>%BL_lQ`QG_&4)Q7(-_o8=(TQyv`Q~q;1*$F@^6r9`=s!
zIoC2i2LRC^EMCTgcanqe2*2OK{Rxv-`MI<zWr-Wejsk6deXZLFE~29={cLG%Zfz9X
z9pfSAi{USZzYu2o>>n;l0HUL_P3qsg_@4cg{^Eym-cI<guN;kZN&BpiW9G$o3~$@E
zjT#X}mcaUi<h``lc*mZ*?g+d$3n*=)3~3N~F3WSII$K&l=g`szzURG_7dk>%qMgZJ
ztdH}<y-{Aw%ktP;z3uMX9M``8BZvRKEaM@4<d}IeKgUCPpE5Gz0sNEs<@($%z0~}y
z)4^H*ro8q9T2U#>YfnP0&9~jw#W=^;0(&t_u`KJm2mg5SJ^NeVAHL&d`@a_&+8y}E
z{L((E3b(bIv7?TA?%A{F4qSMz^T9cki`7V)^h2!2k|b#|S6z4RaL&hWqrSkh%qP+g
z)|WYL8e^2Y*;l4<-rCRyfgO`(`qs7;;w+LRAJa6CphPf@S>&>91iCEw*uN&QB4I`d
z+jgBs*X;_cPQd;Wp7^wvm+#)#@Iw#l>@tn>=lp1RY`)>=?z#&>rs*8qb@8IJQ>tJZ
z`&>T<tc7sOu^=dAb$tOirg5*0(7tHzD;{>PnS9a)jWSNMc+sS>2*-;bgtR_R8c8`X
zn`ZMdD=+?17sfSvq3OZ}0+#Kw(?}#~Cv^IAb>!tv&x7~IShvjw`w{BbMhK7W-+dUG
zbO>*l#`VS33Zl|LgCW~dUQT#@(0S&;U_Q6`HrOZkpe*x|W>7}7aw6+vI>&2<CUK_E
z$Uhmbq!B+U!G;z5{Jw;D-gETOp>Dpl^}%f2+T7T%gJWZw%pV&utuW1lKb=y^$MG`C
zA+u$#K41_DJ>M}+<^bDG_xIm+Hw7S$LHozD?ani3kZGLPc7-m4G|l>L2ip)h0BySM
z?#q`Kq>O>Tk<n1Yy<K<hLT7ECxj$&kPLk%q0cX*)Yx~jw35Et7mgRT|KY9hyOe$V`
zbMH8B$G?BZBq__Wpu8<AX`IvG#WrQ0O(OfnG|m;<wwFyKtYJQRd-*T|n@!T#uG4kL
zU3cF@yJnZ98C)G7O@tg`E9>K0I;|ZY9gWC`3{3ND;!90qKA9wf0y5aLw435a;gF=U
z&wH`aYx~W7(k}M;+75pG@X)f~2FuCCjSA$0dd}+&?{Svj!vO0det`G3eX;Ee_^16f
zwCRJSue?}RjE#6sEBboAQUZ-KQ(7P4inVq)hn#L_)ypTz<|j}ez>6`(KhBFzyd+6k
z8QaLU=Nd1rPM=zA#m<(F_hEbq(TU)4B2t6t^Z5rH{KsN5AJ-i9$x8BvX&ke&?|`#E
z(%NzF{re+~YoDJ5?ziIoHp!!DKMp$6;M|85BW^J77H7+rwl-U*?r#Z>I1M8sp?#6T
zqj$-^6!UXDSWMC=gmlH2E@N^UT*v*&_pbfl&)>L)G@FiGtQ;wNF<t5pZSU%O<@EII
z`RQF;N2YV;P_r^Pgn3aGV`;wzrfMC86~1A)dmUH$!MZhl9~#~ldLVRvh-=Ms;wCR@
z1@Cg6!auEF;6}wU{8BWl$sg7^jX2j#ezqqV#j#;@?3}INj@9;;cxB-3*WVKQt+#|e
z_LdL=(pOy*EkQ}fbyg)^`w0oSp)ve|^J(WNogbAks>Gsm!TMRAbFcNZI6oh{2VEIK
zip~Y=xrEieh=1LZQ}YvU7}|yzS;g*s$mG|0{wnlW&NyoMhV!S+gp|_!uCuRWt<&v%
zsB>`J#chO7&I@#gW}%W|o+pHAx*0PPkPDOZ0TOClY(v)vJPk1yv}P4)oKwEz4QNKX
z{f7ixgb~gq+JoiAr^|e2>pTN2;Xh)F4Y3^8rfGKwzr`x#RIZp@d<S@wMZ_xTrLUw;
z!Xzj~YgcPWLu13+oi{rNoqb4Qd-`s$p}S#!gWK@V)*o+O6*S;GUB6by{vFQeoX<P|
z$r+S+<b2(Z8yB){S$*(>G8gR+B7yV8exg4@G35twUVO)X>I?hS9DK)mK^J+8l+Rzr
z`Hr)0M&^y15X3&J2I_#~xJaRHGtopI%6Ga(F7T=w`L;ve8R0rLa1Cfj;&mwPI7e`E
z?Rfd+#+-A`xyEy_0Ebb-4p?LPjyEsYi93DHuZ0GjUf9OM(w43}-yXm^6DRB{X<xML
zs`Iz##|TChMLw<tv)zV=%n#!mTpWv8ON2-b-rxRf?Z43ezV<cz)B1J1e;WRF_`Bh+
zhOdR6LxmK-IX1r2HP>1Y#ifwO5Z{wdaVFRg^r?}P+lrqNME&<1)7t)L_pj}L|NdXW
zzYid!v|Y#7iWWyvygB^l@M?GsH`j;|t!uTfH3ax&&qlCc(&{=RPj;<}jzj-0T-SFr
z-`LUo-*+_s&5q`;?`VEuM>A6P;04!B`o>%vTpS<gk(X#;Xte!%;m>|A{F(2Chm~#w
z^Wc<;<2>&;Hymg60vpFm!Xf8D=K}N7{5ka9NUY5OZ^(*HYeZ5wCm+B_J`mzR*3VxX
z*D&XVbOzVT^-$(|=;RBbzeq6K8?T41-Uz*ML5j%SaE=(G*1i7U7i8#clQ@qH%UTRM
zr|^HDGYXm+cE)7Eop(E{l7V@RjE{<kw})N<5oLR5@Al9=+e4x4p(nS8t|6t1ZL*IF
z86yZyI47J1=d$xAXT^EQ=>hyVpiaDj_OE%lmSN{hZ5#h{@TLK`_LXz_P7sE7Hu2w1
z{nxmY|M13K7!AjzFr;ZNfdtnoX9vi%ipB}e7^}dt<t5C-vX;hhjd^igs1}r1pF&tr
z&&C(ioe=BcyzvSFJGY}HdKB8d3qSyzELQP$MA|fY(G(1Wq1I4)=<T7;g#K&j8@T_g
z^IGRTa-sK)2T+0w$Ts8`VTo?g8NT3H6bAP>`vwn2ULMItmLvZ(vM=H|3Fo3S(l7!H
zzZSZN+2J6$&K!4>^S+S%$MNg6CPDvqEkuYmbQ~cp>f56uZ;g&PF8@y+9tk1PJ@Tr<
zBd<9;@~R^v%ZEpteIv+8JY+j<&f7w7L#_PvL#v@xr19S9B8*v?)rmYk7=L=O|L5_0
zH2&j9<4^xq{OLEwpMEI*2l4oKqVW$$;*Nt1eato-m$`d#qe|DM-K@Jp0@t!JYVs0x
z2^Wpd8u<4b_#$pRJ8(O=TUVcHXa%!h3#~P94XESu+9x;Zwq7nC_u{7Gp^JM7;lsFz
zN2FDp29~$HhRn4E2`xbM7DVE>|2-zNg69No+CF(T5+fTQX9ooi4E;cb=sEMCm)DpP
z9a@bzpNKf0<p0o*MVz-pLT`cajeMvA&2+F2ufWY>y#nFpM`CbzAp8+3af{;4xTJzr
z^M&35Umh)C?Wp-^$bnTv|M#LWD#7yJA?pu1+AN)PJ01L&i}OzSskzuObhHb%i@E9I
zgkb^+pbfZJF+ZTV&Kc(8?JA8oG!O|&^Y}{WgfoJF%(jZ(E@nqDa6!mi;A|uw_>UjV
zEv8X$*z41u;oaA8<GJg)-p-$(UW6Uot1saB!hujb?h)KJ%y+z8+!zMvW#GDYfZfM0
z28Lg}!7m2I^xg71^4DKt`VH^*c?s(;`{vJkR|L=&S{-z*#hq(?&T1b8pS8HNhA<XC
z<}@+`!*7l`Z;d!_i#ef)6N)*jF)#~Mg;6U^S(rAH#bi#5PHsP*Tr6I$BUwnh*m(|y
zPp$>Ctm1ZY6XuWLHrK_`pV~helHce8!+rXjVK^$k`%(<wC%^BLw|^q(2PM2uej%Ts
zLekhi^Un|26xE~It{-xxPfXLxwE=l*KK&(~y|3o2PQx{(VKQl-HPa@zBpxV4Zs-5t
z&vE`#CDh@JG#}^GNE&1d&L*TrEzNNl+BX^s|8}ThO0aq^+%Si5sG&3DoD4ZrAt$rl
zd4RH4L*pv{JN)lVI1Ll4{6E6~(!<cIga2)-&g80dYSn2)DpI=mzp2YP(B<rh;T<bP
z$qFy=|E-SmR{X9CKiuz_Yo87939L122c>xJ<GS}U)XOP_de5I?2tPM~`c7m!)3!5&
z%<}U&hCUZr4ek5fQHDC4hJBxN_=5`eeGU~eiXVU=-#Yugi66)1kAN2eYTsA*;u@1k
z8KjdEJAf3@Gw*6;zvR;ADaQ?&xP6jeK~8e@xqH7nTes^I;(^5Rd|RUw?AG^Pk{+`8
zT9I!Au<)rZ_sRQDd(V3rcR#&Fp3bMk^6awlPyML2D^GOoQ{x){TvDHBM&<eTQ^%#;
zs(HS3@vOw(Y@Vy9H2w+m{@UXje~WppKBDCv`*a$mUeb@>kYRnlKkp*Q3aPCvq3Lbd
z&*3%w8T;0xAKf&4?c4_W&mQgCF#UHoOMiId{GWb!({`nUHT^`SE!fZQH1cTwEy1hF
zkGF4oSSjWDbW)D>^YFIK`g3SqKmXl%pxd7H=`#P$s`@(Cw~HMMw7Po!(YpCJ)OcNb
zgCXSg^*B<``u_X#@Q7iHc7C4PaJ<CDS$R|Y<7za5hXhpwSQk``le}bI_8PQ-jR4WU
zGi6zf!5f;sE@-GO-@Y67Dgy|j*eU~^eyRqUSbLEMnhUJLP)6szhy*z>lWKxCZ=e_n
zqq)RuTEprsY|;&}(pZ;CL@@?$_^Gu)G-1ny!RJj*O_iMErXoB>0>OwE4s<eLO%D{)
z$<_Q6bVc*UW24}RW~=|b=6WfCAksii<wAEDR2bPfIHEbplNmJAut6|{ZKkH?me#iR
zEgf68b$0F8x%;*|_T0Jm?t2d5&yF1(9Xo#E@zR^#`>#L##V`N$%}_(r{(Hg)LI)ZL
z_e}1%5W-H_?h6;v4TVs(VL9}!mZu}{Zh800&$PYw{$J|&{l+hcuRr`^(~J9V-VANK
z3n%&-oynit50A4D?hDSlZ>~5mh8mm~Z-#L<vA-9;+vOt5E8idcB65VDdB$mY=9w46
zFQVNSZ{7?;QR$?z!mOOmp}+XK^5^k<H_}${d<GZi1!YjD<GlFJ{gaFz_#c0J`lqni
z#n!RLcFf(2H}%B>pP7CCdt!&3NpQQLI$vS0aP4-M{^-~6zX|zx-Q&pPrp~tJxp3jd
zo8`}=efCK%_JJ4s!Rxw4wX=xZXp6jsO`x%(;k6oGMc2H`=Ce;*uZ`RKZ2_BZpTWAA
z$EF9Lwk)3zDL4A>W!dN@OK@I!1?&Am!u9>tTK!);-<v*fQNbI&^^x!VKR@_S=#PHz
zvTS$j+Wt>(Ff9-J1Kc?DuDU`in+@}*(|Ij?!}<Gt1o~Xp&%ftr$l&M?-t64Hq$KA0
z2bjtm&U=q8e>>0z+ZXeskJSIBm&|~rGj-GQ!{`rZ;D<Btzr_q}P8&J=6(Rk9Y#G3J
zR#tBQoBI#lJ8|#5UE6>1_|g3@o_>6yZTC~xo(zRnzdrtCHyG(%Z|-`sq2q6)$jZch
z?!~U@@RI{8kQi0q)4EVm?Ij665lGuOM<Bz^|8+TT1e*ClTIpr^BikFEoL#A7dLt_>
z*l2U^UbT;lD|PZkai!)xa<A0OA1i_KQrk+sn6jevPl5a4WG}9jdM>vDhohQng|3#t
zYlXfu!E5DW-L-P9_8M7vvi1tCNaKN@f1rMh*)D{h{D~2|37Tsqu+R+FEcVAfc=O*p
zxUw=k;a_igVE@Xgx@+aB+N*12U){AbR(GwurS@uEX{)<dcGO)f`|Ga%rTw^Y;lR6o
z2FmB|m1iD&=9yoh>c_w{f658^uxN0Ps?KnHh3{}ZXf&N2D|IT*x`fFUs})(b!`7iS
zp{_^l8)&l+Uha`Cl8+4h7&aK5A6fkucbtCU4<4V#60RcrS-X~w^Xx<a{J;I`+IK$r
z>_eLNyio+MKfEB<Uz+$0^V~I}`SzRVuz9`;&-nd+eW}A39<Gm1f9p@b^k;XTo<M%6
zp5HpDVDqgN#CffLYv{W#j`e))W2W41oA);@q+NW=m}Io_mQ9z$zz@@D(Xo2$599wh
z=ff`9M(ab4YS)*~Tg3?zHb27_Mi7)RcR{Q%Y_s>w%Zu-sAN!<oF&^abj1#_s?}PD^
z>3kJ`*^3|W&andK$4;SlZ4~$S12umzZVIk?6=>jA@w)6kjQ(Sr0r$Vj{uu1RBmdaC
z_CM91Z~f}D<PYLVu!38?|GB@^@@8|w`IGNy-1=D5zYo^EQFw#=uF2PBp4Q;MQSpE9
zv<>?Il70H0&0k;HAALyYn{<iSmVd8t+NZyt>mR!PFZ{apmo%GKrfxjhy13@@fB&xK
zE#G;;Oj!MMWX$Y>eC9p6&HebvzoBo1v-aze6W{M7``!IV7y8*h)A_f4n)Mz0tbwP^
z=)<)S*REfE`CHZhq2JW<n<4dweox<fK38=O{NhJmy8NN%^nK8eF<3?67Vs6!`@`@L
zXCPwW#nO%X8M)Q_|G(kwR_)#D{Uf&+&-@FDKfZ5j?T9m9)%TmxkHK5ifA>eVy!i0c
zRxPnJpV9Y1b2oVZo424(ANXA@Z>adX8g5noi*@wjkL%*^t>d@vtBe1BUH<91`IxGU
zpR0@i@-4=HtNFdv`>+0i&X0P}teYO^8@Hg(^(AiBC3qXuCLMNxnjEwf1QWz=5J-@C
zAcw~N1QYiXY}_Vzag*T3H6aj}gkYQrHE|@=#<h+>cO7vc2xQt;mjD-tz}uTQ=@Su5
z5GRR1f_hE(3C4}WOR#<wHo<eWFbTfrg(d`CF(e`Ao56${XAQ(_y*J=#QI{ZN4>h!I
z+19mv=dRtm_qzAqx1Wh{T5d+;t@vgU$0R<BJYp4YY{ap79xH0W5fHubSsbK_fp)|u
zg~CW^McIz6^jE_Pt;WXY_IAt%YTLH$HB968J6I(?-H1w?lT4EfZqo9mA-rIdB)1wt
zvo@`vv8@d?vdYUQ4JB>ahGnK<9E}`E8;8-^`F2h7GO_7*n6mOfzgt?`+Md=(Lt_()
zwzZ>Z*N$gQKK9LYx%ER{S!q~0_-m#jP823Vmh?GELv@@c)QGG7b6#0|w~Xt8>HdP2
zmHx2}PV9eS8mqS#TK|fcwbLYH{3_E-&vZ3fTfZs!P>}N}v)tVLZBtgOlLC$3F=@<Z
znr-@?O_SPNIF5GxVx0E^Z(7^B$V>qPGA_ak7UV9&U;%He4q)5Ta-XCjfuO+)<9)f7
zl{{u@+6PR1gfq0+u@&of!sbIE3qy}GEzDYoRmiq&Ti2qbaVoc9$-25=gx>iErU~F`
zvsi$Rw=zuukQ3j+Zof<ONng=y$2Oe${6(g5qQcDv*0yf@x0;Xm!L|iFJ}ULeDss_f
zvOXncx#rB*+Kwu>eo6ANZC=F2#>PLC`Vb^ip*{fW)~{<mVpfyjASU&%C5>wtZbp5$
z+S=hD<zE7pXkF4|b!E{BMD1Qa6qZ)nJNGgTWk^$G92m&~&Br!yp+{KrsH6dW2+!u~
z_v-VTuSp9_#^$4v4<G6>7wZ@`WswTh<Se$dJ;F4UX~A-X6m93`!H-BjWCCEYhn(sK
ztxpEWPI7AVS|35zyNXgDW*7Bi{s0=CovTdazz81gT;1*4e^SfJAc!8ko@ScRD*<_d
ztzVL|L?d>RFt~NwuQCmlH3^Vz1GIH*|D?%hIw+6dVOro~EuYqW=%4_LjP3U&9|=|y
zM=Qkgk2Q_0$i?~k^V<4ktzIx`#B)H$md@=vcK#1dYiK0KsO#SCyG7?^4;n!d0carm
z4>Ao)LD<{cxntL^+xOggoM`~bCLlG(O2@xfF|Db&T}Ilq<MuoD?0MN`sV^Kxj!xp+
zc3eL$X-@Oj&Rw_dz5Bic4;*}X&xe^to&bRA*tUJguG{Xo^Y<jJv6&5Y?bx;ZjyvzV
z=i5vJq;Y~fx9{A2I}*in7vu%Ajx-kCv-c1cS^-JI4{@-)eMr(cqk@#e8IFtMi$w<{
z5MNMh=LJba`M~w}pN7c*s{RQ3A}dHJ=TvOjk_q$=0K^q-Dri250DuXq%~g}8d6=!S
z>GfLHfFIGJv1wKE@iozil&xdyJ8W4b^CB4jw3d}wVFfJxZj%<MF#NNUh6Uke5c6Nz
z`b<VV!XIE7XI?Ia-+wJ-0phw$9oxEg?EZw8Px%7j@OLF2%M)J-n(bS@Y|_{>nFCbv
z6`N0c%`S)km}$~~Z5d17@)wd1lL7dHtRocWyG-Mx2?SA&*t)Haj;0{?tz`M;x<i~#
zr2!V;gf+fQ(v(Wd1mef7$*1}KG)@eud2{pq8|3>w(?SohEXU6YBppXT`?N1QD~3!Q
zGikcCvQo|CHSOy99<NDbpF^ROrY!qQh$I7koM|BvPT(4m4bzp>d;l?^Ry$C5=gys%
zB_CITEjKn2Jl-T}00^!m0S27#?NS!Ak4$9q_!4N>dzdCGsLRxWD*rDn%T!*#ndaty
zCut2>$}Ny2!Sr!Gr}eS>M0RQBv!<-{TDb4FZGUL;>FBl6uSgmSvcp^<5Sp)f^~p#$
zn()`XvVQ4r*nHA5*EkgVCet)%ej6J8(v~&wMlk%YO+zj&D8|-;PmZ&!019V?lf6}p
ztIWc#p&*2vy~g0mo=8y?-sk5dX(3;2>DDwU%B2J$-~I}w5p;=HpzU3tsXRNuG_1we
zoqJxkzxz<{;7>5ErE}Nbd-uOQ+CMyYd~*8H7bLBt^R~O(1BZL!!y^-?r-r%N+q!l8
z?Jv9M{zK8eV-HW9o_+_@TDI-pd-s6{5B2mM!4>(aYzm{p3LRXf=1=HGF*;*#9|L@z
zY2I)Z-2PDW5ns`79p0bVG-NmP-SAbDCKIpA+wkX_R<j~s3zlVhT$`qO%cFSo&HA!<
z|CdbT{1NhqBDnrW@{ye*O|Le7ABQk5$jkMmv@FI`tT`B$TtKednI<TM!sKsQynC&Y
zH87I<G+!Vk6xwg|p$ff14fji0O}5Yj>+(5HZJIz=_(9tSpweDPBn?9o8YJXk%dn)$
z;u4r;)Z?ZNwoE`}`lLzY00|33xoIg&3{=47JUp&xQdH70{r|)(Yscm|bCRYl7%*zi
z*nCVDfN5%4lKKb~x+J7*Z(y3tJSizenC&}vzQd~z-Q$2Ul%LkJ0;VFRgP#1NmKB_&
z`~tD*&W}kxfpLLU7XNKc!}vv*!isO%@_DAo#l`_1psD{w@-;{pf{I*U(=?$!Xk4yu
z*s?MdzG`g#E6FEwfK<+MQ}cJ3CS!%92Vv^A+i$;pyJx6Fceoz7c1s${a_Kl)Tz6_d
zR)};$rs;0|qo;yDM(*_F3&lz)m8c|~9{rs!mrbe(Rnk3~LeG3Pn@eR=PER_wpczXA
zeO8u>>0CB{$?3^f67w3$6w1p>h&d=)Oy=?uv`P5e;}TD$=c}2y#Qc0IeHpE5tdz)S
z(&&Lk<qwJ5NH)JvuwgWlw&7xRK99dQ?iE6uee&X&)cjmIS;`hGNGdOy=IiI9F1`k1
zz;)d2hjDxb_Zsf&xZPhz9QPXT>$u(DKpgiP?(4YS|A08|HQd*6yT6Gz?ls)kal5~T
zIPNvv*KxZaK^*rQ?(4YSk0OqH4fl22?#B?vy@vZbZuc7ExYuxB$L)R`aolUTuj6)~
zLmc-S?(4YS-$oqw8t&`3-A^Endkyz>-0puw9QPXT>$u%dB940v_jTOv?;wtQ4fl22
z?xzsPy@vb$qwGH5+@`X&fnR%O5@*sx5{N?*P!h@zLLwl5>7qMS(M?xK0uH2zBrIl^
zWknyBCb|ht^r4Gxy6C2hWr3lKZo240|Bn1T-te+7`|c-xC%S(>NB7F|jAzCZoLEYK
zTrA~F#ZvkcVyRe4m%kxpOZif9x=(MD7f);{KdrYjvQ9>scgVh$Rl58@9n0<d4KjXO
zDRaFxWy{`|ily}Qe+t?@E7wZ;{vl)e;oVM4Zuh0^NRCOfrP`DkW|S^(K^VU#e@SW^
zd3OV`|E-kt#8Ucm(l6yp#ZvkhSyOLQy38AHEbGeNm(rh?J}F-+meS>g9$U(nily`y
z#8SRgETz9F^^Tn5*Rqz}uQ)yDnw*Qg2w=-TOvlek&z%|NO2tyXWaeFxuO{nCW>1sz
zm3=Jb%kAoJ$)rN5c!r$kJ#ws6ETzkRv1LtPDo)paNi5|{#Zr2&jHPU;SW16c#!|ji
zETz99mhz=yDg9Nkl%MY9hsikIkIkx3uCso>lw42!H93cGvdT`ct=#6zK2G;Dr7yjX
za-GwEsK}PmUzg*he0gkr*}IpusW83$K{<c1T2B7I?gQlUn%$<<9LeUjDfbZZBJpAJ
zc)TIU%MY-&?0u<NN`F)8JXv4%YHzt#`%1~!oG#~^X0i0mkYi-;r(-GoEm>REv}Nzh
zn!fDySLGbi{oAreTC?PK*~e1)JF=I4{X02E#(ruk{axvk@}=|xvMNsZ@5yaazEmuw
zzb}^ZrQ&oi>*ycIZBo9>=gU5p(i?J{l%JM-T*tE4Ka|^~%;n{}+$rx3^pNz6V=4V3
z$)xl?xlL|2-<9(f$7#v+&_9-3%9o0z^iRZ6zEmuwe=3$TcaY;`AEzbv!I$}BxlR8}
z@-^kU$=;WWQ-3SBe=f(qCf7ms{$lBueVpEwNG|0|#ZvkgVkuvGec8uS`j=9#%l-de
zZj-$&_NC(V_BZ7AujCjha~F9GWgkoFU(0P$zEmuwe<POirD7@lTd|Zc6-(*giKTq0
zSW52`OZhUtdRW$#vHqs)rSw?tYnsX4mMoNt<y!0C%P~^ER4k?ckdCGQ5vjMNR~$>}
zKg!3E+-Bb;AAd4dH_G*peJrK_B>SIb9@+cpSV~VV<xA-qIZn!#ihmLRDw&io6{jV)
z>q>gkEGzr8#J=qPbf4ZX70Wo5+w?ZMO-gSU%ifl~pN^$;d21<KO5agFC#76V&UdG*
zyg{h!)8pQfKDi&h*xW^OUH0-^?5D@PE&KHTrsE%^`pH~U`a5#F?BjIYU&dnnUHLe?
zTjmt&<K$W#C~G_>{Zio(@|eo;zGQKl=j3)NUn-W;2Z*J7saQ(y6ifM1aXKC-w@HN)
zWxt_3=Sjs<=0?&ZmA>VQEfq@XrsPtwl)U|?@}<<Kl1qhB`eu?##Zu<xl1r&AB$o=M
z^erWqilxl0B$rCxQ_7YKrSxf%OT|*=){;x9Z6ucprSxqjmx`s#?If2{+e<DLO6l^J
z7Oqq*Wm=L;sU0Pk3Z?X&B$tY%%$+5dQoBel6-w#y_mN$xSjtRaK;K<5DPP8+?Ddl5
zQn8e|hukiu_LLr}P)grRa;aF#+*@)fwU6Xdp_IO_<WjMexu4`x^1-TXsZdIvF1b`J
zW$rJzl$s&AR4Ap-lw2y7GG|FHr4Eo>%D+f@WUn76JyNlhS(e+S)NJXI3Z?XeB$tY%
z%!4JDQgbAi3Z?Y9l1s%><~+%z(tjAimI|eGM=~i_$~;7JDYZaysZdH^D4A3&WiFCj
zN*yY>R4AqYNph)J$~;VRDOHhNDwNU>ms~2AGXE^Ol=_S0QlXT7gyd4Ol=)Z5rPPs<
zONCPU-z1lcrA$|HDRq?OQu05tDE(;3rD7@b7|Es7v64%LQu=X{OT|*=@sdla6C{@k
zrSxverD7@bM9HPp-zAp{rSy{|mx`s#lO>l@r${apO6jLcE)`3er%5g)Z$#OA3m04V
zp_J}Rk5nvWULrkG>Qb3QDwNVMlT6CITyFCum%X||j*;7J*@sg4m13z-@>urz>C%6d
z^h&uhj#Hl@$Mwi<>HbVPRw|Uz&yt?B28pHAVCj`|r9vq+L@eb>g;Hv$Sjv?OrP6nK
zGo@UqP%3?+UsKAJO5X%d4HHX+Qm$0`kGPvsZdxOyMo1>5mX_P4T&Yk>EhCn4rNXqN
zUrC>t_R4XlR4AqLGL~|sLMb&$EaggtQfgVTlq(fVsnKF7S1OcJW5iOfR4Ap!iltns
zP)aQ)mU5*+DYd*<%9RSG(szY1rCg~{N{tgsxl*B&8ZVY|r9vq+K`iA;g;Ht-v6L$n
zN~smaQm&L*Np4HWtIA$VO_D4vx!pWl9!n{8jy#r9;c7CTEVoO!QlXTZB9?NcLMeHR
zCuK^xQlXSuT`U#K@#eKMpOk*C<WlNG*-OQ#rAJ*Sed&G;Sx?4hRV;g7_WJc=xm}$n
znUpKzP|B6tL$SVC#!|7AdA{uBc3<}D0_m4BZxBm`GFCTAttq$5K9te}**_-x3uO+e
zINi%_dR@lp{#UV#&6}hyl6horACp!3vGV<&lz*IjEj?a*f>_G$mhs=^wiCs&_fL}X
z$#UB%Vk!Sr@o8dDEal5D#_Tg>|DCu`ZvR32qxdJW{9;M}RjlOu<g9#c&a}z*4)Xn8
zhm8BlZT-aq#GT@S;z45hhgj^PV)++&Z25&#oSysRa^6zv2|0JEP)dJN?w6GLl-y6*
z`?6P0OD+{k>CZ?m6-$}VN-m`$$)$YxC8ytC&Q1PV8ed8uAbTlYZr9~sUh>mgO1_WT
zO)T$D?n~LbOMNEaYn0@+;qv{<GqN8fJ%Qw6Uv4+|kozp9pDFpCvfoQAV}G!Whsa(^
zA1WpG&ysyCdvPdz_SsT<i*J%O_L1xy8K-+q=Gs;2W*Lu={pZs6tjsHUe50(nuk5AV
z{p9vrq{o)qZk1!@IA8jGIY(W70jbM<iFc8GdcUMcUt0RNlIy*Uj9-^EZ<qR1uGeDu
zStycTv7csdN#AtYk4&$JJTCG}PhZA*Ug~YBQDPa}RXKit@v`Ey<aT|u?4|TKWH0OK
zx65NOt|Z^Y%J;O~tBG*f@_5+f-sL{zUQJ-mz1!Na&Uson=T$4PpL>`4kb8Y?<Z4Cs
zaqseYb8p=4^7fE>wGwZi%;Q?-K5U&2tyX3q_hIY&npZ=qALZ}hD0w4Gyvdc^sF}^g
zIs*+h9nxwT^2(XWHM*BJX!9)OChgM}t<L8Bbcv4Xh_;4fz2Z6Sr+qr4wR4f{Bhc^C
zE}hUZZCBB6E{*<(_G$Ax<nA)a>$EcxwiY9g>5#Va$c^)nN2B06ZH<QQ3y|A%jdp46
zLgYSOrb9ZUV>*8k`n55b-=R&qPCK-IG5Q0#LML=Y+hZ}G>7zfQ1KL~;xqb<9e|fk@
zt8sAYQslvSxQ|Zg@@2@)3CJVbql=d#Pv|;rtcZT=3g#=peYDpFSFc1K(CR8UTm`vD
zo0DL>2f4l)+@Sr*?7tehI|Vkbfpr58X|+0Bz81MT6|P)IuLT>|!~Qz3bpvdz2Y1~F
z2XvLTHb>rj6LNP8*tr?jwuBqBPusU3Po^O+-3l99!*x2^8P4B<+~1Wst#*UW8giYk
z(k7kI$?oV6?qvTSuyq%l&=GC#iM)6>a)<7r6FPmpxw-9QHh1}Z!C+swmyY&>-TRR1
zHrz+6>2UY`$gTZhJ%nxAqvM%oGbldL+^K{PXlEAkt_P93v`71NLMOES5c;Dsj@KTB
z)j@DKog55zJ%Zes1E;TZr&}`LZ0@5+n>+cL5l&z0PPbrz+1%&r&7F!4gA0$t#-HK*
z6R>{-+(#!z!qJn+!{gxc)37=bE<MBiR5*E-J_lC+fYo_$NC$NBdF1xx$ekDAh)!P<
zPB-%kv$-$5)ZEF>VQ@riSHfm5a+j{rA>H*d@`!fngzlxo9?aMC3i|zP;L5A8a~)iK
z4YqE8^RL6+EwK9r^BU~E37hxBaSU4_TzL!DAB1yn!x7z0yALsc2f6Vu+)b-TVC`Mx
z!J}}Mb{>QC?;+Rg%xUj&xa)o75$)05lgKL{Ah(}_RRh+ahFv<Qb00E)7I{Dibk|47
z?T9%YzX11r%=}f@{1lE~XHM%4*h-MwAHwPDyy+Iw))%n$k=Y!CwE7q}zeH})H9DY;
zuaFy`qCcb)+WZ>1_62g|8~RK3)B0C%>09LLYdE1jy8Aoi);Gv=eXvivbn-3o^mXBM
z^S(2i`}FnUbhE!VoBPra&7E?7fD<~V%ReGFe?*?XPMmJ~PiAxP{M6hjlTKeVPPg!9
zv$?PR+}x??7r6Kf9Me6t`z!LUUy-Z!O_~E;Wtw}7_Gpzu9%Ybg1K{o~><@%XZE!Rg
zF0{kW5V%eUwAq2&9Ev=oy`^FKXL4{pqhMzM>@ExEI$>uV91nu^@o;%C?9wqEO+cQ$
z?vrlb3UGcXtX6@`8mvu(wWVNxRXC!fNw6~vxw{(NNBfiE?(}sY*@7vsmcHI2o4GpN
ze62_v(uMT3BH6SxkoV9IonHodxF+%%?XLxwMk3b>a98>ol58Peqm6Zu8|iCGve_HK
z!LqQkCG#<Gv=!V-`_tg+Smfc>a6WxaNj7&I=Cr;o^Yk^QblVONXp7G4$c-J@KMqcI
zg^lsByF1)RJA1&r6Oe2B!upD^X~PNa&w-<rk-KwYy9-Vhz}>6B&O%sCgssD2eO1{1
z3*2b=2)KI^a`jhOTMdqngnMbth11u%(#@yU6xcfoxksDFz=nZ5I1W~;!(lfZ(bg%n
zypGk}PK8Tr!p>>1J{3+*hhy3}3l7&pZdKv>+Hg!;>%jJ6<f;Ih7r?!=x(wFVV}3Q9
zTOSUtforsO9bDc3xeDNDLs+{Ru5JVex4_oMuyF@mGU*!JptXD9-c69Z55m!=u>BBR
z+6?v|hWlE61n%CP`J-@t3s^k{d$d!BjV+OfPr`k)@f7TAg<N|Y&KF_lB{=<EQ@Yu`
za4#Ld441b-9=r+{wuQ~t;5u#7#&*c9*O5nbNSC%p9=(BF?LfZ?_p}_tMGJZG7Tlnn
zx8d#`kw>()6KuSL+@oVUzcX_4UFNh;r@s?RH|;&-E*&=D(yqwE58(!_eF_J=A$Pxm
zo!w#kYdBYegKywE?R*DU_h9}5?C%MOKf;B*nEwPvw3FGidER|{BadlkAK1zwk7>ID
z?%5Z4MC<#(em~>^tqp?H-_@m?GZ?N+r!}~1e>hkQj_7C@?94!(42QLuu(=HTX*Umd
z&tg6rt{ecXF>vlcIHaqzu^jS38M(JS+)KxFaW?WmN8X^Faj<g`a%()?M~8IfVC2RG
z=Cr#KoSTbWtqgb537wzE`MZ#Nbi4{|%tvldgabOE4F|cqD)Jg_t_GJ6L7vbJ+B1;*
z3y`Zd;KD+BO*o_@I{m$7y4h2a*Xe{V9f~|&3wbZ?uMJy&Lhh`?<LQ`Ae=nMDegS#h
z^15)P!hC%=cR0NP+(X+Nv;WV?l?kW6Pfa(IF4F<spcC3Y0{zY=I6k67y6{)z5nZL@
zP0?RC61le-T&LqL;OgIa{Fbopa=oqK9@;Cy#iNkhTf+@H-WIMMja=KF{l~x-U8DUS
zke7}{9?^B$v3UG($V0kDM|A#puD2ulyJ>GHSUZ91?+jPzgx0!|`@10bXl++m{^6tM
z<K@y0ozO9D?}q-;-_ak@b=uq=dEq3^NB7WiiN~Le+}aDyox=HOm)7@1Zk>wUw_$Y}
z9MctApN_mid;7zI$Kz+h<<sF{7TibsbK&Zl%;|*I<{>Ygh1{g;bV#SaCv9%?(ceP{
zw0;h9{Sf2<Z7zf>=OT~(1Y1=&I1G;Iq{9C5kh_P&eRM)s79%(Rf;@LV?9&xm9f7<-
zyL9^d(sZ-`hP-?s?6_Qyj_Jxp$koxvwToes?xtf}eu>$fKR5>c6}t7lcL^PyfIPYc
z{Sj?k3hUj-ecCz^E?kD(rG45w33>YW9MUbIYqWkc@~$h8+a8>|5{}M-wX5KSF4M-@
z$a`srF7}{5rbAjk2mQv?T#xRdJzBel>s8So(!pZbxfZ#50i4jrh0L!*t}cet-=(LU
z<HI4XE`f_TAouBBTE7f=<woQ&oeSWEwrO=G`qfRywX5K6I=LDy-HhD14mNLr_3Pm}
z9nr;G*?$9b+Pw*G+=kqz&D-JV7UW%bz~-%R4;|bFr+?=+-Qqi$-w6kI!G*iv@E$m!
zqkG}*yOBHh!TEdOD1;ld`vC0Ri`;&Y{rABhU7_QLkZboNcOQWR+NX0Na{n>py|n%W
z{Q&2utp{QKDdY*Qo`$<0V*U)QKMaS@az5I98SZ)vx%~=UqxDzeVjX$%8mu0N%^236
zfIYgK_TNTsK8akt3rDm?TTdbPTREN3#ix-c4bJxrY<>s_wD&Pwc@}v@C$#kmayR1f
zpThcc^yhF)2ek7K<ocJ$&F5kJE4V@HU&EDuB9CeP1vvPY^V8;cu>B%(hwh~ly7Urq
zy$}5nozSIT<lgtld+GQWIQI(I&urHGJV|K19S&bb?sve>Yn-nitX_vBx<ae|$Ya`|
ztvAqb(>2-|jQ)I#+!_M+(8f^Md<%I@*J(G8y!H<Agf6@bd&?q^=x7XFc@Mcc7FO@`
z_;GOV1K3`P{SDYy1@8Wk{dE2#SX&FZ{W0v)5go0K-2DW(vksj8os)F)X`7DeI-L~I
zU;YgJYJE8WIh@b|ZElFXlpr@Yf*Z6=n_nPzX`c>g^(FF%F4NA&oR9YD(pTt@P2_#F
z+61<~My_uPN3^*aT>J)kK!>!kIr74{$lWdAkWRLQOWz?6r@>u)u(v&2{2n%Tg3TY`
zco*3C5w>@QeLC8M{t3ChC!GHoc4&_d>D({K!@bcT(lMR>{j_vT_Ca2wt^MGl$~N<e
zuG9K-<mC+Vm`-SO268XUoYvc5V<z${ZFR$q0myyY?&R@wFKwKNerq86>4-K?MXm-T
zPfmyPLty<3*rgLXHxzkvKJp$~T?m&n<nd*2xD@BR9PSzh8?;O7S0XPCXa7}jgLY|q
z1akLU<dvmi=LXnZ29D^E)&k_^k;pB&mriIakKDTn{dGE_%~8nxTafqBF<o93xqd71
zUfQOMqmjpSoz`zdzc~iEx}C?<F<lvp+`0pKLhCiySq`~JH)wSi@}A|9+jqkS9o8Oz
z-Epu>H)x->#xs8i{kaKn@-Q5<{0MBVfLwnJRx83<9j?;eQ*do1<leJzurlX=4tBa=
z^$P5*0y}g<+pn^JBJzliX!|wf#Z{TpHQIawd1Vsww>jTxuzClMXf0tr1-VYw>6o?*
z&i5ty_0?hTYdE1p+Fk>>`yFy~O*o-zwB3i?n2J26duaQ6uD2F);|DmPW4f?5^5{q8
z5$*mA`|BWgeueD<Y^lwg&w~wG%fR-!$h|C_&~`iQu7}+0fOG3}zJ9PzhqSf<@}xg=
z+R4HB4Uva*H?0pqt~Nq$(+(Zb39UNOU*4GKL)U44FxNMct0Azy39OBTtxdTe9nt}9
zY=%6ctF$u;#~Yg?cb12XTfn*wN3=_uTO!xSBk!eMy0{f`V+9^hN3>N$9<GQyrjwOm
zXBu*MWjLX=F1Wlka%WYzvJLwu!TD`D|719~9X$o^p<M$mY>!+`h1366FWsEA;Dk2T
zhAS5GfL1%gMge(12ei2p``1IB+nMvP52yb>Sh_{Dz6+defIOs~4dKGB%;|uRH)6gU
z=ie9(=!n*LM{bzNtF%XJCC*QG)7B>FS9>70H-%kV-yF{GiQJ{TX|)B9--|h2p^Yt(
z_tDl?aQEKm59svohNqifMDEhwG&r{}a&2qobWE%LkcZoIemb_`qRsgahU1yAI~Vq5
zaefD`8~|Gj;I0GVkgn3kLgZQ*d3-1ww)`i!I2*Zt7;`#09Ci;v?i~S_4u*rj!PXqu
zJPKBGVfPrgMyq3Ca~|@9j_Key<o0~z_VI9o_G#Ne9@D+F_ILDG58?5&wt)SoAdhL|
zRJgPdd2l-1wFuVFfIT{()uG7UGm*P=a2Blp33+rrY#&Bn12+zb{p(==&v0@*Z2bkc
zZ-Mo{!ojU@M4NZOJx3zfYjELjuuBKDx|8#{$Q`;$d$c+VxqTP<yXlb59gSSw&73xA
zbqsQkcIcRn>4YvGi+=MS%vYy<+B^=qaW8Y)x(_ZNk6gbWZqPPeJ^{J)Aabi4_UVYW
zA3|O_kvSdF#=|`R@5mjxm-buvNyrnrP8*Nlc=Kc)PlvSoD01f%<kn-bIu*9-aQgoP
zrJGCVPJ^Szkq5N?1l;9uz9->2?bGJz$hD`ChqV7RTsZ@ILMOEK4D#}s$OAh4|8LUG
zc^0{S7LR`p?m8PbpNDI-{Q_J)2YE#2&xQ3Dk$bd5t19w<uF&cw^e1#gJLjQa>qXw6
zExNQAx%D#gUOIRMw$JDBukm==qU{TitJjeyv`tqo<neDH@1tGXxd^%OCXc6mx_mK@
zkCDf;OP74)Asx}~Tj(!cg4}u=j_8CgU5Y$@2YD~;zRTk;LvFmsyyXwz<Z|RDUAO{v
z=_;)n=+9k=+@W3Cr6bz-5dGz=&>zu#bW9g}kQ*PNzlS#Igw{Vn?p}?4i;n4tE?&d@
zQ}hS4`V7{uMIO=~?S772U5DIEV24&;z%d=s*7fN3zeFC=&R4K;1Lyl1_G#@KSi2E<
zOn1}4x5!n1-2D!&&{iLu(E9gq`6l!ybWDdoATQmF-1`xZX!|F)cnfmlXE>zQFL2>j
z<Pjav{;$ZpZbR;<Et=0OJ+w>r(H?Exj{cz4PbajxgLww?1$3B&-5Sq_uG2A{yA!!;
zL%&U%bVz%2*IitXc4^g)<NIixF5ZoPldjU<0Q5KR<@wR(eX!Pvyh<B%Lfdrle)M~E
z4;|7fM6L$${AisnK7iaFf;@Z>c4+M(*rjbcpldBJh2#B4&>ztWozUi^$o1jqHy(p6
zx|??CnD*$dI{JOup#wUkLt1;B=R@0cOb4_Yf%DOxK)*(pX=`cZ)|1HNJY0Pmc1FW}
z&%oArIR6jkbeVSP9@?W5I;4xwb3NLpwFz90Hfigh==bOv?bEpzkcV`Mj_H6_D`0;0
zBKmdOqCGmKwH48CzJz|0_Gz2$qkY=$MSnzxw7C-IGhRlnR)%|NjqZ8{xkY!=0iDn>
zU3``Ebz#0LZO{oF(9Ub<kLfyXtb*gaUPo@y4sFvB?Y8>gKz~FBv^A0Qy@}kTyJ>S(
z<nlj)H=j4vB)CGmbkfRKLtcIh{Wjf8hjj66<mP1bhqOzl?~T>mrXa7<4z0b5JfU6M
zGtl2hYpe5o-b24n$F#l%^3warJvySzHIZ8%AP=U(y|l3wTx=kZ=^AaXjlAna<k~uL
zmG<b|N67U8a+mh$gf`YiUjCTpL&tPXo1Y+e*F%4ecGicDPmxD-4{dCKT>p&o(^cBq
z5PAM{9#4C;wGr~9mDAOP^KFd0_yug3?5E95VE;?xK5cykt4)#j(KcQC8hJ=pzJc}4
zI6rOC*0;zbx=uTrqu=}vxw8cv()O0j`?wx$e9!f^LY}^#Lb|zhOvkkUBXYZl{=!eN
zPuFOD8uHT5oR3c5qaod_t(pG<8{5DU?a|J!$P-#qZO!AIZPDLNC$zjrGV<+^_s{`d
z$RgLaN1nb<M7lY2cN?70svY)rK!1hSEVx1YboyQs>89_9yq6AXs~^|f33;8?c81OV
z%;_2((Oo&@)-LF;(rQ;YC+}~OZZ2J+jopwp=zuPDqTk*fd7X~w!a(F+33(5l(E1>r
z&mPD<I-+xfneU0*r6XF&`)@SQcQ59&+8gepJ=&4?>PR<pALI=>p=}MhvoG?94(Kj<
z@5FR7_Cv0Q!2#V%8#Z!lIP!?D)7Et4l@Z82T3Z^{_D5c)9lE>>a(f2ynD%GF_DJN`
zEZEG$KCMQ<`T;zi_UN8vktei1n)4lq{wf{O<{0E|8F_<Nvte&6=cCQ#INw3YOUuIn
z?dY&^Fz2HK+8)Pz4)R`F&E<UKk-Kz6+w+iH6OhMrosQ-sFRp;xao`&5(fJjT>kE)4
zbWC@z#Q7H@*H@+wg(KQM46b$|*A9n^tH3^8r}ZO{dlT9JH@LhiY|*`RKo=*m-$j3&
z4(QTq$c>|r_tFXNOhz6bgWR0L{$t@<%g4dCf!wF-v~@gkV|C=giLhD&j!uR{Iyn`t
zu8CYb9j;7;oiku#EjT<AZqVv%xMywT<~gvl4jj-8+Bg@vT|geu4O%-7xwkIoTMQT0
zgYEO-h;}Z3%j+YL>4>&2L|)tgc}Rz}eld^V5P39U%jWY=Zd=&zguCgGj%jZoa%VfP
zPsg-11bMJMa$_iL>;P*TT%*-+xN0E}>HLncyEO8M)|P=wJ0Z76!U?S{3)gl=?$E|A
za7+huFdF^FuIwKJ2ej&fyLU&fO@#FloU8^nXm2uH-UGRs0{7B7ZS0BMr+qr6`)Jp|
z@!nqOx7UQ7y<vTA=KC;T7q0IMCmX=>=9A6GIoJpeXvc)@>ByZe;mZE>wy-w?HnxMc
znasCmPA5CT$t>jV9<Y8Oy$`I)a6sF%zAy4#+Sm_vXQN+Dhsy_XK02X;8OWo9k$W>?
zXAbPlf^&1>nD%J*0OVcsc>IBIFKx|+d**Y#gW#eA8wbNN9nhsiINv<vr3J7*A8yc|
z13L?mCyU@{5gh&rt{w`<e}U8Y>`k}i2-v69k+5Dt9?(@fJ^^{*&z%1x`Y-fpaQ+DT
zOt}14*k25H9|=bn!Oq`c?GjjXVUO;n^-Gbfqma9FnKmv%9@7zBI-31G$h(iBujYKm
z!pZe;gVqA}ABWtz4=$eo$8<04-jCesMy`i&L<e;7MC9fJ$m_KAAm{%(a_w>0KAG!1
z$N5g-{QrQBQ(>PDX#IKSry;jqgmn+rUV?jQy%#Q=jy#|PI(nJ&oq^nVg~!t#oj((K
zLVL9JD*Dw~$RoN!+pi%{=$I~_jehfW<aIiv&2y0JZ}5C*pU$6)Jf<DmeiQvM?bC%S
z=ZldCbW9uPAy;oB@1<SZUW{CO4|(x?*nS^w(E7))b|Lcc6F8*pPkH=B$c?YzzKh|6
zc753Y7P)>29Q46;+W8)~E=3;E5pDc{ym%RM{YM^8dq45`%aL0@GpEB}VCM?tUfWj9
z=b7@Au-gG^SJD098XXN_e-CnV6kNI%4wr=!+FA|{uj70=Y+ny+6JYHISYHv2Xoog$
zWWE~mo&b(${U+F(jJ!$*Q{b+fk!!2NAsy1iTaa68Ag|F0-E}MHUlX}cYg1wEHs-WT
zYil9zqkXz^JNliqnbYPvaODo<S^-uySf_1Tt&6-tyL9PJ^sDud*Xd+^*uD#SvLWZc
z8#XtFJ=!o~{T}2V?a}@w%<n}WZVK1vU^Cdf4|%jX9MQ=Zuzf#rZ7VpTRS|YW<nA;$
z{{ZZ54g0jVEnIjIxwRc!Z+UyT^bqqM;0A45u=_A_eMh*D4r%8R<nB&9p7v<tQRHf8
z<UO=Q>yIIi=qhdOf_|-zJfL0L-W7R5$F%)8`u*LI_tN_AaPbMQN7ra;HuA#L%;_4f
zAB^052Dv^D)}Dop`EU;%90Hdk<_q9n+FQu{IpoRNaG@7=&x6&=u)mo7bWDe|a{=<w
zD_rkFxK3-&z`<L{tqAUZ8}^=q&3AbG^KgT<{|USAvi~LazXzMWaE*59uJ@5!uON?T
z?^U?;0dnUxIHuj#;YtH}OgCun4dx#r*WZL2wEGqueuO-E2ev<kt@q$QTKfR*{sg(!
zfb*Zi?q{(18S~HKkap<8=g5;Ukn0Kizk(y$qRlUm8{e}3OW6Gm4rr?n?)nOOJfPV8
zdS!nDt3hz?TUZ+l8-1{~JRH->IN1LlxxFG>`2p5ff)m=O?H@Vc%E%)+pv|9<YhB0#
z+N1TKkw<ie_E$lFgZ3uE<zLY6uF9OYCc*ZvTyHWQ(;jW9_U3gmryvjMkTx>NJp*|U
zt*s90S>z7w(g~f={u=1F+t9DC2}g89o9)Q`smN=zvld+FKyI!JtA22@A>5#YP2isX
zTyIlY%fa^MaGefmV*qk(3*=Qgp|wur{+7tQ>4Z*by@=cyi2j(4X?GfOYY=je4(Nc+
z4MuKljs6Pl(+Qo>_7L`OgZ_vPX>%xYV_W1kI<{b6<MBJf+EQ@53*1L*CAdC}^X&x(
z!{LDL8UaVNODB7yUoDMXvpFAa&VZ}SAP;FZ64no3PP+%fdLFqdGjI7I=A)3ibd`4I
zAUBug@pIuCZOntM(a2*uqRj=!y)no`T8)LZg~%P+IutgSLv9=f*J<r=*jgTWM2EEc
z3v(U0^;g&!2Rn2(?a?tE(B^pbhjf*W=!8yaYXbVUBe7l&ZMi(36*wOq(#f&Nt1BW8
zj)S$8VEcHuo7PT%`{<A^uZ(`98+lA8bg2uudm{3P_WuqSS3z!_1c!8ZGF+I5Tt5Zw
zp<Oz^Dspuya*sCYq?MnBygUj0ng_>pat7?LhTLBa_fBU2`EYRx9MiqDc_DJwK&~!<
z?bYFkj%oc;<fS!`J9I>cba74O+GXeu>4+{)MIKy^JfcI|SPOY_1&^oIm9V}x=cirT
zpkvyk&2`YPUyI|d0@tT|Y4=v-_Ik*pJ78mdx(0`|e<$bL0J(V=9MLgtZHU~y2YG%Y
zIJ_73Y4d*A*qC_;hqUn^Tr!ax55WyOq05^f_a0_W8;`){O_4`*gAN`=?rerUehgNd
z!$}?X=;#T!xCQ&^fKHx5UfvS9{WKiY;j?hK6>{x)xVs3OFTjOqu=N&fZ3Fx7!p636
zM0>RT9`f9F$m5UTuI*v{W7wsgPhfoq<nE_%jkZ67ixzT^?xD@Ek%v1X*S>+Ro#6Oe
zxR18lrZvBB%I%8W?hiNUcp2C!ArEx+?+IJ0v41bvU6bCM`BWai5A3f6Yx}~<+OSW1
z>%jVc$ejXnI$jqp*vPdF;FykRdpdGsL*x;yZv<QW^Z1RK)5&IVFax>172G`&c8YL*
z7VJ)g{g$_ZO9vn~w}aJz^!9K!t#*XVW#raQaBeoN?F@UgOXm(k9_)&|MyuW7(!o5Q
z4(PCi+?s=2-wV#o<$U|XeYC$H?9M|j|HxqT<E4+*ro-NR&bL3Dcjy_gPlq#M>k#De
zEVx0N2f+3M<o1DZLc3+yU5MPB4Qq?w@E|y#-Gkx6p~%%dIHB$NaP?2f6Iwrv{fm%m
z71%fw_G$Mp*gl-cSK!>AVgJu?m9~y#|6h=6N5T0cVC!hur=4S9{jbP_W8r{~j)MzF
zBKJ;&)!*RcB)Cc&r^9_Na_tP*I|`2I{L!#~CUT$l&Vu!0kb7q{Z}}YN$09e+g*`f<
z)p4A^io8O*=fQonxfphiN56hPoX`<nK7r?R0rHr(FN90o$c>BOh}JHKtrL+epE(`V
z*58pwmoTUOOX1Q<$nDGFg!Zn0D<^aQE8zz1(dAQk{8h-~mV03PROA62(dugC=4r?+
zI-q@8_mIcepua|2*Yfz&IX_*a!|Rxzf!w{G$J6EwuyH1GkM?QpM&$XkkXy7%s{nZ)
z9nsF&==X0z-k_bEVf!59<}Gk9t!{;_bCJ8Z!F4*O%_@(-9eF_8bpAZ#9$ldWx|fdV
z!eaC%bd}cb!2Ifb<OXfi79G+K-E{%_eY%^D>4es5yuTNs-=qWDrnQTZyL5#P=w3RZ
z3m5Zz@5KB*?b10Pc|<$3x(odgZP3Og=(lK(cIZCZqf3{fKcH)LOy@5{uI|QqF0IoI
z+N7<^(Qnf=I;M>)kh}L_z8>1AwJVWFbcIgnnAYya@x`mqZ_oj4(fJ<a4(-w&-JnC-
zx*GinU8A-8u%3Pm*Q2{>n@(t-E?tZMn6A^t{g|(C9deiMp#wU1J&&gyT7@{im)2?X
z2K1YB4{g)hjmSN^LI-qAN3<27KcPcfdjRWq-GtnrJ=&)GXqPVCjDDZ4(IK6`1$j)n
zw0aQh#k5WrZ$-aJ2ed=yZ$lo?E*;YiT6+ld7jH+uK?k%&=kGx7(iJ+Od+C@i)X=XU
z#{5-Ur`4UvP1>eyx=wp^*InojXpfHQK02Z8yV0*bg7xdPN0;tFu0M*rL7Q~(UgQql
zLwj`YKAsO<rX#veC$w=t&*w3$=g|h8&=y?^(eKhVI;8ankSDZD>vhZ@(<W^`h<=;y
zp*=eH5b}sF)7s;hFQRR_@G$xV+NWb$J%U_&0>|65L5H+O>yM(}p<UXeV>+bG$Iu_s
zJ+yif>uGi5I$fbnI;KO~ejNSoQ@nn(PZys+9?=1v(D^5kYfs~Nmp14IZPBHt(C^S8
z?a^INBM)egj_E#He+KK7pFzJxN3=^9o<;7{J{{6pggl`uwDByj2kp?-bLbE0kk%sf
z8~;FV(pB1_)$_<bx=aUjL`QVtpFBU>r}gKsUhW01M^|W@ZqP1WdJ+9TU8nVbV7}r@
z$YZ)rtLJ(DdXXD+m9}X0GIED5(;gks0d2m5{)q0O6Iy!}x%N-2U!hGprd`^44gCRK
zqhnfs9l3e|^L5iY-A7xr{Ra9yx=u%Q;Z5ZFi<qy6cIbSJ+^1bSq8oHVTW_IXdkOQ^
zXoJ?@MsCsFv`Z(nPuuUHKcpi%rp<Set6r=Z&@OGfhunObIc?MV_mO+FO9ym=j%e!x
z^e1$U)?UH<T@B<0?a>z9M>}-+L-hM}M8~xG5pwNS%-=(swDvJ_o379<-Jk>7`UL$6
zU89ZHc>bRvcj+n}(Yeo%tJl%*&<5R0TeSH(`W?E5_Gm3Z9?%s!rej*Yf%U8}(67@W
zZPLb<$ZguEV_N?Tx&J2S^XZVzeT_V!9a@Xg-%A^``3?Flx`%e?{I|$G+NA@!K}U4y
zJM^o!uwF=;w9$v$p{uk{tM8GAbeWFnURrw_^P4}Q-=ceHkIw&yJf^#8;~gB|N87ah
z6Z$>6P6xE{GxCV8(h048L9V@v`OCCPN3>0wzoOrz1KOu`)zN%iGNe7)d=K+$8RY7H
z*rRp2kG5z#i++c$(;jWKArI&(9nraV<O%K2+6P#_mp15P2l{O~pnY2JhdiRYY1P1d
z39Zwm{^&R9I_=O#4tYRV>4eS=;PD?~{tE5U4LYQ)PV^^qjn+QG@%ljI2Hj0tbV56H
zX%PB-I;2C|7>qooeOi5t^|T?#b=swUS`9^Re}aCOcIku;=#qy1hz{w5?pg}D_9^D`
zXoFV6kXv+_cIb%qXmdFFL%N4npJD#|2;>Is(l*_oUD{e2{XQMi5#6;6a_w`TKW))!
zB#);ZI-z4)PjGxOkA8~|Xot>^LhjMsbU-I`M3<IDzxo36hqO)`qmi4mPusLM2DwYS
zv`;tah%Syre?s@r+Lu^Aw;XbVF4Gnr(GG1akA9E#=z#8{W4ffHU;m2tm$vAxamZb|
zoA&914(ZZ(^e1$UHonIE`3cA!+NDFfL2KWjzqA7SO}a)qbbdwT9$ldWI;JDqT#4sL
z`?UTo)>A8UJ-STWbVR#!p$q*!?bG^qn6I!3b2_5+KIG;^<Pjav)(^;?RgvqzuzwO9
zXSQyB9m=l;+gZ3u8~xzE$;i!taLs^?L9n$t9ME;z7>2xSP3E*u8^e+3ry|#v=KOR-
z7uG@^ErYyH`=jZ#k%wbpcOBSU4$c)|e|gxWL%Ko7w7D+&T^;>3IvfX^>miTE!yz3`
zfD7v*4_1JKmRE$kHekLI+(U;e!^Vcly)L*$o0DK?Bjn~(xV$mvqZ_oj7IND}ZWZ9d
zCUCSa+)Fzfz}}|F^^MrS8EhBf?#<zFd$_s<y)*1?2?r&(XDc|_A2z44--E;LVDk*P
zvOVma3Fmi!y|dte_RoPW3wcn56FRyM)^<T2-2m5G4tV^o$c>wr)6vb$cSCO70*AD^
z6*hK9u5RP;v~@dNEFpLAfFnAp!S)`={rlm{o^bR4T-Xb?AB1~om(K0Y`5!{=($2$h
zZXeG72<+3*qp-0r^7t`0q_t<@ct7Mu1ozmmM{Cnz_j%+EI;KnebN+uar>z&@(hTGQ
zU8k*=kUKMxhp)nwS+M;Y=cCo@obLe6_ZDm%2s>}X0d2nnn`Pt)9nk7M<i**@L%NqX
z-e-Oga*qya`xE5W9OMyQqr=aT+jEhd37ne;$6vyAT73m~%|~v011ksiX_vOXMV>zd
zdGH+^(bo5HWdU;a1N#@k=FhNN1c$%CJ#^H*P4nwV@1Z<?DY$$X9IXb&f2JqH?qA?w
zb+~W@9Pa@;F6`_DcO3<X`@juaO^17rMsCf7qhsh<uzf774uE6YpAYvP&-oqLJpr~4
zfwgWpru~)|AU94#?k|MHmKVX+-;pPD)bgK@dnY0H4ukcRVZ8$TEgt~~ryvhqI6jsA
zN5S@K%#VS)JlHxOZqQLT?4OR@JBi1iL7xn(GvVkI_S4#Fuz418|4g`WHtd`WYv;gr
zmB-WOdF($Ixp@KmtFU`99MRzwaQ!^w-c@jUF&tb27tUvXE&E%(9(FE3p4<TEFN9S9
z_q2QyY+i(1yBUt?n6@wG@wX!HqxIWh&qp5I4i_$g^%`8K&AZ{?QsjOJ=Pu{*kHYp9
z%pZeeI-t!fksFUAuhZHSJpL-==9_SEH5|SLcV7bs@6p$?|9x1yj&8uY>*0j%q1_LW
zn>QdgK8Nia*-yuG_%(9lCieHieY8c}HzN<eN1nR{c7K3<+W8fZZ$)maZJW<m?rpG>
zf%CV+VFz5i12+4?b=vL^mutv_9IW37y93~WwmM<+F68<^IHD7}d^d767<nHZ(3N|T
z`$Ldx_rms2xJv69+;t!Fhz@9PDddIwx!y3iMu&7EMD7k}PMafO^8p^eG#t_)Z9d53
zmqA{q&5^M65RcEp5gpRj!#sWz@?P4b3y&Z-Ml+|~F>v`&9zPaVkHHD;((X9+*O6N*
z!QGGZ_%7Id0*>h#?My=MKgs^daOEj_3f%QH>=<wl9j^}C&v5=V;M}vYH5Cr&m@Y<~
ze=Xz@t*-;S&mj-jgG>K_o%P{fTHk>A^T@T0;FwNm`=301W8?{)(C!P&P2}2(a6<dE
zvk7wJCFXQUJDVae^&*ey2JLT#yz(;F+Z<M}aK0^Ik9M|%bFU)Tw}M^Tq#LwDTd$$t
zr$aiTyIx1Gid>I2=sr52-8ay0PeZ@<CLGZo?QM-bA0yYcfqgopyWT=>Zi~E!j_Izq
zk;mIHr`;W3;~nJ6f*W)|`|lzTc0yi$4>op(yWfYSJz?(y*tg-Z!Q*GZ{)hBT*!l?e
zX2I%X=Cn^owD}2g>j3ok(lOorDRNatUiggj(S5W%8+q+><nf`f`2~;v6YSFto&S>k
zbT=IxhJO7k<X(lxw|qF<^)>R~&v2dgkAO?xAUFQXoc8_(+utG&UAT`9j)E)S@%W?R
z25r$+A99-xXqVQ$NAA-Ot&YKby|i^KT>b(5)^S{q_PgQgkIYYm^`GE~uF`>ryys`+
z`swWd1vbur{g%&z!(Wm6bW!zdeqDDi=X@DBqV+7@gS@K^RyV+UJM7X`THVOJ1Gz<e
zbVBF*asB}PKCRydyZw<ncfxiKj_F=HxC?oC0Q39cu1;9LAMR;6gbM?ahjg7bA3$Cl
zgxq})ZqVLCusfLf!*CyMJ_1*UAoplB6pm<@HXr5jw0aD7H1r2_eks_lBM)hh)`uZi
zk0bYJgHGsxwuhtNcmn;sbWE2<AlIHmUZYJqzcg}}uF%F)=uc?-1=t>me)~l@ruCPY
z=aG9a!^SB3E!bTaHs6J<(Qx!W+%*O^8gPSFAH%h=obOAxcRASYgZq|;weMk1ha=h;
z2m3!Dk6Qi_cE%&Oe}c6Ma7b5Z{b%Gctu(XwdDwl1Qh6C2xW$CbWiq}}>T0QUOW(<}
zvcZncv9&h#3lE<+W6JbJ^XJZ<F}Z8vZqw%+I%}25+s>apQ`+}d?RzV8h4x%_Nc-^i
z_V$i!M;8BjpHjAFHs?`iE?IAkjMtP}M=I@0*E>MQ>DIR`*2_)%59{u{X#Rp(a@<HS
zb9d&nOvcMhZ2ozMpi{LkZd3b@%MKZo%Xa94$H||a9obc~9Yg!)$7J(zZk@wA`;E+Y
zb}YSq{|#1Ke_C6oQoChm%YW0d%l8*Fw_#>;*CXdON=E5*dQ!&ENIl1MZQe)k-_LWi
z`E#A=3ubLHZ|2U2O?P&kJ#Ue-Xn~w=hw9g%_Q&(0#`$w+Et!9!j8~H~q|z;&KRNBc
znSbr6GW}@PZ?u}1UVORy_*3TMI*!aaNajoL$B8mNS?V;YbW7K<{+D%{mpMKCHP?{o
z2djRA)wh|BY<srtUk|S`Ie#Q`X);eb|A#XEMC$Y3%y0jv`J1OdRP`IGx|`?SzGQxj
z^BZR`nSW~;Zzp9*rCWOb&VQQ!H<$k`c@)yk=DbyzqxE@kyNvIZ3Z>FH(~rxCWSnl=
zCU_idem*QZ+?h3ba(Vi~^5oxsYBWDF<jCRHZad^u?hw^}h*ImyN8PBl{>^z}uB)B1
zWZg+JUPo#@sn)t1$~fJoZuGycJL{1DeN}ty{WA9Q`}J2jN3}aj?bAMp>srIj=6tTq
z+q%DJ$oOojD%VQyZ?rzvYkl4?ICS2k*>h)2o;z!9dS?x}Zv$25K(+tC=5)&Dyzy`5
z{Zhu?OZ_C(x<75_qW|~T@ptnVn%8b4xptj<r~}4k*UHFcTerP+_2jYPdX~)Bx*s!S
ze2~;!sn&XnWSnmQ$9k);{o4iS{QH9X2(vj)DD$<}dtSz`NWCuATJK#Mr`!LrUh^|)
zxWzlT;NRDCxt>v7vfgGg-dbuqsn&YC$oRilulbqvul3{~vHbl7jk%sL^W|m2^z-*t
z8Q(2+pHyqTM`Zk8thf3ah2LJ#BmZqdb7>RvoVR4XaWd|bT2-pG-kLH_w?Dd`3l}X&
zKOUQlZIXVt?5!TmjBPKZAMP9c=HtcZdalfum-*8Bce;#ysmrBW>)j{gbo-<A4p?&y
zt~b)!Yln<AMQV*5<WnKes24NivIE+4?ftW3+dAbdpfNz6BQsOdFD2`?Uzkb1z9@GY
zGo4=L7B4xEQ8Mn5nk3aak1b`KZhv?lYft^xdF=Ds^LRU>K5L$boXNkR$NH`Fa7LQV
z`8`>ubv-VTagWrsQmym2MaJp&N9Qr)U*|F0+;wBQ{*F36JGOn>^!l%nU2e(q9oJLm
zFIjJxj7Le0k!r2Cf{g#;dh(Igdca!?djHFUR^DvR<H&ri`*)0t&y%`Ps<qxdGETP<
zTjKd{(Pr4Uo{!|K-mKO~*hoL~*NZb5KeI*i&&8RGGxET@ZEA6LoLuYy{o1qr<<9}x
zE!$T~KL7@tkQp!{ee@4$|3@afW=Hz?N2APiIhDI$$$2d&<Ec^wsn&VzD&utfqw|_K
zd(Q7p?eKp;HF<CM`*>=<Ke7JJ6Px?56SGE}&Go9XZtHqoE8`oaZsNK8A72+{9dhXO
zIq4UMeoB7mc^f~-*_=1|&Ae?FD%DSFfK<Ar^X7l|eP-+W%h#Lcyaj1nR&_3`8nTnk
z<-A3iqjkP}%XmMj{r^AaZ9egjR-L2OXY!4cJRfjg|2OmAD&sq(?)v|jxA_F0SDktF
zbv8Y}kn{HaX5K*;DK%7Tm{hv`H`jsR;mP^_&^+Im^I9@T>pIMmaaro%|Brd`ggr@h
zPEu~$B>8+FV>ZvJN9JhFdzXywl?tWO?LVEbJWn<sH|ZL$I>)Qy+r~GKF~^wAy}EeG
zyu)O?bZV(|`;YUkJ+(FO1l2h~o!mB|d5pt(OTU@-AQ{h<a{h~X<$0_%@4BjUU3Es=
zy3Kh5&Kvw@-iKuTsMO>C&Af79TNAIZI@ed#w)NAA6V9voORmFs8LuW~NVT2^3NlW&
z-+%wt`uvcuf34|<|LeOxc@n;$ZESYi^qVGr>t~NOoAbE-lJ(A#@%d60NwwCyQpV}_
zN9#48be62R?SAr<f1tWlR@*FHt=OK&H<}UGOZ+A4^}j@^AyP|8wbmOY<8=F@^;*w!
z|F&e$|6I~s&TP(O%Y0ojO257zBI8q}PM6BaZRy9=4Khx*>V|lp|HS;C&-b$qm_B3H
ztV5((p6zEfpHe3_|2$is?d7R|Nb@;g{*j*>+Q!MxC`0-U=qEo|O0C+ysyyHKAKEcA
zeV#98dotM#<tx6wyxCl@Pu6Xn*MLivT2X2hsn&TFWt?t*bY8Q6dtS5u=)B|~_lf>>
zUhUc6p4kAN*__syVLdg@Y!0eiKfP{O%lLMwyQEs@_X+dX&jYP}>*H|xoC9aio4qK#
zZsv`djWcGH*;u|fUfQPaYaf>z*xpZmU|dSRJf=T+=iA52Pu*kMvmIly*|ss+jzQzI
z!}wq4%5wE;nQWYqpWtN+#+&I*6)uzKB-y9ux4n#al`2WK&TqPm({0Wld>z3{77NoC
z4CLpbY`d}kl#Ci=s>wsLqqBpvvepXOF>-t|-jqM(`yiQ5mwme4?J~YsDwJxi_n3^+
z&Hsa+lV(g`h;^o=>uj&q8<HEHT`^r{V)Hn2g4x__moK?r6J@-*)Ksa~IvdJ3-TL@(
z+WNWkw?Aw)e?GV7H$OF-_if8`&27})>3z%NzU8w+oAY>Fw_E1b<(BmRT`S|8rEZgI
zt$VMG(=GlF>;BKzH-2*h)*d^^3GAzm&!lItR(h|;H@^zX_2v4xE0%mdEF<HUq$WzW
z*56ph=~m_UW%*72=jZ9%xzp3@J2J}LlX*6ii86aWE8mO_k$=r@rEytp$bjss@&UJX
z`+)4o_Ps_oKcw3C%8qG%3)Y<1SkY|mJz1yqd3mLbZ<VS^wa(*18K>LB{JG!a`LsUn
z7cAOu;p_va&sa2j{=D?shw{?X{h3Udk$<N$eJ|UILzc<4Yr_Vt+A+DUeL%lKxrzFK
zWtJYi&XDYe19BZB*4?mUqY3RYT4mzIj?LEDvqP!b*<IU@&SX~3Y|uVTuGdOtbN#}V
zOP)uk$#`d}-KARRd5nzHZG$4N(;)6!=Q-oR`7@@^nUkKPb9Hup#yMCGJ5N42<q;a1
z8!}>!eEKaV&t^mPL0LUJXt^QTVLJ?&+_7p$M*du_bE(n&<(s3|GyT@f>K*xPSNnLZ
zrj*xZHix~keojW|$5TVbA4`2E)jGd#Wt?s~KJT_Zj$7w9Yu-#bMLE4uYS<`sdv^Gs
z=4*$;TQBbiT*tg>$vV5qc!t!0Qmu7PlyP$%ejguh@jpLqcpdhiKI7m6@pwIn$7>@s
z?9{A!Dmz5}8!=?XK?AabvV+=(^vkyo8{4tm@NDO*UD-jM@{x2%zm+nFsc;puxlSbO
zweI%^GH&Zps=rk0d@LEK+upq2$;N+tKC8<Kjf^vk+uqD%;!M8z=SIyxXT2%UhQs84
zy*XN*-G^j{X9s4renYbBY5nEVS}Hqe(2D&=4(rU0TTUA@u)W=yyj(|Co85ow>?s*-
zz=~ZR%Xf^_hW1}-1Fd6d=fEM^j`Y)@)E;ItJ7<Sx*3ND$U#HATX7fCKIp3U&(#P>8
z8Q&}QfK==Lyei{#Ydwy?zdwi0J8bs6nRC;7Vw|0sk}*b28K{Ommr-tqd|r00knP_&
zctmH;$aeN0(69fL&h&@kn=<Xor2BN!S2LUYuB(?kFPbvmRca5Z)_EK!<8(8B_qtf?
z<4GRpX$!ZS|C=Wz^UCzg(h#X-q^=RDVe$jgg9GFd&&k8xnahpMZju=^XlVbTOJ_&O
zMIMpuKQyz0BpXT%>X0YUHL|y6v&*FG`jgFcry@Cz*4L%aWZZF${9Gf|I?t74oNlf2
z9K+|4-<;=W<ykWh-hILBMYA@YzF@)ZS?No}?e;$M3f>qgQ)&Q8jreCqO&XG2uHVS!
zhi7MIz@W}-XTQnvBd2`bOdr){v*%{A6J$MiikU8}99h3h_UYq!qKq$)@}*kmcZ-bE
zt-$9shp%h?{`|I^HFxg(Kg~){&Dud;Z&*ue07{LxD5D&?iv32WFQ>Op%61NHp3I8b
zk=c!#XCsfRVK&!M*UGh!QF=b3WjsY{O{v!T>>=ZH+kl_9m4E;IZC<aP=ggilYqR;z
z;prJUw`AlQZNQRJBVNp?bL6>gSijNzM&`2F4*6=(k?G8?kdbHOOj{<K>l`fSm|n6~
z<V#dByET@TFTiGV)FbDi%P2k1hh_YUR3g<n&zaXX+f=j_KA-=|-&g$py6qyb56|3m
z&iok%rzaX^UT$lCwK}}{=MK$3t>&L=H2+*m{!}CG>nAT_4QXGt--z9E+YKHxHaoF%
z<$;5i9W38Jjm{3z$D}VaWX5LOGi~X&pjvKtzY%RqXS3OU1GB>h4H(?fk&_SK!6ULA
zTEA?2=PC!vm%+}F{Rb~A{qmjHs%<NEbZ|VbZA{0&aoNtTb9>08*fD!gw*8(=c4*uC
z>HSPMbE?_g*W~`{GD@$<GcxX#dQGZzJtkh?Y*ST!ztH{%ALpCSUbL|Jke!o0Wc#TR
zKV(#0p3(-%eagu<Vr|*M@|u}EU_&|vcQoCW>CoCc<kt;D2c)-kbq>!B|9_;t37lM2
zmH7YeeQUkit9q|qs+V*+Yj+m15t0f?NWzjdAwbwnhorMWNSZ8!O$iWIQ6i$EqC`PO
zVIYDcqDWN0pa@YA8AU_}XAotK4k{|j?|a^oP8wV1KmXUCQ}5K$@0`1zd$y}<C}}Of
zN!SIu+V&}6bFNAIOl>UT$~wlV98n1v8i21dnDG5x@Gk>j1!BJE+!OrF*tIxp#{=(N
zH-r9m@|N`**Ggl;JahCnR4^|u2wr!DZ+3;ZeDGP~=ZGU!1ef2$j9u`nohmQknN9+s
z+;i!Rj-BzUSz{dEvQ5)BDY#v2Hkt@*zU`&!EZenf2$nP5S^kKGmF2%EUGQHS?K#dN
z|K$$;m+8y@ByBG>p_J&*{zCIOJLxBaS@w6zdP3<r`ozGrwR>tMDEKbQAMfu!4SqlH
z6(Fvk%)Md#SZ9XyQ*~B&kNf#~E6?p;wQl7`sg~X9Dt()5l6IK4v0l~Sy7(TJD<|iq
zor!)bHLBXHtJQT?DP~s7&$1GwYBN<fMRAi=DLa`-37$>rR@2uhyU?Jgcs6yDv206s
zFRC(=cDiJj67<wN6f%<2pw2Vf^!d(_x-HFza`n!r1ow6D9hd78@GF3;fVf=m1D9*{
z5PMEsE-BL%gpvtCXI;8U88xRGFRP-SA@X#so)F2?dm?(z^SmCOC;jX-@X{W`XaQn+
zAO2!M&bVQHSbw){JiH!bdXQ_`ug`f}tNnVn3T{tW!R@|8a0|csRQT1hr{SjNgGJ*C
z-JQ#4{l%JjPAfM8lMzwp<&-|%UQ)1%ekoITiT_DPSB8&8(DC?z=QZmFT?4f9H$q>i
zCpZmGz0RfTQDzo&Lf4tK+O-=j*JXN7W_8J`-tJyFE>RnfQd%VA*>!fU?RzpBGj_eL
zie=urUPti0R2RQ%=i7{3n#*MTul}bo{vUZ_>F{^9Dqzz+l!7h2q-?j^I-r@g%^GcY
z*zLB(`;oTE?>l*?Y_q8CE-*9rY_vTp_~lqc-6K=JmvH@BR{n(cm{O>v_LFp7HlvrO
z+2*hC_9**a<rg$N*y*}dPe-^%S$%qpzRgVSQ0eZfR@IxIP&2{q%I5sd`f{Z{uhmR7
zN!_oij;uYmp|gHkV@t~gR$11a@ammc36Q$`45JJt{ihRrA}|Gr`_H?;<(e0*GrdFB
z8|kYu2751HQT~uxLbv!gZS1sKy9%DPa!1gXzFnXdi=J(}%=#tEGkM<)GjpAph=R-1
zoLCOqF~1Vf+XLNr96bvDJ>Y2|=IdwRa;2jES>wFJ`?c^jZ~f-}RiYXw_MN{XY1G`P
zjGtIdsSFi2Li>5hpJ<KHf!@T(9a9OO*LD9O-I?HXfdxQJ_hfLnhNBC`3;qG!16C6q
zKcFi!#vt9@5#8N9*W<a;4)=pU3hV=7x)Z+?kTvdD9hP(5xrdi`)rL)5;t8=~hkmd9
zwo*Ho72lQ#@oC4n!tT&{FRhC;uEnrC5sQ(N@I;B!>{U<H(+i%PE?9Q5A#R<c{Soq;
z1|axN$}UE~aSPh7sbv94u^lM5ek%R$w60FNsd34`m*FTqO>ebQ>N;gztGLfslbnup
zcMk7{;=%rRU{NI~&@GfJZs)te?*qOJ#N~b%T(0M%{man(o6KKQ=M!YU?3=NI`Es`L
zVfH8^WxnjOvf;lQJ;zo8%=_}7T-pGBB5*Pg(|h)T@E_ia=F2BH4XNjdp3Ikf^q2L$
zTJ6zi2d^($!R=lzxXlP&Z&1N)Oz^twUYRvNS~MPTf?0E><1<GN*!=~oR8uNcS#^Gz
ziEnTkDCcXf!uyo}>0s(C51Bf<*n!F9Ia0qnnmW@?N>{U^W*TvmUaeVc+Ky}1D%<ki
z1{O0WAGel4=!a9Mj~L_FDJG|CCe8xyTrU&6udN$=S1(iSqHyB;C;w4D_#euyZ9ME<
zFl`?GiCJSILKT@dg<>g~6l-{&v-3=;8k&L^1H6HWy#^j-GHsOKGQ~FAP4)>V>2iHW
zr=7CdVCi}~>IvSLlzj<3+!Qd;{y7?X+btg@vu8P;J-1qyE9Xdasvb+%{H&R|)SIK)
z)hM;NI#-xrPS@8cJ;D5gQq$B$>KauuzIB1+nm<s7&Y$~F3j5RYuNX#|E+gZ14fqyd
zI}rD$FN4c<$0=by+8N#B^<Mg}%%6RqQEaxZ)hlGUn#Nua>CMYbYYmplcTA!(1dnK(
zY>%kR`CeJ)f`x+=4aHg~HHm(|*_UZ`zI~oGU*&^IfA`6ifDiA%L4KRTM*v+w%<n{S
zxrXZBVt%*uZ(vT{cy`2hv2QM#_?mYaFDIJxSe+3i{Onj4A3W%kN^rZ7=f?Zh>%eaS
zZj5MYez9<<{<MFM5E?Jzdqcm7c}+%5lX0K#I|*4U%F%Q8AM)H^fWHF#*Z=als{&PC
zvr*G*e2eD>(rP7oZqHW-`8^i=RNxFCuBT6d%heIBKW`4P-*%1OzH<H6^GA(ejRm29
zTOhvo-mX|AUsRawYwj?OH~dyBEz_`0cnxeh5TUKQR(ou=x=?L5yNOKEuJNVM%MQ}b
z>l)N3g|yx5=lKj=CyF9c@1rZLrFwq2wjVgP67Y2(;!pae@epMJs(_gPx!`ie`t<l7
zx3ehK$IGOOkK04&7V&XAL7dy_KCg|jtsXr2d7BZHOlikiW|g&HvSqCh?Ui;)sE2BE
zPNIMg&oEl`-y^L$?RHuvpt~!gFZ|sG{yE?-Am;DU==+$j_#X4Op?~EX<X*J?_lUy3
zZoe}6T6L3lm=2NgbUm*wuc!oMtNn?Xfddi!+}8p&f^pjdJ{lMY#PnxH-^X<0`=Ruu
zdWw~1v^w2*Ak?il2AWtAeXH6^!iS$_EX>edVxGd^>-0)Ma7Xl9DfdUgZv}3PK9g|}
z(~0i~>22DwwRiKTHS0I@&s({5C6txXpp4(JZ4a)2==rbmtTLa-^UbdtMiR&Xak=Wi
z<%;*q1CbsprqeZg)xfrh(5Ue%SBr30+@V%o<{1s|G2V~yt5^Fn%GX(0xgCh;_VL_U
z-*XN4M}bcOF<tlJknUT<=vUrB_tf=U*B!HA+m>}3Hm!vRtM3ub1i2PC9>^FC*H{Kq
zHx-^$Zpu%aVs_G5JYSNg?d6>6THWX%N@q;J#O5hw(>L3BXR?MlzE>qa6Ybhx>GtXB
zRzK&->gcC)$c3Ke%|=zB>y+oyoC$X%<@~a?#^{eKl?jW1eX|l^%PChGOzL|Z_?5sl
zKwR#}z~y=}D)+z;J=fvo?!RDtAh23}pO?~}54c9d=S<_1XoOw18f9Id(<+5J#$uhf
z^z0_Hxt3DPsAKP;aJMrN<ecW9JhtnaSsU*EM_F@qlbXsT8eMzdRSB@VZw$_J)4=Be
z3xSyb0dTouJz{U9PyWaKWzArN)mDBkde3?WXT!&}@toDF+nuykt@G?~CI$>s(aLpP
zoh?$9qMOLd#D2WKSLuUlS!4f-N<e=ve3ZeYo?in0FW@yG=JWU9a>f06sGN9sJ=3oj
zZ`!zEQ_!)FLuhR1HEyso2(EB2M})?5UnO|nv_}T(=Xmf_fir-Z?xo;z?Hsy(MShD5
zmYgtWdGFFCb5DX+ZDj*hvXCli{IN1RS~c1SJEv31rA~ZZg`!Y9^-dBG=BidWnXj*n
z=PhGpC7`npdSx)Fho68S0Nwy%e)4;RpBeL__2`BncB8eM*7k4h-x$aod(`{Yy-Mv-
zmjthE>@khzr?gSmDl(|krmIzr-{^L#ER(6W7Puu@W4@uR)w(U-N%o#y2?#FVJGg(@
z34RT5Js_9NYu65Auk0Ev%B?wDw)AfnQ`Y>=n>TG9HGXMWd%-*YUm0a(OpziQeP>tX
zX6)ZPxNrCac;TCdQ3J@2gx*wexh{<KY75td^4DO${YP|Tf^B=PYxE<Q+H2jfg4?CR
zYvvKlHzX6=jERgnHtJTIE<I7z>5Wc{8m-SwzuQYBY*7^bRaswB2<ArxS})|O)s=vs
z9q<*)L7xWy3~*<}tMENsKkAo?Ice)=w1NMycKTHCc;i4s=K#+v^O5wE<hKl?2-E=b
zGojN2F4s%L*~Jc_7uO2wz*(#V<qM6~O?sKEYm2S+(Cxw)=&uCN>*Kj``7Q_F30xD=
z()?n$@(pZQxjt<De^|T=qT(4lB0BqcW|`+n`CbP9CGaXBmj>=0roSCRCoWdCQLZ*F
ztq%Ux*d0B;=i7tNp9g*%uo#Hz?-X#k9vp_wR(dr)GBg+b6e~v{Ae4KJ>v0hsD>c@s
z+e5kFKtyjh&x`BrKJae?-vMHJzXg};(G$ade8<U$_vZmfZC$zXBB)`T{#a<6{)qK7
zL%RHoZQP1$<^r!$<(GD=y7wzK`gQEOQdMo9T^gCH<m}q^I=hK}+l%B@!_qfN-LAX|
z?gTvzX?__WObs<O``1+hK6)P=)H|*MKMyz`i21!3T&~HHo#NWFhw!^{<N8(GHwO}U
z%N}#5zL)2hQ6247-TIAS)_YD_<8@0s(VSBWp0|(ZBKHOD{yg}91HT7ix^<5QKQq1*
z$>q03_jugT#TXq}x@z~TZ|X-B7W4VR>yeM3IB(+=$d~jek1aF`%`r}$PGoSX^iI~6
zMdXGx!S<_XW@m~_*@y9FgZ_?+_&acJ$lp5X$L)9__?5ubK+NCG;BpN&4i+p~x@5^R
z=`+3a*(@~UTHJP-@f31bI~##2t0h72nV=Vhy$3tnhDz|fmw0X&Ovc0S!2b^D#|P<t
z6I`z0#(U&nFWsm2FB-}}Gufte{KYYPT6LC+uw{wzeGkA0B7Z)9r=}G_-kIP}_9pq0
ztqJZFSJ&W|Dv&}(vFiQi#HoqCbjfeFSmv^G9Lu%bq*LwJd9{9>RqfWf^?svQ^6|~_
zn*6fY;+Mf%{SL3)@31D?^Ig+P`WY|nXZSqp7reY*u;$rIT$(9~{ue8SXDzl*!<=I}
z@P;?RDfap)(r16{;Ev5bybf%t1W4{XgX>i{_zYkc5VzAZaJhPhS=YNpufr2$)cExq
zS8d*ifpYVj4V$)0v-K>;_*}&J+<Cn+Ueirpp~|-FM9Q)JTCAqhce?e7jLYEKF;EHa
zyP;PGllFTU{3+mvK+KP`FZh}9<Z<CRnis_<#r-<wXG{OqL%6BkqrMU@@y{Su`9|m6
zma!`^<=0@5n{BmdpS_Z{i^OT1hyXlNjiX6X6Y;65#yYlLa#F(aXnl`zs#T9#uWk(n
z=bp`#fT88^70dnW!7m2h1H^onp9uMW_Kb+{$et7PEq0v9rDnH!!wSqef9D3TH~Ypn
z;I-s8_*H%)FfBOB)1uR9M8T&6Ji&WcH>YqRanf_lqccuxif<95{C;zd{<`IU&6<-l
zv#FfDMX$#Ag^n$Qn#`nQ=GY(BuxoIvED9AD4ZVoYu7e3IJu2tgD5gd<C$Rh^OUg9^
z5Znb4ixTJRKpfg*`Rny~bA~!WeMI{$iK|0@`~BO)`nizum#G42*Biih19t#%{dnIE
z>!%}<Q*Iq%2c&LRu3FW<Wy=H^nmg2^`ZBcxmq2+v`7(MLd6r+XTB{ncbrp2Iv>kJo
ziThPG0!rFTqV<(QXL?q%y+T(QwklJuMxe7TbdC%Z&l-^q&D3_GBdCq4gqQZ3%~3X+
zD!aO5*HqI3&bRK;Y=CrADA4p=9F}i6{KxIT0elCr6Nt<AD!5$M31RyWTfT{5`JM>M
zcSlgZ)1`dm0e;^8zm=~vO!?}El&=()Z;#g4sM^Bv?Y^`U@ICE&gXKFOd=;=3h|Bj)
zaJe=_>&$~g><|ar?>H&nF7;I%=u++vRVtMmS#&!0TgFpPt8SnHn{^^-rs~+=CGd|z
zy*}7@EqDvkbh$tlZ!D$R+q%~Hw68EfwZu)=d|1&MW!_tDeNpQ#9$cs1QwjLZJvrDf
z+rcLT(}1{KbG{$^%=mhL*luqQu{TJ$w%~y#nmH8VuZFts`_X+favw_@PrBVYUzf&U
zT&+8;YTue<PA;RWtz+BGlCe`+@74?K_t@u~^X$c#$m;C(vio8C&E~yc7v`BK=t2!e
zOjr|Z?W4UpsCyd^{?Kl#ayn1RI}ZO~T6M|N86B3L_Np4F8?UCtHxuRxx38izD+_(&
zwDuD0=FuRJsw&uS&KpUm&sSm6&*Ip?`jK|fLYr`a794$Zqs<;wzVUTB$2V2-xtGpl
zuyD55>Twck!+#|jga7L8@$C;O^9JhI>n}NIy0b@lX*c8fwWZpnQvX*d>nW|DRGH4?
zJ<9yN%1kytr*xG)RewOaH>unV-9rD{dsWyjcT(?lRK3g>Uju&<*bl_*GViIdU3T_{
z?efOb@IE-74y;B+yR~1s+g^27DB`?kigeTYpkv&V2*;9R6_6+rBh4;pm1<e0WsaC^
zpR1>^xU0+*nIi~drIIlh9My=b(zCj<{?Ybazb>!4P*8iiNcY5&-c;~XSoBg@h<vja
z6T8=1M^$8t%#bp+wp%YL=VbF?g=XCx=j3IBbX{29TPROl-hTss40r;F%ln<D!}7iv
z^~2@S{gCqFz=ZG{`T*}%_v>H{`CWK>%?_55FD8wL(6%<}mV<u{x*;RJhiK9<>T2|?
zsSF*Dg}Mg6i6-5Gv8>=&r<teYPJ{^zeGB8!qUG_XKud%j#j{;qTSajja<&~<GZN#p
zFBXb$`J@6(>=bocOYc$GEJoUijDtVLXw1H@ctC<puv-iCGmOoeCyut~qvh2+Eq;Ge
zVE3px`2OU`RuX<cE_hcLd>fjZ8^A*>u$53g5mBGlRaN?P%KW&}t@(Uzx5m-4M_kK$
z)EL#NT2(fbNcO%zY?q$>gYwaQ@UwuGK-@0R{vd3ZXWtd}zcV9y*^qYG*ni<xnIZP;
zE9|Gmx8TXpso-))JP11fk~JPkcIzr1e|8_CkXn}b-jtJAXy2slg7<Ie9z2IRLATwa
z%nzwXJ<>IAm11P?QN_!(S(DH$sj@#A{doa5BsYaWOO07=*1HXP%UYr>^MEoxpuC%u
z`CFymW!|C8uPI&Y74o*5(xdWhcXCnt>q>nA*96NenT;775oDB$tCL>h_Ler=JjAv;
zycSGr$F?-mb*w^aw6-@1qlbLAL!ta`$Rk=57-D&ya}ilvGYxhrqy6fRmG(w^lQ-bk
zG{SM6)rg3d@r07+Vj$OcyWf=O(X|Y&oYh#dXJ?MZDyQt(uA5nEFX49zYruq-=9x#B
zhZFv+GS6Tk*lf?WyS?_1Q)eAv0cpF{<3V_5)w`#a#Qc1(tuG=1%lo@ZiWApJ^MeYP
z$s3g(sivDhRjMuQ3(~@SKOFXl$`1$kHA}%)0IPtwKYSist~a9n=_^C#C5fF|usINs
zYX^QVj==Y+P4s~KS^Lthe$AgO_f6{<FQJcQ(svkR8AP;FB%USEv*dNH?<a6J#eK)M
zOKEBofh}8$ACo&mCX}x#>wC({DQVCqwJ_c{ezX$sWjr%D&lJF$fL0*pe>%8a!^MNF
zh4)i8Z9Z3~)ylbO@!Dp?{k;S|W?G%LD@}K&*@_72n`~jw-@(rsJsDLrNO0|m__!82
z@qG6&@VkJ=ftZiup9_C~X=LX=aNgnbd;bM1S8ZDvOz$oG%`2;(Hr0M}hk6=9oj+3A
zRGkRMPrD$`GgGNwF{!A6u`}C^^8wyZ7)8yGnC>km&bzu$g~?F+O;(xO&04Q}=6yb6
zCC|?iN7%1>`m+hU$}V~Z?^rwMd6<ne*q!7q!;)zXx3^-W=XkAll~=TJW5JK^dgWcI
zYL#<^vgaoFiJwb*p6})H^48V-pb6WNr@c{ToB8ha#TnnL3!XTN|ME6?>%ASyzFgU?
zr#5S{+2Z`u@AHhEj_Chu5B=vn!^CV69~@zKl=qG=lei`79yS8`$-z&K!bxsD{{-PL
z`sPhOlQpcfv4r(p#CoG=o@_3M`Ke~By%^SO?K<Agv9|=ApKhOF->2+J_GB%55BH@l
zOeguzgm(l(d%bt?|3(Ka5A#*P@Hk<(-5v|G-O+!($G+V+zvbH(O+ez$Utljt9gF8;
z!Jf{qCV9=?ID0(pgxSz!xw5y79dA$du27WpEZH8ow2<kU3-x94;UYU*wDc)_xxhZ&
z`+zDH^ZS(7Xn#$4BlC|dw%B&cNn_b#a>UMs!IDkB@8l8%%TKfRmuge?uaxH^NJtV6
zW+cyi!nY52Ov*AOK4bguGqF<~rLWTd^(H3F88|B?pVQuU?`;)0hxFZ13C9cLAO|LL
z&^N*N0pA1Saq<kfT(Mo^puRt{8xQU)i+#te@Qlut#^d=WeU#`;<{T2Ay+5K?{;^?{
zd7jXl1U?Ix1H|-B1efa_cJYJsqJ0_@M6qunh8v4C2%T$<{ZJi`42pXp{xVRXVRfPb
ztbC>tJnt5sTLu%lcY)srd>M%8eiK}-eUU!@p#A6&y0IKyBr=?mUSPZe&5;`STCx2=
zk17WVuDuc6-1CF;P&@c&U>p$BoeD13JN#}2=^m6bL-l57uW<mnIQoi$b4F+$G;*J<
z1kc&Q^XkB)oF4+e6}SzE>D>h`S3Lh7^zR>}cZi%<>|G`$-DLa)iVc{3tE7Nk6gtk-
zup^@TCeQVFuFy^YJ2r5j7KrJ#g3A@h6}+<_4G7&xjwzN~TcA7BxVF&5q!5&}Gbria
zh+ZGhi~H?X@a@3G5e?Bx59jB=eoE+^+kX)qC}VVHjGGG?e!o9@?t?rde(pZ-?*UH%
za{Y_v#_kiHO~xk+ekLLM9OFRr+`69_Mw$0PzXzWOECk~E`3SgNuMQLMaBzP+Va1x2
zTf$5&wUtkb>8}U)kr?N@zGE5<tv)IWFJ-YGoaP{Pd-x2q#aN=3)?|H+#k|nkUDsll
z6GK!O38e0Hn|T78zmeE@n@~qc0p6?ihfqcwTwnLzSqb@s-&h}E{*?9x>VUXBYr*B(
z{jbV1@zC<zF6B7__(@Qn=S<_$;mcEs%G3G3EKf<w^P!+TZ3oM<`wNwT&j;bR3?}XK
z4EQU+t3X_yX)gpn``@-t5XN0w`PAX<^Ig+;Q5{|&0+0UxHPHJHZ=iv@D*>a|!f)I@
zw}XEPco2xo<NYiw&;PQ0qVfbGHiPZ+?>JED;mh-XYM@&VZ=l|L!tyMK-yT?&_Sp)4
z7jQ2SmuJ(9VR@`$Lpg3}eB8nD6ZSVuMj~PEQJ)Oewl{~jQvw6+xxwq@R&e`h_{}lF
zn<MXKd*AgH-+0T4i;eyW4+zwKY=JTjtyu(zq+J+;(+)e)s_ET{S#0ce!c26rrl(pH
z3AXgwp5C3(>7-XEdg*$vVVu|6>a|UB*dcV8Bkg1Au2c5)YH)<=_3k;@gNnvTSA|?)
ze^U|d8`BPzjjhFqgS4n910J$ojoBV38RvA*FWId!4*sC5-IjVtTMsDRg(_~>{b4=t
zr5?*sJ^ujwkHBAmxSrSjJgnyz)`s=GI=aXEQLNtUx2`;!%5B+=+w^T(?bfxy>*XrA
z-5TB=;Va)5{Yb)?)vfFOn%u;C-6>ITVhvBYnaMNQm7qH~!ktD9>qfLsH9Cz)VtR}_
z$)AG6KgwN7)QD3z!fi`fD3t5HQF^r5Ww*L!&J0}D5l$1`J{s&st6sm?%$H=;->&tU
z-VI8frt0xT+~$v9CGEf!KV4nZpc+)8YR|g-uJ^&PKK4`Ics=+9`0s%~0&#tO>ZPzg
zdLq4D*TCWX2s|L-`q*neYCmGCz2^V8k3eDcFVe;yjBw(HT9eDMQ=p(VW*(U`pMa^d
z?gp@o)ugjT_mbIcx}C_Sv&AufuanB2;jeZGjF^m`FQapI24$JA*s%5cOC9HZrb$fA
zh|#v~OhCZrAx<qpsCI5V#`Ja^AZ(o-X*GMUS40Rc;9@33mwM;gM`uRbOT80y^JFxA
zuH8~)x45<|%B3aN2NVt^MSQx~pq=}@vYHFE`6Dfn2JTjFU9POkszo)qMf>YYO|tH0
ze{0pcRbEB}&dMWUeU^U_)>p6&g3kpO0E&-geO(VOS1cb4jWd$UBvdEXLOmd=mEEdG
zv`?e2)y8L$#&R%J#FLj$sbr0+QEmfzq(m;8)q#uVSp9EGkBAq5-o2H8-h<Gs0~5ZU
z0)HNO0Z@D<e7z1X*Vp^P_AReGyqyQc&boTjR<TEiGs~w;u>_6&mTBxKM@vRo-s{>d
zT7lQXF?4h3bY7L3%qF_%R>l03zf}=3#=@5kqs(3SISqU@unvg%xfoooU6H@jP`~_D
zn>JpsY~p-jrMDk5V~L1?(Vtc%|7gu*&_y(1Xspkc#5sQw^);2fJ}7d~w<>Zo_VN5O
zccK69;I9C$0x|u!z~y=+imMtr--h%T3H`o}Na-aUZb#pxj620DmPrue6>yL&N#~ep
z1ssS)V8^#B!E+b>$Kd*P8u&V30}#`H54c=!3?p9%{Y4W4`n}UB|Ky+!lE&z}6;|F>
zc2jAm-eO|N2SMYjED4h3>Up#xH)9{qkJp<Qz<&+=7KrKFuLM6c4n%g#xWC5pAWC~Y
zZQx*H&;+v}KNl!t>>d4>GH$Q}77EQ-(j(wp*P3XR`d??A6nBKjDgl9B=)~*zD)94x
zZ9vS&PH?&Aof`JXoss?Ta6aaTHL*i25_{Ie`Z5~hPSdzYxbT{+diP=CcG-;K2+*N1
zJXSfA)EH6r7<(SC$m5OYp%d4~Z@~WwybZ*B<bN6b>|fLee1!FJQcxFBeSAe3j|TNY
zmq;}yTHT;7W?7r4i-GS{f(I|>`DHNakLQ4I2QC3(`qzQWbwd<4^PAXi8|`a?{2B+V
zp<k+@OKJhl5@tQU6zwz`9jW|T)<R}oH#AQf<$aalxzF?bcpZ2h{LjGOfS7*$e+EA@
z?vCtlsc2lp?XY3ZmaW9358!ASjEOCbiJvG2#n|5lDGjQ{l8DMi0tNFXk?6%olnz4S
z-m4fL+w`oEp<Pde{PaOD=4UJTcHrWO2MsIl*#AU+axov924G{hF?P1GP>9;-bfKCA
z!~4Kt9*F4d=b0YQlX`y<{I9^<KwR#1{}q<|9s9bNUKkmRMfGQa#W5i@AH3uQE71ny
zA2E$HC9_(=@zA??<*aszH?!KQ1=O(SC_O%Jnnd)bk{JubfWlj}oYY=5-yEH;HETTI
zP9}={2j3;DuzPt86A*nm(aBa3epK{P!r3GJbV;i4ex?7aFhWb`=GyhWN^pOWa>V7_
z2mTE3V<0Z)pTOlBuAJL8Mlry(J*#j`SVYj(_@|WdtfXqwmSdyBDG(|t#vMOVO6GB%
z2+Z0yD(eX0rSHi~@chcFgM2IlUjeKFVm`Kk%QYMy8#it3-;S++o3w9jWg2^_HM8Mm
zuQGN9Yoq1miOoMw2bD3$+7?wr`TLdNxqErO2PW<P4ET${%Ro&3FW_>`i~Jpjt~)}1
z%ZC0S2}^D7g~6-~`7aZ$4S6C$>1as=yBu+=w1`Z4YphxE>Vw`V;$z{j2G`?$@NK|F
zK+MPIz~y=}idQ<Q$B6o!@Ub;uWJQoSW#h^XREX7g3FGe55(1LJ8+H7B+ISGAG8XFY
zgKT9T1ZFFT{F&29u|YYGZDK?~xR;2sUkD3E`RR(>j05ly%MI3R<og1OK+I<=xLm{K
z*Bj&$_9Vrgs+6R?-mgdi)<oZ_^TuH4@`dsw+G<ZkcOB1->AoBMTHppCrn?*be@Az%
zbd=t6;+FcH3OrW`UG`G6SV|Yej(QXm)WWE<@Zi4vmEidYB0ADvtY4Go3#bQTK3)Qs
zE7qs&jO3MgUOW#!u}!NYfe!Q4br`HLUwserm2dR?odTN}xIHp3rQKXfCGa3mdFhnh
z%brU4cs>;`K|{JVnaMk@!UKvRdiz{^174%mL`CGxs}*KrJD+R=Gp|yK&X&iNeq8bY
ziyAtsEtbAI{^Mz7??=_17*nm?jC-toTJ5oHBC=+6B4<0kU34-j=_4*Chw56lqlmq!
zQRlK>VT$f9O$z>H1cq<^1p{S`eU-AWRL3)YZ)TX4>VthpML%NdSCy*4G4XrWLBr2W
zKdJ=vGwnBn?RgUTPT*P~uE%k&2R|FOA9amBZ(YAQN^QAl%N(gvT9x?3>#VmWKJk*^
z^(GbE>VntX!#A(%;9Zr(FZR6U8#g!|y4#UG$%vV49mSLwaubLM{w4OMm>Ebfsf*Qa
zjj!wL-5NVlz1_YrQB$QG>pZ90EY(Urpeky|&G<*uXX{(KFo*C7@pgQB0$EFB=fQ5I
zN|dx+$s_HV_K5ass;oiWX=Ls3TU;jjD)!9sBsP6XyW8%u+v}73R(`+0CtH%zr|Lgw
zwO8v-wNJx)-%rDO+(A8cQB~3(Zw3E1;EO<9kN*WO*UpnddFhSFz908T>T%V|RqIH4
zEvm?4Huv|-@YqedpW9@k@h~?kYKLuHi($UY%8-Ak+8bvjtSTZ0h|Eu6g^@@JD~~~C
zlP;x8^}J>^!O3_!klWQ-%dlRjAJ&0*WxVvWO2E&w|2B*=nDBip_$FWr5cA!6Ao!WF
zF0xmB{T+TH(&%fY*>MxOHVlXSjCrqwP42OR+l|TKRub2do-b7yPkB?YjORTcmjlb1
z>bkfQX7E0&@@uT*8`}N_vS7xkA&4Wb(&Wl%*J)*1xtW%@D5OXLj{Qn>4?VgL55*-q
zalUz>$rzz0@S3tx%k7KpXSDe(9LbLRl-B>P?OFD5b}Cbs)jbwDS=ioMIp1k@j`f=C
zf}{UK>ld{C={sI)JNV^n&#v!s>~;>EJu!zzP8Z^mcuMA`*ll*b*XhjlXPI}I8XpkT
zI@>&puU9a#v-J-t`z~carR?+A2|uHp0o$E|UIcHvR^m6=6yt+p*;CRQ6^w8{&K*B%
zobJJ)!F)m6Usm2#I(4m1&G4qy>{Rv<_VV~a&uZr)cXl(DtiwLEA1408?&b-Eg}7E3
zJ*(T8u&PZWUp}P052KC1B1Fv*OS0k6f4y5d<YIDQHj6J@I`JFr|4Fl2W5BuHY;l8G
z<Z5O8*!J($&M9hx8mFF9_RS{7mdnH(c)4;rad-?xoARrbpu_B<-^A<09pHO_F9C7C
z`XRVnuSENpq3h^|m7CZ0#}i8Jz>5lt@{~<<pa-;ZORCkW#*rhT%~XRm10k}AVxY<`
zl>*`7U3!H+A+~Y%{i+hsDgSOzZk+@^12_tZ`I!$c*E{S@@w(o>ebd?JMB(PW)38qT
zoMh}Lg-W+roF*N#IPHz-?c#Yko+sn#4)D8xdw`hU1K@JKgI=_6*tT)Y$~FBf7WZ#w
zWEFeHbVKkM<0lYo6M~&F!Q5+=;5o+c2kW~4-UPG)F}<naat)jJ73ppB=9L%8tTWI@
zWv`OT{w2GVRI48Aj4>CX<`H?_v=M}n4+%J$F5<zjE5UPj@cg*FKMKAZxE+Y;-vut$
zJLHjfly^?VMrd{F={4S<&|{_0J#nFVPH#l_O`aRm&HN8?08j_SbUVQ1itSEA_saue
z%v~T21T{TJYWhs$Er{YLADY;jP=W=~aP;Gd?f}pAc&@bXPVim8%|J}|esH;li;Iz2
z{-l-X4QvSJ`N~H$0@!S9DLsGI#;$a0&h?9<ZE|9KR^b3^`co1uB}p_<Xran05|z$f
zuAbK`!QFVnFv?)UPd#`W&<Vu+OaqszFOpkdiSF_GGtj?z%la)u4sDIAg00hs6dsyA
zY?E)v$aZ2n3uTu~)Ut%!jMRfzb|9j^gXfodzR>>|_+7xgKuo{>4?>;se)@^Q{n69H
z`!Mt;1pV*^la6?`IFp<uz40d8+cK@<3XDrzy3?*rc^zn269fR}QAnmzk|LY=6!UaF
zVr1US+8I{FB3fFGSEt|VQpzczp(L^v^GB-6D-jo{kO7*QiK|CS5}1_RY)=TBX#QJy
zk0@(`nqZH##;ft_f<Oq({jL)5KR|in@x2p#7jQEWm-hj1x!y6pqxod*s`FNEK6m@s
zE6$UWmQQU_<sFK~o%m;Ed=mLLSzz;s&%8u4YWGN7J?emri#Aodz!vM$P$tg(z7o(e
z{y4}_J9sxR35fYQ0bH(_pKBxiRb2nuB~RGdVV*FKGgvXOxj*<w8p2|bsDbw}1sfBu
z(#9+7Tsl}s$hAg39qmjCl7{h)%$_Pb4wNXWN<i-x=*IQ*MeuI`-vVO3UILfv!l*yK
z6|D!u@Fm>ztza9q1ZXlQk^t@of<&_pHjPw~#`n{sNQUI%;OV<0J3=ABsT)(`(E_12
zDnica`O_d@OTkwFtALoVOTgud>ucz|F<gBKgFTDciI;%}V<P*hha`&CNje3VDW9BE
zZo)@rfU;zs)u4JpGRCfmuYJ&s=d%~V{|opv5cBmmxLohB+eiIM^uVhL_K1_J1<|zq
z#>5Ad@jQHFs><-<o0G_=&{?3xrV{4TrLsovA1c9f7rr@2|6Snyz&aqNzZqPvcjPyU
z=J6r)!%2K%ukn`IRKRth$TS|i4g}BH9nsy(b7T4WXW+jAUI${j#Xko>H>Op>dE;Pv
z`~$iij<R)qu<x$z+betS^(z=y-_yp&(726t*jVuASWPIyr7orrDx9{#keCSJz;{9E
z^YpZEd>!~>B_P}f{W6%$Zx?}I0bC8l{M`&L*MVrC8Sgvee!My4Q*vd-O;cGebG|Y0
zR%QGUfxZjfxNo;xjRc}O<5X+-yj_2)1jtJ~UofHnCV2iYtaU(4e-XG`19QUqnKmR}
zLC`K+B)Q$HFu9$(OTVRV)M}Sr7`(0zUX#W|3<ob;wfGX68POZ18*;g<KOL_pWX37}
zBJWs#MnX5u9jlx2^K#6d-HmN#J4@lq%2}j7BK*kJ_vcD*zXiSo6TbI=KL$Jj#C-n}
zT&@>}>eCNx*F*VcPqZl563qx+*GS&viSN_K0rEg*Q04i$#xd)PwIo~7wXJsN*%N5d
z9m={gjN2IaOC_M!^Vh-gKOcNCa3T=%wE|qOH;4AOA>(Y-hRrhMD^qF9QO3l6;~`cj
zb}uw#n?+|IXN^@Up7T;f_fDQ0&xhXz|1R)-Ag23caJhz?cNp4`T)1*el!0<fKz+$<
zrsieFv(WAkp#{3!P#YPQzgFaNM)|Elx--D%1B-x|?n-dEhST33+~;G^j&kkQ_N`=W
zov<QlOlBI!0#<PCB5OkfI}G2M#G33&#39b`<-z&4{8lBPb0_rTdiWmrQ@{@*9{!mg
z89ugP^BOgt0kwX^hG2&<S2oVnL)n;ICNExrEuBkDad1^4dgZ?j(yM?k1C|4E`R@jo
zYq)wpNH^Y|FWR`e|3Zk?_Pr`o%n?8V7$w#5H*I_gdy`Bv3CF=%F3WU7Dv*>#JRJ%o
zjeWAtLT4lH<4!aB4WCRFR;FO#$z>_xdH5CLN(=8x05LjQ(ILM_|2&SJ-}|>p!0(&z
zT?Ui!mH#{W;eZw(F4r7zxpqbCYVVNz1R{k<dmgiC^PJVIgT9<wo>jR!l`)yM{&A8(
zNdUXHCMkB|v@Wp{+}rT)nS+v?9{zW<+UV{7UJ2;zfL<M#@N+BpZNR4^9;97|p8FNg
zk1-$P32-|Bp88i)w;5w{#@N9|Ss5=y&wurh=c~8L(*@*!xV(+vat(LRkSMF7@}5LL
zf=C$ASL*hS$sbTmBTc%=nP>*P-W?Pz>bg7Lt_06r$MXe~@?8o3S>OvmOy3JI=tuL}
z(0%P8^q0i@Nv5>Zg30XW(5gHyc=H^Z05m^KMe#HF@1AiJAw(`}kJ(CMHWE%5#|+;)
z()Y(7S+dC+NW6#lvf`tXeZC%t6}{cECrM;KZMHDMOrC3Kz}n<#d_}BL*xgL!U8b*4
zdXp>G*zalU{YqV9>i3c7Z*aUC)|{Z+%PCjft`~t{3S1VI^`EtCTwZC{AmODnbkMl-
zjLGwiZ{Ypapq14WkJsLa-u^@Ay$;?$B9vwzuII0U%e6nUdsQO;o47xny=}v}QQF(y
z&HX_ZT-usAm1`M8WI=u;yj6lX;p>zDzdp>iSu!Ty?HX^9l54b+b&AVJ=|sO?hoX=@
zkjVf*-A2w$lln$Qk4B2{5i5~MTO{17^RH9-!b5)Qlc!#Onlf8ZEjkQvizFGiCF5`F
zk$f_xPp;ApHBGvaEWt$-G#>HTsg&<dMVtkyJ0v!@d&zS1)Dn;<#YqVZiL!PoeTMmv
zc5vGn8`K6bUf5n_5jiMNjR8Lbm=47C_ik{xmJbu(en|Z>T$uEw_Ilrgw*D$+20R{a
z#lc0gk|eD>&cYU6>FBU5QAnD_>}Y?SU6+#xBxMu9;o}owkMOIQ#ZYxw8Y@(*n`73%
zk7z-_hLKBze4|t~%6uf_>zCkv2L1-be9tjMzK@UEd)bh9N|AG9d>=j7{=)fg_2F=A
z%?}3Er%hw>mA3JF%8+qLo9AU6S`ghF0cm0iCE6>ME;Nu!8gHn4G03bY$za7NKIyy6
z3#G&lc#-Vo#3hU+8f1z(-t2UyDC`(=?M}`K?zg~iJZ|m>e-zjU#N{bl;qSLb`rvty
zemL&O2gi??Dxw*ycHpzJCvFEGlpu@AcUZ=g<X!A0j7ge8bmyb=C_D`$Rv~W%Y8#hV
z-?x|oT1sw_7+Bc?2g#>0_>D6gfLjCrxRU#pEHky5-!LzHK{=x^m^#x`9Y-n<O%%$-
z`_p0h2H-!I+iwQH1-LaTlgtY<hgo+HE7!q^Au8Z)bTQ!OR5C^9Vz`(@2q`PW(6E`2
zP2J3A9i&_4)1a1-dov+FhCRs72*Cle%?H2wU-7ew%u}0(GBm-MJi&PMP<H%?@Sce7
zh0uuQnVZ3H0d75n?mv;MLV0G@CM3&9?|&oZ2ks+X5gm^3#U$k|nw}?-3TYBDn`C2j
ztqi5AWTSFBgX5+id?ru<giR^;X;Dq}MEjGW`LE;lIH`Z@vdEQaxB7||jFv0h;1-@&
zGAqCnB6d&SpEBM`x7K9a#z-E8>s9s~!uH>*&CSkz3L&T6?C=3b6s)^dnW9<apv^-4
z!Y9tRwfmG#TxFV%Yxgm2UTq3~t!aKe<$f(y^-HY}IOcC1`CR7L51H;KO(HWhiB!JX
zYj$NR#ChZv&NxW#Pq<Gf@=VEA;K;xv#0U;L%`YtdcNw-<C?EMhXZD&abUVSR=6jX?
zCH+XE#H}Z^dy{Ep<dJFeT3dvwaXZ0WT-2ocS|*>PgZYf@ewK8>{H=%iPipfM+P=_P
zjN|emYYI^}-yjSPtB_rTY5M~HlOU&B%nb6mYhK3^Y=2itgycx4-&|LNt$^L;E6V(;
zqHkN~D6^BrVVb!Z7C)i9CkQ4aqQJ3IaH1XGeNCC~v(3GheLvM_?a=09%KVgaZ&vn2
zrPIxm?Ga})BiZ{*^E;+@mBQv&JkvZC1HeY}Wo`b<w8y#M*Y4xCd9&i3`Jze9+HZ+8
zr!%{?d7Ula{lGG>CDpfyo5EYl{@5WOU#CnO<7eb(Fkd#!UzqkYYD$}bmr9iDEWZjS
z$Jk?w973U~QUXU-__F7E#A9BZqCP`LF8bfD>ad^QNk5#%dzs(A1O7bl0ucAp(-VRb
zPafqJ8M==i(oYx6C70P+x;RNuzH2=#2X=f{OH!1{54grps#|rnU!Te6##tjg*J6Wj
znJ5G?ZU@~X#p-T(S=u6@>!VM2hic2ywZZ$O`~vOL_)OU%Y?Rg8Zz2Jg7+3@nyiRo&
z+BksPN4m+Wy6QdNC4uoxG~<6Voij<2%84PL3HP2-uHO2v9`;bqGVi4xz6btO;O9VG
z4}SxfYj?DtAL{RbN^b44_!xo{R&F_0>R^}pQ5bhV^+u_Jd$jRpO)F~b`LN!t(pJtX
zN}7Z4PnzX4eY#$(+u?RcL&(=cCboD!KLdOXa1Idj^`lhC*E{qu(Y}~<>tLH$xf?J^
z=6=FV@$0nlP;IJEmA5}>nO9j%1G3C&%O(8>cSfFt>@<cW2r}jbzGY$NTgNmpeVZ=p
z7=QKlf0O%zsBL;}FupbE+nY1_@Du)le4zXjS<>{wrgfItC;3z&I!V(qA2Q8{O}isU
zEAq4R&8scCGW60mo%$-vULMl4gys^Qe1&F{80h%5@EDFOop7zIwfQ#V7J=a-%Dj&e
zX)@ON9DdP3)cE)h5vwQ!z5=h3iH=9Ob{F%~pOpEg%K3iAKha%AMipAey3D!)Q)R>{
zKO{xPUYRRc-$ql^FS_o1tk%pae_)zC$aK5lS6P@Y9k$xSqxETtKiAdfSaS@4rY&ZN
z({6Sqf(e(D%t<F@KcUU%l>04heqSYi=eTb;RZlXrDD(X?6WK-gDdjLDjpe<5uQJb<
z#PRkB>!(3kJ|`Pj28Wad_ivJbBl=ZgXqVP8F{@g9R<wxfW1Gv59J~^8Ic@#cbq^p&
z@f~F`|3L}%n2A%&wRWTAZ=V!Ym^@9knMI3ivGLPJo6~vT$36Fx7>0wV{oM3|I<Q~F
z&7E)On?F<dvEwc6SsZF2*FbC7ught5&|Y%{_))+dAnw<vfy*`Ac`AWbBs9^>NUK~W
zfg)27_CAKERZceq(+W8oRKm&XY?iS#R*%*TLSc#LmfJ!;?t~7?vS8eQ9sJwC<3P;E
z55eV%{j7%OZ(M_Cz(F>Ol?r*MrksI4ca!cAcjG36>iJP<R`8r15#4fTP!62|ehhFd
z5Yrt1m+R7K-W@vMp#O;c6GFv{R6_5wiv7UyCB89*ta5TnDGE5N4HpFZ0&WVNH^A&l
z`oaW)GPwd!d~-0IvikKrnID5|fBT%^z8Cs&y}StiE8uk?<}aBI`5Qi8&mezDa9hN7
z95mD!DCVZmhD9{sH(^-8qkxTACWkKpyDOL^m9USx2!;rdZi;ulyE;O?(1je7>$Zcx
zANV*B^L2DC<m=HW9{T1eK021)rQR^AZC<%y)cBwRV;O#z`mBAUq+LBDc-=?d5Z{<~
zCzFM$0d`x)!d4tG3uuOY3<r63SA|R_YqHVuJ2N^zPLD5i_#=Y%QxcNN3gus;&iEv-
z&?6-2EY2=joGj{}v)v!rHNoo`ah~9e2VQZ&ZLqQ}<iH^tPNK%n`}kYA`QlVGrw9fz
z-(<YZY<wGMS~I;d?u3Fo{d9jzaM#6+{#uu{kZL<w|4z}@uQSmR)tS9&JZ~DwmN!Z)
z9Z@rrqcyD0JE^Z&PJROXS>SmfuFt=N%Qc+d_0am<w(+nUt!$;KFQ%!d?b1P0=h%&=
zz3RMK;1E@9WvI!tWDRX+2TH_(grkhrC+b#pj6N8cl^Y%M*_$6+pErVE4qOGqe0~jF
zuG}zk%AtJ9n2npA?2symFBgxy<-+Vv(|D48nI~x$84Eb~k8lj^khvDO(<z8wjF`7-
zb*9^$Skl?{M%|dPCk5)MtyV!z#1ScDwUOjuM&Mk!drZiGt}s~7qrr~?<^VDOE5POI
zit^bE-47hfzr@DNSlXdp4)XRC#Dg|-8N7c+8@tU`ykv45l}oY&(uLGnxMHM>WF`%?
zNF<4$#(|M!X${C3`^Sd-?SX#0FWv|K4De$h=I=M)at)_1T#2%hjnk_B6;ivxUEhVM
zU#n5S&fJ4CoC@{EXgkqT&boH3Zpg}EZOio1czo{|7xFQ!I4JKN5562Y6NvfP1}@ja
zXx}t+UX=6VR;*cnVW85g9aznt{Qa^gpLw%3PH)vmJANvgY@~H7jBJ9hE!={IktzCQ
z-C*Wpc8uNQLw@!_FRquLfd41(8W8j2R)zdL8`*b;@^gqAUTC(xNzAr0uh+)Koa;q9
z;p<E+KR(WuPRpxHHlivyLw**v?z4?O-60>n(22+CD)0edD-iRs2VAb<^yTnz^2Tjj
z!fNTeUsU8@61Vf2*O`*6a9%YV2RmD1rJC)09STjKBU><<xTSm(HP$3<x}4m?c?ES@
z(zx5L>;fC?GpM?+E9+>*2^dj-s!Ry^HL3^s&4V`rEkMlg1n_^wZ^&(t<wBA5*)?Wv
zHol;n8j2Q2fMAFx-S8-u*VW{Tca6Of-3xhc++Np#?*cvu#B@IaF4qf@96xkFLp?>C
zeyeA0H!Zc$c##p$VU}XWX=N@JD-QF_#5uwJRh}2O%U^^}jWR4Crk4Si>z}mCF)O!i
z*vg10_RS-3e&z~}K5jyP90WTrie-m^h~9FZSLS)LPuT!|8E_>K)B7B_Tzye~tbb6x
zrTv7Y1V?<;_FYClm;;FUzDCCCcd^_N%2}t6K(bG<Kfwk<UKLMQITKi^i+I{*CCB(`
zT_JpIp;d__hrN^L1a#koei=;o^J>u(1I<9p-#l=+IwHN=>LsClG+v*n{}Te`X6?Y`
zjFf>7$jj$~5&VK_+`;5lr(Dmeo5Ff3DdcexsXr1u0f`b(vm@6?zLm+=MS8L7VYwb@
zo)$8=`-qUgTc98Br}lt9415!a`773i{5>1V53dZ7AA;oaYu4jNzW(AcujRlG0<Rch
zaTY@E&4K(`$H*Q}4Wb@G-#Q)hlBs;e8u2c7@rL0@H+1Yi4PDQlJJ&r1VG(N`kzq(f
z<XHhHi9p^RL2<_FdrUpiX~BoCDxSH^)57wsgWp(AyBPc`;5r~K&*#DA8cvRu7y*hS
zTlQkldH6_p-IU{l%J?IxQ*-QwMBPG)zO;*1NtL8;3IMLU=mD+qGGgqF_<1v;C+(lA
zS4J(+0L1)sfy))!z2bY^{;M|klWpZ7M^nUWquVuRoon2}lGaX(<EkM!InP2U<JL2M
zPVl^e=($4oa`5*8Hv%!;Ye?QM*Sg5wc3{=v{SNvNJ)dg8Tly+r+@NQD-Z$>l9S+;d
z9&*0T$L>b!;h#(uxJfrNwl2s7SK>srq)QGz5}%aqQEXa0?jt=8c0rq6w#h}6C2^Ne
zlKwU_oVi$p-Bc&STcb{#L1?c0nmBy^V@={p<z9`Z4!_pxlzW3pY>J-gn`N`bUQTW)
z)WTVT((DwOtB$d&IPOW=i7_d+NMf+~lRRb*teNPOCfF10E^8!tW%Bq2pn<L;OI4=%
z;4ewrQW{fAG<x<zYXLq5^T}Ew<NGKJPq)X+)JQ!ey~aCT*Cnc*8ETn%q&e9cVGkOl
z`eudoe}MWeQ@>LGP6-_^Fdc~N-)Ic$|Iv4a^*(P%{wnmG#~d=MTK1a1vw|Sm?-L|T
ztnANKaLWd-B#AbY#;jXJ`TP+y0cyW%?6<nfp2o=>PL8ytHCAF`-szV2xg6Gnj5Enf
zj89K+Cmu5aZT!+KJ4EWpA;s*EmG`{z!q-IF@4=fmSMUC}c3;=_$b8DN5_NXAqwHlp
z9%Q@ss;0?P%<#>Krsni0cem-@#wPo7ig;IdW4g4>y8ua7=c-GSy;1h;x;inxYuiPk
z;IlCYB=0!T;HGjVJJ*uq*wu|35rdPVVO(bYr?xoUvD#g1O?5`-70GsMvsp`gG8nI0
zlaH#*sPr!86Y0+b$AtAiK>fz`zZ3kUz$bvX{+|YyYq)&0bpF)`4WL%;T=Yb1fRlhR
z03+~4ZG0V-B3}K4KsC!5i=1}D>_F~B2Y)@M!>&Py;UqFSkHoS|Wywo&7nW+FyMIB*
zXI<0adN~PvF0cTI`MeHXuC6$KZiqdpYc#@Lu=(e-gebnDc3>Hc#6`f5WEMX9G1It$
zSvXJfS_z8woUEBA*;$IDrU|E!F^mLHu%%d$Nc<)yLV^*FWR~;D5$86whlxfnw6^O-
z=6oj%xZAxb<p24IKk4VMg1-U03B>$onnV8Mc`d%j^V`}u#-+CB+vEW2nZk5CgM9rj
zv*=<?NNu13lcb08lT*a?sZ}2cMXSBXhV+;7{CK`U2mB)7-9SwLMsT@?^K)f-T}@7U
zi4Uml-G;g#A3)NW@ik>!&+^)?%gj_L4hWlpfg|*#K}XwhTuA@<==oCq*T8=V`~isR
zyDcI8*dJ`Dy?rga@0DkVUbemOCJGj}A<mT$x=rY8<j70TF%-HZN!eW!i<L(C_>lf`
zo*&CwTfr{{b^tN`JHX`{Cf{@S>i)C0trg=pTG9T^q6(0j=(%5!L3qZGl<@$pkQEbw
z$3|D_vMQ&6D!B2o5<p%M7n-p|f5e=f5c2gZbmMk;3;b;WKbwFTvG)wu9w8@WYm+_G
zJY&W@f^ms4V}8KUq?Jl2c`EB=L}xkAjOknseiQIvATGb(8q$pQRdGAS{jY2E+EsHm
zp#a$=dAU#8%3@2b&{jP3=3a!UO)6uT`jZ*xKpy8t@BF!IJcq9X8o>B3SJd<Tqok*j
z0@TG<MwUcE8B!cY>LlH4VPccpJi;QMS2_r9;D7lAXYRETTvEViHX(OBX*mJQDPTrQ
zFkuuhSod4@xTI&#nJ%^bjAdOB8Y?J&&xv6@FQ<HQ`7Z<C1>6k8<?m?wKa`)d>kgKF
zzq-N;>=y4+Vz-#_#f0%3y0ctIi=K(|MjMA4C(zJ)j^)%Py;PG|jr3{bnui+8N?D|?
zWT|xvY;$vMK$+a6Z9o|dVH;4WcjkCU7aI~%8$jVCZ<$YRl%*y(#}%pHD&P`L4hLPa
z{HDeRv)(S%$Wk@R<4m}jBdM7il)gjjKj9u}95^|wmjTKh*UQJj?+3mD#P#wzxLp6A
z`bGc74fvo-8op4}t-K(4Y{mk|1Bn0_HaD2YZxXFF1=iVw?qp3!BioSj8RNE>L<K=U
z6yI${H|?wO#K;j+Eq^k-U8StQg|?U-r-tR2);_p@I~V*~;07Qr$3AemUK(b<{SW)M
zEN)A;Z44%!1#=H6&m&TvugXi|5Rkyj8NW4+uls0F9rnSUHH5k)o!mJoMrM*jcxx@a
zzIKG$nOs<8rSFjAY_JU%mlV5;S>hx`Dn3@P*Joh<!p^`uW8k!~e03dz^VcZwBZ1jK
zT)vtSVfluczs9d!#hBe3Oj>=9+w9tI(Y$;@v3HwsTf%re)9SbA$qX>lt8O4?mZ~F;
z$!WJcX4bgcInw@;wtkFpgV5>*J6X?pvmDQfoGLzoctwl;LFYKlht4)$vi)YJq$~z?
z#wIfIMV0VUj+}kgtchfztKzxeB>J$-UzN85GdRz3^jAoCL;kxoJ+>ABt)}|OdMk6B
zd%T`wAKlgD?b7}qluJkP=j)^OoDk~5JLh=n0Gh|y9A%lVv5(+b!7TN6o6>&_gwEW%
z!g}nB>Pgn2t>BjfR{?Q7{#W#Uy#B`bcphB4O1#?UZQ2-2c|Bjn9@q19un62`8F%Mf
zt$ODue6v$lHb)RTawCCpl|)UhiejDYp5mY6o`U?a$sKTXdAq$&`Lh$UQ6hmxF6Gke
zi8XT{P>GK#_YO=D{B%0ogd5qq%8EjPj?ljeB)CdnSe~BFu-&CR$AO;-^Z{{st{)kG
zAMamw4~hE=%d@P1^La?oa<U6EdE0*X`kJRjI{vtR8rgEj59^G#3KNOEmasgUjScb?
zX6_`q<vKkjQ);rCbA^Oe!nrtCNmxbB8_W7*tqf<Sw(~#fAQZEXK)n(hR~IE(3qfod
zys2_kdBy+<R|2!k2&{#9tAiDEH1p&nIw3J(%xfIMfy0Wc3&{rd6|O!}()O_5;PeNQ
zN#9KF7)hCE;U`DdXwD*RXxF<`wXPYBWvji_8~tIGo=`Q8zDxEwmW@=nYz)0C78{7n
zA%{>q%TdmmmdmyB%qHLAIM~ki1hFTh>=C$ooxu@m-&NjYN={O?w^yIzonhBjU!iiB
z*)lmDr}rvrlb)_8*^9mJn|g%$i?UXlAJNWY99}lszfunQ*_#!i#Xm5eqwMBHqhD|v
z2ncI9xGgqzZwT8r*EQI_<H4r`M*(sBo*aE2uh;LCn~q*9JvJEq;S46O#<hK`82+cA
z$eZy~BE_p)oo1G!lv_^*|0eXnX+oqa$_JG-E97a%c_BZ$p%<?g4}$Llo&;ikHjE1S
z{ZixywQSkp`{lK(LVgZTrfi$vPP{Ea#ueE-&v?Z*9;_j7v@nrrgb-~#h8|I!%N>1`
z-;x<gud#8)NFZYs{0UuT<smr(0l`c|#UCj9QuiEu)N=ZEW#6G{KB_qE`W}_Pon?;)
z&9v;?NS*zfG86WPX>B=p?t?gg)pHmgw&~Q5mHiWbmino(zoqC>i#8H?Te?T3Z`Xyh
z?X!Hh+F~m#sf;#R*C>6tMv?U`ZQUeWGrU7Ol$?uoU~^bcd#Q(5-uxN(OTd3bbt7`!
zaDGJLc$C_ibHU2>8zPbSQe(!Y#*X?Hc(xpwOOYa&9URh4F@5qlV_-{2w=#OLeR{!H
z0IPtweY`PY`wXYo3F%7@*`dDWh=Jg@78ZgT&m@iA^(<?w)hP(G7qU(v?^l*XK5U{f
zvT_P01D>s}?{3kTN^EZ7Bzu|XloQ!1@@EqPzko(^tz1qfkSRJ<#Zunlb67p%AXA1*
z=#S5a3Y*q(WPmOur`IxNN+hdlIaM#GvGNRV-ZLlW*?iSjvBr|2LsU$Ty`bcR$p+w9
z{Zqxv@db}bWqvGdBL`m;)=wYhkNfZW;8y@w19APl1TNQbayRSf_BcDmYhpHiTwX3&
zLKQt_8IPBwigHwkj|-8@oS3X;$z!HWwn&<>ES#aZK^f$yBrQIbx5QnXKx@k{SQ=15
z;3MWDDI(ixQrjk*=U{P_Avi-{FH!%yFA2-hH8$i^=KZ6=7XwRyxEz;8-^c4$d>>rL
zM4cPBXa~Z)w7BeMRL=<6S^foUb|Z<BDT|y0ApXh-p~}r9IQ2|6!h9lAp&6u@nV}zu
z_cgmO4f)##{kWcA1OEf?CJ^&SWK2-cL*>dX7j0ZMK4Nmk=Ki%3%ec9B)20n`u?BAp
zvXT^gM!{wy+PxWl#*QY5@AOpzDp1r0O9Q38Jo()rAH5MBsi)Q8=L6e-n2*Pz?*}6N
z-q3T10yn||=m)drz}@1oiEf!H`nhRb+tf;b&f!~+RRiC+dbE29sw`dWmN{gT<MBMN
zCQIz1_|Dpetc^Zbr|7&R-7cImOKfIXK?)}M(=v9D$cmGSt;zUovZ)FC?o00p%TYHz
ztS>3YXz(e(3?MGY#_0RF9D5@>*I;|E>)$|dsI+tM_odHHl|K7fZ9LmVpQZoVtl3FK
zG&#&7!zn&F#66GxD4}jTZIdYjm3}pCE{x8wPNpkwM1>Zd#)@5IN66>ih!5fO$KWpm
z{|Ur=z8QTV_s94?l+R#m3A4qXNwK!$8g{MCq%^Uz*uDY{zUaNqVBO@lJEC8~_EMqw
zh5m`)X8<dJnEo~3ay>iDd1~voZdy5S{RL3Aa*ruASPd*m%J@RFv@!Vw(WIJI8;&vz
zVQt~9h}@=+P`Hq}2(82cDXT%Azw7d_KK4T|_LKV$@IM2817dzg^o0DZ9vU|l`C+X&
zZ|mZd=4?6PBx$%^>Z#B#Y-X^}zEn;nnehee&ds8=;+P2XL_4J8_KEH$jggt~PUVb(
ziOS8I&IVb}A5az^h#*Gg%8<W-h`!X<d%-^fd>n}R`&IP)@bZO77fUy7;?&cA0`>y2
zc;G+8v>~y+^Io=$jj}vss+i$$sVUa$20RbQScfc0+Mdo#ais3zlUBDa`XrZ}mZT@j
z0St4rKdHNl-q}F1@g%38!TKtFtgfhI^~;L=mlP$q_FNT~r!pa|Pbtr7;O77vfw(+h
zkG}uc<q3R;!&<-33hMi-R6a#|pJVLA(BJ6ii1gzi7>2pc-rMagsyuUJJwoPa0VLPa
zh#2ph;7(5H(h+V4lK?xb6rMC3eOl*LyDg`OD#L{&^w_CL4nJ6)z1N22$xR%TBig_x
z0aJmvJokXhHTkSi&blMI$Ky%DG&a*Z6r^Pr4jw^t;BTB8u}aRnCcz<U-MB^)(iHxA
zwH(Qm@oj{A6X{0l7PD|Ya;@VeFV<UfTlIMv4&!L$R0Ym_@yGU%Vsy5haz`PX<3E<g
z`((Fx)4Oa58qcvmsEQQ12DgFw#29(Cvv(-_5h>(r%A0SV=$)l&63d;j_79cXY&Dyk
zt*&@J>3v^R{z-#&w~^ozfhj;-{$6mo?igk~$K^jdPOsIwk-4vc0&(8$%DCHVO^F^R
zh3?GsFsxy&VkBkZaJv=ylDt3U<Cchy^s6s}KL$Jj#C&8YhkRTcts};9hs(V&A7Uh4
zz>2%-+)xbvqgd2O0PV=)^M0X?m&jx%79$d5v)RqqSa8y;4r$46!{Jycpuvl7If1UE
zrrqt7mBrOXj>r{}fwjdI^$x1WBRJ=~M;~o3!tg^Lyc@%E^ucE=mu?5Y7PtY3%drn!
zu4R$@zIsR;LtGB=g9%EoUws^f7Yd87nxglb_eab4u-)2-#}Ye3F<91|>7SHqAp6Al
zYJ6`KD&3hmwd&|rzvxWJ+F3v6PR};j)mwC_y(HSZGd0Sc8P-BI-+VNjsservd?4h%
ze8iw!F%|qcU<nZOe;>G94@P$Sj(4nsoMDPkfm>OS<EVDvGcs3A0wx2AO>~ThEaN^l
ztIbXu$5_<k(&{mk^QK#ab%Nz*EPh;Wm5n=NBG*Cm5V@SlYePz#9E<2C+~?ERDgPFB
z_Lw<12*Xa2{xqMrygGu>Mv(Mq6bHS?%Jqo07OO?p>4Bc7=jO0{#+1SKsRQo@CINBz
zJ`XO}&5@mB=s8_$R~=Hm2{L`{R?7lc|2<}K`y)4+=@Xu@!)tZMqHHAx4>EkTsUls*
zB=Xoak;AMhH^t*TlL|X3M0Rp7A!4N{t*B;`mS5tWa}Kho!5Sim2yyxnwKRqa4;S{4
znHqX(Z8a7!yT~?b6o>1bV_y^q=o>6j22WA_YMq{|vJQ<r-ukdIqYS3Kw}kcJO%2N_
z<E;&R6fh2m>tTNMeJnr3_jul0yXsUd)U<L~9nw{c<#jEz?$yfJ%^o+$G>nCoRXoS(
z4vZpkBkSV0RBl`^MSSdnPAtcM7W@I=At2`CO>nt}-!Jqs1BXmVYxF%Q172JwrlWeB
z_XftX1X^M*gUnCR5_%B!qA7$8bR0f+k-cqQbA(H<cJ@g3=&>Z;tsy>F_6S)~2#wX>
zz$R$)eQZv^M`hX|zo&t(0nPzpejf*yYxw<NaG3YeYv*q6C-bndJn(4|dUq)q8b8A8
z2kmAKhqj#Ah{`tO)UhK-Won!3W%fz-u?S}8xvSY+vri{^$64;#RBb-7ME7FH>_&^r
zH%V5{#B3JI)#f4{{0E2Bhw80k^>%#@(UMUsAgA0KmaA_1;J6qAz6dx0h|BeBaJlwI
zcE749k7wK;wya{ll4+L`we4{y-s`G8?(eMNcDWPWUQ_onEayF(HttJGp5mNS=eHLU
zUIT9H#T18G>U6I?pNs>{0c78n0AN2q%Oj{s(w&VaTS?todmZ_ZwcM+FW^{W!=(8ty
z6D8kUGMA;N<t=?BKS*ZUoJ5CRU8u3E-Fm|4+Da!`q>W4X{Cg2^l#-cpT+WFpdGexD
zr2Wq2p9YmCKTTg_IX_T}AONEDI<2W{ss5zm<=aXvL0K3~D7T08);nWRFTNi9V&FYM
zTyM{T%Qd+#T(7L?erUa|*}U>R(k4aPe8h;~gkr?!{TnrXVsFZLAl=QPg@Z-LLw!FM
zHHALYT2wdMuTOMhrO{5~7%NvQ<Ia%6#GX$4g_0y+<Yf|{5g{q(8+JEZ#dKc2$^ML&
z={XsY7hCUkI_)V|ht<gmB<4o)%1$7##=Jnac+n@L`2<~QIBbo|=fiR@JaTXxoCSV9
zunmaIeHXY~L-(I?xdVS4w#alF83R2J%hvd4pa-bN=r`|I+W2mUty3Z6Rk7zwu~{y9
z5-gM}xrBmakWnsfaKUCCLp{d)Bp~f~rap%g8Ur!h*z<*u-#6hWo@cT%mC+821Y&+q
z1^;LKuI?Yo@sEY$xj-TSIR1e)KAeSPuL>zIr^kjtG0cEXdHhg>V>U6wl_WU+R4gsR
z;h6}gdTq$7(9hi+@_Q%z#B#(}!5;^{3&i|BbX3Ui@x%C`uU$27Gbc$0Q{syj)8Q|*
z2tdDdjq7vl7rgpZCY7odvx1wGgJ%gAVR?}w$I_)_v(xU>;o_2)7{|2hrm5-+h_N`Y
zkjfqD9^*LmVh!fto($4wYHjKqXQDrf6<Vb?xfdiaaVK&{;c@m>&rhq=yHktprS^Gx
zBL{rx)JIh6V`OR~$tq;s+Z8{ZRqb$i*akhGIPO$H#olPz_JT|cC-ziO32!5%TcSqP
ziBRP!wTFCOn>Z@f1GT06Zk)ZG|J#;sPuAJja&D6SDHUjT2s|Z{v`g<$Z2Qp+hlZa$
zVLj(&4UXS7@NQrd5ZCiH;BpP;?;q9kVyWofn>4cTzbiKW^WJ9}FXXA{T$(kV1J<lu
z0e=j9k>uP;Ir@=kobJxkYf2eTyOh&`J>@M(HDv0^rP%G4!vd4=AfJ$gmDPTYJt8Q~
zuaw0!CH~A|F>?2X<#--G%kU}d`LDtM3cL-(<(NM^EXNDO#4*c2JUf=*UsCITF2Ubd
z>z|7(^8t><D73P%!s>$U5XVC|J=*8wO-tbwN9oAOU!@5G)P9fhQ=AiBW4EAe6#tFX
zQ6?ty|3}%G07g|^jsLwn@6DT;OlBsTB$Exu282Bz0t!eF1VqFLh=??VB`iuvWKp#C
zGb$>zF0oaMt=4GW>Sr}o+Yjqf>PqWEYOPXNY^~MSw$y5Ct*!sxdH3B6#E$L%#xw6E
zBk!EM-+NYq_(epl@f%y+toNRt`!wHO@MXsNE#MCVKLQNjvl}(vbAo;6`hMqr;kz&3
z9FY}+Sc)I(0E@#Vmg3A$!`5BtF(vWD1k43kL^1s$E>^s}q)Jt1LZvP?e~Bh^5Owaf
zNF{c5^aauBGvU%G-^$@EI@O!&o)}tyYcm<xGBNb20}_pCkyn&?1T$6>8bWTZQ^!H4
zLUJ>6qnOm_s$rq!p*8u_+3ChbPQYnkFfH(76<%Qf(RSXpL%ywd!~f}a*hxLj`gA+^
z{{asIrX5}amy+vTv3cE!)xK<?+ivpDp`>$=zWWPe!J=w4wJ??}!7_-xLQIe#x^XhB
zWUZW{&c&y%wC_C7uuJn(KRqkwnF4+?upBV_>;ac@OOCiNYd5u?-PbRfrYmG-TqI(#
z7ejnRfk&0hlO@S;>K_qnXK}St5FYZ2RQSadF)WF}Fp+sN?x^zRs>R{VgGIQTA(L2?
z-__&_8&^Dgh{V`Kl{r_P5gx@!yP_zAgQ1fmyjge{Sxk{7C1c5*HZc!JiUsOnewf}T
z2;`u?se>@Wf9hdf-_oOPtBT)c{)`4c1~?Wl^}P>VN?i~)e0*>}F#8$nz}B{oK1(g!
zEFW_HYunY#S8i`x_aaN0`EJa*7Ei-^ZZ#ef{LSnYZ{zqFKAr<|F-d_4s*%8uAu<q)
z{De5*QT19vP(>odbuA3nX2|a?$DGRAbi{K}Bh?}lC6Gdr-^v!m-D0k(o|o6kI!WK2
z?Y!bR)7{@Hr_`<|rD<vSWVsjlrSnl;@6?R!`Zo;xFkm8J>U{#Zlw5H_bbPjr2St5!
zn(mi=9%9XWgR3tQXUoH5P)mxXHX)@^EvaIn0gP35`!8;JO!Kibpd;;nFZiRtlYrsl
zo#1<O|9`b#9E(8Dx_;x?{>{_BI`6kP`^(rZw!e%$psb#Z7&PU}#Xnj$FqS{s8D)z$
zA+I=Dn#jmG-@3_mmaF={`10M4YyKw9^x5^tM-%vRU=?8aJ3IKkBalyg)Gw}-geB<n
zmiM{qwu#BaQGAm>Pd~P;?WNURMn=k&o(tnip&|!66ryL@1iY{D&z$r__Y<0*Jpnyw
zuQ$OD03QH`pV%>)-(370>c0Q)8M^krV5s{^&Cim6p77HSekO1>VEEY)d~fcN=4s{+
zrXcG#uiGrTA3xMzx@saB#%3+B<_(A&txl{M0WewQ#J<>iO4IG-y=L8f6Z~D^4}hUN
zaF$@X&!H>V`ZQ(x?%1P{sLtZtxu#kTWD)YzD1<~Kk*Z>ph`Y0Yh)Z|~g+`X~+rVgn
zn?z?RT{D-siZ8LV^{t~Fdo+I?&^P>D0Dc{C17P_3HMo?V>$<c^U=6X`{z>RZw!Pb4
z>VICMegwH$&xWmTTTY!=Axq#-5dx)%>6k{7SIM$b5h)%V8p3G`QC5cZyZ9L%$C`OK
zVZT%@js*X(C6kO6$xX38l<3>IN1KZ5ep=UK((G(K=7BE+76Yap>%b4LM}L3Jwe5a8
z>zbsS77`eC)<!XA=W18XjZLD46p8)#d>y>B;TcW0hxeNHdk*|pz}tYK8=0f&=DKI#
zpN0Dqaj;r9Zr-}773E@wf9Y=Oltn5N>_w7&WfsfT)dU%isw!@YF+4L1aSU*6Y`-MQ
zYE;q!(9>tLIE+8&y#B1_a|wJH|CSE$^MOkN!)NJS&8HK{kEg6VRDRjVrx}iex<ao<
zt_;~-q380hgx;*Z*mV@1UugAmr7ytzJ*LKrZAZcx;wexLm&tngbrPdOqtP{?p5T}{
zHZ(5u4Y7y7;d*B1SbjS^^r{^~1;02!WTdK7)G~AfrPI{3isB(@q|Wg+H2cmNk=_sm
z1)KOtMDl|ca$>4SIhi;yvLK8Hh4UTd;qx;!byVWWNGva$K}7FGM~i~_7!QN`a19Dg
z(hHZVk`HZ{FbTg_-ae9Ks&|!oU%4l<pq1Ui*o-CyMjD+N?kGa&q1$ugWCUd!`x9Sz
zk#}wN4I(uM&lw3jkr87A9HI&mo_j8l3N}aT!$-MaAUjf~QmGRo1)(DRGwcxAI-eq-
zG;y{Gb&*UUM@bfi@(36&0^T3k5gfHAgvPoJ+@_I`ySLfS?RI1tuewoEh8DOfuY#s5
zbTLEVCNa#LPGZ-8+0IuKpYA^i0PXYc>t?TXV-JRy{bz+XJ8#&biOwhD^lqO(>yNOX
z?~|~0yrjoTC*#1JcfSdKJMh1N87F(erR1_RTiv>P>#8jb<JOL>1gYU0au*%Jt$Efv
zw)KfiIEQ!!D;peJ5qEGlPlrm$;F@1StW@-(vS4xRTq<+CWuNA&^tkLin*e?^Fbgnz
zEeDs9OAfcGb$#2)t(!K>3_F;$rg==U3)Bg)_Ge|?5r(x0W)^I4FVV*&wMLpQ{A^Mm
z`fJYqUuu5tfSzfm$H9LA{1PzyjGU+WSr+8E_#lu+oBc%W4SiOQ-nwSkXp`2Z$G%Oc
zi`%a5q4sm03E}vTu^ld@gvE7bfO9d6W>5l@k;hlAIx5ucw#PfTz8{nCgm5lJ4e5+U
z&BR5bWTYy_gCA*PBsQiZoGd32!73`#q`s$|!FDCnw&xXHpKb7K>hm@5Zvi(0raljW
zOUdPr)~`N(dKf3wi~_YLX<KtHwypO$+>^2xK{DR4@D)L(OvEx(h)U0?^<OUUe^v8i
z9iQc=8oUk|3P|}p`<X-e*toULSNzENp~RX~V%@^SFD(I`4&GVMU*ueHIrw$J4S=cl
zQ{Yk_&!L|^lwRKrwc%<R@e{|;hkvlGyH$0#iq(qFA_$PLMM&W2ZAZcbL`sD64Sm8;
zKj`^gwlh&y@21yuJEZ1k$9+BcVZa2y@HZD+N^XC8B;knehK-gJ9?g)hnmov^!W_k#
zyTZDk{Y~=5xtutOP)t+^{{-V_-}PT>?GE_Z2^}*&?g4)g_z__E_z+ym=Zz1|N5@uw
zgKM}{T4*^fH1{jYdd99sbs8mFy~L#`N|Cl9p5$_Y=|S4Vk{;cADSEGJT%jt!J=W)1
zTIsts=HExlI??<3bWQ(+ET2ok*8^>U;qw}BDMo+NKku0Ir{;6Zrn6_a`m8p#VdN{8
z%O%s`_I=yB9|1P5=)TCFXGvTQNpl2aa;73GKV3{-0L+r$>LN+9T&YHf3e9<?_YKYG
zJMdxJ^HcCdlWi3OhR-9x|2sa(m?)>i&oJ4AN5Vl&mct~M9iK@iVlF0o_iO%kK;N8e
zz72j4a35g!djnj`e;#+M*Kh7<_uUjSRX5s<y|O{H;>&~#fI;HY((7cKrH6?C<wRq+
z3vkqu&)6UaWEvH-wB$5(mB0S>ys7!CKQYVS4DbcOV!-fsCb*Q`=PuLFD_3k-v2m3)
z=Uu{(tN@0vRn2`^qM*Sd@z)4O%OS!aj(IU;@yJ|?eevkAY8=PITGPAO;r&YUw+H&B
z{eB1jA@C7k_;VKgC;mj>zEU=aRqI+;oxYKiX<NsZvt<T1RQqf)gHN{J#~oDC*;k15
z)3JTlPgZZhM-y}mAMN1h0AB(OA72Ll{B}B&kAKU=zdp-E!>_0N@9pLNhW@X>{{Z|M
zF!YlPHT_)o3r4pgnQ0k;oOmf>;<>luz~NS-Dnr(Qm)1}T1cAl|BPE<e{JTO6Hg$0p
z()|G+OQ2);I1T&^U<+XQ=mh_~c3{;qe54zul3QTz66;=H9D)I(B()aL%pkXbyr=Q4
z>HhnAd9R`SCipwR?*T*iZ{SjLjZ^5Z+3JTt=_C92za!fn&}&?jrMC!tIj|Bi^frM@
z$<^MhdNjEq*@#%SF+psax$V{qkS+J!Sc{yb>=X4!OzLIWNlE=?y8qnG`%Qg+2L5Z{
zw}7F4%t@b5KTAB*@sALC$KTp~+$ze)x&P}~|6&WkvJSC6u|P(;!{Rk{vUM>*$zFSS
zH0n*@Z=AskD<sQOv@Fg!KT(KHgohS7k1Jdr&xT?ZpX`q2bBsGAJ%Ycm!(fgo%GBpV
zh#Nmtm|yTKW%oO}UOVC2tk>TG|32^lVCwY}xRiZ?9Jqh}zI7`$u5MqmMpo*UpNI<B
zlX3jMZM_~Qxu+AwUR|W_W8}JtL@Gh-4NtCf)oO*BC9d9qWNi1lnxFc`S$?K~9}k=e
z7=CtwOSwO=zn<C84to>v!#Ay#t0ydxYWI6O)$Rc$X?5p49cJm90%rqb#5Q)YEF%a_
zK2g2uaAt}|P9P6c3EFd1jhH%?k_(ftfn>tro(y=6PJVtx(!=YB3J_MSN1?r2=FU;e
z>>&=CYvC*P2VIW?@M-R)-pRIA1e5}%9xK76<cc4{y;MTU^&M|A4Zn=AI(``9U@`AN
z+&|GjX=9Nu|2<$AVrEQhmWJ}tVpofinObSbFq<1B!g6LZmaSt+1%pY42G>5v-fVA@
z1^(km;CmtbbpA#2-vfVUTs#f_67ULO`2Q!kl-%c{fPdnT^x4!j-J&o5dDgtwvChX9
zh3I083r7S!IE>}vr85RO9A`&tM`4X~&`>>KTRzZy%~_I_7q0<78~74n_<8_b$}>6g
z_Vl$Y17*XC^=<R8nUTTUX`d@b;WzmKWRmC6$a{$)>s323qIsgwRt3b3O;yFJxyp}?
zjVm0LAoPWVyUehWN(|#<+9|?q*7hn1D>e+?Z?K)2_G+_(_I#-MkDQWi*BbC?zzo3f
ze-XHp|Jbep|C;w(lrVpad}I?zdQyuAL)Lz;8kxR_+3O^`Br!h0I4MVUS5b(wODq(T
z5Nd3+ULrw6UsT!zX^jy!m<!oq*p8t5qb{uo*_a!Xu?FBbDII^)_1Oo%Rs1gZjQ7Dm
z1>#Gy^|=^a%3HxaE$TO4`}$*r7%u5-BQ5_FAFk^{tR(ZUV+SlO0saxP?#1trqbLsT
z#ifJU7SXY@K}YA}IsSXwd(STMKSzY~%2{U0NSk7-)&yyp#k7I&RKB{;k5^ez(dw;J
z+z?XO$CZym1r;qGtxhQAFA|9fh~Tq0HjPWBTkC5t<~m=qQS5}v?3dBExwTk8>4xa}
zShvG|>RClSr5!#3kDN+708)Fo*9`}kV&Wyf5Zs@$_vT=}`0XIQ+J(T;H_sd-)|vCp
zSJtahk&;Q4n=vTFVkoy`<Ps_J2B4{c8zPsT6lf<|-~XZc+6G;-4qXF&6L2eF_<9Un
zipjgwKVHwF{o@<>33E-i$xIgU-MnApaLl5EAqPg)HEg8lRB7-swD3h`e&Zd3?r4-z
z|9+zRN-fLsH4c0>a2#OxdKFyC>OkMHyI<beetfas&m*I15asACG3@!H%f}?ZYlqA4
zN3FYJ)v;JK6pOIJ<7UIyj~6P2Q8W~<amllm&+f!$ys(D+JY&^(S5?>%+*u27NlAuS
z_y<?ZV(X|3(rFi8unZ$mHaADCWf8$4&Sl~9Jd72wutt!Fz^a_@h-j2V59U^&1@T9$
zN)Pfk!86o6=jXOvr7jQIHO?Y?w%uee)j3!@?4$kqPx?Z(olXK@1}q0mJFNwm@|nC<
zft~fC?KE!%S<C3Zbki&Z!ShyFKg}CJnl#Qj)3x~5+8@xpgZEbPUK!61fIkHMD4-?d
z*~$?&d1dQn0$0eAy4sqz+Il&Uz>_u(lvqebF*g*iaV)t#{}u9@CZ+3H)ts&8MDY2*
z0>ISs8gMCQJnYLg9!xN>Zu@y{82BFZ7IhENff)v030oiKRma3IIE`Iwv@(eZ{~p`-
z_sn3mClMrz=`s$2E+fRQEKA4O`U~CUm(aGCB9e}XqtqAFc;^X)a_<x(QR1wGotmrb
z@eX{N`4(DkTQMLXF!d+{mtyjLtqb(HpIHaiWP`G$TNV%qX<nP3^lQRM&V~4hSSS0T
zka`2UExgz4*XM%o04@Uz-CMw=EXolFsc)S4bOVDjEGzn^`Ci-VAsiuBSQ;rs6V=MO
zLT9R-tMD!)#w;z<9oFq|0D4u>lkro~Vp}!95Ww(rJGhh=f_&8P^wTRI%FiLw8*hQI
zzcBta<gbix$E=?UXNWC^M~aKRDo(l8r2JE5{`GqlTUiv(iYj;?%yvz{CP0G2SD;de
zs>$JDd}6!K-}4c?50$^ghSB-ad_04Sfp|%oSDrVNd0mhgbcteJh~;51JDd!hk&40!
zS$uzQt4<YuPuXiiGkC@K5w-gDOT~42SSzyaQ375I3<XSkw1Z1A@ksjnJ7RBfX6wea
zt>S<#3vkO_a@f91{G8{#qO3n+u~lFrWgbU_8_^T6Fr`r7g;3u|<Zn}wnGoR=aYh)X
z8pNC*V~H`b206=w#;67$nwGu&E6SNA&yIY}_b&LVf-mXEpM(Dz_$^@gE?s#j-^Tyo
zGvnD*K$zcczv%d?v~xw1Htz%1dI<Y1WMbHVi1kVYT_XY~iAaOP>;yb=3R#<@u~!IB
zmv>eK*HyXFFm11N`pzRM&F?z+G4tRe@T-7p0K@MC;8I=)^1EFf<a;}aUpcPIu~2fj
z1i6qhO)J>$z9$w&^X^BTjVTv`ee9_uQ>Gj(I5R~_qL7a;l$FBY_1KO_vb)I7aJlj5
z(o>-MOs&fDISTv;U@BnvTnaA53G&yEU;G)pRhG~78;M}1hs8;ZirXcS-MnvMa}S?&
zn57b&fnzMTPhx47xflh2j85#)Kg(cmq2{j#`lcO!2L2lGCSdsc7x@1te@AO8)lAD0
zc)ZQ$v0GW&vDT`KuprZwvX#a>Y|e`fkC*i4@jzPh*R(pj&aMXkB5)pH_<Ims%Az2i
z+V+zUZNC+(xg@r(TCdY^b=fasUrMmkh5qM-zC+Bsy^i%f+>wtfQ3rp79p&hkkMS}=
zj~S<Bv3x9CadYOhBbjF=I>~B2RdP&4XdUC)IwL$8v)}t{x800V&h;fh|F>rO9}0dH
za5P}}KNDQa>Y)GYPCb-=Jv0xgLXWOO^TAcPACv#WgQ`HfRlGu|01~BGVIGG4oRuf4
zG!>C&QI_>l>QtxMUTt{qEY*DPfv*PmlJ($q@DG8%1BUNY)@Z(aTQ$F(!PCqy+8vXF
zY_zy8`)z&7eO7b7#$VDOa;=?dR)ipKag=i<u15S+#bN`K6?pb=2<Bu#sMt7R??z!;
zH5Ct$grg24D#28*ar|^|CWhn_k)3hVaj|4}NoC{`MUJev)dX*p1!TDTQh2<Y$Jz8$
zj)TXkn!FkbDd(@;jTO4SyQoi}+z0$M;7!2P_ix}*rUd(H|2U<(pAM;VQ<rS2QB-sD
z9zt+NJqIwFQfjgvEC7YKFfhg$q>i(Vv<3o|nx8pqv-5H#cpGpAVEFkmxRhIR!~?-M
zHb^PDax3R$f6*ZBP;i$2ApwN3TFbUOu`NUhE0Styuc7$<gHm<}{Op6CIq&=d{A1u>
zfZ?ZZo#tmpj`)&t+&E|yw_GpV+IRiM;rHk*VFm$u+~uqtG!PohiemAh_nWK4SC`Cn
zPE{w{r)ujfpFOK#pl+{i&^PPY<>1!=Hvoper@*B&1%6ij_gyTkj>pkKQnvWp?&HE=
zyR5IjVC^D+KVGr07$d-g_)&V!0QQ8u0r)Y6l3~K5xyR#(@3-FNHUXU4WnGZcHAwSU
zx<1R_Xz;^<Nr2(65nM_xy)^v!hF1ZDIuq}_S=JAWO(tICew-Hf2lRFX@00m^JNSLT
z{{e>HFN5!mosfB&`77zgf(DtsiO^NYbhNKpCoNNTo#;TKgJ_w@k^cEDgXL<BT=Gbx
zaJ12_qVNtbQWETTq~hotv<7)=t8{zRpO&3(M}i*%919r!R)I^&CFhm)5Wa+^CKP2&
zjk0Gm&vukx=}3l_LP9Qkkz_TdesrC0N-)=%Vvh`1>8RFx^gzdq>&L+N0zU@~AAbgy
zlFL31K9262U@aHPs2Rbing6`)2O`Jb0vp463_nB%NIZ7JUc-&ZT9&B|@X}PH`IvNi
zc6`hSKLuC@7(Pw|my%mvr04mt(QO^HN!qvbui*YLe~q<+g-5PDgmV^g_mZrZh4~%O
z-^KgQ{CN)im%yulq5nJZ|Bn7jO@Bh5<C(v~`Udoiv-Fz}rr%H-)PF<P&-gg-^*|e7
z=>Gv+%3Xmyeq%rT(9K&=HkpO4$9^$%k8StZ3;fUXwM{}N4|)cBuDj5GrV3+Xxxq<P
zr`q6NUl~nuzQa_C!`-mZ=op4RW$Z<DHYeyQVSHbYVswjqTe6q42BZqf)54Q%OtK=V
z0m*1d-VAoEWF-qin){@a5gF%*F(j6EC9FCB-oG$Bpwyi3x9!jZKS6jSSw2i;$<86V
zJ?6A!+v61Qb-?L>X^->3r8MQR4{klfPgcoLa8e7fV#o)IlH9k?v37>gFdz?4*zs6G
zG84NAB!5n^|2}J|roSh6zpNiGgZ~P68!+_a8#R4%59q(1w#n|ZeD(~PpN&sRl7ji~
za<fEbT1+G4)9CzQL*f6J=YUL2td^;9q|=wF<UqjBl7OD@a~k*=z!t#pvpx9UtYhYB
z*0VP9vjqI4t0rOkIDet_a!B0ha2H@n$E;U0LUpo+N@=Rs?a<46&AfOU{I9^rfT3H{
zuG_)rO%C+4pVxGcH`2bEUU#3`>)O4px0fAuJ|V>335{criQCl>xT$m9@Nii~u^Yhk
zCO!k+FoKr_;|z7CI*;b_f7w4w^Vb1=!{2uBuK-s7hQFJ^rQ}*SG=H<$o&8l~1)9P6
z=UQFJTZ!uh7sk2JZ=HmiX7pt(!!`W_yx-7wI&3Qmqya;JFu0Ul`<icY(#n-rPAKW7
z$*kn#Sjp#qMUv4<q+pNGa<Nc@+_@x6@Z4biJ`m9F;QfaF#o*Tf*8zt9J>dV5{$@V`
zx@3CPu{lavyGD%BT)YJra*$5iG4}ZyWQx9R`(mumV94qmq1)jj=v48$jL*~=;6NQ<
z_*euk<^CYQbpQFXnQQ+cZBf(hKB;bW?QVC*jWSYx5VAgS#&JEVK&~Ih9IzUJ72^fx
z>fs!bhxtyRDIB0kDS%_Fue&0g>X~W~%7UQLpx-!3^Lq#Un0C7#{71lJfZ_K|a4G%!
z&5v(l`YYq78(kv%-95OKqT6Jh^CZ4bjC`UhG>8CyT=rZ~`tEqO1U3!?^y@ce_uVPr
z#{(w<hW>VNDfb8d+i&%|*OAF$RjZj*2pS&Mmb<%bku=P|-nF_&L??P1(UFlq9m#Fl
zElCu+<)bmuK&Ca+8_ujpr8*w3fHTkoz@j*um!V=Ir@R|FDx7xj@3SxLYS8VrAHGbx
z{RR9J;d67A?>cZPb-_KMrJw({&$k?gWnt{JpH=6vGX6<fkM^;92DbBVJdx+7;8dh<
zc#pxUK1vN#Ke1V{jzaD%qmMF9^R+FYE939W;8y|H0H!^^7kr;<z4rOi;ZYlZ?l0FL
zvgr3QRZG~kT45$hP#`iv`i(VEebw$`<S@;LwMEz8p9kQBfLg%taai!ZS)a|*tkYuU
zHF_M4GpToJ<KCrq@6vgDmvT(n%X$!=BdVOjRB|lVt8j2OF&TnZuzCafox%Hs{?*{$
z1a1Tj{fC3^4PEmz^!-d8INJKxfONxp3~8D!A=D@y*9v<97hhU8Pb|DJPDj^<U5&)_
zIEmclnv<6Cx*Z~0v*+6Z;0?fd!0<62TuQF<?V1f+H?PYk*l9S4B}qF%+6^8{Q_~g5
z>S0P)()MpC@_eU9|0FTbN!Y`Mr2_#!UC=Z4+dIMU2JQ`bQ1Fq<4yt1-ngqX5R-0D&
zy=^rCA4Car$#z7NP$roHqJoqTWPOT8bp7@puG^#Z%<Q}w1wIj&44C#f7F<fseQM#^
zo6$;bId-Fj@O2u;Vc2m2j66V9i1;DyaA)8v=dwpQ{N3uFpy_t;UNc{B1-}Ql4={9p
z4F2EHo!P4CP6_BfhPx<qhh^zb_vv;_)O4-0vUDrK2LUyJ6lw4N>#7-l;%BqXSHB&-
zV$-Jet()XJdb+jXbgPGyx^W!;RF#OO$krE$C5MZJf?xIrbUUG8?lU)n-vitSnEL)4
zT#C_4nDrn_|5))e->~6e9;C%nmowE<75XS?E#RiLpM9|~QCNoud7&r?L?0Ma#5uLS
z!HF`?lwY--;XW}wx+m#&soItuhtt5115N-8e`~>|%nbCV{q>Y<S1s^`wFk53-`G2T
z!lm2S0WNr7(wkPtSE{s4GEuuIE~oWa(pSY@WjjrM%2VO%2+h|n=$dwW5qv-J7GU`L
z7r2yM`nP|_mo!_)M7Vl5WG(o6$a+7NK$u*Fjb$w9s#lQ{uyJDokGs|sESlA2km#PQ
z`I&QemY+88t-#rU;pgk%Qq~3XpZ@+(YgaAWbhd6P<OZK@t=GgNX~C!3L~v+0AIWT8
zG8y(Hx}E$~WQN3sGPveB7utk^GsDd4o}&4C2l{4SS?6%>1JZ!uZ#lS>-2T%|o7QjK
zvXE=r3V)2V8NSQb+i8DCofoqf-0xaH#dxunI~PIa@TgppE+k53X=yrKfaQG*cTg3r
zbz=Fo*hVFbxV;fRuNLDSt~8uJz>yPT(-TL7qwSD(*y?|6wIDPK8;7i%wq;t-|L|+-
z^E~*gz<$8g=da*Wa;;BmSDm!+EW+&`G;5v4D~a&b=vfQCiC6;5oCGR_(X5muWT%X#
zVj0fV8MQI6=x)?}G=4EVKTZZ;3VZ=De5?YOlFLs(<Te2hO>+4<!dh^IwabmF2962@
z_-YL3+`)Uye()&x)4+3pq4PSplwA80^2Pc6NI4BHY*JKrgY~4;maFn80Fx8Ts&XdS
zzU6vPK)?RnEd67^=K#k6hW^RmQgZD}YgdUKK>u;wXf0^8{)nMp1@oR1ua-4QNiEq2
z1G+nTuj%Jq;12?i1hf?YU+%b;%%^`xa;vpqD`tHIBvU6x1hV9Y#yQIBn6CRX@}+D&
zhk_3WMgdZUUhevxv=Kv@&(v_HwP2>zMHcl5%74l3fKJCjbS?qE6uA5#I=RQomJULq
z%dyKhsz_OjQr0e8n#eD`!Ta~|F0(%V5&UD|Uw|+n^{D?JU8jd~#If3lJQ_L@hF@%e
zGcAvbsH}>s!=mlVdW5M?coH?36EE@8kquxz&1S+UR(aTqDKd{J-xF{#Q|Qd>{M~=F
zZs!i@8~%2HUkBU}@Fe`@vcC)X+S=!w?^K<Re6t)V1YB#;w+Rx<aK^eH*&Sy-ET>$8
z^QyumQ5wQ3T^dW1)+?RP57`jvnxXlLoR=MEW#GerQGjW$9pF-OodW{CXsVjdvg<>i
zmfD?V=Y3k5XD$ATV{I8H*U?xQ+XaX42a4O^NH$+oz(wKkCOi_OWEvw8i;9F|gJW~!
z$Kv`oWxxQ5?Jx075VDuYE8MEW0r{o4+Kj~Ff&bM_ia(9SSSLSt-+I6Q7+s%z@N3%l
zJ@9`3p8}>nC7rrHx%S63*dK4(yaC@Os^oOpYklq27Cx;dZ%PVCjuJ673Fk8cug1zq
z-%=ror@r89*YE9}rTJ)qj+wt(!M6iD0K>;Oz@?aV`jfzZ#hh<^J|y{%ABxlIwio(V
zBeVImmUQzjO#G&ZdNN)w!3czh>1u|m^k2$H$862VJJ2!f=fA)U&$q1-!0^!sE+yBz
z!%i3p*(yKVHZ3x#x6}TCy_cIh$Y7p%){-01i`a7t@kPW}k}II?7N~*rAp?;_)^?m&
zR&FT)TCg{Q%Ps0Ax#oAx(fsXzzG<g#g5L%70EWL`f=k&Q$RnJ7{$0qm+cyh`GFf-q
zKjU7Fo!VaidcEY)kkzfK3AvI+Y9#^7y~K15Rc@FxS&3NQ`8IoYMX26Ua)OwxR;$a2
zG3=AGTIOp0>N%tv{*C}&2DAW%zdOODR0Ze2{`xlZWntqaC%>Amg3Ci!7T8?{1N_g+
zZ2yt;KfNot*Dv|Rv34M3i-w7^ipitGUvWfatct{@;6j-|?&gG$L)utI5*VzUOKzNK
zp{XkTEIHyv$OGpVRye8r)I_hEYMkTz)J6@ZPZ9g)>H2&Gzg6%n_s-~rwp9QW1ExL`
z!KE0xkN)Rwsn6DJ61Owcas?@GtR+3l`hegBLvSj_tTCL(3<`(Cqv5bPFIk!__R1><
z!OWS+){nQjng<P>njiFkKu`GD34SARGhq0+EBM~rf6dd(llIMh{#MmUOP5TszJVZ&
zJErXBTsv(ZQknvKAMrl3J|vm5HNX(S(3=&^<6P?l^I?IQn77Sbv1Ns{LZ^MUoCa_5
z4Rs~S<C3S9bsPIc8to)b{M>)WVw)GU<MJDsnf&AZVt$!qpQZ+w@z#BUZjYS-eQA$7
z!0!R>1q^==1>c)?Fi+DSYuj5lo+-mEohnY!9u4eS95OH}q#?)~W7?xPphx!ezV)FT
zd@wK!F!ZK^OUdOof&9GH^nic)m$1f5c5*PK8-{a;jImIWVM1FG){#9sWyhKS9Zf<1
z2k)2qejWT<z)gUm|J~qwQ&00W^(CBs;BGfox__SaN9bY;f&Gg=0P2GZ?+)mF6ui$L
z{}*Eu3nT$U4@(cfzJ`u@8hTqd8j4|SN!YpoM`znoVXHTI{}TSa8DDMSTY$3w^ZxU|
zrM!?sAF_G<T3OB7bcS+A1kKhGIV&bG4r3mTb%OkcC+haw!~4wov=96@z`KB<7ey!}
z#psjY3(h^JKAevs$$0U))q^-C*xhQJwd6x(U4{<=k&1{yGSQjBsbV<MO7pATno5<5
zjtJAXcPnQ$=ZFQG4-r0@eWn$B3$P6^e0&vLO0IoI^RYQF^mBUbExt<ZC_b$vyAax<
zvaMq}yUZ(gJ8@#fLmZzVF@8Li`YqIa?1PSJk9WX706qc?ACVoJk6h;&=C^JSr`z7*
zZ@CrLlB-3iC-h|>sUW`yH{m5}iqz*oK(~qa8oH-}Zw1Z<4Bd;trR2)fi;dU%ReoTQ
zJ{?S^aXi<u1=C{I(mN2+i{$|ZpP>bE$^D`eETr9wbiI3n_sh6`3;g%M9|1%EZ^8Fw
zJe#K(2R?o7g{|9U?Pxe2jqK93)`S6gTMd<^W4s#a&!p5znqK3Vb$x{1BJfjzX28%}
z8+>o*nCBt%jOwqC-ptR?>kR1i1n(1iPk=uI>;(+HeZlvJj(HwJZ}s{!*Za|t`Uo!Q
zPw+rMuj<ll{U(AR1xyDFy}7~nhK_k2La+VI)=g_R_{o6#D7N&c=no64WwCD8oxyvh
zo_B%Y2mAmqbbl0lZ|IrlA#|a+!q-!oe%$yOqP+pV2nsAILa!XW8mI#dy-~sUhK_k2
zLa(j0?ch;!?q{fR&OKSzZ(Hy_q4yQ=uL9QqhTaXq_lAyn8hTsSkzCoV`NYs?m`)=!
z4mW8To?{Vp^PqGF^xolpW?udSJc95l4j6iKMVLidm&4v>b?cheO~Lun>9p_jxA|`5
z9s3liL=z-Mb4wz{ZYk>$0ax-#JS_$k7!Fn<-kBIJC&Y6JMg>k7dq+H63c>}PP27qK
zR*+fhSuw$>@#*hh67+w-kF-w@_>X}n0K@O!gYQkdm}g)6VDIkpyqWx`zQD1IlpkDQ
zy6h)-u$KJRv2Mn$phA?{q`o05kXX60PlqBaxSTopA=dp^c}()lln^zmBL6a5^eEp_
z>PLQLB%j}=Q#HSHF4yfR{4N1s1*`!KzuSWE%{j9F`CYnl^kFi3nvO%KnmK_E{gU-N
zPK&;S9&C}9M|9rp+8U!bpu3y*ntpvAd_V9OVCYUl?;vGnV5d51?V<LH+#CF6g0i#U
zeq6mFaqd2*UmtU<?HpI|J(g1>;^I-2NfyDeDjkjyRTcRO5|rRblV5hYJ3)M2P`22_
zinR-gY~mIdi7`c{t}r@~-zt)|+=VRbc@;@Hlk7ApVr$fd&~TqS%c^SD?brpsX8-&)
z`1gSC1ExOjflD#@URJL<v_7J$GZpgot83I7%HFSDCaLz{9BY3l!x$8Q5{a{1KW>gX
zjIgp;Cx))EZE^$+tE-DL90(FJ5nhQGlph5w>oye|5^5nQ(6RPtyUwTI-J<zLX6XO!
z_dED<U?pJqJuUd&j8F44<Ft=of8&w<H<S5(XMp3||70gKl=cU7cLnbiy3c~Y0K5bk
zx^D#E8+zvX8M<r4A+wL@BmIe1t<d$X@5=VeRPYmllK?~SMsO*Q2jgr}Kf7qZPd2q~
z*}6&Sv4Y(1uORxmfNz|&^f$_S3$3LLIbuBGYMoCE#Ylp1_ne-i6Wt@RF5vX%f+1oG
z;RSLySV$t3mk>3j9KfD_oLlV&yWU~PYH+)(wHMl>gs-lZx*iAM(~PgkRh&_QO2E`(
z9=H@UzQ*^<tIRRKLj>V|clql|uids+BHH~~Nl3e;=R4vw9IHYmmLbf0tS}Yw@`gBH
zz#csjN#r%eW1)crrJ6*LZ_<7yQ{t~SUQLe-cB||W&YI9k;n|!l`J*n~t2N(uz?b3s
zVep>-&jN<;--AoZbwBCHbi>yq8pf&IQI>Wo>t@2x6h_D=%EBGU>XWFlCCavNau_za
zi|uhNn%D!jYJMhtHM{N{3%(R+1`I#TzZUQl*cmU`aOgZ;+inIt&cJ&DXW%?>244EB
zr1c0P@^DitAvr*t*w2Xual%#^Bo^c$!tPW|I~{KR<zlE;L0YWS+%NF=i*3TT`hrQ$
z>t_)=RKA!lxroW5b(%W^%<-{fVub`0N3NEfrW(cDID^M4uftVEe&VOP&6VL|!iusl
zM6i}*`6JjB#$#z)OvqRQGl}Ee#j(6XeDE{4m9dpYqhwcfkB3ez;c}8LhR<w$Va=SI
zsr6lRDuQP%GAi2J{52`#zM?Gne?<TBk#a`IGWK})o3?t)7Om5f_K~6Xa9L<<sLY;{
zn1R%5gDQ3B<WEVQ1I$S3A=BNa`=^)oH~Yey;BNuH4f;gUkDqhyM^4kh9Azx$S-S|U
z9hPy`6TG*cJAk>@O$I*-m<~vh_vW&@T-z=l;G6^b-xgX+7h11lkBgB|gm5b&=TvF`
z6;^7a=6`4KPFdgX0>2OV0bs`0Bf<A(T{BO!zHx)vq$jB?H&wNR7^3yo`$&)Qj<T#W
zrLT`xV?Zx*O?G~jfmZ>wfT4FdxD=ybnHR+8G4xjVjc14KJrLVseG*A?rVw@iFvR32
zRz!VtjFQ$vju+7F<h`b!E(8A>a4lfyehXZRk&l}5gKyX49|Eagx}i=EfJa$h#loOm
zPJRu2Hk<9bJ>TIyhR)x>KLtY9X6a<W{~aAuKSRoC_%<tte-pbtnox_V7rQBW3Vds8
z%Sv!USkH@k0=g}{*Q{Hcz|R9N1Wf&I2A7g+-3msHuY>5gTvWynNj9XV7@<EB#c~+8
zw+deeD(=DfCaGB2O`O$aHmp?R)ze0GSapVOhXVmU8CT)2llL8{01Q8C!KIjX{*2vM
z-?-8~(Tz`w&hT8|JGR_VzvfuKBf!46Ll=>fLNx5-5J&pX{uqOCzQp`gd4);L0*ECd
zRyuLw(ZmMD!1A%nj*Ts2&8SuQH;ReVLpFgy)s3baR^w(}k6rL-=Hb)euLAo4Q;*4r
zo}_FD;zKM7o~A#8@v1Aa+rCHpef_`>p}6!C&w3QsVL8Jq<aPMnMSg4}jFmPn4#%0f
zwWP@-Ws_4f%$p)BWQ=rZD#<@MT!m95dC2!XR#g(GVN6y_YmA7wgU2~;-Y}8#Epf&o
zUJ0+pzE`bqPw_L4_MWNh)dk;XoZbxnec%DW)a#evQgZ422!Cug7N=n{dt4Q8A}~-!
z?en&EOI|`&9wK@q9ae99IDwiOHDDZOW2_2S*=joD_bkm1=JS2+JPCXzFb6RFtOb{n
zOHL}|chl-w?VFlJu)$o-v|K4(^vUHhYuRpPHC0Q9LPAB4vO{VSVG6555ds=8PLfHj
z2mhO`1{&!oa+YmD{|9ts96t^IBJeU`_&N}LpKBcZ=K)bz`pd`3G*E`az%p)C+qp!_
znV+P8a!@84mv0VuCed%`yUw#U{Yl@@^%nZagD(M21q}VR;Cr(!o2MCnKK-q}%2YTY
zx~VAeJZsr%YbOlkL*7HkgYTh)ep%dipFI%J-^KgQ_}>G*4|o+Y^gjldlFNU7?OB`9
zp!)ssifA^E0-}iVmp!ShyYM|ukZUP{K4d!5YYBW2_iC^{^kXp1#z=F5I#%0QG=5RH
z$DD6w+v61Q7GM=%_-PBiH|=1ahqT9L*>}_AT8~)EP9(M00OnaBz#kRd=eq-XyMp&g
z`~L*I7x+0~=)D$vZ|IokA@nwGIGEn^|Bjw@uC8DG_1SfNGWaauSisOb1zbulxu)OW
zE6Ho;Q=G<l6Pd-b^Q@QcI<)Y$5kIiA^z{(6fVy@Dbh~-4*+1?F{|WFc&`0-%|AMZO
z17%t+3enF`Nr#UF#!H9)%q2TiwNnzVCubz<6@hML)pBOxLx@5)6egp_c!zwQVzws%
zMO`EW8TMBq)+-0@3)Z_EkQ6M(>CMKq7sowh9HB%yQYrq2&LEy7Ba#3XjvdAxQ9@lf
zRiRVeW$s$~m-UexZ(<E2dxK?N5mFCi<qIw6>Gr>adYX245d3LiFJRi?PvHNt{kL*)
zq5a9I@uJSCk&wJx%dSw?1)(vjp7Su$50q%(5LaT`O^_rQHH~k-{-%g%;I5-HnE&6(
z@-r9wBwz_(_&E*yKk}p5NfZ9eZWtxQVWV|DHvTadXlWKwa*Og}gqjizeqOjgpudav
zoA&rA_{+fSfT170@xP$I&X@Ai9Ixu;DE6D<o2&q#F-|=RrK@NP++RIu3|1mKE)R1C
zZge4XK*-hTx3==lHZAJ{-7W;1@8fF?cpK0G7{1N{my+weqwi_$w2XgLPFIOGZ`l;9
zmv&(_77_FiKfr+h7S4qM-95b5?3=HFzYY8jFmyivmtxM5ivm6JA?v~BEnIEaGC~M)
z@+C?3w~T+a4<C@zpiFHEy)C)Dr0fsqHg;#%;YHxffEK{eZ3CB*%bvrpuaSTI;Y*;p
zhqFwm+PTP<D$ATWTzxsPiSM~kxAQLEYwG(9_zS>3z|j2_xRjiF2D!wyuE8i>s@t$#
zQfe=|&9>g7wrA+tR->dFWp>_{?V4`GP5QmE?j8kx5^xG&=sp~L-!VbocSrV%C({-r
zA?dbXb9}YRH98E&ED3|r{7TsOLL+u{JTFc#<J1PHj9j*{*kH$X4rB01&U1mn2%<IC
z%@ij}*C~nnzZGI|icM1(b^Z}yH7GT}4{kz$6JnJ`Q^ggGVRC03L3_@_VaI-iOBX(7
zx<7YcqU#sAIa|L$;5ESD;BSidH2a8owr}psp1QJi4VS!Qw)uKUqye^dM@YYnf7ctl
zzvH0ycY<F6Tnd=>yE^#Zyx%;{IQ8YE<NZx!1lwfuEbDG&2I^Ir84aA`cu1+*q3g3h
zc%Ssw-@rcwLf_8P8wM`L&@oR#k1DNdT}wzrlgzYbyCjZjzExR2V5mq~bkYKoeo@?f
z$Zi%cB)tWe6a<#(3x!VVB;CkD=gXR}Z2?{3>&xI>z}EoN4&MyEH~g5V;cIsLW|$He
z7=5{Iu4l>|bh+&e=<Me`4bT-j2f#m(_ui7FGa6jV<ALACE&cNEiJWGW91=54cPRwZ
zr=39McZIC&X!h$6jBrp34?&DRn!y=Y4KznAkL1e8wh$iS-YtR=Dt{8fWi`Mlwi|I@
zlg4QLif)Ha=-2bR@OLfv4L~<w+Tl)cDMdN-#G1eCL9$~}JENlAx)b#`**s-boO1Ab
z*%Q$Hi1(WHBYG=1kOmChLEuu%dfDGDN#q&YG%npV_XJ3`TK7UyTtIx+v=aiNRhQ{{
zuH$`Xzxp5W%YZJx(0d15$|BPb{o--0SartM^~7u6y1HE!Xy<_abN5fSeZYQ4S<Sm6
z)@}#OZeLK9a*iSsTDh8yUr_>++AbTb>ZIp!%Ro*Q^-@u%7%@mS5^!QHg%4MS;%3VK
zgIgqB=6P!v&xH7Nudu^#e2VjT+i9^^*uS*xib$DPsJ?C!fS}ChmV0uSuHPKiPE)^T
z@C`r*VCwg0a4Dax(CcE)%0uOWn_9`YOtkEveqN{gsr#v9Y3~YI&A*CRmtjmLqI>g$
zfG<p*GKB<fR!Cx`SBzjp7E>ks@rc!k5U!F;i184fo>Z=qzf_PTPGSaPmP|E^@WmpD
zGD$C;MdYr`4@rQ*FB4Xc;NUL%jyud>J^5Gu50PY4xLy_E*;c6LJA_RhVxM9kVGj&_
z$FErL)j>Plp4|_ZfS(F915y-Fnj=2bnynjG`3AsMR&$m0SL|b4RmA^)Ab9T`yu-Bb
z55a#7JPw%leFj`guJiZG6|3=12?Be{(Ytw?Zw1>=U1&92qw7(6N0#0Q@NvN5fT1@P
z{J)_mu0dM60Ktp7RP`g+5zyNayieAFZt&ZII{`!Q-r#$4pM5V_56pT<{Wi6(+0eRb
zi>YPD!ggxeW?cc%V`W>I?F^FTK$raiT}yYLzy6eh4+3fcLw9)ay;*<F^B}ryECs&7
z##$Cy<&fx_E}vq3E1YoZMCdn4WQ|qV>UQl2-Y50E9Q<nF>wuwmWAMG9W1jz(9u^ve
z>^PWc&mlyqYD+-(o#4Gf_wV5U5}J2r>3ZN&3_bHai0-N_+vN7(Gz_+yhglCH96)(n
zBT1+!T>+gY-ebn;3h+(9nSiO^UEor3oqrjkYgeq6eJ#_2g(YS$J@yWq!`XHAJJvpK
zQspGSo5QA?j(X)Rw#k$l6pp%~@JKe`XtAU^MLijrS-?tQ|BvS<2^+4ivDFRA-mI;!
zg#Lk@x<9P{)%-}iq`?OPwSeKbHTd3)yU)l2Wfu<g@R^QYg@E#C<de<!hpcZA-!Vbb
z2u^7J54TGF!wOPl{wf<L2`u8A=;C4gBcfio*gri)r!#bpVCB8azYO+#L-X4MKc;=3
z0Dl(v8DRK*6I{x<fxmtKxUj3q%Cwfzx@D`cylS~A#2vW#v5@tNCsNDZw*2RxxhFZZ
z1plI(zmfY~ujx13m2IzMz?*<YfT6!K_}+{k^EBg#=2~@nn=zx!G!8{_x)#A{a}Tz>
zk!lB_sXI@*3r<sOv*)IU8-n`t{=WKyKM%YJ82W|Z)%@ieUyyEVYu{*kObg?#k+>$!
zPll|WM6$$vg@m+Wg8Zg%Ut}Wy_=ydVBqV%DSmJWyF(7K=;)LuagU5%-D~uPsx|0LB
zJx4Qrqvn^GDSdLPcJMC(=K+S_?}AI26yy)>-(TjGk!ku!qSG8N$FJX_DTUEwMB;Zi
z9yYuxNgmyistB`-GBLu>6NL)%Gfk#kIes0Xn)v#3i4qeuX-Bu_&$>I?o(15QKowy4
zn*uH+*S@lLl^BJ{SV}jva*dCVfx#<n>l@Jlw4bzM41uwe@k&tSl8L~Pma11@=<C^=
zG#@*lWBT<*@H>IK0mH{n!9S0Wji~)uH#9pwHyv<8@;a*-iT@*h0$$BcLR?~Pvhs!C
zMntUjsxKNW{#*e+rT1j{sRthqOacr)8^EO)eNg{(K`sp1J-6jHk@pUh5%y<gy{wf3
z9K{$b=t@EfH#!<gYgmFCIw|y!kz(Wvq}z@W>aZf}OBs%INCq;=Z?dXy>-O3e(3f?q
z7knS^Dq#5gIQZVoKl3#6Q0xxQY2C6;@~m#~m)nLb<qq8ZJ^BvWe}drn45Nf3_=_jg
zq#Teu8h9sgL{$s>de7P)@YBfrHRtJ*z?T500#X!^OI|PIJG&mGtmc&Ua*P)p2;SR$
z(0d;S{|WFcVCwm2a4F`TZq{j2&s8fnui4bzwtTiEM$E2zzDnS$612JbBFE~?t1k5;
z!i7o1;*pS(sT0CGzRE4uzsR6nufA<#{KrR?2nBA_{m@8z89DS)@HN0`fZ^|4a4EU;
z1Ms({eQiJH<}h@xvxT_}m34n!HAynj7lp}LZs&;yX^Ughxmu~)H6MGRW7_{!@ZSM{
z1PmX?->dnkpQ+E?JA$|@2enhS8!$V4h&`9B_bP4|&%4&Ec`Pw%2mx1#&*KsFBJ5TZ
z)w(<yCM8-O{=>G!!^o>mSBAo&YEIrLFjAxP2ByN%+9;`wQk78@L`2Z9bW2l+dbuE<
za4TxM!q^BLqQ&Rnh7g%GUL|kacXWMr!mp{%?cnzVy8u(4QTOTk<cgaqEh-nKOv~#c
z^6m6j_)gdQAYPq{mr|K+@Y9x5CFRkYXng#@7^lRz?Y2cXhT7b9+$U6Wt2!;UKDLpd
zl^Fk)F6XaF$&QUwaz-RpH<;h2r6SS!%!-pF?WY>XsBy>=Tg*3Oyor3C9N*~PDsyE%
zkz`T*E)Ik(jE9c9bUiz%hgtW&3Vs7{6JYB3Ah?uV`<Z|A+_c57YQu2G%~BaQT()i|
z@?>G$O`(c|Es1!eFuC(D<HNb{ObrBERo~ToMDEYF_dxJrz$n1*F%4Wwu6f2N?pU<0
zl~g9dYO)DliiH;rn)~6U44nyQ9Yg|tM4iKlGG7M|y#f6l!TV)ByAk|O;BLUs-yM8!
z)-m%m<JZ^sAHu*|7$_13kc>+hP6>lN9sxJ8g=N(rsZSRjcL(+VzOJ9p9|ArRm<$;D
zKM%e)`4%_yi*tK${ZC%MW!=KowiPn`y6rb~xZ6um;=;_1uywDW6S+`wIJ3}52(<(z
zhLz|F<QS{C%o6Vh$Kymnai!KdU<8$j9pO!haw89yCnR0nv1$Q!DJOahNKs5;qtL+U
zfcQZ2d!kcDYvxG|KEjO*!2iun)VLFCIH*KbexW;EQayTNpCWm5lOgfLRbIwV<u=cG
z!M5MG!(-eQXL6{<U*tQ#r`xCM2if)+3qBs082n8!E=+%zr|B1>X9pW$snuL+^`^vL
zfLC<~@9jM3y*Gm21@r)>-3$Lu(>3jWZohc6hxGfw4c~E5h_m>`Vl2@7U2YD9+)Qxr
z7V|P>Rz&qmI5B?50lt8HgyW8jj&%{<<YWIQBPBJ^!<ft&>kco9I7Q}IRYpW_lt8r=
z@xrOh=E>Ma67|$gcoOa77;(K`L4vf<P`fBxZI{Sw@4ZjA-@2e4GQPHfp9fq3n0kII
z_};XidG@uVUr|PsQ?-5&_sfme%S>mi6$uM3YAT0isepqZGhObS%lqtG?$`9+3EnUC
z{|@f%vaKj!=pPF%#q6K`&oga4{joBn8-FS$4_}l+J15Z#2xFOWQi&wl)wth8ik<RE
zG>n9)%&S7w!d-&At>{gVF2z)u#!I6^!?uBR4TJrtAjdkF+IG1bOp3uHQMAIml%DTv
zzPsVetdIACKL$Jn7``ugK=ZvNh{t(#5I@$m8}i#@R;*grr03$-Twmt?fu4)siCFKz
zJyvfvHebFZSF*DXryj{r9L;wT2F)3}AQ7AB9T^R$$EZozn;ZeoTrHKkTCHkQZgG;F
znB|E!wS^hE)jQKcL6p4E_P)wni@#=j*YcdGVprPUrFP-hY;`GVxH;M-gE<*@N98fw
zqsMxa+zM6cN|vV?-W+CV1!r~wobxy35nD5Xj}1<RWu9AJ$Dqse=j?jtueS3K<xCB&
zAT?0htqfOswGrR9%5TU04+Q-mw3GC|^+RmGffQicaWuFTGw#gOv?I@jE7r6&iDrsK
zl?;Qb3vG1v6@xf4{ur|gB0?5LN@eD-xguYq8nhrI0<F1aok}hazh`@XsQK9jJ#%i_
z0e%f|9bou*4P446f!&JLZ@ooMfOnAaq2<!MBnEKv#g6qJjNqKgU8tPyAqk`!hPJkx
zObgtM!b!p}xg4q!MYJ!LAh8gd6|QozG@@!RF_1KO!fuN*UiH|RQe8>F9Dk?W{gCFn
z;lb>9oCba@a6Dl6J_}q*u6u#pQ-p0tJ5*0+M^M&##f-a>w5SfSWpWdwNITwbLia`d
zRFN6PP8ueWnv#fGM&hGiXMaT#fllwkny)<pUFqLfz~2Ub2N=F$59xoBYkp$~PI!P#
zD}=Xn(;TjvW28Z^;bu`nG(uF@IJF{CNt2igu`xPY45Y(;z{n%j5yZF-W^TtLnx7>B
zJ>h2~__;tQVEB1H_<l*CCo5_?R31$FsrjvE9V09qFTLDp|0pE>g=d}zS1&o%$0gPA
zDy%<`@Xfv=oXZHO49E#B7A{4JJ&@+BL^CuX7R3Y)Lp;8LZ^=nUN=tFYONv6wmLo}W
z6rDbf*U{;>aLUJWxJ{qcdUxyk)IY4-PwF!fd>SwVF!fmxe4nd*S8r<X(8G1ReF9U4
z6WT|aYV>^U@SFhx2Dxk{uz`*VJ5!t)_5iaSTAe@EeDpxaoQod=e-`)|VE8C_MDv-;
zzEezo{En6}*l<0zd<_$5P?AfR;<ic<PJHAMqj@Dny{M)!s|bQ2n#PK#eB=0d#49N*
zb`k_Ni@N9{)nIodXZRL%7UQwyQO#!)e3*5+6?_BG9`L64|4bYOBUdo%jMn7zaac7(
zHoFnl#bpUZ`?N||@cv!A%e2Fj;4cC%1Ew9UAL({*f^qdiKRa&5yWbsM_Mdc|<0C}h
z-Tbt&uI0Q>{7c4ClC2?5wqus>NM714BEmsIMM<%~1&?<g$0Pz9xughKto@G#^$zID
zI9U#UI?xUnzHSP>&oxfu9O*OG_#MSAd!p>J*N3dfVT$7mkySY2VV5i+5G!C)#8V7k
zmBh7N@}tK{i^7k{>`r%nXWLWF0P1`~^Y>0bU-<h6_`ig=-MX!$U(C91o~B>O8oYiZ
zVl%mD6kE;3*7kCOadM6e-aChPnEqG--Ugfjn0h}3F2&qG>-*h5{o{q6AbUm7)h!<<
z0Fuk3`JW-{+H#KYDshxsJxauIHc9OZli~Pe?`W2Fx{Exx`I!iMAo-c-)r(+^5knv$
zHH<lSq&v-vkgtnepe2YHE94qIQZ+ft>{5c-|Dw;nvim9BPNnQ=X8aBZKMptnF!gx=
zTuQEc**cwnt3%eVhS|(AKSAduGT%l9u#D%?B68tcdZ4@-p$q(CgH(bhwSwD0jFUZE
zsYf1Q*-A+nR)DFys!wATKQI=R`+$l~^~T}Wk1vE*=RXVl?YGLsRz5XQP2(FJuibPe
z?nc2S@W602M4f6MscyDy0$~6H>_$~%BTtl#uIi^j{U6o!lW{T>d>n8%VCp|3_}+{Y
z^EBf{LN-X{(+x*a&8VpAS6Q!D3~<WWiHW2wDePwG5XgQzb_I01g7*sDTfx5vd>=4$
z-weM0y!qp=asDowY5a$rRoBTZx`=>I6*7w|xeupeaooXu!+}_t%o{9jxgC>9lN3WC
zSNyz|vx7Wp+f~XBvr+YoZkL9~vg2YF_yS-tVEEexF2%$h?;j7#ALj=%*eMK75C->g
z>#gL-f>Co6nW;$J62zz>SF;=ek_>BEX-;-VskvD>g7vKCYfnH|+U=L%zX9F_3}5NT
zHD9^fZSAUqRvuw#j<EDKWj*h+lwcY3m^or$;EzheM#|2`>7GrZLPtnm%@M1?)(5?+
z=QLj}&^7DA8Q@<6&Ib%%kAX|c6?dw2Tk9%9k;pV^{G0IgCE@E@)`J1kmlF1rD7|@J
zA{-uy9}pIH98L1VMZ~mZoaG_@!1Iu0fg^pQgv_4UtS8-4#}BtT+qoUxxKkd&9X}9<
zSiAQI<Nt{)-=o3T0;dCp@83SD`QE-ppIdeZPc#0BEWa9j<BF9Vgn67?UiW;j@@uuP
z%Z;}G+pYSy=k;%w>c>F;t0r-VX}&jY?HhnIOoG|#AFESbH7Z#E22_TrYu?iQOl3(5
z`^iKs6ONX7mC>qFTBQ6pwtC+#Q2A$j=U_z_DjHIMhPOq$5Q<~&`L;(sGTs-R?af6D
z{g~}OY3E&H#~!p@?9F%D`Ijqog-VWdFABw8RAu30m?K}(ONA7EO;6k2-TdpsJ+^nR
zyrmHP7v@bdvnek;7;hLgfT3C&y-%r!lsmR?o_hjk?X})E_c(6>|8AkTn15C7W}>X)
zP`}Q0uebBAQ^_5~45}DWL0WlP@dhW^;~utSx7dZHDDBg-t`W2_TpucT)YQ^&x>apV
zs&)j`BQa4=M-R87=iBZDcJj#liC(<Q_Aa+$+fnC}Z)LsPQaUGpb7{F-oXT=J)C>9H
zI#sO1O;;5R%1^9xPs)#GTGU!ZcPB;i-9b#ZrOuJWLl2+mePTxzc<T~#RB19%c(t7#
zqE^OB^QPLXN)At_BXd=k?cJ_I+ij=LIWu$^BJw7Gl6L-5kEeA{W!H^!z%K``0?c^&
zF1QqP9_qiIN-!pbYrZ9puV|57B;f-)$n$LERm=yXL>Gq3;>l>5K)eJHr_=mZeYQG3
zut92hS@ZKzKu^|-<R0592L=L$pCiGg7(UF?jBn(QL<q>92{H|fU}owVhAa}x?rPRC
zf>wK6#GE*(Ac%N`NffSHH0cI1Tk+7P>J`n;4(OTv_6G3p0N(`+KYs$3V)UAe`rQZD
zZ#)g%|5}rVr{iPM#13nxZBXm&fgM&bOm<2CO&}ibcsQXFWDSQxH$Upc8Ci?GwBRA^
zV_3!t$!rtLEA<H5nD3iDE^$WKM~Ow^nOYxu;8o3c<4-hS(vAzjmjkN+!}lM8?>mBf
z&hCEkWqm8It^OL3>9|gq{<70fBR(FsJ{GPW<b?4=qyocY#65DADT>ZeP0<qWF2zOY
zjH9QLUjw5T6p<V7V<-koxU1a7=>Lk`LAB(2bKQy}yd*PevN%@bypbXlGIOg6NkSR^
zX`$g{JT6s4ZO%^)QlmLJ4B-fc<ZvLdq}>AlEcs;{jf0(ZO6+x{bC|3e@!g$5QnWsC
zjn%kcw@1@Yv-kQn;B7z$VA|sxa492m*mH@snZ5%o7jKC)7XXe9)2*9p<*@4~ydB~c
zW$ie+0=j#6uNgo4z<&e03mCd1p4N18#i<m!L6*ZC#60{t-^%ZD$GW>#dLc<tvI$Nx
zZtSr#vT&$8R=z4#6GC&xnlu2XXg80QFIpIqA<qed9cCE2j-N|<vD2g`+81)(aw<ck
z)NI*nx__nHs}sHq-`9ZO1l$T3zMlY>lIxtgR@(s{+twj=Aen}b<b-*YOhX*=e+BP|
zJcW1m$>XKhu{(%)#i(=qejTo!mk^6G8{g9Wq@Kz0Qwu&C7z-GFri1?%{P<0ot{RDi
z$iu6ndA@Z)o$L?XZE>si9ofe^7;74HO{*!O-^Ke)d)x}%1KbA~`j3HsK7BlNC3Es;
zIq3R44!TYKpVjY|`CJV?5*Py*`qP5%&3b5_W?dxi5C*U!Crww4HnnfEy6XmTD&b5o
zwa@45dzdQm>wX}hyMy<ddS3^A8*nFJ=r%m3`N}nZHQfdo15I~2+?(zS$;Ig-&-y`~
z4B!E3VwF1x(Ij58RceGB5%`$^RuuzB$XJk3rJlp(h~<w#l6M^D1BEe`6W7Jf6;WQ&
z6-QcRC;qdDgbDI{3HmNl@{!fEjNg5$PYzz}!0w;|AOjHCQ>?Fk8^Vp%en5v7JMd00
z{;8KaA6@}|6>v3R>U}4;lw9%*iNj8%XIRZMtQ~`+T#L0MAeX(cExV4yYNfp!-_`UE
z@IFH?vKO0AAOjeB>%pb$3GBA_1#!Vm|1!A5G@tNaft{Jt^08vQpsSjnajXM_k<%j8
zK_G<?N|M=?ax%g|DV$6tVpZ`X8a~N=EpMuO6sIXd%hFif*-GPHHJ{-a=NxP{GATr<
z?f|@**@2yQ&RlkI@9FxzuE#F;G~?wt@LvG?08@{*z@_9mPxP-v!x3Ys!BN(MA->Zp
ztkY*1HPn9zAH4zHhF<+%nIFf4F9A*k4BgGa_hw$0r)j@~=`N=gvBmM{%2ejc09h%v
zS|1IOQ$0>sB0`Shf=E&WqWFuU#;ojm@t$sn-2pw}=QZ$mfj<C-pMsxheskS>4&i6*
zs<T%3*6W#uowANL$U6Ev4Ah6paVCX^V6YNdJ-M<mXW{OXR3ch*Jdq|GgDhb%7NxS7
zGT#26`D=l`>8CG(?*J|X41dpqOW7afTinuos2ucQ{``Ccw3gFrzY^LjF$XXf?Ie@f
zPzD{kEJ=7L11z2NBj=Z*LPXbv(}3eRCu8R-QmtVO#ng0nPGUA74nJjF<BIbo5cd|W
zS`h}!CM3oNtMN~o|0<4_Qlx!nfJ>sB69L2js^ELm&*u5>`rGG!c_10_d%b~PuajPH
zx3<@_KSX5da4{739e?UMXVC3_=?VDhfu3p4C%|6-_5p^U(LdMxMuIrY{rxXwbv|hF
zHhovIR=zI6rc<rv_Z;iCdcQ5nZ<y~p?G_x##RE%YGRG#0!wBHy)Wrlw%8b%9vapQ&
z-o<DEOPx|eG8Yn$Fv5DuxsqUt1qg2{@>5|(#Hr!s_GPxcP~GcWV_R0$`?`HQ;n&pX
zI`HoT-vdm2-T;?k^a)k{;+7p$pEa10$mr;}*5(*_5|9Q)wllBqRo3H}Cq%=AiE-pw
z647RSNV3*d#fZg=h*cRyoSz)SCAq*)^g@^x+Zkj}N1po^&1d}!nhzNV^S~DaO98{@
zrr>)s&w4(e&*j+tXp45=g`w#J>47m;vuJ>a(*ua&i{-jkk|v+>AY$+^4(_y_xK;Im
z=4Ti5OuM}V{x<MC!0?m$h340^TYr6Kzjj;Rv3|8agg317FI6^9X-s~kqc05i1&?y}
zj7Q0jq2y-cB+(#v9R5-vH{=^=iee^hPbHMTzX0qH_-ug>!{?dc7Xp_6hR>(KrR)mi
zq1X5G(>{n#y}A2i^(kN5^;F3E80KVim-C&dgYi8`Me`8TkPg?^97QD{6Bj}GEb!M-
zjNjdG6Uv+7B%IE6&cY6!%{-hJYEWnQ36^^P8qEI}HGk6Y<H4r^GXTT?$-(!g-}|?-
zb_zlZs~wHyl9-l;y@;dThymPAIG_3f*5g`<-mcw@t;WA;`rX0%h5kd}j{#2thW>NG
z_h#KO&tQ)CIVT<MJ15Q3eDt}@>>F{A%Z%R-9Rb}^R3cJ@?g;P+z>$EV+Z24CtKKWt
za7yT__F}4?6r=l2+uASHM$Lm8s4ohQuzfJP+o(8?0|EV=!TW{&ec(R?9tI5kCxY)y
zea*9fy{8Kw{j1$MvVXO$s*iMgr;tLL^U*-?VZbQB(47q~#hj0J2J5U@@7q>vSj!@m
z={S<LXMH<8jnM4Uk(h0(NMRCVZNl`je4?tue3tPyQVm0gH>z*k9SHc?2_3`7cfjuj
zegGIgo&%S%E?8%re(^Za?_{Hub=l{!2wsB~*~m2NwIjsnMXqQ(lduCD86-)5M3An(
z>vkypW!5igIQV2>8er(Z1ukVu5Pzz1^`ZNAKwmBb<(=xU+Lz@%=Tjsf&CkWGXGYdB
zZwnaxoOI%Gr2Wj^cwwX@lIIkpk~KsqWs5lis9;MkR3jSQY0j5i;ta==WQ&#EMzTHS
zq2efrAf9uo0@L4eG5yUic9LVF@mNKie^vlw0C&ug#PC8E1+t%)sS={JjaccP;w}Xy
z<LZ(pVV2N!IkDmjbfmtl`AXXv<}7qN5D7{I8u9{m+3t&WY*?~JO-?k(sb~McbbHNt
zIon?+gRchG0j9m42ba<v*zfeWb6&fqW2@|5nWk4|NA6W8NJF{S{i89^h+u_UL~X;B
zsPt(l8ZE^Tilg6+pn)rhC5mxWu7r1tOUT4iLTGIgKeGK|-6LjBY4-CNL3Xg~%X2Hr
z`IizbWSq)Fsm{466L<;SV5@Jj?}b)z3>rpV!@ldY&v%babbd<1E7^KZ13wNp0WkIa
z9=MdN1N-}J{p3_@*AQ9LpCE6Am?0}<h7gJFiZK$)q>O46;pSACkS&n=SOp=}YNCVP
znnVSzY;ocXVXffi70~@SH#wM}%kO2V3hWSpEC%tfB2~$XK@93b6)94+q93Hg52L3R
ztG8|SYug#_XHu<lbbYK>v-?v4_&}frF!gB$my+||Nx$jb^_j-!L_U9!gh6Tk5Tk}M
zvTw>%kE16w{gjq|;>vSyKjA(Z^b;m75#L^9B)K2xh!r?o!8(PsTK=;q;78WQJ>bs+
zF9L?&_k-^{0(sl^e)2XgTRLIkqIF_<Oh-6Ps~B$=vOfGC@5lye_%z~fBC4VzQ(`S>
zmk|R4F1}}D$V4)FpO3Dv=BM#B-9Ez4so*PtR>1Jn7JP5kXY(}cC4NhqrS{E)*wHNY
z`Ac0f_A~xcy#d`_!Fz@7Pr!SDp96;OOTqVso_QL&%NL%#d5aEL=?6$|Zm^yi%L$_|
zG_t4bSM_?feiOlu0;U6o&N0FF=Kbc`M+Xy*)=hXR&1lyVM-8>-4xwf>1oXOs_es5O
z0KWye9WeC%H~8MrG0#4FehNb!^qD&K9!iDtY(VED-cwIc3Z3X1$iIPsfT8nGa4B1Y
zJmlm1<s;YeiPtcIYWBx&@!p8p`(uwdZ^RHdcg3xj#~!Z|MHM@^5EAY(JR>nYsR~Pp
zselZ~4HdhU8C60cxB<>(c2z`7Gb5t5nT~L-R1G5uTQc9PM@StHoo}mi5XXcOw5oz@
zZ1-BbRQ`k-8}(%>idk5A7+#L3|HC*}jEII~L%lI*cILZ7L-}}qS9-+na$|TZ4<VO;
zQ#4Uc@L;4R3{^suVT7A0bkZ{;hez_fSpFoQ#}c1tzI!saLc4rYq%bnuoxtaDD3ND^
zf74FMg#4Sr`oa0Ca(-=lN%ag$5AP+dVCcx#<7UZz-G0)(8^N~$=K`jEZw8lQ`p-N~
zKL+hPzkTEEcA2FJSdg-Cf@0tO;dq&)*rd>)#WC(?d5KhvXg-6zDB;$XBs`NqA{!L;
z1WgIe&pXgF=Wy#y+sX$D0K?B=;8M(ep?`eNgZc6OG|7o@tF|0D+-hd9yeCYB$Av1L
zNQ53En+XSSx+&&~=}4s)wXCn$&LW=(9}P*(S0{AMIj0N!M&R3k;p;(gDLLg|XkivM
z$%fJ(K~={4mlp=%txTQ6#iD@DhmE8}S#gqizOl-1bw-~8W`Dp(<X2ffD#1qqV*$g*
zrN7pEd=Q*-7WF&t$YBee5W!Z3mjm{XBYzU_<a>Fr9b8jjT{fYbaXAG071_RP9ZZx5
zCb@b<iwZL&b6-u2z3JZ3*kP&xDT4E1k9mBwkO2S3BNZqvDhoHBr!KJb2ufJx=7$kf
z%48xApoASu#NuncP2L%)j)balyqeHIZ1sulaH&Dwshn4A?`6dG@laU)Qd#79*D3EC
zjGs&fVSSjy@DZ=VdCB(PvqQ)@iQ*S_BdW|BN`x1z{pCU|k`=KY%j4|D|AA+<nvp<I
z!PaVHLw2F<uH*0&ZVD%ARb6bHcSdBIx1HdL#S$EF6ngyC{Heq}$y-cx)M30l>{Po0
zD<Xx1opOh?BzXH`t|+!^QyIXMZBBGye65vN5<|A+<at6R=Hz3#SV};dq(lt!^4)x2
zpVp$TbRv(0ViQB>s(5l<d~9f%`l)Rn=FJOF3O#H)qwTSwS*F7~OZB+>i2gM5A@&xz
z4}em@^!G?`DY^6x!R@_+-cDB?YXse=TMtbd;3N==6*=N3$62(PnK%UdS3;)9`wj&3
zxAA^M|101-f$IT7|Ht4`{u6yUU}s1~!Q$|t@8fY@$l5<itSIWj<tb#Dv}vq3#BD3;
z+=j;q(qWoS1k$@~`aC#YU{_YI+a>jzEMGO?hXE4-!&eKq6cgw4@xbobtXqK}yR-|o
z|M%(O9`9;<<3~tqafIC0M`P7lgFZlpmJF<99(oxDmdYczFj`V!Z?Emt5PNDUK}d#1
zvl&5qD>a|H;KQ`vUhtQJ*8s!kU%;j0lK-yXxJo1*+7hLIC*FI6NMKRj24=hx+@Id7
zKPV7S;{eS^<J+2!tn&-OJAf^K;p6?_`;Oo|_CdeACB8rCYJKjZ!LASc2HLODV0O11
zHJ>bKJyC1V5!I1_h|%k?_zK5U9LJci=p`gh-C>8h<DHNjL*^EXFf;QoSMbELUtyGA
zk%{wl0gwSWZq~`7As2~Kbt0c`cm%QE<WdpiB2?j)R%KMhn2NFA;-7k)M_IGzkxOlL
zwmQYWK{<;<FPW4(2dZ^D%=vA$9hQKv1l9ni9oD|1zt1Hv;NGr9;jEoc=|%IMh;`t|
z>R5sp|K3j9y^1xA(Q>IBB4d5TWqHBc-o2c^BC8C`T}UpG35jUHU62dDQ=CRjJxW!Q
z*qy)Tk8lxCI&0jMxl)Yb*$Rvi7ZidJ))kYD(cR>!v8fTVs`1Y1%k5Cu`5!@{=zi5M
zzRK2ASGgOY%XLsbFScu)=$CD`hCfCl`7|K|$In9iCHcQI(bL_T1eHK)&R#SUeQ3Ur
z#04uqHjo%t1w~0=#f=x``A^O{%5jIrZnoXqWzCwU&gXJKV1{4;YZ(%Zf7;XRn|r`}
zffoSN-e<n6+uP)O=r5Nd6fqWRGD|ydaeXrZ*LreFwWILMbdGYTCeV^a2@1=q?_flN
z;Q%_Zj8`|d%quUhMT1!q3WbJqf*MDB#EEJW2M<i5qoMpr+;b;;m>PNGLsO%Z7-(U4
zhMLI)It;g)a(AfzSrT=^)4iDz0yQ=@ly;YtOyhlNx4B|aXtKMkb`VCjyg|voA<`7K
z%PSLWX%3e2Z`$@O^=I22<+n(~Fx?(|sIOTMUIqUR@GfB5BZ(U0^VWkvYpNqeIH|?t
zja=+IgFZ4<5>|1J;kcC_iWhRK%tty~K;|cTdPu{?F8xkhv}~;J0Y6KiXZYCwej#uP
zVECENZA*%Yce1@-yc6Fp!cTHb9}VhNJ&C=_?p4$M&wqyZifz<&CDu2Nl0d<6v~4MM
zStvi2VqJjIXed>o7KLMC3dIlC;ZPC5ycJF-SbccTW$vJ=At?;}IH37ohe<^m#lHDb
zmB~NZ?Qq+HGH+n?8k?!df#vJA#~*<c+$Q%7Z!Uit6SEyBK1_`a^ZKy!Cv|wFl9$<N
zNFy%6lq2CmDm7cptsUi5xJTE99h<(-`-@!=sdU9%XpHI%tH0X>dkd`&H>!(l@1m&L
zrSTU%T=#1??PS{VZt(8|y8zRUd%&gS+9%tzSS6i0Hi;d@YU`P46^P<|$1{aFtYw|x
zuw>xhAJ9v^m$ly*3_cb(95D3$A7y6(SVvVg{<(K%-pqS>FL}w!o~GHlB<Ys!E#1<+
zl+uP$c4*VRg*FLoT1r6(icl6If&wB-QP2u}P-UxvP!R+XrMQBkR7B<DQ|YJ3hp6!X
zote3L?Q5g{Z+qUHyh-jkcfa@Cvz!ku>EcLUovYutepBZv*2426DM$OCWMv*JJ_erA
z)(fqyemJFZu*$&4Te_GymU!Anup<n~?8aEfvc^j=l_U!4JRG`uUZI<jW%^gjnWZa@
zpzy$iuzvQ#kEx#@g8vfuHDLJt3%I2I>L-x<M|IS44!h?nkxt)4K!%yPxMw02-_MD7
zARro|SM)iM=$aVPpY+Ep{e|Es0&RdK4fMDE26V$p8euITVLdPtvncj{Sf&MkyF1GN
z7V<Ll+<o8=0AD>U|9<VNX#-J%5XZR_t>qJ~7iYSd<Kw1^%PH-1A&?OEtb-99|4-R=
zuK*tbj0Q|So&hfDiGJckNSj9zyso`+|1=PY0|}9EeNtOJvl<gIWL(2oyb=T5R35w}
z6N9kDOK@s~owCG$gvhDRX3HO{qzJu3lfru51N~ZlmVL%I!G8q&3^4qq-U<2pM|595
z>HH(*u@Qe;!zd*62htzvm(uD$dSdWd|594Gbgb{p8bfRfaa@o@S7oq@#Y$t9dBm+^
z>*KIPI3>`$FSm>0UWsSZQ{5_wm42s=tyLEUo5?95zo)~Gv2WT4z5}=zF#LW2TvC62
z@eUtDD;Ywk0vQ=bl=-IFbusoiv7xjj8eA~z_-W2YY`F#3<$m!{m}=9XF{>u^81Z!o
zy0y@iden!|e*oBW^zpR>T++TNVg2Qv%LBf)tXw54XZw{hxIZNyg~Hl*wRK>29orRx
zX$T`z{aE}&oF%cSqBU&C{L+*3vi#G~)pZI>llh}ZCnl9~04tgevlvrcB(q=Zw6Oke
zfsb1F5I*k%e;jxU5bmVoz78&FO=Qn*_LuP2y>atex%W9A0axH1r!3^L2|kO2Po{)@
zbI^B3`9<Q9lu?z^-Z(JEasu5+*?uo|*6SuFo0jPzKehjx9p@9kCj(OfNyi%Jfq(9Z
znH6$4Zrdn|4#TbG!>t$R4!7E)e0M~7NI84KZv<{SEMHUq=6O`Ur*xo%NzMbT<pZo&
z=2q#Dr=BSPSIEoEkADS!ANc!W`RC40lK-fc-JP2^uI{@#%VGab*thmZ`A_<DNKg1b
z4g5^toaj5L7sI!C_Lu(=#W>Vg4C_EdXAgOrdGJZ_?*lIbLS5+m23%6EoaBi5!Y9DV
zVQo1r4b1gt1=12kzc(WKotsbG>4HFFhm^ub%)6fE>Y5R@f8$@W<(vjS2bd2S`b(ns
zrkv(^1pPIghJ0;J4P*ydcg&OB3;hiPmVp1=5xrZ;&y@F3@aKT<0fyf1!6og8{CMW>
zZyTGphy}{#C0o|4-O@BNP}ilV2n~6IdP-sOvx^6F-V?0K^Xgc5#CLjy9z$pf*Y*<$
z_fk79YwZFwhxI}%J;5a%Yz^z9<=rfQ)4*GS*?=TzkKA@J<8u9K5xUn{%WJHw=W`9i
zB@F^f{$OU9Z!dY6dGkx)j{@HSOu3%~m-J@jN6nNw_uey#{zrKq49h!TirapRwl)D=
zJ9gl4d%h`^W!26K>8JmirC$d=8W;~4`jf$rMgK5Am{FX|W02l)H0jpaA>AJGHRJTN
z;I{yuk7!AK=8n_8`s@rg$*Wcdp1e0$t2S7R&`&^UCYnh&6Ub+^cX0+_`}jSub$-A-
z<2Ryfy_apreDDgO8ZhM@2`=g3sJ_kl)zFU$n`vofEQw#aRXr?p`0(XyfI6~`s;rp$
z%ykASuIP|^&I!xABg$9ija}e30k;B%?!(c0GmgyD&|TkYs<}tK&Gl}N8h>fRTJ<eW
zMA$n2Og3$2t3o7D`4~xfwm3kg1JBWaF)L!v+>j6J|HASKA0^-oz)-;OaYFRo&^OO4
zAJWrSZ0p##Lxxw6x<U6b^WWOK4QB9e%_UOIUxExWsn;Rg>tib(s79{i7+`whp?M)+
zw?uS>uLr;%2c7~9UnTE{d>i}OIZKb+?{wpmZe}ozPZ%eRb=@x4jn`>*W2?UJS}!OW
z^LgxM3K0zyx}IOiA-50<3@=%Rm0@0)SDB906T3adkp@eV*eLN)Mg(It#^FD(vI{H?
z1B{!7AmqYAryP+=xqeK0AB08Pe|%V;4H3Umo(sTt0oMYiJd^(xmZz&9J^4URBn8>8
z9(RKY?9aB0=v6Ppt=lwe?HnoO_S)|*MH+iK(Xy%(Um}YL4;d94HBtedaN>_B_ZzA)
zMn3M-DqnFo8Ov}5FLDo@aPXJhIO7E(#%C#?oN)7fyr<x*14#>o_o_s&m{)~+Ffqet
zfU$9qNa9D}INaqo1G_CSY#*v_msZ~4U>UQ5QUu$@-o;`4?25`S^|KrNtH2|Gsh@@q
z!usin>SxaBN47Wm>stwYwQAe??O-y+_Ufzc>$U3Df8aqy?e?ta-BA*z+nL}razsYd
zf$%Jmo~Yx6)vcqExQpc!Hs=^k%Aq;EWJV&9$PBZGH&8Wk%mx#Py9=Gc3@C&l;KlLb
zILZ;s^_sOe*e&<+Mmjd)X-{-JPSdSOFOSE>$;aLBaZW=#JK?r04a?m_xy(9u8~7gJ
ze!!G_;NQb?_v3eFR8ZuRC$H^Zwgq3#(KJ}regb>FN1YWE`-`r%KUU`yh#~#JJk2hY
z<9dSQhprxt*0LV#=)tz;wyi;KY{Wf)0N-kC?*tMmRy0NQo@<u)CyTyw4TkU>VUGj}
zP35WTSR$E_qW@YspS4xsF+H4c4=#(w0p+RXD{1Eo!7m0bjmjwV{Ac>vcgv=hu#GhA
zPHWXp>uNE^;<~Ve4qNE@=o=Fy8SVZ+dL|UxPYLNAB=44p-e17&e<%xEroQ_91h}L%
z?O}g<b3@dxLT8#IyD#ioOSJj(f-ZHye%E`+RtM~*FVT5d9rCS%+%^uzx!mcx(T?MV
zB;QLrD1jq!oToRim#`5b6W@Y34!-Rp<1P|)IcK7c1zz|K-qpEKVGxGD!5xSE9^Xtf
z-!LeBqAs;!xyMtLqGC=kZ5ceHbPJ?!v=gh;dbOGBI4T?$pTSgm;EbsJl+WxZ-Ut5(
z(ErSqKLIZ3DF0kh`Pn#iZrZ+f@yg9>m#mZP-c0M*8NRh@vGsvRU|(6%MmiNDK?zgs
znIYZN$=A^B0>1#*2?#Z5=Z}L+`Zsi!QT;h|ufUw+Xu4ey-2>!n=)ML14)ABd(ER}X
zKcR~Seh%Fmj!AcaM0df5*>SuAyc5_87`hLFOEUJ~eR89yo>#6}vou6QvUs5H#Q8?A
z`h%8ejjR4i2y=WM;#Q1M3?m5Eh&W9b;Z+6^Dx&^LsIPkIW)yZ%%`Kd%as7->nLq)E
zXgl<kI=#eMV$b17k1jnw?>{?ir}yEj7QSRW7Jj6xVxSC=B<*y6KjX2ndA&qa=;~&3
zy?UjLjse!10faAzBF`U;@^2@vTJn+nw}XEixB?IgLH^*9`inD8JFM+k6NcL6FUq=J
z65&cI%lMirwe=`Q<4Nuc3uAM2K}Mq^g(8q6Geay@N;EUiE)XTHQ#C<tN`v+0&^b}L
zp=<g{9-Nc|0|3L<<bb<l^v~#gjegr!TsE%`b+$e!>bsAMQtG;2YHMem9?hZ|<2+HB
zz~YuAg;P%6`8v3+{E~9gSf*YZ-o3T02>ICsy;|x)>ghJ{dw@NF;pZFRlKv5$cXIck
zAu~kVktx#Ys;81pv({Z={TQPwd{D;S*kraYDX|A>(ep!Dwd8joqVFr+H&51r50{?-
zL;p;0NpD4RPveiu>;tp(jVV^^*F+uae6*p~J*(MfiwQvzi^viVd^Jqh9@SGp^<b)r
zN0lTUw}7iBTI&_%mvG=}<lZ4+)vgTdXOHj$eW{<XgMSNn7BKw%7F<#~l80QI6L$dq
z<gQP;P}}Fl1IfB?D(eMZher>M&KZu1nZHvWUKFriW5^^E5`F4pEcS(g$n{{vM~lw#
zF&lgda57-{xC~rUvj27p^__&1))%FU#Qp2KpJ?l#t}9=FQA`GIhS{ln@nc3PPP()w
zen$w&!p)sufJX<n8s6SftUMEgP7S@*)nPpyfWGP1zX$&_@E&0JE44%Z`il!hJ&7rx
zc!`ZHK~Cpj(=ZAaZ&y~YU6)K!VR#Kgzre|)%F!UT=~byzLEv*~N30-Rn+`_&v_sFF
z>$ZSj2wV&peu(xG)R*yxl6$@g`_=kD2c~u53@#OySg+x`h5;p2gDQ7qsWU0a#%fs;
z*2630YwF=o;2!}tz2DHC8xQHe-x;p=trr}*pEPu%-duk$etYWmxH=d=aNO%0rPkfL
zfKVA@5@%}MyefTL%>A3YKv!eYok0(NC=-x>uD`_nlX5@7tr5XFD>CV&x_X-3njag?
zS#+_Jzc78G{Rid#k8%^4Lg!Tf4&~mi{8REvQxvXJ7oBCVLM|L@kG1H6r<Hqwdxm|c
ze}<d(l9{3QulORhHr`tA`zUSVvZvHt=pSE#Tf7uk{TS{J^k&!#?c-fQH>Xgvj>n28
zrgY^3|9E}5GmXngGy&KNE;_X$Fey)Do>%#){26-be-n(0UygYd;jg=Uokhq9Z6`i5
zHLP+tuB7D$36)ut&E?|MHLA>EAC{Mz`n>Y_jajMRINpLdzMRCNT+!#XzC)MP`Zf6s
z{t~Xws+^*0lzXjmVom%8k>Z?MXCRx@gx=XyT<?_IRL0k||9us!wQJnwe9tfUzb+>m
zzleAq&86wSpNbm-{9fe`=3Vg#O}W4A9`V~l5Btl*as0jN?W5e5{M6x;+?LWrAEnBM
z0N<<pVNj|(;otoB(8K=na6DCzkNvge`X!YraEpB$36(m2<ze5%-4xrsA<;LSPo1E$
z5;4C~zPkb48vbIWKLU-IN$4ePx>K?H#Z6yP4Sk1y1kbDZA6p-?{qJf0BE5n?MA?4`
z&5pMvlrO|GFWyj`;I580ZhcW5iUV<fkY58kI@OF4L1Bt^`n<v;ZxMdQd09&X50jVL
zd{c_XwtQ2Z34i0*KbQKMRPh;DO6KO{mgMLBUD@G32Y<Ke|NrmcXZbPzDu;e?irZui
zI*TffEMDI?m8kwn@yavdZyfvQO1~^se#SBLAqJ~dT;Jc79sYChcboqI{|<hZAM>wr
z%2A#w^P1hyJMPnTZLWZa%zs#=9wI;&ZT=VAeG79{Ki@B-jD?&`V&HfR@$)ca^}#bh
z$}OoZVmOq!SE-`y{*79OB*FprJa=YQ;i6le)LpJe7bY5%*fMh+gqoA$YA9T`8gPq&
zGasY~DtWc?m*l<X+JAHX4_x=gm?yq?p3;7A%sEAWU*SIj?UJ)5{7{Wu6rYrA_P(ML
z3*A%Ig?f<B+CIGSepP&<?T@ji;b2max1Z6@czarGmr~>HtF-!#Dp^;{9^sI#oULxw
zsn->9Pf^>)gUu}p!#;a)>^<eap?utS+@castN1M{dB4hA96NsW#_2;#hN}NkYN$QC
zX7Ti*X^U04+kxj$IBeS$t|yIL7n*f!Cinv21i-8(%fKb&-m@Md{}!jHq16|we+GB8
zzO`YlwOnF}2a#GvWh1rhj_B?tUqkon;QN7Z1BUL4;QtBTNH0t1)=EgN4O6Wx$BL+R
zFrr(Ym!&%ad>YUS7`n%U|0i^#@}7tfn;nN28WHIcg>Jbjtmj_xHS&-zgMSTp1Tb`;
z1((#1JOn{MQE9{v>M{fd0l|svU&;{7ZrEsDM})t8lv)z5oY6V6PQ?blOwO>@?udRm
znWaAnd<rlFF!X;7E@=$`3MGw;p4olyVNG0iK;7g9hN_Q-_NrAcarWA9b=;B=izo>u
zs*0KBk)>eBplm(duR~X|nB~`Lc4t-$EOwH0UVX-?%0FYQH|{jtrI$_ghTvYBaam9=
zYK957((wxOlZ?Cyx7wS4gF=xW@Y|!KCz6KX=K(ycfqKp&cmf(0FA|>^ZaF?bSRD}S
z3`UiVt%uvdZNK#V`T8}58_2&ZeKNx968ApjL*6FTE_ufx;<~WCT2tA6vJ89!fFF*&
z`uYf5lJQS^d5*r|*0r0nT@&%~j|1`X<BkZC<Co@H8=mk)zR4CLu4X4o6NK_fx((hS
zOf_*^ik%46$dZOrQt?yg*zv?blu-R4Fw69Y>L8N<4lZ2}t(0PZZK}*sMfqUEMRl&Y
z55xOO^xc>~tbADbTjQgrEXte<3a9}ll{59p?9_(nZz}gUI#wZmGr4E}bXYHVuk7o`
z>%q?jHUpC6vp>BB@zQ?yEHT2`Fv9wfb3bZXF?>yNy^XVc%c{L0q_dwq&HV5y@V9|K
z0j9tH16)$>{mBvYQb%X^#&s7i+PJlQwuGmE!!n5%+j5QgVBhdPZcSap<+zRO3XiZ8
z^fg9ce<<Q(K|z*}Gr`vY8vw({=fEZ9&W~o?NL-FBYu5*2wu5?a;p@cTKKJK^R_!Qm
zs^s4Wy*Bt4KF^DOlJ7R~FZ`YKFxsF^e=)7kG3TNKpAYNlE$Ex`03Kj0JRw<lGU?-Q
z5x69yk6`Za41bNyXuwMZn5L2N$q{L7n+a%3NH<Q~=XNHnb05&ws=6U~O-#DQ=qn=v
zD0Bv;ynN!b4b9Xu5aWr=KzYvB(~+{u&+}pVNyW8D(0wfH_K@FO;HMUT<h*-7_)maW
zfxh}I4EeqLtZ*K3PR%*LY+Nsf=9_{jiYPejj|KYZzi@&_L-08;_(U@UMfFwh;Qn#b
zFH_cWVqw<cq*=8GPIV?$55l=%Vh-EYBo=oyPX5XE*;xIa<(<7Gf$x+lY2Rx=tHn_$
zlktaWwxG+DC?Kk{xP+flh(dRZpTKhC4izs;V4BeIInkUfOCWHtEA;Rim3xag&nNbK
zI$2ZYIg5#!?4FWXE|auhjh`~lpAnxIPvH+?e0)0cdK+smVta_TYQ+e53>Ncs`L^5Y
z&PV1YWAGsr!_cc-U2Cf~XqBm%dNi?d%3@2gvbtNTzlU;{gI^5m*(wU_QR<oKr&b0i
z1x!8HMDNYH)I7QG6qAUJUBMz#+rX0AG2N;SJU56mw2`ZHSyyWB4(YT<`3RjZ@U6i1
z=sV%S<ZGU$-v#mh#xo+7)e-#XcO|t%`R*qVGyY!&{|)ea!0>-uCM;inb{&#G1%ZIm
zqb>_B62Bfy!Sz<h8@6>xwT|T%6mWv`^AI<9cHWRgosW>B8jDNBHpu+(I#+@=KK_7M
zfCk3(jJiMzkeeYdIkLvBEtUYPO7h^WlHjWQM&-N|GDSIRzZBNbF8DO%_yYKYz(as3
z$E)Cya_2EqPr(KM>aK0*YOLEB_4*#QO_q_fxftz0UEnpA5mcw;_QuJGOL?wA;;0Q{
z-oTXywh~?-!dQ=;g&B<S_vMhk#^R8^wBKa#Ilz3t@OMh|-n5^28vYLJEG>;pttIUJ
zI?k}(#~&LGRq?=uu+p*y;fqsx4f==?-QDDC=B<apUj}{x7`kVbgna$@oN)XPGWQpe
zoD#ZRkQ4JrBq&~w{ol?<TJ_j3=-@FZ_$=Vl>iAy|@y-}M0f9=qoI9SuoCO)h<pZcQ
zB`0+8>LLy`<a*t$@CQ0G+*V=$ulCn?4elf-UdXf|UL@oCcqcs+Z|JG$cOAECh8}>&
zQm4YL<S(ZA(^2-TNV)oS_q-v{C>6Co)Gcr)pJDTNDod*KMa30LKAU~!2lcVU!k|{D
zm;1u@*cX*s+T#WA9|Nxdrd}FL!+Pn8?hEhF(Yu%SFcWyM`i?6?_Kx4X)^11UKg^IR
zMjh9Ir?TR?j+e)!FMS(@Go-055t3HfRVlo9B9UVrcip-;=aeIU+pEA0Ak)!Uf(5RX
z(@l+CuUCOC;G~qWx*iD2(F32R-`@;=2XGf)%JB%er2hK-nvHAc5#QzHzDQ`I)MItD
zTOa2_PDHKv&1Uxy%*vKEP|u3$@jyf$%kRE@N;!BVFdQ)Smw`*FjpV7herva^+_;r%
z$2HVv7>cc|{YRn@7Y8PxY}T=lXu|9sQpvbthM*&r7B&0HL^3^_i94avO__4Hj7_D~
z)l9ueFVQnqp;^6==k5*bX-~w5wD)7+PXgZp44>bN-kWh}o@V^5-m-G*28KWe%_BzM
zan=p7>PkjkRWRzpxmwEE7SSs&&$i1b@Cm?ifT1@BTvC7S($N_<$;sWJW=dJhrR=3T
zc600R)#)>duS0q3^foio9E#}nlCS9xUj}~w_!?m7J^}u(=+X|0JG+;398LGOW76&Y
zYFNM6?Dh47D)2$TP{7cg2rj8VJ($D0fYTypt_rK;6zc(e^Ktw~<u>8sAI@UAt<sI;
zb10(QL%y~AEbV#&_}73(0Ymo?xFkR7e@DsnH?CiI!J1G$+;zKb#1;TUfl)v{Pz6lt
zWK4Y7wtfsdsaTm)P+1g<<98tNsi%DQIt`fA6o~WAyaJr$VklU~wX0uXvzV1}i)2~<
zRL&T^!`l5&SYMMWv+cAH{3Ku*VE8^8Jm5Rh7tXz}*-S%4zPp^(NyxQ3rdiM9w`8y=
z!;N%8WjHc87}489ex_f16Z{$AIl$2S5xAuO`lHZejqD~?qpbC<V}#^H>sOEzVGZ6@
zgFTB?`*2vk@~SXDX_sd3(ZD#s(3={)H{;Aa&3J=cpSz~kaYAge^&Z49f)p3bedTM9
z=<OmuQ@-24?*aAzhTeYge^tJ19RWGWO7Yq{xsUU#j*G0Txi*jM#?NW@RyL`k-%=UM
zTGr}P$?sr9-ye`I??CXuKqFx2kBi=$a+;?p?`GLZog7Spa)!yIE3r4|7*8BH>~r~t
zrjr<#WBwl$!>WBGtmmF6U#aI?!M_CD3mCdDMDI=iY0X*34x`&Q<R$8hIR9k6c^RJ{
zaaqx-Sj0uRo`={sok$eAY<AP33zD;)^Rn};^=Q=o)!F*M3g4OrU=h&A*T(3*sR#2s
zMtz*Pa%*_+wnuJB^OwNZD+H^Dtx|SlmAd|K+Wi3SA(vS5am<C?B)!q|FuDs|<>7Xq
z+RT!)SH$1Gh`!X@0q|FW*8o#*Z%6M<y;(W&-nVreR&&x~PWv#Htf^MVChL9rOgX3B
zM$E;ig|*^*sqL|_UK$5x=gFDibAjUlN%FZV(i6<B54^?Br*pDKnr3>MF#+5wUfyH}
z6#T>Nl_k<<JaQ$<H&UD+)$R-F?}e5bC(nYv2)qQCa{m%sk~wGRmOJEOYqTmk?Hg9W
z#%Aj+tN}-HWI+xr19W-c1k@YRZLG<bdouWmz)66idmFeUb8bGW{7iRT<WosyEq5xG
z2MJHu0(dNoU2kivqs|$jigkv$*ohIG5Fc~g!=iSD_om`l%xThtum$5#0giyi9pW|U
z;|LL$(&g!7K?y!jYN`gaj!RemjMj@xm-$9mZ*Re$xj+6pIKeZlG+_820WN7x<hR6+
z{L%IGXRPJ6ZrZq7W>0i8u2I*Ea>o5U64sViwbfR~Vp4`>@&Mg{{M++Kc*omCMHpy`
zyllI38dr0ZxzBEYJmhBw^je`O{r4L1F92Tx3_s`Ah5Wo5$;;N{=)0}o(s_a52M0U9
zwLg+z(Laj?kK;cQuI|gTzN7{f6&EKl=_natk8^by)>(<zk`rPdS9S#=3Jks7x}j{w
z2J3>4>B|)+0XW3R*IRN-L2cTrt0U^(pvuIsl9Rn<BUD+{#1q^_15a?<60u>N<v6k=
z&~HK!%uC}ax9=N`OL0apyX9dSuQ(5ISJ<o2d}8Mu8)@g+b+Jmj0;BW3x4ONO_;R)f
zQ}uS9@9-R5k{IV5FS=yk*ZLIaW@R_W&e0RxYhAyFV}ANuVLk4P>PhPHd*D9+UXH$#
z8Z`aTJWYEBBS7YC+H;N7y#`$XU)LzHf~ZxAm^4F>dLlZt_1XSE7JLFQ8IUBO{q}nq
zX`4FNOC0DLtGk9<e$fDnF~)6l@j_!K{(g5vr}r>Ad%zz7z7Cjv@mFw3#{bk&{*;AY
zS7+y@AV83G)~?-})!?%d2(0^O!~kFk9>SoCb5@H7;l#y*d?GM973WYsDjM7tvGvI~
zUO|;8ak^Cl{iZ;zYy%EEFiyHMdqD2_cGwOJ8nX4X0{lFn6EJ+=4lb!bd(@ykgl`GV
zDQvgCBDxV9(T(W-jkdmF*Wu%h;OF?CV~?iOwM9){GydI)Ohxn}&ueOyyA#442Yf!I
zoO(4y7vsf<4kYQ&Ga;Xc;KST6U`TD10+oQ_a~`;){_Yn7K3A_q9hY$18-sY_Wo<9Z
z!sfBCb)&g?g;Q6AN&pTp#H3v`aPyp6j9W#m&sXBweMq1g?$yECaE`hNBofx4XG8va
zp>O!R5Bzc9DZude4)}k{Ul37V>atgT0xdG;D^I4Y?)%whJ9Yjj*g)wwRQOCu@Sq}u
zI-v?^$Y_}`S|(~Z)&~7h$Y?;_vTC0T`E4DXU60NLUk98E7=Et<mt@u>vmPHY4ukq!
zu^N822)pgyk`tu20#>n@eFav<vU@NCl-fj>DV5+@TYx}NoRDS$q0Mj{R|Ohg>E}bf
zUV*Ne@BaX957Cwf7`|=>m-MEYUvuTBGLFm`s@ba_wI9@Kul}ABJWhI$RkHh^zO~C8
z#ikbhhIENj$Lx_`o5AE&LPe2mf1sNwL42BK;>8HJ*qw#hupZ*HotIz4hK#=~b?jO0
ziNxz##3pe*!nC+Y_>&A4c<dBKpN;z&{J=WI^e%VnYOqDuXqpqZE6-awLB?;GUtU!e
zqg14yYn=y`vq!6Dz0GN{$Frn=T)SZ?!=SvqFNXE=KIJ!ZrM#iqst1MurhaY$mvkUn
z56g4>G6v(ojMd%h*P)|_?}V`)C)_FBtS4q2jL9_@X7@PWM6qQQ@+EXms2Ljv?s*bl
zI;xuKiP?$7AVg1?$+zf<5}S}1YOa?asTuNdFP&eBgK>VF6&~3xm5IZ5uX-}l8E+cZ
zQAY8ln|?dE^sQ1I&H~npI`>jD{(D~v%YBG))lx25FZ@RC0Dx-1l>1C@NtZ7P<!Rlg
z94S{{x#rw$Tf4g?3>;pNrMK=^U)6y^{uMkZ_N$I{1AE&A6vg46Y_$CnT^jetG3Taq
zO@5-rCOS_E8Z@b?iMT&nmlpGvx~kBt4koYv(N2XPt%f?Ah+#mPf^_KRkpI2#XWH#q
z@YjHYfZ_l2rjY-O*N1#R6Ftp%3;AD%NKj_kn*I8H{ghVw^^3{iQT7z~F5OqAtv|#k
zB9x5#zMnzG-RA7;O5{H0W98}iaE!GEHDMeejwed$krWQWAzxjs&LG$soG2;yfYRjs
zijT<++!X1m#r{zDv|>C8WKa*UC)d(Cx4v$nGc#2tznc0bAEU}M<x*NM)_$XsBkc)#
ziZeuCrtFT`SRA-qtGsFYNo7B%isajZ4%J*Vy5JerS3y4y>*smOZ|2X}z+VU6i0VXY
zroa7pSTAzHL$$27x>s9I=C$B|b%<6aQny`E{w>Yf{O5r$29^S*{?~y^`qy;UtX&uN
zp4Mm83~C%t8L#ElIfJ-k86y9<7z*_0TlMYXTHF4MuzY*S-<0o3@NWUnL^S_>`L=Fb
zL$GB^xXJ3?WbI0p3M~{L@gEW8kNb<h{D**#0>%QSd^5o%z26%4uiW`OtjDe0=dB9n
zawokLPYRyZeFbjKvHlsPM=9d8$PLM*a;&o2Ukl6CL%y~AEaUP9@XrFbM6`rre|pFg
zXJ+eq?)EKxp4EMxwKs`|BZdK3!w?x1$1*6g+329yD&+e>MDP8>=oJmuRt?Yqm~w6e
zm$d(cu$+E0ADD3@_oq==O`Vo?Jt60A4&OBBZ?OeV)}bdQ%91IC?=dfx&Lj&*>!ofg
zIZC&%#|ppACrSy17hVBg92^2k>qL2CBA46+iNe6{e~aD}o2DvIPLa8w^;cni?Snrv
z4}1^&HQ*p%_+K_6<i9^Z1*<!|aDW%eChK>5z22Rk+U*@scQT81e=2T0ni_*6#vl??
zY<jVeGC7uPRiy=qahM9{G0tm8`h|%kqI_Ic&G5Mhn4+E8{u~O+G%y^O?|2ZT6~v*{
z4E#OK+vuO0aSD_5I$cp(j>qkcH@4BQXz&MB`u_3Q2}$X8XjFT@;b3F408w1E+NkSA
zEG+538&UtKT&Dl;1AiQNGAgT-xW9e)md<S*Yh)ANV0AZGze9aqbHt`s1jd*A;cvqH
zS#bK!*Y)6Ifr)^r*OpOXy}ldGt9x_o>_so!RO><a?bz$CI_SPz^g89}zNXT;ya4-p
zrzuumT<26)4iovj{7V!KAow85UutB0@Bkdx;K*OxqT&m`(kC{F9+qELEC;G`M}j`4
z{8|a>#0rzlFGnk{7D<1)W|6KMn?lGXI?VW1Lc;|YphH<0Q&$A;ORKo;8mb$xN~s0R
zlURD3c(U-4N)zv(tg3Ky4C|m$_ab4kfNQGkpPD~E`cIun_!>enaX4CYC0A+OUhzd<
zurmK#$L>(E9$Vd|oEBB3hM-8QeyP-xHmX^FP_ZX%eJUY`N2gEH&B4D<slq9Jv%8f(
z6t#a;|1wW}9sCL4spvat8FS7vPcvRSHf~zCtz$JEAZB&Pta}S_>BO&FwNbu)OSWIt
zfHwmp0n_etz$KY^FV{aFaY(vXZt0ew2<yZgy{zpt&II%2Ot2prTwxO`cs5(^ghFM-
z9goJe^mk`^FsRA*V8ll+bc}rG9`Nr1-v<mInb9F1{qCnXY!Pdvs0)_0&f*ZYOY<=R
zi06QWUF&|!wti43aZ=L6$4=y-yg<LgH7r{fT*LZ>gksB&WyA?iEM6q>#mW%TB#M#I
z)djjRi0tTNqLJRLpVNACSfT@e4%@3e;#b;h2ly`FTELX&mFT^(;~bP@$0=LPlch8#
zb6pqgxAv-+^@B?7RVO?s+pQ;IpCHC*w!-4|2{Udxh17)*iLrEzuIF->&Q9oCO+e-W
z8O2>4yT<~>_FDWTHpzu%2{(}*HjI(y)t42%=w^EoL$%gSKUVL%VR>4{g!M1wnFD?T
zuoy7qIW>B3`k#54ez+L{e9$`56+=JV-HldnCZ8=oRajvp<NG6eyUEX-V;%$l5%4p>
z&>J~6<Y!#8K0TbXUtQhFI@P_kn_dwr*X-7>g)!Gg->KDZy*T(BBeB-Df8Dj3C;DlT
zyOrC;cFZ2eG-M~s<N2Mj(WCV^bgxjL!@`D{vjFX?1`HCA>0sc731qA`HF>BWf^vqF
zDr_vk7_JhD&tNwhgqnO;`IqRkFu~m#b@-nD3+uB7{wLA@r9N*4zXP}nFy*@+T+;jf
z+@l;`KAGM#T_<(=*7i+SM>PwqD<QQlYnIG*K{ogo59z*7z6<zD=oXAa4ggdDhVCG6
zNt>eeKX;#VINh-U-DN_z)7l==ofgs^V(7NNAJXk2-_s+ySAt&$d>SxxZv&U~ZglSY
zS9Ha&In#BT(A^@M8dBaMV#F+`$<RF*(S3`2H$-$l0*{T?Rva*NOTZ=dEIRhS?(p)8
zI!YhiE9er(Al&}9u)OW$Yx?g+;MV}x1BUKh;F2cw<5wq;ajv?sdu=xptaM^%<0tRR
z@Vwb@Ct6F}zmK;fRp%rIj%LW#;d4y{gw|x;su!B+)oS@5<mV9dOn-|_&{iQ(0vLWq
zfJ<5v`BTrW|1B$7--VCv&0WGuR~uWtG04`o->s}4pw(HzhR;UzWk}qM)iY@ZN4O2n
zn23{u5g$9CW9sEb@VkI}0K>;q;F2~(_ntd){5VHUboSMcFw>*H7-;YeyA*zK5OWju
zP1U-_wH+@xTsNW!S?(|$O6?HSZ-T1ts~+pX-^2RB8oH0KVc=7NR>1Ie9k`@))IZ;f
z{F$5i?Fhd3GLYr%R_}!E^*J7}cCT$cpzGL3;`WzSQ4Txh=!iRbqw$K0tDS+a8o<uc
z7Q<@1g<)6B><liZ)*6>s;{F>sNI7#6=325zxRL|4Gm4G=aC=~I<nQ@sSe}FMYwG#$
z;CYj@RREasoCq$dHyY>VIsVFn`jv7V*8d1*`B*rIdcnNO3i>NOs@N|?ZzM**Jg%||
zFifi9IwQpfb5WJX?!~T6A!#c{ePn#RBvJ0*92AWg&lx@n_6eIfP2H`Wc{se|M^e{E
zA^*GKua=)>o_YxU+rV>x;s14TNxP$a!Q6g=oFY4JdhvP^$N|TQ9B}(<gcU#*pWu{|
z^6+y&WZ34sAxXCa7PiJlDCx6p)|?>!#>v@woB}=@m=72}P6L;;@869Z>8EYCiUr>G
zCve+oZ={dXuug#!=+*Xc%`Uw%twOrH$+wn#rTmYAe;arXFm!(jE@@n3_m^9K#;eR8
z=BlKu>xXhiyGo?t+y9AqoV^$=UM~D`pFmu=SYh63={^rBXFeTrb#{F8>X4t7<FfqB
z13v{g12Ft-1^+kvNN?)nr$>Dl4B5MtjM-;w>uP5)yZ+??PpFN0m9b>rYCAX{{ZwHp
zQK&8vuG*cDpZ(A?=fEF=zXALXF#LP~E~!6zKiRitr`1n|!?Zq_R)2`+8ML7oWwD`5
ztOK#{7$EzhW~|*CbVIl`YIQ?C7EIy396HiYr-82r&I1e|p9Yt7aX<FN9ODB6fwHb^
zq=7_nV+rTz?bmXw6_qT!rWNQ(_#t*wQ6l3OsCuRXnG(=mu!D2*v+D4;nr*R=uY=Gv
zeEk{xZ@@nQ!<REP<g2lte#^Soy>er)^USm_Ucpkk(R!arb*`-MbDV)@o!uYNTR?ub
zlvC>ARPZx_<q-{`)Sny!ms29c_!3&7z^!h6qL65l+-{a~TtJM-7M!aOG~G+=X1mE9
z<lwY~9Xp%yyn+I+kozQbR&e@SP|fZZI)}Wd{LnW2;}H1Yfe!&w{=~Gf{72d0NBV=p
z*VtfV)i##{P3aP9-~#JC7aM%83%DCV71e1qwZOdPhjdRT-*i+D=Ynqrx&TAB2V7Er
z_bejU>DU(BuPm~*FS2&U5=tk_SQGF_B4?-ZPMQ4u{)pc5<Y&rx5d8PR+km0>F1V!r
z^t;VC=;##52rc2Xow!6<+m~AVIF{oRRu@Z@lqo?beALFna<)zn^Og2K9ef3_3NUmx
zM(@ozz&y=*DSA^uBm#3}3xgl*m|^WWBKARhL~k$onR@*J_)maW07LH$a7jniYvgBO
z^V-d;H*HzmxnS)|wk~~A>`cqBQNFcfp0%6p9Mg_8XiL@_34ciu{gxTo^XWYB6M;6s
z&_5GgQh$0#;wY$Nr5GGU<~c1w_XKMnV+xIPp^K=&XvvUKBCO}#<ZIgZG4O8y-;8Jp
z#RL7!D=SxbZ`{82#LhLun3dz>Y-{Ii>q9QB-B^|QDrk%H_gk~=SPecB7z3DcT^_wR
z=hWhybL!@hLUg0djr>=2a25X-F6I-~&hN&oz0M$HXoXy34zUaC$8dbs_1ui8!gL8Y
z0Y$o!3r(@pb9g4ur^e?wHqKt%2}lglo5XD>dmrN6BwRp!Os3ya`Wo$@rBD>Xp+KX3
zg1S1;n34M5or=bP#JBX%52QRZwdDY&Tt(oL%s$un6EpoYEZ3Tq-Nc#Pf{_SSm}!|!
zo9$d~?O_%`Ldb~Z0@kv|ID@nEfR!K8Zzq4B{DuBS;MW4ZfT3SIE2O_K@~6M(yzu<d
zAN|oVP=C;W%X!^b2mL=JU-zlq%ZjXh?wCX#z8_{HWFDyE+z=<6`2*55>7`YAuwQzf
z-n5-LyBw!0b;-1c<pN?UF<Gn|Eq645-~bb&MCp8gL4h85yuXmo6Z}O5bNx2|<f3_g
z0hdutwM=<&mG3{o>O3f;Z_=uYUc`=?yYglljDOfE>cAD${Z9HGrKjqd1+U4)i9Jeh
zh;{0vYMJ+_O0LXXsw<qy_G^6(*wbZUef3fwW_*7U{9fR{08?L&fJ^F6&N&Yu7vZkj
z*geuvGN^aXvz{SBZ@rAEA-W<OTI~@%Yj$>Am4a6TwSb}52rj9=^`Ws@C^n502Qfmj
zb^HuSwpl-b<nVxGc=p~K(c3_NrhJ!yUk+Ru(GW`gl}pxxY+vkx)C_Cq4C{SF)I_w#
zUtgq2aVVnm%3*Zg27eFu0O%{%oPS-9LN5{+mbLs|6qY(h<ykx5M}mbOE!Oi1BulZR
zorh=)C(2GaCm5~p>{&d%uqrXU3g7F6nQ*uCjKs(5stDV+3%V_oQ^vz(;P(Ju0SsS5
z=7xMFSBB%@{q`frL)Yr<D>rSEs;)l}d)0m^rVhlejRlX1!RIw9cnp0h2D=~SS?_vd
zP@pQ*Q<JH@R5{nN`9s(@_;z`so-hs^t72oYC@UK0W4z%{sT`X(PZw1caChmq#PA<e
zlz(AjXUxAvGkb-9R(qnm*hLRW{_G;JCcmo8i&stYW+cWX{VEsD=E5?uV;mN2SszpS
z%Mw&dPsez1h#trB!?}-*8kRWm&uY#(T{U67?4sPJUwj_?Uf==1)XRQwNk^?~(LQCh
zG*(C03CmhW&|cGk3Td-1<5`aj*+N19ir3gtc18}six5tmV5Q_+TO0C`o|hdD_25mw
zaKP{}4qQ@y<KZwiGOe>^EG%d3tPbT+L!8lOhU|&x^^l+G4>y8;1^6$((EBd9q-P?(
zE4gvQgdYB>*2=tyT;!+W2L9|jC42yib`<{#+uBF*aS9%rLPWJZr`ay^hobA`6*Nl+
z9f5Q9Df)c9A~<=b>%)2|pP$_~H-nD`#sP+}so()${p_0!Uot0jE$XBm)>}WN9%jp&
zFy0x~R}T@rUF26whB7X02mdeNtAL^RG`OU6ByVVo<Wy#z5PDm?)~wysy;5pozd9|r
zlYc0<liztiCv@sy0z<aYz84(?kr^y>&Y@GjK%8CjZ5b4`|AK6}2ZOf&;{e0QJa9?f
z{oH?ctq#`8XpCmM8aT+D%t2=7XO;CQ%8v#M>$OJFYLf8K?UaRQ%mWeqUh+5loG*ZX
z6?g<N^nU~{$?Riu_mff&!huvm>mcO)rvh!r`FG+p`$Osg1q;zrky|Gelxn>xXxriZ
zT@>wZRJu)0zmoP34(p@#c=mVvEbTH9d^#`-F#N0mmoy-17qgEr?Sc>DF5#tDeLoaE
zOuk+^<yUYG$p&aV7Q4QKi$SIvhchM;W<(II$f*g^HK#kjHVfpTAt66|p*Jbw=Na%9
zfdhcy=WTFF{mSpK5643w8(+9`(pRbi{E}U(u&Yn9-R0&Cjjal95@Lv=Y&)5*Mg->!
zLM}Qqq~EeI+fV0#p9Gu&82T&0CH3deD%j?4UfC73QKscYrYZ5czLOjBw-eRq{)`S!
z``ZxJq375b(%lo~EA8+&__M%w0Ymq+6GFOOk-gKNoVeYx-`*mQjHNLSsmEjQ(9##b
z7PB5@FEfzH&Ul`W4Zv#^JJ1-$I_!z+kj#wNW!wO0f@?`cz4&ZzUfdsgqSqFmg7j)+
zs=;k!>!*sU-9|ilqI}DywagueVN@LBR^{alWNYgVPt<th5{`G8cjoXj++|!Pp&VMg
z+FKXrDkig@&|L)FD&aDLCSRx@(acbUWJP*bp$L+sM(8t<TSXnSYgkwx`zWv3SH1xL
zD)39d)JNW;us)34WA46I>f>B&j-@(U&ZP~+7jh-b#l@e%U<qx*G)iZPJScYtr3?@4
zIPPD4OdJW{S3FcVav$2L8v@D0RDG4w<HB*=Gd$$)bm$xYI>9dmJ^>j1{thn5#A!Yd
z$*=mx&Bk@zYdSCJ5H|*aQe3Zk&<<pGYejZ<@uQB_Bf=Rp_R=Ur6`&qx=Q&(y2}V@z
zG=UysW2IHKH{KtYKgu10v?T5log;skI}+JRoYkL$1c5p5b%iQw0glrM?d0LbkZ0WE
z0*LR@HnB;;<>`Cuf@veH-J4Xi+AdA9e`HwR1t(_9dk**}pbIeNy#-uSzwIIJE0;1j
z!_o#elBdulC($IA;M@AoXp$wFx^T`ary^+<8|g!lR&Jp##%(KlmBr#xWR>2mE5f!A
zdizI({JjNz(;gpzCl+ffA29qigG=h~UN!JC+{XBs7wM;B&m~rzaQ7J351u#@li+LE
z2I{7OKMa+rIXGJ4EYI@O(-QKt1A2|nlkt2l`0c=5fZ?ZRNyyKekzMDTIesPre&%i`
zJUTrXU#C9}eVzVYUylOUCI5(7Z{nG<wz$BLaj?b*lkXDB5tj)qZiB-%D9_LHkK@`7
zO{0qZQF=^0Rhy~HYm8yDUdZH^KnI^=C6S^|M311%cgu>HB@#7$y`QGvRC7E{<2j}*
z!+l3Nt`=}0I@&MGV?T+vCy^hI(x*C=MEho!b%xiTIKiE7&vcHrOZsYJTv!i1l+)~g
zZUX-@a35gm;dO9H<{qTaZ(_9X3+f@bAU>W9Wu5tSxXwJnBVk?g7J)eNn;1vyf*4c8
z7Zhc-B4DIwSR(k=1Nqi#W%hG%*f*|{9kJYHe_F*F)V*f)L9R7E<hP|QyFM=hKMgnw
zF#MheF6qt44&<nLNBa59&<V_}ZR=123uYjheI`n0dPG^fS)~Wj+3T5=8)d6{i8G?F
z+FB-reC&gc>CZm~e;s%OFns(OTvC5>n4sR4;=yp`*0p_nWNMcZ$*hQg^p{+U-4GHP
zuE-KZ|HL%fvd%}=$|FpBBR*PB%I@2jfv*JC0)~&fz$Nu}t_%2>w`p5ooLScXlxY5b
zMgo~#@>dkws0mLuNq^LhPLhjdZc<9Ta+_TY8nzhh;SIBFAkl8UT3iqp5Dm+wcX|n_
zt~V6Za<po&znc`++adT#!;g%+<WlbbfO5d_I}Th@f9H(G=73|WtZC$7`-t^ux#e4z
z?6jUlH(5-}<u;4`1B(diXkz^(_FtPE<9^)Q8}ZWvJu?sN27dzB4;X$v0GIScWRH@&
z|Bv_yM!>R_t2V90KSdZwc(=O24vqmsg3na&Stv(>Oa5+Kx8@;Kk2O2f;Ba0dg?<mw
z{bZPEw@EjnWy~hgLpMS^?Uf>6MnyR<KVBpiyAb!*d|RdGGrR3QF09uDCuhg;M(_)O
zivUxOo53Yr-j83zW0XUV;0%s%la{UuYxq%7l!P_Az>&DnmD~&@6X{f5aiO@NvaCHS
ztmCdJAzuffYxdLbGVFeU0>JQ91}>?;^V~7`Ld7enZg>lic$X}<KFo`bc+(?ixCbKo
z?c{Ihe+>L8;8TF1{|NYhK!2uquWTA=6w=FDzbMubOWD_7ax)POQlh_8$c~<|5W~qc
z*Ca*aAW<Z^s9#mt==saay+)rF#g;iVHLM@&l<YiG0bUC<0EWL2;FA93JTkv?^U58v
zxfBU&rt4IWdzYMVU6IdmFBB!8h2}^&b#zS&>F$W~m2ub$elu_@VCdc*y*K9@^ECUT
zU=+%FOjB%;H89h)TF72vT?g5=knDy&veu!9?jiCu^QLzya{*8c7`n~ilFUBfnDci?
zw=>v0_TYOAKSh@id+nzDy4WBDgrd?ng63!uXF+n+?zHvI-v_5h<&Wq{`L6^2EbuwN
z@NrM{-jv%sk0}5A+1b*s?}Uj@;ygU4b?gkJz0VS3rl34sGeWwDqI`v}dm7^bC;$xI
z3UEn=o_XfbozofI>}T3rxe~kNEbCFIjtDCqPrS7Cfrwsvl%LSs34R%HIbi5r7ri%h
z%rl4H$r8H6w6r1mWG+$oZfOn6`AU?p(EVTV_kq6yhOT@1e^gGPn_JfJ9D}UY8_{ix
z@)f%0fo}n}0fz3S(R)))^UN*p1#8!K9aZ2T98LL9MECh9U!nU3_<sX`01VytqW6ZL
zc^->yZh?P#G+C={W?0XyXJpsY)4<z-HGrYp4KAs_^)wjA^E+qbx2-$S73sm2M8*@x
zuwUhK48u|A@%T#!bn{Nrh$sqzvD7{*q`yDPU&{Sc@ZSUf0~q?rGyjuz?le`6;OOUJ
zyp$(+FuU%vai>*>hu}O0bP29u@)IeK@jV;G6HlM+xN_$Bjnbi4ZOf{i6Y_O>L|6FQ
z1ils64j8_AqW7j9%=5_h=$soYfqld5>VlkMX7xn$o{#bqdcOkyE$|j#=)D)cH+0N1
zhu+B;wylxbwEZj@*xRiepeRRw2Dj`1+xuqJxl#L{71poNJso@nunI7AyQ24oo_Xfb
zZR1o$w6?=3-*HUJJrUh~<ZIT|?}NVryapJ$e*l-%-@Rbe@7nNn4AHXoMeIAr$+q(g
zm}D1lV8HEe!W|L#pk|GnZ8nlE^TKjZIy>9%mw>MTRs)9qh2WC@O}{7XQ^Y~9`c!yu
zSrwdHKCP{Nuu;tYe^Srke#6seI9isIo0M~Y-*RHL%@6r`KB6b>a1i|Wz}tY~=iTVN
zsekj#X@`?9+&Y_0M$it?)c%8``ka(&Z$!8Coa}mfI`}GJ9boA00GIS{_7BjVyCZZs
z-K$=tBA5Y)^!8J#puD`8p;x5O6@_EV`Ux`tjj?+{SnmDgZ`Siy!QTLW2N?SQ0GISH
z*Yo+E(4S@egCDk{|D)jFt?0dS>?AE%9@3HeZwFrwoC_E}x}*1|-p%uf`j<=jV5cYb
zZ?;i4q>r(ULJl64Kgw6={sjCD;CFzb`(E_k&@;~?=q|>~{(QMHM1$~5ahWyuQbxkJ
zxHn1TxyL!qPuR0VjrG-fSvV37M)W7G$d-Ev_!+?R=sS61=-r)TKNE~U30D%`nAh)h
z?)4sY@~j^9Gmf8Q5|g<yl7GX3e-qhE2{s0K!gPVybcsNUd}ndg|DkE-gI|Nc5Bw7_
z^)R_T<nv&3Z}6GrN8YRT@zZCTg>Bp)RbUiX5PTluhXm~1>{ySgQFyVgWMV`?n$N(7
zqdd{%4j<Z7HYV++%fwTb$k$35+#wT@l5)-FEz?ysaQq7uTdd}B6SG!?LkHVJ{&&IO
z>C~6B;~n7N1fB*A|Cg-^`G0<M$oH<UBl%yCBuGRHQl&IxeQ)B{g6k8iH}Q+2;PKaF
z@VFy(eL@QH*m&!GH3qHuLS0vzOl;zI4+X$_zsYVCTOW?s33jlY1kpXht+exF+xdx|
zN~UlVQS6uM0bg*7{@aP?<GK_Jy^pKRFO+W8_uGC)`Kyk-JBG{PpE&Lz<yQJH5*yzC
zrc;=Y+%8@CiZ1^-#}fZ~Cxf34YVKyGe`otosG@spKbGVYHCa^roQ^-QV*@#}P|GPo
z%DXCsa;3e~Z*$KXAoZSbA5r$BDwe<*7h#9VI)G$__el%}?VqdEueJS-a(^gcR=)3g
zFFLVnm0Q=~{7@kd`??}fO;yS+F3#BXW6^KltMu==wl7?R?6g5wRoV4!on2g%@Bd6q
zdQ{;z^f~Q!_yhgw^l}PQ?mw$AU*fi(0GL-gdDq%8T|U=d82hws-)8H@_KV7YOt~vc
z;H+?Fd{(T{t*h0E*a<p)m!t1SEEe<KSW`hfjY?ax!70dVNH=g5vV%~%WAr81<@=vk
z{>N?idl-Y^gt>yyG1`Aki7)g5f4RLnfnzn7pD~-XXO#OHw`n->K+5v$A@0zkykUEl
z`$_Gta#tReN6MY--yQf=KLu|vkJ$bf?1od_yN)Jyw%Y?aH-`K0cWn12yV~<8AbTC{
z<|PyEsPxaY|8qV5THC$e7An8ixH69zJ=^__^529?@aI=4_qRIsf_7JMJSFJ3OCaJB
zZp<s5v5TIvOSOA8KH!4_n!mfu_McWZJtE)zu5$lRrIzX?Vjf$wFl-&78sI}=a+3a2
zco<aEf^R9e+Sg|za1m?vnVLI={nFv^bA7v0h^<;dtmq4l`;K;hr-aM@RsK9YT8F>!
zOXWVx{a|drrvD%V|E1y?`<#=P`-OY8<6q?*^?UMl+W(wmAMyKnpL5(R9J){j_`Q=t
zo%tMH)il;AC?Cc(cw9}zU;;04$Rekg;%}Sauhr5A3yOEi5OY_Q;epC27Nd)lK$DlM
zstc~xyJNT8`W7$tQ<eUqD!fSVSLy>5+w9(?5-a0hREe>~@!H_D+q+b3qD#j+SKY7U
z=OpgY?kCVj@h5s4V&}TQx1F8#hqgLFFXI=!hLLTwwb*@LI4{+%&B}GgfzJVs2h6<m
zF>p!mM)%Xt=iJK@;&<kj^~ZOt>$C#t?3~~Z<6Ybl$TakG+j<-6ERpeuk)&ITC*nUd
zu3Ho1hx_>h(p(8j>@nh|#8C!!+=dyvbCG$l4gItVjHEZK#*pEj%^|-B;K#_5{|Nq1
zK(EX4y8&F%!;wDyg4}yDGl|Y#-#HuIPgX`4ukT4b=zJ7cJ&B<oac$e9KH*xA#>XH7
zL&$;)$zt1f2!DV=MFyiHU+Izlu+$*O_lF^(!ZN8aBLUw%A{pp(Ni136S0ai}CL0*n
zF~2b0Y}X`;7BZU>bGy><%iUy?KOCd~@f3BNzCk;Cl!{Cl(p_OW_fZbB?>PW|5cn-%
z+9kC<EN6G**WmIT|1n*11-d#ob*)(?T3uxa)zsIOI;ehPzaF&BLyq<5cpY~IIE1N8
zRE(|EW!s%nmV<h|iGXn!|9F#;Z2A&lX95@L!?akfZ$!mmLF_ycTL-CaOUUmA_^IU^
zS>G-K|2S|3VEF9?msH!&z53ycTc&*hhm#()+PZ}c)A6C$;lxl|aeqYb74oYkKcV*y
z_<O(yfT8DX_z&qpSmZoen)e??Q}}M#8kVz-e2qMJ4fr--Ct&E_4=!m>KXTB%a*9Gn
z{eI@Jr(Ct)-N!@v-94`LaAJ&eLT!~(z%-ZiJ0(INt9Y7w9Ub3FqYSPSPpydm5QP(Y
zpn;Ykgee~OOVmEmL<-ZvZ6Uwb#w@>u;8j2^VECO1E~zEr*UIq&AqJ0;Df>Z=&abm^
z?@`1U`$u93ld$++i|ZD~NCn0YquDH#6~Mt5iC8iq7`O+whkWdUjv2SNg5L`~2pB&0
zflEsFqi?eQFh=&PtHU$ACr9`m^$-_yh`Yl(<SP^kX`CM}h{}I%wx49cn}Cskq1yp2
z>6yr`t~kfOZtI553ye1fE}!NG)7y&R^VdvrQX5}!0%<!QLOHo4agSV2_z!%n4;WCb
z2O?S-NQW9&0dV0m@HoD2<vG<G&Rl@fyIW92jcs&pS6E~`Mz{l!>v68VFywzf{F!;+
zRq(ffKLUpT8Rv!kThTn1Yag+`6U*ps6o@wT-Mtb}H1GiYpym|NL!d_MO=_<+=Hc;S
zNV2gg;g%};o7d44A0CV45qztGqq20rg^n9%UdS6uBt?6)GX~%C@|zWQQ63xMylM}%
zOoC5@wxV|^=X85K8j%+`7pSl^P_EvK!*bmM-=<t&1%DcN4lw1KxG5~xo6)>>`I$%V
zhx^7+XE&~T0>jb$ME!kA@$pqB>=!r2tOu~smk>gn^RcHcOQ!X3?!-%#H;8$>t^_0T
zBJ8PMo)fuTD#Qu_54VXje^8Zt>lSk}iceeZ@@*MfJy`xE<@bOxz)gui+@=Knsc~l#
zh>Gg;BIoQ_Gg}KZGEcw(?kS;-``$~#a`#d$Q||k~p8&oEm~#IST+%JkeNcPOcns!s
z)~;n{9h0g3koq<jSa|uqoriSEPuSL@9PQG@jS_AOTVCR&iT_=%E*Vd`EWwF}L43E6
zp98C$&nPUrC+Tg0s#HL~^|FxP*3H@RvmAUgumv#u-UTk{Gts!sm8S>%F6mgC%W{u;
zG3bQPh+RyN`kG_Cm98T=qV_X{Jt*?$&=5tjg)+x9*tKp=W_VG-r<6}E=QTR6oU`WZ
zad?XPhqwa2EPD^w^NEn}_u<RbbEZRE1A%(L@I3)sl93za>NUx91J5U4xOr9Qrj0v;
zYurrhOfF^WXLvAtiFJ2jHO5{ZgF8`()-A!3ke?mzjEpqjE)V(Wfle)SWSzPh{2t(5
z!0>SZT+-#y_`NvC|KsYuZA#nhpqKZkD*}U}$p}$<)Ej6vVcebe;e=EC02ItIbEa$J
zI0&1sYK7;vOmJO#gW|&fxNvfT-l2%U+Rp5`dNTMNU;$wGI|W=)|MzDrB!p(u$gG)B
z>o#hsaz>s-ggEQ$Iz)>o!#TyG4mX<3d$75+_I@&~pIgX3P5x3p4}m`hJRZ>$%KgPr
zXl#z?q7O$bvre(ezh7CcKu1xmaEv?Jo~}nG8jvd!_$V<ovBF)*b4r2$81A`xMPg85
ztW31+SA={tc7^2>K4yY108Rk<>LGe><Q?W|<Scj#lW2hicig%tj6;_RoW{3KM+1vp
zuQ)l%dW}baKcc%k%2((<4*oRoEMVxq6umd}%<~v@Pw9vxTz!<E(bZi49zpqFM7R9>
zY`eFB&j(Hb4Bd}|OWG05Kd<E2O&%3D6v_H+%)3m#1A@<&n2YHG_r<IqqG^`ohCiu?
zs3iIs$1$^dc*wg})p+&!cqLSou_~u{DC)>W-MUls>w{R1+ngE9&R<u~t;*hI3?I^0
zhwb$W{26)BpTYkI`~xujJ6rz4ek(e~herZ!U2I)vA02_TJ)+x2zJ~4w@GF3;0YmpW
za7phj3)icMbL>c>ddtQ=E!(SppdJ)|2hWF(uiC*+MGs2#eHgQDLRpRKWAv6QV)Nza
zSB{QV;T|Ncs(3+#%jR4x9IjQUPW07hK~tc+#;{+eKT;^egcaEo%>V~K71m?z)@*r>
z1D^@Z0Ze%oflK<g<6mZhoO=A#G3v49x@g>!uc^ncfqxr#4ls1n-T%7(^^Jcy!9^ie
zcT>hYMKSsodJ&cPZp``}m6xr$_{ehP1}H!1Vi%uXE%|J}_R!x-@`^C&jk)vtsmh_u
z6hBuEZbwZuhQUUum%X13%hL|OW**xHz5}=@Dua}yzj;i$-^lKj>ldw+8En1Py52e<
zUf-PLNN<D#Flwa!Yi|hYJWrmc-hKi8I`Esr==7&I9MFmM=dWU(1b#&~O2m=_Jq)tF
zY8*SDn<{#tsxU*jB6_Xcvh<dMp98D}Ogn7@mvn7E{u@mBWSi0=p(f{}1=aervOb7S
zm6N9);7H7FG!^CUW3JQZKjOx)y!*-Dl=r9LzXRR|4E@sW|GIw$^t;Ym-?p-QgYeKc
z5i7^<ia$qpNy2K~qeZum)6@VbS%SYo0kL>OO%};wV2@sg6kw=rb1eabm+Fmrf*fr2
zekN-7h`!9<7l2<0Tmu;X#$FKh<4AA!mF}E<tcgEu<m5g6&r=_Hs>d(=$fKt2$hW?R
zg-1Gu3Awlou41d2LcUlW%Xqe5feKkFQHW{BF#JE;Wx7)0C?ylE*qF_$D!~~nQq8)m
z`s7d#!*#dCtMO__ptLbaXK>v!fD6y~OmEiEDS9eGDK$Jfe7rYdQ~}2lRXU!4ajrYB
zv;ZwZw1ZMMpgy4rN;$x6E37XFvo1=zQ`0AV@wC**!wRhw#>s8U`JU1T#oYZ;QJt;E
zNA{OgJmbt()77bVpb>xI^I`q%rhZKOJ`8@|4*ZG&rv9$KFs#4#&kgIXWy{g^w{`CM
z+g8e*R{ehGUiFlt_B(I6!J{nroECge2tIcPpD!Q&I{c;Zb8zr_e(>25e7+iHcvA4g
z%;2*s`20nGc^sYJpx_Vcg3qVJ{Q7>0HvVU|wbvhm6D{f*DRQ}L;;1o@fIF4Ng|Rd~
z2gbxsqeBkI86Khe624cW5=40SlI_6Bc^p{uARH;DIfmmfAyMw)KoPwlFDW5f+~B8j
zyL_M@J4^D8H4WCo^VvLC#A@(;Ux>K>lGr6E0*=%*)dUSCj)!mO4<VO0kcZ^bEgv(A
zXnT9roNZir<m*`Ve7#`YUNv1;eO;}Yp<7Wmy~K&l@@HM899>Q%z*y7ydWX35tk74e
z*i9-nO+JPmnLV+|f`1ZG&@I0aVYus+m)K|omSeR&QIDnnl~<Lc4oKhXK>oBu9p`*p
z$DY#8d0eLEjpB>DRC+oU)u<<_fexRTfJ{J?e7j1{&s&iEt;*|8UZL^*GD$55KCk$A
zUzJ?y&e5~HvqV^O;NGwwHtx*INv49I0-On$et0vuq-Xk(PpnzHx)a^z&>@DCz6!g8
zbP2E-=#?LaV2JQ>^@43}AfUBh&W<O8t&ZDLF~YGOhgffDduN=|fo@g!bINH&HG;@*
z@!;oCC>XjGmi0y387h42zCYyqAbd6Qv&=v5g2yjH?-?+BF94U+AKz=)J|D*SSU8;p
zoC0hDJa~Q<jYZ@dqC1F3Fh^A7#qV1Y!HUJqR(=vWP?6_(`7tj){5kkWw!D*^PYDNy
z{ww6S7k<n-`3U%rfL8#+?}rzM{I;(O$NBw{ot)Y4ZeO#tbA`;6E7lPfWd*j?8<9P)
zSi50OplG{a?L#QUCiJ>c6!28|m?8p!%hj6+>!)l+ajWLUahlDY64j0KK)PIDdr!0=
ze)jF+0$fXl|8yQ|-dq<|v;X2Ys=%(d>wJDrqe-oGx?J`bxGfi7z`k4JR`OXVzt5J9
z<F{Ss=I0Ze`^dK%M{VgO?@IFvk9rr!X)i{sZY7aZbN+6ypF$Jc*C*&DF>%06ZF8}Z
zPv{*luL!l+qNHncoF80-s&gO33c`Kjq%`^&XA1n3&rd0i(t;DU36*G^5tieN1&@9i
z&Wo1y3A<>Rd!Iw0(}c(vW)HK+s}?m(^=Z1dKNPlS`^U2L_eJ2>0KI@|&;8(%?(auF
z5VWUgg08^+c<aXC99PzLDOOdVR(uqq^>(@Rz&ELAE(`)gmcoP=b2DiN_4{N|$wZ7%
zY?^O~7^R>`F`yvOV*QG8Zpf;4TYDc4`AuJv?SI3;rvbA7!|yHNk`_hx9lLVuHUfUp
z>DaoKz9+JQ;82d_MF#?yXLtz5m%G*tGNAo=IP}03I8e^D55b$gl5($NM00`_nYj}C
zjpkHJx#>iaTgRRwzd13g48J($=h}hv1dn@0oJxjj&yQ#v`+TUPu;o_kV_~`8f^Rdf
zJ^)W#iryb!%GCre$@u5q7y0)w<7(xW)f-lB+ab~Au{O9zU9VNIE)Zjb%MtooFR)8v
z1K^JkGxdZBds9xjFfC_#Ji44BGjy10_l5lIfSy^`uLl1t@HxQnb2qr8{>~K_Y}weo
zcJ3A#)S0$PY}dRco^^#f(<-lKS-})ZF}F-}O8e{#Bf5v8d}Tg#dhiDX<O7Co8Mq`P
z@5z-{ZN_$Mq!`(a7Rp`cpmUnP!<sZj<c31)6lXw4^6OFmkMa|G7lVHSxB@Wru8-dL
zM{i5_3PLuB7lY1@EZz3wxd2J8K~I9|Dxf<XpZk!vx+1y<$k)iX{s?{u_)A1fO4wh#
zb>vAR+7dN_^`rX;)>=ii)?N(3GFliX^+t4BFAM8S%C`o56VL^i@?99cH*yK{H2q5C
zR}ypbG-=OSE4OUfxOPh)*|N4TDt6(;&nWBEk(j6kqM@<+F!%FT`!~XRem<fje7p_*
zzreeI;p4;Ty`gWOxqQgMdrhDU)W=1pZORfKC1I-<QB~v{qZLuURJXN1qQBtd*?Kq^
z{CuDrF!V2u-W$5+`ETftkzUp^nDDj5Gpzd&6ydZ$#AHGD7W&rXQTe0%rTlM#{}1pd
zz|em$dT;2OXD<C&gagc$+))1WQIuOFx~=GGN)o!KgRcNq0fz3n=)Iw5o_%zQQYnE!
zvNUUl)c98EOzS;8)3Sz{dhU(r?Tzvide4Ku1pE*%^nMz>H+0PNaC%$TuHJq$y*=LH
z^bSV!$}i83qv_x?fjNLA`Rq@xt+AP4gy@M&Fhcb9*Q{CG*)hMfk7~@Sj9J&=wBS%g
zXIGS`l<QvbuL2JPrd&@(?@f8k)0C^RdGqR(C~r26>_FflMrwVuGOdj>e5+-)bsJah
zD2B^CF~Zbq>l0!B@jsbu$6D~AKr>+IkBi>-H&1P5(&${hesz{=+e}7H%h}eOiIMc4
zfa+v3IkG>E==MbUO1bX@zZZA_Fm#`Y-uFkhOLheq8RMl%7|4=uU%EoIm#j!wEhxp`
zmOn-}vnmj<QkJ4tXB-PeuqL&9Gb;ZT+47GDp9ahX3?D0^_om*>)6{>k9<2)JudePb
zD+m%Be3hL;%UVuFyg}@ngf-@7CS)d)dQ5DHLK)A)eN&a1@7o@_K3<`4wn9G;Tw1g}
z8S=L$qA&II9QaGXj{w8pFQfPU)l&|Cef3n<MpPy^`mVC>u*dezvCdGnHmIQ5r$YLT
zS7z&{4g56VOu*1z9=$j9VxIr5e)<>*XSp#mtQYJVhs|*95&b<;{!;$$fd35m1z_mU
z+!gX?%71O7M_}lS_;F3(bxr&`^-)E-dP68reFCSl)Wac{aD{XAFosGU7G~mzuquY3
zZ#;&NxO{A!3;leK*uhqEU}8i*XL7d32tU|T%l95mdII-_RosdWJjP$)kG49933Na?
zH#vP9qqe8RdhU(NA?17s{2RbG0aMQBqW7kL&C`@~)wWINMaw8U)xoOTSJ+HT(<mQL
zd6@PMmVPG_!N_PL*d5VNUzKg=X7Dk<1i;W=6umd~oVz~~f4$*M)JL|g<u-*-Z^Dzf
z8ze3T)^X?p=Ibf8$C)u9#-by+0T!iRQv0{VdblN`BlYkw_~XEnfZ^l$=)Ebwd764S
zd2RQ+jYQj$tGPZ-GPQ$PTc*#jzQX|wA*xhBQ&<7JBf9CUv*jNSJ`tD#7`pSL_lBN%
z_DeTd!Mjf3tWwpPu%=(9tUa;OdL%Zp!EWXxJvJzK%QIoQcagu@r+*9l8Q{5yrf}Au
zoVc-h{c6!y+R`cd7??A3vlPg=Y3a6(4zUZIKl`-KE$1Cp8I!H!CNnvwQ0Pn&eKqo*
z(-rYieoeL>MuATNCIhA(W=HQ$`OVYR!}`!LD_iwQJACW77VGT-35XX&0I0%vj}{2h
z?uc$L`I>#}{ooG)j{=77esD?s-OH|DeIg3=V!;xU9vSS@Yny0yEERi-s!^y9JASAy
zbSR?hUz;s&J$Mr^958ezMDI;G%`;oxBk9V%Ex6!2Zo2huVRf2ownEBk!a`du&xY;Y
z6Xh%Y{4Vf4z<q$B`$+WO&@;~?=`LHlg>ZH&k31w8^7m$tHl&XvZ*@iVtw8z`?%(Rb
zM*yP%Lw`l|zQ6Gv)^{#_>GWkSD_HM(WW76%&G-IHGlM?A6p4Y8SDUCVL{#WvEGufE
z7#NS`Cve0Kh_RRnPIS&u4Z68+e(d>9SYLbL$DA8~0RAfQOTh5^S8z$=`jNw}Up;HR
zv{cSuC~G^5GvvZ0dDd~y<7}X`E^%B@yu2V2L!9pTBf0!27y(yzDyJr7sqMLtpVsTL
z{bo7%xj+YC__;26-xbOCU(1mf9D|>r^4dNtcMwZhnvY{;f30k6x*U7mIA-}M8>7RV
zD6B#eS?84}^<WsA=S<Pn_B4mP?4bBo`|}}xuR!0-Cw~L~2k=qElW^XjU3S>6OFKKe
zSw<w>ecwnfvF4O;s4ofW^h9(PT%WCncJNI=7hvk)?&!U#htnhZiRs6iX_GBb>myUv
zwShVFo8qW-&U4tZ*>#CjyeQ}}x*T8b12t1<wWDjwalM;B35QTi81L(fjN_K_vuGf0
zh_%?2M4+L`4tzJPk3$h3GTu_X*nR?KfZ?+aT#^}Q=4tp`zk23Y*>KK0a<>_*taIjA
zH+ihAp*y^AWvzW7q`QH9O~1Vi{AS?ufT8<1xFi#=<4}%X>Q)R9w~8P9Yz6fy#4r-o
zD?j)=SyXE0e1$8p<f(KK;znS(A9si@QaFH-Ral%X&}mPuDmOak>$y=!Y5QKtpa1D>
z`_+Rt0mA{q--PIWzw<!nRxw%Zn|FhA>j<_R^A=bi5bPm3cMNgxmnY@i9ntNH@|E_u
z1N<If4`AqiEqdP{UCupdu60GG(S4N@`f6RY(fS=u&QVVjqVuw+59CTOhUK<y$d<bf
zd>AkhF!a|)?@hn$%IUX#^n*YJ#3<-v0d2tFYS92(^e0v56_o<ptPhjT_ykXLp-6af
z1mi@X&qsPkxT}g+UGL{^Y4ACWs|xmK!)U9e&UF~u+tKcbdi#FJ_r8cPska}4{{r|G
zVEBG3dT;u#d76H_S<a>_PRuzp1>G2nn#-Ns4dS7QZp)3?`dSEn60i&~beBi(4L$QT
zbOXJ-9IAnQW$~%jy?ISkNYGY&@|Ct9gyr26<tyd=7WnhP_W(opC((OD&peNyD{a)*
zKA~6#vOhcqS!-`ZxArsH@=gJt4a^4&-IJpC{q@gv+fYEbfZ(CqvSP!swwuKN_38UC
zuwp~JlOog7V>xq0##M}uu9w1c?~d}9a_<9w9(WNj^vgdR^0zBmUpD0E-{Y(xuxRQl
zHp+l6JAo|Pdxr_*%nuwiNXBy2aXdj_2I2yI06xgw;HbmxjlUe+CbH*P+{dsqbMWyJ
z1$I7q#sMyixWZ`=-gnR^lVVJFzNGbe+!k-JOUeJx%V9Y-M0`p)dcdy*dI3|8d!zUL
z)#DN62v*4UJ>o0mW1R5MWPNzTZq{d^=n|gsC&Cr35L8_D*0(B-`<;UQKlZ)^JgOpV
z`_}DyyE>iZrpeCU%^J4QA>GX`VHFTG)8NV|2_Y;RNK8O+^wWrnxW|pbmAH(<sG}K0
zMMaG}gIh*N#69l2#$}Xoobi88E!~~aX_)zZp6~mg|F1l6`rKa5d(Nrl)~#E&3aRWR
zY0qB8NA~pCWEufrFre)@12QGO-s_qLo$o7CQR))d7KTj%X`;^LJ1MYNT3Bbc6jy^7
zuE%2a6ENJ5ebaEAn2Wo#PL{V1W;tQt-|T_)vnaG!u?cr)=?c=tbHyS@SYoO`UL;|K
zYg%#xpIE%N2=iym?RVvxqgb}P(jMh0#423E!HSoqe|wbu<lpz?7ls@xK>O!|Oi9-h
z{i^E=#xKOwOtfe#s}e>8%SK@GUT;isJf_lU#2TNp_>XAPX>mt1vTch0D5anHYayQm
zoC0Y6v()FBSHEihrL}@NR%~;yW4XsTX1;ND+Axeli$-Fs9>jtl{@v2=Hl>$%--rAe
z@Fk#m_o~k|pMKT6tFYL2oHRHRXRzZAHh#jY$UP-#i6pI4d}W*C*DDJlF9wzXny(Hr
zrS7g*VtnE{(btFWsb+EGxPy$F>FE+|m1fJ;cY?HY1Ll<|-t9^+`S}9m-N37W=6z3n
zuKm-m+E2{;#)R+qKuAtmG2(mN9Ag`reih%+g!me-$oK}YlKv3yT*y)22te~zs?Rl_
ze$~8Hl?}_$k6E)eUZx7lZ=oTm<DO<lJ0_arVFhtzT!IN}s?s8UZHm7|=_meOkpBYw
z70~=|sLwU8e(i=|L|u$>A2-Fg7+W}Z9bfnDk$x9l9rt@0<T=1RK=YQX&o!TZ?S{8h
zTp#*zReIb+<FO1ZD~=tQss5BJzRgM>`FStohk?fc&G(%8T=VEx&4=bm>`-|MI*v6p
zu@YTS@j5N8bR3@0*gRw~t<NQ5Jq5eF%2=1bD*Y|IChqTe$kTvXfad>|`dstsSIwWu
zzJ%tT#!bK@1@vUWac`K$YeUP-ACwKhGS7@Zo?^7TChcfeJQRmVA@2g72ecips?RmQ
zeobwMIDsVC@$t}N6Wf)k5t&3gd~c}yzcwC^>5%6F^8szg;p%hEuU}(!;OTZuM(C6o
za>x?}@7|()3SPP5ZB}~8|3@G{4Lk#A-gngJb?W^8ewTe>s^h%NDjO0mugW)2ALO{L
zxY`{y3H?zFhq>`MCgYw=%S($|Ov3cq+<3?HO&N#ab@4bH1Gy4d3TS)k)aTlN{hA~W
zWY1!>LUJ**#5+Las9r2E9v&XBa<OHqn4lb_X$%-2RCa7vJQSB_A-@W|31~Y$Q=fO&
zpTPZ!<%vbIo*sMmQL)56K9`Lgg<V0!R&CU!30hV9c7fr0OU7Z`_3=0y2Kfl!Xh8E<
zsn50l`c=mP{h2zfUKBGSr{dtnaC(XH0JsOqQ_Z}D_P0^-wkW;i_mhxc1a<?O_kHzw
zcYZHlh9@#(ta#qPA?En+n6Y#8aI6p&bG#((c<^nN|6AgI&x5=GI0Df873y>CuYT2j
zH(<%Rsx`}N=d7xWw@Nv6^J_iEvK7V-j%Bo@^HJ%1v*O*V^pf9CKz;^z9?-lms?Rl_
ze(jc5wEUWPR~jaNDn@a-Hhk^UUw?Dl-${_C1G50lJ6C<K`SfeIyrSjTyc@k;c^eh)
zW~G<>y$kaFzz#t3KA}F>eEL=M#`l?vWwvZ?)=V)j%h{*7F<KR`?}oU)Lm`g^CIOmv
zw)(ug@<k0CZpp<+3)(P7@d9IQjK6?0Oe4cZ&xZ5~W)(`A=(1kGEL7~+iN5h28TZYK
zhy1?<@?F3KfVSgt^||(2ziR*0blHNke(0~BM|<pUV6*y{`$I;*Su={vqM0E~JyVYa
zQjV9uD|vl4#`|+&$YsDxK=aOlOsTv6T+#6A`ubW7z|*EW!-}JFnMzDlsja6|eqAXB
zwPs>WYa`pl3=1&MVPc_Qp%wGslpUMFqsNQxh5R_M6VP@%3z<@P^JBW$p$$NV|BYVY
zV<T2tGTeYsYptMmj#B%3G7g0|#p5su^1;A7K=YSFrqq2L>T1xH7QFilLvcbF8sAs>
z5B=Kzdmy(0PXe0%&yXo~?|&kH%>B9<vH0J{j37XlhvJG#s562eNPcv`>5WDze?G{4
zfPj2Yd{LLP`ZdAD%jwzn3oxqVb7!%v<Bap!H!h<WW_95SUD{j%3+G~19?5vejcI}6
z6StQ{4Vo)SM{Y515H}I&2;Y!@SSB04ap8z&BH}+bgZ1JYG}}_V;@9{T-+~t0RHko&
z5BnvhVMznbAGH|fs}nyBvx`4`3uD`mu>vq=1E!noXu96VDj<RrGw4p_v@NkE;~e}*
zm5blWV~Wc#$RmNEdXEC5<5Jmx8xmqcABK1^-0r5FGmJ8&rvksx_j&3dHvlIm(Sv<?
zu=5DwI~i&w8(3=sCd<Ggq{1aQfd`8%NzkbDw<hR+9`Z}TD@pZ>+_QowL;tD9R&ghn
z0)=sZ{L%9cHnPM82FZ%6F=QtFVS*<d`dG##cuU-$DUfFYa{--nTySqxEU&b{mzI?V
z%4&>k+qe%ZOA7tRy*T`*+(!Na!Zmfw=pCW5PVsJ49F!kVKz<r{CJ8V4o@=UCi4o+*
z4JWT$Q-u=`B1T!W%|g~RDt&wLTb(bNzsLTFKt7<8_9H<b6yd45^BMl_z<MjNS7Zy7
zM)-gdivK8WwCK0+PkM;&&?nesls?C!#dJ*nJto!zq4z|F20xMUZBjOnpEp6i4QNSX
zSM0n8tIlM;Y|N@YpIw3d&27@{0t1zKR23~@1dHmZMRwy|`lEL+$6ZC<#tkae5fy+o
zWsiTWh>2()CP1DHOqK76Z|XS3>{*PRrR47N92RlocGP?u?XA*Rm!NM0<nw@wlIRmT
zsBZAX#c9wr&3G6^hIWS*#;ZD!PAlr8@A|2XUz^fJ@p}vMJHQ8t`qlnWs(9MaYvUOl
zSSVAO(&NVs20z{+Jz>b>fr9`_6r-|BI**g7=N^^X*Rj7H!@ou}E7+kOmmUA!pDz7|
z;s0FvwOw(OJ&!`(2|TObi<erAr(PuOB159pw5EquJ^~wjozH^UBE><_RJ%yK@FJBf
z{r+3y{stkB1ttRIE9svCnNr2YQorWW`A>Xm|Fp`(JfJ(x*x)%0HzUl^bU9<RDV~kc
z<Hs@iu^I9W!0!Of^9RV3+EegE(5EqTnpou}OfqeZGnIcK<JAE@e&`_{b{pou0zN?V
z<Uyv?s^XQ*pOP`-K!j<)=U^IeI()hlarEGyvDBQZdvae&z6$8`Lm%;-2>Dc?5zu_+
zK&BK-;n$dO1bhRUEbw84u=BA_jd7s||BU4^zE;K827P|$BffVae+F~_n(uFrDYc~F
z3zyKv!GI<Y_&kd5;x2rRUrGPUZjbXtA^#ev1T^0=$dsB=#WOgDa&ADA4}?BN*wmS@
ztV8m(K%XD_$iK%RKMVW?(0scgQ}U(oZ%i;m891QH4?e%*yR0*x@wMdh|1r)t2J$3e
zDxmphL8jD{f-e*tPZ>C_sSJE&#D{zAS9tKx_%EG-ZHli6`uxyG{@n=q4&ZJ;^KFMr
z$*0<xWaV>Q$#}}ZaZQa3gpIfbCm1&+GB$rB{liAIF}@tg{eeM%<{Ji?Qb(%%i<FL|
z3<M!niAGT;;N9i~!n$uIUmf)Mp^yAK3-Tqv6@ccu3Nod-6!9z_Gd4mQ2tKM3jiOF~
z@9G4;vhO5cJM{UXkNCcY{4-$P8RtubOsOLUUnCqZl^NJbRiaVU3GiK;z~}p$<SU0h
zKlBmbQpk0{T0r~v8_1N}QpK~hBsf;(AXSM*Q71rneFCA-g7#4H?u1@H-Xq>OAb$*e
z0chTDAX6$!;pdphn39mnNU9o*qHch<d0*a^@1?(GEpgt3kSl;{K=U3CnNn*C-td^v
zm~kpYsfsk}I&$N_yp2Cd-tExqhhFmcImoXA?SSU}05YZKRB=W-5FV>?R@RkRWx2Tv
zb@^V&8~jt8cP8Woz)^taJr*)0e+qxc1jmmp39Ag2RVG$vZt247|GVVf3cY^lC4V1+
z{0z_rXx^70Q)*7Z8!8zeDh;X(mQ^QKceZxn?NGe_yW+fI$kTz@faaYKnUX(MdsI4Z
zTqLM6SXQA}9lEs(Z|jfJ-_6kLhhFmc4#+!zM*+?I6l9T7_*)VgJ9g}t5}m=KD#hy3
z?VX96{vmmNcgJ~$Kn?-p0nK|5WJ--GcuPye;ZR8QdeB5QimDW=OLuhUt@uguZiHSx
z^pd~VL%tpO6QFtTg)CBvI7h~o1QBVS!J;a~>QYN*-rzqaudyx8TL5_|FcQ$bC6Fn#
zr>aM#p)n<hw9a8wm11@2u0-m8N#1qP>xW+Q_Y%lkfSUo$`v=IB%2UL7Ok`ZBG#nDW
zBMP*tO0l}MErGX9@peG3A9{(G--EeNKp#N!1|U;vOTmk?!ML%(@uHU`c*R+$F;<uE
zP2g?*S^B#Idi~H#yp52XfGYvbdo^TAEve!h99udzR5DKVmISdl9W}-()Aj^np$+Fz
zW2TVWlz!rW5Auh=r|LcWg6^-=p!_K-t813x{F;G&Lx%A%o+_jf8+kq2sPq-xEA1tH
zGaw%f9HQPMpVlcqVtUsusaaViW@yH*-stj!8GrTQ2Te-vI_S{z_0ETU5pb!}n`r0p
ztFYOf+&!i*wDdLJr>Pj?;+4inq;dE`i}qjYXe4|0Kz<!~J3()3oFxoxVdF<}K`t+a
z6UJFga!sTTr8jsV=Fs6C5eLY#f%yO>`f_uZ>p_eQsYlEZ;0GuG_}82U+p!HDU82*t
z3tf6sz)3POK!EweCZ<RU@8~`95TB?^cUl_~qd&dqa~iLag9mbyC}wX9ljY!J*ye{_
zWUsXy&;9{9044e#?5=%@KNpAbK6(HU-?xG<Gt6-<h8G+0n6lTw-eA~3iR?Z|jTQ}%
zgBq~SP5DE%VI@o92_8npZgb?R`mUFLEr%WOeO$ha0U)>cX*~K)BSB(}0^^F7&o)|3
z>CaZ!uE%Tcg?vBokn)Fo(&ewAdd+fJoCQ;}j2AQT@V?B;Hl?RS{zjCKA0ht}VE4z0
zkwL#-yu6CM_Ckl(_#U~1=(elh2i12)Ie>gHa7e=MV|LISMm(ofMXMC|gr=UxdOYq-
zzRF4_tC?ZAq<<TsL)VAvAm0pZO`;cfwdhhCd)$eP@t5|evNg`QA`{bQpdRs~umke?
zzD()=I6?nEA$uOco)~~mF}u6yFBTgm5yvd!cEO=oz~#j_lICerJmpF!#b*iRYG7p&
z9y~R+W@Xh0^wh8)%KgT(*lqxk!6>gR`7GT<<2o%$?{?@Ygt4Tz4e~3%>q;+q(bi3Q
z#y;RHDjQZT#vVpBVrdzx{2(zLGTrz*6MJEapv4D8v^$1j$$arY7_UbqkVC*YKqnoy
z%IXH<fjhZyC)c>pA=UU(U-T<|b@;9J<7~+10vB|z537kmWj<8q8=Ik0#s*5ul)hH=
zTZ+rekY5Gf>R#WH+NHDz>a$d~@$U`?i%p3TV9^OQE;I@+D>jY5yU#}!#Q)@Iu>P;y
zlTKpTv(ul5Yr;3swpkuM$gf^S;i2#7_x1PHG43E>c;Br*J-}BK{LX(^12FCajk+fO
zb^0odmL$rReVpiG0u1c**Y&vT?@jg<mIcu!2x>7L2PJqFf7<$eUbPGC3}h4{N4HO8
zORHR<W0QsPc)Ic*M}u+h5Sr->LbpsX#VVhoimdI89r5TFx*Rv9$@1=dI9@&nLLLGP
z2XyLE-bLrP6oskO*pVaSM=PPGAu>{Ro6@@?LGP)MPY2d_uUB+#L(m&C+Js&@y(H@O
zd8NHOp@W#H{J#eIP2e4+m)>vba$Xiq^3(<MQ3+&!;&$9(k~flYiwNgMrMK`A)4(z#
zLho?Mqks}XCmjd0FV$+*ok1{nkg+k3as-i=`GA}hfv8Y=>!72D(t94{3xTE-dgBe(
zK&T&R+!#|YGFq!Qnw0)F=n5$P??V0n_#}z`>JwuN6-v9Gh$)sOQ`z0B^cJ;B-zm-$
zAx{BjsP`x)o#LTdnH^XXj^W??d9qER)4W@p?y0b<f-7Ei@$URe_Y7So8%HP2Sm!~6
z7VnB~Aic{L$j+41m`nq{<92yW%t%KoBsx*(Y-J0rSdAM?pqnfUS>`r-Q%6PRafU2k
z{zv2M%9KKm022V6wBJ>$>S6)y2e<nf&le<kX!w=BI`vzM<C&1p0nSgZPe;+BC|bsk
z1$4Jl$AOv*(MEqL+7xn|+7Y7MpR7aV-h!{v=~n(xw1t#|cV~;}2sY|ZhypF{R#6v@
zfH<0LAz35;=o{=N*rMMMUl<I9`DPaWV|!Nocbj{Kx!O#+|4W>B)lDExB>v2_-!)wi
zndUarb(3k&C0+7{u`9!cmJY=sgR+hOL@!huL>Xv_Y*e>%jS5HR<HwK1+lhZdHXg_L
zAfS`XyoTb2wRLs1^=qacaTJZ)$Sb1@d($l^QH_l{rEeU5OYcxV9s>DLAex|W$ti29
zlWW_Qpbg^-O5aBOwn*vQ0{KSZmIQs;K0N7Iy>7t@n7BZ64FV_}0i(G$R<c19DHre`
zdRmm;cB!M0?EC@pKj`?0xZk?`cGdeYx-*7<ZM~@}L*YXH(5o%)c0$7YpQA#{LcktD
z+*MvCej|;t2+Iu7fBBo9reBsVoQy;gpJ5>&IwbpXobU<m_)&reTp<Y!ZlyunqTWr=
zfGUt+1Ev-W8%TF&4TzK~bu<@%?7)hHx!Ml&jAEZk+v!vK9`&--_XFlg`F;IeS&QIp
z1eZT<SGkRiAq4S0Ux+D-{RA7g%MJzB(*+5gPAN-qcFJ(0^2tV!8d2d0mcv3uxAc(Z
zd*_q!^7AU>H-L6PCs`inQ0bY5qKUFyhzu??cJwC-BBN4+ezek8_>^h*aZKfA1mt31
z44{)PkNaxe)k$NA(zinXR+PgtAfE+nOwiY<9FnoB^}C7AA^7(pw2GDjd4fCcR2nVY
zkDwqh^u8!XG}nV#bo{ZIxI2%8Z{WXq5?x%7r!pI4yCXv?w2I*3*Jxbi?}d(&5opn|
z(ybE(p2{Kgqhm_Hq(t8p?;$w;9GM?SJ&pc?ieEM46+jK3lgtmjVBat}In3A{APdPV
zVJU1?Ct>`kT<L9r4om5M4Dyq}pA+=zIMSrk`bx2@+6X8gVSE#i*X(348B6A)0c%ux
zJv)VMB7b^9?gRMcd%|R`x4wGK+WOT&lpngq4GfSMvQ0`)x%v&2n+nKP!15$|me<mZ
zU8qsB1P0K=9oW;X^lZj&^!5JjknaTUPNE0TZ!E(l>xwmG5=}HoGqw+)AX4Lu)S~o#
zoS^R~$Ug(FKgaV!`xn!P%v1UvOVrn@^o_%BwSDs-9|kN)rH@W0(!OUC^|dK|8x!<h
z2e}!zIfXu~0}@lXJ3(Q)($|jP>g&vJA%742sPs{2TD$g(>(;JZy11tHWN7VeT*!JG
zXppIR(|`I?@icN}`7YZPAFo&l`AA?9K#9KE-bMd93|uTZNfG!!;4=nM?bND$N^g_W
zLFMO0$hQEusrN{?&Zni=QyNPi(2O+P5xJP*U$$-uv|i{|4F5YMic5K(jNiIvWUR=~
z^C4dhT&~{h>L;z_0YA^=@Du;`U=cNHrlfQK|Mma9IG`Z47s_(f`dqvoz6JSR;3GgM
zU0-mWT2)hjXf18MS6+)fapYzZ=h#LQ!@oY_%!6|&ofhKIl75f+Jqj46R%a>onmDdP
zvK&Qm54MZ3VGx~#)%WE4bP|$(bS@ReSrlqIvrE0|dsyi);hV?kPc^sxOuw>H{f*c=
zz3Ck~Vz>~&|8(jjGxQ2sIyG<VI7`TM3KFTVw~Vj<g?Kw!0yzv!0CY--@2Xlcf%C7K
z#$^ouW(X7Wy9=odtqLYOE_lAsbY~z?SRo!(BGL3c>I~2{L24#lC*m7B8TMhO%Ml#_
z`6>rT;{W&exyqb_?Mu**i2e)c5fS{Swo=exF0FVqUD$*UCLws+X_*LdQee&WGjzn<
zWIHa=X|x}GRr)C;F)5M;#ONE;i9$n6S8mc;BGD3c(1@DO+44P|amXrk`(+<E{$4^+
zAq$|1CI|Caag4`?e3W-pl4y2IYv>d5jQo>1g1!;;tVuWYqPH#l622+>s7Fo(n!Y3b
zh+D_p!kUC{N}tqk@Qb9s`YcxJ6TdDqN&eRX>+W+_rN5z#>3S?{hICWa2h<GdG{bYZ
zG6Pr^1(o%P<#T`8$3-y|*(5$i;V&Pc`T;MBx*+<EQOJh_N6Ys_6<JIZ$17JYjf580
ztX#cz9nNFf#uY5v$fo{0!l)`zozmBopl=i8tAOhg^wD#q(2)imgqVUx_4_t_SND(K
zg8UBfLBj8KeO0~B3~V!-Vf3R|seY`|Q}|N+e%}zt!+=qMPFhcGow%zo1bT)T5p|6M
zT~veVNVg}gN^c!>WIzd>_s@iUHn1^?-m03~hU#T>ceXE7_caccCU#Y8v@5+kp`(w|
z`wHaOfVYz973-rx>riMNYAm7RlvJ~CplbjA8rNG4xdaFUI_WsjQ?^h$5NZb+zaf>f
z+;la#OzB-Gb%=7a5%ML#<w^9eZK%O=8_;Y8CymC|^K7cojHQ05c*=`7TeOw(B8=Wq
z&v!H_o_6Te<)H)ex4;icc+fpvvywcJCE_VuwG)TVKBHOb3%(pL?^7U817^whL`Y)s
zs9f1l4Rv`iInQ`esMAK1(pIIfF+tzukT(HWcc+hT+Q)RhzmHBbpk3+R10A~m{~6>j
zfp3!N#r@8eYgVoj`}*X=)_mi8jL^weM%0KwvK$ocj+cY+kS76UfKJ+PJPlEWN3LOI
zZ)odnY*4y%IQ>fBI{90X|LY-N1YDY+k8CPlEiOl_-~`-!4vO5bGd5$HcWUD)$y1Rm
z!(KF@G&Vx-Qo}+85M`lB@qL`Y_akKc6|4~s=%npmUAelJxZ!{moDSZI;61}=!+JN8
zR~Bsq3CGlIc45}<O3l8(GJY$-rR(Pzkk<nnlJM8B!7{j%&#NjM=+<#DqF8KPh9NQC
z^2@db&#?%CGNpefbPd8g)ULb*`5oYcB>M3@!vej|F4X&>-f!G0o;J~$E=qlc((B(7
zFYgl|PX%Vm_XNL=8{L$ij(wsMbX&pkB6bHE57W~o;*TOm`9%LkO>I^@8==#$?B5J|
z3vg2s9z<u^$y85seVJL*9t<${z<L=T>=UcB#~x&8Q~E!ax<q;V5wh!5)8K$k+7IZ*
zxXCKf;xw~m*hU2$Cm0>H6i6%!up|g%ar#Ppmpm#PBJ=wwsax=^f_x%yQW8E)5<$!~
zB_0~wL{ARhDxW41PdnkUV7Nuan*Phyj>4$lk+OK-k$nX$=ZJnBeU-W$)QdCGu~eUF
zhlff#jo0G&n*%u?=q2A1-%N;$9Qr}%(_v&f))u77rX%Q6`pOgZRYG10tVpKsl!p0O
zVj9}ULEAVyw<1F-f{dU_PpP*d$H2;!{+0y&PeOhcXiK7Bl}E*41?P#P_$%W(TNXuX
zB#28ENZpWljTXgI_<B4pMUY1Tqvd;@;<9S(YUzeNp>7g4eJL=MA-a;{7wt-KU4q^-
zA)gIwOs2PT=}GboQi%8z8n+6?vdD>=UnKLdH9_ACkY5CLC($R?=RvfKpsmPgg*F`l
ziUO4-*`5TI-oiKH{ttyb94MCWb@Ctml-1SHyB2!a8n1~iKB~8<AT)l7D*&lobhwEJ
zrIX&FZ{l7cCNg<k!Z&0!G`A@J%?bQ}gxmsbOTv%(T3NG3JS_w(WG3vy;-r+biJ8!@
z^mZiZHQq!U0Hgyt#mYPS17b~kt9<fdR4b<$Z*T|C&(PiTxN6ngz<uLkGC#_tE>Z6*
zAuk11B+*~npl9ECpxk4uN5trSTc-4EPSA5V<a>b!lIUr`4eh0i(R-;}hE*_EuAzY<
zdFH)P=0T_2HH-?Se{X{R^tUiS49Es_(s962XEik^SBjz9ez3Hku^YLj8{BxgX;gYw
zK!+X|y%O@Zz!rc?7iqr<GNl7sPr68(v8-lo!-|^P<-<lTTLndOh1Xs)j3(C%T2cfX
zy$G$if1&K?0FUnf^mrRG&>PTp^n*;P>vOfVer|CwP30-p+<Ip{`iQv8tMGu6_jJQL
z-7v<R*xQBHt0^BY^S^?)pqI|WXFy&LoTIpiv2c=neo8;bE%~ZX?2c`$;T>yOV~r-I
ze`kXJ_aJ`?d<kg3zJW~X0Q_1kRvv;!1?6X8i45-zcu*TKCSynOp87fIvJuj+vi7)N
zM?+o;tN=7`4P;7P*Q4CWzc?!v_h%Iguu6*;E9P2&ajMmy^->R3jg-9Gp;yQACCIM<
zZvvXP9Wtc@@mEhIO`d~7jnSxhgYU$7=RjTv90_RNV<1!7zrS%-+Hz|+wr}vBW>|PM
zuG;cZ$x&&P^mi-tYJZ=A{0#6spn3lSnbHCH+fY|swNmT{m4i8ND6&Tz*3l@k78TeE
z#aH-loNo-|@xUZN^G$(FX}^9ZvP~woqYUdPVk;C*wkp1j(5L<T9pu}AI|0pi7i3BY
z;2$leNz3?mTPI0RS+R`kUg*`lIq#vL1M~za(f|F{%LKMbhIf)-O%lItRQfBROY1)s
z@_OJLK>M{3GNl9YODu4o(kmz$E&bX9y_)xH$Ugx;1De--U-IrZ|KwuUf)&q;mJgwF
zT4Pw)PV8taBVJDH6mL27YTn}^p9ri0H1Elf576Hg*l~r%bdpxf4#n3BeVT6%<oAG&
z0L}LqWJ>$>GtM?0ZU(U+m-kXMKL8r@Y1mC%p3<9wGQQ(Ji1S7v9}WB((7cNwQ#ycr
zZCJasmgXiW_0w0P>Ob^pKU*O`1H1rezLy|V+HZM{vn_+49`f@-_zA$zIr`~UqgnC#
zKaBHEfjkSC18ClPkSQI2pYaVLx^otK{9~lQo1s_xdk^GR;Bi3nJ_VW5e)F{p>nL4@
zR~r@z*CJhpn-s6_qd4za$WwsnfaX0IGNl9XcOm)(SS+`?o|dJKt-v7{WAS3;4U1Oa
z2$>7TNwut0`rQQmF~1={20R65{#}qM?bq+*>=nPIMI-N|HPE~tV+0H^9>b3C>=c#r
zEg@+~AwJP|6hjUJ;{a{PM97r7?x!iw>!P2uC~~Zv4I;Ap*VOi(Y*@IFJOf+x=@VQq
zEcrG<pXR$3^6!D$0L^zNWJ=wZ??g7aL6%dC&Pxm83>eGIGT~vn;@b;-n$P*fH1dE#
zK=bv6OevLr;}5{Uiiq@Y1?h)A>i?Yv`CQ-vK=WM!nNs)uC9tLN&o@@`?SVec_YLH~
z13v+p?`O!A4xk(_R!@5*ZJ(MH-|SE0d=-#S0BQlv*8rK)e#>o~ZGvuxHzE%KBbd+*
z`^QN?TcKC``5NSRfcF8-`w?VH2jJ%l?7&2`>XZ7}toVYT#rbAKUH}{kXud^|DRrBV
z`syLhma-iVj+cIJg<kFFQ;?qn+5pY_5@bpT;OCN+Yfi!%WO6~Kq!%sF)1r6_KacZ<
zAddwm0F>zee*H{j8)kTi8P+iRZM)Lnn4o_P<XeDS0qxfvkSQI2U#n`DuC1w7Pg~@a
zpG4O#Soy>PP;}I_OXCC?&%MyA<C*sb#u$M?faWcNOliOVbz&{3s6z94EVZuhf*HU)
zUvm~(p1O&Ww+?zW?<J5o0apQ<_gcu54!~b*F+od?Pg}c86xw~d@<LCW;{6zUHLv|8
z?ll2ffacAHOliOMvkPmIF1^qboFx6NfL_hJ9`bp>g@ES01Tv*{Nw0t9d1TD7y3%wZ
zKbFoZ>kMlhc1Bj`lorLi2YNN{UdXPmFs1`&-gL;6y3OB3-Lg`Bb*OM%jw}X@IqKX(
z`pPFuzmI}`&A%4%X}}qP=3ft)(gEc2swyldTCXnHl8rHto;Jn16M8l8dyqc_K2co6
z*sZ@h#0hNmhPU3Z&?F+2A0+(>cEt5JLOvHbAJBeX1esC_ztAaITeZf2s=q7cK5tBn
zy;E1Y)W0YaI(98)sEqUfmniVZQ0}iathH3V)o_c^rtI7UJ9Hd|e2x2)Kp4<=j)zRC
z+w%U)SXoehI!em~>Se!%(gGMQ%<}6|6dX;Faoq@ew7qXYeh>H%(Dr@;nNq5H5*bS!
zl3ygY`}Ed=Wh(!_iQBmz^2NYqfVOiJWJ=wZvqis{l?4^MsWa;=MpZl)eObV`pP4g6
zKd)@6w6`7h=(vWz#TW)K1<>|RgG}i_%IhpY6+i557B81o{^9XbT!}H)_(u)cda0_W
zvY|ozN*CJXt+Zh@D|?$@kGA(c$e#jV0NUOT$dvY9Zhr}DleF&BWL(F67q|09$bSHC
z2eh4cLZ<W|#<jseJRaBv3`lm4tAF@DIkCFBdMQo(^e?Hctx+vRl3-UT`}e{=9p{R_
zVJ<RoJfQ7g1)0)+6z5;Y`Xs@}`~YSDcG#!we;M){z}tYf|6RzGQp8^uT-rY*HeQw_
zWI~UBy3F^Y@8i7FA<qKl0F>x|xAi^=TS9lxC|CNM67>HO@;2Z;K>PIoWJ(9%7w&tA
zmAA#oqTBPP;`RIx_iG^JVqgrQc_WZ1bz2^^f1OynA4;m5A>-Kyy*eLnfqVyW7od6X
zg-q!H{M}~*G&o*RzMGc0_U^^W2f!HqW+uiP>SjuQV{e>)5ab{b0yO_P$dvY*ugTeO
zV>tcg(&_IVSOCC+t7)nAido8k=-2-D`a7Oc1O@?`e<);1Dg2L}^OCf9DQe=1gr=LS
zK)i)nU01ohdf&D_-k{?wP&y|5{hG>pd_Q%&)2jTfgFo6|&yVPX1KEJ~HxDwUZp+#K
zK5vt@Q~rZx{#L*r?eCu<w*fB!+TY!fDgB4}+kGY?=XI4_)%gTcS%u!G$inVV6Go%5
z-~W%e{pUiy7`PPB_Fn;+(tng+zlilo!*8@J``clkj(^}MJPQVl0JQzZkSQHV{1>1{
zBdP@zez|p$?A$~`6aBNW<AOd?aZT3dR?L>=q7J;;t~(*$1>B=-A&a_gZ(`;D-?L_d
z;hkVu6O3lXzc+z@@;^;u25>N-<1!aArFAK;OCu%m{`S9TO-}i-`(C;VKK~pUpC<6@
z_`C#pH}I;mDP?>X{pVI4V|b4-tYd^7jmi%Hzv6aGhCCCP1L!!-hfFC&`O(#Ie)Xya
z*!hI+%N3O0EKW;L;iLfIq_9lgS}va}{of3|+W)&DKLR`sXx^tGQ|h+fC1t&cPDjOb
zI(ie#0GLlV3voFXJVf&Pevb1V1Gy4d3TWQtkSV3`H&#NEoR2D(F0GfH*TfSDW>D>~
zL26R=wSZs8WiRBP0gP_M?6V<L>NYO_ee04oI33Eqa`0>WY9KcNCjmNsr$DBZB7QpO
zFokF3>SgpKSJDw#p~k42C-ZG5^lILBA%6jM0Gjt($dtNmSCX+FjnZP#4Np17G~OH+
zyKm8<c+2ptqvmab{9E8^K=WP)nNkXWQ{@Qy9I|A@dmBp=E{zt8NdzgHTcd8ij88l4
z&~_H%8O;(P1W-!Zp8PV_>E_pHQTD6@x3=dQ$S(pf13GSdAXEAe<A&`;md85)%j3}#
zGr|zn>itwW-=Q*YeplSi6CtkyP6f1`r$eUnAJw;i)5>HOuTI&y6L#o$z6beJ;0r+8
z*#VhSig@Z8uyo1tBP!*MkfcLwLQjX{EwkdhM?+o;tN=7`4P;9Dt#@(OirI@<#V8s>
z*8{8#CT*oBQqy5FU$#T9_V-1|uL5rXn)hwUln%gOY)T}i<R@)qeC3j_$d2=sK|TaH
z4A6WFAXD0}pK-R7_kEfbZ!`32KOchp1n@MVd3Qmkl&YUn5*t5{lUGpx<5a^s6<ca2
z+>SN;zmonIy5qd1kPiZ;0h)IfWJ=xoyC@m!N;Ifq=v;69F;5Sjw<_Ky=+*w-4*722
zK0xz62$|9W<m(E#*N*6JbUTr)E-L-?@Hp=P$fJM~K=XznQ|h*!>)MmRT6Q@0UKut8
z1-Ti$4Zt`Zvz}x@_AQXSjnJ$8y$<rt!0!Rgdn;s02jFi*^{PtRuvnZhyBo);Q@nej
zSM%n0uw4hx7tp+Z$dvZ$ZztA$Tc|e0w*vY!-|3Lg0X71f?*hn_QkCN|2XMc=e4&i%
z9_Z72pF{ou_y?f*euhk``|_K>mg0W9ak%80ofhXi4stcH0?>RXK&F(+ztRKnuTk-B
zhd%A!vyfi_UI#Sa+mI=B?_UC23jcyfNdJnwalV5f&je-zn(q+Elv4Q@IspG#6yIj(
z)BfEK`99!5K=VBUnNs)uC9tLNui{AQpC>)e*AMbwpa{@>BOp^s<zM&!{A*Wy>!45j
zcOm580@nbVZwq8f-TRlomcqZLqojWyL!aieGh9XnkOgSIY{--jq@AH9Eak%uNhXjA
zEm%)o@m4^u<~<eidf*&D^KOJpY5(m^BI~~GO!?8$&o=1Od|yHS9{4+;`F?^-=>Yu1
zJ=dygT(OF!I+Jz|pr=jo&d!YURzt1>)&QD!9b`(~=BGY?bYVRfXG{-Wf;8e30$`F}
z8C`^wA0z#3g<kFN`;b2az63Py*N`dwTmCMrTvAh=`ns!4@s~Mq{w0uC0Ve{Qe=TH6
z`_13D-<rLk{75)IhOXB2Y`OE8K7lqaQvO4~_P-tSN5H3m=KlgRr33K)BrJV^nR<&)
zsHTS{a>|o;et#`_$7RKNkAPeWR0EoKC1gtb&F?O(6*G0`w+R^z7<Hoa+oX6~pjZ3*
z0_5GmYk=l`3o@kx@VDWVRZD7Xl)GK#`iIQ9azLi+Sm|$(FU~s?ayhUN(7Z=MrnFyw
zJF`|q;cf}_^|AY+1sLZr;ctiHZH8X$?{>(K0FMEh_esc<)}<JyD=j^CSxs%_8o57A
z`O(z%U1M12C{2xZed~^setLSu`T9W)0D}NZDX)_kbz&KBc*h&oc--GtdRHXq{RDCc
z@GYSI_#QH)6!{jr64y;d^=hi8OU0ds_!X|0Dp4wDO2pr#+oSt@6%QG9`Eg~<%H^w9
z$x+@&D8;}+aIuV6S#~^Lk3il9JO^mM+8|Tvwp{#=d6j%{r$zZym=pIa0(mk}257&g
zL#C7>zjQV=&@8Q`m11G0?oJ~{utLVO33_#Tza8>@z=MG1eFQS4{kEr_S-ZUv*`|0s
zxpCe~$SZ&o0L{A^GNly$?vs;Zn1ycCCysUEvB(<ihb-<R(0v0PrPZ{fym~i9xht=f
zacY4*I!-*#Wq5&1fKtkO`U_jB2ez7&UFEPr+x17t+kpE39mfYCQ%codC7U7h-;L$5
z-P~{REs^mw^5b?df_xlM2~bKI&!qEt{(IIY-iN4D_H9kD?{Ub_051SKt}j8Rl%jm<
zl194#s=E-+in|bB;?x7+Ucklj<~a0JRLQvb3*vDZ4|ygq2hhCpAye9KeN158LU$of
zq<+m^n6?Cf`6^}(#9I2X=SG{CO8#c(*X7Ayh-(sHB%t|&kSV3`d*2dI&xX<}>#>`8
zIyB;`(UVtHucpz_#M-I0?oR$Axvh8nXQKKRly4Nly%oU);G*hL2y>0{YU$rP*suNj
z9`fITpOjB2%iaHsSF;W8Y{Qyu7|qK5vYv7KpM?A@@B*Oo=S9erQq_0t??zXSohR;z
ztVkYj%D#BC<4x$lpGi683FCmX%;MPX4a2`o=1*a-xPR9`z8<&%pp-Iy7X8n8wbJme
zG^~}v#wO**#|eI<^>!IPAP3O-ln<Fwih86g$+Ft|s_Nxc)QVIi2+6O3I}~pP^y>0`
z2ILLEd4T4<5Hh9xwjcYj?t2YPddio}eA@%Pns-nimoWk;1~hL8WJ)Rg-KR*_V{kEc
zzSiS@@!}^to@4euN0)fpl%0*RL)*Cv^2@-hfVT5Z$dtN`&wt;_g7T=o&b$SU6=0kl
zzs_7C<5|=<Zs#eG8-cR`ZRZBalv3C8gb4$>H2nubO<HGHN;}(NhmL3ee#m!VG@$J)
zg-og2{y6IGFJWat#kSbw+z${{z_?OA3L*GAl)a6xN84N0-(?&O%muW)^C46EcgiVN
z>Zy*EQ#y#3QCdC6zervkCH6{BuEffRm}0)~C%7KMx<yGps;{m(DcMg%%dpS66|0;z
z>~EGB>hJL~A2-8q9hW2gF5_6B0?=`(f=uba>&5>iQAysc87(R<E$~~%<yput0lNVm
zmscTEN>N^P&BOcx3^gqjO?bjs&v>&BhCX7?C!V0{e<02~4f1@T9MHTAAXDl#Ka#Lk
zlwt5=;9?B!$wecUCp`GyqIjF3SNq!v`DtJmpn0EzOes~n6A8y}04DgH^pYT0BmFHL
z5a*3Ro(9YUH1Ax<l)7(6lCl=mUB<8jy?8Y9aWo5naf-eNC={+z<sbUB-}ga&7<d%W
z{7*opl*;dtu`$2ncbB`FdDW<ReFNjXqaaTNrU06EI%G=S`<;xnppo6k&R~tqIRle%
zUxMR+ae{eVtixZiTKe4t{o3!lAm0z{05tz2kSV3|yENu@r@^+I@_nA_z;k$t*E1;2
zTLd`*OaL_RL69kR?{_z>aQ)u6>mR{&z^FA>OV`_KrQaK&-w*xteC!pFw*WT-n*TP)
zl-eiDby7N}$k*!n`r7)2;zO%xf$E&Hqo=U4Uby4Bnc>0x+`i`V#8PA~h&{hwS10*8
zpijp+b1?dYKrTRu`n6r-t9Xir3t_>U`jxAf4=av6)eXV|qo@Gu$|?OvL6=_drUvpU
z!0CYY=Of6Jf?dWf8%|kWRa`WD{@OLw>xLE2s}(mN3M#Inlj&m&kGfpV*5m3tVD<Ky
znP#EwwX$d>)Qn;)fW5@s9=B_#Yh>mKo4JG7wP3vMGV|?pbCx&IbD%xa4%q#~+V?}V
z3weP!9$*JDvCL9hf$g)?Z0yEnV(rWV(`IIGZ#rU!>Ei7)U)x_V;}#qe_iGm9!+~P}
z?bmN0Q}U>Ms))#Z>g?Cyt1$#b%h(l^{Texz4-7)CUCr)iSQ9be<e46y4;w?Jd(0kb
zrq`QkdVBXQwA0-EVbW=MT-~QDPP?*eCwP6}rSkJC<j;Yx0c}^tP-$1;A<~{1b2`~|
z*y^h4VZ}3OvROgJYQ&n>pve+QH?CzrGGlhY?1k_QF*7_qyBLf6nYPd6<375dKgAkr
zg|Rkjh~q$}_68ZR3h?T3Ru6eSa4w+jx(_m??|v=qIa|G|c$MQ}mSM%^Yw4zbK^t5B
z0%L9LUGoL3vvxiE7FC1=Oeeq4%<%TYvX5S$H?sf>3OHUnJs&ywoAd!a%>f>s@3jYF
z1xzw^oE0`lm`mKf*$_6D9m?`;X>$8oX|Jy+ZtnodB|rqw_MQfr(!!{;ciUl|;wbGs
zSZpwln%^jD{`c$*FU;MHTwwuEq1nR>pvZdrV7WYZu8pn6u!x>Hw7|^6yE$f>+lz%f
zy&3qlM`5<zlQZtg$jNrwz3kpLvom4ua6HXhhBbi>wFdB9_fS`CRU+(LaI*Ac5A4)&
z{}S@Q0N1d%A7RLpzFR2mU;3*geqi~m1#;>8f@XG(iADdK+43zYde^gyUB>NZ0NdAi
z02`+FO>=pRV18fI&Tw*iXIevYGy9re<V8k0T;PRSFnp|ax*23EtRCi&G#Pi_Dbn7J
zut%5Qt0DgmxE0WG-vOCY*+J6IF7-;ry-uuwn-iRc^(hCArXqsJ=HGxxX=1HF8(SUq
z%>!>=bFw)|PDE)|{GQ=){(g`nz(hdvH$bMe@NmihU9x-!zm8WsyMevUSUYQxFK3!>
zi!%GYg(pr%p~We{Bb$yzOBmW_sg>p_FpJGX(=jKzc-lm_Z99(b!k>MlV`q-&;iGVk
zvZk_$mJh97xo5n~XC7%^!>|{m2&Dfs8OJtdC$$6bLjD%m3ur&eM@T>FRJ*irW<tK#
zp|(x0sjghTmKGpHp5N#adA<c%PnrInZESS~oS<2X#S^p977Q_S+`;sGAKI(DUcDxv
zmEygy2rbXf$wHmW&dNgToSl|s*%{t+JHzJL9J1SM+iu&%UD;T894?xiipI~Tx!7D}
zE_dac{TSEHo8db{`n6TrO@7@2c?Zx6Xuo!;&-MCY`c<?ev;bUj30%tY5A5%OBL^An
zuD+%ZO#=G4MP^of+^1ae6^@i~BEG?pM*=}W^G#HrYn~=`9*gtQ#uhmhGZuTWFz;ex
zX<u^?PFP+WgmV%ITNK|$=+o!REs$>o?f^93gODk8b6$xasm_>Db;``~7h#9Wtp41%
zkwuNUeZ6@;Z+d2i*%SOTEFSCM`x<3@J)`3M0mvhP5<v6Mg?vE#u~S=4a1p9u;b<=`
zKxd?`ZwA^otEX*e__QgO*#kL$h&j>}rxDWMqU_lWJ{^xcAm0x>1ZaC+fP5hK#KJK@
z7LJo)P~Qxnm1iL)nb^B?peO`WO^QnJOc{^D;y8a0@<gBv(EJsU4}?D!jsh&mz{&?<
z)cZ!ZgBiP7AiEIDvuBx^EEC<0Oi!A}o7a<8e`ID~MCC}c2qWUL^L&T0s|CEeoqQVd
zTflpOwrk{QY1bgtuIF}c*N?=Cg$LKyuB{tZJas887hBMZ4R{}6td$)l{@;lMFHWoP
zyNu%lW&v~M7nnTP<L-$*7FsR0+vmaRs~%X5rG%Ns?aR#T&HIeX^4WPdcaP#`2D)1r
zcG{c~R@C(?SFTO%?H_Pk!J1(9XA{_w?qbpMx1S~B+z5MhK5vG+1-J>&{`?Vgia00u
zGea)8nG+m7+5-n>8ar8Ew6da#kG8T@i4UGFdG|uE=Jf?##sFX_pm`TSrZj1qY#(o*
zn$S)b4Nu@DkpkJsPN6HDDE-UA3IAsHPtlp9AmW^e^)W3^wl&x_B+KU-Y8GXhnT|Jo
zPET)NE95HmP=mMDnq`ht{gL1~(#~dO2em`DLB1Dw0MK?mtUlN6kbaG|L(~fSdS@|T
zaTbN8+GsYb4NQL@CEL7a#p5Y)8ROtD@$`V)8}I{~rwB5o9c3~O`uw}Hws^YShNYl|
zoyqRRN$wVQ6T`Z-0dpNWRb@r!Ok2J|`cnrz<%;JF$eVy`0L}9mWJ)tCB+s*l%2)8v
zb}v}$LvDJFa{HMnO6*?wa_A$1`enEAjUAZHr;eS*$A{cKJVm|DK{lU3-Ku=MZ=r`5
zW@HRVADv+zY|hRfdI-+G9?SN4y|!Zy^f*qwZy+{c<2<dzZKp^1Vbr6YZoXq$)oiIX
z$R6ij&qOD;<vi(6*%)ar#cdAcV}Ke!`|~IDxy~2;3V-OVL<Oh39~y=$E&SWX&^&Bq
zhp>BGW);gr5B6Gy#gm&{hrDb~aZhokc&2!#>~c>rC!WVAerfjj!p!^9G_SSt&g14r
zj^_0lcit|y{gOM+Yxl_W*m-%5os;Lb+h_&mapqfg?6hjMT`280N^wt3<wsA*Q-N84
zw*P#{l%D9)?^?ThWmWCc>d|Z0EE`umqnhOC+SMpo*q!=nhT`^XAP9^GdICcMKM;|}
z#;xp9%h-ku?6TY*bbHc#+33LMnHjyU0bXPZy7O+Y+ri@EZfyMFF?(4hoV$kEz0hw6
zq;VHsd73%2M=!(pqiMZQ=8DvDvGi*X?Dpdw%9p=G4uo9B5J3BNJY-7xdRmv~Zv2|F
zT3+)0oBmzl`lbEzT`K+C4*UJEpZt3h^4Gxkfc9@l_<;SJhb_@4?-G1eOG{+q0&pY{
zz;*Yn>^0MP!a|oH=cpVr16z>Tz0Cn>n62dT+9S*{5nO-wwsLq@CeJBwaa^pR(A~|<
zL(Rj`0MuP3?XH7ey1bnS`Fh|cK->K$WJ)Q^+f1ybpHSXPQKY5;hXXYLhp|s$X=FPC
zyCn87vl;C@l5S>UQRQr#<Md^_=?I0+%;ub9{dz|pi+9q{8yII@M1vqmt(Qx?iz4xO
zmqDHj90q8+uY*h}WqG0~Pp@6OnyS6!n*mchu%<a}v)%z)u^s$0*F@X$((W+a#q3GW
zh%Bs^?do9`x?!se;T~${4&)J6*dAnK|CpY`c*Nv*9gSC;(;wsL@)?^<YoIU(Hyxz?
zAHzO<J?I(hGO~dJK-*shnNrtr<4*M<W`9Ca>Fmb??hFfStRLhWj|*Jkhi5`kFM9Lh
zm=^(FEW8+s*KWKp$~H+qT41N{|2zu$S)dKje!LEu(%D_cm6RXFa~fvgu{z3toU#!Z
zb{R6oW8BVG8QFbNLJF**9ML;8Vcp~w#alEk&N~6}OkfV6c@Kx2ns**n&X((|m4y}Y
z9qeS|Ui4DZaV0I7kBTt|e=GfMhF<OOpCGpaPXe0vZOEy47t~=IFZ?Yi3xYNWh)hX0
z?qJt3<6kUbrPCSE%yQAf_*qy4-t-KmPWh>@1TRLLvZH8xyxvA29|kN0v>h8DQ|hMP
z7O!k5iHK4kMX4VQ<N|Az>|jx#9azVkWgrwiuoilnJ0s1L?bxGihiCci0JeGPN0-cL
zW&zFzb`MXXlQoKZbpK^NLKdLhUM1tz20L{7@)qPDfS&+u=g0~Bvr}x{ZTaTIwt%wp
zc)ZfNi|o7!>j(-veXx_ey~566wo{lEvl5+7H?DAnl|^Lb8tYDJCB`qVmUga#9lAbV
z2Kg4?HbC3?BxK>2>UVZIKOvqo*HzW5U5a7Yd6jF#xJN<7CK@Fj1q=tA#aOkUZNa0{
z7;f^Jqs$|%4D{i%TqDxB2NxOC4d2A9Gvqi(#Wm6{-$Y#Jf|$-LeMknvfVOKfWJ)u-
z^aFMMT0=vKR@p5K<*XR+0fkc-EIAt+H)6kwtPCd;Wi5lUbA*{Y0D&6i2|1%_15!_Z
zKdVQ7o|$bJpE0W^@zh-_?b-@n9j|SW9|Rr&v|Ud_rqni3_7`<OOWU<jJV#r1c&!Jf
z)EQsm@_!!nfTQT1<HcxKJibZs`WApZ5(omCrwlTs?%J1ywTIW$scKH`%K)@5Eo`N+
z7ldi3XfDgK24;fs5J_Bqo%C-b^y+$k737<Nt$^m;4mmaNyxNnK@Lp^s=WSKI#^g9}
zF65Cw37~n8g`A3a!OB&2HPy3fYsAH5@IK7p3ibr@fKnhA!*DI^MdUp$2(moBj2;*|
zqP#COZ9CnU@8n_>tXGeG#<S8bo;83wR32Lx)@c##kAI8Ge`N=i%X=X|5BwF-cJ4kz
z+S#PWwQ7!+<v{1Z>TLIKF^Au2vKI5_TbX!$Y1p0U9N)!$|1vW+oP5j&Cxy+SxU?N-
z4s~(MVIFg+ITRPRj>}^~;@sod9yg>k?sd4w11X(nIJkC)l!=WH(mffFvbfL5^f-`u
z@N5TeL(1W~P7hBuq&%MQ<alx+74SkQ&yx?SCkD<6JcW>OIqmfH^n%ov_j7uC`atT>
z{Z3y`KS%*S!0GStLmJ2jIROuP1Vab&A<jV0AV@=bku%sc1kx}*+!^XAf;57UbcT6`
zLmI`4oe`dqkVf;MGs;s8sf3SlMtg#gN_ogB@r;2K<`JjV6M{6Bk8{GF2&D0Rf-}}L
z4$?$E$r<mN0BJHm$eHMw1ZfH{b0&KZf;5#+!(~btr0INyGu1N<(o8<fneLeZ>0mzF
zndzA|)a*5f?+6u}frmo;;ZWENJQCuqAqQ6gL(RaWA^up%aoGrX;PDWDBIIDa5b~2D
z{#3}}Hi8~_I>dK|oHQF@5BxdAcZD2`FG7AM#Geg0nKnWncrL`B4>?&jf**Jx#M?qn
z4;$eR{3XO+3^_SAG9d6$i2pU@<k`rAz{?@NJLDAD$b`TvA-*T%^t6!;fmcKPwUE=>
zMn(i)5AiobPG1{Y5qLAi-wHYXZDdB^?GSGdIRP8l5qKxW-winfZDdH`y%2vt<P5fv
zC4mn@{KJql)JCQRJ__-VL(VW8*%J69#6Jx=BWz?$;Ik0_JmieBku`xYLi|f=7?C-F
zuR^>7*<&Mn0$+#tHzB9gMg|4G4e{?nPS{2k1^yP|--n#BHZm#jLx}GUIpb|)Q{e9*
z{$t3QXd|Nn{|ND)Le69xSrzzai2p0(OtFz!fuBRXG3-pWkzIi^!+d?%nQkM)0%wK!
z*<oj<jVueC6XqMj&cXI<$mfRn#;`NTo(uWBFh4)+9AeLdd_kCB7<T5{heEz6%r6c*
zhuP(jFA4Leu=6WB3i;A7zbx!5uoptUJj|~MJBQmxK)y1}H-()e?V}+7Hq1ANoulnz
zAYT>cSBITN_OBsd6Xw^3on!6eAYT{e*N2_Ob_L`uVcr~eD(xkZZwT`n!%mgG6!J}B
zeskEVwwFQvU6|hzc9z>KApbthw}zdS_VJMa5azdrofGUD$hU?0?O|t?y&Cc#!~Bl0
zQ)|~jzB9~Q!p@0yJ>)-y`CVbB!CnLT?l9jLcGlV_LB1!<?+rUA+v_0T7v|f;&MEe9
zAm1P64}_gl?b9GX80I^|&VSjbLw+dC9}YWb*o_PakA!(^*g2Eg>*?sxFn=uUoW<<3
z>FDt=e<JLh!|V-o^kkSn6?V>L_C`8-I?Q*59c-q4J{|oz%y)&I3z&T&9X%7~&xW0g
zn0+xFJs0NBhn-89-9$$(gn3)oxs=(L(a~SR{Kc?yIkT^zqnE<`uVLp(W@9TnREsd*
z9d>@p?9FuaN|^5nJ6AFLYC3u~%wG#T*D(89I(j|K-v~R`G5dNtdNa)53Oiev-AqSs
zhk1M0xq;a?($PC%{%+X0iP<;P(R*S3e%SdPvu~lJ55oMzu=9InZ>6J;!u;c~^9N?%
zN=KiB`KMv$HfG;WN1uiH=V9lM%)Wz;z6kR#!_J+|ZlR;E!n`Bw{E69j(b3mo{!Q4q
zo7vmw=-V*=F6`XH?0f0xZ(;s@*tw6{+v(_sFy9+??q~J`boBQy|1s=5$m|_-^p7zA
zDeOGN?1$;-pJD#5u=5DBTj}WMFmH@Fk23o)Iyy7L*GHVknf(MEofY9{N1P{_{S+OY
z6X6>o&eP1^Nk`{K_{NCyXJ+rBqw^yC{D|`mv!A7-3nKi&i1Qq?pQodXBK+cr^8&Nm
z=;)FNZ;Cj7VfKr3bZLZN7I9u;_Fw7f@(8~o;=Ii4-E?$igl~#CuP}QL9sM@KH%FXT
znf)3aT@~S1N1WH0{RSOf6XDlJoHv>M79Cv|;nzo;x0&5eM_VGiIpVy-?04zth6ukg
z;=IS~_vz@S2){Yve8B7v>F9S6eoMsph}j?0(eERCYsC44*`LzUA0qtLi1Qh<Kc}PH
zBK-D<^98fNq@zDZ_#F}FD`t1l(VY?A5^=s}_BV9&rwG3*;(W{O@96062;UZQ{>JR@
z>FAyazc=Fi!0f$rbYFyTk2rs4_K$RQe}q2}asI*VpXlhp2;UKL{>kir(a}Q@{&2+k
znc0nW(s?ApTO-byroEny9*ywFBF<T+eKs9E9^p?!oO4Wj106jX;ZH@Jb4`0A9X%c4
zJ0s3{rhPsg{W-#SMVt#v`$9T;Cc>YMI2W1r#dP#sgg+l~E-~#U9QAqu-bQf(yfeyM
zqBsHmDa!APsuSSdQNAszPJs7B`Mptf0=zHEw@1|p@ct-&AgWG)4@UWps5${Y6y*;`
z)d}#CC~u9b6X2s!{#aC<03VO?C!*>E_+*qn6;&s|r=xslRGk3-9Ob*B>IC>qls_9)
zC&1^T{Q0Ol0lpCBZBcas{7aO-7<J?c@TDmKYgC;8UykzKQFQ`*CCc|i)d}#`D1R-g
zPJpjR`5RGn0(>*d--@ae;M-B&9#tp6ccT2=s5$|@7v=9q)d}!}DE~03PJkap`NvUp
z0{kS(KaHvr;Ac_(c~qSMzlicLqv{0sRg`x`)d}$HDE}rZPk_C?jq<bWkvHem^9}XL
zn{(^=#(I@E=hgG`>s8)dP|q){S9x<$J-@hK<;^Aays2L0&87AHvU-&_m)G+v>Q&xc
zS<g4s%e=||Z9RYOqzM@X>3JFEb5^h4*4vxvb4=T{A6(uamfGJ$_w%*=srjWof2TJJ
zwf%hLe~CH2lw1E_&;Co|zZ;{!mG+ur&;DOlP~JTW7oPLXbD4QoKQ`C>%?f+2_v~J2
zbDb~UnJ4+)W?6+9_qo#xJ#Y8qh1QGMN>W@Gx24Szue0aH$0sTvp8(VW`ug-#$dtN{
zuP!-dO?3k%yvZ9|!-`|K84Bu7!9>x)wduw-_9!z}1Wd1Im8(C|uD0gLK^y36_DcR%
z=-1;1FGJn~yrDR0D0_C7@zAck^Tc+|`5?<TPRqx*x6<pMAJ;np@=RbZp#7?VOsQyw
zyxv|jUA}hJzpx(L#mNUo3hEZYv+`Om$ev@y#hAjCY4ydniykZ2^fI0{hwiX7SS6<L
zR;V|c(xsm*;M4bQpN9NA@FJk?*$tUe*Lf0M?TJ=nhhG{67PpJH;db%ufDyY<+^+ci
zhsN_Y0{LKI9-#R)L#A|^@_(J0Pt%oedA-=Px1fn#V_w2o6T2BN6oGdv3;_qsJlt35
zYo%Fzy)(@GzOLbzQDgPNy%kRTa$=T@naNp}XM{Ni^Ji>3*OgI#;dMVI<MgrJo?+RR
zJ;WYt(}cyRn7PXIVKQDnw%jUW(^#$;M=5t?{5oK-zR$}K!!tlYA)x&k44Kl%F7p?=
z`g3GGb_=0V<?`Rt(|j4Yak-6Q45bN!jhL5d;%WuPOfru$$BMEV%#!?d(67fAFM@m(
za6O>;Z-Y$fY&E}Ck9#KNk5`s1R@~T)6{vqcX~$mhXgjjYUB)n=7|?c{2AR?xHD7YJ
zx)0sejwtr`o>gB<n=fL1;xjHWL9s#nznHxsa`-FTc#Q0^dSC*Y-MgPV*L%1*3HiGM
zGt)9@TE#$DAFp=+AI-!Dx`XXOre|~y+{&?Ys6Jrp`2m<gWvAPDm<5=bWngB5wTZD?
zn0o>1<I1uIxu%Fb76#`?|MtLsKi;76vQHrY4fqkz{<(i8{hQb2zOM9dRpklQ3u;!%
z`v!Fv(UkQp(Gp>_eS>RKMjvxN^HFI#40BNjnhERqw<`XlpkK%LM93EbmjRl;6*8rT
zD!xT?leZh9oQc6(-0`m$H~jCH^Hl=kpq!?wY-6o1<3<;iyj&Mz%(BhV1Jjwynvaoq
zpJjV7{emW8qy^Ikq|I@0YG00UpN@GrR)0hpM@D0wjGHeSkJ|{y5nv*q?LGuDrLOn+
zx|R!J_cS!_)W(!8!ALNlLWZ8pjMp#}oQV<8o@O6OKGvLqxkqFL%4fc`V>5VkJ-q|+
z!@%Q!w&NYhl-`&x<F-+adv>*h%BQHN_fR#R2Mj-qPAM;#Mw2C~s&9svc<QkNX&LF+
zxNA4q8j%HK&S3~&uDMuDcQ7gnq+P)Ual58Mjsiyl+O9u9rc~bL{(!V==80=7YxH1o
z-8Cl4)$zbyhQf6(y8+V+(*x$Axb5GUXAQA)@S2l_nWAn_e=BXGJuM3pp?zisrX6_}
z3_K<)klDYFIkKmBh-a|37tictj-p+sb6i7QJ?tEh!x!dO!H@e)a}P7~*imM0#MswM
z`mtBpN%h0M&}H-h@&N6}AjrZG6<2*fLHdy}p>PD|m1W|d>vp!l7(f}D?(w?PEi)Zs
z{C&;Qa+VG5V<_G_rI&cmg?t&X3DCSZs?Rl_ewDnjdRa_+Qk96ZMRyr60E;|bWt@+q
zRp|C&4m{Y0$dz)08%De0?@;=Q|0l@lhvPmlp!tVFPVKiSO*CcYc%T67{sXMsp6JfE
z^V}Imi&_3AoA?&Xf0O0C#WHBtNuwCZZ|N=LUI+d9KF$Wnmjasr&3_AIN?o5nSh98*
zrpy!#Ur<%KdUbWZc=UiQsW=F?x_*WE2|L(bOq@x3y8GCp-Q3lOYShVQiEJ9{`bho`
z=-2%uegvNJ0Hy$%fA*1*|EFcLUhS<>?NV2MG6V(;XtI9vTw<{%Yn1qZGZQbjTH<A|
zJi1yQ{TWAO=vf8EdUK4K>$WobP0Gw3V9rEq;BohG`#m)Eg<EOviRQ7m2a#oZPBpJ(
zcFu2TUN~k5dQ5j7=G0kJZeY3Q^|*(ZT|Uel?s4}s?S4MXgZoQ`1Jf`O8+UPig=y({
z9>TPvS-3<U;^~`d7qTVp?9uk{e76U;G<rc=fL|}iduGCW92fC+md_i&9pGaz1u5UO
z(?^>j-0duM<)b~#%jC`M*c+JVMwWjAE7;6D7#nP2JujjE$6mrbO)UQsR&YM<=;WK3
zt}N!s85>tM#D$T|L$g><)3aEt1^5ax&o#Ywv$RG#yD0N0w$i+VnakK6Ec>v`5gD~P
zgFHp<!!uW4az`IeA@Aim!#d1$jG8=71*J&l>rUibIS#2@zY6&q;0HkGYtB(JU$?6B
zO{`xb@|7}k-pbY0Vr}M%yXiLSne?v`m<D)pFLejoU>RHOBIMgh%yDp8b?H3YG*5R=
z&zo*}sg*q1tT+E;%7)xGT-sHkc*(9B$o~a20oty1^|`L+`c;<qPE*7-+o*8=qA6lK
zSh@M5$v!gCtl8#zs$kpP<>z2xnD|>gWv6?}N8)JWiiuBIJ)X4kp0dn8+IcI?m6#>w
z0zP!-edM<Nc{|<qJv?u<U8~-w&(3zknQ`WoGz+_9l=P$MXc<59BMf;8FaywjEK;9q
z`}OOp$~7y*OgAzA+VX9nxnbOBWtTByMh04QdW^?sx^ZW%zYCLKso}bSnfNbLQ?caV
zs`L~8-H;y!o&q%gbLw-=t6yXM)K>cYp|K8O2KZxa8s=d4HHxR@Waak7Q;V3<t|&)K
zKF=}2-$vrghujnBE8i2GO_#`aLFmUeT?-b>41ppS{qJ0(7jAGP(N6Mu|9HRBTL&Gw
z{o4rn65w(``>_c!rLOH?;=Yn&gZr%Kw3BsN(5YGR?SVec_a)@7fxjt^)aw^?Vi}J<
zr&!RbUFjXSC_c~PSCA`!YC!vOHe^agUHX>|YwD|NSD#c|O+A4*;@RTqa`{=ycLIt=
zCV;6S#x91%ZwF<VS#FvS;>CS)FaBE=W>xfZY$uIpI<%Z<o*==$#-Pl%Ht_m!O!@W>
z<Q~6v8To*=YY}8hUHfm^uK0G%c>LiiwuK&fnJ@kqi2sL+|Ch=Su8}VzwqWY%F7_AO
zn1`p4(2k?2&UE#2V_y4k78&Zo&2U#nUdG65Z<e1;$ToY9?By+h)XPk_&5`}>0mH2{
zOlCCuyR1BFJx(zz%wMw#a}3bTWP4IkD*bDL{eIX_{_TYP3GgML{o8n~^lx*Q{+ITz
zX!ug>evLJVh84>TV9WO=s)CNYuMBcn9p8hx3cp%yV?E2j<PqEk_w+D%o>gR9c@bBs
z+k-)2#}i6(r;T^b>xFzu^W>S<3H+q~=P~m#R)`r7nJ!Fg$HZ~R<MhO}EFJ`M<9nD2
zy_TP3r{f(PkMH4B;Y@VRv-6x$PKJXgOL`2&2YxgQW{(m`19%#qGBSA>^YwCYf^_jb
z8)qgwBZGw&O{)zB*&k8)5C8T2pZ6eJ$GMC&K*#4n$dtOyQ_}INr|UUdEDe>}@_kC7
zDFQ|SM*?$zLBQQIG>^EA9eDOkge50$q>brI-U+U;m@R)jbDhUL;}Dw3uJTxD)^gnJ
zyPV;i-bcm8<ECpqmpkwvGj}jEb8ruC4~|Fa4E%t?G?>CP&Xs15#zp)24AblK2A2#*
ztkO-_C_C34;5Iq_@L<RBxYEH5xm>%@%C?rdxXW~{M0dIXLALAyCu2CCX>?h?mr*c`
zit(zwTO2P}Lm-EN34o5<caSL^K)DiY&8ZEQFf0Bhi)O?>VV>bdSvrp!8?1mgFFV(r
z+21_E9++X_`2r6*3R#%aI51<7ot1&<AiPfwz2md9@+~tr&D$#@4U;AUA!`nwn~$dn
zZpY|?i@7mr0@Lc5*W`!uBZeUOZkL5Il-$X=crM9vE^}>Ueb6i7nE23txSeVDci~AT
ztI&m6soNQzUSKB8VI9$fWm?|Z_EhgcH%3}`4qBO>X+y1h5qa-5EG?6yd#D?UMT)lC
znA`}lW0H(pSw+0O9S-?K;3PoDZ7XC-OS{ZV(&epkP3^KssCr#xl`L_O(fM&Qa2U`F
z$N@s49^UUVKDIN=0q!2SfW-_dx8rp%H+m4B4|J?tm*W|m$uTVHH78iP19LNba*U_p
zGR`!&!I+kVq`e)m#}9j`{je)BFB%vEXnT)>Oi4e_q|c*?_Lh!`+xsxtI|<m=-feh9
z(A~*i57`@ly_v8#v$MVF%HBq4Z(W(Rw;A^6`rHEfW#BbH+k5yDY44z8<@xwK_1f89
z>ZmtnU26X9u*R%yF7fiYJbF{Ugno9Y4gWUX_|iSbEb(NG9EB$pZI6ZNIJp>4L!&j-
znmw#9@72gGH)iH!;-O8iYg$k4Yh>eH6Vfo{Co<lgFmuE_)6MXl48}-;c=`p?+8D=W
zw9qirDjtUZujR(vB3u4GCy<fLY+jNRrc!l?dAZ9oh4sa~=!|J>MA}s@YYOX+Q=z<w
zLB7<@l5yD%zja)8LjD5y2GDU?Rn;Xfi)4Hf<096B9MGI~rMV@GH6t$K<qLWArhEx*
z$)dP?hwBzD;}T4W3r*(w@5M!ENEMe78JFL7ip$k9E*MBf&_t@6C*#rvzxBA&`;fl^
zz5{ez%%w6eg<ZxMbzI6T>l>=|380|j7<B%p;_7l2dzcxwdje=<ip+l2G`awpVy%_u
zW-=f+U-FkjzwU3H0C_F&8$k1~hfL|TgJphPab)LwDH?w0+EwDQ`uNlJ{oBkd%oogb
z<5~8wX%vq(&oRmG*=C7(Au~sd@vFK+mH*H`4*IEnzX$mr#8(~X|0`rlxfPOkkb3Rp
z|KV8u3{|F}gPm!9#aIXX3llFJ?XN)mEc>U&I3nOhSHPR?$<Hz8p=*}ya=CC(*~9Xz
zG>^Bfbj!(4%Sg+xF!SC!(KQ@TZX7y1-8qCGx5*snjOWMMC77mSKFsWc(W~>}sb<s4
zz(cQRiuVrVId0SI;DLNMlrDBvq@iIKO49hmG<T02D>nnzwmc70;qzTN_D}~~k31xP
zdO7n_PhlWG$jm{1VXiq0J%>!dw~?LXTgwk7&b2uw@!v7$7Uq#ZI?{ERcusAn>HQOP
z_eG66g}=|(G1d`gi5&hiI-)YZ!DaFIPJ_G}XaIEnegm1(&MFz-H`HsV_|6gG?bT@R
zHGgKT(QK73_c3vFi#+;4zAXG%g#5fr;{kJ!JJaMvp8h>BYqG#)4zM%frJwg7gv%Ef
z9&8_mi}egPh~+Un)6|FKaq&T{)H~SBbo<Z)Gtr42HHC*RVwmc8BBlV_nHYO6;l&p*
zoFGrk#8^Q;-q&XR{WfOf7BD<;p6Sj3%ZQEQIZcc=Y%r}M=%$uhK^NMjdzp6<!=xwX
zOk$Jm`Iu^x{eLJs6Zoo%>+#>2yS|r~<h|@HAqiW;7Q((m*g+5?n}Dbwiy&Kspt#jk
zaj9#xYSp^Ltx~lWTdj6cskLgYRcx(QY?WGVtzD$8e`{N7|KD@(oxBhT`kQ>tyXP&L
zbI#nkvz$50c$F{K<E+P*MeVin)a>(c4*0deR{+yqzXg{vdT!KSsaVf$+N<4qbzvBE
zLi*)i^^E<b!e{X+%)hw=q6B_X{m-{*#nd^?i3!&1-e|8F?QaT;+hzL9?hV~iij|}7
z=OvsvV%#|T%L?D>l#PNNm*&%C>R0)gTH3xVkN0Z5Tj?|OSbe^Ix6(cIEc-;%G!x?f
z(0pPf-{|$(`E(BWJYWGJMfO(@bTaR+5if-0<m=>Tz2Lo<^@XG?N3?@>(__Al>u;ql
zbKdn$@JE5~1E&362A9(Dyvwv7Z6;?EPI@VGbP7TntQO4IYgjg=Jgsw_M2^kUlFjca
zj_iOdPm1I!+mO|h4FjJ9OalzvGr*-B=8qrm@7mqB$=iuEB)YQFh6AF6&O?LoqH4h;
zm~*dgVv4Rg(8@4`WEd>abUA)dkVco)Luc$D5T~4E!p{%A#Q&(A@^H|tJ2~QWFMJq%
z-Yekm0DlAwpUX}=I-lD%oVvbg;rb2h!U3=HPdKSojs=1WVR9c1wyG+{oq@CNI#rhF
z;&dfiNH@FEuFzfm;zTlsuWUP~px8+dvWKT|f)bzpV)Xg8PUNJD@SEj5B5=Oxdp0({
zzPu}B1;F@;_j@^BJH6O947bbO0rb1Gofl#qQrN(&A~|;>hnd%&0)H9!C1B+IBe;}Q
zC-Yk4wzcav?3}%Q?%M6!7p)IfmywS{KK(*A+%MvbasivXZg@wf{UDv^rg>c0V4V_f
zvYTT*>NaNEdn)*Gz!Jdl@ie%U&iciswd=CY-K-w5WpmKL-rz-buVdZ9kwiaz9LmrX
z%@wZCd7sR&Q_?dWR7LqYD0V%&z#isy4@&u_Z}g4yk??cucQf>z9AZrHSr?qWw9mgu
zqx<>b3C2C2vo)DP*`+>0*a7KKdsav7oZgg`uRr(*U@TzdI|ck`^0n*tZM~{)8;0<6
z28)buDeGf==rU+Ca-^%U3&{!ca6{)&Y<r(^bQLTu!cMH8>K`2qwXBKw+XH>m-=7D6
z9e5Kk{CxucIr&?FCt75+Uk-oA0<%LNUscvK80#~stBgmGiXfTK{uFf<QA!epGX6C=
zOU=rsac#uctj$@z)`6c6>;Md3UjqNX@HK7gnKEP)R+jTH4n$@5BCgACx)M<YwqPcF
zisX=Ge(2kMAm(EqbWHpF8T>y&cT1L!O7Q;+AB!8q(Nk1Yr2tP0oZP6yVUGww0S~up
z2PHOlkN$>MBB>KNrY0=wQbKb;sCiw~KI@@t__`eYM&MS!w9ik$|1W&4UBe<`?Wv*1
zhr`+i-f%k?=C0CKE00f!XarIj9Q7S>(c~n+$EDWw^4$Kc1GEIhQAMbo@U{7^at4LO
zd1*N{;<s#Tc3v9=J{6b+7=CX9m-1LA^BaMpb~c6U=zg__C<N+W;ZUq@JUwln`WEqk
zI2q4#a?$dksNm!Rqo9CL8IBWlmrnv8mxe0O9izv4DH~S?G=e<cHf{@Pr>M}z9U>=z
zGw`wYF+58+9O^znH9fSy{xn=8TMZi`c@DtuQuvj1aiWn}*+2mxMds<Hv7WNyez(0G
z(L^?N>*hwHQ%#YlN6rgwBB`t5<(=?QH=%1&zLTqMc6|lfvF#KiRw|ufL+AvhDR>_k
zAeZZgl-bXn7V*~%FQ$Lo4t^J~yB&WW?RU)l-k!gCTeqRuBexq|J%kIs;^kU9g*P2@
zD!Nm~)J|UE$n#l3dbVAy<y_yY+ZgwQ)3g0xB={I$0wCpR>znp`9lK*w(}u=Pl2zh7
zxH^v$aB=KLVdZtxg_!*$X)5Vhlsz%s8=+Chd%0iV2Y&^49WecG`nHINTRNHV+S8Bj
z+q6jU2@@!#&X8&6E8*mmC+H0lqG_M{rE6W~)C8X6k8}s;a<c-jf{7#FPOzLT^9DPp
zG&70bNsbRhB`r@=0_A3IIu~VILDH$RdzOZ`zJ!27Nqp_{i<2IEh>VXX@=TrRlIV>#
zFURkt$D?jybkO>T8VBXoI#m23Z_Adb-ETxbvyXfP{BhtZz{vk5xRj3eWJl^3M3&##
zIE2>Zxb%+_Lv5eBTw8a#RYik!H?Jp-#EvV`#?V5SRXY7f!C0$uR)s@+>(+>$n(f(s
zFadlH&;S^I)__YXisOnIdj!Kz%)_y(wn#VN4m=Zv#`42v|3F!9Gvkyq^P{HJgR$ZW
z?IHR*EA=>CDN{~MW5mZE=u|>S`o+(|KL9=i3?JWZiuf2F$7xy<$3ZcCwC@))Htbxx
zCfhA4TJ$^a)tZ%Qb@<vNe7!_p&CYwD`b}Vc<ic4h!>uiG@)?Ix*p%d#+m${mX%{`c
zpYR6Q<1<b-ofu#b42a>?n=zO(+a7kg$Nmeyc~(@cT`GdS3|b;bS1PBcTjeo0qZ6k?
z;gG(Ny|Lr3^4ApGeky^Hh%6`VLcn&rI=u&Tv|GfnUyv%}$V?`ivLQZ8p5hJuX@eH~
z92Ot%`@RGX8|anV!~C8)&z(9uN0!sRE|Y!DQvFNETWPP?1JsG$5_6JzuqkTa^p5Ov
zR|`G|XaG$6UI8v;O>B1(m^gCrx_{N0({^lcl8^$SpLN*8a>H9N^+R3Lq9%o}_@RJb
z%SZCq?X#`7{VLtZEArA_KI4=`g2=I1`iG-^PLQAD2gQ!I{ZdAb9KT0?zx*iPj5}L;
z>AT7~OV8F7bd<ekL~^_apGH6SU+}JH*j5E#<oG+dlv`rENOK;1q<*q+{nl+*X*OlM
z3Z`CHM5bOBxi3jbx((s$7bGs-K6Pu-x(`)RCbh-s=Ey|g=Gi$(I*ZxfxOtrOSFy83
zc`Gw>FYTxVyRm>(O+jwBA9EQcdMBK&x`a=Q<rVY5jLs0fpo=c>JSV-`UgB3q9WO|D
zJM3M`y->+3GisWhs^=8t*p-;Wq}<Y=hx9M<D4m3H0ejyZ!XPlL<+x=DdSQ~YnA(hA
zEvuQpn<<uO%AZ}G3UYGC$sh<*(oMc@J6+Vz9KB1nCkM`n+PVJBtUhEJ_-0@mVA}ac
za4Bm#IS1^}U+5}M`pdGKnFX*fk%K9k6zAb9l0>hfS$oQp5S~T3P99q19%A?4a3YwK
zm(O;k(Ya1&A3QhW?*R18Jo5j*-JRsh01STx;8GepS;x$fIW=0yNH^Z2ULnQ}LETah
z(sO^VF3{HUD*dZa4|%M<KdX<lz7Wx0N&OAfFXPn?@biIPfT4c{xRj1|38o)T#+!Ic
z+ldtPuY!IKl=moWT@_}Quz}2Bj2)?GPfYhU>NRx#0$y<zd3*pvx69da|6d>LUE-^u
zd+J)OY&NW((X@3Ha`)WlU1-1LseRu5=<<c|&6oY~a<K|8JHpp5@kUza?gDGe(4c^h
z=wm79BznmPO!Z>I;dE5zr7lK~M2yC~0JV#aLptX+&e_3c&U=IWpr=PH&%PX<@lQ_g
zpg1{IFG_gBPY6~lwa?ETs4Mjh?aU7vih{Jm2_x&4KoKRt)5GkM`a<PjMcgX480eF5
zT={H_UgXZM(Hk(TsdR(D!Tr|7kyn6`I3NO-PLE|JAJ)W!sN8d~s~{Mkn9>YQ5tYN$
zWpm`CVVpc>?pNiPDF2Kcw31ug2bHJ0vX^(=1rqG)x7wSoYwf@3;CEW>aWN>jZ_!?b
z#BHP;xFqTqJ86Hj9{m#d&A{z|xj%i*iSEzc%cJ}Aa2$uq+@Di6oNDgPf&6QnxAN72
z{9Ej|@}=qbV~vJ=(MU#(Zis~2xodl+tg*cAY*MO&{skq0ogBfZ<Bxah@#S4f07=3~
z_SfC~o&jFIc|l;ig*2U$kWcM2zQTzDJ{uRL>U5I3W#=8wBA4^d{_dc#jd~UgkTy#9
z4Mx$%y=Wv9D4b;9tn|BzFtmS-bsBpwkL5?cowSEM7gvFQ8+Z&b@+Z!X<bNgBk2l74
zct(EG0q|UgbBrv)(WO2fX-_|mE)PeSQ$vmFC%lno=0CpGZ1*PipiGBDx%Vg9tkS$e
znN$yS#>_j(Lc7HCh9d47jBn{b$%HqN23gt1F0%W$^|z~W0Rd#`IQ~$4zL&|cc)RjG
zafqg&$A}_+@70lfOX0sVmTxQgjlivdk#E^~k$ijO``S@HVzg~pV<sMX0{3>k(0#J2
z+S|42u-AuF_|ecOyT(F3Zx3}ceT($W^hkPUh4g`<91c)>Ft~DVMGUg;97%P@#X7;+
zb#S`gmS%3r#l_iS9h;dQ%ym-<?741Ki2>d~FSPFx?F4t4STrn$OZ1q+X=%)#+8{R(
z{>lwFtiD?57UlNxdZz;SE8@xTo*Yc{y1E%2^lok$2i}X*H6F%nJZ;(?k)B0B8rvOF
zNNu#>AC>;K(tkypuW8V|Uyj;yH|=Hm%Xh$^1zrG5dv5(g)SlB$j-Ho>SfAY1Up6;Q
zkNU~$cGxH0PKaXt=juSNb)#F$8n|DYfUCN@)146kEuT)7`+W(G!hD)x>bALpr~0we
z&mE!1Cmef{I}1_#F07o3^7`b?5Iq%<XKinMGAA*Ib_OSHp_k(xmzl&5QT91*@zlg9
zq6$d0uHS?{9}6yb1O|CB7!}!pJ<18}+^#_tX393z=g&=tAxppP1mAIR9n^i%SABs*
z>{DdmXQ6&`)IQH4e`DO=UIqUH@MplZ&x-S-_HmX)?bAK>S7_HhRHRD}sPE{vByQ>R
z?ptB|+!<IGdjn{nzNx^@<YjsU#VkWASiB^IgzNO-G^~J*foX!gFX-uyO5~!-#o(Yj
zA)vauIg>=#qM&>#A$eD5w{HR7@IfEK-zf}r`)ECirbzY<s*h7aVs@&l93T9JPo1&$
zr<^vZ<JBaQbl+`}oO_VN%xh18zXZGj7&$)$mvUWv-r4cFTDQ4ripaTF?T+Hc{Z+}~
z!OzuWj`dt9XJs(WE5V|Yxrh7iIOCn3{z!#_)(LVa=gtU<WF$XVU!|PIYN0wex(!zP
zj)=d8=InF727EJcI$-!a8(d0f=j+jWBR+sD+^g0+sRHX2b-q<nuBUP6gTiZp?rV(I
zs3)fT9Q9UGuZ*W}fWHI$5ioTB4ld>BbfbeQ$ZnEodatO<l+~9&DbPjc<<R94mC8FK
zdF#KJ-KWk2Ukoe*4BeIBQaZ+EG5v0Kw7`gx$h@MKSwqY92oY~E(J#3)$8>g6Pd)XB
zeBTHEG4MQK===g)$}1iGRt%kJ9TmyP&A*7dE&|@Gtcg{6x$Y?fo|;`oS#@_s@>O1t
zr8^va0x$(IbmxG7HeGX|x>ubS(Y;-Xt=NKy?#b=w?u+T(NWEr#@BsMJz)t`}ciV*#
z-KXR6?t$2U!pIxVkFga_MYH{y{Xeam?LVmSvX^&B#J?|Lojq8WBzxy13nbcjGS?r8
z9w22`C41TlUzan{+qoW!--3mV>3pU0IbppS>|&)CsAb+9Jx%!pKCyA_U*sqJydIu2
z-(TQ5DbYL1Lmt>U#JJ{N@n(Ie!Zg2%pDp$|B*umZ8|5@MJEb8VHy!>A54<~7(1l+q
z&T%V)6Wr1Ta(nKuz2jA_I#qvYJF?XaOY`pNK0QZ!nEl=x;O_$O1E#(H4lboLyRXxC
zkSFE%4NdE1aA;M(Qn%ATURD26R`)9XVz|m~Ks_-}7?INa^|=4<LNCgD>6gpFHv)}-
zq5Cs%DT_K8k5+~2`{RWA8bf}c`o16TCoc~@h+b9i1=heSq9s+96_m0dc5(??*PXNN
zg?eCSKv||VzhD%RWkhvSrY1Aoma7p&pJ71u8F~qZ;wER825Izd8JFXypscIUS}vWd
zd#dT>Gvt{@5A~el@t%Nf$4EkhKCGQ%?4I(?!EZ!z)?Ad`=gj~=9#{bwInM!?va*Ap
zq3Mt9<&-dTM%GsKbDA0>%UkvB(0f&)LM}oTpv%1_EIBIFL^-Yr*2vuHR;ZBMR;B+C
zX?M|o?TPO{^v!+v9eCnm+sXqBf4we=_`5sSS9IL(NBm9SzIs*T+BL#pG#P%)4kyE1
zMd9VA(bV_=$2iQ8U*RGg|E9ZmXR?d8vB%P>0wxY8;j)k<h8e1iq;H=jTj*#3f#Vc<
zj0i94nUTq_pY0Q8XCStF1!x0&uj8-1=+_(>#=oBIPZ`dylcgu?CAxQIPQ|fm279X_
z<rDR1I9M`gNnPn+A1kGa`Ah0cC&>dk(OxpGbSe*3a-vN*^Z?_!+$F<HhoLL#I?-P;
zzH}T~%7TeZdrL-_j>5E}WMXQ`z|sLeD)xzkG6kvpe)N|aUZylzhGr{Kmc%`?tWM7$
zNKU>Uu8u3NMSajy%~aFmq(Rog7i)ck#)|c3o0p$!`qmH-vLFp$7i(VbYr|M7#$Wu>
z2D>S|#f?uy_jfn<uaf>H&)K8kPXJE==KekpE~PWO-tY<Io))g0b8^5<TW1|0@ZJ=e
zV#YhYWLk~NftX&|rP*<R5co)79AM~81((u%)cM9xWkfkQ8c=Rik_13+muKswcH@5Y
zlaZV))LT!zBIg6(j{x5T4Be-|rF;&$i?&W)ICb{yXh6%7zZm_{VdSmKy%GKNm$J`!
zKky;INWjpa2ri{FeNHsbhH}SGQDL(>^?VsiFH)GWlt(#V<~eK|rJg-8-Ak!=H19?3
z-QatGM*u_jad0W0lWtb__T*nZjJ#F<!$|Jnvg|sh2lz-}9AN052ri{Fef!i^Tc(gH
z{d5_~rNtYrjZ7U>!+_A_K{fdEWw5wNvjwd}hgXUX21j&$ab<pSK9&JRrMhdro1Y)L
zBTnV~COY?Rcq;Dy(65KSw9n(<p9pW4XZbtsiip3?)<284gse?nziL~^-h&#p>SLH0
zUytMZFX3B0*d@sK<!AD4Lwt>-_*Sm<rd{QrU+_@UB$I(d?974|RWN|?pUT6s>jstx
zX?BcgA9K7k?oIbAy-(Fv<>_Jh0Ao6@LxEiOJ4yRz@~xZU{q-u*Baw%$$V)6k^S#d1
z-H-Q{+L-p*DYjB+T%DGnDt#&Zhhu}e;9(3NcMkuY?<aV5^Z1WKz&+JlpAtfH@Sk+^
z-D-cdyG$=fC3J=I%IsqI(Xg7kBrK7AyK)B!7xyUJ^RVB>ih4-&p2*R~*z@P1JS4W#
zWciS*laLQ^XPPb_@avnE%_ew+yyJR<!bXaN%c#Zz?^<QErJf+~A0olWu$)<Lsa`JJ
zx#3~QPi*JGK&=X+<<if765aP!?rU9q-yf2Dd?h+e!1T+9z@_w#&pWQ`aNZH$ckVe>
zgwHxJX|+$^WQUg%!`G*A1?98j!`JEUUayRPHM8AEb3>e0d7PiiSWmcvodPePUNFW<
zROWe=$-1&&oIkN%r;7>-6Zo|yf*ce<d8Kwyf`DsoFe7(XZa^X%g2ba)b2Dy9KRpGL
zjr>ABwTs0DYoWhrM(*hDCruchPjVASj01^!i!Y;B;JR*RR_+XUMn$Dp=ZxTqVO1dE
zad9(16~}IElr0KtPD_#}IkQS<5HflOKDIMtHu{NT9jE`PoD<X)%BfX5^alS$H~1h7
zglQdkIUWbD%FZ)g!OMXvK#B%Bv**I8rD@fMEuxDWM&k^#UhqoTKn4;CRQ|W}=TZHQ
z)MeJG7lK~_v;gLQ?gp3A**f)<?Q2(UTfIIGrn(jdc|PRMvJP;*oG*(c1{Un!2(3ui
zL9yuC7MgWgtug(B)Nkn9SKC$!NCSp`4fyAv9|uW2C8mFd^(pivERN78VnLSv)`))P
zFJk$H9t30@`y%)gz>fe!KhYA?kNdF`=h-pq$l2Q)NIfOSTB!VH{7<YWi`u<@DN_4g
z5?$_zE;mP)5#jIr|AmXTdpzqtzc+TFL6GBgcZze0d*tY;%nwO4GNZ6B8K{$l<Qu^_
zHI)OC@KaP)<s@s!*GU56jbMo+F5OJ$&Mu{A+N;r%>6v~nnc4Awel?PJCGr?~&jQ~C
zd<ih}eid9w$9SSf-VNJlZ<)DmRpa^%tLJXm9vZ2wJQJhjE*#^&s=lqPn*(C_21E7e
zT-qHAC#Wydiz6neH~p)KkN09a((WIDd)MF>1sFc+z@-@b2Xk%XqkXXYugcU=8_s8Q
z5@#eciDJxNN|Q+}q~}~8jPu5|1evRY;+8;P9~67KC4i~X>@eV}^0kPcozN?Tp73)$
z_$|O4fZ^vJa48+<+jf3%hBad_O`j;N-#jVDdQDwUnl-?xLl+$-N7@t9JxINVZqBu|
z0niOFbSuE6behNT2vkc~HgQMJJvj;GYsqL0Shp)8BZRw^usUns>v8|5enbBX@Gk>j
z0Sx_{!KHi-x!1HAG(_5y*U+9g%Peb*lTF`f)$Nb(KlK{AI2l+8AQv!n)8JA*Q||Uu
zC0FHZYN_Qc6{=;jif)PNEu}s~ZwL6fKr>+IT?j7abI557iRAt^ObkgLF6hCS?mp@@
zbpHhYci<zy(ES&<l+Tp&5UPg@+VDoyuJzYt>74|=7T5q7dYizdd=5FqG;-?twV~@-
zVS{Akd`<1JoE@}nHYMl2nC@fLYvg<d{4L-ez|egUT*_z4c?i{&Q|ZXP!j8O)M+mS^
zBPl13@5*0C^449SrP~00Ja7VF=$-^F<!Jt^qb1vS<OLerh=sRS@^QYVc3RF(%bKnS
zMmo*|G2K?`HS#_I{zKr$F)f*w%R1;CqH$vF>9r>uk=lt+I?-}YwCaBo$rap?t-l|5
z9WWd)a*YE2Ou0sVe!=#}bazs(k?SkqHv_lDv_3<wBT{P<EacX*D&LHs|8{h&uh^Ck
z<N!v#Jn+wwZ|JbY{ElBc%<nj+*Fb$nu65uWfXy+Dqsw&&l`-6>F_tsNIuO^pr(M0z
zfxiU&0x)vC3jSGg3>gy15iVj18<vIru7m&d%D19+E4wi(M=kgeU<4rL=yDuFWi)b(
zww%#cYh3TncJ<y2eg|+5VC2{hF6C&?(a11Sb@(71@)U<DUOPNVl?Nhu4pOhVFX@|X
zt2<By7`lDHrF8y0bwahY@hU|q7s+h<8p?Ic0jwQuscjF$^c$()(7zJ=t3WGY=>Hg8
zit&#!d6(8o$`69w4?YEN@sYzN;c1u!gparp*puBK+LO&bKWXh(H)zoz<_8?&aXdxv
zEY84P{2jz7Pmb{dFTYD@I5du9@@CaO&Y1OfeBW<I{|-~KKA8wU9heOmJ{N#Xd3b4j
z-WZ=xcjVJBSt|<9hE;1s1{v+@Rt*l|^jz!QCD@H}UWThYx<M{cX^#15h0bU`5<Z>=
ze+76QFnmn-YQ)ED9qgDo@=?>@aDrc1m_7wAob&;k75q5>4$iQ1rHcV^ikywzbP)ly
z6V4cvl>{Zj=%y#hT`(UlOmrm|33eUWJYXAHmFC!hg=dkMklZ8XWGCdrnNQM~+!JVt
z&)D7KP?HZPf3}~CarC>kvs)x!UVJxd?@N)x>~kLme;W7+VC4K2xRl*-d^K}^`Pp(V
z+PbjKacGaaScm32eZ_odzj{$y-xPHiR)+KK@O0~Ry$nVBd|5_^W##W9{%UT?-iKqr
zHv`)M!`}zsQa+v$^#>CN?r{FXPb7j(TL`s%>Nzje_g{*>A7ipX;p^n^b-9?7?N?7E
ztQTOkIGO9@=Ib<P@Yu)YCdXk$d#v8b#-y0|Zv{Y-!y8=g@klLq=3>=xq2i3Wu2_y*
zgA(7ZRs_6~!&>yf=pq_iO?(!triq&6`va;~ncF|SYj)D@ZRZrDuXP9YmHGcp?Txhm
ztDF@!E_$O>KF(2Uj6T5}hgg+=irT5+*6j1W4g3P&62P?6x51^D=ezU!*w#){H*MV>
z>eO1)kgLUP@cA%w-hM?@d(cAVCc7mPoTc^l5gb^BIaom0JYVI+pA<%Mwpf!lsX5LF
zxw(7)9Pw-2mgTn}_z++uVECN~E~Vr7WykwEb?dfmI~tp2Z^1S^bl+^tjf?`a3H|4O
ziFooM@tHQt-fXa57H!d1{w41J&{+x{dCngIe;@b&Fns*+_K1(A@j0J4zv#$E`{$gc
zI%$%4&arI$i*vPDw%)74%QeyE$Jn;=;hOMuRrvai=$qQ`P2Sa<67E+&$;C5hupA)q
z+;eu}<91qhx$+)Xc6C`#_g011XQ9n0Kq4>Cu`!+CH$nID?2}KluTw7Oe3z-<N`;fA
zQ#C+$>6%1C(E}_0<gF^`8l2)*GCo|S{EO8R8z(PLeFzxgxrxM?{!TtgkV6)qBs7MZ
z#4>;Rf-zX^6xwB8P?)r_#}-=2scx>{g0jt><IgQWflANC#wQu{!bj+QY&FEHIFTT&
z!2&U=z}ay@BGJq5y&!`bCb1U$oNgXb*zNNPscyUOMQYV`YViGve-rzjR>!&DQOopK
z9qH_KA4d0UbZgcQVFma)U?X7e*A8$g<70ou&vU<~nft{7bxU|ay<dV_i8IdH=%jdC
z+lj%!n2){CsfUjAoA<&04g3!<d=%Uf@$p=I?q&QdkJfJ@KH5f2a%TKOKZq@xu9aLF
z`_=t~+{6@myTnR84nH_<fpq3`F~M!nC+S)_n{E9lYNwSkec|s6@GF380K?y-@%N^E
z+VYxrnD66ANImzt{a<p`KKG|OysUkRhk3uc)UjUhPkqQ677Qa)(~=v!((AqA8$5lx
zWWp<qv*Fz*VU6Z%0&Of;D@ZWcTbSPSal~hEXLcMI4n7H(1{gkPflKMQk2|~_4;u-x
zj@+e<3t1vf-<q_3P1a2-0IXTgdg)h<|BCo%fsR=pJp%p%U@u_!_!0P#_-LmW>B!Rb
zxG81X5$>P&A3;&DFQ%WqD@%VE_*h^fVCYW<m(uCJ@~G5hAHDw&g+blFBe^f7UL*Gd
z;12`e1q|KC!KHL;|D(tqauPa7l{V~EL_OTE-ez425bud2icm3B`Jedy-<_r3AAA%r
z9x(Ll!KHj|x!X}+d7s1*yG60D-ml(6K?KkPoWa-+aqGj<@=1LEp<~v2cYr?tJOmg%
zegH1zuye4pIJ(}nsaE3G#8xgV&w^?X^n`CpXX{Elx75jrFy`8J2gBB|8mr;IvHbUB
z^}^l2hXJDjL-%BGDL2OJ8x!Yu`=NB_PN$cZHcq0Oj{$C!Ex}O0r_aBM5oowBXYE*n
zuaUSs_Edh+?0i{6jwU`0PLU2KPGUuSyt7fSS7QyE*4|GeKKH=KO8AiR<j3G|00#iW
z=lrileAdK%_pij~B8JZ}zQeQ)+t!9UWG2RM1mRS-GJH+Tg!iU;E<wbj!Cs}SXOvAU
zorpKWqypWWMQ)x`#_@I@&OmN)5Plv^v?m1hiAipc3L-C#9$?qXY?G6h8Brd7?~W`T
zq3bVFxM2koiYMB-jD#zF*^w;l;`caZjBhWWn4XQi-&4-Vw%)7ksor3{U&+K1mKJ+v
zc-<Y#C31fk{CVIdz{ve+{JrtJX*PZt@%@qHscW~KA$RA1`blKK(2O|)mi+2ZgmkXr
zux6+j^b!@Px@WS2gP3GZ-b6Cv6ci^*{G1}v91X;GR>H)=+e}zxsL!{@d)01|TAJO6
z&xU)m{b(ilPT)Mi@Oclol%*ZwmYVxBb8S=1X5*upjx!P%1mpvK*;^h^|BnL`tX#Td
zI!+FCXA(D~cQHB9!_$^(cNF`LYCrA67F3+GiH1B=^*}KnwP>>+@%b@)nDHjDoA_=(
z55Vxb2wckCn9oXMPa3!9^ety>*tS(%ROv$(MT@Iq@f13se(aEcaUl#!iud8V5dZch
zo6xS9R*bOy@R+KMsJ*f+9nZDEc9XTam>P?&ZI!x5dDGMhYGB;+_a)-{4?m6YBlrJl
z@ZSQz2MoW3Ov+LYZi)6Ety`n3X;<vQHcsBMX8O*xt7mVSx_(2LuZ!T7|J7lj%I|ay
zFU!N%zE?X*>uvRR4{PU8oGwycSuiv?K^G#8n}g30HeFaC;U3}^7557U_SfFWw*OCi
zR>}?5VNsmu-?MKjol2LbQ++e(+;s79ULVz&w{@l@xZl>h?R;k6f_rWK9Ns)7IIj#5
zueymrZLqO$cn&@>i6r=_oFuiBNGR(uSTGZ=N%szduRFngPMy;~hrMKGgm$~~iF+Te
z^=>cT^_O>7I036mw};?w+Jo@4aW@J6l-=9LBo#L+I=a^n>ojLpu#D5^E0lbFmHhPP
z5WT@3=p;@FmgP>EtKFx=k3J-UUh-lUyllHKf)3Fv7<H}u-z$2u&Q0Y$7yhi3y+<O|
zg<p`IM85q2k)FwRBIwiXGFg!3lZZv$-mN*%PPvb3{VnZQP+=<f3N2qWM-|=@zS)o1
zj&e(&A^-Y7_~DystahId(f1U7^2IJD$!;?D=ix`+Q@ly#z8$`~FM9L$@XanY@oTn_
z(7~nZ7{Y?!`H+{J6I>O3c%4e!5F#`uzggjW#h82dVNmd%w*4R3MW+UvM(d2%FQ+@v
z>RbY`4XnuR=k}1!?GC2<UL+^1&MBCo{npMqT|Y$tVXvl}Pr!rz?jp5HJ?pA3sIMyZ
zW2MegE9@WG`uwhw%Nr{*6%WQy?kuamOVr<Qq(7T;%5Q={0sIIs{rxR)DTket#?Pnp
zcj@d68ydsCV`C!&$j@Xt>dGkcw)zk0CRtaH@Ol&!<&W^{Il&f36l|#MB5{D7sShZ9
zOxyHh?d=-zRrf%4ex41!5oiPqU-y7ZX<QXOf6bc@eGbo*xaqT}9gDpgnjkqY?zzvo
z(S6BL`<&|Vb!@xWikAo&`?k8!w|?yo<#-ZPi(FlT4uuD>uf9dA;v()tFq|*OB+GTB
zSA%iIpd6sMQU;V2&JJ#1A1oyFDE)?_1G47{`D^GA$zy#Zd){3JUJDEZj64g$r92$_
z**a}`(4+N6D9^&RO~kj~(J10nwBY)3wXIt0QQ_;7t8EeCKF7L^ne8+^Ok*jI)@W#Q
zJQHc1H#&c)=MuyQw#Ml@w4SIgmUF`9%80*K=vP8t#=XbE_XBSMhClVqh`*pdYG<>L
zFymgx-{K8xW^P#1uFWf2_2S#LYSk;k*H=iB$(vtr5neAs3kI*nd5Mym%miJDZ{Df8
zKI!_EUF4eUhuji+>20N_tMFLUO81KRZGfNpnBUFd7Xp_8hTq4)r8o;Cew)nscHD2n
zsOt?)+a#uZv;&hy#ozE*OkU6pof^Ildx<7`N9`gYt*UY+<1M)%w6(z<Ft;$(O^+o4
zdIqJ(L<U$K4O};s^kt_@BTr&#+OND4HBa@z{3z-TmQ~p&;y?XhHr`Ah@PR-bVE7*n
zF6GjW{&F$@p|WQF7J2mGyRdQC)&NH55pi{%oB`(>4QFFaubKLc-R8C6F9ELrhTbK6
zB6<flMD5l4ltZ5<^PJ0rwAcBU^Q5ENF5gq(JL1L5hdaX80f)VoJ;`kMj=DGBx{MW2
z8D2nvlOcdYVt6n>CchE*&#wTM5^cFm>ES`IvV41Zke@y^*iySFoyeW<FHPw242c;p
zy-cUSM_A^J-<2>`I(3l>F2<SwhY1N}T9o!vm<ipY`V!hEg}G6y>Pt+9@tG7s<|+%^
z(ll0=l@6XF+U+@d#NZk3#&YdejxHaV;aXcWU|{h;pTCSh)Ez_o7<rT*SI!*03Wb=r
z+PRcYtn{NAA4Qvo=u2YRQaLEPukX>04cs?*jy?qs9^(8LFzs9lE@gd3`&iR2n^tXW
zYS^}QHSuGlL$<0fg(lMPpm?_qV9~Y!pEvk9*_jd!n)_n9E2-D4v$lYr12hAM?&aW8
zI_lTV^SdGP4?w}cUHtU>qDlKbar>>b1SnbQR7(dI9X`)PSXyc$d0(SmL-!Bh{{%h(
z4Bhf?9i8qDLwJw+UF7kZCo1FLt1oM-M->4oc$_qm*8OB)`@ISDfF~7Z7bug2BLdFH
zamV)zj`&#*J+rU72>g2BX29_CAh?tlVt+8BKQ`?!g;WCJ*pM9<<TmU<WBi~}WSAAN
z(D&3E+FFC>vBbz{eC?^HqODsiGr`Ha-r1;TwoPd1ArW8Jx3lwXH^G5HfZ=N#xRlQ3
zS>fxD;Yzq_Rx9OZ_2Oo|N16&tQoIag%{7P+NANN{Qh9{+?v44l6gsATZUDa>xEnBh
z+z&3LvwiP;++-nL*rHConwEH9tWDR&#-?)!R~B~<t6^v)_s7&%Pkr({Bp)UZ3Qz_Z
zdKKVO#&?V_5kC)-S7FnJEgOYqt2#@Jd*8<*-1<VfZj`=we5|QE7}Hx%eMY`B!JC1L
z07LI4a4CB`oa31LfBdQqO~WGrcSZu<psY_(C(C-=mBlFz-`!>9GS{g`+LmFFoCm1a
z(ESkn6QT1+mTmwp<+)DgPm!~2yNoLP#Pb6L-D&+jr(7?R!F(E)yj;@5BYF+gXVz`2
z!8Zb10VC&`;8Hs4Piw-h`RpxWy5?rJJS4Zn`Zwf`6LNE%o<h!QiRta7K11(S@Hc_C
z0YmS7@Xw~VVD0KnQUA%3ydc$qWLQsnL?q|v?_}xD178N51Q@!Tz(1Sryj7cHy5ulW
zD@#$<ye}z2E`xS0A?(WRGI?OeI#W#tZjI?bM*T+aXTV<uUIh&O_rZ@wzinN-m?iNs
zEQ$ZDo<h~kgPNl!V-`pJUG}R*`A|Q`8KK6Q@wIVeEdQg~^SYVf3xMMRLw_T<l*8g|
z#?Oz?A1Y%-qcE^2WZ(s6k~Rh;l|~x_liC=l9~IGmjQY!{U!LEefgb?g1q}Uvf=lUa
zUg3;p%ht9t8b+)yhv&zIGH$sXBL7vrC~*g5EG;D@(TQ#msds3M1$tZ96zS1%J3N+M
zFU<#E04xEdpylgyowSgUc&j$mMi+jnph$#Ku2HFs>u;qlBj=;w&jT+3M$X@YOX*Bb
zL#OQsv{~Jpl{6Vjx?fp)I9x1ilQb!k5;IXG9TUk}^WE$?G7@|uFa<Dt%mtTnv~fg+
zuV@7MD<jC$7+a1j>(a$<8$;y(n`3%6QlA;O?gf7k_%>kZJq|9VGkWH5wH?8Cba^l?
zuS@Zv1jk151>eig2W8;>fLg%Nn-4B!MXU#E>Y!iS%KQ^rZn3qvONZNu>%#5CLG`w6
z%^2*AX9?Lzs4FxcjF|m6axDs>D1V@=7-l&aD(34(`<&=WKR7Pps};Itef%)^kAdd_
z!`I)yrIf9S*2UL#(07VHSmr6i+x-!5tub#O+1C1yw;+=|^@!ZD&NLjNGlxS?eOOl>
zoDlI>|NZQJnh$<5um&*vT>viSy4c_NidcVa=Cw29d5u`Jd!rz;>pq~{9aPV0>oq#%
z8JKRAFy{Be;VEh`1}IcdG}(p9*{bKt_(-Xr6!EhUdggg~3;eIZKLEo|<_8f!ojot@
z4x3L451UWAI%Ma4MgxKq)-ooQ5WG5j|M(yoo)b>js5T;I;HR!W;%6oF0^Z9wwFUeP
z;B3I~vkP2GXZxw?J2!~YFWq=NQ{h2%Jdx+hB_^WGf|IlRsg{`DKI$`e6mNn575E2W
z=w%*{=rwk-e_OYDOVcI@vcUhs?c$fWTHNvustdJsGa-7$hPR`8huaY*o|~z^)lUA_
z$+7&<Gtcoh@C$%T0K?Dy;8Hq!j?o9NL02E|IWCKQ1-C^!-KMQS`&CX}azw~gMSHGF
zbs0JmCmgdIoTuCLOM9n8e0>bvO6bac@tz>}6VMefe2oT|a+tq#Jb%sEuqkY&7PYZ`
zH~AC!(UMg}u<Ep%%!s<lo~aQZ&CoIJa~1e)z+Hgh<5_SiowbiV-_h+ltZlAM{U6$9
z-?WII^pjbBD!>N=!vVw3Qt+ek6Y5(!Vd&}f=V$2P^oXBU=$Zcf5cm&)X8^;`JK$0t
zh{qRWPh!TGaQq9GcI=fdkM>IIWG8n}c5?q_8#(Rp&SOTH<D5-qfJx7c_^I2Q?Kkz{
z^MOTx;b$ATl+OCi<{eu$uR@WpiHOy)=X@>md3sJ*JrhR6&tB-6b>K_jZvpQBh9B>T
z5kIdqMDxRkvEIqF&)n@z;ncwRdmtKr&;5YC%t8Fbtt*PF!f9&;iaMFLy0#nk@^ZV%
zv^CaQ&AQ=4z1kdDHP4RtS_)lr-`0We0L}&sUpInF>1-TYxOT1Vt&T7Z9W4Gl!%)jH
z5g!MjW7_Ah;GY8aQ&~RxfJ^DDeHM1!JnxnM-<!uu&yD!n30*U<UkrW&@KwOH&v(J4
zG{^h0Hh+wG{Mj7$qJ8R{k<r+?m%>i{9c?|;txB)yeA+x63yADI)o^UYPw=DcyjcR?
z2j~wNerAD7DT?Rsj?Y<RtY>dkP2se0QZz(=sI1puXLRS|;e6+KJuRNZslQ=f#Ltb;
ztK_|m&-a3V2lzf<_<0>%N^7i-J`z9S{-RawXwT69!~YhB#&ph5!yybc%#Zk~c{-ve
z{EP&j0W1d$KWD_>oBL$0<~cK&yf~0oD{mEhfLhD}{;nD_Lz9z(j9(n+3|=&N%3Pb%
z@J4dz3%Qd&(3yj}_yeuqNEW}4t3Tjq8V&06(al@g5b?Dax@Nue8u;&k_W;A!pTVVc
zw3{$|VJ{{-p(EL-d?;oEPCFYFsi*R|i0<egXV*0gz)u8D0Sw)B;8G5YOCI-MGWmr&
zATl0@SDtlI7Dv`G9}<t#N&*}yiK9F9?2YN}p<W~J^WeV(_5+6Qo8VG9m$!{>+m@)!
zDkqdUb%?~x3nF>To(b!1miylayapH;eHPMgj`M+;cHI%0EGp|Gc69|X*AmyWlK(OD
z{psLMz|MB{)U_O{-(DEC7tOQQ`j`;Ngd~doYzYeqj+Ou*=0Nz))r!+S&cXp{63bc`
z@&6h$8h9)GzYqQw;BW2dHXNDmNC<C)@J4I7A#AQkC)^m*ZFn{-?;7w^fsKF^VX(3T
z-36=8%!<4O%1h859!+8+ZzQd?FQ)q(G>p8z0Y3n|(~fR^r*uW+6%bxQnmr?HbUjq!
zLkZU{irTs1xorPj2fi6N9T4_JAJ7CY<!E;Op<_pEC*H6Elc|3bo838+eX{Y2!EP<4
zx0m|N^Y9AzTfjSjq4yrRl+Nw>+fgfRJf9~}O!)teO4)J%Yn`r_*<$75NWQwCWa-TU
zpAReq480}bQjR9ykYU5bQN~EP5((c_=UC1;mNi4yik6Q!4l%t}>NE0v2mC4ES-{Zy
zDY%r*<vWC0Y2$@*1}q}JsmP1uNN%L{dP>`b*t#T=v+VgS-NE1^fw6$0I{{qE(c~O9
zw7r;eBi}siMphml(YuuTjGVWE?*_gB7<vzZOX*zB_SCXB^34u6a$ijEW9l>GP|i=$
z9|ErehF;;%B6@q`eC}p`ZQ8JTZS5AE;}$lpnYw;Qr~qe?_AR{U*(^>8UuU;_{Z_PN
zdo;Sd99>?BE^!vUIpNRaH&G48g&$1|U-w5p-V<G3(&2{#!`JA?n?n4&@b#b3*PV0l
zhp3w92Ny+e@?@>@iTX!R>t;f+7V5rNky5O{EASS3E4^`FS0(>eV~?GRWk3w>6tBo$
z!tv@95BF}O7=ceAZ!-20VvUReQc(Om<-SJ<1VVvl?4p^8C{(ZSmi$6F!#zEClsk5V
z@<${mk`GJIcc#03YKAvm2z2-KbPp5JrsU~K%xUwy{<%SVkUxb~c_C4s5HYqxboX46
zeRd<53?qIB)!rcANtX-=YNz^xTxwEIH+!I)PdH*y!2~;}??|5Q>8kTET$!)@b9lJD
zHX$edRJkvz&k*qhL|o>cwAPy+HiSPA-idy2nN;^Bd4R5TaAUA{I^)!N`s0Lsp7Zxa
z{O%cSoWkx)Joc!+@1%d3b@?vvYk=zk)Bhd>m(nqRWZ3_R{J45O<EfKgjq8e}jP$vG
z=UJCZP<~=maenGxU8OU`8p!kWau`w0h}_VveKGxyso%^G?u+dIfv$j|KNMWbrLn!e
zu}co=Z`!(b<BmocU=#N{74H9!kwckJ2&7=`CbT~K8O+D~;wIseA#0^KNAy)^I<!vQ
z3|8gFs2!T2Qx6@Pms`N^0KNtoKK=_X<>`2TYt98jJ}@F7IBaC@i5c3bc4)-74-<ar
z&mX(iUIH{^;KmNR5rW9mY~f1fz>>&bC3ZJEW#<s2h+fb=2uP9<2J7;}h<t%WMkUZE
zQ{JlzV=uo@!uaL(FRO6nNZ<{P7SI{b@$~?rwH?FFuiO&J)9_OEzMcSnI&cPH<hcbr
zl&3>H;7FdPtsA0NmB`T8z(@Wb-9-iWi6YkSr*4(g(<#Yw66Gv&25@-Jvd5_^O(<PN
zPzlZp!aPpv9D;2`EnT-Y;_E%=n*G+lz|;G<=YZjB3AmKralFw(+BpiQHg8pUDuw;z
zA26I`yZmZoMp^P!$lgbeb+=bV^2#C%wn$e>@W9?-R0=mm4|Iu|r2BbZGElX;KOqp2
zZ@e_AJIc2iM96O=Tj-zQW<#rfSLwV+fIX*2{O^W8^Spcy{3+lW!0`VfxRezg&hf%_
zT_l5cn>|0e#1-fgKVdF<%`4XnWx_qy#6YUs7SStvIXge}2OkSe0t~%n;8JSh{g<)3
z$<mt<Mrh@BR_xV(QBP{MSC4%%?3gcWtJxoniA9nD%qK&xn_Q-6xPzSBLYm;)%Gs`}
zWIU15vOSg`dP{jP&&gi!mw{IS!_QxS74cJcTC{%Nw=%kB`I#I=QZ`&+c6IlZ(A4TO
z{Sp=+pQtycS*`w1=ft9PzF%h#VtGwKm%u(Z{T~<%`Ul;Enjmn`O<%+6dbUnnrRy%y
ziB#9&d@%-V!|uWKa)QAZRM?ekHu1xBa9+)GDmf{SBnLcMUsm=$3H<pBW%m!J*;JHw
zjm}*c%y;ipqpIBNmHQp}nlO4&;q;&)=oxGZ`jf&-^JVfDWxuTKpQ{0E>@%pqa{_{d
zKC6=7#4{ydXPordU~t(Sw=%%2q<sauRN@*<)oyK4=l)0~pHoW~x((A*(zBmcq#2wR
zxOMJ?Nn*mMdeoCwv~U!uy{p9P@f%T1n+R6}H_s>{1CMk`-Dr0Wx+LvUUzeW|%*GBL
zIpl{|DJ-LlgBA7(?)Z$JdtxlwVSJUH;7;`aqWr(A>hL!os`PK7im2fiLQ)!FoqM9a
zJ^5>ubB(sI#WOFIKFIx}O8!~dYM!2U=8@~Kap#VDOE|nh2Y-sHt#fx!=`J1Y2%20E
zM>>1dyYh=GB!$c0+W!Uy&US;mmsM^tF>Xr(oS4q~qFR1rO1l)2oaN(PG}q~+mo7TW
zueST+{PBzSsp;n&`A0SGl`6M8oF((8*;9!CON6ERDM$WoNOqNftUqt?LU&Q_gz&CM
zA}$KX(j&1&shfM`|E+Pi)-`nY)dnJ*%(AB@?JnfEyg<!5^6x_Or}{JfS+&Qy^U|Z*
zk)IdT2a{4kF1bE4PTlY$|9_2p{HW3L)k(oj{<kcc9N%zK&jpFPiJkq|m8$Fb+(Egy
zOjB1Vm!l}m9u}X{*{^R`b`RI7JE^np=hxMB_SLc6hN=Dn5_MGAeUg3cQUXuq`z3Yh
z&i*0#Ss#8zg44Plo&9W1-N4Si;^uFHYAR8{B&+A2R>r{7;aQG54)Wij{5w^3M(WzF
z($^gNOX4EUTqpm2gYxfD{?}A>vHb7>mFBg5l|3*b)AP?b3Z*Xo^~%3NRl8EbEh>G{
zp%vsoX`B4}Wy-%v`8TWTg#55orN4CO4-4GH2)<yD>o5}3xPx*T)anBHzaxF!tIp}{
zs{wVX&c3=5=R|u!Fg_fKOWn1HyxY+ya4T}J)n)IhaO56?iFVC3dXeKM__X|TJwY(9
z&$YTxT;8lD;x+cH<9sWJMcp+4$AEP<=CrlWTK6tn_x0AhL@{@C-{3TVj(R7>kDgV$
ze4TL35%x15^SEU!f)8FF&1XAb%kKBC1-}c}4Vd}t_ux`?#qpYV$M%omd{)yxbYtm|
zCbZ{X?^gFoPwn-7q@MI-HF}kAeUuogi%FO1=ad0NcqdCq8PH#M56B$?fO%vP0m@ZR
zTrL7V!#e}xwwYpHNGR`(dJ}(G5I6Y^$-%OamC}4uB**C2v+LLC;In~wfE3YpEb17S
zLzW_^u5H?~L(&r7sNs^A-DE8uqSBs+^_<oNopC-1---xbNPO#vPAhd*@?Pfu2f@Du
ze5W0qj&Zrdc3QooX?x?U)nWiX0YVe3r;?>4!*Xey1983NB5GTI=YV$yssM8zW`j$4
zufut1SpW8o8^T>c!@cZ*!a#plh@TltRXij)222(dWy0)0!~!evlNq;1-^9TDJg=wj
zNx)q<Cp`JTK<hKiYKQZXTOxUHgsxey-VOdu;M;)V>j&Uc9_!!_9P$<R4ur;!^rp~{
z^b_@cQiJ7G5yMwVt#;bt*w)<|(F@+luCI!~Hv+o=L+{fA5xu${(Yos6_!`n{l%%=P
z>$%teW$>i0_WBPx;pKnB!pog*c=>Vk;X`)#?nND5u8uyuC;IS%=<-%{c~CvcA=4-7
zi?j74g>AU2?)Ongh1h;<3v-4Zlb($;@vrTicWwLkHi``Y1>1hz_V?TNpKSZjcAq=!
z^quzd$L-mKTdcutq8c-dymX&eaLK7-OH}%X9x^XDmfvJN_g)(>&`EdL?wxkPYoY&y
z{Xg}%&E+|{JZA6LkILm~HMuKEBL<8P?y{@r1#haLE||qY;Qm<??O<Z=UH0U8!BskV
zL*wd^M?8cQ?f*sz9ryQW7SIa(QQk$rILH*{|1JCeW7RiP+0a`j{-!lv8(!j{np|dN
zz0vLp=#3Y8c1-Viw7m9GO~gFCy0=qIVk&%cj!PDWH2#~dbC>Q{o>!Dig`a;(B#vme
zu$=O*IrP2udX*EauQFNW38%Mazr9=c>c{8Axb?rD{dAA69^qDWc|A+*pk%&+Gyh-N
zUp3p+dgK>vDDT5fE_WtvlXyVe_v_pXY~S-Pk#8cNF11U3XzP7;oks?XTaWY~w@HM8
z>+RfuxdZ$fUG4Ut@o!C=_cJxr&iLq%_jR}*P4dT*pJC$U-^({`w5Cjc`;hlTNp7K8
zkotG&fx>Cp<F4B9xs#T+e;wY@;pt)Br)8%4gu$R8%G>Jdo<pXP0#&1vpGuwle<aTg
zMjW~tIh}4({s**@edK!QrH|F<bg0v9t23`aRl^aVWrl|LeJ3@?e3X!UbctT<E|p*S
zll*S{S1Ne=h&(S(FDqD?N#<^FHzDEK{+a$(eq9;tIpVLkq&K^#ge@`qsI{(1uXdX<
z14Ewg%HIC_R4EQguH!wZdeP-`qGtQ1=t6Aoex)B%eohY89}r3p$)3#q=QGiNmLB?_
z&#U|{OixUxugHILJ)=P<ACN{49|j)2-zxuZ%{GKo#KEn0fRohy+TEop%gQd*+(CK<
zz3x^!=g>QOu_D*0_HLG%cwocFm`C<9<)v6p`PZsGPPJX=_30H5?bxQKOSm^UqTQ<!
zd&nYOMx6A5mu>$Q!eabFF3&18wVU0&*Ol7k*8fQPPpd>gT<)G3-RK?1Ax)tUD*Q_K
zSw}xd&LWn{6@JY)@*93beNj)kK-X3$YaF1O<c99+j@~anQYFOTD6e*FO1`Ms%WSH4
zdy)~<Ny7;~Zv{80*^T7T9g9Oj(Y=n|E&pOCQXi?;RsDXoS)zPA<mhijHDReV`gP^*
zSEuI;O7*O`MkVG9w}%D8?MEDaffEdOhmioLAoz=|-?wct+etvpAfq24J<lFoMS^|G
ze~o<H;_7vkCcd72+%9=g2UArq{>p<-mD;V6g7;G0D!#1rzil#kIAhf9zVo8;A65ac
ztCJ7<`X`DwdH9E^-=>_ODt%i1iPQGzev@iv@Nvay`Zr2X(GM%{R;|;-|L#V8Q`Fi0
zZd83YroR<`cU$(m3HJ68AE;@ssD8Uu?G9D$d`l0WTHDL(r3&VRN)?$W(=SHz+`->w
z*AdR!=v06~fSKpc1DDb<j&ydOTf_=x`PL{vc>Qn4PElVDlmY{QMZnbfebppc3q0&t
zzsJlZKUg00$mkxp=y-*G0uLxpmq`E%G4jp9{R~xb89h?d$-REgKw{1omMNdGy8K6u
zpDENui83#l8#-`*sGaXb8m@+YkzCKgw>dxf75M)E=XY7TYQd#+JQvN%HS^d-vSet%
zpdi$}^$uSP4tw<@ZQLW;dLpz}k?eJO9wVGD`PxW|h{tP+0Gg%wg+70Fm}&P?rEiHN
z8i#CHEiXrWH^WywAIZAzE8q_T4+G|Y{2E+J$GFB>zC|s!oyZwcHqO$OzmUWAK|p^%
z;@SBew11**BBl!bRs@T^L>}hVl~F>}0U2@R=;;qYou8)%N8Ijoz7nS^vg&>j@mcdu
zRv$J7d=Ah67(TawOX=vJ5c0VRBP~w5B1Nr}zDc36o&t;mL=kt7wr(kq$jKUQF)6_D
z%q*0gRE0s0S?>76_*{0emUWwQFb$8(%2y)3_CnX3<Gcj^d*Dxi;cLLV5nqeqJW|)i
z@v1_;#5iikhE1|`8{IPHR{QEHs%6T*Rd|_w^^_d)0uU#)c9+sqSvK`?GNdVXx)#_8
zT=?o4I}13R&r40rnM{rWi6aycOtk=2(iD7BgPi<KiG7Ud{lBRkg1(=p)_KF(1r4)T
zqS|cvReb;9&*(KT2fq=x6)^nY2QH<fzd*>p7~M*rZC0zrZo3kHlV**-$qKPJA+xqq
zB|6pV&hc$(cdP!ji0;SK8&I$GJMZ`SLID}T(CrE?rK4SDNO!eFBw8nScZKy;lLCm2
zw>FitNDHkp`|36?H}**}z4g>*?$ZwNuK>3IhTadsr8q~@^OL-L)tXS!7WD|eUTDUL
zhOa%s*OKrxd@h?cXWUJg*)c~9@T$e@CN(gh&^-xPH#((3MJWj+g3w-dw!T|o&AT!>
znQ7P`wM+UB*>R*7_%L8JVECL3E~TUWY}hWx5(IgDR?&>t;yaOX(vX)p9r;u}hQTH#
z^@Uy~KB*`S2FQKc%HA@&|7m$6;^Ri>R6<AY&%NM}0zUu@AFqN-S=qrqC*)(1Y%*7!
z5*v+P6`k_+lvBP>NjG6#>{PKK%X3OeSireRs=Lq3?D^#|Gfp=}aX}h?9r025UiQ8X
z1)l=U1PmXW!KDoER1dys>*_XE?u%F%8L`5F#y3d@4l8753t3^lwUY%bj0$qg9pA~T
z(0z5EkgXP_!-)CKzlr#I47!!jmG*fK{AJ*mfZ^*ca4DU)&oTl@OAl^QQ?6D4Epwvv
z9+BSq6V$=CtO;=t*#j}Xnm=Zr(-GhkfvJF@w;5c@5ua0%E}5}!2SeTfh}}aX^nf8R
zkmT+RdAY=E%D2-!S#$7bb7mrGv~_+OrJH4)?F<NO=RDxeSbpf$^I0fA_)EYmfZ^xY
z;8L18<Y&nCk2R~pNd1M4+b{<Blt;>X2N&uM(iKN%_s5lQMf7Uk&)PGN1fK!S0SvwG
zf=lUW&lu9<{!fdjIq8ROTHsh<DG~QRRR<jFugMhWxso`{XDQDvO;U%kHw8~h>-bCv
zNoFh(#IkEeDS3>SoG<CNyrkol;J4wp1ujW+WFjj}q&%B6?PL!v)<r>1pHxuMb+kRo
z9c@p>PTlWgS<l-V%c|zzMsity%C=)E_+Vf-VB|U$TuNCSckhsMvG6%Nmd*eARhy1k
zI3EvR&FR?pqhqm4qC>I^cqh-@9~|q?c~yE8QL?>}9ATWqW@oILXit;##3`JDH!Cus
zY$c7K>cc-A{9VLfEA;E2FZcNe;6Dd`1sMMR3@+sdv0Y-#%y#EKHT{Ldezl9Sxjlr*
zy-L!4;c+l7d`&(XviK?{ulZHZxFio-S2pgcL{Bmz!QMIK6x9>LfwJM<h_BIq&bHfp
z@Rh(?!0@#LT*_y*+ahc!q}}$Z$D*<F*IcAS;=uH^{3-&7&|pJQ+=%9Fl4++UCKFNm
z4-r4lLC>_)JK!Gz{{jp@tm;F4K3_W-ruM4Gqju^VwGio$evn_~-5j@%SO6a*ZIg*6
z5h$eJi}+azJ#${S8oUWO3o!iD{x#y~;rP6@CH8v_pO^SyA@JC*6Jg-7-)d3A(uq>m
zW9h*<BdK6{N>&EfC|%A$>nhfqxtv5NaZoA9O{Q#Jmz&J%mE)ufi;}(Ut_1{@^T{bn
zfT8FiBQ8GyWX9R!ivS54SUKNqD8Sj8R8;(;*eM{0M*^h_seC-!8>Wlc?hq%0d==fC
zq~C-8PY%L4uc~UaJ;FYYK#IyAMtX`=8mkIdnb$JETOtfJ`u#w^sP!Y+P@~O%joPW1
zc1Y81(!Xy2zXSLhVA|<1a48-0zlZHq(|<0LOVfs}Tl$GkRYvo=+QF)B^xz!p0&>Gz
z*OB8U>7__S-reyNB{JPEBjys9^al}r>x1lk-vzu9=nWY91Hq*nao^CMe)f2|Zq(oa
z@(Zj7pdOlY^>zBloFb($rn{4R>v=D7UjzO%;C{f+%{ds+J>t5*J>9G=M%_Ic*;^DZ
zvw%fmBXBDJCQFVoCsR;UP}z@JW=e|Dr-;Zgc13;>`P^A3GXFT$IX>$Wx0~M&-J5(y
zep5Rr9FiPbG&osD=I)G)!;V+&C9C{ocbljubhms_lJ|G^kXudZHlqXNI{3G!eODrf
zxxW{H-vE3SFmnD7TuS|s>>&=9bH;{k+ndbpv+i+`H7|zBP+ojuKGaoCx8x|KC{~Gd
zP(j99_R)#F!bE;PD^s**h4Q%eXB)1o%*r_ZkBHykZ&`k8zy|<>0Vx{z%zn7eaJYE;
zT3I0vrz;G%zG<T_Q7MxR13T}SUNd!@aqCv_?*UH&rhRh%9?{-4CmPpHUeCk&f7B0f
zsFmFexgjpo|C8hp=Z3F$MQ{B7(e*FTzjCdo?cTaaI+4)@GGuhM^GXucx<>F4J1^ZY
zrypUkNcc$FnbEdiXx_O5TP1yI_>IfSu?}i!Oxm)}Av5PGJXtszO_W0ntL~%t{=>hy
z|J%VY04@QHe68S8=En2ZA$E2({aK`}>Q_s$-{DAATE7j=LLG4aq@=Y=Kdr5KReBbR
z1WCU$gnT)!%47SLCl5IJ+?LbP!*oK_-~7*rpM%gd`z`ek@_zss!0=NEF6D^pxKktu
zfic`HZQOt*<wO=wyD&;;(*ZR?D<>zplcal{<eVaXtKs8_?t1Dq_xT*~XMmpqhVIb+
z7t!s$HoDK7;y6~}ecrTn)f(ya%nPe%hn}t86~(uEs@3}s5gxhJhp&smSL_JoqwAx~
znDEU{o$wO9!RSwZF#mQ>+VIj|)@5p_Uf~f6*Bg_Xhnig%l=tm9L=Vp!6O7N3l<Y(p
zOD75nmd)X;dB!wv@o}{H++1(P@w{Ka`{Vf^PcJR=mIaH~qUGF_8!X;zyLMBqQ&2MX
z62(?0Gb)&vhnY{{^>*gnuK4-Qs^Cf{PTfj$nS`EqhoX|*s(_7hhHJUkSe}!z8{8AR
z^qu;k!nH25G1wN>&`l5YTsE5(?D8tg6Dg9s4=5s8_T+$deBNJ_KB!8t`67%nRpvWG
za=Vs{#t6=3h78a#koqq#90Vd<`#B|fe5L`?ElwtyRDL-Lc^o%qEIN^~q<rO2q3c*B
z86NLc6T)-nl*{{@B;(QK@X$Bqk1ZeT&h}^dV=;g9-FfbOcdol2XY7EnYHnhznlCGb
zXKd#opD=U(u$}4pC)(MjpVWzl<SM&A2h);3`BNu#o6779RWAn;a{9&jAN|7Yo4*ad
z5BMcu`pv(<rJQ@D@zeC1SjWNI^zCSEI`u8F-}+|sriUz0cj@biP-Iu>Eo8JBMZ@)V
zrsW*RDeyASC7YcunTm;}ffx@dXTQ-7K{yrhISWr(!{>7FuL7-r;q#~ejQAWL+b4C8
z<Fg&ozn6!{iFEHv?68l16m{?KC&G8Tq7OfbK77p$KfEOB%~wS4M%>QP<}Q6@PwRdA
z6q-7rZ`MwqlHL*zgvd(^$p}~v%plPt2NHe|bRm`cG$+R`W=-CWJjBTa*_tx?n6kl{
zy5wwqOs-cmUpEB0<~YvMb<IM15wDBwr8URf%WIa|%LDd{lXYf#(TxP$_^I+=P*cO#
z8OQaTo~|ofACL%ZZic++UsV1Dsy=+3alHS9d3pqClb3v3)WTE4*BO2Ri@9qRr$Kfd
z%H!))j^n8so`)MqzB_(Y&S*LR8|00qqui!2ltDp11q0b7Pbz<}ni{^&@Yd({c6}nd
z_EtlNNxbpVibWmQ=(Pv$dyv#;At8Y4ff@ZuL_u_pGl9XoS}$~}RkgD=_ZY9b`@-UC
zg?ZN(Rr*Rd(Z6g-rdsv)zNZq^sf7g59-UZJbWCplk|p`o>KdKelG#vnOs0R)lH6)F
z!XD@ib1!kaE-b9(%%ep150rFy)K3~ej{1SDdz!&-0&W9LKlx?+z40G1*RY?66OpX=
zLeJA?0!oY4>jZiEV~9@1o&RF}eaBi?mFn+!dHK3LuNS7M-8oqr&NYW1j`=iWFTz9-
z)`-1D{4M=nm%``>{fRA;2jg}{#Bb%lvh&3-@MD1afZ_Kta48SR`o(Fny+T{RHY-%d
zZA?^u7Db%?O%!E%x&%zTSbx>EZdQYxVq2#qo=(zF>&ad|ClMY-skYaLxYM4`5e8Qc
zr*#Z(K8e|XuIzylDwMF&WDB3Gdt<6F+Sn%?tcv(Q5c4PP{U>k^C9F!o@V^0Eim_ij
z#Lm|^ZMCW%w~KlEK_|R?8!e7B^y0)Hv^NPe>|H91i&=~goY2+oJTf6YrWWsYCcSA-
z+8a#TG$LJ@@2AJ;;>+_VebJsYVMSwRYjL9<Qar)kYZrgfcCRYnEBC6r;!W=TiQ>J1
zduyurP20USN}TkhCR+Gq(T!QzCz9(i_%4HQk?Te9*MT<yBiGyDQaV|;hnhNkud<W5
ziA;Q{#{X&gAwE!2Pi5bTZry*fbZ3Ac3mgX+x{JW297gx7#<jJz>sM`GUmJFfv!fG~
zD9_C&ah{tx)PiyDqSlyREA<&U9|nICcp5PDo&%TCsb55UYNaa|aUL)vJP#oAvjbR6
z&n4W=hU!SZ^e0(*1Hgv@BLPEi47ilfBj2KJtHOkEQPky64vD(FC#Kg-eMY{Uz*~X4
z0YmRza4DU}9d45^OHHCIe{x8aW%#X$<U2@xhMxCd^xi-QF!YMRrF@ori%_iaNEbG&
z4vBria=svWirVg9OH6Mm^%;7bz_$Y1V;ZubIQo5ysf<OOv6eHI-|vg-eXL!*KLdXa
z_zhs>_$|1U!{iXvu+a;(>;9`_*TYL?E$aZpj$O|JwzXf>ZZ)4~*RNB+7XZfthTaL_
zQaZ-F32%>~*Fja*!mJpo?x)L<+NJtEWz7Phe6cZKw_5r~^mkLgSwBAo{&V10fT8~e
z_~)f>v^z(je@sXE%>!cj|Chaw)4=Bf#{q`^VsI&kwReZ-K5MuZZfNdN;Th?(v^hXr
z?#4*{ZZ!;y=(bX?=|A5Ce-?NFFm(5UOF8=UaVXW5-;*Q4w<R9;C+Z2#NdfC!N!Z3Z
zG@7ohbZtbx(sJ79j|86pOa=`7Y2Z?h<_8vLpfcWW;s$n^KFpu5C8pOxeMa89!5;)3
z1`NH&z@>Eh+(h}VB5GMTu*-A@f4=&`k$jfQ((3|V3G@aGy=rhNN0V>JiEV>WI3$RO
z;$6_*WpQszuaWwUe7KNUUj}Xj482>xrF1Ueq0~wnZ&9&B-zVy4bR)nzNv}2cv867O
zlQ_9;blERkxj+UmbaC1U>3&W*vxDuCgr%nRkcjS5>NWB<fu9MS6Vp2C_;*4(ISsXC
zG;5Ul&T5S7-`lSKUxB{~ybTz+-UXL(RJjiGQ|x&6&}YT;>g=pM)4>~n#eku=3|z`l
z?q54<*$(<i2S3Hup;7y_QlDwRN5P)}o&pTLAA?Ids(gpIn;!XwRSt{jrJXFjKHzo0
z2*A)A11{w#^0lMZxqSO#dd<`~n)+lNcOCd0z}Emn?;&t09qkIXZf6#geQm$m1so0&
zHc!UWW_60}2F7y`{%`d|Wz}MXio0GI?SG8(1)0x=M{<5ly@qbabu7%}tzLkkTMPdA
z=x#yf7M`?rB);e{;#Al;BBH;O`VIXn!0!a^1q}Un!KEx}^W%y1Lha<1L-9!Niaqv?
z-h;N<V;>j3j(8ABuh2j7t-gb?y28k@yPwH*r|ChQsuhr$xLDt%bZHty@)GCec_)*d
zcspC%f@D2*-+4}|B2Uhx&UEIA-AXTlct4|@di5U_Z|AJ~F_9egURI7};AaBo0!EG(
zz@^;1B0iUjuZPQF+7WlD51i0lYC-t=XyiL}Ioc8t>cNDyVz5(|B%UlABDU~qkWSYW
zR41G+-FF~tPA|98?-Drki**S>Y&|!xx+140?Hy|`bdnW+QMo~v;m%^w5<0m)ARFKt
zlygwww)q|HpxvlYeG=a_6XC%Lk(@QY)225Z20j&-1sFN60+;geagm&B;y7f;Ielm2
zsx52io)ri6#r_9c9n`!gu_1fZx4IA3W0RcsI&Pku$>?g*YHwC)6hu2keMPkSAYG7g
z@lN#f=CF_Vv1l8k$nRw1XG`J%KmDNUf&>fo&y;h8#=K+z(bc9q1Bk^sQnWRDCP)0g
z2Y;3DC(qeO;QtlggDn36xRj1|Uv2yo@Lwjkm2*xG;C!7mr5vwup8%ne=UnBKh)x6b
z)WmdFfu9R}5isra1h|xr`c>#~g0pb_+D)5c9k!FcRqTXD1AT$(<<0THbjUyASX)v~
zg{~z0cUcgnKIrY%Cn{A*kuL02RM|!M&f|zU<y7H<ND4Rb93aoHR1=Hg`VCQH2_Gw`
zMSKT|Z2J^~cLjO?hVL41DMx4@LUctb8wyuW3L9s+btfl3J#~>B`qV}3vp1&GNIhme
zKNtK$;1a;lxf)zbNBa`F4{a$I3hPHqlDp7Aw9N7-CPI9%($gb(UZWmE=L7J60iObf
z4kzg$osR2O=!kbk)A|n173dBhMO~O<wdmKCg&Cz~jbyRfPjuW;4#spFsMpXv4ZI0B
z3ovxg1DA3{x^d)-j-*?a#P$->53oZ3AU#|63Q4!lh~#~adJWxQfxij74H&wA1eelr
zos7J*x6j+!M4Y)WyL4gwaGJJ7&$pV&aj*?<pd|J^7}KfA$@Y`+;Pt?CK#Fvz$2#~)
zQ2&lCYu0YtbQVj}P%wUXr-lMASE)g1KYt+51xTgSc41B`tuY%EyARhXv<tWfQg`L7
zNX|XbGIBl%{ygv!VB~xaT*?vT+|XXm(v>UN1598Ga4o()R?jN>>lSIz;m&z-IS|vU
zOl9c}1|JEG0}Q<x;8NcC|D?SMd{x!e{(sK7=MK4<ZsrgOxy)e-VGs}$A|Mi(qM+hP
zkU@|sGAL@*h-k5ONGVn77!ehRYO1J6QKPkr*4AhpsI@g(>)%>i^R~A2^|kf?U1#ro
z@5v>B#NYPw<gOdZde+)!?|t^Twm#=#=8y1u&C-jK0kiXJH!e)KwmUzxtx7VMfW7&$
zN>a}9jdu@GeYNs$EBeG?X{YW)-U;s29Fo74Dd%Zac~x<_2Uo0Lx?!4{SjmDb%bJvF
z0*W?h{hy%AtVex~{0#_XCZAvG`d)keOO*0ll;>L0bFrsM>z#oP@j&c89r;{v9x(Z|
z7Fp8vl=CX+C&X4tXmMgWNM7B^ZUfeCH%MQ8p^m3qbE3+pz34OL;5Fp8!MnileTXcn
z!+NG4i*%jXn&}-~QBBHrnv_>elQPhpi55MLnzu45$vX{sCYTEh?`g=A4$rHj2PR41
zOeJm8e2wUfqfhd65Ax5zv%v7Zge<9pcA0j}lnaR-EpM-y$qdc5J7*Bbywn*hwR@ln
z-)z;)RQVdqPQJeeA`b^6f#EwES<?6_^`1BLrtQl~GNw~)HLry2&Jsdhm2z|k#tB}w
zHfz3m^qJ?l1NlyHH!yq;B1<}4eoBls`oXlGo{uMZKAvkmK!Djv!Z_adAS-7nKfgq;
zDX(cU*BS(d0mFM4vZRA6m7jZ8sZabQVxGUemNf@j-Dd-Kb6}V4ef-?<KE^*wJ93lr
zV45{-M5Lr}NT7%r>I|+H$mG3U;8fc^B2}CYD5raRqs?uEn{9V$=2TWH3WG!4%(4vj
zfA@`X+#n~!tbLH{ghn&T91eIfzV8TRjB}o{Lvg#W-7|E0`Yik8;LWV&CzgAy)*9t!
zD}I>#{Q~*_z&F778Ok|w{tm8KsiIxx)z0Q=-sCK|&M$SQN!Cs>SzB|G;;TWQ;aiFP
z9dIQue1AfgWa7w~{bc^~W1gp(oMzqN$7<c+mt3@zjsZ7@tp{xO0fl;o3f#0n$mL3|
zU?_BYZdy^aI6o8*jCEN7?H}q#mKQmp4A%Ks;Eb|S-3=CSUVb1u>g_X~0(z5dX(oTy
z5yLgp&Mb0bL3?gtu(Vge+nf3m+r2;FEVNq^^Kq^7m7n8tll5{I^7&vbFn->LENR9f
zRc^NEPrsjoD<t|YWfljYRt`R`7Djfej|JlG4(G0r)tBo?h#*0ni%2Lx!jZCky3Aag
z6iUmOLUj8)H=LOhjb=Y@7vzLW*iRZP8kT;#yvJrZYuqYlBS#BL-0N(&m)$d+|8LKa
zO;i`b#1<%jB6-Pr-y8V^Fbf!ezK<+vnqKGGrPq1d`?KD}ax1F4R;FdXlpljYA8;y|
z3$nG`Yi$(gc7&|D(S#u3_MOlO)>+2{8KSYO*fW%sAI{5R?R@}pNuWH^cTl)^L{YeS
zOp%ix=2DaLKrDT|_;`wYj2pLmxNP1?o9i6yE)B@{N@u9|nc?kCt2|Tr*@hpce1`K~
zD+}ZT<7aPVNr!8126M|^;=NI`faYe0vtIhVZiYL^>6J#km`TT*58jWOw-&vI_X6Y%
zV3X#O_j>C5g_o~te6Pm?J&8`#(>klCXr+Iw^)~zTzJvS$_!t;}K1Y^h{28y~R(twq
z5g0n9vsu>S{M~+yVs{JI3t3N4$^PgK1y7K1@CeCmmD<iy`B_zv9RHq#ycTQ#hW{tX
zk~W;F>cJ9!xk=7nPzgA!`mEY)c(e1Y&ECub-p~K?yC~M&9<pAbGtir8M`@uM93mvL
zQDNV_aO`52lbZQasRMyA!7<^1_7*!72=?bda~_LvW2E<RfpdZTV>?t}_p&!|Cf+$a
z;Yh4jm;b_~A0^16z&K$1xCB|!c0GQdc6Q=@VCG>=$Z>`WS3B>^27|5Y<G&0X#D#}L
zG+oApYHpWxV(k5nMbnDiXlP_vxYxx!IUa^1!7``Um{PZIu(Ts*E^?M}=L<K!h&$Ds
z&G)%uRV`Nj9K_yo?3I4Q2grX0e+9;$e<DljU>s_$(ok0++~RDs{>D8M-t7y=>D~hI
z7&T8-5p!gkXEyQ@umTvKE0HC+=cxSpNS6c3pUhk7D>R5cdyDhAZMX5Ty^qsBC&zAc
z-g2#hywo_&F`K8(W@smpu_m}pF1BIM@N{Pdml^H1L#5nmoh`q!toSnRKfH0ii~k=X
zw}F2GV^?~yvg;VVuk6cYz2ItjDVS0u>pqnRY#Mu<?r?}&vz&t!p&M<dlIB<Lmo5!>
zJLx9S9{)(fA@%i|8ZpDFKTp|F3y-PyYmqMjmjh$R4akxXrkrCSf0jy2)y2z~F7_@N
ziOpf`A7L~69nJ+TdG{oQY0ymz68upbn)xobf_aLTYyZ(Zo?nRne?tBj_&;EHqdgSw
ze0?4$KUpv3`I`)AvVZD4BKOPOMd)P71-9EfZ1*YL<fIk;$L=+&noPfxYm*+ZLnS<f
zL7_2b0segLKRm|&b;y^2D}k}&dSpqaeQMXARPBQa$(~nr>}1<JZ*zxp3ETK&YwM6e
zU-7%bJzl$CuXzum*YJKSd?l_G0)}@uvZODx-}yQpymoP!H?QiQ@{v-|WS{Nj!Idg}
z^ap%I$qG)`HBg=N*sRbu%_+_dXK>)Acls7PBbc6-5ex?d1x&N`kqkLGV^G?ek%}O1
z;1au1N=e-+l|S{^VV=_ukbeyB0LIP-kR=UEImh7Hsq#nWK{1oCPUkc4dxx{tmb(=q
z)7dW3L#Dt^bjKu`JIh+Fc)vui;f?lWz6X>6!+Sikq!xXy#q3M;@g_ojH`~%k(_(X&
zS2E^4$NH2#sJR>;&5j1`ap_#u8O?Lb3%G%vt2iA_#1a-w_M4pNE@SI7f>pUj+0_7V
zobOU@Z%4itJP3?k2aqLoFy1+rk(^ATk{51lCADRY)yNqqYY5YzZm+^X0f*A)`b604
zSsLYtgiIz%gbTMo^lAQBuOxpD<Z<8_VE8XUmb6{B|9g`2x#mh0i7f6lVmGL^Y?u1B
zPMWlx&hJ82aUZs8jt>nk3`MT9bHW+t(E**87t0K?wLOh)P?~eVrbnBV8IGkzgQbDO
zU>~yRH0BN>vt*NTuTV+)Y-gwR=86NAXeCvxQ~B4T?UVfb9rDNEQ()}>xBmZTUy=Fb
zxyo*rijh*1s*b0k6-^FXyI82~Um6|7-k}2NCtH?|7iKkUzN*sXd_^_#e6Ro*zVnbJ
zrJkdM&s=Q~A6RC`Gs=W*wskJGIx1Hxus==shDwMq{yw%|`PYO#Q?CyozXjd}hHqqV
z#kc>^`a-Q<B{fEd7v3#e-gvR7<_(A79WUB*qt?C7K59ZAX8R+~0M6qq=Kw%XmdruR
z&BO@|<u}Dn8S#yrNIoY@`PY$N!LpDX;>kqL;J!V!S_b=ZAkbz%F~<UVMq}Ks1Ic<=
zvr+j|kG<yoc`foS;7(xt`6;rbH+4DdpDb_Uhcr)(_V<}8u^U;vmU)xi&bu7X>ccxp
zws_S$bc>IYRf}QXtkX|aLp>}sL9Jv|UZm`ZlqK!RMeYa6fw5x(awm2qLdbVy$QfNU
zBzCc~qX8cCe1D95FL)3bJDxz6)WQ6)xv{N2c~#s4^bRbJNJX90tKwQTpA}E?MUhKD
z88Cd)kUQZ^ToKo3|ACz60T7imooR=kIMQp8xNpQ<%nERiZ6G~Nn0$7VW_g#yaXhO`
zio$Pfr$$v@-lE!n_>BL%kRJ#8fU&24pHA(OvORn45?`c0dZJebyq@SiUKjKs0uNZ5
z?LKaQ_B4BoE^MdcSef0A#TM5N$ThnGi3rJoh#cAJ9^}f8Fn2%~I7E$1CzMh+6w4YM
z95OXM?54A>5Dv##hLMA3!BC(q$T^cZf6Gvg&Mp46InJ;3LQ>6T%0IeLiTTG%kuL|E
zwNEk*+H#EQC;Hl@gkRO`xrvMtpTj*#IZO@a@bBxi-ez=|e0vM|Ab8KGx5M!jErQn?
z46e{)tRgfQaeH5p)u8nj_f6Vcfjkl%1tf{R9nO~~^%|24P+Y+6@A9hgQj^xd$*2E%
z<OZ<4>-y)dxJ2G}+1A5gR5tx`t+&Oe_fN>5fX}+FSIQB3GtrxAjmf0GX}#tBlJCbV
z<f-5UAW8BgH4c;4Ur6Q$di9>JGE|pYW6Qk1q^M~9ThV2n<88=yg1deCkMJDT9AGKB
zORe#x=#E{k%H1dEi1S_Ei_!kB)dvg&re0McOB$p5fqRnuVc$IJxvSPLUU|xz4J%g3
zjOwCuy-`A0z589~n}A*K{?_(BMtsASw@tDScgP4XV+}fIx@jC3n?&qV_N-P$DhE(E
z8f|x+b0*``GJ7p`rKVojf9!~3huGPOd>?oa7(4eMOG>?8gnT}4)!K6_Dwb_rv)Fry
zbE#Uydem9V3p^tno7R)J=tyUr_cG=0n>C*`K<N{{G~^O61sJ~X>i=*0<>vlh-Cy9L
z7uEG<jPz2FA3GhUbef!nWj}KwlS|GhdfYB7EGQ^+3Pu(e6a|a>_b4a{_9>thSsssC
z^B0bjy|dnbGbRr{W7uS8qBF6yuy;YJ(~I6lfbF!y3x)-U_8(F(I9OURBUsIE<hKT6
z$;R={-Vis2Uzb>~-lFpHAa<K_^f~fZ;2U843Jg?!cRKEn8qjWo>`6FCTxM$z5p1jo
zu%`R&v240p@z$W%tgkFXz5rYZ4DTh#l2XrmdG*A!bc0!wQ%zk_-Ej%p-Q0-)teef9
z2%@L<8pV46y~f}7kpBoi0fzT8WJ#(1Zb<IW!vv|Q@<?m0m@7L-?qWX`u#RPqzqd-o
z-+x!}jUSZcI}!O5a0W1Z=O9b!bf1imt@aeXEB7k`$XKrUNXUs2@6Fh(`F5kv`1b<x
zFTrcT@V$X7>G1yf7g+H#uj-`95?z0l<+7!|k~wz0`<O3Vm7nqQB<}>|<H3o*@XkS&
zl)B!i@^$G275JILTIAjJIE$snuNXF2F0j7C=0n+rY_)0L9q2Xw{uFsHcp4bq=a3~G
z-rvMRw&(0>_F8_$B}f*rd&J%G=Aoje{#xa4Y;cly5b`K64jA5v$dV4{ub;K3b^{Oh
zJD#)K9LojPowC((y6X5eeoygkMX&MqF68^c!@%%9iY)2y{w5|gr4UzLE1OHdk_(Dm
zz~<8VNr!8`uXs7Uncyu#?hgh7!#f;V(&7AV$69-{Y%YC7HkW>7e}cz=+pqEXV)3~7
zI>oyQy~f`gk#7RG0K<DbvZTZN>sw#0nZ!KwSMBzg%iqVZSA3tK&+z>R*&WKb4H&+3
zWJ!nf)6XV*%)d(6V=jMRulW|B&+u(Pz7$*m4BuvCNnP^KTM&{W?Cm!H%06VbIf`yj
zejY%t;r$T#PvFm*OZq2=Ymc;lhHU~4>Rsow*IIw&u%!MO$Ti>;VEj5AS<>PCG94l*
zrZu-p%*d}eX>YlJV!A9@Oqrihe(grD@#`7nSHNq)@csr_(&3(;pS5<26w_s1DZP$T
z3YhJ8N83GAy^J*|-uQ6#c%WDM2S+2H2<8IAdlj;z4GUGjeV6`Rw{+R6rHeOItX{No
z>FlK&makoM>Y`N}<>kWuwm${Doo&BnXIs>I!ufrW&in``KO+|D$&p-sR)mMAamGI@
z)GK4MJvVELdwkAFBF(bvD?QJS_Ux5&vJ9VAut}`MX|_XW5+kfSG{Gs$=C>-fZBzEQ
zVxP&k|3MyC!F&!d_TPalsaUV?PFt`1F!s;8NP_IksH1P2`)=TKmqS2*x4n-?)W@6Z
z<8k%zLc4Egc>l1s_w&-vi88*|xhLD|HOiUd^k51h&5g!RJ2iX?A$bT-5Mq#(Ijqp#
zV&@j;6y`>ArVbzAe4kz!Ke7nwn8%z@elVxpxxsej2Xkv2STB|T?R_8297K9q+NCm|
zHq)(fs+<jlrA!mCN*uSR6kR}9>jEMrY=C?NP2mO3l#C5d{{cU>%d>|j@~!a}m2a^T
z$$rcL<Z>_!NRoP#I_@#~B@=KJ8y1~6%Zto(p0&?8&w7+&Tv0b;Pw((!y<P7o5pq3E
z)RS8k-&S;+=X4A5J>UUgp3^JHlCDdc*Gc8Yx}wSj9Em?+L^|ZpbN^WQ80KhMKzDP#
z*E`G{i}#bzGyE<pi=fB5-YTLps8!ojT$!||0(lac3XDDLktLaWUZd@5XHVVA^W<G9
zHr0)zALlKHM(9KCbJ%^?#^5>^vogLY4gaGwP5oqvmo*`#_9M(41zEiA>6{$kRuL)L
zS2(MkC3*^}>UNcH&Dc?e9a2AENB$7}f56x|ZKSgE1wC){f}Xcb*tzr~J@zHq#-{-<
z+Qu$E#Kyg0>!t|xGE@*vi^!xvx)&26Xpbl6D&aGniACvz!5mBWW;+vmq{p2|X|P~&
zn4^^u*{f-X^U~w&-%>JRIwEPoq8ZE~3=dxIEvOTKij$uFJe`x5kJv=r85b(kJ8bV#
z{xxF1DHo3;KM!64#=qYnOG=#&GXBk6v1W<ym|ML)O*Tj`W}<wbob<UPP3}D&;+`!N
z<!3odRO2W5G=F?lvK}0RJQbV(4F6nYNvZvL!@q9n`n9VrTzax<4s}-NRSq5z!GLMj
zZG;?(%b0ASTjZ@^#CIyccc9n!{V4KN;AvoZe}OE?ls_{*GrZ+P)=3w1aD`OJxyzPO
z2J@;$)7#zW%&}gCb%?N5=qOLjqiEjP=p^qD<dNVgV0e#3?h>!Cr}F;#P~K+EyA{30
z-<`<!gP#Dy`#5sfc!{Tz%KP@Ays^7gK7WZ`GhWLZ<61?a7m#$gb}o^>47b;=UcFYL
zvpsH;yZmU4=7#cy5X5n;QxWYKO^@~oMWe?=PYZEhP;?>zbbE%*brweZM`?Cjv>jXF
zH2&X({1fmfF#b0qOES;<v#R#*sf0brGi|kv@`^86C`JAEw)F<#pBGSR$GiD5H#d?S
zT%4YX3F)R?DnBAeCG(>Uxi1(9By}l2^o&#%q*>O7=~>=i((l#!>wNmZi+nS<4H!Qk
zMV3@KL-`lc>#~QG>nSVLrNGVhBya7hg|U=0T1}4iF`i~goS#r(U>>L3hljlwJZHE|
z*fv`xHJx$RJ^J~>XP$p-tZU_gA|R<t{vNlAJum#*Y`C+nuhW@>^U}Ra{{nOw{Tq=t
zf$wxj|MV40S1oBzQlF7+#kBstKK-vDzX9Ivj(%w%F+UgcbFD2IvZqs0rPg0OE@}Tr
z<S}48kkqC8Nz@K0hUwOI8R_2NR%!k9=!)|jd4KIhehNGTOnImruekOsR^{P3{dq`v
zSh}fh?Ya$1m#EIB>;x=pb+(7!ckEW@pzVDe{XPclb6!ugZpj$ID{Q_UcGD!_K%|h}
z1w-6?dXwpalFG=4T$}4#LZgbDl7difa3n9`bZ1g9KNKQ>$C*K=By(nX8oM__vFh-N
z)ic9$(%hqhg`rG>{D!Aba0!Glo#=u?S;fj>PfFSZSpuHmEMfD?B6ovxg>0pnLs1;(
z%(N%i^FkX5ArpU4m6rzmHRa_Y<e!0NVDh5{SyE^3n?yS>XX9#>734%-%{Z30dVySq
z8v7(N)E5Ml%jKn>=SsA1?3?Qjlg6M)+fjV9Yt_Od&t)WXHCPCY9m6LmJBoFjmao@!
z(jFy@=-V26#C|_$w+0(By^lXS??b%Lxj&n&6d4-ZY=lMD_cG@bgp2EDLPOm=r-b;3
zB~Gn7&^^~V)!{|y#tQ<4v8>|Ee1}WRvI3dJLm}oU7x&~xa*DHvo$8EZw7^YQ^4-aF
zv)So46byC>S!|tC8t5J4!R9;t_*Oy@2n0n#0dX*hH^{mkf6Ye00(X-X6ZUL|gM-}|
zn*)0V3SBPW_#hbmP?kO34~AP={|Ns!7=D-Ug|TAKf}qXj$hU&ww}Zj#lchg%iF+0+
zAvC|QIHA?t?&NNF+_UUC?kU+5atAs;w%MMS>ztTVV-Lum?v$1B7xjBod1xe`>-2MY
z7Wwz!Ltvgm?}_R;EYbUGb}T#WbC`0m?t=7f2sQ?84B8FB2W{_TzW0*@$w4V0Eg|dI
znF|@DNX;mxgBRlgoE6OBCZoK(NZ(Q6k;Jl@*fY{=w9Nt#+fu_hk*rbS89cC2QkuTw
zT<8$Kd4oe3Y`)T;dQ$mQhrQ-K_dVoWz@5PO^HXF=<~^6%uTGTjnq=R)_Q&#~>*+y^
z{|DEuX41C~(T@(T4D<>Ut;@2;5hHthVjpMAUS$vGcM|p#A@>D?fU)N|WWPO~_Oo=p
z7FAus+WBB6p7wEM%-WtMucABxG*P}nfp9Qmd|EiovuCt>ZNeIs1D?|LA3jt6A3%N_
z>;uN07m+2I`rm0kVCwQkYt$TaUR?!ak7{q&@gv)MG)roJUeJ3du5!JFNc8Pf{IO$`
z{KJvQgJXf=uSV_?fA#uP7p+@C+~dVGKt*+95+<;#|9NsHH_}6yaG_^HtLAS&zbPO0
zAwLgZ0){_*Qv2u8ssG2XS}He;6ydmCHv(+ZpK{4?$jglXI@TLlQb-u5{t{nA23>5a
z3WxGD8EO|+=Y`xf+K2o+-VFSkw488meh;_AVKAG<KGgg&H||JXea?0tGmo-%zsko2
z*tv;}lJ>I>xgJ~%j2}NjmgMU7rvCc#koTJR{+G8|Ti`wW^MKtJnDsfud7twJcc)~X
zO%<KT;?mIIEGgrhsNSh!3^qTl>}Z8&tG44C<m}0=l@E*^{gEZ@(EF1QZ^x92t2xYr
zUryf!_h0snuHE3Cd?WK3`<#DD@XT7wS?!tQP0;MJnap>}q(P{9R@qYrpRwl#<U7FK
zz}WK`a(C=WG-vLY?acW%A+<eomSfJSpl1#XCr@f~tmbBAk5$F9fl!`PU*u6>95D8r
zfGnxM-uHZ@{1JPmGbWHHR_}hI76ecJ#(QEPIo3nj^28P-ZQ_aTF*XTL<@3s}9q`8a
zE_VF{c`tYl7`xs<mSpZf-!Qe4cE4IWr$u$=Q|iz2N<HTU!uBZ=$CElZm#sE={|JY_
zV8z~R5U#b|<J1%L)LWH5SN4=2m#mkQkgLHQVC*>uS(0hDJFS;9mtO1{G#P_xJcE8}
zTd#V?^!N7tcxG(n7^)O#t4;IoM!#tnpFw^Z{2CbkcabF>v0YRXQz>oYd)XbeiK4IJ
z1?~ToB>z<8Iba?z{0osK9g&}YnW@q#Mts(h5tYAC{JYU_{BK77C1?SL|2^cc@_R)h
zh5YM|$Whp$`OBv!`Hw@M1?B_8zYJMYxsG4nX?eu|xf{KGOLb>c1Wxygz<0bNc^%gz
z<VLEmiiEe&7<=Vlqsy$Wv>#0`s(fgICk~I)ix-jK0KWsqj=v*II%2&rM%*nse9!l+
zXpx$+z`6}H3L{*cNY(gZB)pvtj%N#tIMWhUqxB_aPt~+!y;y*}7Hj~<o~_7|I-8%;
zujzJER42$3)mieRxB4NSi7k%xcC1e%J3!oLLjRqeUgnm`IDRqlff@L=9Z>ePz*h^O
z<j?;gM~)}f1u*s;g)C{8?k{fA`=68VofT^~EM2#ZTeIeS^GAvPJNwM0dApqSW+w@&
zE)D;00#;jWhD58ji?|+usH2=|jAR@~eCKEm@6j~b5;Q-QEyuKJT{gNWut8rQsh3(_
zQFhm3mnq-7knaNzYFiIK&P=h_KkiXu@|$uPlecP~Hgwj(EcsJ3-L)#fXkhZ^G-OHJ
zPgU*de7z6k2>FxfR}+fhCdUgxu-o=NdOyNukbTZpra5v>cXEihSK!nJ*d=HeW)z1<
z5@B>A@%cxymCC!><8Ir1&vvdz<WJkHDt~rkSEaW5S>%_%FM+Z9Eo4ctlsJgSZl;Ac
zF5WPI(Rmdd*QNnxxA43xWHxY(^{*Vx0;<E>)68)$tM*rlH-18LpYR0alfbFK@HQb!
z+N9$*oAX?U^3L*In*0sN7l^oimF;~Dlki83%U$cb+&&RT+;WXJyXVp}op`Ay7qTsF
zSfpe?xS|K4GXt)4q#Xhvl)2H_8RzuR9ymKXCpg=w8N_u5!C<fKa1KG`)45Z(2fMIC
zK?%|NNFX%IUgo`1#NOuDlz-NYWIwGGxdMy^#=o`5lHz(?Rd>kvYQ4%?ud<kyo%0Mg
z2fRJNH}N6Py%w^*%00~)!RFop&P<1(1{uAam|K)P#fkPK9-nhY??_R0j}oT`!M?d@
zwlosVPV4PD*=efr+3iH8JI4q1+3eN3$qtptl!Bz#Z<HSguyZTlrCfi8{I&Q{o%CZU
zvZPP6{qaNQ)ei9^+1cYz(EkQrbL<u;`kJ>g@DpCXd1rG<YqS&08krZ#&&%#bXShcw
zo?gs(mScEE{oP<BRuIK`>peSiVc=fd8A_?HdP~{6347|XN9?^5xd}WDOulE%RQA4L
z<`?Qx`!^lf>+5{=Z4TX4@T^>h_^2b7A?|aoEVjPRTbW<gdwglQZ=esW61jnXfw9HR
z6J+!Y<OXsAV`CG710%hPFCA78E-4$U<l+gD>d1+Kfq`CW7crwiU5&(I1HuD`I{7C!
zb>6>O5h-`&?^e+EMb0GxaHP*5H{9E~UhdzN->09SwjxmO3=GWV!sqEFY%UHD92Ut5
z6^{;&88kXP_NYh>7h>7Y!>p`SI~N@%TGLhp&mVJCWOU^G;^UktlaGpwEnX2hKhvIN
zhq)iBDi|9V9zP-!JT_c8*bSz~xJGKkAZ1OkygE{OtsVKEoyYOVoQqNXo#js234s~K
zmuZ87W2X`jG-%HWXJ2hcuCYfI5h*s*vq!{^m3vD1Wey)ukoYz`*dsg;^Lw$lI3X~D
zMH>l?&IZ!k?Bdtu3BT^OTF(=!({Z;r9MxXPg}QEU=hVQ4v;nbE*(ZgL2~3OCI^3DL
z)9yL4a8$w7wtIG9apAn4x*XShpvpx9&)t;c$B<jVTfmfy-m_G>7^BPa*UP(DE@<=m
zHif<nJQA{-LPg%sf7;$h;Uh!>-sij=vJMukq*2M2P`nYYq~)rV0_PMqQ3ts_lW)ao
zTwX9BGH?_ZHU+uzW@I`!#QzA!&Mb-)kIoGDiVPswwhRex2}GW;1M|r#-I6zcr2Jcs
z{c&CHHz8jNuFyWodoDG8f@w$PWjt3_ar$8@F^daX8{~XNkU#NKi`L)b)Bis5r{Hs7
z^6&qUCGF7b2dVQJH5=B=Un}niwno`iy(UY}uv=&+E6G`G^PMYCyUIN-(T>*sN%=Kn
zcJlpQi@XI~3k>f!$db;|&+VXIZ#VuW=5^|{0c8z=ouL~8c0=G3+xw{Ye*RK@8GNJn
zR{dwxdZ3UHKT+o9m<LSD4CgW}%Qd~DoV2X7oDp0rl2O=`$*WV{bDVHiwcFc`oE<)A
z(xUK^G$+nnUSz3rPN7@Sv&79TVx6F3;>hrrG>3CtZt$qIIRB<JoI63Th|15(IVO-n
z>mAP?BF@itKBF%aV)(Y-=9ZnYEU}NUCj|!+owO)xX5N)t*OK3tBQC9<s{E;)lRS^N
z2KfT85lE8f-alpEv&olbYc3qgzZk<~7-QXA)XPcdo+X}o{4YvxGdkk@y|kmhNB%4L
zJ23g4F;{U6)9rny>nYW%>zFZFx<;+4G}sq=uV%Rm%&Q!Z^=OeyWt9da86kr4%nB5E
z3%Op;c(OBr`#chBE0|-|eWv|}-`IBr^7lalF!t?6mQ;15al>)zy~D+9x%J9tkvDqS
zVtXC;s~qb^&pJY{6Ah;im*Wk$dj&k(<`d=i<V3gKs{gC9>q~fzUBxw=cL3$U*mVqY
zm+YFlcFl!L*KJslG)&GpFZJwV)$MKUipssV*frAFRKrS?H>zR(=HHY(_3)Yg@9oHq
zV3)Sx@cm!C&O3GOYOZ0`Tax=wT>4m_6!ozhwEj=fW#-ksMjm<+{YhZ_-GwY^*14)Z
z-KyhMn{v3qUp&eh12+Wk4A_l<-rmnYy57eC->-^1nV<6NZA$0-<;hHZWX5}xxdS;N
zVE16!EsX=kIqoAiSI={$Jzc&&v}kO83ex?H7Kg*JVrEX$BK=NqPn18&q`y(({8|1v
z8)vxvJ?j0zS>_K2{LG)^ahLJrV%3@c$aY_K2(@yO(=Ysh9sQGoG|-tVn?9<(Q2B11
zoXnSA$U{LTF!?eKSyJl0Dw8h+AY+@;s*97wliFHTa~f+c13<aA-g3aUJ}&O#W@l7#
z4dB4EVvbT}%X?uAb*2w32V(4>%AN+{hfnJBgUHW=mw>V7kI0ffnya4E_LJMc|CTSh
zaB1}ts__cKM9WJ<%xSd8cq6w4bxcJDaPnAQ3|QCnDCc6zZ1R0V=u{`y9?1QJC&;Y1
z<k1SZk3H0_3S1E45KmC86}SFN**Sh*vi_Wn{8#XIVC;NqzOr+-j^{r<rM+)w=P8K@
zLE2(sYCIKqHb6{`4^>Q!BJYd;=SuH4cdJ+%GrccQ1ig><)bA#EU+zEj?+1AQ<9hW!
zMtEP8;vcGC-J0?zl2xA<TX*!35*&778GX5}n)_eEZtqa2FEJ*z*_7W1k;{q$4l7K2
z&2o!F#YM$i?c&?*;^@SQ&M~*zX;;}?z*L+$dVn+VR;G*3$_lYSeXKJrOKzQT-nB#X
zZ?&Ur*9r{?Wt7U6ut*?pLU9j?Uw2kUl+8kXx|RKi#y_gq4h@YAiwx&TX+d$AE7>`7
z#%(nG#|4H|fb<&(3lhqu5*24%da-lKt@gs=^kQx?<*EL!O<O(5e%$8A7dDa7CUNU0
zKN*dAU*2&zujq0G5(mq#vcnb57<+MaNVfdD)!x4w?ftXUWb%PH;Q_g&oBd#?B;Rif
zkyn5<z?6qKktMnM{P%{G`R)xA)%8;@W|*o%m(s)>46D{-bHsYM=LlyAm&H00LL)Or
z<&G@nYLie#o-@)tE0{^(j^L==vI4I4&dkW`6^!O`aagf)QfOvc+MrBUtb#*gG$^^m
zKPzWWr+Q?GlUbQNGB_k$kQ)xB1qnSB9$QXN#~R^$Y&(Co-Tz3ezgq9U_S&%Wul&?x
zyqNLGi@|bW{L5UR{A<?Zl*$e5>!r*Id;Pb*E$$t8ueo-M`-6b@@eAAg*y#P7=Kb6m
ze9fCvuP?K<mCbiTQR%|uM+uFt|I4If${;u^(mS*C*xAmh5mpcb1(`87lv@yY(oPSb
zk;dwBZLpv(7cv$E-K^e`^vr_H5M#1JHe}HS;#h9)NFRP<2RZc>IWv4#(C&45^xRNr
z%u;80gu}a;gyeH`(6%zXO0=CF%;&f0qSu*8$BMIJPGoJk4o%)~JUy$!YtX}Cmkcf|
z%W#5ML^s=xlM#tIM|l@0m2wI9Fx68d@?yAffD<bS_o}$hmOC%x|7DdsrA*TARo`NZ
zc;=DG;i{Ej=F#Cv6@kK|9roczrUt8~Wk*JYD_4S<gTuor?83p$ka8z7GFUlnaJZzR
zEL=RHD5E&5D41VZActy?D(!hecwJ@Am_jmRbz}`o`~|_Hk|BIs89cG)3E>%)*<Q95
z277v+y@UO{&w;_A-e*N{wD&nSI6Koh*`8=q>o`VC!TF;dYIUO1?UnX<p(){S?9j2H
z#jHur53ME6PhDiDb0U`sS38#lU$8T3G6y-u8B^0|L^e4!>4S*sGS!}zb_|!H^|AXq
z)v*)%(N+)Pg0dmiLwi?*M|#!FYAsadu!(YJ-s8_9zX9F{rX0R>x+;ec>3(+Xy!Pc#
zjt5c6cq_0x@qG3-a%}1M0kuBy4wq!vr+{qhv-k+!l)aq^0dAsWn?xpY*z#$Bsx$hB
zCpu?2m%6#x1+lbnBpl1&Htt9btq$>9WKc;pi-tDa+0-i*&t~#Zg0W!wQ7->9669jP
z2<IWQxPLK|CA4`=8|IWb<(av`98o{Zy~Pgq$n_#VGNPRm;6{@EgQO@D?=iw>Rt{I?
zv7SFYP~}E?jFUT%IZh<kuS_c}$O-0#aw3C*{lh)Oy#_I^_x`Rhoz6x0$sXaoJ*22|
zdrv|5&K}{$9>kBdtTpTcbX#Nr&!$}qRImf_QoF)EmI40<PHa4rtC<zCitK^Wi_(~O
z+2D){4-8EVjtUOp5?^^TO>y1+ospa;I}7;|uoal+vinT+T;9|Ds)mh+K9^aGE?(<R
zjrXmO+!OmIY}ZG=40<1Hy`LZ2-@v)g`F9@AL^e!Z7qq?@F^XxI-c+z_ZI;^8(!w0y
zjFa)_#!3gI4+*gq;tZ}hE9N%I2~?#R(_-9x#bM84-um>f>_~p3C^9i}OprHPft$rc
zIVlk68HmTCk+gjB)g{z~{L4Z+GAfepR<K_nGC#N=a$2ykPkKQ{0q?>=8`Ccjv3+?z
z|0fiSa;LPLA1DvSGuCif%uV*7j0tz!;d_}gI6KhyZacWm&dQCY2ZOzHBRK^(+TrW$
z2`-Jv4@Jsi#_N1HSd_JqS6C!FGaPoK7pGqy931{ndHBEO!J_b=%EKR*2g8fGxB4hM
zZDe44a2&@?rv*oISl+44VMmWsn|?Zlu~IGiZE&i&+voI1O?bbP^`zrm5V($)r*pae
zsO>UaG1tAq&I=AD3c-7J_Ug!D=h*x@XGPg+=j3?V03LA7aNYi&m8^HiBF_QyfO)?A
zktH?GR?l@>%KRFkYNc;ucCEG84+mbei7Rz5BDejq2`0mOcVr*tk22%Y(kz!<zqFfY
zvjcdDyKGc+<Q8s2iG_T>9^{@*oZ4*Xr0h^EyKk@$S5R!B7t%YIppAL`vWA6*azR-|
z+E8a$78eQ)3DBQl_#U3<9Yue|jtmT(;xI@Z7?{oNM0}j=e5$_Xc)yz&xX%vdP}=H8
zYyZzq_V*?u&jIs*@qaP0Br~s&y8h?w{;#N8>&@0npR{f&!=yYQ8x!`+M(u|P@53f4
zVk6|MOY?qg76H*)Ge)<6@Raji`o}*<{tY+?j2+xNC1zMnv($5_O<CWlTeNuP@v^$1
z`o*ife(@e}DFY)MPU;Z2B9iN5MbomPB|)c0zdWZj&iq$Fb#YdRc8b<3D18N1C<k$1
zagN&FVl^J6?5ly_w9l)NF9%lvV_yTZB(qMMI{#8W#LKCas7xH>zRG@ILJIBVBc1#@
z;Bc0J0lBlvrE+1<I(N8zp)VfkSY=Nud}dtv1@bq*U6`~dA6ZiBxob1NS?!(O(5viu
zb*J#adao4&w%OJzgkT}37%mJ7c-txmIE&?ND5+tb;;%)&;opdSCAbEd{P-cVqyy8{
z^V*{C88!UNR<UHUdgJ;HQ@kfuHxvWDE2IAX&YQN?5McXuC>r>#xBX%&ftsh<1+GN=
zsvEEUM}GwUQeOUpoLNh}FJSolBTH)4^>z20ly*7EPaI=!hoO|5HhY*iy?;A>WwGTi
zj@5`QIUz1(4RGg?y1-!?2UN=Je(sb&K`28Nl-8q_U7O%FcHNA8A9x5DyIw?=G=HA5
z=S}_DLB6ybdJ;-*+KrCg;Oq(9$W;A)XD53H0))zA+9nc;1r~d=HaFX0W#JOf!cA^j
zpkHW8uppA5di9jgW0aloMal8#805)d8ZdU&AWPb!;}>;Y?~hxuM7kVBoJlqno>PzS
zkz<*mNot;EoU_o;dyzz6i{@`cf1K~~{PrOK3_J@A|I5gdI-56D?aq|7Yvs<Qyvnic
zyWj7e<VCb9;;ujTz>n}Ej8q=0{EeNP^ml;B;3#1DrXou^yuVYpD9?+DUUzZA;g4+V
zYaA|eDkFn~)zbGEO{gB@b9|EGZxBxOi@*0EH-X22;r}`Ek@?qcT+<Q%Hn&s$*ktYh
z;^a7|9QkN42^jwCkR@%><M|ya<9gLzoV;}L(iKdLk>?ELu66DVFjsUB<2fmj2h*&B
zkr8eWhR<|WB0cz-<Md+#WU%+}vT$%ES0z=3SJJ7h44>RP%jv`0dO+wzrfze?dGsKi
z@bbaoA;SaVK+itmzLj!x=@Mp*s^vYl(jMoY%%;w3Z0@~!l<q-BS^9*mGH!`#o2vY4
z!+z5qxl3HD0F(gZ-*RM0je4K)rj-50%&M$PEQxbu<_Xt3GV_`(M`rdrkA$ob(`L{P
z&2YwsdL9#=n8uy=6GP*B_XuVZ;xNO_j`U_nWjI(AiH*y0B4fg%gEp&{EY&Ev2wDF=
z?1lPd)6xKEq{H24;|X}yn`_E?OPD3^+DYt;pP>9YfZcJvOS$<S@?St3Fn)!WD!;z&
zWSv&klc|g9ylOg&QrjdOBl>u4{d10WAWG}zM)@z~7Q5@xCI|XTgSOT^lhgO!L@VT^
zx*5uz1@M{o^jhRgK|L_`Y(th*qxUVPt{ZE6nABY5?Kdl`naOn8?Q&Fdzw>>^`VxDx
z#2Tl+yDmITY*~XX<E36ns;^ddw8CTR(-+8T%ZT|1j2+XFCGFPlodtRx+O)IEj>Kld
z&5|j@!RI23_1;6=*me^q4#=HeYz!noXOLj(T-hDSrTd(n&JDP^>y9dRGBO6!@y>92
zb2GOSBs7==z<Srl=mH|gn)hb?Ol9{D>>7_<@;rZn{0#UxFn0eHS<+{^pVO4m-&A%d
z)}x#3?HsToj@$q7AqDlP0jm|Gdq#SO*qa)4nTU-PGoWV#S5h>_VaH=O8=ePMhu6uR
z5gp|r1gp^RFyXD5t?aBiFInzRL0$xw0b}PTWJ!lFchkA4(c2SLQ^ixhK|SUFVH<CT
zdCEO_%BAv@7n5Ow%~QsXIm(U$@R<DiJ@VIL!}6pZ^N=Ow>wO&?QucMI{4%>6xsCfO
zuHmMC{<!+MSAG1956Qi!gVuI-80WJSw2=G@#9SxBUKb`(n5E7ws_qqy6tcOV(G!z+
zY%Qf{o||64s_*ca{6)ac4g~mZwv!t!m>520c*eSuaP1ei`-JT<7vkl$Ug1AU`L`SU
z<Jd3d;b+Ld0SAG}=dX|@9X_9{*Qi{sCYQI`{1^rbL6KLlS~!%5ThuEy^H8;%;@G;p
zqELuBA7#0*C{QfZ!mD@!i47_>CoB7AtVr6o1bHpk0E~V0$Vaws>Y_E6sJ0(TLsT_{
zMaT>2Zj<G<brYL)qoJa}1>ORjdxoPzyLx(K^OPMe@R)Yz&&X}y3t;T{8d*|)C+nZ4
z93+j%tDCb{It?qVhuJxOyd0aGoY*E~)ob1v=O^2lTI9>XW?*=CB1_t$&ozCa<Di>%
z=0Z6g-Ol%B`)-ajCE}ot_2ha-PC0qKx+i37xgCvUWn@HpMM|S1!UJRD%8m;K)2q|H
z9J<U|=bjpvN@*geRPU2<(J3mQzQmq5_DFfkTuD3}Fc27fPehh<gz~h0&I<1`%9@1~
zq5{w#+$gcs_B+3HtXtUEnIl`nSjM4cbbGVzLDLc{bJz9E%H=lbQp(fQ(gr4~^l8ez
z2KeLfi+#J0?*k8Nn+~^5uAZMh)Rc`C+19(+?Ei{sy=^|dfmN>66U2e>dkV6o!~3l^
zkrvgh=Oy3;I+j;L5s>SU_dB}+)<?#3n@#1;<otC-#Zr$#QCFtvCrdqA;&K7-X4@Vl
z#kqNb_8a~g+V9=SFMyYUvG4E5k~Y+;alv+dZ?q{#%KzDm>P%C{RoE{FzLBf22YEk_
z_I_r5;}xUd6KpEh-zmwzlIe8zJS?Pdl0z3&!Y(uJbtbswMHBKOvETqqJlgq%?F_Kb
zWZe6(KGk7a@iUd(Ggc?d|3c(Cun`!$e}gP(nqCk3NPiw;H~WLV!&@!R7T4Qy^o}EY
zj`llOhpmqZkXYjKrlS7!;^j{`Y~oACovJj4z-pYQ&&bWHakKiQ^(Iu=fV_dz!^1Lz
z*}>k-1Ev?^&VsZ+cA$5<8w`)^!K7qXW~S34t323`)kWEzIE}!6v)sX)lW()5v2btZ
zY=_7sN$+sqU=RJuX*x&wJAO^Fe4d0{3zh=o??z-vhc8F|&5A|bydgU-OoR84ZM~Z#
z4PKUaNXx6zHSXoQ(Q90&>}ZB34v*B6gUIiLKLTUNUy&spethKLlw3L98zarLcI1{a
z7gHSc#z>{o?n$cE{;y58v!@_00V{yvy#iU%;rn-U86zxPwf3Uq`+qU*M=@CEH6aa5
z$mGfkDdbFN_L5T=bW7G{^Q?#=Lw_XM4~Q*NcD2B3+W)^G{|o#dFm`3ub;mCAzFeKK
z=t^RndKN`l-WcZOD{HudR$CK4SJ|-u9%IJ_<SW1yVC=XFx$F6J$_oABmh4ek^KaYQ
zlBeF)8FJT-GUOU#NPMxfqZOVwL{dKfjhuY}=Rbh4qY7D)DW_XIY)@*E^LF~eVQ-Ie
zKiQuApv__W{mzd9))RSs2pbsXA&m@3?;$O}FBg^5*~!Upic8jw$l^>iQ5S|3jphNK
z;r_*TrY9a?^Acrm1NNBy`rXKnfxW=kdk|UDem!oe8{2-qMzw$QygjZ2?tNPIddI3x
z?~feoU-{%2ef7N1nY4BJZZyD@bGS6Z5w}QCj_M5|SpH;ZxG}7Csj{nlT{0ghBTok>
z0%O+#WJ!mwXV{gPikRkAvxU|U;+<vD=4Lq2Fm-I8GfJvj)iTA~h+dN)dy!uNF9XB-
zKC+}L{oGRb-6!%RIVJG}8M>U~4PAcVSi1`(LztBa4W`qV$Izr&`U*qXy~war?^2=K
zpQr4pT%WXO2J(DxIxzOEMLx1U+*5OMVv3@@J<oK_p8Dm=o@V&s5PIz&@<-s$z}RDN
zQ1+Pe-SIe+=aOuKW>CkjRb3cP61I8vWU;)F7a`yZ?T?ebPUX-784~G&QolmkQv;u|
zXBqN3a1k)}+>I>hi1wJKXBO7HuB>^MBUS`6<xPh*nfZim=A<h3B^9lU@}0HF5G$>$
zYOy}%Z9*L4oQ{R3c@{RGuk34s-`E%0$Q_uV5E%Q)ktH2|9-sU&T_Cy9K~3RvXY>=E
zc}3JN#=pU8nM@qwoM+~^L~s2{WydCXOh4y`$oGSXfwAK~WJ!B;JfSgqU8Q}00XuwM
z9Y$?`Q>!Xxcw@IrHCX$SQ2=(8(5uODFDHaaBpxiviR3t!%V<4vsuRtQWH|*Va9klW
zFgOC6$2#o6e@gcC9UbWF_VW79Yn0uU7bf%X1mt;O0Wfxd4_VR?pKqc`mk0c@dcbcw
z)&sJSO+Db^XaNtD0K+V~JDD-3=ejJudyhHOJm!904zEc(W~+9svhyHznD@{BAb%}3
zUX-*m4_VRz9p5{39U{?gBz9!vd0}-5$R8$P*w9p@nyt8MH6)J)5>+THomo<wwxbrF
zD!xno+=zTV*al2~{S8@COz%5;VMT}S`KlG(icMJ~C#dgq>_+E6!24*i@ANu{*GH@`
zi$-MRM=1P}497i&UAe_vDL7zgbYw)@)}S*WE7vY0OnX*V23O06nM(}!D`3m#@Zqzl
z-Rbf-1A;kGcU)+eGoCrPaIl~(93MW&>ux-0huG)2#+eno-nKW}(XncbF5P&YHmH2B
z*_6!pWys$FR|4bjc4SG1AAcq?ovm9l?zHVj`!=<8i+kwhWqYq<z1O1;Ze{YGjYn>`
z)4hgzle^1X2tj}4MrBVce5M?Hft+(O^&J>{W*|%IulJMf()TyEuV-c>S(E);^+J70
zeXR55lrB(j*O%C}SRywhWMrkuLLO~EVUKW0QLs9L)3l*tr-*smB0C%?V1{>izkcBh
zq-DBDCTs)869Q;<;0$69>m04WNZH?reR1rQ^0NoI1-u1}{r`t7>G1U}QQ1zWvUw99
zGU;I^KMK6bkH0zAhs6H&CO_P0P}<fanf?eAMUxXCg-j(|8|mzA*BiUrHYq!2T#|e*
z)*{z|jlkHs8ClY_8oiz~zkNCP_CL*Loon`@4U3n1^XAS{uZVA>z)PLGD`5SNZBWx$
z#M$OZEjy1ZAVxYD%3Ipx8uQkdD0>dVXXe8`M*cVW8W?+yyHwfpg5HOfug|xd=RS39
zot)DoSljPau(rGT5HlVKTVHT#XFg$}LZLJU^D%xBrQJEUENx&Ynpc`ODm$Cc&~`h$
zGNY_VWl`Fw*m2?9iJYDuk)FoEoy@dN^57RaD?%^Z?u_t^&|JGBaE_A~=*!MDZ(}6m
zhRgNy$4=wNW5_Rnmx1x)e~~3E(eH^@Q_cg-CjQ(!-FmQ!+U&e9tEg}BA<jI>28yyi
z&friE|D{C;lG|$zdv)Y)k6yt7EFK;#U@rwflbfB7c2+WKcP6q>Jd#xh`Og=3E_S7|
zd%<^-^=<|7Mc_NY*u4!|(hfa;dt1u7qu9->O(wzW?YnL1Xs^CPOn#Jw-*_KqU?`Ur
z61m`vB@@@1fFH}goJo`kZz;BBv$CTV9#jAS2l+q1xh!c%KC+}2^u3K{9oUou?>*pc
zTq~-%T4oG4c$I~_fm*R5D>lqMJy7Bn=2S?DeA#BZ6Q88Is}z4N`VIdY<SpP@VDjN^
zWJ#Un!x>B0$#I0D23o)y<;>W4?`QRm-t%jAtZVvUMo6NO1=CpL<PxB>-O@}iLnagH
zZU&K7Btx3ED0|xAGxq!kIsJ0hgMhJTAoAht;c^)DOn%^dCXJ4@(=&q}e5BN!#cH^I
zCUZD}Gs`>^(c5yhvSSlGHGG$LtpWKy@DMO|e1I%zn0_Db(dRYWJ(r3_-llkOLp(M0
zGp-1xgukjP>`AJ=?g?85`cPk^Gh;*LGK26m>gpgCo9NC4M!A{Ug&Dz&Yn(m|(YUD~
z<P_)4im=H+LU>#$OHZ5ZGuTU7?tF(WfcM#%Iy|J+aINyA>Wbw1{WRp|U^Os)Y(|#U
zU$=X1O1r1}8F~{vIm>iaz2i+$J<f*|_;)!L*tb8;%~CcRTpakb9X^2x91OhFIiCkS
z#yKlc5jr`n4Qu<pvg;tc#qdi0{snnbJ+a$>vFih5Nlkj+fw|wr<nLm&t$(gp18d)s
z03!t;7yMbil<8l{F9j$1zR&T=(~$R=zt)1h!Jp!`iM|qhB8#_pmdjg*nAoz6(2Fe<
zg{%?e^~iBUc8n_~qQu1HXZRAvA6zk!S9o4wfd8^&2EtpAn;$%>{coaG!DGGOOplK9
z{?(Y^$ikASlUo=p7*d!`Y_d=wl$)ImPZ_@*5*$2aNcJG_w*#~L@!QkL-m7hAl)E^v
z#byKW??bv;Ta`ah`8)o~WV>9Ad<r-NnEb6rmei{AH+9@4aY6MEr|L?ZNv{#!EdLwC
z0_fMr+t?z7F&wMNlbHm%bPR67>@Ey3i|oi`-B^~VHk;E`^dGk=yISBi?~6Yoe-6F?
z#;%ObN46_56s+1TmgRbuJ;6{=TNc5xEVf<~u+w#<3n;cMQv<;kZN~z5s_<XR-)iKG
z!R5f%aTBtnS$e&(qx_L09eVY%>IY&;sb@)xZC%%2<&juY>RD2dw4`2grSXR<KU(3b
zf=BH50{Oona8=TdJY-29>2=}ql=&ZdPX6BLOY}pf{QlXtc45Q<XAn0U<*|-MHjHu4
zV<R2{sbRa~uSNe1z6<|)<jcTjVDe!bvZVfcU9Kbk#MDKj{ide>7jbN$Ka(Bc3HovF
z1qphq;YZqk^c((vApZw2vz*}1MLrULVydDYfAit_Z_@swzX}5JzYh6ga5*skUxO@Z
zRwv`I#TRbS)ui6OM$NPlAN^gpFOw=ciMz-u<<(ntv*K$(Ulsa<?*rsd!RNs6{To@*
zVfajE*-!XUDq)-EtGYVLcM9@3U@<U!tB{Yt=T*0alh-LHAGWQ(!FiRpFg}U%>7JML
zZ+9p^_oBB7#p36$k>3L!0K@w!a#whh&fem^(2KoJ7F)}{g#CWaKFyh-hqYGyj}`y;
zYm)r4kxvC@0>i%q`3U^DoM>t4>D+kJs02gVJfM$rjb=XD_+532;%!226^h007m?ot
zzXgW(L*ygyipxIY?VjH~J-=V4X@UJ-%|6MQY5b1gs`x9vo8+H@JQLIa!@mIe2>d?o
zt;*>KSlfm63RR*<8J|T@i{{;p-YUL}-}{kY1iu7^_f2F;hbh;-=Cr}SnGE;d!?x83
z^$iJ+M=OsTZd3low<dYViVThihIbC~5qNpd$riN1en2z7YFiJ$e3xcE$?=$LZ&$oK
zgbT&u?<2@hfoFi>eF^ypyz-noA>MNcapfI~H+F53w;XvC7zYe*74i{yz2@3a{EYUv
z)wZ62_;Ky=QsuFy&Whcs_#4n)#jnKg-N=uECxPK_MwWD#=d7rGFOBE)OXH8WbpZao
z3I4IBbfd6Q`~STpe>w6fFb)|0D&!;Zd#{U5{C}e}|64VG1Ny5V@cc)96g&wGe>3tC
z_!YJ9rRDSgz0Uk^xl8;1{Um=s<O(nv82)NxNgMRIwK-+n%KM6_a~z43QBrL!z2BJ&
zr5FDzW()`PahV<p2MPzIvAFDJyPO`7&eL=@wZ)|aL2BHo?AQTM72mylKz<551B@N-
zAxj#g#}#8z#ueBxe-x_Z@FO!Qw$0^a6az8k*?_fWU>|1$ySE28{UfK!Okg03Vg5)~
zgUZq~Wd8RUr-E_)T#i2K8L8S`%C5@ml6F-gp9D??#;z5}lD6vk>a8j3Q}RAnb~W%m
z_r|hU>+10^A<M99C|#;dj(6m`*Vr-+n?!H;EM9=4y&P(|N7=C#o)|omKd&Lb4c-OD
zj^86oGVv2r_vPxi_P*<a=B*90rF^wDjIenpupwBl_ui}c%CArIO-4Qu%ms$;4CJoz
zjpDK7dDlYA!ogk|U#qf|0bW$?1YQccDhw!W(EPj6Z~T20`4#XQF#Nwk_VZt-_xG6b
zoZsKkUfHapY)+(X?v=7R2UzT}WR{(1<*?V@r~HoJkmMbQd^|W27~VO^UF97ky!E!~
zXjJjS-Rpd9Tc-l+XF^RNaG~~6?QX^2h<@YulgQ2B1z`AJLY8FaZOpxC9r=9}{BG<R
zZpM@+J;OSej`4Ahdd^LnFLq;+ZxC`N7y}I7IOMMKjrI7(YrbjL@@aCFkS<sEEC1@z
zXZ*Vvxe@FFhVMS)uJVmb@o$aKzZ%WghCag=Za@b4!0;6zca@KECiyu*`#0U%FrBSo
z+P_B4S1TMSlzMs*@^`^?!0_!xmegOLQ`xWE)sCLu(eSax^`_d3SS_ntdztdFHrrKB
zJQQ)$IPex_8dcT>`#MoI3C5}3@lM~s(IIbI&}w}^<@=ZLn)#7FKj3Z$Pzj7(V~{0v
zeoke5YTP3g11s60)DESF^<Nm~bkq6Pe+$mHtkc{K)2!4ysGmPPCVy^0z6;y~j2%Bg
zmeg7Kmh+72++32_+vUHHUH&(5qH3_LrVn7>k}l_(_e-r;o=a#OYa*a0FudcCC7JqU
zKFxEH%TncW)b_?nj#t~YqrLasjf80%bjHgiC%#e=ez~OZm6Dv7OA1~oab7Oz^-2kq
zdpxa;RPyGBwEys!=Wr|Xz2HG$?05uOQs>V>N04iGSJ^xkW#z82XB-w~rvSoSE%zGL
z`k(0Mk6yzY`ysxAI552Zkq^%+d+a(Vo#7`%QPsnWce&DAFZq5Y@>X!2=5qLVwb!e4
zkvjcp@>`uN@Ma6AvIU>4&#XLVgl#oDCt9P1v)!6KT>NL6Ppd)mwW8bjX>aGu4afk-
z&urw5{FL>Wii+in)-SIxCQ#D6NdI~<OkGCwywm<NqSzzK&l>a^-nGc<z=fJi{Ot4|
zqE6VxS<gG;ESDxur5erCj80R3-a-Bl{C~js_ZhMz6PGe|omZbX8(g8cOcvEuCCbiy
zwso7$59=o1jdM-Pzwtjx^3Fj%9h?IU?_%UG@tS=EXC`Pl3V4Uj54H%MljsPvXx=9D
z8h>9!eh0h<4DScXUE*!G^{%cR`@KH)#-A#G%Wq2ZPDP#r<^jXI0J*EYiCy{aX&>;>
zT6K>q-bVDAa`Y7P3*cp7cz=y7sq^;1t26B?>e573GX{On<_B4=ng^@uF~wVabCP#7
z@<dPt4DU4Lj(9t$H;LmiMK#-GXaDog9<I6q#6KY#u71RO6mJ81jlcIJKLLIQ4DYkZ
zl8#t^lB~7+q<P*cH?lqN5cAmu);|fdDD80l<BB)3Bgs1ec^Ie!hIcfwq||)wz+ZVK
zCE5tNmF;=wbjv-R4YY~dR+typy!Gfc{@#kb6Wj|7@BPS<Qsd7kUhWq(?L|9Qxt;BK
zX93Zrg_WQnR@D>A&ri^2>QCs$oQDCKK$5geo!#qHKEx0Vt}qQDe^J6Kri9DON<0Pp
zsMS0*=rn$<LS75j`*=2W67R~-lNdwygQcJKwcU^LfY#rHF5|~5$iD)w`}B9k4}DdM
z^5MVAhbFB*c1u$K5ai)tB#_kAeA0)#mHvA2iPWO?*ZK5+ANdBbt(*GItsshEvq#XT
z^|$!+w;}%n{JWd_y>_ZS$rj}W_25ZWp2pvr%%_u)PXVU`NnOn+{pwL}T%#B&wf-GG
z{d<s~1V8Jhe)ZZ;l-BPFLygw|rB8p+ZJY%Jy+L>E_rFS%6E~P_vg$NXEjnvaD*c}C
zAYTEl^7H8Pv#I?|e|<<aX_eH6N~-}_jaq**y6Uw450U=_{_NA=q{qWY)}IJvdlW23
zS=#`qRr8eJo~+l$BhLV{fFya|U8&c}s~c3s-cIF??N#Mzt55$<<a@yV-PEs7t1IO<
zp`28u^?!mc({2Rspg#yQfTXUL*W}d->S^!bY1eA~Gtg!9FGpSp)^<~WyQ>olc?yNr
zEx=3lnx_e!rhR<{`B&g|A5T}FgFe-$^655}Pfc2X?9OCd+@Z)7U=)xf`P9D)<<<0a
zj>d(ftvdkw0=51+bZzCk)Q4@zKLS7Y>HkEpiyp4Ldis-5Y86eRM`Kk!rOMMmAJ6|H
ze=Qu1Nk6*5ql?vXcypY!6G*DpJXPqd=ezi`6nQyV1tdv+t?Fuisp>bKcPxLXxOVZ`
zqIq_sGmbvtX-57zc*)0;djGoV9{Af4FaEoF>i4Rrj>3H^zan=f%T*ub{-7L45<j|9
zu2hJBMX*~FRBHXp(Piq#mB?GbR-gW^ytmbmLDjtnbW2;K^&jx*{}}nt;IG}(?>h~n
zNFGWw=T@EOsoa_LV<z$(a56CY)D=JA@g9XDdDtUq(E1yE`X54m1U%M#{VK}6B4`qV
zCau2>U2%++a+G#AZ6JsNV}Do5ky5Un^P~DXw`%=0=ra22kk^BYeEJ*pezU{X?{*<c
zRXg~EX$P&Jsq(tl$MY`o@4*M%<Vgn5@ODxuroD<Ou6g3SlKxCZo(@g~CcnDkPim-8
zMYPW&s?t1L(P`?(ZsZ5SBR-z4lq*^2OoReeB>PRi)oPwE(P`cvMfcF>0eyjuLsHKN
zAWQ1Pc*h%HdI4+r)4ZB9ys^hd%iYK>WL8+zmFlgUw+_9A_j=?V;C5hm??RSToH9N*
zWW3X!wRQ$Wyy4ym?}rR7fwkU|3)SoQt8&tcUX!nZdtEC8qCk@P+j+jSimDDI%b2c%
z!Osg`y=~MyGtg=LTY<a^)cJTiZ$DFbQU*US>iX59d798^{CN%e4e+*)r_27d8w4Fl
zG<0p6r}(}k&p6}>U=rwdzO@?+y^`RGJ*}Qky^p66`EGFEx8Z3&UU}6JRcfA3d_0-E
z@eSmIZu`^0;ON(o)o7j?(T!4RU)Lh90~dZ9o_2$y7UPapr+N1Jcz%og9%%hGJSl^u
zH#Jj(=84~*EZ0+zj|bJj<Xe}^b!zATpeoqSnrEwz=RV{Iz{B5$r`;gnU0r+Ve`=mK
zbeiXr`v7rZKo4O2>2m!^9SppuGA{OvD%T6pX?QL}t_NGb4NnJyf<MrxS8ASSbeeYO
zedG_p$3C7eKc9Akg4RU7)oPyd2b1H18OSriTwwC8^Kn5+`__JN@S*Cp(>2#T4d^uE
zgC~*qfoFU?o%h>2;z=DOd}QdXR?TNUl;j(TJQxfI#;@-3wHqvaOb1@4%4b!%s6%%>
zzmxXi7UbK(T|U0f#|s_%Cw%P&4WB5^dd=60?zrarkMR72IB-Ccy#G4y@1^kh1`nT7
zI-0cpDs-9hcMkF*u+*o&%jM5Mc=#+){H#{Zvm2eJKD~(iGWeB`r_1%$KZy8SqFH5O
zPCcL4!%3de$Ya3-VDhWWJckS>+B~wj=Go-q*@1j3xbs``_y!YyHy%}Ko>m`^{Rqz<
zM8LQ4$3Lj}LKD?$o*C$jqg2ZEGUOFtwU4LE<;*|0_*b$VG-#eCAJ1FJ2f=$jp3eK@
zspZ)p*j{y(zoK1j(mcgYNq;6IPXW_`$+s@^bU4WP+H}jU7R|TS$Jd1X7<lsA@O3=c
z_^%;s(|li|+tjDhpW-X%4~&0ZF6SK#I_d+3R_r-dpK8%*c<Pa_0^jWtkAI)RAuA7C
z1A675Qu7=@r)h^iM*cJStB<GicF50@()s>gz?(yqJgL<@m5(O<nT0$T%mYWxw{|=$
zE|IX7YJ7g3_)@R+H~92Fg!~A2tlRqAb-Hg5{f%0Gn@@k{WB3B{LHF!$-`Q?}pjqp$
z5uGTLc3>UyMsRVr^>@(8-lm>-tLEA3<9QSL9q_wu^R(+^Z}%9USLL>NPtuRE$VY=?
zLHF`0rE|SQ`5-#tny22!a~JY1u)Etlhpt52rm3nl&nM`tg;$<S=yBHnKqipnje|R#
zr}UTGl$D4(0+pTue$;868g$n2U3fMiUj#1o@pQf(aVSs9ibP|86^SOzvlpGFzQ2R~
zF8G6wr)%{+bx^W1QQ=!PPyC4_&oRi8!Bikg@~vw;?FJ>gge3NJRnF?sW$MeF$UDKk
zKK-4y!~XnA9gN(YC}@?M=Mx`K^husQ$N|QWuJLp*7}-r@PpZ*8HRv?YWfk&Tu-?bh
zwft%~7<oYQt6uAGLRTC<DPON3{|dbB)8BbN!=GQi&g?_#kvD1mvAs$Ahay*iQ9x4H
zpSQm=`>;pQs`b~Q%RKMzBi{hF`Sf?~IruxVP3l>{pvqH=Pk$ToKfu4ct^bhD>!YSX
z#Wm0Pr;>i0g1i8n1x!A5&5!mo;d>yd()xG!^gn_86nOgE==XP8pD<qVKG!_fzGQjo
ziQF6X1;&rAl_!6vb+7ll8?^pfpZ?9rSA%PP`aADOwkxlPc2@VRde@|R4)}OJL;f86
zquV?kc2=JerWVap`Lkqxor1gooCQpNb<LlSJE_eOwP~Im=rr|YAM(@SIUi5g%2x-S
z)8|#b#eSjcOJsktzE46v9#jJxhorvGLY8!x`Ed21;+Mv!$2T&_;3B(;akKokhT(af
zf57E7@ypQIewzGfr<a~4w;HrPJK!_z=c~x?fcJp0rxjUJr~87sWlil=rqBC%)8|{5
zJ_pwMZcKJ&#a~qU6Ms7S9F9e<0@Hvbuiua|UvC^QA0ij}bv$$aiqvzhzaCx2-&>LI
z06Ts9JAYp!^v^SQ2dNdQSH1dIr}ej@%ao)4MgCfJKhrJy+s%~!S~npLT7MO~jQ-P+
z&jPjG)8DSM-lFw4Y5k2p{rixg2G4a*fBVk*8;YPs>$jdw+Fyp;7Yqd5c)lHU*5A}#
zFz>2)miu_FMBW0nc8{lBXZ>x>5PM0L(*r*Je?<NmeA+$zDV_CqJ%&oHzq~n_Pt%dB
z!EDftd^)s~{)a?1Sv8uc0iCrdmHy3x$Pa@@{XCua(-ZX}rIX(3b<*p#{x)>gY5h6R
zG4=z+K$6tw&im&n`cpdRA4=z()U0_Hh+e*X;{fD~z@<K(F4XJP&iO}DvD>u%y*~Y~
zBfkj_c29r1PWi`Pt3kVWK$WNB=abKS4DvWI5lHG{yO-K2|3sd4mDaz>r~hW;TfiON
z)89d7{8ROE!^T?8(~3^>9R3&iYvK5L(vL1YhjyLu&vZUDX#G{_+613G=QEJc28(?9
zJ6{(_l&AJ90)Gq0b|I@p>u*GtSr2#)`2}#mr@!<0`S$u#R|47;jTL)Y_XA!?@{}VF
z1tWkYdEQ;;(Zxz_;rV;uI8TLDt9k0sS<kN|zqTXa3~mLIgs1cQ|5Sg3r`^o|7sAz~
zc@Cm8jy~b}9Qp6yUp}7B`?U!k-yrE<`l+)YQ0pK6i)6W~L7oRr1Cqp#E|e?(An8j(
z5PL;Ej~(bT@6{&c$H0?5{hjy!688HCNne?kwo>c=(x<=RMSKChfU&;|`VSc-eGN&C
z*1rH<#{PB48^Oih*6*9y|F80(PV3+6)BhXfx52yJ*6$x2)w?pK+Mx9pzmzOLmB^#P
zIAHRp3+2Z@DBA4Oc1vp3`ZxLX-;8_<xWlKv^KnGt`F5~P=o(jVm$X_nPpgl|KEV11
zhyY1aPP@R<;h<=%Vfv*iuQSjYN1xQU^O0AB3%bYC@u28?iYTsmn$T&=)oaLafVX`-
zT`0F542rHZ-dI(dC;oD>eosX{5zGO$&bO10B^_p5WQGFf0KxPXo0cw-v#{+4LCL*B
zqOV!=H=^IXx1K|O6}%1%|69nCIvodf%3f4+9^uR?=E|v%CmHkrPN$yb<g0UXuj=>z
zE6IF526-}=3M5In={%p?yW7FWp@)JpAFp}p(P{kLiF^;Z-^bH=JDSRqG7Ne+=+(Fu
z&GQL5O}UBulK5vJ8+6~FcEh12@kLUb=BYua;i*Gj4=(yvJne=>j~brXuhjF|>*M(?
z@_V55Tk*6X9_`UYm6|91YSN$S$kkvrkkq|$(7`b23F8&>r<$+9$Jd1X7<lqq@wFQ+
z?KMnwn&(R&Psy)bs}%GB-S;bH*tB0UHE5n%bei&THS$()-M8X7bokT^Rg>m9fX-Ts
zm-hEl<iCRd@$+;#Zc433DZ{7dgO!pet(vFu*U9nI0^~EnLLf=XL+9hCj(JjsQ7;75
zFv^PmT9xxgbes0!=g2RDSA2Y3Zy!>JQ!jcAM2+T&yq4rCM;;1B0OMEJdD;!D4yabh
zvg$QY9Xd^U_#yI5;1(ZG*W1<9;ngc%!E4k!2Yo#MMdsdRD+r7~UFYdwnDuJVbTh1G
z%{K$x<~c1#UJ2Iv_`05d?S@;wHu=}4d799<2`8kSzmEJSIOyZ)e7u!f{@M?_T7urN
z%c^`$zyDrOj)$s{r-BoJ$-mCWLml#@4!_>ebXJ|_+v?+c1o=_$#QzIlyJ6Uy!Q(v3
z>0fBRFVS7k?<61ly}_Ip7y=|oJ??xQ)`@?I49DK~IAbj;KbNCBj$Yxr2KicWy^pW+
z{&XszZ&-HFln%?P(mXBbH0AJf<iCS|`FOfs4*kQkcN0W)nrHlPlJ)pB<TJoIKvMVK
zi~eESd*(G|HE5njAI}TOFM(fvE1pA!Ykv^3Ce0IhGwIJ@<YAx^bl)F%e8aX@?NN*7
zsq^t{L;ex?@wesi58pmiL~WYqAUfk1FXipu$X|i~`gpot-u%P3j}qk|{<<pHRc|GE
zmLabItAWY4&c|1Wl<Py+xIRg?vsId}$;WpP`FG&`Z^hT)u<ldCSgZNsZzuh$MxF&~
zK==LYczE}jCal+d4d^!S$0v}V0#Ez+y8hnkV3_we;~nD<%@=tm*<K7q9tFk%21Q;y
zJ{nn4cgK0-`SZh#^Wtx)^0O8FroFl!c@KCB82+b`C3SC{C+vqG=e25n>tHg!`y&qm
zLxH4jv}5Bt80UTE)yUuI_8*<b&+j2$4}Rd|>0-MKPs%v&YgHvHHBSpVP5Eg<{s;KC
zkEe^}M|k{u)c&iRF{?)NjQ?$tX94n=U?J#!zO@_Y)ra(WvQG0f`gop0egPc#Ry^&;
zd7Cv+gXW36oAjpwc_cUrbl;y2#(7(eSG;dD-zFd54&+<Go!^SD-8k<W!_=aAT75ju
z@8|=AG|+v&QpS1TQ%r4|X9hY=xm%4~2R3{wo<qlZH$WA8Q`Ms;bk<_Lyw~19ehd88
z&(pPW9_2e_oYxSllsu`@JjL%N$9YxAQ^5&9Qa8qV37(X3-nNh)=hbVzt>`xG!-L2V
zgGYUQU2h*!$9daBG7;3IdD?tDvERE^9w-9Fudeg78|U5Rk)Whi^DIE8DG!$-Uk*0=
zc)H#WrH=D<sDk&FDi6&*o{y3L4F3A9csdy8-4aTS^WvJX@(;=9RD(PZoCdm|f9=M3
zx0(E_(L6iQxe29G&Ywcw51M^ET^#38{@Rc8?g*)IUW4Yb-cOG6%8`eH5y1G<#c`hD
zNgd}kYC5Y$^VRwIZbrTZ-0}ay*KVA*GjyD1xn;%QR^_7=-SzxV@-e-YJD@=>kkpNF
zUedoq#(BFu&N|IkgYG!Gg>Mb=1z@9(uZ#U|_<ZBMdrj$}-==x?qSLe&?;yVm{@~;3
zdOh}!^L8hQS~O4mgJeCPj64NQ2a>wiKk|?B9x$&dt4;H4_3=D}{0MmLTk#w+&U;A6
zV(+N((B|XG`H=k&pcr)DpZ4RthqXtQnr8tzP5XBV@@3%4Z_DE!=QSy!8qL#;&N#+P
zd3zuEL-4VWr|ad-KhAqJQ4Z=gPx&8{Jadpw0;d3zZ(SVcNx43BocBbsoo&>7JA8c2
z$Ug@!eJj2W$9a1VW3%Rqe3bNWB=Q(A9(3Qoj>mcXG-0de+k|dYKJGxi3*6)5>&E-B
zgH!*;JFGvb%RRbHdy)Sq;y!{hV8&T}ktKC^oHueT?Z9CMdi9#W4*iCI8}jX7Couf?
zB1`JtIL~80>_D&Tx61!d&~NfP^J8R?4<vP?9UD2egMr=ws${L^`Tt4#62Pj8v+Xl;
z&YW}Zxoh@4xd|a8VM)T4u!qR1EI~j)LBbLQ*}`fpR-#g*h#D0Y6(uSn?op{y_0wqm
zELuOzXRSr+60Q1CYc*B0Xs!OwoSDhJ2?3M*qt89>y}8Wu&OYzVJ98@$r%LB~$eVy)
zMDcX7U*<d=482#~Hd!xu4k1pJp0^>t3$#S>bg}-pJkf^UYqB3}lsw`8i|~wvJPw!y
z^dR5b8G1(~PqXCN9>wzj<cERBddAb<&}$Y%t&*oTiYMt9?)?HXfgYr%6GQI}nJToS
zcSOCbLfopHE{D7o*xoa~c81=YlBrno9FF4oJLE5buX@JQ!O%PEGF3{R;=e`Ga}MOW
zz<i(w`FFCR_ikJEX*H6s0dZF$az4KO4)V*utI>R2v-fyC?_lt~?;3m!lE?lmV(*ne
z9t@NLDqUUN*NgCUF!)-e!Pg@BY7w{UC-y+z3)~aM*NuLnqrvwP?<hil5%sSniii9i
z{x5(HsC0FMr=7v~v78~4OP)!HQ`Pg8kk<g~qj<W}A9XbNKIOHdO7b*D@%$O`JHY!r
z<LSiUJJvRE)=9qb=aF(63wazc3FtxowKMoWllj*udA1|YT13k0`2&z21|Eyz>7u>I
z>tB0=?{i^+wMw2=#Hsu#Q~m*;Hy{kC^mNhQYvbu?@O>c-zT$Uf|A)90-*(7X1K0h3
z@wGGfTFtSp>RO%TYew94_=xA@50HNX^e-am>*Bs%RQgUb_`c$t&62Miafc<}0?3Pi
zrBQrcoPTq^D1+~~tR0B>J&}(G5U1)d4nzI}@Ol(aH`;Nu!S}5qDwaH<FC*=^81f*X
z6yTwo^Q35l?}X~vD<w~D6we)y8-RU1<2lLT`yOO9lBXq#hqhw<6Yu~%NKbo%?+1~h
zddV{hajO1r1?1Jhx*qdH8+<>yM2(WC5pjm0Jg?u)kpBq$If|zn^)1@qtF!nbAwrAf
zN&aVqXAI;DU;@AcuLoVU_uP7Yvcb32YFk))U)1mIQGAa<J_sD@8DFOc-!{n@mV76o
z_;S87wBA4g(1Y}KZt!gvgyoWN8RAy;<2uMU05?bRb!U7$+2GsJmY-FUuLW_d{=)bg
z{(e9ZAhP^oA@k5(dvB2YBQB@7><#g?Nd79sulTQkd<}2|p!jcw%tQC=J(vBo_FlsW
zqCOo({3^fy!?})Q?gQ}9jecy<z)tMFn=RaTAbH9Wr%LBy$V-8XqIkO4FLRy__TFx{
zNw!L!1Bg?l=M~7W0nJf7U93MYPqe*v8`8o<s72&k=$i;n3FN^*8Nfp~^R1n|w@306
zOP<;&p4%Yb0o>Iyp7!?Mor0)R^0Y+pSl{CAKOg|~AU&Pfdkr#Gxc@-%RU&RxPHQ1=
z0BU>2*UsL%TQb#4o<mVQe}Viy@KMirI@o*rU8Y9K6aH5uJrf{L2Brc%$iI{Ay$9N|
zPivNZ^@zI)k@NBG3CK?ZPe=20&EDhnyo0^>kX6i;{!rBO6Ns}$@?@XD-8Vo!zyq)6
zU9|TiJRR)4M=Y_yS1$RMA#T-A?1X$BaAOo-H~NW=_Fg0JC~726a}>`%As+`$^o*yS
zz4y4BAT&sxvhO1GVjkoLz+yn<UpM-rj`rR`UMrd;PeT;X?;*bm9O)TPC-&ZxZR2K(
z<O_WtDW?+1gMl(YrK=m|)Xv^JB=axyk*I&Qh_e=v@_K$7<U4@7qIkM!@A3NA-rjrK
zayR%YB~J_DRQ8wW-?;A=2mvZRU9|Vwcskm9&k8!NUh-8UZpBv%c{8x(|BJ7kz4x3o
z)>U0=k$g>vyAB`meEb~pm%!Iid|kBnqSAMgz1PG!i~lOht@ww?ym&g~vw?E}9(cde
z#rZeqi?a7#l(hrv9Fk`@;#B>`A;`}F&qwieqaH@vdoL-XddZ{xC(@3?kb41r0F|C@
zwBu-d?`74qH%gvmQ9Rc`t_ODYjOQeK?=Z-kB~Nn{&sUJY0lw=oPn09)t0G0MlBev)
zNWPs9`2t`O(1UzKdZO*U*Ic5|$D+P9AkHu%<@LJ>^6!A(NAYx{zD3)6M^rs1mpt}Q
z5uPH*1A(D{N>3N<J-1$;Z126%*3VW+zS=0hyCCla4)lz#Q+w}C$yg`(jz#gsYD`N2
zQh*+$uXB6vEkW2I`Q{*QH4oeZ`3hiL6kj*mRVR*|N89qVN%A!#Zq;8Lhx~8gCqUU-
zl!&x;*WMfYGY9s{KN0n`67ehkb&!7vTmdNlZIF5Bp1tR?pVr>fJ{A0j5x>gse?V>p
zj!VvN*eyc`cVh2-j20P|JjFDU&Y6(U0nP(>;5=RImpM-dd+$@XNmfdp-H21A=eLlb
z1)8FGx>$c)o@jgTnCQl|8p)&S5uR+wxj;Uk($fu|cJ|(9lBZtsEQ{jV0r?u>`kwK$
zxA#65M2(WCIg00BkiQ3h>={od_TCpVRapO(eC0+Y{}w`C0xSc1kbmv$y;jN8DtQh>
z@%#bu5#WuU@pQ2Fj=M~u{}b&f#3Jb#3V9eX3g|(4PPX?>v}K=GEcxmXcNHS%<J&!u
z_X7_^^L5SM<Mq6Qz4yIq?^Q{jV~A7Pdod={;(=s9rK^kfUWBKEz4wE(_ZlSM93H<+
z*QJoR09Quwb)%o?Xz%^VJBnt>(-g(?A>@yNV?E<(XYbY7AmQPds2BNGq+U#cJRO(`
z@X*cvwWGavg$;WzEP3jqc%Fj%H1J%{csjB7w%Tglxm@yTcBGuLA?E`5fJ#?4%Bh{b
zw@v0>jpSK|IBO9puje};Ujtkp#nVN5kJrEU_TF~ewf7n&Pc!0F_Sbiif8ZRRNP4<x
z@3rxCwD)!hI;~aml_PG&w+!+MV9oy*Upsqmrw!YShw{IPdf14#>+qiE<GYYQ0R9@q
z*F}3TDt#x}d)IQ#ddU}dm=>0NV<1-m6968%VefIiD0{D7wJxnm@@z+(s=qh@`9a{(
zD4uTA!)SZ&21V2=d0G*tnpcFpOp61O0F|C@jQ7#@-Y(vTc?f+b%4rVbR6M_gTnB9J
z8P7@f-pwE@mOM>SJRd>+1o&Hzd7|vS-6BPmk|*C6NzYl3rvYaJJan`F>tOHQ<`UIN
zo_fR?Mx4BUH$r{_cq)pgi}oI`Z_)PN9#sz-B+rQ`o-9Apa)3O52cDiT+Iw!jKH1)D
zXzOR2B;PW`9Y(x7UDre21?=t_U#Iro-IB3I@*R!hqXDKdzyt8m&GdC{@9mR>e;4(A
z65>|%eGTMwz@{j^ZnUdT?7jVM`5BgcO^93d7oR}>9B2iIOyAd#dFZaaS2C~+8FXrg
z&IZX}9*poWhP)bB4=DbNA@k5Zdrz>R&fu&1T;%s5#IN%EeaIgIpGeMbv_}wjV(>k#
zdNWO{lYIH1NP4G0o({|ec;I|p?4Mn}4u;=B-ZmR0Pd(yP>3SUUZ-C!M@pQ2s37%-f
z?@5uSX329RiYGOOX&FE^pwiPFo_2=cA;Hrsd8!bnO3#&$w*fnP$kX2Nd)g%m{X^7;
z!%;k~kiQ20)kB_648LbpjVP9UWwDWTod<b7un_1;{<Smwo)b)!lBXex=OxI$2ma7Q
zo(_iJi=3%O^4M{a^b|oJ2n+>!lAe<dzn4|^Y4wt?7I9Z0ay}mHfxH*ECz`KocAs0%
zI~ab4?PBa7NuCzOStEIzc&7P*7=Q=fZo6prMe%en{9d)iM&B2r9#$f5)h};^Tnk(p
z#n+vFqNCyW8aj$%$#W=*=N-uJ0U!2|r=8(<M9dVbBu_XYQZL3so&-z*RQ`3RpXg}#
zHKSJ4NuKRdJdKc_0G{e0PbY@o8)^V;kbEZ)w<@R9MD%|^HlWhgopNet_`NCeuUYa`
zA<kMv%Io=+khcLlqIkM!_qp}2z2WzkYl(%vl>Hy#RCd@`kiP-Gi{j~`-525MX!so!
zhF_)RD@%&-Erh%TSO%#4>j7Uo!|xqw_%%qr1Bkm$=Hs6r9|hix;_IT_7oEP748M25
z*(&*xlOyxhGRPx<F@Q>67w6$FUzFkZzNj5o?`Rd}R);uMJ-iF@KHxwUPj~8JwBgqx
zi7F+}F~q6HVNVLvd_V|L>FG{8jyC*0l0AEk<f-KGB2r%8H$lDx_+<}yPBQ#HZW~6l
zddb%m#rIdpp8}utoG;1%{M03Dlsx&Vk#tRgJRO(`^d$c}7=Xt(QM2T!N1S1qe~&>v
z2po#y=}x_iHUK|U74M&--kpfz38yiw7tjY#>FJ{VC+hdf2H+Q}zYR;iWr$m)>jua-
z0k`&$uTulCRWO!IzN1lmdOFigzyW%azRnH6uUx_^$u|jct9oApc|CA(6km7RS0@JG
zah0ESlJ8Iy-=87B1H9iQzV$1YFRnht&HO*KHLwQB6V8bAPop501LFXdkEiaRqIfzO
zJU^l?Hp}?y5SPlg+accx+#MDFsq-y5{%Av|&cm0YT4nq#QStv9@{a(`jOgE`_}dvc
zSGe(qz7p-I9C0cA=RsZoEbean?G2l)oS<07-w+l53y@y|4tF>HP7IoDZYpr^q~x))
zBI)P_IS(iVR5^DkpV}ER+g*kl8UM1V_<sd?JFv66@pmv_c7mZ^#(y{}{$r5;4t&|&
z_)j)m>SZ=*jgqH09I;!bLaqd60d4toO1mYhzIHHJZtxUqEi(Rk#8rdH`1tt*<R^ir
zqvAicy>e3g9SoIS9&V_Fzn1+!;#BjF#BBIN02zQvN0-`lM+4<%kK8muy^=gth*R-w
zhI|=tMR$4H87RA5k~$fG6XH_s?|sN00-r?1-=%un(J;A9mAa-iNS^$h2+w55Q-Df9
z<yV(@Ix$T4c*KrWljNyKoGQN_g!~Bbcoa{U%B7t_a;KYLtup>r#8nHWdHwSBVp<T0
z15`RrZI49Nul9yWg9kfM#m7axszhAM4p|R*6Yz_u_)l#Ybd0~F0dhB|(P|{mp(vhr
zAioEE*h8LnhQ~h7Se_S6k|&%Su{$O}o(xO{c;M>?r?xvzPR~gO$9}=Z;|hHv@~<9o
zhw+}5&;5`e0ve<EPCfsN;)^mk4#*~1F5_=ST&jLKy|Eqw!~i^;ejPI^{%Awv0YOkB
z<F7<qsy$u=c@?lWD*i6DlV}6uA<-7=W&Dj%@xKoF4dAWr#($Dw@km>PZ<IXAd69Gs
zhFl7a08~D8DIMU6GAJ53NwbW<HY)y`AnykD^dSCd&%wt*&?@6Uinzj1me-@NAb$gV
z7Zrb(>QS@-aZr?V_*+p=%lbs(p9^^&Pz9*`Iko)|RgXHk3gnRN56dM_Lln>NAioT}
z+FhPb4Th&(rYgx}=SR}h4{{MO2<TRNIyV%a<wSLorv`DV_HjMrUBK=ro-Wm^P7H+S
zWWF^>o)*NZ+IeOH(|Q9106~IyJMRaXhtup2t>3V2<KhkB&22wswkW)4&6<^wA2+KF
zxBaGac=In$|NCa)e~Efi3tpwyLCDVoF9Axg!;pD6<-Spmw5qCbf9K4?mH&0P@*mKa
z<9E(1jPFvfP+>%`K9C0h0|BMi5Xd}q9Dg_9C(Z^8ShjHevH|B0ES(SS@KbNd;<(Cr
z({0dQtQi+;+Bn*efD9pgLgYgo;#2u>6XXWqUO@5P51EJL4!^G^_^Q{oXG^NtvWC<I
z)_B3#hy()KQd&+Nty%K5B0g2`Jbjs#3S<F_Z$4xmrc9jSKGVmE=h9Uh2ILpwwP3)-
z>y~e*u3WfeiAZ5mBe{<}N=PGl1P`zF5<NlT@|jHoX0qWiJU)k-W_C8sWz-<HnM@rL
zpwwe|Oozr~Qk$gEtXSq@cD%(b7IgT}FB~RjkzP(q-JfD`^{D(_<X0o~3*!^spEW@~
z3cLp>{Zso1{f{jadhc0ulKwRdm!M!$>+q`&KM_(#|3=-%zwvOO{R@`%B*~>2bSt5L
z5=SYSVUD9d-%di)3_s%^SaDW-Km0Mt3ecUz$GmZX<+lQ7#6bC5NbF>*zd6IdofzYc
zFtKPJ8%q}Z#_GkiuNPn7A^f8(f9R{q|7OUK08aoaJ*|*=__*qH>1i{pBdL0~eX0&x
z+B+RnRoa78jXQ0saPE_w>FPVDf25w(K;8^&0aUuKgUmzuXpyd}p(m9SD%%3y(Nr&7
z%^Onrm@%Zh_ZSOBv_<<7X`!^2?dZJ>>P3?pXAI`eSgWFf|0v>D^}Lny4nRHwivMHC
zJe;PUbN-F1moHwkq#FE5E#wFK0U<5q9^(VIqTFUsi@Zbd;s;WItBF=mv#HmYWg66p
z3xtFHSnnLBr<>Hk=Q=ek-KTp^pFvZpZlFQXAk|IX%kYU8@4SWwuf^0)9j~QZXe9VA
zC8nJ9W<Hk5vYFRTW44FJ(a;yv`Ukb?DC(i{_%}{5E3ggSMy#2vKV$gUx<y!umFfrL
z+;98EYqpicT!|4Y7V&usLM)H<Wmy5oN@Q79SWmz+8x{2grRhc<`Hs-Xh&~gE#{AwC
z`CC@Rv|_yH?XVK^GGG;;^7r0ik-tBjCCWAb%udUf4;&X(ujBdKKt9#?64F4981CaK
zve(V#YaMNyo==ld-uh+iVz22pc=iOs0cse5{9wM*UoYkvoI-V`Q=OQxF~p$BG(;H<
z>fTtL`6e6FOvHfq4-)z!p*+J9ZM+WQS*=?s7P1nbg=kPp4)a(6U1voW{zWs<{m4q&
zG);my5Rdn_JRW8tlYb-s{(^k=K{w{N`WxvqThDb6YXUV~y-@n`lLwiW?l{z<&H}y4
zqRIR(^YwYuw9p;;lk{ZM@IiZ|O{AsJ?rn|Wy2Wx$4HWelT7jI1X9>xa4%4Txslcd$
zL{`KKofJO{gi%?F=^)07>mwa%yi92g`6byxX5pi9uPDD0D4%>;e*O}S0YEOG%5MT>
z9`;QT<yLcY`^2<h_2Pva+{RHyR&615WGa8Lw(xHBW1@X!WYZX^Zc#=uQ2Uu~n;9$_
z?}C*2!f{aWSHw&p<>=;%eL}B#@T&gsZpilo4+BcC-$LeL``A<J#oO(A-eXjqyTFDf
z>$GcG2JMF$;V^U&!;Kso<boR-C9gdYYnu3k*XMM|gMczX@j8P9Z;c!eJIN21cTuhA
zD_%q=fxhDZnENOYJ;pbVb{oq!Vw^lX7VVZ-WXoh{vte0w91R#F2I<4mdNVvU$w<cg
z?78}RPAv19G|@RLL(kMR+`r}|8!4uv#~9QTFnm_&3VQ?Vh2qW(d2A=cV;QNs?Vtzn
zmd^FMe__eY48<hP)mPd{r8DvE3=Fi%%o}3POnkNi=v6vV#KIWM4fTr6jXRg+$Be*d
zCFps)EXz+lhA~C&jh<q>4fa@cXtw3|qYOVaj1Vo>7t!;{xwM45L1<rcAx#%!cX6yJ
z*Ja2*Ro^y4-U@67RQ}!onTI*DTu(6`tmoMqS5KB)M|jb0(e5-e=nUS3`Ajb84gqdF
zjgq$o@v466Ysf!v&cP90FJvALj}rCi6ufS+g11`m))DOhh|d<p7ex^l$BFdLLA<IS
zUj%tGPzR{=HbCa#XX^1<QJY>SZZ*0b0}!8JeWq(qn%U?FVr&!jXa<JC83v6@3WY3(
zZJ>^YQW-}Vpw1VOel(<Sq`b=GLrn`O2>nigUyYB>5T+#pX@JtN2r>^pGd?cn`qf-T
zFzd9|@Me!0=UZkrDmF7>X)ZKyh{Y?(0;7Z`LWO3@UyJw^|J9Ih1?~hC|3Sz+{LK7d
zt*byCxf0zQ?|!%nUlHvKse%{X`dP@Gv(O7ei7Mz*fE+;=>_(24=0uSn_RvWE%!FJ4
zOazoZk3i-j{(MnSmYgS^X!L4c%-jFcm1`DmK%Qi^&=2Vcl(f(~-F-YM-c`D9MtnfI
zqOW_jomLU=)6IDpol<-iPCSa!Fyb&v4$+XuLsJaucar^PA6kZS1S407Bw_+OSD$6r
z7>bx4zyvzS!PnzFCW{|LLxV6T*%-Y19urSLCMSH#c^#p9bn`}H%*M?0Z2bm8?jmj`
zG^EM&mqyAX8*(Wy5>V-{fy_ha^<mM*rAw>V6%06+n+9iZTwTqpMKd`-UniuQRJyO1
zzK-GNFuetLy1+OHI?3qc{76HoVNmoskf`Bdx;cWDpwhV0Y+}XaLcWx1dOe{R(V29S
zKA#V4T2qG5y9s*Pc+dOoX2^d5S^%Z@3CKLmlkK}zuFLasTU~u|CCs!9V*XLN89xVC
zf}evsOpg$42j**8wq-GlUKTB+L6X4IIdeZ+L$itHDuH<GGld?L$|8EqfxHA*4k$e?
zhs?t`IiBv6Pf>qrY6=D{U03a9TU7&rkvbVa#(kJxO|?Bx#E<qn3QtGRL*0$VI0i-T
zCuTB9Ciy~>hAg4SVeqJa=WWRE0xgoevvs`)|GCSTY*@z24ZKO(0{{<AGT!j8NW4QJ
zmjNRI9!?)`<+|#{%hxYo!zb|~?nm%!k@40>#k(EyPT=}3#XDi;!V3}QO$7Sl<skJ2
zFg0{2^<z5i^_f<{V^Y7xY%fMX)1-PJ7{K~VSme_QaFjuJUT-|ZvF`z70;;@<AoEZ&
zRkZVQlcU=^FE6*Q^E5S)XUOw}G?B&6qbv^7CaS%K!n%^6_vO`i8ZV(u#tPJ<JSK}v
zYswaS)Pbi`>TwO^TYx=)(&Hh>JRDyj`1ehT=rN&&*WRT<hcBRm7wq*^I|lXuorrNU
zKubIz&!&}hC@r8v`M@ATbB^HGMnv+#4><`)2NZul$UM}YA$YfrkMPfo@Hdc`FkR>T
zpAt;hIsXV+j@MklKaNhL1-#Za^%A_bh*#zRR>-@6TLHy;H)I}um?rp+$|tX{<JYZQ
zv(8O+BY8+HJ)}PBX8kdu-3IdiB0S4y8@Y5Y^@%h$<_g|c#9NMddAa`p*&N9<FQ9nS
zAoFlg@|~RDBD>#|+5Iii9&(f0KRUaIwq<u?Z^63^@s=ZA&btY69q=na@!kZPhg0*e
zbQ@3;iDLfzbj)saT4SEzKZf{Ket!$u9EEfPia!f75A$R>=gajUp5GT%Z%{iuSnRn%
z<oIHd<5y8_AEx<dQootQ(#;sX#9+M0CmB_ABuQx-Xq);7J!-(C^tcT2wZM&l(&I76
zJS^#CU7%*+y7kqoH?Ben7@@04kc85JoFMN3UMJd1hL6UXj%C<s7$$X0sj;dQNcN<|
z6i&yD48*{$WPQHS;{<rZ;Nj&F9F2W$pf8~Gm;;%I+!><&4L&<k@AC_J``@^F#p*Q|
zujU>Uyh^l?Lztam%Ks1DeO$n&{D<j&OKag~kX=CkKxi1FSuHvROo}Ya9#3Xq^zOqh
zmE+xHo?Dj~n~lx-CNoc;qCZN^3A8`!h0n|T3B4Pkmzp>I4)UA8+kn!$Y>d$RW7%Ki
z%4ejXU$k(^Io0bHLFcRn`iilak_LLYcQ0lnhw1Sk?#C*Hg}aSlRiU2|LtiGC#q|p1
zqw@;sTVgIJ(B4n5D&b6m8Eu<>=Q3ETafY88(W#@YS9l_aU;?7P8Dqsx@^8`kzna3+
zcMBH9$Qombak2g}MJjg@eH@AP<$0eb^jCyDNPKy8y1xz&Zys{6e6UFO0i;W%`x(eD
z1Fr%q-S0!@q4W77FE8Xk1y+-g?zrM%MWi^b$U=(OXm_#<th!{_j)%`cVAuFzON=%O
zg)Px2`SZ&o<KGC#X8@A`#Xko!4;|NqBl!-gxK<pauOn->@V@do3|lZw{g|bW<mNqZ
zILoO!%_tut(%pb~lMyekr%ytD5%@izcnih~-j3_{?RY0gR#|GsW2%0DVXh8(Q+tVJ
z)5L+SM9-wDv4)d2KAl>bHoEE<JqPpkxXfhMXM8>zfg>}1J(1?Htns<5@A!T!fuVCx
ziDmxS02{`rpIIg~hYe&yl83SqD+EI|ZG4!GLV~6lPqDUcK&vbh>8gd^VVSO-kaq)j
z04iOtL*}8SQ@c!-=L9+1PO6%RDbp3yoio+x+71{;eg{)a9}3m4o0OJ@C^uQLl){pj
z=`n0fIXyayrNI&LECpIt8`o2=W%DqhUvfpn9vA?53@{E*`fY~H!%8_G)<%tsqJKaM
z@co&U)wR5PXeMuo$?zR`@XWsnYrST+8KORvd@e0R9qf-y32LJv#$hdSvS$Wfbr|2d
zSP3%YV-1!RgB}e!-bLs&#F(c0Xdd}5v^TDI%}AklGxQ2WFJ50hf&5S4TR`buc!tn>
zce&`#+S|J_U)z?Gld47{V_y*&d!Meo!810ICFrTtM0K(9ZR#E6qX`}_ssPQ-WGUIH
zECy$+yrV)aE<c|2hHB%Dqi)vn?9#%cg`Tz0LyZGFA@2k32b7-E#|b@;%Juut+pXiP
z_I$~PYQEBw)ucbcp4Ul}ev9rtn!L{=Qx4PL#A`p8MKm<hGmI~j!iI>kb3N3TX`_dt
zSf5X};tgA8MxucwgrF7bquY4zx0xQa!~H^iFZ0hr7hTA(7a%MzEch9t^+d<E7@3ux
zn?^J95ErA_#t<vPjp|%I0sp*@9ZqE_m-@G4>*c0-fEdie(O>UOA6iZc47b5NlW=e-
zZbdvh3z_sB@qI<iiDZH&&$*6xFLRzE=4^j|QtHH7dHPWjxRQD=bsi(^d^(O5V3tP;
zTr;3*lE}})$S<|N@;>A*f#ZP6&-LR)e#Xxf<-S#pYwh}p$~A4)P%F8Hd`U<vY4m>S
z&g)uy+G|#}5k#}^@ADNhSVw4F1$rSh6AUaj7DCRWSlP_>VbY1r&ZTb?K8^(NVu!J;
zwb_cZ{jjJkbF_g0!yCs<SXfdP9qkS(=a5+@V}<dI<|MPYlz0aFmko=@N<uny_!`1I
zI-C!pml-$e`lTd~E(Io#JYzZo%|_A3G))uvaTMtdqrUNW@C9UJ0?z#bDnDjH=HcUW
zM1CBU&q#h?X>;+i%7xefKn=sbO8HL&n?;Y=?qlIkZX-V7(RSOpv~ak;WVA2IiA6nf
zN6u@pD?oc=91UYYVb&(g9W=4DKH41!tu!lrv_CZ%=J_M`n5J+my_k-pzajQG>jHZo
zgV7vo=CKLDFf)N&XiTB~^*la@=Amh(NM{q$p~i=|A!kfvS`MJnc^PCLmdqFFT)9j<
zBk5eWaP^Xv)xs6cZA|s_kK{T^>gh+~k>I}hNA#N;sQa1t%k9yB!AE>#`@2UwYM0U^
z+dkWxF*p>T9HJg4DYJLRV066`kjz9qG1<x(p2_@e?=#TNVc9*+VcB-MHKw?njl$oI
zQ5c63<M_AA_`mWb@`7GL*O`6w6*NunZ&tFEb{dv7E@dm7G*6zn$sEJRDNCnuj>xBD
z$cHfUf!Bv0Am>kFT7N+0Q{rTiPcO-S=1sYO7|Ev^ZfuQR$8Ap3hHu5*;Xd)W!*FZG
zPOtkI?!MlPKk+{3*?8?~PcAK`XBeJTAFKp_1}e1S$<q7PEK2nG*+P>pOkc!S*+$Go
zY}I9z%-1`XWu*JUo(Y(i^uhp!3FAyF7znXRC3);tV)a|Sh|MUx0RN;obu?SGb`hH!
zUdmRn{G<tNRm{kwfo#>{MQl{+nQWC6pK~5twR90HNEwQE>1k)PRl)M40c_Pdi&#cd
zp&Om2Us45IwQLcaoOBLb<r$nh9A6EmO=GJZ&v@$3^3fdI?@o{W293!xY|~D(7qMS5
zmT20#9fo{4aR>RgiJeFH5NmMg40bu?HZaziKJ=KSY$Z!33q%{`^|5u4D3?0qd$BB+
zn<2jf9063h9GN2ftrfE0+R(B7y5(}t!j&7VQ8GC#)(z$d7HP4*VeaFfKKF5ZqWic{
zyn8Ckeb@T~)RM#W@cG&?XP}YeE2P7X{!bDIdo7O9pBAI-#{2UBhge6*@J|RmMq=ni
z#IS8E#l~iEDB%VY&yt2GW9K?E_a;hr)5%!9>t}4XeC|MS9$xz!ej`6G)cXqJ{}o9)
zPH3#1dnKjY+^^n4j4O%db-$d*XVCv7)>otm?-TexD`TbjXFHIYwx8YJHUND>tWU`}
zIRsfB66+%}tH_`xrs44ht8uU^%JgId1?w#Kg>EOts0DP<NNAQwZzs+yEP>ui;)W&1
z)9?|({s-oq5q_1hS0H%tf1=~}SktY_J}fzu?8z{)O`DzTfy{=O{sfGBjOo@H*0?^2
zc0$NV*8To>2`#hp13GpbwnV8p%o^UN<PdA<tR*>6A>O``>?G`JlIXr#_Y!MA8OM+>
zH<Eh7t|N)=t92K#?k3}~)Cp5#FR>cPEZ+#+9Q71+Zl>mZD62n0X*`R|i0>U!g+Zr)
zV&zjmk0y}*I<g|vJBZD{e-LN1Lw#oNs|mf9lyG{U13r2;p}S$$m{*cCU%H)S>lukV
zh#>nlv38JIw%_ZcOytF8>(U~mHNglYC(ettV+u`wD1Q$@QsLxqZl;ZHE1C4g5S=4L
zrY9P9Ce60iST(Z_p*FGa$Qf5qC?8M#aeAVOv_4MRV>HoyJsVTN8_5Hd-A@zUS8f@O
zGyMB0yMvb9N!jhFjLt5~uBW4KrtDTa`ZgYylWWp(H&AvB9d|8dS5uQ#?x5^fv~n9|
z&(OhsJJud<ZzZAsB8<g)?LdNmZ~()tXC}?iZ7#78){Y$qQV{*=t(5jj{)SLkXS0$9
z#f~;UB58ltLsyXC9%}3(`mc$xR==8HEV_p9Pp_e|=X?7*qk<TsQg@P++Xz{r|1a@f
zL&#;udxYLkF(&JI#s}2H2eHqHu|&T+>fg{ak<YP}-eTt?LjRB8Io*>NSm!Tg-w<<f
z=uVn&6ESM^w}^2Q(Vv8!n7N`CkLU%;+4oUny&g34(&xq$d#)iq9?wmL^2cCLveVmB
z;`GI{uP5Ir!L!7Z>5Rg2lqXHkB=1sm%UV;t=zp|nk$Gqcau$#asQ%|7$UJnm9)a;-
z!n!r9#F&s&hnl^G)RC77b|GL&Q|(!Qwh>3u23v!$RZCc5sK^+g`_jBL8>`wr2iqaA
zK^%&?GmA^6b~?AJX+g4w71AQh^f6<&GYqOePK-lhu^xJq-yrlp1ijRJ?={H(2Ye1F
zy?xW=cy_9F6le{%#6@E5+uhhg3!Hl$!E2WL+6U86q~m_7Z4Y4HhrLtFcBqH=W3&DJ
zVYOr%VN98``GjN_F|L*x*4!xcn*;ty(3g+5s~}$vYy*^jcSGjkxSV&j-%sW9`-Ra8
zRt<$6avNV54+EBK=-p1Wg8}R$&`bj704)9trZJ|E_GZ~$cX|GLVq8KkIbo{bCG=_q
zuUbc7mDu+J(g3B`aL7D#zR$t+!upBGI}A5i`#nIP=WD+&VLgx+`?a{17D{c0r9suY
z4!0Rb@IjnR=2h=vV>FqG=}dpU+{n{=@sBjE;bx&<J@}P=`yoFCJPRoO{sNhYQ|q^C
z`TF(n%#yXTGX>x2fr5>@g?_~|BIETq$g_d-0HxopGo^kPig9|Ed`9L`OV(7XW$Ua)
zeP`fNoiyqnq&(^xY&Yd=p9Y58L7hHA?R$}jSk1$pP#WAi922`kJ~K8E6AcG_z7r4U
ziWL8u6V3iPL;F~T6zfrxTH6Wx<&dG+L&86uNc*RjQ8U0Mv5BzK%GsD0XE;_WF-rII
z-b3wul!0SE?dy(>ddM911f>UIhkLN2V8oc8^2M*dG2E`pOb)|Q5QDKADITQOLv$K5
zOr~E$JPfTFcBEt7N38>NET0!)LS)@Vt-GnRDKTsE#KI{jQ4cxzF0pQ>)*k$oA$r?L
zC_3*u!oDZP*!+jhfN8S95!4e0P|r;;LK#Mcpp}4Cm^lAW#C`Ad@&8*&LoDkSGTIrH
z2v~0u>mAZ(G#iy+jkEDh%$^O0^`40}1~*#2{S2X>6TO^GWJ$M>DmGp(V4=iRdjefx
zJw>cTq^OE5NQi;+P;aa6Y=induxAWvB-sP>hY5X%V(!=b7P60EmSKA^E4Yo&dx*8(
z+E9eg?jZ>tE62aeKzSGz%gMszgl}sCem!;|bg*CMGY%^Tds&J85pdoKvRLlIV<a$?
ztrtC_^#k$V0xv<`hCZQWeLH3UA^3;Pj==zHg)(h8;#A;v#J$wcwbNjZ+X<G%-S6(B
zw9a&HrN&i+)L==`yp9+<i1%7z<ndCSN@6iC4Yy*^_NIA~v1*-X&atk*bb^%ACH8C*
z#0N{Q>!~@11+l<V0u%EPX?ug6(^T3@;5y2(XdazO<X&>~L!y0D&WhL>iy^N9)&Z)0
z9DvNjF6rm6Q?9q4)IQL=WYyExbYV|@t8352lo}4|xPzHq4(uWa?qt;L@5L>43`<%x
z-=O*|jO)xUWM2G@g+hGKdp|KI({*r76Lat8M}(dyphp;b@c!998+Id*11LQ!AoI{5
z_W`P+_Fu&MmTbpjTcU-0Ay&U@#IkoCeu*w78@nJLnrEb0iN*{)7W?o8hGX<bKUl-f
z`8~uOPF^R*3~sA6HwwM#!K?beyC5F`9s-nJjgWcR+QA=|=ih}Z*DM+^U@5$kN|1Ye
zmDfg(JWIO*(DG?-?s{ANm`uNnho_&O!?ai+3s5{2ka?(-eoyMjd6utU&iD9}sxmPa
zT~F~c2?Ns0bP1hL;0=~Qg4(ySOK!5~Kd6tOBbvN1&wCS^yz~Wc0;Lb=2@mS*MQ-hv
z(WCBE#N}yzT&5qq%AVf``9a`OK<V{3WF9)M_eS|2a}@!e1(l28eEcfCOfxRiv|(70
zNKqa#l}`vh?c4}oEaVIz2T*)@ka;+zA9jQ-sd6xO(9gjR`m6LII3EMrQn(K$x+B~{
z!B>O$!ibOO`&P);05<@N??K2s92z0U50&rh*R10izrK3i25cqI#5-OBb>xo(E9tM%
zZ-`cg4SOsQ<zr3B!FD~?j!2y2@QhwVFBO9<kN7u2j}zcg^CxQ#_C0}gK<P0GG7m3x
zrpNl_OE-+e-Vaxyo;*w3`O<}azVsTr?X)S`W(vHY17?MpALoP|Yp4kqDqlRnd`=cL
zx`xn4-91XJ@=2l3cJPJ4$MfYD$aewz0j1CHA@k5_zAUR=SfjF}f$X4sC-yb;(ppWn
z8Ef{UeUKZl+&m6C*Bm-T=XvA6R}7le(g$2c>YfsMgyu%_B^PorFa%I~Ooz-ve24X8
zw|rJrFIm2D_4K8)mPucR%1clqenU_tUZc%ayNzI()Gi4*{(PeZONIG1OUOswK#z%h
zWv_q4ucG;o(5Hdx06v~Ck3fDNcnMJYTzH<)XRGw<Q0v*QKIo#BZ(74^3bwj_W4T*h
z|HO#ls^iyQCPmn#b^=4=ea1X{sd16dhWBSb>WOjEW2t!-!&p{e`(|V9GRdems2zim
zI*xjLEW=4pp<b+7_D}H}ES}BI7(ffzjEb|Ji502d6!gGB7P8ZZ`|yfYWj)g=#js7V
z;+bd%X@Z_-2U#}8^)MU2)*^<YOcH_z&{#TL*A0IK8<jBH9>w@*b}ylqo3Pl)Rjxy)
z*6_T@mqSRms=tRJe*k<8sC>yi|1{;acH{EJD^!JPB+a}sHo|;yABB8l_ceMyelr4o
z1P*2%9DMyQ2MLbHT&zzV|0IywCk5UXs8CM2X$EL9@xY!5Iyr{p$=7KCl;2F>Cv*}S
zPlpggw!r2Wg#NYAPxbRxLf!#f2Ppk-hs?u?&gz*|J+5XAPCC4X%@FNLJ%eV_(ZVyP
zh>nNjFZdCvUKD&Sh)?l-3HdAFTgk!wS2~U-qCPLI9amlBdc}mn6V?uM4`WQrbb=Ar
zjlWLDKWSd1ADspH0$?$q(z6~i4>i&c`rstdzqvd!`B8k{nKY6=p%8eQ{zbG_oe!Wn
zSg=95_`c6zyzNIP!AIHA>V7BE)r5G%h?lpIw;_KBd<rPupCI$lX}{5~KV85FPOe1F
z3k2DEg#MLiiM&r8L^DqAQ!m7vg6D9}OG1xH^CR_f9^{LFHGtBi9x@N7?N8fOsKb#G
zZcEQc=YE9VN40#_rIwi)ZkO7xW0!gb!QzgrWZ-G|Z=qKUc*A(l^XE9^9|8S>h+esn
zdFV8MRKMD$R|D2`dFOhB-bJ-(=v=AnTn)w?IB+LLI#)jTszpz%>ix??pBnI~cKd6{
zHvzW+DxaQ!%)`(3uWd?|FUG-$ZDfoCwcs#zQ8q0!^RV-oLG!T9nPJjk2KFGJ&Pb?3
zvqT@;@_V6=wjk2K#zD>n3IL_gA0YE^y8cyZf=>1irrXIr<aV;iC7*VK=wy9EVW3a5
z=NR)a5K%LeqNhlVqh<+%JF;z@h0U@g<6ORsi9Qz2(GGTHlYP`jVrl;b^pGJoCL<RY
zHjElP+8Hz?)*EA|!im|oWBNIG#nObH>J;E$1c^0l-i>3o8a6>nn0k^~4x5b_GTQaA
zg{*f%p55DB{6Zgl3!_)VRZ;a)m|q<c`4g^+l-Cf*Q-B$O%Ae~Y^U!H|we_<qhtR-f
zXM4HmY_oW0dxYMIA4Th|v!&>4gKlS=*e5}Dw#g>8)OtsCwpf77M(Mhp?I?7%g>9WJ
z^eS!^={P3!<n7>V$Ug#fVI&<UWFFLfOFiBGNltj<Tz{L~pbd@B*KRh>*R&Gai_faz
zS0i~U5sw<L7eZbOYywn%{V!x5cFBFnH>b;f&^<7>en53?%}ROTrj^vQFZmW^>6gf)
zX8JdH>13n9#hB%criNlzY$zrH-X;q$ueE5V$4F!`W&oc%>2}D^U{|BFb}U$(iH1Q?
z1F&=r^HTSdfDe0&MvfjZV&JyofnARL8%`SteTKplqlzYyWZqy9>i#J5FT5zyzn4HB
z43q&p@bROg--kE=xZXVxi0yQI={zLiJZ+v20|<7YaS{&Nm<$GzuH)E_#eD97(jxhG
zBW~4C+z0tLz|(-r$D@#W$nUVer+Cj;vvIYYBH!zFr9;q_Hq-wQm|fXe5ivr{X4V88
z&GXP$4>RI*%PQh&z66_dL*?L!_*>o->Cayr(Pud1vA}ph=`$7b>GfH?VIjsFWJFxm
zG@Q$5rpvV^919uG>(4kNQyM0fe-eDV5nmV)y7NBBzX5&=D83gU^U%>hB$9r?C!LYw
zDl1?KHPiXpo8TPAIm=wmM#*O{iSVUCE(1mZimw{->G&qEUQ%7FJfG{xrY)q71o+Dh
zZtll&ahh8Mdvxs)ES?4pFAf3aVj>mm#Ic~Bj@pVA?u5*9^f;0gEanTB4-&ePZsw&?
z`Dc+YjnHEf6yf>uBILJ$_W`BndDTMCUDEICu=E#I`Ep_P>X|hwUHcWgn9rK-R^{s$
z*08r-{1b+@X8Mt>y{YG-nPH{HXJV-;Xp|+Gsc23<795GwY3G^DW5D$XXW4?xNH+aw
zSayg7Z5qIU6CfU<V=C*wWhjU}6F>eHoGJ*$Aswe$h=>R7LxIV3Fph%8kU(0Q4+~=c
zbK!@Cq;94S6w9Mi3Hs$-1Z{DcUS?b**KwQvBJ$x7(pfI^;V|U?1>OQwKKunT4<kF;
z1+t%UGhrI9jSb`yKBPBe?*n}rUbJ(KNCT*PSMcR8jqDSYLM{i!1B&lV$UIzniuR~7
z9dsK7-Hk*$WZ*?R#~2i8Z`yl;Z#Uvo{xSO@zXBWq6ko=Lf-he7pN913Q006kTse@s
ztUCQG_7f#_`Y89ckNf%%aUYw1!d`tdebA#lz>2Wx=^=(`CZ<vNPo}$Flsy{d*sBjr
z8_fS1=}o8f*9Vl*WqK0ULKzOKC7I`Yf>}j+KB@`!?)BZox|CZjsJGR|TZI0S4rSX7
zp1Q^lMY?LBx9ZonLB1Zi8Bpok2bqWB3NbF!$n_VMu377rubNW5bi)KWS*==+<(HfV
zJROIKw#&}O4B0ft;Hoc>o?%R)y+p;S`AG1$B7VhhEyKDGkOV0H639QtfA;bVm$fNS
zvmOq0=fIz?nf@K8f}lVNcI|Z|?8%2Om(OeYuu#V>T&_%Sl1bxSg{uB4^r-`%(&q-q
zw*q$pN}v6Zc}SP*aGm9c%!|0H6>dKKnrJWD8FUc_P4}>yn**(quNCnrK7Bdvd;yXH
z#Wxx<52qSemh*m2Wq!@o1c{FWCb}809lqywFLZ4|iV+PzA(CkZVuFb{EzK}Zi$Tjr
zpJ4G(W-)Ks?$YTeA|JMcSLwAE@}s~(K<V`w<kRW3a^d<7ZXevH+jg#70N@9cnrRc!
zuJ!QUqP~V72X+I@3834>Iaz2kiC(DA1T{&0k}ryk2Yn$A1cm}ipV5$cIMw*W>*>sz
zg^R1*0q-n#z+0+4;$+YYKKP6@dWiwA_*0pF86WT0cSF7hxDQZ#Ps+cmd6{~ucEP7;
z14=kqxNjB-`?D<V4LVcH;ohZQth{=~G3gAPNf7fj$*Zl1<a-eEa$q%}c!#V!eZISS
z4q7-k{u!Q)IPFvIzSg?0kBg7ix^EKP*9`Y{D;9q7-N{jZI3r3PrDQKs@sd{?oNdNn
z={SJ3@6ePyBX$M72#1^Cc84yD28k|~z}M=v*f_xU0;~%<++)WkT5t!zJ`97G3iexk
zNpM`YP0L#lGH_1X#)ylp*Gt%jL}pEO%%G7}fb|$yA~<&yd$ws)kDb~J--u;#daBMs
zaqiy+C;DgL1aP{MXjwtT=<P?b7+~Py<aq2&#9~f|ZJ<OC{M@XOcn+Y6MxqBUgS^_W
zr5{rqk(@*i5PnW_J0bJvwXSny)#suf)XV(l_25p(_X7_DsyrIy-&OgmXLLQ_wZNUK
z55QFYO<JwRqZXF%)itcMOP&*mN3ApWT7~&6Fbq&UXF=v6UY=8$b*|`-t5@SZJhm5$
zE?U24HBP?GUcCxl`O6lr<bLq(!HfcNJ_Aa?E%RFH`eQbd=XEd6RQ*lYw$dV;Wc!Tp
z1zH1pM#z<OksU^*zK|A0#=)j9M1C|t52fc3$e#e80ZPvwAoI|1J-nlylUHwAxN`ZD
zHg!9wiqq%M!m`Kd^UK8}lMm86=ucET1j8)BPN#5`fqzUES8*)Or#ppDYk8~CbJFTa
zJF0<v6|fUfdOir5hh0@7AIqelSw}sWRP*}=W^TZ_YJS8(W-f1FEu=|ou^bnNK_`CT
zYPc8k0y;I++Zc)6(kBQ`4l@$A=itQPAgjzD3PRm#<4)p?H!?{t&rV|G!vmzR5#mD<
zLd#b|e{D^qzsuk<kPGm@?VFDG1hv;&coIZ@$t(d`m!MstCurK&BK~EFOO@lVAm0hx
z1E~D@8Zr;3FURHU;pnw|Nt@$>5&9dNf5;D9$<Kqt0|__}vV%ToXnS;@6L4a%DC5M(
z)1>%xNZ4;AERYDh+K+)4D|tAGjZb`WF))dIHZEO2drxJfEPOW;f1&<>VZ{Vu?W_RK
z>guSlu9lded?V6TUK2^z638onHGoRj#gKV8+F>5rKL7Fy+m(AYKj6e$an<w%780{u
zd(DuR(r_c+9XJ{!e-q+Y`FafU*T4xt@jGh;|B?>#htu+}U${xMWnS;9axuf2j}5LJ
z*y7cW8aT{?^WQj83-g)s<~z$6-R5SYReme-We#}Nc)ktt&A{z|((47tJRFzj>Gw$g
z`P1r!J7?T>i~E%}RM)!ZZTU+Ct6vj=zE}X;LEol0kDg7_X<@+frx=OYz)ypbVZqtS
zXQ%js0T#q5X+B5&gkL={TlF}N{}OtK)<xREAjoF`lK`dnGRQnkk?XiVxi5NJy;lom
zu|9Si-OJD0%;kF!JLny{b_HhM1#~&}nAohMDb8?~V$zhf)Yt^a<9e}NMd-!GDr}s%
z^CqqGJE7+x=%LEJ1@hm4RzT_LTQBrHeS7Lq@76C~xcb~>%U4$OaxbrH%hZR7*2uEW
z1e`XvXsY1^X>u@V;q*iZzW>O|bFfMsB<{Ht?R%l$9Po#cPkbD^6!I?MRzT_Z31l9Q
z$@7(!(oQ{XKB5cX=<3!=o}yp!rJ)zZ<8Jt>^9=njQ#*<iEirVNo1r$27H1e~Gz%9L
zq=y`D5>~VEA1qPJ3m40zG#p{DhG)e)7_?1V7IG2_5~-)mp)fevxk%XM#JHH^NK=|#
zYNWH7=40-7#q}=#k4R_vhDbSF1o>j%Qb48iPRKlTs~p^P&e*tSLp8stD5>&(f^D=%
z$aFp;eNVL}6BQgvLv1=Ru`DewodySn7`%9`WRDS_2E_-#&lnCKj@I;}(DNAdsDd86
zJc1kH`wR>Ol%CH+=Hd7SVthI%?`=74dB7N0j?=wvLu?^Wun+k8HynJ!>lb2>`V5ER
zc)?ub(^}1JJH;33XZH>Ev-&2&2PQAxiOY$%{DtNj@g-inZ%kglL@S}t^!bn$G~Ya8
z`<S%=|G{~KCC|%X1+>hMD^9Q)JR&`rum57s6^Ez4oZ<%^BJaKF`A#3q^?go1+Sf6L
z<lB9zcb3og3>?b(I{f01n~C`+Le8X3CQf0od6b{A<DuC&%Y7zqiqzkcke30g0F_@E
z7mNJbD*fsAt?GP!)UID&xNhCTOHiUY4aRTmy#{G84tm_jGt_<jhlmfwBV(_@v+kZ`
z?Nw_a98Rbw<cSZaJ4tk&Jtzyln|wDeHayyx7fNMuSW3k8G)}^JJM7Oa$guM!E%&W7
zjanSMT~E+VG3>>eAz0`J^Y%CWB|{umG&*+pFnb)cN^JWKTKEfiM*TN|qxuxXU+lk<
zU|TPRh5Gll@@jw}E*<jF5UU7ggi^gvz#TaaGg$Rm96bxO;E<jM|8QjFMf3(jAJ)yI
zgnkb%9Altf!Jg6SKyp6r5UGHp^)Jy|<k>J(f<w%4feYvePvo-#dxW=C+!}$Rh!N#+
z0QnupTV8+v2Xdemwkx2@qxcu1JT|Nm<*;>A7s_MJqKicB&1vww9<$d&8ay|7-N!NJ
zKK6@uZ;N-AQ};uZ6948w@yOVV#p50H$S`f6N0m}+O1zVYgF9sjMJOlR!L<&tC<8y8
ziYw5(ILdFHkFtqB??%G&iEmhVvED)_lXRFIF<zgc>mmMGJPs$((4z#?<%D6O;R!el
z<M$=|lLNs_))yYWu&C3`(i|a&0)Fc@l&(FHZb)W<gzEltj6iZ)ES6?$+IN$+G12!s
zY%lsgCFUe(g^vf(KF<@j#jYcvU`8{Eg;!ZQeGWS=eyac-V(9$2W;!nP7<$3I)P97r
z5$Dm%=oC7904vC$flvT7Yam^0*Apl33bmfbb!xxmk04G;jd0S!R#tJA`bH|lHy*$@
z?&lBp8-v!tUHDT1=V<FQ7*TAKwVYWC|Hu8zll&L=*()1&T7*|5&tcvqpDR_eV4xqG
zd`cjdCE0liy;(o|M%-^?ma)w9E!)One>mvlHEsetFlHGE9?yO7{zlWVS1>vTUYP~+
zecMQK3X6joXtO^3;p<)lv{mok{b_+2h%KoS88eY3EV+QKHL={e3MaNIO0BXQpzZ5@
zGE(7jWn!%(W-Tt^I9-!CL_)tKbT!>a=vCC51<$hO<bR3rF5wQ-Gt!UHjIqXCI*YDK
z?3=R0yc^f(z@znSxU}3&$Sl3TJ(+IqpGT65$J1%naOZB~nWg9AraAFpZc?kRKS<bI
z{RQHi=N(}6HIlt<o3ir=+8HbK?Izw$zF&xjCO;fiQB^tuu9Ikv?k5GKM~p4SwLVxd
z=`Y${cypxPO@Mq3a6X{g-CD>zv~<{~Kkc}I_2=q!3;9u8*j@iC3@-Tj^LF$-(H`+-
z8v&YRhG@LU4y=N^m^)t^N$<pBu$r$m4-on_fxk@l3!g*QFU36^fYPrQWF9uidt2U=
z{>G=(Z}FPdo8V~FW@f+<uK|vDI1;r-oORmBz4CU@_izT;R|HiDqHFvoZf}Fnwh3q7
z+1^cD&t>!%SjXPaJ;DYVo9IMtay6C+y=$RYIrQTF**%b72i^pf-qW{8z1N9;toavR
z=+9)n&fKtOT{RzOn*BTU*Zri~|Au(98t%KVP4{ujDEE=^I*NM--B+o7;Tveg81GOT
zGQ4yU7VKx>hAEty$i`uVfM=vN%(6cuSouA}&&sV)7Dj2$-SA>1mcbJClME~KVS-(P
z8I%SFslniUXOc-DA!DtIhlzvn+oZAaQ#@zsspb~%c9MhhZ<iD63i2@dn1rsPdQJtF
z<*a~XI5;-63mR<0F+`0150j&W{gL#aZ(Xnw2)@bRRXEx7a&nlk-;s({*6Ni&@Fn-1
zCkaPeJ|QCl=qWZO{EIl>BdTl3*Tg!GsGMmuaWML?G0xT0xeX^L_LCc_wTnJX&Sq0b
z{gqfBla=mk5SOb}#0`tbW;WYNi`?h6xOJ(|1?>Duzor(ZHDn&k;)P#v6SZ!J8;$!2
zrn9sWWGM1r2(D#w|NJXzZNs142QCHdEB~CwVgjXR5=$L}6{WOsY}8O%@eQ%QB`e+6
z;7B&2!dx<x1=n+qd#SY_k+_c_4hD}PrQj$v*(!9`Gp51O*_Y#_IoKecvxBgE$*8M|
zwUexLUxWMkCl$tgdlmW=W>2}6;3$X1(spql-gNHK!YZyO)(vE(`x<N@Y%i%uEx`={
zTQNvfVCwrgS?Rt8;rzO#0>^9M7fT-`?q?5^!h|fw3i9Y?&xPLA$tbxCtz{3B9|;bn
z=w^Rx$vfW?_BC01oZw`RXA6rTp(+WVu)<lthOWa-?tJTih*L<nn0X{jPzA)N`E;IB
z8n?>F->ty9S%vucNkWB?Jhd=zNp>3V=_*PxF39R1uiobx50ioXOLMb+O9qH<=MPbT
zEuMfAL78+ty_oh+!5oNA9<$y^!?ilYN1jpIyR73U!$yxA)xUgbU-i%X=1$1UFT0#X
z{lgI>$CnOBM64sT^4pXs&iRa(RlRDXJ{Utw%?oJ%I2F~#bgtVny3kEyZ+b!Sf~<-0
zrEwOYt)hROEBcMbx`@5;9^~V|cYx|QVlEf`My>QOdQCo0+uynN2EQa=-BPh)jc)lK
z(Jk*0kG^6#>{?y>EC}Nxgj-s1tbPg0qm%6cMnA6OAo$If(Q!DxmaorH-LzJ7zR-Ia
z^a{)V?k33lfd>Jl_n#p1P%rg8&=tMi`E)zITgiUiH4L{&i|~k{Z4Y5jCOH@*r_9DW
z6AtO7>5mT;1ZiSPLIzfBD-+|3kcQDn!HdLrjgWG+-#B0BpMOQff9xE{7Xm8*rT=q~
zdDth{Ne9pELVqphpV0}xp6mg`-HiP^_GEd#e8|+ALb-GZl;$(Z7|bMXc;$`4Oj1X+
zGo7I6I7K6@k>f?OY<3o#P++Dfz#{M$*g-$8^~5Cz1<6hjdoO&>!<*ZgSQq)07-h7A
ztv3dcUzmL@_u^emTPV_-d}XAbO@zDxr~y=ZABW7tn{z}uKkiC;<@gkx;H*Y^7k!kH
zM$ClW$7kYE<Gu+z>aLR<Hnlx5MYxS5$%M`0v3*mGgn-Sj&7f1`gXRKsBw?5yK5w>>
z9yfqe^IUkE2NMh|;WLKyGMrOFny1qLCeCcnmBj8(irAUPOfuCD$YoHia*0THXltaN
z_J%wPr~p*D=RoG6<GxS(_JtdBHV)>~n>v!mcm8j2odEn?<hNt);Qq?T;2-ZrX(pO0
z(D}z20UZ2;mfMI?jn-3HE%a#spYo@93i1oU%Yf474ahtspLTt5<Lb41HGykXPqq>6
zsk{S=?%EZx*_dDE(F|VOM;ldb%@&^9f<OGL$oy&~<PE?jfa3qdHo@OduHQ7vb+PvO
zA^9uReGLut*BDf>5cZ((7n|(9c~LBmeMsDQbKKW2#2fhT@@%^!PP;a?h>kVSM2_)8
zK$&p5)4dKaV`AD9X;vRSKTKHzN!m;B8oQUEo>=;AB=#yeukzbiJtn+WF`8oivVi4T
zmVw(rs6LWn>c+37=AW0a0ann&K~4AFFgDamGBV}6v23)Z{{3V&p-rB_rr`$Hnfjbj
zxD+RV^F&jj<yqL|2n>c2jN57}EgX`*mdwqUA2_wvHH2M?jVWuSj>(lia%ntP*x(RE
zb^HNmjePu8n7O9<{%yoc8o9<wumWW?9{1+lNYcDGAIz}qt^d-ui;Ub$bP}}6{e$@#
zC!gI5M}I&Zz$scke3*4Nm-rKhj`FcRppO*3fR9tU*m#AI*C>63lCyDd6OL}*LC8{E
z8#YLPhLG992Zh(OhBcyIlwB367t<ln2NnUUUaW)6gSt;j-6P(<UQ88xN1~;?;5HKO
zr}P%R6{}p>cS%J*$IQjL>zULKZ))IBfU1h~n>9j@Ch(|r(0@Sw2KXLOdeH4ckDptA
zo4tDd#+n)&E2v)5$xc=r_vqnz?IPN1dInvEu2~ywoD*p;RcnPlmEcqQTn2d?ume!~
z+yI$}Zs>z8kBuF-)}T<;78?p}*4~Fc=kl$+8EQ|N$KN9LX#t<o$NDvX;{!+pls;LI
zc~JX&otIO7p)9HDbsaa(TCk1FccR|n_ipaQ();gSm)9~_uk*x}Z*Kf8>qP$4fX~J!
z-0ry+@~yy~fYRr2$UJnsud#i-!Oe~1`9`GJDC5<qat@YA$6$r@E&4RvFrY^+w@c8&
z#_Q>JF7M{C6i5e<zP#vAkJk%*v>lQDH4pMYpcGL0jEBrarM&-dyYxqCuTOrV`(Ewa
zMeW*Ey-2Wq5`<&MTl6^5o;Jq9ryA?!x_dZlE^dMtO-s@5H*664)Pqlz*Fnh70M7$T
zpWj2~;mx11x7+E{wx3koAD3ReMJH<SU_YrBuQbDOB{_EpXqEh-t0UuIKgiR8S%Bi-
z3YmwF_XoAlkLByfud3N_iCc5s(wT(P83GIhcu8@2EHDhnn(jcS|LEFBD7CO@8cu95
zI8+~G!VJWz<8pmy5O+(#DbYZeT%2IWn{fe*>nO%r<KJQz7W!`z`PU5n)V|ZdA=8~q
zvjC-k3}hb4x|4tFs+X?BLZM1dTve@Go;TyFLtNigje9wv%y8KHzP1jb{$im|75Kv7
z<MsVg$X5Y70j1Aw$UK}rKivuXc(=xjeL;TTRf4NTJ%RUD2G;W?>+a&n7-J$=B3vu@
zTM)mhPydD-dky@Z0L8xpG7lT%e)PVJI-9rh(`6BQOi~|X?j&_5bsrggs`?hKv$aDk
z7dO||qUm{P41@av4VkIfbxp<HH#mx!jB~mkc$EbPSwlTE7574nD7A*;_BHG!vJrG3
z=BzsN!abMZlB68G<C2H5<XCtQWm(C?4VGpl<GTq7ERH+$^2S_5&!YqAd|Hm-VuL<~
zRPsfCl4>Qx$9JJMpSVXs!k3EtXhnL%NG~ssz_m=91I!0he!K#ihtrn_`X6_cXe*JV
z%I7JnazYfwM9EVi_m%G}<deVO%QtrTKibEIEVui*)8pP>Hqyl8#5R2+%^X~;XZqmQ
z1`imgFtHCV!NKhxrU93jLQH9_eo1&AbW%+lw;m6m$ijZ!eips~?@JSRxIqr}E2%_N
zI?GD*R(fz=$vVr6*PvTrrqQn`{hX5X=sdE3&XhH{sZQiq__|1YIs@{Vz%)SR*Br<^
zywt((u|t0#yf4H^)|P2;HDzn~7&cS;9G7Y1Tqy5}Mv2R`!<P&G2E?!0a}(r01MdQg
z-&-&E2TQx_xU@&w^UDqyqgNX_9F|@ruX87)KM5zLC9k`q82l-YV}A{2xUd(MOHI2M
z*5qMh=?Ag4t`BBI3>Ji{Fs=LyPu>m9##9>i)H2-1n@R?<!A_xPgcB5&Mbnic9m}An
zO2<yfcK~+-Djlyt=3%S6rzw73XYCLh;OinIaa&r@AmOS);KKVJ9(<@lE#G71;+C1P
z&3Dq!*}JLm>rabR;Fivqe5~_B`!nINScL1Kaa-yNHw6Q%QeP}Tpvyz$Hlct1^%4E2
zK%NgQ0+jw&LFQqD)PGi|`tx1;PV`S|C7+4g#=gXUF4zADLwnBRrO+P^{2B1cXC|%^
zXV5-gFZK6B-sg+FpMz6Bz9G0@X@%Jbx!<3S_651_&D(|EEznElyL|)h`2{iorT19K
zJPelp(jUwH&-V3)=liVAb;qXue+#>Xn=f4V$MLH)R*}g2DD6Y6$<^MQPjO8<uQfd1
zZzq8fo<4N7tNlPTfg7qk)L$*@KlD@jKLhz?;17V({~wTfP<|9Ooz74A&!|LI{hCYQ
z7P({%@3Vg*+Hor%>mhw<Z;ypjj}9&$qMqJ<$o>SK9}<8@XBp?<5NRe{Y@~Wx{Z64@
z`Hd0%&Vzgrum({2)kEfCpS(YH!>rEg_43slqSR}~sb05bj(y!7SDvI=J^X5MK*zxW
zp$reM@PV3f@Mw%Pg80n?oECDusA-LnKr*?$DF16@`Ga5O-@hSycVQg|Q2LcX=Hc}E
zZTwjU_jgml&~-w;I`Av|{vOB&f!_j3zto$Aeuk`{TRW|v?zQtW2M4%Sw;I!~tR{Md
zJx}2`R<Az~`}r-p-J><xMcCraf-6}l1Xl<jIxc2bVzcagxIE#S&#}%(YKF%;<8X}<
zZZe|Y#8GxdJnoUVLN@Ml4QG#L+>4h5+>Q947mH_bzf4-<dWgsK(PK6iQ*R`81MWq_
zP3f-^y%%m59U+QEYq(LQyB6tE<#H3`hk?fdmF~Ym<{@7BBgp+5H*szLhr;VIQgyOg
z@oP?BQqoHQDjt6zU%Cl@(b9H%a4wW@YSZy>%036Fo@R%<X-2#;&tQFva4um8_RuZU
z!ugm!*yw&4JtcQ;nN4TYQhSkAV)ix0c<^cs!_USP8w>c>g<IFSo;A0KbXDFQNmmWz
z%|IQX(p3+chlUQnBho%ysBU5{Hj=cYn#E|e%h&K8=1Zcz3SVY4S=<eU`>*&=Ga7Rs
zoD>za9h`gJE$ct{R6d)x!1e>u0HsepWFA!gA1u#hwby532kW?P<iT>%U06=Sr9r9J
zxo!15qP+vvZ~>x&?wIR^ab=Q`LF7H$<+sZ62d}F4dm-NsJOU`azJ<)gIC;KdtGxfM
zy<Yi+r~&wKI+;xck-DGL$o{|{Wjwb|;ASMxK$>j8(GOk|%(EQJ2=MsvBsnx>r{E|Q
zPO$LV748?rlH&XzW}K-OZZ!$w(xY^fg@QpApGZT!k(%-J6I^bEJ1DVTpR6yz{<5qA
z<$GlL?~cs3Yam|^Yy(uf9*4}sJbAz1B<ZivK3$k!&WuhN8got)``&n-ktW=d_B>`C
zZ_y`B?Pg~n9ceyHjCE*n#Bb^>*<8ct(hT!LmWW@0!I>M}6e2otEN+)zWyQo2;~bj6
z;*o+rBt_KWy1hdG(5;bj84P(GFd0z#-vOD2S<6H}-nzE4{ye{M)xw%i3Z<F7;eDNv
zW>)&TTQpDkv?q~-GCSF<pd+xgHi_oz2^2qH<H5w=d<C0Q<{A26_id~hOZ;eY_rilB
z#JyomUS9VRFTDJ4xd^jSL?swo`HXB1HU{ZIzIjwge_^I!Cn?R7NhbwxNcb4RCd*cW
zi{hs8*4=ckNVk1kq}+N#9t;cvRJvzF=3!T*NbgoTo}E-~Q`-{G4c|I)!d=xmz^|!z
zi~dg6TCr<62s?F)=u)gmT7KN~Wle`Kdm^8;48>|d5t{LIno9by*=RrY_X+(DfM2!a
z-$OnMyay=#5^fjz#j9~b`Wd&^&wW?TmtobBb4(o{*WIb(i*o9Co2l*e;zDA$OgSVI
zXH8?UGdGGBg>V~R0#*y`4Bt|8J^WtNL^LCu<|P>^m`n0}KND4KC|pS3$(`t%%4&^R
zPqIDBh*h&1?0-KX(o+k4Rr|ja^8LUgfJ)DEka<WytzCik&yUWZT+>8vIo<6o|3tJG
zy{fmI5a})5+bHWFl;yuCQvQ7)mjR;yrO#Z*Jd9I*1oHP^+UGBCw^0i58qh%ABYU}H
z`FD8mI`AE?QN~8aaNjgh1H9#Q0A^Wbybkc*WDp%;q{=#wY0aRc2)_rt{$ZhKBlJ-D
z_7>z%fxiPvPwS4Z<(s>8)=9oKkejKiZVvayc#FP6wXcwQ2~Y@EK$yR<(tTJ*_rzgl
z=-$a&LcbumA0VE0^*ppbBJ`XCJ=D6x#gMNAwgXDfn<4Y?v+Zdt_nDK5^8BoMieMZZ
z>`q><q1p~#HkD0@&pieis`<$AMr#!M90Q-qH{YFD0|C+jrB6S|Jbd2a_s-gvFK#~C
zplryf!A8`!wQg<0#SMF)lNg(qMQU3=xOYXChcxXmp;sMvRX*JT`F`LLK<V`?WFCGt
zpDNoF>m-*R`ng=vLXQi5La={TJ`ICB4wwumeda>u;pf^VTxgbzh1Jwa6{}i^#j9~}
zD1QrU#oBXF%}>YTh*AY6n<&CnMkPwJMe5T4K9xT&LOufg@&B>+=J8P!`Tu`+PtTdm
z<UR>x!hIzf5D)<&oB|3&!CNFDBoGNCCPC0uiHM3P(cN{`)g`X3a(JMtuDXixMpxIY
zx`=nYSan^E$EqBX-?O@_W+ow*`1yVR+REeguJ@$7>;0~ytE%gG7f||q1TS2RT!;Nk
zhx1Rom#i6&R!AgL;UC1P%klGsCf6F;t7tOIekb+bqCAsjrl^TCRi{b_dcaPnu?-Qu
zPJk~3X91<x26*Ax?+b5Rp5%Up1=dM6G#2(TRuk6hb^1|OgK@K=y@Oiuu7Q{<i%XC5
zrm%Gl&?gz@um-j&S(T5n!3S-<nvgpaxng|l3-|*<r&}X>4T2Z$b~#Q`CHDoi)vK($
zv|>r*;C1$%JZbMe$+3s}FJa-jALB5IDG3bLCS+L45)%S(euD*xBfN>6Bza_PU$H9S
zI^8u|A7)&xi{=5h{UKY=HRv&x-$Kt{!`}k_2vqv*fER9>wEzEchwG8WxMW1l>^k#F
zqm_+DyNrKxaFRbCE1U5#@gT#<a230=%>EeG3yOvo`}wbn<<VO3VOt;1A0zoW3jP$Z
z5GZ|q3oqO=vi&zt?6}_}hl)=wuU$qDjt`X~dDW#gl@;fdiW0Y7Kkr^)YG)nGc<^4-
zE${cX$3jn060dh@kCL{j#w1RHU`o>LpXtsR%F&cqlw#(<{@<(^$zh6fG6pcYPqeYe
z(R0Ys|E1H<8|5ftP5uNIrwE8vrQol2JX?r|>PMv9=F|p&p+LoR54><+NV{|$k0-R7
z@323^L<F1l2Yl~~_22IIt;oFV)AkUVH1>Tb>Wt1V#}4%J1ZMX7a#*L~j-@eSz|t6H
z`dP@$%xRx~ta%(^dS^Q?XPJYCeH)$$e0ugyGLrflX;2O*HQCFUWTXvd*(=9L^1m!j
zobbA*jW!a3fn=79%SV?vkrqd5+K)Z!fn@b>ho_dkc{%olz?jIt=Q2LZ$|epZOJc{f
z`$|y-Og6STNYVRr4sOOa<a|a+ryK0x6h+5!4UKlX&b&QRZ&t&v1D64nu2cVHr>iFS
zx%`ZDRkP-dl6`_Pes(>$zp@hdnpmxl)i{~mB<{R$;tr&bJ?hZJO*K+UT&PUkR3lR+
zF8`B>JH6w?JsG2lM|709;zCD>JC`jvxiWF58Lv5vYz*cy<NQy<sMHrSWjNDL-0jcV
z>DoZLHIdSyo_GZQN$?y{>ADMExGc4gq{H#Avhs?G8KO?J+Qt`!eWP9MkI?RqpT}#)
z9$A*~_7yeMa$~i~c1>$|-j<(!M`XU>2>3Bz91yPieQ}G=wf4v69akzg;|rl2-xwdm
zv)g6(b%dqf$D85r0`~zGzlY$3n<>l9s1C<Ll$`mii>naCz|Vf&8u&TY9``wDXglK}
z+JlBGi`9P0DlYrjUa;foxieCJ`@@d`<AKuSWO(7aUT328IIgrtSo$#IuM@lSQsvIP
z0P+6^6X@(38g2A)#kk#K*<t)(XFPcxU@Zc}{}`YiC*;JxDDxk=Dt#V>e+Ik&lwK!p
zvGp1&_g_@4>8M^7?Sz&8LaV+_S^I{(k|lEE&Y{}p@e5pYS-?BOHP+QX$(`;<!{AvT
zk3*cm=y7-x+^HjaWB&dsJ^pUp=o^2Po_?i%c7i)O{|dpSU8Q?D64Z>rR%!x;C~*j@
zUDGe{T$p~r5v-NZI4}Kzm<zoZczj12f$H=NoQYG6USop!$5A8Ynn9yiD40{g+=1KM
zi*+dRX1s5#H;xr6_v(Rv=-48^N>8ZtRAu=d*W-D3Wna!Go)^=X#`Fq(rr+<4V@Bc#
zA8XHt2Q7=~M_6=>5xh-z-_H7Sp1E-RHr;U-uNUkFeO6zeZ-tZfoGI}fI^)bA9C8lp
zKioOmt@9Z--8j!Via0q94=3k|*gJRVq29f2(>=HAo<5=8o<6?#_<!l<=ennFdQOIG
zvJw1BSgg-Aj$(E;HW1IppvUhKwjp8@jl~I`#3Y|L$DbY#=ksNHk8|CqGm*O(Yqx_z
zz3y-)P!;!2H|CfHw=hnp?bOW@gQJzd(2b`Y*lra=Eepjb`vKj1&=DA7^p6`7Tk5Fx
z{Z41Y$#Z(j>w4x4y&!J2p5S{;kNuCq@P;`9!|dh<x<1RClCm&;;Rx$}E_mNAPc4*}
z4U{iYpZK>rwR|uNsPc3^yl~IR@4NN#d%A7^Xi4RY@|DGy|CV(MhKye|EJMcgEjrJl
zGcB5UFO9`6W5220l(f*(n-&ez#6}9|fKOvZU!38M@xgOS85FxlLp(!A`dqH$qdenA
zI^srq#*9phBjraXSl6-ALv+3|SR-gRL5&~S@!E;r>OJ`sz7?3;BJo-RFWhE1E^tPN
z`;|(HOP1LSV8U+;ovK@1tq#4;yiT_~cdHejPu$v`q<kZjy<A@M!W)a#<m9-R_zZVe
zQap!MP$v4ux?@h`ASSnWw%*s3>2f<~3~&!N8AD(^Io@j=$*!fiVa)UD&KPEMdK+0z
zH%Cfk59S~)jNynWb%tK`Bh528_;Wd9oAX@rjMMZ%dcT+{b}dak`iUL?M&cJFej;CY
z!@mPQka6z5o-V7bSRxHaU`%kguqZeiLrs0L<iXSkR-`x$ASNAK&*IExuRq2mG!D2h
zVc{2viYwS->rr@Dq+h!d{x+}~sPeTRUbvv_Uv<3Rru6Jp#T7G9$}%-Voy9ooefBtO
z!bUOLdY%0v+xlVuE63tf)qi4$#(y2!`8kGrcHAr<V0hof{0WN<Iq96C{)}u-GJ|UI
zSw?`fvfQz`Q+=}?vwYLs-bBBHMRD$ABOx)6=*5(QVGK*0Ar>hn9#6J>rkfSU^>&ZG
z;8Q!^Gw+VXyA1wZa3N6fZh#lAu*-E9#Wf}6<<nK<trp}Y8jk@W!)`=~6-Nxe!)~f1
zSF*?#M@(h_6KS#JN5FvrB~O4lh0WR=e8KK>twrkhDe~3#hW{SE{Xq^;`i+L~UcZ`h
zaiG_6rL_#tw^j30)Dzp#*@2FV7qJwI5#l&hOx0tsghcBml&Y|F5_0N3v(v2(xk|6!
z!QTV^43u8e?zQz=BF7t*y|lLVQ3(f)6<hl-8PEIFKBDMYYgF%5YZ>ud#<mzO*q^Rq
zyw2e!#%u?+X|R;h-y0i?WglZMy|wX--FaP0_%(xH(+zK5XYU~Qigg6$X#YTGABWR<
zv~%Qav0^CE=kCqc`Pt?GYNTGqP)^)&PIU&U%^h)h&Z(F=%@eJP_??{W$Yb{saOQcA
zNu1)GoDHmr^I66vhIuKKo?|(-+9wJl)nn~yO$&Wxr%wa%SK|?Xfo}xQ0+l|y;Dy^P
z?LjO1uWi$Z@BfPOm8IfEvMh4NXm2q*teuy`heTht3-`s6ku{5w&(BkZ3N2E8aC_u@
z)-mwMf#ZRapK+foHzjtzV~PAeY%5>%0&R0_Y+3evCHn9=7M(77@^2Y0dbI{!^yI_Y
zBdjD+?{NJ46zBX*ma(yBJy!6EiN+L1va^)&@mQZLXNpr;$RFX2^~ZWVe7NvA#a7Rt
zbH1}EWsbPtIW5IVJ;LH9q!{ytS=?;Qz#q?y$P}k5<rwQfCl!cg<t7H<$sA`NPbN#J
z2hpVwA*2^zFo%hgLB?s;9$UBbc#F%-5cUbpzBP#}oh!0|m8mm~XLR!?C##B2cdFcE
zoc%jHKdVTuBJxYr)0e~l3ETrzdVT^g+)Vksug+_3o1S7ry;_ZxR`k9w!CeJb0$~qo
zAsEj9(>v^_F!X)oT8?r28OEtWBZK<Sr<=@<u(Q&ih*2veo=?HVYLCmoAzSH1W~C?D
zC^FAvhYqFS4&8jvp<f;`)2)SmwBr%FKQdmh0RCifIuK5@H(ihW3?4fFT<p`WX}_2f
zjnlNNbdFvwlyVvfGoJ87dhLLJ6}$mddhLZ5uKjrsZPSZ!a<=xb6i0NIR$3?L7M3#f
zb(<LfO0*Dz=zrM8P7+<Qt^|xcV3NR5WSMzzVor;VD44+^P39WxGR@Sd+b`<&y>@!c
z{BtBdR>EHdE(J=@8{mcOdfjV{uzND4bZPlYD|hErTgwQ=YipT!7=T5BL=c=L^7bk0
zd^mF018rhsexNsrSsv7zVO9&x>h{@sH6vGzAGX3D_W<uNP<p)tFWmWZK31LM*f#yz
z=_M4}t}ne;jN#0*=y4W3-l8KcdZ9&MwTE`>%l57Ih5PIa1I3unJI05+|3oFr70)4+
zy|7}6rT7%4&lR8LQJgtGCwvD3a4zbFJnlb_CwzX-(C{^muX3qp;==zO;F0&&>EZ#>
zOw284oRF~DL8EY<al2s@I?DN9RjZwT!3QJhcMSY#U=dL1w;Eo!p607PC>EWurDW)E
znXv<{jQx*p**;DuWBsfh%+cMhfqtp#5_7Fp@QSqKEV+%ySNYov|1J0tDE;CeIvo8(
z1{a-7Epj|a1Ou(wWIgi@tWnKEF_}r`_!z0!T2AdHDXVl_uTzk#^jZbK72FGyUip9N
zv0l?xE{W82qG}UZ3g&=GU@^E<EHf5|<b;15!H-dv+Ru5cGnzR))J&%DH;@@tH^v>A
z0_R97tE_S2h?kmCoRDSzK9Yt%`nQj1$t2DuF+|BEKkV!3?nADcqmFjFSsCJr0oLr_
z8RiiEOsuo$BaN?g$ldDu#c8M42GT>N*KP3kfct?;uSWPDmNU|8L8TZ5Nh%sa8VtdN
z&O62`YpHIEC&@90<xLDUEEU}t`t2@TzUSeH`~mP|!O=j;UkKkr`LkBqh1@Dc1!yo6
zoCp$Gu=|ej8$-JR8ztUw5sDNhlflZQG)mDj^N%upirlt-n~|^5XD9sIpcyFrQXl!*
z`c1E~%zYOXO7%pMO0x>g^E3pgm_lKZ<(w}7BQW0YvCi0WI<SRrb9#K_T@d5yYs_bD
z#kYHGy^GLG>3tFWRp45n^u81RXQnH9pJ=7+G!!ne()2}LdliNKN?k`h9|GgWY*K}}
zz^X6mytY0q$W!_xKFWC)pf6DRjD<f8eMTIr(4H<8D)ia<)FDsla~u3U;Lkwm^8)<g
z=ri(Ah4yu&P%y^UC;qPyeMZ4g0@Hxf=QQ}k(&van6}pCXwq0bIC8tH|wHdi8of_d^
z0j~q4R||X(^_p9{)Y3(~n#Y0Tts-=hq5TnkBClmslPgS`EHgJ+CEIVO)7Zx%`pktt
z6`To_K2`8N)W<421=DB(CrlC*1Xi|oM5hdW8>=Aaih{gd%72*fReJm#{$21PQ1Xq(
zdn}*NEBaRj$e#(OSUP;EYfWuZBU}^k?i;Rwc8Z*Dy;@d08v=H^6e3sYwG6%ntN}`|
zE8u&WF4L@&JJOgcR(XVl*Du<n%y>IxrbP58inI0DjU1)N*FxqFr{)Aok8Jp!>tQF6
zojjroDzd3j*XmfJ?2lA{cGARHz2qu$hNV<6-qvRs@{~Ro!e0)q0ZO0S;d`jh^l*OJ
zdG#k<y9q_YCD&F%q|CC2W#J~NM+<V49=<1>S_;SnN{`|2J=J4=`BE{h(JqJX5s9KI
zVzYe?)hF2Lu?9IxkB#s*fj<DH$5!~B>LGF`sbC0&cfceMIdhiwj9b_}O)}X+!J;HH
zeCiP)Cff3UBzz@5(8#)Q&<7~_A^0B3Utpzys7>segn@<Eqw~W~gJq^wN*ks8HH5F^
zZ-l=IYywLDeegY%FSZ1w6}3@dPiG3$CCT^`zLFpRBx^!J5GeU0;d?B9)u9Uf*qH)W
zsPwy%Z9VFcqx85Q{#I}YP<lKJ-$OlS9IC|?tjZ3*7j5!EOR?o^PetUX!S@A&fRcX{
zd{5;UAF9C3ohi^L<<}9uivJDpw}H(-$$u2S$MP!<Rp6e^6tF_&J2}-(2hY<HJ#yfO
zgAqXKF%`b&dWdPZb|td0YefpuY(46cqtfFJ`1`;^K<Tj)zK43uJyeNTJ69szmLLC2
zME)T7k>E(6<j;cdsr(LJi;p`~pi#=NCwvwE&G3H)4+ACtMfe`e@1Q(<-<bkdsFa5c
znGVlJ^cV`C3q}Cp#Q0Xzcze84*&ps;yu=#Z;%+g(;nS`X4HElWWcX_cOU+l^0KXaB
z4OBdzffvpr?Fz(pVh<!Tt|e`zvP$AU@rl`@A0x(A-!X1-Xut7_1t%@yECCkE=qY@}
z`bFzJ*XVCl8rbd9vmA+HAcXnwUUvM`pNqtQ1pG1JIH2@f1TS3I>0nu1n7XXks-d^*
zZ`*@D1FWH;KH{J!MzQF3dUH&_%ftF}W|Om>*<vBWF~--{KI*zGTc6Fyi$|Uq2Yep>
zRqzH-`g{v7T!CCK`-PlmX`3%m<AAGHE~ykR2)66>s`FS*`HtAY{S+xB&PPpQB!F2W
zF;al#RJVJUNUjT+=d<h|Bd4yntyjVGk#ss0ehF9xlwND#h3k4e)EZwqq14hSDKsWu
z52dhC`5mK7+s*DTwvsaVfErF(^ZA^eg4ZJDHxj-oM<2kOJDr*rDESNEg{zhO2)^rN
z-PSbA?lR+}HX~A|UjN*&QB1ZysaxJsixyZkNtn=h&$!a9ox*sKC(F|h%kEy+w-}i7
z4PqN+vLnGXQkZJ7m##C;%vM(HkJ^5c^kW^#F)T$-a3;I0oime-pA2(}ewog>5XN-t
zg{jMt`A<B8#6#r&OYr{&EkMQdtQYKf_Luu*7RY^g?ejkz&+5|R$gon2{<Qg(cxPU=
zx8Xf&dpq%bMDt0nwwdXPwH)TkxiNXZ+!1k(_%w2*AE$gIdwjhTS*qpaNG0c3=cM$3
zUXL>~R-6>gAX4J7SXy^DL$UEgI7}5Iyb1a7Y5v?klhas}<;u<(ZJhz)i^*lpf803d
zF@c%Rd2W9u`+fV0J-_0myvtzS0E?$RBOTL?TMT!;Ink4hMRn_aEgWd4&rag6>dnvK
z_kmWR(r4I<cKUQZ&O3N$RQiZTL!uls>USGY=$!G~tUqBT$GxU@je$ja%wzOo$!f2_
ziAIJvKnF91Q`nM|$JAPq$L-~`UaWDT<psu0akk-9bCx4PS+J`cZ0o%Sy;Q!|!~Yum
zPU_nIy!A?s!jy*$oJu~OiqVW@Ch(k`02SlIgd=M?FfRhEw4(TE%~I}<$WZT1#@|@)
z1I7cDUKhg)w?wWt`mV$E?t_O;x3>ae^xa}eFO22wGB*lic?A~TVw=p%7AEtoH)bDW
zi5aYAoWg>E6muGNjo;-rig|q|m`53Xn0y@S47fPzmeYTO-u!fDLY(erQwtL_z5J<x
zG<QnS8x*-elckTp*D-$alI|L-CzvChYh0F*J@l>`Zl`ZE@lfR={w2;f19?Ejb1}Sd
z%Kk;i<Ns0RqPB8*>B_?D(yHR>(ixT2k?NvoGG71<Vi-0b+-5T(${S3~cjtIwF+=W3
z&ElkYrr}+wSPL|IyM=+T<d8EtE&ShfXYW<cWU-iYA&WWBH2OPEfClCAS*<S5j@QHJ
z9Yk+YAG`toFYpCW@k)Q$j#t-qilX9GRa&}Sl=g!4!l3pbFoMDO_Y5|OzU1zg?qHEG
zL&9Rv*b&bm2T5s0a)#G!<XFSJ>|J1Yj<q(W+BjdGr6JO_F5lL78T#;@X6ai8e-*eE
zD1C2+7q08|Wh8n{sa!2xbhSO?9iufHdvvXT4)fRZ&5(HEX0eX&NV|Th3fb~MC45!h
zWB$(EKNtv<{Q2<0t(WV_7j)R)s4ZSPuSy(1Tazbjkjn$D*yHgU^%HwMrdxEd*yz!0
zd~Ap_X#<{gOzwM)(KH3Vm|m%I-hnLm5z9w7e8j|tFPqSuY1UG1VW%HsTth@&H;=IO
zZa^;&dWn4gJN$d#BcSx&4=>y_xo_br>9?=<mvnfpK=`m^8oO~;!*&yGov^g@Jp({2
z(;dX=HEuS+&9vtM-I+qSp=<}r)km5A`O!Sm)^p}75j|_+*MrM}((`V3;m()qG-Eql
z&)sfavD~&F(Q>;!?p`tJb~)>(#iFWD4DB%{WCkUoWlS(uXgZPRh7EA;BTdYmd14)5
zjc2ovsIM`bH3>vPD;#C(tu;l;MULP>E>L<O1utBkOxKRr>qObd2rFx!PRdq%ma902
zQUcg|Bt++N9(Syzg9x`->ahVis-C(Z{&DaWP<lKMFI?CC&5rinMHDKkrebn4!oN$L
zb+wB{bizjI0IPAR8*QgY{68Xkgy2sACj+HN4ZLt4%k>r=&(BBJTZX06jNVK8Ni%w;
zMW<Rc-lDxkySfV-tJ>zo0Y;{0x-nHB;NtKgBVbPR(mmqb7E*4DSl7NrpC%Lz9%<{_
zDD@HV$LsK)h~KY9^qmSXoLU#salcp|aF|xrhtBY=PRMqhE^#x5ew=u<aood(FTu<C
zi{4|8O*zha?5LA`+8OKg-Hu70noFK>ob>^#W|q`DCK)3h^dvmwNqNv?Jm5*&=t!w|
zIIpD(?QC|XeBg5a!IAQe!@13q@~P>3!b2R!G8bgb)wes?W76Ns1=dN7v*UFGdaLsA
zF#OYCCs6tD61;F-&$|vDYTK|K5;>Y9t!f(4n@;RL#CE6V0-VdtWEcwJs>a*$(_f2x
zZ;XMT3}yf&e>S{u>U%?_Z~J;jt_U6?mq4dgO$bY8oO>c*i%3{H`8q+ypYT=u{{p`g
zybP55f4~c;+HJFw{z+KAS{hyFxRp~~^g74y^;SMhKQ#6@SiI-Zw7135=nUgH`_+t}
zXzLMtJ<`rjf}aiM0j0-$c;UKhXTy5PrO|0sE5ixF2E{2rTWKzoxxn|0l;1%3s@>WR
z|33H#DEa?_7p@z7M$rZWhU5)yn@iTO(jmEJE9d|uRTWuAS$?I}dw(U)j)}AELsd<(
z(<AiHh(2e*pAA+4rO&zWJ<zB9zU{6xI?d8(mA2W(kjf%UqZX-8Bl1-G`~ZIt7`r0+
zxZr!DPxOA}o+)!_OjsENR2A6iQ;0mJ&*kv-;5R^}&kgWB(WmXc)}Cqfag;_aQlDnz
zDSa~Dpe%#_K<P6Wz9;&$-7nfReXfa(q)^plJAJB<r}ViK{vL2YQ2IOs-xGbJ_hI%-
zo9$8B@P0{sI4>lu&jk3X;25CvITpSr`W&*~v1dx{YNHf_s;1cKbOUl#{r5NcSHUiz
z^m-Fsxc2qGXnFIjQ)lzom4#`9;ID!#M-U9Z*^f3pXf5rQzk(NtSH9qQ=1s0JDm1f#
z5ikzViA<O@OMM2v8PVrd_$8nmD1BDI3pc9Wer;Qy(zAQ6O`5gn<~X`3SMb@bnLs<=
z?5C$%Eo8$~JAEETo=Trj;Qs@@0ZO0m;f3oWecD!n;gi7@kb-LHGEJSj(u5*_BiPR+
zacC;5rrCNFycN-7Is6)M0Z@8e1TS2t>CzJ|iZ+W+oj>bVn*3yFCeU8fNt6p@w?S)}
zZtK&8Je4kAz<&#V07{>I@WQnpkBcfdr;l71wm%a5l~q6r&zR@YJ~mcs=4w7Q*bB!9
zob9S+*m7sS9g({jeg&uoO71!E!llc8qZ&63mybiGrd6$_i43q;>tnIz+XPyfQDDb7
zc#JFugsa9y--3S^d?00s@spYD<h4!icHbNJHmyuL1({l6rloIzloNa>vQB#{{0uM~
z2q)xx*X4M4J2@vX_Qqqw5j0#&9WKJCl5#c>rut647yf?mP?Vh5pA#P;XGV3UXx436
zS(YpzuR+TDk+4;H>HRM41LzNg6Y*+aPP$CL@Vcjd#H^pzzaQT#Qce+JjwL+NPhSsz
z8Mrb^&d*A}ldCyEA{?pVR-|Uy<zXjbs`UF3{%i2xC^<hX{VX{P#4x#?e4~bIAt`6<
zdy#Zo244wkK)Afa3->eXpRfU1+f1H11FrBi-n}bWz-H2#9;GVh?NX0M<f#1n5`Hf@
z2$UYi`?elEu75h#BF$QKILxYmw(>3lZG&#6hx@BVv+VRQM4r;;T=+V$9w>b-ga29S
z5-}I25~Rb{s!7UkB77zP2Y90y`=3C`kAWAihv{*M^sZYc=C@|s>2L~ilpgEhuLK)`
z(&IXK;d)#?4%t{vsZ8p)Y*^tQYwOXB9Hocv1J-+hOrZ4W120?;)1xCTx-1)wQjcZG
zQF>eh|66b)P<q@9FI<n)BWeNtAt@1J6kc{=3XZeW;Zwp_@?$^5{s+hcN`4StxK7)r
zwiRDH>DCg@T<h)NL~rX<?;0i>=_fQx`O64j$-e^rI`BK7<o_OCxE{xUdc+1-;cNEM
za2S<00i6_1%CUMW$e$zQPxwl{=OfAi$OKA$A9&$<SPr737d<RGCy&~llixTr6KEfa
z&Iwan_Migc*3Gl^s6vj?<3;#?fPVs|$8LDxx=4p`zqW0boFmL+2W!q<S(0B|%l^!g
zJgXiZA8dQuidEJ<d2?1_jMDD@wt0)9%8sQ-p{@7ek0W~5!CwjLfztao@WORke*Uku
zPUCD)odwRKoBT&I9%$>t47Z)++oj&k=%xBc*`Lrhg3&<feJZ?gzmfB!x6A!YOEF-v
zYH=PL%kr00mMkx=mR@d2b*b3PR9;+>yR5XLs<gT$Kk~1dy!oZo=alk7G7bNPJq>@8
zHHo;#*zeGm<#2|>wYrN5LSqQlZ6~pv(&xXBSq08Mh&R1Xv0`^Q9c`CiXUb2Q^4fla
zo&KBAvk*N+|KTh6>^<~TfQm;Ayl@NT{O48DUiaa~V`lNnB^9MpD_5+55%Fo#Z!=yI
z=3-B@Xr)DWME}daP^Z5_7VI&;r_pB4G?A0Z%)k&IJF-u5SGi40C))7)UA~jtBja7f
zez+^eF(vLK&q<7gaV&KhiF$%C-s)o0sYsa@bPpE(zcnzIaF?MEv2r?evYkFViNEUi
zxc`Ms50DR3`mBT(?sd7JIbH7mJ>2wBXG~=`IqoxFap+Bsdu%V;`mxrc%U+>>u*bO0
zt=*$@YQuVt{ox#KSE4b_Z3K=rg8C7jOyg`%uN<?l*E7o*)ca!yYZ!3D_jbqWN5nDT
zEat-2)7LO|2}@I%=3H~3QLLY<PjdDO52I^Mr`hSyL_7<Krzj`>Pnp*Q<AF+t-@*&`
zdYQd`rMbrT4>ui-DHW$*_N{k6ZESSw_3qbPmUomzvn@K+qNN*|nc8DK&({pwALh)B
zot5dpUO-e*T*{26he=V7XNY6y@v#BJbEISJ5wktB*i#=^mg5=vm2M2y-TedooX#L~
zpwk@gxq&&D_=_ad^*X1Wl1xkWGhCQpBt*^^oME19<T@(7=Q^U&tD(qFFYU8PxtRoi
z1}Fw9y{?28?qg{e@&Rf0?{L#=dUbJ4DJjN|`EB-&`5*Lq9gKm`v1pmtEWgLN$fe!S
zEb(m9E-s_O#pQfvx2L)0dNZw9W4<w5IGTvHW3uacoxN%lnC&HY{F>2Uy%&8xXYLmq
z0aW~^zzdfw_ha{$=hz%>{EjQH5e0&6xC>f!z0SB;7Y3R47(eOErS|8jUneKh@*<$(
z1oKMF%E%(TeTl7aJ^BREN0i@P@Xg>8p!98l7cN%X1Nn6FFDt)=j0x4AL@mywrd`cF
zKm{f=-o-8~W&kh8>V@d#FEnQwgCg%+eW|VQ*ndabm+Rqg1h)X;#P{R+cHgUqo30#T
zFg4ur)XXWbsbMV3YHX@cJmI+Tk@KnAr$(w)k*aN%`t6R=Z}b;@gMta*|A~Gl)|6JS
zEM8ICPQ5xkRcn&^)k$4Me(!*P0lW-UemBYMYP>}GhntRarYkAF7n{|m#Cf#OjdQhF
z4y7GoOctX$g=KcWrvE3>-&qD<32K4TYYn_`UG&oqSH-A&rVJ$&tYEqQ9;`oWyf0#S
za;)mx3i-`a-<{~A`jx3)GQST70;TUzc;Pzj-~Qidn^sgyuk3t!Wi)#X)B$ai=nKzK
zUEyVR`mRAArSF^YAA`?;()T~`!nIG|!&Q?Js4m|i7VxMAlvOk3%+wdgy(Bu&SeGCt
z2)9f9$9@&j{|5Nmz-FNIzYG5Vf&S_Z>r{PLTlKY~ay$KhM86;kTK$9;*8YQjK<OX%
zwXOd%vS0kt61$$QDz06Y&&n{?|I{wan_5v?EUL}y2FE|mO%A=m@k7!k4A6aP{E*I)
zxqJ>^ii<xf&XMdgW({!9aHKiYooVdCG+9(3xD))wEY~fDbEL~z>^=kgJi?rLhHI23
zffG1K8Zo*b(=YwTJEj;MWi#8H&6+9C2xsVM!#K)4c6GkT^yE1EI710KXDJ@(9<w@E
z{wFWNafFEhhLNj>$o~vY$jHcboR)6PcJ<>;&!i7&9P6IDT8}SwE_M!c=B2uib~%rA
z&sgn}{~4HYy5lrfEatj-j&o&C!^)b|9W#D_bKr%T8bESt!XRU&^Qbe$W}v+e&uIMz
z7sqvSj09wXAiE4sJ~Ph5T8Yu1>l<|AXfxkl2COx&lJ5cOtn%Sn_}_pVWZH}N<F0n&
zs%_I>3~tV^D6UyX9;A@!DcDj-;VIlXcKFSNrRJOVig3SSjVMt091Aa8`|~T>%9&rq
z(RH$EPb!+V$b+mU+80<3D-e}t$jr4SNeQP)$~}c}mD~#W8n7BDxohFOmpi+%TokW}
z$eSEe<T!cQQ?rz}lkkEBD9ZCY@Lzzhfs&W@tu3$pJayZ6PO&>@X8a~$w<{4Gi9M4q
z`H<6gVJbf084@dO?_srzQ`0y%k=1%hnDOE$NT=KHcJ|S<zi_Cah*#5UJN=80tJ2|I
z_)Ec+K<RZoyl`Eoe@#^SW5HwATD?x6w>E|j%3oPTz&?0mj9DmFevPqrVKWZ5M&>`^
zEBW8S8{aV=2$cL@@ZHNl%gzTx&lRFC64sns#CqukIat?r@UlAfSYMWNon;Xod)(vI
zz-axswjRr*9Fafg!(Rm&fYRd;d0n;d%5R%LYMn}9AB;9^)ggKFe3*ke%^2?-ZzhPN
z8!+r`aBh6!X^G=o%<&gF6V^FXF2ZzAN{eY+B>Hb-jW?pkWwxJZ>*x7z<h!XC{4fv#
zO229F!qpyc*Mq}leOO+ZUtYPYw!8u}m&HpaTPtQUKevSg2lPfG>j@Tpes8omw1FFS
zqeAy&4ajh29c`33QpG8h+jVm}me7_lYT-64<HuUV`L;ecAWsw|kzU*29{`U4rB5Tg
zaKoj2P__OfqK}yTu=Po**UQCv?eC4t$g$o=k!XvLGN*|=3SA)M|9wPWFZhw*NTB2u
z!VCAY93QDaB>qC)v~sc1Kf8$+<`qM4Vild`O?|~mhSyE)F}{O25ZE;hyV^d?%Wl?<
zd2!Q3w#>wGae?@Dd))dss9$UA)qq?Naz#2k0{;T|J5YN43tqT~r5)F2<odcuI>>y9
zEX3Nbzs^!DR?&?WI}pC-^i3^K?2quWer~zZ-{WKTvf;?|TC3HDa#+MXW46Khpq8A*
zI$N)?KSbL9<Kc@z8BlsHhZn9^uA5sgzgHr9$@GfoRnLJu8^wBiw^)Msz433BAnFhf
zwwq!MaoFqBwqIn+e^`bu(q$+7Yv2u_<i9PitM^Fx5&3O;!pG1P{?WKldtJX!bcJVx
zCpbgvY<a;SBlXBc_{m^85KgpHOWL(ltOpQ>-Q>~l5+|Wetz9Fw78Ea$W{85?J|l>s
zsGxXWxI!ss17WK1x<A7I32cdy)Bby^LphZzOVP@Q46%mI%D5sK{-=bc`kne-+Cty~
z!ijjaUtic!`1BOHIf>wt_}ogeo~@JN&m=5W-<H6afwQ8*?@2l-YZtbJ7E3~d41Y6W
zDgB>;e;)iTD*X2Il^y9Ho~B$x6a*5?SR>U;b*B=Qi|zbQ-)E<ZC|?8N$AIxbm9JCf
zbycpEujI9<sh<!v^-OB&ea22hd&+&<mCi{g<r>)!m<fM2Qywsl2hFq-Q%-U|M8!@0
zd})-up~CgHKAVxJ;@t@UB6tNTecpf<POXPi>r^Xi@=Mp0mQW6@{(V$Gxmo{*b#UVW
z<6B*unZq6hQ7w+aoJ{n&jfI!k@(1sajH4U{KO4*gO8#1S;hvHE1s;(5Pn7(qk<?}u
z-@Pwv1aHOjX$Op#T-v4Vr}(R34hW?A2L_CoQAU3@&IDL8or+D#fXkhbl<4#)a+ZbP
zfq_c&94^jjUTvN&I+jEAELUF41S5+Iy<vl`?{4%_<*)^QztHbMMBjLL;ck}W6RQ1C
z`i56PSZ3ZR?)G^5*hMiY%<Shg#z0q=5r+-6qpfjjW@h^s)-EY4Sgr7KTaO~-1o@XJ
zN2}oLz<Qw4tsY*u_Wd%Y$Kat;S1b{x=Fd4tymJL(S(rbJ)j9`^wc4xnKU3LyGF<F(
zKF%C2`k+lx?ry>j60VT@C4ACPlpmnvUIZ`PD0vP^qx9R!t*KpN^*}l0>bK@5aboYC
z_QAdR){oux>AWA|iFA40PbJFcjzrf`_mDUbO^RnGhu8IC1H+=kV~o+(?z>;>38{&R
z3BC0IXVWF>i&C8_o?h;(k$NEAnc|0Y>KLKZM>~gmLn&@fsXLPPvXqfePNLw7PtSJ@
z7LCyo<08X+Q|FxcB7LzwUa!Uq*m47-qEG4Zqa9}%6U5M<w!PlYhfj%bkl!LbTH##>
zoth7*^hkskuA6)yJ?QO-oTxg!QshE~_847qj283aM!o_xEqJZWf5HtCu8_ML{$j8J
zD7n9Z7p{A`e7}ogSaq$==lNV##T+o!8QL?LjhbytH)o0@S%}Hmd3Mh;be%1~nef&4
zr{2n#2p9&G{2Snf3zgdax(eyHD+jB^iVHTo)Ra`0SJhTpy_^PPi(Mo(MHh*$+ZKtv
ze(hC9K87THL3egqRFOEtDEG{hMdEs$E{D$@)B`>b%k#zIFH2*cgWOs9WV+wtocdx4
z#gVd5c!JLSnH?94Wk#!R{#*A9)Jya!dO8K8(kd8Rbl+3hq89~2*rgBMXs3^+xx)FA
z13wrH2P%EW!3$SE$xa`&-o0J=lvGsKltz+A?0-%wI)U%R1I7wY#l?a!1vkm%6L0D<
zX14lT)U*bv#|Gr6`uz{^FM?Nq(qp-9>rp7r=d73W7VY$yUt3&lPe?eo_%=HAdgtwi
z<vnd$-uJrYEwboC{1C<H<rM8Z^JpVIE8dlsx{40D*LRvfnXkOe#GiCmijR7iEm=WI
zSsYt@hGHmij<EM?&M}fk8)H&jeVv>==}e4`O&y#xF~DbGQXt^#P0q#TV(2;KW+sD^
zC_ORGnEW(%x+l%um!l^+bLmV+AciBV12^jK(c;ElW0Lt9C-~X^wY|i{V??puubW>Q
zv9%@}c&{_ei*&~nSCaDtW3+3c6N}1$feDknBaAX*8uuUVeOeFRtQ$w>REgG%@A2E^
z`%n6*^u-9O76amdO5Zei;o6V4MbdZrn)2FqZK$Y@MHbK3?%@E-d{GGuk>BM_Qf?99
zD!HrR{{U_SO0Lgg%UvMn<&w+oau$(m)&D0Km&<8|ZKgG^P+-wqi*9C)fvJX77R_q4
z+SGlV^Xuwwq+`6(&7q*_oO&Keb-0)U%JTK{8pmfkdwCO`ain(^c6lAnIA@llm%%lI
zj16Ei|4Q98$Q`TqO$%hQX_aj8d%Y%uR@jdAr?_4DPK<y#*NDnyq4AJzUZt}cuhuxr
zeY|gxk;Xxyu~zk~HEp)je;M&q?eRMJJHR%e(qS*WaLw|&Dp}goY?lu6MSE0OURBBq
z#vDt79rJe_R@C>|-r3RVu+7K$hW(8cSG>dRItHbWViS<pHN+^QoZl)e&$F-CYH*IB
zesPLJ;@R+w32b=L3=QYH*hJ}fj`m+;830;fuI8LycC3Vqw{_Pry_5|p>G~MjpmQBu
zQBx%M*zqnhBl&+m{KeohpyGWkyl^kc`lU*)pN+)Zs#@l)EGZqra3i&hs9FjavnK3-
zae=nk)0^?|98sSXngj9bq}<(vtG*k*gKq^)y@ur`zzgST_x;?VTuTKZw_q0CkN8P$
zWY=o<BYO<h8e8gx{2}ZLv(J*Y0=`$qA33W0p9g;txCE&9Uk)!^XYZXQx?0#~j>J9`
z$``ReR@>phNZ|mhIxUp)ng~zHYk~g(8~{pQz-7xjUw$tSm-Bud#=EAttTdeFRjaKw
z_qV$C4H3`a1KzDCL#+cRN0>(%{Y2KcNIgzL&RF6l+WlJi3&F)e>G4~5;Xao84BwIZ
zbf||~@5mmihuK3V>g>0$KEz)A3`P^&)+t>hL`^x`9LaGEqS9>IZl`}Ua@2dbA3odd
z()t6XM=88;)8x8|QPPj-Vbwppcl3MYi^nM+H}UD9H|x6%%e&L=&#$z8WZ9kiogVEj
z6if`icw?*=Z=kW*INmtQdh3cA_31C(FMOYV27aE-);&GWIns|QVB#~^tmR#M&Ik<C
z&(IgJ&Zx@4KSVkQAGG7wi2f>mZ^O3&(-Vo`boiddkN(xqjNg0zKgO@>5j%bjQh!m7
zw!{AwJONbxy(F)z?@#5c{1e}yc_YNT8{&-1P#?@H9AxOaPw&KZ(mcyBl6ZAbq72~)
z*DU3xdn5g#5d0)C4Jf&%!dv%uQh$_{uUs;n56@M##fvLMot0K~HvQKAAc^;=&he72
z4bI_IF)R?%fpEJF=IxV3&W<wede#bF+y1DX4x5pu`mv9~?*{JzrH{*J>ys?cf$qPw
zZ995gW##fhrfkrJZ<)<@$Mu}(kC=<BkC-~g?H+ALzONwA4-58A(`_;Vo)yD+FqyS{
z%ADw&(o2lr?baPLMFY3c_?-E1W2U1)cU`7Cb3M1}dT;Y&v0BG=%{y%Umr4CZK3)oc
zHMkZi{eLg7tNc@bBp=m@pu#$Oc+f1VAjj%~OwgX=V~{aLQ4<d|;#78O!6$6_pAx<r
zS2AN<S~AE0N`5Z9aQ)@J+)?rzEhS%mhg#o*Vd)sb{i8jUI8yA#Js@@s|Iv|$De+j>
za92)D8WyY*#Dq_wIo6z^_aS?OjkZ2(kf-$71iu;F4U|5QzzerijvwAUrEPvnecFGQ
zgjGx0uAeK0HxG!dt_RSGQ)&#M00XUk?W)=ezftPriH+#fAAT6f2TGr#;DuWt^%#6e
zeJ$%r`ri>HicYsa0nX9(aJs=vJ9h?{;|;ccTcK%M!IO4+Y#@BqUf&M?0C)r_`LDqX
zr^b0><@%*|`D69}E%_rwNpCUU<N#cb!<`_G!98F+VQAku^Ua}VvU3t^WYb;oUZ-mS
z22tZhZ+Q;KE#&YwLJyl8(CVJD^$YqV?dll#abOY<PK+D2U-zi=vg@C4id<|^{XhmY
zrsE8l=NNgMXNIXZg;*?|3y9x}kM?OS+@|<qt$*6qt5ND8-mAaEzXv`7D&4-6*VX%^
z{Am3|?PSfUTqnlq(io?!b9}CAYu3ykzaVvf%7R!iD7V?3G^u;WmOC~ONsklZi$Ez*
za?gSnuCsp4;GvP8O{8O&RyAMFy|3e>cI^foLV;aof76Tb3ZAv)KTP=Q{rLp`3(x|T
z{O{m}Yd>DB;w|Od{mQ}Wzu^v#+6-DS%Bo)GaRB!`x>`m*Rk74dJqqG%IU@bb;j2I`
zP<pJ9*HyYJUrFp(4=Zhy4#8ly=<bczwtB`39jwZ&Ny={|eAVB33;qM}2~hGsg%_@U
zK1A(zQmR-Vca#NtJDeEWF)J7-P&+QHV6=kgWd6rT<QBr84vK)1y98diPS=~Xmm1kv
zz-!8~i?-X|H0^m??smde@!b!Pop#L)l-wA2;kt-#cqQ_Tpg7l@os{E)N}JWe^2$7`
zyBYP*s_Nj-%9^|xta`8(Os5sDohNG6TTv5eNAu|?mz#60m96I~=%Mty75*-8A5eNe
z2rpdwdLz6a?3Zh4*<2P2qz~}&YD~3>Wu$Dix7y~SowlAoqKDEmB@rHE0pUcw)_y)g
zB^2Z7k@0}=ghGF9ouj`N+n@SLhF?Tjs^4-R{6*jrpweLjym0H~_h0*Q=&+Q?4*sNq
zV|gjpIm)y^nOH^GPqg{k3wC^V5}u0Bhwz_(&!mi=$LCxzfMrJ}naJQmGW<|dBtFN$
z&jlv{6`vE~h3i3lEFnpS3;C2?=UAhqt`YrxJ2H&hN_h>0r{c2%{#oz>Q1V`a7p{x)
zuCmOkR78a*-f?Tq|AF?qs)*-{b~>gfN92xzp9H1>C3hygaNWM&(Nfba>+JokB6%l8
z67cdA8u5|(y;;hyCwvv}ZSePi`=!jT^D!)NNZwr59)>e=nw639f3xG)LRe$bU)0+%
zDK0Gl5`l0c{Pz3tR3f&iuf-HDx95_7x!R0e@oa$%zmTvB`7Od<2EQCsMund&zZ=@O
z2Vw1%^5Y16oK|fe3P*T#GW>@Lt4fC71pg*@52*b45MH>D?9aA;uOf0}Bv{*ViCEUL
z&Oxr!ikw+$j)~+;=p{SdLaCAOq6zTx!6`t=9hYXyohHW>cFTEhv5q6MT&&*st6>?(
znr_j90bv|#y<=;lR?h-~1W#Q25Npxck#kvmb;zPIpJ$bGSa_+JkCRM>Fka<jsaS8h
zRBWs{mU$Q_OT{qR&r-3)QA@=_)>5&>QA@>!T1&+iw_7TfVvJ>}SUyX|Le^5T#ZgPe
zLe^5T#ch^~VR)?FQn8_PopZ|7QnB8~MCbTnB0;g|_N=L|F^&hvg4+xZY~$Ajm_O8O
zjH5&+T`T&ho!$+kr~1C%2LA}y0aSXw1}|Jk>xc5>@~Jk<cGf#swsSwdT%Ycsqp8;I
z2%*vIc8Ye{@`LGi_@W#SgC7TG044t<d0mxb<y-mPW)iqa_AS>tjy1;X2}X(@tKH=|
z_G-uYYa9tzJ5sK3#EO3AId=OLd_%@xhA-s53I93x3Ml!R8Mc0P^4!ZtIY01o)`?aX
z*VN>N2MYQ&n0t*)rrtmoWRod2U+*!sF(U)>v9IQKjbTpjJi{Bu(tC!{;~i(4POpn!
zoVu0R+Z~@mGFF%uvP=F?x;a|UmaF|}58t%oQ-!`W$uAL~t?)mBpMZ+btV}yTr&QVB
zdk<IJ{?Cq2^{SPH#Ea^Q6YM^=Pq5p<>A-rO`Ks-$vVI&LMN_)tMQZGg(-tq{#KJ)g
z1N3LSP0)Oc_9AUc;F8U=F!%H*#~b>JEXKtZ<4(hM&VY&DiSATK7$SKvzLRQ9H5M`L
zo?(oG_GdhuRX0c5-cSa)#UlJk{OcOWAn|SpSO0;Xo{glJYA5y!zL!hu4ODuLgBMPn
zTdc`(^`D)dA~EwOFA?=Udww?P)&`&T4$C{kqFG|M4_ozFphP7W=kYt;o_uzBiOoJI
zo8Rb0FzH<J{-0zn<_wZMb=SGZIOk$HVqWmE9iMvi4Wh3oAAg7cH)sJWKK?8_J`3bJ
zG*iwO9A12;l~$D2iY79<o+xc}==F|w4a+;jqFEcQC|&N<zC0vKrx-61rG#*l1_`^J
zXGcXzB)itM$Bx%B^j6<%e}aDyJPK62cEby&#$V1jjQwlYd%U!?R%DgE5{+GWU)ZKR
z=Y2)J^0DzQC)iN;<#Im#c*ErwnAJbd&lmUb7-zDdvw_H+(Uigy*raFl6$8pz=u=z&
z!M$Bt0l!7Ql)<k9mjR`J1H5q4WWG$3c2<9OzErS*CK3V0>K<`eqjYmDI?197HZhv<
zvGFXX5oqQD#+Sk{n3q$g7jl$qL6UXiN51hlospgsj12wPh9gH5Jj?ytj?a(iTfjd=
ze2(Zt{{&P46`$?!!rdju5o^yr%zDUrZ{#kqM&}dy6HdL+dAGyz7FqNO)AC+3EN`Ag
zH`@1QKS8_nv2k@A*3m}tN+s}0EfyOmU8Uw<bs~I<tH@PBwd3;?Gg+Ex{Gc0i97oa{
z@blB@yvT4DVr^JNexdnW-5Bba?fMmm+}~)B{mfpS%}UH%{T$C#MhaKs5LW+<oj&Q=
zk$PnT{5o(MQ0emuyl}sf>jer{{*v^OORM|VoB#D}H1&FOSQO2V;+I=|_C^*;eQbOX
zqut~X$x=WHj5Q}1$$H9g&oIMR&hHIkH=WP3jivDu5{I~lPG#MC5}3hnr}JOBd$@Oa
zpU~*xUVEnDbjH3;G9J_^FsCtA$kStWpE*>&z<kL_I6FB`G;G4v{b;Ap*q|MMQGP1n
z&jV|LN}u)ey6O)o|7X7svJYWz*f}mvv_O~Y+J_DZ3l)#GdkcL3?6vi3LT(T}g<gRi
z#&|&=p!DhsFWe0Uc7CaT@z2(4@K8~*hsY)&t?EQMaJ9kl7+*Gka~Gn<t(v5MRmfNU
zx%=QB15W~_-?Q+-CI4UP7p~&dsuqP+d=A5RKwA)2v0<N`e(`-H{gb)yXMz%-^jiuq
zTu9mp{l)2LR}I+TthX1xP8W+`H#mOKH4i|;8?D#3VZW{4cH{?<FY@;*_<f)iDE%D$
zZ2j7=Cpzr>m9J*I4EBi(o@|~Su2zc<*!mSp`9i<b;TMB4p!BPh*VX%={1w<z%@c&i
zIH_<tV**z=inPSuRD0H(#z<q3HT2jh<vc9I5pte}|2udUC^`R>*H!q+x8$^Wr&y?F
z$x1I0FBBVWNnK5Q7Q8*xrELdSfMsAjNCuxyacNJ1--9*aSTF$S;LXXj?Vuhk2h%|&
z_`blUHGw<9I&eA|4dTIPlU&;KU=uhGoDA}T7koI;r9BL;11rI7FaWe3jVy3CxD+e~
z6G1QV-wC7#xD%`ci@*`U0p1+XI0Co^oCT(X9B^P9*T93|YH$`950ZcZ-ag8u-3u-Q
z3&BX>1iQyFR{?$vYQTID0)Fu6kuL2ea1Xc?ECv%m8u(@m>zlyc;1aMHOa|HD;Aofj
z4)_bW7F2_IU^sAr_eW80fE&RoZ~_<rlEGI;xU`*M6IcyS1o^-L{xOnuC!hvQ0V6;>
z_-KSndk)+V)`KE20VILXL!=A12V4azK_M6p0^sv}@(yePmw?4!66ghf%Hvt^5V#SX
z2TlSbfD8OLmwW=7!6l#=6oMf@2hGE&8^NvMVo(CcgB0-DFusGqufbVh5=a7{4rP8A
z+yl-4hTw-VMgfiieL%}#?g76AE5US-4Gs))X|I91!Oh@&a5|U`z8gq7E~{Kon!l22
zKYwXueob{r{?Dyd@=I1M$rrESBG$pLT9daF+e#CPSJhT7E#+`h&i-67QPc8Q)l}zK
zRF)K1C^6P1m=(pfCCjWQI=R96<nCdJayTo$qH58qmF2b~hX$+e5-X?|RaMsX=*CV|
zlncZ2)dF#$=%EtB+Y|C@**75e8Fms}<VLyursMFelvCRkN%?M)Fnnjtxhu$_<y|FC
z+n~j-pLcgBng5H*Sd=A_{B!J0?RNV8pM}aQk;>}-<1nMN{yzx0O1z(f{JeLpjg_2y
z44v25x*YN{w!M*Qn$qGGJ-fBUI)b=I_p*8fBQrg^wXCvYNsn%{6z}YPA|4nNsL7Z9
zBJ8DCbP{U&TZ>mL88fP9_jYzyWp!=-d1WkeYg1?sN%|UbpCFxtQ?{a3nCa=_YLzhe
z(8YCeoK6>)%POm>Lpr%Z+6K#CQd(M7YOPY~xK2{{71yj-WTzdYbUkPV)N_`hr*3qx
zrV+aqU$eTn3iCzX1hk@fd8x=4>$V;!DVq#?+0&w`>dKO`&R!&LUCpxIMS_%fR)o1p
z#HFUIx>eoNNmRH@k?rbYacwuji}QJ+s*^+8Eo6web}pofHM`x0&`leH5Ya$&qpNjG
zH;uKpr*mDc=Dz!GK~H)FT?i2kNjFi6YHSXv3rGw$1$7?&lJYJ?Z(EDor$bnQ^`MN`
zmeUP9k4=W<E6XaoibC5PX(&1?<!x^4Bu>^nHRpEuCRq0f(p4B;R$?S8Dc8y4NT*j?
zkuPd4s{<RUzYcvRqHfOXSp}z_IM06Lqa}1)m4zRWOdF-TendUdMKM>Qt6O`nPn##Y
zNlSTecXxGKfhjG!duiL;XGNtOk-S}9m2DLsrA75rdhqImU%SOvS{O4b-}XAwq_&!`
zg>!^C!^Pd)VjVQs%{}F{mBroMQr7(~Y-+X+6X+%+YLxO7EL82J6h>lJ-u*3Qo!mlK
zWLbXk;?CMv>oU4h&4#-fhrXuKchz*(k+p7GwNfmP>q?iZ%GD!6o!qc^RT<xG7VYwm
zE_z^#&#f)3$rsgVr`;C&7K_SAcboxH_jRU?B@BJbIu%CUQBt|2l#d0Lcz2cy>Lw=I
zSi#(hFm=<?>f)+pSnljtX?53<a>gCHxo1^v+1PwRI=PR$5M7eaud)uVV=XKTqoU8Y
zw7POtRaZAvuU;XHjCOg;Dokm1+FV(pswyixeT{^%(@It}btR%J9jp!p9SPAF=_~`8
zNDnu?(M<qt+M#cgy1BYG)TS}&^5zw#D^^sVQ`*&As>0>gl8P?hXLaWiN^Va=EU8*m
zzNDgZbx-d7*<UO&>8w@ii%8{8@=57@&XStSHp$j;2~@XtQM}bHwbjKXrHhM8mUkoB
zy05!?Ixnb79K%Lb2Hk{HQ@g6uIy)SY^*P>cK;1{oI!C3uaLSjSy{dFoXKzthCyqNW
zuIQ>y(C*Hf@}<ixGqT;~J2#4utyZeD>LMI=>59%;@yIO|r6rwJkm@GskL)IG<ZUB*
zc3U@hb@7R))aq)0B79FV4No_sDx-(LI<Kczmey8PR#Yr16||cm<-Oh9wW6kW`Qqa4
za-6%0YrCs)SCC$v^?g)YtXNiB+*u<OzGrF4>dNZws(=+sOKMg#bVHNhT@>Y=-QUIm
ze%*>KD__GmRi|SIDiU3d=*Vhz1)I(~?Q*JcXhG~MwtMZnyQ74Te|7f)ONvXDbyv5n
zSX^Gq5mentq+nH-ciM{zN3kdANs2FDRMtiRM1@vSMp^B)0Vyw|q3K5bWf<xsl8efU
zYr3nQ<gGmju+yPer9U4mSYhoZq^?F<!U6F?*wwg_x^GG8;#Et#kw>qi2QN2wl~phj
zFZ(84_XbL6Yr2!Vw34FOZC;je8%3!5z!uSP6_<$fP<wDMmeji|-?rU;64|o8(@mJg
z6`dt=)ENL>42MVG)uv;2XloIDYh?7<S|{*7^1l@LUkdy$1^$-;|4V`YrNIAE;D0Ib
zf0F{bu4^k-RaCU%gk1!&uJc!4J^sUc_=AIkgW~s);1J7ixZ{UA#BXhI>tNv*q|Hwg
zelTs6<u~2ldb{}D=-%fReqHL#slqSJTAL;Og3YVN=3q_RJk0Xz-1k}cX@44Kh5JqZ
zxB23FY|wAXyV>!WBgpRuwdsy}HcL)-Om|q%H@E(1`MX=+w|wsL0^5mL2v;Pc)T)`v
zxBshczow;^#THn!q2?5MLF^jQH0vQqy|7V=L#*YLoEZ6AUJhTcd!pfqx=r;@)NPbE
zOw+X)GjvTor}a9vm#!7|Iv;AeWx6)@tjP7oUf*)%K(AJHJ+oJ)uJy^xhFUIpEor$u
z{lDq<?*;>_y&xREscZ8<_;*Ox@<v7dcIw(75WYS<Z@8|7hMx%)E=0=C2I~6c(Dj6H
zOK1~RxVm^<dlIPY*pwD_r6a$$<ZjWm{4M!V>wa{*IZD661YJ7^sOJkjr+akmOwXB6
z>wd4UZ360g5wWcR>bHh&{i5`%^Km~=*9*CJUexs>uC0x_uEk<}6{!1*kh>PB-;Jd6
zk3jtnZJAF@7HwH1<I|A(Iof=g`XkhGo?M;|c_u3TH$S^s*Z#iwO{j2%<i*;k{P=*l
ze-{=1x?WF^(~VirTW<yrq{Z?M1=5nOH;LynR%GZ}RYomTxVo)RZPm56x4sV*P7jO=
z=vqPGbg1PTuDV^<>TiDzDjZ=+SU<Iv{I7YpzRTZly<zN^`spi<$~j0$x9=~?sm#%}
zhx)(L-~RnLc`YDA*J9HBqU0TnJ1GC72ehw%x_+bM5#H4u**miB|8)0T)3SMXt+q*q
zz-p#*@>f+ej4O^&jW}z$OMXphMOl9Fsx{|ujLN?$Rn8H)BXq4{#G}x*t|95aN#tbG
zPtdAuPi$*{{X@rBl#;sP-%{@P4sVsEKN3dWmY2!#rY&zm-`n!O%>Br9E$c{fY<$)%
z=$x#1D)+)SG;jT$9BSP5A0)SI+k1$7Eq)WJ+Pvi;As203D|0jaxTay>U)SQ?v!Qd`
z^X&RD>T*$91tnx<S{1Z9twxrX$PJ;~rMbFRnOg;2o4Xd;)`hgANb$+q3}~@dCR0Ch
zPhH-PdAj!dyl<ge{y$}DiCj;Utg2-%k`<=9W0Yi6J*gkCZ&26wV+2`1=yd?URr2b(
z7NcvUfw+DY{v^q(>rH3r+JAt!-h%&M$*b!j>bMeF&sE|Jh<n41cW{(^569q7m3;X6
z)-hXoueQ#C7H&NiddAj8(6I9sdUb8Sw**?|T?=jA{F8j=#XXpNw;_J816m;JX{~_z
z;zS_+cQXDW$&1^CD<ZztGR|x8*S3p)0l!a_|2qYLQM>DPY41`dn$tdmwxsP9d`7FR
zLo5M_x|RThe5?X%6D4n5gKX#b=kk9o_<P%34-(^}fOviqzCd*R8hyI92Z;au8~=OB
ztMIi?vFQxN_2=<-Nj`j?`gNMD_Y3h)mAtxM=h3x40P*~t`1eXad_7|uvE82W0<<aP
zE$Dk0??=VIfw%u@*-q@l|EJ{D^V_MjUjrii-T3<@uddhe`xg1X2K+7Uu4|-6FPSFU
z_yQs<<?1MJFUvC5g#UiK@>iFlYYzhP%)|KaN?twRMD6jZte0Ex_ex$}uOq$wBGar9
z|AqGHm#k~g0}*}`{+p5yKTmqxBGY6OzCg784YUH^0P(+8e1YieSr|a2?Fq&Ob!})c
z4_X#1hbs3M?JwMand36TEl)Z-N!Q-8a!FmkB>hrCOwUQDHOkA$gZ@5rb13q>=5iAL
zyRLVkaqc+k#}7RpQU)R}PW!1f4jID5!^cbBzGH)VIXSi?^W9*!>%Cwzntd4j7+Q5l
z^&R4wMcSlbb9O;+K`>c6;@~J+yEzBvK_|6NvRcZ&Y8k;ZvwH`}1$%3bJZGMv`SSdE
z4y`xJnnFZIA4*#=V;D4)F&<iwQ2?EmF%PO~!OS!1WfWze4_%viIkZ0WMrcFk-B8hw
z^`mc)KV7?oKb4k)Wgk4KHE4D8thHdBR}cDv^tpnIf+0F^T68K2O)SUV+^YwTpd)Ao
zok3U79rOgfJSm>jLff?T;EL>C!7M_`4jvWE)Qmjr*lOOqSYnlx7qnv~Lp#(vR3BT@
zuC<B^=QH}9K*YTe|5VAJiN8qlQFkB8Qp05c@qBOmVUiEwPm=th4@Len!g&%c#Hr3j
z&|>Fh&?}r*K(BUUx>-xwpSE9w+=b))n<L-B6Ywh~zZPGho2Rt`UDvJw;yz65Td<ya
zRoAA2?w)U^?0+Nc!0+(?EBXESt&;CTd(3j{+8Ev<A*TTUM9CN7FO_^(&sWg{+6ct+
z*WuqO`7QVlNxrM+8@$w4Ks^5#{wtDy6~9&TT|KW=@@@g~d?EgYlHZ8GN%CDjpN>&s
z%}h6;uJiyjK0N~(OkWMHOWz9Z$`zc&R}2t$72%glekFdT<hy!aqy9Zr*1@Oa3y825
z;tO;wUDN9Lrnz5!*EHgPBl&&!t&;CbejWXXYh@qeM*N#4zXktZ$#?a<wp-V(e9PAJ
z_xPJ6e=GjIlJDyIX7WhDif5IseQ}xOHxQRAx{v>%{n_}|3~K6})`8H;tuw4zyK@af
zU+dZ|AmkU~mrK41|8mK9{xs?T`CRLA!MMV%ZtL_~-M@d?^V+}c=NtZF`<)8v?1Fq=
zd-#_<U-S!~Z~TSN2Os%m`qv%i^D6&}W*uJstNbf?{4n*G<*#V^;mKF!_pqOr<@a!(
zSMd)%ahUO!<+tt^K3~xI%j5@>4ln&x{Og|mW%7%j|7FhyxBjx{o4@>J&li1ln9s}d
zU-!?$d|sBHf?dDt`R1<=@A<Og+Tx0!wJc^_kOd(@u_8n)Bn>VuWdluV_<zc-PP=;i
zS^aOigF%K3+1K~JJbPm{#%!}UK{sdL3w<p6rR;d^K=uLnj@_53Eqoys<*du$dn0E9
z)E&wRWomsxLqd#DhsHto-0_w5ZPZZ+w}$p{$4{YFXv>J!5qx!zJU9|*N1S{F-+rx?
zt-5x0>n+euT--5nw7_u{(6i%y2fZ=wG3buCm!N--dmZ{_+*{C&-7I|;z2+KM4gJ{F
zajUuS+_-b0x24@q@Bge|Wl-0K^c&i*v*%qQH=5@}#a0{j;2iFr`_E0#y({+dZMg4E
zXveM~FpUw|#=tYs2Q&V{H{PQek3t{Z`p{Ngdt~b)(7$ed4BD}q=a|Qr@S=pG1YLU|
z?Ll-d4VI$wk`YTt%ZAnlQm&=-$IjDFtDB^0!O2+go}y{zP16dpW@v>^AEWiJomF>z
z`mw>sb{sc&`O3L_jg$^6sG=6T+y>t|yz<*D-`m5j|CRi@V>?u@<3x-4Z?n|DZujBo
z&tQP%_|&jmteo%(NIzcs41;y(#P?e*5SJ&DlVT1<%tieJKRmY7pAlQoVGw*HdE|GJ
z4}Xm0$Kp?yd?9{?<PTATvT|cT8FrMMD)?F{vkrgifKKF_>rKXE%zVCf>#{Z=WmxZF
zy)nw&dkwTXx0Mm(f;%?x{^uRcS7ZNCN;Jej8_$SR{PWP4<6nk0#qWb2h;M~zxdV89
zQ0^dTF0P{#2oRb*k6_?uOTG@jRq`#&GqlD<<{F~J!y4MII}AH*?=-Ygf3f)j{N4}S
zd=UTEzsq~tKCBfiCw{=nKm4hZ|8-^L`?1Y8O1tO9&uoCjZ0$6#2K){@2wn%@0$y!v
zaAq$4igrnGt@C+OzRCGHw8i-ywD<loj5&<mKLI*%|3qlP{>jj(`=>!??4JjXINk5?
zGaurQg$Dfb&_w?@=+XXZ&>8-j(AoZZ&;|YyXqkU4G|ENQc7c6y)N={@5}--@lA+oA
zvY|Qqa-jY8^@k4HHv}4S&*;zThW5Pv0`x`wCFs}sx6r!m%d#2U%Kja+A^T3~pR=E)
zE&4Y5Tlk0zI<R++YdCOt?=L64YG(lvW)=SVlCQ(xAo+Uy8zp};{wB#=f}8p72jY1T
ze!Ap);pa%cAAWzy55ylTdF%O~TmF8eT<(jM#X2gMOM#HT0bfAySKwbQ`HlFuNPZLk
z7Rg)kDX-IInJvUWRr06f7fZebf3@T<z~3l&@%%zYU<HKC=NN0=DaV_qaF2QyqRaoZ
z&nQ(u+%H@%f4X)ze`@5+mF{B9BtDoB)U~v{H0F`^hxUh<l{r{K{o!x*x6;P7mO_O)
zbiA{H5l-r&R56mRStFckL@}Qb7cpwd|0AQF)Lw&t2rYW-K6+e4j9EVcEQ#oz6Q%!P
zo>lYa(c}HmV=0Y1`@Vd>FV9YmdS1+tHc*~E+NNo@;@>9AR?R<{j|M`fn2QYpQBUOH
zua)&0KeYy@UH%&<9bWqvblJ}rl-Rxq^XIr+#yb}}cR01=DFIh{e9-4f2&M!@&Sf(G
zJ1%cL`B#va6?#Vxg&IOt+K7WA$;DI1%NUuLT}wN3KG7L+QX1TC`d#Ds&(G_3DXDie
zf;r!*TeAXL%nCfotiXq!*Er-dCis&(HW)`-?0JZy;1c*Ut4G*+aBu5AZC~qtSqfEX
z9r${8&d|l5gJb-F$?SyN<un~mx8Zd=Jr1ASnic3EVEbQInS^!7J8Y|Rk@YNo`Tuz7
zCrMw;!)D6goq7GWKWZ0hw`qUUc<-GtuJg5Tyx)3xC%s?$zSs7~ObW~}-cD->KI^$P
zxP$Z=yZOLR&zx9(&}{v^*4+95>GMhJo-R`9$z7~U078%b_$hDL{Am1nlCQ+ST=HA+
zpO$>fm%8>fP-)O%92moP%5iKDzJR#jhd)~KN8*o_`~-XfanB@tfv&<|=f9Zt@Dl&^
z(3|}CLI3RkEA(;y<IqO`bI=$4FG64OzYg8y-v!<6e;>NX{}uEb|98+%U95vqSZ8c3
zG!PpPO^h839U6NS^yt`W&>68}Wy<W>InWbhPlBEjdm6MTwgg%hTM1ngyB2z=>#Ox8
zeuMbawQc<IwZR|lSTH-tOfB<Nx;7<m3U6_2D2}(RcPJY=`QS9(VxyHaJT-T#8@jl)
zq{Ccp9wgi6C5KnP9IA2K|I~RerZisSy$ZU~TMzxUcQbUWcRTcc@BPq+ypKR1^F9N8
z-n$d}H}Bt}Z+PE;zT<rt`o8xg=pOHWXtcY?cd?J~eOE&_`mTlk+P4|H)wdmbzwgh`
z2Yrt~AM-s6ecty1^l!eGp-sLfXtVDl=pNtK(7nFB&^9iimF`_$D4$dvG2)sLTpihG
zBzZUTLP58jzlHzYbsHsq`y0<e|MtdyXhZ7`Qv0da=b<mQz5;!<^$qA-t?xji-A{a5
z2#EhSv+_ki@Jnf1%4PfVEBtkmzXbnE$#2EKTk<RzYO`KP$*7CHm~wSV>{ZZfV(X#T
z#cqafjr}w9!PrNjkHtO%eJ*w<^u^ehq5q8C1${5}J!o_6N6<a7UqQc)74r{movy{8
zvG}i;*&HbO!T94OKLP(}$xp(cBl$x7g_5ts-zWL#@bwr+4DVM=EHo}A9-0(07&<g2
z1RWW31ax$aSV=M=W*YREn3>RHW9C3lia8m2M$AI!qL>nBS<Gr^8&}oYoW#%k?r7KV
zi^#|(R`xom!)wd5-C{LlXD!+<>z{NzmoDP4!@Gkw&VCao#!MvjPPS5YN6ZfRH)7s^
zJ{9{ErNS;V6a5pZEl>8J41LA_3iN%eE{zSw2Gx7?ht^Huw?Owfc;lQtA2iMv4^8q7
zh7R?Gpd)=pKu7z=K*#!yf==*FfKK#Hfga<V2|d;~2YS5kc<8CVGoWYs&V-ivRzWo&
zB#2yh;=3dti=QO<6#O*FXW$E&;{LJt<0L-`{}{;^;-4b<bukx{0++;G0lg-s9(rBO
zZ=pBF+yuQjM$EVUA!ZZwwwT+Yn`5>@?}>Q?x+CT(=yNeUp)ba~3~h>Og4(INCuSe~
zMEdRmLZ6fI1q8pHxkCZLKaMXT_<QN!3kbfHx<NqjEAgu(FZ!ygk9tvHT|n2?2i8L`
z3v7U15x4?+b>M2~ZvwxA-Wb>fy)|$f^iP35LGKLQ3Edjl2E9A*2=uRk$D#H(*>i#C
z;CBXIhBgJ>guWAaAKH;C*Umz}d_A8!a26J|b#0lk40?-k3-o^De(1N3Zy9Yl$vla^
z{3+%s(8awMGkS4-@9Uwr_r4vvx%XyhZlByf)WLoJ20c4?c91opIkR&3Y8-z4@Q&qc
zj!MG5#JrSHk9D2MC}WkY3VOWv1j_yP%pIA;A?wvFU3)#N8Tw(?r_ldo{RjG8)_2e!
zv-Uz8d;b^t`+K)S?e)z~!4~8X4dv2u+!(qEYOk&g9?Yd}R&J}dmH0o(AJUA6iEX3t
zB(&N17;3MGKF=Xmz7Fqw7Gc}tHox!v1iT%?wZXN>sSn-^t;$(TY@7Oj)?dW=0^)r0
z9k(#HQ*~$6ooIUJUg#Oy7Hx~j*IXvCb-7}oepe>6kE;(f=$Ztb?3xWd$yEtG+w~6g
zJy$EV(7l$m0}Y-B=zTrpc^vw>=L6_R9<e5&aQ~BxVZ65g=%3(!+6cYwr{|$9Km7!)
zI#^5m&pCL&N(KA-(q5CXgYOhHOBQqH>MK)xtIQA1hyE(~E9jNME1`*f6Z@*K&rH5#
zcu(b*OaXjWD2vn%;n0z<8d`4oRdWh5qrX#CE_CiwEcrkXIMivK{9oPK@l)!m?RPHO
zzS5cOwxM+Vt4H#6!{IPZr_<%a9=^xx_4#6AVq^XOKp-wIK0YBK5toEZ#--p=acQ`8
zTm~*vx?a*{N!MGtKJ8p~JJ(GD455cGO1nTCAGafLbllCUi`+AU7Y4^_*95)&er3ck
z@}I4h4_Y<I(4HIguR%H5XM?_iUq9rAA%^zmkhh^f4e6IR&>WCAM67xWC4>wuCDaSr
z$Lc9h{3-q5TiO`<%Z4`d;AsaFwKEQ$3GZz^x^<MckY2O;a_dY{53A5vXr&c!PE!$Q
zDb;E9jBsq%8nq^^S!-c<AgKR;?0pA(R7KbKY{{l4ODL(ZyM&s?CUg?W(gZ0IM0yJ-
z!XqM~38=u*Ls1YbO%_WkDqTb%0jVkwq==OT0Z}m^paOy9`=2{AWOK<%e9-TGzV~}(
zf9L$qId^W^yLa!DGjqnKN!8dj4o$wsiE6n`YuDy$na-|bdb^%^*gY5)pTn}1-gY16
zXZN%F<B*kERTg3owTH2A9KJRxR`u*rI89?LH)UfT?VWJCo-Eb=gmOxE7sm$SnzSs7
zy^j-YWLub??b7bSo8@!uDe!a3XzO3Jm$X`T8O;R^o1mMe3uLo(+fB_P@=QBT==C)n
z2LIM{3j7z-CGgv(VsJ5TFS8onDdtQI_`J;d;Qe#g7xhlrpu7WGmDozO?E8}MOI+SK
zWv-Qv7c9^o!MSY)8{RE9mDwc^1U!HegO?;eAwKAxX&cfOJToj4Z{#Ks)Q|pb#IxYM
zzaie*82|H?);GX!S&PA|I;uMGF3#}FKusk3FzV^&v(JO4<)r1{`{aBJel_PBcv?xC
z+v}^x`m=`YS=J&jFCZy!Ii9~Ta}BeewKq?}Q~12u3s0d>WPLn^BkGRFleeetc|3&|
z>J~ztS^qUWe<$mI1%9i3O+1CQ;_BfkY!l~Y-HUb4jd%*HSi``pTa$0sJQ!TuxVQ#u
zTHF@TUx(tpcozE?4}|Phl33D^^)DG*qDMP!XqjuRc?><bAiBT3fW3u0AGkosJAipY
zz5=`|<T}UEvINn-{eb<2`~q;1kaqz;7V_`FKZG2GzJO>D?K=oKSjbC&FA14`X!*NK
z_vT|{M7kjUR>rzqcg*2AZEXS-gZ<Ul`G(WKc__js%cu(;3w`@OqPT1>Jl#?0BQd^n
z>;l;xV;>43$BgY6<5lXYx9@#>>hpAxoujYJi3H9cIH~=kILTv~8#X)9?Q&tBK62lD
zKUNog`>og_%^NyzuO?o-ysmobeX8J*+iq-J$%)tB+@N_uF9f|2q_14Ra(v}RmHSm0
zP{kXw1hOJV*BbmpzmY>n_B^)o*t^HJ9@}<o_c6oqs>iDzZ*e^Nc>Cksk2}8dbk=m%
zcIpewg^`8z3L6$SD{N8Nv9MENm%^079)*1h`xOo-98{QE_-NtC!f}O@3a1oKE1X~W
zc41Co{^bHp>M-3%zJZH(o7S@pxW^x|ZRlaz&UQe)=6wS-m$6Dq=d$k=)FCJNO-22@
zkN+Ul#?$;Kfky>4gb(#!m7haxl8++)Dm2afs$sl&vKf7|=6T>LmcbVMr!A?qzR(V-
zwH!5ypK6tWKVA2wx_Ae~EQx<b|5E%b@%Z;A)JI#mV?sCZ?g@jz?FsY1*CphETeBKx
z$*17%uVG;gaLq07O2hMqw-wsd_~5^dUM<u)StfWkKGgfM2K+sIP*Y;-z&GO~`$O_r
z9^^0Z!83{v^-$L}<Lu^E;H{M!L{IY|$crt5@hw>G3HTN-*DZ;L95)TM28~sRw}zM1
z49@Egt!^iyzS6$<0hjvPUEctAP$%l-9zZ`K2Lg>kt_-Xv<S3w3$O*uPLT(IfF61O&
zJ0W)fb`)}FU{@ih0Ey_%y0#0bum4eDe;oLvkkf$Ug?!g{V3*-zrc}$O0PD-qwuoc;
z#~h!yuAqHZTx*6@5cH^mv%Yvu!C?mv5}F4)v~7U+hc+dA^X0HnK-;+$);EERYwX^3
z0@$d|ZzKKMGP|?s<d0joWsZ}xdpCNzE!+Rl@KHN++p?A~rk?F{x~*;Drb*S`ui7r<
z(wP%y!#cNHa=feI@MU{D99K!L;gzGAF3*6w)}`~=30O|D-@&gls#o(GHLG5`I@P5I
zfDf%c418quiQto~?*L~tN@|o>ua2@r<G+w#NdSMy@(_5cGL|AWW*X|)H8ba;+*^?O
z9{AeK55WJ(ECILX_Crm3K<;By-!3wsPHZV@fwy<-l7400;rJr<ovL{@;_Eqfmv7&{
zuYCK>Ps+91RvaqVp7QaLa_zOQ9V^d{m-0!qJ*Z<4`Zj~Qf~N%a0`C*l2fSa<K=9Nc
z@^{S-B2U-iAewu!K4=s8mY^Nr`9b;MyMp$B?+-cwelp02XEdmCRq&9?{lEt*?<jla
zrI78hug0QAADaQ575g6e+StwDTVi*B=f~~^-yeGjydd@j_{rGsz%{uB+<))f0Psq=
z)xgcUb-?T8#(@{(m!LUv_=O;AA#>kdG3tFKAa2(~)(hDKvWJkden^Qy$exfrh3o~{
zOUT}ky@l)p*+<B}kg4a4&g%!+Pssj|sV9x>@QZ`E90-}udnm@7hY~UGAx$?9ZNmw=
ziQv!Zrhre=O#`2WdK^5Dx;fzKy7}M>bqm2?(5(i4OLrRlvJUI?u{zbG@Z=AyJ_P)6
zrHz@Vv@V&cstLb>sXDmX)E>N}sVjJjsW*6EQ(y4@rvBgqO#{IPo2G!<O&h^Cn|6cm
zH5~;%Vfq^UTczfB#dHnw?@Il#j-?L%N5gW5;a6~<T<73CZY&*t?>aYz=6NN9=r}az
z=1U>F&TmSoQaTR10J5AH<2nb)bv_NvFK7;;V>(gq{1HSljn(K2B02Sm((&M~zS%?Q
z0WJY4`F})y5Xt2wKE65C@GsPSFB@)v=X)OT#4q7J8m0Jo?@Qp1`;7LX9_mZrkNb}H
zh3tC?oO=#<&+Oy=qy1r5JQgVdeNlJjJul|K`Y7pb#s_il78{p>^SNVu6#N6qtd)Y$
zFEOIY?lM~?CA@Dq{$1f8g4>k2kSP)Lt<4$rGjL=+3pU$38?rK!@^bbK$b3E>pB2eR
zX_xnn|4!RQQEvU6$NYPbwN~lP*{if~cnNe-TZq=yc=YKQFfYYs_<@}>oX78e&GR?>
z?l(Qdyv(eYS3NI18{_>zz;XTFfLq2U+Ao6JhCGSZ&!mVWn#mDU@LS0Kpykyg*$UAg
zG|e0!dV+ZG&*<0&artN=#am-og3>}tw63%cWp7w-SqEWMA8#jJfBSp=jkj;VO|7MA
z8RJBsQE;XSWmsBfdS-~|IXaB?Q!v_3-{y=GEhpZWlveUaNgP|{(yLo~4^3uE&B$7{
zYS*q)r*7T4_3G8D9~Bi%DMm>&Xedre4H`7CTH_P$q=t7=qehL9now$5nws57&6U(b
zl@e7ciBikb)ap)3E;rfAORY;&n|maA3p5(IkKsH9QBR9RlBwTCtxG#?qh6VNZCB@)
z`_aDCr*psi-|P75^U3qlxv58qT7c;4VCd$MogB;u9wR^Ik6!3NbaYf=LFnwLg6@uL
zEEsFBhQikz&LUWKRs$m{%*?`SvPf1-=>n;XHSg-PC>G6PFfJtyZ3iohX9;MbH$ulq
z6V?=+BhAs8NMuRyIJIKQ%*KYWq3lui7#oJ!(8JjXMm^3W*^_J(dy0)l=gAm0mW^ZM
z*#!19n~3pUlTnxK&jz61X%J=$rn1(o4QtEVvG$l#-2rRvKFB(;C`%W3u^wXG&<WF>
zJ<O(Q9zkbJFV>s&VSP~}eU?3kKC7wdWiP*HuGG4C#*7*1APKYXB-qoj#o;z7yQJs4
zO*n3P>51G(Mmh`5lb-IJk<Lh*H7h+I=bq)9flG0B`gCzs?oNK^vM&D*r(f?oY5z1;
z*14oeovx8yuW#pa&S*S|m6T@@J@R-Wv}nby!++rmv{B9Mcb&mt)Os4c@cwUSei(1>
zXUxx;QDZhQ1P`&;EcIAxOFPt)I$IW7+OroeFGF5tSq|>7WLR|UJ<B1BnH{!#4*8hn
z8sy(BB{en79BGNf86%gYXKF>{2FTw;o(BJ*_RiWq?0W5z+Nev_$*<d8v$O8*y6}tF
zJqLcdZV5Q6KchZ;7WKaX|E7KscyaxbD70sy+eO0*7TpEBe$mk4=DNp<A4l8Rw<MyZ
z602TPqXey;l0m3JpDFnfb>W{%F2Yi=wD|T56OL}pNDird;O6g-ZcaWs`KyI}7Um}}
zJW<p<EPqe(>lZi14m$ivvfl{pht;+nPHy2Dkn7p*^W^#A2Rlz%b}acjzm*3qXHF#h
z1e@k<4gWIPF{9ZZKX>>#+4xg}v&ZmnlM4)=j+p(-spO0nCz!`hXL3NnD>dTtPA7l<
zOmYX^mNUu2EsmQTa=%Yrpd9aPa-)^6*O@WvT=Hk>9bRBhoKJql^Pv-_&OaoNOWSeW
zyWWN5gIZSYJXRdsXiT~N<?$brk5#e%=9T$V@>dBx7ri|G=j5J_({HY5busx>uR5cW
zJ$^}k^0(yNrTc$L9{0r14SUlIlY1HtFL1WMB<e4+{eAbn63s0IreQM)v{MdJl+aDU
zrAVQ`o=8=J4=$<oV362OJ!;Kf_`Vs9#QhA(4;Z)g!kZMsfsR9cb0_DmJW1VWwXh>0
zy$L7=1f7poa-54q7_o0m1Yy1RS8t=SOphZGhRhifLKr-7{1NJ~Yg29gVnVte!k@cu
zsX=&g_d^$H#MFoetG5&4GM5lO(5LWUgzb<BjcvRvgmiu#&|R`H3rd(ce9#8K2R&9E
z^Wa4?8BF+39WxvQXP#P5jP3Be0sffxFmJS1jh#^w9$I-QT9v~qj{twF+EdlwX%23J
zI=?PNhuXe(h&On<(DtYsXNBdW*STMKf7FKug%1W#j7UNqY^oCZD9PLs|JDxX2f?W>
z121)461di?wW1}UL`@3F2+TmwYsOXZKa@C2Pb<-q4rLui?--A(vp@SlHd<3kJc`RX
zzvgJz&$&P6YS_cY5943ftGG9~rUV}rP!a%cDlvf%DH-x7|FT|aGxP@0|F8qTb4L)#
zJAgZd+#2nrwxZ3n2e?<r6vsfuGWZU%jAhUaE%oLgI!+=mNys#ARgPWlj5bym5arob
z6@ADck`DmC5OQnW@iri`C*i)g0+HMrceV|P<fon}ooD+SWFoRR9f=VEAd=ewiAbig
zzjFL<`d4WCg2?VJy~`Hpp4YvpvwEa@q<bv(_|}l@wFwaiW_f3Ouk-%STklifC*G%#
zPg9?kJ_CJb`Mlt>#3$QlozF&}y*{7#=zZ(^#``w%9ppR9_eJ03zAJqX`0D-q{VMs@
z_iOL>pkHslS$@y^z37+ix6yBp-vPf<ewY39{{H@z{M-9K=s(MUz5h1<<Njax&kUFs
z@OpqF;O&5nfHeVI1NH>$3+Nd5df@iJgMoXE4+ixP>Wg0JbwPPSJA=Lms#Mut%|Ccl
z@R(pz=-{wFBKny6nFg2!nKqgBn7%RnW?Ez}i98V9AZBn(o!HFS_hUbZ&5PX^dpP!s
z*i*5~;%wGM@uq~5g!eNKWtU{v&25m|w5VlKa#5S2_C-C4hZj#M{-LDwZrLq-+^S>H
zzc+rh^hp1INa|-zdylXEXYaOq?5b?0cjW(MqIdfJq|T^|_dxx7B<j@TP><fkR_OMy
zbL<p*qsBQFZLw;sns|JsX?n2TnmzdJ#b>u>pJqQk2k_aa`2=(1KE>RG&mjG(xq{DC
ze16rm*Dcj8(XH3LqT8f<UAG0=hq`6DtvZT3=g{S&Cv2zgE!{3%hHkGeTXz6C3y||S
z<UE3$J4{=3myvT5%h#Pi&R>!9V|?C1?&HW^$5Mc!AJJWdmVq1&<X(nct6_N^M|njT
zq)*US(Kpi9(6`cC^sV(Z^=<S~`cAOgBO2+aN3_z<h-j^!8PP^RE25KrPQ+0Cqxj5?
zutx-8YZYv*fvpy7osCaT<cPx7q5AZQP8q2+hTyXtpVS&})HsF6T<vj1*}5o8XWX?t
ztW!p3e9|L4HSjTj=((H#oFwG=zy(4+jo$Gh5aluJO5?Eg!B~#LAhJ&eP7|_gTprgr
z6xC3&%Gfv*>tQ>H_RR;D7x%%2a!HP<ngV$$i1M!l%GhrdV~F~_$nF{s$u)M8Yb*oT
zxCp7}1)B<@eJOUwFj3yQ#%gPUGAB`#J3pbkm$7g9q5P3^vRvm{q#lKT07S>6_(q38
zBx70(^8+a|=_0v~={$$;A!8?fh-=v@uBRc&RvEKu9AqLoPCk%`<WGQ~3Ar)K*(RdQ
z{SheRIg#Ipi1L%4NcxK0`GMM?d?up&4*-cs-Ua+v$ayHM^F?``jIx@D@@xjmI7Aea
zMaE@G#(g8AJeQw9uNH`8*LWSSV_QcZDIJ$qk#VjCxZg6SRJ$Kb=c;ssEaS}Jba#?#
zjH3cP+eCCd6q}2PWY;)OuJxtM_`QAuQJxmQ_+B8AUE^p_ol3@sx!*dKyLwbt@msjY
z51~5M9`U<Wv`*Dl{4QgFMD$%;=Mnx{U8}jMU%9Jm%|$(HemQk5UO$gPe~qlAQ}2wd
zt54NU#qYtRMe%z3#~vS}_U>o!L%luR5Ds3pChvnfyq~8Z_;sZ|&m%PQIFr0?-%p8|
z=oRRNesBN4AaGvWAEMOrM=ACEpR4_X=a<*^j|HE=^ZQlsSK!(Z54;1s+|>LBikd$?
z-+x~7Zynbf^?!|0|1VbR|Nf%>PZ3t{uKDkCsrjE$VnDjq|5KFu|06E-f4>sHJFS4Q
zl5ka9;IWd&?z9NFf8p*?0)Ost;A05x_B-%V1?QDf1#;d3jV<6l2tLB#ab<)-d7cOw
zbKvTU;NuVY40YFtc4d7N6yvQTzKJyRc#O-LP-X-JpY=Y^0#9T)BN#lbK04Q#;TX{n
zuerx)2JQjjGv@iohWqn|{MGqsVaHIOgXq8e5bzNp)7YQkLY@I!F67O?4~6^@a65?V
zq%<bzV`1L|JS^m&fV$)S_%(n{h5RsZq>$$TR|$D5@Tiarfu1M$zBPe~Lhc0|E#&#Y
zcZ9qP_?3{q0iG7}Ent-|_;IQM!-d=g_>hoOfIWqr222<7eBdG>=KyyJc{lKYkUs^|
zJip$R7>fkD&iBKuDJPL1_`2c&zO49uoh5p2ObA4eHcH15z0X0&9*RZpi;gvnwZk)u
zJk80jY}NZsfZgC34U67?B7Oo7C8yp$60+heF7Z(E8@z|pUP^vXCBKIc&CN0RyhL{2
zdEkmax!9oO_cUNI6EpaJ1n%WQeL9|AwZRoX^DR#$kC&3iQ_174<ndDSDE{Z`Ui>&d
z@w68|f=_)qjyKIlQ~c7Gy}ZLAdntK*c^?1Ol*fNL*_E7%*V^gjHyRdiCBH8}Z@^Ai
z{B+dT@lx{pDrZ+b+xfm;)nWJaZ%TPQsBg(j$?vb^_YCMtc2Bwz#rtiC;F|P*aegSC
z?@;lqHv)DQ@(AE`A+G?w0iyrOD&RXHy7mlUwvcmxYe4u>*?YiELM{OQC}chU4<6#b
z;R*B+vOlnjkgEYBgxn0+T*!&QRzkJ`+X?vrU?&i@`#J+tg#Ah2Y#}><9}4*x@E0L_
z;eTZj|FI-sPa&rP=LtCrm@nirz?(vjz<;KZ`2X|*J|*PEz$_tu0%Z6<HNpQ%19Y8-
zi_0xHxz^EHA?`DX?x_dRBxDP)rjTm^i6~E9AQ8#+feAux1Z*ng=0GCKlL#atxebtr
z<PJb0k{<*Tk=z+bL~>VPHz9WiJ}l%%fJBt1H;{<rzCa?9`vZwc9tb2Nc`%TO<RQSJ
zLVgTLME2ppCxrYYaIBEW11Ac3GVnPePX!XuzINa|Auj+f7xHT0TS9&Zm@VX7;73BP
z(A-U&V~{dtuR!-X>T$=>5~filzk**w3s}RdnX8%cyO<k++srobA<8V>Ddwq=pEth%
zUSR$P{IvNr_&M`=@Sn|>z_k`F%56`JC%BKLGI&)>Rq#+tb?{o2THy68^}%B-vEU6X
z@!$<D&A^i^$>8mkxgW1smO@@(Sp~k@@+SD(mUqB0WEni$@-FyV%R2DQmJh(USq_31
zSdM@nwHyUMZuuJgTg$iLXD#Qzy&`=h5zi%Z6Zi*_AAlD`7J#3LJOl2iy&8qUd$l)%
zZ>yaTzPI*1@K0)g3VyiuQSdXh&w!t;eHQ$O+84n+>KN+aF4eJtx2e+xJhjfF;G^n1
z1-_^5-nyt~VRX9&<BDIekI_vS-Hx%&^>2d@DIS8pVLr2AMDYm7NhL|B1GXw@b*CnX
zAFI5i!JP)t^FnPUY9CQKKyj6+eRKgYL24f*gUqnI&V8cz>(oXX13S&0{9Uw_Xg1!x
z+Dadx-Ly@#e_h*6HneeNU-Wp$6F_ur)GvKN$kZqOHHiEf-vV9xrCW-2G4(@JAM~5p
znfjr-f#^8Yh8hT>cl%!8&Z_A9fK2Tv*M8}?)p-6?po~+m?xU9RTPQ|mMcPx;XWa(p
zqJHZ{m-ZC(SNHD@9}C(~GS=dtAMtJg(KY{R!fyvBvyx8({O@o1|JHBm*o7Y+N!O0N
zXQjAS*cE3S>=Nzgdn@_&C>;L_fwoorILv5MEaux?_?EkLz8*$uaap`PxG&G2$}!!q
zzoI(?+Iw(aB3r=EXHFOA#druxPrT1{>k^Lg`IYEc%k3>h$F;=to!nkiISOMEh5DZh
zc!z0;aD_8~Ye8|4*8$gq=zD(v+#=){ysu_}dcnQ{xCumg@_@3hF9z?fIPo4!05%jd
z_4_$N)bcnDJR|H{^!3Rx=rmU}S@Z$62HtBNIgK4BFDSJeXxw;Xyc0i%+yvMZMAv2m
zwia@G;9Af~*w+Eq3;Tz_k3e)EwgGnt`%WOuM=gYXEpQ!(j!Ci4KN9i|pcU`gv9QMj
z6U4hW5tt<8R=_o&r;z78;QPW({gCEh)RADf0PBFrC(!`!<W?Z^eN(LBbs+L*Zv=K9
zjhR9ZqfZzp;|bF|*~dY2ZLWQi`1Y{%XQ|-Nig^ehLjLHk`34_~8C5@`C;g%_mukFj
zJW5mE$2D6w8?tLp7md#<?dhVZ>b$4Rrp$uk5zu+;bKb9&9FQD<x=7$j^r93Qi|{<T
z_F`!jpS6e5e|0qCD8A+Ch|}OdMqC6hjJOK^Tg30+%<OAM*{RgS9yg~!9<S8K>`HCS
zp+pH`mf9B7twrsM*Q>h1(oM_>Spa#lr8p8tt5pZHDQvYmfv48uqesR?qmL{474X-i
zKLp<%y&wFO=p*14qc4H8xOQ=<JMh&?ta>Zvds+?Pa`r`2$Vt{@a6Ze7&*Ch?s70JN
zepNjFEAiiho0Zun(-ICRVBC4bl7_H%E$NEmEA!FPmHBAatmawxKV`>dqwb~51M8pL
zKNnAjGP}cA9E#eKRrIjYXqFMhBf(3GOTaZHX4Ib&F^dh)fD+S)&lTe{*qut`lnW(=
z*m|SncDXezSO1Gm^Vj?@t?|T^7jMpWO!WUYAB~K!UXk(Lu6~^R9qTQ9Ks44{`hd#B
z<-_wWWBj=r_wCM4<T@VQ)o0`y58s{tNavmC-Hf&JwxRz0pm!JWhrGLi&rss3?C>Vv
znv9w98RRd#bv`kOk3hb)nLayw5?P*4KI8*FpZaLoXFgirCQOGo4vEa>+rih9b@c7*
zt7Bad)4><<2=aVUBQ6t_;4@ed<H0YAX_ZJft(Ay2GnA+zJN)tyPI0FaJ!GGV9`Y%A
zgLxzftrEGemA?(+(q){wE|7cs&+w0CGZ7o23oGzH0t=6}bH)EE<W_;nc)v{xj5e-e
zF~)eK2Ww_bH0oHAv6nH7^)?PQ`m#rjj~UV1X&ePU(>M!!u5lswBI7b_U2a?fd2{fN
zU@w*zya(mMzTo}fk)d_alU!e{+z=1BVQ4dOn!${|kg(oiS~eu?QSisYMumB^r^3d<
zt`Bb<9?ufPTZU^{tMJws`O`MM9r%p!)!`<V5uOP-C;W%-mh7kSi;xS$uY~K_)$m#o
z@vL@4G~Tz3A{v9Aj<^z0iCv9|vnEz<V2#YWHnCP#-7FomXHCc3X=B#M;14TnQq9cX
zm>thHWpB;)U>{{~&(^XX+4<RM-{x3zaLqZ5z`N!=n-j;T<oulT6f4ZR1j}zZ-{%&x
zv$^MUwd{x7AHjdhy$Jp^-XU_`EDfFmcd;-6u?_D{47}p?8IqepZVw`v>NZ3qQyoXv
zXILfV2a&xlFhR(6Ak}loPW2qB-;hjon?|DE(iBKUc3P)~h~!hi3qoe7lepGx+|_5g
zARq1PIv0-WHF7Q-)oWxOrY&Tu$54K%%TOJKWU8mQuFXRA60&~-l<TxmJ%#EbWVZo{
zNX`Xr5;Cn*5d|VU)k9okeo~!;?C#c5u#QB25apqIimac!u?>BaAhI(j%1aQ*Uce9`
zS0tukhab_`1)_Z`5*t4Qbsmf|#f(cWo1uT+!&mcyM}Wc30uA384znK(w+&TTvEg^m
z>+Gg?n(xz^tG?Iq#<=M_&2KjA=0Dj#ifICM_(xX`tQv?RlYzmI!vam<jRKp&vLkR0
z<b5I<@L|ZjhVzE9j@Dvj-j^-(yU;h-DP^6bA>mKpUpAhvvuDwu9-^}tz`ZQq;8iTu
zELs+9sbTSCCQBqNwNZ!BVx^fD7C)9~>0}9HT`asNGvAWP7Fb@f_^?;q_7G9u(EDZj
zgO1~9CoETCXOW($|M*3kz-va<1CNe;7JN$NGVqO&UxS~CRM(MKD6u)1(l@k4=^NTr
z`w#T~Fr}9#t<G@t@4Q?$4_vIm7~LQmPiyo8;9aBdU9&nD^Alzy-W`>X*R}N4AZq}t
zj5)6UtcjIsS*?^>*5ddV;}K8ArDnyWTty{xNI)NRLTZAM4M~^=d49rL@O%*iy0pf{
zSEj3{to+y{t0~@Q&9f%vw9-z>nT)s7?b~Nde$ZSf`32sS!jfB<({@|bm-zfmIa~8P
zdM-6_8ZArEGy!j}=>XnIGYNdMW(xRp%?u4@w`t};o~xM$K3_xQSYFV)2>z1hW$;%u
zuY<49tOQ?$s0-8!l!2U?nr!ejn)krp*Q^6yui1dDn=~Il-lEy2(JNz&@H}E{5o)X$
zRfG|cny<0-J53=tjV?mprsj9Ze`u~lzNtyjYFP_yB5M6DwXMKgYum!oPWu4lj@pMH
zx7VfVqS;v8(>gt7=grZ1-kFj2f=<g8>0Sh1BIf1g>QGD7oz!`=uXKg5U(@{oKgbQ;
zP1tYi8o=9;s<-R$t@ZifJM{;_3-oawTE<tpk@0#D8V!uEmB(tlTtkb|RK?(4ra+UN
z(^t>b0CF=^GB}^v*Vi=Iq-7&aqhU$EE7tfH(>B=mBjPwpY-LX01=B^y*Olnwbu3X9
zJw_fS;GZ|s!eTI<M_GX~HD+jxmOUEt7@o@EF{2<q6_W;eY|Mlh9h(|shdd+Z4D3J0
z`~rR@#+LEW<Te>kBId6>V;OkO%(zTE51CJaPtKeIJ~eX=_=3#m!53#P0e>|!2Rv8I
zz}=XM@;}p3GO~9~Wxg$5b#4=%IlKwu&7zo7%oZ-eQ>Z~iA}vNvH3e^>=?LCgGZFk5
z%~bGdh~|O1hh{e9bj?CMH%m0HXmo6;W*O{nXjVghOY;u4W@+Blc(ApajmWcE^C9fp
zHF>bpI5yl(j9){%B8*%^EOgB`uz#z$1WqH^P^N2cV6P&L3C~cZwjp?uHd(7<Hf<Zo
z9kkuRQ?!rZIqRkE4c=GVAC>{yRIQ#3(GG+BIASSj*}t?;V(Vz_7|3I_6L5qn+L_>U
zwF_Zif=Elg><w*uT_ziY*`!)FQTHsK)aR7hq-%8V<H=j6I|N>U(QbG@>%IX066-7?
zW{47*={H>wo>8lQFrLmK`ssKg7wGfAcj*s-A4cqH)T}(_phuan+sNZkPp&?tI_A{Y
zcm>bp@*1ma7}#5weU1JDlP8`kqcZ!{Y^n>{YHA8@Q|6#{$Lv!rOEnFLB~6)ey4JJ~
z@(xphDTp00IZc7=wCS8lk9pd&EKS4;s6%3g#pv1NF;C(N8yE95p1kQX-$T9_QwV+)
zlZoKF6tS#hV-2iz#wa{_(=(QXM`kv_v(+$jH25=_&w)?Fd~YpVnE7I+2YV^=wM;!*
znwbsDCd~cTvL3l<xz*ViWo^oGW_qih#PZ&M|5I<igLpa*mwDS=gXQ-Mzvt3)WARKp
zjrqskn0cHId7hYg?Cw4HIi8!Nx?^~rPX3R+?Y5Xc!ZWnr^eK4RcUuuGT8pQ}gZWzg
zEqE?1LEu#_p?KSc2~Sj%MT<9IEbLZGL-1C@`!v(i3Kd>jhxb4CEofnpc-z%xb-|<1
zbE(Cgx)$gSOvGFYJ^H=|U?v_#;V>Z92CeLuhyJWQ?Oa_ykE5FY%BpJfJn}u7vX4FX
zdg$0yCBnJ4!AI%Y@&^w`G%+1|ww^Fxq_1HVEXNS*2&2K2bx{8(GluIiZ-Zu-cbc~^
zyh_*n^}22W{Q`Vh{{VepHuF$Ma#abO9XN&+xU3q{$=D68ks@Pi<zd=CAK`UU8R5m0
z9x_iQq7a|k!Pj7Rgk_+$m!+)I*DpL3bxgiib7Dm4Xs>)_HQ%EV)y!>m!Dh4Bn_0{}
z#z-?WdWp=fz+0Q!f_E@?2k&9-Y1Xn{O4N}XF}Ls>6e}yzreW&hVpMYsaURSw&I>(Z
zzHtGF#vB+|4RT0aD0p~W4OmQZQE|R3TA5Q~jcX2jQd}~4>$tXvBZNLQ>voM+iCfYV
zF}Qay*Rf{fGNxwuvMb75lkqNdO|EC%MD6TWR$O)h=A8`Awz8ednz(#5T)rCWcV)()
z8H;N_T&cJk`olttt;NA2BFclsU0`t?n>JYSLXIeYqFBq&hgR|`BGBqe&>yQrp!LC=
z6)g)a2}9I_aLioMGc$aY5tzU77-smCMhq|ef|SoE+7TE-*Z^FPALRYA6hCw@dS)Xq
z-*Pppg(o!^&n<sesgG8V=XEaLNBzXJIv=Ib4m`2i|7%Zdi@-XFUe*#Vo7sT{ft}fr
zKYe;xl~L73X`iaLyjm<<QSIky-Ppyu#wyAunWAF-yU(!E+)`IbJiYY9wii$AAjq!X
zdG6`vE3Aw_oV9y-qRV^EX-1S)>G72@b}FIeQALTrX0^6NTf~8<xBox%^tQU)qkHmg
zWAPDIsZ3ul_n40;_FzvaJ-!<8toq=I^(zSkmm@39kP{IP4xW{g{&->sA`%zsAWDC5
zQw{nsKxntHX24`2PX^8t@<O0o19CCs<-$%alLC+x`yK(_684E+=qCozG54cihSs^9
zh)H`%=od%^k)75AptTNqliRESbwv=_aUfO)L~?!LV?urc_@t0$0%r+%AuwCW?*T6e
znSGA83`jW_kR2tT2O4L<ULfUMC(%#-C6}ARcijR+_EEs`LVg-JQ^>P{bA-$;qrD8G
z{8r#gLUsV(6Y@G>o{)C}4-5GS@HZhFe?{LuNI4F0q>yQSzcoTW57b`ad5pkBA=`i*
zg`5KHE@XBU?K+V19k0P3_B)rIz>7k@4E$ZlXbQ4%Aj)qC9uqRVjyF4q>_%V*A*TTQ
z3ON-xSICQj?+V#?1CcmEw67UhSIAaiLlBKeYXod1>^5L$A*TQb3E2*OQONl~BISEw
ze@gD#Kh*MRrnGz>{L_}t^O_}S;k=?*inhu!4L#ds+dnxtPA*zO+A^)6t(xtqTkb$x
z2%}@r{?V0b|6E4<M|Y?FLoJ_1+U97hl-K@w3HDdC?}OjndReSnql;kgR-pBAOJ~(L
zV)6HA!^~B+VVJU(j*K9+3=wpAd*;;|D{G+dp#tq09!<x!J#+WUDr-edoexaZ&e?^w
z&Br3X&OTTQM3kK`AUjPzfXgU5e?a!J1fZrGi1AZ;jF4)MdTf%Vr3F3m%GfA(ZKN?V
z<IpY|kCqZzgE7yd=EB=cXJanLc(KBmt1<Ag{%L#3ni-E)c*D#wXc3LgoCLXS+vx?^
zU(9?7{N>D7u=O>U7Szp5Yi<)=yb?VtRf!LjrnIJb3@yH9uWVWI@n@-ue>MwoF413y
z5BlHm!PqQByoA46`w&_fDZ1X^19d~e$Ll75^SHXR6wmBT{amzO`+D@nFZ`m%YVfx_
zwu9$+<bm(>*ag1ZV>ftb!^5b>_BQkZKV@)&^Y|@487@M$dUo>Eunf<&;6E!7T|&G<
z@h<<~s~9}VI|)9TuHIe2yL&$ZKE`_t_%?5vFLluSAUKb3-BpQdz0GGE-v0-cX!S|H
zNxs-uiEMsQi5A^eSy5n{-!?zwQR23D_3sKF3SZBlLqL}Rc#8ra0^c9-8F)xwC~6^%
z0~>=k4QvYDJg_-9_qognoCSGK;9T&%fqTK58k-uC$JhdVuJL*BMaD(o%Z$sx4+I|#
zM!&eS9({9VCF}`e)$3_txaVQp!5f7)LQT4z;xQQ+J`QqDcrJJo#7{&Sr^K--a1&9P
z$G6#C{V@JjzbVm`Z!6K2x0|-(x&HImq?clT#WUL=t^sNuQA+IorOGPfw-gWZ=#0@B
z7%`bK1$-JJ-pDA)mot8a94vgt>3Ax6#N^#syR-1$%K8;NTJa<IP&_povNvSojjDKO
z&Sjs2{A|t?^mgXu>;nHi=Xdb_O0?yRxxeJ%eO^?fNW;v^I$L~Xo=x#AyZV&Xu~MmS
z@&8kuV&{o}f4vb}tN7ookCYkjdig)QZt}mmKEi7yrMwnm{dgjVN-Mm_c`RcdMdeMF
z0ZW!LB4-W!Q|QrGVuJD*$2_`9#UdU5t{Zd5vqfvd8<c1)zJ>twTiosC;;ZZ2RMsK+
z)hEq&8oR2*>7VA;&A)(6_D>Gj`!{&Jz7Dp94%2*hm&a?nDG$A$`F|Rh`R+I}a!ii~
z<$ihIvJlv7l;bV4p|-%I&vYu|Gg}P%ix%$v;(jl8UM}v<a*Z!@cVwA=%BRIg4*gx8
zEp}I&Yw7Ev(M1y#FIWHE`bCGjtydyn-%?`T4=sKSeIdh?C^>x1CD&LvJUTXynBzK@
z=$7kPqGM&}c+uPxs=w3x6q=ht@|!>+l4-6A%~K(n=Bl{PQE{CIMsvX^56uVrSjaRF
z?61sMq4{AInXf`~R_I(bZ$-{mq4{KT9+>N#6ZM=hIsZgGCrr*oQO^mJ^HS7v!sHwk
z^_(!83r5%GI!5Qe^HBIb`A?XKLTe*A(YE^@ztLYE%c5Sth34O9;5ak~pT@a_p%J42
z()e9^257v?145n#bRF*^=jyA+ySUEVr!g-y7jHVyb?i$%bUME49DW)H<2v?*#=NXX
z9va^(=kvRceW7{%G`1K1F=c$OyKyjb&cAwGFU0_$K7--F@?t{M_!v3=pT@*|45DjR
zkBP~z%I)egF|OlaWLy9m2P5MGsK>#`7y<6a!MMf_a5pA~VhSt)(RHpwUzi*pLt}a6
z+F7n+c`FiMpv~uKuYl;741HBiM1NHx@JS(00L}u@*y82DRl>d+_`Z<uXN*q4g|aaY
z?!-0Fl(WVc{vUGAhwE5V*LH(zpCk1*%6`Vv_+QDmAGF4$T-)-``V$|=y`_6Y{fTn@
z%L?@;9xd%ROoc3CXfTvHu5+0Gx0Y|^mNS?Co_2=o*wKpihnD=xe@6^x`OAHy|7q<H
z>Jz1BlKMse-TqLTO~#2a*Y&aZ3QTLu=?mI}w!%JTb!VfpZc=AMZv%Re41>Y>8d4{e
z6_ZXI&cgD8;R5(ChF`!dc~(O2kkvE!PES!auV63u{JbK;YkSoNukRHDe$49>`1f8v
zf?xL1p?9bS#slM9x{L(w>D?Qaq27;zPZy(tcS9~aDwtMMJfp0k$X8q|yMkI5l!$x<
zwKShGkS8c>r}4EFca&K-@iS~aqpX<7SLSO~X4Sne=%M1P?hRGe+neD#1D3MuobeIG
zv~C=xgrn!GRhcz1yTHQN$Q-JyjyYY7G<IE~@H6D$V~o!zYZLM{vRjo|5u1-Rrd8;M
zD(hnNbwKZ4<CBj%jt_`O|5&4d7T{e2x`M9@SO>mQtZlXp@<C-ivoV3w(KGgZ;A`MZ
z1Gj-k8=Ii6(9B4+heTs5@LtBg;Dd~*;6pKDnZ_!Q03Tx<4?e><2YiKbCHUaVgHav_
z1y@E%nGoC%{Ndmp;A4Zwfp1pEEzb^_69OMiNH(}xj9#X3%fVscVKi=e5crU=@!%|6
zkG{3W;cda~;WNNjhi8MY34a&-hwxv)Ybm3VuPF0DeyDy8eQTSQ5s7>y`0*LfW}qBZ
z)`O44_+%W%Wqk6UtUa*Q$&Si~FC+V5aC`Pl@QvAd;PrEw<Y07kPFwIUIbFfm=Bx!@
zpR*DCgPbkkJ92h_|13r<{|5Q{+@J3BjNvbQS281J>S~NgdIqCPX6bsNe|Emd^Z3`%
zit4nUx&bj_Y8d=Ijp%pn>bcG{AFBs3uUIduSAQ>x3gf`)WXHS~dehpYFJZM&T5FV6
z8l`^+tujh08-9cTg|f0JRw1M{2rFZy!6d9ONb3vI>Vovo=!-Q4X+^>5SW9#p`eSMB
zP+B>Z)(urw4aEwTv_55JtVKyHQPMh;v<fBt8wTLNKr2tqz$$?+V0FNySPzg^1EjS8
zX(d4Vf9yq%F0KAYYyZ*8e+=u#wnYDKPplM6>%>yDl}T8wa~t}3>Dm7dPyTsYjT5WE
zx5WDIwE8=({XPRL-7dr0wzRS>^#dQq>WdVMMOnob&v!DS<4nhDe{-?QAFc8CGFI}-
z!P<TKc)BTKJgwBn0-p>V6ZjQ^Gw(AV#HYa6H7Et^IizA8hs9XGVGCAl*dJ82GOf@+
z>od^m3^dk|Mt89)E2=rFT}LSAD#2z%)3o7vPQ}w~M?W#ec%jv1ScrcJ#dtA?OboGy
z<b<pZ`3+&8qeHFeMYiG7E_76ATIl#tduVRx+Ry``1)*PI1aNp*4fHQhLzMc(VN1gt
z7^y+4^Re*G;VBpmY!AO0ek;6bL?WWqca2Dops^YSSecKZ=eVePRTHgaK&u$gNXHb6
z8?(b}asq1-T)|odv{H-}qcqaYV-Q1Tg_-(GX!Sm3SzuXgsZ)z)H>K7Z7fo}TXhzd^
z%w(c@ObmXI8!>e$hIy<tc6jXQ*tFPbSfj!b+b+%?cNO8Ok2g@p-CAF@F140eJ>p~I
z<Kwr+)7+)Y@teBlcRjv}ITpT6V`mHAj?S=QtOmmvvOhATvuM_m4Wl;f_|F|eynScZ
zZFF|^z<7=4vh9eu|6O*I92@>+6mx$7`kTL|-sW6GF0FGxt6Z4jH%UXUGezU4^=WB!
zT3VZy-57N<?dF#^$(KT&l<MfMI9il^o7U;0Rr+X+J_bLz89wneTB8pu+0r_;w2CdQ
zVM{C6Ix*vk`Y7nn`cJjbs9hG0_L;g(HXU{<>o)*53)wZ6n!0@!U5V$91-fgiZN|37
zIOYey9U{MLTde`wWbq(6FU?(`*lW}dqxKukS)iCD)PDOOMAKT&0$tm18oc9aUuwhI
zK$M5tW97BOnxWm5EZSZao2{LYscp6aGz$A}1a1-bt-w4G&3ViRQtURmHfq1EM_cU@
z<PAVMuVEYH?V=6m8r#jaJ=d@r>KP!q=9WN;`9{a2HXhA$pt+y#0@s45O}P#z=RQ!|
zkJ^2Y!(Ibu0?~150&5GoE>N}$t?&c6&W~sbo$^!rklKblAio666!sk8S|P6oZV>V&
z;ASDaYdgAYFAhIa+Ftx$*G5#<H|5^V7ey_0Cq_T*f-e)JkWrFqnXJF^n(GO}<LnEi
z=6cGd=K7PUxmrC<EWV77^D1hw)f69R+4^fN>a2ZH3R5kXuMMj8ruu7=x0bc`?g+W7
zcXw|+d$>&fb(?o0+o`Mse$e}jcUAVix5lRi)1o|X!CIHI>TjBliH$+ItY_1GX86F9
z>a)|wgY6P^RvJBX(C3T~j^m^8t${V7lQG+^wNhuLve}!-dTPFJD|Qg2ZbQ^ZZKz+~
zy=J?tk8bnBoI1a~exB?z#pf#PpsoFFtc_9!?dm_&zbbnarSEX|xmZ;`KA^v-Uv^MD
zvg-mi2I$x(m-;1NFIW0#n`3Uwn82y1U)o*#vaa>cy@9dD;VjN*#al4J#Z%i-se|@$
zse{UT=WNWQn*%?tCtGP8SUF!iNYp;7;QyEq+z8yY_PH^56D%JDZwKESd>~lIJ`o;Y
z-;g-whcX-^+C<&d96FI%LTjQ{S~s*FctU9NP*2uE@d^irg`jR49@Z-?k@Zn(tEpi_
zG0SdP*psl26F%d$VexF8;xlI9I@D7eg*U;ByQbkSASZ>l2{$nAKemTYhvm)icfhlh
z+HI~<yFDL%0r`In{{^$}E-5wLn23gWA8=1|c`Nu{LmczF*Y1_kXwI4S?7XsqFZU%+
zi*?2hVW(qDV#%Xix~A{wjPV&BY=YuT=JjUoMb>5+vh>V1t9Dixs{{Y>8*C5C@Njlo
z@gmpBjzx{RLw0v?d-e?Q4cVKsb?k%e4<T=ZFS$PI({ZRD$LAz~Hx_m4E;-)pIn=5f
zscO}E$g?x&Voo&s1@!=Lb}siqu8#eZTcaqxn_P9c0Y+<<lf?UB9!5X>Prn~{`<6yX
zv{L4{b}#d0m<jtftVXV7dCL1iwr^?7#20v1_}+O}&>Y7kpH`UfntYEp#!TeghFP*W
zW|>y*LD*eexk;EYi=&lk>z1xCFW(_Me3MvSnc1_nruP?ktJG(ja@x9G%Wdm!^V{Kv
z>rrOa?iI6Y4_2VXOCvve<IRKlv1kRDFvIo}{|;D#{TS>g{7?F0JzQlacG==>g!fNl
zrNvwEHxeHyGREy2DcU#;vv%)p1DDR%mG2@xnuO2SrIzr(d%TN|;w|)Tu)8-;G~PMX
zdMMi}PA&6pp_ROO3%QZYcof-ArWW#fv>~X4Ok-2z8-uU*eI>#Jb9c*M?VGRjUEW)w
zfmN>jJvw77+STLTz9k~FLKw{lE^Tj9OPh~4k?)Egcr)<!_69NHq<&627UlA0;Io3C
zQ^ugI%~_wLWgE)0z4=?>XRI4>QMAC(W)LlKIYNaMpV4ZH1M#ll<5b`wL1Y*B?Laiv
z+77x2Vxr$!_Bm63GmZVDF|9<@&rEFtJNlScfE=I#5czVb&zWKTRV2s?q8JA$AeyIa
z2Yn3M529#d4DY3tAQ|&uE##x1lb|9HLoZxikQMYOh~iceG4!)FLCwSl>Iq5(4F@sQ
zM?64Ypk|;XLCL^3Kr*(q6Y_5$if>IZttkdpa}dSBBC>-%0MWQDif#Ql$bh$oAE+Tn
z`ks;@Q;cgFH!Bq~#kQt7`Q(S9_|_CRi{VYt7(}tNdV>0Z#)2k+UIfXQ!!p)2!yBO^
z$PQW$$_Jr0fXVpRspzqq3L-xj#V4lt*A!cU{93f`LjmXl=rZUAh}umQcPj<-G{_F3
zI9s%y-Zc<In}*stb`ZtZqO}~UjU(eOkgv)QB-cHqHBV_hQ)=^&uc`xx)-jc9n9|y%
zL~_2iT(?xVi_)--)+=Rb$56a3J7^!M07Pr|*+rX%;>gh4Y=(A6J5UO!FDMm6al7mw
zYLn!H4uBZmBcUMao3cWt@zoC0W+?7MiJ*MEEw0lW1MdQg^Ce?Jq(NQ;qP7XOH<%f}
zO(d`ut`}qnwXF@^igC$}fbCG1d;mBC&%_gW9zp*C$ymz;kbePDn}yc4U?Xup5UnRT
z5i|v~2*gI?`+-tGG$&lf({@58VrdwgJQtXb?=c^^7VRhy+lJUUpfu2PAUh}>v>3D$
zL}SP){+RUn$noPec6=;|+CwxZoW_H<2eG5vk0X6J<iDYD2yzU99DhJ#4=COx#kwT_
zKl%R2-%q}N@`aGUonoDl|BQTQ<S(On>@<fx3dAm8yd`KKh~j-yTuJhSrGRKXMHwHB
zeDxF$vMwkQ)J9MTAjM^*c#P!79uA`ThZOseVjRlxUUD3|9D^>$pVQcL8e=YfE96(9
zvE_1Hxg1k2$CJyk<Z>K2jUgvLi5xR7$BWCc;&Pn093w8rhs&|ya$L9^6Hep7X$&~|
zI*7>ELF2tsKs44{j`Nmdyct^TCop@FVT5g?546k%s=h_b%%IhWV80IiCQ$ek%c&U(
z6UBz&ZE}k5T1UwBfGvca1Z*kfWFVCnxN~>P43cHJp~!guQ<*@rEEh<oGQk8QnaTy5
zklO$s6f%_)G<H`x4sfNA9Y88K$WCR)VIimJdHJCnALRm-70U5}R9+}{QC5&F%L|fa
znW5zI;^hX(RCf4)s87Tf*ce3ira&rFNTzay$`tA!u>pGudn)j0A=`me=1_ho@QRSH
z0jcaEJM+eDLlDVkAeBKR%kqch9kAsIJM+ODMIzWM0V{(jPgP*BkVAn~Mv<M$qvwQd
z2d)q@l~4PGd;oY>$g-TGeQmzHtWu5xnaV4Y?LaECNS5Uk$vPvADdzT>!1skL%OWLD
zB|KvwlBp~jD`YB@W`byZ#Vp`@Vc!YdE#$9&-+<_Mq4KH{h>lYk7%gNfzvc*;uT9MJ
zFMy3!DW?33fGdT(3YaBiD)YV*^53=AcT1FUR1Q*nV=4oOfan^i+-n3PxdX71kf|Je
zU&y<GdxT77BbA9CBL8&Ydm!5PB=Bn?QyJL+M0P4GsccN5{J<Pxm*penp|X(5!JSZc
z0;xPCJC%uEAd-E6aYD8M$AS`I9|xpzQps=TWhBY6d{pdKUPdaiC?^$p1TQN|rt)$S
zh-6t-DtSiYyMRc36i8(y$+Emu@}OL#GLvK~H>r$V3t0oCvQo*D&dW<hUJDx$^2l<N
zWLb8SEXz-lWf`jEzrf2YMMn9e1Cjh^ag3?VqW436pu5<`RHo7MOywGtY1GgAAdun_
zll>u}yST(u_R;Yv4)G9?e<+a3L)w?h#J?I_m|_akzSDv8K=d8|YHVRyHYxW?lusnf
zGKyqbPAPdrS*6I>=9+TYR=n#z(&TGA@SJ{(7RSrl0*@r!5%>pD%6nV^Hye`ihHq`?
z1pbs^H24_9QSjr2LPIFKWVmVYg*)UHEF}h`C)OkNY=D+RSI>9A*Li;88OlEO{0TDi
zs*1O=&5L5LIlMN4Z-#df{rTSXR&ME?f+*;HyoW#@>rL<H+1?Am$@7T$ZQfbnIo@l*
z$qT7R>)}Jl+u?((#J=(V7V;_Y)8LoAe+Bn|FA}wBcq8c@UJpFV#|oa{LvQZJK25-z
z!B2_Wkk0_{K|W)Bs<3fB;~~%Xc^-U`&x_zM`DB6T_^btA@3R4X6FitWFZ`F4nbYSq
z<QoY3?uQ8Se!e&(e3&?+Z$0oRUn_WmZ$t3L@N42b!k1}c1APahHzd_}2rOfKXZi-Q
z+3;*)j-&5l@FnnYQhQ|?_zK@QkdwTfdPe?EJ<EpA6K^MYJyDnU_3&%V41RuSw*>eZ
z!Grwjfk(mjiF5h&@e5~t;r~Q!-fsxF-EX#^2b<%!5b_Iti@}%pWr64TZ2;c{?<l?(
zJfjxo^g9jtSMrZC4}U-OfCTs(!Gqu}#gY9V@~^}m@$UtBu>TP7XW%)-eS_~5vs?Vv
zfp75t2%P+=I<^zOR6OYc)&Sg%fQI0<fcD_i17?7eFIC6V;ZM~v@~3*TR{~yxeQCfd
z@YMltfxiPUtCr;i<U)QoU@iFifDPc}cg67oc0(r5E1t1HTcC}#4(t$!IuHD?sI3Ps
z1ZT!5BWe`J6k{dU-PjXyKjT2~A;w`wM7A(KW%NS(E)A9mM)Hxp0IzKucEorS@@->B
zlv<sFx`L+!^#bn`)GtWO`opJ-dmF^dK`Q+g2T>Wf9zI@pn1XhI=LhXV&X3{oMVmb6
z1o+7yBg&|t%2mP11B~CL@**m=s!)4tbhT;V)2l55cU1cc{8xB`as9!5Xk`TiR{}Q&
z$AjB~yMw0&KMDR+a2mKhcmw!1!RC;5%o5TDrB6F}h+z+z1wJ<<3!J>g2DT0!V;nQI
zMku}!yv3-O!(WV?@EGGA51%o%hE+p(We$4;+#|dpdUo2wSBzRjxC8vX@b|&DhMxmx
z5s@gVx<+&Z?-wx<Tt?0O6*7;S*;t7yPF`M|1wLMUyVwlytl0O!*T!xJ-x9k6JU@0X
z`2N^K;03WKz)!}02X3$?S(~ud@CBpAWL<65vNx?aA(LO&zzpyWqqjHy1#ky^#CQ+H
zmw>ZIo4SHObbJ-KqlyE*7I=(t<hTC-XYcrCpstr;0*}gw27fBUk&(bwXPkq)2%h8-
ztSD2Hg>oRv1Kcyq2iz~KCb%tY9Qcf^4d7R@{s1q6k6FunvTJ9fjgkETcq+Wjc*3*S
zgFCa&g8z_x3H)YuF*wVqmxJTvv;l9I(-}N9XEgYjoTtH`$(fpict<(!LtdA&3G(Kg
z4|8;EYtD99^5L`AvafT#f$Yrr3H%ED*MUq6A2!zBgclq2H~6vf3+C1Vua_GKo}YUL
zoc!6i=kRD#Te1k8yxMpM;MYdWzQ|OBc1}^fBHWXrCg9DAlE7OP*<f#7)E2y5(F5Qe
ziq^q?w5a86JVo$-<9z}TIPU!IBJi~0@#qD6ntb5w@siOc_+BL|!5#33!_NwzIA+?x
zD~@&^{Nh;21fFqRi7KUQBfK2P7u`%MqLoZb?yRi%bY81Br=5OpYj3rEO;4-2sM><D
zD*I234-M=zug&3wDtm0=u%0<<M=r}$*-y0(YpFXNc7CVI{>k2D`+|$pa=%g8yM425
z$E|e}OMX|`{Z5Q*ed)zsJ1X5Od;LkbrY(NgRPcO^%06>h&-i)+x*vT&W#4ol<K0DT
z#;hEovVXduFmhte6+b<zvXAO9$@b!dpS}00%HI3X=7E!gl4h(^*_-w%>e}RG<E~Ft
z_HM6tY&QC*R~MgG+4r@WQTx-`<G(;4G9}5M?b>U3uN^!*#}TfwpIZ|Z{JKx0ON~|b
z7uGk9DjMEweTvGSn7sG%Q^)qt8mY2xJ$N*%Zo6;y%vRZ7Jy83jL#sx<<WSjXy)$%5
zttZ!fy;WuZ{j0(LeICz!>$u8Z=hu(Fd+GX_tCv*vE%uU}tamqU@+mI+eHV0k?n#fq
zL+933*?U-bHcBnob|6`0?^$Q-iwkEz^lCqqef!k<X|*QaI5l2nU$o`imQ~wNWh_$J
zU!F2P{qW%I>)9&%;pJJ2UP^2C;ck_EWYxgD>zBRepHkU3$Hx!rS$pll8!G#nY0nny
zJ(Ik&3jexy{&$AN=&0Ss0cYb>_M=P2{cCBhS~(A@>;a#!nO8Q=z5S@l{&QHRC69TX
z+cs5Y|13RawD)J*7A{rUV}^yE=@b0Hkqs(4f9`B64wYj!zH{utg}dxS*X;Ru(z{fz
zcTKarU%o!6dGhocu13fks(K!H_Rwqj%~bZZ0Y5!^C}HX%8eid>M%aJMeY@G`$7!62
zYieI}S#X`Y-BzW$8X?y$+I=kk%}0NEQ)SP3cmKj>!@gU)U1k4zSZ>%0Ui)UARN0qR
zAJgVW^?|#usO)`y2+xT5SJx%}s#ohz&!>f<9rIOPmA%u%OUstNHR{baD*Nn_Q#L+3
z$@|Ixm3?B!x06?&ePrWAm3`Nq<^7k;=|5+Q%HDF|tNZu#XuN-o%D%zz+RXtQqh8sk
zvVT9=v2^>Y2fjP4ve#bN{Od-$mcMgLWgoEW^|!_@+xvSpYGk>jLpy$aq(|O2AH=Kd
zXIj_15`6VmdKZ=bok;_ZE<a@c>~WR-R1eFuSNm0aeY(ot!fJZ$n@x^0%T@MQH+(;!
z$B{3yHmmGO?K0o~^10<j1uDC--P@U6x;*{S&nkP^3ftyOFXS%3q{=cWW>)VE<0Vsp
zS!J&u|KgA5-Zm~zRM}Vhtyo>O-1tLJmA(G8#GzlB>#a#s*=HZld}dJRcJ>7-d+fJs
zbhfjWymwUgMJ4S9HCQqHg?yF0^_GPzRt7gb_La(>9sd2sC0~cW@tey2<-}84pUQjn
z=Rg|l<&s7gUS6K4o%?>2%I=b-jL74|4PnoqrJchzp)YnT%SSY>o$LfGCq=}<o#;*7
zt33kl)Sd;us4Yayj5H<w{L{LL=nH*DiRM>c^vTuO`j)a<&mX$!=q;U(czvjedh`PC
z>oLT`iw*UlxED0ywzNfkcU$_L!N|^|MeX$$TGZE+2njS|*T6JN>pIM<mX{B!=VkK>
zVXZ6B(jN2QmiGVhmi7Z^75}|0?Y$V~T#bGEH@CMP#vr!ZxCiZR8Z~Wzhn3pixBjoR
zy?LZp9$oYAYKMOj{7tY2qcPflM+-bN%p-gdGyH{i_!P9gd8E+0TjQ*HUUd|lHL9A>
z2Z52@XeBDqL3tco9#e-$vrScEgxW;}9g1LEHi8aCvy~BazJ}~nV%o|GI=5gMW1eOX
zV2d#>96g^FiUcWFBP%}!Bt_Xlzq-o`WDi+pS{k!ih>8nOixLmg8Z#&ct>u`r;6Eb<
zDO$f6OO9{k5>towHH?n6$5vv~|E(T}25}zN6B>gx-Wtsktc}svkcd7A^n@yX5G$>#
zAg@;XAZ}rFI(kVe)Ca+PA8sqX4}R!naP57tWjqDTw2YPD4y6wwIMbAg_}G~gO=W?I
z&-(%7KmMj(iNo2>>`Lsk(l>Gb9(@xP@0Ix0rB~t_WExrTzE{GkL@F8}A{E`chr%_E
z(Ld2!VNs$U^9V_g-?O*k|84&+Lyd*T2T?UzjtwGNjt?SPju9eRjuTSs20liJ<p278
z`91t6{JwIG65VGxPKo6I`h)pBZ;ak^8Y@Nj<UiRTOk<=@f#^E_U-1pwMq)e`h_1P!
ze&UzlD{hPYF9TPBXkR(T$_)7*@gE<n*gSX|UqwyL3?PlMB3Zo_v1^<cck6xs6LDV3
zTbKAhEzXM^S4O`njVZgc_IDxfC5Y_*_1W|L;JP00-|4fbTQ5^<2>pa&7B~d>49JPT
zPcjj10uuco`jrUtp`QRzGAkVAKJYssOPdq=?;zLXU58$*veC(iCW9y`hzFtp2&1X)
z5UR>Fyi-Zd#Wj+vjwnRvgbC1_D)~zHZ4SMo%GL=w?|&@KHwiW(N^`|ACqtjA*h=$F
zgHCh|{oj<A&<>sGV=^ESPKQoJ>2nTj2K3pAt@L<vpc7F#!~yH9D8ovjmFAlV+kBDl
zpvboX`a;E4n(qbZM3lO5V2hv=QTl`fTMV6u(x)8Qi_m%hYw7V`f{lohJnzfUi6|ZB
zfOxb_p&>#id=)k#N=G@c*Ps(oI>Ldy4t=R&D?RTr=tOUcJcKKt6H$`KTM3<r(s2%m
zhl_Y!pcz6ZTm_wol6;08(BDyPrRPOMiV;!ziUZcMVOUp$l+t|UjwPZb^R0pYt}5Sq
z(1~30y$^k@D&IQj>qWjVd3Lq|`es$W51<oK`kDh)(qZgFRlaS|x2tS<(21mPf^au<
zB1-gECvguL5&i}xViRHpWBq0j9(U!rr)~S76H$`;?uSl9+r=h!00NQgzMnuRa^3e+
z=tQpjeg>V$b>D-~zX7@a9^XPIT8Eu!3*mRrFRAkV3Z00Oyyh#=iCoWn6*`gYd9OkL
z4di;>-=PyxS|!f?2XrDz`-SZ~bc7N_Dt(5`(1|Eb75QpHZ>Y-G0y+_;=qQef(34d8
zT0$qHG*BF`6?7s>^~Ao(&~2b(sRLU>Z=>WZy}q{4i72%c$7=_jh*EnFtUYuhN*y?`
z2cUOTY^BFbflg!+=Oye8ohU-s2p@({R72PZdq5{5KO&ui@Db=l3BpF$3wm!*Lt!KA
z3!SKmuo3o$PSjY~2nRqX>h=!*5`?MHiCm921UgY?k&p0E=tS}2c!a~C6V(&>2+2Q0
z)K1t4M?fcPAoeBv7j&XnVIzD3I+5$XBcT)hQJ-Hk;gisbT8ncKj)qR;db}~viEfL1
z3CBVwiWcW3oB*9DO4taeKqvY^>`Q2ePE<$aBb*7H$kjF%I#HCkKEib9M6UVfK_~i1
z9FK55^aY^0!bZ3dI?;#1Mz{nzQEg!(TnU}1syHv<8_<b@gpIJhj?*LjmNG)}bBzPJ
z{(ql_K2c?R7Wx#>46!faH0VT>#&f`WJt+5ut&XszL!U2fwS{dVbRtSNg`<3jzDU@T
zh3!S?tA))hY;Qrwv{WTY+ZyOZUy1udNY3r|L0=0S;X3F$K~7;K+y$NJw6GC=4E<A8
zzR#c&<%@iT2caJV?G!e`!_bK+(OS`z3ZN7168Q*^KquNKY=p<56CDvY!V}PmJ`py;
zFQ5}$7dFC^&@X{pf6L3ziE>0f!e5~itra%HE6|B31_dR;tI&xSihP9Epc7HrE$rm8
zBytFy@DJ$Mm3*b|$s5p#DBTcwZ$d9p<+}|XOSvdXmLCj$PU!<p;hPu+EV2f||7jLB
zEA(z4r#L=g3iQDs*YBGOeLBeXUd@M|r?TZkC!!R{0juTVH&^9544vp#abCg#=nXt*
zr_y^6551RSL)~8-ZwT}`paQWkp#u{y_JAm*MsVB*orsdO9fVHgYI9%`z$Fl+g4Z}+
zhW?wd$!GF9bVS-I^9<Q>E}|tr@bZXoI&`9!gpF_pbfOi)MmQ7tEYKUmMmQTf(Mn+>
zoCBTcZDAvv3!Ug|VIxe3PPA(t{|<zct8>!N=QhGAuo0aP;5G#@faMis5KHO3Uk;sU
zkGRi-Z$Kxa)cOqn&JO4$imh~CX2O30B<~%e7xX|7CHX%zLa(aI7XrPyDxVp8T~)q%
z&>N`oS)n&o<!c5#S(VQQy}c@5N9bKu`MN_Va{V4XpcA>;dO|01we^Nh<Z9~+oyheb
z^oLI5Y8wch$kjF&I+3d_75Z?H>p4b1AFaxl27L^u6W?9IvCt=gdI=lh)6ge^9uqdg
zNzf;Q?7~L)4D@F~X~IVM9P}xmslrBRhdvkNdVT587lA0r=U_4P*HrmlhrUXc&jCGC
zl`jkW`>K3vp|4Zr+W?)&o1a?2Ezmy%QIglP75YcQwpl#;+n^Is`a{@uKqvb8`;ro}
z6MhVx$n_lip??aZB+Hf0pc7G&$18w-1mt?JPD1}u<dfI;74)x#ZH2fNC-l=G*L}}H
zCvq*LE<pbgL`fd+C+I&5+hTFNi_nQE$+G7vbRyU9b{+Z+k<Tvny$QWY*k%aZE$Bp)
z<oB&(K|K#d=`HatiGof<sr4y-U!$QDQQ9hO3DAis;gzSPhoBRk73U;Og+5y36R&-i
z27ManvdBj`6Z$MAU+Ft+b1jrnAWC5zSON4OLFdK33dW!v0-|K)fb}mK8w8@ViA;p4
z(1$4bO3yJAIuRxB6Fl#u(1|F8p<pC@3_1~|P?2vKbfV+Oc^<;Yp%a}HHp1c1p9Hy<
ztD~S3Q93K~J_VhKl1`jsG;|_Lr$xRr=tPvx2-{fb;}l!zcbfqHX_aj%^l6F>bwIJN
z9s2jGd_O}kRN1aT$C{x?rRQL=sM~`a;y*}O7dnxvEfzYFtId{ydjN7ho*nvfm91tb
z${CPrz69u_Rkq2{pHtbUKqsPfYXbkBrb3^q%C`XeLY3`#=tPuG_T&35hW?T&->cBG
zRkj@HM3lCPeRH7`QCcT#YoHTR+9Yi6LMNh>Cv5LQC!!>ew-!1Pr9zQ!9dsf}CxmT1
zbRtSW3)=?hM3fw&?z$2B2a2uq_wA93vKEwzapaVjFb#Sh$U1`C2rby!Ldk)?6v~Ly
z8hSsFYu%Q?XI&RWsh+}t(7S<7ivKF1^l7{1lfG@&eA35C`E10Hq^~t!9FLHEczGa7
zW`!dkbn@$!xxODY%mSiRQ{<}&o%|)=iQ^G&Y0_QUY97&-qm82@o?~jD&;>dLnvG(+
zK!-r5KyxLrU7$mtQ=mDBZ+FIvd_s3fyFhbgv0b2}CD$E7cM3FD5yunT&8@_K!tRjU
z1*VGa=Bgr}K!>n9gzgk*uEz736GVQA!tRhL>}Fq{&nfo{7W)Zw2y}}4PNADaL_UEI
zflh(uP_bR0L!eWjIZSL9=n!ab$n8$KUFZ&J7iez8^O?iNaRfR9It7{|#CDNCRp<_Z
zPJ!m?BA-BqK&L=+4RO9ikx%Fjflk$Svq|I==n&|X*h(BPS>zMw5ZCGS7TbLUnngZ|
zNnCdb-6_y)5%~l<q%Mx*5a<+kb4`(7phKWjqC9`3$S2St&?(SdOI(k*u2iAR=gT2<
zr?l4=#}m(=Lq3P{cM{tj0-XZQb;N!G9Ri&K&2`0gfewLAf#!OAyScH*C(t3#DbU<R
zY!~Pd=#(hGr#PNN9=EC3PoPuSo#OkM{ls>G4uR(S!Y<G$?f%^EkjIs}%qQ&TW;~x$
z*v(N~H@6hW6}m&BI8LhEPv(yn`2{)zIwgwz%mE^wK!-SvIY!t8Is`fenq$RwfewLA
zf#x`|U7$mtQ=qv4-|iIWOBK39+69`e;y3~w0?p0E{&Ks}&Eoy;5PGWA14Mp-=0I^=
zabKNs{}#e7&>_$%?c%-R5a<+W7SGYj!zoI+ChP3^QGFDBzmcQi0^c62SP^#W2G?a<
zpydZ#7hOlF5c2()fnS%@%_`lh(l2|I&2Lm~w+a2R`n)`j7uPfUEI)rWq5o3Ab)(SN
zearPKLSJ=)>p?<ae3|Q^Lbr+Qw^ricL+Z^`x=rYMai8>Je~Ci93p$GW#GMTt`S%VN
z28nWe>H~Z`)zm0S<Qm%j;(Fn-QIbTtJuHuZKiQW2eZqU97RYlr#QR@fw?w(WqYA$d
zMq!XBx7%&}`s6_+%I)c5e}7?+D7WX==g0RI28nXJxg*~$pFfFmyEFXHug~0{Z(ksG
zkSO;zx98g*76yrOdwvezeu!5UnMAqWwv}&xMr@ZTx94}}_ot;WNR->{4f+1^_mL>K
zr?%$%dkTX@x!uu@Z<qH~qTKGh$Nu?k@3H^Ao{#hV`sH{LiSqo8L3}&sj7gN+)o4xR
z|L<l3^TqQmzqds7e(rR~Tz<ykB7;Qd6Wkst>=M<_Z~n79U#iG=2Pbg*owkkGu7=BD
zJfD0&N>t}_tFPz#zbi6GOnr~ry9&ER^>G|sdA{0WgT(wU+%DfI62)U&dYF1VpS<r9
zZPDB=-xm@~cjS^&{J&&*A(5r>{Y_#AiR$}r6#s8|-z2Kf<5o}L=aKIfiEi_&Hsss*
z{<3_LsLFOnRo_4B{a$|rKfghoLE@bg-a|0Y=lhQm`6N2WaC<Fbmni!+<za1YdA?9#
zkSMpSQT_d$;{E0)GD=kMCv~k9B(~w_m+yUvY1O!0=9j2`e(XJYzG!hgiMB@EF7KyA
z_48%3^L)d^{t{CcaeE74mng48UcT)w{(kEF7a{5w(k@XR|6W+@KKFO{^)L4ncJaOB
z{g$ZC>~8=3``o{esDH`(AyIvPb1VKkRTUc~I-cbANMV<#-k(+H`Q-B<@veMs4DP=F
zVmHsP`Y<EJ_mt0-M0GxQdW@Uje^LeSpS$Z{Tfys3zt8KpH{thRxKOc*)n7~QuHRn4
z@@uWAzsl!ZVnwgQ-T7_exsu0|s6K8ZH@}}cpF92a`@H{2_j&%T`#it9`?uvjpWlKC
zKELkHf4PGD8-w}tE9*xR-Thu_d%=A^f3}JI`~$^-B|6{Y_Kw0XQP%I|bzHvB^Sir$
z`4#;Cx!d32ru>%IeFtOs_muS-iFdZ&LvVNg{S|!vtoQl*yE}h=9RFUjz9Lcmb=>WL
zvVzy|ZvP7v+&{GwzfQBbFp28xbf??y^Y^<hu2Ytq5?O=$yMJCme1BQ*kf{D1?(Sb|
z2fn`?yCqS*zq2#XXAv7D+ACOoIPbUoY{Abj`+X#;uhX5L>Zbi=tKj{&HRb1*<-SCB
z=TqC;-Dmmb?)S^D;QhD9^6QuVIug~_=}r$3&zXE~C8mh?iqs{lkK^w8(<->Xxh21T
z*?%h0A$}KGUP!Fy`4?C4{O+!QZ3Xu?R^`_(>sJ!h*Xd4ocm8@6{Qt9N_xJqT-1NUR
ztKj)Nx_N%weP6ZR-S=mS{CmmrRHAzS0`WV^dXGePK6kpi^Ixvu@9%DZV+g-~`M;5<
zz7BH|&nNu_64m+K=}ysqE&I15y34O_Us~_;`Axac{wH_$kJaG!MgE^8s=t@J{ZqyN
zLcTX7s`u~m552$pRPg`f?)t42e16>RKca%?&%e*|W70qL|4+Hk?{BN%^OJI)&%e9-
zpLU<uZ?E9>yE}h+1%H2c`{&>1`4?C4`!f^&pUd}>#Mkfh`fcL4^1UHZ{r`9O{p}U3
zKc@Xd&(GQl-oFBoPnLTU)!);d?)Ljv@cun=pYP8B_qqRL_qo5j@1I}6@9%E^towX^
zx7_Fc`|orA%N2b7+<pI(_j&#c72H3+8GnDscAG?Z&%4_0?)r_P{J65-Cb6RXTkmuK
z{0hE*++F|m3f@0=`+HU9-(U7SNK}9SC;y@UU&?*nKW66FFW>tT)z=>)zNh?sC93ne
z)9d{o>fQxBs`A<!PxcD%aupO%ZbM>#8AykaAP$g8;v@{!MkPQeFi|>$Nr0VXW|B;j
z;gU&!>KQPcwh^IvCLyt&6rr}^qP9^%dV)ap1clmzEgoxBIBjE#ttUVbI^S>2>}_SY
zL(-4$dH&BIWZu2sz4m)u_qE>bExteZ7T>@B7T=Gy|7Ewh{>zndsd%H7+I5W9|MzaO
z|NHv6|1onSc%sIQ)pG4Ej(>kY$G`3t_pkC6>F;~DsK0Ez#qsaI#r~hZ#s14~(SCjY
z7W<Ee|L^n@e^x4f64h_2mRdTCb|0<(P5q>wl?wd~S2|G3X#HvHYi<#Le|C%OzbT6U
zOFPbJ_wU>y{zhB>&-%Il(cT}a<b|p7Of9wZc<dI}KU)8@`q}@<Tin0T{>k;%>H)dR
zI90nzEw$?u?Y<==B0to;54DU2ua$#Gqu}3r%DSlVYN>7a!>1zsuU8(Z<)(s2z3LBC
zOVz$s+i8iC{}eMT^1d4PQ%mhQjw*aYZC5ST_O+#U{qIxy8KMBHrS?7bUW>=SyG8uj
zev9}YqvRK>{zbKnpBGs_^<FL2d8p-6x7h!EQTkWg@2k8LW&PrnxS%Re)Kc5teS0GF
zd{TL!mNB)F`dLc7T58|l6lMIIl(?))k7}uX|2`#tsKz(d@@PNf2W9^x{cG|6d;jG7
z+VQtUiGOL~)O#)duXIP&d7%QJmPeZ+_4g_DYN;K+Q1UO-cGWT_A@aUTuWG3@_hr$t
zFaoFM-Kyo60GbPRf7I&l{ge8ab{zYotp8ogywv%srP{Ar9{nfv7cCx+RPuDxajB)+
zeqZH>%OmUeH3d*DWAY>QYCf=9YTIv#5<mJ-$*WcMF}2jL!=}PWKbcDZY8m5<)T?qs
zEmb-2<-C+U5jF0tmPh+ZzlJFIH@Bbrx9OjhAKLwEyhZ-|@3;8={ZZ!s<@)w<@xm?k
z-?AmL&#RSw)bgmZuIhfPr568={wnf*k%Cxi8UI0~{*cnHS`O6A=e{WTqXCP08~^w}
z9)C<qq+T7jT59)y`7N&h+FN`-{^iIx_bW40%cCuk`YfehE&pyIR{vwTP3t4|$;u0A
zsh$7P?Gd;#1x_vF%OdrOO1)ZY&o><Xw+LLF0;iTozaOd3Q0moEtKaSaC;9*1@h?Ts
zQvJSa`C%0O>r45jjBDLLxqsUCkETZEsjiD!-WLV`ly1K)UW`J&?<jIj?N2Sgd{Mc0
zEz0{^xM=tBPe#UHr2wd9%bG}if>N)RTKw6xC<13t;M6iki7Tt{YN;K^hsPuDE1y(|
zQOo;|M(VdKFQ}z<|9|!$xnT$uuRb^yxmWk$_nQ0v(7+FWKLW4j9X<Pp$o*YPzsc`K
z?(w;>fB47!V&u7&FaAT||BK51)r|k~W3$6k{ZQHW-)P2Xe{)QDDDNrHuWRO4_350j
zDllt!<lIH&&m!Yj`Esu2zWSBObJc#S)SUNBJREth=I02_`=oiUU4s9w`!CY$-#0Y(
zC7Sz6&HY-<{ns@24$ZxG{)b+Qte;9B-`1>G;j1^U|0d0Sqvl@Qeo)iC_W5g?{nS3c
z(tczA8(+I|zu$a0a<9tQZJPV9Yv!M<8Bdbt{sZN_w~CLeG~>HlgOBGl<9S4LFEstn
z(cDkh+%M4FPtx3L=aZ&+K38)eueo2PxwmWX^ECH~ntSd3Xy^C;_x;k&PkaCLyvX_8
zwMuzZDZi(b&nx9RrQENSo0RfrO1V`jTa>a)DfiEhwEw(P#w+!ADWy>AW0bOGZUp{m
zrQENS&nsoTQr@MMBb8Dp<(qFs=;uql<+cc4eni6uK2hpl*6`QgDfMk{MA}j1-lt0a
zLnkBk!<2>mOsW5G&36p`SE;}2-3YvTUiXSpKS)!5O{t&%pEr&_W@Kdi_iO6ol={~+
z^edG5i5-!4R5?COssA4he;BFM@6fEzXr=y|W*zQQ>L1p$KT)Yaq-iH!saNstP0e_H
zn(=JY(C1Gz&$Be&ulTy={z1)sNb`QB=J`a0AFKTFZq2<xb05&ihdrA4{6urVPs49N
z)aXk?HRJidX1see_aAE7+pbx!pys|<)BX_6d`4>SS9WUfPu;jE<tYvQ{9ZG@-)hEx
z`PY&5RsHX;A4Tp}KmU`O^?O>=-mkkO@Txxf8%_U)k8f<xcQ$gb<^iW`o+oMWJEYMM
zOEq|Y`|(J7Dqk3&;RlB_<Gp@50zXn&zx5jY`ImE%=jwVi{5Ep0>d&2;`@#Pcd9I$T
z{<&s7mT2a8|L<>vcWd@{-igR_m7m$)jNGgKt>jaYd##^Qiw>$Ck#;BouimSrOQ~1w
zF13D?24B_ZqodRh)!>r~U!~ELRQq8=l=}Zv=t8A?6~0NK2UR~;^~isZQlF^Nk5u@d
z9Eq%h>c3O#@6yn}s^{GurGB0UA657<ntfB}kr1W6<`*~as|uf?k(cVcAB<A}jDkNZ
zKB(|N)_j*pt#3FJ=~tD1s$KJgDD`!}iomP%s={Zz7pYh2L|s=~l=_7CBk(F6sqhbc
z7^zqJjVd3%6{UWMLQkr{ScN}#A<~XYhiZMh#@<!=#OWyYul_O8j{2Pj6<+`6NWJ=f
zRh2$1QR;v9c?5ofLYON2zg>>ht8oOCu3wH)Kl@q)ev;CT3O^zyqL=A3^~)(zullo9
zy~`J+{<VP-_;{rq75@5=NPU7*ui}?(=s&K%cSNNAZVi0Qs7QUHQa@5D7e=WcaYqDx
ziU$7GF_HSIntIz^k@{&${V1i}7^VK@@ez2v2Hrd|Qm^`VRD3UtQeUczz)x4&QQ`N+
zN9t!N^(uY5tEpEWe_0qc`l`zRvaZ~SFKT_-FC+D%lonJzbXdbzluwAp%=_O6yo!%%
z{Rs`ds_nd{;Wt7N5aTrcs`c+{@JOB5e$9APIkQ%SziK<XG<d4Q|BD7*t<Tlahg$!P
zhTo{`_G3-Gx(=^v_)4tOP^Jdo)%BjCSqF8#RT_Sv!v9LszFNOBO8eI|>#5G`h=$J8
z`fqCXSFPWyX<x1XckOyA55A$TS0?r?4IZlPJgm`w)Owd@UsQQpq=Db0ypVD<f}g5f
zQ0wPw>ecqMqtrhbrQQ~${##M%*F>o=i&DQnO8u57_4QHepNdl76s7)$QR>^G)c-6>
z{m-M+zZs?emr?59k5Yd=O8uXr)L)KLAM^7Y@kGUk!BOgOk5WG&O8t~5^~Nam_eQDD
zj8cDpl={V*dX=AO%TG1mlPtU#Sr1iT*`u)!ay0M<{wo5n%BvjB`>~%yo~!y*hlbDH
zp|KZxHSN7G7Keu%uM9j}(_YKFk@i*oH$-Faz5ik4xvCGor{Nba4g5=giomP$Kd$l1
zyrEf-Le2B*8oB#&DAJy)Z#|>22cL?K%um(3#%t_1ou>U?Y1Y3;W1s%9>&E#SH0^2a
zVY6m^FI>NIymx56$2nWGKSMS4_n$TP>eHJ29izyb1T7*e_v`->>0i~0H){H8)yO6J
z(+IrkFZhmTz3$T3yPGxe$FD}-SM_IyrvFWv_J(Wh{ZShDKWp?8uf|`N{z0Ta)ov-*
z?4Nd7rvCSh@Q-WOvsQ!u|E8JmGn)CnpxNIJ4Zf_<%<m_f=c6?E@745oRI@)HY1Z$5
zH2Zl%V-Jqe(Bmvc?^gA6t7g6L?!9sU3eHFFRetkFjo!XNV-L*J=!cK%BlM`o|0~Bv
z?$!QxYQA^7@$Sg;BxU1*8hW@_Lw`r58|nQI8a>FUS^pUt_`#a_P1fA+)zB;bKC&LF
z9UK4G$i2#sUewql-5R~}CC&P5)9n8V4L`o?_Q?EH`^>D^eeufr6lnOvIE}m*ql`zj
zr%q_v8!$D}zENrKgOQPY)lO{E(93Nae6wrl?IF#2lV*K(X~wrx<IgNt?0c2}oa%|J
zuWA?lLPKwhHT3_ln*M*Jq3@?P>-`OdUPdYNpQORJF`q~JSNZ2dn)m-z)Bh^Xc&Bwl
z-dFt{?`r0IL_-hCFup8eN5zu3W9X>Z+ha!#oB;2RG!qqkn+cZ%-4jDX8uGwMzKK(B
z@PEJ_pw#1o*28f*7a;im_Y8>PLh#xSPQbMZUV|ZNcpeiobP9@$p+kpmS^}5Kuvm2R
zz{sJuh3|%s#j^)S;(E&xygy<L9)=&>HZ}|vz8?7{(B>s0!*HW+Q(wdX4w0{8V(z#D
zFN9kSLyZ3N7XS0EuUwCfw1r`w-WnSt#q5DJkBz-HWC(u4hF@$<a+S9txzyt<C{14D
zN%mGalfCQR&g6nhk4ttYR~M9470q1Z;bpuzWP#V^C~y_td(TX7-@t_)XVgY3s@#>b
zt0=jkbWPtd;ZZuuJhHp8sG?7B=Nga0<tixa7ob;OQ{b$WJ?{QMWBE$^1-G`yS<*M)
z+Jb)cT2{5Xv|x=_S@mdpq%Nnktg5WSv%1f|3yW4&^}X;#?rN;MS6<g=dqou$p1yac
zXdU*i?>Vn6@U8`h^)*)p>(4eTaE{dl-pW23l~)%yqmzQV%%!Wnl?DCSVo+R(V|7(!
zQQs@*0&ew#UR<jRDk|iDP=RZeT-l%1aXAZ|Yx|zD%UR^EtSIOk{atJNCVE$q%TX%3
ztNO7jt7UgTI;~t^){iNyme=)jk=Hm~1r>c$Fy`v@6&3Z(X;i>fReh5tV11tcbiTHz
zA3V<0FLvMpI#+u8Bo2U;0RQ@ga~D;XdHTUB6*xyxzo0$dej-g-fm`ky3Ck)VPWqe*
zmap%o6t>W3V+veKe*shb1oRe_7CHN#g}2C6(05z%8qiuq(DY525S$E+0%EMNv>zNv
zd85kR4|xLE@~WbnC?zT<_Lj>1;Me`**4|2>MBh@;TUoWLZ(8xLcU2aw>T}Uq3F;fD
zqCY|j?Ackgsy||>s&e(*K0B>0^m-x$*H7KUS0PsxIiLwBO`8j<Dm`n8+(i`yl|_Z&
zjPk!%F4cYPQ?XP5q2b7dr5@kS)le0>uxj<{{y{<}IZG@04eRn$7xfRgqH@*^%NRv*
zR!8hzudunBw;oowyvdOw>RyJGeAi9&k1&YGeG?)ILzH<u(Pe)aLYctL$5P?z$7p;7
za^;!|PgQieDtnS;Pt>09v`oH<LI4ir^b{5)GZ}<`qPC<$7Rqbn=v-EXT2oO_w)Q5H
zM};dbs=S#Uqk@5blomy2G^^HE7I~AQQLMfR?^S>pH0mV30;AwuG|f8#Sy5C_c(X36
zR$~La&YKuF7&Jh_zfni!DyUqWT;}nm%(^*9mD^jeIywstH?z9b;{j=VT{mw^0lS%b
z8*Z-PChQ+F#OZNYvt=D!)%yyN9Cb)4P+^f%hH=m*9E>YWpddP$stvBL^h8$%R3N!O
zK;>1Q%IHh4Hie~#E(eR;AVo;s<W&XUqI>UA3T3kWk|1E1Y?mh&$`vqCqA!yI#x^Y|
zEV_cDwpX;S$k~U&c>`#_8pWFQIYOn?{=)Thj7qCFh@xn8uFgw+r(aXsphAZ&yFNIH
z+QSC6+-?+jkwN`aThEjoMXahFv3~K@fkgrLco~nPE`8W#wc1kwHgI#8o2qr;Rxq%e
z<6#(TgU4MYyH`h-bvHmcm^I&gU}}S3?Ym!V{UxCmdp+)CFeOOPs9i;t@vD9Oz2*lP
z(BjRSxVck_-)FB=-@Sm4Z`utL`pw;3+!sULln?;4S}wimqVV&+y9z_~)m0hfW1r(;
zHK-5%fKlJn#>I1X4)onh7^<&P-;DpEr!Y6T*<MB1MPI$J0_or%IXX3<H{Q~!u$JZE
zC0MPhNd2ORilWtQdMCRIN{Uujxuav43h4C}l$G5?Z&KlI?#oho{i?_QpBir8c9zmZ
zA^ciJ<yALPJXX6Zll$O>402OVkO6M)h+&AE1rofT3iN@WsAv<0*uZ;KT~y({nX4bz
z2~~s<K3qm`@kY45WSs^YyfeBscO#n(-$myrHv+HrltxGQ8$o4v;mvfV8-aNPVZ=vW
z4GnZ9giv%v`$phOL^hOm{}C3i^&mpzF7SHQpcSmJwN<NTIz2ANiISoUr7$`xig-qH
zL8)<VQ7Om_T#eu3pBq`%Ew%Z#ZoJ7~xmK6v|5@8NNWTAPt=@?K|7gMgE=tH!CM?y$
z7yP5nwI8527f&}f4R;yTvyy-26)0iO=)(!S2&yXOQg{luh&t}S0ag~d%5EybVc8*+
zQ<<!kQJYj`OIX143#f0MfMr#3Y1voTr~ez+_r85~E&oxww}gXXN_4skAuDC~4b+Ih
zx)d|=J`N?v(6~FqR!8HhxfTn>T7^up%?=uBCGU2J)gs!d#!Q3k!W6PloUf|KL#yAX
zadv@1O1Ty%{e)r<SuB=uczNC;i^)i_X%>rVY8=tE+I`a6zsAK$cAC+<Us$9`*PEjJ
z(xhgQCB<K(0h@(fywWBzDo+WjyE-L7d`5$Os4I5dP&YIL_<OF|mEU4ViOE(XOUakS
z%av4jQu5&CGc?>M@Z`n^T-|&?6h!_?<1Q=zO}{Knzl7o4bA1_pldd07eq~Eji6h$~
zcsywL>a)+%u+xHTO<$=-cX*JxSCrO1U}?8uwZur_^@zEXg(+T`cwN06_(NsxxB+y{
ze>EtK4OP2^QP7~hxDL^9F5(7ClWECS?16Mh7H?Uk*_Y%?QZ`jzjT`g|4QyUXafirV
zNVi*OmOLS7=m{F=BLDkRJW0J&q${NXRw;psuF`m`s4XRrS<uK6w8{(sLvNg*A%}v`
z(|~5_o1u>OCK}ot5DpqrAEZZ*(Cy9SHfM6-GSf!4FbJCCquA4yRly)h=LE&>lmlCv
z#7L?-LPM;b<aUd;dKz9Y<Y1@&Ku}5~>a__+JH^(E9TeB=MRzV5e5jTZ({OpwLW}lM
zyqyl$>8Ng>pxbs*rJ2^5sb(K-%$26%bw;&XcQBo<#vB&%ArY|CfSuJM<SwDo+%iFp
z(xl*Ss@tMph0U3M9X++s`W70Xrwuy%>YkHK*a$t^!tb}^2GdVBo(zhID7IG)lvAwB
zTP6M|V+%Yq;bO4qa!;i=i~c+`tUmaLNWPMoY0318$5;M1X&U+69uM7iu2D>-Y3FD~
zKBg}$;)I~u783OhHesZp^}=LZBP?@_7NTa_kWT{^(RxGTR6oU@Ab(*x4RD4BwsZ1<
zDdcfWxtC;G=O%xyNH7X77LZ1yq(`p3ZW^3IwPx&mypNXUQ(Ap6U~@DWpG-(3$x42+
zrNNj)WSwoHnpBdo>t?#mN*mnV??Anu)*WHEIy1#tX}uX&sWe1SRr~alX)K89#K*rW
zO)j36Z^>q`_4)F)%8V4F5un_0wSfldJ><_9Bh54rFXv~_csrH5i=WT;DsKb}9{lnR
z``_NUMgx6-$JiH8$rccaK?G>BkG^F<71g=R;)c-G+A~6KI<P~U(976C>tCcn&K?>Z
z3Y<;Df(B{b7GPyo2G!<L>^XifHhkAYUR?^s>M<vgC{4bSQP!A6r8+5<2J}*`0c#+p
zbB|;^-6`E2qQR#{7>iz{yL}0k1RMSuz2f#ClR;09nvdbBltK%y(wi~9#Gtr67<717
zi5!vGEfR$ve;cHgA!+<&F;$EMR}<q(I^=6Ti^Y`O9-v99m`V4)PbRRwy7zk`o087G
z@1{Xk;IWnBoV=V^ULOc)=xNlMX}DTfjr|I#RTW_{KvtWjq)=vmTL8tUsZB(Bss@Gs
zeO+b;^KVV}8I574Znh|6sxfDD({L+Qn6tR1%$(6dBltEmqmxmq!kmGckydaK0FJVP
zJ<w`%J@(q((<!f%gH&-<N()iV)u1$={8vlpoB8z17$?2JNa#xxBc+6pAfJJ*#q@&Q
zUB?|>5h&^K9Ls$t9Xl;#G4s)5AZ(hp6Wqlb6rG|0oQDQ(77HRbemBK!7J=6qXyEBQ
z-o!^hASI<G4)HLJK2K|O$3aZTm~0ZmZB1m91%yZpgT$Vv4dyV2xdT{wxia8CLa{!w
zZf~I4_bC=TS<6C<-iX;86s<IPvx+|Be2acev-Pytd`!^56hUz*?}<BhbcE+EXk-2*
zu(2cbpJ6-#gH-THw6%vZsZ}ac@n}b&t3%G;^q0S6FZn#nEv95;n6IRJ!f3<PnvIEP
z0&6lU?lf+J7S3=D*rEvitpXSoK{6=?*mCn1G1y6edovSgfSR-$Yk(kN6F2mi@hMkr
z0D6Rn0L;YhgB5HrgX_>nb4HLy5V_mHcY^VpA=WeGV8&(O$q*}5nQ4U?n1Q{|5AG0;
ziYesNl`s$e6|iHWIWImhe&z!?J29@J{4l1hR54{!EcpI$y0clxUqP1K4wBu1#-vd>
zmLXIv9BuN-l^DxqD&B%k*bL5m_GwCVRjnpzXH^;9Q7?)cO5{?J*zl)f@?K@^g`8N=
zf{W^MX~QmzyR5^K>24>w$WjN0fkzwN9Xwgw*Xd5i4W$n^To9!e>q|6LPqnFmhotmN
z5SZ0&o_n1xClH|Oh5T%t?f}KPSa6QP_=P1$v}OjyxJ(=PNUfX5CoKNTkNi1Q<Bl6f
z^O`Z{Ly%x|LuE9`74$y`RD{5pIW4i(v|+&kTK7H;*5?GD=AQ1-GykhI=LrAPDJT~~
zsF-ZRPfOjDWT*8y;W`M$>36qb^ed?_A2P*q-RTGCrLtU_bEs)aqi_JPCnW@g(bQp*
zAQZ0Bkd&U*K;YS=$CiMC-VhH1Etfn?qYq*9bx(G^B1_{#fxyZY%WSlvh2p~UwJ!Gu
zG<I)LiVwvNr&E5=8F+Pi+v9n%_gCJjVnVHjyl3J@Q0++}ca{k6Z!d~e@l0#x6e;<t
zm>zc<6pj68wpDK2@uW2VdPrJ!Su7PD(o*maY4sJVE5!6@L|9WaU#Gae2f(hKB1^nW
zadsg~v#v<fneSJ-rERe^s8{k`Vo5O|1jM5O^`aUj_{d&BL6cytAGDcqad@xjk=~EJ
z9ygNSirFb%>sVtEZ-*d4E8mgQLvuq}(zq{Zy<3_BPKKY_tCV^k2<5lD2P(~t8$~bG
z<_mdGC`<NL`@ly0et(r|CjQb!1C=bKF+M8J=iic48f&+G>iE<VFp&@9*GJ0>Dal3E
z+i`93lC$N(JQi{57ec3{b@}|eJ{8I}`EqHnkE-+WYoe-r8tS7;{xy*|A6hI`gnvh;
zQGt00)h;B-2U(3@6V)&Ufg$nlq%=smrIz*8`PFoH8Z9#imgM*Yf~GlXky+ARi@Tkk
zhFDub15TuiQMMmK8SyfHj=;7DyM<RWToShO;N(+}N%Jpdi04Gt%#6(7Qt|6_kxaE)
zpc?``QiT4ToM3yv@j#B47ff(GAU|NkvM*|CBIkCRn9_tBmzdX_NQ>PxGliZ3!d>v^
zN;ATe*+5iJ-!PL=&vJ5*6NuXsFq+!LxNgUTEgefb86B5_9<hCNcrkb(Xde5pkOh6M
zK_o5V|037WP*DQ`4540kRazPn)9F;qML`2xV(N|#F+Rhx#u)07pYp$E^3I|mY4lAq
zP0;(xq4;)XW>NKpj=)Mm{_RlvSi=Z79;CW6ys$%@<YDb%CU_efU4Mb*H21ez0oCa5
z+QleG|9!(ygbZ}=UM%X=4v|B(g%q0-5=QxX|8Zr&mF5N>ZCmCPG@IHG%)@XmpvKCo
zb7aW8IDgmlJv84ZdT7w$9S?Si#`9F1N@G%lV@JqlqVyE9rqW6s&9_pHnI@&s-BuR-
z;O<B2%-*)L1>jnfPS6Si2){d6ERCmiS81Y^ocT;nVDw*wr(xD#1H+nM&1stn+7Xmz
z5L;O}9pDs+nKaNT?5v=D(*SNI8A7yl7bTq#UDIfU%fiCLgL#}Y9~7+t8gQ83t1&k$
zwd}Aw%Hx4t%%H)|C~2dvVX2pBr-hYjmY0nG%@(TA^@y(G6&4!o!aJpAX<RS0gOB_?
zCdEpN^F?wd)f|zgUD>`H*e+<DL7IP!K8-oAZ0Ca=V5Mb+bQ`Zum&r7XrOd--8msqj
zq_IE~lJwhhAg_xIVr~Pl1;)xmA1o@+Zo4=LG4+lKsw)=e_+!Ut!<OS^m%!vfwPI8z
zSSKTo8)G>kiiJtozWkdA)~4@h?<ntx?;xpOjC;e@eF98pdBYpDER_r?qT#Z`blgA3
zk}QL-Us(V{N%tOF236?OBZ3;-QgnschM9@<Y$ljG#t|aF4l9E@D|9*lHF;TybDPaD
z{curYCND(#3CMY?WdYX|@S=wm0<|WeCHesCmk@SE7YILh@eMWyHxZ=~!Vt6^)*mBU
zKnK=q-Xzg;uE~{ZGFeR9XtIlr#Xv!}(vR!%TMMQ`Af1TuVWSLKmKOR&ObWdWEIAXi
zm%d$h5*n8bE@Br>X=1414VY7QV_4BJur?{|uh65ZQ|NQN^eSFD2Bl&<${Bj<MAZ**
zxlRXN{3VvE9$mX|{FqmHf}Rzl;L0$U1(zDP0)`tss-r}xf%kAz=0{i^uFTJ;cqoE{
z?H#YcjuRd9pgBDFuL7iPX3JeT+r_wJ9qs!XVW*I2h5!m;zXdJbLaA1MZ?+QxLzo)i
z449X`dxa%Gw-b6bRk_<=>2d5AG$D-&%@p5kUV$=~rZj_rTUKOJ2^tw<hcuF}qVF3A
zcPeHxh>RJ)Jyu4<Qgc{5L`I&xD6Gwd_jrO6jiy5hqh-0^8wLu1`Mc<({{sC~vP;QV
zWGOKe%t;O!g%RAhct?9Lw1yK@s|zk>_+VKlt!t@d_PZUTvsaV|`VWYU!`PXUrZO=X
zkh57^?-8A6O*80cwFWv7Yi|c7pIB+ZB-t|AxR7dead%MX##D%(rv`-gtldO%VYt$a
z%2UuUfNW4LVL-(@p@FRmV-#5zFus^uy_R&Cb_Fa884k9%wYq_hVqLQGKPRX}tIRS?
zaNko-2*UQ@Ck<kO#X+8Y8U|Kppt(DnA!*PScuiJ5r9c|OzIIYJa|vtuqZwk^O`k*g
z-3<#V(g39PSKr376&WJ$W{+7(fyti;KT`nuA(|;NKT3-huHfFW2;Cca5gx<J3;{)v
zubOAk#<Q4Db_3~C9JDr{yauq{=CIOWbucT25RJ^l;G{e=y$kXxhW=@d$81=&xH(jK
zPPGiiw!55f=2_j)(nu@Ms}B%$ZsOwrRlEo_8!UL?-<q1w^ZQG9evO#l*TJ1bU3BkZ
zS_!1DPhx(s#>~n&6e!4CS3VqD78U|Sth3DY05I?NbF|h>X6FjBndPT!mRU48g%;>g
zLyml)`YD>GU%|~KSV6)0f;JfFw=suluoH~HOlA4>LCoRm+1nbReTZ?6%0J1UR>Avp
z40^|LR<C1w>AQ92{8@7?P#vtZFx=m6Fkm|l#aWH%)W}XBY3lWhV9njr*!2TlycVt|
zXz!v`$R2{dViDdlJAM;|<(I6mT7qR1yZI37Xtj*wn|<2_6q2X5vaWZhKBwbR@PsZ9
zI!)12%>`&+sSvb+N(-s-Dnxs+qPCR!Y1mGd!VtG*P(`YAkS4Vk=xe8=HV5%!_*;9s
z`fiUkDEivD8yf5^yT$Q=$$VwHUv2LHZhX&Rk;5&*d)5NW$nU)e%oc4G2B`K$R)c8c
zNvLpP-)AX&pROG5YWN#id5m2I?o}v@gOjBMD!qyqwu8&OL%!|c-r^HM-a;A%F>{&9
z7D5T2G6U(X^m^S@u$RbA&>|hpvbVAt39T%J2By(-z^u1plyN|l1lIj+DE^Zf>R4*7
zLjR!(Ls*k^0-Fmy3#+b$aii(H|0MY4B$%JjuY6Z&gx-GuHd7&uX@(~Y(giAltfM>a
zaw{|1tKHw}CiiwK&ZV)yD;?{nQ|#$esr)JpvloNGknaeyypejIhS$90g|I&g?1>Re
zf;(oe7$<!$(Z;J{2HgXu-6^B<7usbSxR)&%(Bek3EW9uldxRszj^&!|p;pl@C451|
zH{?D^iEs%oqP!L|`W}MxfPA(Ef7H0590Fr8Muf^9>DqqQ*<a6wU9})oLUo@#0+x<#
zxB#6;_<sehp#{o#J{b9maIbLkaNjh=MGxn*qFJ_!rda6_@C3ay=@M2Ctq-t6;w`52
zkYx8x5^|epeJhdOthI%||2<R!neE-0eXTFS-z|!tnJ@iHx^{}~$vZ<(wOqU378Yz%
z&1j&Cf$j*wc9oh-JHwT=s07y-u~!sV?GWR!PPB2fm`&rGQ9*I=P1P)f2Ola<t&WjN
z6w$ErqPQBC>1e4{!XBf?DiMyIu%W^LLlGg6=7-8fFg|V!_IjO=yF#B>jK-IlgKTh1
zdtxyzXez@tTa4L$BdjZ<#TPd=50Q>H3Ia6L*}9y0b44oPy(@UPZ`Z$UbONq%PA1!I
zL*epWpU)2_!vC-xDia=>frxkw5Cb;b<_jv(Sy;1&KLc_To;7%j@rw~aF@yncAQL>p
z^1KCdM^nQ}tRS<4S9zM#*@Ysv&2M*0vqON3LkK3g&F>e9KibT1PR9}i8@-W=J<osI
zCX8)$a@E&a%NPV+=EX|gW)&7$+%A3r=z(ZWej*@b5a3BT1McJ%>Uk}jwRp0NB-g<w
z;9#djt9MPMgBG6D)0{MtHov-*?P%d^V3j<@+DhvS+0OzOO-4#s%LmpB+sro>Y@kcf
zvvBTw5Ti#!<iKo3=s)5H2H6{^5xDSi44QBkb`c^{2t>fljPE5%0n=ndj9l5Cx8Znh
z^xA4^-TO4$-r0_Quh}Ox^JbO8)GRhAufh)n+l5_4hIGENK(jDQ_k{OU%EyYa-xGAU
z7vAoGxZDYKb{r51mVE4KHUdgT7A<tsJgb}~JsumP_0W0k2$=Xrqhz#YN3#_)cotra
zw1N-Va6x$JY&-YQzA(n*%F&_?K2zhl9eBRNVEM77wd8DoZre<&*U`9$;k<qw4^LPv
zYb<anxbx<m^`aRlZOlWUIo`p3UTphleqptle<4hJW7yK)AH4L5_^9~3CPu7S>r;;B
z@?QHwT82sb!}AMYV(mug(Z*8J`6ONF`PV8N=1P;VE(ex1%I7|%mtr^5FX5mKH2tyq
zyA4}~|GP73+@ZM*6ze=?GWoqCBu1GeQ;2d3$&_NW6?ECQlD?kiTIo0F_WhWY9BDRv
z4zJ8X;O%%TeT&CJgPL2VahG;;{EE`5M2R%}ib#Kh&R|x10ry`~%5^$yheI-4f$LHn
z2v2?BA$XPB@<iJwvX90df<4P_%@IyowUEa9=qI%X`a!Hdp1zhwHsFa4UhW1^l%V%w
zCecr@RUbj~dI);<zd@0j&3=|pW+E7{yehpRkH%UXM5*xF!n%!Jnntdxbcdc^#Cv;V
zQ)n;B&3G>qQ%`r*v!0iJkz_OJ|JGzH`0dvhQXv@M&tn$-gNLnkW@&OLyqWs++&r-o
zCbPZxgDmRB`u$6+Q_Phc`~ga-*Svcgt=+zeot8g=2LUsh9ySsV#KJ@XgMmxwC|2?y
z_AVEg{9)`xQSz}3KED((1rjQ|Q*@nSUkA9uo#&wbe9k}R?Ed_<cvDKbUT(~uo=L>6
zv|lY3mhO;;gS((IJB>UIjB1s>6B~LUMM5y}D%#17#2%>f2xX!XSxUHW5&OZ`&%pQ3
zE~Td64jQo&e!VBeRx!>cjO`FUh$gMHHHg(K#keP4d-j>UQ!EIjL+P1Rt=lGM?1z^Y
z`p1BJ7<~sb*=t*6&SRer`C*!)Rp{JySj0T>xVz}udXButZEmj@^F1Xx$hV|W(ymfA
zwRDGrBH$OHGVfGrVmO{CLg#~fHbDe+HZVtgwHQIn1~<Z^BhCfu>fY$|pz~Z0?gyp?
z;UN%?x-x0vC3wPNhBk)-s!&|K%#w$|yNN}!$?}6DTX+FC`I7Em>nbxiSa>JG!U#os
zM6FnLMT|xOtEqv+PNGA5q0tmyg~reOI+ht88&7xnz-v~S1sKOhvt)$Yn+enqG%Sr3
zk+h3KZhXW0M;equ>rR5Tc**-2R$lrBm0YFxox!GVkEo=$6PRr%ZXEr=e*wdFE$$48
z#6XoaA=D1DPEg7ufaKUH7Lr(&OCFxv`XC6}b<bQcRJ5=|vnDk?;*Ovpi)5=9hc=r{
z&(1MbdNZj~XQJvB6Fl-_dJD|koq@K;r$`g7f7ckyT!Fyoqtf)y3cB+|1Er<_d$OhR
z*Tf9W0G-*qlK%R(oD$*as+Oko((OJe5y5c_?1~PtNqRFD!GY<LJtRJY)*xzO5y25p
zldUCKvqK`W+`(GoR?%)xq6PV6*3*MJY#TMi)<d+7hYTOHGbrBJL;BOmdstjZ$$Cq<
zCCT^{j3iT%9#}GEis=}1fG4wAI=>E`!xVwo2}{Y8#G<v*fJpSzIdfkrdSvASR<FUW
z>^f}6Ks_ci2N(+x2tWsiuiZ?!{_rpS23ut+bxU(e-%HEEVf85}UWPB_7cur=AW+-x
zFeTU^rV;&2V~u6xUUIp49LNc%&?SJ;%U)KAAe;vHSm+P4>rAh*Yl7^IM@_FiwP$WZ
zVo)|FA)vg4#0mGBV%qRxRtAi~RK$sEb#7@b*gHI`?GSkw!ZZ#DTy{7jzN>ce>JC%w
zE5>Yt(OM}IAy0(iZF46ADbSA0=CY0~E?IoV!R%gVm};iU7hwyvub4Yy!Fa0Og=t%s
z8pQ*1#p6i};K@>+SxJAWZSqvh#<_2<Y6~_bhF8s=M`QM4)m$`euju56_fdF^X6-#p
zf2}>j4x4vl7Rjt24Nsv8H-6<At5{3q*iK5$115O}eFRVW58wp)IXtVoLF--cy&plz
z_phUTW?%|kSf5L$YtPUjjOITf%<x<`Q9Eq1H)Ek!b1ck7Lk`0{wb|%A_+mh^m(s^^
zJE?JFZu?X7EylTW(%c#JOIWS1NP3yfKFUJKCxsGI*y~xLV~6XJIs-M->5N7b{T59h
z!=R)zn{CIGd9EB<kxF-`bh33g6?G+a01muUlHFvYMX59B3Gn|Opb^x8yBD!J=m52+
z&7j}F{qY6rA$=j?A4sKpQ#wsKJrIZd$Uq@Hn{1^IA)Q*$dzp?FFQnv@?wPack9c)Y
zonb~6tB)g67-jF&V+=gxmjK%gi3IOqO@1Acd2&pP=(8B4ZTJlogr|L9o!LZR#H2yj
zGSDIXdjk)@4h~~TVRuEjS^7p8h3L0H{1yztlFtg-^wU7*3`(`r3t0J`sE6SBZ*0g1
z&}iPkfVk=pc*L8~j%cuj>SLSfb@a**=TL?Kg&qAD^w|p?Z!6mW>f_gWJXm*b2w<P0
ztsS`hHx`dHtQS%aTC)ob8N?BrM(%~|c!0Apc2R=SLEm)4=|+D*s7{7&Sb|}8SbQX&
z%B##u%9F3po$*9)e(OwG+=;7Jqu=rQ+!>pKrageXC{}iNoCRB4vN(5fE_nW8TANFg
z;d(T)F$SHgHkYY<{yAEhuWC=zk%Dke$la0=eCzWk54<UomM&eogeKNgTs>_(Lr=im
z*j#JK$uSy%;Xaem_T-ZsfJaJ)w1`R!Ig5hEc{6MqmH|tk;r=Don&WM-B+WI>=AGNP
z3pc?T^Nh2Ts1>S^EtQf|EbpN)I2&ftdsv!QEX{Ch+gT&!q|#rNwL;Ta=TEV)=o?B1
z`nbnNkFJBMX+c~H@hxkE5h-4lTx@A)A^jC-@E8y&fqsUho_AwXOvawVc{5<=v6&p}
z^U`i`D{lRFwFZmHhPm8km1!$>>T*m<*hTV)o2J?kJ#%!^f>bi6@r+HW3+WuR6X0zU
z9Ml&25pd#NvUhgUFF-vvju!4zuHXSf^UG-miTx*r)rLNxtc^+`H;B*-UKM5(3xV%z
zO!E9Ni&+F>G}8s3RU-(p32(erQ%Em?TXw~qLxA5v{}G`S_Dy~SG~WY72`zH%5llG8
zpybYg<L*)>`dO_(Hu*78I0%fD?Po<Nf(n5-##7U0&NR+rQ-iE+v>iD-pObx!v6Fs;
zfk&OuFCkE-xhNMMSp#Pwe=TTih4Iu&;l@U$&>C)!E^XXLPsG{3i{_pRH|Gqm#~-kf
zaDxB_F8-aEPMINYJUtJ#4f{DEPi}aoq?Kw~Si!Qun_Vxn&vpb%wZ>zj^0mNxAuo8U
zwTJ3jSQKn9z>b4?H4e`k0*@i%slmaDkDQU`PKcWTrf~*Aj@Dzrs?Hauk#vG;b{P|B
zgfB?07h$~8a0n(hYR39XLM1_AY8G9x*ddpkeZDeoqM!@XBsB7jKR0e7t}jNe#VOOg
z*`~SG$RMbM?+vmATow`mW?wBEp%C3`PhJWIJ3Dt%;jTGsy^I58=Tk{;2TV6ZGkwF2
ziy)<*rd&5w<t_m~glV(C_$k`>K9V{d@B=_S^SgV*Jg5sBb?`J`0q+7Acon9%eQJsP
zY*<aK+(#qq6t}2R4({op(p@y#jtsDh7KAU*0`v^1$Wx(QAvFPhfsO?xc>KG_f9B+p
zrO3wUtbJd|uR)3-WJ5#kEzn{~=%EDBZRkl#y3AQAwP@^B<RI!!O<}EY=*1w^?6!v=
z{)O;wMNEf(W1-nh6*S59QAEOjikLbt#()rV+<eFZ?1pl-(EvTS2ANnu44^l+jO9Yd
zgY>kvg+}Q){sUyd0N^+N4`kXwF+SC}z$4}%TtZ{c2ScG_aC?pmm8}x4kTfae-S+0O
zDIJbqqbhL9L9P}W1HIrnJQRyy?UYoNu`ca1KwsWb?P2W;=mLdWhYZkNK($bt==KI_
z;7%y@97-HyPx9IP{yZ_RyjWPgz`b#ZIIhYion7{H#&<r}`E2L2ytn1K^tHnxtF7B+
zTgE#d3pWpVBf<q65#R~`4(r8o*Oh^*gC40~Y)fGC3h~hbb6db~k=r@mE+N7*=$sNY
ztu}YD?K{9;YULV_IXH{UGP6U>3?kOb9ZAit?^MAD#{owh(%BI30LB8N@(QO<Q`!l?
zLo=O}RY)0jxeeN2E-W-VJy@tT+)P8mvQ=;GDC_t^2ew->u)`U|2p=OyGE&RK7!iA#
zHso>?@heZ@sL4)8mJPynqd~<OAk;o~lVxIn57OXsob@o|hF8in1ehJGZ-^W~^shwF
zmlxs@a^=!@;Y96$ccZQ3;LcBJwCh!%b#EKYv4eY>*e<!<MJ3yT)zVD11S)lKPPdAL
z>}+I5(9>{-{!fe(Wq!D<%ik%DyCRcsU)*Gv<#z0JCzcsbrP#v{BBLd29uKYO+yrvs
z*DQTM7D*=%s$-Gj368~;;kZ6zm1jE|c`Mw=i?z8K(syIOkp4aPs+5Pc5J3+hK<<PY
zxE=|kV^Y|`iFn!2P@rn^viQpQ$^>tMSA;iyI)Owt?h^(n?+adnee`D-7H28$unh*{
z<JmT3Y?kC@i*HlxMUz*Iyq3r5B9F$!(@uY(kPkQ7f(1W#C9fXIV<vy_*<e=2<YU?C
zh+P4zm*oe+JCGkZ9n7g4v13;oRuW0H-a6oy8zwBU`ZkW^`;k>_Y^1s)uhZbjeP$k#
zMA<n>aJ9909a%YGqDbi3u0M;6Gb{u9E|F1dI^PgVu;kpihQ1RE%^={wA1qX-WbBou
zhP-S$C)&k0xgCbq=Cj%BkRJobF=z7F#gm8{frt46fdCBV7wy8m{77lx^4Cj>mK`l#
zo%eH_^zbF9Tbsyf1_k1sFOV`N)9^#WCQS)t3NLbv*B8u#ml<9ev7l=Q)cB^r)~%O0
z)(-Z9^qcTra)F7U;NUwK?r?!15h#Sck`SYCLpvAJL?;O(v=ySd&TXgsBQ(|NUM?P4
z_WFUcyrcWeZD4d^Q&OaHOt;$n$81)ZVv#UwM%c3qTYo%e6085m_sF6NTWAW*gvn8x
zzcL=qe`a%qu(Qg=g<ZMGqlKZI2)^C~7Dyv5a>B+ydmYU>6bRM5dx<^x<*;(?G<owW
zS=1i{1+~$mC#m!#)tqF9<P6#*ZAOg2CQZ6hIEw_F7SFJ!=5{+(EQFdQO{IaoHd?)q
zc0!~+U6-2EihX0II{x|HS!^2z{abAZ5AYOjcjmMqb71RP_87C*@eeW9(rs-r5<CXm
zOUm{mj)T<6f2rGrU2rDu&Zg(Vxj@-qJAQLEBm>eS?6mrQF`mA)ixTYQ)WIh%kjYEm
z#`0{db1##rz|C%7e)8onQZ&NX!`T~0>aQTzLMz`5+zB@UW1O3Q61y3adIFqL1A2vH
zE79KNVK!r@wW&10&H{G8p=`37X&QFUjo++rEZd$V=>B|!*Q`|NmTflHYGV&A-xT(O
z{TDdj%ShqsjIozwA*$C!uhr?6%Zwr)$Ly6RT=v_x1{*~y1V+2RGX#}f>cylCtggl#
zDh~Tr!L247D()03_lozLdxRgmZagbSA?|Dx7Tc?EoX*`{i?JO(*e0IKlf};9D<Y63
zUN3-R^bCY$MxNMc6W482dj#A~FIsKVyf3DT+mYPh2evq+nya|U61C=otkDUp@Js7x
zJv{h&(NPJn^*S2qlxo3vKw4OvuGU{JJGymsp8D_Sfi=L}&;jAkJ^(_ZUh?jP)=*`x
z;w2x!F^+ZcJ~0-QBO5v|>{9y>rpmKmoSYwhznNy8r@VZY|K{_wU>{!`fvH_0a&|ys
z4?yCk8}bl})%I`G_`M<kw+V9Q+SYh+{vZHv8cjSTO~b;0`hK`O>xJT+6Bz1k@M636
zwztB&9;`bFuQCEw5M3weAW*9l+x1h#UND3+xI9?*BC7OWY3d~?2tbG**0r!Ua6HBu
z$h1itLoCU29$N-1-$K8Ov3jA|Zh;%tDsG46DdpjL4P?w2sK9?gEbVJ25SVp;#3`)Q
z3>Tp-bKbT#q){#W`U7H4A`M+6<lTF=W&0bYObpZh{N5}fw;pe7KDd{@kxTRR?7(H_
zU@gGnA-uo$`D|vb$)P|VTwK9MpbOl0i2ZzqY&c=^)^;x2<gsMYw{+53_R7~9!a7BE
z#DAG2Xn8K_^_kEf4u-3;z`u@RmCrWe7U2f-GWfTJA)B2P--+$T=-OJn;`?B6#ROmZ
zV7u(6%5@x4Ykg*#1u-4pt2ui)R(rQyhWg{D{B@v*lD3U@*=-YF=U55YU06Gwft-C&
zvb!y0vw7D&jvXqg^#^TGdKW-0V}<WR(73x?B*rfn#hBavfGpxyVFvK&*-P6vhBMSI
z66N2mLQwb_@Bl=YYmP92AU`lxe~iWJZJ^0&_j2I(f}<SC0fzw|CxDp;{aJhcBFBHc
zY4eYB3fka&^y?Pj@WC+{K`6~M9`4!VJq4_)8EDYyfb4H8n<=~|ix<8hWWnkKIGzL1
zlxqRwhCCGhQrpARtESuTDaF>+T<t*0Ce`F7OW*t=E`fHI@54SqW%1XwlJ6vR$quXm
zG!(ln02Nwlrm~ZC8&`T$v6$gXYNk6kZ}vBNK|)jv4nCk4NyM8u4TCoGJl~87L4>Bk
z+bMG7-(?*I$A0S-zZkPjyuM5v%@dGg3t2fCW0w&dh55>o6N{h^^lV@^7{Xzdxl$IV
z0Z!j3t^^z4n=HND+-zw#{wh%{f&b_PNbVt;yP3YBLuM>J#EDWE<6u`uce9{7&K0wE
z0S@oUwRJ#S=fJ30+RCo5u$-#`;?GK>SAaWpC-vPpDuj(4EjsyP45(@^{W~6Y#heEB
zadqw3+As?qMKC}}MJTM`ykmMraa%x)T_%5@bwk+N*g+iaSi@P7aM*?Kc(;aPiYBVK
zfF+PUHmW$OciWDcfk$H@69>DV_eS{VxN@3)ky*4jL|)`)>ObmU!%p($yJ#YU`fo#b
zLkt=XLqAxPOJXm`RC)wtQ-PU)_x=J-h!XJ-T)aN78299(c`pO+@+`&T9Bo*L&CHq!
z#v-05ZWnWAPQw`eEC<*P_c}6yIDxCs4NA&I6xNK$EHLsFB+?)zK;;G&Vji={4ZHae
z`gjjR@cWoy!9xk-V&WA<nzNr5;6XUo!OK1YEDKhnq_?!iZ*BJnYB@cFE@sAmn!&kr
zNHWh8Z`s1mr82bM%+q4xIL{YQ8kjS|oi*SD&9cHD#RSgjzLvJ0ghcO;Ac>%!42EWP
zuvreS$$Jc&5-6Gq`VQD^7LqT}UBIT*Ei}=NGeKo77tkas{4JCOs}2&X@dYu@)+9#N
zB3+NFJ_E<1e8dl}i|8R7Kd}cEWWk29ZK1E>El}p8g_NjYhO;U_9NPjvnkX!U@1KnD
z(;FyW&#zhA899!}oCk;RJRt7CHf$~xQ%#5w?(Lw&olxE7oZ`TfUKfo&ymAJDh(}ja
z?o~>*BHb}u(jDieyOGvFcQ}DAC0l5;vlFzux%Ee{P!?jpP-?1ZxQm(dz!UuI%YBuG
zAwHXrF>r#gYX#=X<{I`aHf5o77`Q$w{A<K9E6ik{^iyWDz|`wl%u8*EgS#9vIoWW!
zo*bz(Iz&GB3|z%B4PGQpQT0CIc&GkT=(o~G3V%M%Ww8N_KK68dM*#TS%dBFf0#Rd-
z-e3rLDQfq@69|JCLT~qP+P3X}2ky-3eb8{_vZV-rZ8U_}Ru~XOb_aOv5)dic{p;p7
z@tdFtY@Bt~0RYZjERukhUbnjphu9D{0G`E8f?T2XTejMuz(%sJ8#3~cn#jr7n_0~p
zv?!c~0KAE_ZbuwxDcy@u6$j$jslIw2%+rU&XnkpEb2sH~p;`4bdJ#@_nO4w)+ZlA>
zI+#zK9{Vjb&9OSaOV%xPcRgn^poLU@dJs;sEp#%be(Fm1e#qfm1|M(zm}v^Rs&J8T
zRPf$<rO#CBbPmN<?m|u!O$aBiJrE8I)|tCAbCCqP?(d#}9Eu7Nx#vNkTc{!MvFgzd
zUaZ(ogEmv9H61=%c2;}>GX@DDd%v?aAYK7}3uCFZEz^c9_0sL|<sz5yLQ_WolUoTB
zrJj7dI8=;)F*4J606-0M5j&n4wR~*L%^))(+>$G>^@k$Slu9Faf`A+5bZ!mcfL=->
zmRv6o^6>HABP*uT?1Xt0i?e#y64F`u-H<QnZr1pFL17U4qSaJ{(;Pea;2kSy4#dEb
z+>nx43{^j@;zA8YI<k{W^Svt)`TX0UMG+AA27<g2@pgoEX-Z0E@s8d-R8>e5nmhfl
zT9<QX1X6s(wQxIW5UTlMlLl54T;W#9@CAE9;Jruwx^sIc&PC9p`4B5`NOZC31l2hX
zmaMy5JRWGRLwsDfhqG>ng1x^QH%`#6eY+qee<&8sYy)eS;xBhd6KFitwr}bvNk6ab
z)MQ$RbFEhTCe8=IN30V`Vtu)2nhuU;ky1la{$=s8cn=~HChuqLMy9kU=D~?^80+1}
zlBC8hZ35MFA<hTt1$9lQ`5*>yuoy=$!QyvIr||e~>E0{yCtIPRg0DixSHlPajzJP5
zL{$dW)u&s<`3G-cZILs`#+@F>15u7UI5^;S+Qj*z7-<c>YCfFmVFv~Rs31PLwI4!I
z_g+Lsry^y@5(;fDgA%3V18Hmu?|?133u&yAK&j$W@!K|}Z>+;<S0HWzO~qhs;%xav
zkCcAxJ!Eyjq4bsexVx#j5+;AFmDMoLp@vN+iwE0m;)7-4*R4Su6=WX{+;=z}f!MJf
zYU>%U8v<Ed2$AqnI^D(G0ebz|yl#lG*N~2lG}1Jlub4&U?}sBFyP&qCk>1Q6`c@10
zGIFlGJ)-VS>62JaJc7o<r_(I*Z!MMKSo9E=D3yhCg?Ii5Tjl}GEXcNfBy)zwZI)(V
zZWr6U()iwkYzT}<vjNk*rEm_|vd9I3P04D7M;#|cMyJG$12ag$On+Lp(1-)jEEq<o
zuwwIjDA&8{3^dK!#AuJxpwn5E8k8pKL)gb^WQ(2e?52mdgq8c!)V3a<Nd#7jM5LHP
zhVB3v9x9<nkVWOp5#4kVKJ)LffnEeP@DSbA?5z7s7WkvMm`(*c4!sZ4)38Ne{}qU^
zZ7>yjVJDn{NZ%7{|CHXwqP_?>^m4=#^^5}BnOkFYa6Tc!cvUKxOw)F3H7ic+31FTO
zR?ZDbt;|Q5M$ddhy<BB}1_;m&-4Ul&%)4N$Ae9wi0Vj=L1XF@j!EkiPM2{da3wt1?
z^EnutDb#|Nz(zCm^Rc&0HW&)*r>!xB(|64DUl{Q&fQ(H+Yy_Oj0r7Q#GdgKM{PNSo
zjWc&e>yQy}j8^B`_~t%tk{P8F{x>U*9Xk<SObwTh1H9(T*@kC)nmscVd;YTUpM8$i
zG>|6_9uG=c#VF31WwCm*hen+c@+ZP(^+>PtQq>ryWq9He1wHQ{EsCE{McBL^nqEoJ
z%iIboAJR=?tzHCjW~7AeZ1~{|+)pCm2m->A2de{;%LJ=joc+icC`E`Er*XvIBw7L^
zvN?d1pfpP$=Of4WVe~)-j!Z*hV~KE@Ov#o!r~t0engWrr6#LCCQUplLAn@a+(AT#M
zOS_ycdy1KC23-`z{?c}2qS3i-c$oIUQGu!Xb7h(31}FheW9)ymPKI?9b}=Nw!R2tt
zK?jBgslH)XFgpm>ijLNwlneL`Bh>i_fM9@i3;>4#>%uBX0zeuXO1GNi(kESkm2zMu
z0yT(9>yXiiqbXntJ9c<4)?qLhW1Sn63N=PoMh4I%GSFx6Dc#5g7)UXK68h{Ph##T{
zTjzqwB}~0It8ant)&qZ;azVHdi5B@i&gUKJ1Y1dTbsuNHIPhQ?T*z{jw~KQs;LRAz
zN^GE&s*i9w82OMaTJME=VvgvWwFan_XTqxI9VuP38Y;N8i%Pd}E{pqQxZZD&&rlL_
z3meyT*-WBG?h;cGZ~(8$jhl*y^i^r<Wq4y2WrzobzvOHKwDAC(a-~R#`f+!H<okjR
z!$Ec=EpKmr1P7JO>^Sp7L<9F>R{#mW9gB^Sei9p!o>%_;AQs|jnO}^%wiC1Cb48Lq
zNBYL~YGj`I+dOb8=Zep5Vh;b8DXqFLJ#t;jzmDupQPOSdG6k~(+h>WMa>OH{$znx{
z%Q)`19&QvI(b-_2p|CdG%&S0aqkZH$(imzB_Uu5W1r7@iNV7Z#JDSIb^_;X>lyof3
zk>al-QVIt!{BzKP5qf}%Qf=;loG)V$UTw%OgQg5bcgqhs$|1gsAz<8)w^J~=;DLkC
z^F>3aaGZig74PzL#OOP9I;`NIW9)Fsey8q2<XXH9lQPJ%K;T^MVqH))$T>C~$jbo*
zAs2YDfs*Zs?fV-9jSgcmsQmWxI0h1GcgT)X<_;yfk+Zna4IowD!P%YCNH)?Xr1-c&
zK~=?PkiN%>Jj0<|$_Ltn*J5(yh>6@UUK!OZTtL<oM?y|V8REH#ovX2m>2K@^zQIY3
z!%pBBQORf;qqm5pRb8)^{2;uU<v0+{J81gLGK*M=6kMChBywD=8!cUudo1(0o^tRb
zqy^^`z!?jvKOH1x5HeOorpl8X=Xeu39jB|qZ0dnY>0G$0)G)2(VP@6B)gZrvwHxeu
z4&8hod?_*T`5xKS1&yG#WpPJ2<Y($>J_g53uPD?aMzMkolR6#b0&8<rFDIuUP>UIF
zL--KqQQMg7O~-l**(HnPwElhAt>AOs(U8Z9V!TNf=Yu5$!Xb->9!IMqhy$piO_ruy
z7VUD6zqJ9mc&)hY747A4&^-<l@^Qv#-vxHAmaRL+yHUAIx`@#x0UInd(gjhn0CrLe
zd#ND(z>j|lrpqCc5;Jo2;cAaP)M{kIaI}-1nurLlYnjQ>!(kxhTm*++@jnd}m+ruM
z%`o<Y%_3ri-#Xo!bT_bVe?nq*x<mZl@!jn70wCx!Zv<V^F$srF-O|b{tV_+|K;P|-
zhvii^IO*%$@EGbUIaE-@zK1*b=@b5fG^5Eq7e|pKH`nraGQ<-N#VIC}8^;Qj+Pkrw
z!UiTS0>z=m{|0&lEXHi4g>T%R1J9_OW5jveOXO_{va_|cMa+<LuTv6MTzyN7{9s4G
z;(+Kq;s?%$;WnPkiNK$Uz|X{p!U12TcgxrVqj2ItD&kSW?^=3FW^bz!U3Jp5OXfx@
z*0BQ^s`CUp(%hU^X%bYdwJn_ya>aK6;H|APr+0FeBm@F<1a`X%OLm)-cs&mq5<aFe
z0yUA|WbqITFsRhXy@DKxb!GL0;atdRT5n*#Ccnl0X1GtMW9i!(WbZ37B7+Oy*;xl{
zTD|Al#nK!IQSA0uP9-d-;n3>Z0`(u6n($qcFp$ii0tmKh9gTz-Bk8dJ*i*}~XuxfV
zdML3_SK_8ocNL<MPxu#!wr-53ro}stpTRK~5|%xP^Ugr9NLW6OTw#f!lyV?;KuSU)
zQa(Jq1~r8aZ>5PmEzsmR`Reu*#4e5EamFZoGXRt_Efkcy8vK5?GW|z#{PxNIJh=Q3
zM90|;d{zb|xR?DEnOUDNC3h}ja_}c0kTBgAoJ=V@1AERsQ~&*E7SjNrc2}^Wwe^Px
z1g+#?5RL^Siv_7pBQeUh%sd&cuX9*LVO(Jm!8Y;jY|#<)p9B+iNngX4Mtu8n>9%Ho
zcKQ|f$3z^I_vT$LL*^{YX_klq%X3xF3U9&^n1X1l7?T<ISe9^QwqfJ8Ksyl~J>sS1
z^1j6{E)XRwZgi{zN%iJ!*&dM{FLIYxPUfV`3-C3_Z9#t%c-SQ@JQC5_I^4xx_D@}W
z$Z{Wz1TxjSWzOlZGE4ban7&6dwgml%8mlVgF7``*3IhT`KS;jt?hcJKE^34Poen;P
z8HWe!-3S7|hR@&3LS7;^3#r=U*jLwt0EZ<plx@PovO)ukz_JuJB!`JcKpzNYL+=T~
zJFt}QtQU!nE=S1Ef0^CkOGi16l_G1gSuE#R_SX7l@mlyI&Om?Kc%&M+?3@rfRBtiP
zSOBvKnh!pnvp2x1$?y~SKu-!dqsigjwUo_8*v*C$uwz_sT)owii4*fc4cJ-W)?-7v
z5#c-Mz^z3(1|H|{kvu?kPC*iTo`Qs`*|G;{6a=1E!%peNhihmwlfEBVR&t<8x{o$o
zJ&vJ--hNg1ks%5eh959xu)hI&J#fvL1(sOyW#e;5NQX36hjn!H4nyE#aJNl#hkggY
zo{JY|c)cve!@3IwWn^ZQA+H|fX3U&AQCL1VB~HzdCR}=|0qihtI{lY_JE9h#>5c~R
zq%5BFwyyMgS9%bc*4cFaba)6a2L19pi|rvO4ZQByCSQv!2YzQJC`f<k3I3BwaWm*$
ze+$s=Ip0D^o_n^&XNj{8X5Isw4{;j(EY^^P-XV;S!jH~h#&O_7F?vG!FEGfF<(SFo
zrkqK!h0RrjQ3vg0;|jW54I4JoSYqB2mqeZy@eQLBUVOU%c873aM<9SlTY>EpgV46%
za`TD(#SN9nZ;R_~7lHXmN={((9HMtv<QXeiW#5RzR+z>c4U1Xu^3e$#G?(8(0z;Tm
z>~L!@&OSxR7=)mZLnX*r-Op)vv+*eq+$ARHr`p6jz)&Z8yb=__dmJm^e-6|ltXZ?~
z30Aj<!VM$50ffi5U_J1?8UH?7yN|rNl+ug@V9cR62dDdXiDeG~r!KNmT>Czo)a&t4
zA{cm;sYtj{4xr&93^<~8wrl~@#LDu3IO|!;Xg6rDFj`i_PR90jgvx{Q!6g(2muxnS
zKbW!uHd|;GzJ}6<V;7LmMj7slOBk?U;KZ<ZI~YHVGkm@YCnY#Z_`0RDq0%2dx{e3O
zQS+8XB)=Q?H9>!<X#v+4qspZDUxa%=2E`9xnWEo*UNC497BnbukQ~f}9TApO-8*_@
zq-YLK%ciwJCO$?Ew}|e+`=_vCz}Cgag+WLdq^46QlgmuUiju@<5-sJkqz6I>t))T&
zVs<=R_C@K#o)m~Fsgh%XlffXMq$ielK~MDs<&K~iym0XOR$;<Qz71-!2}{rCSU0de
z#34o_DXyy6gwx(Q12OOf(wfb`T1xBi2$_6CTu60>^R2}}(@yk!ydwxVJ2cNj;8;ky
zc%d;~@?S?-lRT+VChLnG&*8MABOS*1_AE-ch}4!D`~i#^IF10aECTf!@j)zn5Xvcc
zhiGjf-DO2;c#w}s-et|iA!o>hyQ~>d87+Ux5YsZ0>=CcojWlbdEeJ;|`)~X>aOish
z$RHY}g;(--BQqDc94Zs{=Sc~d9&Kd1iNDar>g{nbT;q-id#Tak>mZq6B{+31dXUj`
zu9=;x;Ji{Z&T%Blf6kuAV!lD13q3Wlo2m<$)xaN*!<&@hYOr)P$aMcc=8BPer@5>H
z&O-)SWiC6WTp|r7&X*=;_E2F9pWF7AT<%7Ldc<=mZwt+^ig{f>FPRnyU}I_xRUm`6
zcHrl2W@Ct%PlGb#?)br_Odvs>0Zznbe2<2^fR+Js8{vW?^XzQArVNc84v3xMA1l<6
zE5DQkhWwQZ*fYT(>me#A+z;1cLRsLGvgxUlPfbQ5SgbSH_D1J3*|K;=mj4LkO>hMz
zb4U(WS}<?IF|qb-;O{BeONXNYj&o@n*gjiIqrz6sZ@dn;jyPl!XZ5#vi!E;CZX*Ub
z6uvuaHbmbOTVWo1g}<SmPl!*z421tQvnf3ynLTns0NV5wX<zJR?1kgwCpaJF)aL!<
zxquJ$O$#7aQ={v_$!laY9NKI~rtwB|2U-XsQv+$c6QJRm#mhKfx?4``{$a;+qGL*f
z_qm`x&M2q@VFEd;u}l2ch>zg3iq(%2oyMogAWM)92A<OqY<nokVMk765|)OxWf7x&
z0D_54Y<c6mEb!@;FWrKys#-TJN<J^*FZ+}78%PwJ*dqy+Mov-uN1V=yZSKfw>ww0Q
zmScG|nZp}noJh)BBxl>QGG|>{;%%6NnE0X>;XMaIf7AUS;*`j0*9VRFa2EJrXO59M
zBFszgLb%r*@|=g*48)=IJOfR)QZBnOF@$6mj_klW5rdBwi2Xg~V8Zt!n_og~D)eK}
z2|{P}!cvWcSAOK*V}veoN$fu>9QUWBGMLG4@{8^l_***cXBiH~Dp<A&hSri0iemU+
zf`|gbEd+(4EN&)F=HPp1yHNvA%R$6~CEF!2G217e%t9uE|KNdx2aYebCGJO@JNDvI
zII8s3TN58Z$I{)GIW?;aX-*u+71O(z7?B$_y)lE<T!m8~AI-6Z%3cH4d$6r3eVNWK
z-m78-h4c_cHPCk97ae&%*hWJ!8W9LI96)B9EV}&xD1~j<n9e1Q`2JUza%coc>ZWrV
zpalvU)Xfucec+|G{gVC?7+E5|?6Y83wY2VfM@wEK7y~B<6@S7Fj_WKz;^6CI#?lUN
zW=5{G=yH0KNAg`pe6aoF9sEZ=AdCU3_>6RV5HTwz$j3SbrMEL1tn-9}sTCSGh!iGa
ztwFbx2BWgtydXVufjI;EejCJ7{IX&Y7<&3ncY;)Y)%K<(2(LqUb*5v5_%F>oywvg=
z%pi%U!9O^h1SP8xxP!xfIG6^qhOCptv^KEiCaOa?8_H#kyG<-BN)~4jEh@CycTJPN
zhO@JsnbK-LK&ykVq`A_9KOOj&)$tzxwt3<I-FAE%YhvzYABESOoP{(4_E%8#&Hxb*
zCisnqPYc3*iH=JS3U5wTTYJzF3^v1#uG$65rv%4<CR~bdgk;;z=_Jym%gnhFpnX5z
z6il5DPa3dHoc(o=7`GDpmIeI*6G4{lD8`Agr$u&KPF2+ttRNwm;KFSFY~XO{bX<$v
zTqw|Mw!S%=51(^XG`K%Au?_N#KadA%=zb_i<ly^2``|Qz+<gH9V$~g*4;;Vn9Mc4d
zhTTu13fNz~gXwPI>3}7`pI^f>{-O}_06RP1wz{P)v7sPV4CW&E7+k~QduDoLIFYVZ
z6mUd32_Xl%tvA>zn(&p0Aub(qma_2<l#*dMLyS*&4cCjD#}W9fK$gboWd0rku!E2s
z?m~ocGtTnCH|Jts>fl3#{3a9xs0#<nfcKB;q<>{b3+=$|4k5;P8eG^#gAjAq;Q&uI
zJj=-Ey2$TCQJ+LZdaH!x@o?DA#o^s#E6~$I546xMJ%7Y9)yLi+`4D}RgR$5a8;<3y
z(m4f{Z{dnU<QLuT3Xt91xfOw=pqR-%aee|vI1UHk0^ao0dOCoeIunj~f)$X}V-qtc
z`=P;LBeBj%*#IFy<!&qMM7k90-UDqo^H$!$OmY%jd%KUf1%g>Ujh(_|EW#I>bQosf
zc?Z(}p|5~TvPFe>!5TN%|C)zMEMn=17>9$iI|KB{7UcDt0^biG)GFjuVh#ZLvdi}M
zlw^X*SQgW;X6P288qymFUYsbnMfmp2;Zv_Q=IPm%u&M(BelzBT94toect=of*q_r_
z+2Q4Z2qf09ccw5)e$sKE?f;PX?(tDo_x`upYtV)F3)XTA-~=Xu69`Htz$9@e8PqdC
z0yz_y2%SJs9700U5Q4xYfZ73}dcq}Y2S~(51+@c0wLw5_pipg8tUajE+Gz3AqQa>S
zkVu^8{oNCyz5Gs}*Ylizp4Y==X7*?Az4mSGwZ7NS7Y0%>unB^T(DMQ2!tM@Cyjyi*
zHqIR8(NuN!euy1No~V353@*&tcq!Z)BlBhj%o*ccdm}D$6^BBaY&vS@e58k!{85C8
z%ltWJSro%=VkMC=w6-MAXIcCiLU2*y&to>y&PRf)qP+D(b&I)m4fkE$_YPg<OK!19
zl;8EkHhP$hm}WJ1rGy1IzoNS(V)cGjEjzBR$(0*9sa}oY7T&oM&#&t_l_hy>ydryQ
zkK@oMR0wO$UWUV0FY<%!=i8x&^Y#!rB{vf*AmNw+6_`VUzX*uE9eAN;*Gt+6FF8QB
z216%zm|T10QF91=n-;EszAYZk%{_l#Xi`7W*F>XDgdi_?mJ}}Dzd^j4k(T$7n1b`0
z^xiWXcB#Ht<QwHa(&Lz+h&ARoHSR6tdR@jQl(JUR5F6y}VZ0rGjQ%HD+mTj@!D6pw
zHIsM-Po%QeH0jmk#$mLe0VhLH)0m_H;yEduWv#(QgR;d8Lw-DOk`A0ShQu&k_(Fk@
z&sP;A<ilGj)VQ9K;NvE_q>FK%SuUBukta4~LN`Nb`M4u`J~Ly`%wn5@^_$2aC{s5c
z+bl|CXta;v2+IONiiEKz`*`A8m>@Z1XpV1UzHgYUx^F)&kq5ZaoSmwI6cA#q8zQYT
zUIw+<7HZPY)tDUzpOYb{7XfaN-I6laCK~3oY_sX$&TY}x2rne)Fk-egsilqdj_6TL
zFV=*Tj2ro=#F`WH-LFB$C{-nv&$;OSxlfA|V1R#^x2*|9{M`NVDd^s0Lbs9%TDeDf
z84`mC=?oIn#lt|3!57T7OOnN>QHs)5B_cI6AH*+?idKf3==~B3R=Zsk-$lFS0bNBB
z&=C|7`r+I;yxT!_H<kf^uvO%LqM};4B)qL?#EW@RdE@4g1#3ltA^g|6Vf86v3`4Q#
z-vY_4SeiDWlBMigC6^ql)_spkKSD0VN*A1;A!FAKxL@Zrmpl|UA9wkhMDUZTl|kw%
z<cN8jo2GpciH4hS==+0a*>)^$q=+Z0frzD>m~x27lyPH{Zu(-3cTw&8*$iQ2yV6Bh
zODIm4QTXBparo4hMV=s(A1l*<V`3R=Xsyif@5G(yAWRq|HbefMUX@I=7!Ht&$4B+@
zhO^?7!QF6KX$(Dz96R;bi+FQyU#rsmu6szv)ylhFjqwMACnVBryq_G&A_)z!tF7GA
z-{T^@Z81TRWxPxtBtVDiBCK(x*p#=CDCkyCVH)WFbStJmgd0eItI26fWYp%aKgVeJ
zuKci7Z{{YUHJY{hVT@Z4C`gQz`ZKPV$7u>f^pHamMaVmo=Y~R7VnmYIu@G&AFO*S?
z9t0?0KgS)soxm)QI$N`tlsEjGjELP~{URvQ8yH8{7LXk!(YDp<l0%|<Mw?=_`Z*G1
z?oLDkm~xnilP0pww&>r6k!U2gFME!HqxQSo)V*tYOnN2>PI)T58b>Ho+6a%b$JD=}
z-$O>=j&@&2dE!)bh^Rz(Aphf#<++lR(IBzGM1YOxP<e?mo3ThlI99QDm}Y~Uj~?Xp
zABf5G2wlClv2m-q8aVj0uZ6_B)#X_t7}0mIieE(s+1!{~`I;D5uutuvd(ycjC~jUj
zX1F`0qleu0aO;^0Upq**=^PGFuKGx?{Uz4^Eizv;MM_Js#;Dm6b|nU7nz(QD2dhcg
za7TFTsh&Elh1mj6C9GK{2N?t5whHM1=~kQt-EXn`@F*F$h(wL*Hwx%eG9p&zRb^-h
zgWR#Rywc)IAXJCPg^!Pcx(c_0f?g3_iVpu4^n+$(D`Gom_Y9)upff}+n5cSDZC^@u
zkS-tUt<~mRT<jSH`d57|8Axv2+k|~q6wLKZ>n&T@ky+mu(^Y^DsA`T!Xc~dttc@(l
zBBHGH!Y}lYoZ9GuEV1TZ?6=-EY<QP-aAB?;jQ;`M>f_5!YY;^g^MWu^_U7#2Uv?CH
zfic45jta#G1JI#tSb6dBF&{z=Z1KUt`r0CXarj;>F4+6r=`9#^xhok5GBa98Qi|I`
z_gNNEIV|1!(7Yh(?evoGWZ_PUh?WzW7K?;qZF*V>R%YJfgyN&VrdD<LV#1%W&sGOo
zWWd4#fu$=-?_I*(x`tc)0-sgxI^`&BecX(!Vj!vDWx)+>e|Csil!Cz>QC-J8iaQk<
zR|sH+A{3BIa}}Y(Exy1}p9J`e>8PF|JP@f1?MO3jJ4@D4n|`@O6>qoFWSDk6o7#Cs
zSd`uCaN%lmc}tmzkB=Aq^5V#*S8@=4cn!Y0FZwhlQDtoV_}~uJ>qMZ{$51LZ2vu09
z`-j?IAnWVex|W(^--1n;{+fBNq2!$^y&+P9@<a@f(GdzYkz$8M$o$YGDJeLA5N;il
zIi{(Juq#g_a<VN3J;$3eEBWW4$VH_)`R5edgZQ-@2T$`pmqA(`b}a^0=_L_7rT7}e
z$y+?^1oLxknfWGfSdb<XgZAwi*+$w|X#U4VCouH@9&m%$oMj3}sJaSekZdpAf0K7?
z%K}Js^B9CMV=!0Rl?_W|V-y;O)<6x42%6)Y5$J%jGqTdNpF)f|p~IW@wvY@{{ZJHz
zr1Y0x)Q~qT3ER$ykGY?mo1-l#1V<!N%QISyN045ztw8QlYpAAm@6&JUSt9;%3lpUi
zf5g3z_YZ$g|248t|9#eHhkOc)0d^)HJp4-7b^CsHQe&(T8kb~`eBL999}nYXtcf@z
zo{Mm%$Q*U*B5}TrnuqNyRLe{kj0B_6Kv=s1?N|=$pJ)Cc=Ag`)r7rdiYTq-+C!#C;
zW|{j}V&mu9EKL**)lOy(_FO_MS=l1O?{JljiyS7v=+Tck!|{;_QH!0w6^CO5Itimh
zJ%nI>&Rq!3-Fpb6uW=V_VWHX`&Qw>Y+O?0wGo0X!x**8=24z%YglmM(Z8-93w3Sm0
z#ZUDOPF3Pdzd6<PZ%*}5=myGE%S9(5k+)C@DvTRrLt2LD>vu2^p<wkZ#zq%|9}|a~
z*l1KHER#ukBzmo+Vqj;oIbtJfpJmc#o^59gE2p|b6~oDF_k5XOjp1j^nBF~IB+08J
z`$eMpvf<Zr=)T#Ib2gJ&KpKI{?gZkBld#G#mo3WM%v0Gdw_s^wb^%$;CF04LPZrdT
zaVDZ<>4?2OQ%GDut-I2ZRiy5Hhxj~n)R=MSSpwq4WG9A##RRkuJOW=Gkw$PDkke8K
z51d~bn(hu}YRO}#(-N}?AqGFbUzno?dSv;<TK9A6*@Wsy#IBtqPH<|RKY?((2)6N>
z8L?FKCmRX;+(X?E*(|IRX|o}59=ZToED2k&NQ;_KB~<oSk2CzF4#O5q@<gK=iF8z{
zH*dr533X5&UV|pA3(QB0_p8d?kllu5tQp`B5(c9@2P#(?V{kAqB!qbu%Na??#z|H=
zoiI{_bgjN?eJ9qZgcWsl!3GI6z16S0dFqy35vV!nRTmQAd%*(Xc15k!<3AyWJRtQ4
zkezyue-GgyPpwKonpk|=cMxsl8M(zIE=jxuT1W;n;pQ9(#VF59wHGxt`2xP+ih>Ms
zRAwjEo0*xL;4@-ok3DUSJ*$3DFKP#o9-PG-A_9b===YLQW-4ccfEO2cXA5!k1$hB1
zlZ5?W>d}PR?N^fFHQJY-t?i@?4UL8H`9A#?QH4In>@w7b(fOO0??=-n&NngGkrbCu
zJYFOXI6Q7r>ltRUHV5CUMQ~sY5=Z(xy_y^8XeGVkzOoeWJfV`2H+`7wflP{4v`K$%
z>P59pO#$AO#(DDUB^p08tj*ZuYV3K@mRpgm(;?1S14j>&IJT`>*cYD{NgMlwH4(N4
z8MZB&m0LZ{o<bzw#WLKIor;mjD51T@$-+WT?$W&7*5_$H(?tw#hy-KC*jO-Iw>qLx
zYn~91C)OS(lPXCze#mJjONXNuB7wezDWG&y2r1Mrbfm#yqBlw&`Y@I5F?0Ck4(6<9
z+=@mXn^w{uAw=uAC_JS|z))!V2Tv1<I0P9~rIhhj#GYT+-}pVnEuZt<VKHJ~u|j!|
zOW4G%9v}8*m=RkuO~NYn)y^5I#*Md*B)qCZsd!utEkY9^${e43VL2nW%5c!tUqJ+A
zfMXR%s4!aD^6YfwnZqt3AWfdbyO%sY&?+hzXB8?7!y&&$gcYI>u)!`xAbzL&>|}uL
z{+(G#0-#&S^@-k-{Co`ORKe&so<Sg@10^SY^YZ+a7#>8~G5QL79`PbSI8KC*e>mf*
zj1_%&<?xT(;0Uh>+_Pb&&@gbLIEm{CZy?6Elw3i$QwKWW(2)dTk!m<*{Kv(fd6L6O
z?1M`*t0h8(pyqrsTz=tv5Wb9i#DdJP#iC)xn<aLF-T7Th4$aMel~=D^$5staf^h3$
zd_ia|p=428mokotz~V^!Ks29Wr*Nf&r$vpw8YG?}4bcOkQ@ckZ--kMK$tEJMf<VL2
zXeL~Lda%Iws|{jDjZcUuoUn_v3AwifCmP!gwYXDFU#o73Q_os~g_rsnmgh*13KD+4
zUEM-{GPJaQQAX?*|MOth%->#-rWUNk>M)Upjv7Kc+q>A6k8+-qqeHU@HYuWZi-T;!
z#qdx|K4R?{xnINpA4|Y2YQ=B~3F$smNU|Z3Lgt7jAKX$uu1ONRl;iyk0atA}Vh{Kt
zU&#Q1Rlbp_Br)%2ufr0f&9m*{C@%riY42k`GlYCqYI?oC1;ZF%9qQ^8de_8e{l+lq
zIw5z+yN27jl4jW@EQSOjLPiowlw^vRqu$jK{m7)xMXtc==rWSJ#z&2GB2>;RtTFfH
zP5lZ}3Xj8nLYFjW>qdtj==F|!9!KVAuh+#4UH%SyT!ch=?OrGaW{LgdMn~F^=mV40
zU7zq=B*n(?PZZZ9(dvCAE$N2p_JeBnel?QOr%AVtb+%`FS9_n}1+Q&9jM1?{d~DiD
zud%*R^FvR{1iYE}FQf*D+fW)pfjUfn{mvI;6fZF5p1&JgL%3+rSldYTml+d`)dt36
z+bCm|p~^agP0NM)+rWHI&-0jfm1G3?>6CWN%9C~F+I}BBM$acDDr)3(y<Gmdcd9rH
zIDvtBJ{3=fOg8Z4b}|x#jmce4%X(FNoPap4AhfjL#c4mAzT4l-L#COtlqFcqd$v<o
zy$lm~i9Wmf;FPLt$tR2d6_3PCmgQZ>&ZLc^NX>3S5*tH`{3i?vZF<B*ffl-f?!Te#
z{S6BtKbr%Ing>shq)m}x_;}##+tEzZ86+HjRB-3y;OCPA2;2PMmvwG^xkz`sfz}0E
z(YEr7tEovImadbBW_<hCeQ^hg7~F1(>zWrnh2Z800U~EA7owf%=shHIGTb8!REyPa
z=^W%$50>y%i)t%ZgnR{R#&#pQqndb5s6TWlGpHjKnR|5IRI>t)$2(l+F@Cvqi-dbz
z!YG!fKa)E^t}ZE2E-FwxZ88^zMixmjYzX6knAsU_DiU4#VX@_i7Z2hUMjvaK<g>!<
z8p7WS3`(S*i-~NZ+ekYn)m9Kn7rMtKUiiBJ=I?Bg!w8Wd-0@tJ+2;HihYnOuoX047
zgK#s~8EG-&wwQiyeoFn01MZ_nO3cVRUyzcV_1KOXMOm+ABpHLw>#MV76lE;T$b1}Z
z;lo84nZ}?lepZ+>*CU$Lc1C7C@>%B02gFliYSeXf&~LubNQ35%X)s<Gjxnf|`{4n@
z-Jtvua3QzWuMg&7mCD1L#6OZC2l*n2nB#vTk*tSt_yt$L^)h5QRsg9Zl$ipLO=yDH
z<ZH{O0@_Bar<PJz!svI7K+C>FeAJd<B}<Gzh>1^)X*GG{o5aYLWuu-{ts_((<#4sH
zEv$W&6yYGCu2w{i#MYJA;DnWZC=8zY_M<vnK7VafWrp37PANS@x4op)7<Jy!ig)RC
z@=waQKWSzb<WDI`C+(7f2;=K@C!}vbXs>+SBH|(}WMlT$buz8Nk;=<5WMd@qpqY^!
zSx&tp$w$n7Uah8&g+p!}OcJ?*iUob1Zn{N{Dkif;{e`J^Wv%;RrBfx{LLGrS)C$+{
z4^jD#Mj5U%aD=Ow!fB97tSe@mrH9q9@z~spA#8FhKP8|V>c~S^1^d;_so@f&X3EDL
z$9hD{u_#EXl0|?(gAiVRn3VKXSutg;>R(FTjGr+;lM^hH(_r$`3frhMvyNz;6^iL&
zPM#W^Y9*~%scTm|*0+=(p4VY##*<K}x+I4uCWUbjYDrD*Z&{(BINh0mUcnudq=j+n
ztx#uM$@>^ndUjlod-c{>dx}s`l+g_^c{kT4wx<woVAa{7xv?Ga?5sT_?-H2>eK*qP
zxprzysCS4!!d7mSHV1a9Gd26wLr621oq)VOqJ3@6M9%DIoQGd~tZoie7U?2A$*eSH
zs|B#-9;0_yG*=sFb~BfLS+30JS9`D#6hrZYfNSXvSUn~2=G3<!<bTOkm2KYUkyTK2
zqZp;YxJ4TNrw!nu`iBO#{e6pn3#_X&zHjC9F&g~iDP8CJc6$WZ#ZTuqoDLZ}oQ{^$
zk(9vyd%J)8*tGVyi*)D)-0{}=N-_ogyO(DMQ^;qE5K_4fJ*Z6bA?WX~{03jTmgII+
z4jx05BzVa7B2>!m*A@#SCSCUizm6J1RcZ%$wrA$GquviBAO@S29<+}bZ?dDm<k9|~
z$NxlvW1Tcp#xsrt3A{jKD-6eQ{2jY1j*Bc>xt{}2ErkrT!Wl#iZ!AR2tZOzNNKj;!
z5khode1pr1rB{_9(37Z!TG0)o$?#9$UciT~w*Dtf#^WXAscbZ|toHH7|Fiai>;Fkx
zr~d}~rY%$>$+G%?(UzRQar?h$=I_t6*T!{npKKi>nOFb)TJF;~Fpr<UCim%*jU<3u
z*YQ7LGU1U^c8T1l|GEA6efrzB;`iwS_Dx%aM*NTG`mfuP^XESO&&~Y(o#2v5%DCFE
z&M;|jGCa(7SEd@HC~wt)$)BOjaNMOHqRXC2@EpJ_Cs)qhT3VQOP?pGRvIew_U&<1_
zhtCil6Hx}mjWLMLU*XmG-XRL-6)G8~$WNqGLxL<U;!Bem8dov4?qU=S<vqdw{QN0X
zrsgAX<YPDbK^{g7(eHwvqCl>Z3FcGGRpC&wI>(_pnUELf*=|w$YPJ)}R<3$sS&ozw
z8o+Of1cU?hfN%>jg&q^rc%&$B*BGb%Kod&kI9fu6k#!oE4t!6N&M)`B$pxnxrllqO
zjZ92T#HLw%D|qO+Lv-ZJw`~qCz&U~1oX|ku61zFcHJNW_SVar`M!z%Nzx34?exzmS
zERpH3zTq8$`wr%3T0^l!$_lxI>*ReQc8pm~WT$vGha@E2LS$-SE@rKSj#DkT{Unm)
z3cuO(2qri?A!L*s_^!Vxcx$PiB&Llki-!_<R-PCn4)80k#Qlnx;Ml0I-%Y!R<mWa1
zxHW)?>%Uz*^6f>-!24|gDZOV`;tIaC#3@Ix<B8&bbAxFgyWQ@Z1eFqU)ba(!bOajP
zt?DsIYTHR7>i(A(Bj2+7U(fIS3&^)uvG&4Vstmgm!5ENZJH^M+%j0o*_gK0Ua+BEM
zE<chX<M0yf6PM>^NXl_P@xWMMQJD=jZzTp(l>G!)f>hsJNMf)cc)TYJ=eZXiYNbX5
zPOO_!y{cfly2)>(br^d{LrTJ`P^fE~$6yPyM^M_b!(6Klg;$a7+Kj*effUny86pe=
z1NomqTl*69DcBb}W)4PV!*Bi$daGw9y@il(!i_Ou6&S9wG79-IjaFmoBjy(#d3TwZ
zr4s2Lb1GCYj{*P)o#kOxM52TUmP)8^3n@#FNgj2P8wr$NW&0jQ05AfT6RLrmo7@=K
z4<W--j>!~)oQjE^J!UxYlFq{PXSd?V?<=H^9tLtt3?wa`PFLB9nvBRU)=)nNfltKk
zTJugG$vV;&x7H5@f`lD}15@EgJp%bps0?<8CNXdso;MRkWbEC6OJX6OI`~|L@WmK(
z7E?(nHy0V>isC?6T@lmanE~N<#f=ecl2_<b>bpSLg9m%+TIIxQoJa1muz3(F9Et>u
z(Ps#{KT1zyd#YWz5ybSEBB6`a>~r^8)vwq`J3oRjg`q`9!Y6URO<>g$Vn1Or<FS7c
z3hMc_Mg|=+i}TFpK?Z#btFm7({_VUd(4KVBTGDZXlic#H?dVKZeRvgbJ`!moGJcI|
zW`{AG68JEeyO$YIwp03-YjC0yX31@?Pzwn4KO*mTC~tvEAwFAs!r}%<!yhIh^l;R(
z3%_hc<(@JZoMGsWtjE8$?I3YG*z+P!GOh;o@=05XWF-8X@ME#hE^ahuZzU~capF|v
zA{40(XHF#FY*oFEMA$;@Bj6o->2~a;o-roo3#|2Ph><q$h9OtFKKT`up%{6Kgl>6S
zb|5W~Wl4<1$pBJ{I)wS|=Lw$Mvxg&(FuZwM%chucR1qD0?E)P=psvadR-TMTqi@X&
zI9ppWa$F9jbNiE7EjE|Bf9YD1|2{klH9~N#L?ib~UF#fz*{RpINdyIp+12o;FP?;f
zK*kkZjy&Y=Iu^@_2b~|ultg}uO2{cyBtJRTmL|c0mUedT89W_}k5AXfrNX7{km#iB
zH4LeWz~o-X!Y`}R<8Z2(U-BANVF>s>=I2~VwCUx^&XKT&Z4%^Ar#y`+9eeg0tz<6<
z=NKePA`@0h0Z&+aAP0betME89p87+z=(I6NS{j0+{QU`-n5xjb$w`3(>{fJXv79o4
z)h5T0Bt6&xF`HU)Sn_wo!0wkCZ8xXhG%{Pb$!n6uAwZZzb#kGl`+s|@5tyUMryuD_
zmXk*Gt4XGFC*y2CVGQUbj_tlq+gS9PZ2_IX+N)<)ZOlmWI)_iDU+ai#9#O^X*GGMo
zx9DweMrQdc=WoSphO6DO9AGn`nAU>Ad<h2+;$~aFq0$wS#K#5unfRN<hyGpvrZTME
z`oLCvK>2D2J``K&^FxMaWdvGk^o-#}8HD%awvN=5bF<VnyD&1h*F|Np;5k^IfzSa)
zmkUeQ=IwPDvq)%f(DS48)j;4N_iiJD=gJB!m_f#A>1EgLg5PGRQind$b5{##VbNjC
zb4daFU>OybxZ6%dzbp_3!~jooB~jjKYBE8^4ca+7@|oyQGnsvc95NXUNemX>ap<k+
z8yL!ogTgrJ#vMjpJ=S=7fiGu}#4T+RGj)C*x1yvj-eL{?fEasj6_4q^U<U~X>yU2_
z$!twJRG-wOpnbUb;%nT|W;q>(<=JJ`dNmot*Bw#!CT?1oF@+wXPeQM4`7kvqy}Ld7
zq_3-hh>5B^Jcx`Tcjs*pFDtesL?IajM#TaoOY<s<IDfHYJ~46g&?+&$Lh^c5YLZ%X
zT$J&?8>QJ2+2m-v-p0~o8qHV9`$%aB&!5dpXQnXNW?E);+>@8Y)HS7T627~aXlkOE
zWc0nVn240hPN6l?8`ZMof6Hq!mw0fa5@r2HYR42}awjPG$Qn(`f8{6iNlmh<B4~MW
zH`xhE1{T@L{A9JHQ%rAvWNHw9FS#A}^}+ANXuzC`f}<aWwxvv6bL1qyADf>Q#vbwI
z*?XXX_*0VE^fZ<}Qf*5o$h}W+jNl0}l-W+$D<2t$-DM+}rb>28fgw5<`N-EfD(AAo
z;FdIQ6Kq*txZuHn6rd#H4G{^MaB11=Dn-nvA2*k*W@hWvF;ny~wP-PfRK$3bD7sPv
zS9rL-*r)DZ$@EdF=B$JSpi+!f5CIG<uB>|-Mv7?=bwNfZ^G$yvMdfy4=6I6`2O__#
z8Rt)lM7Tt1*-$`F{h$vMoF0ZL0s9_2+81pcV{aWXl&}^~WsiPY^^S2<2<z6Z;cysk
zlSAHv5q0fGoU3|l$vheQ1Ns_0Ox!92i}dPXK)IUGvkf}1H;n0U4JAls!xs-fq*b6}
zUUJ=-rpnr<+<TDur1$bn%3@aL6}j4^%q%I;GYaCLule-M?tjM56A)=+nqR!%62beO
z6+Hx#$pklN)`U6i!mifdf4l1$3}NCa`b=FTS`#<G_-~}7K`{%bie)lvWZTT;dQYWf
zUPlHQiB^i9#3kcjC-{<pEN56e&ozTuroa5qW}dKXBm>SE2$ec;5LCBHPIg?Ptfe$N
z7Y4!8cqXu&b?uSB!w)}!(Wyj8GB0;DO@(_kAOVxT{coga7CiX|p4K2-Hjz3NI&MxU
z4g`L|HJhWhajJFEenRE8J7r+#l{%70q<M70HJDzE>1X4H@9Q1p3YeMB)~yG0P5MZ8
zRz)^<wa^#>jU(RNFdS^?M9a3%$GioH3LTdB0z>XV@)+lu#*JOet?!{-#AdUc-1W!q
zZ-wV?9wG+{1)+m;5f2z^U?66wX~S$vLr7e;_0#mi!6KI7MIf?6Pe~E{sD3^}Up-Z}
zzl2zAUJ^7Y9T<f`Rvr5^?GCP3RlP$UqD<`yj>yc>x8!R=%c1*c>?qLJ5_Rd0WkQaI
zy${i|7kZ|QB(rW>pT0F)=O2A!sBx<>aUcsyrPfq=w?gjssu1&QJ5T7V%h}UYfT!;r
zHS~}!fi&R6+B&#ExdQqRA$|yOS2Y+@=-lSQr$i4x@cUj26E6YYO=TbBF*m$jqMd$^
z3Ms|}fn#NQs2DuG)I+e+jAPk!x=MZL6v`D{%NCChYcd9R4jXgmS5N8+Gt<n^c%5d6
z6LEGC%G<E#Q+f3-cGykV=C@H=c@6QFEl5V3ANw<eRr^T1n~g6Ima(O#u~AhuaskN$
zxu-1$PLt+S!Ch=0@wr%LuWg`0w~6OmJwfJ#gcn>z<+E5h1ps-fL4AkKP4uiUTM9Se
zP6%szGgF6tOkKW@J}h1Ja!1{32w!cG8MKf9MR189;hMr$#0C3F&dSS=JjlFBa1!}r
znX~K7q}Bzk6~^6PDHlg*p8GjdMkxl?r6~q95FKHCr^LW0$3hhG-h?7;S4omhw?R$*
zM5Q{6@5i_a`sx|n`_k>AqR6xb>$)7GZ_H&z0)bLh^obf&+@w|D6E#@AzyFCEQmke*
zDtj>zJ}MC*s&I<T`GEs-w-}p^cwBm`@pVF%9;t^<or)@4yFWi)EZrOA5V#+Zq~#7$
z8HGY9B0IdchJXTw>(<hyX%E!$9*5KPb+I9vF(%V_D9@G3y!wu)%1iTprBY=WL>xqC
z;wq(l*(G#;i2;j5XTTX&mXl6_4EUd~KP0*k2HSfOmGDI-uE3fgXAl?%EzBV4@3+^h
zwCc&m3ge6pTRTfl?i($_sv#a}#3*J?H+ZQQC-VTbcsViuUSItXMKut@h2i8HNG}V~
z#_53+qSV3WH}RkSMb!{yMR*Y}^L)fBX9+U`vv-Yt^&CAkUj(aHtc)KrpedS4SD5yq
zv7VfITtJEr8h9<7M5epUh*XRT2Hsd539ru5g`_jxx=Q-#rJ@H6jNMu^DKO5ZD_eLt
zHT#ozRgJ{2NC{uH)iF4r`?gO?Mp3{uNCjXM_B-AaTe|x5QnGD?J7}{W7pP<?*cdbc
z=Fy(2Jx%oBPzk#sbTH9BpF&DJZEm7fj2h-Gc(bnZl;taOORw^{D=@OayLG7tJ<FYu
z$>>6=GgcTJ+{hl+`xgrTWHL8!8n3-)mBXi|;?(xfEl_!fv*D0LKp+9<dze<BFuk)N
z_;#x=<eM(W5Q*!->4-aslu<r^kodY9+QDgFt!M2hX+jQXyt9qRvsgEjj-OsarVwF6
zXuH?LfCV492X7QQsAq~Q6Jjttu<jhQVhCN0S%DY3FlD%VddhIwsFz=sg*vA+nc!$_
z8}f@lr@Se)49I>6tqi|$Rw{eH&TH?t5@896U?@eNRf{=GMy>pCC_AcODhQU}U#60%
z=EYqver6)C=IqRtCUxCL%r0ro%a<GWGZoANGTzB)I&|e5suFU@6%&UxPg*!JOpYt0
z&EGrYKF9dpq9@9Yyu26<BS&rv!#X+x2C>D3t!?Cz%B?{*TwJ(3oe6Ba%H&oC_smOY
zdNNa5QuN6;#Oo&2+#TtO)EnNMO^^$(mF`HF=B{TxB!NjU#4Lcu*9%I45<2689prT3
zg!1X;NtJrXDkdx$*by%;@jC;7p<8!IpqE$l)64wn@=`tVTn<5~X(z(L$fuNqh&o+&
zPZ6dla@`J4Z8&O-?5JZL3<aBo1?6f-Aak{^jzn%Gsik>%t@bl-y{ZOmTRrtDBIN9k
z6BWVftWcrd`G|Pdiv-me=Aaf*2E9~>D{6T#Ype7(grsP?>MJkXh?u0$;od8s5980O
zxm*~&4}6$7vasW^zIg#xsN2dP`agaWvXp|mhu2#seMOHu8ftDch*u;}w9FSaZtfW5
zGt4t`?Y(I<-dM0jw;?xjqCLML&W<h69}x`1M0E6I*l>0%@EKWW)KYZQi)9Fu(+H}|
zVn>@>NQ{#?;7SNn|LJ*iUBPvR{aiUr2E639Os!sA+(+DLLt@6T?tg@|@)seBxHkDA
zW)o`_pN_L^MqGosL3$<*g&<L>;jl<9a8h1_00M_YpN?lqaSB9o$SQ&kjBG#k1Bkpm
z=@UpQv%)+E9HG^n%}|<^u8}0YaGeBT!9spjD#CG~7?0<I-8^11tzDg<sL11_QzdNN
z82NzE#9yPczeP_pN{duB#fF5_>oDo8c%L0=bg?=b>V)+(RSdrGWB&aTLl^>O+eO6^
zQGEi$*cW9mgN17!1*^$4JrBk>n?S0FFbRG^Gw-wY&YJzR*5D*wqyB*Y)<7WJrMXd4
z_(3+}uHMkB(kSdwObRZ-hrQG)Irg6yrRG+70?}|Ztg2T^Iginl=)fuX8|D|OrTi1a
zlchFuyeH7Ar0f`qV2$xI%nqjU1e2Wzc*)3vYRNkk*@Y^EsfiNok0H~(CG#F8>WML3
zCmFPh(9NYFrEHCI2!}j^;eTG#Ax73eAWm~9P+6I}hVPOK=WYmF@{+a8q7<oG&K9pF
ztnjK?l&7M0Foj)yMS9SU4sKK`)Y*mD3r<iEceff)ils%)Gf;)hpuXgN`jO$#_Q{;<
zvfYyJC2?gEwS)s0FCKc^z?e}K)9*{inR^Bs<BK%67Y%1itsBLm7+36!0Ay@&FX6HY
zYIw1liV>x(4$wnEjl#i3vbqE|OX@IEach&R!Rn13NL&mu-fu2CLTxv!86K7I{>OH?
zxma|5#NosT>7OuDZR1*h4FS6vwn9i6|8bX_iY0<p9?O>$1zL-5;FpNfZZ*qt(JpqA
zSnFORIcD!Mwmp+j3^Dy{Jea+-E0;wXKFeQcT^4Pv;~3A&@w*#*h4VPVHjOm?@9ySs
zL&keZ;9;$PM=<|SYWAO$q*<JK+>~$a-NI=c=N`S!^Wgb5(C8}uCvB9pJFCp)!el57
z<DKDcCb4Jfw_Ld>lh|yC3;ml<t^R|(PvMP*;K9g=xdI{VwI8VnoADMLQ0<)U-Mdjf
zpH^!*-mf{~FL)YqF>APh#A3@~Vr|M3f?>-&jh%C)d#6}MP^6!qMTCtctoTQ8Id+*C
zNBF0E$Vx0<XRY<t3-j$37gNTC*;LFg^7(eiy+Pk%cz7EYBuj+_h!<Khe9twKVp-|p
zt3k)c%@-;(h2e%=Xqi{kD|i@W)W8f@c^W(5_)O;`PKqR87=>9$H00e1lhpGC7_+J8
z@eX!t!n*iLa`FeNcf$)V!etXBCITy4Foj8&!ys0%1u@h^cG20j^Fb&W-c30}a4bB=
zGbNt^o%D*0<M?XPL+hvsCIclll*_QGBqLOREW?B@Zj#KkAFK?_5@iT7Cf3=iaW@+s
zSl%F1_rvrcVPwVgBonDGd9KZ^GN_U1K7c706RZ(9b23d=Qaj-+d?dz=k^~{|&y^U!
zc^`2`krpmLJ|O!Q4GT)mlqT0hWU_odsrgx6UXq|^oIww)T#J>y<$)X|HcD&_I-w(h
z2y7D+4TO>zVfG9WD5o(+AvTtGokK{_;U`zqmyPO0LQ5bdm((+Y){Jah`6T}hX}PM8
zwLmhY!?;n@yWSpNajCN4Fp`jsg;&f!><MhkYA``kpHB~pE{EZ7*Md*EO|ZgAB)~PL
zlWKbyS&Un_MyW-|<qkNr$YPx$xYa$E?d7J~Qt!(a9wVeH<=7%Z%3zYvvLmCXlb_rX
zg(LG*yjMY{%Mb0ZHD%hFq?REidtMr*Lk;H`UspC|VzQNrmfY$=3}cJy?PE!*T4}kg
z82RwqpO#NzW69~-_ZYFTOy)6RKUckW!So>{M~>EPQhGcX?wLSBNaf5jB)o;QjnP~;
z7#eCH9_Yiv-U|K_*N+Yz<gF%4o2*N!oZuomLI}CB=v)RDO3p3Fz?jaef@TDHMBgC#
z2T3=*5ouninojX}GBhQW)`Q8ROgeX_2zpE0<+efUooebZ>NZjhxOLp|*g@52pNM_^
zQl+m#frO}1Sw^v+YN^{b7-{?-@)=+PwHO^R3R7s6V8GuKb7#IFRzTFH9EmQJAHmg?
zVf{EA9Bn0*S>T2CW1$pLju`X1$O%nB4EN@|Vua)R+n-cl$+Lb9wPy9gaMy$4Xw<l9
z&T8l0?v0o)s~e?Wjv0wlh+OhbTMHVAZp1fXHE?17YfEFH0L8+QFRycKdBXS)ITTU%
zwiW45W0L(pG)2|q9SNuE7OHF4NI{ot$MZ>TS?#Qn)ZHqg&d2i^Hs1<z$NLb+M3;@V
zn$$BsL$E9|;bjPBEjkSnWXy%}G|J%Ila*P43bP$edFu!U4$_Q7;xS6kw1)Kv`}(`y
zCnc(1bfc=;jc%!1XNqbFBhTD5ycZJmA_Zd>b^h*<OyZS=_z;=@R!)Nj4UI@rNpu@x
zD8caeN=B`AwMjla9NR**-Pgf=SxV=^%M3~4cR-h&*7ljOaUZ-(O5`9c^NuWC8+kbL
z2ofpXe$glLM$Qy1nGV@~P|V=M^H#VWZQ(gJZjB6a{hM|o1$61=B#1q{s3wk=A-$kb
z#918FmHM}m<K-#*klIL+3}@V-YC7e6ynGvuO8sE)c{8*6t1iocgbKwhL-1|a)br}f
z*eoNPmS4u>LdAPW1oJaNPrlQ8Pa1R2%0KKJh<{ai!I?!fFyw#5@cR|*=1);Djgd5X
z8qvUkd-~4KyExWREk4&lRJsQ4Kx)+l${;?eIo6<!BWqmoSYyOFtQ?djcM(Ao!|USR
zP2xKK0fI#roHc5ZcIA_!HeNXDSNu88G56GV2JpdmIx&mVAw)zTa4wx^)_LA`n`&IP
zcJ<qsPg7cJcx2)$y)|t!S=?``OHW||V__Xy6fXr9t6CP(;igQ{XvnLB&94>sLQTO}
zru(u(O_AXKyv?YG{ECpGwclo9xj>O$B|`^ko;*iJ*+uS9*oWbXxtf6WMQ&0bQb`Fz
zKDYjg*AC%MqIldoD@+Z`36|`L1WD&|?{wMKB~VW$J08u>$`Px8_K2e@z5}wIm*Gqt
zMoiPS_5ZL*h-5?@W~|3yw)7v@*Cy7zAZwYg?)!(edc#I%Kx|QIXPsr6r{qWU7)ET!
zw-OFz$k13(cChDwjKrkNC3viJBu$R<A-Tz&!7oPPT2gW?YkOA?p4LW@7Jfn2VDN>s
zsBhmi7I#=tdiP;=MW#k;fYeLwy@yF}+2~hctJJ}_iQ#<7Il>7=%{qw7PY_mzOY#Kn
z{An)fzewl%ACZIEs<}UvoB*CowfOXiZ(*15wBbe3p6T*@LhhC2>V{MLOk{)pV?C>w
zMAt$8j&NbiQYR^3ZtA*<eA~t9vW?hw;FYpnq7sENP6x|v8ky@zxYgEM{g!I#Cq?=g
zPH68b-NuaGTP$BA5X|Juc4?6@R&6jkY?tGdI$P68Dezwil~{8*s>?B69J5><O;{lf
zw^XzarYi4GmmDWnvI=8IZCUMLJ;E4uE?Eyqeo0+>1RF^FSl8?`ZbCflAcR!E&D;?j
zidh$v9BO{;V(&Bc6?-3DB=-=@4e8{Yo2aanoxX_tl}jD*4H3R-Cwyx|NLG;a-L}5W
zlhwK|QcmH#`<EToEtuXKq7lP>o+>=mWwu21ARdMwF20+K#Z3J<q_nmH>TzRD-3O~A
zJbN!%nDA}=5R;#IvK$2t<--$|@%TSQzZVTp^z~B6`w&;cJJe+>kVf{Jo^Ue@^Ab(7
znH?l%Myq!zxLazFm)AjX0G;Pf`#6TrQ-dULe$*jkEY%U)Ja3{Gqmec1j*?t6GF@W?
z8{5#j7QUm^PBaWgzqN<L&0^EX32><&F7PaT$P7K$x#9EY6`)({6X_UF-jvq`j1ll{
zikH`Irl5~;L_z|t*2DC5oZCD}fm%xSx@O^r6}bZ=RvyIGZ!X!bBhBSDSXyBhL>vf-
zeYim%7#wZk8NsL}(cOEj`hSmx`mo)f3}JJ9G$d@U{Du#Pyuz|F$Qut4{>x)fZzBCt
zmK{UTKI_{yLj8%uv>3Bt*0~w#YSJtTcTer|L8wc~HlsfjH5I-bV?rm=ZnB>`!!2Yv
z5tgxall48_%)}dufE6Or7~YZ=Mt7bheUG6sQ+qS#Dy#tgV|0}f;uOH1h5Ml?`<O&z
z!K2c<I@33TS17+lLXpxl7r8SqsYM_3>88I-3zolbk7Q74jLL)Og`E`>7O%!W@`IaO
zg$d|Yf?}wD$K_zGUVRVQz4sFYR7cV3BiKcQ@W`?GwUW3w0z)62{1YnP)fqoVVi=Cv
z)xh9vd}u8g4ZL_bmB4RA>|uM10}S{rbyX)br>~O~i6JD?yjLe;&<U7R+we6&|0d}I
zZNx$I8lK?dGX*2u`s<S82;w*L{;tI9PoaVi+gQF{wIQhU8fU7nmlm?x@WvPwvees4
z_S;4qBPHWMYRl4U)^=Mq5_EN^lut3<Pf%A$fM?8>gN;BYBd5z{=J@dAI>*}WPFF5@
z7W|#=vwJ7G?55qG>*Y_9)9Lj3DjC-OzDj!m|EK$$6P>=HJ|{d*H;nfMr=_Iz&2kZ|
zVVc>#zIL;3|E!Rj*2kAq=kt1}DKEh{A$I{qA9o?5n<hsMq`92-te|ULB%2>DSJ2FM
zr36{wg3C2PhxBI$IX9PUY|!O&+I{w*t1sVu2{qjKLROHyCpw);KIc%M1A<<*N~5gl
zNT+jH(B%ud0t48VL56*Uc5|qUk71_EObd=>ThlepNo!`f?*=<oZz^cHT%5eUrij3T
zovx;)mjA;aAE9WQTyl{Msn0C`#Lxm)@ZbFZIm`bW|C<xerrEg)lv%|+<G4<)hqJeC
zohi{gSxnPGmz|5`7CMJI&ER<1z-e+H*ddtWQhK1=TkZxoU9v@cHw1-zt6wU&nquVK
zE7w?BcBZhs#~c-u9x+~So69xMW%mt*@x3hIv!?~gA9PAl<3ks1B=9fj2$GdWm$BQ6
zB2<)3GSkch5zf+QcU8H}4}A7i&WIF*J}J0AHnYOIZ{|5}-pg`^j5uD<K$eR{AO8BN
za-Yk?;SbMW{>Xin?iBwsExu@GJI6_v<j*8&QGUo8z9xE|lVtIq{F&Ijv#EYj)90TZ
zME2)6JqPJ-W8&X^PwHuBZ7uCsCz<6ky%T9OjdfWU{>w2`PM<)wYm(ev{$vBdQ8<6J
zoV80;^l>J+T*FK!^$0F@c%5*kP!iX{nzf`5dA(5Vc{iJ0YS9P1>c)*e-ZWDsjps?(
z<uDuMhl?Nd-wPOaMsB3tH<=D02a)4^^T%s<sv8En?DBl+>&^l4&{bid_{QDav5~X?
zDD0@Nq(F*mC^|8so{{QIajIo~%#pAbn4<{Ox7tQib4rb1*F<@EUtDB8JTG_J<@(!C
zX<PlZW`Z1vb$k+F<wDYylW`_-9>e%{Ib9SB7&?%jPWmr(S^DtaJDq?PeaI*rk5a^_
zFh0>WmYT&5xkCQSm2w|x5~=phnq-PvW3%OZBgU=2@I9Ck1dL?7CnK%T6q@wLkF}_e
ziOQ77$Dc3C^|`Y7C(n<rdHFGJ?nKTvi}!{y%R3WrAjzp=eY0*@H!g+55qD+$a!L*_
z8E$rGmfbFkm{Sysymcwvzyv#|0mR`IJgc&?96%P4PvRS!Y4Iaci9%X7t+m}7n^|0^
zPd3MB*2`+!Ye8~23-WfaN1VJy*2`M%x04j^lx!&~PBb%3_P`jHdO6t1+6HE&?>Ol1
z6dE^qrF`77$@CM3UZ*z=y~EE9H`mJtA?@7zEZ4*oR}xW{JU))YK&%XTdTLgmw6rv5
zQkwdn!zZ29dQ7w=-%ekD>!~``9esE%E_rrNW*ldKPJ_{e9;Fhydo;a!He;2YwO-dG
zySl8QZ&sD*oOR(JL8l*<6|x&`xF)61zHNe9)JIN67XG(BcG5Lz@BhF5ZMUmWmTfo9
zQ9K6guY6cTw%6zN<#rD>rZr~s!7!>S2u$#d^CihTmhCc(I(hOu?38ZI;j}=)8ZI;-
z%koFf>m!i$a}hs5mi2KF_0)$~v$l_uA9fg}Woa3|`q}PK+iO>v(9e3leTFipczu(6
zxx7fZzM+*v?Fa%+`v6XYg5gf8ndD-a8tA)lct%?5&)+Z0^%PB@gtD8?o$GWCbh^@9
zu9Uu93qG7=4yle_lxwFOsx=7%ohd1keCmc=SBhyCFeglOrg$f&c<G)arD3P_;Y6Tf
zoQYo}aYF-Lyl~dFTepbgxC(rJ+0;5apO2ZnXY>9v<TM!uWZv|qq?pbWpS^%>O`r9_
zR4hlan(JRcQMGT@*lFg%D)nZ_y3O%@xJdrU5x>2xruIAuS!F#Dc{m)I|GaC`3)B*x
zg!L?V_m}cOxDg8(CGGZpT!_<lr~15REpmYxyUS<$H+9Dxh5=>sSfjU>2$))y<(p};
z`xo*9y9=fu3}c$JyRvDHduG@DWdXSqaCP^WoSMB>&YRf%1|Pd}3N*Hmxsb8J$FI$x
zw8<FnG`rzx{N&KGm)9N|DL>f1KO&6jb25y(R&zRLU-{YhsZG}E92({BT7QVu^Erq4
zoDNI!q6vmcMq2swGG!7?>l^BE4z-)UzJy51BK6LyefDW`m5gj`#r4b=iHT*7DCf-8
znY=9aP?dG0Qfr-@)_g8^l<YQ?&FBDj*HCg5Tsf{_4re|XZ@`5e(TdZY^2XUi`Wn+-
zA}7lO>BnozaqKSJ<?6?j1h=8|@2BR;y<Z#2Un9kSjRgC(Eb;FS>mNUot;Olq=c@SX
z#TOvi<vqh%lAmnd{T1KB`qW>eYOopq@3_!rcROs)zr*o8&-H8&-|UXBwY6Hd{S*Jc
zX&}CyJ(H~sSo}HbrJ0^JtmI$vw-9LtD1KtH@EHH)`;H4IB>-Fe<5$lXto>#KT9Qq>
zH&3=!#W(0aR2;e^e&)|`mt@m4YrE<Hc-Z&8eJb&GejY!e!`7G0D|#Cd0j4pv3(LSj
z+eGS5!p(~T13Cg~201X%jz&JjAPwJ#%`tSADknk+md&-9>bl&aYVO($q)ag#z<E%K
zZ-HP>LS-=7UFu1@RU%z3IV5~3am=#&t%uh^yboyTIl&>m_DrFy!rVU=<AgzQt}1@P
zyBu{pSY1bc09J0|?Whtm!8QpgV>hOsVMJU%^sGL)aL{wxpR-L?H(^}Duo7FNhaj~=
z9#GbfcV8lnPYxj?RHB%%Zd~ptJcav!*#AKtdVZ{#d}cKJob2Ch9xO~w?QLdjNkxQ2
z>l{fxA;zNGoj+YIS$R-wC5zlp-$Pb}dL2P4X~UM}PSw#?j4+6WOX@9W`IR_*@YYpw
z<dyk(V$8k{zd&iwY3c)5|E=hXk1@p8Z34nmG`}5o{s`squxe8>C7m}cBO~3o%?ixG
z7PR!RIR37~c8*UYhFK%2MdF6vBCrMb(5W`O3lcSp1wisBv_FEMZ9gSV7vQFO>S;{0
zPg$PVGCtk=pUPg4oiX*br!tt^$RgpHN6T%w>X$Wh(DuW13v5&}DCA1j33(Pc0g*bd
zJb~@W)0Rc)Q%hCsSyRB{f#iIktlsgF?1P7g@JRf0*Aq%<D~<V^9;wURFkeWT`oo-F
zm1vuyCR3c_OLcK-JKFv%Y145#flj%USb4;kIZMK02<z@GK7!-V{%)E+&IXoM9`B}`
zV1II}lE$mMte^yLCX~CRvtfb$l4;oEEKua%Rltrf=4R=nS2^nBlpsGN<GNGaf7g$v
zjNVLi9@|vx9KR9om{CO7WCw}P#Bk>sgVlfzs;EN5yBDw9c5*Y^#?5fkLXKDE#?VH%
zJb5ED$#r+cZThPG6Kuw2QBJkkr14G}q?b0RA8g0Y!&4=M7^mR4PQ%q{%f~%`oI~HD
z-e-JFK8t(B=rEGc8OeOAM%6(ywJqPUt5=qFl3n!zhiJul{zAeD+f+rkHVwS8j0V&z
z%F(8NkA=CB8~?#F_X#@eAEkd8Cot-L%yv&Ecx?Z!3d&YJ9f&AZ`kL7$^%E{1UkPD(
zc2#8aq{@I!GWvE-)j!jNr_!0{Ox1()@N_OEa3Xo%|D)aBh8bkuW>+h>$YR95oa96z
zp@page@Tl@IV`MFOY;6Qg^2&uUH`(npe{bNdV$nCzb84Xa$@obasQOnH+dyM@e+rZ
zk|DSZsQ;~gAZ{hAR<I`vFVF(W`u&Ogm@hvDO_`D}POAP5tI8$mZEmtjW9qw{*FS5E
zm`v)y2PIlo+M>$QwN_i@@}s*gn@@edtX`X;GrG}MAoPs<X2fh%gQ!myG6P$kL!XEY
zlUr$<re?1Vhnig_R9dBbKB|9*D|H)#V+u;8*&aMQNroEYVQBF8s`rX8Wksfm@lLk=
znYyGwRnCcT+Fq6Y&8E+(>xtisV&1#$On5ciBDII76B?MPZd}3mMeu(;Zv^dA-}v%l
z*^oHJ0|>Lwb&DnXZnqU_keJJ`e`^;u>tG;d69d>{I_|d?eu--}_zeD(my*o(Sh{4z
z8>f!4;nKuU8A56#;<M~A+jMmr@`)^UB&SpCzfbxk-hFGq;{l>VpP2So5nqkdADzV)
zHe`SOZ23X(F%Gxd`eIq2Q}8yz9*WhPMaikdqzCtkwFomSZe@(H1n;p{s*e%v2)DJh
zD5+7nl<SGckhP1UamDQkubZ`4-N>LQ!JL;^i+J>55ycu#^*lDNYQ!uqWmkGzi;zAN
z3L&8a)?%eqPKwg3msyKHXv9OWD(i7m$-Whh)W5Pwv#iB(i!H4}5=~_-ac5)>m)A?c
zG>c`8k|DaFUQvmTMGX0LG9oyyu@<4jyAFOQ0y?e55@Ob1bfOlkwKxyzeZMLps?u5v
zHcDroSI+~LrtWPNa^YaT%-Jl?Z6sq!-CM72uomyZ|LRwB>*?;Y_U=a2kEqvr)z?~_
zL)`_4lIm4IYq7WypRJlxPp*e-Ji8HYBvnk2X={=A=tRG;7Z0=+i|FirHLG4cK5QIF
zRFC%~$w#Xb)Rp>iKfiPY^+$e3`uQK1tO@lo3!D1+AIp-3k675;&;Mw)EVQw(rJuh(
zM;89TLIY=6i+_s64_RzvQ96eO{2t&50O=kU@H>F50MbD$;5fjO0MbP);26M90Hl*x
zzy|<L0Mbn?;C+Cn0HmW>z<U5s14vh~fTIA<07z%Cfd2&81|Z$V0)7jy9Y8va1-uLJ
zEP!+w3-}Gda{xqBTwww406Y&M-Npir0Q?j{I*tXr4G;y8u44gj0qg*f&SL>@0_+5k
z?qdP1051SY2eN=)1MC8jE@T030PF^kPGkYE1N;m?x{(F^3gATm=|~oE7~mxU=}H!G
z2;k=c(wQvamjKNG(w!{eAiy2~=};DM0N`Z+=~5QZ0<afAI+X?d0$?A2bSn#Z4PZY&
zk+644cX$=x6@UN~=N9k^z^edoo|BEp7W)BS1DIJ)(7OQp0Db{5qn<=X0rmp40Nh3C
zR10_+-~a$A&O<F=55PeHzmyq~U77)Y2{64Lk}v^&4sZxy8kL_c;3a^=00pE;TfmC|
zzXI^p3!50b{0!iAfPb%thgX2z0B-=~*AqP`z%GDa15B-_g17)L0JH*3saGi$uoK`-
zfV_I5C}oQs0B-^0)>HaKfGEJ*0F&#bU<SZX0geDns#l{e;CX;|04CPMAtqZq2k;vJ
zZ#`6T0z3=wF2KJ*e{KQW0e%Z`XTAEK1#AQOPk=k>mCFL20XPb9JIMzY@HD`C028G6
zt2Fu)!219Yu#B^SCV&qBa_Wh9lr4S&a10>39tvXto&-1!kW~*^ivU{zeg|OIs|*Wx
z0^s)mx7AbhTDE8e_z>Wg+IsT+ET{qK4?z2Yh-;Lswg9yO?F0Hn9NG-@5zt<smN>Kt
z=wqOlfnYR|9V0-01lj|1Fb@3~=mbzR5WJYO)#E^)0R0?@+;)K;1NtwZmw*n(p+|xK
z1oR>hOwh7bJ<z8>KLa9VUZ9OYe+JqO^hO-o0CW;)7tpWc(0ZWHfL;J<jYI2zJ_p(f
z1b>UPRR{D1&<>!t;?REpodSviL3SfsJpyzZ=%+wO;?ToD{|)p!&^vMHM?il85_W88
zX=KN>Kwknq3-oRrS_AY~pzT1vjYAIswF7MfqM)zrxEkmT&@(_s<IpOgvp`P+340h@
zg@MiiJp}}dw?IDx>Hum2`XCNH2-FGm6QE;p=mDUwfSv?`e@u3~ALu;LR-oU-p_M>g
zKu-X{7cN_^0QwrJ5$MA>v>Ye~)ByB{I24;RM=fU_-2&7WhrR|{0kj$Dqd3$Bv=V3&
z(8qD;Jkb3>5uiWDp|5}*0Qxb|i8#~=^dQjVK%c~+4xk?bJqGk&ap)XS80b-;KgFT5
zK&yc2frw<53pxX|8fYWXpW{$F&_h5QfKJAtzXGiRS`YMD9QqPyEzmlk&*RWvfPMs2
z2SjMDH2>c~4+H%N(5X0d8t4(AM}SVpp;JKr0rW7?f5)LOfa-vL1O!W#wDmdAI-s>c
z1kDTd8PIy5H9&ujLnnbY06hfM9*6!6v=L}E(3v>&DNsGoDxkA*=ube80)>Ij#i9QK
zdJO1?K-9*TBYpz(IM9PYopI;{(2s#00QxEp{ShbvbU)DfIP@{lCZLr-U2*6mpv^!l
zfWD4HZ9rRqmIKA&&>w&rfMUoy%i{vihd_-$Ujwb^mVtnt0O|r-8Haucv=!()(EV}f
z_?$$w?j}np`>cRl2XBW6WheQ);ihh(?9VK0ys29#`;>+Ho4SRvKe6!WP2ED-f3fh`
zO+7-{CoDeBBFBm!>IA@#0eXb8KLSJmdW5o%0X6~j2xT7uYzF8N%Gv<70Q3lDe*kCz
z=n=|31ZV{45z2lK@B~1QQ1&~3tpGhj*>Qj;0eXb8V*oz^=n=|30B8c}5z5{NcnY9L
zD0>g!X@DM~>?pu906jw4e*$a+=n=|(3$PuaM<{z2;8}nkq3kyR&jIuZW$yqy56~l&
z9Rc_$K#x%NHb4}hM<{y>U<W{tQ1&LkPJkYvtQFt|fF7aj*8sZ!dW5n!0CofP2xYGq
zB&x17tJkc!o$)U%-fNcgJC@enYhn`^^2T=eny*<{F}Azcbg{5<Y<I6Y&%*s<dwR`R
zEIz<uPp|0&co3kc*K`2<5TLu)sB;rOQO}I`V-LX)LfS>b3H3WE^m=YWBHMXdGyd+c
z+C$lMC0DTfrhi=f_gnw#WwoB_&`RE;t^NNu+WXf>{QuGxYBgN!qWKN_-?}&Ix$z!U
z{q`J4AQu_F^O_)3SWHFJ53bW$NkvC1#G;l;r2a-@EVjFkHtVc;aN*q?Q&pdk=G<1K
zU7t>g5c?iV%zuVVjL~PZ)8AE#S5^xDA7P)p8?s64Iv^Y?kV*-!D4EZ}x|mT)^-5wc
z<G(KB*SenxF(6#<la3kbP#wjJj64!J>Q;+|uXk#-F4JF<QbsFRc*N9mI)6%QMgCUE
zyRnmE3%}2OP|U>xcNvn>ONiQ-E=fl0O*U=ayEL8If}#90dCg;DRT2#98G)ys^QpyD
zU5ml;JQiB)N_8;j>oHS=)<0MWcLkT)W)`stMHg4LRO)q@OAgx#367>=c#|Sz3SGGk
z8(;)WiTo^`tP3R3b%1AEUG%|OQo}%Mt6<z%xK<L?Np`rhS|~6mPeOpcOMhfqJ5pm4
z`U=aKITV%T9ot<bIWOtM87(g-%^{KJ6eX0?ignv+o1vza+2DmjwCJ?Wz;yZNi#ph1
zBNf|c@cV>qrdGF8O^X=nTlCqf`c?%wRKM8!Dq*}uH)Y#Mx`;E@KI>&YyV5MMGK)RJ
zo6w{t6e1o|Ox8{CU+et&0d*e%3aMF!0|B`6sIY5eZ05)kr|y_V{^q5g9RX4nVBVOM
zYR72AEe%Z`1Uu!j&PV0JR~7!K%kZ96^C5Zhe16w7429&Sdk71+nlSR>s~q2~5@r|t
z7R%gt8M;XJ8FEs(PCGH-uJb3WROmROxgXmvCxk>^%=ae<{v9X)g_bgbR?$a(u*qIF
zX<?JSZ1O6bEXzCj@RQ`m5Qf;@GG};OGP>)Ny07~8!t?4)dQbFy{a$&B0XZoIFMhj0
z{P_q1?8uueL#H`r`##sdBGifXxcgtS8Z8#(2GwDk$(?!|b8>uLk{a2;<Jm&uXIp4D
z-zU`bczH&iP`Qb18Ev-jtDh>5Z6<ph=Qk`@4H%fWVQ3zG0#0eRV4InWQ?&)u+R))}
zG+Gy(FkMgGaF4A>Ej(_UMFjhjPJZ{=W}8hH%p-=2a0v|am22^G+2#=4cv(mI>1J1D
zN@Zo5STuF<qgZ<^gX9&d<kr4CUs6*pP4z<W@EX}|@Jn2ms^;ShNM#0KG&n{qww`HN
z5wetMQ~H=t#|S|7QB5MrK?_M(^ymX~g2cO~{2qtaz*XUCTbfD7Qdf=7Qr|g&7htl8
z4Lp(Si%X=y(vVb*E3{2b9!;??jRKj6(&vZ;A1?mb+=9q4<?%ePt3cgZ$ZDSclt;bP
zr^u73b_gUyZkg&SG}xlbcT1y}d7@t7X5l9thqjFIc1h#5(UJ4asho&8L{=WTs9_D~
zwFK|j2{WX=3sVbuCKD{ev{!1OFz4h@IqcmhcPG^~IJrH9;_^<wY4LFJtQ>PB+BM_B
z`@AJGJ1$*2ML%MlY)&DY%gO2=c`eqkWXT(xkw?!<#SqSEQzCgSo{Wv~(U;;?k+UUK
zZL}JdIs(PiLM|b|d_4T^L^b4+C6$OPFS9^$izFrL1DI_}89Co)G?7|vKX9*VpMFv(
zM6a-1Ay=&7tyv`oV+^mYg5&gC1~q6eM=8f8`&#OJX?1<63XG;+6N>03+!Tjrgxm$~
zcT#b}pGWy59SPl$Hc#FC&e6BjZG}?RA}wGg$gne(Rz_NKkreg4pncuWi66blkvS7u
z8@DP;d}*B;R1KRUIYkpQxYuctMOBUk<03La+*~KAN%5s^co{#tXkS=Y?e^POH*6+F
zWcsFew~&n$>YV0*0q2Z38}RV;VF>P@+P&QtwwpVB-Mbt9ZaeCK%69#V8R_6Omin)4
zx+_Px)qDGoKA)tDnL8Q($hy&fBS=Z93D~0_-c-&zgu4o2<$I;x=XX=%WvO@-WXWMT
z@q@u~b0-r^t_<P5rJ7UL7@stWxAofb`bDGs%pC<8R!d8mP!dXi>o)rGVj2U_s~bDM
zIiJ`!=kwD4{`t`4zdE13=hZF3h)xjyL@t}z<8JlfvXu<3pC@#wtJdh!X8$kM5-2(x
zu&Y!LziHYYm0L)O#;h7~vXOU^P@3kG%&<7g2{u1fvtP`C!~HOJ$TWa>JRCt=Xllhw
z;J|BFDY2#@z7oc#i@izE8PFBwc_qQD)}4Km`u99FBDEx?yIK0hJ$WUPGTCc<c(RNm
z7~wA_Gdfukfm<$Wzy^_QHM56JjcU74xM3$C8IHGpu+)QN2oQfdpUPoWsPA>CJGZN%
zJZq;r;Q>8@sU{CojWktgq0@O+<t0Vs-l$jCNq{XZG{(N8f5Gp?=}YqaWk+ys=`fz*
z6w&TpI{Bb}@WUc()I_6a>IaPh1d^|RmY5NHidJ)=g7Z`CMJiqRjly%{&|WQf=2}5Z
zJLQ{qsWZSFN@`Ok8S$tr?yN7x|II75giIZ>NZrQi1d_9C_n?#FjE_dM?30WkXFuMt
zYLj7-Z4EOE^U<Qt2d7TOuQQLteV5Bv7I$es0FUA}JlXkYGV)b<qs~j_b}Rde3cERG
zme8c=X#Q$D0>+$?u$ka~(xWo%GB6>Hkms^A*;m<06hd({puI27mMkRbHF2~<m{%?R
zydsfdQC+e|3dZU2gz{5vjm$+7ei&==N<+Tk%C_PoDJOb;YPconJf2F(*BsSrjTv?Z
zE5}iH9p_@PPbk<5O#e-ccT;$jA$2|e-(+!R{wSfEg6Y}Y5iA~kek!RHoMJNtKxT!<
z&9s}k*>aGl`YK&;dEjk=ObG_`c~Wc#J_}iSrL2_mw${kuJk5ccW=S;hnaqNOqH_3U
zl$WT@%XE_<f71~?Z%<{YWp3tj0&;P)+pXVwq+I2VNPU$RFYCH3%!wm)FliG`z{8ZB
zA_k$NIf;fiqU}&vrv}1AX%ss{OoDUFN{COGa`uHkCl|}n{D|w*S%LiQ>_>G=3c002
zBp<Uj&o-C*dPr3^t#3v&O-^miLE2k2jxwa9$o!x;LbybVcV8F^b773a!xe4{SedVW
zYL>hs;x;r2uzkXJK9gYC)VbzFDWm~|+NfAvyCl_~DySRbYq?csc5w)j2DN?CD(+J_
zpg(Zlq<XIjm$bUl!r%Vq9GRbThdB3ZnCb=&jBNHz)6O@GDk)tyUcWF=-pl#!x&YNI
zf?I==NP0UXbpPs#(h6gEtTHA0(GmhgHm*BxNTOLTPi-IJI~A<j3d3TRDxs)+-n5`G
zlE4qyLna3jc6pPzMy8L0<aP+@OglM83%$3z;Dv@0ZzH_p>fYU|KMB3KQ^&?KeY*W!
zdIq%oWIgT+e%93Vpi_K}bi@R|H<PQ(Q)LrW-_$*tp?nUpGy!5xblAsxmrFPEMqGyp
zjFyf=$2E$Z?{rbf@AC0@jVA?Mz7#47?q^8Lf~ikA{lBMC%H{=~3`Wl3@}^!fUbhcB
z`XS!bPO48P=Bbj-DZH;L_qZCxbm>2i@E{~LgnK}ghhuW_1nHqXEJVfG5@%7<84dUt
zj4{x`cB0q6zw@cE*|vmpu{Q;l^Q@+SG+07<WK-(AU<zq`f^d!B2?^yOivo0?G3|^_
z89~@C+E8+Z(|T<oQRW&LLrnePtbh)UDX|y%$YL8gXo}qED;O*6CyUxn&eB=UdtvlH
zI8ja7u7;&D3|Y6WP~AB}rKd{OqV!bQeWL9Xh0T!rilRdAK`6Pjm|#G-kca!J?diI2
zx<w9piD#}$-C1S{c1u5@^9I7RNMl*r$=ekmsSbxZ{08@|t&@x1j|8wWtOs!2mBY<x
zTe2S8peF{3L`3Brm(|<u)#@2yUxLOf%uu~ZjWbHS78(7|wX`#3ub@xpP%xiF|B>^9
z$VkQ)36gnyajJbw#?<Lq^Hkb+HL39Fz0c^X7IkHA2~@>bj3<l-)<i0flo$h4K_|=$
z#%<?~xeUd~zyb0A)r`^5dwj6t;i5ZcatlWa_tST{5sCOOtci$Og6XKjJx{2XSu;0L
z>X!uE@UBm>_~-7LZ847)r_V~C)jYY*RNvi|L1QH1PH<C^ii(mbOMQx|Y)ah!_oYac
zq@^La8S4|sjW-r_LReqZnIa@2&(*rU+U`$Br@F5bJNPLPC=z2Q_3)zLT_f9DRPWqo
z5wNZ%5a!SfSOV^%vlFR+Mj{eSv2h3T4JpJEWOgO;i=KCHA+qk489c~&S=O$pgJqDu
zwixAZh7|T8G$2Mha8TcNhO@tV1wjp*F*&1U`#Iw)cUescrILxzFOe9lGon!GeKpJQ
zoOet@1U*g$wY>nsU=s0CC&6(l6JD_~u~T}_#i^bWW0<;^3NLbc6`hi_T9GVOLc$5^
zp3b7QS#EZz?JPDJn4u}z26chDa^F#i$OzjZtIn>cqV>S%NDze|HB^m%*s>v}YS&SH
zYgXwN<t<dVI(9UxMQfQ2(hjJ=ZZ)J>%msUq-f<LJV?i!j;{;I_MOUazL=Bf1JW1N-
z`SMf;9@*X^e<fDx=j_LpIg4pQq!5w6)fKr9vBFJ*4&j&RN3noh)U2rp1WYwK!m51L
zuE~M1P8B30S#H~Kezk7LQ?X5dM$C)acULp{<YSw4KW&$wsVn{FOp{Dhb0#ONn?owN
zmJxBDnv;y_C&#S^AT=E$ies&GROTBab-_quXa_?-fllz>u$*cH&)#Q@<&`7a$t^X$
z+-R_n$qecW%rxD`%(HbLrW=W8@0ykV?hJ@KXDDbmD+?J<rovd|HpXz1t@t@A+P=v-
zCN#`I5K@;?*{`r!!dWgSOtH2wi(Ki6yuu8z$+9c~0A)z!wVfMZmGMf%BCI!Jpg|v=
zDRM<sAtzGPc@h>9%PO?r`Yfz_M8e1_lI@(KDNF<9g~r$}nl#}4;Z%4k1i5f3vkm9j
z&$Tx=*O_JvJ;TuwyFv?v81W`9-57ZeZNU~)CztJKZn!!27sLjMx#0)-uy9~>i5g{*
zAD1gbSZK$^bh)~gx#JXqEFnYH1VR#7_Z>f>+{^$B(+H@^K24|~@tI5yxh|Owc=*JM
zi(+{AqH3>jU5@KAvd&5}^UYl%RUp{yLPQ-J*GB!YqBEo<`LiB$oqS}J(2g0NJ6&qh
zaSRw_<0s2F%`}DXHOimGKFOiy(*C>qkV>|^Exu)SA)DpP9Eqq{0D~8yZs%?Dly5uN
z@*)GIf<Xh~CWI=rcz-Z$EhmC8Y_!FJsNig~7@>D7+cq8(bCj(()7J$T%uJn0uDo=f
zVo%{r5k3u%hbvx;UId}_(!88bn$(FiP$=tk1v(L9R0<k{aDUb5Y*JTSbiOgH%RSwg
zcs?tg-zi;|H8B{_Ok@z9+SUZ;-7RlbLhk&qXDaNAzSrpJ80uWo)d>|LXICD-eo^YV
zQ^VrDsjtnN_U-NNG-rAacW+XhNBE2}@XS<<5ytH?$(^+-r!J;JUX1+TLMbRr3Ik&K
zyd(y(vmI*wX^Yaq&&Y#?CR6qAP;*YlpO!J~Jix#XHTyJom@Uqi&KKnwu|HE?-=XH6
zX7(1nahUAbw?o}?n!AE^2(2IpazlsE^P{L->}OU_=m3J%uk5sC%aQ{!`q?Crmjv4i
zW8_(@Tr6zswJS;YWdJ1(CI;(+lwI>Q83Vd_dGG7gC&RLF7d<&YUAZ>WgNM_DdBnzD
zU64e_zpp3c)tJzwdXow(-&bQ!g|<&eDI$2;2}G@D5VK+Ya6Cb%*Az7z{?C(oWJ&2F
z*BScpAqMnS6)0;H@TWVx(R(cE5am9%9iMa|-cvH)D?f=C{kdm+ew7C~1FR(iggVEi
z;&n}yjTrL;YG$y$lv2T^!D(vRoWUvu;X_RytsJ?|JFJ$;j`A>E5A%3&&L&!W&V)m!
z*ozN2QGCdhagHC1=OD+kqCj%h^ux3vg`P*|u8glY@mye7ka8zhIUZ(Ec&#wCTtYqb
zWZc_stMwQ7#&3^HKUo6v<WzUoGNr#x&WPAt(8szli8^Ishol<TdY6ZLk}PtltleMh
zhG)K1P^^Ws;vnTOCAxs&KUoHM*-mBxDc89N2x0v~!-$p#INV;)yW{AywboS<mOARI
zb|cHWvr}>7#`KwkP1FyC#OJco&BV>YFarA|$}L&RLdCFTe-O*<{7^j3j#+aF>Xavk
zzQg!8N?u`Jea@oB?XZivkBF;gG<{xVEK3CQT~eI!QHCnagIYYk&k)fcC#btSd8`Cb
z_o4usrLF6xqtM1uEsK)k)L4?{Q@&ys%H+*5`krC9piS+_%4m)~oHAVMUDX9%cNn*y
zVcW%Q+c}jXU<&&nGaWiPxA=CYj;z|6Wwyh#M`Yu&`XVd}s~!W0^Z-}v)2kx0Yv5C<
zL3}t75}FgU@<Xh(N&2WzqF>`N1~N$bWrd3sgU`;^nRQKS7FFtG)p6n0yoDaVTx6ud
zaytx1;uFf&VY{2zv4aUQ>8x#@k)-YyNS$B0o6+-r+X;SmEKU5_T5#A()aj+$4RQlk
z5%5p!f6qTc`a$^w>G@2yep{cm`Np;cWk*YWM%yd(#Ehh1=4zBrhdFZ=gf=3uUv-SJ
zs_s>l^nWq;_Hj{`Y5%`-o}->xnfA1+31WbQ5-O&VGQbWvR*MSgqJk3WST>>v4Tw)j
zT79vkS~P3B(R6LCBwH%&-Y=SNEtZx`t={cTt?c%tO|zRyclQg(0Qdaf$2DNqw!8g)
zultYR=5k$gJ)YP3cszWL&#|Eb?r;&PZSJMCcbM?(`uLAPUr6iC^3-MZsU{K@5AejP
zWz`?u4Pj<FZ4++7%S1C>7dk6_cE+p>%vG~z&z>do*l24?2nbPVTo-&i1NnVsi)9CN
z1oo`i#)%zxK-5p#7XdXFZ_1!!{4IWPyk1g(<%`_36T3>(vi2%ge}8aEMvcud&zjlj
zmSQ}>yNLn8;d*vqT#PxQ3)0QAo#u`7*|B1RWL?W|0)EUugO)aiWPjW6okUs7?8fm0
z<JFyky!q9$SFw8{Lx;$OHoIFxZg{a~RDHCJUKwhBz$<B@a}EwjCa!~eO*TsH9>(AH
zu_iovDlUxpJvy@h4KbFH=ET0b7jTgn|H1E0kmb*W_-f5eVg+8qU|~G^W)C*v4DDL1
z6SGue7y7=h{?92gPVQJt>UcR+p6-*Z=1l5y7ehCSu)V}zA~u-*u`^GO4Mda06~m>-
zeYk*~l5Bn?+T9#6sO!m|#QpldY!P)Z0uOa~0SBjR?_%T#*5_F=?_lehB9iQVsJgPd
z*6&M7N5wJYgnw>o6o{(P8qw^>d=&!EFUv1jlrDb+<LxCu2~rBWPpg_QtlDaFm&uGy
z0!p!$nW}}gZ1_b?PwEa?cK(;{&>ib8usx&y@48R{s0ZQdKgH9qT<>0YgiiW`t*fU~
z6R~11P#-DXk50=w)a{hA3v~r9iBz+1GO<TRObW;X>-?!@Dy(~sZ~b3op}S@?JV{Ur
z!GY$7$-srVtKL+6v|U!K>KQVT4)e%CHj*9mMiOh_W^mJ=hcGY+Ex0C@YEm1t_W(v)
zxK+9I2DkQJfL2W{@2b#uGwYp+u_$}o=4TOD@>m@QW>G^+m|IeKr_Qahuh91%p@w3_
zzvWts-|Nb~u$?B-G-^M~F1@%P+%p7eKubh@Guk*+ek!RsQK(i%GmSjcYPKMrqO(Ba
z1m)=xkNLS8(K*ZPsxd#;iD!g9I!;pl4G)|MFHVH^60`1{F%ezQk>!uSZy>ppo&C&S
zNM~z;PP5`+bB(ZSM#2zsTwgB{6}d~s3nh}My~w~TngoeluiG)?Y$DqyB2mXwmDaW#
z`Zu!5lnQ+b|6tA^#Li)%p1=N#?3{yGX&=m${SND2@~HQ1jy-0iei;Mo$2LdxSNTwE
zi1CG-04Q=Zv-R~S%gjU8k9)H>$Rqo0eyL84?8-~ZHIL}?Q11Oyd6>(^hHLRFL*9!)
zBY47{je3KT6JMQmWCNxJ_^5;rIe6f|&`z2~aE%TAZsPZY2>cfRe~PJV!P-uSyakNv
zQtJu7v2KtRQ{Esniy!KnmrD}8yDO2=1sZ0ZdCj^mu~b*{k-O!Gd>Eqyo-(;}kIhZP
zNyN;@@E6FD%{F%))<}G}&4NO*jy=s)5dpzGSwDC1Gdv(8bX~T<xU7SZq77ompdHR&
ze0l;02{|Eo7l$|SczHCaqn?*N+;arLSMDTwl^h;G_JV9(#r1M6ATM=O0ItX2Pe55{
z?2^KbYIN&g^xO}?PO6oQ_VpYA3fObxK+ll`H&P_7NO`PFCwY+Ix6ZVJYbxOs@mOyI
z5lJO(w)THY<46fcyHlF$3<~=n`KH};`1Dgc)`MgB5N&+GknVPkGw85`{cxbWI8i)Q
zyOdZ}Lfi56rI9?CJvF+W6)ADn@1g3#w<nZDthjL4q02j>o~Sg{>OqAyMkbf3jEm*!
zCZRA{h<CiEnm0A^XLS>^1NQJ%cxj<}xtln#R2dc#1YiwqX9{52y0M)H7#Q33W4yyR
z3S$raNQ@klldsZ9YuSOztTa2gTWPZGMf#PpCRnCN2bwXoh^z`#G}elfCI*`9`d?)r
zxL3OpsN4c(S94xX)+5CKVg^^_9jXw&S3!2g!&G)Y3TQqVJh69l%NS+yM)<j&SuR_r
z*Fd0ZbR>x~YxIIj?I0;pgx`Be&&3SwP`hz~Gs;X>ew}u0)QKL%le)U+;pwSCpxkJo
zOREua53ny7(x+1pH_)|+2a-@Le6twNR@aExLR=$Px~U5<UZc<s$r$8fq2fRZ2T<3D
z17vn7ApOkhQ%3&dpoA+daS{+FX`Fj>*mL&#^maH{y*_m(VKT(Ep#yA6%1nzQn@GjP
z<<%tWO;5M`cnP#n4|!+>5CGBLPBo)b4;E8uV~Y8cNw62g)E87E`inX-uUj9Ya$UJg
zpc?i~r)ekXRxNar&h8iZJGuMq-oK_Lva8cxqCZ&!oTQAr_SFql7}n`N^e*c+U<Ns0
zUy1NXDO#s0cjrgae4{tNY`lTq-w-E?t{$QLvksPCNBoYN$}h#Q)z{&aXyrTG_<($J
zdTp=%f?^*G`!MW7o@`DbGFa!99j4EG^W+?~1upm-EInS8+vfek6q<vx<VImgW0uYa
zttjeji}#BUdLCKM>V}MPq7MZ!b%kJdSr&0ia`VJ*-V8Y_M2<U2F~PZ6J?B<gwxqJ`
zIr5R42xRk`*1voB2HW0$e&Z96Vg1u5-yl+7%;hh>^hHC&U-I|w{7T+wRpHn`HB}ha
z^SxzHnou1h(3bE1#&$%Le|X<H5&$Erd}qz}lS&T@{N2a*#Tlta{@ro=D&1JxWM6?_
z>py`v6r)%+_v^5)!pieo=*^1te%oQL`7P0XE4U(*BhCHJSVuzbtM%bEPa=l5TjWS<
zWY4~qJ|*GP1hGrFwwG{F*D#mM>v}|v%KyG`bS4KbyHu{c-@5A3b#lnQ4#bU9U={_v
z0mLr^qkPNM(>B=2I!qa|=x_S$^u6_#N^B>AETD;6gusi~aBtE%en#M|p8sd4==Kj(
zA{tY4dr3ked)PO8W@~fwROfh*z)gbjO=Z-RE;Lq+LrAln4H<x!NhA}Gkq-OA58W!G
zTU?;SN_|x9ZEY&16S)I>gNo_mMNB}cYAioAX4pxkI<>$D)A<hMmm?ZWS(6%rzT}o-
zq%WL>hbOfP!N^2giIdIq#D}687Mw-8P|<$e57FJT#k)>$GK#pk*+FoTp4r3m@AQ)v
zfkL?#vv8}pZapm>;Cg)OrHXKX;Pwk#`=8groOB<=|CI!FsG033HF7mR6b}A~NEGho
z(E=VJb`w8goG%$>B!D*k0ayZjB-KlqsVnlDr}rd9NcG<$kREcEwAGoq@g^oS6|W^e
z$dy?5L{3~8W!WhBo92DXOu;NU-ZDu}O;}iv8>x=iP$<*!TT?4JlH(Ll17ALj7-fKH
ziuGcGNp_hNDPFw4s}?T-b|KRT|JXqwCY{LA`o>9Pi(<@!WDP(9SpQ@O#R)fu(sCr4
zt4PeDs<fM-ne(U`;U5RBVY;Xigde(8JodKzroF;vqUVfsi|==Ar}+e0Z;S*XLhTDu
z3y2c|%s^qmj~wq4J6=zY1!7&}7U#eK5Akt}2oTYo>ubCa)PrVb!M&e$kS(hqS1hsQ
zJ9ZXk1C?-E?%X5%RWryZyGTr8Zccm*`Pbrt9VX^+%hd7bKKRuB4GjzjLx_i$$}5PX
zfv-ASj4v1)eSU01PKiOt#WIR)>Xx@H%oZOzUWHf>B}{_TR4#f4fw3BG^V2@D<~?s+
z+5KXk-o;I)`jqn7dk&(W=w;dBHvuwr;5(m|;GqZtGeK;`54O9!l0ug%Odoy%ld#g3
z@I(QwxFOyZX4Si$Dyl6JC;W|R0@eWlH^M@gk(omT)0Zy2g`#4;k#heDWEq~68$46D
z1hY&Ra*vE}?)h^ccOp?2y&wAZO~2tLR3f^=Xpf!~MLbuXny51`RnI^E9z0dU+@SW;
zLG2?*WbU#m3m`tz5Ds>$Lgnew5SMCotgzJUA4d_CP)d!g(hu5VO@p`Yeu4xlk&a8F
zB}2~5`i_59fU7-(eDQrx1iugHJuwBnpLeZC1FGPq-Mk;r)+A5LmdCibDtIwK`b3LK
zJXpv}S4(McBPoT%WUQ{lnhKjW`maad?o>;4R7Y=@`KNVqyHjR7H0??7&Eqb@71Gnw
z{^@N$7K{n;nks>|g5*+9`yMrLn1&y)ZOb+tvR5yP!kjawg*9pT_j}`Pr_M<yVTsY%
z7sN9_w#aYQN2CXL9YZh)FKJ}pUwj4)G9B^Q@jb3fb5`jQQsP20tPs}U5#O)CSX)8N
zjG(|dXC<f2y}iBcQUl)Pu@w94N4EM7VwU+HMVaSBy2V;9O*F=>^Q<0($<lLKpIw%n
zjOz!9_<KB$7U9KMoM3aW%(N^>KXQ7fGth7TS070Q9-tHhW8qfBmG;j&4HqxqO+WY^
z*X2035QdJoN6H0G4!<T!{i-N*0#*yeeo^iJ<=ZaZSj3G<^Dqp2kDKnIh}VCQ>!csY
zZrdU{G&Z4iPQ(B`zJry*{~Z%EQz?-Gy#*#S&wi$$-^vt3thgK|x{a{C-p+CPoNheH
zn1ja#pDc#)An1x)2_%<W33+4tUAJOuSZkFF=+^fsS7{{=O2_)1h1EtLO_ZN@eb<wf
zRj7%<$09=zCYa7*NuluP$(?9z2o>LTE6N)ZUkF$Et)=C=*B<)Ha_1IrFdeV8=KX`2
zhzqf?3~jUCDofQrd>+Z6FwXt!>!e|^oJPdzp)B>R)~m90#@`>h(@7F9df0<>0GXpP
z=>*q)2@w<VKqUynzMMC}&YWtL{M>4+8@^b7Tt6piO9P*PxDm4&CBu?g5Aui%SJ%p)
zdNU>6TqE1b8D>a^NkZM6+np<t=w02J$ge2G*KPKxq1~@c%L+Fis&M~Cq$D-vV(aHA
zD6ba!?37@KwziPohfD&Ls~pysb*FY<Be!r?SoB1rOAzbDD*Rz!1az1f1<}&==csg5
zEO%dF-+6{@Gv>Fauuq?3`xx85ung+`7}S1i+Ygz-9y~Fz0br3YVZkwb@-eU*3{BgL
zO(0YM=lTn37(h-*?ZxGXFu7S-MX=HAN1psGg4}-8M{o^)K-m7wCQq|=Uk>gza`ZP!
zzra!1-DlI}1Ph<ZY;sb+x}J&droGsXJep~Bgoh(eSPHRL18978eWikXwgXAcLoqDN
zRW+y`R(z;VdWu9mAbhTm_a5oJlsG;wi*C<#y+<V?kFYT4#yv<|ClHYi*c=P>adr-3
zL@bkhB$P=-%EPTf#r75oyOv8kVs$oP7h)7b%_d#mM5<bfH6IbTltMi8?bk^-o*-`f
z?gVqi1p(}xR=Io2^MIt@>HMyvk=(dS+*`<aeM{jeYyI|BnD5|zSS1&Thxz=s&u^9U
zFgO%5c%CZ1?wc>(Z*!OIagl2HTLn7AO?v?U*3%=bl0FL-W{A$KwCcYK2<%sMpVw{M
z=IS@rPy6OGe@#z#cKuoXXPZN8TmsY4ul>{KyldN*uIm^=L$<;2B$!hmyhKNg)BhXm
zAI(qaIDDz~uaOh~{v9WfU$GA_mIS(jS{df1*ZeYg-8V}(T+ZzKt}~Do1biY{!nKL`
zanoryZ9K17y|Ich6c;PqLhof)`XPeLQmj%T@p_TKsc9Wj%YLI_2e`{dy-6aBgSOJ1
z?>K$wJ3`&9Ul_74z02Dwd%MiDw%C98I)sm$n((UBjBma}x!*K<=vAZ!ys@{xS_Q4V
zR8X=0gJ@r_vqCL00n)3cqooF)!=T#nPd*Y*3nstlV~2HGrNs9K&}sD@>3Vw4?N@m8
z)_-#Q1h?SnARC}wbHDdXW88XH4NL&wMXOQ?G5=PzVk^G*$7C>J(`cg&G9&FJ=Z-W9
zq2hZIaU4w(G``HrzXS|Qlmbur#kZeA$o0iPiXHMhp7VcLhahsnUA&8Doe4f`7tgxY
zfw2H%x7D7PO%T)qiol~xtfKGyCvEx~#i^olzhVoQ0O~kVvH|H!R(Gaj$*|y(4d3op
z5DmaTxXG3#eI_{d^~{X&iLzL8N@R_rtk+x2?)M4n!nNWN?)Cug!28Rc8F_@<J7Jpw
zhLDAwJsv;85i*HosWUeHZ@gA^Yi->Ckyet7hGn3e^<g7JcQ?iVW1p;Luj?z1)v2s@
z(52xGqSXMl`9GNOb}C1%ii18%6#uIwP?BJotF!Fu)i#@c05E+Sr@F*_S9n%m4Txz1
ze~J097-kxIzzgz#Tf24sSxMR_*oCXz_VwI))?OyT%<3odL}F>`=hWaxw7b;?o6hxP
z=rrSHT}ss#%1-IWt*3OMwDaaa*_hho&7+A#?@$6G%_6q|-i)4im7jHRSy=EYiB=cx
zAHT6;dx{IxYHmRP6o^X{!8!W#GCqN|lU?8xpaty&ic|F$IEJUH+&KngHl1#L=sfi^
z<(~&@pI^P9JM}Uqjf0Btz86%=MV1(XD;%jQ$HjS_+C`j5WS7`pmQ2&b;(gsFW~B7c
z6_DG;i)(I;vs(aT_IRj4#RuDfi;hXRte{IfFcF&88M!-5092AEe5~t4MTA~=;rQ`)
zLDLG>WgfOQ0cVtKgoqblH7`F7D!9O$$f!1dolTybO+_OkTya}}M;0dJeGixm49a{r
z$u5z7V(sO+Yh{gECQgogvjqbZu}$%B5Ya}aqJZn@EDf-96vd~K1ySIBb|EBp*+&yq
zberrT2cJ_DI;}JkSUFt=g`#}17CU)$;r$TU%`xv2;NFPEM+6v5ZHP!NmDNT)@zv!Q
zMp3WygE*}D@0(m)jraM@yNm*o+_r3Q#jqt_%Lxq&1psg@Mx>S<aximB?3-lzIbxFM
zNW?YyAc1?6IEB=*yY&OAbkj-^lWeiT+$RXVASpF;tSO8EwrqnJq&(d##BHb~Ut;%m
zVL2?_^yP|inS^NwqaUs9%k&{*$s;l$z9c*{Gp1NHo3N}j6-WKK7ZwW)oP3&e)x_J9
z=zPZ?9t(_8+Ll=ttCvVO$e6`!en4uiD2a>mL^+rTK0vg@Cfu&>$5I;_r~~L#g%3x7
zST~C=<_d85DxyQJ3Yd|ksn}>%N}-Gxl7|PZn}!C|D(O@GPMUnR5tjau)f@HX!={yp
zB3*VJAE55Ms8$C|QVhU@6IH<fz*mT^(^eY86|^Lyld+Fgv+qesfn;Lq>*v<{$}@c{
zONeWb!0uRm&nf;Ej5lJ-3U}9ww6SVJN+z=JF>v5zOY_G`CW9k@_<=9vvJe3y9$R2$
z65>GuVoB4-w=Wlxv-wdVCz8m~tx36ObH9|DB>xzT<fe)3vfpphudX_7TqQ7!-A41A
z)8d0MpX=+Sms7`w@gD6*;>niQ99~*c*C_7VV&ca32D~oUZG6lwtdkOa3+|GXx)okm
za@Ba9e_UTzDp`}SWuyt}J~M8zc^>k}EHkk<$tP;u+qgxRnpj*}-j5lw)}-ffy(Gh`
z{5ZI=XJ@6qqkp(LFlqDc1UQg;7=V~~!R+Mq@tH8)Z>PYBua;luEZG@v<F9gx7euPC
zE{bIBrvN?a<k(bm_b79gqjqMucSznL>E~19+SE`PldeG0_Qa?4AclQijz>8<`A3=|
z5vJVj>bA~Eb(7%hZl&c3Sz#81%Sq?MH3-?9P;EUkA$*27?(D~~1>NP3)S>ZUMzQkD
zXMdz)tD36ku@}*Ebe?}iq;@y}B_v<uq6{7y8~X%%GyJ3Vq}VOG-!T@7ANg5(=)aO9
zZ%4vHvx)Z~DCaT9IeHinI{?)aeH{5-juVzT0+rZ-vSuA;7l0%QX)&{I5a#YVbcjJA
zJar$M*9TlU^MIacJvPRC<f=Av@SZZzS-*hV69Y5obiNvMQLVaYF?Rf|kE6xZRaCp4
zqrT{Bcx1^>jU_p$Dz6Bbu6tJcdqoRi>j#8-et`?4#VYO=KQu8B{oT(o!7|J;sKvE@
z;fG-QBBcAKZps~H*=i##vnTrf19J3N96ipWF`7NUXvrJ76Y%Fvodkxf@qQADIy2O*
zohq(VP3%-tWR|>1BIX#%6Qw=b#`*O_3>L4N+n!GkbD8Z7aju&pN+qz_q=dOKN#JSD
zs2`J28a(9#WK-7twwa2D7*AkVrS3p}MD=XPcB{xha{40t{kb^4R{vQ5;iK_egR}w{
z$47-Z^fKaD59?e~nK{r~7t}EHa*du(3hP+5B({o_ZB`8$4G6^=9mNJ|FN&k};@V$$
z08IC3`oH)onh7|LzO*-%zC=2X1Nf~qX)z`4cqCTbr8)&5zZ5gL9ZN^kQ?kUq8hSAm
zi&PCy`n~m}-o3GYgqb4}`a1Ux2{iR%{dBCq6ACPPFnG)|mM8(qZwOB^e`XPXjVs=@
zx|~xaAYyC~$$0WFIDXoCa_=6BcDi(r2WA^$)aWWp3BLfoQ=c@Of96hh&FzvSjM^1s
zz7#vS9V>y^NF*C=WLQA|z&CIdMC2Y2HEvT@#Jos`=;47PnK^A)dx&5PA{=C1w$6v4
zzGKI|ey?dGTE-EzvY=LtY2Wqsw5oBYa@4dbp`*CMbhl*XlQX<aT-$o!UL=@AT`lyS
z`o9?7QM%eLe`5jrTVQnj@<eEk49F~bWK|PW2ikW%&cKbb1A5V|Z|Ts}4}kuYX(c~Y
z%71s0Tz(pEP7c-MEiBU;2e^A5!4HJo*faW<xYDcbXLKt@`Tv6alRI12I_(eGbS8os
zU@4tt(JKq}FTg+k;q!aICd|ZjHbBF$8V9)ULmL@Yg~izZpiRA?t*gp<J%c?oz}CGz
z$L#CGO*j}AZHaicBB_c&$WJ{#><`%_b(m>w@Zz>((tZ?Rm1%P5zQ+K8Hml7D)Ihz~
z9I;>+i)ox4>UO;b1gBfg?^5v>k5PT){;k_}@kSi(`i8@%&0PC@UFN(TP%>BV*M&!5
z9Uc&(asmzdK1+!%P0wRpU(Jf@sK}Sr)^Idlz2Ox#sY^NAfK{pAiw8^)86j;du`O|X
zB>`}i_Wxzmi&p{k2=5pJN|xY3XPtRAS!H&=EV!(^Ks9qtu1Gy=k4)`>Ti=4~P;k~G
zyYm)IO(>GKeaa>PuR)T88I<#o!<z*9*jG}2nrj4<^?>y~gl6?U&nm{L4T24UG8Vg#
zdy~0mY?ugagh9BUBs$%KeqAfcm3<%R5g-lC@9h;fJU8j;9UB!VRgZTZZ=DvDEnqp=
zH4)i@n-KB4>CO8{EyX63KO!h4zpG(>Sm(5Fvgw&;>BBxXr_27ZO=2uvzz&=L1C#=t
zT;B?VhFZ`Kx=r2-;U`(@?QDovKpJ8Tu$CmsE&%iPM{HP4nhc^~KZkjv)l_UcB+=bh
zIGRbgWQOz6%+pYE)OsZuqhHX2`E5)_;Blk7>pwH^$<_TfOEm$p$rD(JNEcb8BPC3=
zd6tFQ7)AjlGJ&YM)<b68C-+RRzI_H}FMEeDL-#NJ$ShDJ+B9LaROfxu<nOA`NWGSb
z2#3p)yItH>#Ka(Cu6NERnG=SetSSpQk)`Gndg6Rsud2lCmV_Od{Ht*HPBib@H{0}&
z=oe=KOGfFwX}Ko+gJjTE`OGK?&Zg@<`T~&n0#zgFiw>Fa9cZK!_mpxm6mG($8F(vk
zuKCMcHN4YNk127Sn32|`*Ucd0U>u-@S5cu5u`t}Oy1+&a7f5nnM`nVd;c6HK`nqE#
zd6RHUl~1r&GCTp$M0x0`CkU0WFfw<><s*EcYKUb%9tH(u<SezQO%#Q`S%vS-;@xVv
z-#o3Bw~satXS|;PIG;qkG``%54;58YJ6e!=WbqkX!c2>DI3P<c6z%egtVG%epOJ&Y
zv4{~>NZow%VW0I80RQA}`=d6!izLThA#_Dl%187@@b{=Woyu=xDBB;i>EU3Tcc@a*
zbAM1h+a$hY^wl9?pGF3f?@kRPzaYJ6IU`Q~p0x?Gdm{Ryjzo?uF>e4OC3Bj$f!UZE
zq2?Tw4@>1>##)X{C90S0q!WBNhZf__0e3UjKgwJOO4uxYBVuoo8o{y+qT18ItPO(6
zGaHpuWU#dbNpu+d<2L>2`r{SME97`t9knR;X*4$05~S4fP#N&{pV~AcuD6W<W-dBB
zljNRsZxr%0c{1C0nZgLRB1)k39->2Ev9(nTWs%N8!J~~tp0-!n2qHvk85SsNmR>jv
zd`_u%MKVH<eTz-!6)^lF0=eeVaj?jgX?0j;AK!ZU4-|Q>#vV}|niejzOK~XdB?H*<
z?6fpivRtY>p&}2%e09+|a?}xzcNM4~6Ao(3t3D@Pw+{yZv*3X5I%<EyrWX;6(}Tmp
zicI!;G6Ko>0V_bAipmU-+}A>6Q6ZGr%(7!X7`+YoyCQN-av~idnxwLm#^fam4uPOR
z!d@K&etAWw>gR4ot&3VD5gI{CEarms{yFQz(#@iTq|6lbft1}Q*OiDi=F~qt#vJc4
zx%MYnO<pd~uB~PNDfY{<S=l=<wy3FX%SxCoanN5GFAFkm3y=tY`_F7Y=MoHySx9Ru
z{oI9tnmLqJ=3c+L#C-yV_GXqse2Uz`QoO>?NCTcbMA)@~Tyh_Vk`g&e|CFbcG|Bz|
zM{`&+x8N#~pF_^beu0yRK{2seeynJc8M{Od=@DmSKQ~B;0x1fQxxsB`4!^60^*O*&
z`ZHUnwXVt{4Ku$Wae4s!azyeQ^e)}9ZgblHZ#LCo!&nAJ5kCf#NqJNqf3Jy!>0)^W
zs2E$ka&$AJA(cb}rJ<){HdGzS3m7RUET;Um6D0ns+J-VvDH_U{fEgZG$~+9G{HPA%
zxxBe^Q&(c#{elt3WGhqod5Lq1M%Y5n_c5&503IQCJIWbaH@c_<(-28o+QuKia{d*f
z(J^muVerrjKfFHDb?8CL(`nys({JlDq_N$0^=AEFM2l~`I$pLFMh_IkWdj*&_5D{L
z)&b7l&pEc6zL~(bb<k%0NKv|O9kg7wB(bgTNn*<vM$7a#2$1GSXO?+g>#N2mF-6sy
zxN2IKDc5XBMFMZw!!K6wD>jTGTyAj_Y{#Z4hnQc{ND26GvOk;9b}MRae5b@OFYnSx
z=mi0DRJjqA1!V`WMl$n}8@Tt+^0zo7rlK3-FV9q*CYg%o73krNTKFhf9Lc(MGg;QH
zOvS{C5C-A};aT02@mOyIWVj=<<eZB4&jad2C`P~1mtQuE0E(N|S^$l6mdu^ml5dVS
zn(#G-EW$uc-eewHNTbU~I{y4?RxcA%rbcysbo)Y;(#bJ>S0%j7-dDuy6ecM7yZm_g
zm#UD?FZKM&a7dhm#Uz(x4O!a>2a}d%NwM@IMy<t%<$Bxu9u4VyNB28J7KKk#Xy-!n
zUW18jWzGT3xm~oP#K2$YFz05=1gQ2i{WP-rW8Wku(Y2lI<Tb2TdM&2|jO=g;>0A&z
z64)Xv;5`3$marw9l{xlSOOJ|u<=2gLA`#-v$ho6k+yD4y8VS0iu(tWlpRkD3;siXD
zVGh>5XeNGvciq0jrni=*OK<x^WhKeaCxSo8PMRP;p9=mw$63-Ph!w{wRT83yoPIiZ
z`YgpJ$aIQKq9LUO@0sCLdu>B4-#fLl?s2{5xV{n=7rz?XIh8&oR$33T%zT)92+shr
z&Z+T48V~Cf`>OY?>J&A*%S?dgY9PY&j)pkb4(3{c(V`aNjN~|`xVPVtHrMoux6Sp|
zE_lV3>1N}U5mO@Wo=fDY3_i4JVygT^x-X_;gjk_(eE4+B)BzPDVRZ4~#g@zjI|#Ax
z@e;f@c(bIWAI{wbESq<Tq0#*V>JB+1_E<SIMcy1dgu#!n=3(f{96K4j^GBB-!}9UA
zWnXhhr9A@S7&YFivqo5j<_q7ZIX5~I_=(6Da@m)C{f%GmdEe$KeAC8tetAxJ?{gS;
zU#Vrh*LsV8t@W0N?1Y(9OF!ITmhE1dYUUu#(@p7mELFg%#|L~xtr6a4c0@869jFrD
ztbBMVOO8rt7tg_<j#seayl#dzt2?@KbKsqzCA%VNNjik4CA-qQbd;DJLjxZO=6l(n
z>!VXJazYDqg~Pa_Q$8DK{=gapxlWcDnmSe*GqMh1wVVPyW-}(#jUZAWoG#Tl5{pDm
z0-HO5!xN-?;GjZ|L3}Sw&lqP(#S=ovz-ihER3$za3z|ew#=XpR%ycdJ*vnijR|AoR
zvnf4+<u^(Q0IvCx?D>oxBAnNS-Yu09NeBcPbj8}I+{k&NYmrIdIMLg=Fs*4UDF8cQ
zlZ$K*Gn+`JTvMd4*@jKOZwKZRCSrkgOZ2@jDhG8y-xmdSfEm0%--noO5x~JD0J05A
zG6a%o%noSAhOrCDM(;7~yE->phj}D8Yd|dFOA7?Dj&8-jq8ft7$w82JO5ft>xg`w`
z1sBK5Bh&oePt}jRCFMJ5#h()<iNhFc1(#u+)#EqlG^}{BBIw^mAw##BQPK=N^$&-F
zJT^wdkPp}@^dkPH10(S|VSWlA2&-JY+PyDb3_mv0oY$|HLO<e>Gs7JS2OPLT%E7V6
zNrj;E(?PSVs7`?v5%JqD!DZKGnS;`Vg*6(|6J2<r_n~}=TTMVXA!j${IE2s&eLF>%
z>_E!Xd5iUkSj{r>_2=9m;L_YAb*o>ycIiY09TU0hdDKR}4GlP0spwS8F>|c0yzE#G
zN-irN^$sX9R^Tr`bj#xpmWO)F##qpjYM~DNyiW+hbalTUF-m00RoRS;gaEOi{WnN&
z>c2c+l_N^&LA=^>f8dv~y3Trkj-=h@8tta@vApzWT<9{<9CT4O!$1Vm>khmA8i4`Q
zxSq}g==y?bJz0xMmPsGOYZh2~2_iu3K%69;!L&Vw9%y1}RT5B84ral}Nbk)QdJY7<
z*?#Ctyk@}{I)fvQFZ9YL6CrBb@@z5xgu`0`Pm$N4vG4^~EcarC#0QmyId82$$(qTZ
zB;M&^j<3r$Z|KQqOx#)+1QBovxbR5YLS8wstCyLiFOh3Irp<Gi#Z%44W@7K;Rl*@)
zAHf6mZAhCEgg=}d*q9qoHR4@KW@wAo{PiFffv%*wwJGMF2sJZcu8*d1b(R^@u#EKX
zt8^GwR-qM!tCL)}v?#hnE~Fl~uyZz7GC(s3AM<zVTT9JS(HH_RFp)h8ScQ<#D~_4k
z@ZAwAyq(4MO;bG*A{y2a5z+dewu+P~qyeQqC>aLE&oCu`3)ghl<s^4Gh^SrDy&a{I
zcB}6rL5hBJEfsi=AH<i!Y=qf!S%;J6q)nyy<zSZ{UAm)0-+fkxkYwK1qU!N`2pyV`
z7?#d3Tk&6ca~J3zo<xXh@G|k*I?!X-!4^s%Wp=sF-7QQuLx302WFC}qzc6XqJc+@y
z^q5pvvRckKh6N{p;&nS9Y^yv!;dWL+YT^Mv`mN@zP>9WR{xp5vHk}Vu!pA5Y4Qf~$
z%P;nv$9a)1KJrJ)j<8J+IEnUl#0$lN;HN2W;bQ0-2D@L9!`O(*Yh=mH2hpOhmB&fI
z*y{8nmSRk_l|VD$!m0sr6F|I4ql2DaDgUc#o+y18oL5PuiUbW0qaC9Hq;wRpAL8GS
znA~72rWd2Jx}#HHc}8ks^^s&faHq9bx%C#5P!Ue8PL5P6^SCd2>!idyp+^{<m4s1u
zg1)(Q2D4FyUypO-y|KkIQBC0CGZ*VvVtaVFyYs_0lB;jo@>rfrPtVr3WTEN?ZrQ?9
zW@PILJY`BrMNEaB3U^Cs_#?F_fD)#PzXvJxC5$`4F^RAPTm^t%m1xHj?DI0<e6jz_
zRl?d)3z-dC84mj3A$=OpRHj~>jj&ALTkMzZEkfHudXIB@$ywUTysQ^-9?Y_=pTM54
zl}p9EEtg`e9g>BQXa$6<4&WB~oR>>EE=x!8Suu><WX&*}h1;3<!_{Zet3z0e49OGq
zM6N=y3DMYXsNETr1V1q=iL5Es7+6_3IuoZKO`V6D$K~t%G#zPRRyx_Th}<VzCd&fZ
zl4@nCY+1B&oK?b$5suNzLwA^s_qmkbM{tz7smnKejzl)Db2fU_1p2z!h_cA=Rg2rm
zriHXbrP%hT&r`Q`XUsK!%jE&?5^U@uLm-r}(DV6znLt@Ah`Y&t6?K_??ke5UBJ&y_
z9uM>ax{|9M+P)3Zn^#S0!&S(a+e0jCq{XbIZtW6EjjOWE?k$N^7i<v^0>KYk)YvXH
zx=qZTVHdNfI$f#gfYj33CfuFk;4Z}aD9mrt)Xy#00^=8laY=@X-1dUcl9U^-wE9vG
zdAa21f#A^-S7s&XU-v)E<c;JovsM*#XNk*LxTUO5$Wo~oDUpGkaPQ2l!c-@d3(~?I
zb(4P-6~jk2x+Vp7n;|De3SlL=hsa}(JM9yT!8?l>VF_orB6dF-S7YiV6T_vr5<T+x
zYvNhFojTG3Bu39eYoKjK-aT{1XY`%B^pp)VQq>+C4zc$AYIql!(>^e-pbuk<vYbN#
zvSdD`U%kpOc&`tG$c-%eDmEojH)uPfvj%~Ta6(j)*NI(u6W>I5Tb>oI&Hi>oDmdu`
zfI^as-}FH{%&wfHZ!h4@dWBOe>aBdM`VJE8w#qtiGI-#Z*JU}W8{yRR2%k&-V*P_y
zeXlc$X;lylnzG!X*ZSwkh6&MyqG^fRUkSI?rz|sY>}<zmHl;gUxnUbQifQJ$4m^km
z!%UJoe)?r6pTmd9qKx-LO}2Von#33ToN8G&m#@Vug<<l9zVEmmvXiN~m{<dgR>)CZ
zXWsDUz?7I?C|~pC5}5nGtis=QO4h-F`0(GZ-znZzQ|giwei+p7D<gBPPG>aq@7N(7
zR_t-5da+ZpKzgfHW*bI-3<$^r_0=h6w*gGf2{WWntw5DPZ8)^BP?dKoP!s(z^uGS^
z!hI^$QnXo+I5>o>w~B+EBG@rax1PgAXuPdr@p(<f;%5EEuV*;f1}o7FuUTYn^wycR
z^%e}XxG94PNXB87@vGTr(|$C7fgRN*A0zlybqi9*k>4eT;(%fn8k}YRGz$t5VLT(0
zQ6#rxVsb6xj~am$P+aWkFmVN-W>6z}j=6qo;-(i&YJSE=<icti8kc#J*^|`Jv)h`~
zbCCIofW)!raR-Zwr<=hlTb5o&7uXMdEv}U9#i_Vzv;Ck%2NL9Xko1Ga-i1?_#ue5B
zG}*<piFlKZREjpU+0?l<nQ6@<7(h-PCXs;S&A2%C#DmCYt{i-YtHkYvI!NcGn*h`k
z4`??1{_Q?J?;0lWqEG|*-B|o(9De#Z83HOkFQ*DZ9-4MQ$I7p~sc{SD<e-fo(M3%n
zTr=Ahe>ryd*ql8_^gT@kB`~_qP_X%MlhJFp`-&!qi%JQ`)ZadRy6>-lmA*F!-M8eg
zDvQ<@pF&LcGsgS$O0X)Am?@-Dy1-+1VzDjuWABwY62-_bSA%o)*7<zPym?gLw4d`u
zktllEqG#K8mWY-0#=Y1!>wHC1!ZGZjy|5Jc&5-FciaYVf%d4+FFAxCmx=Y(D7NNoC
z*R|HoAU7j}oO-HZVn8_(jfA+!ZA|$Q2lLDtb6fEeM-ndED3KzRqncU=qjgM8Zj%H7
z1D7w7>j$00=!|{xlq~B5-CHPm3lA0zS+9!%t;3fL6+06XKSC04bn+%%O#(otOUBP6
z^!t)(%b+6PI*go!ZG^Z28`)0in}1Yz>T`S!omVUe+kF+L@k8ska7F|V_<{%YbpTN6
ze5t6eR6aa}C1e+0yQ_kDR&HSV9lR5xlux7`$bn8nR_Luh_&&ao{0|GahnlJQs77H<
zMrZ*A)LMaG0jE$kW38Qtv<7r}KC&OL{MI2-JbJ5lr2cM2DxUgK`V&2dBW6e{sk*T_
z#)nHFKV5Nt2NYG?SQS$rN$_nEbzv~$pt|k-xD~WCl_eAoCcN&TTGCdfuV9IAzFx<^
zcM<ZgV1W=2SBDDwA{zW4j|75aEDpY@|2CE@UbtDT8%kcut9d16N?y8IUiyT*6#lcJ
zRB&~x$t`LCDz=w?+wlkA6BRIY$dZJ6l_n~3nv)RnwpK9HscmnzSTpL*jc=#_PFCIJ
zO`_$qfptuE%qWvv(SX)Eiv=7s5f+#3>I_}ngf9hUuqoJhLec82*dlyj583F}1~w4@
zEIYK??EP|UoGv|!^z#=>uBiSppjTXA8v5HTy{<{-EPY=Sn24-SJsiB%c3<%d`9SI9
zYy5xh2#&7RXIZi~<0u-}z7OXMV>~g$v^IV;V`<|nOPS<i5Lk;Dfy=SW0<Iy1VprPx
zkgkeJuWtYa6Voip0Vg~lQAD|7(BJ{o>o2g(A~;v7yiP)^rHKw5I<yRdO{`oNR$xLm
zo}F7PDI?1ugf}4-m_PPvRUwqw>^L%yAu+1kq$kT<4kQdH*G^FMIL?6QokesUv{Mwb
zxN6#pb$dE|TZ~MY2)KLzJ%2~RJd5n5=Lt+Dt*7x7A#ya}F3A>GbBuWb&)4q?g?SGq
zY1?@UF7%2%e??a{siOUA(nVRKLYNCaf}$ivE$l)S!!*|hDGFcKQeClqyB=3+JTH$j
zarIw(sY{O^yt5XtTS48Z0_C~5;!Cl3r=LA1>yWRaxL8M~0VV(X=Z&Qp1o#<xUf)~b
zBYwYB=$g!VA4)OW4+98a_%8F-9U^M1+w}$FE(7uyA_Ri#F(JI=)SxtdAE)M>MNm0R
z<$0?qy>x>$XBpTcnTDp$8<CnP^N6gFT#%dkjQK1T*AzV3%pBGcGnGT1$RXlK#jtFi
zGb0<0P+R;;fqtYd_)`FCU;ni5YIk=tuvGAGez!zxSJ}E*YE?nEOgic@TX4Iin_5#V
zyXA=w+q!AN-pvkMx4d+ht((a}UH)sSA%#gluq)-24JP?H;V>D<*br}g05|C)D$)Nt
zSR9~B$5PN%NDqXUP%daN&plpoR29%?#eq?|d?SEF<NB!35>PgSY`BQGi}9=`1B4C!
zV}JsPGz;_Y+2VWGjJ42ok~~2Si**AxpamVfiUOKniOlnhwPz7qKfce8ma^-r4))U7
zo@aZ2?HRT>@poMnZ-2(74=!6}#cA&ZI3dnp^GO`>*7jXCy`)CK7SGtQpuzEvhbLf_
ztj^XZ*o*5rxCY1t$(j6?%jcZs=aK90gbAbr!(4#>2mi~1I+ow^1@fO9lppdB5Y260
zALWd&qF8tFd;{@Hc26mA_E)2;aA)u|f90{?|9OZ~-@cjO-zd|ir~O?y_FO8*YW=70
zD8{#+^!>i>{!35YYt!$;v+%D9`28OHIIN7prsJ_~|6`9mx9+mX?qI_DpDFE|mp}IC
z|JY;y?efRA{Et2MZ)-2Bge~^}flBxu{qp-Y`}0=OXnAS;pW6gyGle-}hZ&3sZn<v;
zssI#N4*16dB>%?zT%L}a7-~{;fb+3NvS3X;g#q7LsIM2GsS8~8;|(Ll`b6Ft+h$c9
zFk>HW7%6VWzFDU6@e9?ksrRB6WI=)m4MSu!ORmvZg?#f7BmUn$LSM!57H;k@G_a&2
z;vmEU<1};QWa+wMCs_tWzFC2lI5p0AW3Xf(W=CO9i!(sg<MxcRe!1hy;?{fP4E~b!
z1+&DN68s0J<c)_#>P03X1`jeN%D*yus<*+u8#J(OKQ%~B>hxRykKV>O0r0MH=8Y#s
zu^Yd6!mL@dMdk(bNc5x03f^<F=bqrNZ9Tt82!a9@Jm&5>mL%1^5}k?VlJFtS;h;^6
zojb+0gFH#p1Ex6k1;Ko4h^cK2*APD5;Vj=GpTXBx-zJjx)q4f$e63W#(9to`ti`{I
z3)H%HqhpTNxf}IO@u{sY3=X@<2j~bVCvs_S9AJv7Ld2xZT$H3zG%9u^6#y+aMnutH
zQa{3;SQf<x&YN+ki%_lSi9z8BaO>{<`s}mZ({o{=Geg>bIrbQ+TX6%&`r?{ziHVM&
zpCA%1^-lxQu76TMrh&}P7@ZlVN5@9a^;xE(*y#_&RdcN#oF>xeJ?Xh|^;N}<dhrAt
z7l{9obR;05RX4$|?v%fGQz`upOIgtXN(&y9&Ok#FiM2E|iNJc6`MS8wB;$%nTxb#k
zNjRw-$Q;>v01~rl46H!KGfNMfXX?FMs^;nlH>5shUc+`|MT{F{p`eLNoZhy;c1)Ns
z(m_xz0gtKYSxyBG8!HU?);0Rd<z}$CvG5?HY5PVrzL}7FNMvb}9!Q<mcn}Vpb4-{g
zfyJNGb2+`iI^Ex$0^gFJdjZTd@;c|xH@LOLi3>yQYA@>S0yzhn7=Q1REAo0Do?s;%
zA!qwBA?Li>t?xM?_adN)8BRJ<)lxkYVLnQF)<WmP!lSebbXb)-LAZq`2MUFpcS-<M
zQWjFpn853)Fa=&L6kIScb=^_3LM;f;&q(uKm0Zt2ZY+`pM*iY=S+1JMwG-RWVu+14
zZH<$$9=4)^0Ilw5^xpP<pq7vKnqiU$qJQaDqWZ$1jjFK)UTPVMq>Ohv$CX%}V@d;h
zO-;VwCh_botw|p*{je-OAI?i`mg_6+&mv!xtuo%dW^mwf7yj|Mgd|tQ-Q&byIW$nz
zFjC0VOhu7e+@(i}d_FJTm6>VkpZ%km1n(`Wq`(YCB3c%j>RI(G1TL6o77F)W*)((y
zf>5b3+lFcQCQ>V>t_ImN1A43{gLVX!A25Go{v&M2jtp3h#zxh_p(Q%rK<fy_hzbB2
zhj6N|h@X2vw_znhmuvp|(i=JRjRQZBOW_qWE6n77M>dqNzT#xX`vp@>%uC~mz!6^+
zFEJA_-@s4neI38Ye!?tri&S2BLlLIg7<g*o4*t1XEVUqlW8c#l&i6ow+-N?mQ@`YD
z>;xpss?FS|mM|kLZ+FAvOnzBve0TW5ZRn$k?>+W4weBnOc=0WQ3%9Psp^N%tv5zk4
zYQSgMr3ark$zJs9@&Z@HQE6LpkGraJfw@!(s7*3+>Fdr*KV*y;$5E7KXiEolgqoQG
za0DNDWh`!f%QXyDY@w60S3~H_=fZGiLCi?I0TJ9-jnqo|jj>>v82%vh#cC`rykm@2
z*Q0YK6amvA-ZFe}ybqTX19GL@aYcu?GD9iLHad(fPZX`pISzCM9Xsr3sEW9VMxL@X
zH{l+!CSwm}n(C0*{HjuuUt3W{mXVQdURv<pz#?vLm~CnG)c5S5i`zU91E}&S52=%;
zx(fRPka@~U6iejM0`sbv53m$dbmDOqyQ=6;%XvPAj^$Dbv@MpDQIy82iN5<~_5yp;
zs)z0;LzB0W$eGuzKE=E>bG}y<wfR3>ko-lV1&zg2p10tMMEq%ZqY7%&Jt*~fcXG_H
zS*{shv*uuDJfEFJAO-dd;XWJaFwe|)5z`am|71b3O6vMF(Qv!*P$solZeN0GNt&M-
zXh&^Mh4GK_F_}o+Q@bvSISm$?nwCN<@vI9GXE+n-9$LqC1}KKhK#WwtG6@+?<R`-1
z&-~1<L9q_>4Gd2Cq25L+_f0g30>;q_9LnN@aw?Dica<4)m80!FhU9xWNwYIivFUS(
z-Ppk~XZJmZ0i(YJtFa$KrF-cHjmZLtFVG{&C}FUmkl_gvnXRMa=oc~y)XG4nsoG=m
zjyly{e!70KP<K-|>{^ZkT0nw0)`6ekdJ%LcqLJwvk1>ue>IjdXpN?;a@9lrOcDWcw
z#akBAmJ7!<@(>|H=OywsT>M^O7kiJEoQ+ANfCS_tQrrmjCiVzKpS!tYTpLr-XDGkc
z#bG?6{Omb>^Iob1N7&76bdL&p8Lwd(jnKuCFayO7HVxbPN7awp^=zu~X0j?c^Yr+`
zY-qP|PU1qqWDQCU*c{y^o1&mHuYRmSmJmTx?}WY{5B#7GB1xP$t<+q3=zMM%bBxCT
zE`$fvArH)!6LUEMc?~C6THwZGXXs%WZd@>3E|3K{Os*F(P)C)@i8MJO+W!q9azb2i
zP$95)<6eD@b!(Dbfr)c)Z!z?c<wD@X%^7kk*D1g~?znzA&1pSe3{Nch90S`C698{r
zK`>f*r7HqYQK;FzkQqoAX5G$&FBgcVjr|m7BG8DP*iNXAQa~eO82!&aXMFX=LTA}_
z6vUx{J6rMqh<{E<7|!=`)TvqBQ?kJg6_aGDMy-_&4#zvj-;SvQV$vOu)K?H)9vkpt
z?(z6HF_co;7MM@A5In#TuE9gbP+E>TNj2F5AcZ!vD*QJf4en5tXwCWl^^D@jgc*Rm
zzFDSif!zB8G7|{r4)>z4hg^IVkF|_r3YJd7VIZI~nhEqxCtpVv!*ZEFZhGQ}<TUr0
z`x6OHlQx~j?7LY#$V(zMF6Wya%*oys4s<Xzm_`X^#cFgD9|Q30lRh54-wBxAkki6L
zj%Rs47Hatel~$!>P74<@4*}KqiK)z=54|n*)IZQEu|BIS&(BZPi_*d0A&KqPtFvG3
zLby;z8Q3Ek)N21|`etYEhb$pyQSWC2`GOL3Oo#D#|A5`@%|0D?be(L^TiYI*5_NN@
z)FKzub3ric!+C4lLxBRYt>tmRpXo$@36l_C8le+AFc>)De=F6Q)8xDK7L)=|oz}#`
zI9Xc>63oYHdShUpN)CK%{)7;m#w1W#ONbY%NvZE)Lpk93q~V4l`AZ#Es7ENu{j87=
zL*XOlLhQiV3;1@ox=)HBJZNu7F_<|kE0{g4T7-CQvQ!Y$X!a*&;e6mG0z}O=Z(-Fn
zKw0*KL6EBV`7yFHjg(}^bengXAN7^NABkVc1c^XB9d2#;N+7d7aydJ(S`zInAKM5E
z8CIxNYU&9l>=r)%2@Hm8ReXCbM}NxE^BnytN7;(((54^5e%;C?BlRPkZd>mxCQeLP
zs+>%r(C6uPYi|>KQlVEtAQ}S$Ne2PjPWCpk2RBJ7uDSc!-9UjR)73llSxyh9E2FJx
z_>>Yn<oK#V_{CTUOr?qWRCVNthyk;2BFAzP_EneWh`(VEVQNe9#a)lOkRBK*OUE+O
zqQtZ0VmTvCLnxRdirB9d$;gSO7b@vH;eo}9m`+|Ev{@Vj+!Q+Z0sX^xVbvaa-Ynhg
zoabA@^oRv^v1zUV=?!Wt-P}!-3pC5-&en(uTuX;4%%i+z@ocC}5X}mSiM8Y^*3$5<
zh9bg2#7p&$P7sK<n~vtte_5YhH)sAh6BAu>w}=Y%w9jIFKH$YZT}slwZE8GDw=2&O
zS4FJ(;H;71;W{ac$%_Lw;0Fy2pM!|W!h8mCS#awk+@x?@1ONd~<Y9GFU@I=_A*W%9
zSVhdghu1l2$it?gg^||v3XS<+tY6y@8k)UoecK`RUQh^Jd;AmnYX3Bow@;=RtH*wY
zF|tYkshyJ(QR0ax{%nC;U*PED939>HWlp008^0>CfQ!7bkagva+2{5zNTRo->xboV
z@`60QtO-kF1ywJ}#RF|elXGv&6*wSvQEV>j7w1qyWGwNn3V;^n;=yv@UUHBClK<7a
z?=46NuLbMW-32&~<nL1qsdM7&9=2E38+zTv92z_qtp?eo&6|6hF3TnzWHt()1KEX|
zlKHw^<5nR{z=|mGQknBQ)FZg$7kFBuJT1CIa>cA|63xA+5)yTSsZbBSgjuheph5P$
zR31geIA|4lQ8_e80c(aW&puBKCLA%?O@5rNC-JNXI=tjKz{?J_a7JZZIEl8P*`Dsb
z%`1W5_E<m$xfWNQOhqD4TjK9MmC#Xf+D#&p)f1q|TffRhCiX0Sas8^r<JC?)%^=i-
zQ{ka<XYPDvjKs5g;Qsj{sz$R0b?E;qW72~GA$w|*JokBgmSJs0;U%}A?u=_IjEJN+
zHyuhy@tT*zz*i?sHNRdHAvFRzhQ$odVOFv2Ch7~o3U9;4T5PI{2$W^uKDDX<Qw28M
z*GvcM7Yjbr{c^+&^R-{}t_Xdawec6E2t3{QjDB`aXtStkzq2{S#PLg<CQW_a_Fvfa
z2?F~uMD4K*QP+!cI+H$ZUP|&k>rFZ-W{kdP@LLbvu|q{OF4ojwjvx(*I7}@)_LQZY
zfrl#4SDiNbZ$T*ete4f_3Bx9VAYI<1m6Eh)@J=M#(2K}7h-zg8=4CYuh2vF3SM!QI
zY6uP%iVaL16}oT7Cgr{e<2P<}TSxXNm;nf-9#C4Z@0vz?TH-2Li$rTScDAXRZKDn@
zXb{;I!3FQl(6vlarA=D|%#($%1Ly#l&U`2B6462Q3tLjNmafu+Eo>AOzA_sbf+l0v
z3ZxX(=-z^s6Yq)W!VyuSE$(AXJuP7W<dLb+m@RXfJ8N6P`2yG(tA}qBrDoU}p=L*e
zfQ^wrmmFVC?Q&Dp@DUCpoH4!}ZFW++UA}N)?FW?3s5afikURInkV$~lKA9tjAI1Wb
zszzZ0v2RO^$c;`B6NYpLV#ymh&XxA(fRjsXIPG;KA^cyr7uL>Tdr1fpVOq48`RF^E
zi%7!!daJpL6H0uoJ#DobXutrRF6J!+vz<~Tmw9G{Nf8M=8CetDgtU{5c515-vJY3A
za(B#+6!JE(U8M~In}eOD#F>YrF4ar}{irSSwgvT~U7;UTJX8;wl-8lL7t=aGga#6!
zDzsrx)-NSxk+lGmsL$h^Dhu)HsoC>{KXOHZ_XKhwOn9Qy#)3w60#bw6gq*fnGzPNu
zWsL#-sCdiC;($Aw*TnNtml~r{8e^R_Mn4*3b+9q|m!?*m$1iJ)L|N3kNge&X4X{il
z&P%T;J0x&i0voUk3CgLa8O7vwTuGS-_0uG-OLRvpwl!`8g1;s)IgtR&^oTDeZAnOU
z7d}p<x=gVt-2U%q_4&-#1fD(^;eBXfVv5T<W_*+kCo;3<KLvzhDw=X&26+ySB!7@@
zF6gU*Fb3UsCw8Hc-N^K2>2s?brXuIqJ5VAd`W&y2so?})mTo#Fcc-a1^cqWC+Jfg$
ztBG4RY02_@f(zic4yY6Y!kv(ch|bPJxGpN$40$vWM?6>LJ~QI!B{34{P2@<K^ZEJW
zOkd~B%SqiGc)I5)E@A|cn~C_V{uSwqS=wwJ3%FP%b%F{YBNgsBge3VpkszY_C6kFE
z1ILa@b%4YB&?0&=FTiWfNOUCCCILX7Xa!lvvb3u7uC{&2549tYv2YddGJiF%tV~Np
z!1JRH<1T&~z$(1lGZc81TTnh3AQF-{R+KAK3-8EAe0qgqltx@|39ft4VYB|ZJqxfy
zB#>}QKx})D{|D)s*Glpl$z_x-k$eao?>%1i6yN>M&u1aG!s|i6tsTGHf3G=kDdD)b
zGus_3-Z@>5+;6t)nMX(hJ3hg+B<|U92`M_2tQoPcOtOM{k>@GD-E-FbX;NYeE3+-@
zZ*+)-R(O&=Jn@#iL>GLXjG51%zbtu9obk*qganp4ktFOPNQk*0dL@$_9gYEQVn@q7
zY+WIg?PX`tM~PrMOS}I~9^06*RIkaF*$-@u-JOz9fDW6H4oSPj8n%4FUo`BqcKlAo
zXC)Xr3)*iQs9Bw|b$gR76xH=eUY`;oODwG@90t1M4eC~AZ<0YoAbH^u6;yV75)cDd
zJGR3c{q!-GCP3HMZxFl1=ACt|NL7tY=j4Z||C}mrF)>x|Oc}*Ky>RXEr%;9U`s`UQ
z`Ift#nXM-EbH?^|YZ2Zl92*S~xC?TJQ3HBQteIikL0rf(6^90M3^Sw|)`Ddrx_Vai
zBZ!Z%npl)AdcQnm0Aweq5gCE}lRgsyCxf{WFE)k4TnzxXU^ejwCjZmaOi%$JJ|wZ-
zu8ev?4>I9jjTg8M<b3|gyg0P07&E69Qym2^XeIJG)68W`q_%-WRl;Y2@`TkRYsKxU
z3<K6UnMeB_#^S6-c7#cY)jU!&iC-Bw(TWu?{iAVEVJoq143Jzk9N;eTG?0s`f7VjH
z5;~IohK9F==pp;z<rh~<0d|7(D|rTSzPx~tI4a;R^o+h8YADSlm(k00ztf0vXfPHQ
zg^D^Y*FDYL=~TD-<zHzVCQGP3u#{u_fqDk3GedwW`5ubUKc1PF?z1KvL$4F#DcG8?
zj|fW@F>*+TQ~*NQkW#W*7c*^RCFK2>)kM)_6!J|-%=k=j1x0NW2IhMMLY_ie!U229
zOQuHyNz68xr41heH^;CfCFn3C-gnJN(+iu#RDiEu=<x^;7%yQFv74t8cqNPx^SdiP
zro`{>Lu+nhbu)h!%Mx~wWuhF}I~aCL2%qAEhg}qW@L-2p6xga>LPf-kGpS9m*vXi1
zN+q*5!L&i78Pb*D(X;k6cwbawfI-pXoa2+Kp%Xw<I%o^@o@yXkCS{)i^b~4QOI`Xr
z`*K<)1o)YFBuKustjT1qENy(VqKc^HNoAOq^qgsY3g$_~av`;V-y(v>VJvtnB&t0Q
zsO5o8&=3J*WgIX6Fc&VA8hrs7dP$Rnz$|HkENPnzw|)Vjds4^fa%;&rIGIj`UfO#A
zEx!`Iqirfet^z&YA+4Oz1TF3vfJ=10w^rujygI4x1TcJFy+{xm<@u`5W<4U!WR{Rf
zl==A=xTb)1$FnZf7-4QkJvbs}GZIzTSDHg9dQJ^ACCnB$GjEV=S%0A`ZsCLOfxaZ5
z?g<D^DO@Z}*q(ftx~ioKDbaNJhd@36zxWvn%}$&Cj2qeA^OB0_0P;!7SuArP^uE4a
zWQvcG7=IeP;XF66%MIce!Zb$QiB*2|Zz?Q{5vp%>>$G$y((;a;bDVmzXZJoQd4nan
z9xj|{A|EV+YR_*6I50$0#+t|)$ZhB@0tEw<IK-{}G!0=yKS;x<ty26#bd_weU1510
zOCBj<2yFu4z8FQ^F@xv3h?W(Dn9e+)6G;i}m&u&z`gLsVFt9XX&7uD-fPcHU{}uU3
z(SAtVcOo~V69wBKuLh|Zy74g`h@fb%GD7DtCsKC0?7gs|$YZQ+Pd6^48yk1R!WUWT
zgz|08KkUbEpg=FJZm$K0tBE7bgvCUrQ361Pt<kH<gG7DX;*;-~!yre~xT_1Pgpqv^
z0?)w9WkexjZa`*O?$y3iSR_Og8oFFB!JzT3t!*EYH+>dW`EJ3di}dl^KFhJMq|cFW
zB7R>ycUkI58?BsdJ;*^1v_{z+vZ!L<;FJVQ$u%7&K`O_gN1oPqk#HndPo1WdHlTJC
z^f1hD@t3H7_cL~`j8$VgMV3)nq({I2PI4>~Qxf3i$BJaV@-r^|H<^Jmn<OIWCqg<t
zCJTnYy>b|*84|`)SkgNn!jr0=;V1Ng%d9QLczb(}^TbcMsEUguEr;|Tdf+BH!$nDk
zxl%vE6|L4gJLuT@`tytkz4%FtH3fQ;jZ3HqKlS_&U7SxqXUTD@NRk}*`5bv;&z|t2
za%POStcIw2qH)3{&h!)9hqMp3AqM2VkSZ~Q26*WGJanZV-60+vY0@zm0Q^{!EP|1q
zU74P7(}Z`Ua-=Y^V;o~z4PL#0Qv5fiAi}(7*IJk^yBZ5NGVr}mN+M@S2pq^JIz$}8
zJdM{q%mdo2&*<6HL-)!=5#3IwX1zc<oo|&(CXvU2<?7i5Q!l-oa*d!|VeQzQ=>aHq
z)FK`2%FXz)&@fU#rN2Q7kjIc}3r3<ywe{>F8Sk~u5wt$-BApx`>r~K{zu^}6fisNs
z4KXK}xab55e24-Inb1#q_YeyAV$>9U(y;CZU`x~qGCaBXMK1opy0~Xg$L|fEd6YAa
z(g9#h=)H>8#n4{dg!g37VLdHWr!UqMHsE;C=>+3gt?#E)nC`}zPcx~uQaX<~09rXJ
zrqHR9-4KP$8X~X}*4e<#iI`GYn5w3Cl8A_az%S4PL3oR8Y?v$oYj??-`=OfOZZc;`
zTpCP#dffqu?HwxMvXlf2h0^Ay^ba=U_Xy>>m8ErW=8BhgQjDojd%o02hELex$I3Hi
zikB(WZ4RMJO?aOPi8-xo7jg$fT-<s{6hdUeUU0r!3Az6<l1#MYMa6*NQMa~fbp}(>
zsBmP=z8%k_QKgs#tgY)eVhkkTAK7zoi4pj?de`J!_)Ea5rt6Ui>t%0#sb<4L_$2YS
zxcJ0&Q7!Ry$Iw&9v<vGX6l^{-1N%)BnC7VHnU?iV;#y+S9)-&KK>3B9?U83HF(1Y1
zA027%#pRpHsoprTQ4MmZPYw@5?0rDMz8uSs5)qve^h=XVNQXdXHkb+r#>-Dn6a=$#
zWiL01TCw)#M?nxjS6n@gSSoR0bqlh96!4aAufBdKWjJD~li&#4IwhUH=ted`p!)g*
z_>aRF$R@j!kmS3VQfJY*$9DW7m0atGv4>gYpIMZWXqfiP?mJGWS;Z}q(**k-&>!rU
zZ}mBi<Pl{VZQmeEm>51zX?GMSHghT5ZPB|_6q7Y}*R5h%xi6cTTu~^hA4ez?L(A2%
zQPIJzaPkrqyEJr`is+tghpuJ^GO<vCL^4cMyHH)<1X}8X@d$bcwn^QR9?vT*qxvd=
zls+`aRrUd>d{Nr$`x!?4WU@_^w0_vat`J1X+E=-5;dGIy*6mWE1l_b3;~9<WVtyj^
z9t;Z*7D%2K^xVE_dd)P_W?BmKj6k87rd%cX-_NlEn2K8b^K-nf>3$Fsm~gBSptx~5
z7PJQ~zRS={HK@@WB-qG{)mQMztfxPe;Lq($RgjaupJ<5+JCnq(eWm+-6dHUl&IE11
ziwm{`8D5wT=;{5lgdXUR?<FMZ2n<3hvfVs64*-<xV4D#er!CDiPA}Gjp+p7jd!BH5
za*@Z2KX%orb9x<M?b4arHw{C3WFmD$A}7cLrp=`LAwm$mL2Qf8KcyyjI0^ZJ#6Urh
zNG)KqzD3q+B>8nte3<a)n5x1*P>;h=5kLq7%9v@&mOWnxWVS6)sC+`fGDD;xCc4)j
zHB~F1w_*YyB4Sam7U7Z`9#hZu+yE{@$T$E`iE=aCoI$sxg(DchjVt7;4>0KA!TrOd
zrgnvxzFLD%JAK)8FM@5gu0zkP1uz58_zdv3;^VSsMHYU77KLhO<-aHk{S#8q0B{4!
z*IgXRH3)2_k%hRVL*FAB9X|uhmDo=I@o6x}tt=oI&W_vAH)_q?3R95+z;y?}<W@mB
zc<`l`@^DN|A*GS~z7Qh<fvLmsj+~mUbr!>bl7ZCAhU-EkY5_f1u@?MY=PXYchoq>c
zch@F;pdB(3p}`Jd<|m!0MdFjlu!zG8Rb$3}Nc<|&y7^l&)2wUmY;1RXUSwbZ+acgU
z#zupwD#jlsrdYvl;4v>UBQXrJ9-G0Ry95=6h6@KSh7u<xOa}pZ$*(*b8P7Ox$&~`3
z_9MOGkx8f9>;leW4fkF2ix!EAAAF2Q(HoI9+EjKxt?k}A8otN5UE33U8Rrvro52wA
zUU6D3!f!YPiGl@3{t~6MubCQmCZ)hb)S059yHtoMu}N>e`FNIsuZhnkBiy~@BBLw{
z`XgF+*txf-w&?sCQ~M&pynN8`cGP<z@tE1&fS$@|aH`ubCScbPY(#~;w4unPRv+XW
znNe8XI$H2<P8g4FOxmM>X*lX^Ntr*A(L_&tRNo*`16HjC6Tm}hv6K;v?-4CR-T}%h
zDqy~H^5g_;A^Hkz9nGe(HeW45QntmjDiyp76C1LG0M3IYn<f6Kp63!yFRdYkzx-qs
zM3RM2;YfGsD<`py@xIw6Nnq@+V9Ng)foGCMp{$Ac9{Edat=nbZ-EGAq$lQk0L;mhE
zLwgiFb(p0z0=;gijA?bO00j@xS9EF?yjFTY{m9Z3YXFGesP6Q`x3CF@T^uhG)YXCj
zW+qifpaP(Cq?=>4JE~=7<q(J&M0jf-vkQKAjB$5Xi&j5`5!Cwhn|c!Dn~)5;$-Gy`
z$NNU3@NaI2BvX8wgxjpi9;FAS5voRT8WTa-a(t}L+}v3NT1qnB27Tp8LU9^&zmqZ}
zuAdOsVA%+qxtI+a2%MJ5lO-*LMCAcmLChK`jn*@eet0Rb-lHPOTf?-<$)2ZA@??-V
zJa|IiaOv<(9(`B3j?WSVT7&sD;+~|fkVXstXP<K0<(~p$Pe4BI+n>^+uRPDEv=9Q=
z^C>MDK^%-+`IZ(yi(h{W5Qu;HEk9~QBm+kG_a7r?zVl<^+FA&6k&pR+wK*;z?df`S
zA(&eG&X?8a3Nw62z>Hg!87;Po7hjt7^lXX)BuB+r6#K)78Wc|e$y<pPh1p?X>4HG*
z0&%IpjxbbIF7RA$_7SfddXnt!7f~7E4J)f)M?{tm%Fg2CUkryH#`&z*7U~s8gx^9)
zC8l`z%ZH)p8+}`db!Y?G%{&ZPJ#nY}wg+_)C_M<$mg@rM6Ts;JW37o4%0F23SUkq2
zzPz74E}eZZotTgYlqd;i5Lyd@V=WR(kBL`!Kror{<Oygz7DyIW7$z7lED&kPg2l0j
zJjcq`@ggca2`#X<!`zBt3Km*x51$I|L9sMa7Xho>$kX6!{Wuk4)nV0hs1Tkw1BRvm
z!giUOp<tu9_<w}tRI-l@*$mKa_I$lC6jA}fVo_r*j9{r$^&fD%QqS_HDBgrw%Ok%9
zHbA+5YMFN8;q(Dxzz7zTcqK&=^hq<+bt2iQ&9BU-GV=B@<<*nomzJ@6P6||<STu1(
zc#z03Hco2C9u`PdKkmvi`|{MPF7)>deN`4Vvo_?pRwm@Fwv(tm#yLJbQ-cUw9|cZo
z<sK`(nW-d74}j~Ai6IKD4PVq?4@pU9=q0B>3J6ID=^}0j5`_p~?m*e4EY=N)NaVPO
zs0zkKx)<{pf}?2`b056Rr4sSaoQc>B<rJSN6IVLsA!781>FtI<B9e6IVt>0j>o(GL
zBi0D{K<E3qU>73R2?Q>O$eRNk)HXmvvR1qpo@mEp_3ta29+Zw-5}G?B20<U0Yr|w0
z#7>m}J?@m>%5f)TIZWn|Q0d%VI;@nxt@&}Ot~ehHzQwH3*YlRv$4uN#7p4iL7d2T|
z5jV{W3svlqm~aMz82d0gmmgW|!sw|(kGYQO`A2m0nTq!teTguAflH+X8+qf;e53F&
zWMDt4c)s!T4NpCtVc%zymUUvU4u7fMrzUib!nrB1RNLlSmx`0Qf$1lV<#Kw!g^QTq
zOeR-~U(@9JN}ku=33|{r>`kN5reUEVl$d2HtH4aHm#E^$(#5T{_=pa1>qRWt?u=Rb
z8q!*U+4P9loc_s?zNak;H&hsSGAu<VFIx{khR|cMtFT$2qgXc@jIYiVwaY>$T+_WJ
zcFYG;#tJput+Smbyv)#v(t^Lh)B*+<EO>@9iGEtb^OifO$i#>OVcWI{JuW=*V+rKO
zt{hFuil&|$L)^`JDe{$dVyL^BaZDg|@MoAiSI-xQKRrA?Md$V2GRh4}Xl}6p3b+n|
z4P>eD<XWaQ+9-H0Chn;2Dx_+shEpBEalW;KEW}b7Lx7t8ae<y7=sJTbhs_H6OE$QV
zjo1E5o0@`^M1Ic&dkD=^QG6&4z0mq37H!mJ;r3SZFW#Y7lLFlh5t*8Iu~9bDgxxtD
zE>W16PWB-l;;o144&}egsj%&d=9c5{ybI_KdElcs1Ogz<Ck#`v2zrxIed0{aiDvOW
z^ml|?y8|4#vW16*$su^w7wSmG|Il(mE$VI-DP^!Hcw%`dtZb>)ZR<jVhl)aTgO}dR
zrR4=Da00M=5ECC)Rd1HeMM~iPPm@1T-f!I^Z(8rS4$|y($&GR5XU%h8OK~+)ilg3C
zuWS*YeZf7SX+2>ABb!IgwT{Wj%MOLL0W`YXpMHDFYCOnC^v&pDpS}yV5>mP#u)Wr|
z1>YOTLJ#?+XnWpf>(GdBh7rXn^XG(zC&uw7>6PGT;Q%%WSXFX+SnVjQ$eOgc{~wP8
zi*c!<B``*O;MU_2oXEb1Q~mP7hQ*;B;6NN;f!BN5hb2S2kXx-HT34)p@?FWX8NAav
z!lS@b^gNkjbC2*BRlR4P6u4Q>JAx-rmH&VByWe?H!F|H!{CV}rkDDJ8X27LeJxo|I
zGy*})Ak6q`de>HOb7Nd#^Q>xew|7b3c6sYgRA(@z^wG5tJ)r1MG4LzotJAi?VG^e<
z{Q$#GXuYU1NsKR>K(AYSwhcYo2Zi`{S@&zFKG5L;|GKv=L%ea=VU`yl#R%O(Y-^n<
zL&N_AX2AMf!I^;oAfduyNiDjJQD3p7%BSx-GB#1dP&AAN=ILs^7Pd42rCb2#d`6Ad
zgz`(uS0A`y%eBo6Xg*z`f4EoXnh`rmb0^L;u{)#qTEe<B2`Fxe$*+?jNzwyLW(Bft
z4f|lWtZ*1$tISu~zmrvDopUzHPBt{Uk|u4q{Z3a>W|IDa_$Y6z<}wz_Pgskaw^l)V
zldmG%WSN|fIqTOuiWo3N8A#GUvEMnLeQdk#3$zGbcbo8;pvlY01*8PsYnD}rV-Qa}
z^KBr1a?5%aMwTx0@HLh^*NIg@j<ZU#u&A6)G5s9EVkQUHMwy|$+fx#mi{RZl4lI)=
zUzceX-<~o*<;`?Erp}kw5$hq1?rbwW5LMwB;%nev4((VWl_d}|c;T#|TGn`3eSba&
zeZ?W#&MN0_JkH>wWKF@ITbO}r6U)@-G$X`v^cTrLO||aDbI(WFJaXOvl{R@1+t9P;
zJ!nQ?tvh4ty?9wx=>M&@3BKS{{DxI#6w4))W@f9IQN10nXu1Ej-&5^U=x0g`#M7Ox
zKSK|U(zS?`Gsptp!8_F~{U0P-pB~^yJ!fHTt+mmmJ_k}oiJr6{mIr*kwn=_%qupO$
ze}N0n=tJwB&GIoXYPX#Fk9AG*>s`9<A36IKcA#2yM(+I-wsdlxW%<QH_Jd%Q?uR-c
z?|#RociTIZ*NWct;?!Z+`ZHMe08e;9giFcq)u&hcRS$Ekkf^_6QxeS!c<W^gyoFah
zPqJ!37-s$BCM0dYL>gYk`P%b~%_eAH&+-3FK_>QBt%rd4T?%_w`!bg~Fprub*-L?1
z(w>0d8C&iIY0WDceQ&8S>>lyvuwVrUp;q&d)-4>#*MBS1<iw4Ptr-dCqd#HPqmq*@
z5-u=ds`cNS#D>dIN`b?oQcQGMY%M$bViT59508(`{<o0pUJbv9EioI+vJaM&_+?PB
zm>lzn)BFx&eU5QH%Ufjp$1}bNH4#I_t&;94ccTeg_^k&KM6ispwoI?UCmhQfZ|kVm
z_hv(q!%7v#J)n!S#rKuYdMnazBk;_Zkf8N_PhzEC%?QM?eRCHqrf@7KeB;$O5gj6O
zn3R6_<)sIw3W}kfQZY-8=)DKkpQjCx2+TTi;#g#pmXSdfVfeJ~w}DMRg)hfrKR`?V
zINMGW!7RM$zwNKt)FzsqU~l`sTg~=c;2RgEI`v*)anwa$oLjLXONWZihk(Ms`+rz_
z6EHc8;(vVdz6&fMIJ%<Tj1VpnSZ>f@CXj=K07DXz5OPeGWm%SG^D+#}5;nVofPexn
z3MiKha*C*fAeS5?w+Awa+}DWm6%lom`^>MZK2`np?BT5c=bz`v&O6heuCA`GuCA^=
z-u<4@2Rcl5ez5Di!5P7a!6tNIfuiw;2Ry;y02)m|Hhb^RRV2hy_>2S3R66>?O?R0%
zg{ns9q1aFzE0<`|%#IHH(Q4x|QnM@t!`KIFnRXlbu(Vm8!=}q<H;*NJcG|6UPZA#n
zq8kmD(akrOKxX=+Tlgw}I>Wa**zH{kCv5*QwfDr2!=-edkiZ{@bNM}Cyr})zX|#3a
zU0H58JjfF7mOw}7=HEgT-llV(e8h3PUFd`a|2>vYJ(3mPN*4B~1xLRp<<d=5(JkQ?
zw4OeR95$N4{E>E=&@75VmoyRmEbls@&u1q*e&!Fz2;IHcqdV-sRrCH+=(@mxM>0E8
zL^E?}({0o$@6c8&y3BfucY?iXB&WB=M?0;W{H^BQg02sm=-B;{A2i)DL3WgLLrn~C
z4&JAqiJALXeL%m2cLjGd?EY0R5RQfv{_SS68S>laO?OTR*SMQ*GY{rb{E!-gPO+{%
zjb_xr!E|{Qy=R=aCLQo`xHIeB#x!JndG)0<t9U0EqFoMqad-RjhqN>xH}R7TPPY=R
zZvJLZB}FQ{`3jo-p4#-w3Bj`y-f6mP0-2e8-*0aFImLO8yz|UA{xAFi8OZ&@duRb*
zJ38<|%h2J46cBiw-W`4+t<?OD9I(S{;Wn>^7X{Or?w$}n+)o#?2PKN<KS!!~Y;ZNd
zp(LOk3N)$)SMUZ3die!kjB>?_e;jeSZ18!Uta-UPd0ueBhvCLoG}C1q#chJEKmIX$
z6;u9B_bUA%T%Ycur&igFPo1vFT;F^`H_hp3-JEW2JCLq$q)mBbI_bRMW*^h_gr~@)
zm~M~0r+IR?CN0`e`V|3a8H;A?yyJ}SclbD5>k9cwa-?g=X0M)17ZH;*sF(4ofn2-0
z1<COs>hhP~M(M}XuCp8X29GIp9<M+(B>ms%9eS-xxaMk#y*1q(u6q(~QFyPOGrFX0
z&U+lG5xxdKsPr^1xndFTh@VVmg|^1fe1wkPym={y_~dyq#S!UBy*ggj<vV96#yWzX
z4S9R$3CBOyLwAR8cxAoSH&Hd|Jr&KXkE1rDyN`Dup>0bS+`s#3d3E!>v_WyFcZ!EM
z|7sbnIq{VI75+Ttk?`}|{+SLpZcSVJ9_E`dd0)V`6l<Z)o-1k4zJm7cQZVowia}6(
z>4Qs`)0Q>b-9tW4AHPi?>|4Yes{1GX<J@5SM>N<kp%6F)ALw)pRh;Jcbi!r}TFc{e
z1NbS}m3Rw|rUW4wZ2m#`429>WG`|^s`gt;fpSf;6z2yBfG!I(yik<m#wzX+vZVw%K
zrBzm5NRc=3E}>tilZhh<QYvA#<uza0P5;VeWH|EgHW$wz1}Qdr#pKD18a$_qtlwmA
z^^?z$mnCfRVUYcZ-V$?j^O=9XaY3;2hYNx&>C*aRoA2QJhk4H;?VhGPW<))9UOjp8
zqtT^PmWZ}AKY8ht$>-8WRjNntNBjmCiZ!lo?%;m7IUU!h$n4{^bV}Q(r!;SL>D;F;
zZKgXv$=z?>h`J}e3xH0g(shJ1O?glY-a-n#l%vS|tfnoURO-x+4{JW-(#eM%Pp5S!
zH~;Oj$yZW{g~~hOBYs=M|F@h?_waQi_mEahBbBD3`I|T0JAvj;v{R5YU_q*Rw<p4N
zuAsH-?Ya3^k>9!Bd>(`-WJ__>=EH-<=yk!qAJPy_4a>%+JmDkijdW`=b^i|&)I~0h
z!tGCO{yUlfvzwo#yzT#?cplm0=jpdi==|*r+K<DAwUrj+=vJ6_njd(AJPdN%K11h_
z_ow&D4Q~Du=JW@v`Yu28vS2BdPfGx#l4NZBzqI9y0_^yU-~C@kJ_p-wF`w#7%f&&K
z4seqh-unG;(f`p~ADYS&XyX}GfEJ*_+vtv?eRx5iUVcjlan;iz*NIT%x4lQIarnE<
zs~O!%riL9aNeDN2pF)}827Ji4=~prw)3U|echOiZtLi)yr`R2#QE9ZHxR*Te=5W~~
zZt%@7YrbO%Z<?2}m*N{d_I~jl*0i@dn9{;;+Qi5^tA6CA-!bscsvmgi1w|NlXN@uL
zQkap(-R3u&w`#Ugm-frL!Iekdjcn9CaFkK^>Cs1BIv4mb?@*cJ23^|AM`svmkKu1<
z{GpC;{Ej+Yei%+#-E`jsTClvEF5Dq8P7LoO@BF?A^!*n4PTyW7mzUm$_6PFzXmFx!
z<r`Di-JIOHHrl7vPLqr5);9)=XxA0pjzN1GXnscX_QRX0<KI9F8nmT=VxaWuV!H8;
z)VKMp=C}FJj@`k5bR}6Zhqj#jaKcB2lMOhAmM!0H-tm}VD0nwmN`3>KL8Wl`HXpne
z|EC|qU1;WZ{kaR9YYWv^O}`U7N8Vz%auHqiL?grS<ki8?Ir$VxroE|jdb#;g>MjRR
zxZw)Ym9MiOOs0%xy0kV&FQBG{7`h$q(%>mFNp#HZ?O?hD^|zymTri1Bc$I2${Vx^<
zv*<mO+r3NYAc*tTZ_|F<VCK8Qyw%;kwC9bll-`!ysh5ccy{Bl4)l0%-&Y_?7rQ3@>
zpoL<p9^E4xZpQ10*OLl&v#L#8{Up6{f_8ImOG}I0bkvGS(Y6)2z?Y-`NxnaXcS_O}
z`w{v}aa&2-H+YOM59I-sPh%b<&t$sjbnRwM_fMer5nf0uPV_>G;CA}|8u_meaNm26
ztir~tqXmfx6OxHUVm18>6BGKApIWPVjbxD6lzx+c$+Ubd#<xVvKyU;<ep$a~HT{wa
z_@QNBK}&b=%a(yDE!|!6H~3D=z|5H5XVU^)L-V%`OqC}qFRAI9xb#JJ>8+Z+o=cxy
zm!8)2PrLMk>(Vo0ls{4NSxrCQ<)7P<59YTF%)k$Zt12$?aJgQtaBf-4z;svNOiNl2
z>pI*lc``a#O+VbFQ+WffxP;-#<HV&tmljHm=oQ9^tBw<w-T>vsdcty>;wobLQdC@3
zxJ-~fEg;+xEV%p%`I~DQAQ2h9@OjXEr4GMj1m5HneF1pCU3!DV93O_OHo#f=nGHd&
z;OTc)u!_s?3Z~)X65`nKm5qS!ufv}_0&n`B*#!7C6ZqFMFijpTJ*(*(yL7ayr57}P
zto~Be^bKA91$Fex4f0nt-RjpeaBN-v<fdu)zNP%-_FP_<p4RlOTzXqwdZg+5xb(id
z^pd83)upeLCu_%=ru*&f_d~;FH%m*tqaB^OExBO!2)(E@!0oR2)0>0dg1UA-O4?cM
zURQ9Td^uRuIbr#VTOi*Nb@`4NGoQ&l@kQkOp_i{W_!;Nx4Js&uS+n|<wgeu3xm~8V
z^qtZ&VBZZ_Qyi?M;)0nDXt?xN$a!D_|AbyJeFSbuaZ5d1J~-UrtUfix?c>#_J-CbO
z(;h4uS)bOeQT{I+eriic@NLF-gsBOx-nDIjyV%2#k34~aQPAb=^3Zm`ZRGe|C{I@3
zlBTck(dh_&E9I>sq_t;xd(b&K03o(#ZQ&(SUfV*3w~;lczX9pS%(#8hUq-&ikxlGi
zA5^A~q&3Uvr*;G`wkK1m!LMbKy`)<7m&PX6fg2#=NlLG{6Y~Ah(Vt5CE_O4wm~-TU
zw0uxg(-+s^R&HTu<o|(}KOY>z;QWd5S2E@;qvcDrBHvS9z9_hvb3~FO{wu(#ic9Q*
zd|wOk1M62i1%o(adm#3+9mTf?8TpaM2}(LtHOty9y*uc9pmdo|6kH_b2c(o%UV0DU
z=KJjy+`~A!JQyDZd<@A46+}r?1&rUO$Hl!s=Q@v0SGb1o-9;O}rO}BO<1h0S;9-T)
z-=biS>mRcT%l}G>`|jHK-ZHSPWnLhbWnNHZUgm`}1AP9xNj@$0N_?9qMH`=)sc9j!
zqtj;|cg11Jv)Ykr%0J_?FfA?Lzm1<sKiOU$Z`F78NlyRoI4i%XxI<j~E^1jyH*+wr
zOM@#M16F=*Cg@If<&*xdbYe=()8AWX0e7({r-k7jBL9U!8<SrcE|p>yhC7R(77`iy
zH8@8;j>Q*9EA~4ob3ykpPhPp;8V2XWX4kAv4#mTOkL@1IYkxPs*m#|o58P%6{A(Fl
zEDx5R()7(;`Vx6EIi@xJYLBmca24~F4_<Q3<NT-Eg0$q{-otkXcQU>^ILL|J)gyH{
z@D<6$`niCN%TFC)*FK6n#^L6+^e$zxz2wHtaCSDk2=uggqKEHBC(`r*k4{f;q?6n3
z`g=`rYq@?#`VdZ*cFqMyOS|xJPR(-=XEAvtmZXKkb*}!L595L8Gi8`g2;--;6!=XX
zp6mazRE+Ji;VR33%LsM!<6Ll{RnL{5$^!Sa!!f;Xp%)zB#Om;g<-i~8mEReh$N0{G
z#&7x{rH<!QnKs~u%XgBNm(}zWoZQ-4ZXFEQ62aX%2+K^L{Y?7SK^jtE2}~cW?W5B-
zIn*@0Ps?LF(Zl16&X<f%bkyi{EWM!V8#p@i<jKk@YI-bh(l;82v=}G9n&O^t^<6;Y
z$0b}ldMg9j0X1|+x6%o|V!ODkg+kn}gF8Ly0`66>T{^-kBE}9(1UjgBoPN}f1%6O!
z!TQ1TA(=4bshi9&x=}Z9E1g{=yBw|*x_MgDGz~F+Yb${Nrbo9g5J#hLE`g11Ap-8p
zo*X)Z+eCrFxvqLnZlxUXpVNss_xr9eFNTv2BRj!af2^DY{9=!OPdHWh?qPdAh1B3M
z<39G6T2~_9v32=oYQC$HZ_&tn#eU?=c=@`+eI#Euw75G+$N5YSwE^UNaLt7L<8hQu
z>Pfv8hP%;#0EIAo`3&Iq_S&N(+(F9epf_<_2_}cc*}&gaC%4@M-xVIOpRbRQU->-b
z`(Q0$i}ZuW_weh&*Sv7He$wkrhx2z4^6loyftC@aoGAFY!JR!zTnzlrPz;sB_D2T2
z-Zny8y-SMw$vQDVQ^Rl_Zjh-#VFcam)u6lF(dF@u<^$RxO<yaDJGu@>hL7y-R0@<B
zE`1H?^?Epo3k;)IR@_*2!008f1-%t@^k|eHMz5f_Ngi(HatCwcSXpuFJDdzNF1@1Z
z!^d@#Z%xx5_UuP*@B@}ZZzO+%Ct0@)U%npvKUIg9ah}Z{d;HJ&_~H$~|E3Oq<(TxN
z8-ahe4v%?-Pajq|k;wcM_`N(m?*#vy!3A7QCr8QnLzJsCoFF>f8C;BCNi`^uO=N=q
znY@Q?2Hks`<Y(yzi^3~JpBF9QJd1);@o|}ag!fX~Oed$z?a2QpuYXSuACR)Ahi|(6
zGZEwy>3e~1_Uhdg+{&c8s2ye+E>i~XJ`dL!UMXcWDZ{1i1MY|XBmLw4mFKx0`C~_T
z^eXqIIXUrT`3qbw=wV!ran|mI`_qEB(Zl6s`jgKaQI??LTOR=aK_5RLNcKL7i>!#;
z@QDY3zuv1?56}0>UWfa->N)zQhk(D$rytNr1ImuR$s>9gc;DXiKps7vUOiKf0Jp;9
zBNv>&baSlPI!wF%HS}xX<M{wQM$@B;rr+z)>j{@og{Wev9{$SYv4=%2H8Qyj{TB3p
zFTbLF`q&Sh($dG`F@CI`+1~+Q_VB%Z4DSs(2yVF4qrm;b!{q}3ihfx6RmJV<_~-dL
zbr+V$59Nb=vvjO?kAd!ajxPB_Jm3-ozTTA-cb&tre#$(uuKa8T^afo2=J9B4>OVZw
zJdpYmBrsd)RG$RC-{E;ax3=`VrQmxhNB(JcC(g-I%u$wx$4Qec9X{X6J`Z{YZ(O6R
zng!hDDW<h|^+n)!Uk41yxE`Fv1ump3^YGa!>?{nwy@q`E<&t_0`S*14UO;hzmlzk(
ztk|_*_HV$=MKRRB$&aJv(_zH5M_F;xJzO7ILc>`*CtnA>R~?Sar9R5xDN?uLdY1S*
z@Qud1jN%qMx^qc!r#J?z{F35M_UhdmenAA*J80H9wr{QfK>2?E@8N&}8zK5<eo#$u
zpY{Bvh%U*KiiK<9ljj9mLE|U+@3hc)U;d)stqjEQuk_pwXOEKq0e%g~KgV|@78C{N
zy6Kn0r``lUj<a#UTE=YU5Kqd9$c&%FTfoQtisGgLbv?2J(n@`Y3#Zn<hZKLS{L1_@
zeN04y_E?UYw?TKTcC_+~iaXHNZvoLOgWqGE_?+I=-T~dqyz+Z7ALwNZY3(!gE^zU9
zHlt;6@DbBp%=1wGAoBEqhBbb&?<3!O9zR_eFS=GTzKhM>EXPmu0q{pr+5C^?(R&gD
zdpr5N$*rn5^DhL)4U%S5JietrOw0GU{a7B$nP86N7pjJCoJf5Hd`fb0`OD<V<dD|%
zRbG8^!D~WK{GJ@e;)piMLP#6G<&Qzv*Smhmxj!J|x~Y~|`2@K2^?S<z{6wQu)%5dS
zI`>mCk$r5RCh6~m)u1!bgdb!+#&L9(xcFOL0r}7LEqqF>To(rs<G4VgX^Lc=s`O~x
zc7J}Ht=}`6exvKJQz>rEfh~%1YFwo)NXu9KkYHh3@J;z`k<zhxC7MxQ>{m^taYh}H
z)8qC`t_|F2&dyJz3SA^M(e*U)vSNI3UEn7=JlV@|8`u*Wo}=J)s<@N?dca?y{87Ds
zz>k(5t&j9wTzVu=mR{2IZ@ctBOo6pa`qRjtasDRHllMXsgkP8OvP*{7E~$JM`3|f|
z)}MwpK>k~u+$la0&XWA}N%ew(G`VIr0)D3nV2Jggo2LpCzoTyD#;L-_!2R9vHMONb
z{FKP4KYVr#qZfS<INu-W4bE^K$#AJHfjh#<f&B~82OZF?J_W`3@v40AN9HfjYOUtp
z_4~?Jpc~suo{y5|lYt;Ncc%5zp^3nCH+l6AuN66U1K%AU;Kb$Ro7f)tk`v;5y@9yS
zy#X04<HyQLehK)~>+oU_ZJMlJ6>4MkF7AMQTYLF>f>*d6Jz_z65K1$7R=x~;$;p%L
z7&#JTYshPh<2E}2_c@Pl6tpug;xM4`@A%jW_;noK8xOzZ%&C)4X=mWic6jDP)@O3T
zEirxLJG~3=Imb8Yfy_rZ+B@B~YguszI2@0g`#T1VUUFB^gH>kx%y9#<WU5!zE|KD9
z)$vIV3fuiD_>k48+<ehplSg?s(0{?p7hwh&1?NMI*HJYMU)%$DfBh~BAD4a;1>bN2
zG5%9~1OHuDPqyF3G2uSa8rL7oiaXZFi3ROj<jbvfAJE&r&W~P$99Fcn*&VvEP$;d}
z41(<MP7jZl{y-PBirtxxIQ4Xq%XDtkS#F*kO-KHv6D&X32Taxbc?6$A-(*(TFVpva
z^J7g;l^MwYpv%vG>pTcl^dVxa<mz9X3A`Ui?+fl1IguEg{L8a|`=yf;&rf6|&dZV;
z|0M%z@-G|+d~DwtPx~>{5ine8HgHdRbo(F@`Niyg;vnFrIvmDHt9M4zU-s;EclfU8
zM|b#;GeCxKJrwkAY63yF*X?1@#1(I62UR<;wQKD#;Ln*5<9mY_7~ZR^1maBg(l|mt
z>1YzKV-^-5|G(<;-z(tY4*3vs)a(CcM?>rD`rF~4bA`uuE__JzD;I7k_00vBJ2_i@
zlS`3r2XB1t)3|J3@Yo1^It%=qPg#B2T23Df*IAcYrH4&aqDH^i4gB-UFUvEBd3lZl
zPF4@Y7mfqIy{<p47Wpsb@k=vU``2>7_dEK*Dg0>kq7#t*grm2B0ww!Nf1@{gkbFSU
z@R^f=KiHE;K6ssLmk%Do$0?M_^t5;i@bP-}0<tG!kNYT!6yy4V%Q`;E?vRs8W@j<m
z6DvQl3b>ai0Lb!+!Y@nvi2>C5Tlv)i;J5Mc`QTAu)b}rv1>nx~%RfQN=kDzKXHju~
zaX7X!4>GWyXHLfF(5awzgI8{M@O#E}_sd^il8WP@>C=F3^W++Zf7W`9oL8340Dir?
ze!Hvab2oPkm4oq9J`4CWo&GPQ8PUI)lf_{-HTN*NWzGfuDpyaoLp_YoQ&)52dEz|a
zmQMf>`uh&!a@4-`_eh~_d_>;{zSpZ~dvGZu+v%n;$A|UX+WEkL#luG$0Ewi1B5{6r
z+Xb6Q%h!4V@@?koOMWcuc^6&t%jI>2@5JSqzGS|SeBW^Op4+lA=p50{tBT7{@az4Q
z)L6%F8a3kf&0Ye!PkQ($+)~?@wqU4zH@lg>4EVd9zuVSw)?kk5pEaoCB0cZ|3je}A
zP+HLBoVW`4(=I=^_Zy5}9Bxm;ua;->O8*G>V?6%)g1Z^t7wjh=62|XiXU>yz=?3IG
zv@YM%$hW_Ih-L57_A&mFHzMDwp8n=^BSS7c$~BDP6D8o+^YnmT{Vwv$2hTdaF?{mp
zz@P8&)rJT_n}lnI^^elczz;fpcpXgxY{3Uyk%ctvapQXHZNR_j^n~?Gg0EfdjwyNP
zpS0c%{Ii}u=EL=s|1+3=K70yaMPT`GKl<k83(32Y{}|6sx6@fK&e$G)4xj8-XuFy|
z7w$v8mmQxxZzV^V$~%gFGkIn22X3DU0CGQWL%g~zxH_(n;foId@7r|=mGJzX)YR(l
z@DGj;Z+sUY0)CF;oBAOcY;~iZJx)9foUgZ$H*qrkjvfK-AlJSNXk*>4Mc^I0A&>Xj
z@vZ@7-1sQ}7WsNSKJx5I4)f<*e+OJFXSSCGk@Euii&iz)#N?8E6#3?_V{%{CGCN!<
z<N56H_ta6rkns~e4g714A0AIH;Sx9;>+Ev&8Q_keV04)uakcVcK=o8TF+Qr#0{=S?
z--&&Ao!)i<C->6xz{hry$3dDh(Ky&fvm*09(k}q_dB^Wz@?`bNYWhE1I@jj{sgFNC
zXI=!I<qk*sK#s<gmX!zk{y|xB>rMcW^|%i)ojwkW4%f@dOQ8E7N0;a8GT-TixOf9%
zydGD1d3<=QU!@BCa~}Pb*gvrHa3XB-FZ~I)yFHv2H>1{-Fr<@z^a}6`9G?88<svpx
zv3TBE87Hpw&!Bgmqep(IOqFunJDi_ZRop^{qjG6_GQ3}={{niAa7D$f@aXj-P{#W|
zXITGDz6yFj_WExWeklDn3jWF!k9hl<s<o3-`8DM8+cy{dn(;Z>2I=Hq{u^)yI{M36
z7KJwn{Y7C!pU@m@ujD^~kKFi5dKMlo{kAWB+u=<Q3U31clB*~8M>4Erhsi#~{q`;3
z4w(QT>u(QsFZBdhGQ5YTzcbyqQhFQsU;6lPqVU~=cxv79AlI2GTRoz8k>B4Bk_%T!
z{#<zRh<cPh0Dgj3UN_?R-Q2ybzU2>r`*U4=ua)|;4YYPGeFWSun&SFKVY`$ch5wXs
zEs`)&B&-|#Xu^JyVY#Ev`;VqOMKt?URb0En1xNCu)t_#Ql9Y8_yK}tr4^n;?{3Q-|
zx_V{T0RA{fkK;S!5o-r9{wj)l%;C7bzvJp}<rmiky$)|&?+y<Zx31fBPz|5_6!1rQ
z^3Me~GTj{S_%!`De6$|$Zv|k4^{FGAFLLc*y;6hd@JZlz_vq)b9+3}ja&RZV(r19*
z+{5P(QOpI`jl@?z3w){$Pk~hCpVY(bv*|~z1^7dPnE&o@zO+v_B0Al{X(RKcKaYI7
z*X3)~d@@drny;`S^4;a<3;vJ!>kbdn>>Y7=*52t&G+$kNlV4B$n_XYSB{l`_&N>_!
zP{MJ)uy!ab?$|mxT?RS*Brf0Zt($}HVRiTifL{^gjgO%%fS>O8AUjU>ez+a4D((S?
zTR`)ni<$09s+Z%plp3x6;#cLpu!OVA(HDXLgGV>VaeC4NV#D>f%$C4)I2`ebnMmC@
zS5{oNkE5A84V;2AeQMnb^n5?CQyuS4?#H~t=Tv-<_vY$X*arDlI{NJI2)_RyhWAsf
zFdfJ7659g*H-~4x;$hc8tsQEL^Vi>3lD)Hbu=dSt2YPWFt*zzi!Em8y<kf>_)}4H-
z+XLV4$|t#TKOSbMvR?x3TOKZd3RftfW393BYop*aJ|mr%b%*<|;R`!}?yXKA+gffI
z45tgfHw<#*T)Mi+A-yB;KXZJL{~=-0oGeTj-J0Sq3jl;YyHCh=$VwT0H@ZWupu58H
z!SOBb$gq@#OY92V+g|y-!4n2^^-AmpTx{3-TK*^+K7~KY!G;Ahx)sHr>F9Dh9OLMk
zUS@X(-FRJ|aWvT`1*U%H{#rxZ_*T<=e|PkQ*ZI-PukHc5cer#~ucnrzSZi>qhb!(0
z-2FaI0#(3SdC^|L#c_W+bVUEGeX5#%mq(|c<HFQKs3X!}>MiM*zvAAY=lf?7{4*Kw
ztscdFfP3GyBdr6`1cBVX@Gknz;l2voYF9qT@n3ZEHa?4!fV(9CQ2ea$7||noi41+#
zw_|oP@RvHed`{`xB1pEOCZ9waxP2V1Po9jww5E5vbY4fwGMzr3PDycThZ~e9E2pOE
zC%W_?&ySWKO#vTM<MjRg^s=TWUHT#NWPDaMy~)X&<I?vrpE=^z`ES+zP|j73&Quy7
zWa6+=tp7@}kt>Z4lmF2E$Tu@U#+HG$mVfq#mq`Qsvp=AfFzKL%uTBI0PhL6QI2X~)
z%b#ie-SCy^z!yDy7yN}TKL0cvAI$)M3s>L1mbX@5<K$Z_jvApqLk9qVpTm=16+F)J
z>ELAnXivP3k(~v6e*lKKzHh9ew|R1oH&!jd2hQxgv5H)L{?$4=WwCat&IX-UuiTu(
zk?QSP@?hX5x%$(5dAT$HuD@m!cc4eF2j|gjzCqJ4FaCXqmhaK+Co^T^mGN0o-1j}4
z*)x)+8{eZ0=*{+UE02%qnLd{lx2D5QlP6c6rl(yx#kpu4v+ssW9*Xi#boHG<^SrN0
zGb}njmh;dY;BNQmbz+^plQur2jb3Iha2I&EF5tQr(Qk&UDeiiQBY%MOmhCY05GRk~
zJkUGZ;dmS%o5{w3{u#aGVdKLU#)+$q6PKMozH%$$#HAO2-egoS!RzI`Fr?LW^(`oF
zp=-CPG%voH1xUv+yzytD@)v+0+x2d`_<@1l;WYZJx9gcBfM4a6pXYN<n3uc#`xV9Q
z@96S=BAf?l3*L8prj~-<Ne(xoWlp$(ls_jte1f%KF$-LydRH6Z%-*GzgWgef^0@`_
zxl%sJjYzwGKhy^N1ji?zBRY<O?Q*OG=EUKP?Z77;eU7Vrm+^hPUB&F3@l!eq_*d4l
zcHnr*BO-@IVQme|Vg0*!9PsP9b^rsGUeff~PY&iV)a04$LH_Mrej1049NGWVij%>T
zusA<U6QndU8ojdOzUJtWUbc_a%ft$l8~1A-&#!XyoIDig&*x-AC&#VsGHJwmoH`zK
zTLLh^dfbci*}Vt{^#(tpY(_tQ0`O;gag2^|XUy}%J)Pd0zgg)8KAwLO-{SY{HqhWu
zX<M2pi)5^v(n-jd_VgeZep=c!N5husfyuGf2mCp{9I^kkkK$g=?iEf3uHD0Nyq~6-
zWFF)7-<sm4`{f7EGcZSXnf{WRlj>Oc=~F=WP>*gO%?pQ*SH*GS68)eDZw&i;`p8+K
zZXj06<XceO;{gih_RG=Rw}eHW2NI{<@|OkykKgPd=&$eU$Ln^ouDF;7VyjnF0M1{R
z;1DtKL7g~`|5g>ZNgcfx7`T{*ZAUNhb<msS$;tN@tlYHX$mGgDv9F`-PpK;I5f7K=
z0FT-gqgOf&<zDOI`hwFP&g7Xr9k?Sr{q72vh<@8u6de9D{WH5!J`?%0`qbakQj(Ql
z(R3ScWc(rbb+~?{&H|mSogBG6n_Ry#dYQ9<8_Nz^KPo8hc8^|O_c6%%1+9qDO@9k?
zS2#J%CBre#F>1Jy;&^S3|H*#-VAcp+>KxEZHyLhfOE!E$<e3eRcH>lb2)H(fn?dIw
zej~W0^vZaXbL9fyQXog=E|VwYtETCV#=F)FL8lQeQk)-$jo7~*<|kDZ7wa|og=AOK
z%BS&{x(MZtg|m8Q6}P>sC)v&R*lrJLdNu%n`$s3H5uNlRKBu6j2et2`+*>?7h{BB6
ziHH~8hv`A-65#Lm@HsiRg^p$QDO?7ezaO*rXzupCJZo~}M(gFkJyb_e?YVbxg7KTU
z0{Ejnd_H)O3Fk*UZyyzb|F)AC`?F*!$xv~y#Q05I3EV|>I0X85-=URXRGh!AnbZB!
zys6##ztK%y1-dsmy6m@n+u0Xu*Q(-%&xfttnx?N2#O>OrV<f$n)D>*_#I-0l^yJis
zg9v>bJ{`_y@;c!E;OI|n>7>X83#v0rPB6N)9|2czIJQGC2`=XyD6#rSHv(U0Uui*u
z-8O$+FZC1PepDwX2^8^`57$l=#a&*96UFKyYvkG~`YGr&*V*frg-^OY(+SMvU$_bQ
z4P(0UWc4m;`i=nr+^-@XPe<FwTDckY;_;E=5~Lt$<TtwMTY&TRxi|O?3#gZmd09Id
zzVr*=w{MF1=nB7!aVX5YdYSyIcL4t@z{xIh{G1jn$gv@}*{%DP?gVblAf_9S2e&&$
zjBfcZ;QjLm7M}^yvHw%K8@LNy`Mgdh`@i`<vbeqO0d9d;evh0*<p~x!OezQ~zfuO?
z*Q>lYZX2%fE8w1X<+Fb*>ll3;yE0t%KHzrna4X55N$YpR4Jpo#S9AyeVtIC-?8&ow
zKj>ZN^*?$=spwxX_gk%x)4vCS-@uhWPoB*GC~Er09=$vVdf4t2@o|WJP^%K{*-EGQ
zFzEXIwGS8Y*fxjYOwQLQ-k|;s7Ryg;|A+ZYso#L!k&aKYr{ef>n0SVpuMH{g43FR5
z;6o<c%iGyZuT8G0-+}HkjxNtP3WDd>H~mjM3S3Ja-5-H28*0sO_|)%#zo-uXF7UMM
zWq3$Cktja~{Lj}0A>IeRD10g842!~xr2Q6Q|HLBQ2Dm8rgQQ}Y$0C}s@S$qjip8|8
z{R+>5Zam-NaRB2GBv0NowF3PWiJM%q&mrH<o?QB{kC3-LIJu;r2hJZyBfaM$BD15-
z=-Q|D0`OBk`xu2AN&O-@X9~#}AL%OaQyd=@&!hffeyYiPNO9{0CO?kbUe0yPg$FzH
z<oaFl70`|2Dl8Wn&snXU-B0`lxP$%jMQ|%;`16g-IB`YAWqf))%qHkreQJt(&y!O=
z{F2z)e0Za)koDu*Yv6N#M>mikoE-m#^x1*Qhwsb5eI&WycTO%te+Mp}|C8M!1Cv&|
zMz5l{I1W$kLW)84SW+jKH$d-o#}~`_`=WE?<v2N~{{dXW<F7q@Ui6}!Txu&f{V(AB
z`M^qXmsU!Y!sJ&{T(?IrAMPmh<U%F3Ulgdcev<kR==$fh-Th*+92Jq1O+gE4dzOXq
zlYJBU;&V^D&+zLE&GQ&+{G{Fj?%p~%kU>J<qraror22-hD*j>5emK4#7N}4%K1%O^
z{uz!w`<vvM5M^RKmh-#7jWtg*dXeG^b@b*7J+k*MK3E$kz0`Xs_d!RG{Fs$YE@JP*
z@mEt^JZ^KmbI2*6$!F+&&^vey5NsLXbL#I%|5zICMxU@FhOd4C{O<$9)4r5&G4w&^
z9rgIq1oWh%J$w}YMeq@?Cj;)<E7b&i9AD>g<o8@bIfkcjr#HnlfREQNS#KzC$9nno
zSigqW1g_D%u%ftDC*Qd(qpeRQ)&jjoxYh<ZlWSIS$u&)`Z7qKo2(Olbiypp4Ex}`e
z)2sDR{<DrxK3DxH*Sqe%uFU$tz3kz-aZg)!o_@3PTR#olH4aDi1#u|~FvSC#;j4<j
zuo)THFU^Kini!i6cco9Xl<`~G5cK19U$S#JCoKls=++c>vDaU7umic^ZKE3VJ+v|C
ze$CUbF2wb_WI0w9#`vgg`rr95JC@!IxKdMGzpijoX%31TiT?80Robphf8+DrwJ#!H
zr<X4q&KMz&>^8tX<nbMaS8FTB?cBOOaPj<;_l=1C=noEy?QTtR8)*QX{hoPY>srj=
zJRB&P7p@}qhsh(k2k5uEb|-!3c2UQ`<W^AJ)Vg;0CzH>eKmssaWlzwnpNG>>Mk>Uf
zt&OwMUcl|>%I%gXOD}5rUM{^?o~(VUn!bj|PZX56oJc%4y+@NGS5jlkSKAxq#`EyD
zmbX@g1Ja;xt&)iGTdUffoJ=nhUq!xuI)2zMBKt-4M|0$8c!<wy)D%C{<1YtKJ%{ZK
zIhsVo`1HP@|3)4CbA>+Hbt;9z*kk}qKCNE^-uN4S?{HSr4c{_wgiyBcg$DUcW8}B;
zDw_UX$1nLeVs>RY2L>Y@>v1$0{F<Kdy2(n~@JSH)XLO5-o8-x@1N$C3`1%r6UnhrZ
z8g#c%IxPcB>*yt>AbrC+dOu@{cJMUH=vn!x{l<qkIi~jqzSET-9L<kb&yuDWTsr#`
zX)a#^{)TIv3OZ9fK6`L3uIEHz)A%b)1I|CM(4*&A1gPa0zBV2BN9*j&<)ZG9touU(
zhA+<q{;?(yV!PfE{*vqxA8_~&<*UaJ9SnRiG(4?0gx?hUi^DfY;9KVaf0f6N+zUw>
z9_~rSXoHx1tMh=5_ss<-b4kW;_AsPJj^AZ1Q^U8!PEVDUaqwkwt{e`$KM(0817`Ce
z!=)CD4;MAS8J}gv`SbtoU<He{JM4C1a(Z1}jPgwm)_;w^s-~~y=}UxoLPVp3)0f&3
z&{^W)^4KSt=diNrztPPs1AYKvqj(eTlOl7-{^fj6?iIyN^XT^S{d(-D(f*6!bW_Vg
z*FT?-=W}~Hu{AkW73c3m?G1hhx<`+sn?4eB>*I+F8PDd(`NLJkVV4rtZF_lLBaMn$
z`K|4sx3LO@_u0HM5MI6}Q>2H?X5hie>nz}>IeAh4rugV^eJUz$l7|~@eXKf8daY-p
z++#d?eKLCSvgmX-A1f;En@s?6e{QEYWN~%c!&{}Fwj<;u02?P;&jbCt!Z=?~I8X3B
z;a4R;9}Ljub9!4lANhul>n5+%caZ*D$2a+zGGO-w-}2h4rnu*vf4PkIL6n-UL~F0g
zrJ%Qyr-u<P1f%QBV||&b<s~i${zd0!v)`H)dyx%~ka}fh9Low<^uB5qRhF+x_Wkeb
zRiG2k@5!H~eAe#PZ&OzTr|eOGN((2(f2*dy;`rxz+NoS-j~)~6Sxz|&pSl+G-qiYV
zd-mWyfF6$ejp%pR0e`r|lYU~lOtbMBPEQJo`*#Q+rL`O!9wYKNSnge!(sD3G2IwzM
zThnfQEBqMr|LWOuI`>ccz=^ec^i$xnjt`FGlH#TDgVnF1xV@b`*w1=`3+9!1`b+IW
z4PkVXCD8qfqf6~TeucGz;WCOVIvmGOXo8~xGhA()xS^X+F1g_HkL{%PzlHq6RQ#N%
zDegK~AHIL&a;`~)FnUB*jlRfG5K;J$o=Gh9mns^|xp*_m+gIswd3>K<TE83rRmH`A
zGxqBa$E9uoy?CD~;b^8e9G6v`9QvoSxZFI(t^9QQ?#fl%9`qak<8|YHS|A$U4yj+D
z+{XbU9Ph9FhE$mRTxYKnw*u$Klk>s#jLVad9ImRkZby&i!LofcCoFHOzh`a(z55(4
z_!U1I|Eb%N9<K-Ue408+8X3$k4k@n7wI}P*70g#(An`LjU7)_D>2=~x&_CSE*Uc7>
z#(zG3WBu03$^H`fAJ@fYUKRVhG+ZF|YN>beqSZ6`E97ej+a%xMNPe{Rf~Jq<FBdia
zX^+o{ULYY2G|GBz;eM2Nq=)Yfo?&>e1f-M?lXL9>;6HHu@wukQ8J}m7nY?Nb0{3N)
zZg&_8AKfZjCSi0_4+H<YM>iMzis{NZJ(Fwl5#Uxe0m$>@g*px{lzSZc>ic+o$M_lg
z9r7hY%g5)n|HSmW<eC%u?DhB`dJOo(J-gTu?jrnmcn8RhuiE3lujP$*^TR&D&ktvd
z`!SzJ_Tl4g;yL6y($za?<42QAr0IWk=^Rgc&=E4d$UYA`aX$(qRAY21n*I$(hvN_u
zc$B+v9Gw?HCyw*f@9(c@`cYoH$_6&Jhhzq<ekS+yOQ3hIYp=GJZw`h-(gD6X$gg&h
zu4Cm_UIBh9$ES$Hjh~4>BYoZV0AT;_hl634(4&X^+8}83k~QGfU7-F1PtW*EX?od}
z$NEeS#qmc^PiJd-Rq?NR_3y<63B7u~T(2zN#TVL8Pm+;O|FV|F{y^nF;O`!fUT1iy
z=uIc@Lmf804ZQ{Yc8=freU7G&WyRg$^q1GsUJ$yA$iL?$G8wEE(HcLMVR}+{7xZI2
z;(bQcpL8HFTupKQ`on1Zk+ScBUe58$^hmzL=vBvw%f1hKk2-qXkI$5TOzxYDW3_$&
z+|?c~!u<>p*VyV&Rb0)(_24eo9vX(6J*#{OdN+9O)P;5DE`L9V=~dxl;A1^u`QHZl
zdwOMjM5}>+!Q-PF_q}%e{AScMxy!@l`TW0jJS#srVX7cjdHhCLD2;-%om#nmH535<
zfQRo1K4H1``1d~;zu6|>{q@u?1jf49)iyrTYXJ8tk8Xr<Q=KKg6f=&$X4VA$7*{_&
zUrU;*`eOaMthj9)-EeDuH2!L9fzC-D9eY0k&97$|ov0bO*$x*R$d5*+tm$)HI{Qxt
zIlsbiskK3;(fUMIaqN5Xzp?fkmJ}z<7>@iC6@&8!66>H`Xb;oFdZ)=hqv<n4DUQ;4
zeF)>&((p~vM;I8ZM{zySLljQ=<I{Rtu+dGd58Q;cjc!}Ze+Kl$1N6{MBOX&Wy2&p9
z->BYM#rf;P{(CU2-Aam!<&B7k@mJIIKBph-=lzxSxsR_gvT+JrB@)p_cv|iJwYHWE
z2K5C^^zbPeU@jOui78w#2o1hq@MxoC<wje8&UFwA$(zch9l2EOD*1aja!l0pR0?=s
z-o2y9yP&vlc=hSRzThtG7UApN<9?Lf5_FGte6Zb}J)#{8io4OH+kx?~BjndSKs{VL
zwoU}ycwLg{lHujyp9AP7hl=9<;mRk!MdqKq2)FlQhla_ayfx@<@A1)%^)T7jW4PKj
zz@6jhvL8eCKaC#@SJ)P~*x%u}E%jS!2o9GRF1a0Wi(UWVc*0kywNY`aPqYJY_51lK
zK*9PX^F6-zFkTNRd>QyX-T2GrP<|%%znk}+s9cSHc_-li<LX6vgL%H50_8zCZr}3G
zz~AQMc|J`1P+-8dL!lM8epf$^?>;4bEDlehPxJ)iBe6U1optSSKGW?Ee&N`5`Vj2_
z{4eVGfIz6P#N+XvzzsSauOH4~y0XFF$}cI-Uq8+T_cAWW*TSgST=}hggKivOW__S;
z$tO*zEc1s-iu=&3SC?$uB*(vl;a#E}T_WY!KP!C&^!<GeqHpneR;kfMtylC_;2ZVl
zisHWD@zV>x0|&yCp3$vM0^Q^FcOEw=qU-vz;i7$kgEfTxmW$WbejBc)xYry#jzc|U
z>fq#C{Tk?<;c#58GkXpfO$H9DR46wWq(|^q87HnaJwAFv<HXg*iOWnuxqd(I;d$aP
z|0=s5aJPHy*TFA#;B~3HM(Sy5>iFtYP#jiEO^(!`hP7W}8t65`6%_YF*M1z2qj7-x
z6NQVMf7?18^giR&ryKqpy$pL~eKIq~SD%vN{B_rEUJp=tPE@{%2Y_B9eH@wz+*tj<
z>_~DJaKG~E-Gh6+diZ*w;dZ2|_@|wnY-_oFFuZ{V0^!u?mJbHqFF3ottYv=i50>YA
za%AamP-E(owA^Y2_}ezd4?JIeVIaI@EymKr5j0<whZD(Rl84P@?6LBS$0Gl8b?q{h
zvEANwW9P>gjsyNQ$6s5^O9Ofk?4<$fxb@>&G6H@#ho^hr`k8!N_#}-E!{wC80e_^E
zEBogMjL^?=1Dw^b^#stn#+BdJa_wN4mH~<$_EsJynmkVg{v%gD-&05ZZkRq*dx7)!
zZFXRXXvYkymW>O=lYraamCyH&lY;Pgw+v!lPCO`iC+Et^$oESxUr*R2Z1;paE7$Qj
zGSm-zi_<SYFJ9&XD6Hhd?T&tF5ct!)cF*E|;jDK}t;45J1%B5$erAK8-~rc=6IE`7
z(}4HKiC*k8;rC`uH(cU$;9l|M-Gg{<5AU}&TupI5_i(*f*XU)($ocJOfZmM`7yOtX
zjZXF(NdKBkuV0rjT(JSp^sB149elZmo07mu@Diwz<NB^1$#0_kvDTMOZ?cLT@aT48
zpIc|}2vhIW+rv7^$%*~8>bd`&zVY399&mY&eitr0?h3z8?5jdLxt<Sv?C%F1EJ909
zeFy1hJGlmD@uQVj()9aWI?tCDaz$jj`f&X(d>8b#^YoL?RdLwt*YW`)>*!wq{N`(+
z0Jejl41~{#)%#?C92u1GmX=?+6!?$VkMZ;x#~YY5z2EUQX~0_tDUih9WomWnAcfZW
z8^W4|db}Q`VErH;T)<=v<dY_a^7*WOk|QYJr{GguTB7;<f1^2S2{P-sb#S@TyAPi+
zR4P8n>U{(1{TnA&_Gc+zL;fcD_4F5qwEKB4D19T>HO*NqfAL1-kJt4nKkbj;jQin3
z$#ly%n~$4b*M5Th@%_@gf8=%=li0C24<F)=^Xnkv`+>4I4=<P3g=9Wr_tJ}J?eyUm
z;7|ALRW{sA>{V9I)k7a9s$9~y0spdo=eYl3?1Nm)0VKnvZU=6W!{L2KSe}T_#TFFT
z=iwsny`DxdaR=zNd$^ppzs~wsq_~vBEt4msGo<McxO9#)Up2xmXYWLLyjO$&$@xu^
zw7P%JPL>rH$3JL(ODb*cY2_w<33`oiX~j)Ju~M#ozQE`WHNcrXs)}3F(L>zb=+rcQ
zf0s`0U7-2y@Oq~20{@FWT%N}%1sc7g;{17v+{;IPE-8HM=iUu^{=BOX5eZoa9O3WW
z1N^UD`P^>Tk7&2ly}*qnXVd$v;%c7Wcj`Q}Gn_>F4-TwenfpK&f1wY2@78cR6%}`n
z$ETdLQp0WZviF0M&nKT47(q{Q=Q(;j?-SF(%iC@rXzK%@7q3I3M_GB1rZ?JWT~r*X
zp`I&8sb@`bjr@bw2SI5poV7=!IR8FNxhR&$y@ItyJWduK0^LWPTv#7uaLDs^Bo((C
zS2GU-zoxV2jK7fWsJw38^v(KB_7UJWaP;TNlkr>7^cfz#h}XF}0C#uH??laC`8DX_
z?@0YIx~bm)Q6GQ1hUs=w^qsw73h%}D0A+p)`~i+nvOg5(9HB>wJI2HL@%)MUd-8Xn
zccxdbZn+1%ejF%13LO59tdG&FDXx(n&HNse8sSQcyWQ1;+wmgT;3miDG0<D-_3vzW
zs5lK-o_J_}!`B`M-fzzw_DSUUT7}{G^b^2u;L-2Y_3us(KT*rcJ_-DC$2Zwo*<Zo0
zQH;mKisCqC#{YQS;d|nSw`b}p<rgr)@u9`xxJYq+|LYfjyPu>Gms?Vt)l<qPS8O=F
z#M3DEVOK88|5_&?t8YbdzI_{QTueR#dS7+)Xr7TBS#CygA2}SyPo5u9Zsu9gTkPpC
z?Xw$U&r8pZ50`uaxJLEJDDHZXzr42)KT&^Aya;-89ggZt`;UgpIjgv<9ggFIqzJSQ
zn4wx5z2r-v*XD2>2cV`^f`%(7?iz<<dg74Q(QADf^g11m#~TXC4x?8bCoWkXAH9O&
z8p*k=IKTh5<Nm*P?$)lpe?qyxarK~e57~*>%U-<mQ!}pscag(UeMKyhgr}T+P~4v!
zj^(#f+GEr>)}O~mx9}I>Wb#e4v5!mQN?<_CGd@~h1^z!yzr$}$XzAatW##miesafx
zCCFgoSnFSbS2)p63&7ITnjY_m>#s{MXu7{|tuN?x{%_(n&_4>r5`7w<`e(Kb=zwJ9
zM2Z`WkAkM(7}KeXN3{M8<y;V_pW4z-Q~ET1uyQJjTg&0#iCcPA)Aw`f!4!V9^w!r=
z&KfQq-z`0@>CeaVmyqB@#i!l?KK8R{oto@?TGI`eQCz<(hwlSeKBAvhM!|KDg3J5^
z<^Igk<9XQ`Zd|l-6aNG*jt{l9+%*^j4Oboo_tC&eT;X3M>3y_nBraVW1$W9wT;kur
zJ>u%o*YeRxBXO0{a4SaQivJmf-m;On=*>}Z_r`*msQjeg8U?pH7L4JNZ;ytH1!K7C
zsJK`#hAX`@8ogLBhAX@~8ZH)$;WF=yhKmJbxYYZj;bOrUt~M$z7L4J_AB;wCwG)it
zhCUn>=LBQ8>_?;GoL~&s`thhZCm6#eJ{c9~1Y@|$=r|`B!xdMLO3w+#>`IiFCK~oB
zr}x-#V(A4<AIp9YY5Ha^|6+Nv{3T6~_Z8>s(rcQ2r^_GQ!H-st(gg6=?Cc)zJAabL
zzrN!LXXTUw;6Cl>AcAY@6-{5qrNiU2^s1(B<kA<)lkt%VL4R+TPW$d?yiV(P!=)8x
zaTwljy;4Gpyv&_;{0=ED<>)PwC!<r+^f*33_Iw~N&-hL>fv?XwI`Hr;J*DZNcj<@8
zlclFMefAmvv<!p?@}s2>tquCSx%|1h{1r{#-KC#Um!4b)`Nz_aR!z5hw+tLvmp`lN
zTRHmhI30ft@|QI|K95LFInlEGiBEyQ%^iI>GM1jw^hs{MMTcj+{Mq%9f2{r!HApXL
z`WIdKS$VSZOPc;kT>i&?`K8aG{0&|H1$Fr=4bp3xzLo1=^indSVCAP;K!1BjA0E1;
zXEc2Wm)=!ZenHbim%d+J`jDoN<u?^IeQlQ?4xW`?YLH%TkX~t!Ue)wXT=|GBTltC4
zK|V>BjuUE@p49YRV)@F|&6b|o0QpZ<0a5=e@S~+yH$?gwar;Zi+|r{>kp4#vv{L>j
z_|eicTO$3lj=w|Y$<iZDA4|RkO&?3YhctZ~NB^ig`ejWYtN&LueOs5mqb`4PEAT(O
z|C_x?Yx)$IpT-ATzfS9StLKp7#;QkA(}&01EPuH{dR5cMva^YasK;<UvU;R6J@V@z
z(>y+pl6K?akm3e?9PbyT@sO6k(#CIcYm~Q>!|`Yt>qT1AQ}Qd%|LVt|tft5D8<OiN
z_umv1x22;q&#w5FU#xx=#U1N#{9bfhz4G|l27Jf!>_E1-S-le5B7I#)2k}8mPilHR
zPGbkK@sZJV^a8Fo`xCSuCJll{r=+;C^s=hyW7*xrcHnb6$LG=VWb|7#{X~}@h+|~w
zB~2e*zSX0u>9D4#N1oz;X{Bd$TDJ!u&90mo@?`00O&_k8mY&u0;p3z6QPA|Mjy}bK
zM~T~46gS}E<enF>6WgmVf#1Cxu2-I{ydh1$(xr18kk%QY1}^TN-T`#(@o=(k$NLB+
zl8pqToA@&DWASIWg5vreU7A0i#N97Xn?d8aW@1OsJKV>S|EAS-{W+_+g+7kjaX7B5
zxUu-N_Db)Bawj=@h@d$BHGM2PhD+=WI^B*A)l=fedFr%rJtM_6qE}Pg`93|^tvnex
z7e5<n9bY>ncLDC4I(oz!HN*iPy`th8@t4{a^m=@Hw4Ooa>gqeBxF0(lpU2|J9)9?;
z{+`|q^!$Cax!`+DFc<uc7*w3eyR<v-uvXlkIW9v1b5#VxweA62$t&O1*=e1|#TToJ
zYeX-*=lJL)_X4hw9ETKlmgA4=A>)`dv(x+3-s7WJR9vHWZr$g<)3g3jQrvKV*5q5&
z^b36c`Tomc?OXT?%6rA(cwOK~wC|FU?Hhd+_(t}iqPRx(pmh@H^||s{U#Q?=`chKd
zck6KIC%(R9_8p)6DvHA_ko7c>t(Ydi%-29C9@m&J+5t9<uZrTHb9}KKCj&_xj?~53
zgVJQsYoy1mY2em!em1wqQ_>!OJ=0TwYt#-!#WiY&#D3$WmsMONdgTW6OpjChqujCd
zIHT!}`fEjTjqGwX73IBG*Ip!F?HAVm(KO)xREPVqwCg;tU9;22C%3ZV8p$m+V|?@q
zifcr#s<^S_XYG(Z0Ofwg)%Rq1GI<m=z0alB_fw;jnh83XT}r<a6*W2qO@GMI;r?><
z2>EAbfzFF{xN}AR6ozvBs`bF}$!kb)jpS8R+*tCmdPK8PZoNF{P!#ohT78;sxSHa|
zqGxi84g$Tg<X_VCM*Tf`Fz7U@XQa4B_N}Hk-|osjX&V2@t#IuybO_2FtDYv0WCplK
z<6u#7@cPV;$d0hTsY5}}Uw_Q=fq!ZT-(Hp#H<rI`{6%v>ujuJrFZK)d5>;2<<Xqqy
zwMV45M(t5iT%++JGY{o9@|zNe0oRCLL2-@fway<Oy^`V@(aSCvAHAyL8qphC2zrg$
zqo%k<?U6Yg^cv}NMR5hEFKQP_|HyxLb|AB8ob(ju`{j0ypLQ=e{VN;+dX4&TVli+-
z9)CHU3#jkEifhzA(n~<^8b^=)6Iv1=dvLtRUrlim3?MA#0c0Q5e{yzjDd_Fv=)s~|
ze=KQwqjqRr20F;?l{d^DmlW5KUKaEk`4bhzjYZGunOP2cW7+p1O|R!a_JfU1vJG^`
z8ebz#|EH5DkFW7LC7ah}j|83geq_d7A$D`Ld((>Tz~4|u_bfMV8-JOjfJ1a!#(!yX
zYtN#lk7d`5PO1ZRj&bD$o&0EYhBUole^*??{(dydYt)}Aio4eF#c~t<mlw?%e}zua
z8>^m%OB@5-s~){vaEtUOfBdQ`u2Fq6U7**fz9q#qs&DJDpy%s%E=UW1G)r{$t)#fI
z^w;X!+6{X5d-aWQuO{E4;O6~_<A7^Kub{XmJbFF2cdf^#m+b+)M&n^saeu9&cPrPo
zj$UO2==t`c7w@U(b3$%kaTEdf1xIhbJXt>+()6#_&G#-B`SNQ@bz0)$fvFtm-QnnQ
z+(tGe_Ri;Ad^nwgGPaIcRs07YKF1daaQtSbe8_P>e&-pNWqegnKsj%Ee6=HAd)P+X
z0hKX_KN0xvd-xu_ccCYEM_8(>ci|-9&-3tI;TlAkPB6=xeZa8kP4Z;m{di0tzbK2=
z3rG)VS$&I&>vii)e6H?F#<k&E-nMW;%)YB{svq?K?B(kUe+YiUE$EYkO8*=`gTQ|c
zY|8lN-@9kHjN-5=fpIAp&<tT%9HFGRIX*qv4!x3ECXQ1k3n<suJ3F{fr<|OBP*R+)
z?<;X{fDknPT2BSNyIi?!&w5#2dDbLr-<sn7;<Z;ta3|wBaJ;HR!huG&dK&2BFY4{z
zM`?6hPY2>-uYC93RxztRRR4ItcIz3yALa10T~4;G_mfi3aP3o6+*J<8@2@)5>8<HY
z<{O}Q7%x`RKi)ss5gse;-l6wib@06{!}Ps$Hu9yse0kX)nGZLRUDA1e`_9aHAe*S1
z1N>*4e(`yzOIUvW=)V0FKBg}#<gZL5`;V6Ato)TG>8Ib*Lec2f&intDuE`~NKIks;
z+S}q#@b=`~Rc^UTW|G!3`VR8_ujjT*Z_3|A{(W4zEGOzOET@0P{V#Fh_;BfqfWxXG
z^icPWQ}8g>my+WA{=)aQkU<rk)7S5T-sM_f)|Xysxn5e0AvCoUtBT2^qWE~<2G>U<
z*e@sd`YD>kb(6C6C)&Jj`I8r;ym(&&=coO|l!s(be>Fd?+Rzv13gx$UOkaZh@%y0J
zU%!aK?ElkW$(SPz7XxScvX>%Xlh+Qtyic8~D5FPjMxM#$q*)Z!e$i#f7x9nukNti*
zZ!^r^RTUTecWys_o8K;(%Rz4}oXM%IxH*nrKKFSW^VlbyiEk63XW5#}Z}`&wZ1qiD
zfpV_vGQR0PJ`v5ra8R-?44?R%3W*?A-^$w4CBv_fP3%X6_fALDzV5tmaUI}>udAD0
zl{Nj*Iyz$5<hn16K5@B2>w+G*9^1ZF6}Q~k9lpP16R~gI;Y9ibWvfqSeb9Z<<0Btj
z$Fj@Q>arVOT0i~YaVFPf61abP<+q2wmGaxMf4-fMV-Bxhq6PWx_4u&&%(AOu^vjAX
zd+pwVef}LdX51m&q(fh%Wc4g;0QzS-`lNq+K?LbH?}N8?Nq!!<Lp=I<zCecLf$JxD
zy>yoAZ`m&Zf2CL7NaZaT0rUB$_ni7UJxXqjd~-d1R?0f%O6u(K_#Y{56njRaMf`r*
zs^ac*^k`hi_{7%{6Zdp*mxONeC~boBf9~P+MYM8Z&piD-+7!6cbmIb_f4*xlT-n4l
z?-~@7Li?ew##ep85&b|_=Jar585`+`Uqc4ge-qn*?wX$5a(I764%ZO7w;b%pq;j*M
zGp?P!g#7Wn7p}f?%$%F+6Ut)st?dZ>cU*nhu6~0_%RQ2Y8`=pte?4`j$Z=(!?bN24
zKe01#pL6ukl13+`>G?RFI2subDJpJwJjCi*)$}+X%Y2KX^kY;Y+m?>s+g4}=U;g`h
z<)S}!vn4|pDFS~HBi9w2k8hXC2hmkKIa~S8?gn~g*G^QvzK0}cfP@&NMV2SZUvS3V
zhFFt-MlZD|=uLKh6w|}~6aC`<_M>vR%S&DfLe$AM<uYz|1Wi8KeL(MQM~}{#gj<Q$
z^~iZ_SemKIM{N@Dcewt|^1M&TuR<YYZm2Ap)X`rV<NK-Q)0*Gtl)eT!@%vAi&OMTe
zwsA4D<DwI#LFdgiPyqL@^9I7th{2?XTkL`F>Yu_%cn8dR1H=@ymGKiz2c5S(I^P`7
z7r4^{=+MJ)LWdqe=bHoM%n%)uXEYmh?$P?PzmvoLGdVuKtm@(HNb5nsf6d90-~aMC
zDg;Qg+tI<mt!lD*@_l7IGviCnAD55tENV6#7))PkbCB=sH7y_C1Bm-+m+EyZOEK;*
z)z_&m4NnrXOZoL#HqICyg~LH_wWlu~dXa8NxW4F32L*C1-=->u!V=`$%E_foo+j$|
zlBOTy(pewKTOv(3kbW~<YANXW@1xHLRmREv($)^G%YdsmxzhVLb)K?vCBs(=mxfO)
z2R`;^xqS3PC?f2H;R}l2*7a-dH@^_U_1H@YiEqP~js*ReUH#bK$}uB--gU1IKhzHV
zQ$C);n+zAO`f!P~$t5}p_@f-2&iM&`B~3iy_d`|{_kD-sdctIgVe6;brenSf9iSV(
zmz?ouF(dsPt{|xVvw9944gAkNx%cV&2Y7$xaJ|SJ1N=q~A8yExrZ-U+(r?moXy1V>
zZCHBiu}EJPr}y)t>1#>TpY+=a^YxzaduT55<@vT#a`NMO^H2}yuIu>Xe*8D<mQEjw
zD}bY^mi*)XF88SsMfQt~kD&;-C9ePSeSCkB{<4@n5qd4VjFOAx9l5c8RFm7<6A53B
z?S4eLWy4Nse+ROiq<oZnQQl_Gp7Hx5&XEeYhi6E+?O69~=j|6}myF-)Dah~7XZnNh
zqTQ+IQ1erVpuePyX)4q7uqNI>A`y6U>kR(L&`#eUPLS`#|NM2TPIhdSk$I9z>57}U
zHhy6HPS<jtCKaKF=kx(vNa%;}hFlii)G59ReaeVRpJ$7JOi!z4qWtHa9cyd(I*l75
z7<#yj=(4Uld43D{4;`NDC?C9^LLZ;t;}(2KYc35wlDbUQdX&FCJbzouQ~lv-Qr=UT
znhyU6ZeoH@^^=uw_d1rp3p&*`O&)B|pA{)A4PPO*5<Sf7S-b@JEuG#`d@tNn@NM!w
z_j-Kg2f**`^_PxtJHdAZ|1|Qhy^~i0KdANO`D;f&?#8hB>yYBUS%)Ljr0s3`llmd(
zHHzC86nCAY$M<TDJb&1F73f`2ha*o#%QbzkDDDO)r)BgWjc26Z2jl+OgTpd?g}7Y(
z3)h4G`yTzS;AuzS+M)0x;5r?B?vK9|Wo?%?sDOasYd--#j(_oe*MDGz=#uMll#i)e
zZn6aYlJ)Te+o87bT5ad1bvR>Ncp$#>iwiiu`#o13SD)w}(CKjX;q%=Gj%d%S;(p+8
z%pV!}VeMJC7xWt8Qf1)IaP;Pq9i^@`j9#e$&iZTmSD?3sXNU4wH(@`4yagHa^qDO+
z3hvkPGxs6?&)38cEYG~$@5VDD@zvc2<@SC&6yM&*ho+q_-{f8ZhU%}!_!#hz*YcCU
zM){94Tlwr4&Jc4kFT7aVaUSpc<JSZ}fDakJ=V7thKEiVqDn;6_n2FEh50&qxT5k1m
zl)IaLZyCtRlk1;<K>Eopo&5ns<_@Oc3|CZKZym0U8SQ7>JpDcO1n6yDXIG~)ZmA3~
z`WIJWEya!ROK}0zQpAIoiiKYa`C0jyr$F~+S3Zy5Co$a|%_5yWO+F3WI=-IBNGxx;
zqQ>eG-7vbTXMq2fqswuS<D49=|CSW@S&wcm$V>U$O;p{SyeiLvZX>(b`W$eL)+>h;
z*N9$iob)o!qufU8pB2TO?#U;I{oXlRcXIKB><geb)_SGWN5w61^n%6wXzh`HaeQ>j
ziW`eg>Lt*z{x{bCi=yK8ar~eL#!q#ebh0m_yuBSA%sh-vQPangkKs~P(5a96ksn2I
zGqQ6|&#Q|2yr+*n!H*f&<Gqf?$u;o`=$bubdGvYr0GOT^6nC!k7swujRWUmK!6{6i
z0}^S&Ctn5KgFQYv<-IE8Aa=z4Vv@=w`+vaS(}W+`4!4H~=(s8Kkap^Q^injQUGoP8
z9>}Iyd8xl6|K(nJ-N!SsTi%W}ydRd|06va$@i;{NR_&xHAF-1C2XMb$)A(Y4{y4GE
zixK}_jM&iPaGFSCF?&Vi=Ccs_<0tY#)`h-MODQAPuB~r@z8_!g;Jg2n5365IaX)tT
z<M-msl@b>cajW0%D$n9Opxf-)tF7hgL5Xl)J*fV{)r0Xx<yKDVJ><Jn>2N#9&F>ta
zofem4{73Ht-^l({6t~dPrTt*!o~irj^s)5=(0j$<c-^%;LLR9PfvZ1%aRW;^7hE=y
z&!LY-)+>kgh#U<AvrG>&9|PCp<V^L)HHRlN@d)p9=XZ?I7mP*Bs>!eX3GzSU^qBQ!
z$0lk1AS)lVLgeD;Lm?#acdxuQ+_2deCa8I}VU54S8o<Bp;iGUb(Su0VLL=!Wkpwd$
z>S<6U<FBw5@=tSm!ThZOeLl?4@qDPVHt=nF@LuEEtE51RTkp9ZSBc`*5(m6%(7Lvj
zm);2ZPx1N1i?||O{~t+5w)&Mf2L3eXC$zQPGN_^ITljqpQ|P+{cHGA@V%y5gY>xb2
z^6ED`JYLwHEpEYVz75c=lN3_G$LDY9JuZm(F2efrBFt(R@k{RF`~Q<$Azza#hwar2
zDW@Ix)3={Mt!MotwKeeU6Y)P;|04i?O(fd!b0SjQb!*`VmN(r>da^W-_kb-1bQkI!
zED`z?=jhf!@pgxQP<YMkgX3pMl<e=P?DEbz8LpzZyOck+2X?;`E0^Jhb^^T?ubn%C
zKQnWkZ1t>tN;?C0L>=xi!Eu;E&7QLd$z6cIwyu2XM?K_cxbn-2^XC=aqs%KZyMo^L
z9KE?TpP{a;1zUY;io3|eb@RI>hv9~H13iEI?iuBrPI7nPe7{QWE62~SzC+{0CHFwa
zGd=!tydp*RkLCxiKNJ;rpTn^|r;g61jMj=w-qt?Ro}l}?(eUJ`567qX0{-_Nz6bH6
zp1E8~4+f1*H9fgE@Y?*;57Lri<)<|LxjK562qn-Xrb(Htof7+iUL*Mz8sMz_#8*Hs
ze%~j**J&&1*NgZC6)FJ3*S-q;J5HY&zk}k7Bk}tJe}KbNd>{9OXZg6a^;4sto(%l!
zo;<p-QrR8Qz-4%oM{64R1rASs4b4OFYdlU3Db9ZnLKlK-U3|>V=o%lzDWI^q$9EU*
zTkqoV_HcZ8Kj8oF_~3ij#X8mTZS+g~|8MjwQ~x)7Z5r_P_UT)!SDmBDJvrll<3Di#
z@PnRwvRJRkdf^i1ClqD^KVJC{&HCTyCuak{r^iow@KdgD`)Kve90dGZUVC+69^2*X
znYCBuVBp`b!^<EvI{pyg{r7~i<HhdU<?;b1*63$5z>n7tO&tonZ?8wYZ?CMlMs&?y
z73P4hiqY9COCQqocs(X)XOUQXVlMI@>*R#@En0e{>GR|C!~FaeO<x?RAHk2Vzt02x
zcs+~HSuA!P-f$(w`EmHs&J|}51HDH3v#W}`#qq`C%4yt^b^Dcz^T)?uY5{O#@%M(7
zQ&HRrpTQ68k937U7kk@<8_>J3f7gBdoSEvv+GiJ*P`mKPa<{5~ARy=CV?TVzVA_Q}
zc3pV&OBc4vc7=zaK#FTKY0aSDXja3)TP&_RE@lE+&&*%(qoz?*n=-Pu6x->{F_25V
z?!|F9GSFC(p}&}KSih+#KI8TKZunu{qmB2eV?qBt=g0DV;1j9dV)ypWn4eS+@cz0_
zH{z{2-6q}h_-|bSeBHj|@MxjmhV#2^<c~W)xpX}6zCO!~v+;AR_c{D<sH<oEo)(%N
zIDd2K1mKR?()2~<6BED45~PX6I>ZT&T_(TUg}|TZ%|9+03@;b|`=UX9Lx*?()_)5Z
z122o2M2GI@k*mioy?6=I_eJrP-Y-v9URBfmeeSleOh(Ima1Iw~{W!V|^nU5+@p{O`
z&d)eqe{a1UxW`-Z1J5JAF&G{u6H$8DSt>*it2bgv(8CYymudEJle7{g9c&Muwxnz9
zmw(yA%le>~AIw%hlD`KZyF2~jefckPnY~NouSBzT>nZO<pajGbdy%qS>NZK~Wh$Vz
zhiiBCD`Z^jmbgpz941lsmuKmgf9P@Kzu3!f?=P2$v+n!UP^O#UTU@2}3FMcTQ4&vl
zzf3>NpL(LcfC0fUz})(D_K%v+=~Z9L3nzt_i_~5?DfoaX&?lJ!(JyQ7p{J3re*Po<
zzb8vr!=;}A&g#kY%U%+lvf<V@3yOQ#tABU6hp@pfA|=tusN7ARlAc}tt(?qrpt!e}
zzdiU1gWD<G=J*+U9=JbfyNR8~`z84Op{~D2F97G;lP<glMBdkI<rZE9E{^NYrFP%X
zRnTx%#a-jd<@OQ3q`!-PGu+Tipf}`jydReYAkvTb6{KDUF6;D{<DS?hWcx;V`$}5r
zn4T2=gnUQ4e0<*Gmn^3?S^DR7xv#_aa8|PiwLc@@d{4fz9!uv5M6o(B|1o^#Rp4*)
z@a@6v(jLJJt~##X$-e^szVgfM(t-8ujzz?d(M`Ul{I3Zh-oyQZn2&|wa?%%g{3g%B
zKY{n>-+koL(LNTLG#f7YFW~05@+sa-aT)v?%RN$@KW_BVD`15p-i^}7uchLBGCVCc
zx!3*;O8z{h5B2M#k(J>1%YBDg*i`vQzKMKBr)A&-NwM!4O@G?8C$Goz=)oHUXo5u_
zI!%-nDwAXDJD@w&YoA{12h#2Fe7RA)AEodv@V`;MxP2n*--rf?=e+)&c@Ma=oFCNI
za>-zL&N|EqJ@A_!`2kCq^eL8=KE=nO&kK=Gkq^NiD3<+_LH*7v?2?_rh|<s|hw9om
z!RX&l-xj>W=r-8QHdx~}OisI%-^8boZ@qec&r~+UUVHeZs2J7Ybo-^>9-dJiu{g-J
z)gP#PYqxdwHn|zflgk{52bN<G{FENN&Y_2Q`S7a96t1GxFS7;mUFzDI{h@<|g~b@R
z7IPfj%CmN^eG&QEoqZ?2R4i#%7zvwQyerf7uk6;qH=2i7ze#NaydOUr?cSB5;;!@b
zCx^zbJBOUv7W5j$?MsSl6t_=q2YLgpT%L!}I0ZFz{cK2aUvapT<;mn&(e!%#m+`J{
z{lW0X?NRP)jvo61r*g~6Yu;d`V*5JurSaiS?u8wIf7qkn%gfTL0LDk=%fQ{^_46Ep
zv^nk`#)r{O?gYH==Z-dS8&cd@^CF{{-g$iV%8IK$PjMN`t8U&l)cW7)IlH+FaIqc*
zqAJE$r0I?7SyNo2dKP#6?|fOgsoj8UM6aT_UwQ4@gYym?Hgo<=ad*%g3uk%|?E&1c
zogG-#azMCY$O1k9@!12&TseO<y$|p|YXSp2&dv{4h{c$X^HB3Kb)6rsOIFDA$jYnj
zi~P5F<z>QeNO>9Oy~Tb{X$tTiuD<pAe$0PN?FZZ*&JMC4C6Stb8qmqxrC=rdyfTjT
z+b;B}CjabI<X_~MLnED<1Lu#F6_@dF{`<g<UUC}fJ?n7nPu=GFq2X$ZyV1i*oKpL%
z;fm8i54XAU_(1-0KIYH#yQa7;UB3>$$d5)RbpYu2^RXNjj&c+TaDHx8aq;;CmU}#K
zS$Tz-ptru`pAN0jKT99d^v}BVL*>c%DQUXD53Y+}G&8LJnOP{Ok=%>p#MKn%w|9P&
z_RbuLa@!sMEC-tPsA5<>%8G0AaI&9DaW-DJ&IY|7Hv!1~XL^{G{xcoNZKj9&%kVv&
z^fqpf4Dxk)^mDx9TIpN=${Y&Zx4r(gINS*SK*(Mb1Z(_M=K=r4I{d!C!w+4IWB7}C
z+AwRLmY-aRd>gua?Dw55b{U6+qNC-@a{MIIvj}G=bgdU}Ig1vHkuW*79s#=WW})YK
zE?MhodR0=~CQcq`NuyKI^i5qqpnYn=f2{h>f2u7;d7F9l=)n8EJ18>3%y%3mf92Sb
z%a_a|-%eh>Ha+*=7B)-9He?YFjj!~P$mjb-{<@mAOIdM;IeW(EDmE6nS@4(TV@Jd7
zYpMhE<2Vzy%j;-_sjm9Y9u$rS{&*)xI)}~Yq{&v&bY;5fRiYC(e;vOw+(r25<a7DM
z`fH*K_>~^rUh38qEm_WuX><#Ud&RXApYLA6Ksn~kAAj=tLDUVpXL)pccztPj`Nsjb
ztw*;58=~cXyVf49J-}V<=<&EAk*t2!!AbgiRdGjn?VSx<r2bjN39@nwlaIa7wA|Xo
z%1P%?j_+6WVoM~)jokekWyQgYLjU=_hjcE4Hbutg0+T0z-d8;R$cJ-;pFF=eT^TSr
zXHEp(e{XY_jL;kqzR}6g@U16}4{!BLo(%k5PL89myH^yqqt`B7!Ao4hE{aFHb>PG)
zpm%^*zqasHsb3rWvsyp12bopC>vWCAM~oDf9%=d)9Di8Bu=F8K-@v8A(ph>*({)=3
z(Z|jROD}8sdM^KLd9w71rf=cWm)51%G<`FdzF3~j9whZeLh<}?S<5|x8kxCgFnE?F
zc+cPpYe;LCOaXFP;plSQh$h#=#-+02zSIPu%;RM~7=;hZ=oHaK{7&qy|JF_i{o5UV
zwl}gAG3xxMbO!L(*Wsry_jP#VKl=^fuk`T#{mO<*o;i|k4*Le`=8<K^bvt^zPnP%{
zHjcKQ1$zGeMcc2y+mna)@0#Kp?Y}LY4Z7pqe_Q+}@czD+(eC%nd<(ex{bk={xsH0j
zZ}}YH<9QIxe+Qfx-1v|>7q~|A>4M@K&8HLRf!<e~{4t-lc1&yf-7cN?(_Lz6?es43
zZP2M(pAAk&eMi}skQ@U3MQ2ZV-twy0lllCfY;91}i`sX9zh*5k!s`(wJJwSgWKUuW
z{lKdS^7%*o{Dpo#Fzh?UDj6p|in38?6a|`nC|-i{j&}9N`?Ad*Coe_%eJ=gKzYn{r
zc>msyh~k#q&EAs_8r_Knqo2MU^lx|L8}HYAUF5ScyxR4A!zZo;{x=>!Jy?6};V_C0
z$4-wbil6H6qu<M(`XT80`_6j3eP^a8(KvDC1~`*{@+y@33&&q@3qM+U6-|H9rSrc1
zB1<wyZR_rbC|wOY!{<Xrr>yC%-uTx+{f@8SsZfg;KecN>XRPriaqWLkPip$`d6&^|
z)%0~;eb8dozG+Q=ya@oFr_2d2ka_x?;2CCk4#i&Gc%Aw&`0?ZEdJjE0_;g%h4s^oC
zvy$Q~%|^ei<%imxemEEot;w0_;YiiINy=y87L=25dfL`<<6u}6MZIwlJICo$!pHP^
zs;Z*Zt8yFizv=4D?RYVlmOH}!k|?abDz^jwkcaQZ`wsaY(Kz062XGfU9F4O*OfZsd
z>_#trCvg6JH==pG;ihW-s^SJbJrPO-q(PqHee!`X)I;c}>1I{pex1Dw<;C}@ENe;g
zLdz8T@WwHdPx)@(PjuzVd-2}k476*OS`l{3@acPjKdBxsCT28zxeR=}!?Pa~yvFqD
za|Hd?`+)b`%iX_0GfXwxuDx3C2mU744&;x}yq*Qd`<SgAYKm*rUPBLnUL#!VgZ~|8
z@~SBA8J|DQccRhebEStscV{Or_OGr&g=pGi^|yXieHi%od@TFn6j<Yx1L=u9G6wNq
z?(xP~?GfaA!Yjw^C3%UncggiGW<M&w0e-lBGI~`_kN5L)T=DbLO%K5Pgb!dATzmWu
z^m?3J_<RHHpd99xWgi9ZP&bbAJvf6xw;TI;x@jKa)-B490e^_I7d(%~0qbmd5#_7b
z=j0Q>@960B`L_3k{=8X+j^&nq68H(90^{r_(Ef`n*I|*-!>*K*<!tsV^C#eEI)2((
zzCRegCk1?ekfwrD=zH)sK6$4J=$hP%e?k7OoSfR^$>dnk^m;#3{PA9nv=|@RS3&2*
zH9&~%`|NN_vG23d9cN=-((K^3%*<@Ic5z&<`a1HP-r4%2wSVgGT2D`(x^aF%wm+EO
z8a{dhcz=IkWc`BNy5ac3KY;hg<47Y)@hOp*-|Rnu|DuyyR-R_-_aRL$dGeSQo+mS(
zS<+)>g-7C>goE@qX|GxIm)n^CS$)!Pp}a@%GtC#-j}>@c2;@5@li`zZ1OJdGuPzxE
zy0CgIljK>68<k%59pG1d3O^u@c!#LbbgXYqm(uF~BCs)C7k;Pn`PnHHe!NvGHa%R7
z>?`Hh;79V|6A{Lz2j@zH3_MC58>pwVpHB2#77~i-WhO)m22C-)v%+Uc-ypf!TCeO{
zz!lW6aDSq0Pd`|jDbvIG!s0E1!Grh#TP5f_#kK^%+k%LM$+h}<(EIh;ak(^azHcpt
z)5D8Ij}g`{N-5wkcXDlO`D7s6x|#9x@Sce3lYv00PoJ+Kzm=ES5&5@w`w;k?#ZQIn
z_Hbd7)z|Qa-GKM~`Unft5m`STwq|k(hR^H{{C>Wk1Z45pK;HshxTc0L?g6~Nf4dEK
zvW?@qrnlBkwLO9V4#Y)ztM|SUC%(NN+6%ZpIvkBl5;lu?x!c*_Xm8+-_4v&SyIKFZ
zxZ}6F5Aa)h_IEKFcd=|^L9)XqC*cQwo-XkXCpj=^^{Xfzs}P8<@r%lIm~nJl_XXX*
z`1RBK;LsvSFgd5b_P^nilYxJxu0O0TdNM1#hWZ84jec!^eBarP8$3VTQ?zkm@R-3J
z|EU?kPx0g);dpg~O`*|pZhfO49RR$4uSg#DA<xTbrYC0a3p0U#ua5rLMPp@OS`_?C
zzL0DgY2_3SM82E6e4TtwfdjoCx@tIl`XJ!{?X^QbNHad~UCZI(^67(tzuV~#^*`u)
zJFa_c$L)vhyt!$n>-UL6k<Z_Un#TZ`$F(wf(b_x>$y79%I7r0wDl<pR_4w>1|BQDB
z9!~`sE;$#tV;qkA7scCE0iApm7xx3+_auIwu1AnyY0_wC?kr#FFwj5HlW#s)CQKhD
zf7|6Rzbc-Q=2s*ZAm4C*&g^1R)35gEM!5ISmVMCdV*F+6kJQlkDlY{6C9Yj~Khm#7
z-<OgfPur1bI!S+NNsE!DFR3Gt?+j1x=Y>t8_w&L9lppDaFD=D)zu)pYDYb)mzi5qk
zTq-UDey-OZyaQ~wJxFAMOM3N}{UW3c3n9@Q^J07?mjgec4lg3g`|AUSPqhL6uH%FK
zg(E%6NHBS(js*TfkG|U|1b1ID%UNntRnxz6JMwMd<?F;cUnh4}!&Q$0ZkgkU&sozT
zJIo(XcL4Vpk6wgLThVCeFtSJgZ}>td@c#TSkBxMBy*fuYG&vTI0e-T_k6rM{d+CuH
z>sPr8zuf8S$@8m2SnfLVBEiu=7Wh7=$2`9OQ}kHQc+<X8R$;>@dVrrd8bALR^J8+)
zt^nTm-}`Xi7~g#A?ro|mZoMY($Nt|UIXOOsJ|7W&7LBqWK9L9gZ9IOuAkQv7hfHn+
z5A)8Rww?(546nYO*wEIAvz(pS9oUJt4NO%z7EVGw|6H=&udntLmejYZR6!eOOn$XK
z(7E#e@%H9{aaCpi_+!HIDk6n~sDK7V5h!8yOb|8QTj&x<%hFPk$;?eM?QG1FHf#+F
zB7zcRQA8y!EP_Z_6cLrM%c2AU6+{gRA_7`O1w`ccdCqe0nLGDn+Sm8@?H|pY&*wSM
zdCtDxb6k7*dsi_KUDLXoTm9X7H-3_ozuIUojuxZ5xmfT0hU-D=?^Y$^W+Q(6>i)U@
z*3}L2vrd=#Bd$F>zZUIsfv?+;tXICeKOqrsADZj+nX+D^UGm4b^hqh-W$4ezjLC@w
zpIrTTaN-Op-)6`cWc{nNN4FbOXG-~->e5GELU?rRgQDCV&HEuz%uUy^vn8;`O($-@
z`GaphNXqB2C4ZsH|1IZ8cc(j_;&ryiSiCIyp)!_wcyHo4@kew}ijcJYpFaU{eJDt5
zPS?rG@u7ZhL5X27EPaY3*7YlNzO?J-%1)k_4a@U)!$m|w%gy?{l>1(toEYB>^CFd&
zn^JO9b#mu(*!;bKD>r_D)c2erx4z|Gw*Y8;V;4%ff7Z!8+9-F?R?1y0<*qXH75EM^
zRq%AUU0>Kbxh+cWJ9YZbZO}LVMXB%6I=L@#x)jh~y6G}{iIg+f>k2$L@!R($Dfe)l
zz6*sutlPT!+AfuHSJ%mXx<TKRlDox_%kjlizHrCBEcHEDCwFy&T;Er=PA>FSDK}lG
z@5c@LW?d%b{$R+hZ@Ilej>fl6-?Wmm>C^4u)Yqgw^SotQ-UA`7+mfu;zKwrfBDWds
z&w9}?^Mv#q<cy4f*5CI{3A7vXIe8~u&bTJc9j}aCF6HxXI`DWIGvh@P(B+q|kaC|h
z<;1wMe*Jw+$<@cNB-)CTVXbTDl~UioU47in%ks<956ODts=livB3EU2UWs!gr?6W2
z!JD>oLdh*~^+HZG?DcZ=t*z77t>jd4$Z*91j?|~)Gp^*!aZyIz6p=CKv)az-t7Z7>
zT|05^P0a7hm_T^<Sa)9|<(kc>CzRYSM!xIsX)hJ2k1Y(S()Lb%Tk5SJm#Gzzg<kq=
z`O#~)PF}~a>pN0jRd=M@^1650wcMDJYqqaF>pH2g!%eSY@k`s+t@tZlp2wLeNIcFA
zh!0IjeRtH!qouRRPi>?8`1RYSzjT9?f3VITF%GM<U#DBwjZ*$5Ltfl-rxIMJ3*98;
z%zZBR9QxP2eAaqLzboaNom-eza<+2|dfwahJ*n?KuANe|=KB=?0hjL=zcfGA#Q#JS
zeyRz-r3pXl=9%peHQ~FP@Fm5E-1ryk;y<qVxXV}T_-V!4(r?!HrTsR(OYzqHQT#jI
z@K@J`KiWk9gyK70|C{RkZ)w7ZZjtuSb^W(=@lRboMw{?cinqm|elT<TgcNT}pYA4n
zsR=*Ugr88n&Hib{+wzBQmGQIjZB6(t3$NRYKE>BKQ}B=1vxB}vnpScbNHHO2zK`nW
z=MSa5w)7rXye&PZn)u(+grD`JnZpk?;k%pgr6&BC;%)JpY{GA8qJP$pXD$yR#oNN~
zQ@pJ{k2m3`6>qE0q1&W=Hhxs`Hv1-;@Y9O7l`oo{Ise<5@Lf&#KE>PYA5*-ozD_jZ
zr<(9vn((u3pE>>^#oO%fYvO;j2|wP1pKQWUH{t1ynd8^igzr+kt-mfQ-qv4FDBhNS
z(@pqUcg}2oNb$Dv)2(=0_@hnui6;EC;;r@Tu9@v`Yr=Om;rkSCi{F^yZRs=7gr91{
zZ?W*YznpcqjDNHKa!kpcQP*G27c)6*Jh<l=+wPe;J-ZZdOOH|$|6@(~i6;D16Mjn*
ze%8G+$1l``?^e96zK$y1R$nI-Z%e-|P58E-%xr&`;%()zPw}?!#}setkEfdOv+k4j
z+4|eQCj5lrZT3w!;b+}HbNYmu@ZC-LQWJhm@izM>6>rO*=_WiqAmeBA-)7-;d(ox%
zX6?nKlDpY$FL)nBEYOLY%-!+zgEOc1xZ-W;G1bKXmL~kHpUxb9s0rWQgfBJW$C~gH
zinp~F(~7sX7i~Y2@w260cN2b8@wWbRT=BN@G}%P|7RB4zi_k;Tej8s>ysf>MY{Ji)
znmK*Cn(!sX+tO#O2|v+<pK8KyQM@gG+a8wjv*k}$6TYtrKWgE1doix~X6;4W&!wHs
z+KXu=XG?E-Waj(~Dc<J4y9r-v!jCoKCz|k6P53QM_*sw2_}kixF2&p0i&4ef%F{#>
zep>Oi^rgpUE{|=Bw}s!Wcw2ig)`Xu@ysf=x`-Qa6#+MXtvv0f!Kc#qE`fO>!&-$gb
z&*neWgzr|o&Hhov+uDoqCj4X*e%iw8_JV#T<JYXc7*%r3+KaBoXHKs^#oN+jtcm}L
zCj3+reoGU6))O<^A8NvPH{nZ)x3w4Jinp~F(~7sH->hFt`)z!e;%()*Pw}?$INC)2
zgyL=O#g-;~=t*h6tvwiR!cQsQ7JvH9%;^(Sye)mYoA9M3{8$ryLh&~HrxkC@ANs9~
zpN(&8!gpDC-Cp!5zFB)Qt>l`u7vsN^_S({WQt`I**wV!Rtm&Echnn!+P54q1eyj;U
z(S)B;ysf>Ur)2zW?M0X3ZRuBP!jCK7nm>xSmAC08`e*%K+HY$wx|{H0inp~F(@pr$
zA7uEp^yzEDk15`kJ`+v&sV4lECj6|YXSTmf@wWWwYr>B<;m0k!ZZ9Sk->kjpdPc^h
zS$jc$lybK8Zd1H1Kf9awFE!!En(z}%_^BrRmL~kHXJ?LoNb$DzqEGR*_F`P|w)C57
z!qcB-wy#a`w({7ecw6`-#oOA8i6;CO#oOA8uIHrvHhxU;Hv1-<@LLpbE5Eb;JahVm
zn(*CC_>$sn_Kz#xmOqnC_~|A*Jul<u*RR`)HpMq<FUFNzv-YCzg_+ZHRPna-m}ugE
zstLcP2|w$_ne7WT;k%pgr6&BC;%)84q~dMu1^q?ZZ%e;W6TVOJw)!xtcz=1(>)GQ?
z^iL_?)?Uo|tF+(7cPrl39*j5Pw<zA0K5biOPQPx&+tR1hgdc0dPc-4D6mPSiUXu3P
z@~5o{-_?ZgYr>Bz-j+V&inrN6)x`gnCj6|w$@tsC4>jStoA9M3{8$ryLh-ixJ*{|K
z{cd}?N%?HTk1F1lKI4kFm7mEb`nM?FR)0f(m-gHElHzUkd$I{X>mM_xPgfJZq<CBU
zj5XmWn($Li_$`XJ)sMD+%J|vxr>hCy*MuLn@OnHjuJ~r-fwotqoulslC*LDGPoI}?
z?|&RuavKe~pnJC4UX}VLTsb~ZE-$*l2U706OjAm3(_5q<fA2IT-+>+Ci|_UM_n6Yt
z{V%Ea_Es&A@4V!N&L^~H)#qM(S-%u>zY}cxj|9B$$_#(UH~Q1*H~kiA!DcrexQ|an
zV;G0az56cvTBMw37r!Haics9&`T=|oEW_9F2<;%{-(h@zw!Za`LVkVg3dr;KDK~3x
z?so@WJ4t^}yY}#RAL6^+0$;a_&zJCZt@r*x=<QOz?8<Y#;v;C^_uLao&bx1g?Vl&?
z=x=>i{>{4PxZl5oc9Z(e^vUsyy-L4M#|b4jYS@wE?<9TS>xO1aeSbE}LqFda%I|!<
z1<506H~h9eBv4<@&SH7-nyfy@Kc(dU=7!Jd_DPXooNlVPxZm4Py;JIaXglda-Y>@Q
zbl_sK)=~90A^-BtO@R6P9G$=8drAL$y5A%6ceo!G@);?g33|_bav$mMXNH|s`5ttY
zzth+88GEmkGw(yt_r00l%edpb_bGc^y+?~*nxAaKPb>Z+*MG}}{8QUA+9vgz--Qmy
z_gMz`GjW~1x;#woE9K4a)y2Ck5_a=<>irV<qZ=;XfoQp_p&U$pK+65ekQ?HAV{vc8
z8U(Myo!C#x{nL;e;O~rl;ZA&TW;q@2i4RG+9gXrj#1GN%eGx{ywfyA%QvM+~e7?^Y
z-=X0{Eb;ZsDgEN{8(ogZJ}l+0aN9esmq}5M`deR=e~k~>bvRvfq`$xKC<Bt;UoRE)
zcuni++v^<B>CzRG^788mc@BM(xba{U%<{gcnox4*x%TrtSSXp&yIUT*;u6@!uv>hH
zgL>I|70gftLfhM&l=7oSI_i7hTU!uKpZrv(l)tF1ejP3AmvM88)?YeI%3o>f7vH~?
zTbFw3z5e23Qa=7RFZ~v^-YC*<k-DF2QR}3ejyjyaCDLD?alcNVypgD{bpqm&cEg!m
zA%R!jc82>U@!i!4t>NvsT%6F7a-&bjt8}02k^Y`{{o!2|eo~pANdLX~Bfc{}zU4*3
zp+0;(UQw4C6d=~PK<S@2R_Z_OZ94vJ*FV|A3Gy2F6I%BXsc}N<xri2E@m1dmEf))8
zS1CPP`lX(q9IW;9&;G>b*4<j!3x51V=)jK?cTmV)JE<T0Yvkr#B;r7`PUp!nskdt6
zXMvw~<9p=LUFh~k*Q2h_OZfu~dC~vyyC%o6x19LKJBK4*EUEpKE|C8AGW?Zs5e0u5
zF21%b_X&sSbm33iH+G@)_YR|c4yg8jfZH!$c^<!b+vF#{DCPIqU8gJGU-$MM*_b7*
zzk9n5K-cf7Z%cXeUESlw_w*9ic29jry2-G+zqKIhRX@KouIzU8PDpv3-~9aww;QTk
zche(uy_EZsnU3P#vU2OLLc92y#cijjZjkb}?;3UZ-8V|PZ_8xBcQH7(SLIZw@@;Fb
zKDtTD{lkze$S24JqT^5Bm2!&=J98~RWQFGQ*KYsR{XHo^$B<ty-my}+3UBmg>8`)O
zM>McizV}C$S8d1C_oe)l+m7)48Q&GvW=-o$s5R1umLI=O${%3l+fZw_NZBD-FNSd4
zkDDG-w@dlYy6M5+E#rm(3A^8i_1z(XHdjvGxT4d4RPnF4JdfWWbM?4#cS=2fFyu<c
z_u@JprMsk@c`trJ&IiOZ;L1EV{m1W?h<HQ<x;g*Xx4h|wuk}vdBjwET(y+Y0W|%+k
z_NV{!y-IIg`X8av|Jx1eKkH{wes*B`pU&lH2n~#z{-G%;zt&9;ylWr_0Ald0?H*Hd
z&l!6ATE|4I*|*WNTaV*LACY?3xO!WT<DWVorWOB&%kwz+a<;EfL#nxQk4imRSB~cm
z-aSxSuKO`5x6Y8O8t(`mrtk?R_hqA=6k0?>S`Zgz=*PswwHpNvNhsFo(EUppPXBgN
z;q24UAGIDP^5X=)Ukn`(S|`{3$zMzPFBo<Oy-VNsq?9wit6OipBctu7-$=P@-0*v6
zuW0?7$cGi;-G~+FIp)q@A;+96c*xE^bUIBuCH;TjwTJH;!8hgTNcthF<5~K>lzZNg
zbMLX@22J5wZ{HuJ{MoKN=Mz4Jm$2LZZc%doW2Apcjyv@|exeK0cF;3Y!KAB~=kK_u
z0^>K4Ut)IU#cxu{54iGd#}RHvpzRI)QR+4CvpNap;{6EB!WPjf%Kw;>yUUm#XT*J4
z{NOf50{lnZOOO$Fn6eY2Q2fC_2LFo}Ix_OYb#Z}!%gD<Mm6*sm{;iVB&9A-}B;pwH
zQT4OHk<#fjrR1J-)0N-Ld536s7x6`QO0kxo{EGz4cg@$!{$;(q=B56AqpmGd{xYNf
zyZ8UJ{GH?4&)4UwVBB_l`fn21!?j=b&~ABtS@H+DdNB`C3n-_Eb%ayo?D&*b9L6a~
zqAphD=Hox4|N8b}C1;`dr{%_#+&3gF+GoC@fyYmL|BOzT?te;s$GPdq_ugQf#23^d
ze)xk@;@w|1@rsoHiYw3kqkMm6jd4-2wxjzsDSxeD$FRINL@3tdJ^GiF`=~K*>1*u}
z`PtVxSN`RTDOE+(_IJG@{hj36!`}~liw&=u>sUJdC;ubmcXs<1p4Z9wML*ByIA8xF
z{)k)db-iDv?4R212=VI!Z<heyL;8cwt?}*H3x3?Be|$uk{DaLcZ%BqO;baL;e0a?$
zeYC68_p`k{eSbc!^&xSuD1KZd#`yU0C(-2L#}yiRTqC?ZGk5l%Pm@96uL$bTr*Tj^
zAEpkL;rvU5EBot*+2eX{fOI}gwM#kkJ%r=cHR{L9`=*XJnrYJMG7*;k_WQ6Gk8hsV
z`Waywe*9ejkdH_Lsfa!VKfdr@w&I(@T(^EtA1C#F&dAsG@;)tnADL)ubvY=lmGUdx
zdd2rSUm-&6GX@%3esZ0ZPrBue`?U{?Bt4<!dAFSDaziO8zr>a2dp7qK`j3_GaULt5
zQ#zJM>vLxxi`E($t<$wTBmLKng9li!z_$zGkEr}|5fMqK^R3&F{>*!t#JxDO7?W&W
z;9)?@edVn>{kdMAE#kAL^&mNZlJ{1wX`Ls`Uc(P4;Z`_#i`*Jn>eq<g$P0hGDD}SE
z$cF-tAARGN$&!@2PzI0ohSw)B&QNyh`1GA9<xZ}X>ucz*rj?wzZrIQF*7@{Jm!-ZR
zxca#M<0dK8e=HZf<C5`;l>56OS8ln3<;rM1J-Mos)AJ}Xugbg4t6Sc;D7iO`bkX+@
zVmyb?aqT0wLDCcn@e{4U<m`h-rCvI38J6K*?ApiuI67Kie8)CQxv@IA<3&8UJJsc_
zZIhIv?WCX_w_PvGckA0l0XRXmMJ#cK(${v1^!HWQAJVh+<3hfQ0ARlPKa$vo$h%~#
zVrZd6<#vX0NTTI3!=qf+s3JkU_u(f;r5)yYrG(_r`Qpa&bSY={(;1ns8F5V?4^YtW
zsbqB9m&s2`f1h>R3$Fj_9pu(^h_Cda+l%f`N%>P;d9*LG!uPcnU2#|c)TgEV4X!-b
z$AuytWd*F)KX#6ke^ccHx6dVguQ2TAK7;>hd&bU{@(H8-W#l?khKreBe(JN^CO_*u
zDgSA=9Pqn1KNIEW=+-gBLx!O9Vf+Fqe}~aNcB^qsw|K2%?(A;9F<u#_<5Bv8^!Ha8
zJuyxx$@!spE?Vc?ev0q=qLer9chB)Vb66)Z*PFX8k#euP>EA#5s?DtrAOb?A4!`Tm
zQZC`z-9P(^&8;Vih+eT-Ux(|a`{-p-zQY|q^w0k0=GLE!PWhXgF*B^s*U8JJ{GCQV
z7351h1%B>8$4}cccBPbmk82N?%Ns<wIYBhs_4+5Smhz7Ur5`tJ3U~EiBjsN+>{&10
zgI?eAT7dkuQr>(oXuW!`VST@woo;`%<vUV-XG4EU?i2EJChoYCCZwFXe&Oc3x2)~z
zrR%p&@2nf7+`UG6lzAbS2fhnDdv$tDD|z#t+G@*JMeAf-cj@Lo-6Zv!_jc<2EU~Oz
zK<kb~*ZSMOE9K8L(xYFEXZvB6&L3UAC%z};H@NcRJ-4|i076ucN7}wG<=*L*6JGxj
zOTj~8-JbVB?&oL>$=mmbx<%x*U0t_I|Lcr-UVm#$6ytt12H+&r^5c_I{vB?)=ke7u
zLcY(CcjIx7lz+j<hY}m4BCLkHG=8s?+sT!a0y^9Y#e4UFp&jB2!EtS?G2L*-S)u!+
zKJPwA-skx|%b$X2JpPySs^uy?ZSSo6rN8~v#7(>}a7ydHcK4-w*YBj<$!@#C>%T{d
z`niPfALQqeQSbQA67h#`1@*>(lTS(i&$#&}@^@b`K*K{f!qOjac2iWR)5J5<pSNz<
zaxO<<nTki(A0=<T!<lQjo-N27DgKwL)oQzhM779?WMLsrdEK6O{YmQc_IEiQWePg1
z@08=j|47X)HbLjt7Ul1B2JuhacPJP7)$~^S(BX_eC&RhMEr;CR4T)LQ3G$x#6Iy=m
z)mxokp}$IhH_2c`zaf^gRQYo4QF8ZhCk44*#e7oe?-TLw6W8o5P<kf+F7+1N{K0xr
zYp=-PvK-l$Td)$r&52w^l8=#;vF^lOo6fJ$t5VONu6=UfSI4_s@#cH1Rk^-WmD3!4
z84F`8{BP#V#A{OT9j;!UucNqNqAv1<Z=uC+jHpFVn^SV5|C0WGZ=}PJ{LX$z7Stg*
zavPG5G!C7}YKB@)lYfu{>{=%Oh=T2M*9#DH84gg#uk@x2@5MShrG+{6pzKuMTz`G4
zM4RsviE|U2;G)#33xbtL9lz3BmWhxS8SxV<9qbR|T>djC|A>iJS&UrE@`d!Wyl7PK
zFQHpw@lT0AGLx&i1n#HeGr7GCuja-N<8_f{Wt`Sn<i@9K2PwC^+n)3KW0wp;q@#X~
zQf9PHzrG!%zr}U_(1x>RVg#<^gEJ*a_&LgsiT{!Q?sx6t@X+zGzqH%@y7HrM-8T8|
zw{4qz+fLgizeUNL_v5?iC5oRY2JU=~c9#0TVZ?V>#&;O~vAe!Iq2&HjCnxe@SeE}`
zo~F3+<L{7q>(`A{I-(q^X2wm&zFnmJWSxGI!9uYt@ZP%`ZL_5O<#qDP9yUbbbJX7{
zCEv^*T|UQlmHOAa`f+{=B~vyN-a0DnCgsd_)J^YzcusDk{OIg$)8DoGw#m~T+a^D`
zjq;=K+&2APdv2RNy=&X#C$~~w_d}!amipi3mIKi(xaD?C@#g+;pL)N$kNXuV?#hSu
zlKRYdhK5>x%>`>nwC+P#Lq*}8qrw~ATgsd3IPQB~7_KVy?l^yRA1OcJ+KYW{EF;aG
z&CeVxa?govQF7-P{d7*fOPZ7GQ)1tkw~s}w%3*8<yL9_Hx~~l9cB8-OYn|W1A@#NV
zRQ|bJ{`m>aoTKdN{*d%{h&%qn`zx&ni}Arg%d{IIH~l{><;7+obj&`j<ycmw?U+`)
z7Z02#X+2ulalEwrc)6T?yjUMOOxaPIBlUXk=y5wgmkrj((TdXX4e<vK#NNo4cIn?-
zZy1)_Hp8Ny97bn`%+c-1=pj=6k1Bi~N0sII8tyjTcC!?ca^5?Ryf6F++pu0fYrcMn
zP0@O%!&2Tn7nT##m>i$;aMOJ{BIO*TKO9oi9ey3jUyizCQr;Uc*YC5t;VU_Fzp^Y}
zt|)Wq*XcbPm-@zy@CW28zXNjHU_fqg4TwH^V68G~j!Lh#4(b2%MtS9jv-nun*F<iM
z=a=00P97@duQAfQB>T0%dzDKck@99gSP~ObDel^Fn3VgY8xP)3mFw6mc&6y9@3TH8
z<?GiM!~i(Zjx9>wT;DD6evewX)9GINxYTQopGqxj8sxTYrCh0NEA?%qTxsrB>f1`W
z(mbgz=jLbd`{L6|?lxDB>lr#?uGbj<_{;hDe5rTJkT*BJ<|w?hK+2u!<~!@XO6t9_
zQSX+8QhuYWm+!~LI<r3?7fCs9o>+h0T(^U5i=~|Hdx0*+&vC=sAbx58r6&Bi;y>W}
z@2~Se)x<w7k@oq+*X1>&c(c3)-4{He<gRw@;B=M~5G;MW`*D3sWq3JPF1S2QDY>mJ
z4`YW*z0K^Lb%c~_X6K}mYo@Pjnbc>V=P>U{*6BE{<o@BtoA+zbKZxGR>z}5VOMMsC
zmDlgf^7@0u@;bV5>*7t_Qts<U_+`0Z!_zmn{hd&9uN&d_seO<>(KAT}QXA34QS#UD
zb`t0QF{9qo%*Y8_M!pT1Y5kZOEx4$d&1G6fMWl3p6FNrf^ZJY4*$dRTY(Z<g(69g_
zg1NI7$gevVw4h&I>aGV(t&#rkb=Ot;XP>*db-wV3A3b8h>D<j?FY4UQLesgMWfz9O
z7|O|(Mvqg*`=q|NxcwKedmSXyEopg$4Ot?;gILnSQ}a10eJ9e=pLgyF>pSul?i2W+
zgUWVyJTQ@w^1m?hC&L@sN>H~4V~&)2rz^Kw{L=h{h1cb9O7SDEfA<`iI7Ox9x(8%9
z=NNLs{N0DYyehffjPg=$!Lk9j+vtaNyFEwgp&_aFI#(~Zn@d=}u3y#i6Wb`?mzDZA
zzFh{u=g<#tT`fi$hqu1+RviJIUeh%xzlUqjD)CFF0}V?)<MO;exwNrAXd*X9`JYyD
z-o6j7FJ8v+KSiuyor0~DF0Vb9+9<=n)eWD|&mnx?Ko8pI*d*o6d51XN#`34@*n9fN
zMx?yC&s`PcvuX=o^}#|M#yrSGZU4kcQhtk@-@HHeEm0qiMmOm%*W;&1`LkU6doVM>
zgxpt-LZ?c(Rqp%(?@Y@lGgrxD;H$Wjy6Ycfo29(@4)~CKzh#Jbk9Gb{j!L=b-SF`~
zw%jMp@i<q@O`I;}%=5qM{1wjz7whs8`h=8gbM^I#Uz+b${M%e!)&R}-DSo!gA64gn
zv<W}1cp0jgSDnBL<|uviNok+?zOByB+eChHW%It*>OMotzpVUo``ynE1N!o(`%Edf
z%xwqx{E+-EslWAV<iCukPS5dAOZlq}y}G|K^QZf4DYw~`!*~D!Sg*mbVX-^!ol<g-
zy8AG^ue^t-*K1m@lz+v{Z%xau*!!B6KX4?pJriRxoSYF(iN}{}TsKGIZRbn57PowJ
z`*c2Q6wi{XWO3~ZeO}7HR%h1%%C5`m?0PA{uFxgYf8MaG+=7-s*(F(`aV7UtRj_!U
z=G&WF57?e{;>UiX2I7aD%71&atTgy5x;Xs(p2$<39;I(e&E`1+PInco`(4JAlKYpN
z@4QcOkcgN5ZUnsof2AP?)hEaYs82vsAPU4`Dqd4p$?y(x`(^GA$A!<<Cx!7RwEj!}
zl?N-O3T-caNBTe2NT({VVk?8S+^CYP8gj$3y&T32)%~uNu9NzXFyuCsTy<`_=~i+V
z8FHl-ce~q_+oI&2aOL=Y+V8vd$W4a{8Sawpq@b*CnDO)XhR2Hd_qSdt|H}QAevy>g
zf7^Hecm8$ylx~s!Gp?OjXA);qHlfw`zAv3tau2$4Tn|oUJ4+eyfBm}B#1Ew2{oHtQ
z{gmg**2r_$ZpAzusiN(f{;~9@<HzTYhEt9C&~}@YGuKOo_*^8`-^xZi-Zm-a%yo?+
zK2M@5t`2un$ql>l<9;2h7rye;b-UE(y%W}p^Bj+JxZOOw*<1M^y+g{iy6pybqruHl
z{Men6|Fat&#{a6H{XA>qCzOqTcJwYOZ=UZG@4WfONjg4VcT4$|u70E=hGDusYq>Ec
z_Yp(xByX9*EzeU*E@#LM2eg-6_sDR!cAiG}O8Kw3dU+nSxgmchl$?3~Pj3LB6uRl&
z_Y<j4$8Yv&X`xxW#}sd_s}39I#C87BeKYF`DSne{H?Ip|e(NhQ6H2aDC)c>X6S`l9
zccm-G^JTPW7&oVl_)RN09UmP(ZTGAPq@IIaJvs49^IeKR)aB*KU+WuHylF?lcz96H
zgF+9=a1MN{RK(-z<6Grn-{a*1=kcwl?day?92H*QW76N&jz{}`A?3~e9$imROdIM+
z+b^a3fIDs!=aNT63yM?781smluls|s$EEyhJ9_c>@#fY{E9=IO1B6HXkVhMEGNC4!
zQ|tbSx$BQNE70ab$U6PTo|55CxOQS*E5C18(0YalbOA3jVO}fRd+o35Y3c85!{0LL
zZ<#o*H+S|j>2I0vH%F!W)E}k4b#8ma=k{LU0Qz{|AV+JSeW5=|`MZs9*0kOt3|k{7
zxNA^Ld0e%MeIKvFq35N)&${W!=g2tO=kj^7YlQ*;y$bla7&(CH(F}}XQ9g0Te<8@W
zNv%X<f0MtSa>ot*vwyg`wI&WS{BX1Ax!gZu{O7v(tCYDA78>31{;JgXDP=$RH+r0p
zWyZtjD16pyQtpSY9QS`BqXXxuQ%e4xI(ZT6K>6{1N&T-F^0}5Vwm2saW++_SGyeM4
z*`wpx_iriR=j!M7YGFfrH5nkM(gTyU#kA-wQlDm?zxNLGjjru!u-Klhruy3lv(=$m
ze|x%^KO|F3Z*a=$&%x=klW_{wY$|u~kdrGp<;o$YRHf41jsNCsi!V=6rG1IeM6tQs
zQ$Cd~v}X(1YNl9l?zowb1y-&hz`WC*$_=K<<<tnBYJlldEt~0e(wpcT23o5)bDhdi
zsxn0P8}P<*w(87-lB`pvmklE2R5myxmGqF4p}ppLL9zxA^l@Ol>A_-eKA$SlI_;`t
z2UF>4wpgH1!&9~bN&32h43txOr&P=qs!qArDWv*y2<H()fTP{Z(eCAV(|-)g*;Fm3
zmLHRX<>d-}c)n*`#_6vO(%}Y@A97NqUdkI#e-8OqDi;T`Ij5YeI`k!w`wb*w?HvQo
zfccN^(#(LL`HN<fq56OHt_7Yw15T=1D?5vFslf`(H3$Tsb}E%(`DjD|skO8)P^7XU
zP^qS>*>p8u>Wzgv=*tE(>=ZJ^a!<9KEey^ZsX7(9-(Zo=M>(bC#o-FQWWf2<rlo~a
zt$K7SS955ug`SBhEu0qgaRbXcc@Doq83U9>;Zp`OScF=RNrkR8;DWPJf<HGwghMYI
zKq{BZ)9#BrL!1I^jvIg|T@|Mag4X%*T0t>q8H|@`@mMEaAI!uf^y^?I(Mj7c_6!<G
zRjRq-U}O~+PC5jPC?rv*zb?n=IKf0C?XgfsFm$q^<s_$EM5@ze28QZ8kS(0pJ)iD2
zP(Xu6)d~gtp%)Fjf3ULAaY~S$y~MDtSWY{GsGi*9fcv<?aobSlJODmu;DhOTgUeIp
z4aXGAXuv>TXpqQ|!JJc|@B6R{Jz*dN*>a_tFJ@|}uc>N^c3A3}BpR3f4In#^N;}I?
z+i1CgrgLZ+d#lCXO7<j&HX2N6Xr$7e8gzP?7&iznW5e;z5FV}Z0v$}35UxXit;6Q!
zQfQ+K3su9i_u-z0<xaj^R{o>7@-H^1QmT+mZ{YOL8z@3>kk*ANU0|RYXTT}18Yww+
zi-B^KIBFt}NqX8wg(FFP66P7jrKF#ukuX5iu7x>NMOq6`l)YFenlcL?ovE4r0Vff0
zViB}csc5G&K-U?H26IrJo0~(!N53?1G_3Qo)%ivACiJF(JNZ&|Bws;t(1(_JM!Fe?
zqEbv3O30}S9b*WfSx!4NVjzR*`NcxDT+E@VrLP-ADw8QAfV9&)?4;>IgF!Xm2Aa0i
zV<*zC%RN&dl%|LQz$9R_+JN9LRm=HQWdog352td-rgE6RQ4bGpOl@%JCk<e>N-z3A
zddG@7V+QA!(bPK>H(>60^60_xwLGl@E?bX*0W$+bbe3jfArx)nA6@S<QOCeTA^Nou
z%0|>>`nML14#*}*%hQKedUhg>O0*b&vc#wLM1ye>#y`5$P$JqQ`jLUaf?THJ<Wuwq
z14UaS>mVu{ic@ZccI~b+1%(p1oG?H&s#%Ioe-&CV>NmJjv6xHeoK&G!qR$vO`n&l<
zPI^Ng%^KZk5GdO^_n$Ce(SG$*(K@I>&&q)T^d$6-BR%8tJt+B*sX8k#NU6}F2Itm+
zOm;Y*8qB6?$Y2raY_&4Ci~&uB&Nqnu8k(aj`c=Bwhl)n?NdwGF*$TboD9@x#8vKv}
z_G|D614OewAX2tufcaY0;hx$Z@_fZ0MXeQH?le$t$%+HL^Lv+bN>u2t28Y318ilDJ
zsn|PM9H<qzqiO5$%td?cCNQWY465K%OK1)_lQH6}8H`gJ$k4?GfUzX9rWYa6j|>>`
zNYAZp8m8YHAVMrxYo()77#!snaL+Vrm1j?_Eb!ipGfYVX&lWPyriJBlu}r-NT*+nA
zj)XsDz{v7!M&aKv@ZzvjMw)MwK7M5|KvPu-ziGfI2gUM;#P?tAnJN08+y*+rz%toP
zu{y*9-4jjJNo7QqU2K3zFU(YO4&7>iC5#iR^N<}F$}HvR(sLG;c01ZLMU13H2uYx-
z^NGZCyTX5|-($k{%(;dp^kSkoh~ECYCJ~}X;S|HX>JZw`Os~jA`j<uv#cFn7q*t{I
z#%y5DF`lK_N~)Y5$__hpR2`bj_Lo!T5!z&+19H$rUpBD*R0g@>2pb1O%PWI)zl}u#
z7g9MEdBYIlNlH(4P;@jOJk~R;zn0Bq)cBrO7{ox?aZch<M#TV8r<SBD3&qrizHAUq
zs+=1!Y8>5Xk}RL67YwLUbyB&N<qSI9*~fX-aP6m<0U$Dr%}4d(($#CFR#zPQticWz
z2aBlG69!ZnL8v@uNN)i1gu&#wp#b(D6Vu5J{6lLz6IJeDw3RJpsM}yl8K;t_vVn+_
z!sA@}qJgH$gQD)zj|@<>Z=$VAr!Zco=L`-W()6~qo(%wo=^z8Z1gqM6QX)p(esB}O
znhEmgM})&Omdgw#(?2+zLK@#`U}a|@=cKFL{m}CUj*e7T;#tRgRw1t_WVq91%)+?@
ztv0}cjTsa}+GIfRhXPw!c?5mcL^+?hL#4a?=rY9Lq38WD3+HPz8=sM>%GhpXd2eN7
zwwfM7ZZ0qdP`-FP4S0hAqa^o?<ok<a2u2qfjGR?edbshW9~*?2&Q$0r0~)|cP2~O#
zCwNOV+BAn7bU8tuBYx9ikkTwlj+$8~qLC;K8q{FX*_5rq;ByUdeIBI`V|~Ck8Zejk
zGRywT0L#@7Iz)hP7$BA_oHDXOwsAw~iBRE66zcVC8tj2lwTiSE<9&lddacq0i_S0z
zBOdY22wi7TrEH<#WO#CdwHeIc45~7c@8xwJdeZ=N*+OkoBtakO^GxDaO|3W`Zop~S
zU%?7QDNQH(;Ifk*2K+?>Mn}ivn_iTDOfB2FdU6}j!?hAUYzWFVEA*j0ne9`aMVkhl
zYX5L=qtKy-kg8VP>iATZ3@M{IRRb8G@U@0;sn(Aoi9%B>s4=5Y_|JxLs*+dAeM0Z+
z_hQ1<VZER}Il6rUSdXd~INc|JIiyeGMxR6^p72RL<CBPo{buZ$uD3HBiuesV+$RzV
z#r&3>>Jy2DI{l_h_(YQ7PQNXG@QH*I(WKv)Ju~(8Mk5^wzcokrWD@as)NjsapG-I!
z4t4kqy2&RLNkqaizeUgagyNA{B<VNly-vN^VWeTa!*A3opHw8&*%6NWt@?~lDi-dH
zMMHkGCVf)LXfl}y`R)3rPb!?~=;(-q{e~SpP;Y)T8jr_f4P`px6H9c2LkQJx+ND0R
za5NSPBUrz2kND&wiDWDqk2RF?od)ZzLvANKLY)m|eZEf)IUenZg_8{>{uEP?r<-$o
zmiubfb%sd$V6mT9X4_-*iy$~oZv?>!+HXjWhq?8odD_M81&`6v02;foj!-;ApR-X3
zy2VCy(9<?5Lc3%wVMXas8x<qRMuln2paw&9o#FJlGQ=fGPZ*Ti%*bFPdc9|mLi;y$
z(EbLT8*mC~XP$$Bq;piJiXr1_gRRs`rD7TL$>B|OYA_z5D*}lAd^SuE1rrf^)gZ94
zX)KPGXul1f&2^FNq?HEM+dG`86nl9<(~Az8PHyDT_c2`@$fQPu%yo@2X`Zk3DoG*q
zv>{X|_Nx6BqYvIA=NZU5E*QGx0sU__z0B<^jJmKOrnbc@%d?dV2CJAyU>KBl)R^p<
z|G&cNamtvGuRdy-3h0FV_EfC2&&A+_PLjWSFtn*v>5Fjbs2&KBMc5IVlP$I%!<%Ad
zy4MxP%Hq=&*`qLT<*8O-dxFn}D;H5ae!5y^J20<?4Wu%wR^t6L$*ABjW|?i+bu=@;
z7`?r?jcUZ^rB_&E^s(Z$+2K==r1Sne1>rC~^}o@;8?Z~!j$&sPYgrjel>V!Dgk$t+
z)}Z!-4-_+tN_*pE<HwLfJ5<b|%pbyw`snXa8W$>v{_@}15ld3niT_nhumkq_|4u_9
zK~Mj88ahIhDF0WnNOsVt|2qxgNC*A;zf=+Jp!Ujt6_0Q%OsD^ER2X&qVfg3Pr(9l9
z>@F7vv7A+*e*)~U4FE?OUEvI31~ZJ!;Z%m&s+xfh*)}bzVU=}>iEAHnd#GYkOAEuO
zQ<>ETUbN#qX!^R9KB`u5=wX*OOcBi-{Tq}ty=Mr$vjq3883t-Y=4OUd=-z3CNh)wv
zvA8HzrV*1`l*OcbRT0~O^feQQ?6M-(PVR9*BPE|_P>kIwY>u3fFN2ERhc$sTV-=X3
zIdrIt8ajFbx(&ekO0m%HHK*YyeGatSim3T&d%23)`W)>N`-=CNa`pP$48XPr&UEBp
zQn9SMyPY>0>g&C&E+~1{Z~8eBe(FV$Pu*f)^^^w6iwr99H8as+dSV6|QyzNTCV#-5
z_HYP8&6)UEgw{9k*yyOb@l-ps;|)>;6!&G^$zx~!X8~-!UwM7qBvoUM(ZfRBm>)D^
zk3c*crnL?H5SHLiZ$L%rJ3YMV)Xgh%H(Dgh^TitG?;B{9v&!t<PV$?@>9Smw7A3Q&
zK}Kv>Bw`|R7}IPF7Klc)z*P`%OR|UocX^`3yFr=7>`!+2)de*?cQWFPis|i;ll7J*
zj$Wh_10AVQf85C=GjyD0VzF3%IOW7L2`AzVU_SIo!C*ofjVBY)j{Xc?u8~9}p3HQh
z?Y|d@#eBmYe_h%66ss>I6OCcyia-ylEJ-h7XegS#`MDy7$@F>nsZUU^UUYOO>5c||
zsG869qz0TGY-Vn0U@MAw&#893ohYt{gV#w?AAbLc*gcwqGfUO>rF?9Q4|mWxGbxP6
z>DC$f7(L&>4`iKOMwaq-o#t6{V7)m#BZVrCM;PtiY6#1YWOV_Xomg9UGCUkV6?na0
zqp7~Sfpq8YVfrP=fqb>SR9b``8~UemdN~nBLEC$?VWX6u!+%6oro+Lq%kvY(h@qs=
ze$;dk1^T=~aJ;aT(_4}^E6}j_3GEYIl;|X02ViucvNNZBM+NGX%W8Xjo(mi^gv4+t
zEdhisN?fKpTXN{r5;VfQ8VDvv5K~<aJt&bJ$B3STLl+mGK=t6jAl52GoK$zT_vu>0
z!cEyql@4>=D~eSK^}0~EQ_k~b5yuD50BEZ2PF06Yy*EiuM`ST>nKERtFCi9xAzLUa
z8|V|l2B%!cm>^r>BaI(W&?YBc6Z<W!pOyxp&_rcPc-a^UC+Q0k1TWK&z7If$zX<0t
zmhlOP-vH#Pdplg{ZT=0X886<F=dv<K%|FFS!0;!9!A3^(0MV+^|6oE|t4G9qwjM%!
z=~k%;UfA_GTsm-9o7f}b;IVsz5fi=R3=y~&*F>m;q5v!6%weV7H!?cGpbU%81gyhy
z>z``%<`>K5TB$0IBqI6TvCDn%<Cis5z8XLumD*U>AD`K%0V3x7>ja2oi-%;9V%eN|
zvi2+x+G2A#K()!=tEUffP<Gl;g5?IkDr(OgLdA-dNsBgp5spc4ub{N;_o=$T49S(K
zpKkY|r2Ffo-IWR+&MT3NAfiL8Y{-^GDVbj^sdEN*88ng{m2VNweP!r{dd(_UMxN|*
zmZ#Uqiv@s7s59I)%u8iZeR!9PHfY!oJr7t7JAuWFb4aZ^kZc!+aOit}IF(N0%npul
z@VT<5J+^&87V99i!>3&}?bx}-HgPoz!GjHW8CJ>Adv+VpF+&*U_2NWN+M!JbJ|7cv
z71U)0oCdtI+>hYyHqcZhoy{&P<}&oWff`ZV?QGAs`4lo;X<BJI2dH2=i}YF3S)p$m
z&SiAJ>B`Y_rZZ3f^BFJHWkuTGbXIAR>8z1sIG58WO;?(}ZaN*h-E<ac+HkI*|Cp`}
z?Q@Q2#EKjpW;%<s)^K*yi0Q&sq3O)f&8E|#UzpAT`iJSv((dPa!FCrZYC0=)l;P~5
zlIcp*d8Ts%eaCd>>8GZ%NG}-9HT1U6dZDh#(E+BjL`zI(g$51hd<^Udi#TOpq0brc
z+)NI~HzrJEsF<gRO`wpfVz)e1=v{&{`o+QANNK1-t)KG@nOjcv;~?6H>Y%(+fFC--
z1cx0o>IEtq*gQ<+3r@wM3+q5Wv-rI_q*6)s9-SJZC+pB^Y6JbpM4ZAPG}8Oe^URw!
zl*(?X)HY;kiHR0V#e5N`-t#6{P7UR=G*%Cxi+AWI6RQnMqaUvWhq4)Z-9YB23aJby
z+}wVoJiMTDJ7~-^Y<{ZDNwlI4s-XoCesH`^q~NJ0J(R-MHI3IpdAhw0KrU@?9QvaP
z7V~)wYTkOj5qhzNa|krYgs@hU#pXqxjxx~^oZ%`~X}At6BURx2QUhFod@N)5e_I`f
zMUxc163NmZO}JLd6-N;Hoj&hbv~X|)Cix25VWt4mqykTUCRQEF7E7??Oaol(6w8C0
zwpW`VzJfqO=14zm!Z_Xr=<g<k<9gMh6us*L&$z`Hf^VQhO{BIyh3_}A)LRFZ^R*2_
zSvtc2m%x&5*1HF5Il8wVsuhYwdcF?B(V+sp<3i7hB~E|Y*+^j%%9fG7g%llafJ^gy
ziYb-rMcu@{N}4`tk_DXS6UQIFRfks6<t#Fwh;rK7of^uehO_kR86?U`IJWO1&%VP`
z$ZoFAQ3E^zU&<gwj;@0Ws2eFdsSZPJ=7?NY2acqMdY5JCE)yI|m5Y@jR{DG$jL!~e
z=Zigaju<MgN4*c#LA6Y3BkCm`ZJ^6iMH;SiS24u>qKP;qoIRmiO(=`Avh<req=4gc
zy>qGM3!V|n&{hDPNBh@-l^QKEfsr&P=7u_mTMzo20WD7rrPiZepd0JJTxul64f*4B
zXd%Nn|3*EQMJ#ZPnfCjlXCW3#a4@YvOH9ncmoM4g<*5-A`xEO3oZ{>~BD*2Ap_Zjf
z>zHzpt5@&*8a^r-#!>bl((FZEGX=89gZErwScM%7`bZs6;0g@mQzlw2(&?tVmP03#
zrOQnWO$`>P=sp8mk?O}WT~3O>ny9m}cU3CeyR7EWo?r5eS>bF<QPKo96zN#Qy>f5}
z8E}$`<a*~1Wl{Vts{=E=OKRw(MALttk6Btp=ar@{K6nMzJchU`_jBamd#PvE%3P*b
zOj^^luo32tgz`ST2lEb3*`+>qRjs@M7TjUN<?Kj`o;HyRKE0qFzHHc0$)^gCI?%w-
zgrqhO^)5ljGe|vkL@qyqGwS$MqYkb0&c`=*OHwuZnu!nL<2AHLbWa^v#P~wgm={gB
zf@5y@pij46@BWHs;!zGN&LACTLOd&=6AYvWttFa9B-<HvC=PI=y(y>Y8WTn{#EsZP
z_1G|{`pYJk&1AT6?D<vC8lLO&f*T*A{CFK+z<PR$(k50cr+Ry^GK0Yloof=9K*{Fz
z1`{30;oNfXiqs%F-Cx%cD0FH1j{&Vh*MWoC^#02{(|}><f#SZn4n&=BXuS_w#qm1N
z2OgcpAmFAta05*FMIDmQ=IGTrq%epr@x8_kL!4Y~utpy<p`jG_5UF}7OP?@-Y`?=f
zctstCuW?d?L-ar$SRTUS3;or=R&&kdA;Ruo^9(sUm8F>BJ_h+-7({7B=YPC`AD5+*
z4QG$&Pb+kpfz9oizjSHu5@%DdoK!wwaPzX6Y_IxWiT-X73sCrIkFR?MEpSRW?T8_L
zh7L1fWUsWo-#~Gu8wV!QGoEFDo(0#MD8}~a2c`^Y>4Ki#c}TnRNbgFFDKHl(6Me%o
zh51!D<6kEbHU%;cHUv{89%LP7;D_VmTQ|0!Fo<PEeAa>?h&V&uyKoav%6UcZdxp%4
zVgdaa&ZTl~pO1-sZ#RF-OMf<GR`O>Hy>oN;J`V)~q3`)k&umF9z}IT%E_#;^7Es6V
z>4K^2=mzn{91RDDWMq=kryC@eE)Y?|c~*zM7sO(ztz4z28mMK(jrhn9lYiRza=(?!
zd1)}#0Ix0~KZKV)gHsD3y>fw?&IzE*C5c;2zU-ih$v7E~1D7t${E+Y%1K``HzZ-%_
z){0m$bgB1U;aPkXMpnGcIN!i}@a-Zm`u48k<yD>qooKSffoku9A{I_Ebcum$;ofd6
zTvcl#Ji6ZySY60stv=JcR2MLM)nJe29#+`c<M2Uu6x;o;^z6hgHBwJ3;H)s<0j#mi
zmvg0>50(>vOMU24cPxFkk6A{~`jH&H?JCa%4r^JJ4)#Me>h?j)sq9Azbddq^(vX_r
zkI;{OglvZB83Xp#Ry#WB9pCb7@`z-FI)aH9^#v0hbao(tFJ^BDBog?PFp$7`^6jn;
zvZ^yq2L}^LIy#UDhr%>!VWM<(Ad`sFBY{LXl%O{(OegJsO_0f9oF6(ekijXIlLCn_
z&iZ`Q!gSEjf|*E&UJYdMS^2)-4zvuP9~@y};#9LR9dwz6>7@ID8EovmY+<6b&$WTJ
zMH93*km-m}DUb+9lk}xvCKjT*EKHRCVqp^WuI~hzhHv}l1vBw5<t$8;E)HZm;&fXe
z5ytN2a~38^v#$#@EfJ=VT9_COT9^(x-@<g#t-%a3;Ta1Pqg^HfZR_Zu&R`}PqO^sH
z&}S`7jBd6t9rToi>7<>m53~&pPTa!8sMo?I=xhs<q#Fa72)<hUjfIKQjyD9^7D1a6
zwlJNvHkd)1bEbuf(sdRlL62LQB(>fcXj>#q2V0mJ9b;h<bh?G<q-%m1v>=aJm>9ij
zVLIr5n*yyybI@a9B6O;SiP4o7rh^_1X0Sc~x`m0-2frI=TRcH4EliR|f*JIq->@)I
z`l*G9(<>IHgZBMiplvvBb%ce9P|d=`=`stGr2B%IB>D>r6Qg}@4zvx&F&A5yPC7A|
zL9M^k!o=uq3)4Y=wJ@FZ?(YZL77ayczJ-ZV-okXy7lN5^h;Fwq5qjRj#AuIO0&NQ?
z=;Ib9N!efqwf+JN6Qdtlm;^m*VLEBo9|YPKjnGFdOq?7G(?RE1m`=JSn8885KUkPJ
z?R;yXZLtpO2xd_0Qx+yl=UA8oeb>Tt((i(qM1<b@!$8{-af(`)B&`c(I>L08g^AMj
z7A8TzwlGQB{zrkfp>7{yVWM=Lg^ANAEldYp8_ZzR@k<L6rMLVz(6-J59b{oTX>}kI
zL*3qNVdC^H3zMWrf*I89H!Mt)_P;I2>KJP9krt+tP7Y=w5xU&M#OWam(?PEVGtm%z
zU^39QXq1*)m^f{;Fdg(Y3)4vt1T#3p{tpWiqxan&Xd7zq(qINPxME?V^c4$}pnEM$
zC%qKRV6?v19f7uC2D;F~#HnauI_MG$(@A#*GpO}1T9_#9d1s()n6b>YFiF}F%wU9n
zk%fuUZ59Ue9}Ck#v+oMDE!jyQ4Q4vSG-zR>biRd2(5)7xlb#7=;#h9j<?bNc;y7;J
zX<-tSwlGQhY%qhC;${mIp{FcNoOZe=&^DYVj0ZF5>w7Isl+Ly=ak|mMbkJ`sOegJl
zZ=h`$1%xe3jMiG11f6MNI_bJ#2BUz-EliwRe-daLK889tm_ZwIjD?BN=@uqN*I1Yi
zdMud1*#Aun6QKj{3$z*+hxAyO4m#Dsbkdc<4BC)~EliAFw=f;_!TSSkLrbyJ!bEAr
z!X)S$7A8qQwJ@FZN-%?w!@ds$+J^bU5f%nlu~?V{U1ni0{|RIgXhUAMFjy~pFvzw9
zRtXkcm?WJT%!KJn!9;}a3?^dqLNF1hJ$@Q!R|kD8m`KuKAc0BdSTGT$TY`xw{XUq8
z(M~@LvZ^CNu|NW)Z(T4ErcVVESWgKi;`FOvB0+C?D9Ea0k`4?eI;kg+K&N&}FcGE8
zgNYdZESN~pE5SquwM_+?+u2D=1BozJxhfVWLSL~kF}l~n#OWmq(?NSZ9Ap}9d7y>C
z4EoKYg^AE57A8t}T9`P!Xkikx=g$LeLti`B!gSJxU<SSLMHVJPw^^7NJ!fGOH2aZ2
z+i)%DM}rxR@dqtTgwD4xF}l^l#OWCe(?PpD8faUzlRASLjQ-OW2J6Qb2J6QbCQeUT
zm=4<Mu|V4}4u}Uc7zgxPm<XM1VPbTng-OtFEKCRO_=`Z>;++%@W-xYGYhfaEriDR!
zXJO*>xP?hj>n{UsOJMvI%%B@M#=_uxWeXFfYb;Eh9<wkBdeg!r>40AaT8&N9o?r&6
z8>d>BC|zk`;`FeENzm&SCP^QBJkU0bURGL|FpXH4D1F1i#ObFNrh{IwFxYQ=BFMG~
z#x+M+7_1*#m>6AVVd8Y3h3TM|EliU3`E{Ue=oc1Sm<XL{VPbTtg^APM76$9b76$9b
zPX^kCt=;(+CPH}&6QwU$m^j^TVLIq}3zMWheiLXL`h|~Mm<VMpOq4FLFmd{kg~9r<
zg~3(UzYVsnlRgs6pvQ15Oq9;EFmbxY!X)Sq7A8qM|1QurY$A6AGuT8<S(pf&V_{<S
zT?-SZ-&vRrdh2wcZRjzg!3<Wc)>)Vcon>KSbiIYa`mu$<`tehNw&66xA;Aphp~qR6
zD1Fkx#OPWJlb~N(m=1c&?*nZ^zi?16gL%bj3xoAz3lpVpS(rFIVqtJT#lj?M|33s;
zjUMAj3lpZ3Eez%t76$9b7A8TjS(qe!;OQXSqL@i6w=iMaXknuCH477`2P{m2{$XK~
z^uA|;ZNvO0n8EIQ#lm3y*uuo=UJKJfFIkvQ+Ut*jwxP#ZXkj8$v@lV+#KOesP7BjP
zFIt!+?fGn=ZRj!PT9`0xurN`&$il?vHVc!W=PV4)&-^LSHk=IjsD;7$v4z3<v4z3>
z$HFA&84Hu7U7icJ4fCI120cdF!eIVmVKD!(Fqr>X7|ehE9B3PE&5H*!m}B%>m@u7f
zVWM=Sg^AH`EKGuSd_K^&L<fZ}49?F4GnjpxX<=~Ht%Zrv;}!<%$1eohhBHwITbNEd
zCYV8Aa=L|y&@~n&Mvqw-%zrEl=07h6T8&+no?r$GQm0y&2wiDmV)U?uiPP&A2J6Rv
z3A7EDldKG6a6>$eSQtFTVPSB7#=^wt6$_J~eg7I{TMYLY9ARNPsTRzjFS*RZMCd*X
z6Qh?cOq}-F5@;J<d0K2?uznoOpqIJS!i4E=3lpWkT9_EU`=vnJa5eON3zMY0h3TX(
z1T#2GcDsea`56m?^D}=7v<>G}KW<@gekPbfFLQx~iO`QMOq8CrFmc-T<v`nF3HpeI
zNs?n>I_bP%2EEKJ76#{MEKH1c{(GQpINjP|VLB*fVUl!CFoRy^yA~!wzq2qgdh0&|
zZNtIrsD;7#nP3Jz##t67Lf2cE82#G9Bxw782HJ)m;}8qeNyh~<Se5#ug^AF$7A8i&
zv@qDecqPy_Y+xJ|%wUeO+QMM|V_{<SEenJBkA>-=H!KY1Kd%N^9Y?=#q=kvl$rc9l
z9}9!|kA=bc84J@%A9yX$HnjfBEliX)T9_Dp&B7$;0SnVX|FAHf^uB)u+J@GDsfCG9
z#lpnsD;5UlXDm#TUJ7O~li2I^K-<v9FSIaGDq5I0U1DK6=uQihq!)u3wDEiXJJ2?)
zJ<YW+QQBZ(Vsw#(NziQ;rh}fdFr75}jX>Mb#(&hp;He4=6Q}bn49?G3m?S-8VLEA-
z{{-5GwWm%C6Q#6;iPL8-OoDE<FiCnUm_ZxA)0=^|;d_X<g^5zHg^API7A8SAT9_pL
z#=_wI4DF!rIWjJMi=*`qTbKx~wJ<R{)565*It$Z5j|VfD6|}x3(6-Jf9c*FZbc}`R
zpwlf3z8?r=5@_QevoH~Q)565)fR-Su6QMZuSQwn2u`oD414iGlidP;p@^!bL8ff0B
z4i(kqga0sa@3Xup))?Q{>gh3=C@l?S;+UOR3<mGgEyw#O7aNeLCV`2-WFV95NYbAT
zhTmOVRxEC)mE>)S@7ylPtR#*Lb{Pz=s=x&V(#Md2dlrP_==ClLrjn63{n$o@={bX{
z;d|huxTA2F?Sl-%b03{_C@A^3SciOiSHDR}8N*Yimd}sSrwqiiHWI<U^z}9>NlzM-
zabZ{M4xUXi*TuD?^Bdod`KTdj1dG=$Xb2Q8#Y-0p!+Z^z`sDX>K;3KPG`*shH!r%o
z!|+)uZp00Q^o#+ii&(S#D)7!bdVwe$KCoSu03p*Zid#|p2jY=LR6N5*eVR%8na}u@
zMI$1R8-x#Bm#UvLrbinkWw38(QQWwi>`Y)a<bD6chQM=LBXfc1nDaG9d0fCw0|tn+
z5SOpfIR@yZE*=1(?;1?b8NdTmcww_bPZ}^6u|!OowcT62Ac5eyjFkhc@Gbou1IHy9
zc#O;-k2A@k>;UwiVnEpnuF31>2lQ~p`|>(MqYu=fS{z3v|6WH3aiH&cn`dRVBEDzG
zhw)t|>b<)(Xuw|DBto5ZelUYVajS(1(=!$ZPkrp<8D)fntExLKOpMYN2K~K-L4R*y
z@Vy|IJYOa#@{(&q>)RD#)Y<(thDSepdKSiLi3V^}H3PmUSvG<e*VP(2E@f<_kZu<x
zp_r>IuhDIOjGoen;dA?)rO!if1w%fYZpUZprBvCOTgdcmOqEuPqUbYVNmDQA3VeRf
z_4(<+m-7y5Z+Kki9-Cyt`#SWFdedE<jlq9Jh{`Ke`5C*l^={OUdVnvhr15%8Tzh(#
zfq8|B-#z||!SK7sJ$Uq)pY*I&%k-XI*isohb1pI8ARNA(vO)v((83if7p_=E=lam4
zD~_JKjBfCua~IEDx`KXXpz5hS`nQ4gvI+FwS)NTsd01$`Mg+t7M80HDD6764{;I(u
z?zpYN|5VvjqlEtfrq*3OqxcHcKt0JoA-}4EAypR<oX4|KQM$`U#pth~#ErL=Y9_Ra
z-m#l<BHwURD79-hDpFQ-igcug@VZTfirVE_6Tz1F#Ts6{3QzHAhbI%o*7OsA-M&}Y
z(2YCK>+ZVWdA4gE?x#ps^QGP>wkTpQ%=i8;$E(#ta(uW>6FJ<YWZ-9NTwI5{AT=Vz
zzpY^wchR3~)G!wVv)43St70gZrg!h&Xj?KtT|sas4F<p%BYrLb#vJ6k8s;>XZzR#<
z8Z*qoV3qc0Gy~to?yq5F<T6}5i@TGS;?9>98pdr-xMIFUMGfHQsVeTOJWsoGd;>Da
z^ZGhOv>}gb=p?+{EXE}N)QD$X5_9)`-l>ek!>!_>-;Zg4eJ;TJ^wg&jqq?4<F;81(
z66e)|;28Zp2oBL}0Wi)ox9!=GUY%GcTpR=^sSpHr(nWyzLfu37M(BW>b?<KAdvMDy
z;!A&RV2pV0{jMDd1602Lznvc^9W0A$f9D%;wU{YV#sF|}W*V2aWaw-IG;~e?*6)y&
z(mCA3-cOGj818z?@a%-~e;are&raaF(G9fkyFCTC?F;WK0$gN(j*I3Dv|P;a%g*N+
z5E^KK-DqGOOobjZ5Jy6<8c+e_(z5XS-uHOMI3B#vfQ8(E0XPErw1M>F#g(fJx5L1F
z1|T#u_!k3|;W4`VUZxcpikWVm$j6x=UJBy`KGnbm)55NC19B90mw^qYImAC22&5Q#
z>)t5HNWJz0X+Qi#OUl^@*F3m%j;nAT1LD$E!6iSql89gS<bS8%O4K5Loe#k;-rP!u
z)e03{%P%es`WRgaWVnbMTd&0rFnFM#UECpsi?V*i5QaR+A-WI0b;!MJ8(r~zKk_3W
zERO;9PYkj;fE!2Y2}LI9Y5Y1+>ta=NbA$Az=|N$MTf7jo+)7}a7$2^;bxxZy^Z@+>
zpJs2Z<Q<SaP)GDJtGBwuIiQVS4WNB~U<)Kjx*O8M+j01Dp!k*LUmSLlPQp)}Ec`$l
z-VC7685k!4V_!Egc$6<dh%9-@%FMd8UN=Skz)}Ef*Xi(aQ9duh&?SbL#vTg5{$yfY
z9a2B^0^~-7HUe;Sz259Env^VD*PD>=e;*K8wjRN+wc&L-!~QOuG1qimQr`EYR-XLU
z($%(;+jP8emlv)#%ZSYTh>Mm|nYOi2p)u*91qV;(`9<-ntj{y9svIoj9Z~KQv9?p`
zWdy9X(QZGMbpqd-?Sr3dG4ht-P!~I6ZZuMG@~ghGT%8J6gYg)l7SjW`fLA=F-6m4Q
zGne1H<u@_?I37(#H{wSJ(?S^6JT`b3O!F=6<-kA&)0H7i#5bV#PH!j<3^b}0On<73
zJGSwxc@qJ|s8Iu6%}V2SV-BIx$X2T8F@~It#d0pw$OamnmG5Ms8S{In^fyKyfe+(`
z$%YiGAi**jT&b9Cuvt)nL2vBGyHJ_pMj0>)$6s#u>O~$)DJ8n+E<f@c6RDw5r#Bmr
zciycElP=kL+^t_&#!q`J1l5S17KmN~)UB2I3RKVyrl3InbFZOLAbb48^yY>f0jxtF
zO!H`hyN)G5xw2yMrpFKv2KVqwOSB#^1W-q+_~qIox+z?fcb?%(W4{W(UIMmuo$Fmj
zr|Uj|5w~?1O!sVboDv>rp&S^`S{Hsc7;e2EEq$(-Vk>vS@3n~zQFq}CD`!K6&8KnY
zAKtcd8yXFGwN^Ae3E2!JQ9j0?>;FQ}8_=U8r$eQ_2Liy80It;*(3cF6f$S#H<j}GQ
zJ%27Z05G^GuJ8J2d}{@N20<_P#9;JUBjmh5-u6?^7K!W&M0BCZiYR`gja5x-4>LLy
z@K`ODF?du@CmK2o_?tiTR2%T50T+rWu21=aR{*T#7rNIqWE~fPkv6pRh8ZQ8u~6Wr
z(vpV)^1GR*F?h15q}#v+g+;qeS%`x{p!QK5e|16NdV4IpBkR_RXS&^f>JvhWU+#9H
zYXIpW^JurRe7obL4bb}lt;JL5y4K8RH!4v>l2x!uEqc>v#H%M5&~opmdRYVK{?O}t
zuYuD4Q-#sTyoktVo?^dhfR-6hUJp!C23XSIumKKg@Em|{IUS^NQ-(G^=><1PpD|pb
zi=-bkAP)m^)%BuH&!+J~i>F0FYkt!Jl>wnB$RTCh$*0n1{J^;33Ae^#)$y?g<OLvJ
z_!$g9%Cy68jld-Ixkl&;K(0@2T=2jp-EPQf?CAjP4byX;cKe+dVxIo>2h+9l)1C{D
zgrhU~Oat;Y4>?4n32tmX1dF2WtKlj;gLH={(2ixx3T}ITwh?+0&|0sqv^}F*%>(E_
z@8_ZTiDJvQU_1DU0I)uRA8uM;aL0RM{QCI0z;$gi;O_;)KR31H)8f^_7YtDa?e?sv
zR6z#<;`-^@Ap6r*413L)D1%%Fb3F9;q@kvsxy{P_R)wQ0!(0A@0HU%9=VoX>c86sO
zVrIDzP91%WMn!9LcL4TV1IuOmd3l#sJm>k<*r0*sSN70GpZi?6y?Ifkx&dQb`n4gX
zpuPX>=~hq-&|1|MorK?RN>*waTsD4z=|dpt=M5bKISGj9+Ys|}`L~Yx5YH9pa>Ii}
z&V0dBA(1Zw;k2d84QeCaqBxPBXh2>9B2DI`?|c!ixK{#tWyS3WEP8&|n$iKZIS9N2
zpeID%fm27IL<em#T_1xBVHx8$6<U^w1{-cs;wUI?0LsI&Oa<V(y#$;)AZ>!%{&q3r
z>5<uU9)mnxbM;I7R^VEL81rK+*^R_{#K3W<as~AP{rFt&wP@DgJU@OeY;c2VzGV6s
zyjkazm*YBbT2V(bK{qr)_Z!egv}T-lzXi6IJ6CR0KKL>m3GG_Qu1@V5U{^G{P7iL+
zX15s3aH&bswe0p1VUS)0pc5cp%+xTS=H<X!{}~AX60lc)xY+P&!2Yjz!Wv5jU?%~S
z<q;L&cHz)L>%}hG?Nv{g3#Nj=lL4+>hgh*P@!QQ?vBt2=Yo@Iw7%GNolmf1U_0TT{
zqBqv*km-Yc(IML5U!D>Jc7oy40UxMx?*c;vPofRWYrG!}M4ttUwZFC6T(xNA<)2(%
z+3$6uVj7t^4>&SE)aiK;DN|rv&3G`68xvxYPSv>G$j(SiJAc7WlqlVzzXo^1pe)Z5
zTW=ias}-0D<^Rn})p#*UW9(EGBxwS!29>C38`^ZlefpVOxv}7s+uST4^g<6_7OLP`
z1kBy#l8h&eSv#H);8!b9!F`KC14T>_ESy%?<K$Bf<J*dJVh`Vm-!Q<%-q?nUq)>1Z
zG0zUcEG&pska|4NPgz1&gNM8mAdjFI&u<8q-xNpF;ijk2)OjX2`BHUcW|09r@w^1O
znoHrm8E>W>7#!P#9MoB?+i%Yv3<uI1R;Bt~5upZ&A<&#-N^-+kY2&&gtC^aY_(gi0
z6C2WoSIuN2y$o+E<SK1yxzEf6G{ehgD374)jg-9z%Ke3J*^YD!edg24GjO}N`25MP
zXIU^j6bR4bYQmk_S)kV@aW>5DEIm`0|DoTzNMmMx0j42QsihVAWQ%}V`upM1Q5;OG
zr#>*ag%V7!f4ALCY|Hl0Bv*fvv@aZPea3cIKif|q1*+A%;1xmOq)-+LyRn2g)^l;*
zfc{c1uh3OH)Tvfz5vXehI$yCE{~1G6W48rhzXFDVkL+w;fuo^a<0{lp24&S_UuLPp
za#E;GPvVWW?0!5{T;Z_=7PS3-xHOm1Zmq!Xks!@^w<ZrS_E#Fn0#-8Ql-%@EMJ;S>
zeDIP^wo!c{gU#Xwy%?(tTxTM$x_I?+$jPC%SWr%73!=RGn&85sT&*%BPF5a;ScxTM
z&vRh`#wtPhyq=yQnAbJ~ac)zBh@-^nbpWGNaskJf_kKL1M1lo&3+#zK1d{!O%R%$o
zvtAoqpHxypgvhyW<`O!6$8CWy?u64bsEUV8a(r&X--Yn*Gv3ofgI-#Or_CD5QVOp|
zSE@(WoSM_tP>#8Bx<UH-XYN#8uCZYktM0luXu9oG&tkc0ux(-Tl(o$pn+B<^R5x-N
zZ`g;(r#1!RRk4iBZ?^bT4o5QNUV~X(1sEtD&`+0AIK;G~$FEqxXgM3J9MZHDYRDo+
z!+~fd5M5lv0=8^3&^zt1i`M|kQbQjG^#35Q>CSBp$C|$snuRvkZS-}<)9DOH;>Mas
ziM|C)7rY8@9f--!vR#AFL7+TF)$*C_@bVO1aiR+haToks5cu}pwlOiq`ls9Z45sI0
zs}-+W6u3>dvgukG@6XL3fakS_@j!RQuL1>O*V#s&CxfMffa$m^sL}|X1Be%uBO%r4
z-N35WhC4d(&zpDj*U}rXr1ls~Teux}H*8Sy`vTK8DCo<L&`k}{Dn8Tj0AO*fk)Cva
zJ#UC+#fs;9_wa&{NE`^F<YqjU12GC+MSX^(#=a1MO|bvCyKnJ`A%b^k(>NA_E&@ZN
zz2E7DTt^&g5O|a=Q_PEJ!)U~UUkp6B&iea_p_915iAIp+&%=|Lku~^~E901{h=#)K
zW(2bluc`T)Ep@z<Cozql<S|Om8v;LN&j5@6AB5ZeE|f8KLZctQy=EiRKZw`0=z4&<
zz$xh2M(9meBNCEky*nT#Gxd$468pPvF>?{%y85FqUggIlW5YtMUO+B@AW5HqAv{zM
z(n34GN0LE)sS6}ZLb!4Bri>w1n@)}jX1Y8Q@=TH^E!6%TO!x{EHI$}p)X}n+mjOCN
zIz9*-2B?>olXNj$4Po>6$+f?JFqKbLHt3n2S;RNum1GR7)%3<>a4-a?#sew5TR0r#
zMbz_#3W108Dss?>G<$Gwj)iDDv5xfuyU_G-y~Q+xcG(ARZ++f77H}wthUm^z>_pG9
zHsY<9y1HP*H5^P3N59(Ea0W|8_u>_mG-mspuD+pi4qY&>OVq<W{KN5#8n%f26wf<m
z$W<Nzx*a4BdCQ31zVAcqd@z*&)=SdafOKIOe(CiFWVg2M<Z3xG$lX};&a2V<Cj1b1
zHQ~k7`P1xLw-qaV&kI3q91aWi7jwNEoDurizMjnnd`>WYr2!A~sx}@%WG#QP;M>0+
z_KAIP<OF>XE^UJ7S9|1o^g5Ob8v`ZTl%B<K)ayk(qi+OrV6oD^h_~<WfkXd(*7*IZ
z5)ym-JAFV1iQh*UzmLan)|APXm-2UAWyxvhjrGoZ;lv&|>J3NdS$0LWYsdYd31_SD
zK67F45Io85;ERui%1sA>wUU?4ME(fm+N2KUw{YpNCB?UKbifDwNEeU;wUAtWIL;7~
zNa91DH;F7a5P3+m7l^A!AEZ0U6jMhtuMfcPH!yvE@wW!1mZIrz1}2V%w(jp)CWc{q
z`GGJ1H!;^&iiLK#R+ezkpk`$*1S38%>gI!*FV?x}!-^{u=NC&OG|T7yAlzby>i{0M
zxV4rRTJV10+`D^{C$UC-`cRm0)G^EDl6QSX@}h^<na9yzS1%x3PI(b_PS7&F#(Md~
zDW#4o2l#-qH6VhcTkD+<!6{k~XMmprZJ#+n+Wo+QgvU~WFo%}S$QHqR^+V?xJY%wo
zvFwEw&yt;<k!?L_I}%G;?N~PD;|0BbpymR+XuPsSp8_DV)Naz8Hk}QkqRnY*$OtZS
z2hj8Xcd9-z2X&n{8O34Xb#T>(iI-h-8QS^aVEjPfB2H?Tc@FwA9tR}V>Euik{%r7K
zKa75gUv6=&Hvva5YEB!MIsM6<NS%-PQYT*%GVP+&p`doP%W_%gi8cnJpZB4vR(>lO
zz8kQJwQQ9SX#24047fc<rtxQK2hjG1Y>iY1Qig9@>~kLvx9)dDcTr(LP7%+LvOO5(
z;grfHb*^v2wN{*M;(p^n_9Q-oT82+=_;@}&1E?NZAMzuo16jLHNbxr{^njKSu3f@P
zUbx;5mm#|flfVj{Xo^Vafkx;LfTVRo)2nc*$yvLK+fEUcmNIR{*o(qJ;1K|MF&jsY
zP|**mRR@yosWd-bEx$896}*-F{!HW(AP-bt+l4aBurU~T)$?S+i=%EpCY%P0IwH-J
z1hzA8^a}%fH2~W+*5Df>@D$KGjlix5z;3JaJs;x*nI^l&J^vnhOdwh|&<uUP&UHCl
zUflRu<?a+dOZulF<bnq!yf9sGAwc(lI+7p@x3QHIl=@$1FVPUruc{>VBJeO%Nt||9
zj2p}w!Vgy2G$WD$;T_n);dfvg*~}lL<}s4M86cB@k29D^_;7f*E(nMG6O6}vAwz!q
zB!|rFFTMc6OhnxRElUhM94|aXe3}r#r<q9j6v4xdjQjLJ{7Iq5OFo?xJ9I+aryW`j
zVc4e}T8?Enj7>40^`Bte7bvt`Bg7k|9}Q3r={KZupD_safJ333xB1Ob;b9fyF)Z$x
zIOI1AydH-5RSZXxjq;B%5%w#BkCu;sXtd`bhQlGBK?wL5COUnk1o$Ty572+DP}I?=
z=m{n|d?CZ2?GFPU_2CF0#5krobtwV)wT$zJAifm(l+feLN623<<Qwz-NyZ!Fwf#pq
zSe)VT>kl)*2Y1bIq5pWsBff$H`_B@J8pFL_$Tz0XlZ?k2@f|+~yfN4i!+4my-X4T|
zJQHzW`oPY!7;h{n6Ab%8h4kY>eZ6wPEgy$;q%qJrjQg~}memY5R?yQJ?raqQ7ULbh
zBtxi=GVY5Jw7<bHA9gfz1o(%$fQNlK0yRC1`|BL!PZRRKBnEyJ<BbL3VTO7A-52cZ
zjQgxasQb+Y9QNVRzJl>+V^WR?`NqWghQI^T{vkm$+Vh&gebHir=CMIB9|4PwWFqFX
z6dq0y9(?Hu`70RjXbkva#`&WNGl8Jz-$K6+ho1fCLq6imN5~(=c-WT`z)xj7;lrWl
zDj^^8DFX2*2zP*PP5`lBrlxXoCh1P!#T*~!DP3B8(T9=wq6M;BZz4%&K+f--9syXd
zkv_bz0qQa!K9a|uEv_=K<?`#o$wuf`2Gk?w&x^zq=)^@{ASV8~27DDhHoXhz|0cEE
zB*985&y0~;iN%4b<(H%?<Ql;90P56ID(Pnd*t5X4%3irUBTmVxTo>64JC9r<?X*bH
zS>Sm|)AUBa0Jv4*YH#w|sw12cw^&I;CD!t#(ul1Qr!fdO2-4kw=yU_hA<{92`&9_I
z0@#fyPD~yxPfU&((jIzuAUe$|L_HJBNB@A+O(<=2zg~n^X}YOyu?Tsx_z0vq28r;=
z)4(j8_$ltG5~pp&jPjO1^ilTep2^*Nnd?I1k%3G2$M2G0v{t^LX+Adit8@qOM)Zw9
z^j*u@Of-U6I=~Y1q3lcwtA(kkzl-?8HyQw;b-LiUgTQ-)3XXTZhL;%Uff7QZT~~0V
z_$S)8W7*NkTT@iypAqjs@)y~S(XEd157?a$drv~U7wKo2iSg)LD&1)%`;5wSsR-l{
zc1JtVJ%C5z^{_kXir0iVIu+^rVs@f$5aA+SZejO2qfl(uElWG1iR=}&9}Gy88gZG%
znmSirxa37MxG1JuU$*n7BiT<QzWq_62ufl;_K~nvkFz)Q0pMERfb+rd*?@5lyk7s(
z1<Uc}>2D1m${<NZd%O_ph$9Wcwg0Lh@D6}Ts>WD71p;~EuA*<h3T}*mWFpf3aB6RP
zOg?eai_Q+fz7CA%rgCQ%4I*b+k{$vq)`r-L7T4WpnZtF{_g^B0wIf$hts5P?`oGn1
znN7n1a&3y9XeK~Mdx@~HTrL!8Hy{{6BMx*3eu_1rRoJYeLY?b$77H6oM&I-SauMi3
zfkx#<FuefR|Hs~&fXQ7H{o}ndqw!=B(fEqGPF^($u-P0yP~W&YNP+@cvjM^(*=u%o
z$nMN!W;X}tdZQvnMGlR!p5QBLJV6eP2!e{R`YNJ;t_mUox}qoo!tYbnRo(qPW_C&N
z_y4`m^XGYVGu72q)z#JA)z#hg4Yv8<0b_sBaYV^=%VG3$F;zg>dM<N4cq)F*#Ym)u
zzLl>fE+5`%&IdFB{5+v1LW$-^0!I&;&2IsNP1xuAEBQne{ppVft9jg8k<Rnb?!LZi
zOO%o?EG4Pn5*J^S4o_|AOd@gNt3UDBoF2Cmf4&;geEc+|Wn?c7E`+4Cpp@Uz;!YWX
z(#`2Sf+KXqb<z;9+}s5rQmUG#oq$zx1e3>5o*t?RMYAa#{62siDZW;<S3V=X(TAIK
z+8dC>oEUH%EaH{miUj0DKpOEG-WHq-^Q(nGbtFUNnXxa^eu>EE-jo6g`Cffes42EG
z8);vO0;j3~{=qu%F9q<*Aa0~$xR$Ht_aS|HsfEVm&C}lOi96uxG++;abA4CxQ?Sz`
zF#ERae1fUGe52BQ37|%5?e)gPG@y+qLMrxU*vymDsjT(2{R?T3=mWkJ1SJ?(_KCB3
zJ4$#)mNSVRvEN?~Ym)c2v{pm%3B<^)Du0f0ZDC4r&xVG@??f>L%rNxO^X3x#bYgBG
zvCOW3fQ4-C@+2+feSo-X1DGq#X964s^mqG83^*NtxnMmvxJS@KRX>V?H2C#g!CyLH
z<OxEK!CHF)X&7rIAgUt<Y>Wfm0sw97p@+q0EF=Jt*f_5WswnISy`HYZeg~L0P3HDk
z1jMc1uP?;Xy7LLDf({gMTx#9`P!w`PJ`ULgh-b;~k={cft%rGylhu4C1fp-tLzMZ9
zM&9)S%}Bw5e$OmY(18NaGk76YrUJ*A?*pD4f(H9bIQcN23<wM8mr2lrVNJTEVxCn9
z$lC-VvjCdrh_+96{ai@XUhg0-W%Ei!`6WIz1u<OpbgknDzfodtlJ{UrlS2s_c{2nK
zs|O;Q<9s1KfHi6YX8L;5c{p=>rkr#qxtzmuq~l{NB`4!)D+c<EJu)+$C~PFwP_P0G
zdFInu0q>uJbhu!qQidisoYGi4$k9M?;LxCy?_+w#7$rf+^J)tL=4}kS(!Lx#0x&gy
zdYwS`jm?MBfL{oJbm^Qi?@j|g0brwksB=S%bSN`Bgsl!@ilb;g&v75buSO(;WzY^9
zQ1~6{c;lDcE#`?SDCJvR9ZrY<LTiQsLN-gn06>l8iBs`i(;uVnOG@Meivm0pPnd!m
z-7&`r-ma4t3nER9khi-O$m<fkoB=3jqyj;6VTh7^vvm!M@d8woe<%Io?FDuVkI|2V
zW$W;gGB`O23T8h227TZy!#^8o2sb0E!?fpVu@xZqM<UcJW+(kt<3v{AjTB(H_VNYh
z78InxXH?SRuLQi2EOiWWLuEstUI_S6&~XA4dinkK*9qo;@@9Q}_ZSv>gUy1a53X<A
zv|G|+uU;Yv?M-da`5x$~)&`J;>ek?Qg;H~j<ZS}`Ow}Vs3UVl*+zm=4EX31lb4;Cz
zRQA~hWjCO#QU7qBi=Zn4Vf{c!QJycPJJ-u>7PGW9k8RLn*RcmlgNEogl7pm>sa16N
zLfdnP16v6dW!^v~GzgCmQ4qnDm*AU2Fmg}ySCKu?d=OC8y92HnNdXoEV4;^E)~%#H
zuz4#A8mT$lgQErGK=+odnY!*Ls0tFK-+I>O0KNrwhbOV-l>jQP!ip)dw<ci&eN}T+
zI{4=R<9rjxEzlzE10Dk)bj)pPlbKr@H@AUrG~kVmoi=Y8rAl`puifmy-ZO(pVf10J
zy9#`|4hD_xy|uAK_1Okbc4BTEuH#6^0}L($1K(w|A;PdWHxg94VJJVeHs4#W_L;i@
zPC{ROY8rGIppFDT%M~Ks0eT4kcpdmvfH$&1452!KfF9o`_8}13yXdqjsHMa<{3!L^
z7a8!Ndn4$oYL3bekrP@o=bf1X{33u7y|%Hf&M@88QF!`F&ke~?>7n3CWY*DNVDmUC
zJ7qkXilwuH?vV5}XNRy#d2nzAF43D$1F9`?z|%)lfae3~y4by;`wF0ZiAag$iAo+R
z6^G4l12O^lrEl@n1Mp!1m||Bnp_q|0;QIk|YDtL|a#WDRQ{hOX*^37s6x;MxlA1EO
z=@jv5hDf$fnlp|Bz%>_PG|KnXPe|<B;56YK_|ZrT40+4Xn-L;;j->SjAj>0D(5VEw
zl8UEQbEXR#8{Y<DgTR5f8D|sNbF`_!J_TSSxg)mj`BfZ05A#C>G93DL(y97{$MLT=
z_0PBBCx?ZcGzG-!BO_S?MpsW8^FCniMngEWK@CZ~sdpfE|2v|(vuS_c3TRB=Ip*Rt
z;5PwmBnASwm}Gf~hvtaDuLnbngWuVhOr%?Y|2E+3m_uH$;Q_k%%uciUVf~`}f}$!v
z96Y=<GGvy$%M%O0Cj;E5X&VZG16+VmU!0<XHyCe32_mmJyD`_Ayl2KJ^;BvV`<yuj
zT$o&n6Z|Ho;8)(*!pWOGGjwVCpiIy{?cI&r0xQ6&fc9gMq6R&QL@=~g=$!S~6r}n~
z!R#VSyB8U5M*XFerYiC{L;LjO9sT;f_XLxn&7k*dfH3g~FL(>)8SkZ`l$vvEHW%@9
zi@Ec4^h;Z94bDDbJrM<T{R+Y$Lw1NIZ!OQWbXZt(3ICXn<3RiS8mjGo{z{6Y^Ne}a
zV#T1d&Ou#AX(RuNp<D@|lX{?rT>ZUxuneHKL}71yUlP^_7_Uh<nBI(kLr$%Romeez
zJ{DB6kOR*3WGrMEApS+Fg>47SNo7Hw1E|rsWh|tziAvy&g`Nq*1H{`nJ+Oxj9P<8<
zk397>YXNob01(H-^ajgrD9Vv4#X|4!)?xFWu!g{PrNDj>t6Ze#TYrlpGVFxyfe6I{
z!)gHxDJ<~Jj~v}^q(XljKnayFpYs7vQ(><RU<G&tcm@E+4+&^4t5@)YpnwPTuxb6E
zCoG_q0J#o~5bh641bZ|AGZzIkF*w~u@uzj*e+fx+_nk6Q8)l{L{UI+~03J#QzZ+mD
zHooVAr#a?R0jhv*OoAo=f*S=3rE4<gJkX&l0d@@UhoAn}AzY{v!W;0*85`H`<U>32
zwt5AhAZq?VB?#<4#FSHuUijglWwr{ZbXyd{S7P&Ijs!#nVn8Jhcqafl6p`#Hq`)1D
zvl6p2sN{hEOatzFJ|y!>C%ZNW5ln?(=f>uiGDoHrm;pfJ*ygKgz#pXmSHsBw&$bJa
zM5L$#MYu}2h@JxQEWU*R{BK14zJ(uAVLN#U-4Q2f!OJd;@v-2O0j7(=pii#)S@@Yk
z)IJ#bWTMa}%GyOV>`@`)n!vB9yQeXfI&SI#7d^=e-Kd~?hriazk6kJC)Y59fJkqFe
z|BrYRYDwAdVBLoz{Os*lZVyXyydoZDfJ&}$oFalXvKBz$SPWkJ(Lm*i<}5{N&{o_+
z>CMwuaHy%5HYodkP^R}t?*t5k<V5OhOcKFhwg(jZ?jZAW-EV<C0G5!*rqGJ2tq2v>
zt^T@?O&4<`Fy|6E8(pYN@uCRDDUkR3c*uSV<W&w?&UWER4W+=|8Nw2}xx8WNFHwr*
zENzD_Jap0g#j-&LpN9cY0nfSEqAyx}@S#5Ln;+~yWYLOkC37^2QL9er+fb@z;;LMo
z2E3KnxISjwWAkuO`pw^|Btk?A_8W^47x<NR;6Dd^?%Wd>EjVn^VTT;LfZmV5;^3_P
zoeEOmFZcx7mP9`s;3%DlbQt%hL?~g^1jhL>+6jc803iYF`D6<4bO59B*lGDA1P_I<
z;L8C{Lhm8u2*1NA{+jtzj3GmpemV_$5}=ybd9gVizZ}8MeYNri_CPKQs(NVOXFNd<
zJqu7zBFI(n@vtCBd2n?I=j(s)9>@c^JuC>W_53r0yTi}@K1+&o*>&ggPnTZz_59Q4
zQ4AvBT~wsLK#OWqzt)fd_!*hAsOTpfF!_GTN|2IEe>aFd?UGQcl;tIHbm|48{b}^R
z!Ld_OYY<fD-LBp$^GxCw4!%t+RD15A`Sv|vTtBS7N74M@OQ+CmeZJES=id?G(D@`H
z%lm&0vh8+Ux{GRS7r6NM=>&E5onlE-$7QddiUdU}*b(sdks4He!GBL7%aaJa^b@Vb
zcKxjkbvI@&;Ggc2>}CAZB}VxU|8!fPTP?D`^Zoz<oa$7w>1m2>P9^JHdoAql*Q<s;
z56;TaC%k(PffEAp2(^w_z<GL~>i8{Dq-=RlDb*#H1>(!cNY)c9$%PUIrKcaG5}$m`
zw@fakr&mhJS@v^c%;B&9FSwuhg+LXNY;mViNkXJ2nRe@YL<Ei7^CVy|{9>9o4RSX9
zzmkdTXC$~AE0XhXl7MN+0Qde96(qAB9mMd|v`0r%5ql=J*3dy21Uv=&fpqW}hzh?-
zu_<A`>wfbqmD}9U3QnCVL&czZ5HPOcLF;xVK!X5rsMY7a`6fU(c*2zIVgEz0;N8r<
zN(o(D?BB*8EnD|xp&r170JGIJ+08o~<TzyYT7_?@R?Nj((}V6!f||aPF~xE#CCf#)
z;)Ri4bL=n5=#H`_kza4Zuep&_Gew4s^n+R_Zp<L1ym>1?*boPhlfN2=jCe?8usF=Y
zp|7XFZUzhrw9fZ$_($*t>0tt3<nqI(K77R!bFJC;Ya9=Vz)nqpeF(4<7rP_4Z{Vk+
z#gCkhpor@Kgy5q`h7RW&?SBsFIpD!x_lzBI4S<fUdnUFqgo@yu{4(IZ0g*_-M7@H?
zQJ^XB7MquSBjD%Xg1wf&*cPj@oFpgMf|U1dr*cW~^6Uc)2%er@%7E0jXWzHDdW5{#
zOc21O(vkFF{2Lat*X2P*pIF&h4a&w+%9fX_)sf2Z5v9t=u<fkx0V}~eiS}2ZA>xIx
zYMQSgCCYOx5W$n9IU&eB_BtF;L=dcbo)e;U+9z%H1=(dNQF1gc5vCg+shRHv;0?>M
z#Tz!ahBVfW)NotIOa^EIT6m==D4;h6pmh?aA5DQ>1ej}EAk5`}qxmYP$n)zETVVeT
zVbqij!)D*Byg&kKyE*|{9e_wizQb^48t_5@>AgTqoUapDVVySB&@GJ0228uvyZC4D
zr0!7$_&0U?Ttf}jllS@b%RY%*Y&!6Rjx$>Mi|S?re%e$({(J4_RK*Eke@lTq_gmD0
z@b%d%0l}4A37sr9M-T?HBVCx2-A~S`T*FT;<X@kN{Q8<hr5r`}72C~#@tb>?(PHx_
zhhdwN`8G-8(&)VyKWzZe!`f3|$8)uy5ti3x3wGZ9Irg`6?>~v(C%!q%B=sl40HD(j
zDmyTrxr@_HMPN%)U?%{^(PzwF=;Apo_OE$c9rzgF#H<4!F1MVnuv9(ZpK-w6-;p|a
zhnmMnr(cQRL_&U^9{ssJz+O5`PicHP|Ndv}_w%kLjcD#Ha~yuMgqA#wn7pY1=vi9W
z)hV!_QDsN!ULkcPzAtJU+w@(g;{k7q0}2*E=_4uAz1f1_M39aqiLW`=BDmjwkNtl3
zb+&?|kRyP;1h)@Rj-?y1W+@8N;2*C8zlsRKgb`W13IDYJx>bOS&F|@7N{>0%HfOH)
zYy$A>)4?YO;5Xv4@MaJIzXb^Q=JJ@mNXNkthMzZ%0UIWme2kffeBX3Q^8<~Se{XuE
z8Tk|-vs5^t*@=Hos|EDz<#*HMLbwOrAWRmUD*ibw9`g@D#m@qJI$C1nzbF^<`=K{Z
z!KOl;5xsl>e#5BNh+lfG8>eE1*FyT?FfjSo6ilMnM|^*ZmQWx|jHX8JpFJeR7F&TD
zv$FSg1j^4-6op?c_!>A?j$Iss)IWzDja2i0NsP;W0ClL`L3_;)QIH0I!4K2n^8x1t
z0V9%MvClEbBtb(#ZOXuEw#NaV1;7cU58l?%6S?mNsF8w&H+hjF1#d!uqa{!9Hij^!
z`!<3&H10d|v4G@qypCOgG<9DFEVATrM$Fq%p?@Wssy=uU{QB>CKk{-aY<UXoB*1)S
z-KVmwXN2gHl3&y<c^D-=OO7&LeRIIX8luf(Q$T@A9>Tv`2R@!8#G?KwfzRNTx5UXa
zxCdY_WXSg$RMO_Mx$rA!+SZ!i1e84V#p9m7hb{t?j%1x$EeB$46Ps>qfB=g&pFp{*
z?CE}sz&ziZTkuZ`xypp#aUMZ|W!G|A<S<+?X&kfw0d5rLh1EX}8Nr-cJ$-;W$_l(X
z4R|YnUXfgR)=xl^EjN}dco`Km5^ZaXYqP$@IvsVMWR;sDY_u80VSYX@N{COH4a(>v
z+p+o7&$T`HNDuo29yCI!=@U@sqXp-@^j~t_di(zbjr`vr@Q$C7@ujuK{0K#OXj~c0
zZ$%nka|eF9PPP8vLsZ!ru7xfCS%Ajt0-I77z^V@q{X{DCY9bML3e0U0!ff?&4d>yI
zN?5Sq)_`eP(18NBYZZxQ_eqjT<T)*oLi6$6sPl8waXQoG;K2~c9_zDy9-tj%=luU9
zSflY09sS3LB&ccBgq6ju`MyQwG?ZyuVnx^0FS-jwxSs07x9i(;ZVN<>5L;|oQI^VQ
zvDs3;=mHdB;~L}h?Yey6RQ|ReHIyCni#kG}>}ZtHxqOV*R)8HS(k5I6`Di_QDEobb
zvS<7fyb!2xgsuMO1MEN%Uhw<Zp)gf}D7&~p*)HORLvu&i^7><4UNoMccY7UXRCq$8
z!qZX6?_gs5E(P41tTtrIRAP5iwIG++qx8FfXt)*sGtavNBUS#rCHVK*_%|aVI89m7
zKQ3kR^PcF>M}19uTlb1P9a#&w8GsWH(R+M<!Y>?j=+C`=CCn-nvmgFV0^y(E_W!&E
z|E!g(!>vcCZ)NUHf|`CU(~fg>ZNBM+b>JO<Gu1&vF*>*4`sCXakdFp+7cP*8CErN{
z-VUG-opRFpV@kN{Q5)zUq}jr5zMnA>gm3F1y=yv1Uj|Z)-w~zFNN>>R*jkno32Nzh
zFaAwjv~;|cz>6_P^xb9W-<Tj1mj1_Y<4nTR|4NkNemNhMOx7*g`*+goF`1;M&Eti<
z_T()d^CWQJ3EXs&<`NXSwWHHUH}D&dBHrCm(n;?&{sX8kl+XQ*<BlGTsJ6S}1tX<R
zBS_@YXBYa8DauEJ^44`Yqj0?r;uke4yecT17d1gtooHCP*WC%FutRNfD1es@CHvF6
z)db^H0uL(zMh?GKR}_CNN&J{nZKP7c$j|rrF?2KVqB>1Qd;0IEg|+}_v3?H7ac9_Z
z)ZK_)fcN=n;@y^Hj4wUXbdj%Gj^>_t3t|Y%ra~A1f?qR&U|m#y^m2#~ZQV&|{38v>
zB@wN{zud<~ZUrAVBL01BihoG-RUn5smx|ptY|W?eGb%KnRUS?s+JU8Cn<QqNpa}OS
z>PO2L+#9DKEk6$BC&s?XVn@s8Q%b^yWdB&F+mJ;o+M)<YY*P<MO$&=|YNxFD5n>so
zEiT4!#o>WYp54s#K$;3Cd*9SJt-y(ECdutwV5PMsDnSijLyIXnK?;ibCy2$`hk595
zv4xl39~U|(Ji1X~1%;_2ETM5v5#oFS)zaG5xYiTIEY^IAg=#Zi`9QoGycyKu;~N*B
zf#T^kC8UbRT#bs;YD}zN^PdvULE?<=Z7S~}D37)_Qe13Y{63;SEwMtXXwFTjxI6V)
z{+wtIV$s@|6)251CMX<fRCoc=ot8kJBAW42RD1HZUNxC$1g?klEk$}vZOIy-L|YQa
z*fAx>cZtokq>Ir;!?J&wX2X(IPeRqG=snwxDD@#l&Ca?dx1a=p&S*6|k3WVY@@8~1
zMm~y-TORmeN(s53C!!#&-6`a8)DWN9m@QQBT~J9cG<Ts0o>&S!v(H~sgi2*$)&kW(
zd!g%1(MG1%I^}P>Q|mLR#m`~rbxlN->0EA)aG7SMT@Qt#O|#M?s1!cbnTBu+{~q#@
zXE@WSchzpzd)U=Olqck4UilA|Bwn&2EJ@e#sZ*nT5-737sB>FsxO=O0UT;8g)Cj}U
z84ouqJpiRK(kpn2iDVjyidyo|x+OFJnILz#Ec}O|C@Q6v+)}sXPl=M@?gBpWhRmZi
zbHF1BUb5qRW3ogipFt{evqERX9p%RfH@>a<W`sbrL5K;A<XgzSk9<)r?%~Hj!}k0~
zGo}F7Z=|OcVd{B(c*vcv%AbSqiB(A|e$YUEkg_Ar^PpPmYKEDU_MF70_kcvcTJ>4Z
zYeyApHSExjL5^5H;e7nxM)}Q;?Y`zxW$whA^L+J~wMUvO{(Yop{tI@syB!|r*%UzN
zsi5<~Q$*)AkMBXlrs$6yPdRO8pZ@~s3T|c1qnkzakJiENQ@0@iYbsCFD|tUk+%ytw
z!;9s4#q!8-aj<o;h}4&n`)2SaevfLeJBTwjYV9-3GfkE*I?c;(&G)w2DLn^J6mm=g
zG8k4{KGbL47NF4Y*FVh@q2KH98;%<1fM0I^nsN&4Y`}1$TW(!GSjHGOKf!PR>z>H3
zM;Mpl|Fbo9{;IvQ_Do6vU2(u>09Xg;b7bQFkpA>4`5HiUPZ1EzB<B10>3`kJg>Q~9
z-7A9%T0cBvRxMVLg%Ov@=x*3+TNH?Aa{5mw2>sImGJ8(tS`sGI;4h|<Zc7UkY%jNa
z=_*wxGDMq|Z7kX}NPG|^=K7wzgnmY}_-%p&Hv)e~zg0skuf2S}c>s_IVCK_ffK~vI
zSTusP4lqaO@U2C;1HCDz>!FvYLVpsH=q1DChY^1ckUezGGrUk9dJ3SaHiA%qitDhU
z@iE}18ABcP`+%;!xZIAM?2H8Hr2s{k+0XR8E*-qy5}+p$LUL0AayB4#1L1^K2E&x3
zhO;TnKg8QrDHTd7;B5XFdvo05`^+-&5=8z%pKe6!#Y5$cJUc@+o91Fqh{t@KMwt0P
zYj4E$$As9maspJ%_vVY6^OV?$Z@YU|RR{pt=&mx?qN|C%)U^ol2oj$vhZ=Iah?K)5
z-u<lqU)TS)bp6P)RoDMp49tA{IsfZK-tt@(`G3V2HlKao|1Nn?+#AcG&M@XQ{EDtM
zcKW{v@QCMmYaDPt08hr(ui%RUcx!-11Fve{-I{sSq@Wut174UqV;=zYNo`-eC_h0}
z_ZE|hcJjip;<%-2SDNO18kH_Y>0JH3*h=>UH%gADANmzY_X*>X5V{;|0e`pGd@uwv
z2=`yUkO1P6&5Z=)n4^4`XBaU@<cY@Z6am=0HGd~O1yzQ-dypBsy3OqS`~XZoca1X7
z%?qLAdja3P0l*XAyfMG+bym|$Oqn5wCpgG?fY=z9fDTmL$BATm(aZPE8p?tduW}FI
zbJGf*{sNUG3~((m^BGR^qz18;m^=_fhOp*=b<pnuy2?Bq{QuZb8ZsT^e*oFGZaUZp
zypWnqO@kA##2ksAX$|4RZ=x_&Y%aYMrL5ElTQ0ivMX4fj*$+@=1)%HHOU(WFohE@T
zJz-`Y5p3~UC{D^?%ij3nR3U6(358A#?iRrka}nTC<ATsZ`7{5+%VRC_z$ii+5JFRn
zmOf6^>le>@iQ1#Pq6H>+<3jQOC1xFpMYxo55@d<F0XW)cb&(zf5=&7R<GTG-(7GrO
z0HuL6R?iz=+E^Tm^<H4rmB*r-{IW&@S)8+hV<#5!a2GCEVlHEd9msCd;(2U|xgBL9
zzeUIBjpH2saxZ>eq-{WA>FZ*=u|<Wii!uxpXOM?1T4F8$AYqAAU|!*6@+L?nEhvc@
z7lH4g3MuexPSs_%6HCk-hFEoxq>GoBH2`TZGYDFeqHm(enOdyuc9hv3jTL-)mI`B;
zdUDsHB+=j{=79h7Tzqqvm?Hp>HEM}@-Yb=Qh&mTgYZp3IxsS#!F(+^#wK-a7hunKn
zDndnz@xj>xqYzu+Ij{2KM$7BfSb-Yckm;e%dbKujdici!-x?N~cX<1Li8&i((mLv<
zg$sBHL~$M^ep4a6YPPhYE}4gcVU4gZ$}8q*H^t>Vic6@ETnSF3t-?=3nTY2K`5x_o
z?x(~3J8-ovuCyNVoVjYk5v`?=-Rl5t+mu8X0abfL$=cUKOH41y(p%y$>nrZBh~;#V
z_c<`VB}uaP0n_$UtR+d*{SVTXIA@goOHOII#2kfUkxzzVD%y2G({?n%dk}cxXip_}
zL#s;Ph}2(!WxF7HoW;NF#j_=5?mQ>Hb`zP~feosB0adgq)2(w4>O{u=R7`Gc(<V-r
zg_*CTD*9S;i8+u<XjI8+xds5~vnVdP7POpR0|aeiI>z0=;0C1^e{F$^pI-h;l-rqF
zIR1+PBxAG!)~bb0SUYva5iS6N3Y(7cZD6pl>BZ+RQeo4}zlL&aNHnF<N_!h1QKQ$A
zWe0m<#5lF67e%3IEBt^%lzpti8&Dw2S#+zm#BAXrJ5h$awk76MC=t<g^EPZZc$m<l
zs4qFx%c@27aE}76HQ=Zy38JrBtgV@f<gviy4;;`oj^B5mf!;nWYqlV3$EFb24dC1a
z>KTCYcSJ+fuGbKIipYl0(*d>h`DkW|dE;x9jR4L9Kv)Rm0zfPw0c?JqBQ20~0kLFZ
z7fZ~E|D{Cv=lk$eNb>Jb;kPBoKS!51a{T*z{I<lbliT-trDlI$fZsyS0=@`<rDuPi
z)9wgbfWdzU;(t%0f0!Bk|E9T}|GwgZ=h)w||8JT%Qmf8GAh~;RUZFe>-}##-{iuHr
zD)jZVR<@b<?f-P8+*Bx=7dp!SI?~acH&7nR&nqEZqr{#>tj9bpymBym?y+<YVNUCj
z<?cSC%ubT#G-WrNrXBQ+XZkO@)ns<;Gb8t&JNL4pq*Lk~E?4uWOGrGjPdg(&8B)vf
z{I0v2Us~#;*B{5AAK`)+^L$GwD}S4!ElE~Fu%}sY4@j@Wq7r>Xb=m~wzotM1)pkKy
zGX*M1-61%~cwCwcT3cz@w}xH89bviz@5hRtt%O}LV7uU&%WW5A&#W#WNOMjh=4qCE
zep3qZ2_f3CuXaj=_$Eu-^|vG5ai#XS&OZ2t6g8mDD5(=8B)_2YO+(%o$;GBiNPY9E
zB8l+aE}`|}7lbX}12JJSEkbMCQ$-V|H7c}z@l?^IXKfQg?6CdzwDDL{sM}4uP}<=r
zcEd_{N1go(7cj*!p)~r!J(UrOshOfu>Uq(gQtTCq6`?e-=M>Q`ETod^n7OAyViwEW
z&QV(9FWys{r6L}WD_JFX<V*IHEGCcqrjhPJ%pOAP*mRmQAvwEhJRvbnOdmq))TfLl
z=8sV!_R*(|C?=3GA$G-6Miev1E+KaNQ%01h5TW**{Zl*tNputjJa?377E%lLoa7;k
zEXj5u)w{<eG2|`Dijex;o|A+gEzO-m>%KjviTT))oD@=BFWuAr;Q?=nDzO{(n5a%9
zmhQOFJM?9HDlC7BIlsxY3#AKQt`xUoJ^GnAs@ZMUM{>Vq9%;!X9h)M303H;_gwmre
zA;p*NC$6wibiW%=#5XF6rQ$FG&z90Bb3)NPO<kYv;qp+iw?>XLz7-?olZuxmKQdTd
zk=WWgYC11^Lbzd5F<NoSEMX)BZd5-WA2*8<$O_5koRWlNxsY&X1}X}jRrZ`a%4{sA
zT^PN$9>WxgLt;_aU8!ytYJaLnbvK)#N*}^$t(g?!b6zRB%HSiCCc9&wE6#E*b(XT4
zM>@c2PhIY8rCJ^)P;>74SBqcX&!5``>;(agwLa4W%KiORZU5XgS4g!ptA`Mz#r1>l
z+UoEIe37cVm#(v$HWBykSA}Au<_b?8*bv$Y>H6TV<Hd$Wf6X}uq3qwpf2MEynbk#B
zB5j(N2p@&Pes<7IiV*Lft-@d<k9?ybbdnP%GgKi!SMFcGvTe=aOL_zu$i4SARaz<3
zGQMX=<ujZv{AMR9OTN?xam;oR;d3fV7Hpe#D9?oK^vRln*(uoHnxhS<b<;huUNVGB
zy&+^IZ6|?uo|QZLUTFzqW8iW7bOdDz3<#RX-$wI2k}k}AvrD8n>_C;Kn&+v3=&y0(
zF;i<D%$Eq(kvnKyC28%2Q3JN#!=^9CNNEeM(hZq*;k?g5DuM010oQq16{%^*@rk`5
zI^u}hs<Mvb7NN4ERjBcfR@H<~olgSKa1D#-W%)q9cOzeQm2Y>OF(ETNPs!n%nCRnc
zzbRIP;EE-vrk^B;4;l=WH|Nc$(0Ey!(!%B$v@X<POr%*jC$3NrW=a{w!I;ru)Z&Iw
zQiM)=AG*AZh);_!|GNs2DH6{v--BXEPKJ6yt~gOfwg}mha}YL^#g1fBo^=RH^ev;S
zj>gQl+E}tkw30!fVxZX1^WxVq9Avi2Y>iEnnKP?xt@t<{%iEqSie+SD^12Rk4H6al
zC`MLQ=(U;@d07#kWNsHBUvsbu3ju1Rz;#|wR_J=y8<3NuCS7i7$zX}49Q0Igzza^2
z1`BVYS831iIJ+nNG4$qzbZ**3@beGV2GEyl(HV)!$AV|gm+42%8|D&SuQIIvj-YX~
zcn)9hA^ok?Cv0WT)}P{D8tUGdr+~2;lZLH&jW&=uulCZ=^<NUEBd5Y-cnGi0opYZI
zY8v6cKS|A7mZ=%JQ*M-Uw=>ilfw@448rFyTrb8sSL?y{a$jY>#6tXIoAL~h?W~b0v
zzCv3!+(!K|dX^K;j+3*`%ANX0ou)A-17~{xvXBeU@~dHE*;t2OvMhgjos{T3wk)mA
z`6`w%fc;#A8TVj<%ubncNl&IjnsUbB+N9(Xg6?p7s>wR7&C9}x1^qy{krGWT?Ci|U
z&Ar=d!7G!vB4Z@ocpDX-d#_a9G6fGfbKy=?L&+wXCnjjm2OKsFpJt(dvEw84rp-s>
z@~!lI_*sCpeIftnBeXe?7d?-DR&8Z!1v{k20+_W1xE|^o!JC-1kZQv3@Gt_vQT2dX
z+_UWtlBM}eJ1P(mLxPks-%N^N^WGo=?%9waqNYt~eZNy1ZHENRUB{~(5>YMikO-Bq
zi6Kyet`p=^MO83`v~fF38zlB4znE@$km!aG4vu{+K;T!Tj1+F^xU}%%W3;7^85M$s
z<=;MZ=o7`I9u{Xz#CTlAiK<8Ev%sU~siE0Vv!OElL;}N+OD$y7<aL^3ZG&Gbf14tP
z=6yPKOrsRYM{SXsOQugjj!0+E<&(@gt$m0l<VUcA3W>Xp(_Y}+c~>~ZxLXDsB)bXY
z;)yqB4E+aj+o;!OxMDw2Xy@LFVIrhoe7v%dFE=ecc0E-+&RIx?w#0*+*ME2f=U^yY
zpIi8&_>_nDCjD)uMaWGmS<jddz*h>6KSB5g2<6(ae2RHR_i(rA5|r*F>g>6_l@Y<6
z(~8}!sR+`a6q$YUP7yO}my8*?zuX^}J3)%F(5xIBsSOO43uaQt{o^F3CQ`sauJ2?~
zHF?){*<|~b5Gu9gc1R`P<|z04<|0-M^JdHIl9QDu2O|UbnTPg(^L?XD<sO>h1q?-K
zb|Sz;*kg>031^R?c3u6QBF_&us9e1Mb-Clys2t7)bq1=}YINVx<<hFM85hDWUBVzr
zuznw|T65IW^&M;1Ebla0_aBZ1ZNYWarjBE2b)j6y59dppjp?@RkM7ZSx{c{-r}GRj
zQ@5)W+Cpb{d4C!g+abbh#7R&QnsW*X^+FEx(i&c!Qc&b@dLBBbb*&YUf0+&u>P;%#
zRJCojE<yjFK50`n51GEKM(p}3DH9?e<!UECR)|V6A*6m2A^FOj9T#4#kbo6tQfdt3
zLt(V0PF`sW@*ld4%2E+Zn<5myB<{7BC8%#j8I=kjPOaET6l^XK#Ng+-V^Vq25usSE
zUMgtR;T6;$?k;UJTJ^gFqLPfWuE6FtlVt_Lk<G11Ybyq<gNApPioIK^Sf<8>!@r8E
z{0ag_fqlw8%Bw$1cMOShONz-ZXOG;NQ!KT+H>&(w?Qm`PdsOk;SLfcj!P-cM=a2Qd
zOWbdGggkbf?r7%-;oSJuIY76HS$eZhbpmm5!pEQ%H(0Y}-Up}c4_2*NyJpQgGbwVH
z2UROHB)nF<Cgq-hsR-sD%UXj3RmUz{%UcI*hHHP8_wYePzy+kWF`minxdVvh&S@={
zdJ%U-N(Maq*<vPz)u|O_IRKXL>xz#!t&R7euI{MRxvZL27j6}FI3qXKBdc1E)oH8#
zE^n5-jzYYwv@NE<^G>0B-4@}HSw=+G<bJ8q6?@%`)!=vT?9n;C0~ilh6m_h#Y<kT(
zZD!U|A*7kkkH#3|fIy2w3+1bH_tNKM=9_U5?Z8u2#NjggQO9{9<B=8CL|0DRox$M;
z@gB(Cr6F$G*7^om>7BGR`2*c=svs&Gxfeb~R9xN>5kGqR|4X8JJtr4+*nrjZ8_k#q
zJ$YtK_`n!g&mC@bWO#&nv&j7W_3j&^qc++T$l_8c8EwPY-x0P2o3?kI6&eiyh==G%
z&hS+Tz_3GfFfm*}u}ySP+|8sdAhwAr1)^O5guBFzm~>>H=#VxN09$1TC?Y0Q9cDGQ
z$Dyq3)y^fc%I!!P_4<F4QTJh^Hk>!RM1>EZ9aH7yaaE#SPC=|n4545p@l(KRkGGNi
z*?*%2MXZAomDxkkciYB%`CMsKY(k682RJt6>0o|eeAdSJA)+Nbl{CAA*p=t2rZ^<}
z#F^gYI8=?8oYND&2-~}H*$9#+aacRFMsIncJ#LPh8P`KNMkljOl~F<?vq}!^YvY1h
zi>XCH@RKL(4mT59V_Tmvwk~gMP)gH|q(-Rc@d3>(W|yepuNSI1WcRYc?^1F0XPe3E
zOAxQXF=0>;i-u`a?J6_F3GMs300E9GS2r4Sk!AiR`P<aEqebW3+1f{*YJPKf?+ATg
zY^P9r^QX0Gv?O6@Umo=JHX9H>(>XMmtqj=}K&Y9}BWm7wrZ);k8xPQQV!ACr+Q!}d
zhco@Gv5jY!$q+)6A3oFf;#RH%19TJ6R;~oQ^AM^8lXHtF*TL-PFu19axo_6|MN})C
z{wlNPA51Wqrmr{)cbEVRjT3l>k}U@22~gZTtqFH{QnI2?ck*+FW(RW6w-QoPhp0=s
z^gG(MQG;>Egz786IvfRAO3k>`J@hkT9#I-{8C5A{r{`@1T<jXxF4VuVyIg1ygW@AT
zjpw4%zff=f?C!NCq8~T^Dz&qeYQ|2n138^g8mr8mvnYCk4bRA<LjG!HlZ{VWzP%(H
z^~5g0y*a%O{0})OR;!M%rl{n&)O^5E2t9sJK=(%=Akhrxjm_WC-(92Y;FCh*@=Kqb
z`t@)W+@|5UDz{z2<^2DCs<?S~t%2`pTZ>DBW5V~8%bpzn=YPuv2%ki2!L1@(j`-qJ
z#cf)xUBKE#6vA`}<9B^k1jxwFW>x4h@H(v%R%Yug_LxE+Jil$Ids~mhcpYNQ6>mJA
zHp+fSBT1^r7B}H))6%x%2*DL8CB$}V$C@j&Jp;0qs5xc^>><;6aDjA#NoR8Qm>Fw~
zj)@E<VQl5^W6Oe}$M_jOqixT9SuaP}%U?}9wkSYiAv4@DE>0jz{oO^L?V6qQp>3S$
zNcn+?=q9(QLs~Nb+mRMshjm!R=k*h-x0C!75;$DFi-^^5)Ddv3;103KZKN3k1rtF5
zH2@$i(|W!bQwNr7r;d`>5*BR-rtfs+i3*hJsIVjyeF7Zow@0Si)da)>u4=>y0(F64
zV-;8I>=67ur+w)?80ieJ*+AdVbWpEdQY|hXU@mSKy{_IR`t?W^3V!vKhq)acQvUpF
zT|eMzlms|MgK#RGY6pC&1lu~i{8Wf0s8+IDx;1>^Kz#kux(W*Ok|7=8=5-4WH!UK}
zwN5C0nG|zYwZ1#Y56-<L2&NZ8<1CIa<3jqh?`pf5Mc^p&&Sb!KahAqm&^;-KZM>~)
z&gq@eDAOYr9AQR<*@4#y(`;ghF^w6HMwX-JGu>}b6OY5NzXeqUM}*u%yG=IBb6VOA
zWZ4`J;m!3{=u5v>S9sR?jGStHD&awO0X_<A$rWzcU9u^{i}S(8MzU9g_{(pcHWNAi
zpP4K7XAJ-6oQc8y+A!`FR&Xe0T7=^Jzb}+C;{2`8xwUfu`TAfwuh7%C5`E8@$MxBD
zX=B&3T}a-dq_c5CX&#d}Jbck>Tx!1mhbkPMtP<<s?o_Q(ED<QUQOHIZ9IzE_AUZf=
z8$^4~m*Z7$llB@2zF}(FoqUt9&8DN5@YS6y2$zmjOqZax{75C0%d3NKJ;>6@)q@Fz
z5s}(pK93V;srxfWBXKrgpTscJpzqsLn&Lq-Aw-^kiwe|-Ues86m%r%HkVh7Yskx(F
z_}2N?Nw1AsV#P2m!u5;FJ<|Byq>6j6LhiV6ZInF;D7&R(_xTLr<fGinYfqPu|JBcw
z4Q`WCDrLU%_K!0iH@>Hb#St56=UvsXJk{`l?<#NJu~NrM=xP|MV4-#el}-U-nRY;4
z`>{kj0Pp>=HoK(^@d0cLv@RBChblLhyWBM!Z{oA(4q+7HECN@Bmr{$(gtYRc+tXTm
z@mY!1LI%f)zQif+frClJ1CD_MVZLE?U?tXBB~!t5aeJFP2nAZ;EWTtO1Oqv$A9%Ki
zj%=WtU_9)V3xYmPJDydrvmFe94c8UQT;n765uNmQBi=TrmG*`!t9iT*7G+G_DN5n{
zBR|nYUy{6c5NnHNqDLZljSQyExdnRbkIQG~F1lWJA+>?>$Y393J}=0nx8yLghKO?I
z{enMe$3&{bh|Uc<r&O-dM|1&we*h(zT1aSJeYlaK@X*LO42cfbEo`PHy{k>2Yx3ZM
z&ec2XfXq6SVCY;2<JPt3RACvY3JIiFk$P4;tF)JB{e^SBhs(X@T%!`s-A>I{`L2GN
zgRXM=&K$(G{Jgd77E#=>_o@O*mF_~GJEbcyPLgUM=p-`BK&nuNz?F3~p{mBq0P`&O
zoI=+HyM*;uRfPCm<FqAER)3rDV#CpRO|wg?KmCttj<gd9Jk>NZvXVj={!Wc)mdX#+
zBO*gaCm3vlct;r-G6~t1(ua49xz7sLA%77~jS4s&+9EJstI#np&&NgyUgii#9!%(y
zf3*X5FWVo?hTXDtxU-wSoNIOpxj7H0Y2aG~#WK$*f#blZqyxFVe&C`AZP0r1bq9UO
z0QQ~7=|9h@Z9?`QPo9j-M=}$pkMA$ybc&7NO<9<tv5?3KgY&)`#BE|?;Chzuf7)My
zW{RZ5Y<;e+Xy;3NCp*|aBwkeTY#j`Xr$pjHFTQlSaZAsJA=4}}KJ!7f@!BAsEd>uJ
zWW(mq;C<I_sUk|(13NF`KJjpML#3K$(0tP@<o5fks=&5vwVSN6<SGYj-1UF$h`MY{
zixB;b65oAVPGn>LW+gpW{x&@cqO>RO!|@`&9@#DgRz9Q}jSWiKBLw@-w9Cmd<Rhdz
zgyh&$P8x|dhKq1umGXUm-+ke;Pwwf9#Ovu+I_qyzSfBHcJrIG14Tf6ULlIUff7`5=
z9@=adK5PFe{4%_rW3AOGIfMS;^%rZcPI(#hBKt?d>{73v-E$l1=imX3Oe>KmIAPCw
zF}p;(p+~%!Xkf6rqS(SZiZTT&l(V%bDT6EuYJI(fRZ|hhKT`qXi;bHoR7ZXUV{CxL
z>h7An{;HV?p|a>v?PaPS-2I77%bu3=rQwDz<F`ISVxPxUGqQvZIBz5Bq#}t-se1!E
z(UGY?!h?1cb6R1X#lb;#Y?hO=YFdOzyE4O#q^2F}jAXYA6nh7jZNr)5RFu`}wcj&S
za@YJz+fXY}f3nvUJW;Ck!%xO*yu8Gnbh5<z)Y{0P1fLWb70q2w)MDRUS`A2*E6dfT
z^r&^0NOAq+u5-{xtp^W9j$A&pF&^YlO0Bpyg|DAdAbDJf{K^rdfMv2OZIDEWPUzlD
z2>zxgREQoVU=HONz+O!D0(U1Q3COLnUg4+^dVH^?hW=}!hiTML!Ip=~1zst+d#>Fu
zhGir|q-*gcpnr{hvFp8`EQ<;}KmTN%v@JQ6Hd})a53Dxt2E&8376I^LXTQFyv{|HJ
zeg#Pyhn7voHfn|ZZDN!6jAYa2Mf4<lMg}*^Gs=!?o?lhs8zz?AW6w}s1&{q`kE!8y
z0o!AQ@D-pvZ4Y*%5)KNsolw7f7Z}{DQLufr5(J8^$Kbjn;W0FHLxWbr$}o2zNtbQg
zjAv>a^{rpQpZ9Q3E0{=jLxwDog^8fYsIvo;Q2T9h!EoOzH1*POSmt}jG>fDkdbUce
z6jt~iVTl8i#=NTS3hq<aTdU&Q^#<d#>l@&ub!JJS93H-7BI9+>RatdS?r>%uvr*Dc
zvl|L^h&!WaF5^PI{5;_jBbhLJ8=>$`$PSmWdmzp&POKEpz1SI5qpT~!@)Q3a)>!83
z64YD9V$9)@ox<t$duwAOYmb}Y)o)3*qchJ*uT8s9*uI}qqRZC4??r7hoJz7TbisY(
zFv*PArZsj@m*=YGcxqBG%5mk3)hxIJ$kHX6p|s(KfpRci3|Dbxh;uPOSLdpO5^<vN
zlbhzSi7jw|B`PJYqzVqYK5Uck{VZ=L6@9i>0TCzWZ7HLb%GT-I_M_;@aECPT%>Pgo
zbN!|r?%YntL!f21_rK{8yZ80##GM3D;iypD_=<Xz15E`_lEoKncH##kT1`femAyK=
z1gw`Kj@g-t@P1KFWgzQo+M%H*UyB?TsnjCKr@2b>4l!8;rZ15}>wcM0sc`cwHJW6W
zh>#RFEQl0p=s-P}v`Hppiosr^XqFilhVT4OWi0D~(^tsWH=2kcEK%(qoP*R0@Eduu
z+AdTco2}IBGu0#g<V{W~xsU9J_=yq$K^R__n;SVU`a2y0Zs4mMnl1=F6yZcMbF2u>
zb5#@`ZG$c`N0ftjS&ivaPjfq!=y?YS@rJ~ZC&kA3sfj_faSQrjs4~nqA@*_MaCG59
zLQH>h<+V;X4$YVdaQ%UiR<3tr+Uhm%_ozFkqgPx=sA78V&2OMqn{i<<dXO@bJ@9~I
z#W^!|XOt2rm!MxtWE#H8hW_GKIC)C`yjEqyvu|+1O^G?{GQk8SVJ$ZxrkjvPe3$9v
zq;ZEFV<P8&&#Nad9j)nvpA8~!Gjc)XEg27$?I|i8Q{sKxPT_FaeC0GO7fiZb4`kq^
z$fG~UvXQ?0C?Y;|<kBwGzoJ|kc50+PFW|eR-i!qzWyAWRKAN3AqEx$S)7LEI%F`kn
zA+T14UPY>2xo}#Nxsy2_vYP9~k4-hf2(P2ybMF%RI}X-<dQuh~<*Q>QRMgBAMe%#!
ze%zlKgkMuNW5WBzi?yw^%TtlF{StZjtYjq0;!V5^8)r5kCceD-Jy|=nT5{#5$M?i^
zSd9t=(;^JNs*GvZPLo-X4ahE|`gGsx58vy>O=l*vOR67mn8@$3;3NQLlWCKp<CmzK
z`>VJ;R6AA9m9!xl2Ghf9d%EP{d|eZgwdY=uwe7K}B<*S+1ncJ;ARP|LO9D@GrPFwq
zh%vNM#o-WJa7>%Uz89U~o~)r2(pzj{3itGZ&?o!)icr0ImG)<3RL9mXdv@VZSK=E2
z&tmpm%)0FK;B_<~FpLX_4<DiJ;G;($zt8rg5#1$mP2IYzw&iIT?3wqN5W4COLeOKN
zzx(i-w%6>EveVwE&9gS5bGWZkfX~t0gL9TqL4Em=Dkq-|4&=@d(OjK*efge|0tFM`
zT;{9fw3rsD^^n%aeIqnW`DO8GS~7zf&R1~MgbuF9=Z!ha@?If-o1l2i^%6JmRc6mE
z^wNi9tN3(e9&cn}<v1p%ll<k|u<J4%Qh(l?wE46~Ul?ylYbqU_R$D4<Qu{Z@s78+4
z&`m~<Q&+uZky*WAh|UA}emxHM-I@7ni;A#E09q&86$P=6Gi|Zx!@l$&0@Kl?h;;gK
zD%#MtBUX@x`<#X|cq6M*Ma1=-CPNx6Ye!0K9jlfL<56K)K0Zye*$ov=#5N;$(F5)r
zj^lpK?kL&!Vxbp3hszfgp|$tP+88X)T-1s8jnt^%wMhvs8X*2!Om>LwI5q9qZ*Lhv
z{biWsx@xgdu=_rL5FE0mK;w!s-m5kX*VlFl_c+$Ne02yj3n$BK7o-mks;IRsxDZ4r
z%PS+)yW^*O+hB`ahcAIr!EHf-8q7oh!~Gp#{UHLG#V;}@Ll~M5w1)%G&^Amo1^ZGS
zMWbi<GYBn`$@=WD2<;EV-hPG`o1<_S2Drsp^V^8)SOBZhXQ~04I3stBjH`^Yqo_QJ
za9iOeWmyPtl1BuBdj~cF3x<rYTb#uYNEk8-3cF%ifx3*%!rEfZj7cw?Hk8tJ7GKR)
zFz%{qzu|#ziLa=E<7Gi?vM=x9VazhpmpIdL697)Z`03y3+)iz*y{OgUn!&>Y0e=}2
zVXLT3B;(S}a6Ne*o)i%WYa%M=V$iy}8?A5DrXm%WZ_~CGdU?zY<UU%FF~Y6cKp&~a
z$kC>Ra&?kfn+_rI@zazP#q3sK9_lXja!h-`DIz`&Lu%wPa%dmjhhvU0A@`Bfg{)1#
z-wIEJMA}fz7wCw-+JVo~EyupPgll_af@{uDwa~JeOaR3}w+brOjH3SfOqHHD;=wci
zT0wo5^)6vchOXXmk9Otmcb_K^(OL`Gmk;9b-b@J5r;jRe(Q=p5axyJts1r+vJHj*z
zkqeZVM=TDPyH^x9n=vVR`&+dAGyt1+ERsZES@#miEiN!+nks|W__7b4ozq&LPyf*H
z(Va_cM|GO*!r?V<tHa6OG@R)cHrOQZwpvoi7JA9T*OtpjFoRFrBa2PDkp1L4guIu*
zBXiW$>=cx1&Q=}AJ1~AF($g9O+bY<aT~c|~`;-Wsvv8gpJ4dN|ks<i9&Q6-Bb_6qm
zov1M6bymt)57xW6S?c<x9d2~7l!(wJ{1z3;CP(ZLiT<jRWqT+brv7xc#0O15q)(#q
z3=Sf4Vt6y1;bm(B-BsST`o2$UhIW^$Fd%z3VyK*JmDBxxRg!Ln*ZXE$Wv5+L)OJxM
zr)DZb<o6#?Vm4D5RH!P+AP!P;$z9t0ip7q1hmTpsH0v5R!&UJOEA%eqyK4x-;j-kU
zaG!ggNRfs7O*^y`>r|U>+64co3srizRA4X#XC`i?0C=@;*%r*^>{tNY;bzAS4|Mhg
z0AKIniCH5mX10cFfwVx-NcKqzL+OvhRuN6MZLgUQk^5GaKg8|8sIZ7;Ldw^DMD=60
z2)aQIt8rGQWrgL{Jf75;E~#<w4z1~gOj}H-5Uocx&~~ZtuTQFKk?9tr4c?3zeTF7v
z&CiM=cr(6;a6=zPZV|~b84BUWIBXkp25{#YxlC2oy@(0$uw}LC$n|X|p?RN6-HGYm
ze9DU4{y7!B(o07HGFj+8Cj*BTFR73$1&rbCIB7U;4_J8jm#?gKxFjrD<_8nqJS@`M
zCa{Ea6(;u5>;}7+nL`#>Y9YE&IY0N`+DDP5`%04eOsefv^vkBGR_I-Ula-Qb7Q~0X
zq<Z1QyufG!TQBwv=IzXmHhB*|ncg@y>RrGQ2NNS!H@*QP$<fB_v?4tBD=G^09h)w~
za8Hh-GiX-6I!L<EHM`;K#h@BCCt$Pi|HM~S4n1%UV)mzyK!GR1OGXf5j$Stj;*qw%
zx(y%^#EPf4co5%4Ye%$2h_KMz*qzdpd6#RGf|LDE2h%!5WMWpX7o*%zNF4G<+u9xs
z8WMKBTMUpp7@FkRUvMZ*Po<Q0!x25ujeTO9v|!d1+7cO1fpZ*E^y(;7^V>unZBqG}
z*9Z}bL^(0^CP%P#OKd+l8h3X)W(IdV=n@MWJ=--}o7Cn8JTYr{-2)?HWT>*nc3rc`
zxb0ePFirEZKGNBVHazmVrDQ5#UYdjBBy3mm^xDR~H>J*J>rxuYOMQVl`8uh;emyGk
zZTM~-ou-_8(wOT^oYsdt$oX7XENx?#pk}&+_(j*LGT55nZ^+gxBi69qY1^g`?sE6z
zJ$0Jscs3*N2b)o$`H}0Dc1&TuX7pkJs!ElQd~eFC2+9;|0~~a~Mcgr|@Ss-oJbDU@
zWXuhgX7NU$%`vA$Os|!(DIQW0#A|-&gyB51q4(x5=Le%TdAw>J3bh6=TcPZ@?Gi4n
zHz_v>ocp;Dvu;~3#yuH#+aX`7AwOp4mV9N{v<acTf20KMd1>&vE4%=aLe1)}S?c%y
zT<K8U9pmO_!J{GsEmvX@1oYMbN~e44%B!(crjnlrCB2++2=9mW8A=9D2IVUQ-Y?J0
zt(M0qcqz;-ETDG;P!_C^XMT8U?0sn(0>DKc5!JP&OF*O&(cqsQ(%}mzggU+R6hzkH
zp67dUwO4~S<Fe{1oCw2{8CH4O-NEFc$MPD=2{%ncx(c@E^d4WPTVd-REF1Pt<e1lo
zJTwU64}N_&_T~HVrApXBz9Q~wMS5`kZQ7Ikv}DZ|>lFkM4BC{~gY;lYv6-)#V23_Q
z@$<T8T+J7UdPb^<Tn4<mgy)Zcp}b47Pw(>E=Mfx7Qs^hn+S8^uHIrR7(m$t_UxQ8v
z#mjDYl=EAb!{jgn2ZOQ~5|!opi#Lw^mQFmy<N!`^4ngbQ{nFFu1`t9VSKdR_l?AUy
zcZvvy+##ainQTCbhVQg!l}3hmV~kAvLh0BkD5_=Glg>J1T|(ukJ5%M8-MZ59#`PC5
z?<jTJj8T3-Y=k<5;FlfYFbt4Zt%75aU4s3?U#U1@Ep{bXUD{n~bcU<jR^fngTu5B|
zYc&E1jz4R&Y$3Mbl4TH?aDCB;I5se5Tqs^U@l;aoE7mGyob!we)&KrYnhMey+|xbC
zA;+CkW9YY2)g<R1Au`;hq4ZoOENy%-q#_k>a0JL$RbL_NC;?l0Txz}gcgjA!HdJUU
zv<c$RT?M<EB^kmrY?TQ?U3^z#9;nbig8N48f_LE*_^=s>#Z|@xb?>{CMLnssMzdgE
z^#`ee)DjXXhq2<)k>2f9FzgNm!Q<~RT!O{j;S-vF$0dt>Qa#8P-bX(4E)n1>_o^W5
zFnbD_9_BodQyM%QxgYKxx<Y)HBk_5;+DD53Uh!G#&wfC;;E_0-NFTPcE1*sqnXuR&
zjk{uAv#}aFK!{JrB~ZfZ-0A^4Y7qqCalAgKQ&4s@U0Kv4VVnp6-@gU&O@K>85qg=Q
znnn82ze+2jPa3!}2ms;;j>+kqkmUk*qs(tvQuyGWQ747+jPf}7Z>hYZd%U#u(}|95
z80;<%9f>0V(<Rit^pN(0_2vS*s(EMB`;7J;Xs~VO<t(_f6?uS62dh>E`{{FFPt-Rb
zw#jksna<5hQHV%yc8bIs|DlpgiS;@HQF;9d?6+vM0|k$CBEqs{(GE)ygB?ih5Gum{
z(nnN`*sdgbND(!X6n4>@lEIhC_(3m;_JWkFcWIu47_0SmcZ!H#el#L#yYoSwTEW7%
z!uy5tE}|Crm*Dl3i-CiX<}MNTQ;$W2u4id!+LRfo&izt5oLNIO(2lf;mUareeA6;{
zmJ;jMsdY7NwntJ((^Q1hkCo#dap*w?@0IYNCWP9Gr%5}qJQi`99~p>IbI($30(q5T
zXfB+x+xU8Chj2PEtD2K<HLZ4|IupO3Gu8O>E@Luy?xr=`=ur=vF5&zml_07~?nv)=
zXOY@h8mmF(6pLiyY>?wZ_2Q?iMkCV4sMjOqEp1HbJpDPUFYzG*eMu0-tsjjza(jw&
z0n_%NYRtkBASQ5db(c0r`95Ttvgge+(?hSD^QA(bO{ZDp-1uCTw>C0V#btgR?r{`2
zn0Z5RgS8@IlJ*M948MaLEDqUZH_aaAEK=2yqH6@OSaMSlY5SVfq=v6S(H9??gNpo_
zS=4;wph#^cEB9pr!JM%E1UDiYPcv8%=^-OOuC0hrpWa7JDz1?l*)@dnW?P4%O_gkR
z3Z<K${}fSNMsxAFP@CL$cc|iawnROQ5_tU!wKq26E)+E|Na~jy20XTcaJ7BC?mtt>
z7de~{SF=ymX1FMdx)*6t4cikcU%SXPJX7TpVS<f63)A6<XKL1~n6`M@;u$Vh<>k}3
zkMCqC50Oc^eK{&(z3wF{p4CK$d&i#)vqp8pCu1{mdw81`0@wXInN_Hlxm{#^Ol6J;
z<Qs~6EVvO*NiQVLu-V@>@=E#J6sc$vhRw)5;|1|!E1I#jKX*yp170Qy;~<!783cJ~
zdCO@K^2W}AV&2Q>X;hn#d&kR_tUM16qFZh|q%VwoQ$Y$lo^mhK+AcJ1-CbH+`Th@R
zEv1LlhgZtI17<>qeY!;ij4~%gvs20jU!je#Th)E`jcXM0F0)CvD}uW$Cv`G<crf5*
zQF(~|HR%{6y0RJE{lx-r@5$bqJ=b>soK~22hp_pEvf~}6RstD`f8Dq>F0v=ngKO?m
z{lHn;Qi?4k$t*iHP6ncjHMU9JGhU@F=S0PR&5Ji%72|hgSy4o@`(%@S+(t$?JK-m{
zrI>bp6K5bWqaws3Dh%J|)ek{s`H{{{&qa1uZH|Yxh9Mer8&)kh=GC@c_sZX<3|}T6
zNReWwL+VTl?(*59lYlPc9A)<(9a4VB9Mv7$1Qy>L!+Vb~6M)9g$Tj`JUU9V|bT|>B
z6F^eIarP@Q6PO8MdeU5B9<`xHR5-|)haZ9MvedrMQR$`o&=gX4XW0B<7oJcw7~utC
zQZ>%I(`P1y$Y}?tNJ(OD`cOB{)1ogK2cnG%l|v4SYZo_2RTA8iVeS4Qu3g{3*`yH3
z7TJ^vWU<XTH^Qs9ddO30_}qiO9o}k{*DjL%StXnnE8k$e-0PK8NRvY1oHlK&y*m|r
zO|cTjbCTW5<CNvs$09LCw0@ZFLjQ^RQ9eQ9t||D$sN(5>Szu{BB!8O{*E4(_ih{Q;
zFlM2xa*O<J${=?K_Q&>l?!?;Md1uC_EWX-;TMR%Mms-ay(nfGZ#K%88KmH<`JPhp;
z^gp?3@?Jp?p|bQrCbcY2qcVc+EVIYkR^mS?1a3cA`11*=Qt=gsI&G4tBT7j4Cb$<J
zqIL8gT9|y(uG{LjCn>GK1<f&`(0l0aP@)@?TR9RTccyUrP6*xZ3DU-}lbi;x4}DCS
z)K8)J2)eE{I2e*O6GCmrVihxTpGfX5@wDQuFS&=w$;qM6yO#GBArG8`3-J#gmdeB{
zFs-^7lUf(OR%&a0)Q;RI?vmFCQK4zw?B>|(jNJZmk2YkouDZ>N2|p+%sqnb?b;`>Q
zaDO=x*Z64K{lZ@@=a6g%eS55vd85rjVcqMMQmvIg0)OP%V{MLsV59AdI&8=oarelk
z&?i=n-6Etb3i=u%t;>($&$T-n>JnidRiR?!><8+-&){1ZT;J<hZcMvv)M4_siJc+u
ze)@XwtB>|K|4_AEs$8a36VniVS~87Pp_hVW(f-;gR3?>Lv_W2uLN7W!Szqhrmr5^1
z>!Vqc-6qY{kKs=iM+K?~p|7PA^a7Qz;lL{=nrRWg*d^%WuA23RlWe6Py$IW86#b{m
z)X27QR)VhF=G&}&W~%aWEd`)~v~-+5YG>|jh4;TRa%Z0<0DgAEE0o3>5<-v2jkpP6
z`?lrEUQ+G`?l|Z-?MM*!@5QpkvTX}kKF7I;Q2au>%qQ>liU!Pf;rffil{>xrK$ax9
zad*`Gb18eTA^`A3wYvfU#yINyq2{&5o&!^wtmVF<x?;Bn&Cy=*=8=@LAIE-MZC2q4
z5%4=JRZy%>Xl_?-<Sn9fdO{Aur|P%N<uU<AqMWBm!rrtSip)upAdd@+$|_-%jZ^N`
zeCkTs_b$!^;g9!njuE32-oILfrgsTX$HkLxpOtHRtH^DwG|f=9lxsxHY?u0L-=K8l
zBG8e(hj4Vvq0o-pJu;!&4;cm@LdABhX@}-E)vZk0Ng38_#I<oHO!(b#r1E7uxNVDP
z+t2rN?g$_y1XExM6I=ZJORXm3*php-G}`8A4Bpv;AI(^*g)Dw^q!|}mW?DUY9g}z?
z_|ngWh}C?wiYHy}w{*DH!$zX>dX_6T?Qk0{nVe=iH`}u*+Z6sv{Yd5FG0@p->F9Nc
zUrcle!bjJrI8Y9_pX9X_JC4ngy(XWV6w3IFD^@?DGp_VJW9<2mv<zWYEgR?%p4mtz
z2Q?VIB4}4Dx<?o(;UOO=?vkSKB~kF@IWk91el#w{&2Li11Bm<v9Vo}NGjd0&oy)w|
z>>!>wY!}3h5_`v5)nJV;k#9dMx9J3H1u$w@60TF}3+7C}4c@hf5T5rsLI@vR1!IBy
zUmd;fg}OQnalvYQdazxjTHP5)hyLww!m(GaR6P-x3AL_6>fJTH`hH?eiiMDJv6t^x
z%Km&(XkNHZy8|D%MHBBx#MZbfBDP3)Hzvr>I7TXYkr~TIDw?HqOC7Af;^rbQ506Um
zJ$2CBH$Nu@;kaYdx#FXuNEX{Ar8m^UqHhn5OWC2vB`6IKAYBRDbGsCtl|<^x_an_J
zO|YX<c-wlRl(9G4;6-r<YY))rZfNB3)COLG$T&01^lAHw?2JNq)rrc0D1mkul`fuY
zFNOq8ttAnY!hRv<q+Gv@EYFo%+`7<o2$vr@Zj#+l2aT_RVahzrxZv)4vPx)I^zacX
z&-EC4`t&cZ4(I79g6Bh9a?7Yi7+laLjI!k2G^oM0XvPHn*IF%wHo9X%ieKI>)IA!r
z$HF;MEtwW6en(HxTJCD~LNc~**ZV*_mZUbCHDp)e31c$mPbS+zW3~&;5A<mRY2E$t
z9r4XhSZ7Rdcjg<{DU_`?6z_vWDnCpW6XV&zQJ8%{bYYNU)%GZ!-nd3`%x87(1bNGu
zrEPH1NHBq+@pxw{+&-^dIcVwDR@ePW6&2v1_R<t!c1qp7O4?E;?e*&Cy`&(Rh^xa^
z1I<!@vC{GV(I-l3m!hvJO4c5jqKzuEJg(*G!t4^f#~nWHQuPYIr*E-M**4%(`P;+?
z6G?1o_%^ds5MQ!M`^;_?gN>@4Z@l{w-AQ=~ydH3krA6p1tSQ~ZZF65!bc1T`f_}qh
zt=3oWt>WXBWJgy9$@dZNAkb9-2+NuKwi8ccs!tpy*b=$76}&}({rDG#v_C~fze~ow
zDgyWmMP6h)WUyU6E|Pw7i%1+*k2f6MTX-7O3DrKNW9^`o)9e%qlUudzG0)8UjXuoA
z5$B|*#zPp#KpTxxI(?f`wC8#Q?p)6c!?oliEu(^em)7%W1y22KCZ*(%)0A>tR%jNg
z3v%Aj*+?B>q2_iW^Z_O4S+Zm$WUZE>ztlnL!5ea8PPYP`C4ZYZ`BGB%Ow_LGqk{UT
zv$QR=HGuFvxkKMB+aby|qnYYsl8sQ7pf0If8VzZ{K+icVcU(wB-+IT05RHn|{gu*S
z(e)T0R$&0H(u5#B`j*{eS}B7qJ(YZ`t^Ydt8$A(?F~%qKD9cg1;Qm_c*d%MK-FNSi
z^@z8A>)ji3<iTB#I(2bhSif#U$X)t2X%f$0b<8H;kNCaWDX7Q3U8~S~q2HPE(ht$=
z$1Xv->RqZbx>aW5J=Env-V%woxK$}-{wmj8285nGvY6x#-%6Vmq5U1@;bmY~XptG0
zk{6yWQg{r`h2nA+v<SlC?@l1D!Z%3<5Mb(%qOD03T9@$-c~nXkzgOFAX90iDAsMN&
z69J_wxLU23XB4Q&@6C}Exw}^8f#2-<J<F#mhx0zU#a~5WsGj@GPTAO6VPyhp7g4{Y
zB4?Sq|E^TPdPXYinRQsVq_Vbws-41ZzjH)Uv8g=L27m1AJFmNU(?}8TnnwDNL$pPx
zbZu9)b8Kj}&s$-;!C$h#T0y?tsfob0Tzj%~mEN`IDP5jv+v9ZoM;J2rnvR5Fly;`S
zShX;pM}vo&BKSu2Bcmk3yW_%cQrU7AEcJ$TnM+$Ld%F8@0)+KitIqqd>KE>8(~gVZ
z5s#&44Sc>%P|MS(f;6Ioc>Bt%DuREf*7NNl;uxyDeTMHmAsG9gFGAJ9WFKPCv<TWs
zsp!4K_#%0i6umo%0xc8}w=>(NX!1hUM8pyCBJddJEu*4-`XjE}u}Nf;3NlEgOj4Q%
zr4LU`3uyK5NX_gNBDEb#EKxCP`(7e`oH1lWiK9}z?PCeu0Rtb(D6!~T{P&M*YwN^=
z>@YMJTeQO1G=;NMj!rIqU}iN}OxgvlLN9Hyar!1)o^afFLJM-F)(?f|`_P$|kTIXI
z(w;AWo9vDD0T*YJ(VcWf<daonQgNS8X|q|7AW(;wIJ8CuH_wy3R^rfs4|(~Hqs{KA
z`QZV4KdCy{XIg~Kj~%<Zhq%-&YB>{vKB?8BcB1ouk8gVcdb{ymgYwXZRW&%zVu(uS
zq0dO8W8@H?ONp50w+Qe#E{q;wGh8kNJj`b;?Y%D9Lmp@x$MDk335`<~H4C5Leoi}*
zzx;&|h1-yjVIE)1qZ{BN;-;uNdDg=ZZi+^xh3sx<gY-}^lOjsxG8M^7z!nu1AlPC=
z1(3(qGu&fquXdhMtHT9+;Mwwc;TKZX?Q7KVF}rmGc|6Y}a}@0FyISI0r0sQir|GJW
zOO>H73d3|3#}$VMI6YlO@V0(gmBE(3+IJ6@2>x_1R1;);;AIxqG4<s+VI_8y$=4ZP
z8a$rhkJF6`;|o;)j}mE_lXy%JfAm$Am=+O8cbq#{%T)M0GZ0Va27kcqxePHIGcM$o
zd`-zxT#)DvxMPxdrTL~^urK+#)=JDmz7pKo!;y}<!|W97Uwl(*#g)$L4IcJaYzRGQ
zQQU2%5P8#%vl2<#u;O)g_viU5G%FE(6PBO2QdoQOupZ;+!0eQgZ(Oay#aSi0HI^dI
zh3hrJ872#Ud(@n=*QPzkkl7{NZoDSS)$h(ZlBF-tz0?SgV*Ws?S2HeE^WRbua<ruJ
zewz%T&rOr`i9zmPJ#q6?@!s<2{FcLs@KL5B1aH`-gl$FdtjeAt$Tr1$W`CODDfd;&
z704>2Hh)J+!lm-xtZ)Z}^(CY|05{x>3XS8gRa$s%!1qGJ&y^Mj%Nz0iytHH8Wb^IL
z!;<e3vhP*$^$xJm6GLXZVBP**6^1pj+Mo2;Q{nZwAHGw<32eB|QW7~hz3OO=95NF^
z`Sk0RLxUlQ4@wkEaJ&j;RM0=H)k3<6St1>Ulzi+4CCui5oFOu(;#Tfx!-)Lzeot2(
zeIhC=6kC2Elw*{96*}Oq7{z;=;(G+r0e3yd%yuc>?<N(vfhKsC)0!<(<6&1bZfH^0
z!}Bln+Fmd}vOM>_+3~i?Q}K2zF$d+h=6i8bz_bYRH*Rs23Y>8@h>S(o*kWk_pGzFp
z%wuU<#x3|hOma32@GhZT{e^PiYY^K5cLV7_$<aX6-FYB+yxk`l;_l1dC8wB>0}%Kr
zF6L3F*o3BVQ9>AB()U**F%{@nWgV8-bTFR-GHWqSKEaHhSfkJfl)5yC$xcHZblnDC
z1R@=xg0;UCRn+yl;jQ5OQwK_y;O~38)bpKREKxqC0>7VWk>cOqp_*n7J#Z1AL2jT^
zLoA4twS;{0JR{!ejo>xaq)=Zpp<H4r2xC+-Tphm#qk&>Uc9PrBYubhQTa-!E_-(j_
z$GCgM;MTL`4u(i0c)wkUeeAa?x&4H6!FwqQ`J#NiI*@UO!dpk+i=t*s=so;9p*uw-
zh+^)ts7K4+rutQIP)5)AQK>_aKR$J(JOX|5&6prgYK2gKLTNKv^oKvFPNuB_x>RT;
zrQX7Owe2{h2+pPK357qh@DiX|6y3$W6po0r3xRX)iwWXa@aX+KIs8Z?9U;732;QuO
zvxqbd(Xy-eX1q*c#SM@Q5dt$V^$x#Z1gnFNy$5}uzC+Mn^FTv%d!wseklOzoHX4&$
zaDY5bahc!-O=_S7zodi%q0#TE^qo??|AQfaj4SVzH)8K8^-~0|MX0R(t5UP$YmFOU
zb>}-WMiGigAz`n?D*H^AP<!Ful&V;$H;mNAF`Wu!2sABH_1B(6d}W-DWC+FyflL1G
zWU++2N0Q=+N7hd-s}0Fx2eQ%Z6nY2$L+RR?+AqR%=E?)bMf8_(M1Lh!Z<lHVTHQ10
z?#CEo9u+B^RHQ^yJ;`G!)n*o2Yv#iup=W`QmLr-h@Vm8~Qcm#d5@fB0!-L$g_TIP-
zJ}6#py6Pg~DT4%uizbEWJN_xm<98_FukvD`@B0!Y=9}$O_g9aris>>5h8nUBsw~Jx
zMGy==J&d=l04(ZZ5Vyd;5QFrOBoem>*`ZeH=$;-gjKOEIN`Mj7Ao+oQ@#6(fzHE5G
zW~LJoDrAqR#W_K~{e^zY5Hul;{$dlZP}4^zW8N;UKCHlG9~Am=k-_YgiZ99t0WqGS
zbIGIfDajjkE6GF|09u6DhqF<l-s)pw`es>2VNK_{0Sf+^F`@9@rz<7t5<id8xU@Hg
zJb6zKu@XzNT*E~LBDq~i-J&Et@`lcBNG6UQqZFBE2-g4w`_z0D?^l=8w*(ZSEd>#8
z&=lO2EXEcTBcR`CQRTVXK)zHucAEE?dkbZxUSs<Wpz{7{=V`fv$M@pC&kSJQ?xc};
zB%Q&-wnLAaw}z2xfoxilYk`N5t@w@f6w7iJU+rbX)-ff<Hq%)v?OuV=k`jrK_8(m?
ztt#V9yKVdt&+|$^Js%D9`VZ^jaHvCS%-dUQ#)1LSHUxCwg?DzCHmUbBtslkr#-8GP
zB8m@ho+iBssXa1NrJ&oL=m6}6+!Vx{qw_+5y&8<ok;j>}kg6f4cmU!rJ7Bxywopa9
z2L~2rGY7&Ad_XXl>4wl=DMm(=2lleYQL%fV)gk0C>YZ?>WOs;u{mpVzpYHvrJYFM8
z+3QqR_KF!5J=~}Is5{)X3chMDxbOZC)nPGqU$`z2Ii;+a?NayV{gnm`(CXz#eZ7#F
z($ON?_a&Qy$PPIfb{}uXh30EtDzy2MgsR0Wfsd*BXrgHs%*j`%G<^LZo#cXK@la%e
zHrEtE;eK(wYbWtw%43AI=?=aGxwgu3{i~F9Uw#k~Dd-~1!8=kaZl$ab)|gx<9`1-_
z$)H>nD8xMC3QJlligiLt`iORqN~gbkbWP1!9fdn8+)_uKy*hyW^Q07KMh_No(E}kI
z(<P03)f{aspH|@_nY?tcha2nsm|~|QU?DLBA5P(17{N<e=gKHa-`}!}qhsba5#To}
zh?rJ#?%*w^Rn4RzKl5Ofo>hKVkhQbe$8QLbv{TJ3Q|#lw%KcH0ojs7pGr*&6`dbJg
z05W?z6u#m1Sinv!Vl?RVVjs^-xKA1M)Ph-u5iQJd4p`tx4l|mw3cCWVcPoH&r?=&7
zA9@i<66o4%Qc*+X<TQ(FhE+xNqN0Vtau1AS6FD}cf_&W}s#orHe`Fn-PVgCJz7`z3
zBXWU<r1Qkv50Y(M$oC&AY+_^sLm}HH$tr^SF;}JD3`A|A5WzMxCb&O$b?SL#NgWau
z_7$b>-HTNtI<M$Uu1suRiM0jmJ1h*NbB15x8=Z6u<Jusmm`P#!&})==PxmkqJHUYO
z5a!qKk@$41RdMeX32eX~cRgfeXZd!?3;gdhtNgSf?em>#80NKBf<MV$|7uy)kkV{E
zQ3;wIi;Sfm%rd`fcaNDAMu+{EHeHoA;GT!YSz6_=s-N**(GA0pE0~wXKnHMHy9d{f
zl#a$3!Ya~FB&V9_LpA2@k>um5rd<R(aES`YY7O!r$GW8=>d-Y4ucu-nc!gjNWSj9`
zq1-YCfBu9IZ3H`TL#|D@pQKXA?5R^pO0{E32&9@Wsc^bhw3zd{hs#67Ubn4QKBIzm
znWCriNvmzy?UZ^qY5kaBlxdvA8kh3k*Navougt+T@eY(T45(WA%1osqwa-&3z5{2^
zt@3lLHPya+l~OR#o3}B+yQ5wEl6{Pm{1Cy-Ure>HQ>(HUYS_|}Hd5&AGZRAT38k3r
zMt#N2a#oFuCohv`cn>2U;NbUMW~mi$<}y`}odtjO;9l&onx_Sq9I=P4nHIrZyu4lw
z(Oqky%xh~8rFv=?>`Ps(K|IBzZ1lPUQqmF{HW?qyvNyj0%Q~3XI}5W@$hECdVImLq
z>b}-1l)1WA+jO{8w?2x${Nvf#_ir1>S2Lr6e(y@H#*3Q2>r<Z$J;7PZBjS)nW>V^3
zbA-_G?AU)byQJX#M=K)^sazfSu0y1=_S}hLNSPwr^NL*Gk#edd&aL~+2mHYs%~QBS
zM^3LdXZV`{>-}#rC7*XX!zs)BJ4r7!4g!$0jXpNH8UHfdMeMe<Dn9P*jO6)l1y-EU
zL8&M(++l6ZZ&Pr%%j&0_Gg<(rSf?gR9{}nuJF8|$%4}}s64F#h?g@FinW-q|diSmL
z3~@}{>2U3n?`U@Bhu2Z+5H@UW+yAVSHfGhZldmplqQ%QJGa<Mq9HVvUe!04DSwexR
zfeVD>R|IKx!u#o5hYy6b_a9q_w^fi?uY@lgbP4_O<5mAP9A*{E@*yX5!FZ5t-jzu@
zTx7j>nuU+A3P&RQ2w1S;7CSIrn&TwPec&+6Xs<<53m&km<@i$vKsH#yjmL=*6Mq52
z63$a&S87rOTj=PQ8bf-w>OUXdi)S)fUpAg2>$uGPGjp>9;x&jlygax$e>6U(OCcXs
z-^)(W?gGCfN=I=k(Q)pGjM5!PJI?v8ij!cn4!uQ8T7-DXF{x5V?lF0IBSgL;WWV(k
zk;et3wbtH<`Yxe*%}Hu#iKqc}QJ^Zf?gsWN-}^@He0o!X3P=UsT{F9c=p9Pjp5>jd
zkN4#X?+ow7A+BwQi*qHVAJQCBC<tFwuurDVgz&iM&Ds#j&#qP)c^$1^71lyGQM5vW
z8d6vy5$L2)I%<Pbbn~eO?9!5*p*GZYr5Y=K>fJ2=O)-kn=W#&KGec63RscLQ+H5+6
z`OPXsHb!3_KAm&lUUsZNcA0V1aH$5`gAF3srRmYL<3rnVVYOekwww2L{$|-!BG|`R
z{z7?HWt!=}OpR9nz4_v1D^p9(eWAQoCLw3L0KV@R2uXn?Jhik^-RY$3ZKFC}Ii~`I
zMrwE@+q7fZxiVu=O}K4%F~cg@=V%L$P`6QTGa+;j?$y?FrQqr=FUvl(N}r9}4R&<$
zPB*O)AZiy@cRH3f^Y(yy7+}YZ?xHat^8Uf^5h4wtTMuP3A;jkONjqY_maM{^-zMm9
zI9r?FM_;PJq<-~j&PUDQcpQ*jr}@BzRf4WGHwJNby5qsR*TV6j&~=O!-WC+{_pK%Z
z00&3@5CUc$N`g!VAkqy$7oP5HEyH2EvD2M4Guz}NyO#zqd($@r%$m=Xu86`oj<YKY
z;{fxG0j!37H-x|kiuF}S2B2B<4<YDn5h!nE0mb);16&SH;RD4U#73qoDLzxYU2HqE
ziD=@peowqv*3V6|7I1ZZ&(FbpC&+?}Z~OJVPb!cIEHA$4*P~Q?&qxh?rP$T5%^N$z
zg)#8Jony0?p5X<vU#dC7jmu2$tObin*ee2<wVS~ro`a!e^vv9f6GbW#**+~p!G%Eq
zN#+W6`hu8&`wgPb)--NrEtFYTKL8Zle9}E*`xeM_$PoCj4uve1PFe~zB}}ra1k%lz
zRJmjNRfX$Ol%vK>NWE9STL*7~wQkkuNNyY5H|A?+ZBpSPSCQsHwW4~@EyB6LHGfP<
z%sp3U0z2vvepi3jz8viER?1(2#T2_fcgXu~H^y~_&kS)&SDJ`t<kkvSL;zJ{n=ror
z11bQArGsZrb(KQT6nsZc3W1k?u#PspsrcYuB$iMr4;TBl9f?fM%jpXzrbQ^-=P1@F
zk%JnVZw@`(!6%lH`A#r@@KJ3H?bc!0@YVHYX$ByB-w&R81gPQb2#{wYc<2!zPet&}
zBS1dwLO41C<hcj|=?IXgQv{?VKpwQ%@<o6gx`v}40pbE6ngl;T3gzhtE`AhhXV*BC
zV_oerR35XdV?a56jS}S(*!3~YL#>0Lm|2Q6loO^mdoIpK=^Yq8`(!_$Y+rYeOP4*q
zL%S}1L>khAYsW!gAHR`P-DWpgdh-A--Afvzr@SAt)bIS1atYqge?E9DZ@<t9HRDt2
z>N=9;kmf@j%Q;<e4}l~L0#C(KKYLp<a=*~Q%CF!sGMnAvDZ+=rM}(C?sZzuiXF`O1
z*{4Nl-!y(Od$4Jdl2@c-kVtJ(^!(3i%Lxi8f^T@nHI5GA2Wn|Y9vsK(t&GS_Q#CC@
zc;8Eu0h}(-@5p^)yUbDpVICIW2yJJJ)ZC^NA}ENJ;elS+j7sUI&nq7U6!|^@_06w?
zkJH)PH1uJ)%lERU%LTB)r3i<OP5EUXkd=_X35fBh{vT4elKAbp)(;9sZP;cwU++L{
zhEsMnk@0;UX_U>8Fe*(cd{LXkJ>w6!eVx8yekC4>b#gmQMJkMI#h5_89=>f`LqG=K
z9Uui5tuSM!a?}w5S$!&t#62QZ4~<*4MafZaBa_WS{SC^+%Tp@bCfKg%5QIrZtlJI<
zaCCWiP07|%{Ow<sX4I|co36Nb$LolZWa~Bxy!*HG!2~Cz>IGj-XPZqQ^iey&awsPb
zemPWkV+gGHdh3{QxYKdMNu|#R=k-Z7FeHcZa@R}<@{7I}h{rEUns(?j5?>P)?Pbsw
zK|fxrc^t`m2vpN0rMD|qhT{3KngN%?u5KrAva(LLKx9`E0{eYkr1b0pJloGLg7X)}
z)mx5!-j(6%$7U+Iqv+cx<{OsdZSogSQT3gTZ-lQdN!Fa)QtQaeMeYWip_)}tnwxSu
zq|WoNa6L1O?(CNth8{4IDre+Y3dBoc$<#QhS&LMEpOQ(4z;D$@(}>g%%rV=g;v?U5
za)iU$1)owZ6IU7Rw!mCz>mGlV(tsT_?a=Jb*+G2QliQ-vAKV_~dsfXZr0Iu%?niuk
z>DxAzQI{}y_IHF)hIf&es@=T4)jD)=lpF{VCW)bjp>YUBNyzLX?r?!9P`KR=%EGq0
zH9F%Sak!9Aw85_Pv@zOXpHo2_Jlk!+e1o}bdAV(th7N0kV@QML!U8<;vf8*<kq~V2
zzOnbURr@g-6(ob<*L`M82yFSTs+SwSKDR)=SY-DfxM6(#UUn7b#~wW5-A9dV*r#cS
zKF0I>l}ZYK&iFklY=3v1vgiE=F1ZLhe&nZAvM#>lKjRUj%$cwe>n~D91tI#!>m6}<
z!5MrV$2Z4uAy-rLWlx_af0D;c3a|ZdP@eo<fc8M2BE#yKt#vpQtU*s+fDQZ=X44{k
zpLL`1cRJhPl71jsgAVLUXBbncHIrr`_r9B=WHFSU2tNPILlc`IRV7~e0|Of%H>_}h
zMbcEG0Gl8+&<vTi{hSyIFuGmA@IVovIsh>`y>~_pz{No|N?x^B`w#Y79-SQX0Ooo(
z;<6=N2nu{QH`!fz$6k66!hye;xpVHdkeEVjrh3uC_FEGAK%Q6~2fSrqL0$WOGXW1C
zRr8tFdOzLpFbGB+H*ml;5SJM?q8UzTo@{+I*o)lVcgjc&DVI5y5zZV%-g|$na&u4$
zdm1NU4~x=~`>8HV2p^Tm?Qj!cuSJ=WJAT*&AWl)I2jAJyioBtinY(0z#fl5n50@TK
zctnza{K84p+t)qJNkrcs?7k?S9TN2>Q|8fdvbN-!!1s`0F3LHhZMx|Z+ob?lXTB?^
zAW8Y&w8Q0l2SdArxrR5030pn$-p>5ewxn17#$Hz;TH};8!znAS9GgYbRD{NHw~KaS
zQR->Ys!_(Bn&}c6H|-HEn`3@lXdHXTZplSYG;4){qUn<QKdeKC%p3z{M$TEf^nrhW
z;5A3#B-;<t;&GvR@UKKlM2PjEDA?xMlYlNCVyhMG>-xHf1N03yE0@|_*sH-1a9+OR
zd1-sg6<p-!+aDs{kAACS!kJ(>Vb_Q-YhC&(YwKW{r_>k}s-!UxK<SK)`wFLoJjM}Q
zc5^BUg%IM)jyypvA%vJclmsQ}I|HEF9l$r9ksJDu?2$cF3TUI_2681$u#R}Pf7yxT
zGh4JL5XI5W7xf@jOFMO`mPbmsV>&KM`l~97Jp>KXc+W#2Ug0bp>D&Cy>iOA|s&Ba;
zORfCU8SXZXJje;#ZG-X%uIt%p#w}0V&-BX^WdZ>$MASc85!FyuB}uA%<C(el+_jhW
zrUZ-^!obJMnJD0BA?7kI$nqTHXXBuK#X-tOWtyc~FVyCF6ucXybe!~%2XBH}1YtrE
z6C3_QnM7{d@jboz*e`c4^f8eqT^m5=yN%YMmEesJih`rFmajx>X(x>V`bZx>og(<>
z{!Kf^IxkQSRw!q^Z0k^o1Mp%Qcmp+i0~F5))IZS6jCe;7f;6Jzfa(o)<<z<L!n(Xz
z$nGuzUZH||tllyvp<$Z`5U2Bku<ak(qOE!ghwX}QfC9taN{<4=w)g08j<jEI<*fF1
zb$S%m;bG!b=+&F7?c8_E=*5*eo@(`S8^#iQLM<+ZTzV_98<E!CudS>@`G#5IF9_w?
zQ&3)LCWYdLht-nOWxgjydGQpK7nv@h_>(CpXLEtfFvJ_p6r>L}6GC$BKN|}@p^7JU
zfb?x?q<I(Ivu!v(jIqnfCA);|L64|S*}FvOyx;`Aru{$Q`aj+)d@FK>&p_FrzpLF?
zO^Ew2B2aC@_@^pBoG{;1oZ-wH;Rv47z1`987RT6|mGCILMw<!YG5)AF)(#602;N56
zQ4v*u8vykcz;Xo{5=8+sr;-eTy1Y?|PW_ik#!h&U@1UCpa8%N69={PuMSJEvF|@i;
zo%Zlvyl4daq74p7<BVfeq#1ZZrNZ$T8Q1@z?!5!!ysEt6$6;nMePCHIu&~2q<H!cY
z$URiW-N8-<+er)wv1DmvO{_A}NG_?$(n1TO2QaKCflybwl!TUu9=doTBy_=2Lf6tZ
zzyjYn=l;&Q_nGIJ(MUGmzHk1BJomZxcgj8Y+;ck}sj*#<-1CaXh3<wEbrC7)m_m1B
zHQ=w}%2*8qV;VETU<;wuN^s3^dXrXZo4Fwx)u2&SA@9y;v*>6^W?_wDooXK)oG!mA
zb$^AY*S<B1s06C_UIOYg2};8fe`&RA0)eSX+e<Sv0_E23CckpPd(kN>6=u<b2@IL9
z@!L%kl<Qh~jD0p8M`;2S_GXk4&xwicYIK%(0Hj_<P|}L?lsN2gt_$d^vP#8jDQL~&
zKIU;{98BsCRv+}Khw-G{vk9G`xAX6mZeoKG;c4lt%xL=>R~zs%c^;p-dpa3Ju}cZi
zA5ao92|GVza*~yf1XQAF!2Ia$;5ZJ4X^YroDyA*c0avez<^XkYX>&-8oK<XpQp1bQ
z1Gu3vnq#X1?87n8WX-5Y@epbhL&Gw_m<GTD?x9swL%8xxZJK06E!H}(_sA(}7mwzF
zxnHq~3v34_EAJT?IeVCntW@PnG`bTc>O#J^X#Ok@XMD`9ugz)8@IuL9#ctlpKvNr2
zDE=pdai<5=xA<b+wD0(E*=?DvMbSN-3O3=dJ~Q?PD8iS+4qur!E+O};@1qJ##L39c
z&3b#`cR<U~USLWn6?7|b{V1TG9M8_svjDVNBbo%QzZgya2#=(AjmvjL(S5<}gO%x_
zzEL`kL><=n<rYBDrh7`bCP;9@-5{ZFmECSnS!rjQ8eE1~JSd6wrfGF$sy&<N+C7;z
zqFr8@k&GLQ0RwxnXxE3DamFdGA2;n&<X--x>x#2Z-X+JA!fvIp7+qdb+7#s=+<7Ww
zqx0KqUg0?L8f#n0Fe}=5vvt&k@>7PxV>2y8&9%rC={p$@!_C#n;P_R9Ul|fjtfj3V
zB*kJV8D`F*Z2v=0b&aIbSvb#5wa1+}sG{ibKWXh#x&$j%_-z+%$}gOeu+tDUGPi23
z+Q2B5h<S)00x=8iGK-hXnw8CLa-X`*J(7C;Br7fOun|$(vck$yS93HkJ5r&2&6Jq8
zc?7B%*+<i6LU~p6urAqjqbii};JoUSYuC84iE1@Uk6{pb6uojD2<?^P5OgYn0>E*U
z{kwwJi7BkVfx<%dgp)a@3O}8b<)_A-%9M#L)8(Wz^{{C2JqLD<C|mJ5Yruk13;J@U
zmQSe+rdF%cDRi2C9tWXE|Fh~rc4+&fK`k+0CX(|eVsnDp(fVqr%G9@O97PcRq%u%X
z@PN}~a1bWc!aR10GpLQUz;zzYfbvI9OSMP|p#tg{J*Dn-;irnH0rQjP3dcd5zFxrI
zLz>dZJ^<IszChZMo=GC(!L{tc!`(EiC;d&)25nio_lX=n4b+pN5bxxq!&fwJh~~h?
z<)^2zqqsgs&w`<%?a}rXCvnDLcUAN@4#dA}Q)HTnrH>@-%U_X^zD6SmH35yaa<(4f
zu{oA-Z(ij9IPfR{)9wq|noQ$3>)dcMo+gbn&Tu!}lS;xtoU?M$Z*Uia_^nc*`cIBY
z7YOVtY|7&|t%%6^DXtbje#>yO2u{g<upJlRV%nq`Rl#@d(aJx~r%EAR*pp7oPZN8L
zTBUEaclgK<@4y|2#sTpDb_F`p?=~ES(&+Fz7?O&O1w(XqZi-mgSNQu^Iw@l(U_AqJ
zSaUa-50Re++5dPf$TwtLN|osF@K&1XjHZ$QNKx6QJ>eq%hyDvjUu7%NBg=Kvx5%UD
z<0$+;s}+RK`Aer6u9j7L4sEW`*(0iTG7jC9nQ`<;ArKZf-Ub)f(jE!nDd;hId`?_;
z6?UqM%6uYES2?pOcgvGWNc5g79C?*fYn?1I>$`&_SmUJVU#rr{EA>Lo`u2pC#I`}n
z{0SAH#k8M8i^`E7u~7}JW+B>47j+Ds>2{=V9P6VO=AtUtIc=S?h3G1{emKqqSAsBM
zO`6munxsJ*^j1f5H=Ws`V=W+A1gU>hl39lICxGh;Zygw;cb}$^`LqqnXYVlY-Dg&U
zizO3g##OrHxLKVA7n<UUwXGBzCMH+VIZ^SPMG$+t62%ObnFr=j)anvoQu%wksRN^J
zz;r*w6oB6GIF-UF(;o<@Yokb75-OPZaQ6oH7jA}yWqII0H(p<taW1y%-hT+p0%GP<
z95}=bIpat-ngUCGj|Xe>Q&ColjIL{;Yiw(cFm*k`M^pvTFE%1xzsJg^1ym;q)t|{H
zyjHZkT^%#P{qYl2I6gK1MpYot11aP%bXo^5HnMG)c6aa%2DB9)h}}<AWS8F1oY_Z`
z&?9v72#Wkti+UN%o9>}YkE1zcxZ_En!Rw>a;<^gmcQ{XwxY0Y?%)xHk<XD&mV)@BH
zu47@_rp<g{tBTK`YnW{h-?Jc6%^=UCIvYW9UV$wl%L^K3JyI@L9qt4&{j7Or0iHvi
zr<~b<hv7{WAJMhUC1lvM5gB>8mbd;|H|>HoAMDpFXxMSr1%PFn8&TXsZ7h$kmo?0_
zhXz``(Kx>UzG1$SyR9~gwm5o+@pnmrzmmNDgwKVoDyLW&J<rs<cXRzw+F=8<1G<ER
z@r%GcbDQE*$v}(RP5Gsg1fO)--zI9TQ3(+5P^h$=^1#*<a=d=K5+z6J&(Eio+bCVe
zBnn)^-7@{R<b>N3PpXN-i6#{DEMV8MA=kptObI@Jxj{C*Q$QxWW|85>vz1o~b!M;d
z*UI;~U7>TaBw6*K6L9)66Fo&NM|^1UK1h-SK9jK|Io>lBOOhq~=~$91*3ZO}<X{h-
zLI~jHSPxAv1xfBu53m1!8;*<Em(`ewc$x@66HsA3k$~d;Fl`NYma&@@JCau^(pgFA
zQng@RrLeZK4`~{DzP)7nmaTonoo)rlxcyu_)pk|koUx4SgyRO!8xQ1O2qL?*@TgZK
zlf(;Y-O53_64~yOm<8=u9a0{Sbl2Pw3L^T(%WSxpktg%`hB``rQ;_cNo}k1xUuL8K
zj1a&i6CJ-rmrZ-B4;|<pu_gH6^lN-u%}wDK*=R#Yb`6EDCgiaukqnRPhEtW{NnQ6;
zdjL2vQlg1xDorPJ4O8Ym>4dH&@GOTi8XnW7J2^MeQ7ip)R{*S^us0~2Yjsl=M3WBX
z+SI6%c^k8GQ?Snks=$mXwFTYnlMxY-PWxSS(uywcA_!_B+LL7Z=z>m4q9b}b)kUwb
zkvu3%Eyv1A6Q@HvmQkfZUTRW0d63!fUM?nNI;f{F6{nkMwWmn_QME}Idl$J?_`Z#<
z5S5f*M#Xgi{=k+Efr0@?wTFXjLTWRv^!m1<O<U3&qHhr!!WKcCPe-;NG;1f)Xj<dA
z4s$5nlOt&}kpcQ9OuHq|967jy51>t=#audwmXqA<D4Z@e)l!FF?xo_p++=<*fv3mU
zmRZB+3x%=WKL~j#k*7RFe%&YPnX^{CiENaX(CBn@G!E|WR@L_1J#=i(vB3kw1GJbb
zL)_N~joCHX$)FvOIg~cZ5$UPR3QO*UBPB+}Y_BT(QT>gpnkC28TIj$mwNhMZ>7SHv
zTdhcfpynkeUS{gn8V%~*CVO@G>ZKMkbRR3lSiJ|1ML7t%X+#AMd=dF`HA&YXSjA)%
z;T(=N6yh-$uVb{X&7{%hE31R31P0!tjMPo#(@{F25Ni>f5U8cTL3o*s3jKrT072o@
znpz@NW32I=1WFxI5%9N-sb<+#P*da8JyIeC1@HeM<_b=f0W?k0N8Vbd7oXcV6P*Po
z-#V-uNo`)|H-R}H5^NbT2ND~>VoO%ixDFaAka*b<)p5KNPDY(n-SAbkb=5l;Oqe7|
z)%u5zxZZveG(K}o#d3WtX(M==&-yz`?y|Py`v^+*^M>(hZf97*rG_#Gyj8Z2Q?bA?
z*|d6c)|Z|#A0DIjUG8`DcQfGj1(z$=2dg#r_9I~iM`HO+1-ibTZL;L2Q(ab_T?{rZ
z-~)F@agkyb;EluD#xOlR$Txz4pEq5ld|AXomzwFsQsVM+O3>H9tXq|>>%j%4w7}#C
z9-ag7NaTa}T9h>f+N-Zt9%Rcs#dPM5Qaq~K-jd@(XjgSK&KWAl$aDgJ<e8p~Xj!eT
z&IQ@Ur}mw>pc1*l!(W?mv8Gvo=J7l*e?;GUlaXi~g#V%pa5qLeQna9~by3{AM9*>z
ze;<FB@btGckQ<Z{Y|&MPB_}97c-zYTe38|PcI=Ru1MC~04ZYB2l;BuhlQmvLqD3ru
zT{M~k#)Z#mj&*(6DbRC;-4S$oRc$BFCUybg^@^05_1qyhjzp&Kq-Bm>9X5*`_j*1U
z%=GalZ`S5EAI%@2IZ{sA?k$kcx^hZz>7H)z4b~{B88*F!?9vaS2e5^!)gN*xUOH1M
zyD+}XD+g9DQkLWOV{69&I3~@K;J8Rl?>OrM<ab`A+EB?m6Osofg;a9CoQ)kF3sA+i
z303Gp&J<O!y|OB1!Dsumspe&>2*9C=X5hGytq9OJzocFn3pImS`!S|IqixluO!btH
zmsq;3(e8sgDe{^E9}j-13d;vBwN7RIhYT`pB1cg8e{`dXEBm%|3^D1n-5bhBG=+jA
zFH2>jIY9N$!BY2Ve>9H5H@sXm%lKTOB)~wy3^!dqUA6aGVsoHHb$VH4h^~B?0_qoE
ztLUS$qk{&M)_;xiE_)r7P6u0c7)m$U&}~cKMjd77Ej|j`=p@XKvF#=!L+Wd;D5xc6
z_;LoyGZ7@wp^n3xMh9PX8w<A#N})q9mO`_xy%k!$l-)qI%R~|50@k)%GR7AtK&mgi
zU8SSxD1m%Va0>D;1sf{fHNh2*hbu#xJP{<12HEMvh<08X3RpDzWROhtSfzS23O5Ab
zWNKh4OmLTX(U{#}EA++!>3|07L6S^K(Ky|bL<WqjX~_N9LmBB~Gl#_(Wrr%G(2(1P
z=ZB@1Xt@1+^e34y(Lc><X%Ca3#U3hkO^_negAmOo8KKcQAqtd@kTVCK1XDtz6*3)0
zrnOG3z>Fyh=rp2Ih`7_na+MaO#w<a$k1f3|^p<<*Nfo#M8#eHocfuCpJ2YhpF4&(b
zA>lG>1X(;+?FWvYNSQit5Saw{58tIkcmmn>Ow@yd^EA-Iy|v-}+(h@wGt;y^l22^z
zFZa`RTXR6)`yMsxp`L!))e4R3HOh2vFR7T+XjY<2U7dw*ydDP9drXGN+Y2lH)up)W
zFqRy@{LT2y6vbEm_>C^bOD;_Ey4!x*U|6H8Sfehmbp3lbivcc4z)?;Ich&VEVD+aS
zr;dQ!!%GjW@yr6f_73DVH-bXuP`lV32Ha#)Chs9VR8g`y9nH-~MpF4<cp9T3lE|K9
zt$T!YK6dnQ)CorZ=_X}J&epni)2l*KzeJW`Atv^w_%XVd`3Sw2S>7^2ck}@8QU#`a
zvAr?*0)sSh)6RRLI-+r8y-SN^meXakENH)Jz!w}D-A@-)@MhNGApk@la6<Ir?~(vO
z_w{%H8l`ij&Qrt(JAhC{$q7YhG@n6*<>s*SS>BD^BO{ga2r#tl-VdruYa_B1q{||!
z7!!iCmwKaKSsDRK7fQchQRXePDw;;#zcwzjkshB@ZGFh`_hkGH)~(1m=)Sd~UgYdV
zj;qsi^1Y@iJ92zEnX_#rUExG4uRM=LYr?&~^3oB?%_9Ggv>Z0MB!|~+D+guLcm-YT
zdUTX`x&UGhMOS|qYWE7GXWMA7aIi<kL5|~^GqYTxnf}7|{){wyU$n}ufiCl>jrWWJ
zgh`Y<?IT*n%VpN8->yma2+|^GcAqVT+U<Ud6eLMat_X~6Hz)Y6D+=NzWPHdiN<3j-
znO=9JR9d^K12ukto(JlFMfZ|$#MCP%ICv91@^>L$>0`=GV&+ix?sa;{R&f&u!A_~=
z+@p#^vo3i#2_<P=rqj%F604z}4~z{QLPMmL+4H$ws=~n9%auhh5}yfm_Jq8X$aB%h
z6SYBijc={c{W>&1tWCWOx&F0<+^eEV<ZAy!0-G*c?%}EF5xOI@JVNW)qtr&YZ`zHw
zg|}_uXLXHm5fBxH!l8kV;fzjC$neL{FMF8}y1fq&xC(?xMG7<SqJ?E%&3Ad*>6umJ
z`hn)Id#0mtVY(p2N!|X*g!Bh{n9$zx2;Iii9r*JivJSOcWK~o})=NGGD%7@lPlQ~i
zDLsj*C}edbtv!q!ifMQp0NXzeplp0k0_7J|T<VuiEEGt3t%E%Y604#TpwGKid36(z
zekLuGc!w$Ent9$mJUmL~PEm$hdl%5g6gBGt=%D|`Ff?rdIY^j%=_jmX93Y?mjIv1A
zHuv%F5pJ&M`*{<(q+n#5Yr=k75bf6|&`EWv13jo7N^@q79qpNcmz@F82YwdBefAo0
zK=s;l2z=&|Wyj}?Paz(R-<@uQTfCNY2Lg}bIM*eb%yJR0t8mt6#*IXl!-3Pt)$SnE
z+{yK=u_1qFgO2o@1^RS4i8t9;LyJlf<2n<kStLYVBF!~dvC#?|nMBchd|oxuxRWyg
zc87dA9vC^4ebpBfqr1nQHwc~%ldh8<64#^dv{RAlxXZt9C0ptG3->(ebm=Q`kfVY9
zyJ8(HDE&Yw`rI;q9p;@wo~>U5cXfGL7zk2AmbWCc_VN9^{P6vlhM`l))c+-uny(2K
z!}T`>)3A*9O7r#dvib{3RTTQ^m$h(BV!vQkjW&f5mVbKPvmL{tGjzaM{}shrF4L9$
zh4)o6b#V#{8}iYKGUwi=Wr+_rpwcit;}{9vKji1>n72}}h^@Qe_xUtoqRW1J{wcJP
zIeytEp<!khIQXb?;`8?oOHQb61{ogyHL&b64$}A#x$^jWut_fJ2JrRWnk!4Kz1)jQ
z<0Z%SetJ)WmThRgMx&Z3l>390_ZjJ8?1NZ)al@AAcE|6h@i&a4<9X>q5#+hw9SIrh
za92k;<atUmFI9H%ptu@2^6mV30z1qtH!x}uWPRs1P=szFS<My@_|2Mo+p1)P7s?~C
zg}>CsD<_@Ms%Q!X?)@!KC{8E9@DF5z%^XUdqoq?b^DEdY7c$<Z1#EYjZ+3dGW6;|!
zcaM1Y+w%nt=>)HKgJkq=C)pnS4Xl7)jYh66e9e4E^&p!a#kXiT>50-e-pQ(3K$#IO
z>odyB#mF{}&!>G?Nw}Ub^>IvjNaElyzZ8JtMHIVEi+d{WS&1Mwg|x`EbQZ*#<R*(o
zuA|A^{=O3x19@&q=EeFSGEOV#_f%fjd-q%K?Rk<}<8fp>>-!0w+g6rGMusW=rY#x=
zSF}^`%|4!{GiX`1gzP`kV%c`Sj)x{SK8$G+Pp1yY0nDM`m;V!V699f@KRNT=wz4`v
zUQnRwIGY9F;UClke=~)%5XLb!j&hIsVWaZR7#kTa?x%}tizr<9aYC!zHMwOqD&kW|
zG7CjObj&yE#Fs15a`1)BNdHsvJB{LK=W2APqh7|}pcMvZwD;GJRQRdIDso-YG<P(P
z&yW5|LNqhmsECiBXp(6^9Y3c%a?uR(+@8!UL9GU*v-n>4sV9u1<RWbm>1%`U2urZ2
zD%m>m`C&gd7*5|!b8C4dmGC$6Hq2S*AisY3yf3Vw59gq#(`N8x=PwLC%+Wz_M3nI9
zujyG<tz8#IzjUSl1Al{>V>)Z;?T%@D8u?W^q2j7F(Kx=XnoG^Is<>uD)QNAuPS3NZ
zcm}caU#|SE_*=)$hK@6+Gsm~<ew|9IW8LZvYobYf?Eg(_rq!#~uiFq+@o~d%Q!}kw
zyLR=us1qNT{w_6B$Lfya`c+X5U++lIwQAj}jx}qdS$w_W_o-NGSFKsKVM8>9uSfqo
zHCG2IbM5+dbR(1dy#21!Y^#cAtnXM$mW0pC{*an&O~)B)Ru|Vqd3?SzJ==!W8#b&f
zZiwda`KCXnqIIlWzkdBH+H*XO@7Me(HQ(yhYuBz>Lv}ua@B98IHQ&1R9YrEcS2^K(
z+n-bOb*x^qs)HzRh>FN?S9-=(>o%-ey><;-{$Cu@t@vAKYE<<b))&tp`=3FE>;9Tf
zy10Jz`ZXOJs1-~iM}M?M#t8u=2NcKn)xM~TkC&%p8aqIj{m4{|`l4~<x;mNr;z2sb
z%m>*f@a<hb4;=dxQhtcPfuEt?0W<N@9KODNNrLTQvYvVy4!ol&<htpUL~a_RAB?7v
z{w4pN)At|j>4|2L_6__E_z@3GM?h#N$}GPA!6T?=qYba@mS{@1CyMUo7}$WnfwqaD
zW$VP}=OnYy%=joBqNGh(_%@ZyLzjo}3fO)+7src5n&UUgoZaP`td&I>$JYb#H{c6d
z_>z-6zOHMS>%egDv8WTDUwDs%wgJYC2p>P*FcbF|_?Wq80!h?<=AK<q4&NS=%tLx8
z%ldc`-}W}nqsr<+mS-ljmg&h~j`pGne0y&)kB}5COylGK+$+iZAZ_atr0Cx6<0J4l
z(0k8dRdDk7bm4ss#}%fhIL4~g;gQiZ&)c^u>cZy%pG_w7VwtM=c)8D{STuoLKDwu$
z;Py~Wk0Zkyd`30rc*ZGYc=!E{J4bd0<87oHqoOH%y47b<qCV3MKHljw#RxK}sACQp
z{{HXl2)dmRc_i=fpB0A(ef;QeRKmB*l6hzmacpF$7>(o8Gm}~9Nm&|oMicn*s$>qD
z+vual+)r;NP2%g@n&j$;rttLxO>$98gRh@yoQsy8q8WVtdNLdNj!N%-eo=fDAODoh
zbd>znfy0t3dZ5#B4u1pd?4|R_w74-G>9;fg!RkX5&Uxexr4qh<d08S)>ODuZ$X9+?
zTK>Ud3jeG4w7Fne_Ve(fd$4!in*FrzXY6QH!nXrH56=!oRs25Y)0JhZ+Hs`6F!_DB
zO8#^L>F-Z|?->}bmHT?5X?*&2GK(y#MYH&D_fw63<$))cq8!p!C%=!?251I2>cp3;
zlR2mcM=SK60=^ti=8%V1qDg#sUxN%B07TRHcv~_Pby*c2^^Qcd`1t!|CK}N7@cSRp
zKRZbuhQDM?ZdR1cF^{wf|4p?qq_<Y-xBH!z)YvF3?=!RVU`7rZo|Mc;1G_!C5g_Ws
z_pW3<?ua+hwp`1rd0wB)OQh-jm1q)QK9-t;91l%)&*0nRmnTG^poOTpY@PUgS27zB
zb1o{1PInmh!r!26l9apnj7tumwkNYdK*?6Z=Qkv?4bm$k1T=*&x2NQwdrRmIpJ*1J
z?n-8nY4a#*bNsg9Z@@1#8alOH#E0vX8A$5x0lHC<7IC5}e7-#;8<{<AoSDU!!it2J
zhifjLE#lLLWR@BQ7QOqa1$Fn)qAKm*iaL?$f@Ee|h#45*&G=ClK3<v36yMFzriR_e
z7bVcO`zs#PHyDkh*eA4jmd<vC4_xtrdV4#^YV8W3`>FX;G=qX?uY}N9-jJpH+p@B-
z;y2;=6(*hGr^YB0%9o_$mw@}+bo@(rhIXm#r}OxJeKSRZ{qB_H1TZ@u74rUNefVH8
zyaTxth<`~(2G>R@WmPtfYd3<49__fj5`UM7#`Q?wqBM@ff#X2@pLAq!ZIoK$x>has
zRA{Sc^cctX)9}}^J&IRV7R9zgcLDOIbZGExq*~*fSDASyQZx<JC$)!G@`vj)ZWqI1
zti-T8fq8j4HaIt0EpqNotd0ZoFEMO;$7NA`JLKrGP7?$8>#EX_!L|Kvjq85i&=pky
z`O6rzy|TO*rXBDc0Ix2FwP?WL*?zaivplO1O#t$~9U-*6f4Uf+9dHhS$J2qqvk_{I
zXTQTOngs46R)vi3`2voCEQav_JrC4t)6v1bQEQF+z0_IIE{yUBZ^3a(0~5f1{OVAO
zf4}Gi+Gh%tPN3hgCY1`LF{;g_xnSKh+(<N<0^I3q0ZV&|Wu;BG*ot%ihqo+37*C`K
z@Y&XgKo%o9k1S`XEDC@Ax@NMhT$C(EqzmA=^(_&BEJn1sEE?hLm&rRNajlY)y0BBk
zi)kJXcmjaSHiWihz~I?_x5jfnZ6>6dGC;mQ2HnxS2>VfGIN(VDKKhK1X9EV$_PaHn
z4^&1E)64O+a#;lIyJPTrPJU6*fd`)g=-1Q1!MhP_jrZUR+*#m`J}%VFgI;k0N)OP-
zfqLNasp#O|sI|sDZLs9+Ty%>WU8?19KNG|M`Pd0?AE3_wwe1NZ_l6Gc?RRtTFIe>q
zwaS1*5zsd%iBuo@<VE?NRDx3=wCRbEsX0N&Xbd!$Q3V|Ap^Yjd6gZba<%>#9+|Yjx
zoIw2;_6#sLJ}Imn!v^Q}yE*67rH%EB<}b_Fi;zfoyropTd-E5pTl0)Dx^H4b{)(ss
zMm`y1sB1BGcQV+S0UK|Ba;P6;2l}z!&GmD^y7k;up0JLlz|85L&CKuL7NfJ1#bObx
ztv|CR7NJLDxw#%qhg<V(HgsUY+fz?|rMEu5j@p0X*BN?f`(RB<v9Wc6yH_ih(y~r@
z>mpj#N#kh}yxf(}6EtN!E?!f${7SDXzBVeZsr<@>Zh3biPrc_4&}*rrzG$PX+^6BM
z8wQ?tvekFujCO&+o6;GDPL1*AI#u)H?aXd|0H_by6#9r;7Ndp)b{?2J(y_t0(Q1uz
znqG8IT$h0Q#Tfb{vx~5Q<=n7mfZ4q{)QVw)bNk&I=ZOO-Q5Eq0TS79|4V{1pDMSGN
z)UByRAd3-gE=w~{(ZtmI1INau=Ub~h5}Wjd-rbRpT)oQYAE5g=%G!pzAkqh7qJ48Q
z#`}MlVABw2*|xCGOfb}${a$>XHLe({O>Gu~aR<vs6!KCn<VN%0@K}t~(Hj<F!p*AS
zg!vo?e|Mzw35^=xEoyWR^~z$rY@+U*h3lZ#t$BQYD{UgzU!<v7P`+q;Sf}4QAx$lW
zei!JzCY?SsVEi=Kzy<3%d^ETaE+#>J*$!wSb@cI%Z(D@@ESjf0c)3)0l1R#UfM)D>
zbIoX@*;O9gL#GUD(Kt}Io)y-6*J310V3&aTn5U#-gL9+RobzVwk4_VhxS%R@#<Zwv
zj-Ut@o)=@~^2LaGVvJ0HfjiR~fliFE<~mW0(^{$=+n)pI(9TfdUw`o;%(Wi63dlRt
zp~1J2YR-2v6;j{oYR&hmy+Jtbmea^#&4H1jU7@U>JlQqcDmzuM@%D6fpdVvz@%rHd
zBfj%H=(QwE>BMf?jD8Bd+~e#}MGt)YBFv##jV*wq960Gu=LlLd4x4L9O|<vG!SlN5
z83kbeFou2U3l<@59r7FypLtHGM?(hJ_PaH%=?H7B98Cc7zNHX);@T5n+5zVPcsv~#
zJR70rJYUdZbAt|j5~vS*D%ei#C;Jv-X$e|+(0G4qv>=($ZZ4VDbiX^?6itIj_wKMh
zKKQ~Ds1Jp%0y4KJ6&idSsn+<el?S`|40xodl^FWE6LS5ET?OW?>Db`hXf@}Y=9$Tv
z@Q&LVz-`;x%!vMFQAT7$N&t_}ZHWkEF{1OxvRY+P_#;ipylPRh7?E*+7td=ZixGh=
z_In;#)~GBB|JJ5t-nl4QjK~zgyUuSWixGh=_In;#)~YNDe|u9hA6=9zMr0P?6Z@LU
zVniT|{cbLcdMN4MdE=f^`H51K@qj({wV0(-!=3}?_NPITI5s#pTCH(TD=j@`8g0-<
zzY=i27{k{GWEQm)8KBPqwe<9mdqW5J_Ish+%OgUOf`2ha#2x}#jQYI@j>HV0FS{U=
z!$?35``wxxxa4gAq4Ke49KgSe6F8A=S0Q|Kq2qf3f8FG@U74o*E4kMAcUPzh`-<D~
zj8H$XSG>hkL4e)~)E}m!gL|Xaocjw_uYN|~z;O2{9ekMsVDCj>J2hzf+M;|>K&A@#
zw<#HE!v+if?RRtjE$&x0R374|w0dQZ(~mu5sd2SiY4oYQsFBD@o1*Iq)0IjGhX&nD
z)w(q_w3`Cw?fb*}{l#Jw^S{D>5q#f}&Od6v<Y`_5s(85~MqWOg0&II%sGh-hoIs4~
z!HWR>XgWA}H)73sPiS9;r@Z(T&ePC#biVaRW-57RQY9YZOHGhURxtyP&h8Gye*R*_
zKB;__z|Zs3`GUrb&*mCST_ipctxbTdr3acho$oJ3izl7e9C*A~c@@uPyg`%pySXOS
ziUujTp?S_KFfZx}t>;PaJb^|7<Srn-v^NzQTpOk4TqiA)k1p`xP@BkC!Q@Z_KSj#(
zJz=|{qau71B)yRP=8I9ongru#l|upcEk-r}8|;_B_I2s(L;ogDbNydHcM<T|A-<7B
zRGqF*t{$&V@4OaV3E=)=ea+hG?Te|D|23KNkmY$QleA}(0X1X4o7aq*Jw1`pQ$E<k
zt(vCKfc%pfg$v$w0<AiRKL_0H2g9ae_>jPUH<ut`R(#Q(^>#Xw<4wo~Rjd5|Eim!P
z7&DhGM%WW&Wd<x9?ho~1tUxdJySZM-K7-{tt>*<QXB?dTNjXXlu0ORHWt|lMqKebh
z5Ak<NbN-+~<F~m66V*91JX$u(;ve3s_&8<$0vD@?QP`1gx>Afb3?{!&bWUeIQ$O+5
zziCCJbtZZ&I>1}A-4Sz8#Ey$Y6ME3Q7twV8UlhLtv2REhAN6nQXkP!?W@sIdW)Sv9
zQvf~fP^jD67NgsG=prEBoemAYjZ|~KFIczMFDxkU0B#!q@2L%CZZWc?kt>4CZ(1V<
z`HcKL@^!2?`LIeA4LY%o;%~YixZl4mq8VI}q&5yJdxm1l^zULxk8IQ+o&BCiy45CJ
zFn!VmQn$xR_S^l>Lh><-5-^qEEC_vixS5Pb5Hi~D6dB8W;ajc!?DCOl2B6(lfM@0T
zz$M4^hBi7C+rg)ba)oa_(A8OV3d*P60#^mla}AIm%Q{=tk@DtJ?buLHd)vxgd{OC&
z_MQAh(gX@WU_?dkJ~Dhr9xmGN@8qQys+qGcdj}#zE47@`>r>=lOZ-sOAo24q@DrU9
zr;ZCW^Pu~6rJqeLbk0x@U1Pm@IGRPiZ`4$a!$jocDm31MTxqX)foO^L!mem9(K{Zq
zDEO5z6?lLJ*;lwjF{%VOdlp*FQU18p-l#Px9N;#(_-qzHM~^7r(RMx-%mqvKbVufB
zyUe%<DSgi)Bc!_;khTi+@7%_up+o3<__B_15Wep*WuRJ-$6dlFFXRo3@DWCuCZSUc
z!lPX*ya36obWuhQ1g}%V(jHB9#=mN|PI&|&{7<6zgDzM8d6t4%3+{CncI90eVOh`J
zIgcK^W#{tYRg3=lG+W16m8@jbK)HKptQzIP&E2k2t`aJ&&{NICO>iGQ?&DPzX#J{!
zp#Z)&fNns~0r_mD5Pqgh&XD|X`Z*(4NtX(H|6RQU%whNWXwkc+Nl&4`DdXTgJ930f
zda!XZw8b0>yrI>CjvR8IeszoFK&^=UKi6`J-Z`D^^XWc?ZS*iA-BNvKZ*Me*;$MBH
z*3%KbotPdT)c0Sq@&^2~A%3>EJV4jrP`!nhmP3;PwmdyQ3((V^rLx7a%%FpE{LiR}
z{EvCIG9_Uw%;S-IbT<u5E*34K+$*$vbV_BoeG|Qv5KSU!({q$1exYH>@hANUJQkjC
z$Q2%>DSV|2y*t4&=j}PjEOjlM(iZeKM1wEnq2p$J2U`ggu792iF(f5Q*8gVc6@kiV
z_W{P~@~)0j)z<~@W6sMa-tx>B?46*1@eOgtsfOv9Vc$;@=c2eN@H+EC@En~oHdN`M
zcZnW5HrltLeX~4-w0mrbuEao=?_H~kWcO#ZMbzNoBlSt)BSj6McMR=u+Y;s!`Xx$&
zFL|~8UP$Du2hA!8|4wfz_dDsLDwe>=<N$y1OSPiN+D7o)je5%XGfxX9y+s~(62(<P
z=6x?yshTPdQBgy^G3F+EKXEjg2H+oFo(hccsG)WY$P^R3!U3J}N(GGRUs{BJ>&lef
zzN5C8wn2_YohbJ%D?dW@r*9x>ycWKU0gE7nopjp_HKHjLJ^fY6LhBH8e|`^Le1no-
zSTI7RMz>bZpxC`%Z47h|9i)dSmmKd|4VM91->$cOSe5zfSyZq}jV|ZQ0c-VZ5}5a2
z6UQ_s+!S-m(Vl^^UfRjClWvL}iaLS2|FtoE8jup#-&hq=Sn8WkO8Bi@j}Av&!0J5?
z%uJ7nePQAJwE)~N`{;tFj3q-rfxqu&?Xknl6>d>k@q%lc@#0Ns?{HKF#aX4CotKb_
zqP7+So?E4-gd#=T@jBB{s%@qr>>NJA{v9PhuwaBe6}siSyp=}<(<uCae_bdW;;-{4
z_UU_U)$2vw{eW#NT`#nv9lmr1IbL#4<dj#yo~nJE1)J(!qf_dE_&v-?lz#s_DC#wn
zD0@ffVkMq1o(9B=?v=`rIF~TQsAp$)neIo6CQ$meRFow7gCl%BA2OeLUy#mF-<c8|
zb7~Lm^C4>uLS#<009l73ac$NyubwXSmG$DtGf7bi9G!N*RHX<jOMM5Am_)Um7L%mX
zflU-aC7Vm7R`;-IR;c;zL#gG1IHI1~Zn|u5>&Wn6lmm&sK0sAYBVaO7)o(CV!3U_=
zzpR%jrv^)Du@d_^Gi`Vw3+Eul#p<mQ$R))Xq_;@+(CxeBDEfQH^)2|jgme-3IeW!N
zqo1VRN%fL5n+C%8KbRgi(%qY)Y9AQJtx0AImKH2RZCL>C1cW>jij?r(ACy|>@<htg
z!Z&WRN0JkBDrt2b<p8(;!Ktu|He9)OR6J#uB0p3$r|+$+i_X-fst2qak(f>EBr5^k
zGT(U6Nfd3GMr%#Smmt)m1ogYw1>QZVBEz@qGm49zMd}+L2EGYqtd9cjwv~J6?WCdd
z$cpwYG?tjc_XGc^8sr$Gl5o&IXivZ}UQ|W--<)oGq6sN`Q#O16c2qvFhokX8_zWzX
zAfCdU2_A?IS}m2iBmBZ3vq8eZ@UQ^WJF@DaGL9lQZOR<JA{#V%`a-YCs$-=w5(Y_>
zPH)O4(odB~Z0T*;<d=>jlcDEjQ$BU@r|@}MrE@CX?@gcRo!OL9tN9Z>4I29-gEdMI
zUYZrIIsMcQd7zkPjuJ&qrRb7+md>;<>-o#}v@aX@OE53SY&$|{xPD6Mi18=Q$A_fO
zeAs4oR))v}MQzSt{%)ljpa>R>>AFX^oU@gwEVDL~r3)&%X>yTM{SYN9^~`B)zP%Br
zti9=Q-066bc9H|xA3p}<qf-Xy!DAVh(rnKhlK-VW`8k?E;$P}M(uIzD_H0=bMUQob
z9*DnuIjY>pC^tS{u)b(J1M|r7a?P2TRpG(f_uhk$cOe@bLo$<q|GJWqsXv3o%((rw
zc-Ge*t+e$F4;^lo8@PAKy5J^0#xe`UT2X7U)<GO=SeLD>;%dniECJYgt5TYk0k+;e
zI1a3*t_Ei2z{hSBoKoQdH@luflH7#ezPd!o*;SV)j~n${qFAf(B-7Bj!reZLUdX)$
z<gL!L*tU}1X0Fh-wH56g4t9aV{5qAMLxH=ry6PjE#<+Y-@K)X}8Y$HNGZZp52p*)x
z+Dfe^Gh#U}PWh;Gc|o)^R6gh$iPmA3_O{UF`BWQ^G~H(%M+Hkrl~lH|%B>7tVCpAN
z(3+9pAdIG5o%q-y1J-;*o9zvC)Hfg<<<i3Y-wPv``KdrQx*&RlSdg$Jtxmc}hx^v8
zDIcX5fulJv_O>Uf_Do?*j;rlt!IBU6v(T1*j5{kfv8>)E(#)3WuU_ToPl0Z4=Sia9
zyAxV*HT91vHRb3>Rgmo2s&(TkoP6L<k6JNW2|CDb@n=Djv@S~f`B9sMb<In<pSd8_
zlu5boI%?)8bxcX)$9&f-OB$2M3YVf<Gidnx3SS9Q=#_Xf$gX&r^ep|BmfBWLFYM+C
zVp%XMP=DeKBdS6ny*m?%`A(n(DCWCCQYh|hQrtU_dT~{Uq%Acwr$gzFLtXui6=P1U
ziDF9KBek+~H&rO5eU}<+%-zs+Z+o!1<42QvA8^n*Fr^X>YP1&GR-QdJxP=#1CGg~H
z=|F4fY^BL7p=uU{UgR2GYJG-xO2YWLwCj=1e7dr~*lm?ck9tx!A>(SY#c=UVoK&Z;
z7+%TctQhmv1wJ}Oo)YyiUw(ubH_QXv9n$wePl5IV&uqF<Lm`RRaLI6PU$rL^?;wHa
zAn38DslYJU8?W+>yJw7iQ6IN&5?|r9<!!eX#VMysk64PQ2^+qJE>b|bY_s{&g^CyS
zr+eHa{5a&h>KQ601#LQ65_B}2ipi3ov*Fa_WJ!0};WRO?UY<sNI=_Q34(e}GF0yVt
z#71{1v)d{Y$uSsBq2NO<f*9G532)JX0{9)=gF{gsC5rn41vta|$PhY%5G#9_KQ6WE
z_ShqpgZ-m>`YV03!UeFXJB^*}AqR2%=Pm&95d8Q><tR^&*J^wDDq#gUVn7`6m|7&_
zS!OL)Jw=<DsD~aX_kp=_V7;|xVax@(b5c$L;KjYofOK@|SqXr4)6xdLwE%#=aw-tz
z5S7o5w0Zal4UvIz+liu`Ta9LcakTFQIV<;)S1BK)iRE!XU3)MU(%OsqlTdHuNTna4
zH_JJCl^}5fI2$X9*GDFD&ii1yDFGi}2riyeNo41X`DllYQFiTS)9@g@rBvR?^;e5Z
zpk28*l?U$F<E=(x!oYhYCR}E=n+5B6AFEPWN*Wa3{mxwwke>0OH1feT^wh+3ot-^A
zLPH7eU#sBrk%v<Gtw|#mn@hIQP#3$#X!n10;8;`y(7VzBWo)o?9`>AKX$_VKJkb=8
zo;?H>6Pr0G;-KAAtc@-o7<Knvyu}Sp`Yn-y>%br^$`bj^1Sm+S2^C6fS|v89c}TNr
za=~+&7Yda}r;dc?1SEXza7@xh{2QaectW04iZky`0CaYB57GVr(0FlGE1rG3H5M5Q
zEiKq@8NcQHZ=>zw3r{DMZENLdxmT-l0>pkXssbKndwsLtguyEmoJ4a>haaX5H)ISR
z@Q}7@39*8jLbUH2k7tW4VyrgG%i^+ZE1X4hU}gHS>VZdz9)4_)wds2~+7|+nW-!)B
zmKC&-WWV@6E|#~>kvgQcoHCy&$kSP6;t<BKY<>GO)fg?=(~hpq6$-ZqZ@W?8v5>Rd
zcv!-@=;37T!DB6;UYX`qf|_<-g+P}1+P6qj$M_AE9L<99A6%ZQ-=49N5xN;y#R>Er
zmopfa4|X5b?8{90?ASn6bw<1fil+}7D?{BQ$DI1D)~+0pX~}R}Tmz}C>>geJ63v0{
zUtgj8vj%Oj(>DlzZYv2CxuCIVFP&`^j!V>=x1hx<@l5jMLztI|u5^T_@OMdlL|8vz
z0G9H8aYI>Z^NuiJspwN-q#JB9)3bE2Of&eEo~@(9-I22L)#s{F*7(IYGFxuCpS{97
zq7M2$7bNxZlp1CG{1pWqOJ{02c$&Gwn8`?ANg40B!fH9gg-?}{?d%mcMWV9+cLs&6
zFC4$pI-86$Z-TroNObNdNPq{TbpmZP?37OJkePIvu~)xDTw{VioL=Xynkdk;y3Q+Q
zD7u%<sk1PvUaKysKkT+x2IJblO(h<v9Fz*2Ma6ya1!)!d++)51=jUCG%Xb9XB=ZPq
zf(by4gxaifH4+N!5pmB3(<Qml^{ifsa5VJyCQ9e1sM(5dr*~c;+J|1O?Y2(mX0qbi
z)RF0gT+pkl3i7`CL}p@RCNgssp(*K($hSLoF_bi$#w_hj9O_kXA5DYH54}t)gx)(N
zht9?C95Etn=>x-@IOh}N)0(Q+z>_i#2^n;f(CaeOYoNrz(Ji#Y%CRx|8fAyxt|qEC
zUuD8&q+jgxtjXYeyZ;TUzB8)#Tgfn2x}(LY*?ELCHIpfBjZ}<}y*?0!G;&UzG@jS`
z5cA~l&eJWVMKX~T;~gB`7|nperEdVE^V8M(4thLjKJfOa@1oVWh9ha7-t~Sm*_8ty
zFE)NE)cIK#sxwbP{E6_(ue*55a=1LDGy%AWzEQ<wSlg(uFxVa3Bjtf~EQV+uux(t>
zl^4&I>uQ;+ag;s%P0CfB#}Er&<~NuspTT;d?eI!gup=aDErP<A=Ao2ObZeBHACw{S
z3@BWBgIaz!Ti~m%D*UBES2V`1B8aO}gha#jp=`EW;+6eebcOXD<d^7o(QKV2^@#MX
zQA)gX$rv3NJijv9AB}_2V{g++h)oMiM(4~d;5u{9rX4$mhiL3c<nHgu9~|kf_E&n&
z!Iua4FPQf9(?#AKoFq?WetI24VC2qssRoZ!dWlh@)n(2u%P~Wf*(hVX%{)#v#&)2!
zI<{AaY|9YBYc!p0-rp*$&ne4Os>?byv4ElbO0vf0KQ>_V;hvc~HXq@?Ac)Lc#n-dB
zrAG6o<zD79%7M4Rn^nEESXkamuUwLXcNQ+dU5XhApaTC~J5^R&_gNLVQxA=+q+V95
z#h^`@{3lpV7+55IfY?=3g{)swnd8&la8_w9)cFvHGK<nz-lDZz=dMI$-p2iuXp*l0
zcki$mW;71iM@*koc&YR}Ft2ZfU0+$~Rnkl<V4bm*{V71N{b&RB7eHcD_s~YVO3YbD
zCjhs6Oo3w#$|_F-N^kt<4hh1he!4ldgwm&cCKbhzq85<z4UxtOW3tW@95xu_SvTIN
z#;wIK(Pl@xD{^Mbk1cf*V=-m95{yMTFmuP3!BocaL0<cnLExtil#*%SV=c6Yz5DU2
zY*SjMW}`Y93~5(P&6Kjy&LT^Y<5J-fG;&fp91PdekbJ6a8S3=qIUVaULG($)u^bZ|
zIN_|xMVj>b(?~&^P1*`0ZA>9e57Aq((AeMqpVaEae1P>>P3EW$)XLo>J^i$0Di5qz
z8zxWC-T!P%iphb)WrgHkd{wMBJYdp>{7GOv=qt)6V_y2-*nR@c<X-$F=8js4Zq%e*
zBS6~nHMN<F`=V7C)_w4ac5BqzLGA3}Q32JWp;1&~Uug}IN{7}Fe1|avCKCTh^9R&g
z0$WkGU>c=D?~9z0Gr<>Ucl!#L{tWwo0#LKGpr8puA8G3zQS3L|?0jcCbRw!!+cC7w
zg)uuTG`muQmhX1E)?dp=be1s6q1Z$3K=Ii2FeR$1=20Hm-l5rL^Oh}_FJw<x0(%OW
zAN#sW!u!n(8ymyyw+$=2TMah0DS9s^O=keQ;u|5j?T%Uu;|g5_<TdHg;M+*G#<wmh
zMH4{%Neta4;TOZWVb1|``!_?S7&bV!->q@ZYpI*)0TVJ!z<x3Y|A_a)T`h)n4?Y9X
zz26FXH*oN7znk-Z!3Mr=$!#jcT3*xz;5(E+>UPM-FGiX)a<d@w#BYc47(C>$-}A{M
z50S+M>ICvlN+DICr!P*R6nfL3^YHJ45*a=uvfuMaw8~#$nFrv@6*yIpOBW?bKxPu~
zUsp2X>kJnB+wXb!@91zFZK=zh1>oNALNTfQzhqJT2V}Ycf1Q#M{tXuV+wXb!caNEf
zMfpZJ3Fu|B%_O;DQIez*%!AN(TO$Y=je!&y%X~VOjt@STXEoNX;rlk^z$)JjJ_{<p
z|DK8`QT4vU-TxUrOiI%Vd$7yc!hOv|S8>$QPy+2dCNI&uAxtd#z9Vuu{w~Q<F#>+A
z(xRKVBqN16x1M4#H3g#*H_e=4TqOy%tyGe<?@f;5M&lrJpC3XtkW;Q@nvp`3;K&t@
zhlfKhVlk$@B%!^-d)#KK90*<XBUPqG^+Y8Yv<JbvAG*sawPc*`G-ND;!GL8{h9C5#
z=|+U$vncK$S{E36#Ltw`q57T0GVSN59<sb=a8|8c<|zUmq;N2$fX$HM4!fipji*fm
z!?c$#4_-d<bE~b8r0t9GCuHg&Hw}-Bj8#W>4AIUM*#XHXZ)gMLG!S?HB1E3N5e9C^
zI`~Ob;1*cHigt>L=)io`1+W#rRTcJ9wQ_*|@?dyalW`sm7<DX>xtOyA!-GZGq&up&
z!7vFzcDd5>kOqn}@a0w%9>=KHS7^z!ip)|KA<g$ys*}QA%F&Sdc|n_+11GQjeW+(0
zEQNz1*1wL4gJF;)&)=?itm5~;ip!ytv;$?04Ny+HOoGuH?gGPU=9Dm1-K;x>QWyV0
zZMA*0zrus{Pc^aEU{p}AST)?J3dGMCGLJpXu`DE1ZAfDV*lmAQ?qf92R~gNezN(2N
zLX|qABETQ;r;v#GrV|lFN#p^2&Htp5fE-3LMGjm`+Ri6UWbp?`XZ=|bV;ebn8?l(%
zM{dNdgkE=%FIbW+QUoi<ZkttXD~G#vR;ljX5|u#j=D(!URVvFo6$s;3)@Vuvu(CUP
zbA`9AMAHDg=5E{E+4KzU0FmZLZYP|>;AAwvU@tfO%3$e$cDFeB)lX)Jx(CZLmzytq
z=hx5)g=V#}!LqEd1n#d#?#Cdq<N$s7@(~B&yr5!uVfZeW^3dUE0s>r?RYB<H{xtt0
zJ!0TkI2#1>d)GZa-G0UJ<A5EzJK(eYFhCGY*$k(j`p)*rwpcQV*Z~;S!j_@Km6740
zXdH;2yoWMQ^px?i2D&vd^p@Qzu9C|qsw&g1X<db@|A?C4K6A<Oq*7@S?$DV-y<3i!
zdv*+M>aWlp2s2=B)kBoc>cJ6N;{U{z7UE@GgvYy2&;T-3+|xzpQ!R})2aNVfUl*QD
zl|D8+o7&f_5{IW#DJYRGICL;IIuBD_l%^Y8EKPW$6Q{p{!_5#JYlRGnI`XqdQM8Ay
z>O^0j-HlL!HmMzE#n>rLPH;WTmYa}=lq^a4f+h9z^ChgDZ-X5Q&GuGwSF1-Gb!<?t
zzCz)sZ88_MC*xy#K%rWp`_(9oR@|*QK$)~D!;(mL&UI&G>hQ+P^~jZ2VyI5k+=m{j
zCd^*_d5=+nQjP?{RFBZzO647!chUMH#s9QD1qhoSp|(&NY?l)+#K<+lNn%RgK3p5!
zv6(rX2tK&lr=3hHMuv~EYIRQr=_H=JQGgJpQ%)Sa4OL`us$M(QEBZ`Hr^!&lBFnQ9
zLL0V02B_)TDjjVN+jymyRKWF{D?Cqa1%5V+k=4(N+V+%3={k$CD($X@wl2-9)|?h-
zSC(nPq$MK3+&?GFIbTW+Zku9j2yQrVZ%sHmwFuHWH6QQ9_&c}KyG`VBRXYymvZtDn
z#EGz>5*JIooi?E$7c-PbNBDLL7YNp(9FQM)nyR7RBOf>*hCoz;d2UKf9$X34<$EP>
z0dXx71l(eOp|lKUU*n)mJ)n;ltx-d|*wPc4g$#Jk8R7;O<sr?GN|mL`^>veMl2H{o
zAN&~A!x6qeZA|>Y=V?nHT!UM5BKH{@iFi9QVe@wEj;h*zLMQ4zu<FR@LqEzs%}S6n
zHF);{B|_sA2paR4M}^a(PD-6t#*sr?qK-=SO#29B(K0wl@7-l^l*|!FHI;mEPA^K^
z^YxsS#IS*Kf@_~vquuOm$qw4QujOV#DMb@m*B3X0>x-!5J$%bpX=J#E&hkWg)Ya#-
z&Q2Z+bWEssKqhTASVyVDKMIJFt+&Ekhi1UY3){81@@`CTcWTgnNaQVXOb{ke@=cFb
zGvt_#)Kjv(qFIM&+ru$ck%q~)mq?@cEk2q8^1V8gf^+mj!&{v;?_h$(LYBbir7w8u
zt^ksEm8<Qf!kD+1FN$*D=>5uBgS`yaApkvgY!-HM4sCjlrUA5Nl~zZ67c$7hbCNvg
zjgQW~$aX{u-t|Hk@*R{X@AHtOYa|xm-ZM}cqQ}BO^v4Z}qh@oqxy4OEv?b`Ic{{%I
zksf6N_;XfkWx{C@zXOGjYdBNaGpT2zOiK%|{vcfMaCNjoLxDPVjEvQ~-Q{D;3SU#a
zBWSa&s|4el3Glgejn+uaFU#I1;mRzig-I~&K*^`k7;4ARaFhf5vyDvM$OvsF*qa7h
zN*fwD+}-6KzT0I2klD2=!HGkk-95<AIY7SZq(DoMISHr(>(oA~;<dX9H)^%F8g(+>
zs;CN}C#-J`uy3H-ZCGEHu<F<@2sGO*BO^n@m|*M#iTiF)P4jH2cCqAIifpQBZf_4A
zLG2!(5Saf&Ih4P@;jq)XtHYVScfeZ8%{u3i`;V!mno(yD5JhJ=rjO$9l6U|@D=LdN
zb2r&M4&b{^K7nEKowN!YJ<f^n{l{xnlg24(p)kURj^aE!ecZFZDwX0#?mXa%H*s;n
zv5KQ3iAf_-&rCBlaW~wWd*m4+cEcpc9Qgmy6aUt7z@Z1zo8rA%i)@ZKhYlt;JUL*N
zv{f>lXPY_m?`o_5n>lm0tk4PeR(68TI`c*cxilqE+H#aHD@M8JT6vi$_mPrsmVG@#
zqXW?dGQRB0xL&%vUgBofGbo+*Qtx&s8m;TwIFKUUw&t2>=82B$(IMYSuyFIn7FmH=
zENo>*JGG}&1_q*Okb1`^Rd<~c(4l+hP}Hqy3>{wVuaMj}qA5UqadV4OoPfuYk#{r$
zO26Flx2Gu0pSsjJ(7M~UI88dls8hmmvw@TrVh%|{5FSd4Zp~r_$LMXqYLo-*KPeAc
zT94(GUt@tf|ATHD_)^aonowE=?&KgZincqMuG*op$@~<#XYC_1aL0Z?mzYBlBx(b>
z!XMOifN)w=y{BA06pe%4GtW}Gt|xBT6lofs@0k*xZwE8@)iHMkTA*B;u(xbrCM{N=
zp&%Xq02BAysm%P%l`trk3VK_2Dcyt;TB_yhh?}Ael#tdNl97`7f^ggGw9OwPIVvP6
zV=-YyX=7=b(JVoL&1XXp+3a!MhcPH<;>fu;JsE&<Th2)>Z^8tQxQS)UT3-oJ7nT6&
zI|Eu=<p@#N^}3Mbp-)xfx~`Ygp-Pi5kuH;z2$Amlb&+BoFz-*my$|{bIkCbnV4Oyw
zOLy1vqJ^6Ujr6osG>(#2D}txC$Hm9d1U~()VU~4Kw8t@U2!H9~KK1;&yN@VR6<<Hq
zEEiqnjn9wXYjqJUCSD-Bw|Emu5#Qgc`BJwgeM!w~A<K!L$P~c4&IL2giC{s|h+>H6
z??;PmS-qfxULmH<d@PL;_-0c=KUkDB0hw9Azx=#r@)#M&W54H-XZ0!-XA<}iKED~A
zKP^fePbClZnbxR48l##fO=Ym$&Z|><Mte8)kI|%xVsEO%Bq{kQZ=n0wFg>{wECtd5
zTe|*-{b#TiSR1YPs5N?l!ewg<PL+)^3v?2g&a9R|^9xElyYO2g1&%IxJw&g)%m62U
zNM&*BjKpX#=_a%BU0yzZ`XZPiw-8ph+4w0poy((?)hvC{#G({AJQ|zG6xL`-iMGA)
z(z<fBY)HA2H%`J8(8S|32z2)r?*9>VAF<{5`o-w9V^b-I9vx$&!<8rxUJAp?6OIoK
z`z<=L2}#ttX#zb@7}^NBJLPzGH%%QCf&G?Clm?{QU+74cYKThJ+%*lsogMYlR^(S?
zRxvo}h?9fi5j<gLFPj|p=}du((?`G!-N?M;_z)IawL|d-v&f@yX@S@(N7$nxie6m{
z1)_00Rpq6h!^(3E6-|gt#sd?n4mP4h+YnOj;1mc>fY8rgp#(1-rqg*u@w#AHgVWr>
zjc|GK7@b(*oHqnHUBlGHl&SCwHDaES2$QHLD2bLPwbK2C5VR_3iOwk~Xt<n%$cjK{
zLC5m*t_RH>uICKWu^l<iPHQ<O*hhxW+cOj4D$bx54p(schsQ+P@n9!gZ}%}SODp9@
zyZb=RGc^(az<Fu?Tu=AXrFcbMR;Pi04r4OVAr^9iRUbRr<i`jZ=*Cuk3`LZHWWVl{
z8Ps(=zeE~0Q@H>rm=*B`7V}A~q~^i{?PAPrD`kfa1%Cea#W~p4m9JJCBl}bpPX>2)
zAQ?x5Qa%XLsk#p=qcZ@Loq;I%RB@bS0f`TCZva_=evrML`_*NngrOoFUB5F#*8+`0
zj_Y2d?L6kksAF>bbA0SV4N{g?f}yD0q!aW7axF}_ejrroip82d^fC#0-%h8CM(_Jg
z_?OzDN;R5AnFGg_XX=dTSmAtKFBtb*Ye^JzP=1w2*pzyww@e)Vqh6<Ul6}0RO#aEU
zstU>%0(U8N!m*Ihsq$5#QBm=~2s)YSAZ-_5L-_sW*1=@DHSxcLMD<&DUGAH0+;5Es
zCPu*r1)6HE*Tlaty@@c%d9>@oBrO_Rx}1=tt7xhC4ME-!emjQRj_XjgU}*4hS9nuU
z)_a}lL@KU)zcu(U#N8l~4=>&sq8m?WzK>Gr>K*fFF>e~A4-Rt9@a`RTr9mbMJMIb+
z`kfOEytO*kYl1X5)`=kLQl>^7%I6>J!j;fX(iiGiv@vH;WpE7Cz4$LQc2t*3J&aGM
zy}xvepMIh)#(&a8>R~LguA)FG^fZBAW-SF}%`sCt^*V-0+EY^0?^rTDSjdu7w_}o1
z(y6QEBqa4bmP+xG?e?LL#{gt9r_&l%X7tq6a!!4pC1qP{qrK(6ZaQ~NkNVLgOtkxs
zT5#UTXNf5{L)+%lENTi`wYc8crflD=_fkCcbdEoAXx5u&)Qu$Em7j+TreoZG(C`j8
z558^J-lzn;XMb7U22I9_B*XOwt^?0#o>kifJgc}O4n(OfvH3(3fL-yGhHMYX>mqJ|
zqi|WbkQ?+4ar<(bwvGaUaiXK3hbj5!2oDH~VBp-ZDkHHj3Zb@5+>Mm6ie676+?pkt
z<hk0d720gk1>|Snu9_SvkDABY@7)I{V?)eML9zs0(?Nn99Jn<|;830n|Bn5I({4tS
zXDn`OWO+eIV}?)3KB|fBWC}JxaPtehJ*!+>#YUf(ke!#>q6x^m?he&#LqMA{w%)(4
z%k1G(A2eIo39QQvQ|7s~yjmOUp7y*V)3$FY1F_60tMb${I14g+vw>S3L%TRY*5OPE
z1g`m}5*j4EY1~XbwyYk8OS)nq+=kmJ3XUdF?!dRyLNM~`_miNpp$riHI)6AoV)sIz
zRe+6ryG2l`9WsnybcCLg5`*PQ2B(ywMdu;$r}0Q<93;Q3q~me3aj#ki09{1IEpis6
zp8XxwCfj$g|64X+dD(qLREH<}r45bcXaZ3A?<!<Woqc1p7$uV1hDM2eC@Gkmc4H#Z
zg;g#0zM=~yojr!64c4w99jR?I^P)VAe@}T~g$7qfDK|?kILj(Gf&Vsc$c1Y(4$=Y7
z%8jqSu(EbhfY{$XaMqr4&W@CwAOEMCi|vmLr)h}MpobE>4n{!m5D9<Vwvy{&Mf<t5
za^y+Qfz;L?D#?ZUC$7UCaClkWxEd@+f}3!W#kV`izL%!qq7oRm`;WCsV&-A?8u&e#
zHJD#cfzJW<9(Vr#E2o%S4n&XqQi*F&ADk=8$l#o=9I*j6J@<H2!pN)41!acZy?QhN
zS8LBm#1w=_j7@u`{epMa?3B#8&Q1esmdI9Gph9OkM2<H=I7M&E6b-l;s-khk!4((V
z5QbJVdZ1ZBwOq7;wv`&7t!SqKYcviOWq+k+z?&R3YV>YgQ&M0szm)^Rfq9TLh)6-g
zY-$w<Kl-m!o*@5Ht0XxJ!wLvSjNXd}o}p6Pyk{?G45sdA)zrOpTl9E*Tu}6>Ay7kJ
zw^l}KqY{(Of!X{1CY5RH54EmSAo~>T+!{?0<N&mJ9zb>9DS%F&XLCqX0?O&X*CyeV
zK_S#F!GjH6ZJlObZe?bB@LS(%P+77uo6$bi_x)LES)|e6mOMwvU7u24MeY@rppsnR
z?r%dgS=j@wXs7#2*F;4~Hu~QxVO68SAim?R;}@y_l*UHu^tvm_k-4|^K_J61IgET9
z;Ah>Xwak0&>V2e-CV)V9(f6{Ikay~iN+^5BJ+|Xu7*C*Ta2yW!B^}XmILseC%3tgr
zrEr`-dQ^eJaXzI2CLH8*L!$bpF}~V4-E1>9+M@{JFrVId8nr`1v%!d6hVbDqzv5n`
zn+x-t>YkztNBR}qoI4&2;=2zV7%AHct#HJTFAyRe_{&IP^2)*k^u&@V4MT1kssAT7
z2WC`h_!N%UNj-jy{$3qUI9=dFI7D~4z=v>*4leN}9Hui<(p!_hY4rUDr7?PxduKVA
zKy&z(Ebgadzq4*s7#JEtH}%T8MJUnjtKrF@Y!(LhyL-X#<Oo$TlGT<Q_)**!R!=A~
z`cXnpr`g2l-VXmh4_5={sDvbsnIr`v!SgtwUFvf<G=`_^{G5fVtI32PWs)Pb((t33
z-3_cT{OD$Q8+?@8c|-dROUe<a(2(VXC@~otGC4QqJG5ZdE$<Ab<b?TN7qo%FvRi~8
zlQx;9jolC=(3p;Jrh<ciG+fYTdsC2+lhJ6V!(`2SYb+5tsnr;16&*HB@spo9LJiWV
zQ&-7$QVOQhze??sfv10!Iu4gO0-~p`l6l@>nIra5=EQ^bj@U=J(97>%4eyT#<_GNP
zlAj#NURtU4@ifNCX&bx~hNCXpzl;{~lz&3Y2>J(&%c2rK{_K(3d{ipf52@Me=TZ(-
zIxX<C=E3zvUjo%gbg@Ne0qI+y8T%$aioSXMxZo;Kgw2SUPiQoOAv=KPAjRI(;v%=L
zl<5R}pt}p-AG#d*vbz80m)c!h3>Acs{uxUd=CGfQ@_=}SL2)Oo9YJ;>8&*8%B*3<v
zuKdM7u?512Kqr2YhiW>7*S$2AN9PxT`L-Cgc0`L~*db2=acNt~wIPFR``rT9d#S&Q
za)7%w25aNe1#4J9Cjj=@bWreWMACTW$t4|kBVwBY+G|#*2Gp(sr1ZHeMGB`3CINHJ
z%K72y!@@-GTt{FpkIN?jeDqN#NTANzWC4zvKVA1S4(M%<RuXK=w!XRG+6$mdfV^*e
zDm3cQNTt=G=i6P8#+$fufP1dOrtTKY+=8tt3z5JRnE-g_W5IiKB9O(1&Ld05GrTWR
z3O6>TbRYG53lb-!GY$L~6`M(9bRd!aZe1ehY$ibF?j6m@J#A676o}=B<v^sO#ALIp
zfkPJiJ)bPL!LACtA1iLE6&zli5JqJV=##6OsmiE88v8w;G`9Ou@gKap8J!m{P8y?<
z2l`BFR3ME}O_64}Mt+<JEi2l0)4B$oJc<<jC2JsxyxR4i0@^&r@){V?%vA>mK)J#j
zRXC6dhb~Dn9H!H`5YXse+Y&8TNT}KAXqwh#`VFY@Vhsyb1%Wfp(E1T94bN%RsRHpa
zZ~msAXxwR^Tp5JuG`!SXNHPO9xlF?a+FNAtw|vk6X&BV^RjRg39ES6puKB}2UbzDC
zAc}8ZJ$<qnGN_%F^yL)Y31$82iK;XclQbTLyqv5NZ4m9s=z3q_!c$>7ywK9njvUEW
z>UPV~DxEZs=D^ik&s6SYw<WF6TYbqDXV(M?GQgvXvmC*2j;bw|j6qsBlg+si@CSpK
z*qSaKbl__!T$6a_G$cop2<NM)NjO2a(A_*!kl{fawH?Gjt&RDBoQl)5@}B<kz`)r&
z@0dr)b2qn!khZWzm~>)`?mvjSfbu~@tGg>Gog)%OE(DrJvD_AAhKCe>3vP6ZID`^i
zPO>H3qNe$OV&!;fIO(;Rh#v(9`}1Q^bAUL$Ras!DUwR*v2DO84xu(N*bk*}D%Kgfh
zCr7j7xGvRtzvt(Li5YrSs5~-oj4VL7iRMuJ0o#p@1~3XNx~X_Z@+kSuc@bia43&@Q
zl@GHhS=#{~GF3Lu{=)q}3iGTx8Rsu@2+men=b@#v65YiTE86M2(q<kNj)Tm#N=^cX
zMx}bW$ON*!F|~+a9EnLtXPNx97E>sB&RMEw_9s+d+G6CI3)d>G>+lzAOsFPoTb=St
z#AWUy+yLi{SLNPK(@p#YbP1#<jRlVO0~}aftfFb7rsBw{MJ+tHND#i_AkxBTJw=s~
z&dK>7Gxvl(yb*6W>{9~Zd((kw6Ax>c?nl7pFl{8^=J8N@d>oA;4{E>BG$0E*L!JW;
zp}psS+ikxV>ytGlHS;1$ezT-z&Q6E=W9r;>4~O54Lg~~~SU+91&X~H3AXU3!>N7Mo
zF;PQ@WE)@EVwNRsuISqw^_i@!#&&gxPqEHInC(vu)zYd_seauFof0s<yEjx2@vyI;
zM_}pdJh$3GseWZ%Qqk`POFV2;VFl4XU#Wd<a`g^^PisfBN_?L(L6wLrgWh?SzcPqi
zl1^q?uS_a))kI{1iAqk^=pzV9miucs`u#N=v6etrS_#J{1u7*MoWTz5m7JVA^_Bzo
zZ5O0g%Yqxi3c4uKd66Oz-;|DQQ*(7K)rIg92~45n=L{hhcNs!mHSMI6|69V&cn0Nv
zexb_9{`4o_XP`ya;rPKsG>4M+>C(DJGb5$@iO)>gYA*<?Vm#wDT$|^qU%W@PH5dc9
z%O7%J;z>P8W&*46%=kby9$_zz8M$1i6SUu_JS2RH#Z?w3Tj&_8aUQJ6l{wRZ`iDLh
zizlz8fmpk-d&h#cWnU9s&Y&iO>PefoukT!qZ8Zk+{HvIYa4L>k5?%Ps_7Ua5?Ij15
zYuOvuRWPyRyXl0UG}U?n%dCjFn=+rU?ddP~(3xvs|CiFp_PM17qainOERDByt|wtJ
z>UXUDuA(e@l?B@I_7WIxy?XdWFKZ*%l;W>UI{0zxg=GmQZxU(j(ZH_VwGz?Aj=xLs
zmu^j=W@<88bB~!%+e+5Oigwxh7>%RofdLaW@U&s$2s~}fY$|-jjs%=fF{pvNbTXk4
zcU%MP6T5q(Dww)UnTyM}xYnq19`2TfXwb=h`jE<hfChgu0YEa9f?**i^SDq%_3ew3
zll^0?9u~(Z-;*!KR0L~ZRTdk24s9XQ9{2{LXcmPYKce!<J$N*|VE5p0AF7pD*R^so
zEf15(Em#5!#DxOh8sx<tv&kb2w$z(>daui?TJ0TCCz!rbnHRa_MwDqJ-KPe*vWXi}
z$mfvF4X{0NFeG=nQM8#uiL=JEWFHT>k7!d&`WvCj5K#$bRvuAphRO?@MbKKjDl*H7
z6v^LTh*JxOD&|eM`8Ybwo4PwKis0j($NsnZk=yukVB_=34({I5)}mtqziUZU>#p*f
zL7_iis<P0O3v25_e?FFv?=Css>?%L1bguASbWxq|qK+<efZMN7V3{nUX*A`_O+Sab
zvDD}-2Y3mt738hhf&Wg6h>VjRwaqjUSpoyy%1AaHBR14^?wYM{Mf=%2uC1c<a}6bK
zzvfqC&LD(w+)SYS_4DC0WJm7IokH<j=7Z7wPg3O}J6u=MG>U&=J{VPb8jLJ)&H&+8
z^C9_Nn-b@fuMj`s#-wv7eV;2~G}#7PjtxqKA^ic`FnZ|Rq0!0!kITCcP~?*X)>FpS
z5NWVb8S0Z)rD;RR!*6!uTN$aUN1oTI#HLuNg~1TD*0jyljcX1L3?FE3?;9KH>4-|;
z=N9ElP|}=IERc|`2h%9?(`P{@)Qg(F?LC-7h8v!(3e`2@dws%!ptMHh`fE0l746P)
zrvS0<IrBrQ8e&@mT+cu!XcXYN3dBQ1i%=G_Ca91(K;4uMiDelhVKZxu_zdSaqiKLX
z`kIhmo7h|+zcJ_{Ab*t(4Ze-kynNgIZZrqP%bpi9Z4<i-WZL771Mj8JPsIhtMrU4*
zZ4ewy0`Vy?2$5~{yFiXTZV7ldy)YFQ92=c^Io8>)Y2ZENMIo+D6fKZnMa={4XgVsm
zH7c!g%RL!Q6a(}xF>srUSscp_I=a?r;c@u8L>#0+gKzsiFW=fPM4bTqa}3xbxdrlU
zu+fVhzxSR9YtLZ8ul-Kpmo97>DEExgy(@>xyJ&0UaPN6?vOEXGU%V8^nUS8uBkeLG
zr8!Vqdi?cr=Xx^|JX0Et3v9l$HcBt=@+2xnO0~0)u}`KuI|~Ik?M(03;GmpU+Fn@s
zLtKwB%x+Y}k1QrgSDa>UUIJRW(i$nzDJsF9BYdOENHhnIU-25{{IIc2`=E_&|ITf=
zm6TF>phlcG*h6X}R&9UxHNjFZrK0>qkXo_4;Z{<Y>MrGvZ6}r7IA5MXaoe}2;_09n
zZY?ErO2sbjaC51CkZqme22=eY+jc3YumJXOJME2Qoy=ZY=!D`k?xhV%q<Qjp>6;g$
z^a3~~%>_w#(w8-QrC<3bJz+_jrqgdd9~MF!AeE-mJBDMa*uzRQ>K{`3aoJB@B{ROX
z4*RwG4<aJ1#Qt>|?58$Rp_}lQ9M{OpM>ywx&Smii#e=!_(e8sgX<}>=#&q}BYC{_$
zlnIpak&~({i4x^d^#7zoU`kmnzYd^!=pgrA(JTr-?saP1%;h=mi0Fm>H4;JV^0yGB
zbDKh}d_)Ecoxs0qQt2G1(0!a#iT@frDLudmv4w8k{XqUfRgrPih?J8YM39JzCI{hH
zNW!L1n&%N*u-9FcK&iov7UiSW;gL~yXGhVFhESDY{Y@*$YxF6Vp<Wx{y}=3iS^Qm+
zJw!}g@JZN<g~Ul!(UQmTz~S<4=RiekGXQzu8yi?jhnvCpEL^8&scq#5Z$DkpuGN_b
z#E?Pp@jq>RS>C`-YFJuOC~wF~c@3ONu&q=9dh<Ns-vOT<Tp38=oHs!;_%uN8`zBRF
zI_I5ROvj>@oOzKHa2jh257M!{C<oL}rlVVZy(Q6{O$)m56bSEnvzmB)qlxit$Vp4^
z$dyaW(G>7*R$Mt~tcvrlLOYTaX*Y6Pn@0J$>r?e;{AiO(!8vn)uSZaTzb+nVYo$EU
z>(HXNICk!bze^g3*Mu!@e^CzQ3-jP;Q%n&LCQ$^!<L5!rDo8<6AL1gQTGR=s`@chN
z!#!w4PVB|OX}rPq(LQ%#<f?+2GhNZdZJ0eHy`!kjlTruKhf+VK?TS(>4&ZnQAYqtA
z455GJ!zaUZ(FwZy(97y4%qMRzJoWQvU+HH2tj+cPotZJcB<>Uu<stv|s)vPFHjt)(
zF#cZEXjPR*L76G9YHIrV6<$qb>)Nq|u^L@IsL5fl#>r67co4+U{VX`25yoqjio9XG
zMmJS(1>O*ZJB*4hi(;=sP;O>$)OG++@TEN&C+ijf3cW1Z-w{J`mtoLG0H#I}mzros
zx>|~i)Y-)KE_?HqT4zdAfznY<!=t7cxT}SY$E2ImI+(dp>q7RoO$N#m`owuUeKBz9
ze(XDLAW;^wbX1c>qNln1<b($5W@jY?HOj}wZ&H3v*b|GKGr)W02Y?&bqIpmiB1LbT
zXipPQzfJ;T?FXAfy$*Jf0=1)dUiV0a?s(~mI)U=tdC;2ZZp#2&`ZA017k#)nR}VYA
zVOtl^9(4iWKR%KQRBvy#&~VAt=D-_|?VycqN26)ruDvB4Uowe7*`sWrkuS_oLn^xy
z&^Jz}l1MRGP*`RZsBe}5!}yYBRx28FEom!-CDAkp{`1FD3A+nTMYcQCBPaByl<#WV
zUUm#cMG!gl<Eg|NR#X!UcnZDdSOnbn(qXNoG=bq!(j1CE`xB|$8BCMdfchS1k`ur<
z?UN^h#VP~9Cr=3I9J=Us1_(ENYSAn)%oK`$_tU8`3#dbQCmqYo0`Ld7Dlng>SC`}?
z&oqBm85%8*^mX@?_sTE?z4jcCKK@xCQpZH5T(W*4Q={u1DJ2+ca=3Bf7Z7{Y3)7^h
zs^h>1Au}NUU1dVtxRGdTRdt}TZg3WOcYa=llWvfDUA0fw4bzN+YAjAU#iuNw8>C^#
zSkLI*?t{E}I+_C$7kxqNj>o@Cj$aE8E03;{qJ!bEc}V5XcRC(>r@H{T3$XwGC6)CO
zxspvnBB?)<86OZw_FM3hotGhZ$s3^sqjPs<gCCcB9@|#doCd_;T%(@`d-wZ_vgyMs
z3U)1y^3fH|DOjr5W~Wsa+2-oFwMzBPe6fLT%7{8=y+Kn>wPVYH(I?)f49n$g!G<Ym
z0l{97K1f7r3KsV%RktDr`+>MAd3IAeNnts?i%cjt=(0M&?U~<Gu4_HrL+vyyE8F!H
z;jw+b7hHqq@NNl7NBA7OVj=_zBX&mtCBm59wY(qzJzS~L%d2{fe$9-lvyAYGffU8t
zsvMW@&=I6l@M<sJ4xt1E-4<ap@0;}9WeU9yDG3n@Aa`6@c!Q?L&}Rd5d%gM20Hw|r
z<Cd2e6VP-L-OlI&c@23GMK_2F8q{!9Lan~~2U@%R-L*4^X!3+2@*iJeu?_89;1E5y
zWI>{Ssup!9ajsL`o!DOxK+(0CwDCyBPN_i@cP{7jMU&v{<H}*SLYAJKlTC&jrO}bS
z!_f@NUGPIlD2!@u>gX_`q$y!j#ylHUFadP|;I^Nts%+Rzlhx)DM@1qUh@17;Jay=m
zs`S9fFqxVR{>d?oZiCgzoH$K%`UJX<iX1?vPg!2Y?l8+!VH*_JY>G)A$tzP{%D$n)
z9nmagdf?AgNk>V^c9+fopH?CG*xh8<Eu@(|qK(;h3|496A&)cV0bKdH5{U69kG(G~
zXdP&+gtvPpMucb9WTP}~c%aIu0=M>ylZL-(c<69>WVGT4j05-?zdVTq2I*Q+*|E_D
z)T`6cEo?~+@+w}(6DZvITd<fp>}Qg`dZnKtkt1v5uFPgHc2~2Iqp~E|-opgiZ$~a*
zE=Up=K(?zcfI882&Qybx^_&t50yj8I)jZj~WNK=c+4G#8+3zOHkaS#;RwD<Fc|(X)
z^rgSkT3Rf4fA`_?4t`jyLU(<zD~fW!{MzqBY%^J5Jm*cgXRu1~nz(lVcqJLOgc<%i
zEZ=Nm6wjqz(Vg)U+Owc}&fRw4nyFEHl$biIc&$+f<r7@ZhLv5RNQWvitZV{9Cw5IN
zM51he<LV8x<geFIEu}SocA2$}$0%s!6Obk7WB1)vFLV!<JeR5=2=%k3jNsbZ(2Rp?
zYePp)%O-T(OmV_UpTF#29g?;ToD((kM363xjplJJ<HcCS4U*)g0_q(sk4b@Qq5i<u
zJ@L&oG+Rs!?#ta?c&5%c3RCDCO2Nt|wK!{j)&o9wyX%6yN%EWpb-`WG?(Bn9%M>IC
z&o8HAPq=W6uHv?<({BirP7{`<m#O-6M0Ym@>8}4I8&(%UcQlf!$%1_Xxfy4{mc+!N
zE2?pe@?*U$)%o@>qnG6wTAg&IO1A<u>8i<8<CfefJWzETfQSW(RNbcW3U75|?x^8d
zUraYaE;;@+(9RNVt~`3TS5pq_WFIB_;g2?h4dzsQ%`g>e1CdtA+wxj9Bju{qL#S6t
zhrTJ^HB)0vV6J-}Pa^)G>cNVN7@hHYAqlqo6d`K%XX<2{NZn_u%aW3p99IQv2oP@J
z)ewM%-|5~Hnu6TB9;5P8#hlIh|H0+nG^zho8Se~U0&p#yGtW_G-IgHNhSG?}Y>VPl
zF}EOznCI8#s3e8Nwr2%%^E8ODvPWHGClfngceWgLn>8px)Fg>WwMdrt&eU~+eIv9=
zB*7x7H)rU4-c<I+iZ!VKS#kyEi0@()dZ$%iRIH62;*>UHI4iiN;bFNLu2`4_i{8xW
zVgv4fWR0-|6(3uzs;(cd(lvlgz`v4|J#d(+RQ1CP(e~h=afM-witlO5-lF#EuuRKD
z<Dj~64XD$0pC!k2XAfD6Z0TH<vMx*yY8=|avsF<EWna2hC6KFDw_72%KfB}`ZXFE~
zZ<&4eytb_rZnuPI+a^Kf&UMN$ZzlN>ww)-)Y4%NZO)GaYQ$2^m|FT{|SW@r3Jqx_s
zs(o;*HoB3{IwN=Q1}(+sM07V(mR2ySm!ttRRo2o%a?vz^qU!_PhKVYmzIjF(WGWj$
zTsDhRr#zu~X;<fG@;jV4Wc`vAsjCcBxSD`x!GUaKvz|fWM?O*Mrh_EoYJkvfp|z-p
z(hq!6a}+&0SkKDH7+vrg<xx8G<mM=s-KD3G)!#XLpoh-O6&jI5IRM<b2|&SuG4*lD
z1>@gR--+eE%yKLuQ$(T>MYj1iI!Aqn&M38+{})fCUa9E4lC<az{<mATrt6C}Sn>Ly
z*m_`>SbH=FY5r-OO69lWQD~&bOXq~uySYwQ9Z5!=Ath6|WXWzn8d-YKQMv7ClomAo
zn2#+P_nDZF+-E*ALsAhymkE{aq5D6nmFb2>=UiPAOA7AHYZLV$dC1$ny}4Ovuj`cu
zjA0%D9*wFff7y=aIA8c`eU#^LWRY+jg^xZ(D?xmGm$|$KUbj&rbThT%K<n70s4^__
zgTgqfkPKePu(|7oROrIe(Wn#X9cMRJz}-Gu-@cpzoP~Fy^q)(qC=2Fo2hDIrPjy(O
z-Km(?clnbm+Va&*h6u(jxkL(bpFPdN8o4x&lmo)CbR>wXL9DmC!@TL&!;GW&8_!K;
zsMg&lXJGwcj=Da~9VM|*6}7V~1JM)!|8!m|u&J$)q_TA=I^Pw(AO0?h+nRwSdqKwv
zFIDDH_PzU>Gt#Ju?&_{O<C+G*!!H0(rcXkz?cTkK^9<aNglzlF%Vb2C-s@x}g6X&K
zaq0L%9dc63YzMSP)kRD3)#~IWUTKk+dMmJa{YA>^pzeqX#;Gz(6pnUD9`e7`xtPE1
z*2tRzUR6-0TQ|~#gI*b9(XdHF!Hm2*MZR3!X9n_g`V_kDA@0USA0?lm+YdCp1<x1P
zky*g+8aPJ3xHtt}ynO%S?7-HmCjs!AMFO2eVL;!&@R6<J_@XYyPOdwZEm>q*R#3O6
zCg3Nf>P<k=*>x%A{SP$5R>##k_PG@T&ja+qJ<Y)NNr(BtOBgHUf%m>%;AUj)q01i}
zNRI+FW~f&Pzcx1wtlP@Xcx}`}5rV{{vnc)KzGf(m92%oYK-!7oPd(TSrcpRbW3b&4
zk#?c@CH>7{lJThX6vU0Qzi||=Rhq%5{iP_E4Q(8SZ@IV`h#Fc72s`R&6u$IODu_gE
zKCnmuF;6`Xgu4cTlo3Z9I9_qYtvlYs?!~mmj+fLajUpOy6!#9N%7E6ajUq(`OpSJ-
z{Lh-==qz9YN6tRXq3oY)ss&6S(M*{6avA}^=Wn_#T*D%NZ;pGp_;zyTcOXmL2iHec
z7qe3j9+E)7kam&>w&<pVqfy7_^08FinX7LkHP3ZKMHD`AM1>ai{Hg6Y?*^(X0rjes
zS{(=2FON3oELpESz^d({as4iN?RpLXFS%5Kj`UOT>t_VAqjd|K*-=DWNd`9!SC2)L
zKsxJ6m6uN8aBFfMxz#hJ@_2<(!=9Wr7$a}kl~XG6Qhy#IZ01KZ;ypIy)zqNhrepPb
zGCA1#K&di4O9;W%hhAEp4CaDrBN7C}q8?F!e`Uwl(Jng6wnvP;1o`iNwd!HH%=?jC
z@BFMY>@3^*lH;n#EJsAdN^s>0w+~A3PKJ6dS@FrIL|japJWiAY#f|@>lx1s>kNWEA
z+LV2R{)Xo4OTZd<recZ}2O~M2txH=-Phvj3JVGn10GfK10!rw$&%(6@FiBVRM2a)>
zY{jz~VRah|Ky+@PTb6`*(I24CdY*zG<zs2$vx6H(j+!<3)9>-tO^-eDSru2O>Nc`$
za8%1}f$TK<Kv4oE7R~Ev)o)0tddDx8n4<}>`O_DG-8d5<Z)S(;PjiRFFE3i3Q;p_;
zwc;g;>6(c~*I6`^rCtbIYkmFK>gNdf$R~HxMWCJXQlMtINs!q69ws)|C`ZBQ`%-(F
zi)Op&cd%00q=hh97i8o>@Kdc4meZh1eb~D|s+%yaG6Q;(FKba?(A8-cC+#v@!cn70
zt2~w#y|<Ek-piFNFYxIdPy77vijz?VT~-A=Nv7kTAVi5(4EQvgP8u0js+0bJ`E-Hk
z1lW7dEB?l8YAoy2nNO%QEv{lVU7$Mw_MY>~zcHH{D=&o2p2PBL<OF!z@G9^)pAV2O
zEzOJwP-2cwAl-Q~5TzBe2bcre>#sWrd<v>CI|;baSDyq};uAv?pmn_FB%m^%4z?3;
z_kZn4fOU|0Kz;UPK$`Oc*z=B`1U^Zra846|yYO`<0hYC@Ll)pY`t>IPR~!_8ivZ01
z>q!81n9lzx;BQU_u=px)98Ee-XYsdg+A`^^n|T9=>0F@#e*6t5K^1h`i53#08DPEc
zjlguzY6ksL(^*P%U$H*2nK*k_?T98pYX6&+qz~|d@q!QV{BR*dcRC|h3;M>`jL<?k
z+Cdz3fs<>mPgkr9lUfrJ*HhryqzNGY*^qe$td6R(GFbKp{QS@+L|GL@Z*hEGi@!^<
z3rATUO`!BM-l|eA9A!<^h0+(^uy~ZUQ5Q<zZ~`dnqA8UA?Fpc)kD|9ZNw(wfVzj#<
zDxvf%PXOhNXcDEr`*vtIQyv(VeIhh=r}4N>b7p8xN}p@fAs45~{6R3sj@Gc<hnIYF
z2gUHga9w@}1J>58BIQ_zJ9z-hpM?Zxy+iFJ{mFvlgsI;mq<4=2;tdAH6E}YR>zj>S
zH#UWAx4aXS{r9$&I7($#j!h%erSDQU^~$l^F_5CDzsMR(+wIY|k{7BBY#bnudv`t9
zuUi0fi}f<P+(c{ZQ72HIuV}IR$#j{K_EX7?343{nJb|qD{WoQR=REX|gzQ4DA4<i~
z0e4$E{v}RNM$ZPN$x6nqn-%S{(pLiBe;cmWf-U@5EhJa_42x&8qA4f($MAQFy<eAv
zQa>CTi0GfLQM9x1GXQ$&zpG9g^VS^Dt*B1|=fHoQ5FUb!Do~#Ap83&qyqIc7*viof
zoZlKAThKjk$0XWfEC|TadmV>YzE3%gA;WfzQi|=6Gb^{Z^Zr%3`qy1&#lAu;e;lY^
zkD=R+#KrJ!*t5Xg@cxi<!v^Q}JB4#)m#(w~!z<`15Zr6g3D~C_yc$>l2^XYIE3{Y-
z37hBw&@)>A^fr;kqx3uzfO&fhaN0km^Cx=|rvUTW7U0s_lNZ-rR5AmcpPn$Dv`^fn
z0<e4Ds8!y$PMS06E<pjz$`;_#{F|2<Hd6%9SuFtStYLbcct=+P*2OJgHkTPKz6zkp
z#(*-h?E~OuH(YofICxxgq2RYQCX#ZXZ2{+Z!#1loS<Hgi-ENxSJes#K*(sU>%<2<{
z(|asBf%Nni5cS}Ax_t!KS#$yHa0{SmJ-)9&w_y!1Z)yQf=g-r5bRFvyaDLJluio5j
zF-A{fHo@1Uz;l3K@qvbQPcb3w>XVqUwR<kSW<(U2b`caVX-p}_v>{V)T9Z2@8a||+
z)C{dVpuLrPr)V5>KiZgn+6mW$QYnHK1{$1i^}^FF4l|(jo5nO7R$_A_;rlP554t)#
z6@PtjnCxnsqj9KN1j<=0pfz`xw!5eVsEbbqB&o9soadhmymRRA%LIVle!_r^HU*Tg
zG)7xwZ3pL9X952E#zYo$hSl4v-z87$meGftZ9NEoQ*3LIWa6h;^T1#CH=tvOS~~%L
zUSlFQAoH$1B|w+ql$@=Ix`1_?Ve$aL4pl5BL=Vtsfm-{py5$%;f^?(SG)Sju?eLNm
zi`2(~{Tid8QDO3ylC(&@4j1A2B+x$I0%}??QIE=(6V3qZr!8Qn#q4#M61dL+>z*G`
z4L6oP&E3^ux<ESzu$3nVGzj5~Ks@W@AiH@AU|rk-W?CFyrve1?RiHh;1=O@)z7AD`
z)Cs`7rv=y+>`EflX<+^5$-&fcbq;X%ym@}pN()!(G!VqBIUp`?0ogk;KNhY-mcX?L
ztUWDYrbQ8Tm@azl0@$k?gEs66)1ucjA{xR@g2vaI&{}8+n@&%RW)@@~c}v6EJqdAa
zV+JIcErR$ZjhQ$Z!E7BD6oQR|;F}r~ZdkD`SPzG_Q-J<TV-nU|w*bkp?JS`F*aBn=
z&fWstXxiDpL-E%~Ny#p>HC$5h|Hs_Bz{hnJ_v2TxB#R_~@^X|y%SH;pHbIdc$1#CY
zC5~MubrLl;iA%`OTCG;n#?tP3cjXr(Q3~a60>7d{OAY_DRZF36C?K9OkAet~nm}8%
z;gRyH_(33qmw1~{%Ktm(%*;9W?!DTTwC?|xPm8>B&;8DvbLPyMne(_Q2D_?ZpyZtP
zG1`k7gG!JC4E3^P$d%}V=k!i7hqokiT9P*!(d&@sJHtFad3tz--QPK8^3Bu5Onu-5
z=Fs-hM6;!%DsJj1d)J<+3)#V7>#IQJjw`p`6z4+vpzJ^PGSsd*Amirw5F|N|0}OPe
z4!}6)(FZi1<0J#Uu@1nvLGJ@vw{e=0KF|O}&u5%vxGy#U);Nsw4D>`DfN>6^Uvu^r
zg9q7y@?U2`t2HRjTl67a@;Ak3SJi=9tBYhQiJ^+gkWpi|$hDEa*r5clz`r?}O^kQ3
zqy(_fTfFNTX7_M1TeS|gMxFJN7--eUqUNT$Uuyx1U){l2>+8Ub^Q--edroyP!)>nv
zww7fy9(6whmFobEb6`Sp!sTL^HzmVGHBXb4wcw4v#kdbA<7?m7!ZXem<2+FZUai6B
zJgtwjo#4NV*@-$p$<1P<s~Ur7d@P1~Q3D{2gT**6OU7Gv&->mL!@nh&&62z;Uw^}{
z6*KtcX<!ubtC+(#PYWmKR55(pCu&<cXF9yZqHU_wOH$iY6L3m#@Z@<Z3D?Qar%(Xb
zi>2-iI+(>DDJ#kdUc8*G4D~aeVrJ)kQtB6C%4tXyV$n1t>PCATysZK$M!ibWB?Twf
zNiOa^D&j7C=&p}(GIij^%{dN_{Kg`q+*=1)oZqNu#%Y{ll>6&Ii?d&fW<ACkhIweE
zaGtw3$5@ZA6w~;M3ygBcKZ)ujcW#`os1;^Mv4e5e*MS%3C@P-w5_=iy`Z^#N?Gttp
z`x$34882$C7jY3);E;bP*zZl|u~Pp~8H;l`%e=mx%u^kNMaPx#3>O&X+>^BxV^K75
z3sVeqRULqFZlTuK^9lPH>y|n&onaTty>`7~8i#OzQC?ODTAYWaXg0Yz#W0^rhKuT%
zI)rh_)iAuIRp%J}NuNsWrzP(Uh;lLt(ZLLUKbcXCN-uR|Kpbn6N*!Rff1S*}5vf$=
z57%>sSv{Q0GO+^})emy#=NWX>Ly7&Sqjga*^5r`iWPKfAi<(Gv<a-(E`UW7PDf=1b
zjt0Py%Uxugdsm7_U{eh8?qsm#^|R-^&ocJslX)!3c~?CRdG7O!{<B7N3A^pVr>)Me
z;lD1*Q;%?YmD!3zw0y&Lim^8*^U(3(OuOf^i<Ot16Weo#vO}AKKE`{m;*ziY2g`BL
z6FAH=^1;u@$PRH}Z(KPp>Wznm_nh)c27jY65x>m?u4DhMZ52ICFwJlus{=M}){n|-
z_VUg#*yDA8#<}QGP`fdJ!Or++Y31Ywh%<RnP~I89XzLq<>iO-x40(NnpzYoO2D_sU
z&^Y%!+6uBcfZ^_~12)c!kHR`<eu@$AuLHTBZeyQ*hT-OuVWTE|5uZLPe#o^K7U%y<
zqT<E)K}$;gM)`|}pJJ9<lUb`xtY>r@zpkIb$_)Y)e}9tk-dG22oWCD!1kdfCX2|!|
z0qy1nG1qSQsTe=w{m(Mk*Xsa{bI79d+8|(o(boNIqP9d8bI~9mmW#v!z04%H2(zVb
zu}ENORHw*%-kHoVW+*H*Bv?d(?X+WfR=Ce4HgO{&gQytrYCD+Y<;k2AJGUMcqBx<C
zu`|g$bj;U-N#R0~vF@z{vmPU?QNt7i-rqQ2io+P~p~j(-+ds!}k2eUGFc%o>+<!~d
z#T99U7g3~`#pYyIOLD@a`W*@^`k2Wrr-@lOz8GLG2TmI|4KpU0#p{z<>F{z>Nv$wr
zOEArN=l{DX0tEqQJ+gu$jiC<O5~LXU3-KH{%utT?hZ$SEFk_y<pHL>^WqZK&h8Y0n
zC4k^z+bZ4s*9DN(ur(bSf~A#!UIx3q4$zum20%@i(a&Ia)B#%4R07n78AV3Bw?U|0
zm@&nW_csXIgc&mo_D~(5HNy<F0*4uM4EJ~)ur<RBz`8JFff3L6tPH<oy{)I)ILzo^
zxV~iAsCln9%z*fzFhf{OB(sX~t(G5VfWL$plg#o>$*k2T)-yVduQ<bC4>t%@!i;&w
zd!i29nqdYS!3#5j&spVJ!+#gEQf_WY2r~d}!i*GyZLI^erauQz8)oz~+AEV$ql#I7
zm?2yw%$Q;(pIU_3ioy)X(5TKF^EvzTiGw+2D6A;V2uonXj1+TECri=rFau)1|1C1d
z*ClgK?A&@(h{B9%#{O6`4;}OMU{aVd$5@Zofmx3c)-Yp%0nhkCqC%*!bplf~$7t&t
zhe{zqFT-8mAXvieXRLBE=881J3o|B}#p{z<EkDeFeuu)0X=d`i)5I(sX3R2|&!0AK
z8fMHhi=QR4QjK*}Nv$wr!{#7(#14T8{@c__amGg)7H5FPBtu{MA2QlPEI80mmh}f3
z8#a59MjxZUNV$l|<{{S`X%I4p8Uu{?vN~{UIx_~BVvQ+AyT1<9nz06<nqXsw(H^P;
zwWeJoR2yx~G2G*gg7w0U1;#w%i=rIK-By>#Cf?{^wDonM){Hl(AvoaZWxVU_z^xf@
z5Uz_j`Wf<$I-u)n2o5=lj5nQ(8#VRyh8$FZP|P7bK9|fZ#?e}S%s~Q3&@s<ESAD6r
zBGolcjqBLKXqPt%Rl<%w27FN+z%|1TY6maw7+}l;bzr;6A|dV|Y!i4)GTNK!K&|QF
z5vq+mW*F|<$*@uVtUvNlHWGR)Fqd^-PSlbm?{*61)jW<yfqI$I{$z$RLt;g-M??e@
zd`vR?k0y)J@Zf{wfLlDrEPtHLI<bT6(jy8#g0I;A?B>5N)UKZW>jI_tqnE+1uLHC$
zldJ(qKO^4JKx7K^81CK%!cw>}#d!BO3YS1<80_I>(3R<h7lh0+kDn#;T7D2hdLD{G
zg0EU-T*H53lyPO;!eK~?*=#<2>@*JPV;;98^IAq6a{0z!fB`?Jz!W4L`j1AfcYwt_
zL;v}IitP`v;5bBC)*pvlzR`<ArWySM%0(Pn54qkrgpfH7nPt4M*MVEpzcIKJhb%DK
z8S~O6$<o%0LkQKxAsvjiz7EuyhLccj9Ma2h*Eb5*i$nSu^NvPgn>eJ%X!q8ES~Cuz
zhTu44it+BR1Gi=zLbxstnPJF>>VU4R?>G*bW4z#NiJBHQ_w~jhRDn<&B0R20<`v^~
zEk6z+0VEFTW1g90-fAK18mGpMEHc{b8igux$TS0fpbp@gaR{}87l+I;=I86ct{I0A
zwuwXL8Ew`7NmL|l;F_);q1rg4gW;}AhK=fH{c(u0kvOEExx8`_ZYx>>@i-a<nqo%(
zmdr3_NUSIhiHKn0ka=c*(bp3@ui<eB$pPoMms##gW}Vo<b?FhsAp;ElvScPpQ%;IQ
zrWox0Iza0($r^{uFyccEM5d6B;T~@wEQJgUjCaO2617KLx2}dD&<+N>JQ;Lldf~+(
zeaz#QWM0dU3`oyIamWC3IdHnTh2xM(X7l>f$4=vrY3A|1WL~NXZfdEu9<q5;Fw1~f
zJSr+iLBfVFHYyGQi#~?_c{~e_LzHFxameOPUK|p9(^lX&_^%5>J>+`h5JKiSB*l1J
z>%gt)-xyqqL;4x*jyh0l#vz1i;*cVv-CGB0O?yG8HV&C$xceIg>%}26jQLQbuuU8?
z$7qk&fm$;Tp@!f%WP$O{_?C<o2_LJKtY#cSxGoOqV951#K-blG9EbEW-as;L)ZEt_
zhfoDVaftBvvt(W|PS^6|5E4M*kZI=mv1HzAA?q5a#*Lg~v>!JLRpOA~F*aBHcQJES
zGY+A4@ZyjZV{Wbk+f5b;>mh_~;*dT@%hZ8d(|;sX8;2Ab?(dUfqxxBY9HML_4w+#t
z-(G~<isBHDqfwv*X0+kki54SfNUSIhiHKn0kUnOAPqG*dk3&cfILA}W^4-a-6Fayr
zJ)$^dmchTC%tS|jU7!?)EHKy^k0<t>g4Sh{H4f=u#PtnCrjU=}u5TbLg$(_ScSoae
z3AD&yuS*79nO=Bt$TahKUox-d$04NWp*UogxqSX~aSO*G^UUUFr;nY+A;EX-P*}r%
z7n`=+)KV)B*{~7EGZ^vD6qy2%#~T)i5RYlbzV*8@phG-35>cM@M<M|CLXiQ6KcZ~J
zOZ1@Y4Mhwz$0Cyq_@+95Yx+1An1YcRhI^<E*qXtJfi=;{9K$_c2W(CAX<%(QvcPy}
zd{25Yxq0iu_2Q8Z23_AUa1)U9GTilbz}5^%Oj~e7($9c*)B#*GA~C=&Bq=iHy>(#M
z*U%i3OfleWGH}%N*Bg_VDujX(Ve->tW-%Vv@`Dm1fkY+2_pOe0^IvB#t4%?DBi4A8
zy$rXjVXzXH3^3x6I*@C|C8jC7z+{p^Utb5fn>`W&69aA{lWB(gSRJr6oj(I>Lz6ki
zd(saQ4NX){>kmyFABjymn9X&Iuv<}V;<Ger)X$v$B$;E(&{$D$5|zP3C)3RTYsqpn
zJUTIgz-L}yp64zsy_4%xCW=o|jJ`FQi-r>Qp;Ca-&uDklfm)w|)(EA@koPtcnxa9*
zyT6gR6i&=A;6n`qCe%4b`*AXAq6w(4AH66g_@Pz7HT*YbvRHnUV)Q)}rlgq7=F`S5
z9H;a#pIc5NKMhm{n8|@;W;)>Frke6tE|c9IzSwn=vEEpPx%G3rUZR+>p9OH3?9fj$
z(#PsRjB^h>DecWsjPrOMcyXS*hi6>)1;#n!M^WQgUE??d<KbD~y@P?)uN=^G+It!8
z`jw*^Z@r&!?x+JV&Rh4Y&2D;;k?ySnG0si*5S@QM#bEc>0a~MX*fF1Br1@mTsJUCj
zG53THdE|nA{*M#2D#q<tl1J{b7FRsQ+_olj)zMpHtXb!Yamp*l6X$!9q25>rWSsNu
z)!OsAry1>ib)eQTg~r{UWt^|qffqLidQw_Hdx3%0{UlKzqFT48pB-f&4t6i&=N93!
zR0q47mr;%)vv_ARs~8nus%IU~+_==U!uY3&ZQ2Nz+LHjzT?aF}Jeg@?N7m33a-#bf
zHj@mmBe(_}dCx_Lxwj6u8s<~o<|)Ryzaf}t(isMNs3CyHrDdeYSB^+<3k-Aa&k_}F
zxqa@r#wkYMoXllOuCb@LA)mO9@o#B7pRhALzzhzY4o2z)Pcr)Jley@Kai-r(*O$%b
zvG5@WNx}@K1`CBT_cez@DgEeJ>LqvLgAUWo>inOJK2VPR_?MQkp=jyMQ_OTao;fG@
zRhXCrzgPF$HePu<M8J0{0>QiB6j!Rn==5lp*adTn{L$r9(&Lh1^tt-DaBY-pOl^k8
zD?PZralEpw=U^#U$@Zs*hNwQmVaF3vpM3Tp*+hH}y<aQUGB`2ZGiIrK!qiN<NM#4Y
zR9v!5)X}co2UZ32U+XaX{+H4$2EJWi37S3eis_-CpQSnbzeTEpxuMD^eHQ)1-TGR~
zpq29Im#s>*40dlM%APKda=DdGC}BAUyRV?f?OmH5w_-*m;pi;Ia(uSwdQ+RGmeV6o
z*-GP_POn|?&%HF_vT1zok>%Li%<_b*b-=>7aU6k}$mcSJA$&QGU%#kLs#O>pdQrAi
zpoad)-CY9EQY>XNgxTlX-l+W!_uJEuh~BV<MD(VHhOiAk=fg4mLM=hIW+Yn*dRg=r
zoEfbG#J%0sfGgI$fvWMp96g^MNmp_QvP9mi<ZyFFWN95tmreN&t$k~*yel`7&khkx
zr-K>FjpQn(Q&U~BoeHCx&!j8appWIh_$;Z186)1XirSgbfQl#%J}YA?+8NK48n7Jn
zGONE4mf>1QAVVX=01O@qX86@-o+DD*ae-FwlmLcf1cMhuPX|nOyy|)S;~CRMD`|#*
zr;goL*V?^{)ca7-%hJ9>q+Yb*9_%8`NsYm9z2|acgkg=e&eC|W3A#azygv}M-#9-O
zwN@`>f)u|v7Y|^@b$eIhK--@Q<jn`y#EMW0VR)>NM*fsv{;Q{ns(7~MFFjk6A>;E`
zcXxg9gdO@VMKkk&IPIDK{KUABk4MO4Z%}&1BNuzv-0aW^sf7@j+V7~QmqHWB7E;^+
zol?S`%9eK3Lp;lsX%!viJ=1U?TVh51)Q7l~nA4OR5E)$<1;g3Wx}IBUj=p&!pADwD
zy&m{YX}3X{iM=5<*b`%ArFz~hJV-8>&V^=<ZtoJgtPq(0`{C+TU|eUJ=O6!;bUgWp
zP4}((s-18}>SA$S&u}S=%U!tO|N9Jif%wH0ztzm=(_HR>*z&C~Ce)bDQD`mfv#l#L
zlP^I(CaGLGSI7sm4EKe2SZV$`akr19M}m2Vnn=aftd$41I)R#%h!fOwZZOG6vllIf
zD2_>MDO;hcJC$k8mQ4Sx?fUY0es^pyQtu51f;-p6_$|g!+tVf8(RvVl^MZG=J3d?}
zAq`+#SEj1gv}HLq!-dS8v_-Ynh=8Fs8$@K-#WD!*_jQX5Wl>&lDkzJh4!Ch>WF2*~
zvUpARg=OpLQrXz)T^lj|+e)QE39Z2r9KTp3sbmjT9(-V9j6Cv$t%H-QbqP|$bxJV9
z+~4v{kz&z4G0pE)(KP?saPvbadLylGHDC-W17`D<OHL=dk!;0g?`D|I1J4q62dIIE
zY5YLUJzYP##OhItp(DT|@<5lQxh+{8!?!)a=JEjablo#q1&!a(>Dqw1J=G;8tVzJf
zP|8`D_+XZWdCgiDs<jL_)uM7GU1F`*!JEyqAEy)o3J<<qnQ3dCw+G8<r0Z4beDgGs
z-<K~O%+pFzFvY@bzEoOD$HfkPxg};?nCMamFwZ{Wn&aDCFvo-Gp<8I;>0=I?HibE1
z)cW(LVGrjxGH<E`-n?mO-Ir5)c=KisJ#BmQ-ml0k=b8RinFXV>jg=Oz&NT>af<Bh=
z9U^UPeZ{6K=vk2|OhJ1O;ndL#gZ<7G+61HNlF_|_>pXv=YUPF%r>GS{7e&jxhp37j
z`jX$hsKRv|lk_p8o3@C`Eeh_(4h~x@cV1HEwi~~ypP9@(cQIy5b5J7n+KO)rjb#r7
z!Xo>8X-K$m{bLix2fbBWCAQE0`LjHJ#Y6Iju;@lAsiqu-7n$z`FIcRqI<y70GYR&Z
z!<B3~NHN+AcSx;rGz=cO%MHYw9U1eE6kA7~tA(?xP%CAVxEfHQ=p>~I+h4Gr*8mGM
zd!q<tg3!J$S*wL{;C#%I3`Tlv!uY4{YA#jJoUnfPBRI{B_NS3B2t<|>yF?~*KRHLH
z|8MF#@fEi2a7=orzBE|&xG9~;L+Of{)Vw)0G&a&DGgY*AsTGm7jPJ$Kbbe?oYu6OZ
z!7NMm);%KOfu39?JxKkD;6ZXxEtYCK6;{xr8~Lmej8I|mKu7jT={6&nEm;<*YhTPW
zsjz22trG$NT3__+sCy`Hx)zKm9mf^UqPE)BFq4-vBz|uix9n=P@eH@ncL%klbgH)1
zub!)I^<yXNzAl-pTWU=NOYLDJ@-0Sh7g*R6Q?Wu%-sv0+J31io(L3ERwv*gO>c^=n
zvgzJqRpd=ZcdE!&5c#-A-j_YBJZHjm>i|*fc>)?6GwT)1bw8IdPliYvdWkj{rkPp#
zkuc3vYTly_l5I040sxOyJ>VF5!F!-S8D5yWE5<1U{n%ZuqbqJ`-Q^U&Vuv`&9`~r$
zj{tEdO6=Zfs(7NBZmKz3O*d6NSxq+`IOoyPC1i%E1!2rpZ;4DkCde@8s<*bm_`zci
zCNk*iGN7$P*`iH&IcMDtLs<9irNTH3!CBVgO|NBbMzqy*pN2CSCpTKJ)0-*d{7`ru
zWN5>FC>ZeDQD@XR#`f_bLi|4Fo_n2)sj57q4GcY>S?>w-vK$<$d$QV4J*94eZ-;E<
zh<}m!zUoh<6{7P2*P~s>u|#30bcY6etwwAwI!05WmS$>lozMywJ+5hpZUDCUTqY0)
zKuZwaipS~K0UkC(O|k5M`TE#8$PDHTwGT6%E0^I~0xFp1_uqbO88}0QejE4C@Y|pG
z2kFuDFeaPp%zg$`=LdIbb=ZjjalyGZmWY)UkWYDJW3eW^q*|`q7{{X?DQ(pbZ%%ns
zH~RhAlLle;mBhuLRDqzrgEyZNStdkpDy=oyaJ&vpX?L1p9FR^;9Qd8VjTp>v+kNuw
z(uT+x9bo?r62H&OSHgX_OM{?4;L%-M_)AuP{k)3!_4B-eTJ<wkX<w`=$O6o9CFW+N
zGAtUJ#d98g$(+y8;!Bq3wUGgeiZL=)80_g8#`?yFKv-Y=PSI?eNE9#6_CYS6!=>+B
z<e_(Q(V&@p$)29kba}J~Q5OAwFvm}Ce769S+0gYxv)ItC&N7xmOmNzv6amfdSIB;b
z`mcCMUSm}j3h8V^xlqESm@j8b6=WfI;a3p6$IACp{@c`YhxLjzwP3Wm>Ar7sO4X*^
zJj2SlV<{gr8!qMCaOGNL6N2EqmcjP-aYM9}3I#JE^s6ar$&BX4j90ivX{}MdV+9h-
zV?1gMqG!;DbEUFDc2<_98O^4Prn>zs#Y-O$X$*)b3WZYO;{<83d<K#w<1Co8fX%f!
zxmbqr>`*S9ziD{)C?%pNS%A3{EJ#&-$Bi6beaCxAFo)YZZgi%qvak`k188D_p8kl`
zwM@qBm}mILiQunV3{4bGAwTtE);s*g3KOn`Yz7I|m)t<LyKX!;WDB|4w1Q@v-c66(
zl=~-gnSG`|rEZ`4sMK-X;&?qeZc)4*HGRJP4s9JzAG%f?C?_xrXXKh=d2WAD<T9zz
z(Zn_qB@yHSesNL&TJx|Us$!hJZ&y5FPW!e4dFkNCgnQ|LW;u7bAjGYEdd*cnXg5sk
z>3ZR(IbO!w<fo#Oy<8}W)tOMUSqXxQ-9%!lY+Rg<uFL<^qOqhQGqjhia4^Z@W<D-r
zC)lEwGt?4ok>yfk^gsWEa9Nr`Qs%X_y0$^GB2BX>AN{0=w0x_i;w{4}S!w22iZA^W
zOCzR9p;u~}ET4J7{}-wC|FC`1`qb{pW!fiO(GIR)_ncI81x8ARuF=1X8!79_usp94
zxiB=1r&#XE9x9H}2AnB=bogNrJ!3XGz2|PtS+<yjDdrJ>Mlky8W`ve>OfoPnOTwP<
zNsCPx=(^_#S+a&b(VVF<qu!**UQTD%SAS%SyE>3R2G2K`WZAzcb!aVT$r)2jT?_q3
zUeOnK?7S|aIMl6$3B<GWjP;ezO1l(>hs$;a)J-fcQKKJT*?|-=sa}YvOGRSmeYW{Z
z8a6YSXO7o>jyXq`izWuqhe^1eE65#<t)2$gEamqz=G)@28CF)~rIp-vA}6j1<_zWx
zW9|Hcw3N{eZzc>iN+OTyCK<`*cNNFrk@qw7yS^kWjLY&4Z;OUqMT3(1eoQ{i!JS~+
zt&%HI+tCEIC5;RBH7L8%c3YQoAu!3Kl=FAc#G8oH8>8N)?l%UrT<KfC9Ip>mj13Eq
z<z1!AEz{}|WSe(@k$+q-2UX*0#OtwqfG+}AQQ!JC=`T$L`o1W(f}q2EPt<NKiS(k~
zSrV~7x-RGiii6I!NQ&HKv_wi{7SPyk6P0MVzZxPIa(5{=zB4;qF-I6?xF)0jC$<xY
zZQp-X+!i%jVuIYjA=sO9Bcm3#$auGXU0Q0<!Lvj@M)U!O{<g3P+mj_gnyj0_TwttI
z-w?4m`{tQOUDr;s1X0e|iD*-n&fcJZjP5#Zb`3d}E@QoOD0|3A6g+ArndQGtcGf~~
zdm=5VZI>tx_3N%;8qT?haLG4gbwwwmYTckoyJtht%P+o609>VQ4sD7b?EbDazp;lO
z^z31=aF7Pqhwj!Hu7##cHd9!|lf7*wQE{#NU5S~<O}lxMc&>XhDZCeO4X1NsCJb<`
z9aghy`=~}ljI*nyab5<va-Wb&2F=+#HVq?HdD$K1LLQsRUzi`qCX3PZ*ly%!%r+a`
z4@bLgf;oQa{oj{9$igA`k{h2U)OIPkYV7Os2hwA?A!QMQpJmwJS@7ZCInOK1dXB+$
zaa8o7EbV{ZRl&|%x~+%n5%e+OfBr~%)@@+1W>Htgz(m(S;F*cVYazNMD!u%rF0P>C
zcDS_&L*_8A->pT&r2U4_fZM;uHRSCH8U<oyl{BK$+Xob`F>>fgw#!AP^IW~3N;OUJ
z`}41d+s`>p(eBBWu^yKjvY<imW7}BI{;Bjv$m7rf=bWRkY-`ttdINQV2K6%78x%Cu
z09@hr#0p11%WwsZ3I)>)xb<fu?TUbLio)QMpNIWqK|jO({m(^%Sk%!jRsSeMduYMc
z1!k8wZ@WEYi#A!FIL|Q08-5|2&A!~5+&<b;wyfsGHz$>>-AWs_DcFBHE)j$?D=mhs
zi3w5r)=-^v0Lq4lr~*ZMCzH<KiWDU-!)4)rC6x#R7mSzZvNF<AE?}v_2}T9`AA%=r
z6aDtDq^bO-ag_}-=RxN-TP@lrhSTp)6e`)FppW@{;J=w)7+9N2#&eBIz!At{t7|2g
zWxRiG`8__B5;9jXOKPt4fla^mMV@f_slQ8CNyT8<jb3{q4_E;PoXHYPW)IYi>Vt4q
zBW;LvQah#GI59Rx7R;>{I^S^q8)}z~H?pPc4US?~piTz5o25q6rAwvs;b4y2>&G3^
zZbx*D9t+FWjYe}hR+jYvRtq`dhX+_&_8;)dy0=#dVGoL7Nm-`amLsw*jpa0L@gv56
zMoBEF>8iAJ10i5ZO$$qN6aAQ1enKZDxcV|WTPED1yhk;)pq>W?;x@%Lbn0Qyp+h3e
zqCHuo-3x<vkirIM+Xnxa=Sag3!6un=b>Q`ym%4>XQ$MqD6c46e>RMPI*agaCv5(AF
zfNAehd1BCY*m3`XY>}9Gsp}rQPh_*Hzek4kfiSZkB~OHtFV({nEqS|%WA3G0cbv5O
zl9uswk<QAif<5AK-{*vy_sQ6yK%2V&{+P#&HZI7%4UcRrG8aD;rE_^~jZx(@+UReK
z!IF$whV}Qv4Ck_ALmD>v+hTl;#KsiW8lm%s4(v~fd1Ur<V4F(#5$hUusfe!WPT=m1
zrZ2HiCFYSC{HMG}PWva_1`bdAk9t(MePt>{HO?Da{+LHK>cb;t+S^KE=q&wlZ!d{k
z@b*Dye0Sq(TmV1e(M3TRf7Zj7N6Z4YNm~J`!!N)vX>)?gWnq<ESyxw>CAA9s++H0R
zCr5VsW3Veg$vW{v{8JvCHHF#2psjk;+Uu6#VX7*unWGQ^W=sexF)7GQWlQO?V2*9c
zLp^L$RsxzS<gr_$!k+CML%wZ;n5!jv{o=>>yX}l2N6Ex&E({WPrqdPYFwH;Xv8da@
zt+K09DB(6wmix1RAo5%P2c7V<!wI(b)M3xorpLq%O&)OuM9sp{DA8^RnW`e2-Ezl5
zWHwCGQKH=ua@->uJ2-Qs%E+EL;*6{&sb;+w#Uhc?%^h)r#L#7!9C5=0jU%IH{)kij
z2{(Ek3zNlEEO=xc`lq5qwz88ianPo4_l7NIoOtxS-2y{{B}5g5$2_V{yP@c`BZh|n
zja+iByt9YK4|7K*T8FVGjh$5#+@iV>R0aK^Sk0&t?RqZ_Q|e`&^(=o|>`+{)pKF{o
zhhAjV58tlZEXk5Sr<?~QX4&D>sJBtE{;t8b>`aEnp-LvZ?`qWBx-(9+Sr+NkfQV*&
z1wXk;vp3Juev;huOkY=CjHc{PgtTsZP`E!;T6w94v}_ZcxIx;AxnoGg)gkRCh<(Sx
zuZf}a`1PxzNntPV!I~VZO-o)gB>q+>iZ{8RTvj=u=1Gwfjv`HL3i`QT+p=6glMIt!
z)LB_sX^FPqM1DU7Zb3i4e<~iw?1k~N*>=OD+lQF|Yfl{n!&bJxC`ccejG^ED#sT*m
zJ|CN)2bDVm&boSedPvk88+u688yk3=8{KX0YEjy#+Ny99a@Dm-ZPj}d?Zyo@Q5Z~f
zZQoy%TAM=xqg{pdJTB?1m-MdmREIm_UB`U*!hCt6Sj6V5?9lFLVse)G?%pq&L5ay}
z9(>?eGcoC*-$Ka*ll_sr=K#ZgDFnaqn;O8@gy)9JmO{AmjQ8&)U+hQf#zjQ8jgq%E
z;~C5|%p1$n3kP&WdOc39(R82mOjMiKt~ZW|BvB=WI?b4WTJc2{5II<-JzOZ->k&G;
zCZ5Hu#0j(1BDuW~XOu_6aGLpjE1oZdx+Gh)I=S+;@nYq$>C<3=LB4lDDiJz@sQJ0%
zlx9dmzA=Zf8S@nf1)Eeb+CY+JYLx~`X#+(iH<PgK-cm5dsHsDO9xwS$9&b@F#1vV<
z5{%SK8LQ=zgCpds!07+cJ8f^ZTw<JjSf1Qt+<z5RNABEmBRGj6RMU)7qn@Qeczt+M
z<PX86$Hoc=uO1rWWo&7Gu-Rx6;7M$9c0IukS>`p%JkGsGcrDfw(UxL`$4C{?8RjD|
zljefb*>p^J`XjO|5x5Dkbus33r~xw3C1*XPiY&_wuMn9Iq%{+PZq&pT$Q(|hD>a-1
zl_v-9fKTIU6>U<=pjTC)pGE)7QK>@gEEqcp`l5PHiQfUv$#Sz^V>@McT&?D~Hh=gk
zsg>6;$Gncw%KDyxR@V0pTo<Baqg{wmi;mTd!2j<JLl+szz?tGUc+IQ1Emk@da`}p4
zGv+7%x3sf5M&1&LI!4}_s`^0AFIuTw6P{pmEKu8P{x1;B+|a^J){`~1Bj{kkj=fF<
zq<#0$BY)qIYNsCusCGi*JbzSUFi9!34$|F7P4~S?W)41?8lDR~G`FutaBbpTXp_m(
z`O_@=;Gats$|^8YSSlN+k|*^f#sQ*Tm6F74N4+N~PnEGVq11-%lcDnb1a+4uD^(k4
zjSaA+UPZ3Y-eX*^m2#MfxXe6z3^4w0zo8yJQER?-J$hpzBSUeWC{`b%ZMjc+#qQ%p
zbN=8?jUa3WSXKa#|JA9=<gbzS)$a52Jjn1m(?=&-xjT^KRpVzo7Nl{X{2caJaGO`t
zeGfKH3*pm16I|7UKCbG4zmh7ON+5l%l?W%?kv)$-VGZ@qctUP88k$06Z;2#h@6t?b
zOI4*qew8lLC;3ln*HbRq>V@{?Bv<EwH%qnLdIoBsJyt#-qbMZ3P1T?V{_#}gKQtME
zUe{Kr>h&B}8u9L=H;y$W9@2t16@Wyn7{~7FdgJ5l%NpKHhkksSuPkWM*%JJYd#P{r
zBS4?===%<kWSFp9zrz|fP8#+L`L%L82MxPH`y-g;_J7&mNk4!ee9k>x%5rJFZKnWA
zRO~Vb9;O)h{`-YNSuCb+`121wU{-5<yFcXi9C(=sqLM-z$5{JV6G+YhYk??yv&f#V
z)faO|(d*Ptc)iZqImS3q&7vAT!xj9aw{k_XX%Rj5>+f<uHl*iFn=<EMiaEXVZPK*G
zxR{|B6ERTR*lt$&me$Q{*P9e;v=OFQl*ivLBAGp{ZeK*zm8WTHq>k@5vXQQ)m3nEU
z1(xJj?+}T!>dJMgRfqmWD;~^P_@DFNrdHfx(R5$x2aT*)zw!-&cUpc=epgksl;={b
zg%zwJ3Xr39>tG&V5MHfF*f-sG$wDLRhFwrT^I)Et{qWt93J!EBW9<E5c_EHWKdsrZ
zG7U~r@AfXGa+u$tl<2VLooTyq;Z*P*%k$~)72XDINDo$ocS!0CC^>~Fw3%Av{`eGw
zzWIFuZk!Og>B`$)V>WMk`BrsSjD4>5Rg6g!R|V-Z|K=;Xk-oF*mEyW^i}b3K92J`q
zIwJK9OZ&7FBDI-SvC1nZxHY71X2&sgK}QwCwOx|pi85Tfp3_~o<|=eP1RF-z^<aNh
zVGO(RQ_Oku2Soy%TfxRR`(BR3TMeKa>twoi+1li7axfE;^<38jcND?|ea!nWW<>^b
z;L_i|YxeVE^R6rqwCHYXZw`}-jJ(dp`i{x)dZDH1e-~DUJ@x4NZ?=p{F}q{;4LhmT
zLmRP8ek-LNRo&__RkbS((_GKDfAas9`s%VlxV~|lzeF*k^&QTQjcunrD!~j_>%M>D
z>X{2V)wic{4QK4JK;8W))Zk&Wt-EI@cHB%e$XgZc5HxP)hioKyeV{Y38w6_?9rB!E
zke*M8WFau484jw|9L7xUVS(OBCq8=x@}cEGOS&|9sfw(IY2I?s!7Q%)Pf;JUIA(6f
zcuU#EYXz*6^ZMrTvNli)kvVjk@yW>hOYsvPowl+HeKtyGoRdC1J)V{Fb1`(go!}Ag
zi7{&O%6!!W=JA;SfD~xKCv<NxN_EPkrH2lr^O#ambh6^Ae*hPf(iTvVk5{_>ixtVV
z3I`f96&IvYvR?v|6BSJ$v{0+qgK@x_t#n=bBdd_+fxK|i1EMdA2z|~6VtV%mbJ@@%
z-Xq&CEYy6Z>-q}w820u*c;!Ks?Fb7#*=!u6`ktKVy7k+PQ8wY{)Pb)3+XeLwDs$?9
z4ok$YM43P6Q4Gu>M;I!M=kjTs4@AM4!%7d&S~`;p_vnBZ6l*{FSg$|$HPP>?P}xlV
zl&KO#S=Q)uBG5z(sV19rL`2zU(wR}aB*`OdmN~xpQQ@p{GNMnhe7LNPbrPYc676mL
z)C?gamptJSHPW5+vH=u7n#R4W>+BzMkC@8}<{V*(tvXDX!O=1E8LrN6e^YD|HJ#dg
z?w-!BA@*US?Uda=ksjL)G;>ZX=wp~G9+Oron=3K)>c;lPm!{Q2N^<Pd<xDQOO_&CK
z%x6LPtq{JPqstR_W-CbIIWB^}|J$*R6kT7hSqXex45yze!6f57`v=lm#+SjpG<u!3
zp4Ifj^g<~&LK7g|4$sAjI<I`j=oNBO1aUaJ_V?uq;c|%`cI|9C!4qm|ayR?9llQbi
zJI8Xk`ns1Z@eQqv5olD0L2E<+T+%a~Gk0`)o9f80*(<WVy&AC>bQu>)4>*xmfcF-d
z`3HU?Et=0}hxj1|pnnxmRa=`xQ0;bBX*^$Y$!+Z_@9vXtb(MEl;=_8GowK1^o5OXd
z3CAv1&vLbUPD%Am9}IYXKvz0?0~|iA(WA~T)f2NsZM8sEgN|GfX^Y$3fmncy(wu*r
zbXcyn>vtW-f$BrsXw6@CUG%bOzbhgdC;M-HZta>26OxaEk;r+vc0F4d4*D79uYchW
zO|6UW5fNJ)wO<%tmFzXykzC%i;7uj7u^^aXxY84`usm{Pl!}X%e6l6NCYWU0!CyBT
z-v)6~k0RsW9_+M-PK<rj=2<~KET3S2frpwJ$Y5K3$m(;EQQz0vSoGc4@i)tuSF|+{
z`?@^0OCO`|UVR$Sx0N%&00aMB`{`lu!eEAxk38u#ao7+{GW7LloGum{gMP;TjWbUh
zkIRD;gFoI#CO2kBf&~Wr;aLroenSvE*}}bv|28$kF7yU74EL8$X`r;%;`**>2Hf-1
z#sc>S1B{sJXdv>oK;S;nP+0nGQ834lN6&7g#J#~3<2}(x+}%NNjurDg{I?;hwi};2
zVZ6$@4Qz(prHNpY0XLo3K;Z2`AH)5mp|I&7IG@{>|2Cw3x8tnNECW{7G_oDixcgv|
z5jS1XK;#>PK8E{ALt!U^pp#pe|2CwBafmjUWx&dX4QvPFZ3mMKd2fTDu|GuJZnK4V
zih<WZtuEQI(q)d^BZhES6^P%QoJTd;OMGS-cMLF}($j@s262q%ftyqKE|QEo`d$Ta
zQ*a@eWSr7(3LYgs)H9~qZlz1VAaJ{ePf<|g*58~ZIEMLVJlv8U?X~N#HMd?M%(4Fn
z78v;@7qP%Cl+iP}QOM{PEpVxYX^Md^y@3M9fKaz*pW+xRdLac~z*#VWBwtD4iBrPY
zHLQ0&$&y@siAZE3Xn&g{HKQC^mJrOIu=e9@6Fv891nRbMn2O2HEJK#9xZX~JNbRaZ
zK4=-=9-6%Lq>W8EiLtSupR08DTB#b+9M`zdYI<u%{D6{q;eLp&!*fAO+M=Mhbw8;B
zN#f>lU9Gu2XOgA+50MhLt$MM&ChwAxX=~SSlTAYQAHh5$?YmU!tvfKiOq1@w^fDkz
zS{iII<7z+;lDOTxUb7&XfZBBaB3Wze*4av7UpC)g%Hlfp?Dj&*_I6O@N*?Or%F+!7
z{y<SxO6m!3SQN9_eZeFn-F;at#HiuwNIXDcu7IaC@<|3A?iKI~sBu^KN$$ki*Y9&H
zMhzGcZYt9K$K@Vu2e6mw6&e4t8$<`};t!NIr1re_6IOcN732n}TlWa7eF3tIT(nyh
zQkZYBqf}^$FoV}+B%@V`Tu-9+1My|n^IVJ1Z<N}&&z*QOx=sF`23|rruBQ9Smsu68
z=4|p^*<JQ#B0ggve3{?2P1St8rE|yETR5-5m)84u;4-s*X7UwfhLaw)wcSR^6`fm&
z+fpbsWu^zO5WUQy(Zt%@l~Ol_icb2UJTc9vsa&_5$qXhLICZ5o<sq5&JOgw{_NaME
zdPp{&;oEd_Y;0x1nd`Phkau0h0#$2<J(RvqE^(UWlKY+~ZPZg4&5_6P>?i8aeDbRD
zI<xv+WT<nWABFtADoE*!YB?3sEP|&PtL+7@rFoGN`%bh8MRsLmvdmr|o7M5;Z0Oqc
z%GNB9cQCt0g>CCnIfz!dT^LnW^|#Hh>scGtIXjToJ!g14SYRRc{f@M2x)=SV``pv)
zXzHP_H1GD1GjUa%qg$(!c^8@IqmAS3?*vX}yub{zeT}PhXv=0Y>msv!v~jG%8zqxj
zFEGpO)eWmPMhlzf#dNI53?FSA<EpKMi&UGrX0KUxwaG^FM;@?I3!CRtFG(TuP5;1e
znDXbP%(^-MO5GV0nc0_>X%VApOia~Mz5!7u$9d-TS6ii;A&&cLg2ZPqL;_y5_2(t8
zmSJ<DHy!S#sn{NAWiG{QeQtV<+*0aSlb7)L-nLj?Tr=gpc+GCxc)OliNxkIGV1YqL
zwljFu24ZT)zm#TMO2wkAip(PQyLGYRdMWFedWD-Va_X6u%!Soe!cwOiHSioZx#_Ih
zpc^*g_uY(uIOt=%v1HuhgAbS}+q>BVd+^O{;u0YAkzU?HpS<KAsTT=A->C|U%>2G&
zApp)otdWfXB1EU&(BcVE_rY$Ae%h}&&8$C`EP}SLgef)J*M5L`jsgEG8Thm{u#sSQ
zAqaL@J-w9wHdQOnL2Y0CR&(9$yNJ2bOA<`x#af(Rmg3DS4Gm1azhEf?Gdyf!Z%qhh
zn9Yl>^No(O<H4!FV+Lnp{oFBPV@d~@!)HRA^a6$DS1iJ3j`3e}y<a2c!!^?1OQ})S
zuIgZlnY8|%&rG*RFTYaNtU8#*2jW?Ay_EG*>g8?d2xb}nik*IqbSKC1YveQOWAKOL
znQ&c{=~C*ljSo)FGxX<f@av&@r{&i}88C3=rdS4C2W7Z;9n|>=kJ$rsy-BKkIG?#J
zUBSl7Opmb?&r5}ijZc^|JvU4s8xOB+l12JyNVNAaXL4_>U_rlatH0sDINbx|rh;*s
z>F<~}8^MW&31lh@<ChH;GW)V6{_~tnDNB3Ba_O<>jAqA**;4s3M=JO1%9e2UVTSp>
z^=9caTNXmR_?MCnS}uzn<~z9fQ1dwc5zH`)OKweM)r!N8<gR*oF?>1zgjAPK<Jh}R
zl-@3#c;a@BEmvfFM_n(A_~46JRJuW%x2DSSg3I31?lAA5B|ID5g#3s{H~aAB@9OIO
z6=y=KTDq0i9Ps%`(*jyy?sMNmS#Irq7auE`<2wEMfYc42hQs}WFT8oDY(V!f>~s$~
zL4sR5Ln{^XDPvsT8KTQR>?x0q?RECL(mT7px5QRBSi+Wd(=;i+=gp?gUN5P<+@{%9
zO5;@JG&jm$XQXkcH>HYxZ~DEAPSvUpP7Du2PUysAcXjC|)c^Ue-kHNr#u={0+lG>d
zoNL$)zhODq<5mQg+py*Xptr#KAnzT_upqC<ia^Z1={|2bZ?Gd^<-E~JTh$7dZ?GRV
zHHOcq`!>76%d)&hWun3E)*FK6<yJkG{R=Uo%t;8#eTKPyvf<oK3U`iSuN&qDmv2m(
z4_7X?VqT*L{fzu2;b3MkXXL0a>-^|tBgC0!F@7{68b%YUiX%>lSf2(?sEAe<RX5og
z9E@7Y-obxebamB#C+EnQ+cpVOi57}bGc3&BoHU!Hrte!ssA9S@dKngyvEW!4?b$k(
z#U|?kM)<-6Bej^b@-T?syvyzPCz}1#{kJ@-*iFgfw+t03_&>6y$jd90TmX=;0AKty
zw-^cFjaj!A?t<^Iu#`yHh400T2J<ZFPetI?C4-r7CK-zx9I&+>;=l0ck|dK)5CzR)
z$;{`Hiv0d(6(@`Px=}-UOKRwj4@7aUp$ToC-~ZQx(yxi~B(+qTzPDv6H^(5aI#d%(
z#Ec4c2Ym}_ir@dk!-BKq${FJ}#qa<95ylCcbA`)tP><XgPWR$d*x2GQ!w;ulD$HoD
zQ@tzfXGmvq6?Qx2f^_+us~!x%(6(Nuo0J?YN=y+eVezaxV_E6`3`J$@<7dFasMqGO
zBZ$#nemA4GjA3pUU(LS)$k6$;)s%NNkfF2tcI@u17xOwVU%zs9*SovyC<?i>7+vbr
zp!Vw0;%*J0x8jozG?m2;yubN~8Z+Zd#8;AgiB~|UxQZW{l&Tif`CJAwrCvYbttsm>
z*(~FhmRqv+vSQ3V-r{#w@2gmB@w=)ASh!gh>aF)k?=E$T)gc@8onfG!KV-n5nYWMO
zJ4RW$_;G9H5bcXf580DPT&`crV;=`UGIMPH7H)BS@u|O+AQrcP(@cW(BE{6rAm3!$
z8ZQ<4BpBeA%GEEsVG_rh_f_$0uhZ8#{A>5G8aK|MyL>!enq8cgWu#v#BI)LlTU8UQ
zt~wRzOos$7vmLSH<=P>I@@3gW*$g@a6?Uh4`nkl`KN4LaMo$V_&FK@^<|;-4B++m`
zzj@zLMrg^5^VhJ)1SUGR@YQqc8H;t5<>0kl@=nk!jC8TXobL;!na}mF6p874lwNsi
zPA_)&?al#!+fyaLYu9fbAEN7)4jc&j8SP&cl{OZMFs>a$U?(1<lq>jnS1`w~|Lv4C
zM$ue63|phNsc4)7Y^M`SYlxNE2h#2y!em9Gh)4y%njDE4=K1tLk%n10E-_CrUe{|I
zgli+EYjJw9lq=#Y{h*hT*S%rct#;6Q=NfyNR_v^5ML+itX~oP~p`3L>;T8av<}XC5
za6g&yC9@N<z3XVR9WYgDfvraPPW?1PjQ_1v5CcmlKL4^cBJ;dA>G_Gn_K5pkTA$Da
zH{(U^=rA+G*lz{kq_RwL<_$?@;IMKP9iP2}D|*sB30GGwfisA%0k<8>RYGQ^$QAvV
zRM;FE+}&2&tnhHUHH}ZB&hgt19hYXqiqS^)m~VYBX0G?<^iYK{+O)!%Lh-N>R;S{=
zxQ8+q@6d-!Xb@vqc9BWw&*7G%Ij+Dj-zF6~Xf_!4b^SXxNek=*=Dr=ShhZi_=vP7l
z_tti8Q=VYrI>;#NO}If}9fBL^c@VtaN^&RvZ8Gp8jk9+(zzl9M$sj+81#@G<4jDSe
zE>gV1O7VOAx5?Zt@_bh%o_%UaQBDtMZMFIt=urW50|kxgyH(-{g6tft<u$^sl+g<o
znB_w=(#Iy@>uqk6u}S^9L{ZGF=B-1s2ktFH$9Ujwe2O|^ny~uFGIqXKWVPz&w5`Re
z-=13Px8L>EBI+mn(E^5liusPd|9^r%xkUK#XpxzHR+u`)9L7QJZSamJD(OLdCvToh
z{KE%WyjDsLz#ovv663?v*53pyt-Z5Q*w;^?@(jQI*$-<aDY?M6xcFfWMY3|ANHkiJ
zlx-cBEm=xWZuW+%M^xC&lC7dF`_n(db#QIw`#oGb#iiEFYK@Imb6OM{j&9sJTaBUN
zg)}tjG~HJ%EAx&z5+Vk(f53@hZ0YF|!_4s#TQSeg9~IRJJ7LBqw08}xTFhTCSQ~>r
z#<=^zI4su_R=-(*NiO`dkI73IbY3Gm)vb1jP3$nmFCO_g12{%&*E<U?6UihOyXq6d
zPx5Uqd8*D#^_lUtGKAEgoBf@AjQkqqkf;?#JUh)Pn4uY<DF*no0EJS>!rZt9!5o))
z{wJkclzr8>Xen#VVc<Rn{B=C=e(T37qnNa=w<|-JaJQ%E_G@HDo|h7K2UEF1kC~c0
zVzHE3Unuu%hdIMya_~>Ka(~T#?V9a>v~a&IrIIU@WQHZ!bJA~am4sVGf5)_nR2%WF
zb4EFu9$?g$E4t{Y=aCwN?jJ`JM8%W6;ZqFrvnsd;oP%rN+*Kj|AW}f=Ha}brf=}5x
zU(A198ogRN33DBsf*Gt{#yDPuRV|vs@-#{+ts^OzVW?+5<adpFic3+FYVckL{X#rA
z_q#G%wBJ?abv@=-$~<GXd|CvTUia`4d!22aH71l74LTU-x0CS(bu*b}MrAXZ=c>UV
z$LtuaY8+dOKIV3$itA0Q)xMhh(s1F7%=1n?v{8CY9VQv&S)YlviK3Z0AQA*zxDuc}
z66o56Y&isV-oH`C_%e0@rI(q!=yS}h#biF<;phU0TNZ(Tqg2Xfz!B){`n*gbb>{ke
z%#y<Z^Sk-;Qpq~A@;zn(9N^bFzre3AZQZn(E|(1uT+S3jyy8Ek1<ZmeyMTz>waSLh
znQbp>Uk2;aM7|#)1XIlOm0uIy*t9S)rulZCJ3ryf1Nf_4(ABMU5;(8#A$Jh>l;1`E
zK%d&Yl#Q~XCUY*e(87--AK~vuz@uDVU-EY(*eCK1b|q*?k0%gRUs|YsByXMa9&xQ@
zJBXJe@M_IZu{xpLGRSYDKJef*KWIebhVtVCBsxuosG~~~hw#6Q3%*tdD=233$ChPo
z{xAwhUEYJ6euF9Q?!Iq`^3z@^I=G}u$F#n9Nrz`VFxJ{v%=}smGK9gx_fy{#{<`tT
zZ<sh4{Ag+^tHh=O@NGJ316pUAW7f}kOf;WL;E9R7jA2n7l_%8Ac;bcSIL67>MS?!i
zb<Y#_i^J%x<?pF5lF}lUh}z2{{`7GX)z@P`YejTPNx6Jgt5LAH#nkAk)pEBM8Ieic
z9@=vie8<Z9zkek1mNAt{OzVGtz-(j84#^|`BLuif4|fpC6aO;=e&vsOBULMpVK?p5
z&5qC^jh($m%!G$8jGYW$+&Ry?#A@rK%%?JFoj)gocIC~wllC`FaeMARCGAR?;Fx*B
zZ*JdC+e+!BufCDi`U+miMoVKz+8I__2gd|nrHM&zO@%eqHCH1EH*d%m8$^8tw%EO*
z%=kUu8e1{dhEIA1mmi4@_ieFk#Dg);I+I2tRDZ^qniZKl<0VXTPqqDmdu$m~_1g6`
zu+|y7-N87Y5j;Jr@F!9)YsihUR$CsEh+4Ag6fxL>&#?rre}ZdPEs3g>jaI#3V*F|U
zT8d>$L*{0hMfmeyE?*Q+xYIH5O5>SfJk4^x_`ee6)pZor&zLS8Ps0VG{|N>dX;u(}
zX7kYKpb%5P5*<9_`S{pSF`LQZQr)2!1ZNy5<c5NCKtqPSrypBZXzS^joGS=cx1V)B
z+{H=`*BS4nATa2?u+3b&-rODh;{$fWYr|MIBd@u;U1_xGE@<xV_{S4msA4YXZ|*+t
zq)^ghboW(r_xW;jLYukhSIBFWybsA&l)FF)>9G;~?)-)zjbxaAN^E!=(hVrG_Q(gE
zjJpfF>40`~_oaW#)L>1xa-ZTFnfl{P@vB?TI8#bk`Byi!n}=Hh{Oj!X`VdWXHH7*#
zOSDE?jT()fbX?fRO%mMnewNAHv<rFKKgSd&kGv*;PZ`FV$l7o>T`DP^b@Gqk+|}~w
zg4NO!s~=SG`Y=Siv)79j2vm?DMM!zprRdvoz9cHrA8513OA?18O>?F}ZEk8hd%gLW
z<|eI}TLMvzHQHk|G2Jwb+oW4sl}7E#H0>hIYa0dczpxE|(JR4QM7@gpMof6w+}+#p
zLGHWpQG5imxqHiXOmJNnhWi_?vvMP;g7ypB2Jv+tQpP}3)*+Z8!s*=GZWk@XD6EVY
zhJwxu-XLO_bJ2uyZ`Lk$wvkH!m69pCjlwRBL-`%3Ac6*23`2nEXu&QqdaI>+pvYSy
zfrG=!NU-+8HfuoucJM>oRMv1nrei|E9-n<A)H{VRi0lalw0!RYAUs%}t|X`oiliRq
zS6pkE^^eE6LEMlGcf$|48`ii2RxIgc?|}hKGoLkQ0tlu6N_5t38*YydiT1OfB%`A#
zK!Hu#S)@!f@Hg}Dn{RSOpAwv}=}_t1Y@Sw@hRo=BUP`FN^ib-y%MIHtj!HKmR~5~S
z6e2GhOFEu4)?xD|q;p|}m<^gTkRj9tCiva-<A3B1v+y9bXc2(pcdPzpXwcfv`LKNr
z)n`F<EUt1@US%hh&6_Z%oQa0oxW!gV%T9XjGf8c^sj9J44z4A5a%ME0x3=cheKu4*
zN5rdcUHWisX1J8iR!ZqiHf8$MwI^zayWunYqV()Af|RP#BN<Z|m%~)OFp{BLoJz4w
zMl$759H`xg8^$vG3d6%uW_V6d1~H^_*;35{s8KZnoLyYcWpK*XPs<hD$upWgSSXDR
zRX>dtn!nqN89w?#d9b?rV16K*AE|1wGTppCl*MI4RWh4Lv8)dcmPgY=1*}rg0EG5l
zdtqC+8=-xH+6U=FQd=e34kRsAlGl5npXJeA*Wp2j_aNMFczB-wFx+W)>daWUOCda-
zI*T>}cinXt9;HICuCMUuV(*b@Ezs5~&Giz<mnxaM2!vio;Qj$|lSkCf0ewrDF1((v
zWa$=^?GvJ#RK`cMm~W0}E^NbiBj&+ZKF(H!Mjr_6Yd+x-#*m)K2CKS{cHAZ8!HM!=
zP>ywIL83^(V<|0IKA6oGM=;&3>OP)QKhsc$Xv62K?tgG(G=3SoXv?6^q<(mkMG(?S
zk3^`rjLj6CPxXC@i|(a2FH$ze^hmaRT^@%EKtFMj7{N9|G~fNXnk){U&AMmiom~gB
z#R}*r9o>lBPk{Z|61|Maa~G|8h&h|8o7P*^{fK)j@6+c!dU+g`<?@eR^i+Yt*IsdR
z44@}3ktwUq()NO0#79!l4ek-{Rm-RM!jxcl+N$oU=mSLl^un<yJquTTRrhq13{9ud
zo}L}QM9g$s23g}$dJM#wOE!p{)PkshX}rnw8$ZphkfG0a2>oPw=V!DF5zM5=ut5WJ
z(vd9S?5k6Q(IQ0{RV-^tfk&ze7?p+anP0QcIw!;G_4hw&nX1z>PKR#Eo1^W#P<Clp
z??qEW27#UUWO5%TH8Wx1Hdg-04mZVN5_EjDB&KltxmIv{gA5rQ?x@hv5`xEGUlbP3
z0UD>44&KEeE@ZLvV@>c2@fiZDmf*JG8wUq`Ms1X;1fk=69Z{q(^g%gLJEb|=@<#PR
zN-4=qQlzB}v38?C5Rtx{a0umlwS1nIXvksSq9oIkTS+fK?$aS?$k))fjhnl7h<DvK
zlA#Hk$^A-JBhuWxM+f&%?!XNbWUODjLxdW{5tAFzWio01ONmy10s>@^2b4?!at3`u
z0t`xA0-x5XFlZSa0B8h^_U7)PUBZWaFK97&TUmV-^6VPT4HK8)D&j^^N0e$>3H(7E
z)rOkL({L?A0-_h?=m)x`gz~5v`G1GB_*iZndn;imnv`Tx2By0E@Ze~Zj1bs6GyKS|
zPBm4y7M}ivbj;H|)k`twE^ZsiP<%iMK%^f`w7p?-u)6t48pN4#v&%Fc#pCb~;8wP_
zw>fy0DtHYG<dj>UU>u2di_~rKxyr~XVIXN&a_Zp>X<t_}0TLF7(=;7mM-aj^8K4@b
z?HH{yOgjrV>xi8g$zamR7I9f=FvinSzq1p~&P;d(5s8(H_=w9+o`$^+qffh_juMu0
zITJQ^cpZ*nTTSffhOvxFomO3Qc&tUnGtK>M=$e-Hr<`@$<|~aqkDoG7kF~f;Y=y&*
z5>-*rI8PB85DCFK?<PdrY@>xOa1*C^BAL6&hp!F^1ZfG-#S7cyEwo_pE19xv0M&bh
z=PK7BTDsRcM6M@1GvWMGTm@?m#DIbGiG-rgk85~kA=02BxiK`h>T@m8=Y+$jdd!Fp
zcEsfLWRhtgmWh^*WI!fW8@Ah>{~`r4qZ1~qPic|7kk+bc&5<brjx+3J13}nw(LeKy
z&gQRAtfZ@}N-SPMT?whUTvV{8o)lCdm3Nk9+~h94#dUUe#nRykh*gnhangrhwRtOV
zIIJP(AQBXx<vQ-HzzLBlPV`%6CfLud<|OeR&Q5+Dvp5c;Ls_LY+YZvkd5r(rf8qAd
z@C4=tfA&BwW2R3x^sy(L-g5IdCur9GTwuluBSCBT@yVAr?U`fbywE=0B>AVdN?~LK
zTV-3jXCRye5Xg<<25-vMb-xE>)s}-=`b3C4iqDhL-BhjJ9|B#gHas>_9<}s;^y%5c
z&@TFxRBQK#J+kW=ugRo6)%D63Fheiq;h6%`nCQdajhm|N7&*F!Q^;wEO$STzN4FXJ
zoxzTOwM{mO=5u{M*&drHS{!N?Q=4H&y*|abCZ7_=JNO8fnDt!G7H1@UIfJQ|3)@6n
z)YomZU(bR@X&)Qk4(vOwU`+@$wbomC(-e*gyje{bP5v?!O?uNrAL_C3_S-gJamD4E
zH9ho)%w%%XvvbWfp@fPl-lUgDnw<3NI!>mj9GvXoL<2RTOjgj_N_uRsHJGTY(#zPO
zhnnhd=zL+{1Z7V<9gQNgLI$*yqnQW|QM^(pbXEqvVY212B}~i>VIcXQuR#zCyCYoK
z^Yr?|PYQ!~WbJU@qYq3EmiG$QK=gr?XH?0?<I&>92;G)G<fz6I=HldMMxW3N<Yp>;
za3ZshEY4p0WXe4m$uRAhqZN?lDlvK5k;ydg9igE7xFb^RWQjA5SWIJ<+H1SqBmz!E
zpBd_G(=$HHrp~@$qu<%Hm7Jd#Hw<T8<^ZJOLMf9SG7moP9-t-|ZF`52p`@F$A?8V!
z1h9Eq^UB;sYVd}#gA*f$_-~FlczCZ_qN8lVR*|og%O5sMNDVvPqYVqDI8Zt=f>l2>
zi=!J=8q49{Bn0OXG9|4*J`o{Pd}Sj1S$*KfJ&&!o@>s<%zQT@RZw3rSzh(f(c!X3n
zlhM9>qw@jtc7SoF+oRJUbNTPLa%-IQ=GCn+CUzw}Iz4Af7LZsxj8$hh@;v_4ayXl7
zbE3gi^M!3ASe~U6mv4zkV~YioOmuK2cL6)3-sL!3ht8dk$ZRYmmuJiy61{6eK$m44
z7c=jYjN|D;N_9EL{D>Xgy*g(XnempiG8R&w7Rtk5<nno%tDC#8RWfF%{m?uLM|T{M
z*NI4}V-Wj8M5E=1+trI0LBwIQjsw~ZBh<{hC`XIeM_(nFhJ0f|9u)OK-aJ9sLyB6S
z7%GeyU@}#TY{(gteIQeH<Z*81AtaqkTztwEH{>EMjUsE-^xW@p>5&ZiW7G~v6*|X<
zQuW4BTh;A(Nkld7224ZK*TnHc2aFf;TzbyKFmx{eh*us<{br?qJB{M`ra_T~_5hd%
zw~~vvs{1kLpXs9;$sJnNz2M+Dtu}fD<WueqkSV{7(Mr1q@NBYK^A5(aGWn>Iow48n
zaQWwKBe}p|mft8bAl^(djyU2Go!^YhOj!Y(yF3z1t-_FH4GHf3GIxxjj7+3UL%q-j
z=Nmiv2GE^@ycfx|oSEYPO(6D~K1Zpw-~9@sj^kJFufFQ@xSCyqE#jcGnd+lp-@V_E
zf`?&qDT58_Ay>{)i!`J8xta<sB7t_a>DAvB07L6980+t)bt?OyQh=o?QE{=cF+C2_
zOp``(_69=Ky)r=%Cp;~qmfK0gZdLb(9GMIkD6>u4>7<}G1x4B$BI9a|vYGJanq)JM
zZ3Gi+k&f!PN5+bRVL(6T{C?B)h5T?DyO;6g+ujpfoM)`Z-2*JmU>4(bg6~A>xO>rv
z|6TW>GFmDeG#A8x!}lDW))TRhrBEUr|9(^UQEBnR<w3FnW(9?s;s@>>jMyyBpj2|1
zebkx@t~E^Qa&|wcr<}`SsK)GrKH02>mGHAe)Ky2Dol@n<mP|FPQ8kC)a9JCu$C_ow
zK6depWbielUQlP6wd<L>0n`&As!_68M;a*@%1K9oa+E5DIOmAeI+@BLz&+xKqzTsI
z%{Qyr#QGiX05Kig{KM~ZBaUQlHcMo9e{z)?<dMwP<uVe_W}O9(j;<1IawfzLb&cfA
z$fY&#G0LuLe9<<V!%yA0<REN$F$m6z@JRm-4|8Wq_yJOH$d%Ag4cz!K$&>by*a6-F
z(W$nggl|LPYC<y&r_{eo4;D)F`TFMWi-hLni^%a*1X0=2FfDK6&hKgFbY8F~L>CFP
zRkHL3wTf)h2y~l<Z0eF)IM((h;o&unwRml8;Jl`>50D1Kj6f};ooUp@RMG7=Fm_IR
zqzy{tTi{`GhdSRPMl{Coa_g$ub%L`=76F~)ln%nE4?bEYx;#M+z;IT@ai~&6UUsnK
z!8!kFb=kGWcyN3*JUg0J0`)t_VL)h%LKB}XRv&5qacuX&M4)4tW>r`wxJS-|$C$<1
z7ij&82GY1)tl0CQpjGghzUJ<MU(0Xu$V(Mei8A*oF<Y4lXexOqij_%EjEur^6M5P*
z#Q1r<Nlg*ORy2*wIFhlTC!9xMeRMnUKjg^9u!;kuYQc7%azZp+=(Ip4k8I{64xn5Z
z#^$^NvWTm?zwF3EhuOwBlJBZ~!;$IA$`P7GeTPTf(^cKxBw#E$lr=O1<njjxLHWM3
z@Axj*uH1;VA0fkE#0HQGRRQG}+*~mXkG@0~$FA!BiJL<6w50*FKB(SYKvYmBo3*LP
za-taSoqVBLjefZ^{q7N7Ioh0;Ud9YhB1|=_6A1vGY>#<U3GLfp@^rHX65|>6dXG2%
zyCB-Bh;(G8*{KdDcI<L9z7<U<O^>l%hf@xZ8ih}^T<p_eicwjQW;TtYSgVcz%Lv6j
z<Y=UPG^x-`INPd|nc04Ugboy_b(^p;o0|@yxvB7i+tFm^*g=XDR(1cdRn~h<wsZnH
zoy<N`#8a(e3(W)W$;q}5)gWP=6fNEs!Z8oZ`*Ji+rrP{$S&8OD^B9kgwTZ27gQGwi
zK#l?)+}Eb9fI&lH5=La3R(C8n$m(*u?W<B<CYpKqk*c!B^P8_CQ#U@=ral)-0pdd2
zjp9*?`#pZsE)rw)2tROE(b+zoY(@%X<F;THFw>)oZY;br_!Ja&D0}!1lzQ&eMlP8}
zy3}8bB^xtaeHCnwuyuXG$zz#|b(Q$xGBZ8GfL?}b_Ph|kpqplsn$!@ckCp|c?Y%93
z%?_LkiM2)YQS*}`Sg%X$w((Zlb-}s360t526MP<Q0a>n&PTs_<J4B;<I|Is_ZV6hO
zR=Eks8}YB^vAO0fsfqVcgqm!2Ql(sVypjUrc<}iDuHb9;@`ITt*=3Nu<@9*bq$u5V
zk0FCJs`1A?r>l+9Q`G4qmLceRtc$Yj>r@)UqL85(Ev4@m5-4lee~aymF+CZ!R<kX;
zg>GRaRSRqCjD~&W@2xo+eHhw#GgbA}-+yzg^{dR&wQZ#Npek2JmyTuOIJ!jY)(=e0
zD7Rsj;a<i}yac$H*AAB@2iWe~2z1K@XHs+oI$^`_3Lhi0gxJ#lQDHB)t68C3en{J}
zSYk&B_Seej@@mlGGGb!M;aX#7uw5#G_oP0M5Hn^chRcd!gF_*6IF}tGmq{~iZTUi3
zh+dMuJcdPfQYe9Stswkm7Ez5Cn+wM_>>Rd{ldA1W0fAX2khW^W^)P<+07pK3O~!FH
z{9Y@iogl(b?7Ip=W;nRe6{O!{lD#eDWt$u5yx>b>$8~E${_Z-rCMZt^gF=<D?{jG9
z&Hd)kg*wPW#vO=$V>lrhKxBcOq*GghPVcBksgyQbt8~XstqtzZPMHi{@H$S+IS1U*
z`{9E_Ea!rku@@$ToAT`Th$G)&8^Q~^9U7_fCa6v&(4HIWKAoV_nf((v%u<y2LN`iu
z+Qw@zOz%}X&F^MT+akljx)*kve4jF+IB3VKSun2|DM6|Av<u7Lkn*;+kJ6^;;LVKS
zTEx-^E^ON`dEekZiNPrf+;5|{b|u<S#cc-gwjFiq<{5Lf0FAt-YqhAHIc9<8(m1n>
zWfR)$wN~K~4IePuze1G#D6{3wA{V_ylpS9b3QRX;dG|<)*0oT$-eyk`rufyW$>col
zryy9iJp|h3ly(7VyAT|xeM#hD<t1y^d4UXEjC)pJIfWCQ!>i6`oORn3ZZ_a>RnmuR
z-CW(u9)#{WD#Djo{RU3uvQyzdlq|0s9>w78T-+%_F_?O0%vKc>a=JY#m=q`vi0#wb
zu^e)DXh3Llxa7E!ojV~DvggqHdSS*-G{AsHXnY}wB+s+M!ZR}MCZ!I&c)<d*P^wLN
z%{0AVo={FwoPn7$#mbvC7DKkHcPHEv_)T^>0%66OS_h(<^$6tV!&ErJC(k_Rhb#!n
z8QTHk)6|)@%L~}w`!tP`42fngM72-Ts4ld;F#ohZK{a$+wNp=fjZkg$Vsd<^x<4q?
zqV<U2-(38#&?I@b+h*mbE><fvlDTFC-&5LmYXR$cls`Upu@gJvp4>nmQHRTa@rEC9
zO|ggp!tsl56auQgOBNHho0ZIqwfShX)T-{!T&%mL^bnp?NE!s*emWioIqt|q{xI<O
z-Eq0j3uM5!@%P?howJ)^4cA4-4ugJ+nNObKbH|yN>Y~Cu>|5I<PqYk~{~leSkS2~S
ze)`q2^Ht{sVuD<)25+ysR&?S<>tqoHZ_*2Cu<KYNqaLGF*Gvr4wC<k-r4Q`DgTyA2
ztIgU4>?UoG#XxrnPfFZ)4v@2&(U(OrmFq}U)vz%{4fRNdv@=Lu*me+OfPARnAyGP_
zkQ>#m6m!Oo6xZYzo&QJShrxkq67_cyG7nK^6^!u7yrU`5I~=8TUZANdwe@lnL>;z%
zv)~BIfYYuvY+-qB^!b#xJ?Kd&aQWr8%Qj0nFmTj!vM)jrvm?nmR+5eg^>};WE87UB
zFEveCrKc6@R5a}=WG*Lgo(;}JZ~_Z##mpE!MoxDpqRVs<VwesMq7%OGGqxnOLEqAP
zkNjL|`60@%TKW#1TgP*GlQ-yhl=LA(*`pL}&!^dYKnb{k#85_+lE*<CIlo*~YSt&a
zB{x$a*i*MyW~+!?k0T9Y=Qkx)9hjvYa}<Masnd>XnOd^99%tvJ8CQ<aJ0maV)9ia#
zM3!^e<Y<}fmm_6`hIL{sh88Kq^R=f#9%=fhG(451d7Us8nqG2>`-9F$3i)XBM}=IZ
z{=u}+{M27?!Q$A&2>OVwx}@x%sCXOB)6!lZD_irsrMT4?a~2g#ey+Hs>l+L14ciVT
z(@m>DuX}<Sk7UpmOg^^iGeV~N*h(H>^(`Ut6g{)*;$Pagogwg4_|%W>LyQ!$;G&Y9
z7d%TEOoz*5=hzd8H7$S+7eRw9)y;d_L-a7wpvs#f1w^F5jsO6DsQ6tfnT9pB!YHq%
zG-OCY0C<k{wgR5J<f=Nj3)>E)?NJdIGeWKrD2z9En8}69X@bc0lER5>kX-7o-js^_
z>&`k28Blb(G$(>PFVN%4inhPrQ`cT=(l{~OKGB?M(S1ey+1X3g9EXP$s;ZOR(0R0F
z%t3DVnh4>^=!P7GY?Gm)LazC<IvY{d+XF-n$Nmyo)h>`xA?Jv<7I)|a9&$`i$^7bc
zz=IcQ&!%s*Qyx`NT#$oPZwH{xxK|#d&FrmGJt2=lmOUlo;Mlkq#ng1bp4=uDf$Ymo
z!^2K*?2_swTWpt}FQ@4x@O7b>mESP_AWwy~9lW>qxem-Ip{U@|-*JAz4_DJ(S9`ny
zCuJo3eud{L(D8~58=uSR74ZV@@k-o7N3J(+iWd2WSL7E|1pY=e?-%wrVh&o+5jeLe
zFX8~=#0Iv^NfX)wb#M_RhSw*N*T_J0u;)jT^KL?S4}|Z0Px5BMuoJY^HDTN)K*}b#
zvmxO+(6gHk=CimgRV2sv(dD1<NBPU66G$!{v}e{`VcPDNEzvcsaHt~(_=gMFZI$p$
z;C5k3tJ)8V9VEMGb+>9mq}g&}AHha$-sI#kPqyXF!SFDBoc7NFtLlaEY)pBu{@txr
zd}*}`gHfBv3oV=o=9J6gMTRHF#&!U!cB$QT*j#!fmL1829+WZ?kvVyg=E&^ZogUO8
z1_q5`sAE~bB$=9WimZV(J7$#l?P$rnviqyrhW5?cn0se>FgsS33m^Qq5qj)gL?7`u
zEaWvNYQxw%c@OsNb7IU5D%D>aM(XXmyCFK<3M6YS3ZAXRkj~<XUcAs2(pWq>SKsmV
z6%Wo+*F<y`M3;<rdJ1w%Vl=D@Vf7zM2cpZW(v)E|6jVQ_YSa_7E&96AO;GwY_rrP#
z+78W{$YHB~rHIy{*q#uPlnlfHC0d;VX;k8RyR{Hn1Y+?|n|R{1+JKuMyQl7H`FwMT
z3LOFc*gY*OWmH4(c>11}=2iR}D+j12?rBlO2`VVF_q2#`ZaF2Q$HDYuoRXlmAalER
z)VRrVcbq5ElE076`G5Ggn<k_1Qfu`FOaaXu@P^-DRDcs*UGF`SLZfr{>>AQ;&RLvw
z+m;Q_btfsEWc2()%n*k_+*B~x7fFDa@y>8&x(^NT;Mtpbb{9WGdQGlF@iw@3IyS3Z
zZ;WK<UeFSDbZ1LohW)jV;nbFwqX<-i2S;`xb+HxO#OxU^eSpKp$jF$S9u~Tkj9X%I
z86XZ(5`>>>#-mM68l=a($8NCEK5p-U8*rqKX23C`8+0Ll)~1zjG?&#tQ`|VT($e#O
zzVHBJQqmV~_Nm$2hsT_!*`be})Gx%x?{Y`dbXekd3w8&Tmf}MVH`7z_-lGrp;@5!W
z9wSW<mKd?D+n7n$KOAq8_nfX*cU~6{OL$xnf6Mcwn!M9|xVpgXD++$Q)edOqsp_No
zXP7fdoMjI#;*xUOuw4mu1=L-;M%8uKl>iUFJ7@WIR}Ez(GLZMV!Nt0AyF&1Ne)Z%t
zoGxdbE(6D2!$4O-*%eXUsAmt5x^u^QyN^RdIxN1J<=am2kK6D)Oc<C#n{Aemw9G}s
zajrCyIpl{2_wrk=G35!ipV+9#-SEXLc)h~ev67brj?%+nH?q|=L~G1h5}G@zrhMz^
z5RN~|BQxHc($l-nyYSMORY)`zOK=l!M2v18`p07A;q`^Va@9k#HeN-ol;eCobGo3a
ztl2(YMa7x}t)Z$vLI)6BUF_$fuPx!~LSv^R9&dg-9pT(cJ2q}ct;{7x?&bWoNGHb8
zui3RLj!c&f#L~%yi+f;q8^=76mb{i~Mi<aIp-h9tdg1gEy%76w(5$uG3?KAxLQ~li
zh9hZ8sAI7Nqi-Q$j-O5-JzWv?*y&10T$KX<xwsQ2yG+md`ezOA?@weWvMEe*6PZft
zCCY^+RsCVYG{=!<aD7(oN7G_i)#KEi?tPpS!L+tCp0tN0<+5?Y)rT!t4$}UQs++KI
zk|~y6G1n~Y&X&fbEmye#T^UP^EgcgUne%}+?uud<vYAVxPtc~t-l{Gl>V{bA##k!N
zi~In=z$6m!WRGA~-QF2-cipZTvO_4+A+w#mtB{(&tfTachtnpbf{YJda2Ke^12Q~#
z@M85LjnM&RKq=PXfHbOJi#^K(cUcSBgBs1<6{WD1!Fz{v4{Ox6V9K8KHswZ43!WZz
z$I_i?0e#A&i)jJ*m`7IA0{XO1SJQ$A$Gr!hX~B~j_e9!?20EUca1yI!0oglRLobL~
z!4o9>CClsC6g=>bh&fXNx_3kjc_-reNYnXG<yb<E2gviz{fU?kJbcU@Px0&q9xODi
z6)-!lK|9*~F`>zz1ogPv!z@D*)PHbPHy}Zu(Su@bW;lX$B0{3U2=c5)reG0G;V3*1
zL7a;a%`gQ05l1(J5TyBL)p;`lL3%7q+6dA@m}GoX>={<73oNY3rX%mw>9WQfT1v1H
zDh7*70iYffMz?F6YPK|B)C(cTmsw1-M0-q&wN>1C2V#3~2m5wj@>xtdQqLlbTk(E9
z4(!u^HCI+BC+O{~EC#YS=BRhk!9CvPIp!uPlY)&Cn6`?!ObP9uw`<BSzd?SJp}9Os
zesIK~;$4^Tz=9YKmkZr(jd9lx+5^A3Y05dHPQ<_Gb~A}z$zaj7Rp}8NLVVrXwvk@z
zUBHPHXH~g2gqeJ=l-?C%DYTB>BzfYtadR0~vt*Xdf(&1V)gnYEWtA99({b9=>ZMgP
zbY+)w6==CG`DtdNglp>-DL{Mo@YVEk6ateY0+uQ@C0VHB&pwy6&a4(<kSKvUqEM&O
zgb9c#A$sv1_Sw+oWY1<y7ohM1q$4m*Th4A>j5#||uoz*sl)j2_Tn9uLKu4~)Vq<S4
zY+3lVryTeJ0dL!I<#X|$TXLXV7qBn!b0R5%!uS%a&$I1w>W8<wXy~v0`wXwvjCB#0
zbhYLOy>`zy+AI(>y6#h|tu!0Db-agh<W_CBMV$9Cr*!oc_o0&Mi`h*Zkx6q&mcE<9
zNSNrSVmB_<ioU}faiY!=KFtIjS2;OKXES4gEY`Hiijr&)bzNm&5oqcujk$5609nJ`
z!NB>pZI5}E7F_KHvlN4kr^7O&5^lFWFR`^tZpty1*90ALZPo2Vp|qH{pWIwuVYftQ
zW9OEzvE=&zG$-MN2mw9J_0;C16H$fnn@UL1(;T8ZQ`OzUcX~_6{Zf_NWw(d}_g}wi
zjcvmOOB4;SMvss;ZZ4h0nyOd@<%^^4-X*iV`cxG#=>|ySfBVs!d2(<R%RP|<fOp)d
z`X#$_(!B<g_0kJ$wfu{3u+~*w%l`pc&_l|FbWmGMYfIgvKE78~&{a3&#1mB$bj?-5
zkeKV}x9DM*HJ-;XG&ph#PP}7<URL*YsrtyPY!lV=7gX&8%q^zN=)rD<u?d<FI%F4t
z(>8uf1UP%WQ6L?OYpVNXF=xuma?zOItS%Yi?comrxY-d~q7Im1;R1F)1QaIDvk?oc
zYv8mOx8sW!a=Q^E^~95Z!x93M1CJ9U_~T8S3KuA`cjlEik%ISZ<X5Dqyh`rdhU$B?
zN=OQ6Dxr*}Ps-J}`Xh41>KWgnhWh>m3q5<Mo0fiwdsV9j>k@JMuwo6yXqTY*Y1~k>
zuN4#i0sie-XcjZJ^~DXBy_jv{hATm$Vf7T9(n$lT5N11SI6diIc9n{$IA!OwLBpv!
z+CU|1k-qsln8rbKy_Vj8V(&qSeMCF@<G>K(LV&0NHup}MJR3R@jZK14V{52yHh00E
zeCFxg`c^2EIZsI}4RwmrNDL4zRf6FU$`-X(a_80a#kHqh55{@&&Qy4F@hUvWv`tk&
zvRECqqu!d*)hObQZn<lJ<?d7O&=aQFD&<_vQW$UfwvC(BZBTTy+;QZ4WcJc^LGfwd
z`kOqUG1OvS4@9_W&rke~B}z9^^c-zBOmQ&`ElNcbsdWB|HVK6DtCU2*G2{uXeMBG8
z35-P)nDT?VKZ90@OK1~h|ErqBT-M;CI~EUG;jM$Sa3H$)&KC_2+%mWb24bh`tXa&s
z=o#GVn7+cYVfrfaLl^Fz`+C;zTHE#90*I+-@Jfbqezv8f`gGkzpr?;{rgbwjHrnLO
ztpjcuk+yPoo|9rx>^e?Lz7E@F*NJ<@-*)CHEQ!6V6Qe{gsc;{#!O<0g(+}718J2_>
zL>gIT^Hy2C-Rw=YwYiQhTAdf@eo*xsPS(2<&vQh|hsOsCV|(c~@XiZfaFI3`9|HQz
zH`m#l>Wp}Rn7gZX%;E7~*)69AjI0p)OHLfQ{_wy=Hf4mnN6J`7wW4ERru|8p;=CW+
zsTXDDz<q$f<C>GzgEhmzRg{paJ5MqaCZO77OV)Ajnc`42c<gz7i(S8Cp1C^Pm~LU>
zRsU5iptswe0$~2|b@0h9+fQrG7Yf1vdP>{VsZCCCfnbdkkXH<dDRySJ2VyAb!C~?d
z+~AAGXKh0{wAL`KSa-gd-#0u$h=vDBUPmQMJ{ut-mqFV<z)H8;=PjXA2R?qA)2>1=
zd;~yHF*ihe&~qqgTixZ+=iV`QYE$!>M`*xhbVOwHrk-u|MMlzyXJ0JslUU>=Zoo4S
zO{42_#1QVv8N${C62EW!zwFLz`ijlgQFHIrtji#i_F>~PPHHvlbiO8$pNNEABhgy<
zpQpjCtflNQ9Tx4u(N;tRh`o75x$l`g!tEe*i{0`9e+8}MN0-=w7(gMYuX3xvo-^Gp
zXa4~M!=8ueNSkoNLp_frevj=2mIT=rcuZ*0$oJT;W^(QCvF#NkyDuM5Ro`QKNQ$6+
z-1peNTGbfgN}nlp){n5c=0U@o?<^f*4A(&N1e<)>Yz435k1@6Br`LY-16F-pKgeqW
zsLW}wVtcRso)~um6^_zO7vqr7Q$_0Clt}t5PH!N66r!(smQ{rFRV(knU1&Y{byJZN
zd^nRk0q@t?4N>7XS}!eTckI4lCmLB7jF6b(!F5>(V}r0LAI@j+kw4r)2#w7bwib%!
zXmzlbl@^YX*+%1zaT&@k`#phnnc>@R%pL^aj%V_F!5Rnrry*X<gAS&fBJ!JGv@XFq
zN`t6V09Rm8ap`Qs+Q@U^YC>%Hn)nZ%hiX{feCrK%?{2tl#!Z;)_r&et0_In?v>g(_
zYlP|c(NO!~7t(4JFL(ayIv&sGhsvRysi}fj^5Zsh8CwZE0zh?J>+H5cOLb>zEp@A0
z&n=;Go2B0h=NBNlxrdvW>#O2fc}yG7HP#aEXl4TL+jtr{E#f~gj(tPqw)@;!=}DiH
zTPrx(%Q5}aSQpM)Z`<Z6i7kvyFL0sN>)6t*p5WJG)EegB^h_Yo-aI3!k1|-%L)`eM
zjJ&3Lh-sPQ*l}mJ+4Nj9F^p5i)Mu-n&BLOcDWxkJI+HRgb5OiYVSeX_07t8*WV_GN
zn~`b93$`elX<0b6(E;?E?PA@)1d9}`31N$*XId)h$4x~_UE2ZX=HO`CT$+**U?#Fl
zQ&l}gMu<+9FV;O~l&+k~E4Xs-?r>H$^p!_{_NDLQgvB(U4Gqx1RsJy%uHg?YcBm_4
zjQ@6AA&(wiyZ$-c%at^xt$WqR%EvCYyi!Y;vo!sp)@=oRCS@Bgqa-6bpzo=<P75ij
zELPszFXd5Tnvbu(xD+9)$=~Q_G)3yw`j5zGG!x#GdLcT2c||xPex3_1udi^`YXz4s
zB@u3TlMhXi!Mn^}5NiFQ=S9?Le8QCJF(w7Z6h=`psX<>4%P>BHR_yp-$c%<i&0!s#
zvtBFjQ9373<8P*!@N2@s7(#g@6A@2L5wd{W;bSA1b*Z)N>yz7!kwS|?G%_SUS}k9(
zUR}P-)`=t7Mc@Af*W;-kxbG|Y<X*<rK*a<ALM30@EL44&*QEl&++{BZ^t=y8d^zKt
zb(^_o+Yi%<E?>GDz!b^%?1Xn<E+&7J-&=Ejn7$`w1RkMXE$G;Ldbyu*87M|w*9QKX
zp{;(foA}BYoOxXyFl4*Ye@B@3A`966bw&u*goO~{p!ep15uo#ePYZvI?**Xt%7DX(
zi@{;V?N@{J8>?-(^0m8mqduL^0yqqj#20Wk7OTn_qx+><RLb{!m>a6*7*!4y3|=p%
zcHH)HF=_3(vY#uLD`W<rB$7h*i3;5_bB0j3fvFuWvIxm)VH)_UEclu;d0|HsPbVQe
zUQBKegGO|8b;OwYrOw=Ft8TX3;%;S3)|X9GhPU*jGZ}nC@8&eVG#T8<g+jM7oIjCN
z9PYHe{Z(7Q-2SRt9fCE9uL>vJuVc}Bj09MtMNZ%pi?K#n`wzEV*mg4x=D|*7F6Z97
z8M$QW$Jv|s_fCwgJOT-;NxfpLRU98qctL?el7L0$1@9IPszGn7H;)w-9cb7dveR6Z
zD|<ZJc2Mrn?E~3`=o%Zy;5<r+h`<05fuhoy^T}zcze@Ys<w*;)vqV~PWUaL7*S4v&
z>UT$^1&9dbNxKz!3#)6L7o2?s_m|2$v1EB2-g&hozBW6C>k|+tl$fs**rA9_XNfWl
zsc#=zr4Y^T843i>tK~4<q5gD^7EymzRmneCawQcGTUoZ33KZ?=!PK_hq*SU!u1@-r
zNMJod@`s>EqGF+golSN*(oV6r$BoQ?>WQ4s`J$SY%X{&mEFR0QJ#Xde&tB%{z!}PP
zZNVptxwK09?9Emo=Dj;N_E1&~d(Wh>Q65y_6c5d>dK=IlC17l-2^WSUzJ*7|H@w2{
zrUSSeuEd>rz5()(r@hqo3>DrSDeD0rYjf4RCZ?zd`)V(xN<}wC>gJ)o$6NKfjHIPa
zB}vkHCnt(1dpQ=-{GuN0-+B^s6YR!_2%fZ0c(8Y)?B<9B9_(XY(HEd-L;w%;w_Ibj
z5`U*S(cazdN<IZ8BXWAoy@GUrJ0hjW+Z)A3TX3w%ZziwgHIDb0)z$HMKi?HJ)k#G3
zl!WvtBBY1t9c{BhMk?+}`C+fsCjd%E%KZv?sJ`Z1grb|Ui_I_Up)Po*tJYG{a7ho;
zOHj8^owg){PCeN*)G<@9s01FaU-;G3TFFhY-oaAeZ|IFQfmg4`y%9Bnvd@hSX|L$4
zS9AbH7m;<|8&K3*8?H>2;Ez44@-|biNX5K1xNo(q*$u$GJW|w?_N!ipJ=2Jg*khmZ
ziqe`6eLOxv4UT(7pH2cqMvEuwPduCb3_^`)w<oLrQMNTGn%oB$yZY1pO&f57Lz1X}
z?2UtQ5;cPAi8|wT*Tp1ivZZ>x*8mri1j)79;bc9FK$BJAUJvvF6y20u^bfsOeKv|F
zSIT2=n<~;(Ui*L5)9frjuZSps*HkCGR=o;ElLvR;svn?Wq)Hy7*Qd1EBO<0((6iLW
zT1HBG6}rpuKEIl`SMVHHka$O|npe;>z+}~)8>x<0^6g$@-j1SIMl{5$(7b2=cc5sb
z**#FtsJ5dZ?ZHYIp|hSYrBHN3M3+7G@9~O0l~9u_^+~TN%@lOAaDo8dqHhOECJ)ff
zuI=fnHQGX*0O{RGcpgedn#rq?$D5jIL!_kFpkt2tIVc&mV_wM*cvUAmwjsHdZgike
zrji?zHT3h|I66#alWXsJ6K7D#NYi`O_xqmOe#53nS+82(^>pvGG@Ld?8q3G^RJxaN
zBRb{5zQ{EJsnnIp)$*Or?I=p0)%E+|<3H)i+DD>BihBJ0+j1^N(dew>q54H>)`@nk
zSM)wl2dHN^C+olyo`L=yLhVf+tKab2bvSWlP1X?Xnp$|_8rOL0<7{QLFciO-R+jZK
zvzWI1S{qf_;I0N>@SRIJ!jr}Km-FigZ^OJ1+&;|DTo(NIKf^J7%?w)v3>h|AaL{FK
zy4;xZA+n;~mNSRo+xxaL6Z+r^?#-3oZZUY=v`!%M>8dkbZ^kRky7Yg8E!%%#+l^S@
zpx9cH&~5$uM*8W(J)~TfX4apv7_SQ#w5W*^y|UESc3plbOL^HHF7YIlWnR0v0xAQt
zDL5d!-Q2B?rI+OivitvI?`^>3N~*f?o6K%!;x6p$S27EW^paheUBc{qXTnFEWRmP;
zHy=YLyBk@sr)RonrZ+R)O?OW+SwIIwi1J}nUI+p@3QGKo8bKur=!hUuL4pECMBY*1
z-BnPd_z^+y{hd>Fs_Nd`_fBPZ$@B6&|2)rb(sfT&ojT{#sZ*y;ol<8mZ{Dq`V?1C(
z=B(MEW{zRD<B9C!bGXC<gw3&wC8Uek1&#GhG8*-fy7dS%vd13onJ&T@^*Lx$c{kEZ
z5e_&g^^y01ds5^*+91v)Bl6zR)ooCO?mPH#{lx}F$QSq|Wf&^f0zx#PLntzm4nZcA
zC9YJLhW$vS!h1QRuN%DLLz)+lxTHyFD7e(2Ng}?#*XwFf0fv5Rob4NBR8|H2u(t|;
zqe)$hPm>5C>}>vcWxjD=@wib#s>D|;_U&=U?$c_p={cGZCw1Kw{kNI71}QpEqeGX#
z(4#haln%aIrNFY?R+4rj?XimKh&G5w(OB#Vl75(3Zc~3CEJ0-ouivXx0n)t8;WbLc
zsz7tC=+Y=g+^r1Jia)N#J)jc&ozxZW1hC)eFo(u3GGnf3$w{m2%~p~IkzUXQ)BK|j
zRB$hOXgQydU}pV$Ar$MP&O#}Rl6{_?)Nrdg&xCytJDYPigHPv0d9qSI+Bro}VDX6{
z&R6FUqpvRr+D!h%g{m%d68V?%q({x!6{0^HwMcuV`xH+wnYa_g+O}^r33ZGse7CQc
zSlWU8(!Q~<S2NtS)9c&LHH-~fx$3H?piM!1wm8)o#=QzU^!{k9_3!;H-QTLqeUtWX
zLC$&QlD9FOlk<&=N_H&^uBD+xMG#Tj2za!efaN8}c;oE@vz(cL#eX+HZ8o(}p?%u%
z2R~?;Z{RfVNu<n`b?}{pO4fEH4WdW~6WealHLXZ*IuJ69%KJ1bt})MhKKObl)Ii>B
zIPDmkcTgZUeT605zENEHRs$E_<jED<uTdv57{`ggd$f2u?6VGa$#>D+t)v)oBeJ*I
z?g_|mI=~l?c+i%C-_nwF_8JTPA^`W1e_0JohUGfJ@JKHi?kcY)1}`vgb%^r@+THYS
z!S)9204-5Sk2zg^gS?M}v98|Z4DKNHg#A<)87Ewqc3jx+$Q+g#e8w^IcXKXqtJ>N(
zit4qz`tviMymGUp5zn4_hhCgyq6iaJjM{-R9-_o49v>D-AV{X5&ikD+JI0QIpEs&7
zL45>7&dzp@9j}if<IDC2Lf}szq-z+DwyJAd(q)E{r{Rh?^5D=MxcZ<T%P8Wm(7khJ
zpBXFS)k8WQzeSG1si->5WlwX<CL0_B^mJ3UzoLt7HATY;CM#pk?8b|a(=`P5aTt<;
z8&&O_BjC(v0jg{U_jQ5E;3WwV7@h@P<ifADmhUgu5d&>L*ktMVmyiRlO4n;h-H-mL
zjQgHY`AoC&U1d7r#?T4dDkTHASyd=lFi!e8%@<lE)mMk=n{?M$E#n`tCIeGoXeL1h
z7~;1*#=S>j0flDo{5EMxx}k+3jN+c16gu9%@k>Gjv+}(0tfyof)W?*-=_Vm?$mECA
zR>j($oiqr;?2$^n!9`XJYs<)8d7I%WSeh=4fREgg*@**NbYp~j7vI%v`;t6~up9Rk
zh~FLNMO`3_-$NfAQzNzfGtItOf3nQegXCHD*o##~N>2=T9M(uTZ0NkRI{gT1wb=Cm
z_fk1sNYrDV!z~@$JTif{D*O~<Gm0QT*+9}NAm94)hcuh05(?TrZ3^bgs;K>E?~e{p
zdU%coX6>Xd6=P>YT5~XX&nB&*B=@tJf+`Y>fUpBH_m(!3H5d8cKp!H-44{b;ll`o@
z-n33+qsc!c;%S}S;faQnnfA>;JP{E}H6PENDyj|fIdOC&L2agE{ST=sbT@H8yK1#^
zh2G4dqX1xO=7i%h&IBrw>=44tC^`_y=D}7Qw^UXI_5mV<r4!#jX#(vy_=&6E{eWUT
z<kJZNllUZOH6-zLKvZngpJ@H+$T7q9sw>ncvZBu#0Z$2qAYg>B>>j->veF4h(PeB#
zxONns!wgbiXhiA^*}m9k9G`WL5%3g5>%np%uTdvw_QIpu!CN2HllGd}C&Xu|t&D^~
zsv9lGbXX$Z4h!GgHdh0j&CYJVzl(`sZ+K#tm*u$?Dy1a;*>HQdN;%#Nvb1s9Y4?sX
zuX!}@LWP{R+AV=eu5T4%lht)grgJw*l!!HaAGGytmHCyC=LO^%I`0f^P7y)`@L3ar
zFDviuwuF~)^HXgJHj63e_)e3k6&Vs1{3aB{%fj|XEkH;qg4>pg2;*r603u*_-kb=M
z%z&PRr&(o)g3j=}{mb94)vbz{&dP5{nz>qMFbUSaM9Z4FT4>Q^?ViUa!ZK3J^2%ix
zQqSjvrZy2B3US32iTWAX@fPHB`U1Gg7>&KUep$)sPH?easwTv**CykVS3q(>kzch-
zkI)XaNPrCfsNmAhx&1#|f?WxvW~>Y&W2@~z?U1;Q;2}lX)X_AKJ6Epx{Q)Z*JkoL<
z4|CxX5X7zMOjwyOq4`QT%Y-&fB?!F{6(ntHMp4B+3#ev+ok!FlDrALht_ZPbO@+qq
zerZgGoUfpz_}zOyq%Z$P5kbc)l+p-|BOp#&($h^MJ=Iy5Z&<VFafsC);I%V=9##Yr
z7@dBS3mzvekml2nxhD9FlCe)bt%icQfC&N(8Uh&^Fs(=j$cQ36grD<*&Ng4v!-w)@
zr1KKw99@bs+2GQZ`J~k-+#W;$zQf3b;OQV8Ieb;GB+46&%{w}1JD9A_!xE+IuBw-?
z+CE6qHufofWzV60bsj2uN<FJ`-FfwWgEDf=O^QgUu`Yk@4=7o)jU56Tx7X`MJjz|s
zqVN|Q$TGDF5ZKF;in2hBDZALU&9U?%u|UIqvIjIspordz1yd_)Ec!V_Xv4zRr!Y9P
zkuO%Bo1h~2!rR1_EoQY@`yA6|t;44rT|)_$bJ3Zn%CUH0(_G{0f+Cwd3)Kv_mYII&
z_FA(LQUdBW^Q$_^FMpd$Yj_uouQp?uabRZ2FMF#gz%ySugO*)@%Y?2jHH)yNNq97t
zw==Xo_=WN4Ah{S;g2^!@#<|I<Wkcq70Jrrfe7s!2#dmmAXr=rfaqjSa(=L?QyL>98
z7`s}H{>OT1i|zB~<>Jx&<UHM6b2Mef>8InBc{Kn#-q5&^$qkPZI{76gXw>h}m9TSb
z^7Z5TYeYJtjjTu`*j5`Q!_BvE?3_?o*_H0^CUwbbE1hK!x3ychWTzV!w?cnbs&be2
z)f&hWAyk*6FfbqOi!e?YTdO1ZpbabT55+o_FNfoLn=(9LG8(n5_4uGE(5dCH)iy=U
zBb>3C0yLr*#8D$pxT1lVgC`rRgBKgO5MP+m&<A7Ca-C|-z-z%$>+K;Un0$z|fPJ)T
z{{aJEMwWh*%~vs}Nbnw%FP6MQ4k47Y%rNDJ|DpAVB=1c!-<%rK*pg7)ioi?>mPv4L
zAvQ_5eEgP-!rkmd%w;lr+n#MPX*xrv;q8J15+hJjLz;<MGZQCBLBdTULvUwXmrNYG
zJ6mh)P&pC7SfdAxu`yy8a}2jQt9)sDj}S6LisN1bK{qMxGrx?ujG9()FKY6L>FuzT
zTYiM;<j^+sQk1jiV|Psv7{RBt)#QAFGOf(bVJAT*%*TsS(uY1{?Z*p#{H!0=w@35^
z`pldtPjeY0L%Kg>WN%Kd6|yJd&qhPqafLb)T%6%Kk7dc5ea=W!Mn$>r=6sl)D&q!G
z@bgpA!RZeemQICcPfn^xMz7zLkJCTWpcP=wRwZeF91P|tcX05BAJgVZsvYmxTyuOG
z&N1ULsV8wOSf%tIY`Q&RYs@^JOnQTBfFErlbLm@BWJopoeXfo?`r-b~=ExS426?1d
ztMG{@kb)~WVj|L<YaN-<Yl2p0?sii(04RHL&gDCy5xo85KIFqDD9O)2{mQ1sV$aDh
z;>B=J(xq-S+<`s}E5429EzmjbVv%edX5V4bYB;+f)hNc9y)ACb!V4OHT~|AEo14zE
z1(<WTeRFnLKAYP(qvm)>-};iGwCw6+24vJ;*CrTB6=VQ65f%rprt+)0u>Kjnu@n?m
zk=@#43jfh`%2&?GY3T=j=u8COPdAkT;1?DH>V;;Tkqa_u?NxuYOYFb<h?)#AN6c(f
zj|Pg7U`-%O`@Vy6{$l@2_xz~=lMNFG{&h-nYt2-->uChhDp=Ff9^Jj!s*-}@KA;Q{
zDiH2MQbjvQaUy-D-mgfDI2cfYGEF=#30dJtQnWX@sZ2z&v?&p>!^2T5VmU(=Ux)Ra
zcBG3;Ox*$l&>*6~LR!@|Atz~bgcHT_Kk-pcPI~JiZ5EsMMMhZbfjJ`|LTauNeD1Fw
zPe)d+r|gcK8?;~ORUTo3Ev2V<Y?X*#2~Jugy)dN6hQN@zV&n@ADMRV0+GKzk{TPr{
zlKL^AtV{&;7*L0K49G6GQ>6u*{o+Jm?<X};o<hzN@(~A%+ms{z2HDWrYVntw{`Xbd
zG{6oC0lXnma>DD|;iKpC0LMq~e5M2c{)h|T5yY$Axjr4p<9jd@(4W&{y1Hjml+HV{
zs#;SKGC(9s-4!EBmRTk#zGJ0OZhHzN`sfFHf=}y8RtvdbF+upOe(wdnP~;m3<Knk_
z^Sa0?9k-%1o4Rl$Xo*}k=SUmI4RsiqrV&Mf8YF6x|KFLn`la{x%L?mi;X;wpz<kYX
zo+Y3<J?S{>RbM{%q8j1*j;dzZ<Dn8x-T8%kngndNtV$)RL0!wqlYOva2F}8Dt=E`^
zqB_Z2&SA>l5G-<<Hh8@FtT}jAO(Sl6mm%oSzg&IBQJ76T>O#Pa7u>Jga4-9|S*Lmw
z9FmB=*)*avNJSf0S0?J60@C<yoKuc;I^%KsPo+KE<&H2qZCK6OL<sCh+HmZ^!9WSA
zN#(e~`O1^q{!S3H3Dv*>c6m2xrd}0&4(WrFGBR6u6rf7$T@A&UOhf>ATcoiBoU!}(
zj4W%C$ndP|5PgO>B6wH|D^%+;$4cx0v>tA&kzK9^S7`}QiqV`JJBkVhihjmfUU+vt
zBIiFxkOn`gM`cx*`80}rj2r>_UhVaSH<Ab;Rwmqm2o!?%5rxLi$jp+bz^+p~8grnL
z;hc&criG*V8W~YtrT|h(1!nkgmQ5?~nDr;1h}<S{6@9-(-U_NgUdCk}EtsC<SJig&
zBLFzoO%+}De75P@5jh}r7p;1=I7#7CjdOarwH%zD96N?2zQ~~!Jo-nmugCD<BW0ny
z<ERoe%M$srh>0wQjxL)i5WR!f=sKCo#KZXA{ulbUrHr&8ts7nCGz2ZkP5?Cc1?>kw
z0k`PH;WWWOx`$=ZkE=D%s;*1@vFog%`7L_d(Q%IQ<~jHmp;anZQa0T)R?n~-!D<D(
zCo|n-Lu>Z@(X;YdQk1eukMCx~n{>WN@;%d9F>qHzeIw4M7nEA(Ja>VT+r{^lZhR+?
z&3UIK;)FmB7#$h_@s00b*$6Rsv)f%92N|kLgOKwDSGMU?fffmQw9?Tic>eYv5|7pj
z!B-Zd@@v11^E;h*bPhe(b%=6qGhq$k*ka9bzBWKw?Lv^I*wUGvl*w@&YR0M?E|=D=
z+OgoKEvte|9rMj<Be<Tim9afprKG<|Un6EDZWYtwX!LVvT!-bWoxPTVLS3s>_;plG
z`}`wO+Phz&KEw-Y!e=s*$0t=3oXK%*yLBr|)2UMwYiYs>`h=aK%A4EN)+4oU{nQlt
z-zHDnq)(D+lPCqdvRic!G7_53jmRR$3z!u^UY^=z8Mh|azTzBt!s@}v=iQRo&igG$
zxQQ`8RB7aArPxMrsBptJ1GcwPIYKd{n0}^gpOtG<wp&k_4pTA$*Mzj+6)IJI42H_~
zAixBj4228Jcz6q?BcalRIJ-fL9}3^GFB?*C2PPiIK@8z~*i--sCb2tG?Tm+u6&^FD
za38%9D6rLVv4UN&g=|SHV2ZDed?0XouFw?Ixxh%iKBGRIv>)ynRz;_5(SgPc9+u`7
zmTc*Mn4b3xqt(;4Y%fwxa@iSMHcGFRF?aV94re1@xNv#RGe4`hfDEo4-CMril<uFO
z<93&CGtPe$Ap&}`Sl|yIvmfpm9v;1aH=?mQ*BsvNyG;VsGb$39E1bVg)|Sl9;>7$k
z7k<VT?l?Y1XJ2^D@3vq4L8UV6tT(cJ?iK2j#QZCl71d;unF7kRbn<U{ER`iw|HAb8
zwr)IpEx@Xf%V`VN2_sD_hXjb&$zdmzOb#=xoGmTvLs;Iyt^W|SzN&a&d?ykI2k-fz
zs0uZomJu^AZ%m)iU>Uep*tKY1kf6C@HOAy@g+dfiX599O;H0<X?K)MX&vt#{Y=2$f
ze5OJqgEiHC|MM6DS7nXJ9HZ5G!2lnl2OZDYrzs(xH5N>vndP$?mkimiDdv$ud18<P
znvqvTY`-GaEgr>U82s&`LUYkc??6dNn}Fi>0@op>VR@*-6t0S&SU2g#G)p0^WNPz0
zy`#BkOl;$5PQqf%cHL~aP2H`pR=8V%Y~qjQuuR^5x)GGLMSz{luVBT!2RdM~^^vdY
ziLW*cCenj~YrC`;%{7%nPgQX^D<yM@*wc&7Q9USaxrW$23hR3G%UZg%rww;z#F)Fu
zTH@|&+)YMZFX>ml?AnRYN#h&Ku>+{-8jhOauZ?-(>F}Fg?wYD|OjETT*UjSIw8JV}
z4dTGUJ6q`9%)jt<L!lj%E}HpoM}*}Fk3)Xui~3WlOoYq`i)gwP($w6Dc;h0wX|_I$
zol8;^^}IgSa+DHkb$3O*`~?e82vp3M8S^w^^+WcWi3Sr3XPpEAL{m|&+Q!0bJ?2&d
z9r?CV{Ya@wQ>-b^BV;obi1p&k4zpfG0S^6(W^a@dl&e+-tuxcwA>J9h=0`k6gNP;U
zj?CI98W4fPwiu&<86I&msfsjfL`%b~M3qovLje3GvS}w_l34{kIbCVYP*QAmh?B#Z
z7MMUZf2J`@`npxlVwF?K1hLxXB+||gzfMz3$WY@43wM?0=ZFIQ%#InYY)kAtrfP+I
zH4r7v$zX|Ll)2OFSEb9e<F(wh;~}4JN-2QQh>bX;6293kBi2WJh2WXpYF2U8Wt(r8
z>XCD-99H+#tLlyONMSFFW2i8OT@yD)wVNnl&_m<+ZIo)JUhTziqnI)Z{j4AQl_S}^
z!jD)%{+nz57^-n!Mun{}iC)c6Q-rEn4isw6mMu*<FzaxyKqPkBp)T!gu(B0X7JaHr
zR1+#tM3kyT2+0zhzK@+MJBzG#w^%I5JsQ#2_9Ly>bll}yDRx1EpvT$F{@vF1X@?Ct
zTbXvE^C?<`*leyq@akmDR>$&~u8`;Q$E@Me-QzrzYtQjcIHt?1*%jE+Z;v^Q)p>(x
zY4R14`2!P1t}{A5CpGoe6R5{GD0KrvHM&GP7kIC7aE`o;gmyU>Ji2<tC1W1o4wRIB
z<PD|=TPUE;2`3MWGDo>r34(9BwIknz-VSm2X)fuxeWP?^gGb+@+gmk1H{C1`qtd=n
zI<(E1Kn(v_)R{V51Mn4o?v0u*#x|EPBRF@Og!2G0WNvn6%DTj4xXsXB0**tz#nNi8
zx?^7@rER7Z=WyI!`%!%*-mX8=tKfsXS&$s(QaSBm%nn91^e)|sbKB0@x+s_~>{@2|
zMG_lR$p;}4&acizta3bp;1ZfPCbX|k8GWB-ev(TNF{Z4ivPN;$l%s|ACV=jU?^?nb
zgRP>b)Q9$s&waCEgyrf<De>p3YD}71<(QqAQOBDMAxx}BqOCErP(RzyJpe5<7_)x3
zOJ41F7<{EBNRhpMzZ#b_cg@qDFV*jfZZHQu^hw{5Fo!*%Ez)FTp%MJpk4J?Tn<xH4
zwuyRUEci<el;IE1>@shx&`B+6FVqva^KZ?1;x8}?>ZKf7zztB$5LqCo5Eo;)@G7^E
zQoIAu?yLYPH}k~x6~ZjkznPsS60sT?msm_ojT|P4`UxC9b5e^C$^oIC^S$;bH2sau
zWt*t$3Z`{xoZ1E%u?KImEr&ybXHQ(frK%ud+MFgD<!9NuNP#oFt`f<9M{m|t$@F}_
zR_H>xor(;}<z&xTdxguzUuqUKG;;(Y^lX|LZ;YjA2#q^5Q4EsYB$BECy?TzDu;FJY
zG1vDDNAV(C4mNX+FuwL7QRh^dTyxGSEC#xdKh}L)VGE)5KK<EQDRsrppVU%sYw{OE
zNPFgp72O;lLrzpGpbx5bkpt|s+oo0SfLkoxs&Cgl+79!Dhv(}!H^$?9*Zov<5;`B3
z5H<m04umk+ne;N2!IK<f0oKZac&0v$Hw#)eomwl#t3}LdUAne-HRkwW_T7ThwW8GY
z2MG*z?nq~C(~;Wbd4ZkjUj84o`)~?!q8y;gu(|mynhJ=Uk}?sJMd$8vmTHM@Bl2Py
zrn(#Bz(SgR_)WAEl@+xUEb5_(_iAL^3oK4VdHY6*DYuKvs2mlqzR0)-zZJY$TVx^n
zIU#^$hU${<vJ}5zj4|QJZX81fd;eEdc(^!#)Kv2?XU!G7PQ%#2hN_x<-Kzq;!Df5s
zIYBW7XJUPrPw-{(oDfcB%9t-8xYgKndMT4+?bQldi->7R`f#GFSV0H!+^sW>+0B9Q
zfl=`GL)JzXy2$5X=B-iMm`{s~cyl0H0p~f&{0cs$YZ7~D7PXGPEsD8mN_sIWP`>Eq
zPPJNhxnP^2_qq<1uq^_utj}KU_KoL;6fwTHKj$?`o$D?HU7S$#_0bCim{Rsi(_{bX
zB!<Qh$+Cnv!uE}_Vp>5q9*)%oIYhuQ+U5mc)P%A#lF6YyV(TRb2OnOm#w4#U+D$fR
za%nRjk8nt|qDb}!PBo=S7zIx23`$_v9~doY)lcAvy2Vkw)bjN;s{N?YskL&i#+@(8
z5v@T<p=0Q3T*SKu<T>0Z(cO5op}Jk&-MC6qE1Et=Cb7bf@w3BNRBPLD&;t9Dx3PvY
z8GXgFRkE58tBP!X*>#4t;yQ_EyMe>;2jBU$2E-gL<3n(b@gPa_x(pkP4HZKy|8_+K
zqm{Bv-12Y_fb7=9wi|p~*32W7;AmwZYqUjd<+Z^M0fNPjZCu1(Nut?mLfcY()){sw
z7|&3KdL#-twaImWATUY7<49+WM&HmhvXcxThbTAI1m+;I7q*Jd;(<0Tk6}R$tGpkC
zx^P2318gtZ%;hP;ps^FJx{h|U{T+%~X4~N;qUF>%%4@+%J@rL*b#vjqtj>KR^Zdql
zs+QapSAn)~G|}DA#(BP7ELS3;%XtPbo&s~DL4%vimHg~<Cswge#E3nVgbu7}@x7WL
z!tcbb-Xrf)qa>3~#edKO&~A!Xztt;-Ot8UkWD}aM*WX1nP<<wn;q4l|4G!5>sd5pA
z!PqQd)u)jJa(YSEFL`ad=V$bYc^^eZ9j}ujb6dG((_?Fd2JXOC>08jfR*`}-szWO{
zx$zt$wN=`+P=cDR?iglD_CzY(>^p8tu?jLa*r?rITY9(jbr0(EO`vs251c$Ov5ztl
z7V*bfMCd2E>rkU_upiI*$eLT6of_!ddAuC#|5-(0ZZ!eshcyfubG&Pdi$nJO!?XvZ
zxsX%uT-xxc0_}srJY%a^onR_TCyoin-ySH!t2Gt;hu~=~O!xE6OL`b)&2qou6|AGc
z!9F-|+(;;vO{Mjvp|D&a9cHhYqDWoRw0BKWr0<E_11FT_=c%SSW1)`qolj$xL`JVi
zC_?}N9_s7a+P8IJOAo!o0-=Qe?LTCIw10_xz3Jx+7vmpgup|tQOw-Rc$VRBWkbGdx
z56aSVxZfDuTLliTV~bu4?9Vh9b-w5rmh{sJzGvo9_v8s^<Rll1NI8}9<`*oIEhUxV
z42~V3SG$Gv8O2P?IY5eE#z-Vp7oUMxV-Y?PK7xOQY{aC&;HQ6Hb0JJC_3?x9F+?Es
zP0(d3SQ}FjB_i;<C|dcdcQ+Mx{x$?xYYuPbA*=){^`-AokSODe*I3>}9#Axgoj>d}
z0N&t~+KF<Lp?EPThMJA4E9R;*>iR=gNQO4+x~#(~lR4Jqwugk1?4#*(x~|Tk8(lsS
zDyJh)1hqS5bqDtOp>hTL!cZA@=t>T@NpXa|A;Ln(s;Or;LXKLcX(OV2v{0`oVSKwL
zwY974w;6tqR;8UZQDw-w3w?ovWf+(>r??bkjU*Ss<KT0RJVkT1%bcVl<#?c#F)QMi
z!PT@9S(hDh+@li`plHYx5tAX%h&&Y4l0gxv+O?a;McY~u*`dfV9TF(Tnxmu%kKJbG
zfKUkCOjKt1>l@-<Iep=na`W8rtXO3yS<<gb$|l>hxn}xPM@&uR08~T??)bX#dLX5*
zF5Kl5_L%k1xm7S^Zxx`53fGgN%;{U0*=T{?IKU&B<##+tCBX1M`NtNC0nWPogq!TP
zO&ScFY;$54PA!r&!@~FbH|YR;>{-*=Ou0TlZ8o_Y6uq<mZrhO%aYn8Lf5md~aUzi%
z=l_K6Fti^t;+2M2a_^qE46c)~e}@ZWL|0lTE+bSFT+}J1FF)K=Vp$#Ug$ZVTiw;Fy
zMM_qW_WSWydl3{e6}?;1G=T0$UgOo=Wke>t;zv!3u>(&zHYF;XRGXjJWGk5TnU6Y!
zeWHP`wpz}5xL3qwjy93>RuX7WS#4zmPo_<glO`7={lDHJv;I-{hX(D0r&(Bxf?_`&
zsmv)V=9IYcoz7=|#Aq++wocct*eAR9dNbr0a;yzRYNaYN=TcNZOEU#Jn{v9kp-Z7M
ze_2O*vlKT`nNOtcVcWL!jy04n9jvoo;-kSG)ItLuS2Gc%a-F`=E7&Bb?wIN->u~c*
z>YJ^GLBDdNAto+>@fsFhD7dHQ%{^H-d{yE<><T+Y0rb<8M51DFtNk7$5oJL)43(p0
z%VH&#DpedUi|=}xJ6z6&A0F;ywl`$ki=jrzatvzp!=gnwEwc13pVqI!)?-Mui22gw
z3!OA0zk9P!h)FowtelA#lbjM=@sLY$Z<Ql>OL=(P;7&diyzOR7seyiDvB>9s=X3WK
z^H~Sxyv)%xz2>81k-gpmuq9USbPclEU(<cx+~gyjkHJ_pslkH{O@O2Yl>xX@<=mEp
z+q8_(6DOQ$|0SbloLpGN!z_C%$hjZ<tHC1j;SAhI)mrJO$|n}clO`EXP|qRLvu9MJ
zFqP4dWc=<B1Tqjy458~8zpK<7<thhUylXfXAt6Y^N4Yd!fs6nfO=rffIMJc|TK(uF
z(wblidN^;s$g>EDA0eb5xTUG%drQay3;!(Tyd>hA4VC(gA{+iGw<?UM7KRp6Mcjb6
z(Ox3Ij7bcr$M1CY_nLs3QwJYZG?d5Ggo6(P9nP8`{Oqrb$S~IS1H`3V8Lm{>1=}XH
z;<-U_1wpUQQ-q5hbMzv)aiM6WY)jI`b)`z@L3QdT$+&I`HrT>7?^mc0+=Dev?G}d9
zg?DPW>+j;rlASmlq{Ixl=jxH5e0~aTj3MIz^6m$((eN8?4wo-N9QnL>g9bo|=Pa|S
zZT<sVHsBmTR5?;ClT}BQmpE&<K~aj5ti%Fnzxts04N~!?mQhou$T3of?QfhnuH7{L
z#hY|zl$~2;OsE<d1PYahu?!bU5*Ex}RKJ07Tnd5>;jzh>pQ?*#V0;dI<2pfbozz_?
z=MwAwR1e!pE+4Hgl!4u&PadT`@>@D@iM;iIVFxrk&L@s`7H~@(CPi@LZ|F~S>=XKO
zHUobo1{(a72FZYAEt{4yh8~C@!v!__n_jNL<)4fUCWAd7PRd(0{kkcFKt{R|1dtIj
zc6VUOdAM;YgF#7Uw(<5*499QZ7aJPxuI=I!!T%f^oB4!u2WEkzgERPu;o7{fXav8r
zA`%vL(~5Lp5i@V}$TK`N%fllc<8;w)_{{{mtIxoXX)g>V+PfmJg7*w3)SE#aLU@a+
zW^=etoL1unPAFyTq1kR-XWJb*#~;|ic;LvFA(`R+;XcELhX$KGko0`#J6<vt8+~4f
z)={g@%Ri@_;-=62{Eh=)E;0=UKWa_>B2p$65dU)b1Y!gS`a1bH6i~|th3-iZXAw4l
z)tDq-SdZ+we5q&M?W%HyGp}zGRfTy8=#H;zgCC(7>O|472k*=QU{KJ*YQGA0*F*t^
zE4A8uwXvsMoo^`NzPdGY{averEy;K(uPj(@PT3rv93>joHg_i)$I)}}fMKV6Kun{0
zx##ql{zfN;N{ZSynlov$q>r|1TCKjMOBZAAb1l8njd`nrR<SV{(|B5P-BsUXigUvh
zLKs|q)zx+s2j}ZZyAWJFt5G!%ndlEEvE1BGVJ^hw`+i4bI;Kn77NulgexX)p521t$
zX7=b36Cs<~Q&2En7N)LB22II6_}phn2!?D?{$W)#Vv6?HkMS|;s43Y~<~#7Hc-WL3
zn3u9~Q?{=@U1t?B;}+q`K-8?7qWvn6kp{G23y)6Lk3mT<+Dn`JOS<fYDI-e)>mOcm
ziqO`O_K=Od9E-dVa(^u5QW}#=!UM}fhuiNHHj)fWP0jW{(BGWXHCLP?P;7IlVUQ%{
z8o`Ypii(K-Kq9iUNc1xyCU}UIB4zEt$9^4DW3KvU_Nf@zc4J$r_mXZkztww5S@ZjF
zE(b%JVlYjf?99Oe_iIl9w8diuY{x8L20<+=VmruYCDvLI+YW(7!N|ymwS@0e1&4o7
z3Wim|j41#<^R&BS6X&nXs-9(jglZw?%XQc&_xGoApKA$%SO#Jo{-B<WF7G%VH<0JH
zX!YPVhvFUIceiFJEh+X5q`wh$f?|X@VgV!Is}E^lNLKXXqH|Z3p8ZpA#Mu>dy<IWa
z2iJg%#m;?*@R$ks%@+PWny=N1N?Skj5#5n`O2_#!dP`<6zeEZ~nf+kq0SSJVgz_3_
zm%0gHGte`jE;ZTbGy95lR)7!&X&~5;gcA|Ud5q`PqWdXjqdrBo!wwyTQb;JbdWckM
zSt{y6c68N$H#BfA!yb%+MFL~oV7bMM4zO>m0mIFPTF|XNf|u10aZ|1b@){6DgK6(b
zAjg3lEO#~tl8QZ}!U+tU4H=SyTYgXEz(h1?2@&$Sk+5zcf(DZY!n9O)zQ@wVd0%Mb
zgStzqV!WP*r4);6rQS&|gt3|1zVRL{*EU}8rBbr`3X7(&xRUx-;<$cUxDx#W-e|~>
zJfa$Yw~0X%Y>3vA7FFb(qRO3FO`RLp2^rVDT8Go>JFXGHmuS4MzYFctOW6wDvo5-}
z7)J5|79?ps6MI}+;qBP)P1{x7!N9?^3GVoPhc;yOP$9Y+RY#D<s8jFcfGYO<u~gT4
zK@+cl%M{c5<^gn*Z2OsX(ya7l5a3tb-W$b$OA!X={h-`aKdQz+yhP{DgK{)}vE-y5
zGUQNB!Upfm2eezu3fkwSH7`NaW22R#7}Rvt4L9qKK}_`p;R)3UMeEAA14U)UN2IXU
zV{M<;3%yIfa3Amh$tYwDSQ${Xw^Tl&1ZmA5IJ~vRIQNeT(t%l80PS9IKR>o))vl7O
zuF!n2?MXM+XnfczfX&L-P`D={9=zE_#+06e-6266My|<iPxu(44FT%x1DV!sWKh6L
z7#mj6!*JXY^9Q^1V$YN_{YdYO6S1C=l=eV4dC^*>rB@5m_KykuntjD2Q5pM;*9;t0
z*-6a9(K^XJ#$qOte%QKQ-n+-ixqgqiS=XG26;VB(6jZK(^^f0Iuf2*t4F<)p*n=0{
zkXj{qmAUHU(IGe=A(Z=67JhdzzE54KYkNpnwFo*@rQK@;d9JmtbsakZl!M+qY1WvP
z=>8f;z==GT3~tbiepR5aBf+sHVtT9G*i@VORohZ0R(~j@@#&tcBz6C=Zi+(QF*=TT
zH^OW7h?4bo)o4;b8q(p&-(A)is7BHdp7#kw4LyWGs78@2s~SJArSM4_0pC#kMcr}2
z<;RHNaFwJn{7ZNYm?rHTW#ZUDeCWv;M3qE2eAgG`ZJhHFs^)d$!{X#*tw;2g-&KSg
zZ!qw?<FN36$hW)@3D=1uz}|pXdBSxy1aOyMv#U;CKXq#aM`%(g@d+wFf-dE(_5#BB
zx@`^I^NL)+$H@NTk9<f>aTL<;cMzG5m_lNG^u9k<IMSVdUdqfGp_1*l58a^wFhnRY
z^ZE-&+yw35Pjq{T7>f^zVjp+r8*~(6FQDz^GXnd<?{Fky-K;tet4ue_tc51y_hczq
zi!5K}AKId|Fx`KmMr1JLWgXr{$t!6tXxasZLFRNtJ94<u`2m<i^Z?8s>d$uQq0enF
ztd2};OE~!BXKS)P@dscuokN`oE*4e2z<2CY{W^vOBmea0m~z8cmhnIY09UDXPs1>=
z$>hb3I=ro*>>Xf%m`BmvK(eV|uwVbA>d<0{y(&Mn^VCmiR1AaU3wR_Zn4zB%)2qIu
z>1kOem83bRBRTfuk-sY5UFiELPQdiQ6+s}p1HwJa(XNx4{TVe3Ht{a$wjHcOZA;%+
zjinDkyM5!Zu51^CuWOoltZLGnvKV%kiZGm~|1?Ti_bcY65Z4Sv5w}%DfHH$eVmR%{
z+_t1AOLO&=3I0zBXz<6&rZ&HQ$;6)cv>IL%rBJ61rCo%vz0z1&YL7_CYTGNiS10sl
zbjENX8T^f)V_hBrZWm}#vT#_-6q$qb(xJRU()y#%iw?=wllIk%+|sV4^UHXe{lNF?
zdqvW?xN;J!K~V-DyERfvw5nyOMdX(ATCCtP;iC+}nl4~8A&kH~f%{0Vp%Bl$B6Pb=
z6N}_h`z)}mLQo^7wU*mfQ9RDtL>Kf}01BUp3cvX@m^Q;p<>3nA(6D56NtAU4=SEW4
zBZXG#OuN#hBXf*O`$o~WR@jdCPi<<y<4y|BvcVg>bnpSxdKw`YtgRsrj=b{Egf5p^
z5$jom4RlMy=nB^a6X7gD&?6W)CREBd^5;kFD_d~_;mIHd=Qq*<qg>_DQV=dnnegx@
zZV$iq&tr7>Za{nKAG#=82S1EtmTIj~3@_x8vB}PccLw;}+T2n%XAAcIP*98Py?1_A
z(M2T@jFZk7a*O}aWi{Q>n=%2OO`ogI78j5pG-zpSv#LY+EX1v_!I>WFOZ!IoX6MHj
zH5!+*^pQ2q6K?!-!dqb}+mie(b@J;3KV7l_+DUF3kj6>-g?Cwj?1vm<3zH1n9(_&y
zQXDV$GiKOo*0O_;TT>cV=9vtdsk_<ia%lK>nqP|aH?9-XuM-`$PDrl}>C0$s^z(}D
zmi1yfzDuh+hcfJ!5m$~=t{p$i)^JTzRN<xK8+K_Dv_(7bE-e%beZedKA}SgYfWvli
zkT0}-`LJG2AfeN2eSBFrWH}<>k)9|KS%Qh}tcaYEOl$?chH*oKLFa{3lm~+aPn6%L
z8%jXg_C&A3CZIfI=R7|T+YDv6H~uyqXF!~#NV7=ori9-AmumP4SUa8Zji&^>-E$+p
z`xNP#X^ktY@6f&3O<jnsfH;eUG+v0W`$8(>PG_9)B?<Ahmg02I7wwu6hhOiI?kxdv
zK%AwFACX}<rTB6>;!bCjZzD-k7M*;1LrI9!TJhAsN|kQ{p;#a<)L*IFN)i^QJ4g$X
zDjRx+H@~4<!j#F+=paF3Lhc=CiY|l<G?=abey<)D7K$EoEPl^@rgUnq(TV?pr+!h!
zFC|s@COC8{IHA8~^rzkYZVk+?Z_0;be0XDnF!62$#Yknvf~VKkbzsz={<Z1|iapZx
z^><MTz$j?+X9S-cox=8wa-?h5XcKI-+J=eyi?n`oXhiD~4qPgX){1p~=~K2X2#zjJ
z+VVA~e2#+8G0?T9q&mw5EvA5CsL6+Ql`W|v_!%Wvn-Y496$K_RGDEFAfD#i5%Awd*
zDr%KlhJcD4!VAoXXzH1rcJl6o6j=b_1r|Oc1aep3{3TZmP(T_|i@~G9ZLB^(q}@br
zAJy>*9kPs*pa5d%nAE5hIrUyq<%5?IWTq>X0`g=~tR><?Em=AH^$|LYZ`t&ITU?|w
z8&&!NQ>w_|pnhGwQfqYXk&Q~=gephAd|D4S;?Ltb)y%0EbuB@tl?PDOSo6OX?QZ67
z@Qz7+j3T&TQ0=8tW31o38Y06Vz{~r!`vx&JgtVzMssRmVy*(xywwTXNurW~Y(Dj|5
zz=!LVa_9ZHIaGs0&XO6XPC?hL2**wQU=rxaEhZGj2B)w+ixWJt+%gBmU6VCuJYy;m
z7{VfDvz*z@&LJE~N{JH(nbg0a8XeW1G9<86FoRPATS*vLb7*i$k0g+hL@{b!QM!pD
zg<xA8%c?`^BY)GJ#xBeWtmqu#0y#0UFzQyg)vJiw;Qi5y{#G@}@4e~5g^N<i^F%Vt
zv}`)R=DmNX!RvXX`c&j;*>rJ@oLFZN<Aq5$K_Ri57L78C62L`QhIDgSY6uq!?S}zd
z*YDn5C!Hh8{!oQfp;2MDHiDoiMI(rixNvmDZHGY*_k>744jRQl1;gspd&sOYR48qY
z+%LU~f8B&pMn@$m3r*FWv(dCHjT#6!qcG_Q*$)B@@jBhfI$4%X#J=9Pc(fwqiOP?l
zC0un50M&HTz9~F&LQ~0ls^Ho)^UY3EnQtbFA-E~bInDpJb})|Pos$;UAj0zb^2_IO
z7p$Q6a>!k01Dct1;qP5vR-$;F^xk<0apPv{LUbH`od`1@ZRPH;&S>6D9Oy&3ohb3y
z&lo&KJ3`r|2)<j-mn?lw-1HjwDmbV*4(05y)&}eX1&Ohak>AonfBR|L{V5tzI*B58
zf4M$itzx|>7OWco)2}pFF-?IzlwH$$(n$(NECou#<p0mAC^^s_&f;S12naIfeY;R3
zDq0SbPD|2n6w7^T=_}S0dcmX3(Tjj#Iz<<T3>pAhP5_(;s*<os3(}EezdNxX;i{DJ
zJ$&Em1=%nJo`Vh-@ULQRH}>l=_&;w(1sRJ)dW35};m+D)-dL4%{zvrPHT7_G=`lrU
zn4aPO9n6EhcWG{reJY7XACWh@?G*@~=X_&i7hRjcMCTCOaKmco0`T{`{|ynv6^80U
zyb>u=Hq;*cdxecELPJ#A{>!>FDu&^Pq&s*R!&oV$(!NpDirvGs=*hdPpE1@Z_n?@M
zXbvHwZCPl)YRk=q^I%liLPLeP?fM6qMCwcUC}q{^P(-^yS(_T~Abz!eG)Z9ew)eqO
zV`hvsXz+2<f0)*BNaz=i-#5C2S(>C-;`ODc7z^T{?HjNDs+J!U-SpEM(N!7I^h_!|
zxH@h}M`SC81bEXVUWF*o+NqI?%}3;>+odPfGrlH#4R`H;z#BrIYSbVOis(h>hEqY>
z^b|E)6Jz-mgO8V-h3YmJvj0k=0z27-4tM-xb2@~8KndpaDx?V2k%m2q;noE?K5WqP
zB1fclbAtSjCUHzGWNfT$2mYx!K|(-&q7kYh?RwI~tqXd5(qQF9k4Ww2^k~y<#^{0g
zED?{L|J<A!4u~HuoC?yWCnao6(BZQNA1^wD>NclBR<{_V0<H%awj<}3kmA6_=A?+i
zp&RTGbxl`uK%3x#3~Q6tByAFHOgi<XRiruycJ;pq)?NgQH_)7F&(_2UZY+{Qg{`kF
z!-?a2%7x+rmg*;91Vr{%(&kI`P$)1Y+-rC@6IgFxpmrmA@#rKwR|Rm~cZ=SOh%ZET
z-n@GW!D9~-oZc7#mp!@1Vy29)EY2~TAPo+Iz>yPwW2UwK!M`f*K{%UM55$h+9bA+4
z%@%LQ5@k&jqBL*)KW~l<Te@=+w^Fu*he8Bv-q!dnl&qEJg9*wws&akGAT#7rZ8N)a
zdN#ZL7yeBVKqsanlP3F(f0r^$ZxnQx0?G8+h0-pQyFyASdBmV8MX-LYu>()n;tfZ5
za!r6{y#fC`N=8hHN)L;oQB#CGI+I6C<-<}g$zQQLcly%h;Mdh?ROVdD9_&HPztUuJ
zGw6C&?Ycrah%Hk>Ifza1<Ih2S8T1LIBlf7*`yYxKE?sqYV2|48;o(e6QhZ6bo`K-c
z;|+FtMS16cYGD>BMd`V<LM2zA{PB=c*o?z2^2Yt^9@e^-{6fHjvu&&S^cKyKoWi)7
zc9PLYH_l_n%Z>bka$|f#Qz*K-bz!hipR4mjin8CaUV3wlC~CR84M-<ZM0T>1yB6%d
zB!UqhhJ0Uc!O<yHL|`(ys57ND<LRczppK`B2b-LqluzW$T3Jc(k}6!^c+`5WI7Hb?
z+_LFpi*XZk>KEk!Mrx84Q&q}w`v@sYTExv99k3uPgNY7ym);v~{jcVOmG7fCMx?Qt
zln}+RyC{Q~o%7Y=$f13E0hX1e6=$TBY<7prAMs+zC!tDl_&8OfP&a$6SAAf=7s{Qh
zy<rvzR)TfJ?TZxC2aw#Rf-AHhuHPt0wA1)MwI3Ykh~dt~HaR0^mSd=mDgPAgE|^C#
zFSZ<6pvkCPbwpg9PGjM2S%GB9k9K#yQJE`Eb~2fwuC%#%hEeIPU}}6y{Jqyr!^1E?
z(TP~Hy9>BTU##iBo;Qg@1~93VpMBm;akh$tt#{j^dgln2xi0J{*wPK(RI+yS<824B
zH*9dO?<>{m{cogTsB!ozdF#J3Ex+eGg7_F72P@X@Ke(6P$a!)xw@tt7zZK1|zw7am
z#-VsH{VmZJPeyAnPb{L)F-D&omcm9fg-E`j-uli;(c>ptvoSq>3N;l=JF>Hy1(^Mh
zmugLWFjV@s7S9bgS8=iYZn_9d|LB~}KXROwrV-qm!EaLILOLA=VV5jY@*QT8Ia-<B
zUM}dHHdafcSlu-;=aj*Q=3Rd4+j^=u+liJccb5<VUYhNkMdCWR|MX>I$_D_=6?gR!
z81QTT`QKBm22Xk6^N`QFOy`7rEbyve{P}A8a)Z1~MYn(NE-n-&De(_-Fgz<z0CZp5
zEk|$r5gZ>P4r<`Hb0iY3B2C#YhUW^w563#7(sQsAH61PS5hg;rn>M*@m)TV&XJ&`_
zt**ll8E%a=u<ZuKs4+QEqH-^do0S<wkP|>vP0_9eJVQiRpveGTT;pDzH+SXn7S)=M
z>Kq~&xxNpRW6gE?vc43GF>-p%gCA9VpywOOuvv3xts-t_wo*Al!zBu~Y+AO5@>8X9
z3Ax!RX6C#JcR^C}(riKSyI}E~oUPQ0+o!PIM5oAaN9X$|q!0U%GU?#kiM8h2bfrd;
zh3xeh!P;*~70_jJ21RGr9&OQ>9z)%o$hd*h<+VShOX(uH5)PN6*TGXluh4W3>xXWf
zQ{Ct%p#(hZNDeqm<EX(y@@Ikxd+WfX;3uyZl0|OsMc<pDM1{H?r(atrO`}H&ti-(r
zj1~fq#2PYI)9HJCJ5_N5($tMks=iPk(!*1DHmZJ)zEBP91~FyT$JD8cTQ2yH#XR^U
zjWatrbeT+p&;d1hNkX^?v!Q0CFZU*lFt&OuE6EgIkd;DYMVEhq@z6n|SE)fbfeOws
zr@;EP6+c+4lD2J?R1O)=z&5MZ2fKePcSW*S8P%~Ys;JDBc2w1x87hXfN%KB^NFEKv
z^)nC0D4i<lpmrG@#$!kGsGbHGO^A2n!gb=RuqP081!$r8?vH-3JNQQ#$x}ncH?9*J
zu9LhTj@*Vor3HiuWARZlo||sZD84(dPPbqL0<&wOq?6RWTmw4GiTMTs(HKJMLNMcv
z)-;ORdEzs<2irR<K2D4K&#~U^w;|O#X;soQ!iUT;PIgM`POD^W$yCZ5yqT3WyE<4Y
zl>I|d$F?thH=kxWC6%F=DiFS<b!qb{p%T2MO%7E5OpiS<8C-{zmJMr1o(%fSS9R}3
zUKllwGC<%{{cdel80GJLenzW8oI0blvQ7JPJ{;EY+G}bwkr0KS?dHI%?g2Yf`RVRh
zsd>Izy`X^1?a~S*L{slSt2~AF3wGo6VwQ4^NyLQIq4UjHL#(%>ZMaY0No@qM7Gen2
zE3qQ;1b3_}=NWFUMOij1-eyEts|bAxO>-$^Xc77j$)fzam;DyHaXg!DF)ge+nu$nC
z>>Jl8?!&Ip1V{Jyu<+1z`h$xXKD<&sh&M0BhW}pxa6kLW6o3<Y#);SRyF~PZV^2{c
zG;U98){4}8x6I!_CP<RH`+rgCP|7pH3)9u)si5bPXoF>+Dy_0rCZ|0a(tr5gE|--v
zbqeBrn)zw;9!j%Dy*N4#<tFW=usNn2{+}e52r7kyDzzNQu$>D@l$%r*3upa&p`M+}
zH(^{7U;$Yoc1s*}p@;kt%FAFXzg;We%km>u^L0wRhr0`x>us|&zot8O!(PEd+P6G<
zqngb(%VtIXzC5Ro?d#cXszKa7(~r2Qp2m1x-}&J7gS(x_$c@BBE)L<=R$}cx(>=fz
z$Ma(J$Yo)#wuE#M?xnTpXQja1`ErSZ6g#Kz(&%U&*-QST-+;@vVOSpr^JQcxzCQku
zKcJg@U#uQ~!o|Z6^qNmNSba#4Z{RQ=S21w6OpivrTlc7>T*M_l{h^BI(01|b!TJBv
z&o|hQw24Q`)<$r{rPw#xkI++U&%tZf{O8(-UWP;L7b>c6Gm^TvCRi_8p%r1$FN1%6
z6(GC_Ku6CSYO}O>a&16Ii2A+A_&cZf-k@y^J^@fih!rVwju20*{kARzlbUz+76G`K
zdW#~`6<nF8Y6Z>6Q?;ge^<&~!=8bqX8^|;DBqX*F@7&YPZ9$7p(9@KIO;0+vnV5^^
z5Z8sFZu^@PS~$N7moqoTx!f&f4wuiZ{jx5#T=wa|D76&peX3k3d5{4`<iQkQzC8Gh
z?rA#EMdmIx8rw|n_#t<4H)S(}pI?(cb(=Buxf?X2U8b)2ZC#qcRPJrBz%*eY16(PF
z39=D}nc^qNFdoZa%V4!?r5rrl0y$T1U6nry{?y}O&>!o-uZ+W>lWShmuGp5qAl2R1
zbk(2<hZMw>Vv(R5VUa0*f-F*l`5~c+<`EcYuKsKbYJaU((6FAB$)r}l&EYDKXDKY}
zus)YvC)Tdl7mqBvns)ehU0E}%Da@5(nV=kDnJK<}mNg%aP)09~=AJ&Fafn9olG{uI
zt)_agNe$xTw&3I{vu)GU!)qKO?wV=C6Kg)90WJ3u`#dC|YRV<TT`4XK>JcuQ;>+h^
z;*kE;3|(7$%^=lGJ)FKyHDOF#3*y)@_l&3#Oz!d@b>=fYwUPm^6lVna2xm<3lfxNB
z?>7jc^dzJGa&ONz^CDZ;UB9&U#EFOOUU*xxEx7TW%FJzUb*eTu$E#gjWg4E)nd~Gc
z5gv*6Ns+VWJ+@~5Go$QI?DMa51De~3a94`if_jA6rug!ioj9c9LM6>duzH|xTOf%7
znyOH%nF(|?GqTwZu#wfe)Zy5<HNkCBj)i-Ao30gG?+A@6#T!8~!W&b3`Me1aGAl&T
zlTV#%Y%@;25J$}9BmNF<GieH%&pFi;=A4FJ&0x9uS(;0F?~WDkPAPI2cVg{t>r!XM
z<1TDh2LwVdbdk?jig|))gn6d;@|hQ<>0g<FhMgE}VmzLy(#*y<x8}LGCr_1a!N)e~
zuZr4Mz^>dh5d<TYHpQ1uX?GNRWcYfL$d-AQpX#}<cpT>39<}_04R}3a!tly!T+tPl
z*SgD_Sp4A{=wWlXL|dLM>88qEcZ6pY1=PPp%A6^6uI1WiM;RRMFA0M;=+?B3^s98G
zrk@NdA{3_h@`b{0d^?4hn*C&T==@xq-)md&`VmiKC0y-s7%SiZ94!J4yB}NgO<ig=
zC~3&v9%#@gswV_gP3}avE5%enJ;GE|eECdG9MZEp^rX<!K1v$N&)IB^G_bgXr6z0R
z9>wzzw9Iz{&H}R8{4}*su41R&c4v61WAWT4MGosvtoaXJYFTeOOX~X-QYEr&OoG2s
zq98+wh=M7;d{J1H6nEZbMS>17YzB3ee|=l<+MQ`rJJLbC`f5f}6F&DnH$KHrto@QM
zP2_XD?@6iBl+SVaE5&CSN`%j*_zCklKD6sMhxu#{^7zmV&&kii@$-eAlo_q<ho%)D
zk70J}^Wt1Sx8`HI)N(nk-+cldGSr%)c%^tN1Bmd}6kk4X(+KddLIAxohi?t>FO^GW
zTX2)kN7GbY%W_VdeRE19t1-ISna9^Vn=$%V?$!cnjw^j}xJzm(ru$aAQUV|YiwJ-z
zzI*}j9pR%w7`?pDm+SedV&`ZDrcklA&7>F)Nq`m{wwAU9l8Q0g%!UuQM_ym@YE{!s
z_MlsH-)@38OOaW}*KV5mh%U4fzj=2D1Ws|kInb5jwIChgwJE-QUN;}lS7gwdvuWJY
z3=KDwz<jaRxV_EMDywkz3q4WJc6>{UT+Y6&H#*ascXy}2Db6+rx>B4Kq$8X)#h1_7
z=HvN28MLqsVC0Uw;dj;fS!k{byYz}ccK+k_ApS<5W}e{`uA#5l(H~`1q^k?MTG)js
zh+HY=2$~V*nBvQ4PGp#qLI*wH#5LbgAxPVTH~)@ePe@N{7DgTUr#_s*%1F!DD7nE+
zt7_MK2V!&Zm=qb#Lc2bFOO&zFj~-I2<9F+3#1W#=N&>%9te1gASZ|6ipY^K|VxN%i
z=K6f0GEH$)>bfBU5`qlpAb7(C#o<gHv73{)lvk!(7p;$cRTq~La)yGoNB%(<Ap17m
z^=mf;Iutc47Z)@6$(PTUaMcxY(g5s`^8}=8pDiN1PM6y!(;Fq7*ksVWy-t_g=*1V*
zA2J<LK<mgGHDbZd1oLutNNoW!1lIVbWsu*hg=;piu3kz3*60{59vIXTcJmB{(YkGp
z2bq^o>eqjQcYaONfKmg$9M9zep;l9<BS1~k7NU!OQqM-+a%3q5;@WrT364Y)g;|+z
z;6}MX83sB`^9ayA$~gx@B`*ie;GHs9szoIuri9}DQE>QwKBiE|@MB|qm9CB#m{>~q
z8r-%3N3Tz^g#5`(YL9khB}5O$m5v{JK}0&Fz(|L#^h$jz7n+16Ll=KnNX30JNFx=d
zBvC5#_}-?gibP<s{!VBNb6xw2Y78EXD-CaYQA8S~z(@mEd9%J3Dzd<Z-xZSZkPOgB
zf+<Oq1RmYHbw!Z_6(jKEFC7vccV!iW8jULnZ~MN8BuIgg1Xbs)+rkTmD*djIg@O#x
z$bu<Jlm#`sU)42(mgx#IhUF(ZFDDy>xfrnda%v%ChR*O}(z&c}S?)f}0q&<hsMfSK
zEpz!&xf2)k*?jrv2ZQx3zkKaO3?sSV*R+VOl%Jhe*U8tnEbjV#2KqN`<yxT0>U^n?
zD^4z;sSCO(F-|NL67_E{;sJ;H48T67!9<oV7++l7flf=fO25A4;!_oB&-{p>Z%`}N
z5%pb1!nOk7hT0U|GxT=KHb^}JkYKJ;Fhd3=H#uF&&Ef6=zP634@rg;YriH)OOVjyD
z$}$9yYz#z@Db>*uAU>QpuBjUGPE?hLCRZ$zAC~Zb?;BstRE-mY*pwqS<=D(z-_n{_
z2<8p?(mSlqT7DnpM?h8|H2UR4CKQSj^V5J>(WH1)tgX43V!oOK$k01fcmMSJQOZw{
z>{n|QN<C7`H;MoreTpKj>}J=r+&(qX*STe?IOYBU<lvjsfUP_-Bwo&O0jB_YxH;q?
zKS*f*N2taig)&pcd}F>=RPW5JZ+R?{Fc{7xo;s=29smi!ZOTr9mfQ8X;^K@fgD}PM
z$aAi*dkY}jPO5SBekw|?qp&k8NNqtkhjtuqAUntUma|%{<ItEU2aDBxm7@f<rcF)W
zX40{+r(B(HJirgwtZ%t05mC%e;uTt3(c(K6LvaqqH^xI<W^YxT{N?k}amZ9#E-At2
z{ah4cx-yqvAWBk0fyPKYjdn(si^l}0Eg1-Sqm|Y~fc)(2901PfL4E5>QEZB3reU_I
z(3Ny677sPQiwyvxp;L*Io8jOy6Ue1RNGlZmeOrkJZ&N~X$Je9CIgtH5fE@RM9H2Ir
z-l^K$6>D<}ySLfObPpf$5aa_&dZr8{Pqp6Sgq=P37a-4RE#ywh-k#3Bt^z{>;!F%e
zrWm~d1t|nfwq1$NkDC4j27e<Z%*#iI0oA2NU#?YIegI_p;C#7EH|*B8{8pkWotUm4
zD;BHV+K9-#S>B}2sY-3KIF03ja-A{k=|ouCW!Fe18E!EV!|BN#(|97`$b*#{GOIE0
znZ!mRpwo0g4>~Uuh9=8OK?&)v#7M`R^tno59_s}?1rN5?6<aUGVD;j<^a|D3j&DY#
zt~7=ByY|v97d+QU$!6E`VG?eDdahB)@rE3-xm|Twj<r{vIbI*lPZ!5ZkI*X6nn*Y+
z?%n-cN#d4%N=dO@i-m8~lXOXrn)~lWZ4Exm=HUk^?=lPNza;|iE6$Co#p<A1tj=q#
zDmyAWa{GGM`j(r7X=kHU1cpV(7P1GgZ@Hwqjcd6=5s$$gB3A|09j!6MV_|zF5)-MJ
z=7Rvu4k==vj1fBoO0W9CCL2}2ABX|dtej9}JekN9XzN|%cR@?b52}_vZ(3qq(bv_R
zca;SoTVsnYLrzQ;2YQNqJy^%{y<3a4-i*W`4UcDm-0b#Q7!rUR*Bbi2Oy2?r|Jsg{
zemfeYeX+uE?!TiPDb7_J$LH!`ADYYR_37K6h=Lix#?-7#maC9lUh;Z1$z$!ptU}5Z
zQ0JPLu$6Wu1~ENJX`*VCS(riqT->jkdRB{a-dINGk#HOcP8M@V@xb8vmJevbS$lO9
z5^9hPEWj)!PEpdP00^{6cw4hZsF#ac@Zta<0U80w=|m8GM-<OozD~G|Yl~4HHnAfE
z7~U|0z;y%cCOx+<WSR_X`dI!5k@Kt`d)%x+TL40yuk|e-Oa%hKC5^Z^WkVQEBk7--
z?O)UF#7#J|bny&gX%3J0p*f9t#DwjgnsO%q>8^{hwNTF$s5a*hAlqUyKtc8v9XMWr
zvoT1S1IMt|psAIIl~VstLs)LAcS<eM(jFi$#L$zbz;oK^EY?+1uWl0_>84^>t;CuV
z$l`$W2W>tUgOpBrt)>A?sa}7{^ePY-As(+O&e7u5rnwO3meKi8=9uoYw4?j&L>a+Q
zr}ZovN}NR+fj!t{9U}ibR%)#)#SL#|s*0P5lW@tG=ZS<_J@M}PN>s<dejlbB;&U()
z0Qm7l458cX><aX-n`r|$>Bkya?ewNtKT-&i>pJmeY;Fvi5Oo?wN_I#pZfKn%e%uH)
zI<ZhXI+vd=k=7V0DJ?dAy$Fb~3QQ<9>f3ABz*4ipv}*R+8=`<Js2lqVKpmEqG-jg_
zlr~z<>Dm1L8>3ClskW%UHcj?*+Ba_5vtWTb5`iWx(6a6>-V)3}WJqBBo7K_~H<9M%
zkzIfw?H2fw9;MYELNs1Qbdx6%o22EvGL;+7?IX_7Xxpz>Y=~RRa5hXr!Y3dVx#<ce
zGhkbEJdx0_zl;De=t!bbP%bto%@Ius_E20ajmGStVs(mK7_C|k<0cS%C)hOQfGP1#
zkLJ-YN2d(vIJtd(fi_{|T23Xowq-CzP;1Or5ye)h%<(htSRb|F5Qm<xF<h>I<2S%1
zwn~|(bvAPBajsU<EGI8c=d-0r{pctZnFf=LhZYP|s8ld;Cllf1z;+j>Zd~7TJ`s|0
zbqLr}A{gdbrFLB4mJ{LFzMUn#6eP-Fp;V|eW|Sl8Hxsp20ol>CNH1ssiO&-7AD+)y
zQml(FR<!NEIXb<o@QXBdKs>Q^-NR3eKvpz%an<HRquJ%_)t2*2tXcMSX$%)*7^-Es
ztEW%aP5PV25?h8fWOo$uQsROKtD2`9O=vXPnmCK+sK@1sBFs1bPNoIB8yYjPUkW*v
zdO&q(bro?=mMe|Y)bX5FG$C(cd#r}2qf$MO{HUd)gxrS`8C=54OB1zxjh5MuBtq#;
zHeiN|Y8-za<HSV10O>3;O{Tl{A)7zuxfW5$n`7rt2pR$e+fr4jCRQOQ=~!u68>;6u
zv*UVZVjlTtwSNydEG9NMRVx-BQC^6PdgyU`1Uh&mU*E;9SG4vUi8LzaYqQ54jSb)+
zQ6aG_mln;FqIP48CSIq_&mO4J1A-7AZB;#gLwsJb)304mrMJcaKwMhEhM}I-Y+u$s
z^xujZHDOSsqDIfR3WBk9VY)J1;YDUyK;mOKj!}@$aq@^-xe}M7Ia=r#W+kyTBVG*m
zSR$O3R_xwO6<WD2>XoaBwO7DP2Y^`YRr=+taq7`}#L*cra5VPucJSUfzhH)@0zE<E
zCK%fXyp~Vq;jaShwHmRw)S*Gb>%5k>_?im<TJp~7=|9>Yl?yna8@Wf2>}h?=g2uav
z$wEL23{*`9qTMm$tvsk%A$&|C3KP>u@q{V5T*)XkF%iQ{2fvbe3%DgM*KM~%@yA9%
z7M0*rs<EM`#ehnrWtQ}w^{r2jexI!2R7lP6l|)ib9V<Yspq=F#l@xsK)@VDJ7*J64
z1NQ;y_YyS#%Q<Zz0JW%1=IfpjYl~*XUht13ASkP$J-;~^H8w~7@lnm4CX26~V!8UU
zQe$$4XUB}L5H~7mlIM~2i@}Bx!Jx^;j?Yb0c*_qA&L=K3%4=C4BjX8x?b<H4YnZG^
z?0zM#4{73Dh>dy*o&!DGPH8c-vrUdzr9BSJPzNrX`QK<dc#blrt&3Zr!5w{)Gtk@9
z3(!Sv1k7ZkESjzqk@uGgbXJ5trrRE#tFrHp!7e0%k@l;pwk{?D)f!ze@VTXqM2=w1
zphq!gmCb;dtO67|?NU!9wmUtBLC@C}jfnE&JCwY|PZhxLLo(3;cp;J94jucq(wW8y
zO~>93iD@Gwua@xCIzIu8vsdbVQ7gw2F_PDh&*kWxmw@!D`PCQ@qTl8hdIkWK)iCe9
zEy_Ex66hqAPrQFe&(-*eH$^VdX@8Z}Y&DU91V%w-3^tPp2E&~8w>fA(90hdJazHj6
zxd(_r=YL#z!Q(=y&eUfs$6|Gs6YDHY7aJ2tbImHPBv#UDmsZ(WS3`-l9CJo*Kx37=
z5-V5dC!i8A=_+OI(}-1Gh}q#HI{EsX?mSj$DX~Wy9nQ0&<R5=?BKc7P=hx8+E2$OW
zlaJL{P8<l~)YCr@tI?I(M}K#G7-v#zbYqtj>*QoQT3vndk+h}u($}>$K9rNGRR+7a
z#>di@%ERt~-of}_E~XBqw`a>hd^FWm)CT(dd*j2om|Ca1x4Uagd_d<@k?R@g>F$e<
zXehO({+_;`!T6AtQ!90Yr~O;vgIY?*uWRd;?*90wvZ;Obb#LwK?TQa;DYe#M@8IA-
zSA1OARYYRTmMuNq@qq=Yo%Qzi_xJTR(Fu#G)dse7cLB@z(1LU%d;5C2fo6PgE9vAP
z80_oq?`xtZMpMy*^bT(6+S)`{oKLL>3GUs}*FD%oW1LAwl-%9h$M(gP%$Y=*bWT?$
zC=#ZVb|FhQC0S+$tRG+}RtF;kU@>Oru|I`Ye|&9?SugyRbg|k42QdIyc&vG|rK_Jj
zH%s5AOs1=!6*V<NpoCPH-u2v(4oY!ELw=xSUj=@kWYV_zff75iexP*NcTsy#;=`II
z0*%iq0v-Ee)cy+*hz_#HcPr4B#R#N>3lZPHzU7PBYKw1+HPplck?^yLV6#)W@><+c
zgd?DMu+ZQw{_iGl+vcm)N)7&NTqVFJ&<Bp#^82d-PRx~vd>{1zq!#}m5s)ry*x(Q{
zDFf|pyghc99wItL5-koXqQ5>y^jz*}p<c<+hARgH9Iz|mk%(<~G%RdS0<TOJ^2c?Z
z3#-+^{SG?7P&IX>u0&h9T*>M9$&d|QO;k)2LCIUEnHUK93TaC*^scZ47_`7GFvX`Y
zLq8M!B-_l#8<UHzsPhzE<UvETQC)m?R2_at`ZX`snU05I9phP>?eusVbe)b*vd$}f
z)31_2khId2*JswW2+H&_4!upY**sW8M87>cLe&_DBP@8eMQ^aM|1*fSg`RdD*o|(^
zOepcT=QIW@wfNw@QiSLbYNolN+oGr?)=}>-p`XQgoyYkGXK0K1i+a-AE$ZdS9Y>Jc
z8BdCRNQYc~Vw0>_PoP0k+ROh-%@Df)K7j_iNh1bN9K}(@uI<5Mk9SUS{=y;FG41(8
z&?HJOzeNrFQA<f3<bM~to9dm-JWz|9qOxW3FHocwj7q!?x{F@wRgTHSdM2#9{Yl_g
zA2BS@40G_l3`vcM6o;)YKA9pgK&I086Bhw1_FKpd8G15DJxB(|;**JEcMqF=aglob
ztm*D$ET7aS`)Gb<pZLH-I_`8#$C37~)%I6LYn5r78PeKwKBmWUc@%J%WBZHKa3dW>
z#C)F5bF_!qYJ3HW7L~5wJ<p*Ci^*`(;xJ!hMd!(&d&<akQ7YUIKVZH<f&IXB$rJqG
zJZ=tSiAn%>hQ`YbK!X?+6sg8$V4@1p#TbwwfDCMV;b@-TfrA!H=p5A2K!+-o-T4|o
ztI43dDf;hF1+ln*JDCiJw)R#yuzMu|C?pw6G09MCcAbW++}3-!%MNWX+E4)nh*40N
z@Zix{+v0@b{b#7ppNsWr6!gROO1abOm2TQoW#6Gzfsa`IEUSPda#4B4<d+Tx9(rkX
z9WXXVxIZIch$X|tsaXuEQZwe-a@_2Y?!(R8U)J@h|8N_N&x)cFu3D_sMs+ZDSB!#T
zP)i(Ex)=3zm@gUPB!ZJ-Y5NI9%RBFowJr%9ek{PB(arn76R%GC!}rmS>-;M4^tOzl
zs|oY2Y8uJgBWqg1qbNiD?4?Uud|hHuZ?tXnQWSb_!Zbaqn|``}*2HOA8xOF?cUj|M
zG-f=68@KH0?<EGD*5NGO@%CBvXNt539*Tubgj?lb#W9LJ9974i<9g%pmV|ayjoPq2
z_ztF&&HhM7b2-qGY{)W{Ocq9)__R;W9#dz0l{y@AHPE+<h{=158BNRAJ-0bh`avaI
zVO&@Es;Q7L!wqWTX&J<(WkUV?%XQ_WC>Ho4SfrVl!KtEmasOv>U}{UgYofnc7^H>s
zd@Ptrg+2B4O?2mreT9KyPjQN!ULCQm^zBpdqW1O=4)kuBptj!Eq%A-U^z;uFwy>>p
zHU_c!@Z!2_*_TL;P=>dmG4jOG&~r;msj05t1;wg-SGoeV(`?IDvcS7m(Q`A6x!Ez~
z@)|2P0G<6l)%puIHy1q0`lTS3R)aKW+*^6NXHO}8`!dtAjGc#y4anU*e<qG|NZw{#
zjBIr7k%vEk+G3~gz_<33_cr@>)!|c~moOBIU_UANC5>Pb{8XtpTM(_WsFlp8Oye?|
zyTZd6J6>+!&P!+=9g4}3GOX@LGM6fnyc7${oe)e$-3j5gL#D)gRxu@vXPb2IRoYKx
zPl2cA8lBbZZiJx`DfBw=k4A;kXDeCVJTXUOl4WS1TH8#2v1&$}i``N7h1=}q9Yi(O
zCPC2!cP1gVqjjmZxCvqs0s6Bxu6C&@P>5c?5Th6O1RG5oO($bY+cAHYaSwD>Vm+yS
zf{B@Li!o6FJU9bp60x(*05Dpf@rBV6U*}qG)=g+UzZ4q}TwG{In{?=CG}aLyW{Io#
zIR0(Lo{x9RY%$CvR~c@-<G>;;#>+8BnCcOaSR<zomhNW#p^5#KhJcJGfQ%MvbEP`n
zibgxt7?6wFXudHM#%r+|UiX!FA2zDZiP!2knXTWju7*e?D_4xkI}|(H!5E9R8ulQi
zy2=Bv7(<Uh7K)Se95hDwVGt)Zlnp<PL7`^=E;Vb;PQ9LPQtH{CR=VwdW*Ca}N@f7i
z6>CMtw;Pvx_NvPUfeu!a=epOlkUzZ>U)frm(IW9l(}_!Wx`#k>doy|_f2+Q}o*jrz
zb9@g8>aWHGRZxRHsqTmAxFfs4av&=6BwHQ&%%Ld=_(L>`fdCWzG&+Pz8%%KrvgwNh
z?Pz!i$-|BlO)kgQUVOE@8R#M>$T_WBFLldIs`EvBKt^|xr{V+EpdpH#i&0D%Vb%j}
zH4Im3wfSm;@99IFoV{BRbG1k7hPr%rtjj3)!ThnX{Xdj!|7+|}CG2k;iB&08?k<7D
zrP;8|{C_cYgaWR+-`GgY$##}JAqx%E2vcb2j;Q2HA5v$M-+|wayDwyx+1_HLm5Sj9
zYY#x*$L+brm`pjf%}EBin@op8u_}UL{Ya_GvuL<dHJ39^XewW$Q!uY-5pWOy%6K;%
zPh>`)iRlanle<Zyk#clpDn>DBI3!EI7Gqu&I+5Dik;g-?4GJZs$rbCK!9q=)i8ZAk
zhP`{fF*Vq!(#yd{IHXu<ukD7w@{^Oe2*=r}$=f%g6~%pqKJwb^&Jz6gfH?a<sy#_!
zy{1JV5YCR+?na5Pye*C;blbTX2ade4Yh9yEx_C<u&S0CK!!<fK3eH`X1ZQ5rCDa$!
zE3n_wFWy?jCgI;dP@7=%mo(Hb=qGb6RK7l0D(%L5yVTY}h5fDp(OWXe5DPw;#DdOY
zG}4wxsbPw4>`MMj*S80gKT~Ry!^xkC7}dnjd-3(LAc>-TNws$+GG;FwMh_-`Cd`JC
zKa>27CV!@g>cfej_u*?b`74ohDfu&5m#33I)1<qQ_<29RwysU0*?y9k_T<k*(!u1<
zOtZw#qo{l_`74b&+meLYC}Gx-{F#W-mHe5-F!^%{wMUabvy>)(CMlgs{5*!Qr;@+Y
zu+JoarYm-jC4VL%zL@-(5Wkf8`6c*zAyFf}gqXdO{F!1z9!vgAM7fywc^Hnp=?YSF
z5!g^(alI5%QQHf%c^cxPwpru)b^A<(08S(Wl=BT-G02y5BS-{RnVvmfouN)oCfBIt
zC;0aAsT7d8Vi|3souy=;qeU2z1amqOW(N*_%0<2gbtVN!B^EfF0#UE$a}VTcOR}5-
z)yR`PolAx&mZyOcV9qDQ%;ZZ)>hnhk>OwM9rCOP*aO$hal7VXZnK^3bVj2jxcr?2&
zCBw{53lW3F#bU?&Oo?<zYa+yOzML<RplqLjWTHvl9JHsv*OUlkQ$XgiVso3gW345o
zBN==qk9d9{Ig|!M@;;IR04YDh{+`ifpvv4FZ^Fk@K&rURg05zgL2&k1LIfNkw2%yS
z99L~Cv|cWzz|_EH?(Re)&`!(~<Tpk`ODQlol*}X5AW7BfWU%?_Y~?u5&E-U(UDL-w
zf|%ksms|lnu5+X3lVKV&rAn1YdLa?$o?@jotz_%5WT4snG!&a+(#2#j+`;DVE+vED
zj(cN<<St0GrtX0Yk#t9EGQ|ADc_i^8!ndUW)#m1p%n(p}BG3raFq`&$dY)FNjx><@
za)p+^t`r#Dmn8K(m<&>!s1=U^WGES=RD-;giF%`nKzruss%U;Tw;jnF^URKgWZ*I`
z&Fh>Aiz!g`$yx~lT7jO*jpk=&^GAuSC%kLaAQ(LUlZjRC&0{*L<>^!+(0xd=!yG-G
z0#b%<B^sScfx+se2zfRI=y-l6x0eRGoD4LRuT|<Z3aN7`V93>mhR&xzR329ATnfm1
zA%6_(1{zvPgxZ@YQM{P)y}>TBOUV$$DsGCQks#5u-&;b06F{`3K$LNZJhvS{?W+Op
z08lmss7_sVBm*3uRKhi$0z#`TTA4`%*_WTmKa6z~Knp2Ac!V;q4aF3wazV|!6KOCd
zP#L*-(Ba7xFr+=;n2}S-FhwMJEamp)kF(l5lLClT6}kILNAgGJX`E+MAZry;_qpMD
zWESPD3(Knmhppao$rVa0qvw+W5KajER#E`Uv>-9@9!rL*@l;6uK0gbinR>dE41=W`
z2l#*q68Dq)^ApH&s94#S3{^aqJCrZw_RjN}O&T0czK&#oBfQuoem^ih!#kPLWQf_^
z@Jxx-&EXWFLT+RpM!GgV$5SEqG+@lL4VMbGA7`>Nv@}g9=2cUn`4ER1U04l_3}3)4
zroxTEFYI=HA{F}3eC-I2=wvcjt#q7tbt)O6j(mN9SW1DI%a^&8(}^%xa`VS#aw9OL
z>1zL_6u{ZJ<4ANxT?UDp@zMNzZWxK0NAjdt+mqpD^0@jtN+TRf0jgkssx|OPGFTmV
zy^A%+dZ;GC9xOr;(?CxogOFzt5GNBM#$f%xv|+JWN`XSwC9K~y8szC@Ff8-Rs8~*e
zIjW@aTry0lP*9Wed<x8TnPMYVK=p+bxH97F2=A3-m`W|58^g&qHroJfO>~ls!GSO4
zS6edF@mVDA$?eZi^QNag1rSPu_>)ZpIRsM{*^>a%kp_dU>@gZ+R|*hxDhd2xD##&4
z_n}mv2THu@8%Y5=!b2ZTftV}NhT(7uM0uKzAjgwIinH_6G&yIIL1yyGf?Y@hp~Y=6
z8K5*#R5Rp63JmgF=BN1tIt8dUgTrccb}A9(ep*S?7IG;O=z%<8d?xYxgP4cqX=pFr
z{4FQKeLppGKJoJy?`Oz2H=a*)2#yW!*^?V7F6878XCc`wR4SBmI;koeT}cGo31tI-
zlZhMTokcvqgggU$3*=NX7^as{^GqVtE+pB2$w$`9N+OUu!jZ&H!3cbrY=<6B1lhB5
zEVl!)QaheIfITRDq15qsD*PcNQj1iWNv=>RBEUXhRZfO#BHX=rvB2TRQX=5q3UWtc
zOUsF=a=RAjP)|jSj3gR_`zvMG?MN;{tJyH3Epz;YB}O`uxGW!_+;q9^vq%z+3C9c9
znN@&yA|)}*)7+lvGITid(S`duyGr$Yh)hM?gj6B`?3P!lv1ccf3`t2ym!4Z48lf9C
z@{pZh1$1xa7&1?*w9Xe+f!(J<T~<~ByT1zg(oH^=2&)f<b1Hxin6@UalL8t(LTyWi
zuNASR7K#O;8O>IB{vkNngK+}Y@x+QRp07~Qpaoq>1U-nIz6zsROoSOjLT?HJ%N?R{
zC*?&xn+#o<YUFlSaF9&i=^#-%N@KZE1S&M<8DCVWCRVt=TtaMPA-6{+D4<U#LO(z|
z3Z}srUPhZ#YT|4nIBwN|+xmd~aH6`N!Ws0i_?j;zwnkv$U<`C9SNy1lp!PVvvDQ?`
zy%=s=Is{n+?dc#im$K;~><38&*@s5D(jnLlnFvBh`TE3+vM7!u(whL)G77NKL@*oM
zw1uv3FTF@DxA*i$Lj)|~U=ILSd;t3ZnBC^lB1Kh=djP65{~mw?bV)D!g4Mg`q*5y$
zEpF|n7Ik`tH1cpv_P7UNcNYcfuISK>v?jZ|da3j8S$#MI1UUY})d9P^_+q3-ligh`
z7(S4E-*&|Vl5b@$`Jma&GIWi{fcV9naUaMY5{@MgNPZh-#RpB!@wVd8WOonC(X}1}
z;(HC_UXaWoA4m?=U-5!uk$Z{<p1mwd9*|o|ab!IdM|UrUz%F?-i4?kkT=9bB0X@}Y
zKz%$QFGwc54`e^jbuUQ9^SagX+(MEx?n6$#EivxVWOqLk-Uo7k2jm6GQ@CyQ0d)`X
zI^YG#g!h4Dp<D5SWIV6;z;g@Z=>s{)s>TbFS5+@a#`6XbJo#ezxECbT(+5&5m|l>K
z=ZzkCZsiH*1<CU10olW;w^zI%dBWYaI-Wgh&Gdp~dip@BHPZ`{@x0js&u*rt7bMfu
z2eOCfyB8$$eS-&{oLzI=3zF&S1F2RxFG$97qX(XRacSHKl9!_;FG!y6UXYAuy9b_q
zte1QsRkATJNRql0FG!NQ>@6O6@+vd#1Ic#$k{2Z7=>^Fa*wZ}lRO^usB;QY8@`7Z(
zdqFauPxruc3(ewjAIL$P#Y<k0By}rZkR)~4TRrd`q**-f1Ieq*k{2Z7=>^GnKEngg
zt&FD!WN#O7bIA*m@$`aZJim8!Jdqrf=;;N?czQuHo?ehV-=FD&C(EY~B(E|{UXYBZ
z7bN4E^}w@-`R)VR%k=buq*=V;1<8EB%>&O~#?uFq6HhF8K{B3Rkc{WEJn-aIX50&s
zwD*!1Byn@a3zDdm-Q<Di0C98N3zDd`<ONAGzv2VAg>-WEb`Lza5S7NgAc;y#UXYBZ
z4<xT0**iS&9ArGbAeo+CkR)|0K9KAr%s$%#&#jE77bMfu3zDR6#RIaB*N*ISR>!li
zi>Ng21xego@`2>FW5o-SsFdySz*Frzyda56OFoc2G&fhgAc;!ZJ3a7Jo;4rHUf#cZ
zK@yc#ydW9RyFBnz`wlNirl$`i=UiLyf}|BT`&<t^)xN_AQtdmuAeo+Cki5Qc_Q12B
zs5I^a$=<CcFG$AI3zGT%JP$n8zQYTW`R)VBtIUcQB+vIw4?L9z(hHLHk`E+%%vQW0
z8PB^t@Em0Q=><uv%#s%*QGUe-ax1UzT^@L<^~ej7*CQ`T#?u3`pO2%m-K*o-&*{>}
zy&xG+FG#jSd?0z{%Jz8R+0AyH7bHo@k{2Z7=>y4onQX5Io_u;V?ghzsdO@<i<ON9*
zlI`=rlXpGiUXZkQEO|kagsgZ$GM@b&c=E1i+zXQF=>^Gr_krX!E<50XC#Sm|_kv`4
zdO<SZeIV5t`4$g6)&9r}lJWF{WIVkfneT%hc=8%I?ghzsdO<RtK9Ia}Ww(0ZsrE-+
zkgPwwAbExTKPtn+&&RG$+whHk_QEawfP(x?8YJ(eR(yJAe_i(Z9%J81lpptk<gt4}
z^4#=*9N;x>`~|DyIlv(oOJ0zy!Mq>|&+H35dMA@%`E!az-%4Q-&&=$X6yRN3l7n{m
z*~RQ{DZmHQ07)Y*FDby+rUBB#2&NR^ucZOfs27hbz%Qf#vJ-vzjSBGU!Q{axk4aSl
zcBcW7iMagJ3h<?AfFza6Z&QFL(g2CsXP&MAKac{*+F)_30{mhcAn|%d17@}+kD9f{
zf_|~)?leGVVUOzia2g;DW=N;)drcZ3vG6x^+N)nq10-F2{%NY~&!zyfQT$<#7TG4w
z{-kR0TWKw_N}pDMcRoLvj(pm@ct8OjN&{pGf1U#Tp)^1m^~xVAz|$#!-FzxNw5%XM
zmkLR?>#|NxxAq0e!%@kLmtL>hd~PZv3C7C93Nmfp;LRrL{S^xG!PGWMG{)x@<ZIF(
z*>1n6Wg~6sbhF(aykE8XE2(YL1RwuZ1^I<kNVfF$Dafl|m_kqXVlD4gkX@;eH1?oF
zL8kJkn<QlDxe78(l)BY9`z{6fP+ITo84Jc0<m*x)X==22D6MWjkq<mn2i_$_o6AG0
z_g_!zoqcFsKE3n)BDhtx`Nh;WX++r{Q;=7`D21E7Eb}i{klm?}B=bYV3i73?kUZae
z73AyFAlcg%>`;)uo(f6xy}Cg`rfE*R?FY!k`xWFDQ`@Am5A`X?b=y*?#2&n%MFrWF
z3d!^R#}(vD(;#^tG~~lg-Ur?4u^4o79^c!&AlZ7<smxxViYM`XQR8_g6_WTauLz{J
z$$P71pElWo^J|lI-C>=|?l05u93Z}Dw<#X2{k{~wt3cdY1(~`c46v?yhJs9;n<^H<
zhw^O4o%E4;KKYu_V^6bvy4feW*+)XQkc2Gw(39gUym+*QB;<_Gi1;+^gwKfB?pqwt
zluxlFyV=j_h36oRebHw<8YI4-(N^c?G+9!?`96GS<8MgIQtFIj>#xs;n;f5i%7>m?
zX}-VEt4-qOX^%F0cwgy5`5r#?JL@5JJ?v%mYm?^tc@L@UVY|++P2&4SpElX9Yul*g
z^ZpbG>0!I>yoW5|0bBGwbWFARgQ;!u`u=VO`Aeyg#P^F{z5D9<9==Mj>@kme*jn?V
zJbQze`qYThR_z|XOAu^Uke^K(JD+&^^-g?0=OdrWuJhr$ik9)v3_ZQPVb|{fr0qz1
z*sk*$5#LX^;58x|yI-3mA&>dA$rj-Fy^2TQO5;%<jeW?6n|&nnmvrxGt6>jcWeDz8
zy{FQ%&wK2BH1^gTRGVpbNDp6n@S>;kgx{mu>=;V6SbEq3T)9s{j-^5pl@>i#nVx>q
z3@aWhY)?OHhUcr^e=x0gK0zM$*h%5JZuCCn!y|U$4Q)}qr}>n6*sj~@vBveVUFXH4
z0UG<V4?WqgThxw|(`i&<yRKc!QmQ0xp%r0NYn!zF5uRoTq}Pb}9!J%yO&WXlMT+vD
zNgI*6@u7K?=FaQkdz4;yvITh32TyMcu!k+cGhS_yW@x)vjXli*?D4h$d)NZ(@X;Y`
z0S1E}GS3#^kcT&>hdqFUUcJ-UM?B=Smpywv-0WprF?fL*(Kl0Msh7_n&TAf}SysIq
zA?DXR&5ny6eDCe@T@iY_Xm+%<s}ZHm&0fCkl6|3qynTDJp6})7@K#0?<o;Ah((_#&
z^4ZH*L`OY5QN8T1^P(qPfWh}FJk$0vz1|jJuZjoIGM}bHdf5Wp>!Ig+y)D4r9^(69
zkJ-_yqT@X5x?aAO)8!)}Yyo;vzL!>n8819Z=9fLzquyQ``-0DWS2ulp#?BVtsL$Bh
z0`wX?`v8Z0q>e4XQJ>k-=RM!q0<8Ls$lC(!RZsu=j7YuZ<wJSC_j<xdLf8WIqI^G5
zY1s!)b$7`JPqr0L`p}c__Xp2Z+9u5l*UPrzDW9<`AD|bWWG4^l-cxlQ+lpTFWN+c3
zhxOabH+ic*lFYWEU+=VbobjPN+luEkWa?VXK0vSD)fur5J=s<~<fG>YNh`k83zD>A
z!3)w`GjMFlvd@Uv0`#I1$CjM-kz|f7@oSU#e%7l^l6k*2iAv`@+U)bT75ms$yyzjH
zeJWnXV;1+ZU-5z$p1wP&KK3g<=G7+eA_uhwOYvs+v90Js`9Ah5w%wxIOtU}x*sti<
zCR>$WZTd<`UpKEE9=fhir6}>?CZ88y@}a!)D|)p_I;8bRMb9)3PamHb&wA*PKDH{o
zDBnX8GU`Klwko~aR42<>HKMeYtB<Y9c0Kkqk3=8)6+65jiSL6xkZe_sctMia$ZPCu
zRaSlI$$mw@Hc2xa)_A5$h__YQ$5!P@A3VLS%09L#hkW?XR%OtyBqZ%jzmKiT8K1Fx
zTa|rmRi5z~J6n|tJ`%!y#fHz^WLxp1hh^2rw&Dq|-bv=q__WCu;3=Orl?CXrfA3=p
z@U&N(-fNt)0DXAG7T~z{@T7T(`_z4WADzq=;G&NtvjsS=CHZ)Y=cJE)fUoqCkU`?+
zSs!|`4{*`L3)jbX-FY7g@wV&w*avvghev!0?4|3r(%9QPVjBC|u6wNqJ^NMO01v+R
zvt8Ha)jL@%=RA1S&(_*S56btmXKz&Zp0?}hSJv7#r9abRPWsuix9lMy{cNpW&?8D)
zW%@a0Z{;nj_jjkrd_VgD7xM}-Eo!b``2am)xB8V2uuHX>cFNYzKEP!?i_`Y+{XJxZ
z4e2&Noi-x2!5;JBJKJDy^pQ{Y>;-pfZl=Ul_OlI^-Krqde3kv|*?Wsu?<C1XUcHm;
zeaUC+y)=un`rPop(&))H*wA~`h;HAJ?4#~i(S1LtAYYscNoTu@J|j}mefktQEmE|f
zJ$pmXSG~V7wRfV@vR;qUP8|A`XU}K8vki9A3zEjZ<Z*V^ukzHD)rfvEZAAUFYA?S_
zL4GC`lK9@LqdwB?`F=jz4Q^9yrtJ~>)$QQj3NkH5x1arWCp|2deva8Y<3mrj!P@nR
zQnlg$jeXg}66j|etW8Jzq@D5gt9*Kg)!6?#jq-f98@xn8K4&;(9&yaxlE<k~KcDTc
z=osCDscq8O7YnNQSEWMIelwU<kf|#ITWf)iPDwl0?q_Rl*=H8BwbtPypM17E=)-r;
z`?u(`cCZ)jojy95&tc!=1xea_#AifogT2qIP2$ngYZQ-8r*LzCZLnoM_O!KlfNiiL
z4{i>y$1M9JKE2b}gKh<x-aF~!!yZ%`U>j^E23adkQFiXmBc*a-e}0aiPhHNayJcVc
zSG?bcKWkb9YOdIrsUUMSUaLaC<5LRmvxbraXYUF2DnIsHU(78X+9mV186-z8X~^Xi
z$bR1EF1=l~c_9W_ZPfPVt3Ys3Blxl1$=wdHDfgZ?s>aq{oeVj+g_OZBCPGdjkNVz9
z<;Z+h2$a?RKYCAEtHkVINNg2Pk>NojX>mxm`1z6K7Q2-d9lS*i>A`zbKnMBg_smZy
z&^zx)1*I!yClf*EOXbGkq2pDOjFaO^GKSI`+{!Mx^RWhRpBm`v?AubDqCdqh^#_f1
zy-8tt>Vr|SEX>c%9S6j6L3R7@DMRk*=_M`D_LHj*8KA`Ri!lsEcta1KzhCdezHl~*
zo|-ie<Y(uL!};0S&U_6IE@6sH;%!zE)A7WC*?H8{#}2q)M2+yC`-D^VMs2cEKKg&z
zyZ1P$=l}ozuU3bxO{R#A=p|uGYC77IOsN#9=_r*<hpkO%M}<l<k;L0O<M8esiV>28
zK}eDjQVHXnkdf0mycy@5f3JBxZV$|3Tc7XWzl-_9=kvbqz5DC=dcF?xn%C^kwCO#4
z`X66`;4lwwAE2p86>Yq4NgCItmBt60caHZjDyFwC%l+3IMC?d8-TXPb8jV(5;QdoC
zk}8yiUvaF~YGmTnim@|0cbq)U|9;*uR{)c%43eDJC?6bDM+#s4BPiRxLvVcOaT7bW
z@7%$Alfyq17gw1gKRLc?GF&B@H^>g{8Dx+_KKhqscWB?H^w0fm1IJ|58Sz)6Lwj9~
z6sys+zs^gGiC$I5aqUXGboSq!TU({dPmKRFk*bo=VOMzHR&vhdIl05CfG4@|dfmk|
z<Za8r-dE=2LfP>$sef*K4gI+{we#;!r~WI)z>(kBx~XLoXL{%Ou`_3Qg$Xu$^pDlk
z!rUR>xuZ@)te5OT#i!{sXwFNNO`kDv;!yv)Wn#}uu4|RtjB~uhBb*mb^po)Bs^Rj<
z6aDc;&XmYkRU(sT45*kH_P%^(rvJ*`WknheumhYt<Ihy&Z&F(4zY!4no1kCkr(&e$
z{9q?}@(lm`Tl_DIajNf{HhJcRifLt=9`QECvsKP9I>mo(TY09Bb&yFJQDt5Kl9bOt
z;kTpC``e`dr{uiyT>7`k+&c=XQ)M4q|F_B9^L=WyjPv8aP3G=mxT7RlG|+Cnzpj!0
znt#0{+x~4b_u9|pFC>TjZ8CR_mEqObd4D9&@xH~Tjlb{9*)h|2lz)x0BtMb&9I>X#
z_VZiLn^87oNblTA-b3KeBis*^kDZYVRC(rzUu~ZfXLw(|*d}k8o2x8y#_Vb1+xSOX
z#nc(6o#!n!(Ll!jSj#`=_OBT)kt&ld`sg2P=eOi7Y3p8>)YkiosB<QdZ{vM!OLXk?
zvL4eW47p%zbeMnYsIo%Ysw?CTr1}c)Qm;yf6R$EUf9V+FeG^StZt30`+CCA7|90tr
z{7dih#Qw|3|J%RZ+i;_M`KL3yuLPRfrfk~z-pmKb%FNdc|G91c_<8R9oMF@adAUAg
z_8)<P-uDK1nJsMKWA|3lzhZpuo4DQmWG9&Mmz_X*{yf0s4|Wqb$_%e*Ylk$)`>yyQ
zv%Rxv#rPgGXZqI_<ud$psw_E|{Yx-4NrHoh*i!!z#eXI`T_W%8Ez*0yz}^Ffdg~Fb
zEvdge0qT5ApWeIQfZ;uIU*!||+f<K}d-NONrNY&wW=x*seG^k|RH=Tlyjnx;z|YF9
zqL)ZA`;Y%|<*HjK@A%oam*c0(259HMIgzR>%RIWuGQD$2mAx}o?JnkRD}PtB`*UzF
z$B-oX7oDptBwX!389era>XzgFKm4Priwafyul};9w)5W^3O1DI0%y40IC;_BQ&H*v
zThza!UM1>Xqm{LpF>^w2me=I)r(BKxSg8MFZ$IuiHut4m!7A71{?EM=<z(+d&c7TF
z>^(AJ>}>y#56R~L^8jS|-ZyTIpLtI7EdIpgCOJ+YZ=oyi$A%3($s0uUH<_93e;mZ7
zql5qJcS&9-wf$pV{&+3n=fh*C&nWXp{l`m*RF#(!Rhn~8sd1X8{n0G3a_=eZw2Emn
z%k_Rlh@Jh<6PzEM>U~dcUe4KjZbq)K*Vx%w=k7h0tNTkT!xfoX=%0H{2mgL!dhaW7
z-c0XSfdAE~Y^k$@d7I!bHU8VDnd@Xr%{OzA`x-fagLd$LCoam4e|xnt{~kr^|8C1&
z&qem$mfOdAmQD1YCcR9E-*?_#?GpW)G10wG!(Ud@zt<k#d(1m9`j>fMgg0$cziBgb
z3*Gz9?|mEaOu4aB%5&o9`J?i_IeBJz?)Y#{lH=o`)AMG1YK3>QW4rLQWVVZ+;5l;#
zXYG-HJahTG-5l>?Twmxi&aNNowY}NVOa1qDV$Ab%?ea!5ZtR3!-ZzSS!*%z*zPTm!
znmj$XLXo}ivw2S+&sBN)Fr(?>{{@h{Y_BJUKQ~nu|7NnojkqrPQ~1|d?o(|uC-UUi
zJa66p67z4iM|%7pC#)|1??q((?^y1ROp47rqS~>^UB_Os&_82Q@0z{s#K}|3a{o{6
zmWg*h=361X+H{py&iVNvQzl2f?U7sS|09{VUGA^4UA!AMGs|YpY%|Wg1vF`Th4-z@
zUT2VdW^?{nDUHpnn2@`QD6KYd(pc{*Z>s-&kM1~G=RYrgv?Xs$E2@lX`gzm*-6cAH
z>NI&llh`CX%AfZ?G~<0&@PypmPRWICsV+CuyBj!l^0eH=Wg=N!D0g3q(4r@+3zhvP
zwY1uCO|O_B2bANS=D!xJI&|-XjLg~hRkyI*u>G@0^(`8yzGRwr-)6cFhx;~r8O~p0
z5uTB&#^|X&P(~tqmTdm272{_3tHeH3_2*?0Sj3J|HQ<j_Li!6YRYPTeNyUc9>xsRk
zay$Ir{QS?I@V44=m9m$T8MDuk9kBWxV$yis0{^ORW0(Dr(f0tVE^5+vS#NjI-?T_%
z&y_Zk+f~}M^47QNPU&4q<qjkNr^`Fqf2c>>|HFFb&L%Uww{g6$oRwS3L7r&;SQr0r
z_~$?W%)mc0@XrkVGXww3z&|ta&kX!C1OLpxKQr*p4E+CZ25NY#RMYwDce`eFJScFy
zp9VsCKRN(+f9;>=&AtCs!}}Md{8mXJKP|;a7$1O#j8DL~@M|90GY3!NaudyQ7U6}a
z=VrXG@wIr?^l!rhCZEAw<KN>uOiz7p%5w9NG2R@nG+v53rhfpw$K)sAY2K--=Zz!x
zxB^cZzYEV8--d_qx>DnOjt7l5E|B$_WyaYZPniC*@W^6$wXXeh@r>~s@D%-;e*_Pj
z{A+m9_&0dm^fdDBD&)3Hz~tNEapPgln|Y|fv!?%QJZgIG)4cH)@wDm5;vti7=<V>i
z@u!Tp#}lR}_jYG4@0$Ginm4{w^Jab5<BrL{gU5_JwPd-D={W+=m~ozrhfU8EJZ=1H
zJZXB?s+;}r72gY;1i#Q5U_bu|Uxe?A|A@!<DEL-*{o1l#q2;nadz0%w8mZr$?@jQu
zIey#XC5&IsZ@uv~<h|+jA4BkU#>e_z=+xwnspjX951Rfs9x?tfuD>^^<JpdfO@247
zzw@Wd&EonCeCog9`fGdY^}Q#U-2NFi+v{jNYkWBF@D`Dt_ZH$|v%jsuBgS9GqsD*4
zW5)OQCL}jbeV@NR+oc_@Z{|0^!??>hHGeK1!Zm-L?{yq~4`H8P-h_FN+ceL62Cdj}
zAMw4Wqi+*b;#+*L<>)&D499sB*IU2ppV6=PTGfBT^?tp2J@15^n+KaO#%=y+-@P*S
zPwnY~>m7Ra{=V0Bte=7F{d&z$^4;4DxKFP>1J~R0>M`Go9K9p2ehseo*wt^V#_#jJ
zj-$8RHJ|dmwqxfx?YlQ`+*iMy^TxZl-b>e>FLAwtz9To~-s4wXZ<~ucPJM3*{QdL6
zu#*3Oi*dbMu0L#!kG+WV6+h_Ud)4vx^gMSR=ziYIPX@`Kf+wBczI4I|;pqZ#?|=G_
zk>3B)&?$6M?c{BW5dMbmMb6#4ox=1uANgL_iS?HEX)@%0AismWo=@r)<@$@9r%g{&
zJj;9394<~fJQR@kUSjn3R_AxTTzr`C^_&3vo405CkF#*s_%wPpnDNZ@y}-GX^SQ3?
z4fGW9hQ0PD>G{B{?`Ay1IA!ZN&a3o<ZjyOh)lSCwKKbyzvcB5?3tnmZ8+s?M+<X?3
z*LiN^yLTOB&TqZQuVbF|yf?=8LZ=4j0bSp7$=5Xfm-}AN$(Z^4FL}4AjKA+evR<pm
zrzXq#23Wwu<Q>z$6%QESi5D9GnEs?0&$qbC?-UlxaGV<6g+xQAp0m{C8{-M%$N26Y
z<ot?xgq|LF#Q5oWf?rOElRw9I?>c9=9AAaZ!==6#Ic~AcoA+YRe_V$L*<QLo+<`xA
z_S;ACzRZv2pTk!fe;<#T{vYt9$p^eA#N7T?YTWhR+aLJN51r>WzI*FCL)Ld4>)VHX
z;zHRU7B!Rg9YX&W(_cnUq=)n@WIit>Uuec3_r1VL@S8&}`8&z~VveIn@NbQ$eJ^y<
z92YvDACo_Taq4mRBfiJ<6zwPbTcz2r4)wjzaYM3R^BHGHJQf!J5kJlMA}4OvcMSQ|
z>5|v|s>1hrPQ>j0mumkY$$L*7{^P&oU5?YGEO#||mtVs_34fM+s%WGyTPS)>`v*vW
zCHYT%FLE9<`>o@h@N@fB!ff||@7|M%Io}?NXU%-(uD^1}^(y0C=#Ow74l$noz85+N
zuzkIk75?Ka^6Shvqxd7n=lfpI*<+TwnEdBvf4J56LT8WJuO6Z&bG958F}BMlJT^nT
zkR9<w&GUD3F5`cP{s8^De}3tEk@Kh-f8B;M{~<H~2jit?e{1i1J;ycMr4RXMO#dj~
zy+Jb`R?C@&SDJZP?0a1&#GfJ+vtBF7hbGH@buC3H-@W~WU%D<K|C;Yb&Iq$!ACuo=
zw$~m!VAiW{BiXM?j311rOwTdCd*^dAZ{6@cW<102MJ7MV_d=(bU(jW<I~S9Wn4V>L
zU(@p-UZ1?~4_oOkH2cZxc)%?86W_h-f3sbF^1YsuFz1;A_Rq~*T_<7kC3v!y?9bkA
z=|7IgGsXwtapU9gwDDPZ!uY@Nl<`}9_b#%`yxoUCWcKGL@mXg6U#34cNY<-ZUM4#4
zlMk5wU-48!p7(hj(a5`jn>!!IOn(dC3!Or<UAp*Q&q-Cta#wlxr*e;8c!}9RhvUV@
zXZl{`JZ9E+A^y1WrSyc#SYKJJv&wgGKQZ&X36C0okN&h--|xuBOuk-YnV&4<(f#=l
ze61O0(0A{}nb{Bfk&m0@j_}=^Pjg<KLcZ8+$60ua*D3mZdNtmZejVpsnm5Z`heu5R
z3wXxlcj1-BzxKV*$(r+O;eqT|9oXMo*<c6aBg}G3eD}_)X8U&Wz0j#|&Kra1Nt^95
zhMsk1f15&nmRasxJZk*kxNGL~Hs9+y8UDUSpD!Nt-8(Ot?f5M2JTLogs=Lg?4*C=3
zI^hF6W7g|CJhi{fXCcRLP49J2?)ZJe?1u;XUeAf~JQb3~IwiO>jpLW+wd3gtn|T<B
zmm8mohm2oLf7;CdfAC`SytWz-G0sxP`6&HM&HlE{ckkJW`?31``?>E0PR!h&+{fEM
zx%pXVdJe#M7(W`%8ZX65%=-4j7nyvy@7{T-r_6Jl^}5*idd?0rKiB(S;4CuZzngr_
z92cADkD2q#E4XX?ecy|m^=3c$4v(7g7dDZ3D>r_K@AaHQGyWrS$9Q|+z2{|q-Cg&?
zet3}MNS~J@c*yt#xMO@V9x#3f?i$~KXU%#372mzrFH_I(w^W?tVi);HAMvI5cfJ=n
zZ=2(^&cQNouNprX-)QE)Bc3we7k|?DnfNB-)A6T_U+%kiyqM?lTYUHKr-fv_BJ7_J
zlh2s*`3v|C<6rn*<OI!rvfm-Oc_?tAW`Aytmm5Fc_d+Lj)ChkhdR*Uvhm6;3n(Oz@
zx8^=TeLQCN!vlRUbV4oi``eM9W%6CgJ0?Gje3CyG(EWC__VWQ&I{vwM%=j|ji=35a
zd+qYQzzLcA35Ogi^O^e3Ab);BY_AcxWAaOUFLLfQ{cmUwA950;r}1IAesBJd$e*9%
ze6Qz>F!M9SckfAv@o3LAc+8CRMLc50xvzIWCbyr2OwXx!%;c}oycz!%%^R=dO22D*
z`uJYttTOX6-}ib>+HBuz@hs0@y4_ddG2<Jw$M`FF!uS_>(s<p&bL01}i_CajJZroi
zo-#eB;8Eja@woBx@Qm?=zW@2YNexFHOYjnN9=MyHfEnlG<Zm_e|Ge+s`_%jeW{mzy
z-@W5^wCtb7HRK2No6CNiGRN16c&vH;{#@aEJtt_!v(WbfC(C{8VwQU=9^kWV)HmQs
zliz{Ijem=$jR%g9?He`YY45vte&+d0m)oCw*yPL9&2c*4_X1}X?=KXvUd!nZndia#
z=!ux~>hriWQJybcdMfdd8Bfg?vR)D6E%0(P&K{aKKE`+N`O9p_E7i^U>Tx_}@?YX1
zlW%&Y>_1K`*-!L5*57yUeO|NO%gMVZN<PLsT!JTzFQvy_D(CHT@@vV*_yDw0{5{R{
zAzhmP6;GI+CP&FU$ISL>@4I)rn0XjQ-r*1N^gLGKdy#XyIUX<f-MfA>`{A{|7dT-v
zKezktJ&&}L`3bRJ8_7paKJB~rI>qcKyYPhZFMTg^?l9y0m3-Xf>m4oglQG^D514sq
ziMz%-<0;c~vhPLCU1mH($%jqPIN!b31^mgHw`cp0DZYE}hnnk+E9nWDo+Wt1_#JrE
z_`~$aO#jQi*LA|?Jg}2|$h^+_p8lBWuT>)R95;Rto-p3pckevUCt^gIhZD#LP5u<$
zz58aoUM?m-%J;fXxtY(2zI*R?be8=vO#X6u?ls%%dVH06eYb+15_A20zxEqX`CiY7
zn)BE;@+otk`3&D;uB(6Xy~tT=#<PFR+&mXKTg>>6^u5q=%ysfG^0%3Mh41y8kQwJ<
zysz<l=vi%gp7h<@Z_Ro2Z9K$B8hESYKYrD`8E5lWx%KkS8)km`<00cye6Qy$GUHr`
zC(ZtIBR!58&m+DUIro|M+DcE#^t??zY4V@Z9~&zBo8FiE4e!f-Qjd8kJ|?%mb)9v;
zOWxaZ{^Ka$y?Gdt-_wPBVGViy)qG!kOU-;AjmP-=_hR}h@PzUCzI)3ZoWI=bd@pjg
zoAteeo`4zueR$CLdc4&5Gx!MOX*_EDExgjnU*8Y$pqZa6UTXYjJY>9fYuPSg;|=i<
z#+%|%<455M<L&TO#=GG=jGv4b7UZw*AiUW4XuQ<;Bs^q%I-WH?7kBr`U+(32iScXk
zpz-B+sqs~K*!Y9^2;&>^a^qX^rN&>ulg4-9mBv58v&O&0_Za^j-(ilsy2r}?lQDh(
zUTM4;o;BXecklc>Hh=z4ARjZ&cc<cujE}(M#?Qx>8ovxr7+->~GQJW|8h->|XZ#sF
zW&90%i}4TfwDIro9mealk@>GQUW{jrAC2!ZejM(Y^G{#A(D-n?*!XnZH9j9NF}@5B
z8NVCvYkVCZHog^)7~g@H8~+%eW&B4xX1s1&nde2u55^P5Tj8sWpMa-~55Tt=pMs~2
zUx@E8eidG6d^w&qp2YVUe*$;R^UjNSq49U{fblQzV&lK#uJI!81!?X&p~U#Xc+hw&
zywte&y)b@H$ar5oZ2Sy-mhtI$%=iL)k?|FH-1w9DQsXb<tBk*gCyjrFuQOiIPS!VN
ze1Ck4@uTpxaqn}8{CV49{3JYMd>EcJJ{I3&yaIR3^Zq<MVEih)*!XhXHGVH%V*D{Y
zVtgB3Zv0Jrmhn&VnDJlmMaJv5m-&nvZ-y^5-WE?9?}e{3J`ztEpMh^N9>>$hm*W}Z
ztMN+X8}O|0E%+YeJ8;KbcU9s6<3Hi9@dh1aK1+-rf(MNsjfahQ!bceIgGY>y#><UY
z;8EjO;IoV`!(+yi_#)%m@VN1J@TJB-!xP4T#8(-w+fn9okMYBB$6N<`-%a43ABv6l
z!b8S~;eCyl<5A-=e39|1@woBjc*6L7_$uR@@RaeF@h!%8<7wkx<2#Jk?j-Y*F@7Lk
zXs&yY!2`xmz>AF!#$DrM@e<?b;z8q=;HAc|!9&JZ;C+ohh=+|oiH|V;A|5fm3okeR
zKYW()U+|dmx}9bI7a4DY$Bnnbmm2SiCybwpCyk$ur;Ja*)5g#D-FyFiZ2s$=h2&?M
z>+_rOjPVEYxVe5y;Y*Fbf+vlCsQt#j$NQS+@xtR|o<|rz2#*-=fR`H&<5A-i@PzT%
zcwh7Ua)Y`#k3EVfjlYbqGyW@{GJZ&@tnU`%o$$2r{`d~#6Yz}j3-C(gSL21|e6kV`
z7~h0PjDL*JGX5JLGv1(!tnWJGCAeeu=Wck^_!;;r<1@71_+sC^_utKNaVz;fCchSU
zxSy~02{+?~#^1&R#y`c2jsJ+d#tXa3{FE3!2oD-R5-&C0(f4{zU$egb@UZdG^dwF=
z!@tAnZ9e~TE}k*I5O=%h=WoIz#*^A_{2A>zKEG!to-z3^HP7!s={Rd1FY^{L-UQEZ
zpH}m2akpOna(in}w|pO|Zt_t)VSFK;F}_UmrvHB2Ey`c+vv|b#JKAIX8$4tB3%kku
zWK8}r+^wI#+>Us}_$he8ctrb+pRfJ<=J#Kv{l-^l-t2FW;0cp|9?uwmUwazlFZV}0
zVtl_7WPTFHkHj;^kH_8p^7{wj5i|aY>Lx!IPZ+-z&lq2YyMg@WZq$C`uWG;XPqp8;
z(_QAlZJ6JGARaN^8c!JSiD!(D(EdjG{nNDH_yX-WexvpqPip`E`Td)<-}u|wZ~SZR
zH(q!m^K(Fc|6zE<ct<>8{1iN6Jfi)L^ZU=&e&bhZzws5?Z+xBhADG|&g7zE#K>LmV
zr2WPNA?D|x{Qjfxi1BWC!uVi3W4v7Zi}U;EX}|I7wcq$^?Khs%{wDeTuWP^Y&$Zup
zK@XXSjPYXJJvhI=4IVMx3r`pysr|;I+J8uX|3d9IzD)a#KcM}_w`hOU{Qh0qZ~R;B
zH(swN^JCn_-9z*HJL3`K{qcnHaoTTumi8Z(-@jP<jo+^Q#@B1V@wE0g%kTe4`;Gsi
z{l*)e#QYd9!Cg1MzdIf=?tRmOe_thG{A}$v9@GBA^ZS=*zwtHNZ+w&X8{eV*&GY-e
z(0=1Jdoh0F2jdyzLEJqezrPP2F+N)RjZfEp<BPPvMSlOy+HZWV_8Z@({l+uee`J3D
z_u6l~esAW-cyl~sycBnj%I_b5M~qL<e&chr-*{a6kIwI3sr|+`Xut87wcmK9_Lt=M
z|EB%M59q`E7;lAVjE8WyWq$u~JYsyR_8Y%M`;9Nv{#N<@_iDfKr?ubsPVG0I)&67h
z`)i*p^AIuK6i*m$k7tbc#ogBV{bRJ>_)P6Lex>#sPiX(K`TY-TzwzzbZ+y4*8{eb-
zZSwmY^ksgGx4;v|yW$z+Vccz--#=0NjnCD7<JW4x@m1O%%<tc*{l;I_e&e5Nzj3FZ
z%!Au5zyClyV!Sn;Fy0f-7$2ei?eqJmX}|FW+Hd?u?Khs({to&5o3-Eg+uCpZYwb5)
zcnb5=F~9#XJYu{fo-lq2o-rQL{!aP*=WD<5tF+(v3hg((PWwCO_rIY1#y`-0<3DM?
z@xZCf&vE(vN8u6U-SC9*!Fa}ax%QXl_s`RQ<JW7y@zvUIJf;0z^7~)ce&e5Ozwv_p
zxq0wDN9CgtPVSL9$p1f1vHBSCNDc8ezI%TUYkGR&ZrA+rjKm|xqj<vjLhU!cOnZ*c
z?|(phjBn8%<GXOTTYk^CzI(sd`kJiom_k|Kx~IwfxVywB;D@O{Ebi8nd<Q(05HH?G
zyf5xd6u*l3JQI)27VlUf`RUqom3RWb9CxGQ`gvl@G=HP`Pvq}c|F3u@z8O#Qb)ARF
zVx70}SQp6;#j|+Ec&!04KePB8#rotA##8O3rzhSP5ApW`-fb@b(F<S8??u<f&%o0M
zOHVOA4c}n$m*VcVlHbVsF2xg*#C87f!D9o(v-EGm9lqAf`?VAQ@dlpREcx8$D&`)a
z<Dpc(7Yvm7N%4F2tt9Rg<B7{9e>UT6gJ;eb*X`R&doC0Ykspai&J)kDUq$gO^QPN(
zA?`dN`3CH_%e3cS@n!6{58#Q@#CI|NEqJQG_;!4k_Lqq3`hJUt_{Kk-&w62*pG<Gb
zucF7rorw5M)~hofF#BzP&71vg9G(hE&jR{q;X%{0SbLgEz6JT)ara8`#mxVDJaevi
zl5wW-&`IJ;==n(VeBP0FdE-BR!JVFxzY=dWNaiPcpm;G}g2#r57qHy!c&MYe_77E$
ziH~9YXXBBp#n<66&6|11ec4&=`J$;g?$+QfjBoP&&%YmJ_|6XUG1LD=HTjx@IgU*J
zVBf3u2g#4%_we<+)CYIF%lgh^K%?=*RB=7-rsK|`;<`U9^1bSEZzdl%+iNXeZpO0>
zZ*Ar+gU>Sg?|rYj-1<Xgev)Rn&GAL1rxcHMmi5x}`~csp_D|5fIezEhNzVU`n9q1M
zJuAtF%zSRZJDPcT8DDC~Ux{}!`QPwWCVzmpg1Nt=v7i6h%J)KNoymu)$qy%=HuF5S
zn*1f?vnIb34;&=(U(CGStNms^pT<KMNWKln=}tUzn|Ortb{5Z?p4!9qJ`YWO_pX1;
z_HAEHzAyQNInRv2oz^m*AnP@=nw~4kZ!z<qz=LLf9<HWmJNXoUU#Zs>yQ|6XA-}^c
zx54ne&rb{A3!O@n?}|rGk@ZcnzF|CM=3yef$Mnp_owm}W<G<GTs{8FK@`a5gujjXo
z)#P6#A30g_YZ>RKc;-~`&A4;AoKIrrI6V;0nDa(!JkeEpBJ}jcBj$N|1RgT$J5BvK
z>G5`B|FHn?Wsdh7eXlw{N%AQ({>^xd>$=YLzl|50`TQCWoBgoR8{Xc|Cx`i7=tNCE
zcbMd!H{BCty=Jl8+-~E){xa*EyX@Ip|M}$OrvIvH@+-(EO@197Xzcwz-b2sZFI3a>
z0r?U$KR@A4sr2af3V1KCa_bc`*MYg)usJU^J-L@-Iqz$Hu<up3Z#jAAcv)`5Ukk^X
zho{Z@USCbmYVui=PgRqDoqV8JmRrnnKgZo};#2X0k+NQyzT)fgVmxT(zYQKX*QLFD
zuR0GS$ve3n&wJ?gNwk{$Lh=!_y_Vtq&GGd>H9cF%k1*S7S2g)>$p_86)f<(YpQ`KS
z`d;XioBqyt${fG_@mVH6uA2T?<iln>i>t}sPCjJjdA;_S?U=5n=Ogk_v)o^*$u}A;
z`%la)x5W3V^VXgGA~O#|tI3~DK4to2)#R6ukDKwY!JTIL`{5>hsTt3XYWlw*A2K~P
z&)oZda<K2--?5tKksuy5+oex6J)_Ad&3aA8)5aH7({nTVm>K_Ce5g6Tw&A0VXYdKe
zzxTcBcCSB1_LG!ZZgbzO=1a-1GTUW9HTenT*O~mBYVvXNTTFgsHTezXvu2)Ot|nhe
zeuwG*t(yD+XUY6jntUrfRVw?fK7WOLuR3qT$p@N9zL@j*)N1mVkPn*t(rWVel24ia
z`RQu%JIU`c>y@o0Uppf6P`JO0U#}aR;#1B3*53E3^U#-k*sRx>YVtG5JFYBOpQo<G
zi_Lfvc!}|c@lxa4@xI1)`(AbYd&o!4_#2Gf`+25??}g3?)8Dn4e3*RP^iQlNKbL&S
z%+IyB(@Ew{@8_(-%guN;R@46~`J@@or}!+><BXI2WTx344#eZ;yxJOHWO{nyNs}Le
zFE#mTc+_0~EWlTp{Efa>-M&fkX|ukY@rb!@e7l;SugS;Eb}1Y$^Almac(;H3$6@$f
zGjAR7b!Pmh;4yQZ9Kq9O-p=>E>iS+qK5N!@MK$?#<OAlu`V061GyV^%>G_F#(DVc*
z$oy<E>w6TQHS5(451XFBc%r-P|MQsVay(_`Z63bEEcbdmbG`JuULZxQ@z_{#z0aJ&
z6Xt&G>$nq?d^g7PIi526NkN&+L&)Td@k%q!HuzO${(Iq0OIfboS09PHUBvbID~exl
zdKTg#)3XfUW5)A<_H%zA#rkg1o;zi^Q}>Y{?82RS;`%<tw|LAfx86jVpP0E%;^LvM
z(&N2+@E@J=lsSI;<59E!jKkx`XW<F+dVDb+nI_BC`@py3spaAh>$@H=<UX4|pQdq#
z&#7y{_&>rEeWXX<@Aw6eoAX|yNisi4GyW31*etg@o-*g9p?HA%kotQ6Y&<hU#-rcw
z5W}63`Mv~CnAf>$w1@XQma)E@@Yn?DnNvf4utWRDi|cXsg*x}~^!`lEa+!ye*-s9}
zOUyh3@lxY`@R&IsN8`)P@iHC1-S{HBuj#)TUt{uX@x&#vz7shAY{OG#JQ+M>=HYwX
zy)3_{{$!aSr=7T-mzv`v%s5N&a^nMhuj{00dp9(^N3m=!C*r&J_j(h>U3{kR-uI#8
z-Wc*8-rHFI<4QbaJfV5>d3O)fA2a>Wkk{|YV)t?0!dLP+hw5L^<C>njXXoapz`4WZ
zoB8g2?uyBGAn)+`q9v@?DR|O+uH9HXZhRK~@rcY@q0SHaw8`H}J~bhK{_i6nxK`#_
zx65WcYkJ=Cy~ugMe2&wXzSnh}zS6JnSJs}Ao1c1)!*T<Rv)Fg<^|kpNty15;{iHB|
zoF|hHoA*0Lk<Zl0&qv7zO@4v)oBR#r3pl=XyRY`Wo|7Ff{W|`~eD}UL(|nK8OY|qq
z_&=aO)=Q3~1oN;*{dw^cHe`M8MxTHGwx4*4{E>L%O!5r0qwjSc*DSXm9x*-&4;hc*
zG2@ruj`8b#FLItW`@>4#z3tmU#@UzgZ@^vdTdu=j##20xx5g`d_x6WVW&YRIk{|r0
z`PI^|zgKX;IWlkVDDeZCpH_Hiy?7-(A<gr90=Ki=;dqAUO&6c)dy$iA?A=)N9zo8x
zbMQ509<IReF}?)fZ2S&9VLq?#A>Y04cPPu>&z~Z{)%3hfJ~&qLdVbi2XH3s$^lV|d
z^;zGaao2oaV$n1??<LIVE*|c?_c@&9vfM@Vbiq@T#C3ld;Jf#^pr?!HzUMOcI1`W7
z7T4ph0*@G<kB5z4ho|~Uk9Vr}AGi5l<Rr~J-;ZxI^ZAta)Ri7rYMh<E7dk=Schh<P
z3NJNYSRwmo$api{G4GSM^4<HKVRQcMj0cSO_TBqEx{!=B$~Xu5?meHH&qE$ZKKh#+
z7drka<df!kVV>{a`?==4y_|g9<dgJ=n73la^9=47e-n3&e~xF&`R6y^3!JoBZbNUy
zbDwwQG7qwLj&rE*-uGym&+!i8Q9f5Wz&KCBQzkzgkC^;q-@W&zcpsr7J+sM2%{Z^Z
z!^Us%-MfA;+xG#y)Ew7O`0hRbo+R5n#d4n`?{YlqJiO_9k+Z`b@0H}kX1U+{?tL$Y
zS>L+n=H}V^UM-V9(0A|iY0Y+Q;d_zuoH@Qa`0jm<E8jmDWBh$^hwHr%eg^%S6J>qX
zr{a+w`TPIHnm2weo?_n8^xuIedP$G^I^Vs|bvM@oui_cwpZZ?p+;7&mV7km(&|JSY
z#!HPi$K7!<o&e+Q;Cqp?!u0p{J$JG@jimga{&>*rZ{t00l>4yJK*$ezZ<qLwi|`13
zBhRNxHQy-Y=Xg4G*5d*E5UFwA!h`s}_&0b6-w!XEA>#>~{uX!y_oml>^uRNC6d$cU
z`-glf!q3qjTxQjKpBGOVkK^tE(xdqmc+B`(JY)P>Jk(fvbe`Y96L^MkeysfmN`5!~
z10Fp{T-UeGOqsWg@nSq&EcuvT7vbq9;&bs6HGhbBZATu1@Cbe|J|2(Zy4}ym6S$uL
zufS6#zYNdddL5X=15IT-%~|e~cnCiNe;JSBUGVquBz`>p9iGK?K5L&R^BFlb<R`t`
z2>zo9o;KbV4;>crbEoTk;)!PBqws;abGY~l{46}#TwMO^I5Y7qKERR3d^~i7Bu~X}
z#N+rFe1rDjU0Ci`Jb0w^JcRGk{88dJ;9qEeiFgzGf5nq{1M-c|m-$S!l>BV2$4c-}
zYw?%pDaGAm#dZH2h$q^Jze;{89&0OpGrmB3g5s~^H{(t_@$TGzdlV0K6#t3*3+kQ3
zhco_4JaL@(o%oM<xU2Z-^b}nn^N_@^^PakMkEVFISIGb0$1-m%@mO#1tNoukPB%Qz
zC*KF+349>yH5SkIll+PF%)o=Eh~L0?7U1b2;x96uYqWouxb9agac8*rp^iKr#$Eg{
zd@~-x^}gu4c=mMZX{r00_M9P}rso&U<CF1vvp9Z7N}d|0IUdF5k?)3Q@j7hBakz7)
z^xR3&JUlr@{1ALOo<2)FO#cSljflU2zo`9V#Rt%n!NcRkb^JxMSucDB<7|s(CgkVC
zcoz3+{m0pOv@Ab=B_6{YlfMm5;JRK9Yd`)9<9QZOmrK9y&u`+++2S9vVwKu6Mf_rx
z`vV@GDn5t(xy~G!hirxTmE@1aV^Q(ejHd^loGyL<7cPVF^abLh$xpz8bHu0M7vPDx
z;$i$sJUdVP8J;+o;i=2SOBw&YxO0X0{fuXm<`;|qRLAijud6Q+@4#|D)}9;0?~}N*
z2T$Vn)RQ07y^#IqcFB(=-vm$Nlkj8k&>fQZPHX<-1U!Z7{xA>^tdx8O`SExR?}lHX
zJ$M8BN<5A0`Q!#Xi$BZ$^Pu*ulI6aRKaVF?i*Lg}#-nS*-^6RomH7$ZD}Ef?r70eN
zQ2dFSj{j(_`E}y&vE94jp(n)keUJf~Pl<10x#MwnllTfp9y9PXem8z89(yX}%NqPT
zJovQuGx$o}c}9E{%Uy>jH;X?){y9AQthnx1Z{zM3@d|pfczmn4KELd9k<4cre}a4f
zk3T2*7aVys!z0_pQ+RvaeO~+_yceFq+tVM>{EL!bOnwHQ#P7r}$0KRU&ttpasQs^r
z&&Ahj{w?ts$K#8de@DC{$6W?@E5$oA&Tq8m6Y(LAJZgDQOu5%(DZCF}j0ZlI{D*i;
z-1$sgkH;Q(7#~f3IG)63GoHzK@PE>y`@?)Zi#Ostb|W76O7cI_e~<dt;<f015qG~4
z*XzBHapzlc-Cl*>6G3hs;`qb#ABu;+lf15Pdpv=k%5n$b+3zL4jGl?w|AV+5j~C&Q
zAI0~j=XyN)lXw|DtMCjy6yJo0ewMth?_0S0i?~bvSIy%WvD~IH_J?03uk+avPyZ&~
zz>&v5JcD0@Pr_rrhkTjGd2BxJ)a>DVFaN)eb1NRk*Rb6m*L<Pm_5Ah*9;hpRDaXY(
zc%n$W1-|cm&JX*F-{Qz4h({ZUx5J0xN&ITO0uSvc`7r0<%kg+)@rN1z9eB8jc$*qh
z^aLI|So|}3Uc#e?i|cvgL)>jHK8o?|!DF~y*EPI^^*uuJx<9wU<1NIevR(S)PD}AX
z4OzfcJkUyf0e%IZI7a+Pd<C9vEuLhYkK(ao#Sb9AU3=Py*TdhzlWoPXz`w*p?Zmy?
zJO1N$Jcakg_q$Z)A<$m(XW=d$#ZRHX1D@(2`M2?&c%qZIzOFn2cT2^uqyKE}!KdIC
z;lVDFZ&^!z@NYcQU3}j{@fCQqkNB7x;t%2Jlf|FGU&Isr#P#*UE<AOL_+yOcOFVX}
zxE>eI0+~0rzxZq955b+&#P#@XgNN~V_mO`v91jkX{QWh>=i=F6;`(>ZEAiOr;$PN~
z{0=;NhWIV?RN{d#;>Q$7{%1TC5g%M%yzynSUWuvVZwWi?@z^=y6WA{O@a%N)x#Y|6
z=nU~!$j`*Xv&9E6o&|W~Lh+yIS*|`;Jc4h;or}cZtsy^n3D3+EKMLQC2V&xv)3ZnW
z@elCAg)$HE`I28v&%t=;Qt@$&zayT!OnhIqZ+|?sNc?iP%b9ri-{QBi+!?sDSbS^^
z`N7qA^lI_*S?(Qp_8Rf7_+xnRdhtV9?#p<1skrw){l{l`2G`%)alDDjJ?}?ul>BQo
zBwvh&av$L4Jsz(u-U@ea6A$4%HGh}*WO|0<$<^Y6@TquUjrfPm=UnYiito$%{#)}8
zh+jj`E!zK}_{H=*fCnED|3-%Iq}11mzsbD4qWzDHPp&2Zpc0R55`UK-XA$%Elz5jK
z@`EOL;%RZ+&x7jE<a=NB&EkXUAA>v3itBt%!=qcoPh)*A##7IUPow8rJh)w4$A2Fl
zcwT%s*Uy`^{|)g<dNO!qhxoZQ<OjdvnK#9^<Hc9V{3PEJ*Zr_P9(r5+K>7#c5&VDn
zG(7x{<j3Nd;VHbRhWy|rJiSZuUz1;}{%*c+Q_qO+B>w@Pd{6vw{5L$hTl{pq*_E=s
zY2zp0!S^M9C;0(*1|NZ+g@-<nym|$mz$?gKf(Jg7{N3yi*W#&4ah-=1>Ys?8O8z13
z`JZ@{<N7%~_Ko;1mir+d`Br>j4f#RAzu4~Ii9d!Pf=7Q4*ZVUaHUE=%4f3brsh`E)
zXStI!|BLuT9KVaSzeZ0#IhOqGcm|(<uf@X!k}qN&w&9Ul;^&b608isD;=kjG+LE8h
zd864?G7o|J;-grvj(Bum@ox*HXn=Y^yd(Lu@nl2s!|;W8x{<hxuf((aiw`W2{zvi9
zf#UjkH80|^V(|^+KhXRkIP3ch?lcu&k2n6etZxdR!gyNZ!NVj!3_k&nHxute&tN=*
zKaEH6WbOkzy~hT8J{~<>{AK()JltG-BEAYw;ZyO)@!%1X*YoO&c<d<gIpp8PoukD+
z!LxW4AA;BLUTEi@XTv3u*Xz9l@k~o`y}oLRM_P${yP5y!hG&fr!ehrs{$b|191k5U
zejhzEv<F{SAU{}$$Aglupl2!Wv={%5o>l4{#Pzs%1W)7M)2RR0hDSO|-us{aV;7#q
zKf`~(Go2*=C|-26%x9vr_)~Z@JbIk?6uc{*!FB%`p*^LN*Yo80>RrTtWFD?lKVJNI
z`X5p6Ccd^ne((YwIZ^y3@*m?)NW2UFD;~mi|2!}*>zl+w<lEy}{5*UR9_=Chz3>V=
zg$MA<@HAeN^}P|#^pu|4$ls60PZIA}AU}9g^S#C2Bmb)Q_YqIvm3Z`I@n$UdSMBdB
zz6syYyTRgLubv`4w?K-T;hFy8LGo?!zyR@XEVnxz#!n?b6i*DKhx~XvjW5M#;?c0=
z`{S43DV(QM=UVN-L*!TDfkD!99^-ikj}I1KM}8|F9wL4{z5~zVtMISz#8Amk!fReD
z^BEYH?+4*A<Hz7x<2~@m@cf>kc-nXw9y(p}Co-N3@EAUVdAI`4jG(_j{y_o{j}rH8
z^ZJkb@HBoB`4sMsk^BYt%XlIpuH*Rx&lvwzd&Ww>jBz&fZh-jrQOAkbpuYr9Ob`!{
z?}jJK#CO+`@%PvKIpRgE*J#b-L-1*MV4CDh@cDQMpNU_Cr||ChGTf<<9^HRd<4Ihf
z-yg%>b0xojffS|j&<yd*xxU(sr_UFEndN??{TGObn4fyyj-8v&>@0Eb^22{L#bdL@
z^|~&odAtujC*q+CB|nIsfq26BS-3M-@)wgo7mwjD703@3;E{_Z-+<*V!J{$pY4qHQ
zXYfPFufv^7B(LYI=kXAJ3q9{?555Ke7EfL(JuC4#|Ka?(KztP2<p4Z&xj4gdTH$G2
zuhY8V?jp$_$v+r~hp!OV{qQV2hOZ+(4G;ZG@)eBpQap*5;n(5rRgw?Ylpn0ZBXRL@
z_~Ur`dU2PY?RXZ~<NX~x_#erue~Cx&bLgqPMCLPt>-IVncb7<ydKWx`x1^^Z9>*gE
z@`E$*>{97j%e+m&lQ)V#g<p)vmWe0nzYY&B7vD_&PTaXgd=mZ;9!-dQmnHt=8O`4+
z?)^{y@fM!I_5Q%8xO<!A?<Zg5zswsRz#HRPyjFqypdIe4l%9PU=P7vLPVtw?pQ$}}
ziO29Mcyx`p9v5?Q_a5=P7|%6$8efjzsXg~fzL4YSX*_nncrp1`@dSQsf&AcW?SD}6
zdVZ+kU0~$Sd!e=Bx?LLL$%n*SvY$7{GmnZt$#T1BKKF$J-lKMb{GczM+90m)D-Flf
zkBfV|z5gi3qZ`Ffr{^Ngr^IzW|Aoh%6n}%B<#=S1_%ZnXcpTU3v5k1<DakKmyKmS2
zXT%%RvkOn)zmor-`m>VP{oyy<-6lSsp87Y){KxUj=y7p(yX1F}?}R(gi|<dqx8`3E
zUxE+AQ!k1?P*;l1#$#`a>+|D<cx0#egDm$N?SD&LkLx?|?AzkK*gqe}LmBZN^gM^h
z@qG*A2Rre^ZprKQ*cZ6-f%pJ=oEv4{!p0B46L^?>3p|VOVVoV+E2aM=@;&g-C*u7J
z<Od`0_-EpJJ#!A8#?PbY3OxL|<Uhsl(Ek64JM=%H{-wA+PrZjH@u}p$!`-hXufH#`
zulEAbfBo`}_`@tWh`Zm4KY<UxGx)RYKjZP__mcPC=I|fq<DnnK_4)T2Jc`H2--c&R
z{&C#hBR$WM-==w7&ksBC_>Ynwz<sdK@XT-GFBC}8k9e|%Y}rY8on<mVZcTB09dr<$
zs3orV2ioBA+T!|r-4{>eLB>A<cj`!9eHtD#J_nEBf!b1ZB_7>Zdfue}7ChWQ{9XKE
z?cY!Q4*VHBga4;cey{_N6-!?4V|;>V@f+A5e#YYmOTIhvS>JoY%I$CIrujY1@z9~-
zNuEbK;@QK+%kh)&$Wh{(=^u;-TZ-%Rdztp&O?Uw_3lDUX`~>FVGCYR&V!dv_)14)+
z*Bh(x=yBr5((@Rez>mY9$1`{>`rpB`rP8C<8(-nh@#0_5Q{!ft&n(`Lo<?}+1j&C+
zz6Bo4eSwbmXpMKlBY0ChjK@rVDxNg?EAce$y^Qi7x8TteWw|Zz2k`{njq#`POi1$0
z$iIy{J;aO2e}%g}^S#C`GC!e{#LMYvj3@CJ-W(71l6(*P+u^a^;`;tqZ#>&a{CW1n
zk$9?~_>1hf<#>F6cw!$}@Wps=u=s8C+=yp#Uu@((=1AOGjYo!wN9o^yr_T`A=fPKS
zcVxbQibsvtNXWdUaJ_ChNPV>Q=zh``&){{Kw_bSmOv#^#568o2iO+N7F&R(ey~)RL
zcdX<eCm+W%xZclSfrrLR-aCB!$2vTN55%|P!3mN-m>qN%9$qBgoBa290`G=5xK-vY
zWAew~!7HR^GWi~O0>6^&I8^hCCBI=G`3IBm>^0(gp1BBjuN8le{u?!q@8o=bH=e#p
z@@;C!KX?vzmW#i`^UE$gbDMZ~`ai+l+r_DI_TWK$H$Ny`A@k#|l>9gJ9Ik$+_!)RR
zJcfU@kNlvQ`rVTMxIlau9=%sQLeCUDjh8Z>OYlHa@?FWt@i3miSK?XY8}Ru3(ld<w
z3!2C8WV!F+i3cTr0{JYS!S(r~=55T|TFG}I-x!bJ7vd#&2JeKQpgj*s&rA4l+<91B
zUq?*CGx${Um*L?@B)<t?j=Sr`^}fXYcpN{Qd3X|c)=T~j{1rU%nE2gXzkP@Yo)n+J
za(}>Mcr(22?J{o({0;hDJoc3IjK@3U*{8*SqGzD`GvckuPsZJ6#r3-V5<IX){Gyst
z^dCIFUEJA6{7&^3#m^`Z--u^l60gJY`!eqA6d%txKg6T>$M{cp<SohTcHGaq@bj<7
z@P*`C;E}f_uh)B>G>?}t4+HSfF3JD9rW8dqzgzqW`YUkfeet4w<p(i5kQL|j<HT_n
zPtmgy&)}7eXFZ<&T6#9(FX8cT#Y^b<08inMGXFo}u^%L_^A=bs^OnW+_195&WRK*h
z)87rx7$2<pA0_`h`KfsDCvk7{`H%V9gJ<!Z@bu4;U(NbHgvWjr*ZFx7kNz(HHa+j*
zVW*cb8}M)NKn?MW=r6oe<{@4n{xp6l9?5;7q4&`H25s<AE%Ex~yW!#5;`;n}8lJ+B
zB0mz(){*=LjB_#`EfnvM&(R)yFn$g0)|LE;_$oYt_ragRllZClPTZ*{Ju<6~lf}b$
zzkTE%)Lg}RX<x~Yq32NCX&_#M`!L7hfrG?#JpJ$puJ<v<;7MH9>wG+m&tg6=$D>W8
z|Myxlp#Q2j6Zclff82$;uDFhWJs!gs(!U)KG?)A&dfw4IzJ~l)c(8@!^>ux%yEtFr
z|D)$XJawexThem`o;^zZD)OE2*wNw(@l)|YiTG%?*O_?q7;(MdJ5769i+AR{u>eoC
z5&xS0rRr_PAHna{p4=CDdXKp*_etF8C|=Hby^cpai9bZoS9q|q_{Dhr)iQ5MT<>Ev
z!-J)g*Vh+aHIM(ya?eojDtWzMG#if|FRuH;ay*S6M9-smwwvV7Wt=Z*&k5r5@Jh|&
zmH2OXrn}@X!}q^i);D^h_$d5nJZ(IL2SfS!5qRAAbUbVPUwF8O^yq$aD<0`7zK(f#
z7<YT+FLx^*!_Q~@yKtws<ki2^JidZ_-8C`~!9J32$a0(E;gj>1+Zj*ddY|DmJkeM3
zI{#&Oyq~yk$GLdm6!9k+PaMzSZ?K=Q#8U$#e~@1PXg)0d$iY(d3Z9rEzLWL(2#=j3
zeknZ#_sBd1qT(I!CU`ja1-Ra0ywp3#;3?xh@Zb!|-$Bn%JaeA-FZ4`MKVSSo{5(8y
zfp|-LF2~ce#UI0O!Q*qq_h;T7!IKw@U&=hZgooyfx2NX|Ja(zL9$$s`%KSJB#CJ2!
z!|*Kr0Nxo-UM6{O+Wkiuk1Q1Lj+f&J<CowW{212j20U=3^bDZq0X%}wBfnL9{+*xS
zjRzNt&m{jdp1ej}pO5ytPv*hBR{RQ<dpMrNH{tE^*maUGVg66n{Pp68)scU2CZ4`Y
z{MQEJQT5g0+vvFzPplEw`yos4>^<W8_Yv#y$b<R$SMg--3!1&h0``Y5@z5jU@5*o-
zC&@gl6Ca5;#AEm@yanz&D)|ZciFg!u@lkjje;S{MN7hTvaQqfLh3oZ93U?lpy!u;s
z2=779*Ld7`UGGM5?sZTGuT8!Up2bhX2jZa(vfR=5L_C4(^U(r4__*Ztd2kIL-YCA6
zo^81MME-hxg-7r#+p&RnVCKdj-XwYXulIR%cmm%@e?L6(RDS;i&Et#7UyKKzmb~77
zcm$8)LGsUQ53b{>#Iv}bA8L3f#@zUW&qz}Ja6F3Z?_>ACW1A(vh2@UH!_SJ><~X_#
zk8BZdO#UYA!A~at0G{3|dHJv7ynwsgMD#lIBRu?^cwhQ|#}oKuyy;q5-@tasU(Ry7
z;fd$P<-d+|I-bS#xQOE67bK~^2v6ecSndiu`l96Lu>U-&{V$2@Jf!i^E8>mGSK^V^
z#K+QK%exTu?<e4=;fLVv>-6Jo@F=d^y$7De`;k8#cixbmXYnYW#`QdK1s>QT`Qyp2
zz{9vcUq7M#rsPMnUEal$JM;Z_?SETbm)qoFjz@eI%RLTv-jVzeJc38?+wmEAV3*{_
z;aA`>+`CQTKbGUccO_qrufr3@U(x<de*O#X$928xcrRFT+c$;lesw4wdrx|{vD{X8
zc(?cxd;p%s-@~WinfLSai?#m)aqn{1f2_uXABum?_IgzPV{zEoiidE$@47?#alMcF
zA?{R4PZ`Vo29M&}-@u!Y-2B9Fy)J5w2S1UX>*?u;r*SS5oYU|O-jn<|?fF!CYT*@l
z2!D$KU5bZ4m;7Av*Wzj8w`%@>lJ_nT{Kx&c^M$x~8uuSh;wj@V;ju6C^Skj-Hs8O|
z{;$OKd|vZW&L_qj<B6~H^GD;+Z}Pnh9{M)lPsIb@<@*>sWBgn^`F(zV0UrAy-<RUy
zJ^8){cYn<H6rMHyDxUf&KmQ3H|2f}(!y~`s`~K@?K7+sJdrRE;E#FVX)5eG4iQn_{
zQ}L+N+uuLxv!BevW4InKH{fynQ1YwsEbjeJ|M57UtRek{6z#xM1>*aW{}9jMP4GRq
zvybFU@%oR+{Dg45&*tKB+$G-*PvUxg*cW$dO8)`mN8m1gAU*{T;r(mL4=%>zb)}~R
z`D^er-VwhI57d*q&gWV@h_@jB3?9Lcz~8~+CjSMV!u9?7+#f*Y&U;RMS?*!<G{RlH
z8`lrb@kj&7>weN1j~efb$MD1HAA=|H-{_yI-cb6B$uGdu#+Tq({0R1|HMqOK^t7aB
z9UjJy!MEZuoR^!<n|K`8^L!<q!0XcUGoCcw;BlGfl<~vywDC@O20w)UlX2$&S+4*-
z5)a_*n1?BNxUuBtvto0#zgYY-=KlsfdWiU|yr8;Edzy<kV!7)zkLx@<fyZ#&PqyQ6
z{3v?f#8dd8_$PP<KN|l54;&%m(fz;XM$Q9x5Ayrtaa_mK98chl$p`V2@t$}F*Ym(o
z+-V`>(d{(>ckw9w=iqVtVtgJRI8u7r;Me0J+{N$0BY1aw6Q01E<1gW9d<woB4;>}T
z^`6%K$M?8%w0IF-_=L=J0N3+yF&@STk#CJBaovu`;~89!_fv7FM3!4Z&lz|SKM$Xz
z{kZmDsQq|P@>gn4OX)AfZ^T2mZpXEF1V4=YW;}+=v#R5Kji>Q><Qt`A-omY9xyRu_
zJdWRrpMr;uk-WD#{Kq)lX)Uh(bMY8HSK`j~nm<<ZXW;kY5qt!`1yAAH{{bFqBR$>7
z|AxnK%@;o@>+7_Y{8aKmJc?_+AD+dpAs@lx!Tj}|jR)F^UqwESCvfe*7kArBej530
z+K=n&lq??VAbEWs=YUPJUdfK)7tqrZ4|WpwZd>_}Zg>XQ{2)BiIX^!E4;&}1<G%=x
z<BRCO9(POg^Y`EhT<7O$JlG{a{~n&i^?CCbJcH}&po5>1d5CqDp52V6Gafx&T=%!3
zcpBIJEs6)bNq!bR*WgL~Iy{MoPskttcJ0TflmAHb-6gN*jZRO?_|y1K@|WPr6D6<P
z>oq(W60cK3{=retNKdGTxUTOUJb~-_ZpWRT`T0(pr6+=Gei@!J`E|H^lJw~IdKnMn
zy8nEEr*S>L3ZIqbMte!m9_Ha#_1@y|;bA<|Cx85(;3-_kAM;)q=B_i{lk@YHcnsJ4
zfUT0x;5z=rc%-lNbY(o-@dQ2#4|q2;{N?tO{78H-9>cw9@gLLh@F|ji2VaB-Pt70y
zOL!dD@fSZQ%gy3C{tkGwzx3!h`)eN8{7sraP4c?Fm3R`@{jKYES#Dr}<aIn(;!#}p
z|J(5_uE*B~JU&o*bUd$Ve^~q~=I3)ffnSIhKF|CQlDytWYL2JyTgjh*M+Zwjfe*(6
zL&SA`r)wV9^}PyD<9htwiid|vkDi~`;?6K}&2PnHxaQx+gTwRlU*Sny^EF?Pd5D~z
zpKpR^aLu>I<0B-m>)RL4;<~=$@bDRu*X<R<(|C;eT&DSv`S~X_kKau`gU3cmUiY8h
zac8u6oP5(4WqsqgZr`qW=uFAqL4G)%#b@H@;L$OX?}A@~Cvjchg0w6*c$Vb#_=@34
zT=UB{ACbJC57*&oT=RjKq(3}X@_IZ@#N)UwcM~2MCwV>pG<{imqWBlAS7$sjUh?|)
zJ_GQ?1o746pU1;x;(hT`UXlI;uE*mGxI0nulgWo)m3$o6{Vj@Taoyh*<Kaotqx-{~
zcp6_xfAiO*KUOYz9nW;!nJoSx`4pbTbvzfpE<NG1C9mV@_J(*8*YTW=2d7A0w_{ZE
zxNfhjH9uAI-erUTSc5y~h--cu9>cxq^&cPMk!g~@0I#z{#+kuC#*f0&6_VHeupJ(a
ziXTM&G(3)9!gWXlcc)AKQS#^E8T=>wGW8jf|Aw9=>gS0s#qY#p7l<#$H{gNU;(A^B
zJf6VMFOUWA#@)G+e;@xwdoC95&NzR^!}wWv(VJ{{d@z1E9*9Yg&Sw|R<GNi2;KBKl
z_ip3(k1{-qf57@)h-WU9y!_X3uGO9eBEQmem-=PmW%z@50>2G^3=c1q{IGrG2V3#v
z72+=b5}v+Fydm@X37%b??{#;|yalciAIW+hi$|{&*WX*{ji;^???Qew?))d;FT_Jj
z#Lr>9{)H!To&RNc@V}B@PJRuZ#`V7Cqj=y3$?JW;&3NcWas3>ack#$g;x!rnr+9Rk
zc$DRShi7m-Pu6-%<}JKj^6HK86h4^#65PE-@^_vs3+RNW>-O>CNtW9mPt+6F`%4k+
z$Gyu8|1len7fD{0;y7318GJ1J!|iyuf#ki@tp8Y#2lvbO*YQ9={7ZVi#GU=cz1toB
z<99rTr<jL>-j;cbHJ1G4<lEta1I6|8-}>N@gT!xTxx+Pou=o&q#^X_3_qW-22H!+}
z0iHZWdLF=U(4MB^mlnwn?!%oD@!E{%2|UnBTz@Za8=gH@{95{7$K!3pr{NjxZ!3NP
z{y*HsXW})z7bdyaH3_^6-UQF!*WvB(SWx=)^G15$kq+W1)@uarb{0R8^UT?r?;?H$
zemS1)CjKbf{U$uwU0gqR;yyeY691-_40NM<AMtPT=hgd*Z)CkPc<?mw?kx8w%?}X2
zsHXgb`nzP_vV+C1s4add9y>$)ch>7T^)tnfV7dM9B(CRy;kY|S^7{EaQ9O8-c$#ru
ziaTS)|2QAwG5lz@%e{DVyyV|yJkR3s3F6*mlK;ry(K7Ke{8v1KFU5<!!rXopn<)7P
zjI%2qpCtYOJ^~L<7H@*b@aWm%_tSqf9-Jb65&jsS#9w25-@)V4Bws}Tk9eX&{7ZWF
z&B*xUQSmd`?rrewOmUt6Q}NXK;)k-oRp6Nm#r65(a_yNbUch*6!ku~INk<;{;Yqwj
zUGb;z%;l2b$^P~Vp8A*g&v>Q!)%pIL`gP)&+K&GydXMwNjpEIjhhjW^vv?`<d?X&Y
zRs3S9aZ2$xekFbi?yivh8TjdV48Iefj0bO%{4MxgJdLkroL6hlD#`yy{#Nz7#LLOA
z$Fui{>-EnYcpxc$W&<hu3Xg6SpGg1jcm}^2-+wp9#S@ZOZ-cuj@yp2f!IQ?z@X(Wz
zuT?|-!5loiN&JD@;*0UXR`D%`;y2@&m&7};-1~6%W%1eglXwC@AAd#juSot#_P6)(
z@ay6alK&YGydhqX@fW@?^W*Li{}=fdcoJ_!zB`_NQ}Vk1oPh^-ijSaYIv&S0zZlP&
z{3<;Bmh|ZB!DsL^zJUG=9(h~xv+&>X41Olw^aEMn&^!70Zg>jU{7Bs0C3$@wKNnBn
zUFctkXH0%M9(h-KO36Q<J-Ckl72M58{t5D5Yd?M<+oi#WvR=+^$<HO<0gvJTE|4D#
z#{(ZqegHl5@yJKw8*55_1@3+(zMTA1c<OU;y<YlEd;TZBwYKy$_(;YX{8n7A-`e3>
z{BHV3;)(AiU&#0?@Z=ux^{nrWc=Shc-QPCiX<YZu3?BSR^4?+MKlbrn;QRNVe-_vG
zk6PgIU&M8}9r5t5;?o#^A3XJ&_!j1Kr1tD{vcJ5~$e)eJYKeb`&sMJ^-kW*20#DZ!
zAGe>3|8_joMEpW}9>r4!i(k5r<X^(Whl#hMzY>qR;`;jrH7jL)0!N6~B=6$xk>UfS
z-sy-(@jL6t4|;3<Sjp>s%aM2*-$2hKJl;m~`Z-JI;mNk*qgdZ-@IX89mGs<=r|`@0
zb$GbF<o}Cr#k2Sl{0%(bLGpV1eu@V=itBmo7tI@Q_zCmbN%EJ|e-xg;H{l)dXlKcL
zxAFZ)4?J|7_zU<j?JpH)dYmb^i+eAh{l|RV=^}Yuuf=%G_%h9RmArobz}<NEc=7L9
z@J96$#QWmg@z9ClpE91EcrYY>I{q;p$Mx^OzQYqeB(I;FUE3?n9oMOz;-As8Kb|}(
zKkwq{Uisbz&-NDA{jfV8I61%nG~DScelhDi3Xk;@*YTI*@l*2i=V^a`@y_&If`?BN
z|CaT-T77`{cldJkf#Uji!K?8|SX|F<PvY(%aozuS;wfD7-{7&ql4qFC?|2+9V?6tL
z8zQ$|oFS5*g1dMWAC7mx)A(roWIQ-jdh~VKXgrDQb$$gN87BD)=~;+p@U{3&cw%^d
z|NXdoy14c~gQxKs4W;M}JUm(Q`g&@&=J7BS_l5RPk^COcx4)`S6W7-@bv~E*3|5Hi
z{o8}^<hkNHKP8%<E<T9mcERH_#78xk@rUv3f5aE_JTe)N-5_2}&v|&_M)4Dv&r9(P
zehK-1<I!c3e~kQ6Jh)u^rJ(%aHazfxct_^vVLY4`??nI8c>E>t8}Oal|BCpL_@{W}
zRh;$Rqdjkk>+?&&|789{JH)#&{{8S6{w)26;NhK;FU60=<8O(-OwaLn^lfq7?)|m@
z9dW&m9ffD`JLs9D{ktR|$Ir*zcf}*j=cU^Jp7<pE20Z(|_;AL*77u?Y{s_Je4}2{C
zBg_3zy^{Xg@`Eq&*camZd|mSkndiWl;)CgFibrwX|2yK@uOzR}3&XVM8}W|x%*4a^
z8?0{}4}LHCUaZ#&Jobb5HhLb=o;~7=I1fCHXX^I#llu2Quj5XA@qNjEj0X-CKc4Y?
zul>!$Z^8?`8!Wl=YW8sP3GBCx@W_$kdfq-7caIX+>y~bK0>6{>8i<FFmb_kXPsWqD
zUT@FG10|B5N6!*Gj(5fH!qd3U=i_*yrSw#ie_eZ8<@=X->=^N9$=A!u{DfPJZ)7_j
zfd|@%>v^&ikK;*tPQ^oQ^Yi2J6#hK<+1eA#&o99P?ZkCH@5iIKj^|lCizn%S3s1Dq
z@Ba#SJBVw()>kqQY5Ylgit$88$*TwPXeaTl>{ln@p)TV0@p@+zo;^YQ5%OhtvWNIY
zmOCAHdy02rf4&5d^b#LQ{wh3$hw=a7f!>mT6Tb(~;%o5Dc%qNw2jZ`49&gTm@-goA
zmApPreTQdoy`R6&*D}wsev)rMe-k{8H^N)vNnG#0b;HA_NRO`XU_4>G4A0^^Z?m-L
zROy+(a{rB|@NxL<c(A|Z?`He1#WP{?a`Mk={~+<J+3xRYeyI52__ugqgm^Jt_ZykF
z;3)AK^f$wk_#t>(JdHPHd-cY%qowCi`iJ3xh<F=(A|4tquIIyPcnTlJ{y7JCCrVzg
zqb|c^lf=(uoY&z_xwyXGzeW9Q@j2v^+Jo<Ay`IFQQzgHM{7c$%j`-2!cjLin;<uCk
z0?*+3`S9Q4q3M#>^N-`b(C}YR;iu74hzDj!zAN+73=f|tuAd`uG#<Pl--FsSTU_r0
zl;UapSk|it?p!GOzASer9==GtA>*8gNAZL3Id~jzj9-l>@%`}I@D#o;{s^ANo8d3u
zS^QA^Jv=Z^#;MQm1>Os{+&qV4;uYi@;wiip$72)x|D*2A<0Ct&doKb6!WOZH00|;y
znHg+Zy-Av2jAk^O@MuPiG&W$IR;&A})t**&yO)^}tJo3<o5B_#@DO2NLIjwdfG}W|
z02TofLf}P!AuJ&go7uzrojRx1Thf@Am-l)4W2W!7PMunA)v5JXZ9RqM-zD-F3SWCF
z^VbPKAbj>unZH8#Wy1Ua%$HvfzAn5j@=q2%^fZ>&^Oi3az9sw_B7e2;<)^c}o@f4q
z@YO$O{zj4is_?02FxT^PKM}tEOy;`Xyu%HgZv)R_uKOW>Bz#%8?uR^Bc;B;GUiU*T
z6+R~X?<78pTK+jKugB3(65hYU{L4}fUm|?#xy)aED^~Od;j1rUUKRcC*Lwbn`8C3?
z6TT^2?*qAB_}I%>{$1Lx3h#RbbKQ@+^^ZA!HiRD#{pSfE_-mFwCj27dt$?2tz8>&~
z@cvh_p0|shrwQK>{$=5-!q;BK^16L|ht@BANb371g>Su@<#m1hn()5Y`21JG`-R_0
z!oBNHI3I?D-&Xhq!pDSvM(Wow;RA1E{dzo76TT*V<JPR`iNcq!X89?3FE1Cq@lNJ2
zv+D0%n!k(rwZcCweD&STUm*P7gpa+4x$Y<2{HL6*P2rE1eEWUjv+rYhz3*j6`1;>5
z*XLFp6F&9<=4V9DDJ{RwydwOW!iTP5uG6)u`G=UlMdJT<;akFWx;`O%<-;tm`Sn`Q
zM|}Qs;TyugAo}n8GtP&#Ygzt6iRUiin;&Ja*NYz_eCuP(KP&P@;TxY|uFKn#v>xGl
zo#J&`&nH>FA@O;?@Yzo>f0)>Ze-gfa9rNQ-PJSS~|Fg_55c#|PoYOV-dFD5}9S3lc
z@Tspb*XQ8<iSX6ynV%=|Sron@T-)cz2%r5r%lB@{9-b?F^V`hxqUYtp2ficWO1`~U
zc<bMp>v_(97QXyl=GqSYMELA~Fu#xJzsoN;y(_}kBt8!iKK4VF|Cq?{7vBFP=GRJm
z9wmJ92Ifu4w`Ji|H=j@%eoN~63x&_#iutm<_*ZK^cVqtX-{FAYE_`i(`O8HA$F%+n
znD3VPjV}pb&N0_^{`*=!&wRhc{}#XGd{`|o*YoEC!ncN*KUeZ0Cwygu`R9Zm7Ty|V
zeoFM0g>UX<{zp>Yo+!NkBIde%f4=Yy;SUr2uN6M@V3xmL_<My9T<r7fwEl-M|AOTI
zH-vAEGrv&k#ZR@K!_4*h;kW%S&Y#v1=6e6heS|MhF#n09H?R36%-<sXi14vV=HHX}
zKT7js%>PdErzO1aVa)aX?URI0oe+7^^D^Q6)68qa-!6PvxX%Ai3ST?P@|Q?FH--0I
z#$4N_A87r;UnTOl{1xZV`omfN3W@){gb!TK{Hc=9S>bDc!d$<{hYDXUGM|?CmxTAt
zGVhmgA1A!O#9W^*^q0a1=9r_IR)25Ryv+OsqUU46*DK8LD*TJWHxuSX(X%CdY@YcY
zMgCUkQ&Ycsw(9dg6u!K`T(@5Z&1=jbB6=PweEmx1?~!neTK*LCvy#tC!uuM`XGG6)
zgwHmaYdic};akFQFZJTRT2Ghd?=N~bgb($YAC_>xCVcq}bG=S|gVukR`71=v?eT&r
ze^wvO{0&kb?jd~Y@yy>T`p*~M|3v0l(Q}cOe-d*&9zQC)^<?H_BL4{CYfoW5AUqMi
z@l@tlOMD(HeC6rPA1U#9uJEmAFyAZf#jAu5{RQ)XkoR@9@c!pAe~0jEg>MMo5dKBs
ztIuQkZwddd@RjE?NB3L({Yvu}`23ETz^8m(c_H)HiTr@@vA^{Bknk<xZx;Cj!dG9!
z^4iWnLiqBFnd^SnqSpTs=ARKgPZB=xSIpla{CUDRguh$(YlN@7l;uAu{Jp|wU*_}A
z2p{@i%r`~;o5K5F&ire_e<i$c)tA2;Iuev`o5HpH1;RI8!SZ_E^&!Gn|C;#+q+A^n
zKKm->gTk*6zVd43ixQuX@V?hDf41<aYkA>1+?Q+puVr~O>+0|An!k=Y_eT2q{$BW+
z@B<?M72$oa_vL>qd`kEsk-t4Uw5t9J*Y@f>;hS$@Jy(kSCBmoP$XvJM72#{be^>J7
zD&gyIVtH-%o*{hsZ+!mO!pGjs{Gk%=dxWnDf4uN73h)10mLC!R6X8?B^?Jk|urZI)
z+qcH@*NFUi!Z!kbvGCQm`0@`I-g+x@U7lOQ$KJ;LYSI7a!uzgfuE$w_EqwXy%pW20
z?-#x){NcjCp!L6l<?kW<N5W@?pC`Qkx5aJ*^1Fqv1$@8ojetK&_*TFlBfS5eete!U
zd??_5D|{;8pAy~@J|yw~rtnqa1>wJg542Ui7OvBKKjHoF;`nHOvG6hBI^P~Cd{+3~
zME{cT<v`DKg|7+UEAnp=z7_CK2_Jel$7i3&e^=`d_#JP}>Dmyk<G)LI-+TOYjR_wT
zuG95!;Zp(c32z1bIl@;0{s!S|!gYME5xyy0=i66=_q~_nsrhgH4yS7%;P(|i7VvT5
zv%-6lZzbWI!k;Jnal)71$KmRHc)9RZ;X3{w5WW$}e_8lez<(~h|L=VL_rOM3Du+V>
zzgYNGz#k>N74XLjUlFe3`7+__0e`RXtw7J0g!jMS&;LFQa8x{nYyE#Hd{($F&kq*9
z8t}64P2svcKTYfZ0EesjTZAtQ*WrFj_*%fft@R7n@9|ccI8}Cg-OvBs!UqC=MEF?1
z7lh9W*YSC(@D<^@+`eA;TEMRpz7g;ngl`4>9=GTC_kYlj|6buk!gYKu6+RotUnP7w
z;LjAk8t~T%Uk~`lg>MG@df|Q7`0>2i9XS320l$y%G2z;7Uo5;OT-)uE@HOE&y-yIn
z8Ss|~@Bfe=pLYo#60YCZKMS7{uJ!*=_;SE+kB$nJtF?eXK=`I`T@LpN@B6SHpIPAp
z0e`IUv4Fo=_^fap&$kI*5w6qqIpJ#o|FQ6mfZr1XYD(8uz%LTs{}GPAwyReOUlINk
zv8%5VK5(s{-gV()!gc(=D7+QOe_!hl_-!!IR{0<B^Mr2%e4p^GfImWb|403Jc7zWF
zd`0+_a9wWSAbeT4F1Mc$zAjv+_v^y90{%<k10VC_b9XFYQF_OO>-Re>d{(&De@ys_
zaBZKf!Z!l`XTtkG&f#i1{2Hx4;2#&hCR~U6ufjJ2euLKk2|r!8#|BqQ*HFNB3!e)3
ze&MZvKT7zDa2=nH@O9xj-~K}QX29PfyzlQho?8ANgbxIKOZb>@T`%r*7f#o@@OMhR
z$O>Qnq@NEbg|7<N@joqmBanZA@U4JfExi9zzW&b%9}4(Sg--?i?wI(Z_tFaZUg0YN
zze4z$a9uARFMLzDt{1NsKJaOdr%vxjg--?i8^V``YrA@De5gY4Totb0*9F4Y13gED
zZwc4+qAq;sI*yO#&lBDfuIt6Swf=yAO?dx?pRPU}6tC)U!2eKqOSn$gMZ#ACUKG9-
z@Fxi02>7b-E#W$!-!FXNGaOHyZ(kEW7Vz6(!!5;sHsD#|%K^Vk_^NPSFP4N4`~!!p
z>&1(OZwlA>@IK*vpY`+e%fg3*Yx!RYp9=Ur@gb@z&jEjs@Rfki3SSHO6NGOBd{y{X
zz&|X!|8pFFT`#^ad`!5m7q`0y$8%Y@eqV#a*8)B%d{em2ho<np&-?H9`N9W;YyEE%
zJ|$e2|IZ3v3HZ;1ZwS}*V&I+}|ABwxa5aCZ@Ro2LZdLedz@I97L%2@YD}`?b{957t
z|HR>H`ELjx3iz!sQB37wO1O^C{e&+I*Y)C|!dC-+mGJd|zgYNYz~3*t?+YAHT`#^O
zd|9}z7r*rf9M7?T_S1EL;j_YZ{ErA<3FH@quLb;R!Z!l`df{6EzfO4n7ybDBr|_YG
z-w_+3RXzuNSa?ggt``p%zA9YTi)G=P!gYFIDZKw*I6j(xNcfm=QyzrR3fJ%VcK7CZ
zE(dzf7rrK3*NaKvTLJG0ANmr<N0<MXYW)HKsPGNpI{sf5-uGocUAGwEcn%5I={isN
zRKO1lZv}io_)5V4T=<%B9iP_=-xRL%?K<Io|C{5f`HzJU1bpB=Ql0~TNcgO9T`y|F
zH-+nZ@#n%<|CPhl`S51p>%w*XH-v8m@>|0DH+?<*e<b-F@Qm=OfL|uO74S2{R|5WG
z;cEeZzwiy=x?XGw@B0eJQ`d`IpC|b#T&MSe!dn5qMEI(3oo@}{>%#SWe7^9_K+n~}
z`@hQZ(e>i<!lwfMOW`ZRb-lRneL4P{0Y5H$=xeNBr)yF8Y`~u>d_}lU*Bgbe1^hbU
z8v)-Ez7_C0-H+qhf4v`{jPNnxI^Ql6J{#~S2wx8P>x8cc{L{kMh3k6pJ>g?t=lJM)
zai{xpJo~=ET<62E@B!gEKOZi9Dv&=bycO^l3112LyM?a>{9lD{1pHURw*r2j2S`5u
zn;-u}!iR+Gda)pUR=BPgE5cWW>-4@&_(s4#E4=TUez-RX9}uqJ@4a?$JjaA<{TB&u
z3D@=F3gK%3f2!~;;ksVDN$dX>$4B#j622l_hx;Sp>jA&ZZjR@ca9tj9!u!ANr}r}9
zLjgZ4d@A5C5#AE6<MVFetHO1@{j2cxfZu8l$8$5_L&E#M!|~L5E)_l?T-S?73tttk
z>%~ij&;Glg-VX|27Ovxez3{a_{+18qcy0vz{=&Bcenfcxcl~gi!iNIBB77>~Zxh}M
z_&*C@5w7dSFNCiP*Y)Cl=X3n~{)6MA(>o!2DBxELpB1jl&$ERu3)k=E?ZQ_BJ^v_t
zL%6ONKM~&lpBx{}?{fjib4s`_{}aMj1Ktz9C0wWL`N9Xb{PbR}^$XYO`ke4qz<(-y
zCE)iQ<an+H{9@r7!gYN9M0nr#I6gYxo+^AG;BOW_7Vs|!pAGo0gf9!%>H32UIi9P+
zb$s>;-w5QVg>MCXQF#CNIsRJz(}WKN{B^>o0)CC~R>1$a@Rfl7Quvy1UCw`hh|{$x
zT$l3)2_N`@|K1-id@A5=;mg8xx}GC^Rk(g%e=B@F(DQNOTf%jDzFzpy4>>-X|8|Ds
z-x99N`2&Qn2mGk;{vY}2st6wo_~W#G;W}L}6uuJhtA(!x{5s(q0soHhE#bOc-6G5B
z8n}Vusq^i=!p8!BNce2PYr>ZU{&eB1!nOUsR`|e=IoxHLcfDCo%D?b4!hcWrz)x6y
zP51+aZwNnoGj<pkKJ_z}|KQD;pU`^#i@DxERu#T^Gv1N%1kwL^;j_QRT<dv(@S)#k
zeh1lC_9o$Dw`H#PNv>=8+c9s8{?7<s6R!7HU$5ow#PT{mH)wg`%cAGjdCs??JG1<^
zB_DoY_`qG6>wMcId_(y6MbAZ=-;L$3lYNE{6TW&+=K8+in(*~MVE$>*b5{7uA2PqK
z#OKeno_mWPk^f7rC*W@szA5|#BL5!Y%LA-uO!R+3>$wl}e&PQpeB+Ope?#<qRm-2p
z{F}nRD}3#~%x@6>6V31E^IH};|JUx%{8kd~orJGHfcbTz=ib6sb}@gAl+S|jvGbY#
zP`(d3ta+Y!Q}jGS_?qzN2tTFe3oQS;qJLTV)F|_1iRbf#Z|r6M0@*+LI^nI0n7>x!
z-zR+FV&;Y0aKP6IpFP5SR`$1FFMRzN^Pfn$`l;sA%)cZ2j>D3l4`+VSZCL+(g>TI<
z|JVi0_X=NMVcwN^9uYqFT;}N3s=v#Hx1Prw(~s(}DSYMm%<mxi@MPhuFZB6~gs;7b
z`CaeAdfq5}<4w$O5dD9r`J0*diT=-MzQ%lp)%1Nu_|RLJzeMzWTg$(dx!y1LOW{**
zWBw-5bB7Vm&%Udf|48_KG=DquL!$pe;ZyHmj_#lOd$923cQT(6J|%qPUCcM+y<Z`G
z^#jcHz1wvy|3T)@lK7k!K6?%G0pU*(zAXI5!k?r0hgkk=!e1-A^<m~19;(0h2w(jO
zb4)9#zfTF@xR$xLS6>&t`B9OVbp2R(|EHPXS>EGqN5u|rFu$DD_uW<aitulV{QZP4
zf0pGRDe?v3o5Jy#gZdlS{BtZ{6Fwt+>hsL65MC3$Cj6z6-p6S9e`5JLsdvv5zWy)F
z|5Eh)mGIdwG1vRDUN5}w%gpun;O`K=_7&#u5<Pz}y!BP)-x2;5t^aGxpDz6S!ncIq
zTH=3;y;7dP&hqObe-Gj7!smsbFMQ}5EU&*)c#!ZF;UAWEd_wr_zq5QIdM*{dA^cks
zpJn0e|H1N45dJs9$F`WiT;BWVgl~SI`CUc-mhiqGFn^%P-|mm4T>Xf-e(x6wUlsmJ
z9Z%s?H?aI8BtB0TzV>70FBAT1E&o&Ie<ON6DZKAz%pWZ6$bSkS`z7;7i=Mkbh~v5b
zU(9bW_2pvW8@ISbX+BTBhbjs0yCd^Y--`o&s+PZi`OhRiZ_s>@x&E&9^TO9M%<sF4
zJ^V`e<|CLtTjKe^i#VRG%b6dOe7;Qh`W4JaCB07(-dAFNMEF~UPgR&}yLzqW33I)l
z|4UlWJoA_R4#)Gy!dIKje_!Hx`v*&YwwOO(@?o#=*{hg8M)<t&P2sv<_e{;(EdL&n
zf4%V44)Y%h|Fq^^=7)uUPxzMbUrIc0cQMCv>om*1P~?Y&ubg4NBK%>(2hK9@6Z>;Y
z^T#s(U&5aze0`a@uD@^4@=s*0>(|G%{F9mMb1(m0_|%^=f2_Rs-+c(jf8%M)-zt1q
z_{uYw<1-@lH>LSAnWNcNe>JV=Sw4TV@c!p8f10H0)xuYw$NU;8S05DK`b*~j$?E$y
zh0nf-`Im*?5*=V#zZ-iobA3M812ums^I_5dP~pojXFekJbW!;FtC@dD()D!VE3ajK
z57F~l;cIVT{&|VdC$;<=ng3Mud|UIsVg5+rzq?P$&zqUwUibyV`_`E2c7ICqxA^jP
z;r(xA{!xj~^M!8;zoY1XyVi3x%il}*r-cu^o%vIRe@pn<JD8sme)Iht|ABWgznkRG
zpzyKxGQUFFmlMKQ*O}iz^8Ycy*REy$?-Kv#Y59*bzpe1U(elC{FY)=9@S%^hy#B7|
zYr^|K!TbTz@ccsf*uOG=jFkVok8`@#zry_MlCBZqYhP!s`)|jDk9~vrk0d^)H2)@Z
zJq~@E@Gap_lytpG`0}?{{*97v*9af_Pv%#P{1>zy;h&KD^<ClXKV<oa#Q&BDI9)?O
zVg7rfXP59P;SZDe9~8d!Q<lF*<gXOI{4?fX)%Hqw>sQRbEAnp^KHGOxkz0uVPigs^
zF+U`Fz9oG9mdtyi=jI1F{$sz*{4S#B-oj^Z#r&}Fi-oV<n)xS0&z}fi{vDq`LHN{d
zeEtgI1Gn}0hlOtmznO&lFT(q7&+@O7aJPi73I7k_x5NO1?AYoZSYG!V?<IWpcbTt?
zd|voKKl4`$pAfzwT<e(=zH&#Fzf$DS3h%oUb6u{UC44>LuN1y~XJ7t3!pH97^Xs(!
zyZZd=T7STQq4nR*m%j^MsIv3F=kwjd`|j@ZhX`K}_@%;^f1l-VBl*x2z9Rf3@*bZp
zeCVDm4|AdZUZeHgi@EM^d|2~8V6OY&UlP70{25Xof1%~?!}1@L@_+9moZhMXGrv&m
z(nEwV?_&N4iT|a-H-&5cr-ir9XL)@-!>hHPLFT%B|B&VvGXI9?|Dx72#JnQ;@C)Ia
z8RmMvX!iuie>2NG5&0S6Q+ejves;CIa6SHdnegQT%dd)__X!^uVg6jn&+CM*|1tA7
zO8oyrc<VvTb$z_;Lph!U7cu{a=-(~8|6=C4eLpOGOStZTK3;h1AuO-$)jPF(z`v{I
z$9(zwUBdC%3iuVmTl;+Z=V|$Xe_G4$XZgD1L*G$(FTy_{d`S4}ILmJcf0Xdn0p^dB
z{P|PiTL+n+5&2hW`9sWgd-opU1BaRGdH#P9J|_Hp(eq2KC*bEza{O0?pC|H%g>MA%
zR|@Yt!r^ND&k;T(T)(gP3ttod2GRc=;j<I0r!M@?$2dM4!gYS`6~6LNme=|#!uu~_
zuJu1l__}Z{|5o8+M_FFaKYU*Jrtlw0d~VQulI5Q-@9VC|IiAbM{rEJ5_f0YXYti!&
z;cLQwE_!Z`i7&FlYbRL#wAiZ&;X{`(*Y)wwgl{~O`A4Nc^C97@v&?TM_4j7zcqsj4
z=6e3;V$Cbe|54)kWZ^3b^ScS()batp=!Cp4;Y%XFBz$U~^*lrP$AoVRzmv|-Y1Y%X
z!18}9@;%{e0soxv*&55AxgC4>rtr-k^Sg?kz8TSfnt4U|-G#RT{y^cI!u7c6V&NNS
zSkHS!&!xgw&NA2SS55OJ=6XE-SmA4rX1*o)@ND6$k7fR6qJLHR(BqiTNc;6xt^Wzk
zv23dTJ|TR4nfZ4_&sT-7J(0Pd@BN<E|0L!EB7cXIoNrUYb^HDR;j_Z;Eb<Q#z8vsJ
z2wxRm6#1_3z9)0IX#UjS6NOJbh4~Le{zaNUmHAOA=daWHpT=C<fe&c;r!#+o==rSh
z4dI`Yanm=2udT3rUF82u_`qK<|1F8<T`uMP8G0`BpNgKm<}YTxD0*guuL}Q^WN1xz
z>s2hT=OvyZd_(xpB)u=v{B<n<K(PaF5#IM^=8uzbKPh}!cvtwpY5Bipc^+lJ@iKYu
z!e1cr_ZGe-{ENc>Sop>o>p3EJY)1IN+kM^;-g-B4T^}DOd{g)*MgQ}Kuf2!m?<@LW
zt>xd({34ORM)<%7nCpJjmo;B!uKPtde>kUiUHECy^M}I6KFIQzHc@|jg)d*j{N}=s
z319gT^KXlu%eDN6nd^D8Gg|*gm>(DUS86@NA0+(mg>MM23%_3Lxt8_lcJt@L`##G2
z6(WBS6S=Bg5U%GHpCx?uV=RAPk$=7L72&!cevR<HkNfifB78{rS<&-7;cLQmyL<;s
z;81*qKEZlkEAqRAZwlA(85iFF_bh*b$X_9RO!yxQ?+RZQuJu1d_|PX=&mNgaeWCE#
z&okHdd{y&*WUj}9ZxBB4Pt51VK7UpC%0Dyz>8&_I_q?3byYdz0Ya)MA_}KN#pDz5l
z!Z*Ib{0b>=pB6s!P39jF`P)8<_4j>;`LiV4gThz7&-^Q5H<pDj|AhIUO1`~Ac>hnC
zzfbrNgl`DHR(K8(qxZP_GnW6c@RsI3_w~G4`0Ov3&x-uJgs%s@ui6}}Hv8JWMz^+@
z40e;VUGtErr~A$i=LbjTlX>^APto}(9Ub!jST>i;c^EX89n23^6lIzGP_E<(F`b)F
zhO<dNi@-{`y~(`jo1b?@hqQ*mUKb0^B`y@%+&qV^owVM#Y?2H+e>${mUi+s1HO=@`
zXYOLMxKQdW6i=7h^`tRaYF9hOPPbG(wODGIOfR>3wMwzxJhP4a*=o|AJH3NIJDIO1
z<!-rDuWzHGTy2u;96~NuoAbR!c^ko2Z?0Y|m%6oPV}GgLt|jel1WTPoQM!!)g@@O@
zO_Je=GPb>ACOf)=Yql`FgKHtPQ?Qw#>`nn^hw?jxoFCe|Q_!QCy*q|IoEzOK@LYCe
zc&E^Z3x(WH!Dn)rp^=>;kR8ru@;k+#kj-aDcZxy=`BNC#DH7SCy(5{zPO->m_U3a#
zJ4ItOH##~zv|~JmM@B}nnVlk%%M}Xw{LW=?Br}ANc8W?Sm(OMp)J~Df4v*$@h5XK?
zGB-RrGPL&`WpgAqlFy88UqTm>@~M5(liQSj*!8)kZqgad8{=Y7A&rLn7E7H|oxaXO
zZNA$PV+f;N9-bd54b2sj%4kIlTs}XSDJA*JaFR{t3uN|?uerkLaBgIdWbibcEsR!1
zvLk&-qui|28r2K0>@*vLCIT5zHNx$Rwz+*`y#^PP?n1M2X{p{z#?zKewLT~{<>9&c
zLUuT(>@907rzxVN+a!)0qCdKKcvK=@)=!J2?!q7}^z`(>uncsT8s!U1-R5GgJUHH5
zY?a!{zD8yGOsRFU*65~+%+BJiZaa8ouKaYj*-l7ns;ow(b`0C-iUrwGO+>Ggq$0yE
z(@XrnZ<jkl#Wk#Q+WAE3%+CI;K&V1Dm#uQW(JjrHk~&{&RH(6XS$C<G)N74XMyLi?
z4<sqlZdOX&lJSuQ&!n<rUH!*K6FKR7Pb1&mdz$Mws@(^r#RW-(RBW`u%t<;+i*CkL
z%U-xi@LVl>Veuonf}L&~b#-tLbqiI;V2=qBGPQ08PWt^wh*XMBBwhIElujpooupeW
zR?B75Kv_Rnt#ucAbA#pP;)RuF`Bc)D|1K!ElS+baXQ_U{LQ-!f?aqa*Ql~RGg@4Zf
zb$nSxoxvkY6HHmHF<5KVx|L=l88lHY)vM^ol$H$O-d0jRYY6JYzNAC_G=t8xYu!XT
zKn9kQ&Zz`-VIi?^g?s__710?gE>f>f{p!@Jr80G*jOSVh66R^XU0O_9O;q`$T}&D%
zz>ZEzNs&@gq@)->=%=?!lb4kcv$ic#m1M40H8P6}NvTydk8^cof2-Y`uho-wscUu3
zC#7z$ogAu{s#X;Q%SorxY+s515ci43yp1t>t=(F=yVxq`Gb1K|(@CS!Y)`8qw4YiY
z<AO{*k+de8r!876ot<d3dR=AWjUe6!#n3#X%S>TeZ+?bXn@~eBwE~UgOaP$M=tEgu
zG!IF`i4VUi40#%-jeugk28y&xZQ=|0y++odg=~xtTiN+ir(17UvorLnjqIagiI5xS
z8TAY%@2aVBL-1HV(Q7pDpJ8*=&Y2`>xl+w`8TFm(l*4I&*QUI2Shc*rI$3I;x~$no
z&2$`)QB@35Ofd9pGkLz&?sONMl^#l}YfHUqQ=2c9lcOkeMoGDjs$J|hi=En|ZMs_v
zOP#4wHJNsy&CU!)bVft9+(H=EFXCUvFeYgn464m!vN**>{e)Z8Tct*=e9Fx~XiSh_
z4Lj_uB=bpo2CaYzm7+`0R`DN=V~kOZ1HH*PH<~D=2kR)xMxt7WKz&~wRnjn2@BOvz
zcoRc$!;-~TcWJSMXd7fQ5wE0KZnThdRxgY~*~YtC9&a|f?PeVn-uN$7Ds3n%C&kl=
z4ID*_%!84llIK2HNdyZ=*9}b~bsb$)sw2zV85dR0lup^GQBghv>*Yy!594i^CF_A~
z*&^)VV$W9KGbpvj58`D<(W*`uC&<++on+BA`lj5VkRXfewncy%yc{Pdq`8}b37$a>
zGD=&`X1!cbN{yZk7Ito&I^~O~QbrK(HJwAKKhreymuBVo{5-6T@v=CLHxBo1atuv_
zeZA)0S8AshOVyfvD@YJp=Y4H7A69&>hpN$q4K<31c$IXKWvrjGA(#sROvt>KLyJ93
z6cG&@7F8NOQL0JJ`QmtSl2T_wO;1TUwg|SsWR!y&Nw<ZfO)ti2FO$~1ZIIFOB3p}i
zrzQsw&+@+BS!?8>z1{7#PL$AiEgo>KS+A{Fv65J6^g)xe2ixtYtxz4zkt9CC>#0=&
z);yiGk#A>wNsv<4M|fY&_L9$(-KyI%RjE~)-37ntFI9r9u2NsvDX{3;b@wAH(ezAE
zGMqfIE(WT;gr^Z!OuY)vdM^%fC#SoB`dXp+tag`4quH&^FBPT!MEWqbPN`j9sG-v+
zGJ`eb<y^bew$*W-8#5y@SE?X)5*3f?&}7GH2wfMv_(rMjI#U;Fx>ofJ)m*PuuSoyK
zgfQPul1IBO1j^=-Qs<!Ra2crtb9hTmskIIyXDeK%o0RIu+ZD$EQ%y1Ah$ubN7}tH9
zK0fKTc+G0lsRS5rbyXj!e9EDV)G2qLb(T3yau%&$t!ZmatCDoARZ(w~`VA(&G#I4v
zZh)%eYAUf@LZ8EM2wFXOuvG{h!*21>!+9gBz*!eiE2eb1{jSPf6*H&SX2?_lnNFh$
zM&2*<$VlT@ZlizhzS;RR6%+~M4p|hM&hbkuA<ILC-X}+q9-C5C7D;H)_A{N=QtX_m
zb;}D*&eO}Keu#rmlBSmy=bEb7G=Xsst26CqICbM}is#X)syC#^Te>bKWTdz=e!lu`
z)FQ&tdmqkaa|TzN$=O=hiPV*gC=KWfIf#1WZC9q<9l{*4BY}ZQ(ndD2Jy?JRMZvZ$
zWOW*W_c|Oen+l|VM!$3uAt#=Ny|z!?sx=x(g*s>$VObRzjuvS|X1rq>pm#PqY@W#i
z_`|_6qSwKorDaPhp>|R}4WxSi<cWV#m2xxQ#%^Q?b6`5#J!}K_upKga*e21#_6>R1
z)*lbsK38>{NZEd>jD9P&B@i-q)<&^Dk14!le*$}voTzkN>(Fbpnr$?%r>%mHWlnMg
z&Mnq#^t2?PmBawS8CTe1<0a7!q>9DUl}@ur<-dscZ(f3MER~Q`bG}kqin*7mc`J&P
zC(vjXWk4QTqM;!<O1!Rc|J|tyR7&)5WeTJ-S?hFQn_%iudlnO^vj11Ym`>X0i<~@h
zR03&s2KT|N_u>C()Q}#{<qWF1n>|2>(5pMY)*QTyW<lB_gaJTI<^;L`kb(5U<A<yS
zPebqTVZE?Tszl6a2;C*9|8B<GivH_pP;*bVoaOs&g6Gkj;yIJ~^?lQv*#t}#CezTv
zuKfB6Y{D~0xqkhs-RKOan-VjtPs3bHL8CAol!^YE5_bM3WgO;RZo)eo9=<8QM}}^S
z@6nN);yZ(7mYb09Ozx(6&;K{dtF5ABE86X2&8c>?ihg~kZ>~2Fh9Y+?siL298Z(Eb
zicm<h6*<(ykd7tEw@C8biNO<%)2I%WlW5RO6`GK=K0K!rJxr{of>lOHnX-0!dI9Ym
z1EXCBy03D&ga*>;7BJIn9xAmhK2$@mXr_s|D$5{qw28?)R%$ba4Pu8v<(|?}@}(B@
zkX-VmdZ0|KH&ZLsTANd)bGAzB1-3RVY@Dy3)O44v_THME$t%oiU}C(E7&O~K`?SXo
z`eZ|7Nv|vKizV&$l$y@-v5h!t)wWKVZJn?xy@OkBd$)WxaH9<{CM_~4=tro5f_Rh~
zMoip>E{k)a7qOOTWe;j=>3gzCFXX}mE?~s&ORJ}3n&ye7Xpj<fZI7#AneQZTCybsd
zHk9T`e$!ERHDfWHKS&8cTkk7Yj=8LM+@?es^={GFM)qVwI*JLe2LF0q!t%FGASw}@
zkxo}9EiCVk#Z^~E8HMqB6Wz8TE9|Qr**hAzEp!*_)1~=j8gqVr26p1qjM(;~Sm=29
zKIfLyq|W(Rvgr;^&{`7BzlZ9rqC#N@x3B`u*OGdLOOg&fsPfZGSghrlF|iG7*-thw
zH;Da6Nrk$Eew3}{nqTY=wpxcU_0mT_ZQf-tv@#*G)cN$ED)fPD4h<Q(&7m%+Vxpd~
z@Yt&BIXiOpLnRxktRF{LS^E8|r%JXT7D}dO`Qfq!q#%)2LB00MR1GTyaJ6dDX-4p3
zHmSp0r}WrlP(Pbj(cQw#z7C$Pb-LsSPRE*E_i-v|FVY|Z>xd>tAUK6x3xS?XYG@s`
z45lJz=t>G3P21y7+HJH*wGORcLQ8TsDfiUW3F%7{_$FvyOg1wr(d2CC)8QP#r2J8u
zK&PSCAb!Cz>bTH&f@X>7?VXR`G`3I+i}-ExPiumi#5luwqM?cNh$K)HAV$A*7)C(N
z=1?e@<3ZEwM}K%|q_3k^Dv>C^oz>VzNUJubSM0!ev)%5sx@sL08Dv_;P|j)!U1%3X
ztTB)P;OzFSYt0L5$b(wl$t)c=cc>=z$Z@)m-tQnv6VEjVt#`A-?qy}i4q=Z4S;6hJ
zD5>M92F6sTCC#XjI&b2vL+PBVwbZK}Z?<HbTRR~WQRok02@FFRJqU3eO%7{jbGAjB
zci?}2se%$rb5MN>S&1H|+|XoQ*z3-Zq7-5Urq4sAav2LXSO=g5HE|g{P(#n!JYlL9
z^QGOIBXAUR46yxL{;~yh28vj|ftAo~9Al(FZ5ilz8yhN&P^nX{)ebf56+==n9~?Js
z<7NAE-u`UbpEe0c4Ln-6KNsy!>+7hE&(WR{n6$rau#+}@lMN$q%>J?oIc9@BX2Y5?
zqElAul=U@b1DLW&oT^!GjxL+pY2!X^)lQ$X)Fyn|DtM%Ef257<BU_f*0LIbVsy4A1
z)}notI;Q;f>)yA}bRHVmHCC^c8pR{nKHIF;ms$&s$98EBi+ILodogK1)`HUsEUtat
zkMT?+!D@i^vA;y?q4ufMDHSg*EjXlGvT5I+G^)^GT^CBVQ=Q%^hcsKw#U^%o7?thP
z!lL8eE}?C4!tYgs2=x|f_8pFw8l?&)e%~B&45Bc@TJw0R?Iv}+)I+6Eve=pI<-+(v
z2`j4B<ARgfSZ-}&Ol4z)-Fb^>Ax$XQu;t|NIEH#P%w*a;8((T+0mPR3@ufCW=y*AR
z{BEP4rZpZ&Fy1R+ACb+K1HD$gx#Ya3gViMjyUj~Ki1c+_;qF4M*>XZWoHW~2H*XGO
zXATOHn~=j;{&T%xsj|CZ^XM>oQue(c?p;~JjvpK0!@c%m@6>_?N1XWJceQ8V6CQhw
zrY#XiN?7u-8GIy}YbR$+?i{JLkv9z+lZi!IVJg*&`>-rla-uxZz^hYBw>oDh8l7^x
zhKy^XoD`=@3-!`z8^zGIjSO(&@z4@pi(54=!R`Vlg_o2XD2p~;mtdv$lpE1YN=v1M
z;!zvmB@3l?v$NnSS-{$hN$VvG%`2U{bIC%lQaXe3ZUl~&Y_=Um{@YwTnzXReU<GSf
zhj*SDSY9md3&DN|bR6-evYQb{m#D@W(aF+6=}Ocm2h@>L*I-Rzk;Z*9c&;IK*xKND
z!b&aXAoQ!6Ot2@aR-7y?ImK)eODRe5lG>@#sh$%aDkv4*;&=}m$*|aKb%;aEGEUZ<
zyqm-hV(SePCd#5((ze+=*{j1~I?||?80{L_W2HH~csFUsk~77bQmuHjXQKvYU(T^p
zR{im+YkZE^i{lG5rwAOcSBgh^FtVO$BRbKA;kA~Y&@l|u7N}axx$lcyR8QX*1|s8V
z(m`U==nKXb%=Fr)+|b&!C7Yh(9c&r0iaLv>hU1EAS30v$JOU$HH9}LR`r;DymRN67
zrCxCyI}?wTY(d0a4!&ravLQ_^G|`@UrE{u-r9o_S3~Tp^1clTFh$%TI{?o7=FcnVn
zr%TwJfx6kYflZ^jx)mJHr`;Tzu2m}T%cD^NjoxWNSQp9ZS_2bYj?QMgglvWhbA`}5
z^-az6QXP98ipNS-r%{+jLsGIYaRz1)8!t>yct$hl6f;!@Z3ffhj2mA9m)4wyXr^?^
z32vseShGfZhHSWPvu2WduWDZu^tzT0kG8_h)aDX5r)O%|s#U7mF2zi(y?~LTNytem
z?QYX_siW;Oypu*1CB<oc9$^EUR`%ZM4^59xOcakKXN!Kndw;D`E6QFr6Yv4rqpRQC
zfux0HTXfBA=i>mf-;WvgaFB_z)*v0y5%kX-J2!D)y0{<dZ!Z;(qa8zE&Uz-d8SJTv
zJ600RXO~)TBmGcp@lB=TXcODG(A=p#BE^GeX$(R`e4Vgk%?4~S*2byUjAQ&#oT8n=
z#{D>L11j#TV_zg*oKtDo;Q&6GgGnq-R2wME*bcP4j>8n)1S_eWO+g3~2UOItrf$n9
z2LTt1=dtTYN15@_<{50Pq+O6cpQQN(ADwI=Z#_{N!WDT|$%tzl8)Z$k6I9bmQlWTK
zNkGpV8HqLud+~I559>8)1}wxU&}!2>g%+E}eo&g|DbCQGi`#3RZq9d$2bvi3*@C8p
zic|D;LQm;8s!ldgfe@()T_B9hrPNBOxJ)PX#hz2Nuo!|I@y40+O-#V~eOp3)M~_Il
zUq$q&306JXq^d{z?$o2T6!bXhd36SRhu|oqp(P_jkgK&pcG75MZv>8JV=y0sBN2$*
z!TPn?fQDlbdq~ofdkZl*8iARiOqAv#bT|exL&Fi#%up;-GFSypM;2?8X_&!^ZH&e;
zE0c|747R366kuymjK=bdRv=@tQN5VKj>zVsq2*!;9*MojOfLG)^0D-0^3lNZvA{Ce
z;~$A`A)1InOz%iE$1wdKQyWdha5OM%n2Tr_j=qWb8;)n>NL24gR4=}vi^L&XqcfvX
zy;%B=X^3Wev;yPv(U^w4(U*ypm~?1ae7PN?v6q>R)?s|*8q*N1!`Vz!ZzdLBnq-f}
zEE_8i*=#Hyve*C@(-4hsv}R^=QN37eiRg`1H+)4Lm5u7nNA+SAC=yz<y5V#1sBAPR
zqwNGfD2-_tj@8&~w7zAra2<(nw7zAd_8~hGjqhmm%|~liHd?c?qtQ1Xty$S<&C2eL
zzM;J_y}6;-o5$DQk=)5)MJAnR_=Y`7qk5waVJ=#;a?zTVi`J}Mv}Wa^H7l2m=0h$T
z-(0Lj(JE#nA97K>(VCUZNA*T)RxVnza?zTVi`J}MAsVycXo{nC2;aiTQalnX>$#Cw
z-OP=|>U=I*hjP(6lpBre9gXH>v}Wa^9nsw0sNQJnl#AA(e6$Ybhhj0y55;maAFV_A
zXgidT))t)65P3uSZ0sH9v(cDEdx-diKc+X@7sQzgQQ25+$wzBT9y`_2H7lQwS)+Wk
zw&bI=B_FLVH~=CRTC}$0qdmNQv>nPv>rg)04&|f$zI?Q1<)bw#A8noT(VCTy_6GCO
znuT*iV!0EoS@~$2mERkEo6-7~kJh(*w7wOh!@NSY%_>BDgN0}<EJSM|j;D#_Lm?B(
zokFzDDn#3?LUi<2h}O+Qv~CunEm<Mjk`<zTL>x~OOIx&V7NRW~PEm<zz&7D@JuXD+
zW&xXmW3sV2Uns<ENg>)tEJWM4LUc@4h}O+Qv~Cunb+Zs1lNF+4vO=^L7NWHfN4CUr
zXEd6>(OO6!XGiik+Mg^$`;&!e-7G{$YQxdGIXo0=V~3-46Xys;;u|%;(Kj4@!BLAG
zed*DjPIRykEeBB(9W5Kt4pFpZM7u-L(h@b<(GnCbK+*COHR4el9xXi4vJ)MkL~VU0
zI`YS%V39IHyNc5#JrnJR;oz;PY^>~MqU}N^+Ad_GeYQ-rwa7$!a+zowl8N^3GSQYL
z6Yce7qGO~?bc{qtB}8&E+84}3+Z!Ci71a=HE$H)xSZJ{xZ6?}7%tYHJ9Gw=^8*Q;N
z(cWYx+K$nV*GPP$?O3J|jYG8OnTfV;I9($aTC~l}L@i<_+DpwuZDJ-qfgQDqnW$OJ
zMD1cGY8W%ozH26G8Z*%zZ6>;4k%^kjOw?v(qDC_lwVIiz*~~;+*i6)LW}=oe6J6uT
zM9pL-YA3VNb~hWflQ=UmQlhd^JDH8z$!xTZ&PMHIHfkqvu3;<=Q9FtA{Gzh4dXbGT
zpJbyJF&piHXQMsvY_tcSjoQg<)J|rjb}}0sNoS)Y>1?#Oo{cW6WTSofY}9&Yql+!s
zsGZD4mte9{JDH6x%w(erGuf#1%tozeHo7vCjatua)Ou#4-N|g!dS;^?%52n5;$X>G
zNsW#pvQaykjoQg<v<HdPM`NKy#~j(Hoy<o2o7w2<P&R5kvr+4rjapBfR2qwK)Ou#4
z)-xNmp4q7N%tm{j+32Vx7wu){qBb=b9n0jR)-x9!;pC#$GZ$T<%0*YGa?xI9E^0k<
zQR|tD_9t^u>zRvMPdb<)-3!V^ttSr3jmpN#LoRAPbJ3NrT-18zqJ7U?)OzNk))U8-
z#^M{bp1G*?%tia2xv2HbMXhHpYCUsN>zRvMPaJU@OGVUr=AzaUC&tD!MEjn(s7=j9
z`<}U|P0dAZYA!lV&qZx&F4`l_MOXE3a&Ihc(H?0oYEyGjo0^N-)Lhi2;&|y;9HQ0}
zM=VEWW4)kU)OzNkb3VD~uss*Gskvy6G#9n0IPo_U-+a`j;#m2pY%F*3QJb2N_ET~E
zcT8{8rskvl)O@s`nvYsqI%zX)5ph0rj7BXjj;@Z%Msp`Rp3g_e^Ef0tsyCWDQA>++
zxnmllmNp-?wE3u|%||V5K02Pq;oz}2MEj}vsHM$EEp0w(Y4cG_n~z%BeALqBqn0)w
zwY2%DrOihzZ9dvh%|~r&K5A3*(SB+^YCZE&>zR*Q&wR8;nvYt~eAIg8qa*ix)OzNl
z)-xZqp82Tt%t!m4`KX=DN9|-jYA5qiJDHE#$wJgl7NR5fLex$cqJ7Uo)FKw57O@bu
zh=ph`vk<k2h3H&nA!-o|(Y|LPY7q<3z9+6dh*$!gGascf+gFJ8GU-T%v;{9jdzppk
z7`+gk%Pd4~Um<Gy3ejF>A!_?@UqURtQQKFD&T!HJ$&nOCZ69v4h|0$1bPLfL&O+46
z6{2JGLbN|wi1sH7(Yee*)b<skwyzMieTAs)D@4cWg=o(acW=b<EIOB2h+4!#)FKw5
z7O@buh=u4Fy%1f=FGPEeh3L4u5Vd`UsO>96XDx@Lwr@CU`-Y>lmcvooM`s75OZ6~p
zpFU0pCrnr5<X*mwNA9!W6Ew7x-L6i3{TRj3f8yWDQYqII=L%2K-9ag#VVK4=9Yw*=
zluq|Q+H9WcwYH1YD2kkx#wUaL*lat=3|V+BYGaD4ORNSDTj?IYWf@iHZ$$j>#TEpO
zE4{_VCG%vpVVczndDy1aeo3#jIfB&h!;uf=X5%!SA0S_xn9~Qe)3M&7d&Gmrt>zh=
znqd^k;W#xqEMJQVgCu6KJ($a;1#?+nkiK7D#F=i!Ct{%v6EMK0g_gy10QF=Zr;g$X
zZQST0siV9e&im@|gf9z^&(GkaCoP9B0&#k5%z>|l(Q>s84r`dAQ-#qyTbL$V488n7
z%p>XpBz(bSWXyq`n%JaLZHrJRhaFjz&X}x?jVo(QgG+73y0j40Ycs=@9l@m(IHE#j
zKNT7EWJ{)c#QEWL`AnZW!^gVO#V>>Eoiyv6$sW!?ai00f73T9^=;&O177Bi&7|1~|
zc%aie+-G%Oi*~n>riEHf=}h}+9Mn(8XLq}8kEdWlhoLwjw%Z4f9Y1(%#`uE3!HHv+
z;!<d>pUA$$`zDSVBFFKX=ORVHJf#!t#G6*Uv|<nAl}j#o81FoW^L&O)r&}31%RdoI
z95BMa@iAcSASIL^amHvz%j2^ybvp*F52#~sPR@*nZZyYatc((x!l_%{X=#euh|*jY
zBRa5V5=Z+la3iB&9Utt5Or30VptKZ-`NRnT7GLS=b<sAIQ!&QaCyWv{b%Y3wOo-6Q
zP>Aw~Pm)cEpj8Wfp_8W&GW{ryk->+$6Zr5^AvC`@q^!jc_*A)zLp78`oz5FFaaT{O
zuq($$<0yV*an+Me_b58W3gL8dbppJRK7eCl*vXc+!1G?LT%?dGIl3h5#k^f8h0a?F
z={Ic8=}KqkUi22|Y?}+|C?$2s4T@oK?u~Vu#&J7HM&QFH2Mr$``8G)BZCBgs=pBu^
z%}TRRKj18nGQLx+7+_U&amt@_F%YTi;DbhdW=VJ8khRixXYJaf?t9sdbD>a;qAu#r
zD$fa@Jq8zUq2F^32~1bG+Ra5+)ZjSrF?>6D3P~l8E(Ti|bp7(pHSCyN6>-u>LgPSx
z@@$V|7Jv?lT)Qa%&1gUn-GCsX0da30K{H1|84+B?=06YTz2|cH3}v1G8u!Fk*{I<R
znh+uZ$yL2l-Akh)ULqCoQ>l=jOojY(vPU#WI_*f9VipYNeSo9|0BQ3Ha?1xQVLsBy
z^(nrpE+@%VCUkYzjq{9)rl@)tcfLBVLsz@mL#^?}vtK(@X;hzg;~RCisQEQOOX$2%
zH%;jWoX3rZGq`U`E-En5!FSR?=24uL1&Bg>YIm=324fq0(l)$KbPhMeC;{VSp7JSm
zJYsltmUf&>a8!?T`-A4{yn8wv%#DjuM+1e*epq#T6NdIg*Po>1PtuXv<jJ@!;<$W#
zPjBz9p$9qx-X>8K<A<ER2bfcsH-qTB_yDOh(o*4&pdStqPmg)%sBgj>I9!J$WPnE+
z)vZj<bD0K!Vn=rEp*wZ1+C5l7aZT{0zILF(IB0{$wKem$s?w9=*6g5D-=wz1yA5U6
z9vluY4!Z|&i;z*Ca=8pA?;NW4Itz5*g^q$Rm7GQoX&blsoxLJx9Exz*7T?3iC-*&k
z>csK!X``^(#HsG?<q^B~P%+ro!C6k!E~$Ro?!gnBZ`_Ns5siuZG70tjrunkGs1jGe
z_u8uC_;`il!8`80$1V~8i$&*^=&0i8DxA96uoXq!D{%$~IT(>~b!~xpJbe7b@#8b*
zQ5qieylc+_n(W;;U$BhRBIU-Klq>GkNx4zQqSjtV4ZrC?y-vrLEQ6dzO-tE3H%JPn
zTvlxr1*xDmIF~_z(3!iQi4}(9Ms2yGrtEOLdB(&F9h@_C*O>u0%&UwO8&FfEN||(+
zXGw=6VIpW{bObH25%d{H&}VdMpp5{IEA<jD`B<cD<J^`~=UsMNmyB|8n^ND;_AV%B
zCXY~+=r#cJj0)&I(*q2x)7+_Ih#QKi$Qo}n!!naS7(7pS&l6euj8cHg3Sx^3qk}0S
z5C}=0s<zmbsn4UUk9%BTkW65jHEoIYnw6e^9a^K=#gR~_lAaYO)T!g@J)@IIS0P+>
zgyKo(hUn^G-6F_VXqtIxmc6{(wMX6KxEmeJ&OYzLIJlJQaOd5FRHoG7xjH!3<J`bg
zrvt-%@3<+kId`RM$Ry`*)gg`_F5>hn8%ZRaZ_G@|?DKBYY;lvJ;_vuA+r{BcD9{Gs
zT$2utxWxf0zG%R$)u@(n_|vH~b4A<fID=z-a6gc`ksKZLB98u1$a)GSOy~hOK8*mC
z*b1y7cT6PB=Y$xZ(A5h@ixfo+MeAM<M=4VGCzVzA#?|j&Y0Y)8<+`nlh#DS`lseMm
zvV9&?PGAVV&JY~v0>Rybh!u`DRE0oha!t2EBy>6QuLq<2CyhAScONbfG^x~l5bXh-
zvV*aqE`M}epLn6G>|*@5ls$=q_Cd;2Uyrmq8s~a-eOVq(`nilsfYIu>AyA~>xKI{S
zJoa1P#?6FC)h!xJb<D1bOk9Mn0Bpx)Ovab#PDihP>acMD_>5~K1AcfM9WHAfP{*n>
zy01OyUb%>T4`fyCV*6lHOjnx)$l4Gt9Y)r5KoW5)u5*bVIid#R(EHtk$^?0N<GNy%
zflSo4?i8hM9jUc85kjjY_g0c0gK6+noUfgAib~2*0-S7MZq=4gBEhrwe&BwH&doBx
z0GyzMK%L<V(4<q;REL|+O7rjVqE-XczC_$sjQ)m)@b>V0l?e=`;!sKvBq~9j*|i4=
zS1%eJa<6Hq`fUhZfPpTtz2>Tl*XLdic%i!OkLn(ZQE(qBLv*EVrtjM0UM)I}$tpBL
zXk^>n@g-CUlaQz!MpHLRs*YxY@1@;YA7#u5+=@%-IXoWtsFo4CwtbJ)GFhqvm<TjV
z8O`uXUo<#yT=;ferGgb(d+T4F>-eDnNO<3AoR#Zl@*s!gh)&bhz0NZgF=a|smZ~X$
zK@<*}B`mg+Dz%$!y6IsYHPXFzR2d<<g3gT|UjXcAms_^I{HS%Cr2{oP2E_sS$ENpn
zCY_;_%CQqoTI#`UV>`?^a#8lrghZCR4VnV}$X$z3#XF1ymrvQ)Yd10tmR8Fcz#$W0
ziky3MJ!-oE)$(PidJttlt`<zRpJHmFSS_mo>;5WT$>sE9v6j;4P~40p5p`qt8N6f6
z)5!Z7RP`S(5YC3lFg&2u@&O#9Y^CJ+nDItB=DhAG5#3pn1`}7YRGfFwPL=`zsO>Gb
z0+YeLDW~fv+N2WH8cQm3ZEjKHXqq>R{btW{R7Tt>pswF_I&5-DwM`(Ed#?^Ql@}MG
z73rvMOM)9f+6k&k%a$nPsJt1yIQ_3z?m{$a1@Ez)&=I>>Ux_)AnNl1VKkOd##tDIw
zGhFap8ofnTx@}JQ?*8i}H!=}4&~^%&#kd&VB+Almd+D%qOR#mo2rVLBsdZYom?YwY
zyQkHiMY`-_-UzY5EktO}Y1*!V7eO~qJ6?SO-<9TCJaI%n1?K6>CLJJB0#6<apE1={
zY0lf5QZW(MY*(mA7%eCT)L}~HqEPe<eEVVKp$oGxi$`Hg(#pg!?Vy@ir&Jqt%3&LM
zW!ScJLt>6%GSlgp_&WWIM&~g7bI2<$l2EUoWHiLOR-9eR#WQLtPeHU`e@^2J+=SZX
zbYirt>q0qC`AfqNZw!Q>tXmCpuTJY6aog|OUi1MwxJ<?$YLWJkLJ*cH=!$Vf(j0BB
zj9&SwYm*Ghr%*FYCpGXis4#M1%4!Bs-J?X3>RRrDt!CNIKadx?tlQPGUtQO2$gVvc
zo!x_rwvS-poQ0h(>MmXNZTu!zso|t~UZeyT506`bfkgyN`bBwBNl^oBJSsz$pfK3L
z6zZs9zSF}-fpKJMHDl2ChT%gQmm|APxk8ldCOAc$jw{*ALCp0?v!w<XXrG;zp=OVR
zQBJFe*$*XK@r4(smv9$t30Jt-zOiNp63eK0Jgcg*EN0l3UoGQgdYa5|olOL*<rAv-
zyN<5kw5#KFroF`OC|%nrP`hoWQ2^Ylk*npCYMmw(SsLIAbnfg$1vnOUsFukNY!@`5
zx0CZpHH8-UEO)ol+jNYdP#Ue+rbl2e=n)AvxiwFh(EIao3I(%vXk}0p%4$Sz{8D$Q
zL)Z|E?J!|xUlcvNm&P~!`A%rXo~-cxcwDGV`)+huMIFTM1IK>jWMSv2*YKY)1x``&
zE-c530yY}?vEx~CM8y?>6|R+4|1GH6$^j!M_ZoPT_3eg|;@j*^sEVcL{}okR-F!hz
zSQ&sjp_^DfbP}!Zm-cd=E(2GTZke~4N4^GgMibtc5;A~{#x_L7EG;;1`w_|`?)d28
z(jfh|@UqnEit=sa5o6V+9|T?j3Xe6<xGe^K7c8b2<#=W7uJ5TLN|d2g8D*sXC(&gq
zh*jqFO+=kTFoN(yBt`8CCiSN1y_?Wf3SpG(h)0oNLcFSGQhiTY&9=FR8SsYf?<o~@
zFPkqBlowjfqD_jvPzumRh+aS~IuYH;UKLtwsVpem6rNhiH|pqWXSyg%)EDQ}wbyiS
zmJv}UF>fAmnM^sUqSsu<47Q<%n;jtA8d4E)R-O1U%u*B+*YK6fSM{*aJl(4}Q-EzO
zgkdJehqRa1G3VIDg!a$rZEIlLO%P{}+C-ZK5esEeoa@6q4C~@9Y{0GDb(Y)^ZWX;R
zqf+IAU*|C@ts)3q18=0%sAJK$%6O!!d_2E?4pqx!I;@rkYyiS$Y;@DBae5GBDIT5R
z)O?I+aNCwHNNS2Kj8&;K-)=4z57Y2F?bdBp;|^i!NXlAmmA~z-1=tqSnpsFNAavq`
z;M&~?wW74jK8-b3lLU+gyp(z>($dP=dRC8i`UK_rAZBi-i~ur<uB=q+4u`Cr#QR1g
zWu)j8xKC%$ufWAW#vKF8W67C=1Sbuw;JAA$LbgZwGVWYae1;aldZ8S&Pnb8THBfHc
z97bkZ0U26ab48s5`$XDQB%G9}+zDZ|><7%3DB8{|%}gTOyqQ*P0It{Zs;zlNc|e;T
zM!D9YrMap%;8Jy|=ghB?QQ^!fItCojvHMjvMYxB_8ed_a6dF7lvwJLo;j={o{TVzD
znb*=m7vDU<H`!oxlswaOPFREw)N-T8^-!#qX+KNUO^q$KcPWO`2Nd;G<Se7Lb*s(i
zn0ggkY|VwEj=UCIwTkmz99NrN+?JqTox;Sf$|cjx@Sa#S#kN$G=8>CG;eF)d$zrwF
zmUUDNuR|rz&TE`^XP2t;=&qQQSK)@Cl6mIBb$ohef$XEfF#7C*y+XbVZtTD$wXJIE
zG7(w{r>jehe|IFx{aicGBhUU89~U|;9aWs^DWjIsjoL(COK7t$FV0qO4Qzf$lWIk<
z`Gwvl*LI^xHBl8e7lM+D4kXNok(c`9w!^Casu8V`TJ+vUy*Y=7U**0LRj^zk1zZX8
z;m@`aalOcMr|vALh2f}Y+z?}8MgXr8tJ<ndibu5!L3uo-u4To5-i0R{Fk#-VMb}k(
z(HntXH|x_VM1wi4)frf6DkfeBckRL5LKt(Yn{#NI38lfrzFMa3#eOYQqcNv*=Z)~H
zP4!}E52R5N2n3I$u8583wlhj&mwnylVhwvwjS^LE%o8j&)*X|%UiGvyV3*~$X{-j*
zq=**@%5{vu%=Q*q(#8&4S}c+614wzZembE|{<y3-#I(K~!)Q)jjDFJz)~Be<uV9Lq
zI^@`7K?}XMrv=Yg#^W)sNgFH;?^-m3A2HCd3rrSyEfO%*H`gay7?)6UN1Z~aNnmx(
zURDj1cCX}8Ux~Zaeu)Mb6OiH}KS^^7CL*d2O5Ld$yct6~R=X~sKw7az)Q_}+Ui7d-
zs5ZYuQ>NoI1#cAN!#9``XD(vb9#})_b7QH3SLFNw99*gKt7ABV!cLZxZm8BVP{S8|
zmM1Tm9wB0$RV~6sPgHZ-0cuAyp&mS=!k{N__hFKVH<YZ@l0)b}Px~VVtbKJ*#48YY
z2NGqv(9Oi7(PUrK-sA?n9BX!uH+-7b1-bb%Sn)RM7D2r33IU{*He?$iAiq~3b57t!
zM$OSotC-u`;6OiSj)S*dL*{xyJuqO05g2mCSHr9mW`(yenf5LE!&_Pv@QKpkji(gB
zE?qk^RD_n2Rma|>+hA{YR#7#t3R{G|MZUN=r~zxlrKr{reTPV(UVx>_mAy_^#{2dK
zFjlLwMjtbOY^r?o>{1}tp;30Ikml8KcciW>)Sd5Cai^#TRDU^`z&q{kQh8%U)rU1U
zm&sImuM?jc&?w%>qlZodK<Z076IGoBOj(@reNz5RlP-U)%Z%f#PHe!$y=XiyVw37p
z8$p-mOsrh$v~Z4IYgts$n_I$`NF)W(wsojoLgI;ZorMh{P2<f3>bW56oeGO9H4`GK
zAkb!Q7pT#TXi)V0DgsCfeMm3EOMyRcid^Yp-pFPteHmzip$BKzE)}ANyA-OGH=4XB
zPz*B}HPw}tw=Hcw@Bcg2Jc4!4)D}SMj5M%OfVvDee0+#?I>8mH7&zJ}F7mTy4474L
zKPu)b(H0pMp@Z!^(_Qfxia1^JU3-Y_9;DugQ9y~dN^DP?xL533<<q6Q^W8$3TpOOM
z7@%9RZKTK#5gR-}hxU-;+Dct_TV<6{FEsK<)Ci&fYa>hTK00kET8=yF9hR9rPn7#@
zZwN-@N;KovUv0iyX`X3N55n3P)d4+$P(n6^KKCJ1bK_r09`qLB6jF9z;(#x=k2^is
z+b|z0KEbnzF(<Vh#wgmgN9kAlBZ52-Cl&MzZFiy_6gG<@&h*wp&8~MCNA(!W?4vGX
zxYJF=>u__ibe6K*7I4KW<Dkk}VRo>ymxGmzM??>gdwa#SAdOGbdJm6J!y)Q{wxq;;
zkW0i%6B}66cL`z-IOJwbNAsYQpIQ#X4x7mWr+A9T<g3Q+)U+^+$s!bk`*E~Lp#tE8
zm@<jr{a&YD=_bpi-lQ*13y{wGv=XIpkY}L`4chQ3W{pw<CybHzwW||!6oanxMra)0
zr}1~M#!W36VEO==UYWDD&v-F{hTw;-(uP_)M2$CQ#Ei#k2=ICK8Nbtlr6QcO0o#R*
z8YweC+0mryUad+MX(VPQm3rlJypcp5DI#!~URs>PRoeKj-o&wNGG=Pr2D58Vk%pbL
z$J1*E4Ts_6yGeCU%h(iS$<9%CT<7qU{wEgUDAtTXC1`2|+@Yz+o8fIJPZ4(IO<d{o
zWY>Wd4|Yq{qs~`1ih1phmNGe|K<iW$chcHn3k9kM=YFvT?Hr`<V~y_$7T@rK-QEl?
zoDI?GN~ei$Now7qT8BV~fIeR@CJW9kd?iCBwTM=`<8EJ7E^5L7ldSZn?F%j8I(KhD
zTP^3|dovS3+E+bD4Wcd2?x&@J6N(L$DJr4WOxjJ2Xw{y5*?h2#2)#`HzVpTjIQ>=m
z;FPxDgnls^rlC><)67JG{m&FJE21VMQ$oDK#C~}b2w+AQmake4aPW~!;HusM1|01g
z`Va1BEj!EY>}o!73B;(RR#Z2ax}AZe^FamL4E5py2^w{99s~}U!#bpQUY*OyzCPN@
zNCvr$#gPObR;mr<RH#n`8@mIQvb{S+X^R#$s_fu=`O5oTt&=J5vH{la0*~sP3EXW8
z{O#Z=&%BYG)_sz;a&&!CY@H3(foHuJI>6qx=fDl~p0r+BJ{53`HDu>);9&OusdBrW
zqZ(>riYIXAU1GeyBydu#VoaxUAbo)cXU|UHf?lC&^>@NHQ%QA9oMz0Z3$G@sLQ5f=
zCV~)XPr!D_21uJcuzDW|V$M_+gLihYdIBFgQ$Ud*XMrtH=Q^o5tQ+NSLv<FcLZALx
z*v_ubN?9OCOH={E3#Bf5K-GFwz}z|Ab2-^GrF_}Ew38!&I_aSW)N9Ol?Mdv%-`jpd
z?#cMyaqrq=Kk?qyzboQ<Z+C}^&dg@1<8K>76?d0q@zsy*{`$K@oau#P=S&T!g_*ME
zI2mU0EKQ1-yKwh_DAOY?y;+W+tTkSx8|X25a3)IV(OpKtqkGZ`In!0Yy2DA&beW#}
zjEkI{St{}{gd=)g2^`_<s~FATcve>e*W2LOLzm#Vc^vZSl3|=(>8r`$-dddQ=n7?r
zaVv?h2?veRtp%<WZkZaTQypD~+oeY`I2qVwxRDc=XZq?!afmnFZ|2HnhDSz5vd)n!
zDwlHwob4Ir^+;w2{(Y4=Q4aT`j5r6csC*wD#ciB)!KE7%@?dmiXm9ErjNmME90h0<
zQ>|aBCC+A-R&Nedc{nSn*)YXM`tw&VV&cY~xIlrI-lh%R_C8THsMBhkFr{uM9#y&Y
z*W)lqq!gjU<@rf5EQ#PuFZT;2KGdg(*%0@0{ZfMOa-4MxdB(WOL`l$G)7j)I%y}h3
z-1kAtLi?sCjUvni`lr%p5Jn2S!ToWY67(WaUTg(2AWDKU7Lt0c7LFa;cj?2keQMs+
zBU%bww&d(IoliFHB-y9zdx9kQV*-}W(8FYKXV4N|tdu_zS21CK{y2&@U(hnJ$rRqk
zIb@!B(~5aS`#+CYzTj+QG02W|46>C@BTV%gWhfN2O3__aKa27-ciKZ0%)6<R>vW<B
zcvHPQ&gsHYeLhhnyI)$Y4Cjj&VD`@9{6OauGHSm~w3;nvB&$xMnYa0)1{p?_`Yh(5
z=Wm}zQo1$ks+R4Hta_q~YzS&vO-+3of`$n@OcOrjtl{iENX=2VX$_LJ`MaI5H$Q!p
z5o#+<U8EeK0c(CHa6F=5ICHKr8t~*Z2nE}I(eh1V<ZINBAwX~*Tg396BeIBTVXSBx
zFRBY`o{;~}Of&*4)v+{zuDOvw#&w;cd9&l&Mzv|Ah?h~C$AGBje3XSx=<0QEgOopb
z-K9&MK2T@(1@nvUX=d78&)(3OP~35#*$%E`;*5Kd7k$a|;GpBr<Gv5J=xHA=_k8HD
za8h1;2hR_Uo75LMDNlim?@O&(rgMP@yRqC`Q0F|Q0&%eyf?6v~2jF5)-X6P@_LOq-
ze9qvN;5%36$fLA|ZDo|E%ZIOE>uf!Sh~@UC<pSiztf(64RGzumlV70IbZi`S(R8sV
zKUeFX#`Z}%n=>qyp_Av27pVxPJ*M0|pY{vVw9k~A@_Bjo3Z0IW0IJbW&R)p+D28;n
zfs68m*NIPL2Ocw^!`4D6@E}84rOLqN!}%*{E70h`<7_~`Ic1z9!y{CTesl4={5Pu5
z&%Z+hvNOu&Q+Z&I%~d+~!aC8WM0|7F=_p_EO#IDgJZCIB1AA;VJ22jUEC=?a(nXuP
zsS7heUvNa<e<bR^sbExkbhgs>t8tqixOl$MZt}*SlracgJYT69Nn7r9bhZ<@Deqvx
zDMXYg`*yG-S54BT&K50H&s^5Zt23W|Q}68mYP8OoU)zU{Vy54QIxoN`AIGM32UM2a
z*dqHI3dK*&G-|$jY4mD%l9Y|WaQ;C9hcK(BpQ5q+^?j?*FCWfWOZw~UpyubMX;87y
zFJ>}XoL1lHrs`kd;^$n%s9-&&%?8RX=;*`$dN2CMs_{~RzB?Zt9rh@EhjXR@^_635
zi)zI&$wk!(juwVUhWvWU&KWn%$yRNJs@fQ;AqxUae!YzTwe@*9UYV<2iv4$~QsZ&Y
z2Npgs5=(h-v68<$WBOjM8<qRGix<iQPc5gz@f|!rwC$JHc+#E%7mi;x-JcE+%jME?
z0b;p)S}s5=S4hhRNXhA%t%?N=hSOP2V_fUv`BIBNum~6gr~IYdw(+U98tvrW74US(
zGI@~>-Ao0acJ%!6I(pn|%1!yaJeRvdZUC{NrJ<5d^?mt}u8L~IZCzB|@f`QYEu~Ic
z5{hEdBk+tfF{+J4ZjpxbQ8S}o?*Clqejd{jrP@)KdOK?M(s7FCnle+=iFMluOxe(q
zylRQ5<<*JASx(7~%8i?@mCHkHNOIG4s}?&ldb;VFy?3*S3XiikQZL5i+q@Opkw$aq
zrZc2pftukuvye2XZE@cXCgW)SE$)fkthXJDGJkpXKM**-V=PRO9rXvY|6_4blL!A#
zW8jq;e8fm!$WzIQG|ds$c=@3d<xH*BZKkcqY!tIMVvgd!rAWV5r(3Oy?|(}lzoXxj
zws?-wnZqW>=)vX|&9e_&&TWWmCC`+w#{iQ(X&1B_n9Gkk(Jrc(7xl(dwH=EWon-q_
zsm|5^ZzAuNbqod2@0dv&NZ)}=({RCdLPLL-Z|lf@Gb6^Y*Be$n*lpa{XU=#`by&!A
z)LHFj=nNji!O-$E*ag8`6x8=@yY{Hh<>-nR^zVEmTRsKS#XP$Q573=X_?C3n9y-}_
z_uv#Zk9*)SKI`-V)<ULf(anSAYf-HSz)H~vP5RJG<&9QSur18~=6hifixZbg{7<+E
zu+&e3;Zb2<_A-3Sei-|EabVp(oRA^Wcc|J1p2j3$W7=114vy35(fFU15oPl}p42uK
zxtQ?6UUz<U5Jy;HOX&&PWx5TYz&>`hr8nY!6l<&GH!gEfZC6d}CNfS39{WKW9BLb!
z=p4Yv+KA)%C|1NU-7irBz^6^PuuMPKI@r%(AFya{9}b=^*L!qT)KTmvXc&iX)BK!q
zf1Yg7sV&<3O!Fw+dS{-eYjkw^p(b`JXc3jiyb!%>4`==ELCL}p(}v=Z&9t%DMh#);
za6)~)98z_%UkKHH%#;E}w~5IKEc4QrnBs}P6`ZDTr{YSGL(w4j(_($-LaGI-m3ft0
zEF^V|A556Cx5|q2&GqI{dUx%a#;(Oif-j9>P12BDh0@QX*d*VPXZ2FdeR`<Y<~RR>
z;ZxV@akrJt;K)#9Smr=<-|$`6X)I`B+xCQN{Kjc+L36$EsGoQ3!IthC1{v5SPX<f8
z(*paUdb4DSBdErOYC2ns<72UT+*@=O_xBhT#BkeDgn1&^DWbJZ(MRTCsQLm+mAzOP
z^Mp^L=k1dT2RKolW^186SE%MbQr*iZ35NTk(d2lf^LBBkhxXXUN6Ou4x=+#|+F?;U
zOSQk#nZcfI<3Lwg`l62BZ5>XitITwGjt}K<0AF9307A!;xRyzh6FMaoWK2?pk+2f@
zo<L>x?!oj6MLTI+ISc46Cwx!7pQ48=5=}T(?pU*pa)i0IsOuz-C9k#WOHoG-0%o5|
zVpIad-Loy{noN0~q+4WSkvT+1tA`5tqgQGll<8J7QQvAO5I(a$hXUgl-x8wk`bBpi
zY;+^2MEKwbpD30O;q+?bcdl0To-wk3E)_wW&uD%d6&)+%6{lVwbRQ165Btpn$Ih!O
zjNHmH;l_#M?m9E^bZ|sHJ8)GG-E}%+z=T~=x$rRJm2DlUk&QSW#4sAW{mIqnQ<}^Z
z$7)+P)7&>bJ~0s!_mnznh=<<BOW595KBW?8be(Ld=kW#1^y&gA%siVfY_-5#2e&Si
z7tjv~2s#6rOyIK8nq$Rkor#8AF-xZ`7&+B?I8B50uMMW{%x~kO8Wim&tw7q7@8J2-
zRX^=1aPfSRS;U7mXj;s4jE+R;#7*8P%}H>hCN|0XynI_n@vG*Rw)MQNEBnsI=0H=B
zWiuIWnDHh}x-L&amgO}n6{|4GG?s}vtIw>^LA-Dd&G~Si1~sZH3)C07X@^0oR8v?r
ziV5x7qs7p)s!nlAPg-OKUvjE`cNioZ45b6zAnxbwATVC1<Gn+H@n*Z-Yjr0YXlB&7
zjQUe(@IyH_QYf4lDC{T#6Mo}Fwn><(X6ZPjVypWnPK^wG9i$whS78dsIV4nR31!qX
z8uD$GXaSjq#0f(sYW*=3gFUU+_483Q9YR#ci>?B6q-cyrH_>Ss3}@ZPgN@U*HqJlO
z&S(ry?Q2vHo=tGB@c2RvV-MGf_!OPzqM_Q)IdNbT?E`Ye-np#!G<HAJfHS}+Yn8*b
zO3I5G5=?d5>dY2ZI;}rd)Q&eOcoQ^5)dN`4Y17?-bnTmwq8ld6L(hBKj{$`W)P`sz
z$<2$4aXC)gTXphj_(30B8bE{Pym=z$;C)oo>zQcStE8En!2TRZF~eh}MHhNGPY-Bq
z<kh2&HJVb>G@C|`w^SeG|BR%j(vued6jLL@HD9Zt{k$}QaEcuz*+FN#M6+4Y;_Az6
z{V-o{bm>4ZF2E>?6%<wbt}dZ7T(m0{ck`f%lX)U1H(z8&toC`7X8w%ubduQDgCb&G
z=o?cbrcNo+8tB31tuh_j31*A3TAK-rIbSgvSGjKVVqB?!8K!F=n1(b$)0`vWGrAZ0
z^_0$pGA9heJ<e)R05?jiE%dC@<pGk04l9FbkbTKa2w654EdHvQI?Hg3gt`N6x?34v
z=%F^yM(jcKe(_C@`dM!_PvP!5^_zQ=WXSlD4l7Z=xF3292Z-?V3@H(7t^^b~q`K9P
z1b6yej43!8fvRRlzbB;tGk3TsgZ-9!IP{XHb(Bj7w^Z{l<&}T7NQ?86!ha-fr&eB+
z>)}aEwo*LR6U7}jPd8~~r6|rGqK3jGmJ046oNL9dYNNc8!!GSkf?e{giliF+TivLh
z&IDX|$nG-~Hr5q=@Cfuy*&QPb6S$Ja>ZODZF9*zna>I9^_<E%N(COpH*f(x1h5p@x
zC$V}NIJq8X&`sRNgLSfD?b?IMO7*eL?m@f}?bAZ{ox8$rDN6H0xGTMDUymy=ubtGT
zTV2XC*O~Rg)=JJ`(2Y}Ab`N4im*?2gY>^u)%&1f-C?u-H5}MeztH~pE$s#jCiL6^6
zI?YUYB*3v#FW%S;r+%y0(@pZW;}9ZMXAPXe_bJYjX_Q+ZGYCG=%!s2!ziq5swr$}N
z2QCTLPN{gP%EsM8(+!F{upLsP1m9u>h~+X@C@p?AVQWoDQ_?|Zxn5i+@n<cd-jj8C
zCSW2NHMQFO;+Q-fTLiO!&oNQ;(e%^Fc>$vH9y%^3D-nnaGNK31VtZ|cJn=7d_UHkX
zZW?Db*HwwfGumP55|Wto2Jw@OXm`Q0p^8c~6go_Fjy1bz>oKr}7$!NAc6|wNieD~J
z%@e@JEZtG#u(;QzCNI@8gik9}-hsRxo-ZP236T_{uGOg?g^$#7hL5Dlb|G~XsH88c
zJV%GZ_AFho-Gis7&*CEOlbcr8W%nR;lssW1n7a$UoIbZvQ7#$!Wx;Tv^A%>lTUa;%
z_QgFps8PLE{7(f;by)EmLr-O{@H3$v4}Y2{!rDb^=3X5f>DE6gs;bR$!=lpXK69T9
zK4_#%Ws)4J*Gm7Bt;0+?eyI*3{)g5&1xop+I^>-7^hjddsUx4%p~wH+m&XtCG>NgH
zZYEtsi#t-ADAuG*&IW@Nr-WHlaGEAT13?NY!e+>B2BK1UoZ_gqfuF=lwsk6n>T*8#
zsp8z-L0Ol;qiP0}DxET8aRbVcb{Yq`Q!=dq_kl7-KyDrOWFrpRkFf@xhmdM%Q${`M
zkZNgd3QQY-IQlG*q<7}0Qp8;c?MJ_OFDeGgr{L(Vo=PThE`PIfDIdxvC*Dn;p$;oP
zpOt4S$mY17fcZk^a2_p{oKclnYq|uVm+CUBnVc$gg1va+IB%Hp2WP$@2I>GI(Q6#Y
zIqrZCTGT;*d1oSSbV+YV$IEi65-F-Ck5hCX?e$9wAEIxsw{fF9N&C=;JB10xQUbp8
zO)C7}aJ*0`fH_olOFQk%_b<iseo7y>lnROLTPl3aDmTagr5q+Y*jZe|-~b=6hN=$M
z=>YSPs$AO!?_W~iE^q4^Pm9vX2|c8~Sr3Dph`hW@oU7tZp`exKRD_ZD+r$|zG1b7w
z>EymJ8ZML!4Xe$rJvBO<WFF(W8C6G8Z#Qs{6^uZHRRjeA)dIWfW=d7+G?}PcdXxvc
zHVqy2pduA!N6Ibz9wQ?3GK2TEjg*NW<;ih-GB@V6u*PoVD0Zdg;rYgCe2^Z#3p&;s
zpZ(LMP0EcI|EN)mX&=XGHhl@Yt@9#=(0pC31gdsF_+g>Hi_a?SOExGIjRhP#GC|Wx
zILM(+368s*G(A&KrV9_9{Y%r_Y12ugY<BXEJ{pCDQB2QAOG`L0&meTkNv~%QReOSa
zH&ppDl9+oqb&v|IA-nb{Nv~_CW3s4PCa)gP*HH==aUAh}tHNRE@hjVC)H`mG?Bhu8
zQ}?S&{xjN-txHCSAdH6X`)Ah1dYfe&T}){vIQ!LR7)@ITHIsdh)A#INu(V8Fr&G^8
z>X}CN>Q^dZYR7}`)whr=H-SkgUkXcvfNV(ur!+rJ9fdR&-JN5#Fyp+|jm2Ek$prJ_
zvA6=m_S!6F;j|qyJeD!X@iwqY;0&*D`$^Ys=}gfsYSq~HBxe8zS%rE3G>H@>$k9A|
zm?&&uq2=2ULpm03;B=G$(>V*cP3FQSk~q-7AaLgL-X%XHqJo}@VZUB5%IZv_3Qwx3
zQms*KuhS2cX0wz_kPbhG9W$l&!)RgJGpT=b3`%MzjANo1i+wi2w5kbvecXmaJ!Chh
z>DhlFM8b+oEXW)}{(C3lzw+{F@2%p|%Q-x&pxyXr779YfkESR~!4wG70*_D@q(-!*
zsY+rRGx5_89V+?TNvHA#ok}!>_GO*!&SWRt#|h_AhA{e6F|nvF%^I&R%|&TGN^$Ud
zL@!QgiqMfL#lcY#*}aD1-ifd;#htStUA9#Y9Mrg4hp}sqbS2H$+PaXLPGN4+R9zWI
zGbV#cHOACF(H&5y(5h-rb(_y4kyLrE+KaULy9d3d!BE$R8JM>Du9I)}jf<2lj+GZ{
zX^>O#^|<GQayXtw<6_gN(QZr%a`rfH)H((wA5$|D2wsFg<g^Z6FU$224lb=1l{?!z
z2XDdp+acz$*I_*d-5ocU>=X<zT!Hjp)9UrQg083ZkkfjKjykQg*Sm6chGoinQ7-9W
zOG;qd=!$~KpvLO(28$N^Ls859N@F=*)b<I1<2J#-#T|jV`LZ34j*@IdZ1>w~g<ZYd
zjg_nlYMErX6sgk6O7YBls#-g4wvyI#pO>n2w5A3Usp=ZK`*k*O4JvNn8dlH1S-rz^
z$OQE`(2%OkfqS~%1p+~74qVeUFc64V!$2mei-Bucj$_X0S{awxIWgPU&p?}3djdDV
zrUs6FbqyRNbv7-rQ_!i}8+iAtaNroN$AQc?l{t{wu12TCOtrR^)9v;|+ECXyRV_V7
zzfQVNL4|ak!kXr~MXRDK5Y$80DOCwwN4&LE!|A%;2**^r>iSRDaMv}c5w26ZZo970
zitP#nwc2&^3bE_pS02~JuQ{$uq}l||+Xk1aFs?_xwzw|Qs^SW4Q%_ux?J9{cV`_-g
z@Ua9=6?2a$k$!gr^Q8k2z+!at8|`y?u{DuqNVjVsjoY+8hlt~rwXdKfYj{xm3=gZG
zafsGC;~G>t!&5cRxWuZPaZJ^<z$I1DjC;D48K<C%8J@0R#wl94jB8M{3=dmM-yz*b
zhVI)%bo+MEXz;3-p?-BX*sse5M=G-G77rp-g^d@#{u&&uyvB8#nrqy*tG13ntj_9c
zr8~9iD<15(3dhZXyY^=L%j_}QYxVu6#`I|&K@|=C2Q@Wx4l8Wv9<8^bP*8nC=Tt2Y
z1!9#slu6a;xIn6Ehhpg(9!doDCv;BN_fR5Q?L(oU_J_`)5s12{ZNWBT=Sb4_mLb&V
z)!xw2w-ceOZ!SXDh}DRQ>==B?hJ*@yQxdvHElMb~jbRDJwzDs3xf^X}M$chp>|A7E
zB1X?`W+0O40(em+0lzCAI`3p=;Cn|i1NU>A83^rUX5hTDnSsDL%?xCAHZw+GXEOt_
zbC?;5jlcaO%+Pa~87MfnnSszwW(LkXni=hW4l`rL&XJ@WX=b2r`+5$?9n1_|cQ7+>
zJ(rnbksX8I*~~z}4rT_f=QcACx-n)3VmHdnD7hPLX7GLJ&fOWh7(<3BfuYF^pWD)q
z%+97pN$g;2$bBbcL+(3T8xlCTxgn{Y><zi^Y;Z{8oEC?Kb~ZUyVrQE}a_2BQDn>h4
z9dbX1*&&g0+Z~eH$?%Z-j+Vy=oWt}uay!|cK<p5vq;@LA+gE>5w1fE}=N;@1IiJe_
ziOkMX*x3Y;iXChaIiK4Ik<^W`LL_&i%n%FSXglP7%dG8<*F-|#|Fm{>&2ijDP(Ou_
z6sttqv@0)qk|na@ltZyZI(~4aQb%%WopN8gy;G=4<-e!90qg?USzvkAgG#)ap4nMo
z(ZGISCde}$`r*9JL&TJMNQeRtQD5RA>We%?K%Iw(D)A8YWga4;%0mQ|d8kK}d5E|Q
z4=JJo4^dy?AwudrL{y1~s4wzR2dMB+ge&n-1}pIpq2nY#ZGnfVF7Oc5H6HSqatLJ}
zqKg6#QC;UDqNeZ=ag%t+0Vneias-vvLo7FCuZRBfW1WYHDf5sJ1s<Zl#6#2<d5C~I
z4-r-3A?nLKL`0Q`2rBbXk0|pHaTOj?L<JtAzQRL<)Om=g5)V;d<e?5w;h_ju;-L&y
z;vquENr2h{4^ds<A*yRU<T2$C$~;6D1s<Zh&O<~^;UVHC@sI;f<{=hxEEADRJ=#nJ
zRh^0iDsz#86v#+`5*rCnq$45fd?Z+jkOU|*k|0$|5~|Ee5u{8?0#;bbMOC0B0V=#C
zOr4knD>0J*MQZ916>f@wC34DfC3X^aoExMr@RRfff|9<*Pytj4qs&oqQXnbm>ntVM
z6q*un5>I(#M^yb{r)56O+p(9+k#;~Tu`XqkNR!b>q{;asQkldN=`+TNGy|%LbQVWM
z>H#?nbOTn15JNhMl-WRuG(!T2l;+5f^x2S)H2GN1Rl`9(M2rV5@2)YjVI6r%22vzX
z2XdrHM{uMthHk1IJJevXMrP?KjTGkajPxVpGD3_E$OO`jM7JE!XU?rYGiQl9zW}%k
zH7xw^Cl(5DdxVbu`#<xel4qLgxWAugd3u;-r<Wm>3wNw9cSs|!MLoih4=$1;3H^)o
zr)P^uh(G_uI%*9voMvL5WH=Y|WSMa^LZgLT8sSJr$88Lf;O=Q48c2qi&$-ckF8Dl<
zJZjUI3kWHFQM1{nu;b<lnJejpy3TvsAQd+2Z$v+Tn?E4yrSn4dHTGG|TNH+lWS7`^
z7yWcO7HD$0!B<ARN9k^&zx64u6FZ0y?$3qujGP>fE$BzdgjUE@)W?CWN+@Bw;tUZ<
z?`9AGXtsBe1Qyz8)m!4P@1AgDok)I8`c&<(^t)sd+*`j5FA*jemA7^KSrS;-8`cYv
z_2(XW3|H9o+zYWq8p*sI?T71!PSt*IwsA{Kqz{;7kG5u_h=5V6;RpEUuDe|6X=cdK
zat<0rvYcaU)asAm4_|J<_+fqBcWNSvEIlanWt7i>=jrnL=(`pTbjt9rzXb_`7CSb9
z_7zia@au&{E%Fq*jKKu3DqpW#HV^aJ>iy&GM_$N+BbxaalzP&S&wG>|>EZof%h}Vr
zX2TS(bb6zF-1;*Kz?DRmJVX(RLMV|ai6@f#pdv{ZStL_afq>BsNJ{dwSuop1_|3+{
zwb%W2Y2Jete7{3YYGjl1=0TwGAB5UknMjb!_hz$TihFOTUsvhR?$_Veb0uz8fVW6C
z{R`5dYWfZ46n<cO>47v6V2@Grlt@sX6WhyjDc!mJ^Wgw&Bi0V^;mV}@r3UO$O@3<E
zD@+<){w~r-vcEV-{=E7!Tg)FigCf{v?NrJQ-Vys8VSN@)9o>z_@LVoE-W*vFa5O()
zQ=KwjqxZf0Ce0!0Pb`U`#SU=An?;a$!WM0zczG~!S@E!|DgvntSHB@oW|Y0u3J%S>
zp8`=1<cD%lxOCk1zhdaK?RNIH>}Y-WiMt4kZZI;MEpnC>LHBO6=#-B1{%%klc}jb5
zqEcRmasWEniCA~m6Tv>*F*K&_{f}8_dzVq#mb!T|ZA_mbEi>S-ZTB0ui@!Q>BdjLK
z;=uI>Y_<gy7E2c^rrdQYb<&7KmS8_P?UA2>8e;^{+l%F9_f-)OPG5%%<KHi+Eu@B)
zi#5tJtU<_Cy{*CNsZDi?x!K&Yple7I;m;T?XsW?6+rE)a2)U;Mp%<pjtH8LLx5JpP
zcD7<as?jRi8=W?aJnI-Y@7R9f){RzMz0WRavthzMU+?0j9R>RDM)zs<k&aK6vrW|l
zcG27BjUwY%b?YMi#*}~Nsa^MwRrj*B4{&@U#;Uq_LlPfzfe);!4z4>)){Vy}AngYx
z{HXfCOc?_+M}87VPMl2f$UINs5l6!o?OKrI($*lSkh{xf%5(HEOkN_>b-P}C8BP~+
z8W_S|mst!M2RV$z!N>=O>~jb>b8zQUE9uQkdJaLu9rL3`NJO1l@yvCcT=B48&Q~aZ
zW(9H2V(v;TW12pqLXcLH>7i6QhV^i?8qMOEwfFORUoj`OZ0AhA;>sY6Vep6#DQxn^
z1BT@Sm2t9zafymlE9pVFw6f?N36sBKCI3{In?Mm*b*WZQvwqC{w#*IpQ-fm3^8S9S
zDW(h>)w(ON=EI>ZCl@Q9PA)xn#R%Q)I=^(J>1tFNRzZiN8rA_L^{+Mk_f^1o9r1$&
zxoUDU(0Q2${LXUl4!5ty$wO?yFD&o{(|Vc;)5om^z0H>fI*;4!-U45m!kI12SJZNR
zIa}nsAo-Q$<H`);YHxbhXv)0A!^l{i^>tCwo`}ql=XISqRlFaXf&BQyRdB#lxxAEv
zpHw?N6N%c)5J5=T*`Zf!+{rVeRvzz#TWH|B0sS%1cW!s<e>W>U^24Jf)Lq-w0^KmR
ze0nfFgc{C;yV)P_H#<B=Z23alJ*P+wv%A#pcG@Q~$-(*^rar$KHKEZG*wkAqB@@`s
zT&CK5@ZfF;yRUNclkiih`>tVBX-u%kCz0u3jy;YSu`f@LQ_rsDUcP!<W?eT}cuqHr
z7n{?q(pBViyL9O|-7a1)PPZB?6UR+?iJYFMFHtZzvJSCZdA&Z;0>=L`-<(Xr>j-JD
zc2BHsdCMm@bJ5@>%0#5R{(k<??j{B=clu|vxgvF%tuy%&tq5Qm<~o8;x63GV<&g#B
z-cJ<65d_Idq7F>)=HrFFai)WfuIq1aOWkIo3~z(mhp{NffQHX#K|1Db2r>LzxOr&I
zN2-=RhK;M@owo27K21Dgsn#=;XI#$jPc>h@K1yNBy)dV$C~J<k6n~&w)L{I$zdOYp
z!Px_f?lxQh->Z96Y-UEz+2R%Q%_EC)d)AAPhPv6}rtVPdzv{gaUQjKW<Ni=D?m6V4
z)=UC>sO`m;^*j%?RtdR7jrB$gFAnuy^H3*vp7*xv-}dkB-I=;{`|F2ad?})D>KxTO
zwkv$g^(TF6r4ljSp)p2h-;d~T;p|W!;QeBsVErqG{l@-7w*>ba)Qvb}es%tFs<PKF
zQkl~G<8{}^Os+R?y0TNeUb>~CpE!6@QOmb@hV>`DvP+@51m^3r`Ff9B{Hmn(2DcNv
zg!A)I!c^WphPNre_|<SPr!9~Jxekie6rcR!rCh@&-*0zMydP3chUSH-Wa$e_fxa~5
z?#{`w@Qa0@QatPStU*yV#G`8?^kEPOdJVt3wUHhRq2NKVe!E1<L{t%B8IeTR?(o>p
z5TfM`DK6k#s*hc8E7sm`=Nr5=%Jr&4(W_anBMIP!wL2mq>rI&Fij<H%311&1^MRA_
zr7MC$$8|O2Lv0L06{=)7m40pctPbM>C7+_Oq;l@s*<({syY<}QEFaLKS%^9x6y-vz
zCK~p<if_269`Qnvh4l8JB83w(m-#h@a2I6S`TqLO;!t<ns=Om@l)9^?I*(%Fsbu)<
z%I;eopOcR_`*ApxuKjhB7^HY$PFvSS9ab{oq8TNa=rZf)21}f-@}gWs0sNmM6em}g
zZ(kn;;bwbuf*Ki@AX#%+cbK2x9bC|l5l<RH*J;8V{h&yVRJ+ApMv(=iMk{sAI&7(4
z)gPvlVZQ@E>^3#JzY3bpA~op6LUV?QW~<X~(sAGKJZI9}%-XKP&9m+BY27vKpS3d7
z0cmxL7di)8zH1h!1ND4kyaMNuIX6E0To<Spb+EC{_qi+Z4I4?8&t5^xRMhh9^JFot
jw#BBGLwY9|AKF2|{-CA`#%ir4zOO=|9L(qXOKtIgkEr{-


From 4fa6c28e34c1d0f462a863a5e02eaf39f530a11c Mon Sep 17 00:00:00 2001
From: Carlos Sanchez <carlos@apache.org>
Date: Sat, 21 Apr 2018 09:32:10 +0200
Subject: [PATCH 12/69] Document config.json authentication

Works with the standard kaniko docker image
---
 README.md         | 24 +++++++++++++++++++++++-
 deploy/Dockerfile |  3 +++
 2 files changed, 26 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index d6c707b5da..aebb32e24a 100644
--- a/README.md
+++ b/README.md
@@ -141,7 +141,29 @@ To run kaniko in Docker, run the following command:
 
 kaniko uses Docker credential helpers to push images to a registry.
 
-kaniko comes with support for GCR, but configuring another credential helper should allow pushing to a different registry.
+kaniko comes with support for Docker `config.json` and GCR, but configuring another credential helper should allow pushing to a different registry.
+
+#### Pushing to Docker Hub
+
+Get your docker registry user and password encoded in base64
+
+    echo USER:PASSWORD | base64
+
+Create a `config.json` file with your Docker registry url and the previous generated base64 string
+
+```
+{
+	"auths": {
+		"https://index.docker.io/v1/": {
+			"auth": "xxxxxxxxxxxxxxx"
+		}
+	}
+}
+```
+
+Run kaniko with the `config.json` inside `/root/.docker/config.json`
+
+    docker run -ti --rm -v `pwd`:/workspace -v config.json:/root/.docker/config.json:ro gcr.io/kaniko-project/executor:latest --dockerfile=Dockerfile --destination=yourimagename
 
 
 ## Security
diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index b251cd4112..a1b920c5de 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -17,6 +17,9 @@
 FROM scratch
 ADD out/executor /kaniko/executor
 ADD files/ca-certificates.crt /kaniko/ssl/certs/
+ADD files/docker-credential-gcr /usr/local/bin/
+ADD files/config.json /root/.docker/
+RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs

From 7ceba77ef0308652c7a2e884aaa86011d92906a7 Mon Sep 17 00:00:00 2001
From: Alban Crequy <alban@kinvolk.io>
Date: Sun, 22 Apr 2018 19:01:27 +0200
Subject: [PATCH 13/69] README.md: fix link (#138)

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index d6c707b5da..1603c767ee 100644
--- a/README.md
+++ b/README.md
@@ -10,7 +10,7 @@ Please let us know if you have any feature requests or find any bugs!
 
 
 - [Kaniko](#kaniko)
-  - [How does kaniko work?](#how-does-kaniko-work?)
+  - [How does kaniko work?](#how-does-kaniko-work)
   - [Known Issues](#known-issues)
 - [Development](#development)
   - [kaniko Build Contexts](#kaniko-build-contexts) 

From 844d9ef0d9c0d39fbdeee17fa6bb1c466a3a5c8e Mon Sep 17 00:00:00 2001
From: dlorenc <lorenc.d@gmail.com>
Date: Mon, 23 Apr 2018 12:50:21 -0700
Subject: [PATCH 14/69] Add whiteout handling by switching to a two-phase
 approach. (#139)

* Add whiteout handling by switching to a two-phase approach.

Also only handle hardlinks within one layer

* Simplify the run test.
---
 Makefile                                      |  2 +-
 .../dockerfiles/Dockerfile_test_mv_add        |  3 ++
 .../dockerfiles/Dockerfile_test_run           |  6 +--
 .../dockerfiles/config_test_mv_add.json       | 12 +++++
 .../dockerfiles/config_test_run.json          | 38 +-------------
 integration_tests/integration_test_yaml.go    | 10 +++-
 pkg/snapshot/layered_map.go                   | 20 ++++++++
 pkg/snapshot/snapshot.go                      | 50 ++++++++++++++-----
 pkg/util/tar_util.go                          | 24 +++++++--
 pkg/util/tar_util_test.go                     |  2 +-
 10 files changed, 107 insertions(+), 60 deletions(-)
 create mode 100644 integration_tests/dockerfiles/Dockerfile_test_mv_add
 create mode 100644 integration_tests/dockerfiles/config_test_mv_add.json

diff --git a/Makefile b/Makefile
index a37e20622f..d913360edd 100644
--- a/Makefile
+++ b/Makefile
@@ -47,7 +47,7 @@ test: out/executor
 	@ ./test.sh
 
 .PHONY: integration-test
-integration-test: out/executor
+integration-test:
 	@ ./integration-test.sh
 
 .PHONY: images
diff --git a/integration_tests/dockerfiles/Dockerfile_test_mv_add b/integration_tests/dockerfiles/Dockerfile_test_mv_add
new file mode 100644
index 0000000000..60200df9cf
--- /dev/null
+++ b/integration_tests/dockerfiles/Dockerfile_test_mv_add
@@ -0,0 +1,3 @@
+FROM busybox
+ADD context/tars /tmp/tars
+RUN mv /tmp/tars /foo
diff --git a/integration_tests/dockerfiles/Dockerfile_test_run b/integration_tests/dockerfiles/Dockerfile_test_run
index cd225fc038..66307da876 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_run
+++ b/integration_tests/dockerfiles/Dockerfile_test_run
@@ -14,6 +14,6 @@
 
 FROM gcr.io/google-appengine/debian9
 RUN echo "hey" > /etc/foo
-RUN apt-get update && apt-get install -y \
-  bzr \
-  cvs \
+RUN echo "baz" > /etc/baz
+RUN cp /etc/baz /etc/bar
+RUN rm /etc/baz
diff --git a/integration_tests/dockerfiles/config_test_mv_add.json b/integration_tests/dockerfiles/config_test_mv_add.json
new file mode 100644
index 0000000000..5a780d5c7e
--- /dev/null
+++ b/integration_tests/dockerfiles/config_test_mv_add.json
@@ -0,0 +1,12 @@
+[
+  {
+    "Image1": "gcr.io/kaniko-test/docker-test-mv-add:latest",
+    "Image2": "gcr.io/kaniko-test/kaniko-test-mv-add:latest",
+    "DiffType": "File",
+    "Diff": {
+      "Adds": null,
+      "Dels": null,
+      "Mods": null
+    }
+  }
+]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_run.json b/integration_tests/dockerfiles/config_test_run.json
index ae2b3d8f2a..fbd9764a2a 100644
--- a/integration_tests/dockerfiles/config_test_run.json
+++ b/integration_tests/dockerfiles/config_test_run.json
@@ -6,43 +6,7 @@
     "Diff": {
       "Adds": null,
       "Dels": null,
-      "Mods": [
-        {
-          "Name": "/var/log/dpkg.log",
-          "Size1": 57481,
-          "Size2": 57481
-        },
-        {
-          "Name": "/var/log/apt/term.log",
-          "Size1": 23671,
-          "Size2": 23671
-        },
-        {
-          "Name": "/var/cache/ldconfig/aux-cache",
-          "Size1": 8057,
-          "Size2": 8057
-        },
-        {
-          "Name": "/var/log/apt/history.log",
-          "Size1": 5661,
-          "Size2": 5661
-        },
-        {
-          "Name": "/var/log/alternatives.log",
-          "Size1": 2579,
-          "Size2": 2579
-        },
-        {
-          "Name": "/usr/lib/python2.7/dist-packages/keyrings/__init__.pyc",
-          "Size1": 140,
-          "Size2": 140
-        },
-        {
-          "Name": "/usr/lib/python2.7/dist-packages/lazr/__init__.pyc",
-          "Size1": 136,
-          "Size2": 136
-        }
-      ]
+      "Mods": null
     }
   }
 ]
\ No newline at end of file
diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index fc01d48485..7c1d646070 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -115,6 +115,14 @@ var fileTests = []struct {
 		kanikoContext:  buildcontextPath,
 		repo:           "test-add",
 	},
+	{
+		description:    "test mv add",
+		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_mv_add",
+		configPath:     "/workspace/integration_tests/dockerfiles/config_test_mv_add.json",
+		dockerContext:  buildcontextPath,
+		kanikoContext:  buildcontextPath,
+		repo:           "test-mv-add",
+	},
 	{
 		description:    "test registry",
 		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_registry",
@@ -280,7 +288,7 @@ func main() {
 		}
 		compareOutputs := step{
 			Name: ubuntuImage,
-			Args: []string{"cmp", test.configPath, containerDiffOutputFile},
+			Args: []string{"cmp", "-b", test.configPath, containerDiffOutputFile},
 		}
 
 		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, containerDiff, catContainerDiffOutput, compareOutputs)
diff --git a/pkg/snapshot/layered_map.go b/pkg/snapshot/layered_map.go
index 608808ac68..e8574e9136 100644
--- a/pkg/snapshot/layered_map.go
+++ b/pkg/snapshot/layered_map.go
@@ -16,6 +16,11 @@ limitations under the License.
 
 package snapshot
 
+import (
+	"path/filepath"
+	"strings"
+)
+
 type LayeredMap struct {
 	layers []map[string]string
 	hasher func(string) (string, error)
@@ -33,6 +38,21 @@ func (l *LayeredMap) Snapshot() {
 	l.layers = append(l.layers, map[string]string{})
 }
 
+func (l *LayeredMap) GetFlattenedPathsForWhiteOut() map[string]struct{} {
+	paths := map[string]struct{}{}
+	for _, l := range l.layers {
+		for p := range l {
+			if strings.HasPrefix(filepath.Base(p), ".wh.") {
+				delete(paths, p)
+			} else {
+				paths[p] = struct{}{}
+			}
+			paths[p] = struct{}{}
+		}
+	}
+	return paths
+}
+
 func (l *LayeredMap) Get(s string) (string, bool) {
 	for i := len(l.layers) - 1; i >= 0; i-- {
 		if v, ok := l.layers[i][s]; ok {
diff --git a/pkg/snapshot/snapshot.go b/pkg/snapshot/snapshot.go
index 1966537fb8..70cfcd117c 100644
--- a/pkg/snapshot/snapshot.go
+++ b/pkg/snapshot/snapshot.go
@@ -33,6 +33,7 @@ import (
 type Snapshotter struct {
 	l         *LayeredMap
 	directory string
+	hardlinks map[uint64]string
 }
 
 // NewSnapshotter creates a new snapshotter rooted at d
@@ -60,10 +61,7 @@ func (s *Snapshotter) TakeSnapshot(files []string) ([]byte, error) {
 	if err != nil {
 		return nil, err
 	}
-	contents, err := ioutil.ReadAll(buf)
-	if err != nil {
-		return nil, err
-	}
+	contents := buf.Bytes()
 	if !filesAdded {
 		return nil, nil
 	}
@@ -99,7 +97,7 @@ func (s *Snapshotter) TakeSnapshotOfFiles(files []string) ([]byte, error) {
 		}
 		if maybeAdd {
 			filesAdded = true
-			util.AddToTar(file, info, w)
+			util.AddToTar(file, info, s.hardlinks, w)
 		}
 	}
 	if !filesAdded {
@@ -109,27 +107,55 @@ func (s *Snapshotter) TakeSnapshotOfFiles(files []string) ([]byte, error) {
 }
 
 func (s *Snapshotter) snapShotFS(f io.Writer) (bool, error) {
+	s.hardlinks = map[uint64]string{}
 	s.l.Snapshot()
+	existingPaths := s.l.GetFlattenedPathsForWhiteOut()
 	filesAdded := false
 	w := tar.NewWriter(f)
 	defer w.Close()
 
-	err := filepath.Walk(s.directory, func(path string, info os.FileInfo, err error) error {
+	// Save the fs state in a map to iterate over later.
+	memFs := map[string]os.FileInfo{}
+	filepath.Walk(s.directory, func(path string, info os.FileInfo, err error) error {
+		memFs[path] = info
+		return nil
+	})
+
+	// First handle whiteouts
+	for p := range memFs {
+		delete(existingPaths, p)
+	}
+	for path := range existingPaths {
+		// Only add the whiteout if the directory for the file still exists.
+		dir := filepath.Dir(path)
+		if _, ok := memFs[dir]; ok {
+			logrus.Infof("Adding whiteout for %s", path)
+			filesAdded = true
+			if err := util.Whiteout(path, w); err != nil {
+				return false, err
+			}
+		}
+	}
+
+	// Now create the tar.
+	for path, info := range memFs {
 		if util.PathInWhitelist(path, s.directory) {
 			logrus.Debugf("Not adding %s to layer, as it's whitelisted", path)
-			return nil
+			continue
 		}
 
 		// Only add to the tar if we add it to the layeredmap.
 		maybeAdd, err := s.l.MaybeAdd(path)
 		if err != nil {
-			return err
+			return false, err
 		}
 		if maybeAdd {
 			filesAdded = true
-			return util.AddToTar(path, info, w)
+			if err := util.AddToTar(path, info, s.hardlinks, w); err != nil {
+				return false, err
+			}
 		}
-		return nil
-	})
-	return filesAdded, err
+	}
+
+	return filesAdded, nil
 }
diff --git a/pkg/util/tar_util.go b/pkg/util/tar_util.go
index 707ce6c294..c752c98c75 100644
--- a/pkg/util/tar_util.go
+++ b/pkg/util/tar_util.go
@@ -23,6 +23,7 @@ import (
 	"io"
 	"io/ioutil"
 	"os"
+	"path/filepath"
 	"syscall"
 
 	pkgutil "github.com/GoogleContainerTools/container-diff/pkg/util"
@@ -31,10 +32,8 @@ import (
 	"github.com/sirupsen/logrus"
 )
 
-var hardlinks = make(map[uint64]string)
-
 // AddToTar adds the file i to tar w at path p
-func AddToTar(p string, i os.FileInfo, w *tar.Writer) error {
+func AddToTar(p string, i os.FileInfo, hardlinks map[uint64]string, w *tar.Writer) error {
 	linkDst := ""
 	if i.Mode()&os.ModeSymlink != 0 {
 		var err error
@@ -49,7 +48,7 @@ func AddToTar(p string, i os.FileInfo, w *tar.Writer) error {
 	}
 	hdr.Name = p
 
-	hardlink, linkDst := checkHardlink(p, i)
+	hardlink, linkDst := checkHardlink(p, hardlinks, i)
 	if hardlink {
 		hdr.Linkname = linkDst
 		hdr.Typeflag = tar.TypeLink
@@ -72,8 +71,23 @@ func AddToTar(p string, i os.FileInfo, w *tar.Writer) error {
 	return nil
 }
 
+func Whiteout(p string, w *tar.Writer) error {
+	dir := filepath.Dir(p)
+	name := ".wh." + filepath.Base(p)
+
+	th := &tar.Header{
+		Name: filepath.Join(dir, name),
+		Size: 0,
+	}
+	if err := w.WriteHeader(th); err != nil {
+		return err
+	}
+
+	return nil
+}
+
 // Returns true if path is hardlink, and the link destination
-func checkHardlink(p string, i os.FileInfo) (bool, string) {
+func checkHardlink(p string, hardlinks map[uint64]string, i os.FileInfo) (bool, string) {
 	hardlink := false
 	linkDst := ""
 	if sys := i.Sys(); sys != nil {
diff --git a/pkg/util/tar_util_test.go b/pkg/util/tar_util_test.go
index 053eaf7aea..1762ea6f29 100644
--- a/pkg/util/tar_util_test.go
+++ b/pkg/util/tar_util_test.go
@@ -101,7 +101,7 @@ func createTar(testdir string, writer io.Writer) error {
 		if err != nil {
 			return err
 		}
-		if err := AddToTar(filePath, fi, w); err != nil {
+		if err := AddToTar(filePath, fi, map[uint64]string{}, w); err != nil {
 			return err
 		}
 	}

From 7dbc7a04a7e03a8249887474b3b5af8f3e492acc Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 23 Apr 2018 17:09:29 -0700
Subject: [PATCH 15/69] Support multi stage builds

---
 cmd/executor/cmd/root.go                      |  11 +-
 .../dockerfiles/Dockerfile_test_multistage    |   8 +
 .../dockerfiles/config_test_multistage.json   |  12 ++
 integration_tests/integration_test_yaml.go    |   8 +
 pkg/commands/copy.go                          |  15 +-
 pkg/commands/env.go                           |   6 +
 pkg/dockerfile/dockerfile.go                  |  72 ++++++++-
 pkg/dockerfile/dockerfile_test.go             |  96 ++++++++++++
 pkg/executor/executor.go                      | 142 +++++++++++-------
 pkg/util/command_util.go                      |   2 +-
 pkg/util/fs_util.go                           |  32 +++-
 test.sh                                       |   2 +-
 12 files changed, 341 insertions(+), 65 deletions(-)
 create mode 100644 integration_tests/dockerfiles/Dockerfile_test_multistage
 create mode 100644 integration_tests/dockerfiles/config_test_multistage.json
 create mode 100644 pkg/dockerfile/dockerfile_test.go

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 2c8e9b69aa..8a03af8314 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -23,9 +23,9 @@ import (
 
 	"github.com/genuinetools/amicontained/container"
 
-	"github.com/GoogleContainerTools/kaniko/pkg/executor"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
+	"github.com/GoogleContainerTools/kaniko/pkg/executor"
+	"github.com/GoogleContainerTools/kaniko/pkg/image"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/sirupsen/logrus"
 	"github.com/spf13/cobra"
@@ -72,7 +72,12 @@ var RootCmd = &cobra.Command{
 			}
 			logrus.Warn("kaniko is being run outside of a container. This can have dangerous effects on your system")
 		}
-		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
+		buildImage, err := executor.DoBuild(dockerfilePath, srcContext, snapshotMode)
+		if err != nil {
+			logrus.Error(err)
+			os.Exit(1)
+		}
+		if err := image.PushImage(buildImage, destination, dockerInsecureSkipTLSVerify); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
diff --git a/integration_tests/dockerfiles/Dockerfile_test_multistage b/integration_tests/dockerfiles/Dockerfile_test_multistage
new file mode 100644
index 0000000000..3833e88065
--- /dev/null
+++ b/integration_tests/dockerfiles/Dockerfile_test_multistage
@@ -0,0 +1,8 @@
+FROM gcr.io/distroless/base:latest
+COPY . .
+
+FROM scratch as second
+COPY --from=0 context/foo /foo
+
+FROM gcr.io/distroless/base:latest
+COPY --from=second /foo /foo2
diff --git a/integration_tests/dockerfiles/config_test_multistage.json b/integration_tests/dockerfiles/config_test_multistage.json
new file mode 100644
index 0000000000..9aa0494cb8
--- /dev/null
+++ b/integration_tests/dockerfiles/config_test_multistage.json
@@ -0,0 +1,12 @@
+[
+  {
+    "Image1": "gcr.io/kaniko-test/docker-test-multistage:latest",
+    "Image2": "gcr.io/kaniko-test/kaniko-test-multistage:latest",
+    "DiffType": "File",
+    "Diff": {
+      "Adds": null,
+      "Dels": null,
+      "Mods": null
+    }
+  }
+]
\ No newline at end of file
diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index fc01d48485..a9f09e3a4d 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -139,6 +139,14 @@ var fileTests = []struct {
 		kanikoContext:  buildcontextPath,
 		repo:           "test-scratch",
 	},
+	{
+		description:    "test multistage",
+		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_multistage",
+		configPath:     "/workspace/integration_tests/dockerfiles/config_test_multistage.json",
+		dockerContext:  buildcontextPath,
+		kanikoContext:  buildcontextPath,
+		repo:           "test-multistage",
+	},
 }
 
 var structureTests = []struct {
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index bded4bf99c..3d617a3db1 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
@@ -39,6 +40,11 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	logrus.Infof("cmd: copy %s", srcs)
 	logrus.Infof("dest: %s", dest)
 
+	// Resolve from
+	if c.cmd.From != "" {
+		c.buildcontext = filepath.Join(constants.BuildContextDir, c.cmd.From)
+	}
+
 	// First, resolve any environment replacement
 	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.cmd.SourcesAndDest, config.Env, true)
 	if err != nil {
@@ -57,11 +63,18 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		if err != nil {
 			return err
 		}
-		destPath, err := util.DestinationFilepath(src, dest, config.WorkingDir)
+		cwd := config.WorkingDir
+		if cwd == "" {
+			cwd = constants.RootDir
+		}
+		destPath, err := util.DestinationFilepath(src, dest, cwd)
 		if err != nil {
 			return err
 		}
 		if fi.IsDir() {
+			if !filepath.IsAbs(dest) {
+				dest = filepath.Join(cwd, dest)
+			}
 			if err := util.CopyDir(fullPath, dest); err != nil {
 				return err
 			}
diff --git a/pkg/commands/env.go b/pkg/commands/env.go
index acb379e23f..691315f6db 100644
--- a/pkg/commands/env.go
+++ b/pkg/commands/env.go
@@ -29,6 +29,12 @@ type EnvCommand struct {
 	cmd *instructions.EnvCommand
 }
 
+func NewEnvCommand(cmd *instructions.EnvCommand) EnvCommand {
+	return EnvCommand{
+		cmd: cmd,
+	}
+}
+
 func (e *EnvCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	logrus.Info("cmd: ENV")
 	newEnvs := e.cmd.Env
diff --git a/pkg/dockerfile/dockerfile.go b/pkg/dockerfile/dockerfile.go
index f755a547e8..c5e91f256b 100644
--- a/pkg/dockerfile/dockerfile.go
+++ b/pkg/dockerfile/dockerfile.go
@@ -18,10 +18,15 @@ package dockerfile
 
 import (
 	"bytes"
-	"strings"
-
+	"github.com/GoogleContainerTools/kaniko/pkg/commands"
+	"github.com/GoogleContainerTools/kaniko/pkg/constants"
+	"github.com/GoogleContainerTools/kaniko/pkg/image"
+	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/builder/dockerfile/parser"
+	"path/filepath"
+	"strconv"
+	"strings"
 )
 
 // Parse parses the contents of a Dockerfile and returns a list of commands
@@ -37,6 +42,25 @@ func Parse(b []byte) ([]instructions.Stage, error) {
 	return stages, err
 }
 
+// ResolveStages resolves any calls to previous stages to the number value of that stage
+// Ex. --from=second_stage should be --from=1 for easier processing later on
+func ResolveStages(stages []instructions.Stage) {
+	nameToIndex := make(map[string]string)
+	for i, stage := range stages {
+		index := strconv.Itoa(i)
+		nameToIndex[stage.Name] = index
+		nameToIndex[index] = index
+		for _, cmd := range stage.Commands {
+			switch c := cmd.(type) {
+			case *instructions.CopyCommand:
+				if c.From != "" {
+					c.From = nameToIndex[c.From]
+				}
+			}
+		}
+	}
+}
+
 // ParseCommands parses an array of commands into an array of instructions.Command; used for onbuild
 func ParseCommands(cmdArray []string) ([]instructions.Command, error) {
 	var cmds []instructions.Command
@@ -54,3 +78,47 @@ func ParseCommands(cmdArray []string) ([]instructions.Command, error) {
 	}
 	return cmds, nil
 }
+
+// Dependencies returns a list of files in this stage that will be needed in later stages
+func Dependencies(index int, stages []instructions.Stage) ([]string, error) {
+	var dependencies []string
+	for stageIndex, stage := range stages {
+		if stageIndex <= index {
+			continue
+		}
+		ms, err := image.NewSourceImage(stage.BaseName)
+		if err != nil {
+			return nil, err
+		}
+		for _, cmd := range stage.Commands {
+			switch c := cmd.(type) {
+			case *instructions.EnvCommand:
+				envCommand := commands.NewEnvCommand(c)
+				if err := envCommand.ExecuteCommand(ms.Config()); err != nil {
+					return nil, err
+				}
+			case *instructions.CopyCommand:
+				if c.From != strconv.Itoa(index) {
+					continue
+				}
+				// First, resolve any environment replacement
+				resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.SourcesAndDest, ms.Config().Env, true)
+				if err != nil {
+					return nil, err
+				}
+				// Resolve wildcards and get a list of resolved sources
+				srcs, err := util.ResolveSources(resolvedEnvs, constants.RootDir)
+				if err != nil {
+					return nil, err
+				}
+				for index, src := range srcs {
+					if !filepath.IsAbs(src) {
+						srcs[index] = filepath.Join(constants.RootDir, src)
+					}
+				}
+				dependencies = append(dependencies, srcs...)
+			}
+		}
+	}
+	return dependencies, nil
+}
diff --git a/pkg/dockerfile/dockerfile_test.go b/pkg/dockerfile/dockerfile_test.go
new file mode 100644
index 0000000000..4c4c7e39c6
--- /dev/null
+++ b/pkg/dockerfile/dockerfile_test.go
@@ -0,0 +1,96 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package dockerfile
+
+import (
+	"fmt"
+	"github.com/GoogleContainerTools/kaniko/testutil"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"strconv"
+	"testing"
+)
+
+var dockerfile = `
+FROM scratch
+RUN echo hi > /hi
+
+FROM scratch AS second
+COPY --from=0 /hi /hi2
+
+FROM scratch
+COPY --from=second /hi2 /hi3
+`
+
+func Test_ResolveStages(t *testing.T) {
+	stages, err := Parse([]byte(dockerfile))
+	if err != nil {
+		t.Fatal(err)
+	}
+	ResolveStages(stages)
+	for index, stage := range stages {
+		if index == 0 {
+			continue
+		}
+		copyCmd := stage.Commands[0].(*instructions.CopyCommand)
+		expectedStage := strconv.Itoa(index - 1)
+		if copyCmd.From != expectedStage {
+			t.Fatalf("unexpected copy command: %s resolved to stage %s, expected %s", copyCmd.String(), copyCmd.From, expectedStage)
+		}
+	}
+}
+
+func Test_Dependencies(t *testing.T) {
+	testDir, err := ioutil.TempDir("", "")
+	if err != nil {
+		t.Fatal(err)
+	}
+	helloPath := filepath.Join(testDir, "hello")
+	if err := os.Mkdir(helloPath, 0755); err != nil {
+		t.Fatal(err)
+	}
+
+	dockerfile := fmt.Sprintf(`
+	FROM scratch
+	COPY %s %s
+	
+	FROM scratch AS second
+	ENV hienv %s
+	COPY a b
+	COPY --from=0 /$hienv %s /hi2/
+	`, helloPath, helloPath, helloPath, testDir)
+
+	stages, err := Parse([]byte(dockerfile))
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	expectedDependencies := [][]string{
+		{
+			helloPath,
+			testDir,
+		},
+		nil,
+	}
+
+	for index := range stages {
+		actualDeps, err := Dependencies(index, stages)
+		testutil.CheckErrorAndDeepEqual(t, false, err, expectedDependencies[index], actualDeps)
+	}
+}
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index ab9eacd53f..3dc14fb552 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -18,9 +18,7 @@ package executor
 
 import (
 	"fmt"
-	"io/ioutil"
-	"os"
-
+	img "github.com/GoogleContainerTools/container-diff/pkg/image"
 	"github.com/GoogleContainerTools/kaniko/pkg/commands"
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
@@ -30,72 +28,76 @@ import (
 	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"strconv"
 )
 
-func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool) error {
+// DoBuild executes each stage of the build
+func DoBuild(dockerfilePath, srcContext, snapshotMode string) (*img.MutableSource, error) {
 	// Parse dockerfile and unpack base image to root
 	d, err := ioutil.ReadFile(dockerfilePath)
 	if err != nil {
-		return err
+		return nil, err
 	}
 
 	stages, err := dockerfile.Parse(d)
 	if err != nil {
-		return err
-	}
-	baseImage := stages[0].BaseName
-
-	// Unpack file system to root
-	logrus.Infof("Unpacking filesystem of %s...", baseImage)
-	if err := util.ExtractFileSystemFromImage(baseImage); err != nil {
-		return err
+		return nil, err
 	}
+	dockerfile.ResolveStages(stages)
 
 	hasher, err := getHasher(snapshotMode)
 	if err != nil {
-		return err
-	}
-	l := snapshot.NewLayeredMap(hasher)
-	snapshotter := snapshot.NewSnapshotter(l, constants.RootDir)
-
-	// Take initial snapshot
-	if err := snapshotter.Init(); err != nil {
-		return err
+		return nil, err
 	}
 
-	// Initialize source image
-	sourceImage, err := image.NewSourceImage(baseImage)
-	if err != nil {
-		return err
-	}
+	for index, stage := range stages {
+		baseImage := stage.BaseName
+		finalStage := index == len(stages)-1
+		// Unpack file system to root
+		logrus.Infof("Unpacking filesystem of %s...", baseImage)
+		if err := util.ExtractFileSystemFromImage(baseImage); err != nil {
+			return nil, err
+		}
 
-	// Set environment variables within the image
-	if err := image.SetEnvVariables(sourceImage); err != nil {
-		return err
-	}
+		l := snapshot.NewLayeredMap(hasher)
+		snapshotter := snapshot.NewSnapshotter(l, constants.RootDir)
 
-	imageConfig := sourceImage.Config()
-	// Currently only supports single stage builds
-	for _, stage := range stages {
+		// Take initial snapshot
+		if err := snapshotter.Init(); err != nil {
+			return nil, err
+		}
+		// Initialize source image
+		sourceImage, err := image.NewSourceImage(baseImage)
+		if err != nil {
+			return nil, err
+		}
+		imageConfig := sourceImage.Config()
 		if err := resolveOnBuild(&stage, imageConfig); err != nil {
-			return err
+			return nil, err
 		}
+
 		for _, cmd := range stage.Commands {
 			dockerCommand, err := commands.GetCommand(cmd, srcContext)
 			if err != nil {
-				return err
+				return nil, err
 			}
 			if dockerCommand == nil {
 				continue
 			}
 			if err := dockerCommand.ExecuteCommand(imageConfig); err != nil {
-				return err
+				return nil, err
+			}
+			if !finalStage {
+				continue
 			}
 			// Now, we get the files to snapshot from this command and take the snapshot
 			snapshotFiles := dockerCommand.FilesToSnapshot()
 			contents, err := snapshotter.TakeSnapshot(snapshotFiles)
 			if err != nil {
-				return err
+				return nil, err
 			}
 			util.MoveVolumeWhitelistToWhitelist()
 			if contents == nil {
@@ -105,15 +107,58 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 			}
 			// Append the layer to the image
 			if err := sourceImage.AppendLayer(contents, constants.Author); err != nil {
-				return err
+				return nil, err
 			}
 		}
+		if finalStage {
+			return sourceImage, nil
+		}
+		if err := saveStageDependencies(index, stages); err != nil {
+			return nil, err
+		}
+		// Delete the filesystem
+		if err := util.DeleteFilesystem(); err != nil {
+			return nil, err
+		}
+	}
+	return nil, nil
+}
+
+func saveStageDependencies(index int, stages []instructions.Stage) error {
+	// First, get the files in this stage later stages will need
+	dependencies, err := dockerfile.Dependencies(index, stages)
+	logrus.Infof("saving dependencies %s", dependencies)
+	if err != nil {
+		return err
 	}
-	// Push the image
-	if err := setDefaultEnv(); err != nil {
+	// Then, create the directory they will exist in
+	i := strconv.Itoa(index)
+	dependencyDir := filepath.Join(constants.BuildContextDir, i)
+	if err := os.MkdirAll(dependencyDir, 0755); err != nil {
 		return err
 	}
-	return image.PushImage(sourceImage, destination, dockerInsecureSkipTLSVerify)
+	// Now, copy over dependencies to this dir
+	for _, d := range dependencies {
+		fi, err := os.Lstat(d)
+		if err != nil {
+			return err
+		}
+		dest := filepath.Join(dependencyDir, d)
+		if fi.IsDir() {
+			if err := util.CopyDir(d, dest); err != nil {
+				return err
+			}
+		} else if fi.Mode()&os.ModeSymlink != 0 {
+			if err := util.CopySymlink(d, dest); err != nil {
+				return err
+			}
+		} else {
+			if err := util.CopyFile(d, dest); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
 }
 
 func getHasher(snapshotMode string) (func(string) (string, error), error) {
@@ -141,18 +186,3 @@ func resolveOnBuild(stage *instructions.Stage, config *manifest.Schema2Config) e
 	logrus.Infof("Executing %v build triggers", len(cmds))
 	return nil
 }
-
-// setDefaultEnv sets default values for HOME and PATH so that
-// config.json and docker-credential-gcr can be accessed
-func setDefaultEnv() error {
-	defaultEnvs := map[string]string{
-		"HOME": "/root",
-		"PATH": "/usr/local/bin/",
-	}
-	for key, val := range defaultEnvs {
-		if err := os.Setenv(key, val); err != nil {
-			return err
-		}
-	}
-	return nil
-}
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index 20efd19a37..c8788a4941 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -178,7 +178,7 @@ func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, resolvedSources []stri
 	}
 
 	if len(resolvedSources) == 1 {
-		fi, err := os.Stat(filepath.Join(root, resolvedSources[0]))
+		fi, err := os.Lstat(filepath.Join(root, resolvedSources[0]))
 		if err != nil {
 			return err
 		}
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index f5c96b80b1..e32517c9ab 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -56,6 +56,33 @@ func ExtractFileSystemFromImage(img string) error {
 	return pkgutil.GetFileSystemFromReference(ref, imgSrc, constants.RootDir, whitelist)
 }
 
+// DeleteFilesystem deletes the extracted image file system
+func DeleteFilesystem() error {
+	logrus.Info("Deleting filesystem...")
+	err := filepath.Walk(constants.RootDir, func(path string, info os.FileInfo, err error) error {
+		if PathInWhitelist(path, constants.RootDir) || ChildDirInWhitelist(path, constants.RootDir) {
+			logrus.Debugf("Not deleting %s, as it's whitelisted", path)
+			return nil
+		}
+		if path == constants.RootDir {
+			return nil
+		}
+		return os.RemoveAll(path)
+	})
+	return err
+}
+
+// ChildDirInWhitelist returns true if there is a child file or directory of the path in the whitelist
+func ChildDirInWhitelist(path, directory string) bool {
+	for _, d := range whitelist {
+		dirPath := filepath.Join(directory, d)
+		if pkgutil.HasFilepathPrefix(dirPath, path) {
+			return true
+		}
+	}
+	return false
+}
+
 // PathInWhitelist returns true if the path is whitelisted
 func PathInWhitelist(path, directory string) bool {
 	for _, c := range constants.KanikoBuildFiles {
@@ -135,6 +162,9 @@ func Files(root string) ([]string, error) {
 	var files []string
 	logrus.Debugf("Getting files and contents at root %s", root)
 	err := filepath.Walk(root, func(path string, info os.FileInfo, err error) error {
+		if PathInWhitelist(path, root) {
+			return nil
+		}
 		files = append(files, path)
 		return err
 	})
@@ -219,7 +249,7 @@ func CopyDir(src, dest string) error {
 	}
 	for _, file := range files {
 		fullPath := filepath.Join(src, file)
-		fi, err := os.Stat(fullPath)
+		fi, err := os.Lstat(fullPath)
 		if err != nil {
 			return err
 		}
diff --git a/test.sh b/test.sh
index 1ca29155d2..a1b16b244f 100755
--- a/test.sh
+++ b/test.sh
@@ -21,7 +21,7 @@ GREEN='\033[0;32m'
 RESET='\033[0m'
 
 echo "Running go tests..."
-go test -cover -v -tags "containers_image_ostree_stub containers_image_openpgp exclude_graphdriver_devicemapper exclude_graphdriver_btrfs" -timeout 60s `go list ./... | grep -v vendor` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
+go test -cover -v -tags "containers_image_ostree_stub containers_image_openpgp exclude_graphdriver_devicemapper exclude_graphdriver_btrfs exclude_graphdriver_overlay" -timeout 60s `go list ./... | grep -v vendor` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
 GO_TEST_EXIT_CODE=${PIPESTATUS[0]}
 if [[ $GO_TEST_EXIT_CODE -ne 0 ]]; then
     exit $GO_TEST_EXIT_CODE

From cf713fe0cd39745cd08cac794d4357b76acf861b Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 23 Apr 2018 18:10:34 -0700
Subject: [PATCH 16/69] fixed bug in copy

---
 integration_tests/dockerfiles/Dockerfile_test_multistage | 3 ++-
 pkg/commands/copy.go                                     | 3 ++-
 pkg/dockerfile/dockerfile.go                             | 2 +-
 pkg/util/fs_util.go                                      | 3 +++
 pkg/util/fs_util_test.go                                 | 2 --
 5 files changed, 8 insertions(+), 5 deletions(-)

diff --git a/integration_tests/dockerfiles/Dockerfile_test_multistage b/integration_tests/dockerfiles/Dockerfile_test_multistage
index 3833e88065..18fa2d2c15 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_multistage
+++ b/integration_tests/dockerfiles/Dockerfile_test_multistage
@@ -2,7 +2,8 @@ FROM gcr.io/distroless/base:latest
 COPY . .
 
 FROM scratch as second
-COPY --from=0 context/foo /foo
+ENV foopath context/foo
+COPY --from=0 $foopath context/b* /foo/
 
 FROM gcr.io/distroless/base:latest
 COPY --from=second /foo /foo2
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 3d617a3db1..c2ca45fc2e 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -73,7 +73,8 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		}
 		if fi.IsDir() {
 			if !filepath.IsAbs(dest) {
-				dest = filepath.Join(cwd, dest)
+				// we need to add '/' to the end to indicate the destination is a directory
+				dest = filepath.Join(cwd, dest) + "/"
 			}
 			if err := util.CopyDir(fullPath, dest); err != nil {
 				return err
diff --git a/pkg/dockerfile/dockerfile.go b/pkg/dockerfile/dockerfile.go
index c5e91f256b..8cf98910aa 100644
--- a/pkg/dockerfile/dockerfile.go
+++ b/pkg/dockerfile/dockerfile.go
@@ -42,7 +42,7 @@ func Parse(b []byte) ([]instructions.Stage, error) {
 	return stages, err
 }
 
-// ResolveStages resolves any calls to previous stages to the number value of that stage
+// ResolveStages resolves any calls to previous stages with names to indices
 // Ex. --from=second_stage should be --from=1 for easier processing later on
 func ResolveStages(stages []instructions.Stage) {
 	nameToIndex := make(map[string]string)
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index e32517c9ab..fa236a771d 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -144,6 +144,9 @@ func RelativeFiles(fp string, root string) ([]string, error) {
 	fullPath := filepath.Join(root, fp)
 	logrus.Debugf("Getting files and contents at root %s", fullPath)
 	err := filepath.Walk(fullPath, func(path string, info os.FileInfo, err error) error {
+		if PathInWhitelist(path, root) {
+			return nil
+		}
 		if err != nil {
 			return err
 		}
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 36583564c1..be2574d13f 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -106,10 +106,8 @@ var tests = []struct {
 		expectedFiles: []string{
 			"workspace/foo/a",
 			"workspace/foo/b",
-			"kaniko/file",
 			"workspace",
 			"workspace/foo",
-			"kaniko",
 			".",
 		},
 	},

From 61d3c66b5f3779c47ce132533765a8550a53f816 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Tue, 24 Apr 2018 13:19:09 -0700
Subject: [PATCH 17/69] update readme

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 1603c767ee..f3133bf89d 100644
--- a/README.md
+++ b/README.md
@@ -40,6 +40,8 @@ The majority of Dockerfile commands can be executed with kaniko, but we're still
 
 Multi-Stage Dockerfiles are also unsupported currently, but will be ready soon.
 
+kaniko also does not support building Windows containers.
+
 ## Development
 ### kaniko Build Contexts
 kaniko supports local directories and GCS buckets as build contexts. To specify a local directory, pass in the `--context` flag as an argument to the executor image.

From a211c1ec71a1b48598b4e2439f71cee34b47f219 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Tue, 24 Apr 2018 14:56:30 -0700
Subject: [PATCH 18/69] Make sure to snapshot parent directories of specific
 files for add/copy

---
 pkg/commands/copy.go          | 11 ++++++-
 pkg/snapshot/snapshot.go      | 60 +++++++++++++++++++++--------------
 pkg/snapshot/snapshot_test.go | 21 ++++--------
 pkg/util/fs_util.go           | 17 ++++++++++
 pkg/util/fs_util_test.go      | 32 +++++++++++++++++++
 5 files changed, 102 insertions(+), 39 deletions(-)

diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index bded4bf99c..1ad9d77eca 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
@@ -57,11 +58,19 @@ func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 		if err != nil {
 			return err
 		}
-		destPath, err := util.DestinationFilepath(src, dest, config.WorkingDir)
+		cwd := config.WorkingDir
+		if cwd == "" {
+			cwd = constants.RootDir
+		}
+		destPath, err := util.DestinationFilepath(src, dest, cwd)
 		if err != nil {
 			return err
 		}
 		if fi.IsDir() {
+			if !filepath.IsAbs(dest) {
+				// we need to add '/' to the end to indicate the destination is a directory
+				dest = filepath.Join(cwd, dest) + "/"
+			}
 			if err := util.CopyDir(fullPath, dest); err != nil {
 				return err
 			}
diff --git a/pkg/snapshot/snapshot.go b/pkg/snapshot/snapshot.go
index 70cfcd117c..5b0a4cc1c0 100644
--- a/pkg/snapshot/snapshot.go
+++ b/pkg/snapshot/snapshot.go
@@ -19,10 +19,8 @@ package snapshot
 import (
 	"archive/tar"
 	"bytes"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/sirupsen/logrus"
-
 	"io"
 	"io/ioutil"
 	"os"
@@ -52,12 +50,14 @@ func (s *Snapshotter) Init() error {
 // TakeSnapshot takes a snapshot of the filesystem, avoiding directories in the whitelist, and creates
 // a tarball of the changed files. Return contents of the tarball, and whether or not any files were changed
 func (s *Snapshotter) TakeSnapshot(files []string) ([]byte, error) {
-	if files != nil {
-		return s.TakeSnapshotOfFiles(files)
-	}
-	logrus.Info("Taking snapshot of full filesystem...")
 	buf := bytes.NewBuffer([]byte{})
-	filesAdded, err := s.snapShotFS(buf)
+	var filesAdded bool
+	var err error
+	if files == nil {
+		filesAdded, err = s.snapShotFS(buf)
+	} else {
+		filesAdded, err = s.snapshotFiles(buf, files)
+	}
 	if err != nil {
 		return nil, err
 	}
@@ -68,45 +68,57 @@ func (s *Snapshotter) TakeSnapshot(files []string) ([]byte, error) {
 	return contents, err
 }
 
-// TakeSnapshotOfFiles takes a snapshot of specific files
+// snapshotFiles takes a snapshot of specific files
 // Used for ADD/COPY commands, when we know which files have changed
-func (s *Snapshotter) TakeSnapshotOfFiles(files []string) ([]byte, error) {
-	logrus.Infof("Taking snapshot of files %v...", files)
+func (s *Snapshotter) snapshotFiles(f io.Writer, files []string) (bool, error) {
+	s.hardlinks = map[uint64]string{}
 	s.l.Snapshot()
 	if len(files) == 0 {
 		logrus.Info("No files changed in this command, skipping snapshotting.")
-		return nil, nil
+		return false, nil
+	}
+	logrus.Infof("Taking snapshot of files %v...", files)
+	snapshottedFiles := make(map[string]bool)
+	for _, file := range files {
+		parentDirs := util.ParentDirectories(file)
+		files = append(parentDirs, files...)
 	}
-	buf := bytes.NewBuffer([]byte{})
-	w := tar.NewWriter(buf)
-	defer w.Close()
 	filesAdded := false
+	w := tar.NewWriter(f)
+	defer w.Close()
+
+	// Now create the tar.
 	for _, file := range files {
-		info, err := os.Lstat(file)
-		if err != nil {
-			return nil, err
+		file = filepath.Clean(file)
+		if val, ok := snapshottedFiles[file]; ok && val {
+			continue
 		}
 		if util.PathInWhitelist(file, s.directory) {
-			logrus.Debugf("Not adding %s to layer, as it is whitelisted", file)
+			logrus.Debugf("Not adding %s to layer, as it's whitelisted", file)
 			continue
 		}
+		snapshottedFiles[file] = true
+		info, err := os.Lstat(file)
+		if err != nil {
+			return false, err
+		}
 		// Only add to the tar if we add it to the layeredmap.
 		maybeAdd, err := s.l.MaybeAdd(file)
 		if err != nil {
-			return nil, err
+			return false, err
 		}
 		if maybeAdd {
 			filesAdded = true
-			util.AddToTar(file, info, s.hardlinks, w)
+			if err := util.AddToTar(file, info, s.hardlinks, w); err != nil {
+				return false, err
+			}
 		}
 	}
-	if !filesAdded {
-		return nil, nil
-	}
-	return ioutil.ReadAll(buf)
+	return filesAdded, nil
 }
 
 func (s *Snapshotter) snapShotFS(f io.Writer) (bool, error) {
+	logrus.Info("Taking snapshot of full filesystem...")
 	s.hardlinks = map[uint64]string{}
 	s.l.Snapshot()
 	existingPaths := s.l.GetFlattenedPathsForWhiteOut()
diff --git a/pkg/snapshot/snapshot_test.go b/pkg/snapshot/snapshot_test.go
index 2def85db0e..7cee2ad118 100644
--- a/pkg/snapshot/snapshot_test.go
+++ b/pkg/snapshot/snapshot_test.go
@@ -149,30 +149,23 @@ func TestSnapshotFiles(t *testing.T) {
 	if err != nil {
 		t.Fatal(err)
 	}
-	expectedContents := map[string]string{
-		filepath.Join(testDir, "foo"): "newbaz1",
-	}
+	expectedFiles := []string{"/tmp", filepath.Join(testDir, "foo")}
+
 	// Check contents of the snapshot, make sure contents is equivalent to snapshotFiles
 	reader := bytes.NewReader(contents)
 	tr := tar.NewReader(reader)
-	numFiles := 0
+	var actualFiles []string
 	for {
 		hdr, err := tr.Next()
 		if err == io.EOF {
 			break
 		}
-		numFiles = numFiles + 1
-		if _, isFile := expectedContents[hdr.Name]; !isFile {
-			t.Fatalf("File %s unexpectedly in tar", hdr.Name)
-		}
-		contents, _ := ioutil.ReadAll(tr)
-		if string(contents) != expectedContents[hdr.Name] {
-			t.Fatalf("Contents of %s incorrect, expected: %s, actual: %s", hdr.Name, expectedContents[hdr.Name], string(contents))
+		if err != nil {
+			t.Fatal(err)
 		}
+		actualFiles = append(actualFiles, hdr.Name)
 	}
-	if numFiles != 1 {
-		t.Fatalf("%s was not added.", filepath.Join(testDir, "foo"))
-	}
+	testutil.CheckErrorAndDeepEqual(t, false, nil, expectedFiles, actualFiles)
 }
 
 func TestEmptySnapshot(t *testing.T) {
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index f5c96b80b1..e2b393d5b8 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -141,6 +141,23 @@ func Files(root string) ([]string, error) {
 	return files, err
 }
 
+// ParentDirectories returns a list of paths to all parent directories
+// Ex. /some/temp/dir -> [/some, /some/temp, /some/temp/dir]
+func ParentDirectories(path string) []string {
+	path = filepath.Clean(path)
+	dirs := strings.Split(path, "/")
+	dirPath := constants.RootDir
+	var paths []string
+	for _, dir := range dirs {
+		if dir == "" {
+			continue
+		}
+		dirPath = filepath.Join(dirPath, dir)
+		paths = append(paths, dirPath)
+	}
+	return paths
+}
+
 // FilepathExists returns true if the path exists
 func FilepathExists(path string) bool {
 	_, err := os.Lstat(path)
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 36583564c1..7b41a44644 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -131,3 +131,35 @@ func Test_RelativeFiles(t *testing.T) {
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedFiles, actualFiles)
 	}
 }
+
+func Test_ParentDirectories(t *testing.T) {
+	tests := []struct {
+		name     string
+		path     string
+		expected []string
+	}{
+		{
+			name: "regular path",
+			path: "/path/to/dir",
+			expected: []string{
+				"/path",
+				"/path/to",
+				"/path/to/dir",
+			},
+		},
+		{
+			name: "current directory",
+			path: ".",
+			expected: []string{
+				"/",
+			},
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			actual := ParentDirectories(tt.path)
+			testutil.CheckErrorAndDeepEqual(t, false, nil, tt.expected, actual)
+		})
+	}
+}

From 946b11b89427675842187d1ac8dc96066f3ad911 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 25 Apr 2018 12:59:18 -0700
Subject: [PATCH 19/69] fix parent directory

---
 pkg/util/fs_util.go      | 4 ++--
 pkg/util/fs_util_test.go | 9 +++------
 2 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index e2b393d5b8..6e832b54bc 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -148,8 +148,8 @@ func ParentDirectories(path string) []string {
 	dirs := strings.Split(path, "/")
 	dirPath := constants.RootDir
 	var paths []string
-	for _, dir := range dirs {
-		if dir == "" {
+	for index, dir := range dirs {
+		if dir == "" || index == (len(dirs)-1) {
 			continue
 		}
 		dirPath = filepath.Join(dirPath, dir)
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 7b41a44644..a33d3f3bf1 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -144,15 +144,12 @@ func Test_ParentDirectories(t *testing.T) {
 			expected: []string{
 				"/path",
 				"/path/to",
-				"/path/to/dir",
 			},
 		},
 		{
-			name: "current directory",
-			path: ".",
-			expected: []string{
-				"/",
-			},
+			name:     "current directory",
+			path:     ".",
+			expected: nil,
 		},
 	}
 

From 0343e6b50bc98fe16fdaba6a2dc440fb0b4c66e1 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 25 Apr 2018 14:09:42 -0700
Subject: [PATCH 20/69] Release executor based off debian for debugging

---
 deploy/Dockerfile_debug      | 25 +++++++++++++++++++++++++
 deploy/executor-release.yaml |  5 +++++
 2 files changed, 30 insertions(+)
 create mode 100644 deploy/Dockerfile_debug

diff --git a/deploy/Dockerfile_debug b/deploy/Dockerfile_debug
new file mode 100644
index 0000000000..a7af94fe5e
--- /dev/null
+++ b/deploy/Dockerfile_debug
@@ -0,0 +1,25 @@
+# Copyright 2018 Google, Inc. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Builds the executor from debian
+
+FROM gcr.io/google-appengine/debian9:latest
+ADD out/executor /kaniko/executor
+ADD files/ca-certificates.crt /kaniko/ssl/certs/
+ADD files/docker-credential-gcr /usr/local/bin/
+ADD files/config.json /root/.docker/
+ENV HOME /root
+ENV SSL_CERT_DIR=/kaniko/ssl/certs
+RUN ["docker-credential-gcr", "config", "--token-source=env"]
+ENTRYPOINT ["/kaniko/executor"]
diff --git a/deploy/executor-release.yaml b/deploy/executor-release.yaml
index c733962ba9..db3d5c5def 100644
--- a/deploy/executor-release.yaml
+++ b/deploy/executor-release.yaml
@@ -23,3 +23,8 @@ steps:
     args: ["--dockerfile=/workspace/deploy/Dockerfile",
            "--context=/workspace/go/src/github.com/GoogleContainerTools/kaniko/",
            "--destination=gcr.io/kaniko-project/executor:${COMMIT_SHA}"]
+  # Then, build kaniko:debug
+  - name: "gcr.io/kaniko-project/executor:latest"
+    args: ["--dockerfile=/workspace/deploy/Dockerfile_debug",
+           "--context=/workspace/go/src/github.com/GoogleContainerTools/kaniko/",
+           "--destination=gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}"]

From 02f199e101fc3acd0abd341367e30753c492c938 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 25 Apr 2018 16:06:17 -0700
Subject: [PATCH 21/69] Update readme for debug image

---
 README.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/README.md b/README.md
index f3133bf89d..9e7fa25346 100644
--- a/README.md
+++ b/README.md
@@ -18,6 +18,7 @@ Please let us know if you have any feature requests or find any bugs!
   - [Running kaniko in Google Container Builder](#running-kaniko-in-google-container-builder)
   - [Running kaniko locally](#running-kaniko-locally)
   - [Pushing to Different Registries](#pushing-to-different-registries)
+  - [Debug Image](#debug-image)
 - [Security](#security)
 - [Comparison with Other Tools](#comparison-with-other-tools)
 - [Community](#community)
@@ -145,6 +146,10 @@ kaniko uses Docker credential helpers to push images to a registry.
 
 kaniko comes with support for GCR, but configuring another credential helper should allow pushing to a different registry.
 
+### Debug Image
+
+We provide `gcr.io/kaniko-project/executor:debug` as a a version of the executor image based off a Debian image. 
+This provides a shell and can be useful for debugging.
 
 ## Security
  

From cd5b744904f5ea7bb1eaa623c11c96a136a71253 Mon Sep 17 00:00:00 2001
From: dlorenc <lorenc.d@gmail.com>
Date: Wed, 25 Apr 2018 19:21:05 -0700
Subject: [PATCH 22/69] Switch from containers/image to go-containerregistry
 (#140)

* Vendor changes for go-containerregistry switch.

* Manual changes for go-containerregistry switch.

The biggest change is refactoring the tarball unpacking.

* Pull more of container-diff out.

* More vendor removals.

* More unit tests.
---
 Gopkg.lock                                    |  354 +--
 Gopkg.toml                                    |    5 -
 cmd/executor/cmd/root.go                      |    4 +
 deploy/Dockerfile                             |    1 +
 pkg/commands/add.go                           |    5 +-
 pkg/commands/cmd.go                           |    7 +-
 pkg/commands/cmd_test.go                      |   12 +-
 pkg/commands/commands.go                      |    4 +-
 pkg/commands/copy.go                          |   11 +-
 pkg/commands/entrypoint.go                    |    7 +-
 pkg/commands/entrypoint_test.go               |   11 +-
 pkg/commands/env.go                           |    6 +-
 pkg/commands/env_test.go                      |    6 +-
 pkg/commands/expose.go                        |    9 +-
 pkg/commands/expose_test.go                   |   12 +-
 pkg/commands/label.go                         |    6 +-
 pkg/commands/label_test.go                    |    4 +-
 pkg/commands/onbuild.go                       |    4 +-
 pkg/commands/onbuild_test.go                  |    4 +-
 pkg/commands/run.go                           |    4 +-
 pkg/commands/user.go                          |    4 +-
 pkg/commands/user_test.go                     |    4 +-
 pkg/commands/volume.go                        |    4 +-
 pkg/commands/volume_test.go                   |    4 +-
 pkg/commands/workdir.go                       |    4 +-
 pkg/commands/workdir_test.go                  |    4 +-
 pkg/executor/executor.go                      |   85 +-
 pkg/image/image.go                            |   73 +-
 pkg/snapshot/snapshot.go                      |    1 +
 pkg/util/fs_util.go                           |  202 +-
 pkg/util/fs_util_test.go                      |  360 ++-
 pkg/util/tar_util.go                          |    7 +-
 vendor/github.com/BurntSushi/toml/COPYING     |   14 -
 .../toml/cmd/toml-test-decoder/COPYING        |   14 -
 .../toml/cmd/toml-test-encoder/COPYING        |   14 -
 .../BurntSushi/toml/cmd/tomlv/COPYING         |   14 -
 vendor/github.com/BurntSushi/toml/decode.go   |  509 ---
 .../github.com/BurntSushi/toml/decode_meta.go |  121 -
 vendor/github.com/BurntSushi/toml/doc.go      |   27 -
 vendor/github.com/BurntSushi/toml/encode.go   |  568 ----
 .../BurntSushi/toml/encoding_types.go         |   19 -
 .../BurntSushi/toml/encoding_types_1.1.go     |   18 -
 vendor/github.com/BurntSushi/toml/lex.go      |  953 ------
 vendor/github.com/BurntSushi/toml/parse.go    |  592 ----
 .../github.com/BurntSushi/toml/type_check.go  |   91 -
 .../github.com/BurntSushi/toml/type_fields.go |  242 --
 .../container-diff/LICENSE                    |  202 --
 .../container-diff/cmd/util/output/output.go  |   37 -
 .../pkg/image/mutable_source.go               |  262 --
 .../container-diff/pkg/image/proxy_types.go   |   64 -
 .../container-diff/pkg/util/cloud_prepper.go  |   76 -
 .../container-diff/pkg/util/daemon_prepper.go |   93 -
 .../container-diff/pkg/util/docker_utils.go   |  123 -
 .../container-diff/pkg/util/fs_utils.go       |  181 --
 .../pkg/util/image_prep_utils.go              |  288 --
 .../container-diff/pkg/util/image_utils.go    |   78 -
 .../container-diff/pkg/util/tar_prepper.go    |  102 -
 .../container-diff/pkg/util/tar_utils.go      |  224 --
 .../Microsoft/go-winio/archive/tar/common.go  |  344 --
 .../Microsoft/go-winio/archive/tar/reader.go  | 1002 ------
 .../go-winio/archive/tar/stat_atim.go         |   20 -
 .../go-winio/archive/tar/stat_atimespec.go    |   20 -
 .../go-winio/archive/tar/stat_unix.go         |   32 -
 .../Microsoft/go-winio/archive/tar/writer.go  |  444 ---
 .../Microsoft/go-winio/backuptar/noop.go      |    4 -
 .../Microsoft/go-winio/backuptar/tar.go       |  439 ---
 vendor/github.com/Microsoft/hcsshim/LICENSE   |   21 -
 .../Microsoft/hcsshim/activatelayer.go        |   28 -
 .../github.com/Microsoft/hcsshim/baselayer.go |  183 --
 .../github.com/Microsoft/hcsshim/callback.go  |   79 -
 vendor/github.com/Microsoft/hcsshim/cgo.go    |    7 -
 .../github.com/Microsoft/hcsshim/container.go |  800 -----
 .../Microsoft/hcsshim/createlayer.go          |   27 -
 .../Microsoft/hcsshim/createsandboxlayer.go   |   35 -
 .../Microsoft/hcsshim/deactivatelayer.go      |   26 -
 .../Microsoft/hcsshim/destroylayer.go         |   27 -
 vendor/github.com/Microsoft/hcsshim/errors.go |  261 --
 .../Microsoft/hcsshim/expandsandboxsize.go    |   26 -
 .../Microsoft/hcsshim/exportlayer.go          |  156 -
 .../Microsoft/hcsshim/getlayermountpath.go    |   55 -
 .../Microsoft/hcsshim/getsharedbaseimages.go  |   22 -
 vendor/github.com/Microsoft/hcsshim/guid.go   |   19 -
 .../github.com/Microsoft/hcsshim/hcsshim.go   |  166 -
 .../Microsoft/hcsshim/hnsendpoint.go          |  323 --
 .../github.com/Microsoft/hcsshim/hnsfuncs.go  |   40 -
 .../Microsoft/hcsshim/hnsnetwork.go           |  141 -
 .../github.com/Microsoft/hcsshim/hnspolicy.go |   94 -
 .../Microsoft/hcsshim/hnspolicylist.go        |  200 --
 .../Microsoft/hcsshim/importlayer.go          |  212 --
 .../github.com/Microsoft/hcsshim/interface.go |  188 --
 .../Microsoft/hcsshim/layerexists.go          |   30 -
 .../Microsoft/hcsshim/layerutils.go           |  111 -
 vendor/github.com/Microsoft/hcsshim/legacy.go |  758 -----
 .../github.com/Microsoft/hcsshim/legacy18.go  |    7 -
 .../github.com/Microsoft/hcsshim/legacy19.go  |    7 -
 .../Microsoft/hcsshim/mksyscall_windows.go    |  934 ------
 .../Microsoft/hcsshim/nametoguid.go           |   20 -
 .../Microsoft/hcsshim/preparelayer.go         |   46 -
 .../github.com/Microsoft/hcsshim/process.go   |  384 ---
 .../Microsoft/hcsshim/processimage.go         |   23 -
 .../Microsoft/hcsshim/unpreparelayer.go       |   27 -
 vendor/github.com/Microsoft/hcsshim/utils.go  |   33 -
 .../github.com/Microsoft/hcsshim/version.go   |    7 -
 .../Microsoft/hcsshim/waithelper.go           |   63 -
 .../github.com/Microsoft/hcsshim/zhcsshim.go  | 1042 ------
 vendor/github.com/beorn7/perks/LICENSE        |   20 -
 .../beorn7/perks/quantile/stream.go           |  316 --
 vendor/github.com/containers/image/LICENSE    |  189 --
 .../github.com/containers/image/copy/copy.go  |  718 -----
 .../containers/image/copy/fixtures/Hello.bz2  |    1 -
 .../containers/image/copy/fixtures/Hello.gz   |    1 -
 .../image/copy/fixtures/Hello.uncompressed    |    1 -
 .../containers/image/copy/fixtures/Hello.xz   |    1 -
 .../containers/image/copy/manifest.go         |  115 -
 .../containers/image/copy/progress_reader.go  |   28 -
 .../github.com/containers/image/copy/sign.go  |   31 -
 .../image/directory/directory_dest.go         |  243 --
 .../image/directory/directory_src.go          |   89 -
 .../image/directory/directory_transport.go    |  187 --
 .../image/directory/explicitfilepath/path.go  |   56 -
 .../containers/image/docker/archive/dest.go   |   66 -
 .../containers/image/docker/archive/src.go    |   41 -
 .../image/docker/archive/transport.go         |  154 -
 .../containers/image/docker/daemon/client.go  |   69 -
 .../image/docker/daemon/daemon_dest.go        |  135 -
 .../image/docker/daemon/daemon_src.go         |   88 -
 .../image/docker/daemon/daemon_transport.go   |  185 --
 .../containers/image/docker/docker_client.go  |  439 ---
 .../containers/image/docker/docker_image.go   |   63 -
 .../image/docker/docker_image_dest.go         |  463 ---
 .../image/docker/docker_image_src.go          |  386 ---
 .../image/docker/docker_transport.go          |  161 -
 .../containers/image/docker/lookaside.go      |  202 --
 .../docker/policyconfiguration/naming.go      |   56 -
 .../image/docker/reference/helpers.go         |   42 -
 .../image/docker/reference/normalize.go       |  152 -
 .../image/docker/reference/reference.go       |  433 ---
 .../image/docker/reference/regexp.go          |  143 -
 .../containers/image/docker/tarfile/dest.go   |  257 --
 .../containers/image/docker/tarfile/doc.go    |    3 -
 .../containers/image/docker/tarfile/src.go    |  366 ---
 .../containers/image/docker/tarfile/types.go  |   28 -
 .../image/docker/wwwauthenticate.go           |  159 -
 .../containers/image/image/docker_list.go     |   93 -
 .../containers/image/image/docker_schema1.go  |  201 --
 .../containers/image/image/docker_schema2.go  |  347 --
 .../containers/image/image/manifest.go        |   67 -
 .../containers/image/image/memory.go          |   70 -
 .../github.com/containers/image/image/oci.go  |  199 --
 .../containers/image/image/sourced.go         |  106 -
 .../containers/image/image/unparsed.go        |  102 -
 .../image/internal/tmpdir/tmpdir.go           |   19 -
 .../image/manifest/docker_schema1.go          |  310 --
 .../image/manifest/docker_schema2.go          |  251 --
 .../containers/image/manifest/manifest.go     |  238 --
 .../containers/image/manifest/oci.go          |  120 -
 .../containers/image/oci/archive/oci_dest.go  |  131 -
 .../containers/image/oci/archive/oci_src.go   |   95 -
 .../image/oci/archive/oci_transport.go        |  190 --
 .../containers/image/oci/internal/oci_util.go |  126 -
 .../containers/image/oci/layout/oci_dest.go   |  294 --
 .../containers/image/oci/layout/oci_src.go    |  157 -
 .../image/oci/layout/oci_transport.go         |  255 --
 .../image/openshift/openshift-copies.go       | 1174 -------
 .../containers/image/openshift/openshift.go   |  544 ----
 .../image/openshift/openshift_transport.go    |  156 -
 .../containers/image/ostree/ostree_dest.go    |  456 ---
 .../containers/image/ostree/ostree_src.go     |  354 ---
 .../image/ostree/ostree_transport.go          |  251 --
 .../image/pkg/compression/compression.go      |   67 -
 .../image/pkg/docker/config/config.go         |  295 --
 .../containers/image/pkg/strslice/strslice.go |   30 -
 .../pkg/tlsclientconfig/tlsclientconfig.go    |  102 -
 .../containers/image/signature/docker.go      |   65 -
 .../manifest.json                             |    1 -
 .../dir-img-manifest-digest-error/signature-1 |    1 -
 .../fixtures/dir-img-mixed/manifest.json      |    1 -
 .../fixtures/dir-img-mixed/signature-1        |    1 -
 .../fixtures/dir-img-mixed/signature-2        |    1 -
 .../dir-img-modified-manifest/signature-1     |    1 -
 .../fixtures/dir-img-no-manifest/signature-1  |    1 -
 .../fixtures/dir-img-unsigned/manifest.json   |    1 -
 .../fixtures/dir-img-valid-2/manifest.json    |    1 -
 .../fixtures/dir-img-valid-2/signature-1      |    1 -
 .../fixtures/dir-img-valid/manifest.json      |    1 -
 .../containers/image/signature/json.go        |   88 -
 .../containers/image/signature/mechanism.go   |   85 -
 .../image/signature/mechanism_gpgme.go        |  175 -
 .../image/signature/mechanism_openpgp.go      |  159 -
 .../image/signature/policy_config.go          |  688 ----
 .../containers/image/signature/policy_eval.go |  289 --
 .../image/signature/policy_eval_baselayer.go  |   18 -
 .../image/signature/policy_eval_signedby.go   |  131 -
 .../image/signature/policy_eval_simple.go     |   28 -
 .../image/signature/policy_reference_match.go |  101 -
 .../image/signature/policy_types.go           |  152 -
 .../containers/image/signature/signature.go   |  280 --
 .../containers/image/storage/storage_image.go |  808 -----
 .../image/storage/storage_reference.go        |  209 --
 .../image/storage/storage_transport.go        |  450 ---
 .../containers/image/tarball/doc.go           |   48 -
 .../image/tarball/tarball_reference.go        |   93 -
 .../containers/image/tarball/tarball_src.go   |  260 --
 .../image/tarball/tarball_transport.go        |   66 -
 .../transports/alltransports/alltransports.go |   35 -
 .../image/transports/alltransports/ostree.go  |    8 -
 .../transports/alltransports/ostree_stub.go   |    9 -
 .../image/transports/alltransports/storage.go |    8 -
 .../transports/alltransports/storage_stub.go  |    9 -
 .../containers/image/transports/stub.go       |   36 -
 .../containers/image/transports/transports.go |   90 -
 .../containers/image/types/types.go           |  388 ---
 .../containers/image/version/version.go       |   18 -
 vendor/github.com/containers/storage/AUTHORS  | 1522 ---------
 vendor/github.com/containers/storage/LICENSE  |  191 --
 vendor/github.com/containers/storage/NOTICE   |   19 -
 .../containers/storage/containers.go          |  531 ----
 .../containers/storage/containers_ffjson.go   | 1194 -------
 .../containers/storage/drivers/aufs/aufs.go   |  691 ----
 .../containers/storage/drivers/aufs/dirs.go   |   64 -
 .../containers/storage/drivers/aufs/mount.go  |   21 -
 .../storage/drivers/aufs/mount_linux.go       |    7 -
 .../storage/drivers/aufs/mount_unsupported.go |   12 -
 .../containers/storage/drivers/btrfs/btrfs.go |  677 ----
 .../drivers/btrfs/dummy_unsupported.go        |    3 -
 .../storage/drivers/btrfs/version.go          |   26 -
 .../storage/drivers/btrfs/version_none.go     |   14 -
 .../containers/storage/drivers/counter.go     |   59 -
 .../storage/drivers/devmapper/device_setup.go |  236 --
 .../storage/drivers/devmapper/deviceset.go    | 2825 -----------------
 .../drivers/devmapper/devmapper_doc.go        |  106 -
 .../storage/drivers/devmapper/driver.go       |  240 --
 .../storage/drivers/devmapper/mount.go        |   88 -
 .../containers/storage/drivers/driver.go      |  285 --
 .../storage/drivers/driver_freebsd.go         |   23 -
 .../storage/drivers/driver_linux.go           |  135 -
 .../storage/drivers/driver_solaris.go         |   96 -
 .../storage/drivers/driver_unsupported.go     |   15 -
 .../storage/drivers/driver_windows.go         |   14 -
 .../containers/storage/drivers/fsdiff.go      |  169 -
 .../storage/drivers/overlay/check.go          |  102 -
 .../storage/drivers/overlay/mount.go          |   89 -
 .../storage/drivers/overlay/overlay.go        |  773 -----
 .../drivers/overlay/overlay_unsupported.go    |    3 -
 .../storage/drivers/overlay/randomid.go       |   81 -
 .../drivers/overlayutils/overlayutils.go      |   18 -
 .../storage/drivers/quota/projectquota.go     |  337 --
 .../storage/drivers/register/register_aufs.go |    8 -
 .../drivers/register/register_btrfs.go        |    8 -
 .../drivers/register/register_devicemapper.go |    8 -
 .../drivers/register/register_overlay.go      |    8 -
 .../storage/drivers/register/register_vfs.go  |    6 -
 .../drivers/register/register_windows.go      |    6 -
 .../storage/drivers/register/register_zfs.go  |    8 -
 .../containers/storage/drivers/vfs/driver.go  |  160 -
 .../storage/drivers/windows/windows.go        |  965 ------
 .../containers/storage/drivers/zfs/zfs.go     |  426 ---
 .../storage/drivers/zfs/zfs_freebsd.go        |   39 -
 .../storage/drivers/zfs/zfs_linux.go          |   28 -
 .../storage/drivers/zfs/zfs_solaris.go        |   59 -
 .../storage/drivers/zfs/zfs_unsupported.go    |   11 -
 .../github.com/containers/storage/errors.go   |   56 -
 .../storage/hack/generate-authors.sh          |   15 -
 .../github.com/containers/storage/images.go   |  673 ----
 .../containers/storage/images_ffjson.go       | 1202 -------
 .../github.com/containers/storage/layers.go   | 1041 ------
 .../containers/storage/layers_ffjson.go       | 1713 ----------
 .../github.com/containers/storage/lockfile.go |   82 -
 .../containers/storage/lockfile_darwin.go     |   19 -
 .../containers/storage/lockfile_linux.go      |   20 -
 .../containers/storage/lockfile_unix.go       |  115 -
 .../containers/storage/lockfile_windows.go    |   40 -
 .../containers/storage/pkg/archive/archive.go | 1251 --------
 .../storage/pkg/archive/archive_linux.go      |   92 -
 .../storage/pkg/archive/archive_other.go      |    7 -
 .../storage/pkg/archive/archive_unix.go       |  122 -
 .../storage/pkg/archive/archive_windows.go    |   79 -
 .../containers/storage/pkg/archive/changes.go |  441 ---
 .../storage/pkg/archive/changes_linux.go      |  313 --
 .../storage/pkg/archive/changes_other.go      |   97 -
 .../storage/pkg/archive/changes_unix.go       |   37 -
 .../storage/pkg/archive/changes_windows.go    |   30 -
 .../containers/storage/pkg/archive/copy.go    |  461 ---
 .../storage/pkg/archive/copy_unix.go          |   11 -
 .../storage/pkg/archive/copy_windows.go       |    9 -
 .../containers/storage/pkg/archive/diff.go    |  256 --
 .../storage/pkg/archive/example_changes.go    |   97 -
 .../storage/pkg/archive/time_linux.go         |   16 -
 .../storage/pkg/archive/time_unsupported.go   |   16 -
 .../storage/pkg/archive/whiteouts.go          |   23 -
 .../containers/storage/pkg/archive/wrap.go    |   59 -
 .../storage/pkg/chrootarchive/archive.go      |   70 -
 .../storage/pkg/chrootarchive/archive_unix.go |   86 -
 .../pkg/chrootarchive/archive_windows.go      |   22 -
 .../storage/pkg/chrootarchive/chroot_linux.go |  108 -
 .../storage/pkg/chrootarchive/chroot_unix.go  |   12 -
 .../storage/pkg/chrootarchive/diff.go         |   23 -
 .../storage/pkg/chrootarchive/diff_unix.go    |  130 -
 .../storage/pkg/chrootarchive/diff_windows.go |   45 -
 .../storage/pkg/chrootarchive/init_unix.go    |   28 -
 .../storage/pkg/chrootarchive/init_windows.go |    4 -
 .../storage/pkg/devicemapper/devmapper.go     |  821 -----
 .../storage/pkg/devicemapper/devmapper_log.go |  121 -
 .../pkg/devicemapper/devmapper_wrapper.go     |  252 --
 .../devmapper_wrapper_deferred_remove.go      |   31 -
 .../devicemapper/devmapper_wrapper_dynamic.go |    6 -
 .../devmapper_wrapper_no_deferred_remove.go   |   15 -
 .../devicemapper/devmapper_wrapper_static.go  |    6 -
 .../storage/pkg/devicemapper/ioctl.go         |   28 -
 .../storage/pkg/devicemapper/log.go           |   11 -
 .../storage/pkg/directory/directory.go        |   26 -
 .../storage/pkg/directory/directory_unix.go   |   48 -
 .../pkg/directory/directory_windows.go        |   37 -
 .../storage/pkg/dmesg/dmesg_linux.go          |   20 -
 .../storage/pkg/fileutils/fileutils.go        |  298 --
 .../storage/pkg/fileutils/fileutils_darwin.go |   27 -
 .../pkg/fileutils/fileutils_solaris.go        |    7 -
 .../storage/pkg/fileutils/fileutils_unix.go   |   22 -
 .../pkg/fileutils/fileutils_windows.go        |    7 -
 .../storage/pkg/fsutils/fsutils_linux.go      |   88 -
 .../storage/pkg/homedir/homedir_linux.go      |   23 -
 .../storage/pkg/homedir/homedir_others.go     |   13 -
 .../storage/pkg/homedir/homedir_unix.go       |   34 -
 .../storage/pkg/homedir/homedir_windows.go    |   24 -
 .../containers/storage/pkg/idtools/idtools.go |  279 --
 .../storage/pkg/idtools/idtools_unix.go       |  204 --
 .../storage/pkg/idtools/idtools_windows.go    |   25 -
 .../storage/pkg/idtools/usergroupadd_linux.go |  164 -
 .../pkg/idtools/usergroupadd_unsupported.go   |   12 -
 .../storage/pkg/idtools/utils_unix.go         |   32 -
 .../containers/storage/pkg/ioutils/buffer.go  |   51 -
 .../storage/pkg/ioutils/bytespipe.go          |  186 --
 .../storage/pkg/ioutils/fswriters.go          |  162 -
 .../containers/storage/pkg/ioutils/readers.go |  154 -
 .../storage/pkg/ioutils/temp_unix.go          |   10 -
 .../storage/pkg/ioutils/temp_windows.go       |   18 -
 .../storage/pkg/ioutils/writeflusher.go       |   92 -
 .../containers/storage/pkg/ioutils/writers.go |   66 -
 .../containers/storage/pkg/locker/locker.go   |  112 -
 .../storage/pkg/longpath/longpath.go          |   26 -
 .../storage/pkg/loopback/attach_loopback.go   |  157 -
 .../containers/storage/pkg/loopback/ioctl.go  |   53 -
 .../storage/pkg/loopback/loop_wrapper.go      |   52 -
 .../storage/pkg/loopback/loopback.go          |   63 -
 .../containers/storage/pkg/mflag/LICENSE      |   27 -
 .../containers/storage/pkg/mount/flags.go     |  149 -
 .../storage/pkg/mount/flags_freebsd.go        |   49 -
 .../storage/pkg/mount/flags_linux.go          |   87 -
 .../storage/pkg/mount/flags_unsupported.go    |   31 -
 .../containers/storage/pkg/mount/mount.go     |  106 -
 .../storage/pkg/mount/mounter_freebsd.go      |   60 -
 .../storage/pkg/mount/mounter_linux.go        |   57 -
 .../storage/pkg/mount/mounter_solaris.go      |   34 -
 .../storage/pkg/mount/mounter_unsupported.go  |   11 -
 .../containers/storage/pkg/mount/mountinfo.go |   54 -
 .../storage/pkg/mount/mountinfo_freebsd.go    |   41 -
 .../storage/pkg/mount/mountinfo_linux.go      |   95 -
 .../storage/pkg/mount/mountinfo_solaris.go    |   37 -
 .../pkg/mount/mountinfo_unsupported.go        |   12 -
 .../storage/pkg/mount/mountinfo_windows.go    |    6 -
 .../storage/pkg/mount/sharedsubtree_linux.go  |   69 -
 .../pkg/mount/sharedsubtree_solaris.go        |   58 -
 .../storage/pkg/parsers/kernel/kernel.go      |   74 -
 .../pkg/parsers/kernel/kernel_darwin.go       |   56 -
 .../storage/pkg/parsers/kernel/kernel_unix.go |   45 -
 .../pkg/parsers/kernel/kernel_windows.go      |   70 -
 .../storage/pkg/parsers/kernel/uname_linux.go |   17 -
 .../pkg/parsers/kernel/uname_solaris.go       |   14 -
 .../pkg/parsers/kernel/uname_unsupported.go   |   18 -
 .../containers/storage/pkg/parsers/parsers.go |   69 -
 .../containers/storage/pkg/pools/pools.go     |  119 -
 .../containers/storage/pkg/promise/promise.go |   11 -
 .../storage/pkg/reexec/command_linux.go       |   30 -
 .../storage/pkg/reexec/command_unix.go        |   23 -
 .../storage/pkg/reexec/command_unsupported.go |   12 -
 .../storage/pkg/reexec/command_windows.go     |   23 -
 .../containers/storage/pkg/reexec/reexec.go   |   47 -
 .../storage/pkg/stringid/stringid.go          |   99 -
 .../containers/storage/pkg/system/chtimes.go  |   35 -
 .../storage/pkg/system/chtimes_unix.go        |   14 -
 .../storage/pkg/system/chtimes_windows.go     |   28 -
 .../containers/storage/pkg/system/errors.go   |   10 -
 .../containers/storage/pkg/system/exitcode.go |   33 -
 .../containers/storage/pkg/system/filesys.go  |   67 -
 .../storage/pkg/system/filesys_windows.go     |  298 --
 .../containers/storage/pkg/system/init.go     |   22 -
 .../storage/pkg/system/init_windows.go        |   17 -
 .../storage/pkg/system/lcow_unix.go           |    8 -
 .../storage/pkg/system/lcow_windows.go        |    6 -
 .../storage/pkg/system/lstat_unix.go          |   19 -
 .../storage/pkg/system/lstat_windows.go       |   14 -
 .../containers/storage/pkg/system/meminfo.go  |   17 -
 .../storage/pkg/system/meminfo_linux.go       |   65 -
 .../storage/pkg/system/meminfo_solaris.go     |  129 -
 .../storage/pkg/system/meminfo_unsupported.go |    8 -
 .../storage/pkg/system/meminfo_windows.go     |   45 -
 .../containers/storage/pkg/system/mknod.go    |   22 -
 .../storage/pkg/system/mknod_windows.go       |   13 -
 .../containers/storage/pkg/system/path.go     |   21 -
 .../storage/pkg/system/path_unix.go           |    9 -
 .../storage/pkg/system/path_windows.go        |   33 -
 .../storage/pkg/system/process_unix.go        |   24 -
 .../containers/storage/pkg/system/rm.go       |   80 -
 .../storage/pkg/system/stat_darwin.go         |   13 -
 .../storage/pkg/system/stat_freebsd.go        |   13 -
 .../storage/pkg/system/stat_linux.go          |   19 -
 .../storage/pkg/system/stat_openbsd.go        |   13 -
 .../storage/pkg/system/stat_solaris.go        |   13 -
 .../storage/pkg/system/stat_unix.go           |   60 -
 .../storage/pkg/system/stat_windows.go        |   49 -
 .../storage/pkg/system/syscall_unix.go        |   17 -
 .../storage/pkg/system/syscall_windows.go     |  122 -
 .../containers/storage/pkg/system/umask.go    |   13 -
 .../storage/pkg/system/umask_windows.go       |    9 -
 .../storage/pkg/system/utimes_freebsd.go      |   24 -
 .../storage/pkg/system/utimes_linux.go        |   25 -
 .../storage/pkg/system/utimes_unsupported.go  |   10 -
 .../storage/pkg/system/xattrs_linux.go        |   29 -
 .../storage/pkg/system/xattrs_unsupported.go  |   13 -
 .../storage/pkg/truncindex/truncindex.go      |  139 -
 vendor/github.com/containers/storage/store.go | 2425 --------------
 vendor/github.com/docker/distribution/AUTHORS |  182 --
 vendor/github.com/docker/distribution/LICENSE |  202 --
 .../github.com/docker/distribution/blobs.go   |  257 --
 .../docker/distribution/digestset/set.go      |  247 --
 vendor/github.com/docker/distribution/doc.go  |    7 -
 .../github.com/docker/distribution/errors.go  |  115 -
 .../docker/distribution/manifests.go          |  125 -
 .../docker/distribution/metrics/prometheus.go |   13 -
 .../docker/distribution/reference/helpers.go  |   42 -
 .../distribution/reference/normalize.go       |  170 -
 .../distribution/reference/reference.go       |  433 ---
 .../docker/distribution/reference/regexp.go   |  143 -
 .../docker/distribution/registry.go           |  113 -
 .../registry/api/errcode/errors.go            |  267 --
 .../registry/api/errcode/handler.go           |   40 -
 .../registry/api/errcode/register.go          |  138 -
 .../registry/api/v2/descriptors.go            | 1596 ----------
 .../distribution/registry/api/v2/doc.go       |    9 -
 .../distribution/registry/api/v2/errors.go    |  136 -
 .../registry/api/v2/headerparser.go           |  161 -
 .../distribution/registry/api/v2/routes.go    |   49 -
 .../distribution/registry/api/v2/urls.go      |  266 --
 .../registry/client/auth/challenge/addr.go    |   27 -
 .../client/auth/challenge/authchallenge.go    |  237 --
 .../registry/client/blob_writer.go            |  162 -
 .../distribution/registry/client/errors.go    |  139 -
 .../registry/client/repository.go             |  869 -----
 .../registry/client/transport/http_reader.go  |  251 --
 .../registry/client/transport/transport.go    |  147 -
 .../registry/storage/cache/cache.go           |   35 -
 .../cache/cachedblobdescriptorstore.go        |  129 -
 .../registry/storage/cache/memory/memory.go   |  179 --
 vendor/github.com/docker/distribution/tags.go |   27 -
 .../docker/docker-credential-helpers/LICENSE  |   20 -
 .../client/client.go                          |  121 -
 .../client/command.go                         |   56 -
 .../credentials/credentials.go                |  186 --
 .../credentials/error.go                      |  102 -
 .../credentials/helper.go                     |   14 -
 .../credentials/version.go                    |    4 -
 vendor/github.com/docker/docker/api/common.go |   11 -
 .../docker/docker/api/common_unix.go          |    6 -
 .../docker/docker/api/common_windows.go       |    8 -
 .../docker/docker/api/types/auth.go           |   22 -
 .../docker/docker/api/types/client.go         |  390 ---
 .../docker/docker/api/types/configs.go        |   57 -
 .../docker/docker/api/types/error_response.go |   13 -
 .../docker/docker/api/types/events/events.go  |   52 -
 .../docker/docker/api/types/filters/parse.go  |  350 --
 .../docker/api/types/graph_driver_data.go     |   17 -
 .../docker/docker/api/types/id_response.go    |   13 -
 .../docker/api/types/image/image_history.go   |   37 -
 .../api/types/image_delete_response_item.go   |   15 -
 .../docker/docker/api/types/image_summary.go  |   49 -
 .../docker/api/types/network/network.go       |  108 -
 .../docker/docker/api/types/plugin.go         |  200 --
 .../docker/docker/api/types/plugin_device.go  |   25 -
 .../docker/docker/api/types/plugin_env.go     |   25 -
 .../docker/api/types/plugin_interface_type.go |   21 -
 .../docker/docker/api/types/plugin_mount.go   |   37 -
 .../docker/api/types/plugin_responses.go      |   71 -
 .../docker/docker/api/types/port.go           |   23 -
 .../docker/api/types/registry/authenticate.go |   21 -
 .../docker/api/types/registry/registry.go     |  119 -
 .../docker/docker/api/types/seccomp.go        |   93 -
 .../api/types/service_update_response.go      |   12 -
 .../docker/docker/api/types/stats.go          |  181 --
 .../docker/docker/api/types/swarm/common.go   |   40 -
 .../docker/docker/api/types/swarm/config.go   |   31 -
 .../docker/api/types/swarm/container.go       |   73 -
 .../docker/docker/api/types/swarm/network.go  |  119 -
 .../docker/docker/api/types/swarm/node.go     |  115 -
 .../docker/docker/api/types/swarm/runtime.go  |   19 -
 .../docker/api/types/swarm/runtime/gen.go     |    3 -
 .../api/types/swarm/runtime/plugin.pb.go      |  712 -----
 .../docker/docker/api/types/swarm/secret.go   |   32 -
 .../docker/docker/api/types/swarm/service.go  |  124 -
 .../docker/docker/api/types/swarm/swarm.go    |  217 --
 .../docker/docker/api/types/swarm/task.go     |  188 --
 .../docker/api/types/time/duration_convert.go |   12 -
 .../docker/docker/api/types/time/timestamp.go |  122 -
 .../docker/docker/api/types/types.go          |  587 ----
 .../docker/api/types/versions/compare.go      |   62 -
 .../docker/docker/api/types/volume.go         |   69 -
 .../docker/api/types/volume/volumes_create.go |   29 -
 .../docker/api/types/volume/volumes_list.go   |   23 -
 .../docker/docker/client/build_prune.go       |   30 -
 .../docker/docker/client/checkpoint_create.go |   13 -
 .../docker/docker/client/checkpoint_delete.go |   20 -
 .../docker/docker/client/checkpoint_list.go   |   28 -
 .../github.com/docker/docker/client/client.go |  383 ---
 .../docker/docker/client/client_unix.go       |    9 -
 .../docker/docker/client/client_windows.go    |    7 -
 .../docker/docker/client/config_create.go     |   25 -
 .../docker/docker/client/config_inspect.go    |   33 -
 .../docker/docker/client/config_list.go       |   38 -
 .../docker/docker/client/config_remove.go     |   13 -
 .../docker/docker/client/config_update.go     |   21 -
 .../docker/docker/client/container_attach.go  |   57 -
 .../docker/docker/client/container_commit.go  |   55 -
 .../docker/docker/client/container_copy.go    |  102 -
 .../docker/docker/client/container_create.go  |   56 -
 .../docker/docker/client/container_diff.go    |   23 -
 .../docker/docker/client/container_exec.go    |   54 -
 .../docker/docker/client/container_export.go  |   20 -
 .../docker/docker/client/container_inspect.go |   47 -
 .../docker/docker/client/container_kill.go    |   17 -
 .../docker/docker/client/container_list.go    |   56 -
 .../docker/docker/client/container_logs.go    |   80 -
 .../docker/docker/client/container_pause.go   |   10 -
 .../docker/docker/client/container_prune.go   |   36 -
 .../docker/docker/client/container_remove.go  |   27 -
 .../docker/docker/client/container_rename.go  |   16 -
 .../docker/docker/client/container_resize.go  |   29 -
 .../docker/docker/client/container_restart.go |   22 -
 .../docker/docker/client/container_start.go   |   24 -
 .../docker/docker/client/container_stats.go   |   26 -
 .../docker/docker/client/container_stop.go    |   21 -
 .../docker/docker/client/container_top.go     |   28 -
 .../docker/docker/client/container_unpause.go |   10 -
 .../docker/docker/client/container_update.go  |   22 -
 .../docker/docker/client/container_wait.go    |   84 -
 .../docker/docker/client/disk_usage.go        |   26 -
 .../docker/client/distribution_inspect.go     |   35 -
 .../github.com/docker/docker/client/errors.go |  133 -
 .../github.com/docker/docker/client/events.go |  102 -
 .../github.com/docker/docker/client/hijack.go |  207 --
 .../docker/docker/client/image_build.go       |  138 -
 .../docker/docker/client/image_create.go      |   38 -
 .../docker/docker/client/image_history.go     |   22 -
 .../docker/docker/client/image_import.go      |   41 -
 .../docker/docker/client/image_inspect.go     |   29 -
 .../docker/docker/client/image_list.go        |   45 -
 .../docker/docker/client/image_load.go        |   30 -
 .../docker/docker/client/image_prune.go       |   36 -
 .../docker/docker/client/image_pull.go        |   65 -
 .../docker/docker/client/image_push.go        |   56 -
 .../docker/docker/client/image_remove.go      |   31 -
 .../docker/docker/client/image_save.go        |   22 -
 .../docker/docker/client/image_search.go      |   51 -
 .../docker/docker/client/image_tag.go         |   37 -
 .../github.com/docker/docker/client/info.go   |   26 -
 .../docker/docker/client/interface.go         |  194 --
 .../docker/client/interface_experimental.go   |   17 -
 .../docker/docker/client/interface_stable.go  |   10 -
 .../github.com/docker/docker/client/login.go  |   29 -
 .../docker/docker/client/network_connect.go   |   18 -
 .../docker/docker/client/network_create.go    |   25 -
 .../docker/client/network_disconnect.go       |   14 -
 .../docker/docker/client/network_inspect.go   |   46 -
 .../docker/docker/client/network_list.go      |   31 -
 .../docker/docker/client/network_prune.go     |   36 -
 .../docker/docker/client/network_remove.go    |   10 -
 .../docker/docker/client/node_inspect.go      |   29 -
 .../docker/docker/client/node_list.go         |   36 -
 .../docker/docker/client/node_remove.go       |   21 -
 .../docker/docker/client/node_update.go       |   18 -
 .../github.com/docker/docker/client/ping.go   |   32 -
 .../docker/docker/client/plugin_create.go     |   26 -
 .../docker/docker/client/plugin_disable.go    |   19 -
 .../docker/docker/client/plugin_enable.go     |   19 -
 .../docker/docker/client/plugin_inspect.go    |   28 -
 .../docker/docker/client/plugin_install.go    |  113 -
 .../docker/docker/client/plugin_list.go       |   32 -
 .../docker/docker/client/plugin_push.go       |   17 -
 .../docker/docker/client/plugin_remove.go     |   20 -
 .../docker/docker/client/plugin_set.go        |   12 -
 .../docker/docker/client/plugin_upgrade.go    |   39 -
 .../docker/docker/client/request.go           |  262 --
 .../docker/docker/client/secret_create.go     |   25 -
 .../docker/docker/client/secret_inspect.go    |   33 -
 .../docker/docker/client/secret_list.go       |   38 -
 .../docker/docker/client/secret_remove.go     |   13 -
 .../docker/docker/client/secret_update.go     |   21 -
 .../docker/docker/client/service_create.go    |  166 -
 .../docker/docker/client/service_inspect.go   |   34 -
 .../docker/docker/client/service_list.go      |   35 -
 .../docker/docker/client/service_logs.go      |   52 -
 .../docker/docker/client/service_remove.go    |   10 -
 .../docker/docker/client/service_update.go    |   92 -
 .../docker/docker/client/session.go           |   19 -
 .../docker/client/swarm_get_unlock_key.go     |   21 -
 .../docker/docker/client/swarm_init.go        |   21 -
 .../docker/docker/client/swarm_inspect.go     |   21 -
 .../docker/docker/client/swarm_join.go        |   13 -
 .../docker/docker/client/swarm_leave.go       |   18 -
 .../docker/docker/client/swarm_unlock.go      |   13 -
 .../docker/docker/client/swarm_update.go      |   22 -
 .../docker/docker/client/task_inspect.go      |   29 -
 .../docker/docker/client/task_list.go         |   35 -
 .../docker/docker/client/task_logs.go         |   52 -
 .../docker/docker/client/tlsconfig_clone.go   |   11 -
 .../docker/client/tlsconfig_clone_go17.go     |   33 -
 .../docker/docker/client/transport.go         |   17 -
 .../github.com/docker/docker/client/utils.go  |   34 -
 .../docker/docker/client/version.go           |   21 -
 .../docker/docker/client/volume_create.go     |   21 -
 .../docker/docker/client/volume_inspect.go    |   42 -
 .../docker/docker/client/volume_list.go       |   32 -
 .../docker/docker/client/volume_prune.go      |   36 -
 .../docker/docker/client/volume_remove.go     |   21 -
 .../docker/pkg/homedir/homedir_linux.go       |   21 -
 .../docker/pkg/homedir/homedir_others.go      |   13 -
 .../docker/docker/pkg/homedir/homedir_unix.go |   34 -
 .../docker/pkg/homedir/homedir_windows.go     |   24 -
 .../go-connections/sockets/inmem_socket.go    |   81 -
 .../docker/go-connections/sockets/proxy.go    |   51 -
 .../docker/go-connections/sockets/sockets.go  |   38 -
 .../go-connections/sockets/sockets_unix.go    |   35 -
 .../go-connections/sockets/sockets_windows.go |   27 -
 .../go-connections/sockets/tcp_socket.go      |   22 -
 .../go-connections/sockets/unix_socket.go     |   32 -
 .../go-connections/tlsconfig/certpool_go17.go |   18 -
 .../tlsconfig/certpool_other.go               |   14 -
 .../docker/go-connections/tlsconfig/config.go |  244 --
 .../tlsconfig/config_client_ciphers.go        |   17 -
 .../tlsconfig/config_legacy_client_ciphers.go |   15 -
 .../github.com/docker/go-metrics/LICENSE.code |  191 --
 .../github.com/docker/go-metrics/LICENSE.docs |  425 ---
 vendor/github.com/docker/go-metrics/NOTICE    |   16 -
 .../github.com/docker/go-metrics/counter.go   |   52 -
 vendor/github.com/docker/go-metrics/docs.go   |    3 -
 vendor/github.com/docker/go-metrics/gauge.go  |   72 -
 .../github.com/docker/go-metrics/handler.go   |   74 -
 .../github.com/docker/go-metrics/helpers.go   |   10 -
 .../github.com/docker/go-metrics/namespace.go |  315 --
 .../github.com/docker/go-metrics/register.go  |   15 -
 vendor/github.com/docker/go-metrics/timer.go  |   85 -
 vendor/github.com/docker/go-metrics/unit.go   |   12 -
 vendor/github.com/docker/libtrust/LICENSE     |  191 --
 .../docker/libtrust/certificates.go           |  175 -
 vendor/github.com/docker/libtrust/doc.go      |    9 -
 vendor/github.com/docker/libtrust/ec_key.go   |  428 ---
 vendor/github.com/docker/libtrust/filter.go   |   50 -
 vendor/github.com/docker/libtrust/hash.go     |   56 -
 vendor/github.com/docker/libtrust/jsonsign.go |  657 ----
 vendor/github.com/docker/libtrust/key.go      |  253 --
 .../github.com/docker/libtrust/key_files.go   |  255 --
 .../github.com/docker/libtrust/key_manager.go |  175 -
 vendor/github.com/docker/libtrust/rsa_key.go  |  427 ---
 vendor/github.com/docker/libtrust/util.go     |  363 ---
 vendor/github.com/ghodss/yaml/LICENSE         |   50 -
 vendor/github.com/ghodss/yaml/fields.go       |  501 ---
 vendor/github.com/ghodss/yaml/yaml.go         |  277 --
 vendor/github.com/gogo/protobuf/AUTHORS       |   15 -
 vendor/github.com/gogo/protobuf/CONTRIBUTORS  |   23 -
 .../gogo/protobuf/GOLANG_CONTRIBUTORS         |    5 -
 vendor/github.com/gogo/protobuf/LICENSE       |   36 -
 .../github.com/gogo/protobuf/proto/clone.go   |  234 --
 .../github.com/gogo/protobuf/proto/decode.go  |  978 ------
 .../gogo/protobuf/proto/decode_gogo.go        |  172 -
 .../github.com/gogo/protobuf/proto/discard.go |  151 -
 .../gogo/protobuf/proto/duration.go           |  100 -
 .../gogo/protobuf/proto/duration_gogo.go      |  203 --
 .../github.com/gogo/protobuf/proto/encode.go  | 1362 --------
 .../gogo/protobuf/proto/encode_gogo.go        |  350 --
 .../github.com/gogo/protobuf/proto/equal.go   |  300 --
 .../gogo/protobuf/proto/extensions.go         |  693 ----
 .../gogo/protobuf/proto/extensions_gogo.go    |  294 --
 vendor/github.com/gogo/protobuf/proto/lib.go  |  897 ------
 .../gogo/protobuf/proto/lib_gogo.go           |   42 -
 .../gogo/protobuf/proto/message_set.go        |  311 --
 .../gogo/protobuf/proto/pointer_reflect.go    |  484 ---
 .../protobuf/proto/pointer_reflect_gogo.go    |   85 -
 .../gogo/protobuf/proto/pointer_unsafe.go     |  270 --
 .../protobuf/proto/pointer_unsafe_gogo.go     |  128 -
 .../gogo/protobuf/proto/properties.go         |  971 ------
 .../gogo/protobuf/proto/properties_gogo.go    |  111 -
 .../gogo/protobuf/proto/skip_gogo.go          |  119 -
 vendor/github.com/gogo/protobuf/proto/text.go |  939 ------
 .../gogo/protobuf/proto/text_gogo.go          |   57 -
 .../gogo/protobuf/proto/text_parser.go        | 1013 ------
 .../gogo/protobuf/proto/timestamp.go          |  113 -
 .../gogo/protobuf/proto/timestamp_gogo.go     |  229 --
 .../go-containerregistry}/LICENSE             |    3 +-
 .../google/go-containerregistry/authn/anon.go |   26 +
 .../google/go-containerregistry/authn/auth.go |   29 +
 .../go-containerregistry/authn/authn.go       |   21 +
 .../go-containerregistry/authn/basic.go       |   33 +
 .../go-containerregistry/authn/bearer.go      |   29 +
 .../google/go-containerregistry/authn/doc.go  |   17 +
 .../go-containerregistry/authn/helper.go      |   94 +
 .../go-containerregistry/authn/keychain.go    |  140 +
 .../google/go-containerregistry/name/check.go |   52 +
 .../go-containerregistry/name/digest.go       |   91 +
 .../go-containerregistry/name/errors.go       |   37 +
 .../google/go-containerregistry/name/ref.go   |   49 +
 .../go-containerregistry/name/registry.go     |   79 +
 .../go-containerregistry/name/repository.go   |   99 +
 .../google/go-containerregistry/name/tag.go   |   99 +
 .../google/go-containerregistry/v1/config.go  |  108 +
 .../google/go-containerregistry/v1/doc.go     |   19 +
 .../go-containerregistry/v1/empty/doc.go}     |   10 +-
 .../go-containerregistry/v1/empty/image.go    |   22 +
 .../google/go-containerregistry/v1/hash.go    |  111 +
 .../google/go-containerregistry/v1/image.go   |   58 +
 .../google/go-containerregistry/v1/layer.go   |   37 +
 .../go-containerregistry/v1/manifest.go       |   49 +
 .../go-containerregistry/v1/mutate/mutate.go  |  233 ++
 .../v1/partial/compressed.go                  |  154 +
 .../go-containerregistry/v1/partial/doc.go    |   17 +
 .../go-containerregistry/v1/partial/image.go  |   28 +
 .../v1/partial/uncompressed.go                |  229 ++
 .../go-containerregistry/v1/partial/with.go   |  291 ++
 .../go-containerregistry/v1/random}/doc.go    |    8 +-
 .../go-containerregistry/v1/random/image.go   |  110 +
 .../go-containerregistry/v1/remote/delete.go  |   70 +
 .../go-containerregistry/v1/remote/doc.go     |   17 +
 .../go-containerregistry/v1/remote/error.go   |  106 +
 .../go-containerregistry/v1/remote/image.go   |  201 ++
 .../v1/remote/transport/basic.go              |   47 +
 .../v1/remote/transport/bearer.go             |  119 +
 .../v1/remote/transport/doc.go                |   18 +
 .../v1/remote/transport/ping.go               |   89 +
 .../v1/remote/transport/scheme.go             |   42 +
 .../v1/remote/transport/scope.go              |   27 +
 .../v1/remote/transport/transport.go          |   84 +
 .../go-containerregistry/v1/remote/write.go   |  281 ++
 .../go-containerregistry/v1/tarball/doc.go    |   17 +
 .../go-containerregistry/v1/tarball/image.go  |  338 ++
 .../go-containerregistry/v1/tarball/layer.go  |  144 +
 .../go-containerregistry/v1/tarball/write.go  |  122 +
 .../go-containerregistry/v1/types/types.go    |   40 +
 .../v1/v1util/and_closer.go                   |   47 +
 .../go-containerregistry/v1/v1util/nop.go     |   40 +
 .../go-containerregistry/v1/v1util/verify.go  |   61 +
 .../go-containerregistry/v1/v1util/zip.go     |  117 +
 .../v1/zz_deepcopy_generated.go               |  232 ++
 vendor/github.com/gorilla/context/LICENSE     |   27 -
 vendor/github.com/gorilla/context/context.go  |  143 -
 vendor/github.com/gorilla/context/doc.go      |   82 -
 vendor/github.com/gorilla/mux/LICENSE         |   27 -
 .../github.com/gorilla/mux/context_gorilla.go |   26 -
 .../github.com/gorilla/mux/context_native.go  |   24 -
 vendor/github.com/gorilla/mux/doc.go          |  307 --
 vendor/github.com/gorilla/mux/middleware.go   |   28 -
 vendor/github.com/gorilla/mux/mux.go          |  585 ----
 vendor/github.com/gorilla/mux/regexp.go       |  332 --
 vendor/github.com/gorilla/mux/route.go        |  761 -----
 vendor/github.com/gorilla/mux/test_helpers.go |   18 -
 vendor/github.com/imdario/mergo/LICENSE       |   28 -
 vendor/github.com/imdario/mergo/doc.go        |   44 -
 vendor/github.com/imdario/mergo/map.go        |  174 -
 vendor/github.com/imdario/mergo/merge.go      |  233 --
 vendor/github.com/imdario/mergo/mergo.go      |   92 -
 .../imdario/mergo/testdata/license.yml        |    4 -
 vendor/github.com/mattn/go-runewidth/LICENSE  |   21 -
 .../mattn/go-runewidth/runewidth.go           | 1223 -------
 .../mattn/go-runewidth/runewidth_js.go        |    8 -
 .../mattn/go-runewidth/runewidth_posix.go     |   77 -
 .../mattn/go-runewidth/runewidth_windows.go   |   25 -
 vendor/github.com/mattn/go-shellwords/LICENSE |   21 -
 .../mattn/go-shellwords/shellwords.go         |  145 -
 .../mattn/go-shellwords/util_posix.go         |   19 -
 .../mattn/go-shellwords/util_windows.go       |   17 -
 .../golang_protobuf_extensions/LICENSE        |  201 --
 .../golang_protobuf_extensions/NOTICE         |    1 -
 .../pbutil/decode.go                          |   75 -
 .../pbutil/encode.go                          |   46 -
 vendor/github.com/mistifyio/go-zfs/LICENSE    |  201 --
 vendor/github.com/mistifyio/go-zfs/error.go   |   18 -
 vendor/github.com/mistifyio/go-zfs/utils.go   |  320 --
 vendor/github.com/mistifyio/go-zfs/zfs.go     |  382 ---
 vendor/github.com/mistifyio/go-zfs/zpool.go   |  105 -
 vendor/github.com/mtrmac/gpgme/LICENSE        |   12 -
 vendor/github.com/mtrmac/gpgme/callbacks.go   |   42 -
 vendor/github.com/mtrmac/gpgme/data.go        |  191 --
 vendor/github.com/mtrmac/gpgme/go_gpgme.c     |   89 -
 vendor/github.com/mtrmac/gpgme/go_gpgme.h     |   37 -
 vendor/github.com/mtrmac/gpgme/gpgme.go       |  748 -----
 .../github.com/opencontainers/selinux/LICENSE |  201 --
 .../selinux/go-selinux/label/label.go         |   84 -
 .../selinux/go-selinux/label/label_selinux.go |  204 --
 .../selinux/go-selinux/selinux.go             |  593 ----
 .../selinux/go-selinux/xattrs.go              |   78 -
 vendor/github.com/ostreedev/ostree-go/LICENSE |   17 -
 .../ostree-go/pkg/glibobject/gboolean.go      |   60 -
 .../ostree-go/pkg/glibobject/gcancellable.go  |   47 -
 .../ostree-go/pkg/glibobject/gerror.go        |   71 -
 .../ostree-go/pkg/glibobject/gfile.go         |   52 -
 .../ostree-go/pkg/glibobject/gfileinfo.go     |   53 -
 .../ostree-go/pkg/glibobject/ghashtable.go    |   50 -
 .../pkg/glibobject/ghashtableiter.go          |   50 -
 .../ostree-go/pkg/glibobject/glibobject.go    |   27 -
 .../ostree-go/pkg/glibobject/glibobject.go.h  |   17 -
 .../ostree-go/pkg/glibobject/gobject.go       |   79 -
 .../pkg/glibobject/goptioncontext.go          |   51 -
 .../ostree-go/pkg/glibobject/gvariant.go      |   97 -
 .../ostree-go/pkg/otbuiltin/builtin.go        |   93 -
 .../ostree-go/pkg/otbuiltin/builtin.go.h      |  191 --
 .../ostreedev/ostree-go/pkg/otbuiltin/cat.go  |    1 -
 .../ostree-go/pkg/otbuiltin/checkout.go       |  102 -
 .../ostree-go/pkg/otbuiltin/checksum.go       |    1 -
 .../ostree-go/pkg/otbuiltin/commit.go         |  482 ---
 .../ostree-go/pkg/otbuiltin/config.go         |    1 -
 .../ostreedev/ostree-go/pkg/otbuiltin/diff.go |    1 -
 .../ostree-go/pkg/otbuiltin/export.go         |    1 -
 .../ostreedev/ostree-go/pkg/otbuiltin/fsck.go |    1 -
 .../ostree-go/pkg/otbuiltin/gpgsign.go        |    1 -
 .../ostreedev/ostree-go/pkg/otbuiltin/init.go |   91 -
 .../ostreedev/ostree-go/pkg/otbuiltin/log.go  |  167 -
 .../ostreedev/ostree-go/pkg/otbuiltin/ls.go   |    1 -
 .../ostree-go/pkg/otbuiltin/prune.go          |  217 --
 .../ostreedev/ostree-go/pkg/otbuiltin/pull.go |    1 -
 .../ostree-go/pkg/otbuiltin/pulllocal.go      |    1 -
 .../ostreedev/ostree-go/pkg/otbuiltin/refs.go |    1 -
 .../ostree-go/pkg/otbuiltin/remote.go         |    1 -
 .../ostree-go/pkg/otbuiltin/reset.go          |    1 -
 .../ostree-go/pkg/otbuiltin/revparse.go       |    1 -
 .../ostreedev/ostree-go/pkg/otbuiltin/show.go |    1 -
 .../ostree-go/pkg/otbuiltin/staticdelta.go    |    1 -
 .../ostree-go/pkg/otbuiltin/summary.go        |    1 -
 .../ostree-go/pkg/otbuiltin/trivialhttpd.go   |    1 -
 vendor/github.com/pquerna/ffjson/LICENSE      |  202 --
 vendor/github.com/pquerna/ffjson/NOTICE       |    8 -
 .../pquerna/ffjson/fflib/v1/buffer.go         |  421 ---
 .../pquerna/ffjson/fflib/v1/buffer_nopool.go  |   11 -
 .../pquerna/ffjson/fflib/v1/buffer_pool.go    |  105 -
 .../pquerna/ffjson/fflib/v1/bytenum.go        |   88 -
 .../pquerna/ffjson/fflib/v1/decimal.go        |  378 ---
 .../pquerna/ffjson/fflib/v1/extfloat.go       |  668 ----
 .../pquerna/ffjson/fflib/v1/fold.go           |  121 -
 .../pquerna/ffjson/fflib/v1/ftoa.go           |  542 ----
 .../pquerna/ffjson/fflib/v1/internal/atof.go  |  936 ------
 .../pquerna/ffjson/fflib/v1/internal/atoi.go  |  213 --
 .../ffjson/fflib/v1/internal/extfloat.go      |  668 ----
 .../pquerna/ffjson/fflib/v1/internal/ftoa.go  |  475 ---
 .../pquerna/ffjson/fflib/v1/iota.go           |  161 -
 .../pquerna/ffjson/fflib/v1/jsonstring.go     |  512 ---
 .../pquerna/ffjson/fflib/v1/lexer.go          |  937 ------
 .../pquerna/ffjson/fflib/v1/reader.go         |  512 ---
 .../ffjson/fflib/v1/reader_scan_generic.go    |   34 -
 .../prometheus/client_golang/NOTICE           |   23 -
 .../client_golang/prometheus/collector.go     |   75 -
 .../client_golang/prometheus/counter.go       |  277 --
 .../client_golang/prometheus/desc.go          |  188 --
 .../client_golang/prometheus/doc.go           |  186 --
 .../prometheus/expvar_collector.go            |  119 -
 .../client_golang/prometheus/fnv.go           |   29 -
 .../client_golang/prometheus/gauge.go         |  286 --
 .../client_golang/prometheus/go_collector.go  |  284 --
 .../client_golang/prometheus/histogram.go     |  505 ---
 .../client_golang/prometheus/http.go          |  523 ---
 .../client_golang/prometheus/labels.go        |   57 -
 .../client_golang/prometheus/metric.go        |  158 -
 .../client_golang/prometheus/observer.go      |   52 -
 .../prometheus/process_collector.go           |  140 -
 .../prometheus/promhttp/delegator.go          |  199 --
 .../prometheus/promhttp/delegator_1_8.go      |  181 --
 .../prometheus/promhttp/delegator_pre_1_8.go  |   44 -
 .../client_golang/prometheus/promhttp/http.go |  311 --
 .../prometheus/promhttp/instrument_client.go  |   97 -
 .../promhttp/instrument_client_1_8.go         |  144 -
 .../prometheus/promhttp/instrument_server.go  |  447 ---
 .../client_golang/prometheus/registry.go      |  807 -----
 .../client_golang/prometheus/summary.go       |  609 ----
 .../client_golang/prometheus/timer.go         |   51 -
 .../client_golang/prometheus/untyped.go       |   42 -
 .../client_golang/prometheus/value.go         |  160 -
 .../client_golang/prometheus/vec.go           |  469 ---
 .../prometheus/client_model/LICENSE           |  201 --
 .../github.com/prometheus/client_model/NOTICE |    5 -
 .../prometheus/client_model/go/metrics.pb.go  |  364 ---
 .../prometheus/client_model/ruby/LICENSE      |  201 --
 vendor/github.com/prometheus/common/LICENSE   |  201 --
 vendor/github.com/prometheus/common/NOTICE    |    5 -
 .../prometheus/common/expfmt/decode.go        |  429 ---
 .../prometheus/common/expfmt/encode.go        |   88 -
 .../prometheus/common/expfmt/expfmt.go        |   38 -
 .../prometheus/common/expfmt/fuzz.go          |   36 -
 .../prometheus/common/expfmt/text_create.go   |  303 --
 .../prometheus/common/expfmt/text_parse.go    |  757 -----
 .../bitbucket.org/ww/goautoneg/autoneg.go     |  162 -
 .../prometheus/common/model/alert.go          |  136 -
 .../prometheus/common/model/fingerprinting.go |  105 -
 .../github.com/prometheus/common/model/fnv.go |   42 -
 .../prometheus/common/model/labels.go         |  210 --
 .../prometheus/common/model/labelset.go       |  169 -
 .../prometheus/common/model/metric.go         |  103 -
 .../prometheus/common/model/signature.go      |  144 -
 .../prometheus/common/model/silence.go        |  106 -
 .../prometheus/common/model/time.go           |  264 --
 .../prometheus/common/model/value.go          |  416 ---
 vendor/github.com/prometheus/procfs/LICENSE   |  201 --
 vendor/github.com/prometheus/procfs/NOTICE    |    7 -
 .../github.com/prometheus/procfs/buddyinfo.go |   95 -
 vendor/github.com/prometheus/procfs/doc.go    |   45 -
 vendor/github.com/prometheus/procfs/fs.go     |   82 -
 .../prometheus/procfs/internal/util/parse.go  |   46 -
 vendor/github.com/prometheus/procfs/ipvs.go   |  259 --
 vendor/github.com/prometheus/procfs/mdstat.go |  151 -
 .../prometheus/procfs/mountstats.go           |  569 ----
 .../github.com/prometheus/procfs/net_dev.go   |  216 --
 .../github.com/prometheus/procfs/nfs/nfs.go   |  263 --
 .../github.com/prometheus/procfs/nfs/parse.go |  317 --
 .../prometheus/procfs/nfs/parse_nfs.go        |   67 -
 .../prometheus/procfs/nfs/parse_nfsd.go       |   89 -
 vendor/github.com/prometheus/procfs/proc.go   |  238 --
 .../github.com/prometheus/procfs/proc_io.go   |   65 -
 .../prometheus/procfs/proc_limits.go          |  150 -
 .../github.com/prometheus/procfs/proc_ns.go   |   68 -
 .../github.com/prometheus/procfs/proc_stat.go |  188 --
 vendor/github.com/prometheus/procfs/stat.go   |  232 --
 vendor/github.com/prometheus/procfs/xfrm.go   |  187 --
 .../github.com/prometheus/procfs/xfs/parse.go |  330 --
 .../github.com/prometheus/procfs/xfs/xfs.go   |  163 -
 vendor/github.com/tchap/go-patricia/AUTHORS   |    3 -
 vendor/github.com/tchap/go-patricia/LICENSE   |   20 -
 .../tchap/go-patricia/patricia/children.go    |  325 --
 .../tchap/go-patricia/patricia/patricia.go    |  594 ----
 vendor/github.com/vbatts/tar-split/LICENSE    |   28 -
 .../vbatts/tar-split/archive/tar/common.go    |  340 --
 .../vbatts/tar-split/archive/tar/reader.go    | 1064 -------
 .../vbatts/tar-split/archive/tar/stat_atim.go |   20 -
 .../tar-split/archive/tar/stat_atimespec.go   |   20 -
 .../vbatts/tar-split/archive/tar/stat_unix.go |   32 -
 .../vbatts/tar-split/archive/tar/writer.go    |  416 ---
 .../vbatts/tar-split/tar/asm/assemble.go      |  130 -
 .../vbatts/tar-split/tar/asm/disassemble.go   |  154 -
 .../vbatts/tar-split/tar/asm/doc.go           |    9 -
 .../vbatts/tar-split/tar/storage/doc.go       |   12 -
 .../vbatts/tar-split/tar/storage/entry.go     |   78 -
 .../vbatts/tar-split/tar/storage/getter.go    |  104 -
 .../vbatts/tar-split/tar/storage/packer.go    |  127 -
 vendor/golang.org/x/crypto/cast5/cast5.go     |  526 ---
 .../x/crypto/openpgp/armor/armor.go           |  219 --
 .../x/crypto/openpgp/armor/encode.go          |  160 -
 .../x/crypto/openpgp/canonical_text.go        |   59 -
 .../x/crypto/openpgp/elgamal/elgamal.go       |  122 -
 .../x/crypto/openpgp/errors/errors.go         |   72 -
 vendor/golang.org/x/crypto/openpgp/keys.go    |  641 ----
 .../x/crypto/openpgp/packet/compressed.go     |  123 -
 .../x/crypto/openpgp/packet/config.go         |   91 -
 .../x/crypto/openpgp/packet/encrypted_key.go  |  206 --
 .../x/crypto/openpgp/packet/literal.go        |   89 -
 .../x/crypto/openpgp/packet/ocfb.go           |  143 -
 .../openpgp/packet/one_pass_signature.go      |   73 -
 .../x/crypto/openpgp/packet/opaque.go         |  162 -
 .../x/crypto/openpgp/packet/packet.go         |  549 ----
 .../x/crypto/openpgp/packet/private_key.go    |  380 ---
 .../x/crypto/openpgp/packet/public_key.go     |  753 -----
 .../x/crypto/openpgp/packet/public_key_v3.go  |  279 --
 .../x/crypto/openpgp/packet/reader.go         |   76 -
 .../x/crypto/openpgp/packet/signature.go      |  731 -----
 .../x/crypto/openpgp/packet/signature_v3.go   |  146 -
 .../openpgp/packet/symmetric_key_encrypted.go |  155 -
 .../openpgp/packet/symmetrically_encrypted.go |  290 --
 .../x/crypto/openpgp/packet/userattribute.go  |   91 -
 .../x/crypto/openpgp/packet/userid.go         |  160 -
 vendor/golang.org/x/crypto/openpgp/read.go    |  442 ---
 vendor/golang.org/x/crypto/openpgp/s2k/s2k.go |  273 --
 vendor/golang.org/x/crypto/openpgp/write.go   |  378 ---
 .../golang.org/x/net/internal/socks/client.go |  168 -
 .../golang.org/x/net/internal/socks/socks.go  |  265 --
 vendor/golang.org/x/net/proxy/direct.go       |   18 -
 vendor/golang.org/x/net/proxy/per_host.go     |  140 -
 vendor/golang.org/x/net/proxy/proxy.go        |  134 -
 vendor/golang.org/x/net/proxy/socks5.go       |   36 -
 vendor/gopkg.in/cheggaaa/pb.v1/LICENSE        |   12 -
 vendor/gopkg.in/cheggaaa/pb.v1/format.go      |  118 -
 vendor/gopkg.in/cheggaaa/pb.v1/pb.go          |  475 ---
 .../gopkg.in/cheggaaa/pb.v1/pb_appengine.go   |   11 -
 vendor/gopkg.in/cheggaaa/pb.v1/pb_win.go      |  141 -
 vendor/gopkg.in/cheggaaa/pb.v1/pb_x.go        |  108 -
 vendor/gopkg.in/cheggaaa/pb.v1/pool.go        |  102 -
 vendor/gopkg.in/cheggaaa/pb.v1/pool_win.go    |   45 -
 vendor/gopkg.in/cheggaaa/pb.v1/pool_x.go      |   29 -
 vendor/gopkg.in/cheggaaa/pb.v1/reader.go      |   25 -
 vendor/gopkg.in/cheggaaa/pb.v1/runecount.go   |   17 -
 vendor/gopkg.in/cheggaaa/pb.v1/termios_bsd.go |    9 -
 .../gopkg.in/cheggaaa/pb.v1/termios_sysv.go   |   13 -
 vendor/k8s.io/client-go/LICENSE               |  202 --
 .../k8s.io/client-go/util/homedir/homedir.go  |   47 -
 994 files changed, 5359 insertions(+), 141516 deletions(-)
 delete mode 100644 vendor/github.com/BurntSushi/toml/COPYING
 delete mode 100644 vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
 delete mode 100644 vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
 delete mode 100644 vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
 delete mode 100644 vendor/github.com/BurntSushi/toml/decode.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/decode_meta.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/doc.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/encode.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/encoding_types.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/lex.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/parse.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/type_check.go
 delete mode 100644 vendor/github.com/BurntSushi/toml/type_fields.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/LICENSE
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/image/proxy_types.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/cloud_prepper.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/daemon_prepper.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/docker_utils.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/fs_utils.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_utils.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_prepper.go
 delete mode 100644 vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_utils.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/common.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/reader.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/stat_atim.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/stat_atimespec.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/stat_unix.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/archive/tar/writer.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/backuptar/noop.go
 delete mode 100644 vendor/github.com/Microsoft/go-winio/backuptar/tar.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/LICENSE
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/activatelayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/baselayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/callback.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/cgo.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/container.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/createlayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/destroylayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/errors.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/exportlayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/guid.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hcsshim.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hnspolicy.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/importlayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/interface.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/layerexists.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/layerutils.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/legacy.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/legacy18.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/legacy19.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/nametoguid.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/preparelayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/process.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/processimage.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/utils.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/version.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/waithelper.go
 delete mode 100644 vendor/github.com/Microsoft/hcsshim/zhcsshim.go
 delete mode 100644 vendor/github.com/beorn7/perks/LICENSE
 delete mode 100644 vendor/github.com/beorn7/perks/quantile/stream.go
 delete mode 100644 vendor/github.com/containers/image/LICENSE
 delete mode 100644 vendor/github.com/containers/image/copy/copy.go
 delete mode 120000 vendor/github.com/containers/image/copy/fixtures/Hello.bz2
 delete mode 120000 vendor/github.com/containers/image/copy/fixtures/Hello.gz
 delete mode 120000 vendor/github.com/containers/image/copy/fixtures/Hello.uncompressed
 delete mode 120000 vendor/github.com/containers/image/copy/fixtures/Hello.xz
 delete mode 100644 vendor/github.com/containers/image/copy/manifest.go
 delete mode 100644 vendor/github.com/containers/image/copy/progress_reader.go
 delete mode 100644 vendor/github.com/containers/image/copy/sign.go
 delete mode 100644 vendor/github.com/containers/image/directory/directory_dest.go
 delete mode 100644 vendor/github.com/containers/image/directory/directory_src.go
 delete mode 100644 vendor/github.com/containers/image/directory/directory_transport.go
 delete mode 100644 vendor/github.com/containers/image/directory/explicitfilepath/path.go
 delete mode 100644 vendor/github.com/containers/image/docker/archive/dest.go
 delete mode 100644 vendor/github.com/containers/image/docker/archive/src.go
 delete mode 100644 vendor/github.com/containers/image/docker/archive/transport.go
 delete mode 100644 vendor/github.com/containers/image/docker/daemon/client.go
 delete mode 100644 vendor/github.com/containers/image/docker/daemon/daemon_dest.go
 delete mode 100644 vendor/github.com/containers/image/docker/daemon/daemon_src.go
 delete mode 100644 vendor/github.com/containers/image/docker/daemon/daemon_transport.go
 delete mode 100644 vendor/github.com/containers/image/docker/docker_client.go
 delete mode 100644 vendor/github.com/containers/image/docker/docker_image.go
 delete mode 100644 vendor/github.com/containers/image/docker/docker_image_dest.go
 delete mode 100644 vendor/github.com/containers/image/docker/docker_image_src.go
 delete mode 100644 vendor/github.com/containers/image/docker/docker_transport.go
 delete mode 100644 vendor/github.com/containers/image/docker/lookaside.go
 delete mode 100644 vendor/github.com/containers/image/docker/policyconfiguration/naming.go
 delete mode 100644 vendor/github.com/containers/image/docker/reference/helpers.go
 delete mode 100644 vendor/github.com/containers/image/docker/reference/normalize.go
 delete mode 100644 vendor/github.com/containers/image/docker/reference/reference.go
 delete mode 100644 vendor/github.com/containers/image/docker/reference/regexp.go
 delete mode 100644 vendor/github.com/containers/image/docker/tarfile/dest.go
 delete mode 100644 vendor/github.com/containers/image/docker/tarfile/doc.go
 delete mode 100644 vendor/github.com/containers/image/docker/tarfile/src.go
 delete mode 100644 vendor/github.com/containers/image/docker/tarfile/types.go
 delete mode 100644 vendor/github.com/containers/image/docker/wwwauthenticate.go
 delete mode 100644 vendor/github.com/containers/image/image/docker_list.go
 delete mode 100644 vendor/github.com/containers/image/image/docker_schema1.go
 delete mode 100644 vendor/github.com/containers/image/image/docker_schema2.go
 delete mode 100644 vendor/github.com/containers/image/image/manifest.go
 delete mode 100644 vendor/github.com/containers/image/image/memory.go
 delete mode 100644 vendor/github.com/containers/image/image/oci.go
 delete mode 100644 vendor/github.com/containers/image/image/sourced.go
 delete mode 100644 vendor/github.com/containers/image/image/unparsed.go
 delete mode 100644 vendor/github.com/containers/image/internal/tmpdir/tmpdir.go
 delete mode 100644 vendor/github.com/containers/image/manifest/docker_schema1.go
 delete mode 100644 vendor/github.com/containers/image/manifest/docker_schema2.go
 delete mode 100644 vendor/github.com/containers/image/manifest/manifest.go
 delete mode 100644 vendor/github.com/containers/image/manifest/oci.go
 delete mode 100644 vendor/github.com/containers/image/oci/archive/oci_dest.go
 delete mode 100644 vendor/github.com/containers/image/oci/archive/oci_src.go
 delete mode 100644 vendor/github.com/containers/image/oci/archive/oci_transport.go
 delete mode 100644 vendor/github.com/containers/image/oci/internal/oci_util.go
 delete mode 100644 vendor/github.com/containers/image/oci/layout/oci_dest.go
 delete mode 100644 vendor/github.com/containers/image/oci/layout/oci_src.go
 delete mode 100644 vendor/github.com/containers/image/oci/layout/oci_transport.go
 delete mode 100644 vendor/github.com/containers/image/openshift/openshift-copies.go
 delete mode 100644 vendor/github.com/containers/image/openshift/openshift.go
 delete mode 100644 vendor/github.com/containers/image/openshift/openshift_transport.go
 delete mode 100644 vendor/github.com/containers/image/ostree/ostree_dest.go
 delete mode 100644 vendor/github.com/containers/image/ostree/ostree_src.go
 delete mode 100644 vendor/github.com/containers/image/ostree/ostree_transport.go
 delete mode 100644 vendor/github.com/containers/image/pkg/compression/compression.go
 delete mode 100644 vendor/github.com/containers/image/pkg/docker/config/config.go
 delete mode 100644 vendor/github.com/containers/image/pkg/strslice/strslice.go
 delete mode 100644 vendor/github.com/containers/image/pkg/tlsclientconfig/tlsclientconfig.go
 delete mode 100644 vendor/github.com/containers/image/signature/docker.go
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/manifest.json
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/signature-1
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/manifest.json
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-1
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-2
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-modified-manifest/signature-1
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-no-manifest/signature-1
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-unsigned/manifest.json
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/manifest.json
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/signature-1
 delete mode 120000 vendor/github.com/containers/image/signature/fixtures/dir-img-valid/manifest.json
 delete mode 100644 vendor/github.com/containers/image/signature/json.go
 delete mode 100644 vendor/github.com/containers/image/signature/mechanism.go
 delete mode 100644 vendor/github.com/containers/image/signature/mechanism_gpgme.go
 delete mode 100644 vendor/github.com/containers/image/signature/mechanism_openpgp.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_config.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_eval.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_eval_baselayer.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_eval_signedby.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_eval_simple.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_reference_match.go
 delete mode 100644 vendor/github.com/containers/image/signature/policy_types.go
 delete mode 100644 vendor/github.com/containers/image/signature/signature.go
 delete mode 100644 vendor/github.com/containers/image/storage/storage_image.go
 delete mode 100644 vendor/github.com/containers/image/storage/storage_reference.go
 delete mode 100644 vendor/github.com/containers/image/storage/storage_transport.go
 delete mode 100644 vendor/github.com/containers/image/tarball/doc.go
 delete mode 100644 vendor/github.com/containers/image/tarball/tarball_reference.go
 delete mode 100644 vendor/github.com/containers/image/tarball/tarball_src.go
 delete mode 100644 vendor/github.com/containers/image/tarball/tarball_transport.go
 delete mode 100644 vendor/github.com/containers/image/transports/alltransports/alltransports.go
 delete mode 100644 vendor/github.com/containers/image/transports/alltransports/ostree.go
 delete mode 100644 vendor/github.com/containers/image/transports/alltransports/ostree_stub.go
 delete mode 100644 vendor/github.com/containers/image/transports/alltransports/storage.go
 delete mode 100644 vendor/github.com/containers/image/transports/alltransports/storage_stub.go
 delete mode 100644 vendor/github.com/containers/image/transports/stub.go
 delete mode 100644 vendor/github.com/containers/image/transports/transports.go
 delete mode 100644 vendor/github.com/containers/image/types/types.go
 delete mode 100644 vendor/github.com/containers/image/version/version.go
 delete mode 100644 vendor/github.com/containers/storage/AUTHORS
 delete mode 100644 vendor/github.com/containers/storage/LICENSE
 delete mode 100644 vendor/github.com/containers/storage/NOTICE
 delete mode 100644 vendor/github.com/containers/storage/containers.go
 delete mode 100644 vendor/github.com/containers/storage/containers_ffjson.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/aufs/aufs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/aufs/dirs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/aufs/mount.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/aufs/mount_linux.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/aufs/mount_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/btrfs/btrfs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/btrfs/dummy_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/btrfs/version.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/btrfs/version_none.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/counter.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/devmapper/device_setup.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/devmapper/deviceset.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/devmapper/devmapper_doc.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/devmapper/driver.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/devmapper/mount.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver_linux.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/driver_windows.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/fsdiff.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlay/check.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlay/mount.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlay/overlay.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlay/overlay_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlay/randomid.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/overlayutils/overlayutils.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/quota/projectquota.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_aufs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_btrfs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_devicemapper.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_overlay.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_vfs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_windows.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/register/register_zfs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/vfs/driver.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/windows/windows.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/zfs/zfs.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/zfs/zfs_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/zfs/zfs_linux.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/zfs/zfs_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/drivers/zfs/zfs_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/errors.go
 delete mode 100755 vendor/github.com/containers/storage/hack/generate-authors.sh
 delete mode 100644 vendor/github.com/containers/storage/images.go
 delete mode 100644 vendor/github.com/containers/storage/images_ffjson.go
 delete mode 100644 vendor/github.com/containers/storage/layers.go
 delete mode 100644 vendor/github.com/containers/storage/layers_ffjson.go
 delete mode 100644 vendor/github.com/containers/storage/lockfile.go
 delete mode 100644 vendor/github.com/containers/storage/lockfile_darwin.go
 delete mode 100644 vendor/github.com/containers/storage/lockfile_linux.go
 delete mode 100644 vendor/github.com/containers/storage/lockfile_unix.go
 delete mode 100644 vendor/github.com/containers/storage/lockfile_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/archive.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/archive_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/archive_other.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/archive_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/archive_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/changes.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/changes_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/changes_other.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/changes_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/changes_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/copy.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/copy_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/copy_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/diff.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/example_changes.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/time_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/time_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/whiteouts.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/archive/wrap.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/archive.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/archive_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/archive_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/chroot_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/chroot_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/diff.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/diff_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/diff_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/init_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/chrootarchive/init_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_log.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_deferred_remove.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_dynamic.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_no_deferred_remove.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_static.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/ioctl.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/devicemapper/log.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/directory/directory.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/directory/directory_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/directory/directory_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/dmesg/dmesg_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fileutils/fileutils.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fileutils/fileutils_darwin.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fileutils/fileutils_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fileutils/fileutils_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fileutils/fileutils_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/fsutils/fsutils_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/homedir/homedir_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/homedir/homedir_others.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/homedir/homedir_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/homedir/homedir_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/idtools.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/idtools_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/idtools_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/usergroupadd_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/usergroupadd_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/idtools/utils_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/buffer.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/bytespipe.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/fswriters.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/readers.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/temp_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/temp_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/writeflusher.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/ioutils/writers.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/locker/locker.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/longpath/longpath.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/loopback/attach_loopback.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/loopback/ioctl.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/loopback/loop_wrapper.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/loopback/loopback.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mflag/LICENSE
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/flags.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/flags_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/flags_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/flags_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mount.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mounter_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mounter_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mounter_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mounter_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/mountinfo_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/sharedsubtree_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/mount/sharedsubtree_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/kernel.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_darwin.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/uname_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/uname_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/kernel/uname_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/parsers/parsers.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/pools/pools.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/promise/promise.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/reexec/command_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/reexec/command_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/reexec/command_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/reexec/command_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/reexec/reexec.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/stringid/stringid.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/chtimes.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/chtimes_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/chtimes_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/errors.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/exitcode.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/filesys.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/filesys_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/init.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/init_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/lcow_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/lcow_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/lstat_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/lstat_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/meminfo.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/meminfo_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/meminfo_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/meminfo_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/meminfo_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/mknod.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/mknod_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/path.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/path_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/path_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/process_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/rm.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_darwin.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_openbsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_solaris.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/stat_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/syscall_unix.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/syscall_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/umask.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/umask_windows.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/utimes_freebsd.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/utimes_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/utimes_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/xattrs_linux.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/system/xattrs_unsupported.go
 delete mode 100644 vendor/github.com/containers/storage/pkg/truncindex/truncindex.go
 delete mode 100644 vendor/github.com/containers/storage/store.go
 delete mode 100644 vendor/github.com/docker/distribution/AUTHORS
 delete mode 100644 vendor/github.com/docker/distribution/LICENSE
 delete mode 100644 vendor/github.com/docker/distribution/blobs.go
 delete mode 100644 vendor/github.com/docker/distribution/digestset/set.go
 delete mode 100644 vendor/github.com/docker/distribution/doc.go
 delete mode 100644 vendor/github.com/docker/distribution/errors.go
 delete mode 100644 vendor/github.com/docker/distribution/manifests.go
 delete mode 100644 vendor/github.com/docker/distribution/metrics/prometheus.go
 delete mode 100644 vendor/github.com/docker/distribution/reference/helpers.go
 delete mode 100644 vendor/github.com/docker/distribution/reference/normalize.go
 delete mode 100644 vendor/github.com/docker/distribution/reference/reference.go
 delete mode 100644 vendor/github.com/docker/distribution/reference/regexp.go
 delete mode 100644 vendor/github.com/docker/distribution/registry.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/errcode/errors.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/errcode/handler.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/errcode/register.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/descriptors.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/doc.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/errors.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/headerparser.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/routes.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/api/v2/urls.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/auth/challenge/addr.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/auth/challenge/authchallenge.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/blob_writer.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/errors.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/repository.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/transport/http_reader.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/client/transport/transport.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/storage/cache/cache.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/storage/cache/cachedblobdescriptorstore.go
 delete mode 100644 vendor/github.com/docker/distribution/registry/storage/cache/memory/memory.go
 delete mode 100644 vendor/github.com/docker/distribution/tags.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/LICENSE
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/client/client.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/client/command.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/credentials/credentials.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/credentials/error.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/credentials/helper.go
 delete mode 100644 vendor/github.com/docker/docker-credential-helpers/credentials/version.go
 delete mode 100644 vendor/github.com/docker/docker/api/common.go
 delete mode 100644 vendor/github.com/docker/docker/api/common_unix.go
 delete mode 100644 vendor/github.com/docker/docker/api/common_windows.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/auth.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/client.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/configs.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/error_response.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/events/events.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/filters/parse.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/graph_driver_data.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/id_response.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/image/image_history.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/image_delete_response_item.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/image_summary.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/network/network.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin_device.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin_env.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin_interface_type.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin_mount.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/plugin_responses.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/port.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/registry/authenticate.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/registry/registry.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/seccomp.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/service_update_response.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/stats.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/common.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/config.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/container.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/network.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/node.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/secret.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/service.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/swarm.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/swarm/task.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/time/duration_convert.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/time/timestamp.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/types.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/versions/compare.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/volume.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/volume/volumes_create.go
 delete mode 100644 vendor/github.com/docker/docker/api/types/volume/volumes_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/build_prune.go
 delete mode 100644 vendor/github.com/docker/docker/client/checkpoint_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/checkpoint_delete.go
 delete mode 100644 vendor/github.com/docker/docker/client/checkpoint_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/client.go
 delete mode 100644 vendor/github.com/docker/docker/client/client_unix.go
 delete mode 100644 vendor/github.com/docker/docker/client/client_windows.go
 delete mode 100644 vendor/github.com/docker/docker/client/config_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/config_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/config_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/config_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/config_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_attach.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_commit.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_copy.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_diff.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_exec.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_export.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_kill.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_logs.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_pause.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_prune.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_rename.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_resize.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_restart.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_start.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_stats.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_stop.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_top.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_unpause.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/container_wait.go
 delete mode 100644 vendor/github.com/docker/docker/client/disk_usage.go
 delete mode 100644 vendor/github.com/docker/docker/client/distribution_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/errors.go
 delete mode 100644 vendor/github.com/docker/docker/client/events.go
 delete mode 100644 vendor/github.com/docker/docker/client/hijack.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_build.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_history.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_import.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_load.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_prune.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_pull.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_push.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_save.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_search.go
 delete mode 100644 vendor/github.com/docker/docker/client/image_tag.go
 delete mode 100644 vendor/github.com/docker/docker/client/info.go
 delete mode 100644 vendor/github.com/docker/docker/client/interface.go
 delete mode 100644 vendor/github.com/docker/docker/client/interface_experimental.go
 delete mode 100644 vendor/github.com/docker/docker/client/interface_stable.go
 delete mode 100644 vendor/github.com/docker/docker/client/login.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_connect.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_disconnect.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_prune.go
 delete mode 100644 vendor/github.com/docker/docker/client/network_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/node_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/node_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/node_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/node_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/ping.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_disable.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_enable.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_install.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_push.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_set.go
 delete mode 100644 vendor/github.com/docker/docker/client/plugin_upgrade.go
 delete mode 100644 vendor/github.com/docker/docker/client/request.go
 delete mode 100644 vendor/github.com/docker/docker/client/secret_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/secret_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/secret_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/secret_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/secret_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_logs.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_remove.go
 delete mode 100644 vendor/github.com/docker/docker/client/service_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/session.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_get_unlock_key.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_init.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_join.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_leave.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_unlock.go
 delete mode 100644 vendor/github.com/docker/docker/client/swarm_update.go
 delete mode 100644 vendor/github.com/docker/docker/client/task_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/task_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/task_logs.go
 delete mode 100644 vendor/github.com/docker/docker/client/tlsconfig_clone.go
 delete mode 100644 vendor/github.com/docker/docker/client/tlsconfig_clone_go17.go
 delete mode 100644 vendor/github.com/docker/docker/client/transport.go
 delete mode 100644 vendor/github.com/docker/docker/client/utils.go
 delete mode 100644 vendor/github.com/docker/docker/client/version.go
 delete mode 100644 vendor/github.com/docker/docker/client/volume_create.go
 delete mode 100644 vendor/github.com/docker/docker/client/volume_inspect.go
 delete mode 100644 vendor/github.com/docker/docker/client/volume_list.go
 delete mode 100644 vendor/github.com/docker/docker/client/volume_prune.go
 delete mode 100644 vendor/github.com/docker/docker/client/volume_remove.go
 delete mode 100644 vendor/github.com/docker/docker/pkg/homedir/homedir_linux.go
 delete mode 100644 vendor/github.com/docker/docker/pkg/homedir/homedir_others.go
 delete mode 100644 vendor/github.com/docker/docker/pkg/homedir/homedir_unix.go
 delete mode 100644 vendor/github.com/docker/docker/pkg/homedir/homedir_windows.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/inmem_socket.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/proxy.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/sockets.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/sockets_unix.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/sockets_windows.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/tcp_socket.go
 delete mode 100644 vendor/github.com/docker/go-connections/sockets/unix_socket.go
 delete mode 100644 vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
 delete mode 100644 vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
 delete mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config.go
 delete mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
 delete mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
 delete mode 100644 vendor/github.com/docker/go-metrics/LICENSE.code
 delete mode 100644 vendor/github.com/docker/go-metrics/LICENSE.docs
 delete mode 100644 vendor/github.com/docker/go-metrics/NOTICE
 delete mode 100644 vendor/github.com/docker/go-metrics/counter.go
 delete mode 100644 vendor/github.com/docker/go-metrics/docs.go
 delete mode 100644 vendor/github.com/docker/go-metrics/gauge.go
 delete mode 100644 vendor/github.com/docker/go-metrics/handler.go
 delete mode 100644 vendor/github.com/docker/go-metrics/helpers.go
 delete mode 100644 vendor/github.com/docker/go-metrics/namespace.go
 delete mode 100644 vendor/github.com/docker/go-metrics/register.go
 delete mode 100644 vendor/github.com/docker/go-metrics/timer.go
 delete mode 100644 vendor/github.com/docker/go-metrics/unit.go
 delete mode 100644 vendor/github.com/docker/libtrust/LICENSE
 delete mode 100644 vendor/github.com/docker/libtrust/certificates.go
 delete mode 100644 vendor/github.com/docker/libtrust/doc.go
 delete mode 100644 vendor/github.com/docker/libtrust/ec_key.go
 delete mode 100644 vendor/github.com/docker/libtrust/filter.go
 delete mode 100644 vendor/github.com/docker/libtrust/hash.go
 delete mode 100644 vendor/github.com/docker/libtrust/jsonsign.go
 delete mode 100644 vendor/github.com/docker/libtrust/key.go
 delete mode 100644 vendor/github.com/docker/libtrust/key_files.go
 delete mode 100644 vendor/github.com/docker/libtrust/key_manager.go
 delete mode 100644 vendor/github.com/docker/libtrust/rsa_key.go
 delete mode 100644 vendor/github.com/docker/libtrust/util.go
 delete mode 100644 vendor/github.com/ghodss/yaml/LICENSE
 delete mode 100644 vendor/github.com/ghodss/yaml/fields.go
 delete mode 100644 vendor/github.com/ghodss/yaml/yaml.go
 delete mode 100644 vendor/github.com/gogo/protobuf/AUTHORS
 delete mode 100644 vendor/github.com/gogo/protobuf/CONTRIBUTORS
 delete mode 100644 vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
 delete mode 100644 vendor/github.com/gogo/protobuf/LICENSE
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/clone.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/decode.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/decode_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/discard.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/duration.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/duration_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/encode.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/encode_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/equal.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/extensions.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/lib.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/lib_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/message_set.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/properties.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/properties_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/skip_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/text.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/text_gogo.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/text_parser.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/timestamp.go
 delete mode 100644 vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
 rename vendor/github.com/{prometheus/client_golang => google/go-containerregistry}/LICENSE (99%)
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/anon.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/auth.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/authn.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/basic.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/bearer.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/helper.go
 create mode 100644 vendor/github.com/google/go-containerregistry/authn/keychain.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/check.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/digest.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/errors.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/ref.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/registry.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/repository.go
 create mode 100644 vendor/github.com/google/go-containerregistry/name/tag.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/config.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/doc.go
 rename vendor/github.com/{prometheus/common/model/model.go => google/go-containerregistry/v1/empty/doc.go} (70%)
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/empty/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/hash.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/layer.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/manifest.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/partial/compressed.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/partial/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/partial/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/partial/uncompressed.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/partial/with.go
 rename vendor/github.com/{matttproud/golang_protobuf_extensions/pbutil => google/go-containerregistry/v1/random}/doc.go (72%)
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/random/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/delete.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/error.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/basic.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/ping.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/scheme.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/write.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/tarball/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/tarball/image.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/tarball/write.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/types/types.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/v1util/and_closer.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/v1util/nop.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/v1util/verify.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/v1util/zip.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/zz_deepcopy_generated.go
 delete mode 100644 vendor/github.com/gorilla/context/LICENSE
 delete mode 100644 vendor/github.com/gorilla/context/context.go
 delete mode 100644 vendor/github.com/gorilla/context/doc.go
 delete mode 100644 vendor/github.com/gorilla/mux/LICENSE
 delete mode 100644 vendor/github.com/gorilla/mux/context_gorilla.go
 delete mode 100644 vendor/github.com/gorilla/mux/context_native.go
 delete mode 100644 vendor/github.com/gorilla/mux/doc.go
 delete mode 100644 vendor/github.com/gorilla/mux/middleware.go
 delete mode 100644 vendor/github.com/gorilla/mux/mux.go
 delete mode 100644 vendor/github.com/gorilla/mux/regexp.go
 delete mode 100644 vendor/github.com/gorilla/mux/route.go
 delete mode 100644 vendor/github.com/gorilla/mux/test_helpers.go
 delete mode 100644 vendor/github.com/imdario/mergo/LICENSE
 delete mode 100644 vendor/github.com/imdario/mergo/doc.go
 delete mode 100644 vendor/github.com/imdario/mergo/map.go
 delete mode 100644 vendor/github.com/imdario/mergo/merge.go
 delete mode 100644 vendor/github.com/imdario/mergo/mergo.go
 delete mode 100644 vendor/github.com/imdario/mergo/testdata/license.yml
 delete mode 100644 vendor/github.com/mattn/go-runewidth/LICENSE
 delete mode 100644 vendor/github.com/mattn/go-runewidth/runewidth.go
 delete mode 100644 vendor/github.com/mattn/go-runewidth/runewidth_js.go
 delete mode 100644 vendor/github.com/mattn/go-runewidth/runewidth_posix.go
 delete mode 100644 vendor/github.com/mattn/go-runewidth/runewidth_windows.go
 delete mode 100644 vendor/github.com/mattn/go-shellwords/LICENSE
 delete mode 100644 vendor/github.com/mattn/go-shellwords/shellwords.go
 delete mode 100644 vendor/github.com/mattn/go-shellwords/util_posix.go
 delete mode 100644 vendor/github.com/mattn/go-shellwords/util_windows.go
 delete mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
 delete mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
 delete mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
 delete mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
 delete mode 100644 vendor/github.com/mistifyio/go-zfs/LICENSE
 delete mode 100644 vendor/github.com/mistifyio/go-zfs/error.go
 delete mode 100644 vendor/github.com/mistifyio/go-zfs/utils.go
 delete mode 100644 vendor/github.com/mistifyio/go-zfs/zfs.go
 delete mode 100644 vendor/github.com/mistifyio/go-zfs/zpool.go
 delete mode 100644 vendor/github.com/mtrmac/gpgme/LICENSE
 delete mode 100644 vendor/github.com/mtrmac/gpgme/callbacks.go
 delete mode 100644 vendor/github.com/mtrmac/gpgme/data.go
 delete mode 100644 vendor/github.com/mtrmac/gpgme/go_gpgme.c
 delete mode 100644 vendor/github.com/mtrmac/gpgme/go_gpgme.h
 delete mode 100644 vendor/github.com/mtrmac/gpgme/gpgme.go
 delete mode 100644 vendor/github.com/opencontainers/selinux/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
 delete mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
 delete mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
 delete mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/LICENSE
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gboolean.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gcancellable.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gerror.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfile.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfileinfo.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtable.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtableiter.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go.h
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gobject.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/goptioncontext.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gvariant.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go.h
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/cat.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checkout.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checksum.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/commit.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/config.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/diff.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/export.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/fsck.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/gpgsign.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/init.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/log.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/ls.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/prune.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pull.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pulllocal.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/refs.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/remote.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/reset.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/revparse.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/show.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/staticdelta.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/summary.go
 delete mode 100644 vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/trivialhttpd.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/LICENSE
 delete mode 100644 vendor/github.com/pquerna/ffjson/NOTICE
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/buffer.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/buffer_nopool.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/buffer_pool.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/bytenum.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/decimal.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/extfloat.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/fold.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/ftoa.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/internal/atof.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/internal/atoi.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/internal/extfloat.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/internal/ftoa.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/iota.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/jsonstring.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/lexer.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/reader.go
 delete mode 100644 vendor/github.com/pquerna/ffjson/fflib/v1/reader_scan_generic.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/NOTICE
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/collector.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/counter.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/desc.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/doc.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/fnv.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/gauge.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/histogram.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/http.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/labels.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/metric.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/observer.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/registry.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/summary.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/timer.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/untyped.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/value.go
 delete mode 100644 vendor/github.com/prometheus/client_golang/prometheus/vec.go
 delete mode 100644 vendor/github.com/prometheus/client_model/LICENSE
 delete mode 100644 vendor/github.com/prometheus/client_model/NOTICE
 delete mode 100644 vendor/github.com/prometheus/client_model/go/metrics.pb.go
 delete mode 100644 vendor/github.com/prometheus/client_model/ruby/LICENSE
 delete mode 100644 vendor/github.com/prometheus/common/LICENSE
 delete mode 100644 vendor/github.com/prometheus/common/NOTICE
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/decode.go
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/encode.go
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/expfmt.go
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/fuzz.go
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/text_create.go
 delete mode 100644 vendor/github.com/prometheus/common/expfmt/text_parse.go
 delete mode 100644 vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
 delete mode 100644 vendor/github.com/prometheus/common/model/alert.go
 delete mode 100644 vendor/github.com/prometheus/common/model/fingerprinting.go
 delete mode 100644 vendor/github.com/prometheus/common/model/fnv.go
 delete mode 100644 vendor/github.com/prometheus/common/model/labels.go
 delete mode 100644 vendor/github.com/prometheus/common/model/labelset.go
 delete mode 100644 vendor/github.com/prometheus/common/model/metric.go
 delete mode 100644 vendor/github.com/prometheus/common/model/signature.go
 delete mode 100644 vendor/github.com/prometheus/common/model/silence.go
 delete mode 100644 vendor/github.com/prometheus/common/model/time.go
 delete mode 100644 vendor/github.com/prometheus/common/model/value.go
 delete mode 100644 vendor/github.com/prometheus/procfs/LICENSE
 delete mode 100644 vendor/github.com/prometheus/procfs/NOTICE
 delete mode 100644 vendor/github.com/prometheus/procfs/buddyinfo.go
 delete mode 100644 vendor/github.com/prometheus/procfs/doc.go
 delete mode 100644 vendor/github.com/prometheus/procfs/fs.go
 delete mode 100644 vendor/github.com/prometheus/procfs/internal/util/parse.go
 delete mode 100644 vendor/github.com/prometheus/procfs/ipvs.go
 delete mode 100644 vendor/github.com/prometheus/procfs/mdstat.go
 delete mode 100644 vendor/github.com/prometheus/procfs/mountstats.go
 delete mode 100644 vendor/github.com/prometheus/procfs/net_dev.go
 delete mode 100644 vendor/github.com/prometheus/procfs/nfs/nfs.go
 delete mode 100644 vendor/github.com/prometheus/procfs/nfs/parse.go
 delete mode 100644 vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
 delete mode 100644 vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
 delete mode 100644 vendor/github.com/prometheus/procfs/proc.go
 delete mode 100644 vendor/github.com/prometheus/procfs/proc_io.go
 delete mode 100644 vendor/github.com/prometheus/procfs/proc_limits.go
 delete mode 100644 vendor/github.com/prometheus/procfs/proc_ns.go
 delete mode 100644 vendor/github.com/prometheus/procfs/proc_stat.go
 delete mode 100644 vendor/github.com/prometheus/procfs/stat.go
 delete mode 100644 vendor/github.com/prometheus/procfs/xfrm.go
 delete mode 100644 vendor/github.com/prometheus/procfs/xfs/parse.go
 delete mode 100644 vendor/github.com/prometheus/procfs/xfs/xfs.go
 delete mode 100644 vendor/github.com/tchap/go-patricia/AUTHORS
 delete mode 100644 vendor/github.com/tchap/go-patricia/LICENSE
 delete mode 100644 vendor/github.com/tchap/go-patricia/patricia/children.go
 delete mode 100644 vendor/github.com/tchap/go-patricia/patricia/patricia.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/LICENSE
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/common.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/reader.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/writer.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/doc.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/doc.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/entry.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/getter.go
 delete mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/packer.go
 delete mode 100644 vendor/golang.org/x/crypto/cast5/cast5.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/armor/armor.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/armor/encode.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/canonical_text.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/elgamal/elgamal.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/errors/errors.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/keys.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/compressed.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/config.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/encrypted_key.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/literal.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/ocfb.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/one_pass_signature.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/opaque.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/packet.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/private_key.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/public_key.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/public_key_v3.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/reader.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/signature.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/signature_v3.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/symmetric_key_encrypted.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/symmetrically_encrypted.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/userattribute.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/packet/userid.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/read.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/s2k/s2k.go
 delete mode 100644 vendor/golang.org/x/crypto/openpgp/write.go
 delete mode 100644 vendor/golang.org/x/net/internal/socks/client.go
 delete mode 100644 vendor/golang.org/x/net/internal/socks/socks.go
 delete mode 100644 vendor/golang.org/x/net/proxy/direct.go
 delete mode 100644 vendor/golang.org/x/net/proxy/per_host.go
 delete mode 100644 vendor/golang.org/x/net/proxy/proxy.go
 delete mode 100644 vendor/golang.org/x/net/proxy/socks5.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/LICENSE
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/format.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pb.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pb_appengine.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pb_win.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pb_x.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pool.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pool_win.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/pool_x.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/reader.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/runecount.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/termios_bsd.go
 delete mode 100644 vendor/gopkg.in/cheggaaa/pb.v1/termios_sysv.go
 delete mode 100644 vendor/k8s.io/client-go/LICENSE
 delete mode 100644 vendor/k8s.io/client-go/util/homedir/homedir.go

diff --git a/Gopkg.lock b/Gopkg.lock
index 257a9383ed..7a899bbe10 100644
--- a/Gopkg.lock
+++ b/Gopkg.lock
@@ -15,171 +15,31 @@
   revision = "29f476ffa9c4cd4fd14336b6043090ac1ad76733"
   version = "v0.21.0"
 
-[[projects]]
-  name = "github.com/BurntSushi/toml"
-  packages = ["."]
-  revision = "b26d9c308763d68093482582cea63d69be07a0f0"
-  version = "v0.3.0"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/GoogleContainerTools/container-diff"
-  packages = [
-    "cmd/util/output",
-    "pkg/image",
-    "pkg/util"
-  ]
-  revision = "564361979f3124dd3e6d8bbec027279539c8e08b"
-  source = "github.com/GoogleContainerTools/container-diff"
-
 [[projects]]
   name = "github.com/Microsoft/go-winio"
-  packages = [
-    ".",
-    "archive/tar",
-    "backuptar"
-  ]
+  packages = ["."]
   revision = "7da180ee92d8bd8bb8c37fc560e673e6557c392f"
   version = "v0.4.7"
 
-[[projects]]
-  name = "github.com/Microsoft/hcsshim"
-  packages = ["."]
-  revision = "45ef15484298b76abeb9513ea0ea0abd2b5b84b3"
-  version = "v0.6.8"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/beorn7/perks"
-  packages = ["quantile"]
-  revision = "3a771d992973f24aa725d07868b467d1ddfceafb"
-
 [[projects]]
   branch = "master"
   name = "github.com/containerd/continuity"
   packages = ["pathdriver"]
   revision = "c6cef34830231743494fe2969284df7b82cc0ad0"
 
-[[projects]]
-  name = "github.com/containers/image"
-  packages = [
-    "copy",
-    "directory",
-    "directory/explicitfilepath",
-    "docker",
-    "docker/archive",
-    "docker/daemon",
-    "docker/policyconfiguration",
-    "docker/reference",
-    "docker/tarfile",
-    "image",
-    "internal/tmpdir",
-    "manifest",
-    "oci/archive",
-    "oci/internal",
-    "oci/layout",
-    "openshift",
-    "ostree",
-    "pkg/compression",
-    "pkg/docker/config",
-    "pkg/strslice",
-    "pkg/tlsclientconfig",
-    "signature",
-    "storage",
-    "tarball",
-    "transports",
-    "transports/alltransports",
-    "types",
-    "version"
-  ]
-  revision = "495da41bd26c50be62fa07ae903ea2ee54c00283"
-
-[[projects]]
-  name = "github.com/containers/storage"
-  packages = [
-    ".",
-    "drivers",
-    "drivers/aufs",
-    "drivers/btrfs",
-    "drivers/devmapper",
-    "drivers/overlay",
-    "drivers/overlayutils",
-    "drivers/quota",
-    "drivers/register",
-    "drivers/vfs",
-    "drivers/windows",
-    "drivers/zfs",
-    "pkg/archive",
-    "pkg/chrootarchive",
-    "pkg/devicemapper",
-    "pkg/directory",
-    "pkg/dmesg",
-    "pkg/fileutils",
-    "pkg/fsutils",
-    "pkg/homedir",
-    "pkg/idtools",
-    "pkg/ioutils",
-    "pkg/locker",
-    "pkg/longpath",
-    "pkg/loopback",
-    "pkg/mount",
-    "pkg/parsers",
-    "pkg/parsers/kernel",
-    "pkg/pools",
-    "pkg/promise",
-    "pkg/reexec",
-    "pkg/stringid",
-    "pkg/system",
-    "pkg/truncindex"
-  ]
-  revision = "1e5ce40cdb84ab66e26186435b1273e04b879fef"
-  source = "github.com/containers/storage"
-
-[[projects]]
-  name = "github.com/docker/distribution"
-  packages = [
-    ".",
-    "digestset",
-    "metrics",
-    "reference",
-    "registry/api/errcode",
-    "registry/api/v2",
-    "registry/client",
-    "registry/client/auth/challenge",
-    "registry/client/transport",
-    "registry/storage/cache",
-    "registry/storage/cache/memory"
-  ]
-  revision = "83389a148052d74ac602f5f1d62f86ff2f3c4aa5"
-  source = "github.com/docker/distribution"
-
 [[projects]]
   name = "github.com/docker/docker"
   packages = [
-    "api",
-    "api/types",
     "api/types/blkiodev",
     "api/types/container",
-    "api/types/events",
-    "api/types/filters",
-    "api/types/image",
     "api/types/mount",
-    "api/types/network",
-    "api/types/registry",
     "api/types/strslice",
-    "api/types/swarm",
-    "api/types/swarm/runtime",
-    "api/types/time",
-    "api/types/versions",
-    "api/types/volume",
     "builder/dockerfile/command",
     "builder/dockerfile/instructions",
     "builder/dockerfile/parser",
     "builder/dockerfile/shell",
-    "client",
     "pkg/archive",
     "pkg/fileutils",
-    "pkg/homedir",
     "pkg/idtools",
     "pkg/ioutils",
     "pkg/longpath",
@@ -190,61 +50,24 @@
   revision = "b1a1234c60cf87048814aa37da523b03a7b0d344"
   source = "github.com/docker/docker"
 
-[[projects]]
-  name = "github.com/docker/docker-credential-helpers"
-  packages = [
-    "client",
-    "credentials"
-  ]
-  revision = "d68f9aeca33f5fd3f08eeae5e9d175edf4e731d1"
-  version = "v0.6.0"
-
 [[projects]]
   name = "github.com/docker/go-connections"
-  packages = [
-    "nat",
-    "sockets",
-    "tlsconfig"
-  ]
+  packages = ["nat"]
   revision = "3ede32e2033de7505e6500d6c868c2b9ed9f169d"
   version = "v0.3.0"
 
-[[projects]]
-  branch = "master"
-  name = "github.com/docker/go-metrics"
-  packages = ["."]
-  revision = "399ea8c73916000c64c2c76e8da00ca82f8387ab"
-
 [[projects]]
   name = "github.com/docker/go-units"
   packages = ["."]
   revision = "47565b4f722fb6ceae66b95f853feed578a4a51c"
   version = "v0.3.3"
 
-[[projects]]
-  branch = "master"
-  name = "github.com/docker/libtrust"
-  packages = ["."]
-  revision = "aabc10ec26b754e797f9028f4589c5b7bd90dc20"
-
 [[projects]]
   name = "github.com/genuinetools/amicontained"
   packages = ["container"]
   revision = "fcae88544f0212fbb1e20699c41566655b68679b"
   version = "v0.4.0"
 
-[[projects]]
-  name = "github.com/ghodss/yaml"
-  packages = ["."]
-  revision = "0ca9ea5df5451ffdf184b4428c902747c2c11cd7"
-  version = "v1.0.0"
-
-[[projects]]
-  name = "github.com/gogo/protobuf"
-  packages = ["proto"]
-  revision = "1adfc126b41513cc696b209667c8656ea7aac67c"
-  version = "v1.0.0"
-
 [[projects]]
   name = "github.com/golang/protobuf"
   packages = [
@@ -258,66 +81,37 @@
   revision = "925541529c1fa6821df4e44ce2723319eb2be768"
   version = "v1.0.0"
 
+[[projects]]
+  branch = "master"
+  name = "github.com/google/go-containerregistry"
+  packages = [
+    "authn",
+    "name",
+    "v1",
+    "v1/empty",
+    "v1/mutate",
+    "v1/partial",
+    "v1/random",
+    "v1/remote",
+    "v1/remote/transport",
+    "v1/tarball",
+    "v1/types",
+    "v1/v1util"
+  ]
+  revision = "2f7b7371197ff22ecc4578e081a73292cc32ae02"
+
 [[projects]]
   name = "github.com/googleapis/gax-go"
   packages = ["."]
   revision = "317e0006254c44a0ac427cc52a0e083ff0b9622f"
   version = "v2.0.0"
 
-[[projects]]
-  name = "github.com/gorilla/context"
-  packages = ["."]
-  revision = "1ea25387ff6f684839d82767c1733ff4d4d15d0a"
-  version = "v1.1"
-
-[[projects]]
-  name = "github.com/gorilla/mux"
-  packages = ["."]
-  revision = "53c1911da2b537f792e7cafcb446b05ffe33b996"
-  version = "v1.6.1"
-
-[[projects]]
-  name = "github.com/imdario/mergo"
-  packages = ["."]
-  revision = "9d5f1277e9a8ed20c3684bda8fde67c05628518c"
-  version = "v0.3.4"
-
 [[projects]]
   name = "github.com/inconshreveable/mousetrap"
   packages = ["."]
   revision = "76626ae9c91c4f2a10f34cad8ce83ea42c93bb75"
   version = "v1.0"
 
-[[projects]]
-  name = "github.com/mattn/go-runewidth"
-  packages = ["."]
-  revision = "9e777a8366cce605130a531d2cd6363d07ad7317"
-  version = "v0.0.2"
-
-[[projects]]
-  name = "github.com/mattn/go-shellwords"
-  packages = ["."]
-  revision = "02e3cf038dcea8290e44424da473dd12be796a8a"
-  version = "v1.0.3"
-
-[[projects]]
-  name = "github.com/matttproud/golang_protobuf_extensions"
-  packages = ["pbutil"]
-  revision = "3247c84500bff8d9fb6d579d800f20b3e091582c"
-  version = "v1.0.0"
-
-[[projects]]
-  name = "github.com/mistifyio/go-zfs"
-  packages = ["."]
-  revision = "cdc0f941c4d0e0e94d85348285568d921891e138"
-  version = "v2.1.1"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/mtrmac/gpgme"
-  packages = ["."]
-  revision = "b2432428689ca58c2b8e8dea9449d3295cf96fc9"
-
 [[projects]]
   name = "github.com/opencontainers/go-digest"
   packages = ["."]
@@ -342,75 +136,12 @@
   revision = "baf6536d6259209c3edfa2b22237af82942d3dfa"
   version = "v0.1.1"
 
-[[projects]]
-  name = "github.com/opencontainers/selinux"
-  packages = [
-    "go-selinux",
-    "go-selinux/label"
-  ]
-  revision = "ba1aefe8057f1d0cfb8e88d0ec1dc85925ef987d"
-  version = "v1.0.0-rc1"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/ostreedev/ostree-go"
-  packages = [
-    "pkg/glibobject",
-    "pkg/otbuiltin"
-  ]
-  revision = "cb6250d5a6a240b509609915842f763fd87b819d"
-
 [[projects]]
   name = "github.com/pkg/errors"
   packages = ["."]
   revision = "645ef00459ed84a119197bfb8d8205042c6df63d"
   version = "v0.8.0"
 
-[[projects]]
-  branch = "master"
-  name = "github.com/pquerna/ffjson"
-  packages = [
-    "fflib/v1",
-    "fflib/v1/internal"
-  ]
-  revision = "d49c2bc1aa135aad0c6f4fc2056623ec78f5d5ac"
-
-[[projects]]
-  name = "github.com/prometheus/client_golang"
-  packages = [
-    "prometheus",
-    "prometheus/promhttp"
-  ]
-  revision = "a40133b69fbd73ee655606a9bf5f8b9b9bf758dd"
-  source = "github.com/prometheus/client_golang"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/prometheus/client_model"
-  packages = ["go"]
-  revision = "99fa1f4be8e564e8a6b613da7fa6f46c9edafc6c"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/prometheus/common"
-  packages = [
-    "expfmt",
-    "internal/bitbucket.org/ww/goautoneg",
-    "model"
-  ]
-  revision = "d0f7cd64bda49e08b22ae8a730aa57aa0db125d6"
-
-[[projects]]
-  branch = "master"
-  name = "github.com/prometheus/procfs"
-  packages = [
-    ".",
-    "internal/util",
-    "nfs",
-    "xfs"
-  ]
-  revision = "8b1c2da0d56deffdbb9e48d4414b4e674bd8083e"
-
 [[projects]]
   name = "github.com/sirupsen/logrus"
   packages = ["."]
@@ -435,22 +166,6 @@
   packages = ["capability"]
   revision = "33e07d32887e1e06b7c025f27ce52f62c7990bc0"
 
-[[projects]]
-  name = "github.com/tchap/go-patricia"
-  packages = ["patricia"]
-  revision = "666120de432aea38ab06bd5c818f04f4129882c9"
-  version = "v2.2.6"
-
-[[projects]]
-  name = "github.com/vbatts/tar-split"
-  packages = [
-    "archive/tar",
-    "tar/asm",
-    "tar/storage"
-  ]
-  revision = "38ec4ddb06dedbea0a895c4848b248eb38af221b"
-  version = "v0.10.2"
-
 [[projects]]
   name = "go.opencensus.io"
   packages = [
@@ -473,16 +188,7 @@
 [[projects]]
   branch = "master"
   name = "golang.org/x/crypto"
-  packages = [
-    "cast5",
-    "openpgp",
-    "openpgp/armor",
-    "openpgp/elgamal",
-    "openpgp/errors",
-    "openpgp/packet",
-    "openpgp/s2k",
-    "ssh/terminal"
-  ]
+  packages = ["ssh/terminal"]
   revision = "e73bf333ef8920dbb52ad18d4bd38ad9d9bc76d7"
 
 [[projects]]
@@ -495,10 +201,8 @@
     "http2",
     "http2/hpack",
     "idna",
-    "internal/socks",
     "internal/timeseries",
     "lex/httplex",
-    "proxy",
     "trace"
   ]
   revision = "5f9ae10d9af5b1c89ae6904293b14b064d4ada23"
@@ -619,27 +323,15 @@
   revision = "d11072e7ca9811b1100b80ca0269ac831f06d024"
   version = "v1.11.3"
 
-[[projects]]
-  name = "gopkg.in/cheggaaa/pb.v1"
-  packages = ["."]
-  revision = "72b964305fba1230d3d818711138195f22b9ceea"
-  version = "v1.0.22"
-
 [[projects]]
   name = "gopkg.in/yaml.v2"
   packages = ["."]
   revision = "5420a8b6744d3b0345ab293f6fcba19c978f1183"
   version = "v2.2.1"
 
-[[projects]]
-  name = "k8s.io/client-go"
-  packages = ["util/homedir"]
-  revision = "23781f4d6632d88e869066eaebb743857aa1ef9b"
-  version = "v7.0.0"
-
 [solve-meta]
   analyzer-name = "dep"
   analyzer-version = 1
-  inputs-digest = "6d64e71de2909767e347f36c90936a5f77da94f74fe2dbf84d6d44fdbcdf4fba"
+  inputs-digest = "9ed51a63daab2be9e4864e4d97d90ccc0f540d076f891b80f01bd3f161c9ef7a"
   solver-name = "gps-cdcl"
   solver-version = 1
diff --git a/Gopkg.toml b/Gopkg.toml
index 47af20cd96..e86b513b5c 100644
--- a/Gopkg.toml
+++ b/Gopkg.toml
@@ -18,11 +18,6 @@
   revision = "83389a148052d74ac602f5f1d62f86ff2f3c4aa5"
   source = "github.com/docker/distribution"
 
-[[constraint]]
-  name = "github.com/GoogleContainerTools/container-diff"
-  branch = "master"
-  source = "github.com/GoogleContainerTools/container-diff"
-
 [[constraint]]
   name = "github.com/docker/docker"
   revision = "b1a1234c60cf87048814aa37da523b03a7b0d344"
diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 2c8e9b69aa..6a4fd546ef 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -72,6 +72,10 @@ var RootCmd = &cobra.Command{
 			}
 			logrus.Warn("kaniko is being run outside of a container. This can have dangerous effects on your system")
 		}
+		if err := os.Chdir("/"); err != nil {
+			logrus.Error(err)
+			os.Exit(1)
+		}
 		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index a1b920c5de..5d811327ec 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -21,6 +21,7 @@ ADD files/docker-credential-gcr /usr/local/bin/
 ADD files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
+ENV USER /root
 ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
 ENTRYPOINT ["/kaniko/executor"]
diff --git a/pkg/commands/add.go b/pkg/commands/add.go
index 2ce4a090f8..f7264afec7 100644
--- a/pkg/commands/add.go
+++ b/pkg/commands/add.go
@@ -20,8 +20,9 @@ import (
 	"path/filepath"
 	"strings"
 
+	"github.com/google/go-containerregistry/v1"
+
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
 )
@@ -40,7 +41,7 @@ type AddCommand struct {
 // 		- If dest doesn't end with a slash, the filepath is inferred to be <dest>/<filename>
 // 	2. If <src> is a local tar archive:
 // 		-If <src> is a local tar archive, it is unpacked at the dest, as 'tar -x' would
-func (a *AddCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (a *AddCommand) ExecuteCommand(config *v1.Config) error {
 	srcs := a.cmd.SourcesAndDest[:len(a.cmd.SourcesAndDest)-1]
 	dest := a.cmd.SourcesAndDest[len(a.cmd.SourcesAndDest)-1]
 
diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 4d49234b20..9d53bd98e7 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -17,10 +17,11 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/containers/image/manifest"
+	"strings"
+
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
-	"strings"
 )
 
 type CmdCommand struct {
@@ -29,7 +30,7 @@ type CmdCommand struct {
 
 // ExecuteCommand executes the CMD command
 // Argument handling is the same as RUN.
-func (c *CmdCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (c *CmdCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: CMD")
 	var newCommand []string
 	if c.cmd.PrependShell {
diff --git a/pkg/commands/cmd_test.go b/pkg/commands/cmd_test.go
index 9a0c82e8a2..a8395af691 100644
--- a/pkg/commands/cmd_test.go
+++ b/pkg/commands/cmd_test.go
@@ -18,32 +18,32 @@ package commands
 import (
 	"testing"
 
+	"github.com/google/go-containerregistry/v1"
+
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/pkg/strslice"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 )
 
 var cmdTests = []struct {
 	prependShell bool
 	cmdLine      []string
-	expectedCmd  strslice.StrSlice
+	expectedCmd  []string
 }{
 	{
 		prependShell: true,
 		cmdLine:      []string{"echo", "cmd1"},
-		expectedCmd:  strslice.StrSlice{"/bin/sh", "-c", "echo cmd1"},
+		expectedCmd:  []string{"/bin/sh", "-c", "echo cmd1"},
 	},
 	{
 		prependShell: false,
 		cmdLine:      []string{"echo", "cmd2"},
-		expectedCmd:  strslice.StrSlice{"echo", "cmd2"},
+		expectedCmd:  []string{"echo", "cmd2"},
 	},
 }
 
 func TestExecuteCmd(t *testing.T) {
 
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Cmd: nil,
 	}
 
diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index dd2de8a8ac..96a5bed02f 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -17,8 +17,8 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/pkg/errors"
 	"github.com/sirupsen/logrus"
 )
@@ -28,7 +28,7 @@ type DockerCommand interface {
 	// 	1. Making required changes to the filesystem (ex. copying files for ADD/COPY or setting ENV variables)
 	//  2. Updating metadata fields in the config
 	// It should not change the config history.
-	ExecuteCommand(*manifest.Schema2Config) error
+	ExecuteCommand(*v1.Config) error
 	// The config history has a "created by" field, should return information about the command
 	CreatedBy() string
 	// A list of files to snapshot, empty for metadata commands or nil if we don't know
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index bded4bf99c..91e60d82da 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -17,13 +17,14 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
-	"github.com/docker/docker/builder/dockerfile/instructions"
-	"github.com/sirupsen/logrus"
 	"os"
 	"path/filepath"
 	"strings"
+
+	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
 )
 
 type CopyCommand struct {
@@ -32,7 +33,7 @@ type CopyCommand struct {
 	snapshotFiles []string
 }
 
-func (c *CopyCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (c *CopyCommand) ExecuteCommand(config *v1.Config) error {
 	srcs := c.cmd.SourcesAndDest[:len(c.cmd.SourcesAndDest)-1]
 	dest := c.cmd.SourcesAndDest[len(c.cmd.SourcesAndDest)-1]
 
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index a7fd5f3ed3..a753dc5ee0 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -17,10 +17,11 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/containers/image/manifest"
+	"strings"
+
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
-	"strings"
 )
 
 type EntrypointCommand struct {
@@ -28,7 +29,7 @@ type EntrypointCommand struct {
 }
 
 // ExecuteCommand handles command processing similar to CMD and RUN,
-func (e *EntrypointCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (e *EntrypointCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: ENTRYPOINT")
 	var newCommand []string
 	if e.cmd.PrependShell {
diff --git a/pkg/commands/entrypoint_test.go b/pkg/commands/entrypoint_test.go
index ae24e8fea2..57d28cd87b 100644
--- a/pkg/commands/entrypoint_test.go
+++ b/pkg/commands/entrypoint_test.go
@@ -19,31 +19,30 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/pkg/strslice"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 var entrypointTests = []struct {
 	prependShell bool
 	cmdLine      []string
-	expectedCmd  strslice.StrSlice
+	expectedCmd  []string
 }{
 	{
 		prependShell: true,
 		cmdLine:      []string{"echo", "cmd1"},
-		expectedCmd:  strslice.StrSlice{"/bin/sh", "-c", "echo cmd1"},
+		expectedCmd:  []string{"/bin/sh", "-c", "echo cmd1"},
 	},
 	{
 		prependShell: false,
 		cmdLine:      []string{"echo", "cmd2"},
-		expectedCmd:  strslice.StrSlice{"echo", "cmd2"},
+		expectedCmd:  []string{"echo", "cmd2"},
 	},
 }
 
 func TestEntrypointExecuteCmd(t *testing.T) {
 
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Cmd: nil,
 	}
 
diff --git a/pkg/commands/env.go b/pkg/commands/env.go
index acb379e23f..4e576a3f89 100644
--- a/pkg/commands/env.go
+++ b/pkg/commands/env.go
@@ -20,8 +20,8 @@ import (
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -29,7 +29,7 @@ type EnvCommand struct {
 	cmd *instructions.EnvCommand
 }
 
-func (e *EnvCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (e *EnvCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: ENV")
 	newEnvs := e.cmd.Env
 	for index, pair := range newEnvs {
@@ -49,7 +49,7 @@ func (e *EnvCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 	return updateConfigEnv(newEnvs, config)
 }
 
-func updateConfigEnv(newEnvs []instructions.KeyValuePair, config *manifest.Schema2Config) error {
+func updateConfigEnv(newEnvs []instructions.KeyValuePair, config *v1.Config) error {
 	// First, convert config.Env array to []instruction.KeyValuePair
 	var kvps []instructions.KeyValuePair
 	for _, env := range config.Env {
diff --git a/pkg/commands/env_test.go b/pkg/commands/env_test.go
index 346d57e434..a321852eb1 100644
--- a/pkg/commands/env_test.go
+++ b/pkg/commands/env_test.go
@@ -19,12 +19,12 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 func TestUpdateEnvConfig(t *testing.T) {
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Env: []string{
 			"PATH=/path/to/dir",
 			"hey=hey",
@@ -55,7 +55,7 @@ func TestUpdateEnvConfig(t *testing.T) {
 	testutil.CheckErrorAndDeepEqual(t, false, nil, expectedEnvArray, cfg.Env)
 }
 func Test_EnvExecute(t *testing.T) {
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Env: []string{
 			"path=/usr/",
 			"home=/root",
diff --git a/pkg/commands/expose.go b/pkg/commands/expose.go
index 2dca6a5a55..b86995d75a 100644
--- a/pkg/commands/expose.go
+++ b/pkg/commands/expose.go
@@ -21,8 +21,8 @@ import (
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -30,12 +30,12 @@ type ExposeCommand struct {
 	cmd *instructions.ExposeCommand
 }
 
-func (r *ExposeCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (r *ExposeCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: EXPOSE")
 	// Grab the currently exposed ports
 	existingPorts := config.ExposedPorts
 	if existingPorts == nil {
-		existingPorts = make(map[manifest.Schema2Port]struct{})
+		existingPorts = make(map[string]struct{})
 	}
 	// Add any new ones in
 	for _, p := range r.cmd.Ports {
@@ -53,8 +53,7 @@ func (r *ExposeCommand) ExecuteCommand(config *manifest.Schema2Config) error {
 			return fmt.Errorf("Invalid protocol: %s", protocol)
 		}
 		logrus.Infof("Adding exposed port: %s", p)
-		var x struct{}
-		existingPorts[manifest.Schema2Port(p)] = x
+		existingPorts[p] = struct{}{}
 	}
 	config.ExposedPorts = existingPorts
 	return nil
diff --git a/pkg/commands/expose_test.go b/pkg/commands/expose_test.go
index 8bf8184f9f..4da4c3cde8 100644
--- a/pkg/commands/expose_test.go
+++ b/pkg/commands/expose_test.go
@@ -20,13 +20,13 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 func TestUpdateExposedPorts(t *testing.T) {
-	cfg := &manifest.Schema2Config{
-		ExposedPorts: manifest.Schema2PortSet{
+	cfg := &v1.Config{
+		ExposedPorts: map[string]struct{}{
 			"8080/tcp": {},
 		},
 		Env: []string{
@@ -51,7 +51,7 @@ func TestUpdateExposedPorts(t *testing.T) {
 		},
 	}
 
-	expectedPorts := manifest.Schema2PortSet{
+	expectedPorts := map[string]struct{}{
 		"8080/tcp": {},
 		"8081/tcp": {},
 		"8082/tcp": {},
@@ -66,8 +66,8 @@ func TestUpdateExposedPorts(t *testing.T) {
 }
 
 func TestInvalidProtocol(t *testing.T) {
-	cfg := &manifest.Schema2Config{
-		ExposedPorts: manifest.Schema2PortSet{},
+	cfg := &v1.Config{
+		ExposedPorts: map[string]struct{}{},
 	}
 
 	ports := []string{
diff --git a/pkg/commands/label.go b/pkg/commands/label.go
index 60577403ab..7296d4d39c 100644
--- a/pkg/commands/label.go
+++ b/pkg/commands/label.go
@@ -20,8 +20,8 @@ import (
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -29,12 +29,12 @@ type LabelCommand struct {
 	cmd *instructions.LabelCommand
 }
 
-func (r *LabelCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (r *LabelCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: LABEL")
 	return updateLabels(r.cmd.Labels, config)
 }
 
-func updateLabels(labels []instructions.KeyValuePair, config *manifest.Schema2Config) error {
+func updateLabels(labels []instructions.KeyValuePair, config *v1.Config) error {
 	existingLabels := config.Labels
 	if existingLabels == nil {
 		existingLabels = make(map[string]string)
diff --git a/pkg/commands/label_test.go b/pkg/commands/label_test.go
index fd91cc5703..56a3b8069f 100644
--- a/pkg/commands/label_test.go
+++ b/pkg/commands/label_test.go
@@ -20,12 +20,12 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 func TestUpdateLabels(t *testing.T) {
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Labels: map[string]string{
 			"foo": "bar",
 		},
diff --git a/pkg/commands/onbuild.go b/pkg/commands/onbuild.go
index d0e1167dea..b490e1200c 100644
--- a/pkg/commands/onbuild.go
+++ b/pkg/commands/onbuild.go
@@ -18,8 +18,8 @@ package commands
 
 import (
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -28,7 +28,7 @@ type OnBuildCommand struct {
 }
 
 //ExecuteCommand adds the specified expression in Onbuild to the config
-func (o *OnBuildCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (o *OnBuildCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: ONBUILD")
 	logrus.Infof("args: %s", o.cmd.Expression)
 	resolvedExpression, err := util.ResolveEnvironmentReplacement(o.cmd.Expression, config.Env, false)
diff --git a/pkg/commands/onbuild_test.go b/pkg/commands/onbuild_test.go
index a67450960d..4164823bc8 100644
--- a/pkg/commands/onbuild_test.go
+++ b/pkg/commands/onbuild_test.go
@@ -20,8 +20,8 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 var onbuildTests = []struct {
@@ -50,7 +50,7 @@ var onbuildTests = []struct {
 
 func TestExecuteOnbuild(t *testing.T) {
 	for _, test := range onbuildTests {
-		cfg := &manifest.Schema2Config{
+		cfg := &v1.Config{
 			Env: []string{
 				"dir=/some/dir",
 			},
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index 699b23dfed..849f012d75 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -23,8 +23,8 @@ import (
 	"strings"
 	"syscall"
 
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -32,7 +32,7 @@ type RunCommand struct {
 	cmd *instructions.RunCommand
 }
 
-func (r *RunCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if r.cmd.PrependShell {
 		// This is the default shell on Linux
diff --git a/pkg/commands/user.go b/pkg/commands/user.go
index 5ca5687dc3..f33ab92de8 100644
--- a/pkg/commands/user.go
+++ b/pkg/commands/user.go
@@ -21,8 +21,8 @@ import (
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -30,7 +30,7 @@ type UserCommand struct {
 	cmd *instructions.UserCommand
 }
 
-func (r *UserCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (r *UserCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: USER")
 	u := r.cmd.User
 	userAndGroup := strings.Split(u, ":")
diff --git a/pkg/commands/user_test.go b/pkg/commands/user_test.go
index 27f19ba54d..308f705ad1 100644
--- a/pkg/commands/user_test.go
+++ b/pkg/commands/user_test.go
@@ -19,8 +19,8 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 var userTests = []struct {
@@ -82,7 +82,7 @@ var userTests = []struct {
 
 func TestUpdateUser(t *testing.T) {
 	for _, test := range userTests {
-		cfg := &manifest.Schema2Config{
+		cfg := &v1.Config{
 			Env: []string{
 				"envuser=root",
 				"envgroup=root",
diff --git a/pkg/commands/volume.go b/pkg/commands/volume.go
index 31fb476a92..ae3af55269 100644
--- a/pkg/commands/volume.go
+++ b/pkg/commands/volume.go
@@ -21,8 +21,8 @@ import (
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -31,7 +31,7 @@ type VolumeCommand struct {
 	snapshotFiles []string
 }
 
-func (v *VolumeCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (v *VolumeCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: VOLUME")
 	volumes := v.cmd.Volumes
 	resolvedVolumes, err := util.ResolveEnvironmentReplacementList(volumes, config.Env, true)
diff --git a/pkg/commands/volume_test.go b/pkg/commands/volume_test.go
index 07b6b1d75e..9eb8c5c5e9 100644
--- a/pkg/commands/volume_test.go
+++ b/pkg/commands/volume_test.go
@@ -19,12 +19,12 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 func TestUpdateVolume(t *testing.T) {
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		Env: []string{
 			"VOLUME=/etc",
 		},
diff --git a/pkg/commands/workdir.go b/pkg/commands/workdir.go
index 8972efecb7..13a4b102b7 100644
--- a/pkg/commands/workdir.go
+++ b/pkg/commands/workdir.go
@@ -21,8 +21,8 @@ import (
 	"path/filepath"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
 
@@ -31,7 +31,7 @@ type WorkdirCommand struct {
 	snapshotFiles []string
 }
 
-func (w *WorkdirCommand) ExecuteCommand(config *manifest.Schema2Config) error {
+func (w *WorkdirCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: workdir")
 	workdirPath := w.cmd.Path
 	resolvedWorkingDir, err := util.ResolveEnvironmentReplacement(workdirPath, config.Env, true)
diff --git a/pkg/commands/workdir_test.go b/pkg/commands/workdir_test.go
index 67187c2aed..426cf47184 100644
--- a/pkg/commands/workdir_test.go
+++ b/pkg/commands/workdir_test.go
@@ -19,8 +19,8 @@ import (
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
 )
 
 // Each test here changes the same WorkingDir field in the config
@@ -63,7 +63,7 @@ var workdirTests = []struct {
 
 func TestWorkdirCommand(t *testing.T) {
 
-	cfg := &manifest.Schema2Config{
+	cfg := &v1.Config{
 		WorkingDir: "/",
 		Env: []string{
 			"path=usr/",
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index ab9eacd53f..d3b2039b13 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -17,17 +17,29 @@ limitations under the License.
 package executor
 
 import (
+	"bytes"
 	"fmt"
+	"io"
 	"io/ioutil"
+	"net/http"
 	"os"
 
+	"github.com/google/go-containerregistry/v1/empty"
+
+	"github.com/google/go-containerregistry/v1/tarball"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/mutate"
+	"github.com/google/go-containerregistry/v1/remote"
+
 	"github.com/GoogleContainerTools/kaniko/pkg/commands"
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/image"
 	"github.com/GoogleContainerTools/kaniko/pkg/snapshot"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/containers/image/manifest"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
 )
@@ -46,8 +58,28 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 	baseImage := stages[0].BaseName
 
 	// Unpack file system to root
+	var sourceImage v1.Image
+	var ref name.Reference
 	logrus.Infof("Unpacking filesystem of %s...", baseImage)
-	if err := util.ExtractFileSystemFromImage(baseImage); err != nil {
+	if baseImage == constants.NoBaseImage {
+		logrus.Info("No base image, nothing to extract")
+		sourceImage = empty.Image
+	} else {
+		// Initialize source image
+		ref, err = name.ParseReference(baseImage, name.WeakValidation)
+		if err != nil {
+			return err
+		}
+		auth, err := authn.DefaultKeychain.Resolve(ref.Context().Registry)
+		if err != nil {
+			return err
+		}
+		sourceImage, err = remote.Image(ref, auth, http.DefaultTransport)
+		if err != nil {
+			return err
+		}
+	}
+	if err := util.GetFSFromImage(sourceImage); err != nil {
 		return err
 	}
 
@@ -63,21 +95,22 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 		return err
 	}
 
-	// Initialize source image
-	sourceImage, err := image.NewSourceImage(baseImage)
+	destRef, err := name.ParseReference(destination, name.WeakValidation)
 	if err != nil {
 		return err
 	}
-
 	// Set environment variables within the image
 	if err := image.SetEnvVariables(sourceImage); err != nil {
 		return err
 	}
 
-	imageConfig := sourceImage.Config()
+	imageConfig, err := sourceImage.ConfigFile()
+	if err != nil {
+		return err
+	}
 	// Currently only supports single stage builds
 	for _, stage := range stages {
-		if err := resolveOnBuild(&stage, imageConfig); err != nil {
+		if err := resolveOnBuild(&stage, &imageConfig.Config); err != nil {
 			return err
 		}
 		for _, cmd := range stage.Commands {
@@ -88,7 +121,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 			if dockerCommand == nil {
 				continue
 			}
-			if err := dockerCommand.ExecuteCommand(imageConfig); err != nil {
+			if err := dockerCommand.ExecuteCommand(&imageConfig.Config); err != nil {
 				return err
 			}
 			// Now, we get the files to snapshot from this command and take the snapshot
@@ -100,11 +133,25 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 			util.MoveVolumeWhitelistToWhitelist()
 			if contents == nil {
 				logrus.Info("No files were changed, appending empty layer to config.")
-				sourceImage.AppendConfigHistory(constants.Author, true)
 				continue
 			}
 			// Append the layer to the image
-			if err := sourceImage.AppendLayer(contents, constants.Author); err != nil {
+			opener := func() (io.ReadCloser, error) {
+				return ioutil.NopCloser(bytes.NewReader(contents)), nil
+			}
+			layer, err := tarball.LayerFromOpener(opener)
+			if err != nil {
+				return err
+			}
+			sourceImage, err = mutate.Append(sourceImage,
+				mutate.Addendum{
+					Layer: layer,
+					History: v1.History{
+						Author: constants.Author,
+					},
+				},
+			)
+			if err != nil {
 				return err
 			}
 		}
@@ -113,7 +160,21 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 	if err := setDefaultEnv(); err != nil {
 		return err
 	}
-	return image.PushImage(sourceImage, destination, dockerInsecureSkipTLSVerify)
+
+	wo := remote.WriteOptions{}
+	if ref != nil {
+		wo.MountPaths = []name.Repository{ref.Context()}
+	}
+	pushAuth, err := authn.DefaultKeychain.Resolve(destRef.Context().Registry)
+	if err != nil {
+		return err
+	}
+	sourceImage, err = mutate.Config(sourceImage, imageConfig.Config)
+	if err != nil {
+		return err
+	}
+
+	return remote.Write(destRef, sourceImage, pushAuth, http.DefaultTransport, wo)
 }
 
 func getHasher(snapshotMode string) (func(string) (string, error), error) {
@@ -127,7 +188,7 @@ func getHasher(snapshotMode string) (func(string) (string, error), error) {
 	return nil, fmt.Errorf("%s is not a valid snapshot mode", snapshotMode)
 }
 
-func resolveOnBuild(stage *instructions.Stage, config *manifest.Schema2Config) error {
+func resolveOnBuild(stage *instructions.Stage, config *v1.Config) error {
 	if config.OnBuild == nil {
 		return nil
 	}
diff --git a/pkg/image/image.go b/pkg/image/image.go
index 6309f30970..989decce26 100644
--- a/pkg/image/image.go
+++ b/pkg/image/image.go
@@ -17,80 +17,27 @@ limitations under the License.
 package image
 
 import (
-	"fmt"
 	"os"
+	"strings"
 
-	"github.com/GoogleContainerTools/kaniko/pkg/version"
-	"github.com/containers/image/types"
+	"github.com/google/go-containerregistry/v1"
 
-	img "github.com/GoogleContainerTools/container-diff/pkg/image"
-	"github.com/GoogleContainerTools/kaniko/pkg/constants"
-	"github.com/containers/image/copy"
-	"github.com/containers/image/docker"
-	"github.com/containers/image/signature"
-	"github.com/containers/image/transports/alltransports"
 	"github.com/sirupsen/logrus"
 )
 
-// sourceImage is the image that will be modified by the executor
-
-// NewSourceImage initializes the source image with the base image
-func NewSourceImage(srcImg string) (*img.MutableSource, error) {
-	if srcImg == constants.NoBaseImage {
-		return img.NewMutableSource(nil)
-	}
-	logrus.Infof("Initializing source image %s", srcImg)
-	ref, err := docker.ParseReference("//" + srcImg)
-	if err != nil {
-		return nil, err
-	}
-	return img.NewMutableSource(ref)
-}
-
-// PushImage pushes the final image
-func PushImage(ms *img.MutableSource, destImg string, dockerInsecureSkipTLSVerify bool) error {
-	srcRef := &img.ProxyReference{
-		ImageReference: nil,
-		Src:            ms,
-	}
-	destRef, err := alltransports.ParseImageName("docker://" + destImg)
-	if err != nil {
-		return err
-	}
-	policyContext, err := getPolicyContext()
+// SetEnvVariables sets environment variables as specified in the image
+func SetEnvVariables(img v1.Image) error {
+	cfg, err := img.ConfigFile()
 	if err != nil {
 		return err
 	}
-	logrus.Infof("Pushing image to %s", destImg)
-
-	opts := &copy.Options{
-		DestinationCtx: &types.SystemContext{
-			DockerRegistryUserAgent:     fmt.Sprintf("kaniko/executor-%s", version.Version()),
-			DockerInsecureSkipTLSVerify: dockerInsecureSkipTLSVerify,
-		},
-	}
-	return copy.Image(policyContext, destRef, srcRef, opts)
-}
-
-// SetEnvVariables sets environment variables as specified in the image
-func SetEnvVariables(ms *img.MutableSource) error {
-	envVars := ms.Env()
-	for key, val := range envVars {
-		if err := os.Setenv(key, val); err != nil {
+	envVars := cfg.Config.Env
+	for _, envVar := range envVars {
+		split := strings.SplitN(envVar, "=", 2)
+		if err := os.Setenv(split[0], split[1]); err != nil {
 			return err
 		}
-		logrus.Debugf("Setting environment variable %s=%s", key, val)
+		logrus.Infof("Setting environment variable %s", envVar)
 	}
 	return nil
 }
-
-func getPolicyContext() (*signature.PolicyContext, error) {
-	policyContext, err := signature.NewPolicyContext(&signature.Policy{
-		Default: signature.PolicyRequirements{signature.NewPRInsecureAcceptAnything()},
-	})
-	if err != nil {
-		logrus.Debugf("Error retrieving policy context: %s", err)
-		return nil, err
-	}
-	return policyContext, nil
-}
diff --git a/pkg/snapshot/snapshot.go b/pkg/snapshot/snapshot.go
index 70cfcd117c..9da540f237 100644
--- a/pkg/snapshot/snapshot.go
+++ b/pkg/snapshot/snapshot.go
@@ -150,6 +150,7 @@ func (s *Snapshotter) snapShotFS(f io.Writer) (bool, error) {
 			return false, err
 		}
 		if maybeAdd {
+			logrus.Debugf("Adding %s to layer, because it was changed.", path)
 			filesAdded = true
 			if err := util.AddToTar(path, info, s.hardlinks, w); err != nil {
 				return false, err
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index f5c96b80b1..d639740dfe 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -17,6 +17,7 @@ limitations under the License.
 package util
 
 import (
+	"archive/tar"
 	"bufio"
 	"io"
 	"net/http"
@@ -25,38 +26,163 @@ import (
 	"strings"
 	"time"
 
-	pkgutil "github.com/GoogleContainerTools/container-diff/pkg/util"
+	"github.com/google/go-containerregistry/v1"
+
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
-	"github.com/containers/image/docker"
 	"github.com/sirupsen/logrus"
 )
 
-var whitelist = []string{"/kaniko"}
+var whitelist = []string{
+	"/kaniko",
+	// /var/run is a special case. It's common to mount in /var/run/docker.sock or something similar
+	// which leads to a special mount on the /var/run/docker.sock file itself, but the directory to exist
+	// in the image with no way to tell if it came from the base image or not.
+	"/var/run",
+}
 var volumeWhitelist = []string{}
 
-// ExtractFileSystemFromImage pulls an image and unpacks it to a file system at root
-func ExtractFileSystemFromImage(img string) error {
+func GetFSFromImage(img v1.Image) error {
 	whitelist, err := fileSystemWhitelist(constants.WhitelistPath)
 	if err != nil {
 		return err
 	}
-	logrus.Infof("Whitelisted directories are %s", whitelist)
-	if img == constants.NoBaseImage {
-		logrus.Info("No base image, nothing to extract")
-		return nil
-	}
-	ref, err := docker.ParseReference("//" + img)
+	logrus.Infof("Mounted directories: %v", whitelist)
+	layers, err := img.Layers()
 	if err != nil {
 		return err
 	}
-	imgSrc, err := ref.NewImageSource(nil)
-	if err != nil {
-		return err
+
+	fs := map[string]struct{}{}
+	whiteouts := map[string]struct{}{}
+
+	for i := len(layers) - 1; i >= 0; i-- {
+		logrus.Infof("Unpacking layer: %d", i)
+		l := layers[i]
+		r, err := l.Uncompressed()
+		if err != nil {
+			return err
+		}
+		tr := tar.NewReader(r)
+		for {
+			hdr, err := tr.Next()
+			if err == io.EOF {
+				break
+			}
+			if err != nil {
+				return err
+			}
+			path := filepath.Join("/", filepath.Clean(hdr.Name))
+			base := filepath.Base(path)
+			dir := filepath.Dir(path)
+			if strings.HasPrefix(base, ".wh.") {
+				logrus.Infof("Whiting out %s", path)
+				name := strings.TrimPrefix(base, ".wh.")
+				whiteouts[filepath.Join(dir, name)] = struct{}{}
+				continue
+			}
+
+			if checkWhiteouts(path, whiteouts) {
+				logrus.Infof("Not adding %s because it is whited out", path)
+				continue
+			}
+			if _, ok := fs[path]; ok {
+				logrus.Infof("Not adding %s because it was added by a prior layer", path)
+				continue
+			}
+
+			if checkWhitelist(path, whitelist) {
+				logrus.Infof("Not adding %s because it is whitelisted", path)
+				continue
+			}
+			fs[path] = struct{}{}
+
+			if err := extractFile("/", hdr, tr); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+func unTar(r io.Reader, dest string) error {
+	tr := tar.NewReader(r)
+	for {
+		hdr, err := tr.Next()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := extractFile(dest, hdr, tr); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func extractFile(dest string, hdr *tar.Header, tr io.Reader) error {
+	path := filepath.Join(dest, filepath.Clean(hdr.Name))
+	base := filepath.Base(path)
+	dir := filepath.Dir(path)
+	mode := hdr.FileInfo().Mode()
+	switch hdr.Typeflag {
+	case tar.TypeReg:
+		logrus.Debugf("creating file %s", path)
+		// It's possible a file is in the tar before it's directory.
+		if _, err := os.Stat(dir); os.IsNotExist(err) {
+			logrus.Debugf("base %s for file %s does not exist. Creating.", base, path)
+			if err := os.MkdirAll(dir, 0755); err != nil {
+				return err
+			}
+		}
+		currFile, err := os.Create(path)
+		if err != nil {
+			return err
+		}
+		// manually set permissions on file, since the default umask (022) will interfere
+		if err = os.Chmod(path, mode); err != nil {
+			return err
+		}
+		if _, err = io.Copy(currFile, tr); err != nil {
+			return err
+		}
+		currFile.Close()
+
+	case tar.TypeDir:
+		logrus.Debugf("creating dir %s", path)
+		if err := os.MkdirAll(path, mode); err != nil {
+			return err
+		}
+		// In some cases, MkdirAll doesn't change the permissions, so run Chmod
+		if err := os.Chmod(path, mode); err != nil {
+			return err
+		}
+
+	case tar.TypeLink:
+		logrus.Debugf("link from %s to %s", hdr.Linkname, path)
+		// The base directory for a link may not exist before it is created.
+		dir := filepath.Dir(path)
+		if err := os.MkdirAll(dir, 0755); err != nil {
+			return err
+		}
+		if err := os.Symlink(filepath.Clean(filepath.Join("/", hdr.Linkname)), path); err != nil {
+			return err
+		}
+	case tar.TypeSymlink:
+		logrus.Debugf("symlink from %s to %s", hdr.Linkname, path)
+		// The base directory for a symlink may not exist before it is created.
+		dir := filepath.Dir(path)
+		if err := os.MkdirAll(dir, 0755); err != nil {
+			return err
+		}
+		if err := os.Symlink(hdr.Linkname, path); err != nil {
+			return err
+		}
 	}
-	return pkgutil.GetFileSystemFromReference(ref, imgSrc, constants.RootDir, whitelist)
+	return nil
 }
 
-// PathInWhitelist returns true if the path is whitelisted
 func PathInWhitelist(path, directory string) bool {
 	for _, c := range constants.KanikoBuildFiles {
 		if path == c {
@@ -65,7 +191,30 @@ func PathInWhitelist(path, directory string) bool {
 	}
 	for _, d := range whitelist {
 		dirPath := filepath.Join(directory, d)
-		if pkgutil.HasFilepathPrefix(path, dirPath) {
+		if HasFilepathPrefix(path, dirPath) {
+			return true
+		}
+	}
+	return false
+}
+
+func checkWhiteouts(path string, whiteouts map[string]struct{}) bool {
+	// Don't add the file if it or it's directory are whited out.
+	if _, ok := whiteouts[path]; ok {
+		return true
+	}
+	for wd := range whiteouts {
+		if HasFilepathPrefix(path, wd) {
+			logrus.Infof("Not adding %s because it's directory is whited out", path)
+			return true
+		}
+	}
+	return false
+}
+
+func checkWhitelist(path string, whitelist []string) bool {
+	for _, wl := range whitelist {
+		if HasFilepathPrefix(path, wl) {
 			return true
 		}
 	}
@@ -268,3 +417,22 @@ func CopyFile(src, dest string) error {
 	defer srcFile.Close()
 	return CreateFile(dest, srcFile, fi.Mode())
 }
+
+// HasFilepathPrefix checks if the given file path begins with prefix
+func HasFilepathPrefix(path, prefix string) bool {
+	path = filepath.Clean(path)
+	prefix = filepath.Clean(prefix)
+	pathArray := strings.Split(path, "/")
+	prefixArray := strings.Split(prefix, "/")
+
+	if len(pathArray) < len(prefixArray) {
+		return false
+	}
+	for index := range prefixArray {
+		if prefixArray[index] == pathArray[index] {
+			continue
+		}
+		return false
+	}
+	return true
+}
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 36583564c1..0334d8c56c 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -17,9 +17,12 @@ limitations under the License.
 package util
 
 import (
+	"archive/tar"
+	"bytes"
 	"io/ioutil"
 	"os"
 	"path/filepath"
+	"reflect"
 	"sort"
 	"testing"
 
@@ -47,7 +50,7 @@ func Test_fileSystemWhitelist(t *testing.T) {
 	}
 
 	actualWhitelist, err := fileSystemWhitelist(path)
-	expectedWhitelist := []string{"/kaniko", "/proc", "/dev", "/dev/pts", "/sys"}
+	expectedWhitelist := []string{"/kaniko", "/proc", "/dev", "/dev/pts", "/sys", "/var/run"}
 	sort.Strings(actualWhitelist)
 	sort.Strings(expectedWhitelist)
 	testutil.CheckErrorAndDeepEqual(t, false, err, expectedWhitelist, actualWhitelist)
@@ -131,3 +134,358 @@ func Test_RelativeFiles(t *testing.T) {
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedFiles, actualFiles)
 	}
 }
+
+func Test_checkWhiteouts(t *testing.T) {
+	type args struct {
+		path      string
+		whiteouts map[string]struct{}
+	}
+	tests := []struct {
+		name string
+		args args
+		want bool
+	}{
+		{
+			name: "file whited out",
+			args: args{
+				path:      "/foo",
+				whiteouts: map[string]struct{}{"/foo": {}},
+			},
+			want: true,
+		},
+		{
+			name: "directory whited out",
+			args: args{
+				path:      "/foo/bar",
+				whiteouts: map[string]struct{}{"/foo": {}},
+			},
+			want: true,
+		},
+		{
+			name: "grandparent whited out",
+			args: args{
+				path:      "/foo/bar/baz",
+				whiteouts: map[string]struct{}{"/foo": {}},
+			},
+			want: true,
+		},
+		{
+			name: "sibling whited out",
+			args: args{
+				path:      "/foo/bar/baz",
+				whiteouts: map[string]struct{}{"/foo/bat": {}},
+			},
+			want: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if got := checkWhiteouts(tt.args.path, tt.args.whiteouts); got != tt.want {
+				t.Errorf("checkWhiteouts() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
+
+func Test_checkWhitelist(t *testing.T) {
+	type args struct {
+		path      string
+		whitelist []string
+	}
+	tests := []struct {
+		name string
+		args args
+		want bool
+	}{
+		{
+			name: "file whitelisted",
+			args: args{
+				path:      "/foo",
+				whitelist: []string{"/foo"},
+			},
+			want: true,
+		},
+		{
+			name: "directory whitelisted",
+			args: args{
+				path:      "/foo/bar",
+				whitelist: []string{"/foo"},
+			},
+			want: true,
+		},
+		{
+			name: "grandparent whitelisted",
+			args: args{
+				path:      "/foo/bar/baz",
+				whitelist: []string{"/foo"},
+			},
+			want: true,
+		},
+		{
+			name: "sibling whitelisted",
+			args: args{
+				path:      "/foo/bar/baz",
+				whitelist: []string{"/foo/bat"},
+			},
+			want: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if got := checkWhitelist(tt.args.path, tt.args.whitelist); got != tt.want {
+				t.Errorf("checkWhitelist() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
+
+func TestHasFilepathPrefix(t *testing.T) {
+	type args struct {
+		path   string
+		prefix string
+	}
+	tests := []struct {
+		name string
+		args args
+		want bool
+	}{
+		{
+			name: "parent",
+			args: args{
+				path:   "/foo/bar",
+				prefix: "/foo",
+			},
+			want: true,
+		},
+		{
+			name: "nested parent",
+			args: args{
+				path:   "/foo/bar/baz",
+				prefix: "/foo/bar",
+			},
+			want: true,
+		},
+		{
+			name: "sibling",
+			args: args{
+				path:   "/foo/bar",
+				prefix: "/bar",
+			},
+			want: false,
+		},
+		{
+			name: "nested sibling",
+			args: args{
+				path:   "/foo/bar/baz",
+				prefix: "/foo/bar",
+			},
+			want: true,
+		},
+		{
+			name: "name prefix",
+			args: args{
+				path:   "/foo2/bar",
+				prefix: "/foo",
+			},
+			want: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if got := HasFilepathPrefix(tt.args.path, tt.args.prefix); got != tt.want {
+				t.Errorf("HasFilepathPrefix() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
+
+type checker func(root string, t *testing.T)
+
+func fileExists(p string) checker {
+	return func(root string, t *testing.T) {
+		_, err := os.Stat(filepath.Join(root, p))
+		if err != nil {
+			t.Fatalf("File does not exist")
+		}
+	}
+}
+
+func fileMatches(p string, c []byte) checker {
+	return func(root string, t *testing.T) {
+		actual, err := ioutil.ReadFile(filepath.Join(root, p))
+		if err != nil {
+			t.Fatalf("error reading file: %s", p)
+		}
+		if !reflect.DeepEqual(actual, c) {
+			t.Errorf("file contents do not match. %v!=%v", actual, c)
+		}
+	}
+}
+
+func permissionsMatch(p string, perms os.FileMode) checker {
+	return func(root string, t *testing.T) {
+		fi, err := os.Stat(filepath.Join(root, p))
+		if err != nil {
+			t.Fatalf("error statting file %s", p)
+		}
+		if fi.Mode() != perms {
+			t.Errorf("Permissions do not match. %s != %s", fi.Mode(), perms)
+		}
+	}
+}
+
+func linkPointsTo(src, dst string) checker {
+	return func(root string, t *testing.T) {
+		link := filepath.Join(root, src)
+		got, err := os.Readlink(link)
+		if err != nil {
+			t.Fatalf("error reading link %s: %s", link, err)
+		}
+		if got != dst {
+			t.Errorf("link destination does not match: %s != %s", got, dst)
+		}
+	}
+}
+
+func fileHeader(name string, contents string, mode int64) *tar.Header {
+	return &tar.Header{
+		Name:     name,
+		Size:     int64(len(contents)),
+		Mode:     mode,
+		Typeflag: tar.TypeReg,
+	}
+}
+
+func linkHeader(name, linkname string) *tar.Header {
+	return &tar.Header{
+		Name:     name,
+		Size:     0,
+		Typeflag: tar.TypeSymlink,
+		Linkname: linkname,
+	}
+}
+
+func hardlinkHeader(name, linkname string) *tar.Header {
+	return &tar.Header{
+		Name:     name,
+		Size:     0,
+		Typeflag: tar.TypeLink,
+		Linkname: linkname,
+	}
+}
+
+func dirHeader(name string, mode int64) *tar.Header {
+	return &tar.Header{
+		Name:     name,
+		Size:     0,
+		Typeflag: tar.TypeDir,
+		Mode:     mode,
+	}
+}
+
+func TestExtractFile(t *testing.T) {
+	type tc struct {
+		name     string
+		hdrs     []*tar.Header
+		contents []byte
+		checkers []checker
+	}
+
+	tcs := []tc{
+		{
+			name:     "normal file",
+			contents: []byte("helloworld"),
+			hdrs:     []*tar.Header{fileHeader("./bar", "helloworld", 0644)},
+			checkers: []checker{
+				fileExists("/bar"),
+				fileMatches("/bar", []byte("helloworld")),
+				permissionsMatch("/bar", 0644),
+			},
+		},
+		{
+			name:     "normal file, directory does not exist",
+			contents: []byte("helloworld"),
+			hdrs:     []*tar.Header{fileHeader("./foo/bar", "helloworld", 0644)},
+			checkers: []checker{
+				fileExists("/foo/bar"),
+				fileMatches("/foo/bar", []byte("helloworld")),
+				permissionsMatch("/foo/bar", 0644),
+				permissionsMatch("/foo", 0755|os.ModeDir),
+			},
+		},
+		{
+			name:     "normal file, directory is created after",
+			contents: []byte("helloworld"),
+			hdrs: []*tar.Header{
+				fileHeader("./foo/bar", "helloworld", 0644),
+				dirHeader("./foo", 0722),
+			},
+			checkers: []checker{
+				fileExists("/foo/bar"),
+				fileMatches("/foo/bar", []byte("helloworld")),
+				permissionsMatch("/foo/bar", 0644),
+				permissionsMatch("/foo", 0722|os.ModeDir),
+			},
+		},
+		{
+			name: "symlink",
+			hdrs: []*tar.Header{linkHeader("./bar", "bar/bat")},
+			checkers: []checker{
+				linkPointsTo("/bar", "bar/bat"),
+			},
+		},
+		{
+			name: "symlink relative path",
+			hdrs: []*tar.Header{linkHeader("./bar", "./foo/bar/baz")},
+			checkers: []checker{
+				linkPointsTo("/bar", "./foo/bar/baz"),
+			},
+		},
+		{
+			name: "symlink parent does not exist",
+			hdrs: []*tar.Header{linkHeader("./foo/bar/baz", "../../bat")},
+			checkers: []checker{
+				linkPointsTo("/foo/bar/baz", "../../bat"),
+			},
+		},
+		{
+			name: "symlink parent does not exist",
+			hdrs: []*tar.Header{linkHeader("./foo/bar/baz", "../../bat")},
+			checkers: []checker{
+				linkPointsTo("/foo/bar/baz", "../../bat"),
+				permissionsMatch("/foo", 0755|os.ModeDir),
+				permissionsMatch("/foo/bar", 0755|os.ModeDir),
+			},
+		},
+		{
+			name: "hardlink",
+			hdrs: []*tar.Header{
+				fileHeader("/bin/gzip", "gzip-binary", 0751),
+				hardlinkHeader("/bin/uncompress", "/bin/gzip"),
+			},
+			checkers: []checker{
+				linkPointsTo("/bin/uncompress", "/bin/gzip"),
+			},
+		},
+	}
+
+	for _, tc := range tcs {
+		t.Run(tc.name, func(t *testing.T) {
+			tc := tc
+			t.Parallel()
+			r, err := ioutil.TempDir("", "")
+			if err != nil {
+				t.Fatal(err)
+			}
+			defer os.RemoveAll(r)
+			for _, hdr := range tc.hdrs {
+				if err := extractFile(r, hdr, bytes.NewReader(tc.contents)); err != nil {
+					t.Fatal(err)
+				}
+			}
+			for _, checker := range tc.checkers {
+				checker(r, t)
+			}
+		})
+	}
+}
diff --git a/pkg/util/tar_util.go b/pkg/util/tar_util.go
index c752c98c75..baf15a60c8 100644
--- a/pkg/util/tar_util.go
+++ b/pkg/util/tar_util.go
@@ -26,7 +26,6 @@ import (
 	"path/filepath"
 	"syscall"
 
-	pkgutil "github.com/GoogleContainerTools/container-diff/pkg/util"
 	"github.com/docker/docker/pkg/archive"
 	"github.com/pkg/errors"
 	"github.com/sirupsen/logrus"
@@ -122,7 +121,7 @@ func UnpackLocalTarArchive(path, dest string) error {
 			return UnpackCompressedTar(path, dest)
 		} else if compressionLevel == archive.Bzip2 {
 			bzr := bzip2.NewReader(file)
-			return pkgutil.UnTar(bzr, dest, nil)
+			return unTar(bzr, dest)
 		}
 	}
 	if fileIsUncompressedTar(path) {
@@ -131,7 +130,7 @@ func UnpackLocalTarArchive(path, dest string) error {
 			return err
 		}
 		defer file.Close()
-		return pkgutil.UnTar(file, dest, nil)
+		return unTar(file, dest)
 	}
 	return errors.New("path does not lead to local tar archive")
 }
@@ -195,5 +194,5 @@ func UnpackCompressedTar(path, dir string) error {
 		return err
 	}
 	defer gzr.Close()
-	return pkgutil.UnTar(gzr, dir, nil)
+	return unTar(gzr, dir)
 }
diff --git a/vendor/github.com/BurntSushi/toml/COPYING b/vendor/github.com/BurntSushi/toml/COPYING
deleted file mode 100644
index 5a8e332545..0000000000
--- a/vendor/github.com/BurntSushi/toml/COPYING
+++ /dev/null
@@ -1,14 +0,0 @@
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-                    Version 2, December 2004
-
- Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
-
- Everyone is permitted to copy and distribute verbatim or modified
- copies of this license document, and changing it is allowed as long
- as the name is changed.
-
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. You just DO WHAT THE FUCK YOU WANT TO.
-
diff --git a/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING b/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
deleted file mode 100644
index 5a8e332545..0000000000
--- a/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
+++ /dev/null
@@ -1,14 +0,0 @@
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-                    Version 2, December 2004
-
- Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
-
- Everyone is permitted to copy and distribute verbatim or modified
- copies of this license document, and changing it is allowed as long
- as the name is changed.
-
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. You just DO WHAT THE FUCK YOU WANT TO.
-
diff --git a/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING b/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
deleted file mode 100644
index 5a8e332545..0000000000
--- a/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
+++ /dev/null
@@ -1,14 +0,0 @@
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-                    Version 2, December 2004
-
- Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
-
- Everyone is permitted to copy and distribute verbatim or modified
- copies of this license document, and changing it is allowed as long
- as the name is changed.
-
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. You just DO WHAT THE FUCK YOU WANT TO.
-
diff --git a/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING b/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
deleted file mode 100644
index 5a8e332545..0000000000
--- a/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
+++ /dev/null
@@ -1,14 +0,0 @@
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-                    Version 2, December 2004
-
- Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
-
- Everyone is permitted to copy and distribute verbatim or modified
- copies of this license document, and changing it is allowed as long
- as the name is changed.
-
-            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. You just DO WHAT THE FUCK YOU WANT TO.
-
diff --git a/vendor/github.com/BurntSushi/toml/decode.go b/vendor/github.com/BurntSushi/toml/decode.go
deleted file mode 100644
index b0fd51d5b6..0000000000
--- a/vendor/github.com/BurntSushi/toml/decode.go
+++ /dev/null
@@ -1,509 +0,0 @@
-package toml
-
-import (
-	"fmt"
-	"io"
-	"io/ioutil"
-	"math"
-	"reflect"
-	"strings"
-	"time"
-)
-
-func e(format string, args ...interface{}) error {
-	return fmt.Errorf("toml: "+format, args...)
-}
-
-// Unmarshaler is the interface implemented by objects that can unmarshal a
-// TOML description of themselves.
-type Unmarshaler interface {
-	UnmarshalTOML(interface{}) error
-}
-
-// Unmarshal decodes the contents of `p` in TOML format into a pointer `v`.
-func Unmarshal(p []byte, v interface{}) error {
-	_, err := Decode(string(p), v)
-	return err
-}
-
-// Primitive is a TOML value that hasn't been decoded into a Go value.
-// When using the various `Decode*` functions, the type `Primitive` may
-// be given to any value, and its decoding will be delayed.
-//
-// A `Primitive` value can be decoded using the `PrimitiveDecode` function.
-//
-// The underlying representation of a `Primitive` value is subject to change.
-// Do not rely on it.
-//
-// N.B. Primitive values are still parsed, so using them will only avoid
-// the overhead of reflection. They can be useful when you don't know the
-// exact type of TOML data until run time.
-type Primitive struct {
-	undecoded interface{}
-	context   Key
-}
-
-// DEPRECATED!
-//
-// Use MetaData.PrimitiveDecode instead.
-func PrimitiveDecode(primValue Primitive, v interface{}) error {
-	md := MetaData{decoded: make(map[string]bool)}
-	return md.unify(primValue.undecoded, rvalue(v))
-}
-
-// PrimitiveDecode is just like the other `Decode*` functions, except it
-// decodes a TOML value that has already been parsed. Valid primitive values
-// can *only* be obtained from values filled by the decoder functions,
-// including this method. (i.e., `v` may contain more `Primitive`
-// values.)
-//
-// Meta data for primitive values is included in the meta data returned by
-// the `Decode*` functions with one exception: keys returned by the Undecoded
-// method will only reflect keys that were decoded. Namely, any keys hidden
-// behind a Primitive will be considered undecoded. Executing this method will
-// update the undecoded keys in the meta data. (See the example.)
-func (md *MetaData) PrimitiveDecode(primValue Primitive, v interface{}) error {
-	md.context = primValue.context
-	defer func() { md.context = nil }()
-	return md.unify(primValue.undecoded, rvalue(v))
-}
-
-// Decode will decode the contents of `data` in TOML format into a pointer
-// `v`.
-//
-// TOML hashes correspond to Go structs or maps. (Dealer's choice. They can be
-// used interchangeably.)
-//
-// TOML arrays of tables correspond to either a slice of structs or a slice
-// of maps.
-//
-// TOML datetimes correspond to Go `time.Time` values.
-//
-// All other TOML types (float, string, int, bool and array) correspond
-// to the obvious Go types.
-//
-// An exception to the above rules is if a type implements the
-// encoding.TextUnmarshaler interface. In this case, any primitive TOML value
-// (floats, strings, integers, booleans and datetimes) will be converted to
-// a byte string and given to the value's UnmarshalText method. See the
-// Unmarshaler example for a demonstration with time duration strings.
-//
-// Key mapping
-//
-// TOML keys can map to either keys in a Go map or field names in a Go
-// struct. The special `toml` struct tag may be used to map TOML keys to
-// struct fields that don't match the key name exactly. (See the example.)
-// A case insensitive match to struct names will be tried if an exact match
-// can't be found.
-//
-// The mapping between TOML values and Go values is loose. That is, there
-// may exist TOML values that cannot be placed into your representation, and
-// there may be parts of your representation that do not correspond to
-// TOML values. This loose mapping can be made stricter by using the IsDefined
-// and/or Undecoded methods on the MetaData returned.
-//
-// This decoder will not handle cyclic types. If a cyclic type is passed,
-// `Decode` will not terminate.
-func Decode(data string, v interface{}) (MetaData, error) {
-	rv := reflect.ValueOf(v)
-	if rv.Kind() != reflect.Ptr {
-		return MetaData{}, e("Decode of non-pointer %s", reflect.TypeOf(v))
-	}
-	if rv.IsNil() {
-		return MetaData{}, e("Decode of nil %s", reflect.TypeOf(v))
-	}
-	p, err := parse(data)
-	if err != nil {
-		return MetaData{}, err
-	}
-	md := MetaData{
-		p.mapping, p.types, p.ordered,
-		make(map[string]bool, len(p.ordered)), nil,
-	}
-	return md, md.unify(p.mapping, indirect(rv))
-}
-
-// DecodeFile is just like Decode, except it will automatically read the
-// contents of the file at `fpath` and decode it for you.
-func DecodeFile(fpath string, v interface{}) (MetaData, error) {
-	bs, err := ioutil.ReadFile(fpath)
-	if err != nil {
-		return MetaData{}, err
-	}
-	return Decode(string(bs), v)
-}
-
-// DecodeReader is just like Decode, except it will consume all bytes
-// from the reader and decode it for you.
-func DecodeReader(r io.Reader, v interface{}) (MetaData, error) {
-	bs, err := ioutil.ReadAll(r)
-	if err != nil {
-		return MetaData{}, err
-	}
-	return Decode(string(bs), v)
-}
-
-// unify performs a sort of type unification based on the structure of `rv`,
-// which is the client representation.
-//
-// Any type mismatch produces an error. Finding a type that we don't know
-// how to handle produces an unsupported type error.
-func (md *MetaData) unify(data interface{}, rv reflect.Value) error {
-
-	// Special case. Look for a `Primitive` value.
-	if rv.Type() == reflect.TypeOf((*Primitive)(nil)).Elem() {
-		// Save the undecoded data and the key context into the primitive
-		// value.
-		context := make(Key, len(md.context))
-		copy(context, md.context)
-		rv.Set(reflect.ValueOf(Primitive{
-			undecoded: data,
-			context:   context,
-		}))
-		return nil
-	}
-
-	// Special case. Unmarshaler Interface support.
-	if rv.CanAddr() {
-		if v, ok := rv.Addr().Interface().(Unmarshaler); ok {
-			return v.UnmarshalTOML(data)
-		}
-	}
-
-	// Special case. Handle time.Time values specifically.
-	// TODO: Remove this code when we decide to drop support for Go 1.1.
-	// This isn't necessary in Go 1.2 because time.Time satisfies the encoding
-	// interfaces.
-	if rv.Type().AssignableTo(rvalue(time.Time{}).Type()) {
-		return md.unifyDatetime(data, rv)
-	}
-
-	// Special case. Look for a value satisfying the TextUnmarshaler interface.
-	if v, ok := rv.Interface().(TextUnmarshaler); ok {
-		return md.unifyText(data, v)
-	}
-	// BUG(burntsushi)
-	// The behavior here is incorrect whenever a Go type satisfies the
-	// encoding.TextUnmarshaler interface but also corresponds to a TOML
-	// hash or array. In particular, the unmarshaler should only be applied
-	// to primitive TOML values. But at this point, it will be applied to
-	// all kinds of values and produce an incorrect error whenever those values
-	// are hashes or arrays (including arrays of tables).
-
-	k := rv.Kind()
-
-	// laziness
-	if k >= reflect.Int && k <= reflect.Uint64 {
-		return md.unifyInt(data, rv)
-	}
-	switch k {
-	case reflect.Ptr:
-		elem := reflect.New(rv.Type().Elem())
-		err := md.unify(data, reflect.Indirect(elem))
-		if err != nil {
-			return err
-		}
-		rv.Set(elem)
-		return nil
-	case reflect.Struct:
-		return md.unifyStruct(data, rv)
-	case reflect.Map:
-		return md.unifyMap(data, rv)
-	case reflect.Array:
-		return md.unifyArray(data, rv)
-	case reflect.Slice:
-		return md.unifySlice(data, rv)
-	case reflect.String:
-		return md.unifyString(data, rv)
-	case reflect.Bool:
-		return md.unifyBool(data, rv)
-	case reflect.Interface:
-		// we only support empty interfaces.
-		if rv.NumMethod() > 0 {
-			return e("unsupported type %s", rv.Type())
-		}
-		return md.unifyAnything(data, rv)
-	case reflect.Float32:
-		fallthrough
-	case reflect.Float64:
-		return md.unifyFloat64(data, rv)
-	}
-	return e("unsupported type %s", rv.Kind())
-}
-
-func (md *MetaData) unifyStruct(mapping interface{}, rv reflect.Value) error {
-	tmap, ok := mapping.(map[string]interface{})
-	if !ok {
-		if mapping == nil {
-			return nil
-		}
-		return e("type mismatch for %s: expected table but found %T",
-			rv.Type().String(), mapping)
-	}
-
-	for key, datum := range tmap {
-		var f *field
-		fields := cachedTypeFields(rv.Type())
-		for i := range fields {
-			ff := &fields[i]
-			if ff.name == key {
-				f = ff
-				break
-			}
-			if f == nil && strings.EqualFold(ff.name, key) {
-				f = ff
-			}
-		}
-		if f != nil {
-			subv := rv
-			for _, i := range f.index {
-				subv = indirect(subv.Field(i))
-			}
-			if isUnifiable(subv) {
-				md.decoded[md.context.add(key).String()] = true
-				md.context = append(md.context, key)
-				if err := md.unify(datum, subv); err != nil {
-					return err
-				}
-				md.context = md.context[0 : len(md.context)-1]
-			} else if f.name != "" {
-				// Bad user! No soup for you!
-				return e("cannot write unexported field %s.%s",
-					rv.Type().String(), f.name)
-			}
-		}
-	}
-	return nil
-}
-
-func (md *MetaData) unifyMap(mapping interface{}, rv reflect.Value) error {
-	tmap, ok := mapping.(map[string]interface{})
-	if !ok {
-		if tmap == nil {
-			return nil
-		}
-		return badtype("map", mapping)
-	}
-	if rv.IsNil() {
-		rv.Set(reflect.MakeMap(rv.Type()))
-	}
-	for k, v := range tmap {
-		md.decoded[md.context.add(k).String()] = true
-		md.context = append(md.context, k)
-
-		rvkey := indirect(reflect.New(rv.Type().Key()))
-		rvval := reflect.Indirect(reflect.New(rv.Type().Elem()))
-		if err := md.unify(v, rvval); err != nil {
-			return err
-		}
-		md.context = md.context[0 : len(md.context)-1]
-
-		rvkey.SetString(k)
-		rv.SetMapIndex(rvkey, rvval)
-	}
-	return nil
-}
-
-func (md *MetaData) unifyArray(data interface{}, rv reflect.Value) error {
-	datav := reflect.ValueOf(data)
-	if datav.Kind() != reflect.Slice {
-		if !datav.IsValid() {
-			return nil
-		}
-		return badtype("slice", data)
-	}
-	sliceLen := datav.Len()
-	if sliceLen != rv.Len() {
-		return e("expected array length %d; got TOML array of length %d",
-			rv.Len(), sliceLen)
-	}
-	return md.unifySliceArray(datav, rv)
-}
-
-func (md *MetaData) unifySlice(data interface{}, rv reflect.Value) error {
-	datav := reflect.ValueOf(data)
-	if datav.Kind() != reflect.Slice {
-		if !datav.IsValid() {
-			return nil
-		}
-		return badtype("slice", data)
-	}
-	n := datav.Len()
-	if rv.IsNil() || rv.Cap() < n {
-		rv.Set(reflect.MakeSlice(rv.Type(), n, n))
-	}
-	rv.SetLen(n)
-	return md.unifySliceArray(datav, rv)
-}
-
-func (md *MetaData) unifySliceArray(data, rv reflect.Value) error {
-	sliceLen := data.Len()
-	for i := 0; i < sliceLen; i++ {
-		v := data.Index(i).Interface()
-		sliceval := indirect(rv.Index(i))
-		if err := md.unify(v, sliceval); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func (md *MetaData) unifyDatetime(data interface{}, rv reflect.Value) error {
-	if _, ok := data.(time.Time); ok {
-		rv.Set(reflect.ValueOf(data))
-		return nil
-	}
-	return badtype("time.Time", data)
-}
-
-func (md *MetaData) unifyString(data interface{}, rv reflect.Value) error {
-	if s, ok := data.(string); ok {
-		rv.SetString(s)
-		return nil
-	}
-	return badtype("string", data)
-}
-
-func (md *MetaData) unifyFloat64(data interface{}, rv reflect.Value) error {
-	if num, ok := data.(float64); ok {
-		switch rv.Kind() {
-		case reflect.Float32:
-			fallthrough
-		case reflect.Float64:
-			rv.SetFloat(num)
-		default:
-			panic("bug")
-		}
-		return nil
-	}
-	return badtype("float", data)
-}
-
-func (md *MetaData) unifyInt(data interface{}, rv reflect.Value) error {
-	if num, ok := data.(int64); ok {
-		if rv.Kind() >= reflect.Int && rv.Kind() <= reflect.Int64 {
-			switch rv.Kind() {
-			case reflect.Int, reflect.Int64:
-				// No bounds checking necessary.
-			case reflect.Int8:
-				if num < math.MinInt8 || num > math.MaxInt8 {
-					return e("value %d is out of range for int8", num)
-				}
-			case reflect.Int16:
-				if num < math.MinInt16 || num > math.MaxInt16 {
-					return e("value %d is out of range for int16", num)
-				}
-			case reflect.Int32:
-				if num < math.MinInt32 || num > math.MaxInt32 {
-					return e("value %d is out of range for int32", num)
-				}
-			}
-			rv.SetInt(num)
-		} else if rv.Kind() >= reflect.Uint && rv.Kind() <= reflect.Uint64 {
-			unum := uint64(num)
-			switch rv.Kind() {
-			case reflect.Uint, reflect.Uint64:
-				// No bounds checking necessary.
-			case reflect.Uint8:
-				if num < 0 || unum > math.MaxUint8 {
-					return e("value %d is out of range for uint8", num)
-				}
-			case reflect.Uint16:
-				if num < 0 || unum > math.MaxUint16 {
-					return e("value %d is out of range for uint16", num)
-				}
-			case reflect.Uint32:
-				if num < 0 || unum > math.MaxUint32 {
-					return e("value %d is out of range for uint32", num)
-				}
-			}
-			rv.SetUint(unum)
-		} else {
-			panic("unreachable")
-		}
-		return nil
-	}
-	return badtype("integer", data)
-}
-
-func (md *MetaData) unifyBool(data interface{}, rv reflect.Value) error {
-	if b, ok := data.(bool); ok {
-		rv.SetBool(b)
-		return nil
-	}
-	return badtype("boolean", data)
-}
-
-func (md *MetaData) unifyAnything(data interface{}, rv reflect.Value) error {
-	rv.Set(reflect.ValueOf(data))
-	return nil
-}
-
-func (md *MetaData) unifyText(data interface{}, v TextUnmarshaler) error {
-	var s string
-	switch sdata := data.(type) {
-	case TextMarshaler:
-		text, err := sdata.MarshalText()
-		if err != nil {
-			return err
-		}
-		s = string(text)
-	case fmt.Stringer:
-		s = sdata.String()
-	case string:
-		s = sdata
-	case bool:
-		s = fmt.Sprintf("%v", sdata)
-	case int64:
-		s = fmt.Sprintf("%d", sdata)
-	case float64:
-		s = fmt.Sprintf("%f", sdata)
-	default:
-		return badtype("primitive (string-like)", data)
-	}
-	if err := v.UnmarshalText([]byte(s)); err != nil {
-		return err
-	}
-	return nil
-}
-
-// rvalue returns a reflect.Value of `v`. All pointers are resolved.
-func rvalue(v interface{}) reflect.Value {
-	return indirect(reflect.ValueOf(v))
-}
-
-// indirect returns the value pointed to by a pointer.
-// Pointers are followed until the value is not a pointer.
-// New values are allocated for each nil pointer.
-//
-// An exception to this rule is if the value satisfies an interface of
-// interest to us (like encoding.TextUnmarshaler).
-func indirect(v reflect.Value) reflect.Value {
-	if v.Kind() != reflect.Ptr {
-		if v.CanSet() {
-			pv := v.Addr()
-			if _, ok := pv.Interface().(TextUnmarshaler); ok {
-				return pv
-			}
-		}
-		return v
-	}
-	if v.IsNil() {
-		v.Set(reflect.New(v.Type().Elem()))
-	}
-	return indirect(reflect.Indirect(v))
-}
-
-func isUnifiable(rv reflect.Value) bool {
-	if rv.CanSet() {
-		return true
-	}
-	if _, ok := rv.Interface().(TextUnmarshaler); ok {
-		return true
-	}
-	return false
-}
-
-func badtype(expected string, data interface{}) error {
-	return e("cannot load TOML value of type %T into a Go %s", data, expected)
-}
diff --git a/vendor/github.com/BurntSushi/toml/decode_meta.go b/vendor/github.com/BurntSushi/toml/decode_meta.go
deleted file mode 100644
index b9914a6798..0000000000
--- a/vendor/github.com/BurntSushi/toml/decode_meta.go
+++ /dev/null
@@ -1,121 +0,0 @@
-package toml
-
-import "strings"
-
-// MetaData allows access to meta information about TOML data that may not
-// be inferrable via reflection. In particular, whether a key has been defined
-// and the TOML type of a key.
-type MetaData struct {
-	mapping map[string]interface{}
-	types   map[string]tomlType
-	keys    []Key
-	decoded map[string]bool
-	context Key // Used only during decoding.
-}
-
-// IsDefined returns true if the key given exists in the TOML data. The key
-// should be specified hierarchially. e.g.,
-//
-//	// access the TOML key 'a.b.c'
-//	IsDefined("a", "b", "c")
-//
-// IsDefined will return false if an empty key given. Keys are case sensitive.
-func (md *MetaData) IsDefined(key ...string) bool {
-	if len(key) == 0 {
-		return false
-	}
-
-	var hash map[string]interface{}
-	var ok bool
-	var hashOrVal interface{} = md.mapping
-	for _, k := range key {
-		if hash, ok = hashOrVal.(map[string]interface{}); !ok {
-			return false
-		}
-		if hashOrVal, ok = hash[k]; !ok {
-			return false
-		}
-	}
-	return true
-}
-
-// Type returns a string representation of the type of the key specified.
-//
-// Type will return the empty string if given an empty key or a key that
-// does not exist. Keys are case sensitive.
-func (md *MetaData) Type(key ...string) string {
-	fullkey := strings.Join(key, ".")
-	if typ, ok := md.types[fullkey]; ok {
-		return typ.typeString()
-	}
-	return ""
-}
-
-// Key is the type of any TOML key, including key groups. Use (MetaData).Keys
-// to get values of this type.
-type Key []string
-
-func (k Key) String() string {
-	return strings.Join(k, ".")
-}
-
-func (k Key) maybeQuotedAll() string {
-	var ss []string
-	for i := range k {
-		ss = append(ss, k.maybeQuoted(i))
-	}
-	return strings.Join(ss, ".")
-}
-
-func (k Key) maybeQuoted(i int) string {
-	quote := false
-	for _, c := range k[i] {
-		if !isBareKeyChar(c) {
-			quote = true
-			break
-		}
-	}
-	if quote {
-		return "\"" + strings.Replace(k[i], "\"", "\\\"", -1) + "\""
-	}
-	return k[i]
-}
-
-func (k Key) add(piece string) Key {
-	newKey := make(Key, len(k)+1)
-	copy(newKey, k)
-	newKey[len(k)] = piece
-	return newKey
-}
-
-// Keys returns a slice of every key in the TOML data, including key groups.
-// Each key is itself a slice, where the first element is the top of the
-// hierarchy and the last is the most specific.
-//
-// The list will have the same order as the keys appeared in the TOML data.
-//
-// All keys returned are non-empty.
-func (md *MetaData) Keys() []Key {
-	return md.keys
-}
-
-// Undecoded returns all keys that have not been decoded in the order in which
-// they appear in the original TOML document.
-//
-// This includes keys that haven't been decoded because of a Primitive value.
-// Once the Primitive value is decoded, the keys will be considered decoded.
-//
-// Also note that decoding into an empty interface will result in no decoding,
-// and so no keys will be considered decoded.
-//
-// In this sense, the Undecoded keys correspond to keys in the TOML document
-// that do not have a concrete type in your representation.
-func (md *MetaData) Undecoded() []Key {
-	undecoded := make([]Key, 0, len(md.keys))
-	for _, key := range md.keys {
-		if !md.decoded[key.String()] {
-			undecoded = append(undecoded, key)
-		}
-	}
-	return undecoded
-}
diff --git a/vendor/github.com/BurntSushi/toml/doc.go b/vendor/github.com/BurntSushi/toml/doc.go
deleted file mode 100644
index b371f396ed..0000000000
--- a/vendor/github.com/BurntSushi/toml/doc.go
+++ /dev/null
@@ -1,27 +0,0 @@
-/*
-Package toml provides facilities for decoding and encoding TOML configuration
-files via reflection. There is also support for delaying decoding with
-the Primitive type, and querying the set of keys in a TOML document with the
-MetaData type.
-
-The specification implemented: https://github.com/toml-lang/toml
-
-The sub-command github.com/BurntSushi/toml/cmd/tomlv can be used to verify
-whether a file is a valid TOML document. It can also be used to print the
-type of each key in a TOML document.
-
-Testing
-
-There are two important types of tests used for this package. The first is
-contained inside '*_test.go' files and uses the standard Go unit testing
-framework. These tests are primarily devoted to holistically testing the
-decoder and encoder.
-
-The second type of testing is used to verify the implementation's adherence
-to the TOML specification. These tests have been factored into their own
-project: https://github.com/BurntSushi/toml-test
-
-The reason the tests are in a separate project is so that they can be used by
-any implementation of TOML. Namely, it is language agnostic.
-*/
-package toml
diff --git a/vendor/github.com/BurntSushi/toml/encode.go b/vendor/github.com/BurntSushi/toml/encode.go
deleted file mode 100644
index d905c21a24..0000000000
--- a/vendor/github.com/BurntSushi/toml/encode.go
+++ /dev/null
@@ -1,568 +0,0 @@
-package toml
-
-import (
-	"bufio"
-	"errors"
-	"fmt"
-	"io"
-	"reflect"
-	"sort"
-	"strconv"
-	"strings"
-	"time"
-)
-
-type tomlEncodeError struct{ error }
-
-var (
-	errArrayMixedElementTypes = errors.New(
-		"toml: cannot encode array with mixed element types")
-	errArrayNilElement = errors.New(
-		"toml: cannot encode array with nil element")
-	errNonString = errors.New(
-		"toml: cannot encode a map with non-string key type")
-	errAnonNonStruct = errors.New(
-		"toml: cannot encode an anonymous field that is not a struct")
-	errArrayNoTable = errors.New(
-		"toml: TOML array element cannot contain a table")
-	errNoKey = errors.New(
-		"toml: top-level values must be Go maps or structs")
-	errAnything = errors.New("") // used in testing
-)
-
-var quotedReplacer = strings.NewReplacer(
-	"\t", "\\t",
-	"\n", "\\n",
-	"\r", "\\r",
-	"\"", "\\\"",
-	"\\", "\\\\",
-)
-
-// Encoder controls the encoding of Go values to a TOML document to some
-// io.Writer.
-//
-// The indentation level can be controlled with the Indent field.
-type Encoder struct {
-	// A single indentation level. By default it is two spaces.
-	Indent string
-
-	// hasWritten is whether we have written any output to w yet.
-	hasWritten bool
-	w          *bufio.Writer
-}
-
-// NewEncoder returns a TOML encoder that encodes Go values to the io.Writer
-// given. By default, a single indentation level is 2 spaces.
-func NewEncoder(w io.Writer) *Encoder {
-	return &Encoder{
-		w:      bufio.NewWriter(w),
-		Indent: "  ",
-	}
-}
-
-// Encode writes a TOML representation of the Go value to the underlying
-// io.Writer. If the value given cannot be encoded to a valid TOML document,
-// then an error is returned.
-//
-// The mapping between Go values and TOML values should be precisely the same
-// as for the Decode* functions. Similarly, the TextMarshaler interface is
-// supported by encoding the resulting bytes as strings. (If you want to write
-// arbitrary binary data then you will need to use something like base64 since
-// TOML does not have any binary types.)
-//
-// When encoding TOML hashes (i.e., Go maps or structs), keys without any
-// sub-hashes are encoded first.
-//
-// If a Go map is encoded, then its keys are sorted alphabetically for
-// deterministic output. More control over this behavior may be provided if
-// there is demand for it.
-//
-// Encoding Go values without a corresponding TOML representation---like map
-// types with non-string keys---will cause an error to be returned. Similarly
-// for mixed arrays/slices, arrays/slices with nil elements, embedded
-// non-struct types and nested slices containing maps or structs.
-// (e.g., [][]map[string]string is not allowed but []map[string]string is OK
-// and so is []map[string][]string.)
-func (enc *Encoder) Encode(v interface{}) error {
-	rv := eindirect(reflect.ValueOf(v))
-	if err := enc.safeEncode(Key([]string{}), rv); err != nil {
-		return err
-	}
-	return enc.w.Flush()
-}
-
-func (enc *Encoder) safeEncode(key Key, rv reflect.Value) (err error) {
-	defer func() {
-		if r := recover(); r != nil {
-			if terr, ok := r.(tomlEncodeError); ok {
-				err = terr.error
-				return
-			}
-			panic(r)
-		}
-	}()
-	enc.encode(key, rv)
-	return nil
-}
-
-func (enc *Encoder) encode(key Key, rv reflect.Value) {
-	// Special case. Time needs to be in ISO8601 format.
-	// Special case. If we can marshal the type to text, then we used that.
-	// Basically, this prevents the encoder for handling these types as
-	// generic structs (or whatever the underlying type of a TextMarshaler is).
-	switch rv.Interface().(type) {
-	case time.Time, TextMarshaler:
-		enc.keyEqElement(key, rv)
-		return
-	}
-
-	k := rv.Kind()
-	switch k {
-	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
-		reflect.Int64,
-		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
-		reflect.Uint64,
-		reflect.Float32, reflect.Float64, reflect.String, reflect.Bool:
-		enc.keyEqElement(key, rv)
-	case reflect.Array, reflect.Slice:
-		if typeEqual(tomlArrayHash, tomlTypeOfGo(rv)) {
-			enc.eArrayOfTables(key, rv)
-		} else {
-			enc.keyEqElement(key, rv)
-		}
-	case reflect.Interface:
-		if rv.IsNil() {
-			return
-		}
-		enc.encode(key, rv.Elem())
-	case reflect.Map:
-		if rv.IsNil() {
-			return
-		}
-		enc.eTable(key, rv)
-	case reflect.Ptr:
-		if rv.IsNil() {
-			return
-		}
-		enc.encode(key, rv.Elem())
-	case reflect.Struct:
-		enc.eTable(key, rv)
-	default:
-		panic(e("unsupported type for key '%s': %s", key, k))
-	}
-}
-
-// eElement encodes any value that can be an array element (primitives and
-// arrays).
-func (enc *Encoder) eElement(rv reflect.Value) {
-	switch v := rv.Interface().(type) {
-	case time.Time:
-		// Special case time.Time as a primitive. Has to come before
-		// TextMarshaler below because time.Time implements
-		// encoding.TextMarshaler, but we need to always use UTC.
-		enc.wf(v.UTC().Format("2006-01-02T15:04:05Z"))
-		return
-	case TextMarshaler:
-		// Special case. Use text marshaler if it's available for this value.
-		if s, err := v.MarshalText(); err != nil {
-			encPanic(err)
-		} else {
-			enc.writeQuoted(string(s))
-		}
-		return
-	}
-	switch rv.Kind() {
-	case reflect.Bool:
-		enc.wf(strconv.FormatBool(rv.Bool()))
-	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
-		reflect.Int64:
-		enc.wf(strconv.FormatInt(rv.Int(), 10))
-	case reflect.Uint, reflect.Uint8, reflect.Uint16,
-		reflect.Uint32, reflect.Uint64:
-		enc.wf(strconv.FormatUint(rv.Uint(), 10))
-	case reflect.Float32:
-		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 32)))
-	case reflect.Float64:
-		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 64)))
-	case reflect.Array, reflect.Slice:
-		enc.eArrayOrSliceElement(rv)
-	case reflect.Interface:
-		enc.eElement(rv.Elem())
-	case reflect.String:
-		enc.writeQuoted(rv.String())
-	default:
-		panic(e("unexpected primitive type: %s", rv.Kind()))
-	}
-}
-
-// By the TOML spec, all floats must have a decimal with at least one
-// number on either side.
-func floatAddDecimal(fstr string) string {
-	if !strings.Contains(fstr, ".") {
-		return fstr + ".0"
-	}
-	return fstr
-}
-
-func (enc *Encoder) writeQuoted(s string) {
-	enc.wf("\"%s\"", quotedReplacer.Replace(s))
-}
-
-func (enc *Encoder) eArrayOrSliceElement(rv reflect.Value) {
-	length := rv.Len()
-	enc.wf("[")
-	for i := 0; i < length; i++ {
-		elem := rv.Index(i)
-		enc.eElement(elem)
-		if i != length-1 {
-			enc.wf(", ")
-		}
-	}
-	enc.wf("]")
-}
-
-func (enc *Encoder) eArrayOfTables(key Key, rv reflect.Value) {
-	if len(key) == 0 {
-		encPanic(errNoKey)
-	}
-	for i := 0; i < rv.Len(); i++ {
-		trv := rv.Index(i)
-		if isNil(trv) {
-			continue
-		}
-		panicIfInvalidKey(key)
-		enc.newline()
-		enc.wf("%s[[%s]]", enc.indentStr(key), key.maybeQuotedAll())
-		enc.newline()
-		enc.eMapOrStruct(key, trv)
-	}
-}
-
-func (enc *Encoder) eTable(key Key, rv reflect.Value) {
-	panicIfInvalidKey(key)
-	if len(key) == 1 {
-		// Output an extra newline between top-level tables.
-		// (The newline isn't written if nothing else has been written though.)
-		enc.newline()
-	}
-	if len(key) > 0 {
-		enc.wf("%s[%s]", enc.indentStr(key), key.maybeQuotedAll())
-		enc.newline()
-	}
-	enc.eMapOrStruct(key, rv)
-}
-
-func (enc *Encoder) eMapOrStruct(key Key, rv reflect.Value) {
-	switch rv := eindirect(rv); rv.Kind() {
-	case reflect.Map:
-		enc.eMap(key, rv)
-	case reflect.Struct:
-		enc.eStruct(key, rv)
-	default:
-		panic("eTable: unhandled reflect.Value Kind: " + rv.Kind().String())
-	}
-}
-
-func (enc *Encoder) eMap(key Key, rv reflect.Value) {
-	rt := rv.Type()
-	if rt.Key().Kind() != reflect.String {
-		encPanic(errNonString)
-	}
-
-	// Sort keys so that we have deterministic output. And write keys directly
-	// underneath this key first, before writing sub-structs or sub-maps.
-	var mapKeysDirect, mapKeysSub []string
-	for _, mapKey := range rv.MapKeys() {
-		k := mapKey.String()
-		if typeIsHash(tomlTypeOfGo(rv.MapIndex(mapKey))) {
-			mapKeysSub = append(mapKeysSub, k)
-		} else {
-			mapKeysDirect = append(mapKeysDirect, k)
-		}
-	}
-
-	var writeMapKeys = func(mapKeys []string) {
-		sort.Strings(mapKeys)
-		for _, mapKey := range mapKeys {
-			mrv := rv.MapIndex(reflect.ValueOf(mapKey))
-			if isNil(mrv) {
-				// Don't write anything for nil fields.
-				continue
-			}
-			enc.encode(key.add(mapKey), mrv)
-		}
-	}
-	writeMapKeys(mapKeysDirect)
-	writeMapKeys(mapKeysSub)
-}
-
-func (enc *Encoder) eStruct(key Key, rv reflect.Value) {
-	// Write keys for fields directly under this key first, because if we write
-	// a field that creates a new table, then all keys under it will be in that
-	// table (not the one we're writing here).
-	rt := rv.Type()
-	var fieldsDirect, fieldsSub [][]int
-	var addFields func(rt reflect.Type, rv reflect.Value, start []int)
-	addFields = func(rt reflect.Type, rv reflect.Value, start []int) {
-		for i := 0; i < rt.NumField(); i++ {
-			f := rt.Field(i)
-			// skip unexported fields
-			if f.PkgPath != "" && !f.Anonymous {
-				continue
-			}
-			frv := rv.Field(i)
-			if f.Anonymous {
-				t := f.Type
-				switch t.Kind() {
-				case reflect.Struct:
-					// Treat anonymous struct fields with
-					// tag names as though they are not
-					// anonymous, like encoding/json does.
-					if getOptions(f.Tag).name == "" {
-						addFields(t, frv, f.Index)
-						continue
-					}
-				case reflect.Ptr:
-					if t.Elem().Kind() == reflect.Struct &&
-						getOptions(f.Tag).name == "" {
-						if !frv.IsNil() {
-							addFields(t.Elem(), frv.Elem(), f.Index)
-						}
-						continue
-					}
-					// Fall through to the normal field encoding logic below
-					// for non-struct anonymous fields.
-				}
-			}
-
-			if typeIsHash(tomlTypeOfGo(frv)) {
-				fieldsSub = append(fieldsSub, append(start, f.Index...))
-			} else {
-				fieldsDirect = append(fieldsDirect, append(start, f.Index...))
-			}
-		}
-	}
-	addFields(rt, rv, nil)
-
-	var writeFields = func(fields [][]int) {
-		for _, fieldIndex := range fields {
-			sft := rt.FieldByIndex(fieldIndex)
-			sf := rv.FieldByIndex(fieldIndex)
-			if isNil(sf) {
-				// Don't write anything for nil fields.
-				continue
-			}
-
-			opts := getOptions(sft.Tag)
-			if opts.skip {
-				continue
-			}
-			keyName := sft.Name
-			if opts.name != "" {
-				keyName = opts.name
-			}
-			if opts.omitempty && isEmpty(sf) {
-				continue
-			}
-			if opts.omitzero && isZero(sf) {
-				continue
-			}
-
-			enc.encode(key.add(keyName), sf)
-		}
-	}
-	writeFields(fieldsDirect)
-	writeFields(fieldsSub)
-}
-
-// tomlTypeName returns the TOML type name of the Go value's type. It is
-// used to determine whether the types of array elements are mixed (which is
-// forbidden). If the Go value is nil, then it is illegal for it to be an array
-// element, and valueIsNil is returned as true.
-
-// Returns the TOML type of a Go value. The type may be `nil`, which means
-// no concrete TOML type could be found.
-func tomlTypeOfGo(rv reflect.Value) tomlType {
-	if isNil(rv) || !rv.IsValid() {
-		return nil
-	}
-	switch rv.Kind() {
-	case reflect.Bool:
-		return tomlBool
-	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
-		reflect.Int64,
-		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
-		reflect.Uint64:
-		return tomlInteger
-	case reflect.Float32, reflect.Float64:
-		return tomlFloat
-	case reflect.Array, reflect.Slice:
-		if typeEqual(tomlHash, tomlArrayType(rv)) {
-			return tomlArrayHash
-		}
-		return tomlArray
-	case reflect.Ptr, reflect.Interface:
-		return tomlTypeOfGo(rv.Elem())
-	case reflect.String:
-		return tomlString
-	case reflect.Map:
-		return tomlHash
-	case reflect.Struct:
-		switch rv.Interface().(type) {
-		case time.Time:
-			return tomlDatetime
-		case TextMarshaler:
-			return tomlString
-		default:
-			return tomlHash
-		}
-	default:
-		panic("unexpected reflect.Kind: " + rv.Kind().String())
-	}
-}
-
-// tomlArrayType returns the element type of a TOML array. The type returned
-// may be nil if it cannot be determined (e.g., a nil slice or a zero length
-// slize). This function may also panic if it finds a type that cannot be
-// expressed in TOML (such as nil elements, heterogeneous arrays or directly
-// nested arrays of tables).
-func tomlArrayType(rv reflect.Value) tomlType {
-	if isNil(rv) || !rv.IsValid() || rv.Len() == 0 {
-		return nil
-	}
-	firstType := tomlTypeOfGo(rv.Index(0))
-	if firstType == nil {
-		encPanic(errArrayNilElement)
-	}
-
-	rvlen := rv.Len()
-	for i := 1; i < rvlen; i++ {
-		elem := rv.Index(i)
-		switch elemType := tomlTypeOfGo(elem); {
-		case elemType == nil:
-			encPanic(errArrayNilElement)
-		case !typeEqual(firstType, elemType):
-			encPanic(errArrayMixedElementTypes)
-		}
-	}
-	// If we have a nested array, then we must make sure that the nested
-	// array contains ONLY primitives.
-	// This checks arbitrarily nested arrays.
-	if typeEqual(firstType, tomlArray) || typeEqual(firstType, tomlArrayHash) {
-		nest := tomlArrayType(eindirect(rv.Index(0)))
-		if typeEqual(nest, tomlHash) || typeEqual(nest, tomlArrayHash) {
-			encPanic(errArrayNoTable)
-		}
-	}
-	return firstType
-}
-
-type tagOptions struct {
-	skip      bool // "-"
-	name      string
-	omitempty bool
-	omitzero  bool
-}
-
-func getOptions(tag reflect.StructTag) tagOptions {
-	t := tag.Get("toml")
-	if t == "-" {
-		return tagOptions{skip: true}
-	}
-	var opts tagOptions
-	parts := strings.Split(t, ",")
-	opts.name = parts[0]
-	for _, s := range parts[1:] {
-		switch s {
-		case "omitempty":
-			opts.omitempty = true
-		case "omitzero":
-			opts.omitzero = true
-		}
-	}
-	return opts
-}
-
-func isZero(rv reflect.Value) bool {
-	switch rv.Kind() {
-	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
-		return rv.Int() == 0
-	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
-		return rv.Uint() == 0
-	case reflect.Float32, reflect.Float64:
-		return rv.Float() == 0.0
-	}
-	return false
-}
-
-func isEmpty(rv reflect.Value) bool {
-	switch rv.Kind() {
-	case reflect.Array, reflect.Slice, reflect.Map, reflect.String:
-		return rv.Len() == 0
-	case reflect.Bool:
-		return !rv.Bool()
-	}
-	return false
-}
-
-func (enc *Encoder) newline() {
-	if enc.hasWritten {
-		enc.wf("\n")
-	}
-}
-
-func (enc *Encoder) keyEqElement(key Key, val reflect.Value) {
-	if len(key) == 0 {
-		encPanic(errNoKey)
-	}
-	panicIfInvalidKey(key)
-	enc.wf("%s%s = ", enc.indentStr(key), key.maybeQuoted(len(key)-1))
-	enc.eElement(val)
-	enc.newline()
-}
-
-func (enc *Encoder) wf(format string, v ...interface{}) {
-	if _, err := fmt.Fprintf(enc.w, format, v...); err != nil {
-		encPanic(err)
-	}
-	enc.hasWritten = true
-}
-
-func (enc *Encoder) indentStr(key Key) string {
-	return strings.Repeat(enc.Indent, len(key)-1)
-}
-
-func encPanic(err error) {
-	panic(tomlEncodeError{err})
-}
-
-func eindirect(v reflect.Value) reflect.Value {
-	switch v.Kind() {
-	case reflect.Ptr, reflect.Interface:
-		return eindirect(v.Elem())
-	default:
-		return v
-	}
-}
-
-func isNil(rv reflect.Value) bool {
-	switch rv.Kind() {
-	case reflect.Interface, reflect.Map, reflect.Ptr, reflect.Slice:
-		return rv.IsNil()
-	default:
-		return false
-	}
-}
-
-func panicIfInvalidKey(key Key) {
-	for _, k := range key {
-		if len(k) == 0 {
-			encPanic(e("Key '%s' is not a valid table name. Key names "+
-				"cannot be empty.", key.maybeQuotedAll()))
-		}
-	}
-}
-
-func isValidKeyName(s string) bool {
-	return len(s) != 0
-}
diff --git a/vendor/github.com/BurntSushi/toml/encoding_types.go b/vendor/github.com/BurntSushi/toml/encoding_types.go
deleted file mode 100644
index d36e1dd600..0000000000
--- a/vendor/github.com/BurntSushi/toml/encoding_types.go
+++ /dev/null
@@ -1,19 +0,0 @@
-// +build go1.2
-
-package toml
-
-// In order to support Go 1.1, we define our own TextMarshaler and
-// TextUnmarshaler types. For Go 1.2+, we just alias them with the
-// standard library interfaces.
-
-import (
-	"encoding"
-)
-
-// TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
-// so that Go 1.1 can be supported.
-type TextMarshaler encoding.TextMarshaler
-
-// TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
-// here so that Go 1.1 can be supported.
-type TextUnmarshaler encoding.TextUnmarshaler
diff --git a/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go b/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
deleted file mode 100644
index e8d503d046..0000000000
--- a/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// +build !go1.2
-
-package toml
-
-// These interfaces were introduced in Go 1.2, so we add them manually when
-// compiling for Go 1.1.
-
-// TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
-// so that Go 1.1 can be supported.
-type TextMarshaler interface {
-	MarshalText() (text []byte, err error)
-}
-
-// TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
-// here so that Go 1.1 can be supported.
-type TextUnmarshaler interface {
-	UnmarshalText(text []byte) error
-}
diff --git a/vendor/github.com/BurntSushi/toml/lex.go b/vendor/github.com/BurntSushi/toml/lex.go
deleted file mode 100644
index 6dee7fc792..0000000000
--- a/vendor/github.com/BurntSushi/toml/lex.go
+++ /dev/null
@@ -1,953 +0,0 @@
-package toml
-
-import (
-	"fmt"
-	"strings"
-	"unicode"
-	"unicode/utf8"
-)
-
-type itemType int
-
-const (
-	itemError itemType = iota
-	itemNIL            // used in the parser to indicate no type
-	itemEOF
-	itemText
-	itemString
-	itemRawString
-	itemMultilineString
-	itemRawMultilineString
-	itemBool
-	itemInteger
-	itemFloat
-	itemDatetime
-	itemArray // the start of an array
-	itemArrayEnd
-	itemTableStart
-	itemTableEnd
-	itemArrayTableStart
-	itemArrayTableEnd
-	itemKeyStart
-	itemCommentStart
-	itemInlineTableStart
-	itemInlineTableEnd
-)
-
-const (
-	eof              = 0
-	comma            = ','
-	tableStart       = '['
-	tableEnd         = ']'
-	arrayTableStart  = '['
-	arrayTableEnd    = ']'
-	tableSep         = '.'
-	keySep           = '='
-	arrayStart       = '['
-	arrayEnd         = ']'
-	commentStart     = '#'
-	stringStart      = '"'
-	stringEnd        = '"'
-	rawStringStart   = '\''
-	rawStringEnd     = '\''
-	inlineTableStart = '{'
-	inlineTableEnd   = '}'
-)
-
-type stateFn func(lx *lexer) stateFn
-
-type lexer struct {
-	input string
-	start int
-	pos   int
-	line  int
-	state stateFn
-	items chan item
-
-	// Allow for backing up up to three runes.
-	// This is necessary because TOML contains 3-rune tokens (""" and ''').
-	prevWidths [3]int
-	nprev      int // how many of prevWidths are in use
-	// If we emit an eof, we can still back up, but it is not OK to call
-	// next again.
-	atEOF bool
-
-	// A stack of state functions used to maintain context.
-	// The idea is to reuse parts of the state machine in various places.
-	// For example, values can appear at the top level or within arbitrarily
-	// nested arrays. The last state on the stack is used after a value has
-	// been lexed. Similarly for comments.
-	stack []stateFn
-}
-
-type item struct {
-	typ  itemType
-	val  string
-	line int
-}
-
-func (lx *lexer) nextItem() item {
-	for {
-		select {
-		case item := <-lx.items:
-			return item
-		default:
-			lx.state = lx.state(lx)
-		}
-	}
-}
-
-func lex(input string) *lexer {
-	lx := &lexer{
-		input: input,
-		state: lexTop,
-		line:  1,
-		items: make(chan item, 10),
-		stack: make([]stateFn, 0, 10),
-	}
-	return lx
-}
-
-func (lx *lexer) push(state stateFn) {
-	lx.stack = append(lx.stack, state)
-}
-
-func (lx *lexer) pop() stateFn {
-	if len(lx.stack) == 0 {
-		return lx.errorf("BUG in lexer: no states to pop")
-	}
-	last := lx.stack[len(lx.stack)-1]
-	lx.stack = lx.stack[0 : len(lx.stack)-1]
-	return last
-}
-
-func (lx *lexer) current() string {
-	return lx.input[lx.start:lx.pos]
-}
-
-func (lx *lexer) emit(typ itemType) {
-	lx.items <- item{typ, lx.current(), lx.line}
-	lx.start = lx.pos
-}
-
-func (lx *lexer) emitTrim(typ itemType) {
-	lx.items <- item{typ, strings.TrimSpace(lx.current()), lx.line}
-	lx.start = lx.pos
-}
-
-func (lx *lexer) next() (r rune) {
-	if lx.atEOF {
-		panic("next called after EOF")
-	}
-	if lx.pos >= len(lx.input) {
-		lx.atEOF = true
-		return eof
-	}
-
-	if lx.input[lx.pos] == '\n' {
-		lx.line++
-	}
-	lx.prevWidths[2] = lx.prevWidths[1]
-	lx.prevWidths[1] = lx.prevWidths[0]
-	if lx.nprev < 3 {
-		lx.nprev++
-	}
-	r, w := utf8.DecodeRuneInString(lx.input[lx.pos:])
-	lx.prevWidths[0] = w
-	lx.pos += w
-	return r
-}
-
-// ignore skips over the pending input before this point.
-func (lx *lexer) ignore() {
-	lx.start = lx.pos
-}
-
-// backup steps back one rune. Can be called only twice between calls to next.
-func (lx *lexer) backup() {
-	if lx.atEOF {
-		lx.atEOF = false
-		return
-	}
-	if lx.nprev < 1 {
-		panic("backed up too far")
-	}
-	w := lx.prevWidths[0]
-	lx.prevWidths[0] = lx.prevWidths[1]
-	lx.prevWidths[1] = lx.prevWidths[2]
-	lx.nprev--
-	lx.pos -= w
-	if lx.pos < len(lx.input) && lx.input[lx.pos] == '\n' {
-		lx.line--
-	}
-}
-
-// accept consumes the next rune if it's equal to `valid`.
-func (lx *lexer) accept(valid rune) bool {
-	if lx.next() == valid {
-		return true
-	}
-	lx.backup()
-	return false
-}
-
-// peek returns but does not consume the next rune in the input.
-func (lx *lexer) peek() rune {
-	r := lx.next()
-	lx.backup()
-	return r
-}
-
-// skip ignores all input that matches the given predicate.
-func (lx *lexer) skip(pred func(rune) bool) {
-	for {
-		r := lx.next()
-		if pred(r) {
-			continue
-		}
-		lx.backup()
-		lx.ignore()
-		return
-	}
-}
-
-// errorf stops all lexing by emitting an error and returning `nil`.
-// Note that any value that is a character is escaped if it's a special
-// character (newlines, tabs, etc.).
-func (lx *lexer) errorf(format string, values ...interface{}) stateFn {
-	lx.items <- item{
-		itemError,
-		fmt.Sprintf(format, values...),
-		lx.line,
-	}
-	return nil
-}
-
-// lexTop consumes elements at the top level of TOML data.
-func lexTop(lx *lexer) stateFn {
-	r := lx.next()
-	if isWhitespace(r) || isNL(r) {
-		return lexSkip(lx, lexTop)
-	}
-	switch r {
-	case commentStart:
-		lx.push(lexTop)
-		return lexCommentStart
-	case tableStart:
-		return lexTableStart
-	case eof:
-		if lx.pos > lx.start {
-			return lx.errorf("unexpected EOF")
-		}
-		lx.emit(itemEOF)
-		return nil
-	}
-
-	// At this point, the only valid item can be a key, so we back up
-	// and let the key lexer do the rest.
-	lx.backup()
-	lx.push(lexTopEnd)
-	return lexKeyStart
-}
-
-// lexTopEnd is entered whenever a top-level item has been consumed. (A value
-// or a table.) It must see only whitespace, and will turn back to lexTop
-// upon a newline. If it sees EOF, it will quit the lexer successfully.
-func lexTopEnd(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case r == commentStart:
-		// a comment will read to a newline for us.
-		lx.push(lexTop)
-		return lexCommentStart
-	case isWhitespace(r):
-		return lexTopEnd
-	case isNL(r):
-		lx.ignore()
-		return lexTop
-	case r == eof:
-		lx.emit(itemEOF)
-		return nil
-	}
-	return lx.errorf("expected a top-level item to end with a newline, "+
-		"comment, or EOF, but got %q instead", r)
-}
-
-// lexTable lexes the beginning of a table. Namely, it makes sure that
-// it starts with a character other than '.' and ']'.
-// It assumes that '[' has already been consumed.
-// It also handles the case that this is an item in an array of tables.
-// e.g., '[[name]]'.
-func lexTableStart(lx *lexer) stateFn {
-	if lx.peek() == arrayTableStart {
-		lx.next()
-		lx.emit(itemArrayTableStart)
-		lx.push(lexArrayTableEnd)
-	} else {
-		lx.emit(itemTableStart)
-		lx.push(lexTableEnd)
-	}
-	return lexTableNameStart
-}
-
-func lexTableEnd(lx *lexer) stateFn {
-	lx.emit(itemTableEnd)
-	return lexTopEnd
-}
-
-func lexArrayTableEnd(lx *lexer) stateFn {
-	if r := lx.next(); r != arrayTableEnd {
-		return lx.errorf("expected end of table array name delimiter %q, "+
-			"but got %q instead", arrayTableEnd, r)
-	}
-	lx.emit(itemArrayTableEnd)
-	return lexTopEnd
-}
-
-func lexTableNameStart(lx *lexer) stateFn {
-	lx.skip(isWhitespace)
-	switch r := lx.peek(); {
-	case r == tableEnd || r == eof:
-		return lx.errorf("unexpected end of table name " +
-			"(table names cannot be empty)")
-	case r == tableSep:
-		return lx.errorf("unexpected table separator " +
-			"(table names cannot be empty)")
-	case r == stringStart || r == rawStringStart:
-		lx.ignore()
-		lx.push(lexTableNameEnd)
-		return lexValue // reuse string lexing
-	default:
-		return lexBareTableName
-	}
-}
-
-// lexBareTableName lexes the name of a table. It assumes that at least one
-// valid character for the table has already been read.
-func lexBareTableName(lx *lexer) stateFn {
-	r := lx.next()
-	if isBareKeyChar(r) {
-		return lexBareTableName
-	}
-	lx.backup()
-	lx.emit(itemText)
-	return lexTableNameEnd
-}
-
-// lexTableNameEnd reads the end of a piece of a table name, optionally
-// consuming whitespace.
-func lexTableNameEnd(lx *lexer) stateFn {
-	lx.skip(isWhitespace)
-	switch r := lx.next(); {
-	case isWhitespace(r):
-		return lexTableNameEnd
-	case r == tableSep:
-		lx.ignore()
-		return lexTableNameStart
-	case r == tableEnd:
-		return lx.pop()
-	default:
-		return lx.errorf("expected '.' or ']' to end table name, "+
-			"but got %q instead", r)
-	}
-}
-
-// lexKeyStart consumes a key name up until the first non-whitespace character.
-// lexKeyStart will ignore whitespace.
-func lexKeyStart(lx *lexer) stateFn {
-	r := lx.peek()
-	switch {
-	case r == keySep:
-		return lx.errorf("unexpected key separator %q", keySep)
-	case isWhitespace(r) || isNL(r):
-		lx.next()
-		return lexSkip(lx, lexKeyStart)
-	case r == stringStart || r == rawStringStart:
-		lx.ignore()
-		lx.emit(itemKeyStart)
-		lx.push(lexKeyEnd)
-		return lexValue // reuse string lexing
-	default:
-		lx.ignore()
-		lx.emit(itemKeyStart)
-		return lexBareKey
-	}
-}
-
-// lexBareKey consumes the text of a bare key. Assumes that the first character
-// (which is not whitespace) has not yet been consumed.
-func lexBareKey(lx *lexer) stateFn {
-	switch r := lx.next(); {
-	case isBareKeyChar(r):
-		return lexBareKey
-	case isWhitespace(r):
-		lx.backup()
-		lx.emit(itemText)
-		return lexKeyEnd
-	case r == keySep:
-		lx.backup()
-		lx.emit(itemText)
-		return lexKeyEnd
-	default:
-		return lx.errorf("bare keys cannot contain %q", r)
-	}
-}
-
-// lexKeyEnd consumes the end of a key and trims whitespace (up to the key
-// separator).
-func lexKeyEnd(lx *lexer) stateFn {
-	switch r := lx.next(); {
-	case r == keySep:
-		return lexSkip(lx, lexValue)
-	case isWhitespace(r):
-		return lexSkip(lx, lexKeyEnd)
-	default:
-		return lx.errorf("expected key separator %q, but got %q instead",
-			keySep, r)
-	}
-}
-
-// lexValue starts the consumption of a value anywhere a value is expected.
-// lexValue will ignore whitespace.
-// After a value is lexed, the last state on the next is popped and returned.
-func lexValue(lx *lexer) stateFn {
-	// We allow whitespace to precede a value, but NOT newlines.
-	// In array syntax, the array states are responsible for ignoring newlines.
-	r := lx.next()
-	switch {
-	case isWhitespace(r):
-		return lexSkip(lx, lexValue)
-	case isDigit(r):
-		lx.backup() // avoid an extra state and use the same as above
-		return lexNumberOrDateStart
-	}
-	switch r {
-	case arrayStart:
-		lx.ignore()
-		lx.emit(itemArray)
-		return lexArrayValue
-	case inlineTableStart:
-		lx.ignore()
-		lx.emit(itemInlineTableStart)
-		return lexInlineTableValue
-	case stringStart:
-		if lx.accept(stringStart) {
-			if lx.accept(stringStart) {
-				lx.ignore() // Ignore """
-				return lexMultilineString
-			}
-			lx.backup()
-		}
-		lx.ignore() // ignore the '"'
-		return lexString
-	case rawStringStart:
-		if lx.accept(rawStringStart) {
-			if lx.accept(rawStringStart) {
-				lx.ignore() // Ignore """
-				return lexMultilineRawString
-			}
-			lx.backup()
-		}
-		lx.ignore() // ignore the "'"
-		return lexRawString
-	case '+', '-':
-		return lexNumberStart
-	case '.': // special error case, be kind to users
-		return lx.errorf("floats must start with a digit, not '.'")
-	}
-	if unicode.IsLetter(r) {
-		// Be permissive here; lexBool will give a nice error if the
-		// user wrote something like
-		//   x = foo
-		// (i.e. not 'true' or 'false' but is something else word-like.)
-		lx.backup()
-		return lexBool
-	}
-	return lx.errorf("expected value but found %q instead", r)
-}
-
-// lexArrayValue consumes one value in an array. It assumes that '[' or ','
-// have already been consumed. All whitespace and newlines are ignored.
-func lexArrayValue(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case isWhitespace(r) || isNL(r):
-		return lexSkip(lx, lexArrayValue)
-	case r == commentStart:
-		lx.push(lexArrayValue)
-		return lexCommentStart
-	case r == comma:
-		return lx.errorf("unexpected comma")
-	case r == arrayEnd:
-		// NOTE(caleb): The spec isn't clear about whether you can have
-		// a trailing comma or not, so we'll allow it.
-		return lexArrayEnd
-	}
-
-	lx.backup()
-	lx.push(lexArrayValueEnd)
-	return lexValue
-}
-
-// lexArrayValueEnd consumes everything between the end of an array value and
-// the next value (or the end of the array): it ignores whitespace and newlines
-// and expects either a ',' or a ']'.
-func lexArrayValueEnd(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case isWhitespace(r) || isNL(r):
-		return lexSkip(lx, lexArrayValueEnd)
-	case r == commentStart:
-		lx.push(lexArrayValueEnd)
-		return lexCommentStart
-	case r == comma:
-		lx.ignore()
-		return lexArrayValue // move on to the next value
-	case r == arrayEnd:
-		return lexArrayEnd
-	}
-	return lx.errorf(
-		"expected a comma or array terminator %q, but got %q instead",
-		arrayEnd, r,
-	)
-}
-
-// lexArrayEnd finishes the lexing of an array.
-// It assumes that a ']' has just been consumed.
-func lexArrayEnd(lx *lexer) stateFn {
-	lx.ignore()
-	lx.emit(itemArrayEnd)
-	return lx.pop()
-}
-
-// lexInlineTableValue consumes one key/value pair in an inline table.
-// It assumes that '{' or ',' have already been consumed. Whitespace is ignored.
-func lexInlineTableValue(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case isWhitespace(r):
-		return lexSkip(lx, lexInlineTableValue)
-	case isNL(r):
-		return lx.errorf("newlines not allowed within inline tables")
-	case r == commentStart:
-		lx.push(lexInlineTableValue)
-		return lexCommentStart
-	case r == comma:
-		return lx.errorf("unexpected comma")
-	case r == inlineTableEnd:
-		return lexInlineTableEnd
-	}
-	lx.backup()
-	lx.push(lexInlineTableValueEnd)
-	return lexKeyStart
-}
-
-// lexInlineTableValueEnd consumes everything between the end of an inline table
-// key/value pair and the next pair (or the end of the table):
-// it ignores whitespace and expects either a ',' or a '}'.
-func lexInlineTableValueEnd(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case isWhitespace(r):
-		return lexSkip(lx, lexInlineTableValueEnd)
-	case isNL(r):
-		return lx.errorf("newlines not allowed within inline tables")
-	case r == commentStart:
-		lx.push(lexInlineTableValueEnd)
-		return lexCommentStart
-	case r == comma:
-		lx.ignore()
-		return lexInlineTableValue
-	case r == inlineTableEnd:
-		return lexInlineTableEnd
-	}
-	return lx.errorf("expected a comma or an inline table terminator %q, "+
-		"but got %q instead", inlineTableEnd, r)
-}
-
-// lexInlineTableEnd finishes the lexing of an inline table.
-// It assumes that a '}' has just been consumed.
-func lexInlineTableEnd(lx *lexer) stateFn {
-	lx.ignore()
-	lx.emit(itemInlineTableEnd)
-	return lx.pop()
-}
-
-// lexString consumes the inner contents of a string. It assumes that the
-// beginning '"' has already been consumed and ignored.
-func lexString(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case r == eof:
-		return lx.errorf("unexpected EOF")
-	case isNL(r):
-		return lx.errorf("strings cannot contain newlines")
-	case r == '\\':
-		lx.push(lexString)
-		return lexStringEscape
-	case r == stringEnd:
-		lx.backup()
-		lx.emit(itemString)
-		lx.next()
-		lx.ignore()
-		return lx.pop()
-	}
-	return lexString
-}
-
-// lexMultilineString consumes the inner contents of a string. It assumes that
-// the beginning '"""' has already been consumed and ignored.
-func lexMultilineString(lx *lexer) stateFn {
-	switch lx.next() {
-	case eof:
-		return lx.errorf("unexpected EOF")
-	case '\\':
-		return lexMultilineStringEscape
-	case stringEnd:
-		if lx.accept(stringEnd) {
-			if lx.accept(stringEnd) {
-				lx.backup()
-				lx.backup()
-				lx.backup()
-				lx.emit(itemMultilineString)
-				lx.next()
-				lx.next()
-				lx.next()
-				lx.ignore()
-				return lx.pop()
-			}
-			lx.backup()
-		}
-	}
-	return lexMultilineString
-}
-
-// lexRawString consumes a raw string. Nothing can be escaped in such a string.
-// It assumes that the beginning "'" has already been consumed and ignored.
-func lexRawString(lx *lexer) stateFn {
-	r := lx.next()
-	switch {
-	case r == eof:
-		return lx.errorf("unexpected EOF")
-	case isNL(r):
-		return lx.errorf("strings cannot contain newlines")
-	case r == rawStringEnd:
-		lx.backup()
-		lx.emit(itemRawString)
-		lx.next()
-		lx.ignore()
-		return lx.pop()
-	}
-	return lexRawString
-}
-
-// lexMultilineRawString consumes a raw string. Nothing can be escaped in such
-// a string. It assumes that the beginning "'''" has already been consumed and
-// ignored.
-func lexMultilineRawString(lx *lexer) stateFn {
-	switch lx.next() {
-	case eof:
-		return lx.errorf("unexpected EOF")
-	case rawStringEnd:
-		if lx.accept(rawStringEnd) {
-			if lx.accept(rawStringEnd) {
-				lx.backup()
-				lx.backup()
-				lx.backup()
-				lx.emit(itemRawMultilineString)
-				lx.next()
-				lx.next()
-				lx.next()
-				lx.ignore()
-				return lx.pop()
-			}
-			lx.backup()
-		}
-	}
-	return lexMultilineRawString
-}
-
-// lexMultilineStringEscape consumes an escaped character. It assumes that the
-// preceding '\\' has already been consumed.
-func lexMultilineStringEscape(lx *lexer) stateFn {
-	// Handle the special case first:
-	if isNL(lx.next()) {
-		return lexMultilineString
-	}
-	lx.backup()
-	lx.push(lexMultilineString)
-	return lexStringEscape(lx)
-}
-
-func lexStringEscape(lx *lexer) stateFn {
-	r := lx.next()
-	switch r {
-	case 'b':
-		fallthrough
-	case 't':
-		fallthrough
-	case 'n':
-		fallthrough
-	case 'f':
-		fallthrough
-	case 'r':
-		fallthrough
-	case '"':
-		fallthrough
-	case '\\':
-		return lx.pop()
-	case 'u':
-		return lexShortUnicodeEscape
-	case 'U':
-		return lexLongUnicodeEscape
-	}
-	return lx.errorf("invalid escape character %q; only the following "+
-		"escape characters are allowed: "+
-		`\b, \t, \n, \f, \r, \", \\, \uXXXX, and \UXXXXXXXX`, r)
-}
-
-func lexShortUnicodeEscape(lx *lexer) stateFn {
-	var r rune
-	for i := 0; i < 4; i++ {
-		r = lx.next()
-		if !isHexadecimal(r) {
-			return lx.errorf(`expected four hexadecimal digits after '\u', `+
-				"but got %q instead", lx.current())
-		}
-	}
-	return lx.pop()
-}
-
-func lexLongUnicodeEscape(lx *lexer) stateFn {
-	var r rune
-	for i := 0; i < 8; i++ {
-		r = lx.next()
-		if !isHexadecimal(r) {
-			return lx.errorf(`expected eight hexadecimal digits after '\U', `+
-				"but got %q instead", lx.current())
-		}
-	}
-	return lx.pop()
-}
-
-// lexNumberOrDateStart consumes either an integer, a float, or datetime.
-func lexNumberOrDateStart(lx *lexer) stateFn {
-	r := lx.next()
-	if isDigit(r) {
-		return lexNumberOrDate
-	}
-	switch r {
-	case '_':
-		return lexNumber
-	case 'e', 'E':
-		return lexFloat
-	case '.':
-		return lx.errorf("floats must start with a digit, not '.'")
-	}
-	return lx.errorf("expected a digit but got %q", r)
-}
-
-// lexNumberOrDate consumes either an integer, float or datetime.
-func lexNumberOrDate(lx *lexer) stateFn {
-	r := lx.next()
-	if isDigit(r) {
-		return lexNumberOrDate
-	}
-	switch r {
-	case '-':
-		return lexDatetime
-	case '_':
-		return lexNumber
-	case '.', 'e', 'E':
-		return lexFloat
-	}
-
-	lx.backup()
-	lx.emit(itemInteger)
-	return lx.pop()
-}
-
-// lexDatetime consumes a Datetime, to a first approximation.
-// The parser validates that it matches one of the accepted formats.
-func lexDatetime(lx *lexer) stateFn {
-	r := lx.next()
-	if isDigit(r) {
-		return lexDatetime
-	}
-	switch r {
-	case '-', 'T', ':', '.', 'Z':
-		return lexDatetime
-	}
-
-	lx.backup()
-	lx.emit(itemDatetime)
-	return lx.pop()
-}
-
-// lexNumberStart consumes either an integer or a float. It assumes that a sign
-// has already been read, but that *no* digits have been consumed.
-// lexNumberStart will move to the appropriate integer or float states.
-func lexNumberStart(lx *lexer) stateFn {
-	// We MUST see a digit. Even floats have to start with a digit.
-	r := lx.next()
-	if !isDigit(r) {
-		if r == '.' {
-			return lx.errorf("floats must start with a digit, not '.'")
-		}
-		return lx.errorf("expected a digit but got %q", r)
-	}
-	return lexNumber
-}
-
-// lexNumber consumes an integer or a float after seeing the first digit.
-func lexNumber(lx *lexer) stateFn {
-	r := lx.next()
-	if isDigit(r) {
-		return lexNumber
-	}
-	switch r {
-	case '_':
-		return lexNumber
-	case '.', 'e', 'E':
-		return lexFloat
-	}
-
-	lx.backup()
-	lx.emit(itemInteger)
-	return lx.pop()
-}
-
-// lexFloat consumes the elements of a float. It allows any sequence of
-// float-like characters, so floats emitted by the lexer are only a first
-// approximation and must be validated by the parser.
-func lexFloat(lx *lexer) stateFn {
-	r := lx.next()
-	if isDigit(r) {
-		return lexFloat
-	}
-	switch r {
-	case '_', '.', '-', '+', 'e', 'E':
-		return lexFloat
-	}
-
-	lx.backup()
-	lx.emit(itemFloat)
-	return lx.pop()
-}
-
-// lexBool consumes a bool string: 'true' or 'false.
-func lexBool(lx *lexer) stateFn {
-	var rs []rune
-	for {
-		r := lx.next()
-		if !unicode.IsLetter(r) {
-			lx.backup()
-			break
-		}
-		rs = append(rs, r)
-	}
-	s := string(rs)
-	switch s {
-	case "true", "false":
-		lx.emit(itemBool)
-		return lx.pop()
-	}
-	return lx.errorf("expected value but found %q instead", s)
-}
-
-// lexCommentStart begins the lexing of a comment. It will emit
-// itemCommentStart and consume no characters, passing control to lexComment.
-func lexCommentStart(lx *lexer) stateFn {
-	lx.ignore()
-	lx.emit(itemCommentStart)
-	return lexComment
-}
-
-// lexComment lexes an entire comment. It assumes that '#' has been consumed.
-// It will consume *up to* the first newline character, and pass control
-// back to the last state on the stack.
-func lexComment(lx *lexer) stateFn {
-	r := lx.peek()
-	if isNL(r) || r == eof {
-		lx.emit(itemText)
-		return lx.pop()
-	}
-	lx.next()
-	return lexComment
-}
-
-// lexSkip ignores all slurped input and moves on to the next state.
-func lexSkip(lx *lexer, nextState stateFn) stateFn {
-	return func(lx *lexer) stateFn {
-		lx.ignore()
-		return nextState
-	}
-}
-
-// isWhitespace returns true if `r` is a whitespace character according
-// to the spec.
-func isWhitespace(r rune) bool {
-	return r == '\t' || r == ' '
-}
-
-func isNL(r rune) bool {
-	return r == '\n' || r == '\r'
-}
-
-func isDigit(r rune) bool {
-	return r >= '0' && r <= '9'
-}
-
-func isHexadecimal(r rune) bool {
-	return (r >= '0' && r <= '9') ||
-		(r >= 'a' && r <= 'f') ||
-		(r >= 'A' && r <= 'F')
-}
-
-func isBareKeyChar(r rune) bool {
-	return (r >= 'A' && r <= 'Z') ||
-		(r >= 'a' && r <= 'z') ||
-		(r >= '0' && r <= '9') ||
-		r == '_' ||
-		r == '-'
-}
-
-func (itype itemType) String() string {
-	switch itype {
-	case itemError:
-		return "Error"
-	case itemNIL:
-		return "NIL"
-	case itemEOF:
-		return "EOF"
-	case itemText:
-		return "Text"
-	case itemString, itemRawString, itemMultilineString, itemRawMultilineString:
-		return "String"
-	case itemBool:
-		return "Bool"
-	case itemInteger:
-		return "Integer"
-	case itemFloat:
-		return "Float"
-	case itemDatetime:
-		return "DateTime"
-	case itemTableStart:
-		return "TableStart"
-	case itemTableEnd:
-		return "TableEnd"
-	case itemKeyStart:
-		return "KeyStart"
-	case itemArray:
-		return "Array"
-	case itemArrayEnd:
-		return "ArrayEnd"
-	case itemCommentStart:
-		return "CommentStart"
-	}
-	panic(fmt.Sprintf("BUG: Unknown type '%d'.", int(itype)))
-}
-
-func (item item) String() string {
-	return fmt.Sprintf("(%s, %s)", item.typ.String(), item.val)
-}
diff --git a/vendor/github.com/BurntSushi/toml/parse.go b/vendor/github.com/BurntSushi/toml/parse.go
deleted file mode 100644
index 50869ef926..0000000000
--- a/vendor/github.com/BurntSushi/toml/parse.go
+++ /dev/null
@@ -1,592 +0,0 @@
-package toml
-
-import (
-	"fmt"
-	"strconv"
-	"strings"
-	"time"
-	"unicode"
-	"unicode/utf8"
-)
-
-type parser struct {
-	mapping map[string]interface{}
-	types   map[string]tomlType
-	lx      *lexer
-
-	// A list of keys in the order that they appear in the TOML data.
-	ordered []Key
-
-	// the full key for the current hash in scope
-	context Key
-
-	// the base key name for everything except hashes
-	currentKey string
-
-	// rough approximation of line number
-	approxLine int
-
-	// A map of 'key.group.names' to whether they were created implicitly.
-	implicits map[string]bool
-}
-
-type parseError string
-
-func (pe parseError) Error() string {
-	return string(pe)
-}
-
-func parse(data string) (p *parser, err error) {
-	defer func() {
-		if r := recover(); r != nil {
-			var ok bool
-			if err, ok = r.(parseError); ok {
-				return
-			}
-			panic(r)
-		}
-	}()
-
-	p = &parser{
-		mapping:   make(map[string]interface{}),
-		types:     make(map[string]tomlType),
-		lx:        lex(data),
-		ordered:   make([]Key, 0),
-		implicits: make(map[string]bool),
-	}
-	for {
-		item := p.next()
-		if item.typ == itemEOF {
-			break
-		}
-		p.topLevel(item)
-	}
-
-	return p, nil
-}
-
-func (p *parser) panicf(format string, v ...interface{}) {
-	msg := fmt.Sprintf("Near line %d (last key parsed '%s'): %s",
-		p.approxLine, p.current(), fmt.Sprintf(format, v...))
-	panic(parseError(msg))
-}
-
-func (p *parser) next() item {
-	it := p.lx.nextItem()
-	if it.typ == itemError {
-		p.panicf("%s", it.val)
-	}
-	return it
-}
-
-func (p *parser) bug(format string, v ...interface{}) {
-	panic(fmt.Sprintf("BUG: "+format+"\n\n", v...))
-}
-
-func (p *parser) expect(typ itemType) item {
-	it := p.next()
-	p.assertEqual(typ, it.typ)
-	return it
-}
-
-func (p *parser) assertEqual(expected, got itemType) {
-	if expected != got {
-		p.bug("Expected '%s' but got '%s'.", expected, got)
-	}
-}
-
-func (p *parser) topLevel(item item) {
-	switch item.typ {
-	case itemCommentStart:
-		p.approxLine = item.line
-		p.expect(itemText)
-	case itemTableStart:
-		kg := p.next()
-		p.approxLine = kg.line
-
-		var key Key
-		for ; kg.typ != itemTableEnd && kg.typ != itemEOF; kg = p.next() {
-			key = append(key, p.keyString(kg))
-		}
-		p.assertEqual(itemTableEnd, kg.typ)
-
-		p.establishContext(key, false)
-		p.setType("", tomlHash)
-		p.ordered = append(p.ordered, key)
-	case itemArrayTableStart:
-		kg := p.next()
-		p.approxLine = kg.line
-
-		var key Key
-		for ; kg.typ != itemArrayTableEnd && kg.typ != itemEOF; kg = p.next() {
-			key = append(key, p.keyString(kg))
-		}
-		p.assertEqual(itemArrayTableEnd, kg.typ)
-
-		p.establishContext(key, true)
-		p.setType("", tomlArrayHash)
-		p.ordered = append(p.ordered, key)
-	case itemKeyStart:
-		kname := p.next()
-		p.approxLine = kname.line
-		p.currentKey = p.keyString(kname)
-
-		val, typ := p.value(p.next())
-		p.setValue(p.currentKey, val)
-		p.setType(p.currentKey, typ)
-		p.ordered = append(p.ordered, p.context.add(p.currentKey))
-		p.currentKey = ""
-	default:
-		p.bug("Unexpected type at top level: %s", item.typ)
-	}
-}
-
-// Gets a string for a key (or part of a key in a table name).
-func (p *parser) keyString(it item) string {
-	switch it.typ {
-	case itemText:
-		return it.val
-	case itemString, itemMultilineString,
-		itemRawString, itemRawMultilineString:
-		s, _ := p.value(it)
-		return s.(string)
-	default:
-		p.bug("Unexpected key type: %s", it.typ)
-		panic("unreachable")
-	}
-}
-
-// value translates an expected value from the lexer into a Go value wrapped
-// as an empty interface.
-func (p *parser) value(it item) (interface{}, tomlType) {
-	switch it.typ {
-	case itemString:
-		return p.replaceEscapes(it.val), p.typeOfPrimitive(it)
-	case itemMultilineString:
-		trimmed := stripFirstNewline(stripEscapedWhitespace(it.val))
-		return p.replaceEscapes(trimmed), p.typeOfPrimitive(it)
-	case itemRawString:
-		return it.val, p.typeOfPrimitive(it)
-	case itemRawMultilineString:
-		return stripFirstNewline(it.val), p.typeOfPrimitive(it)
-	case itemBool:
-		switch it.val {
-		case "true":
-			return true, p.typeOfPrimitive(it)
-		case "false":
-			return false, p.typeOfPrimitive(it)
-		}
-		p.bug("Expected boolean value, but got '%s'.", it.val)
-	case itemInteger:
-		if !numUnderscoresOK(it.val) {
-			p.panicf("Invalid integer %q: underscores must be surrounded by digits",
-				it.val)
-		}
-		val := strings.Replace(it.val, "_", "", -1)
-		num, err := strconv.ParseInt(val, 10, 64)
-		if err != nil {
-			// Distinguish integer values. Normally, it'd be a bug if the lexer
-			// provides an invalid integer, but it's possible that the number is
-			// out of range of valid values (which the lexer cannot determine).
-			// So mark the former as a bug but the latter as a legitimate user
-			// error.
-			if e, ok := err.(*strconv.NumError); ok &&
-				e.Err == strconv.ErrRange {
-
-				p.panicf("Integer '%s' is out of the range of 64-bit "+
-					"signed integers.", it.val)
-			} else {
-				p.bug("Expected integer value, but got '%s'.", it.val)
-			}
-		}
-		return num, p.typeOfPrimitive(it)
-	case itemFloat:
-		parts := strings.FieldsFunc(it.val, func(r rune) bool {
-			switch r {
-			case '.', 'e', 'E':
-				return true
-			}
-			return false
-		})
-		for _, part := range parts {
-			if !numUnderscoresOK(part) {
-				p.panicf("Invalid float %q: underscores must be "+
-					"surrounded by digits", it.val)
-			}
-		}
-		if !numPeriodsOK(it.val) {
-			// As a special case, numbers like '123.' or '1.e2',
-			// which are valid as far as Go/strconv are concerned,
-			// must be rejected because TOML says that a fractional
-			// part consists of '.' followed by 1+ digits.
-			p.panicf("Invalid float %q: '.' must be followed "+
-				"by one or more digits", it.val)
-		}
-		val := strings.Replace(it.val, "_", "", -1)
-		num, err := strconv.ParseFloat(val, 64)
-		if err != nil {
-			if e, ok := err.(*strconv.NumError); ok &&
-				e.Err == strconv.ErrRange {
-
-				p.panicf("Float '%s' is out of the range of 64-bit "+
-					"IEEE-754 floating-point numbers.", it.val)
-			} else {
-				p.panicf("Invalid float value: %q", it.val)
-			}
-		}
-		return num, p.typeOfPrimitive(it)
-	case itemDatetime:
-		var t time.Time
-		var ok bool
-		var err error
-		for _, format := range []string{
-			"2006-01-02T15:04:05Z07:00",
-			"2006-01-02T15:04:05",
-			"2006-01-02",
-		} {
-			t, err = time.ParseInLocation(format, it.val, time.Local)
-			if err == nil {
-				ok = true
-				break
-			}
-		}
-		if !ok {
-			p.panicf("Invalid TOML Datetime: %q.", it.val)
-		}
-		return t, p.typeOfPrimitive(it)
-	case itemArray:
-		array := make([]interface{}, 0)
-		types := make([]tomlType, 0)
-
-		for it = p.next(); it.typ != itemArrayEnd; it = p.next() {
-			if it.typ == itemCommentStart {
-				p.expect(itemText)
-				continue
-			}
-
-			val, typ := p.value(it)
-			array = append(array, val)
-			types = append(types, typ)
-		}
-		return array, p.typeOfArray(types)
-	case itemInlineTableStart:
-		var (
-			hash         = make(map[string]interface{})
-			outerContext = p.context
-			outerKey     = p.currentKey
-		)
-
-		p.context = append(p.context, p.currentKey)
-		p.currentKey = ""
-		for it := p.next(); it.typ != itemInlineTableEnd; it = p.next() {
-			if it.typ != itemKeyStart {
-				p.bug("Expected key start but instead found %q, around line %d",
-					it.val, p.approxLine)
-			}
-			if it.typ == itemCommentStart {
-				p.expect(itemText)
-				continue
-			}
-
-			// retrieve key
-			k := p.next()
-			p.approxLine = k.line
-			kname := p.keyString(k)
-
-			// retrieve value
-			p.currentKey = kname
-			val, typ := p.value(p.next())
-			// make sure we keep metadata up to date
-			p.setType(kname, typ)
-			p.ordered = append(p.ordered, p.context.add(p.currentKey))
-			hash[kname] = val
-		}
-		p.context = outerContext
-		p.currentKey = outerKey
-		return hash, tomlHash
-	}
-	p.bug("Unexpected value type: %s", it.typ)
-	panic("unreachable")
-}
-
-// numUnderscoresOK checks whether each underscore in s is surrounded by
-// characters that are not underscores.
-func numUnderscoresOK(s string) bool {
-	accept := false
-	for _, r := range s {
-		if r == '_' {
-			if !accept {
-				return false
-			}
-			accept = false
-			continue
-		}
-		accept = true
-	}
-	return accept
-}
-
-// numPeriodsOK checks whether every period in s is followed by a digit.
-func numPeriodsOK(s string) bool {
-	period := false
-	for _, r := range s {
-		if period && !isDigit(r) {
-			return false
-		}
-		period = r == '.'
-	}
-	return !period
-}
-
-// establishContext sets the current context of the parser,
-// where the context is either a hash or an array of hashes. Which one is
-// set depends on the value of the `array` parameter.
-//
-// Establishing the context also makes sure that the key isn't a duplicate, and
-// will create implicit hashes automatically.
-func (p *parser) establishContext(key Key, array bool) {
-	var ok bool
-
-	// Always start at the top level and drill down for our context.
-	hashContext := p.mapping
-	keyContext := make(Key, 0)
-
-	// We only need implicit hashes for key[0:-1]
-	for _, k := range key[0 : len(key)-1] {
-		_, ok = hashContext[k]
-		keyContext = append(keyContext, k)
-
-		// No key? Make an implicit hash and move on.
-		if !ok {
-			p.addImplicit(keyContext)
-			hashContext[k] = make(map[string]interface{})
-		}
-
-		// If the hash context is actually an array of tables, then set
-		// the hash context to the last element in that array.
-		//
-		// Otherwise, it better be a table, since this MUST be a key group (by
-		// virtue of it not being the last element in a key).
-		switch t := hashContext[k].(type) {
-		case []map[string]interface{}:
-			hashContext = t[len(t)-1]
-		case map[string]interface{}:
-			hashContext = t
-		default:
-			p.panicf("Key '%s' was already created as a hash.", keyContext)
-		}
-	}
-
-	p.context = keyContext
-	if array {
-		// If this is the first element for this array, then allocate a new
-		// list of tables for it.
-		k := key[len(key)-1]
-		if _, ok := hashContext[k]; !ok {
-			hashContext[k] = make([]map[string]interface{}, 0, 5)
-		}
-
-		// Add a new table. But make sure the key hasn't already been used
-		// for something else.
-		if hash, ok := hashContext[k].([]map[string]interface{}); ok {
-			hashContext[k] = append(hash, make(map[string]interface{}))
-		} else {
-			p.panicf("Key '%s' was already created and cannot be used as "+
-				"an array.", keyContext)
-		}
-	} else {
-		p.setValue(key[len(key)-1], make(map[string]interface{}))
-	}
-	p.context = append(p.context, key[len(key)-1])
-}
-
-// setValue sets the given key to the given value in the current context.
-// It will make sure that the key hasn't already been defined, account for
-// implicit key groups.
-func (p *parser) setValue(key string, value interface{}) {
-	var tmpHash interface{}
-	var ok bool
-
-	hash := p.mapping
-	keyContext := make(Key, 0)
-	for _, k := range p.context {
-		keyContext = append(keyContext, k)
-		if tmpHash, ok = hash[k]; !ok {
-			p.bug("Context for key '%s' has not been established.", keyContext)
-		}
-		switch t := tmpHash.(type) {
-		case []map[string]interface{}:
-			// The context is a table of hashes. Pick the most recent table
-			// defined as the current hash.
-			hash = t[len(t)-1]
-		case map[string]interface{}:
-			hash = t
-		default:
-			p.bug("Expected hash to have type 'map[string]interface{}', but "+
-				"it has '%T' instead.", tmpHash)
-		}
-	}
-	keyContext = append(keyContext, key)
-
-	if _, ok := hash[key]; ok {
-		// Typically, if the given key has already been set, then we have
-		// to raise an error since duplicate keys are disallowed. However,
-		// it's possible that a key was previously defined implicitly. In this
-		// case, it is allowed to be redefined concretely. (See the
-		// `tests/valid/implicit-and-explicit-after.toml` test in `toml-test`.)
-		//
-		// But we have to make sure to stop marking it as an implicit. (So that
-		// another redefinition provokes an error.)
-		//
-		// Note that since it has already been defined (as a hash), we don't
-		// want to overwrite it. So our business is done.
-		if p.isImplicit(keyContext) {
-			p.removeImplicit(keyContext)
-			return
-		}
-
-		// Otherwise, we have a concrete key trying to override a previous
-		// key, which is *always* wrong.
-		p.panicf("Key '%s' has already been defined.", keyContext)
-	}
-	hash[key] = value
-}
-
-// setType sets the type of a particular value at a given key.
-// It should be called immediately AFTER setValue.
-//
-// Note that if `key` is empty, then the type given will be applied to the
-// current context (which is either a table or an array of tables).
-func (p *parser) setType(key string, typ tomlType) {
-	keyContext := make(Key, 0, len(p.context)+1)
-	for _, k := range p.context {
-		keyContext = append(keyContext, k)
-	}
-	if len(key) > 0 { // allow type setting for hashes
-		keyContext = append(keyContext, key)
-	}
-	p.types[keyContext.String()] = typ
-}
-
-// addImplicit sets the given Key as having been created implicitly.
-func (p *parser) addImplicit(key Key) {
-	p.implicits[key.String()] = true
-}
-
-// removeImplicit stops tagging the given key as having been implicitly
-// created.
-func (p *parser) removeImplicit(key Key) {
-	p.implicits[key.String()] = false
-}
-
-// isImplicit returns true if the key group pointed to by the key was created
-// implicitly.
-func (p *parser) isImplicit(key Key) bool {
-	return p.implicits[key.String()]
-}
-
-// current returns the full key name of the current context.
-func (p *parser) current() string {
-	if len(p.currentKey) == 0 {
-		return p.context.String()
-	}
-	if len(p.context) == 0 {
-		return p.currentKey
-	}
-	return fmt.Sprintf("%s.%s", p.context, p.currentKey)
-}
-
-func stripFirstNewline(s string) string {
-	if len(s) == 0 || s[0] != '\n' {
-		return s
-	}
-	return s[1:]
-}
-
-func stripEscapedWhitespace(s string) string {
-	esc := strings.Split(s, "\\\n")
-	if len(esc) > 1 {
-		for i := 1; i < len(esc); i++ {
-			esc[i] = strings.TrimLeftFunc(esc[i], unicode.IsSpace)
-		}
-	}
-	return strings.Join(esc, "")
-}
-
-func (p *parser) replaceEscapes(str string) string {
-	var replaced []rune
-	s := []byte(str)
-	r := 0
-	for r < len(s) {
-		if s[r] != '\\' {
-			c, size := utf8.DecodeRune(s[r:])
-			r += size
-			replaced = append(replaced, c)
-			continue
-		}
-		r += 1
-		if r >= len(s) {
-			p.bug("Escape sequence at end of string.")
-			return ""
-		}
-		switch s[r] {
-		default:
-			p.bug("Expected valid escape code after \\, but got %q.", s[r])
-			return ""
-		case 'b':
-			replaced = append(replaced, rune(0x0008))
-			r += 1
-		case 't':
-			replaced = append(replaced, rune(0x0009))
-			r += 1
-		case 'n':
-			replaced = append(replaced, rune(0x000A))
-			r += 1
-		case 'f':
-			replaced = append(replaced, rune(0x000C))
-			r += 1
-		case 'r':
-			replaced = append(replaced, rune(0x000D))
-			r += 1
-		case '"':
-			replaced = append(replaced, rune(0x0022))
-			r += 1
-		case '\\':
-			replaced = append(replaced, rune(0x005C))
-			r += 1
-		case 'u':
-			// At this point, we know we have a Unicode escape of the form
-			// `uXXXX` at [r, r+5). (Because the lexer guarantees this
-			// for us.)
-			escaped := p.asciiEscapeToUnicode(s[r+1 : r+5])
-			replaced = append(replaced, escaped)
-			r += 5
-		case 'U':
-			// At this point, we know we have a Unicode escape of the form
-			// `uXXXX` at [r, r+9). (Because the lexer guarantees this
-			// for us.)
-			escaped := p.asciiEscapeToUnicode(s[r+1 : r+9])
-			replaced = append(replaced, escaped)
-			r += 9
-		}
-	}
-	return string(replaced)
-}
-
-func (p *parser) asciiEscapeToUnicode(bs []byte) rune {
-	s := string(bs)
-	hex, err := strconv.ParseUint(strings.ToLower(s), 16, 32)
-	if err != nil {
-		p.bug("Could not parse '%s' as a hexadecimal number, but the "+
-			"lexer claims it's OK: %s", s, err)
-	}
-	if !utf8.ValidRune(rune(hex)) {
-		p.panicf("Escaped character '\\u%s' is not valid UTF-8.", s)
-	}
-	return rune(hex)
-}
-
-func isStringType(ty itemType) bool {
-	return ty == itemString || ty == itemMultilineString ||
-		ty == itemRawString || ty == itemRawMultilineString
-}
diff --git a/vendor/github.com/BurntSushi/toml/type_check.go b/vendor/github.com/BurntSushi/toml/type_check.go
deleted file mode 100644
index c73f8afc1a..0000000000
--- a/vendor/github.com/BurntSushi/toml/type_check.go
+++ /dev/null
@@ -1,91 +0,0 @@
-package toml
-
-// tomlType represents any Go type that corresponds to a TOML type.
-// While the first draft of the TOML spec has a simplistic type system that
-// probably doesn't need this level of sophistication, we seem to be militating
-// toward adding real composite types.
-type tomlType interface {
-	typeString() string
-}
-
-// typeEqual accepts any two types and returns true if they are equal.
-func typeEqual(t1, t2 tomlType) bool {
-	if t1 == nil || t2 == nil {
-		return false
-	}
-	return t1.typeString() == t2.typeString()
-}
-
-func typeIsHash(t tomlType) bool {
-	return typeEqual(t, tomlHash) || typeEqual(t, tomlArrayHash)
-}
-
-type tomlBaseType string
-
-func (btype tomlBaseType) typeString() string {
-	return string(btype)
-}
-
-func (btype tomlBaseType) String() string {
-	return btype.typeString()
-}
-
-var (
-	tomlInteger   tomlBaseType = "Integer"
-	tomlFloat     tomlBaseType = "Float"
-	tomlDatetime  tomlBaseType = "Datetime"
-	tomlString    tomlBaseType = "String"
-	tomlBool      tomlBaseType = "Bool"
-	tomlArray     tomlBaseType = "Array"
-	tomlHash      tomlBaseType = "Hash"
-	tomlArrayHash tomlBaseType = "ArrayHash"
-)
-
-// typeOfPrimitive returns a tomlType of any primitive value in TOML.
-// Primitive values are: Integer, Float, Datetime, String and Bool.
-//
-// Passing a lexer item other than the following will cause a BUG message
-// to occur: itemString, itemBool, itemInteger, itemFloat, itemDatetime.
-func (p *parser) typeOfPrimitive(lexItem item) tomlType {
-	switch lexItem.typ {
-	case itemInteger:
-		return tomlInteger
-	case itemFloat:
-		return tomlFloat
-	case itemDatetime:
-		return tomlDatetime
-	case itemString:
-		return tomlString
-	case itemMultilineString:
-		return tomlString
-	case itemRawString:
-		return tomlString
-	case itemRawMultilineString:
-		return tomlString
-	case itemBool:
-		return tomlBool
-	}
-	p.bug("Cannot infer primitive type of lex item '%s'.", lexItem)
-	panic("unreachable")
-}
-
-// typeOfArray returns a tomlType for an array given a list of types of its
-// values.
-//
-// In the current spec, if an array is homogeneous, then its type is always
-// "Array". If the array is not homogeneous, an error is generated.
-func (p *parser) typeOfArray(types []tomlType) tomlType {
-	// Empty arrays are cool.
-	if len(types) == 0 {
-		return tomlArray
-	}
-
-	theType := types[0]
-	for _, t := range types[1:] {
-		if !typeEqual(theType, t) {
-			p.panicf("Array contains values of type '%s' and '%s', but "+
-				"arrays must be homogeneous.", theType, t)
-		}
-	}
-	return tomlArray
-}
diff --git a/vendor/github.com/BurntSushi/toml/type_fields.go b/vendor/github.com/BurntSushi/toml/type_fields.go
deleted file mode 100644
index 608997c22f..0000000000
--- a/vendor/github.com/BurntSushi/toml/type_fields.go
+++ /dev/null
@@ -1,242 +0,0 @@
-package toml
-
-// Struct field handling is adapted from code in encoding/json:
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the Go distribution.
-
-import (
-	"reflect"
-	"sort"
-	"sync"
-)
-
-// A field represents a single field found in a struct.
-type field struct {
-	name  string       // the name of the field (`toml` tag included)
-	tag   bool         // whether field has a `toml` tag
-	index []int        // represents the depth of an anonymous field
-	typ   reflect.Type // the type of the field
-}
-
-// byName sorts field by name, breaking ties with depth,
-// then breaking ties with "name came from toml tag", then
-// breaking ties with index sequence.
-type byName []field
-
-func (x byName) Len() int { return len(x) }
-
-func (x byName) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
-
-func (x byName) Less(i, j int) bool {
-	if x[i].name != x[j].name {
-		return x[i].name < x[j].name
-	}
-	if len(x[i].index) != len(x[j].index) {
-		return len(x[i].index) < len(x[j].index)
-	}
-	if x[i].tag != x[j].tag {
-		return x[i].tag
-	}
-	return byIndex(x).Less(i, j)
-}
-
-// byIndex sorts field by index sequence.
-type byIndex []field
-
-func (x byIndex) Len() int { return len(x) }
-
-func (x byIndex) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
-
-func (x byIndex) Less(i, j int) bool {
-	for k, xik := range x[i].index {
-		if k >= len(x[j].index) {
-			return false
-		}
-		if xik != x[j].index[k] {
-			return xik < x[j].index[k]
-		}
-	}
-	return len(x[i].index) < len(x[j].index)
-}
-
-// typeFields returns a list of fields that TOML should recognize for the given
-// type. The algorithm is breadth-first search over the set of structs to
-// include - the top struct and then any reachable anonymous structs.
-func typeFields(t reflect.Type) []field {
-	// Anonymous fields to explore at the current level and the next.
-	current := []field{}
-	next := []field{{typ: t}}
-
-	// Count of queued names for current level and the next.
-	count := map[reflect.Type]int{}
-	nextCount := map[reflect.Type]int{}
-
-	// Types already visited at an earlier level.
-	visited := map[reflect.Type]bool{}
-
-	// Fields found.
-	var fields []field
-
-	for len(next) > 0 {
-		current, next = next, current[:0]
-		count, nextCount = nextCount, map[reflect.Type]int{}
-
-		for _, f := range current {
-			if visited[f.typ] {
-				continue
-			}
-			visited[f.typ] = true
-
-			// Scan f.typ for fields to include.
-			for i := 0; i < f.typ.NumField(); i++ {
-				sf := f.typ.Field(i)
-				if sf.PkgPath != "" && !sf.Anonymous { // unexported
-					continue
-				}
-				opts := getOptions(sf.Tag)
-				if opts.skip {
-					continue
-				}
-				index := make([]int, len(f.index)+1)
-				copy(index, f.index)
-				index[len(f.index)] = i
-
-				ft := sf.Type
-				if ft.Name() == "" && ft.Kind() == reflect.Ptr {
-					// Follow pointer.
-					ft = ft.Elem()
-				}
-
-				// Record found field and index sequence.
-				if opts.name != "" || !sf.Anonymous || ft.Kind() != reflect.Struct {
-					tagged := opts.name != ""
-					name := opts.name
-					if name == "" {
-						name = sf.Name
-					}
-					fields = append(fields, field{name, tagged, index, ft})
-					if count[f.typ] > 1 {
-						// If there were multiple instances, add a second,
-						// so that the annihilation code will see a duplicate.
-						// It only cares about the distinction between 1 or 2,
-						// so don't bother generating any more copies.
-						fields = append(fields, fields[len(fields)-1])
-					}
-					continue
-				}
-
-				// Record new anonymous struct to explore in next round.
-				nextCount[ft]++
-				if nextCount[ft] == 1 {
-					f := field{name: ft.Name(), index: index, typ: ft}
-					next = append(next, f)
-				}
-			}
-		}
-	}
-
-	sort.Sort(byName(fields))
-
-	// Delete all fields that are hidden by the Go rules for embedded fields,
-	// except that fields with TOML tags are promoted.
-
-	// The fields are sorted in primary order of name, secondary order
-	// of field index length. Loop over names; for each name, delete
-	// hidden fields by choosing the one dominant field that survives.
-	out := fields[:0]
-	for advance, i := 0, 0; i < len(fields); i += advance {
-		// One iteration per name.
-		// Find the sequence of fields with the name of this first field.
-		fi := fields[i]
-		name := fi.name
-		for advance = 1; i+advance < len(fields); advance++ {
-			fj := fields[i+advance]
-			if fj.name != name {
-				break
-			}
-		}
-		if advance == 1 { // Only one field with this name
-			out = append(out, fi)
-			continue
-		}
-		dominant, ok := dominantField(fields[i : i+advance])
-		if ok {
-			out = append(out, dominant)
-		}
-	}
-
-	fields = out
-	sort.Sort(byIndex(fields))
-
-	return fields
-}
-
-// dominantField looks through the fields, all of which are known to
-// have the same name, to find the single field that dominates the
-// others using Go's embedding rules, modified by the presence of
-// TOML tags. If there are multiple top-level fields, the boolean
-// will be false: This condition is an error in Go and we skip all
-// the fields.
-func dominantField(fields []field) (field, bool) {
-	// The fields are sorted in increasing index-length order. The winner
-	// must therefore be one with the shortest index length. Drop all
-	// longer entries, which is easy: just truncate the slice.
-	length := len(fields[0].index)
-	tagged := -1 // Index of first tagged field.
-	for i, f := range fields {
-		if len(f.index) > length {
-			fields = fields[:i]
-			break
-		}
-		if f.tag {
-			if tagged >= 0 {
-				// Multiple tagged fields at the same level: conflict.
-				// Return no field.
-				return field{}, false
-			}
-			tagged = i
-		}
-	}
-	if tagged >= 0 {
-		return fields[tagged], true
-	}
-	// All remaining fields have the same length. If there's more than one,
-	// we have a conflict (two fields named "X" at the same level) and we
-	// return no field.
-	if len(fields) > 1 {
-		return field{}, false
-	}
-	return fields[0], true
-}
-
-var fieldCache struct {
-	sync.RWMutex
-	m map[reflect.Type][]field
-}
-
-// cachedTypeFields is like typeFields but uses a cache to avoid repeated work.
-func cachedTypeFields(t reflect.Type) []field {
-	fieldCache.RLock()
-	f := fieldCache.m[t]
-	fieldCache.RUnlock()
-	if f != nil {
-		return f
-	}
-
-	// Compute fields without lock.
-	// Might duplicate effort but won't hold other computations back.
-	f = typeFields(t)
-	if f == nil {
-		f = []field{}
-	}
-
-	fieldCache.Lock()
-	if fieldCache.m == nil {
-		fieldCache.m = map[reflect.Type][]field{}
-	}
-	fieldCache.m[t] = f
-	fieldCache.Unlock()
-	return f
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/LICENSE b/vendor/github.com/GoogleContainerTools/container-diff/LICENSE
deleted file mode 100644
index d645695673..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go b/vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go
deleted file mode 100644
index c7c1623d65..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/cmd/util/output/output.go
+++ /dev/null
@@ -1,37 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package output
-
-import (
-	"fmt"
-	"github.com/spf13/cobra"
-	"os"
-)
-
-var quiet bool
-
-// PrintToStdErr prints to stderr if quiet flag isn't enabled
-func PrintToStdErr(output string, vars ...interface{}) {
-	if !quiet {
-		fmt.Fprintf(os.Stderr, output, vars...)
-	}
-}
-
-// AddFlags adds quiet flag to suppress output to stderr
-func AddFlags(cmd *cobra.Command) {
-	cmd.Flags().BoolVarP(&quiet, "quiet", "q", false, "Suppress output to stderr.")
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
deleted file mode 100644
index 8dd8c3e231..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/mutable_source.go
+++ /dev/null
@@ -1,262 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package image
-
-import (
-	"bytes"
-	"compress/gzip"
-	"encoding/json"
-	"github.com/containers/image/docker"
-	img "github.com/containers/image/image"
-	"github.com/containers/image/types"
-	"io"
-	"io/ioutil"
-	"strings"
-	"time"
-
-	"github.com/containers/image/manifest"
-	digest "github.com/opencontainers/go-digest"
-)
-
-type MutableSource struct {
-	ProxySource
-	mfst        *manifest.Schema2
-	cfg         *manifest.Schema2Image
-	extraBlobs  map[string][]byte
-	extraLayers []digest.Digest
-}
-
-func NewMutableSource(r types.ImageReference) (*MutableSource, error) {
-	if r == nil {
-		return MutableSourceFromScratch()
-	}
-	src, err := r.NewImageSource(nil)
-	if err != nil {
-		return nil, err
-	}
-	img, err := r.NewImage(nil)
-	if err != nil {
-		return nil, err
-	}
-
-	ms := &MutableSource{
-		ProxySource: ProxySource{
-			Ref:         r,
-			ImageSource: src,
-			img:         img,
-		},
-		extraBlobs: make(map[string][]byte),
-	}
-	if err := ms.populateManifestAndConfig(); err != nil {
-		return nil, err
-	}
-	return ms, nil
-}
-
-func MutableSourceFromScratch() (*MutableSource, error) {
-	config := &manifest.Schema2Image{
-		Schema2V1Image: manifest.Schema2V1Image{
-			Config: &manifest.Schema2Config{},
-		},
-		RootFS:  &manifest.Schema2RootFS{},
-		History: []manifest.Schema2History{},
-	}
-	ref, err := docker.ParseReference("//scratch")
-	if err != nil {
-		return nil, err
-	}
-	src, err := ref.NewImageSource(nil)
-	if err != nil {
-		return nil, err
-	}
-	ms := &MutableSource{
-		ProxySource: ProxySource{
-			Ref: &ProxyReference{
-				ImageReference: ref,
-			},
-			ImageSource: src,
-		},
-		extraBlobs: make(map[string][]byte),
-		cfg:        config,
-		mfst: &manifest.Schema2{
-			SchemaVersion: 2,
-			MediaType:     manifest.DockerV2Schema2MediaType,
-		},
-	}
-	return ms, nil
-}
-
-// Manifest marshals the stored manifest to the byte format.
-func (m *MutableSource) GetManifest(_ *digest.Digest) ([]byte, string, error) {
-	if err := m.saveConfig(); err != nil {
-		return nil, "", err
-	}
-	s, err := json.Marshal(m.mfst)
-	if err != nil {
-		return nil, "", err
-	}
-	return s, manifest.DockerV2Schema2MediaType, err
-}
-
-// populateManifestAndConfig parses the raw manifest and configs, storing them on the struct.
-func (m *MutableSource) populateManifestAndConfig() error {
-	context := &types.SystemContext{
-		OSChoice:           "linux",
-		ArchitectureChoice: "amd64",
-	}
-	image, err := m.ProxySource.Ref.NewImage(context)
-	if err != nil {
-		return err
-	}
-	defer image.Close()
-	// First get manifest
-	mfstBytes, mfstType, err := image.Manifest()
-	if err != nil {
-		return err
-	}
-
-	if mfstType == manifest.DockerV2ListMediaType {
-		// We need to select a manifest digest from the manifest list
-		unparsedImage := img.UnparsedInstance(m.ImageSource, nil)
-
-		mfstDigest, err := img.ChooseManifestInstanceFromManifestList(context, unparsedImage)
-		if err != nil {
-			return err
-		}
-		mfstBytes, _, err = m.ProxySource.GetManifest(&mfstDigest)
-		if err != nil {
-			return err
-		}
-	}
-
-	m.mfst, err = manifest.Schema2FromManifest(mfstBytes)
-	if err != nil {
-		return err
-	}
-
-	// Now, get config
-	configBlob, err := image.ConfigBlob()
-	if err != nil {
-		return err
-	}
-	return json.Unmarshal(configBlob, &m.cfg)
-}
-
-// GetBlob first checks the stored "extra" blobs, then proxies the call to the original source.
-func (m *MutableSource) GetBlob(bi types.BlobInfo) (io.ReadCloser, int64, error) {
-	if b, ok := m.extraBlobs[bi.Digest.String()]; ok {
-		return ioutil.NopCloser(bytes.NewReader(b)), int64(len(b)), nil
-	}
-	return m.ImageSource.GetBlob(bi)
-}
-
-func gzipBytes(b []byte) ([]byte, error) {
-	buf := bytes.NewBuffer([]byte{})
-	w := gzip.NewWriter(buf)
-	_, err := w.Write(b)
-	w.Close()
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// appendLayer appends an uncompressed blob to the image, preserving the invariants required across the config and manifest.
-func (m *MutableSource) AppendLayer(content []byte, author string) error {
-	compressedBlob, err := gzipBytes(content)
-	if err != nil {
-		return err
-	}
-
-	dgst := digest.FromBytes(compressedBlob)
-
-	// Add the layer to the manifest.
-	descriptor := manifest.Schema2Descriptor{
-		MediaType: manifest.DockerV2Schema2LayerMediaType,
-		Size:      int64(len(content)),
-		Digest:    dgst,
-	}
-	m.mfst.LayersDescriptors = append(m.mfst.LayersDescriptors, descriptor)
-
-	m.extraBlobs[dgst.String()] = compressedBlob
-	m.extraLayers = append(m.extraLayers, dgst)
-
-	// Also add it to the config.
-	diffID := digest.FromBytes(content)
-	m.cfg.RootFS.DiffIDs = append(m.cfg.RootFS.DiffIDs, diffID)
-	m.AppendConfigHistory(author, false)
-	return nil
-}
-
-// saveConfig marshals the stored image config, and updates the references to it in the manifest.
-func (m *MutableSource) saveConfig() error {
-	cfgBlob, err := json.Marshal(m.cfg)
-	if err != nil {
-		return err
-	}
-
-	cfgDigest := digest.FromBytes(cfgBlob)
-	m.extraBlobs[cfgDigest.String()] = cfgBlob
-	m.mfst.ConfigDescriptor = manifest.Schema2Descriptor{
-		MediaType: manifest.DockerV2Schema2ConfigMediaType,
-		Size:      int64(len(cfgBlob)),
-		Digest:    cfgDigest,
-	}
-	return nil
-}
-
-// Env returns a map of environment variables stored in the image config
-// Converts each variable from a string of the form KEY=VALUE to a map of KEY:VALUE
-func (m *MutableSource) Env() map[string]string {
-	envArray := m.cfg.Schema2V1Image.Config.Env
-	envMap := make(map[string]string)
-	for _, env := range envArray {
-		entry := strings.Split(env, "=")
-		envMap[entry[0]] = entry[1]
-	}
-	return envMap
-}
-
-// SetEnv takes a map of environment variables, and converts them to an array of strings
-// in the form KEY=VALUE, and then sets the image config
-func (m *MutableSource) SetEnv(envMap map[string]string, author string) {
-	envArray := []string{}
-	for key, value := range envMap {
-		entry := key + "=" + value
-		envArray = append(envArray, entry)
-	}
-	m.cfg.Schema2V1Image.Config.Env = envArray
-	m.AppendConfigHistory(author, true)
-}
-
-func (m *MutableSource) Config() *manifest.Schema2Config {
-	return m.cfg.Schema2V1Image.Config
-}
-
-func (m *MutableSource) SetConfig(config *manifest.Schema2Config, author string, emptyLayer bool) {
-	m.cfg.Schema2V1Image.Config = config
-	m.AppendConfigHistory(author, emptyLayer)
-}
-
-func (m *MutableSource) AppendConfigHistory(author string, emptyLayer bool) {
-	history := manifest.Schema2History{
-		Created:    time.Now(),
-		Author:     author,
-		EmptyLayer: emptyLayer,
-	}
-	m.cfg.History = append(m.cfg.History, history)
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/proxy_types.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/proxy_types.go
deleted file mode 100644
index 36e13b4b3b..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/image/proxy_types.go
+++ /dev/null
@@ -1,64 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package image
-
-import (
-	"github.com/containers/image/types"
-)
-
-// ProxySource is a type that implements types.ImageSource by proxying all calls to an underlying implementation.
-type ProxySource struct {
-	Ref types.ImageReference
-	types.ImageSource
-	img types.Image
-}
-
-func NewProxySource(ref types.ImageReference) (*ProxySource, error) {
-	src, err := ref.NewImageSource(nil)
-	if err != nil {
-		return nil, err
-	}
-	defer src.Close()
-	img, err := ref.NewImage(nil)
-	if err != nil {
-		return nil, err
-	}
-
-	return &ProxySource{
-		Ref:         ref,
-		img:         img,
-		ImageSource: src,
-	}, nil
-}
-
-func (p *ProxySource) Reference() types.ImageReference {
-	return p.Ref
-}
-
-func (p *ProxySource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
-
-// ProxyReference implements types.Reference by proxying calls to an underlying implementation.
-type ProxyReference struct {
-	types.ImageReference
-	Src types.ImageSource
-}
-
-func (p *ProxyReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return p.Src, nil
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/cloud_prepper.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/cloud_prepper.go
deleted file mode 100644
index e77655111e..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/cloud_prepper.go
+++ /dev/null
@@ -1,76 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"io/ioutil"
-	"strings"
-
-	"github.com/containers/image/docker"
-	"github.com/containers/image/types"
-	"github.com/docker/docker/client"
-)
-
-// CloudPrepper prepares images sourced from a Cloud registry
-type CloudPrepper struct {
-	Source      string
-	Client      *client.Client
-	ImageSource types.ImageSource
-}
-
-func (p *CloudPrepper) Name() string {
-	return "Cloud Registry"
-}
-
-func (p *CloudPrepper) GetSource() string {
-	return p.Source
-}
-
-func (p *CloudPrepper) SetSource(source string) {
-	p.Source = source
-}
-
-func (p *CloudPrepper) GetImage() (Image, error) {
-	image, err := getImage(p)
-	image.Type = ImageTypeCloud
-	return image, err
-}
-
-func (p *CloudPrepper) GetFileSystem() (string, error) {
-	ref, err := docker.ParseReference("//" + p.Source)
-	if err != nil {
-		return "", err
-	}
-	sanitizedName := strings.Replace(p.Source, ":", "", -1)
-	sanitizedName = strings.Replace(sanitizedName, "/", "", -1)
-
-	path, err := ioutil.TempDir("", sanitizedName)
-	if err != nil {
-		return "", err
-	}
-
-	return path, GetFileSystemFromReference(ref, p.ImageSource, path, nil)
-}
-
-func (p *CloudPrepper) GetConfig() (ConfigSchema, error) {
-	ref, err := docker.ParseReference("//" + p.Source)
-	if err != nil {
-		return ConfigSchema{}, err
-	}
-
-	return getConfigFromReference(ref, p.Source)
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/daemon_prepper.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/daemon_prepper.go
deleted file mode 100644
index b3269b3ca4..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/daemon_prepper.go
+++ /dev/null
@@ -1,93 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"context"
-	"io/ioutil"
-	"strings"
-
-	"github.com/containers/image/docker/daemon"
-
-	"github.com/docker/docker/client"
-	"github.com/sirupsen/logrus"
-)
-
-type DaemonPrepper struct {
-	Source string
-	Client *client.Client
-}
-
-func (p *DaemonPrepper) Name() string {
-	return "Local Daemon"
-}
-
-func (p *DaemonPrepper) GetSource() string {
-	return p.Source
-}
-
-func (p *DaemonPrepper) SetSource(source string) {
-	p.Source = source
-}
-
-func (p *DaemonPrepper) GetImage() (Image, error) {
-	image, err := getImage(p)
-	image.Type = ImageTypeDaemon
-	return image, err
-}
-
-func (p *DaemonPrepper) GetFileSystem() (string, error) {
-	ref, err := daemon.ParseReference(p.Source)
-	if err != nil {
-		return "", err
-	}
-
-	src, err := ref.NewImageSource(nil)
-	if err != nil {
-		return "", err
-	}
-	defer src.Close()
-
-	sanitizedName := strings.Replace(p.Source, ":", "", -1)
-	sanitizedName = strings.Replace(sanitizedName, "/", "", -1)
-
-	path, err := ioutil.TempDir("", sanitizedName)
-	if err != nil {
-		return "", err
-	}
-	return path, GetFileSystemFromReference(ref, src, path, nil)
-}
-
-func (p *DaemonPrepper) GetConfig() (ConfigSchema, error) {
-	ref, err := daemon.ParseReference(p.Source)
-	if err != nil {
-		return ConfigSchema{}, err
-	}
-	return getConfigFromReference(ref, p.Source)
-}
-
-func (p *DaemonPrepper) GetHistory() []ImageHistoryItem {
-	history, err := p.Client.ImageHistory(context.Background(), p.Source)
-	if err != nil {
-		logrus.Errorf("Could not obtain image history for %s: %s", p.Source, err)
-	}
-	historyItems := []ImageHistoryItem{}
-	for _, item := range history {
-		historyItems = append(historyItems, ImageHistoryItem{CreatedBy: item.CreatedBy})
-	}
-	return historyItems
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/docker_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/docker_utils.go
deleted file mode 100644
index eca0e53cd8..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/docker_utils.go
+++ /dev/null
@@ -1,123 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"archive/tar"
-	"bytes"
-	"context"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"strings"
-
-	"github.com/docker/docker/client"
-)
-
-type Event struct {
-	Status         string `json:"status"`
-	Error          string `json:"error"`
-	Progress       string `json:"progress"`
-	ProgressDetail struct {
-		Current int `json:"current"`
-		Total   int `json:"total"`
-	} `json:"progressDetail"`
-}
-
-func NewClient() (*client.Client, error) {
-	cli, err := client.NewEnvClient()
-	if err != nil {
-		return nil, fmt.Errorf("Error getting docker client: %s", err)
-	}
-	cli.NegotiateAPIVersion(context.Background())
-
-	return cli, nil
-}
-
-func getLayersFromManifest(r io.Reader) ([]string, error) {
-	type Manifest struct {
-		Layers []string
-	}
-
-	manifestJSON, err := ioutil.ReadAll(r)
-	if err != nil {
-		return nil, err
-	}
-
-	var imageManifest []Manifest
-	if err := json.Unmarshal(manifestJSON, &imageManifest); err != nil {
-		return []string{}, fmt.Errorf("Could not unmarshal manifest to get layer order: %s", err)
-	}
-	return imageManifest[0].Layers, nil
-}
-
-func unpackDockerSave(tarPath string, target string) error {
-	if _, ok := os.Stat(target); ok != nil {
-		os.MkdirAll(target, 0775)
-	}
-	f, err := os.Open(tarPath)
-	if err != nil {
-		return err
-	}
-
-	tr := tar.NewReader(f)
-
-	// Unpack the layers into a map, since we need to sort out the order later.
-	var layers []string
-	layerMap := map[string][]byte{}
-	for {
-		hdr, err := tr.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return err
-		}
-
-		// Docker save contains files and directories. Ignore the directories.
-		// We care about the layers and the manifest. The layers look like:
-		// $SHA/layer.tar
-		// and they are referenced that way in the manifest.
-		switch t := hdr.Typeflag; t {
-		case tar.TypeReg:
-			if hdr.Name == "manifest.json" {
-				layers, err = getLayersFromManifest(tr)
-				if err != nil {
-					return err
-				}
-			} else if strings.HasSuffix(hdr.Name, ".tar") {
-				layerMap[hdr.Name], err = ioutil.ReadAll(tr)
-				if err != nil {
-					return err
-				}
-			}
-		case tar.TypeDir:
-			continue
-		default:
-			return fmt.Errorf("unsupported file type %v found in file %s tar %s", t, hdr.Name, tarPath)
-		}
-	}
-
-	for _, layer := range layers {
-		if err = UnTar(bytes.NewReader(layerMap[layer]), target, nil); err != nil {
-			return fmt.Errorf("Could not unpack layer %s: %s", layer, err)
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/fs_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/fs_utils.go
deleted file mode 100644
index e7d7541d23..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/fs_utils.go
+++ /dev/null
@@ -1,181 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"bytes"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/sirupsen/logrus"
-)
-
-// Directory stores a representation of a file directory.
-type Directory struct {
-	Root    string
-	Content []string
-}
-
-type DirectoryEntry struct {
-	Name string
-	Size int64
-}
-
-func GetSize(path string) int64 {
-	stat, err := os.Stat(path)
-	if err != nil {
-		logrus.Errorf("Could not obtain size for %s: %s", path, err)
-		return -1
-	}
-	if stat.IsDir() {
-		size, err := getDirectorySize(path)
-		if err != nil {
-			logrus.Errorf("Could not obtain directory size for %s: %s", path, err)
-		}
-		return size
-	}
-	return stat.Size()
-}
-
-//GetFileContents returns the contents of a file at the specified path
-func GetFileContents(path string) (*string, error) {
-	if _, err := os.Stat(path); os.IsNotExist(err) {
-		return nil, err
-	}
-
-	contents, err := ioutil.ReadFile(path)
-	if err != nil {
-		return nil, err
-	}
-
-	strContents := string(contents)
-	//If file is empty, return nil
-	if strContents == "" {
-		return nil, nil
-	}
-	return &strContents, nil
-}
-
-func getDirectorySize(path string) (int64, error) {
-	var size int64
-	err := filepath.Walk(path, func(_ string, info os.FileInfo, err error) error {
-		if !info.IsDir() {
-			size += info.Size()
-		}
-		return err
-	})
-	return size, err
-}
-
-// GetDirectoryContents converts the directory starting at the provided path into a Directory struct.
-func GetDirectory(path string, deep bool) (Directory, error) {
-	var directory Directory
-	directory.Root = path
-	var err error
-	if deep {
-		walkFn := func(currPath string, info os.FileInfo, err error) error {
-			newContent := strings.TrimPrefix(currPath, directory.Root)
-			if newContent != "" {
-				directory.Content = append(directory.Content, newContent)
-			}
-			return nil
-		}
-
-		err = filepath.Walk(path, walkFn)
-	} else {
-		contents, err := ioutil.ReadDir(path)
-		if err != nil {
-			return directory, err
-		}
-
-		for _, file := range contents {
-			fileName := "/" + file.Name()
-			directory.Content = append(directory.Content, fileName)
-		}
-	}
-	return directory, err
-}
-
-func GetDirectoryEntries(d Directory) []DirectoryEntry {
-	return CreateDirectoryEntries(d.Root, d.Content)
-}
-
-func CreateDirectoryEntries(root string, entryNames []string) (entries []DirectoryEntry) {
-	for _, name := range entryNames {
-		entryPath := filepath.Join(root, name)
-		size := GetSize(entryPath)
-
-		entry := DirectoryEntry{
-			Name: name,
-			Size: size,
-		}
-		entries = append(entries, entry)
-	}
-	return entries
-}
-
-func CheckSameFile(f1name, f2name string) (bool, error) {
-	// Check first if files differ in size and immediately return
-	f1stat, err := os.Stat(f1name)
-	if err != nil {
-		return false, err
-	}
-	f2stat, err := os.Stat(f2name)
-	if err != nil {
-		return false, err
-	}
-
-	if f1stat.Size() != f2stat.Size() {
-		return false, nil
-	}
-
-	// Next, check file contents
-	f1, err := ioutil.ReadFile(f1name)
-	if err != nil {
-		return false, err
-	}
-	f2, err := ioutil.ReadFile(f2name)
-	if err != nil {
-		return false, err
-	}
-
-	if !bytes.Equal(f1, f2) {
-		return false, nil
-	}
-	return true, nil
-}
-
-// HasFilepathPrefix checks if the given file path begins with prefix
-func HasFilepathPrefix(path, prefix string) bool {
-	path = filepath.Clean(path)
-	prefix = filepath.Clean(prefix)
-	pathArray := strings.Split(path, "/")
-	prefixArray := strings.Split(prefix, "/")
-
-	if len(pathArray) < len(prefixArray) {
-		return false
-	}
-	for index := range prefixArray {
-		if prefixArray[index] == pathArray[index] {
-			continue
-		}
-		return false
-	}
-	return true
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
deleted file mode 100644
index 47cff2e1dd..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_prep_utils.go
+++ /dev/null
@@ -1,288 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"archive/tar"
-	"encoding/json"
-	"errors"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"sort"
-	"strings"
-
-	"github.com/GoogleContainerTools/container-diff/cmd/util/output"
-	"github.com/containers/image/docker"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/pkg/compression"
-	"github.com/containers/image/types"
-	"github.com/sirupsen/logrus"
-)
-
-type Prepper interface {
-	Name() string
-	GetConfig() (ConfigSchema, error)
-	GetFileSystem() (string, error)
-	GetImage() (Image, error)
-	GetSource() string
-	SetSource(string)
-}
-
-type ImageType int
-
-const (
-	ImageTypeTar ImageType = iota
-	ImageTypeDaemon
-	ImageTypeCloud
-)
-
-type Image struct {
-	Source string
-	FSPath string
-	Config ConfigSchema
-	Type   ImageType
-}
-
-func (i *Image) IsTar() bool {
-	return i.Type == ImageTypeTar
-}
-
-func (i *Image) IsDaemon() bool {
-	return i.Type == ImageTypeDaemon
-}
-
-func (i *Image) IsCloud() bool {
-	return i.Type == ImageTypeCloud
-}
-
-func (i *Image) GetRemoteDigest() (string, error) {
-	ref, err := docker.ParseReference("//" + i.Source)
-	if err != nil {
-		return "", err
-	}
-	return getDigestFromReference(ref, i.Source)
-}
-
-func (i *Image) GetName() string {
-	return strings.Split(i.Source, ":")[0]
-}
-
-type ImageHistoryItem struct {
-	CreatedBy string `json:"created_by"`
-}
-
-type ConfigObject struct {
-	Hostname     string
-	Domainname   string
-	User         string
-	AttachStdin  bool
-	AttachStdout bool
-	AttachStderr bool
-	ExposedPorts map[string]struct{} `json:"ExposedPorts"`
-	Tty          bool
-	OpenStdin    bool
-	StdinOnce    bool
-	Env          []string `json:"Env"`
-	Cmd          []string `json:"Cmd"`
-	// Healthcheck *HealthConfig
-	ArgsEscaped     bool `json:",omitempty"`
-	Image           string
-	Volumes         map[string]struct{} `json:"Volumes"`
-	Workdir         string              `json:"WorkingDir"`
-	Entrypoint      []string            `json:"Entrypoint"`
-	NetworkDisabled bool                `json:",omitempty"`
-	MacAddress      string              `json:",omitempty"`
-	OnBuild         []string
-	Labels          map[string]string `json:"Labels"`
-	StopSignal      string            `json:",omitempty"`
-	StopTimeout     *int              `json:",omitempty"`
-	Shell           []string          `json:",omitempty"`
-}
-
-func (c ConfigObject) AsList() []string {
-	return []string{
-		fmt.Sprintf("Hostname: %s", c.Hostname),
-		fmt.Sprintf("Domainname: %s", c.Domainname),
-		fmt.Sprintf("User: %s", c.User),
-		fmt.Sprintf("AttachStdin: %t", c.AttachStdin),
-		fmt.Sprintf("AttachStdout: %t", c.AttachStdout),
-		fmt.Sprintf("AttachStderr: %t", c.AttachStderr),
-		fmt.Sprintf("ExposedPorts: %v", sortMap(c.ExposedPorts)),
-		fmt.Sprintf("Tty: %t", c.Tty),
-		fmt.Sprintf("OpenStdin: %t", c.OpenStdin),
-		fmt.Sprintf("StdinOnce: %t", c.StdinOnce),
-		fmt.Sprintf("Env: %s", strings.Join(c.Env, ",")),
-		fmt.Sprintf("Cmd: %s", strings.Join(c.Cmd, ",")),
-		fmt.Sprintf("ArgsEscaped: %t", c.ArgsEscaped),
-		fmt.Sprintf("Image: %s", c.Image),
-		fmt.Sprintf("Volumes: %v", sortMap(c.Volumes)),
-		fmt.Sprintf("Workdir: %s", c.Workdir),
-		fmt.Sprintf("Entrypoint: %s", strings.Join(c.Entrypoint, ",")),
-		fmt.Sprintf("NetworkDisabled: %t", c.NetworkDisabled),
-		fmt.Sprintf("MacAddress: %s", c.MacAddress),
-		fmt.Sprintf("OnBuild: %s", strings.Join(c.OnBuild, ",")),
-		fmt.Sprintf("Labels: %v", c.Labels),
-		fmt.Sprintf("StopSignal: %s", c.StopSignal),
-		fmt.Sprintf("StopTimeout: %d", c.StopTimeout),
-		fmt.Sprintf("Shell: %s", strings.Join(c.Shell, ",")),
-	}
-}
-
-type ConfigSchema struct {
-	Config  ConfigObject       `json:"config"`
-	History []ImageHistoryItem `json:"history"`
-}
-
-func getImage(p Prepper) (Image, error) {
-	// see if the image name has tag provided, if not add latest as tag
-	if !IsTar(p.GetSource()) && !HasTag(p.GetSource()) {
-		p.SetSource(p.GetSource() + LatestTag)
-	}
-	output.PrintToStdErr("Retrieving image %s from source %s\n", p.GetSource(), p.Name())
-	imgPath, err := p.GetFileSystem()
-	if err != nil {
-		// return image with FSPath so it can be cleaned up
-		return Image{
-			FSPath: imgPath,
-		}, err
-	}
-
-	config, err := p.GetConfig()
-	if err != nil {
-		logrus.Error("Error retrieving History: ", err)
-	}
-
-	logrus.Infof("Finished prepping image %s", p.GetSource())
-	return Image{
-		Source: p.GetSource(),
-		FSPath: imgPath,
-		Config: config,
-	}, nil
-}
-
-func getImageFromTar(tarPath string) (string, error) {
-	logrus.Info("Extracting image tar to obtain image file system")
-	tempPath, err := ioutil.TempDir("", ".container-diff")
-	if err != nil {
-		return "", err
-	}
-	return tempPath, unpackDockerSave(tarPath, tempPath)
-}
-
-func GetFileSystemFromReference(ref types.ImageReference, imgSrc types.ImageSource, path string, whitelist []string) error {
-	var err error
-	if imgSrc == nil {
-		imgSrc, err = ref.NewImageSource(nil)
-	}
-	if err != nil {
-		return err
-	}
-	defer imgSrc.Close()
-	img, err := ref.NewImage(nil)
-	if err != nil {
-		return err
-	}
-	defer img.Close()
-	for _, b := range img.LayerInfos() {
-		bi, _, err := imgSrc.GetBlob(b)
-		if err != nil {
-			return err
-		}
-		defer bi.Close()
-		f, reader, err := compression.DetectCompression(bi)
-		if err != nil {
-			return err
-		}
-		// Decompress if necessary.
-		if f != nil {
-			reader, err = f(reader)
-			if err != nil {
-				return err
-			}
-		}
-		tr := tar.NewReader(reader)
-		if err := unpackTar(tr, path, whitelist); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func getDigestFromReference(ref types.ImageReference, source string) (string, error) {
-	img, err := ref.NewImage(nil)
-	if err != nil {
-		logrus.Errorf("Error referencing image %s from registry: %s", source, err)
-		return "", errors.New("Could not obtain image digest")
-	}
-	defer img.Close()
-
-	rawManifest, _, err := img.Manifest()
-	if err != nil {
-		logrus.Errorf("Error referencing image %s from registry: %s", source, err)
-		return "", errors.New("Could not obtain image digest")
-	}
-
-	digest, err := manifest.Digest(rawManifest)
-	if err != nil {
-		logrus.Errorf("Error referencing image %s from registry: %s", source, err)
-		return "", errors.New("Could not obtain image digest")
-	}
-
-	return digest.String(), nil
-}
-
-func getConfigFromReference(ref types.ImageReference, source string) (ConfigSchema, error) {
-	img, err := ref.NewImage(nil)
-	if err != nil {
-		logrus.Errorf("Error referencing image %s from registry: %s", source, err)
-		return ConfigSchema{}, errors.New("Could not obtain image config")
-	}
-	defer img.Close()
-
-	configBlob, err := img.ConfigBlob()
-	if err != nil {
-		logrus.Errorf("Error obtaining config blob for image %s from registry: %s", source, err)
-		return ConfigSchema{}, errors.New("Could not obtain image config")
-	}
-
-	var config ConfigSchema
-	err = json.Unmarshal(configBlob, &config)
-	if err != nil {
-		logrus.Errorf("Error with config file struct for image %s: %s", source, err)
-		return ConfigSchema{}, errors.New("Could not obtain image config")
-	}
-	return config, nil
-}
-
-func CleanupImage(image Image) {
-	if image.FSPath != "" {
-		logrus.Infof("Removing image filesystem directory %s from system", image.FSPath)
-		if err := os.RemoveAll(image.FSPath); err != nil {
-			logrus.Warn(err.Error())
-		}
-	}
-}
-
-func sortMap(m map[string]struct{}) string {
-	pairs := make([]string, 0)
-	for key := range m {
-		pairs = append(pairs, fmt.Sprintf("%s:%s", key, m[key]))
-	}
-	sort.Strings(pairs)
-	return strings.Join(pairs, " ")
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_utils.go
deleted file mode 100644
index 95901d7844..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/image_utils.go
+++ /dev/null
@@ -1,78 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"regexp"
-
-	"github.com/docker/docker/pkg/system"
-	"github.com/sirupsen/logrus"
-)
-
-const LatestTag string = ":latest"
-
-func GetImageLayers(pathToImage string) []string {
-	layers := []string{}
-	contents, err := ioutil.ReadDir(pathToImage)
-	if err != nil {
-		logrus.Error(err.Error())
-	}
-
-	for _, file := range contents {
-		if file.IsDir() {
-			layers = append(layers, file.Name())
-		}
-	}
-	return layers
-}
-
-// copyToFile writes the content of the reader to the specified file
-func copyToFile(outfile string, r io.Reader) error {
-	// We use sequential file access here to avoid depleting the standby list
-	// on Windows. On Linux, this is a call directly to ioutil.TempFile
-	tmpFile, err := system.TempFileSequential(filepath.Dir(outfile), ".docker_temp_")
-	if err != nil {
-		return err
-	}
-
-	tmpPath := tmpFile.Name()
-
-	_, err = io.Copy(tmpFile, r)
-	tmpFile.Close()
-
-	if err != nil {
-		os.Remove(tmpPath)
-		return err
-	}
-
-	if err = os.Rename(tmpPath, outfile); err != nil {
-		os.Remove(tmpPath)
-		return err
-	}
-
-	return nil
-}
-
-// checks to see if an image string contains a tag.
-func HasTag(image string) bool {
-	tagRegex := regexp.MustCompile(".*:[^/]+$")
-	return tagRegex.MatchString(image)
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_prepper.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_prepper.go
deleted file mode 100644
index 948916cd68..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_prepper.go
+++ /dev/null
@@ -1,102 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"encoding/json"
-	"errors"
-	"github.com/containers/image/docker/tarfile"
-	"github.com/docker/docker/client"
-	"github.com/sirupsen/logrus"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-)
-
-type TarPrepper struct {
-	Source string
-	Client *client.Client
-}
-
-func (p *TarPrepper) Name() string {
-	return "Tar Archive"
-}
-
-func (p *TarPrepper) GetSource() string {
-	return p.Source
-}
-
-func (p *TarPrepper) SetSource(source string) {
-	p.Source = source
-}
-
-func (p *TarPrepper) GetImage() (Image, error) {
-	image, err := getImage(p)
-	image.Type = ImageTypeTar
-	return image, err
-}
-
-func (p *TarPrepper) GetFileSystem() (string, error) {
-	return getImageFromTar(p.Source)
-}
-
-func (p *TarPrepper) GetConfig() (ConfigSchema, error) {
-	tempDir, err := ioutil.TempDir("", ".container-diff")
-	if err != nil {
-		return ConfigSchema{}, nil
-	}
-	defer os.RemoveAll(tempDir)
-	f, err := os.Open(p.Source)
-	if err != nil {
-		return ConfigSchema{}, err
-	}
-	defer f.Close()
-	if err := UnTar(f, tempDir, nil); err != nil {
-		return ConfigSchema{}, err
-	}
-
-	var config ConfigSchema
-	// First open the manifest, then find the referenced config.
-	manifestPath := filepath.Join(tempDir, "manifest.json")
-	contents, err := ioutil.ReadFile(manifestPath)
-	if err != nil {
-		return ConfigSchema{}, err
-	}
-
-	manifests := []tarfile.ManifestItem{}
-	if err := json.Unmarshal(contents, &manifests); err != nil {
-		return ConfigSchema{}, err
-	}
-
-	if len(manifests) != 1 {
-		return ConfigSchema{}, errors.New("specified tar file contains multiple images")
-	}
-
-	cfgFilename := filepath.Join(tempDir, manifests[0].Config)
-	file, err := ioutil.ReadFile(cfgFilename)
-	if err != nil {
-		logrus.Errorf("Could not read config file %s: %s", cfgFilename, err)
-		return ConfigSchema{}, errors.New("Could not obtain image config")
-	}
-	err = json.Unmarshal(file, &config)
-	if err != nil {
-		logrus.Errorf("Could not marshal config file %s: %s", cfgFilename, err)
-		return ConfigSchema{}, errors.New("Could not obtain image config")
-	}
-
-	return config, nil
-}
diff --git a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_utils.go b/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_utils.go
deleted file mode 100644
index 1cb9cc09dc..0000000000
--- a/vendor/github.com/GoogleContainerTools/container-diff/pkg/util/tar_utils.go
+++ /dev/null
@@ -1,224 +0,0 @@
-/*
-Copyright 2018 Google, Inc. All rights reserved.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package util
-
-import (
-	"archive/tar"
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// Map of target:linkname
-var hardlinks = make(map[string]string)
-
-type OriginalPerm struct {
-	path string
-	perm os.FileMode
-}
-
-func unpackTar(tr *tar.Reader, path string, whitelist []string) error {
-	originalPerms := make([]OriginalPerm, 0)
-	for {
-		header, err := tr.Next()
-		if err == io.EOF {
-			// end of tar archive
-			break
-		}
-		if err != nil {
-			logrus.Error("Error getting next tar header")
-			return err
-		}
-		if strings.Contains(header.Name, ".wh.") {
-			rmPath := filepath.Clean(filepath.Join(path, header.Name))
-			// Remove the .wh file if it was extracted.
-			if _, err := os.Stat(rmPath); !os.IsNotExist(err) {
-				if err := os.Remove(rmPath); err != nil {
-					logrus.Error(err)
-				}
-			}
-
-			// Remove the whited-out path.
-			newName := strings.Replace(rmPath, ".wh.", "", 1)
-			if err = os.RemoveAll(newName); err != nil {
-				logrus.Error(err)
-			}
-			continue
-		}
-		target := filepath.Clean(filepath.Join(path, header.Name))
-		// Make sure the target isn't part of the whitelist
-		if checkWhitelist(target, whitelist) {
-			continue
-		}
-		mode := header.FileInfo().Mode()
-		switch header.Typeflag {
-
-		// if its a dir and it doesn't exist create it
-		case tar.TypeDir:
-			if _, err := os.Stat(target); os.IsNotExist(err) {
-				if mode.Perm()&(1<<(uint(7))) == 0 {
-					logrus.Debugf("Write permission bit not set on %s by default; setting manually", target)
-					originalMode := mode
-					mode = mode | (1 << uint(7))
-					// keep track of original file permission to reset later
-					originalPerms = append(originalPerms, OriginalPerm{
-						path: target,
-						perm: originalMode,
-					})
-				}
-				logrus.Debugf("Creating directory %s with permissions %v", target, mode)
-				if err := os.MkdirAll(target, mode); err != nil {
-					return err
-				}
-				// In some cases, MkdirAll doesn't change the permissions, so run Chmod
-				if err := os.Chmod(target, mode); err != nil {
-					return err
-				}
-			}
-
-		// if it's a file create it
-		case tar.TypeReg:
-			// It's possible for a file to be included before the directory it's in is created.
-			baseDir := filepath.Dir(target)
-			if _, err := os.Stat(baseDir); os.IsNotExist(err) {
-				logrus.Debugf("baseDir %s for file %s does not exist. Creating.", baseDir, target)
-				if err := os.MkdirAll(baseDir, 0755); err != nil {
-					return err
-				}
-			}
-			// It's possible we end up creating files that can't be overwritten based on their permissions.
-			// Explicitly delete an existing file before continuing.
-			if _, err := os.Stat(target); !os.IsNotExist(err) {
-				logrus.Debugf("Removing %s for overwrite.", target)
-				if err := os.Remove(target); err != nil {
-					return err
-				}
-			}
-
-			logrus.Debugf("Creating file %s with permissions %v", target, mode)
-			currFile, err := os.Create(target)
-			if err != nil {
-				logrus.Errorf("Error creating file %s %s", target, err)
-				return err
-			}
-			// manually set permissions on file, since the default umask (022) will interfere
-			if err = os.Chmod(target, mode); err != nil {
-				logrus.Errorf("Error updating file permissions on %s", target)
-				return err
-			}
-			_, err = io.Copy(currFile, tr)
-			if err != nil {
-				return err
-			}
-			currFile.Close()
-		case tar.TypeSymlink:
-			// It's possible we end up creating files that can't be overwritten based on their permissions.
-			// Explicitly delete an existing file before continuing.
-			if _, err := os.Stat(target); !os.IsNotExist(err) {
-				logrus.Debugf("Removing %s to create symlink.", target)
-				if err := os.RemoveAll(target); err != nil {
-					logrus.Debugf("Unable to remove %s: %s", target, err)
-				}
-			}
-
-			if err = os.Symlink(header.Linkname, target); err != nil {
-				logrus.Errorf("Failed to create symlink between %s and %s: %s", header.Linkname, target, err)
-			}
-		case tar.TypeLink:
-			linkname := filepath.Clean(filepath.Join(path, header.Linkname))
-			// Check if the linkname already exists
-			if _, err := os.Stat(linkname); !os.IsNotExist(err) {
-				// If it exists, create the hard link
-				resolveHardlink(linkname, target)
-			} else {
-				hardlinks[target] = linkname
-			}
-		}
-	}
-
-	for target, linkname := range hardlinks {
-		logrus.Info("Resolving hard links.")
-		if _, err := os.Stat(linkname); !os.IsNotExist(err) {
-			// If it exists, create the hard link
-			if err := resolveHardlink(linkname, target); err != nil {
-				return errors.Wrap(err, fmt.Sprintf("Unable to create hard link from %s to %s", linkname, target))
-			}
-		}
-	}
-
-	// reset all original file
-	for _, perm := range originalPerms {
-		if err := os.Chmod(perm.path, perm.perm); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func resolveHardlink(linkname, target string) error {
-	if err := os.Link(linkname, target); err != nil {
-		return err
-	}
-	logrus.Debugf("Created hard link from %s to %s", linkname, target)
-	return nil
-}
-
-func checkWhitelist(target string, whitelist []string) bool {
-	for _, w := range whitelist {
-		if HasFilepathPrefix(target, w) {
-			logrus.Debugf("Not extracting %s, as it has prefix %s which is whitelisted", target, w)
-			return true
-		}
-	}
-	return false
-}
-
-// UnTar takes in a path to a tar file and writes the untarred version to the provided target.
-// Only untars one level, does not untar nested tars.
-func UnTar(r io.Reader, target string, whitelist []string) error {
-	if _, ok := os.Stat(target); ok != nil {
-		os.MkdirAll(target, 0775)
-	}
-
-	tr := tar.NewReader(r)
-	if err := unpackTar(tr, target, whitelist); err != nil {
-		return err
-	}
-	return nil
-}
-
-func IsTar(path string) bool {
-	return filepath.Ext(path) == ".tar" ||
-		filepath.Ext(path) == ".tar.gz" ||
-		filepath.Ext(path) == ".tgz"
-}
-
-func CheckTar(image string) bool {
-	if strings.TrimSuffix(image, ".tar") == image {
-		return false
-	}
-	if _, err := os.Stat(image); err != nil {
-		logrus.Errorf("%s does not exist", image)
-		return false
-	}
-	return true
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/common.go b/vendor/github.com/Microsoft/go-winio/archive/tar/common.go
deleted file mode 100644
index 0378401c0d..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/common.go
+++ /dev/null
@@ -1,344 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package tar implements access to tar archives.
-// It aims to cover most of the variations, including those produced
-// by GNU and BSD tars.
-//
-// References:
-//   http://www.freebsd.org/cgi/man.cgi?query=tar&sektion=5
-//   http://www.gnu.org/software/tar/manual/html_node/Standard.html
-//   http://pubs.opengroup.org/onlinepubs/9699919799/utilities/pax.html
-package tar
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"os"
-	"path"
-	"time"
-)
-
-const (
-	blockSize = 512
-
-	// Types
-	TypeReg           = '0'    // regular file
-	TypeRegA          = '\x00' // regular file
-	TypeLink          = '1'    // hard link
-	TypeSymlink       = '2'    // symbolic link
-	TypeChar          = '3'    // character device node
-	TypeBlock         = '4'    // block device node
-	TypeDir           = '5'    // directory
-	TypeFifo          = '6'    // fifo node
-	TypeCont          = '7'    // reserved
-	TypeXHeader       = 'x'    // extended header
-	TypeXGlobalHeader = 'g'    // global extended header
-	TypeGNULongName   = 'L'    // Next file has a long name
-	TypeGNULongLink   = 'K'    // Next file symlinks to a file w/ a long name
-	TypeGNUSparse     = 'S'    // sparse file
-)
-
-// A Header represents a single header in a tar archive.
-// Some fields may not be populated.
-type Header struct {
-	Name         string    // name of header file entry
-	Mode         int64     // permission and mode bits
-	Uid          int       // user id of owner
-	Gid          int       // group id of owner
-	Size         int64     // length in bytes
-	ModTime      time.Time // modified time
-	Typeflag     byte      // type of header entry
-	Linkname     string    // target name of link
-	Uname        string    // user name of owner
-	Gname        string    // group name of owner
-	Devmajor     int64     // major number of character or block device
-	Devminor     int64     // minor number of character or block device
-	AccessTime   time.Time // access time
-	ChangeTime   time.Time // status change time
-	CreationTime time.Time // creation time
-	Xattrs       map[string]string
-	Winheaders   map[string]string
-}
-
-// File name constants from the tar spec.
-const (
-	fileNameSize       = 100 // Maximum number of bytes in a standard tar name.
-	fileNamePrefixSize = 155 // Maximum number of ustar extension bytes.
-)
-
-// FileInfo returns an os.FileInfo for the Header.
-func (h *Header) FileInfo() os.FileInfo {
-	return headerFileInfo{h}
-}
-
-// headerFileInfo implements os.FileInfo.
-type headerFileInfo struct {
-	h *Header
-}
-
-func (fi headerFileInfo) Size() int64        { return fi.h.Size }
-func (fi headerFileInfo) IsDir() bool        { return fi.Mode().IsDir() }
-func (fi headerFileInfo) ModTime() time.Time { return fi.h.ModTime }
-func (fi headerFileInfo) Sys() interface{}   { return fi.h }
-
-// Name returns the base name of the file.
-func (fi headerFileInfo) Name() string {
-	if fi.IsDir() {
-		return path.Base(path.Clean(fi.h.Name))
-	}
-	return path.Base(fi.h.Name)
-}
-
-// Mode returns the permission and mode bits for the headerFileInfo.
-func (fi headerFileInfo) Mode() (mode os.FileMode) {
-	// Set file permission bits.
-	mode = os.FileMode(fi.h.Mode).Perm()
-
-	// Set setuid, setgid and sticky bits.
-	if fi.h.Mode&c_ISUID != 0 {
-		// setuid
-		mode |= os.ModeSetuid
-	}
-	if fi.h.Mode&c_ISGID != 0 {
-		// setgid
-		mode |= os.ModeSetgid
-	}
-	if fi.h.Mode&c_ISVTX != 0 {
-		// sticky
-		mode |= os.ModeSticky
-	}
-
-	// Set file mode bits.
-	// clear perm, setuid, setgid and sticky bits.
-	m := os.FileMode(fi.h.Mode) &^ 07777
-	if m == c_ISDIR {
-		// directory
-		mode |= os.ModeDir
-	}
-	if m == c_ISFIFO {
-		// named pipe (FIFO)
-		mode |= os.ModeNamedPipe
-	}
-	if m == c_ISLNK {
-		// symbolic link
-		mode |= os.ModeSymlink
-	}
-	if m == c_ISBLK {
-		// device file
-		mode |= os.ModeDevice
-	}
-	if m == c_ISCHR {
-		// Unix character device
-		mode |= os.ModeDevice
-		mode |= os.ModeCharDevice
-	}
-	if m == c_ISSOCK {
-		// Unix domain socket
-		mode |= os.ModeSocket
-	}
-
-	switch fi.h.Typeflag {
-	case TypeSymlink:
-		// symbolic link
-		mode |= os.ModeSymlink
-	case TypeChar:
-		// character device node
-		mode |= os.ModeDevice
-		mode |= os.ModeCharDevice
-	case TypeBlock:
-		// block device node
-		mode |= os.ModeDevice
-	case TypeDir:
-		// directory
-		mode |= os.ModeDir
-	case TypeFifo:
-		// fifo node
-		mode |= os.ModeNamedPipe
-	}
-
-	return mode
-}
-
-// sysStat, if non-nil, populates h from system-dependent fields of fi.
-var sysStat func(fi os.FileInfo, h *Header) error
-
-// Mode constants from the tar spec.
-const (
-	c_ISUID  = 04000   // Set uid
-	c_ISGID  = 02000   // Set gid
-	c_ISVTX  = 01000   // Save text (sticky bit)
-	c_ISDIR  = 040000  // Directory
-	c_ISFIFO = 010000  // FIFO
-	c_ISREG  = 0100000 // Regular file
-	c_ISLNK  = 0120000 // Symbolic link
-	c_ISBLK  = 060000  // Block special file
-	c_ISCHR  = 020000  // Character special file
-	c_ISSOCK = 0140000 // Socket
-)
-
-// Keywords for the PAX Extended Header
-const (
-	paxAtime        = "atime"
-	paxCharset      = "charset"
-	paxComment      = "comment"
-	paxCtime        = "ctime" // please note that ctime is not a valid pax header.
-	paxCreationTime = "LIBARCHIVE.creationtime"
-	paxGid          = "gid"
-	paxGname        = "gname"
-	paxLinkpath     = "linkpath"
-	paxMtime        = "mtime"
-	paxPath         = "path"
-	paxSize         = "size"
-	paxUid          = "uid"
-	paxUname        = "uname"
-	paxXattr        = "SCHILY.xattr."
-	paxWindows      = "MSWINDOWS."
-	paxNone         = ""
-)
-
-// FileInfoHeader creates a partially-populated Header from fi.
-// If fi describes a symlink, FileInfoHeader records link as the link target.
-// If fi describes a directory, a slash is appended to the name.
-// Because os.FileInfo's Name method returns only the base name of
-// the file it describes, it may be necessary to modify the Name field
-// of the returned header to provide the full path name of the file.
-func FileInfoHeader(fi os.FileInfo, link string) (*Header, error) {
-	if fi == nil {
-		return nil, errors.New("tar: FileInfo is nil")
-	}
-	fm := fi.Mode()
-	h := &Header{
-		Name:    fi.Name(),
-		ModTime: fi.ModTime(),
-		Mode:    int64(fm.Perm()), // or'd with c_IS* constants later
-	}
-	switch {
-	case fm.IsRegular():
-		h.Mode |= c_ISREG
-		h.Typeflag = TypeReg
-		h.Size = fi.Size()
-	case fi.IsDir():
-		h.Typeflag = TypeDir
-		h.Mode |= c_ISDIR
-		h.Name += "/"
-	case fm&os.ModeSymlink != 0:
-		h.Typeflag = TypeSymlink
-		h.Mode |= c_ISLNK
-		h.Linkname = link
-	case fm&os.ModeDevice != 0:
-		if fm&os.ModeCharDevice != 0 {
-			h.Mode |= c_ISCHR
-			h.Typeflag = TypeChar
-		} else {
-			h.Mode |= c_ISBLK
-			h.Typeflag = TypeBlock
-		}
-	case fm&os.ModeNamedPipe != 0:
-		h.Typeflag = TypeFifo
-		h.Mode |= c_ISFIFO
-	case fm&os.ModeSocket != 0:
-		h.Mode |= c_ISSOCK
-	default:
-		return nil, fmt.Errorf("archive/tar: unknown file mode %v", fm)
-	}
-	if fm&os.ModeSetuid != 0 {
-		h.Mode |= c_ISUID
-	}
-	if fm&os.ModeSetgid != 0 {
-		h.Mode |= c_ISGID
-	}
-	if fm&os.ModeSticky != 0 {
-		h.Mode |= c_ISVTX
-	}
-	// If possible, populate additional fields from OS-specific
-	// FileInfo fields.
-	if sys, ok := fi.Sys().(*Header); ok {
-		// This FileInfo came from a Header (not the OS). Use the
-		// original Header to populate all remaining fields.
-		h.Uid = sys.Uid
-		h.Gid = sys.Gid
-		h.Uname = sys.Uname
-		h.Gname = sys.Gname
-		h.AccessTime = sys.AccessTime
-		h.ChangeTime = sys.ChangeTime
-		if sys.Xattrs != nil {
-			h.Xattrs = make(map[string]string)
-			for k, v := range sys.Xattrs {
-				h.Xattrs[k] = v
-			}
-		}
-		if sys.Typeflag == TypeLink {
-			// hard link
-			h.Typeflag = TypeLink
-			h.Size = 0
-			h.Linkname = sys.Linkname
-		}
-	}
-	if sysStat != nil {
-		return h, sysStat(fi, h)
-	}
-	return h, nil
-}
-
-var zeroBlock = make([]byte, blockSize)
-
-// POSIX specifies a sum of the unsigned byte values, but the Sun tar uses signed byte values.
-// We compute and return both.
-func checksum(header []byte) (unsigned int64, signed int64) {
-	for i := 0; i < len(header); i++ {
-		if i == 148 {
-			// The chksum field (header[148:156]) is special: it should be treated as space bytes.
-			unsigned += ' ' * 8
-			signed += ' ' * 8
-			i += 7
-			continue
-		}
-		unsigned += int64(header[i])
-		signed += int64(int8(header[i]))
-	}
-	return
-}
-
-type slicer []byte
-
-func (sp *slicer) next(n int) (b []byte) {
-	s := *sp
-	b, *sp = s[0:n], s[n:]
-	return
-}
-
-func isASCII(s string) bool {
-	for _, c := range s {
-		if c >= 0x80 {
-			return false
-		}
-	}
-	return true
-}
-
-func toASCII(s string) string {
-	if isASCII(s) {
-		return s
-	}
-	var buf bytes.Buffer
-	for _, c := range s {
-		if c < 0x80 {
-			buf.WriteByte(byte(c))
-		}
-	}
-	return buf.String()
-}
-
-// isHeaderOnlyType checks if the given type flag is of the type that has no
-// data section even if a size is specified.
-func isHeaderOnlyType(flag byte) bool {
-	switch flag {
-	case TypeLink, TypeSymlink, TypeChar, TypeBlock, TypeDir, TypeFifo:
-		return true
-	default:
-		return false
-	}
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/reader.go b/vendor/github.com/Microsoft/go-winio/archive/tar/reader.go
deleted file mode 100644
index e210c618a1..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/reader.go
+++ /dev/null
@@ -1,1002 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package tar
-
-// TODO(dsymonds):
-//   - pax extensions
-
-import (
-	"bytes"
-	"errors"
-	"io"
-	"io/ioutil"
-	"math"
-	"os"
-	"strconv"
-	"strings"
-	"time"
-)
-
-var (
-	ErrHeader = errors.New("archive/tar: invalid tar header")
-)
-
-const maxNanoSecondIntSize = 9
-
-// A Reader provides sequential access to the contents of a tar archive.
-// A tar archive consists of a sequence of files.
-// The Next method advances to the next file in the archive (including the first),
-// and then it can be treated as an io.Reader to access the file's data.
-type Reader struct {
-	r       io.Reader
-	err     error
-	pad     int64           // amount of padding (ignored) after current file entry
-	curr    numBytesReader  // reader for current file entry
-	hdrBuff [blockSize]byte // buffer to use in readHeader
-}
-
-type parser struct {
-	err error // Last error seen
-}
-
-// A numBytesReader is an io.Reader with a numBytes method, returning the number
-// of bytes remaining in the underlying encoded data.
-type numBytesReader interface {
-	io.Reader
-	numBytes() int64
-}
-
-// A regFileReader is a numBytesReader for reading file data from a tar archive.
-type regFileReader struct {
-	r  io.Reader // underlying reader
-	nb int64     // number of unread bytes for current file entry
-}
-
-// A sparseFileReader is a numBytesReader for reading sparse file data from a
-// tar archive.
-type sparseFileReader struct {
-	rfr   numBytesReader // Reads the sparse-encoded file data
-	sp    []sparseEntry  // The sparse map for the file
-	pos   int64          // Keeps track of file position
-	total int64          // Total size of the file
-}
-
-// A sparseEntry holds a single entry in a sparse file's sparse map.
-//
-// Sparse files are represented using a series of sparseEntrys.
-// Despite the name, a sparseEntry represents an actual data fragment that
-// references data found in the underlying archive stream. All regions not
-// covered by a sparseEntry are logically filled with zeros.
-//
-// For example, if the underlying raw file contains the 10-byte data:
-//	var compactData = "abcdefgh"
-//
-// And the sparse map has the following entries:
-//	var sp = []sparseEntry{
-//		{offset: 2,  numBytes: 5} // Data fragment for [2..7]
-//		{offset: 18, numBytes: 3} // Data fragment for [18..21]
-//	}
-//
-// Then the content of the resulting sparse file with a "real" size of 25 is:
-//	var sparseData = "\x00"*2 + "abcde" + "\x00"*11 + "fgh" + "\x00"*4
-type sparseEntry struct {
-	offset   int64 // Starting position of the fragment
-	numBytes int64 // Length of the fragment
-}
-
-// Keywords for GNU sparse files in a PAX extended header
-const (
-	paxGNUSparseNumBlocks = "GNU.sparse.numblocks"
-	paxGNUSparseOffset    = "GNU.sparse.offset"
-	paxGNUSparseNumBytes  = "GNU.sparse.numbytes"
-	paxGNUSparseMap       = "GNU.sparse.map"
-	paxGNUSparseName      = "GNU.sparse.name"
-	paxGNUSparseMajor     = "GNU.sparse.major"
-	paxGNUSparseMinor     = "GNU.sparse.minor"
-	paxGNUSparseSize      = "GNU.sparse.size"
-	paxGNUSparseRealSize  = "GNU.sparse.realsize"
-)
-
-// Keywords for old GNU sparse headers
-const (
-	oldGNUSparseMainHeaderOffset               = 386
-	oldGNUSparseMainHeaderIsExtendedOffset     = 482
-	oldGNUSparseMainHeaderNumEntries           = 4
-	oldGNUSparseExtendedHeaderIsExtendedOffset = 504
-	oldGNUSparseExtendedHeaderNumEntries       = 21
-	oldGNUSparseOffsetSize                     = 12
-	oldGNUSparseNumBytesSize                   = 12
-)
-
-// NewReader creates a new Reader reading from r.
-func NewReader(r io.Reader) *Reader { return &Reader{r: r} }
-
-// Next advances to the next entry in the tar archive.
-//
-// io.EOF is returned at the end of the input.
-func (tr *Reader) Next() (*Header, error) {
-	if tr.err != nil {
-		return nil, tr.err
-	}
-
-	var hdr *Header
-	var extHdrs map[string]string
-
-	// Externally, Next iterates through the tar archive as if it is a series of
-	// files. Internally, the tar format often uses fake "files" to add meta
-	// data that describes the next file. These meta data "files" should not
-	// normally be visible to the outside. As such, this loop iterates through
-	// one or more "header files" until it finds a "normal file".
-loop:
-	for {
-		tr.err = tr.skipUnread()
-		if tr.err != nil {
-			return nil, tr.err
-		}
-
-		hdr = tr.readHeader()
-		if tr.err != nil {
-			return nil, tr.err
-		}
-
-		// Check for PAX/GNU special headers and files.
-		switch hdr.Typeflag {
-		case TypeXHeader:
-			extHdrs, tr.err = parsePAX(tr)
-			if tr.err != nil {
-				return nil, tr.err
-			}
-			continue loop // This is a meta header affecting the next header
-		case TypeGNULongName, TypeGNULongLink:
-			var realname []byte
-			realname, tr.err = ioutil.ReadAll(tr)
-			if tr.err != nil {
-				return nil, tr.err
-			}
-
-			// Convert GNU extensions to use PAX headers.
-			if extHdrs == nil {
-				extHdrs = make(map[string]string)
-			}
-			var p parser
-			switch hdr.Typeflag {
-			case TypeGNULongName:
-				extHdrs[paxPath] = p.parseString(realname)
-			case TypeGNULongLink:
-				extHdrs[paxLinkpath] = p.parseString(realname)
-			}
-			if p.err != nil {
-				tr.err = p.err
-				return nil, tr.err
-			}
-			continue loop // This is a meta header affecting the next header
-		default:
-			mergePAX(hdr, extHdrs)
-
-			// Check for a PAX format sparse file
-			sp, err := tr.checkForGNUSparsePAXHeaders(hdr, extHdrs)
-			if err != nil {
-				tr.err = err
-				return nil, err
-			}
-			if sp != nil {
-				// Current file is a PAX format GNU sparse file.
-				// Set the current file reader to a sparse file reader.
-				tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
-				if tr.err != nil {
-					return nil, tr.err
-				}
-			}
-			break loop // This is a file, so stop
-		}
-	}
-	return hdr, nil
-}
-
-// checkForGNUSparsePAXHeaders checks the PAX headers for GNU sparse headers. If they are found, then
-// this function reads the sparse map and returns it. Unknown sparse formats are ignored, causing the file to
-// be treated as a regular file.
-func (tr *Reader) checkForGNUSparsePAXHeaders(hdr *Header, headers map[string]string) ([]sparseEntry, error) {
-	var sparseFormat string
-
-	// Check for sparse format indicators
-	major, majorOk := headers[paxGNUSparseMajor]
-	minor, minorOk := headers[paxGNUSparseMinor]
-	sparseName, sparseNameOk := headers[paxGNUSparseName]
-	_, sparseMapOk := headers[paxGNUSparseMap]
-	sparseSize, sparseSizeOk := headers[paxGNUSparseSize]
-	sparseRealSize, sparseRealSizeOk := headers[paxGNUSparseRealSize]
-
-	// Identify which, if any, sparse format applies from which PAX headers are set
-	if majorOk && minorOk {
-		sparseFormat = major + "." + minor
-	} else if sparseNameOk && sparseMapOk {
-		sparseFormat = "0.1"
-	} else if sparseSizeOk {
-		sparseFormat = "0.0"
-	} else {
-		// Not a PAX format GNU sparse file.
-		return nil, nil
-	}
-
-	// Check for unknown sparse format
-	if sparseFormat != "0.0" && sparseFormat != "0.1" && sparseFormat != "1.0" {
-		return nil, nil
-	}
-
-	// Update hdr from GNU sparse PAX headers
-	if sparseNameOk {
-		hdr.Name = sparseName
-	}
-	if sparseSizeOk {
-		realSize, err := strconv.ParseInt(sparseSize, 10, 0)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		hdr.Size = realSize
-	} else if sparseRealSizeOk {
-		realSize, err := strconv.ParseInt(sparseRealSize, 10, 0)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		hdr.Size = realSize
-	}
-
-	// Set up the sparse map, according to the particular sparse format in use
-	var sp []sparseEntry
-	var err error
-	switch sparseFormat {
-	case "0.0", "0.1":
-		sp, err = readGNUSparseMap0x1(headers)
-	case "1.0":
-		sp, err = readGNUSparseMap1x0(tr.curr)
-	}
-	return sp, err
-}
-
-// mergePAX merges well known headers according to PAX standard.
-// In general headers with the same name as those found
-// in the header struct overwrite those found in the header
-// struct with higher precision or longer values. Esp. useful
-// for name and linkname fields.
-func mergePAX(hdr *Header, headers map[string]string) error {
-	for k, v := range headers {
-		switch k {
-		case paxPath:
-			hdr.Name = v
-		case paxLinkpath:
-			hdr.Linkname = v
-		case paxGname:
-			hdr.Gname = v
-		case paxUname:
-			hdr.Uname = v
-		case paxUid:
-			uid, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Uid = int(uid)
-		case paxGid:
-			gid, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Gid = int(gid)
-		case paxAtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.AccessTime = t
-		case paxMtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.ModTime = t
-		case paxCtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.ChangeTime = t
-		case paxCreationTime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.CreationTime = t
-		case paxSize:
-			size, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Size = int64(size)
-		default:
-			if strings.HasPrefix(k, paxXattr) {
-				if hdr.Xattrs == nil {
-					hdr.Xattrs = make(map[string]string)
-				}
-				hdr.Xattrs[k[len(paxXattr):]] = v
-			} else if strings.HasPrefix(k, paxWindows) {
-				if hdr.Winheaders == nil {
-					hdr.Winheaders = make(map[string]string)
-				}
-				hdr.Winheaders[k[len(paxWindows):]] = v
-			}
-		}
-	}
-	return nil
-}
-
-// parsePAXTime takes a string of the form %d.%d as described in
-// the PAX specification.
-func parsePAXTime(t string) (time.Time, error) {
-	buf := []byte(t)
-	pos := bytes.IndexByte(buf, '.')
-	var seconds, nanoseconds int64
-	var err error
-	if pos == -1 {
-		seconds, err = strconv.ParseInt(t, 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-	} else {
-		seconds, err = strconv.ParseInt(string(buf[:pos]), 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-		nano_buf := string(buf[pos+1:])
-		// Pad as needed before converting to a decimal.
-		// For example .030 -> .030000000 -> 30000000 nanoseconds
-		if len(nano_buf) < maxNanoSecondIntSize {
-			// Right pad
-			nano_buf += strings.Repeat("0", maxNanoSecondIntSize-len(nano_buf))
-		} else if len(nano_buf) > maxNanoSecondIntSize {
-			// Right truncate
-			nano_buf = nano_buf[:maxNanoSecondIntSize]
-		}
-		nanoseconds, err = strconv.ParseInt(string(nano_buf), 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-	}
-	ts := time.Unix(seconds, nanoseconds)
-	return ts, nil
-}
-
-// parsePAX parses PAX headers.
-// If an extended header (type 'x') is invalid, ErrHeader is returned
-func parsePAX(r io.Reader) (map[string]string, error) {
-	buf, err := ioutil.ReadAll(r)
-	if err != nil {
-		return nil, err
-	}
-	sbuf := string(buf)
-
-	// For GNU PAX sparse format 0.0 support.
-	// This function transforms the sparse format 0.0 headers into sparse format 0.1 headers.
-	var sparseMap bytes.Buffer
-
-	headers := make(map[string]string)
-	// Each record is constructed as
-	//     "%d %s=%s\n", length, keyword, value
-	for len(sbuf) > 0 {
-		key, value, residual, err := parsePAXRecord(sbuf)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sbuf = residual
-
-		keyStr := string(key)
-		if keyStr == paxGNUSparseOffset || keyStr == paxGNUSparseNumBytes {
-			// GNU sparse format 0.0 special key. Write to sparseMap instead of using the headers map.
-			sparseMap.WriteString(value)
-			sparseMap.Write([]byte{','})
-		} else {
-			// Normal key. Set the value in the headers map.
-			headers[keyStr] = string(value)
-		}
-	}
-	if sparseMap.Len() != 0 {
-		// Add sparse info to headers, chopping off the extra comma
-		sparseMap.Truncate(sparseMap.Len() - 1)
-		headers[paxGNUSparseMap] = sparseMap.String()
-	}
-	return headers, nil
-}
-
-// parsePAXRecord parses the input PAX record string into a key-value pair.
-// If parsing is successful, it will slice off the currently read record and
-// return the remainder as r.
-//
-// A PAX record is of the following form:
-//	"%d %s=%s\n" % (size, key, value)
-func parsePAXRecord(s string) (k, v, r string, err error) {
-	// The size field ends at the first space.
-	sp := strings.IndexByte(s, ' ')
-	if sp == -1 {
-		return "", "", s, ErrHeader
-	}
-
-	// Parse the first token as a decimal integer.
-	n, perr := strconv.ParseInt(s[:sp], 10, 0) // Intentionally parse as native int
-	if perr != nil || n < 5 || int64(len(s)) < n {
-		return "", "", s, ErrHeader
-	}
-
-	// Extract everything between the space and the final newline.
-	rec, nl, rem := s[sp+1:n-1], s[n-1:n], s[n:]
-	if nl != "\n" {
-		return "", "", s, ErrHeader
-	}
-
-	// The first equals separates the key from the value.
-	eq := strings.IndexByte(rec, '=')
-	if eq == -1 {
-		return "", "", s, ErrHeader
-	}
-	return rec[:eq], rec[eq+1:], rem, nil
-}
-
-// parseString parses bytes as a NUL-terminated C-style string.
-// If a NUL byte is not found then the whole slice is returned as a string.
-func (*parser) parseString(b []byte) string {
-	n := 0
-	for n < len(b) && b[n] != 0 {
-		n++
-	}
-	return string(b[0:n])
-}
-
-// parseNumeric parses the input as being encoded in either base-256 or octal.
-// This function may return negative numbers.
-// If parsing fails or an integer overflow occurs, err will be set.
-func (p *parser) parseNumeric(b []byte) int64 {
-	// Check for base-256 (binary) format first.
-	// If the first bit is set, then all following bits constitute a two's
-	// complement encoded number in big-endian byte order.
-	if len(b) > 0 && b[0]&0x80 != 0 {
-		// Handling negative numbers relies on the following identity:
-		//	-a-1 == ^a
-		//
-		// If the number is negative, we use an inversion mask to invert the
-		// data bytes and treat the value as an unsigned number.
-		var inv byte // 0x00 if positive or zero, 0xff if negative
-		if b[0]&0x40 != 0 {
-			inv = 0xff
-		}
-
-		var x uint64
-		for i, c := range b {
-			c ^= inv // Inverts c only if inv is 0xff, otherwise does nothing
-			if i == 0 {
-				c &= 0x7f // Ignore signal bit in first byte
-			}
-			if (x >> 56) > 0 {
-				p.err = ErrHeader // Integer overflow
-				return 0
-			}
-			x = x<<8 | uint64(c)
-		}
-		if (x >> 63) > 0 {
-			p.err = ErrHeader // Integer overflow
-			return 0
-		}
-		if inv == 0xff {
-			return ^int64(x)
-		}
-		return int64(x)
-	}
-
-	// Normal case is base-8 (octal) format.
-	return p.parseOctal(b)
-}
-
-func (p *parser) parseOctal(b []byte) int64 {
-	// Because unused fields are filled with NULs, we need
-	// to skip leading NULs. Fields may also be padded with
-	// spaces or NULs.
-	// So we remove leading and trailing NULs and spaces to
-	// be sure.
-	b = bytes.Trim(b, " \x00")
-
-	if len(b) == 0 {
-		return 0
-	}
-	x, perr := strconv.ParseUint(p.parseString(b), 8, 64)
-	if perr != nil {
-		p.err = ErrHeader
-	}
-	return int64(x)
-}
-
-// skipUnread skips any unread bytes in the existing file entry, as well as any
-// alignment padding. It returns io.ErrUnexpectedEOF if any io.EOF is
-// encountered in the data portion; it is okay to hit io.EOF in the padding.
-//
-// Note that this function still works properly even when sparse files are being
-// used since numBytes returns the bytes remaining in the underlying io.Reader.
-func (tr *Reader) skipUnread() error {
-	dataSkip := tr.numBytes()      // Number of data bytes to skip
-	totalSkip := dataSkip + tr.pad // Total number of bytes to skip
-	tr.curr, tr.pad = nil, 0
-
-	// If possible, Seek to the last byte before the end of the data section.
-	// Do this because Seek is often lazy about reporting errors; this will mask
-	// the fact that the tar stream may be truncated. We can rely on the
-	// io.CopyN done shortly afterwards to trigger any IO errors.
-	var seekSkipped int64 // Number of bytes skipped via Seek
-	if sr, ok := tr.r.(io.Seeker); ok && dataSkip > 1 {
-		// Not all io.Seeker can actually Seek. For example, os.Stdin implements
-		// io.Seeker, but calling Seek always returns an error and performs
-		// no action. Thus, we try an innocent seek to the current position
-		// to see if Seek is really supported.
-		pos1, err := sr.Seek(0, os.SEEK_CUR)
-		if err == nil {
-			// Seek seems supported, so perform the real Seek.
-			pos2, err := sr.Seek(dataSkip-1, os.SEEK_CUR)
-			if err != nil {
-				tr.err = err
-				return tr.err
-			}
-			seekSkipped = pos2 - pos1
-		}
-	}
-
-	var copySkipped int64 // Number of bytes skipped via CopyN
-	copySkipped, tr.err = io.CopyN(ioutil.Discard, tr.r, totalSkip-seekSkipped)
-	if tr.err == io.EOF && seekSkipped+copySkipped < dataSkip {
-		tr.err = io.ErrUnexpectedEOF
-	}
-	return tr.err
-}
-
-func (tr *Reader) verifyChecksum(header []byte) bool {
-	if tr.err != nil {
-		return false
-	}
-
-	var p parser
-	given := p.parseOctal(header[148:156])
-	unsigned, signed := checksum(header)
-	return p.err == nil && (given == unsigned || given == signed)
-}
-
-// readHeader reads the next block header and assumes that the underlying reader
-// is already aligned to a block boundary.
-//
-// The err will be set to io.EOF only when one of the following occurs:
-//	* Exactly 0 bytes are read and EOF is hit.
-//	* Exactly 1 block of zeros is read and EOF is hit.
-//	* At least 2 blocks of zeros are read.
-func (tr *Reader) readHeader() *Header {
-	header := tr.hdrBuff[:]
-	copy(header, zeroBlock)
-
-	if _, tr.err = io.ReadFull(tr.r, header); tr.err != nil {
-		return nil // io.EOF is okay here
-	}
-
-	// Two blocks of zero bytes marks the end of the archive.
-	if bytes.Equal(header, zeroBlock[0:blockSize]) {
-		if _, tr.err = io.ReadFull(tr.r, header); tr.err != nil {
-			return nil // io.EOF is okay here
-		}
-		if bytes.Equal(header, zeroBlock[0:blockSize]) {
-			tr.err = io.EOF
-		} else {
-			tr.err = ErrHeader // zero block and then non-zero block
-		}
-		return nil
-	}
-
-	if !tr.verifyChecksum(header) {
-		tr.err = ErrHeader
-		return nil
-	}
-
-	// Unpack
-	var p parser
-	hdr := new(Header)
-	s := slicer(header)
-
-	hdr.Name = p.parseString(s.next(100))
-	hdr.Mode = p.parseNumeric(s.next(8))
-	hdr.Uid = int(p.parseNumeric(s.next(8)))
-	hdr.Gid = int(p.parseNumeric(s.next(8)))
-	hdr.Size = p.parseNumeric(s.next(12))
-	hdr.ModTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-	s.next(8) // chksum
-	hdr.Typeflag = s.next(1)[0]
-	hdr.Linkname = p.parseString(s.next(100))
-
-	// The remainder of the header depends on the value of magic.
-	// The original (v7) version of tar had no explicit magic field,
-	// so its magic bytes, like the rest of the block, are NULs.
-	magic := string(s.next(8)) // contains version field as well.
-	var format string
-	switch {
-	case magic[:6] == "ustar\x00": // POSIX tar (1003.1-1988)
-		if string(header[508:512]) == "tar\x00" {
-			format = "star"
-		} else {
-			format = "posix"
-		}
-	case magic == "ustar  \x00": // old GNU tar
-		format = "gnu"
-	}
-
-	switch format {
-	case "posix", "gnu", "star":
-		hdr.Uname = p.parseString(s.next(32))
-		hdr.Gname = p.parseString(s.next(32))
-		devmajor := s.next(8)
-		devminor := s.next(8)
-		if hdr.Typeflag == TypeChar || hdr.Typeflag == TypeBlock {
-			hdr.Devmajor = p.parseNumeric(devmajor)
-			hdr.Devminor = p.parseNumeric(devminor)
-		}
-		var prefix string
-		switch format {
-		case "posix", "gnu":
-			prefix = p.parseString(s.next(155))
-		case "star":
-			prefix = p.parseString(s.next(131))
-			hdr.AccessTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-			hdr.ChangeTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-		}
-		if len(prefix) > 0 {
-			hdr.Name = prefix + "/" + hdr.Name
-		}
-	}
-
-	if p.err != nil {
-		tr.err = p.err
-		return nil
-	}
-
-	nb := hdr.Size
-	if isHeaderOnlyType(hdr.Typeflag) {
-		nb = 0
-	}
-	if nb < 0 {
-		tr.err = ErrHeader
-		return nil
-	}
-
-	// Set the current file reader.
-	tr.pad = -nb & (blockSize - 1) // blockSize is a power of two
-	tr.curr = &regFileReader{r: tr.r, nb: nb}
-
-	// Check for old GNU sparse format entry.
-	if hdr.Typeflag == TypeGNUSparse {
-		// Get the real size of the file.
-		hdr.Size = p.parseNumeric(header[483:495])
-		if p.err != nil {
-			tr.err = p.err
-			return nil
-		}
-
-		// Read the sparse map.
-		sp := tr.readOldGNUSparseMap(header)
-		if tr.err != nil {
-			return nil
-		}
-
-		// Current file is a GNU sparse file. Update the current file reader.
-		tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
-		if tr.err != nil {
-			return nil
-		}
-	}
-
-	return hdr
-}
-
-// readOldGNUSparseMap reads the sparse map as stored in the old GNU sparse format.
-// The sparse map is stored in the tar header if it's small enough. If it's larger than four entries,
-// then one or more extension headers are used to store the rest of the sparse map.
-func (tr *Reader) readOldGNUSparseMap(header []byte) []sparseEntry {
-	var p parser
-	isExtended := header[oldGNUSparseMainHeaderIsExtendedOffset] != 0
-	spCap := oldGNUSparseMainHeaderNumEntries
-	if isExtended {
-		spCap += oldGNUSparseExtendedHeaderNumEntries
-	}
-	sp := make([]sparseEntry, 0, spCap)
-	s := slicer(header[oldGNUSparseMainHeaderOffset:])
-
-	// Read the four entries from the main tar header
-	for i := 0; i < oldGNUSparseMainHeaderNumEntries; i++ {
-		offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
-		numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
-		if p.err != nil {
-			tr.err = p.err
-			return nil
-		}
-		if offset == 0 && numBytes == 0 {
-			break
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-
-	for isExtended {
-		// There are more entries. Read an extension header and parse its entries.
-		sparseHeader := make([]byte, blockSize)
-		if _, tr.err = io.ReadFull(tr.r, sparseHeader); tr.err != nil {
-			return nil
-		}
-		isExtended = sparseHeader[oldGNUSparseExtendedHeaderIsExtendedOffset] != 0
-		s = slicer(sparseHeader)
-		for i := 0; i < oldGNUSparseExtendedHeaderNumEntries; i++ {
-			offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
-			numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
-			if p.err != nil {
-				tr.err = p.err
-				return nil
-			}
-			if offset == 0 && numBytes == 0 {
-				break
-			}
-			sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-		}
-	}
-	return sp
-}
-
-// readGNUSparseMap1x0 reads the sparse map as stored in GNU's PAX sparse format
-// version 1.0. The format of the sparse map consists of a series of
-// newline-terminated numeric fields. The first field is the number of entries
-// and is always present. Following this are the entries, consisting of two
-// fields (offset, numBytes). This function must stop reading at the end
-// boundary of the block containing the last newline.
-//
-// Note that the GNU manual says that numeric values should be encoded in octal
-// format. However, the GNU tar utility itself outputs these values in decimal.
-// As such, this library treats values as being encoded in decimal.
-func readGNUSparseMap1x0(r io.Reader) ([]sparseEntry, error) {
-	var cntNewline int64
-	var buf bytes.Buffer
-	var blk = make([]byte, blockSize)
-
-	// feedTokens copies data in numBlock chunks from r into buf until there are
-	// at least cnt newlines in buf. It will not read more blocks than needed.
-	var feedTokens = func(cnt int64) error {
-		for cntNewline < cnt {
-			if _, err := io.ReadFull(r, blk); err != nil {
-				if err == io.EOF {
-					err = io.ErrUnexpectedEOF
-				}
-				return err
-			}
-			buf.Write(blk)
-			for _, c := range blk {
-				if c == '\n' {
-					cntNewline++
-				}
-			}
-		}
-		return nil
-	}
-
-	// nextToken gets the next token delimited by a newline. This assumes that
-	// at least one newline exists in the buffer.
-	var nextToken = func() string {
-		cntNewline--
-		tok, _ := buf.ReadString('\n')
-		return tok[:len(tok)-1] // Cut off newline
-	}
-
-	// Parse for the number of entries.
-	// Use integer overflow resistant math to check this.
-	if err := feedTokens(1); err != nil {
-		return nil, err
-	}
-	numEntries, err := strconv.ParseInt(nextToken(), 10, 0) // Intentionally parse as native int
-	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
-		return nil, ErrHeader
-	}
-
-	// Parse for all member entries.
-	// numEntries is trusted after this since a potential attacker must have
-	// committed resources proportional to what this library used.
-	if err := feedTokens(2 * numEntries); err != nil {
-		return nil, err
-	}
-	sp := make([]sparseEntry, 0, numEntries)
-	for i := int64(0); i < numEntries; i++ {
-		offset, err := strconv.ParseInt(nextToken(), 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		numBytes, err := strconv.ParseInt(nextToken(), 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-	return sp, nil
-}
-
-// readGNUSparseMap0x1 reads the sparse map as stored in GNU's PAX sparse format
-// version 0.1. The sparse map is stored in the PAX headers.
-func readGNUSparseMap0x1(extHdrs map[string]string) ([]sparseEntry, error) {
-	// Get number of entries.
-	// Use integer overflow resistant math to check this.
-	numEntriesStr := extHdrs[paxGNUSparseNumBlocks]
-	numEntries, err := strconv.ParseInt(numEntriesStr, 10, 0) // Intentionally parse as native int
-	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
-		return nil, ErrHeader
-	}
-
-	// There should be two numbers in sparseMap for each entry.
-	sparseMap := strings.Split(extHdrs[paxGNUSparseMap], ",")
-	if int64(len(sparseMap)) != 2*numEntries {
-		return nil, ErrHeader
-	}
-
-	// Loop through the entries in the sparse map.
-	// numEntries is trusted now.
-	sp := make([]sparseEntry, 0, numEntries)
-	for i := int64(0); i < numEntries; i++ {
-		offset, err := strconv.ParseInt(sparseMap[2*i], 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		numBytes, err := strconv.ParseInt(sparseMap[2*i+1], 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-	return sp, nil
-}
-
-// numBytes returns the number of bytes left to read in the current file's entry
-// in the tar archive, or 0 if there is no current file.
-func (tr *Reader) numBytes() int64 {
-	if tr.curr == nil {
-		// No current file, so no bytes
-		return 0
-	}
-	return tr.curr.numBytes()
-}
-
-// Read reads from the current entry in the tar archive.
-// It returns 0, io.EOF when it reaches the end of that entry,
-// until Next is called to advance to the next entry.
-//
-// Calling Read on special types like TypeLink, TypeSymLink, TypeChar,
-// TypeBlock, TypeDir, and TypeFifo returns 0, io.EOF regardless of what
-// the Header.Size claims.
-func (tr *Reader) Read(b []byte) (n int, err error) {
-	if tr.err != nil {
-		return 0, tr.err
-	}
-	if tr.curr == nil {
-		return 0, io.EOF
-	}
-
-	n, err = tr.curr.Read(b)
-	if err != nil && err != io.EOF {
-		tr.err = err
-	}
-	return
-}
-
-func (rfr *regFileReader) Read(b []byte) (n int, err error) {
-	if rfr.nb == 0 {
-		// file consumed
-		return 0, io.EOF
-	}
-	if int64(len(b)) > rfr.nb {
-		b = b[0:rfr.nb]
-	}
-	n, err = rfr.r.Read(b)
-	rfr.nb -= int64(n)
-
-	if err == io.EOF && rfr.nb > 0 {
-		err = io.ErrUnexpectedEOF
-	}
-	return
-}
-
-// numBytes returns the number of bytes left to read in the file's data in the tar archive.
-func (rfr *regFileReader) numBytes() int64 {
-	return rfr.nb
-}
-
-// newSparseFileReader creates a new sparseFileReader, but validates all of the
-// sparse entries before doing so.
-func newSparseFileReader(rfr numBytesReader, sp []sparseEntry, total int64) (*sparseFileReader, error) {
-	if total < 0 {
-		return nil, ErrHeader // Total size cannot be negative
-	}
-
-	// Validate all sparse entries. These are the same checks as performed by
-	// the BSD tar utility.
-	for i, s := range sp {
-		switch {
-		case s.offset < 0 || s.numBytes < 0:
-			return nil, ErrHeader // Negative values are never okay
-		case s.offset > math.MaxInt64-s.numBytes:
-			return nil, ErrHeader // Integer overflow with large length
-		case s.offset+s.numBytes > total:
-			return nil, ErrHeader // Region extends beyond the "real" size
-		case i > 0 && sp[i-1].offset+sp[i-1].numBytes > s.offset:
-			return nil, ErrHeader // Regions can't overlap and must be in order
-		}
-	}
-	return &sparseFileReader{rfr: rfr, sp: sp, total: total}, nil
-}
-
-// readHole reads a sparse hole ending at endOffset.
-func (sfr *sparseFileReader) readHole(b []byte, endOffset int64) int {
-	n64 := endOffset - sfr.pos
-	if n64 > int64(len(b)) {
-		n64 = int64(len(b))
-	}
-	n := int(n64)
-	for i := 0; i < n; i++ {
-		b[i] = 0
-	}
-	sfr.pos += n64
-	return n
-}
-
-// Read reads the sparse file data in expanded form.
-func (sfr *sparseFileReader) Read(b []byte) (n int, err error) {
-	// Skip past all empty fragments.
-	for len(sfr.sp) > 0 && sfr.sp[0].numBytes == 0 {
-		sfr.sp = sfr.sp[1:]
-	}
-
-	// If there are no more fragments, then it is possible that there
-	// is one last sparse hole.
-	if len(sfr.sp) == 0 {
-		// This behavior matches the BSD tar utility.
-		// However, GNU tar stops returning data even if sfr.total is unmet.
-		if sfr.pos < sfr.total {
-			return sfr.readHole(b, sfr.total), nil
-		}
-		return 0, io.EOF
-	}
-
-	// In front of a data fragment, so read a hole.
-	if sfr.pos < sfr.sp[0].offset {
-		return sfr.readHole(b, sfr.sp[0].offset), nil
-	}
-
-	// In a data fragment, so read from it.
-	// This math is overflow free since we verify that offset and numBytes can
-	// be safely added when creating the sparseFileReader.
-	endPos := sfr.sp[0].offset + sfr.sp[0].numBytes // End offset of fragment
-	bytesLeft := endPos - sfr.pos                   // Bytes left in fragment
-	if int64(len(b)) > bytesLeft {
-		b = b[:bytesLeft]
-	}
-
-	n, err = sfr.rfr.Read(b)
-	sfr.pos += int64(n)
-	if err == io.EOF {
-		if sfr.pos < endPos {
-			err = io.ErrUnexpectedEOF // There was supposed to be more data
-		} else if sfr.pos < sfr.total {
-			err = nil // There is still an implicit sparse hole at the end
-		}
-	}
-
-	if sfr.pos == endPos {
-		sfr.sp = sfr.sp[1:] // We are done with this fragment, so pop it
-	}
-	return n, err
-}
-
-// numBytes returns the number of bytes left to read in the sparse file's
-// sparse-encoded data in the tar archive.
-func (sfr *sparseFileReader) numBytes() int64 {
-	return sfr.rfr.numBytes()
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atim.go b/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atim.go
deleted file mode 100644
index cf9cc79c59..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atim.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build linux dragonfly openbsd solaris
-
-package tar
-
-import (
-	"syscall"
-	"time"
-)
-
-func statAtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Atim.Unix())
-}
-
-func statCtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Ctim.Unix())
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atimespec.go b/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atimespec.go
deleted file mode 100644
index 6f17dbe307..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_atimespec.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build darwin freebsd netbsd
-
-package tar
-
-import (
-	"syscall"
-	"time"
-)
-
-func statAtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Atimespec.Unix())
-}
-
-func statCtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Ctimespec.Unix())
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_unix.go b/vendor/github.com/Microsoft/go-winio/archive/tar/stat_unix.go
deleted file mode 100644
index cb843db4cf..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/stat_unix.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build linux darwin dragonfly freebsd openbsd netbsd solaris
-
-package tar
-
-import (
-	"os"
-	"syscall"
-)
-
-func init() {
-	sysStat = statUnix
-}
-
-func statUnix(fi os.FileInfo, h *Header) error {
-	sys, ok := fi.Sys().(*syscall.Stat_t)
-	if !ok {
-		return nil
-	}
-	h.Uid = int(sys.Uid)
-	h.Gid = int(sys.Gid)
-	// TODO(bradfitz): populate username & group.  os/user
-	// doesn't cache LookupId lookups, and lacks group
-	// lookup functions.
-	h.AccessTime = statAtime(sys)
-	h.ChangeTime = statCtime(sys)
-	// TODO(bradfitz): major/minor device numbers?
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/go-winio/archive/tar/writer.go b/vendor/github.com/Microsoft/go-winio/archive/tar/writer.go
deleted file mode 100644
index 30d7e606d6..0000000000
--- a/vendor/github.com/Microsoft/go-winio/archive/tar/writer.go
+++ /dev/null
@@ -1,444 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package tar
-
-// TODO(dsymonds):
-// - catch more errors (no first header, etc.)
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"io"
-	"path"
-	"sort"
-	"strconv"
-	"strings"
-	"time"
-)
-
-var (
-	ErrWriteTooLong    = errors.New("archive/tar: write too long")
-	ErrFieldTooLong    = errors.New("archive/tar: header field too long")
-	ErrWriteAfterClose = errors.New("archive/tar: write after close")
-	errInvalidHeader   = errors.New("archive/tar: header field too long or contains invalid values")
-)
-
-// A Writer provides sequential writing of a tar archive in POSIX.1 format.
-// A tar archive consists of a sequence of files.
-// Call WriteHeader to begin a new file, and then call Write to supply that file's data,
-// writing at most hdr.Size bytes in total.
-type Writer struct {
-	w          io.Writer
-	err        error
-	nb         int64 // number of unwritten bytes for current file entry
-	pad        int64 // amount of padding to write after current file entry
-	closed     bool
-	usedBinary bool            // whether the binary numeric field extension was used
-	preferPax  bool            // use pax header instead of binary numeric header
-	hdrBuff    [blockSize]byte // buffer to use in writeHeader when writing a regular header
-	paxHdrBuff [blockSize]byte // buffer to use in writeHeader when writing a pax header
-}
-
-type formatter struct {
-	err error // Last error seen
-}
-
-// NewWriter creates a new Writer writing to w.
-func NewWriter(w io.Writer) *Writer { return &Writer{w: w, preferPax: true} }
-
-// Flush finishes writing the current file (optional).
-func (tw *Writer) Flush() error {
-	if tw.nb > 0 {
-		tw.err = fmt.Errorf("archive/tar: missed writing %d bytes", tw.nb)
-		return tw.err
-	}
-
-	n := tw.nb + tw.pad
-	for n > 0 && tw.err == nil {
-		nr := n
-		if nr > blockSize {
-			nr = blockSize
-		}
-		var nw int
-		nw, tw.err = tw.w.Write(zeroBlock[0:nr])
-		n -= int64(nw)
-	}
-	tw.nb = 0
-	tw.pad = 0
-	return tw.err
-}
-
-// Write s into b, terminating it with a NUL if there is room.
-func (f *formatter) formatString(b []byte, s string) {
-	if len(s) > len(b) {
-		f.err = ErrFieldTooLong
-		return
-	}
-	ascii := toASCII(s)
-	copy(b, ascii)
-	if len(ascii) < len(b) {
-		b[len(ascii)] = 0
-	}
-}
-
-// Encode x as an octal ASCII string and write it into b with leading zeros.
-func (f *formatter) formatOctal(b []byte, x int64) {
-	s := strconv.FormatInt(x, 8)
-	// leading zeros, but leave room for a NUL.
-	for len(s)+1 < len(b) {
-		s = "0" + s
-	}
-	f.formatString(b, s)
-}
-
-// fitsInBase256 reports whether x can be encoded into n bytes using base-256
-// encoding. Unlike octal encoding, base-256 encoding does not require that the
-// string ends with a NUL character. Thus, all n bytes are available for output.
-//
-// If operating in binary mode, this assumes strict GNU binary mode; which means
-// that the first byte can only be either 0x80 or 0xff. Thus, the first byte is
-// equivalent to the sign bit in two's complement form.
-func fitsInBase256(n int, x int64) bool {
-	var binBits = uint(n-1) * 8
-	return n >= 9 || (x >= -1<<binBits && x < 1<<binBits)
-}
-
-// Write x into b, as binary (GNUtar/star extension).
-func (f *formatter) formatNumeric(b []byte, x int64) {
-	if fitsInBase256(len(b), x) {
-		for i := len(b) - 1; i >= 0; i-- {
-			b[i] = byte(x)
-			x >>= 8
-		}
-		b[0] |= 0x80 // Highest bit indicates binary format
-		return
-	}
-
-	f.formatOctal(b, 0) // Last resort, just write zero
-	f.err = ErrFieldTooLong
-}
-
-var (
-	minTime = time.Unix(0, 0)
-	// There is room for 11 octal digits (33 bits) of mtime.
-	maxTime = minTime.Add((1<<33 - 1) * time.Second)
-)
-
-// WriteHeader writes hdr and prepares to accept the file's contents.
-// WriteHeader calls Flush if it is not the first header.
-// Calling after a Close will return ErrWriteAfterClose.
-func (tw *Writer) WriteHeader(hdr *Header) error {
-	return tw.writeHeader(hdr, true)
-}
-
-// WriteHeader writes hdr and prepares to accept the file's contents.
-// WriteHeader calls Flush if it is not the first header.
-// Calling after a Close will return ErrWriteAfterClose.
-// As this method is called internally by writePax header to allow it to
-// suppress writing the pax header.
-func (tw *Writer) writeHeader(hdr *Header, allowPax bool) error {
-	if tw.closed {
-		return ErrWriteAfterClose
-	}
-	if tw.err == nil {
-		tw.Flush()
-	}
-	if tw.err != nil {
-		return tw.err
-	}
-
-	// a map to hold pax header records, if any are needed
-	paxHeaders := make(map[string]string)
-
-	// TODO(shanemhansen): we might want to use PAX headers for
-	// subsecond time resolution, but for now let's just capture
-	// too long fields or non ascii characters
-
-	var f formatter
-	var header []byte
-
-	// We need to select which scratch buffer to use carefully,
-	// since this method is called recursively to write PAX headers.
-	// If allowPax is true, this is the non-recursive call, and we will use hdrBuff.
-	// If allowPax is false, we are being called by writePAXHeader, and hdrBuff is
-	// already being used by the non-recursive call, so we must use paxHdrBuff.
-	header = tw.hdrBuff[:]
-	if !allowPax {
-		header = tw.paxHdrBuff[:]
-	}
-	copy(header, zeroBlock)
-	s := slicer(header)
-
-	// Wrappers around formatter that automatically sets paxHeaders if the
-	// argument extends beyond the capacity of the input byte slice.
-	var formatString = func(b []byte, s string, paxKeyword string) {
-		needsPaxHeader := paxKeyword != paxNone && len(s) > len(b) || !isASCII(s)
-		if needsPaxHeader {
-			paxHeaders[paxKeyword] = s
-			return
-		}
-		f.formatString(b, s)
-	}
-	var formatNumeric = func(b []byte, x int64, paxKeyword string) {
-		// Try octal first.
-		s := strconv.FormatInt(x, 8)
-		if len(s) < len(b) {
-			f.formatOctal(b, x)
-			return
-		}
-
-		// If it is too long for octal, and PAX is preferred, use a PAX header.
-		if paxKeyword != paxNone && tw.preferPax {
-			f.formatOctal(b, 0)
-			s := strconv.FormatInt(x, 10)
-			paxHeaders[paxKeyword] = s
-			return
-		}
-
-		tw.usedBinary = true
-		f.formatNumeric(b, x)
-	}
-	var formatTime = func(b []byte, t time.Time, paxKeyword string) {
-		var unixTime int64
-		if !t.Before(minTime) && !t.After(maxTime) {
-			unixTime = t.Unix()
-		}
-		formatNumeric(b, unixTime, paxNone)
-
-		// Write a PAX header if the time didn't fit precisely.
-		if paxKeyword != "" && tw.preferPax && allowPax && (t.Nanosecond() != 0 || !t.Before(minTime) || !t.After(maxTime)) {
-			paxHeaders[paxKeyword] = formatPAXTime(t)
-		}
-	}
-
-	// keep a reference to the filename to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
-	pathHeaderBytes := s.next(fileNameSize)
-
-	formatString(pathHeaderBytes, hdr.Name, paxPath)
-
-	f.formatOctal(s.next(8), hdr.Mode)               // 100:108
-	formatNumeric(s.next(8), int64(hdr.Uid), paxUid) // 108:116
-	formatNumeric(s.next(8), int64(hdr.Gid), paxGid) // 116:124
-	formatNumeric(s.next(12), hdr.Size, paxSize)     // 124:136
-	formatTime(s.next(12), hdr.ModTime, paxMtime)    // 136:148
-	s.next(8)                                        // chksum (148:156)
-	s.next(1)[0] = hdr.Typeflag                      // 156:157
-
-	formatString(s.next(100), hdr.Linkname, paxLinkpath)
-
-	copy(s.next(8), []byte("ustar\x0000"))          // 257:265
-	formatString(s.next(32), hdr.Uname, paxUname)   // 265:297
-	formatString(s.next(32), hdr.Gname, paxGname)   // 297:329
-	formatNumeric(s.next(8), hdr.Devmajor, paxNone) // 329:337
-	formatNumeric(s.next(8), hdr.Devminor, paxNone) // 337:345
-
-	// keep a reference to the prefix to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
-	prefixHeaderBytes := s.next(155)
-	formatString(prefixHeaderBytes, "", paxNone) // 345:500  prefix
-
-	// Use the GNU magic instead of POSIX magic if we used any GNU extensions.
-	if tw.usedBinary {
-		copy(header[257:265], []byte("ustar  \x00"))
-	}
-
-	_, paxPathUsed := paxHeaders[paxPath]
-	// try to use a ustar header when only the name is too long
-	if !tw.preferPax && len(paxHeaders) == 1 && paxPathUsed {
-		prefix, suffix, ok := splitUSTARPath(hdr.Name)
-		if ok {
-			// Since we can encode in USTAR format, disable PAX header.
-			delete(paxHeaders, paxPath)
-
-			// Update the path fields
-			formatString(pathHeaderBytes, suffix, paxNone)
-			formatString(prefixHeaderBytes, prefix, paxNone)
-		}
-	}
-
-	// The chksum field is terminated by a NUL and a space.
-	// This is different from the other octal fields.
-	chksum, _ := checksum(header)
-	f.formatOctal(header[148:155], chksum) // Never fails
-	header[155] = ' '
-
-	// Check if there were any formatting errors.
-	if f.err != nil {
-		tw.err = f.err
-		return tw.err
-	}
-
-	if allowPax {
-		if !hdr.AccessTime.IsZero() {
-			paxHeaders[paxAtime] = formatPAXTime(hdr.AccessTime)
-		}
-		if !hdr.ChangeTime.IsZero() {
-			paxHeaders[paxCtime] = formatPAXTime(hdr.ChangeTime)
-		}
-		if !hdr.CreationTime.IsZero() {
-			paxHeaders[paxCreationTime] = formatPAXTime(hdr.CreationTime)
-		}
-		for k, v := range hdr.Xattrs {
-			paxHeaders[paxXattr+k] = v
-		}
-		for k, v := range hdr.Winheaders {
-			paxHeaders[paxWindows+k] = v
-		}
-	}
-
-	if len(paxHeaders) > 0 {
-		if !allowPax {
-			return errInvalidHeader
-		}
-		if err := tw.writePAXHeader(hdr, paxHeaders); err != nil {
-			return err
-		}
-	}
-	tw.nb = int64(hdr.Size)
-	tw.pad = (blockSize - (tw.nb % blockSize)) % blockSize
-
-	_, tw.err = tw.w.Write(header)
-	return tw.err
-}
-
-func formatPAXTime(t time.Time) string {
-	sec := t.Unix()
-	usec := t.Nanosecond()
-	s := strconv.FormatInt(sec, 10)
-	if usec != 0 {
-		s = fmt.Sprintf("%s.%09d", s, usec)
-	}
-	return s
-}
-
-// splitUSTARPath splits a path according to USTAR prefix and suffix rules.
-// If the path is not splittable, then it will return ("", "", false).
-func splitUSTARPath(name string) (prefix, suffix string, ok bool) {
-	length := len(name)
-	if length <= fileNameSize || !isASCII(name) {
-		return "", "", false
-	} else if length > fileNamePrefixSize+1 {
-		length = fileNamePrefixSize + 1
-	} else if name[length-1] == '/' {
-		length--
-	}
-
-	i := strings.LastIndex(name[:length], "/")
-	nlen := len(name) - i - 1 // nlen is length of suffix
-	plen := i                 // plen is length of prefix
-	if i <= 0 || nlen > fileNameSize || nlen == 0 || plen > fileNamePrefixSize {
-		return "", "", false
-	}
-	return name[:i], name[i+1:], true
-}
-
-// writePaxHeader writes an extended pax header to the
-// archive.
-func (tw *Writer) writePAXHeader(hdr *Header, paxHeaders map[string]string) error {
-	// Prepare extended header
-	ext := new(Header)
-	ext.Typeflag = TypeXHeader
-	// Setting ModTime is required for reader parsing to
-	// succeed, and seems harmless enough.
-	ext.ModTime = hdr.ModTime
-	// The spec asks that we namespace our pseudo files
-	// with the current pid.  However, this results in differing outputs
-	// for identical inputs.  As such, the constant 0 is now used instead.
-	// golang.org/issue/12358
-	dir, file := path.Split(hdr.Name)
-	fullName := path.Join(dir, "PaxHeaders.0", file)
-
-	ascii := toASCII(fullName)
-	if len(ascii) > 100 {
-		ascii = ascii[:100]
-	}
-	ext.Name = ascii
-	// Construct the body
-	var buf bytes.Buffer
-
-	// Keys are sorted before writing to body to allow deterministic output.
-	var keys []string
-	for k := range paxHeaders {
-		keys = append(keys, k)
-	}
-	sort.Strings(keys)
-
-	for _, k := range keys {
-		fmt.Fprint(&buf, formatPAXRecord(k, paxHeaders[k]))
-	}
-
-	ext.Size = int64(len(buf.Bytes()))
-	if err := tw.writeHeader(ext, false); err != nil {
-		return err
-	}
-	if _, err := tw.Write(buf.Bytes()); err != nil {
-		return err
-	}
-	if err := tw.Flush(); err != nil {
-		return err
-	}
-	return nil
-}
-
-// formatPAXRecord formats a single PAX record, prefixing it with the
-// appropriate length.
-func formatPAXRecord(k, v string) string {
-	const padding = 3 // Extra padding for ' ', '=', and '\n'
-	size := len(k) + len(v) + padding
-	size += len(strconv.Itoa(size))
-	record := fmt.Sprintf("%d %s=%s\n", size, k, v)
-
-	// Final adjustment if adding size field increased the record size.
-	if len(record) != size {
-		size = len(record)
-		record = fmt.Sprintf("%d %s=%s\n", size, k, v)
-	}
-	return record
-}
-
-// Write writes to the current entry in the tar archive.
-// Write returns the error ErrWriteTooLong if more than
-// hdr.Size bytes are written after WriteHeader.
-func (tw *Writer) Write(b []byte) (n int, err error) {
-	if tw.closed {
-		err = ErrWriteAfterClose
-		return
-	}
-	overwrite := false
-	if int64(len(b)) > tw.nb {
-		b = b[0:tw.nb]
-		overwrite = true
-	}
-	n, err = tw.w.Write(b)
-	tw.nb -= int64(n)
-	if err == nil && overwrite {
-		err = ErrWriteTooLong
-		return
-	}
-	tw.err = err
-	return
-}
-
-// Close closes the tar archive, flushing any unwritten
-// data to the underlying writer.
-func (tw *Writer) Close() error {
-	if tw.err != nil || tw.closed {
-		return tw.err
-	}
-	tw.Flush()
-	tw.closed = true
-	if tw.err != nil {
-		return tw.err
-	}
-
-	// trailer: two zero blocks
-	for i := 0; i < 2; i++ {
-		_, tw.err = tw.w.Write(zeroBlock)
-		if tw.err != nil {
-			break
-		}
-	}
-	return tw.err
-}
diff --git a/vendor/github.com/Microsoft/go-winio/backuptar/noop.go b/vendor/github.com/Microsoft/go-winio/backuptar/noop.go
deleted file mode 100644
index d39eccf023..0000000000
--- a/vendor/github.com/Microsoft/go-winio/backuptar/noop.go
+++ /dev/null
@@ -1,4 +0,0 @@
-// +build !windows
-// This file only exists to allow go get on non-Windows platforms.
-
-package backuptar
diff --git a/vendor/github.com/Microsoft/go-winio/backuptar/tar.go b/vendor/github.com/Microsoft/go-winio/backuptar/tar.go
deleted file mode 100644
index 53da908f14..0000000000
--- a/vendor/github.com/Microsoft/go-winio/backuptar/tar.go
+++ /dev/null
@@ -1,439 +0,0 @@
-// +build windows
-
-package backuptar
-
-import (
-	"encoding/base64"
-	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"syscall"
-	"time"
-
-	"github.com/Microsoft/go-winio"
-	"github.com/Microsoft/go-winio/archive/tar" // until archive/tar supports pax extensions in its interface
-)
-
-const (
-	c_ISUID  = 04000   // Set uid
-	c_ISGID  = 02000   // Set gid
-	c_ISVTX  = 01000   // Save text (sticky bit)
-	c_ISDIR  = 040000  // Directory
-	c_ISFIFO = 010000  // FIFO
-	c_ISREG  = 0100000 // Regular file
-	c_ISLNK  = 0120000 // Symbolic link
-	c_ISBLK  = 060000  // Block special file
-	c_ISCHR  = 020000  // Character special file
-	c_ISSOCK = 0140000 // Socket
-)
-
-const (
-	hdrFileAttributes        = "fileattr"
-	hdrSecurityDescriptor    = "sd"
-	hdrRawSecurityDescriptor = "rawsd"
-	hdrMountPoint            = "mountpoint"
-	hdrEaPrefix              = "xattr."
-)
-
-func writeZeroes(w io.Writer, count int64) error {
-	buf := make([]byte, 8192)
-	c := len(buf)
-	for i := int64(0); i < count; i += int64(c) {
-		if int64(c) > count-i {
-			c = int(count - i)
-		}
-		_, err := w.Write(buf[:c])
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func copySparse(t *tar.Writer, br *winio.BackupStreamReader) error {
-	curOffset := int64(0)
-	for {
-		bhdr, err := br.Next()
-		if err == io.EOF {
-			err = io.ErrUnexpectedEOF
-		}
-		if err != nil {
-			return err
-		}
-		if bhdr.Id != winio.BackupSparseBlock {
-			return fmt.Errorf("unexpected stream %d", bhdr.Id)
-		}
-
-		// archive/tar does not support writing sparse files
-		// so just write zeroes to catch up to the current offset.
-		err = writeZeroes(t, bhdr.Offset-curOffset)
-		if bhdr.Size == 0 {
-			break
-		}
-		n, err := io.Copy(t, br)
-		if err != nil {
-			return err
-		}
-		curOffset = bhdr.Offset + n
-	}
-	return nil
-}
-
-// BasicInfoHeader creates a tar header from basic file information.
-func BasicInfoHeader(name string, size int64, fileInfo *winio.FileBasicInfo) *tar.Header {
-	hdr := &tar.Header{
-		Name:         filepath.ToSlash(name),
-		Size:         size,
-		Typeflag:     tar.TypeReg,
-		ModTime:      time.Unix(0, fileInfo.LastWriteTime.Nanoseconds()),
-		ChangeTime:   time.Unix(0, fileInfo.ChangeTime.Nanoseconds()),
-		AccessTime:   time.Unix(0, fileInfo.LastAccessTime.Nanoseconds()),
-		CreationTime: time.Unix(0, fileInfo.CreationTime.Nanoseconds()),
-		Winheaders:   make(map[string]string),
-	}
-	hdr.Winheaders[hdrFileAttributes] = fmt.Sprintf("%d", fileInfo.FileAttributes)
-
-	if (fileInfo.FileAttributes & syscall.FILE_ATTRIBUTE_DIRECTORY) != 0 {
-		hdr.Mode |= c_ISDIR
-		hdr.Size = 0
-		hdr.Typeflag = tar.TypeDir
-	}
-	return hdr
-}
-
-// WriteTarFileFromBackupStream writes a file to a tar writer using data from a Win32 backup stream.
-//
-// This encodes Win32 metadata as tar pax vendor extensions starting with MSWINDOWS.
-//
-// The additional Win32 metadata is:
-//
-// MSWINDOWS.fileattr: The Win32 file attributes, as a decimal value
-//
-// MSWINDOWS.rawsd: The Win32 security descriptor, in raw binary format
-//
-// MSWINDOWS.mountpoint: If present, this is a mount point and not a symlink, even though the type is '2' (symlink)
-func WriteTarFileFromBackupStream(t *tar.Writer, r io.Reader, name string, size int64, fileInfo *winio.FileBasicInfo) error {
-	name = filepath.ToSlash(name)
-	hdr := BasicInfoHeader(name, size, fileInfo)
-
-	// If r can be seeked, then this function is two-pass: pass 1 collects the
-	// tar header data, and pass 2 copies the data stream. If r cannot be
-	// seeked, then some header data (in particular EAs) will be silently lost.
-	var (
-		restartPos int64
-		err        error
-	)
-	sr, readTwice := r.(io.Seeker)
-	if readTwice {
-		if restartPos, err = sr.Seek(0, io.SeekCurrent); err != nil {
-			readTwice = false
-		}
-	}
-
-	br := winio.NewBackupStreamReader(r)
-	var dataHdr *winio.BackupHeader
-	for dataHdr == nil {
-		bhdr, err := br.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return err
-		}
-		switch bhdr.Id {
-		case winio.BackupData:
-			hdr.Mode |= c_ISREG
-			if !readTwice {
-				dataHdr = bhdr
-			}
-		case winio.BackupSecurity:
-			sd, err := ioutil.ReadAll(br)
-			if err != nil {
-				return err
-			}
-			hdr.Winheaders[hdrRawSecurityDescriptor] = base64.StdEncoding.EncodeToString(sd)
-
-		case winio.BackupReparseData:
-			hdr.Mode |= c_ISLNK
-			hdr.Typeflag = tar.TypeSymlink
-			reparseBuffer, err := ioutil.ReadAll(br)
-			rp, err := winio.DecodeReparsePoint(reparseBuffer)
-			if err != nil {
-				return err
-			}
-			if rp.IsMountPoint {
-				hdr.Winheaders[hdrMountPoint] = "1"
-			}
-			hdr.Linkname = rp.Target
-
-		case winio.BackupEaData:
-			eab, err := ioutil.ReadAll(br)
-			if err != nil {
-				return err
-			}
-			eas, err := winio.DecodeExtendedAttributes(eab)
-			if err != nil {
-				return err
-			}
-			for _, ea := range eas {
-				// Use base64 encoding for the binary value. Note that there
-				// is no way to encode the EA's flags, since their use doesn't
-				// make any sense for persisted EAs.
-				hdr.Winheaders[hdrEaPrefix+ea.Name] = base64.StdEncoding.EncodeToString(ea.Value)
-			}
-
-		case winio.BackupAlternateData, winio.BackupLink, winio.BackupPropertyData, winio.BackupObjectId, winio.BackupTxfsData:
-			// ignore these streams
-		default:
-			return fmt.Errorf("%s: unknown stream ID %d", name, bhdr.Id)
-		}
-	}
-
-	err = t.WriteHeader(hdr)
-	if err != nil {
-		return err
-	}
-
-	if readTwice {
-		// Get back to the data stream.
-		if _, err = sr.Seek(restartPos, io.SeekStart); err != nil {
-			return err
-		}
-		for dataHdr == nil {
-			bhdr, err := br.Next()
-			if err == io.EOF {
-				break
-			}
-			if err != nil {
-				return err
-			}
-			if bhdr.Id == winio.BackupData {
-				dataHdr = bhdr
-			}
-		}
-	}
-
-	if dataHdr != nil {
-		// A data stream was found. Copy the data.
-		if (dataHdr.Attributes & winio.StreamSparseAttributes) == 0 {
-			if size != dataHdr.Size {
-				return fmt.Errorf("%s: mismatch between file size %d and header size %d", name, size, dataHdr.Size)
-			}
-			_, err = io.Copy(t, br)
-			if err != nil {
-				return err
-			}
-		} else {
-			err = copySparse(t, br)
-			if err != nil {
-				return err
-			}
-		}
-	}
-
-	// Look for streams after the data stream. The only ones we handle are alternate data streams.
-	// Other streams may have metadata that could be serialized, but the tar header has already
-	// been written. In practice, this means that we don't get EA or TXF metadata.
-	for {
-		bhdr, err := br.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return err
-		}
-		switch bhdr.Id {
-		case winio.BackupAlternateData:
-			altName := bhdr.Name
-			if strings.HasSuffix(altName, ":$DATA") {
-				altName = altName[:len(altName)-len(":$DATA")]
-			}
-			if (bhdr.Attributes & winio.StreamSparseAttributes) == 0 {
-				hdr = &tar.Header{
-					Name:       name + altName,
-					Mode:       hdr.Mode,
-					Typeflag:   tar.TypeReg,
-					Size:       bhdr.Size,
-					ModTime:    hdr.ModTime,
-					AccessTime: hdr.AccessTime,
-					ChangeTime: hdr.ChangeTime,
-				}
-				err = t.WriteHeader(hdr)
-				if err != nil {
-					return err
-				}
-				_, err = io.Copy(t, br)
-				if err != nil {
-					return err
-				}
-
-			} else {
-				// Unsupported for now, since the size of the alternate stream is not present
-				// in the backup stream until after the data has been read.
-				return errors.New("tar of sparse alternate data streams is unsupported")
-			}
-		case winio.BackupEaData, winio.BackupLink, winio.BackupPropertyData, winio.BackupObjectId, winio.BackupTxfsData:
-			// ignore these streams
-		default:
-			return fmt.Errorf("%s: unknown stream ID %d after data", name, bhdr.Id)
-		}
-	}
-	return nil
-}
-
-// FileInfoFromHeader retrieves basic Win32 file information from a tar header, using the additional metadata written by
-// WriteTarFileFromBackupStream.
-func FileInfoFromHeader(hdr *tar.Header) (name string, size int64, fileInfo *winio.FileBasicInfo, err error) {
-	name = hdr.Name
-	if hdr.Typeflag == tar.TypeReg || hdr.Typeflag == tar.TypeRegA {
-		size = hdr.Size
-	}
-	fileInfo = &winio.FileBasicInfo{
-		LastAccessTime: syscall.NsecToFiletime(hdr.AccessTime.UnixNano()),
-		LastWriteTime:  syscall.NsecToFiletime(hdr.ModTime.UnixNano()),
-		ChangeTime:     syscall.NsecToFiletime(hdr.ChangeTime.UnixNano()),
-		CreationTime:   syscall.NsecToFiletime(hdr.CreationTime.UnixNano()),
-	}
-	if attrStr, ok := hdr.Winheaders[hdrFileAttributes]; ok {
-		attr, err := strconv.ParseUint(attrStr, 10, 32)
-		if err != nil {
-			return "", 0, nil, err
-		}
-		fileInfo.FileAttributes = uintptr(attr)
-	} else {
-		if hdr.Typeflag == tar.TypeDir {
-			fileInfo.FileAttributes |= syscall.FILE_ATTRIBUTE_DIRECTORY
-		}
-	}
-	return
-}
-
-// WriteBackupStreamFromTarFile writes a Win32 backup stream from the current tar file. Since this function may process multiple
-// tar file entries in order to collect all the alternate data streams for the file, it returns the next
-// tar file that was not processed, or io.EOF is there are no more.
-func WriteBackupStreamFromTarFile(w io.Writer, t *tar.Reader, hdr *tar.Header) (*tar.Header, error) {
-	bw := winio.NewBackupStreamWriter(w)
-	var sd []byte
-	var err error
-	// Maintaining old SDDL-based behavior for backward compatibility.  All new tar headers written
-	// by this library will have raw binary for the security descriptor.
-	if sddl, ok := hdr.Winheaders[hdrSecurityDescriptor]; ok {
-		sd, err = winio.SddlToSecurityDescriptor(sddl)
-		if err != nil {
-			return nil, err
-		}
-	}
-	if sdraw, ok := hdr.Winheaders[hdrRawSecurityDescriptor]; ok {
-		sd, err = base64.StdEncoding.DecodeString(sdraw)
-		if err != nil {
-			return nil, err
-		}
-	}
-	if len(sd) != 0 {
-		bhdr := winio.BackupHeader{
-			Id:   winio.BackupSecurity,
-			Size: int64(len(sd)),
-		}
-		err := bw.WriteHeader(&bhdr)
-		if err != nil {
-			return nil, err
-		}
-		_, err = bw.Write(sd)
-		if err != nil {
-			return nil, err
-		}
-	}
-	var eas []winio.ExtendedAttribute
-	for k, v := range hdr.Winheaders {
-		if !strings.HasPrefix(k, hdrEaPrefix) {
-			continue
-		}
-		data, err := base64.StdEncoding.DecodeString(v)
-		if err != nil {
-			return nil, err
-		}
-		eas = append(eas, winio.ExtendedAttribute{
-			Name:  k[len(hdrEaPrefix):],
-			Value: data,
-		})
-	}
-	if len(eas) != 0 {
-		eadata, err := winio.EncodeExtendedAttributes(eas)
-		if err != nil {
-			return nil, err
-		}
-		bhdr := winio.BackupHeader{
-			Id:   winio.BackupEaData,
-			Size: int64(len(eadata)),
-		}
-		err = bw.WriteHeader(&bhdr)
-		if err != nil {
-			return nil, err
-		}
-		_, err = bw.Write(eadata)
-		if err != nil {
-			return nil, err
-		}
-	}
-	if hdr.Typeflag == tar.TypeSymlink {
-		_, isMountPoint := hdr.Winheaders[hdrMountPoint]
-		rp := winio.ReparsePoint{
-			Target:       filepath.FromSlash(hdr.Linkname),
-			IsMountPoint: isMountPoint,
-		}
-		reparse := winio.EncodeReparsePoint(&rp)
-		bhdr := winio.BackupHeader{
-			Id:   winio.BackupReparseData,
-			Size: int64(len(reparse)),
-		}
-		err := bw.WriteHeader(&bhdr)
-		if err != nil {
-			return nil, err
-		}
-		_, err = bw.Write(reparse)
-		if err != nil {
-			return nil, err
-		}
-	}
-	if hdr.Typeflag == tar.TypeReg || hdr.Typeflag == tar.TypeRegA {
-		bhdr := winio.BackupHeader{
-			Id:   winio.BackupData,
-			Size: hdr.Size,
-		}
-		err := bw.WriteHeader(&bhdr)
-		if err != nil {
-			return nil, err
-		}
-		_, err = io.Copy(bw, t)
-		if err != nil {
-			return nil, err
-		}
-	}
-	// Copy all the alternate data streams and return the next non-ADS header.
-	for {
-		ahdr, err := t.Next()
-		if err != nil {
-			return nil, err
-		}
-		if ahdr.Typeflag != tar.TypeReg || !strings.HasPrefix(ahdr.Name, hdr.Name+":") {
-			return ahdr, nil
-		}
-		bhdr := winio.BackupHeader{
-			Id:   winio.BackupAlternateData,
-			Size: ahdr.Size,
-			Name: ahdr.Name[len(hdr.Name):] + ":$DATA",
-		}
-		err = bw.WriteHeader(&bhdr)
-		if err != nil {
-			return nil, err
-		}
-		_, err = io.Copy(bw, t)
-		if err != nil {
-			return nil, err
-		}
-	}
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/LICENSE b/vendor/github.com/Microsoft/hcsshim/LICENSE
deleted file mode 100644
index 49d21669ae..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2015 Microsoft
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
\ No newline at end of file
diff --git a/vendor/github.com/Microsoft/hcsshim/activatelayer.go b/vendor/github.com/Microsoft/hcsshim/activatelayer.go
deleted file mode 100644
index 6d824d7a79..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/activatelayer.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// ActivateLayer will find the layer with the given id and mount it's filesystem.
-// For a read/write layer, the mounted filesystem will appear as a volume on the
-// host, while a read-only layer is generally expected to be a no-op.
-// An activated layer must later be deactivated via DeactivateLayer.
-func ActivateLayer(info DriverInfo, id string) error {
-	title := "hcsshim::ActivateLayer "
-	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
-
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = activateLayer(&infop, id)
-	if err != nil {
-		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+" - succeeded id=%s flavour=%d", id, info.Flavour)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/baselayer.go b/vendor/github.com/Microsoft/hcsshim/baselayer.go
deleted file mode 100644
index 9babd4e18a..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/baselayer.go
+++ /dev/null
@@ -1,183 +0,0 @@
-package hcsshim
-
-import (
-	"errors"
-	"os"
-	"path/filepath"
-	"syscall"
-
-	"github.com/Microsoft/go-winio"
-)
-
-type baseLayerWriter struct {
-	root         string
-	f            *os.File
-	bw           *winio.BackupFileWriter
-	err          error
-	hasUtilityVM bool
-	dirInfo      []dirInfo
-}
-
-type dirInfo struct {
-	path     string
-	fileInfo winio.FileBasicInfo
-}
-
-// reapplyDirectoryTimes reapplies directory modification, creation, etc. times
-// after processing of the directory tree has completed. The times are expected
-// to be ordered such that parent directories come before child directories.
-func reapplyDirectoryTimes(dis []dirInfo) error {
-	for i := range dis {
-		di := &dis[len(dis)-i-1] // reverse order: process child directories first
-		f, err := winio.OpenForBackup(di.path, syscall.GENERIC_READ|syscall.GENERIC_WRITE, syscall.FILE_SHARE_READ, syscall.OPEN_EXISTING)
-		if err != nil {
-			return err
-		}
-
-		err = winio.SetFileBasicInfo(f, &di.fileInfo)
-		f.Close()
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func (w *baseLayerWriter) closeCurrentFile() error {
-	if w.f != nil {
-		err := w.bw.Close()
-		err2 := w.f.Close()
-		w.f = nil
-		w.bw = nil
-		if err != nil {
-			return err
-		}
-		if err2 != nil {
-			return err2
-		}
-	}
-	return nil
-}
-
-func (w *baseLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) (err error) {
-	defer func() {
-		if err != nil {
-			w.err = err
-		}
-	}()
-
-	err = w.closeCurrentFile()
-	if err != nil {
-		return err
-	}
-
-	if filepath.ToSlash(name) == `UtilityVM/Files` {
-		w.hasUtilityVM = true
-	}
-
-	path := filepath.Join(w.root, name)
-	path, err = makeLongAbsPath(path)
-	if err != nil {
-		return err
-	}
-
-	var f *os.File
-	defer func() {
-		if f != nil {
-			f.Close()
-		}
-	}()
-
-	createmode := uint32(syscall.CREATE_NEW)
-	if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_DIRECTORY != 0 {
-		err := os.Mkdir(path, 0)
-		if err != nil && !os.IsExist(err) {
-			return err
-		}
-		createmode = syscall.OPEN_EXISTING
-		if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT == 0 {
-			w.dirInfo = append(w.dirInfo, dirInfo{path, *fileInfo})
-		}
-	}
-
-	mode := uint32(syscall.GENERIC_READ | syscall.GENERIC_WRITE | winio.WRITE_DAC | winio.WRITE_OWNER | winio.ACCESS_SYSTEM_SECURITY)
-	f, err = winio.OpenForBackup(path, mode, syscall.FILE_SHARE_READ, createmode)
-	if err != nil {
-		return makeError(err, "Failed to OpenForBackup", path)
-	}
-
-	err = winio.SetFileBasicInfo(f, fileInfo)
-	if err != nil {
-		return makeError(err, "Failed to SetFileBasicInfo", path)
-	}
-
-	w.f = f
-	w.bw = winio.NewBackupFileWriter(f, true)
-	f = nil
-	return nil
-}
-
-func (w *baseLayerWriter) AddLink(name string, target string) (err error) {
-	defer func() {
-		if err != nil {
-			w.err = err
-		}
-	}()
-
-	err = w.closeCurrentFile()
-	if err != nil {
-		return err
-	}
-
-	linkpath, err := makeLongAbsPath(filepath.Join(w.root, name))
-	if err != nil {
-		return err
-	}
-
-	linktarget, err := makeLongAbsPath(filepath.Join(w.root, target))
-	if err != nil {
-		return err
-	}
-
-	return os.Link(linktarget, linkpath)
-}
-
-func (w *baseLayerWriter) Remove(name string) error {
-	return errors.New("base layer cannot have tombstones")
-}
-
-func (w *baseLayerWriter) Write(b []byte) (int, error) {
-	n, err := w.bw.Write(b)
-	if err != nil {
-		w.err = err
-	}
-	return n, err
-}
-
-func (w *baseLayerWriter) Close() error {
-	err := w.closeCurrentFile()
-	if err != nil {
-		return err
-	}
-	if w.err == nil {
-		// Restore the file times of all the directories, since they may have
-		// been modified by creating child directories.
-		err = reapplyDirectoryTimes(w.dirInfo)
-		if err != nil {
-			return err
-		}
-
-		err = ProcessBaseLayer(w.root)
-		if err != nil {
-			return err
-		}
-
-		if w.hasUtilityVM {
-			err = ProcessUtilityVMImage(filepath.Join(w.root, "UtilityVM"))
-			if err != nil {
-				return err
-			}
-		}
-	}
-	return w.err
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/callback.go b/vendor/github.com/Microsoft/hcsshim/callback.go
deleted file mode 100644
index e8c2b00c8a..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/callback.go
+++ /dev/null
@@ -1,79 +0,0 @@
-package hcsshim
-
-import (
-	"sync"
-	"syscall"
-)
-
-var (
-	nextCallback    uintptr
-	callbackMap     = map[uintptr]*notifcationWatcherContext{}
-	callbackMapLock = sync.RWMutex{}
-
-	notificationWatcherCallback = syscall.NewCallback(notificationWatcher)
-
-	// Notifications for HCS_SYSTEM handles
-	hcsNotificationSystemExited          hcsNotification = 0x00000001
-	hcsNotificationSystemCreateCompleted hcsNotification = 0x00000002
-	hcsNotificationSystemStartCompleted  hcsNotification = 0x00000003
-	hcsNotificationSystemPauseCompleted  hcsNotification = 0x00000004
-	hcsNotificationSystemResumeCompleted hcsNotification = 0x00000005
-
-	// Notifications for HCS_PROCESS handles
-	hcsNotificationProcessExited hcsNotification = 0x00010000
-
-	// Common notifications
-	hcsNotificationInvalid           hcsNotification = 0x00000000
-	hcsNotificationServiceDisconnect hcsNotification = 0x01000000
-)
-
-type hcsNotification uint32
-type notificationChannel chan error
-
-type notifcationWatcherContext struct {
-	channels notificationChannels
-	handle   hcsCallback
-}
-
-type notificationChannels map[hcsNotification]notificationChannel
-
-func newChannels() notificationChannels {
-	channels := make(notificationChannels)
-
-	channels[hcsNotificationSystemExited] = make(notificationChannel, 1)
-	channels[hcsNotificationSystemCreateCompleted] = make(notificationChannel, 1)
-	channels[hcsNotificationSystemStartCompleted] = make(notificationChannel, 1)
-	channels[hcsNotificationSystemPauseCompleted] = make(notificationChannel, 1)
-	channels[hcsNotificationSystemResumeCompleted] = make(notificationChannel, 1)
-	channels[hcsNotificationProcessExited] = make(notificationChannel, 1)
-	channels[hcsNotificationServiceDisconnect] = make(notificationChannel, 1)
-	return channels
-}
-func closeChannels(channels notificationChannels) {
-	close(channels[hcsNotificationSystemExited])
-	close(channels[hcsNotificationSystemCreateCompleted])
-	close(channels[hcsNotificationSystemStartCompleted])
-	close(channels[hcsNotificationSystemPauseCompleted])
-	close(channels[hcsNotificationSystemResumeCompleted])
-	close(channels[hcsNotificationProcessExited])
-	close(channels[hcsNotificationServiceDisconnect])
-}
-
-func notificationWatcher(notificationType hcsNotification, callbackNumber uintptr, notificationStatus uintptr, notificationData *uint16) uintptr {
-	var result error
-	if int32(notificationStatus) < 0 {
-		result = syscall.Errno(win32FromHresult(notificationStatus))
-	}
-
-	callbackMapLock.RLock()
-	context := callbackMap[callbackNumber]
-	callbackMapLock.RUnlock()
-
-	if context == nil {
-		return 0
-	}
-
-	context.channels[notificationType] <- result
-
-	return 0
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/cgo.go b/vendor/github.com/Microsoft/hcsshim/cgo.go
deleted file mode 100644
index 2003332330..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/cgo.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package hcsshim
-
-import "C"
-
-// This import is needed to make the library compile as CGO because HCSSHIM
-// only works with CGO due to callbacks from HCS comming back from a C thread
-// which is not supported without CGO. See https://github.com/golang/go/issues/10973
diff --git a/vendor/github.com/Microsoft/hcsshim/container.go b/vendor/github.com/Microsoft/hcsshim/container.go
deleted file mode 100644
index 3354f70efc..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/container.go
+++ /dev/null
@@ -1,800 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"fmt"
-	"os"
-	"sync"
-	"syscall"
-	"time"
-
-	"github.com/sirupsen/logrus"
-)
-
-var (
-	defaultTimeout = time.Minute * 4
-)
-
-const (
-	pendingUpdatesQuery    = `{ "PropertyTypes" : ["PendingUpdates"]}`
-	statisticsQuery        = `{ "PropertyTypes" : ["Statistics"]}`
-	processListQuery       = `{ "PropertyTypes" : ["ProcessList"]}`
-	mappedVirtualDiskQuery = `{ "PropertyTypes" : ["MappedVirtualDisk"]}`
-)
-
-type container struct {
-	handleLock     sync.RWMutex
-	handle         hcsSystem
-	id             string
-	callbackNumber uintptr
-}
-
-// ContainerProperties holds the properties for a container and the processes running in that container
-type ContainerProperties struct {
-	ID                           string `json:"Id"`
-	Name                         string
-	SystemType                   string
-	Owner                        string
-	SiloGUID                     string                              `json:"SiloGuid,omitempty"`
-	RuntimeID                    string                              `json:"RuntimeId,omitempty"`
-	IsRuntimeTemplate            bool                                `json:",omitempty"`
-	RuntimeImagePath             string                              `json:",omitempty"`
-	Stopped                      bool                                `json:",omitempty"`
-	ExitType                     string                              `json:",omitempty"`
-	AreUpdatesPending            bool                                `json:",omitempty"`
-	ObRoot                       string                              `json:",omitempty"`
-	Statistics                   Statistics                          `json:",omitempty"`
-	ProcessList                  []ProcessListItem                   `json:",omitempty"`
-	MappedVirtualDiskControllers map[int]MappedVirtualDiskController `json:",omitempty"`
-}
-
-// MemoryStats holds the memory statistics for a container
-type MemoryStats struct {
-	UsageCommitBytes            uint64 `json:"MemoryUsageCommitBytes,omitempty"`
-	UsageCommitPeakBytes        uint64 `json:"MemoryUsageCommitPeakBytes,omitempty"`
-	UsagePrivateWorkingSetBytes uint64 `json:"MemoryUsagePrivateWorkingSetBytes,omitempty"`
-}
-
-// ProcessorStats holds the processor statistics for a container
-type ProcessorStats struct {
-	TotalRuntime100ns  uint64 `json:",omitempty"`
-	RuntimeUser100ns   uint64 `json:",omitempty"`
-	RuntimeKernel100ns uint64 `json:",omitempty"`
-}
-
-// StorageStats holds the storage statistics for a container
-type StorageStats struct {
-	ReadCountNormalized  uint64 `json:",omitempty"`
-	ReadSizeBytes        uint64 `json:",omitempty"`
-	WriteCountNormalized uint64 `json:",omitempty"`
-	WriteSizeBytes       uint64 `json:",omitempty"`
-}
-
-// NetworkStats holds the network statistics for a container
-type NetworkStats struct {
-	BytesReceived          uint64 `json:",omitempty"`
-	BytesSent              uint64 `json:",omitempty"`
-	PacketsReceived        uint64 `json:",omitempty"`
-	PacketsSent            uint64 `json:",omitempty"`
-	DroppedPacketsIncoming uint64 `json:",omitempty"`
-	DroppedPacketsOutgoing uint64 `json:",omitempty"`
-	EndpointId             string `json:",omitempty"`
-	InstanceId             string `json:",omitempty"`
-}
-
-// Statistics is the structure returned by a statistics call on a container
-type Statistics struct {
-	Timestamp          time.Time      `json:",omitempty"`
-	ContainerStartTime time.Time      `json:",omitempty"`
-	Uptime100ns        uint64         `json:",omitempty"`
-	Memory             MemoryStats    `json:",omitempty"`
-	Processor          ProcessorStats `json:",omitempty"`
-	Storage            StorageStats   `json:",omitempty"`
-	Network            []NetworkStats `json:",omitempty"`
-}
-
-// ProcessList is the structure of an item returned by a ProcessList call on a container
-type ProcessListItem struct {
-	CreateTimestamp              time.Time `json:",omitempty"`
-	ImageName                    string    `json:",omitempty"`
-	KernelTime100ns              uint64    `json:",omitempty"`
-	MemoryCommitBytes            uint64    `json:",omitempty"`
-	MemoryWorkingSetPrivateBytes uint64    `json:",omitempty"`
-	MemoryWorkingSetSharedBytes  uint64    `json:",omitempty"`
-	ProcessId                    uint32    `json:",omitempty"`
-	UserTime100ns                uint64    `json:",omitempty"`
-}
-
-// MappedVirtualDiskController is the structure of an item returned by a MappedVirtualDiskList call on a container
-type MappedVirtualDiskController struct {
-	MappedVirtualDisks map[int]MappedVirtualDisk `json:",omitempty"`
-}
-
-// Type of Request Support in ModifySystem
-type RequestType string
-
-// Type of Resource Support in ModifySystem
-type ResourceType string
-
-// RequestType const
-const (
-	Add     RequestType  = "Add"
-	Remove  RequestType  = "Remove"
-	Network ResourceType = "Network"
-)
-
-// ResourceModificationRequestResponse is the structure used to send request to the container to modify the system
-// Supported resource types are Network and Request Types are Add/Remove
-type ResourceModificationRequestResponse struct {
-	Resource ResourceType `json:"ResourceType"`
-	Data     interface{}  `json:"Settings"`
-	Request  RequestType  `json:"RequestType,omitempty"`
-}
-
-// createContainerAdditionalJSON is read from the environment at initialisation
-// time. It allows an environment variable to define additional JSON which
-// is merged in the CreateContainer call to HCS.
-var createContainerAdditionalJSON string
-
-func init() {
-	createContainerAdditionalJSON = os.Getenv("HCSSHIM_CREATECONTAINER_ADDITIONALJSON")
-}
-
-// CreateContainer creates a new container with the given configuration but does not start it.
-func CreateContainer(id string, c *ContainerConfig) (Container, error) {
-	return createContainerWithJSON(id, c, "")
-}
-
-// CreateContainerWithJSON creates a new container with the given configuration but does not start it.
-// It is identical to CreateContainer except that optional additional JSON can be merged before passing to HCS.
-func CreateContainerWithJSON(id string, c *ContainerConfig, additionalJSON string) (Container, error) {
-	return createContainerWithJSON(id, c, additionalJSON)
-}
-
-func createContainerWithJSON(id string, c *ContainerConfig, additionalJSON string) (Container, error) {
-	operation := "CreateContainer"
-	title := "HCSShim::" + operation
-
-	container := &container{
-		id: id,
-	}
-
-	configurationb, err := json.Marshal(c)
-	if err != nil {
-		return nil, err
-	}
-
-	configuration := string(configurationb)
-	logrus.Debugf(title+" id=%s config=%s", id, configuration)
-
-	// Merge any additional JSON. Priority is given to what is passed in explicitly,
-	// falling back to what's set in the environment.
-	if additionalJSON == "" && createContainerAdditionalJSON != "" {
-		additionalJSON = createContainerAdditionalJSON
-	}
-	if additionalJSON != "" {
-		configurationMap := map[string]interface{}{}
-		if err := json.Unmarshal([]byte(configuration), &configurationMap); err != nil {
-			return nil, fmt.Errorf("failed to unmarshal %s: %s", configuration, err)
-		}
-
-		additionalMap := map[string]interface{}{}
-		if err := json.Unmarshal([]byte(additionalJSON), &additionalMap); err != nil {
-			return nil, fmt.Errorf("failed to unmarshal %s: %s", additionalJSON, err)
-		}
-
-		mergedMap := mergeMaps(additionalMap, configurationMap)
-		mergedJSON, err := json.Marshal(mergedMap)
-		if err != nil {
-			return nil, fmt.Errorf("failed to marshal merged configuration map %+v: %s", mergedMap, err)
-		}
-
-		configuration = string(mergedJSON)
-		logrus.Debugf(title+" id=%s merged config=%s", id, configuration)
-	}
-
-	var (
-		resultp  *uint16
-		identity syscall.Handle
-	)
-	createError := hcsCreateComputeSystem(id, configuration, identity, &container.handle, &resultp)
-
-	if createError == nil || IsPending(createError) {
-		if err := container.registerCallback(); err != nil {
-			// Terminate the container if it still exists. We're okay to ignore a failure here.
-			container.Terminate()
-			return nil, makeContainerError(container, operation, "", err)
-		}
-	}
-
-	err = processAsyncHcsResult(createError, resultp, container.callbackNumber, hcsNotificationSystemCreateCompleted, &defaultTimeout)
-	if err != nil {
-		if err == ErrTimeout {
-			// Terminate the container if it still exists. We're okay to ignore a failure here.
-			container.Terminate()
-		}
-		return nil, makeContainerError(container, operation, configuration, err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s handle=%d", id, container.handle)
-	return container, nil
-}
-
-// mergeMaps recursively merges map `fromMap` into map `ToMap`. Any pre-existing values
-// in ToMap are overwritten. Values in fromMap are added to ToMap.
-// From http://stackoverflow.com/questions/40491438/merging-two-json-strings-in-golang
-func mergeMaps(fromMap, ToMap interface{}) interface{} {
-	switch fromMap := fromMap.(type) {
-	case map[string]interface{}:
-		ToMap, ok := ToMap.(map[string]interface{})
-		if !ok {
-			return fromMap
-		}
-		for keyToMap, valueToMap := range ToMap {
-			if valueFromMap, ok := fromMap[keyToMap]; ok {
-				fromMap[keyToMap] = mergeMaps(valueFromMap, valueToMap)
-			} else {
-				fromMap[keyToMap] = valueToMap
-			}
-		}
-	case nil:
-		// merge(nil, map[string]interface{...}) -> map[string]interface{...}
-		ToMap, ok := ToMap.(map[string]interface{})
-		if ok {
-			return ToMap
-		}
-	}
-	return fromMap
-}
-
-// OpenContainer opens an existing container by ID.
-func OpenContainer(id string) (Container, error) {
-	operation := "OpenContainer"
-	title := "HCSShim::" + operation
-	logrus.Debugf(title+" id=%s", id)
-
-	container := &container{
-		id: id,
-	}
-
-	var (
-		handle  hcsSystem
-		resultp *uint16
-	)
-	err := hcsOpenComputeSystem(id, &handle, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	container.handle = handle
-
-	if err := container.registerCallback(); err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s handle=%d", id, handle)
-	return container, nil
-}
-
-// GetContainers gets a list of the containers on the system that match the query
-func GetContainers(q ComputeSystemQuery) ([]ContainerProperties, error) {
-	operation := "GetContainers"
-	title := "HCSShim::" + operation
-
-	queryb, err := json.Marshal(q)
-	if err != nil {
-		return nil, err
-	}
-
-	query := string(queryb)
-	logrus.Debugf(title+" query=%s", query)
-
-	var (
-		resultp         *uint16
-		computeSystemsp *uint16
-	)
-	err = hcsEnumerateComputeSystems(query, &computeSystemsp, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, err
-	}
-
-	if computeSystemsp == nil {
-		return nil, ErrUnexpectedValue
-	}
-	computeSystemsRaw := convertAndFreeCoTaskMemBytes(computeSystemsp)
-	computeSystems := []ContainerProperties{}
-	if err := json.Unmarshal(computeSystemsRaw, &computeSystems); err != nil {
-		return nil, err
-	}
-
-	logrus.Debugf(title + " succeeded")
-	return computeSystems, nil
-}
-
-// Start synchronously starts the container.
-func (container *container) Start() error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Start"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsStartComputeSystem(container.handle, "", &resultp)
-	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemStartCompleted, &defaultTimeout)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// Shutdown requests a container shutdown, if IsPending() on the error returned is true,
-// it may not actually be shut down until Wait() succeeds.
-func (container *container) Shutdown() error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Shutdown"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsShutdownComputeSystem(container.handle, "", &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// Terminate requests a container terminate, if IsPending() on the error returned is true,
-// it may not actually be shut down until Wait() succeeds.
-func (container *container) Terminate() error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Terminate"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsTerminateComputeSystem(container.handle, "", &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// Wait synchronously waits for the container to shutdown or terminate.
-func (container *container) Wait() error {
-	operation := "Wait"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, nil)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// WaitTimeout synchronously waits for the container to terminate or the duration to elapse.
-// If the timeout expires, IsTimeout(err) == true
-func (container *container) WaitTimeout(timeout time.Duration) error {
-	operation := "WaitTimeout"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, &timeout)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-func (container *container) properties(query string) (*ContainerProperties, error) {
-	var (
-		resultp     *uint16
-		propertiesp *uint16
-	)
-	err := hcsGetComputeSystemProperties(container.handle, query, &propertiesp, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, err
-	}
-
-	if propertiesp == nil {
-		return nil, ErrUnexpectedValue
-	}
-	propertiesRaw := convertAndFreeCoTaskMemBytes(propertiesp)
-	properties := &ContainerProperties{}
-	if err := json.Unmarshal(propertiesRaw, properties); err != nil {
-		return nil, err
-	}
-	return properties, nil
-}
-
-// HasPendingUpdates returns true if the container has updates pending to install
-func (container *container) HasPendingUpdates() (bool, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "HasPendingUpdates"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return false, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	properties, err := container.properties(pendingUpdatesQuery)
-	if err != nil {
-		return false, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return properties.AreUpdatesPending, nil
-}
-
-// Statistics returns statistics for the container
-func (container *container) Statistics() (Statistics, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Statistics"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return Statistics{}, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	properties, err := container.properties(statisticsQuery)
-	if err != nil {
-		return Statistics{}, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return properties.Statistics, nil
-}
-
-// ProcessList returns an array of ProcessListItems for the container
-func (container *container) ProcessList() ([]ProcessListItem, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "ProcessList"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	properties, err := container.properties(processListQuery)
-	if err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return properties.ProcessList, nil
-}
-
-// MappedVirtualDisks returns a map of the controllers and the disks mapped
-// to a container.
-//
-// Example of JSON returned by the query.
-//{
-//   "Id":"1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3_svm",
-//   "SystemType":"Container",
-//   "RuntimeOsType":"Linux",
-//   "RuntimeId":"00000000-0000-0000-0000-000000000000",
-//   "State":"Running",
-//   "MappedVirtualDiskControllers":{
-//      "0":{
-//         "MappedVirtualDisks":{
-//            "2":{
-//               "HostPath":"C:\\lcow\\lcow\\scratch\\1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3.vhdx",
-//               "ContainerPath":"/mnt/gcs/LinuxServiceVM/scratch",
-//               "Lun":2,
-//               "CreateInUtilityVM":true
-//            },
-//            "3":{
-//               "HostPath":"C:\\lcow\\lcow\\1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3\\sandbox.vhdx",
-//               "Lun":3,
-//               "CreateInUtilityVM":true,
-//               "AttachOnly":true
-//            }
-//         }
-//      }
-//   }
-//}
-func (container *container) MappedVirtualDisks() (map[int]MappedVirtualDiskController, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "MappedVirtualDiskList"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	properties, err := container.properties(mappedVirtualDiskQuery)
-	if err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return properties.MappedVirtualDiskControllers, nil
-}
-
-// Pause pauses the execution of the container. This feature is not enabled in TP5.
-func (container *container) Pause() error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Pause"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsPauseComputeSystem(container.handle, "", &resultp)
-	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemPauseCompleted, &defaultTimeout)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// Resume resumes the execution of the container. This feature is not enabled in TP5.
-func (container *container) Resume() error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Resume"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsResumeComputeSystem(container.handle, "", &resultp)
-	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemResumeCompleted, &defaultTimeout)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-// CreateProcess launches a new process within the container.
-func (container *container) CreateProcess(c *ProcessConfig) (Process, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "CreateProcess"
-	title := "HCSShim::Container::" + operation
-	var (
-		processInfo   hcsProcessInformation
-		processHandle hcsProcess
-		resultp       *uint16
-	)
-
-	if container.handle == 0 {
-		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	// If we are not emulating a console, ignore any console size passed to us
-	if !c.EmulateConsole {
-		c.ConsoleSize[0] = 0
-		c.ConsoleSize[1] = 0
-	}
-
-	configurationb, err := json.Marshal(c)
-	if err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	configuration := string(configurationb)
-	logrus.Debugf(title+" id=%s config=%s", container.id, configuration)
-
-	err = hcsCreateProcess(container.handle, configuration, &processInfo, &processHandle, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, makeContainerError(container, operation, configuration, err)
-	}
-
-	process := &process{
-		handle:    processHandle,
-		processID: int(processInfo.ProcessId),
-		container: container,
-		cachedPipes: &cachedPipes{
-			stdIn:  processInfo.StdInput,
-			stdOut: processInfo.StdOutput,
-			stdErr: processInfo.StdError,
-		},
-	}
-
-	if err := process.registerCallback(); err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s processid=%d", container.id, process.processID)
-	return process, nil
-}
-
-// OpenProcess gets an interface to an existing process within the container.
-func (container *container) OpenProcess(pid int) (Process, error) {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "OpenProcess"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s, processid=%d", container.id, pid)
-	var (
-		processHandle hcsProcess
-		resultp       *uint16
-	)
-
-	if container.handle == 0 {
-		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	err := hcsOpenProcess(container.handle, uint32(pid), &processHandle, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	process := &process{
-		handle:    processHandle,
-		processID: pid,
-		container: container,
-	}
-
-	if err := process.registerCallback(); err != nil {
-		return nil, makeContainerError(container, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded id=%s processid=%s", container.id, process.processID)
-	return process, nil
-}
-
-// Close cleans up any state associated with the container but does not terminate or wait for it.
-func (container *container) Close() error {
-	container.handleLock.Lock()
-	defer container.handleLock.Unlock()
-	operation := "Close"
-	title := "HCSShim::Container::" + operation
-	logrus.Debugf(title+" id=%s", container.id)
-
-	// Don't double free this
-	if container.handle == 0 {
-		return nil
-	}
-
-	if err := container.unregisterCallback(); err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	if err := hcsCloseComputeSystem(container.handle); err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-
-	container.handle = 0
-
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
-
-func (container *container) registerCallback() error {
-	context := &notifcationWatcherContext{
-		channels: newChannels(),
-	}
-
-	callbackMapLock.Lock()
-	callbackNumber := nextCallback
-	nextCallback++
-	callbackMap[callbackNumber] = context
-	callbackMapLock.Unlock()
-
-	var callbackHandle hcsCallback
-	err := hcsRegisterComputeSystemCallback(container.handle, notificationWatcherCallback, callbackNumber, &callbackHandle)
-	if err != nil {
-		return err
-	}
-	context.handle = callbackHandle
-	container.callbackNumber = callbackNumber
-
-	return nil
-}
-
-func (container *container) unregisterCallback() error {
-	callbackNumber := container.callbackNumber
-
-	callbackMapLock.RLock()
-	context := callbackMap[callbackNumber]
-	callbackMapLock.RUnlock()
-
-	if context == nil {
-		return nil
-	}
-
-	handle := context.handle
-
-	if handle == 0 {
-		return nil
-	}
-
-	// hcsUnregisterComputeSystemCallback has its own syncronization
-	// to wait for all callbacks to complete. We must NOT hold the callbackMapLock.
-	err := hcsUnregisterComputeSystemCallback(handle)
-	if err != nil {
-		return err
-	}
-
-	closeChannels(context.channels)
-
-	callbackMapLock.Lock()
-	callbackMap[callbackNumber] = nil
-	callbackMapLock.Unlock()
-
-	handle = 0
-
-	return nil
-}
-
-// Modifies the System by sending a request to HCS
-func (container *container) Modify(config *ResourceModificationRequestResponse) error {
-	container.handleLock.RLock()
-	defer container.handleLock.RUnlock()
-	operation := "Modify"
-	title := "HCSShim::Container::" + operation
-
-	if container.handle == 0 {
-		return makeContainerError(container, operation, "", ErrAlreadyClosed)
-	}
-
-	requestJSON, err := json.Marshal(config)
-	if err != nil {
-		return err
-	}
-
-	requestString := string(requestJSON)
-	logrus.Debugf(title+" id=%s request=%s", container.id, requestString)
-
-	var resultp *uint16
-	err = hcsModifyComputeSystem(container.handle, requestString, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeContainerError(container, operation, "", err)
-	}
-	logrus.Debugf(title+" succeeded id=%s", container.id)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/createlayer.go b/vendor/github.com/Microsoft/hcsshim/createlayer.go
deleted file mode 100644
index 035d9c3947..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/createlayer.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// CreateLayer creates a new, empty, read-only layer on the filesystem based on
-// the parent layer provided.
-func CreateLayer(info DriverInfo, id, parent string) error {
-	title := "hcsshim::CreateLayer "
-	logrus.Debugf(title+"Flavour %d ID %s parent %s", info.Flavour, id, parent)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = createLayer(&infop, id, parent)
-	if err != nil {
-		err = makeErrorf(err, title, "id=%s parent=%s flavour=%d", id, parent, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+" - succeeded id=%s parent=%s flavour=%d", id, parent, info.Flavour)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go b/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
deleted file mode 100644
index 7a6a8854cf..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// CreateSandboxLayer creates and populates new read-write layer for use by a container.
-// This requires both the id of the direct parent layer, as well as the full list
-// of paths to all parent layers up to the base (and including the direct parent
-// whose id was provided).
-func CreateSandboxLayer(info DriverInfo, layerId, parentId string, parentLayerPaths []string) error {
-	title := "hcsshim::CreateSandboxLayer "
-	logrus.Debugf(title+"layerId %s parentId %s", layerId, parentId)
-
-	// Generate layer descriptors
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return err
-	}
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = createSandboxLayer(&infop, layerId, parentId, layers)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s parentId=%s", layerId, parentId)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"- succeeded layerId=%s parentId=%s", layerId, parentId)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go b/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
deleted file mode 100644
index fd785030fb..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// DeactivateLayer will dismount a layer that was mounted via ActivateLayer.
-func DeactivateLayer(info DriverInfo, id string) error {
-	title := "hcsshim::DeactivateLayer "
-	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = deactivateLayer(&infop, id)
-	if err != nil {
-		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d id=%s", info.Flavour, id)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/destroylayer.go b/vendor/github.com/Microsoft/hcsshim/destroylayer.go
deleted file mode 100644
index b1e3b89fc7..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/destroylayer.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// DestroyLayer will remove the on-disk files representing the layer with the given
-// id, including that layer's containing folder, if any.
-func DestroyLayer(info DriverInfo, id string) error {
-	title := "hcsshim::DestroyLayer "
-	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = destroyLayer(&infop, id)
-	if err != nil {
-		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d id=%s", info.Flavour, id)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/errors.go b/vendor/github.com/Microsoft/hcsshim/errors.go
deleted file mode 100644
index c0c6cac87c..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/errors.go
+++ /dev/null
@@ -1,261 +0,0 @@
-package hcsshim
-
-import (
-	"errors"
-	"fmt"
-	"syscall"
-)
-
-var (
-	// ErrComputeSystemDoesNotExist is an error encountered when the container being operated on no longer exists
-	ErrComputeSystemDoesNotExist = syscall.Errno(0xc037010e)
-
-	// ErrElementNotFound is an error encountered when the object being referenced does not exist
-	ErrElementNotFound = syscall.Errno(0x490)
-
-	// ErrElementNotFound is an error encountered when the object being referenced does not exist
-	ErrNotSupported = syscall.Errno(0x32)
-
-	// ErrInvalidData is an error encountered when the request being sent to hcs is invalid/unsupported
-	// decimal -2147024883 / hex 0x8007000d
-	ErrInvalidData = syscall.Errno(0xd)
-
-	// ErrHandleClose is an error encountered when the handle generating the notification being waited on has been closed
-	ErrHandleClose = errors.New("hcsshim: the handle generating this notification has been closed")
-
-	// ErrAlreadyClosed is an error encountered when using a handle that has been closed by the Close method
-	ErrAlreadyClosed = errors.New("hcsshim: the handle has already been closed")
-
-	// ErrInvalidNotificationType is an error encountered when an invalid notification type is used
-	ErrInvalidNotificationType = errors.New("hcsshim: invalid notification type")
-
-	// ErrInvalidProcessState is an error encountered when the process is not in a valid state for the requested operation
-	ErrInvalidProcessState = errors.New("the process is in an invalid state for the attempted operation")
-
-	// ErrTimeout is an error encountered when waiting on a notification times out
-	ErrTimeout = errors.New("hcsshim: timeout waiting for notification")
-
-	// ErrUnexpectedContainerExit is the error encountered when a container exits while waiting for
-	// a different expected notification
-	ErrUnexpectedContainerExit = errors.New("unexpected container exit")
-
-	// ErrUnexpectedProcessAbort is the error encountered when communication with the compute service
-	// is lost while waiting for a notification
-	ErrUnexpectedProcessAbort = errors.New("lost communication with compute service")
-
-	// ErrUnexpectedValue is an error encountered when hcs returns an invalid value
-	ErrUnexpectedValue = errors.New("unexpected value returned from hcs")
-
-	// ErrVmcomputeAlreadyStopped is an error encountered when a shutdown or terminate request is made on a stopped container
-	ErrVmcomputeAlreadyStopped = syscall.Errno(0xc0370110)
-
-	// ErrVmcomputeOperationPending is an error encountered when the operation is being completed asynchronously
-	ErrVmcomputeOperationPending = syscall.Errno(0xC0370103)
-
-	// ErrVmcomputeOperationInvalidState is an error encountered when the compute system is not in a valid state for the requested operation
-	ErrVmcomputeOperationInvalidState = syscall.Errno(0xc0370105)
-
-	// ErrProcNotFound is an error encountered when the the process cannot be found
-	ErrProcNotFound = syscall.Errno(0x7f)
-
-	// ErrVmcomputeOperationAccessIsDenied is an error which can be encountered when enumerating compute systems in RS1/RS2
-	// builds when the underlying silo might be in the process of terminating. HCS was fixed in RS3.
-	ErrVmcomputeOperationAccessIsDenied = syscall.Errno(0x5)
-
-	// ErrVmcomputeInvalidJSON is an error encountered when the compute system does not support/understand the messages sent by management
-	ErrVmcomputeInvalidJSON = syscall.Errno(0xc037010d)
-
-	// ErrVmcomputeUnknownMessage is an error encountered guest compute system doesn't support the message
-	ErrVmcomputeUnknownMessage = syscall.Errno(0xc037010b)
-
-	// ErrNotSupported is an error encountered when hcs doesn't support the request
-	ErrPlatformNotSupported = errors.New("unsupported platform request")
-)
-
-type EndpointNotFoundError struct {
-	EndpointName string
-}
-
-func (e EndpointNotFoundError) Error() string {
-	return fmt.Sprintf("Endpoint %s not found", e.EndpointName)
-}
-
-type NetworkNotFoundError struct {
-	NetworkName string
-}
-
-func (e NetworkNotFoundError) Error() string {
-	return fmt.Sprintf("Network %s not found", e.NetworkName)
-}
-
-// ProcessError is an error encountered in HCS during an operation on a Process object
-type ProcessError struct {
-	Process   *process
-	Operation string
-	ExtraInfo string
-	Err       error
-}
-
-// ContainerError is an error encountered in HCS during an operation on a Container object
-type ContainerError struct {
-	Container *container
-	Operation string
-	ExtraInfo string
-	Err       error
-}
-
-func (e *ContainerError) Error() string {
-	if e == nil {
-		return "<nil>"
-	}
-
-	if e.Container == nil {
-		return "unexpected nil container for error: " + e.Err.Error()
-	}
-
-	s := "container " + e.Container.id
-
-	if e.Operation != "" {
-		s += " encountered an error during " + e.Operation
-	}
-
-	switch e.Err.(type) {
-	case nil:
-		break
-	case syscall.Errno:
-		s += fmt.Sprintf(": failure in a Windows system call: %s (0x%x)", e.Err, win32FromError(e.Err))
-	default:
-		s += fmt.Sprintf(": %s", e.Err.Error())
-	}
-
-	if e.ExtraInfo != "" {
-		s += " extra info: " + e.ExtraInfo
-	}
-
-	return s
-}
-
-func makeContainerError(container *container, operation string, extraInfo string, err error) error {
-	// Don't double wrap errors
-	if _, ok := err.(*ContainerError); ok {
-		return err
-	}
-	containerError := &ContainerError{Container: container, Operation: operation, ExtraInfo: extraInfo, Err: err}
-	return containerError
-}
-
-func (e *ProcessError) Error() string {
-	if e == nil {
-		return "<nil>"
-	}
-
-	if e.Process == nil {
-		return "Unexpected nil process for error: " + e.Err.Error()
-	}
-
-	s := fmt.Sprintf("process %d", e.Process.processID)
-
-	if e.Process.container != nil {
-		s += " in container " + e.Process.container.id
-	}
-
-	if e.Operation != "" {
-		s += " encountered an error during " + e.Operation
-	}
-
-	switch e.Err.(type) {
-	case nil:
-		break
-	case syscall.Errno:
-		s += fmt.Sprintf(": failure in a Windows system call: %s (0x%x)", e.Err, win32FromError(e.Err))
-	default:
-		s += fmt.Sprintf(": %s", e.Err.Error())
-	}
-
-	return s
-}
-
-func makeProcessError(process *process, operation string, extraInfo string, err error) error {
-	// Don't double wrap errors
-	if _, ok := err.(*ProcessError); ok {
-		return err
-	}
-	processError := &ProcessError{Process: process, Operation: operation, ExtraInfo: extraInfo, Err: err}
-	return processError
-}
-
-// IsNotExist checks if an error is caused by the Container or Process not existing.
-// Note: Currently, ErrElementNotFound can mean that a Process has either
-// already exited, or does not exist. Both IsAlreadyStopped and IsNotExist
-// will currently return true when the error is ErrElementNotFound or ErrProcNotFound.
-func IsNotExist(err error) bool {
-	err = getInnerError(err)
-	if _, ok := err.(EndpointNotFoundError); ok {
-		return true
-	}
-	if _, ok := err.(NetworkNotFoundError); ok {
-		return true
-	}
-	return err == ErrComputeSystemDoesNotExist ||
-		err == ErrElementNotFound ||
-		err == ErrProcNotFound
-}
-
-// IsAlreadyClosed checks if an error is caused by the Container or Process having been
-// already closed by a call to the Close() method.
-func IsAlreadyClosed(err error) bool {
-	err = getInnerError(err)
-	return err == ErrAlreadyClosed
-}
-
-// IsPending returns a boolean indicating whether the error is that
-// the requested operation is being completed in the background.
-func IsPending(err error) bool {
-	err = getInnerError(err)
-	return err == ErrVmcomputeOperationPending
-}
-
-// IsTimeout returns a boolean indicating whether the error is caused by
-// a timeout waiting for the operation to complete.
-func IsTimeout(err error) bool {
-	err = getInnerError(err)
-	return err == ErrTimeout
-}
-
-// IsAlreadyStopped returns a boolean indicating whether the error is caused by
-// a Container or Process being already stopped.
-// Note: Currently, ErrElementNotFound can mean that a Process has either
-// already exited, or does not exist. Both IsAlreadyStopped and IsNotExist
-// will currently return true when the error is ErrElementNotFound or ErrProcNotFound.
-func IsAlreadyStopped(err error) bool {
-	err = getInnerError(err)
-	return err == ErrVmcomputeAlreadyStopped ||
-		err == ErrElementNotFound ||
-		err == ErrProcNotFound
-}
-
-// IsNotSupported returns a boolean indicating whether the error is caused by
-// unsupported platform requests
-// Note: Currently Unsupported platform requests can be mean either
-// ErrVmcomputeInvalidJSON, ErrInvalidData, ErrNotSupported or ErrVmcomputeUnknownMessage
-// is thrown from the Platform
-func IsNotSupported(err error) bool {
-	err = getInnerError(err)
-	// If Platform doesn't recognize or support the request sent, below errors are seen
-	return err == ErrVmcomputeInvalidJSON ||
-		err == ErrInvalidData ||
-		err == ErrNotSupported ||
-		err == ErrVmcomputeUnknownMessage
-}
-
-func getInnerError(err error) error {
-	switch pe := err.(type) {
-	case nil:
-		return nil
-	case *ContainerError:
-		err = pe.Err
-	case *ProcessError:
-		err = pe.Err
-	}
-	return err
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go b/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
deleted file mode 100644
index 6946c6a84f..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// ExpandSandboxSize expands the size of a layer to at least size bytes.
-func ExpandSandboxSize(info DriverInfo, layerId string, size uint64) error {
-	title := "hcsshim::ExpandSandboxSize "
-	logrus.Debugf(title+"layerId=%s size=%d", layerId, size)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = expandSandboxSize(&infop, layerId, size)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s  size=%d", layerId, size)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"- succeeded layerId=%s size=%d", layerId, size)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/exportlayer.go b/vendor/github.com/Microsoft/hcsshim/exportlayer.go
deleted file mode 100644
index d7025f20ba..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/exportlayer.go
+++ /dev/null
@@ -1,156 +0,0 @@
-package hcsshim
-
-import (
-	"io"
-	"io/ioutil"
-	"os"
-	"syscall"
-
-	"github.com/Microsoft/go-winio"
-	"github.com/sirupsen/logrus"
-)
-
-// ExportLayer will create a folder at exportFolderPath and fill that folder with
-// the transport format version of the layer identified by layerId. This transport
-// format includes any metadata required for later importing the layer (using
-// ImportLayer), and requires the full list of parent layer paths in order to
-// perform the export.
-func ExportLayer(info DriverInfo, layerId string, exportFolderPath string, parentLayerPaths []string) error {
-	title := "hcsshim::ExportLayer "
-	logrus.Debugf(title+"flavour %d layerId %s folder %s", info.Flavour, layerId, exportFolderPath)
-
-	// Generate layer descriptors
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return err
-	}
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = exportLayer(&infop, layerId, exportFolderPath, layers)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s flavour=%d folder=%s", layerId, info.Flavour, exportFolderPath)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d layerId=%s folder=%s", info.Flavour, layerId, exportFolderPath)
-	return nil
-}
-
-type LayerReader interface {
-	Next() (string, int64, *winio.FileBasicInfo, error)
-	Read(b []byte) (int, error)
-	Close() error
-}
-
-// FilterLayerReader provides an interface for extracting the contents of an on-disk layer.
-type FilterLayerReader struct {
-	context uintptr
-}
-
-// Next reads the next available file from a layer, ensuring that parent directories are always read
-// before child files and directories.
-//
-// Next returns the file's relative path, size, and basic file metadata. Read() should be used to
-// extract a Win32 backup stream with the remainder of the metadata and the data.
-func (r *FilterLayerReader) Next() (string, int64, *winio.FileBasicInfo, error) {
-	var fileNamep *uint16
-	fileInfo := &winio.FileBasicInfo{}
-	var deleted uint32
-	var fileSize int64
-	err := exportLayerNext(r.context, &fileNamep, fileInfo, &fileSize, &deleted)
-	if err != nil {
-		if err == syscall.ERROR_NO_MORE_FILES {
-			err = io.EOF
-		} else {
-			err = makeError(err, "ExportLayerNext", "")
-		}
-		return "", 0, nil, err
-	}
-	fileName := convertAndFreeCoTaskMemString(fileNamep)
-	if deleted != 0 {
-		fileInfo = nil
-	}
-	if fileName[0] == '\\' {
-		fileName = fileName[1:]
-	}
-	return fileName, fileSize, fileInfo, nil
-}
-
-// Read reads from the current file's Win32 backup stream.
-func (r *FilterLayerReader) Read(b []byte) (int, error) {
-	var bytesRead uint32
-	err := exportLayerRead(r.context, b, &bytesRead)
-	if err != nil {
-		return 0, makeError(err, "ExportLayerRead", "")
-	}
-	if bytesRead == 0 {
-		return 0, io.EOF
-	}
-	return int(bytesRead), nil
-}
-
-// Close frees resources associated with the layer reader. It will return an
-// error if there was an error while reading the layer or of the layer was not
-// completely read.
-func (r *FilterLayerReader) Close() (err error) {
-	if r.context != 0 {
-		err = exportLayerEnd(r.context)
-		if err != nil {
-			err = makeError(err, "ExportLayerEnd", "")
-		}
-		r.context = 0
-	}
-	return
-}
-
-// NewLayerReader returns a new layer reader for reading the contents of an on-disk layer.
-// The caller must have taken the SeBackupPrivilege privilege
-// to call this and any methods on the resulting LayerReader.
-func NewLayerReader(info DriverInfo, layerID string, parentLayerPaths []string) (LayerReader, error) {
-	if procExportLayerBegin.Find() != nil {
-		// The new layer reader is not available on this Windows build. Fall back to the
-		// legacy export code path.
-		path, err := ioutil.TempDir("", "hcs")
-		if err != nil {
-			return nil, err
-		}
-		err = ExportLayer(info, layerID, path, parentLayerPaths)
-		if err != nil {
-			os.RemoveAll(path)
-			return nil, err
-		}
-		return &legacyLayerReaderWrapper{newLegacyLayerReader(path)}, nil
-	}
-
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return nil, err
-	}
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		return nil, err
-	}
-	r := &FilterLayerReader{}
-	err = exportLayerBegin(&infop, layerID, layers, &r.context)
-	if err != nil {
-		return nil, makeError(err, "ExportLayerBegin", "")
-	}
-	return r, err
-}
-
-type legacyLayerReaderWrapper struct {
-	*legacyLayerReader
-}
-
-func (r *legacyLayerReaderWrapper) Close() error {
-	err := r.legacyLayerReader.Close()
-	os.RemoveAll(r.root)
-	return err
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go b/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
deleted file mode 100644
index 89f8079d0f..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
+++ /dev/null
@@ -1,55 +0,0 @@
-package hcsshim
-
-import (
-	"syscall"
-
-	"github.com/sirupsen/logrus"
-)
-
-// GetLayerMountPath will look for a mounted layer with the given id and return
-// the path at which that layer can be accessed.  This path may be a volume path
-// if the layer is a mounted read-write layer, otherwise it is expected to be the
-// folder path at which the layer is stored.
-func GetLayerMountPath(info DriverInfo, id string) (string, error) {
-	title := "hcsshim::GetLayerMountPath "
-	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return "", err
-	}
-
-	var mountPathLength uintptr
-	mountPathLength = 0
-
-	// Call the procedure itself.
-	logrus.Debugf("Calling proc (1)")
-	err = getLayerMountPath(&infop, id, &mountPathLength, nil)
-	if err != nil {
-		err = makeErrorf(err, title, "(first call) id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return "", err
-	}
-
-	// Allocate a mount path of the returned length.
-	if mountPathLength == 0 {
-		return "", nil
-	}
-	mountPathp := make([]uint16, mountPathLength)
-	mountPathp[0] = 0
-
-	// Call the procedure again
-	logrus.Debugf("Calling proc (2)")
-	err = getLayerMountPath(&infop, id, &mountPathLength, &mountPathp[0])
-	if err != nil {
-		err = makeErrorf(err, title, "(second call) id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return "", err
-	}
-
-	path := syscall.UTF16ToString(mountPathp[0:])
-	logrus.Debugf(title+"succeeded flavour=%d id=%s path=%s", info.Flavour, id, path)
-	return path, nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go b/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
deleted file mode 100644
index 05d3d9532a..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// GetSharedBaseImages will enumerate the images stored in the common central
-// image store and return descriptive info about those images for the purpose
-// of registering them with the graphdriver, graph, and tagstore.
-func GetSharedBaseImages() (imageData string, err error) {
-	title := "hcsshim::GetSharedBaseImages "
-
-	logrus.Debugf("Calling proc")
-	var buffer *uint16
-	err = getBaseImages(&buffer)
-	if err != nil {
-		err = makeError(err, title, "")
-		logrus.Error(err)
-		return
-	}
-	imageData = convertAndFreeCoTaskMemString(buffer)
-	logrus.Debugf(title+" - succeeded output=%s", imageData)
-	return
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/guid.go b/vendor/github.com/Microsoft/hcsshim/guid.go
deleted file mode 100644
index 620aba123c..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/guid.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package hcsshim
-
-import (
-	"crypto/sha1"
-	"fmt"
-)
-
-type GUID [16]byte
-
-func NewGUID(source string) *GUID {
-	h := sha1.Sum([]byte(source))
-	var g GUID
-	copy(g[0:], h[0:16])
-	return &g
-}
-
-func (g *GUID) ToString() string {
-	return fmt.Sprintf("%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x-%02x", g[3], g[2], g[1], g[0], g[5], g[4], g[7], g[6], g[8:10], g[10:])
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hcsshim.go b/vendor/github.com/Microsoft/hcsshim/hcsshim.go
deleted file mode 100644
index 236ba1fa30..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hcsshim.go
+++ /dev/null
@@ -1,166 +0,0 @@
-// Shim for the Host Compute Service (HCS) to manage Windows Server
-// containers and Hyper-V containers.
-
-package hcsshim
-
-import (
-	"fmt"
-	"syscall"
-	"unsafe"
-
-	"github.com/sirupsen/logrus"
-)
-
-//go:generate go run mksyscall_windows.go -output zhcsshim.go hcsshim.go
-
-//sys coTaskMemFree(buffer unsafe.Pointer) = ole32.CoTaskMemFree
-//sys SetCurrentThreadCompartmentId(compartmentId uint32) (hr error) = iphlpapi.SetCurrentThreadCompartmentId
-
-//sys activateLayer(info *driverInfo, id string) (hr error) = vmcompute.ActivateLayer?
-//sys copyLayer(info *driverInfo, srcId string, dstId string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.CopyLayer?
-//sys createLayer(info *driverInfo, id string, parent string) (hr error) = vmcompute.CreateLayer?
-//sys createSandboxLayer(info *driverInfo, id string, parent string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.CreateSandboxLayer?
-//sys expandSandboxSize(info *driverInfo, id string, size uint64) (hr error) = vmcompute.ExpandSandboxSize?
-//sys deactivateLayer(info *driverInfo, id string) (hr error) = vmcompute.DeactivateLayer?
-//sys destroyLayer(info *driverInfo, id string) (hr error) = vmcompute.DestroyLayer?
-//sys exportLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.ExportLayer?
-//sys getLayerMountPath(info *driverInfo, id string, length *uintptr, buffer *uint16) (hr error) = vmcompute.GetLayerMountPath?
-//sys getBaseImages(buffer **uint16) (hr error) = vmcompute.GetBaseImages?
-//sys importLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.ImportLayer?
-//sys layerExists(info *driverInfo, id string, exists *uint32) (hr error) = vmcompute.LayerExists?
-//sys nameToGuid(name string, guid *GUID) (hr error) = vmcompute.NameToGuid?
-//sys prepareLayer(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.PrepareLayer?
-//sys unprepareLayer(info *driverInfo, id string) (hr error) = vmcompute.UnprepareLayer?
-//sys processBaseImage(path string) (hr error) = vmcompute.ProcessBaseImage?
-//sys processUtilityImage(path string) (hr error) = vmcompute.ProcessUtilityImage?
-
-//sys importLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) = vmcompute.ImportLayerBegin?
-//sys importLayerNext(context uintptr, fileName string, fileInfo *winio.FileBasicInfo) (hr error) = vmcompute.ImportLayerNext?
-//sys importLayerWrite(context uintptr, buffer []byte) (hr error) = vmcompute.ImportLayerWrite?
-//sys importLayerEnd(context uintptr) (hr error) = vmcompute.ImportLayerEnd?
-
-//sys exportLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) = vmcompute.ExportLayerBegin?
-//sys exportLayerNext(context uintptr, fileName **uint16, fileInfo *winio.FileBasicInfo, fileSize *int64, deleted *uint32) (hr error) = vmcompute.ExportLayerNext?
-//sys exportLayerRead(context uintptr, buffer []byte, bytesRead *uint32) (hr error) = vmcompute.ExportLayerRead?
-//sys exportLayerEnd(context uintptr) (hr error) = vmcompute.ExportLayerEnd?
-
-//sys hcsEnumerateComputeSystems(query string, computeSystems **uint16, result **uint16) (hr error) = vmcompute.HcsEnumerateComputeSystems?
-//sys hcsCreateComputeSystem(id string, configuration string, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) = vmcompute.HcsCreateComputeSystem?
-//sys hcsOpenComputeSystem(id string, computeSystem *hcsSystem, result **uint16) (hr error) = vmcompute.HcsOpenComputeSystem?
-//sys hcsCloseComputeSystem(computeSystem hcsSystem) (hr error) = vmcompute.HcsCloseComputeSystem?
-//sys hcsStartComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsStartComputeSystem?
-//sys hcsShutdownComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsShutdownComputeSystem?
-//sys hcsTerminateComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsTerminateComputeSystem?
-//sys hcsPauseComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsPauseComputeSystem?
-//sys hcsResumeComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsResumeComputeSystem?
-//sys hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery string, properties **uint16, result **uint16) (hr error) = vmcompute.HcsGetComputeSystemProperties?
-//sys hcsModifyComputeSystem(computeSystem hcsSystem, configuration string, result **uint16) (hr error) = vmcompute.HcsModifyComputeSystem?
-//sys hcsRegisterComputeSystemCallback(computeSystem hcsSystem, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) = vmcompute.HcsRegisterComputeSystemCallback?
-//sys hcsUnregisterComputeSystemCallback(callbackHandle hcsCallback) (hr error) = vmcompute.HcsUnregisterComputeSystemCallback?
-
-//sys hcsCreateProcess(computeSystem hcsSystem, processParameters string, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) = vmcompute.HcsCreateProcess?
-//sys hcsOpenProcess(computeSystem hcsSystem, pid uint32, process *hcsProcess, result **uint16) (hr error) = vmcompute.HcsOpenProcess?
-//sys hcsCloseProcess(process hcsProcess) (hr error) = vmcompute.HcsCloseProcess?
-//sys hcsTerminateProcess(process hcsProcess, result **uint16) (hr error) = vmcompute.HcsTerminateProcess?
-//sys hcsGetProcessInfo(process hcsProcess, processInformation *hcsProcessInformation, result **uint16) (hr error) = vmcompute.HcsGetProcessInfo?
-//sys hcsGetProcessProperties(process hcsProcess, processProperties **uint16, result **uint16) (hr error) = vmcompute.HcsGetProcessProperties?
-//sys hcsModifyProcess(process hcsProcess, settings string, result **uint16) (hr error) = vmcompute.HcsModifyProcess?
-//sys hcsGetServiceProperties(propertyQuery string, properties **uint16, result **uint16) (hr error) = vmcompute.HcsGetServiceProperties?
-//sys hcsRegisterProcessCallback(process hcsProcess, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) = vmcompute.HcsRegisterProcessCallback?
-//sys hcsUnregisterProcessCallback(callbackHandle hcsCallback) (hr error) = vmcompute.HcsUnregisterProcessCallback?
-
-//sys hcsModifyServiceSettings(settings string, result **uint16) (hr error) = vmcompute.HcsModifyServiceSettings?
-
-//sys _hnsCall(method string, path string, object string, response **uint16) (hr error) = vmcompute.HNSCall?
-
-const (
-	// Specific user-visible exit codes
-	WaitErrExecFailed = 32767
-
-	ERROR_GEN_FAILURE          = syscall.Errno(31)
-	ERROR_SHUTDOWN_IN_PROGRESS = syscall.Errno(1115)
-	WSAEINVAL                  = syscall.Errno(10022)
-
-	// Timeout on wait calls
-	TimeoutInfinite = 0xFFFFFFFF
-)
-
-type HcsError struct {
-	title string
-	rest  string
-	Err   error
-}
-
-type hcsSystem syscall.Handle
-type hcsProcess syscall.Handle
-type hcsCallback syscall.Handle
-
-type hcsProcessInformation struct {
-	ProcessId uint32
-	Reserved  uint32
-	StdInput  syscall.Handle
-	StdOutput syscall.Handle
-	StdError  syscall.Handle
-}
-
-func makeError(err error, title, rest string) error {
-	// Pass through DLL errors directly since they do not originate from HCS.
-	if _, ok := err.(*syscall.DLLError); ok {
-		return err
-	}
-	return &HcsError{title, rest, err}
-}
-
-func makeErrorf(err error, title, format string, a ...interface{}) error {
-	return makeError(err, title, fmt.Sprintf(format, a...))
-}
-
-func win32FromError(err error) uint32 {
-	if herr, ok := err.(*HcsError); ok {
-		return win32FromError(herr.Err)
-	}
-	if code, ok := err.(syscall.Errno); ok {
-		return uint32(code)
-	}
-	return uint32(ERROR_GEN_FAILURE)
-}
-
-func win32FromHresult(hr uintptr) uintptr {
-	if hr&0x1fff0000 == 0x00070000 {
-		return hr & 0xffff
-	}
-	return hr
-}
-
-func (e *HcsError) Error() string {
-	s := e.title
-	if len(s) > 0 && s[len(s)-1] != ' ' {
-		s += " "
-	}
-	s += fmt.Sprintf("failed in Win32: %s (0x%x)", e.Err, win32FromError(e.Err))
-	if e.rest != "" {
-		if e.rest[0] != ' ' {
-			s += " "
-		}
-		s += e.rest
-	}
-	return s
-}
-
-func convertAndFreeCoTaskMemString(buffer *uint16) string {
-	str := syscall.UTF16ToString((*[1 << 30]uint16)(unsafe.Pointer(buffer))[:])
-	coTaskMemFree(unsafe.Pointer(buffer))
-	return str
-}
-
-func convertAndFreeCoTaskMemBytes(buffer *uint16) []byte {
-	return []byte(convertAndFreeCoTaskMemString(buffer))
-}
-
-func processHcsResult(err error, resultp *uint16) error {
-	if resultp != nil {
-		result := convertAndFreeCoTaskMemString(resultp)
-		logrus.Debugf("Result: %s", result)
-	}
-	return err
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go b/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
deleted file mode 100644
index 7e516f8a2e..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
+++ /dev/null
@@ -1,323 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"net"
-
-	"github.com/sirupsen/logrus"
-)
-
-// HNSEndpoint represents a network endpoint in HNS
-type HNSEndpoint struct {
-	Id                 string            `json:"ID,omitempty"`
-	Name               string            `json:",omitempty"`
-	VirtualNetwork     string            `json:",omitempty"`
-	VirtualNetworkName string            `json:",omitempty"`
-	Policies           []json.RawMessage `json:",omitempty"`
-	MacAddress         string            `json:",omitempty"`
-	IPAddress          net.IP            `json:",omitempty"`
-	DNSSuffix          string            `json:",omitempty"`
-	DNSServerList      string            `json:",omitempty"`
-	GatewayAddress     string            `json:",omitempty"`
-	EnableInternalDNS  bool              `json:",omitempty"`
-	DisableICC         bool              `json:",omitempty"`
-	PrefixLength       uint8             `json:",omitempty"`
-	IsRemoteEndpoint   bool              `json:",omitempty"`
-}
-
-//SystemType represents the type of the system on which actions are done
-type SystemType string
-
-// SystemType const
-const (
-	ContainerType      SystemType = "Container"
-	VirtualMachineType SystemType = "VirtualMachine"
-	HostType           SystemType = "Host"
-)
-
-// EndpointAttachDetachRequest is the structure used to send request to the container to modify the system
-// Supported resource types are Network and Request Types are Add/Remove
-type EndpointAttachDetachRequest struct {
-	ContainerID    string     `json:"ContainerId,omitempty"`
-	SystemType     SystemType `json:"SystemType"`
-	CompartmentID  uint16     `json:"CompartmentId,omitempty"`
-	VirtualNICName string     `json:"VirtualNicName,omitempty"`
-}
-
-// EndpointResquestResponse is object to get the endpoint request response
-type EndpointResquestResponse struct {
-	Success bool
-	Error   string
-}
-
-// HNSEndpointRequest makes a HNS call to modify/query a network endpoint
-func HNSEndpointRequest(method, path, request string) (*HNSEndpoint, error) {
-	endpoint := &HNSEndpoint{}
-	err := hnsCall(method, "/endpoints/"+path, request, &endpoint)
-	if err != nil {
-		return nil, err
-	}
-
-	return endpoint, nil
-}
-
-// HNSListEndpointRequest makes a HNS call to query the list of available endpoints
-func HNSListEndpointRequest() ([]HNSEndpoint, error) {
-	var endpoint []HNSEndpoint
-	err := hnsCall("GET", "/endpoints/", "", &endpoint)
-	if err != nil {
-		return nil, err
-	}
-
-	return endpoint, nil
-}
-
-// HotAttachEndpoint makes a HCS Call to attach the endpoint to the container
-func HotAttachEndpoint(containerID string, endpointID string) error {
-	return modifyNetworkEndpoint(containerID, endpointID, Add)
-}
-
-// HotDetachEndpoint makes a HCS Call to detach the endpoint from the container
-func HotDetachEndpoint(containerID string, endpointID string) error {
-	return modifyNetworkEndpoint(containerID, endpointID, Remove)
-}
-
-// ModifyContainer corresponding to the container id, by sending a request
-func modifyContainer(id string, request *ResourceModificationRequestResponse) error {
-	container, err := OpenContainer(id)
-	if err != nil {
-		if IsNotExist(err) {
-			return ErrComputeSystemDoesNotExist
-		}
-		return getInnerError(err)
-	}
-	defer container.Close()
-	err = container.Modify(request)
-	if err != nil {
-		if IsNotSupported(err) {
-			return ErrPlatformNotSupported
-		}
-		return getInnerError(err)
-	}
-
-	return nil
-}
-
-func modifyNetworkEndpoint(containerID string, endpointID string, request RequestType) error {
-	requestMessage := &ResourceModificationRequestResponse{
-		Resource: Network,
-		Request:  request,
-		Data:     endpointID,
-	}
-	err := modifyContainer(containerID, requestMessage)
-
-	if err != nil {
-		return err
-	}
-
-	return nil
-}
-
-// GetHNSEndpointByID get the Endpoint by ID
-func GetHNSEndpointByID(endpointID string) (*HNSEndpoint, error) {
-	return HNSEndpointRequest("GET", endpointID, "")
-}
-
-// GetHNSEndpointByName gets the endpoint filtered by Name
-func GetHNSEndpointByName(endpointName string) (*HNSEndpoint, error) {
-	hnsResponse, err := HNSListEndpointRequest()
-	if err != nil {
-		return nil, err
-	}
-	for _, hnsEndpoint := range hnsResponse {
-		if hnsEndpoint.Name == endpointName {
-			return &hnsEndpoint, nil
-		}
-	}
-	return nil, EndpointNotFoundError{EndpointName: endpointName}
-}
-
-// Create Endpoint by sending EndpointRequest to HNS. TODO: Create a separate HNS interface to place all these methods
-func (endpoint *HNSEndpoint) Create() (*HNSEndpoint, error) {
-	operation := "Create"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	jsonString, err := json.Marshal(endpoint)
-	if err != nil {
-		return nil, err
-	}
-	return HNSEndpointRequest("POST", "", string(jsonString))
-}
-
-// Delete Endpoint by sending EndpointRequest to HNS
-func (endpoint *HNSEndpoint) Delete() (*HNSEndpoint, error) {
-	operation := "Delete"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	return HNSEndpointRequest("DELETE", endpoint.Id, "")
-}
-
-// Update Endpoint
-func (endpoint *HNSEndpoint) Update() (*HNSEndpoint, error) {
-	operation := "Update"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-	jsonString, err := json.Marshal(endpoint)
-	if err != nil {
-		return nil, err
-	}
-	err = hnsCall("POST", "/endpoints/"+endpoint.Id, string(jsonString), &endpoint)
-
-	return endpoint, err
-}
-
-// ContainerHotAttach attaches an endpoint to a running container
-func (endpoint *HNSEndpoint) ContainerHotAttach(containerID string) error {
-	operation := "ContainerHotAttach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s, containerId=%s", endpoint.Id, containerID)
-
-	return modifyNetworkEndpoint(containerID, endpoint.Id, Add)
-}
-
-// ContainerHotDetach detaches an endpoint from a running container
-func (endpoint *HNSEndpoint) ContainerHotDetach(containerID string) error {
-	operation := "ContainerHotDetach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s, containerId=%s", endpoint.Id, containerID)
-
-	return modifyNetworkEndpoint(containerID, endpoint.Id, Remove)
-}
-
-// ApplyACLPolicy applies a set of ACL Policies on the Endpoint
-func (endpoint *HNSEndpoint) ApplyACLPolicy(policies ...*ACLPolicy) error {
-	operation := "ApplyACLPolicy"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	for _, policy := range policies {
-		if policy == nil {
-			continue
-		}
-		jsonString, err := json.Marshal(policy)
-		if err != nil {
-			return err
-		}
-		endpoint.Policies = append(endpoint.Policies, jsonString)
-	}
-
-	_, err := endpoint.Update()
-	return err
-}
-
-// ContainerAttach attaches an endpoint to container
-func (endpoint *HNSEndpoint) ContainerAttach(containerID string, compartmentID uint16) error {
-	operation := "ContainerAttach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	requestMessage := &EndpointAttachDetachRequest{
-		ContainerID:   containerID,
-		CompartmentID: compartmentID,
-		SystemType:    ContainerType,
-	}
-	response := &EndpointResquestResponse{}
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
-}
-
-// ContainerDetach detaches an endpoint from container
-func (endpoint *HNSEndpoint) ContainerDetach(containerID string) error {
-	operation := "ContainerDetach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	requestMessage := &EndpointAttachDetachRequest{
-		ContainerID: containerID,
-		SystemType:  ContainerType,
-	}
-	response := &EndpointResquestResponse{}
-
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
-}
-
-// HostAttach attaches a nic on the host
-func (endpoint *HNSEndpoint) HostAttach(compartmentID uint16) error {
-	operation := "HostAttach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-	requestMessage := &EndpointAttachDetachRequest{
-		CompartmentID: compartmentID,
-		SystemType:    HostType,
-	}
-	response := &EndpointResquestResponse{}
-
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
-
-}
-
-// HostDetach detaches a nic on the host
-func (endpoint *HNSEndpoint) HostDetach() error {
-	operation := "HostDetach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-	requestMessage := &EndpointAttachDetachRequest{
-		SystemType: HostType,
-	}
-	response := &EndpointResquestResponse{}
-
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
-}
-
-// VirtualMachineNICAttach attaches a endpoint to a virtual machine
-func (endpoint *HNSEndpoint) VirtualMachineNICAttach(virtualMachineNICName string) error {
-	operation := "VirtualMachineNicAttach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-	requestMessage := &EndpointAttachDetachRequest{
-		VirtualNICName: virtualMachineNICName,
-		SystemType:     VirtualMachineType,
-	}
-	response := &EndpointResquestResponse{}
-
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
-}
-
-// VirtualMachineNICDetach detaches a endpoint  from a virtual machine
-func (endpoint *HNSEndpoint) VirtualMachineNICDetach() error {
-	operation := "VirtualMachineNicDetach"
-	title := "HCSShim::HNSEndpoint::" + operation
-	logrus.Debugf(title+" id=%s", endpoint.Id)
-
-	requestMessage := &EndpointAttachDetachRequest{
-		SystemType: VirtualMachineType,
-	}
-	response := &EndpointResquestResponse{}
-
-	jsonString, err := json.Marshal(requestMessage)
-	if err != nil {
-		return err
-	}
-	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go b/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
deleted file mode 100644
index 2c1b979ae8..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
+++ /dev/null
@@ -1,40 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/sirupsen/logrus"
-)
-
-func hnsCall(method, path, request string, returnResponse interface{}) error {
-	var responseBuffer *uint16
-	logrus.Debugf("[%s]=>[%s] Request : %s", method, path, request)
-
-	err := _hnsCall(method, path, request, &responseBuffer)
-	if err != nil {
-		return makeError(err, "hnsCall ", "")
-	}
-	response := convertAndFreeCoTaskMemString(responseBuffer)
-
-	hnsresponse := &hnsResponse{}
-	if err = json.Unmarshal([]byte(response), &hnsresponse); err != nil {
-		return err
-	}
-
-	if !hnsresponse.Success {
-		return fmt.Errorf("HNS failed with error : %s", hnsresponse.Error)
-	}
-
-	if len(hnsresponse.Output) == 0 {
-		return nil
-	}
-
-	logrus.Debugf("Network Response : %s", hnsresponse.Output)
-	err = json.Unmarshal(hnsresponse.Output, returnResponse)
-	if err != nil {
-		return err
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go b/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
deleted file mode 100644
index 04c1b59196..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
+++ /dev/null
@@ -1,141 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"net"
-
-	"github.com/sirupsen/logrus"
-)
-
-// Subnet is assoicated with a network and represents a list
-// of subnets available to the network
-type Subnet struct {
-	AddressPrefix  string            `json:",omitempty"`
-	GatewayAddress string            `json:",omitempty"`
-	Policies       []json.RawMessage `json:",omitempty"`
-}
-
-// MacPool is assoicated with a network and represents a list
-// of macaddresses available to the network
-type MacPool struct {
-	StartMacAddress string `json:",omitempty"`
-	EndMacAddress   string `json:",omitempty"`
-}
-
-// HNSNetwork represents a network in HNS
-type HNSNetwork struct {
-	Id                   string            `json:"ID,omitempty"`
-	Name                 string            `json:",omitempty"`
-	Type                 string            `json:",omitempty"`
-	NetworkAdapterName   string            `json:",omitempty"`
-	SourceMac            string            `json:",omitempty"`
-	Policies             []json.RawMessage `json:",omitempty"`
-	MacPools             []MacPool         `json:",omitempty"`
-	Subnets              []Subnet          `json:",omitempty"`
-	DNSSuffix            string            `json:",omitempty"`
-	DNSServerList        string            `json:",omitempty"`
-	DNSServerCompartment uint32            `json:",omitempty"`
-	ManagementIP         string            `json:",omitempty"`
-	AutomaticDNS         bool              `json:",omitempty"`
-}
-
-type hnsNetworkResponse struct {
-	Success bool
-	Error   string
-	Output  HNSNetwork
-}
-
-type hnsResponse struct {
-	Success bool
-	Error   string
-	Output  json.RawMessage
-}
-
-// HNSNetworkRequest makes a call into HNS to update/query a single network
-func HNSNetworkRequest(method, path, request string) (*HNSNetwork, error) {
-	var network HNSNetwork
-	err := hnsCall(method, "/networks/"+path, request, &network)
-	if err != nil {
-		return nil, err
-	}
-
-	return &network, nil
-}
-
-// HNSListNetworkRequest makes a HNS call to query the list of available networks
-func HNSListNetworkRequest(method, path, request string) ([]HNSNetwork, error) {
-	var network []HNSNetwork
-	err := hnsCall(method, "/networks/"+path, request, &network)
-	if err != nil {
-		return nil, err
-	}
-
-	return network, nil
-}
-
-// GetHNSNetworkByID
-func GetHNSNetworkByID(networkID string) (*HNSNetwork, error) {
-	return HNSNetworkRequest("GET", networkID, "")
-}
-
-// GetHNSNetworkName filtered by Name
-func GetHNSNetworkByName(networkName string) (*HNSNetwork, error) {
-	hsnnetworks, err := HNSListNetworkRequest("GET", "", "")
-	if err != nil {
-		return nil, err
-	}
-	for _, hnsnetwork := range hsnnetworks {
-		if hnsnetwork.Name == networkName {
-			return &hnsnetwork, nil
-		}
-	}
-	return nil, NetworkNotFoundError{NetworkName: networkName}
-}
-
-// Create Network by sending NetworkRequest to HNS.
-func (network *HNSNetwork) Create() (*HNSNetwork, error) {
-	operation := "Create"
-	title := "HCSShim::HNSNetwork::" + operation
-	logrus.Debugf(title+" id=%s", network.Id)
-
-	jsonString, err := json.Marshal(network)
-	if err != nil {
-		return nil, err
-	}
-	return HNSNetworkRequest("POST", "", string(jsonString))
-}
-
-// Delete Network by sending NetworkRequest to HNS
-func (network *HNSNetwork) Delete() (*HNSNetwork, error) {
-	operation := "Delete"
-	title := "HCSShim::HNSNetwork::" + operation
-	logrus.Debugf(title+" id=%s", network.Id)
-
-	return HNSNetworkRequest("DELETE", network.Id, "")
-}
-
-// Creates an endpoint on the Network.
-func (network *HNSNetwork) NewEndpoint(ipAddress net.IP, macAddress net.HardwareAddr) *HNSEndpoint {
-	return &HNSEndpoint{
-		VirtualNetwork: network.Id,
-		IPAddress:      ipAddress,
-		MacAddress:     string(macAddress),
-	}
-}
-
-func (network *HNSNetwork) CreateEndpoint(endpoint *HNSEndpoint) (*HNSEndpoint, error) {
-	operation := "CreateEndpoint"
-	title := "HCSShim::HNSNetwork::" + operation
-	logrus.Debugf(title+" id=%s, endpointId=%s", network.Id, endpoint.Id)
-
-	endpoint.VirtualNetwork = network.Id
-	return endpoint.Create()
-}
-
-func (network *HNSNetwork) CreateRemoteEndpoint(endpoint *HNSEndpoint) (*HNSEndpoint, error) {
-	operation := "CreateRemoteEndpoint"
-	title := "HCSShim::HNSNetwork::" + operation
-	logrus.Debugf(title+" id=%s", network.Id)
-	endpoint.IsRemoteEndpoint = true
-	return network.CreateEndpoint(endpoint)
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnspolicy.go b/vendor/github.com/Microsoft/hcsshim/hnspolicy.go
deleted file mode 100644
index 65b8e93d9b..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hnspolicy.go
+++ /dev/null
@@ -1,94 +0,0 @@
-package hcsshim
-
-// Type of Request Support in ModifySystem
-type PolicyType string
-
-// RequestType const
-const (
-	Nat                  PolicyType = "NAT"
-	ACL                  PolicyType = "ACL"
-	PA                   PolicyType = "PA"
-	VLAN                 PolicyType = "VLAN"
-	VSID                 PolicyType = "VSID"
-	VNet                 PolicyType = "VNET"
-	L2Driver             PolicyType = "L2Driver"
-	Isolation            PolicyType = "Isolation"
-	QOS                  PolicyType = "QOS"
-	OutboundNat          PolicyType = "OutBoundNAT"
-	ExternalLoadBalancer PolicyType = "ELB"
-	Route                PolicyType = "ROUTE"
-)
-
-type NatPolicy struct {
-	Type         PolicyType `json:"Type"`
-	Protocol     string
-	InternalPort uint16
-	ExternalPort uint16
-}
-
-type QosPolicy struct {
-	Type                            PolicyType `json:"Type"`
-	MaximumOutgoingBandwidthInBytes uint64
-}
-
-type IsolationPolicy struct {
-	Type               PolicyType `json:"Type"`
-	VLAN               uint
-	VSID               uint
-	InDefaultIsolation bool
-}
-
-type VlanPolicy struct {
-	Type PolicyType `json:"Type"`
-	VLAN uint
-}
-
-type VsidPolicy struct {
-	Type PolicyType `json:"Type"`
-	VSID uint
-}
-
-type PaPolicy struct {
-	Type PolicyType `json:"Type"`
-	PA   string     `json:"PA"`
-}
-
-type OutboundNatPolicy struct {
-	Policy
-	VIP        string   `json:"VIP,omitempty"`
-	Exceptions []string `json:"ExceptionList,omitempty"`
-}
-
-type ActionType string
-type DirectionType string
-type RuleType string
-
-const (
-	Allow ActionType = "Allow"
-	Block ActionType = "Block"
-
-	In  DirectionType = "In"
-	Out DirectionType = "Out"
-
-	Host   RuleType = "Host"
-	Switch RuleType = "Switch"
-)
-
-type ACLPolicy struct {
-	Type            PolicyType `json:"Type"`
-	Protocol        uint16
-	InternalPort    uint16
-	Action          ActionType
-	Direction       DirectionType
-	LocalAddresses  string
-	RemoteAddresses string
-	LocalPort       uint16
-	RemotePort      uint16
-	RuleType        RuleType `json:"RuleType,omitempty"`
-	Priority        uint16
-	ServiceName     string
-}
-
-type Policy struct {
-	Type PolicyType `json:"Type"`
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go b/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
deleted file mode 100644
index bbd7e1edb0..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
+++ /dev/null
@@ -1,200 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-
-	"github.com/sirupsen/logrus"
-)
-
-// RoutePolicy is a structure defining schema for Route based Policy
-type RoutePolicy struct {
-	Policy
-	DestinationPrefix string `json:"DestinationPrefix,omitempty"`
-	NextHop           string `json:"NextHop,omitempty"`
-	EncapEnabled      bool   `json:"NeedEncap,omitempty"`
-}
-
-// ELBPolicy is a structure defining schema for ELB LoadBalancing based Policy
-type ELBPolicy struct {
-	LBPolicy
-	SourceVIP string   `json:"SourceVIP,omitempty"`
-	VIPs      []string `json:"VIPs,omitempty"`
-	ILB       bool     `json:"ILB,omitempty"`
-}
-
-// LBPolicy is a structure defining schema for LoadBalancing based Policy
-type LBPolicy struct {
-	Policy
-	Protocol     uint16 `json:"Protocol,omitempty"`
-	InternalPort uint16
-	ExternalPort uint16
-}
-
-// PolicyList is a structure defining schema for Policy list request
-type PolicyList struct {
-	ID                 string            `json:"ID,omitempty"`
-	EndpointReferences []string          `json:"References,omitempty"`
-	Policies           []json.RawMessage `json:"Policies,omitempty"`
-}
-
-// HNSPolicyListRequest makes a call into HNS to update/query a single network
-func HNSPolicyListRequest(method, path, request string) (*PolicyList, error) {
-	var policy PolicyList
-	err := hnsCall(method, "/policylists/"+path, request, &policy)
-	if err != nil {
-		return nil, err
-	}
-
-	return &policy, nil
-}
-
-// HNSListPolicyListRequest gets all the policy list
-func HNSListPolicyListRequest() ([]PolicyList, error) {
-	var plist []PolicyList
-	err := hnsCall("GET", "/policylists/", "", &plist)
-	if err != nil {
-		return nil, err
-	}
-
-	return plist, nil
-}
-
-// PolicyListRequest makes a HNS call to modify/query a network policy list
-func PolicyListRequest(method, path, request string) (*PolicyList, error) {
-	policylist := &PolicyList{}
-	err := hnsCall(method, "/policylists/"+path, request, &policylist)
-	if err != nil {
-		return nil, err
-	}
-
-	return policylist, nil
-}
-
-// GetPolicyListByID get the policy list by ID
-func GetPolicyListByID(policyListID string) (*PolicyList, error) {
-	return PolicyListRequest("GET", policyListID, "")
-}
-
-// Create PolicyList by sending PolicyListRequest to HNS.
-func (policylist *PolicyList) Create() (*PolicyList, error) {
-	operation := "Create"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" id=%s", policylist.ID)
-	jsonString, err := json.Marshal(policylist)
-	if err != nil {
-		return nil, err
-	}
-	return PolicyListRequest("POST", "", string(jsonString))
-}
-
-// Delete deletes PolicyList
-func (policylist *PolicyList) Delete() (*PolicyList, error) {
-	operation := "Delete"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" id=%s", policylist.ID)
-
-	return PolicyListRequest("DELETE", policylist.ID, "")
-}
-
-// AddEndpoint add an endpoint to a Policy List
-func (policylist *PolicyList) AddEndpoint(endpoint *HNSEndpoint) (*PolicyList, error) {
-	operation := "AddEndpoint"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" id=%s, endpointId:%s", policylist.ID, endpoint.Id)
-
-	_, err := policylist.Delete()
-	if err != nil {
-		return nil, err
-	}
-
-	// Add Endpoint to the Existing List
-	policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
-
-	return policylist.Create()
-}
-
-// RemoveEndpoint removes an endpoint from the Policy List
-func (policylist *PolicyList) RemoveEndpoint(endpoint *HNSEndpoint) (*PolicyList, error) {
-	operation := "RemoveEndpoint"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" id=%s, endpointId:%s", policylist.ID, endpoint.Id)
-
-	_, err := policylist.Delete()
-	if err != nil {
-		return nil, err
-	}
-
-	elementToRemove := "/endpoints/" + endpoint.Id
-
-	var references []string
-
-	for _, endpointReference := range policylist.EndpointReferences {
-		if endpointReference == elementToRemove {
-			continue
-		}
-		references = append(references, endpointReference)
-	}
-	policylist.EndpointReferences = references
-	return policylist.Create()
-}
-
-// AddLoadBalancer policy list for the specified endpoints
-func AddLoadBalancer(endpoints []HNSEndpoint, isILB bool, sourceVIP, vip string, protocol uint16, internalPort uint16, externalPort uint16) (*PolicyList, error) {
-	operation := "AddLoadBalancer"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" endpointId=%v, isILB=%v, sourceVIP=%s, vip=%s, protocol=%v, internalPort=%v, externalPort=%v", endpoints, isILB, sourceVIP, vip, protocol, internalPort, externalPort)
-
-	policylist := &PolicyList{}
-
-	elbPolicy := &ELBPolicy{
-		SourceVIP: sourceVIP,
-		ILB:       isILB,
-	}
-
-	if len(vip) > 0 {
-		elbPolicy.VIPs = []string{vip}
-	}
-	elbPolicy.Type = ExternalLoadBalancer
-	elbPolicy.Protocol = protocol
-	elbPolicy.InternalPort = internalPort
-	elbPolicy.ExternalPort = externalPort
-
-	for _, endpoint := range endpoints {
-		policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
-	}
-
-	jsonString, err := json.Marshal(elbPolicy)
-	if err != nil {
-		return nil, err
-	}
-	policylist.Policies = append(policylist.Policies, jsonString)
-	return policylist.Create()
-}
-
-// AddRoute adds route policy list for the specified endpoints
-func AddRoute(endpoints []HNSEndpoint, destinationPrefix string, nextHop string, encapEnabled bool) (*PolicyList, error) {
-	operation := "AddRoute"
-	title := "HCSShim::PolicyList::" + operation
-	logrus.Debugf(title+" destinationPrefix:%s", destinationPrefix)
-
-	policylist := &PolicyList{}
-
-	rPolicy := &RoutePolicy{
-		DestinationPrefix: destinationPrefix,
-		NextHop:           nextHop,
-		EncapEnabled:      encapEnabled,
-	}
-	rPolicy.Type = Route
-
-	for _, endpoint := range endpoints {
-		policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
-	}
-
-	jsonString, err := json.Marshal(rPolicy)
-	if err != nil {
-		return nil, err
-	}
-
-	policylist.Policies = append(policylist.Policies, jsonString)
-	return policylist.Create()
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/importlayer.go b/vendor/github.com/Microsoft/hcsshim/importlayer.go
deleted file mode 100644
index 3aed14376a..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/importlayer.go
+++ /dev/null
@@ -1,212 +0,0 @@
-package hcsshim
-
-import (
-	"errors"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-
-	"github.com/Microsoft/go-winio"
-	"github.com/sirupsen/logrus"
-)
-
-// ImportLayer will take the contents of the folder at importFolderPath and import
-// that into a layer with the id layerId.  Note that in order to correctly populate
-// the layer and interperet the transport format, all parent layers must already
-// be present on the system at the paths provided in parentLayerPaths.
-func ImportLayer(info DriverInfo, layerID string, importFolderPath string, parentLayerPaths []string) error {
-	title := "hcsshim::ImportLayer "
-	logrus.Debugf(title+"flavour %d layerId %s folder %s", info.Flavour, layerID, importFolderPath)
-
-	// Generate layer descriptors
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return err
-	}
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = importLayer(&infop, layerID, importFolderPath, layers)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s flavour=%d folder=%s", layerID, info.Flavour, importFolderPath)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d layerId=%s folder=%s", info.Flavour, layerID, importFolderPath)
-	return nil
-}
-
-// LayerWriter is an interface that supports writing a new container image layer.
-type LayerWriter interface {
-	// Add adds a file to the layer with given metadata.
-	Add(name string, fileInfo *winio.FileBasicInfo) error
-	// AddLink adds a hard link to the layer. The target must already have been added.
-	AddLink(name string, target string) error
-	// Remove removes a file that was present in a parent layer from the layer.
-	Remove(name string) error
-	// Write writes data to the current file. The data must be in the format of a Win32
-	// backup stream.
-	Write(b []byte) (int, error)
-	// Close finishes the layer writing process and releases any resources.
-	Close() error
-}
-
-// FilterLayerWriter provides an interface to write the contents of a layer to the file system.
-type FilterLayerWriter struct {
-	context uintptr
-}
-
-// Add adds a file or directory to the layer. The file's parent directory must have already been added.
-//
-// name contains the file's relative path. fileInfo contains file times and file attributes; the rest
-// of the file metadata and the file data must be written as a Win32 backup stream to the Write() method.
-// winio.BackupStreamWriter can be used to facilitate this.
-func (w *FilterLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) error {
-	if name[0] != '\\' {
-		name = `\` + name
-	}
-	err := importLayerNext(w.context, name, fileInfo)
-	if err != nil {
-		return makeError(err, "ImportLayerNext", "")
-	}
-	return nil
-}
-
-// AddLink adds a hard link to the layer. The target of the link must have already been added.
-func (w *FilterLayerWriter) AddLink(name string, target string) error {
-	return errors.New("hard links not yet supported")
-}
-
-// Remove removes a file from the layer. The file must have been present in the parent layer.
-//
-// name contains the file's relative path.
-func (w *FilterLayerWriter) Remove(name string) error {
-	if name[0] != '\\' {
-		name = `\` + name
-	}
-	err := importLayerNext(w.context, name, nil)
-	if err != nil {
-		return makeError(err, "ImportLayerNext", "")
-	}
-	return nil
-}
-
-// Write writes more backup stream data to the current file.
-func (w *FilterLayerWriter) Write(b []byte) (int, error) {
-	err := importLayerWrite(w.context, b)
-	if err != nil {
-		err = makeError(err, "ImportLayerWrite", "")
-		return 0, err
-	}
-	return len(b), err
-}
-
-// Close completes the layer write operation. The error must be checked to ensure that the
-// operation was successful.
-func (w *FilterLayerWriter) Close() (err error) {
-	if w.context != 0 {
-		err = importLayerEnd(w.context)
-		if err != nil {
-			err = makeError(err, "ImportLayerEnd", "")
-		}
-		w.context = 0
-	}
-	return
-}
-
-type legacyLayerWriterWrapper struct {
-	*legacyLayerWriter
-	info             DriverInfo
-	layerID          string
-	path             string
-	parentLayerPaths []string
-}
-
-func (r *legacyLayerWriterWrapper) Close() error {
-	defer os.RemoveAll(r.root)
-	err := r.legacyLayerWriter.Close()
-	if err != nil {
-		return err
-	}
-
-	// Use the original path here because ImportLayer does not support long paths for the source in TP5.
-	// But do use a long path for the destination to work around another bug with directories
-	// with MAX_PATH - 12 < length < MAX_PATH.
-	info := r.info
-	fullPath, err := makeLongAbsPath(filepath.Join(info.HomeDir, r.layerID))
-	if err != nil {
-		return err
-	}
-
-	info.HomeDir = ""
-	if err = ImportLayer(info, fullPath, r.path, r.parentLayerPaths); err != nil {
-		return err
-	}
-	// Add any hard links that were collected.
-	for _, lnk := range r.PendingLinks {
-		if err = os.Remove(lnk.Path); err != nil && !os.IsNotExist(err) {
-			return err
-		}
-		if err = os.Link(lnk.Target, lnk.Path); err != nil {
-			return err
-		}
-	}
-	// Prepare the utility VM for use if one is present in the layer.
-	if r.HasUtilityVM {
-		err = ProcessUtilityVMImage(filepath.Join(fullPath, "UtilityVM"))
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// NewLayerWriter returns a new layer writer for creating a layer on disk.
-// The caller must have taken the SeBackupPrivilege and SeRestorePrivilege privileges
-// to call this and any methods on the resulting LayerWriter.
-func NewLayerWriter(info DriverInfo, layerID string, parentLayerPaths []string) (LayerWriter, error) {
-	if len(parentLayerPaths) == 0 {
-		// This is a base layer. It gets imported differently.
-		return &baseLayerWriter{
-			root: filepath.Join(info.HomeDir, layerID),
-		}, nil
-	}
-
-	if procImportLayerBegin.Find() != nil {
-		// The new layer reader is not available on this Windows build. Fall back to the
-		// legacy export code path.
-		path, err := ioutil.TempDir("", "hcs")
-		if err != nil {
-			return nil, err
-		}
-		return &legacyLayerWriterWrapper{
-			legacyLayerWriter: newLegacyLayerWriter(path, parentLayerPaths, filepath.Join(info.HomeDir, layerID)),
-			info:              info,
-			layerID:           layerID,
-			path:              path,
-			parentLayerPaths:  parentLayerPaths,
-		}, nil
-	}
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return nil, err
-	}
-
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		return nil, err
-	}
-
-	w := &FilterLayerWriter{}
-	err = importLayerBegin(&infop, layerID, layers, &w.context)
-	if err != nil {
-		return nil, makeError(err, "ImportLayerStart", "")
-	}
-	return w, nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/interface.go b/vendor/github.com/Microsoft/hcsshim/interface.go
deleted file mode 100644
index e21f30025a..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/interface.go
+++ /dev/null
@@ -1,188 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"io"
-	"time"
-)
-
-// ProcessConfig is used as both the input of Container.CreateProcess
-// and to convert the parameters to JSON for passing onto the HCS
-type ProcessConfig struct {
-	ApplicationName   string            `json:",omitempty"`
-	CommandLine       string            `json:",omitempty"`
-	CommandArgs       []string          `json:",omitempty"` // Used by Linux Containers on Windows
-	User              string            `json:",omitempty"`
-	WorkingDirectory  string            `json:",omitempty"`
-	Environment       map[string]string `json:",omitempty"`
-	EmulateConsole    bool              `json:",omitempty"`
-	CreateStdInPipe   bool              `json:",omitempty"`
-	CreateStdOutPipe  bool              `json:",omitempty"`
-	CreateStdErrPipe  bool              `json:",omitempty"`
-	ConsoleSize       [2]uint           `json:",omitempty"`
-	CreateInUtilityVm bool              `json:",omitempty"` // Used by Linux Containers on Windows
-	OCISpecification  *json.RawMessage  `json:",omitempty"` // Used by Linux Containers on Windows
-}
-
-type Layer struct {
-	ID   string
-	Path string
-}
-
-type MappedDir struct {
-	HostPath          string
-	ContainerPath     string
-	ReadOnly          bool
-	BandwidthMaximum  uint64
-	IOPSMaximum       uint64
-	CreateInUtilityVM bool
-}
-
-type MappedPipe struct {
-	HostPath          string
-	ContainerPipeName string
-}
-
-type HvRuntime struct {
-	ImagePath           string `json:",omitempty"`
-	SkipTemplate        bool   `json:",omitempty"`
-	LinuxInitrdFile     string `json:",omitempty"` // File under ImagePath on host containing an initrd image for starting a Linux utility VM
-	LinuxKernelFile     string `json:",omitempty"` // File under ImagePath on host containing a kernel for starting a Linux utility VM
-	LinuxBootParameters string `json:",omitempty"` // Additional boot parameters for starting a Linux Utility VM in initrd mode
-	BootSource          string `json:",omitempty"` // "Vhd" for Linux Utility VM booting from VHD
-	WritableBootSource  bool   `json:",omitempty"` // Linux Utility VM booting from VHD
-}
-
-type MappedVirtualDisk struct {
-	HostPath          string `json:",omitempty"` // Path to VHD on the host
-	ContainerPath     string // Platform-specific mount point path in the container
-	CreateInUtilityVM bool   `json:",omitempty"`
-	ReadOnly          bool   `json:",omitempty"`
-	Cache             string `json:",omitempty"` // "" (Unspecified); "Disabled"; "Enabled"; "Private"; "PrivateAllowSharing"
-	AttachOnly        bool   `json:",omitempty:`
-}
-
-// ContainerConfig is used as both the input of CreateContainer
-// and to convert the parameters to JSON for passing onto the HCS
-type ContainerConfig struct {
-	SystemType                  string              // HCS requires this to be hard-coded to "Container"
-	Name                        string              // Name of the container. We use the docker ID.
-	Owner                       string              `json:",omitempty"` // The management platform that created this container
-	VolumePath                  string              `json:",omitempty"` // Windows volume path for scratch space. Used by Windows Server Containers only. Format \\?\\Volume{GUID}
-	IgnoreFlushesDuringBoot     bool                `json:",omitempty"` // Optimization hint for container startup in Windows
-	LayerFolderPath             string              `json:",omitempty"` // Where the layer folders are located. Used by Windows Server Containers only. Format  %root%\windowsfilter\containerID
-	Layers                      []Layer             // List of storage layers. Required for Windows Server and Hyper-V Containers. Format ID=GUID;Path=%root%\windowsfilter\layerID
-	Credentials                 string              `json:",omitempty"` // Credentials information
-	ProcessorCount              uint32              `json:",omitempty"` // Number of processors to assign to the container.
-	ProcessorWeight             uint64              `json:",omitempty"` // CPU shares (relative weight to other containers with cpu shares). Range is from 1 to 10000. A value of 0 results in default shares.
-	ProcessorMaximum            int64               `json:",omitempty"` // Specifies the portion of processor cycles that this container can use as a percentage times 100. Range is from 1 to 10000. A value of 0 results in no limit.
-	StorageIOPSMaximum          uint64              `json:",omitempty"` // Maximum Storage IOPS
-	StorageBandwidthMaximum     uint64              `json:",omitempty"` // Maximum Storage Bandwidth in bytes per second
-	StorageSandboxSize          uint64              `json:",omitempty"` // Size in bytes that the container system drive should be expanded to if smaller
-	MemoryMaximumInMB           int64               `json:",omitempty"` // Maximum memory available to the container in Megabytes
-	HostName                    string              `json:",omitempty"` // Hostname
-	MappedDirectories           []MappedDir         `json:",omitempty"` // List of mapped directories (volumes/mounts)
-	MappedPipes                 []MappedPipe        `json:",omitempty"` // List of mapped Windows named pipes
-	HvPartition                 bool                // True if it a Hyper-V Container
-	NetworkSharedContainerName  string              `json:",omitempty"` // Name (ID) of the container that we will share the network stack with.
-	EndpointList                []string            `json:",omitempty"` // List of networking endpoints to be attached to container
-	HvRuntime                   *HvRuntime          `json:",omitempty"` // Hyper-V container settings. Used by Hyper-V containers only. Format ImagePath=%root%\BaseLayerID\UtilityVM
-	Servicing                   bool                `json:",omitempty"` // True if this container is for servicing
-	AllowUnqualifiedDNSQuery    bool                `json:",omitempty"` // True to allow unqualified DNS name resolution
-	DNSSearchList               string              `json:",omitempty"` // Comma seperated list of DNS suffixes to use for name resolution
-	ContainerType               string              `json:",omitempty"` // "Linux" for Linux containers on Windows. Omitted otherwise.
-	TerminateOnLastHandleClosed bool                `json:",omitempty"` // Should HCS terminate the container once all handles have been closed
-	MappedVirtualDisks          []MappedVirtualDisk `json:",omitempty"` // Array of virtual disks to mount at start
-}
-
-type ComputeSystemQuery struct {
-	IDs    []string `json:"Ids,omitempty"`
-	Types  []string `json:",omitempty"`
-	Names  []string `json:",omitempty"`
-	Owners []string `json:",omitempty"`
-}
-
-// Container represents a created (but not necessarily running) container.
-type Container interface {
-	// Start synchronously starts the container.
-	Start() error
-
-	// Shutdown requests a container shutdown, but it may not actually be shutdown until Wait() succeeds.
-	Shutdown() error
-
-	// Terminate requests a container terminate, but it may not actually be terminated until Wait() succeeds.
-	Terminate() error
-
-	// Waits synchronously waits for the container to shutdown or terminate.
-	Wait() error
-
-	// WaitTimeout synchronously waits for the container to terminate or the duration to elapse. It
-	// returns false if timeout occurs.
-	WaitTimeout(time.Duration) error
-
-	// Pause pauses the execution of a container.
-	Pause() error
-
-	// Resume resumes the execution of a container.
-	Resume() error
-
-	// HasPendingUpdates returns true if the container has updates pending to install.
-	HasPendingUpdates() (bool, error)
-
-	// Statistics returns statistics for a container.
-	Statistics() (Statistics, error)
-
-	// ProcessList returns details for the processes in a container.
-	ProcessList() ([]ProcessListItem, error)
-
-	// MappedVirtualDisks returns virtual disks mapped to a utility VM, indexed by controller
-	MappedVirtualDisks() (map[int]MappedVirtualDiskController, error)
-
-	// CreateProcess launches a new process within the container.
-	CreateProcess(c *ProcessConfig) (Process, error)
-
-	// OpenProcess gets an interface to an existing process within the container.
-	OpenProcess(pid int) (Process, error)
-
-	// Close cleans up any state associated with the container but does not terminate or wait for it.
-	Close() error
-
-	// Modify the System
-	Modify(config *ResourceModificationRequestResponse) error
-}
-
-// Process represents a running or exited process.
-type Process interface {
-	// Pid returns the process ID of the process within the container.
-	Pid() int
-
-	// Kill signals the process to terminate but does not wait for it to finish terminating.
-	Kill() error
-
-	// Wait waits for the process to exit.
-	Wait() error
-
-	// WaitTimeout waits for the process to exit or the duration to elapse. It returns
-	// false if timeout occurs.
-	WaitTimeout(time.Duration) error
-
-	// ExitCode returns the exit code of the process. The process must have
-	// already terminated.
-	ExitCode() (int, error)
-
-	// ResizeConsole resizes the console of the process.
-	ResizeConsole(width, height uint16) error
-
-	// Stdio returns the stdin, stdout, and stderr pipes, respectively. Closing
-	// these pipes does not close the underlying pipes; it should be possible to
-	// call this multiple times to get multiple interfaces.
-	Stdio() (io.WriteCloser, io.ReadCloser, io.ReadCloser, error)
-
-	// CloseStdin closes the write side of the stdin pipe so that the process is
-	// notified on the read side that there is no more data in stdin.
-	CloseStdin() error
-
-	// Close cleans up any state associated with the process but does not kill
-	// or wait on it.
-	Close() error
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/layerexists.go b/vendor/github.com/Microsoft/hcsshim/layerexists.go
deleted file mode 100644
index fe46f404c3..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/layerexists.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// LayerExists will return true if a layer with the given id exists and is known
-// to the system.
-func LayerExists(info DriverInfo, id string) (bool, error) {
-	title := "hcsshim::LayerExists "
-	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return false, err
-	}
-
-	// Call the procedure itself.
-	var exists uint32
-
-	err = layerExists(&infop, id, &exists)
-	if err != nil {
-		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
-		logrus.Error(err)
-		return false, err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d id=%s exists=%d", info.Flavour, id, exists)
-	return exists != 0, nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/layerutils.go b/vendor/github.com/Microsoft/hcsshim/layerutils.go
deleted file mode 100644
index c0e5503773..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/layerutils.go
+++ /dev/null
@@ -1,111 +0,0 @@
-package hcsshim
-
-// This file contains utility functions to support storage (graph) related
-// functionality.
-
-import (
-	"path/filepath"
-	"syscall"
-
-	"github.com/sirupsen/logrus"
-)
-
-/* To pass into syscall, we need a struct matching the following:
-enum GraphDriverType
-{
-    DiffDriver,
-    FilterDriver
-};
-
-struct DriverInfo {
-    GraphDriverType Flavour;
-    LPCWSTR HomeDir;
-};
-*/
-type DriverInfo struct {
-	Flavour int
-	HomeDir string
-}
-
-type driverInfo struct {
-	Flavour  int
-	HomeDirp *uint16
-}
-
-func convertDriverInfo(info DriverInfo) (driverInfo, error) {
-	homedirp, err := syscall.UTF16PtrFromString(info.HomeDir)
-	if err != nil {
-		logrus.Debugf("Failed conversion of home to pointer for driver info: %s", err.Error())
-		return driverInfo{}, err
-	}
-
-	return driverInfo{
-		Flavour:  info.Flavour,
-		HomeDirp: homedirp,
-	}, nil
-}
-
-/* To pass into syscall, we need a struct matching the following:
-typedef struct _WC_LAYER_DESCRIPTOR {
-
-    //
-    // The ID of the layer
-    //
-
-    GUID LayerId;
-
-    //
-    // Additional flags
-    //
-
-    union {
-        struct {
-            ULONG Reserved : 31;
-            ULONG Dirty : 1;    // Created from sandbox as a result of snapshot
-        };
-        ULONG Value;
-    } Flags;
-
-    //
-    // Path to the layer root directory, null-terminated
-    //
-
-    PCWSTR Path;
-
-} WC_LAYER_DESCRIPTOR, *PWC_LAYER_DESCRIPTOR;
-*/
-type WC_LAYER_DESCRIPTOR struct {
-	LayerId GUID
-	Flags   uint32
-	Pathp   *uint16
-}
-
-func layerPathsToDescriptors(parentLayerPaths []string) ([]WC_LAYER_DESCRIPTOR, error) {
-	// Array of descriptors that gets constructed.
-	var layers []WC_LAYER_DESCRIPTOR
-
-	for i := 0; i < len(parentLayerPaths); i++ {
-		// Create a layer descriptor, using the folder name
-		// as the source for a GUID LayerId
-		_, folderName := filepath.Split(parentLayerPaths[i])
-		g, err := NameToGuid(folderName)
-		if err != nil {
-			logrus.Debugf("Failed to convert name to guid %s", err)
-			return nil, err
-		}
-
-		p, err := syscall.UTF16PtrFromString(parentLayerPaths[i])
-		if err != nil {
-			logrus.Debugf("Failed conversion of parentLayerPath to pointer %s", err)
-			return nil, err
-		}
-
-		layers = append(layers, WC_LAYER_DESCRIPTOR{
-			LayerId: g,
-			Flags:   0,
-			Pathp:   p,
-		})
-	}
-
-	return layers, nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy.go b/vendor/github.com/Microsoft/hcsshim/legacy.go
deleted file mode 100644
index 673a4f8795..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/legacy.go
+++ /dev/null
@@ -1,758 +0,0 @@
-package hcsshim
-
-import (
-	"bufio"
-	"encoding/binary"
-	"errors"
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"strings"
-	"syscall"
-
-	"github.com/Microsoft/go-winio"
-)
-
-var errorIterationCanceled = errors.New("")
-
-var mutatedUtilityVMFiles = map[string]bool{
-	`EFI\Microsoft\Boot\BCD`:      true,
-	`EFI\Microsoft\Boot\BCD.LOG`:  true,
-	`EFI\Microsoft\Boot\BCD.LOG1`: true,
-	`EFI\Microsoft\Boot\BCD.LOG2`: true,
-}
-
-const (
-	filesPath          = `Files`
-	hivesPath          = `Hives`
-	utilityVMPath      = `UtilityVM`
-	utilityVMFilesPath = `UtilityVM\Files`
-)
-
-func openFileOrDir(path string, mode uint32, createDisposition uint32) (file *os.File, err error) {
-	return winio.OpenForBackup(path, mode, syscall.FILE_SHARE_READ, createDisposition)
-}
-
-func makeLongAbsPath(path string) (string, error) {
-	if strings.HasPrefix(path, `\\?\`) || strings.HasPrefix(path, `\\.\`) {
-		return path, nil
-	}
-	if !filepath.IsAbs(path) {
-		absPath, err := filepath.Abs(path)
-		if err != nil {
-			return "", err
-		}
-		path = absPath
-	}
-	if strings.HasPrefix(path, `\\`) {
-		return `\\?\UNC\` + path[2:], nil
-	}
-	return `\\?\` + path, nil
-}
-
-func hasPathPrefix(p, prefix string) bool {
-	return strings.HasPrefix(p, prefix) && len(p) > len(prefix) && p[len(prefix)] == '\\'
-}
-
-type fileEntry struct {
-	path string
-	fi   os.FileInfo
-	err  error
-}
-
-type legacyLayerReader struct {
-	root         string
-	result       chan *fileEntry
-	proceed      chan bool
-	currentFile  *os.File
-	backupReader *winio.BackupFileReader
-}
-
-// newLegacyLayerReader returns a new LayerReader that can read the Windows
-// container layer transport format from disk.
-func newLegacyLayerReader(root string) *legacyLayerReader {
-	r := &legacyLayerReader{
-		root:    root,
-		result:  make(chan *fileEntry),
-		proceed: make(chan bool),
-	}
-	go r.walk()
-	return r
-}
-
-func readTombstones(path string) (map[string]([]string), error) {
-	tf, err := os.Open(filepath.Join(path, "tombstones.txt"))
-	if err != nil {
-		return nil, err
-	}
-	defer tf.Close()
-	s := bufio.NewScanner(tf)
-	if !s.Scan() || s.Text() != "\xef\xbb\xbfVersion 1.0" {
-		return nil, errors.New("Invalid tombstones file")
-	}
-
-	ts := make(map[string]([]string))
-	for s.Scan() {
-		t := filepath.Join(filesPath, s.Text()[1:]) // skip leading `\`
-		dir := filepath.Dir(t)
-		ts[dir] = append(ts[dir], t)
-	}
-	if err = s.Err(); err != nil {
-		return nil, err
-	}
-
-	return ts, nil
-}
-
-func (r *legacyLayerReader) walkUntilCancelled() error {
-	root, err := makeLongAbsPath(r.root)
-	if err != nil {
-		return err
-	}
-
-	r.root = root
-	ts, err := readTombstones(r.root)
-	if err != nil {
-		return err
-	}
-
-	err = filepath.Walk(r.root, func(path string, info os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-
-		// Indirect fix for https://github.com/moby/moby/issues/32838#issuecomment-343610048.
-		// Handle failure from what may be a golang bug in the conversion of
-		// UTF16 to UTF8 in files which are left in the recycle bin. Os.Lstat
-		// which is called by filepath.Walk will fail when a filename contains
-		// unicode characters. Skip the recycle bin regardless which is goodness.
-		if strings.HasPrefix(path, filepath.Join(r.root, `Files\$Recycle.Bin`)) {
-			return filepath.SkipDir
-		}
-
-		if path == r.root || path == filepath.Join(r.root, "tombstones.txt") || strings.HasSuffix(path, ".$wcidirs$") {
-			return nil
-		}
-
-		r.result <- &fileEntry{path, info, nil}
-		if !<-r.proceed {
-			return errorIterationCanceled
-		}
-
-		// List all the tombstones.
-		if info.IsDir() {
-			relPath, err := filepath.Rel(r.root, path)
-			if err != nil {
-				return err
-			}
-			if dts, ok := ts[relPath]; ok {
-				for _, t := range dts {
-					r.result <- &fileEntry{filepath.Join(r.root, t), nil, nil}
-					if !<-r.proceed {
-						return errorIterationCanceled
-					}
-				}
-			}
-		}
-		return nil
-	})
-	if err == errorIterationCanceled {
-		return nil
-	}
-	if err == nil {
-		return io.EOF
-	}
-	return err
-}
-
-func (r *legacyLayerReader) walk() {
-	defer close(r.result)
-	if !<-r.proceed {
-		return
-	}
-
-	err := r.walkUntilCancelled()
-	if err != nil {
-		for {
-			r.result <- &fileEntry{err: err}
-			if !<-r.proceed {
-				return
-			}
-		}
-	}
-}
-
-func (r *legacyLayerReader) reset() {
-	if r.backupReader != nil {
-		r.backupReader.Close()
-		r.backupReader = nil
-	}
-	if r.currentFile != nil {
-		r.currentFile.Close()
-		r.currentFile = nil
-	}
-}
-
-func findBackupStreamSize(r io.Reader) (int64, error) {
-	br := winio.NewBackupStreamReader(r)
-	for {
-		hdr, err := br.Next()
-		if err != nil {
-			if err == io.EOF {
-				err = nil
-			}
-			return 0, err
-		}
-		if hdr.Id == winio.BackupData {
-			return hdr.Size, nil
-		}
-	}
-}
-
-func (r *legacyLayerReader) Next() (path string, size int64, fileInfo *winio.FileBasicInfo, err error) {
-	r.reset()
-	r.proceed <- true
-	fe := <-r.result
-	if fe == nil {
-		err = errors.New("LegacyLayerReader closed")
-		return
-	}
-	if fe.err != nil {
-		err = fe.err
-		return
-	}
-
-	path, err = filepath.Rel(r.root, fe.path)
-	if err != nil {
-		return
-	}
-
-	if fe.fi == nil {
-		// This is a tombstone. Return a nil fileInfo.
-		return
-	}
-
-	if fe.fi.IsDir() && hasPathPrefix(path, filesPath) {
-		fe.path += ".$wcidirs$"
-	}
-
-	f, err := openFileOrDir(fe.path, syscall.GENERIC_READ, syscall.OPEN_EXISTING)
-	if err != nil {
-		return
-	}
-	defer func() {
-		if f != nil {
-			f.Close()
-		}
-	}()
-
-	fileInfo, err = winio.GetFileBasicInfo(f)
-	if err != nil {
-		return
-	}
-
-	if !hasPathPrefix(path, filesPath) {
-		size = fe.fi.Size()
-		r.backupReader = winio.NewBackupFileReader(f, false)
-		if path == hivesPath || path == filesPath {
-			// The Hives directory has a non-deterministic file time because of the
-			// nature of the import process. Use the times from System_Delta.
-			var g *os.File
-			g, err = os.Open(filepath.Join(r.root, hivesPath, `System_Delta`))
-			if err != nil {
-				return
-			}
-			attr := fileInfo.FileAttributes
-			fileInfo, err = winio.GetFileBasicInfo(g)
-			g.Close()
-			if err != nil {
-				return
-			}
-			fileInfo.FileAttributes = attr
-		}
-
-		// The creation time and access time get reset for files outside of the Files path.
-		fileInfo.CreationTime = fileInfo.LastWriteTime
-		fileInfo.LastAccessTime = fileInfo.LastWriteTime
-
-	} else {
-		// The file attributes are written before the backup stream.
-		var attr uint32
-		err = binary.Read(f, binary.LittleEndian, &attr)
-		if err != nil {
-			return
-		}
-		fileInfo.FileAttributes = uintptr(attr)
-		beginning := int64(4)
-
-		// Find the accurate file size.
-		if !fe.fi.IsDir() {
-			size, err = findBackupStreamSize(f)
-			if err != nil {
-				err = &os.PathError{Op: "findBackupStreamSize", Path: fe.path, Err: err}
-				return
-			}
-		}
-
-		// Return back to the beginning of the backup stream.
-		_, err = f.Seek(beginning, 0)
-		if err != nil {
-			return
-		}
-	}
-
-	r.currentFile = f
-	f = nil
-	return
-}
-
-func (r *legacyLayerReader) Read(b []byte) (int, error) {
-	if r.backupReader == nil {
-		if r.currentFile == nil {
-			return 0, io.EOF
-		}
-		return r.currentFile.Read(b)
-	}
-	return r.backupReader.Read(b)
-}
-
-func (r *legacyLayerReader) Seek(offset int64, whence int) (int64, error) {
-	if r.backupReader == nil {
-		if r.currentFile == nil {
-			return 0, errors.New("no current file")
-		}
-		return r.currentFile.Seek(offset, whence)
-	}
-	return 0, errors.New("seek not supported on this stream")
-}
-
-func (r *legacyLayerReader) Close() error {
-	r.proceed <- false
-	<-r.result
-	r.reset()
-	return nil
-}
-
-type pendingLink struct {
-	Path, Target string
-}
-
-type legacyLayerWriter struct {
-	root         string
-	parentRoots  []string
-	destRoot     string
-	currentFile  *os.File
-	backupWriter *winio.BackupFileWriter
-	tombstones   []string
-	pathFixed    bool
-	HasUtilityVM bool
-	uvmDi        []dirInfo
-	addedFiles   map[string]bool
-	PendingLinks []pendingLink
-}
-
-// newLegacyLayerWriter returns a LayerWriter that can write the contaler layer
-// transport format to disk.
-func newLegacyLayerWriter(root string, parentRoots []string, destRoot string) *legacyLayerWriter {
-	return &legacyLayerWriter{
-		root:        root,
-		parentRoots: parentRoots,
-		destRoot:    destRoot,
-		addedFiles:  make(map[string]bool),
-	}
-}
-
-func (w *legacyLayerWriter) init() error {
-	if !w.pathFixed {
-		path, err := makeLongAbsPath(w.root)
-		if err != nil {
-			return err
-		}
-		for i, p := range w.parentRoots {
-			w.parentRoots[i], err = makeLongAbsPath(p)
-			if err != nil {
-				return err
-			}
-		}
-		destPath, err := makeLongAbsPath(w.destRoot)
-		if err != nil {
-			return err
-		}
-		w.root = path
-		w.destRoot = destPath
-		w.pathFixed = true
-	}
-	return nil
-}
-
-func (w *legacyLayerWriter) initUtilityVM() error {
-	if !w.HasUtilityVM {
-		err := os.Mkdir(filepath.Join(w.destRoot, utilityVMPath), 0)
-		if err != nil {
-			return err
-		}
-		// Server 2016 does not support multiple layers for the utility VM, so
-		// clone the utility VM from the parent layer into this layer. Use hard
-		// links to avoid unnecessary copying, since most of the files are
-		// immutable.
-		err = cloneTree(filepath.Join(w.parentRoots[0], utilityVMFilesPath), filepath.Join(w.destRoot, utilityVMFilesPath), mutatedUtilityVMFiles)
-		if err != nil {
-			return fmt.Errorf("cloning the parent utility VM image failed: %s", err)
-		}
-		w.HasUtilityVM = true
-	}
-	return nil
-}
-
-func (w *legacyLayerWriter) reset() {
-	if w.backupWriter != nil {
-		w.backupWriter.Close()
-		w.backupWriter = nil
-	}
-	if w.currentFile != nil {
-		w.currentFile.Close()
-		w.currentFile = nil
-	}
-}
-
-// copyFileWithMetadata copies a file using the backup/restore APIs in order to preserve metadata
-func copyFileWithMetadata(srcPath, destPath string, isDir bool) (fileInfo *winio.FileBasicInfo, err error) {
-	createDisposition := uint32(syscall.CREATE_NEW)
-	if isDir {
-		err = os.Mkdir(destPath, 0)
-		if err != nil {
-			return nil, err
-		}
-		createDisposition = syscall.OPEN_EXISTING
-	}
-
-	src, err := openFileOrDir(srcPath, syscall.GENERIC_READ|winio.ACCESS_SYSTEM_SECURITY, syscall.OPEN_EXISTING)
-	if err != nil {
-		return nil, err
-	}
-	defer src.Close()
-	srcr := winio.NewBackupFileReader(src, true)
-	defer srcr.Close()
-
-	fileInfo, err = winio.GetFileBasicInfo(src)
-	if err != nil {
-		return nil, err
-	}
-
-	dest, err := openFileOrDir(destPath, syscall.GENERIC_READ|syscall.GENERIC_WRITE|winio.WRITE_DAC|winio.WRITE_OWNER|winio.ACCESS_SYSTEM_SECURITY, createDisposition)
-	if err != nil {
-		return nil, err
-	}
-	defer dest.Close()
-
-	err = winio.SetFileBasicInfo(dest, fileInfo)
-	if err != nil {
-		return nil, err
-	}
-
-	destw := winio.NewBackupFileWriter(dest, true)
-	defer func() {
-		cerr := destw.Close()
-		if err == nil {
-			err = cerr
-		}
-	}()
-
-	_, err = io.Copy(destw, srcr)
-	if err != nil {
-		return nil, err
-	}
-
-	return fileInfo, nil
-}
-
-// cloneTree clones a directory tree using hard links. It skips hard links for
-// the file names in the provided map and just copies those files.
-func cloneTree(srcPath, destPath string, mutatedFiles map[string]bool) error {
-	var di []dirInfo
-	err := filepath.Walk(srcPath, func(srcFilePath string, info os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-
-		relPath, err := filepath.Rel(srcPath, srcFilePath)
-		if err != nil {
-			return err
-		}
-		destFilePath := filepath.Join(destPath, relPath)
-
-		fileAttributes := info.Sys().(*syscall.Win32FileAttributeData).FileAttributes
-		// Directories, reparse points, and files that will be mutated during
-		// utility VM import must be copied. All other files can be hard linked.
-		isReparsePoint := fileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT != 0
-		// In go1.9, FileInfo.IsDir() returns false if the directory is also a symlink.
-		// See: https://github.com/golang/go/commit/1989921aef60c83e6f9127a8448fb5ede10e9acc
-		// Fixes the problem by checking syscall.FILE_ATTRIBUTE_DIRECTORY directly
-		isDir := fileAttributes&syscall.FILE_ATTRIBUTE_DIRECTORY != 0
-
-		if isDir || isReparsePoint || mutatedFiles[relPath] {
-			fi, err := copyFileWithMetadata(srcFilePath, destFilePath, isDir)
-			if err != nil {
-				return err
-			}
-			if isDir && !isReparsePoint {
-				di = append(di, dirInfo{path: destFilePath, fileInfo: *fi})
-			}
-		} else {
-			err = os.Link(srcFilePath, destFilePath)
-			if err != nil {
-				return err
-			}
-		}
-
-		// Don't recurse on reparse points in go1.8 and older. Filepath.Walk
-		// handles this in go1.9 and newer.
-		if isDir && isReparsePoint && shouldSkipDirectoryReparse {
-			return filepath.SkipDir
-		}
-
-		return nil
-	})
-	if err != nil {
-		return err
-	}
-
-	return reapplyDirectoryTimes(di)
-}
-
-func (w *legacyLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) error {
-	w.reset()
-	err := w.init()
-	if err != nil {
-		return err
-	}
-
-	if name == utilityVMPath {
-		return w.initUtilityVM()
-	}
-
-	if hasPathPrefix(name, utilityVMPath) {
-		if !w.HasUtilityVM {
-			return errors.New("missing UtilityVM directory")
-		}
-		if !hasPathPrefix(name, utilityVMFilesPath) && name != utilityVMFilesPath {
-			return errors.New("invalid UtilityVM layer")
-		}
-		path := filepath.Join(w.destRoot, name)
-		createDisposition := uint32(syscall.OPEN_EXISTING)
-		if (fileInfo.FileAttributes & syscall.FILE_ATTRIBUTE_DIRECTORY) != 0 {
-			st, err := os.Lstat(path)
-			if err != nil && !os.IsNotExist(err) {
-				return err
-			}
-			if st != nil {
-				// Delete the existing file/directory if it is not the same type as this directory.
-				existingAttr := st.Sys().(*syscall.Win32FileAttributeData).FileAttributes
-				if (uint32(fileInfo.FileAttributes)^existingAttr)&(syscall.FILE_ATTRIBUTE_DIRECTORY|syscall.FILE_ATTRIBUTE_REPARSE_POINT) != 0 {
-					if err = os.RemoveAll(path); err != nil {
-						return err
-					}
-					st = nil
-				}
-			}
-			if st == nil {
-				if err = os.Mkdir(path, 0); err != nil {
-					return err
-				}
-			}
-			if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT == 0 {
-				w.uvmDi = append(w.uvmDi, dirInfo{path: path, fileInfo: *fileInfo})
-			}
-		} else {
-			// Overwrite any existing hard link.
-			err = os.Remove(path)
-			if err != nil && !os.IsNotExist(err) {
-				return err
-			}
-			createDisposition = syscall.CREATE_NEW
-		}
-
-		f, err := openFileOrDir(path, syscall.GENERIC_READ|syscall.GENERIC_WRITE|winio.WRITE_DAC|winio.WRITE_OWNER|winio.ACCESS_SYSTEM_SECURITY, createDisposition)
-		if err != nil {
-			return err
-		}
-		defer func() {
-			if f != nil {
-				f.Close()
-				os.Remove(path)
-			}
-		}()
-
-		err = winio.SetFileBasicInfo(f, fileInfo)
-		if err != nil {
-			return err
-		}
-
-		w.backupWriter = winio.NewBackupFileWriter(f, true)
-		w.currentFile = f
-		w.addedFiles[name] = true
-		f = nil
-		return nil
-	}
-
-	path := filepath.Join(w.root, name)
-	if (fileInfo.FileAttributes & syscall.FILE_ATTRIBUTE_DIRECTORY) != 0 {
-		err := os.Mkdir(path, 0)
-		if err != nil {
-			return err
-		}
-		path += ".$wcidirs$"
-	}
-
-	f, err := openFileOrDir(path, syscall.GENERIC_READ|syscall.GENERIC_WRITE, syscall.CREATE_NEW)
-	if err != nil {
-		return err
-	}
-	defer func() {
-		if f != nil {
-			f.Close()
-			os.Remove(path)
-		}
-	}()
-
-	strippedFi := *fileInfo
-	strippedFi.FileAttributes = 0
-	err = winio.SetFileBasicInfo(f, &strippedFi)
-	if err != nil {
-		return err
-	}
-
-	if hasPathPrefix(name, hivesPath) {
-		w.backupWriter = winio.NewBackupFileWriter(f, false)
-	} else {
-		// The file attributes are written before the stream.
-		err = binary.Write(f, binary.LittleEndian, uint32(fileInfo.FileAttributes))
-		if err != nil {
-			return err
-		}
-	}
-
-	w.currentFile = f
-	w.addedFiles[name] = true
-	f = nil
-	return nil
-}
-
-func (w *legacyLayerWriter) AddLink(name string, target string) error {
-	w.reset()
-	err := w.init()
-	if err != nil {
-		return err
-	}
-
-	var roots []string
-	if hasPathPrefix(target, filesPath) {
-		// Look for cross-layer hard link targets in the parent layers, since
-		// nothing is in the destination path yet.
-		roots = w.parentRoots
-	} else if hasPathPrefix(target, utilityVMFilesPath) {
-		// Since the utility VM is fully cloned into the destination path
-		// already, look for cross-layer hard link targets directly in the
-		// destination path.
-		roots = []string{w.destRoot}
-	}
-
-	if roots == nil || (!hasPathPrefix(name, filesPath) && !hasPathPrefix(name, utilityVMFilesPath)) {
-		return errors.New("invalid hard link in layer")
-	}
-
-	// Find to try the target of the link in a previously added file. If that
-	// fails, search in parent layers.
-	var selectedRoot string
-	if _, ok := w.addedFiles[target]; ok {
-		selectedRoot = w.destRoot
-	} else {
-		for _, r := range roots {
-			if _, err = os.Lstat(filepath.Join(r, target)); err != nil {
-				if !os.IsNotExist(err) {
-					return err
-				}
-			} else {
-				selectedRoot = r
-				break
-			}
-		}
-		if selectedRoot == "" {
-			return fmt.Errorf("failed to find link target for '%s' -> '%s'", name, target)
-		}
-	}
-	// The link can't be written until after the ImportLayer call.
-	w.PendingLinks = append(w.PendingLinks, pendingLink{
-		Path:   filepath.Join(w.destRoot, name),
-		Target: filepath.Join(selectedRoot, target),
-	})
-	w.addedFiles[name] = true
-	return nil
-}
-
-func (w *legacyLayerWriter) Remove(name string) error {
-	if hasPathPrefix(name, filesPath) {
-		w.tombstones = append(w.tombstones, name[len(filesPath)+1:])
-	} else if hasPathPrefix(name, utilityVMFilesPath) {
-		err := w.initUtilityVM()
-		if err != nil {
-			return err
-		}
-		// Make sure the path exists; os.RemoveAll will not fail if the file is
-		// already gone, and this needs to be a fatal error for diagnostics
-		// purposes.
-		path := filepath.Join(w.destRoot, name)
-		if _, err := os.Lstat(path); err != nil {
-			return err
-		}
-		err = os.RemoveAll(path)
-		if err != nil {
-			return err
-		}
-	} else {
-		return fmt.Errorf("invalid tombstone %s", name)
-	}
-
-	return nil
-}
-
-func (w *legacyLayerWriter) Write(b []byte) (int, error) {
-	if w.backupWriter == nil {
-		if w.currentFile == nil {
-			return 0, errors.New("closed")
-		}
-		return w.currentFile.Write(b)
-	}
-	return w.backupWriter.Write(b)
-}
-
-func (w *legacyLayerWriter) Close() error {
-	w.reset()
-	err := w.init()
-	if err != nil {
-		return err
-	}
-	tf, err := os.Create(filepath.Join(w.root, "tombstones.txt"))
-	if err != nil {
-		return err
-	}
-	defer tf.Close()
-	_, err = tf.Write([]byte("\xef\xbb\xbfVersion 1.0\n"))
-	if err != nil {
-		return err
-	}
-	for _, t := range w.tombstones {
-		_, err = tf.Write([]byte(filepath.Join(`\`, t) + "\n"))
-		if err != nil {
-			return err
-		}
-	}
-	if w.HasUtilityVM {
-		err = reapplyDirectoryTimes(w.uvmDi)
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy18.go b/vendor/github.com/Microsoft/hcsshim/legacy18.go
deleted file mode 100644
index 578552f913..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/legacy18.go
+++ /dev/null
@@ -1,7 +0,0 @@
-// +build !go1.9
-
-package hcsshim
-
-// Due to a bug in go1.8 and before, directory reparse points need to be skipped
-// during filepath.Walk. This is fixed in go1.9
-var shouldSkipDirectoryReparse = true
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy19.go b/vendor/github.com/Microsoft/hcsshim/legacy19.go
deleted file mode 100644
index 6aa1dc0584..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/legacy19.go
+++ /dev/null
@@ -1,7 +0,0 @@
-// +build go1.9
-
-package hcsshim
-
-// Due to a bug in go1.8 and before, directory reparse points need to be skipped
-// during filepath.Walk. This is fixed in go1.9
-var shouldSkipDirectoryReparse = false
diff --git a/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go b/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
deleted file mode 100644
index 82393ca367..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
+++ /dev/null
@@ -1,934 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build ignore
-
-/*
-mksyscall_windows generates windows system call bodies
-
-It parses all files specified on command line containing function
-prototypes (like syscall_windows.go) and prints system call bodies
-to standard output.
-
-The prototypes are marked by lines beginning with "//sys" and read
-like func declarations if //sys is replaced by func, but:
-
-* The parameter lists must give a name for each argument. This
-  includes return parameters.
-
-* The parameter lists must give a type for each argument:
-  the (x, y, z int) shorthand is not allowed.
-
-* If the return parameter is an error number, it must be named err.
-
-* If go func name needs to be different from it's winapi dll name,
-  the winapi name could be specified at the end, after "=" sign, like
-  //sys LoadLibrary(libname string) (handle uint32, err error) = LoadLibraryA
-
-* Each function that returns err needs to supply a condition, that
-  return value of winapi will be tested against to detect failure.
-  This would set err to windows "last-error", otherwise it will be nil.
-  The value can be provided at end of //sys declaration, like
-  //sys LoadLibrary(libname string) (handle uint32, err error) [failretval==-1] = LoadLibraryA
-  and is [failretval==0] by default.
-
-Usage:
-	mksyscall_windows [flags] [path ...]
-
-The flags are:
-	-output
-		Specify output file name (outputs to console if blank).
-	-trace
-		Generate print statement after every syscall.
-*/
-package main
-
-import (
-	"bufio"
-	"bytes"
-	"errors"
-	"flag"
-	"fmt"
-	"go/format"
-	"go/parser"
-	"go/token"
-	"io"
-	"io/ioutil"
-	"log"
-	"os"
-	"path/filepath"
-	"runtime"
-	"sort"
-	"strconv"
-	"strings"
-	"text/template"
-)
-
-var (
-	filename       = flag.String("output", "", "output file name (standard output if omitted)")
-	printTraceFlag = flag.Bool("trace", false, "generate print statement after every syscall")
-	systemDLL      = flag.Bool("systemdll", true, "whether all DLLs should be loaded from the Windows system directory")
-)
-
-func trim(s string) string {
-	return strings.Trim(s, " \t")
-}
-
-var packageName string
-
-func packagename() string {
-	return packageName
-}
-
-func syscalldot() string {
-	if packageName == "syscall" {
-		return ""
-	}
-	return "syscall."
-}
-
-// Param is function parameter
-type Param struct {
-	Name      string
-	Type      string
-	fn        *Fn
-	tmpVarIdx int
-}
-
-// tmpVar returns temp variable name that will be used to represent p during syscall.
-func (p *Param) tmpVar() string {
-	if p.tmpVarIdx < 0 {
-		p.tmpVarIdx = p.fn.curTmpVarIdx
-		p.fn.curTmpVarIdx++
-	}
-	return fmt.Sprintf("_p%d", p.tmpVarIdx)
-}
-
-// BoolTmpVarCode returns source code for bool temp variable.
-func (p *Param) BoolTmpVarCode() string {
-	const code = `var %s uint32
-	if %s {
-		%s = 1
-	} else {
-		%s = 0
-	}`
-	tmp := p.tmpVar()
-	return fmt.Sprintf(code, tmp, p.Name, tmp, tmp)
-}
-
-// SliceTmpVarCode returns source code for slice temp variable.
-func (p *Param) SliceTmpVarCode() string {
-	const code = `var %s *%s
-	if len(%s) > 0 {
-		%s = &%s[0]
-	}`
-	tmp := p.tmpVar()
-	return fmt.Sprintf(code, tmp, p.Type[2:], p.Name, tmp, p.Name)
-}
-
-// StringTmpVarCode returns source code for string temp variable.
-func (p *Param) StringTmpVarCode() string {
-	errvar := p.fn.Rets.ErrorVarName()
-	if errvar == "" {
-		errvar = "_"
-	}
-	tmp := p.tmpVar()
-	const code = `var %s %s
-	%s, %s = %s(%s)`
-	s := fmt.Sprintf(code, tmp, p.fn.StrconvType(), tmp, errvar, p.fn.StrconvFunc(), p.Name)
-	if errvar == "-" {
-		return s
-	}
-	const morecode = `
-	if %s != nil {
-		return
-	}`
-	return s + fmt.Sprintf(morecode, errvar)
-}
-
-// TmpVarCode returns source code for temp variable.
-func (p *Param) TmpVarCode() string {
-	switch {
-	case p.Type == "bool":
-		return p.BoolTmpVarCode()
-	case strings.HasPrefix(p.Type, "[]"):
-		return p.SliceTmpVarCode()
-	default:
-		return ""
-	}
-}
-
-// TmpVarHelperCode returns source code for helper's temp variable.
-func (p *Param) TmpVarHelperCode() string {
-	if p.Type != "string" {
-		return ""
-	}
-	return p.StringTmpVarCode()
-}
-
-// SyscallArgList returns source code fragments representing p parameter
-// in syscall. Slices are translated into 2 syscall parameters: pointer to
-// the first element and length.
-func (p *Param) SyscallArgList() []string {
-	t := p.HelperType()
-	var s string
-	switch {
-	case t[0] == '*':
-		s = fmt.Sprintf("unsafe.Pointer(%s)", p.Name)
-	case t == "bool":
-		s = p.tmpVar()
-	case strings.HasPrefix(t, "[]"):
-		return []string{
-			fmt.Sprintf("uintptr(unsafe.Pointer(%s))", p.tmpVar()),
-			fmt.Sprintf("uintptr(len(%s))", p.Name),
-		}
-	default:
-		s = p.Name
-	}
-	return []string{fmt.Sprintf("uintptr(%s)", s)}
-}
-
-// IsError determines if p parameter is used to return error.
-func (p *Param) IsError() bool {
-	return p.Name == "err" && p.Type == "error"
-}
-
-// HelperType returns type of parameter p used in helper function.
-func (p *Param) HelperType() string {
-	if p.Type == "string" {
-		return p.fn.StrconvType()
-	}
-	return p.Type
-}
-
-// join concatenates parameters ps into a string with sep separator.
-// Each parameter is converted into string by applying fn to it
-// before conversion.
-func join(ps []*Param, fn func(*Param) string, sep string) string {
-	if len(ps) == 0 {
-		return ""
-	}
-	a := make([]string, 0)
-	for _, p := range ps {
-		a = append(a, fn(p))
-	}
-	return strings.Join(a, sep)
-}
-
-// Rets describes function return parameters.
-type Rets struct {
-	Name         string
-	Type         string
-	ReturnsError bool
-	FailCond     string
-}
-
-// ErrorVarName returns error variable name for r.
-func (r *Rets) ErrorVarName() string {
-	if r.ReturnsError {
-		return "err"
-	}
-	if r.Type == "error" {
-		return r.Name
-	}
-	return ""
-}
-
-// ToParams converts r into slice of *Param.
-func (r *Rets) ToParams() []*Param {
-	ps := make([]*Param, 0)
-	if len(r.Name) > 0 {
-		ps = append(ps, &Param{Name: r.Name, Type: r.Type})
-	}
-	if r.ReturnsError {
-		ps = append(ps, &Param{Name: "err", Type: "error"})
-	}
-	return ps
-}
-
-// List returns source code of syscall return parameters.
-func (r *Rets) List() string {
-	s := join(r.ToParams(), func(p *Param) string { return p.Name + " " + p.Type }, ", ")
-	if len(s) > 0 {
-		s = "(" + s + ")"
-	}
-	return s
-}
-
-// PrintList returns source code of trace printing part correspondent
-// to syscall return values.
-func (r *Rets) PrintList() string {
-	return join(r.ToParams(), func(p *Param) string { return fmt.Sprintf(`"%s=", %s, `, p.Name, p.Name) }, `", ", `)
-}
-
-// SetReturnValuesCode returns source code that accepts syscall return values.
-func (r *Rets) SetReturnValuesCode() string {
-	if r.Name == "" && !r.ReturnsError {
-		return ""
-	}
-	retvar := "r0"
-	if r.Name == "" {
-		retvar = "r1"
-	}
-	errvar := "_"
-	if r.ReturnsError {
-		errvar = "e1"
-	}
-	return fmt.Sprintf("%s, _, %s := ", retvar, errvar)
-}
-
-func (r *Rets) useLongHandleErrorCode(retvar string) string {
-	const code = `if %s {
-		if e1 != 0 {
-			err = errnoErr(e1)
-		} else {
-			err = %sEINVAL
-		}
-	}`
-	cond := retvar + " == 0"
-	if r.FailCond != "" {
-		cond = strings.Replace(r.FailCond, "failretval", retvar, 1)
-	}
-	return fmt.Sprintf(code, cond, syscalldot())
-}
-
-// SetErrorCode returns source code that sets return parameters.
-func (r *Rets) SetErrorCode() string {
-	const code = `if r0 != 0 {
-		%s = %sErrno(r0)
-	}`
-	const hrCode = `if int32(r0) < 0 {
-		%s = %sErrno(win32FromHresult(r0))
-	}`
-	if r.Name == "" && !r.ReturnsError {
-		return ""
-	}
-	if r.Name == "" {
-		return r.useLongHandleErrorCode("r1")
-	}
-	if r.Type == "error" {
-		if r.Name == "hr" {
-			return fmt.Sprintf(hrCode, r.Name, syscalldot())
-		} else {
-			return fmt.Sprintf(code, r.Name, syscalldot())
-		}
-	}
-	s := ""
-	switch {
-	case r.Type[0] == '*':
-		s = fmt.Sprintf("%s = (%s)(unsafe.Pointer(r0))", r.Name, r.Type)
-	case r.Type == "bool":
-		s = fmt.Sprintf("%s = r0 != 0", r.Name)
-	default:
-		s = fmt.Sprintf("%s = %s(r0)", r.Name, r.Type)
-	}
-	if !r.ReturnsError {
-		return s
-	}
-	return s + "\n\t" + r.useLongHandleErrorCode(r.Name)
-}
-
-// Fn describes syscall function.
-type Fn struct {
-	Name        string
-	Params      []*Param
-	Rets        *Rets
-	PrintTrace  bool
-	confirmproc bool
-	dllname     string
-	dllfuncname string
-	src         string
-	// TODO: get rid of this field and just use parameter index instead
-	curTmpVarIdx int // insure tmp variables have uniq names
-}
-
-// extractParams parses s to extract function parameters.
-func extractParams(s string, f *Fn) ([]*Param, error) {
-	s = trim(s)
-	if s == "" {
-		return nil, nil
-	}
-	a := strings.Split(s, ",")
-	ps := make([]*Param, len(a))
-	for i := range ps {
-		s2 := trim(a[i])
-		b := strings.Split(s2, " ")
-		if len(b) != 2 {
-			b = strings.Split(s2, "\t")
-			if len(b) != 2 {
-				return nil, errors.New("Could not extract function parameter from \"" + s2 + "\"")
-			}
-		}
-		ps[i] = &Param{
-			Name:      trim(b[0]),
-			Type:      trim(b[1]),
-			fn:        f,
-			tmpVarIdx: -1,
-		}
-	}
-	return ps, nil
-}
-
-// extractSection extracts text out of string s starting after start
-// and ending just before end. found return value will indicate success,
-// and prefix, body and suffix will contain correspondent parts of string s.
-func extractSection(s string, start, end rune) (prefix, body, suffix string, found bool) {
-	s = trim(s)
-	if strings.HasPrefix(s, string(start)) {
-		// no prefix
-		body = s[1:]
-	} else {
-		a := strings.SplitN(s, string(start), 2)
-		if len(a) != 2 {
-			return "", "", s, false
-		}
-		prefix = a[0]
-		body = a[1]
-	}
-	a := strings.SplitN(body, string(end), 2)
-	if len(a) != 2 {
-		return "", "", "", false
-	}
-	return prefix, a[0], a[1], true
-}
-
-// newFn parses string s and return created function Fn.
-func newFn(s string) (*Fn, error) {
-	s = trim(s)
-	f := &Fn{
-		Rets:       &Rets{},
-		src:        s,
-		PrintTrace: *printTraceFlag,
-	}
-	// function name and args
-	prefix, body, s, found := extractSection(s, '(', ')')
-	if !found || prefix == "" {
-		return nil, errors.New("Could not extract function name and parameters from \"" + f.src + "\"")
-	}
-	f.Name = prefix
-	var err error
-	f.Params, err = extractParams(body, f)
-	if err != nil {
-		return nil, err
-	}
-	// return values
-	_, body, s, found = extractSection(s, '(', ')')
-	if found {
-		r, err := extractParams(body, f)
-		if err != nil {
-			return nil, err
-		}
-		switch len(r) {
-		case 0:
-		case 1:
-			if r[0].IsError() {
-				f.Rets.ReturnsError = true
-			} else {
-				f.Rets.Name = r[0].Name
-				f.Rets.Type = r[0].Type
-			}
-		case 2:
-			if !r[1].IsError() {
-				return nil, errors.New("Only last windows error is allowed as second return value in \"" + f.src + "\"")
-			}
-			f.Rets.ReturnsError = true
-			f.Rets.Name = r[0].Name
-			f.Rets.Type = r[0].Type
-		default:
-			return nil, errors.New("Too many return values in \"" + f.src + "\"")
-		}
-	}
-	// fail condition
-	_, body, s, found = extractSection(s, '[', ']')
-	if found {
-		f.Rets.FailCond = body
-	}
-	// dll and dll function names
-	s = trim(s)
-	if s == "" {
-		return f, nil
-	}
-	if !strings.HasPrefix(s, "=") {
-		return nil, errors.New("Could not extract dll name from \"" + f.src + "\"")
-	}
-	s = trim(s[1:])
-	a := strings.Split(s, ".")
-	switch len(a) {
-	case 1:
-		f.dllfuncname = a[0]
-	case 2:
-		f.dllname = a[0]
-		f.dllfuncname = a[1]
-	default:
-		return nil, errors.New("Could not extract dll name from \"" + f.src + "\"")
-	}
-	if f.dllfuncname[len(f.dllfuncname)-1] == '?' {
-		f.confirmproc = true
-		f.dllfuncname = f.dllfuncname[0 : len(f.dllfuncname)-1]
-	}
-	return f, nil
-}
-
-// DLLName returns DLL name for function f.
-func (f *Fn) DLLName() string {
-	if f.dllname == "" {
-		return "kernel32"
-	}
-	return f.dllname
-}
-
-// DLLName returns DLL function name for function f.
-func (f *Fn) DLLFuncName() string {
-	if f.dllfuncname == "" {
-		return f.Name
-	}
-	return f.dllfuncname
-}
-
-func (f *Fn) ConfirmProc() bool {
-	return f.confirmproc
-}
-
-// ParamList returns source code for function f parameters.
-func (f *Fn) ParamList() string {
-	return join(f.Params, func(p *Param) string { return p.Name + " " + p.Type }, ", ")
-}
-
-// HelperParamList returns source code for helper function f parameters.
-func (f *Fn) HelperParamList() string {
-	return join(f.Params, func(p *Param) string { return p.Name + " " + p.HelperType() }, ", ")
-}
-
-// ParamPrintList returns source code of trace printing part correspondent
-// to syscall input parameters.
-func (f *Fn) ParamPrintList() string {
-	return join(f.Params, func(p *Param) string { return fmt.Sprintf(`"%s=", %s, `, p.Name, p.Name) }, `", ", `)
-}
-
-// ParamCount return number of syscall parameters for function f.
-func (f *Fn) ParamCount() int {
-	n := 0
-	for _, p := range f.Params {
-		n += len(p.SyscallArgList())
-	}
-	return n
-}
-
-// SyscallParamCount determines which version of Syscall/Syscall6/Syscall9/...
-// to use. It returns parameter count for correspondent SyscallX function.
-func (f *Fn) SyscallParamCount() int {
-	n := f.ParamCount()
-	switch {
-	case n <= 3:
-		return 3
-	case n <= 6:
-		return 6
-	case n <= 9:
-		return 9
-	case n <= 12:
-		return 12
-	case n <= 15:
-		return 15
-	default:
-		panic("too many arguments to system call")
-	}
-}
-
-// Syscall determines which SyscallX function to use for function f.
-func (f *Fn) Syscall() string {
-	c := f.SyscallParamCount()
-	if c == 3 {
-		return syscalldot() + "Syscall"
-	}
-	return syscalldot() + "Syscall" + strconv.Itoa(c)
-}
-
-// SyscallParamList returns source code for SyscallX parameters for function f.
-func (f *Fn) SyscallParamList() string {
-	a := make([]string, 0)
-	for _, p := range f.Params {
-		a = append(a, p.SyscallArgList()...)
-	}
-	for len(a) < f.SyscallParamCount() {
-		a = append(a, "0")
-	}
-	return strings.Join(a, ", ")
-}
-
-// HelperCallParamList returns source code of call into function f helper.
-func (f *Fn) HelperCallParamList() string {
-	a := make([]string, 0, len(f.Params))
-	for _, p := range f.Params {
-		s := p.Name
-		if p.Type == "string" {
-			s = p.tmpVar()
-		}
-		a = append(a, s)
-	}
-	return strings.Join(a, ", ")
-}
-
-// IsUTF16 is true, if f is W (utf16) function. It is false
-// for all A (ascii) functions.
-func (_ *Fn) IsUTF16() bool {
-	return true
-}
-
-// StrconvFunc returns name of Go string to OS string function for f.
-func (f *Fn) StrconvFunc() string {
-	if f.IsUTF16() {
-		return syscalldot() + "UTF16PtrFromString"
-	}
-	return syscalldot() + "BytePtrFromString"
-}
-
-// StrconvType returns Go type name used for OS string for f.
-func (f *Fn) StrconvType() string {
-	if f.IsUTF16() {
-		return "*uint16"
-	}
-	return "*byte"
-}
-
-// HasStringParam is true, if f has at least one string parameter.
-// Otherwise it is false.
-func (f *Fn) HasStringParam() bool {
-	for _, p := range f.Params {
-		if p.Type == "string" {
-			return true
-		}
-	}
-	return false
-}
-
-var uniqDllFuncName = make(map[string]bool)
-
-// IsNotDuplicate is true if f is not a duplicated function
-func (f *Fn) IsNotDuplicate() bool {
-	funcName := f.DLLFuncName()
-	if uniqDllFuncName[funcName] == false {
-		uniqDllFuncName[funcName] = true
-		return true
-	}
-	return false
-}
-
-// HelperName returns name of function f helper.
-func (f *Fn) HelperName() string {
-	if !f.HasStringParam() {
-		return f.Name
-	}
-	return "_" + f.Name
-}
-
-// Source files and functions.
-type Source struct {
-	Funcs           []*Fn
-	Files           []string
-	StdLibImports   []string
-	ExternalImports []string
-}
-
-func (src *Source) Import(pkg string) {
-	src.StdLibImports = append(src.StdLibImports, pkg)
-	sort.Strings(src.StdLibImports)
-}
-
-func (src *Source) ExternalImport(pkg string) {
-	src.ExternalImports = append(src.ExternalImports, pkg)
-	sort.Strings(src.ExternalImports)
-}
-
-// ParseFiles parses files listed in fs and extracts all syscall
-// functions listed in  sys comments. It returns source files
-// and functions collection *Source if successful.
-func ParseFiles(fs []string) (*Source, error) {
-	src := &Source{
-		Funcs: make([]*Fn, 0),
-		Files: make([]string, 0),
-		StdLibImports: []string{
-			"unsafe",
-		},
-		ExternalImports: make([]string, 0),
-	}
-	for _, file := range fs {
-		if err := src.ParseFile(file); err != nil {
-			return nil, err
-		}
-	}
-	return src, nil
-}
-
-// DLLs return dll names for a source set src.
-func (src *Source) DLLs() []string {
-	uniq := make(map[string]bool)
-	r := make([]string, 0)
-	for _, f := range src.Funcs {
-		name := f.DLLName()
-		if _, found := uniq[name]; !found {
-			uniq[name] = true
-			r = append(r, name)
-		}
-	}
-	return r
-}
-
-// ParseFile adds additional file path to a source set src.
-func (src *Source) ParseFile(path string) error {
-	file, err := os.Open(path)
-	if err != nil {
-		return err
-	}
-	defer file.Close()
-
-	s := bufio.NewScanner(file)
-	for s.Scan() {
-		t := trim(s.Text())
-		if len(t) < 7 {
-			continue
-		}
-		if !strings.HasPrefix(t, "//sys") {
-			continue
-		}
-		t = t[5:]
-		if !(t[0] == ' ' || t[0] == '\t') {
-			continue
-		}
-		f, err := newFn(t[1:])
-		if err != nil {
-			return err
-		}
-		src.Funcs = append(src.Funcs, f)
-	}
-	if err := s.Err(); err != nil {
-		return err
-	}
-	src.Files = append(src.Files, path)
-
-	// get package name
-	fset := token.NewFileSet()
-	_, err = file.Seek(0, 0)
-	if err != nil {
-		return err
-	}
-	pkg, err := parser.ParseFile(fset, "", file, parser.PackageClauseOnly)
-	if err != nil {
-		return err
-	}
-	packageName = pkg.Name.Name
-
-	return nil
-}
-
-// IsStdRepo returns true if src is part of standard library.
-func (src *Source) IsStdRepo() (bool, error) {
-	if len(src.Files) == 0 {
-		return false, errors.New("no input files provided")
-	}
-	abspath, err := filepath.Abs(src.Files[0])
-	if err != nil {
-		return false, err
-	}
-	goroot := runtime.GOROOT()
-	if runtime.GOOS == "windows" {
-		abspath = strings.ToLower(abspath)
-		goroot = strings.ToLower(goroot)
-	}
-	sep := string(os.PathSeparator)
-	if !strings.HasSuffix(goroot, sep) {
-		goroot += sep
-	}
-	return strings.HasPrefix(abspath, goroot), nil
-}
-
-// Generate output source file from a source set src.
-func (src *Source) Generate(w io.Writer) error {
-	const (
-		pkgStd         = iota // any package in std library
-		pkgXSysWindows        // x/sys/windows package
-		pkgOther
-	)
-	isStdRepo, err := src.IsStdRepo()
-	if err != nil {
-		return err
-	}
-	var pkgtype int
-	switch {
-	case isStdRepo:
-		pkgtype = pkgStd
-	case packageName == "windows":
-		// TODO: this needs better logic than just using package name
-		pkgtype = pkgXSysWindows
-	default:
-		pkgtype = pkgOther
-	}
-	if *systemDLL {
-		switch pkgtype {
-		case pkgStd:
-			src.Import("internal/syscall/windows/sysdll")
-		case pkgXSysWindows:
-		default:
-			src.ExternalImport("golang.org/x/sys/windows")
-		}
-	}
-	src.ExternalImport("github.com/Microsoft/go-winio")
-	if packageName != "syscall" {
-		src.Import("syscall")
-	}
-	funcMap := template.FuncMap{
-		"packagename": packagename,
-		"syscalldot":  syscalldot,
-		"newlazydll": func(dll string) string {
-			arg := "\"" + dll + ".dll\""
-			if !*systemDLL {
-				return syscalldot() + "NewLazyDLL(" + arg + ")"
-			}
-			switch pkgtype {
-			case pkgStd:
-				return syscalldot() + "NewLazyDLL(sysdll.Add(" + arg + "))"
-			case pkgXSysWindows:
-				return "NewLazySystemDLL(" + arg + ")"
-			default:
-				return "windows.NewLazySystemDLL(" + arg + ")"
-			}
-		},
-	}
-	t := template.Must(template.New("main").Funcs(funcMap).Parse(srcTemplate))
-	err = t.Execute(w, src)
-	if err != nil {
-		return errors.New("Failed to execute template: " + err.Error())
-	}
-	return nil
-}
-
-func usage() {
-	fmt.Fprintf(os.Stderr, "usage: mksyscall_windows [flags] [path ...]\n")
-	flag.PrintDefaults()
-	os.Exit(1)
-}
-
-func main() {
-	flag.Usage = usage
-	flag.Parse()
-	if len(flag.Args()) <= 0 {
-		fmt.Fprintf(os.Stderr, "no files to parse provided\n")
-		usage()
-	}
-
-	src, err := ParseFiles(flag.Args())
-	if err != nil {
-		log.Fatal(err)
-	}
-
-	var buf bytes.Buffer
-	if err := src.Generate(&buf); err != nil {
-		log.Fatal(err)
-	}
-
-	data, err := format.Source(buf.Bytes())
-	if err != nil {
-		log.Fatal(err)
-	}
-	if *filename == "" {
-		_, err = os.Stdout.Write(data)
-	} else {
-		err = ioutil.WriteFile(*filename, data, 0644)
-	}
-	if err != nil {
-		log.Fatal(err)
-	}
-}
-
-// TODO: use println instead to print in the following template
-const srcTemplate = `
-
-{{define "main"}}// MACHINE GENERATED BY 'go generate' COMMAND; DO NOT EDIT
-
-package {{packagename}}
-
-import (
-{{range .StdLibImports}}"{{.}}"
-{{end}}
-
-{{range .ExternalImports}}"{{.}}"
-{{end}}
-)
-
-var _ unsafe.Pointer
-
-// Do the interface allocations only once for common
-// Errno values.
-const (
-	errnoERROR_IO_PENDING = 997
-)
-
-var (
-	errERROR_IO_PENDING error = {{syscalldot}}Errno(errnoERROR_IO_PENDING)
-)
-
-// errnoErr returns common boxed Errno values, to prevent
-// allocations at runtime.
-func errnoErr(e {{syscalldot}}Errno) error {
-	switch e {
-	case 0:
-		return nil
-	case errnoERROR_IO_PENDING:
-		return errERROR_IO_PENDING
-	}
-	// TODO: add more here, after collecting data on the common
-	// error values see on Windows. (perhaps when running
-	// all.bat?)
-	return e
-}
-
-var (
-{{template "dlls" .}}
-{{template "funcnames" .}})
-{{range .Funcs}}{{if .HasStringParam}}{{template "helperbody" .}}{{end}}{{template "funcbody" .}}{{end}}
-{{end}}
-
-{{/* help functions */}}
-
-{{define "dlls"}}{{range .DLLs}}	mod{{.}} = {{newlazydll .}}
-{{end}}{{end}}
-
-{{define "funcnames"}}{{range .Funcs}}{{if .IsNotDuplicate}}	proc{{.DLLFuncName}} = mod{{.DLLName}}.NewProc("{{.DLLFuncName}}"){{end}}
-{{end}}{{end}}
-
-{{define "helperbody"}}
-func {{.Name}}({{.ParamList}}) {{template "results" .}}{
-{{template "helpertmpvars" .}}	return {{.HelperName}}({{.HelperCallParamList}})
-}
-{{end}}
-
-{{define "funcbody"}}
-func {{.HelperName}}({{.HelperParamList}}) {{template "results" .}}{
-{{template "tmpvars" .}}	{{template "syscallcheck" .}}{{template "syscall" .}}
-{{template "seterror" .}}{{template "printtrace" .}}	return
-}
-{{end}}
-
-{{define "helpertmpvars"}}{{range .Params}}{{if .TmpVarHelperCode}}	{{.TmpVarHelperCode}}
-{{end}}{{end}}{{end}}
-
-{{define "tmpvars"}}{{range .Params}}{{if .TmpVarCode}}	{{.TmpVarCode}}
-{{end}}{{end}}{{end}}
-
-{{define "results"}}{{if .Rets.List}}{{.Rets.List}} {{end}}{{end}}
-
-{{define "syscall"}}{{.Rets.SetReturnValuesCode}}{{.Syscall}}(proc{{.DLLFuncName}}.Addr(), {{.ParamCount}}, {{.SyscallParamList}}){{end}}
-
-{{define "syscallcheck"}}{{if .ConfirmProc}}if {{.Rets.ErrorVarName}} = proc{{.DLLFuncName}}.Find(); {{.Rets.ErrorVarName}} != nil {
-    return
-}
-{{end}}{{end}}
-
-
-{{define "seterror"}}{{if .Rets.SetErrorCode}}	{{.Rets.SetErrorCode}}
-{{end}}{{end}}
-
-{{define "printtrace"}}{{if .PrintTrace}}	print("SYSCALL: {{.Name}}(", {{.ParamPrintList}}") (", {{.Rets.PrintList}}")\n")
-{{end}}{{end}}
-
-`
diff --git a/vendor/github.com/Microsoft/hcsshim/nametoguid.go b/vendor/github.com/Microsoft/hcsshim/nametoguid.go
deleted file mode 100644
index b7c6d020c6..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/nametoguid.go
+++ /dev/null
@@ -1,20 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// NameToGuid converts the given string into a GUID using the algorithm in the
-// Host Compute Service, ensuring GUIDs generated with the same string are common
-// across all clients.
-func NameToGuid(name string) (id GUID, err error) {
-	title := "hcsshim::NameToGuid "
-	logrus.Debugf(title+"Name %s", name)
-
-	err = nameToGuid(name, &id)
-	if err != nil {
-		err = makeErrorf(err, title, "name=%s", name)
-		logrus.Error(err)
-		return
-	}
-
-	return
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/preparelayer.go b/vendor/github.com/Microsoft/hcsshim/preparelayer.go
deleted file mode 100644
index 5c5b618411..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/preparelayer.go
+++ /dev/null
@@ -1,46 +0,0 @@
-package hcsshim
-
-import (
-	"sync"
-
-	"github.com/sirupsen/logrus"
-)
-
-var prepareLayerLock sync.Mutex
-
-// PrepareLayer finds a mounted read-write layer matching layerId and enables the
-// the filesystem filter for use on that layer.  This requires the paths to all
-// parent layers, and is necessary in order to view or interact with the layer
-// as an actual filesystem (reading and writing files, creating directories, etc).
-// Disabling the filter must be done via UnprepareLayer.
-func PrepareLayer(info DriverInfo, layerId string, parentLayerPaths []string) error {
-	title := "hcsshim::PrepareLayer "
-	logrus.Debugf(title+"flavour %d layerId %s", info.Flavour, layerId)
-
-	// Generate layer descriptors
-	layers, err := layerPathsToDescriptors(parentLayerPaths)
-	if err != nil {
-		return err
-	}
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	// This lock is a temporary workaround for a Windows bug. Only allowing one
-	// call to prepareLayer at a time vastly reduces the chance of a timeout.
-	prepareLayerLock.Lock()
-	defer prepareLayerLock.Unlock()
-	err = prepareLayer(&infop, layerId, layers)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s flavour=%d", layerId, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour=%d layerId=%s", info.Flavour, layerId)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/process.go b/vendor/github.com/Microsoft/hcsshim/process.go
deleted file mode 100644
index faee2cfeeb..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/process.go
+++ /dev/null
@@ -1,384 +0,0 @@
-package hcsshim
-
-import (
-	"encoding/json"
-	"io"
-	"sync"
-	"syscall"
-	"time"
-
-	"github.com/sirupsen/logrus"
-)
-
-// ContainerError is an error encountered in HCS
-type process struct {
-	handleLock     sync.RWMutex
-	handle         hcsProcess
-	processID      int
-	container      *container
-	cachedPipes    *cachedPipes
-	callbackNumber uintptr
-}
-
-type cachedPipes struct {
-	stdIn  syscall.Handle
-	stdOut syscall.Handle
-	stdErr syscall.Handle
-}
-
-type processModifyRequest struct {
-	Operation   string
-	ConsoleSize *consoleSize `json:",omitempty"`
-	CloseHandle *closeHandle `json:",omitempty"`
-}
-
-type consoleSize struct {
-	Height uint16
-	Width  uint16
-}
-
-type closeHandle struct {
-	Handle string
-}
-
-type processStatus struct {
-	ProcessID      uint32
-	Exited         bool
-	ExitCode       uint32
-	LastWaitResult int32
-}
-
-const (
-	stdIn  string = "StdIn"
-	stdOut string = "StdOut"
-	stdErr string = "StdErr"
-)
-
-const (
-	modifyConsoleSize string = "ConsoleSize"
-	modifyCloseHandle string = "CloseHandle"
-)
-
-// Pid returns the process ID of the process within the container.
-func (process *process) Pid() int {
-	return process.processID
-}
-
-// Kill signals the process to terminate but does not wait for it to finish terminating.
-func (process *process) Kill() error {
-	process.handleLock.RLock()
-	defer process.handleLock.RUnlock()
-	operation := "Kill"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	if process.handle == 0 {
-		return makeProcessError(process, operation, "", ErrAlreadyClosed)
-	}
-
-	var resultp *uint16
-	err := hcsTerminateProcess(process.handle, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-// Wait waits for the process to exit.
-func (process *process) Wait() error {
-	operation := "Wait"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	err := waitForNotification(process.callbackNumber, hcsNotificationProcessExited, nil)
-	if err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-// WaitTimeout waits for the process to exit or the duration to elapse. It returns
-// false if timeout occurs.
-func (process *process) WaitTimeout(timeout time.Duration) error {
-	operation := "WaitTimeout"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	err := waitForNotification(process.callbackNumber, hcsNotificationProcessExited, &timeout)
-	if err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-// ExitCode returns the exit code of the process. The process must have
-// already terminated.
-func (process *process) ExitCode() (int, error) {
-	process.handleLock.RLock()
-	defer process.handleLock.RUnlock()
-	operation := "ExitCode"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	if process.handle == 0 {
-		return 0, makeProcessError(process, operation, "", ErrAlreadyClosed)
-	}
-
-	properties, err := process.properties()
-	if err != nil {
-		return 0, makeProcessError(process, operation, "", err)
-	}
-
-	if properties.Exited == false {
-		return 0, makeProcessError(process, operation, "", ErrInvalidProcessState)
-	}
-
-	if properties.LastWaitResult != 0 {
-		return 0, makeProcessError(process, operation, "", syscall.Errno(properties.LastWaitResult))
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d exitCode=%d", process.processID, properties.ExitCode)
-	return int(properties.ExitCode), nil
-}
-
-// ResizeConsole resizes the console of the process.
-func (process *process) ResizeConsole(width, height uint16) error {
-	process.handleLock.RLock()
-	defer process.handleLock.RUnlock()
-	operation := "ResizeConsole"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	if process.handle == 0 {
-		return makeProcessError(process, operation, "", ErrAlreadyClosed)
-	}
-
-	modifyRequest := processModifyRequest{
-		Operation: modifyConsoleSize,
-		ConsoleSize: &consoleSize{
-			Height: height,
-			Width:  width,
-		},
-	}
-
-	modifyRequestb, err := json.Marshal(modifyRequest)
-	if err != nil {
-		return err
-	}
-
-	modifyRequestStr := string(modifyRequestb)
-
-	var resultp *uint16
-	err = hcsModifyProcess(process.handle, modifyRequestStr, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-func (process *process) properties() (*processStatus, error) {
-	operation := "properties"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	var (
-		resultp     *uint16
-		propertiesp *uint16
-	)
-	err := hcsGetProcessProperties(process.handle, &propertiesp, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return nil, err
-	}
-
-	if propertiesp == nil {
-		return nil, ErrUnexpectedValue
-	}
-	propertiesRaw := convertAndFreeCoTaskMemBytes(propertiesp)
-
-	properties := &processStatus{}
-	if err := json.Unmarshal(propertiesRaw, properties); err != nil {
-		return nil, err
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d, properties=%s", process.processID, propertiesRaw)
-	return properties, nil
-}
-
-// Stdio returns the stdin, stdout, and stderr pipes, respectively. Closing
-// these pipes does not close the underlying pipes; it should be possible to
-// call this multiple times to get multiple interfaces.
-func (process *process) Stdio() (io.WriteCloser, io.ReadCloser, io.ReadCloser, error) {
-	process.handleLock.RLock()
-	defer process.handleLock.RUnlock()
-	operation := "Stdio"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	if process.handle == 0 {
-		return nil, nil, nil, makeProcessError(process, operation, "", ErrAlreadyClosed)
-	}
-
-	var stdIn, stdOut, stdErr syscall.Handle
-
-	if process.cachedPipes == nil {
-		var (
-			processInfo hcsProcessInformation
-			resultp     *uint16
-		)
-		err := hcsGetProcessInfo(process.handle, &processInfo, &resultp)
-		err = processHcsResult(err, resultp)
-		if err != nil {
-			return nil, nil, nil, makeProcessError(process, operation, "", err)
-		}
-
-		stdIn, stdOut, stdErr = processInfo.StdInput, processInfo.StdOutput, processInfo.StdError
-	} else {
-		// Use cached pipes
-		stdIn, stdOut, stdErr = process.cachedPipes.stdIn, process.cachedPipes.stdOut, process.cachedPipes.stdErr
-
-		// Invalidate the cache
-		process.cachedPipes = nil
-	}
-
-	pipes, err := makeOpenFiles([]syscall.Handle{stdIn, stdOut, stdErr})
-	if err != nil {
-		return nil, nil, nil, makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return pipes[0], pipes[1], pipes[2], nil
-}
-
-// CloseStdin closes the write side of the stdin pipe so that the process is
-// notified on the read side that there is no more data in stdin.
-func (process *process) CloseStdin() error {
-	process.handleLock.RLock()
-	defer process.handleLock.RUnlock()
-	operation := "CloseStdin"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	if process.handle == 0 {
-		return makeProcessError(process, operation, "", ErrAlreadyClosed)
-	}
-
-	modifyRequest := processModifyRequest{
-		Operation: modifyCloseHandle,
-		CloseHandle: &closeHandle{
-			Handle: stdIn,
-		},
-	}
-
-	modifyRequestb, err := json.Marshal(modifyRequest)
-	if err != nil {
-		return err
-	}
-
-	modifyRequestStr := string(modifyRequestb)
-
-	var resultp *uint16
-	err = hcsModifyProcess(process.handle, modifyRequestStr, &resultp)
-	err = processHcsResult(err, resultp)
-	if err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-// Close cleans up any state associated with the process but does not kill
-// or wait on it.
-func (process *process) Close() error {
-	process.handleLock.Lock()
-	defer process.handleLock.Unlock()
-	operation := "Close"
-	title := "HCSShim::Process::" + operation
-	logrus.Debugf(title+" processid=%d", process.processID)
-
-	// Don't double free this
-	if process.handle == 0 {
-		return nil
-	}
-
-	if err := process.unregisterCallback(); err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	if err := hcsCloseProcess(process.handle); err != nil {
-		return makeProcessError(process, operation, "", err)
-	}
-
-	process.handle = 0
-
-	logrus.Debugf(title+" succeeded processid=%d", process.processID)
-	return nil
-}
-
-func (process *process) registerCallback() error {
-	context := &notifcationWatcherContext{
-		channels: newChannels(),
-	}
-
-	callbackMapLock.Lock()
-	callbackNumber := nextCallback
-	nextCallback++
-	callbackMap[callbackNumber] = context
-	callbackMapLock.Unlock()
-
-	var callbackHandle hcsCallback
-	err := hcsRegisterProcessCallback(process.handle, notificationWatcherCallback, callbackNumber, &callbackHandle)
-	if err != nil {
-		return err
-	}
-	context.handle = callbackHandle
-	process.callbackNumber = callbackNumber
-
-	return nil
-}
-
-func (process *process) unregisterCallback() error {
-	callbackNumber := process.callbackNumber
-
-	callbackMapLock.RLock()
-	context := callbackMap[callbackNumber]
-	callbackMapLock.RUnlock()
-
-	if context == nil {
-		return nil
-	}
-
-	handle := context.handle
-
-	if handle == 0 {
-		return nil
-	}
-
-	// hcsUnregisterProcessCallback has its own syncronization
-	// to wait for all callbacks to complete. We must NOT hold the callbackMapLock.
-	err := hcsUnregisterProcessCallback(handle)
-	if err != nil {
-		return err
-	}
-
-	closeChannels(context.channels)
-
-	callbackMapLock.Lock()
-	callbackMap[callbackNumber] = nil
-	callbackMapLock.Unlock()
-
-	handle = 0
-
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/processimage.go b/vendor/github.com/Microsoft/hcsshim/processimage.go
deleted file mode 100644
index fadb1b92c5..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/processimage.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package hcsshim
-
-import "os"
-
-// ProcessBaseLayer post-processes a base layer that has had its files extracted.
-// The files should have been extracted to <path>\Files.
-func ProcessBaseLayer(path string) error {
-	err := processBaseImage(path)
-	if err != nil {
-		return &os.PathError{Op: "ProcessBaseLayer", Path: path, Err: err}
-	}
-	return nil
-}
-
-// ProcessUtilityVMImage post-processes a utility VM image that has had its files extracted.
-// The files should have been extracted to <path>\Files.
-func ProcessUtilityVMImage(path string) error {
-	err := processUtilityImage(path)
-	if err != nil {
-		return &os.PathError{Op: "ProcessUtilityVMImage", Path: path, Err: err}
-	}
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go b/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
deleted file mode 100644
index e8a3b507bf..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package hcsshim
-
-import "github.com/sirupsen/logrus"
-
-// UnprepareLayer disables the filesystem filter for the read-write layer with
-// the given id.
-func UnprepareLayer(info DriverInfo, layerId string) error {
-	title := "hcsshim::UnprepareLayer "
-	logrus.Debugf(title+"flavour %d layerId %s", info.Flavour, layerId)
-
-	// Convert info to API calling convention
-	infop, err := convertDriverInfo(info)
-	if err != nil {
-		logrus.Error(err)
-		return err
-	}
-
-	err = unprepareLayer(&infop, layerId)
-	if err != nil {
-		err = makeErrorf(err, title, "layerId=%s flavour=%d", layerId, info.Flavour)
-		logrus.Error(err)
-		return err
-	}
-
-	logrus.Debugf(title+"succeeded flavour %d layerId=%s", info.Flavour, layerId)
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/utils.go b/vendor/github.com/Microsoft/hcsshim/utils.go
deleted file mode 100644
index bd6e2d94ab..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/utils.go
+++ /dev/null
@@ -1,33 +0,0 @@
-package hcsshim
-
-import (
-	"io"
-	"syscall"
-
-	"github.com/Microsoft/go-winio"
-)
-
-// makeOpenFiles calls winio.MakeOpenFile for each handle in a slice but closes all the handles
-// if there is an error.
-func makeOpenFiles(hs []syscall.Handle) (_ []io.ReadWriteCloser, err error) {
-	fs := make([]io.ReadWriteCloser, len(hs))
-	for i, h := range hs {
-		if h != syscall.Handle(0) {
-			if err == nil {
-				fs[i], err = winio.MakeOpenFile(h)
-			}
-			if err != nil {
-				syscall.Close(h)
-			}
-		}
-	}
-	if err != nil {
-		for _, f := range fs {
-			if f != nil {
-				f.Close()
-			}
-		}
-		return nil, err
-	}
-	return fs, nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/version.go b/vendor/github.com/Microsoft/hcsshim/version.go
deleted file mode 100644
index ae10c23d42..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/version.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package hcsshim
-
-// IsTP4 returns whether the currently running Windows build is at least TP4.
-func IsTP4() bool {
-	// HNSCall was not present in TP4
-	return procHNSCall.Find() != nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/waithelper.go b/vendor/github.com/Microsoft/hcsshim/waithelper.go
deleted file mode 100644
index b7be20ea0c..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/waithelper.go
+++ /dev/null
@@ -1,63 +0,0 @@
-package hcsshim
-
-import (
-	"time"
-
-	"github.com/sirupsen/logrus"
-)
-
-func processAsyncHcsResult(err error, resultp *uint16, callbackNumber uintptr, expectedNotification hcsNotification, timeout *time.Duration) error {
-	err = processHcsResult(err, resultp)
-	if IsPending(err) {
-		return waitForNotification(callbackNumber, expectedNotification, timeout)
-	}
-
-	return err
-}
-
-func waitForNotification(callbackNumber uintptr, expectedNotification hcsNotification, timeout *time.Duration) error {
-	callbackMapLock.RLock()
-	channels := callbackMap[callbackNumber].channels
-	callbackMapLock.RUnlock()
-
-	expectedChannel := channels[expectedNotification]
-	if expectedChannel == nil {
-		logrus.Errorf("unknown notification type in waitForNotification %x", expectedNotification)
-		return ErrInvalidNotificationType
-	}
-
-	var c <-chan time.Time
-	if timeout != nil {
-		timer := time.NewTimer(*timeout)
-		c = timer.C
-		defer timer.Stop()
-	}
-
-	select {
-	case err, ok := <-expectedChannel:
-		if !ok {
-			return ErrHandleClose
-		}
-		return err
-	case err, ok := <-channels[hcsNotificationSystemExited]:
-		if !ok {
-			return ErrHandleClose
-		}
-		// If the expected notification is hcsNotificationSystemExited which of the two selects
-		// chosen is random. Return the raw error if hcsNotificationSystemExited is expected
-		if channels[hcsNotificationSystemExited] == expectedChannel {
-			return err
-		}
-		return ErrUnexpectedContainerExit
-	case _, ok := <-channels[hcsNotificationServiceDisconnect]:
-		if !ok {
-			return ErrHandleClose
-		}
-		// hcsNotificationServiceDisconnect should never be an expected notification
-		// it does not need the same handling as hcsNotificationSystemExited
-		return ErrUnexpectedProcessAbort
-	case <-c:
-		return ErrTimeout
-	}
-	return nil
-}
diff --git a/vendor/github.com/Microsoft/hcsshim/zhcsshim.go b/vendor/github.com/Microsoft/hcsshim/zhcsshim.go
deleted file mode 100644
index 5d1a851ae8..0000000000
--- a/vendor/github.com/Microsoft/hcsshim/zhcsshim.go
+++ /dev/null
@@ -1,1042 +0,0 @@
-// MACHINE GENERATED BY 'go generate' COMMAND; DO NOT EDIT
-
-package hcsshim
-
-import (
-	"syscall"
-	"unsafe"
-
-	"github.com/Microsoft/go-winio"
-	"golang.org/x/sys/windows"
-)
-
-var _ unsafe.Pointer
-
-// Do the interface allocations only once for common
-// Errno values.
-const (
-	errnoERROR_IO_PENDING = 997
-)
-
-var (
-	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
-)
-
-// errnoErr returns common boxed Errno values, to prevent
-// allocations at runtime.
-func errnoErr(e syscall.Errno) error {
-	switch e {
-	case 0:
-		return nil
-	case errnoERROR_IO_PENDING:
-		return errERROR_IO_PENDING
-	}
-	// TODO: add more here, after collecting data on the common
-	// error values see on Windows. (perhaps when running
-	// all.bat?)
-	return e
-}
-
-var (
-	modole32     = windows.NewLazySystemDLL("ole32.dll")
-	modiphlpapi  = windows.NewLazySystemDLL("iphlpapi.dll")
-	modvmcompute = windows.NewLazySystemDLL("vmcompute.dll")
-
-	procCoTaskMemFree                      = modole32.NewProc("CoTaskMemFree")
-	procSetCurrentThreadCompartmentId      = modiphlpapi.NewProc("SetCurrentThreadCompartmentId")
-	procActivateLayer                      = modvmcompute.NewProc("ActivateLayer")
-	procCopyLayer                          = modvmcompute.NewProc("CopyLayer")
-	procCreateLayer                        = modvmcompute.NewProc("CreateLayer")
-	procCreateSandboxLayer                 = modvmcompute.NewProc("CreateSandboxLayer")
-	procExpandSandboxSize                  = modvmcompute.NewProc("ExpandSandboxSize")
-	procDeactivateLayer                    = modvmcompute.NewProc("DeactivateLayer")
-	procDestroyLayer                       = modvmcompute.NewProc("DestroyLayer")
-	procExportLayer                        = modvmcompute.NewProc("ExportLayer")
-	procGetLayerMountPath                  = modvmcompute.NewProc("GetLayerMountPath")
-	procGetBaseImages                      = modvmcompute.NewProc("GetBaseImages")
-	procImportLayer                        = modvmcompute.NewProc("ImportLayer")
-	procLayerExists                        = modvmcompute.NewProc("LayerExists")
-	procNameToGuid                         = modvmcompute.NewProc("NameToGuid")
-	procPrepareLayer                       = modvmcompute.NewProc("PrepareLayer")
-	procUnprepareLayer                     = modvmcompute.NewProc("UnprepareLayer")
-	procProcessBaseImage                   = modvmcompute.NewProc("ProcessBaseImage")
-	procProcessUtilityImage                = modvmcompute.NewProc("ProcessUtilityImage")
-	procImportLayerBegin                   = modvmcompute.NewProc("ImportLayerBegin")
-	procImportLayerNext                    = modvmcompute.NewProc("ImportLayerNext")
-	procImportLayerWrite                   = modvmcompute.NewProc("ImportLayerWrite")
-	procImportLayerEnd                     = modvmcompute.NewProc("ImportLayerEnd")
-	procExportLayerBegin                   = modvmcompute.NewProc("ExportLayerBegin")
-	procExportLayerNext                    = modvmcompute.NewProc("ExportLayerNext")
-	procExportLayerRead                    = modvmcompute.NewProc("ExportLayerRead")
-	procExportLayerEnd                     = modvmcompute.NewProc("ExportLayerEnd")
-	procHcsEnumerateComputeSystems         = modvmcompute.NewProc("HcsEnumerateComputeSystems")
-	procHcsCreateComputeSystem             = modvmcompute.NewProc("HcsCreateComputeSystem")
-	procHcsOpenComputeSystem               = modvmcompute.NewProc("HcsOpenComputeSystem")
-	procHcsCloseComputeSystem              = modvmcompute.NewProc("HcsCloseComputeSystem")
-	procHcsStartComputeSystem              = modvmcompute.NewProc("HcsStartComputeSystem")
-	procHcsShutdownComputeSystem           = modvmcompute.NewProc("HcsShutdownComputeSystem")
-	procHcsTerminateComputeSystem          = modvmcompute.NewProc("HcsTerminateComputeSystem")
-	procHcsPauseComputeSystem              = modvmcompute.NewProc("HcsPauseComputeSystem")
-	procHcsResumeComputeSystem             = modvmcompute.NewProc("HcsResumeComputeSystem")
-	procHcsGetComputeSystemProperties      = modvmcompute.NewProc("HcsGetComputeSystemProperties")
-	procHcsModifyComputeSystem             = modvmcompute.NewProc("HcsModifyComputeSystem")
-	procHcsRegisterComputeSystemCallback   = modvmcompute.NewProc("HcsRegisterComputeSystemCallback")
-	procHcsUnregisterComputeSystemCallback = modvmcompute.NewProc("HcsUnregisterComputeSystemCallback")
-	procHcsCreateProcess                   = modvmcompute.NewProc("HcsCreateProcess")
-	procHcsOpenProcess                     = modvmcompute.NewProc("HcsOpenProcess")
-	procHcsCloseProcess                    = modvmcompute.NewProc("HcsCloseProcess")
-	procHcsTerminateProcess                = modvmcompute.NewProc("HcsTerminateProcess")
-	procHcsGetProcessInfo                  = modvmcompute.NewProc("HcsGetProcessInfo")
-	procHcsGetProcessProperties            = modvmcompute.NewProc("HcsGetProcessProperties")
-	procHcsModifyProcess                   = modvmcompute.NewProc("HcsModifyProcess")
-	procHcsGetServiceProperties            = modvmcompute.NewProc("HcsGetServiceProperties")
-	procHcsRegisterProcessCallback         = modvmcompute.NewProc("HcsRegisterProcessCallback")
-	procHcsUnregisterProcessCallback       = modvmcompute.NewProc("HcsUnregisterProcessCallback")
-	procHcsModifyServiceSettings           = modvmcompute.NewProc("HcsModifyServiceSettings")
-	procHNSCall                            = modvmcompute.NewProc("HNSCall")
-)
-
-func coTaskMemFree(buffer unsafe.Pointer) {
-	syscall.Syscall(procCoTaskMemFree.Addr(), 1, uintptr(buffer), 0, 0)
-	return
-}
-
-func SetCurrentThreadCompartmentId(compartmentId uint32) (hr error) {
-	r0, _, _ := syscall.Syscall(procSetCurrentThreadCompartmentId.Addr(), 1, uintptr(compartmentId), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func activateLayer(info *driverInfo, id string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _activateLayer(info, _p0)
-}
-
-func _activateLayer(info *driverInfo, id *uint16) (hr error) {
-	if hr = procActivateLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procActivateLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func copyLayer(info *driverInfo, srcId string, dstId string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(srcId)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(dstId)
-	if hr != nil {
-		return
-	}
-	return _copyLayer(info, _p0, _p1, descriptors)
-}
-
-func _copyLayer(info *driverInfo, srcId *uint16, dstId *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p2 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p2 = &descriptors[0]
-	}
-	if hr = procCopyLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procCopyLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(srcId)), uintptr(unsafe.Pointer(dstId)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func createLayer(info *driverInfo, id string, parent string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(parent)
-	if hr != nil {
-		return
-	}
-	return _createLayer(info, _p0, _p1)
-}
-
-func _createLayer(info *driverInfo, id *uint16, parent *uint16) (hr error) {
-	if hr = procCreateLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procCreateLayer.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(parent)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func createSandboxLayer(info *driverInfo, id string, parent string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(parent)
-	if hr != nil {
-		return
-	}
-	return _createSandboxLayer(info, _p0, _p1, descriptors)
-}
-
-func _createSandboxLayer(info *driverInfo, id *uint16, parent *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p2 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p2 = &descriptors[0]
-	}
-	if hr = procCreateSandboxLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procCreateSandboxLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(parent)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func expandSandboxSize(info *driverInfo, id string, size uint64) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _expandSandboxSize(info, _p0, size)
-}
-
-func _expandSandboxSize(info *driverInfo, id *uint16, size uint64) (hr error) {
-	if hr = procExpandSandboxSize.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procExpandSandboxSize.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(size))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func deactivateLayer(info *driverInfo, id string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _deactivateLayer(info, _p0)
-}
-
-func _deactivateLayer(info *driverInfo, id *uint16) (hr error) {
-	if hr = procDeactivateLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procDeactivateLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func destroyLayer(info *driverInfo, id string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _destroyLayer(info, _p0)
-}
-
-func _destroyLayer(info *driverInfo, id *uint16) (hr error) {
-	if hr = procDestroyLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procDestroyLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func exportLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(path)
-	if hr != nil {
-		return
-	}
-	return _exportLayer(info, _p0, _p1, descriptors)
-}
-
-func _exportLayer(info *driverInfo, id *uint16, path *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p2 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p2 = &descriptors[0]
-	}
-	if hr = procExportLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procExportLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func getLayerMountPath(info *driverInfo, id string, length *uintptr, buffer *uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _getLayerMountPath(info, _p0, length, buffer)
-}
-
-func _getLayerMountPath(info *driverInfo, id *uint16, length *uintptr, buffer *uint16) (hr error) {
-	if hr = procGetLayerMountPath.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procGetLayerMountPath.Addr(), 4, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(length)), uintptr(unsafe.Pointer(buffer)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func getBaseImages(buffer **uint16) (hr error) {
-	if hr = procGetBaseImages.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procGetBaseImages.Addr(), 1, uintptr(unsafe.Pointer(buffer)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func importLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(path)
-	if hr != nil {
-		return
-	}
-	return _importLayer(info, _p0, _p1, descriptors)
-}
-
-func _importLayer(info *driverInfo, id *uint16, path *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p2 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p2 = &descriptors[0]
-	}
-	if hr = procImportLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procImportLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func layerExists(info *driverInfo, id string, exists *uint32) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _layerExists(info, _p0, exists)
-}
-
-func _layerExists(info *driverInfo, id *uint16, exists *uint32) (hr error) {
-	if hr = procLayerExists.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procLayerExists.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(exists)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func nameToGuid(name string, guid *GUID) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(name)
-	if hr != nil {
-		return
-	}
-	return _nameToGuid(_p0, guid)
-}
-
-func _nameToGuid(name *uint16, guid *GUID) (hr error) {
-	if hr = procNameToGuid.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procNameToGuid.Addr(), 2, uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(guid)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func prepareLayer(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _prepareLayer(info, _p0, descriptors)
-}
-
-func _prepareLayer(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
-	var _p1 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p1 = &descriptors[0]
-	}
-	if hr = procPrepareLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procPrepareLayer.Addr(), 4, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func unprepareLayer(info *driverInfo, id string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _unprepareLayer(info, _p0)
-}
-
-func _unprepareLayer(info *driverInfo, id *uint16) (hr error) {
-	if hr = procUnprepareLayer.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procUnprepareLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func processBaseImage(path string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(path)
-	if hr != nil {
-		return
-	}
-	return _processBaseImage(_p0)
-}
-
-func _processBaseImage(path *uint16) (hr error) {
-	if hr = procProcessBaseImage.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procProcessBaseImage.Addr(), 1, uintptr(unsafe.Pointer(path)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func processUtilityImage(path string) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(path)
-	if hr != nil {
-		return
-	}
-	return _processUtilityImage(_p0)
-}
-
-func _processUtilityImage(path *uint16) (hr error) {
-	if hr = procProcessUtilityImage.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procProcessUtilityImage.Addr(), 1, uintptr(unsafe.Pointer(path)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func importLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _importLayerBegin(info, _p0, descriptors, context)
-}
-
-func _importLayerBegin(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
-	var _p1 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p1 = &descriptors[0]
-	}
-	if hr = procImportLayerBegin.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procImportLayerBegin.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), uintptr(unsafe.Pointer(context)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func importLayerNext(context uintptr, fileName string, fileInfo *winio.FileBasicInfo) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(fileName)
-	if hr != nil {
-		return
-	}
-	return _importLayerNext(context, _p0, fileInfo)
-}
-
-func _importLayerNext(context uintptr, fileName *uint16, fileInfo *winio.FileBasicInfo) (hr error) {
-	if hr = procImportLayerNext.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procImportLayerNext.Addr(), 3, uintptr(context), uintptr(unsafe.Pointer(fileName)), uintptr(unsafe.Pointer(fileInfo)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func importLayerWrite(context uintptr, buffer []byte) (hr error) {
-	var _p0 *byte
-	if len(buffer) > 0 {
-		_p0 = &buffer[0]
-	}
-	if hr = procImportLayerWrite.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procImportLayerWrite.Addr(), 3, uintptr(context), uintptr(unsafe.Pointer(_p0)), uintptr(len(buffer)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func importLayerEnd(context uintptr) (hr error) {
-	if hr = procImportLayerEnd.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procImportLayerEnd.Addr(), 1, uintptr(context), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func exportLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _exportLayerBegin(info, _p0, descriptors, context)
-}
-
-func _exportLayerBegin(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
-	var _p1 *WC_LAYER_DESCRIPTOR
-	if len(descriptors) > 0 {
-		_p1 = &descriptors[0]
-	}
-	if hr = procExportLayerBegin.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procExportLayerBegin.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), uintptr(unsafe.Pointer(context)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func exportLayerNext(context uintptr, fileName **uint16, fileInfo *winio.FileBasicInfo, fileSize *int64, deleted *uint32) (hr error) {
-	if hr = procExportLayerNext.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procExportLayerNext.Addr(), 5, uintptr(context), uintptr(unsafe.Pointer(fileName)), uintptr(unsafe.Pointer(fileInfo)), uintptr(unsafe.Pointer(fileSize)), uintptr(unsafe.Pointer(deleted)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func exportLayerRead(context uintptr, buffer []byte, bytesRead *uint32) (hr error) {
-	var _p0 *byte
-	if len(buffer) > 0 {
-		_p0 = &buffer[0]
-	}
-	if hr = procExportLayerRead.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procExportLayerRead.Addr(), 4, uintptr(context), uintptr(unsafe.Pointer(_p0)), uintptr(len(buffer)), uintptr(unsafe.Pointer(bytesRead)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func exportLayerEnd(context uintptr) (hr error) {
-	if hr = procExportLayerEnd.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procExportLayerEnd.Addr(), 1, uintptr(context), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsEnumerateComputeSystems(query string, computeSystems **uint16, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(query)
-	if hr != nil {
-		return
-	}
-	return _hcsEnumerateComputeSystems(_p0, computeSystems, result)
-}
-
-func _hcsEnumerateComputeSystems(query *uint16, computeSystems **uint16, result **uint16) (hr error) {
-	if hr = procHcsEnumerateComputeSystems.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsEnumerateComputeSystems.Addr(), 3, uintptr(unsafe.Pointer(query)), uintptr(unsafe.Pointer(computeSystems)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsCreateComputeSystem(id string, configuration string, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(configuration)
-	if hr != nil {
-		return
-	}
-	return _hcsCreateComputeSystem(_p0, _p1, identity, computeSystem, result)
-}
-
-func _hcsCreateComputeSystem(id *uint16, configuration *uint16, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) {
-	if hr = procHcsCreateComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsCreateComputeSystem.Addr(), 5, uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(configuration)), uintptr(identity), uintptr(unsafe.Pointer(computeSystem)), uintptr(unsafe.Pointer(result)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsOpenComputeSystem(id string, computeSystem *hcsSystem, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(id)
-	if hr != nil {
-		return
-	}
-	return _hcsOpenComputeSystem(_p0, computeSystem, result)
-}
-
-func _hcsOpenComputeSystem(id *uint16, computeSystem *hcsSystem, result **uint16) (hr error) {
-	if hr = procHcsOpenComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsOpenComputeSystem.Addr(), 3, uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(computeSystem)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsCloseComputeSystem(computeSystem hcsSystem) (hr error) {
-	if hr = procHcsCloseComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsCloseComputeSystem.Addr(), 1, uintptr(computeSystem), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsStartComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(options)
-	if hr != nil {
-		return
-	}
-	return _hcsStartComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsStartComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
-	if hr = procHcsStartComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsStartComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsShutdownComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(options)
-	if hr != nil {
-		return
-	}
-	return _hcsShutdownComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsShutdownComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
-	if hr = procHcsShutdownComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsShutdownComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsTerminateComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(options)
-	if hr != nil {
-		return
-	}
-	return _hcsTerminateComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsTerminateComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
-	if hr = procHcsTerminateComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsTerminateComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsPauseComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(options)
-	if hr != nil {
-		return
-	}
-	return _hcsPauseComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsPauseComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
-	if hr = procHcsPauseComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsPauseComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsResumeComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(options)
-	if hr != nil {
-		return
-	}
-	return _hcsResumeComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsResumeComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
-	if hr = procHcsResumeComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsResumeComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery string, properties **uint16, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(propertyQuery)
-	if hr != nil {
-		return
-	}
-	return _hcsGetComputeSystemProperties(computeSystem, _p0, properties, result)
-}
-
-func _hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery *uint16, properties **uint16, result **uint16) (hr error) {
-	if hr = procHcsGetComputeSystemProperties.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsGetComputeSystemProperties.Addr(), 4, uintptr(computeSystem), uintptr(unsafe.Pointer(propertyQuery)), uintptr(unsafe.Pointer(properties)), uintptr(unsafe.Pointer(result)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsModifyComputeSystem(computeSystem hcsSystem, configuration string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(configuration)
-	if hr != nil {
-		return
-	}
-	return _hcsModifyComputeSystem(computeSystem, _p0, result)
-}
-
-func _hcsModifyComputeSystem(computeSystem hcsSystem, configuration *uint16, result **uint16) (hr error) {
-	if hr = procHcsModifyComputeSystem.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsModifyComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(configuration)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsRegisterComputeSystemCallback(computeSystem hcsSystem, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) {
-	if hr = procHcsRegisterComputeSystemCallback.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsRegisterComputeSystemCallback.Addr(), 4, uintptr(computeSystem), uintptr(callback), uintptr(context), uintptr(unsafe.Pointer(callbackHandle)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsUnregisterComputeSystemCallback(callbackHandle hcsCallback) (hr error) {
-	if hr = procHcsUnregisterComputeSystemCallback.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsUnregisterComputeSystemCallback.Addr(), 1, uintptr(callbackHandle), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsCreateProcess(computeSystem hcsSystem, processParameters string, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(processParameters)
-	if hr != nil {
-		return
-	}
-	return _hcsCreateProcess(computeSystem, _p0, processInformation, process, result)
-}
-
-func _hcsCreateProcess(computeSystem hcsSystem, processParameters *uint16, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) {
-	if hr = procHcsCreateProcess.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsCreateProcess.Addr(), 5, uintptr(computeSystem), uintptr(unsafe.Pointer(processParameters)), uintptr(unsafe.Pointer(processInformation)), uintptr(unsafe.Pointer(process)), uintptr(unsafe.Pointer(result)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsOpenProcess(computeSystem hcsSystem, pid uint32, process *hcsProcess, result **uint16) (hr error) {
-	if hr = procHcsOpenProcess.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsOpenProcess.Addr(), 4, uintptr(computeSystem), uintptr(pid), uintptr(unsafe.Pointer(process)), uintptr(unsafe.Pointer(result)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsCloseProcess(process hcsProcess) (hr error) {
-	if hr = procHcsCloseProcess.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsCloseProcess.Addr(), 1, uintptr(process), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsTerminateProcess(process hcsProcess, result **uint16) (hr error) {
-	if hr = procHcsTerminateProcess.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsTerminateProcess.Addr(), 2, uintptr(process), uintptr(unsafe.Pointer(result)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsGetProcessInfo(process hcsProcess, processInformation *hcsProcessInformation, result **uint16) (hr error) {
-	if hr = procHcsGetProcessInfo.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsGetProcessInfo.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(processInformation)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsGetProcessProperties(process hcsProcess, processProperties **uint16, result **uint16) (hr error) {
-	if hr = procHcsGetProcessProperties.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsGetProcessProperties.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(processProperties)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsModifyProcess(process hcsProcess, settings string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(settings)
-	if hr != nil {
-		return
-	}
-	return _hcsModifyProcess(process, _p0, result)
-}
-
-func _hcsModifyProcess(process hcsProcess, settings *uint16, result **uint16) (hr error) {
-	if hr = procHcsModifyProcess.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsModifyProcess.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(settings)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsGetServiceProperties(propertyQuery string, properties **uint16, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(propertyQuery)
-	if hr != nil {
-		return
-	}
-	return _hcsGetServiceProperties(_p0, properties, result)
-}
-
-func _hcsGetServiceProperties(propertyQuery *uint16, properties **uint16, result **uint16) (hr error) {
-	if hr = procHcsGetServiceProperties.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsGetServiceProperties.Addr(), 3, uintptr(unsafe.Pointer(propertyQuery)), uintptr(unsafe.Pointer(properties)), uintptr(unsafe.Pointer(result)))
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsRegisterProcessCallback(process hcsProcess, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) {
-	if hr = procHcsRegisterProcessCallback.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHcsRegisterProcessCallback.Addr(), 4, uintptr(process), uintptr(callback), uintptr(context), uintptr(unsafe.Pointer(callbackHandle)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsUnregisterProcessCallback(callbackHandle hcsCallback) (hr error) {
-	if hr = procHcsUnregisterProcessCallback.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsUnregisterProcessCallback.Addr(), 1, uintptr(callbackHandle), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func hcsModifyServiceSettings(settings string, result **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(settings)
-	if hr != nil {
-		return
-	}
-	return _hcsModifyServiceSettings(_p0, result)
-}
-
-func _hcsModifyServiceSettings(settings *uint16, result **uint16) (hr error) {
-	if hr = procHcsModifyServiceSettings.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall(procHcsModifyServiceSettings.Addr(), 2, uintptr(unsafe.Pointer(settings)), uintptr(unsafe.Pointer(result)), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
-
-func _hnsCall(method string, path string, object string, response **uint16) (hr error) {
-	var _p0 *uint16
-	_p0, hr = syscall.UTF16PtrFromString(method)
-	if hr != nil {
-		return
-	}
-	var _p1 *uint16
-	_p1, hr = syscall.UTF16PtrFromString(path)
-	if hr != nil {
-		return
-	}
-	var _p2 *uint16
-	_p2, hr = syscall.UTF16PtrFromString(object)
-	if hr != nil {
-		return
-	}
-	return __hnsCall(_p0, _p1, _p2, response)
-}
-
-func __hnsCall(method *uint16, path *uint16, object *uint16, response **uint16) (hr error) {
-	if hr = procHNSCall.Find(); hr != nil {
-		return
-	}
-	r0, _, _ := syscall.Syscall6(procHNSCall.Addr(), 4, uintptr(unsafe.Pointer(method)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(object)), uintptr(unsafe.Pointer(response)), 0, 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	return
-}
diff --git a/vendor/github.com/beorn7/perks/LICENSE b/vendor/github.com/beorn7/perks/LICENSE
deleted file mode 100644
index 339177be66..0000000000
--- a/vendor/github.com/beorn7/perks/LICENSE
+++ /dev/null
@@ -1,20 +0,0 @@
-Copyright (C) 2013 Blake Mizerany
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/beorn7/perks/quantile/stream.go b/vendor/github.com/beorn7/perks/quantile/stream.go
deleted file mode 100644
index d7d14f8eb6..0000000000
--- a/vendor/github.com/beorn7/perks/quantile/stream.go
+++ /dev/null
@@ -1,316 +0,0 @@
-// Package quantile computes approximate quantiles over an unbounded data
-// stream within low memory and CPU bounds.
-//
-// A small amount of accuracy is traded to achieve the above properties.
-//
-// Multiple streams can be merged before calling Query to generate a single set
-// of results. This is meaningful when the streams represent the same type of
-// data. See Merge and Samples.
-//
-// For more detailed information about the algorithm used, see:
-//
-// Effective Computation of Biased Quantiles over Data Streams
-//
-// http://www.cs.rutgers.edu/~muthu/bquant.pdf
-package quantile
-
-import (
-	"math"
-	"sort"
-)
-
-// Sample holds an observed value and meta information for compression. JSON
-// tags have been added for convenience.
-type Sample struct {
-	Value float64 `json:",string"`
-	Width float64 `json:",string"`
-	Delta float64 `json:",string"`
-}
-
-// Samples represents a slice of samples. It implements sort.Interface.
-type Samples []Sample
-
-func (a Samples) Len() int           { return len(a) }
-func (a Samples) Less(i, j int) bool { return a[i].Value < a[j].Value }
-func (a Samples) Swap(i, j int)      { a[i], a[j] = a[j], a[i] }
-
-type invariant func(s *stream, r float64) float64
-
-// NewLowBiased returns an initialized Stream for low-biased quantiles
-// (e.g. 0.01, 0.1, 0.5) where the needed quantiles are not known a priori, but
-// error guarantees can still be given even for the lower ranks of the data
-// distribution.
-//
-// The provided epsilon is a relative error, i.e. the true quantile of a value
-// returned by a query is guaranteed to be within (1±Epsilon)*Quantile.
-//
-// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error
-// properties.
-func NewLowBiased(epsilon float64) *Stream {
-	ƒ := func(s *stream, r float64) float64 {
-		return 2 * epsilon * r
-	}
-	return newStream(ƒ)
-}
-
-// NewHighBiased returns an initialized Stream for high-biased quantiles
-// (e.g. 0.01, 0.1, 0.5) where the needed quantiles are not known a priori, but
-// error guarantees can still be given even for the higher ranks of the data
-// distribution.
-//
-// The provided epsilon is a relative error, i.e. the true quantile of a value
-// returned by a query is guaranteed to be within 1-(1±Epsilon)*(1-Quantile).
-//
-// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error
-// properties.
-func NewHighBiased(epsilon float64) *Stream {
-	ƒ := func(s *stream, r float64) float64 {
-		return 2 * epsilon * (s.n - r)
-	}
-	return newStream(ƒ)
-}
-
-// NewTargeted returns an initialized Stream concerned with a particular set of
-// quantile values that are supplied a priori. Knowing these a priori reduces
-// space and computation time. The targets map maps the desired quantiles to
-// their absolute errors, i.e. the true quantile of a value returned by a query
-// is guaranteed to be within (Quantile±Epsilon).
-//
-// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error properties.
-func NewTargeted(targetMap map[float64]float64) *Stream {
-	// Convert map to slice to avoid slow iterations on a map.
-	// ƒ is called on the hot path, so converting the map to a slice
-	// beforehand results in significant CPU savings.
-	targets := targetMapToSlice(targetMap)
-
-	ƒ := func(s *stream, r float64) float64 {
-		var m = math.MaxFloat64
-		var f float64
-		for _, t := range targets {
-			if t.quantile*s.n <= r {
-				f = (2 * t.epsilon * r) / t.quantile
-			} else {
-				f = (2 * t.epsilon * (s.n - r)) / (1 - t.quantile)
-			}
-			if f < m {
-				m = f
-			}
-		}
-		return m
-	}
-	return newStream(ƒ)
-}
-
-type target struct {
-	quantile float64
-	epsilon  float64
-}
-
-func targetMapToSlice(targetMap map[float64]float64) []target {
-	targets := make([]target, 0, len(targetMap))
-
-	for quantile, epsilon := range targetMap {
-		t := target{
-			quantile: quantile,
-			epsilon:  epsilon,
-		}
-		targets = append(targets, t)
-	}
-
-	return targets
-}
-
-// Stream computes quantiles for a stream of float64s. It is not thread-safe by
-// design. Take care when using across multiple goroutines.
-type Stream struct {
-	*stream
-	b      Samples
-	sorted bool
-}
-
-func newStream(ƒ invariant) *Stream {
-	x := &stream{ƒ: ƒ}
-	return &Stream{x, make(Samples, 0, 500), true}
-}
-
-// Insert inserts v into the stream.
-func (s *Stream) Insert(v float64) {
-	s.insert(Sample{Value: v, Width: 1})
-}
-
-func (s *Stream) insert(sample Sample) {
-	s.b = append(s.b, sample)
-	s.sorted = false
-	if len(s.b) == cap(s.b) {
-		s.flush()
-	}
-}
-
-// Query returns the computed qth percentiles value. If s was created with
-// NewTargeted, and q is not in the set of quantiles provided a priori, Query
-// will return an unspecified result.
-func (s *Stream) Query(q float64) float64 {
-	if !s.flushed() {
-		// Fast path when there hasn't been enough data for a flush;
-		// this also yields better accuracy for small sets of data.
-		l := len(s.b)
-		if l == 0 {
-			return 0
-		}
-		i := int(math.Ceil(float64(l) * q))
-		if i > 0 {
-			i -= 1
-		}
-		s.maybeSort()
-		return s.b[i].Value
-	}
-	s.flush()
-	return s.stream.query(q)
-}
-
-// Merge merges samples into the underlying streams samples. This is handy when
-// merging multiple streams from separate threads, database shards, etc.
-//
-// ATTENTION: This method is broken and does not yield correct results. The
-// underlying algorithm is not capable of merging streams correctly.
-func (s *Stream) Merge(samples Samples) {
-	sort.Sort(samples)
-	s.stream.merge(samples)
-}
-
-// Reset reinitializes and clears the list reusing the samples buffer memory.
-func (s *Stream) Reset() {
-	s.stream.reset()
-	s.b = s.b[:0]
-}
-
-// Samples returns stream samples held by s.
-func (s *Stream) Samples() Samples {
-	if !s.flushed() {
-		return s.b
-	}
-	s.flush()
-	return s.stream.samples()
-}
-
-// Count returns the total number of samples observed in the stream
-// since initialization.
-func (s *Stream) Count() int {
-	return len(s.b) + s.stream.count()
-}
-
-func (s *Stream) flush() {
-	s.maybeSort()
-	s.stream.merge(s.b)
-	s.b = s.b[:0]
-}
-
-func (s *Stream) maybeSort() {
-	if !s.sorted {
-		s.sorted = true
-		sort.Sort(s.b)
-	}
-}
-
-func (s *Stream) flushed() bool {
-	return len(s.stream.l) > 0
-}
-
-type stream struct {
-	n float64
-	l []Sample
-	ƒ invariant
-}
-
-func (s *stream) reset() {
-	s.l = s.l[:0]
-	s.n = 0
-}
-
-func (s *stream) insert(v float64) {
-	s.merge(Samples{{v, 1, 0}})
-}
-
-func (s *stream) merge(samples Samples) {
-	// TODO(beorn7): This tries to merge not only individual samples, but
-	// whole summaries. The paper doesn't mention merging summaries at
-	// all. Unittests show that the merging is inaccurate. Find out how to
-	// do merges properly.
-	var r float64
-	i := 0
-	for _, sample := range samples {
-		for ; i < len(s.l); i++ {
-			c := s.l[i]
-			if c.Value > sample.Value {
-				// Insert at position i.
-				s.l = append(s.l, Sample{})
-				copy(s.l[i+1:], s.l[i:])
-				s.l[i] = Sample{
-					sample.Value,
-					sample.Width,
-					math.Max(sample.Delta, math.Floor(s.ƒ(s, r))-1),
-					// TODO(beorn7): How to calculate delta correctly?
-				}
-				i++
-				goto inserted
-			}
-			r += c.Width
-		}
-		s.l = append(s.l, Sample{sample.Value, sample.Width, 0})
-		i++
-	inserted:
-		s.n += sample.Width
-		r += sample.Width
-	}
-	s.compress()
-}
-
-func (s *stream) count() int {
-	return int(s.n)
-}
-
-func (s *stream) query(q float64) float64 {
-	t := math.Ceil(q * s.n)
-	t += math.Ceil(s.ƒ(s, t) / 2)
-	p := s.l[0]
-	var r float64
-	for _, c := range s.l[1:] {
-		r += p.Width
-		if r+c.Width+c.Delta > t {
-			return p.Value
-		}
-		p = c
-	}
-	return p.Value
-}
-
-func (s *stream) compress() {
-	if len(s.l) < 2 {
-		return
-	}
-	x := s.l[len(s.l)-1]
-	xi := len(s.l) - 1
-	r := s.n - 1 - x.Width
-
-	for i := len(s.l) - 2; i >= 0; i-- {
-		c := s.l[i]
-		if c.Width+x.Width+x.Delta <= s.ƒ(s, r) {
-			x.Width += c.Width
-			s.l[xi] = x
-			// Remove element at i.
-			copy(s.l[i:], s.l[i+1:])
-			s.l = s.l[:len(s.l)-1]
-			xi -= 1
-		} else {
-			x = c
-			xi = i
-		}
-		r -= c.Width
-	}
-}
-
-func (s *stream) samples() Samples {
-	samples := make(Samples, len(s.l))
-	copy(samples, s.l)
-	return samples
-}
diff --git a/vendor/github.com/containers/image/LICENSE b/vendor/github.com/containers/image/LICENSE
deleted file mode 100644
index 9535635306..0000000000
--- a/vendor/github.com/containers/image/LICENSE
+++ /dev/null
@@ -1,189 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        https://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       https://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/containers/image/copy/copy.go b/vendor/github.com/containers/image/copy/copy.go
deleted file mode 100644
index 29065e031d..0000000000
--- a/vendor/github.com/containers/image/copy/copy.go
+++ /dev/null
@@ -1,718 +0,0 @@
-package copy
-
-import (
-	"bytes"
-	"compress/gzip"
-	"context"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"reflect"
-	"runtime"
-	"strings"
-	"time"
-
-	"github.com/containers/image/image"
-	"github.com/containers/image/pkg/compression"
-	"github.com/containers/image/signature"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	pb "gopkg.in/cheggaaa/pb.v1"
-)
-
-type digestingReader struct {
-	source           io.Reader
-	digester         digest.Digester
-	expectedDigest   digest.Digest
-	validationFailed bool
-}
-
-// newDigestingReader returns an io.Reader implementation with contents of source, which will eventually return a non-EOF error
-// and set validationFailed to true if the source stream does not match expectedDigest.
-func newDigestingReader(source io.Reader, expectedDigest digest.Digest) (*digestingReader, error) {
-	if err := expectedDigest.Validate(); err != nil {
-		return nil, errors.Errorf("Invalid digest specification %s", expectedDigest)
-	}
-	digestAlgorithm := expectedDigest.Algorithm()
-	if !digestAlgorithm.Available() {
-		return nil, errors.Errorf("Invalid digest specification %s: unsupported digest algorithm %s", expectedDigest, digestAlgorithm)
-	}
-	return &digestingReader{
-		source:           source,
-		digester:         digestAlgorithm.Digester(),
-		expectedDigest:   expectedDigest,
-		validationFailed: false,
-	}, nil
-}
-
-func (d *digestingReader) Read(p []byte) (int, error) {
-	n, err := d.source.Read(p)
-	if n > 0 {
-		if n2, err := d.digester.Hash().Write(p[:n]); n2 != n || err != nil {
-			// Coverage: This should not happen, the hash.Hash interface requires
-			// d.digest.Write to never return an error, and the io.Writer interface
-			// requires n2 == len(input) if no error is returned.
-			return 0, errors.Wrapf(err, "Error updating digest during verification: %d vs. %d", n2, n)
-		}
-	}
-	if err == io.EOF {
-		actualDigest := d.digester.Digest()
-		if actualDigest != d.expectedDigest {
-			d.validationFailed = true
-			return 0, errors.Errorf("Digest did not match, expected %s, got %s", d.expectedDigest, actualDigest)
-		}
-	}
-	return n, err
-}
-
-// copier allows us to keep track of diffID values for blobs, and other
-// data shared across one or more images in a possible manifest list.
-type copier struct {
-	copiedBlobs      map[digest.Digest]digest.Digest
-	cachedDiffIDs    map[digest.Digest]digest.Digest
-	dest             types.ImageDestination
-	rawSource        types.ImageSource
-	reportWriter     io.Writer
-	progressInterval time.Duration
-	progress         chan types.ProgressProperties
-}
-
-// imageCopier tracks state specific to a single image (possibly an item of a manifest list)
-type imageCopier struct {
-	c                 *copier
-	manifestUpdates   *types.ManifestUpdateOptions
-	src               types.Image
-	diffIDsAreNeeded  bool
-	canModifyManifest bool
-}
-
-// Options allows supplying non-default configuration modifying the behavior of CopyImage.
-type Options struct {
-	RemoveSignatures bool   // Remove any pre-existing signatures. SignBy will still add a new signature.
-	SignBy           string // If non-empty, asks for a signature to be added during the copy, and specifies a key ID, as accepted by signature.NewGPGSigningMechanism().SignDockerManifest(),
-	ReportWriter     io.Writer
-	SourceCtx        *types.SystemContext
-	DestinationCtx   *types.SystemContext
-	ProgressInterval time.Duration                 // time to wait between reports to signal the progress channel
-	Progress         chan types.ProgressProperties // Reported to when ProgressInterval has arrived for a single artifact+offset.
-	// manifest MIME type of image set by user. "" is default and means use the autodetection to the the manifest MIME type
-	ForceManifestMIMEType string
-}
-
-// Image copies image from srcRef to destRef, using policyContext to validate
-// source image admissibility.
-func Image(policyContext *signature.PolicyContext, destRef, srcRef types.ImageReference, options *Options) (retErr error) {
-	// NOTE this function uses an output parameter for the error return value.
-	// Setting this and returning is the ideal way to return an error.
-	//
-	// the defers in this routine will wrap the error return with its own errors
-	// which can be valuable context in the middle of a multi-streamed copy.
-	if options == nil {
-		options = &Options{}
-	}
-
-	reportWriter := ioutil.Discard
-
-	if options.ReportWriter != nil {
-		reportWriter = options.ReportWriter
-	}
-
-	dest, err := destRef.NewImageDestination(options.DestinationCtx)
-	if err != nil {
-		return errors.Wrapf(err, "Error initializing destination %s", transports.ImageName(destRef))
-	}
-	defer func() {
-		if err := dest.Close(); err != nil {
-			retErr = errors.Wrapf(retErr, " (dest: %v)", err)
-		}
-	}()
-
-	rawSource, err := srcRef.NewImageSource(options.SourceCtx)
-	if err != nil {
-		return errors.Wrapf(err, "Error initializing source %s", transports.ImageName(srcRef))
-	}
-	defer func() {
-		if err := rawSource.Close(); err != nil {
-			retErr = errors.Wrapf(retErr, " (src: %v)", err)
-		}
-	}()
-
-	c := &copier{
-		copiedBlobs:      make(map[digest.Digest]digest.Digest),
-		cachedDiffIDs:    make(map[digest.Digest]digest.Digest),
-		dest:             dest,
-		rawSource:        rawSource,
-		reportWriter:     reportWriter,
-		progressInterval: options.ProgressInterval,
-		progress:         options.Progress,
-	}
-
-	unparsedToplevel := image.UnparsedInstance(rawSource, nil)
-	multiImage, err := isMultiImage(unparsedToplevel)
-	if err != nil {
-		return errors.Wrapf(err, "Error determining manifest MIME type for %s", transports.ImageName(srcRef))
-	}
-
-	if !multiImage {
-		// The simple case: Just copy a single image.
-		if err := c.copyOneImage(policyContext, options, unparsedToplevel); err != nil {
-			return err
-		}
-	} else {
-		// This is a manifest list. Choose a single image and copy it.
-		// FIXME: Copy to destinations which support manifest lists, one image at a time.
-		instanceDigest, err := image.ChooseManifestInstanceFromManifestList(options.SourceCtx, unparsedToplevel)
-		if err != nil {
-			return errors.Wrapf(err, "Error choosing an image from manifest list %s", transports.ImageName(srcRef))
-		}
-		logrus.Debugf("Source is a manifest list; copying (only) instance %s", instanceDigest)
-		unparsedInstance := image.UnparsedInstance(rawSource, &instanceDigest)
-
-		if err := c.copyOneImage(policyContext, options, unparsedInstance); err != nil {
-			return err
-		}
-	}
-
-	if err := c.dest.Commit(); err != nil {
-		return errors.Wrap(err, "Error committing the finished image")
-	}
-
-	return nil
-}
-
-// Image copies a single (on-manifest-list) image unparsedImage, using policyContext to validate
-// source image admissibility.
-func (c *copier) copyOneImage(policyContext *signature.PolicyContext, options *Options, unparsedImage *image.UnparsedImage) (retErr error) {
-	// The caller is handling manifest lists; this could happen only if a manifest list contains a manifest list.
-	// Make sure we fail cleanly in such cases.
-	multiImage, err := isMultiImage(unparsedImage)
-	if err != nil {
-		// FIXME FIXME: How to name a reference for the sub-image?
-		return errors.Wrapf(err, "Error determining manifest MIME type for %s", transports.ImageName(unparsedImage.Reference()))
-	}
-	if multiImage {
-		return fmt.Errorf("Unexpectedly received a manifest list instead of a manifest for a single image")
-	}
-
-	// Please keep this policy check BEFORE reading any other information about the image.
-	// (the multiImage check above only matches the MIME type, which we have received anyway.
-	// Actual parsing of anything should be deferred.)
-	if allowed, err := policyContext.IsRunningImageAllowed(unparsedImage); !allowed || err != nil { // Be paranoid and fail if either return value indicates so.
-		return errors.Wrap(err, "Source image rejected")
-	}
-	src, err := image.FromUnparsedImage(options.SourceCtx, unparsedImage)
-	if err != nil {
-		return errors.Wrapf(err, "Error initializing image from source %s", transports.ImageName(c.rawSource.Reference()))
-	}
-
-	if err := checkImageDestinationForCurrentRuntimeOS(options.DestinationCtx, src, c.dest); err != nil {
-		return err
-	}
-
-	var sigs [][]byte
-	if options.RemoveSignatures {
-		sigs = [][]byte{}
-	} else {
-		c.Printf("Getting image source signatures\n")
-		s, err := src.Signatures(context.TODO())
-		if err != nil {
-			return errors.Wrap(err, "Error reading signatures")
-		}
-		sigs = s
-	}
-	if len(sigs) != 0 {
-		c.Printf("Checking if image destination supports signatures\n")
-		if err := c.dest.SupportsSignatures(); err != nil {
-			return errors.Wrap(err, "Can not copy signatures")
-		}
-	}
-
-	ic := imageCopier{
-		c:               c,
-		manifestUpdates: &types.ManifestUpdateOptions{InformationOnly: types.ManifestUpdateInformation{Destination: c.dest}},
-		src:             src,
-		// diffIDsAreNeeded is computed later
-		canModifyManifest: len(sigs) == 0,
-	}
-
-	if err := ic.updateEmbeddedDockerReference(); err != nil {
-		return err
-	}
-
-	// We compute preferredManifestMIMEType only to show it in error messages.
-	// Without having to add this context in an error message, we would be happy enough to know only that no conversion is needed.
-	preferredManifestMIMEType, otherManifestMIMETypeCandidates, err := ic.determineManifestConversion(c.dest.SupportedManifestMIMETypes(), options.ForceManifestMIMEType)
-	if err != nil {
-		return err
-	}
-
-	// If src.UpdatedImageNeedsLayerDiffIDs(ic.manifestUpdates) will be true, it needs to be true by the time we get here.
-	ic.diffIDsAreNeeded = src.UpdatedImageNeedsLayerDiffIDs(*ic.manifestUpdates)
-
-	if err := ic.copyLayers(); err != nil {
-		return err
-	}
-
-	// With docker/distribution registries we do not know whether the registry accepts schema2 or schema1 only;
-	// and at least with the OpenShift registry "acceptschema2" option, there is no way to detect the support
-	// without actually trying to upload something and getting a types.ManifestTypeRejectedError.
-	// So, try the preferred manifest MIME type. If the process succeeds, fine…
-	manifest, err := ic.copyUpdatedConfigAndManifest()
-	if err != nil {
-		logrus.Debugf("Writing manifest using preferred type %s failed: %v", preferredManifestMIMEType, err)
-		// … if it fails, _and_ the failure is because the manifest is rejected, we may have other options.
-		if _, isManifestRejected := errors.Cause(err).(types.ManifestTypeRejectedError); !isManifestRejected || len(otherManifestMIMETypeCandidates) == 0 {
-			// We don’t have other options.
-			// In principle the code below would handle this as well, but the resulting  error message is fairly ugly.
-			// Don’t bother the user with MIME types if we have no choice.
-			return err
-		}
-		// If the original MIME type is acceptable, determineManifestConversion always uses it as preferredManifestMIMEType.
-		// So if we are here, we will definitely be trying to convert the manifest.
-		// With !ic.canModifyManifest, that would just be a string of repeated failures for the same reason,
-		// so let’s bail out early and with a better error message.
-		if !ic.canModifyManifest {
-			return errors.Wrap(err, "Writing manifest failed (and converting it is not possible)")
-		}
-
-		// errs is a list of errors when trying various manifest types. Also serves as an "upload succeeded" flag when set to nil.
-		errs := []string{fmt.Sprintf("%s(%v)", preferredManifestMIMEType, err)}
-		for _, manifestMIMEType := range otherManifestMIMETypeCandidates {
-			logrus.Debugf("Trying to use manifest type %s…", manifestMIMEType)
-			ic.manifestUpdates.ManifestMIMEType = manifestMIMEType
-			attemptedManifest, err := ic.copyUpdatedConfigAndManifest()
-			if err != nil {
-				logrus.Debugf("Upload of manifest type %s failed: %v", manifestMIMEType, err)
-				errs = append(errs, fmt.Sprintf("%s(%v)", manifestMIMEType, err))
-				continue
-			}
-
-			// We have successfully uploaded a manifest.
-			manifest = attemptedManifest
-			errs = nil // Mark this as a success so that we don't abort below.
-			break
-		}
-		if errs != nil {
-			return fmt.Errorf("Uploading manifest failed, attempted the following formats: %s", strings.Join(errs, ", "))
-		}
-	}
-
-	if options.SignBy != "" {
-		newSig, err := c.createSignature(manifest, options.SignBy)
-		if err != nil {
-			return err
-		}
-		sigs = append(sigs, newSig)
-	}
-
-	c.Printf("Storing signatures\n")
-	if err := c.dest.PutSignatures(sigs); err != nil {
-		return errors.Wrap(err, "Error writing signatures")
-	}
-
-	return nil
-}
-
-// Printf writes a formatted string to c.reportWriter.
-// Note that the method name Printf is not entirely arbitrary: (go tool vet)
-// has a built-in list of functions/methods (whatever object they are for)
-// which have their format strings checked; for other names we would have
-// to pass a parameter to every (go tool vet) invocation.
-func (c *copier) Printf(format string, a ...interface{}) {
-	fmt.Fprintf(c.reportWriter, format, a...)
-}
-
-func checkImageDestinationForCurrentRuntimeOS(ctx *types.SystemContext, src types.Image, dest types.ImageDestination) error {
-	if dest.MustMatchRuntimeOS() {
-		wantedOS := runtime.GOOS
-		if ctx != nil && ctx.OSChoice != "" {
-			wantedOS = ctx.OSChoice
-		}
-		c, err := src.OCIConfig()
-		if err != nil {
-			return errors.Wrapf(err, "Error parsing image configuration")
-		}
-		osErr := fmt.Errorf("image operating system %q cannot be used on %q", c.OS, wantedOS)
-		if wantedOS == "windows" && c.OS == "linux" {
-			return osErr
-		} else if wantedOS != "windows" && c.OS == "windows" {
-			return osErr
-		}
-	}
-	return nil
-}
-
-// updateEmbeddedDockerReference handles the Docker reference embedded in Docker schema1 manifests.
-func (ic *imageCopier) updateEmbeddedDockerReference() error {
-	destRef := ic.c.dest.Reference().DockerReference()
-	if destRef == nil {
-		return nil // Destination does not care about Docker references
-	}
-	if !ic.src.EmbeddedDockerReferenceConflicts(destRef) {
-		return nil // No reference embedded in the manifest, or it matches destRef already.
-	}
-
-	if !ic.canModifyManifest {
-		return errors.Errorf("Copying a schema1 image with an embedded Docker reference to %s (Docker reference %s) would invalidate existing signatures. Explicitly enable signature removal to proceed anyway",
-			transports.ImageName(ic.c.dest.Reference()), destRef.String())
-	}
-	ic.manifestUpdates.EmbeddedDockerReference = destRef
-	return nil
-}
-
-// copyLayers copies layers from ic.src/ic.c.rawSource to dest, using and updating ic.manifestUpdates if necessary and ic.canModifyManifest.
-func (ic *imageCopier) copyLayers() error {
-	srcInfos := ic.src.LayerInfos()
-	destInfos := []types.BlobInfo{}
-	diffIDs := []digest.Digest{}
-	updatedSrcInfos := ic.src.LayerInfosForCopy()
-	srcInfosUpdated := false
-	if updatedSrcInfos != nil && !reflect.DeepEqual(srcInfos, updatedSrcInfos) {
-		if !ic.canModifyManifest {
-			return errors.Errorf("Internal error: copyLayers() needs to use an updated manifest but that was known to be forbidden")
-		}
-		srcInfos = updatedSrcInfos
-		srcInfosUpdated = true
-	}
-	for _, srcLayer := range srcInfos {
-		var (
-			destInfo types.BlobInfo
-			diffID   digest.Digest
-			err      error
-		)
-		if ic.c.dest.AcceptsForeignLayerURLs() && len(srcLayer.URLs) != 0 {
-			// DiffIDs are, currently, needed only when converting from schema1.
-			// In which case src.LayerInfos will not have URLs because schema1
-			// does not support them.
-			if ic.diffIDsAreNeeded {
-				return errors.New("getting DiffID for foreign layers is unimplemented")
-			}
-			destInfo = srcLayer
-			ic.c.Printf("Skipping foreign layer %q copy to %s\n", destInfo.Digest, ic.c.dest.Reference().Transport().Name())
-		} else {
-			destInfo, diffID, err = ic.copyLayer(srcLayer)
-			if err != nil {
-				return err
-			}
-		}
-		destInfos = append(destInfos, destInfo)
-		diffIDs = append(diffIDs, diffID)
-	}
-	ic.manifestUpdates.InformationOnly.LayerInfos = destInfos
-	if ic.diffIDsAreNeeded {
-		ic.manifestUpdates.InformationOnly.LayerDiffIDs = diffIDs
-	}
-	if srcInfosUpdated || layerDigestsDiffer(srcInfos, destInfos) {
-		ic.manifestUpdates.LayerInfos = destInfos
-	}
-	return nil
-}
-
-// layerDigestsDiffer return true iff the digests in a and b differ (ignoring sizes and possible other fields)
-func layerDigestsDiffer(a, b []types.BlobInfo) bool {
-	if len(a) != len(b) {
-		return true
-	}
-	for i := range a {
-		if a[i].Digest != b[i].Digest {
-			return true
-		}
-	}
-	return false
-}
-
-// copyUpdatedConfigAndManifest updates the image per ic.manifestUpdates, if necessary,
-// stores the resulting config and manifest to the destination, and returns the stored manifest.
-func (ic *imageCopier) copyUpdatedConfigAndManifest() ([]byte, error) {
-	pendingImage := ic.src
-	if !reflect.DeepEqual(*ic.manifestUpdates, types.ManifestUpdateOptions{InformationOnly: ic.manifestUpdates.InformationOnly}) {
-		if !ic.canModifyManifest {
-			return nil, errors.Errorf("Internal error: copy needs an updated manifest but that was known to be forbidden")
-		}
-		if !ic.diffIDsAreNeeded && ic.src.UpdatedImageNeedsLayerDiffIDs(*ic.manifestUpdates) {
-			// We have set ic.diffIDsAreNeeded based on the preferred MIME type returned by determineManifestConversion.
-			// So, this can only happen if we are trying to upload using one of the other MIME type candidates.
-			// Because UpdatedImageNeedsLayerDiffIDs is true only when converting from s1 to s2, this case should only arise
-			// when ic.c.dest.SupportedManifestMIMETypes() includes both s1 and s2, the upload using s1 failed, and we are now trying s2.
-			// Supposedly s2-only registries do not exist or are extremely rare, so failing with this error message is good enough for now.
-			// If handling such registries turns out to be necessary, we could compute ic.diffIDsAreNeeded based on the full list of manifest MIME type candidates.
-			return nil, errors.Errorf("Can not convert image to %s, preparing DiffIDs for this case is not supported", ic.manifestUpdates.ManifestMIMEType)
-		}
-		pi, err := ic.src.UpdatedImage(*ic.manifestUpdates)
-		if err != nil {
-			return nil, errors.Wrap(err, "Error creating an updated image manifest")
-		}
-		pendingImage = pi
-	}
-	manifest, _, err := pendingImage.Manifest()
-	if err != nil {
-		return nil, errors.Wrap(err, "Error reading manifest")
-	}
-
-	if err := ic.c.copyConfig(pendingImage); err != nil {
-		return nil, err
-	}
-
-	ic.c.Printf("Writing manifest to image destination\n")
-	if err := ic.c.dest.PutManifest(manifest); err != nil {
-		return nil, errors.Wrap(err, "Error writing manifest")
-	}
-	return manifest, nil
-}
-
-// copyConfig copies config.json, if any, from src to dest.
-func (c *copier) copyConfig(src types.Image) error {
-	srcInfo := src.ConfigInfo()
-	if srcInfo.Digest != "" {
-		c.Printf("Copying config %s\n", srcInfo.Digest)
-		configBlob, err := src.ConfigBlob()
-		if err != nil {
-			return errors.Wrapf(err, "Error reading config blob %s", srcInfo.Digest)
-		}
-		destInfo, err := c.copyBlobFromStream(bytes.NewReader(configBlob), srcInfo, nil, false)
-		if err != nil {
-			return err
-		}
-		if destInfo.Digest != srcInfo.Digest {
-			return errors.Errorf("Internal error: copying uncompressed config blob %s changed digest to %s", srcInfo.Digest, destInfo.Digest)
-		}
-	}
-	return nil
-}
-
-// diffIDResult contains both a digest value and an error from diffIDComputationGoroutine.
-// We could also send the error through the pipeReader, but this more cleanly separates the copying of the layer and the DiffID computation.
-type diffIDResult struct {
-	digest digest.Digest
-	err    error
-}
-
-// copyLayer copies a layer with srcInfo (with known Digest and possibly known Size) in src to dest, perhaps compressing it if canCompress,
-// and returns a complete blobInfo of the copied layer, and a value for LayerDiffIDs if diffIDIsNeeded
-func (ic *imageCopier) copyLayer(srcInfo types.BlobInfo) (types.BlobInfo, digest.Digest, error) {
-	// Check if we already have a blob with this digest
-	haveBlob, extantBlobSize, err := ic.c.dest.HasBlob(srcInfo)
-	if err != nil {
-		return types.BlobInfo{}, "", errors.Wrapf(err, "Error checking for blob %s at destination", srcInfo.Digest)
-	}
-	// If we already have a cached diffID for this blob, we don't need to compute it
-	diffIDIsNeeded := ic.diffIDsAreNeeded && (ic.c.cachedDiffIDs[srcInfo.Digest] == "")
-	// If we already have the blob, and we don't need to recompute the diffID, then we might be able to avoid reading it again
-	if haveBlob && !diffIDIsNeeded {
-		// Check the blob sizes match, if we were given a size this time
-		if srcInfo.Size != -1 && srcInfo.Size != extantBlobSize {
-			return types.BlobInfo{}, "", errors.Errorf("Error: blob %s is already present, but with size %d instead of %d", srcInfo.Digest, extantBlobSize, srcInfo.Size)
-		}
-		srcInfo.Size = extantBlobSize
-		// Tell the image destination that this blob's delta is being applied again.  For some image destinations, this can be faster than using GetBlob/PutBlob
-		blobinfo, err := ic.c.dest.ReapplyBlob(srcInfo)
-		if err != nil {
-			return types.BlobInfo{}, "", errors.Wrapf(err, "Error reapplying blob %s at destination", srcInfo.Digest)
-		}
-		ic.c.Printf("Skipping fetch of repeat blob %s\n", srcInfo.Digest)
-		return blobinfo, ic.c.cachedDiffIDs[srcInfo.Digest], err
-	}
-
-	// Fallback: copy the layer, computing the diffID if we need to do so
-	ic.c.Printf("Copying blob %s\n", srcInfo.Digest)
-	srcStream, srcBlobSize, err := ic.c.rawSource.GetBlob(srcInfo)
-	if err != nil {
-		return types.BlobInfo{}, "", errors.Wrapf(err, "Error reading blob %s", srcInfo.Digest)
-	}
-	defer srcStream.Close()
-
-	blobInfo, diffIDChan, err := ic.copyLayerFromStream(srcStream, types.BlobInfo{Digest: srcInfo.Digest, Size: srcBlobSize},
-		diffIDIsNeeded)
-	if err != nil {
-		return types.BlobInfo{}, "", err
-	}
-	var diffIDResult diffIDResult // = {digest:""}
-	if diffIDIsNeeded {
-		diffIDResult = <-diffIDChan
-		if diffIDResult.err != nil {
-			return types.BlobInfo{}, "", errors.Wrap(diffIDResult.err, "Error computing layer DiffID")
-		}
-		logrus.Debugf("Computed DiffID %s for layer %s", diffIDResult.digest, srcInfo.Digest)
-		ic.c.cachedDiffIDs[srcInfo.Digest] = diffIDResult.digest
-	}
-	return blobInfo, diffIDResult.digest, nil
-}
-
-// copyLayerFromStream is an implementation detail of copyLayer; mostly providing a separate “defer” scope.
-// it copies a blob with srcInfo (with known Digest and possibly known Size) from srcStream to dest,
-// perhaps compressing the stream if canCompress,
-// and returns a complete blobInfo of the copied blob and perhaps a <-chan diffIDResult if diffIDIsNeeded, to be read by the caller.
-func (ic *imageCopier) copyLayerFromStream(srcStream io.Reader, srcInfo types.BlobInfo,
-	diffIDIsNeeded bool) (types.BlobInfo, <-chan diffIDResult, error) {
-	var getDiffIDRecorder func(compression.DecompressorFunc) io.Writer // = nil
-	var diffIDChan chan diffIDResult
-
-	err := errors.New("Internal error: unexpected panic in copyLayer") // For pipeWriter.CloseWithError below
-	if diffIDIsNeeded {
-		diffIDChan = make(chan diffIDResult, 1) // Buffered, so that sending a value after this or our caller has failed and exited does not block.
-		pipeReader, pipeWriter := io.Pipe()
-		defer func() { // Note that this is not the same as {defer pipeWriter.CloseWithError(err)}; we need err to be evaluated lazily.
-			pipeWriter.CloseWithError(err) // CloseWithError(nil) is equivalent to Close()
-		}()
-
-		getDiffIDRecorder = func(decompressor compression.DecompressorFunc) io.Writer {
-			// If this fails, e.g. because we have exited and due to pipeWriter.CloseWithError() above further
-			// reading from the pipe has failed, we don’t really care.
-			// We only read from diffIDChan if the rest of the flow has succeeded, and when we do read from it,
-			// the return value includes an error indication, which we do check.
-			//
-			// If this gets never called, pipeReader will not be used anywhere, but pipeWriter will only be
-			// closed above, so we are happy enough with both pipeReader and pipeWriter to just get collected by GC.
-			go diffIDComputationGoroutine(diffIDChan, pipeReader, decompressor) // Closes pipeReader
-			return pipeWriter
-		}
-	}
-	blobInfo, err := ic.c.copyBlobFromStream(srcStream, srcInfo, getDiffIDRecorder, ic.canModifyManifest) // Sets err to nil on success
-	return blobInfo, diffIDChan, err
-	// We need the defer … pipeWriter.CloseWithError() to happen HERE so that the caller can block on reading from diffIDChan
-}
-
-// diffIDComputationGoroutine reads all input from layerStream, uncompresses using decompressor if necessary, and sends its digest, and status, if any, to dest.
-func diffIDComputationGoroutine(dest chan<- diffIDResult, layerStream io.ReadCloser, decompressor compression.DecompressorFunc) {
-	result := diffIDResult{
-		digest: "",
-		err:    errors.New("Internal error: unexpected panic in diffIDComputationGoroutine"),
-	}
-	defer func() { dest <- result }()
-	defer layerStream.Close() // We do not care to bother the other end of the pipe with other failures; we send them to dest instead.
-
-	result.digest, result.err = computeDiffID(layerStream, decompressor)
-}
-
-// computeDiffID reads all input from layerStream, uncompresses it using decompressor if necessary, and returns its digest.
-func computeDiffID(stream io.Reader, decompressor compression.DecompressorFunc) (digest.Digest, error) {
-	if decompressor != nil {
-		s, err := decompressor(stream)
-		if err != nil {
-			return "", err
-		}
-		stream = s
-	}
-
-	return digest.Canonical.FromReader(stream)
-}
-
-// copyBlobFromStream copies a blob with srcInfo (with known Digest and possibly known Size) from srcStream to dest,
-// perhaps sending a copy to an io.Writer if getOriginalLayerCopyWriter != nil,
-// perhaps compressing it if canCompress,
-// and returns a complete blobInfo of the copied blob.
-func (c *copier) copyBlobFromStream(srcStream io.Reader, srcInfo types.BlobInfo,
-	getOriginalLayerCopyWriter func(decompressor compression.DecompressorFunc) io.Writer,
-	canCompress bool) (types.BlobInfo, error) {
-	// The copying happens through a pipeline of connected io.Readers.
-	// === Input: srcStream
-
-	// === Process input through digestingReader to validate against the expected digest.
-	// Be paranoid; in case PutBlob somehow managed to ignore an error from digestingReader,
-	// use a separate validation failure indicator.
-	// Note that we don't use a stronger "validationSucceeded" indicator, because
-	// dest.PutBlob may detect that the layer already exists, in which case we don't
-	// read stream to the end, and validation does not happen.
-	digestingReader, err := newDigestingReader(srcStream, srcInfo.Digest)
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrapf(err, "Error preparing to verify blob %s", srcInfo.Digest)
-	}
-	var destStream io.Reader = digestingReader
-
-	// === Detect compression of the input stream.
-	// This requires us to “peek ahead” into the stream to read the initial part, which requires us to chain through another io.Reader returned by DetectCompression.
-	decompressor, destStream, err := compression.DetectCompression(destStream) // We could skip this in some cases, but let's keep the code path uniform
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrapf(err, "Error reading blob %s", srcInfo.Digest)
-	}
-	isCompressed := decompressor != nil
-
-	// === Report progress using a pb.Reader.
-	bar := pb.New(int(srcInfo.Size)).SetUnits(pb.U_BYTES)
-	bar.Output = c.reportWriter
-	bar.SetMaxWidth(80)
-	bar.ShowTimeLeft = false
-	bar.ShowPercent = false
-	bar.Start()
-	destStream = bar.NewProxyReader(destStream)
-	defer bar.Finish()
-
-	// === Send a copy of the original, uncompressed, stream, to a separate path if necessary.
-	var originalLayerReader io.Reader // DO NOT USE this other than to drain the input if no other consumer in the pipeline has done so.
-	if getOriginalLayerCopyWriter != nil {
-		destStream = io.TeeReader(destStream, getOriginalLayerCopyWriter(decompressor))
-		originalLayerReader = destStream
-	}
-
-	// === Compress the layer if it is uncompressed and compression is desired
-	var inputInfo types.BlobInfo
-	if !canCompress || isCompressed || !c.dest.ShouldCompressLayers() {
-		logrus.Debugf("Using original blob without modification")
-		inputInfo = srcInfo
-	} else {
-		logrus.Debugf("Compressing blob on the fly")
-		pipeReader, pipeWriter := io.Pipe()
-		defer pipeReader.Close()
-
-		// If this fails while writing data, it will do pipeWriter.CloseWithError(); if it fails otherwise,
-		// e.g. because we have exited and due to pipeReader.Close() above further writing to the pipe has failed,
-		// we don’t care.
-		go compressGoroutine(pipeWriter, destStream) // Closes pipeWriter
-		destStream = pipeReader
-		inputInfo.Digest = ""
-		inputInfo.Size = -1
-	}
-
-	// === Report progress using the c.progress channel, if required.
-	if c.progress != nil && c.progressInterval > 0 {
-		destStream = &progressReader{
-			source:   destStream,
-			channel:  c.progress,
-			interval: c.progressInterval,
-			artifact: srcInfo,
-			lastTime: time.Now(),
-		}
-	}
-
-	// === Finally, send the layer stream to dest.
-	uploadedInfo, err := c.dest.PutBlob(destStream, inputInfo)
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrap(err, "Error writing blob")
-	}
-
-	// This is fairly horrible: the writer from getOriginalLayerCopyWriter wants to consumer
-	// all of the input (to compute DiffIDs), even if dest.PutBlob does not need it.
-	// So, read everything from originalLayerReader, which will cause the rest to be
-	// sent there if we are not already at EOF.
-	if getOriginalLayerCopyWriter != nil {
-		logrus.Debugf("Consuming rest of the original blob to satisfy getOriginalLayerCopyWriter")
-		_, err := io.Copy(ioutil.Discard, originalLayerReader)
-		if err != nil {
-			return types.BlobInfo{}, errors.Wrapf(err, "Error reading input blob %s", srcInfo.Digest)
-		}
-	}
-
-	if digestingReader.validationFailed { // Coverage: This should never happen.
-		return types.BlobInfo{}, errors.Errorf("Internal error writing blob %s, digest verification failed but was ignored", srcInfo.Digest)
-	}
-	if inputInfo.Digest != "" && uploadedInfo.Digest != inputInfo.Digest {
-		return types.BlobInfo{}, errors.Errorf("Internal error writing blob %s, blob with digest %s saved with digest %s", srcInfo.Digest, inputInfo.Digest, uploadedInfo.Digest)
-	}
-	return uploadedInfo, nil
-}
-
-// compressGoroutine reads all input from src and writes its compressed equivalent to dest.
-func compressGoroutine(dest *io.PipeWriter, src io.Reader) {
-	err := errors.New("Internal error: unexpected panic in compressGoroutine")
-	defer func() { // Note that this is not the same as {defer dest.CloseWithError(err)}; we need err to be evaluated lazily.
-		dest.CloseWithError(err) // CloseWithError(nil) is equivalent to Close()
-	}()
-
-	zipper := gzip.NewWriter(dest)
-	defer zipper.Close()
-
-	_, err = io.Copy(zipper, src) // Sets err to nil, i.e. causes dest.Close()
-}
diff --git a/vendor/github.com/containers/image/copy/fixtures/Hello.bz2 b/vendor/github.com/containers/image/copy/fixtures/Hello.bz2
deleted file mode 120000
index fc28d6c9ac..0000000000
--- a/vendor/github.com/containers/image/copy/fixtures/Hello.bz2
+++ /dev/null
@@ -1 +0,0 @@
-../../pkg/compression/fixtures/Hello.bz2
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/copy/fixtures/Hello.gz b/vendor/github.com/containers/image/copy/fixtures/Hello.gz
deleted file mode 120000
index 08aa805fcc..0000000000
--- a/vendor/github.com/containers/image/copy/fixtures/Hello.gz
+++ /dev/null
@@ -1 +0,0 @@
-../../pkg/compression/fixtures/Hello.gz
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/copy/fixtures/Hello.uncompressed b/vendor/github.com/containers/image/copy/fixtures/Hello.uncompressed
deleted file mode 120000
index 49b46625d8..0000000000
--- a/vendor/github.com/containers/image/copy/fixtures/Hello.uncompressed
+++ /dev/null
@@ -1 +0,0 @@
-../../pkg/compression/fixtures/Hello.uncompressed
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/copy/fixtures/Hello.xz b/vendor/github.com/containers/image/copy/fixtures/Hello.xz
deleted file mode 120000
index 77bcd85587..0000000000
--- a/vendor/github.com/containers/image/copy/fixtures/Hello.xz
+++ /dev/null
@@ -1 +0,0 @@
-../../pkg/compression/fixtures/Hello.xz
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/copy/manifest.go b/vendor/github.com/containers/image/copy/manifest.go
deleted file mode 100644
index 7e4cd10ef8..0000000000
--- a/vendor/github.com/containers/image/copy/manifest.go
+++ /dev/null
@@ -1,115 +0,0 @@
-package copy
-
-import (
-	"strings"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// preferredManifestMIMETypes lists manifest MIME types in order of our preference, if we can't use the original manifest and need to convert.
-// Prefer v2s2 to v2s1 because v2s2 does not need to be changed when uploading to a different location.
-// Include v2s1 signed but not v2s1 unsigned, because docker/distribution requires a signature even if the unsigned MIME type is used.
-var preferredManifestMIMETypes = []string{manifest.DockerV2Schema2MediaType, manifest.DockerV2Schema1SignedMediaType}
-
-// orderedSet is a list of strings (MIME types in our case), with each string appearing at most once.
-type orderedSet struct {
-	list     []string
-	included map[string]struct{}
-}
-
-// newOrderedSet creates a correctly initialized orderedSet.
-// [Sometimes it would be really nice if Golang had constructors…]
-func newOrderedSet() *orderedSet {
-	return &orderedSet{
-		list:     []string{},
-		included: map[string]struct{}{},
-	}
-}
-
-// append adds s to the end of os, only if it is not included already.
-func (os *orderedSet) append(s string) {
-	if _, ok := os.included[s]; !ok {
-		os.list = append(os.list, s)
-		os.included[s] = struct{}{}
-	}
-}
-
-// determineManifestConversion updates ic.manifestUpdates to convert manifest to a supported MIME type, if necessary and ic.canModifyManifest.
-// Note that the conversion will only happen later, through ic.src.UpdatedImage
-// Returns the preferred manifest MIME type (whether we are converting to it or using it unmodified),
-// and a list of other possible alternatives, in order.
-func (ic *imageCopier) determineManifestConversion(destSupportedManifestMIMETypes []string, forceManifestMIMEType string) (string, []string, error) {
-	_, srcType, err := ic.src.Manifest()
-	if err != nil { // This should have been cached?!
-		return "", nil, errors.Wrap(err, "Error reading manifest")
-	}
-
-	if forceManifestMIMEType != "" {
-		destSupportedManifestMIMETypes = []string{forceManifestMIMEType}
-	}
-
-	if len(destSupportedManifestMIMETypes) == 0 {
-		return srcType, []string{}, nil // Anything goes; just use the original as is, do not try any conversions.
-	}
-	supportedByDest := map[string]struct{}{}
-	for _, t := range destSupportedManifestMIMETypes {
-		supportedByDest[t] = struct{}{}
-	}
-
-	// destSupportedManifestMIMETypes is a static guess; a particular registry may still only support a subset of the types.
-	// So, build a list of types to try in order of decreasing preference.
-	// FIXME? This treats manifest.DockerV2Schema1SignedMediaType and manifest.DockerV2Schema1MediaType as distinct,
-	// although we are not really making any conversion, and it is very unlikely that a destination would support one but not the other.
-	// In practice, schema1 is probably the lowest common denominator, so we would expect to try the first one of the MIME types
-	// and never attempt the other one.
-	prioritizedTypes := newOrderedSet()
-
-	// First of all, prefer to keep the original manifest unmodified.
-	if _, ok := supportedByDest[srcType]; ok {
-		prioritizedTypes.append(srcType)
-	}
-	if !ic.canModifyManifest {
-		// We could also drop the !ic.canModifyManifest check and have the caller
-		// make the choice; it is already doing that to an extent, to improve error
-		// messages.  But it is nice to hide the “if !ic.canModifyManifest, do no conversion”
-		// special case in here; the caller can then worry (or not) only about a good UI.
-		logrus.Debugf("We can't modify the manifest, hoping for the best...")
-		return srcType, []string{}, nil // Take our chances - FIXME? Or should we fail without trying?
-	}
-
-	// Then use our list of preferred types.
-	for _, t := range preferredManifestMIMETypes {
-		if _, ok := supportedByDest[t]; ok {
-			prioritizedTypes.append(t)
-		}
-	}
-
-	// Finally, try anything else the destination supports.
-	for _, t := range destSupportedManifestMIMETypes {
-		prioritizedTypes.append(t)
-	}
-
-	logrus.Debugf("Manifest has MIME type %s, ordered candidate list [%s]", srcType, strings.Join(prioritizedTypes.list, ", "))
-	if len(prioritizedTypes.list) == 0 { // Coverage: destSupportedManifestMIMETypes is not empty (or we would have exited in the “Anything goes” case above), so this should never happen.
-		return "", nil, errors.New("Internal error: no candidate MIME types")
-	}
-	preferredType := prioritizedTypes.list[0]
-	if preferredType != srcType {
-		ic.manifestUpdates.ManifestMIMEType = preferredType
-	} else {
-		logrus.Debugf("... will first try using the original manifest unmodified")
-	}
-	return preferredType, prioritizedTypes.list[1:], nil
-}
-
-// isMultiImage returns true if img is a list of images
-func isMultiImage(img types.UnparsedImage) (bool, error) {
-	_, mt, err := img.Manifest()
-	if err != nil {
-		return false, err
-	}
-	return manifest.MIMETypeIsMultiImage(mt), nil
-}
diff --git a/vendor/github.com/containers/image/copy/progress_reader.go b/vendor/github.com/containers/image/copy/progress_reader.go
deleted file mode 100644
index b670ee59f1..0000000000
--- a/vendor/github.com/containers/image/copy/progress_reader.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package copy
-
-import (
-	"io"
-	"time"
-
-	"github.com/containers/image/types"
-)
-
-// progressReader is a reader that reports its progress on an interval.
-type progressReader struct {
-	source   io.Reader
-	channel  chan types.ProgressProperties
-	interval time.Duration
-	artifact types.BlobInfo
-	lastTime time.Time
-	offset   uint64
-}
-
-func (r *progressReader) Read(p []byte) (int, error) {
-	n, err := r.source.Read(p)
-	r.offset += uint64(n)
-	if time.Since(r.lastTime) > r.interval {
-		r.channel <- types.ProgressProperties{Artifact: r.artifact, Offset: r.offset}
-		r.lastTime = time.Now()
-	}
-	return n, err
-}
diff --git a/vendor/github.com/containers/image/copy/sign.go b/vendor/github.com/containers/image/copy/sign.go
deleted file mode 100644
index 91394d2b0f..0000000000
--- a/vendor/github.com/containers/image/copy/sign.go
+++ /dev/null
@@ -1,31 +0,0 @@
-package copy
-
-import (
-	"github.com/containers/image/signature"
-	"github.com/containers/image/transports"
-	"github.com/pkg/errors"
-)
-
-// createSignature creates a new signature of manifest using keyIdentity.
-func (c *copier) createSignature(manifest []byte, keyIdentity string) ([]byte, error) {
-	mech, err := signature.NewGPGSigningMechanism()
-	if err != nil {
-		return nil, errors.Wrap(err, "Error initializing GPG")
-	}
-	defer mech.Close()
-	if err := mech.SupportsSigning(); err != nil {
-		return nil, errors.Wrap(err, "Signing not supported")
-	}
-
-	dockerReference := c.dest.Reference().DockerReference()
-	if dockerReference == nil {
-		return nil, errors.Errorf("Cannot determine canonical Docker reference for destination %s", transports.ImageName(c.dest.Reference()))
-	}
-
-	c.Printf("Signing manifest\n")
-	newSig, err := signature.SignDockerManifest(manifest, dockerReference.String(), mech, keyIdentity)
-	if err != nil {
-		return nil, errors.Wrap(err, "Error creating signature")
-	}
-	return newSig, nil
-}
diff --git a/vendor/github.com/containers/image/directory/directory_dest.go b/vendor/github.com/containers/image/directory/directory_dest.go
deleted file mode 100644
index 5f7443fa0f..0000000000
--- a/vendor/github.com/containers/image/directory/directory_dest.go
+++ /dev/null
@@ -1,243 +0,0 @@
-package directory
-
-import (
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-const version = "Directory Transport Version: 1.0\n"
-
-// ErrNotContainerImageDir indicates that the directory doesn't match the expected contents of a directory created
-// using the 'dir' transport
-var ErrNotContainerImageDir = errors.New("not a containers image directory, don't want to overwrite important data")
-
-type dirImageDestination struct {
-	ref      dirReference
-	compress bool
-}
-
-// newImageDestination returns an ImageDestination for writing to a directory.
-func newImageDestination(ref dirReference, compress bool) (types.ImageDestination, error) {
-	d := &dirImageDestination{ref: ref, compress: compress}
-
-	// If directory exists check if it is empty
-	// if not empty, check whether the contents match that of a container image directory and overwrite the contents
-	// if the contents don't match throw an error
-	dirExists, err := pathExists(d.ref.resolvedPath)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error checking for path %q", d.ref.resolvedPath)
-	}
-	if dirExists {
-		isEmpty, err := isDirEmpty(d.ref.resolvedPath)
-		if err != nil {
-			return nil, err
-		}
-
-		if !isEmpty {
-			versionExists, err := pathExists(d.ref.versionPath())
-			if err != nil {
-				return nil, errors.Wrapf(err, "error checking if path exists %q", d.ref.versionPath())
-			}
-			if versionExists {
-				contents, err := ioutil.ReadFile(d.ref.versionPath())
-				if err != nil {
-					return nil, err
-				}
-				// check if contents of version file is what we expect it to be
-				if string(contents) != version {
-					return nil, ErrNotContainerImageDir
-				}
-			} else {
-				return nil, ErrNotContainerImageDir
-			}
-			// delete directory contents so that only one image is in the directory at a time
-			if err = removeDirContents(d.ref.resolvedPath); err != nil {
-				return nil, errors.Wrapf(err, "error erasing contents in %q", d.ref.resolvedPath)
-			}
-			logrus.Debugf("overwriting existing container image directory %q", d.ref.resolvedPath)
-		}
-	} else {
-		// create directory if it doesn't exist
-		if err := os.MkdirAll(d.ref.resolvedPath, 0755); err != nil {
-			return nil, errors.Wrapf(err, "unable to create directory %q", d.ref.resolvedPath)
-		}
-	}
-	// create version file
-	err = ioutil.WriteFile(d.ref.versionPath(), []byte(version), 0644)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error creating version file %q", d.ref.versionPath())
-	}
-	return d, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *dirImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *dirImageDestination) Close() error {
-	return nil
-}
-
-func (d *dirImageDestination) SupportedManifestMIMETypes() []string {
-	return nil
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *dirImageDestination) SupportsSignatures() error {
-	return nil
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *dirImageDestination) ShouldCompressLayers() bool {
-	return d.compress
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *dirImageDestination) AcceptsForeignLayerURLs() bool {
-	return false
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *dirImageDestination) MustMatchRuntimeOS() bool {
-	return false
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-// to any other readers for download using the supplied digest.
-// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-func (d *dirImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	blobFile, err := ioutil.TempFile(d.ref.path, "dir-put-blob")
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	succeeded := false
-	defer func() {
-		blobFile.Close()
-		if !succeeded {
-			os.Remove(blobFile.Name())
-		}
-	}()
-
-	digester := digest.Canonical.Digester()
-	tee := io.TeeReader(stream, digester.Hash())
-
-	size, err := io.Copy(blobFile, tee)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	computedDigest := digester.Digest()
-	if inputInfo.Size != -1 && size != inputInfo.Size {
-		return types.BlobInfo{}, errors.Errorf("Size mismatch when copying %s, expected %d, got %d", computedDigest, inputInfo.Size, size)
-	}
-	if err := blobFile.Sync(); err != nil {
-		return types.BlobInfo{}, err
-	}
-	if err := blobFile.Chmod(0644); err != nil {
-		return types.BlobInfo{}, err
-	}
-	blobPath := d.ref.layerPath(computedDigest)
-	if err := os.Rename(blobFile.Name(), blobPath); err != nil {
-		return types.BlobInfo{}, err
-	}
-	succeeded = true
-	return types.BlobInfo{Digest: computedDigest, Size: size}, nil
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob.
-// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-// it returns a non-nil error only on an unexpected failure.
-func (d *dirImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	if info.Digest == "" {
-		return false, -1, errors.Errorf(`"Can not check for a blob with unknown digest`)
-	}
-	blobPath := d.ref.layerPath(info.Digest)
-	finfo, err := os.Stat(blobPath)
-	if err != nil && os.IsNotExist(err) {
-		return false, -1, nil
-	}
-	if err != nil {
-		return false, -1, err
-	}
-	return true, finfo.Size(), nil
-}
-
-func (d *dirImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return info, nil
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *dirImageDestination) PutManifest(manifest []byte) error {
-	return ioutil.WriteFile(d.ref.manifestPath(), manifest, 0644)
-}
-
-func (d *dirImageDestination) PutSignatures(signatures [][]byte) error {
-	for i, sig := range signatures {
-		if err := ioutil.WriteFile(d.ref.signaturePath(i), sig, 0644); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *dirImageDestination) Commit() error {
-	return nil
-}
-
-// returns true if path exists
-func pathExists(path string) (bool, error) {
-	_, err := os.Stat(path)
-	if err == nil {
-		return true, nil
-	}
-	if err != nil && os.IsNotExist(err) {
-		return false, nil
-	}
-	return false, err
-}
-
-// returns true if directory is empty
-func isDirEmpty(path string) (bool, error) {
-	files, err := ioutil.ReadDir(path)
-	if err != nil {
-		return false, err
-	}
-	return len(files) == 0, nil
-}
-
-// deletes the contents of a directory
-func removeDirContents(path string) error {
-	files, err := ioutil.ReadDir(path)
-	if err != nil {
-		return err
-	}
-
-	for _, file := range files {
-		if err := os.RemoveAll(filepath.Join(path, file.Name())); err != nil {
-			return err
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/image/directory/directory_src.go b/vendor/github.com/containers/image/directory/directory_src.go
deleted file mode 100644
index 0a8acf6bf9..0000000000
--- a/vendor/github.com/containers/image/directory/directory_src.go
+++ /dev/null
@@ -1,89 +0,0 @@
-package directory
-
-import (
-	"context"
-	"io"
-	"io/ioutil"
-	"os"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-type dirImageSource struct {
-	ref dirReference
-}
-
-// newImageSource returns an ImageSource reading from an existing directory.
-// The caller must call .Close() on the returned ImageSource.
-func newImageSource(ref dirReference) types.ImageSource {
-	return &dirImageSource{ref}
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (s *dirImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *dirImageSource) Close() error {
-	return nil
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *dirImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if instanceDigest != nil {
-		return nil, "", errors.Errorf(`Getting target manifest not supported by "dir:"`)
-	}
-	m, err := ioutil.ReadFile(s.ref.manifestPath())
-	if err != nil {
-		return nil, "", err
-	}
-	return m, manifest.GuessMIMEType(m), err
-}
-
-// GetBlob returns a stream for the specified blob, and the blob’s size (or -1 if unknown).
-func (s *dirImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	r, err := os.Open(s.ref.layerPath(info.Digest))
-	if err != nil {
-		return nil, 0, nil
-	}
-	fi, err := r.Stat()
-	if err != nil {
-		return nil, 0, nil
-	}
-	return r, fi.Size(), nil
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *dirImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	if instanceDigest != nil {
-		return nil, errors.Errorf(`Manifests lists are not supported by "dir:"`)
-	}
-	signatures := [][]byte{}
-	for i := 0; ; i++ {
-		signature, err := ioutil.ReadFile(s.ref.signaturePath(i))
-		if err != nil {
-			if os.IsNotExist(err) {
-				break
-			}
-			return nil, err
-		}
-		signatures = append(signatures, signature)
-	}
-	return signatures, nil
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when copying, in preference to values in the manifest, if specified.
-func (s *dirImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/directory/directory_transport.go b/vendor/github.com/containers/image/directory/directory_transport.go
deleted file mode 100644
index c38753087e..0000000000
--- a/vendor/github.com/containers/image/directory/directory_transport.go
+++ /dev/null
@@ -1,187 +0,0 @@
-package directory
-
-import (
-	"fmt"
-	"path/filepath"
-	"strings"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/directory/explicitfilepath"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for directory paths.
-var Transport = dirTransport{}
-
-type dirTransport struct{}
-
-func (t dirTransport) Name() string {
-	return "dir"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t dirTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return NewReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t dirTransport) ValidatePolicyConfigurationScope(scope string) error {
-	if !strings.HasPrefix(scope, "/") {
-		return errors.Errorf("Invalid scope %s: Must be an absolute path", scope)
-	}
-	// Refuse also "/", otherwise "/" and "" would have the same semantics,
-	// and "" could be unexpectedly shadowed by the "/" entry.
-	if scope == "/" {
-		return errors.New(`Invalid scope "/": Use the generic default scope ""`)
-	}
-	cleaned := filepath.Clean(scope)
-	if cleaned != scope {
-		return errors.Errorf(`Invalid scope %s: Uses non-canonical format, perhaps try %s`, scope, cleaned)
-	}
-	return nil
-}
-
-// dirReference is an ImageReference for directory paths.
-type dirReference struct {
-	// Note that the interpretation of paths below depends on the underlying filesystem state, which may change under us at any time!
-	// Either of the paths may point to a different, or no, inode over time.  resolvedPath may contain symbolic links, and so on.
-
-	// Generally we follow the intent of the user, and use the "path" member for filesystem operations (e.g. the user can use a relative path to avoid
-	// being exposed to symlinks and renames in the parent directories to the working directory).
-	// (But in general, we make no attempt to be completely safe against concurrent hostile filesystem modifications.)
-	path         string // As specified by the user. May be relative, contain symlinks, etc.
-	resolvedPath string // Absolute path with no symlinks, at least at the time of its creation. Primarily used for policy namespaces.
-}
-
-// There is no directory.ParseReference because it is rather pointless.
-// Callers who need a transport-independent interface will go through
-// dirTransport.ParseReference; callers who intentionally deal with directories
-// can use directory.NewReference.
-
-// NewReference returns a directory reference for a specified path.
-//
-// We do not expose an API supplying the resolvedPath; we could, but recomputing it
-// is generally cheap enough that we prefer being confident about the properties of resolvedPath.
-func NewReference(path string) (types.ImageReference, error) {
-	resolved, err := explicitfilepath.ResolvePathToFullyExplicit(path)
-	if err != nil {
-		return nil, err
-	}
-	return dirReference{path: path, resolvedPath: resolved}, nil
-}
-
-func (ref dirReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref dirReference) StringWithinTransport() string {
-	return ref.path
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref dirReference) DockerReference() reference.Named {
-	return nil
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref dirReference) PolicyConfigurationIdentity() string {
-	return ref.resolvedPath
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref dirReference) PolicyConfigurationNamespaces() []string {
-	res := []string{}
-	path := ref.resolvedPath
-	for {
-		lastSlash := strings.LastIndex(path, "/")
-		if lastSlash == -1 || lastSlash == 0 {
-			break
-		}
-		path = path[:lastSlash]
-		res = append(res, path)
-	}
-	// Note that we do not include "/"; it is redundant with the default "" global default,
-	// and rejected by dirTransport.ValidatePolicyConfigurationScope above.
-	return res
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref dirReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src := newImageSource(ref)
-	return image.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref dirReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ref), nil
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref dirReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	compress := false
-	if ctx != nil {
-		compress = ctx.DirForceCompress
-	}
-	return newImageDestination(ref, compress)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref dirReference) DeleteImage(ctx *types.SystemContext) error {
-	return errors.Errorf("Deleting images not implemented for dir: images")
-}
-
-// manifestPath returns a path for the manifest within a directory using our conventions.
-func (ref dirReference) manifestPath() string {
-	return filepath.Join(ref.path, "manifest.json")
-}
-
-// layerPath returns a path for a layer tarball within a directory using our conventions.
-func (ref dirReference) layerPath(digest digest.Digest) string {
-	// FIXME: Should we keep the digest identification?
-	return filepath.Join(ref.path, digest.Hex()+".tar")
-}
-
-// signaturePath returns a path for a signature within a directory using our conventions.
-func (ref dirReference) signaturePath(index int) string {
-	return filepath.Join(ref.path, fmt.Sprintf("signature-%d", index+1))
-}
-
-// versionPath returns a path for the version file within a directory using our conventions.
-func (ref dirReference) versionPath() string {
-	return filepath.Join(ref.path, "version")
-}
diff --git a/vendor/github.com/containers/image/directory/explicitfilepath/path.go b/vendor/github.com/containers/image/directory/explicitfilepath/path.go
deleted file mode 100644
index 71136b8808..0000000000
--- a/vendor/github.com/containers/image/directory/explicitfilepath/path.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package explicitfilepath
-
-import (
-	"os"
-	"path/filepath"
-
-	"github.com/pkg/errors"
-)
-
-// ResolvePathToFullyExplicit returns the input path converted to an absolute, no-symlinks, cleaned up path.
-// To do so, all elements of the input path must exist; as a special case, the final component may be
-// a non-existent name (but not a symlink pointing to a non-existent name)
-// This is intended as a a helper for implementations of types.ImageReference.PolicyConfigurationIdentity etc.
-func ResolvePathToFullyExplicit(path string) (string, error) {
-	switch _, err := os.Lstat(path); {
-	case err == nil:
-		return resolveExistingPathToFullyExplicit(path)
-	case os.IsNotExist(err):
-		parent, file := filepath.Split(path)
-		resolvedParent, err := resolveExistingPathToFullyExplicit(parent)
-		if err != nil {
-			return "", err
-		}
-		if file == "." || file == ".." {
-			// Coverage: This can happen, but very rarely: if we have successfully resolved the parent, both "." and ".." in it should have been resolved as well.
-			// This can still happen if there is a filesystem race condition, causing the Lstat() above to fail but the later resolution to succeed.
-			// We do not care to promise anything if such filesystem race conditions can happen, but we definitely don't want to return "."/".." components
-			// in the resulting path, and especially not at the end.
-			return "", errors.Errorf("Unexpectedly missing special filename component in %s", path)
-		}
-		resolvedPath := filepath.Join(resolvedParent, file)
-		// As a sanity check, ensure that there are no "." or ".." components.
-		cleanedResolvedPath := filepath.Clean(resolvedPath)
-		if cleanedResolvedPath != resolvedPath {
-			// Coverage: This should never happen.
-			return "", errors.Errorf("Internal inconsistency: Path %s resolved to %s still cleaned up to %s", path, resolvedPath, cleanedResolvedPath)
-		}
-		return resolvedPath, nil
-	default: // err != nil, unrecognized
-		return "", err
-	}
-}
-
-// resolveExistingPathToFullyExplicit is the same as ResolvePathToFullyExplicit,
-// but without the special case for missing final component.
-func resolveExistingPathToFullyExplicit(path string) (string, error) {
-	resolved, err := filepath.Abs(path)
-	if err != nil {
-		return "", err // Coverage: This can fail only if os.Getwd() fails.
-	}
-	resolved, err = filepath.EvalSymlinks(resolved)
-	if err != nil {
-		return "", err
-	}
-	return filepath.Clean(resolved), nil
-}
diff --git a/vendor/github.com/containers/image/docker/archive/dest.go b/vendor/github.com/containers/image/docker/archive/dest.go
deleted file mode 100644
index 9fc85bd85b..0000000000
--- a/vendor/github.com/containers/image/docker/archive/dest.go
+++ /dev/null
@@ -1,66 +0,0 @@
-package archive
-
-import (
-	"io"
-	"os"
-
-	"github.com/containers/image/docker/tarfile"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-type archiveImageDestination struct {
-	*tarfile.Destination // Implements most of types.ImageDestination
-	ref                  archiveReference
-	writer               io.Closer
-}
-
-func newImageDestination(ctx *types.SystemContext, ref archiveReference) (types.ImageDestination, error) {
-	if ref.destinationRef == nil {
-		return nil, errors.Errorf("docker-archive: destination reference not supplied (must be of form <path>:<reference:tag>)")
-	}
-
-	// ref.path can be either a pipe or a regular file
-	// in the case of a pipe, we require that we can open it for write
-	// in the case of a regular file, we don't want to overwrite any pre-existing file
-	// so we check for Size() == 0 below (This is racy, but using O_EXCL would also be racy,
-	// only in a different way. Either way, it’s up to the user to not have two writers to the same path.)
-	fh, err := os.OpenFile(ref.path, os.O_WRONLY|os.O_CREATE, 0644)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error opening file %q", ref.path)
-	}
-
-	fhStat, err := fh.Stat()
-	if err != nil {
-		return nil, errors.Wrapf(err, "error statting file %q", ref.path)
-	}
-
-	if fhStat.Mode().IsRegular() && fhStat.Size() != 0 {
-		return nil, errors.New("docker-archive doesn't support modifying existing images")
-	}
-
-	return &archiveImageDestination{
-		Destination: tarfile.NewDestination(fh, ref.destinationRef),
-		ref:         ref,
-		writer:      fh,
-	}, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *archiveImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *archiveImageDestination) Close() error {
-	return d.writer.Close()
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *archiveImageDestination) Commit() error {
-	return d.Destination.Commit()
-}
diff --git a/vendor/github.com/containers/image/docker/archive/src.go b/vendor/github.com/containers/image/docker/archive/src.go
deleted file mode 100644
index b2ffd965df..0000000000
--- a/vendor/github.com/containers/image/docker/archive/src.go
+++ /dev/null
@@ -1,41 +0,0 @@
-package archive
-
-import (
-	"github.com/containers/image/docker/tarfile"
-	"github.com/containers/image/types"
-	"github.com/sirupsen/logrus"
-)
-
-type archiveImageSource struct {
-	*tarfile.Source // Implements most of types.ImageSource
-	ref             archiveReference
-}
-
-// newImageSource returns a types.ImageSource for the specified image reference.
-// The caller must call .Close() on the returned ImageSource.
-func newImageSource(ctx *types.SystemContext, ref archiveReference) types.ImageSource {
-	if ref.destinationRef != nil {
-		logrus.Warnf("docker-archive: references are not supported for sources (ignoring)")
-	}
-	src := tarfile.NewSource(ref.path)
-	return &archiveImageSource{
-		Source: src,
-		ref:    ref,
-	}
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (s *archiveImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *archiveImageSource) Close() error {
-	return nil
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *archiveImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/docker/archive/transport.go b/vendor/github.com/containers/image/docker/archive/transport.go
deleted file mode 100644
index 047df73db9..0000000000
--- a/vendor/github.com/containers/image/docker/archive/transport.go
+++ /dev/null
@@ -1,154 +0,0 @@
-package archive
-
-import (
-	"fmt"
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	ctrImage "github.com/containers/image/image"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for local Docker archives.
-var Transport = archiveTransport{}
-
-type archiveTransport struct{}
-
-func (t archiveTransport) Name() string {
-	return "docker-archive"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t archiveTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t archiveTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// See the explanation in archiveReference.PolicyConfigurationIdentity.
-	return errors.New(`docker-archive: does not support any scopes except the default "" one`)
-}
-
-// archiveReference is an ImageReference for Docker images.
-type archiveReference struct {
-	destinationRef reference.NamedTagged // only used for destinations
-	path           string
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an Docker ImageReference.
-func ParseReference(refString string) (types.ImageReference, error) {
-	if refString == "" {
-		return nil, errors.Errorf("docker-archive reference %s isn't of the form <path>[:<reference>]", refString)
-	}
-
-	parts := strings.SplitN(refString, ":", 2)
-	path := parts[0]
-	var destinationRef reference.NamedTagged
-
-	// A :tag was specified, which is only necessary for destinations.
-	if len(parts) == 2 {
-		ref, err := reference.ParseNormalizedNamed(parts[1])
-		if err != nil {
-			return nil, errors.Wrapf(err, "docker-archive parsing reference")
-		}
-		ref = reference.TagNameOnly(ref)
-
-		if _, isDigest := ref.(reference.Canonical); isDigest {
-			return nil, errors.Errorf("docker-archive doesn't support digest references: %s", refString)
-		}
-
-		refTagged, isTagged := ref.(reference.NamedTagged)
-		if !isTagged {
-			// Really shouldn't be hit...
-			return nil, errors.Errorf("internal error: reference is not tagged even after reference.TagNameOnly: %s", refString)
-		}
-		destinationRef = refTagged
-	}
-
-	return archiveReference{
-		destinationRef: destinationRef,
-		path:           path,
-	}, nil
-}
-
-func (ref archiveReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref archiveReference) StringWithinTransport() string {
-	if ref.destinationRef == nil {
-		return ref.path
-	}
-	return fmt.Sprintf("%s:%s", ref.path, ref.destinationRef.String())
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref archiveReference) DockerReference() reference.Named {
-	return ref.destinationRef
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref archiveReference) PolicyConfigurationIdentity() string {
-	// Punt, the justification is similar to dockerReference.PolicyConfigurationIdentity.
-	return ""
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref archiveReference) PolicyConfigurationNamespaces() []string {
-	// TODO
-	return []string{}
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref archiveReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src := newImageSource(ctx, ref)
-	return ctrImage.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref archiveReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref), nil
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref archiveReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref archiveReference) DeleteImage(ctx *types.SystemContext) error {
-	// Not really supported, for safety reasons.
-	return errors.New("Deleting images not implemented for docker-archive: images")
-}
diff --git a/vendor/github.com/containers/image/docker/daemon/client.go b/vendor/github.com/containers/image/docker/daemon/client.go
deleted file mode 100644
index 82fab4b19a..0000000000
--- a/vendor/github.com/containers/image/docker/daemon/client.go
+++ /dev/null
@@ -1,69 +0,0 @@
-package daemon
-
-import (
-	"net/http"
-	"path/filepath"
-
-	"github.com/containers/image/types"
-	dockerclient "github.com/docker/docker/client"
-	"github.com/docker/go-connections/tlsconfig"
-)
-
-const (
-	// The default API version to be used in case none is explicitly specified
-	defaultAPIVersion = "1.22"
-)
-
-// NewDockerClient initializes a new API client based on the passed SystemContext.
-func newDockerClient(ctx *types.SystemContext) (*dockerclient.Client, error) {
-	host := dockerclient.DefaultDockerHost
-	if ctx != nil && ctx.DockerDaemonHost != "" {
-		host = ctx.DockerDaemonHost
-	}
-
-	// Sadly, unix:// sockets don't work transparently with dockerclient.NewClient.
-	// They work fine with a nil httpClient; with a non-nil httpClient, the transport’s
-	// TLSClientConfig must be nil (or the client will try using HTTPS over the PF_UNIX socket
-	// regardless of the values in the *tls.Config), and we would have to call sockets.ConfigureTransport.
-	//
-	// We don't really want to configure anything for unix:// sockets, so just pass a nil *http.Client.
-	proto, _, _, err := dockerclient.ParseHost(host)
-	if err != nil {
-		return nil, err
-	}
-	var httpClient *http.Client
-	if proto != "unix" {
-		hc, err := tlsConfig(ctx)
-		if err != nil {
-			return nil, err
-		}
-		httpClient = hc
-	}
-
-	return dockerclient.NewClient(host, defaultAPIVersion, httpClient, nil)
-}
-
-func tlsConfig(ctx *types.SystemContext) (*http.Client, error) {
-	options := tlsconfig.Options{}
-	if ctx != nil && ctx.DockerDaemonInsecureSkipTLSVerify {
-		options.InsecureSkipVerify = true
-	}
-
-	if ctx != nil && ctx.DockerDaemonCertPath != "" {
-		options.CAFile = filepath.Join(ctx.DockerDaemonCertPath, "ca.pem")
-		options.CertFile = filepath.Join(ctx.DockerDaemonCertPath, "cert.pem")
-		options.KeyFile = filepath.Join(ctx.DockerDaemonCertPath, "key.pem")
-	}
-
-	tlsc, err := tlsconfig.Client(options)
-	if err != nil {
-		return nil, err
-	}
-
-	return &http.Client{
-		Transport: &http.Transport{
-			TLSClientConfig: tlsc,
-		},
-		CheckRedirect: dockerclient.CheckRedirect,
-	}, nil
-}
diff --git a/vendor/github.com/containers/image/docker/daemon/daemon_dest.go b/vendor/github.com/containers/image/docker/daemon/daemon_dest.go
deleted file mode 100644
index f73ac23392..0000000000
--- a/vendor/github.com/containers/image/docker/daemon/daemon_dest.go
+++ /dev/null
@@ -1,135 +0,0 @@
-package daemon
-
-import (
-	"io"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/docker/tarfile"
-	"github.com/containers/image/types"
-	"github.com/docker/docker/client"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/net/context"
-)
-
-type daemonImageDestination struct {
-	ref                  daemonReference
-	mustMatchRuntimeOS   bool
-	*tarfile.Destination // Implements most of types.ImageDestination
-	// For talking to imageLoadGoroutine
-	goroutineCancel context.CancelFunc
-	statusChannel   <-chan error
-	writer          *io.PipeWriter
-	// Other state
-	committed bool // writer has been closed
-}
-
-// newImageDestination returns a types.ImageDestination for the specified image reference.
-func newImageDestination(ctx *types.SystemContext, ref daemonReference) (types.ImageDestination, error) {
-	if ref.ref == nil {
-		return nil, errors.Errorf("Invalid destination docker-daemon:%s: a destination must be a name:tag", ref.StringWithinTransport())
-	}
-	namedTaggedRef, ok := ref.ref.(reference.NamedTagged)
-	if !ok {
-		return nil, errors.Errorf("Invalid destination docker-daemon:%s: a destination must be a name:tag", ref.StringWithinTransport())
-	}
-
-	var mustMatchRuntimeOS = true
-	if ctx != nil && ctx.DockerDaemonHost != client.DefaultDockerHost {
-		mustMatchRuntimeOS = false
-	}
-
-	c, err := newDockerClient(ctx)
-	if err != nil {
-		return nil, errors.Wrap(err, "Error initializing docker engine client")
-	}
-
-	reader, writer := io.Pipe()
-	// Commit() may never be called, so we may never read from this channel; so, make this buffered to allow imageLoadGoroutine to write status and terminate even if we never read it.
-	statusChannel := make(chan error, 1)
-
-	goroutineContext, goroutineCancel := context.WithCancel(context.Background())
-	go imageLoadGoroutine(goroutineContext, c, reader, statusChannel)
-
-	return &daemonImageDestination{
-		ref:                ref,
-		mustMatchRuntimeOS: mustMatchRuntimeOS,
-		Destination:        tarfile.NewDestination(writer, namedTaggedRef),
-		goroutineCancel:    goroutineCancel,
-		statusChannel:      statusChannel,
-		writer:             writer,
-		committed:          false,
-	}, nil
-}
-
-// imageLoadGoroutine accepts tar stream on reader, sends it to c, and reports error or success by writing to statusChannel
-func imageLoadGoroutine(ctx context.Context, c *client.Client, reader *io.PipeReader, statusChannel chan<- error) {
-	err := errors.New("Internal error: unexpected panic in imageLoadGoroutine")
-	defer func() {
-		logrus.Debugf("docker-daemon: sending done, status %v", err)
-		statusChannel <- err
-	}()
-	defer func() {
-		if err == nil {
-			reader.Close()
-		} else {
-			reader.CloseWithError(err)
-		}
-	}()
-
-	resp, err := c.ImageLoad(ctx, reader, true)
-	if err != nil {
-		err = errors.Wrap(err, "Error saving image to docker engine")
-		return
-	}
-	defer resp.Body.Close()
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *daemonImageDestination) MustMatchRuntimeOS() bool {
-	return d.mustMatchRuntimeOS
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *daemonImageDestination) Close() error {
-	if !d.committed {
-		logrus.Debugf("docker-daemon: Closing tar stream to abort loading")
-		// In principle, goroutineCancel() should abort the HTTP request and stop the process from continuing.
-		// In practice, though, various HTTP implementations used by client.Client.ImageLoad() (including
-		// https://github.com/golang/net/blob/master/context/ctxhttp/ctxhttp_pre17.go and the
-		// net/http version with native Context support in Go 1.7) do not always actually immediately cancel
-		// the operation: they may process the HTTP request, or a part of it, to completion in a goroutine, and
-		// return early if the context is canceled without terminating the goroutine at all.
-		// So we need this CloseWithError to terminate sending the HTTP request Body
-		// immediately, and hopefully, through terminating the sending which uses "Transfer-Encoding: chunked"" without sending
-		// the terminating zero-length chunk, prevent the docker daemon from processing the tar stream at all.
-		// Whether that works or not, closing the PipeWriter seems desirable in any case.
-		d.writer.CloseWithError(errors.New("Aborting upload, daemonImageDestination closed without a previous .Commit()"))
-	}
-	d.goroutineCancel()
-
-	return nil
-}
-
-func (d *daemonImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *daemonImageDestination) Commit() error {
-	logrus.Debugf("docker-daemon: Closing tar stream")
-	if err := d.Destination.Commit(); err != nil {
-		return err
-	}
-	if err := d.writer.Close(); err != nil {
-		return err
-	}
-	d.committed = true // We may still fail, but we are done sending to imageLoadGoroutine.
-
-	logrus.Debugf("docker-daemon: Waiting for status")
-	err := <-d.statusChannel
-	return err
-}
diff --git a/vendor/github.com/containers/image/docker/daemon/daemon_src.go b/vendor/github.com/containers/image/docker/daemon/daemon_src.go
deleted file mode 100644
index 5cf7679b1c..0000000000
--- a/vendor/github.com/containers/image/docker/daemon/daemon_src.go
+++ /dev/null
@@ -1,88 +0,0 @@
-package daemon
-
-import (
-	"io"
-	"io/ioutil"
-	"os"
-
-	"github.com/containers/image/docker/tarfile"
-	"github.com/containers/image/internal/tmpdir"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-type daemonImageSource struct {
-	ref             daemonReference
-	*tarfile.Source // Implements most of types.ImageSource
-	tarCopyPath     string
-}
-
-type layerInfo struct {
-	path string
-	size int64
-}
-
-// newImageSource returns a types.ImageSource for the specified image reference.
-// The caller must call .Close() on the returned ImageSource.
-//
-// It would be great if we were able to stream the input tar as it is being
-// sent; but Docker sends the top-level manifest, which determines which paths
-// to look for, at the end, so in we will need to seek back and re-read, several times.
-// (We could, perhaps, expect an exact sequence, assume that the first plaintext file
-// is the config, and that the following len(RootFS) files are the layers, but that feels
-// way too brittle.)
-func newImageSource(ctx *types.SystemContext, ref daemonReference) (types.ImageSource, error) {
-	c, err := newDockerClient(ctx)
-	if err != nil {
-		return nil, errors.Wrap(err, "Error initializing docker engine client")
-	}
-	// Per NewReference(), ref.StringWithinTransport() is either an image ID (config digest), or a !reference.NameOnly() reference.
-	// Either way ImageSave should create a tarball with exactly one image.
-	inputStream, err := c.ImageSave(context.TODO(), []string{ref.StringWithinTransport()})
-	if err != nil {
-		return nil, errors.Wrap(err, "Error loading image from docker engine")
-	}
-	defer inputStream.Close()
-
-	// FIXME: use SystemContext here.
-	tarCopyFile, err := ioutil.TempFile(tmpdir.TemporaryDirectoryForBigFiles(), "docker-daemon-tar")
-	if err != nil {
-		return nil, err
-	}
-	defer tarCopyFile.Close()
-
-	succeeded := false
-	defer func() {
-		if !succeeded {
-			os.Remove(tarCopyFile.Name())
-		}
-	}()
-
-	if _, err := io.Copy(tarCopyFile, inputStream); err != nil {
-		return nil, err
-	}
-
-	succeeded = true
-	return &daemonImageSource{
-		ref:         ref,
-		Source:      tarfile.NewSource(tarCopyFile.Name()),
-		tarCopyPath: tarCopyFile.Name(),
-	}, nil
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (s *daemonImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *daemonImageSource) Close() error {
-	return os.Remove(s.tarCopyPath)
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *daemonImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/docker/daemon/daemon_transport.go b/vendor/github.com/containers/image/docker/daemon/daemon_transport.go
deleted file mode 100644
index 8ad6b521ff..0000000000
--- a/vendor/github.com/containers/image/docker/daemon/daemon_transport.go
+++ /dev/null
@@ -1,185 +0,0 @@
-package daemon
-
-import (
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for images managed by a local Docker daemon.
-var Transport = daemonTransport{}
-
-type daemonTransport struct{}
-
-// Name returns the name of the transport, which must be unique among other transports.
-func (t daemonTransport) Name() string {
-	return "docker-daemon"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t daemonTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t daemonTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// See the explanation in daemonReference.PolicyConfigurationIdentity.
-	return errors.New(`docker-daemon: does not support any scopes except the default "" one`)
-}
-
-// daemonReference is an ImageReference for images managed by a local Docker daemon
-// Exactly one of id and ref can be set.
-// For daemonImageSource, both id and ref are acceptable, ref must not be a NameOnly (interpreted as all tags in that repository by the daemon)
-// For daemonImageDestination, it must be a ref, which is NamedTagged.
-// (We could, in principle, also allow storing images without tagging them, and the user would have to refer to them using the docker image ID = config digest.
-//  Using the config digest requires the caller to parse the manifest themselves, which is very cumbersome; so, for now, we don’t bother.)
-type daemonReference struct {
-	id  digest.Digest
-	ref reference.Named // !reference.IsNameOnly
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func ParseReference(refString string) (types.ImageReference, error) {
-	// This is intended to be compatible with reference.ParseAnyReference, but more strict about refusing some of the ambiguous cases.
-	// In particular, this rejects unprefixed digest values (64 hex chars), and sha256 digest prefixes (sha256:fewer-than-64-hex-chars).
-
-	// digest:hexstring is structurally the same as a reponame:tag (meaning docker.io/library/reponame:tag).
-	// reference.ParseAnyReference interprets such strings as digests.
-	if dgst, err := digest.Parse(refString); err == nil {
-		// The daemon explicitly refuses to tag images with a reponame equal to digest.Canonical - but _only_ this digest name.
-		// Other digest references are ambiguous, so refuse them.
-		if dgst.Algorithm() != digest.Canonical {
-			return nil, errors.Errorf("Invalid docker-daemon: reference %s: only digest algorithm %s accepted", refString, digest.Canonical)
-		}
-		return NewReference(dgst, nil)
-	}
-
-	ref, err := reference.ParseNormalizedNamed(refString) // This also rejects unprefixed digest values
-	if err != nil {
-		return nil, err
-	}
-	if reference.FamiliarName(ref) == digest.Canonical.String() {
-		return nil, errors.Errorf("Invalid docker-daemon: reference %s: The %s repository name is reserved for (non-shortened) digest references", refString, digest.Canonical)
-	}
-	return NewReference("", ref)
-}
-
-// NewReference returns a docker-daemon reference for either the supplied image ID (config digest) or the supplied reference (which must satisfy !reference.IsNameOnly)
-func NewReference(id digest.Digest, ref reference.Named) (types.ImageReference, error) {
-	if id != "" && ref != nil {
-		return nil, errors.New("docker-daemon: reference must not have an image ID and a reference string specified at the same time")
-	}
-	if ref != nil {
-		if reference.IsNameOnly(ref) {
-			return nil, errors.Errorf("docker-daemon: reference %s has neither a tag nor a digest", reference.FamiliarString(ref))
-		}
-		// A github.com/distribution/reference value can have a tag and a digest at the same time!
-		// Most versions of docker/reference do not handle that (ignoring the tag), so reject such input.
-		// This MAY be accepted in the future.
-		_, isTagged := ref.(reference.NamedTagged)
-		_, isDigested := ref.(reference.Canonical)
-		if isTagged && isDigested {
-			return nil, errors.Errorf("docker-daemon: references with both a tag and digest are currently not supported")
-		}
-	}
-	return daemonReference{
-		id:  id,
-		ref: ref,
-	}, nil
-}
-
-func (ref daemonReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix;
-// instead, see transports.ImageName().
-func (ref daemonReference) StringWithinTransport() string {
-	switch {
-	case ref.id != "":
-		return ref.id.String()
-	case ref.ref != nil:
-		return reference.FamiliarString(ref.ref)
-	default: // Coverage: Should never happen, NewReference above should refuse such values.
-		panic("Internal inconsistency: daemonReference has empty id and nil ref")
-	}
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref daemonReference) DockerReference() reference.Named {
-	return ref.ref // May be nil
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref daemonReference) PolicyConfigurationIdentity() string {
-	// We must allow referring to images in the daemon by image ID, otherwise untagged images would not be accessible.
-	// But the existence of image IDs means that we can’t truly well namespace the input; the untagged images would have to fall into the default policy,
-	// which can be unexpected.  So, punt.
-	return "" // This still allows using the default "" scope to define a policy for this transport.
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref daemonReference) PolicyConfigurationNamespaces() []string {
-	// See the explanation in daemonReference.PolicyConfigurationIdentity.
-	return []string{}
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref daemonReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src, err := newImageSource(ctx, ref)
-	if err != nil {
-		return nil, err
-	}
-	return image.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref daemonReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref daemonReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref daemonReference) DeleteImage(ctx *types.SystemContext) error {
-	// Should this just untag the image? Should this stop running containers?
-	// The semantics is not quite as clear as for remote repositories.
-	// The user can run (docker rmi) directly anyway, so, for now(?), punt instead of trying to guess what the user meant.
-	return errors.Errorf("Deleting images not implemented for docker-daemon: images")
-}
diff --git a/vendor/github.com/containers/image/docker/docker_client.go b/vendor/github.com/containers/image/docker/docker_client.go
deleted file mode 100644
index 91006e8d24..0000000000
--- a/vendor/github.com/containers/image/docker/docker_client.go
+++ /dev/null
@@ -1,439 +0,0 @@
-package docker
-
-import (
-	"context"
-	"crypto/tls"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"path/filepath"
-	"strings"
-	"time"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/pkg/docker/config"
-	"github.com/containers/image/pkg/tlsclientconfig"
-	"github.com/containers/image/types"
-	"github.com/docker/distribution/registry/client"
-	"github.com/docker/go-connections/tlsconfig"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-const (
-	dockerHostname = "docker.io"
-	dockerRegistry = "registry-1.docker.io"
-
-	systemPerHostCertDirPath = "/etc/docker/certs.d"
-
-	resolvedPingV2URL       = "%s://%s/v2/"
-	resolvedPingV1URL       = "%s://%s/v1/_ping"
-	tagsPath                = "/v2/%s/tags/list"
-	manifestPath            = "/v2/%s/manifests/%s"
-	blobsPath               = "/v2/%s/blobs/%s"
-	blobUploadPath          = "/v2/%s/blobs/uploads/"
-	extensionsSignaturePath = "/extensions/v2/%s/signatures/%s"
-
-	minimumTokenLifetimeSeconds = 60
-
-	extensionSignatureSchemaVersion = 2        // extensionSignature.Version
-	extensionSignatureTypeAtomic    = "atomic" // extensionSignature.Type
-)
-
-var (
-	// ErrV1NotSupported is returned when we're trying to talk to a
-	// docker V1 registry.
-	ErrV1NotSupported = errors.New("can't talk to a V1 docker registry")
-	// ErrUnauthorizedForCredentials is returned when the status code returned is 401
-	ErrUnauthorizedForCredentials = errors.New("unable to retrieve auth token: invalid username/password")
-)
-
-// extensionSignature and extensionSignatureList come from github.com/openshift/origin/pkg/dockerregistry/server/signaturedispatcher.go:
-// signature represents a Docker image signature.
-type extensionSignature struct {
-	Version int    `json:"schemaVersion"` // Version specifies the schema version
-	Name    string `json:"name"`          // Name must be in "sha256:<digest>@signatureName" format
-	Type    string `json:"type"`          // Type is optional, of not set it will be defaulted to "AtomicImageV1"
-	Content []byte `json:"content"`       // Content contains the signature
-}
-
-// signatureList represents list of Docker image signatures.
-type extensionSignatureList struct {
-	Signatures []extensionSignature `json:"signatures"`
-}
-
-type bearerToken struct {
-	Token       string    `json:"token"`
-	AccessToken string    `json:"access_token"`
-	ExpiresIn   int       `json:"expires_in"`
-	IssuedAt    time.Time `json:"issued_at"`
-}
-
-// dockerClient is configuration for dealing with a single Docker registry.
-type dockerClient struct {
-	// The following members are set by newDockerClient and do not change afterwards.
-	ctx           *types.SystemContext
-	registry      string
-	username      string
-	password      string
-	client        *http.Client
-	signatureBase signatureStorageBase
-	scope         authScope
-	// The following members are detected registry properties:
-	// They are set after a successful detectProperties(), and never change afterwards.
-	scheme             string // Empty value also used to indicate detectProperties() has not yet succeeded.
-	challenges         []challenge
-	supportsSignatures bool
-	// The following members are private state for setupRequestAuth, both are valid if token != nil.
-	token           *bearerToken
-	tokenExpiration time.Time
-}
-
-type authScope struct {
-	remoteName string
-	actions    string
-}
-
-func newBearerTokenFromJSONBlob(blob []byte) (*bearerToken, error) {
-	token := new(bearerToken)
-	if err := json.Unmarshal(blob, &token); err != nil {
-		return nil, err
-	}
-	if token.Token == "" {
-		token.Token = token.AccessToken
-	}
-	if token.ExpiresIn < minimumTokenLifetimeSeconds {
-		token.ExpiresIn = minimumTokenLifetimeSeconds
-		logrus.Debugf("Increasing token expiration to: %d seconds", token.ExpiresIn)
-	}
-	if token.IssuedAt.IsZero() {
-		token.IssuedAt = time.Now().UTC()
-	}
-	return token, nil
-}
-
-// this is cloned from docker/go-connections because upstream docker has changed
-// it and make deps here fails otherwise.
-// We'll drop this once we upgrade to docker 1.13.x deps.
-func serverDefault() *tls.Config {
-	return &tls.Config{
-		// Avoid fallback to SSL protocols < TLS1.0
-		MinVersion:               tls.VersionTLS10,
-		PreferServerCipherSuites: true,
-		CipherSuites:             tlsconfig.DefaultServerAcceptedCiphers,
-	}
-}
-
-// dockerCertDir returns a path to a directory to be consumed by tlsclientconfig.SetupCertificates() depending on ctx and hostPort.
-func dockerCertDir(ctx *types.SystemContext, hostPort string) string {
-	if ctx != nil && ctx.DockerCertPath != "" {
-		return ctx.DockerCertPath
-	}
-	var hostCertDir string
-	if ctx != nil && ctx.DockerPerHostCertDirPath != "" {
-		hostCertDir = ctx.DockerPerHostCertDirPath
-	} else if ctx != nil && ctx.RootForImplicitAbsolutePaths != "" {
-		hostCertDir = filepath.Join(ctx.RootForImplicitAbsolutePaths, systemPerHostCertDirPath)
-	} else {
-		hostCertDir = systemPerHostCertDirPath
-	}
-	return filepath.Join(hostCertDir, hostPort)
-}
-
-// newDockerClientFromRef returns a new dockerClient instance for refHostname (a host a specified in the Docker image reference, not canonicalized to dockerRegistry)
-// “write” specifies whether the client will be used for "write" access (in particular passed to lookaside.go:toplevelFromSection)
-func newDockerClientFromRef(ctx *types.SystemContext, ref dockerReference, write bool, actions string) (*dockerClient, error) {
-	registry := reference.Domain(ref.ref)
-	username, password, err := config.GetAuthentication(ctx, reference.Domain(ref.ref))
-	if err != nil {
-		return nil, errors.Wrapf(err, "error getting username and password")
-	}
-	sigBase, err := configuredSignatureStorageBase(ctx, ref, write)
-	if err != nil {
-		return nil, err
-	}
-	remoteName := reference.Path(ref.ref)
-
-	return newDockerClientWithDetails(ctx, registry, username, password, actions, sigBase, remoteName)
-}
-
-// newDockerClientWithDetails returns a new dockerClient instance for the given parameters
-func newDockerClientWithDetails(ctx *types.SystemContext, registry, username, password, actions string, sigBase signatureStorageBase, remoteName string) (*dockerClient, error) {
-	hostName := registry
-	if registry == dockerHostname {
-		registry = dockerRegistry
-	}
-	tr := tlsclientconfig.NewTransport()
-	tr.TLSClientConfig = serverDefault()
-
-	// It is undefined whether the host[:port] string for dockerHostname should be dockerHostname or dockerRegistry,
-	// because docker/docker does not read the certs.d subdirectory at all in that case.  We use the user-visible
-	// dockerHostname here, because it is more symmetrical to read the configuration in that case as well, and because
-	// generally the UI hides the existence of the different dockerRegistry.  But note that this behavior is
-	// undocumented and may change if docker/docker changes.
-	certDir := dockerCertDir(ctx, hostName)
-	if err := tlsclientconfig.SetupCertificates(certDir, tr.TLSClientConfig); err != nil {
-		return nil, err
-	}
-
-	if ctx != nil && ctx.DockerInsecureSkipTLSVerify {
-		tr.TLSClientConfig.InsecureSkipVerify = true
-	}
-
-	return &dockerClient{
-		ctx:           ctx,
-		registry:      registry,
-		username:      username,
-		password:      password,
-		client:        &http.Client{Transport: tr},
-		signatureBase: sigBase,
-		scope: authScope{
-			actions:    actions,
-			remoteName: remoteName,
-		},
-	}, nil
-}
-
-// CheckAuth validates the credentials by attempting to log into the registry
-// returns an error if an error occcured while making the http request or the status code received was 401
-func CheckAuth(ctx context.Context, sCtx *types.SystemContext, username, password, registry string) error {
-	newLoginClient, err := newDockerClientWithDetails(sCtx, registry, username, password, "", nil, "")
-	if err != nil {
-		return errors.Wrapf(err, "error creating new docker client")
-	}
-
-	resp, err := newLoginClient.makeRequest(ctx, "GET", "/v2/", nil, nil)
-	if err != nil {
-		return err
-	}
-	defer resp.Body.Close()
-
-	switch resp.StatusCode {
-	case http.StatusOK:
-		return nil
-	case http.StatusUnauthorized:
-		return ErrUnauthorizedForCredentials
-	default:
-		return errors.Errorf("error occured with status code %q", resp.StatusCode)
-	}
-}
-
-// makeRequest creates and executes a http.Request with the specified parameters, adding authentication and TLS options for the Docker client.
-// The host name and schema is taken from the client or autodetected, and the path is relative to it, i.e. the path usually starts with /v2/.
-func (c *dockerClient) makeRequest(ctx context.Context, method, path string, headers map[string][]string, stream io.Reader) (*http.Response, error) {
-	if err := c.detectProperties(ctx); err != nil {
-		return nil, err
-	}
-
-	url := fmt.Sprintf("%s://%s%s", c.scheme, c.registry, path)
-	return c.makeRequestToResolvedURL(ctx, method, url, headers, stream, -1, true)
-}
-
-// makeRequestToResolvedURL creates and executes a http.Request with the specified parameters, adding authentication and TLS options for the Docker client.
-// streamLen, if not -1, specifies the length of the data expected on stream.
-// makeRequest should generally be preferred.
-// TODO(runcom): too many arguments here, use a struct
-func (c *dockerClient) makeRequestToResolvedURL(ctx context.Context, method, url string, headers map[string][]string, stream io.Reader, streamLen int64, sendAuth bool) (*http.Response, error) {
-	req, err := http.NewRequest(method, url, stream)
-	if err != nil {
-		return nil, err
-	}
-	req = req.WithContext(ctx)
-	if streamLen != -1 { // Do not blindly overwrite if streamLen == -1, http.NewRequest above can figure out the length of bytes.Reader and similar objects without us having to compute it.
-		req.ContentLength = streamLen
-	}
-	req.Header.Set("Docker-Distribution-API-Version", "registry/2.0")
-	for n, h := range headers {
-		for _, hh := range h {
-			req.Header.Add(n, hh)
-		}
-	}
-	if c.ctx != nil && c.ctx.DockerRegistryUserAgent != "" {
-		req.Header.Add("User-Agent", c.ctx.DockerRegistryUserAgent)
-	}
-	if sendAuth {
-		if err := c.setupRequestAuth(req); err != nil {
-			return nil, err
-		}
-	}
-	logrus.Debugf("%s %s", method, url)
-	res, err := c.client.Do(req)
-	if err != nil {
-		return nil, err
-	}
-	return res, nil
-}
-
-// we're using the challenges from the /v2/ ping response and not the one from the destination
-// URL in this request because:
-//
-// 1) docker does that as well
-// 2) gcr.io is sending 401 without a WWW-Authenticate header in the real request
-//
-// debugging: https://github.com/containers/image/pull/211#issuecomment-273426236 and follows up
-func (c *dockerClient) setupRequestAuth(req *http.Request) error {
-	if len(c.challenges) == 0 {
-		return nil
-	}
-	schemeNames := make([]string, 0, len(c.challenges))
-	for _, challenge := range c.challenges {
-		schemeNames = append(schemeNames, challenge.Scheme)
-		switch challenge.Scheme {
-		case "basic":
-			req.SetBasicAuth(c.username, c.password)
-			return nil
-		case "bearer":
-			if c.token == nil || time.Now().After(c.tokenExpiration) {
-				realm, ok := challenge.Parameters["realm"]
-				if !ok {
-					return errors.Errorf("missing realm in bearer auth challenge")
-				}
-				service, _ := challenge.Parameters["service"] // Will be "" if not present
-				var scope string
-				if c.scope.remoteName != "" && c.scope.actions != "" {
-					scope = fmt.Sprintf("repository:%s:%s", c.scope.remoteName, c.scope.actions)
-				}
-				token, err := c.getBearerToken(req.Context(), realm, service, scope)
-				if err != nil {
-					return err
-				}
-				c.token = token
-				c.tokenExpiration = token.IssuedAt.Add(time.Duration(token.ExpiresIn) * time.Second)
-			}
-			req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", c.token.Token))
-			return nil
-		default:
-			logrus.Debugf("no handler for %s authentication", challenge.Scheme)
-		}
-	}
-	logrus.Infof("None of the challenges sent by server (%s) are supported, trying an unauthenticated request anyway", strings.Join(schemeNames, ", "))
-	return nil
-}
-
-func (c *dockerClient) getBearerToken(ctx context.Context, realm, service, scope string) (*bearerToken, error) {
-	authReq, err := http.NewRequest("GET", realm, nil)
-	if err != nil {
-		return nil, err
-	}
-	authReq = authReq.WithContext(ctx)
-	getParams := authReq.URL.Query()
-	if service != "" {
-		getParams.Add("service", service)
-	}
-	if scope != "" {
-		getParams.Add("scope", scope)
-	}
-	authReq.URL.RawQuery = getParams.Encode()
-	if c.username != "" && c.password != "" {
-		authReq.SetBasicAuth(c.username, c.password)
-	}
-	tr := tlsclientconfig.NewTransport()
-	// TODO(runcom): insecure for now to contact the external token service
-	tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
-	client := &http.Client{Transport: tr}
-	res, err := client.Do(authReq)
-	if err != nil {
-		return nil, err
-	}
-	defer res.Body.Close()
-	switch res.StatusCode {
-	case http.StatusUnauthorized:
-		return nil, ErrUnauthorizedForCredentials
-	case http.StatusOK:
-		break
-	default:
-		return nil, errors.Errorf("unexpected http code: %d, URL: %s", res.StatusCode, authReq.URL)
-	}
-	tokenBlob, err := ioutil.ReadAll(res.Body)
-	if err != nil {
-		return nil, err
-	}
-
-	return newBearerTokenFromJSONBlob(tokenBlob)
-}
-
-// detectProperties detects various properties of the registry.
-// See the dockerClient documentation for members which are affected by this.
-func (c *dockerClient) detectProperties(ctx context.Context) error {
-	if c.scheme != "" {
-		return nil
-	}
-
-	ping := func(scheme string) error {
-		url := fmt.Sprintf(resolvedPingV2URL, scheme, c.registry)
-		resp, err := c.makeRequestToResolvedURL(ctx, "GET", url, nil, nil, -1, true)
-		logrus.Debugf("Ping %s err %#v", url, err)
-		if err != nil {
-			return err
-		}
-		defer resp.Body.Close()
-		logrus.Debugf("Ping %s status %d", url, resp.StatusCode)
-		if resp.StatusCode != http.StatusOK && resp.StatusCode != http.StatusUnauthorized {
-			return errors.Errorf("error pinging repository, response code %d", resp.StatusCode)
-		}
-		c.challenges = parseAuthHeader(resp.Header)
-		c.scheme = scheme
-		c.supportsSignatures = resp.Header.Get("X-Registry-Supports-Signatures") == "1"
-		return nil
-	}
-	err := ping("https")
-	if err != nil && c.ctx != nil && c.ctx.DockerInsecureSkipTLSVerify {
-		err = ping("http")
-	}
-	if err != nil {
-		err = errors.Wrap(err, "pinging docker registry returned")
-		if c.ctx != nil && c.ctx.DockerDisableV1Ping {
-			return err
-		}
-		// best effort to understand if we're talking to a V1 registry
-		pingV1 := func(scheme string) bool {
-			url := fmt.Sprintf(resolvedPingV1URL, scheme, c.registry)
-			resp, err := c.makeRequestToResolvedURL(ctx, "GET", url, nil, nil, -1, true)
-			logrus.Debugf("Ping %s err %#v", url, err)
-			if err != nil {
-				return false
-			}
-			defer resp.Body.Close()
-			logrus.Debugf("Ping %s status %d", url, resp.StatusCode)
-			if resp.StatusCode != http.StatusOK && resp.StatusCode != http.StatusUnauthorized {
-				return false
-			}
-			return true
-		}
-		isV1 := pingV1("https")
-		if !isV1 && c.ctx != nil && c.ctx.DockerInsecureSkipTLSVerify {
-			isV1 = pingV1("http")
-		}
-		if isV1 {
-			err = ErrV1NotSupported
-		}
-	}
-	return err
-}
-
-// getExtensionsSignatures returns signatures from the X-Registry-Supports-Signatures API extension,
-// using the original data structures.
-func (c *dockerClient) getExtensionsSignatures(ctx context.Context, ref dockerReference, manifestDigest digest.Digest) (*extensionSignatureList, error) {
-	path := fmt.Sprintf(extensionsSignaturePath, reference.Path(ref.ref), manifestDigest)
-	res, err := c.makeRequest(ctx, "GET", path, nil, nil)
-	if err != nil {
-		return nil, err
-	}
-	defer res.Body.Close()
-	if res.StatusCode != http.StatusOK {
-		return nil, client.HandleErrorResponse(res)
-	}
-	body, err := ioutil.ReadAll(res.Body)
-	if err != nil {
-		return nil, err
-	}
-
-	var parsedBody extensionSignatureList
-	if err := json.Unmarshal(body, &parsedBody); err != nil {
-		return nil, errors.Wrapf(err, "Error decoding signature list")
-	}
-	return &parsedBody, nil
-}
diff --git a/vendor/github.com/containers/image/docker/docker_image.go b/vendor/github.com/containers/image/docker/docker_image.go
deleted file mode 100644
index 2148ed8bab..0000000000
--- a/vendor/github.com/containers/image/docker/docker_image.go
+++ /dev/null
@@ -1,63 +0,0 @@
-package docker
-
-import (
-	"context"
-	"encoding/json"
-	"fmt"
-	"net/http"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-// Image is a Docker-specific implementation of types.ImageCloser with a few extra methods
-// which are specific to Docker.
-type Image struct {
-	types.ImageCloser
-	src *dockerImageSource
-}
-
-// newImage returns a new Image interface type after setting up
-// a client to the registry hosting the given image.
-// The caller must call .Close() on the returned Image.
-func newImage(ctx *types.SystemContext, ref dockerReference) (types.ImageCloser, error) {
-	s, err := newImageSource(ctx, ref)
-	if err != nil {
-		return nil, err
-	}
-	img, err := image.FromSource(ctx, s)
-	if err != nil {
-		return nil, err
-	}
-	return &Image{ImageCloser: img, src: s}, nil
-}
-
-// SourceRefFullName returns a fully expanded name for the repository this image is in.
-func (i *Image) SourceRefFullName() string {
-	return i.src.ref.ref.Name()
-}
-
-// GetRepositoryTags list all tags available in the repository. Note that this has no connection with the tag(s) used for this specific image, if any.
-func (i *Image) GetRepositoryTags() ([]string, error) {
-	path := fmt.Sprintf(tagsPath, reference.Path(i.src.ref.ref))
-	// FIXME: Pass the context.Context
-	res, err := i.src.c.makeRequest(context.TODO(), "GET", path, nil, nil)
-	if err != nil {
-		return nil, err
-	}
-	defer res.Body.Close()
-	if res.StatusCode != http.StatusOK {
-		// print url also
-		return nil, errors.Errorf("Invalid status code returned when fetching tags list %d", res.StatusCode)
-	}
-	type tagsRes struct {
-		Tags []string
-	}
-	tags := &tagsRes{}
-	if err := json.NewDecoder(res.Body).Decode(tags); err != nil {
-		return nil, err
-	}
-	return tags.Tags, nil
-}
diff --git a/vendor/github.com/containers/image/docker/docker_image_dest.go b/vendor/github.com/containers/image/docker/docker_image_dest.go
deleted file mode 100644
index 9a6c351378..0000000000
--- a/vendor/github.com/containers/image/docker/docker_image_dest.go
+++ /dev/null
@@ -1,463 +0,0 @@
-package docker
-
-import (
-	"bytes"
-	"context"
-	"crypto/rand"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"net/url"
-	"os"
-	"path/filepath"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/docker/distribution/registry/api/errcode"
-	"github.com/docker/distribution/registry/api/v2"
-	"github.com/docker/distribution/registry/client"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-type dockerImageDestination struct {
-	ref dockerReference
-	c   *dockerClient
-	// State
-	manifestDigest digest.Digest // or "" if not yet known.
-}
-
-// newImageDestination creates a new ImageDestination for the specified image reference.
-func newImageDestination(ctx *types.SystemContext, ref dockerReference) (types.ImageDestination, error) {
-	c, err := newDockerClientFromRef(ctx, ref, true, "pull,push")
-	if err != nil {
-		return nil, err
-	}
-	return &dockerImageDestination{
-		ref: ref,
-		c:   c,
-	}, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *dockerImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *dockerImageDestination) Close() error {
-	return nil
-}
-
-func (d *dockerImageDestination) SupportedManifestMIMETypes() []string {
-	return []string{
-		imgspecv1.MediaTypeImageManifest,
-		manifest.DockerV2Schema2MediaType,
-		manifest.DockerV2Schema1SignedMediaType,
-		manifest.DockerV2Schema1MediaType,
-	}
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *dockerImageDestination) SupportsSignatures() error {
-	if err := d.c.detectProperties(context.TODO()); err != nil {
-		return err
-	}
-	switch {
-	case d.c.signatureBase != nil:
-		return nil
-	case d.c.supportsSignatures:
-		return nil
-	default:
-		return errors.Errorf("X-Registry-Supports-Signatures extension not supported, and lookaside is not configured")
-	}
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *dockerImageDestination) ShouldCompressLayers() bool {
-	return true
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *dockerImageDestination) AcceptsForeignLayerURLs() bool {
-	return true
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *dockerImageDestination) MustMatchRuntimeOS() bool {
-	return false
-}
-
-// sizeCounter is an io.Writer which only counts the total size of its input.
-type sizeCounter struct{ size int64 }
-
-func (c *sizeCounter) Write(p []byte) (n int, err error) {
-	c.size += int64(len(p))
-	return len(p), nil
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-// to any other readers for download using the supplied digest.
-// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-func (d *dockerImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	if inputInfo.Digest.String() != "" {
-		haveBlob, size, err := d.HasBlob(inputInfo)
-		if err != nil {
-			return types.BlobInfo{}, err
-		}
-		if haveBlob {
-			return types.BlobInfo{Digest: inputInfo.Digest, Size: size}, nil
-		}
-	}
-
-	// FIXME? Chunked upload, progress reporting, etc.
-	uploadPath := fmt.Sprintf(blobUploadPath, reference.Path(d.ref.ref))
-	logrus.Debugf("Uploading %s", uploadPath)
-	res, err := d.c.makeRequest(context.TODO(), "POST", uploadPath, nil, nil)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	defer res.Body.Close()
-	if res.StatusCode != http.StatusAccepted {
-		logrus.Debugf("Error initiating layer upload, response %#v", *res)
-		return types.BlobInfo{}, errors.Wrapf(client.HandleErrorResponse(res), "Error initiating layer upload to %s", uploadPath)
-	}
-	uploadLocation, err := res.Location()
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrap(err, "Error determining upload URL")
-	}
-
-	digester := digest.Canonical.Digester()
-	sizeCounter := &sizeCounter{}
-	tee := io.TeeReader(stream, io.MultiWriter(digester.Hash(), sizeCounter))
-	res, err = d.c.makeRequestToResolvedURL(context.TODO(), "PATCH", uploadLocation.String(), map[string][]string{"Content-Type": {"application/octet-stream"}}, tee, inputInfo.Size, true)
-	if err != nil {
-		logrus.Debugf("Error uploading layer chunked, response %#v", res)
-		return types.BlobInfo{}, err
-	}
-	defer res.Body.Close()
-	computedDigest := digester.Digest()
-
-	uploadLocation, err = res.Location()
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrap(err, "Error determining upload URL")
-	}
-
-	// FIXME: DELETE uploadLocation on failure
-
-	locationQuery := uploadLocation.Query()
-	// TODO: check inputInfo.Digest == computedDigest https://github.com/containers/image/pull/70#discussion_r77646717
-	locationQuery.Set("digest", computedDigest.String())
-	uploadLocation.RawQuery = locationQuery.Encode()
-	res, err = d.c.makeRequestToResolvedURL(context.TODO(), "PUT", uploadLocation.String(), map[string][]string{"Content-Type": {"application/octet-stream"}}, nil, -1, true)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	defer res.Body.Close()
-	if res.StatusCode != http.StatusCreated {
-		logrus.Debugf("Error uploading layer, response %#v", *res)
-		return types.BlobInfo{}, errors.Wrapf(client.HandleErrorResponse(res), "Error uploading layer to %s", uploadLocation)
-	}
-
-	logrus.Debugf("Upload of layer %s complete", computedDigest)
-	return types.BlobInfo{Digest: computedDigest, Size: sizeCounter.size}, nil
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob.
-// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-// it returns a non-nil error only on an unexpected failure.
-func (d *dockerImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	if info.Digest == "" {
-		return false, -1, errors.Errorf(`"Can not check for a blob with unknown digest`)
-	}
-	checkPath := fmt.Sprintf(blobsPath, reference.Path(d.ref.ref), info.Digest.String())
-
-	logrus.Debugf("Checking %s", checkPath)
-	res, err := d.c.makeRequest(context.TODO(), "HEAD", checkPath, nil, nil)
-	if err != nil {
-		return false, -1, err
-	}
-	defer res.Body.Close()
-	switch res.StatusCode {
-	case http.StatusOK:
-		logrus.Debugf("... already exists")
-		return true, getBlobSize(res), nil
-	case http.StatusUnauthorized:
-		logrus.Debugf("... not authorized")
-		return false, -1, errors.Errorf("not authorized to read from destination repository %s", reference.Path(d.ref.ref))
-	case http.StatusNotFound:
-		logrus.Debugf("... not present")
-		return false, -1, nil
-	default:
-		return false, -1, errors.Errorf("failed to read from destination repository %s: %v", reference.Path(d.ref.ref), http.StatusText(res.StatusCode))
-	}
-}
-
-func (d *dockerImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return info, nil
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *dockerImageDestination) PutManifest(m []byte) error {
-	digest, err := manifest.Digest(m)
-	if err != nil {
-		return err
-	}
-	d.manifestDigest = digest
-
-	refTail, err := d.ref.tagOrDigest()
-	if err != nil {
-		return err
-	}
-	path := fmt.Sprintf(manifestPath, reference.Path(d.ref.ref), refTail)
-
-	headers := map[string][]string{}
-	mimeType := manifest.GuessMIMEType(m)
-	if mimeType != "" {
-		headers["Content-Type"] = []string{mimeType}
-	}
-	res, err := d.c.makeRequest(context.TODO(), "PUT", path, headers, bytes.NewReader(m))
-	if err != nil {
-		return err
-	}
-	defer res.Body.Close()
-	if !successStatus(res.StatusCode) {
-		err = errors.Wrapf(client.HandleErrorResponse(res), "Error uploading manifest to %s", path)
-		if isManifestInvalidError(errors.Cause(err)) {
-			err = types.ManifestTypeRejectedError{Err: err}
-		}
-		return err
-	}
-	return nil
-}
-
-// successStatus returns true if the argument is a successful HTTP response
-// code (in the range 200 - 399 inclusive).
-func successStatus(status int) bool {
-	return status >= 200 && status <= 399
-}
-
-// isManifestInvalidError returns true iff err from client.HandleErrorReponse is a “manifest invalid” error.
-func isManifestInvalidError(err error) bool {
-	errors, ok := err.(errcode.Errors)
-	if !ok || len(errors) == 0 {
-		return false
-	}
-	ec, ok := errors[0].(errcode.ErrorCoder)
-	if !ok {
-		return false
-	}
-	// ErrorCodeManifestInvalid is returned by OpenShift with acceptschema2=false.
-	// ErrorCodeTagInvalid is returned by docker/distribution (at least as of commit ec87e9b6971d831f0eff752ddb54fb64693e51cd)
-	// when uploading to a tag (because it can’t find a matching tag inside the manifest)
-	return ec.ErrorCode() == v2.ErrorCodeManifestInvalid || ec.ErrorCode() == v2.ErrorCodeTagInvalid
-}
-
-func (d *dockerImageDestination) PutSignatures(signatures [][]byte) error {
-	// Do not fail if we don’t really need to support signatures.
-	if len(signatures) == 0 {
-		return nil
-	}
-	if err := d.c.detectProperties(context.TODO()); err != nil {
-		return err
-	}
-	switch {
-	case d.c.signatureBase != nil:
-		return d.putSignaturesToLookaside(signatures)
-	case d.c.supportsSignatures:
-		return d.putSignaturesToAPIExtension(signatures)
-	default:
-		return errors.Errorf("X-Registry-Supports-Signatures extension not supported, and lookaside is not configured")
-	}
-}
-
-// putSignaturesToLookaside implements PutSignatures() from the lookaside location configured in s.c.signatureBase,
-// which is not nil.
-func (d *dockerImageDestination) putSignaturesToLookaside(signatures [][]byte) error {
-	// FIXME? This overwrites files one at a time, definitely not atomic.
-	// A failure when updating signatures with a reordered copy could lose some of them.
-
-	// Skip dealing with the manifest digest if not necessary.
-	if len(signatures) == 0 {
-		return nil
-	}
-
-	if d.manifestDigest.String() == "" {
-		// This shouldn’t happen, ImageDestination users are required to call PutManifest before PutSignatures
-		return errors.Errorf("Unknown manifest digest, can't add signatures")
-	}
-
-	// NOTE: Keep this in sync with docs/signature-protocols.md!
-	for i, signature := range signatures {
-		url := signatureStorageURL(d.c.signatureBase, d.manifestDigest, i)
-		if url == nil {
-			return errors.Errorf("Internal error: signatureStorageURL with non-nil base returned nil")
-		}
-		err := d.putOneSignature(url, signature)
-		if err != nil {
-			return err
-		}
-	}
-	// Remove any other signatures, if present.
-	// We stop at the first missing signature; if a previous deleting loop aborted
-	// prematurely, this may not clean up all of them, but one missing signature
-	// is enough for dockerImageSource to stop looking for other signatures, so that
-	// is sufficient.
-	for i := len(signatures); ; i++ {
-		url := signatureStorageURL(d.c.signatureBase, d.manifestDigest, i)
-		if url == nil {
-			return errors.Errorf("Internal error: signatureStorageURL with non-nil base returned nil")
-		}
-		missing, err := d.c.deleteOneSignature(url)
-		if err != nil {
-			return err
-		}
-		if missing {
-			break
-		}
-	}
-
-	return nil
-}
-
-// putOneSignature stores one signature to url.
-// NOTE: Keep this in sync with docs/signature-protocols.md!
-func (d *dockerImageDestination) putOneSignature(url *url.URL, signature []byte) error {
-	switch url.Scheme {
-	case "file":
-		logrus.Debugf("Writing to %s", url.Path)
-		err := os.MkdirAll(filepath.Dir(url.Path), 0755)
-		if err != nil {
-			return err
-		}
-		err = ioutil.WriteFile(url.Path, signature, 0644)
-		if err != nil {
-			return err
-		}
-		return nil
-
-	case "http", "https":
-		return errors.Errorf("Writing directly to a %s sigstore %s is not supported. Configure a sigstore-staging: location", url.Scheme, url.String())
-	default:
-		return errors.Errorf("Unsupported scheme when writing signature to %s", url.String())
-	}
-}
-
-// deleteOneSignature deletes a signature from url, if it exists.
-// If it successfully determines that the signature does not exist, returns (true, nil)
-// NOTE: Keep this in sync with docs/signature-protocols.md!
-func (c *dockerClient) deleteOneSignature(url *url.URL) (missing bool, err error) {
-	switch url.Scheme {
-	case "file":
-		logrus.Debugf("Deleting %s", url.Path)
-		err := os.Remove(url.Path)
-		if err != nil && os.IsNotExist(err) {
-			return true, nil
-		}
-		return false, err
-
-	case "http", "https":
-		return false, errors.Errorf("Writing directly to a %s sigstore %s is not supported. Configure a sigstore-staging: location", url.Scheme, url.String())
-	default:
-		return false, errors.Errorf("Unsupported scheme when deleting signature from %s", url.String())
-	}
-}
-
-// putSignaturesToAPIExtension implements PutSignatures() using the X-Registry-Supports-Signatures API extension.
-func (d *dockerImageDestination) putSignaturesToAPIExtension(signatures [][]byte) error {
-	// Skip dealing with the manifest digest, or reading the old state, if not necessary.
-	if len(signatures) == 0 {
-		return nil
-	}
-
-	if d.manifestDigest.String() == "" {
-		// This shouldn’t happen, ImageDestination users are required to call PutManifest before PutSignatures
-		return errors.Errorf("Unknown manifest digest, can't add signatures")
-	}
-
-	// Because image signatures are a shared resource in Atomic Registry, the default upload
-	// always adds signatures.  Eventually we should also allow removing signatures,
-	// but the X-Registry-Supports-Signatures API extension does not support that yet.
-
-	existingSignatures, err := d.c.getExtensionsSignatures(context.TODO(), d.ref, d.manifestDigest)
-	if err != nil {
-		return err
-	}
-	existingSigNames := map[string]struct{}{}
-	for _, sig := range existingSignatures.Signatures {
-		existingSigNames[sig.Name] = struct{}{}
-	}
-
-sigExists:
-	for _, newSig := range signatures {
-		for _, existingSig := range existingSignatures.Signatures {
-			if existingSig.Version == extensionSignatureSchemaVersion && existingSig.Type == extensionSignatureTypeAtomic && bytes.Equal(existingSig.Content, newSig) {
-				continue sigExists
-			}
-		}
-
-		// The API expect us to invent a new unique name. This is racy, but hopefully good enough.
-		var signatureName string
-		for {
-			randBytes := make([]byte, 16)
-			n, err := rand.Read(randBytes)
-			if err != nil || n != 16 {
-				return errors.Wrapf(err, "Error generating random signature len %d", n)
-			}
-			signatureName = fmt.Sprintf("%s@%032x", d.manifestDigest.String(), randBytes)
-			if _, ok := existingSigNames[signatureName]; !ok {
-				break
-			}
-		}
-		sig := extensionSignature{
-			Version: extensionSignatureSchemaVersion,
-			Name:    signatureName,
-			Type:    extensionSignatureTypeAtomic,
-			Content: newSig,
-		}
-		body, err := json.Marshal(sig)
-		if err != nil {
-			return err
-		}
-
-		path := fmt.Sprintf(extensionsSignaturePath, reference.Path(d.ref.ref), d.manifestDigest.String())
-		res, err := d.c.makeRequest(context.TODO(), "PUT", path, nil, bytes.NewReader(body))
-		if err != nil {
-			return err
-		}
-		defer res.Body.Close()
-		if res.StatusCode != http.StatusCreated {
-			body, err := ioutil.ReadAll(res.Body)
-			if err == nil {
-				logrus.Debugf("Error body %s", string(body))
-			}
-			logrus.Debugf("Error uploading signature, status %d, %#v", res.StatusCode, res)
-			return errors.Wrapf(client.HandleErrorResponse(res), "Error uploading signature to %s", path)
-		}
-	}
-
-	return nil
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *dockerImageDestination) Commit() error {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/docker/docker_image_src.go b/vendor/github.com/containers/image/docker/docker_image_src.go
deleted file mode 100644
index 63bfe8aa43..0000000000
--- a/vendor/github.com/containers/image/docker/docker_image_src.go
+++ /dev/null
@@ -1,386 +0,0 @@
-package docker
-
-import (
-	"context"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"mime"
-	"net/http"
-	"net/url"
-	"os"
-	"strconv"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/docker/distribution/registry/client"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-type dockerImageSource struct {
-	ref dockerReference
-	c   *dockerClient
-	// State
-	cachedManifest         []byte // nil if not loaded yet
-	cachedManifestMIMEType string // Only valid if cachedManifest != nil
-}
-
-// newImageSource creates a new ImageSource for the specified image reference.
-// The caller must call .Close() on the returned ImageSource.
-func newImageSource(ctx *types.SystemContext, ref dockerReference) (*dockerImageSource, error) {
-	c, err := newDockerClientFromRef(ctx, ref, false, "pull")
-	if err != nil {
-		return nil, err
-	}
-	return &dockerImageSource{
-		ref: ref,
-		c:   c,
-	}, nil
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (s *dockerImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *dockerImageSource) Close() error {
-	return nil
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *dockerImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
-
-// simplifyContentType drops parameters from a HTTP media type (see https://tools.ietf.org/html/rfc7231#section-3.1.1.1)
-// Alternatively, an empty string is returned unchanged, and invalid values are "simplified" to an empty string.
-func simplifyContentType(contentType string) string {
-	if contentType == "" {
-		return contentType
-	}
-	mimeType, _, err := mime.ParseMediaType(contentType)
-	if err != nil {
-		return ""
-	}
-	return mimeType
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *dockerImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if instanceDigest != nil {
-		return s.fetchManifest(context.TODO(), instanceDigest.String())
-	}
-	err := s.ensureManifestIsLoaded(context.TODO())
-	if err != nil {
-		return nil, "", err
-	}
-	return s.cachedManifest, s.cachedManifestMIMEType, nil
-}
-
-func (s *dockerImageSource) fetchManifest(ctx context.Context, tagOrDigest string) ([]byte, string, error) {
-	path := fmt.Sprintf(manifestPath, reference.Path(s.ref.ref), tagOrDigest)
-	headers := make(map[string][]string)
-	headers["Accept"] = manifest.DefaultRequestedManifestMIMETypes
-	res, err := s.c.makeRequest(ctx, "GET", path, headers, nil)
-	if err != nil {
-		return nil, "", err
-	}
-	defer res.Body.Close()
-	if res.StatusCode != http.StatusOK {
-		return nil, "", client.HandleErrorResponse(res)
-	}
-	manblob, err := ioutil.ReadAll(res.Body)
-	if err != nil {
-		return nil, "", err
-	}
-	return manblob, simplifyContentType(res.Header.Get("Content-Type")), nil
-}
-
-// ensureManifestIsLoaded sets s.cachedManifest and s.cachedManifestMIMEType
-//
-// ImageSource implementations are not required or expected to do any caching,
-// but because our signatures are “attached” to the manifest digest,
-// we need to ensure that the digest of the manifest returned by GetManifest(nil)
-// and used by GetSignatures(ctx, nil) are consistent, otherwise we would get spurious
-// signature verification failures when pulling while a tag is being updated.
-func (s *dockerImageSource) ensureManifestIsLoaded(ctx context.Context) error {
-	if s.cachedManifest != nil {
-		return nil
-	}
-
-	reference, err := s.ref.tagOrDigest()
-	if err != nil {
-		return err
-	}
-
-	manblob, mt, err := s.fetchManifest(ctx, reference)
-	if err != nil {
-		return err
-	}
-	// We might validate manblob against the Docker-Content-Digest header here to protect against transport errors.
-	s.cachedManifest = manblob
-	s.cachedManifestMIMEType = mt
-	return nil
-}
-
-func (s *dockerImageSource) getExternalBlob(urls []string) (io.ReadCloser, int64, error) {
-	var (
-		resp *http.Response
-		err  error
-	)
-	for _, url := range urls {
-		resp, err = s.c.makeRequestToResolvedURL(context.TODO(), "GET", url, nil, nil, -1, false)
-		if err == nil {
-			if resp.StatusCode != http.StatusOK {
-				err = errors.Errorf("error fetching external blob from %q: %d", url, resp.StatusCode)
-				logrus.Debug(err)
-				continue
-			}
-			break
-		}
-	}
-	if resp.Body != nil && err == nil {
-		return resp.Body, getBlobSize(resp), nil
-	}
-	return nil, 0, err
-}
-
-func getBlobSize(resp *http.Response) int64 {
-	size, err := strconv.ParseInt(resp.Header.Get("Content-Length"), 10, 64)
-	if err != nil {
-		size = -1
-	}
-	return size
-}
-
-// GetBlob returns a stream for the specified blob, and the blob’s size (or -1 if unknown).
-func (s *dockerImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	if len(info.URLs) != 0 {
-		return s.getExternalBlob(info.URLs)
-	}
-
-	path := fmt.Sprintf(blobsPath, reference.Path(s.ref.ref), info.Digest.String())
-	logrus.Debugf("Downloading %s", path)
-	res, err := s.c.makeRequest(context.TODO(), "GET", path, nil, nil)
-	if err != nil {
-		return nil, 0, err
-	}
-	if res.StatusCode != http.StatusOK {
-		// print url also
-		return nil, 0, errors.Errorf("Invalid status code returned when fetching blob %d", res.StatusCode)
-	}
-	return res.Body, getBlobSize(res), nil
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *dockerImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	if err := s.c.detectProperties(ctx); err != nil {
-		return nil, err
-	}
-	switch {
-	case s.c.signatureBase != nil:
-		return s.getSignaturesFromLookaside(ctx, instanceDigest)
-	case s.c.supportsSignatures:
-		return s.getSignaturesFromAPIExtension(ctx, instanceDigest)
-	default:
-		return [][]byte{}, nil
-	}
-}
-
-// manifestDigest returns a digest of the manifest, from instanceDigest if non-nil; or from the supplied reference,
-// or finally, from a fetched manifest.
-func (s *dockerImageSource) manifestDigest(ctx context.Context, instanceDigest *digest.Digest) (digest.Digest, error) {
-	if instanceDigest != nil {
-		return *instanceDigest, nil
-	}
-	if digested, ok := s.ref.ref.(reference.Digested); ok {
-		d := digested.Digest()
-		if d.Algorithm() == digest.Canonical {
-			return d, nil
-		}
-	}
-	if err := s.ensureManifestIsLoaded(ctx); err != nil {
-		return "", err
-	}
-	return manifest.Digest(s.cachedManifest)
-}
-
-// getSignaturesFromLookaside implements GetSignatures() from the lookaside location configured in s.c.signatureBase,
-// which is not nil.
-func (s *dockerImageSource) getSignaturesFromLookaside(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	manifestDigest, err := s.manifestDigest(ctx, instanceDigest)
-	if err != nil {
-		return nil, err
-	}
-
-	// NOTE: Keep this in sync with docs/signature-protocols.md!
-	signatures := [][]byte{}
-	for i := 0; ; i++ {
-		url := signatureStorageURL(s.c.signatureBase, manifestDigest, i)
-		if url == nil {
-			return nil, errors.Errorf("Internal error: signatureStorageURL with non-nil base returned nil")
-		}
-		signature, missing, err := s.getOneSignature(ctx, url)
-		if err != nil {
-			return nil, err
-		}
-		if missing {
-			break
-		}
-		signatures = append(signatures, signature)
-	}
-	return signatures, nil
-}
-
-// getOneSignature downloads one signature from url.
-// If it successfully determines that the signature does not exist, returns with missing set to true and error set to nil.
-// NOTE: Keep this in sync with docs/signature-protocols.md!
-func (s *dockerImageSource) getOneSignature(ctx context.Context, url *url.URL) (signature []byte, missing bool, err error) {
-	switch url.Scheme {
-	case "file":
-		logrus.Debugf("Reading %s", url.Path)
-		sig, err := ioutil.ReadFile(url.Path)
-		if err != nil {
-			if os.IsNotExist(err) {
-				return nil, true, nil
-			}
-			return nil, false, err
-		}
-		return sig, false, nil
-
-	case "http", "https":
-		logrus.Debugf("GET %s", url)
-		req, err := http.NewRequest("GET", url.String(), nil)
-		if err != nil {
-			return nil, false, err
-		}
-		req = req.WithContext(ctx)
-		res, err := s.c.client.Do(req)
-		if err != nil {
-			return nil, false, err
-		}
-		defer res.Body.Close()
-		if res.StatusCode == http.StatusNotFound {
-			return nil, true, nil
-		} else if res.StatusCode != http.StatusOK {
-			return nil, false, errors.Errorf("Error reading signature from %s: status %d", url.String(), res.StatusCode)
-		}
-		sig, err := ioutil.ReadAll(res.Body)
-		if err != nil {
-			return nil, false, err
-		}
-		return sig, false, nil
-
-	default:
-		return nil, false, errors.Errorf("Unsupported scheme when reading signature from %s", url.String())
-	}
-}
-
-// getSignaturesFromAPIExtension implements GetSignatures() using the X-Registry-Supports-Signatures API extension.
-func (s *dockerImageSource) getSignaturesFromAPIExtension(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	manifestDigest, err := s.manifestDigest(ctx, instanceDigest)
-	if err != nil {
-		return nil, err
-	}
-
-	parsedBody, err := s.c.getExtensionsSignatures(ctx, s.ref, manifestDigest)
-	if err != nil {
-		return nil, err
-	}
-
-	var sigs [][]byte
-	for _, sig := range parsedBody.Signatures {
-		if sig.Version == extensionSignatureSchemaVersion && sig.Type == extensionSignatureTypeAtomic {
-			sigs = append(sigs, sig.Content)
-		}
-	}
-	return sigs, nil
-}
-
-// deleteImage deletes the named image from the registry, if supported.
-func deleteImage(ctx *types.SystemContext, ref dockerReference) error {
-	c, err := newDockerClientFromRef(ctx, ref, true, "push")
-	if err != nil {
-		return err
-	}
-
-	// When retrieving the digest from a registry >= 2.3 use the following header:
-	//   "Accept": "application/vnd.docker.distribution.manifest.v2+json"
-	headers := make(map[string][]string)
-	headers["Accept"] = []string{manifest.DockerV2Schema2MediaType}
-
-	refTail, err := ref.tagOrDigest()
-	if err != nil {
-		return err
-	}
-	getPath := fmt.Sprintf(manifestPath, reference.Path(ref.ref), refTail)
-	get, err := c.makeRequest(context.TODO(), "GET", getPath, headers, nil)
-	if err != nil {
-		return err
-	}
-	defer get.Body.Close()
-	manifestBody, err := ioutil.ReadAll(get.Body)
-	if err != nil {
-		return err
-	}
-	switch get.StatusCode {
-	case http.StatusOK:
-	case http.StatusNotFound:
-		return errors.Errorf("Unable to delete %v. Image may not exist or is not stored with a v2 Schema in a v2 registry", ref.ref)
-	default:
-		return errors.Errorf("Failed to delete %v: %s (%v)", ref.ref, manifestBody, get.Status)
-	}
-
-	digest := get.Header.Get("Docker-Content-Digest")
-	deletePath := fmt.Sprintf(manifestPath, reference.Path(ref.ref), digest)
-
-	// When retrieving the digest from a registry >= 2.3 use the following header:
-	//   "Accept": "application/vnd.docker.distribution.manifest.v2+json"
-	delete, err := c.makeRequest(context.TODO(), "DELETE", deletePath, headers, nil)
-	if err != nil {
-		return err
-	}
-	defer delete.Body.Close()
-
-	body, err := ioutil.ReadAll(delete.Body)
-	if err != nil {
-		return err
-	}
-	if delete.StatusCode != http.StatusAccepted {
-		return errors.Errorf("Failed to delete %v: %s (%v)", deletePath, string(body), delete.Status)
-	}
-
-	if c.signatureBase != nil {
-		manifestDigest, err := manifest.Digest(manifestBody)
-		if err != nil {
-			return err
-		}
-
-		for i := 0; ; i++ {
-			url := signatureStorageURL(c.signatureBase, manifestDigest, i)
-			if url == nil {
-				return errors.Errorf("Internal error: signatureStorageURL with non-nil base returned nil")
-			}
-			missing, err := c.deleteOneSignature(url)
-			if err != nil {
-				return err
-			}
-			if missing {
-				break
-			}
-		}
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/image/docker/docker_transport.go b/vendor/github.com/containers/image/docker/docker_transport.go
deleted file mode 100644
index cc0aa298ae..0000000000
--- a/vendor/github.com/containers/image/docker/docker_transport.go
+++ /dev/null
@@ -1,161 +0,0 @@
-package docker
-
-import (
-	"fmt"
-	"strings"
-
-	"github.com/containers/image/docker/policyconfiguration"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for Docker registry-hosted images.
-var Transport = dockerTransport{}
-
-type dockerTransport struct{}
-
-func (t dockerTransport) Name() string {
-	return "docker"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t dockerTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t dockerTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// FIXME? We could be verifying the various character set and length restrictions
-	// from docker/distribution/reference.regexp.go, but other than that there
-	// are few semantically invalid strings.
-	return nil
-}
-
-// dockerReference is an ImageReference for Docker images.
-type dockerReference struct {
-	ref reference.Named // By construction we know that !reference.IsNameOnly(ref)
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an Docker ImageReference.
-func ParseReference(refString string) (types.ImageReference, error) {
-	if !strings.HasPrefix(refString, "//") {
-		return nil, errors.Errorf("docker: image reference %s does not start with //", refString)
-	}
-	ref, err := reference.ParseNormalizedNamed(strings.TrimPrefix(refString, "//"))
-	if err != nil {
-		return nil, err
-	}
-	ref = reference.TagNameOnly(ref)
-	return NewReference(ref)
-}
-
-// NewReference returns a Docker reference for a named reference. The reference must satisfy !reference.IsNameOnly().
-func NewReference(ref reference.Named) (types.ImageReference, error) {
-	if reference.IsNameOnly(ref) {
-		return nil, errors.Errorf("Docker reference %s has neither a tag nor a digest", reference.FamiliarString(ref))
-	}
-	// A github.com/distribution/reference value can have a tag and a digest at the same time!
-	// The docker/distribution API does not really support that (we can’t ask for an image with a specific
-	// tag and digest), so fail.  This MAY be accepted in the future.
-	// (Even if it were supported, the semantics of policy namespaces are unclear - should we drop
-	// the tag or the digest first?)
-	_, isTagged := ref.(reference.NamedTagged)
-	_, isDigested := ref.(reference.Canonical)
-	if isTagged && isDigested {
-		return nil, errors.Errorf("Docker references with both a tag and digest are currently not supported")
-	}
-	return dockerReference{
-		ref: ref,
-	}, nil
-}
-
-func (ref dockerReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref dockerReference) StringWithinTransport() string {
-	return "//" + reference.FamiliarString(ref.ref)
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref dockerReference) DockerReference() reference.Named {
-	return ref.ref
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref dockerReference) PolicyConfigurationIdentity() string {
-	res, err := policyconfiguration.DockerReferenceIdentity(ref.ref)
-	if res == "" || err != nil { // Coverage: Should never happen, NewReference above should refuse values which could cause a failure.
-		panic(fmt.Sprintf("Internal inconsistency: policyconfiguration.DockerReferenceIdentity returned %#v, %v", res, err))
-	}
-	return res
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref dockerReference) PolicyConfigurationNamespaces() []string {
-	return policyconfiguration.DockerReferenceNamespaces(ref.ref)
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref dockerReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	return newImage(ctx, ref)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref dockerReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref dockerReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref dockerReference) DeleteImage(ctx *types.SystemContext) error {
-	return deleteImage(ctx, ref)
-}
-
-// tagOrDigest returns a tag or digest from the reference.
-func (ref dockerReference) tagOrDigest() (string, error) {
-	if ref, ok := ref.ref.(reference.Canonical); ok {
-		return ref.Digest().String(), nil
-	}
-	if ref, ok := ref.ref.(reference.NamedTagged); ok {
-		return ref.Tag(), nil
-	}
-	// This should not happen, NewReference above refuses reference.IsNameOnly values.
-	return "", errors.Errorf("Internal inconsistency: Reference %s unexpectedly has neither a digest nor a tag", reference.FamiliarString(ref.ref))
-}
diff --git a/vendor/github.com/containers/image/docker/lookaside.go b/vendor/github.com/containers/image/docker/lookaside.go
deleted file mode 100644
index 18e7733b93..0000000000
--- a/vendor/github.com/containers/image/docker/lookaside.go
+++ /dev/null
@@ -1,202 +0,0 @@
-package docker
-
-import (
-	"fmt"
-	"io/ioutil"
-	"net/url"
-	"os"
-	"path"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/types"
-	"github.com/ghodss/yaml"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// systemRegistriesDirPath is the path to registries.d, used for locating lookaside Docker signature storage.
-// You can override this at build time with
-// -ldflags '-X github.com/containers/image/docker.systemRegistriesDirPath=$your_path'
-var systemRegistriesDirPath = builtinRegistriesDirPath
-
-// builtinRegistriesDirPath is the path to registries.d.
-// DO NOT change this, instead see systemRegistriesDirPath above.
-const builtinRegistriesDirPath = "/etc/containers/registries.d"
-
-// registryConfiguration is one of the files in registriesDirPath configuring lookaside locations, or the result of merging them all.
-// NOTE: Keep this in sync with docs/registries.d.md!
-type registryConfiguration struct {
-	DefaultDocker *registryNamespace `json:"default-docker"`
-	// The key is a namespace, using fully-expanded Docker reference format or parent namespaces (per dockerReference.PolicyConfiguration*),
-	Docker map[string]registryNamespace `json:"docker"`
-}
-
-// registryNamespace defines lookaside locations for a single namespace.
-type registryNamespace struct {
-	SigStore        string `json:"sigstore"`         // For reading, and if SigStoreStaging is not present, for writing.
-	SigStoreStaging string `json:"sigstore-staging"` // For writing only.
-}
-
-// signatureStorageBase is an "opaque" type representing a lookaside Docker signature storage.
-// Users outside of this file should use configuredSignatureStorageBase and signatureStorageURL below.
-type signatureStorageBase *url.URL // The only documented value is nil, meaning storage is not supported.
-
-// configuredSignatureStorageBase reads configuration to find an appropriate signature storage URL for ref, for write access if “write”.
-func configuredSignatureStorageBase(ctx *types.SystemContext, ref dockerReference, write bool) (signatureStorageBase, error) {
-	// FIXME? Loading and parsing the config could be cached across calls.
-	dirPath := registriesDirPath(ctx)
-	logrus.Debugf(`Using registries.d directory %s for sigstore configuration`, dirPath)
-	config, err := loadAndMergeConfig(dirPath)
-	if err != nil {
-		return nil, err
-	}
-
-	topLevel := config.signatureTopLevel(ref, write)
-	if topLevel == "" {
-		return nil, nil
-	}
-
-	url, err := url.Parse(topLevel)
-	if err != nil {
-		return nil, errors.Wrapf(err, "Invalid signature storage URL %s", topLevel)
-	}
-	// NOTE: Keep this in sync with docs/signature-protocols.md!
-	// FIXME? Restrict to explicitly supported schemes?
-	repo := reference.Path(ref.ref) // Note that this is without a tag or digest.
-	if path.Clean(repo) != repo {   // Coverage: This should not be reachable because /./ and /../ components are not valid in docker references
-		return nil, errors.Errorf("Unexpected path elements in Docker reference %s for signature storage", ref.ref.String())
-	}
-	url.Path = url.Path + "/" + repo
-	return url, nil
-}
-
-// registriesDirPath returns a path to registries.d
-func registriesDirPath(ctx *types.SystemContext) string {
-	if ctx != nil {
-		if ctx.RegistriesDirPath != "" {
-			return ctx.RegistriesDirPath
-		}
-		if ctx.RootForImplicitAbsolutePaths != "" {
-			return filepath.Join(ctx.RootForImplicitAbsolutePaths, systemRegistriesDirPath)
-		}
-	}
-	return systemRegistriesDirPath
-}
-
-// loadAndMergeConfig loads configuration files in dirPath
-func loadAndMergeConfig(dirPath string) (*registryConfiguration, error) {
-	mergedConfig := registryConfiguration{Docker: map[string]registryNamespace{}}
-	dockerDefaultMergedFrom := ""
-	nsMergedFrom := map[string]string{}
-
-	dir, err := os.Open(dirPath)
-	if err != nil {
-		if os.IsNotExist(err) {
-			return &mergedConfig, nil
-		}
-		return nil, err
-	}
-	configNames, err := dir.Readdirnames(0)
-	if err != nil {
-		return nil, err
-	}
-	for _, configName := range configNames {
-		if !strings.HasSuffix(configName, ".yaml") {
-			continue
-		}
-		configPath := filepath.Join(dirPath, configName)
-		configBytes, err := ioutil.ReadFile(configPath)
-		if err != nil {
-			return nil, err
-		}
-
-		var config registryConfiguration
-		err = yaml.Unmarshal(configBytes, &config)
-		if err != nil {
-			return nil, errors.Wrapf(err, "Error parsing %s", configPath)
-		}
-
-		if config.DefaultDocker != nil {
-			if mergedConfig.DefaultDocker != nil {
-				return nil, errors.Errorf(`Error parsing signature storage configuration: "default-docker" defined both in "%s" and "%s"`,
-					dockerDefaultMergedFrom, configPath)
-			}
-			mergedConfig.DefaultDocker = config.DefaultDocker
-			dockerDefaultMergedFrom = configPath
-		}
-
-		for nsName, nsConfig := range config.Docker { // includes config.Docker == nil
-			if _, ok := mergedConfig.Docker[nsName]; ok {
-				return nil, errors.Errorf(`Error parsing signature storage configuration: "docker" namespace "%s" defined both in "%s" and "%s"`,
-					nsName, nsMergedFrom[nsName], configPath)
-			}
-			mergedConfig.Docker[nsName] = nsConfig
-			nsMergedFrom[nsName] = configPath
-		}
-	}
-
-	return &mergedConfig, nil
-}
-
-// config.signatureTopLevel returns an URL string configured in config for ref, for write access if “write”.
-// (the top level of the storage, namespaced by repo.FullName etc.), or "" if no signature storage should be used.
-func (config *registryConfiguration) signatureTopLevel(ref dockerReference, write bool) string {
-	if config.Docker != nil {
-		// Look for a full match.
-		identity := ref.PolicyConfigurationIdentity()
-		if ns, ok := config.Docker[identity]; ok {
-			logrus.Debugf(` Using "docker" namespace %s`, identity)
-			if url := ns.signatureTopLevel(write); url != "" {
-				return url
-			}
-		}
-
-		// Look for a match of the possible parent namespaces.
-		for _, name := range ref.PolicyConfigurationNamespaces() {
-			if ns, ok := config.Docker[name]; ok {
-				logrus.Debugf(` Using "docker" namespace %s`, name)
-				if url := ns.signatureTopLevel(write); url != "" {
-					return url
-				}
-			}
-		}
-	}
-	// Look for a default location
-	if config.DefaultDocker != nil {
-		logrus.Debugf(` Using "default-docker" configuration`)
-		if url := config.DefaultDocker.signatureTopLevel(write); url != "" {
-			return url
-		}
-	}
-	logrus.Debugf(" No signature storage configuration found for %s", ref.PolicyConfigurationIdentity())
-	return ""
-}
-
-// ns.signatureTopLevel returns an URL string configured in ns for ref, for write access if “write”.
-// or "" if nothing has been configured.
-func (ns registryNamespace) signatureTopLevel(write bool) string {
-	if write && ns.SigStoreStaging != "" {
-		logrus.Debugf(`  Using %s`, ns.SigStoreStaging)
-		return ns.SigStoreStaging
-	}
-	if ns.SigStore != "" {
-		logrus.Debugf(`  Using %s`, ns.SigStore)
-		return ns.SigStore
-	}
-	return ""
-}
-
-// signatureStorageURL returns an URL usable for acessing signature index in base with known manifestDigest, or nil if not applicable.
-// Returns nil iff base == nil.
-// NOTE: Keep this in sync with docs/signature-protocols.md!
-func signatureStorageURL(base signatureStorageBase, manifestDigest digest.Digest, index int) *url.URL {
-	if base == nil {
-		return nil
-	}
-	url := *base
-	url.Path = fmt.Sprintf("%s@%s=%s/signature-%d", url.Path, manifestDigest.Algorithm(), manifestDigest.Hex(), index+1)
-	return &url
-}
diff --git a/vendor/github.com/containers/image/docker/policyconfiguration/naming.go b/vendor/github.com/containers/image/docker/policyconfiguration/naming.go
deleted file mode 100644
index 31bbb544c6..0000000000
--- a/vendor/github.com/containers/image/docker/policyconfiguration/naming.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package policyconfiguration
-
-import (
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/pkg/errors"
-)
-
-// DockerReferenceIdentity returns a string representation of the reference, suitable for policy lookup,
-// as a backend for ImageReference.PolicyConfigurationIdentity.
-// The reference must satisfy !reference.IsNameOnly().
-func DockerReferenceIdentity(ref reference.Named) (string, error) {
-	res := ref.Name()
-	tagged, isTagged := ref.(reference.NamedTagged)
-	digested, isDigested := ref.(reference.Canonical)
-	switch {
-	case isTagged && isDigested: // Note that this CAN actually happen.
-		return "", errors.Errorf("Unexpected Docker reference %s with both a name and a digest", reference.FamiliarString(ref))
-	case !isTagged && !isDigested: // This should not happen, the caller is expected to ensure !reference.IsNameOnly()
-		return "", errors.Errorf("Internal inconsistency: Docker reference %s with neither a tag nor a digest", reference.FamiliarString(ref))
-	case isTagged:
-		res = res + ":" + tagged.Tag()
-	case isDigested:
-		res = res + "@" + digested.Digest().String()
-	default: // Coverage: The above was supposed to be exhaustive.
-		return "", errors.New("Internal inconsistency, unexpected default branch")
-	}
-	return res, nil
-}
-
-// DockerReferenceNamespaces returns a list of other policy configuration namespaces to search,
-// as a backend for ImageReference.PolicyConfigurationIdentity.
-// The reference must satisfy !reference.IsNameOnly().
-func DockerReferenceNamespaces(ref reference.Named) []string {
-	// Look for a match of the repository, and then of the possible parent
-	// namespaces. Note that this only happens on the expanded host names
-	// and repository names, i.e. "busybox" is looked up as "docker.io/library/busybox",
-	// then in its parent "docker.io/library"; in none of "busybox",
-	// un-namespaced "library" nor in "" supposedly implicitly representing "library/".
-	//
-	// ref.FullName() == ref.Hostname() + "/" + ref.RemoteName(), so the last
-	// iteration matches the host name (for any namespace).
-	res := []string{}
-	name := ref.Name()
-	for {
-		res = append(res, name)
-
-		lastSlash := strings.LastIndex(name, "/")
-		if lastSlash == -1 {
-			break
-		}
-		name = name[:lastSlash]
-	}
-	return res
-}
diff --git a/vendor/github.com/containers/image/docker/reference/helpers.go b/vendor/github.com/containers/image/docker/reference/helpers.go
deleted file mode 100644
index 978df7eabb..0000000000
--- a/vendor/github.com/containers/image/docker/reference/helpers.go
+++ /dev/null
@@ -1,42 +0,0 @@
-package reference
-
-import "path"
-
-// IsNameOnly returns true if reference only contains a repo name.
-func IsNameOnly(ref Named) bool {
-	if _, ok := ref.(NamedTagged); ok {
-		return false
-	}
-	if _, ok := ref.(Canonical); ok {
-		return false
-	}
-	return true
-}
-
-// FamiliarName returns the familiar name string
-// for the given named, familiarizing if needed.
-func FamiliarName(ref Named) string {
-	if nn, ok := ref.(normalizedNamed); ok {
-		return nn.Familiar().Name()
-	}
-	return ref.Name()
-}
-
-// FamiliarString returns the familiar string representation
-// for the given reference, familiarizing if needed.
-func FamiliarString(ref Reference) string {
-	if nn, ok := ref.(normalizedNamed); ok {
-		return nn.Familiar().String()
-	}
-	return ref.String()
-}
-
-// FamiliarMatch reports whether ref matches the specified pattern.
-// See https://godoc.org/path#Match for supported patterns.
-func FamiliarMatch(pattern string, ref Reference) (bool, error) {
-	matched, err := path.Match(pattern, FamiliarString(ref))
-	if namedRef, isNamed := ref.(Named); isNamed && !matched {
-		matched, _ = path.Match(pattern, FamiliarName(namedRef))
-	}
-	return matched, err
-}
diff --git a/vendor/github.com/containers/image/docker/reference/normalize.go b/vendor/github.com/containers/image/docker/reference/normalize.go
deleted file mode 100644
index fcc436a395..0000000000
--- a/vendor/github.com/containers/image/docker/reference/normalize.go
+++ /dev/null
@@ -1,152 +0,0 @@
-package reference
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-
-	"github.com/opencontainers/go-digest"
-)
-
-var (
-	legacyDefaultDomain = "index.docker.io"
-	defaultDomain       = "docker.io"
-	officialRepoName    = "library"
-	defaultTag          = "latest"
-)
-
-// normalizedNamed represents a name which has been
-// normalized and has a familiar form. A familiar name
-// is what is used in Docker UI. An example normalized
-// name is "docker.io/library/ubuntu" and corresponding
-// familiar name of "ubuntu".
-type normalizedNamed interface {
-	Named
-	Familiar() Named
-}
-
-// ParseNormalizedNamed parses a string into a named reference
-// transforming a familiar name from Docker UI to a fully
-// qualified reference. If the value may be an identifier
-// use ParseAnyReference.
-func ParseNormalizedNamed(s string) (Named, error) {
-	if ok := anchoredIdentifierRegexp.MatchString(s); ok {
-		return nil, fmt.Errorf("invalid repository name (%s), cannot specify 64-byte hexadecimal strings", s)
-	}
-	domain, remainder := splitDockerDomain(s)
-	var remoteName string
-	if tagSep := strings.IndexRune(remainder, ':'); tagSep > -1 {
-		remoteName = remainder[:tagSep]
-	} else {
-		remoteName = remainder
-	}
-	if strings.ToLower(remoteName) != remoteName {
-		return nil, errors.New("invalid reference format: repository name must be lowercase")
-	}
-
-	ref, err := Parse(domain + "/" + remainder)
-	if err != nil {
-		return nil, err
-	}
-	named, isNamed := ref.(Named)
-	if !isNamed {
-		return nil, fmt.Errorf("reference %s has no name", ref.String())
-	}
-	return named, nil
-}
-
-// splitDockerDomain splits a repository name to domain and remotename string.
-// If no valid domain is found, the default domain is used. Repository name
-// needs to be already validated before.
-func splitDockerDomain(name string) (domain, remainder string) {
-	i := strings.IndexRune(name, '/')
-	if i == -1 || (!strings.ContainsAny(name[:i], ".:") && name[:i] != "localhost") {
-		domain, remainder = defaultDomain, name
-	} else {
-		domain, remainder = name[:i], name[i+1:]
-	}
-	if domain == legacyDefaultDomain {
-		domain = defaultDomain
-	}
-	if domain == defaultDomain && !strings.ContainsRune(remainder, '/') {
-		remainder = officialRepoName + "/" + remainder
-	}
-	return
-}
-
-// familiarizeName returns a shortened version of the name familiar
-// to to the Docker UI. Familiar names have the default domain
-// "docker.io" and "library/" repository prefix removed.
-// For example, "docker.io/library/redis" will have the familiar
-// name "redis" and "docker.io/dmcgowan/myapp" will be "dmcgowan/myapp".
-// Returns a familiarized named only reference.
-func familiarizeName(named namedRepository) repository {
-	repo := repository{
-		domain: named.Domain(),
-		path:   named.Path(),
-	}
-
-	if repo.domain == defaultDomain {
-		repo.domain = ""
-		// Handle official repositories which have the pattern "library/<official repo name>"
-		if split := strings.Split(repo.path, "/"); len(split) == 2 && split[0] == officialRepoName {
-			repo.path = split[1]
-		}
-	}
-	return repo
-}
-
-func (r reference) Familiar() Named {
-	return reference{
-		namedRepository: familiarizeName(r.namedRepository),
-		tag:             r.tag,
-		digest:          r.digest,
-	}
-}
-
-func (r repository) Familiar() Named {
-	return familiarizeName(r)
-}
-
-func (t taggedReference) Familiar() Named {
-	return taggedReference{
-		namedRepository: familiarizeName(t.namedRepository),
-		tag:             t.tag,
-	}
-}
-
-func (c canonicalReference) Familiar() Named {
-	return canonicalReference{
-		namedRepository: familiarizeName(c.namedRepository),
-		digest:          c.digest,
-	}
-}
-
-// TagNameOnly adds the default tag "latest" to a reference if it only has
-// a repo name.
-func TagNameOnly(ref Named) Named {
-	if IsNameOnly(ref) {
-		namedTagged, err := WithTag(ref, defaultTag)
-		if err != nil {
-			// Default tag must be valid, to create a NamedTagged
-			// type with non-validated input the WithTag function
-			// should be used instead
-			panic(err)
-		}
-		return namedTagged
-	}
-	return ref
-}
-
-// ParseAnyReference parses a reference string as a possible identifier,
-// full digest, or familiar name.
-func ParseAnyReference(ref string) (Reference, error) {
-	if ok := anchoredIdentifierRegexp.MatchString(ref); ok {
-		return digestReference("sha256:" + ref), nil
-	}
-	if dgst, err := digest.Parse(ref); err == nil {
-		return digestReference(dgst), nil
-	}
-
-	return ParseNormalizedNamed(ref)
-}
diff --git a/vendor/github.com/containers/image/docker/reference/reference.go b/vendor/github.com/containers/image/docker/reference/reference.go
deleted file mode 100644
index fd3510e9ee..0000000000
--- a/vendor/github.com/containers/image/docker/reference/reference.go
+++ /dev/null
@@ -1,433 +0,0 @@
-// Package reference provides a general type to represent any way of referencing images within the registry.
-// Its main purpose is to abstract tags and digests (content-addressable hash).
-//
-// Grammar
-//
-// 	reference                       := name [ ":" tag ] [ "@" digest ]
-//	name                            := [domain '/'] path-component ['/' path-component]*
-//	domain                          := domain-component ['.' domain-component]* [':' port-number]
-//	domain-component                := /([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])/
-//	port-number                     := /[0-9]+/
-//	path-component                  := alpha-numeric [separator alpha-numeric]*
-// 	alpha-numeric                   := /[a-z0-9]+/
-//	separator                       := /[_.]|__|[-]*/
-//
-//	tag                             := /[\w][\w.-]{0,127}/
-//
-//	digest                          := digest-algorithm ":" digest-hex
-//	digest-algorithm                := digest-algorithm-component [ digest-algorithm-separator digest-algorithm-component ]
-//	digest-algorithm-separator      := /[+.-_]/
-//	digest-algorithm-component      := /[A-Za-z][A-Za-z0-9]*/
-//	digest-hex                      := /[0-9a-fA-F]{32,}/ ; At least 128 bit digest value
-//
-//	identifier                      := /[a-f0-9]{64}/
-//	short-identifier                := /[a-f0-9]{6,64}/
-package reference
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-
-	"github.com/opencontainers/go-digest"
-)
-
-const (
-	// NameTotalLengthMax is the maximum total number of characters in a repository name.
-	NameTotalLengthMax = 255
-)
-
-var (
-	// ErrReferenceInvalidFormat represents an error while trying to parse a string as a reference.
-	ErrReferenceInvalidFormat = errors.New("invalid reference format")
-
-	// ErrTagInvalidFormat represents an error while trying to parse a string as a tag.
-	ErrTagInvalidFormat = errors.New("invalid tag format")
-
-	// ErrDigestInvalidFormat represents an error while trying to parse a string as a tag.
-	ErrDigestInvalidFormat = errors.New("invalid digest format")
-
-	// ErrNameContainsUppercase is returned for invalid repository names that contain uppercase characters.
-	ErrNameContainsUppercase = errors.New("repository name must be lowercase")
-
-	// ErrNameEmpty is returned for empty, invalid repository names.
-	ErrNameEmpty = errors.New("repository name must have at least one component")
-
-	// ErrNameTooLong is returned when a repository name is longer than NameTotalLengthMax.
-	ErrNameTooLong = fmt.Errorf("repository name must not be more than %v characters", NameTotalLengthMax)
-
-	// ErrNameNotCanonical is returned when a name is not canonical.
-	ErrNameNotCanonical = errors.New("repository name must be canonical")
-)
-
-// Reference is an opaque object reference identifier that may include
-// modifiers such as a hostname, name, tag, and digest.
-type Reference interface {
-	// String returns the full reference
-	String() string
-}
-
-// Field provides a wrapper type for resolving correct reference types when
-// working with encoding.
-type Field struct {
-	reference Reference
-}
-
-// AsField wraps a reference in a Field for encoding.
-func AsField(reference Reference) Field {
-	return Field{reference}
-}
-
-// Reference unwraps the reference type from the field to
-// return the Reference object. This object should be
-// of the appropriate type to further check for different
-// reference types.
-func (f Field) Reference() Reference {
-	return f.reference
-}
-
-// MarshalText serializes the field to byte text which
-// is the string of the reference.
-func (f Field) MarshalText() (p []byte, err error) {
-	return []byte(f.reference.String()), nil
-}
-
-// UnmarshalText parses text bytes by invoking the
-// reference parser to ensure the appropriately
-// typed reference object is wrapped by field.
-func (f *Field) UnmarshalText(p []byte) error {
-	r, err := Parse(string(p))
-	if err != nil {
-		return err
-	}
-
-	f.reference = r
-	return nil
-}
-
-// Named is an object with a full name
-type Named interface {
-	Reference
-	Name() string
-}
-
-// Tagged is an object which has a tag
-type Tagged interface {
-	Reference
-	Tag() string
-}
-
-// NamedTagged is an object including a name and tag.
-type NamedTagged interface {
-	Named
-	Tag() string
-}
-
-// Digested is an object which has a digest
-// in which it can be referenced by
-type Digested interface {
-	Reference
-	Digest() digest.Digest
-}
-
-// Canonical reference is an object with a fully unique
-// name including a name with domain and digest
-type Canonical interface {
-	Named
-	Digest() digest.Digest
-}
-
-// namedRepository is a reference to a repository with a name.
-// A namedRepository has both domain and path components.
-type namedRepository interface {
-	Named
-	Domain() string
-	Path() string
-}
-
-// Domain returns the domain part of the Named reference
-func Domain(named Named) string {
-	if r, ok := named.(namedRepository); ok {
-		return r.Domain()
-	}
-	domain, _ := splitDomain(named.Name())
-	return domain
-}
-
-// Path returns the name without the domain part of the Named reference
-func Path(named Named) (name string) {
-	if r, ok := named.(namedRepository); ok {
-		return r.Path()
-	}
-	_, path := splitDomain(named.Name())
-	return path
-}
-
-func splitDomain(name string) (string, string) {
-	match := anchoredNameRegexp.FindStringSubmatch(name)
-	if len(match) != 3 {
-		return "", name
-	}
-	return match[1], match[2]
-}
-
-// SplitHostname splits a named reference into a
-// hostname and name string. If no valid hostname is
-// found, the hostname is empty and the full value
-// is returned as name
-// DEPRECATED: Use Domain or Path
-func SplitHostname(named Named) (string, string) {
-	if r, ok := named.(namedRepository); ok {
-		return r.Domain(), r.Path()
-	}
-	return splitDomain(named.Name())
-}
-
-// Parse parses s and returns a syntactically valid Reference.
-// If an error was encountered it is returned, along with a nil Reference.
-// NOTE: Parse will not handle short digests.
-func Parse(s string) (Reference, error) {
-	matches := ReferenceRegexp.FindStringSubmatch(s)
-	if matches == nil {
-		if s == "" {
-			return nil, ErrNameEmpty
-		}
-		if ReferenceRegexp.FindStringSubmatch(strings.ToLower(s)) != nil {
-			return nil, ErrNameContainsUppercase
-		}
-		return nil, ErrReferenceInvalidFormat
-	}
-
-	if len(matches[1]) > NameTotalLengthMax {
-		return nil, ErrNameTooLong
-	}
-
-	var repo repository
-
-	nameMatch := anchoredNameRegexp.FindStringSubmatch(matches[1])
-	if nameMatch != nil && len(nameMatch) == 3 {
-		repo.domain = nameMatch[1]
-		repo.path = nameMatch[2]
-	} else {
-		repo.domain = ""
-		repo.path = matches[1]
-	}
-
-	ref := reference{
-		namedRepository: repo,
-		tag:             matches[2],
-	}
-	if matches[3] != "" {
-		var err error
-		ref.digest, err = digest.Parse(matches[3])
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	r := getBestReferenceType(ref)
-	if r == nil {
-		return nil, ErrNameEmpty
-	}
-
-	return r, nil
-}
-
-// ParseNamed parses s and returns a syntactically valid reference implementing
-// the Named interface. The reference must have a name and be in the canonical
-// form, otherwise an error is returned.
-// If an error was encountered it is returned, along with a nil Reference.
-// NOTE: ParseNamed will not handle short digests.
-func ParseNamed(s string) (Named, error) {
-	named, err := ParseNormalizedNamed(s)
-	if err != nil {
-		return nil, err
-	}
-	if named.String() != s {
-		return nil, ErrNameNotCanonical
-	}
-	return named, nil
-}
-
-// WithName returns a named object representing the given string. If the input
-// is invalid ErrReferenceInvalidFormat will be returned.
-func WithName(name string) (Named, error) {
-	if len(name) > NameTotalLengthMax {
-		return nil, ErrNameTooLong
-	}
-
-	match := anchoredNameRegexp.FindStringSubmatch(name)
-	if match == nil || len(match) != 3 {
-		return nil, ErrReferenceInvalidFormat
-	}
-	return repository{
-		domain: match[1],
-		path:   match[2],
-	}, nil
-}
-
-// WithTag combines the name from "name" and the tag from "tag" to form a
-// reference incorporating both the name and the tag.
-func WithTag(name Named, tag string) (NamedTagged, error) {
-	if !anchoredTagRegexp.MatchString(tag) {
-		return nil, ErrTagInvalidFormat
-	}
-	var repo repository
-	if r, ok := name.(namedRepository); ok {
-		repo.domain = r.Domain()
-		repo.path = r.Path()
-	} else {
-		repo.path = name.Name()
-	}
-	if canonical, ok := name.(Canonical); ok {
-		return reference{
-			namedRepository: repo,
-			tag:             tag,
-			digest:          canonical.Digest(),
-		}, nil
-	}
-	return taggedReference{
-		namedRepository: repo,
-		tag:             tag,
-	}, nil
-}
-
-// WithDigest combines the name from "name" and the digest from "digest" to form
-// a reference incorporating both the name and the digest.
-func WithDigest(name Named, digest digest.Digest) (Canonical, error) {
-	if !anchoredDigestRegexp.MatchString(digest.String()) {
-		return nil, ErrDigestInvalidFormat
-	}
-	var repo repository
-	if r, ok := name.(namedRepository); ok {
-		repo.domain = r.Domain()
-		repo.path = r.Path()
-	} else {
-		repo.path = name.Name()
-	}
-	if tagged, ok := name.(Tagged); ok {
-		return reference{
-			namedRepository: repo,
-			tag:             tagged.Tag(),
-			digest:          digest,
-		}, nil
-	}
-	return canonicalReference{
-		namedRepository: repo,
-		digest:          digest,
-	}, nil
-}
-
-// TrimNamed removes any tag or digest from the named reference.
-func TrimNamed(ref Named) Named {
-	domain, path := SplitHostname(ref)
-	return repository{
-		domain: domain,
-		path:   path,
-	}
-}
-
-func getBestReferenceType(ref reference) Reference {
-	if ref.Name() == "" {
-		// Allow digest only references
-		if ref.digest != "" {
-			return digestReference(ref.digest)
-		}
-		return nil
-	}
-	if ref.tag == "" {
-		if ref.digest != "" {
-			return canonicalReference{
-				namedRepository: ref.namedRepository,
-				digest:          ref.digest,
-			}
-		}
-		return ref.namedRepository
-	}
-	if ref.digest == "" {
-		return taggedReference{
-			namedRepository: ref.namedRepository,
-			tag:             ref.tag,
-		}
-	}
-
-	return ref
-}
-
-type reference struct {
-	namedRepository
-	tag    string
-	digest digest.Digest
-}
-
-func (r reference) String() string {
-	return r.Name() + ":" + r.tag + "@" + r.digest.String()
-}
-
-func (r reference) Tag() string {
-	return r.tag
-}
-
-func (r reference) Digest() digest.Digest {
-	return r.digest
-}
-
-type repository struct {
-	domain string
-	path   string
-}
-
-func (r repository) String() string {
-	return r.Name()
-}
-
-func (r repository) Name() string {
-	if r.domain == "" {
-		return r.path
-	}
-	return r.domain + "/" + r.path
-}
-
-func (r repository) Domain() string {
-	return r.domain
-}
-
-func (r repository) Path() string {
-	return r.path
-}
-
-type digestReference digest.Digest
-
-func (d digestReference) String() string {
-	return digest.Digest(d).String()
-}
-
-func (d digestReference) Digest() digest.Digest {
-	return digest.Digest(d)
-}
-
-type taggedReference struct {
-	namedRepository
-	tag string
-}
-
-func (t taggedReference) String() string {
-	return t.Name() + ":" + t.tag
-}
-
-func (t taggedReference) Tag() string {
-	return t.tag
-}
-
-type canonicalReference struct {
-	namedRepository
-	digest digest.Digest
-}
-
-func (c canonicalReference) String() string {
-	return c.Name() + "@" + c.digest.String()
-}
-
-func (c canonicalReference) Digest() digest.Digest {
-	return c.digest
-}
diff --git a/vendor/github.com/containers/image/docker/reference/regexp.go b/vendor/github.com/containers/image/docker/reference/regexp.go
deleted file mode 100644
index 405e995db9..0000000000
--- a/vendor/github.com/containers/image/docker/reference/regexp.go
+++ /dev/null
@@ -1,143 +0,0 @@
-package reference
-
-import "regexp"
-
-var (
-	// alphaNumericRegexp defines the alpha numeric atom, typically a
-	// component of names. This only allows lower case characters and digits.
-	alphaNumericRegexp = match(`[a-z0-9]+`)
-
-	// separatorRegexp defines the separators allowed to be embedded in name
-	// components. This allow one period, one or two underscore and multiple
-	// dashes.
-	separatorRegexp = match(`(?:[._]|__|[-]*)`)
-
-	// nameComponentRegexp restricts registry path component names to start
-	// with at least one letter or number, with following parts able to be
-	// separated by one period, one or two underscore and multiple dashes.
-	nameComponentRegexp = expression(
-		alphaNumericRegexp,
-		optional(repeated(separatorRegexp, alphaNumericRegexp)))
-
-	// domainComponentRegexp restricts the registry domain component of a
-	// repository name to start with a component as defined by domainRegexp
-	// and followed by an optional port.
-	domainComponentRegexp = match(`(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])`)
-
-	// domainRegexp defines the structure of potential domain components
-	// that may be part of image names. This is purposely a subset of what is
-	// allowed by DNS to ensure backwards compatibility with Docker image
-	// names.
-	domainRegexp = expression(
-		domainComponentRegexp,
-		optional(repeated(literal(`.`), domainComponentRegexp)),
-		optional(literal(`:`), match(`[0-9]+`)))
-
-	// TagRegexp matches valid tag names. From docker/docker:graph/tags.go.
-	TagRegexp = match(`[\w][\w.-]{0,127}`)
-
-	// anchoredTagRegexp matches valid tag names, anchored at the start and
-	// end of the matched string.
-	anchoredTagRegexp = anchored(TagRegexp)
-
-	// DigestRegexp matches valid digests.
-	DigestRegexp = match(`[A-Za-z][A-Za-z0-9]*(?:[-_+.][A-Za-z][A-Za-z0-9]*)*[:][[:xdigit:]]{32,}`)
-
-	// anchoredDigestRegexp matches valid digests, anchored at the start and
-	// end of the matched string.
-	anchoredDigestRegexp = anchored(DigestRegexp)
-
-	// NameRegexp is the format for the name component of references. The
-	// regexp has capturing groups for the domain and name part omitting
-	// the separating forward slash from either.
-	NameRegexp = expression(
-		optional(domainRegexp, literal(`/`)),
-		nameComponentRegexp,
-		optional(repeated(literal(`/`), nameComponentRegexp)))
-
-	// anchoredNameRegexp is used to parse a name value, capturing the
-	// domain and trailing components.
-	anchoredNameRegexp = anchored(
-		optional(capture(domainRegexp), literal(`/`)),
-		capture(nameComponentRegexp,
-			optional(repeated(literal(`/`), nameComponentRegexp))))
-
-	// ReferenceRegexp is the full supported format of a reference. The regexp
-	// is anchored and has capturing groups for name, tag, and digest
-	// components.
-	ReferenceRegexp = anchored(capture(NameRegexp),
-		optional(literal(":"), capture(TagRegexp)),
-		optional(literal("@"), capture(DigestRegexp)))
-
-	// IdentifierRegexp is the format for string identifier used as a
-	// content addressable identifier using sha256. These identifiers
-	// are like digests without the algorithm, since sha256 is used.
-	IdentifierRegexp = match(`([a-f0-9]{64})`)
-
-	// ShortIdentifierRegexp is the format used to represent a prefix
-	// of an identifier. A prefix may be used to match a sha256 identifier
-	// within a list of trusted identifiers.
-	ShortIdentifierRegexp = match(`([a-f0-9]{6,64})`)
-
-	// anchoredIdentifierRegexp is used to check or match an
-	// identifier value, anchored at start and end of string.
-	anchoredIdentifierRegexp = anchored(IdentifierRegexp)
-
-	// anchoredShortIdentifierRegexp is used to check if a value
-	// is a possible identifier prefix, anchored at start and end
-	// of string.
-	anchoredShortIdentifierRegexp = anchored(ShortIdentifierRegexp)
-)
-
-// match compiles the string to a regular expression.
-var match = regexp.MustCompile
-
-// literal compiles s into a literal regular expression, escaping any regexp
-// reserved characters.
-func literal(s string) *regexp.Regexp {
-	re := match(regexp.QuoteMeta(s))
-
-	if _, complete := re.LiteralPrefix(); !complete {
-		panic("must be a literal")
-	}
-
-	return re
-}
-
-// expression defines a full expression, where each regular expression must
-// follow the previous.
-func expression(res ...*regexp.Regexp) *regexp.Regexp {
-	var s string
-	for _, re := range res {
-		s += re.String()
-	}
-
-	return match(s)
-}
-
-// optional wraps the expression in a non-capturing group and makes the
-// production optional.
-func optional(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(group(expression(res...)).String() + `?`)
-}
-
-// repeated wraps the regexp in a non-capturing group to get one or more
-// matches.
-func repeated(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(group(expression(res...)).String() + `+`)
-}
-
-// group wraps the regexp in a non-capturing group.
-func group(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`(?:` + expression(res...).String() + `)`)
-}
-
-// capture wraps the expression in a capturing group.
-func capture(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`(` + expression(res...).String() + `)`)
-}
-
-// anchored anchors the regular expression by adding start and end delimiters.
-func anchored(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`^` + expression(res...).String() + `$`)
-}
diff --git a/vendor/github.com/containers/image/docker/tarfile/dest.go b/vendor/github.com/containers/image/docker/tarfile/dest.go
deleted file mode 100644
index eb11ca8668..0000000000
--- a/vendor/github.com/containers/image/docker/tarfile/dest.go
+++ /dev/null
@@ -1,257 +0,0 @@
-package tarfile
-
-import (
-	"archive/tar"
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"time"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/internal/tmpdir"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// Destination is a partial implementation of types.ImageDestination for writing to an io.Writer.
-type Destination struct {
-	writer  io.Writer
-	tar     *tar.Writer
-	repoTag string
-	// Other state.
-	blobs map[digest.Digest]types.BlobInfo // list of already-sent blobs
-}
-
-// NewDestination returns a tarfile.Destination for the specified io.Writer.
-func NewDestination(dest io.Writer, ref reference.NamedTagged) *Destination {
-	// For github.com/docker/docker consumers, this works just as well as
-	//   refString := ref.String()
-	// because when reading the RepoTags strings, github.com/docker/docker/reference
-	// normalizes both of them to the same value.
-	//
-	// Doing it this way to include the normalized-out `docker.io[/library]` does make
-	// a difference for github.com/projectatomic/docker consumers, with the
-	// “Add --add-registry and --block-registry options to docker daemon” patch.
-	// These consumers treat reference strings which include a hostname and reference
-	// strings without a hostname differently.
-	//
-	// Using the host name here is more explicit about the intent, and it has the same
-	// effect as (docker pull) in projectatomic/docker, which tags the result using
-	// a hostname-qualified reference.
-	// See https://github.com/containers/image/issues/72 for a more detailed
-	// analysis and explanation.
-	refString := fmt.Sprintf("%s:%s", ref.Name(), ref.Tag())
-	return &Destination{
-		writer:  dest,
-		tar:     tar.NewWriter(dest),
-		repoTag: refString,
-		blobs:   make(map[digest.Digest]types.BlobInfo),
-	}
-}
-
-// SupportedManifestMIMETypes tells which manifest mime types the destination supports
-// If an empty slice or nil it's returned, then any mime type can be tried to upload
-func (d *Destination) SupportedManifestMIMETypes() []string {
-	return []string{
-		manifest.DockerV2Schema2MediaType, // We rely on the types.Image.UpdatedImage schema conversion capabilities.
-	}
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *Destination) SupportsSignatures() error {
-	return errors.Errorf("Storing signatures for docker tar files is not supported")
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *Destination) ShouldCompressLayers() bool {
-	return false
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *Destination) AcceptsForeignLayerURLs() bool {
-	return false
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *Destination) MustMatchRuntimeOS() bool {
-	return false
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-// to any other readers for download using the supplied digest.
-// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-func (d *Destination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	if inputInfo.Digest.String() == "" {
-		return types.BlobInfo{}, errors.Errorf("Can not stream a blob with unknown digest to docker tarfile")
-	}
-
-	ok, size, err := d.HasBlob(inputInfo)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	if ok {
-		return types.BlobInfo{Digest: inputInfo.Digest, Size: size}, nil
-	}
-
-	if inputInfo.Size == -1 { // Ouch, we need to stream the blob into a temporary file just to determine the size.
-		logrus.Debugf("docker tarfile: input with unknown size, streaming to disk first ...")
-		streamCopy, err := ioutil.TempFile(tmpdir.TemporaryDirectoryForBigFiles(), "docker-tarfile-blob")
-		if err != nil {
-			return types.BlobInfo{}, err
-		}
-		defer os.Remove(streamCopy.Name())
-		defer streamCopy.Close()
-
-		size, err := io.Copy(streamCopy, stream)
-		if err != nil {
-			return types.BlobInfo{}, err
-		}
-		_, err = streamCopy.Seek(0, os.SEEK_SET)
-		if err != nil {
-			return types.BlobInfo{}, err
-		}
-		inputInfo.Size = size // inputInfo is a struct, so we are only modifying our copy.
-		stream = streamCopy
-		logrus.Debugf("... streaming done")
-	}
-
-	digester := digest.Canonical.Digester()
-	tee := io.TeeReader(stream, digester.Hash())
-	if err := d.sendFile(inputInfo.Digest.String(), inputInfo.Size, tee); err != nil {
-		return types.BlobInfo{}, err
-	}
-	d.blobs[inputInfo.Digest] = types.BlobInfo{Digest: digester.Digest(), Size: inputInfo.Size}
-	return types.BlobInfo{Digest: digester.Digest(), Size: inputInfo.Size}, nil
-}
-
-// HasBlob returns true iff the image destination already contains a blob with
-// the matching digest which can be reapplied using ReapplyBlob.  Unlike
-// PutBlob, the digest can not be empty.  If HasBlob returns true, the size of
-// the blob must also be returned.  If the destination does not contain the
-// blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil); it
-// returns a non-nil error only on an unexpected failure.
-func (d *Destination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	if info.Digest == "" {
-		return false, -1, errors.Errorf("Can not check for a blob with unknown digest")
-	}
-	if blob, ok := d.blobs[info.Digest]; ok {
-		return true, blob.Size, nil
-	}
-	return false, -1, nil
-}
-
-// ReapplyBlob informs the image destination that a blob for which HasBlob
-// previously returned true would have been passed to PutBlob if it had
-// returned false.  Like HasBlob and unlike PutBlob, the digest can not be
-// empty.  If the blob is a filesystem layer, this signifies that the changes
-// it describes need to be applied again when composing a filesystem tree.
-func (d *Destination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return info, nil
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *Destination) PutManifest(m []byte) error {
-	// We do not bother with types.ManifestTypeRejectedError; our .SupportedManifestMIMETypes() above is already providing only one alternative,
-	// so the caller trying a different manifest kind would be pointless.
-	var man manifest.Schema2
-	if err := json.Unmarshal(m, &man); err != nil {
-		return errors.Wrap(err, "Error parsing manifest")
-	}
-	if man.SchemaVersion != 2 || man.MediaType != manifest.DockerV2Schema2MediaType {
-		return errors.Errorf("Unsupported manifest type, need a Docker schema 2 manifest")
-	}
-
-	layerPaths := []string{}
-	for _, l := range man.LayersDescriptors {
-		layerPaths = append(layerPaths, l.Digest.String())
-	}
-
-	items := []ManifestItem{{
-		Config:       man.ConfigDescriptor.Digest.String(),
-		RepoTags:     []string{d.repoTag},
-		Layers:       layerPaths,
-		Parent:       "",
-		LayerSources: nil,
-	}}
-	itemsBytes, err := json.Marshal(&items)
-	if err != nil {
-		return err
-	}
-
-	// FIXME? Do we also need to support the legacy format?
-	return d.sendFile(manifestFileName, int64(len(itemsBytes)), bytes.NewReader(itemsBytes))
-}
-
-type tarFI struct {
-	path string
-	size int64
-}
-
-func (t *tarFI) Name() string {
-	return t.path
-}
-func (t *tarFI) Size() int64 {
-	return t.size
-}
-func (t *tarFI) Mode() os.FileMode {
-	return 0444
-}
-func (t *tarFI) ModTime() time.Time {
-	return time.Unix(0, 0)
-}
-func (t *tarFI) IsDir() bool {
-	return false
-}
-func (t *tarFI) Sys() interface{} {
-	return nil
-}
-
-// sendFile sends a file into the tar stream.
-func (d *Destination) sendFile(path string, expectedSize int64, stream io.Reader) error {
-	hdr, err := tar.FileInfoHeader(&tarFI{path: path, size: expectedSize}, "")
-	if err != nil {
-		return nil
-	}
-	logrus.Debugf("Sending as tar file %s", path)
-	if err := d.tar.WriteHeader(hdr); err != nil {
-		return err
-	}
-	size, err := io.Copy(d.tar, stream)
-	if err != nil {
-		return err
-	}
-	if size != expectedSize {
-		return errors.Errorf("Size mismatch when copying %s, expected %d, got %d", path, expectedSize, size)
-	}
-	return nil
-}
-
-// PutSignatures adds the given signatures to the docker tarfile (currently not
-// supported). MUST be called after PutManifest (signatures reference manifest
-// contents)
-func (d *Destination) PutSignatures(signatures [][]byte) error {
-	if len(signatures) != 0 {
-		return errors.Errorf("Storing signatures for docker tar files is not supported")
-	}
-	return nil
-}
-
-// Commit finishes writing data to the underlying io.Writer.
-// It is the caller's responsibility to close it, if necessary.
-func (d *Destination) Commit() error {
-	return d.tar.Close()
-}
diff --git a/vendor/github.com/containers/image/docker/tarfile/doc.go b/vendor/github.com/containers/image/docker/tarfile/doc.go
deleted file mode 100644
index 4ea5369c05..0000000000
--- a/vendor/github.com/containers/image/docker/tarfile/doc.go
+++ /dev/null
@@ -1,3 +0,0 @@
-// Package tarfile is an internal implementation detail of some transports.
-// Do not use outside of the github.com/containers/image repo!
-package tarfile
diff --git a/vendor/github.com/containers/image/docker/tarfile/src.go b/vendor/github.com/containers/image/docker/tarfile/src.go
deleted file mode 100644
index a18e210585..0000000000
--- a/vendor/github.com/containers/image/docker/tarfile/src.go
+++ /dev/null
@@ -1,366 +0,0 @@
-package tarfile
-
-import (
-	"archive/tar"
-	"bytes"
-	"context"
-	"encoding/json"
-	"io"
-	"io/ioutil"
-	"os"
-	"path"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/pkg/compression"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-// Source is a partial implementation of types.ImageSource for reading from tarPath.
-type Source struct {
-	tarPath string
-	// The following data is only available after ensureCachedDataIsPresent() succeeds
-	tarManifest       *ManifestItem // nil if not available yet.
-	configBytes       []byte
-	configDigest      digest.Digest
-	orderedDiffIDList []digest.Digest
-	knownLayers       map[digest.Digest]*layerInfo
-	// Other state
-	generatedManifest []byte // Private cache for GetManifest(), nil if not set yet.
-}
-
-type layerInfo struct {
-	path string
-	size int64
-}
-
-// NewSource returns a tarfile.Source for the specified path.
-func NewSource(path string) *Source {
-	// TODO: We could add support for multiple images in a single archive, so
-	//       that people could use docker-archive:opensuse.tar:opensuse:leap as
-	//       the source of an image.
-	return &Source{
-		tarPath: path,
-	}
-}
-
-// tarReadCloser is a way to close the backing file of a tar.Reader when the user no longer needs the tar component.
-type tarReadCloser struct {
-	*tar.Reader
-	backingFile *os.File
-}
-
-func (t *tarReadCloser) Close() error {
-	return t.backingFile.Close()
-}
-
-// openTarComponent returns a ReadCloser for the specific file within the archive.
-// This is linear scan; we assume that the tar file will have a fairly small amount of files (~layers),
-// and that filesystem caching will make the repeated seeking over the (uncompressed) tarPath cheap enough.
-// The caller should call .Close() on the returned stream.
-func (s *Source) openTarComponent(componentPath string) (io.ReadCloser, error) {
-	f, err := os.Open(s.tarPath)
-	if err != nil {
-		return nil, err
-	}
-	succeeded := false
-	defer func() {
-		if !succeeded {
-			f.Close()
-		}
-	}()
-
-	tarReader, header, err := findTarComponent(f, componentPath)
-	if err != nil {
-		return nil, err
-	}
-	if header == nil {
-		return nil, os.ErrNotExist
-	}
-	if header.FileInfo().Mode()&os.ModeType == os.ModeSymlink { // FIXME: untested
-		// We follow only one symlink; so no loops are possible.
-		if _, err := f.Seek(0, os.SEEK_SET); err != nil {
-			return nil, err
-		}
-		// The new path could easily point "outside" the archive, but we only compare it to existing tar headers without extracting the archive,
-		// so we don't care.
-		tarReader, header, err = findTarComponent(f, path.Join(path.Dir(componentPath), header.Linkname))
-		if err != nil {
-			return nil, err
-		}
-		if header == nil {
-			return nil, os.ErrNotExist
-		}
-	}
-
-	if !header.FileInfo().Mode().IsRegular() {
-		return nil, errors.Errorf("Error reading tar archive component %s: not a regular file", header.Name)
-	}
-	succeeded = true
-	return &tarReadCloser{Reader: tarReader, backingFile: f}, nil
-}
-
-// findTarComponent returns a header and a reader matching path within inputFile,
-// or (nil, nil, nil) if not found.
-func findTarComponent(inputFile io.Reader, path string) (*tar.Reader, *tar.Header, error) {
-	t := tar.NewReader(inputFile)
-	for {
-		h, err := t.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return nil, nil, err
-		}
-		if h.Name == path {
-			return t, h, nil
-		}
-	}
-	return nil, nil, nil
-}
-
-// readTarComponent returns full contents of componentPath.
-func (s *Source) readTarComponent(path string) ([]byte, error) {
-	file, err := s.openTarComponent(path)
-	if err != nil {
-		return nil, errors.Wrapf(err, "Error loading tar component %s", path)
-	}
-	defer file.Close()
-	bytes, err := ioutil.ReadAll(file)
-	if err != nil {
-		return nil, err
-	}
-	return bytes, nil
-}
-
-// ensureCachedDataIsPresent loads data necessary for any of the public accessors.
-func (s *Source) ensureCachedDataIsPresent() error {
-	if s.tarManifest != nil {
-		return nil
-	}
-
-	// Read and parse manifest.json
-	tarManifest, err := s.loadTarManifest()
-	if err != nil {
-		return err
-	}
-
-	// Check to make sure length is 1
-	if len(tarManifest) != 1 {
-		return errors.Errorf("Unexpected tar manifest.json: expected 1 item, got %d", len(tarManifest))
-	}
-
-	// Read and parse config.
-	configBytes, err := s.readTarComponent(tarManifest[0].Config)
-	if err != nil {
-		return err
-	}
-	var parsedConfig manifest.Schema2Image // There's a lot of info there, but we only really care about layer DiffIDs.
-	if err := json.Unmarshal(configBytes, &parsedConfig); err != nil {
-		return errors.Wrapf(err, "Error decoding tar config %s", tarManifest[0].Config)
-	}
-
-	knownLayers, err := s.prepareLayerData(&tarManifest[0], &parsedConfig)
-	if err != nil {
-		return err
-	}
-
-	// Success; commit.
-	s.tarManifest = &tarManifest[0]
-	s.configBytes = configBytes
-	s.configDigest = digest.FromBytes(configBytes)
-	s.orderedDiffIDList = parsedConfig.RootFS.DiffIDs
-	s.knownLayers = knownLayers
-	return nil
-}
-
-// loadTarManifest loads and decodes the manifest.json.
-func (s *Source) loadTarManifest() ([]ManifestItem, error) {
-	// FIXME? Do we need to deal with the legacy format?
-	bytes, err := s.readTarComponent(manifestFileName)
-	if err != nil {
-		return nil, err
-	}
-	var items []ManifestItem
-	if err := json.Unmarshal(bytes, &items); err != nil {
-		return nil, errors.Wrap(err, "Error decoding tar manifest.json")
-	}
-	return items, nil
-}
-
-// LoadTarManifest loads and decodes the manifest.json
-func (s *Source) LoadTarManifest() ([]ManifestItem, error) {
-	return s.loadTarManifest()
-}
-
-func (s *Source) prepareLayerData(tarManifest *ManifestItem, parsedConfig *manifest.Schema2Image) (map[digest.Digest]*layerInfo, error) {
-	// Collect layer data available in manifest and config.
-	if len(tarManifest.Layers) != len(parsedConfig.RootFS.DiffIDs) {
-		return nil, errors.Errorf("Inconsistent layer count: %d in manifest, %d in config", len(tarManifest.Layers), len(parsedConfig.RootFS.DiffIDs))
-	}
-	knownLayers := map[digest.Digest]*layerInfo{}
-	unknownLayerSizes := map[string]*layerInfo{} // Points into knownLayers, a "to do list" of items with unknown sizes.
-	for i, diffID := range parsedConfig.RootFS.DiffIDs {
-		if _, ok := knownLayers[diffID]; ok {
-			// Apparently it really can happen that a single image contains the same layer diff more than once.
-			// In that case, the diffID validation ensures that both layers truly are the same, and it should not matter
-			// which of the tarManifest.Layers paths is used; (docker save) actually makes the duplicates symlinks to the original.
-			continue
-		}
-		layerPath := tarManifest.Layers[i]
-		if _, ok := unknownLayerSizes[layerPath]; ok {
-			return nil, errors.Errorf("Layer tarfile %s used for two different DiffID values", layerPath)
-		}
-		li := &layerInfo{ // A new element in each iteration
-			path: layerPath,
-			size: -1,
-		}
-		knownLayers[diffID] = li
-		unknownLayerSizes[layerPath] = li
-	}
-
-	// Scan the tar file to collect layer sizes.
-	file, err := os.Open(s.tarPath)
-	if err != nil {
-		return nil, err
-	}
-	defer file.Close()
-	t := tar.NewReader(file)
-	for {
-		h, err := t.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return nil, err
-		}
-		if li, ok := unknownLayerSizes[h.Name]; ok {
-			li.size = h.Size
-			delete(unknownLayerSizes, h.Name)
-		}
-	}
-	if len(unknownLayerSizes) != 0 {
-		return nil, errors.Errorf("Some layer tarfiles are missing in the tarball") // This could do with a better error reporting, if this ever happened in practice.
-	}
-
-	return knownLayers, nil
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *Source) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if instanceDigest != nil {
-		// How did we even get here? GetManifest(nil) has returned a manifest.DockerV2Schema2MediaType.
-		return nil, "", errors.Errorf(`Manifest lists are not supported by "docker-daemon:"`)
-	}
-	if s.generatedManifest == nil {
-		if err := s.ensureCachedDataIsPresent(); err != nil {
-			return nil, "", err
-		}
-		m := manifest.Schema2{
-			SchemaVersion: 2,
-			MediaType:     manifest.DockerV2Schema2MediaType,
-			ConfigDescriptor: manifest.Schema2Descriptor{
-				MediaType: manifest.DockerV2Schema2ConfigMediaType,
-				Size:      int64(len(s.configBytes)),
-				Digest:    s.configDigest,
-			},
-			LayersDescriptors: []manifest.Schema2Descriptor{},
-		}
-		for _, diffID := range s.orderedDiffIDList {
-			li, ok := s.knownLayers[diffID]
-			if !ok {
-				return nil, "", errors.Errorf("Internal inconsistency: Information about layer %s missing", diffID)
-			}
-			m.LayersDescriptors = append(m.LayersDescriptors, manifest.Schema2Descriptor{
-				Digest:    diffID, // diffID is a digest of the uncompressed tarball
-				MediaType: manifest.DockerV2Schema2LayerMediaType,
-				Size:      li.size,
-			})
-		}
-		manifestBytes, err := json.Marshal(&m)
-		if err != nil {
-			return nil, "", err
-		}
-		s.generatedManifest = manifestBytes
-	}
-	return s.generatedManifest, manifest.DockerV2Schema2MediaType, nil
-}
-
-type readCloseWrapper struct {
-	io.Reader
-	closeFunc func() error
-}
-
-func (r readCloseWrapper) Close() error {
-	if r.closeFunc != nil {
-		return r.closeFunc()
-	}
-	return nil
-}
-
-// GetBlob returns a stream for the specified blob, and the blob’s size (or -1 if unknown).
-func (s *Source) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	if err := s.ensureCachedDataIsPresent(); err != nil {
-		return nil, 0, err
-	}
-
-	if info.Digest == s.configDigest { // FIXME? Implement a more general algorithm matching instead of assuming sha256.
-		return ioutil.NopCloser(bytes.NewReader(s.configBytes)), int64(len(s.configBytes)), nil
-	}
-
-	if li, ok := s.knownLayers[info.Digest]; ok { // diffID is a digest of the uncompressed tarball,
-		stream, err := s.openTarComponent(li.path)
-		if err != nil {
-			return nil, 0, err
-		}
-
-		// In order to handle the fact that digests != diffIDs (and thus that a
-		// caller which is trying to verify the blob will run into problems),
-		// we need to decompress blobs. This is a bit ugly, but it's a
-		// consequence of making everything addressable by their DiffID rather
-		// than by their digest...
-		//
-		// In particular, because the v2s2 manifest being generated uses
-		// DiffIDs, any caller of GetBlob is going to be asking for DiffIDs of
-		// layers not their _actual_ digest. The result is that copy/... will
-		// be verifing a "digest" which is not the actual layer's digest (but
-		// is instead the DiffID).
-
-		decompressFunc, reader, err := compression.DetectCompression(stream)
-		if err != nil {
-			return nil, 0, errors.Wrapf(err, "Detecting compression in blob %s", info.Digest)
-		}
-
-		if decompressFunc != nil {
-			reader, err = decompressFunc(reader)
-			if err != nil {
-				return nil, 0, errors.Wrapf(err, "Decompressing blob %s stream", info.Digest)
-			}
-		}
-
-		newStream := readCloseWrapper{
-			Reader:    reader,
-			closeFunc: stream.Close,
-		}
-
-		return newStream, li.size, nil
-	}
-
-	return nil, 0, errors.Errorf("Unknown blob %s", info.Digest)
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *Source) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	if instanceDigest != nil {
-		// How did we even get here? GetManifest(nil) has returned a manifest.DockerV2Schema2MediaType.
-		return nil, errors.Errorf(`Manifest lists are not supported by "docker-daemon:"`)
-	}
-	return [][]byte{}, nil
-}
diff --git a/vendor/github.com/containers/image/docker/tarfile/types.go b/vendor/github.com/containers/image/docker/tarfile/types.go
deleted file mode 100644
index 2aa5675457..0000000000
--- a/vendor/github.com/containers/image/docker/tarfile/types.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package tarfile
-
-import (
-	"github.com/containers/image/manifest"
-	"github.com/opencontainers/go-digest"
-)
-
-// Various data structures.
-
-// Based on github.com/docker/docker/image/tarexport/tarexport.go
-const (
-	manifestFileName = "manifest.json"
-	// legacyLayerFileName        = "layer.tar"
-	// legacyConfigFileName       = "json"
-	// legacyVersionFileName      = "VERSION"
-	// legacyRepositoriesFileName = "repositories"
-)
-
-// ManifestItem is an element of the array stored in the top-level manifest.json file.
-type ManifestItem struct {
-	Config       string
-	RepoTags     []string
-	Layers       []string
-	Parent       imageID                                      `json:",omitempty"`
-	LayerSources map[digest.Digest]manifest.Schema2Descriptor `json:",omitempty"`
-}
-
-type imageID string
diff --git a/vendor/github.com/containers/image/docker/wwwauthenticate.go b/vendor/github.com/containers/image/docker/wwwauthenticate.go
deleted file mode 100644
index 23664a74a5..0000000000
--- a/vendor/github.com/containers/image/docker/wwwauthenticate.go
+++ /dev/null
@@ -1,159 +0,0 @@
-package docker
-
-// Based on github.com/docker/distribution/registry/client/auth/authchallenge.go, primarily stripping unnecessary dependencies.
-
-import (
-	"net/http"
-	"strings"
-)
-
-// challenge carries information from a WWW-Authenticate response header.
-// See RFC 7235.
-type challenge struct {
-	// Scheme is the auth-scheme according to RFC 7235
-	Scheme string
-
-	// Parameters are the auth-params according to RFC 7235
-	Parameters map[string]string
-}
-
-// Octet types from RFC 7230.
-type octetType byte
-
-var octetTypes [256]octetType
-
-const (
-	isToken octetType = 1 << iota
-	isSpace
-)
-
-func init() {
-	// OCTET      = <any 8-bit sequence of data>
-	// CHAR       = <any US-ASCII character (octets 0 - 127)>
-	// CTL        = <any US-ASCII control character (octets 0 - 31) and DEL (127)>
-	// CR         = <US-ASCII CR, carriage return (13)>
-	// LF         = <US-ASCII LF, linefeed (10)>
-	// SP         = <US-ASCII SP, space (32)>
-	// HT         = <US-ASCII HT, horizontal-tab (9)>
-	// <">        = <US-ASCII double-quote mark (34)>
-	// CRLF       = CR LF
-	// LWS        = [CRLF] 1*( SP | HT )
-	// TEXT       = <any OCTET except CTLs, but including LWS>
-	// separators = "(" | ")" | "<" | ">" | "@" | "," | ";" | ":" | "\" | <">
-	//              | "/" | "[" | "]" | "?" | "=" | "{" | "}" | SP | HT
-	// token      = 1*<any CHAR except CTLs or separators>
-	// qdtext     = <any TEXT except <">>
-
-	for c := 0; c < 256; c++ {
-		var t octetType
-		isCtl := c <= 31 || c == 127
-		isChar := 0 <= c && c <= 127
-		isSeparator := strings.IndexRune(" \t\"(),/:;<=>?@[]\\{}", rune(c)) >= 0
-		if strings.IndexRune(" \t\r\n", rune(c)) >= 0 {
-			t |= isSpace
-		}
-		if isChar && !isCtl && !isSeparator {
-			t |= isToken
-		}
-		octetTypes[c] = t
-	}
-}
-
-func parseAuthHeader(header http.Header) []challenge {
-	challenges := []challenge{}
-	for _, h := range header[http.CanonicalHeaderKey("WWW-Authenticate")] {
-		v, p := parseValueAndParams(h)
-		if v != "" {
-			challenges = append(challenges, challenge{Scheme: v, Parameters: p})
-		}
-	}
-	return challenges
-}
-
-// NOTE: This is not a fully compliant parser per RFC 7235:
-// Most notably it does not support more than one challenge within a single header
-// Some of the whitespace parsing also seems noncompliant.
-// But it is clearly better than what we used to have…
-func parseValueAndParams(header string) (value string, params map[string]string) {
-	params = make(map[string]string)
-	value, s := expectToken(header)
-	if value == "" {
-		return
-	}
-	value = strings.ToLower(value)
-	s = "," + skipSpace(s)
-	for strings.HasPrefix(s, ",") {
-		var pkey string
-		pkey, s = expectToken(skipSpace(s[1:]))
-		if pkey == "" {
-			return
-		}
-		if !strings.HasPrefix(s, "=") {
-			return
-		}
-		var pvalue string
-		pvalue, s = expectTokenOrQuoted(s[1:])
-		if pvalue == "" {
-			return
-		}
-		pkey = strings.ToLower(pkey)
-		params[pkey] = pvalue
-		s = skipSpace(s)
-	}
-	return
-}
-
-func skipSpace(s string) (rest string) {
-	i := 0
-	for ; i < len(s); i++ {
-		if octetTypes[s[i]]&isSpace == 0 {
-			break
-		}
-	}
-	return s[i:]
-}
-
-func expectToken(s string) (token, rest string) {
-	i := 0
-	for ; i < len(s); i++ {
-		if octetTypes[s[i]]&isToken == 0 {
-			break
-		}
-	}
-	return s[:i], s[i:]
-}
-
-func expectTokenOrQuoted(s string) (value string, rest string) {
-	if !strings.HasPrefix(s, "\"") {
-		return expectToken(s)
-	}
-	s = s[1:]
-	for i := 0; i < len(s); i++ {
-		switch s[i] {
-		case '"':
-			return s[:i], s[i+1:]
-		case '\\':
-			p := make([]byte, len(s)-1)
-			j := copy(p, s[:i])
-			escape := true
-			for i = i + 1; i < len(s); i++ {
-				b := s[i]
-				switch {
-				case escape:
-					escape = false
-					p[j] = b
-					j++
-				case b == '\\':
-					escape = true
-				case b == '"':
-					return string(p[:j]), s[i+1:]
-				default:
-					p[j] = b
-					j++
-				}
-			}
-			return "", ""
-		}
-	}
-	return "", ""
-}
diff --git a/vendor/github.com/containers/image/image/docker_list.go b/vendor/github.com/containers/image/image/docker_list.go
deleted file mode 100644
index 412261ddbb..0000000000
--- a/vendor/github.com/containers/image/image/docker_list.go
+++ /dev/null
@@ -1,93 +0,0 @@
-package image
-
-import (
-	"encoding/json"
-	"fmt"
-	"runtime"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-type platformSpec struct {
-	Architecture string   `json:"architecture"`
-	OS           string   `json:"os"`
-	OSVersion    string   `json:"os.version,omitempty"`
-	OSFeatures   []string `json:"os.features,omitempty"`
-	Variant      string   `json:"variant,omitempty"`
-	Features     []string `json:"features,omitempty"` // removed in OCI
-}
-
-// A manifestDescriptor references a platform-specific manifest.
-type manifestDescriptor struct {
-	manifest.Schema2Descriptor
-	Platform platformSpec `json:"platform"`
-}
-
-type manifestList struct {
-	SchemaVersion int                  `json:"schemaVersion"`
-	MediaType     string               `json:"mediaType"`
-	Manifests     []manifestDescriptor `json:"manifests"`
-}
-
-// chooseDigestFromManifestList parses blob as a schema2 manifest list,
-// and returns the digest of the image appropriate for the current environment.
-func chooseDigestFromManifestList(ctx *types.SystemContext, blob []byte) (digest.Digest, error) {
-	wantedArch := runtime.GOARCH
-	if ctx != nil && ctx.ArchitectureChoice != "" {
-		wantedArch = ctx.ArchitectureChoice
-	}
-	wantedOS := runtime.GOOS
-	if ctx != nil && ctx.OSChoice != "" {
-		wantedOS = ctx.OSChoice
-	}
-
-	list := manifestList{}
-	if err := json.Unmarshal(blob, &list); err != nil {
-		return "", err
-	}
-	for _, d := range list.Manifests {
-		if d.Platform.Architecture == wantedArch && d.Platform.OS == wantedOS {
-			return d.Digest, nil
-		}
-	}
-	return "", fmt.Errorf("no image found in manifest list for architecture %s, OS %s", wantedArch, wantedOS)
-}
-
-func manifestSchema2FromManifestList(ctx *types.SystemContext, src types.ImageSource, manblob []byte) (genericManifest, error) {
-	targetManifestDigest, err := chooseDigestFromManifestList(ctx, manblob)
-	if err != nil {
-		return nil, err
-	}
-	manblob, mt, err := src.GetManifest(&targetManifestDigest)
-	if err != nil {
-		return nil, err
-	}
-
-	matches, err := manifest.MatchesDigest(manblob, targetManifestDigest)
-	if err != nil {
-		return nil, errors.Wrap(err, "Error computing manifest digest")
-	}
-	if !matches {
-		return nil, errors.Errorf("Manifest image does not match selected manifest digest %s", targetManifestDigest)
-	}
-
-	return manifestInstanceFromBlob(ctx, src, manblob, mt)
-}
-
-// ChooseManifestInstanceFromManifestList returns a digest of a manifest appropriate
-// for the current system from the manifest available from src.
-func ChooseManifestInstanceFromManifestList(ctx *types.SystemContext, src types.UnparsedImage) (digest.Digest, error) {
-	// For now this only handles manifest.DockerV2ListMediaType; we can generalize it later,
-	// probably along with manifest list editing.
-	blob, mt, err := src.Manifest()
-	if err != nil {
-		return "", err
-	}
-	if mt != manifest.DockerV2ListMediaType {
-		return "", fmt.Errorf("Internal error: Trying to select an image from a non-manifest-list manifest type %s", mt)
-	}
-	return chooseDigestFromManifestList(ctx, blob)
-}
diff --git a/vendor/github.com/containers/image/image/docker_schema1.go b/vendor/github.com/containers/image/image/docker_schema1.go
deleted file mode 100644
index c6a6989dee..0000000000
--- a/vendor/github.com/containers/image/image/docker_schema1.go
+++ /dev/null
@@ -1,201 +0,0 @@
-package image
-
-import (
-	"encoding/json"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-type manifestSchema1 struct {
-	m *manifest.Schema1
-}
-
-func manifestSchema1FromManifest(manifestBlob []byte) (genericManifest, error) {
-	m, err := manifest.Schema1FromManifest(manifestBlob)
-	if err != nil {
-		return nil, err
-	}
-	return &manifestSchema1{m: m}, nil
-}
-
-// manifestSchema1FromComponents builds a new manifestSchema1 from the supplied data.
-func manifestSchema1FromComponents(ref reference.Named, fsLayers []manifest.Schema1FSLayers, history []manifest.Schema1History, architecture string) genericManifest {
-	return &manifestSchema1{m: manifest.Schema1FromComponents(ref, fsLayers, history, architecture)}
-}
-
-func (m *manifestSchema1) serialize() ([]byte, error) {
-	return m.m.Serialize()
-}
-
-func (m *manifestSchema1) manifestMIMEType() string {
-	return manifest.DockerV2Schema1SignedMediaType
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-// Note that the config object may not exist in the underlying storage in the return value of UpdatedImage! Use ConfigBlob() below.
-func (m *manifestSchema1) ConfigInfo() types.BlobInfo {
-	return m.m.ConfigInfo()
-}
-
-// ConfigBlob returns the blob described by ConfigInfo, iff ConfigInfo().Digest != ""; nil otherwise.
-// The result is cached; it is OK to call this however often you need.
-func (m *manifestSchema1) ConfigBlob() ([]byte, error) {
-	return nil, nil
-}
-
-// OCIConfig returns the image configuration as per OCI v1 image-spec. Information about
-// layers in the resulting configuration isn't guaranteed to be returned to due how
-// old image manifests work (docker v2s1 especially).
-func (m *manifestSchema1) OCIConfig() (*imgspecv1.Image, error) {
-	v2s2, err := m.convertToManifestSchema2(nil, nil)
-	if err != nil {
-		return nil, err
-	}
-	return v2s2.OCIConfig()
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *manifestSchema1) LayerInfos() []types.BlobInfo {
-	return m.m.LayerInfos()
-}
-
-// EmbeddedDockerReferenceConflicts whether a Docker reference embedded in the manifest, if any, conflicts with destination ref.
-// It returns false if the manifest does not embed a Docker reference.
-// (This embedding unfortunately happens for Docker schema1, please do not add support for this in any new formats.)
-func (m *manifestSchema1) EmbeddedDockerReferenceConflicts(ref reference.Named) bool {
-	// This is a bit convoluted: We can’t just have a "get embedded docker reference" method
-	// and have the “does it conflict” logic in the generic copy code, because the manifest does not actually
-	// embed a full docker/distribution reference, but only the repo name and tag (without the host name).
-	// So we would have to provide a “return repo without host name, and tag” getter for the generic code,
-	// which would be very awkward.  Instead, we do the matching here in schema1-specific code, and all the
-	// generic copy code needs to know about is reference.Named and that a manifest may need updating
-	// for some destinations.
-	name := reference.Path(ref)
-	var tag string
-	if tagged, isTagged := ref.(reference.NamedTagged); isTagged {
-		tag = tagged.Tag()
-	} else {
-		tag = ""
-	}
-	return m.m.Name != name || m.m.Tag != tag
-}
-
-func (m *manifestSchema1) imageInspectInfo() (*types.ImageInspectInfo, error) {
-	return m.m.Inspect(nil)
-}
-
-// UpdatedImageNeedsLayerDiffIDs returns true iff UpdatedImage(options) needs InformationOnly.LayerDiffIDs.
-// This is a horribly specific interface, but computing InformationOnly.LayerDiffIDs can be very expensive to compute
-// (most importantly it forces us to download the full layers even if they are already present at the destination).
-func (m *manifestSchema1) UpdatedImageNeedsLayerDiffIDs(options types.ManifestUpdateOptions) bool {
-	return options.ManifestMIMEType == manifest.DockerV2Schema2MediaType
-}
-
-// UpdatedImage returns a types.Image modified according to options.
-// This does not change the state of the original Image object.
-func (m *manifestSchema1) UpdatedImage(options types.ManifestUpdateOptions) (types.Image, error) {
-	copy := manifestSchema1{m: manifest.Schema1Clone(m.m)}
-	if options.LayerInfos != nil {
-		if err := copy.m.UpdateLayerInfos(options.LayerInfos); err != nil {
-			return nil, err
-		}
-	}
-	if options.EmbeddedDockerReference != nil {
-		copy.m.Name = reference.Path(options.EmbeddedDockerReference)
-		if tagged, isTagged := options.EmbeddedDockerReference.(reference.NamedTagged); isTagged {
-			copy.m.Tag = tagged.Tag()
-		} else {
-			copy.m.Tag = ""
-		}
-	}
-
-	switch options.ManifestMIMEType {
-	case "": // No conversion, OK
-	case manifest.DockerV2Schema1MediaType, manifest.DockerV2Schema1SignedMediaType:
-	// We have 2 MIME types for schema 1, which are basically equivalent (even the un-"Signed" MIME type will be rejected if there isn’t a signature; so,
-	// handle conversions between them by doing nothing.
-	case manifest.DockerV2Schema2MediaType:
-		m2, err := copy.convertToManifestSchema2(options.InformationOnly.LayerInfos, options.InformationOnly.LayerDiffIDs)
-		if err != nil {
-			return nil, err
-		}
-		return memoryImageFromManifest(m2), nil
-	case imgspecv1.MediaTypeImageManifest:
-		// We can't directly convert to OCI, but we can transitively convert via a Docker V2.2 Distribution manifest
-		m2, err := copy.convertToManifestSchema2(options.InformationOnly.LayerInfos, options.InformationOnly.LayerDiffIDs)
-		if err != nil {
-			return nil, err
-		}
-		return m2.UpdatedImage(types.ManifestUpdateOptions{
-			ManifestMIMEType: imgspecv1.MediaTypeImageManifest,
-			InformationOnly:  options.InformationOnly,
-		})
-	default:
-		return nil, errors.Errorf("Conversion of image manifest from %s to %s is not implemented", manifest.DockerV2Schema1SignedMediaType, options.ManifestMIMEType)
-	}
-
-	return memoryImageFromManifest(&copy), nil
-}
-
-// Based on github.com/docker/docker/distribution/pull_v2.go
-func (m *manifestSchema1) convertToManifestSchema2(uploadedLayerInfos []types.BlobInfo, layerDiffIDs []digest.Digest) (genericManifest, error) {
-	if len(m.m.History) == 0 {
-		// What would this even mean?! Anyhow, the rest of the code depends on fsLayers[0] and history[0] existing.
-		return nil, errors.Errorf("Cannot convert an image with 0 history entries to %s", manifest.DockerV2Schema2MediaType)
-	}
-	if len(m.m.History) != len(m.m.FSLayers) {
-		return nil, errors.Errorf("Inconsistent schema 1 manifest: %d history entries, %d fsLayers entries", len(m.m.History), len(m.m.FSLayers))
-	}
-	if uploadedLayerInfos != nil && len(uploadedLayerInfos) != len(m.m.FSLayers) {
-		return nil, errors.Errorf("Internal error: uploaded %d blobs, but schema1 manifest has %d fsLayers", len(uploadedLayerInfos), len(m.m.FSLayers))
-	}
-	if layerDiffIDs != nil && len(layerDiffIDs) != len(m.m.FSLayers) {
-		return nil, errors.Errorf("Internal error: collected %d DiffID values, but schema1 manifest has %d fsLayers", len(layerDiffIDs), len(m.m.FSLayers))
-	}
-
-	// Build a list of the diffIDs for the non-empty layers.
-	diffIDs := []digest.Digest{}
-	var layers []manifest.Schema2Descriptor
-	for v1Index := len(m.m.History) - 1; v1Index >= 0; v1Index-- {
-		v2Index := (len(m.m.History) - 1) - v1Index
-
-		var v1compat manifest.Schema1V1Compatibility
-		if err := json.Unmarshal([]byte(m.m.History[v1Index].V1Compatibility), &v1compat); err != nil {
-			return nil, errors.Wrapf(err, "Error decoding history entry %d", v1Index)
-		}
-		if !v1compat.ThrowAway {
-			var size int64
-			if uploadedLayerInfos != nil {
-				size = uploadedLayerInfos[v2Index].Size
-			}
-			var d digest.Digest
-			if layerDiffIDs != nil {
-				d = layerDiffIDs[v2Index]
-			}
-			layers = append(layers, manifest.Schema2Descriptor{
-				MediaType: "application/vnd.docker.image.rootfs.diff.tar.gzip",
-				Size:      size,
-				Digest:    m.m.FSLayers[v1Index].BlobSum,
-			})
-			diffIDs = append(diffIDs, d)
-		}
-	}
-	configJSON, err := m.m.ToSchema2(diffIDs)
-	if err != nil {
-		return nil, err
-	}
-	configDescriptor := manifest.Schema2Descriptor{
-		MediaType: "application/vnd.docker.container.image.v1+json",
-		Size:      int64(len(configJSON)),
-		Digest:    digest.FromBytes(configJSON),
-	}
-
-	return manifestSchema2FromComponents(configDescriptor, nil, configJSON, layers), nil
-}
diff --git a/vendor/github.com/containers/image/image/docker_schema2.go b/vendor/github.com/containers/image/image/docker_schema2.go
deleted file mode 100644
index b43bc17cfd..0000000000
--- a/vendor/github.com/containers/image/image/docker_schema2.go
+++ /dev/null
@@ -1,347 +0,0 @@
-package image
-
-import (
-	"bytes"
-	"crypto/sha256"
-	"encoding/hex"
-	"encoding/json"
-	"io/ioutil"
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// gzippedEmptyLayer is a gzip-compressed version of an empty tar file (1024 NULL bytes)
-// This comes from github.com/docker/distribution/manifest/schema1/config_builder.go; there is
-// a non-zero embedded timestamp; we could zero that, but that would just waste storage space
-// in registries, so let’s use the same values.
-var gzippedEmptyLayer = []byte{
-	31, 139, 8, 0, 0, 9, 110, 136, 0, 255, 98, 24, 5, 163, 96, 20, 140, 88,
-	0, 8, 0, 0, 255, 255, 46, 175, 181, 239, 0, 4, 0, 0,
-}
-
-// gzippedEmptyLayerDigest is a digest of gzippedEmptyLayer
-const gzippedEmptyLayerDigest = digest.Digest("sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4")
-
-type manifestSchema2 struct {
-	src        types.ImageSource // May be nil if configBlob is not nil
-	configBlob []byte            // If set, corresponds to contents of ConfigDescriptor.
-	m          *manifest.Schema2
-}
-
-func manifestSchema2FromManifest(src types.ImageSource, manifestBlob []byte) (genericManifest, error) {
-	m, err := manifest.Schema2FromManifest(manifestBlob)
-	if err != nil {
-		return nil, err
-	}
-	return &manifestSchema2{
-		src: src,
-		m:   m,
-	}, nil
-}
-
-// manifestSchema2FromComponents builds a new manifestSchema2 from the supplied data:
-func manifestSchema2FromComponents(config manifest.Schema2Descriptor, src types.ImageSource, configBlob []byte, layers []manifest.Schema2Descriptor) genericManifest {
-	return &manifestSchema2{
-		src:        src,
-		configBlob: configBlob,
-		m:          manifest.Schema2FromComponents(config, layers),
-	}
-}
-
-func (m *manifestSchema2) serialize() ([]byte, error) {
-	return m.m.Serialize()
-}
-
-func (m *manifestSchema2) manifestMIMEType() string {
-	return m.m.MediaType
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-// Note that the config object may not exist in the underlying storage in the return value of UpdatedImage! Use ConfigBlob() below.
-func (m *manifestSchema2) ConfigInfo() types.BlobInfo {
-	return m.m.ConfigInfo()
-}
-
-// OCIConfig returns the image configuration as per OCI v1 image-spec. Information about
-// layers in the resulting configuration isn't guaranteed to be returned to due how
-// old image manifests work (docker v2s1 especially).
-func (m *manifestSchema2) OCIConfig() (*imgspecv1.Image, error) {
-	configBlob, err := m.ConfigBlob()
-	if err != nil {
-		return nil, err
-	}
-	// docker v2s2 and OCI v1 are mostly compatible but v2s2 contains more fields
-	// than OCI v1. This unmarshal makes sure we drop docker v2s2
-	// fields that aren't needed in OCI v1.
-	configOCI := &imgspecv1.Image{}
-	if err := json.Unmarshal(configBlob, configOCI); err != nil {
-		return nil, err
-	}
-	return configOCI, nil
-}
-
-// ConfigBlob returns the blob described by ConfigInfo, iff ConfigInfo().Digest != ""; nil otherwise.
-// The result is cached; it is OK to call this however often you need.
-func (m *manifestSchema2) ConfigBlob() ([]byte, error) {
-	if m.configBlob == nil {
-		if m.src == nil {
-			return nil, errors.Errorf("Internal error: neither src nor configBlob set in manifestSchema2")
-		}
-		stream, _, err := m.src.GetBlob(types.BlobInfo{
-			Digest: m.m.ConfigDescriptor.Digest,
-			Size:   m.m.ConfigDescriptor.Size,
-			URLs:   m.m.ConfigDescriptor.URLs,
-		})
-		if err != nil {
-			return nil, err
-		}
-		defer stream.Close()
-		blob, err := ioutil.ReadAll(stream)
-		if err != nil {
-			return nil, err
-		}
-		computedDigest := digest.FromBytes(blob)
-		if computedDigest != m.m.ConfigDescriptor.Digest {
-			return nil, errors.Errorf("Download config.json digest %s does not match expected %s", computedDigest, m.m.ConfigDescriptor.Digest)
-		}
-		m.configBlob = blob
-	}
-	return m.configBlob, nil
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *manifestSchema2) LayerInfos() []types.BlobInfo {
-	return m.m.LayerInfos()
-}
-
-// EmbeddedDockerReferenceConflicts whether a Docker reference embedded in the manifest, if any, conflicts with destination ref.
-// It returns false if the manifest does not embed a Docker reference.
-// (This embedding unfortunately happens for Docker schema1, please do not add support for this in any new formats.)
-func (m *manifestSchema2) EmbeddedDockerReferenceConflicts(ref reference.Named) bool {
-	return false
-}
-
-func (m *manifestSchema2) imageInspectInfo() (*types.ImageInspectInfo, error) {
-	getter := func(info types.BlobInfo) ([]byte, error) {
-		if info.Digest != m.ConfigInfo().Digest {
-			// Shouldn't ever happen
-			return nil, errors.New("asked for a different config blob")
-		}
-		config, err := m.ConfigBlob()
-		if err != nil {
-			return nil, err
-		}
-		return config, nil
-	}
-	return m.m.Inspect(getter)
-}
-
-// UpdatedImageNeedsLayerDiffIDs returns true iff UpdatedImage(options) needs InformationOnly.LayerDiffIDs.
-// This is a horribly specific interface, but computing InformationOnly.LayerDiffIDs can be very expensive to compute
-// (most importantly it forces us to download the full layers even if they are already present at the destination).
-func (m *manifestSchema2) UpdatedImageNeedsLayerDiffIDs(options types.ManifestUpdateOptions) bool {
-	return false
-}
-
-// UpdatedImage returns a types.Image modified according to options.
-// This does not change the state of the original Image object.
-func (m *manifestSchema2) UpdatedImage(options types.ManifestUpdateOptions) (types.Image, error) {
-	copy := manifestSchema2{ // NOTE: This is not a deep copy, it still shares slices etc.
-		src:        m.src,
-		configBlob: m.configBlob,
-		m:          manifest.Schema2Clone(m.m),
-	}
-	if options.LayerInfos != nil {
-		if err := copy.m.UpdateLayerInfos(options.LayerInfos); err != nil {
-			return nil, err
-		}
-	}
-	// Ignore options.EmbeddedDockerReference: it may be set when converting from schema1 to schema2, but we really don't care.
-
-	switch options.ManifestMIMEType {
-	case "": // No conversion, OK
-	case manifest.DockerV2Schema1SignedMediaType, manifest.DockerV2Schema1MediaType:
-		return copy.convertToManifestSchema1(options.InformationOnly.Destination)
-	case imgspecv1.MediaTypeImageManifest:
-		return copy.convertToManifestOCI1()
-	default:
-		return nil, errors.Errorf("Conversion of image manifest from %s to %s is not implemented", manifest.DockerV2Schema2MediaType, options.ManifestMIMEType)
-	}
-
-	return memoryImageFromManifest(&copy), nil
-}
-
-func oci1DescriptorFromSchema2Descriptor(d manifest.Schema2Descriptor) imgspecv1.Descriptor {
-	return imgspecv1.Descriptor{
-		MediaType: d.MediaType,
-		Size:      d.Size,
-		Digest:    d.Digest,
-		URLs:      d.URLs,
-	}
-}
-
-func (m *manifestSchema2) convertToManifestOCI1() (types.Image, error) {
-	configOCI, err := m.OCIConfig()
-	if err != nil {
-		return nil, err
-	}
-	configOCIBytes, err := json.Marshal(configOCI)
-	if err != nil {
-		return nil, err
-	}
-
-	config := imgspecv1.Descriptor{
-		MediaType: imgspecv1.MediaTypeImageConfig,
-		Size:      int64(len(configOCIBytes)),
-		Digest:    digest.FromBytes(configOCIBytes),
-	}
-
-	layers := make([]imgspecv1.Descriptor, len(m.m.LayersDescriptors))
-	for idx := range layers {
-		layers[idx] = oci1DescriptorFromSchema2Descriptor(m.m.LayersDescriptors[idx])
-		if m.m.LayersDescriptors[idx].MediaType == manifest.DockerV2Schema2ForeignLayerMediaType {
-			layers[idx].MediaType = imgspecv1.MediaTypeImageLayerNonDistributable
-		} else {
-			// we assume layers are gzip'ed because docker v2s2 only deals with
-			// gzip'ed layers. However, OCI has non-gzip'ed layers as well.
-			layers[idx].MediaType = imgspecv1.MediaTypeImageLayerGzip
-		}
-	}
-
-	m1 := manifestOCI1FromComponents(config, m.src, configOCIBytes, layers)
-	return memoryImageFromManifest(m1), nil
-}
-
-// Based on docker/distribution/manifest/schema1/config_builder.go
-func (m *manifestSchema2) convertToManifestSchema1(dest types.ImageDestination) (types.Image, error) {
-	configBytes, err := m.ConfigBlob()
-	if err != nil {
-		return nil, err
-	}
-	imageConfig := &manifest.Schema2Image{}
-	if err := json.Unmarshal(configBytes, imageConfig); err != nil {
-		return nil, err
-	}
-
-	// Build fsLayers and History, discarding all configs. We will patch the top-level config in later.
-	fsLayers := make([]manifest.Schema1FSLayers, len(imageConfig.History))
-	history := make([]manifest.Schema1History, len(imageConfig.History))
-	nonemptyLayerIndex := 0
-	var parentV1ID string // Set in the loop
-	v1ID := ""
-	haveGzippedEmptyLayer := false
-	if len(imageConfig.History) == 0 {
-		// What would this even mean?! Anyhow, the rest of the code depends on fsLayers[0] and history[0] existing.
-		return nil, errors.Errorf("Cannot convert an image with 0 history entries to %s", manifest.DockerV2Schema1SignedMediaType)
-	}
-	for v2Index, historyEntry := range imageConfig.History {
-		parentV1ID = v1ID
-		v1Index := len(imageConfig.History) - 1 - v2Index
-
-		var blobDigest digest.Digest
-		if historyEntry.EmptyLayer {
-			if !haveGzippedEmptyLayer {
-				logrus.Debugf("Uploading empty layer during conversion to schema 1")
-				info, err := dest.PutBlob(bytes.NewReader(gzippedEmptyLayer), types.BlobInfo{Digest: gzippedEmptyLayerDigest, Size: int64(len(gzippedEmptyLayer))})
-				if err != nil {
-					return nil, errors.Wrap(err, "Error uploading empty layer")
-				}
-				if info.Digest != gzippedEmptyLayerDigest {
-					return nil, errors.Errorf("Internal error: Uploaded empty layer has digest %#v instead of %s", info.Digest, gzippedEmptyLayerDigest)
-				}
-				haveGzippedEmptyLayer = true
-			}
-			blobDigest = gzippedEmptyLayerDigest
-		} else {
-			if nonemptyLayerIndex >= len(m.m.LayersDescriptors) {
-				return nil, errors.Errorf("Invalid image configuration, needs more than the %d distributed layers", len(m.m.LayersDescriptors))
-			}
-			blobDigest = m.m.LayersDescriptors[nonemptyLayerIndex].Digest
-			nonemptyLayerIndex++
-		}
-
-		// AFAICT pull ignores these ID values, at least nowadays, so we could use anything unique, including a simple counter. Use what Docker uses for cargo-cult consistency.
-		v, err := v1IDFromBlobDigestAndComponents(blobDigest, parentV1ID)
-		if err != nil {
-			return nil, err
-		}
-		v1ID = v
-
-		fakeImage := manifest.Schema1V1Compatibility{
-			ID:        v1ID,
-			Parent:    parentV1ID,
-			Comment:   historyEntry.Comment,
-			Created:   historyEntry.Created,
-			Author:    historyEntry.Author,
-			ThrowAway: historyEntry.EmptyLayer,
-		}
-		fakeImage.ContainerConfig.Cmd = []string{historyEntry.CreatedBy}
-		v1CompatibilityBytes, err := json.Marshal(&fakeImage)
-		if err != nil {
-			return nil, errors.Errorf("Internal error: Error creating v1compatibility for %#v", fakeImage)
-		}
-
-		fsLayers[v1Index] = manifest.Schema1FSLayers{BlobSum: blobDigest}
-		history[v1Index] = manifest.Schema1History{V1Compatibility: string(v1CompatibilityBytes)}
-		// Note that parentV1ID of the top layer is preserved when exiting this loop
-	}
-
-	// Now patch in real configuration for the top layer (v1Index == 0)
-	v1ID, err = v1IDFromBlobDigestAndComponents(fsLayers[0].BlobSum, parentV1ID, string(configBytes)) // See above WRT v1ID value generation and cargo-cult consistency.
-	if err != nil {
-		return nil, err
-	}
-	v1Config, err := v1ConfigFromConfigJSON(configBytes, v1ID, parentV1ID, imageConfig.History[len(imageConfig.History)-1].EmptyLayer)
-	if err != nil {
-		return nil, err
-	}
-	history[0].V1Compatibility = string(v1Config)
-
-	m1 := manifestSchema1FromComponents(dest.Reference().DockerReference(), fsLayers, history, imageConfig.Architecture)
-	return memoryImageFromManifest(m1), nil
-}
-
-func v1IDFromBlobDigestAndComponents(blobDigest digest.Digest, others ...string) (string, error) {
-	if err := blobDigest.Validate(); err != nil {
-		return "", err
-	}
-	parts := append([]string{blobDigest.Hex()}, others...)
-	v1IDHash := sha256.Sum256([]byte(strings.Join(parts, " ")))
-	return hex.EncodeToString(v1IDHash[:]), nil
-}
-
-func v1ConfigFromConfigJSON(configJSON []byte, v1ID, parentV1ID string, throwaway bool) ([]byte, error) {
-	// Preserve everything we don't specifically know about.
-	// (This must be a *json.RawMessage, even though *[]byte is fairly redundant, because only *RawMessage implements json.Marshaler.)
-	rawContents := map[string]*json.RawMessage{}
-	if err := json.Unmarshal(configJSON, &rawContents); err != nil { // We have already unmarshaled it before, using a more detailed schema?!
-		return nil, err
-	}
-	delete(rawContents, "rootfs")
-	delete(rawContents, "history")
-
-	updates := map[string]interface{}{"id": v1ID}
-	if parentV1ID != "" {
-		updates["parent"] = parentV1ID
-	}
-	if throwaway {
-		updates["throwaway"] = throwaway
-	}
-	for field, value := range updates {
-		encoded, err := json.Marshal(value)
-		if err != nil {
-			return nil, err
-		}
-		rawContents[field] = (*json.RawMessage)(&encoded)
-	}
-	return json.Marshal(rawContents)
-}
diff --git a/vendor/github.com/containers/image/image/manifest.go b/vendor/github.com/containers/image/image/manifest.go
deleted file mode 100644
index cdd4233f70..0000000000
--- a/vendor/github.com/containers/image/image/manifest.go
+++ /dev/null
@@ -1,67 +0,0 @@
-package image
-
-import (
-	"fmt"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-// genericManifest is an interface for parsing, modifying image manifests and related data.
-// Note that the public methods are intended to be a subset of types.Image
-// so that embedding a genericManifest into structs works.
-// will support v1 one day...
-type genericManifest interface {
-	serialize() ([]byte, error)
-	manifestMIMEType() string
-	// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-	// Note that the config object may not exist in the underlying storage in the return value of UpdatedImage! Use ConfigBlob() below.
-	ConfigInfo() types.BlobInfo
-	// ConfigBlob returns the blob described by ConfigInfo, iff ConfigInfo().Digest != ""; nil otherwise.
-	// The result is cached; it is OK to call this however often you need.
-	ConfigBlob() ([]byte, error)
-	// OCIConfig returns the image configuration as per OCI v1 image-spec. Information about
-	// layers in the resulting configuration isn't guaranteed to be returned to due how
-	// old image manifests work (docker v2s1 especially).
-	OCIConfig() (*imgspecv1.Image, error)
-	// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-	// The Digest field is guaranteed to be provided; Size may be -1.
-	// WARNING: The list may contain duplicates, and they are semantically relevant.
-	LayerInfos() []types.BlobInfo
-	// EmbeddedDockerReferenceConflicts whether a Docker reference embedded in the manifest, if any, conflicts with destination ref.
-	// It returns false if the manifest does not embed a Docker reference.
-	// (This embedding unfortunately happens for Docker schema1, please do not add support for this in any new formats.)
-	EmbeddedDockerReferenceConflicts(ref reference.Named) bool
-	imageInspectInfo() (*types.ImageInspectInfo, error) // To be called by inspectManifest
-	// UpdatedImageNeedsLayerDiffIDs returns true iff UpdatedImage(options) needs InformationOnly.LayerDiffIDs.
-	// This is a horribly specific interface, but computing InformationOnly.LayerDiffIDs can be very expensive to compute
-	// (most importantly it forces us to download the full layers even if they are already present at the destination).
-	UpdatedImageNeedsLayerDiffIDs(options types.ManifestUpdateOptions) bool
-	// UpdatedImage returns a types.Image modified according to options.
-	// This does not change the state of the original Image object.
-	UpdatedImage(options types.ManifestUpdateOptions) (types.Image, error)
-}
-
-// manifestInstanceFromBlob returns a genericManifest implementation for (manblob, mt) in src.
-// If manblob is a manifest list, it implicitly chooses an appropriate image from the list.
-func manifestInstanceFromBlob(ctx *types.SystemContext, src types.ImageSource, manblob []byte, mt string) (genericManifest, error) {
-	switch manifest.NormalizedMIMEType(mt) {
-	case manifest.DockerV2Schema1MediaType, manifest.DockerV2Schema1SignedMediaType:
-		return manifestSchema1FromManifest(manblob)
-	case imgspecv1.MediaTypeImageManifest:
-		return manifestOCI1FromManifest(src, manblob)
-	case manifest.DockerV2Schema2MediaType:
-		return manifestSchema2FromManifest(src, manblob)
-	case manifest.DockerV2ListMediaType:
-		return manifestSchema2FromManifestList(ctx, src, manblob)
-	default: // Note that this may not be reachable, manifest.NormalizedMIMEType has a default for unknown values.
-		return nil, fmt.Errorf("Unimplemented manifest MIME type %s", mt)
-	}
-}
-
-// inspectManifest is an implementation of types.Image.Inspect
-func inspectManifest(m genericManifest) (*types.ImageInspectInfo, error) {
-	return m.imageInspectInfo()
-}
diff --git a/vendor/github.com/containers/image/image/memory.go b/vendor/github.com/containers/image/image/memory.go
deleted file mode 100644
index 4639c49a32..0000000000
--- a/vendor/github.com/containers/image/image/memory.go
+++ /dev/null
@@ -1,70 +0,0 @@
-package image
-
-import (
-	"context"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/types"
-)
-
-// memoryImage is a mostly-implementation of types.Image assembled from data
-// created in memory, used primarily as a return value of types.Image.UpdatedImage
-// as a way to carry various structured information in a type-safe and easy-to-use way.
-// Note that this _only_ carries the immediate metadata; it is _not_ a stand-alone
-// collection of all related information, e.g. there is no way to get layer blobs
-// from a memoryImage.
-type memoryImage struct {
-	genericManifest
-	serializedManifest []byte // A private cache for Manifest()
-}
-
-func memoryImageFromManifest(m genericManifest) types.Image {
-	return &memoryImage{
-		genericManifest:    m,
-		serializedManifest: nil,
-	}
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (i *memoryImage) Reference() types.ImageReference {
-	// It would really be inappropriate to return the ImageReference of the image this was based on.
-	return nil
-}
-
-// Size returns the size of the image as stored, if known, or -1 if not.
-func (i *memoryImage) Size() (int64, error) {
-	return -1, nil
-}
-
-// Manifest is like ImageSource.GetManifest, but the result is cached; it is OK to call this however often you need.
-func (i *memoryImage) Manifest() ([]byte, string, error) {
-	if i.serializedManifest == nil {
-		m, err := i.genericManifest.serialize()
-		if err != nil {
-			return nil, "", err
-		}
-		i.serializedManifest = m
-	}
-	return i.serializedManifest, i.genericManifest.manifestMIMEType(), nil
-}
-
-// Signatures is like ImageSource.GetSignatures, but the result is cached; it is OK to call this however often you need.
-func (i *memoryImage) Signatures(ctx context.Context) ([][]byte, error) {
-	// Modifying an image invalidates signatures; a caller asking the updated image for signatures
-	// is probably confused.
-	return nil, errors.New("Internal error: Image.Signatures() is not supported for images modified in memory")
-}
-
-// Inspect returns various information for (skopeo inspect) parsed from the manifest and configuration.
-func (i *memoryImage) Inspect() (*types.ImageInspectInfo, error) {
-	return inspectManifest(i.genericManifest)
-}
-
-// LayerInfosForCopy returns an updated set of layer blob information which may not match the manifest.
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (i *memoryImage) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/image/oci.go b/vendor/github.com/containers/image/image/oci.go
deleted file mode 100644
index e7780c5a6f..0000000000
--- a/vendor/github.com/containers/image/image/oci.go
+++ /dev/null
@@ -1,199 +0,0 @@
-package image
-
-import (
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-type manifestOCI1 struct {
-	src        types.ImageSource // May be nil if configBlob is not nil
-	configBlob []byte            // If set, corresponds to contents of m.Config.
-	m          *manifest.OCI1
-}
-
-func manifestOCI1FromManifest(src types.ImageSource, manifestBlob []byte) (genericManifest, error) {
-	m, err := manifest.OCI1FromManifest(manifestBlob)
-	if err != nil {
-		return nil, err
-	}
-	return &manifestOCI1{
-		src: src,
-		m:   m,
-	}, nil
-}
-
-// manifestOCI1FromComponents builds a new manifestOCI1 from the supplied data:
-func manifestOCI1FromComponents(config imgspecv1.Descriptor, src types.ImageSource, configBlob []byte, layers []imgspecv1.Descriptor) genericManifest {
-	return &manifestOCI1{
-		src:        src,
-		configBlob: configBlob,
-		m:          manifest.OCI1FromComponents(config, layers),
-	}
-}
-
-func (m *manifestOCI1) serialize() ([]byte, error) {
-	return m.m.Serialize()
-}
-
-func (m *manifestOCI1) manifestMIMEType() string {
-	return imgspecv1.MediaTypeImageManifest
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-// Note that the config object may not exist in the underlying storage in the return value of UpdatedImage! Use ConfigBlob() below.
-func (m *manifestOCI1) ConfigInfo() types.BlobInfo {
-	return m.m.ConfigInfo()
-}
-
-// ConfigBlob returns the blob described by ConfigInfo, iff ConfigInfo().Digest != ""; nil otherwise.
-// The result is cached; it is OK to call this however often you need.
-func (m *manifestOCI1) ConfigBlob() ([]byte, error) {
-	if m.configBlob == nil {
-		if m.src == nil {
-			return nil, errors.Errorf("Internal error: neither src nor configBlob set in manifestOCI1")
-		}
-		stream, _, err := m.src.GetBlob(types.BlobInfo{
-			Digest: m.m.Config.Digest,
-			Size:   m.m.Config.Size,
-			URLs:   m.m.Config.URLs,
-		})
-		if err != nil {
-			return nil, err
-		}
-		defer stream.Close()
-		blob, err := ioutil.ReadAll(stream)
-		if err != nil {
-			return nil, err
-		}
-		computedDigest := digest.FromBytes(blob)
-		if computedDigest != m.m.Config.Digest {
-			return nil, errors.Errorf("Download config.json digest %s does not match expected %s", computedDigest, m.m.Config.Digest)
-		}
-		m.configBlob = blob
-	}
-	return m.configBlob, nil
-}
-
-// OCIConfig returns the image configuration as per OCI v1 image-spec. Information about
-// layers in the resulting configuration isn't guaranteed to be returned to due how
-// old image manifests work (docker v2s1 especially).
-func (m *manifestOCI1) OCIConfig() (*imgspecv1.Image, error) {
-	cb, err := m.ConfigBlob()
-	if err != nil {
-		return nil, err
-	}
-	configOCI := &imgspecv1.Image{}
-	if err := json.Unmarshal(cb, configOCI); err != nil {
-		return nil, err
-	}
-	return configOCI, nil
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *manifestOCI1) LayerInfos() []types.BlobInfo {
-	return m.m.LayerInfos()
-}
-
-// EmbeddedDockerReferenceConflicts whether a Docker reference embedded in the manifest, if any, conflicts with destination ref.
-// It returns false if the manifest does not embed a Docker reference.
-// (This embedding unfortunately happens for Docker schema1, please do not add support for this in any new formats.)
-func (m *manifestOCI1) EmbeddedDockerReferenceConflicts(ref reference.Named) bool {
-	return false
-}
-
-func (m *manifestOCI1) imageInspectInfo() (*types.ImageInspectInfo, error) {
-	getter := func(info types.BlobInfo) ([]byte, error) {
-		if info.Digest != m.ConfigInfo().Digest {
-			// Shouldn't ever happen
-			return nil, errors.New("asked for a different config blob")
-		}
-		config, err := m.ConfigBlob()
-		if err != nil {
-			return nil, err
-		}
-		return config, nil
-	}
-	return m.m.Inspect(getter)
-}
-
-// UpdatedImageNeedsLayerDiffIDs returns true iff UpdatedImage(options) needs InformationOnly.LayerDiffIDs.
-// This is a horribly specific interface, but computing InformationOnly.LayerDiffIDs can be very expensive to compute
-// (most importantly it forces us to download the full layers even if they are already present at the destination).
-func (m *manifestOCI1) UpdatedImageNeedsLayerDiffIDs(options types.ManifestUpdateOptions) bool {
-	return false
-}
-
-// UpdatedImage returns a types.Image modified according to options.
-// This does not change the state of the original Image object.
-func (m *manifestOCI1) UpdatedImage(options types.ManifestUpdateOptions) (types.Image, error) {
-	copy := manifestOCI1{ // NOTE: This is not a deep copy, it still shares slices etc.
-		src:        m.src,
-		configBlob: m.configBlob,
-		m:          manifest.OCI1Clone(m.m),
-	}
-	if options.LayerInfos != nil {
-		if err := copy.m.UpdateLayerInfos(options.LayerInfos); err != nil {
-			return nil, err
-		}
-	}
-	// Ignore options.EmbeddedDockerReference: it may be set when converting from schema1, but we really don't care.
-
-	switch options.ManifestMIMEType {
-	case "": // No conversion, OK
-	case manifest.DockerV2Schema1MediaType, manifest.DockerV2Schema1SignedMediaType:
-		// We can't directly convert to V1, but we can transitively convert via a V2 image
-		m2, err := copy.convertToManifestSchema2()
-		if err != nil {
-			return nil, err
-		}
-		return m2.UpdatedImage(types.ManifestUpdateOptions{
-			ManifestMIMEType: options.ManifestMIMEType,
-			InformationOnly:  options.InformationOnly,
-		})
-	case manifest.DockerV2Schema2MediaType:
-		return copy.convertToManifestSchema2()
-	default:
-		return nil, errors.Errorf("Conversion of image manifest from %s to %s is not implemented", imgspecv1.MediaTypeImageManifest, options.ManifestMIMEType)
-	}
-
-	return memoryImageFromManifest(&copy), nil
-}
-
-func schema2DescriptorFromOCI1Descriptor(d imgspecv1.Descriptor) manifest.Schema2Descriptor {
-	return manifest.Schema2Descriptor{
-		MediaType: d.MediaType,
-		Size:      d.Size,
-		Digest:    d.Digest,
-		URLs:      d.URLs,
-	}
-}
-
-func (m *manifestOCI1) convertToManifestSchema2() (types.Image, error) {
-	// Create a copy of the descriptor.
-	config := schema2DescriptorFromOCI1Descriptor(m.m.Config)
-
-	// The only difference between OCI and DockerSchema2 is the mediatypes. The
-	// media type of the manifest is handled by manifestSchema2FromComponents.
-	config.MediaType = manifest.DockerV2Schema2ConfigMediaType
-
-	layers := make([]manifest.Schema2Descriptor, len(m.m.Layers))
-	for idx := range layers {
-		layers[idx] = schema2DescriptorFromOCI1Descriptor(m.m.Layers[idx])
-		layers[idx].MediaType = manifest.DockerV2Schema2LayerMediaType
-	}
-
-	// Rather than copying the ConfigBlob now, we just pass m.src to the
-	// translated manifest, since the only difference is the mediatype of
-	// descriptors there is no change to any blob stored in m.src.
-	m1 := manifestSchema2FromComponents(config, m.src, nil, layers)
-	return memoryImageFromManifest(m1), nil
-}
diff --git a/vendor/github.com/containers/image/image/sourced.go b/vendor/github.com/containers/image/image/sourced.go
deleted file mode 100644
index 3477f341ea..0000000000
--- a/vendor/github.com/containers/image/image/sourced.go
+++ /dev/null
@@ -1,106 +0,0 @@
-// Package image consolidates knowledge about various container image formats
-// (as opposed to image storage mechanisms, which are handled by types.ImageSource)
-// and exposes all of them using an unified interface.
-package image
-
-import (
-	"github.com/containers/image/types"
-)
-
-// imageCloser implements types.ImageCloser, perhaps allowing simple users
-// to use a single object without having keep a reference to a types.ImageSource
-// only to call types.ImageSource.Close().
-type imageCloser struct {
-	types.Image
-	src types.ImageSource
-}
-
-// FromSource returns a types.ImageCloser implementation for the default instance of source.
-// If source is a manifest list, .Manifest() still returns the manifest list,
-// but other methods transparently return data from an appropriate image instance.
-//
-// The caller must call .Close() on the returned ImageCloser.
-//
-// FromSource “takes ownership” of the input ImageSource and will call src.Close()
-// when the image is closed.  (This does not prevent callers from using both the
-// Image and ImageSource objects simultaneously, but it means that they only need to
-// the Image.)
-//
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage instead of calling this function.
-func FromSource(ctx *types.SystemContext, src types.ImageSource) (types.ImageCloser, error) {
-	img, err := FromUnparsedImage(ctx, UnparsedInstance(src, nil))
-	if err != nil {
-		return nil, err
-	}
-	return &imageCloser{
-		Image: img,
-		src:   src,
-	}, nil
-}
-
-func (ic *imageCloser) Close() error {
-	return ic.src.Close()
-}
-
-// sourcedImage is a general set of utilities for working with container images,
-// whatever is their underlying location (i.e. dockerImageSource-independent).
-// Note the existence of skopeo/docker.Image: some instances of a `types.Image`
-// may not be a `sourcedImage` directly. However, most users of `types.Image`
-// do not care, and those who care about `skopeo/docker.Image` know they do.
-type sourcedImage struct {
-	*UnparsedImage
-	manifestBlob     []byte
-	manifestMIMEType string
-	// genericManifest contains data corresponding to manifestBlob.
-	// NOTE: The manifest may have been modified in the process; DO NOT reserialize and store genericManifest
-	// if you want to preserve the original manifest; use manifestBlob directly.
-	genericManifest
-}
-
-// FromUnparsedImage returns a types.Image implementation for unparsed.
-// If unparsed represents a manifest list, .Manifest() still returns the manifest list,
-// but other methods transparently return data from an appropriate single image.
-//
-// The Image must not be used after the underlying ImageSource is Close()d.
-func FromUnparsedImage(ctx *types.SystemContext, unparsed *UnparsedImage) (types.Image, error) {
-	// Note that the input parameter above is specifically *image.UnparsedImage, not types.UnparsedImage:
-	// we want to be able to use unparsed.src.  We could make that an explicit interface, but, well,
-	// this is the only UnparsedImage implementation around, anyway.
-
-	// NOTE: It is essential for signature verification that all parsing done in this object happens on the same manifest which is returned by unparsed.Manifest().
-	manifestBlob, manifestMIMEType, err := unparsed.Manifest()
-	if err != nil {
-		return nil, err
-	}
-
-	parsedManifest, err := manifestInstanceFromBlob(ctx, unparsed.src, manifestBlob, manifestMIMEType)
-	if err != nil {
-		return nil, err
-	}
-
-	return &sourcedImage{
-		UnparsedImage:    unparsed,
-		manifestBlob:     manifestBlob,
-		manifestMIMEType: manifestMIMEType,
-		genericManifest:  parsedManifest,
-	}, nil
-}
-
-// Size returns the size of the image as stored, if it's known, or -1 if it isn't.
-func (i *sourcedImage) Size() (int64, error) {
-	return -1, nil
-}
-
-// Manifest overrides the UnparsedImage.Manifest to always use the fields which we have already fetched.
-func (i *sourcedImage) Manifest() ([]byte, string, error) {
-	return i.manifestBlob, i.manifestMIMEType, nil
-}
-
-func (i *sourcedImage) Inspect() (*types.ImageInspectInfo, error) {
-	return inspectManifest(i.genericManifest)
-}
-
-func (i *sourcedImage) LayerInfosForCopy() []types.BlobInfo {
-	return i.UnparsedImage.LayerInfosForCopy()
-}
diff --git a/vendor/github.com/containers/image/image/unparsed.go b/vendor/github.com/containers/image/image/unparsed.go
deleted file mode 100644
index aff06d8ada..0000000000
--- a/vendor/github.com/containers/image/image/unparsed.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package image
-
-import (
-	"context"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-// UnparsedImage implements types.UnparsedImage .
-// An UnparsedImage is a pair of (ImageSource, instance digest); it can represent either a manifest list or a single image instance.
-type UnparsedImage struct {
-	src            types.ImageSource
-	instanceDigest *digest.Digest
-	cachedManifest []byte // A private cache for Manifest(); nil if not yet known.
-	// A private cache for Manifest(), may be the empty string if guessing failed.
-	// Valid iff cachedManifest is not nil.
-	cachedManifestMIMEType string
-	cachedSignatures       [][]byte // A private cache for Signatures(); nil if not yet known.
-}
-
-// UnparsedInstance returns a types.UnparsedImage implementation for (source, instanceDigest).
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list).
-//
-// The UnparsedImage must not be used after the underlying ImageSource is Close()d.
-func UnparsedInstance(src types.ImageSource, instanceDigest *digest.Digest) *UnparsedImage {
-	return &UnparsedImage{
-		src:            src,
-		instanceDigest: instanceDigest,
-	}
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (i *UnparsedImage) Reference() types.ImageReference {
-	// Note that this does not depend on instanceDigest; e.g. all instances within a manifest list need to be signed with the manifest list identity.
-	return i.src.Reference()
-}
-
-// Manifest is like ImageSource.GetManifest, but the result is cached; it is OK to call this however often you need.
-func (i *UnparsedImage) Manifest() ([]byte, string, error) {
-	if i.cachedManifest == nil {
-		m, mt, err := i.src.GetManifest(i.instanceDigest)
-		if err != nil {
-			return nil, "", err
-		}
-
-		// ImageSource.GetManifest does not do digest verification, but we do;
-		// this immediately protects also any user of types.Image.
-		if digest, haveDigest := i.expectedManifestDigest(); haveDigest {
-			matches, err := manifest.MatchesDigest(m, digest)
-			if err != nil {
-				return nil, "", errors.Wrap(err, "Error computing manifest digest")
-			}
-			if !matches {
-				return nil, "", errors.Errorf("Manifest does not match provided manifest digest %s", digest)
-			}
-		}
-
-		i.cachedManifest = m
-		i.cachedManifestMIMEType = mt
-	}
-	return i.cachedManifest, i.cachedManifestMIMEType, nil
-}
-
-// expectedManifestDigest returns a the expected value of the manifest digest, and an indicator whether it is known.
-// The bool return value seems redundant with digest != ""; it is used explicitly
-// to refuse (unexpected) situations when the digest exists but is "".
-func (i *UnparsedImage) expectedManifestDigest() (digest.Digest, bool) {
-	if i.instanceDigest != nil {
-		return *i.instanceDigest, true
-	}
-	ref := i.Reference().DockerReference()
-	if ref != nil {
-		if canonical, ok := ref.(reference.Canonical); ok {
-			return canonical.Digest(), true
-		}
-	}
-	return "", false
-}
-
-// Signatures is like ImageSource.GetSignatures, but the result is cached; it is OK to call this however often you need.
-func (i *UnparsedImage) Signatures(ctx context.Context) ([][]byte, error) {
-	if i.cachedSignatures == nil {
-		sigs, err := i.src.GetSignatures(ctx, i.instanceDigest)
-		if err != nil {
-			return nil, err
-		}
-		i.cachedSignatures = sigs
-	}
-	return i.cachedSignatures, nil
-}
-
-// LayerInfosForCopy returns an updated set of layer blob information which may not match the manifest.
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (i *UnparsedImage) LayerInfosForCopy() []types.BlobInfo {
-	return i.src.LayerInfosForCopy()
-}
diff --git a/vendor/github.com/containers/image/internal/tmpdir/tmpdir.go b/vendor/github.com/containers/image/internal/tmpdir/tmpdir.go
deleted file mode 100644
index a28020edcc..0000000000
--- a/vendor/github.com/containers/image/internal/tmpdir/tmpdir.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package tmpdir
-
-import (
-	"os"
-	"runtime"
-)
-
-// TemporaryDirectoryForBigFiles returns a directory for temporary (big) files.
-// On non Windows systems it avoids the use of os.TempDir(), because the default temporary directory usually falls under /tmp
-// which on systemd based systems could be the unsuitable tmpfs filesystem.
-func TemporaryDirectoryForBigFiles() string {
-	var temporaryDirectoryForBigFiles string
-	if runtime.GOOS == "windows" {
-		temporaryDirectoryForBigFiles = os.TempDir()
-	} else {
-		temporaryDirectoryForBigFiles = "/var/tmp"
-	}
-	return temporaryDirectoryForBigFiles
-}
diff --git a/vendor/github.com/containers/image/manifest/docker_schema1.go b/vendor/github.com/containers/image/manifest/docker_schema1.go
deleted file mode 100644
index b1c1cfe9ff..0000000000
--- a/vendor/github.com/containers/image/manifest/docker_schema1.go
+++ /dev/null
@@ -1,310 +0,0 @@
-package manifest
-
-import (
-	"encoding/json"
-	"regexp"
-	"strings"
-	"time"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/types"
-	"github.com/docker/docker/api/types/versions"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-// Schema1FSLayers is an entry of the "fsLayers" array in docker/distribution schema 1.
-type Schema1FSLayers struct {
-	BlobSum digest.Digest `json:"blobSum"`
-}
-
-// Schema1History is an entry of the "history" array in docker/distribution schema 1.
-type Schema1History struct {
-	V1Compatibility string `json:"v1Compatibility"`
-}
-
-// Schema1 is a manifest in docker/distribution schema 1.
-type Schema1 struct {
-	Name          string            `json:"name"`
-	Tag           string            `json:"tag"`
-	Architecture  string            `json:"architecture"`
-	FSLayers      []Schema1FSLayers `json:"fsLayers"`
-	History       []Schema1History  `json:"history"`
-	SchemaVersion int               `json:"schemaVersion"`
-}
-
-// Schema1V1Compatibility is a v1Compatibility in docker/distribution schema 1.
-type Schema1V1Compatibility struct {
-	ID              string    `json:"id"`
-	Parent          string    `json:"parent,omitempty"`
-	Comment         string    `json:"comment,omitempty"`
-	Created         time.Time `json:"created"`
-	ContainerConfig struct {
-		Cmd []string
-	} `json:"container_config,omitempty"`
-	Author    string `json:"author,omitempty"`
-	ThrowAway bool   `json:"throwaway,omitempty"`
-}
-
-// Schema1FromManifest creates a Schema1 manifest instance from a manifest blob.
-// (NOTE: The instance is not necessary a literal representation of the original blob,
-// layers with duplicate IDs are eliminated.)
-func Schema1FromManifest(manifest []byte) (*Schema1, error) {
-	s1 := Schema1{}
-	if err := json.Unmarshal(manifest, &s1); err != nil {
-		return nil, err
-	}
-	if s1.SchemaVersion != 1 {
-		return nil, errors.Errorf("unsupported schema version %d", s1.SchemaVersion)
-	}
-	if len(s1.FSLayers) != len(s1.History) {
-		return nil, errors.New("length of history not equal to number of layers")
-	}
-	if len(s1.FSLayers) == 0 {
-		return nil, errors.New("no FSLayers in manifest")
-	}
-	if err := s1.fixManifestLayers(); err != nil {
-		return nil, err
-	}
-	return &s1, nil
-}
-
-// Schema1FromComponents creates an Schema1 manifest instance from the supplied data.
-func Schema1FromComponents(ref reference.Named, fsLayers []Schema1FSLayers, history []Schema1History, architecture string) *Schema1 {
-	var name, tag string
-	if ref != nil { // Well, what to do if it _is_ nil? Most consumers actually don't use these fields nowadays, so we might as well try not supplying them.
-		name = reference.Path(ref)
-		if tagged, ok := ref.(reference.NamedTagged); ok {
-			tag = tagged.Tag()
-		}
-	}
-	return &Schema1{
-		Name:          name,
-		Tag:           tag,
-		Architecture:  architecture,
-		FSLayers:      fsLayers,
-		History:       history,
-		SchemaVersion: 1,
-	}
-}
-
-// Schema1Clone creates a copy of the supplied Schema1 manifest.
-func Schema1Clone(src *Schema1) *Schema1 {
-	copy := *src
-	return &copy
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-func (m *Schema1) ConfigInfo() types.BlobInfo {
-	return types.BlobInfo{}
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *Schema1) LayerInfos() []types.BlobInfo {
-	layers := make([]types.BlobInfo, len(m.FSLayers))
-	for i, layer := range m.FSLayers { // NOTE: This includes empty layers (where m.History.V1Compatibility->ThrowAway)
-		layers[(len(m.FSLayers)-1)-i] = types.BlobInfo{Digest: layer.BlobSum, Size: -1}
-	}
-	return layers
-}
-
-// UpdateLayerInfos replaces the original layers with the specified BlobInfos (size+digest+urls), in order (the root layer first, and then successive layered layers)
-func (m *Schema1) UpdateLayerInfos(layerInfos []types.BlobInfo) error {
-	// Our LayerInfos includes empty layers (where m.History.V1Compatibility->ThrowAway), so expect them to be included here as well.
-	if len(m.FSLayers) != len(layerInfos) {
-		return errors.Errorf("Error preparing updated manifest: layer count changed from %d to %d", len(m.FSLayers), len(layerInfos))
-	}
-	for i, info := range layerInfos {
-		// (docker push) sets up m.History.V1Compatibility->{Id,Parent} based on values of info.Digest,
-		// but (docker pull) ignores them in favor of computing DiffIDs from uncompressed data, except verifying the child->parent links and uniqueness.
-		// So, we don't bother recomputing the IDs in m.History.V1Compatibility.
-		m.FSLayers[(len(layerInfos)-1)-i].BlobSum = info.Digest
-	}
-	return nil
-}
-
-// Serialize returns the manifest in a blob format.
-// NOTE: Serialize() does not in general reproduce the original blob if this object was loaded from one, even if no modifications were made!
-func (m *Schema1) Serialize() ([]byte, error) {
-	// docker/distribution requires a signature even if the incoming data uses the nominally unsigned DockerV2Schema1MediaType.
-	unsigned, err := json.Marshal(*m)
-	if err != nil {
-		return nil, err
-	}
-	return AddDummyV2S1Signature(unsigned)
-}
-
-// fixManifestLayers, after validating the supplied manifest
-// (to use correctly-formatted IDs, and to not have non-consecutive ID collisions in m.History),
-// modifies manifest to only have one entry for each layer ID in m.History (deleting the older duplicates,
-// both from m.History and m.FSLayers).
-// Note that even after this succeeds, m.FSLayers may contain duplicate entries
-// (for Dockerfile operations which change the configuration but not the filesystem).
-func (m *Schema1) fixManifestLayers() error {
-	type imageV1 struct {
-		ID     string
-		Parent string
-	}
-	// Per the specification, we can assume that len(m.FSLayers) == len(m.History)
-	imgs := make([]*imageV1, len(m.FSLayers))
-	for i := range m.FSLayers {
-		img := &imageV1{}
-
-		if err := json.Unmarshal([]byte(m.History[i].V1Compatibility), img); err != nil {
-			return err
-		}
-
-		imgs[i] = img
-		if err := validateV1ID(img.ID); err != nil {
-			return err
-		}
-	}
-	if imgs[len(imgs)-1].Parent != "" {
-		return errors.New("Invalid parent ID in the base layer of the image")
-	}
-	// check general duplicates to error instead of a deadlock
-	idmap := make(map[string]struct{})
-	var lastID string
-	for _, img := range imgs {
-		// skip IDs that appear after each other, we handle those later
-		if _, exists := idmap[img.ID]; img.ID != lastID && exists {
-			return errors.Errorf("ID %+v appears multiple times in manifest", img.ID)
-		}
-		lastID = img.ID
-		idmap[lastID] = struct{}{}
-	}
-	// backwards loop so that we keep the remaining indexes after removing items
-	for i := len(imgs) - 2; i >= 0; i-- {
-		if imgs[i].ID == imgs[i+1].ID { // repeated ID. remove and continue
-			m.FSLayers = append(m.FSLayers[:i], m.FSLayers[i+1:]...)
-			m.History = append(m.History[:i], m.History[i+1:]...)
-		} else if imgs[i].Parent != imgs[i+1].ID {
-			return errors.Errorf("Invalid parent ID. Expected %v, got %v", imgs[i+1].ID, imgs[i].Parent)
-		}
-	}
-	return nil
-}
-
-var validHex = regexp.MustCompile(`^([a-f0-9]{64})$`)
-
-func validateV1ID(id string) error {
-	if ok := validHex.MatchString(id); !ok {
-		return errors.Errorf("image ID %q is invalid", id)
-	}
-	return nil
-}
-
-// Inspect returns various information for (skopeo inspect) parsed from the manifest and configuration.
-func (m *Schema1) Inspect(_ func(types.BlobInfo) ([]byte, error)) (*types.ImageInspectInfo, error) {
-	s1 := &Schema2V1Image{}
-	if err := json.Unmarshal([]byte(m.History[0].V1Compatibility), s1); err != nil {
-		return nil, err
-	}
-	return &types.ImageInspectInfo{
-		Tag:           m.Tag,
-		Created:       s1.Created,
-		DockerVersion: s1.DockerVersion,
-		Labels:        make(map[string]string),
-		Architecture:  s1.Architecture,
-		Os:            s1.OS,
-		Layers:        LayerInfosToStrings(m.LayerInfos()),
-	}, nil
-}
-
-// ToSchema2 builds a schema2-style configuration blob using the supplied diffIDs.
-func (m *Schema1) ToSchema2(diffIDs []digest.Digest) ([]byte, error) {
-	// Convert the schema 1 compat info into a schema 2 config, constructing some of the fields
-	// that aren't directly comparable using info from the manifest.
-	if len(m.History) == 0 {
-		return nil, errors.New("image has no layers")
-	}
-	s2 := struct {
-		Schema2Image
-		ID        string `json:"id,omitempty"`
-		Parent    string `json:"parent,omitempty"`
-		ParentID  string `json:"parent_id,omitempty"`
-		LayerID   string `json:"layer_id,omitempty"`
-		ThrowAway bool   `json:"throwaway,omitempty"`
-		Size      int64  `json:",omitempty"`
-	}{}
-	config := []byte(m.History[0].V1Compatibility)
-	err := json.Unmarshal(config, &s2)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error decoding configuration")
-	}
-	// Images created with versions prior to 1.8.3 require us to re-encode the encoded object,
-	// adding some fields that aren't "omitempty".
-	if s2.DockerVersion != "" && versions.LessThan(s2.DockerVersion, "1.8.3") {
-		config, err = json.Marshal(&s2)
-		if err != nil {
-			return nil, errors.Wrapf(err, "error re-encoding compat image config %#v", s2)
-		}
-	}
-	// Build the history.
-	convertedHistory := []Schema2History{}
-	for _, h := range m.History {
-		compat := Schema1V1Compatibility{}
-		if err := json.Unmarshal([]byte(h.V1Compatibility), &compat); err != nil {
-			return nil, errors.Wrapf(err, "error decoding history information")
-		}
-		hitem := Schema2History{
-			Created:    compat.Created,
-			CreatedBy:  strings.Join(compat.ContainerConfig.Cmd, " "),
-			Author:     compat.Author,
-			Comment:    compat.Comment,
-			EmptyLayer: compat.ThrowAway,
-		}
-		convertedHistory = append([]Schema2History{hitem}, convertedHistory...)
-	}
-	// Build the rootfs information.  We need the decompressed sums that we've been
-	// calculating to fill in the DiffIDs.  It's expected (but not enforced by us)
-	// that the number of diffIDs corresponds to the number of non-EmptyLayer
-	// entries in the history.
-	rootFS := &Schema2RootFS{
-		Type:    "layers",
-		DiffIDs: diffIDs,
-	}
-	// And now for some raw manipulation.
-	raw := make(map[string]*json.RawMessage)
-	err = json.Unmarshal(config, &raw)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error re-decoding compat image config %#v: %v", s2)
-	}
-	// Drop some fields.
-	delete(raw, "id")
-	delete(raw, "parent")
-	delete(raw, "parent_id")
-	delete(raw, "layer_id")
-	delete(raw, "throwaway")
-	delete(raw, "Size")
-	// Add the history and rootfs information.
-	rootfs, err := json.Marshal(rootFS)
-	if err != nil {
-		return nil, errors.Errorf("error encoding rootfs information %#v: %v", rootFS, err)
-	}
-	rawRootfs := json.RawMessage(rootfs)
-	raw["rootfs"] = &rawRootfs
-	history, err := json.Marshal(convertedHistory)
-	if err != nil {
-		return nil, errors.Errorf("error encoding history information %#v: %v", convertedHistory, err)
-	}
-	rawHistory := json.RawMessage(history)
-	raw["history"] = &rawHistory
-	// Encode the result.
-	config, err = json.Marshal(raw)
-	if err != nil {
-		return nil, errors.Errorf("error re-encoding compat image config %#v: %v", s2, err)
-	}
-	return config, nil
-}
-
-// ImageID computes an ID which can uniquely identify this image by its contents.
-func (m *Schema1) ImageID(diffIDs []digest.Digest) (string, error) {
-	image, err := m.ToSchema2(diffIDs)
-	if err != nil {
-		return "", err
-	}
-	return digest.FromBytes(image).Hex(), nil
-}
diff --git a/vendor/github.com/containers/image/manifest/docker_schema2.go b/vendor/github.com/containers/image/manifest/docker_schema2.go
deleted file mode 100644
index ef82ffc246..0000000000
--- a/vendor/github.com/containers/image/manifest/docker_schema2.go
+++ /dev/null
@@ -1,251 +0,0 @@
-package manifest
-
-import (
-	"encoding/json"
-	"time"
-
-	"github.com/containers/image/pkg/strslice"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-// Schema2Descriptor is a “descriptor” in docker/distribution schema 2.
-type Schema2Descriptor struct {
-	MediaType string        `json:"mediaType"`
-	Size      int64         `json:"size"`
-	Digest    digest.Digest `json:"digest"`
-	URLs      []string      `json:"urls,omitempty"`
-}
-
-// Schema2 is a manifest in docker/distribution schema 2.
-type Schema2 struct {
-	SchemaVersion     int                 `json:"schemaVersion"`
-	MediaType         string              `json:"mediaType"`
-	ConfigDescriptor  Schema2Descriptor   `json:"config"`
-	LayersDescriptors []Schema2Descriptor `json:"layers"`
-}
-
-// Schema2Port is a Port, a string containing port number and protocol in the
-// format "80/tcp", from docker/go-connections/nat.
-type Schema2Port string
-
-// Schema2PortSet is a PortSet, a collection of structs indexed by Port, from
-// docker/go-connections/nat.
-type Schema2PortSet map[Schema2Port]struct{}
-
-// Schema2HealthConfig is a HealthConfig, which holds configuration settings
-// for the HEALTHCHECK feature, from docker/docker/api/types/container.
-type Schema2HealthConfig struct {
-	// Test is the test to perform to check that the container is healthy.
-	// An empty slice means to inherit the default.
-	// The options are:
-	// {} : inherit healthcheck
-	// {"NONE"} : disable healthcheck
-	// {"CMD", args...} : exec arguments directly
-	// {"CMD-SHELL", command} : run command with system's default shell
-	Test []string `json:",omitempty"`
-
-	// Zero means to inherit. Durations are expressed as integer nanoseconds.
-	Interval time.Duration `json:",omitempty"` // Interval is the time to wait between checks.
-	Timeout  time.Duration `json:",omitempty"` // Timeout is the time to wait before considering the check to have hung.
-
-	// Retries is the number of consecutive failures needed to consider a container as unhealthy.
-	// Zero means inherit.
-	Retries int `json:",omitempty"`
-}
-
-// Schema2Config is a Config in docker/docker/api/types/container.
-type Schema2Config struct {
-	Hostname        string               // Hostname
-	Domainname      string               // Domainname
-	User            string               // User that will run the command(s) inside the container, also support user:group
-	AttachStdin     bool                 // Attach the standard input, makes possible user interaction
-	AttachStdout    bool                 // Attach the standard output
-	AttachStderr    bool                 // Attach the standard error
-	ExposedPorts    Schema2PortSet       `json:",omitempty"` // List of exposed ports
-	Tty             bool                 // Attach standard streams to a tty, including stdin if it is not closed.
-	OpenStdin       bool                 // Open stdin
-	StdinOnce       bool                 // If true, close stdin after the 1 attached client disconnects.
-	Env             []string             // List of environment variable to set in the container
-	Cmd             strslice.StrSlice    // Command to run when starting the container
-	Healthcheck     *Schema2HealthConfig `json:",omitempty"` // Healthcheck describes how to check the container is healthy
-	ArgsEscaped     bool                 `json:",omitempty"` // True if command is already escaped (Windows specific)
-	Image           string               // Name of the image as it was passed by the operator (e.g. could be symbolic)
-	Volumes         map[string]struct{}  // List of volumes (mounts) used for the container
-	WorkingDir      string               // Current directory (PWD) in the command will be launched
-	Entrypoint      strslice.StrSlice    // Entrypoint to run when starting the container
-	NetworkDisabled bool                 `json:",omitempty"` // Is network disabled
-	MacAddress      string               `json:",omitempty"` // Mac Address of the container
-	OnBuild         []string             // ONBUILD metadata that were defined on the image Dockerfile
-	Labels          map[string]string    // List of labels set to this container
-	StopSignal      string               `json:",omitempty"` // Signal to stop a container
-	StopTimeout     *int                 `json:",omitempty"` // Timeout (in seconds) to stop a container
-	Shell           strslice.StrSlice    `json:",omitempty"` // Shell for shell-form of RUN, CMD, ENTRYPOINT
-}
-
-// Schema2V1Image is a V1Image in docker/docker/image.
-type Schema2V1Image struct {
-	// ID is a unique 64 character identifier of the image
-	ID string `json:"id,omitempty"`
-	// Parent is the ID of the parent image
-	Parent string `json:"parent,omitempty"`
-	// Comment is the commit message that was set when committing the image
-	Comment string `json:"comment,omitempty"`
-	// Created is the timestamp at which the image was created
-	Created time.Time `json:"created"`
-	// Container is the id of the container used to commit
-	Container string `json:"container,omitempty"`
-	// ContainerConfig is the configuration of the container that is committed into the image
-	ContainerConfig Schema2Config `json:"container_config,omitempty"`
-	// DockerVersion specifies the version of Docker that was used to build the image
-	DockerVersion string `json:"docker_version,omitempty"`
-	// Author is the name of the author that was specified when committing the image
-	Author string `json:"author,omitempty"`
-	// Config is the configuration of the container received from the client
-	Config *Schema2Config `json:"config,omitempty"`
-	// Architecture is the hardware that the image is build and runs on
-	Architecture string `json:"architecture,omitempty"`
-	// OS is the operating system used to build and run the image
-	OS string `json:"os,omitempty"`
-	// Size is the total size of the image including all layers it is composed of
-	Size int64 `json:",omitempty"`
-}
-
-// Schema2RootFS is a description of how to build up an image's root filesystem, from docker/docker/image.
-type Schema2RootFS struct {
-	Type    string          `json:"type"`
-	DiffIDs []digest.Digest `json:"diff_ids,omitempty"`
-}
-
-// Schema2History stores build commands that were used to create an image, from docker/docker/image.
-type Schema2History struct {
-	// Created is the timestamp at which the image was created
-	Created time.Time `json:"created"`
-	// Author is the name of the author that was specified when committing the image
-	Author string `json:"author,omitempty"`
-	// CreatedBy keeps the Dockerfile command used while building the image
-	CreatedBy string `json:"created_by,omitempty"`
-	// Comment is the commit message that was set when committing the image
-	Comment string `json:"comment,omitempty"`
-	// EmptyLayer is set to true if this history item did not generate a
-	// layer. Otherwise, the history item is associated with the next
-	// layer in the RootFS section.
-	EmptyLayer bool `json:"empty_layer,omitempty"`
-}
-
-// Schema2Image is an Image in docker/docker/image.
-type Schema2Image struct {
-	Schema2V1Image
-	Parent     digest.Digest    `json:"parent,omitempty"`
-	RootFS     *Schema2RootFS   `json:"rootfs,omitempty"`
-	History    []Schema2History `json:"history,omitempty"`
-	OSVersion  string           `json:"os.version,omitempty"`
-	OSFeatures []string         `json:"os.features,omitempty"`
-
-	// rawJSON caches the immutable JSON associated with this image.
-	rawJSON []byte
-
-	// computedID is the ID computed from the hash of the image config.
-	// Not to be confused with the legacy V1 ID in V1Image.
-	computedID digest.Digest
-}
-
-// Schema2FromManifest creates a Schema2 manifest instance from a manifest blob.
-func Schema2FromManifest(manifest []byte) (*Schema2, error) {
-	s2 := Schema2{}
-	if err := json.Unmarshal(manifest, &s2); err != nil {
-		return nil, err
-	}
-	return &s2, nil
-}
-
-// Schema2FromComponents creates an Schema2 manifest instance from the supplied data.
-func Schema2FromComponents(config Schema2Descriptor, layers []Schema2Descriptor) *Schema2 {
-	return &Schema2{
-		SchemaVersion:     2,
-		MediaType:         DockerV2Schema2MediaType,
-		ConfigDescriptor:  config,
-		LayersDescriptors: layers,
-	}
-}
-
-// Schema2Clone creates a copy of the supplied Schema2 manifest.
-func Schema2Clone(src *Schema2) *Schema2 {
-	copy := *src
-	return &copy
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-func (m *Schema2) ConfigInfo() types.BlobInfo {
-	return types.BlobInfo{Digest: m.ConfigDescriptor.Digest, Size: m.ConfigDescriptor.Size}
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *Schema2) LayerInfos() []types.BlobInfo {
-	blobs := []types.BlobInfo{}
-	for _, layer := range m.LayersDescriptors {
-		blobs = append(blobs, types.BlobInfo{
-			Digest: layer.Digest,
-			Size:   layer.Size,
-			URLs:   layer.URLs,
-		})
-	}
-	return blobs
-}
-
-// UpdateLayerInfos replaces the original layers with the specified BlobInfos (size+digest+urls), in order (the root layer first, and then successive layered layers)
-func (m *Schema2) UpdateLayerInfos(layerInfos []types.BlobInfo) error {
-	if len(m.LayersDescriptors) != len(layerInfos) {
-		return errors.Errorf("Error preparing updated manifest: layer count changed from %d to %d", len(m.LayersDescriptors), len(layerInfos))
-	}
-	original := m.LayersDescriptors
-	m.LayersDescriptors = make([]Schema2Descriptor, len(layerInfos))
-	for i, info := range layerInfos {
-		m.LayersDescriptors[i].MediaType = original[i].MediaType
-		m.LayersDescriptors[i].Digest = info.Digest
-		m.LayersDescriptors[i].Size = info.Size
-		m.LayersDescriptors[i].URLs = info.URLs
-	}
-	return nil
-}
-
-// Serialize returns the manifest in a blob format.
-// NOTE: Serialize() does not in general reproduce the original blob if this object was loaded from one, even if no modifications were made!
-func (m *Schema2) Serialize() ([]byte, error) {
-	return json.Marshal(*m)
-}
-
-// Inspect returns various information for (skopeo inspect) parsed from the manifest and configuration.
-func (m *Schema2) Inspect(configGetter func(types.BlobInfo) ([]byte, error)) (*types.ImageInspectInfo, error) {
-	config, err := configGetter(m.ConfigInfo())
-	if err != nil {
-		return nil, err
-	}
-	s2 := &Schema2Image{}
-	if err := json.Unmarshal(config, s2); err != nil {
-		return nil, err
-	}
-	i := &types.ImageInspectInfo{
-		Tag:           "",
-		Created:       s2.Created,
-		DockerVersion: s2.DockerVersion,
-		Architecture:  s2.Architecture,
-		Os:            s2.OS,
-		Layers:        LayerInfosToStrings(m.LayerInfos()),
-	}
-	if s2.Config != nil {
-		i.Labels = s2.Config.Labels
-	}
-	return i, nil
-}
-
-// ImageID computes an ID which can uniquely identify this image by its contents.
-func (m *Schema2) ImageID([]digest.Digest) (string, error) {
-	if err := m.ConfigDescriptor.Digest.Validate(); err != nil {
-		return "", err
-	}
-	return m.ConfigDescriptor.Digest.Hex(), nil
-}
diff --git a/vendor/github.com/containers/image/manifest/manifest.go b/vendor/github.com/containers/image/manifest/manifest.go
deleted file mode 100644
index 2bc801d815..0000000000
--- a/vendor/github.com/containers/image/manifest/manifest.go
+++ /dev/null
@@ -1,238 +0,0 @@
-package manifest
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/containers/image/types"
-	"github.com/docker/libtrust"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-// FIXME: Should we just use docker/distribution and docker/docker implementations directly?
-
-// FIXME(runcom, mitr): should we havea mediatype pkg??
-const (
-	// DockerV2Schema1MediaType MIME type represents Docker manifest schema 1
-	DockerV2Schema1MediaType = "application/vnd.docker.distribution.manifest.v1+json"
-	// DockerV2Schema1MediaType MIME type represents Docker manifest schema 1 with a JWS signature
-	DockerV2Schema1SignedMediaType = "application/vnd.docker.distribution.manifest.v1+prettyjws"
-	// DockerV2Schema2MediaType MIME type represents Docker manifest schema 2
-	DockerV2Schema2MediaType = "application/vnd.docker.distribution.manifest.v2+json"
-	// DockerV2Schema2ConfigMediaType is the MIME type used for schema 2 config blobs.
-	DockerV2Schema2ConfigMediaType = "application/vnd.docker.container.image.v1+json"
-	// DockerV2Schema2LayerMediaType is the MIME type used for schema 2 layers.
-	DockerV2Schema2LayerMediaType = "application/vnd.docker.image.rootfs.diff.tar.gzip"
-	// DockerV2ListMediaType MIME type represents Docker manifest schema 2 list
-	DockerV2ListMediaType = "application/vnd.docker.distribution.manifest.list.v2+json"
-	// DockerV2Schema2ForeignLayerMediaType is the MIME type used for schema 2 foreign layers.
-	DockerV2Schema2ForeignLayerMediaType = "application/vnd.docker.image.rootfs.foreign.diff.tar.gzip"
-)
-
-// DefaultRequestedManifestMIMETypes is a list of MIME types a types.ImageSource
-// should request from the backend unless directed otherwise.
-var DefaultRequestedManifestMIMETypes = []string{
-	imgspecv1.MediaTypeImageManifest,
-	DockerV2Schema2MediaType,
-	DockerV2Schema1SignedMediaType,
-	DockerV2Schema1MediaType,
-	DockerV2ListMediaType,
-}
-
-// Manifest is an interface for parsing, modifying image manifests in isolation.
-// Callers can either use this abstract interface without understanding the details of the formats,
-// or instantiate a specific implementation (e.g. manifest.OCI1) and access the public members
-// directly.
-//
-// See types.Image for functionality not limited to manifests, including format conversions and config parsing.
-// This interface is similar to, but not strictly equivalent to, the equivalent methods in types.Image.
-type Manifest interface {
-	// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-	ConfigInfo() types.BlobInfo
-	// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-	// The Digest field is guaranteed to be provided; Size may be -1.
-	// WARNING: The list may contain duplicates, and they are semantically relevant.
-	LayerInfos() []types.BlobInfo
-	// UpdateLayerInfos replaces the original layers with the specified BlobInfos (size+digest+urls), in order (the root layer first, and then successive layered layers)
-	UpdateLayerInfos(layerInfos []types.BlobInfo) error
-
-	// ImageID computes an ID which can uniquely identify this image by its contents, irrespective
-	// of which (of possibly more than one simultaneously valid) reference was used to locate the
-	// image, and unchanged by whether or how the layers are compressed.  The result takes the form
-	// of the hexadecimal portion of a digest.Digest.
-	ImageID(diffIDs []digest.Digest) (string, error)
-
-	// Inspect returns various information for (skopeo inspect) parsed from the manifest,
-	// incorporating information from a configuration blob returned by configGetter, if
-	// the underlying image format is expected to include a configuration blob.
-	Inspect(configGetter func(types.BlobInfo) ([]byte, error)) (*types.ImageInspectInfo, error)
-
-	// Serialize returns the manifest in a blob format.
-	// NOTE: Serialize() does not in general reproduce the original blob if this object was loaded from one, even if no modifications were made!
-	Serialize() ([]byte, error)
-}
-
-// GuessMIMEType guesses MIME type of a manifest and returns it _if it is recognized_, or "" if unknown or unrecognized.
-// FIXME? We should, in general, prefer out-of-band MIME type instead of blindly parsing the manifest,
-// but we may not have such metadata available (e.g. when the manifest is a local file).
-func GuessMIMEType(manifest []byte) string {
-	// A subset of manifest fields; the rest is silently ignored by json.Unmarshal.
-	// Also docker/distribution/manifest.Versioned.
-	meta := struct {
-		MediaType     string      `json:"mediaType"`
-		SchemaVersion int         `json:"schemaVersion"`
-		Signatures    interface{} `json:"signatures"`
-	}{}
-	if err := json.Unmarshal(manifest, &meta); err != nil {
-		return ""
-	}
-
-	switch meta.MediaType {
-	case DockerV2Schema2MediaType, DockerV2ListMediaType: // A recognized type.
-		return meta.MediaType
-	}
-	// this is the only way the function can return DockerV2Schema1MediaType, and recognizing that is essential for stripping the JWS signatures = computing the correct manifest digest.
-	switch meta.SchemaVersion {
-	case 1:
-		if meta.Signatures != nil {
-			return DockerV2Schema1SignedMediaType
-		}
-		return DockerV2Schema1MediaType
-	case 2:
-		// best effort to understand if this is an OCI image since mediaType
-		// isn't in the manifest for OCI anymore
-		// for docker v2s2 meta.MediaType should have been set. But given the data, this is our best guess.
-		ociMan := struct {
-			Config struct {
-				MediaType string `json:"mediaType"`
-			} `json:"config"`
-			Layers []imgspecv1.Descriptor `json:"layers"`
-		}{}
-		if err := json.Unmarshal(manifest, &ociMan); err != nil {
-			return ""
-		}
-		if ociMan.Config.MediaType == imgspecv1.MediaTypeImageConfig && len(ociMan.Layers) != 0 {
-			return imgspecv1.MediaTypeImageManifest
-		}
-		ociIndex := struct {
-			Manifests []imgspecv1.Descriptor `json:"manifests"`
-		}{}
-		if err := json.Unmarshal(manifest, &ociIndex); err != nil {
-			return ""
-		}
-		if len(ociIndex.Manifests) != 0 && ociIndex.Manifests[0].MediaType == imgspecv1.MediaTypeImageManifest {
-			return imgspecv1.MediaTypeImageIndex
-		}
-		return DockerV2Schema2MediaType
-	}
-	return ""
-}
-
-// Digest returns the a digest of a docker manifest, with any necessary implied transformations like stripping v1s1 signatures.
-func Digest(manifest []byte) (digest.Digest, error) {
-	if GuessMIMEType(manifest) == DockerV2Schema1SignedMediaType {
-		sig, err := libtrust.ParsePrettySignature(manifest, "signatures")
-		if err != nil {
-			return "", err
-		}
-		manifest, err = sig.Payload()
-		if err != nil {
-			// Coverage: This should never happen, libtrust's Payload() can fail only if joseBase64UrlDecode() fails, on a string
-			// that libtrust itself has josebase64UrlEncode()d
-			return "", err
-		}
-	}
-
-	return digest.FromBytes(manifest), nil
-}
-
-// MatchesDigest returns true iff the manifest matches expectedDigest.
-// Error may be set if this returns false.
-// Note that this is not doing ConstantTimeCompare; by the time we get here, the cryptographic signature must already have been verified,
-// or we are not using a cryptographic channel and the attacker can modify the digest along with the manifest blob.
-func MatchesDigest(manifest []byte, expectedDigest digest.Digest) (bool, error) {
-	// This should eventually support various digest types.
-	actualDigest, err := Digest(manifest)
-	if err != nil {
-		return false, err
-	}
-	return expectedDigest == actualDigest, nil
-}
-
-// AddDummyV2S1Signature adds an JWS signature with a temporary key (i.e. useless) to a v2s1 manifest.
-// This is useful to make the manifest acceptable to a Docker Registry (even though nothing needs or wants the JWS signature).
-func AddDummyV2S1Signature(manifest []byte) ([]byte, error) {
-	key, err := libtrust.GenerateECP256PrivateKey()
-	if err != nil {
-		return nil, err // Coverage: This can fail only if rand.Reader fails.
-	}
-
-	js, err := libtrust.NewJSONSignature(manifest)
-	if err != nil {
-		return nil, err
-	}
-	if err := js.Sign(key); err != nil { // Coverage: This can fail basically only if rand.Reader fails.
-		return nil, err
-	}
-	return js.PrettySignature("signatures")
-}
-
-// MIMETypeIsMultiImage returns true if mimeType is a list of images
-func MIMETypeIsMultiImage(mimeType string) bool {
-	return mimeType == DockerV2ListMediaType
-}
-
-// NormalizedMIMEType returns the effective MIME type of a manifest MIME type returned by a server,
-// centralizing various workarounds.
-func NormalizedMIMEType(input string) string {
-	switch input {
-	// "application/json" is a valid v2s1 value per https://github.com/docker/distribution/blob/master/docs/spec/manifest-v2-1.md .
-	// This works for now, when nothing else seems to return "application/json"; if that were not true, the mapping/detection might
-	// need to happen within the ImageSource.
-	case "application/json":
-		return DockerV2Schema1SignedMediaType
-	case DockerV2Schema1MediaType, DockerV2Schema1SignedMediaType,
-		imgspecv1.MediaTypeImageManifest,
-		DockerV2Schema2MediaType,
-		DockerV2ListMediaType:
-		return input
-	default:
-		// If it's not a recognized manifest media type, or we have failed determining the type, we'll try one last time
-		// to deserialize using v2s1 as per https://github.com/docker/distribution/blob/master/manifests.go#L108
-		// and https://github.com/docker/distribution/blob/master/manifest/schema1/manifest.go#L50
-		//
-		// Crane registries can also return "text/plain", or pretty much anything else depending on a file extension “recognized” in the tag.
-		// This makes no real sense, but it happens
-		// because requests for manifests are
-		// redirected to a content distribution
-		// network which is configured that way. See https://bugzilla.redhat.com/show_bug.cgi?id=1389442
-		return DockerV2Schema1SignedMediaType
-	}
-}
-
-// FromBlob returns a Manifest instance for the specified manifest blob and the corresponding MIME type
-func FromBlob(manblob []byte, mt string) (Manifest, error) {
-	switch NormalizedMIMEType(mt) {
-	case DockerV2Schema1MediaType, DockerV2Schema1SignedMediaType:
-		return Schema1FromManifest(manblob)
-	case imgspecv1.MediaTypeImageManifest:
-		return OCI1FromManifest(manblob)
-	case DockerV2Schema2MediaType:
-		return Schema2FromManifest(manblob)
-	case DockerV2ListMediaType:
-		return nil, fmt.Errorf("Treating manifest lists as individual manifests is not implemented")
-	default: // Note that this may not be reachable, NormalizedMIMEType has a default for unknown values.
-		return nil, fmt.Errorf("Unimplemented manifest MIME type %s", mt)
-	}
-}
-
-// LayerInfosToStrings converts a list of layer infos, presumably obtained from a Manifest.LayerInfos()
-// method call, into a format suitable for inclusion in a types.ImageInspectInfo structure.
-func LayerInfosToStrings(infos []types.BlobInfo) []string {
-	layers := make([]string, len(infos))
-	for i, info := range infos {
-		layers[i] = info.Digest.String()
-	}
-	return layers
-}
diff --git a/vendor/github.com/containers/image/manifest/oci.go b/vendor/github.com/containers/image/manifest/oci.go
deleted file mode 100644
index 0ffb35b746..0000000000
--- a/vendor/github.com/containers/image/manifest/oci.go
+++ /dev/null
@@ -1,120 +0,0 @@
-package manifest
-
-import (
-	"encoding/json"
-	"time"
-
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	"github.com/opencontainers/image-spec/specs-go"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-// OCI1 is a manifest.Manifest implementation for OCI images.
-// The underlying data from imgspecv1.Manifest is also available.
-type OCI1 struct {
-	imgspecv1.Manifest
-}
-
-// OCI1FromManifest creates an OCI1 manifest instance from a manifest blob.
-func OCI1FromManifest(manifest []byte) (*OCI1, error) {
-	oci1 := OCI1{}
-	if err := json.Unmarshal(manifest, &oci1); err != nil {
-		return nil, err
-	}
-	return &oci1, nil
-}
-
-// OCI1FromComponents creates an OCI1 manifest instance from the supplied data.
-func OCI1FromComponents(config imgspecv1.Descriptor, layers []imgspecv1.Descriptor) *OCI1 {
-	return &OCI1{
-		imgspecv1.Manifest{
-			Versioned: specs.Versioned{SchemaVersion: 2},
-			Config:    config,
-			Layers:    layers,
-		},
-	}
-}
-
-// OCI1Clone creates a copy of the supplied OCI1 manifest.
-func OCI1Clone(src *OCI1) *OCI1 {
-	return &OCI1{
-		Manifest: src.Manifest,
-	}
-}
-
-// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-func (m *OCI1) ConfigInfo() types.BlobInfo {
-	return types.BlobInfo{Digest: m.Config.Digest, Size: m.Config.Size, Annotations: m.Config.Annotations}
-}
-
-// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-// The Digest field is guaranteed to be provided; Size may be -1.
-// WARNING: The list may contain duplicates, and they are semantically relevant.
-func (m *OCI1) LayerInfos() []types.BlobInfo {
-	blobs := []types.BlobInfo{}
-	for _, layer := range m.Layers {
-		blobs = append(blobs, types.BlobInfo{Digest: layer.Digest, Size: layer.Size, Annotations: layer.Annotations, URLs: layer.URLs, MediaType: layer.MediaType})
-	}
-	return blobs
-}
-
-// UpdateLayerInfos replaces the original layers with the specified BlobInfos (size+digest+urls), in order (the root layer first, and then successive layered layers)
-func (m *OCI1) UpdateLayerInfos(layerInfos []types.BlobInfo) error {
-	if len(m.Layers) != len(layerInfos) {
-		return errors.Errorf("Error preparing updated manifest: layer count changed from %d to %d", len(m.Layers), len(layerInfos))
-	}
-	original := m.Layers
-	m.Layers = make([]imgspecv1.Descriptor, len(layerInfos))
-	for i, info := range layerInfos {
-		m.Layers[i].MediaType = original[i].MediaType
-		m.Layers[i].Digest = info.Digest
-		m.Layers[i].Size = info.Size
-		m.Layers[i].Annotations = info.Annotations
-		m.Layers[i].URLs = info.URLs
-	}
-	return nil
-}
-
-// Serialize returns the manifest in a blob format.
-// NOTE: Serialize() does not in general reproduce the original blob if this object was loaded from one, even if no modifications were made!
-func (m *OCI1) Serialize() ([]byte, error) {
-	return json.Marshal(*m)
-}
-
-// Inspect returns various information for (skopeo inspect) parsed from the manifest and configuration.
-func (m *OCI1) Inspect(configGetter func(types.BlobInfo) ([]byte, error)) (*types.ImageInspectInfo, error) {
-	config, err := configGetter(m.ConfigInfo())
-	if err != nil {
-		return nil, err
-	}
-	v1 := &imgspecv1.Image{}
-	if err := json.Unmarshal(config, v1); err != nil {
-		return nil, err
-	}
-	d1 := &Schema2V1Image{}
-	json.Unmarshal(config, d1)
-	created := time.Time{}
-	if v1.Created != nil {
-		created = *v1.Created
-	}
-	i := &types.ImageInspectInfo{
-		Tag:           "",
-		Created:       created,
-		DockerVersion: d1.DockerVersion,
-		Labels:        v1.Config.Labels,
-		Architecture:  v1.Architecture,
-		Os:            v1.OS,
-		Layers:        LayerInfosToStrings(m.LayerInfos()),
-	}
-	return i, nil
-}
-
-// ImageID computes an ID which can uniquely identify this image by its contents.
-func (m *OCI1) ImageID([]digest.Digest) (string, error) {
-	if err := m.Config.Digest.Validate(); err != nil {
-		return "", err
-	}
-	return m.Config.Digest.Hex(), nil
-}
diff --git a/vendor/github.com/containers/image/oci/archive/oci_dest.go b/vendor/github.com/containers/image/oci/archive/oci_dest.go
deleted file mode 100644
index 52e99a43dc..0000000000
--- a/vendor/github.com/containers/image/oci/archive/oci_dest.go
+++ /dev/null
@@ -1,131 +0,0 @@
-package archive
-
-import (
-	"io"
-	"os"
-
-	"github.com/containers/image/types"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/pkg/errors"
-)
-
-type ociArchiveImageDestination struct {
-	ref          ociArchiveReference
-	unpackedDest types.ImageDestination
-	tempDirRef   tempDirOCIRef
-}
-
-// newImageDestination returns an ImageDestination for writing to an existing directory.
-func newImageDestination(ctx *types.SystemContext, ref ociArchiveReference) (types.ImageDestination, error) {
-	tempDirRef, err := createOCIRef(ref.image)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error creating oci reference")
-	}
-	unpackedDest, err := tempDirRef.ociRefExtracted.NewImageDestination(ctx)
-	if err != nil {
-		if err := tempDirRef.deleteTempDir(); err != nil {
-			return nil, errors.Wrapf(err, "error deleting temp directory", tempDirRef.tempDirectory)
-		}
-		return nil, err
-	}
-	return &ociArchiveImageDestination{ref: ref,
-		unpackedDest: unpackedDest,
-		tempDirRef:   tempDirRef}, nil
-}
-
-// Reference returns the reference used to set up this destination.
-func (d *ociArchiveImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any
-// Close deletes the temp directory of the oci-archive image
-func (d *ociArchiveImageDestination) Close() error {
-	defer d.tempDirRef.deleteTempDir()
-	return d.unpackedDest.Close()
-}
-
-func (d *ociArchiveImageDestination) SupportedManifestMIMETypes() []string {
-	return d.unpackedDest.SupportedManifestMIMETypes()
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures
-func (d *ociArchiveImageDestination) SupportsSignatures() error {
-	return d.unpackedDest.SupportsSignatures()
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination
-func (d *ociArchiveImageDestination) ShouldCompressLayers() bool {
-	return d.unpackedDest.ShouldCompressLayers()
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *ociArchiveImageDestination) AcceptsForeignLayerURLs() bool {
-	return d.unpackedDest.AcceptsForeignLayerURLs()
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise
-func (d *ociArchiveImageDestination) MustMatchRuntimeOS() bool {
-	return d.unpackedDest.MustMatchRuntimeOS()
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-func (d *ociArchiveImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	return d.unpackedDest.PutBlob(stream, inputInfo)
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob
-func (d *ociArchiveImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	return d.unpackedDest.HasBlob(info)
-}
-
-func (d *ociArchiveImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return d.unpackedDest.ReapplyBlob(info)
-}
-
-// PutManifest writes manifest to the destination
-func (d *ociArchiveImageDestination) PutManifest(m []byte) error {
-	return d.unpackedDest.PutManifest(m)
-}
-
-func (d *ociArchiveImageDestination) PutSignatures(signatures [][]byte) error {
-	return d.unpackedDest.PutSignatures(signatures)
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted
-// after the directory is made, it is tarred up into a file and the directory is deleted
-func (d *ociArchiveImageDestination) Commit() error {
-	if err := d.unpackedDest.Commit(); err != nil {
-		return errors.Wrapf(err, "error storing image %q", d.ref.image)
-	}
-
-	// path of directory to tar up
-	src := d.tempDirRef.tempDirectory
-	// path to save tarred up file
-	dst := d.ref.resolvedFile
-	return tarDirectory(src, dst)
-}
-
-// tar converts the directory at src and saves it to dst
-func tarDirectory(src, dst string) error {
-	// input is a stream of bytes from the archive of the directory at path
-	input, err := archive.Tar(src, archive.Uncompressed)
-	if err != nil {
-		return errors.Wrapf(err, "error retrieving stream of bytes from %q", src)
-	}
-
-	// creates the tar file
-	outFile, err := os.Create(dst)
-	if err != nil {
-		return errors.Wrapf(err, "error creating tar file %q", dst)
-	}
-	defer outFile.Close()
-
-	// copies the contents of the directory to the tar file
-	_, err = io.Copy(outFile, input)
-
-	return err
-}
diff --git a/vendor/github.com/containers/image/oci/archive/oci_src.go b/vendor/github.com/containers/image/oci/archive/oci_src.go
deleted file mode 100644
index aee5d8d5bf..0000000000
--- a/vendor/github.com/containers/image/oci/archive/oci_src.go
+++ /dev/null
@@ -1,95 +0,0 @@
-package archive
-
-import (
-	"context"
-	"io"
-
-	ocilayout "github.com/containers/image/oci/layout"
-	"github.com/containers/image/types"
-	digest "github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-type ociArchiveImageSource struct {
-	ref         ociArchiveReference
-	unpackedSrc types.ImageSource
-	tempDirRef  tempDirOCIRef
-}
-
-// newImageSource returns an ImageSource for reading from an existing directory.
-// newImageSource untars the file and saves it in a temp directory
-func newImageSource(ctx *types.SystemContext, ref ociArchiveReference) (types.ImageSource, error) {
-	tempDirRef, err := createUntarTempDir(ref)
-	if err != nil {
-		return nil, errors.Wrap(err, "error creating temp directory")
-	}
-
-	unpackedSrc, err := tempDirRef.ociRefExtracted.NewImageSource(ctx)
-	if err != nil {
-		if err := tempDirRef.deleteTempDir(); err != nil {
-			return nil, errors.Wrapf(err, "error deleting temp directory", tempDirRef.tempDirectory)
-		}
-		return nil, err
-	}
-	return &ociArchiveImageSource{ref: ref,
-		unpackedSrc: unpackedSrc,
-		tempDirRef:  tempDirRef}, nil
-}
-
-// LoadManifestDescriptor loads the manifest
-func LoadManifestDescriptor(imgRef types.ImageReference) (imgspecv1.Descriptor, error) {
-	ociArchRef, ok := imgRef.(ociArchiveReference)
-	if !ok {
-		return imgspecv1.Descriptor{}, errors.Errorf("error typecasting, need type ociArchiveReference")
-	}
-	tempDirRef, err := createUntarTempDir(ociArchRef)
-	if err != nil {
-		return imgspecv1.Descriptor{}, errors.Wrap(err, "error creating temp directory")
-	}
-	defer tempDirRef.deleteTempDir()
-
-	descriptor, err := ocilayout.LoadManifestDescriptor(tempDirRef.ociRefExtracted)
-	if err != nil {
-		return imgspecv1.Descriptor{}, errors.Wrap(err, "error loading index")
-	}
-	return descriptor, nil
-}
-
-// Reference returns the reference used to set up this source.
-func (s *ociArchiveImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-// Close deletes the temporary directory at dst
-func (s *ociArchiveImageSource) Close() error {
-	defer s.tempDirRef.deleteTempDir()
-	return s.unpackedSrc.Close()
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *ociArchiveImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	return s.unpackedSrc.GetManifest(instanceDigest)
-}
-
-// GetBlob returns a stream for the specified blob, and the blob's size.
-func (s *ociArchiveImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	return s.unpackedSrc.GetBlob(info)
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *ociArchiveImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	return s.unpackedSrc.GetSignatures(ctx, instanceDigest)
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *ociArchiveImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/oci/archive/oci_transport.go b/vendor/github.com/containers/image/oci/archive/oci_transport.go
deleted file mode 100644
index c4a4fa716e..0000000000
--- a/vendor/github.com/containers/image/oci/archive/oci_transport.go
+++ /dev/null
@@ -1,190 +0,0 @@
-package archive
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-	"strings"
-
-	"github.com/containers/image/directory/explicitfilepath"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/internal/tmpdir"
-	"github.com/containers/image/oci/internal"
-	ocilayout "github.com/containers/image/oci/layout"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/pkg/errors"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for OCI archive
-// it creates an oci-archive tar file by calling into the OCI transport
-// tarring the directory created by oci and deleting the directory
-var Transport = ociArchiveTransport{}
-
-type ociArchiveTransport struct{}
-
-// ociArchiveReference is an ImageReference for OCI Archive paths
-type ociArchiveReference struct {
-	file         string
-	resolvedFile string
-	image        string
-}
-
-func (t ociArchiveTransport) Name() string {
-	return "oci-archive"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix
-// into an ImageReference.
-func (t ociArchiveTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-func (t ociArchiveTransport) ValidatePolicyConfigurationScope(scope string) error {
-	return internal.ValidateScope(scope)
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an OCI ImageReference.
-func ParseReference(reference string) (types.ImageReference, error) {
-	file, image := internal.SplitPathAndImage(reference)
-	return NewReference(file, image)
-}
-
-// NewReference returns an OCI reference for a file and a image.
-func NewReference(file, image string) (types.ImageReference, error) {
-	resolved, err := explicitfilepath.ResolvePathToFullyExplicit(file)
-	if err != nil {
-		return nil, err
-	}
-
-	if err := internal.ValidateOCIPath(file); err != nil {
-		return nil, err
-	}
-
-	if err := internal.ValidateImageName(image); err != nil {
-		return nil, err
-	}
-
-	return ociArchiveReference{file: file, resolvedFile: resolved, image: image}, nil
-}
-
-func (ref ociArchiveReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-func (ref ociArchiveReference) StringWithinTransport() string {
-	return fmt.Sprintf("%s:%s", ref.file, ref.image)
-}
-
-// DockerReference returns a Docker reference associated with this reference
-func (ref ociArchiveReference) DockerReference() reference.Named {
-	return nil
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-func (ref ociArchiveReference) PolicyConfigurationIdentity() string {
-	// NOTE: ref.image is not a part of the image identity, because "$dir:$someimage" and "$dir:" may mean the
-	// same image and the two can’t be statically disambiguated.  Using at least the repository directory is
-	// less granular but hopefully still useful.
-	return fmt.Sprintf("%s", ref.resolvedFile)
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set
-func (ref ociArchiveReference) PolicyConfigurationNamespaces() []string {
-	res := []string{}
-	path := ref.resolvedFile
-	for {
-		lastSlash := strings.LastIndex(path, "/")
-		// Note that we do not include "/"; it is redundant with the default "" global default,
-		// and rejected by ociTransport.ValidatePolicyConfigurationScope above.
-		if lastSlash == -1 || path == "/" {
-			break
-		}
-		res = append(res, path)
-		path = path[:lastSlash]
-	}
-	return res
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref ociArchiveReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src, err := newImageSource(ctx, ref)
-	if err != nil {
-		return nil, err
-	}
-	return image.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref ociArchiveReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref ociArchiveReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref ociArchiveReference) DeleteImage(ctx *types.SystemContext) error {
-	return errors.Errorf("Deleting images not implemented for oci: images")
-}
-
-// struct to store the ociReference and temporary directory returned by createOCIRef
-type tempDirOCIRef struct {
-	tempDirectory   string
-	ociRefExtracted types.ImageReference
-}
-
-// deletes the temporary directory created
-func (t *tempDirOCIRef) deleteTempDir() error {
-	return os.RemoveAll(t.tempDirectory)
-}
-
-// createOCIRef creates the oci reference of the image
-func createOCIRef(image string) (tempDirOCIRef, error) {
-	dir, err := ioutil.TempDir(tmpdir.TemporaryDirectoryForBigFiles(), "oci")
-	if err != nil {
-		return tempDirOCIRef{}, errors.Wrapf(err, "error creating temp directory")
-	}
-	ociRef, err := ocilayout.NewReference(dir, image)
-	if err != nil {
-		return tempDirOCIRef{}, err
-	}
-
-	tempDirRef := tempDirOCIRef{tempDirectory: dir, ociRefExtracted: ociRef}
-	return tempDirRef, nil
-}
-
-// creates the temporary directory and copies the tarred content to it
-func createUntarTempDir(ref ociArchiveReference) (tempDirOCIRef, error) {
-	tempDirRef, err := createOCIRef(ref.image)
-	if err != nil {
-		return tempDirOCIRef{}, errors.Wrap(err, "error creating oci reference")
-	}
-	src := ref.resolvedFile
-	dst := tempDirRef.tempDirectory
-	if err := archive.UntarPath(src, dst); err != nil {
-		if err := tempDirRef.deleteTempDir(); err != nil {
-			return tempDirOCIRef{}, errors.Wrapf(err, "error deleting temp directory %q", tempDirRef.tempDirectory)
-		}
-		return tempDirOCIRef{}, errors.Wrapf(err, "error untarring file %q", tempDirRef.tempDirectory)
-	}
-	return tempDirRef, nil
-}
diff --git a/vendor/github.com/containers/image/oci/internal/oci_util.go b/vendor/github.com/containers/image/oci/internal/oci_util.go
deleted file mode 100644
index c2012e50e0..0000000000
--- a/vendor/github.com/containers/image/oci/internal/oci_util.go
+++ /dev/null
@@ -1,126 +0,0 @@
-package internal
-
-import (
-	"github.com/pkg/errors"
-	"path/filepath"
-	"regexp"
-	"runtime"
-	"strings"
-)
-
-// annotation spex from https://github.com/opencontainers/image-spec/blob/master/annotations.md#pre-defined-annotation-keys
-const (
-	separator = `(?:[-._:@+]|--)`
-	alphanum  = `(?:[A-Za-z0-9]+)`
-	component = `(?:` + alphanum + `(?:` + separator + alphanum + `)*)`
-)
-
-var refRegexp = regexp.MustCompile(`^` + component + `(?:/` + component + `)*$`)
-var windowsRefRegexp = regexp.MustCompile(`^([a-zA-Z]:\\.+?):(.*)$`)
-
-// ValidateImageName returns nil if the image name is empty or matches the open-containers image name specs.
-// In any other case an error is returned.
-func ValidateImageName(image string) error {
-	if len(image) == 0 {
-		return nil
-	}
-
-	var err error
-	if !refRegexp.MatchString(image) {
-		err = errors.Errorf("Invalid image %s", image)
-	}
-	return err
-}
-
-// SplitPathAndImage tries to split the provided OCI reference into the OCI path and image.
-// Neither path nor image parts are validated at this stage.
-func SplitPathAndImage(reference string) (string, string) {
-	if runtime.GOOS == "windows" {
-		return splitPathAndImageWindows(reference)
-	}
-	return splitPathAndImageNonWindows(reference)
-}
-
-func splitPathAndImageWindows(reference string) (string, string) {
-	groups := windowsRefRegexp.FindStringSubmatch(reference)
-	// nil group means no match
-	if groups == nil {
-		return reference, ""
-	}
-
-	// we expect three elements. First one full match, second the capture group for the path and
-	// the third the capture group for the image
-	if len(groups) != 3 {
-		return reference, ""
-	}
-	return groups[1], groups[2]
-}
-
-func splitPathAndImageNonWindows(reference string) (string, string) {
-	sep := strings.SplitN(reference, ":", 2)
-	path := sep[0]
-
-	var image string
-	if len(sep) == 2 {
-		image = sep[1]
-	}
-	return path, image
-}
-
-// ValidateOCIPath takes the OCI path and validates it.
-func ValidateOCIPath(path string) error {
-	if runtime.GOOS == "windows" {
-		// On Windows we must allow for a ':' as part of the path
-		if strings.Count(path, ":") > 1 {
-			return errors.Errorf("Invalid OCI reference: path %s contains more than one colon", path)
-		}
-	} else {
-		if strings.Contains(path, ":") {
-			return errors.Errorf("Invalid OCI reference: path %s contains a colon", path)
-		}
-	}
-	return nil
-}
-
-// ValidateScope validates a policy configuration scope for an OCI transport.
-func ValidateScope(scope string) error {
-	var err error
-	if runtime.GOOS == "windows" {
-		err = validateScopeWindows(scope)
-	} else {
-		err = validateScopeNonWindows(scope)
-	}
-	if err != nil {
-		return err
-	}
-
-	cleaned := filepath.Clean(scope)
-	if cleaned != scope {
-		return errors.Errorf(`Invalid scope %s: Uses non-canonical path format, perhaps try with path %s`, scope, cleaned)
-	}
-
-	return nil
-}
-
-func validateScopeWindows(scope string) error {
-	matched, _ := regexp.Match(`^[a-zA-Z]:\\`, []byte(scope))
-	if !matched {
-		return errors.Errorf("Invalid scope '%s'. Must be an absolute path", scope)
-	}
-
-	return nil
-}
-
-func validateScopeNonWindows(scope string) error {
-	if !strings.HasPrefix(scope, "/") {
-		return errors.Errorf("Invalid scope %s: must be an absolute path", scope)
-	}
-
-	// Refuse also "/", otherwise "/" and "" would have the same semantics,
-	// and "" could be unexpectedly shadowed by the "/" entry.
-	if scope == "/" {
-		return errors.New(`Invalid scope "/": Use the generic default scope ""`)
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/image/oci/layout/oci_dest.go b/vendor/github.com/containers/image/oci/layout/oci_dest.go
deleted file mode 100644
index e95f65167a..0000000000
--- a/vendor/github.com/containers/image/oci/layout/oci_dest.go
+++ /dev/null
@@ -1,294 +0,0 @@
-package layout
-
-import (
-	"encoding/json"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"runtime"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	imgspec "github.com/opencontainers/image-spec/specs-go"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-type ociImageDestination struct {
-	ref           ociReference
-	index         imgspecv1.Index
-	sharedBlobDir string
-}
-
-// newImageDestination returns an ImageDestination for writing to an existing directory.
-func newImageDestination(ctx *types.SystemContext, ref ociReference) (types.ImageDestination, error) {
-	if ref.image == "" {
-		return nil, errors.Errorf("cannot save image with empty image.ref.name")
-	}
-
-	var index *imgspecv1.Index
-	if indexExists(ref) {
-		var err error
-		index, err = ref.getIndex()
-		if err != nil {
-			return nil, err
-		}
-	} else {
-		index = &imgspecv1.Index{
-			Versioned: imgspec.Versioned{
-				SchemaVersion: 2,
-			},
-		}
-	}
-
-	d := &ociImageDestination{ref: ref, index: *index}
-	if ctx != nil {
-		d.sharedBlobDir = ctx.OCISharedBlobDirPath
-	}
-
-	if err := ensureDirectoryExists(d.ref.dir); err != nil {
-		return nil, err
-	}
-	// Per the OCI image specification, layouts MUST have a "blobs" subdirectory,
-	// but it MAY be empty (e.g. if we never end up calling PutBlob)
-	// https://github.com/opencontainers/image-spec/blame/7c889fafd04a893f5c5f50b7ab9963d5d64e5242/image-layout.md#L19
-	if err := ensureDirectoryExists(filepath.Join(d.ref.dir, "blobs")); err != nil {
-		return nil, err
-	}
-	return d, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *ociImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *ociImageDestination) Close() error {
-	return nil
-}
-
-func (d *ociImageDestination) SupportedManifestMIMETypes() []string {
-	return []string{
-		imgspecv1.MediaTypeImageManifest,
-	}
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *ociImageDestination) SupportsSignatures() error {
-	return errors.Errorf("Pushing signatures for OCI images is not supported")
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *ociImageDestination) ShouldCompressLayers() bool {
-	return true
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *ociImageDestination) AcceptsForeignLayerURLs() bool {
-	return true
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *ociImageDestination) MustMatchRuntimeOS() bool {
-	return false
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-// to any other readers for download using the supplied digest.
-// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-func (d *ociImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	blobFile, err := ioutil.TempFile(d.ref.dir, "oci-put-blob")
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	succeeded := false
-	explicitClosed := false
-	defer func() {
-		if !explicitClosed {
-			blobFile.Close()
-		}
-		if !succeeded {
-			os.Remove(blobFile.Name())
-		}
-	}()
-
-	digester := digest.Canonical.Digester()
-	tee := io.TeeReader(stream, digester.Hash())
-
-	size, err := io.Copy(blobFile, tee)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	computedDigest := digester.Digest()
-	if inputInfo.Size != -1 && size != inputInfo.Size {
-		return types.BlobInfo{}, errors.Errorf("Size mismatch when copying %s, expected %d, got %d", computedDigest, inputInfo.Size, size)
-	}
-	if err := blobFile.Sync(); err != nil {
-		return types.BlobInfo{}, err
-	}
-
-	// On POSIX systems, blobFile was created with mode 0600, so we need to make it readable.
-	// On Windows, the “permissions of newly created files” argument to syscall.Open is
-	// ignored and the file is already readable; besides, blobFile.Chmod, i.e. syscall.Fchmod,
-	// always fails on Windows.
-	if runtime.GOOS != "windows" {
-		if err := blobFile.Chmod(0644); err != nil {
-			return types.BlobInfo{}, err
-		}
-	}
-
-	blobPath, err := d.ref.blobPath(computedDigest, d.sharedBlobDir)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	if err := ensureParentDirectoryExists(blobPath); err != nil {
-		return types.BlobInfo{}, err
-	}
-
-	// need to explicitly close the file, since a rename won't otherwise not work on Windows
-	blobFile.Close()
-	explicitClosed = true
-	if err := os.Rename(blobFile.Name(), blobPath); err != nil {
-		return types.BlobInfo{}, err
-	}
-	succeeded = true
-	return types.BlobInfo{Digest: computedDigest, Size: size}, nil
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob.
-// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-// it returns a non-nil error only on an unexpected failure.
-func (d *ociImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	if info.Digest == "" {
-		return false, -1, errors.Errorf(`"Can not check for a blob with unknown digest`)
-	}
-	blobPath, err := d.ref.blobPath(info.Digest, d.sharedBlobDir)
-	if err != nil {
-		return false, -1, err
-	}
-	finfo, err := os.Stat(blobPath)
-	if err != nil && os.IsNotExist(err) {
-		return false, -1, nil
-	}
-	if err != nil {
-		return false, -1, err
-	}
-	return true, finfo.Size(), nil
-}
-
-func (d *ociImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return info, nil
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *ociImageDestination) PutManifest(m []byte) error {
-	digest, err := manifest.Digest(m)
-	if err != nil {
-		return err
-	}
-	desc := imgspecv1.Descriptor{}
-	desc.Digest = digest
-	// TODO(runcom): beaware and add support for OCI manifest list
-	desc.MediaType = imgspecv1.MediaTypeImageManifest
-	desc.Size = int64(len(m))
-
-	blobPath, err := d.ref.blobPath(digest, d.sharedBlobDir)
-	if err != nil {
-		return err
-	}
-	if err := ensureParentDirectoryExists(blobPath); err != nil {
-		return err
-	}
-	if err := ioutil.WriteFile(blobPath, m, 0644); err != nil {
-		return err
-	}
-
-	if d.ref.image == "" {
-		return errors.Errorf("cannot save image with empyt image.ref.name")
-	}
-
-	annotations := make(map[string]string)
-	annotations["org.opencontainers.image.ref.name"] = d.ref.image
-	desc.Annotations = annotations
-	desc.Platform = &imgspecv1.Platform{
-		Architecture: runtime.GOARCH,
-		OS:           runtime.GOOS,
-	}
-	d.addManifest(&desc)
-
-	return nil
-}
-
-func (d *ociImageDestination) addManifest(desc *imgspecv1.Descriptor) {
-	for i, manifest := range d.index.Manifests {
-		if manifest.Annotations["org.opencontainers.image.ref.name"] == desc.Annotations["org.opencontainers.image.ref.name"] {
-			// TODO Should there first be a cleanup based on the descriptor we are going to replace?
-			d.index.Manifests[i] = *desc
-			return
-		}
-	}
-	d.index.Manifests = append(d.index.Manifests, *desc)
-}
-
-func (d *ociImageDestination) PutSignatures(signatures [][]byte) error {
-	if len(signatures) != 0 {
-		return errors.Errorf("Pushing signatures for OCI images is not supported")
-	}
-	return nil
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *ociImageDestination) Commit() error {
-	if err := ioutil.WriteFile(d.ref.ociLayoutPath(), []byte(`{"imageLayoutVersion": "1.0.0"}`), 0644); err != nil {
-		return err
-	}
-	indexJSON, err := json.Marshal(d.index)
-	if err != nil {
-		return err
-	}
-	return ioutil.WriteFile(d.ref.indexPath(), indexJSON, 0644)
-}
-
-func ensureDirectoryExists(path string) error {
-	if _, err := os.Stat(path); err != nil && os.IsNotExist(err) {
-		if err := os.MkdirAll(path, 0755); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// ensureParentDirectoryExists ensures the parent of the supplied path exists.
-func ensureParentDirectoryExists(path string) error {
-	return ensureDirectoryExists(filepath.Dir(path))
-}
-
-// indexExists checks whether the index location specified in the OCI reference exists.
-// The implementation is opinionated, since in case of unexpected errors false is returned
-func indexExists(ref ociReference) bool {
-	_, err := os.Stat(ref.indexPath())
-	if err == nil {
-		return true
-	}
-	if os.IsNotExist(err) {
-		return false
-	}
-	return true
-}
diff --git a/vendor/github.com/containers/image/oci/layout/oci_src.go b/vendor/github.com/containers/image/oci/layout/oci_src.go
deleted file mode 100644
index 1109f65c6a..0000000000
--- a/vendor/github.com/containers/image/oci/layout/oci_src.go
+++ /dev/null
@@ -1,157 +0,0 @@
-package layout
-
-import (
-	"context"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"os"
-	"strconv"
-
-	"github.com/containers/image/pkg/tlsclientconfig"
-	"github.com/containers/image/types"
-	"github.com/docker/go-connections/tlsconfig"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-type ociImageSource struct {
-	ref           ociReference
-	descriptor    imgspecv1.Descriptor
-	client        *http.Client
-	sharedBlobDir string
-}
-
-// newImageSource returns an ImageSource for reading from an existing directory.
-func newImageSource(ctx *types.SystemContext, ref ociReference) (types.ImageSource, error) {
-	tr := tlsclientconfig.NewTransport()
-	tr.TLSClientConfig = tlsconfig.ServerDefault()
-
-	if ctx != nil && ctx.OCICertPath != "" {
-		if err := tlsclientconfig.SetupCertificates(ctx.OCICertPath, tr.TLSClientConfig); err != nil {
-			return nil, err
-		}
-		tr.TLSClientConfig.InsecureSkipVerify = ctx.OCIInsecureSkipTLSVerify
-	}
-
-	client := &http.Client{}
-	client.Transport = tr
-	descriptor, err := ref.getManifestDescriptor()
-	if err != nil {
-		return nil, err
-	}
-	d := &ociImageSource{ref: ref, descriptor: descriptor, client: client}
-	if ctx != nil {
-		// TODO(jonboulle): check dir existence?
-		d.sharedBlobDir = ctx.OCISharedBlobDirPath
-	}
-	return d, nil
-}
-
-// Reference returns the reference used to set up this source.
-func (s *ociImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *ociImageSource) Close() error {
-	return nil
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *ociImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	var dig digest.Digest
-	var mimeType string
-	if instanceDigest == nil {
-		dig = digest.Digest(s.descriptor.Digest)
-		mimeType = s.descriptor.MediaType
-	} else {
-		dig = *instanceDigest
-		// XXX: instanceDigest means that we don't immediately have the context of what
-		//      mediaType the manifest has. In OCI this means that we don't know
-		//      what reference it came from, so we just *assume* that its
-		//      MediaTypeImageManifest.
-		// FIXME: We should actually be able to look up the manifest in the index,
-		// and see the MIME type there.
-		mimeType = imgspecv1.MediaTypeImageManifest
-	}
-
-	manifestPath, err := s.ref.blobPath(dig, s.sharedBlobDir)
-	if err != nil {
-		return nil, "", err
-	}
-	m, err := ioutil.ReadFile(manifestPath)
-	if err != nil {
-		return nil, "", err
-	}
-
-	return m, mimeType, nil
-}
-
-// GetBlob returns a stream for the specified blob, and the blob's size.
-func (s *ociImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	if len(info.URLs) != 0 {
-		return s.getExternalBlob(info.URLs)
-	}
-
-	path, err := s.ref.blobPath(info.Digest, s.sharedBlobDir)
-	if err != nil {
-		return nil, 0, err
-	}
-
-	r, err := os.Open(path)
-	if err != nil {
-		return nil, 0, err
-	}
-	fi, err := r.Stat()
-	if err != nil {
-		return nil, 0, err
-	}
-	return r, fi.Size(), nil
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *ociImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	return [][]byte{}, nil
-}
-
-func (s *ociImageSource) getExternalBlob(urls []string) (io.ReadCloser, int64, error) {
-	errWrap := errors.New("failed fetching external blob from all urls")
-	for _, url := range urls {
-		resp, err := s.client.Get(url)
-		if err != nil {
-			errWrap = errors.Wrapf(errWrap, "fetching %s failed %s", url, err.Error())
-			continue
-		}
-
-		if resp.StatusCode != http.StatusOK {
-			resp.Body.Close()
-			errWrap = errors.Wrapf(errWrap, "fetching %s failed, response code not 200", url)
-			continue
-		}
-
-		return resp.Body, getBlobSize(resp), nil
-	}
-
-	return nil, 0, errWrap
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *ociImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
-
-func getBlobSize(resp *http.Response) int64 {
-	size, err := strconv.ParseInt(resp.Header.Get("Content-Length"), 10, 64)
-	if err != nil {
-		size = -1
-	}
-	return size
-}
diff --git a/vendor/github.com/containers/image/oci/layout/oci_transport.go b/vendor/github.com/containers/image/oci/layout/oci_transport.go
deleted file mode 100644
index c181c4c77b..0000000000
--- a/vendor/github.com/containers/image/oci/layout/oci_transport.go
+++ /dev/null
@@ -1,255 +0,0 @@
-package layout
-
-import (
-	"encoding/json"
-	"fmt"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/image/directory/explicitfilepath"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/oci/internal"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for OCI directories.
-var Transport = ociTransport{}
-
-type ociTransport struct{}
-
-func (t ociTransport) Name() string {
-	return "oci"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t ociTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t ociTransport) ValidatePolicyConfigurationScope(scope string) error {
-	return internal.ValidateScope(scope)
-}
-
-// ociReference is an ImageReference for OCI directory paths.
-type ociReference struct {
-	// Note that the interpretation of paths below depends on the underlying filesystem state, which may change under us at any time!
-	// Either of the paths may point to a different, or no, inode over time.  resolvedDir may contain symbolic links, and so on.
-
-	// Generally we follow the intent of the user, and use the "dir" member for filesystem operations (e.g. the user can use a relative path to avoid
-	// being exposed to symlinks and renames in the parent directories to the working directory).
-	// (But in general, we make no attempt to be completely safe against concurrent hostile filesystem modifications.)
-	dir         string // As specified by the user. May be relative, contain symlinks, etc.
-	resolvedDir string // Absolute path with no symlinks, at least at the time of its creation. Primarily used for policy namespaces.
-	image       string // If image=="", it means the only image in the index.json is used
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an OCI ImageReference.
-func ParseReference(reference string) (types.ImageReference, error) {
-	dir, image := internal.SplitPathAndImage(reference)
-	return NewReference(dir, image)
-}
-
-// NewReference returns an OCI reference for a directory and a image.
-//
-// We do not expose an API supplying the resolvedDir; we could, but recomputing it
-// is generally cheap enough that we prefer being confident about the properties of resolvedDir.
-func NewReference(dir, image string) (types.ImageReference, error) {
-	resolved, err := explicitfilepath.ResolvePathToFullyExplicit(dir)
-	if err != nil {
-		return nil, err
-	}
-
-	if err := internal.ValidateOCIPath(dir); err != nil {
-		return nil, err
-	}
-
-	if err = internal.ValidateImageName(image); err != nil {
-		return nil, err
-	}
-
-	return ociReference{dir: dir, resolvedDir: resolved, image: image}, nil
-}
-
-func (ref ociReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref ociReference) StringWithinTransport() string {
-	return fmt.Sprintf("%s:%s", ref.dir, ref.image)
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref ociReference) DockerReference() reference.Named {
-	return nil
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref ociReference) PolicyConfigurationIdentity() string {
-	// NOTE: ref.image is not a part of the image identity, because "$dir:$someimage" and "$dir:" may mean the
-	// same image and the two can’t be statically disambiguated.  Using at least the repository directory is
-	// less granular but hopefully still useful.
-	return fmt.Sprintf("%s", ref.resolvedDir)
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref ociReference) PolicyConfigurationNamespaces() []string {
-	res := []string{}
-	path := ref.resolvedDir
-	for {
-		lastSlash := strings.LastIndex(path, "/")
-		// Note that we do not include "/"; it is redundant with the default "" global default,
-		// and rejected by ociTransport.ValidatePolicyConfigurationScope above.
-		if lastSlash == -1 || path == "/" {
-			break
-		}
-		res = append(res, path)
-		path = path[:lastSlash]
-	}
-	return res
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref ociReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src, err := newImageSource(ctx, ref)
-	if err != nil {
-		return nil, err
-	}
-	return image.FromSource(ctx, src)
-}
-
-// getIndex returns a pointer to the index references by this ociReference. If an error occurs opening an index nil is returned together
-// with an error.
-func (ref ociReference) getIndex() (*imgspecv1.Index, error) {
-	indexJSON, err := os.Open(ref.indexPath())
-	if err != nil {
-		return nil, err
-	}
-	defer indexJSON.Close()
-
-	index := &imgspecv1.Index{}
-	if err := json.NewDecoder(indexJSON).Decode(index); err != nil {
-		return nil, err
-	}
-	return index, nil
-}
-
-func (ref ociReference) getManifestDescriptor() (imgspecv1.Descriptor, error) {
-	index, err := ref.getIndex()
-	if err != nil {
-		return imgspecv1.Descriptor{}, err
-	}
-
-	var d *imgspecv1.Descriptor
-	if ref.image == "" {
-		// return manifest if only one image is in the oci directory
-		if len(index.Manifests) == 1 {
-			d = &index.Manifests[0]
-		} else {
-			// ask user to choose image when more than one image in the oci directory
-			return imgspecv1.Descriptor{}, errors.Wrapf(err, "more than one image in oci, choose an image")
-		}
-	} else {
-		// if image specified, look through all manifests for a match
-		for _, md := range index.Manifests {
-			if md.MediaType != imgspecv1.MediaTypeImageManifest {
-				continue
-			}
-			refName, ok := md.Annotations["org.opencontainers.image.ref.name"]
-			if !ok {
-				continue
-			}
-			if refName == ref.image {
-				d = &md
-				break
-			}
-		}
-	}
-	if d == nil {
-		return imgspecv1.Descriptor{}, fmt.Errorf("no descriptor found for reference %q", ref.image)
-	}
-	return *d, nil
-}
-
-// LoadManifestDescriptor loads the manifest descriptor to be used to retrieve the image name
-// when pulling an image
-func LoadManifestDescriptor(imgRef types.ImageReference) (imgspecv1.Descriptor, error) {
-	ociRef, ok := imgRef.(ociReference)
-	if !ok {
-		return imgspecv1.Descriptor{}, errors.Errorf("error typecasting, need type ociRef")
-	}
-	return ociRef.getManifestDescriptor()
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref ociReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref ociReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref ociReference) DeleteImage(ctx *types.SystemContext) error {
-	return errors.Errorf("Deleting images not implemented for oci: images")
-}
-
-// ociLayoutPath returns a path for the oci-layout within a directory using OCI conventions.
-func (ref ociReference) ociLayoutPath() string {
-	return filepath.Join(ref.dir, "oci-layout")
-}
-
-// indexPath returns a path for the index.json within a directory using OCI conventions.
-func (ref ociReference) indexPath() string {
-	return filepath.Join(ref.dir, "index.json")
-}
-
-// blobPath returns a path for a blob within a directory using OCI image-layout conventions.
-func (ref ociReference) blobPath(digest digest.Digest, sharedBlobDir string) (string, error) {
-	if err := digest.Validate(); err != nil {
-		return "", errors.Wrapf(err, "unexpected digest reference %s", digest)
-	}
-	blobDir := filepath.Join(ref.dir, "blobs")
-	if sharedBlobDir != "" {
-		blobDir = sharedBlobDir
-	}
-	return filepath.Join(blobDir, digest.Algorithm().String(), digest.Hex()), nil
-}
diff --git a/vendor/github.com/containers/image/openshift/openshift-copies.go b/vendor/github.com/containers/image/openshift/openshift-copies.go
deleted file mode 100644
index 01fe71a243..0000000000
--- a/vendor/github.com/containers/image/openshift/openshift-copies.go
+++ /dev/null
@@ -1,1174 +0,0 @@
-package openshift
-
-import (
-	"crypto/tls"
-	"crypto/x509"
-	"encoding/json"
-	"fmt"
-	"io/ioutil"
-	"net"
-	"net/http"
-	"net/url"
-	"os"
-	"path"
-	"path/filepath"
-	"reflect"
-	"strings"
-	"time"
-
-	"github.com/ghodss/yaml"
-	"github.com/imdario/mergo"
-	"github.com/pkg/errors"
-	"golang.org/x/net/http2"
-	"k8s.io/client-go/util/homedir"
-)
-
-// restTLSClientConfig is a modified copy of k8s.io/kubernets/pkg/client/restclient.TLSClientConfig.
-// restTLSClientConfig contains settings to enable transport layer security
-type restTLSClientConfig struct {
-	// Server requires TLS client certificate authentication
-	CertFile string
-	// Server requires TLS client certificate authentication
-	KeyFile string
-	// Trusted root certificates for server
-	CAFile string
-
-	// CertData holds PEM-encoded bytes (typically read from a client certificate file).
-	// CertData takes precedence over CertFile
-	CertData []byte
-	// KeyData holds PEM-encoded bytes (typically read from a client certificate key file).
-	// KeyData takes precedence over KeyFile
-	KeyData []byte
-	// CAData holds PEM-encoded bytes (typically read from a root certificates bundle).
-	// CAData takes precedence over CAFile
-	CAData []byte
-}
-
-// restConfig is a modified copy of k8s.io/kubernets/pkg/client/restclient.Config.
-// Config holds the common attributes that can be passed to a Kubernetes client on
-// initialization.
-type restConfig struct {
-	// Host must be a host string, a host:port pair, or a URL to the base of the apiserver.
-	// If a URL is given then the (optional) Path of that URL represents a prefix that must
-	// be appended to all request URIs used to access the apiserver. This allows a frontend
-	// proxy to easily relocate all of the apiserver endpoints.
-	Host string
-
-	// Server requires Basic authentication
-	Username string
-	Password string
-
-	// Server requires Bearer authentication. This client will not attempt to use
-	// refresh tokens for an OAuth2 flow.
-	// TODO: demonstrate an OAuth2 compatible client.
-	BearerToken string
-
-	// TLSClientConfig contains settings to enable transport layer security
-	restTLSClientConfig
-
-	// Server should be accessed without verifying the TLS
-	// certificate. For testing only.
-	Insecure bool
-}
-
-// ClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfig.
-// ClientConfig is used to make it easy to get an api server client
-type clientConfig interface {
-	// ClientConfig returns a complete client config
-	ClientConfig() (*restConfig, error)
-}
-
-// defaultClientConfig is a modified copy of openshift/origin/pkg/cmd/util/clientcmd.DefaultClientConfig.
-func defaultClientConfig() clientConfig {
-	loadingRules := newOpenShiftClientConfigLoadingRules()
-	// REMOVED: Allowing command-line overriding of loadingRules
-	// REMOVED: clientcmd.ConfigOverrides
-
-	clientConfig := newNonInteractiveDeferredLoadingClientConfig(loadingRules)
-
-	return clientConfig
-}
-
-var recommendedHomeFile = path.Join(homedir.HomeDir(), ".kube/config")
-
-// newOpenShiftClientConfigLoadingRules is a modified copy of openshift/origin/pkg/cmd/cli/config.NewOpenShiftClientConfigLoadingRules.
-// NewOpenShiftClientConfigLoadingRules returns file priority loading rules for OpenShift.
-// 1. --config value
-// 2. if KUBECONFIG env var has a value, use it. Otherwise, ~/.kube/config file
-func newOpenShiftClientConfigLoadingRules() *clientConfigLoadingRules {
-	chain := []string{}
-
-	envVarFile := os.Getenv("KUBECONFIG")
-	if len(envVarFile) != 0 {
-		chain = append(chain, filepath.SplitList(envVarFile)...)
-	} else {
-		chain = append(chain, recommendedHomeFile)
-	}
-
-	return &clientConfigLoadingRules{
-		Precedence: chain,
-		// REMOVED: Migration support; run (oc login) to trigger migration
-	}
-}
-
-// deferredLoadingClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DeferredLoadingClientConfig.
-// DeferredLoadingClientConfig is a ClientConfig interface that is backed by a set of loading rules
-// It is used in cases where the loading rules may change after you've instantiated them and you want to be sure that
-// the most recent rules are used.  This is useful in cases where you bind flags to loading rule parameters before
-// the parse happens and you want your calling code to be ignorant of how the values are being mutated to avoid
-// passing extraneous information down a call stack
-type deferredLoadingClientConfig struct {
-	loadingRules *clientConfigLoadingRules
-
-	clientConfig clientConfig
-}
-
-// NewNonInteractiveDeferredLoadingClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.NewNonInteractiveDeferredLoadingClientConfig.
-// NewNonInteractiveDeferredLoadingClientConfig creates a ConfigClientClientConfig using the passed context name
-func newNonInteractiveDeferredLoadingClientConfig(loadingRules *clientConfigLoadingRules) clientConfig {
-	return &deferredLoadingClientConfig{loadingRules: loadingRules}
-}
-
-func (config *deferredLoadingClientConfig) createClientConfig() (clientConfig, error) {
-	if config.clientConfig == nil {
-		// REMOVED: Support for concurrent use in multiple threads.
-		mergedConfig, err := config.loadingRules.Load()
-		if err != nil {
-			return nil, err
-		}
-
-		var mergedClientConfig clientConfig
-		// REMOVED: Interactive fallback support.
-		mergedClientConfig = newNonInteractiveClientConfig(*mergedConfig)
-
-		config.clientConfig = mergedClientConfig
-	}
-
-	return config.clientConfig, nil
-}
-
-// ClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DeferredLoadingClientConfig.ClientConfig.
-// ClientConfig implements ClientConfig
-func (config *deferredLoadingClientConfig) ClientConfig() (*restConfig, error) {
-	mergedClientConfig, err := config.createClientConfig()
-	if err != nil {
-		return nil, err
-	}
-	mergedConfig, err := mergedClientConfig.ClientConfig()
-	if err != nil {
-		return nil, err
-	}
-	// REMOVED: In-cluster service account configuration use.
-
-	return mergedConfig, nil
-}
-
-var (
-	// DefaultCluster is the cluster config used when no other config is specified
-	// TODO: eventually apiserver should start on 443 and be secure by default
-	defaultCluster = clientcmdCluster{Server: "http://localhost:8080"}
-
-	// EnvVarCluster allows overriding the DefaultCluster using an envvar for the server name
-	envVarCluster = clientcmdCluster{Server: os.Getenv("KUBERNETES_MASTER")}
-)
-
-// directClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.
-// DirectClientConfig is a ClientConfig interface that is backed by a clientcmdapi.Config, options overrides, and an optional fallbackReader for auth information
-type directClientConfig struct {
-	config clientcmdConfig
-}
-
-// newNonInteractiveClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.NewNonInteractiveClientConfig.
-// NewNonInteractiveClientConfig creates a DirectClientConfig using the passed context name and does not have a fallback reader for auth information
-func newNonInteractiveClientConfig(config clientcmdConfig) clientConfig {
-	return &directClientConfig{config}
-}
-
-// ClientConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.ClientConfig.
-// ClientConfig implements ClientConfig
-func (config *directClientConfig) ClientConfig() (*restConfig, error) {
-	if err := config.ConfirmUsable(); err != nil {
-		return nil, err
-	}
-
-	configAuthInfo := config.getAuthInfo()
-	configClusterInfo := config.getCluster()
-
-	clientConfig := &restConfig{}
-	clientConfig.Host = configClusterInfo.Server
-	if u, err := url.ParseRequestURI(clientConfig.Host); err == nil && u.Opaque == "" && len(u.Path) > 1 {
-		u.RawQuery = ""
-		u.Fragment = ""
-		clientConfig.Host = u.String()
-	}
-
-	// only try to read the auth information if we are secure
-	if isConfigTransportTLS(*clientConfig) {
-		var err error
-
-		// mergo is a first write wins for map value and a last writing wins for interface values
-		// NOTE: This behavior changed with https://github.com/imdario/mergo/commit/d304790b2ed594794496464fadd89d2bb266600a.
-		//       Our mergo.Merge version is older than this change.
-		// REMOVED: Support for interactive fallback.
-		userAuthPartialConfig, err := getUserIdentificationPartialConfig(configAuthInfo)
-		if err != nil {
-			return nil, err
-		}
-		mergo.Merge(clientConfig, userAuthPartialConfig)
-
-		serverAuthPartialConfig, err := getServerIdentificationPartialConfig(configAuthInfo, configClusterInfo)
-		if err != nil {
-			return nil, err
-		}
-		mergo.Merge(clientConfig, serverAuthPartialConfig)
-	}
-
-	return clientConfig, nil
-}
-
-// getServerIdentificationPartialConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.getServerIdentificationPartialConfig.
-// clientauth.Info object contain both user identification and server identification.  We want different precedence orders for
-// both, so we have to split the objects and merge them separately
-// we want this order of precedence for the server identification
-// 1.  configClusterInfo (the final result of command line flags and merged .kubeconfig files)
-// 2.  configAuthInfo.auth-path (this file can contain information that conflicts with #1, and we want #1 to win the priority)
-// 3.  load the ~/.kubernetes_auth file as a default
-func getServerIdentificationPartialConfig(configAuthInfo clientcmdAuthInfo, configClusterInfo clientcmdCluster) (*restConfig, error) {
-	mergedConfig := &restConfig{}
-
-	// configClusterInfo holds the information identify the server provided by .kubeconfig
-	configClientConfig := &restConfig{}
-	configClientConfig.CAFile = configClusterInfo.CertificateAuthority
-	configClientConfig.CAData = configClusterInfo.CertificateAuthorityData
-	configClientConfig.Insecure = configClusterInfo.InsecureSkipTLSVerify
-	mergo.Merge(mergedConfig, configClientConfig)
-
-	return mergedConfig, nil
-}
-
-// getUserIdentificationPartialConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.getUserIdentificationPartialConfig.
-// clientauth.Info object contain both user identification and server identification.  We want different precedence orders for
-// both, so we have to split the objects and merge them separately
-// we want this order of precedence for user identifcation
-// 1.  configAuthInfo minus auth-path (the final result of command line flags and merged .kubeconfig files)
-// 2.  configAuthInfo.auth-path (this file can contain information that conflicts with #1, and we want #1 to win the priority)
-// 3.  if there is not enough information to idenfity the user, load try the ~/.kubernetes_auth file
-// 4.  if there is not enough information to identify the user, prompt if possible
-func getUserIdentificationPartialConfig(configAuthInfo clientcmdAuthInfo) (*restConfig, error) {
-	mergedConfig := &restConfig{}
-
-	// blindly overwrite existing values based on precedence
-	if len(configAuthInfo.Token) > 0 {
-		mergedConfig.BearerToken = configAuthInfo.Token
-	}
-	if len(configAuthInfo.ClientCertificate) > 0 || len(configAuthInfo.ClientCertificateData) > 0 {
-		mergedConfig.CertFile = configAuthInfo.ClientCertificate
-		mergedConfig.CertData = configAuthInfo.ClientCertificateData
-		mergedConfig.KeyFile = configAuthInfo.ClientKey
-		mergedConfig.KeyData = configAuthInfo.ClientKeyData
-	}
-	if len(configAuthInfo.Username) > 0 || len(configAuthInfo.Password) > 0 {
-		mergedConfig.Username = configAuthInfo.Username
-		mergedConfig.Password = configAuthInfo.Password
-	}
-
-	// REMOVED: prompting for missing information.
-	return mergedConfig, nil
-}
-
-// canIdentifyUser is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.canIdentifyUser
-func canIdentifyUser(config restConfig) bool {
-	return len(config.Username) > 0 ||
-		(len(config.CertFile) > 0 || len(config.CertData) > 0) ||
-		len(config.BearerToken) > 0
-
-}
-
-// ConfirmUsable is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.ConfirmUsable.
-// ConfirmUsable looks a particular context and determines if that particular part of the config is useable.  There might still be errors in the config,
-// but no errors in the sections requested or referenced.  It does not return early so that it can find as many errors as possible.
-func (config *directClientConfig) ConfirmUsable() error {
-	var validationErrors []error
-	validationErrors = append(validationErrors, validateAuthInfo(config.getAuthInfoName(), config.getAuthInfo())...)
-	validationErrors = append(validationErrors, validateClusterInfo(config.getClusterName(), config.getCluster())...)
-	// when direct client config is specified, and our only error is that no server is defined, we should
-	// return a standard "no config" error
-	if len(validationErrors) == 1 && validationErrors[0] == errEmptyCluster {
-		return newErrConfigurationInvalid([]error{errEmptyConfig})
-	}
-	return newErrConfigurationInvalid(validationErrors)
-}
-
-// getContextName is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getContextName.
-func (config *directClientConfig) getContextName() string {
-	// REMOVED: overrides support
-	return config.config.CurrentContext
-}
-
-// getAuthInfoName is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getAuthInfoName.
-func (config *directClientConfig) getAuthInfoName() string {
-	// REMOVED: overrides support
-	return config.getContext().AuthInfo
-}
-
-// getClusterName is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getClusterName.
-func (config *directClientConfig) getClusterName() string {
-	// REMOVED: overrides support
-	return config.getContext().Cluster
-}
-
-// getContext is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getContext.
-func (config *directClientConfig) getContext() clientcmdContext {
-	contexts := config.config.Contexts
-	contextName := config.getContextName()
-
-	var mergedContext clientcmdContext
-	if configContext, exists := contexts[contextName]; exists {
-		mergo.Merge(&mergedContext, configContext)
-	}
-	// REMOVED: overrides support
-
-	return mergedContext
-}
-
-var (
-	errEmptyConfig = errors.New("no configuration has been provided")
-	// message is for consistency with old behavior
-	errEmptyCluster = errors.New("cluster has no server defined")
-)
-
-// validateClusterInfo is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.validateClusterInfo.
-// validateClusterInfo looks for conflicts and errors in the cluster info
-func validateClusterInfo(clusterName string, clusterInfo clientcmdCluster) []error {
-	var validationErrors []error
-
-	if reflect.DeepEqual(clientcmdCluster{}, clusterInfo) {
-		return []error{errEmptyCluster}
-	}
-
-	if len(clusterInfo.Server) == 0 {
-		if len(clusterName) == 0 {
-			validationErrors = append(validationErrors, errors.Errorf("default cluster has no server defined"))
-		} else {
-			validationErrors = append(validationErrors, errors.Errorf("no server found for cluster %q", clusterName))
-		}
-	}
-	// Make sure CA data and CA file aren't both specified
-	if len(clusterInfo.CertificateAuthority) != 0 && len(clusterInfo.CertificateAuthorityData) != 0 {
-		validationErrors = append(validationErrors, errors.Errorf("certificate-authority-data and certificate-authority are both specified for %v. certificate-authority-data will override", clusterName))
-	}
-	if len(clusterInfo.CertificateAuthority) != 0 {
-		clientCertCA, err := os.Open(clusterInfo.CertificateAuthority)
-		defer clientCertCA.Close()
-		if err != nil {
-			validationErrors = append(validationErrors, errors.Errorf("unable to read certificate-authority %v for %v due to %v", clusterInfo.CertificateAuthority, clusterName, err))
-		}
-	}
-
-	return validationErrors
-}
-
-// validateAuthInfo is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.validateAuthInfo.
-// validateAuthInfo looks for conflicts and errors in the auth info
-func validateAuthInfo(authInfoName string, authInfo clientcmdAuthInfo) []error {
-	var validationErrors []error
-
-	usingAuthPath := false
-	methods := make([]string, 0, 3)
-	if len(authInfo.Token) != 0 {
-		methods = append(methods, "token")
-	}
-	if len(authInfo.Username) != 0 || len(authInfo.Password) != 0 {
-		methods = append(methods, "basicAuth")
-	}
-
-	if len(authInfo.ClientCertificate) != 0 || len(authInfo.ClientCertificateData) != 0 {
-		// Make sure cert data and file aren't both specified
-		if len(authInfo.ClientCertificate) != 0 && len(authInfo.ClientCertificateData) != 0 {
-			validationErrors = append(validationErrors, errors.Errorf("client-cert-data and client-cert are both specified for %v. client-cert-data will override", authInfoName))
-		}
-		// Make sure key data and file aren't both specified
-		if len(authInfo.ClientKey) != 0 && len(authInfo.ClientKeyData) != 0 {
-			validationErrors = append(validationErrors, errors.Errorf("client-key-data and client-key are both specified for %v; client-key-data will override", authInfoName))
-		}
-		// Make sure a key is specified
-		if len(authInfo.ClientKey) == 0 && len(authInfo.ClientKeyData) == 0 {
-			validationErrors = append(validationErrors, errors.Errorf("client-key-data or client-key must be specified for %v to use the clientCert authentication method", authInfoName))
-		}
-
-		if len(authInfo.ClientCertificate) != 0 {
-			clientCertFile, err := os.Open(authInfo.ClientCertificate)
-			defer clientCertFile.Close()
-			if err != nil {
-				validationErrors = append(validationErrors, errors.Errorf("unable to read client-cert %v for %v due to %v", authInfo.ClientCertificate, authInfoName, err))
-			}
-		}
-		if len(authInfo.ClientKey) != 0 {
-			clientKeyFile, err := os.Open(authInfo.ClientKey)
-			defer clientKeyFile.Close()
-			if err != nil {
-				validationErrors = append(validationErrors, errors.Errorf("unable to read client-key %v for %v due to %v", authInfo.ClientKey, authInfoName, err))
-			}
-		}
-	}
-
-	// authPath also provides information for the client to identify the server, so allow multiple auth methods in that case
-	if (len(methods) > 1) && (!usingAuthPath) {
-		validationErrors = append(validationErrors, errors.Errorf("more than one authentication method found for %v; found %v, only one is allowed", authInfoName, methods))
-	}
-
-	return validationErrors
-}
-
-// getAuthInfo is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getAuthInfo.
-func (config *directClientConfig) getAuthInfo() clientcmdAuthInfo {
-	authInfos := config.config.AuthInfos
-	authInfoName := config.getAuthInfoName()
-
-	var mergedAuthInfo clientcmdAuthInfo
-	if configAuthInfo, exists := authInfos[authInfoName]; exists {
-		mergo.Merge(&mergedAuthInfo, configAuthInfo)
-	}
-	// REMOVED: overrides support
-
-	return mergedAuthInfo
-}
-
-// getCluster is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.DirectClientConfig.getCluster.
-func (config *directClientConfig) getCluster() clientcmdCluster {
-	clusterInfos := config.config.Clusters
-	clusterInfoName := config.getClusterName()
-
-	var mergedClusterInfo clientcmdCluster
-	mergo.Merge(&mergedClusterInfo, defaultCluster)
-	mergo.Merge(&mergedClusterInfo, envVarCluster)
-	if configClusterInfo, exists := clusterInfos[clusterInfoName]; exists {
-		mergo.Merge(&mergedClusterInfo, configClusterInfo)
-	}
-	// REMOVED: overrides support
-
-	return mergedClusterInfo
-}
-
-// aggregateErr is a modified copy of k8s.io/apimachinery/pkg/util/errors.aggregate.
-// This helper implements the error and Errors interfaces.  Keeping it private
-// prevents people from making an aggregate of 0 errors, which is not
-// an error, but does satisfy the error interface.
-type aggregateErr []error
-
-// newAggregate is a modified copy of k8s.io/apimachinery/pkg/util/errors.NewAggregate.
-// NewAggregate converts a slice of errors into an Aggregate interface, which
-// is itself an implementation of the error interface.  If the slice is empty,
-// this returns nil.
-// It will check if any of the element of input error list is nil, to avoid
-// nil pointer panic when call Error().
-func newAggregate(errlist []error) error {
-	if len(errlist) == 0 {
-		return nil
-	}
-	// In case of input error list contains nil
-	var errs []error
-	for _, e := range errlist {
-		if e != nil {
-			errs = append(errs, e)
-		}
-	}
-	if len(errs) == 0 {
-		return nil
-	}
-	return aggregateErr(errs)
-}
-
-// Error is a modified copy of k8s.io/apimachinery/pkg/util/errors.aggregate.Error.
-// Error is part of the error interface.
-func (agg aggregateErr) Error() string {
-	if len(agg) == 0 {
-		// This should never happen, really.
-		return ""
-	}
-	if len(agg) == 1 {
-		return agg[0].Error()
-	}
-	result := fmt.Sprintf("[%s", agg[0].Error())
-	for i := 1; i < len(agg); i++ {
-		result += fmt.Sprintf(", %s", agg[i].Error())
-	}
-	result += "]"
-	return result
-}
-
-// REMOVED: aggregateErr.Errors
-
-// errConfigurationInvalid is a modified? copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.errConfigurationInvalid.
-// errConfigurationInvalid is a set of errors indicating the configuration is invalid.
-type errConfigurationInvalid []error
-
-var _ error = errConfigurationInvalid{}
-
-// REMOVED: utilerrors.Aggregate implementation for errConfigurationInvalid.
-
-// newErrConfigurationInvalid is a modified? copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.newErrConfigurationInvalid.
-func newErrConfigurationInvalid(errs []error) error {
-	switch len(errs) {
-	case 0:
-		return nil
-	default:
-		return errConfigurationInvalid(errs)
-	}
-}
-
-// Error implements the error interface
-func (e errConfigurationInvalid) Error() string {
-	return fmt.Sprintf("invalid configuration: %v", newAggregate(e).Error())
-}
-
-// clientConfigLoadingRules is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules
-// ClientConfigLoadingRules is an ExplicitPath and string slice of specific locations that are used for merging together a Config
-// Callers can put the chain together however they want, but we'd recommend:
-// EnvVarPathFiles if set (a list of files if set) OR the HomeDirectoryPath
-// ExplicitPath is special, because if a user specifically requests a certain file be used and error is reported if thie file is not present
-type clientConfigLoadingRules struct {
-	Precedence []string
-}
-
-// Load is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules.Load
-// Load starts by running the MigrationRules and then
-// takes the loading rules and returns a Config object based on following rules.
-//   if the ExplicitPath, return the unmerged explicit file
-//   Otherwise, return a merged config based on the Precedence slice
-// A missing ExplicitPath file produces an error. Empty filenames or other missing files are ignored.
-// Read errors or files with non-deserializable content produce errors.
-// The first file to set a particular map key wins and map key's value is never changed.
-// BUT, if you set a struct value that is NOT contained inside of map, the value WILL be changed.
-// This results in some odd looking logic to merge in one direction, merge in the other, and then merge the two.
-// It also means that if two files specify a "red-user", only values from the first file's red-user are used.  Even
-// non-conflicting entries from the second file's "red-user" are discarded.
-// Relative paths inside of the .kubeconfig files are resolved against the .kubeconfig file's parent folder
-// and only absolute file paths are returned.
-func (rules *clientConfigLoadingRules) Load() (*clientcmdConfig, error) {
-	errlist := []error{}
-
-	kubeConfigFiles := []string{}
-
-	// REMOVED: explicit path support
-	kubeConfigFiles = append(kubeConfigFiles, rules.Precedence...)
-
-	kubeconfigs := []*clientcmdConfig{}
-	// read and cache the config files so that we only look at them once
-	for _, filename := range kubeConfigFiles {
-		if len(filename) == 0 {
-			// no work to do
-			continue
-		}
-
-		config, err := loadFromFile(filename)
-		if os.IsNotExist(err) {
-			// skip missing files
-			continue
-		}
-		if err != nil {
-			errlist = append(errlist, errors.Wrapf(err, "Error loading config file \"%s\"", filename))
-			continue
-		}
-
-		kubeconfigs = append(kubeconfigs, config)
-	}
-
-	// first merge all of our maps
-	mapConfig := clientcmdNewConfig()
-	for _, kubeconfig := range kubeconfigs {
-		mergo.Merge(mapConfig, kubeconfig)
-	}
-
-	// merge all of the struct values in the reverse order so that priority is given correctly
-	// errors are not added to the list the second time
-	nonMapConfig := clientcmdNewConfig()
-	for i := len(kubeconfigs) - 1; i >= 0; i-- {
-		kubeconfig := kubeconfigs[i]
-		mergo.Merge(nonMapConfig, kubeconfig)
-	}
-
-	// since values are overwritten, but maps values are not, we can merge the non-map config on top of the map config and
-	// get the values we expect.
-	config := clientcmdNewConfig()
-	mergo.Merge(config, mapConfig)
-	mergo.Merge(config, nonMapConfig)
-
-	// REMOVED: Possibility to skip this.
-	if err := resolveLocalPaths(config); err != nil {
-		errlist = append(errlist, err)
-	}
-
-	return config, newAggregate(errlist)
-}
-
-// loadFromFile is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.LoadFromFile
-// LoadFromFile takes a filename and deserializes the contents into Config object
-func loadFromFile(filename string) (*clientcmdConfig, error) {
-	kubeconfigBytes, err := ioutil.ReadFile(filename)
-	if err != nil {
-		return nil, err
-	}
-	config, err := load(kubeconfigBytes)
-	if err != nil {
-		return nil, err
-	}
-
-	// set LocationOfOrigin on every Cluster, User, and Context
-	for key, obj := range config.AuthInfos {
-		obj.LocationOfOrigin = filename
-		config.AuthInfos[key] = obj
-	}
-	for key, obj := range config.Clusters {
-		obj.LocationOfOrigin = filename
-		config.Clusters[key] = obj
-	}
-	for key, obj := range config.Contexts {
-		obj.LocationOfOrigin = filename
-		config.Contexts[key] = obj
-	}
-
-	if config.AuthInfos == nil {
-		config.AuthInfos = map[string]*clientcmdAuthInfo{}
-	}
-	if config.Clusters == nil {
-		config.Clusters = map[string]*clientcmdCluster{}
-	}
-	if config.Contexts == nil {
-		config.Contexts = map[string]*clientcmdContext{}
-	}
-
-	return config, nil
-}
-
-// load is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.Load
-// Load takes a byte slice and deserializes the contents into Config object.
-// Encapsulates deserialization without assuming the source is a file.
-func load(data []byte) (*clientcmdConfig, error) {
-	config := clientcmdNewConfig()
-	// if there's no data in a file, return the default object instead of failing (DecodeInto reject empty input)
-	if len(data) == 0 {
-		return config, nil
-	}
-	// Note: This does absolutely no kind/version checking or conversions.
-	data, err := yaml.YAMLToJSON(data)
-	if err != nil {
-		return nil, err
-	}
-	if err := json.Unmarshal(data, config); err != nil {
-		return nil, err
-	}
-	return config, nil
-}
-
-// resolveLocalPaths is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules.resolveLocalPaths.
-// ResolveLocalPaths resolves all relative paths in the config object with respect to the stanza's LocationOfOrigin
-// this cannot be done directly inside of LoadFromFile because doing so there would make it impossible to load a file without
-// modification of its contents.
-func resolveLocalPaths(config *clientcmdConfig) error {
-	for _, cluster := range config.Clusters {
-		if len(cluster.LocationOfOrigin) == 0 {
-			continue
-		}
-		base, err := filepath.Abs(filepath.Dir(cluster.LocationOfOrigin))
-		if err != nil {
-			return errors.Wrapf(err, "Could not determine the absolute path of config file %s", cluster.LocationOfOrigin)
-		}
-
-		if err := resolvePaths(getClusterFileReferences(cluster), base); err != nil {
-			return err
-		}
-	}
-	for _, authInfo := range config.AuthInfos {
-		if len(authInfo.LocationOfOrigin) == 0 {
-			continue
-		}
-		base, err := filepath.Abs(filepath.Dir(authInfo.LocationOfOrigin))
-		if err != nil {
-			return errors.Wrapf(err, "Could not determine the absolute path of config file %s", authInfo.LocationOfOrigin)
-		}
-
-		if err := resolvePaths(getAuthInfoFileReferences(authInfo), base); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-// getClusterFileReferences is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules.GetClusterFileReferences.
-func getClusterFileReferences(cluster *clientcmdCluster) []*string {
-	return []*string{&cluster.CertificateAuthority}
-}
-
-// getAuthInfoFileReferences is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules.GetAuthInfoFileReferences.
-func getAuthInfoFileReferences(authInfo *clientcmdAuthInfo) []*string {
-	return []*string{&authInfo.ClientCertificate, &authInfo.ClientKey}
-}
-
-// resolvePaths is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd.ClientConfigLoadingRules.resolvePaths.
-// ResolvePaths updates the given refs to be absolute paths, relative to the given base directory
-func resolvePaths(refs []*string, base string) error {
-	for _, ref := range refs {
-		// Don't resolve empty paths
-		if len(*ref) > 0 {
-			// Don't resolve absolute paths
-			if !filepath.IsAbs(*ref) {
-				*ref = filepath.Join(base, *ref)
-			}
-		}
-	}
-	return nil
-}
-
-// restClientFor is a modified copy of k8s.io/kubernets/pkg/client/restclient.RESTClientFor.
-// RESTClientFor returns a RESTClient that satisfies the requested attributes on a client Config
-// object. Note that a RESTClient may require fields that are optional when initializing a Client.
-// A RESTClient created by this method is generic - it expects to operate on an API that follows
-// the Kubernetes conventions, but may not be the Kubernetes API.
-func restClientFor(config *restConfig) (*url.URL, *http.Client, error) {
-	// REMOVED: Configurable GroupVersion, Codec
-	// REMOVED: Configurable versionedAPIPath
-	baseURL, err := defaultServerURLFor(config)
-	if err != nil {
-		return nil, nil, err
-	}
-
-	transport, err := transportFor(config)
-	if err != nil {
-		return nil, nil, err
-	}
-
-	var httpClient *http.Client
-	if transport != http.DefaultTransport {
-		httpClient = &http.Client{Transport: transport}
-	}
-
-	// REMOVED: Configurable QPS, Burst, ContentConfig
-	// REMOVED: Actually returning a RESTClient object.
-	return baseURL, httpClient, nil
-}
-
-// defaultServerURL is a modified copy of k8s.io/kubernets/pkg/client/restclient.DefaultServerURL.
-// DefaultServerURL converts a host, host:port, or URL string to the default base server API path
-// to use with a Client at a given API version following the standard conventions for a
-// Kubernetes API.
-func defaultServerURL(host string, defaultTLS bool) (*url.URL, error) {
-	if host == "" {
-		return nil, errors.Errorf("host must be a URL or a host:port pair")
-	}
-	base := host
-	hostURL, err := url.Parse(base)
-	if err != nil {
-		return nil, err
-	}
-	if hostURL.Scheme == "" {
-		scheme := "http://"
-		if defaultTLS {
-			scheme = "https://"
-		}
-		hostURL, err = url.Parse(scheme + base)
-		if err != nil {
-			return nil, err
-		}
-		if hostURL.Path != "" && hostURL.Path != "/" {
-			return nil, errors.Errorf("host must be a URL or a host:port pair: %q", base)
-		}
-	}
-
-	// REMOVED: versionedAPIPath computation.
-	return hostURL, nil
-}
-
-// defaultServerURLFor is a modified copy of k8s.io/kubernets/pkg/client/restclient.defaultServerURLFor.
-// defaultServerUrlFor is shared between IsConfigTransportTLS and RESTClientFor. It
-// requires Host and Version to be set prior to being called.
-func defaultServerURLFor(config *restConfig) (*url.URL, error) {
-	// TODO: move the default to secure when the apiserver supports TLS by default
-	// config.Insecure is taken to mean "I want HTTPS but don't bother checking the certs against a CA."
-	hasCA := len(config.CAFile) != 0 || len(config.CAData) != 0
-	hasCert := len(config.CertFile) != 0 || len(config.CertData) != 0
-	defaultTLS := hasCA || hasCert || config.Insecure
-	host := config.Host
-	if host == "" {
-		host = "localhost"
-	}
-
-	// REMOVED: Configurable APIPath, GroupVersion
-	return defaultServerURL(host, defaultTLS)
-}
-
-// transportFor is a modified copy of k8s.io/kubernets/pkg/client/restclient.transportFor.
-// TransportFor returns an http.RoundTripper that will provide the authentication
-// or transport level security defined by the provided Config. Will return the
-// default http.DefaultTransport if no special case behavior is needed.
-func transportFor(config *restConfig) (http.RoundTripper, error) {
-	// REMOVED: separation between restclient.Config and transport.Config, Transport, WrapTransport support
-	return transportNew(config)
-}
-
-// isConfigTransportTLS is a modified copy of k8s.io/kubernets/pkg/client/restclient.IsConfigTransportTLS.
-// IsConfigTransportTLS returns true if and only if the provided
-// config will result in a protected connection to the server when it
-// is passed to restclient.RESTClientFor().  Use to determine when to
-// send credentials over the wire.
-//
-// Note: the Insecure flag is ignored when testing for this value, so MITM attacks are
-// still possible.
-func isConfigTransportTLS(config restConfig) bool {
-	baseURL, err := defaultServerURLFor(&config)
-	if err != nil {
-		return false
-	}
-	return baseURL.Scheme == "https"
-}
-
-// transportNew is a modified copy of k8s.io/kubernetes/pkg/client/transport.New.
-// New returns an http.RoundTripper that will provide the authentication
-// or transport level security defined by the provided Config.
-func transportNew(config *restConfig) (http.RoundTripper, error) {
-	// REMOVED: custom config.Transport support.
-	// Set transport level security
-
-	var (
-		rt  http.RoundTripper
-		err error
-	)
-
-	rt, err = tlsCacheGet(config)
-	if err != nil {
-		return nil, err
-	}
-
-	// REMOVED: HTTPWrappersForConfig(config, rt) in favor of the caller setting HTTP headers itself based on restConfig. Only this inlined check remains.
-	if len(config.Username) != 0 && len(config.BearerToken) != 0 {
-		return nil, errors.Errorf("username/password or bearer token may be set, but not both")
-	}
-
-	return rt, nil
-}
-
-// newProxierWithNoProxyCIDR is a modified copy of k8s.io/apimachinery/pkg/util/net.NewProxierWithNoProxyCIDR.
-// NewProxierWithNoProxyCIDR constructs a Proxier function that respects CIDRs in NO_PROXY and delegates if
-// no matching CIDRs are found
-func newProxierWithNoProxyCIDR(delegate func(req *http.Request) (*url.URL, error)) func(req *http.Request) (*url.URL, error) {
-	// we wrap the default method, so we only need to perform our check if the NO_PROXY envvar has a CIDR in it
-	noProxyEnv := os.Getenv("NO_PROXY")
-	noProxyRules := strings.Split(noProxyEnv, ",")
-
-	cidrs := []*net.IPNet{}
-	for _, noProxyRule := range noProxyRules {
-		_, cidr, _ := net.ParseCIDR(noProxyRule)
-		if cidr != nil {
-			cidrs = append(cidrs, cidr)
-		}
-	}
-
-	if len(cidrs) == 0 {
-		return delegate
-	}
-
-	return func(req *http.Request) (*url.URL, error) {
-		host := req.URL.Host
-		// for some urls, the Host is already the host, not the host:port
-		if net.ParseIP(host) == nil {
-			var err error
-			host, _, err = net.SplitHostPort(req.URL.Host)
-			if err != nil {
-				return delegate(req)
-			}
-		}
-
-		ip := net.ParseIP(host)
-		if ip == nil {
-			return delegate(req)
-		}
-
-		for _, cidr := range cidrs {
-			if cidr.Contains(ip) {
-				return nil, nil
-			}
-		}
-
-		return delegate(req)
-	}
-}
-
-// tlsCacheGet is a modified copy of k8s.io/kubernetes/pkg/client/transport.tlsTransportCache.get.
-func tlsCacheGet(config *restConfig) (http.RoundTripper, error) {
-	// REMOVED: any actual caching
-
-	// Get the TLS options for this client config
-	tlsConfig, err := tlsConfigFor(config)
-	if err != nil {
-		return nil, err
-	}
-	// The options didn't require a custom TLS config
-	if tlsConfig == nil {
-		return http.DefaultTransport, nil
-	}
-
-	// REMOVED: Call to k8s.io/apimachinery/pkg/util/net.SetTransportDefaults; instead of the generic machinery and conditionals, hard-coded the result here.
-	t := &http.Transport{
-		// http.ProxyFromEnvironment doesn't respect CIDRs and that makes it impossible to exclude things like pod and service IPs from proxy settings
-		// ProxierWithNoProxyCIDR allows CIDR rules in NO_PROXY
-		Proxy:               newProxierWithNoProxyCIDR(http.ProxyFromEnvironment),
-		TLSHandshakeTimeout: 10 * time.Second,
-		TLSClientConfig:     tlsConfig,
-		Dial: (&net.Dialer{
-			Timeout:   30 * time.Second,
-			KeepAlive: 30 * time.Second,
-		}).Dial,
-	}
-	// Allow clients to disable http2 if needed.
-	if s := os.Getenv("DISABLE_HTTP2"); len(s) == 0 {
-		_ = http2.ConfigureTransport(t)
-	}
-	return t, nil
-}
-
-// tlsConfigFor is a modified copy of k8s.io/kubernetes/pkg/client/transport.TLSConfigFor.
-// TLSConfigFor returns a tls.Config that will provide the transport level security defined
-// by the provided Config. Will return nil if no transport level security is requested.
-func tlsConfigFor(c *restConfig) (*tls.Config, error) {
-	if !(c.HasCA() || c.HasCertAuth() || c.Insecure) {
-		return nil, nil
-	}
-	if c.HasCA() && c.Insecure {
-		return nil, errors.Errorf("specifying a root certificates file with the insecure flag is not allowed")
-	}
-	if err := loadTLSFiles(c); err != nil {
-		return nil, err
-	}
-
-	tlsConfig := &tls.Config{
-		// Change default from SSLv3 to TLSv1.0 (because of POODLE vulnerability)
-		MinVersion:         tls.VersionTLS10,
-		InsecureSkipVerify: c.Insecure,
-	}
-
-	if c.HasCA() {
-		tlsConfig.RootCAs = rootCertPool(c.CAData)
-	}
-
-	if c.HasCertAuth() {
-		cert, err := tls.X509KeyPair(c.CertData, c.KeyData)
-		if err != nil {
-			return nil, err
-		}
-		tlsConfig.Certificates = []tls.Certificate{cert}
-	}
-
-	return tlsConfig, nil
-}
-
-// loadTLSFiles is a modified copy of k8s.io/kubernetes/pkg/client/transport.loadTLSFiles.
-// loadTLSFiles copies the data from the CertFile, KeyFile, and CAFile fields into the CertData,
-// KeyData, and CAFile fields, or returns an error. If no error is returned, all three fields are
-// either populated or were empty to start.
-func loadTLSFiles(c *restConfig) error {
-	var err error
-	c.CAData, err = dataFromSliceOrFile(c.CAData, c.CAFile)
-	if err != nil {
-		return err
-	}
-
-	c.CertData, err = dataFromSliceOrFile(c.CertData, c.CertFile)
-	if err != nil {
-		return err
-	}
-
-	c.KeyData, err = dataFromSliceOrFile(c.KeyData, c.KeyFile)
-	if err != nil {
-		return err
-	}
-	return nil
-}
-
-// dataFromSliceOrFile is a modified copy of k8s.io/kubernetes/pkg/client/transport.dataFromSliceOrFile.
-// dataFromSliceOrFile returns data from the slice (if non-empty), or from the file,
-// or an error if an error occurred reading the file
-func dataFromSliceOrFile(data []byte, file string) ([]byte, error) {
-	if len(data) > 0 {
-		return data, nil
-	}
-	if len(file) > 0 {
-		fileData, err := ioutil.ReadFile(file)
-		if err != nil {
-			return []byte{}, err
-		}
-		return fileData, nil
-	}
-	return nil, nil
-}
-
-// rootCertPool is a modified copy of k8s.io/kubernetes/pkg/client/transport.rootCertPool.
-// rootCertPool returns nil if caData is empty.  When passed along, this will mean "use system CAs".
-// When caData is not empty, it will be the ONLY information used in the CertPool.
-func rootCertPool(caData []byte) *x509.CertPool {
-	// What we really want is a copy of x509.systemRootsPool, but that isn't exposed.  It's difficult to build (see the go
-	// code for a look at the platform specific insanity), so we'll use the fact that RootCAs == nil gives us the system values
-	// It doesn't allow trusting either/or, but hopefully that won't be an issue
-	if len(caData) == 0 {
-		return nil
-	}
-
-	// if we have caData, use it
-	certPool := x509.NewCertPool()
-	certPool.AppendCertsFromPEM(caData)
-	return certPool
-}
-
-// HasCA is a modified copy of k8s.io/kubernetes/pkg/client/transport.Config.HasCA.
-// HasCA returns whether the configuration has a certificate authority or not.
-func (c *restConfig) HasCA() bool {
-	return len(c.CAData) > 0 || len(c.CAFile) > 0
-}
-
-// HasCertAuth is a modified copy of k8s.io/kubernetes/pkg/client/transport.Config.HasCertAuth.
-// HasCertAuth returns whether the configuration has certificate authentication or not.
-func (c *restConfig) HasCertAuth() bool {
-	return len(c.CertData) != 0 || len(c.CertFile) != 0
-}
-
-// clientcmdConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.Config.
-// Config holds the information needed to build connect to remote kubernetes clusters as a given user
-// IMPORTANT if you add fields to this struct, please update IsConfigEmpty()
-type clientcmdConfig struct {
-	// Clusters is a map of referencable names to cluster configs
-	Clusters clustersMap `json:"clusters"`
-	// AuthInfos is a map of referencable names to user configs
-	AuthInfos authInfosMap `json:"users"`
-	// Contexts is a map of referencable names to context configs
-	Contexts contextsMap `json:"contexts"`
-	// CurrentContext is the name of the context that you would like to use by default
-	CurrentContext string `json:"current-context"`
-}
-
-type clustersMap map[string]*clientcmdCluster
-
-func (m *clustersMap) UnmarshalJSON(data []byte) error {
-	var a []v1NamedCluster
-	if err := json.Unmarshal(data, &a); err != nil {
-		return err
-	}
-	for _, e := range a {
-		cluster := e.Cluster // Allocates a new instance in each iteration
-		(*m)[e.Name] = &cluster
-	}
-	return nil
-}
-
-type authInfosMap map[string]*clientcmdAuthInfo
-
-func (m *authInfosMap) UnmarshalJSON(data []byte) error {
-	var a []v1NamedAuthInfo
-	if err := json.Unmarshal(data, &a); err != nil {
-		return err
-	}
-	for _, e := range a {
-		authInfo := e.AuthInfo // Allocates a new instance in each iteration
-		(*m)[e.Name] = &authInfo
-	}
-	return nil
-}
-
-type contextsMap map[string]*clientcmdContext
-
-func (m *contextsMap) UnmarshalJSON(data []byte) error {
-	var a []v1NamedContext
-	if err := json.Unmarshal(data, &a); err != nil {
-		return err
-	}
-	for _, e := range a {
-		context := e.Context // Allocates a new instance in each iteration
-		(*m)[e.Name] = &context
-	}
-	return nil
-}
-
-// clientcmdNewConfig is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.NewConfig.
-// NewConfig is a convenience function that returns a new Config object with non-nil maps
-func clientcmdNewConfig() *clientcmdConfig {
-	return &clientcmdConfig{
-		Clusters:  make(map[string]*clientcmdCluster),
-		AuthInfos: make(map[string]*clientcmdAuthInfo),
-		Contexts:  make(map[string]*clientcmdContext),
-	}
-}
-
-// clientcmdCluster is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.Cluster.
-// Cluster contains information about how to communicate with a kubernetes cluster
-type clientcmdCluster struct {
-	// LocationOfOrigin indicates where this object came from.  It is used for round tripping config post-merge, but never serialized.
-	LocationOfOrigin string
-	// Server is the address of the kubernetes cluster (https://hostname:port).
-	Server string `json:"server"`
-	// InsecureSkipTLSVerify skips the validity check for the server's certificate. This will make your HTTPS connections insecure.
-	InsecureSkipTLSVerify bool `json:"insecure-skip-tls-verify,omitempty"`
-	// CertificateAuthority is the path to a cert file for the certificate authority.
-	CertificateAuthority string `json:"certificate-authority,omitempty"`
-	// CertificateAuthorityData contains PEM-encoded certificate authority certificates. Overrides CertificateAuthority
-	CertificateAuthorityData []byte `json:"certificate-authority-data,omitempty"`
-}
-
-// clientcmdAuthInfo is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.AuthInfo.
-// AuthInfo contains information that describes identity information.  This is use to tell the kubernetes cluster who you are.
-type clientcmdAuthInfo struct {
-	// LocationOfOrigin indicates where this object came from.  It is used for round tripping config post-merge, but never serialized.
-	LocationOfOrigin string
-	// ClientCertificate is the path to a client cert file for TLS.
-	ClientCertificate string `json:"client-certificate,omitempty"`
-	// ClientCertificateData contains PEM-encoded data from a client cert file for TLS. Overrides ClientCertificate
-	ClientCertificateData []byte `json:"client-certificate-data,omitempty"`
-	// ClientKey is the path to a client key file for TLS.
-	ClientKey string `json:"client-key,omitempty"`
-	// ClientKeyData contains PEM-encoded data from a client key file for TLS. Overrides ClientKey
-	ClientKeyData []byte `json:"client-key-data,omitempty"`
-	// Token is the bearer token for authentication to the kubernetes cluster.
-	Token string `json:"token,omitempty"`
-	// Username is the username for basic authentication to the kubernetes cluster.
-	Username string `json:"username,omitempty"`
-	// Password is the password for basic authentication to the kubernetes cluster.
-	Password string `json:"password,omitempty"`
-}
-
-// clientcmdContext is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.Context.
-// Context is a tuple of references to a cluster (how do I communicate with a kubernetes cluster), a user (how do I identify myself), and a namespace (what subset of resources do I want to work with)
-type clientcmdContext struct {
-	// LocationOfOrigin indicates where this object came from.  It is used for round tripping config post-merge, but never serialized.
-	LocationOfOrigin string
-	// Cluster is the name of the cluster for this context
-	Cluster string `json:"cluster"`
-	// AuthInfo is the name of the authInfo for this context
-	AuthInfo string `json:"user"`
-	// Namespace is the default namespace to use on unspecified requests
-	Namespace string `json:"namespace,omitempty"`
-}
-
-// v1NamedCluster is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.v1.NamedCluster.
-// NamedCluster relates nicknames to cluster information
-type v1NamedCluster struct {
-	// Name is the nickname for this Cluster
-	Name string `json:"name"`
-	// Cluster holds the cluster information
-	Cluster clientcmdCluster `json:"cluster"`
-}
-
-// v1NamedContext is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.v1.NamedContext.
-// NamedContext relates nicknames to context information
-type v1NamedContext struct {
-	// Name is the nickname for this Context
-	Name string `json:"name"`
-	// Context holds the context information
-	Context clientcmdContext `json:"context"`
-}
-
-// v1NamedAuthInfo is a modified copy of k8s.io/kubernetes/pkg/client/unversioned/clientcmd/api.v1.NamedAuthInfo.
-// NamedAuthInfo relates nicknames to auth information
-type v1NamedAuthInfo struct {
-	// Name is the nickname for this AuthInfo
-	Name string `json:"name"`
-	// AuthInfo holds the auth information
-	AuthInfo clientcmdAuthInfo `json:"user"`
-}
diff --git a/vendor/github.com/containers/image/openshift/openshift.go b/vendor/github.com/containers/image/openshift/openshift.go
deleted file mode 100644
index 5465591444..0000000000
--- a/vendor/github.com/containers/image/openshift/openshift.go
+++ /dev/null
@@ -1,544 +0,0 @@
-package openshift
-
-import (
-	"bytes"
-	"context"
-	"crypto/rand"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"net/url"
-	"strings"
-
-	"github.com/containers/image/docker"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/containers/image/version"
-	"github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// openshiftClient is configuration for dealing with a single image stream, for reading or writing.
-type openshiftClient struct {
-	ref     openshiftReference
-	baseURL *url.URL
-	// Values from Kubernetes configuration
-	httpClient  *http.Client
-	bearerToken string // "" if not used
-	username    string // "" if not used
-	password    string // if username != ""
-}
-
-// newOpenshiftClient creates a new openshiftClient for the specified reference.
-func newOpenshiftClient(ref openshiftReference) (*openshiftClient, error) {
-	// We have already done this parsing in ParseReference, but thrown away
-	// httpClient. So, parse again.
-	// (We could also rework/split restClientFor to "get base URL" to be done
-	// in ParseReference, and "get httpClient" to be done here.  But until/unless
-	// we support non-default clusters, this is good enough.)
-
-	// Overall, this is modelled on openshift/origin/pkg/cmd/util/clientcmd.New().ClientConfig() and openshift/origin/pkg/client.
-	cmdConfig := defaultClientConfig()
-	logrus.Debugf("cmdConfig: %#v", cmdConfig)
-	restConfig, err := cmdConfig.ClientConfig()
-	if err != nil {
-		return nil, err
-	}
-	// REMOVED: SetOpenShiftDefaults (values are not overridable in config files, so hard-coded these defaults.)
-	logrus.Debugf("restConfig: %#v", restConfig)
-	baseURL, httpClient, err := restClientFor(restConfig)
-	if err != nil {
-		return nil, err
-	}
-	logrus.Debugf("URL: %#v", *baseURL)
-
-	if httpClient == nil {
-		httpClient = http.DefaultClient
-	}
-
-	return &openshiftClient{
-		ref:         ref,
-		baseURL:     baseURL,
-		httpClient:  httpClient,
-		bearerToken: restConfig.BearerToken,
-		username:    restConfig.Username,
-		password:    restConfig.Password,
-	}, nil
-}
-
-// doRequest performs a correctly authenticated request to a specified path, and returns response body or an error object.
-func (c *openshiftClient) doRequest(ctx context.Context, method, path string, requestBody []byte) ([]byte, error) {
-	url := *c.baseURL
-	url.Path = path
-	var requestBodyReader io.Reader
-	if requestBody != nil {
-		logrus.Debugf("Will send body: %s", requestBody)
-		requestBodyReader = bytes.NewReader(requestBody)
-	}
-	req, err := http.NewRequest(method, url.String(), requestBodyReader)
-	if err != nil {
-		return nil, err
-	}
-	req = req.WithContext(ctx)
-
-	if len(c.bearerToken) != 0 {
-		req.Header.Set("Authorization", "Bearer "+c.bearerToken)
-	} else if len(c.username) != 0 {
-		req.SetBasicAuth(c.username, c.password)
-	}
-	req.Header.Set("Accept", "application/json, */*")
-	req.Header.Set("User-Agent", fmt.Sprintf("skopeo/%s", version.Version))
-	if requestBody != nil {
-		req.Header.Set("Content-Type", "application/json")
-	}
-
-	logrus.Debugf("%s %s", method, url)
-	res, err := c.httpClient.Do(req)
-	if err != nil {
-		return nil, err
-	}
-	defer res.Body.Close()
-	body, err := ioutil.ReadAll(res.Body)
-	if err != nil {
-		return nil, err
-	}
-	logrus.Debugf("Got body: %s", body)
-	// FIXME: Just throwing this useful information away only to try to guess later...
-	logrus.Debugf("Got content-type: %s", res.Header.Get("Content-Type"))
-
-	var status status
-	statusValid := false
-	if err := json.Unmarshal(body, &status); err == nil && len(status.Status) > 0 {
-		statusValid = true
-	}
-
-	switch {
-	case res.StatusCode == http.StatusSwitchingProtocols: // FIXME?! No idea why this weird case exists in k8s.io/kubernetes/pkg/client/restclient.
-		if statusValid && status.Status != "Success" {
-			return nil, errors.New(status.Message)
-		}
-	case res.StatusCode >= http.StatusOK && res.StatusCode <= http.StatusPartialContent:
-		// OK.
-	default:
-		if statusValid {
-			return nil, errors.New(status.Message)
-		}
-		return nil, errors.Errorf("HTTP error: status code: %d, body: %s", res.StatusCode, string(body))
-	}
-
-	return body, nil
-}
-
-// getImage loads the specified image object.
-func (c *openshiftClient) getImage(ctx context.Context, imageStreamImageName string) (*image, error) {
-	// FIXME: validate components per validation.IsValidPathSegmentName?
-	path := fmt.Sprintf("/oapi/v1/namespaces/%s/imagestreamimages/%s@%s", c.ref.namespace, c.ref.stream, imageStreamImageName)
-	body, err := c.doRequest(ctx, "GET", path, nil)
-	if err != nil {
-		return nil, err
-	}
-	// Note: This does absolutely no kind/version checking or conversions.
-	var isi imageStreamImage
-	if err := json.Unmarshal(body, &isi); err != nil {
-		return nil, err
-	}
-	return &isi.Image, nil
-}
-
-// convertDockerImageReference takes an image API DockerImageReference value and returns a reference we can actually use;
-// currently OpenShift stores the cluster-internal service IPs here, which are unusable from the outside.
-func (c *openshiftClient) convertDockerImageReference(ref string) (string, error) {
-	parts := strings.SplitN(ref, "/", 2)
-	if len(parts) != 2 {
-		return "", errors.Errorf("Invalid format of docker reference %s: missing '/'", ref)
-	}
-	return reference.Domain(c.ref.dockerReference) + "/" + parts[1], nil
-}
-
-type openshiftImageSource struct {
-	client *openshiftClient
-	// Values specific to this image
-	ctx *types.SystemContext
-	// State
-	docker               types.ImageSource // The Docker Registry endpoint, or nil if not resolved yet
-	imageStreamImageName string            // Resolved image identifier, or "" if not known yet
-}
-
-// newImageSource creates a new ImageSource for the specified reference.
-// The caller must call .Close() on the returned ImageSource.
-func newImageSource(ctx *types.SystemContext, ref openshiftReference) (types.ImageSource, error) {
-	client, err := newOpenshiftClient(ref)
-	if err != nil {
-		return nil, err
-	}
-
-	return &openshiftImageSource{
-		client: client,
-		ctx:    ctx,
-	}, nil
-}
-
-// Reference returns the reference used to set up this source, _as specified by the user_
-// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-func (s *openshiftImageSource) Reference() types.ImageReference {
-	return s.client.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *openshiftImageSource) Close() error {
-	if s.docker != nil {
-		err := s.docker.Close()
-		s.docker = nil
-
-		return err
-	}
-
-	return nil
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (s *openshiftImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if err := s.ensureImageIsResolved(context.TODO()); err != nil {
-		return nil, "", err
-	}
-	return s.docker.GetManifest(instanceDigest)
-}
-
-// GetBlob returns a stream for the specified blob, and the blob’s size (or -1 if unknown).
-func (s *openshiftImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	if err := s.ensureImageIsResolved(context.TODO()); err != nil {
-		return nil, 0, err
-	}
-	return s.docker.GetBlob(info)
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (s *openshiftImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	var imageName string
-	if instanceDigest == nil {
-		if err := s.ensureImageIsResolved(ctx); err != nil {
-			return nil, err
-		}
-		imageName = s.imageStreamImageName
-	} else {
-		imageName = instanceDigest.String()
-	}
-	image, err := s.client.getImage(ctx, imageName)
-	if err != nil {
-		return nil, err
-	}
-	var sigs [][]byte
-	for _, sig := range image.Signatures {
-		if sig.Type == imageSignatureTypeAtomic {
-			sigs = append(sigs, sig.Content)
-		}
-	}
-	return sigs, nil
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *openshiftImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
-
-// ensureImageIsResolved sets up s.docker and s.imageStreamImageName
-func (s *openshiftImageSource) ensureImageIsResolved(ctx context.Context) error {
-	if s.docker != nil {
-		return nil
-	}
-
-	// FIXME: validate components per validation.IsValidPathSegmentName?
-	path := fmt.Sprintf("/oapi/v1/namespaces/%s/imagestreams/%s", s.client.ref.namespace, s.client.ref.stream)
-	body, err := s.client.doRequest(ctx, "GET", path, nil)
-	if err != nil {
-		return err
-	}
-	// Note: This does absolutely no kind/version checking or conversions.
-	var is imageStream
-	if err := json.Unmarshal(body, &is); err != nil {
-		return err
-	}
-	var te *tagEvent
-	for _, tag := range is.Status.Tags {
-		if tag.Tag != s.client.ref.dockerReference.Tag() {
-			continue
-		}
-		if len(tag.Items) > 0 {
-			te = &tag.Items[0]
-			break
-		}
-	}
-	if te == nil {
-		return errors.Errorf("No matching tag found")
-	}
-	logrus.Debugf("tag event %#v", te)
-	dockerRefString, err := s.client.convertDockerImageReference(te.DockerImageReference)
-	if err != nil {
-		return err
-	}
-	logrus.Debugf("Resolved reference %#v", dockerRefString)
-	dockerRef, err := docker.ParseReference("//" + dockerRefString)
-	if err != nil {
-		return err
-	}
-	d, err := dockerRef.NewImageSource(s.ctx)
-	if err != nil {
-		return err
-	}
-	s.docker = d
-	s.imageStreamImageName = te.Image
-	return nil
-}
-
-type openshiftImageDestination struct {
-	client *openshiftClient
-	docker types.ImageDestination // The Docker Registry endpoint
-	// State
-	imageStreamImageName string // "" if not yet known
-}
-
-// newImageDestination creates a new ImageDestination for the specified reference.
-func newImageDestination(ctx *types.SystemContext, ref openshiftReference) (types.ImageDestination, error) {
-	client, err := newOpenshiftClient(ref)
-	if err != nil {
-		return nil, err
-	}
-
-	// FIXME: Should this always use a digest, not a tag? Uploading to Docker by tag requires the tag _inside_ the manifest to match,
-	// i.e. a single signed image cannot be available under multiple tags.  But with types.ImageDestination, we don't know
-	// the manifest digest at this point.
-	dockerRefString := fmt.Sprintf("//%s/%s/%s:%s", reference.Domain(client.ref.dockerReference), client.ref.namespace, client.ref.stream, client.ref.dockerReference.Tag())
-	dockerRef, err := docker.ParseReference(dockerRefString)
-	if err != nil {
-		return nil, err
-	}
-	docker, err := dockerRef.NewImageDestination(ctx)
-	if err != nil {
-		return nil, err
-	}
-
-	return &openshiftImageDestination{
-		client: client,
-		docker: docker,
-	}, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *openshiftImageDestination) Reference() types.ImageReference {
-	return d.client.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *openshiftImageDestination) Close() error {
-	return d.docker.Close()
-}
-
-func (d *openshiftImageDestination) SupportedManifestMIMETypes() []string {
-	return d.docker.SupportedManifestMIMETypes()
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *openshiftImageDestination) SupportsSignatures() error {
-	return nil
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *openshiftImageDestination) ShouldCompressLayers() bool {
-	return true
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *openshiftImageDestination) AcceptsForeignLayerURLs() bool {
-	return true
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *openshiftImageDestination) MustMatchRuntimeOS() bool {
-	return false
-}
-
-// PutBlob writes contents of stream and returns data representing the result (with all data filled in).
-// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-// inputInfo.Size is the expected length of stream, if known.
-// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-// to any other readers for download using the supplied digest.
-// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-func (d *openshiftImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	return d.docker.PutBlob(stream, inputInfo)
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob.
-// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-// it returns a non-nil error only on an unexpected failure.
-func (d *openshiftImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-	return d.docker.HasBlob(info)
-}
-
-func (d *openshiftImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return d.docker.ReapplyBlob(info)
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *openshiftImageDestination) PutManifest(m []byte) error {
-	manifestDigest, err := manifest.Digest(m)
-	if err != nil {
-		return err
-	}
-	d.imageStreamImageName = manifestDigest.String()
-
-	return d.docker.PutManifest(m)
-}
-
-func (d *openshiftImageDestination) PutSignatures(signatures [][]byte) error {
-	if d.imageStreamImageName == "" {
-		return errors.Errorf("Internal error: Unknown manifest digest, can't add signatures")
-	}
-	// Because image signatures are a shared resource in Atomic Registry, the default upload
-	// always adds signatures.  Eventually we should also allow removing signatures.
-
-	if len(signatures) == 0 {
-		return nil // No need to even read the old state.
-	}
-
-	image, err := d.client.getImage(context.TODO(), d.imageStreamImageName)
-	if err != nil {
-		return err
-	}
-	existingSigNames := map[string]struct{}{}
-	for _, sig := range image.Signatures {
-		existingSigNames[sig.objectMeta.Name] = struct{}{}
-	}
-
-sigExists:
-	for _, newSig := range signatures {
-		for _, existingSig := range image.Signatures {
-			if existingSig.Type == imageSignatureTypeAtomic && bytes.Equal(existingSig.Content, newSig) {
-				continue sigExists
-			}
-		}
-
-		// The API expect us to invent a new unique name. This is racy, but hopefully good enough.
-		var signatureName string
-		for {
-			randBytes := make([]byte, 16)
-			n, err := rand.Read(randBytes)
-			if err != nil || n != 16 {
-				return errors.Wrapf(err, "Error generating random signature len %d", n)
-			}
-			signatureName = fmt.Sprintf("%s@%032x", d.imageStreamImageName, randBytes)
-			if _, ok := existingSigNames[signatureName]; !ok {
-				break
-			}
-		}
-		// Note: This does absolutely no kind/version checking or conversions.
-		sig := imageSignature{
-			typeMeta: typeMeta{
-				Kind:       "ImageSignature",
-				APIVersion: "v1",
-			},
-			objectMeta: objectMeta{Name: signatureName},
-			Type:       imageSignatureTypeAtomic,
-			Content:    newSig,
-		}
-		body, err := json.Marshal(sig)
-		_, err = d.client.doRequest(context.TODO(), "POST", "/oapi/v1/imagesignatures", body)
-		if err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-// WARNING: This does not have any transactional semantics:
-// - Uploaded data MAY be visible to others before Commit() is called
-// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-func (d *openshiftImageDestination) Commit() error {
-	return d.docker.Commit()
-}
-
-// These structs are subsets of github.com/openshift/origin/pkg/image/api/v1 and its dependencies.
-type imageStream struct {
-	Status imageStreamStatus `json:"status,omitempty"`
-}
-type imageStreamStatus struct {
-	DockerImageRepository string              `json:"dockerImageRepository"`
-	Tags                  []namedTagEventList `json:"tags,omitempty"`
-}
-type namedTagEventList struct {
-	Tag   string     `json:"tag"`
-	Items []tagEvent `json:"items"`
-}
-type tagEvent struct {
-	DockerImageReference string `json:"dockerImageReference"`
-	Image                string `json:"image"`
-}
-type imageStreamImage struct {
-	Image image `json:"image"`
-}
-type image struct {
-	objectMeta           `json:"metadata,omitempty"`
-	DockerImageReference string `json:"dockerImageReference,omitempty"`
-	//	DockerImageMetadata        runtime.RawExtension `json:"dockerImageMetadata,omitempty"`
-	DockerImageMetadataVersion string `json:"dockerImageMetadataVersion,omitempty"`
-	DockerImageManifest        string `json:"dockerImageManifest,omitempty"`
-	//	DockerImageLayers          []ImageLayer         `json:"dockerImageLayers"`
-	Signatures []imageSignature `json:"signatures,omitempty"`
-}
-
-const imageSignatureTypeAtomic string = "atomic"
-
-type imageSignature struct {
-	typeMeta   `json:",inline"`
-	objectMeta `json:"metadata,omitempty"`
-	Type       string `json:"type"`
-	Content    []byte `json:"content"`
-	// Conditions []SignatureCondition `json:"conditions,omitempty" patchStrategy:"merge" patchMergeKey:"type"`
-	// ImageIdentity string `json:"imageIdentity,omitempty"`
-	// SignedClaims map[string]string `json:"signedClaims,omitempty"`
-	// Created *unversioned.Time `json:"created,omitempty"`
-	// IssuedBy SignatureIssuer `json:"issuedBy,omitempty"`
-	// IssuedTo SignatureSubject `json:"issuedTo,omitempty"`
-}
-type typeMeta struct {
-	Kind       string `json:"kind,omitempty"`
-	APIVersion string `json:"apiVersion,omitempty"`
-}
-type objectMeta struct {
-	Name                       string            `json:"name,omitempty"`
-	GenerateName               string            `json:"generateName,omitempty"`
-	Namespace                  string            `json:"namespace,omitempty"`
-	SelfLink                   string            `json:"selfLink,omitempty"`
-	ResourceVersion            string            `json:"resourceVersion,omitempty"`
-	Generation                 int64             `json:"generation,omitempty"`
-	DeletionGracePeriodSeconds *int64            `json:"deletionGracePeriodSeconds,omitempty"`
-	Labels                     map[string]string `json:"labels,omitempty"`
-	Annotations                map[string]string `json:"annotations,omitempty"`
-}
-
-// A subset of k8s.io/kubernetes/pkg/api/unversioned/Status
-type status struct {
-	Status  string `json:"status,omitempty"`
-	Message string `json:"message,omitempty"`
-	// Reason StatusReason `json:"reason,omitempty"`
-	// Details *StatusDetails `json:"details,omitempty"`
-	Code int32 `json:"code,omitempty"`
-}
diff --git a/vendor/github.com/containers/image/openshift/openshift_transport.go b/vendor/github.com/containers/image/openshift/openshift_transport.go
deleted file mode 100644
index 686d806f76..0000000000
--- a/vendor/github.com/containers/image/openshift/openshift_transport.go
+++ /dev/null
@@ -1,156 +0,0 @@
-package openshift
-
-import (
-	"fmt"
-	"regexp"
-	"strings"
-
-	"github.com/containers/image/docker/policyconfiguration"
-	"github.com/containers/image/docker/reference"
-	genericImage "github.com/containers/image/image"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-// Transport is an ImageTransport for OpenShift registry-hosted images.
-var Transport = openshiftTransport{}
-
-type openshiftTransport struct{}
-
-func (t openshiftTransport) Name() string {
-	return "atomic"
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (t openshiftTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return ParseReference(reference)
-}
-
-// Note that imageNameRegexp is namespace/stream:tag, this
-// is HOSTNAME/namespace/stream:tag or parent prefixes.
-// Keep this in sync with imageNameRegexp!
-var scopeRegexp = regexp.MustCompile("^[^/]*(/[^:/]*(/[^:/]*(:[^:/]*)?)?)?$")
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t openshiftTransport) ValidatePolicyConfigurationScope(scope string) error {
-	if scopeRegexp.FindStringIndex(scope) == nil {
-		return errors.Errorf("Invalid scope name %s", scope)
-	}
-	return nil
-}
-
-// openshiftReference is an ImageReference for OpenShift images.
-type openshiftReference struct {
-	dockerReference reference.NamedTagged
-	namespace       string // Computed from dockerReference in advance.
-	stream          string // Computed from dockerReference in advance.
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an OpenShift ImageReference.
-func ParseReference(ref string) (types.ImageReference, error) {
-	r, err := reference.ParseNormalizedNamed(ref)
-	if err != nil {
-		return nil, errors.Wrapf(err, "failed to parse image reference %q", ref)
-	}
-	tagged, ok := r.(reference.NamedTagged)
-	if !ok {
-		return nil, errors.Errorf("invalid image reference %s, expected format: 'hostname/namespace/stream:tag'", ref)
-	}
-	return NewReference(tagged)
-}
-
-// NewReference returns an OpenShift reference for a reference.NamedTagged
-func NewReference(dockerRef reference.NamedTagged) (types.ImageReference, error) {
-	r := strings.SplitN(reference.Path(dockerRef), "/", 3)
-	if len(r) != 2 {
-		return nil, errors.Errorf("invalid image reference: %s, expected format: 'hostname/namespace/stream:tag'",
-			reference.FamiliarString(dockerRef))
-	}
-	return openshiftReference{
-		namespace:       r[0],
-		stream:          r[1],
-		dockerReference: dockerRef,
-	}, nil
-}
-
-func (ref openshiftReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref openshiftReference) StringWithinTransport() string {
-	return reference.FamiliarString(ref.dockerReference)
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref openshiftReference) DockerReference() reference.Named {
-	return ref.dockerReference
-}
-
-// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-// (i.e. various references with exactly the same semantics should return the same configuration identity)
-// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-// Returns "" if configuration identities for these references are not supported.
-func (ref openshiftReference) PolicyConfigurationIdentity() string {
-	res, err := policyconfiguration.DockerReferenceIdentity(ref.dockerReference)
-	if res == "" || err != nil { // Coverage: Should never happen, NewReference constructs a valid tagged reference.
-		panic(fmt.Sprintf("Internal inconsistency: policyconfiguration.DockerReferenceIdentity returned %#v, %v", res, err))
-	}
-	return res
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref openshiftReference) PolicyConfigurationNamespaces() []string {
-	return policyconfiguration.DockerReferenceNamespaces(ref.dockerReference)
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (ref openshiftReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src, err := newImageSource(ctx, ref)
-	if err != nil {
-		return nil, err
-	}
-	return genericImage.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref openshiftReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(ctx, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref openshiftReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, ref)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref openshiftReference) DeleteImage(ctx *types.SystemContext) error {
-	return errors.Errorf("Deleting images not implemented for atomic: images")
-}
diff --git a/vendor/github.com/containers/image/ostree/ostree_dest.go b/vendor/github.com/containers/image/ostree/ostree_dest.go
deleted file mode 100644
index d5f0ff80cc..0000000000
--- a/vendor/github.com/containers/image/ostree/ostree_dest.go
+++ /dev/null
@@ -1,456 +0,0 @@
-// +build !containers_image_ostree_stub
-
-package ostree
-
-import (
-	"bytes"
-	"compress/gzip"
-	"encoding/base64"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"syscall"
-	"time"
-	"unsafe"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/opencontainers/go-digest"
-	selinux "github.com/opencontainers/selinux/go-selinux"
-	"github.com/ostreedev/ostree-go/pkg/otbuiltin"
-	"github.com/pkg/errors"
-	"github.com/vbatts/tar-split/tar/asm"
-	"github.com/vbatts/tar-split/tar/storage"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0 ostree-1 libselinux
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include <stdlib.h>
-// #include <ostree.h>
-// #include <gio/ginputstream.h>
-// #include <selinux/selinux.h>
-// #include <selinux/label.h>
-import "C"
-
-type blobToImport struct {
-	Size     int64
-	Digest   digest.Digest
-	BlobPath string
-}
-
-type descriptor struct {
-	Size   int64         `json:"size"`
-	Digest digest.Digest `json:"digest"`
-}
-
-type fsLayersSchema1 struct {
-	BlobSum digest.Digest `json:"blobSum"`
-}
-
-type manifestSchema struct {
-	LayersDescriptors []descriptor      `json:"layers"`
-	FSLayers          []fsLayersSchema1 `json:"fsLayers"`
-}
-
-type ostreeImageDestination struct {
-	ref           ostreeReference
-	manifest      string
-	schema        manifestSchema
-	tmpDirPath    string
-	blobs         map[string]*blobToImport
-	digest        digest.Digest
-	signaturesLen int
-	repo          *C.struct_OstreeRepo
-}
-
-// newImageDestination returns an ImageDestination for writing to an existing ostree.
-func newImageDestination(ref ostreeReference, tmpDirPath string) (types.ImageDestination, error) {
-	tmpDirPath = filepath.Join(tmpDirPath, ref.branchName)
-	if err := ensureDirectoryExists(tmpDirPath); err != nil {
-		return nil, err
-	}
-	return &ostreeImageDestination{ref, "", manifestSchema{}, tmpDirPath, map[string]*blobToImport{}, "", 0, nil}, nil
-}
-
-// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-func (d *ostreeImageDestination) Reference() types.ImageReference {
-	return d.ref
-}
-
-// Close removes resources associated with an initialized ImageDestination, if any.
-func (d *ostreeImageDestination) Close() error {
-	if d.repo != nil {
-		C.g_object_unref(C.gpointer(d.repo))
-	}
-	return os.RemoveAll(d.tmpDirPath)
-}
-
-func (d *ostreeImageDestination) SupportedManifestMIMETypes() []string {
-	return []string{
-		manifest.DockerV2Schema2MediaType,
-	}
-}
-
-// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-func (d *ostreeImageDestination) SupportsSignatures() error {
-	return nil
-}
-
-// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-func (d *ostreeImageDestination) ShouldCompressLayers() bool {
-	return false
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-// uploaded to the image destination, true otherwise.
-func (d *ostreeImageDestination) AcceptsForeignLayerURLs() bool {
-	return false
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (d *ostreeImageDestination) MustMatchRuntimeOS() bool {
-	return true
-}
-
-func (d *ostreeImageDestination) PutBlob(stream io.Reader, inputInfo types.BlobInfo) (types.BlobInfo, error) {
-	tmpDir, err := ioutil.TempDir(d.tmpDirPath, "blob")
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-
-	blobPath := filepath.Join(tmpDir, "content")
-	blobFile, err := os.Create(blobPath)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	defer blobFile.Close()
-
-	digester := digest.Canonical.Digester()
-	tee := io.TeeReader(stream, digester.Hash())
-
-	size, err := io.Copy(blobFile, tee)
-	if err != nil {
-		return types.BlobInfo{}, err
-	}
-	computedDigest := digester.Digest()
-	if inputInfo.Size != -1 && size != inputInfo.Size {
-		return types.BlobInfo{}, errors.Errorf("Size mismatch when copying %s, expected %d, got %d", computedDigest, inputInfo.Size, size)
-	}
-	if err := blobFile.Sync(); err != nil {
-		return types.BlobInfo{}, err
-	}
-
-	hash := computedDigest.Hex()
-	d.blobs[hash] = &blobToImport{Size: size, Digest: computedDigest, BlobPath: blobPath}
-	return types.BlobInfo{Digest: computedDigest, Size: size}, nil
-}
-
-func fixFiles(selinuxHnd *C.struct_selabel_handle, root string, dir string, usermode bool) error {
-	entries, err := ioutil.ReadDir(dir)
-	if err != nil {
-		return err
-	}
-
-	for _, info := range entries {
-		fullpath := filepath.Join(dir, info.Name())
-		if info.Mode()&(os.ModeNamedPipe|os.ModeSocket|os.ModeDevice) != 0 {
-			if err := os.Remove(fullpath); err != nil {
-				return err
-			}
-			continue
-		}
-
-		if selinuxHnd != nil {
-			relPath, err := filepath.Rel(root, fullpath)
-			if err != nil {
-				return err
-			}
-			// Handle /exports/hostfs as a special case.  Files under this directory are copied to the host,
-			// thus we benefit from maintaining the same SELinux label they would have on the host as we could
-			// use hard links instead of copying the files.
-			relPath = fmt.Sprintf("/%s", strings.TrimPrefix(relPath, "exports/hostfs/"))
-
-			relPathC := C.CString(relPath)
-			defer C.free(unsafe.Pointer(relPathC))
-			var context *C.char
-
-			res, err := C.selabel_lookup_raw(selinuxHnd, &context, relPathC, C.int(info.Mode()&os.ModePerm))
-			if int(res) < 0 && err != syscall.ENOENT {
-				return errors.Wrapf(err, "cannot selabel_lookup_raw %s", relPath)
-			}
-			if int(res) == 0 {
-				defer C.freecon(context)
-				fullpathC := C.CString(fullpath)
-				defer C.free(unsafe.Pointer(fullpathC))
-				res, err = C.lsetfilecon_raw(fullpathC, context)
-				if int(res) < 0 {
-					return errors.Wrapf(err, "cannot setfilecon_raw %s", fullpath)
-				}
-			}
-		}
-
-		if info.IsDir() {
-			if usermode {
-				if err := os.Chmod(fullpath, info.Mode()|0700); err != nil {
-					return err
-				}
-			}
-			err = fixFiles(selinuxHnd, root, fullpath, usermode)
-			if err != nil {
-				return err
-			}
-		} else if usermode && (info.Mode().IsRegular()) {
-			if err := os.Chmod(fullpath, info.Mode()|0600); err != nil {
-				return err
-			}
-		}
-	}
-
-	return nil
-}
-
-func (d *ostreeImageDestination) ostreeCommit(repo *otbuiltin.Repo, branch string, root string, metadata []string) error {
-	opts := otbuiltin.NewCommitOptions()
-	opts.AddMetadataString = metadata
-	opts.Timestamp = time.Now()
-	// OCI layers have no parent OSTree commit
-	opts.Parent = "0000000000000000000000000000000000000000000000000000000000000000"
-	_, err := repo.Commit(root, branch, opts)
-	return err
-}
-
-func generateTarSplitMetadata(output *bytes.Buffer, file string) error {
-	mfz := gzip.NewWriter(output)
-	defer mfz.Close()
-	metaPacker := storage.NewJSONPacker(mfz)
-
-	stream, err := os.OpenFile(file, os.O_RDONLY, 0)
-	if err != nil {
-		return err
-	}
-	defer stream.Close()
-
-	gzReader, err := archive.DecompressStream(stream)
-	if err != nil {
-		return err
-	}
-	defer gzReader.Close()
-
-	its, err := asm.NewInputTarStream(gzReader, metaPacker, nil)
-	if err != nil {
-		return err
-	}
-
-	_, err = io.Copy(ioutil.Discard, its)
-	if err != nil {
-		return err
-	}
-	return nil
-}
-
-func (d *ostreeImageDestination) importBlob(selinuxHnd *C.struct_selabel_handle, repo *otbuiltin.Repo, blob *blobToImport) error {
-	ostreeBranch := fmt.Sprintf("ociimage/%s", blob.Digest.Hex())
-	destinationPath := filepath.Join(d.tmpDirPath, blob.Digest.Hex(), "root")
-	if err := ensureDirectoryExists(destinationPath); err != nil {
-		return err
-	}
-	defer func() {
-		os.Remove(blob.BlobPath)
-		os.RemoveAll(destinationPath)
-	}()
-
-	var tarSplitOutput bytes.Buffer
-	if err := generateTarSplitMetadata(&tarSplitOutput, blob.BlobPath); err != nil {
-		return err
-	}
-
-	if os.Getuid() == 0 {
-		if err := archive.UntarPath(blob.BlobPath, destinationPath); err != nil {
-			return err
-		}
-		if err := fixFiles(selinuxHnd, destinationPath, destinationPath, false); err != nil {
-			return err
-		}
-	} else {
-		os.MkdirAll(destinationPath, 0755)
-		if err := exec.Command("tar", "-C", destinationPath, "--no-same-owner", "--no-same-permissions", "--delay-directory-restore", "-xf", blob.BlobPath).Run(); err != nil {
-			return err
-		}
-
-		if err := fixFiles(selinuxHnd, destinationPath, destinationPath, true); err != nil {
-			return err
-		}
-	}
-	return d.ostreeCommit(repo, ostreeBranch, destinationPath, []string{fmt.Sprintf("docker.size=%d", blob.Size),
-		fmt.Sprintf("tarsplit.output=%s", base64.StdEncoding.EncodeToString(tarSplitOutput.Bytes()))})
-
-}
-
-func (d *ostreeImageDestination) importConfig(repo *otbuiltin.Repo, blob *blobToImport) error {
-	ostreeBranch := fmt.Sprintf("ociimage/%s", blob.Digest.Hex())
-	destinationPath := filepath.Dir(blob.BlobPath)
-
-	return d.ostreeCommit(repo, ostreeBranch, destinationPath, []string{fmt.Sprintf("docker.size=%d", blob.Size)})
-}
-
-func (d *ostreeImageDestination) HasBlob(info types.BlobInfo) (bool, int64, error) {
-
-	if d.repo == nil {
-		repo, err := openRepo(d.ref.repo)
-		if err != nil {
-			return false, 0, err
-		}
-		d.repo = repo
-	}
-	branch := fmt.Sprintf("ociimage/%s", info.Digest.Hex())
-
-	found, data, err := readMetadata(d.repo, branch, "docker.size")
-	if err != nil || !found {
-		return found, -1, err
-	}
-
-	size, err := strconv.ParseInt(data, 10, 64)
-	if err != nil {
-		return false, -1, err
-	}
-
-	return true, size, nil
-}
-
-func (d *ostreeImageDestination) ReapplyBlob(info types.BlobInfo) (types.BlobInfo, error) {
-	return info, nil
-}
-
-// PutManifest writes manifest to the destination.
-// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-func (d *ostreeImageDestination) PutManifest(manifestBlob []byte) error {
-	d.manifest = string(manifestBlob)
-
-	if err := json.Unmarshal(manifestBlob, &d.schema); err != nil {
-		return err
-	}
-
-	manifestPath := filepath.Join(d.tmpDirPath, d.ref.manifestPath())
-	if err := ensureParentDirectoryExists(manifestPath); err != nil {
-		return err
-	}
-
-	digest, err := manifest.Digest(manifestBlob)
-	if err != nil {
-		return err
-	}
-	d.digest = digest
-
-	return ioutil.WriteFile(manifestPath, manifestBlob, 0644)
-}
-
-func (d *ostreeImageDestination) PutSignatures(signatures [][]byte) error {
-	path := filepath.Join(d.tmpDirPath, d.ref.signaturePath(0))
-	if err := ensureParentDirectoryExists(path); err != nil {
-		return err
-	}
-
-	for i, sig := range signatures {
-		signaturePath := filepath.Join(d.tmpDirPath, d.ref.signaturePath(i))
-		if err := ioutil.WriteFile(signaturePath, sig, 0644); err != nil {
-			return err
-		}
-	}
-	d.signaturesLen = len(signatures)
-	return nil
-}
-
-func (d *ostreeImageDestination) Commit() error {
-	repo, err := otbuiltin.OpenRepo(d.ref.repo)
-	if err != nil {
-		return err
-	}
-
-	_, err = repo.PrepareTransaction()
-	if err != nil {
-		return err
-	}
-
-	var selinuxHnd *C.struct_selabel_handle
-
-	if os.Getuid() == 0 && selinux.GetEnabled() {
-		selinuxHnd, err = C.selabel_open(C.SELABEL_CTX_FILE, nil, 0)
-		if selinuxHnd == nil {
-			return errors.Wrapf(err, "cannot open the SELinux DB")
-		}
-
-		defer C.selabel_close(selinuxHnd)
-	}
-
-	checkLayer := func(hash string) error {
-		blob := d.blobs[hash]
-		// if the blob is not present in d.blobs then it is already stored in OSTree,
-		// and we don't need to import it.
-		if blob == nil {
-			return nil
-		}
-		err := d.importBlob(selinuxHnd, repo, blob)
-		if err != nil {
-			return err
-		}
-
-		delete(d.blobs, hash)
-		return nil
-	}
-	for _, layer := range d.schema.LayersDescriptors {
-		hash := layer.Digest.Hex()
-		if err = checkLayer(hash); err != nil {
-			return err
-		}
-	}
-	for _, layer := range d.schema.FSLayers {
-		hash := layer.BlobSum.Hex()
-		if err = checkLayer(hash); err != nil {
-			return err
-		}
-	}
-
-	// Import the other blobs that are not layers
-	for _, blob := range d.blobs {
-		err := d.importConfig(repo, blob)
-		if err != nil {
-			return err
-		}
-	}
-
-	manifestPath := filepath.Join(d.tmpDirPath, "manifest")
-
-	metadata := []string{fmt.Sprintf("docker.manifest=%s", string(d.manifest)),
-		fmt.Sprintf("signatures=%d", d.signaturesLen),
-		fmt.Sprintf("docker.digest=%s", string(d.digest))}
-	err = d.ostreeCommit(repo, fmt.Sprintf("ociimage/%s", d.ref.branchName), manifestPath, metadata)
-
-	_, err = repo.CommitTransaction()
-	return err
-}
-
-func ensureDirectoryExists(path string) error {
-	if _, err := os.Stat(path); err != nil && os.IsNotExist(err) {
-		if err := os.MkdirAll(path, 0755); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func ensureParentDirectoryExists(path string) error {
-	return ensureDirectoryExists(filepath.Dir(path))
-}
diff --git a/vendor/github.com/containers/image/ostree/ostree_src.go b/vendor/github.com/containers/image/ostree/ostree_src.go
deleted file mode 100644
index c65a07b751..0000000000
--- a/vendor/github.com/containers/image/ostree/ostree_src.go
+++ /dev/null
@@ -1,354 +0,0 @@
-// +build !containers_image_ostree_stub
-
-package ostree
-
-import (
-	"bytes"
-	"compress/gzip"
-	"context"
-	"encoding/base64"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"strconv"
-	"strings"
-	"unsafe"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/opencontainers/go-digest"
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-	"github.com/pkg/errors"
-	"github.com/vbatts/tar-split/tar/asm"
-	"github.com/vbatts/tar-split/tar/storage"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0 ostree-1
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include <stdlib.h>
-// #include <ostree.h>
-// #include <gio/ginputstream.h>
-import "C"
-
-type ostreeImageSource struct {
-	ref    ostreeReference
-	tmpDir string
-	repo   *C.struct_OstreeRepo
-}
-
-// newImageSource returns an ImageSource for reading from an existing directory.
-func newImageSource(ctx *types.SystemContext, tmpDir string, ref ostreeReference) (types.ImageSource, error) {
-	return &ostreeImageSource{ref: ref, tmpDir: tmpDir}, nil
-}
-
-// Reference returns the reference used to set up this source.
-func (s *ostreeImageSource) Reference() types.ImageReference {
-	return s.ref
-}
-
-// Close removes resources associated with an initialized ImageSource, if any.
-func (s *ostreeImageSource) Close() error {
-	if s.repo != nil {
-		C.g_object_unref(C.gpointer(s.repo))
-	}
-	return nil
-}
-
-func (s *ostreeImageSource) getLayerSize(blob string) (int64, error) {
-	b := fmt.Sprintf("ociimage/%s", blob)
-	found, data, err := readMetadata(s.repo, b, "docker.size")
-	if err != nil || !found {
-		return 0, err
-	}
-	return strconv.ParseInt(data, 10, 64)
-}
-
-func (s *ostreeImageSource) getLenSignatures() (int64, error) {
-	b := fmt.Sprintf("ociimage/%s", s.ref.branchName)
-	found, data, err := readMetadata(s.repo, b, "signatures")
-	if err != nil {
-		return -1, err
-	}
-	if !found {
-		// if 'signatures' is not present, just return 0 signatures.
-		return 0, nil
-	}
-	return strconv.ParseInt(data, 10, 64)
-}
-
-func (s *ostreeImageSource) getTarSplitData(blob string) ([]byte, error) {
-	b := fmt.Sprintf("ociimage/%s", blob)
-	found, out, err := readMetadata(s.repo, b, "tarsplit.output")
-	if err != nil || !found {
-		return nil, err
-	}
-	return base64.StdEncoding.DecodeString(out)
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-func (s *ostreeImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if instanceDigest != nil {
-		return nil, "", errors.Errorf(`Manifest lists are not supported by "ostree:"`)
-	}
-	if s.repo == nil {
-		repo, err := openRepo(s.ref.repo)
-		if err != nil {
-			return nil, "", err
-		}
-		s.repo = repo
-	}
-
-	b := fmt.Sprintf("ociimage/%s", s.ref.branchName)
-	found, out, err := readMetadata(s.repo, b, "docker.manifest")
-	if err != nil {
-		return nil, "", err
-	}
-	if !found {
-		return nil, "", errors.New("manifest not found")
-	}
-	m := []byte(out)
-	return m, manifest.GuessMIMEType(m), nil
-}
-
-func (s *ostreeImageSource) GetTargetManifest(digest digest.Digest) ([]byte, string, error) {
-	return nil, "", errors.New("manifest lists are not supported by this transport")
-}
-
-func openRepo(path string) (*C.struct_OstreeRepo, error) {
-	var cerr *C.GError
-	cpath := C.CString(path)
-	defer C.free(unsafe.Pointer(cpath))
-	pathc := C.g_file_new_for_path(cpath)
-	defer C.g_object_unref(C.gpointer(pathc))
-	repo := C.ostree_repo_new(pathc)
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_open(repo, nil, &cerr)))
-	if !r {
-		C.g_object_unref(C.gpointer(repo))
-		return nil, glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-	return repo, nil
-}
-
-type ostreePathFileGetter struct {
-	repo       *C.struct_OstreeRepo
-	parentRoot *C.GFile
-}
-
-type ostreeReader struct {
-	stream *C.GFileInputStream
-}
-
-func (o ostreeReader) Close() error {
-	C.g_object_unref(C.gpointer(o.stream))
-	return nil
-}
-func (o ostreeReader) Read(p []byte) (int, error) {
-	var cerr *C.GError
-	instanceCast := C.g_type_check_instance_cast((*C.GTypeInstance)(unsafe.Pointer(o.stream)), C.g_input_stream_get_type())
-	stream := (*C.GInputStream)(unsafe.Pointer(instanceCast))
-
-	b := C.g_input_stream_read_bytes(stream, (C.gsize)(cap(p)), nil, &cerr)
-	if b == nil {
-		return 0, glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-	defer C.g_bytes_unref(b)
-
-	count := int(C.g_bytes_get_size(b))
-	if count == 0 {
-		return 0, io.EOF
-	}
-	data := (*[1 << 30]byte)(unsafe.Pointer(C.g_bytes_get_data(b, nil)))[:count:count]
-	copy(p, data)
-	return count, nil
-}
-
-func readMetadata(repo *C.struct_OstreeRepo, commit, key string) (bool, string, error) {
-	var cerr *C.GError
-	var ref *C.char
-	defer C.free(unsafe.Pointer(ref))
-
-	cCommit := C.CString(commit)
-	defer C.free(unsafe.Pointer(cCommit))
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_resolve_rev(repo, cCommit, C.gboolean(1), &ref, &cerr))) {
-		return false, "", glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-
-	if ref == nil {
-		return false, "", nil
-	}
-
-	var variant *C.GVariant
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_load_variant(repo, C.OSTREE_OBJECT_TYPE_COMMIT, ref, &variant, &cerr))) {
-		return false, "", glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-	defer C.g_variant_unref(variant)
-	if variant != nil {
-		cKey := C.CString(key)
-		defer C.free(unsafe.Pointer(cKey))
-
-		metadata := C.g_variant_get_child_value(variant, 0)
-		defer C.g_variant_unref(metadata)
-
-		data := C.g_variant_lookup_value(metadata, (*C.gchar)(cKey), nil)
-		if data != nil {
-			defer C.g_variant_unref(data)
-			ptr := (*C.char)(C.g_variant_get_string(data, nil))
-			val := C.GoString(ptr)
-			return true, val, nil
-		}
-	}
-	return false, "", nil
-}
-
-func newOSTreePathFileGetter(repo *C.struct_OstreeRepo, commit string) (*ostreePathFileGetter, error) {
-	var cerr *C.GError
-	var parentRoot *C.GFile
-	cCommit := C.CString(commit)
-	defer C.free(unsafe.Pointer(cCommit))
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_read_commit(repo, cCommit, &parentRoot, nil, nil, &cerr))) {
-		return &ostreePathFileGetter{}, glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-
-	C.g_object_ref(C.gpointer(repo))
-
-	return &ostreePathFileGetter{repo: repo, parentRoot: parentRoot}, nil
-}
-
-func (o ostreePathFileGetter) Get(filename string) (io.ReadCloser, error) {
-	var file *C.GFile
-	if strings.HasPrefix(filename, "./") {
-		filename = filename[2:]
-	}
-	cfilename := C.CString(filename)
-	defer C.free(unsafe.Pointer(cfilename))
-
-	file = (*C.GFile)(C.g_file_resolve_relative_path(o.parentRoot, cfilename))
-
-	var cerr *C.GError
-	stream := C.g_file_read(file, nil, &cerr)
-	if stream == nil {
-		return nil, glib.ConvertGError(glib.ToGError(unsafe.Pointer(cerr)))
-	}
-
-	return &ostreeReader{stream: stream}, nil
-}
-
-func (o ostreePathFileGetter) Close() {
-	C.g_object_unref(C.gpointer(o.repo))
-	C.g_object_unref(C.gpointer(o.parentRoot))
-}
-
-func (s *ostreeImageSource) readSingleFile(commit, path string) (io.ReadCloser, error) {
-	getter, err := newOSTreePathFileGetter(s.repo, commit)
-	if err != nil {
-		return nil, err
-	}
-	defer getter.Close()
-
-	return getter.Get(path)
-}
-
-// GetBlob returns a stream for the specified blob, and the blob's size.
-func (s *ostreeImageSource) GetBlob(info types.BlobInfo) (io.ReadCloser, int64, error) {
-	blob := info.Digest.Hex()
-	branch := fmt.Sprintf("ociimage/%s", blob)
-
-	if s.repo == nil {
-		repo, err := openRepo(s.ref.repo)
-		if err != nil {
-			return nil, 0, err
-		}
-		s.repo = repo
-	}
-
-	layerSize, err := s.getLayerSize(blob)
-	if err != nil {
-		return nil, 0, err
-	}
-
-	tarsplit, err := s.getTarSplitData(blob)
-	if err != nil {
-		return nil, 0, err
-	}
-
-	// if tarsplit is nil we are looking at the manifest.  Return directly the file in /content
-	if tarsplit == nil {
-		file, err := s.readSingleFile(branch, "/content")
-		if err != nil {
-			return nil, 0, err
-		}
-		return file, layerSize, nil
-	}
-
-	mf := bytes.NewReader(tarsplit)
-	mfz, err := gzip.NewReader(mf)
-	if err != nil {
-		return nil, 0, err
-	}
-	defer mfz.Close()
-	metaUnpacker := storage.NewJSONUnpacker(mfz)
-
-	getter, err := newOSTreePathFileGetter(s.repo, branch)
-	if err != nil {
-		return nil, 0, err
-	}
-
-	ots := asm.NewOutputTarStream(getter, metaUnpacker)
-
-	pipeReader, pipeWriter := io.Pipe()
-	go func() {
-		io.Copy(pipeWriter, ots)
-		pipeWriter.Close()
-	}()
-
-	rc := ioutils.NewReadCloserWrapper(pipeReader, func() error {
-		getter.Close()
-		return ots.Close()
-	})
-	return rc, layerSize, nil
-}
-
-func (s *ostreeImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	if instanceDigest != nil {
-		return nil, errors.New("manifest lists are not supported by this transport")
-	}
-	lenSignatures, err := s.getLenSignatures()
-	if err != nil {
-		return nil, err
-	}
-	branch := fmt.Sprintf("ociimage/%s", s.ref.branchName)
-
-	if s.repo == nil {
-		repo, err := openRepo(s.ref.repo)
-		if err != nil {
-			return nil, err
-		}
-		s.repo = repo
-	}
-
-	signatures := [][]byte{}
-	for i := int64(1); i <= lenSignatures; i++ {
-		sigReader, err := s.readSingleFile(branch, fmt.Sprintf("/signature-%d", i))
-		if err != nil {
-			return nil, err
-		}
-		defer sigReader.Close()
-
-		sig, err := ioutil.ReadAll(sigReader)
-		if err != nil {
-			return nil, err
-		}
-		signatures = append(signatures, sig)
-	}
-	return signatures, nil
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (s *ostreeImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/ostree/ostree_transport.go b/vendor/github.com/containers/image/ostree/ostree_transport.go
deleted file mode 100644
index cc85a43ff1..0000000000
--- a/vendor/github.com/containers/image/ostree/ostree_transport.go
+++ /dev/null
@@ -1,251 +0,0 @@
-// +build !containers_image_ostree_stub
-
-package ostree
-
-import (
-	"bytes"
-	"fmt"
-	"os"
-	"path/filepath"
-	"regexp"
-	"strings"
-
-	"github.com/containers/image/directory/explicitfilepath"
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-const defaultOSTreeRepo = "/ostree/repo"
-
-// Transport is an ImageTransport for ostree paths.
-var Transport = ostreeTransport{}
-
-type ostreeTransport struct{}
-
-func (t ostreeTransport) Name() string {
-	return "ostree"
-}
-
-func init() {
-	transports.Register(Transport)
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (t ostreeTransport) ValidatePolicyConfigurationScope(scope string) error {
-	sep := strings.Index(scope, ":")
-	if sep < 0 {
-		return errors.Errorf("Invalid ostree: scope %s: Must include a repo", scope)
-	}
-	repo := scope[:sep]
-
-	if !strings.HasPrefix(repo, "/") {
-		return errors.Errorf("Invalid ostree: scope %s: repository must be an absolute path", scope)
-	}
-	cleaned := filepath.Clean(repo)
-	if cleaned != repo {
-		return errors.Errorf(`Invalid ostree: scope %s: Uses non-canonical path format, perhaps try with path %s`, scope, cleaned)
-	}
-
-	// FIXME? In the namespaces within a repo,
-	// we could be verifying the various character set and length restrictions
-	// from docker/distribution/reference.regexp.go, but other than that there
-	// are few semantically invalid strings.
-	return nil
-}
-
-// ostreeReference is an ImageReference for ostree paths.
-type ostreeReference struct {
-	image      string
-	branchName string
-	repo       string
-}
-
-type ostreeImageCloser struct {
-	types.ImageCloser
-	size int64
-}
-
-func (t ostreeTransport) ParseReference(ref string) (types.ImageReference, error) {
-	var repo = ""
-	var image = ""
-	s := strings.SplitN(ref, "@/", 2)
-	if len(s) == 1 {
-		image, repo = s[0], defaultOSTreeRepo
-	} else {
-		image, repo = s[0], "/"+s[1]
-	}
-
-	return NewReference(image, repo)
-}
-
-// NewReference returns an OSTree reference for a specified repo and image.
-func NewReference(image string, repo string) (types.ImageReference, error) {
-	// image is not _really_ in a containers/image/docker/reference format;
-	// as far as the libOSTree ociimage/* namespace is concerned, it is more or
-	// less an arbitrary string with an implied tag.
-	// Parse the image using reference.ParseNormalizedNamed so that we can
-	// check whether the images has a tag specified and we can add ":latest" if needed
-	ostreeImage, err := reference.ParseNormalizedNamed(image)
-	if err != nil {
-		return nil, err
-	}
-
-	if reference.IsNameOnly(ostreeImage) {
-		image = image + ":latest"
-	}
-
-	resolved, err := explicitfilepath.ResolvePathToFullyExplicit(repo)
-	if err != nil {
-		// With os.IsNotExist(err), the parent directory of repo is also not existent;
-		// that should ordinarily not happen, but it would be a bit weird to reject
-		// references which do not specify a repo just because the implicit defaultOSTreeRepo
-		// does not exist.
-		if os.IsNotExist(err) && repo == defaultOSTreeRepo {
-			resolved = repo
-		} else {
-			return nil, err
-		}
-	}
-	// This is necessary to prevent directory paths returned by PolicyConfigurationNamespaces
-	// from being ambiguous with values of PolicyConfigurationIdentity.
-	if strings.Contains(resolved, ":") {
-		return nil, errors.Errorf("Invalid OSTree reference %s@%s: path %s contains a colon", image, repo, resolved)
-	}
-
-	return ostreeReference{
-		image:      image,
-		branchName: encodeOStreeRef(image),
-		repo:       resolved,
-	}, nil
-}
-
-func (ref ostreeReference) Transport() types.ImageTransport {
-	return Transport
-}
-
-// StringWithinTransport returns a string representation of the reference, which MUST be such that
-// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix.
-func (ref ostreeReference) StringWithinTransport() string {
-	return fmt.Sprintf("%s@%s", ref.image, ref.repo)
-}
-
-// DockerReference returns a Docker reference associated with this reference
-// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-func (ref ostreeReference) DockerReference() reference.Named {
-	return nil
-}
-
-func (ref ostreeReference) PolicyConfigurationIdentity() string {
-	return fmt.Sprintf("%s:%s", ref.repo, ref.image)
-}
-
-// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-// in order, terminating on first match, and an implicit "" is always checked at the end.
-// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-// and each following element to be a prefix of the element preceding it.
-func (ref ostreeReference) PolicyConfigurationNamespaces() []string {
-	s := strings.SplitN(ref.image, ":", 2)
-	if len(s) != 2 { // Coverage: Should never happen, NewReference above ensures ref.image has a :tag.
-		panic(fmt.Sprintf("Internal inconsistency: ref.image value %q does not have a :tag", ref.image))
-	}
-	name := s[0]
-	res := []string{}
-	for {
-		res = append(res, fmt.Sprintf("%s:%s", ref.repo, name))
-
-		lastSlash := strings.LastIndex(name, "/")
-		if lastSlash == -1 {
-			break
-		}
-		name = name[:lastSlash]
-	}
-	return res
-}
-
-func (s *ostreeImageCloser) Size() (int64, error) {
-	return s.size, nil
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-func (ref ostreeReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	var tmpDir string
-	if ctx == nil || ctx.OSTreeTmpDirPath == "" {
-		tmpDir = os.TempDir()
-	} else {
-		tmpDir = ctx.OSTreeTmpDirPath
-	}
-	src, err := newImageSource(ctx, tmpDir, ref)
-	if err != nil {
-		return nil, err
-	}
-	return image.FromSource(ctx, src)
-}
-
-// NewImageSource returns a types.ImageSource for this reference.
-// The caller must call .Close() on the returned ImageSource.
-func (ref ostreeReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	var tmpDir string
-	if ctx == nil || ctx.OSTreeTmpDirPath == "" {
-		tmpDir = os.TempDir()
-	} else {
-		tmpDir = ctx.OSTreeTmpDirPath
-	}
-	return newImageSource(ctx, tmpDir, ref)
-}
-
-// NewImageDestination returns a types.ImageDestination for this reference.
-// The caller must call .Close() on the returned ImageDestination.
-func (ref ostreeReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	var tmpDir string
-	if ctx == nil || ctx.OSTreeTmpDirPath == "" {
-		tmpDir = os.TempDir()
-	} else {
-		tmpDir = ctx.OSTreeTmpDirPath
-	}
-	return newImageDestination(ref, tmpDir)
-}
-
-// DeleteImage deletes the named image from the registry, if supported.
-func (ref ostreeReference) DeleteImage(ctx *types.SystemContext) error {
-	return errors.Errorf("Deleting images not implemented for ostree: images")
-}
-
-var ostreeRefRegexp = regexp.MustCompile(`^[A-Za-z0-9.-]$`)
-
-func encodeOStreeRef(in string) string {
-	var buffer bytes.Buffer
-	for i := range in {
-		sub := in[i : i+1]
-		if ostreeRefRegexp.MatchString(sub) {
-			buffer.WriteString(sub)
-		} else {
-			buffer.WriteString(fmt.Sprintf("_%02X", sub[0]))
-		}
-
-	}
-	return buffer.String()
-}
-
-// manifestPath returns a path for the manifest within a ostree using our conventions.
-func (ref ostreeReference) manifestPath() string {
-	return filepath.Join("manifest", "manifest.json")
-}
-
-// signaturePath returns a path for a signature within a ostree using our conventions.
-func (ref ostreeReference) signaturePath(index int) string {
-	return filepath.Join("manifest", fmt.Sprintf("signature-%d", index+1))
-}
diff --git a/vendor/github.com/containers/image/pkg/compression/compression.go b/vendor/github.com/containers/image/pkg/compression/compression.go
deleted file mode 100644
index c19d962ee5..0000000000
--- a/vendor/github.com/containers/image/pkg/compression/compression.go
+++ /dev/null
@@ -1,67 +0,0 @@
-package compression
-
-import (
-	"bytes"
-	"compress/bzip2"
-	"compress/gzip"
-	"io"
-
-	"github.com/pkg/errors"
-
-	"github.com/sirupsen/logrus"
-)
-
-// DecompressorFunc returns the decompressed stream, given a compressed stream.
-type DecompressorFunc func(io.Reader) (io.Reader, error)
-
-// GzipDecompressor is a DecompressorFunc for the gzip compression algorithm.
-func GzipDecompressor(r io.Reader) (io.Reader, error) {
-	return gzip.NewReader(r)
-}
-
-// Bzip2Decompressor is a DecompressorFunc for the bzip2 compression algorithm.
-func Bzip2Decompressor(r io.Reader) (io.Reader, error) {
-	return bzip2.NewReader(r), nil
-}
-
-// XzDecompressor is a DecompressorFunc for the xz compression algorithm.
-func XzDecompressor(r io.Reader) (io.Reader, error) {
-	return nil, errors.New("Decompressing xz streams is not supported")
-}
-
-// compressionAlgos is an internal implementation detail of DetectCompression
-var compressionAlgos = map[string]struct {
-	prefix       []byte
-	decompressor DecompressorFunc
-}{
-	"gzip":  {[]byte{0x1F, 0x8B, 0x08}, GzipDecompressor},                 // gzip (RFC 1952)
-	"bzip2": {[]byte{0x42, 0x5A, 0x68}, Bzip2Decompressor},                // bzip2 (decompress.c:BZ2_decompress)
-	"xz":    {[]byte{0xFD, 0x37, 0x7A, 0x58, 0x5A, 0x00}, XzDecompressor}, // xz (/usr/share/doc/xz/xz-file-format.txt)
-}
-
-// DetectCompression returns a DecompressorFunc if the input is recognized as a compressed format, nil otherwise.
-// Because it consumes the start of input, other consumers must use the returned io.Reader instead to also read from the beginning.
-func DetectCompression(input io.Reader) (DecompressorFunc, io.Reader, error) {
-	buffer := [8]byte{}
-
-	n, err := io.ReadAtLeast(input, buffer[:], len(buffer))
-	if err != nil && err != io.EOF && err != io.ErrUnexpectedEOF {
-		// This is a “real” error. We could just ignore it this time, process the data we have, and hope that the source will report the same error again.
-		// Instead, fail immediately with the original error cause instead of a possibly secondary/misleading error returned later.
-		return nil, nil, err
-	}
-
-	var decompressor DecompressorFunc
-	for name, algo := range compressionAlgos {
-		if bytes.HasPrefix(buffer[:n], algo.prefix) {
-			logrus.Debugf("Detected compression format %s", name)
-			decompressor = algo.decompressor
-			break
-		}
-	}
-	if decompressor == nil {
-		logrus.Debugf("No compression detected")
-	}
-
-	return decompressor, io.MultiReader(bytes.NewReader(buffer[:n]), input), nil
-}
diff --git a/vendor/github.com/containers/image/pkg/docker/config/config.go b/vendor/github.com/containers/image/pkg/docker/config/config.go
deleted file mode 100644
index fd0ae7d84d..0000000000
--- a/vendor/github.com/containers/image/pkg/docker/config/config.go
+++ /dev/null
@@ -1,295 +0,0 @@
-package config
-
-import (
-	"encoding/base64"
-	"encoding/json"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"strconv"
-	"strings"
-
-	"github.com/containers/image/types"
-	helperclient "github.com/docker/docker-credential-helpers/client"
-	"github.com/docker/docker-credential-helpers/credentials"
-	"github.com/docker/docker/pkg/homedir"
-	"github.com/pkg/errors"
-)
-
-type dockerAuthConfig struct {
-	Auth string `json:"auth,omitempty"`
-}
-
-type dockerConfigFile struct {
-	AuthConfigs map[string]dockerAuthConfig `json:"auths"`
-	CredHelpers map[string]string           `json:"credHelpers,omitempty"`
-}
-
-const (
-	defaultPath       = "/run/user"
-	authCfg           = "containers"
-	authCfgFileName   = "auth.json"
-	dockerCfg         = ".docker"
-	dockerCfgFileName = "config.json"
-	dockerLegacyCfg   = ".dockercfg"
-)
-
-var (
-	// ErrNotLoggedIn is returned for users not logged into a registry
-	// that they are trying to logout of
-	ErrNotLoggedIn = errors.New("not logged in")
-)
-
-// SetAuthentication stores the username and password in the auth.json file
-func SetAuthentication(ctx *types.SystemContext, registry, username, password string) error {
-	return modifyJSON(ctx, func(auths *dockerConfigFile) (bool, error) {
-		if ch, exists := auths.CredHelpers[registry]; exists {
-			return false, setAuthToCredHelper(ch, registry, username, password)
-		}
-
-		creds := base64.StdEncoding.EncodeToString([]byte(username + ":" + password))
-		newCreds := dockerAuthConfig{Auth: creds}
-		auths.AuthConfigs[registry] = newCreds
-		return true, nil
-	})
-}
-
-// GetAuthentication returns the registry credentials stored in
-// either auth.json file or .docker/config.json
-// If an entry is not found empty strings are returned for the username and password
-func GetAuthentication(ctx *types.SystemContext, registry string) (string, string, error) {
-	if ctx != nil && ctx.DockerAuthConfig != nil {
-		return ctx.DockerAuthConfig.Username, ctx.DockerAuthConfig.Password, nil
-	}
-
-	dockerLegacyPath := filepath.Join(homedir.Get(), dockerLegacyCfg)
-	paths := [3]string{getPathToAuth(ctx), filepath.Join(homedir.Get(), dockerCfg, dockerCfgFileName), dockerLegacyPath}
-
-	for _, path := range paths {
-		legacyFormat := path == dockerLegacyPath
-		username, password, err := findAuthentication(registry, path, legacyFormat)
-		if err != nil {
-			return "", "", err
-		}
-		if username != "" && password != "" {
-			return username, password, nil
-		}
-	}
-	return "", "", nil
-}
-
-// GetUserLoggedIn returns the username logged in to registry from either
-// auth.json or XDG_RUNTIME_DIR
-// Used to tell the user if someone is logged in to the registry when logging in
-func GetUserLoggedIn(ctx *types.SystemContext, registry string) string {
-	path := getPathToAuth(ctx)
-	username, _, _ := findAuthentication(registry, path, false)
-	if username != "" {
-		return username
-	}
-	return ""
-}
-
-// RemoveAuthentication deletes the credentials stored in auth.json
-func RemoveAuthentication(ctx *types.SystemContext, registry string) error {
-	return modifyJSON(ctx, func(auths *dockerConfigFile) (bool, error) {
-		// First try cred helpers.
-		if ch, exists := auths.CredHelpers[registry]; exists {
-			return false, deleteAuthFromCredHelper(ch, registry)
-		}
-
-		if _, ok := auths.AuthConfigs[registry]; ok {
-			delete(auths.AuthConfigs, registry)
-		} else if _, ok := auths.AuthConfigs[normalizeRegistry(registry)]; ok {
-			delete(auths.AuthConfigs, normalizeRegistry(registry))
-		} else {
-			return false, ErrNotLoggedIn
-		}
-		return true, nil
-	})
-}
-
-// RemoveAllAuthentication deletes all the credentials stored in auth.json
-func RemoveAllAuthentication(ctx *types.SystemContext) error {
-	return modifyJSON(ctx, func(auths *dockerConfigFile) (bool, error) {
-		auths.CredHelpers = make(map[string]string)
-		auths.AuthConfigs = make(map[string]dockerAuthConfig)
-		return true, nil
-	})
-}
-
-// getPath gets the path of the auth.json file
-// The path can be overriden by the user if the overwrite-path flag is set
-// If the flag is not set and XDG_RUNTIME_DIR is ser, the auth.json file is saved in XDG_RUNTIME_DIR/containers
-// Otherwise, the auth.json file is stored in /run/user/UID/containers
-func getPathToAuth(ctx *types.SystemContext) string {
-	if ctx != nil {
-		if ctx.AuthFilePath != "" {
-			return ctx.AuthFilePath
-		}
-		if ctx.RootForImplicitAbsolutePaths != "" {
-			return filepath.Join(ctx.RootForImplicitAbsolutePaths, defaultPath, strconv.Itoa(os.Getuid()), authCfg, authCfgFileName)
-		}
-	}
-	runtimeDir := os.Getenv("XDG_RUNTIME_DIR")
-	if runtimeDir == "" {
-		runtimeDir = filepath.Join(defaultPath, strconv.Itoa(os.Getuid()))
-	}
-	return filepath.Join(runtimeDir, authCfg, authCfgFileName)
-}
-
-// readJSONFile unmarshals the authentications stored in the auth.json file and returns it
-// or returns an empty dockerConfigFile data structure if auth.json does not exist
-// if the file exists and is empty, readJSONFile returns an error
-func readJSONFile(path string, legacyFormat bool) (dockerConfigFile, error) {
-	var auths dockerConfigFile
-
-	raw, err := ioutil.ReadFile(path)
-	if os.IsNotExist(err) {
-		auths.AuthConfigs = map[string]dockerAuthConfig{}
-		return auths, nil
-	}
-
-	if legacyFormat {
-		if err = json.Unmarshal(raw, &auths.AuthConfigs); err != nil {
-			return dockerConfigFile{}, errors.Wrapf(err, "error unmarshaling JSON at %q", path)
-		}
-		return auths, nil
-	}
-
-	if err = json.Unmarshal(raw, &auths); err != nil {
-		return dockerConfigFile{}, errors.Wrapf(err, "error unmarshaling JSON at %q", path)
-	}
-
-	return auths, nil
-}
-
-// modifyJSON writes to auth.json if the dockerConfigFile has been updated
-func modifyJSON(ctx *types.SystemContext, editor func(auths *dockerConfigFile) (bool, error)) error {
-	path := getPathToAuth(ctx)
-	dir := filepath.Dir(path)
-	if _, err := os.Stat(dir); os.IsNotExist(err) {
-		if err = os.Mkdir(dir, 0700); err != nil {
-			return errors.Wrapf(err, "error creating directory %q", dir)
-		}
-	}
-
-	auths, err := readJSONFile(path, false)
-	if err != nil {
-		return errors.Wrapf(err, "error reading JSON file %q", path)
-	}
-
-	updated, err := editor(&auths)
-	if err != nil {
-		return errors.Wrapf(err, "error updating %q", path)
-	}
-	if updated {
-		newData, err := json.MarshalIndent(auths, "", "\t")
-		if err != nil {
-			return errors.Wrapf(err, "error marshaling JSON %q", path)
-		}
-
-		if err = ioutil.WriteFile(path, newData, 0755); err != nil {
-			return errors.Wrapf(err, "error writing to file %q", path)
-		}
-	}
-
-	return nil
-}
-
-func getAuthFromCredHelper(credHelper, registry string) (string, string, error) {
-	helperName := fmt.Sprintf("docker-credential-%s", credHelper)
-	p := helperclient.NewShellProgramFunc(helperName)
-	creds, err := helperclient.Get(p, registry)
-	if err != nil {
-		return "", "", err
-	}
-	return creds.Username, creds.Secret, nil
-}
-
-func setAuthToCredHelper(credHelper, registry, username, password string) error {
-	helperName := fmt.Sprintf("docker-credential-%s", credHelper)
-	p := helperclient.NewShellProgramFunc(helperName)
-	creds := &credentials.Credentials{
-		ServerURL: registry,
-		Username:  username,
-		Secret:    password,
-	}
-	return helperclient.Store(p, creds)
-}
-
-func deleteAuthFromCredHelper(credHelper, registry string) error {
-	helperName := fmt.Sprintf("docker-credential-%s", credHelper)
-	p := helperclient.NewShellProgramFunc(helperName)
-	return helperclient.Erase(p, registry)
-}
-
-// findAuthentication looks for auth of registry in path
-func findAuthentication(registry, path string, legacyFormat bool) (string, string, error) {
-	auths, err := readJSONFile(path, legacyFormat)
-	if err != nil {
-		return "", "", errors.Wrapf(err, "error reading JSON file %q", path)
-	}
-
-	// First try cred helpers. They should always be normalized.
-	if ch, exists := auths.CredHelpers[registry]; exists {
-		return getAuthFromCredHelper(ch, registry)
-	}
-
-	// I'm feeling lucky
-	if val, exists := auths.AuthConfigs[registry]; exists {
-		return decodeDockerAuth(val.Auth)
-	}
-
-	// bad luck; let's normalize the entries first
-	registry = normalizeRegistry(registry)
-	normalizedAuths := map[string]dockerAuthConfig{}
-	for k, v := range auths.AuthConfigs {
-		normalizedAuths[normalizeRegistry(k)] = v
-	}
-	if val, exists := normalizedAuths[registry]; exists {
-		return decodeDockerAuth(val.Auth)
-	}
-	return "", "", nil
-}
-
-func decodeDockerAuth(s string) (string, string, error) {
-	decoded, err := base64.StdEncoding.DecodeString(s)
-	if err != nil {
-		return "", "", err
-	}
-	parts := strings.SplitN(string(decoded), ":", 2)
-	if len(parts) != 2 {
-		// if it's invalid just skip, as docker does
-		return "", "", nil
-	}
-	user := parts[0]
-	password := strings.Trim(parts[1], "\x00")
-	return user, password, nil
-}
-
-// convertToHostname converts a registry url which has http|https prepended
-// to just an hostname.
-// Copied from github.com/docker/docker/registry/auth.go
-func convertToHostname(url string) string {
-	stripped := url
-	if strings.HasPrefix(url, "http://") {
-		stripped = strings.TrimPrefix(url, "http://")
-	} else if strings.HasPrefix(url, "https://") {
-		stripped = strings.TrimPrefix(url, "https://")
-	}
-
-	nameParts := strings.SplitN(stripped, "/", 2)
-
-	return nameParts[0]
-}
-
-func normalizeRegistry(registry string) string {
-	normalized := convertToHostname(registry)
-	switch normalized {
-	case "registry-1.docker.io", "docker.io":
-		return "index.docker.io"
-	}
-	return normalized
-}
diff --git a/vendor/github.com/containers/image/pkg/strslice/strslice.go b/vendor/github.com/containers/image/pkg/strslice/strslice.go
deleted file mode 100644
index bad493fb89..0000000000
--- a/vendor/github.com/containers/image/pkg/strslice/strslice.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package strslice
-
-import "encoding/json"
-
-// StrSlice represents a string or an array of strings.
-// We need to override the json decoder to accept both options.
-type StrSlice []string
-
-// UnmarshalJSON decodes the byte slice whether it's a string or an array of
-// strings. This method is needed to implement json.Unmarshaler.
-func (e *StrSlice) UnmarshalJSON(b []byte) error {
-	if len(b) == 0 {
-		// With no input, we preserve the existing value by returning nil and
-		// leaving the target alone. This allows defining default values for
-		// the type.
-		return nil
-	}
-
-	p := make([]string, 0, 1)
-	if err := json.Unmarshal(b, &p); err != nil {
-		var s string
-		if err := json.Unmarshal(b, &s); err != nil {
-			return err
-		}
-		p = append(p, s)
-	}
-
-	*e = p
-	return nil
-}
diff --git a/vendor/github.com/containers/image/pkg/tlsclientconfig/tlsclientconfig.go b/vendor/github.com/containers/image/pkg/tlsclientconfig/tlsclientconfig.go
deleted file mode 100644
index 0a32861ced..0000000000
--- a/vendor/github.com/containers/image/pkg/tlsclientconfig/tlsclientconfig.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package tlsclientconfig
-
-import (
-	"crypto/tls"
-	"io/ioutil"
-	"net"
-	"net/http"
-	"os"
-	"path/filepath"
-	"strings"
-	"time"
-
-	"github.com/docker/go-connections/sockets"
-	"github.com/docker/go-connections/tlsconfig"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// SetupCertificates opens all .crt, .cert, and .key files in dir and appends / loads certs and key pairs as appropriate to tlsc
-func SetupCertificates(dir string, tlsc *tls.Config) error {
-	logrus.Debugf("Looking for TLS certificates and private keys in %s", dir)
-	fs, err := ioutil.ReadDir(dir)
-	if err != nil {
-		if os.IsNotExist(err) {
-			return nil
-		}
-		if os.IsPermission(err) {
-			logrus.Debugf("Skipping scan of %s due to permission error: %v", dir, err)
-			return nil
-		}
-		return err
-	}
-
-	for _, f := range fs {
-		fullPath := filepath.Join(dir, f.Name())
-		if strings.HasSuffix(f.Name(), ".crt") {
-			systemPool, err := tlsconfig.SystemCertPool()
-			if err != nil {
-				return errors.Wrap(err, "unable to get system cert pool")
-			}
-			tlsc.RootCAs = systemPool
-			logrus.Debugf(" crt: %s", fullPath)
-			data, err := ioutil.ReadFile(fullPath)
-			if err != nil {
-				return err
-			}
-			tlsc.RootCAs.AppendCertsFromPEM(data)
-		}
-		if strings.HasSuffix(f.Name(), ".cert") {
-			certName := f.Name()
-			keyName := certName[:len(certName)-5] + ".key"
-			logrus.Debugf(" cert: %s", fullPath)
-			if !hasFile(fs, keyName) {
-				return errors.Errorf("missing key %s for client certificate %s. Note that CA certificates should use the extension .crt", keyName, certName)
-			}
-			cert, err := tls.LoadX509KeyPair(filepath.Join(dir, certName), filepath.Join(dir, keyName))
-			if err != nil {
-				return err
-			}
-			tlsc.Certificates = append(tlsc.Certificates, cert)
-		}
-		if strings.HasSuffix(f.Name(), ".key") {
-			keyName := f.Name()
-			certName := keyName[:len(keyName)-4] + ".cert"
-			logrus.Debugf(" key: %s", fullPath)
-			if !hasFile(fs, certName) {
-				return errors.Errorf("missing client certificate %s for key %s", certName, keyName)
-			}
-		}
-	}
-	return nil
-}
-
-func hasFile(files []os.FileInfo, name string) bool {
-	for _, f := range files {
-		if f.Name() == name {
-			return true
-		}
-	}
-	return false
-}
-
-// NewTransport Creates a default transport
-func NewTransport() *http.Transport {
-	direct := &net.Dialer{
-		Timeout:   30 * time.Second,
-		KeepAlive: 30 * time.Second,
-		DualStack: true,
-	}
-	tr := &http.Transport{
-		Proxy:               http.ProxyFromEnvironment,
-		Dial:                direct.Dial,
-		TLSHandshakeTimeout: 10 * time.Second,
-		// TODO(dmcgowan): Call close idle connections when complete and use keep alive
-		DisableKeepAlives: true,
-	}
-	proxyDialer, err := sockets.DialerFromEnvironment(direct)
-	if err == nil {
-		tr.Dial = proxyDialer.Dial
-	}
-	return tr
-}
diff --git a/vendor/github.com/containers/image/signature/docker.go b/vendor/github.com/containers/image/signature/docker.go
deleted file mode 100644
index 16eb3f7993..0000000000
--- a/vendor/github.com/containers/image/signature/docker.go
+++ /dev/null
@@ -1,65 +0,0 @@
-// Note: Consider the API unstable until the code supports at least three different image formats or transports.
-
-package signature
-
-import (
-	"fmt"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/manifest"
-	"github.com/opencontainers/go-digest"
-)
-
-// SignDockerManifest returns a signature for manifest as the specified dockerReference,
-// using mech and keyIdentity.
-func SignDockerManifest(m []byte, dockerReference string, mech SigningMechanism, keyIdentity string) ([]byte, error) {
-	manifestDigest, err := manifest.Digest(m)
-	if err != nil {
-		return nil, err
-	}
-	sig := newUntrustedSignature(manifestDigest, dockerReference)
-	return sig.sign(mech, keyIdentity)
-}
-
-// VerifyDockerManifestSignature checks that unverifiedSignature uses expectedKeyIdentity to sign unverifiedManifest as expectedDockerReference,
-// using mech.
-func VerifyDockerManifestSignature(unverifiedSignature, unverifiedManifest []byte,
-	expectedDockerReference string, mech SigningMechanism, expectedKeyIdentity string) (*Signature, error) {
-	expectedRef, err := reference.ParseNormalizedNamed(expectedDockerReference)
-	if err != nil {
-		return nil, err
-	}
-	sig, err := verifyAndExtractSignature(mech, unverifiedSignature, signatureAcceptanceRules{
-		validateKeyIdentity: func(keyIdentity string) error {
-			if keyIdentity != expectedKeyIdentity {
-				return InvalidSignatureError{msg: fmt.Sprintf("Signature by %s does not match expected fingerprint %s", keyIdentity, expectedKeyIdentity)}
-			}
-			return nil
-		},
-		validateSignedDockerReference: func(signedDockerReference string) error {
-			signedRef, err := reference.ParseNormalizedNamed(signedDockerReference)
-			if err != nil {
-				return InvalidSignatureError{msg: fmt.Sprintf("Invalid docker reference %s in signature", signedDockerReference)}
-			}
-			if signedRef.String() != expectedRef.String() {
-				return InvalidSignatureError{msg: fmt.Sprintf("Docker reference %s does not match %s",
-					signedDockerReference, expectedDockerReference)}
-			}
-			return nil
-		},
-		validateSignedDockerManifestDigest: func(signedDockerManifestDigest digest.Digest) error {
-			matches, err := manifest.MatchesDigest(unverifiedManifest, signedDockerManifestDigest)
-			if err != nil {
-				return err
-			}
-			if !matches {
-				return InvalidSignatureError{msg: fmt.Sprintf("Signature for docker digest %q does not match", signedDockerManifestDigest)}
-			}
-			return nil
-		},
-	})
-	if err != nil {
-		return nil, err
-	}
-	return sig, nil
-}
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/manifest.json b/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/manifest.json
deleted file mode 120000
index 3dee14b4a8..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/manifest.json
+++ /dev/null
@@ -1 +0,0 @@
-../v2s1-invalid-signatures.manifest.json
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/signature-1 b/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/signature-1
deleted file mode 120000
index f010fd4c41..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-manifest-digest-error/signature-1
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/signature-1
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/manifest.json b/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/manifest.json
deleted file mode 120000
index ff7d2ffadf..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/manifest.json
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/manifest.json
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-1 b/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-1
deleted file mode 120000
index b27cdc4585..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-1
+++ /dev/null
@@ -1 +0,0 @@
-../invalid-blob.signature
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-2 b/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-2
deleted file mode 120000
index f010fd4c41..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-mixed/signature-2
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/signature-1
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-modified-manifest/signature-1 b/vendor/github.com/containers/image/signature/fixtures/dir-img-modified-manifest/signature-1
deleted file mode 120000
index f010fd4c41..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-modified-manifest/signature-1
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/signature-1
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-no-manifest/signature-1 b/vendor/github.com/containers/image/signature/fixtures/dir-img-no-manifest/signature-1
deleted file mode 120000
index f010fd4c41..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-no-manifest/signature-1
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/signature-1
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-unsigned/manifest.json b/vendor/github.com/containers/image/signature/fixtures/dir-img-unsigned/manifest.json
deleted file mode 120000
index ff7d2ffadf..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-unsigned/manifest.json
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/manifest.json
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/manifest.json b/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/manifest.json
deleted file mode 120000
index ff7d2ffadf..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/manifest.json
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/manifest.json
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/signature-1 b/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/signature-1
deleted file mode 120000
index f010fd4c41..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid-2/signature-1
+++ /dev/null
@@ -1 +0,0 @@
-../dir-img-valid/signature-1
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid/manifest.json b/vendor/github.com/containers/image/signature/fixtures/dir-img-valid/manifest.json
deleted file mode 120000
index c5bd25431f..0000000000
--- a/vendor/github.com/containers/image/signature/fixtures/dir-img-valid/manifest.json
+++ /dev/null
@@ -1 +0,0 @@
-../image.manifest.json
\ No newline at end of file
diff --git a/vendor/github.com/containers/image/signature/json.go b/vendor/github.com/containers/image/signature/json.go
deleted file mode 100644
index 9e592863da..0000000000
--- a/vendor/github.com/containers/image/signature/json.go
+++ /dev/null
@@ -1,88 +0,0 @@
-package signature
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io"
-)
-
-// jsonFormatError is returned when JSON does not match expected format.
-type jsonFormatError string
-
-func (err jsonFormatError) Error() string {
-	return string(err)
-}
-
-// paranoidUnmarshalJSONObject unmarshals data as a JSON object, but failing on the slightest unexpected aspect
-// (including duplicated keys, unrecognized keys, and non-matching types). Uses fieldResolver to
-// determine the destination for a field value, which should return a pointer to the destination if valid, or nil if the key is rejected.
-//
-// The fieldResolver approach is useful for decoding the Policy.Transports map; using it for structs is a bit lazy,
-// we could use reflection to automate this. Later?
-func paranoidUnmarshalJSONObject(data []byte, fieldResolver func(string) interface{}) error {
-	seenKeys := map[string]struct{}{}
-
-	dec := json.NewDecoder(bytes.NewReader(data))
-	t, err := dec.Token()
-	if err != nil {
-		return jsonFormatError(err.Error())
-	}
-	if t != json.Delim('{') {
-		return jsonFormatError(fmt.Sprintf("JSON object expected, got \"%s\"", t))
-	}
-	for {
-		t, err := dec.Token()
-		if err != nil {
-			return jsonFormatError(err.Error())
-		}
-		if t == json.Delim('}') {
-			break
-		}
-
-		key, ok := t.(string)
-		if !ok {
-			// Coverage: This should never happen, dec.Token() rejects non-string-literals in this state.
-			return jsonFormatError(fmt.Sprintf("Key string literal expected, got \"%s\"", t))
-		}
-		if _, ok := seenKeys[key]; ok {
-			return jsonFormatError(fmt.Sprintf("Duplicate key \"%s\"", key))
-		}
-		seenKeys[key] = struct{}{}
-
-		valuePtr := fieldResolver(key)
-		if valuePtr == nil {
-			return jsonFormatError(fmt.Sprintf("Unknown key \"%s\"", key))
-		}
-		// This works like json.Unmarshal, in particular it allows us to implement UnmarshalJSON to implement strict parsing of the field value.
-		if err := dec.Decode(valuePtr); err != nil {
-			return jsonFormatError(err.Error())
-		}
-	}
-	if _, err := dec.Token(); err != io.EOF {
-		return jsonFormatError("Unexpected data after JSON object")
-	}
-	return nil
-}
-
-// paranoidUnmarshalJSONObject unmarshals data as a JSON object, but failing on the slightest unexpected aspect
-// (including duplicated keys, unrecognized keys, and non-matching types). Each of the fields in exactFields
-// must be present exactly once, and none other fields are accepted.
-func paranoidUnmarshalJSONObjectExactFields(data []byte, exactFields map[string]interface{}) error {
-	seenKeys := map[string]struct{}{}
-	if err := paranoidUnmarshalJSONObject(data, func(key string) interface{} {
-		if valuePtr, ok := exactFields[key]; ok {
-			seenKeys[key] = struct{}{}
-			return valuePtr
-		}
-		return nil
-	}); err != nil {
-		return err
-	}
-	for key := range exactFields {
-		if _, ok := seenKeys[key]; !ok {
-			return jsonFormatError(fmt.Sprintf(`Key "%s" missing in a JSON object`, key))
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/image/signature/mechanism.go b/vendor/github.com/containers/image/signature/mechanism.go
deleted file mode 100644
index bdf26c531f..0000000000
--- a/vendor/github.com/containers/image/signature/mechanism.go
+++ /dev/null
@@ -1,85 +0,0 @@
-// Note: Consider the API unstable until the code supports at least three different image formats or transports.
-
-package signature
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"io/ioutil"
-	"strings"
-
-	"golang.org/x/crypto/openpgp"
-)
-
-// SigningMechanism abstracts a way to sign binary blobs and verify their signatures.
-// Each mechanism should eventually be closed by calling Close().
-// FIXME: Eventually expand on keyIdentity (namespace them between mechanisms to
-// eliminate ambiguities, support CA signatures and perhaps other key properties)
-type SigningMechanism interface {
-	// Close removes resources associated with the mechanism, if any.
-	Close() error
-	// SupportsSigning returns nil if the mechanism supports signing, or a SigningNotSupportedError.
-	SupportsSigning() error
-	// Sign creates a (non-detached) signature of input using keyIdentity.
-	// Fails with a SigningNotSupportedError if the mechanism does not support signing.
-	Sign(input []byte, keyIdentity string) ([]byte, error)
-	// Verify parses unverifiedSignature and returns the content and the signer's identity
-	Verify(unverifiedSignature []byte) (contents []byte, keyIdentity string, err error)
-	// UntrustedSignatureContents returns UNTRUSTED contents of the signature WITHOUT ANY VERIFICATION,
-	// along with a short identifier of the key used for signing.
-	// WARNING: The short key identifier (which correponds to "Key ID" for OpenPGP keys)
-	// is NOT the same as a "key identity" used in other calls ot this interface, and
-	// the values may have no recognizable relationship if the public key is not available.
-	UntrustedSignatureContents(untrustedSignature []byte) (untrustedContents []byte, shortKeyIdentifier string, err error)
-}
-
-// SigningNotSupportedError is returned when trying to sign using a mechanism which does not support that.
-type SigningNotSupportedError string
-
-func (err SigningNotSupportedError) Error() string {
-	return string(err)
-}
-
-// NewGPGSigningMechanism returns a new GPG/OpenPGP signing mechanism for the user’s default
-// GPG configuration ($GNUPGHOME / ~/.gnupg)
-// The caller must call .Close() on the returned SigningMechanism.
-func NewGPGSigningMechanism() (SigningMechanism, error) {
-	return newGPGSigningMechanismInDirectory("")
-}
-
-// NewEphemeralGPGSigningMechanism returns a new GPG/OpenPGP signing mechanism which
-// recognizes _only_ public keys from the supplied blob, and returns the identities
-// of these keys.
-// The caller must call .Close() on the returned SigningMechanism.
-func NewEphemeralGPGSigningMechanism(blob []byte) (SigningMechanism, []string, error) {
-	return newEphemeralGPGSigningMechanism(blob)
-}
-
-// gpgUntrustedSignatureContents returns UNTRUSTED contents of the signature WITHOUT ANY VERIFICATION,
-// along with a short identifier of the key used for signing.
-// WARNING: The short key identifier (which correponds to "Key ID" for OpenPGP keys)
-// is NOT the same as a "key identity" used in other calls ot this interface, and
-// the values may have no recognizable relationship if the public key is not available.
-func gpgUntrustedSignatureContents(untrustedSignature []byte) (untrustedContents []byte, shortKeyIdentifier string, err error) {
-	// This uses the Golang-native OpenPGP implementation instead of gpgme because we are not doing any cryptography.
-	md, err := openpgp.ReadMessage(bytes.NewReader(untrustedSignature), openpgp.EntityList{}, nil, nil)
-	if err != nil {
-		return nil, "", err
-	}
-	if !md.IsSigned {
-		return nil, "", errors.New("The input is not a signature")
-	}
-	content, err := ioutil.ReadAll(md.UnverifiedBody)
-	if err != nil {
-		// Coverage: An error during reading the body can happen only if
-		// 1) the message is encrypted, which is not our case (and we don’t give ReadMessage the key
-		// to decrypt the contents anyway), or
-		// 2) the message is signed AND we give ReadMessage a correspnding public key, which we don’t.
-		return nil, "", err
-	}
-
-	// Uppercase the key ID for minimal consistency with the gpgme-returned fingerprints
-	// (but note that key ID is a suffix of the fingerprint only for V4 keys, not V3)!
-	return content, strings.ToUpper(fmt.Sprintf("%016X", md.SignedByKeyId)), nil
-}
diff --git a/vendor/github.com/containers/image/signature/mechanism_gpgme.go b/vendor/github.com/containers/image/signature/mechanism_gpgme.go
deleted file mode 100644
index 4825ab27c6..0000000000
--- a/vendor/github.com/containers/image/signature/mechanism_gpgme.go
+++ /dev/null
@@ -1,175 +0,0 @@
-// +build !containers_image_openpgp
-
-package signature
-
-import (
-	"bytes"
-	"fmt"
-	"io/ioutil"
-	"os"
-
-	"github.com/mtrmac/gpgme"
-)
-
-// A GPG/OpenPGP signing mechanism, implemented using gpgme.
-type gpgmeSigningMechanism struct {
-	ctx          *gpgme.Context
-	ephemeralDir string // If not "", a directory to be removed on Close()
-}
-
-// newGPGSigningMechanismInDirectory returns a new GPG/OpenPGP signing mechanism, using optionalDir if not empty.
-// The caller must call .Close() on the returned SigningMechanism.
-func newGPGSigningMechanismInDirectory(optionalDir string) (SigningMechanism, error) {
-	ctx, err := newGPGMEContext(optionalDir)
-	if err != nil {
-		return nil, err
-	}
-	return &gpgmeSigningMechanism{
-		ctx:          ctx,
-		ephemeralDir: "",
-	}, nil
-}
-
-// newEphemeralGPGSigningMechanism returns a new GPG/OpenPGP signing mechanism which
-// recognizes _only_ public keys from the supplied blob, and returns the identities
-// of these keys.
-// The caller must call .Close() on the returned SigningMechanism.
-func newEphemeralGPGSigningMechanism(blob []byte) (SigningMechanism, []string, error) {
-	dir, err := ioutil.TempDir("", "containers-ephemeral-gpg-")
-	if err != nil {
-		return nil, nil, err
-	}
-	removeDir := true
-	defer func() {
-		if removeDir {
-			os.RemoveAll(dir)
-		}
-	}()
-	ctx, err := newGPGMEContext(dir)
-	if err != nil {
-		return nil, nil, err
-	}
-	mech := &gpgmeSigningMechanism{
-		ctx:          ctx,
-		ephemeralDir: dir,
-	}
-	keyIdentities, err := mech.importKeysFromBytes(blob)
-	if err != nil {
-		return nil, nil, err
-	}
-
-	removeDir = false
-	return mech, keyIdentities, nil
-}
-
-// newGPGMEContext returns a new *gpgme.Context, using optionalDir if not empty.
-func newGPGMEContext(optionalDir string) (*gpgme.Context, error) {
-	ctx, err := gpgme.New()
-	if err != nil {
-		return nil, err
-	}
-	if err = ctx.SetProtocol(gpgme.ProtocolOpenPGP); err != nil {
-		return nil, err
-	}
-	if optionalDir != "" {
-		err := ctx.SetEngineInfo(gpgme.ProtocolOpenPGP, "", optionalDir)
-		if err != nil {
-			return nil, err
-		}
-	}
-	ctx.SetArmor(false)
-	ctx.SetTextMode(false)
-	return ctx, nil
-}
-
-func (m *gpgmeSigningMechanism) Close() error {
-	if m.ephemeralDir != "" {
-		os.RemoveAll(m.ephemeralDir) // Ignore an error, if any
-	}
-	return nil
-}
-
-// importKeysFromBytes imports public keys from the supplied blob and returns their identities.
-// The blob is assumed to have an appropriate format (the caller is expected to know which one).
-// NOTE: This may modify long-term state (e.g. key storage in a directory underlying the mechanism);
-// but we do not make this public, it can only be used through newEphemeralGPGSigningMechanism.
-func (m *gpgmeSigningMechanism) importKeysFromBytes(blob []byte) ([]string, error) {
-	inputData, err := gpgme.NewDataBytes(blob)
-	if err != nil {
-		return nil, err
-	}
-	res, err := m.ctx.Import(inputData)
-	if err != nil {
-		return nil, err
-	}
-	keyIdentities := []string{}
-	for _, i := range res.Imports {
-		if i.Result == nil {
-			keyIdentities = append(keyIdentities, i.Fingerprint)
-		}
-	}
-	return keyIdentities, nil
-}
-
-// SupportsSigning returns nil if the mechanism supports signing, or a SigningNotSupportedError.
-func (m *gpgmeSigningMechanism) SupportsSigning() error {
-	return nil
-}
-
-// Sign creates a (non-detached) signature of input using keyIdentity.
-// Fails with a SigningNotSupportedError if the mechanism does not support signing.
-func (m *gpgmeSigningMechanism) Sign(input []byte, keyIdentity string) ([]byte, error) {
-	key, err := m.ctx.GetKey(keyIdentity, true)
-	if err != nil {
-		return nil, err
-	}
-	inputData, err := gpgme.NewDataBytes(input)
-	if err != nil {
-		return nil, err
-	}
-	var sigBuffer bytes.Buffer
-	sigData, err := gpgme.NewDataWriter(&sigBuffer)
-	if err != nil {
-		return nil, err
-	}
-	if err = m.ctx.Sign([]*gpgme.Key{key}, inputData, sigData, gpgme.SigModeNormal); err != nil {
-		return nil, err
-	}
-	return sigBuffer.Bytes(), nil
-}
-
-// Verify parses unverifiedSignature and returns the content and the signer's identity
-func (m gpgmeSigningMechanism) Verify(unverifiedSignature []byte) (contents []byte, keyIdentity string, err error) {
-	signedBuffer := bytes.Buffer{}
-	signedData, err := gpgme.NewDataWriter(&signedBuffer)
-	if err != nil {
-		return nil, "", err
-	}
-	unverifiedSignatureData, err := gpgme.NewDataBytes(unverifiedSignature)
-	if err != nil {
-		return nil, "", err
-	}
-	_, sigs, err := m.ctx.Verify(unverifiedSignatureData, nil, signedData)
-	if err != nil {
-		return nil, "", err
-	}
-	if len(sigs) != 1 {
-		return nil, "", InvalidSignatureError{msg: fmt.Sprintf("Unexpected GPG signature count %d", len(sigs))}
-	}
-	sig := sigs[0]
-	// This is sig.Summary == gpgme.SigSumValid except for key trust, which we handle ourselves
-	if sig.Status != nil || sig.Validity == gpgme.ValidityNever || sig.ValidityReason != nil || sig.WrongKeyUsage {
-		// FIXME: Better error reporting eventually
-		return nil, "", InvalidSignatureError{msg: fmt.Sprintf("Invalid GPG signature: %#v", sig)}
-	}
-	return signedBuffer.Bytes(), sig.Fingerprint, nil
-}
-
-// UntrustedSignatureContents returns UNTRUSTED contents of the signature WITHOUT ANY VERIFICATION,
-// along with a short identifier of the key used for signing.
-// WARNING: The short key identifier (which correponds to "Key ID" for OpenPGP keys)
-// is NOT the same as a "key identity" used in other calls ot this interface, and
-// the values may have no recognizable relationship if the public key is not available.
-func (m gpgmeSigningMechanism) UntrustedSignatureContents(untrustedSignature []byte) (untrustedContents []byte, shortKeyIdentifier string, err error) {
-	return gpgUntrustedSignatureContents(untrustedSignature)
-}
diff --git a/vendor/github.com/containers/image/signature/mechanism_openpgp.go b/vendor/github.com/containers/image/signature/mechanism_openpgp.go
deleted file mode 100644
index eccd610c9d..0000000000
--- a/vendor/github.com/containers/image/signature/mechanism_openpgp.go
+++ /dev/null
@@ -1,159 +0,0 @@
-// +build containers_image_openpgp
-
-package signature
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"path"
-	"strings"
-	"time"
-
-	"github.com/containers/storage/pkg/homedir"
-	"golang.org/x/crypto/openpgp"
-)
-
-// A GPG/OpenPGP signing mechanism, implemented using x/crypto/openpgp.
-type openpgpSigningMechanism struct {
-	keyring openpgp.EntityList
-}
-
-// newGPGSigningMechanismInDirectory returns a new GPG/OpenPGP signing mechanism, using optionalDir if not empty.
-// The caller must call .Close() on the returned SigningMechanism.
-func newGPGSigningMechanismInDirectory(optionalDir string) (SigningMechanism, error) {
-	m := &openpgpSigningMechanism{
-		keyring: openpgp.EntityList{},
-	}
-
-	gpgHome := optionalDir
-	if gpgHome == "" {
-		gpgHome = os.Getenv("GNUPGHOME")
-		if gpgHome == "" {
-			gpgHome = path.Join(homedir.Get(), ".gnupg")
-		}
-	}
-
-	pubring, err := ioutil.ReadFile(path.Join(gpgHome, "pubring.gpg"))
-	if err != nil {
-		if !os.IsNotExist(err) {
-			return nil, err
-		}
-	} else {
-		_, err := m.importKeysFromBytes(pubring)
-		if err != nil {
-			return nil, err
-		}
-	}
-	return m, nil
-}
-
-// newEphemeralGPGSigningMechanism returns a new GPG/OpenPGP signing mechanism which
-// recognizes _only_ public keys from the supplied blob, and returns the identities
-// of these keys.
-// The caller must call .Close() on the returned SigningMechanism.
-func newEphemeralGPGSigningMechanism(blob []byte) (SigningMechanism, []string, error) {
-	m := &openpgpSigningMechanism{
-		keyring: openpgp.EntityList{},
-	}
-	keyIdentities, err := m.importKeysFromBytes(blob)
-	if err != nil {
-		return nil, nil, err
-	}
-	return m, keyIdentities, nil
-}
-
-func (m *openpgpSigningMechanism) Close() error {
-	return nil
-}
-
-// importKeysFromBytes imports public keys from the supplied blob and returns their identities.
-// The blob is assumed to have an appropriate format (the caller is expected to know which one).
-func (m *openpgpSigningMechanism) importKeysFromBytes(blob []byte) ([]string, error) {
-	keyring, err := openpgp.ReadKeyRing(bytes.NewReader(blob))
-	if err != nil {
-		k, e2 := openpgp.ReadArmoredKeyRing(bytes.NewReader(blob))
-		if e2 != nil {
-			return nil, err // The original error  -- FIXME: is this better?
-		}
-		keyring = k
-	}
-
-	keyIdentities := []string{}
-	for _, entity := range keyring {
-		if entity.PrimaryKey == nil {
-			// Coverage: This should never happen, openpgp.ReadEntity fails with a
-			// openpgp.errors.StructuralError instead of returning an entity with this
-			// field set to nil.
-			continue
-		}
-		// Uppercase the fingerprint to be compatible with gpgme
-		keyIdentities = append(keyIdentities, strings.ToUpper(fmt.Sprintf("%x", entity.PrimaryKey.Fingerprint)))
-		m.keyring = append(m.keyring, entity)
-	}
-	return keyIdentities, nil
-}
-
-// SupportsSigning returns nil if the mechanism supports signing, or a SigningNotSupportedError.
-func (m *openpgpSigningMechanism) SupportsSigning() error {
-	return SigningNotSupportedError("signing is not supported in github.com/containers/image built with the containers_image_openpgp build tag")
-}
-
-// Sign creates a (non-detached) signature of input using keyIdentity.
-// Fails with a SigningNotSupportedError if the mechanism does not support signing.
-func (m *openpgpSigningMechanism) Sign(input []byte, keyIdentity string) ([]byte, error) {
-	return nil, SigningNotSupportedError("signing is not supported in github.com/containers/image built with the containers_image_openpgp build tag")
-}
-
-// Verify parses unverifiedSignature and returns the content and the signer's identity
-func (m *openpgpSigningMechanism) Verify(unverifiedSignature []byte) (contents []byte, keyIdentity string, err error) {
-	md, err := openpgp.ReadMessage(bytes.NewReader(unverifiedSignature), m.keyring, nil, nil)
-	if err != nil {
-		return nil, "", err
-	}
-	if !md.IsSigned {
-		return nil, "", errors.New("not signed")
-	}
-	content, err := ioutil.ReadAll(md.UnverifiedBody)
-	if err != nil {
-		// Coverage: md.UnverifiedBody.Read only fails if the body is encrypted
-		// (and possibly also signed, but it _must_ be encrypted) and the signing
-		// “modification detection code” detects a mismatch. But in that case,
-		// we would expect the signature verification to fail as well, and that is checked
-		// first.  Besides, we are not supplying any decryption keys, so we really
-		// can never reach this “encrypted data MDC mismatch” path.
-		return nil, "", err
-	}
-	if md.SignatureError != nil {
-		return nil, "", fmt.Errorf("signature error: %v", md.SignatureError)
-	}
-	if md.SignedBy == nil {
-		return nil, "", InvalidSignatureError{msg: fmt.Sprintf("Invalid GPG signature: %#v", md.Signature)}
-	}
-	if md.Signature != nil {
-		if md.Signature.SigLifetimeSecs != nil {
-			expiry := md.Signature.CreationTime.Add(time.Duration(*md.Signature.SigLifetimeSecs) * time.Second)
-			if time.Now().After(expiry) {
-				return nil, "", InvalidSignatureError{msg: fmt.Sprintf("Signature expired on %s", expiry)}
-			}
-		}
-	} else if md.SignatureV3 == nil {
-		// Coverage: If md.SignedBy != nil, the final md.UnverifiedBody.Read() either sets one of md.Signature or md.SignatureV3,
-		// or sets md.SignatureError.
-		return nil, "", InvalidSignatureError{msg: "Unexpected openpgp.MessageDetails: neither Signature nor SignatureV3 is set"}
-	}
-
-	// Uppercase the fingerprint to be compatible with gpgme
-	return content, strings.ToUpper(fmt.Sprintf("%x", md.SignedBy.PublicKey.Fingerprint)), nil
-}
-
-// UntrustedSignatureContents returns UNTRUSTED contents of the signature WITHOUT ANY VERIFICATION,
-// along with a short identifier of the key used for signing.
-// WARNING: The short key identifier (which correponds to "Key ID" for OpenPGP keys)
-// is NOT the same as a "key identity" used in other calls ot this interface, and
-// the values may have no recognizable relationship if the public key is not available.
-func (m openpgpSigningMechanism) UntrustedSignatureContents(untrustedSignature []byte) (untrustedContents []byte, shortKeyIdentifier string, err error) {
-	return gpgUntrustedSignatureContents(untrustedSignature)
-}
diff --git a/vendor/github.com/containers/image/signature/policy_config.go b/vendor/github.com/containers/image/signature/policy_config.go
deleted file mode 100644
index 42cc12ab1b..0000000000
--- a/vendor/github.com/containers/image/signature/policy_config.go
+++ /dev/null
@@ -1,688 +0,0 @@
-// policy_config.go hanles creation of policy objects, either by parsing JSON
-// or by programs building them programmatically.
-
-// The New* constructors are intended to be a stable API. FIXME: after an independent review.
-
-// Do not invoke the internals of the JSON marshaling/unmarshaling directly.
-
-// We can't just blindly call json.Unmarshal because that would silently ignore
-// typos, and that would just not do for security policy.
-
-// FIXME? This is by no means an user-friendly parser: No location information in error messages, no other context.
-// But at least it is not worse than blind json.Unmarshal()…
-
-package signature
-
-import (
-	"encoding/json"
-	"fmt"
-	"io/ioutil"
-	"path/filepath"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-// systemDefaultPolicyPath is the policy path used for DefaultPolicy().
-// You can override this at build time with
-// -ldflags '-X github.com/containers/image/signature.systemDefaultPolicyPath=$your_path'
-var systemDefaultPolicyPath = builtinDefaultPolicyPath
-
-// builtinDefaultPolicyPath is the policy pat used for DefaultPolicy().
-// DO NOT change this, instead see systemDefaultPolicyPath above.
-const builtinDefaultPolicyPath = "/etc/containers/policy.json"
-
-// InvalidPolicyFormatError is returned when parsing an invalid policy configuration.
-type InvalidPolicyFormatError string
-
-func (err InvalidPolicyFormatError) Error() string {
-	return string(err)
-}
-
-// DefaultPolicy returns the default policy of the system.
-// Most applications should be using this method to get the policy configured
-// by the system administrator.
-// ctx should usually be nil, can be set to override the default.
-// NOTE: When this function returns an error, report it to the user and abort.
-// DO NOT hard-code fallback policies in your application.
-func DefaultPolicy(ctx *types.SystemContext) (*Policy, error) {
-	return NewPolicyFromFile(defaultPolicyPath(ctx))
-}
-
-// defaultPolicyPath returns a path to the default policy of the system.
-func defaultPolicyPath(ctx *types.SystemContext) string {
-	if ctx != nil {
-		if ctx.SignaturePolicyPath != "" {
-			return ctx.SignaturePolicyPath
-		}
-		if ctx.RootForImplicitAbsolutePaths != "" {
-			return filepath.Join(ctx.RootForImplicitAbsolutePaths, systemDefaultPolicyPath)
-		}
-	}
-	return systemDefaultPolicyPath
-}
-
-// NewPolicyFromFile returns a policy configured in the specified file.
-func NewPolicyFromFile(fileName string) (*Policy, error) {
-	contents, err := ioutil.ReadFile(fileName)
-	if err != nil {
-		return nil, err
-	}
-	policy, err := NewPolicyFromBytes(contents)
-	if err != nil {
-		return nil, errors.Wrapf(err, "invalid policy in %q", fileName)
-	}
-	return policy, nil
-}
-
-// NewPolicyFromBytes returns a policy parsed from the specified blob.
-// Use this function instead of calling json.Unmarshal directly.
-func NewPolicyFromBytes(data []byte) (*Policy, error) {
-	p := Policy{}
-	if err := json.Unmarshal(data, &p); err != nil {
-		return nil, InvalidPolicyFormatError(err.Error())
-	}
-	return &p, nil
-}
-
-// Compile-time check that Policy implements json.Unmarshaler.
-var _ json.Unmarshaler = (*Policy)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (p *Policy) UnmarshalJSON(data []byte) error {
-	*p = Policy{}
-	transports := policyTransportsMap{}
-	if err := paranoidUnmarshalJSONObject(data, func(key string) interface{} {
-		switch key {
-		case "default":
-			return &p.Default
-		case "transports":
-			return &transports
-		default:
-			return nil
-		}
-	}); err != nil {
-		return err
-	}
-
-	if p.Default == nil {
-		return InvalidPolicyFormatError("Default policy is missing")
-	}
-	p.Transports = map[string]PolicyTransportScopes(transports)
-	return nil
-}
-
-// policyTransportsMap is a specialization of this map type for the strict JSON parsing semantics appropriate for the Policy.Transports member.
-type policyTransportsMap map[string]PolicyTransportScopes
-
-// Compile-time check that policyTransportsMap implements json.Unmarshaler.
-var _ json.Unmarshaler = (*policyTransportsMap)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (m *policyTransportsMap) UnmarshalJSON(data []byte) error {
-	// We can't unmarshal directly into map values because it is not possible to take an address of a map value.
-	// So, use a temporary map of pointers-to-slices and convert.
-	tmpMap := map[string]*PolicyTransportScopes{}
-	if err := paranoidUnmarshalJSONObject(data, func(key string) interface{} {
-		// transport can be nil
-		transport := transports.Get(key)
-		// paranoidUnmarshalJSONObject detects key duplication for us, check just to be safe.
-		if _, ok := tmpMap[key]; ok {
-			return nil
-		}
-		ptsWithTransport := policyTransportScopesWithTransport{
-			transport: transport,
-			dest:      &PolicyTransportScopes{}, // This allocates a new instance on each call.
-		}
-		tmpMap[key] = ptsWithTransport.dest
-		return &ptsWithTransport
-	}); err != nil {
-		return err
-	}
-	for key, ptr := range tmpMap {
-		(*m)[key] = *ptr
-	}
-	return nil
-}
-
-// Compile-time check that PolicyTransportScopes "implements"" json.Unmarshaler.
-// we want to only use policyTransportScopesWithTransport
-var _ json.Unmarshaler = (*PolicyTransportScopes)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (m *PolicyTransportScopes) UnmarshalJSON(data []byte) error {
-	return errors.New("Do not try to unmarshal PolicyTransportScopes directly")
-}
-
-// policyTransportScopesWithTransport is a way to unmarshal a PolicyTransportScopes
-// while validating using a specific ImageTransport if not nil.
-type policyTransportScopesWithTransport struct {
-	transport types.ImageTransport
-	dest      *PolicyTransportScopes
-}
-
-// Compile-time check that policyTransportScopesWithTransport implements json.Unmarshaler.
-var _ json.Unmarshaler = (*policyTransportScopesWithTransport)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (m *policyTransportScopesWithTransport) UnmarshalJSON(data []byte) error {
-	// We can't unmarshal directly into map values because it is not possible to take an address of a map value.
-	// So, use a temporary map of pointers-to-slices and convert.
-	tmpMap := map[string]*PolicyRequirements{}
-	if err := paranoidUnmarshalJSONObject(data, func(key string) interface{} {
-		// paranoidUnmarshalJSONObject detects key duplication for us, check just to be safe.
-		if _, ok := tmpMap[key]; ok {
-			return nil
-		}
-		if key != "" && m.transport != nil {
-			if err := m.transport.ValidatePolicyConfigurationScope(key); err != nil {
-				return nil
-			}
-		}
-		ptr := &PolicyRequirements{} // This allocates a new instance on each call.
-		tmpMap[key] = ptr
-		return ptr
-	}); err != nil {
-		return err
-	}
-	for key, ptr := range tmpMap {
-		(*m.dest)[key] = *ptr
-	}
-	return nil
-}
-
-// Compile-time check that PolicyRequirements implements json.Unmarshaler.
-var _ json.Unmarshaler = (*PolicyRequirements)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (m *PolicyRequirements) UnmarshalJSON(data []byte) error {
-	reqJSONs := []json.RawMessage{}
-	if err := json.Unmarshal(data, &reqJSONs); err != nil {
-		return err
-	}
-	if len(reqJSONs) == 0 {
-		return InvalidPolicyFormatError("List of verification policy requirements must not be empty")
-	}
-	res := make([]PolicyRequirement, len(reqJSONs))
-	for i, reqJSON := range reqJSONs {
-		req, err := newPolicyRequirementFromJSON(reqJSON)
-		if err != nil {
-			return err
-		}
-		res[i] = req
-	}
-	*m = res
-	return nil
-}
-
-// newPolicyRequirementFromJSON parses JSON data into a PolicyRequirement implementation.
-func newPolicyRequirementFromJSON(data []byte) (PolicyRequirement, error) {
-	var typeField prCommon
-	if err := json.Unmarshal(data, &typeField); err != nil {
-		return nil, err
-	}
-	var res PolicyRequirement
-	switch typeField.Type {
-	case prTypeInsecureAcceptAnything:
-		res = &prInsecureAcceptAnything{}
-	case prTypeReject:
-		res = &prReject{}
-	case prTypeSignedBy:
-		res = &prSignedBy{}
-	case prTypeSignedBaseLayer:
-		res = &prSignedBaseLayer{}
-	default:
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("Unknown policy requirement type \"%s\"", typeField.Type))
-	}
-	if err := json.Unmarshal(data, &res); err != nil {
-		return nil, err
-	}
-	return res, nil
-}
-
-// newPRInsecureAcceptAnything is NewPRInsecureAcceptAnything, except it returns the private type.
-func newPRInsecureAcceptAnything() *prInsecureAcceptAnything {
-	return &prInsecureAcceptAnything{prCommon{Type: prTypeInsecureAcceptAnything}}
-}
-
-// NewPRInsecureAcceptAnything returns a new "insecureAcceptAnything" PolicyRequirement.
-func NewPRInsecureAcceptAnything() PolicyRequirement {
-	return newPRInsecureAcceptAnything()
-}
-
-// Compile-time check that prInsecureAcceptAnything implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prInsecureAcceptAnything)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (pr *prInsecureAcceptAnything) UnmarshalJSON(data []byte) error {
-	*pr = prInsecureAcceptAnything{}
-	var tmp prInsecureAcceptAnything
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type": &tmp.Type,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prTypeInsecureAcceptAnything {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	*pr = *newPRInsecureAcceptAnything()
-	return nil
-}
-
-// newPRReject is NewPRReject, except it returns the private type.
-func newPRReject() *prReject {
-	return &prReject{prCommon{Type: prTypeReject}}
-}
-
-// NewPRReject returns a new "reject" PolicyRequirement.
-func NewPRReject() PolicyRequirement {
-	return newPRReject()
-}
-
-// Compile-time check that prReject implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prReject)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (pr *prReject) UnmarshalJSON(data []byte) error {
-	*pr = prReject{}
-	var tmp prReject
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type": &tmp.Type,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prTypeReject {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	*pr = *newPRReject()
-	return nil
-}
-
-// newPRSignedBy returns a new prSignedBy if parameters are valid.
-func newPRSignedBy(keyType sbKeyType, keyPath string, keyData []byte, signedIdentity PolicyReferenceMatch) (*prSignedBy, error) {
-	if !keyType.IsValid() {
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("invalid keyType \"%s\"", keyType))
-	}
-	if len(keyPath) > 0 && len(keyData) > 0 {
-		return nil, InvalidPolicyFormatError("keyType and keyData cannot be used simultaneously")
-	}
-	if signedIdentity == nil {
-		return nil, InvalidPolicyFormatError("signedIdentity not specified")
-	}
-	return &prSignedBy{
-		prCommon:       prCommon{Type: prTypeSignedBy},
-		KeyType:        keyType,
-		KeyPath:        keyPath,
-		KeyData:        keyData,
-		SignedIdentity: signedIdentity,
-	}, nil
-}
-
-// newPRSignedByKeyPath is NewPRSignedByKeyPath, except it returns the private type.
-func newPRSignedByKeyPath(keyType sbKeyType, keyPath string, signedIdentity PolicyReferenceMatch) (*prSignedBy, error) {
-	return newPRSignedBy(keyType, keyPath, nil, signedIdentity)
-}
-
-// NewPRSignedByKeyPath returns a new "signedBy" PolicyRequirement using a KeyPath
-func NewPRSignedByKeyPath(keyType sbKeyType, keyPath string, signedIdentity PolicyReferenceMatch) (PolicyRequirement, error) {
-	return newPRSignedByKeyPath(keyType, keyPath, signedIdentity)
-}
-
-// newPRSignedByKeyData is NewPRSignedByKeyData, except it returns the private type.
-func newPRSignedByKeyData(keyType sbKeyType, keyData []byte, signedIdentity PolicyReferenceMatch) (*prSignedBy, error) {
-	return newPRSignedBy(keyType, "", keyData, signedIdentity)
-}
-
-// NewPRSignedByKeyData returns a new "signedBy" PolicyRequirement using a KeyData
-func NewPRSignedByKeyData(keyType sbKeyType, keyData []byte, signedIdentity PolicyReferenceMatch) (PolicyRequirement, error) {
-	return newPRSignedByKeyData(keyType, keyData, signedIdentity)
-}
-
-// Compile-time check that prSignedBy implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prSignedBy)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (pr *prSignedBy) UnmarshalJSON(data []byte) error {
-	*pr = prSignedBy{}
-	var tmp prSignedBy
-	var gotKeyPath, gotKeyData = false, false
-	var signedIdentity json.RawMessage
-	if err := paranoidUnmarshalJSONObject(data, func(key string) interface{} {
-		switch key {
-		case "type":
-			return &tmp.Type
-		case "keyType":
-			return &tmp.KeyType
-		case "keyPath":
-			gotKeyPath = true
-			return &tmp.KeyPath
-		case "keyData":
-			gotKeyData = true
-			return &tmp.KeyData
-		case "signedIdentity":
-			return &signedIdentity
-		default:
-			return nil
-		}
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prTypeSignedBy {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	if signedIdentity == nil {
-		tmp.SignedIdentity = NewPRMMatchRepoDigestOrExact()
-	} else {
-		si, err := newPolicyReferenceMatchFromJSON(signedIdentity)
-		if err != nil {
-			return err
-		}
-		tmp.SignedIdentity = si
-	}
-
-	var res *prSignedBy
-	var err error
-	switch {
-	case gotKeyPath && gotKeyData:
-		return InvalidPolicyFormatError("keyPath and keyData cannot be used simultaneously")
-	case gotKeyPath && !gotKeyData:
-		res, err = newPRSignedByKeyPath(tmp.KeyType, tmp.KeyPath, tmp.SignedIdentity)
-	case !gotKeyPath && gotKeyData:
-		res, err = newPRSignedByKeyData(tmp.KeyType, tmp.KeyData, tmp.SignedIdentity)
-	case !gotKeyPath && !gotKeyData:
-		return InvalidPolicyFormatError("At least one of keyPath and keyData mus be specified")
-	default: // Coverage: This should never happen
-		return errors.Errorf("Impossible keyPath/keyData presence combination!?")
-	}
-	if err != nil {
-		return err
-	}
-	*pr = *res
-
-	return nil
-}
-
-// IsValid returns true iff kt is a recognized value
-func (kt sbKeyType) IsValid() bool {
-	switch kt {
-	case SBKeyTypeGPGKeys, SBKeyTypeSignedByGPGKeys,
-		SBKeyTypeX509Certificates, SBKeyTypeSignedByX509CAs:
-		return true
-	default:
-		return false
-	}
-}
-
-// Compile-time check that sbKeyType implements json.Unmarshaler.
-var _ json.Unmarshaler = (*sbKeyType)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (kt *sbKeyType) UnmarshalJSON(data []byte) error {
-	*kt = sbKeyType("")
-	var s string
-	if err := json.Unmarshal(data, &s); err != nil {
-		return err
-	}
-	if !sbKeyType(s).IsValid() {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unrecognized keyType value \"%s\"", s))
-	}
-	*kt = sbKeyType(s)
-	return nil
-}
-
-// newPRSignedBaseLayer is NewPRSignedBaseLayer, except it returns the private type.
-func newPRSignedBaseLayer(baseLayerIdentity PolicyReferenceMatch) (*prSignedBaseLayer, error) {
-	if baseLayerIdentity == nil {
-		return nil, InvalidPolicyFormatError("baseLayerIdentity not specified")
-	}
-	return &prSignedBaseLayer{
-		prCommon:          prCommon{Type: prTypeSignedBaseLayer},
-		BaseLayerIdentity: baseLayerIdentity,
-	}, nil
-}
-
-// NewPRSignedBaseLayer returns a new "signedBaseLayer" PolicyRequirement.
-func NewPRSignedBaseLayer(baseLayerIdentity PolicyReferenceMatch) (PolicyRequirement, error) {
-	return newPRSignedBaseLayer(baseLayerIdentity)
-}
-
-// Compile-time check that prSignedBaseLayer implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prSignedBaseLayer)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (pr *prSignedBaseLayer) UnmarshalJSON(data []byte) error {
-	*pr = prSignedBaseLayer{}
-	var tmp prSignedBaseLayer
-	var baseLayerIdentity json.RawMessage
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type":              &tmp.Type,
-		"baseLayerIdentity": &baseLayerIdentity,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prTypeSignedBaseLayer {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	bli, err := newPolicyReferenceMatchFromJSON(baseLayerIdentity)
-	if err != nil {
-		return err
-	}
-	res, err := newPRSignedBaseLayer(bli)
-	if err != nil {
-		// Coverage: This should never happen, newPolicyReferenceMatchFromJSON has ensured bli is valid.
-		return err
-	}
-	*pr = *res
-	return nil
-}
-
-// newPolicyReferenceMatchFromJSON parses JSON data into a PolicyReferenceMatch implementation.
-func newPolicyReferenceMatchFromJSON(data []byte) (PolicyReferenceMatch, error) {
-	var typeField prmCommon
-	if err := json.Unmarshal(data, &typeField); err != nil {
-		return nil, err
-	}
-	var res PolicyReferenceMatch
-	switch typeField.Type {
-	case prmTypeMatchExact:
-		res = &prmMatchExact{}
-	case prmTypeMatchRepoDigestOrExact:
-		res = &prmMatchRepoDigestOrExact{}
-	case prmTypeMatchRepository:
-		res = &prmMatchRepository{}
-	case prmTypeExactReference:
-		res = &prmExactReference{}
-	case prmTypeExactRepository:
-		res = &prmExactRepository{}
-	default:
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("Unknown policy reference match type \"%s\"", typeField.Type))
-	}
-	if err := json.Unmarshal(data, &res); err != nil {
-		return nil, err
-	}
-	return res, nil
-}
-
-// newPRMMatchExact is NewPRMMatchExact, except it resturns the private type.
-func newPRMMatchExact() *prmMatchExact {
-	return &prmMatchExact{prmCommon{Type: prmTypeMatchExact}}
-}
-
-// NewPRMMatchExact returns a new "matchExact" PolicyReferenceMatch.
-func NewPRMMatchExact() PolicyReferenceMatch {
-	return newPRMMatchExact()
-}
-
-// Compile-time check that prmMatchExact implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prmMatchExact)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (prm *prmMatchExact) UnmarshalJSON(data []byte) error {
-	*prm = prmMatchExact{}
-	var tmp prmMatchExact
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type": &tmp.Type,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prmTypeMatchExact {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	*prm = *newPRMMatchExact()
-	return nil
-}
-
-// newPRMMatchRepoDigestOrExact is NewPRMMatchRepoDigestOrExact, except it resturns the private type.
-func newPRMMatchRepoDigestOrExact() *prmMatchRepoDigestOrExact {
-	return &prmMatchRepoDigestOrExact{prmCommon{Type: prmTypeMatchRepoDigestOrExact}}
-}
-
-// NewPRMMatchRepoDigestOrExact returns a new "matchRepoDigestOrExact" PolicyReferenceMatch.
-func NewPRMMatchRepoDigestOrExact() PolicyReferenceMatch {
-	return newPRMMatchRepoDigestOrExact()
-}
-
-// Compile-time check that prmMatchRepoDigestOrExact implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prmMatchRepoDigestOrExact)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (prm *prmMatchRepoDigestOrExact) UnmarshalJSON(data []byte) error {
-	*prm = prmMatchRepoDigestOrExact{}
-	var tmp prmMatchRepoDigestOrExact
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type": &tmp.Type,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prmTypeMatchRepoDigestOrExact {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	*prm = *newPRMMatchRepoDigestOrExact()
-	return nil
-}
-
-// newPRMMatchRepository is NewPRMMatchRepository, except it resturns the private type.
-func newPRMMatchRepository() *prmMatchRepository {
-	return &prmMatchRepository{prmCommon{Type: prmTypeMatchRepository}}
-}
-
-// NewPRMMatchRepository returns a new "matchRepository" PolicyReferenceMatch.
-func NewPRMMatchRepository() PolicyReferenceMatch {
-	return newPRMMatchRepository()
-}
-
-// Compile-time check that prmMatchRepository implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prmMatchRepository)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (prm *prmMatchRepository) UnmarshalJSON(data []byte) error {
-	*prm = prmMatchRepository{}
-	var tmp prmMatchRepository
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type": &tmp.Type,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prmTypeMatchRepository {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-	*prm = *newPRMMatchRepository()
-	return nil
-}
-
-// newPRMExactReference is NewPRMExactReference, except it resturns the private type.
-func newPRMExactReference(dockerReference string) (*prmExactReference, error) {
-	ref, err := reference.ParseNormalizedNamed(dockerReference)
-	if err != nil {
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("Invalid format of dockerReference %s: %s", dockerReference, err.Error()))
-	}
-	if reference.IsNameOnly(ref) {
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("dockerReference %s contains neither a tag nor digest", dockerReference))
-	}
-	return &prmExactReference{
-		prmCommon:       prmCommon{Type: prmTypeExactReference},
-		DockerReference: dockerReference,
-	}, nil
-}
-
-// NewPRMExactReference returns a new "exactReference" PolicyReferenceMatch.
-func NewPRMExactReference(dockerReference string) (PolicyReferenceMatch, error) {
-	return newPRMExactReference(dockerReference)
-}
-
-// Compile-time check that prmExactReference implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prmExactReference)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (prm *prmExactReference) UnmarshalJSON(data []byte) error {
-	*prm = prmExactReference{}
-	var tmp prmExactReference
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type":            &tmp.Type,
-		"dockerReference": &tmp.DockerReference,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prmTypeExactReference {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-
-	res, err := newPRMExactReference(tmp.DockerReference)
-	if err != nil {
-		return err
-	}
-	*prm = *res
-	return nil
-}
-
-// newPRMExactRepository is NewPRMExactRepository, except it resturns the private type.
-func newPRMExactRepository(dockerRepository string) (*prmExactRepository, error) {
-	if _, err := reference.ParseNormalizedNamed(dockerRepository); err != nil {
-		return nil, InvalidPolicyFormatError(fmt.Sprintf("Invalid format of dockerRepository %s: %s", dockerRepository, err.Error()))
-	}
-	return &prmExactRepository{
-		prmCommon:        prmCommon{Type: prmTypeExactRepository},
-		DockerRepository: dockerRepository,
-	}, nil
-}
-
-// NewPRMExactRepository returns a new "exactRepository" PolicyRepositoryMatch.
-func NewPRMExactRepository(dockerRepository string) (PolicyReferenceMatch, error) {
-	return newPRMExactRepository(dockerRepository)
-}
-
-// Compile-time check that prmExactRepository implements json.Unmarshaler.
-var _ json.Unmarshaler = (*prmExactRepository)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (prm *prmExactRepository) UnmarshalJSON(data []byte) error {
-	*prm = prmExactRepository{}
-	var tmp prmExactRepository
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"type":             &tmp.Type,
-		"dockerRepository": &tmp.DockerRepository,
-	}); err != nil {
-		return err
-	}
-
-	if tmp.Type != prmTypeExactRepository {
-		return InvalidPolicyFormatError(fmt.Sprintf("Unexpected policy requirement type \"%s\"", tmp.Type))
-	}
-
-	res, err := newPRMExactRepository(tmp.DockerRepository)
-	if err != nil {
-		return err
-	}
-	*prm = *res
-	return nil
-}
diff --git a/vendor/github.com/containers/image/signature/policy_eval.go b/vendor/github.com/containers/image/signature/policy_eval.go
deleted file mode 100644
index f818eb095a..0000000000
--- a/vendor/github.com/containers/image/signature/policy_eval.go
+++ /dev/null
@@ -1,289 +0,0 @@
-// This defines the top-level policy evaluation API.
-// To the extent possible, the interface of the fuctions provided
-// here is intended to be completely unambiguous, and stable for users
-// to rely on.
-
-package signature
-
-import (
-	"context"
-
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// PolicyRequirementError is an explanatory text for rejecting a signature or an image.
-type PolicyRequirementError string
-
-func (err PolicyRequirementError) Error() string {
-	return string(err)
-}
-
-// signatureAcceptanceResult is the principal value returned by isSignatureAuthorAccepted.
-type signatureAcceptanceResult string
-
-const (
-	sarAccepted signatureAcceptanceResult = "sarAccepted"
-	sarRejected signatureAcceptanceResult = "sarRejected"
-	sarUnknown  signatureAcceptanceResult = "sarUnknown"
-)
-
-// PolicyRequirement is a rule which must be satisfied by at least one of the signatures of an image.
-// The type is public, but its definition is private.
-type PolicyRequirement interface {
-	// FIXME: For speed, we should support creating per-context state (not stored in the PolicyRequirement), to cache
-	// costly initialization like creating temporary GPG home directories and reading files.
-	// Setup() (someState, error)
-	// Then, the operations below would be done on the someState object, not directly on a PolicyRequirement.
-
-	// isSignatureAuthorAccepted, given an image and a signature blob, returns:
-	// - sarAccepted if the signature has been verified against the appropriate public key
-	//   (where "appropriate public key" may depend on the contents of the signature);
-	//   in that case a parsed Signature should be returned.
-	// - sarRejected if the signature has not been verified;
-	//   in that case error must be non-nil, and should be an PolicyRequirementError if evaluation
-	//   succeeded but the result was rejection.
-	// - sarUnknown if if this PolicyRequirement does not deal with signatures.
-	//   NOTE: sarUnknown should not be returned if this PolicyRequirement should make a decision but something failed.
-	//   Returning sarUnknown and a non-nil error value is invalid.
-	// WARNING: This makes the signature contents acceptable for futher processing,
-	// but it does not necessarily mean that the contents of the signature are
-	// consistent with local policy.
-	// For example:
-	// - Do not use a true value to determine whether to run
-	//   a container based on this image; use IsRunningImageAllowed instead.
-	// - Just because a signature is accepted does not automatically mean the contents of the
-	//   signature are authorized to run code as root, or to affect system or cluster configuration.
-	isSignatureAuthorAccepted(image types.UnparsedImage, sig []byte) (signatureAcceptanceResult, *Signature, error)
-
-	// isRunningImageAllowed returns true if the requirement allows running an image.
-	// If it returns false, err must be non-nil, and should be an PolicyRequirementError if evaluation
-	// succeeded but the result was rejection.
-	// WARNING: This validates signatures and the manifest, but does not download or validate the
-	// layers. Users must validate that the layers match their expected digests.
-	isRunningImageAllowed(image types.UnparsedImage) (bool, error)
-}
-
-// PolicyReferenceMatch specifies a set of image identities accepted in PolicyRequirement.
-// The type is public, but its implementation is private.
-type PolicyReferenceMatch interface {
-	// matchesDockerReference decides whether a specific image identity is accepted for an image
-	// (or, usually, for the image's Reference().DockerReference()).  Note that
-	// image.Reference().DockerReference() may be nil.
-	matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool
-}
-
-// PolicyContext encapsulates a policy and possible cached state
-// for speeding up its evaluation.
-type PolicyContext struct {
-	Policy *Policy
-	state  policyContextState // Internal consistency checking
-}
-
-// policyContextState is used internally to verify the users are not misusing a PolicyContext.
-type policyContextState string
-
-const (
-	pcInvalid      policyContextState = ""
-	pcInitializing policyContextState = "Initializing"
-	pcReady        policyContextState = "Ready"
-	pcInUse        policyContextState = "InUse"
-	pcDestroying   policyContextState = "Destroying"
-	pcDestroyed    policyContextState = "Destroyed"
-)
-
-// changeContextState changes pc.state, or fails if the state is unexpected
-func (pc *PolicyContext) changeState(expected, new policyContextState) error {
-	if pc.state != expected {
-		return errors.Errorf(`"Invalid PolicyContext state, expected "%s", found "%s"`, expected, pc.state)
-	}
-	pc.state = new
-	return nil
-}
-
-// NewPolicyContext sets up and initializes a context for the specified policy.
-// The policy must not be modified while the context exists. FIXME: make a deep copy?
-// If this function succeeds, the caller should call PolicyContext.Destroy() when done.
-func NewPolicyContext(policy *Policy) (*PolicyContext, error) {
-	pc := &PolicyContext{Policy: policy, state: pcInitializing}
-	// FIXME: initialize
-	if err := pc.changeState(pcInitializing, pcReady); err != nil {
-		// Huh?! This should never fail, we didn't give the pointer to anybody.
-		// Just give up and leave unclean state around.
-		return nil, err
-	}
-	return pc, nil
-}
-
-// Destroy should be called when the user of the context is done with it.
-func (pc *PolicyContext) Destroy() error {
-	if err := pc.changeState(pcReady, pcDestroying); err != nil {
-		return err
-	}
-	// FIXME: destroy
-	return pc.changeState(pcDestroying, pcDestroyed)
-}
-
-// policyIdentityLogName returns a string description of the image identity for policy purposes.
-// ONLY use this for log messages, not for any decisions!
-func policyIdentityLogName(ref types.ImageReference) string {
-	return ref.Transport().Name() + ":" + ref.PolicyConfigurationIdentity()
-}
-
-// requirementsForImageRef selects the appropriate requirements for ref.
-func (pc *PolicyContext) requirementsForImageRef(ref types.ImageReference) PolicyRequirements {
-	// Do we have a PolicyTransportScopes for this transport?
-	transportName := ref.Transport().Name()
-	if transportScopes, ok := pc.Policy.Transports[transportName]; ok {
-		// Look for a full match.
-		identity := ref.PolicyConfigurationIdentity()
-		if req, ok := transportScopes[identity]; ok {
-			logrus.Debugf(` Using transport "%s" policy section %s`, transportName, identity)
-			return req
-		}
-
-		// Look for a match of the possible parent namespaces.
-		for _, name := range ref.PolicyConfigurationNamespaces() {
-			if req, ok := transportScopes[name]; ok {
-				logrus.Debugf(` Using transport "%s" specific policy section %s`, transportName, name)
-				return req
-			}
-		}
-
-		// Look for a default match for the transport.
-		if req, ok := transportScopes[""]; ok {
-			logrus.Debugf(` Using transport "%s" policy section ""`, transportName)
-			return req
-		}
-	}
-
-	logrus.Debugf(" Using default policy section")
-	return pc.Policy.Default
-}
-
-// GetSignaturesWithAcceptedAuthor returns those signatures from an image
-// for which the policy accepts the author (and which have been successfully
-// verified).
-// NOTE: This may legitimately return an empty list and no error, if the image
-// has no signatures or only invalid signatures.
-// WARNING: This makes the signature contents acceptable for futher processing,
-// but it does not necessarily mean that the contents of the signature are
-// consistent with local policy.
-// For example:
-// - Do not use a an existence of an accepted signature to determine whether to run
-//   a container based on this image; use IsRunningImageAllowed instead.
-// - Just because a signature is accepted does not automatically mean the contents of the
-//   signature are authorized to run code as root, or to affect system or cluster configuration.
-func (pc *PolicyContext) GetSignaturesWithAcceptedAuthor(image types.UnparsedImage) (sigs []*Signature, finalErr error) {
-	if err := pc.changeState(pcReady, pcInUse); err != nil {
-		return nil, err
-	}
-	defer func() {
-		if err := pc.changeState(pcInUse, pcReady); err != nil {
-			sigs = nil
-			finalErr = err
-		}
-	}()
-
-	logrus.Debugf("GetSignaturesWithAcceptedAuthor for image %s", policyIdentityLogName(image.Reference()))
-	reqs := pc.requirementsForImageRef(image.Reference())
-
-	// FIXME: rename Signatures to UnverifiedSignatures
-	// FIXME: pass context.Context
-	unverifiedSignatures, err := image.Signatures(context.TODO())
-	if err != nil {
-		return nil, err
-	}
-
-	res := make([]*Signature, 0, len(unverifiedSignatures))
-	for sigNumber, sig := range unverifiedSignatures {
-		var acceptedSig *Signature // non-nil if accepted
-		rejected := false
-		// FIXME? Say more about the contents of the signature, i.e. parse it even before verification?!
-		logrus.Debugf("Evaluating signature %d:", sigNumber)
-	interpretingReqs:
-		for reqNumber, req := range reqs {
-			// FIXME: Log the requirement itself? For now, we use just the number.
-			// FIXME: supply state
-			switch res, as, err := req.isSignatureAuthorAccepted(image, sig); res {
-			case sarAccepted:
-				if as == nil { // Coverage: this should never happen
-					logrus.Debugf(" Requirement %d: internal inconsistency: sarAccepted but no parsed contents", reqNumber)
-					rejected = true
-					break interpretingReqs
-				}
-				logrus.Debugf(" Requirement %d: signature accepted", reqNumber)
-				if acceptedSig == nil {
-					acceptedSig = as
-				} else if *as != *acceptedSig { // Coverage: this should never happen
-					// Huh?! Two ways of verifying the same signature blob resulted in two different parses of its already accepted contents?
-					logrus.Debugf(" Requirement %d: internal inconsistency: sarAccepted but different parsed contents", reqNumber)
-					rejected = true
-					acceptedSig = nil
-					break interpretingReqs
-				}
-			case sarRejected:
-				logrus.Debugf(" Requirement %d: signature rejected: %s", reqNumber, err.Error())
-				rejected = true
-				break interpretingReqs
-			case sarUnknown:
-				if err != nil { // Coverage: this should never happen
-					logrus.Debugf(" Requirement %d: internal inconsistency: sarUnknown but an error message %s", reqNumber, err.Error())
-					rejected = true
-					break interpretingReqs
-				}
-				logrus.Debugf(" Requirement %d: signature state unknown, continuing", reqNumber)
-			default: // Coverage: this should never happen
-				logrus.Debugf(" Requirement %d: internal inconsistency: unknown result %#v", reqNumber, string(res))
-				rejected = true
-				break interpretingReqs
-			}
-		}
-		// This also handles the (invalid) case of empty reqs, by rejecting the signature.
-		if acceptedSig != nil && !rejected {
-			logrus.Debugf(" Overall: OK, signature accepted")
-			res = append(res, acceptedSig)
-		} else {
-			logrus.Debugf(" Overall: Signature not accepted")
-		}
-	}
-	return res, nil
-}
-
-// IsRunningImageAllowed returns true iff the policy allows running the image.
-// If it returns false, err must be non-nil, and should be an PolicyRequirementError if evaluation
-// succeeded but the result was rejection.
-// WARNING: This validates signatures and the manifest, but does not download or validate the
-// layers. Users must validate that the layers match their expected digests.
-func (pc *PolicyContext) IsRunningImageAllowed(image types.UnparsedImage) (res bool, finalErr error) {
-	if err := pc.changeState(pcReady, pcInUse); err != nil {
-		return false, err
-	}
-	defer func() {
-		if err := pc.changeState(pcInUse, pcReady); err != nil {
-			res = false
-			finalErr = err
-		}
-	}()
-
-	logrus.Debugf("IsRunningImageAllowed for image %s", policyIdentityLogName(image.Reference()))
-	reqs := pc.requirementsForImageRef(image.Reference())
-
-	if len(reqs) == 0 {
-		return false, PolicyRequirementError("List of verification policy requirements must not be empty")
-	}
-
-	for reqNumber, req := range reqs {
-		// FIXME: supply state
-		allowed, err := req.isRunningImageAllowed(image)
-		if !allowed {
-			logrus.Debugf("Requirement %d: denied, done", reqNumber)
-			return false, err
-		}
-		logrus.Debugf(" Requirement %d: allowed", reqNumber)
-	}
-	// We have tested that len(reqs) != 0, so at least one req must have explicitly allowed this image.
-	logrus.Debugf("Overall: allowed")
-	return true, nil
-}
diff --git a/vendor/github.com/containers/image/signature/policy_eval_baselayer.go b/vendor/github.com/containers/image/signature/policy_eval_baselayer.go
deleted file mode 100644
index 898958012e..0000000000
--- a/vendor/github.com/containers/image/signature/policy_eval_baselayer.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// Policy evaluation for prSignedBaseLayer.
-
-package signature
-
-import (
-	"github.com/containers/image/types"
-	"github.com/sirupsen/logrus"
-)
-
-func (pr *prSignedBaseLayer) isSignatureAuthorAccepted(image types.UnparsedImage, sig []byte) (signatureAcceptanceResult, *Signature, error) {
-	return sarUnknown, nil, nil
-}
-
-func (pr *prSignedBaseLayer) isRunningImageAllowed(image types.UnparsedImage) (bool, error) {
-	// FIXME? Reject this at policy parsing time already?
-	logrus.Errorf("signedBaseLayer not implemented yet!")
-	return false, PolicyRequirementError("signedBaseLayer not implemented yet!")
-}
diff --git a/vendor/github.com/containers/image/signature/policy_eval_signedby.go b/vendor/github.com/containers/image/signature/policy_eval_signedby.go
deleted file mode 100644
index 56665124c0..0000000000
--- a/vendor/github.com/containers/image/signature/policy_eval_signedby.go
+++ /dev/null
@@ -1,131 +0,0 @@
-// Policy evaluation for prSignedBy.
-
-package signature
-
-import (
-	"context"
-	"fmt"
-	"io/ioutil"
-	"strings"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/opencontainers/go-digest"
-)
-
-func (pr *prSignedBy) isSignatureAuthorAccepted(image types.UnparsedImage, sig []byte) (signatureAcceptanceResult, *Signature, error) {
-	switch pr.KeyType {
-	case SBKeyTypeGPGKeys:
-	case SBKeyTypeSignedByGPGKeys, SBKeyTypeX509Certificates, SBKeyTypeSignedByX509CAs:
-		// FIXME? Reject this at policy parsing time already?
-		return sarRejected, nil, errors.Errorf(`"Unimplemented "keyType" value "%s"`, string(pr.KeyType))
-	default:
-		// This should never happen, newPRSignedBy ensures KeyType.IsValid()
-		return sarRejected, nil, errors.Errorf(`"Unknown "keyType" value "%s"`, string(pr.KeyType))
-	}
-
-	if pr.KeyPath != "" && pr.KeyData != nil {
-		return sarRejected, nil, errors.New(`Internal inconsistency: both "keyPath" and "keyData" specified`)
-	}
-	// FIXME: move this to per-context initialization
-	var data []byte
-	if pr.KeyData != nil {
-		data = pr.KeyData
-	} else {
-		d, err := ioutil.ReadFile(pr.KeyPath)
-		if err != nil {
-			return sarRejected, nil, err
-		}
-		data = d
-	}
-
-	// FIXME: move this to per-context initialization
-	mech, trustedIdentities, err := NewEphemeralGPGSigningMechanism(data)
-	if err != nil {
-		return sarRejected, nil, err
-	}
-	defer mech.Close()
-	if len(trustedIdentities) == 0 {
-		return sarRejected, nil, PolicyRequirementError("No public keys imported")
-	}
-
-	signature, err := verifyAndExtractSignature(mech, sig, signatureAcceptanceRules{
-		validateKeyIdentity: func(keyIdentity string) error {
-			for _, trustedIdentity := range trustedIdentities {
-				if keyIdentity == trustedIdentity {
-					return nil
-				}
-			}
-			// Coverage: We use a private GPG home directory and only import trusted keys, so this should
-			// not be reachable.
-			return PolicyRequirementError(fmt.Sprintf("Signature by key %s is not accepted", keyIdentity))
-		},
-		validateSignedDockerReference: func(ref string) error {
-			if !pr.SignedIdentity.matchesDockerReference(image, ref) {
-				return PolicyRequirementError(fmt.Sprintf("Signature for identity %s is not accepted", ref))
-			}
-			return nil
-		},
-		validateSignedDockerManifestDigest: func(digest digest.Digest) error {
-			m, _, err := image.Manifest()
-			if err != nil {
-				return err
-			}
-			digestMatches, err := manifest.MatchesDigest(m, digest)
-			if err != nil {
-				return err
-			}
-			if !digestMatches {
-				return PolicyRequirementError(fmt.Sprintf("Signature for digest %s does not match", digest))
-			}
-			return nil
-		},
-	})
-	if err != nil {
-		return sarRejected, nil, err
-	}
-
-	return sarAccepted, signature, nil
-}
-
-func (pr *prSignedBy) isRunningImageAllowed(image types.UnparsedImage) (bool, error) {
-	// FIXME: pass context.Context
-	sigs, err := image.Signatures(context.TODO())
-	if err != nil {
-		return false, err
-	}
-	var rejections []error
-	for _, s := range sigs {
-		var reason error
-		switch res, _, err := pr.isSignatureAuthorAccepted(image, s); res {
-		case sarAccepted:
-			// One accepted signature is enough.
-			return true, nil
-		case sarRejected:
-			reason = err
-		case sarUnknown:
-			// Huh?! This should not happen at all; treat it as any other invalid value.
-			fallthrough
-		default:
-			reason = errors.Errorf(`Internal error: Unexpected signature verification result "%s"`, string(res))
-		}
-		rejections = append(rejections, reason)
-	}
-	var summary error
-	switch len(rejections) {
-	case 0:
-		summary = PolicyRequirementError("A signature was required, but no signature exists")
-	case 1:
-		summary = rejections[0]
-	default:
-		var msgs []string
-		for _, e := range rejections {
-			msgs = append(msgs, e.Error())
-		}
-		summary = PolicyRequirementError(fmt.Sprintf("None of the signatures were accepted, reasons: %s",
-			strings.Join(msgs, "; ")))
-	}
-	return false, summary
-}
diff --git a/vendor/github.com/containers/image/signature/policy_eval_simple.go b/vendor/github.com/containers/image/signature/policy_eval_simple.go
deleted file mode 100644
index 19a71e6d99..0000000000
--- a/vendor/github.com/containers/image/signature/policy_eval_simple.go
+++ /dev/null
@@ -1,28 +0,0 @@
-// Policy evaluation for the various simple PolicyRequirement types.
-
-package signature
-
-import (
-	"fmt"
-
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-)
-
-func (pr *prInsecureAcceptAnything) isSignatureAuthorAccepted(image types.UnparsedImage, sig []byte) (signatureAcceptanceResult, *Signature, error) {
-	// prInsecureAcceptAnything semantics: Every image is allowed to run,
-	// but this does not consider the signature as verified.
-	return sarUnknown, nil, nil
-}
-
-func (pr *prInsecureAcceptAnything) isRunningImageAllowed(image types.UnparsedImage) (bool, error) {
-	return true, nil
-}
-
-func (pr *prReject) isSignatureAuthorAccepted(image types.UnparsedImage, sig []byte) (signatureAcceptanceResult, *Signature, error) {
-	return sarRejected, nil, PolicyRequirementError(fmt.Sprintf("Any signatures for image %s are rejected by policy.", transports.ImageName(image.Reference())))
-}
-
-func (pr *prReject) isRunningImageAllowed(image types.UnparsedImage) (bool, error) {
-	return false, PolicyRequirementError(fmt.Sprintf("Running image %s is rejected by policy.", transports.ImageName(image.Reference())))
-}
diff --git a/vendor/github.com/containers/image/signature/policy_reference_match.go b/vendor/github.com/containers/image/signature/policy_reference_match.go
deleted file mode 100644
index a8dad67701..0000000000
--- a/vendor/github.com/containers/image/signature/policy_reference_match.go
+++ /dev/null
@@ -1,101 +0,0 @@
-// PolicyReferenceMatch implementations.
-
-package signature
-
-import (
-	"fmt"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-)
-
-// parseImageAndDockerReference converts an image and a reference string into two parsed entities, failing on any error and handling unidentified images.
-func parseImageAndDockerReference(image types.UnparsedImage, s2 string) (reference.Named, reference.Named, error) {
-	r1 := image.Reference().DockerReference()
-	if r1 == nil {
-		return nil, nil, PolicyRequirementError(fmt.Sprintf("Docker reference match attempted on image %s with no known Docker reference identity",
-			transports.ImageName(image.Reference())))
-	}
-	r2, err := reference.ParseNormalizedNamed(s2)
-	if err != nil {
-		return nil, nil, err
-	}
-	return r1, r2, nil
-}
-
-func (prm *prmMatchExact) matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool {
-	intended, signature, err := parseImageAndDockerReference(image, signatureDockerReference)
-	if err != nil {
-		return false
-	}
-	// Do not add default tags: image.Reference().DockerReference() should contain it already, and signatureDockerReference should be exact; so, verify that now.
-	if reference.IsNameOnly(intended) || reference.IsNameOnly(signature) {
-		return false
-	}
-	return signature.String() == intended.String()
-}
-
-func (prm *prmMatchRepoDigestOrExact) matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool {
-	intended, signature, err := parseImageAndDockerReference(image, signatureDockerReference)
-	if err != nil {
-		return false
-	}
-
-	// Do not add default tags: image.Reference().DockerReference() should contain it already, and signatureDockerReference should be exact; so, verify that now.
-	if reference.IsNameOnly(signature) {
-		return false
-	}
-	switch intended.(type) {
-	case reference.NamedTagged: // Includes the case when intended has both a tag and a digest.
-		return signature.String() == intended.String()
-	case reference.Canonical:
-		// We don’t actually compare the manifest digest against the signature here; that happens prSignedBy.in UnparsedImage.Manifest.
-		// Becase UnparsedImage.Manifest verifies the intended.Digest() against the manifest, and prSignedBy verifies the signature digest against the manifest,
-		// we know that signature digest matches intended.Digest() (but intended.Digest() and signature digest may use different algorithms)
-		return signature.Name() == intended.Name()
-	default: // !reference.IsNameOnly(intended)
-		return false
-	}
-}
-
-func (prm *prmMatchRepository) matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool {
-	intended, signature, err := parseImageAndDockerReference(image, signatureDockerReference)
-	if err != nil {
-		return false
-	}
-	return signature.Name() == intended.Name()
-}
-
-// parseDockerReferences converts two reference strings into parsed entities, failing on any error
-func parseDockerReferences(s1, s2 string) (reference.Named, reference.Named, error) {
-	r1, err := reference.ParseNormalizedNamed(s1)
-	if err != nil {
-		return nil, nil, err
-	}
-	r2, err := reference.ParseNormalizedNamed(s2)
-	if err != nil {
-		return nil, nil, err
-	}
-	return r1, r2, nil
-}
-
-func (prm *prmExactReference) matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool {
-	intended, signature, err := parseDockerReferences(prm.DockerReference, signatureDockerReference)
-	if err != nil {
-		return false
-	}
-	// prm.DockerReference and signatureDockerReference should be exact; so, verify that now.
-	if reference.IsNameOnly(intended) || reference.IsNameOnly(signature) {
-		return false
-	}
-	return signature.String() == intended.String()
-}
-
-func (prm *prmExactRepository) matchesDockerReference(image types.UnparsedImage, signatureDockerReference string) bool {
-	intended, signature, err := parseDockerReferences(prm.DockerRepository, signatureDockerReference)
-	if err != nil {
-		return false
-	}
-	return signature.Name() == intended.Name()
-}
diff --git a/vendor/github.com/containers/image/signature/policy_types.go b/vendor/github.com/containers/image/signature/policy_types.go
deleted file mode 100644
index 4cd770f11c..0000000000
--- a/vendor/github.com/containers/image/signature/policy_types.go
+++ /dev/null
@@ -1,152 +0,0 @@
-// Note: Consider the API unstable until the code supports at least three different image formats or transports.
-
-// This defines types used to represent a signature verification policy in memory.
-// Do not use the private types directly; either parse a configuration file, or construct a Policy from PolicyRequirements
-// built using the constructor functions provided in policy_config.go.
-
-package signature
-
-// NOTE: Keep this in sync with docs/policy.json.md!
-
-// Policy defines requirements for considering a signature, or an image, valid.
-type Policy struct {
-	// Default applies to any image which does not have a matching policy in Transports.
-	// Note that this can happen even if a matching PolicyTransportScopes exists in Transports
-	// if the image matches none of the scopes.
-	Default    PolicyRequirements               `json:"default"`
-	Transports map[string]PolicyTransportScopes `json:"transports"`
-}
-
-// PolicyTransportScopes defines policies for images for a specific transport,
-// for various scopes, the map keys.
-// Scopes are defined by the transport (types.ImageReference.PolicyConfigurationIdentity etc.);
-// there is one scope precisely matching to a single image, and namespace scopes as prefixes
-// of the single-image scope. (e.g. hostname[/zero[/or[/more[/namespaces[/individualimage]]]]])
-// The empty scope, if exists, is considered a parent namespace of all other scopes.
-// Most specific scope wins, duplication is prohibited (hard failure).
-type PolicyTransportScopes map[string]PolicyRequirements
-
-// PolicyRequirements is a set of requirements applying to a set of images; each of them must be satisfied (though perhaps each by a different signature).
-// Must not be empty, frequently will only contain a single element.
-type PolicyRequirements []PolicyRequirement
-
-// PolicyRequirement is a rule which must be satisfied by at least one of the signatures of an image.
-// The type is public, but its definition is private.
-
-// prCommon is the common type field in a JSON encoding of PolicyRequirement.
-type prCommon struct {
-	Type prTypeIdentifier `json:"type"`
-}
-
-// prTypeIdentifier is string designating a kind of a PolicyRequirement.
-type prTypeIdentifier string
-
-const (
-	prTypeInsecureAcceptAnything prTypeIdentifier = "insecureAcceptAnything"
-	prTypeReject                 prTypeIdentifier = "reject"
-	prTypeSignedBy               prTypeIdentifier = "signedBy"
-	prTypeSignedBaseLayer        prTypeIdentifier = "signedBaseLayer"
-)
-
-// prInsecureAcceptAnything is a PolicyRequirement with type = prTypeInsecureAcceptAnything:
-// every image is allowed to run.
-// Note that because PolicyRequirements are implicitly ANDed, this is necessary only if it is the only rule (to make the list non-empty and the policy explicit).
-// NOTE: This allows the image to run; it DOES NOT consider the signature verified (per IsSignatureAuthorAccepted).
-// FIXME? Better name?
-type prInsecureAcceptAnything struct {
-	prCommon
-}
-
-// prReject is a PolicyRequirement with type = prTypeReject: every image is rejected.
-type prReject struct {
-	prCommon
-}
-
-// prSignedBy is a PolicyRequirement with type = prTypeSignedBy: the image is signed by trusted keys for a specified identity
-type prSignedBy struct {
-	prCommon
-
-	// KeyType specifies what kind of key reference KeyPath/KeyData is.
-	// Acceptable values are “GPGKeys” | “signedByGPGKeys” “X.509Certificates” | “signedByX.509CAs”
-	// FIXME: eventually also support GPGTOFU, X.509TOFU, with KeyPath only
-	KeyType sbKeyType `json:"keyType"`
-
-	// KeyPath is a pathname to a local file containing the trusted key(s). Exactly one of KeyPath and KeyData must be specified.
-	KeyPath string `json:"keyPath,omitempty"`
-	// KeyData contains the trusted key(s), base64-encoded. Exactly one of KeyPath and KeyData must be specified.
-	KeyData []byte `json:"keyData,omitempty"`
-
-	// SignedIdentity specifies what image identity the signature must be claiming about the image.
-	// Defaults to "match-exact" if not specified.
-	SignedIdentity PolicyReferenceMatch `json:"signedIdentity"`
-}
-
-// sbKeyType are the allowed values for prSignedBy.KeyType
-type sbKeyType string
-
-const (
-	// SBKeyTypeGPGKeys refers to keys contained in a GPG keyring
-	SBKeyTypeGPGKeys sbKeyType = "GPGKeys"
-	// SBKeyTypeSignedByGPGKeys refers to keys signed by keys in a GPG keyring
-	SBKeyTypeSignedByGPGKeys sbKeyType = "signedByGPGKeys"
-	// SBKeyTypeX509Certificates refers to keys in a set of X.509 certificates
-	// FIXME: PEM, DER?
-	SBKeyTypeX509Certificates sbKeyType = "X509Certificates"
-	// SBKeyTypeSignedByX509CAs refers to keys signed by one of the X.509 CAs
-	// FIXME: PEM, DER?
-	SBKeyTypeSignedByX509CAs sbKeyType = "signedByX509CAs"
-)
-
-// prSignedBaseLayer is a PolicyRequirement with type = prSignedBaseLayer: the image has a specified, correctly signed, base image.
-type prSignedBaseLayer struct {
-	prCommon
-	// BaseLayerIdentity specifies the base image to look for. "match-exact" is rejected, "match-repository" is unlikely to be useful.
-	BaseLayerIdentity PolicyReferenceMatch `json:"baseLayerIdentity"`
-}
-
-// PolicyReferenceMatch specifies a set of image identities accepted in PolicyRequirement.
-// The type is public, but its implementation is private.
-
-// prmCommon is the common type field in a JSON encoding of PolicyReferenceMatch.
-type prmCommon struct {
-	Type prmTypeIdentifier `json:"type"`
-}
-
-// prmTypeIdentifier is string designating a kind of a PolicyReferenceMatch.
-type prmTypeIdentifier string
-
-const (
-	prmTypeMatchExact             prmTypeIdentifier = "matchExact"
-	prmTypeMatchRepoDigestOrExact prmTypeIdentifier = "matchRepoDigestOrExact"
-	prmTypeMatchRepository        prmTypeIdentifier = "matchRepository"
-	prmTypeExactReference         prmTypeIdentifier = "exactReference"
-	prmTypeExactRepository        prmTypeIdentifier = "exactRepository"
-)
-
-// prmMatchExact is a PolicyReferenceMatch with type = prmMatchExact: the two references must match exactly.
-type prmMatchExact struct {
-	prmCommon
-}
-
-// prmMatchRepoDigestOrExact is a PolicyReferenceMatch with type = prmMatchExactOrDigest: the two references must match exactly,
-// except that digest references are also accepted if the repository name matches (regardless of tag/digest) and the signature applies to the referenced digest
-type prmMatchRepoDigestOrExact struct {
-	prmCommon
-}
-
-// prmMatchRepository is a PolicyReferenceMatch with type = prmMatchRepository: the two references must use the same repository, may differ in the tag.
-type prmMatchRepository struct {
-	prmCommon
-}
-
-// prmExactReference is a PolicyReferenceMatch with type = prmExactReference: matches a specified reference exactly.
-type prmExactReference struct {
-	prmCommon
-	DockerReference string `json:"dockerReference"`
-}
-
-// prmExactRepository is a PolicyReferenceMatch with type = prmExactRepository: matches a specified repository, with any tag.
-type prmExactRepository struct {
-	prmCommon
-	DockerRepository string `json:"dockerRepository"`
-}
diff --git a/vendor/github.com/containers/image/signature/signature.go b/vendor/github.com/containers/image/signature/signature.go
deleted file mode 100644
index 41f13f72fd..0000000000
--- a/vendor/github.com/containers/image/signature/signature.go
+++ /dev/null
@@ -1,280 +0,0 @@
-// Note: Consider the API unstable until the code supports at least three different image formats or transports.
-
-// NOTE: Keep this in sync with docs/atomic-signature.md and docs/atomic-signature-embedded.json!
-
-package signature
-
-import (
-	"encoding/json"
-	"fmt"
-	"time"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/version"
-	"github.com/opencontainers/go-digest"
-)
-
-const (
-	signatureType = "atomic container signature"
-)
-
-// InvalidSignatureError is returned when parsing an invalid signature.
-type InvalidSignatureError struct {
-	msg string
-}
-
-func (err InvalidSignatureError) Error() string {
-	return err.msg
-}
-
-// Signature is a parsed content of a signature.
-// The only way to get this structure from a blob should be as a return value from a successful call to verifyAndExtractSignature below.
-type Signature struct {
-	DockerManifestDigest digest.Digest
-	DockerReference      string // FIXME: more precise type?
-}
-
-// untrustedSignature is a parsed content of a signature.
-type untrustedSignature struct {
-	UntrustedDockerManifestDigest digest.Digest
-	UntrustedDockerReference      string // FIXME: more precise type?
-	UntrustedCreatorID            *string
-	// This is intentionally an int64; the native JSON float64 type would allow to represent _some_ sub-second precision,
-	// but not nearly enough (with current timestamp values, a single unit in the last place is on the order of hundreds of nanoseconds).
-	// So, this is explicitly an int64, and we reject fractional values. If we did need more precise timestamps eventually,
-	// we would add another field, UntrustedTimestampNS int64.
-	UntrustedTimestamp *int64
-}
-
-// UntrustedSignatureInformation is information available in an untrusted signature.
-// This may be useful when debugging signature verification failures,
-// or when managing a set of signatures on a single image.
-//
-// WARNING: Do not use the contents of this for ANY security decisions,
-// and be VERY CAREFUL about showing this information to humans in any way which suggest that these values “are probably” reliable.
-// There is NO REASON to expect the values to be correct, or not intentionally misleading
-// (including things like “✅ Verified by $authority”)
-type UntrustedSignatureInformation struct {
-	UntrustedDockerManifestDigest digest.Digest
-	UntrustedDockerReference      string // FIXME: more precise type?
-	UntrustedCreatorID            *string
-	UntrustedTimestamp            *time.Time
-	UntrustedShortKeyIdentifier   string
-}
-
-// newUntrustedSignature returns an untrustedSignature object with
-// the specified primary contents and appropriate metadata.
-func newUntrustedSignature(dockerManifestDigest digest.Digest, dockerReference string) untrustedSignature {
-	// Use intermediate variables for these values so that we can take their addresses.
-	// Golang guarantees that they will have a new address on every execution.
-	creatorID := "atomic " + version.Version
-	timestamp := time.Now().Unix()
-	return untrustedSignature{
-		UntrustedDockerManifestDigest: dockerManifestDigest,
-		UntrustedDockerReference:      dockerReference,
-		UntrustedCreatorID:            &creatorID,
-		UntrustedTimestamp:            &timestamp,
-	}
-}
-
-// Compile-time check that untrustedSignature implements json.Marshaler
-var _ json.Marshaler = (*untrustedSignature)(nil)
-
-// MarshalJSON implements the json.Marshaler interface.
-func (s untrustedSignature) MarshalJSON() ([]byte, error) {
-	if s.UntrustedDockerManifestDigest == "" || s.UntrustedDockerReference == "" {
-		return nil, errors.New("Unexpected empty signature content")
-	}
-	critical := map[string]interface{}{
-		"type":     signatureType,
-		"image":    map[string]string{"docker-manifest-digest": s.UntrustedDockerManifestDigest.String()},
-		"identity": map[string]string{"docker-reference": s.UntrustedDockerReference},
-	}
-	optional := map[string]interface{}{}
-	if s.UntrustedCreatorID != nil {
-		optional["creator"] = *s.UntrustedCreatorID
-	}
-	if s.UntrustedTimestamp != nil {
-		optional["timestamp"] = *s.UntrustedTimestamp
-	}
-	signature := map[string]interface{}{
-		"critical": critical,
-		"optional": optional,
-	}
-	return json.Marshal(signature)
-}
-
-// Compile-time check that untrustedSignature implements json.Unmarshaler
-var _ json.Unmarshaler = (*untrustedSignature)(nil)
-
-// UnmarshalJSON implements the json.Unmarshaler interface
-func (s *untrustedSignature) UnmarshalJSON(data []byte) error {
-	err := s.strictUnmarshalJSON(data)
-	if err != nil {
-		if _, ok := err.(jsonFormatError); ok {
-			err = InvalidSignatureError{msg: err.Error()}
-		}
-	}
-	return err
-}
-
-// strictUnmarshalJSON is UnmarshalJSON, except that it may return the internal jsonFormatError error type.
-// Splitting it into a separate function allows us to do the jsonFormatError → InvalidSignatureError in a single place, the caller.
-func (s *untrustedSignature) strictUnmarshalJSON(data []byte) error {
-	var critical, optional json.RawMessage
-	if err := paranoidUnmarshalJSONObjectExactFields(data, map[string]interface{}{
-		"critical": &critical,
-		"optional": &optional,
-	}); err != nil {
-		return err
-	}
-
-	var creatorID string
-	var timestamp float64
-	var gotCreatorID, gotTimestamp = false, false
-	if err := paranoidUnmarshalJSONObject(optional, func(key string) interface{} {
-		switch key {
-		case "creator":
-			gotCreatorID = true
-			return &creatorID
-		case "timestamp":
-			gotTimestamp = true
-			return &timestamp
-		default:
-			var ignore interface{}
-			return &ignore
-		}
-	}); err != nil {
-		return err
-	}
-	if gotCreatorID {
-		s.UntrustedCreatorID = &creatorID
-	}
-	if gotTimestamp {
-		intTimestamp := int64(timestamp)
-		if float64(intTimestamp) != timestamp {
-			return InvalidSignatureError{msg: "Field optional.timestamp is not is not an integer"}
-		}
-		s.UntrustedTimestamp = &intTimestamp
-	}
-
-	var t string
-	var image, identity json.RawMessage
-	if err := paranoidUnmarshalJSONObjectExactFields(critical, map[string]interface{}{
-		"type":     &t,
-		"image":    &image,
-		"identity": &identity,
-	}); err != nil {
-		return err
-	}
-	if t != signatureType {
-		return InvalidSignatureError{msg: fmt.Sprintf("Unrecognized signature type %s", t)}
-	}
-
-	var digestString string
-	if err := paranoidUnmarshalJSONObjectExactFields(image, map[string]interface{}{
-		"docker-manifest-digest": &digestString,
-	}); err != nil {
-		return err
-	}
-	s.UntrustedDockerManifestDigest = digest.Digest(digestString)
-
-	return paranoidUnmarshalJSONObjectExactFields(identity, map[string]interface{}{
-		"docker-reference": &s.UntrustedDockerReference,
-	})
-}
-
-// Sign formats the signature and returns a blob signed using mech and keyIdentity
-// (If it seems surprising that this is a method on untrustedSignature, note that there
-// isn’t a good reason to think that a key used by the user is trusted by any component
-// of the system just because it is a private key — actually the presence of a private key
-// on the system increases the likelihood of an a successful attack on that private key
-// on that particular system.)
-func (s untrustedSignature) sign(mech SigningMechanism, keyIdentity string) ([]byte, error) {
-	json, err := json.Marshal(s)
-	if err != nil {
-		return nil, err
-	}
-
-	return mech.Sign(json, keyIdentity)
-}
-
-// signatureAcceptanceRules specifies how to decide whether an untrusted signature is acceptable.
-// We centralize the actual parsing and data extraction in verifyAndExtractSignature; this supplies
-// the policy.  We use an object instead of supplying func parameters to verifyAndExtractSignature
-// because the functions have the same or similar types, so there is a risk of exchanging the functions;
-// named members of this struct are more explicit.
-type signatureAcceptanceRules struct {
-	validateKeyIdentity                func(string) error
-	validateSignedDockerReference      func(string) error
-	validateSignedDockerManifestDigest func(digest.Digest) error
-}
-
-// verifyAndExtractSignature verifies that unverifiedSignature has been signed, and that its principial components
-// match expected values, both as specified by rules, and returns it
-func verifyAndExtractSignature(mech SigningMechanism, unverifiedSignature []byte, rules signatureAcceptanceRules) (*Signature, error) {
-	signed, keyIdentity, err := mech.Verify(unverifiedSignature)
-	if err != nil {
-		return nil, err
-	}
-	if err := rules.validateKeyIdentity(keyIdentity); err != nil {
-		return nil, err
-	}
-
-	var unmatchedSignature untrustedSignature
-	if err := json.Unmarshal(signed, &unmatchedSignature); err != nil {
-		return nil, InvalidSignatureError{msg: err.Error()}
-	}
-	if err := rules.validateSignedDockerManifestDigest(unmatchedSignature.UntrustedDockerManifestDigest); err != nil {
-		return nil, err
-	}
-	if err := rules.validateSignedDockerReference(unmatchedSignature.UntrustedDockerReference); err != nil {
-		return nil, err
-	}
-	// signatureAcceptanceRules have accepted this value.
-	return &Signature{
-		DockerManifestDigest: unmatchedSignature.UntrustedDockerManifestDigest,
-		DockerReference:      unmatchedSignature.UntrustedDockerReference,
-	}, nil
-}
-
-// GetUntrustedSignatureInformationWithoutVerifying extracts information available in an untrusted signature,
-// WITHOUT doing any cryptographic verification.
-// This may be useful when debugging signature verification failures,
-// or when managing a set of signatures on a single image.
-//
-// WARNING: Do not use the contents of this for ANY security decisions,
-// and be VERY CAREFUL about showing this information to humans in any way which suggest that these values “are probably” reliable.
-// There is NO REASON to expect the values to be correct, or not intentionally misleading
-// (including things like “✅ Verified by $authority”)
-func GetUntrustedSignatureInformationWithoutVerifying(untrustedSignatureBytes []byte) (*UntrustedSignatureInformation, error) {
-	// NOTE: This should eventualy do format autodetection.
-	mech, _, err := NewEphemeralGPGSigningMechanism([]byte{})
-	if err != nil {
-		return nil, err
-	}
-	defer mech.Close()
-
-	untrustedContents, shortKeyIdentifier, err := mech.UntrustedSignatureContents(untrustedSignatureBytes)
-	if err != nil {
-		return nil, err
-	}
-	var untrustedDecodedContents untrustedSignature
-	if err := json.Unmarshal(untrustedContents, &untrustedDecodedContents); err != nil {
-		return nil, InvalidSignatureError{msg: err.Error()}
-	}
-
-	var timestamp *time.Time // = nil
-	if untrustedDecodedContents.UntrustedTimestamp != nil {
-		ts := time.Unix(*untrustedDecodedContents.UntrustedTimestamp, 0)
-		timestamp = &ts
-	}
-	return &UntrustedSignatureInformation{
-		UntrustedDockerManifestDigest: untrustedDecodedContents.UntrustedDockerManifestDigest,
-		UntrustedDockerReference:      untrustedDecodedContents.UntrustedDockerReference,
-		UntrustedCreatorID:            untrustedDecodedContents.UntrustedCreatorID,
-		UntrustedTimestamp:            timestamp,
-		UntrustedShortKeyIdentifier:   shortKeyIdentifier,
-	}, nil
-}
diff --git a/vendor/github.com/containers/image/storage/storage_image.go b/vendor/github.com/containers/image/storage/storage_image.go
deleted file mode 100644
index 038195c16c..0000000000
--- a/vendor/github.com/containers/image/storage/storage_image.go
+++ /dev/null
@@ -1,808 +0,0 @@
-// +build !containers_image_storage_stub
-
-package storage
-
-import (
-	"bytes"
-	"context"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"sync/atomic"
-
-	"github.com/containers/image/image"
-	"github.com/containers/image/manifest"
-	"github.com/containers/image/types"
-	"github.com/containers/storage"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/ioutils"
-	digest "github.com/opencontainers/go-digest"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-const temporaryDirectoryForBigFiles = "/var/tmp" // Do not use the system default of os.TempDir(), usually /tmp, because with systemd it could be a tmpfs.
-
-var (
-	// ErrBlobDigestMismatch is returned when PutBlob() is given a blob
-	// with a digest-based name that doesn't match its contents.
-	ErrBlobDigestMismatch = errors.New("blob digest mismatch")
-	// ErrBlobSizeMismatch is returned when PutBlob() is given a blob
-	// with an expected size that doesn't match the reader.
-	ErrBlobSizeMismatch = errors.New("blob size mismatch")
-	// ErrNoManifestLists is returned when GetManifest() is called.
-	// with a non-nil instanceDigest.
-	ErrNoManifestLists = errors.New("manifest lists are not supported by this transport")
-	// ErrNoSuchImage is returned when we attempt to access an image which
-	// doesn't exist in the storage area.
-	ErrNoSuchImage = storage.ErrNotAnImage
-)
-
-type storageImageSource struct {
-	imageRef       storageReference
-	ID             string
-	layerPosition  map[digest.Digest]int // Where we are in reading a blob's layers
-	cachedManifest []byte                // A cached copy of the manifest, if already known, or nil
-	SignatureSizes []int                 `json:"signature-sizes,omitempty"` // List of sizes of each signature slice
-}
-
-type storageImageDestination struct {
-	image          types.ImageCloser
-	systemContext  *types.SystemContext
-	imageRef       storageReference                // The reference we'll use to name the image
-	publicRef      storageReference                // The reference we return when asked about the name we'll give to the image
-	directory      string                          // Temporary directory where we store blobs until Commit() time
-	nextTempFileID int32                           // A counter that we use for computing filenames to assign to blobs
-	manifest       []byte                          // Manifest contents, temporary
-	signatures     []byte                          // Signature contents, temporary
-	blobDiffIDs    map[digest.Digest]digest.Digest // Mapping from layer blobsums to their corresponding DiffIDs
-	fileSizes      map[digest.Digest]int64         // Mapping from layer blobsums to their sizes
-	filenames      map[digest.Digest]string        // Mapping from layer blobsums to names of files we used to hold them
-	SignatureSizes []int                           `json:"signature-sizes,omitempty"` // List of sizes of each signature slice
-}
-
-type storageImageCloser struct {
-	types.ImageCloser
-	size int64
-}
-
-// newImageSource sets up an image for reading.
-func newImageSource(imageRef storageReference) (*storageImageSource, error) {
-	// First, locate the image.
-	img, err := imageRef.resolveImage()
-	if err != nil {
-		return nil, err
-	}
-
-	// Build the reader object.
-	image := &storageImageSource{
-		imageRef:       imageRef,
-		ID:             img.ID,
-		layerPosition:  make(map[digest.Digest]int),
-		SignatureSizes: []int{},
-	}
-	if img.Metadata != "" {
-		if err := json.Unmarshal([]byte(img.Metadata), image); err != nil {
-			return nil, errors.Wrap(err, "error decoding metadata for source image")
-		}
-	}
-	return image, nil
-}
-
-// Reference returns the image reference that we used to find this image.
-func (s storageImageSource) Reference() types.ImageReference {
-	return s.imageRef
-}
-
-// Close cleans up any resources we tied up while reading the image.
-func (s storageImageSource) Close() error {
-	return nil
-}
-
-// GetBlob reads the data blob or filesystem layer which matches the digest and size, if given.
-func (s *storageImageSource) GetBlob(info types.BlobInfo) (rc io.ReadCloser, n int64, err error) {
-	rc, n, _, err = s.getBlobAndLayerID(info)
-	return rc, n, err
-}
-
-// getBlobAndLayer reads the data blob or filesystem layer which matches the digest and size, if given.
-func (s *storageImageSource) getBlobAndLayerID(info types.BlobInfo) (rc io.ReadCloser, n int64, layerID string, err error) {
-	var layer storage.Layer
-	var diffOptions *storage.DiffOptions
-	// We need a valid digest value.
-	err = info.Digest.Validate()
-	if err != nil {
-		return nil, -1, "", err
-	}
-	// Check if the blob corresponds to a diff that was used to initialize any layers.  Our
-	// callers should try to retrieve layers using their uncompressed digests, so no need to
-	// check if they're using one of the compressed digests, which we can't reproduce anyway.
-	layers, err := s.imageRef.transport.store.LayersByUncompressedDigest(info.Digest)
-	// If it's not a layer, then it must be a data item.
-	if len(layers) == 0 {
-		b, err := s.imageRef.transport.store.ImageBigData(s.ID, info.Digest.String())
-		if err != nil {
-			return nil, -1, "", err
-		}
-		r := bytes.NewReader(b)
-		logrus.Debugf("exporting opaque data as blob %q", info.Digest.String())
-		return ioutil.NopCloser(r), int64(r.Len()), "", nil
-	}
-	// Step through the list of matching layers.  Tests may want to verify that if we have multiple layers
-	// which claim to have the same contents, that we actually do have multiple layers, otherwise we could
-	// just go ahead and use the first one every time.
-	i := s.layerPosition[info.Digest]
-	s.layerPosition[info.Digest] = i + 1
-	if len(layers) > 0 {
-		layer = layers[i%len(layers)]
-	}
-	// Force the storage layer to not try to match any compression that was used when the layer was first
-	// handed to it.
-	noCompression := archive.Uncompressed
-	diffOptions = &storage.DiffOptions{
-		Compression: &noCompression,
-	}
-	if layer.UncompressedSize < 0 {
-		n = -1
-	} else {
-		n = layer.UncompressedSize
-	}
-	logrus.Debugf("exporting filesystem layer %q without compression for blob %q", layer.ID, info.Digest)
-	rc, err = s.imageRef.transport.store.Diff("", layer.ID, diffOptions)
-	if err != nil {
-		return nil, -1, "", err
-	}
-	return rc, n, layer.ID, err
-}
-
-// GetManifest() reads the image's manifest.
-func (s *storageImageSource) GetManifest(instanceDigest *digest.Digest) (manifestBlob []byte, MIMEType string, err error) {
-	if instanceDigest != nil {
-		return nil, "", ErrNoManifestLists
-	}
-	if len(s.cachedManifest) == 0 {
-		// We stored the manifest as an item named after storage.ImageDigestBigDataKey.
-		cachedBlob, err := s.imageRef.transport.store.ImageBigData(s.ID, storage.ImageDigestBigDataKey)
-		if err != nil {
-			return nil, "", err
-		}
-		s.cachedManifest = cachedBlob
-	}
-	return s.cachedManifest, manifest.GuessMIMEType(s.cachedManifest), err
-}
-
-// LayerInfosForCopy() returns the list of layer blobs that make up the root filesystem of
-// the image, after they've been decompressed.
-func (s *storageImageSource) LayerInfosForCopy() []types.BlobInfo {
-	simg, err := s.imageRef.transport.store.Image(s.ID)
-	if err != nil {
-		logrus.Errorf("error reading image %q: %v", s.ID, err)
-		return nil
-	}
-	updatedBlobInfos := []types.BlobInfo{}
-	layerID := simg.TopLayer
-	_, manifestType, err := s.GetManifest(nil)
-	if err != nil {
-		logrus.Errorf("error reading image manifest for %q: %v", s.ID, err)
-		return nil
-	}
-	uncompressedLayerType := ""
-	switch manifestType {
-	case imgspecv1.MediaTypeImageManifest:
-		uncompressedLayerType = imgspecv1.MediaTypeImageLayer
-	case manifest.DockerV2Schema1MediaType, manifest.DockerV2Schema1SignedMediaType, manifest.DockerV2Schema2MediaType:
-		// This is actually a compressed type, but there's no uncompressed type defined
-		uncompressedLayerType = manifest.DockerV2Schema2LayerMediaType
-	}
-	for layerID != "" {
-		layer, err := s.imageRef.transport.store.Layer(layerID)
-		if err != nil {
-			logrus.Errorf("error reading layer %q in image %q: %v", layerID, s.ID, err)
-			return nil
-		}
-		if layer.UncompressedDigest == "" {
-			logrus.Errorf("uncompressed digest for layer %q is unknown", layerID)
-			return nil
-		}
-		if layer.UncompressedSize < 0 {
-			logrus.Errorf("uncompressed size for layer %q is unknown", layerID)
-			return nil
-		}
-		blobInfo := types.BlobInfo{
-			Digest:    layer.UncompressedDigest,
-			Size:      layer.UncompressedSize,
-			MediaType: uncompressedLayerType,
-		}
-		updatedBlobInfos = append([]types.BlobInfo{blobInfo}, updatedBlobInfos...)
-		layerID = layer.Parent
-	}
-	return updatedBlobInfos
-}
-
-// GetSignatures() parses the image's signatures blob into a slice of byte slices.
-func (s *storageImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) (signatures [][]byte, err error) {
-	if instanceDigest != nil {
-		return nil, ErrNoManifestLists
-	}
-	var offset int
-	sigslice := [][]byte{}
-	signature := []byte{}
-	if len(s.SignatureSizes) > 0 {
-		signatureBlob, err := s.imageRef.transport.store.ImageBigData(s.ID, "signatures")
-		if err != nil {
-			return nil, errors.Wrapf(err, "error looking up signatures data for image %q", s.ID)
-		}
-		signature = signatureBlob
-	}
-	for _, length := range s.SignatureSizes {
-		sigslice = append(sigslice, signature[offset:offset+length])
-		offset += length
-	}
-	if offset != len(signature) {
-		return nil, errors.Errorf("signatures data contained %d extra bytes", len(signatures)-offset)
-	}
-	return sigslice, nil
-}
-
-// newImageDestination sets us up to write a new image, caching blobs in a temporary directory until
-// it's time to Commit() the image
-func newImageDestination(ctx *types.SystemContext, imageRef storageReference) (*storageImageDestination, error) {
-	directory, err := ioutil.TempDir(temporaryDirectoryForBigFiles, "storage")
-	if err != nil {
-		return nil, errors.Wrapf(err, "error creating a temporary directory")
-	}
-	// Break reading of the reference we're writing, so that copy.Image() won't try to rewrite
-	// schema1 image manifests to remove embedded references, since that changes the manifest's
-	// digest, and that makes the image unusable if we subsequently try to access it using a
-	// reference that mentions the no-longer-correct digest.
-	publicRef := imageRef
-	publicRef.name = nil
-	image := &storageImageDestination{
-		systemContext:  ctx,
-		imageRef:       imageRef,
-		publicRef:      publicRef,
-		directory:      directory,
-		blobDiffIDs:    make(map[digest.Digest]digest.Digest),
-		fileSizes:      make(map[digest.Digest]int64),
-		filenames:      make(map[digest.Digest]string),
-		SignatureSizes: []int{},
-	}
-	return image, nil
-}
-
-// Reference returns a mostly-usable image reference that can't return a DockerReference, to
-// avoid triggering logic in copy.Image() that rewrites schema 1 image manifests in order to
-// remove image names that they contain which don't match the value we're using.
-func (s storageImageDestination) Reference() types.ImageReference {
-	return s.publicRef
-}
-
-// Close cleans up the temporary directory.
-func (s *storageImageDestination) Close() error {
-	return os.RemoveAll(s.directory)
-}
-
-// ShouldCompressLayers indicates whether or not a caller should compress not-already-compressed
-// data when handing it to us.
-func (s storageImageDestination) ShouldCompressLayers() bool {
-	// We ultimately have to decompress layers to populate trees on disk, so callers shouldn't
-	// bother compressing them before handing them to us, if they're not already compressed.
-	return false
-}
-
-// PutBlob stores a layer or data blob in our temporary directory, checking that any information
-// in the blobinfo matches the incoming data.
-func (s *storageImageDestination) PutBlob(stream io.Reader, blobinfo types.BlobInfo) (types.BlobInfo, error) {
-	errorBlobInfo := types.BlobInfo{
-		Digest: "",
-		Size:   -1,
-	}
-	// Set up to digest the blob and count its size while saving it to a file.
-	hasher := digest.Canonical.Digester()
-	if blobinfo.Digest.Validate() == nil {
-		if a := blobinfo.Digest.Algorithm(); a.Available() {
-			hasher = a.Digester()
-		}
-	}
-	diffID := digest.Canonical.Digester()
-	filename := filepath.Join(s.directory, fmt.Sprintf("%d", atomic.AddInt32(&s.nextTempFileID, 1)))
-	file, err := os.OpenFile(filename, os.O_CREATE|os.O_TRUNC|os.O_WRONLY|os.O_EXCL, 0600)
-	if err != nil {
-		return errorBlobInfo, errors.Wrapf(err, "error creating temporary file %q", filename)
-	}
-	defer file.Close()
-	counter := ioutils.NewWriteCounter(hasher.Hash())
-	reader := io.TeeReader(io.TeeReader(stream, counter), file)
-	decompressed, err := archive.DecompressStream(reader)
-	if err != nil {
-		return errorBlobInfo, errors.Wrap(err, "error setting up to decompress blob")
-	}
-	// Copy the data to the file.
-	_, err = io.Copy(diffID.Hash(), decompressed)
-	decompressed.Close()
-	if err != nil {
-		return errorBlobInfo, errors.Wrapf(err, "error storing blob to file %q", filename)
-	}
-	// Ensure that any information that we were given about the blob is correct.
-	if blobinfo.Digest.Validate() == nil && blobinfo.Digest != hasher.Digest() {
-		return errorBlobInfo, ErrBlobDigestMismatch
-	}
-	if blobinfo.Size >= 0 && blobinfo.Size != counter.Count {
-		return errorBlobInfo, ErrBlobSizeMismatch
-	}
-	// Record information about the blob.
-	s.blobDiffIDs[hasher.Digest()] = diffID.Digest()
-	s.fileSizes[hasher.Digest()] = counter.Count
-	s.filenames[hasher.Digest()] = filename
-	blobDigest := blobinfo.Digest
-	if blobDigest.Validate() != nil {
-		blobDigest = hasher.Digest()
-	}
-	blobSize := blobinfo.Size
-	if blobSize < 0 {
-		blobSize = counter.Count
-	}
-	return types.BlobInfo{
-		Digest:    blobDigest,
-		Size:      blobSize,
-		MediaType: blobinfo.MediaType,
-	}, nil
-}
-
-// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be
-// reapplied using ReapplyBlob.
-//
-// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-// it returns a non-nil error only on an unexpected failure.
-func (s *storageImageDestination) HasBlob(blobinfo types.BlobInfo) (bool, int64, error) {
-	if blobinfo.Digest == "" {
-		return false, -1, errors.Errorf(`Can not check for a blob with unknown digest`)
-	}
-	if err := blobinfo.Digest.Validate(); err != nil {
-		return false, -1, errors.Wrapf(err, `Can not check for a blob with invalid digest`)
-	}
-	// Check if we've already cached it in a file.
-	if size, ok := s.fileSizes[blobinfo.Digest]; ok {
-		return true, size, nil
-	}
-	// Check if we have a wasn't-compressed layer in storage that's based on that blob.
-	layers, err := s.imageRef.transport.store.LayersByUncompressedDigest(blobinfo.Digest)
-	if err != nil && errors.Cause(err) != storage.ErrLayerUnknown {
-		return false, -1, errors.Wrapf(err, `Error looking for layers with digest %q`, blobinfo.Digest)
-	}
-	if len(layers) > 0 {
-		// Save this for completeness.
-		s.blobDiffIDs[blobinfo.Digest] = layers[0].UncompressedDigest
-		return true, layers[0].UncompressedSize, nil
-	}
-	// Check if we have a was-compressed layer in storage that's based on that blob.
-	layers, err = s.imageRef.transport.store.LayersByCompressedDigest(blobinfo.Digest)
-	if err != nil && errors.Cause(err) != storage.ErrLayerUnknown {
-		return false, -1, errors.Wrapf(err, `Error looking for compressed layers with digest %q`, blobinfo.Digest)
-	}
-	if len(layers) > 0 {
-		// Record the uncompressed value so that we can use it to calculate layer IDs.
-		s.blobDiffIDs[blobinfo.Digest] = layers[0].UncompressedDigest
-		return true, layers[0].CompressedSize, nil
-	}
-	// Nope, we don't have it.
-	return false, -1, nil
-}
-
-// ReapplyBlob is now a no-op, assuming HasBlob() says we already have it, since Commit() can just apply the
-// same one when it walks the list in the manifest.
-func (s *storageImageDestination) ReapplyBlob(blobinfo types.BlobInfo) (types.BlobInfo, error) {
-	present, size, err := s.HasBlob(blobinfo)
-	if !present {
-		return types.BlobInfo{}, errors.Errorf("error reapplying blob %+v: blob was not previously applied", blobinfo)
-	}
-	if err != nil {
-		return types.BlobInfo{}, errors.Wrapf(err, "error reapplying blob %+v", blobinfo)
-	}
-	blobinfo.Size = size
-	return blobinfo, nil
-}
-
-// computeID computes a recommended image ID based on information we have so far.  If
-// the manifest is not of a type that we recognize, we return an empty value, indicating
-// that since we don't have a recommendation, a random ID should be used if one needs
-// to be allocated.
-func (s *storageImageDestination) computeID(m manifest.Manifest) string {
-	// Build the diffID list.  We need the decompressed sums that we've been calculating to
-	// fill in the DiffIDs.  It's expected (but not enforced by us) that the number of
-	// diffIDs corresponds to the number of non-EmptyLayer entries in the history.
-	var diffIDs []digest.Digest
-	switch m.(type) {
-	case *manifest.Schema1:
-		// Build a list of the diffIDs we've generated for the non-throwaway FS layers,
-		// in reverse of the order in which they were originally listed.
-		s1, ok := m.(*manifest.Schema1)
-		if !ok {
-			// Shouldn't happen
-			logrus.Debugf("internal error reading schema 1 manifest")
-			return ""
-		}
-		for i, history := range s1.History {
-			compat := manifest.Schema1V1Compatibility{}
-			if err := json.Unmarshal([]byte(history.V1Compatibility), &compat); err != nil {
-				logrus.Debugf("internal error reading schema 1 history: %v", err)
-				return ""
-			}
-			if compat.ThrowAway {
-				continue
-			}
-			blobSum := s1.FSLayers[i].BlobSum
-			diffID, ok := s.blobDiffIDs[blobSum]
-			if !ok {
-				logrus.Infof("error looking up diffID for layer %q", blobSum.String())
-				return ""
-			}
-			diffIDs = append([]digest.Digest{diffID}, diffIDs...)
-		}
-	case *manifest.Schema2, *manifest.OCI1:
-		// We know the ID calculation for these formats doesn't actually use the diffIDs,
-		// so we don't need to populate the diffID list.
-	}
-	id, err := m.ImageID(diffIDs)
-	if err != nil {
-		return ""
-	}
-	return id
-}
-
-// getConfigBlob exists only to let us retrieve the configuration blob so that the manifest package can dig
-// information out of it for Inspect().
-func (s *storageImageDestination) getConfigBlob(info types.BlobInfo) ([]byte, error) {
-	if info.Digest == "" {
-		return nil, errors.Errorf(`no digest supplied when reading blob`)
-	}
-	if err := info.Digest.Validate(); err != nil {
-		return nil, errors.Wrapf(err, `invalid digest supplied when reading blob`)
-	}
-	// Assume it's a file, since we're only calling this from a place that expects to read files.
-	if filename, ok := s.filenames[info.Digest]; ok {
-		contents, err2 := ioutil.ReadFile(filename)
-		if err2 != nil {
-			return nil, errors.Wrapf(err2, `error reading blob from file %q`, filename)
-		}
-		return contents, nil
-	}
-	// If it's not a file, it's a bug, because we're not expecting to be asked for a layer.
-	return nil, errors.New("blob not found")
-}
-
-func (s *storageImageDestination) Commit() error {
-	// Find the list of layer blobs.
-	if len(s.manifest) == 0 {
-		return errors.New("Internal error: storageImageDestination.Commit() called without PutManifest()")
-	}
-	man, err := manifest.FromBlob(s.manifest, manifest.GuessMIMEType(s.manifest))
-	if err != nil {
-		return errors.Wrapf(err, "error parsing manifest")
-	}
-	layerBlobs := man.LayerInfos()
-	// Extract or find the layers.
-	lastLayer := ""
-	addedLayers := []string{}
-	for _, blob := range layerBlobs {
-		var diff io.ReadCloser
-		// Check if there's already a layer with the ID that we'd give to the result of applying
-		// this layer blob to its parent, if it has one, or the blob's hex value otherwise.
-		diffID, haveDiffID := s.blobDiffIDs[blob.Digest]
-		if !haveDiffID {
-			// Check if it's elsewhere and the caller just forgot to pass it to us in a PutBlob(),
-			// or to even check if we had it.
-			logrus.Debugf("looking for diffID for blob %+v", blob.Digest)
-			has, _, err := s.HasBlob(blob)
-			if err != nil {
-				return errors.Wrapf(err, "error checking for a layer based on blob %q", blob.Digest.String())
-			}
-			if !has {
-				return errors.Errorf("error determining uncompressed digest for blob %q", blob.Digest.String())
-			}
-			diffID, haveDiffID = s.blobDiffIDs[blob.Digest]
-			if !haveDiffID {
-				return errors.Errorf("we have blob %q, but don't know its uncompressed digest", blob.Digest.String())
-			}
-		}
-		id := diffID.Hex()
-		if lastLayer != "" {
-			id = digest.Canonical.FromBytes([]byte(lastLayer + "+" + diffID.Hex())).Hex()
-		}
-		if layer, err2 := s.imageRef.transport.store.Layer(id); layer != nil && err2 == nil {
-			// There's already a layer that should have the right contents, just reuse it.
-			lastLayer = layer.ID
-			continue
-		}
-		// Check if we cached a file with that blobsum.  If we didn't already have a layer with
-		// the blob's contents, we should have gotten a copy.
-		if filename, ok := s.filenames[blob.Digest]; ok {
-			// Use the file's contents to initialize the layer.
-			file, err2 := os.Open(filename)
-			if err2 != nil {
-				return errors.Wrapf(err2, "error opening file %q", filename)
-			}
-			defer file.Close()
-			diff = file
-		}
-		if diff == nil {
-			// Try to find a layer with contents matching that blobsum.
-			layer := ""
-			layers, err2 := s.imageRef.transport.store.LayersByUncompressedDigest(blob.Digest)
-			if err2 == nil && len(layers) > 0 {
-				layer = layers[0].ID
-			} else {
-				layers, err2 = s.imageRef.transport.store.LayersByCompressedDigest(blob.Digest)
-				if err2 == nil && len(layers) > 0 {
-					layer = layers[0].ID
-				}
-			}
-			if layer == "" {
-				return errors.Wrapf(err2, "error locating layer for blob %q", blob.Digest)
-			}
-			// Use the layer's contents to initialize the new layer.
-			noCompression := archive.Uncompressed
-			diffOptions := &storage.DiffOptions{
-				Compression: &noCompression,
-			}
-			diff, err2 = s.imageRef.transport.store.Diff("", layer, diffOptions)
-			if err2 != nil {
-				return errors.Wrapf(err2, "error reading layer %q for blob %q", layer, blob.Digest)
-			}
-			defer diff.Close()
-		}
-		if diff == nil {
-			// This shouldn't have happened.
-			return errors.Errorf("error applying blob %q: content not found", blob.Digest)
-		}
-		// Build the new layer using the diff, regardless of where it came from.
-		layer, _, err := s.imageRef.transport.store.PutLayer(id, lastLayer, nil, "", false, diff)
-		if err != nil {
-			return errors.Wrapf(err, "error adding layer with blob %q", blob.Digest)
-		}
-		lastLayer = layer.ID
-		addedLayers = append([]string{lastLayer}, addedLayers...)
-	}
-	// If one of those blobs was a configuration blob, then we can try to dig out the date when the image
-	// was originally created, in case we're just copying it.  If not, no harm done.
-	options := &storage.ImageOptions{}
-	if inspect, err := man.Inspect(s.getConfigBlob); err == nil {
-		logrus.Debugf("setting image creation date to %s", inspect.Created)
-		options.CreationDate = inspect.Created
-	}
-	if manifestDigest, err := manifest.Digest(s.manifest); err == nil {
-		options.Digest = manifestDigest
-	}
-	// Create the image record, pointing to the most-recently added layer.
-	intendedID := s.imageRef.id
-	if intendedID == "" {
-		intendedID = s.computeID(man)
-	}
-	oldNames := []string{}
-	img, err := s.imageRef.transport.store.CreateImage(intendedID, nil, lastLayer, "", options)
-	if err != nil {
-		if errors.Cause(err) != storage.ErrDuplicateID {
-			logrus.Debugf("error creating image: %q", err)
-			return errors.Wrapf(err, "error creating image %q", intendedID)
-		}
-		img, err = s.imageRef.transport.store.Image(intendedID)
-		if err != nil {
-			return errors.Wrapf(err, "error reading image %q", intendedID)
-		}
-		if img.TopLayer != lastLayer {
-			logrus.Debugf("error creating image: image with ID %q exists, but uses different layers", intendedID)
-			return errors.Wrapf(storage.ErrDuplicateID, "image with ID %q already exists, but uses a different top layer", intendedID)
-		}
-		logrus.Debugf("reusing image ID %q", img.ID)
-		oldNames = append(oldNames, img.Names...)
-	} else {
-		logrus.Debugf("created new image ID %q", img.ID)
-	}
-	// Add the non-layer blobs as data items.  Since we only share layers, they should all be in files, so
-	// we just need to screen out the ones that are actually layers to get the list of non-layers.
-	dataBlobs := make(map[digest.Digest]struct{})
-	for blob := range s.filenames {
-		dataBlobs[blob] = struct{}{}
-	}
-	for _, layerBlob := range layerBlobs {
-		delete(dataBlobs, layerBlob.Digest)
-	}
-	for blob := range dataBlobs {
-		v, err := ioutil.ReadFile(s.filenames[blob])
-		if err != nil {
-			return errors.Wrapf(err, "error copying non-layer blob %q to image", blob)
-		}
-		if err := s.imageRef.transport.store.SetImageBigData(img.ID, blob.String(), v); err != nil {
-			if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-				logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-			}
-			logrus.Debugf("error saving big data %q for image %q: %v", blob.String(), img.ID, err)
-			return errors.Wrapf(err, "error saving big data %q for image %q", blob.String(), img.ID)
-		}
-	}
-	// Set the reference's name on the image.
-	if name := s.imageRef.DockerReference(); len(oldNames) > 0 || name != nil {
-		names := []string{}
-		if name != nil {
-			names = append(names, verboseName(name))
-		}
-		if len(oldNames) > 0 {
-			names = append(names, oldNames...)
-		}
-		if err := s.imageRef.transport.store.SetNames(img.ID, names); err != nil {
-			if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-				logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-			}
-			logrus.Debugf("error setting names %v on image %q: %v", names, img.ID, err)
-			return errors.Wrapf(err, "error setting names %v on image %q", names, img.ID)
-		}
-		logrus.Debugf("set names of image %q to %v", img.ID, names)
-	}
-	// Save the manifest.  Use storage.ImageDigestBigDataKey as the item's
-	// name, so that its digest can be used to locate the image in the Store.
-	if err := s.imageRef.transport.store.SetImageBigData(img.ID, storage.ImageDigestBigDataKey, s.manifest); err != nil {
-		if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-			logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-		}
-		logrus.Debugf("error saving manifest for image %q: %v", img.ID, err)
-		return err
-	}
-	// Save the signatures, if we have any.
-	if len(s.signatures) > 0 {
-		if err := s.imageRef.transport.store.SetImageBigData(img.ID, "signatures", s.signatures); err != nil {
-			if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-				logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-			}
-			logrus.Debugf("error saving signatures for image %q: %v", img.ID, err)
-			return err
-		}
-	}
-	// Save our metadata.
-	metadata, err := json.Marshal(s)
-	if err != nil {
-		if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-			logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-		}
-		logrus.Debugf("error encoding metadata for image %q: %v", img.ID, err)
-		return err
-	}
-	if len(metadata) != 0 {
-		if err = s.imageRef.transport.store.SetMetadata(img.ID, string(metadata)); err != nil {
-			if _, err2 := s.imageRef.transport.store.DeleteImage(img.ID, true); err2 != nil {
-				logrus.Debugf("error deleting incomplete image %q: %v", img.ID, err2)
-			}
-			logrus.Debugf("error saving metadata for image %q: %v", img.ID, err)
-			return err
-		}
-		logrus.Debugf("saved image metadata %q", string(metadata))
-	}
-	return nil
-}
-
-var manifestMIMETypes = []string{
-	imgspecv1.MediaTypeImageManifest,
-	manifest.DockerV2Schema2MediaType,
-	manifest.DockerV2Schema1SignedMediaType,
-	manifest.DockerV2Schema1MediaType,
-}
-
-func (s *storageImageDestination) SupportedManifestMIMETypes() []string {
-	return manifestMIMETypes
-}
-
-// PutManifest writes the manifest to the destination.
-func (s *storageImageDestination) PutManifest(manifest []byte) error {
-	s.manifest = make([]byte, len(manifest))
-	copy(s.manifest, manifest)
-	return nil
-}
-
-// SupportsSignatures returns an error if we can't expect GetSignatures() to return data that was
-// previously supplied to PutSignatures().
-func (s *storageImageDestination) SupportsSignatures() error {
-	return nil
-}
-
-// AcceptsForeignLayerURLs returns false iff foreign layers in the manifest should actually be
-// uploaded to the image destination, true otherwise.
-func (s *storageImageDestination) AcceptsForeignLayerURLs() bool {
-	return false
-}
-
-// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-func (s *storageImageDestination) MustMatchRuntimeOS() bool {
-	return true
-}
-
-// PutSignatures records the image's signatures for committing as a single data blob.
-func (s *storageImageDestination) PutSignatures(signatures [][]byte) error {
-	sizes := []int{}
-	sigblob := []byte{}
-	for _, sig := range signatures {
-		sizes = append(sizes, len(sig))
-		newblob := make([]byte, len(sigblob)+len(sig))
-		copy(newblob, sigblob)
-		copy(newblob[len(sigblob):], sig)
-		sigblob = newblob
-	}
-	s.signatures = sigblob
-	s.SignatureSizes = sizes
-	return nil
-}
-
-// getSize() adds up the sizes of the image's data blobs (which includes the configuration blob), the
-// signatures, and the uncompressed sizes of all of the image's layers.
-func (s *storageImageSource) getSize() (int64, error) {
-	var sum int64
-	// Size up the data blobs.
-	dataNames, err := s.imageRef.transport.store.ListImageBigData(s.ID)
-	if err != nil {
-		return -1, errors.Wrapf(err, "error reading image %q", s.ID)
-	}
-	for _, dataName := range dataNames {
-		bigSize, err := s.imageRef.transport.store.ImageBigDataSize(s.ID, dataName)
-		if err != nil {
-			return -1, errors.Wrapf(err, "error reading data blob size %q for %q", dataName, s.ID)
-		}
-		sum += bigSize
-	}
-	// Add the signature sizes.
-	for _, sigSize := range s.SignatureSizes {
-		sum += int64(sigSize)
-	}
-	// Prepare to walk the layer list.
-	img, err := s.imageRef.transport.store.Image(s.ID)
-	if err != nil {
-		return -1, errors.Wrapf(err, "error reading image info %q", s.ID)
-	}
-	// Walk the layer list.
-	layerID := img.TopLayer
-	for layerID != "" {
-		layer, err := s.imageRef.transport.store.Layer(layerID)
-		if err != nil {
-			return -1, err
-		}
-		if layer.UncompressedDigest == "" || layer.UncompressedSize < 0 {
-			return -1, errors.Errorf("size for layer %q is unknown, failing getSize()", layerID)
-		}
-		sum += layer.UncompressedSize
-		if layer.Parent == "" {
-			break
-		}
-		layerID = layer.Parent
-	}
-	return sum, nil
-}
-
-// Size() adds up the sizes of the image's data blobs (which includes the configuration blob), the
-// signatures, and the uncompressed sizes of all of the image's layers.
-func (s *storageImageSource) Size() (int64, error) {
-	return s.getSize()
-}
-
-// Size() returns the previously-computed size of the image, with no error.
-func (s *storageImageCloser) Size() (int64, error) {
-	return s.size, nil
-}
-
-// newImage creates an image that also knows its size
-func newImage(ctx *types.SystemContext, s storageReference) (types.ImageCloser, error) {
-	src, err := newImageSource(s)
-	if err != nil {
-		return nil, err
-	}
-	img, err := image.FromSource(ctx, src)
-	if err != nil {
-		return nil, err
-	}
-	size, err := src.getSize()
-	if err != nil {
-		return nil, err
-	}
-	return &storageImageCloser{ImageCloser: img, size: size}, nil
-}
diff --git a/vendor/github.com/containers/image/storage/storage_reference.go b/vendor/github.com/containers/image/storage/storage_reference.go
deleted file mode 100644
index bcb00f60eb..0000000000
--- a/vendor/github.com/containers/image/storage/storage_reference.go
+++ /dev/null
@@ -1,209 +0,0 @@
-// +build !containers_image_storage_stub
-
-package storage
-
-import (
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/types"
-	"github.com/containers/storage"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-// A storageReference holds an arbitrary name and/or an ID, which is a 32-byte
-// value hex-encoded into a 64-character string, and a reference to a Store
-// where an image is, or would be, kept.
-type storageReference struct {
-	transport storageTransport
-	reference string
-	id        string
-	name      reference.Named
-	tag       string
-	digest    digest.Digest
-}
-
-func newReference(transport storageTransport, reference, id string, name reference.Named, tag string, digest digest.Digest) *storageReference {
-	// We take a copy of the transport, which contains a pointer to the
-	// store that it used for resolving this reference, so that the
-	// transport that we'll return from Transport() won't be affected by
-	// further calls to the original transport's SetStore() method.
-	return &storageReference{
-		transport: transport,
-		reference: reference,
-		id:        id,
-		name:      name,
-		tag:       tag,
-		digest:    digest,
-	}
-}
-
-// Resolve the reference's name to an image ID in the store, if there's already
-// one present with the same name or ID, and return the image.
-func (s *storageReference) resolveImage() (*storage.Image, error) {
-	if s.id == "" {
-		// Look for an image that has the expanded reference name as an explicit Name value.
-		image, err := s.transport.store.Image(s.reference)
-		if image != nil && err == nil {
-			s.id = image.ID
-		}
-	}
-	if s.id == "" && s.name != nil && s.digest != "" {
-		// Look for an image with the specified digest that has the same name,
-		// though possibly with a different tag or digest, as a Name value, so
-		// that the canonical reference can be implicitly resolved to the image.
-		images, err := s.transport.store.ImagesByDigest(s.digest)
-		if images != nil && err == nil {
-			repo := reference.FamiliarName(reference.TrimNamed(s.name))
-		search:
-			for _, image := range images {
-				for _, name := range image.Names {
-					if named, err := reference.ParseNormalizedNamed(name); err == nil {
-						if reference.FamiliarName(reference.TrimNamed(named)) == repo {
-							s.id = image.ID
-							break search
-						}
-					}
-				}
-			}
-		}
-	}
-	if s.id == "" {
-		logrus.Debugf("reference %q does not resolve to an image ID", s.StringWithinTransport())
-		return nil, errors.Wrapf(ErrNoSuchImage, "reference %q does not resolve to an image ID", s.StringWithinTransport())
-	}
-	img, err := s.transport.store.Image(s.id)
-	if err != nil {
-		return nil, errors.Wrapf(err, "error reading image %q", s.id)
-	}
-	if s.name != nil {
-		repo := reference.FamiliarName(reference.TrimNamed(s.name))
-		nameMatch := false
-		for _, name := range img.Names {
-			if named, err := reference.ParseNormalizedNamed(name); err == nil {
-				if reference.FamiliarName(reference.TrimNamed(named)) == repo {
-					nameMatch = true
-					break
-				}
-			}
-		}
-		if !nameMatch {
-			logrus.Errorf("no image matching reference %q found", s.StringWithinTransport())
-			return nil, ErrNoSuchImage
-		}
-	}
-	return img, nil
-}
-
-// Return a Transport object that defaults to using the same store that we used
-// to build this reference object.
-func (s storageReference) Transport() types.ImageTransport {
-	return &storageTransport{
-		store:         s.transport.store,
-		defaultUIDMap: s.transport.defaultUIDMap,
-		defaultGIDMap: s.transport.defaultGIDMap,
-	}
-}
-
-// Return a name with a tag or digest, if we have either, else return it bare.
-func (s storageReference) DockerReference() reference.Named {
-	if s.name == nil {
-		return nil
-	}
-	if s.tag != "" {
-		if namedTagged, err := reference.WithTag(s.name, s.tag); err == nil {
-			return namedTagged
-		}
-	}
-	if s.digest != "" {
-		if canonical, err := reference.WithDigest(s.name, s.digest); err == nil {
-			return canonical
-		}
-	}
-	return s.name
-}
-
-// Return a name with a tag, prefixed with the graph root and driver name, to
-// disambiguate between images which may be present in multiple stores and
-// share only their names.
-func (s storageReference) StringWithinTransport() string {
-	optionsList := ""
-	options := s.transport.store.GraphOptions()
-	if len(options) > 0 {
-		optionsList = ":" + strings.Join(options, ",")
-	}
-	storeSpec := "[" + s.transport.store.GraphDriverName() + "@" + s.transport.store.GraphRoot() + "+" + s.transport.store.RunRoot() + optionsList + "]"
-	if s.reference == "" {
-		return storeSpec + "@" + s.id
-	}
-	if s.id == "" {
-		return storeSpec + s.reference
-	}
-	return storeSpec + s.reference + "@" + s.id
-}
-
-func (s storageReference) PolicyConfigurationIdentity() string {
-	storeSpec := "[" + s.transport.store.GraphDriverName() + "@" + s.transport.store.GraphRoot() + "]"
-	if s.name == nil {
-		return storeSpec + "@" + s.id
-	}
-	if s.id == "" {
-		return storeSpec + s.reference
-	}
-	return storeSpec + s.reference + "@" + s.id
-}
-
-// Also accept policy that's tied to the combination of the graph root and
-// driver name, to apply to all images stored in the Store, and to just the
-// graph root, in case we're using multiple drivers in the same directory for
-// some reason.
-func (s storageReference) PolicyConfigurationNamespaces() []string {
-	storeSpec := "[" + s.transport.store.GraphDriverName() + "@" + s.transport.store.GraphRoot() + "]"
-	driverlessStoreSpec := "[" + s.transport.store.GraphRoot() + "]"
-	namespaces := []string{}
-	if s.name != nil {
-		name := reference.TrimNamed(s.name)
-		components := strings.Split(name.String(), "/")
-		for len(components) > 0 {
-			namespaces = append(namespaces, storeSpec+strings.Join(components, "/"))
-			components = components[:len(components)-1]
-		}
-	}
-	namespaces = append(namespaces, storeSpec)
-	namespaces = append(namespaces, driverlessStoreSpec)
-	return namespaces
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (s storageReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	return newImage(ctx, s)
-}
-
-func (s storageReference) DeleteImage(ctx *types.SystemContext) error {
-	img, err := s.resolveImage()
-	if err != nil {
-		return err
-	}
-	layers, err := s.transport.store.DeleteImage(img.ID, true)
-	if err == nil {
-		logrus.Debugf("deleted image %q", img.ID)
-		for _, layer := range layers {
-			logrus.Debugf("deleted layer %q", layer)
-		}
-	}
-	return err
-}
-
-func (s storageReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	return newImageSource(s)
-}
-
-func (s storageReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return newImageDestination(ctx, s)
-}
diff --git a/vendor/github.com/containers/image/storage/storage_transport.go b/vendor/github.com/containers/image/storage/storage_transport.go
deleted file mode 100644
index f6ebcdc4a3..0000000000
--- a/vendor/github.com/containers/image/storage/storage_transport.go
+++ /dev/null
@@ -1,450 +0,0 @@
-// +build !containers_image_storage_stub
-
-package storage
-
-import (
-	"path/filepath"
-	"strings"
-
-	"github.com/pkg/errors"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/containers/storage"
-	"github.com/containers/storage/pkg/idtools"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/sirupsen/logrus"
-)
-
-const (
-	minimumTruncatedIDLength = 3
-)
-
-func init() {
-	transports.Register(Transport)
-}
-
-var (
-	// Transport is an ImageTransport that uses either a default
-	// storage.Store or one that's it's explicitly told to use.
-	Transport StoreTransport = &storageTransport{}
-	// ErrInvalidReference is returned when ParseReference() is passed an
-	// empty reference.
-	ErrInvalidReference = errors.New("invalid reference")
-	// ErrPathNotAbsolute is returned when a graph root is not an absolute
-	// path name.
-	ErrPathNotAbsolute = errors.New("path name is not absolute")
-)
-
-// StoreTransport is an ImageTransport that uses a storage.Store to parse
-// references, either its own default or one that it's told to use.
-type StoreTransport interface {
-	types.ImageTransport
-	// SetStore sets the default store for this transport.
-	SetStore(storage.Store)
-	// GetImage retrieves the image from the transport's store that's named
-	// by the reference.
-	GetImage(types.ImageReference) (*storage.Image, error)
-	// GetStoreImage retrieves the image from a specified store that's named
-	// by the reference.
-	GetStoreImage(storage.Store, types.ImageReference) (*storage.Image, error)
-	// ParseStoreReference parses a reference, overriding any store
-	// specification that it may contain.
-	ParseStoreReference(store storage.Store, reference string) (*storageReference, error)
-	// SetDefaultUIDMap sets the default UID map to use when opening stores.
-	SetDefaultUIDMap(idmap []idtools.IDMap)
-	// SetDefaultGIDMap sets the default GID map to use when opening stores.
-	SetDefaultGIDMap(idmap []idtools.IDMap)
-	// DefaultUIDMap returns the default UID map used when opening stores.
-	DefaultUIDMap() []idtools.IDMap
-	// DefaultGIDMap returns the default GID map used when opening stores.
-	DefaultGIDMap() []idtools.IDMap
-}
-
-type storageTransport struct {
-	store         storage.Store
-	defaultUIDMap []idtools.IDMap
-	defaultGIDMap []idtools.IDMap
-}
-
-func (s *storageTransport) Name() string {
-	// Still haven't really settled on a name.
-	return "containers-storage"
-}
-
-// SetStore sets the Store object which the Transport will use for parsing
-// references when information about a Store is not directly specified as part
-// of the reference.  If one is not set, the library will attempt to initialize
-// one with default settings when a reference needs to be parsed.  Calling
-// SetStore does not affect previously parsed references.
-func (s *storageTransport) SetStore(store storage.Store) {
-	s.store = store
-}
-
-// SetDefaultUIDMap sets the default UID map to use when opening stores.
-func (s *storageTransport) SetDefaultUIDMap(idmap []idtools.IDMap) {
-	s.defaultUIDMap = idmap
-}
-
-// SetDefaultGIDMap sets the default GID map to use when opening stores.
-func (s *storageTransport) SetDefaultGIDMap(idmap []idtools.IDMap) {
-	s.defaultGIDMap = idmap
-}
-
-// DefaultUIDMap returns the default UID map used when opening stores.
-func (s *storageTransport) DefaultUIDMap() []idtools.IDMap {
-	return s.defaultUIDMap
-}
-
-// DefaultGIDMap returns the default GID map used when opening stores.
-func (s *storageTransport) DefaultGIDMap() []idtools.IDMap {
-	return s.defaultGIDMap
-}
-
-// ParseStoreReference takes a name or an ID, tries to figure out which it is
-// relative to the given store, and returns it in a reference object.
-func (s storageTransport) ParseStoreReference(store storage.Store, ref string) (*storageReference, error) {
-	var name reference.Named
-	if ref == "" {
-		return nil, errors.Wrapf(ErrInvalidReference, "%q is an empty reference")
-	}
-	if ref[0] == '[' {
-		// Ignore the store specifier.
-		closeIndex := strings.IndexRune(ref, ']')
-		if closeIndex < 1 {
-			return nil, errors.Wrapf(ErrInvalidReference, "store specifier in %q did not end", ref)
-		}
-		ref = ref[closeIndex+1:]
-	}
-
-	// The last segment, if there's more than one, is either a digest from a reference, or an image ID.
-	split := strings.LastIndex(ref, "@")
-	idOrDigest := ""
-	if split != -1 {
-		// Peel off that last bit so that we can work on the rest.
-		idOrDigest = ref[split+1:]
-		if idOrDigest == "" {
-			return nil, errors.Wrapf(ErrInvalidReference, "%q does not look like a digest or image ID", idOrDigest)
-		}
-		ref = ref[:split]
-	}
-
-	// The middle segment (now the last segment), if there is one, is a digest.
-	split = strings.LastIndex(ref, "@")
-	sum := digest.Digest("")
-	if split != -1 {
-		sum = digest.Digest(ref[split+1:])
-		if sum == "" {
-			return nil, errors.Wrapf(ErrInvalidReference, "%q does not look like an image digest", sum)
-		}
-		ref = ref[:split]
-	}
-
-	// If we have something that unambiguously should be a digest, validate it, and then the third part,
-	// if we have one, as an ID.
-	id := ""
-	if sum != "" {
-		if idSum, err := digest.Parse("sha256:" + idOrDigest); err != nil || idSum.Validate() != nil {
-			return nil, errors.Wrapf(ErrInvalidReference, "%q does not look like an image ID", idOrDigest)
-		}
-		if err := sum.Validate(); err != nil {
-			return nil, errors.Wrapf(ErrInvalidReference, "%q does not look like an image digest", sum)
-		}
-		id = idOrDigest
-		if img, err := store.Image(idOrDigest); err == nil && img != nil && len(idOrDigest) >= minimumTruncatedIDLength && strings.HasPrefix(img.ID, idOrDigest) {
-			// The ID is a truncated version of the ID of an image that's present in local storage,
-			// so we might as well use the expanded value.
-			id = img.ID
-		}
-	} else if idOrDigest != "" {
-		// There was no middle portion, so the final portion could be either a digest or an ID.
-		if idSum, err := digest.Parse("sha256:" + idOrDigest); err == nil && idSum.Validate() == nil {
-			// It's an ID.
-			id = idOrDigest
-		} else if idSum, err := digest.Parse(idOrDigest); err == nil && idSum.Validate() == nil {
-			// It's a digest.
-			sum = idSum
-		} else if img, err := store.Image(idOrDigest); err == nil && img != nil && len(idOrDigest) >= minimumTruncatedIDLength && strings.HasPrefix(img.ID, idOrDigest) {
-			// It's a truncated version of the ID of an image that's present in local storage,
-			// and we may need the expanded value.
-			id = img.ID
-		} else {
-			return nil, errors.Wrapf(ErrInvalidReference, "%q does not look like a digest or image ID", idOrDigest)
-		}
-	}
-
-	// If we only had one portion, then _maybe_ it's a truncated image ID.  Only check on that if it's
-	// at least of what we guess is a reasonable minimum length, because we don't want a really short value
-	// like "a" matching an image by ID prefix when the input was actually meant to specify an image name.
-	if len(ref) >= minimumTruncatedIDLength && sum == "" && id == "" {
-		if img, err := store.Image(ref); err == nil && img != nil && strings.HasPrefix(img.ID, ref) {
-			// It's a truncated version of the ID of an image that's present in local storage;
-			// we need to expand it.
-			id = img.ID
-			ref = ""
-		}
-	}
-
-	// The initial portion is probably a name, possibly with a tag.
-	if ref != "" {
-		var err error
-		if name, err = reference.ParseNormalizedNamed(ref); err != nil {
-			return nil, errors.Wrapf(err, "error parsing named reference %q", ref)
-		}
-	}
-	if name == nil && sum == "" && id == "" {
-		return nil, errors.Errorf("error parsing reference")
-	}
-
-	// Construct a copy of the store spec.
-	optionsList := ""
-	options := store.GraphOptions()
-	if len(options) > 0 {
-		optionsList = ":" + strings.Join(options, ",")
-	}
-	storeSpec := "[" + store.GraphDriverName() + "@" + store.GraphRoot() + "+" + store.RunRoot() + optionsList + "]"
-
-	// Convert the name back into a reference string, if we got a name.
-	refname := ""
-	tag := ""
-	if name != nil {
-		if sum.Validate() == nil {
-			canonical, err := reference.WithDigest(name, sum)
-			if err != nil {
-				return nil, errors.Wrapf(err, "error mixing name %q with digest %q", name, sum)
-			}
-			refname = verboseName(canonical)
-		} else {
-			name = reference.TagNameOnly(name)
-			tagged, ok := name.(reference.Tagged)
-			if !ok {
-				return nil, errors.Errorf("error parsing possibly-tagless name %q", ref)
-			}
-			refname = verboseName(name)
-			tag = tagged.Tag()
-		}
-	}
-	if refname == "" {
-		logrus.Debugf("parsed reference to id into %q", storeSpec+"@"+id)
-	} else if id == "" {
-		logrus.Debugf("parsed reference to refname into %q", storeSpec+refname)
-	} else {
-		logrus.Debugf("parsed reference to refname@id into %q", storeSpec+refname+"@"+id)
-	}
-	return newReference(storageTransport{store: store, defaultUIDMap: s.defaultUIDMap, defaultGIDMap: s.defaultGIDMap}, refname, id, name, tag, sum), nil
-}
-
-func (s *storageTransport) GetStore() (storage.Store, error) {
-	// Return the transport's previously-set store.  If we don't have one
-	// of those, initialize one now.
-	if s.store == nil {
-		options := storage.DefaultStoreOptions
-		options.UIDMap = s.defaultUIDMap
-		options.GIDMap = s.defaultGIDMap
-		store, err := storage.GetStore(options)
-		if err != nil {
-			return nil, err
-		}
-		s.store = store
-	}
-	return s.store, nil
-}
-
-// ParseReference takes a name and a tag or digest and/or ID
-// ("_name_"/"@_id_"/"_name_:_tag_"/"_name_:_tag_@_id_"/"_name_@_digest_"/"_name_@_digest_@_id_"),
-// possibly prefixed with a store specifier in the form "[_graphroot_]" or
-// "[_driver_@_graphroot_]" or "[_driver_@_graphroot_+_runroot_]" or
-// "[_driver_@_graphroot_:_options_]" or "[_driver_@_graphroot_+_runroot_:_options_]",
-// tries to figure out which it is, and returns it in a reference object.
-// If _id_ is the ID of an image that's present in local storage, it can be truncated, and
-// even be specified as if it were a _name_, value.
-func (s *storageTransport) ParseReference(reference string) (types.ImageReference, error) {
-	var store storage.Store
-	// Check if there's a store location prefix.  If there is, then it
-	// needs to match a store that was previously initialized using
-	// storage.GetStore(), or be enough to let the storage library fill out
-	// the rest using knowledge that it has from elsewhere.
-	if reference[0] == '[' {
-		closeIndex := strings.IndexRune(reference, ']')
-		if closeIndex < 1 {
-			return nil, ErrInvalidReference
-		}
-		storeSpec := reference[1:closeIndex]
-		reference = reference[closeIndex+1:]
-		// Peel off a "driver@" from the start.
-		driverInfo := ""
-		driverSplit := strings.SplitN(storeSpec, "@", 2)
-		if len(driverSplit) != 2 {
-			if storeSpec == "" {
-				return nil, ErrInvalidReference
-			}
-		} else {
-			driverInfo = driverSplit[0]
-			if driverInfo == "" {
-				return nil, ErrInvalidReference
-			}
-			storeSpec = driverSplit[1]
-			if storeSpec == "" {
-				return nil, ErrInvalidReference
-			}
-		}
-		// Peel off a ":options" from the end.
-		var options []string
-		optionsSplit := strings.SplitN(storeSpec, ":", 2)
-		if len(optionsSplit) == 2 {
-			options = strings.Split(optionsSplit[1], ",")
-			storeSpec = optionsSplit[0]
-		}
-		// Peel off a "+runroot" from the new end.
-		runRootInfo := ""
-		runRootSplit := strings.SplitN(storeSpec, "+", 2)
-		if len(runRootSplit) == 2 {
-			runRootInfo = runRootSplit[1]
-			storeSpec = runRootSplit[0]
-		}
-		// The rest is our graph root.
-		rootInfo := storeSpec
-		// Check that any paths are absolute paths.
-		if rootInfo != "" && !filepath.IsAbs(rootInfo) {
-			return nil, ErrPathNotAbsolute
-		}
-		if runRootInfo != "" && !filepath.IsAbs(runRootInfo) {
-			return nil, ErrPathNotAbsolute
-		}
-		store2, err := storage.GetStore(storage.StoreOptions{
-			GraphDriverName:    driverInfo,
-			GraphRoot:          rootInfo,
-			RunRoot:            runRootInfo,
-			GraphDriverOptions: options,
-			UIDMap:             s.defaultUIDMap,
-			GIDMap:             s.defaultGIDMap,
-		})
-		if err != nil {
-			return nil, err
-		}
-		store = store2
-	} else {
-		// We didn't have a store spec, so use the default.
-		store2, err := s.GetStore()
-		if err != nil {
-			return nil, err
-		}
-		store = store2
-	}
-	return s.ParseStoreReference(store, reference)
-}
-
-func (s storageTransport) GetStoreImage(store storage.Store, ref types.ImageReference) (*storage.Image, error) {
-	dref := ref.DockerReference()
-	if dref != nil {
-		if img, err := store.Image(verboseName(dref)); err == nil {
-			return img, nil
-		}
-	}
-	if sref, ok := ref.(*storageReference); ok {
-		if sref.id != "" {
-			if img, err := store.Image(sref.id); err == nil {
-				return img, nil
-			}
-		}
-		tmpRef := *sref
-		if img, err := tmpRef.resolveImage(); err == nil {
-			return img, nil
-		}
-	}
-	return nil, storage.ErrImageUnknown
-}
-
-func (s *storageTransport) GetImage(ref types.ImageReference) (*storage.Image, error) {
-	store, err := s.GetStore()
-	if err != nil {
-		return nil, err
-	}
-	return s.GetStoreImage(store, ref)
-}
-
-func (s storageTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// Check that there's a store location prefix.  Values we're passed are
-	// expected to come from PolicyConfigurationIdentity or
-	// PolicyConfigurationNamespaces, so if there's no store location,
-	// something's wrong.
-	if scope[0] != '[' {
-		return ErrInvalidReference
-	}
-	// Parse the store location prefix.
-	closeIndex := strings.IndexRune(scope, ']')
-	if closeIndex < 1 {
-		return ErrInvalidReference
-	}
-	storeSpec := scope[1:closeIndex]
-	scope = scope[closeIndex+1:]
-	storeInfo := strings.SplitN(storeSpec, "@", 2)
-	if len(storeInfo) == 1 && storeInfo[0] != "" {
-		// One component: the graph root.
-		if !filepath.IsAbs(storeInfo[0]) {
-			return ErrPathNotAbsolute
-		}
-	} else if len(storeInfo) == 2 && storeInfo[0] != "" && storeInfo[1] != "" {
-		// Two components: the driver type and the graph root.
-		if !filepath.IsAbs(storeInfo[1]) {
-			return ErrPathNotAbsolute
-		}
-	} else {
-		// Anything else: scope specified in a form we don't
-		// recognize.
-		return ErrInvalidReference
-	}
-	// That might be all of it, and that's okay.
-	if scope == "" {
-		return nil
-	}
-	// But if there is anything left, it has to be a name, with or without
-	// a tag, with or without an ID, since we don't return namespace values
-	// that are just bare IDs.
-	scopeInfo := strings.SplitN(scope, "@", 2)
-	if len(scopeInfo) == 1 && scopeInfo[0] != "" {
-		_, err := reference.ParseNormalizedNamed(scopeInfo[0])
-		if err != nil {
-			return err
-		}
-	} else if len(scopeInfo) == 2 && scopeInfo[0] != "" && scopeInfo[1] != "" {
-		_, err := reference.ParseNormalizedNamed(scopeInfo[0])
-		if err != nil {
-			return err
-		}
-		_, err = digest.Parse("sha256:" + scopeInfo[1])
-		if err != nil {
-			return err
-		}
-	} else {
-		return ErrInvalidReference
-	}
-	return nil
-}
-
-func verboseName(r reference.Reference) string {
-	if r == nil {
-		return ""
-	}
-	named, isNamed := r.(reference.Named)
-	digested, isDigested := r.(reference.Digested)
-	tagged, isTagged := r.(reference.Tagged)
-	name := ""
-	tag := ""
-	sum := ""
-	if isNamed {
-		name = (reference.TrimNamed(named)).String()
-	}
-	if isTagged {
-		if tagged.Tag() != "" {
-			tag = ":" + tagged.Tag()
-		}
-	}
-	if isDigested {
-		if digested.Digest().Validate() == nil {
-			sum = "@" + digested.Digest().String()
-		}
-	}
-	return name + tag + sum
-}
diff --git a/vendor/github.com/containers/image/tarball/doc.go b/vendor/github.com/containers/image/tarball/doc.go
deleted file mode 100644
index a6ced5a0ee..0000000000
--- a/vendor/github.com/containers/image/tarball/doc.go
+++ /dev/null
@@ -1,48 +0,0 @@
-// Package tarball provides a way to generate images using one or more layer
-// tarballs and an optional template configuration.
-//
-// An example:
-//	package main
-//
-//	import (
-//		"fmt"
-//
-//		cp "github.com/containers/image/copy"
-//		"github.com/containers/image/tarball"
-//		"github.com/containers/image/transports/alltransports"
-//
-//		imgspecv1 "github.com/containers/image/transports/alltransports"
-//	)
-//
-//	func imageFromTarball() {
-//		src, err := alltransports.ParseImageName("tarball:/var/cache/mock/fedora-26-x86_64/root_cache/cache.tar.gz")
-//		// - or -
-//		// src, err := tarball.Transport.ParseReference("/var/cache/mock/fedora-26-x86_64/root_cache/cache.tar.gz")
-//		if err != nil {
-//			panic(err)
-//		}
-//		updater, ok := src.(tarball.ConfigUpdater)
-//		if !ok {
-//			panic("unexpected: a tarball reference should implement tarball.ConfigUpdater")
-//		}
-//		config := imgspecv1.Image{
-//			Config: imgspecv1.ImageConfig{
-//				Cmd: []string{"/bin/bash"},
-//			},
-//		}
-//		annotations := make(map[string]string)
-//		annotations[imgspecv1.AnnotationDescription] = "test image built from a mock root cache"
-//		err = updater.ConfigUpdate(config, annotations)
-//		if err != nil {
-//			panic(err)
-//		}
-//		dest, err := alltransports.ParseImageName("docker-daemon:mock:latest")
-//		if err != nil {
-//			panic(err)
-//		}
-//		err = cp.Image(nil, dest, src, nil)
-//		if err != nil {
-//			panic(err)
-//		}
-//	}
-package tarball
diff --git a/vendor/github.com/containers/image/tarball/tarball_reference.go b/vendor/github.com/containers/image/tarball/tarball_reference.go
deleted file mode 100644
index a0819ac580..0000000000
--- a/vendor/github.com/containers/image/tarball/tarball_reference.go
+++ /dev/null
@@ -1,93 +0,0 @@
-package tarball
-
-import (
-	"fmt"
-	"os"
-	"strings"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/containers/image/image"
-	"github.com/containers/image/types"
-
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-// ConfigUpdater is an interface that ImageReferences for "tarball" images also
-// implement.  It can be used to set values for a configuration, and to set
-// image annotations which will be present in the images returned by the
-// reference's NewImage() or NewImageSource() methods.
-type ConfigUpdater interface {
-	ConfigUpdate(config imgspecv1.Image, annotations map[string]string) error
-}
-
-type tarballReference struct {
-	transport   types.ImageTransport
-	config      imgspecv1.Image
-	annotations map[string]string
-	filenames   []string
-	stdin       []byte
-}
-
-// ConfigUpdate updates the image's default configuration and adds annotations
-// which will be visible in source images created using this reference.
-func (r *tarballReference) ConfigUpdate(config imgspecv1.Image, annotations map[string]string) error {
-	r.config = config
-	if r.annotations == nil {
-		r.annotations = make(map[string]string)
-	}
-	for k, v := range annotations {
-		r.annotations[k] = v
-	}
-	return nil
-}
-
-func (r *tarballReference) Transport() types.ImageTransport {
-	return r.transport
-}
-
-func (r *tarballReference) StringWithinTransport() string {
-	return strings.Join(r.filenames, ":")
-}
-
-func (r *tarballReference) DockerReference() reference.Named {
-	return nil
-}
-
-func (r *tarballReference) PolicyConfigurationIdentity() string {
-	return ""
-}
-
-func (r *tarballReference) PolicyConfigurationNamespaces() []string {
-	return nil
-}
-
-// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-// The caller must call .Close() on the returned ImageCloser.
-// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-func (r *tarballReference) NewImage(ctx *types.SystemContext) (types.ImageCloser, error) {
-	src, err := r.NewImageSource(ctx)
-	if err != nil {
-		return nil, err
-	}
-	img, err := image.FromSource(ctx, src)
-	if err != nil {
-		src.Close()
-		return nil, err
-	}
-	return img, nil
-}
-
-func (r *tarballReference) DeleteImage(ctx *types.SystemContext) error {
-	for _, filename := range r.filenames {
-		if err := os.Remove(filename); err != nil && !os.IsNotExist(err) {
-			return fmt.Errorf("error removing %q: %v", filename, err)
-		}
-	}
-	return nil
-}
-
-func (r *tarballReference) NewImageDestination(ctx *types.SystemContext) (types.ImageDestination, error) {
-	return nil, fmt.Errorf(`"tarball:" locations can only be read from, not written to`)
-}
diff --git a/vendor/github.com/containers/image/tarball/tarball_src.go b/vendor/github.com/containers/image/tarball/tarball_src.go
deleted file mode 100644
index 8b5b496dae..0000000000
--- a/vendor/github.com/containers/image/tarball/tarball_src.go
+++ /dev/null
@@ -1,260 +0,0 @@
-package tarball
-
-import (
-	"bytes"
-	"compress/gzip"
-	"context"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"runtime"
-	"strings"
-	"time"
-
-	"github.com/containers/image/types"
-
-	digest "github.com/opencontainers/go-digest"
-	imgspecs "github.com/opencontainers/image-spec/specs-go"
-	imgspecv1 "github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-type tarballImageSource struct {
-	reference  tarballReference
-	filenames  []string
-	diffIDs    []digest.Digest
-	diffSizes  []int64
-	blobIDs    []digest.Digest
-	blobSizes  []int64
-	blobTypes  []string
-	config     []byte
-	configID   digest.Digest
-	configSize int64
-	manifest   []byte
-}
-
-func (r *tarballReference) NewImageSource(ctx *types.SystemContext) (types.ImageSource, error) {
-	// Gather up the digests, sizes, and date information for all of the files.
-	filenames := []string{}
-	diffIDs := []digest.Digest{}
-	diffSizes := []int64{}
-	blobIDs := []digest.Digest{}
-	blobSizes := []int64{}
-	blobTimes := []time.Time{}
-	blobTypes := []string{}
-	for _, filename := range r.filenames {
-		var file *os.File
-		var err error
-		var blobSize int64
-		var blobTime time.Time
-		var reader io.Reader
-		if filename == "-" {
-			blobSize = int64(len(r.stdin))
-			blobTime = time.Now()
-			reader = bytes.NewReader(r.stdin)
-		} else {
-			file, err = os.Open(filename)
-			if err != nil {
-				return nil, fmt.Errorf("error opening %q for reading: %v", filename, err)
-			}
-			defer file.Close()
-			reader = file
-			fileinfo, err := file.Stat()
-			if err != nil {
-				return nil, fmt.Errorf("error reading size of %q: %v", filename, err)
-			}
-			blobSize = fileinfo.Size()
-			blobTime = fileinfo.ModTime()
-		}
-
-		// Default to assuming the layer is compressed.
-		layerType := imgspecv1.MediaTypeImageLayerGzip
-
-		// Set up to digest the file as it is.
-		blobIDdigester := digest.Canonical.Digester()
-		reader = io.TeeReader(reader, blobIDdigester.Hash())
-
-		// Set up to digest the file after we maybe decompress it.
-		diffIDdigester := digest.Canonical.Digester()
-		uncompressed, err := gzip.NewReader(reader)
-		if err == nil {
-			// It is compressed, so the diffID is the digest of the uncompressed version
-			reader = io.TeeReader(uncompressed, diffIDdigester.Hash())
-		} else {
-			// It is not compressed, so the diffID and the blobID are going to be the same
-			diffIDdigester = blobIDdigester
-			layerType = imgspecv1.MediaTypeImageLayer
-			uncompressed = nil
-		}
-		n, err := io.Copy(ioutil.Discard, reader)
-		if err != nil {
-			return nil, fmt.Errorf("error reading %q: %v", filename, err)
-		}
-		if uncompressed != nil {
-			uncompressed.Close()
-		}
-
-		// Grab our uncompressed and possibly-compressed digests and sizes.
-		filenames = append(filenames, filename)
-		diffIDs = append(diffIDs, diffIDdigester.Digest())
-		diffSizes = append(diffSizes, n)
-		blobIDs = append(blobIDs, blobIDdigester.Digest())
-		blobSizes = append(blobSizes, blobSize)
-		blobTimes = append(blobTimes, blobTime)
-		blobTypes = append(blobTypes, layerType)
-	}
-
-	// Build the rootfs and history for the configuration blob.
-	rootfs := imgspecv1.RootFS{
-		Type:    "layers",
-		DiffIDs: diffIDs,
-	}
-	created := time.Time{}
-	history := []imgspecv1.History{}
-	// Pick up the layer comment from the configuration's history list, if one is set.
-	comment := "imported from tarball"
-	if len(r.config.History) > 0 && r.config.History[0].Comment != "" {
-		comment = r.config.History[0].Comment
-	}
-	for i := range diffIDs {
-		createdBy := fmt.Sprintf("/bin/sh -c #(nop) ADD file:%s in %c", diffIDs[i].Hex(), os.PathSeparator)
-		history = append(history, imgspecv1.History{
-			Created:   &blobTimes[i],
-			CreatedBy: createdBy,
-			Comment:   comment,
-		})
-		// Use the mtime of the most recently modified file as the image's creation time.
-		if created.Before(blobTimes[i]) {
-			created = blobTimes[i]
-		}
-	}
-
-	// Pick up other defaults from the config in the reference.
-	config := r.config
-	if config.Created == nil {
-		config.Created = &created
-	}
-	if config.Architecture == "" {
-		config.Architecture = runtime.GOARCH
-	}
-	if config.OS == "" {
-		config.OS = runtime.GOOS
-	}
-	config.RootFS = rootfs
-	config.History = history
-
-	// Encode and digest the image configuration blob.
-	configBytes, err := json.Marshal(&config)
-	if err != nil {
-		return nil, fmt.Errorf("error generating configuration blob for %q: %v", strings.Join(r.filenames, separator), err)
-	}
-	configID := digest.Canonical.FromBytes(configBytes)
-	configSize := int64(len(configBytes))
-
-	// Populate a manifest with the configuration blob and the file as the single layer.
-	layerDescriptors := []imgspecv1.Descriptor{}
-	for i := range blobIDs {
-		layerDescriptors = append(layerDescriptors, imgspecv1.Descriptor{
-			Digest:    blobIDs[i],
-			Size:      blobSizes[i],
-			MediaType: blobTypes[i],
-		})
-	}
-	annotations := make(map[string]string)
-	for k, v := range r.annotations {
-		annotations[k] = v
-	}
-	manifest := imgspecv1.Manifest{
-		Versioned: imgspecs.Versioned{
-			SchemaVersion: 2,
-		},
-		Config: imgspecv1.Descriptor{
-			Digest:    configID,
-			Size:      configSize,
-			MediaType: imgspecv1.MediaTypeImageConfig,
-		},
-		Layers:      layerDescriptors,
-		Annotations: annotations,
-	}
-
-	// Encode the manifest.
-	manifestBytes, err := json.Marshal(&manifest)
-	if err != nil {
-		return nil, fmt.Errorf("error generating manifest for %q: %v", strings.Join(r.filenames, separator), err)
-	}
-
-	// Return the image.
-	src := &tarballImageSource{
-		reference:  *r,
-		filenames:  filenames,
-		diffIDs:    diffIDs,
-		diffSizes:  diffSizes,
-		blobIDs:    blobIDs,
-		blobSizes:  blobSizes,
-		blobTypes:  blobTypes,
-		config:     configBytes,
-		configID:   configID,
-		configSize: configSize,
-		manifest:   manifestBytes,
-	}
-
-	return src, nil
-}
-
-func (is *tarballImageSource) Close() error {
-	return nil
-}
-
-func (is *tarballImageSource) GetBlob(blobinfo types.BlobInfo) (io.ReadCloser, int64, error) {
-	// We should only be asked about things in the manifest.  Maybe the configuration blob.
-	if blobinfo.Digest == is.configID {
-		return ioutil.NopCloser(bytes.NewBuffer(is.config)), is.configSize, nil
-	}
-	// Maybe one of the layer blobs.
-	for i := range is.blobIDs {
-		if blobinfo.Digest == is.blobIDs[i] {
-			// We want to read that layer: open the file or memory block and hand it back.
-			if is.filenames[i] == "-" {
-				return ioutil.NopCloser(bytes.NewBuffer(is.reference.stdin)), int64(len(is.reference.stdin)), nil
-			}
-			reader, err := os.Open(is.filenames[i])
-			if err != nil {
-				return nil, -1, fmt.Errorf("error opening %q: %v", is.filenames[i], err)
-			}
-			return reader, is.blobSizes[i], nil
-		}
-	}
-	return nil, -1, fmt.Errorf("no blob with digest %q found", blobinfo.Digest.String())
-}
-
-// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-// It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-func (is *tarballImageSource) GetManifest(instanceDigest *digest.Digest) ([]byte, string, error) {
-	if instanceDigest != nil {
-		return nil, "", fmt.Errorf("manifest lists are not supported by the %q transport", transportName)
-	}
-	return is.manifest, imgspecv1.MediaTypeImageManifest, nil
-}
-
-// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-// (e.g. if the source never returns manifest lists).
-func (*tarballImageSource) GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error) {
-	if instanceDigest != nil {
-		return nil, fmt.Errorf("manifest lists are not supported by the %q transport", transportName)
-	}
-	return nil, nil
-}
-
-func (is *tarballImageSource) Reference() types.ImageReference {
-	return &is.reference
-}
-
-// LayerInfosForCopy() returns updated layer info that should be used when reading, in preference to values in the manifest, if specified.
-func (*tarballImageSource) LayerInfosForCopy() []types.BlobInfo {
-	return nil
-}
diff --git a/vendor/github.com/containers/image/tarball/tarball_transport.go b/vendor/github.com/containers/image/tarball/tarball_transport.go
deleted file mode 100644
index 72558b5e83..0000000000
--- a/vendor/github.com/containers/image/tarball/tarball_transport.go
+++ /dev/null
@@ -1,66 +0,0 @@
-package tarball
-
-import (
-	"errors"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"strings"
-
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-)
-
-const (
-	transportName = "tarball"
-	separator     = ":"
-)
-
-var (
-	// Transport implements the types.ImageTransport interface for "tarball:" images,
-	// which are makeshift images constructed using one or more possibly-compressed tar
-	// archives.
-	Transport = &tarballTransport{}
-)
-
-type tarballTransport struct {
-}
-
-func (t *tarballTransport) Name() string {
-	return transportName
-}
-
-func (t *tarballTransport) ParseReference(reference string) (types.ImageReference, error) {
-	var stdin []byte
-	var err error
-	filenames := strings.Split(reference, separator)
-	for _, filename := range filenames {
-		if filename == "-" {
-			stdin, err = ioutil.ReadAll(os.Stdin)
-			if err != nil {
-				return nil, fmt.Errorf("error buffering stdin: %v", err)
-			}
-			continue
-		}
-		f, err := os.Open(filename)
-		if err != nil {
-			return nil, fmt.Errorf("error opening %q: %v", filename, err)
-		}
-		f.Close()
-	}
-	ref := &tarballReference{
-		transport: t,
-		filenames: filenames,
-		stdin:     stdin,
-	}
-	return ref, nil
-}
-
-func (t *tarballTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// See the explanation in daemonReference.PolicyConfigurationIdentity.
-	return errors.New(`tarball: does not support any scopes except the default "" one`)
-}
-
-func init() {
-	transports.Register(Transport)
-}
diff --git a/vendor/github.com/containers/image/transports/alltransports/alltransports.go b/vendor/github.com/containers/image/transports/alltransports/alltransports.go
deleted file mode 100644
index b4552df669..0000000000
--- a/vendor/github.com/containers/image/transports/alltransports/alltransports.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package alltransports
-
-import (
-	"strings"
-
-	// register all known transports
-	// NOTE: Make sure docs/policy.json.md is updated when adding or updating
-	// a transport.
-	_ "github.com/containers/image/directory"
-	_ "github.com/containers/image/docker"
-	_ "github.com/containers/image/docker/archive"
-	_ "github.com/containers/image/docker/daemon"
-	_ "github.com/containers/image/oci/archive"
-	_ "github.com/containers/image/oci/layout"
-	_ "github.com/containers/image/openshift"
-	_ "github.com/containers/image/tarball"
-	// The ostree transport is registered by ostree*.go
-	// The storage transport is registered by storage*.go
-	"github.com/containers/image/transports"
-	"github.com/containers/image/types"
-	"github.com/pkg/errors"
-)
-
-// ParseImageName converts a URL-like image name to a types.ImageReference.
-func ParseImageName(imgName string) (types.ImageReference, error) {
-	parts := strings.SplitN(imgName, ":", 2)
-	if len(parts) != 2 {
-		return nil, errors.Errorf(`Invalid image name "%s", expected colon-separated transport:reference`, imgName)
-	}
-	transport := transports.Get(parts[0])
-	if transport == nil {
-		return nil, errors.Errorf(`Invalid image name "%s", unknown transport "%s"`, imgName, parts[0])
-	}
-	return transport.ParseReference(parts[1])
-}
diff --git a/vendor/github.com/containers/image/transports/alltransports/ostree.go b/vendor/github.com/containers/image/transports/alltransports/ostree.go
deleted file mode 100644
index 0fc5d7ef79..0000000000
--- a/vendor/github.com/containers/image/transports/alltransports/ostree.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !containers_image_ostree_stub
-
-package alltransports
-
-import (
-	// Register the ostree transport
-	_ "github.com/containers/image/ostree"
-)
diff --git a/vendor/github.com/containers/image/transports/alltransports/ostree_stub.go b/vendor/github.com/containers/image/transports/alltransports/ostree_stub.go
deleted file mode 100644
index 8b01afe7cc..0000000000
--- a/vendor/github.com/containers/image/transports/alltransports/ostree_stub.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build containers_image_ostree_stub
-
-package alltransports
-
-import "github.com/containers/image/transports"
-
-func init() {
-	transports.Register(transports.NewStubTransport("ostree"))
-}
diff --git a/vendor/github.com/containers/image/transports/alltransports/storage.go b/vendor/github.com/containers/image/transports/alltransports/storage.go
deleted file mode 100644
index a867c66446..0000000000
--- a/vendor/github.com/containers/image/transports/alltransports/storage.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !containers_image_storage_stub
-
-package alltransports
-
-import (
-	// Register the storage transport
-	_ "github.com/containers/image/storage"
-)
diff --git a/vendor/github.com/containers/image/transports/alltransports/storage_stub.go b/vendor/github.com/containers/image/transports/alltransports/storage_stub.go
deleted file mode 100644
index 4ac684e58f..0000000000
--- a/vendor/github.com/containers/image/transports/alltransports/storage_stub.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build containers_image_storage_stub
-
-package alltransports
-
-import "github.com/containers/image/transports"
-
-func init() {
-	transports.Register(transports.NewStubTransport("containers-storage"))
-}
diff --git a/vendor/github.com/containers/image/transports/stub.go b/vendor/github.com/containers/image/transports/stub.go
deleted file mode 100644
index 087f69b6ea..0000000000
--- a/vendor/github.com/containers/image/transports/stub.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package transports
-
-import (
-	"fmt"
-
-	"github.com/containers/image/types"
-)
-
-// stubTransport is an implementation of types.ImageTransport which has a name, but rejects any references with “the transport $name: is not supported in this build”.
-type stubTransport string
-
-// NewStubTransport returns an implementation of types.ImageTransport which has a name, but rejects any references with “the transport $name: is not supported in this build”.
-func NewStubTransport(name string) types.ImageTransport {
-	return stubTransport(name)
-}
-
-// Name returns the name of the transport, which must be unique among other transports.
-func (s stubTransport) Name() string {
-	return string(s)
-}
-
-// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-func (s stubTransport) ParseReference(reference string) (types.ImageReference, error) {
-	return nil, fmt.Errorf(`The transport "%s:" is not supported in this build`, string(s))
-}
-
-// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-// scope passed to this function will not be "", that value is always allowed.
-func (s stubTransport) ValidatePolicyConfigurationScope(scope string) error {
-	// Allowing any reference in here allows tools with some transports stubbed-out to still
-	// use signature verification policies which refer to these stubbed-out transports.
-	// See also the treatment of unknown transports in policyTransportScopesWithTransport.UnmarshalJSON .
-	return nil
-}
diff --git a/vendor/github.com/containers/image/transports/transports.go b/vendor/github.com/containers/image/transports/transports.go
deleted file mode 100644
index 687d0a44e3..0000000000
--- a/vendor/github.com/containers/image/transports/transports.go
+++ /dev/null
@@ -1,90 +0,0 @@
-package transports
-
-import (
-	"fmt"
-	"sort"
-	"sync"
-
-	"github.com/containers/image/types"
-)
-
-// knownTransports is a registry of known ImageTransport instances.
-type knownTransports struct {
-	transports map[string]types.ImageTransport
-	mu         sync.Mutex
-}
-
-func (kt *knownTransports) Get(k string) types.ImageTransport {
-	kt.mu.Lock()
-	t := kt.transports[k]
-	kt.mu.Unlock()
-	return t
-}
-
-func (kt *knownTransports) Remove(k string) {
-	kt.mu.Lock()
-	delete(kt.transports, k)
-	kt.mu.Unlock()
-}
-
-func (kt *knownTransports) Add(t types.ImageTransport) {
-	kt.mu.Lock()
-	defer kt.mu.Unlock()
-	name := t.Name()
-	if t := kt.transports[name]; t != nil {
-		panic(fmt.Sprintf("Duplicate image transport name %s", name))
-	}
-	kt.transports[name] = t
-}
-
-var kt *knownTransports
-
-func init() {
-	kt = &knownTransports{
-		transports: make(map[string]types.ImageTransport),
-	}
-}
-
-// Get returns the transport specified by name or nil when unavailable.
-func Get(name string) types.ImageTransport {
-	return kt.Get(name)
-}
-
-// Delete deletes a transport from the registered transports.
-func Delete(name string) {
-	kt.Remove(name)
-}
-
-// Register registers a transport.
-func Register(t types.ImageTransport) {
-	kt.Add(t)
-}
-
-// ImageName converts a types.ImageReference into an URL-like image name, which MUST be such that
-// ParseImageName(ImageName(reference)) returns an equivalent reference.
-//
-// This is the generally recommended way to refer to images in the UI.
-//
-// NOTE: The returned string is not promised to be equal to the original input to ParseImageName;
-// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-func ImageName(ref types.ImageReference) string {
-	return ref.Transport().Name() + ":" + ref.StringWithinTransport()
-}
-
-// ListNames returns a list of non deprecated transport names.
-// Deprecated transports can be used, but are not presented to users.
-func ListNames() []string {
-	kt.mu.Lock()
-	defer kt.mu.Unlock()
-	deprecated := map[string]bool{
-		"atomic": true,
-	}
-	var names []string
-	for _, transport := range kt.transports {
-		if !deprecated[transport.Name()] {
-			names = append(names, transport.Name())
-		}
-	}
-	sort.Strings(names)
-	return names
-}
diff --git a/vendor/github.com/containers/image/types/types.go b/vendor/github.com/containers/image/types/types.go
deleted file mode 100644
index 2e9c7105d3..0000000000
--- a/vendor/github.com/containers/image/types/types.go
+++ /dev/null
@@ -1,388 +0,0 @@
-package types
-
-import (
-	"context"
-	"io"
-	"time"
-
-	"github.com/containers/image/docker/reference"
-	"github.com/opencontainers/go-digest"
-	"github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-// ImageTransport is a top-level namespace for ways to to store/load an image.
-// It should generally correspond to ImageSource/ImageDestination implementations.
-//
-// Note that ImageTransport is based on "ways the users refer to image storage", not necessarily on the underlying physical transport.
-// For example, all Docker References would be used within a single "docker" transport, regardless of whether the images are pulled over HTTP or HTTPS
-// (or, even, IPv4 or IPv6).
-//
-// OTOH all images using the same transport should (apart from versions of the image format), be interoperable.
-// For example, several different ImageTransport implementations may be based on local filesystem paths,
-// but using completely different formats for the contents of that path (a single tar file, a directory containing tarballs, a fully expanded container filesystem, ...)
-//
-// See also transports.KnownTransports.
-type ImageTransport interface {
-	// Name returns the name of the transport, which must be unique among other transports.
-	Name() string
-	// ParseReference converts a string, which should not start with the ImageTransport.Name prefix, into an ImageReference.
-	ParseReference(reference string) (ImageReference, error)
-	// ValidatePolicyConfigurationScope checks that scope is a valid name for a signature.PolicyTransportScopes keys
-	// (i.e. a valid PolicyConfigurationIdentity() or PolicyConfigurationNamespaces() return value).
-	// It is acceptable to allow an invalid value which will never be matched, it can "only" cause user confusion.
-	// scope passed to this function will not be "", that value is always allowed.
-	ValidatePolicyConfigurationScope(scope string) error
-}
-
-// ImageReference is an abstracted way to refer to an image location, namespaced within an ImageTransport.
-//
-// The object should preferably be immutable after creation, with any parsing/state-dependent resolving happening
-// within an ImageTransport.ParseReference() or equivalent API creating the reference object.
-// That's also why the various identification/formatting methods of this type do not support returning errors.
-//
-// WARNING: While this design freezes the content of the reference within this process, it can not freeze the outside
-// world: paths may be replaced by symlinks elsewhere, HTTP APIs may start returning different results, and so on.
-type ImageReference interface {
-	Transport() ImageTransport
-	// StringWithinTransport returns a string representation of the reference, which MUST be such that
-	// reference.Transport().ParseReference(reference.StringWithinTransport()) returns an equivalent reference.
-	// NOTE: The returned string is not promised to be equal to the original input to ParseReference;
-	// e.g. default attribute values omitted by the user may be filled in in the return value, or vice versa.
-	// WARNING: Do not use the return value in the UI to describe an image, it does not contain the Transport().Name() prefix;
-	// instead, see transports.ImageName().
-	StringWithinTransport() string
-
-	// DockerReference returns a Docker reference associated with this reference
-	// (fully explicit, i.e. !reference.IsNameOnly, but reflecting user intent,
-	// not e.g. after redirect or alias processing), or nil if unknown/not applicable.
-	DockerReference() reference.Named
-
-	// PolicyConfigurationIdentity returns a string representation of the reference, suitable for policy lookup.
-	// This MUST reflect user intent, not e.g. after processing of third-party redirects or aliases;
-	// The value SHOULD be fully explicit about its semantics, with no hidden defaults, AND canonical
-	// (i.e. various references with exactly the same semantics should return the same configuration identity)
-	// It is fine for the return value to be equal to StringWithinTransport(), and it is desirable but
-	// not required/guaranteed that it will be a valid input to Transport().ParseReference().
-	// Returns "" if configuration identities for these references are not supported.
-	PolicyConfigurationIdentity() string
-
-	// PolicyConfigurationNamespaces returns a list of other policy configuration namespaces to search
-	// for if explicit configuration for PolicyConfigurationIdentity() is not set.  The list will be processed
-	// in order, terminating on first match, and an implicit "" is always checked at the end.
-	// It is STRONGLY recommended for the first element, if any, to be a prefix of PolicyConfigurationIdentity(),
-	// and each following element to be a prefix of the element preceding it.
-	PolicyConfigurationNamespaces() []string
-
-	// NewImage returns a types.ImageCloser for this reference, possibly specialized for this ImageTransport.
-	// The caller must call .Close() on the returned ImageCloser.
-	// NOTE: If any kind of signature verification should happen, build an UnparsedImage from the value returned by NewImageSource,
-	// verify that UnparsedImage, and convert it into a real Image via image.FromUnparsedImage.
-	// WARNING: This may not do the right thing for a manifest list, see image.FromSource for details.
-	NewImage(ctx *SystemContext) (ImageCloser, error)
-	// NewImageSource returns a types.ImageSource for this reference.
-	// The caller must call .Close() on the returned ImageSource.
-	NewImageSource(ctx *SystemContext) (ImageSource, error)
-	// NewImageDestination returns a types.ImageDestination for this reference.
-	// The caller must call .Close() on the returned ImageDestination.
-	NewImageDestination(ctx *SystemContext) (ImageDestination, error)
-
-	// DeleteImage deletes the named image from the registry, if supported.
-	DeleteImage(ctx *SystemContext) error
-}
-
-// BlobInfo collects known information about a blob (layer/config).
-// In some situations, some fields may be unknown, in others they may be mandatory; documenting an “unknown” value here does not override that.
-type BlobInfo struct {
-	Digest      digest.Digest // "" if unknown.
-	Size        int64         // -1 if unknown
-	URLs        []string
-	Annotations map[string]string
-	MediaType   string
-}
-
-// ImageSource is a service, possibly remote (= slow), to download components of a single image or a named image set (manifest list).
-// This is primarily useful for copying images around; for examining their properties, Image (below)
-// is usually more useful.
-// Each ImageSource should eventually be closed by calling Close().
-//
-// WARNING: Various methods which return an object identified by digest generally do not
-// validate that the returned data actually matches that digest; this is the caller’s responsibility.
-type ImageSource interface {
-	// Reference returns the reference used to set up this source, _as specified by the user_
-	// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-	Reference() ImageReference
-	// Close removes resources associated with an initialized ImageSource, if any.
-	Close() error
-	// GetManifest returns the image's manifest along with its MIME type (which may be empty when it can't be determined but the manifest is available).
-	// It may use a remote (= slow) service.
-	// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve (when the primary manifest is a manifest list);
-	// this never happens if the primary manifest is not a manifest list (e.g. if the source never returns manifest lists).
-	GetManifest(instanceDigest *digest.Digest) ([]byte, string, error)
-	// GetBlob returns a stream for the specified blob, and the blob’s size (or -1 if unknown).
-	// The Digest field in BlobInfo is guaranteed to be provided, Size may be -1 and MediaType may be optionally provided.
-	GetBlob(BlobInfo) (io.ReadCloser, int64, error)
-	// GetSignatures returns the image's signatures.  It may use a remote (= slow) service.
-	// If instanceDigest is not nil, it contains a digest of the specific manifest instance to retrieve signatures for
-	// (when the primary manifest is a manifest list); this never happens if the primary manifest is not a manifest list
-	// (e.g. if the source never returns manifest lists).
-	GetSignatures(ctx context.Context, instanceDigest *digest.Digest) ([][]byte, error)
-	// LayerInfosForCopy returns either nil (meaning the values in the manifest are fine), or updated values for the layer blobsums that are listed in the image's manifest.
-	// The Digest field is guaranteed to be provided; Size may be -1.
-	// WARNING: The list may contain duplicates, and they are semantically relevant.
-	LayerInfosForCopy() []BlobInfo
-}
-
-// ImageDestination is a service, possibly remote (= slow), to store components of a single image.
-//
-// There is a specific required order for some of the calls:
-// PutBlob on the various blobs, if any, MUST be called before PutManifest (manifest references blobs, which may be created or compressed only at push time)
-// ReapplyBlob, if used, MUST only be called if HasBlob returned true for the same blob digest
-// PutSignatures, if called, MUST be called after PutManifest (signatures reference manifest contents)
-// Finally, Commit MUST be called if the caller wants the image, as formed by the components saved above, to persist.
-//
-// Each ImageDestination should eventually be closed by calling Close().
-type ImageDestination interface {
-	// Reference returns the reference used to set up this destination.  Note that this should directly correspond to user's intent,
-	// e.g. it should use the public hostname instead of the result of resolving CNAMEs or following redirects.
-	Reference() ImageReference
-	// Close removes resources associated with an initialized ImageDestination, if any.
-	Close() error
-
-	// SupportedManifestMIMETypes tells which manifest mime types the destination supports
-	// If an empty slice or nil it's returned, then any mime type can be tried to upload
-	SupportedManifestMIMETypes() []string
-	// SupportsSignatures returns an error (to be displayed to the user) if the destination certainly can't store signatures.
-	// Note: It is still possible for PutSignatures to fail if SupportsSignatures returns nil.
-	SupportsSignatures() error
-	// ShouldCompressLayers returns true iff it is desirable to compress layer blobs written to this destination.
-	ShouldCompressLayers() bool
-	// AcceptsForeignLayerURLs returns false iff foreign layers in manifest should be actually
-	// uploaded to the image destination, true otherwise.
-	AcceptsForeignLayerURLs() bool
-	// MustMatchRuntimeOS returns true iff the destination can store only images targeted for the current runtime OS. False otherwise.
-	MustMatchRuntimeOS() bool
-	// PutBlob writes contents of stream and returns data representing the result.
-	// inputInfo.Digest can be optionally provided if known; it is not mandatory for the implementation to verify it.
-	// inputInfo.Size is the expected length of stream, if known.
-	// inputInfo.MediaType describes the blob format, if known.
-	// WARNING: The contents of stream are being verified on the fly.  Until stream.Read() returns io.EOF, the contents of the data SHOULD NOT be available
-	// to any other readers for download using the supplied digest.
-	// If stream.Read() at any time, ESPECIALLY at end of input, returns an error, PutBlob MUST 1) fail, and 2) delete any data stored so far.
-	PutBlob(stream io.Reader, inputInfo BlobInfo) (BlobInfo, error)
-	// HasBlob returns true iff the image destination already contains a blob with the matching digest which can be reapplied using ReapplyBlob.
-	// Unlike PutBlob, the digest can not be empty.  If HasBlob returns true, the size of the blob must also be returned.
-	// If the destination does not contain the blob, or it is unknown, HasBlob ordinarily returns (false, -1, nil);
-	// it returns a non-nil error only on an unexpected failure.
-	HasBlob(info BlobInfo) (bool, int64, error)
-	// ReapplyBlob informs the image destination that a blob for which HasBlob previously returned true would have been passed to PutBlob if it had returned false.  Like HasBlob and unlike PutBlob, the digest can not be empty.  If the blob is a filesystem layer, this signifies that the changes it describes need to be applied again when composing a filesystem tree.
-	ReapplyBlob(info BlobInfo) (BlobInfo, error)
-	// PutManifest writes manifest to the destination.
-	// FIXME? This should also receive a MIME type if known, to differentiate between schema versions.
-	// If the destination is in principle available, refuses this manifest type (e.g. it does not recognize the schema),
-	// but may accept a different manifest type, the returned error must be an ManifestTypeRejectedError.
-	PutManifest(manifest []byte) error
-	PutSignatures(signatures [][]byte) error
-	// Commit marks the process of storing the image as successful and asks for the image to be persisted.
-	// WARNING: This does not have any transactional semantics:
-	// - Uploaded data MAY be visible to others before Commit() is called
-	// - Uploaded data MAY be removed or MAY remain around if Close() is called without Commit() (i.e. rollback is allowed but not guaranteed)
-	Commit() error
-}
-
-// ManifestTypeRejectedError is returned by ImageDestination.PutManifest if the destination is in principle available,
-// refuses specifically this manifest type, but may accept a different manifest type.
-type ManifestTypeRejectedError struct { // We only use a struct to allow a type assertion, without limiting the contents of the error otherwise.
-	Err error
-}
-
-func (e ManifestTypeRejectedError) Error() string {
-	return e.Err.Error()
-}
-
-// UnparsedImage is an Image-to-be; until it is verified and accepted, it only caries its identity and caches manifest and signature blobs.
-// Thus, an UnparsedImage can be created from an ImageSource simply by fetching blobs without interpreting them,
-// allowing cryptographic signature verification to happen first, before even fetching the manifest, or parsing anything else.
-// This also makes the UnparsedImage→Image conversion an explicitly visible step.
-//
-// An UnparsedImage is a pair of (ImageSource, instance digest); it can represent either a manifest list or a single image instance.
-//
-// The UnparsedImage must not be used after the underlying ImageSource is Close()d.
-type UnparsedImage interface {
-	// Reference returns the reference used to set up this source, _as specified by the user_
-	// (not as the image itself, or its underlying storage, claims).  This can be used e.g. to determine which public keys are trusted for this image.
-	Reference() ImageReference
-	// Manifest is like ImageSource.GetManifest, but the result is cached; it is OK to call this however often you need.
-	Manifest() ([]byte, string, error)
-	// Signatures is like ImageSource.GetSignatures, but the result is cached; it is OK to call this however often you need.
-	Signatures(ctx context.Context) ([][]byte, error)
-	// LayerInfosForCopy returns either nil (meaning the values in the manifest are fine), or updated values for the layer blobsums that are listed in the image's manifest.
-	// The Digest field is guaranteed to be provided, Size may be -1 and MediaType may be optionally provided.
-	// WARNING: The list may contain duplicates, and they are semantically relevant.
-	LayerInfosForCopy() []BlobInfo
-}
-
-// Image is the primary API for inspecting properties of images.
-// An Image is based on a pair of (ImageSource, instance digest); it can represent either a manifest list or a single image instance.
-//
-// The Image must not be used after the underlying ImageSource is Close()d.
-type Image interface {
-	// Note that Reference may return nil in the return value of UpdatedImage!
-	UnparsedImage
-	// ConfigInfo returns a complete BlobInfo for the separate config object, or a BlobInfo{Digest:""} if there isn't a separate object.
-	// Note that the config object may not exist in the underlying storage in the return value of UpdatedImage! Use ConfigBlob() below.
-	ConfigInfo() BlobInfo
-	// ConfigBlob returns the blob described by ConfigInfo, if ConfigInfo().Digest != ""; nil otherwise.
-	// The result is cached; it is OK to call this however often you need.
-	ConfigBlob() ([]byte, error)
-	// OCIConfig returns the image configuration as per OCI v1 image-spec. Information about
-	// layers in the resulting configuration isn't guaranteed to be returned to due how
-	// old image manifests work (docker v2s1 especially).
-	OCIConfig() (*v1.Image, error)
-	// LayerInfos returns a list of BlobInfos of layers referenced by this image, in order (the root layer first, and then successive layered layers).
-	// The Digest field is guaranteed to be provided, Size may be -1 and MediaType may be optionally provided.
-	// WARNING: The list may contain duplicates, and they are semantically relevant.
-	LayerInfos() []BlobInfo
-	// EmbeddedDockerReferenceConflicts whether a Docker reference embedded in the manifest, if any, conflicts with destination ref.
-	// It returns false if the manifest does not embed a Docker reference.
-	// (This embedding unfortunately happens for Docker schema1, please do not add support for this in any new formats.)
-	EmbeddedDockerReferenceConflicts(ref reference.Named) bool
-	// Inspect returns various information for (skopeo inspect) parsed from the manifest and configuration.
-	Inspect() (*ImageInspectInfo, error)
-	// UpdatedImageNeedsLayerDiffIDs returns true iff UpdatedImage(options) needs InformationOnly.LayerDiffIDs.
-	// This is a horribly specific interface, but computing InformationOnly.LayerDiffIDs can be very expensive to compute
-	// (most importantly it forces us to download the full layers even if they are already present at the destination).
-	UpdatedImageNeedsLayerDiffIDs(options ManifestUpdateOptions) bool
-	// UpdatedImage returns a types.Image modified according to options.
-	// Everything in options.InformationOnly should be provided, other fields should be set only if a modification is desired.
-	// This does not change the state of the original Image object.
-	UpdatedImage(options ManifestUpdateOptions) (Image, error)
-	// Size returns an approximation of the amount of disk space which is consumed by the image in its current
-	// location.  If the size is not known, -1 will be returned.
-	Size() (int64, error)
-}
-
-// ImageCloser is an Image with a Close() method which must be called by the user.
-// This is returned by ImageReference.NewImage, which transparently instantiates a types.ImageSource,
-// to ensure that the ImageSource is closed.
-type ImageCloser interface {
-	Image
-	// Close removes resources associated with an initialized ImageCloser.
-	Close() error
-}
-
-// ManifestUpdateOptions is a way to pass named optional arguments to Image.UpdatedManifest
-type ManifestUpdateOptions struct {
-	LayerInfos              []BlobInfo // Complete BlobInfos (size+digest+urls+annotations) which should replace the originals, in order (the root layer first, and then successive layered layers). BlobInfos' MediaType fields are ignored.
-	EmbeddedDockerReference reference.Named
-	ManifestMIMEType        string
-	// The values below are NOT requests to modify the image; they provide optional context which may or may not be used.
-	InformationOnly ManifestUpdateInformation
-}
-
-// ManifestUpdateInformation is a component of ManifestUpdateOptions, named here
-// only to make writing struct literals possible.
-type ManifestUpdateInformation struct {
-	Destination  ImageDestination // and yes, UpdatedManifest may write to Destination (see the schema2 → schema1 conversion logic in image/docker_schema2.go)
-	LayerInfos   []BlobInfo       // Complete BlobInfos (size+digest) which have been uploaded, in order (the root layer first, and then successive layered layers)
-	LayerDiffIDs []digest.Digest  // Digest values for the _uncompressed_ contents of the blobs which have been uploaded, in the same order.
-}
-
-// ImageInspectInfo is a set of metadata describing Docker images, primarily their manifest and configuration.
-// The Tag field is a legacy field which is here just for the Docker v2s1 manifest. It won't be supported
-// for other manifest types.
-type ImageInspectInfo struct {
-	Tag           string
-	Created       time.Time
-	DockerVersion string
-	Labels        map[string]string
-	Architecture  string
-	Os            string
-	Layers        []string
-}
-
-// DockerAuthConfig contains authorization information for connecting to a registry.
-type DockerAuthConfig struct {
-	Username string
-	Password string
-}
-
-// SystemContext allows parameterizing access to implicitly-accessed resources,
-// like configuration files in /etc and users' login state in their home directory.
-// Various components can share the same field only if their semantics is exactly
-// the same; if in doubt, add a new field.
-// It is always OK to pass nil instead of a SystemContext.
-type SystemContext struct {
-	// If not "", prefixed to any absolute paths used by default by the library (e.g. in /etc/).
-	// Not used for any of the more specific path overrides available in this struct.
-	// Not used for any paths specified by users in config files (even if the location of the config file _was_ affected by it).
-	// NOTE: If this is set, environment-variable overrides of paths are ignored (to keep the semantics simple: to create an /etc replacement, just set RootForImplicitAbsolutePaths .
-	// and there is no need to worry about the environment.)
-	// NOTE: This does NOT affect paths starting by $HOME.
-	RootForImplicitAbsolutePaths string
-
-	// === Global configuration overrides ===
-	// If not "", overrides the system's default path for signature.Policy configuration.
-	SignaturePolicyPath string
-	// If not "", overrides the system's default path for registries.d (Docker signature storage configuration)
-	RegistriesDirPath string
-	// Path to the system-wide registries configuration file
-	SystemRegistriesConfPath string
-	// If not "", overrides the default path for the authentication file
-	AuthFilePath string
-	// If not "", overrides the use of platform.GOARCH when choosing an image or verifying architecture match.
-	ArchitectureChoice string
-	// If not "", overrides the use of platform.GOOS when choosing an image or verifying OS match.
-	OSChoice string
-
-	// === OCI.Transport overrides ===
-	// If not "", a directory containing a CA certificate (ending with ".crt"),
-	// a client certificate (ending with ".cert") and a client ceritificate key
-	// (ending with ".key") used when downloading OCI image layers.
-	OCICertPath string
-	// Allow downloading OCI image layers over HTTP, or HTTPS with failed TLS verification. Note that this does not affect other TLS connections.
-	OCIInsecureSkipTLSVerify bool
-	// If not "", use a shared directory for storing blobs rather than within OCI layouts
-	OCISharedBlobDirPath string
-
-	// === docker.Transport overrides ===
-	// If not "", a directory containing a CA certificate (ending with ".crt"),
-	// a client certificate (ending with ".cert") and a client ceritificate key
-	// (ending with ".key") used when talking to a Docker Registry.
-	DockerCertPath string
-	// If not "", overrides the system’s default path for a directory containing host[:port] subdirectories with the same structure as DockerCertPath above.
-	// Ignored if DockerCertPath is non-empty.
-	DockerPerHostCertDirPath string
-	// Allow contacting docker registries over HTTP, or HTTPS with failed TLS verification. Note that this does not affect other TLS connections.
-	DockerInsecureSkipTLSVerify bool
-	// if nil, the library tries to parse ~/.docker/config.json to retrieve credentials
-	DockerAuthConfig *DockerAuthConfig
-	// if not "", an User-Agent header is added to each request when contacting a registry.
-	DockerRegistryUserAgent string
-	// if true, a V1 ping attempt isn't done to give users a better error. Default is false.
-	// Note that this field is used mainly to integrate containers/image into projectatomic/docker
-	// in order to not break any existing docker's integration tests.
-	DockerDisableV1Ping bool
-	// Directory to use for OSTree temporary files
-	OSTreeTmpDirPath string
-
-	// === docker/daemon.Transport overrides ===
-	// A directory containing a CA certificate (ending with ".crt"),
-	// a client certificate (ending with ".cert") and a client certificate key
-	// (ending with ".key") used when talking to a Docker daemon.
-	DockerDaemonCertPath string
-	// The hostname or IP to the Docker daemon. If not set (aka ""), client.DefaultDockerHost is assumed.
-	DockerDaemonHost string
-	// Used to skip TLS verification, off by default. To take effect DockerDaemonCertPath needs to be specified as well.
-	DockerDaemonInsecureSkipTLSVerify bool
-
-	// === dir.Transport overrides ===
-	// DirForceCompress compresses the image layers if set to true
-	DirForceCompress bool
-}
-
-// ProgressProperties is used to pass information from the copy code to a monitor which
-// can use the real-time information to produce output or react to changes.
-type ProgressProperties struct {
-	Artifact BlobInfo
-	Offset   uint64
-}
diff --git a/vendor/github.com/containers/image/version/version.go b/vendor/github.com/containers/image/version/version.go
deleted file mode 100644
index 6644bcff3b..0000000000
--- a/vendor/github.com/containers/image/version/version.go
+++ /dev/null
@@ -1,18 +0,0 @@
-package version
-
-import "fmt"
-
-const (
-	// VersionMajor is for an API incompatible changes
-	VersionMajor = 0
-	// VersionMinor is for functionality in a backwards-compatible manner
-	VersionMinor = 1
-	// VersionPatch is for backwards-compatible bug fixes
-	VersionPatch = 0
-
-	// VersionDev indicates development branch. Releases will be empty string.
-	VersionDev = "-dev"
-)
-
-// Version is the specification version that the package types support.
-var Version = fmt.Sprintf("%d.%d.%d%s", VersionMajor, VersionMinor, VersionPatch, VersionDev)
diff --git a/vendor/github.com/containers/storage/AUTHORS b/vendor/github.com/containers/storage/AUTHORS
deleted file mode 100644
index 11cd83d14e..0000000000
--- a/vendor/github.com/containers/storage/AUTHORS
+++ /dev/null
@@ -1,1522 +0,0 @@
-# This file lists all individuals having contributed content to the repository.
-# For how it is generated, see `hack/generate-authors.sh`.
-
-Aanand Prasad <aanand.prasad@gmail.com>
-Aaron Davidson <aaron@databricks.com>
-Aaron Feng <aaron.feng@gmail.com>
-Aaron Huslage <huslage@gmail.com>
-Aaron Lehmann <aaron.lehmann@docker.com>
-Aaron Welch <welch@packet.net>
-Abel Muiño <amuino@gmail.com>
-Abhijeet Kasurde <akasurde@redhat.com>
-Abhinav Ajgaonkar <abhinav316@gmail.com>
-Abhishek Chanda <abhishek.becs@gmail.com>
-Abin Shahab <ashahab@altiscale.com>
-Adam Miller <admiller@redhat.com>
-Adam Singer <financeCoding@gmail.com>
-Aditi Rajagopal <arajagopal@us.ibm.com>
-Aditya <aditya@netroy.in>
-Adria Casas <adriacasas88@gmail.com>
-Adrian Mouat <adrian.mouat@gmail.com>
-Adrian Oprea <adrian@codesi.nz>
-Adrien Folie <folie.adrien@gmail.com>
-Adrien Gallouët <adrien@gallouet.fr>
-Ahmed Kamal <email.ahmedkamal@googlemail.com>
-Ahmet Alp Balkan <ahmetb@microsoft.com>
-Aidan Feldman <aidan.feldman@gmail.com>
-Aidan Hobson Sayers <aidanhs@cantab.net>
-AJ Bowen <aj@gandi.net>
-Ajey Charantimath <ajey.charantimath@gmail.com>
-ajneu <ajneu@users.noreply.github.com>
-Akihiro Suda <suda.akihiro@lab.ntt.co.jp>
-Al Tobey <al@ooyala.com>
-alambike <alambike@gmail.com>
-Alan Scherger <flyinprogrammer@gmail.com>
-Alan Thompson <cloojure@gmail.com>
-Albert Callarisa <shark234@gmail.com>
-Albert Zhang <zhgwenming@gmail.com>
-Aleksa Sarai <asarai@suse.de>
-Aleksandrs Fadins <aleks@s-ko.net>
-Alena Prokharchyk <alena@rancher.com>
-Alessandro Boch <aboch@docker.com>
-Alessio Biancalana <dottorblaster@gmail.com>
-Alex Chan <alex@alexwlchan.net>
-Alex Crawford <alex.crawford@coreos.com>
-Alex Ellis <alexellis2@gmail.com>
-Alex Gaynor <alex.gaynor@gmail.com>
-Alex Samorukov <samm@os2.kiev.ua>
-Alex Warhawk <ax.warhawk@gmail.com>
-Alexander Artemenko <svetlyak.40wt@gmail.com>
-Alexander Boyd <alex@opengroove.org>
-Alexander Larsson <alexl@redhat.com>
-Alexander Morozov <lk4d4@docker.com>
-Alexander Shopov <ash@kambanaria.org>
-Alexandre Beslic <abronan@docker.com>
-Alexandre González <agonzalezro@gmail.com>
-Alexandru Sfirlogea <alexandru.sfirlogea@gmail.com>
-Alexey Guskov <lexag@mail.ru>
-Alexey Kotlyarov <alexey@infoxchange.net.au>
-Alexey Shamrin <shamrin@gmail.com>
-Alexis THOMAS <fr.alexisthomas@gmail.com>
-Ali Dehghani <ali.dehghani.g@gmail.com>
-Allen Madsen <blatyo@gmail.com>
-Allen Sun <allen.sun@daocloud.io>
-almoehi <almoehi@users.noreply.github.com>
-Alvin Richards <alvin.richards@docker.com>
-amangoel <amangoel@gmail.com>
-Amen Belayneh <amenbelayneh@gmail.com>
-Amit Bakshi <ambakshi@gmail.com>
-Amit Krishnan <amit.krishnan@oracle.com>
-Amy Lindburg <amy.lindburg@docker.com>
-Anand Patil <anand.prabhakar.patil@gmail.com>
-AnandkumarPatel <anandkumarpatel@gmail.com>
-Anatoly Borodin <anatoly.borodin@gmail.com>
-Anchal Agrawal <aagrawa4@illinois.edu>
-Anders Janmyr <anders@janmyr.com>
-Andre Dublin <81dublin@gmail.com>
-Andre Granovsky <robotciti@live.com>
-Andrea Luzzardi <aluzzardi@gmail.com>
-Andrea Turli <andrea.turli@gmail.com>
-Andreas Köhler <andi5.py@gmx.net>
-Andreas Savvides <andreas@editd.com>
-Andreas Tiefenthaler <at@an-ti.eu>
-Andrew C. Bodine <acbodine@us.ibm.com>
-Andrew Clay Shafer <andrewcshafer@gmail.com>
-Andrew Duckworth <grillopress@gmail.com>
-Andrew France <andrew@avito.co.uk>
-Andrew Gerrand <adg@golang.org>
-Andrew Guenther <guenther.andrew.j@gmail.com>
-Andrew Kuklewicz <kookster@gmail.com>
-Andrew Macgregor <andrew.macgregor@agworld.com.au>
-Andrew Macpherson <hopscotch23@gmail.com>
-Andrew Martin <sublimino@gmail.com>
-Andrew Munsell <andrew@wizardapps.net>
-Andrew Weiss <andrew.weiss@outlook.com>
-Andrew Williams <williams.andrew@gmail.com>
-Andrews Medina <andrewsmedina@gmail.com>
-Andrey Petrov <andrey.petrov@shazow.net>
-Andrey Stolbovsky <andrey.stolbovsky@gmail.com>
-André Martins <aanm90@gmail.com>
-andy <ztao@tibco-support.com>
-Andy Chambers <anchambers@paypal.com>
-andy diller <dillera@gmail.com>
-Andy Goldstein <agoldste@redhat.com>
-Andy Kipp <andy@rstudio.com>
-Andy Rothfusz <github@developersupport.net>
-Andy Smith <github@anarkystic.com>
-Andy Wilson <wilson.andrew.j+github@gmail.com>
-Anes Hasicic <anes.hasicic@gmail.com>
-Anil Belur <askb23@gmail.com>
-Ankush Agarwal <ankushagarwal11@gmail.com>
-Anonmily <michelle@michelleliu.io>
-Anthon van der Neut <anthon@mnt.org>
-Anthony Baire <Anthony.Baire@irisa.fr>
-Anthony Bishopric <git@anthonybishopric.com>
-Anthony Dahanne <anthony.dahanne@gmail.com>
-Anton Löfgren <anton.lofgren@gmail.com>
-Anton Nikitin <anton.k.nikitin@gmail.com>
-Anton Polonskiy <anton.polonskiy@gmail.com>
-Anton Tiurin <noxiouz@yandex.ru>
-Antonio Murdaca <antonio.murdaca@gmail.com>
-Antony Messerli <amesserl@rackspace.com>
-Anuj Bahuguna <anujbahuguna.dev@gmail.com>
-Anusha Ragunathan <anusha.ragunathan@docker.com>
-apocas <petermdias@gmail.com>
-ArikaChen <eaglesora@gmail.com>
-Arnaud Porterie <arnaud.porterie@docker.com>
-Arthur Barr <arthur.barr@uk.ibm.com>
-Arthur Gautier <baloo@gandi.net>
-Artur Meyster <arthurfbi@yahoo.com>
-Arun Gupta <arun.gupta@gmail.com>
-Asbjørn Enge <asbjorn@hanafjedle.net>
-averagehuman <averagehuman@users.noreply.github.com>
-Avi Das <andas222@gmail.com>
-Avi Miller <avi.miller@oracle.com>
-ayoshitake <airandfingers@gmail.com>
-Azat Khuyiyakhmetov <shadow_uz@mail.ru>
-Bardia Keyoumarsi <bkeyouma@ucsc.edu>
-Barnaby Gray <barnaby@pickle.me.uk>
-Barry Allard <barry.allard@gmail.com>
-Bartłomiej Piotrowski <b@bpiotrowski.pl>
-Bastiaan Bakker <bbakker@xebia.com>
-bdevloed <boris.de.vloed@gmail.com>
-Ben Firshman <ben@firshman.co.uk>
-Ben Golub <ben.golub@dotcloud.com>
-Ben Hall <ben@benhall.me.uk>
-Ben Sargent <ben@brokendigits.com>
-Ben Severson <BenSeverson@users.noreply.github.com>
-Ben Toews <mastahyeti@gmail.com>
-Ben Wiklund <ben@daisyowl.com>
-Benjamin Atkin <ben@benatkin.com>
-Benoit Chesneau <bchesneau@gmail.com>
-Bernerd Schaefer <bj.schaefer@gmail.com>
-Bert Goethals <bert@bertg.be>
-Bharath Thiruveedula <bharath_ves@hotmail.com>
-Bhiraj Butala <abhiraj.butala@gmail.com>
-Bill W <SydOps@users.noreply.github.com>
-bin liu <liubin0329@users.noreply.github.com>
-Blake Geno <blakegeno@gmail.com>
-Boaz Shuster <ripcurld.github@gmail.com>
-bobby abbott <ttobbaybbob@gmail.com>
-boucher <rboucher@gmail.com>
-Bouke Haarsma <bouke@webatoom.nl>
-Boyd Hemphill <boyd@feedmagnet.com>
-boynux <boynux@gmail.com>
-Bradley Cicenas <bradley.cicenas@gmail.com>
-Bradley Wright <brad@intranation.com>
-Brandon Liu <bdon@bdon.org>
-Brandon Philips <brandon@ifup.org>
-Brandon Rhodes <brandon@rhodesmill.org>
-Brendan Dixon <brendand@microsoft.com>
-Brent Salisbury <brent.salisbury@docker.com>
-Brett Higgins <brhiggins@arbor.net>
-Brett Kochendorfer <brett.kochendorfer@gmail.com>
-Brian (bex) Exelbierd <bexelbie@redhat.com>
-Brian Bland <brian.bland@docker.com>
-Brian DeHamer <brian@dehamer.com>
-Brian Dorsey <brian@dorseys.org>
-Brian Flad <bflad417@gmail.com>
-Brian Goff <cpuguy83@gmail.com>
-Brian McCallister <brianm@skife.org>
-Brian Olsen <brian@maven-group.org>
-Brian Shumate <brian@couchbase.com>
-Brian Torres-Gil <brian@dralth.com>
-Brian Trump <btrump@yelp.com>
-Brice Jaglin <bjaglin@teads.tv>
-Briehan Lombaard <briehan.lombaard@gmail.com>
-Bruno Bigras <bigras.bruno@gmail.com>
-Bruno Binet <bruno.binet@gmail.com>
-Bruno Gazzera <bgazzera@paginar.com>
-Bruno Renié <brutasse@gmail.com>
-Bryan Bess <squarejaw@bsbess.com>
-Bryan Boreham <bjboreham@gmail.com>
-Bryan Matsuo <bryan.matsuo@gmail.com>
-Bryan Murphy <bmurphy1976@gmail.com>
-buddhamagnet <buddhamagnet@gmail.com>
-Burke Libbey <burke@libbey.me>
-Byung Kang <byung.kang.ctr@amrdec.army.mil>
-Caleb Spare <cespare@gmail.com>
-Calen Pennington <cale@edx.org>
-Cameron Boehmer <cameron.boehmer@gmail.com>
-Cameron Spear <cameronspear@gmail.com>
-Campbell Allen <campbell.allen@gmail.com>
-Candid Dauth <cdauth@cdauth.eu>
-Carl Henrik Lunde <chlunde@ping.uio.no>
-Carl X. Su <bcbcarl@gmail.com>
-Carlos Alexandro Becker <caarlos0@gmail.com>
-Carlos Sanchez <carlos@apache.org>
-Carol Fager-Higgins <carol.fager-higgins@docker.com>
-Cary <caryhartline@users.noreply.github.com>
-Casey Bisson <casey.bisson@joyent.com>
-Cedric Davies <cedricda@microsoft.com>
-Cezar Sa Espinola <cezarsa@gmail.com>
-Chad Swenson <chadswen@gmail.com>
-Chance Zibolski <chance.zibolski@gmail.com>
-Chander G <chandergovind@gmail.com>
-Charles Chan <charleswhchan@users.noreply.github.com>
-Charles Hooper <charles.hooper@dotcloud.com>
-Charles Law <claw@conduce.com>
-Charles Lindsay <chaz@chazomatic.us>
-Charles Merriam <charles.merriam@gmail.com>
-Charles Sarrazin <charles@sarraz.in>
-Charlie Lewis <charliel@lab41.org>
-Chase Bolt <chase.bolt@gmail.com>
-ChaYoung You <yousbe@gmail.com>
-Chen Chao <cc272309126@gmail.com>
-Chen Hanxiao <chenhanxiao@cn.fujitsu.com>
-cheney90 <cheney-90@hotmail.com>
-Chewey <prosto-chewey@users.noreply.github.com>
-Chia-liang Kao <clkao@clkao.org>
-chli <chli@freewheel.tv>
-Cholerae Hu <choleraehyq@gmail.com>
-Chris Alfonso <calfonso@redhat.com>
-Chris Armstrong <chris@opdemand.com>
-Chris Dituri <csdituri@gmail.com>
-Chris Fordham <chris@fordham-nagy.id.au>
-Chris Khoo <chris.khoo@gmail.com>
-Chris McKinnel <chrismckinnel@gmail.com>
-Chris Seto <chriskseto@gmail.com>
-Chris Snow <chsnow123@gmail.com>
-Chris St. Pierre <chris.a.st.pierre@gmail.com>
-Chris Stivers <chris@stivers.us>
-Chris Swan <chris.swan@iee.org>
-Chris Wahl <github@wahlnetwork.com>
-Chris Weyl <cweyl@alumni.drew.edu>
-chrismckinnel <chris.mckinnel@tangentlabs.co.uk>
-Christian Berendt <berendt@b1-systems.de>
-Christian Böhme <developement@boehme3d.de>
-Christian Persson <saser@live.se>
-Christian Rotzoll <ch.rotzoll@gmail.com>
-Christian Simon <simon@swine.de>
-Christian Stefanescu <st.chris@gmail.com>
-ChristoperBiscardi <biscarch@sketcht.com>
-Christophe Mehay <cmehay@online.net>
-Christophe Troestler <christophe.Troestler@umons.ac.be>
-Christopher Currie <codemonkey+github@gmail.com>
-Christopher Jones <tophj@linux.vnet.ibm.com>
-Christopher Latham <sudosurootdev@gmail.com>
-Christopher Rigor <crigor@gmail.com>
-Christy Perez <christy@linux.vnet.ibm.com>
-Chun Chen <ramichen@tencent.com>
-Ciro S. Costa <ciro.costa@usp.br>
-Clayton Coleman <ccoleman@redhat.com>
-Clinton Kitson <clintonskitson@gmail.com>
-Coenraad Loubser <coenraad@wish.org.za>
-Colin Dunklau <colin.dunklau@gmail.com>
-Colin Rice <colin@daedrum.net>
-Colin Walters <walters@verbum.org>
-Collin Guarino <collin.guarino@gmail.com>
-Colm Hally <colmhally@gmail.com>
-companycy <companycy@gmail.com>
-Cory Forsyth <cory.forsyth@gmail.com>
-cressie176 <github@stephen-cresswell.net>
-Cristian Staretu <cristian.staretu@gmail.com>
-cristiano balducci <cristiano.balducci@gmail.com>
-Cruceru Calin-Cristian <crucerucalincristian@gmail.com>
-Cyril F <cyrilf7x@gmail.com>
-Daan van Berkel <daan.v.berkel.1980@gmail.com>
-Daehyeok Mun <daehyeok@gmail.com>
-Dafydd Crosby <dtcrsby@gmail.com>
-dalanlan <dalanlan925@gmail.com>
-Damien Nadé <github@livna.org>
-Damien Nozay <damien.nozay@gmail.com>
-Damjan Georgievski <gdamjan@gmail.com>
-Dan Anolik <dan@anolik.net>
-Dan Buch <d.buch@modcloth.com>
-Dan Cotora <dan@bluevision.ro>
-Dan Griffin <dgriffin@peer1.com>
-Dan Hirsch <thequux@upstandinghackers.com>
-Dan Keder <dan.keder@gmail.com>
-Dan Levy <dan@danlevy.net>
-Dan McPherson <dmcphers@redhat.com>
-Dan Stine <sw@stinemail.com>
-Dan Walsh <dwalsh@redhat.com>
-Dan Williams <me@deedubs.com>
-Daniel Antlinger <d.antlinger@gmx.at>
-Daniel Exner <dex@dragonslave.de>
-Daniel Farrell <dfarrell@redhat.com>
-Daniel Garcia <daniel@danielgarcia.info>
-Daniel Gasienica <daniel@gasienica.ch>
-Daniel Hiltgen <daniel.hiltgen@docker.com>
-Daniel Menet <membership@sontags.ch>
-Daniel Mizyrycki <daniel.mizyrycki@dotcloud.com>
-Daniel Nephin <dnephin@docker.com>
-Daniel Norberg <dano@spotify.com>
-Daniel Nordberg <dnordberg@gmail.com>
-Daniel Robinson <gottagetmac@gmail.com>
-Daniel S <dan.streby@gmail.com>
-Daniel Von Fange <daniel@leancoder.com>
-Daniel YC Lin <dlin.tw@gmail.com>
-Daniel Zhang <jmzwcn@gmail.com>
-Daniel, Dao Quang Minh <dqminh@cloudflare.com>
-Danny Berger <dpb587@gmail.com>
-Danny Yates <danny@codeaholics.org>
-Darren Coxall <darren@darrencoxall.com>
-Darren Shepherd <darren.s.shepherd@gmail.com>
-Darren Stahl <darst@microsoft.com>
-Dave Barboza <dbarboza@datto.com>
-Dave Henderson <Dave.Henderson@ca.ibm.com>
-Dave MacDonald <mindlapse@gmail.com>
-Dave Tucker <dt@docker.com>
-David Anderson <dave@natulte.net>
-David Calavera <david.calavera@gmail.com>
-David Corking <dmc-source@dcorking.com>
-David Cramer <davcrame@cisco.com>
-David Currie <david_currie@uk.ibm.com>
-David Davis <daviddavis@redhat.com>
-David Gageot <david@gageot.net>
-David Gebler <davidgebler@gmail.com>
-David Lawrence <david.lawrence@docker.com>
-David Mackey <tdmackey@booleanhaiku.com>
-David Mat <david@davidmat.com>
-David Mcanulty <github@hellspark.com>
-David Pelaez <pelaez89@gmail.com>
-David R. Jenni <david.r.jenni@gmail.com>
-David Röthlisberger <david@rothlis.net>
-David Sheets <sheets@alum.mit.edu>
-David Sissitka <me@dsissitka.com>
-David Xia <dxia@spotify.com>
-David Young <yangboh@cn.ibm.com>
-Davide Ceretti <davide.ceretti@hogarthww.com>
-Dawn Chen <dawnchen@google.com>
-dcylabs <dcylabs@gmail.com>
-decadent <decadent@users.noreply.github.com>
-deed02392 <georgehafiz@gmail.com>
-Deng Guangxing <dengguangxing@huawei.com>
-Deni Bertovic <deni@kset.org>
-Denis Gladkikh <denis@gladkikh.email>
-Denis Ollier <larchunix@users.noreply.github.com>
-Dennis Docter <dennis@d23.nl>
-Derek <crq@kernel.org>
-Derek <crquan@gmail.com>
-Derek Ch <denc716@gmail.com>
-Derek McGowan <derek@mcgstyle.net>
-Deric Crago <deric.crago@gmail.com>
-Deshi Xiao <dxiao@redhat.com>
-devmeyster <arthurfbi@yahoo.com>
-Devvyn Murphy <devvyn@devvyn.com>
-Dharmit Shah <shahdharmit@gmail.com>
-Dieter Reuter <dieter.reuter@me.com>
-Dima Stopel <dima@twistlock.com>
-Dimitri John Ledkov <dimitri.j.ledkov@intel.com>
-Dimitry Andric <d.andric@activevideo.com>
-Dinesh Subhraveti <dineshs@altiscale.com>
-Diogo Monica <diogo@docker.com>
-DiuDiugirl <sophia.wang@pku.edu.cn>
-Djibril Koné <kone.djibril@gmail.com>
-dkumor <daniel@dkumor.com>
-Dmitri Logvinenko <dmitri.logvinenko@gmail.com>
-Dmitry Demeshchuk <demeshchuk@gmail.com>
-Dmitry Gusev <dmitry.gusev@gmail.com>
-Dmitry V. Krivenok <krivenok.dmitry@gmail.com>
-Dmitry Vorobev <dimahabr@gmail.com>
-Dolph Mathews <dolph.mathews@gmail.com>
-Dominik Finkbeiner <finkes93@gmail.com>
-Dominik Honnef <dominik@honnef.co>
-Don Kirkby <donkirkby@users.noreply.github.com>
-Don Kjer <don.kjer@gmail.com>
-Don Spaulding <donspauldingii@gmail.com>
-Donald Huang <don.hcd@gmail.com>
-Dong Chen <dongluo.chen@docker.com>
-Donovan Jones <git@gamma.net.nz>
-Doug Davis <dug@us.ibm.com>
-Doug MacEachern <dougm@vmware.com>
-Doug Tangren <d.tangren@gmail.com>
-Dr Nic Williams <drnicwilliams@gmail.com>
-dragon788 <dragon788@users.noreply.github.com>
-Dražen Lučanin <kermit666@gmail.com>
-Dustin Sallings <dustin@spy.net>
-Ed Costello <epc@epcostello.com>
-Edmund Wagner <edmund-wagner@web.de>
-Eiichi Tsukata <devel@etsukata.com>
-Eike Herzbach <eike@herzbach.net>
-Eivind Uggedal <eivind@uggedal.com>
-Elan Ruusamäe <glen@delfi.ee>
-Elias Probst <mail@eliasprobst.eu>
-Elijah Zupancic <elijah@zupancic.name>
-eluck <mail@eluck.me>
-Elvir Kuric <elvirkuric@gmail.com>
-Emil Hernvall <emil@quench.at>
-Emily Maier <emily@emilymaier.net>
-Emily Rose <emily@contactvibe.com>
-Emir Ozer <emirozer@yandex.com>
-Enguerran <engcolson@gmail.com>
-Eohyung Lee <liquidnuker@gmail.com>
-Eric Hanchrow <ehanchrow@ine.com>
-Eric Lee <thenorthsecedes@gmail.com>
-Eric Myhre <hash@exultant.us>
-Eric Paris <eparis@redhat.com>
-Eric Rafaloff <erafaloff@gmail.com>
-Eric Rosenberg <ehaydenr@users.noreply.github.com>
-Eric Sage <eric.david.sage@gmail.com>
-Eric Windisch <eric@windisch.us>
-Eric Yang <windfarer@gmail.com>
-Eric-Olivier Lamey <eo@lamey.me>
-Erik Bray <erik.m.bray@gmail.com>
-Erik Dubbelboer <erik@dubbelboer.com>
-Erik Hollensbe <github@hollensbe.org>
-Erik Inge Bolsø <knan@redpill-linpro.com>
-Erik Kristensen <erik@erikkristensen.com>
-Erik Weathers <erikdw@gmail.com>
-Erno Hopearuoho <erno.hopearuoho@gmail.com>
-Erwin van der Koogh <info@erronis.nl>
-Euan <euank@amazon.com>
-Eugene Yakubovich <eugene.yakubovich@coreos.com>
-eugenkrizo <eugen.krizo@gmail.com>
-evalle <shmarnev@gmail.com>
-Evan Allrich <evan@unguku.com>
-Evan Carmi <carmi@users.noreply.github.com>
-Evan Hazlett <ejhazlett@gmail.com>
-Evan Krall <krall@yelp.com>
-Evan Phoenix <evan@fallingsnow.net>
-Evan Wies <evan@neomantra.net>
-Evgeny Vereshchagin <evvers@ya.ru>
-Ewa Czechowska <ewa@ai-traders.com>
-Eystein Måløy Stenberg <eystein.maloy.stenberg@cfengine.com>
-ezbercih <cem.ezberci@gmail.com>
-Fabiano Rosas <farosas@br.ibm.com>
-Fabio Falci <fabiofalci@gmail.com>
-Fabio Rehm <fgrehm@gmail.com>
-Fabrizio Regini <freegenie@gmail.com>
-Fabrizio Soppelsa <fsoppelsa@mirantis.com>
-Faiz Khan <faizkhan00@gmail.com>
-falmp <chico.lopes@gmail.com>
-Fangyuan Gao <21551127@zju.edu.cn>
-Fareed Dudhia <fareeddudhia@googlemail.com>
-Fathi Boudra <fathi.boudra@linaro.org>
-Federico Gimenez <fgimenez@coit.es>
-Felix Geisendörfer <felix@debuggable.com>
-Felix Hupfeld <quofelix@users.noreply.github.com>
-Felix Rabe <felix@rabe.io>
-Felix Schindler <fschindler@weluse.de>
-Ferenc Szabo <pragmaticfrank@gmail.com>
-Fernando <fermayo@gmail.com>
-Fero Volar <alian@alian.info>
-Filipe Brandenburger <filbranden@google.com>
-Filipe Oliveira <contato@fmoliveira.com.br>
-fl0yd <fl0yd@me.com>
-Flavio Castelli <fcastelli@suse.com>
-FLGMwt <ryan.stelly@live.com>
-Florian <FWirtz@users.noreply.github.com>
-Florian Klein <florian.klein@free.fr>
-Florian Maier <marsmensch@users.noreply.github.com>
-Florian Weingarten <flo@hackvalue.de>
-Florin Asavoaie <florin.asavoaie@gmail.com>
-Francesc Campoy <campoy@google.com>
-Francisco Carriedo <fcarriedo@gmail.com>
-Francisco Souza <f@souza.cc>
-Frank Groeneveld <frank@ivaldi.nl>
-Frank Herrmann <fgh@4gh.tv>
-Frank Macreery <frank@macreery.com>
-Frank Rosquin <frank.rosquin+github@gmail.com>
-Fred Lifton <fred.lifton@docker.com>
-Frederick F. Kautz IV <fkautz@redhat.com>
-Frederik Loeffert <frederik@zitrusmedia.de>
-Frederik Nordahl Jul Sabroe <frederikns@gmail.com>
-Freek Kalter <freek@kalteronline.org>
-fy2462 <fy2462@gmail.com>
-Félix Baylac-Jacqué <baylac.felix@gmail.com>
-Félix Cantournet <felix.cantournet@cloudwatt.com>
-Gabe Rosenhouse <gabe@missionst.com>
-Gabor Nagy <mail@aigeruth.hu>
-Gabriel Monroy <gabriel@opdemand.com>
-GabrielNicolasAvellaneda <avellaneda.gabriel@gmail.com>
-Galen Sampson <galen.sampson@gmail.com>
-Gareth Rushgrove <gareth@morethanseven.net>
-Garrett Barboza <garrett@garrettbarboza.com>
-Gaurav <gaurav.gosec@gmail.com>
-gautam, prasanna <prasannagautam@gmail.com>
-GennadySpb <lipenkov@gmail.com>
-Geoffrey Bachelet <grosfrais@gmail.com>
-George MacRorie <gmacr31@gmail.com>
-George Xie <georgexsh@gmail.com>
-Georgi Hristozov <georgi@forkbomb.nl>
-Gereon Frey <gereon.frey@dynport.de>
-German DZ <germ@ndz.com.ar>
-Gert van Valkenhoef <g.h.m.van.valkenhoef@rug.nl>
-Gianluca Borello <g.borello@gmail.com>
-Gildas Cuisinier <gildas.cuisinier@gcuisinier.net>
-gissehel <public-devgit-dantus@gissehel.org>
-Giuseppe Mazzotta <gdm85@users.noreply.github.com>
-Gleb Fotengauer-Malinovskiy <glebfm@altlinux.org>
-Gleb M Borisov <borisov.gleb@gmail.com>
-Glyn Normington <gnormington@gopivotal.com>
-GoBella <caili_welcome@163.com>
-Goffert van Gool <goffert@phusion.nl>
-Gosuke Miyashita <gosukenator@gmail.com>
-Gou Rao <gourao@users.noreply.github.com>
-Govinda Fichtner <govinda.fichtner@googlemail.com>
-Grant Reaber <grant.reaber@gmail.com>
-Graydon Hoare <graydon@pobox.com>
-Greg Fausak <greg@tacodata.com>
-Greg Thornton <xdissent@me.com>
-grossws <grossws@gmail.com>
-grunny <mwgrunny@gmail.com>
-gs11 <gustav.sinder@gmail.com>
-Guilhem Lettron <guilhem+github@lettron.fr>
-Guilherme Salgado <gsalgado@gmail.com>
-Guillaume Dufour <gdufour.prestataire@voyages-sncf.com>
-Guillaume J. Charmes <guillaume.charmes@docker.com>
-guoxiuyan <guoxiuyan@huawei.com>
-Gurjeet Singh <gurjeet@singh.im>
-Guruprasad <lgp171188@gmail.com>
-gwx296173 <gaojing3@huawei.com>
-Günter Zöchbauer <guenter@gzoechbauer.com>
-Hans Kristian Flaatten <hans@starefossen.com>
-Hans Rødtang <hansrodtang@gmail.com>
-Hao Shu Wei <haosw@cn.ibm.com>
-Hao Zhang <21521210@zju.edu.cn>
-Harald Albers <github@albersweb.de>
-Harley Laue <losinggeneration@gmail.com>
-Harold Cooper <hrldcpr@gmail.com>
-Harry Zhang <harryzhang@zju.edu.cn>
-He Simei <hesimei@zju.edu.cn>
-heartlock <21521209@zju.edu.cn>
-Hector Castro <hectcastro@gmail.com>
-Henning Sprang <henning.sprang@gmail.com>
-Hobofan <goisser94@gmail.com>
-Hollie Teal <hollie@docker.com>
-Hong Xu <hong@topbug.net>
-hsinko <21551195@zju.edu.cn>
-Hu Keping <hukeping@huawei.com>
-Hu Tao <hutao@cn.fujitsu.com>
-Huanzhong Zhang <zhanghuanzhong90@gmail.com>
-Huayi Zhang <irachex@gmail.com>
-Hugo Duncan <hugo@hugoduncan.org>
-Hugo Marisco <0x6875676f@gmail.com>
-Hunter Blanks <hunter@twilio.com>
-huqun <huqun@zju.edu.cn>
-Huu Nguyen <huu@prismskylabs.com>
-hyeongkyu.lee <hyeongkyu.lee@navercorp.com>
-hyp3rdino <markus.kortlang@lhsystems.com>
-Hyzhou <1187766782@qq.com>
-Ian Babrou <ibobrik@gmail.com>
-Ian Bishop <ianbishop@pace7.com>
-Ian Bull <irbull@gmail.com>
-Ian Calvert <ianjcalvert@gmail.com>
-Ian Lee <IanLee1521@gmail.com>
-Ian Main <imain@redhat.com>
-Ian Truslove <ian.truslove@gmail.com>
-Iavael <iavaelooeyt@gmail.com>
-Icaro Seara <icaro.seara@gmail.com>
-Igor Dolzhikov <bluesriverz@gmail.com>
-Ilkka Laukkanen <ilkka@ilkka.io>
-Ilya Dmitrichenko <errordeveloper@gmail.com>
-Ilya Gusev <mail@igusev.ru>
-ILYA Khlopotov <ilya.khlopotov@gmail.com>
-imre Fitos <imre.fitos+github@gmail.com>
-inglesp <peter.inglesby@gmail.com>
-Ingo Gottwald <in.gottwald@gmail.com>
-Isaac Dupree <antispam@idupree.com>
-Isabel Jimenez <contact.isabeljimenez@gmail.com>
-Isao Jonas <isao.jonas@gmail.com>
-Ivan Babrou <ibobrik@gmail.com>
-Ivan Fraixedes <ifcdev@gmail.com>
-Ivan Grcic <igrcic@gmail.com>
-J Bruni <joaohbruni@yahoo.com.br>
-J. Nunn <jbnunn@gmail.com>
-Jack Danger Canty <jackdanger@squareup.com>
-Jacob Atzen <jacob@jacobatzen.dk>
-Jacob Edelman <edelman.jd@gmail.com>
-Jake Champlin <jake.champlin.27@gmail.com>
-Jake Moshenko <jake@devtable.com>
-jakedt <jake@devtable.com>
-James Allen <jamesallen0108@gmail.com>
-James Carey <jecarey@us.ibm.com>
-James Carr <james.r.carr@gmail.com>
-James DeFelice <james.defelice@ishisystems.com>
-James Harrison Fisher <jameshfisher@gmail.com>
-James Kyburz <james.kyburz@gmail.com>
-James Kyle <james@jameskyle.org>
-James Lal <james@lightsofapollo.com>
-James Mills <prologic@shortcircuit.net.au>
-James Nugent <james@jen20.com>
-James Turnbull <james@lovedthanlost.net>
-Jamie Hannaford <jamie.hannaford@rackspace.com>
-Jamshid Afshar <jafshar@yahoo.com>
-Jan Keromnes <janx@linux.com>
-Jan Koprowski <jan.koprowski@gmail.com>
-Jan Pazdziora <jpazdziora@redhat.com>
-Jan Toebes <jan@toebes.info>
-Jan-Gerd Tenberge <janten@gmail.com>
-Jan-Jaap Driessen <janjaapdriessen@gmail.com>
-Jana Radhakrishnan <mrjana@docker.com>
-Januar Wayong <januar@gmail.com>
-Jared Biel <jared.biel@bolderthinking.com>
-Jared Hocutt <jaredh@netapp.com>
-Jaroslaw Zabiello <hipertracker@gmail.com>
-jaseg <jaseg@jaseg.net>
-Jasmine Hegman <jasmine@jhegman.com>
-Jason Divock <jdivock@gmail.com>
-Jason Giedymin <jasong@apache.org>
-Jason Green <Jason.Green@AverInformatics.Com>
-Jason Hall <imjasonh@gmail.com>
-Jason Heiss <jheiss@aput.net>
-Jason Livesay <ithkuil@gmail.com>
-Jason McVetta <jason.mcvetta@gmail.com>
-Jason Plum <jplum@devonit.com>
-Jason Shepherd <jason@jasonshepherd.net>
-Jason Smith <jasonrichardsmith@gmail.com>
-Jason Sommer <jsdirv@gmail.com>
-Jason Stangroome <jason@codeassassin.com>
-jaxgeller <jacksongeller@gmail.com>
-Jay <imjching@hotmail.com>
-Jay <teguhwpurwanto@gmail.com>
-Jay Kamat <github@jgkamat.33mail.com>
-Jean-Baptiste Barth <jeanbaptiste.barth@gmail.com>
-Jean-Baptiste Dalido <jeanbaptiste@appgratis.com>
-Jean-Paul Calderone <exarkun@twistedmatrix.com>
-Jean-Tiare Le Bigot <jt@yadutaf.fr>
-Jeff Anderson <jeff@docker.com>
-Jeff Johnston <jeff.johnston.mn@gmail.com>
-Jeff Lindsay <progrium@gmail.com>
-Jeff Mickey <j@codemac.net>
-Jeff Minard <jeff@creditkarma.com>
-Jeff Nickoloff <jeff.nickoloff@gmail.com>
-Jeff Welch <whatthejeff@gmail.com>
-Jeffrey Bolle <jeffreybolle@gmail.com>
-Jeffrey Morgan <jmorganca@gmail.com>
-Jeffrey van Gogh <jvg@google.com>
-Jenny Gebske <jennifer@gebske.de>
-Jeremy Grosser <jeremy@synack.me>
-Jeremy Price <jprice.rhit@gmail.com>
-Jeremy Qian <vanpire110@163.com>
-Jeremy Unruh <jeremybunruh@gmail.com>
-Jeroen Jacobs <github@jeroenj.be>
-Jesse Dearing <jesse.dearing@gmail.com>
-Jesse Dubay <jesse@thefortytwo.net>
-Jessica Frazelle <jess@mesosphere.com>
-Jezeniel Zapanta <jpzapanta22@gmail.com>
-jgeiger <jgeiger@gmail.com>
-Jhon Honce <jhonce@redhat.com>
-Jian Zhang <zhangjian.fnst@cn.fujitsu.com>
-jianbosun <wonderflow.sun@gmail.com>
-Jilles Oldenbeuving <ojilles@gmail.com>
-Jim Alateras <jima@comware.com.au>
-Jim Perrin <jperrin@centos.org>
-Jimmy Cuadra <jimmy@jimmycuadra.com>
-Jimmy Puckett <jimmy.puckett@spinen.com>
-jimmyxian <jimmyxian2004@yahoo.com.cn>
-Jinsoo Park <cellpjs@gmail.com>
-Jiri Popelka <jpopelka@redhat.com>
-Jiří Župka <jzupka@redhat.com>
-jjy <jiangjinyang@outlook.com>
-jmzwcn <jmzwcn@gmail.com>
-Joe Beda <joe.github@bedafamily.com>
-Joe Doliner <jdoliner@pachyderm.io>
-Joe Ferguson <joe@infosiftr.com>
-Joe Gordon <joe.gordon0@gmail.com>
-Joe Shaw <joe@joeshaw.org>
-Joe Van Dyk <joe@tanga.com>
-Joel Friedly <joelfriedly@gmail.com>
-Joel Handwell <joelhandwell@gmail.com>
-Joel Hansson <joel.hansson@ecraft.com>
-Joel Wurtz <jwurtz@jolicode.com>
-Joey Geiger <jgeiger@users.noreply.github.com>
-Joey Gibson <joey@joeygibson.com>
-Joffrey F <joffrey@docker.com>
-Johan Euphrosine <proppy@google.com>
-Johan Rydberg <johan.rydberg@gmail.com>
-Johannes 'fish' Ziemke <github@freigeist.org>
-John Costa <john.costa@gmail.com>
-John Feminella <jxf@jxf.me>
-John Gardiner Myers <jgmyers@proofpoint.com>
-John Gossman <johngos@microsoft.com>
-John Howard (VM) <John.Howard@microsoft.com>
-John OBrien III <jobrieniii@yahoo.com>
-John Starks <jostarks@microsoft.com>
-John Tims <john.k.tims@gmail.com>
-John Warwick <jwarwick@gmail.com>
-John Willis <john.willis@docker.com>
-Jon Wedaman <jweede@gmail.com>
-Jonas Pfenniger <jonas@pfenniger.name>
-Jonathan A. Sternberg <jonathansternberg@gmail.com>
-Jonathan Boulle <jonathanboulle@gmail.com>
-Jonathan Camp <jonathan@irondojo.com>
-Jonathan Dowland <jon+github@alcopop.org>
-Jonathan Lebon <jlebon@redhat.com>
-Jonathan McCrohan <jmccrohan@gmail.com>
-Jonathan Mueller <j.mueller@apoveda.ch>
-Jonathan Pares <jonathanpa@users.noreply.github.com>
-Jonathan Rudenberg <jonathan@titanous.com>
-Joost Cassee <joost@cassee.net>
-Jordan <jjn2009@users.noreply.github.com>
-Jordan Arentsen <blissdev@gmail.com>
-Jordan Sissel <jls@semicomplete.com>
-Jose Diaz-Gonzalez <josegonzalez@users.noreply.github.com>
-Joseph Anthony Pasquale Holsten <joseph@josephholsten.com>
-Joseph Hager <ajhager@gmail.com>
-Joseph Kern <jkern@semafour.net>
-Josh <jokajak@gmail.com>
-Josh Hawn <josh.hawn@docker.com>
-Josh Poimboeuf <jpoimboe@redhat.com>
-Josiah Kiehl <jkiehl@riotgames.com>
-José Tomás Albornoz <jojo@eljojo.net>
-JP <jpellerin@leapfrogonline.com>
-jrabbit <jackjrabbit@gmail.com>
-Julian Taylor <jtaylor.debian@googlemail.com>
-Julien Barbier <write0@gmail.com>
-Julien Bisconti <veggiemonk@users.noreply.github.com>
-Julien Bordellier <julienbordellier@gmail.com>
-Julien Dubois <julien.dubois@gmail.com>
-Julien Pervillé <julien.perville@perfect-memory.com>
-Julio Montes <imc.coder@gmail.com>
-Jun-Ru Chang <jrjang@gmail.com>
-Jussi Nummelin <jussi.nummelin@gmail.com>
-Justas Brazauskas <brazauskasjustas@gmail.com>
-Justin Cormack <justin.cormack@docker.com>
-Justin Force <justin.force@gmail.com>
-Justin Plock <jplock@users.noreply.github.com>
-Justin Simonelis <justin.p.simonelis@gmail.com>
-Justin Terry <juterry@microsoft.com>
-Jyrki Puttonen <jyrkiput@gmail.com>
-Jérôme Petazzoni <jerome.petazzoni@dotcloud.com>
-Jörg Thalheim <joerg@higgsboson.tk>
-Kai Blin <kai@samba.org>
-Kai Qiang Wu(Kennan) <wkqwu@cn.ibm.com>
-Kamil Domański <kamil@domanski.co>
-kamjar gerami <kami.gerami@gmail.com>
-Kanstantsin Shautsou <kanstantsin.sha@gmail.com>
-Karan Lyons <karan@karanlyons.com>
-Kareem Khazem <karkhaz@karkhaz.com>
-kargakis <kargakis@users.noreply.github.com>
-Karl Grzeszczak <karlgrz@gmail.com>
-Karol Duleba <mr.fuxi@gmail.com>
-Katie McLaughlin <katie@glasnt.com>
-Kato Kazuyoshi <kato.kazuyoshi@gmail.com>
-Katrina Owen <katrina.owen@gmail.com>
-Kawsar Saiyeed <kawsar.saiyeed@projiris.com>
-kayrus <kay.diam@gmail.com>
-Ke Xu <leonhartx.k@gmail.com>
-Keli Hu <dev@keli.hu>
-Ken Cochrane <kencochrane@gmail.com>
-Ken ICHIKAWA <ichikawa.ken@jp.fujitsu.com>
-Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
-Kenjiro Nakayama <nakayamakenjiro@gmail.com>
-Kent Johnson <kentoj@gmail.com>
-Kevin "qwazerty" Houdebert <kevin.houdebert@gmail.com>
-Kevin Clark <kevin.clark@gmail.com>
-Kevin J. Lynagh <kevin@keminglabs.com>
-Kevin Menard <kevin@nirvdrum.com>
-Kevin P. Kucharczyk <kevinkucharczyk@gmail.com>
-Kevin Shi <kshi@andrew.cmu.edu>
-Kevin Wallace <kevin@pentabarf.net>
-Kevin Yap <me@kevinyap.ca>
-kevinmeredith <kevin.m.meredith@gmail.com>
-Keyvan Fatehi <keyvanfatehi@gmail.com>
-kies <lleelm@gmail.com>
-Kim BKC Carlbacker <kim.carlbacker@gmail.com>
-Kim Eik <kim@heldig.org>
-Kimbro Staken <kstaken@kstaken.com>
-Kir Kolyshkin <kir@openvz.org>
-Kiran Gangadharan <kiran.daredevil@gmail.com>
-Kirill SIbirev <l0kix2@gmail.com>
-knappe <tyler.knappe@gmail.com>
-Kohei Tsuruta <coheyxyz@gmail.com>
-Koichi Shiraishi <k@zchee.io>
-Konrad Kleine <konrad.wilhelm.kleine@gmail.com>
-Konstantin Pelykh <kpelykh@zettaset.com>
-Krasimir Georgiev <support@vip-consult.co.uk>
-Kristian Haugene <kristian.haugene@capgemini.com>
-Kristina Zabunova <triara.xiii@gmail.com>
-krrg <krrgithub@gmail.com>
-Kun Zhang <zkazure@gmail.com>
-Kunal Kushwaha <kunal.kushwaha@gmail.com>
-Kyle Conroy <kyle.j.conroy@gmail.com>
-kyu <leehk1227@gmail.com>
-Lachlan Coote <lcoote@vmware.com>
-Lai Jiangshan <jiangshanlai@gmail.com>
-Lajos Papp <lajos.papp@sequenceiq.com>
-Lakshan Perera <lakshan@laktek.com>
-Lalatendu Mohanty <lmohanty@redhat.com>
-lalyos <lalyos@yahoo.com>
-Lance Chen <cyen0312@gmail.com>
-Lance Kinley <lkinley@loyaltymethods.com>
-Lars Butler <Lars.Butler@gmail.com>
-Lars Kellogg-Stedman <lars@redhat.com>
-Lars R. Damerow <lars@pixar.com>
-Laszlo Meszaros <lacienator@gmail.com>
-Laurent Erignoux <lerignoux@gmail.com>
-Laurie Voss <github@seldo.com>
-Leandro Siqueira <leandro.siqueira@gmail.com>
-Lee, Meng-Han <sunrisedm4@gmail.com>
-leeplay <hyeongkyu.lee@navercorp.com>
-Lei Jitang <leijitang@huawei.com>
-Len Weincier <len@cloudafrica.net>
-Lennie <github@consolejunkie.net>
-Leszek Kowalski <github@leszekkowalski.pl>
-Levi Blackstone <levi.blackstone@rackspace.com>
-Levi Gross <levi@levigross.com>
-Lewis Marshall <lewis@lmars.net>
-Lewis Peckover <lew+github@lew.io>
-Liana Lo <liana.lixia@gmail.com>
-Liang Mingqiang <mqliang.zju@gmail.com>
-Liang-Chi Hsieh <viirya@gmail.com>
-liaoqingwei <liaoqingwei@huawei.com>
-limsy <seongyeol37@gmail.com>
-Lin Lu <doraalin@163.com>
-LingFaKe <lingfake@huawei.com>
-Linus Heckemann <lheckemann@twig-world.com>
-Liran Tal <liran.tal@gmail.com>
-Liron Levin <liron@twistlock.com>
-Liu Bo <bo.li.liu@oracle.com>
-Liu Hua <sdu.liu@huawei.com>
-LIZAO LI <lzlarryli@gmail.com>
-Lloyd Dewolf <foolswisdom@gmail.com>
-Lokesh Mandvekar <lsm5@fedoraproject.org>
-longliqiang88 <394564827@qq.com>
-Lorenz Leutgeb <lorenz.leutgeb@gmail.com>
-Lorenzo Fontana <fontanalorenzo@me.com>
-Louis Opter <kalessin@kalessin.fr>
-Luca Marturana <lucamarturana@gmail.com>
-Luca Orlandi <luca.orlandi@gmail.com>
-Luca-Bogdan Grigorescu <Luca-Bogdan Grigorescu>
-Lucas Chan <lucas-github@lucaschan.com>
-Luis Martínez de Bartolomé Izquierdo <lmartinez@biicode.com>
-Lukas Waslowski <cr7pt0gr4ph7@gmail.com>
-lukaspustina <lukas.pustina@centerdevice.com>
-Lukasz Zajaczkowski <Lukasz.Zajaczkowski@ts.fujitsu.com>
-lukemarsden <luke@digital-crocus.com>
-Lynda O'Leary <lyndaoleary29@gmail.com>
-Lénaïc Huard <lhuard@amadeus.com>
-Ma Shimiao <mashimiao.fnst@cn.fujitsu.com>
-Mabin <bin.ma@huawei.com>
-Madhav Puri <madhav.puri@gmail.com>
-Madhu Venugopal <madhu@socketplane.io>
-Mageee <21521230.zju.edu.cn>
-Mahesh Tiyyagura <tmahesh@gmail.com>
-malnick <malnick@gmail..com>
-Malte Janduda <mail@janduda.net>
-manchoz <giampaolo@trampolineup.com>
-Manfred Touron <m@42.am>
-Manfred Zabarauskas <manfredas@zabarauskas.com>
-mansinahar <mansinahar@users.noreply.github.com>
-Manuel Meurer <manuel@krautcomputing.com>
-Manuel Woelker <github@manuel.woelker.org>
-mapk0y <mapk0y@gmail.com>
-Marc Abramowitz <marc@marc-abramowitz.com>
-Marc Kuo <kuomarc2@gmail.com>
-Marc Tamsky <mtamsky@gmail.com>
-Marcelo Salazar <chelosalazar@gmail.com>
-Marco Hennings <marco.hennings@freiheit.com>
-Marcus Farkas <toothlessgear@finitebox.com>
-Marcus Linke <marcus.linke@gmx.de>
-Marcus Ramberg <marcus@nordaaker.com>
-Marek Goldmann <marek.goldmann@gmail.com>
-Marian Marinov <mm@yuhu.biz>
-Marianna Tessel <mtesselh@gmail.com>
-Mario Loriedo <mario.loriedo@gmail.com>
-Marius Gundersen <me@mariusgundersen.net>
-Marius Sturm <marius@graylog.com>
-Marius Voila <marius.voila@gmail.com>
-Mark Allen <mrallen1@yahoo.com>
-Mark McGranaghan <mmcgrana@gmail.com>
-Mark McKinstry <mmckinst@umich.edu>
-Mark West <markewest@gmail.com>
-Marko Mikulicic <mmikulicic@gmail.com>
-Marko Tibold <marko@tibold.nl>
-Markus Fix <lispmeister@gmail.com>
-Martijn Dwars <ikben@martijndwars.nl>
-Martijn van Oosterhout <kleptog@svana.org>
-Martin Honermeyer <maze@strahlungsfrei.de>
-Martin Kelly <martin@surround.io>
-Martin Mosegaard Amdisen <martin.amdisen@praqma.com>
-Martin Redmond <redmond.martin@gmail.com>
-Mary Anthony <mary.anthony@docker.com>
-Masahito Zembutsu <zembutsu@users.noreply.github.com>
-Mason Malone <mason.malone@gmail.com>
-Mateusz Sulima <sulima.mateusz@gmail.com>
-Mathias Monnerville <mathias@monnerville.com>
-Mathieu Le Marec - Pasquet <kiorky@cryptelium.net>
-Matt Apperson <me@mattapperson.com>
-Matt Bachmann <bachmann.matt@gmail.com>
-Matt Bentley <matt.bentley@docker.com>
-Matt Haggard <haggardii@gmail.com>
-Matt McCormick <matt.mccormick@kitware.com>
-Matt Moore <mattmoor@google.com>
-Matt Robenolt <matt@ydekproductions.com>
-Matthew Heon <mheon@redhat.com>
-Matthew Mayer <matthewkmayer@gmail.com>
-Matthew Mueller <mattmuelle@gmail.com>
-Matthew Riley <mattdr@google.com>
-Matthias Klumpp <matthias@tenstral.net>
-Matthias Kühnle <git.nivoc@neverbox.com>
-Matthias Rampke <mr@soundcloud.com>
-Matthieu Hauglustaine <matt.hauglustaine@gmail.com>
-mattymo <raytrac3r@gmail.com>
-mattyw <mattyw@me.com>
-Mauricio Garavaglia <mauriciogaravaglia@gmail.com>
-mauriyouth <mauriyouth@gmail.com>
-Max Shytikov <mshytikov@gmail.com>
-Maxim Ivanov <ivanov.maxim@gmail.com>
-Maxim Kulkin <mkulkin@mirantis.com>
-Maxim Treskin <zerthurd@gmail.com>
-Maxime Petazzoni <max@signalfuse.com>
-Meaglith Ma <genedna@gmail.com>
-meejah <meejah@meejah.ca>
-Megan Kostick <mkostick@us.ibm.com>
-Mehul Kar <mehul.kar@gmail.com>
-Mengdi Gao <usrgdd@gmail.com>
-Mert Yazıcıoğlu <merty@users.noreply.github.com>
-Micah Zoltu <micah@newrelic.com>
-Michael A. Smith <michael@smith-li.com>
-Michael Bridgen <mikeb@squaremobius.net>
-Michael Brown <michael@netdirect.ca>
-Michael Chiang <mchiang@docker.com>
-Michael Crosby <michael@docker.com>
-Michael Currie <mcurrie@bruceforceresearch.com>
-Michael Friis <friism@gmail.com>
-Michael Gorsuch <gorsuch@github.com>
-Michael Grauer <michael.grauer@kitware.com>
-Michael Holzheu <holzheu@linux.vnet.ibm.com>
-Michael Hudson-Doyle <michael.hudson@linaro.org>
-Michael Huettermann <michael@huettermann.net>
-Michael Käufl <docker@c.michael-kaeufl.de>
-Michael Neale <michael.neale@gmail.com>
-Michael Prokop <github@michael-prokop.at>
-Michael Scharf <github@scharf.gr>
-Michael Stapelberg <michael+gh@stapelberg.de>
-Michael Steinert <mike.steinert@gmail.com>
-Michael Thies <michaelthies78@gmail.com>
-Michael West <mwest@mdsol.com>
-Michal Fojtik <mfojtik@redhat.com>
-Michal Gebauer <mishak@mishak.net>
-Michal Jemala <michal.jemala@gmail.com>
-Michal Minar <miminar@redhat.com>
-Michaël Pailloncy <mpapo.dev@gmail.com>
-Michał Czeraszkiewicz <czerasz@gmail.com>
-Michiel@unhosted <michiel@unhosted.org>
-Miguel Angel Fernández <elmendalerenda@gmail.com>
-Miguel Morales <mimoralea@gmail.com>
-Mihai Borobocea <MihaiBorob@gmail.com>
-Mihuleacc Sergiu <mihuleac.sergiu@gmail.com>
-Mike Brown <brownwm@us.ibm.com>
-Mike Chelen <michael.chelen@gmail.com>
-Mike Danese <mikedanese@google.com>
-Mike Dillon <mike@embody.org>
-Mike Dougherty <mike.dougherty@docker.com>
-Mike Gaffney <mike@uberu.com>
-Mike Goelzer <mgoelzer@docker.com>
-Mike Leone <mleone896@gmail.com>
-Mike MacCana <mike.maccana@gmail.com>
-Mike Naberezny <mike@naberezny.com>
-Mike Snitzer <snitzer@redhat.com>
-mikelinjie <294893458@qq.com>
-Mikhail Sobolev <mss@mawhrin.net>
-Miloslav Trmač <mitr@redhat.com>
-mingqing <limingqing@cyou-inc.com>
-Mingzhen Feng <fmzhen@zju.edu.cn>
-Mitch Capper <mitch.capper@gmail.com>
-mlarcher <github@ringabell.org>
-Mohammad Banikazemi <mb@us.ibm.com>
-Mohammed Aaqib Ansari <maaquib@gmail.com>
-Mohit Soni <mosoni@ebay.com>
-Morgan Bauer <mbauer@us.ibm.com>
-Morgante Pell <morgante.pell@morgante.net>
-Morgy93 <thomas@ulfertsprygoda.de>
-Morten Siebuhr <sbhr@sbhr.dk>
-Morton Fox <github@qslw.com>
-Moysés Borges <moysesb@gmail.com>
-mqliang <mqliang.zju@gmail.com>
-Mrunal Patel <mrunalp@gmail.com>
-msabansal <sabansal@microsoft.com>
-mschurenko <matt.schurenko@gmail.com>
-muge <stevezhang2014@gmail.com>
-Mustafa Akın <mustafa91@gmail.com>
-Muthukumar R <muthur@gmail.com>
-Máximo Cuadros <mcuadros@gmail.com>
-Médi-Rémi Hashim <medimatrix@users.noreply.github.com>
-Nahum Shalman <nshalman@omniti.com>
-Nakul Pathak <nakulpathak3@hotmail.com>
-Nalin Dahyabhai <nalin@redhat.com>
-Nan Monnand Deng <monnand@gmail.com>
-Naoki Orii <norii@cs.cmu.edu>
-Natalie Parker <nparker@omnifone.com>
-Natanael Copa <natanael.copa@docker.com>
-Nate Brennand <nate.brennand@clever.com>
-Nate Eagleson <nate@nateeag.com>
-Nate Jones <nate@endot.org>
-Nathan Hsieh <hsieh.nathan@gmail.com>
-Nathan Kleyn <nathan@nathankleyn.com>
-Nathan LeClaire <nathan.leclaire@docker.com>
-Nathan McCauley <nathan.mccauley@docker.com>
-Nathan Williams <nathan@teamtreehouse.com>
-Neal McBurnett <neal@mcburnett.org>
-Nelson Chen <crazysim@gmail.com>
-Nghia Tran <nghia@google.com>
-Niall O'Higgins <niallo@unworkable.org>
-Nicholas E. Rabenau <nerab@gmx.at>
-Nick Irvine <nfirvine@nfirvine.com>
-Nick Parker <nikaios@gmail.com>
-Nick Payne <nick@kurai.co.uk>
-Nick Stenning <nick.stenning@digital.cabinet-office.gov.uk>
-Nick Stinemates <nick@stinemates.org>
-Nicolas Borboën <ponsfrilus@users.noreply.github.com>
-Nicolas De loof <nicolas.deloof@gmail.com>
-Nicolas Dudebout <nicolas.dudebout@gatech.edu>
-Nicolas Goy <kuon@goyman.com>
-Nicolas Kaiser <nikai@nikai.net>
-Nicolás Hock Isaza <nhocki@gmail.com>
-Nigel Poulton <nigelpoulton@hotmail.com>
-NikolaMandic <mn080202@gmail.com>
-nikolas <nnyby@columbia.edu>
-Nirmal Mehta <nirmalkmehta@gmail.com>
-Nishant Totla <nishanttotla@gmail.com>
-NIWA Hideyuki <niwa.niwa@nifty.ne.jp>
-noducks <onemannoducks@gmail.com>
-Nolan Darilek <nolan@thewordnerd.info>
-nponeccop <andy.melnikov@gmail.com>
-Nuutti Kotivuori <naked@iki.fi>
-nzwsch <hi@nzwsch.com>
-O.S. Tezer <ostezer@gmail.com>
-objectified <objectified@gmail.com>
-OddBloke <daniel@daniel-watkins.co.uk>
-odk- <github@odkurzacz.org>
-Oguz Bilgic <fisyonet@gmail.com>
-Oh Jinkyun <tintypemolly@gmail.com>
-Ohad Schneider <ohadschn@users.noreply.github.com>
-Ole Reifschneider <mail@ole-reifschneider.de>
-Oliver Neal <ItsVeryWindy@users.noreply.github.com>
-Olivier Gambier <dmp42@users.noreply.github.com>
-Olle Jonsson <olle.jonsson@gmail.com>
-Oriol Francès <oriolfa@gmail.com>
-Otto Kekäläinen <otto@seravo.fi>
-oyld <oyld0210@163.com>
-ozlerhakan <hakan.ozler@kodcu.com>
-paetling <paetling@gmail.com>
-pandrew <letters@paulnotcom.se>
-panticz <mail@konczalski.de>
-Paolo G. Giarrusso <p.giarrusso@gmail.com>
-Pascal Borreli <pascal@borreli.com>
-Pascal Hartig <phartig@rdrei.net>
-Patrick Devine <patrick.devine@docker.com>
-Patrick Hemmer <patrick.hemmer@gmail.com>
-Patrick Stapleton <github@gdi2290.com>
-pattichen <craftsbear@gmail.com>
-Paul <paul9869@gmail.com>
-paul <paul@inkling.com>
-Paul Annesley <paul@annesley.cc>
-Paul Bellamy <paul.a.bellamy@gmail.com>
-Paul Bowsher <pbowsher@globalpersonals.co.uk>
-Paul Hammond <paul@paulhammond.org>
-Paul Jimenez <pj@place.org>
-Paul Lietar <paul@lietar.net>
-Paul Liljenberg <liljenberg.paul@gmail.com>
-Paul Morie <pmorie@gmail.com>
-Paul Nasrat <pnasrat@gmail.com>
-Paul Weaver <pauweave@cisco.com>
-Pavel Lobashov <ShockwaveNN@gmail.com>
-Pavel Pospisil <pospispa@gmail.com>
-Pavel Sutyrin <pavel.sutyrin@gmail.com>
-Pavel Tikhomirov <ptikhomirov@parallels.com>
-Pavlos Ratis <dastergon@gentoo.org>
-Peeyush Gupta <gpeeyush@linux.vnet.ibm.com>
-Peggy Li <peggyli.224@gmail.com>
-Pei Su <sillyousu@gmail.com>
-Penghan Wang <ph.wang@daocloud.io>
-perhapszzy@sina.com <perhapszzy@sina.com>
-Peter Bourgon <peter@bourgon.org>
-Peter Braden <peterbraden@peterbraden.co.uk>
-Peter Choi <reikani@Peters-MacBook-Pro.local>
-Peter Dave Hello <PeterDaveHello@users.noreply.github.com>
-Peter Edge <peter.edge@gmail.com>
-Peter Ericson <pdericson@gmail.com>
-Peter Esbensen <pkesbensen@gmail.com>
-Peter Malmgren <ptmalmgren@gmail.com>
-Peter Salvatore <peter@psftw.com>
-Peter Volpe <petervo@redhat.com>
-Peter Waller <p@pwaller.net>
-Phil <underscorephil@gmail.com>
-Phil Estes <estesp@linux.vnet.ibm.com>
-Phil Spitler <pspitler@gmail.com>
-Philip Monroe <phil@philmonroe.com>
-Philipp Wahala <philipp.wahala@gmail.com>
-Philipp Weissensteiner <mail@philippweissensteiner.com>
-Phillip Alexander <git@phillipalexander.io>
-pidster <pid@pidster.com>
-Piergiuliano Bossi <pgbossi@gmail.com>
-Pierre <py@poujade.org>
-Pierre Carrier <pierre@meteor.com>
-Pierre Wacrenier <pierre.wacrenier@gmail.com>
-Pierre-Alain RIVIERE <pariviere@ippon.fr>
-Piotr Bogdan <ppbogdan@gmail.com>
-pixelistik <pixelistik@users.noreply.github.com>
-Porjo <porjo38@yahoo.com.au>
-Poul Kjeldager Sørensen <pks@s-innovations.net>
-Pradeep Chhetri <pradeep@indix.com>
-Prasanna Gautam <prasannagautam@gmail.com>
-Prayag Verma <prayag.verma@gmail.com>
-Przemek Hejman <przemyslaw.hejman@gmail.com>
-pysqz <randomq@126.com>
-qg <1373319223@qq.com>
-qhuang <h.huangqiang@huawei.com>
-Qiang Huang <h.huangqiang@huawei.com>
-qq690388648 <690388648@qq.com>
-Quentin Brossard <qbrossard@gmail.com>
-Quentin Perez <qperez@ocs.online.net>
-Quentin Tayssier <qtayssier@gmail.com>
-r0n22 <cameron.regan@gmail.com>
-Rafal Jeczalik <rjeczalik@gmail.com>
-Rafe Colton <rafael.colton@gmail.com>
-Raghavendra K T <raghavendra.kt@linux.vnet.ibm.com>
-Raghuram Devarakonda <draghuram@gmail.com>
-Rajat Pandit <rp@rajatpandit.com>
-Rajdeep Dua <dua_rajdeep@yahoo.com>
-Ralle <spam@rasmusa.net>
-Ralph Bean <rbean@redhat.com>
-Ramkumar Ramachandra <artagnon@gmail.com>
-Ramon van Alteren <ramon@vanalteren.nl>
-Ray Tsang <saturnism@users.noreply.github.com>
-ReadmeCritic <frankensteinbot@gmail.com>
-Recursive Madman <recursive.madman@gmx.de>
-Regan McCooey <rmccooey27@aol.com>
-Remi Rampin <remirampin@gmail.com>
-Renato Riccieri Santos Zannon <renato.riccieri@gmail.com>
-resouer <resouer@163.com>
-rgstephens <greg@udon.org>
-Rhys Hiltner <rhys@twitch.tv>
-Rich Seymour <rseymour@gmail.com>
-Richard <richard.scothern@gmail.com>
-Richard Burnison <rburnison@ebay.com>
-Richard Harvey <richard@squarecows.com>
-Richard Metzler <richard@paadee.com>
-Richard Scothern <richard.scothern@gmail.com>
-Richo Healey <richo@psych0tik.net>
-Rick Bradley <rick@users.noreply.github.com>
-Rick van de Loo <rickvandeloo@gmail.com>
-Rick Wieman <git@rickw.nl>
-Rik Nijessen <rik@keefo.nl>
-Riku Voipio <riku.voipio@linaro.org>
-Riley Guerin <rileytg.dev@gmail.com>
-Ritesh H Shukla <sritesh@vmware.com>
-Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
-Rob Vesse <rvesse@dotnetrdf.org>
-Robert Bachmann <rb@robertbachmann.at>
-Robert Bittle <guywithnose@gmail.com>
-Robert Obryk <robryk@gmail.com>
-Robert Stern <lexandro2000@gmail.com>
-Robert Wallis <smilingrob@gmail.com>
-Roberto G. Hashioka <roberto.hashioka@docker.com>
-Robin Naundorf <r.naundorf@fh-muenster.de>
-Robin Schneider <ypid@riseup.net>
-Robin Speekenbrink <robin@kingsquare.nl>
-robpc <rpcann@gmail.com>
-Rodolfo Carvalho <rhcarvalho@gmail.com>
-Rodrigo Vaz <rodrigo.vaz@gmail.com>
-Roel Van Nyen <roel.vannyen@gmail.com>
-Roger Peppe <rogpeppe@gmail.com>
-Rohit Jnagal <jnagal@google.com>
-Rohit Kadam <rohit.d.kadam@gmail.com>
-Roland Huß <roland@jolokia.org>
-Roland Kammerer <roland.kammerer@linbit.com>
-Roland Moriz <rmoriz@users.noreply.github.com>
-Roma Sokolov <sokolov.r.v@gmail.com>
-Roman Strashkin <roman.strashkin@gmail.com>
-Ron Smits <ron.smits@gmail.com>
-root <docker-dummy@example.com>
-root <root@localhost>
-root <root@ubuntu-14.04-amd64-vbox>
-root <root@webm215.cluster016.ha.ovh.net>
-Rory Hunter <roryhunter2@gmail.com>
-Rory McCune <raesene@gmail.com>
-Ross Boucher <rboucher@gmail.com>
-Rovanion Luckey <rovanion.luckey@gmail.com>
-Rozhnov Alexandr <nox73@ya.ru>
-rsmoorthy <rsmoorthy@users.noreply.github.com>
-Rudolph Gottesheim <r.gottesheim@loot.at>
-Rui Lopes <rgl@ruilopes.com>
-Ryan Anderson <anderson.ryanc@gmail.com>
-Ryan Aslett <github@mixologic.com>
-Ryan Belgrave <rmb1993@gmail.com>
-Ryan Detzel <ryan.detzel@gmail.com>
-Ryan Fowler <rwfowler@gmail.com>
-Ryan McLaughlin <rmclaughlin@insidesales.com>
-Ryan O'Donnell <odonnellryanc@gmail.com>
-Ryan Seto <ryanseto@yak.net>
-Ryan Thomas <rthomas@atlassian.com>
-Ryan Trauntvein <rtrauntvein@novacoast.com>
-Ryan Wallner <ryan.wallner@clusterhq.com>
-RyanDeng <sheldon.d1018@gmail.com>
-Rémy Greinhofer <remy.greinhofer@livelovely.com>
-s. rannou <mxs@sbrk.org>
-s00318865 <sunyuan3@huawei.com>
-Sabin Basyal <sabin.basyal@gmail.com>
-Sachin Joshi <sachin_jayant_joshi@hotmail.com>
-Sagar Hani <sagarhani33@gmail.com>
-Sainath Grandhi <sainath.grandhi@intel.com>
-Sally O'Malley <somalley@redhat.com>
-Sam Abed <sam.abed@gmail.com>
-Sam Alba <sam.alba@gmail.com>
-Sam Bailey <cyprix@cyprix.com.au>
-Sam J Sharpe <sam.sharpe@digital.cabinet-office.gov.uk>
-Sam Neirinck <sam@samneirinck.com>
-Sam Reis <sreis@atlassian.com>
-Sam Rijs <srijs@airpost.net>
-Sambuddha Basu <sambuddhabasu1@gmail.com>
-Sami Wagiaalla <swagiaal@redhat.com>
-Samuel Andaya <samuel@andaya.net>
-Samuel Dion-Girardeau <samuel.diongirardeau@gmail.com>
-Samuel Karp <skarp@amazon.com>
-Samuel PHAN <samuel-phan@users.noreply.github.com>
-Sankar சங்கர் <sankar.curiosity@gmail.com>
-Sanket Saurav <sanketsaurav@gmail.com>
-Santhosh Manohar <santhosh@docker.com>
-sapphiredev <se.imas.kr@gmail.com>
-Satnam Singh <satnam@raintown.org>
-satoru <satorulogic@gmail.com>
-Satoshi Amemiya <satoshi_amemiya@voyagegroup.com>
-scaleoutsean <scaleoutsean@users.noreply.github.com>
-Scott Bessler <scottbessler@gmail.com>
-Scott Collier <emailscottcollier@gmail.com>
-Scott Johnston <scott@docker.com>
-Scott Stamp <scottstamp851@gmail.com>
-Scott Walls <sawalls@umich.edu>
-sdreyesg <sdreyesg@gmail.com>
-Sean Christopherson <sean.j.christopherson@intel.com>
-Sean Cronin <seancron@gmail.com>
-Sean OMeara <sean@chef.io>
-Sean P. Kane <skane@newrelic.com>
-Sebastiaan van Steenis <mail@superseb.nl>
-Sebastiaan van Stijn <github@gone.nl>
-Senthil Kumar Selvaraj <senthil.thecoder@gmail.com>
-Senthil Kumaran <senthil@uthcode.com>
-SeongJae Park <sj38.park@gmail.com>
-Seongyeol Lim <seongyeol37@gmail.com>
-Serge Hallyn <serge.hallyn@ubuntu.com>
-Sergey Alekseev <sergey.alekseev.minsk@gmail.com>
-Sergey Evstifeev <sergey.evstifeev@gmail.com>
-Sevki Hasirci <s@sevki.org>
-Shane Canon <scanon@lbl.gov>
-Shane da Silva <shane@dasilva.io>
-shaunol <shaunol@gmail.com>
-Shawn Landden <shawn@churchofgit.com>
-Shawn Siefkas <shawn.siefkas@meredith.com>
-Shekhar Gulati <shekhargulati84@gmail.com>
-Sheng Yang <sheng@yasker.org>
-Shengbo Song <thomassong@tencent.com>
-Shih-Yuan Lee <fourdollars@gmail.com>
-Shijiang Wei <mountkin@gmail.com>
-Shishir Mahajan <shishir.mahajan@redhat.com>
-shuai-z <zs.broccoli@gmail.com>
-Shuwei Hao <haosw@cn.ibm.com>
-Sian Lerk Lau <kiawin@gmail.com>
-sidharthamani <sid@rancher.com>
-Silas Sewell <silas@sewell.org>
-Simei He <hesimei@zju.edu.cn>
-Simon Eskildsen <sirup@sirupsen.com>
-Simon Leinen <simon.leinen@gmail.com>
-Simon Taranto <simon.taranto@gmail.com>
-Sindhu S <sindhus@live.in>
-Sjoerd Langkemper <sjoerd-github@linuxonly.nl>
-Solganik Alexander <solganik@gmail.com>
-Solomon Hykes <solomon@docker.com>
-Song Gao <song@gao.io>
-Soshi Katsuta <soshi.katsuta@gmail.com>
-Soulou <leo@unbekandt.eu>
-Spencer Brown <spencer@spencerbrown.org>
-Spencer Smith <robertspencersmith@gmail.com>
-Sridatta Thatipamala <sthatipamala@gmail.com>
-Sridhar Ratnakumar <sridharr@activestate.com>
-Srini Brahmaroutu <srbrahma@us.ibm.com>
-srinsriv <srinsriv@users.noreply.github.com>
-Steeve Morin <steeve.morin@gmail.com>
-Stefan Berger <stefanb@linux.vnet.ibm.com>
-Stefan J. Wernli <swernli@microsoft.com>
-Stefan Praszalowicz <stefan@greplin.com>
-Stefan Scherer <scherer_stefan@icloud.com>
-Stefan Staudenmeyer <doerte@instana.com>
-Stefan Weil <sw@weilnetz.de>
-Stephen Crosby <stevecrozz@gmail.com>
-Stephen Day <stephen.day@docker.com>
-Stephen Rust <srust@blockbridge.com>
-Steve Durrheimer <s.durrheimer@gmail.com>
-Steve Francia <steve.francia@gmail.com>
-Steve Koch <stevekochscience@gmail.com>
-Steven Burgess <steven.a.burgess@hotmail.com>
-Steven Iveson <sjiveson@outlook.com>
-Steven Merrill <steven.merrill@gmail.com>
-Steven Richards <steven@axiomzen.co>
-Steven Taylor <steven.taylor@me.com>
-Subhajit Ghosh <isubuz.g@gmail.com>
-Sujith Haridasan <sujith.h@gmail.com>
-Suryakumar Sudar <surya.trunks@gmail.com>
-Sven Dowideit <SvenDowideit@home.org.au>
-Swapnil Daingade <swapnil.daingade@gmail.com>
-Sylvain Baubeau <sbaubeau@redhat.com>
-Sylvain Bellemare <sylvain@ascribe.io>
-Sébastien <sebastien@yoozio.com>
-Sébastien Luttringer <seblu@seblu.net>
-Sébastien Stormacq <sebsto@users.noreply.github.com>
-TAGOMORI Satoshi <tagomoris@gmail.com>
-tang0th <tang0th@gmx.com>
-Tangi COLIN <tangicolin@gmail.com>
-Tatsuki Sugiura <sugi@nemui.org>
-Tatsushi Inagaki <e29253@jp.ibm.com>
-Taylor Jones <monitorjbl@gmail.com>
-tbonza <tylers.pile@gmail.com>
-Ted M. Young <tedyoung@gmail.com>
-Tehmasp Chaudhri <tehmasp@gmail.com>
-Tejesh Mehta <tejesh.mehta@gmail.com>
-terryding77 <550147740@qq.com>
-tgic <farmer1992@gmail.com>
-Thatcher Peskens <thatcher@docker.com>
-theadactyl <thea.lamkin@gmail.com>
-Thell 'Bo' Fowler <thell@tbfowler.name>
-Thermionix <bond711@gmail.com>
-Thijs Terlouw <thijsterlouw@gmail.com>
-Thomas Bikeev <thomas.bikeev@mac.com>
-Thomas Frössman <thomasf@jossystem.se>
-Thomas Gazagnaire <thomas@gazagnaire.org>
-Thomas Grainger <tagrain@gmail.com>
-Thomas Hansen <thomas.hansen@gmail.com>
-Thomas Leonard <thomas.leonard@docker.com>
-Thomas LEVEIL <thomasleveil@gmail.com>
-Thomas Orozco <thomas@orozco.fr>
-Thomas Riccardi <riccardi@systran.fr>
-Thomas Schroeter <thomas@cliqz.com>
-Thomas Sjögren <konstruktoid@users.noreply.github.com>
-Thomas Swift <tgs242@gmail.com>
-Thomas Tanaka <thomas.tanaka@oracle.com>
-Thomas Texier <sharkone@en-mousse.org>
-Tianon Gravi <admwiggin@gmail.com>
-Tibor Vass <teabee89@gmail.com>
-Tiffany Low <tiffany@box.com>
-Tim Bosse <taim@bosboot.org>
-Tim Dettrick <t.dettrick@uq.edu.au>
-Tim Düsterhus <tim@bastelstu.be>
-Tim Hockin <thockin@google.com>
-Tim Ruffles <oi@truffles.me.uk>
-Tim Smith <timbot@google.com>
-Tim Terhorst <mynamewastaken+git@gmail.com>
-Tim Wang <timwangdev@gmail.com>
-Tim Waugh <twaugh@redhat.com>
-Tim Wraight <tim.wraight@tangentlabs.co.uk>
-Timothy Hobbs <timothyhobbs@seznam.cz>
-tjwebb123 <tjwebb123@users.noreply.github.com>
-tobe <tobegit3hub@gmail.com>
-Tobias Bieniek <Tobias.Bieniek@gmx.de>
-Tobias Bradtke <webwurst@gmail.com>
-Tobias Gesellchen <tobias@gesellix.de>
-Tobias Klauser <tklauser@distanz.ch>
-Tobias Schmidt <ts@soundcloud.com>
-Tobias Schwab <tobias.schwab@dynport.de>
-Todd Crane <todd@toddcrane.com>
-Todd Lunter <tlunter@gmail.com>
-Todd Whiteman <todd.whiteman@joyent.com>
-Toli Kuznets <toli@docker.com>
-Tom Barlow <tomwbarlow@gmail.com>
-Tom Denham <tom@tomdee.co.uk>
-Tom Fotherby <tom+github@peopleperhour.com>
-Tom Howe <tom.howe@enstratius.com>
-Tom Hulihan <hulihan.tom159@gmail.com>
-Tom Maaswinkel <tom.maaswinkel@12wiki.eu>
-Tom X. Tobin <tomxtobin@tomxtobin.com>
-Tomas Tomecek <ttomecek@redhat.com>
-Tomasz Kopczynski <tomek@kopczynski.net.pl>
-Tomasz Lipinski <tlipinski@users.noreply.github.com>
-Tomasz Nurkiewicz <nurkiewicz@gmail.com>
-Tommaso Visconti <tommaso.visconti@gmail.com>
-Tomáš Hrčka <thrcka@redhat.com>
-Tonis Tiigi <tonistiigi@gmail.com>
-Tonny Xu <tonny.xu@gmail.com>
-Tony Daws <tony@daws.ca>
-Tony Miller <mcfiredrill@gmail.com>
-toogley <toogley@mailbox.org>
-Torstein Husebø <torstein@huseboe.net>
-tpng <benny.tpng@gmail.com>
-tracylihui <793912329@qq.com>
-Travis Cline <travis.cline@gmail.com>
-Travis Thieman <travis.thieman@gmail.com>
-Trent Ogren <tedwardo2@gmail.com>
-Trevor <trevinwoodstock@gmail.com>
-Trevor Pounds <trevor.pounds@gmail.com>
-trishnaguha <trishnaguha17@gmail.com>
-Tristan Carel <tristan@cogniteev.com>
-Troy Denton <trdenton@gmail.com>
-Tyler Brock <tyler.brock@gmail.com>
-Tzu-Jung Lee <roylee17@gmail.com>
-Tõnis Tiigi <tonistiigi@gmail.com>
-Ulysse Carion <ulyssecarion@gmail.com>
-unknown <sebastiaan@ws-key-sebas3.dpi1.dpi>
-vagrant <vagrant@ubuntu-14.04-amd64-vbox>
-Vaidas Jablonskis <jablonskis@gmail.com>
-Veres Lajos <vlajos@gmail.com>
-vgeta <gopikannan.venugopalsamy@gmail.com>
-Victor Coisne <victor.coisne@dotcloud.com>
-Victor Costan <costan@gmail.com>
-Victor I. Wood <viw@t2am.com>
-Victor Lyuboslavsky <victor@victoreda.com>
-Victor Marmol <vmarmol@google.com>
-Victor Palma <palma.victor@gmail.com>
-Victor Vieux <victor.vieux@docker.com>
-Victoria Bialas <victoria.bialas@docker.com>
-Vijaya Kumar K <vijayak@caviumnetworks.com>
-Viktor Stanchev <me@viktorstanchev.com>
-Viktor Vojnovski <viktor.vojnovski@amadeus.com>
-VinayRaghavanKS <raghavan.vinay@gmail.com>
-Vincent Batts <vbatts@redhat.com>
-Vincent Bernat <bernat@luffy.cx>
-Vincent Bernat <Vincent.Bernat@exoscale.ch>
-Vincent Demeester <vincent@sbr.pm>
-Vincent Giersch <vincent.giersch@ovh.net>
-Vincent Mayers <vincent.mayers@inbloom.org>
-Vincent Woo <me@vincentwoo.com>
-Vinod Kulkarni <vinod.kulkarni@gmail.com>
-Vishal Doshi <vishal.doshi@gmail.com>
-Vishnu Kannan <vishnuk@google.com>
-Vitor Monteiro <vmrmonteiro@gmail.com>
-Vivek Agarwal <me@vivek.im>
-Vivek Dasgupta <vdasgupt@redhat.com>
-Vivek Goyal <vgoyal@redhat.com>
-Vladimir Bulyga <xx@ccxx.cc>
-Vladimir Kirillov <proger@wilab.org.ua>
-Vladimir Rutsky <altsysrq@gmail.com>
-Vladimir Varankin <nek.narqo+git@gmail.com>
-VladimirAus <v_roudakov@yahoo.com>
-Vojtech Vitek (V-Teq) <vvitek@redhat.com>
-waitingkuo <waitingkuo0527@gmail.com>
-Walter Leibbrandt <github@wrl.co.za>
-Walter Stanish <walter@pratyeka.org>
-WANG Chao <wcwxyz@gmail.com>
-Wang Xing <hzwangxing@corp.netease.com>
-Ward Vandewege <ward@jhvc.com>
-WarheadsSE <max@warheads.net>
-Wayne Chang <wayne@neverfear.org>
-Wei-Ting Kuo <waitingkuo0527@gmail.com>
-weiyan <weiyan3@huawei.com>
-Weiyang Zhu <cnresonant@gmail.com>
-Wen Cheng Ma <wenchma@cn.ibm.com>
-Wendel Fleming <wfleming@usc.edu>
-Wenxuan Zhao <viz@linux.com>
-Wenyu You <21551128@zju.edu.cn>
-Wes Morgan <cap10morgan@gmail.com>
-Will Dietz <w@wdtz.org>
-Will Rouesnel <w.rouesnel@gmail.com>
-Will Weaver <monkey@buildingbananas.com>
-willhf <willhf@gmail.com>
-William Delanoue <william.delanoue@gmail.com>
-William Henry <whenry@redhat.com>
-William Hubbs <w.d.hubbs@gmail.com>
-William Riancho <wr.wllm@gmail.com>
-William Thurston <thurstw@amazon.com>
-WiseTrem <shepelyov.g@gmail.com>
-wlan0 <sidharthamn@gmail.com>
-Wolfgang Powisch <powo@powo.priv.at>
-wonderflow <wonderflow.sun@gmail.com>
-xamyzhao <x.amy.zhao@gmail.com>
-XiaoBing Jiang <s7v7nislands@gmail.com>
-Xiaoxu Chen <chenxiaoxu14@otcaix.iscas.ac.cn>
-xiekeyang <xiekeyang@huawei.com>
-Xinzi Zhou <imdreamrunner@gmail.com>
-Xiuming Chen <cc@cxm.cc>
-xlgao-zju <xlgao@zju.edu.cn>
-xuzhaokui <cynicholas@gmail.com>
-Yahya <ya7yaz@gmail.com>
-YAMADA Tsuyoshi <tyamada@minimum2scp.org>
-Yan Feng <yanfeng2@huawei.com>
-Yang Bai <hamo.by@gmail.com>
-yangshukui <yangshukui@huawei.com>
-Yasunori Mahata <nori@mahata.net>
-Yestin Sun <sunyi0804@gmail.com>
-Yi EungJun <eungjun.yi@navercorp.com>
-Yibai Zhang <xm1994@gmail.com>
-Yihang Ho <hoyihang5@gmail.com>
-Ying Li <cyli@twistedmatrix.com>
-Yohei Ueda <yohei@jp.ibm.com>
-Yong Tang <yong.tang.github@outlook.com>
-Yongzhi Pan <panyongzhi@gmail.com>
-yorkie <yorkiefixer@gmail.com>
-Youcef YEKHLEF <yyekhlef@gmail.com>
-Yuan Sun <sunyuan3@huawei.com>
-yuchangchun <yuchangchun1@huawei.com>
-yuchengxia <yuchengxia@huawei.com>
-Yurii Rashkovskii <yrashk@gmail.com>
-yuzou <zouyu7@huawei.com>
-Zac Dover <zdover@redhat.com>
-Zach Borboa <zachborboa@gmail.com>
-Zachary Jaffee <zij@case.edu>
-Zain Memon <zain@inzain.net>
-Zaiste! <oh@zaiste.net>
-Zane DeGraffenried <zane.deg@gmail.com>
-Zefan Li <lizefan@huawei.com>
-Zen Lin(Zhinan Lin) <linzhinan@huawei.com>
-Zhang Kun <zkazure@gmail.com>
-Zhang Wei <zhangwei555@huawei.com>
-Zhang Wentao <zhangwentao234@huawei.com>
-Zhenan Ye <21551168@zju.edu.cn>
-Zhu Guihua <zhugh.fnst@cn.fujitsu.com>
-Zhuoyun Wei <wzyboy@wzyboy.org>
-Zilin Du <zilin.du@gmail.com>
-zimbatm <zimbatm@zimbatm.com>
-Ziming Dong <bnudzm@foxmail.com>
-ZJUshuaizhou <21551191@zju.edu.cn>
-zmarouf <zeid.marouf@gmail.com>
-Zoltan Tombol <zoltan.tombol@gmail.com>
-zqh <zqhxuyuan@gmail.com>
-Zuhayr Elahi <elahi.zuhayr@gmail.com>
-Zunayed Ali <zunayed@gmail.com>
-Álex González <agonzalezro@gmail.com>
-Álvaro Lázaro <alvaro.lazaro.g@gmail.com>
-Átila Camurça Alves <camurca.home@gmail.com>
-尹吉峰 <jifeng.yin@gmail.com>
-搏通 <yufeng.pyf@alibaba-inc.com>
diff --git a/vendor/github.com/containers/storage/LICENSE b/vendor/github.com/containers/storage/LICENSE
deleted file mode 100644
index 8f3fee627a..0000000000
--- a/vendor/github.com/containers/storage/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        https://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2013-2016 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       https://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/containers/storage/NOTICE b/vendor/github.com/containers/storage/NOTICE
deleted file mode 100644
index 8a37c1c7bc..0000000000
--- a/vendor/github.com/containers/storage/NOTICE
+++ /dev/null
@@ -1,19 +0,0 @@
-Docker
-Copyright 2012-2016 Docker, Inc.
-
-This product includes software developed at Docker, Inc. (https://www.docker.com).
-
-This product contains software (https://github.com/kr/pty) developed
-by Keith Rarick, licensed under the MIT License.
-
-The following is courtesy of our legal counsel:
-
-
-Use and transfer of Docker may be subject to certain restrictions by the
-United States and other governments.
-It is your responsibility to ensure that your use and/or transfer does not
-violate applicable laws.
-
-For more information, please see https://www.bis.doc.gov
-
-See also https://www.apache.org/dev/crypto.html and/or seek legal counsel.
diff --git a/vendor/github.com/containers/storage/containers.go b/vendor/github.com/containers/storage/containers.go
deleted file mode 100644
index 5631e31c3e..0000000000
--- a/vendor/github.com/containers/storage/containers.go
+++ /dev/null
@@ -1,531 +0,0 @@
-package storage
-
-import (
-	"encoding/json"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"time"
-
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/stringid"
-	"github.com/containers/storage/pkg/truncindex"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-// A Container is a reference to a read-write layer with metadata.
-type Container struct {
-	// ID is either one which was specified at create-time, or a random
-	// value which was generated by the library.
-	ID string `json:"id"`
-
-	// Names is an optional set of user-defined convenience values.  The
-	// container can be referred to by its ID or any of its names.  Names
-	// are unique among containers.
-	Names []string `json:"names,omitempty"`
-
-	// ImageID is the ID of the image which was used to create the container.
-	ImageID string `json:"image"`
-
-	// LayerID is the ID of the read-write layer for the container itself.
-	// It is assumed that the image's top layer is the parent of the container's
-	// read-write layer.
-	LayerID string `json:"layer"`
-
-	// Metadata is data we keep for the convenience of the caller.  It is not
-	// expected to be large, since it is kept in memory.
-	Metadata string `json:"metadata,omitempty"`
-
-	// BigDataNames is a list of names of data items that we keep for the
-	// convenience of the caller.  They can be large, and are only in
-	// memory when being read from or written to disk.
-	BigDataNames []string `json:"big-data-names,omitempty"`
-
-	// BigDataSizes maps the names in BigDataNames to the sizes of the data
-	// that has been stored, if they're known.
-	BigDataSizes map[string]int64 `json:"big-data-sizes,omitempty"`
-
-	// BigDataDigests maps the names in BigDataNames to the digests of the
-	// data that has been stored, if they're known.
-	BigDataDigests map[string]digest.Digest `json:"big-data-digests,omitempty"`
-
-	// Created is the datestamp for when this container was created.  Older
-	// versions of the library did not track this information, so callers
-	// will likely want to use the IsZero() method to verify that a value
-	// is set before using it.
-	Created time.Time `json:"created,omitempty"`
-
-	Flags map[string]interface{} `json:"flags,omitempty"`
-}
-
-// ContainerStore provides bookkeeping for information about Containers.
-type ContainerStore interface {
-	FileBasedStore
-	MetadataStore
-	BigDataStore
-	FlaggableStore
-
-	// Create creates a container that has a specified ID (or generates a
-	// random one if an empty value is supplied) and optional names,
-	// based on the specified image, using the specified layer as its
-	// read-write layer.
-	Create(id string, names []string, image, layer, metadata string) (*Container, error)
-
-	// SetNames updates the list of names associated with the container
-	// with the specified ID.
-	SetNames(id string, names []string) error
-
-	// Get retrieves information about a container given an ID or name.
-	Get(id string) (*Container, error)
-
-	// Exists checks if there is a container with the given ID or name.
-	Exists(id string) bool
-
-	// Delete removes the record of the container.
-	Delete(id string) error
-
-	// Wipe removes records of all containers.
-	Wipe() error
-
-	// Lookup attempts to translate a name to an ID.  Most methods do this
-	// implicitly.
-	Lookup(name string) (string, error)
-
-	// Containers returns a slice enumerating the known containers.
-	Containers() ([]Container, error)
-}
-
-type containerStore struct {
-	lockfile   Locker
-	dir        string
-	containers []*Container
-	idindex    *truncindex.TruncIndex
-	byid       map[string]*Container
-	bylayer    map[string]*Container
-	byname     map[string]*Container
-}
-
-func (r *containerStore) Containers() ([]Container, error) {
-	containers := make([]Container, len(r.containers))
-	for i := range r.containers {
-		containers[i] = *(r.containers[i])
-	}
-	return containers, nil
-}
-
-func (r *containerStore) containerspath() string {
-	return filepath.Join(r.dir, "containers.json")
-}
-
-func (r *containerStore) datadir(id string) string {
-	return filepath.Join(r.dir, id)
-}
-
-func (r *containerStore) datapath(id, key string) string {
-	return filepath.Join(r.datadir(id), makeBigDataBaseName(key))
-}
-
-func (r *containerStore) Load() error {
-	needSave := false
-	rpath := r.containerspath()
-	data, err := ioutil.ReadFile(rpath)
-	if err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	containers := []*Container{}
-	layers := make(map[string]*Container)
-	idlist := []string{}
-	ids := make(map[string]*Container)
-	names := make(map[string]*Container)
-	if err = json.Unmarshal(data, &containers); len(data) == 0 || err == nil {
-		idlist = make([]string, 0, len(containers))
-		for n, container := range containers {
-			idlist = append(idlist, container.ID)
-			ids[container.ID] = containers[n]
-			layers[container.LayerID] = containers[n]
-			for _, name := range container.Names {
-				if conflict, ok := names[name]; ok {
-					r.removeName(conflict, name)
-					needSave = true
-				}
-				names[name] = containers[n]
-			}
-		}
-	}
-	r.containers = containers
-	r.idindex = truncindex.NewTruncIndex(idlist)
-	r.byid = ids
-	r.bylayer = layers
-	r.byname = names
-	if needSave {
-		return r.Save()
-	}
-	return nil
-}
-
-func (r *containerStore) Save() error {
-	rpath := r.containerspath()
-	if err := os.MkdirAll(filepath.Dir(rpath), 0700); err != nil {
-		return err
-	}
-	jdata, err := json.Marshal(&r.containers)
-	if err != nil {
-		return err
-	}
-	defer r.Touch()
-	return ioutils.AtomicWriteFile(rpath, jdata, 0600)
-}
-
-func newContainerStore(dir string) (ContainerStore, error) {
-	if err := os.MkdirAll(dir, 0700); err != nil {
-		return nil, err
-	}
-	lockfile, err := GetLockfile(filepath.Join(dir, "containers.lock"))
-	if err != nil {
-		return nil, err
-	}
-	lockfile.Lock()
-	defer lockfile.Unlock()
-	cstore := containerStore{
-		lockfile:   lockfile,
-		dir:        dir,
-		containers: []*Container{},
-		byid:       make(map[string]*Container),
-		bylayer:    make(map[string]*Container),
-		byname:     make(map[string]*Container),
-	}
-	if err := cstore.Load(); err != nil {
-		return nil, err
-	}
-	return &cstore, nil
-}
-
-func (r *containerStore) lookup(id string) (*Container, bool) {
-	if container, ok := r.byid[id]; ok {
-		return container, ok
-	} else if container, ok := r.byname[id]; ok {
-		return container, ok
-	} else if container, ok := r.bylayer[id]; ok {
-		return container, ok
-	} else if longid, err := r.idindex.Get(id); err == nil {
-		if container, ok := r.byid[longid]; ok {
-			return container, ok
-		}
-	}
-	return nil, false
-}
-
-func (r *containerStore) ClearFlag(id string, flag string) error {
-	container, ok := r.lookup(id)
-	if !ok {
-		return ErrContainerUnknown
-	}
-	delete(container.Flags, flag)
-	return r.Save()
-}
-
-func (r *containerStore) SetFlag(id string, flag string, value interface{}) error {
-	container, ok := r.lookup(id)
-	if !ok {
-		return ErrContainerUnknown
-	}
-	if container.Flags == nil {
-		container.Flags = make(map[string]interface{})
-	}
-	container.Flags[flag] = value
-	return r.Save()
-}
-
-func (r *containerStore) Create(id string, names []string, image, layer, metadata string) (container *Container, err error) {
-	if id == "" {
-		id = stringid.GenerateRandomID()
-		_, idInUse := r.byid[id]
-		for idInUse {
-			id = stringid.GenerateRandomID()
-			_, idInUse = r.byid[id]
-		}
-	}
-	if _, idInUse := r.byid[id]; idInUse {
-		return nil, ErrDuplicateID
-	}
-	names = dedupeNames(names)
-	for _, name := range names {
-		if _, nameInUse := r.byname[name]; nameInUse {
-			return nil, ErrDuplicateName
-		}
-	}
-	if err == nil {
-		container = &Container{
-			ID:             id,
-			Names:          names,
-			ImageID:        image,
-			LayerID:        layer,
-			Metadata:       metadata,
-			BigDataNames:   []string{},
-			BigDataSizes:   make(map[string]int64),
-			BigDataDigests: make(map[string]digest.Digest),
-			Created:        time.Now().UTC(),
-			Flags:          make(map[string]interface{}),
-		}
-		r.containers = append(r.containers, container)
-		r.byid[id] = container
-		r.idindex.Add(id)
-		r.bylayer[layer] = container
-		for _, name := range names {
-			r.byname[name] = container
-		}
-		err = r.Save()
-	}
-	return container, err
-}
-
-func (r *containerStore) Metadata(id string) (string, error) {
-	if container, ok := r.lookup(id); ok {
-		return container.Metadata, nil
-	}
-	return "", ErrContainerUnknown
-}
-
-func (r *containerStore) SetMetadata(id, metadata string) error {
-	if container, ok := r.lookup(id); ok {
-		container.Metadata = metadata
-		return r.Save()
-	}
-	return ErrContainerUnknown
-}
-
-func (r *containerStore) removeName(container *Container, name string) {
-	container.Names = stringSliceWithoutValue(container.Names, name)
-}
-
-func (r *containerStore) SetNames(id string, names []string) error {
-	names = dedupeNames(names)
-	if container, ok := r.lookup(id); ok {
-		for _, name := range container.Names {
-			delete(r.byname, name)
-		}
-		for _, name := range names {
-			if otherContainer, ok := r.byname[name]; ok {
-				r.removeName(otherContainer, name)
-			}
-			r.byname[name] = container
-		}
-		container.Names = names
-		return r.Save()
-	}
-	return ErrContainerUnknown
-}
-
-func (r *containerStore) Delete(id string) error {
-	container, ok := r.lookup(id)
-	if !ok {
-		return ErrContainerUnknown
-	}
-	id = container.ID
-	toDeleteIndex := -1
-	for i, candidate := range r.containers {
-		if candidate.ID == id {
-			toDeleteIndex = i
-			break
-		}
-	}
-	delete(r.byid, id)
-	r.idindex.Delete(id)
-	delete(r.bylayer, container.LayerID)
-	for _, name := range container.Names {
-		delete(r.byname, name)
-	}
-	if toDeleteIndex != -1 {
-		// delete the container at toDeleteIndex
-		if toDeleteIndex == len(r.containers)-1 {
-			r.containers = r.containers[:len(r.containers)-1]
-		} else {
-			r.containers = append(r.containers[:toDeleteIndex], r.containers[toDeleteIndex+1:]...)
-		}
-	}
-	if err := r.Save(); err != nil {
-		return err
-	}
-	if err := os.RemoveAll(r.datadir(id)); err != nil {
-		return err
-	}
-	return nil
-}
-
-func (r *containerStore) Get(id string) (*Container, error) {
-	if container, ok := r.lookup(id); ok {
-		return container, nil
-	}
-	return nil, ErrContainerUnknown
-}
-
-func (r *containerStore) Lookup(name string) (id string, err error) {
-	if container, ok := r.lookup(name); ok {
-		return container.ID, nil
-	}
-	return "", ErrContainerUnknown
-}
-
-func (r *containerStore) Exists(id string) bool {
-	_, ok := r.lookup(id)
-	return ok
-}
-
-func (r *containerStore) BigData(id, key string) ([]byte, error) {
-	if key == "" {
-		return nil, errors.Wrapf(ErrInvalidBigDataName, "can't retrieve container big data value for empty name")
-	}
-	c, ok := r.lookup(id)
-	if !ok {
-		return nil, ErrContainerUnknown
-	}
-	return ioutil.ReadFile(r.datapath(c.ID, key))
-}
-
-func (r *containerStore) BigDataSize(id, key string) (int64, error) {
-	if key == "" {
-		return -1, errors.Wrapf(ErrInvalidBigDataName, "can't retrieve size of container big data with empty name")
-	}
-	c, ok := r.lookup(id)
-	if !ok {
-		return -1, ErrContainerUnknown
-	}
-	if c.BigDataSizes == nil {
-		c.BigDataSizes = make(map[string]int64)
-	}
-	if size, ok := c.BigDataSizes[key]; ok {
-		return size, nil
-	}
-	if data, err := r.BigData(id, key); err == nil && data != nil {
-		if r.SetBigData(id, key, data) == nil {
-			c, ok := r.lookup(id)
-			if !ok {
-				return -1, ErrContainerUnknown
-			}
-			if size, ok := c.BigDataSizes[key]; ok {
-				return size, nil
-			}
-		}
-	}
-	return -1, ErrSizeUnknown
-}
-
-func (r *containerStore) BigDataDigest(id, key string) (digest.Digest, error) {
-	if key == "" {
-		return "", errors.Wrapf(ErrInvalidBigDataName, "can't retrieve digest of container big data value with empty name")
-	}
-	c, ok := r.lookup(id)
-	if !ok {
-		return "", ErrContainerUnknown
-	}
-	if c.BigDataDigests == nil {
-		c.BigDataDigests = make(map[string]digest.Digest)
-	}
-	if d, ok := c.BigDataDigests[key]; ok {
-		return d, nil
-	}
-	if data, err := r.BigData(id, key); err == nil && data != nil {
-		if r.SetBigData(id, key, data) == nil {
-			c, ok := r.lookup(id)
-			if !ok {
-				return "", ErrContainerUnknown
-			}
-			if d, ok := c.BigDataDigests[key]; ok {
-				return d, nil
-			}
-		}
-	}
-	return "", ErrDigestUnknown
-}
-
-func (r *containerStore) BigDataNames(id string) ([]string, error) {
-	c, ok := r.lookup(id)
-	if !ok {
-		return nil, ErrContainerUnknown
-	}
-	return c.BigDataNames, nil
-}
-
-func (r *containerStore) SetBigData(id, key string, data []byte) error {
-	if key == "" {
-		return errors.Wrapf(ErrInvalidBigDataName, "can't set empty name for container big data item")
-	}
-	c, ok := r.lookup(id)
-	if !ok {
-		return ErrContainerUnknown
-	}
-	if err := os.MkdirAll(r.datadir(c.ID), 0700); err != nil {
-		return err
-	}
-	err := ioutils.AtomicWriteFile(r.datapath(c.ID, key), data, 0600)
-	if err == nil {
-		save := false
-		if c.BigDataSizes == nil {
-			c.BigDataSizes = make(map[string]int64)
-		}
-		oldSize, sizeOk := c.BigDataSizes[key]
-		c.BigDataSizes[key] = int64(len(data))
-		if c.BigDataDigests == nil {
-			c.BigDataDigests = make(map[string]digest.Digest)
-		}
-		oldDigest, digestOk := c.BigDataDigests[key]
-		newDigest := digest.Canonical.FromBytes(data)
-		c.BigDataDigests[key] = newDigest
-		if !sizeOk || oldSize != c.BigDataSizes[key] || !digestOk || oldDigest != newDigest {
-			save = true
-		}
-		addName := true
-		for _, name := range c.BigDataNames {
-			if name == key {
-				addName = false
-				break
-			}
-		}
-		if addName {
-			c.BigDataNames = append(c.BigDataNames, key)
-			save = true
-		}
-		if save {
-			err = r.Save()
-		}
-	}
-	return err
-}
-
-func (r *containerStore) Wipe() error {
-	ids := make([]string, 0, len(r.byid))
-	for id := range r.byid {
-		ids = append(ids, id)
-	}
-	for _, id := range ids {
-		if err := r.Delete(id); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func (r *containerStore) Lock() {
-	r.lockfile.Lock()
-}
-
-func (r *containerStore) Unlock() {
-	r.lockfile.Unlock()
-}
-
-func (r *containerStore) Touch() error {
-	return r.lockfile.Touch()
-}
-
-func (r *containerStore) Modified() (bool, error) {
-	return r.lockfile.Modified()
-}
-
-func (r *containerStore) IsReadWrite() bool {
-	return r.lockfile.IsReadWrite()
-}
-
-func (r *containerStore) TouchedSince(when time.Time) bool {
-	return r.lockfile.TouchedSince(when)
-}
diff --git a/vendor/github.com/containers/storage/containers_ffjson.go b/vendor/github.com/containers/storage/containers_ffjson.go
deleted file mode 100644
index 9526198061..0000000000
--- a/vendor/github.com/containers/storage/containers_ffjson.go
+++ /dev/null
@@ -1,1194 +0,0 @@
-// Code generated by ffjson <https://github.com/pquerna/ffjson>. DO NOT EDIT.
-// source: containers.go
-
-package storage
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"github.com/opencontainers/go-digest"
-	fflib "github.com/pquerna/ffjson/fflib/v1"
-)
-
-// MarshalJSON marshal bytes to json - template
-func (j *Container) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *Container) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{ "id":`)
-	fflib.WriteJsonString(buf, string(j.ID))
-	buf.WriteByte(',')
-	if len(j.Names) != 0 {
-		buf.WriteString(`"names":`)
-		if j.Names != nil {
-			buf.WriteString(`[`)
-			for i, v := range j.Names {
-				if i != 0 {
-					buf.WriteString(`,`)
-				}
-				fflib.WriteJsonString(buf, string(v))
-			}
-			buf.WriteString(`]`)
-		} else {
-			buf.WriteString(`null`)
-		}
-		buf.WriteByte(',')
-	}
-	buf.WriteString(`"image":`)
-	fflib.WriteJsonString(buf, string(j.ImageID))
-	buf.WriteString(`,"layer":`)
-	fflib.WriteJsonString(buf, string(j.LayerID))
-	buf.WriteByte(',')
-	if len(j.Metadata) != 0 {
-		buf.WriteString(`"metadata":`)
-		fflib.WriteJsonString(buf, string(j.Metadata))
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataNames) != 0 {
-		buf.WriteString(`"big-data-names":`)
-		if j.BigDataNames != nil {
-			buf.WriteString(`[`)
-			for i, v := range j.BigDataNames {
-				if i != 0 {
-					buf.WriteString(`,`)
-				}
-				fflib.WriteJsonString(buf, string(v))
-			}
-			buf.WriteString(`]`)
-		} else {
-			buf.WriteString(`null`)
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataSizes) != 0 {
-		if j.BigDataSizes == nil {
-			buf.WriteString(`"big-data-sizes":null`)
-		} else {
-			buf.WriteString(`"big-data-sizes":{ `)
-			for key, value := range j.BigDataSizes {
-				fflib.WriteJsonString(buf, key)
-				buf.WriteString(`:`)
-				fflib.FormatBits2(buf, uint64(value), 10, value < 0)
-				buf.WriteByte(',')
-			}
-			buf.Rewind(1)
-			buf.WriteByte('}')
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataDigests) != 0 {
-		if j.BigDataDigests == nil {
-			buf.WriteString(`"big-data-digests":null`)
-		} else {
-			buf.WriteString(`"big-data-digests":{ `)
-			for key, value := range j.BigDataDigests {
-				fflib.WriteJsonString(buf, key)
-				buf.WriteString(`:`)
-				fflib.WriteJsonString(buf, string(value))
-				buf.WriteByte(',')
-			}
-			buf.Rewind(1)
-			buf.WriteByte('}')
-		}
-		buf.WriteByte(',')
-	}
-	if true {
-		buf.WriteString(`"created":`)
-
-		{
-
-			obj, err = j.Created.MarshalJSON()
-			if err != nil {
-				return err
-			}
-			buf.Write(obj)
-
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.Flags) != 0 {
-		buf.WriteString(`"flags":`)
-		/* Falling back. type=map[string]interface {} kind=map */
-		err = buf.Encode(j.Flags)
-		if err != nil {
-			return err
-		}
-		buf.WriteByte(',')
-	}
-	buf.Rewind(1)
-	buf.WriteByte('}')
-	return nil
-}
-
-const (
-	ffjtContainerbase = iota
-	ffjtContainernosuchkey
-
-	ffjtContainerID
-
-	ffjtContainerNames
-
-	ffjtContainerImageID
-
-	ffjtContainerLayerID
-
-	ffjtContainerMetadata
-
-	ffjtContainerBigDataNames
-
-	ffjtContainerBigDataSizes
-
-	ffjtContainerBigDataDigests
-
-	ffjtContainerCreated
-
-	ffjtContainerFlags
-)
-
-var ffjKeyContainerID = []byte("id")
-
-var ffjKeyContainerNames = []byte("names")
-
-var ffjKeyContainerImageID = []byte("image")
-
-var ffjKeyContainerLayerID = []byte("layer")
-
-var ffjKeyContainerMetadata = []byte("metadata")
-
-var ffjKeyContainerBigDataNames = []byte("big-data-names")
-
-var ffjKeyContainerBigDataSizes = []byte("big-data-sizes")
-
-var ffjKeyContainerBigDataDigests = []byte("big-data-digests")
-
-var ffjKeyContainerCreated = []byte("created")
-
-var ffjKeyContainerFlags = []byte("flags")
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *Container) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *Container) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtContainerbase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtContainernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				case 'b':
-
-					if bytes.Equal(ffjKeyContainerBigDataNames, kn) {
-						currentKey = ffjtContainerBigDataNames
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyContainerBigDataSizes, kn) {
-						currentKey = ffjtContainerBigDataSizes
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyContainerBigDataDigests, kn) {
-						currentKey = ffjtContainerBigDataDigests
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'c':
-
-					if bytes.Equal(ffjKeyContainerCreated, kn) {
-						currentKey = ffjtContainerCreated
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'f':
-
-					if bytes.Equal(ffjKeyContainerFlags, kn) {
-						currentKey = ffjtContainerFlags
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'i':
-
-					if bytes.Equal(ffjKeyContainerID, kn) {
-						currentKey = ffjtContainerID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyContainerImageID, kn) {
-						currentKey = ffjtContainerImageID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'l':
-
-					if bytes.Equal(ffjKeyContainerLayerID, kn) {
-						currentKey = ffjtContainerLayerID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'm':
-
-					if bytes.Equal(ffjKeyContainerMetadata, kn) {
-						currentKey = ffjtContainerMetadata
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'n':
-
-					if bytes.Equal(ffjKeyContainerNames, kn) {
-						currentKey = ffjtContainerNames
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				}
-
-				if fflib.EqualFoldRight(ffjKeyContainerFlags, kn) {
-					currentKey = ffjtContainerFlags
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyContainerCreated, kn) {
-					currentKey = ffjtContainerCreated
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyContainerBigDataDigests, kn) {
-					currentKey = ffjtContainerBigDataDigests
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyContainerBigDataSizes, kn) {
-					currentKey = ffjtContainerBigDataSizes
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyContainerBigDataNames, kn) {
-					currentKey = ffjtContainerBigDataNames
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyContainerMetadata, kn) {
-					currentKey = ffjtContainerMetadata
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyContainerLayerID, kn) {
-					currentKey = ffjtContainerLayerID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyContainerImageID, kn) {
-					currentKey = ffjtContainerImageID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyContainerNames, kn) {
-					currentKey = ffjtContainerNames
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyContainerID, kn) {
-					currentKey = ffjtContainerID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				currentKey = ffjtContainernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtContainerID:
-					goto handle_ID
-
-				case ffjtContainerNames:
-					goto handle_Names
-
-				case ffjtContainerImageID:
-					goto handle_ImageID
-
-				case ffjtContainerLayerID:
-					goto handle_LayerID
-
-				case ffjtContainerMetadata:
-					goto handle_Metadata
-
-				case ffjtContainerBigDataNames:
-					goto handle_BigDataNames
-
-				case ffjtContainerBigDataSizes:
-					goto handle_BigDataSizes
-
-				case ffjtContainerBigDataDigests:
-					goto handle_BigDataDigests
-
-				case ffjtContainerCreated:
-					goto handle_Created
-
-				case ffjtContainerFlags:
-					goto handle_Flags
-
-				case ffjtContainernosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-handle_ID:
-
-	/* handler: j.ID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.ID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Names:
-
-	/* handler: j.Names type=[]string kind=slice quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_brace && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Names = nil
-		} else {
-
-			j.Names = []string{}
-
-			wantVal := true
-
-			for {
-
-				var tmpJNames string
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_brace {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: tmpJNames type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJNames = string(string(outBuf))
-
-					}
-				}
-
-				j.Names = append(j.Names, tmpJNames)
-
-				wantVal = false
-			}
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_ImageID:
-
-	/* handler: j.ImageID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.ImageID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_LayerID:
-
-	/* handler: j.LayerID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.LayerID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Metadata:
-
-	/* handler: j.Metadata type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.Metadata = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataNames:
-
-	/* handler: j.BigDataNames type=[]string kind=slice quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_brace && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataNames = nil
-		} else {
-
-			j.BigDataNames = []string{}
-
-			wantVal := true
-
-			for {
-
-				var tmpJBigDataNames string
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_brace {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: tmpJBigDataNames type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJBigDataNames = string(string(outBuf))
-
-					}
-				}
-
-				j.BigDataNames = append(j.BigDataNames, tmpJBigDataNames)
-
-				wantVal = false
-			}
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataSizes:
-
-	/* handler: j.BigDataSizes type=map[string]int64 kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataSizes = nil
-		} else {
-
-			j.BigDataSizes = make(map[string]int64, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJBigDataSizes int64
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJBigDataSizes type=int64 kind=int64 quoted=false*/
-
-				{
-					if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-						return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for int64", tok))
-					}
-				}
-
-				{
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-						if err != nil {
-							return fs.WrapErr(err)
-						}
-
-						tmpJBigDataSizes = int64(tval)
-
-					}
-				}
-
-				j.BigDataSizes[k] = tmpJBigDataSizes
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataDigests:
-
-	/* handler: j.BigDataDigests type=map[string]digest.Digest kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataDigests = nil
-		} else {
-
-			j.BigDataDigests = make(map[string]digest.Digest, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJBigDataDigests digest.Digest
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJBigDataDigests type=digest.Digest kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Digest", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJBigDataDigests = digest.Digest(string(outBuf))
-
-					}
-				}
-
-				j.BigDataDigests[k] = tmpJBigDataDigests
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Created:
-
-	/* handler: j.Created type=time.Time kind=struct quoted=false*/
-
-	{
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tbuf, err := fs.CaptureField(tok)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			err = j.Created.UnmarshalJSON(tbuf)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-		}
-		state = fflib.FFParse_after_value
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Flags:
-
-	/* handler: j.Flags type=map[string]interface {} kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Flags = nil
-		} else {
-
-			j.Flags = make(map[string]interface{}, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJFlags interface{}
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJFlags type=interface {} kind=interface quoted=false*/
-
-				{
-					/* Falling back. type=interface {} kind=interface */
-					tbuf, err := fs.CaptureField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-
-					err = json.Unmarshal(tbuf, &tmpJFlags)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-				}
-
-				j.Flags[k] = tmpJFlags
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *containerStore) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *containerStore) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{}`)
-	return nil
-}
-
-const (
-	ffjtcontainerStorebase = iota
-	ffjtcontainerStorenosuchkey
-)
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *containerStore) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *containerStore) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtcontainerStorebase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtcontainerStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				}
-
-				currentKey = ffjtcontainerStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtcontainerStorenosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/aufs/aufs.go b/vendor/github.com/containers/storage/drivers/aufs/aufs.go
deleted file mode 100644
index c1cfabee99..0000000000
--- a/vendor/github.com/containers/storage/drivers/aufs/aufs.go
+++ /dev/null
@@ -1,691 +0,0 @@
-// +build linux
-
-/*
-
-aufs driver directory structure
-
-  .
-  ├── layers // Metadata of layers
-  │   ├── 1
-  │   ├── 2
-  │   └── 3
-  ├── diff  // Content of the layer
-  │   ├── 1  // Contains layers that need to be mounted for the id
-  │   ├── 2
-  │   └── 3
-  └── mnt    // Mount points for the rw layers to be mounted
-      ├── 1
-      ├── 2
-      └── 3
-
-*/
-
-package aufs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path"
-	"path/filepath"
-	"strings"
-	"sync"
-	"time"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/chrootarchive"
-	"github.com/containers/storage/pkg/directory"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/locker"
-	mountpk "github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/system"
-	rsystem "github.com/opencontainers/runc/libcontainer/system"
-	"github.com/opencontainers/selinux/go-selinux/label"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"github.com/vbatts/tar-split/tar/storage"
-	"golang.org/x/sys/unix"
-)
-
-var (
-	// ErrAufsNotSupported is returned if aufs is not supported by the host.
-	ErrAufsNotSupported = fmt.Errorf("AUFS was not found in /proc/filesystems")
-	// ErrAufsNested means aufs cannot be used bc we are in a user namespace
-	ErrAufsNested = fmt.Errorf("AUFS cannot be used in non-init user namespace")
-	backingFs     = "<unknown>"
-
-	enableDirpermLock sync.Once
-	enableDirperm     bool
-)
-
-func init() {
-	graphdriver.Register("aufs", Init)
-}
-
-// Driver contains information about the filesystem mounted.
-type Driver struct {
-	sync.Mutex
-	root          string
-	uidMaps       []idtools.IDMap
-	gidMaps       []idtools.IDMap
-	ctr           *graphdriver.RefCounter
-	pathCacheLock sync.Mutex
-	pathCache     map[string]string
-	naiveDiff     graphdriver.DiffDriver
-	locker        *locker.Locker
-}
-
-// Init returns a new AUFS driver.
-// An error is returned if AUFS is not supported.
-func Init(root string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-
-	// Try to load the aufs kernel module
-	if err := supportsAufs(); err != nil {
-		return nil, errors.Wrap(graphdriver.ErrNotSupported, "kernel does not support aufs")
-
-	}
-
-	fsMagic, err := graphdriver.GetFSMagic(root)
-	if err != nil {
-		return nil, err
-	}
-	if fsName, ok := graphdriver.FsNames[fsMagic]; ok {
-		backingFs = fsName
-	}
-
-	switch fsMagic {
-	case graphdriver.FsMagicAufs, graphdriver.FsMagicBtrfs, graphdriver.FsMagicEcryptfs:
-		logrus.Errorf("AUFS is not supported over %s", backingFs)
-		return nil, errors.Wrapf(graphdriver.ErrIncompatibleFS, "AUFS is not supported over %q", backingFs)
-	}
-
-	paths := []string{
-		"mnt",
-		"diff",
-		"layers",
-	}
-
-	a := &Driver{
-		root:      root,
-		uidMaps:   uidMaps,
-		gidMaps:   gidMaps,
-		pathCache: make(map[string]string),
-		ctr:       graphdriver.NewRefCounter(graphdriver.NewFsChecker(graphdriver.FsMagicAufs)),
-		locker:    locker.New(),
-	}
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(uidMaps, gidMaps)
-	if err != nil {
-		return nil, err
-	}
-	// Create the root aufs driver dir and return
-	// if it already exists
-	// If not populate the dir structure
-	if err := idtools.MkdirAllAs(root, 0700, rootUID, rootGID); err != nil {
-		if os.IsExist(err) {
-			return a, nil
-		}
-		return nil, err
-	}
-
-	if err := mountpk.MakePrivate(root); err != nil {
-		return nil, err
-	}
-
-	// Populate the dir structure
-	for _, p := range paths {
-		if err := idtools.MkdirAllAs(path.Join(root, p), 0700, rootUID, rootGID); err != nil {
-			return nil, err
-		}
-	}
-	logger := logrus.WithFields(logrus.Fields{
-		"module": "graphdriver",
-		"driver": "aufs",
-	})
-
-	for _, path := range []string{"mnt", "diff"} {
-		p := filepath.Join(root, path)
-		entries, err := ioutil.ReadDir(p)
-		if err != nil {
-			logger.WithError(err).WithField("dir", p).Error("error reading dir entries")
-			continue
-		}
-		for _, entry := range entries {
-			if !entry.IsDir() {
-				continue
-			}
-			if strings.HasSuffix(entry.Name(), "-removing") {
-				logger.WithField("dir", entry.Name()).Debug("Cleaning up stale layer dir")
-				if err := system.EnsureRemoveAll(filepath.Join(p, entry.Name())); err != nil {
-					logger.WithField("dir", entry.Name()).WithError(err).Error("Error removing stale layer dir")
-				}
-			}
-		}
-	}
-
-	a.naiveDiff = graphdriver.NewNaiveDiffDriver(a, uidMaps, gidMaps)
-	return a, nil
-}
-
-// Return a nil error if the kernel supports aufs
-// We cannot modprobe because inside dind modprobe fails
-// to run
-func supportsAufs() error {
-	// We can try to modprobe aufs first before looking at
-	// proc/filesystems for when aufs is supported
-	exec.Command("modprobe", "aufs").Run()
-
-	if rsystem.RunningInUserNS() {
-		return ErrAufsNested
-	}
-
-	f, err := os.Open("/proc/filesystems")
-	if err != nil {
-		return err
-	}
-	defer f.Close()
-
-	s := bufio.NewScanner(f)
-	for s.Scan() {
-		if strings.Contains(s.Text(), "aufs") {
-			return nil
-		}
-	}
-	return ErrAufsNotSupported
-}
-
-func (a *Driver) rootPath() string {
-	return a.root
-}
-
-func (*Driver) String() string {
-	return "aufs"
-}
-
-// Status returns current information about the filesystem such as root directory, number of directories mounted, etc.
-func (a *Driver) Status() [][2]string {
-	ids, _ := loadIds(path.Join(a.rootPath(), "layers"))
-	return [][2]string{
-		{"Root Dir", a.rootPath()},
-		{"Backing Filesystem", backingFs},
-		{"Dirs", fmt.Sprintf("%d", len(ids))},
-		{"Dirperm1 Supported", fmt.Sprintf("%v", useDirperm())},
-	}
-}
-
-// Metadata not implemented
-func (a *Driver) Metadata(id string) (map[string]string, error) {
-	return nil, nil
-}
-
-// Exists returns true if the given id is registered with
-// this driver
-func (a *Driver) Exists(id string) bool {
-	if _, err := os.Lstat(path.Join(a.rootPath(), "layers", id)); err != nil {
-		return false
-	}
-	return true
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (a *Driver) AdditionalImageStores() []string {
-	return nil
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (a *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	return a.Create(id, parent, opts)
-}
-
-// Create three folders for each id
-// mnt, layers, and diff
-func (a *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-
-	if opts != nil && len(opts.StorageOpt) != 0 {
-		return fmt.Errorf("--storage-opt is not supported for aufs")
-	}
-
-	if err := a.createDirsFor(id); err != nil {
-		return err
-	}
-	// Write the layers metadata
-	f, err := os.Create(path.Join(a.rootPath(), "layers", id))
-	if err != nil {
-		return err
-	}
-	defer f.Close()
-
-	if parent != "" {
-		ids, err := getParentIDs(a.rootPath(), parent)
-		if err != nil {
-			return err
-		}
-
-		if _, err := fmt.Fprintln(f, parent); err != nil {
-			return err
-		}
-		for _, i := range ids {
-			if _, err := fmt.Fprintln(f, i); err != nil {
-				return err
-			}
-		}
-	}
-
-	return nil
-}
-
-// createDirsFor creates two directories for the given id.
-// mnt and diff
-func (a *Driver) createDirsFor(id string) error {
-	paths := []string{
-		"mnt",
-		"diff",
-	}
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(a.uidMaps, a.gidMaps)
-	if err != nil {
-		return err
-	}
-	// Directory permission is 0755.
-	// The path of directories are <aufs_root_path>/mnt/<image_id>
-	// and <aufs_root_path>/diff/<image_id>
-	for _, p := range paths {
-		if err := idtools.MkdirAllAs(path.Join(a.rootPath(), p, id), 0755, rootUID, rootGID); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// Remove will unmount and remove the given id.
-func (a *Driver) Remove(id string) error {
-	a.locker.Lock(id)
-	defer a.locker.Unlock(id)
-	a.pathCacheLock.Lock()
-	mountpoint, exists := a.pathCache[id]
-	a.pathCacheLock.Unlock()
-	if !exists {
-		mountpoint = a.getMountpoint(id)
-	}
-
-	logger := logrus.WithFields(logrus.Fields{
-		"module": "graphdriver",
-		"driver": "aufs",
-		"layer":  id,
-	})
-
-	var retries int
-	for {
-		mounted, err := a.mounted(mountpoint)
-		if err != nil {
-			if os.IsNotExist(err) {
-				break
-			}
-			return err
-		}
-		if !mounted {
-			break
-		}
-
-		err = a.unmount(mountpoint)
-		if err == nil {
-			break
-		}
-
-		if err != unix.EBUSY {
-			return errors.Wrapf(err, "aufs: unmount error: %s", mountpoint)
-		}
-		if retries >= 5 {
-			return errors.Wrapf(err, "aufs: unmount error after retries: %s", mountpoint)
-		}
-		// If unmount returns EBUSY, it could be a transient error. Sleep and retry.
-		retries++
-		logger.Warnf("unmount failed due to EBUSY: retry count: %d", retries)
-		time.Sleep(100 * time.Millisecond)
-	}
-
-	// Remove the layers file for the id
-	if err := os.Remove(path.Join(a.rootPath(), "layers", id)); err != nil && !os.IsNotExist(err) {
-		return errors.Wrapf(err, "error removing layers dir for %s", id)
-	}
-
-	if err := atomicRemove(a.getDiffPath(id)); err != nil {
-		return errors.Wrapf(err, "could not remove diff path for id %s", id)
-	}
-
-	// Atomically remove each directory in turn by first moving it out of the
-	// way (so that container runtime doesn't find it anymore) before doing removal of
-	// the whole tree.
-	if err := atomicRemove(mountpoint); err != nil {
-		if errors.Cause(err) == unix.EBUSY {
-			logger.WithField("dir", mountpoint).WithError(err).Warn("error performing atomic remove due to EBUSY")
-		}
-		return errors.Wrapf(err, "could not remove mountpoint for id %s", id)
-	}
-
-	a.pathCacheLock.Lock()
-	delete(a.pathCache, id)
-	a.pathCacheLock.Unlock()
-	return nil
-}
-
-func atomicRemove(source string) error {
-	target := source + "-removing"
-
-	err := os.Rename(source, target)
-	switch {
-	case err == nil, os.IsNotExist(err):
-	case os.IsExist(err):
-		// Got error saying the target dir already exists, maybe the source doesn't exist due to a previous (failed) remove
-		if _, e := os.Stat(source); !os.IsNotExist(e) {
-			return errors.Wrapf(err, "target rename dir '%s' exists but should not, this needs to be manually cleaned up")
-		}
-	default:
-		return errors.Wrapf(err, "error preparing atomic delete")
-	}
-
-	return system.EnsureRemoveAll(target)
-}
-
-// Get returns the rootfs path for the id.
-// This will mount the dir at its given path
-func (a *Driver) Get(id, mountLabel string) (string, error) {
-	a.locker.Lock(id)
-	defer a.locker.Unlock(id)
-	parents, err := a.getParentLayerPaths(id)
-	if err != nil && !os.IsNotExist(err) {
-		return "", err
-	}
-
-	a.pathCacheLock.Lock()
-	m, exists := a.pathCache[id]
-	a.pathCacheLock.Unlock()
-
-	if !exists {
-		m = a.getDiffPath(id)
-		if len(parents) > 0 {
-			m = a.getMountpoint(id)
-		}
-	}
-	if count := a.ctr.Increment(m); count > 1 {
-		return m, nil
-	}
-
-	// If a dir does not have a parent ( no layers )do not try to mount
-	// just return the diff path to the data
-	if len(parents) > 0 {
-		if err := a.mount(id, m, mountLabel, parents); err != nil {
-			return "", err
-		}
-	}
-
-	a.pathCacheLock.Lock()
-	a.pathCache[id] = m
-	a.pathCacheLock.Unlock()
-	return m, nil
-}
-
-// Put unmounts and updates list of active mounts.
-func (a *Driver) Put(id string) error {
-	a.locker.Lock(id)
-	defer a.locker.Unlock(id)
-	a.pathCacheLock.Lock()
-	m, exists := a.pathCache[id]
-	if !exists {
-		m = a.getMountpoint(id)
-		a.pathCache[id] = m
-	}
-	a.pathCacheLock.Unlock()
-	if count := a.ctr.Decrement(m); count > 0 {
-		return nil
-	}
-
-	err := a.unmount(m)
-	if err != nil {
-		logrus.Debugf("Failed to unmount %s aufs: %v", id, err)
-	}
-	return err
-}
-
-// isParent returns if the passed in parent is the direct parent of the passed in layer
-func (a *Driver) isParent(id, parent string) bool {
-	parents, _ := getParentIDs(a.rootPath(), id)
-	if parent == "" && len(parents) > 0 {
-		return false
-	}
-	return !(len(parents) > 0 && parent != parents[0])
-}
-
-// Diff produces an archive of the changes between the specified
-// layer and its parent layer which may be "".
-func (a *Driver) Diff(id, parent, mountLabel string) (io.ReadCloser, error) {
-	if !a.isParent(id, parent) {
-		return a.naiveDiff.Diff(id, parent, mountLabel)
-	}
-
-	// AUFS doesn't need the parent layer to produce a diff.
-	return archive.TarWithOptions(path.Join(a.rootPath(), "diff", id), &archive.TarOptions{
-		Compression:     archive.Uncompressed,
-		ExcludePatterns: []string{archive.WhiteoutMetaPrefix + "*", "!" + archive.WhiteoutOpaqueDir},
-		UIDMaps:         a.uidMaps,
-		GIDMaps:         a.gidMaps,
-	})
-}
-
-type fileGetNilCloser struct {
-	storage.FileGetter
-}
-
-func (f fileGetNilCloser) Close() error {
-	return nil
-}
-
-// DiffGetter returns a FileGetCloser that can read files from the directory that
-// contains files for the layer differences. Used for direct access for tar-split.
-func (a *Driver) DiffGetter(id string) (graphdriver.FileGetCloser, error) {
-	p := path.Join(a.rootPath(), "diff", id)
-	return fileGetNilCloser{storage.NewPathFileGetter(p)}, nil
-}
-
-func (a *Driver) applyDiff(id string, diff io.Reader) error {
-	return chrootarchive.UntarUncompressed(diff, path.Join(a.rootPath(), "diff", id), &archive.TarOptions{
-		UIDMaps: a.uidMaps,
-		GIDMaps: a.gidMaps,
-	})
-}
-
-// DiffSize calculates the changes between the specified id
-// and its parent and returns the size in bytes of the changes
-// relative to its base filesystem directory.
-func (a *Driver) DiffSize(id, parent, mountLabel string) (size int64, err error) {
-	if !a.isParent(id, parent) {
-		return a.naiveDiff.DiffSize(id, parent, mountLabel)
-	}
-	// AUFS doesn't need the parent layer to calculate the diff size.
-	return directory.Size(path.Join(a.rootPath(), "diff", id))
-}
-
-// ApplyDiff extracts the changeset from the given diff into the
-// layer with the specified id and parent, returning the size of the
-// new layer in bytes.
-func (a *Driver) ApplyDiff(id, parent, mountLabel string, diff io.Reader) (size int64, err error) {
-	if !a.isParent(id, parent) {
-		return a.naiveDiff.ApplyDiff(id, parent, mountLabel, diff)
-	}
-
-	// AUFS doesn't need the parent id to apply the diff if it is the direct parent.
-	if err = a.applyDiff(id, diff); err != nil {
-		return
-	}
-
-	return a.DiffSize(id, parent, mountLabel)
-}
-
-// Changes produces a list of changes between the specified layer
-// and its parent layer. If parent is "", then all changes will be ADD changes.
-func (a *Driver) Changes(id, parent, mountLabel string) ([]archive.Change, error) {
-	if !a.isParent(id, parent) {
-		return a.naiveDiff.Changes(id, parent, mountLabel)
-	}
-
-	// AUFS doesn't have snapshots, so we need to get changes from all parent
-	// layers.
-	layers, err := a.getParentLayerPaths(id)
-	if err != nil {
-		return nil, err
-	}
-	return archive.Changes(layers, path.Join(a.rootPath(), "diff", id))
-}
-
-func (a *Driver) getParentLayerPaths(id string) ([]string, error) {
-	parentIds, err := getParentIDs(a.rootPath(), id)
-	if err != nil {
-		return nil, err
-	}
-	layers := make([]string, len(parentIds))
-
-	// Get the diff paths for all the parent ids
-	for i, p := range parentIds {
-		layers[i] = path.Join(a.rootPath(), "diff", p)
-	}
-	return layers, nil
-}
-
-func (a *Driver) mount(id string, target string, mountLabel string, layers []string) error {
-	a.Lock()
-	defer a.Unlock()
-
-	// If the id is mounted or we get an error return
-	if mounted, err := a.mounted(target); err != nil || mounted {
-		return err
-	}
-
-	rw := a.getDiffPath(id)
-
-	if err := a.aufsMount(layers, rw, target, mountLabel); err != nil {
-		return fmt.Errorf("error creating aufs mount to %s: %v", target, err)
-	}
-	return nil
-}
-
-func (a *Driver) unmount(mountPath string) error {
-	a.Lock()
-	defer a.Unlock()
-
-	if mounted, err := a.mounted(mountPath); err != nil || !mounted {
-		return err
-	}
-	if err := Unmount(mountPath); err != nil {
-		return err
-	}
-	return nil
-}
-
-func (a *Driver) mounted(mountpoint string) (bool, error) {
-	return graphdriver.Mounted(graphdriver.FsMagicAufs, mountpoint)
-}
-
-// Cleanup aufs and unmount all mountpoints
-func (a *Driver) Cleanup() error {
-	var dirs []string
-	if err := filepath.Walk(a.mntPath(), func(path string, info os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-		if !info.IsDir() {
-			return nil
-		}
-		dirs = append(dirs, path)
-		return nil
-	}); err != nil {
-		return err
-	}
-
-	for _, m := range dirs {
-		if err := a.unmount(m); err != nil {
-			logrus.Debugf("aufs error unmounting %s: %s", m, err)
-		}
-	}
-	return mountpk.Unmount(a.root)
-}
-
-func (a *Driver) aufsMount(ro []string, rw, target, mountLabel string) (err error) {
-	defer func() {
-		if err != nil {
-			Unmount(target)
-		}
-	}()
-
-	// Mount options are clipped to page size(4096 bytes). If there are more
-	// layers then these are remounted individually using append.
-
-	offset := 54
-	if useDirperm() {
-		offset += len(",dirperm1")
-	}
-	b := make([]byte, unix.Getpagesize()-len(mountLabel)-offset) // room for xino & mountLabel
-	bp := copy(b, fmt.Sprintf("br:%s=rw", rw))
-
-	index := 0
-	for ; index < len(ro); index++ {
-		layer := fmt.Sprintf(":%s=ro+wh", ro[index])
-		if bp+len(layer) > len(b) {
-			break
-		}
-		bp += copy(b[bp:], layer)
-	}
-
-	opts := "dio,xino=/dev/shm/aufs.xino"
-	if useDirperm() {
-		opts += ",dirperm1"
-	}
-	data := label.FormatMountLabel(fmt.Sprintf("%s,%s", string(b[:bp]), opts), mountLabel)
-	if err = mount("none", target, "aufs", 0, data); err != nil {
-		return
-	}
-
-	for ; index < len(ro); index++ {
-		layer := fmt.Sprintf(":%s=ro+wh", ro[index])
-		data := label.FormatMountLabel(fmt.Sprintf("append%s", layer), mountLabel)
-		if err = mount("none", target, "aufs", unix.MS_REMOUNT, data); err != nil {
-			return
-		}
-	}
-
-	return
-}
-
-// useDirperm checks dirperm1 mount option can be used with the current
-// version of aufs.
-func useDirperm() bool {
-	enableDirpermLock.Do(func() {
-		base, err := ioutil.TempDir("", "storage-aufs-base")
-		if err != nil {
-			logrus.Errorf("error checking dirperm1: %v", err)
-			return
-		}
-		defer os.RemoveAll(base)
-
-		union, err := ioutil.TempDir("", "storage-aufs-union")
-		if err != nil {
-			logrus.Errorf("error checking dirperm1: %v", err)
-			return
-		}
-		defer os.RemoveAll(union)
-
-		opts := fmt.Sprintf("br:%s,dirperm1,xino=/dev/shm/aufs.xino", base)
-		if err := mount("none", union, "aufs", 0, opts); err != nil {
-			return
-		}
-		enableDirperm = true
-		if err := Unmount(union); err != nil {
-			logrus.Errorf("error checking dirperm1: failed to unmount %v", err)
-		}
-	})
-	return enableDirperm
-}
diff --git a/vendor/github.com/containers/storage/drivers/aufs/dirs.go b/vendor/github.com/containers/storage/drivers/aufs/dirs.go
deleted file mode 100644
index d2325fc46c..0000000000
--- a/vendor/github.com/containers/storage/drivers/aufs/dirs.go
+++ /dev/null
@@ -1,64 +0,0 @@
-// +build linux
-
-package aufs
-
-import (
-	"bufio"
-	"io/ioutil"
-	"os"
-	"path"
-)
-
-// Return all the directories
-func loadIds(root string) ([]string, error) {
-	dirs, err := ioutil.ReadDir(root)
-	if err != nil {
-		return nil, err
-	}
-	out := []string{}
-	for _, d := range dirs {
-		if !d.IsDir() {
-			out = append(out, d.Name())
-		}
-	}
-	return out, nil
-}
-
-// Read the layers file for the current id and return all the
-// layers represented by new lines in the file
-//
-// If there are no lines in the file then the id has no parent
-// and an empty slice is returned.
-func getParentIDs(root, id string) ([]string, error) {
-	f, err := os.Open(path.Join(root, "layers", id))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	out := []string{}
-	s := bufio.NewScanner(f)
-
-	for s.Scan() {
-		if t := s.Text(); t != "" {
-			out = append(out, s.Text())
-		}
-	}
-	return out, s.Err()
-}
-
-func (a *Driver) getMountpoint(id string) string {
-	return path.Join(a.mntPath(), id)
-}
-
-func (a *Driver) mntPath() string {
-	return path.Join(a.rootPath(), "mnt")
-}
-
-func (a *Driver) getDiffPath(id string) string {
-	return path.Join(a.diffPath(), id)
-}
-
-func (a *Driver) diffPath() string {
-	return path.Join(a.rootPath(), "diff")
-}
diff --git a/vendor/github.com/containers/storage/drivers/aufs/mount.go b/vendor/github.com/containers/storage/drivers/aufs/mount.go
deleted file mode 100644
index 100e7537a9..0000000000
--- a/vendor/github.com/containers/storage/drivers/aufs/mount.go
+++ /dev/null
@@ -1,21 +0,0 @@
-// +build linux
-
-package aufs
-
-import (
-	"os/exec"
-
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-// Unmount the target specified.
-func Unmount(target string) error {
-	if err := exec.Command("auplink", target, "flush").Run(); err != nil {
-		logrus.Warnf("Couldn't run auplink before unmount %s: %s", target, err)
-	}
-	if err := unix.Unmount(target, 0); err != nil {
-		return err
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/aufs/mount_linux.go b/vendor/github.com/containers/storage/drivers/aufs/mount_linux.go
deleted file mode 100644
index 937104ba3f..0000000000
--- a/vendor/github.com/containers/storage/drivers/aufs/mount_linux.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package aufs
-
-import "golang.org/x/sys/unix"
-
-func mount(source string, target string, fstype string, flags uintptr, data string) error {
-	return unix.Mount(source, target, fstype, flags, data)
-}
diff --git a/vendor/github.com/containers/storage/drivers/aufs/mount_unsupported.go b/vendor/github.com/containers/storage/drivers/aufs/mount_unsupported.go
deleted file mode 100644
index d030b06637..0000000000
--- a/vendor/github.com/containers/storage/drivers/aufs/mount_unsupported.go
+++ /dev/null
@@ -1,12 +0,0 @@
-// +build !linux
-
-package aufs
-
-import "errors"
-
-// MsRemount declared to specify a non-linux system mount.
-const MsRemount = 0
-
-func mount(source string, target string, fstype string, flags uintptr, data string) (err error) {
-	return errors.New("mount is not implemented on this platform")
-}
diff --git a/vendor/github.com/containers/storage/drivers/btrfs/btrfs.go b/vendor/github.com/containers/storage/drivers/btrfs/btrfs.go
deleted file mode 100644
index abc856c836..0000000000
--- a/vendor/github.com/containers/storage/drivers/btrfs/btrfs.go
+++ /dev/null
@@ -1,677 +0,0 @@
-// +build linux
-
-package btrfs
-
-/*
-#include <stdlib.h>
-#include <dirent.h>
-#include <btrfs/ioctl.h>
-#include <btrfs/ctree.h>
-
-static void set_name_btrfs_ioctl_vol_args_v2(struct btrfs_ioctl_vol_args_v2* btrfs_struct, const char* value) {
-    snprintf(btrfs_struct->name, BTRFS_SUBVOL_NAME_MAX, "%s", value);
-}
-*/
-import "C"
-
-import (
-	"fmt"
-	"io/ioutil"
-	"math"
-	"os"
-	"path"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"sync"
-	"unsafe"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/parsers"
-	"github.com/containers/storage/pkg/system"
-	"github.com/docker/go-units"
-	"github.com/opencontainers/selinux/go-selinux/label"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-func init() {
-	graphdriver.Register("btrfs", Init)
-}
-
-type btrfsOptions struct {
-	minSpace uint64
-	size     uint64
-}
-
-// Init returns a new BTRFS driver.
-// An error is returned if BTRFS is not supported.
-func Init(home string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-
-	fsMagic, err := graphdriver.GetFSMagic(home)
-	if err != nil {
-		return nil, err
-	}
-
-	if fsMagic != graphdriver.FsMagicBtrfs {
-		return nil, errors.Wrapf(graphdriver.ErrPrerequisites, "%q is not on a btrfs filesystem", home)
-	}
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(uidMaps, gidMaps)
-	if err != nil {
-		return nil, err
-	}
-	if err := idtools.MkdirAllAs(home, 0700, rootUID, rootGID); err != nil {
-		return nil, err
-	}
-
-	if err := mount.MakePrivate(home); err != nil {
-		return nil, err
-	}
-
-	opt, userDiskQuota, err := parseOptions(options)
-	if err != nil {
-		return nil, err
-	}
-
-	driver := &Driver{
-		home:    home,
-		uidMaps: uidMaps,
-		gidMaps: gidMaps,
-		options: opt,
-	}
-
-	if userDiskQuota {
-		if err := driver.subvolEnableQuota(); err != nil {
-			return nil, err
-		}
-	}
-
-	return graphdriver.NewNaiveDiffDriver(driver, uidMaps, gidMaps), nil
-}
-
-func parseOptions(opt []string) (btrfsOptions, bool, error) {
-	var options btrfsOptions
-	userDiskQuota := false
-	for _, option := range opt {
-		key, val, err := parsers.ParseKeyValueOpt(option)
-		if err != nil {
-			return options, userDiskQuota, err
-		}
-		key = strings.ToLower(key)
-		switch key {
-		case "btrfs.min_space":
-			minSpace, err := units.RAMInBytes(val)
-			if err != nil {
-				return options, userDiskQuota, err
-			}
-			userDiskQuota = true
-			options.minSpace = uint64(minSpace)
-		default:
-			return options, userDiskQuota, fmt.Errorf("Unknown option %s", key)
-		}
-	}
-	return options, userDiskQuota, nil
-}
-
-// Driver contains information about the filesystem mounted.
-type Driver struct {
-	//root of the file system
-	home         string
-	uidMaps      []idtools.IDMap
-	gidMaps      []idtools.IDMap
-	options      btrfsOptions
-	quotaEnabled bool
-	once         sync.Once
-}
-
-// String prints the name of the driver (btrfs).
-func (d *Driver) String() string {
-	return "btrfs"
-}
-
-// Status returns current driver information in a two dimensional string array.
-// Output contains "Build Version" and "Library Version" of the btrfs libraries used.
-// Version information can be used to check compatibility with your kernel.
-func (d *Driver) Status() [][2]string {
-	status := [][2]string{}
-	if bv := btrfsBuildVersion(); bv != "-" {
-		status = append(status, [2]string{"Build Version", bv})
-	}
-	if lv := btrfsLibVersion(); lv != -1 {
-		status = append(status, [2]string{"Library Version", fmt.Sprintf("%d", lv)})
-	}
-	return status
-}
-
-// Metadata returns empty metadata for this driver.
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	return nil, nil
-}
-
-// Cleanup unmounts the home directory.
-func (d *Driver) Cleanup() error {
-	if err := d.subvolDisableQuota(); err != nil {
-		return err
-	}
-
-	return mount.Unmount(d.home)
-}
-
-func free(p *C.char) {
-	C.free(unsafe.Pointer(p))
-}
-
-func openDir(path string) (*C.DIR, error) {
-	Cpath := C.CString(path)
-	defer free(Cpath)
-
-	dir := C.opendir(Cpath)
-	if dir == nil {
-		return nil, fmt.Errorf("Can't open dir")
-	}
-	return dir, nil
-}
-
-func closeDir(dir *C.DIR) {
-	if dir != nil {
-		C.closedir(dir)
-	}
-}
-
-func getDirFd(dir *C.DIR) uintptr {
-	return uintptr(C.dirfd(dir))
-}
-
-func subvolCreate(path, name string) error {
-	dir, err := openDir(path)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_vol_args
-	for i, c := range []byte(name) {
-		args.name[i] = C.char(c)
-	}
-
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_SUBVOL_CREATE,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to create btrfs subvolume: %v", errno.Error())
-	}
-	return nil
-}
-
-func subvolSnapshot(src, dest, name string) error {
-	srcDir, err := openDir(src)
-	if err != nil {
-		return err
-	}
-	defer closeDir(srcDir)
-
-	destDir, err := openDir(dest)
-	if err != nil {
-		return err
-	}
-	defer closeDir(destDir)
-
-	var args C.struct_btrfs_ioctl_vol_args_v2
-	args.fd = C.__s64(getDirFd(srcDir))
-
-	var cs = C.CString(name)
-	C.set_name_btrfs_ioctl_vol_args_v2(&args, cs)
-	C.free(unsafe.Pointer(cs))
-
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(destDir), C.BTRFS_IOC_SNAP_CREATE_V2,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to create btrfs snapshot: %v", errno.Error())
-	}
-	return nil
-}
-
-func isSubvolume(p string) (bool, error) {
-	var bufStat unix.Stat_t
-	if err := unix.Lstat(p, &bufStat); err != nil {
-		return false, err
-	}
-
-	// return true if it is a btrfs subvolume
-	return bufStat.Ino == C.BTRFS_FIRST_FREE_OBJECTID, nil
-}
-
-func subvolDelete(dirpath, name string, quotaEnabled bool) error {
-	dir, err := openDir(dirpath)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-	fullPath := path.Join(dirpath, name)
-
-	var args C.struct_btrfs_ioctl_vol_args
-
-	// walk the btrfs subvolumes
-	walkSubvolumes := func(p string, f os.FileInfo, err error) error {
-		if err != nil {
-			if os.IsNotExist(err) && p != fullPath {
-				// missing most likely because the path was a subvolume that got removed in the previous iteration
-				// since it's gone anyway, we don't care
-				return nil
-			}
-			return fmt.Errorf("error walking subvolumes: %v", err)
-		}
-		// we want to check children only so skip itself
-		// it will be removed after the filepath walk anyways
-		if f.IsDir() && p != fullPath {
-			sv, err := isSubvolume(p)
-			if err != nil {
-				return fmt.Errorf("Failed to test if %s is a btrfs subvolume: %v", p, err)
-			}
-			if sv {
-				if err := subvolDelete(path.Dir(p), f.Name(), quotaEnabled); err != nil {
-					return fmt.Errorf("Failed to destroy btrfs child subvolume (%s) of parent (%s): %v", p, dirpath, err)
-				}
-			}
-		}
-		return nil
-	}
-	if err := filepath.Walk(path.Join(dirpath, name), walkSubvolumes); err != nil {
-		return fmt.Errorf("Recursively walking subvolumes for %s failed: %v", dirpath, err)
-	}
-
-	if quotaEnabled {
-		if qgroupid, err := subvolLookupQgroup(fullPath); err == nil {
-			var args C.struct_btrfs_ioctl_qgroup_create_args
-			args.qgroupid = C.__u64(qgroupid)
-
-			_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_QGROUP_CREATE,
-				uintptr(unsafe.Pointer(&args)))
-			if errno != 0 {
-				logrus.Errorf("Failed to delete btrfs qgroup %v for %s: %v", qgroupid, fullPath, errno.Error())
-			}
-		} else {
-			logrus.Errorf("Failed to lookup btrfs qgroup for %s: %v", fullPath, err.Error())
-		}
-	}
-
-	// all subvolumes have been removed
-	// now remove the one originally passed in
-	for i, c := range []byte(name) {
-		args.name[i] = C.char(c)
-	}
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_SNAP_DESTROY,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to destroy btrfs snapshot %s for %s: %v", dirpath, name, errno.Error())
-	}
-	return nil
-}
-
-func (d *Driver) updateQuotaStatus() {
-	d.once.Do(func() {
-		if !d.quotaEnabled {
-			// In case quotaEnabled is not set, check qgroup and update quotaEnabled as needed
-			if err := subvolQgroupStatus(d.home); err != nil {
-				// quota is still not enabled
-				return
-			}
-			d.quotaEnabled = true
-		}
-	})
-}
-
-func (d *Driver) subvolEnableQuota() error {
-	d.updateQuotaStatus()
-
-	if d.quotaEnabled {
-		return nil
-	}
-
-	dir, err := openDir(d.home)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_quota_ctl_args
-	args.cmd = C.BTRFS_QUOTA_CTL_ENABLE
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_QUOTA_CTL,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to enable btrfs quota for %s: %v", dir, errno.Error())
-	}
-
-	d.quotaEnabled = true
-
-	return nil
-}
-
-func (d *Driver) subvolDisableQuota() error {
-	d.updateQuotaStatus()
-
-	if !d.quotaEnabled {
-		return nil
-	}
-
-	dir, err := openDir(d.home)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_quota_ctl_args
-	args.cmd = C.BTRFS_QUOTA_CTL_DISABLE
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_QUOTA_CTL,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to disable btrfs quota for %s: %v", dir, errno.Error())
-	}
-
-	d.quotaEnabled = false
-
-	return nil
-}
-
-func (d *Driver) subvolRescanQuota() error {
-	d.updateQuotaStatus()
-
-	if !d.quotaEnabled {
-		return nil
-	}
-
-	dir, err := openDir(d.home)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_quota_rescan_args
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_QUOTA_RESCAN_WAIT,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to rescan btrfs quota for %s: %v", dir, errno.Error())
-	}
-
-	return nil
-}
-
-func subvolLimitQgroup(path string, size uint64) error {
-	dir, err := openDir(path)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_qgroup_limit_args
-	args.lim.max_referenced = C.__u64(size)
-	args.lim.flags = C.BTRFS_QGROUP_LIMIT_MAX_RFER
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_QGROUP_LIMIT,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to limit qgroup for %s: %v", dir, errno.Error())
-	}
-
-	return nil
-}
-
-// subvolQgroupStatus performs a BTRFS_IOC_TREE_SEARCH on the root path
-// with search key of BTRFS_QGROUP_STATUS_KEY.
-// In case qgroup is enabled, the retuned key type will match BTRFS_QGROUP_STATUS_KEY.
-// For more details please see https://github.com/kdave/btrfs-progs/blob/v4.9/qgroup.c#L1035
-func subvolQgroupStatus(path string) error {
-	dir, err := openDir(path)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_search_args
-	args.key.tree_id = C.BTRFS_QUOTA_TREE_OBJECTID
-	args.key.min_type = C.BTRFS_QGROUP_STATUS_KEY
-	args.key.max_type = C.BTRFS_QGROUP_STATUS_KEY
-	args.key.max_objectid = C.__u64(math.MaxUint64)
-	args.key.max_offset = C.__u64(math.MaxUint64)
-	args.key.max_transid = C.__u64(math.MaxUint64)
-	args.key.nr_items = 4096
-
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_TREE_SEARCH,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to search qgroup for %s: %v", path, errno.Error())
-	}
-	sh := (*C.struct_btrfs_ioctl_search_header)(unsafe.Pointer(&args.buf))
-	if sh._type != C.BTRFS_QGROUP_STATUS_KEY {
-		return fmt.Errorf("Invalid qgroup search header type for %s: %v", path, sh._type)
-	}
-	return nil
-}
-
-func subvolLookupQgroup(path string) (uint64, error) {
-	dir, err := openDir(path)
-	if err != nil {
-		return 0, err
-	}
-	defer closeDir(dir)
-
-	var args C.struct_btrfs_ioctl_ino_lookup_args
-	args.objectid = C.BTRFS_FIRST_FREE_OBJECTID
-
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.BTRFS_IOC_INO_LOOKUP,
-		uintptr(unsafe.Pointer(&args)))
-	if errno != 0 {
-		return 0, fmt.Errorf("Failed to lookup qgroup for %s: %v", dir, errno.Error())
-	}
-	if args.treeid == 0 {
-		return 0, fmt.Errorf("Invalid qgroup id for %s: 0", dir)
-	}
-
-	return uint64(args.treeid), nil
-}
-
-func (d *Driver) subvolumesDir() string {
-	return path.Join(d.home, "subvolumes")
-}
-
-func (d *Driver) subvolumesDirID(id string) string {
-	return path.Join(d.subvolumesDir(), id)
-}
-
-func (d *Driver) quotasDir() string {
-	return path.Join(d.home, "quotas")
-}
-
-func (d *Driver) quotasDirID(id string) string {
-	return path.Join(d.quotasDir(), id)
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	return d.Create(id, parent, opts)
-}
-
-// Create the filesystem with given id.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-	quotas := path.Join(d.home, "quotas")
-	subvolumes := path.Join(d.home, "subvolumes")
-	rootUID, rootGID, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps)
-	if err != nil {
-		return err
-	}
-	if err := idtools.MkdirAllAs(subvolumes, 0700, rootUID, rootGID); err != nil {
-		return err
-	}
-	if parent == "" {
-		if err := subvolCreate(subvolumes, id); err != nil {
-			return err
-		}
-	} else {
-		parentDir := d.subvolumesDirID(parent)
-		st, err := os.Stat(parentDir)
-		if err != nil {
-			return err
-		}
-		if !st.IsDir() {
-			return fmt.Errorf("%s: not a directory", parentDir)
-		}
-		if err := subvolSnapshot(parentDir, subvolumes, id); err != nil {
-			return err
-		}
-	}
-
-	var storageOpt map[string]string
-	if opts != nil {
-		storageOpt = opts.StorageOpt
-	}
-
-	if _, ok := storageOpt["size"]; ok {
-		driver := &Driver{}
-		if err := d.parseStorageOpt(storageOpt, driver); err != nil {
-			return err
-		}
-
-		if err := d.setStorageSize(path.Join(subvolumes, id), driver); err != nil {
-			return err
-		}
-		if err := idtools.MkdirAllAs(quotas, 0700, rootUID, rootGID); err != nil {
-			return err
-		}
-		if err := ioutil.WriteFile(path.Join(quotas, id), []byte(fmt.Sprint(driver.options.size)), 0644); err != nil {
-			return err
-		}
-	}
-
-	// if we have a remapped root (user namespaces enabled), change the created snapshot
-	// dir ownership to match
-	if rootUID != 0 || rootGID != 0 {
-		if err := os.Chown(path.Join(subvolumes, id), rootUID, rootGID); err != nil {
-			return err
-		}
-	}
-
-	mountLabel := ""
-	if opts != nil {
-		mountLabel = opts.MountLabel
-	}
-
-	return label.Relabel(path.Join(subvolumes, id), mountLabel, false)
-}
-
-// Parse btrfs storage options
-func (d *Driver) parseStorageOpt(storageOpt map[string]string, driver *Driver) error {
-	// Read size to change the subvolume disk quota per container
-	for key, val := range storageOpt {
-		key := strings.ToLower(key)
-		switch key {
-		case "size":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return err
-			}
-			driver.options.size = uint64(size)
-		default:
-			return fmt.Errorf("Unknown option %s", key)
-		}
-	}
-
-	return nil
-}
-
-// Set btrfs storage size
-func (d *Driver) setStorageSize(dir string, driver *Driver) error {
-	if driver.options.size <= 0 {
-		return fmt.Errorf("btrfs: invalid storage size: %s", units.HumanSize(float64(driver.options.size)))
-	}
-	if d.options.minSpace > 0 && driver.options.size < d.options.minSpace {
-		return fmt.Errorf("btrfs: storage size cannot be less than %s", units.HumanSize(float64(d.options.minSpace)))
-	}
-
-	if err := d.subvolEnableQuota(); err != nil {
-		return err
-	}
-
-	if err := subvolLimitQgroup(dir, driver.options.size); err != nil {
-		return err
-	}
-
-	return nil
-}
-
-// Remove the filesystem with given id.
-func (d *Driver) Remove(id string) error {
-	dir := d.subvolumesDirID(id)
-	if _, err := os.Stat(dir); err != nil {
-		return err
-	}
-	quotasDir := d.quotasDirID(id)
-	if _, err := os.Stat(quotasDir); err == nil {
-		if err := os.Remove(quotasDir); err != nil {
-			return err
-		}
-	} else if !os.IsNotExist(err) {
-		return err
-	}
-
-	// Call updateQuotaStatus() to invoke status update
-	d.updateQuotaStatus()
-
-	if err := subvolDelete(d.subvolumesDir(), id, d.quotaEnabled); err != nil {
-		return err
-	}
-	if err := system.EnsureRemoveAll(dir); err != nil {
-		return err
-	}
-	if err := d.subvolRescanQuota(); err != nil {
-		return err
-	}
-	return nil
-}
-
-// Get the requested filesystem id.
-func (d *Driver) Get(id, mountLabel string) (string, error) {
-	dir := d.subvolumesDirID(id)
-	st, err := os.Stat(dir)
-	if err != nil {
-		return "", err
-	}
-
-	if !st.IsDir() {
-		return "", fmt.Errorf("%s: not a directory", dir)
-	}
-
-	if quota, err := ioutil.ReadFile(d.quotasDirID(id)); err == nil {
-		if size, err := strconv.ParseUint(string(quota), 10, 64); err == nil && size >= d.options.minSpace {
-			if err := d.subvolEnableQuota(); err != nil {
-				return "", err
-			}
-			if err := subvolLimitQgroup(dir, size); err != nil {
-				return "", err
-			}
-		}
-	}
-
-	return dir, nil
-}
-
-// Put is not implemented for BTRFS as there is no cleanup required for the id.
-func (d *Driver) Put(id string) error {
-	// Get() creates no runtime resources (like e.g. mounts)
-	// so this doesn't need to do anything.
-	return nil
-}
-
-// Exists checks if the id exists in the filesystem.
-func (d *Driver) Exists(id string) bool {
-	dir := d.subvolumesDirID(id)
-	_, err := os.Stat(dir)
-	return err == nil
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/btrfs/dummy_unsupported.go b/vendor/github.com/containers/storage/drivers/btrfs/dummy_unsupported.go
deleted file mode 100644
index f07088887a..0000000000
--- a/vendor/github.com/containers/storage/drivers/btrfs/dummy_unsupported.go
+++ /dev/null
@@ -1,3 +0,0 @@
-// +build !linux !cgo
-
-package btrfs
diff --git a/vendor/github.com/containers/storage/drivers/btrfs/version.go b/vendor/github.com/containers/storage/drivers/btrfs/version.go
deleted file mode 100644
index 73d90cdd71..0000000000
--- a/vendor/github.com/containers/storage/drivers/btrfs/version.go
+++ /dev/null
@@ -1,26 +0,0 @@
-// +build linux,!btrfs_noversion
-
-package btrfs
-
-/*
-#include <btrfs/version.h>
-
-// around version 3.16, they did not define lib version yet
-#ifndef BTRFS_LIB_VERSION
-#define BTRFS_LIB_VERSION -1
-#endif
-
-// upstream had removed it, but now it will be coming back
-#ifndef BTRFS_BUILD_VERSION
-#define BTRFS_BUILD_VERSION "-"
-#endif
-*/
-import "C"
-
-func btrfsBuildVersion() string {
-	return string(C.BTRFS_BUILD_VERSION)
-}
-
-func btrfsLibVersion() int {
-	return int(C.BTRFS_LIB_VERSION)
-}
diff --git a/vendor/github.com/containers/storage/drivers/btrfs/version_none.go b/vendor/github.com/containers/storage/drivers/btrfs/version_none.go
deleted file mode 100644
index f802fbc629..0000000000
--- a/vendor/github.com/containers/storage/drivers/btrfs/version_none.go
+++ /dev/null
@@ -1,14 +0,0 @@
-// +build linux,btrfs_noversion
-
-package btrfs
-
-// TODO(vbatts) remove this work-around once supported linux distros are on
-// btrfs utilities of >= 3.16.1
-
-func btrfsBuildVersion() string {
-	return "-"
-}
-
-func btrfsLibVersion() int {
-	return -1
-}
diff --git a/vendor/github.com/containers/storage/drivers/counter.go b/vendor/github.com/containers/storage/drivers/counter.go
deleted file mode 100644
index 72551a38d4..0000000000
--- a/vendor/github.com/containers/storage/drivers/counter.go
+++ /dev/null
@@ -1,59 +0,0 @@
-package graphdriver
-
-import "sync"
-
-type minfo struct {
-	check bool
-	count int
-}
-
-// RefCounter is a generic counter for use by graphdriver Get/Put calls
-type RefCounter struct {
-	counts  map[string]*minfo
-	mu      sync.Mutex
-	checker Checker
-}
-
-// NewRefCounter returns a new RefCounter
-func NewRefCounter(c Checker) *RefCounter {
-	return &RefCounter{
-		checker: c,
-		counts:  make(map[string]*minfo),
-	}
-}
-
-// Increment increases the ref count for the given id and returns the current count
-func (c *RefCounter) Increment(path string) int {
-	return c.incdec(path, func(minfo *minfo) {
-		minfo.count++
-	})
-}
-
-// Decrement decreases the ref count for the given id and returns the current count
-func (c *RefCounter) Decrement(path string) int {
-	return c.incdec(path, func(minfo *minfo) {
-		minfo.count--
-	})
-}
-
-func (c *RefCounter) incdec(path string, infoOp func(minfo *minfo)) int {
-	c.mu.Lock()
-	m := c.counts[path]
-	if m == nil {
-		m = &minfo{}
-		c.counts[path] = m
-	}
-	// if we are checking this path for the first time check to make sure
-	// if it was already mounted on the system and make sure we have a correct ref
-	// count if it is mounted as it is in use.
-	if !m.check {
-		m.check = true
-		if c.checker.IsMounted(path) {
-			m.count++
-		}
-	}
-	infoOp(m)
-	count := m.count
-	c.mu.Unlock()
-	return count
-}
diff --git a/vendor/github.com/containers/storage/drivers/devmapper/device_setup.go b/vendor/github.com/containers/storage/drivers/devmapper/device_setup.go
deleted file mode 100644
index 1430c8859c..0000000000
--- a/vendor/github.com/containers/storage/drivers/devmapper/device_setup.go
+++ /dev/null
@@ -1,236 +0,0 @@
-package devmapper
-
-import (
-	"bufio"
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path/filepath"
-	"reflect"
-	"strings"
-
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-type directLVMConfig struct {
-	Device              string
-	ThinpPercent        uint64
-	ThinpMetaPercent    uint64
-	AutoExtendPercent   uint64
-	AutoExtendThreshold uint64
-}
-
-var (
-	errThinpPercentMissing = errors.New("must set both `dm.thinp_percent` and `dm.thinp_metapercent` if either is specified")
-	errThinpPercentTooBig  = errors.New("combined `dm.thinp_percent` and `dm.thinp_metapercent` must not be greater than 100")
-	errMissingSetupDevice  = errors.New("must provide device path in `dm.setup_device` in order to configure direct-lvm")
-)
-
-func validateLVMConfig(cfg directLVMConfig) error {
-	if reflect.DeepEqual(cfg, directLVMConfig{}) {
-		return nil
-	}
-	if cfg.Device == "" {
-		return errMissingSetupDevice
-	}
-	if (cfg.ThinpPercent > 0 && cfg.ThinpMetaPercent == 0) || cfg.ThinpMetaPercent > 0 && cfg.ThinpPercent == 0 {
-		return errThinpPercentMissing
-	}
-
-	if cfg.ThinpPercent+cfg.ThinpMetaPercent > 100 {
-		return errThinpPercentTooBig
-	}
-	return nil
-}
-
-func checkDevAvailable(dev string) error {
-	lvmScan, err := exec.LookPath("lvmdiskscan")
-	if err != nil {
-		logrus.Debug("could not find lvmdiskscan")
-		return nil
-	}
-
-	out, err := exec.Command(lvmScan).CombinedOutput()
-	if err != nil {
-		logrus.WithError(err).Error(string(out))
-		return nil
-	}
-
-	if !bytes.Contains(out, []byte(dev)) {
-		return errors.Errorf("%s is not available for use with devicemapper", dev)
-	}
-	return nil
-}
-
-func checkDevInVG(dev string) error {
-	pvDisplay, err := exec.LookPath("pvdisplay")
-	if err != nil {
-		logrus.Debug("could not find pvdisplay")
-		return nil
-	}
-
-	out, err := exec.Command(pvDisplay, dev).CombinedOutput()
-	if err != nil {
-		logrus.WithError(err).Error(string(out))
-		return nil
-	}
-
-	scanner := bufio.NewScanner(bytes.NewReader(bytes.TrimSpace(out)))
-	for scanner.Scan() {
-		fields := strings.SplitAfter(strings.TrimSpace(scanner.Text()), "VG Name")
-		if len(fields) > 1 {
-			// got "VG Name" line"
-			vg := strings.TrimSpace(fields[1])
-			if len(vg) > 0 {
-				return errors.Errorf("%s is already part of a volume group %q: must remove this device from any volume group or provide a different device", dev, vg)
-			}
-			logrus.Error(fields)
-			break
-		}
-	}
-	return nil
-}
-
-func checkDevHasFS(dev string) error {
-	blkid, err := exec.LookPath("blkid")
-	if err != nil {
-		logrus.Debug("could not find blkid")
-		return nil
-	}
-
-	out, err := exec.Command(blkid, dev).CombinedOutput()
-	if err != nil {
-		logrus.WithError(err).Error(string(out))
-		return nil
-	}
-
-	fields := bytes.Fields(out)
-	for _, f := range fields {
-		kv := bytes.Split(f, []byte{'='})
-		if bytes.Equal(kv[0], []byte("TYPE")) {
-			v := bytes.Trim(kv[1], "\"")
-			if len(v) > 0 {
-				return errors.Errorf("%s has a filesystem already, use dm.directlvm_device_force=true if you want to wipe the device", dev)
-			}
-			return nil
-		}
-	}
-	return nil
-}
-
-func verifyBlockDevice(dev string, force bool) error {
-	if err := checkDevAvailable(dev); err != nil {
-		return err
-	}
-	if err := checkDevInVG(dev); err != nil {
-		return err
-	}
-
-	if force {
-		return nil
-	}
-
-	if err := checkDevHasFS(dev); err != nil {
-		return err
-	}
-	return nil
-}
-
-func readLVMConfig(root string) (directLVMConfig, error) {
-	var cfg directLVMConfig
-
-	p := filepath.Join(root, "setup-config.json")
-	b, err := ioutil.ReadFile(p)
-	if err != nil {
-		if os.IsNotExist(err) {
-			return cfg, nil
-		}
-		return cfg, errors.Wrap(err, "error reading existing setup config")
-	}
-
-	// check if this is just an empty file, no need to produce a json error later if so
-	if len(b) == 0 {
-		return cfg, nil
-	}
-
-	err = json.Unmarshal(b, &cfg)
-	return cfg, errors.Wrap(err, "error unmarshaling previous device setup config")
-}
-
-func writeLVMConfig(root string, cfg directLVMConfig) error {
-	p := filepath.Join(root, "setup-config.json")
-	b, err := json.Marshal(cfg)
-	if err != nil {
-		return errors.Wrap(err, "error marshalling direct lvm config")
-	}
-	err = ioutil.WriteFile(p, b, 0600)
-	return errors.Wrap(err, "error writing direct lvm config to file")
-}
-
-func setupDirectLVM(cfg directLVMConfig) error {
-	lvmProfileDir := "/etc/lvm/profile"
-	binaries := []string{"pvcreate", "vgcreate", "lvcreate", "lvconvert", "lvchange", "thin_check"}
-
-	for _, bin := range binaries {
-		if _, err := exec.LookPath(bin); err != nil {
-			return errors.Wrap(err, "error looking up command `"+bin+"` while setting up direct lvm")
-		}
-	}
-
-	err := os.MkdirAll(lvmProfileDir, 0755)
-	if err != nil {
-		return errors.Wrap(err, "error creating lvm profile directory")
-	}
-
-	if cfg.AutoExtendPercent == 0 {
-		cfg.AutoExtendPercent = 20
-	}
-
-	if cfg.AutoExtendThreshold == 0 {
-		cfg.AutoExtendThreshold = 80
-	}
-
-	if cfg.ThinpPercent == 0 {
-		cfg.ThinpPercent = 95
-	}
-	if cfg.ThinpMetaPercent == 0 {
-		cfg.ThinpMetaPercent = 1
-	}
-
-	out, err := exec.Command("pvcreate", "-f", cfg.Device).CombinedOutput()
-	if err != nil {
-		return errors.Wrap(err, string(out))
-	}
-
-	out, err = exec.Command("vgcreate", "storage", cfg.Device).CombinedOutput()
-	if err != nil {
-		return errors.Wrap(err, string(out))
-	}
-
-	out, err = exec.Command("lvcreate", "--wipesignatures", "y", "-n", "thinpool", "storage", "--extents", fmt.Sprintf("%d%%VG", cfg.ThinpPercent)).CombinedOutput()
-	if err != nil {
-		return errors.Wrap(err, string(out))
-	}
-	out, err = exec.Command("lvcreate", "--wipesignatures", "y", "-n", "thinpoolmeta", "storage", "--extents", fmt.Sprintf("%d%%VG", cfg.ThinpMetaPercent)).CombinedOutput()
-	if err != nil {
-		return errors.Wrap(err, string(out))
-	}
-
-	out, err = exec.Command("lvconvert", "-y", "--zero", "n", "-c", "512K", "--thinpool", "storage/thinpool", "--poolmetadata", "storage/thinpoolmeta").CombinedOutput()
-	if err != nil {
-		return errors.Wrap(err, string(out))
-	}
-
-	profile := fmt.Sprintf("activation{\nthin_pool_autoextend_threshold=%d\nthin_pool_autoextend_percent=%d\n}", cfg.AutoExtendThreshold, cfg.AutoExtendPercent)
-	err = ioutil.WriteFile(lvmProfileDir+"/storage-thinpool.profile", []byte(profile), 0600)
-	if err != nil {
-		return errors.Wrap(err, "error writing storage thinp autoextend profile")
-	}
-
-	out, err = exec.Command("lvchange", "--metadataprofile", "storage-thinpool", "storage/thinpool").CombinedOutput()
-	return errors.Wrap(err, string(out))
-}
diff --git a/vendor/github.com/containers/storage/drivers/devmapper/deviceset.go b/vendor/github.com/containers/storage/drivers/devmapper/deviceset.go
deleted file mode 100644
index 6db7b2b2c9..0000000000
--- a/vendor/github.com/containers/storage/drivers/devmapper/deviceset.go
+++ /dev/null
@@ -1,2825 +0,0 @@
-// +build linux
-
-package devmapper
-
-import (
-	"bufio"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path"
-	"path/filepath"
-	"reflect"
-	"strconv"
-	"strings"
-	"sync"
-	"time"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/devicemapper"
-	"github.com/containers/storage/pkg/dmesg"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/loopback"
-	"github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/parsers"
-	"github.com/containers/storage/pkg/parsers/kernel"
-	units "github.com/docker/go-units"
-	"github.com/opencontainers/selinux/go-selinux/label"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-var (
-	defaultDataLoopbackSize      int64  = 100 * 1024 * 1024 * 1024
-	defaultMetaDataLoopbackSize  int64  = 2 * 1024 * 1024 * 1024
-	defaultBaseFsSize            uint64 = 10 * 1024 * 1024 * 1024
-	defaultThinpBlockSize        uint32 = 128 // 64K = 128 512b sectors
-	defaultUdevSyncOverride             = false
-	maxDeviceID                         = 0xffffff // 24 bit, pool limit
-	deviceIDMapSz                       = (maxDeviceID + 1) / 8
-	driverDeferredRemovalSupport        = false
-	enableDeferredRemoval               = false
-	enableDeferredDeletion              = false
-	userBaseSize                        = false
-	defaultMinFreeSpacePercent   uint32 = 10
-	lvmSetupConfigForce          bool
-)
-
-const deviceSetMetaFile string = "deviceset-metadata"
-const transactionMetaFile string = "transaction-metadata"
-
-type transaction struct {
-	OpenTransactionID uint64 `json:"open_transaction_id"`
-	DeviceIDHash      string `json:"device_hash"`
-	DeviceID          int    `json:"device_id"`
-}
-
-type devInfo struct {
-	Hash          string `json:"-"`
-	DeviceID      int    `json:"device_id"`
-	Size          uint64 `json:"size"`
-	TransactionID uint64 `json:"transaction_id"`
-	Initialized   bool   `json:"initialized"`
-	Deleted       bool   `json:"deleted"`
-	devices       *DeviceSet
-
-	// The global DeviceSet lock guarantees that we serialize all
-	// the calls to libdevmapper (which is not threadsafe), but we
-	// sometimes release that lock while sleeping. In that case
-	// this per-device lock is still held, protecting against
-	// other accesses to the device that we're doing the wait on.
-	//
-	// WARNING: In order to avoid AB-BA deadlocks when releasing
-	// the global lock while holding the per-device locks all
-	// device locks must be acquired *before* the device lock, and
-	// multiple device locks should be acquired parent before child.
-	lock sync.Mutex
-}
-
-type metaData struct {
-	Devices map[string]*devInfo `json:"Devices"`
-}
-
-// DeviceSet holds information about list of devices
-type DeviceSet struct {
-	metaData      `json:"-"`
-	sync.Mutex    `json:"-"` // Protects all fields of DeviceSet and serializes calls into libdevmapper
-	root          string
-	devicePrefix  string
-	TransactionID uint64 `json:"-"`
-	NextDeviceID  int    `json:"next_device_id"`
-	deviceIDMap   []byte
-
-	// Options
-	dataLoopbackSize      int64
-	metaDataLoopbackSize  int64
-	baseFsSize            uint64
-	filesystem            string
-	mountOptions          string
-	mkfsArgs              []string
-	dataDevice            string // block or loop dev
-	dataLoopFile          string // loopback file, if used
-	metadataDevice        string // block or loop dev
-	metadataLoopFile      string // loopback file, if used
-	doBlkDiscard          bool
-	thinpBlockSize        uint32
-	thinPoolDevice        string
-	transaction           `json:"-"`
-	overrideUdevSyncCheck bool
-	deferredRemove        bool   // use deferred removal
-	deferredDelete        bool   // use deferred deletion
-	BaseDeviceUUID        string // save UUID of base device
-	BaseDeviceFilesystem  string // save filesystem of base device
-	nrDeletedDevices      uint   // number of deleted devices
-	deletionWorkerTicker  *time.Ticker
-	uidMaps               []idtools.IDMap
-	gidMaps               []idtools.IDMap
-	minFreeSpacePercent   uint32 //min free space percentage in thinpool
-	xfsNospaceRetries     string // max retries when xfs receives ENOSPC
-	lvmSetupConfig        directLVMConfig
-}
-
-// DiskUsage contains information about disk usage and is used when reporting Status of a device.
-type DiskUsage struct {
-	// Used bytes on the disk.
-	Used uint64
-	// Total bytes on the disk.
-	Total uint64
-	// Available bytes on the disk.
-	Available uint64
-}
-
-// Status returns the information about the device.
-type Status struct {
-	// PoolName is the name of the data pool.
-	PoolName string
-	// DataFile is the actual block device for data.
-	DataFile string
-	// DataLoopback loopback file, if used.
-	DataLoopback string
-	// MetadataFile is the actual block device for metadata.
-	MetadataFile string
-	// MetadataLoopback is the loopback file, if used.
-	MetadataLoopback string
-	// Data is the disk used for data.
-	Data DiskUsage
-	// Metadata is the disk used for meta data.
-	Metadata DiskUsage
-	// BaseDeviceSize is base size of container and image
-	BaseDeviceSize uint64
-	// BaseDeviceFS is backing filesystem.
-	BaseDeviceFS string
-	// SectorSize size of the vector.
-	SectorSize uint64
-	// UdevSyncSupported is true if sync is supported.
-	UdevSyncSupported bool
-	// DeferredRemoveEnabled is true then the device is not unmounted.
-	DeferredRemoveEnabled bool
-	// True if deferred deletion is enabled. This is different from
-	// deferred removal. "removal" means that device mapper device is
-	// deactivated. Thin device is still in thin pool and can be activated
-	// again. But "deletion" means that thin device will be deleted from
-	// thin pool and it can't be activated again.
-	DeferredDeleteEnabled      bool
-	DeferredDeletedDeviceCount uint
-	MinFreeSpace               uint64
-}
-
-// Structure used to export image/container metadata in inspect.
-type deviceMetadata struct {
-	deviceID   int
-	deviceSize uint64 // size in bytes
-	deviceName string // Device name as used during activation
-}
-
-// DevStatus returns information about device mounted containing its id, size and sector information.
-type DevStatus struct {
-	// DeviceID is the id of the device.
-	DeviceID int
-	// Size is the size of the filesystem.
-	Size uint64
-	// TransactionID is a unique integer per device set used to identify an operation on the file system, this number is incremental.
-	TransactionID uint64
-	// SizeInSectors indicates the size of the sectors allocated.
-	SizeInSectors uint64
-	// MappedSectors indicates number of mapped sectors.
-	MappedSectors uint64
-	// HighestMappedSector is the pointer to the highest mapped sector.
-	HighestMappedSector uint64
-}
-
-func getDevName(name string) string {
-	return "/dev/mapper/" + name
-}
-
-func (info *devInfo) Name() string {
-	hash := info.Hash
-	if hash == "" {
-		hash = "base"
-	}
-	return fmt.Sprintf("%s-%s", info.devices.devicePrefix, hash)
-}
-
-func (info *devInfo) DevName() string {
-	return getDevName(info.Name())
-}
-
-func (devices *DeviceSet) loopbackDir() string {
-	return path.Join(devices.root, "devicemapper")
-}
-
-func (devices *DeviceSet) metadataDir() string {
-	return path.Join(devices.root, "metadata")
-}
-
-func (devices *DeviceSet) metadataFile(info *devInfo) string {
-	file := info.Hash
-	if file == "" {
-		file = "base"
-	}
-	return path.Join(devices.metadataDir(), file)
-}
-
-func (devices *DeviceSet) transactionMetaFile() string {
-	return path.Join(devices.metadataDir(), transactionMetaFile)
-}
-
-func (devices *DeviceSet) deviceSetMetaFile() string {
-	return path.Join(devices.metadataDir(), deviceSetMetaFile)
-}
-
-func (devices *DeviceSet) oldMetadataFile() string {
-	return path.Join(devices.loopbackDir(), "json")
-}
-
-func (devices *DeviceSet) getPoolName() string {
-	if devices.thinPoolDevice == "" {
-		return devices.devicePrefix + "-pool"
-	}
-	return devices.thinPoolDevice
-}
-
-func (devices *DeviceSet) getPoolDevName() string {
-	return getDevName(devices.getPoolName())
-}
-
-func (devices *DeviceSet) hasImage(name string) bool {
-	dirname := devices.loopbackDir()
-	filename := path.Join(dirname, name)
-
-	_, err := os.Stat(filename)
-	return err == nil
-}
-
-// ensureImage creates a sparse file of <size> bytes at the path
-// <root>/devicemapper/<name>.
-// If the file already exists and new size is larger than its current size, it grows to the new size.
-// Either way it returns the full path.
-func (devices *DeviceSet) ensureImage(name string, size int64) (string, error) {
-	dirname := devices.loopbackDir()
-	filename := path.Join(dirname, name)
-
-	uid, gid, err := idtools.GetRootUIDGID(devices.uidMaps, devices.gidMaps)
-	if err != nil {
-		return "", err
-	}
-	if err := idtools.MkdirAllAs(dirname, 0700, uid, gid); err != nil && !os.IsExist(err) {
-		return "", err
-	}
-
-	if fi, err := os.Stat(filename); err != nil {
-		if !os.IsNotExist(err) {
-			return "", err
-		}
-		logrus.Debugf("devmapper: Creating loopback file %s for device-manage use", filename)
-		file, err := os.OpenFile(filename, os.O_RDWR|os.O_CREATE, 0600)
-		if err != nil {
-			return "", err
-		}
-		defer file.Close()
-
-		if err := file.Truncate(size); err != nil {
-			return "", err
-		}
-	} else {
-		if fi.Size() < size {
-			file, err := os.OpenFile(filename, os.O_RDWR|os.O_CREATE, 0600)
-			if err != nil {
-				return "", err
-			}
-			defer file.Close()
-			if err := file.Truncate(size); err != nil {
-				return "", fmt.Errorf("devmapper: Unable to grow loopback file %s: %v", filename, err)
-			}
-		} else if fi.Size() > size {
-			logrus.Warnf("devmapper: Can't shrink loopback file %s", filename)
-		}
-	}
-	return filename, nil
-}
-
-func (devices *DeviceSet) allocateTransactionID() uint64 {
-	devices.OpenTransactionID = devices.TransactionID + 1
-	return devices.OpenTransactionID
-}
-
-func (devices *DeviceSet) updatePoolTransactionID() error {
-	if err := devicemapper.SetTransactionID(devices.getPoolDevName(), devices.TransactionID, devices.OpenTransactionID); err != nil {
-		return fmt.Errorf("devmapper: Error setting devmapper transaction ID: %s", err)
-	}
-	devices.TransactionID = devices.OpenTransactionID
-	return nil
-}
-
-func (devices *DeviceSet) removeMetadata(info *devInfo) error {
-	if err := os.RemoveAll(devices.metadataFile(info)); err != nil {
-		return fmt.Errorf("devmapper: Error removing metadata file %s: %s", devices.metadataFile(info), err)
-	}
-	return nil
-}
-
-// Given json data and file path, write it to disk
-func (devices *DeviceSet) writeMetaFile(jsonData []byte, filePath string) error {
-	tmpFile, err := ioutil.TempFile(devices.metadataDir(), ".tmp")
-	if err != nil {
-		return fmt.Errorf("devmapper: Error creating metadata file: %s", err)
-	}
-
-	n, err := tmpFile.Write(jsonData)
-	if err != nil {
-		return fmt.Errorf("devmapper: Error writing metadata to %s: %s", tmpFile.Name(), err)
-	}
-	if n < len(jsonData) {
-		return io.ErrShortWrite
-	}
-	if err := tmpFile.Sync(); err != nil {
-		return fmt.Errorf("devmapper: Error syncing metadata file %s: %s", tmpFile.Name(), err)
-	}
-	if err := tmpFile.Close(); err != nil {
-		return fmt.Errorf("devmapper: Error closing metadata file %s: %s", tmpFile.Name(), err)
-	}
-	if err := os.Rename(tmpFile.Name(), filePath); err != nil {
-		return fmt.Errorf("devmapper: Error committing metadata file %s: %s", tmpFile.Name(), err)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) saveMetadata(info *devInfo) error {
-	jsonData, err := json.Marshal(info)
-	if err != nil {
-		return fmt.Errorf("devmapper: Error encoding metadata to json: %s", err)
-	}
-	if err := devices.writeMetaFile(jsonData, devices.metadataFile(info)); err != nil {
-		return err
-	}
-	return nil
-}
-
-func (devices *DeviceSet) markDeviceIDUsed(deviceID int) {
-	var mask byte
-	i := deviceID % 8
-	mask = 1 << uint(i)
-	devices.deviceIDMap[deviceID/8] = devices.deviceIDMap[deviceID/8] | mask
-}
-
-func (devices *DeviceSet) markDeviceIDFree(deviceID int) {
-	var mask byte
-	i := deviceID % 8
-	mask = ^(1 << uint(i))
-	devices.deviceIDMap[deviceID/8] = devices.deviceIDMap[deviceID/8] & mask
-}
-
-func (devices *DeviceSet) isDeviceIDFree(deviceID int) bool {
-	var mask byte
-	i := deviceID % 8
-	mask = (1 << uint(i))
-	return (devices.deviceIDMap[deviceID/8] & mask) == 0
-}
-
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) lookupDevice(hash string) (*devInfo, error) {
-	info := devices.Devices[hash]
-	if info == nil {
-		info = devices.loadMetadata(hash)
-		if info == nil {
-			return nil, fmt.Errorf("devmapper: Unknown device %s", hash)
-		}
-
-		devices.Devices[hash] = info
-	}
-	return info, nil
-}
-
-func (devices *DeviceSet) lookupDeviceWithLock(hash string) (*devInfo, error) {
-	devices.Lock()
-	defer devices.Unlock()
-	info, err := devices.lookupDevice(hash)
-	return info, err
-}
-
-// This function relies on that device hash map has been loaded in advance.
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) constructDeviceIDMap() {
-	logrus.Debug("devmapper: constructDeviceIDMap()")
-	defer logrus.Debug("devmapper: constructDeviceIDMap() END")
-
-	for _, info := range devices.Devices {
-		devices.markDeviceIDUsed(info.DeviceID)
-		logrus.Debugf("devmapper: Added deviceId=%d to DeviceIdMap", info.DeviceID)
-	}
-}
-
-func (devices *DeviceSet) deviceFileWalkFunction(path string, finfo os.FileInfo) error {
-
-	// Skip some of the meta files which are not device files.
-	if strings.HasSuffix(finfo.Name(), ".migrated") {
-		logrus.Debugf("devmapper: Skipping file %s", path)
-		return nil
-	}
-
-	if strings.HasPrefix(finfo.Name(), ".") {
-		logrus.Debugf("devmapper: Skipping file %s", path)
-		return nil
-	}
-
-	if finfo.Name() == deviceSetMetaFile {
-		logrus.Debugf("devmapper: Skipping file %s", path)
-		return nil
-	}
-
-	if finfo.Name() == transactionMetaFile {
-		logrus.Debugf("devmapper: Skipping file %s", path)
-		return nil
-	}
-
-	logrus.Debugf("devmapper: Loading data for file %s", path)
-
-	hash := finfo.Name()
-	if hash == "base" {
-		hash = ""
-	}
-
-	// Include deleted devices also as cleanup delete device logic
-	// will go through it and see if there are any deleted devices.
-	if _, err := devices.lookupDevice(hash); err != nil {
-		return fmt.Errorf("devmapper: Error looking up device %s:%v", hash, err)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) loadDeviceFilesOnStart() error {
-	logrus.Debug("devmapper: loadDeviceFilesOnStart()")
-	defer logrus.Debug("devmapper: loadDeviceFilesOnStart() END")
-
-	var scan = func(path string, info os.FileInfo, err error) error {
-		if err != nil {
-			logrus.Debugf("devmapper: Can't walk the file %s", path)
-			return nil
-		}
-
-		// Skip any directories
-		if info.IsDir() {
-			return nil
-		}
-
-		return devices.deviceFileWalkFunction(path, info)
-	}
-
-	return filepath.Walk(devices.metadataDir(), scan)
-}
-
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) unregisterDevice(hash string) error {
-	logrus.Debugf("devmapper: unregisterDevice(%v)", hash)
-	info := &devInfo{
-		Hash: hash,
-	}
-
-	delete(devices.Devices, hash)
-
-	if err := devices.removeMetadata(info); err != nil {
-		logrus.Debugf("devmapper: Error removing metadata: %s", err)
-		return err
-	}
-
-	return nil
-}
-
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) registerDevice(id int, hash string, size uint64, transactionID uint64) (*devInfo, error) {
-	logrus.Debugf("devmapper: registerDevice(%v, %v)", id, hash)
-	info := &devInfo{
-		Hash:          hash,
-		DeviceID:      id,
-		Size:          size,
-		TransactionID: transactionID,
-		Initialized:   false,
-		devices:       devices,
-	}
-
-	devices.Devices[hash] = info
-
-	if err := devices.saveMetadata(info); err != nil {
-		// Try to remove unused device
-		delete(devices.Devices, hash)
-		return nil, err
-	}
-
-	return info, nil
-}
-
-func (devices *DeviceSet) activateDeviceIfNeeded(info *devInfo, ignoreDeleted bool) error {
-	logrus.Debugf("devmapper: activateDeviceIfNeeded(%v)", info.Hash)
-
-	if info.Deleted && !ignoreDeleted {
-		return fmt.Errorf("devmapper: Can't activate device %v as it is marked for deletion", info.Hash)
-	}
-
-	// Make sure deferred removal on device is canceled, if one was
-	// scheduled.
-	if err := devices.cancelDeferredRemovalIfNeeded(info); err != nil {
-		return fmt.Errorf("devmapper: Device Deferred Removal Cancellation Failed: %s", err)
-	}
-
-	if devinfo, _ := devicemapper.GetInfo(info.Name()); devinfo != nil && devinfo.Exists != 0 {
-		return nil
-	}
-
-	return devicemapper.ActivateDevice(devices.getPoolDevName(), info.Name(), info.DeviceID, info.Size)
-}
-
-// xfsSupported checks if xfs is supported, returns nil if it is, otherwise an error
-func xfsSupported() error {
-	// Make sure mkfs.xfs is available
-	if _, err := exec.LookPath("mkfs.xfs"); err != nil {
-		return err // error text is descriptive enough
-	}
-
-	// Check if kernel supports xfs filesystem or not.
-	exec.Command("modprobe", "xfs").Run()
-
-	f, err := os.Open("/proc/filesystems")
-	if err != nil {
-		return errors.Wrapf(err, "error checking for xfs support")
-	}
-	defer f.Close()
-
-	s := bufio.NewScanner(f)
-	for s.Scan() {
-		if strings.HasSuffix(s.Text(), "\txfs") {
-			return nil
-		}
-	}
-
-	if err := s.Err(); err != nil {
-		return errors.Wrapf(err, "error checking for xfs support")
-	}
-
-	return errors.New(`kernel does not support xfs, or "modprobe xfs" failed`)
-}
-
-func determineDefaultFS() string {
-	err := xfsSupported()
-	if err == nil {
-		return "xfs"
-	}
-
-	logrus.Warnf("devmapper: XFS is not supported in your system (%v). Defaulting to ext4 filesystem", err)
-	return "ext4"
-}
-
-// mkfsOptions tries to figure out whether some additional mkfs options are required
-func mkfsOptions(fs string) []string {
-	if fs == "xfs" && !kernel.CheckKernelVersion(3, 16, 0) {
-		// For kernels earlier than 3.16 (and newer xfsutils),
-		// some xfs features need to be explicitly disabled.
-		return []string{"-m", "crc=0,finobt=0"}
-	}
-
-	return []string{}
-}
-
-func (devices *DeviceSet) createFilesystem(info *devInfo) (err error) {
-	devname := info.DevName()
-
-	if devices.filesystem == "" {
-		devices.filesystem = determineDefaultFS()
-	}
-	if err := devices.saveBaseDeviceFilesystem(devices.filesystem); err != nil {
-		return err
-	}
-
-	args := mkfsOptions(devices.filesystem)
-	args = append(args, devices.mkfsArgs...)
-	args = append(args, devname)
-
-	logrus.Infof("devmapper: Creating filesystem %s on device %s, mkfs args: %v", devices.filesystem, info.Name(), args)
-	defer func() {
-		if err != nil {
-			logrus.Infof("devmapper: Error while creating filesystem %s on device %s: %v", devices.filesystem, info.Name(), err)
-		} else {
-			logrus.Infof("devmapper: Successfully created filesystem %s on device %s", devices.filesystem, info.Name())
-		}
-	}()
-
-	switch devices.filesystem {
-	case "xfs":
-		err = exec.Command("mkfs.xfs", args...).Run()
-	case "ext4":
-		err = exec.Command("mkfs.ext4", append([]string{"-E", "nodiscard,lazy_itable_init=0,lazy_journal_init=0"}, args...)...).Run()
-		if err != nil {
-			err = exec.Command("mkfs.ext4", append([]string{"-E", "nodiscard,lazy_itable_init=0"}, args...)...).Run()
-		}
-		if err != nil {
-			return err
-		}
-		err = exec.Command("tune2fs", append([]string{"-c", "-1", "-i", "0"}, devname)...).Run()
-	default:
-		err = fmt.Errorf("devmapper: Unsupported filesystem type %s", devices.filesystem)
-	}
-	return
-}
-
-func (devices *DeviceSet) migrateOldMetaData() error {
-	// Migrate old metadata file
-	jsonData, err := ioutil.ReadFile(devices.oldMetadataFile())
-	if err != nil && !os.IsNotExist(err) {
-		return err
-	}
-
-	if jsonData != nil {
-		m := metaData{Devices: make(map[string]*devInfo)}
-
-		if err := json.Unmarshal(jsonData, &m); err != nil {
-			return err
-		}
-
-		for hash, info := range m.Devices {
-			info.Hash = hash
-			devices.saveMetadata(info)
-		}
-		if err := os.Rename(devices.oldMetadataFile(), devices.oldMetadataFile()+".migrated"); err != nil {
-			return err
-		}
-
-	}
-
-	return nil
-}
-
-// Cleanup deleted devices. It assumes that all the devices have been
-// loaded in the hash table.
-func (devices *DeviceSet) cleanupDeletedDevices() error {
-	devices.Lock()
-
-	// If there are no deleted devices, there is nothing to do.
-	if devices.nrDeletedDevices == 0 {
-		devices.Unlock()
-		return nil
-	}
-
-	var deletedDevices []*devInfo
-
-	for _, info := range devices.Devices {
-		if !info.Deleted {
-			continue
-		}
-		logrus.Debugf("devmapper: Found deleted device %s.", info.Hash)
-		deletedDevices = append(deletedDevices, info)
-	}
-
-	// Delete the deleted devices. DeleteDevice() first takes the info lock
-	// and then devices.Lock(). So drop it to avoid deadlock.
-	devices.Unlock()
-
-	for _, info := range deletedDevices {
-		// This will again try deferred deletion.
-		if err := devices.DeleteDevice(info.Hash, false); err != nil {
-			logrus.Warnf("devmapper: Deletion of device %s, device_id=%v failed:%v", info.Hash, info.DeviceID, err)
-		}
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) countDeletedDevices() {
-	for _, info := range devices.Devices {
-		if !info.Deleted {
-			continue
-		}
-		devices.nrDeletedDevices++
-	}
-}
-
-func (devices *DeviceSet) startDeviceDeletionWorker() {
-	// Deferred deletion is not enabled. Don't do anything.
-	if !devices.deferredDelete {
-		return
-	}
-
-	logrus.Debug("devmapper: Worker to cleanup deleted devices started")
-	for range devices.deletionWorkerTicker.C {
-		devices.cleanupDeletedDevices()
-	}
-}
-
-func (devices *DeviceSet) initMetaData() error {
-	devices.Lock()
-	defer devices.Unlock()
-
-	if err := devices.migrateOldMetaData(); err != nil {
-		return err
-	}
-
-	_, transactionID, _, _, _, _, err := devices.poolStatus()
-	if err != nil {
-		return err
-	}
-
-	devices.TransactionID = transactionID
-
-	if err := devices.loadDeviceFilesOnStart(); err != nil {
-		return fmt.Errorf("devmapper: Failed to load device files:%v", err)
-	}
-
-	devices.constructDeviceIDMap()
-	devices.countDeletedDevices()
-
-	if err := devices.processPendingTransaction(); err != nil {
-		return err
-	}
-
-	// Start a goroutine to cleanup Deleted Devices
-	go devices.startDeviceDeletionWorker()
-	return nil
-}
-
-func (devices *DeviceSet) incNextDeviceID() {
-	// IDs are 24bit, so wrap around
-	devices.NextDeviceID = (devices.NextDeviceID + 1) & maxDeviceID
-}
-
-func (devices *DeviceSet) getNextFreeDeviceID() (int, error) {
-	devices.incNextDeviceID()
-	for i := 0; i <= maxDeviceID; i++ {
-		if devices.isDeviceIDFree(devices.NextDeviceID) {
-			devices.markDeviceIDUsed(devices.NextDeviceID)
-			return devices.NextDeviceID, nil
-		}
-		devices.incNextDeviceID()
-	}
-
-	return 0, fmt.Errorf("devmapper: Unable to find a free device ID")
-}
-
-func (devices *DeviceSet) poolHasFreeSpace() error {
-	if devices.minFreeSpacePercent == 0 {
-		return nil
-	}
-
-	_, _, dataUsed, dataTotal, metadataUsed, metadataTotal, err := devices.poolStatus()
-	if err != nil {
-		return err
-	}
-
-	minFreeData := (dataTotal * uint64(devices.minFreeSpacePercent)) / 100
-	if minFreeData < 1 {
-		minFreeData = 1
-	}
-	dataFree := dataTotal - dataUsed
-	if dataFree < minFreeData {
-		return fmt.Errorf("devmapper: Thin Pool has %v free data blocks which is less than minimum required %v free data blocks. Create more free space in thin pool or use dm.min_free_space option to change behavior", (dataTotal - dataUsed), minFreeData)
-	}
-
-	minFreeMetadata := (metadataTotal * uint64(devices.minFreeSpacePercent)) / 100
-	if minFreeMetadata < 1 {
-		minFreeMetadata = 1
-	}
-
-	metadataFree := metadataTotal - metadataUsed
-	if metadataFree < minFreeMetadata {
-		return fmt.Errorf("devmapper: Thin Pool has %v free metadata blocks which is less than minimum required %v free metadata blocks. Create more free metadata space in thin pool or use dm.min_free_space option to change behavior", (metadataTotal - metadataUsed), minFreeMetadata)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) createRegisterDevice(hash string) (*devInfo, error) {
-	devices.Lock()
-	defer devices.Unlock()
-
-	deviceID, err := devices.getNextFreeDeviceID()
-	if err != nil {
-		return nil, err
-	}
-
-	if err := devices.openTransaction(hash, deviceID); err != nil {
-		logrus.Debugf("devmapper: Error opening transaction hash = %s deviceID = %d", hash, deviceID)
-		devices.markDeviceIDFree(deviceID)
-		return nil, err
-	}
-
-	for {
-		if err := devicemapper.CreateDevice(devices.getPoolDevName(), deviceID); err != nil {
-			if devicemapper.DeviceIDExists(err) {
-				// Device ID already exists. This should not
-				// happen. Now we have a mechanism to find
-				// a free device ID. So something is not right.
-				// Give a warning and continue.
-				logrus.Errorf("devmapper: Device ID %d exists in pool but it is supposed to be unused", deviceID)
-				deviceID, err = devices.getNextFreeDeviceID()
-				if err != nil {
-					return nil, err
-				}
-				// Save new device id into transaction
-				devices.refreshTransaction(deviceID)
-				continue
-			}
-			logrus.Debugf("devmapper: Error creating device: %s", err)
-			devices.markDeviceIDFree(deviceID)
-			return nil, err
-		}
-		break
-	}
-
-	logrus.Debugf("devmapper: Registering device (id %v) with FS size %v", deviceID, devices.baseFsSize)
-	info, err := devices.registerDevice(deviceID, hash, devices.baseFsSize, devices.OpenTransactionID)
-	if err != nil {
-		_ = devicemapper.DeleteDevice(devices.getPoolDevName(), deviceID)
-		devices.markDeviceIDFree(deviceID)
-		return nil, err
-	}
-
-	if err := devices.closeTransaction(); err != nil {
-		devices.unregisterDevice(hash)
-		devicemapper.DeleteDevice(devices.getPoolDevName(), deviceID)
-		devices.markDeviceIDFree(deviceID)
-		return nil, err
-	}
-	return info, nil
-}
-
-func (devices *DeviceSet) takeSnapshot(hash string, baseInfo *devInfo, size uint64) error {
-	var (
-		devinfo *devicemapper.Info
-		err     error
-	)
-
-	if err = devices.poolHasFreeSpace(); err != nil {
-		return err
-	}
-
-	if devices.deferredRemove {
-		devinfo, err = devicemapper.GetInfoWithDeferred(baseInfo.Name())
-		if err != nil {
-			return err
-		}
-		if devinfo != nil && devinfo.DeferredRemove != 0 {
-			err = devices.cancelDeferredRemoval(baseInfo)
-			if err != nil {
-				// If Error is ErrEnxio. Device is probably already gone. Continue.
-				if errors.Cause(err) != devicemapper.ErrEnxio {
-					return err
-				}
-				devinfo = nil
-			} else {
-				defer devices.deactivateDevice(baseInfo)
-			}
-		}
-	} else {
-		devinfo, err = devicemapper.GetInfo(baseInfo.Name())
-		if err != nil {
-			return err
-		}
-	}
-
-	doSuspend := devinfo != nil && devinfo.Exists != 0
-
-	if doSuspend {
-		if err = devicemapper.SuspendDevice(baseInfo.Name()); err != nil {
-			return err
-		}
-		defer devicemapper.ResumeDevice(baseInfo.Name())
-	}
-
-	if err = devices.createRegisterSnapDevice(hash, baseInfo, size); err != nil {
-		return err
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) createRegisterSnapDevice(hash string, baseInfo *devInfo, size uint64) error {
-	deviceID, err := devices.getNextFreeDeviceID()
-	if err != nil {
-		return err
-	}
-
-	if err := devices.openTransaction(hash, deviceID); err != nil {
-		logrus.Debugf("devmapper: Error opening transaction hash = %s deviceID = %d", hash, deviceID)
-		devices.markDeviceIDFree(deviceID)
-		return err
-	}
-
-	for {
-		if err := devicemapper.CreateSnapDeviceRaw(devices.getPoolDevName(), deviceID, baseInfo.DeviceID); err != nil {
-			if devicemapper.DeviceIDExists(err) {
-				// Device ID already exists. This should not
-				// happen. Now we have a mechanism to find
-				// a free device ID. So something is not right.
-				// Give a warning and continue.
-				logrus.Errorf("devmapper: Device ID %d exists in pool but it is supposed to be unused", deviceID)
-				deviceID, err = devices.getNextFreeDeviceID()
-				if err != nil {
-					return err
-				}
-				// Save new device id into transaction
-				devices.refreshTransaction(deviceID)
-				continue
-			}
-			logrus.Debugf("devmapper: Error creating snap device: %s", err)
-			devices.markDeviceIDFree(deviceID)
-			return err
-		}
-		break
-	}
-
-	if _, err := devices.registerDevice(deviceID, hash, size, devices.OpenTransactionID); err != nil {
-		devicemapper.DeleteDevice(devices.getPoolDevName(), deviceID)
-		devices.markDeviceIDFree(deviceID)
-		logrus.Debugf("devmapper: Error registering device: %s", err)
-		return err
-	}
-
-	if err := devices.closeTransaction(); err != nil {
-		devices.unregisterDevice(hash)
-		devicemapper.DeleteDevice(devices.getPoolDevName(), deviceID)
-		devices.markDeviceIDFree(deviceID)
-		return err
-	}
-	return nil
-}
-
-func (devices *DeviceSet) loadMetadata(hash string) *devInfo {
-	info := &devInfo{Hash: hash, devices: devices}
-
-	jsonData, err := ioutil.ReadFile(devices.metadataFile(info))
-	if err != nil {
-		logrus.Debugf("devmapper: Failed to read %s with err: %v", devices.metadataFile(info), err)
-		return nil
-	}
-
-	if err := json.Unmarshal(jsonData, &info); err != nil {
-		logrus.Debugf("devmapper: Failed to unmarshal devInfo from %s with err: %v", devices.metadataFile(info), err)
-		return nil
-	}
-
-	if info.DeviceID > maxDeviceID {
-		logrus.Errorf("devmapper: Ignoring Invalid DeviceId=%d", info.DeviceID)
-		return nil
-	}
-
-	return info
-}
-
-func getDeviceUUID(device string) (string, error) {
-	out, err := exec.Command("blkid", "-s", "UUID", "-o", "value", device).Output()
-	if err != nil {
-		return "", fmt.Errorf("devmapper: Failed to find uuid for device %s:%v", device, err)
-	}
-
-	uuid := strings.TrimSuffix(string(out), "\n")
-	uuid = strings.TrimSpace(uuid)
-	logrus.Debugf("devmapper: UUID for device: %s is:%s", device, uuid)
-	return uuid, nil
-}
-
-func (devices *DeviceSet) getBaseDeviceSize() uint64 {
-	info, _ := devices.lookupDevice("")
-	if info == nil {
-		return 0
-	}
-	return info.Size
-}
-
-func (devices *DeviceSet) getBaseDeviceFS() string {
-	return devices.BaseDeviceFilesystem
-}
-
-func (devices *DeviceSet) verifyBaseDeviceUUIDFS(baseInfo *devInfo) error {
-	devices.Lock()
-	defer devices.Unlock()
-
-	if err := devices.activateDeviceIfNeeded(baseInfo, false); err != nil {
-		return err
-	}
-	defer devices.deactivateDevice(baseInfo)
-
-	uuid, err := getDeviceUUID(baseInfo.DevName())
-	if err != nil {
-		return err
-	}
-
-	if devices.BaseDeviceUUID != uuid {
-		return fmt.Errorf("devmapper: Current Base Device UUID:%s does not match with stored UUID:%s. Possibly using a different thin pool than last invocation", uuid, devices.BaseDeviceUUID)
-	}
-
-	if devices.BaseDeviceFilesystem == "" {
-		fsType, err := ProbeFsType(baseInfo.DevName())
-		if err != nil {
-			return err
-		}
-		if err := devices.saveBaseDeviceFilesystem(fsType); err != nil {
-			return err
-		}
-	}
-
-	// If user specified a filesystem using dm.fs option and current
-	// file system of base image is not same, warn user that dm.fs
-	// will be ignored.
-	if devices.BaseDeviceFilesystem != devices.filesystem {
-		logrus.Warnf("devmapper: Base device already exists and has filesystem %s on it. User specified filesystem %s will be ignored.", devices.BaseDeviceFilesystem, devices.filesystem)
-		devices.filesystem = devices.BaseDeviceFilesystem
-	}
-	return nil
-}
-
-func (devices *DeviceSet) saveBaseDeviceFilesystem(fs string) error {
-	devices.BaseDeviceFilesystem = fs
-	return devices.saveDeviceSetMetaData()
-}
-
-func (devices *DeviceSet) saveBaseDeviceUUID(baseInfo *devInfo) error {
-	devices.Lock()
-	defer devices.Unlock()
-
-	if err := devices.activateDeviceIfNeeded(baseInfo, false); err != nil {
-		return err
-	}
-	defer devices.deactivateDevice(baseInfo)
-
-	uuid, err := getDeviceUUID(baseInfo.DevName())
-	if err != nil {
-		return err
-	}
-
-	devices.BaseDeviceUUID = uuid
-	return devices.saveDeviceSetMetaData()
-}
-
-func (devices *DeviceSet) createBaseImage() error {
-	logrus.Debug("devmapper: Initializing base device-mapper thin volume")
-
-	// Create initial device
-	info, err := devices.createRegisterDevice("")
-	if err != nil {
-		return err
-	}
-
-	logrus.Debug("devmapper: Creating filesystem on base device-mapper thin volume")
-
-	if err := devices.activateDeviceIfNeeded(info, false); err != nil {
-		return err
-	}
-
-	if err := devices.createFilesystem(info); err != nil {
-		return err
-	}
-
-	info.Initialized = true
-	if err := devices.saveMetadata(info); err != nil {
-		info.Initialized = false
-		return err
-	}
-
-	if err := devices.saveBaseDeviceUUID(info); err != nil {
-		return fmt.Errorf("devmapper: Could not query and save base device UUID:%v", err)
-	}
-
-	return nil
-}
-
-// Returns if thin pool device exists or not. If device exists, also makes
-// sure it is a thin pool device and not some other type of device.
-func (devices *DeviceSet) thinPoolExists(thinPoolDevice string) (bool, error) {
-	logrus.Debugf("devmapper: Checking for existence of the pool %s", thinPoolDevice)
-
-	info, err := devicemapper.GetInfo(thinPoolDevice)
-	if err != nil {
-		return false, fmt.Errorf("devmapper: GetInfo() on device %s failed: %v", thinPoolDevice, err)
-	}
-
-	// Device does not exist.
-	if info.Exists == 0 {
-		return false, nil
-	}
-
-	_, _, deviceType, _, err := devicemapper.GetStatus(thinPoolDevice)
-	if err != nil {
-		return false, fmt.Errorf("devmapper: GetStatus() on device %s failed: %v", thinPoolDevice, err)
-	}
-
-	if deviceType != "thin-pool" {
-		return false, fmt.Errorf("devmapper: Device %s is not a thin pool", thinPoolDevice)
-	}
-
-	return true, nil
-}
-
-func (devices *DeviceSet) checkThinPool() error {
-	_, transactionID, dataUsed, _, _, _, err := devices.poolStatus()
-	if err != nil {
-		return err
-	}
-	if dataUsed != 0 {
-		return fmt.Errorf("devmapper: Unable to take ownership of thin-pool (%s) that already has used data blocks",
-			devices.thinPoolDevice)
-	}
-	if transactionID != 0 {
-		return fmt.Errorf("devmapper: Unable to take ownership of thin-pool (%s) with non-zero transaction ID",
-			devices.thinPoolDevice)
-	}
-	return nil
-}
-
-// Base image is initialized properly. Either save UUID for first time (for
-// upgrade case or verify UUID.
-func (devices *DeviceSet) setupVerifyBaseImageUUIDFS(baseInfo *devInfo) error {
-	// If BaseDeviceUUID is nil (upgrade case), save it and return success.
-	if devices.BaseDeviceUUID == "" {
-		if err := devices.saveBaseDeviceUUID(baseInfo); err != nil {
-			return fmt.Errorf("devmapper: Could not query and save base device UUID:%v", err)
-		}
-		return nil
-	}
-
-	if err := devices.verifyBaseDeviceUUIDFS(baseInfo); err != nil {
-		return fmt.Errorf("devmapper: Base Device UUID and Filesystem verification failed: %v", err)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) checkGrowBaseDeviceFS(info *devInfo) error {
-
-	if !userBaseSize {
-		return nil
-	}
-
-	if devices.baseFsSize < devices.getBaseDeviceSize() {
-		return fmt.Errorf("devmapper: Base device size cannot be smaller than %s", units.HumanSize(float64(devices.getBaseDeviceSize())))
-	}
-
-	if devices.baseFsSize == devices.getBaseDeviceSize() {
-		return nil
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	info.Size = devices.baseFsSize
-
-	if err := devices.saveMetadata(info); err != nil {
-		// Try to remove unused device
-		delete(devices.Devices, info.Hash)
-		return err
-	}
-
-	return devices.growFS(info)
-}
-
-func (devices *DeviceSet) growFS(info *devInfo) error {
-	if err := devices.activateDeviceIfNeeded(info, false); err != nil {
-		return fmt.Errorf("Error activating devmapper device: %s", err)
-	}
-
-	defer devices.deactivateDevice(info)
-
-	fsMountPoint := "/run/containers/storage/mnt"
-	if _, err := os.Stat(fsMountPoint); os.IsNotExist(err) {
-		if err := os.MkdirAll(fsMountPoint, 0700); err != nil {
-			return err
-		}
-		defer os.RemoveAll(fsMountPoint)
-	}
-
-	options := ""
-	if devices.BaseDeviceFilesystem == "xfs" {
-		// XFS needs nouuid or it can't mount filesystems with the same fs
-		options = joinMountOptions(options, "nouuid")
-	}
-	options = joinMountOptions(options, devices.mountOptions)
-
-	if err := mount.Mount(info.DevName(), fsMountPoint, devices.BaseDeviceFilesystem, options); err != nil {
-		return fmt.Errorf("Error mounting '%s' on '%s': %s\n%v", info.DevName(), fsMountPoint, err, string(dmesg.Dmesg(256)))
-	}
-
-	defer unix.Unmount(fsMountPoint, unix.MNT_DETACH)
-
-	switch devices.BaseDeviceFilesystem {
-	case "ext4":
-		if out, err := exec.Command("resize2fs", info.DevName()).CombinedOutput(); err != nil {
-			return fmt.Errorf("Failed to grow rootfs:%v:%s", err, string(out))
-		}
-	case "xfs":
-		if out, err := exec.Command("xfs_growfs", info.DevName()).CombinedOutput(); err != nil {
-			return fmt.Errorf("Failed to grow rootfs:%v:%s", err, string(out))
-		}
-	default:
-		return fmt.Errorf("Unsupported filesystem type %s", devices.BaseDeviceFilesystem)
-	}
-	return nil
-}
-
-func (devices *DeviceSet) setupBaseImage() error {
-	oldInfo, _ := devices.lookupDeviceWithLock("")
-
-	// base image already exists. If it is initialized properly, do UUID
-	// verification and return. Otherwise remove image and set it up
-	// fresh.
-
-	if oldInfo != nil {
-		if oldInfo.Initialized && !oldInfo.Deleted {
-			if err := devices.setupVerifyBaseImageUUIDFS(oldInfo); err != nil {
-				return err
-			}
-
-			if err := devices.checkGrowBaseDeviceFS(oldInfo); err != nil {
-				return err
-			}
-
-			return nil
-		}
-
-		logrus.Debug("devmapper: Removing uninitialized base image")
-		// If previous base device is in deferred delete state,
-		// that needs to be cleaned up first. So don't try
-		// deferred deletion.
-		if err := devices.DeleteDevice("", true); err != nil {
-			return err
-		}
-	}
-
-	// If we are setting up base image for the first time, make sure
-	// thin pool is empty.
-	if devices.thinPoolDevice != "" && oldInfo == nil {
-		if err := devices.checkThinPool(); err != nil {
-			return err
-		}
-	}
-
-	// Create new base image device
-	if err := devices.createBaseImage(); err != nil {
-		return err
-	}
-
-	return nil
-}
-
-func setCloseOnExec(name string) {
-	fileInfos, _ := ioutil.ReadDir("/proc/self/fd")
-	for _, i := range fileInfos {
-		link, _ := os.Readlink(filepath.Join("/proc/self/fd", i.Name()))
-		if link == name {
-			fd, err := strconv.Atoi(i.Name())
-			if err == nil {
-				unix.CloseOnExec(fd)
-			}
-		}
-	}
-}
-
-func major(device uint64) uint64 {
-	return (device >> 8) & 0xfff
-}
-
-func minor(device uint64) uint64 {
-	return (device & 0xff) | ((device >> 12) & 0xfff00)
-}
-
-// ResizePool increases the size of the pool.
-func (devices *DeviceSet) ResizePool(size int64) error {
-	dirname := devices.loopbackDir()
-	datafilename := path.Join(dirname, "data")
-	if len(devices.dataDevice) > 0 {
-		datafilename = devices.dataDevice
-	}
-	metadatafilename := path.Join(dirname, "metadata")
-	if len(devices.metadataDevice) > 0 {
-		metadatafilename = devices.metadataDevice
-	}
-
-	datafile, err := os.OpenFile(datafilename, os.O_RDWR, 0)
-	if datafile == nil {
-		return err
-	}
-	defer datafile.Close()
-
-	fi, err := datafile.Stat()
-	if fi == nil {
-		return err
-	}
-
-	if fi.Size() > size {
-		return fmt.Errorf("devmapper: Can't shrink file")
-	}
-
-	dataloopback := loopback.FindLoopDeviceFor(datafile)
-	if dataloopback == nil {
-		return fmt.Errorf("devmapper: Unable to find loopback mount for: %s", datafilename)
-	}
-	defer dataloopback.Close()
-
-	metadatafile, err := os.OpenFile(metadatafilename, os.O_RDWR, 0)
-	if metadatafile == nil {
-		return err
-	}
-	defer metadatafile.Close()
-
-	metadataloopback := loopback.FindLoopDeviceFor(metadatafile)
-	if metadataloopback == nil {
-		return fmt.Errorf("devmapper: Unable to find loopback mount for: %s", metadatafilename)
-	}
-	defer metadataloopback.Close()
-
-	// Grow loopback file
-	if err := datafile.Truncate(size); err != nil {
-		return fmt.Errorf("devmapper: Unable to grow loopback file: %s", err)
-	}
-
-	// Reload size for loopback device
-	if err := loopback.SetCapacity(dataloopback); err != nil {
-		return fmt.Errorf("Unable to update loopback capacity: %s", err)
-	}
-
-	// Suspend the pool
-	if err := devicemapper.SuspendDevice(devices.getPoolName()); err != nil {
-		return fmt.Errorf("devmapper: Unable to suspend pool: %s", err)
-	}
-
-	// Reload with the new block sizes
-	if err := devicemapper.ReloadPool(devices.getPoolName(), dataloopback, metadataloopback, devices.thinpBlockSize); err != nil {
-		return fmt.Errorf("devmapper: Unable to reload pool: %s", err)
-	}
-
-	// Resume the pool
-	if err := devicemapper.ResumeDevice(devices.getPoolName()); err != nil {
-		return fmt.Errorf("devmapper: Unable to resume pool: %s", err)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) loadTransactionMetaData() error {
-	jsonData, err := ioutil.ReadFile(devices.transactionMetaFile())
-	if err != nil {
-		// There is no active transaction. This will be the case
-		// during upgrade.
-		if os.IsNotExist(err) {
-			devices.OpenTransactionID = devices.TransactionID
-			return nil
-		}
-		return err
-	}
-
-	json.Unmarshal(jsonData, &devices.transaction)
-	return nil
-}
-
-func (devices *DeviceSet) saveTransactionMetaData() error {
-	jsonData, err := json.Marshal(&devices.transaction)
-	if err != nil {
-		return fmt.Errorf("devmapper: Error encoding metadata to json: %s", err)
-	}
-
-	return devices.writeMetaFile(jsonData, devices.transactionMetaFile())
-}
-
-func (devices *DeviceSet) removeTransactionMetaData() error {
-	return os.RemoveAll(devices.transactionMetaFile())
-}
-
-func (devices *DeviceSet) rollbackTransaction() error {
-	logrus.Debugf("devmapper: Rolling back open transaction: TransactionID=%d hash=%s device_id=%d", devices.OpenTransactionID, devices.DeviceIDHash, devices.DeviceID)
-
-	// A device id might have already been deleted before transaction
-	// closed. In that case this call will fail. Just leave a message
-	// in case of failure.
-	if err := devicemapper.DeleteDevice(devices.getPoolDevName(), devices.DeviceID); err != nil {
-		logrus.Errorf("devmapper: Unable to delete device: %s", err)
-	}
-
-	dinfo := &devInfo{Hash: devices.DeviceIDHash}
-	if err := devices.removeMetadata(dinfo); err != nil {
-		logrus.Errorf("devmapper: Unable to remove metadata: %s", err)
-	} else {
-		devices.markDeviceIDFree(devices.DeviceID)
-	}
-
-	if err := devices.removeTransactionMetaData(); err != nil {
-		logrus.Errorf("devmapper: Unable to remove transaction meta file %s: %s", devices.transactionMetaFile(), err)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) processPendingTransaction() error {
-	if err := devices.loadTransactionMetaData(); err != nil {
-		return err
-	}
-
-	// If there was open transaction but pool transaction ID is same
-	// as open transaction ID, nothing to roll back.
-	if devices.TransactionID == devices.OpenTransactionID {
-		return nil
-	}
-
-	// If open transaction ID is less than pool transaction ID, something
-	// is wrong. Bail out.
-	if devices.OpenTransactionID < devices.TransactionID {
-		logrus.Errorf("devmapper: Open Transaction id %d is less than pool transaction id %d", devices.OpenTransactionID, devices.TransactionID)
-		return nil
-	}
-
-	// Pool transaction ID is not same as open transaction. There is
-	// a transaction which was not completed.
-	if err := devices.rollbackTransaction(); err != nil {
-		return fmt.Errorf("devmapper: Rolling back open transaction failed: %s", err)
-	}
-
-	devices.OpenTransactionID = devices.TransactionID
-	return nil
-}
-
-func (devices *DeviceSet) loadDeviceSetMetaData() error {
-	jsonData, err := ioutil.ReadFile(devices.deviceSetMetaFile())
-	if err != nil {
-		// For backward compatibility return success if file does
-		// not exist.
-		if os.IsNotExist(err) {
-			return nil
-		}
-		return err
-	}
-
-	return json.Unmarshal(jsonData, devices)
-}
-
-func (devices *DeviceSet) saveDeviceSetMetaData() error {
-	jsonData, err := json.Marshal(devices)
-	if err != nil {
-		return fmt.Errorf("devmapper: Error encoding metadata to json: %s", err)
-	}
-
-	return devices.writeMetaFile(jsonData, devices.deviceSetMetaFile())
-}
-
-func (devices *DeviceSet) openTransaction(hash string, DeviceID int) error {
-	devices.allocateTransactionID()
-	devices.DeviceIDHash = hash
-	devices.DeviceID = DeviceID
-	if err := devices.saveTransactionMetaData(); err != nil {
-		return fmt.Errorf("devmapper: Error saving transaction metadata: %s", err)
-	}
-	return nil
-}
-
-func (devices *DeviceSet) refreshTransaction(DeviceID int) error {
-	devices.DeviceID = DeviceID
-	if err := devices.saveTransactionMetaData(); err != nil {
-		return fmt.Errorf("devmapper: Error saving transaction metadata: %s", err)
-	}
-	return nil
-}
-
-func (devices *DeviceSet) closeTransaction() error {
-	if err := devices.updatePoolTransactionID(); err != nil {
-		logrus.Debug("devmapper: Failed to close Transaction")
-		return err
-	}
-	return nil
-}
-
-func determineDriverCapabilities(version string) error {
-	// Kernel driver version >= 4.27.0 support deferred removal
-
-	logrus.Debugf("devicemapper: kernel dm driver version is %s", version)
-
-	versionSplit := strings.Split(version, ".")
-	major, err := strconv.Atoi(versionSplit[0])
-	if err != nil {
-		return errors.Wrapf(graphdriver.ErrNotSupported, "unable to parse driver major version %q as a number", versionSplit[0])
-	}
-
-	if major > 4 {
-		driverDeferredRemovalSupport = true
-		return nil
-	}
-
-	if major < 4 {
-		return nil
-	}
-
-	minor, err := strconv.Atoi(versionSplit[1])
-	if err != nil {
-		return errors.Wrapf(graphdriver.ErrNotSupported, "unable to parse driver minor version %q as a number", versionSplit[1])
-	}
-
-	/*
-	 * If major is 4 and minor is 27, then there is no need to
-	 * check for patch level as it can not be less than 0.
-	 */
-	if minor >= 27 {
-		driverDeferredRemovalSupport = true
-		return nil
-	}
-
-	return nil
-}
-
-// Determine the major and minor number of loopback device
-func getDeviceMajorMinor(file *os.File) (uint64, uint64, error) {
-	var stat unix.Stat_t
-	err := unix.Stat(file.Name(), &stat)
-	if err != nil {
-		return 0, 0, err
-	}
-
-	dev := stat.Rdev
-	majorNum := major(dev)
-	minorNum := minor(dev)
-
-	logrus.Debugf("devmapper: Major:Minor for device: %s is:%v:%v", file.Name(), majorNum, minorNum)
-	return majorNum, minorNum, nil
-}
-
-// Given a file which is backing file of a loop back device, find the
-// loopback device name and its major/minor number.
-func getLoopFileDeviceMajMin(filename string) (string, uint64, uint64, error) {
-	file, err := os.Open(filename)
-	if err != nil {
-		logrus.Debugf("devmapper: Failed to open file %s", filename)
-		return "", 0, 0, err
-	}
-
-	defer file.Close()
-	loopbackDevice := loopback.FindLoopDeviceFor(file)
-	if loopbackDevice == nil {
-		return "", 0, 0, fmt.Errorf("devmapper: Unable to find loopback mount for: %s", filename)
-	}
-	defer loopbackDevice.Close()
-
-	Major, Minor, err := getDeviceMajorMinor(loopbackDevice)
-	if err != nil {
-		return "", 0, 0, err
-	}
-	return loopbackDevice.Name(), Major, Minor, nil
-}
-
-// Get the major/minor numbers of thin pool data and metadata devices
-func (devices *DeviceSet) getThinPoolDataMetaMajMin() (uint64, uint64, uint64, uint64, error) {
-	var params, poolDataMajMin, poolMetadataMajMin string
-
-	_, _, _, params, err := devicemapper.GetTable(devices.getPoolName())
-	if err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	if _, err = fmt.Sscanf(params, "%s %s", &poolMetadataMajMin, &poolDataMajMin); err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	logrus.Debugf("devmapper: poolDataMajMin=%s poolMetaMajMin=%s\n", poolDataMajMin, poolMetadataMajMin)
-
-	poolDataMajMinorSplit := strings.Split(poolDataMajMin, ":")
-	poolDataMajor, err := strconv.ParseUint(poolDataMajMinorSplit[0], 10, 32)
-	if err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	poolDataMinor, err := strconv.ParseUint(poolDataMajMinorSplit[1], 10, 32)
-	if err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	poolMetadataMajMinorSplit := strings.Split(poolMetadataMajMin, ":")
-	poolMetadataMajor, err := strconv.ParseUint(poolMetadataMajMinorSplit[0], 10, 32)
-	if err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	poolMetadataMinor, err := strconv.ParseUint(poolMetadataMajMinorSplit[1], 10, 32)
-	if err != nil {
-		return 0, 0, 0, 0, err
-	}
-
-	return poolDataMajor, poolDataMinor, poolMetadataMajor, poolMetadataMinor, nil
-}
-
-func (devices *DeviceSet) loadThinPoolLoopBackInfo() error {
-	poolDataMajor, poolDataMinor, poolMetadataMajor, poolMetadataMinor, err := devices.getThinPoolDataMetaMajMin()
-	if err != nil {
-		return err
-	}
-
-	dirname := devices.loopbackDir()
-
-	// data device has not been passed in. So there should be a data file
-	// which is being mounted as loop device.
-	if devices.dataDevice == "" {
-		datafilename := path.Join(dirname, "data")
-		dataLoopDevice, dataMajor, dataMinor, err := getLoopFileDeviceMajMin(datafilename)
-		if err != nil {
-			return err
-		}
-
-		// Compare the two
-		if poolDataMajor == dataMajor && poolDataMinor == dataMinor {
-			devices.dataDevice = dataLoopDevice
-			devices.dataLoopFile = datafilename
-		}
-
-	}
-
-	// metadata device has not been passed in. So there should be a
-	// metadata file which is being mounted as loop device.
-	if devices.metadataDevice == "" {
-		metadatafilename := path.Join(dirname, "metadata")
-		metadataLoopDevice, metadataMajor, metadataMinor, err := getLoopFileDeviceMajMin(metadatafilename)
-		if err != nil {
-			return err
-		}
-		if poolMetadataMajor == metadataMajor && poolMetadataMinor == metadataMinor {
-			devices.metadataDevice = metadataLoopDevice
-			devices.metadataLoopFile = metadatafilename
-		}
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) enableDeferredRemovalDeletion() error {
-
-	// If user asked for deferred removal then check both libdm library
-	// and kernel driver support deferred removal otherwise error out.
-	if enableDeferredRemoval {
-		if !driverDeferredRemovalSupport {
-			return fmt.Errorf("devmapper: Deferred removal can not be enabled as kernel does not support it")
-		}
-		if !devicemapper.LibraryDeferredRemovalSupport {
-			return fmt.Errorf("devmapper: Deferred removal can not be enabled as libdm does not support it")
-		}
-		logrus.Debug("devmapper: Deferred removal support enabled.")
-		devices.deferredRemove = true
-	}
-
-	if enableDeferredDeletion {
-		if !devices.deferredRemove {
-			return fmt.Errorf("devmapper: Deferred deletion can not be enabled as deferred removal is not enabled. Enable deferred removal using --storage-opt dm.use_deferred_removal=true parameter")
-		}
-		logrus.Debug("devmapper: Deferred deletion support enabled.")
-		devices.deferredDelete = true
-	}
-	return nil
-}
-
-func (devices *DeviceSet) initDevmapper(doInit bool) (retErr error) {
-	if err := devices.enableDeferredRemovalDeletion(); err != nil {
-		return err
-	}
-
-	// https://github.com/docker/docker/issues/4036
-	if supported := devicemapper.UdevSetSyncSupport(true); !supported {
-		logrus.Error("devmapper: Udev sync is not supported. This will lead to data loss and unexpected behavior. Install a more recent version of libdevmapper or select a different storage driver. For more information, see https://docs.docker.com/engine/reference/commandline/dockerd/#storage-driver-options")
-
-		if !devices.overrideUdevSyncCheck {
-			return graphdriver.ErrNotSupported
-		}
-	}
-
-	//create the root dir of the devmapper driver ownership to match this
-	//daemon's remapped root uid/gid so containers can start properly
-	uid, gid, err := idtools.GetRootUIDGID(devices.uidMaps, devices.gidMaps)
-	if err != nil {
-		return err
-	}
-	if err := idtools.MkdirAs(devices.root, 0700, uid, gid); err != nil && !os.IsExist(err) {
-		return err
-	}
-	if err := os.MkdirAll(devices.metadataDir(), 0700); err != nil && !os.IsExist(err) {
-		return err
-	}
-
-	prevSetupConfig, err := readLVMConfig(devices.root)
-	if err != nil {
-		return err
-	}
-
-	if !reflect.DeepEqual(devices.lvmSetupConfig, directLVMConfig{}) {
-		if devices.thinPoolDevice != "" {
-			return errors.New("cannot setup direct-lvm when `dm.thinpooldev` is also specified")
-		}
-
-		if !reflect.DeepEqual(prevSetupConfig, devices.lvmSetupConfig) {
-			if !reflect.DeepEqual(prevSetupConfig, directLVMConfig{}) {
-				return errors.New("changing direct-lvm config is not supported")
-			}
-			logrus.WithField("storage-driver", "devicemapper").WithField("direct-lvm-config", devices.lvmSetupConfig).Debugf("Setting up direct lvm mode")
-			if err := verifyBlockDevice(devices.lvmSetupConfig.Device, lvmSetupConfigForce); err != nil {
-				return err
-			}
-			if err := setupDirectLVM(devices.lvmSetupConfig); err != nil {
-				return err
-			}
-			if err := writeLVMConfig(devices.root, devices.lvmSetupConfig); err != nil {
-				return err
-			}
-		}
-		devices.thinPoolDevice = "storage-thinpool"
-		logrus.WithField("storage-driver", "devicemapper").Debugf("Setting dm.thinpooldev to %q", devices.thinPoolDevice)
-	}
-
-	// Set the device prefix from the device id and inode of the storage root dir
-	var st unix.Stat_t
-	if err := unix.Stat(devices.root, &st); err != nil {
-		return fmt.Errorf("devmapper: Error looking up dir %s: %s", devices.root, err)
-	}
-	// "reg-" stands for "regular file".
-	// In the future we might use "dev-" for "device file", etc.
-	// container-maj,min[-inode] stands for:
-	//	- Managed by container storage
-	//	- The target of this device is at major <maj> and minor <min>
-	//	- If <inode> is defined, use that file inside the device as a loopback image. Otherwise use the device itself.
-	devices.devicePrefix = fmt.Sprintf("container-%d:%d-%d", major(st.Dev), minor(st.Dev), st.Ino)
-	logrus.Debugf("devmapper: Generated prefix: %s", devices.devicePrefix)
-
-	// Check for the existence of the thin-pool device
-	poolExists, err := devices.thinPoolExists(devices.getPoolName())
-	if err != nil {
-		return err
-	}
-
-	// It seems libdevmapper opens this without O_CLOEXEC, and go exec will not close files
-	// that are not Close-on-exec,
-	// so we add this badhack to make sure it closes itself
-	setCloseOnExec("/dev/mapper/control")
-
-	// Make sure the sparse images exist in <root>/devicemapper/data and
-	// <root>/devicemapper/metadata
-
-	createdLoopback := false
-
-	// If the pool doesn't exist, create it
-	if !poolExists && devices.thinPoolDevice == "" {
-		logrus.Debug("devmapper: Pool doesn't exist. Creating it.")
-
-		var (
-			dataFile     *os.File
-			metadataFile *os.File
-		)
-
-		fsMagic, err := graphdriver.GetFSMagic(devices.loopbackDir())
-		if err != nil {
-			return err
-		}
-		switch fsMagic {
-		case graphdriver.FsMagicAufs:
-			return errors.Errorf("devmapper: Loopback devices can not be created on AUFS filesystems")
-		}
-
-		if devices.dataDevice == "" {
-			// Make sure the sparse images exist in <root>/devicemapper/data
-
-			hasData := devices.hasImage("data")
-
-			if !doInit && !hasData {
-				return errors.New("loopback data file not found")
-			}
-
-			if !hasData {
-				createdLoopback = true
-			}
-
-			data, err := devices.ensureImage("data", devices.dataLoopbackSize)
-			if err != nil {
-				logrus.Debugf("devmapper: Error device ensureImage (data): %s", err)
-				return err
-			}
-
-			dataFile, err = loopback.AttachLoopDevice(data)
-			if err != nil {
-				return err
-			}
-			devices.dataLoopFile = data
-			devices.dataDevice = dataFile.Name()
-		} else {
-			dataFile, err = os.OpenFile(devices.dataDevice, os.O_RDWR, 0600)
-			if err != nil {
-				return err
-			}
-		}
-		defer dataFile.Close()
-
-		if devices.metadataDevice == "" {
-			// Make sure the sparse images exist in <root>/devicemapper/metadata
-
-			hasMetadata := devices.hasImage("metadata")
-
-			if !doInit && !hasMetadata {
-				return errors.New("loopback metadata file not found")
-			}
-
-			if !hasMetadata {
-				createdLoopback = true
-			}
-
-			metadata, err := devices.ensureImage("metadata", devices.metaDataLoopbackSize)
-			if err != nil {
-				logrus.Debugf("devmapper: Error device ensureImage (metadata): %s", err)
-				return err
-			}
-
-			metadataFile, err = loopback.AttachLoopDevice(metadata)
-			if err != nil {
-				return err
-			}
-			devices.metadataLoopFile = metadata
-			devices.metadataDevice = metadataFile.Name()
-		} else {
-			metadataFile, err = os.OpenFile(devices.metadataDevice, os.O_RDWR, 0600)
-			if err != nil {
-				return err
-			}
-		}
-		defer metadataFile.Close()
-
-		if err := devicemapper.CreatePool(devices.getPoolName(), dataFile, metadataFile, devices.thinpBlockSize); err != nil {
-			return err
-		}
-		defer func() {
-			if retErr != nil {
-				err = devices.deactivatePool()
-				if err != nil {
-					logrus.Warnf("devmapper: Failed to deactivatePool: %v", err)
-				}
-			}
-		}()
-	}
-
-	// Pool already exists and caller did not pass us a pool. That means
-	// we probably created pool earlier and could not remove it as some
-	// containers were still using it. Detect some of the properties of
-	// pool, like is it using loop devices.
-	if poolExists && devices.thinPoolDevice == "" {
-		if err := devices.loadThinPoolLoopBackInfo(); err != nil {
-			logrus.Debugf("devmapper: Failed to load thin pool loopback device information:%v", err)
-			return err
-		}
-	}
-
-	// If we didn't just create the data or metadata image, we need to
-	// load the transaction id and migrate old metadata
-	if !createdLoopback {
-		if err := devices.initMetaData(); err != nil {
-			return err
-		}
-	}
-
-	if devices.thinPoolDevice == "" {
-		if devices.metadataLoopFile != "" || devices.dataLoopFile != "" {
-			logrus.Warn("devmapper: Usage of loopback devices is strongly discouraged for production use. Please use `--storage-opt dm.thinpooldev`.")
-		}
-	}
-
-	// Right now this loads only NextDeviceID. If there is more metadata
-	// down the line, we might have to move it earlier.
-	if err := devices.loadDeviceSetMetaData(); err != nil {
-		return err
-	}
-
-	// Setup the base image
-	if doInit {
-		if err := devices.setupBaseImage(); err != nil {
-			logrus.Debugf("devmapper: Error device setupBaseImage: %s", err)
-			return err
-		}
-	}
-
-	return nil
-}
-
-// AddDevice adds a device and registers in the hash.
-func (devices *DeviceSet) AddDevice(hash, baseHash string, storageOpt map[string]string) error {
-	logrus.Debugf("devmapper: AddDevice START(hash=%s basehash=%s)", hash, baseHash)
-	defer logrus.Debugf("devmapper: AddDevice END(hash=%s basehash=%s)", hash, baseHash)
-
-	// If a deleted device exists, return error.
-	baseInfo, err := devices.lookupDeviceWithLock(baseHash)
-	if err != nil {
-		return err
-	}
-
-	if baseInfo.Deleted {
-		return fmt.Errorf("devmapper: Base device %v has been marked for deferred deletion", baseInfo.Hash)
-	}
-
-	baseInfo.lock.Lock()
-	defer baseInfo.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	// Also include deleted devices in case hash of new device is
-	// same as one of the deleted devices.
-	if info, _ := devices.lookupDevice(hash); info != nil {
-		return fmt.Errorf("devmapper: device %s already exists. Deleted=%v", hash, info.Deleted)
-	}
-
-	size, err := devices.parseStorageOpt(storageOpt)
-	if err != nil {
-		return err
-	}
-
-	if size == 0 {
-		size = baseInfo.Size
-	}
-
-	if size < baseInfo.Size {
-		return fmt.Errorf("devmapper: Container size cannot be smaller than %s", units.HumanSize(float64(baseInfo.Size)))
-	}
-
-	if err := devices.takeSnapshot(hash, baseInfo, size); err != nil {
-		return err
-	}
-
-	// Grow the container rootfs.
-	if size > baseInfo.Size {
-		info, err := devices.lookupDevice(hash)
-		if err != nil {
-			return err
-		}
-
-		if err := devices.growFS(info); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) parseStorageOpt(storageOpt map[string]string) (uint64, error) {
-
-	// Read size to change the block device size per container.
-	for key, val := range storageOpt {
-		key := strings.ToLower(key)
-		switch key {
-		case "size":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return 0, err
-			}
-			return uint64(size), nil
-		default:
-			return 0, fmt.Errorf("Unknown option %s", key)
-		}
-	}
-
-	return 0, nil
-}
-
-func (devices *DeviceSet) markForDeferredDeletion(info *devInfo) error {
-	// If device is already in deleted state, there is nothing to be done.
-	if info.Deleted {
-		return nil
-	}
-
-	logrus.Debugf("devmapper: Marking device %s for deferred deletion.", info.Hash)
-
-	info.Deleted = true
-
-	// save device metadata to reflect deleted state.
-	if err := devices.saveMetadata(info); err != nil {
-		info.Deleted = false
-		return err
-	}
-
-	devices.nrDeletedDevices++
-	return nil
-}
-
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) deleteTransaction(info *devInfo, syncDelete bool) error {
-	if err := devices.openTransaction(info.Hash, info.DeviceID); err != nil {
-		logrus.Debugf("devmapper: Error opening transaction hash = %s deviceId = %d", "", info.DeviceID)
-		return err
-	}
-
-	defer devices.closeTransaction()
-
-	err := devicemapper.DeleteDevice(devices.getPoolDevName(), info.DeviceID)
-	if err != nil {
-		// If syncDelete is true, we want to return error. If deferred
-		// deletion is not enabled, we return an error. If error is
-		// something other then EBUSY, return an error.
-		if syncDelete || !devices.deferredDelete || errors.Cause(err) != devicemapper.ErrBusy {
-			logrus.Debugf("devmapper: Error deleting device: %s", err)
-			return err
-		}
-	}
-
-	if err == nil {
-		if err := devices.unregisterDevice(info.Hash); err != nil {
-			return err
-		}
-		// If device was already in deferred delete state that means
-		// deletion was being tried again later. Reduce the deleted
-		// device count.
-		if info.Deleted {
-			devices.nrDeletedDevices--
-		}
-		devices.markDeviceIDFree(info.DeviceID)
-	} else {
-		if err := devices.markForDeferredDeletion(info); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-// Issue discard only if device open count is zero.
-func (devices *DeviceSet) issueDiscard(info *devInfo) error {
-	logrus.Debugf("devmapper: issueDiscard START(device: %s).", info.Hash)
-	defer logrus.Debugf("devmapper: issueDiscard END(device: %s).", info.Hash)
-	// This is a workaround for the kernel not discarding block so
-	// on the thin pool when we remove a thinp device, so we do it
-	// manually.
-	// Even if device is deferred deleted, activate it and issue
-	// discards.
-	if err := devices.activateDeviceIfNeeded(info, true); err != nil {
-		return err
-	}
-
-	devinfo, err := devicemapper.GetInfo(info.Name())
-	if err != nil {
-		return err
-	}
-
-	if devinfo.OpenCount != 0 {
-		logrus.Debugf("devmapper: Device: %s is in use. OpenCount=%d. Not issuing discards.", info.Hash, devinfo.OpenCount)
-		return nil
-	}
-
-	if err := devicemapper.BlockDeviceDiscard(info.DevName()); err != nil {
-		logrus.Debugf("devmapper: Error discarding block on device: %s (ignoring)", err)
-	}
-	return nil
-}
-
-// Should be called with devices.Lock() held.
-func (devices *DeviceSet) deleteDevice(info *devInfo, syncDelete bool) error {
-	if devices.doBlkDiscard {
-		devices.issueDiscard(info)
-	}
-
-	// Try to deactivate device in case it is active.
-	// If deferred removal is enabled and deferred deletion is disabled
-	// then make sure device is removed synchronously. There have been
-	// some cases of device being busy for short duration and we would
-	// rather busy wait for device removal to take care of these cases.
-	deferredRemove := devices.deferredRemove
-	if !devices.deferredDelete {
-		deferredRemove = false
-	}
-
-	if err := devices.deactivateDeviceMode(info, deferredRemove); err != nil {
-		logrus.Debugf("devmapper: Error deactivating device: %s", err)
-		return err
-	}
-
-	if err := devices.deleteTransaction(info, syncDelete); err != nil {
-		return err
-	}
-
-	return nil
-}
-
-// DeleteDevice will return success if device has been marked for deferred
-// removal. If one wants to override that and want DeleteDevice() to fail if
-// device was busy and could not be deleted, set syncDelete=true.
-func (devices *DeviceSet) DeleteDevice(hash string, syncDelete bool) error {
-	logrus.Debugf("devmapper: DeleteDevice START(hash=%v syncDelete=%v)", hash, syncDelete)
-	defer logrus.Debugf("devmapper: DeleteDevice END(hash=%v syncDelete=%v)", hash, syncDelete)
-	info, err := devices.lookupDeviceWithLock(hash)
-	if err != nil {
-		return err
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	return devices.deleteDevice(info, syncDelete)
-}
-
-func (devices *DeviceSet) deactivatePool() error {
-	logrus.Debug("devmapper: deactivatePool() START")
-	defer logrus.Debug("devmapper: deactivatePool() END")
-	devname := devices.getPoolDevName()
-
-	devinfo, err := devicemapper.GetInfo(devname)
-	if err != nil {
-		return err
-	}
-
-	if devinfo.Exists == 0 {
-		return nil
-	}
-	if err := devicemapper.RemoveDevice(devname); err != nil {
-		return err
-	}
-
-	if d, err := devicemapper.GetDeps(devname); err == nil {
-		logrus.Warnf("devmapper: device %s still has %d active dependents", devname, d.Count)
-	}
-
-	return nil
-}
-
-func (devices *DeviceSet) deactivateDevice(info *devInfo) error {
-	return devices.deactivateDeviceMode(info, devices.deferredRemove)
-}
-
-func (devices *DeviceSet) deactivateDeviceMode(info *devInfo, deferredRemove bool) error {
-	var err error
-	logrus.Debugf("devmapper: deactivateDevice START(%s)", info.Hash)
-	defer logrus.Debugf("devmapper: deactivateDevice END(%s)", info.Hash)
-
-	devinfo, err := devicemapper.GetInfo(info.Name())
-	if err != nil {
-		return err
-	}
-
-	if devinfo.Exists == 0 {
-		return nil
-	}
-
-	if deferredRemove {
-		err = devicemapper.RemoveDeviceDeferred(info.Name())
-	} else {
-		err = devices.removeDevice(info.Name())
-	}
-
-	// This function's semantics is such that it does not return an
-	// error if device does not exist. So if device went away by
-	// the time we actually tried to remove it, do not return error.
-	if errors.Cause(err) != devicemapper.ErrEnxio {
-		return err
-	}
-	return nil
-}
-
-// Issues the underlying dm remove operation.
-func (devices *DeviceSet) removeDevice(devname string) error {
-	var err error
-
-	logrus.Debugf("devmapper: removeDevice START(%s)", devname)
-	defer logrus.Debugf("devmapper: removeDevice END(%s)", devname)
-
-	for i := 0; i < 200; i++ {
-		err = devicemapper.RemoveDevice(devname)
-		if err == nil {
-			break
-		}
-		if errors.Cause(err) != devicemapper.ErrBusy {
-			return err
-		}
-
-		// If we see EBUSY it may be a transient error,
-		// sleep a bit a retry a few times.
-		devices.Unlock()
-		time.Sleep(100 * time.Millisecond)
-		devices.Lock()
-	}
-
-	return err
-}
-
-func (devices *DeviceSet) cancelDeferredRemovalIfNeeded(info *devInfo) error {
-	if !devices.deferredRemove {
-		return nil
-	}
-
-	logrus.Debugf("devmapper: cancelDeferredRemovalIfNeeded START(%s)", info.Name())
-	defer logrus.Debugf("devmapper: cancelDeferredRemovalIfNeeded END(%s)", info.Name())
-
-	devinfo, err := devicemapper.GetInfoWithDeferred(info.Name())
-	if err != nil {
-		return err
-	}
-
-	if devinfo != nil && devinfo.DeferredRemove == 0 {
-		return nil
-	}
-
-	// Cancel deferred remove
-	if err := devices.cancelDeferredRemoval(info); err != nil {
-		// If Error is ErrEnxio. Device is probably already gone. Continue.
-		if errors.Cause(err) != devicemapper.ErrBusy {
-			return err
-		}
-	}
-	return nil
-}
-
-func (devices *DeviceSet) cancelDeferredRemoval(info *devInfo) error {
-	logrus.Debugf("devmapper: cancelDeferredRemoval START(%s)", info.Name())
-	defer logrus.Debugf("devmapper: cancelDeferredRemoval END(%s)", info.Name())
-
-	var err error
-
-	// Cancel deferred remove
-	for i := 0; i < 100; i++ {
-		err = devicemapper.CancelDeferredRemove(info.Name())
-		if err != nil {
-			if errors.Cause(err) != devicemapper.ErrBusy {
-				// If we see EBUSY it may be a transient error,
-				// sleep a bit a retry a few times.
-				devices.Unlock()
-				time.Sleep(100 * time.Millisecond)
-				devices.Lock()
-				continue
-			}
-		}
-		break
-	}
-	return err
-}
-
-// Shutdown shuts down the device by unmounting the root.
-func (devices *DeviceSet) Shutdown(home string) error {
-	logrus.Debugf("devmapper: [deviceset %s] Shutdown()", devices.devicePrefix)
-	logrus.Debugf("devmapper: Shutting down DeviceSet: %s", devices.root)
-	defer logrus.Debugf("devmapper: [deviceset %s] Shutdown() END", devices.devicePrefix)
-
-	// Stop deletion worker. This should start delivering new events to
-	// ticker channel. That means no new instance of cleanupDeletedDevice()
-	// will run after this call. If one instance is already running at
-	// the time of the call, it must be holding devices.Lock() and
-	// we will block on this lock till cleanup function exits.
-	devices.deletionWorkerTicker.Stop()
-
-	devices.Lock()
-	// Save DeviceSet Metadata first. Docker kills all threads if they
-	// don't finish in certain time. It is possible that Shutdown()
-	// routine does not finish in time as we loop trying to deactivate
-	// some devices while these are busy. In that case shutdown() routine
-	// will be killed and we will not get a chance to save deviceset
-	// metadata. Hence save this early before trying to deactivate devices.
-	devices.saveDeviceSetMetaData()
-
-	// ignore the error since it's just a best effort to not try to unmount something that's mounted
-	mounts, _ := mount.GetMounts()
-	mounted := make(map[string]bool, len(mounts))
-	for _, mnt := range mounts {
-		mounted[mnt.Mountpoint] = true
-	}
-
-	if err := filepath.Walk(path.Join(home, "mnt"), func(p string, info os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-		if !info.IsDir() {
-			return nil
-		}
-
-		if mounted[p] {
-			// We use MNT_DETACH here in case it is still busy in some running
-			// container. This means it'll go away from the global scope directly,
-			// and the device will be released when that container dies.
-			if err := unix.Unmount(p, unix.MNT_DETACH); err != nil {
-				logrus.Debugf("devmapper: Shutdown unmounting %s, error: %s", p, err)
-			}
-		}
-
-		if devInfo, err := devices.lookupDevice(path.Base(p)); err != nil {
-			logrus.Debugf("devmapper: Shutdown lookup device %s, error: %s", path.Base(p), err)
-		} else {
-			if err := devices.deactivateDevice(devInfo); err != nil {
-				logrus.Debugf("devmapper: Shutdown deactivate %s , error: %s", devInfo.Hash, err)
-			}
-		}
-
-		return nil
-	}); err != nil && !os.IsNotExist(err) {
-		devices.Unlock()
-		return err
-	}
-
-	devices.Unlock()
-
-	info, _ := devices.lookupDeviceWithLock("")
-	if info != nil {
-		info.lock.Lock()
-		devices.Lock()
-		if err := devices.deactivateDevice(info); err != nil {
-			logrus.Debugf("devmapper: Shutdown deactivate base , error: %s", err)
-		}
-		devices.Unlock()
-		info.lock.Unlock()
-	}
-
-	devices.Lock()
-	if devices.thinPoolDevice == "" {
-		if err := devices.deactivatePool(); err != nil {
-			logrus.Debugf("devmapper: Shutdown deactivate pool , error: %s", err)
-		}
-	}
-	devices.Unlock()
-
-	return nil
-}
-
-// Recent XFS changes allow changing behavior of filesystem in case of errors.
-// When thin pool gets full and XFS gets ENOSPC error, currently it tries
-// IO infinitely and sometimes it can block the container process
-// and process can't be killWith 0 value, XFS will not retry upon error
-// and instead will shutdown filesystem.
-
-func (devices *DeviceSet) xfsSetNospaceRetries(info *devInfo) error {
-	dmDevicePath, err := os.Readlink(info.DevName())
-	if err != nil {
-		return fmt.Errorf("devmapper: readlink failed for device %v:%v", info.DevName(), err)
-	}
-
-	dmDeviceName := path.Base(dmDevicePath)
-	filePath := "/sys/fs/xfs/" + dmDeviceName + "/error/metadata/ENOSPC/max_retries"
-	maxRetriesFile, err := os.OpenFile(filePath, os.O_WRONLY, 0)
-	if err != nil {
-		return fmt.Errorf("devmapper: user specified daemon option dm.xfs_nospace_max_retries but it does not seem to be supported on this system :%v", err)
-	}
-	defer maxRetriesFile.Close()
-
-	// Set max retries to 0
-	_, err = maxRetriesFile.WriteString(devices.xfsNospaceRetries)
-	if err != nil {
-		return fmt.Errorf("devmapper: Failed to write string %v to file %v:%v", devices.xfsNospaceRetries, filePath, err)
-	}
-	return nil
-}
-
-// MountDevice mounts the device if not already mounted.
-func (devices *DeviceSet) MountDevice(hash, path, mountLabel string) error {
-	info, err := devices.lookupDeviceWithLock(hash)
-	if err != nil {
-		return err
-	}
-
-	if info.Deleted {
-		return fmt.Errorf("devmapper: Can't mount device %v as it has been marked for deferred deletion", info.Hash)
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	if err := devices.activateDeviceIfNeeded(info, false); err != nil {
-		return fmt.Errorf("devmapper: Error activating devmapper device for '%s': %s", hash, err)
-	}
-
-	fstype, err := ProbeFsType(info.DevName())
-	if err != nil {
-		return err
-	}
-
-	options := ""
-
-	if fstype == "xfs" {
-		// XFS needs nouuid or it can't mount filesystems with the same fs
-		options = joinMountOptions(options, "nouuid")
-	}
-
-	options = joinMountOptions(options, devices.mountOptions)
-	options = joinMountOptions(options, label.FormatMountLabel("", mountLabel))
-
-	if err := mount.Mount(info.DevName(), path, fstype, options); err != nil {
-		return fmt.Errorf("devmapper: Error mounting '%s' on '%s': %s\n%v", info.DevName(), path, err, string(dmesg.Dmesg(256)))
-	}
-
-	if fstype == "xfs" && devices.xfsNospaceRetries != "" {
-		if err := devices.xfsSetNospaceRetries(info); err != nil {
-			unix.Unmount(path, unix.MNT_DETACH)
-			devices.deactivateDevice(info)
-			return err
-		}
-	}
-
-	return nil
-}
-
-// UnmountDevice unmounts the device and removes it from hash.
-func (devices *DeviceSet) UnmountDevice(hash, mountPath string) error {
-	logrus.Debugf("devmapper: UnmountDevice START(hash=%s)", hash)
-	defer logrus.Debugf("devmapper: UnmountDevice END(hash=%s)", hash)
-
-	info, err := devices.lookupDeviceWithLock(hash)
-	if err != nil {
-		return err
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	logrus.Debugf("devmapper: Unmount(%s)", mountPath)
-	if err := unix.Unmount(mountPath, unix.MNT_DETACH); err != nil {
-		return err
-	}
-	logrus.Debug("devmapper: Unmount done")
-
-	return devices.deactivateDevice(info)
-}
-
-// HasDevice returns true if the device metadata exists.
-func (devices *DeviceSet) HasDevice(hash string) bool {
-	info, _ := devices.lookupDeviceWithLock(hash)
-	return info != nil
-}
-
-// List returns a list of device ids.
-func (devices *DeviceSet) List() []string {
-	devices.Lock()
-	defer devices.Unlock()
-
-	ids := make([]string, len(devices.Devices))
-	i := 0
-	for k := range devices.Devices {
-		ids[i] = k
-		i++
-	}
-	return ids
-}
-
-func (devices *DeviceSet) deviceStatus(devName string) (sizeInSectors, mappedSectors, highestMappedSector uint64, err error) {
-	var params string
-	_, sizeInSectors, _, params, err = devicemapper.GetStatus(devName)
-	if err != nil {
-		return
-	}
-	if _, err = fmt.Sscanf(params, "%d %d", &mappedSectors, &highestMappedSector); err == nil {
-		return
-	}
-	return
-}
-
-// GetDeviceStatus provides size, mapped sectors
-func (devices *DeviceSet) GetDeviceStatus(hash string) (*DevStatus, error) {
-	info, err := devices.lookupDeviceWithLock(hash)
-	if err != nil {
-		return nil, err
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	devices.Lock()
-	defer devices.Unlock()
-
-	status := &DevStatus{
-		DeviceID:      info.DeviceID,
-		Size:          info.Size,
-		TransactionID: info.TransactionID,
-	}
-
-	if err := devices.activateDeviceIfNeeded(info, false); err != nil {
-		return nil, fmt.Errorf("devmapper: Error activating devmapper device for '%s': %s", hash, err)
-	}
-
-	sizeInSectors, mappedSectors, highestMappedSector, err := devices.deviceStatus(info.DevName())
-
-	if err != nil {
-		return nil, err
-	}
-
-	status.SizeInSectors = sizeInSectors
-	status.MappedSectors = mappedSectors
-	status.HighestMappedSector = highestMappedSector
-
-	return status, nil
-}
-
-func (devices *DeviceSet) poolStatus() (totalSizeInSectors, transactionID, dataUsed, dataTotal, metadataUsed, metadataTotal uint64, err error) {
-	var params string
-	if _, totalSizeInSectors, _, params, err = devicemapper.GetStatus(devices.getPoolName()); err == nil {
-		_, err = fmt.Sscanf(params, "%d %d/%d %d/%d", &transactionID, &metadataUsed, &metadataTotal, &dataUsed, &dataTotal)
-	}
-	return
-}
-
-// DataDevicePath returns the path to the data storage for this deviceset,
-// regardless of loopback or block device
-func (devices *DeviceSet) DataDevicePath() string {
-	return devices.dataDevice
-}
-
-// MetadataDevicePath returns the path to the metadata storage for this deviceset,
-// regardless of loopback or block device
-func (devices *DeviceSet) MetadataDevicePath() string {
-	return devices.metadataDevice
-}
-
-func (devices *DeviceSet) getUnderlyingAvailableSpace(loopFile string) (uint64, error) {
-	buf := new(unix.Statfs_t)
-	if err := unix.Statfs(loopFile, buf); err != nil {
-		logrus.Warnf("devmapper: Couldn't stat loopfile filesystem %v: %v", loopFile, err)
-		return 0, err
-	}
-	return buf.Bfree * uint64(buf.Bsize), nil
-}
-
-func (devices *DeviceSet) isRealFile(loopFile string) (bool, error) {
-	if loopFile != "" {
-		fi, err := os.Stat(loopFile)
-		if err != nil {
-			logrus.Warnf("devmapper: Couldn't stat loopfile %v: %v", loopFile, err)
-			return false, err
-		}
-		return fi.Mode().IsRegular(), nil
-	}
-	return false, nil
-}
-
-// Status returns the current status of this deviceset
-func (devices *DeviceSet) Status() *Status {
-	devices.Lock()
-	defer devices.Unlock()
-
-	status := &Status{}
-
-	status.PoolName = devices.getPoolName()
-	status.DataFile = devices.DataDevicePath()
-	status.DataLoopback = devices.dataLoopFile
-	status.MetadataFile = devices.MetadataDevicePath()
-	status.MetadataLoopback = devices.metadataLoopFile
-	status.UdevSyncSupported = devicemapper.UdevSyncSupported()
-	status.DeferredRemoveEnabled = devices.deferredRemove
-	status.DeferredDeleteEnabled = devices.deferredDelete
-	status.DeferredDeletedDeviceCount = devices.nrDeletedDevices
-	status.BaseDeviceSize = devices.getBaseDeviceSize()
-	status.BaseDeviceFS = devices.getBaseDeviceFS()
-
-	totalSizeInSectors, _, dataUsed, dataTotal, metadataUsed, metadataTotal, err := devices.poolStatus()
-	if err == nil {
-		// Convert from blocks to bytes
-		blockSizeInSectors := totalSizeInSectors / dataTotal
-
-		status.Data.Used = dataUsed * blockSizeInSectors * 512
-		status.Data.Total = dataTotal * blockSizeInSectors * 512
-		status.Data.Available = status.Data.Total - status.Data.Used
-
-		// metadata blocks are always 4k
-		status.Metadata.Used = metadataUsed * 4096
-		status.Metadata.Total = metadataTotal * 4096
-		status.Metadata.Available = status.Metadata.Total - status.Metadata.Used
-
-		status.SectorSize = blockSizeInSectors * 512
-
-		if check, _ := devices.isRealFile(devices.dataLoopFile); check {
-			actualSpace, err := devices.getUnderlyingAvailableSpace(devices.dataLoopFile)
-			if err == nil && actualSpace < status.Data.Available {
-				status.Data.Available = actualSpace
-			}
-		}
-
-		if check, _ := devices.isRealFile(devices.metadataLoopFile); check {
-			actualSpace, err := devices.getUnderlyingAvailableSpace(devices.metadataLoopFile)
-			if err == nil && actualSpace < status.Metadata.Available {
-				status.Metadata.Available = actualSpace
-			}
-		}
-
-		minFreeData := (dataTotal * uint64(devices.minFreeSpacePercent)) / 100
-		status.MinFreeSpace = minFreeData * blockSizeInSectors * 512
-	}
-
-	return status
-}
-
-// Status returns the current status of this deviceset
-func (devices *DeviceSet) exportDeviceMetadata(hash string) (*deviceMetadata, error) {
-	info, err := devices.lookupDeviceWithLock(hash)
-	if err != nil {
-		return nil, err
-	}
-
-	info.lock.Lock()
-	defer info.lock.Unlock()
-
-	metadata := &deviceMetadata{info.DeviceID, info.Size, info.Name()}
-	return metadata, nil
-}
-
-// NewDeviceSet creates the device set based on the options provided.
-func NewDeviceSet(root string, doInit bool, options []string, uidMaps, gidMaps []idtools.IDMap) (*DeviceSet, error) {
-	devicemapper.SetDevDir("/dev")
-
-	devices := &DeviceSet{
-		root:                  root,
-		metaData:              metaData{Devices: make(map[string]*devInfo)},
-		dataLoopbackSize:      defaultDataLoopbackSize,
-		metaDataLoopbackSize:  defaultMetaDataLoopbackSize,
-		baseFsSize:            defaultBaseFsSize,
-		overrideUdevSyncCheck: defaultUdevSyncOverride,
-		doBlkDiscard:          true,
-		thinpBlockSize:        defaultThinpBlockSize,
-		deviceIDMap:           make([]byte, deviceIDMapSz),
-		deletionWorkerTicker:  time.NewTicker(time.Second * 30),
-		uidMaps:               uidMaps,
-		gidMaps:               gidMaps,
-		minFreeSpacePercent:   defaultMinFreeSpacePercent,
-	}
-
-	version, err := devicemapper.GetDriverVersion()
-	if err != nil {
-		// Can't even get driver version, assume not supported
-		return nil, graphdriver.ErrNotSupported
-	}
-
-	if err := determineDriverCapabilities(version); err != nil {
-		return nil, graphdriver.ErrNotSupported
-	}
-
-	if driverDeferredRemovalSupport && devicemapper.LibraryDeferredRemovalSupport {
-		// enable deferred stuff by default
-		enableDeferredDeletion = true
-		enableDeferredRemoval = true
-	}
-
-	foundBlkDiscard := false
-	var lvmSetupConfig directLVMConfig
-	for _, option := range options {
-		key, val, err := parsers.ParseKeyValueOpt(option)
-		if err != nil {
-			return nil, err
-		}
-		key = strings.ToLower(key)
-		switch key {
-		case "dm.basesize":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			userBaseSize = true
-			devices.baseFsSize = uint64(size)
-		case "dm.loopdatasize":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			devices.dataLoopbackSize = size
-		case "dm.loopmetadatasize":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			devices.metaDataLoopbackSize = size
-		case "dm.fs":
-			if val != "ext4" && val != "xfs" {
-				return nil, fmt.Errorf("devmapper: Unsupported filesystem %s", val)
-			}
-			devices.filesystem = val
-		case "dm.mkfsarg":
-			devices.mkfsArgs = append(devices.mkfsArgs, val)
-		case "dm.mountopt":
-			devices.mountOptions = joinMountOptions(devices.mountOptions, val)
-		case "dm.metadatadev":
-			devices.metadataDevice = val
-		case "dm.datadev":
-			devices.dataDevice = val
-		case "dm.thinpooldev":
-			devices.thinPoolDevice = strings.TrimPrefix(val, "/dev/mapper/")
-		case "dm.blkdiscard":
-			foundBlkDiscard = true
-			devices.doBlkDiscard, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-		case "dm.blocksize":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			// convert to 512b sectors
-			devices.thinpBlockSize = uint32(size) >> 9
-		case "dm.override_udev_sync_check":
-			devices.overrideUdevSyncCheck, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-
-		case "dm.use_deferred_removal":
-			enableDeferredRemoval, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-
-		case "dm.use_deferred_deletion":
-			enableDeferredDeletion, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-
-		case "dm.min_free_space":
-			if !strings.HasSuffix(val, "%") {
-				return nil, fmt.Errorf("devmapper: Option dm.min_free_space requires %% suffix")
-			}
-
-			valstring := strings.TrimSuffix(val, "%")
-			minFreeSpacePercent, err := strconv.ParseUint(valstring, 10, 32)
-			if err != nil {
-				return nil, err
-			}
-
-			if minFreeSpacePercent >= 100 {
-				return nil, fmt.Errorf("devmapper: Invalid value %v for option dm.min_free_space", val)
-			}
-
-			devices.minFreeSpacePercent = uint32(minFreeSpacePercent)
-		case "dm.xfs_nospace_max_retries":
-			_, err := strconv.ParseUint(val, 10, 64)
-			if err != nil {
-				return nil, err
-			}
-			devices.xfsNospaceRetries = val
-		case "dm.directlvm_device":
-			lvmSetupConfig.Device = val
-		case "dm.directlvm_device_force":
-			lvmSetupConfigForce, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-		case "dm.thinp_percent":
-			per, err := strconv.ParseUint(strings.TrimSuffix(val, "%"), 10, 32)
-			if err != nil {
-				return nil, errors.Wrapf(err, "could not parse `dm.thinp_percent=%s`", val)
-			}
-			if per >= 100 {
-				return nil, errors.New("dm.thinp_percent must be greater than 0 and less than 100")
-			}
-			lvmSetupConfig.ThinpPercent = per
-		case "dm.thinp_metapercent":
-			per, err := strconv.ParseUint(strings.TrimSuffix(val, "%"), 10, 32)
-			if err != nil {
-				return nil, errors.Wrapf(err, "could not parse `dm.thinp_metapercent=%s`", val)
-			}
-			if per >= 100 {
-				return nil, errors.New("dm.thinp_metapercent must be greater than 0 and less than 100")
-			}
-			lvmSetupConfig.ThinpMetaPercent = per
-		case "dm.thinp_autoextend_percent":
-			per, err := strconv.ParseUint(strings.TrimSuffix(val, "%"), 10, 32)
-			if err != nil {
-				return nil, errors.Wrapf(err, "could not parse `dm.thinp_autoextend_percent=%s`", val)
-			}
-			if per > 100 {
-				return nil, errors.New("dm.thinp_autoextend_percent must be greater than 0 and less than 100")
-			}
-			lvmSetupConfig.AutoExtendPercent = per
-		case "dm.thinp_autoextend_threshold":
-			per, err := strconv.ParseUint(strings.TrimSuffix(val, "%"), 10, 32)
-			if err != nil {
-				return nil, errors.Wrapf(err, "could not parse `dm.thinp_autoextend_threshold=%s`", val)
-			}
-			if per > 100 {
-				return nil, errors.New("dm.thinp_autoextend_threshold must be greater than 0 and less than 100")
-			}
-			lvmSetupConfig.AutoExtendThreshold = per
-		case "dm.libdm_log_level":
-			level, err := strconv.ParseInt(val, 10, 32)
-			if err != nil {
-				return nil, errors.Wrapf(err, "could not parse `dm.libdm_log_level=%s`", val)
-			}
-			if level < devicemapper.LogLevelFatal || level > devicemapper.LogLevelDebug {
-				return nil, errors.Errorf("dm.libdm_log_level must be in range [%d,%d]", devicemapper.LogLevelFatal, devicemapper.LogLevelDebug)
-			}
-			// Register a new logging callback with the specified level.
-			devicemapper.LogInit(devicemapper.DefaultLogger{
-				Level: int(level),
-			})
-		default:
-			return nil, fmt.Errorf("devmapper: Unknown option %s", key)
-		}
-	}
-
-	if err := validateLVMConfig(lvmSetupConfig); err != nil {
-		return nil, err
-	}
-
-	devices.lvmSetupConfig = lvmSetupConfig
-
-	// By default, don't do blk discard hack on raw devices, its rarely useful and is expensive
-	if !foundBlkDiscard && (devices.dataDevice != "" || devices.thinPoolDevice != "") {
-		devices.doBlkDiscard = false
-	}
-
-	if err := devices.initDevmapper(doInit); err != nil {
-		return nil, err
-	}
-
-	return devices, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/devmapper/devmapper_doc.go b/vendor/github.com/containers/storage/drivers/devmapper/devmapper_doc.go
deleted file mode 100644
index 9ab3e4f864..0000000000
--- a/vendor/github.com/containers/storage/drivers/devmapper/devmapper_doc.go
+++ /dev/null
@@ -1,106 +0,0 @@
-package devmapper
-
-// Definition of struct dm_task and sub structures (from lvm2)
-//
-// struct dm_ioctl {
-// 	/*
-// 	 * The version number is made up of three parts:
-// 	 * major - no backward or forward compatibility,
-// 	 * minor - only backwards compatible,
-// 	 * patch - both backwards and forwards compatible.
-// 	 *
-// 	 * All clients of the ioctl interface should fill in the
-// 	 * version number of the interface that they were
-// 	 * compiled with.
-// 	 *
-// 	 * All recognized ioctl commands (ie. those that don't
-// 	 * return -ENOTTY) fill out this field, even if the
-// 	 * command failed.
-// 	 */
-// 	uint32_t version[3];	/* in/out */
-// 	uint32_t data_size;	/* total size of data passed in
-// 				 * including this struct */
-
-// 	uint32_t data_start;	/* offset to start of data
-// 				 * relative to start of this struct */
-
-// 	uint32_t target_count;	/* in/out */
-// 	int32_t open_count;	/* out */
-// 	uint32_t flags;		/* in/out */
-
-// 	/*
-// 	 * event_nr holds either the event number (input and output) or the
-// 	 * udev cookie value (input only).
-// 	 * The DM_DEV_WAIT ioctl takes an event number as input.
-// 	 * The DM_SUSPEND, DM_DEV_REMOVE and DM_DEV_RENAME ioctls
-// 	 * use the field as a cookie to return in the DM_COOKIE
-// 	 * variable with the uevents they issue.
-// 	 * For output, the ioctls return the event number, not the cookie.
-// 	 */
-// 	uint32_t event_nr;      	/* in/out */
-// 	uint32_t padding;
-
-// 	uint64_t dev;		/* in/out */
-
-// 	char name[DM_NAME_LEN];	/* device name */
-// 	char uuid[DM_UUID_LEN];	/* unique identifier for
-// 				 * the block device */
-// 	char data[7];		/* padding or data */
-// };
-
-// struct target {
-// 	uint64_t start;
-// 	uint64_t length;
-// 	char *type;
-// 	char *params;
-
-// 	struct target *next;
-// };
-
-// typedef enum {
-// 	DM_ADD_NODE_ON_RESUME, /* add /dev/mapper node with dmsetup resume */
-// 	DM_ADD_NODE_ON_CREATE  /* add /dev/mapper node with dmsetup create */
-// } dm_add_node_t;
-
-// struct dm_task {
-// 	int type;
-// 	char *dev_name;
-// 	char *mangled_dev_name;
-
-// 	struct target *head, *tail;
-
-// 	int read_only;
-// 	uint32_t event_nr;
-// 	int major;
-// 	int minor;
-// 	int allow_default_major_fallback;
-// 	uid_t uid;
-// 	gid_t gid;
-// 	mode_t mode;
-// 	uint32_t read_ahead;
-// 	uint32_t read_ahead_flags;
-// 	union {
-// 		struct dm_ioctl *v4;
-// 	} dmi;
-// 	char *newname;
-// 	char *message;
-// 	char *geometry;
-// 	uint64_t sector;
-// 	int no_flush;
-// 	int no_open_count;
-// 	int skip_lockfs;
-// 	int query_inactive_table;
-// 	int suppress_identical_reload;
-// 	dm_add_node_t add_node;
-// 	uint64_t existing_table_size;
-// 	int cookie_set;
-// 	int new_uuid;
-// 	int secure_data;
-// 	int retry_remove;
-// 	int enable_checks;
-// 	int expected_errno;
-
-// 	char *uuid;
-// 	char *mangled_uuid;
-// };
-//
diff --git a/vendor/github.com/containers/storage/drivers/devmapper/driver.go b/vendor/github.com/containers/storage/drivers/devmapper/driver.go
deleted file mode 100644
index d68fb66cc8..0000000000
--- a/vendor/github.com/containers/storage/drivers/devmapper/driver.go
+++ /dev/null
@@ -1,240 +0,0 @@
-// +build linux
-
-package devmapper
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-	"path"
-	"strconv"
-
-	"github.com/sirupsen/logrus"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/devicemapper"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/locker"
-	"github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/system"
-	units "github.com/docker/go-units"
-)
-
-func init() {
-	graphdriver.Register("devicemapper", Init)
-}
-
-// Driver contains the device set mounted and the home directory
-type Driver struct {
-	*DeviceSet
-	home    string
-	uidMaps []idtools.IDMap
-	gidMaps []idtools.IDMap
-	ctr     *graphdriver.RefCounter
-	locker  *locker.Locker
-}
-
-// Init creates a driver with the given home and the set of options.
-func Init(home string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-	deviceSet, err := NewDeviceSet(home, true, options, uidMaps, gidMaps)
-	if err != nil {
-		return nil, err
-	}
-
-	if err := mount.MakePrivate(home); err != nil {
-		return nil, err
-	}
-
-	d := &Driver{
-		DeviceSet: deviceSet,
-		home:      home,
-		uidMaps:   uidMaps,
-		gidMaps:   gidMaps,
-		ctr:       graphdriver.NewRefCounter(graphdriver.NewDefaultChecker()),
-		locker:    locker.New(),
-	}
-
-	return graphdriver.NewNaiveDiffDriver(d, uidMaps, gidMaps), nil
-}
-
-func (d *Driver) String() string {
-	return "devicemapper"
-}
-
-// Status returns the status about the driver in a printable format.
-// Information returned contains Pool Name, Data File, Metadata file, disk usage by
-// the data and metadata, etc.
-func (d *Driver) Status() [][2]string {
-	s := d.DeviceSet.Status()
-
-	status := [][2]string{
-		{"Pool Name", s.PoolName},
-		{"Pool Blocksize", units.HumanSize(float64(s.SectorSize))},
-		{"Base Device Size", units.HumanSize(float64(s.BaseDeviceSize))},
-		{"Backing Filesystem", s.BaseDeviceFS},
-		{"Data file", s.DataFile},
-		{"Metadata file", s.MetadataFile},
-		{"Data Space Used", units.HumanSize(float64(s.Data.Used))},
-		{"Data Space Total", units.HumanSize(float64(s.Data.Total))},
-		{"Data Space Available", units.HumanSize(float64(s.Data.Available))},
-		{"Metadata Space Used", units.HumanSize(float64(s.Metadata.Used))},
-		{"Metadata Space Total", units.HumanSize(float64(s.Metadata.Total))},
-		{"Metadata Space Available", units.HumanSize(float64(s.Metadata.Available))},
-		{"Thin Pool Minimum Free Space", units.HumanSize(float64(s.MinFreeSpace))},
-		{"Udev Sync Supported", fmt.Sprintf("%v", s.UdevSyncSupported)},
-		{"Deferred Removal Enabled", fmt.Sprintf("%v", s.DeferredRemoveEnabled)},
-		{"Deferred Deletion Enabled", fmt.Sprintf("%v", s.DeferredDeleteEnabled)},
-		{"Deferred Deleted Device Count", fmt.Sprintf("%v", s.DeferredDeletedDeviceCount)},
-	}
-	if len(s.DataLoopback) > 0 {
-		status = append(status, [2]string{"Data loop file", s.DataLoopback})
-	}
-	if len(s.MetadataLoopback) > 0 {
-		status = append(status, [2]string{"Metadata loop file", s.MetadataLoopback})
-	}
-	if vStr, err := devicemapper.GetLibraryVersion(); err == nil {
-		status = append(status, [2]string{"Library Version", vStr})
-	}
-	return status
-}
-
-// Metadata returns a map of information about the device.
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	m, err := d.DeviceSet.exportDeviceMetadata(id)
-
-	if err != nil {
-		return nil, err
-	}
-
-	metadata := make(map[string]string)
-	metadata["DeviceId"] = strconv.Itoa(m.deviceID)
-	metadata["DeviceSize"] = strconv.FormatUint(m.deviceSize, 10)
-	metadata["DeviceName"] = m.deviceName
-	return metadata, nil
-}
-
-// Cleanup unmounts a device.
-func (d *Driver) Cleanup() error {
-	err := d.DeviceSet.Shutdown(d.home)
-
-	if err2 := mount.Unmount(d.home); err == nil {
-		err = err2
-	}
-
-	return err
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	return d.Create(id, parent, opts)
-}
-
-// Create adds a device with a given id and the parent.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-	var storageOpt map[string]string
-	if opts != nil {
-		storageOpt = opts.StorageOpt
-	}
-
-	if err := d.DeviceSet.AddDevice(id, parent, storageOpt); err != nil {
-		return err
-	}
-
-	return nil
-}
-
-// Remove removes a device with a given id, unmounts the filesystem.
-func (d *Driver) Remove(id string) error {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	if !d.DeviceSet.HasDevice(id) {
-		// Consider removing a non-existing device a no-op
-		// This is useful to be able to progress on container removal
-		// if the underlying device has gone away due to earlier errors
-		return nil
-	}
-
-	// This assumes the device has been properly Get/Put:ed and thus is unmounted
-	if err := d.DeviceSet.DeleteDevice(id, false); err != nil {
-		return fmt.Errorf("failed to remove device %s: %v", id, err)
-	}
-	return system.EnsureRemoveAll(path.Join(d.home, "mnt", id))
-}
-
-// Get mounts a device with given id into the root filesystem
-func (d *Driver) Get(id, mountLabel string) (string, error) {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	mp := path.Join(d.home, "mnt", id)
-	rootFs := path.Join(mp, "rootfs")
-	if count := d.ctr.Increment(mp); count > 1 {
-		return rootFs, nil
-	}
-
-	uid, gid, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps)
-	if err != nil {
-		d.ctr.Decrement(mp)
-		return "", err
-	}
-
-	// Create the target directories if they don't exist
-	if err := idtools.MkdirAllAs(path.Join(d.home, "mnt"), 0755, uid, gid); err != nil && !os.IsExist(err) {
-		d.ctr.Decrement(mp)
-		return "", err
-	}
-	if err := idtools.MkdirAs(mp, 0755, uid, gid); err != nil && !os.IsExist(err) {
-		d.ctr.Decrement(mp)
-		return "", err
-	}
-
-	// Mount the device
-	if err := d.DeviceSet.MountDevice(id, mp, mountLabel); err != nil {
-		d.ctr.Decrement(mp)
-		return "", err
-	}
-
-	if err := idtools.MkdirAllAs(rootFs, 0755, uid, gid); err != nil && !os.IsExist(err) {
-		d.ctr.Decrement(mp)
-		d.DeviceSet.UnmountDevice(id, mp)
-		return "", err
-	}
-
-	idFile := path.Join(mp, "id")
-	if _, err := os.Stat(idFile); err != nil && os.IsNotExist(err) {
-		// Create an "id" file with the container/image id in it to help reconstruct this in case
-		// of later problems
-		if err := ioutil.WriteFile(idFile, []byte(id), 0600); err != nil {
-			d.ctr.Decrement(mp)
-			d.DeviceSet.UnmountDevice(id, mp)
-			return "", err
-		}
-	}
-
-	return rootFs, nil
-}
-
-// Put unmounts a device and removes it.
-func (d *Driver) Put(id string) error {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	mp := path.Join(d.home, "mnt", id)
-	if count := d.ctr.Decrement(mp); count > 0 {
-		return nil
-	}
-	err := d.DeviceSet.UnmountDevice(id, mp)
-	if err != nil {
-		logrus.Errorf("devmapper: Error unmounting device %s: %s", id, err)
-	}
-	return err
-}
-
-// Exists checks to see if the device exists.
-func (d *Driver) Exists(id string) bool {
-	return d.DeviceSet.HasDevice(id)
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/devmapper/mount.go b/vendor/github.com/containers/storage/drivers/devmapper/mount.go
deleted file mode 100644
index 1dc3262d27..0000000000
--- a/vendor/github.com/containers/storage/drivers/devmapper/mount.go
+++ /dev/null
@@ -1,88 +0,0 @@
-// +build linux
-
-package devmapper
-
-import (
-	"bytes"
-	"fmt"
-	"os"
-	"path/filepath"
-
-	"golang.org/x/sys/unix"
-)
-
-// FIXME: this is copy-pasted from the aufs driver.
-// It should be moved into the core.
-
-// Mounted returns true if a mount point exists.
-func Mounted(mountpoint string) (bool, error) {
-	var mntpointSt unix.Stat_t
-	if err := unix.Stat(mountpoint, &mntpointSt); err != nil {
-		if os.IsNotExist(err) {
-			return false, nil
-		}
-		return false, err
-	}
-	var parentSt unix.Stat_t
-	if err := unix.Stat(filepath.Join(mountpoint, ".."), &parentSt); err != nil {
-		return false, err
-	}
-	return mntpointSt.Dev != parentSt.Dev, nil
-}
-
-type probeData struct {
-	fsName string
-	magic  string
-	offset uint64
-}
-
-// ProbeFsType returns the filesystem name for the given device id.
-func ProbeFsType(device string) (string, error) {
-	probes := []probeData{
-		{"btrfs", "_BHRfS_M", 0x10040},
-		{"ext4", "\123\357", 0x438},
-		{"xfs", "XFSB", 0},
-	}
-
-	maxLen := uint64(0)
-	for _, p := range probes {
-		l := p.offset + uint64(len(p.magic))
-		if l > maxLen {
-			maxLen = l
-		}
-	}
-
-	file, err := os.Open(device)
-	if err != nil {
-		return "", err
-	}
-	defer file.Close()
-
-	buffer := make([]byte, maxLen)
-	l, err := file.Read(buffer)
-	if err != nil {
-		return "", err
-	}
-
-	if uint64(l) != maxLen {
-		return "", fmt.Errorf("devmapper: unable to detect filesystem type of %s, short read", device)
-	}
-
-	for _, p := range probes {
-		if bytes.Equal([]byte(p.magic), buffer[p.offset:p.offset+uint64(len(p.magic))]) {
-			return p.fsName, nil
-		}
-	}
-
-	return "", fmt.Errorf("devmapper: Unknown filesystem type on %s", device)
-}
-
-func joinMountOptions(a, b string) string {
-	if a == "" {
-		return b
-	}
-	if b == "" {
-		return a
-	}
-	return a + "," + b
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver.go b/vendor/github.com/containers/storage/drivers/driver.go
deleted file mode 100644
index 615d93be5f..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver.go
+++ /dev/null
@@ -1,285 +0,0 @@
-package graphdriver
-
-import (
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"github.com/vbatts/tar-split/tar/storage"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/idtools"
-)
-
-// FsMagic unsigned id of the filesystem in use.
-type FsMagic uint32
-
-const (
-	// FsMagicUnsupported is a predefined constant value other than a valid filesystem id.
-	FsMagicUnsupported = FsMagic(0x00000000)
-)
-
-var (
-	// All registered drivers
-	drivers map[string]InitFunc
-
-	// ErrNotSupported returned when driver is not supported.
-	ErrNotSupported = errors.New("driver not supported")
-	// ErrPrerequisites returned when driver does not meet prerequisites.
-	ErrPrerequisites = errors.New("prerequisites for driver not satisfied (wrong filesystem?)")
-	// ErrIncompatibleFS returned when file system is not supported.
-	ErrIncompatibleFS = fmt.Errorf("backing file system is unsupported for this graph driver")
-)
-
-//CreateOpts contains optional arguments for Create() and CreateReadWrite()
-// methods.
-type CreateOpts struct {
-	MountLabel string
-	StorageOpt map[string]string
-}
-
-// InitFunc initializes the storage driver.
-type InitFunc func(root string, options []string, uidMaps, gidMaps []idtools.IDMap) (Driver, error)
-
-// ProtoDriver defines the basic capabilities of a driver.
-// This interface exists solely to be a minimum set of methods
-// for client code which choose not to implement the entire Driver
-// interface and use the NaiveDiffDriver wrapper constructor.
-//
-// Use of ProtoDriver directly by client code is not recommended.
-type ProtoDriver interface {
-	// String returns a string representation of this driver.
-	String() string
-	// CreateReadWrite creates a new, empty filesystem layer that is ready
-	// to be used as the storage for a container. Additional options can
-	// be passed in opts. parent may be "" and opts may be nil.
-	CreateReadWrite(id, parent string, opts *CreateOpts) error
-	// Create creates a new, empty, filesystem layer with the
-	// specified id and parent and options passed in opts. Parent
-	// may be "" and opts may be nil.
-	Create(id, parent string, opts *CreateOpts) error
-	// Remove attempts to remove the filesystem layer with this id.
-	Remove(id string) error
-	// Get returns the mountpoint for the layered filesystem referred
-	// to by this id. You can optionally specify a mountLabel or "".
-	// Returns the absolute path to the mounted layered filesystem.
-	Get(id, mountLabel string) (dir string, err error)
-	// Put releases the system resources for the specified id,
-	// e.g, unmounting layered filesystem.
-	Put(id string) error
-	// Exists returns whether a filesystem layer with the specified
-	// ID exists on this driver.
-	Exists(id string) bool
-	// Status returns a set of key-value pairs which give low
-	// level diagnostic status about this driver.
-	Status() [][2]string
-	// Returns a set of key-value pairs which give low level information
-	// about the image/container driver is managing.
-	Metadata(id string) (map[string]string, error)
-	// Cleanup performs necessary tasks to release resources
-	// held by the driver, e.g., unmounting all layered filesystems
-	// known to this driver.
-	Cleanup() error
-	// AdditionalImageStores returns additional image stores supported by the driver
-	AdditionalImageStores() []string
-}
-
-// DiffDriver is the interface to use to implement graph diffs
-type DiffDriver interface {
-	// Diff produces an archive of the changes between the specified
-	// layer and its parent layer which may be "".
-	Diff(id, parent, mountLabel string) (io.ReadCloser, error)
-	// Changes produces a list of changes between the specified layer
-	// and its parent layer. If parent is "", then all changes will be ADD changes.
-	Changes(id, parent, mountLabel string) ([]archive.Change, error)
-	// ApplyDiff extracts the changeset from the given diff into the
-	// layer with the specified id and parent, returning the size of the
-	// new layer in bytes.
-	// The io.Reader must be an uncompressed stream.
-	ApplyDiff(id, parent, mountLabel string, diff io.Reader) (size int64, err error)
-	// DiffSize calculates the changes between the specified id
-	// and its parent and returns the size in bytes of the changes
-	// relative to its base filesystem directory.
-	DiffSize(id, parent, mountLabel string) (size int64, err error)
-}
-
-// Driver is the interface for layered/snapshot file system drivers.
-type Driver interface {
-	ProtoDriver
-	DiffDriver
-}
-
-// Capabilities defines a list of capabilities a driver may implement.
-// These capabilities are not required; however, they do determine how a
-// graphdriver can be used.
-type Capabilities struct {
-	// Flags that this driver is capable of reproducing exactly equivalent
-	// diffs for read-only layers. If set, clients can rely on the driver
-	// for consistent tar streams, and avoid extra processing to account
-	// for potential differences (eg: the layer store's use of tar-split).
-	ReproducesExactDiffs bool
-}
-
-// CapabilityDriver is the interface for layered file system drivers that
-// can report on their Capabilities.
-type CapabilityDriver interface {
-	Capabilities() Capabilities
-}
-
-// DiffGetterDriver is the interface for layered file system drivers that
-// provide a specialized function for getting file contents for tar-split.
-type DiffGetterDriver interface {
-	Driver
-	// DiffGetter returns an interface to efficiently retrieve the contents
-	// of files in a layer.
-	DiffGetter(id string) (FileGetCloser, error)
-}
-
-// FileGetCloser extends the storage.FileGetter interface with a Close method
-// for cleaning up.
-type FileGetCloser interface {
-	storage.FileGetter
-	// Close cleans up any resources associated with the FileGetCloser.
-	Close() error
-}
-
-// Checker makes checks on specified filesystems.
-type Checker interface {
-	// IsMounted returns true if the provided path is mounted for the specific checker
-	IsMounted(path string) bool
-}
-
-func init() {
-	drivers = make(map[string]InitFunc)
-}
-
-// Register registers an InitFunc for the driver.
-func Register(name string, initFunc InitFunc) error {
-	if _, exists := drivers[name]; exists {
-		return fmt.Errorf("Name already registered %s", name)
-	}
-	drivers[name] = initFunc
-
-	return nil
-}
-
-// GetDriver initializes and returns the registered driver
-func GetDriver(name string, config Options) (Driver, error) {
-	if initFunc, exists := drivers[name]; exists {
-		return initFunc(filepath.Join(config.Root, name), config.DriverOptions, config.UIDMaps, config.GIDMaps)
-	}
-
-	logrus.Errorf("Failed to GetDriver graph %s %s", name, config.Root)
-	return nil, errors.Wrapf(ErrNotSupported, "failed to GetDriver graph %s %s", name, config.Root)
-}
-
-// getBuiltinDriver initializes and returns the registered driver, but does not try to load from plugins
-func getBuiltinDriver(name, home string, options []string, uidMaps, gidMaps []idtools.IDMap) (Driver, error) {
-	if initFunc, exists := drivers[name]; exists {
-		return initFunc(filepath.Join(home, name), options, uidMaps, gidMaps)
-	}
-	logrus.Errorf("Failed to built-in GetDriver graph %s %s", name, home)
-	return nil, errors.Wrapf(ErrNotSupported, "failed to built-in GetDriver graph %s %s", name, home)
-}
-
-// Options is used to initialize a graphdriver
-type Options struct {
-	Root                string
-	DriverOptions       []string
-	UIDMaps             []idtools.IDMap
-	GIDMaps             []idtools.IDMap
-	ExperimentalEnabled bool
-}
-
-// New creates the driver and initializes it at the specified root.
-func New(name string, config Options) (Driver, error) {
-	if name != "" {
-		logrus.Debugf("[graphdriver] trying provided driver %q", name) // so the logs show specified driver
-		return GetDriver(name, config)
-	}
-
-	// Guess for prior driver
-	driversMap := scanPriorDrivers(config.Root)
-	for _, name := range priority {
-		if name == "vfs" {
-			// don't use vfs even if there is state present.
-			continue
-		}
-		if _, prior := driversMap[name]; prior {
-			// of the state found from prior drivers, check in order of our priority
-			// which we would prefer
-			driver, err := getBuiltinDriver(name, config.Root, config.DriverOptions, config.UIDMaps, config.GIDMaps)
-			if err != nil {
-				// unlike below, we will return error here, because there is prior
-				// state, and now it is no longer supported/prereq/compatible, so
-				// something changed and needs attention. Otherwise the daemon's
-				// images would just "disappear".
-				logrus.Errorf("[graphdriver] prior storage driver %s failed: %s", name, err)
-				return nil, err
-			}
-
-			// abort starting when there are other prior configured drivers
-			// to ensure the user explicitly selects the driver to load
-			if len(driversMap)-1 > 0 {
-				var driversSlice []string
-				for name := range driversMap {
-					driversSlice = append(driversSlice, name)
-				}
-
-				return nil, fmt.Errorf("%s contains several valid graphdrivers: %s; Please cleanup or explicitly choose storage driver (-s <DRIVER>)", config.Root, strings.Join(driversSlice, ", "))
-			}
-
-			logrus.Infof("[graphdriver] using prior storage driver: %s", name)
-			return driver, nil
-		}
-	}
-
-	// Check for priority drivers first
-	for _, name := range priority {
-		driver, err := getBuiltinDriver(name, config.Root, config.DriverOptions, config.UIDMaps, config.GIDMaps)
-		if err != nil {
-			if isDriverNotSupported(err) {
-				continue
-			}
-			return nil, err
-		}
-		return driver, nil
-	}
-
-	// Check all registered drivers if no priority driver is found
-	for name, initFunc := range drivers {
-		driver, err := initFunc(filepath.Join(config.Root, name), config.DriverOptions, config.UIDMaps, config.GIDMaps)
-		if err != nil {
-			if isDriverNotSupported(err) {
-				continue
-			}
-			return nil, err
-		}
-		return driver, nil
-	}
-	return nil, fmt.Errorf("No supported storage backend found")
-}
-
-// isDriverNotSupported returns true if the error initializing
-// the graph driver is a non-supported error.
-func isDriverNotSupported(err error) bool {
-	cause := errors.Cause(err)
-	return cause == ErrNotSupported || cause == ErrPrerequisites || cause == ErrIncompatibleFS
-}
-
-// scanPriorDrivers returns an un-ordered scan of directories of prior storage drivers
-func scanPriorDrivers(root string) map[string]bool {
-	driversMap := make(map[string]bool)
-
-	for driver := range drivers {
-		p := filepath.Join(root, driver)
-		if _, err := os.Stat(p); err == nil && driver != "vfs" {
-			driversMap[driver] = true
-		}
-	}
-	return driversMap
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver_freebsd.go b/vendor/github.com/containers/storage/drivers/driver_freebsd.go
deleted file mode 100644
index 53394b738d..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver_freebsd.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package graphdriver
-
-import (
-	"syscall"
-
-	"golang.org/x/sys/unix"
-)
-
-var (
-	// Slice of drivers that should be used in an order
-	priority = []string{
-		"zfs",
-	}
-)
-
-// Mounted checks if the given path is mounted as the fs type
-func Mounted(fsType FsMagic, mountPath string) (bool, error) {
-	var buf unix.Statfs_t
-	if err := syscall.Statfs(mountPath, &buf); err != nil {
-		return false, err
-	}
-	return FsMagic(buf.Type) == fsType, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver_linux.go b/vendor/github.com/containers/storage/drivers/driver_linux.go
deleted file mode 100644
index 94f7270eae..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver_linux.go
+++ /dev/null
@@ -1,135 +0,0 @@
-// +build linux
-
-package graphdriver
-
-import (
-	"path/filepath"
-
-	"github.com/containers/storage/pkg/mount"
-	"golang.org/x/sys/unix"
-)
-
-const (
-	// FsMagicAufs filesystem id for Aufs
-	FsMagicAufs = FsMagic(0x61756673)
-	// FsMagicBtrfs filesystem id for Btrfs
-	FsMagicBtrfs = FsMagic(0x9123683E)
-	// FsMagicCramfs filesystem id for Cramfs
-	FsMagicCramfs = FsMagic(0x28cd3d45)
-	// FsMagicEcryptfs filesystem id for eCryptfs
-	FsMagicEcryptfs = FsMagic(0xf15f)
-	// FsMagicExtfs filesystem id for Extfs
-	FsMagicExtfs = FsMagic(0x0000EF53)
-	// FsMagicF2fs filesystem id for F2fs
-	FsMagicF2fs = FsMagic(0xF2F52010)
-	// FsMagicGPFS filesystem id for GPFS
-	FsMagicGPFS = FsMagic(0x47504653)
-	// FsMagicJffs2Fs filesystem if for Jffs2Fs
-	FsMagicJffs2Fs = FsMagic(0x000072b6)
-	// FsMagicJfs filesystem id for Jfs
-	FsMagicJfs = FsMagic(0x3153464a)
-	// FsMagicNfsFs filesystem id for NfsFs
-	FsMagicNfsFs = FsMagic(0x00006969)
-	// FsMagicRAMFs filesystem id for RamFs
-	FsMagicRAMFs = FsMagic(0x858458f6)
-	// FsMagicReiserFs filesystem id for ReiserFs
-	FsMagicReiserFs = FsMagic(0x52654973)
-	// FsMagicSmbFs filesystem id for SmbFs
-	FsMagicSmbFs = FsMagic(0x0000517B)
-	// FsMagicSquashFs filesystem id for SquashFs
-	FsMagicSquashFs = FsMagic(0x73717368)
-	// FsMagicTmpFs filesystem id for TmpFs
-	FsMagicTmpFs = FsMagic(0x01021994)
-	// FsMagicVxFS filesystem id for VxFs
-	FsMagicVxFS = FsMagic(0xa501fcf5)
-	// FsMagicXfs filesystem id for Xfs
-	FsMagicXfs = FsMagic(0x58465342)
-	// FsMagicZfs filesystem id for Zfs
-	FsMagicZfs = FsMagic(0x2fc12fc1)
-	// FsMagicOverlay filesystem id for overlay
-	FsMagicOverlay = FsMagic(0x794C7630)
-)
-
-var (
-	// Slice of drivers that should be used in an order
-	priority = []string{
-		"overlay",
-		"devicemapper",
-		"aufs",
-		"btrfs",
-		"zfs",
-		"vfs",
-	}
-
-	// FsNames maps filesystem id to name of the filesystem.
-	FsNames = map[FsMagic]string{
-		FsMagicAufs:        "aufs",
-		FsMagicBtrfs:       "btrfs",
-		FsMagicCramfs:      "cramfs",
-		FsMagicEcryptfs:    "ecryptfs",
-		FsMagicExtfs:       "extfs",
-		FsMagicF2fs:        "f2fs",
-		FsMagicGPFS:        "gpfs",
-		FsMagicJffs2Fs:     "jffs2",
-		FsMagicJfs:         "jfs",
-		FsMagicNfsFs:       "nfs",
-		FsMagicOverlay:     "overlayfs",
-		FsMagicRAMFs:       "ramfs",
-		FsMagicReiserFs:    "reiserfs",
-		FsMagicSmbFs:       "smb",
-		FsMagicSquashFs:    "squashfs",
-		FsMagicTmpFs:       "tmpfs",
-		FsMagicUnsupported: "unsupported",
-		FsMagicVxFS:        "vxfs",
-		FsMagicXfs:         "xfs",
-		FsMagicZfs:         "zfs",
-	}
-)
-
-// GetFSMagic returns the filesystem id given the path.
-func GetFSMagic(rootpath string) (FsMagic, error) {
-	var buf unix.Statfs_t
-	if err := unix.Statfs(filepath.Dir(rootpath), &buf); err != nil {
-		return 0, err
-	}
-	return FsMagic(buf.Type), nil
-}
-
-// NewFsChecker returns a checker configured for the provided FsMagic
-func NewFsChecker(t FsMagic) Checker {
-	return &fsChecker{
-		t: t,
-	}
-}
-
-type fsChecker struct {
-	t FsMagic
-}
-
-func (c *fsChecker) IsMounted(path string) bool {
-	m, _ := Mounted(c.t, path)
-	return m
-}
-
-// NewDefaultChecker returns a check that parses /proc/mountinfo to check
-// if the specified path is mounted.
-func NewDefaultChecker() Checker {
-	return &defaultChecker{}
-}
-
-type defaultChecker struct {
-}
-
-func (c *defaultChecker) IsMounted(path string) bool {
-	m, _ := mount.Mounted(path)
-	return m
-}
-
-// Mounted checks if the given path is mounted as the fs type
-func Mounted(fsType FsMagic, mountPath string) (bool, error) {
-	var buf unix.Statfs_t
-	if err := unix.Statfs(mountPath, &buf); err != nil {
-		return false, err
-	}
-	return FsMagic(buf.Type) == fsType, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver_solaris.go b/vendor/github.com/containers/storage/drivers/driver_solaris.go
deleted file mode 100644
index 174fa9670b..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver_solaris.go
+++ /dev/null
@@ -1,96 +0,0 @@
-// +build solaris,cgo
-
-package graphdriver
-
-/*
-#include <sys/statvfs.h>
-#include <stdlib.h>
-
-static inline struct statvfs *getstatfs(char *s) {
-        struct statvfs *buf;
-        int err;
-        buf = (struct statvfs *)malloc(sizeof(struct statvfs));
-        err = statvfs(s, buf);
-        return buf;
-}
-*/
-import "C"
-import (
-	"path/filepath"
-	"unsafe"
-
-	"github.com/containers/storage/pkg/mount"
-	"github.com/sirupsen/logrus"
-)
-
-const (
-	// FsMagicZfs filesystem id for Zfs
-	FsMagicZfs = FsMagic(0x2fc12fc1)
-)
-
-var (
-	// Slice of drivers that should be used in an order
-	priority = []string{
-		"zfs",
-	}
-
-	// FsNames maps filesystem id to name of the filesystem.
-	FsNames = map[FsMagic]string{
-		FsMagicZfs: "zfs",
-	}
-)
-
-// GetFSMagic returns the filesystem id given the path.
-func GetFSMagic(rootpath string) (FsMagic, error) {
-	return 0, nil
-}
-
-type fsChecker struct {
-	t FsMagic
-}
-
-func (c *fsChecker) IsMounted(path string) bool {
-	m, _ := Mounted(c.t, path)
-	return m
-}
-
-// NewFsChecker returns a checker configured for the provided FsMagic
-func NewFsChecker(t FsMagic) Checker {
-	return &fsChecker{
-		t: t,
-	}
-}
-
-// NewDefaultChecker returns a check that parses /proc/mountinfo to check
-// if the specified path is mounted.
-// No-op on Solaris.
-func NewDefaultChecker() Checker {
-	return &defaultChecker{}
-}
-
-type defaultChecker struct {
-}
-
-func (c *defaultChecker) IsMounted(path string) bool {
-	m, _ := mount.Mounted(path)
-	return m
-}
-
-// Mounted checks if the given path is mounted as the fs type
-//Solaris supports only ZFS for now
-func Mounted(fsType FsMagic, mountPath string) (bool, error) {
-
-	cs := C.CString(filepath.Dir(mountPath))
-	defer C.free(unsafe.Pointer(cs))
-	buf := C.getstatfs(cs)
-	defer C.free(unsafe.Pointer(buf))
-
-	// on Solaris buf.f_basetype contains ['z', 'f', 's', 0 ... ]
-	if (buf.f_basetype[0] != 122) || (buf.f_basetype[1] != 102) || (buf.f_basetype[2] != 115) ||
-		(buf.f_basetype[3] != 0) {
-		logrus.Debugf("[zfs] no zfs dataset found for rootdir '%s'", mountPath)
-		return false, ErrPrerequisites
-	}
-
-	return true, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver_unsupported.go b/vendor/github.com/containers/storage/drivers/driver_unsupported.go
deleted file mode 100644
index 4a875608b0..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver_unsupported.go
+++ /dev/null
@@ -1,15 +0,0 @@
-// +build !linux,!windows,!freebsd,!solaris
-
-package graphdriver
-
-var (
-	// Slice of drivers that should be used in an order
-	priority = []string{
-		"unsupported",
-	}
-)
-
-// GetFSMagic returns the filesystem id given the path.
-func GetFSMagic(rootpath string) (FsMagic, error) {
-	return FsMagicUnsupported, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/driver_windows.go b/vendor/github.com/containers/storage/drivers/driver_windows.go
deleted file mode 100644
index ffd30c2950..0000000000
--- a/vendor/github.com/containers/storage/drivers/driver_windows.go
+++ /dev/null
@@ -1,14 +0,0 @@
-package graphdriver
-
-var (
-	// Slice of drivers that should be used in order
-	priority = []string{
-		"windowsfilter",
-	}
-)
-
-// GetFSMagic returns the filesystem id given the path.
-func GetFSMagic(rootpath string) (FsMagic, error) {
-	// Note it is OK to return FsMagicUnsupported on Windows.
-	return FsMagicUnsupported, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/fsdiff.go b/vendor/github.com/containers/storage/drivers/fsdiff.go
deleted file mode 100644
index f74239cb93..0000000000
--- a/vendor/github.com/containers/storage/drivers/fsdiff.go
+++ /dev/null
@@ -1,169 +0,0 @@
-package graphdriver
-
-import (
-	"io"
-	"time"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/chrootarchive"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/sirupsen/logrus"
-)
-
-var (
-	// ApplyUncompressedLayer defines the unpack method used by the graph
-	// driver.
-	ApplyUncompressedLayer = chrootarchive.ApplyUncompressedLayer
-)
-
-// NaiveDiffDriver takes a ProtoDriver and adds the
-// capability of the Diffing methods which it may or may not
-// support on its own. See the comment on the exported
-// NewNaiveDiffDriver function below.
-// Notably, the AUFS driver doesn't need to be wrapped like this.
-type NaiveDiffDriver struct {
-	ProtoDriver
-	uidMaps []idtools.IDMap
-	gidMaps []idtools.IDMap
-}
-
-// NewNaiveDiffDriver returns a fully functional driver that wraps the
-// given ProtoDriver and adds the capability of the following methods which
-// it may or may not support on its own:
-//     Diff(id, parent, mountLabel string) (io.ReadCloser, error)
-//     Changes(id, parent, mountLabel string) ([]archive.Change, error)
-//     ApplyDiff(id, parent, mountLabel string, diff io.Reader) (size int64, err error)
-//     DiffSize(id, parent, mountLabel string) (size int64, err error)
-func NewNaiveDiffDriver(driver ProtoDriver, uidMaps, gidMaps []idtools.IDMap) Driver {
-	return &NaiveDiffDriver{ProtoDriver: driver,
-		uidMaps: uidMaps,
-		gidMaps: gidMaps}
-}
-
-// Diff produces an archive of the changes between the specified
-// layer and its parent layer which may be "".
-func (gdw *NaiveDiffDriver) Diff(id, parent, mountLabel string) (arch io.ReadCloser, err error) {
-	startTime := time.Now()
-	driver := gdw.ProtoDriver
-
-	layerFs, err := driver.Get(id, mountLabel)
-	if err != nil {
-		return nil, err
-	}
-
-	defer func() {
-		if err != nil {
-			driver.Put(id)
-		}
-	}()
-
-	if parent == "" {
-		archive, err := archive.Tar(layerFs, archive.Uncompressed)
-		if err != nil {
-			return nil, err
-		}
-		return ioutils.NewReadCloserWrapper(archive, func() error {
-			err := archive.Close()
-			driver.Put(id)
-			return err
-		}), nil
-	}
-
-	parentFs, err := driver.Get(parent, mountLabel)
-	if err != nil {
-		return nil, err
-	}
-	defer driver.Put(parent)
-
-	changes, err := archive.ChangesDirs(layerFs, parentFs)
-	if err != nil {
-		return nil, err
-	}
-
-	archive, err := archive.ExportChanges(layerFs, changes, gdw.uidMaps, gdw.gidMaps)
-	if err != nil {
-		return nil, err
-	}
-
-	return ioutils.NewReadCloserWrapper(archive, func() error {
-		err := archive.Close()
-		driver.Put(id)
-
-		// NaiveDiffDriver compares file metadata with parent layers. Parent layers
-		// are extracted from tar's with full second precision on modified time.
-		// We need this hack here to make sure calls within same second receive
-		// correct result.
-		time.Sleep(startTime.Truncate(time.Second).Add(time.Second).Sub(time.Now()))
-		return err
-	}), nil
-}
-
-// Changes produces a list of changes between the specified layer
-// and its parent layer. If parent is "", then all changes will be ADD changes.
-func (gdw *NaiveDiffDriver) Changes(id, parent, mountLabel string) ([]archive.Change, error) {
-	driver := gdw.ProtoDriver
-
-	layerFs, err := driver.Get(id, mountLabel)
-	if err != nil {
-		return nil, err
-	}
-	defer driver.Put(id)
-
-	parentFs := ""
-
-	if parent != "" {
-		parentFs, err = driver.Get(parent, mountLabel)
-		if err != nil {
-			return nil, err
-		}
-		defer driver.Put(parent)
-	}
-
-	return archive.ChangesDirs(layerFs, parentFs)
-}
-
-// ApplyDiff extracts the changeset from the given diff into the
-// layer with the specified id and parent, returning the size of the
-// new layer in bytes.
-func (gdw *NaiveDiffDriver) ApplyDiff(id, parent, mountLabel string, diff io.Reader) (size int64, err error) {
-	driver := gdw.ProtoDriver
-
-	// Mount the root filesystem so we can apply the diff/layer.
-	layerFs, err := driver.Get(id, mountLabel)
-	if err != nil {
-		return
-	}
-	defer driver.Put(id)
-
-	options := &archive.TarOptions{UIDMaps: gdw.uidMaps,
-		GIDMaps: gdw.gidMaps}
-	start := time.Now().UTC()
-	logrus.Debug("Start untar layer")
-	if size, err = ApplyUncompressedLayer(layerFs, diff, options); err != nil {
-		return
-	}
-	logrus.Debugf("Untar time: %vs", time.Now().UTC().Sub(start).Seconds())
-
-	return
-}
-
-// DiffSize calculates the changes between the specified layer
-// and its parent and returns the size in bytes of the changes
-// relative to its base filesystem directory.
-func (gdw *NaiveDiffDriver) DiffSize(id, parent, mountLabel string) (size int64, err error) {
-	driver := gdw.ProtoDriver
-
-	changes, err := gdw.Changes(id, parent, mountLabel)
-	if err != nil {
-		return
-	}
-
-	layerFs, err := driver.Get(id, mountLabel)
-	if err != nil {
-		return
-	}
-	defer driver.Put(id)
-
-	return archive.ChangesSize(layerFs, changes), nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/overlay/check.go b/vendor/github.com/containers/storage/drivers/overlay/check.go
deleted file mode 100644
index 2a096edf6f..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlay/check.go
+++ /dev/null
@@ -1,102 +0,0 @@
-// +build linux
-
-package overlay
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-	"path"
-	"path/filepath"
-	"syscall"
-
-	"github.com/containers/storage/pkg/system"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-// doesSupportNativeDiff checks whether the filesystem has a bug
-// which copies up the opaque flag when copying up an opaque
-// directory or the kernel enable CONFIG_OVERLAY_FS_REDIRECT_DIR.
-// When these exist naive diff should be used.
-func doesSupportNativeDiff(d string) error {
-	td, err := ioutil.TempDir(d, "opaque-bug-check")
-	if err != nil {
-		return err
-	}
-	defer func() {
-		if err := os.RemoveAll(td); err != nil {
-			logrus.Warnf("Failed to remove check directory %v: %v", td, err)
-		}
-	}()
-
-	// Make directories l1/d, l1/d1, l2/d, l3, work, merged
-	if err := os.MkdirAll(filepath.Join(td, "l1", "d"), 0755); err != nil {
-		return err
-	}
-	if err := os.MkdirAll(filepath.Join(td, "l1", "d1"), 0755); err != nil {
-		return err
-	}
-	if err := os.MkdirAll(filepath.Join(td, "l2", "d"), 0755); err != nil {
-		return err
-	}
-	if err := os.Mkdir(filepath.Join(td, "l3"), 0755); err != nil {
-		return err
-	}
-	if err := os.Mkdir(filepath.Join(td, "work"), 0755); err != nil {
-		return err
-	}
-	if err := os.Mkdir(filepath.Join(td, "merged"), 0755); err != nil {
-		return err
-	}
-
-	// Mark l2/d as opaque
-	if err := system.Lsetxattr(filepath.Join(td, "l2", "d"), "trusted.overlay.opaque", []byte("y"), 0); err != nil {
-		return errors.Wrap(err, "failed to set opaque flag on middle layer")
-	}
-
-	opts := fmt.Sprintf("lowerdir=%s:%s,upperdir=%s,workdir=%s", path.Join(td, "l2"), path.Join(td, "l1"), path.Join(td, "l3"), path.Join(td, "work"))
-	if err := unix.Mount("overlay", filepath.Join(td, "merged"), "overlay", 0, opts); err != nil {
-		return errors.Wrap(err, "failed to mount overlay")
-	}
-	defer func() {
-		if err := unix.Unmount(filepath.Join(td, "merged"), 0); err != nil {
-			logrus.Warnf("Failed to unmount check directory %v: %v", filepath.Join(td, "merged"), err)
-		}
-	}()
-
-	// Touch file in d to force copy up of opaque directory "d" from "l2" to "l3"
-	if err := ioutil.WriteFile(filepath.Join(td, "merged", "d", "f"), []byte{}, 0644); err != nil {
-		return errors.Wrap(err, "failed to write to merged directory")
-	}
-
-	// Check l3/d does not have opaque flag
-	xattrOpaque, err := system.Lgetxattr(filepath.Join(td, "l3", "d"), "trusted.overlay.opaque")
-	if err != nil {
-		return errors.Wrap(err, "failed to read opaque flag on upper layer")
-	}
-	if string(xattrOpaque) == "y" {
-		return errors.New("opaque flag erroneously copied up, consider update to kernel 4.8 or later to fix")
-	}
-
-	// rename "d1" to "d2"
-	if err := os.Rename(filepath.Join(td, "merged", "d1"), filepath.Join(td, "merged", "d2")); err != nil {
-		// if rename failed with syscall.EXDEV, the kernel doesn't have CONFIG_OVERLAY_FS_REDIRECT_DIR enabled
-		if err.(*os.LinkError).Err == syscall.EXDEV {
-			return nil
-		}
-		return errors.Wrap(err, "failed to rename dir in merged directory")
-	}
-	// get the xattr of "d2"
-	xattrRedirect, err := system.Lgetxattr(filepath.Join(td, "l3", "d2"), "trusted.overlay.redirect")
-	if err != nil {
-		return errors.Wrap(err, "failed to read redirect flag on upper layer")
-	}
-
-	if string(xattrRedirect) == "d1" {
-		return errors.New("kernel has CONFIG_OVERLAY_FS_REDIRECT_DIR enabled")
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/overlay/mount.go b/vendor/github.com/containers/storage/drivers/overlay/mount.go
deleted file mode 100644
index feb0395924..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlay/mount.go
+++ /dev/null
@@ -1,89 +0,0 @@
-// +build linux
-
-package overlay
-
-import (
-	"bytes"
-	"encoding/json"
-	"flag"
-	"fmt"
-	"os"
-	"runtime"
-
-	"github.com/containers/storage/pkg/reexec"
-	"golang.org/x/sys/unix"
-)
-
-func init() {
-	reexec.Register("storage-mountfrom", mountFromMain)
-}
-
-func fatal(err error) {
-	fmt.Fprint(os.Stderr, err)
-	os.Exit(1)
-}
-
-type mountOptions struct {
-	Device string
-	Target string
-	Type   string
-	Label  string
-	Flag   uint32
-}
-
-func mountFrom(dir, device, target, mType string, flags uintptr, label string) error {
-	options := &mountOptions{
-		Device: device,
-		Target: target,
-		Type:   mType,
-		Flag:   uint32(flags),
-		Label:  label,
-	}
-
-	cmd := reexec.Command("storage-mountfrom", dir)
-	w, err := cmd.StdinPipe()
-	if err != nil {
-		return fmt.Errorf("mountfrom error on pipe creation: %v", err)
-	}
-
-	output := bytes.NewBuffer(nil)
-	cmd.Stdout = output
-	cmd.Stderr = output
-	if err := cmd.Start(); err != nil {
-		w.Close()
-		return fmt.Errorf("mountfrom error on re-exec cmd: %v", err)
-	}
-	//write the options to the pipe for the untar exec to read
-	if err := json.NewEncoder(w).Encode(options); err != nil {
-		w.Close()
-		return fmt.Errorf("mountfrom json encode to pipe failed: %v", err)
-	}
-	w.Close()
-
-	if err := cmd.Wait(); err != nil {
-		return fmt.Errorf("mountfrom re-exec error: %v: output: %v", err, output)
-	}
-	return nil
-}
-
-// mountfromMain is the entry-point for storage-mountfrom on re-exec.
-func mountFromMain() {
-	runtime.LockOSThread()
-	flag.Parse()
-
-	var options *mountOptions
-
-	if err := json.NewDecoder(os.Stdin).Decode(&options); err != nil {
-		fatal(err)
-	}
-
-	if err := os.Chdir(flag.Arg(0)); err != nil {
-		fatal(err)
-	}
-
-	if err := unix.Mount(options.Device, options.Target, options.Type, uintptr(options.Flag), options.Label); err != nil {
-		fatal(err)
-	}
-
-	os.Exit(0)
-}
diff --git a/vendor/github.com/containers/storage/drivers/overlay/overlay.go b/vendor/github.com/containers/storage/drivers/overlay/overlay.go
deleted file mode 100644
index 4458b679ab..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlay/overlay.go
+++ /dev/null
@@ -1,773 +0,0 @@
-// +build linux
-
-package overlay
-
-import (
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"sync"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/drivers/overlayutils"
-	"github.com/containers/storage/drivers/quota"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/chrootarchive"
-	"github.com/containers/storage/pkg/directory"
-	"github.com/containers/storage/pkg/fsutils"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/locker"
-	"github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/parsers"
-	"github.com/containers/storage/pkg/system"
-	units "github.com/docker/go-units"
-	"github.com/opencontainers/selinux/go-selinux/label"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-var (
-	// untar defines the untar method
-	untar = chrootarchive.UntarUncompressed
-)
-
-// This backend uses the overlay union filesystem for containers
-// with diff directories for each layer.
-
-// This version of the overlay driver requires at least kernel
-// 4.0.0 in order to support mounting multiple diff directories.
-
-// Each container/image has at least a "diff" directory and "link" file.
-// If there is also a "lower" file when there are diff layers
-// below as well as "merged" and "work" directories. The "diff" directory
-// has the upper layer of the overlay and is used to capture any
-// changes to the layer. The "lower" file contains all the lower layer
-// mounts separated by ":" and ordered from uppermost to lowermost
-// layers. The overlay itself is mounted in the "merged" directory,
-// and the "work" dir is needed for overlay to work.
-
-// The "link" file for each layer contains a unique string for the layer.
-// Under the "l" directory at the root there will be a symbolic link
-// with that unique string pointing the "diff" directory for the layer.
-// The symbolic links are used to reference lower layers in the "lower"
-// file and on mount. The links are used to shorten the total length
-// of a layer reference without requiring changes to the layer identifier
-// or root directory. Mounts are always done relative to root and
-// referencing the symbolic links in order to ensure the number of
-// lower directories can fit in a single page for making the mount
-// syscall. A hard upper limit of 128 lower layers is enforced to ensure
-// that mounts do not fail due to length.
-
-const (
-	linkDir   = "l"
-	lowerFile = "lower"
-	maxDepth  = 128
-
-	// idLength represents the number of random characters
-	// which can be used to create the unique link identifer
-	// for every layer. If this value is too long then the
-	// page size limit for the mount command may be exceeded.
-	// The idLength should be selected such that following equation
-	// is true (512 is a buffer for label metadata).
-	// ((idLength + len(linkDir) + 1) * maxDepth) <= (pageSize - 512)
-	idLength = 26
-)
-
-type overlayOptions struct {
-	overrideKernelCheck bool
-	imageStores         []string
-	quota               quota.Quota
-}
-
-// Driver contains information about the home directory and the list of active mounts that are created using this driver.
-type Driver struct {
-	name          string
-	home          string
-	uidMaps       []idtools.IDMap
-	gidMaps       []idtools.IDMap
-	ctr           *graphdriver.RefCounter
-	quotaCtl      *quota.Control
-	options       overlayOptions
-	naiveDiff     graphdriver.DiffDriver
-	supportsDType bool
-	locker        *locker.Locker
-}
-
-var (
-	backingFs             = "<unknown>"
-	projectQuotaSupported = false
-
-	useNaiveDiffLock sync.Once
-	useNaiveDiffOnly bool
-)
-
-func init() {
-	graphdriver.Register("overlay", Init)
-	graphdriver.Register("overlay2", Init)
-}
-
-// Init returns the a native diff driver for overlay filesystem.
-// If overlay filesystem is not supported on the host, graphdriver.ErrNotSupported is returned as error.
-// If an overlay filesystem is not supported over an existing filesystem then error graphdriver.ErrIncompatibleFS is returned.
-func Init(home string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-	opts, err := parseOptions(options)
-	if err != nil {
-		return nil, err
-	}
-
-	fsMagic, err := graphdriver.GetFSMagic(home)
-	if err != nil {
-		return nil, err
-	}
-	if fsName, ok := graphdriver.FsNames[fsMagic]; ok {
-		backingFs = fsName
-	}
-
-	// check if they are running over btrfs, aufs, zfs, overlay, or ecryptfs
-	switch fsMagic {
-	case graphdriver.FsMagicAufs, graphdriver.FsMagicZfs, graphdriver.FsMagicOverlay, graphdriver.FsMagicEcryptfs:
-		logrus.Errorf("'overlay' is not supported over %s", backingFs)
-		return nil, errors.Wrapf(graphdriver.ErrIncompatibleFS, "'overlay' is not supported over %s", backingFs)
-	}
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(uidMaps, gidMaps)
-	if err != nil {
-		return nil, err
-	}
-
-	// Create the driver home dir
-	if err := idtools.MkdirAllAs(path.Join(home, linkDir), 0700, rootUID, rootGID); err != nil && !os.IsExist(err) {
-		return nil, err
-	}
-
-	supportsDType, err := supportsOverlay(home, fsMagic, rootUID, rootGID)
-	if err != nil {
-		os.Remove(filepath.Join(home, linkDir))
-		os.Remove(home)
-		return nil, errors.Wrap(graphdriver.ErrNotSupported, "kernel does not support overlay fs")
-	}
-
-	if err := mount.MakePrivate(home); err != nil {
-		return nil, err
-	}
-
-	d := &Driver{
-		name:          "overlay",
-		home:          home,
-		uidMaps:       uidMaps,
-		gidMaps:       gidMaps,
-		ctr:           graphdriver.NewRefCounter(graphdriver.NewFsChecker(graphdriver.FsMagicOverlay)),
-		supportsDType: supportsDType,
-		locker:        locker.New(),
-		options:       *opts,
-	}
-
-	d.naiveDiff = graphdriver.NewNaiveDiffDriver(d, uidMaps, gidMaps)
-
-	if backingFs == "xfs" {
-		// Try to enable project quota support over xfs.
-		if d.quotaCtl, err = quota.NewControl(home); err == nil {
-			projectQuotaSupported = true
-		} else if opts.quota.Size > 0 {
-			return nil, fmt.Errorf("Storage option overlay.size not supported. Filesystem does not support Project Quota: %v", err)
-		}
-	} else if opts.quota.Size > 0 {
-		// if xfs is not the backing fs then error out if the storage-opt overlay.size is used.
-		return nil, fmt.Errorf("Storage option overlay.size only supported for backingFS XFS. Found %v", backingFs)
-	}
-
-	logrus.Debugf("backingFs=%s, projectQuotaSupported=%v, useNativeDiff=%v", backingFs, projectQuotaSupported, !useNaiveDiff(home))
-
-	return d, nil
-}
-
-func parseOptions(options []string) (*overlayOptions, error) {
-	o := &overlayOptions{}
-	for _, option := range options {
-		key, val, err := parsers.ParseKeyValueOpt(option)
-		if err != nil {
-			return nil, err
-		}
-		key = strings.ToLower(key)
-		switch key {
-		case ".override_kernel_check", "overlay.override_kernel_check", "overlay2.override_kernel_check":
-			logrus.Debugf("overlay: override_kernelcheck=%s", val)
-			o.overrideKernelCheck, err = strconv.ParseBool(val)
-			if err != nil {
-				return nil, err
-			}
-		case ".size", "overlay.size", "overlay2.size":
-			logrus.Debugf("overlay: size=%s", val)
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			o.quota.Size = uint64(size)
-		case ".imagestore", "overlay.imagestore", "overlay2.imagestore":
-			logrus.Debugf("overlay: imagestore=%s", val)
-			// Additional read only image stores to use for lower paths
-			for _, store := range strings.Split(val, ",") {
-				store = filepath.Clean(store)
-				if !filepath.IsAbs(store) {
-					return nil, fmt.Errorf("overlay: image path %q is not absolute.  Can not be relative", store)
-				}
-				st, err := os.Stat(store)
-				if err != nil {
-					return nil, fmt.Errorf("overlay: can't stat imageStore dir %s: %v", store, err)
-				}
-				if !st.IsDir() {
-					return nil, fmt.Errorf("overlay: image path %q must be a directory", store)
-				}
-				o.imageStores = append(o.imageStores, store)
-			}
-		default:
-			return nil, fmt.Errorf("overlay: Unknown option %s", key)
-		}
-	}
-	return o, nil
-}
-
-func supportsOverlay(home string, homeMagic graphdriver.FsMagic, rootUID, rootGID int) (supportsDType bool, err error) {
-	// We can try to modprobe overlay first
-	exec.Command("modprobe", "overlay").Run()
-
-	layerDir, err := ioutil.TempDir(home, "compat")
-	if err == nil {
-		// Check if reading the directory's contents populates the d_type field, which is required
-		// for proper operation of the overlay filesystem.
-		supportsDType, err = fsutils.SupportsDType(layerDir)
-		if err != nil {
-			return false, err
-		}
-		if !supportsDType {
-			return false, overlayutils.ErrDTypeNotSupported("overlay", backingFs)
-		}
-
-		// Try a test mount in the specific location we're looking at using.
-		mergedDir := filepath.Join(layerDir, "merged")
-		lower1Dir := filepath.Join(layerDir, "lower1")
-		lower2Dir := filepath.Join(layerDir, "lower2")
-		defer func() {
-			// Permitted to fail, since the various subdirectories
-			// can be empty or not even there, and the home might
-			// legitimately be not empty
-			_ = unix.Unmount(mergedDir, unix.MNT_DETACH)
-			_ = os.RemoveAll(layerDir)
-			_ = os.Remove(home)
-		}()
-		_ = idtools.MkdirAs(mergedDir, 0700, rootUID, rootGID)
-		_ = idtools.MkdirAs(lower1Dir, 0700, rootUID, rootGID)
-		_ = idtools.MkdirAs(lower2Dir, 0700, rootUID, rootGID)
-		flags := fmt.Sprintf("lowerdir=%s:%s", lower1Dir, lower2Dir)
-		if len(flags) < unix.Getpagesize() {
-			if mountFrom(filepath.Dir(home), "overlay", mergedDir, "overlay", 0, flags) == nil {
-				logrus.Debugf("overlay test mount with multiple lowers succeeded")
-				return supportsDType, nil
-			}
-		}
-		flags = fmt.Sprintf("lowerdir=%s", lower1Dir)
-		if len(flags) < unix.Getpagesize() {
-			if mountFrom(filepath.Dir(home), "overlay", mergedDir, "overlay", 0, flags) == nil {
-				logrus.Errorf("overlay test mount with multiple lowers failed, but succeeded with a single lower")
-				return supportsDType, errors.Wrap(graphdriver.ErrNotSupported, "kernel too old to provide multiple lowers feature for overlay")
-			}
-		}
-		logrus.Errorf("'overlay' is not supported over %s at %q", backingFs, home)
-		return supportsDType, errors.Wrapf(graphdriver.ErrIncompatibleFS, "'overlay' is not supported over %s at %q", backingFs, home)
-	}
-
-	logrus.Error("'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded.")
-	return supportsDType, errors.Wrap(graphdriver.ErrNotSupported, "'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded.")
-}
-
-func useNaiveDiff(home string) bool {
-	useNaiveDiffLock.Do(func() {
-		if err := doesSupportNativeDiff(home); err != nil {
-			logrus.Warnf("Not using native diff for overlay, this may cause degraded performance for building images: %v", err)
-			useNaiveDiffOnly = true
-		}
-	})
-	return useNaiveDiffOnly
-}
-
-func (d *Driver) String() string {
-	return d.name
-}
-
-// Status returns current driver information in a two dimensional string array.
-// Output contains "Backing Filesystem" used in this implementation.
-func (d *Driver) Status() [][2]string {
-	return [][2]string{
-		{"Backing Filesystem", backingFs},
-		{"Supports d_type", strconv.FormatBool(d.supportsDType)},
-		{"Native Overlay Diff", strconv.FormatBool(!useNaiveDiff(d.home))},
-	}
-}
-
-// Metadata returns meta data about the overlay driver such as
-// LowerDir, UpperDir, WorkDir and MergeDir used to store data.
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	dir := d.dir(id)
-	if _, err := os.Stat(dir); err != nil {
-		return nil, err
-	}
-
-	metadata := map[string]string{
-		"WorkDir":   path.Join(dir, "work"),
-		"MergedDir": path.Join(dir, "merged"),
-		"UpperDir":  path.Join(dir, "diff"),
-	}
-
-	lowerDirs, err := d.getLowerDirs(id)
-	if err != nil {
-		return nil, err
-	}
-	if len(lowerDirs) > 0 {
-		metadata["LowerDir"] = strings.Join(lowerDirs, ":")
-	}
-
-	return metadata, nil
-}
-
-// Cleanup any state created by overlay which should be cleaned when daemon
-// is being shutdown. For now, we just have to unmount the bind mounted
-// we had created.
-func (d *Driver) Cleanup() error {
-	return mount.Unmount(d.home)
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	if opts != nil && len(opts.StorageOpt) != 0 && !projectQuotaSupported {
-		return fmt.Errorf("--storage-opt is supported only for overlay over xfs with 'pquota' mount option")
-	}
-
-	if opts == nil {
-		opts = &graphdriver.CreateOpts{
-			StorageOpt: map[string]string{},
-		}
-	}
-
-	if _, ok := opts.StorageOpt["size"]; !ok {
-		if opts.StorageOpt == nil {
-			opts.StorageOpt = map[string]string{}
-		}
-		opts.StorageOpt["size"] = strconv.FormatUint(d.options.quota.Size, 10)
-	}
-
-	return d.create(id, parent, opts)
-}
-
-// Create is used to create the upper, lower, and merge directories required for overlay fs for a given id.
-// The parent filesystem is used to configure these directories for the overlay.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) (retErr error) {
-	if opts != nil && len(opts.StorageOpt) != 0 {
-		if _, ok := opts.StorageOpt["size"]; ok {
-			return fmt.Errorf("--storage-opt size is only supported for ReadWrite Layers")
-		}
-	}
-	return d.create(id, parent, opts)
-}
-
-func (d *Driver) create(id, parent string, opts *graphdriver.CreateOpts) (retErr error) {
-	dir := d.dir(id)
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps)
-	if err != nil {
-		return err
-	}
-	if err := idtools.MkdirAllAs(path.Dir(dir), 0700, rootUID, rootGID); err != nil {
-		return err
-	}
-	if err := idtools.MkdirAs(dir, 0700, rootUID, rootGID); err != nil {
-		return err
-	}
-
-	defer func() {
-		// Clean up on failure
-		if retErr != nil {
-			os.RemoveAll(dir)
-		}
-	}()
-
-	if opts != nil && len(opts.StorageOpt) > 0 {
-		driver := &Driver{}
-		if err := d.parseStorageOpt(opts.StorageOpt, driver); err != nil {
-			return err
-		}
-
-		if driver.options.quota.Size > 0 {
-			// Set container disk quota limit
-			if err := d.quotaCtl.SetQuota(dir, driver.options.quota); err != nil {
-				return err
-			}
-		}
-	}
-
-	if err := idtools.MkdirAs(path.Join(dir, "diff"), 0755, rootUID, rootGID); err != nil {
-		return err
-	}
-
-	lid := generateID(idLength)
-	if err := os.Symlink(path.Join("..", id, "diff"), path.Join(d.home, linkDir, lid)); err != nil {
-		return err
-	}
-
-	// Write link id to link file
-	if err := ioutil.WriteFile(path.Join(dir, "link"), []byte(lid), 0644); err != nil {
-		return err
-	}
-
-	if err := idtools.MkdirAs(path.Join(dir, "work"), 0700, rootUID, rootGID); err != nil {
-		return err
-	}
-	if err := idtools.MkdirAs(path.Join(dir, "merged"), 0700, rootUID, rootGID); err != nil {
-		return err
-	}
-
-	// if no parent directory, create a dummy lower directory and skip writing a "lowers" file
-	if parent == "" {
-		return idtools.MkdirAs(path.Join(dir, "empty"), 0700, rootUID, rootGID)
-	}
-
-	lower, err := d.getLower(parent)
-	if err != nil {
-		return err
-	}
-	if lower != "" {
-		if err := ioutil.WriteFile(path.Join(dir, lowerFile), []byte(lower), 0666); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-// Parse overlay storage options
-func (d *Driver) parseStorageOpt(storageOpt map[string]string, driver *Driver) error {
-	// Read size to set the disk project quota per container
-	for key, val := range storageOpt {
-		key := strings.ToLower(key)
-		switch key {
-		case "size":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return err
-			}
-			driver.options.quota.Size = uint64(size)
-		default:
-			return fmt.Errorf("Unknown option %s", key)
-		}
-	}
-
-	return nil
-}
-
-func (d *Driver) getLower(parent string) (string, error) {
-	parentDir := d.dir(parent)
-
-	// Ensure parent exists
-	if _, err := os.Lstat(parentDir); err != nil {
-		return "", err
-	}
-
-	// Read Parent link fileA
-	parentLink, err := ioutil.ReadFile(path.Join(parentDir, "link"))
-	if err != nil {
-		return "", err
-	}
-	lowers := []string{path.Join(linkDir, string(parentLink))}
-
-	parentLower, err := ioutil.ReadFile(path.Join(parentDir, lowerFile))
-	if err == nil {
-		parentLowers := strings.Split(string(parentLower), ":")
-		lowers = append(lowers, parentLowers...)
-	}
-	if len(lowers) > maxDepth {
-		return "", errors.New("max depth exceeded")
-	}
-	return strings.Join(lowers, ":"), nil
-}
-
-func (d *Driver) dir(id string) string {
-	newpath := path.Join(d.home, id)
-	if _, err := os.Stat(newpath); err != nil {
-		for _, p := range d.AdditionalImageStores() {
-			l := path.Join(p, d.name, id)
-			_, err = os.Stat(l)
-			if err == nil {
-				return l
-			}
-		}
-	}
-	return newpath
-}
-
-func (d *Driver) getLowerDirs(id string) ([]string, error) {
-	var lowersArray []string
-	lowers, err := ioutil.ReadFile(path.Join(d.dir(id), lowerFile))
-	if err == nil {
-		for _, s := range strings.Split(string(lowers), ":") {
-			lower := d.dir(s)
-			lp, err := os.Readlink(lower)
-			if err != nil {
-				return nil, err
-			}
-			lowersArray = append(lowersArray, path.Clean(d.dir(path.Join("link", lp))))
-		}
-	} else if !os.IsNotExist(err) {
-		return nil, err
-	}
-	return lowersArray, nil
-}
-
-// Remove cleans the directories that are created for this id.
-func (d *Driver) Remove(id string) error {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	dir := d.dir(id)
-	lid, err := ioutil.ReadFile(path.Join(dir, "link"))
-	if err == nil {
-		if err := os.RemoveAll(path.Join(d.home, linkDir, string(lid))); err != nil {
-			logrus.Debugf("Failed to remove link: %v", err)
-		}
-	}
-
-	if err := system.EnsureRemoveAll(dir); err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	return nil
-}
-
-// Get creates and mounts the required file system for the given id and returns the mount path.
-func (d *Driver) Get(id, mountLabel string) (_ string, retErr error) {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	dir := d.dir(id)
-	if _, err := os.Stat(dir); err != nil {
-		return "", err
-	}
-
-	diffDir := path.Join(dir, "diff")
-	lowers, err := ioutil.ReadFile(path.Join(dir, lowerFile))
-	if err != nil && !os.IsNotExist(err) {
-		return "", err
-	}
-
-	newlowers := ""
-	for _, l := range strings.Split(string(lowers), ":") {
-		lower := ""
-		newpath := path.Join(d.home, l)
-		if _, err := os.Stat(newpath); err != nil {
-			for _, p := range d.AdditionalImageStores() {
-				lower = path.Join(p, d.name, l)
-				if _, err2 := os.Stat(lower); err2 == nil {
-					break
-				}
-				lower = ""
-			}
-			if lower == "" {
-				return "", fmt.Errorf("Can't stat lower layer %q: %v", newpath, err)
-			}
-		} else {
-			lower = newpath
-		}
-		if newlowers == "" {
-			newlowers = lower
-		} else {
-			newlowers = newlowers + ":" + lower
-		}
-	}
-	if len(lowers) == 0 {
-		newlowers = path.Join(dir, "empty")
-		lowers = []byte(newlowers)
-	}
-
-	mergedDir := path.Join(dir, "merged")
-	if count := d.ctr.Increment(mergedDir); count > 1 {
-		return mergedDir, nil
-	}
-	defer func() {
-		if retErr != nil {
-			if c := d.ctr.Decrement(mergedDir); c <= 0 {
-				if mntErr := unix.Unmount(mergedDir, 0); mntErr != nil {
-					logrus.Errorf("error unmounting %v: %v", mergedDir, mntErr)
-				}
-			}
-		}
-	}()
-
-	workDir := path.Join(dir, "work")
-	opts := fmt.Sprintf("lowerdir=%s,upperdir=%s,workdir=%s", newlowers, diffDir, workDir)
-	mountData := label.FormatMountLabel(opts, mountLabel)
-	mount := unix.Mount
-	mountTarget := mergedDir
-
-	pageSize := unix.Getpagesize()
-
-	// Use relative paths and mountFrom when the mount data has exceeded
-	// the page size. The mount syscall fails if the mount data cannot
-	// fit within a page and relative links make the mount data much
-	// smaller at the expense of requiring a fork exec to chroot.
-	if len(mountData) > pageSize {
-		//FIXME: We need to figure out to get this to work with additional stores
-		opts = fmt.Sprintf("lowerdir=%s,upperdir=%s,workdir=%s", string(lowers), path.Join(id, "diff"), path.Join(id, "work"))
-		mountData = label.FormatMountLabel(opts, mountLabel)
-		if len(mountData) > pageSize {
-			return "", fmt.Errorf("cannot mount layer, mount label too large %d", len(mountData))
-		}
-
-		mount = func(source string, target string, mType string, flags uintptr, label string) error {
-			return mountFrom(d.home, source, target, mType, flags, label)
-		}
-		mountTarget = path.Join(id, "merged")
-	}
-	if err := mount("overlay", mountTarget, "overlay", 0, mountData); err != nil {
-		return "", fmt.Errorf("error creating overlay mount to %s: %v", mountTarget, err)
-	}
-
-	// chown "workdir/work" to the remapped root UID/GID. Overlay fs inside a
-	// user namespace requires this to move a directory from lower to upper.
-	rootUID, rootGID, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps)
-	if err != nil {
-		return "", err
-	}
-
-	if err := os.Chown(path.Join(workDir, "work"), rootUID, rootGID); err != nil {
-		return "", err
-	}
-
-	return mergedDir, nil
-}
-
-// Put unmounts the mount path created for the give id.
-func (d *Driver) Put(id string) error {
-	d.locker.Lock(id)
-	defer d.locker.Unlock(id)
-	dir := d.dir(id)
-	if _, err := os.Stat(dir); err != nil {
-		return err
-	}
-	mountpoint := path.Join(d.dir(id), "merged")
-	if count := d.ctr.Decrement(mountpoint); count > 0 {
-		return nil
-	}
-	if _, err := ioutil.ReadFile(path.Join(dir, lowerFile)); err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	if err := unix.Unmount(mountpoint, unix.MNT_DETACH); err != nil {
-		logrus.Debugf("Failed to unmount %s overlay: %s - %v", id, mountpoint, err)
-	}
-	return nil
-}
-
-// Exists checks to see if the id is already mounted.
-func (d *Driver) Exists(id string) bool {
-	_, err := os.Stat(d.dir(id))
-	return err == nil
-}
-
-// isParent returns if the passed in parent is the direct parent of the passed in layer
-func (d *Driver) isParent(id, parent string) bool {
-	lowers, err := d.getLowerDirs(id)
-	if err != nil {
-		return false
-	}
-	if parent == "" && len(lowers) > 0 {
-		return false
-	}
-
-	parentDir := d.dir(parent)
-	var ld string
-	if len(lowers) > 0 {
-		ld = filepath.Dir(lowers[0])
-	}
-	if ld == "" && parent == "" {
-		return true
-	}
-	return ld == parentDir
-}
-
-// ApplyDiff applies the new layer into a root
-func (d *Driver) ApplyDiff(id, parent, mountLabel string, diff io.Reader) (size int64, err error) {
-	if !d.isParent(id, parent) {
-		return d.naiveDiff.ApplyDiff(id, parent, mountLabel, diff)
-	}
-
-	applyDir := d.getDiffPath(id)
-
-	logrus.Debugf("Applying tar in %s", applyDir)
-	// Overlay doesn't need the parent id to apply the diff
-	if err := untar(diff, applyDir, &archive.TarOptions{
-		UIDMaps:        d.uidMaps,
-		GIDMaps:        d.gidMaps,
-		WhiteoutFormat: archive.OverlayWhiteoutFormat,
-	}); err != nil {
-		return 0, err
-	}
-
-	return directory.Size(applyDir)
-}
-
-func (d *Driver) getDiffPath(id string) string {
-	dir := d.dir(id)
-
-	return path.Join(dir, "diff")
-}
-
-// DiffSize calculates the changes between the specified id
-// and its parent and returns the size in bytes of the changes
-// relative to its base filesystem directory.
-func (d *Driver) DiffSize(id, parent, mountLabel string) (size int64, err error) {
-	if useNaiveDiff(d.home) || !d.isParent(id, parent) {
-		return d.naiveDiff.DiffSize(id, parent, mountLabel)
-	}
-	return directory.Size(d.getDiffPath(id))
-}
-
-// Diff produces an archive of the changes between the specified
-// layer and its parent layer which may be "".
-func (d *Driver) Diff(id, parent, mountLabel string) (io.ReadCloser, error) {
-	if useNaiveDiff(d.home) || !d.isParent(id, parent) {
-		return d.naiveDiff.Diff(id, parent, mountLabel)
-	}
-
-	diffPath := d.getDiffPath(id)
-	logrus.Debugf("Tar with options on %s", diffPath)
-	return archive.TarWithOptions(diffPath, &archive.TarOptions{
-		Compression:    archive.Uncompressed,
-		UIDMaps:        d.uidMaps,
-		GIDMaps:        d.gidMaps,
-		WhiteoutFormat: archive.OverlayWhiteoutFormat,
-	})
-}
-
-// Changes produces a list of changes between the specified layer
-// and its parent layer. If parent is "", then all changes will be ADD changes.
-func (d *Driver) Changes(id, parent, mountLabel string) ([]archive.Change, error) {
-	if useNaiveDiff(d.home) || !d.isParent(id, parent) {
-		return d.naiveDiff.Changes(id, parent, mountLabel)
-	}
-	// Overlay doesn't have snapshots, so we need to get changes from all parent
-	// layers.
-	diffPath := d.getDiffPath(id)
-	layers, err := d.getLowerDirs(id)
-	if err != nil {
-		return nil, err
-	}
-
-	return archive.OverlayChanges(layers, diffPath)
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	return d.options.imageStores
-}
diff --git a/vendor/github.com/containers/storage/drivers/overlay/overlay_unsupported.go b/vendor/github.com/containers/storage/drivers/overlay/overlay_unsupported.go
deleted file mode 100644
index 3dbb4de44e..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlay/overlay_unsupported.go
+++ /dev/null
@@ -1,3 +0,0 @@
-// +build !linux
-
-package overlay
diff --git a/vendor/github.com/containers/storage/drivers/overlay/randomid.go b/vendor/github.com/containers/storage/drivers/overlay/randomid.go
deleted file mode 100644
index fc565ef0ba..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlay/randomid.go
+++ /dev/null
@@ -1,81 +0,0 @@
-// +build linux
-
-package overlay
-
-import (
-	"crypto/rand"
-	"encoding/base32"
-	"fmt"
-	"io"
-	"os"
-	"syscall"
-	"time"
-
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-// generateID creates a new random string identifier with the given length
-func generateID(l int) string {
-	const (
-		// ensures we backoff for less than 450ms total. Use the following to
-		// select new value, in units of 10ms:
-		// 	n*(n+1)/2 = d -> n^2 + n - 2d -> n = (sqrt(8d + 1) - 1)/2
-		maxretries = 9
-		backoff    = time.Millisecond * 10
-	)
-
-	var (
-		totalBackoff time.Duration
-		count        int
-		retries      int
-		size         = (l*5 + 7) / 8
-		u            = make([]byte, size)
-	)
-	// TODO: Include time component, counter component, random component
-
-	for {
-		// This should never block but the read may fail. Because of this,
-		// we just try to read the random number generator until we get
-		// something. This is a very rare condition but may happen.
-		b := time.Duration(retries) * backoff
-		time.Sleep(b)
-		totalBackoff += b
-
-		n, err := io.ReadFull(rand.Reader, u[count:])
-		if err != nil {
-			if retryOnError(err) && retries < maxretries {
-				count += n
-				retries++
-				logrus.Errorf("error generating version 4 uuid, retrying: %v", err)
-				continue
-			}
-
-			// Any other errors represent a system problem. What did someone
-			// do to /dev/urandom?
-			panic(fmt.Errorf("error reading random number generator, retried for %v: %v", totalBackoff.String(), err))
-		}
-
-		break
-	}
-
-	s := base32.StdEncoding.EncodeToString(u)
-
-	return s[:l]
-}
-
-// retryOnError tries to detect whether or not retrying would be fruitful.
-func retryOnError(err error) bool {
-	switch err := err.(type) {
-	case *os.PathError:
-		return retryOnError(err.Err) // unpack the target error
-	case syscall.Errno:
-		if err == unix.EPERM {
-			// EPERM represents an entropy pool exhaustion, a condition under
-			// which we backoff and retry.
-			return true
-		}
-	}
-
-	return false
-}
diff --git a/vendor/github.com/containers/storage/drivers/overlayutils/overlayutils.go b/vendor/github.com/containers/storage/drivers/overlayutils/overlayutils.go
deleted file mode 100644
index 467733647c..0000000000
--- a/vendor/github.com/containers/storage/drivers/overlayutils/overlayutils.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// +build linux
-
-package overlayutils
-
-import (
-	"errors"
-	"fmt"
-)
-
-// ErrDTypeNotSupported denotes that the backing filesystem doesn't support d_type.
-func ErrDTypeNotSupported(driver, backingFs string) error {
-	msg := fmt.Sprintf("%s: the backing %s filesystem is formatted without d_type support, which leads to incorrect behavior.", driver, backingFs)
-	if backingFs == "xfs" {
-		msg += " Reformat the filesystem with ftype=1 to enable d_type support."
-	}
-	msg += " Running without d_type is not supported."
-	return errors.New(msg)
-}
diff --git a/vendor/github.com/containers/storage/drivers/quota/projectquota.go b/vendor/github.com/containers/storage/drivers/quota/projectquota.go
deleted file mode 100644
index 93e7443713..0000000000
--- a/vendor/github.com/containers/storage/drivers/quota/projectquota.go
+++ /dev/null
@@ -1,337 +0,0 @@
-// +build linux
-
-//
-// projectquota.go - implements XFS project quota controls
-// for setting quota limits on a newly created directory.
-// It currently supports the legacy XFS specific ioctls.
-//
-// TODO: use generic quota control ioctl FS_IOC_FS{GET,SET}XATTR
-//       for both xfs/ext4 for kernel version >= v4.5
-//
-
-package quota
-
-/*
-#include <stdlib.h>
-#include <dirent.h>
-#include <linux/fs.h>
-#include <linux/quota.h>
-#include <linux/dqblk_xfs.h>
-
-#ifndef FS_XFLAG_PROJINHERIT
-struct fsxattr {
-	__u32		fsx_xflags;
-	__u32		fsx_extsize;
-	__u32		fsx_nextents;
-	__u32		fsx_projid;
-	unsigned char	fsx_pad[12];
-};
-#define FS_XFLAG_PROJINHERIT	0x00000200
-#endif
-#ifndef FS_IOC_FSGETXATTR
-#define FS_IOC_FSGETXATTR		_IOR ('X', 31, struct fsxattr)
-#endif
-#ifndef FS_IOC_FSSETXATTR
-#define FS_IOC_FSSETXATTR		_IOW ('X', 32, struct fsxattr)
-#endif
-
-#ifndef PRJQUOTA
-#define PRJQUOTA	2
-#endif
-#ifndef XFS_PROJ_QUOTA
-#define XFS_PROJ_QUOTA	2
-#endif
-#ifndef Q_XSETPQLIM
-#define Q_XSETPQLIM QCMD(Q_XSETQLIM, PRJQUOTA)
-#endif
-#ifndef Q_XGETPQUOTA
-#define Q_XGETPQUOTA QCMD(Q_XGETQUOTA, PRJQUOTA)
-#endif
-*/
-import "C"
-import (
-	"fmt"
-	"io/ioutil"
-	"path"
-	"path/filepath"
-	"unsafe"
-
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-// Quota limit params - currently we only control blocks hard limit
-type Quota struct {
-	Size uint64
-}
-
-// Control - Context to be used by storage driver (e.g. overlay)
-// who wants to apply project quotas to container dirs
-type Control struct {
-	backingFsBlockDev string
-	nextProjectID     uint32
-	quotas            map[string]uint32
-}
-
-// NewControl - initialize project quota support.
-// Test to make sure that quota can be set on a test dir and find
-// the first project id to be used for the next container create.
-//
-// Returns nil (and error) if project quota is not supported.
-//
-// First get the project id of the home directory.
-// This test will fail if the backing fs is not xfs.
-//
-// xfs_quota tool can be used to assign a project id to the driver home directory, e.g.:
-//    echo 999:/var/lib/containers/storage/overlay >> /etc/projects
-//    echo storage:999 >> /etc/projid
-//    xfs_quota -x -c 'project -s storage' /<xfs mount point>
-//
-// In that case, the home directory project id will be used as a "start offset"
-// and all containers will be assigned larger project ids (e.g. >= 1000).
-// This is a way to prevent xfs_quota management from conflicting with containers/storage.
-//
-// Then try to create a test directory with the next project id and set a quota
-// on it. If that works, continue to scan existing containers to map allocated
-// project ids.
-//
-func NewControl(basePath string) (*Control, error) {
-	//
-	// Get project id of parent dir as minimal id to be used by driver
-	//
-	minProjectID, err := getProjectID(basePath)
-	if err != nil {
-		return nil, err
-	}
-	minProjectID++
-
-	//
-	// create backing filesystem device node
-	//
-	backingFsBlockDev, err := makeBackingFsDev(basePath)
-	if err != nil {
-		return nil, err
-	}
-
-	//
-	// Test if filesystem supports project quotas by trying to set
-	// a quota on the first available project id
-	//
-	quota := Quota{
-		Size: 0,
-	}
-	if err := setProjectQuota(backingFsBlockDev, minProjectID, quota); err != nil {
-		return nil, err
-	}
-
-	q := Control{
-		backingFsBlockDev: backingFsBlockDev,
-		nextProjectID:     minProjectID + 1,
-		quotas:            make(map[string]uint32),
-	}
-
-	//
-	// get first project id to be used for next container
-	//
-	err = q.findNextProjectID(basePath)
-	if err != nil {
-		return nil, err
-	}
-
-	logrus.Debugf("NewControl(%s): nextProjectID = %d", basePath, q.nextProjectID)
-	return &q, nil
-}
-
-// SetQuota - assign a unique project id to directory and set the quota limits
-// for that project id
-func (q *Control) SetQuota(targetPath string, quota Quota) error {
-
-	projectID, ok := q.quotas[targetPath]
-	if !ok {
-		projectID = q.nextProjectID
-
-		//
-		// assign project id to new container directory
-		//
-		err := setProjectID(targetPath, projectID)
-		if err != nil {
-			return err
-		}
-
-		q.quotas[targetPath] = projectID
-		q.nextProjectID++
-	}
-
-	//
-	// set the quota limit for the container's project id
-	//
-	logrus.Debugf("SetQuota(%s, %d): projectID=%d", targetPath, quota.Size, projectID)
-	return setProjectQuota(q.backingFsBlockDev, projectID, quota)
-}
-
-// setProjectQuota - set the quota for project id on xfs block device
-func setProjectQuota(backingFsBlockDev string, projectID uint32, quota Quota) error {
-	var d C.fs_disk_quota_t
-	d.d_version = C.FS_DQUOT_VERSION
-	d.d_id = C.__u32(projectID)
-	d.d_flags = C.XFS_PROJ_QUOTA
-
-	d.d_fieldmask = C.FS_DQ_BHARD | C.FS_DQ_BSOFT
-	d.d_blk_hardlimit = C.__u64(quota.Size / 512)
-	d.d_blk_softlimit = d.d_blk_hardlimit
-
-	var cs = C.CString(backingFsBlockDev)
-	defer C.free(unsafe.Pointer(cs))
-
-	_, _, errno := unix.Syscall6(unix.SYS_QUOTACTL, C.Q_XSETPQLIM,
-		uintptr(unsafe.Pointer(cs)), uintptr(d.d_id),
-		uintptr(unsafe.Pointer(&d)), 0, 0)
-	if errno != 0 {
-		return fmt.Errorf("Failed to set quota limit for projid %d on %s: %v",
-			projectID, backingFsBlockDev, errno.Error())
-	}
-
-	return nil
-}
-
-// GetQuota - get the quota limits of a directory that was configured with SetQuota
-func (q *Control) GetQuota(targetPath string, quota *Quota) error {
-
-	projectID, ok := q.quotas[targetPath]
-	if !ok {
-		return fmt.Errorf("quota not found for path : %s", targetPath)
-	}
-
-	//
-	// get the quota limit for the container's project id
-	//
-	var d C.fs_disk_quota_t
-
-	var cs = C.CString(q.backingFsBlockDev)
-	defer C.free(unsafe.Pointer(cs))
-
-	_, _, errno := unix.Syscall6(unix.SYS_QUOTACTL, C.Q_XGETPQUOTA,
-		uintptr(unsafe.Pointer(cs)), uintptr(C.__u32(projectID)),
-		uintptr(unsafe.Pointer(&d)), 0, 0)
-	if errno != 0 {
-		return fmt.Errorf("Failed to get quota limit for projid %d on %s: %v",
-			projectID, q.backingFsBlockDev, errno.Error())
-	}
-	quota.Size = uint64(d.d_blk_hardlimit) * 512
-
-	return nil
-}
-
-// getProjectID - get the project id of path on xfs
-func getProjectID(targetPath string) (uint32, error) {
-	dir, err := openDir(targetPath)
-	if err != nil {
-		return 0, err
-	}
-	defer closeDir(dir)
-
-	var fsx C.struct_fsxattr
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.FS_IOC_FSGETXATTR,
-		uintptr(unsafe.Pointer(&fsx)))
-	if errno != 0 {
-		return 0, fmt.Errorf("Failed to get projid for %s: %v", targetPath, errno.Error())
-	}
-
-	return uint32(fsx.fsx_projid), nil
-}
-
-// setProjectID - set the project id of path on xfs
-func setProjectID(targetPath string, projectID uint32) error {
-	dir, err := openDir(targetPath)
-	if err != nil {
-		return err
-	}
-	defer closeDir(dir)
-
-	var fsx C.struct_fsxattr
-	_, _, errno := unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.FS_IOC_FSGETXATTR,
-		uintptr(unsafe.Pointer(&fsx)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to get projid for %s: %v", targetPath, errno.Error())
-	}
-	fsx.fsx_projid = C.__u32(projectID)
-	fsx.fsx_xflags |= C.FS_XFLAG_PROJINHERIT
-	_, _, errno = unix.Syscall(unix.SYS_IOCTL, getDirFd(dir), C.FS_IOC_FSSETXATTR,
-		uintptr(unsafe.Pointer(&fsx)))
-	if errno != 0 {
-		return fmt.Errorf("Failed to set projid for %s: %v", targetPath, errno.Error())
-	}
-
-	return nil
-}
-
-// findNextProjectID - find the next project id to be used for containers
-// by scanning driver home directory to find used project ids
-func (q *Control) findNextProjectID(home string) error {
-	files, err := ioutil.ReadDir(home)
-	if err != nil {
-		return fmt.Errorf("read directory failed : %s", home)
-	}
-	for _, file := range files {
-		if !file.IsDir() {
-			continue
-		}
-		path := filepath.Join(home, file.Name())
-		projid, err := getProjectID(path)
-		if err != nil {
-			return err
-		}
-		if projid > 0 {
-			q.quotas[path] = projid
-		}
-		if q.nextProjectID <= projid {
-			q.nextProjectID = projid + 1
-		}
-	}
-
-	return nil
-}
-
-func free(p *C.char) {
-	C.free(unsafe.Pointer(p))
-}
-
-func openDir(path string) (*C.DIR, error) {
-	Cpath := C.CString(path)
-	defer free(Cpath)
-
-	dir := C.opendir(Cpath)
-	if dir == nil {
-		return nil, fmt.Errorf("Can't open dir")
-	}
-	return dir, nil
-}
-
-func closeDir(dir *C.DIR) {
-	if dir != nil {
-		C.closedir(dir)
-	}
-}
-
-func getDirFd(dir *C.DIR) uintptr {
-	return uintptr(C.dirfd(dir))
-}
-
-// Get the backing block device of the driver home directory
-// and create a block device node under the home directory
-// to be used by quotactl commands
-func makeBackingFsDev(home string) (string, error) {
-	var stat unix.Stat_t
-	if err := unix.Stat(home, &stat); err != nil {
-		return "", err
-	}
-
-	backingFsBlockDev := path.Join(home, "backingFsBlockDev")
-	// Re-create just in case someone copied the home directory over to a new device
-	unix.Unlink(backingFsBlockDev)
-	if err := unix.Mknod(backingFsBlockDev, unix.S_IFBLK|0600, int(stat.Dev)); err != nil {
-		return "", fmt.Errorf("Failed to mknod %s: %v", backingFsBlockDev, err)
-	}
-
-	return backingFsBlockDev, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/register/register_aufs.go b/vendor/github.com/containers/storage/drivers/register/register_aufs.go
deleted file mode 100644
index 7743dcedbd..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_aufs.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !exclude_graphdriver_aufs,linux
-
-package register
-
-import (
-	// register the aufs graphdriver
-	_ "github.com/containers/storage/drivers/aufs"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_btrfs.go b/vendor/github.com/containers/storage/drivers/register/register_btrfs.go
deleted file mode 100644
index 40ff1cdd0d..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_btrfs.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !exclude_graphdriver_btrfs,linux
-
-package register
-
-import (
-	// register the btrfs graphdriver
-	_ "github.com/containers/storage/drivers/btrfs"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_devicemapper.go b/vendor/github.com/containers/storage/drivers/register/register_devicemapper.go
deleted file mode 100644
index 08ac984b05..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_devicemapper.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !exclude_graphdriver_devicemapper,linux
-
-package register
-
-import (
-	// register the devmapper graphdriver
-	_ "github.com/containers/storage/drivers/devmapper"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_overlay.go b/vendor/github.com/containers/storage/drivers/register/register_overlay.go
deleted file mode 100644
index 2d61219bbb..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_overlay.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !exclude_graphdriver_overlay,linux
-
-package register
-
-import (
-	// register the overlay graphdriver
-	_ "github.com/containers/storage/drivers/overlay"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_vfs.go b/vendor/github.com/containers/storage/drivers/register/register_vfs.go
deleted file mode 100644
index 691ce85929..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_vfs.go
+++ /dev/null
@@ -1,6 +0,0 @@
-package register
-
-import (
-	// register vfs
-	_ "github.com/containers/storage/drivers/vfs"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_windows.go b/vendor/github.com/containers/storage/drivers/register/register_windows.go
deleted file mode 100644
index 048b27097d..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_windows.go
+++ /dev/null
@@ -1,6 +0,0 @@
-package register
-
-import (
-	// register the windows graph driver
-	_ "github.com/containers/storage/drivers/windows"
-)
diff --git a/vendor/github.com/containers/storage/drivers/register/register_zfs.go b/vendor/github.com/containers/storage/drivers/register/register_zfs.go
deleted file mode 100644
index c748468e5c..0000000000
--- a/vendor/github.com/containers/storage/drivers/register/register_zfs.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !exclude_graphdriver_zfs,linux !exclude_graphdriver_zfs,freebsd, solaris
-
-package register
-
-import (
-	// register the zfs driver
-	_ "github.com/containers/storage/drivers/zfs"
-)
diff --git a/vendor/github.com/containers/storage/drivers/vfs/driver.go b/vendor/github.com/containers/storage/drivers/vfs/driver.go
deleted file mode 100644
index ae62207d17..0000000000
--- a/vendor/github.com/containers/storage/drivers/vfs/driver.go
+++ /dev/null
@@ -1,160 +0,0 @@
-package vfs
-
-import (
-	"fmt"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/chrootarchive"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/system"
-	"github.com/opencontainers/selinux/go-selinux/label"
-)
-
-var (
-	// CopyWithTar defines the copy method to use.
-	CopyWithTar = chrootarchive.NewArchiver(nil).CopyWithTar
-)
-
-func init() {
-	graphdriver.Register("vfs", Init)
-}
-
-// Init returns a new VFS driver.
-// This sets the home directory for the driver and returns NaiveDiffDriver.
-func Init(home string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-	d := &Driver{
-		homes:      []string{home},
-		idMappings: idtools.NewIDMappingsFromMaps(uidMaps, gidMaps),
-	}
-	rootIDs := d.idMappings.RootPair()
-	if err := idtools.MkdirAllAndChown(home, 0700, rootIDs); err != nil {
-		return nil, err
-	}
-	for _, option := range options {
-		if strings.HasPrefix(option, "vfs.imagestore=") {
-			d.homes = append(d.homes, strings.Split(option[15:], ",")...)
-			continue
-		}
-		if strings.HasPrefix(option, ".imagestore=") {
-			d.homes = append(d.homes, strings.Split(option[12:], ",")...)
-			continue
-		}
-	}
-	return graphdriver.NewNaiveDiffDriver(d, uidMaps, gidMaps), nil
-}
-
-// Driver holds information about the driver, home directory of the driver.
-// Driver implements graphdriver.ProtoDriver. It uses only basic vfs operations.
-// In order to support layering, files are copied from the parent layer into the new layer. There is no copy-on-write support.
-// Driver must be wrapped in NaiveDiffDriver to be used as a graphdriver.Driver
-type Driver struct {
-	homes      []string
-	idMappings *idtools.IDMappings
-}
-
-func (d *Driver) String() string {
-	return "vfs"
-}
-
-// Status is used for implementing the graphdriver.ProtoDriver interface. VFS does not currently have any status information.
-func (d *Driver) Status() [][2]string {
-	return nil
-}
-
-// Metadata is used for implementing the graphdriver.ProtoDriver interface. VFS does not currently have any meta data.
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	return nil, nil
-}
-
-// Cleanup is used to implement graphdriver.ProtoDriver. There is no cleanup required for this driver.
-func (d *Driver) Cleanup() error {
-	return nil
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	return d.Create(id, parent, opts)
-}
-
-// Create prepares the filesystem for the VFS driver and copies the directory for the given id under the parent.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-	if opts != nil && len(opts.StorageOpt) != 0 {
-		return fmt.Errorf("--storage-opt is not supported for vfs")
-	}
-
-	dir := d.dir(id)
-	rootIDs := d.idMappings.RootPair()
-	if err := idtools.MkdirAllAndChown(filepath.Dir(dir), 0700, rootIDs); err != nil {
-		return err
-	}
-	if err := idtools.MkdirAndChown(dir, 0755, rootIDs); err != nil {
-		return err
-	}
-	labelOpts := []string{"level:s0"}
-	if _, mountLabel, err := label.InitLabels(labelOpts); err == nil {
-		label.SetFileLabel(dir, mountLabel)
-	}
-	if parent == "" {
-		return nil
-	}
-	parentDir, err := d.Get(parent, "")
-	if err != nil {
-		return fmt.Errorf("%s: %s", parent, err)
-	}
-	return CopyWithTar(parentDir, dir)
-}
-
-func (d *Driver) dir(id string) string {
-	for i, home := range d.homes {
-		if i > 0 {
-			home = filepath.Join(home, d.String())
-		}
-		candidate := filepath.Join(home, "dir", filepath.Base(id))
-		fi, err := os.Stat(candidate)
-		if err == nil && fi.IsDir() {
-			return candidate
-		}
-	}
-	return filepath.Join(d.homes[0], "dir", filepath.Base(id))
-}
-
-// Remove deletes the content from the directory for a given id.
-func (d *Driver) Remove(id string) error {
-	return system.EnsureRemoveAll(d.dir(id))
-}
-
-// Get returns the directory for the given id.
-func (d *Driver) Get(id, mountLabel string) (string, error) {
-	dir := d.dir(id)
-	if st, err := os.Stat(dir); err != nil {
-		return "", err
-	} else if !st.IsDir() {
-		return "", fmt.Errorf("%s: not a directory", dir)
-	}
-	return dir, nil
-}
-
-// Put is a noop for vfs that return nil for the error, since this driver has no runtime resources to clean up.
-func (d *Driver) Put(id string) error {
-	// The vfs driver has no runtime resources (e.g. mounts)
-	// to clean up, so we don't need anything here
-	return nil
-}
-
-// Exists checks to see if the directory exists for the given id.
-func (d *Driver) Exists(id string) bool {
-	_, err := os.Stat(d.dir(id))
-	return err == nil
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	if len(d.homes) > 1 {
-		return d.homes[1:]
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/windows/windows.go b/vendor/github.com/containers/storage/drivers/windows/windows.go
deleted file mode 100644
index e9e9f5c65a..0000000000
--- a/vendor/github.com/containers/storage/drivers/windows/windows.go
+++ /dev/null
@@ -1,965 +0,0 @@
-//+build windows
-
-package windows
-
-import (
-	"bufio"
-	"bytes"
-	"encoding/json"
-	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"sync"
-	"syscall"
-	"time"
-	"unsafe"
-
-	"github.com/Microsoft/go-winio"
-	"github.com/Microsoft/go-winio/archive/tar"
-	"github.com/Microsoft/go-winio/backuptar"
-	"github.com/Microsoft/hcsshim"
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/longpath"
-	"github.com/containers/storage/pkg/reexec"
-	"github.com/containers/storage/pkg/system"
-	units "github.com/docker/go-units"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/windows"
-)
-
-// filterDriver is an HCSShim driver type for the Windows Filter driver.
-const filterDriver = 1
-
-var (
-	// mutatedFiles is a list of files that are mutated by the import process
-	// and must be backed up and restored.
-	mutatedFiles = map[string]string{
-		"UtilityVM/Files/EFI/Microsoft/Boot/BCD":      "bcd.bak",
-		"UtilityVM/Files/EFI/Microsoft/Boot/BCD.LOG":  "bcd.log.bak",
-		"UtilityVM/Files/EFI/Microsoft/Boot/BCD.LOG1": "bcd.log1.bak",
-		"UtilityVM/Files/EFI/Microsoft/Boot/BCD.LOG2": "bcd.log2.bak",
-	}
-	noreexec = false
-)
-
-// init registers the windows graph drivers to the register.
-func init() {
-	graphdriver.Register("windowsfilter", InitFilter)
-	// DOCKER_WINDOWSFILTER_NOREEXEC allows for inline processing which makes
-	// debugging issues in the re-exec codepath significantly easier.
-	if os.Getenv("DOCKER_WINDOWSFILTER_NOREEXEC") != "" {
-		logrus.Warnf("WindowsGraphDriver is set to not re-exec. This is intended for debugging purposes only.")
-		noreexec = true
-	} else {
-		reexec.Register("docker-windows-write-layer", writeLayerReexec)
-	}
-}
-
-type checker struct {
-}
-
-func (c *checker) IsMounted(path string) bool {
-	return false
-}
-
-// Driver represents a windows graph driver.
-type Driver struct {
-	// info stores the shim driver information
-	info hcsshim.DriverInfo
-	ctr  *graphdriver.RefCounter
-	// it is safe for windows to use a cache here because it does not support
-	// restoring containers when the daemon dies.
-	cacheMu sync.Mutex
-	cache   map[string]string
-}
-
-// InitFilter returns a new Windows storage filter driver.
-func InitFilter(home string, options []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-	logrus.Debugf("WindowsGraphDriver InitFilter at %s", home)
-
-	fsType, err := getFileSystemType(string(home[0]))
-	if err != nil {
-		return nil, err
-	}
-	if strings.ToLower(fsType) == "refs" {
-		return nil, fmt.Errorf("%s is on an ReFS volume - ReFS volumes are not supported", home)
-	}
-
-	if err := idtools.MkdirAllAs(home, 0700, 0, 0); err != nil {
-		return nil, fmt.Errorf("windowsfilter failed to create '%s': %v", home, err)
-	}
-
-	d := &Driver{
-		info: hcsshim.DriverInfo{
-			HomeDir: home,
-			Flavour: filterDriver,
-		},
-		cache: make(map[string]string),
-		ctr:   graphdriver.NewRefCounter(&checker{}),
-	}
-	return d, nil
-}
-
-// win32FromHresult is a helper function to get the win32 error code from an HRESULT
-func win32FromHresult(hr uintptr) uintptr {
-	if hr&0x1fff0000 == 0x00070000 {
-		return hr & 0xffff
-	}
-	return hr
-}
-
-// getFileSystemType obtains the type of a file system through GetVolumeInformation
-// https://msdn.microsoft.com/en-us/library/windows/desktop/aa364993(v=vs.85).aspx
-func getFileSystemType(drive string) (fsType string, hr error) {
-	var (
-		modkernel32              = windows.NewLazySystemDLL("kernel32.dll")
-		procGetVolumeInformation = modkernel32.NewProc("GetVolumeInformationW")
-		buf                      = make([]uint16, 255)
-		size                     = windows.MAX_PATH + 1
-	)
-	if len(drive) != 1 {
-		hr = errors.New("getFileSystemType must be called with a drive letter")
-		return
-	}
-	drive += `:\`
-	n := uintptr(unsafe.Pointer(nil))
-	r0, _, _ := syscall.Syscall9(procGetVolumeInformation.Addr(), 8, uintptr(unsafe.Pointer(windows.StringToUTF16Ptr(drive))), n, n, n, n, n, uintptr(unsafe.Pointer(&buf[0])), uintptr(size), 0)
-	if int32(r0) < 0 {
-		hr = syscall.Errno(win32FromHresult(r0))
-	}
-	fsType = windows.UTF16ToString(buf)
-	return
-}
-
-// String returns the string representation of a driver. This should match
-// the name the graph driver has been registered with.
-func (d *Driver) String() string {
-	return "windowsfilter"
-}
-
-// Status returns the status of the driver.
-func (d *Driver) Status() [][2]string {
-	return [][2]string{
-		{"Windows", ""},
-	}
-}
-
-// panicIfUsedByLcow does exactly what it says.
-// TODO @jhowardmsft - this is a temporary measure for the bring-up of
-// Linux containers on Windows. It is a failsafe to ensure that the right
-// graphdriver is used.
-func panicIfUsedByLcow() {
-	if system.LCOWSupported() {
-		panic("inconsistency - windowsfilter graphdriver should not be used when in LCOW mode")
-	}
-}
-
-// Exists returns true if the given id is registered with this driver.
-func (d *Driver) Exists(id string) bool {
-	panicIfUsedByLcow()
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return false
-	}
-	result, err := hcsshim.LayerExists(d.info, rID)
-	if err != nil {
-		return false
-	}
-	return result
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	panicIfUsedByLcow()
-	if opts != nil {
-		return d.create(id, parent, opts.MountLabel, false, opts.StorageOpt)
-	}
-	return d.create(id, parent, "", false, nil)
-}
-
-// Create creates a new read-only layer with the given id.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-	panicIfUsedByLcow()
-	if opts != nil {
-		return d.create(id, parent, opts.MountLabel, true, opts.StorageOpt)
-	}
-	return d.create(id, parent, "", true, nil)
-}
-
-func (d *Driver) create(id, parent, mountLabel string, readOnly bool, storageOpt map[string]string) error {
-	rPId, err := d.resolveID(parent)
-	if err != nil {
-		return err
-	}
-
-	parentChain, err := d.getLayerChain(rPId)
-	if err != nil {
-		return err
-	}
-
-	var layerChain []string
-
-	if rPId != "" {
-		parentPath, err := hcsshim.GetLayerMountPath(d.info, rPId)
-		if err != nil {
-			return err
-		}
-		if _, err := os.Stat(filepath.Join(parentPath, "Files")); err == nil {
-			// This is a legitimate parent layer (not the empty "-init" layer),
-			// so include it in the layer chain.
-			layerChain = []string{parentPath}
-		}
-	}
-
-	layerChain = append(layerChain, parentChain...)
-
-	if readOnly {
-		if err := hcsshim.CreateLayer(d.info, id, rPId); err != nil {
-			return err
-		}
-	} else {
-		var parentPath string
-		if len(layerChain) != 0 {
-			parentPath = layerChain[0]
-		}
-
-		if err := hcsshim.CreateSandboxLayer(d.info, id, parentPath, layerChain); err != nil {
-			return err
-		}
-
-		storageOptions, err := parseStorageOpt(storageOpt)
-		if err != nil {
-			return fmt.Errorf("Failed to parse storage options - %s", err)
-		}
-
-		if storageOptions.size != 0 {
-			if err := hcsshim.ExpandSandboxSize(d.info, id, storageOptions.size); err != nil {
-				return err
-			}
-		}
-	}
-
-	if _, err := os.Lstat(d.dir(parent)); err != nil {
-		if err2 := hcsshim.DestroyLayer(d.info, id); err2 != nil {
-			logrus.Warnf("Failed to DestroyLayer %s: %s", id, err2)
-		}
-		return fmt.Errorf("Cannot create layer with missing parent %s: %s", parent, err)
-	}
-
-	if err := d.setLayerChain(id, layerChain); err != nil {
-		if err2 := hcsshim.DestroyLayer(d.info, id); err2 != nil {
-			logrus.Warnf("Failed to DestroyLayer %s: %s", id, err2)
-		}
-		return err
-	}
-
-	return nil
-}
-
-// dir returns the absolute path to the layer.
-func (d *Driver) dir(id string) string {
-	return filepath.Join(d.info.HomeDir, filepath.Base(id))
-}
-
-// Remove unmounts and removes the dir information.
-func (d *Driver) Remove(id string) error {
-	panicIfUsedByLcow()
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return err
-	}
-
-	// This retry loop is due to a bug in Windows (Internal bug #9432268)
-	// if GetContainers fails with ErrVmcomputeOperationInvalidState
-	// it is a transient error. Retry until it succeeds.
-	var computeSystems []hcsshim.ContainerProperties
-	retryCount := 0
-	osv := system.GetOSVersion()
-	for {
-		// Get and terminate any template VMs that are currently using the layer.
-		// Note: It is unfortunate that we end up in the graphdrivers Remove() call
-		// for both containers and images, but the logic for template VMs is only
-		// needed for images - specifically we are looking to see if a base layer
-		// is in use by a template VM as a result of having started a Hyper-V
-		// container at some point.
-		//
-		// We have a retry loop for ErrVmcomputeOperationInvalidState and
-		// ErrVmcomputeOperationAccessIsDenied as there is a race condition
-		// in RS1 and RS2 building during enumeration when a silo is going away
-		// for example under it, in HCS. AccessIsDenied added to fix 30278.
-		//
-		// TODO @jhowardmsft - For RS3, we can remove the retries. Also consider
-		// using platform APIs (if available) to get this more succinctly. Also
-		// consider enhancing the Remove() interface to have context of why
-		// the remove is being called - that could improve efficiency by not
-		// enumerating compute systems during a remove of a container as it's
-		// not required.
-		computeSystems, err = hcsshim.GetContainers(hcsshim.ComputeSystemQuery{})
-		if err != nil {
-			if (osv.Build < 15139) &&
-				((err == hcsshim.ErrVmcomputeOperationInvalidState) || (err == hcsshim.ErrVmcomputeOperationAccessIsDenied)) {
-				if retryCount >= 500 {
-					break
-				}
-				retryCount++
-				time.Sleep(10 * time.Millisecond)
-				continue
-			}
-			return err
-		}
-		break
-	}
-
-	for _, computeSystem := range computeSystems {
-		if strings.Contains(computeSystem.RuntimeImagePath, id) && computeSystem.IsRuntimeTemplate {
-			container, err := hcsshim.OpenContainer(computeSystem.ID)
-			if err != nil {
-				return err
-			}
-			defer container.Close()
-			err = container.Terminate()
-			if hcsshim.IsPending(err) {
-				err = container.Wait()
-			} else if hcsshim.IsAlreadyStopped(err) {
-				err = nil
-			}
-
-			if err != nil {
-				return err
-			}
-		}
-	}
-
-	layerPath := filepath.Join(d.info.HomeDir, rID)
-	tmpID := fmt.Sprintf("%s-removing", rID)
-	tmpLayerPath := filepath.Join(d.info.HomeDir, tmpID)
-	if err := os.Rename(layerPath, tmpLayerPath); err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	if err := hcsshim.DestroyLayer(d.info, tmpID); err != nil {
-		logrus.Errorf("Failed to DestroyLayer %s: %s", id, err)
-	}
-
-	return nil
-}
-
-// Get returns the rootfs path for the id. This will mount the dir at its given path.
-func (d *Driver) Get(id, mountLabel string) (string, error) {
-	panicIfUsedByLcow()
-	logrus.Debugf("WindowsGraphDriver Get() id %s mountLabel %s", id, mountLabel)
-	var dir string
-
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return "", err
-	}
-	if count := d.ctr.Increment(rID); count > 1 {
-		return d.cache[rID], nil
-	}
-
-	// Getting the layer paths must be done outside of the lock.
-	layerChain, err := d.getLayerChain(rID)
-	if err != nil {
-		d.ctr.Decrement(rID)
-		return "", err
-	}
-
-	if err := hcsshim.ActivateLayer(d.info, rID); err != nil {
-		d.ctr.Decrement(rID)
-		return "", err
-	}
-	if err := hcsshim.PrepareLayer(d.info, rID, layerChain); err != nil {
-		d.ctr.Decrement(rID)
-		if err2 := hcsshim.DeactivateLayer(d.info, rID); err2 != nil {
-			logrus.Warnf("Failed to Deactivate %s: %s", id, err)
-		}
-		return "", err
-	}
-
-	mountPath, err := hcsshim.GetLayerMountPath(d.info, rID)
-	if err != nil {
-		d.ctr.Decrement(rID)
-		if err := hcsshim.UnprepareLayer(d.info, rID); err != nil {
-			logrus.Warnf("Failed to Unprepare %s: %s", id, err)
-		}
-		if err2 := hcsshim.DeactivateLayer(d.info, rID); err2 != nil {
-			logrus.Warnf("Failed to Deactivate %s: %s", id, err)
-		}
-		return "", err
-	}
-	d.cacheMu.Lock()
-	d.cache[rID] = mountPath
-	d.cacheMu.Unlock()
-
-	// If the layer has a mount path, use that. Otherwise, use the
-	// folder path.
-	if mountPath != "" {
-		dir = mountPath
-	} else {
-		dir = d.dir(id)
-	}
-
-	return dir, nil
-}
-
-// Put adds a new layer to the driver.
-func (d *Driver) Put(id string) error {
-	panicIfUsedByLcow()
-	logrus.Debugf("WindowsGraphDriver Put() id %s", id)
-
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return err
-	}
-	if count := d.ctr.Decrement(rID); count > 0 {
-		return nil
-	}
-	d.cacheMu.Lock()
-	_, exists := d.cache[rID]
-	delete(d.cache, rID)
-	d.cacheMu.Unlock()
-
-	// If the cache was not populated, then the layer was left unprepared and deactivated
-	if !exists {
-		return nil
-	}
-
-	if err := hcsshim.UnprepareLayer(d.info, rID); err != nil {
-		return err
-	}
-	return hcsshim.DeactivateLayer(d.info, rID)
-}
-
-// Cleanup ensures the information the driver stores is properly removed.
-// We use this opportunity to cleanup any -removing folders which may be
-// still left if the daemon was killed while it was removing a layer.
-func (d *Driver) Cleanup() error {
-	items, err := ioutil.ReadDir(d.info.HomeDir)
-	if err != nil {
-		if os.IsNotExist(err) {
-			return nil
-		}
-		return err
-	}
-
-	// Note we don't return an error below - it's possible the files
-	// are locked. However, next time around after the daemon exits,
-	// we likely will be able to to cleanup successfully. Instead we log
-	// warnings if there are errors.
-	for _, item := range items {
-		if item.IsDir() && strings.HasSuffix(item.Name(), "-removing") {
-			if err := hcsshim.DestroyLayer(d.info, item.Name()); err != nil {
-				logrus.Warnf("Failed to cleanup %s: %s", item.Name(), err)
-			} else {
-				logrus.Infof("Cleaned up %s", item.Name())
-			}
-		}
-	}
-
-	return nil
-}
-
-// Diff produces an archive of the changes between the specified
-// layer and its parent layer which may be "".
-// The layer should be mounted when calling this function
-func (d *Driver) Diff(id, parent, mountLabel string) (_ io.ReadCloser, err error) {
-	panicIfUsedByLcow()
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return
-	}
-
-	layerChain, err := d.getLayerChain(rID)
-	if err != nil {
-		return
-	}
-
-	// this is assuming that the layer is unmounted
-	if err := hcsshim.UnprepareLayer(d.info, rID); err != nil {
-		return nil, err
-	}
-	prepare := func() {
-		if err := hcsshim.PrepareLayer(d.info, rID, layerChain); err != nil {
-			logrus.Warnf("Failed to Deactivate %s: %s", rID, err)
-		}
-	}
-
-	arch, err := d.exportLayer(rID, layerChain)
-	if err != nil {
-		prepare()
-		return
-	}
-	return ioutils.NewReadCloserWrapper(arch, func() error {
-		err := arch.Close()
-		prepare()
-		return err
-	}), nil
-}
-
-// Changes produces a list of changes between the specified layer
-// and its parent layer. If parent is "", then all changes will be ADD changes.
-// The layer should not be mounted when calling this function.
-func (d *Driver) Changes(id, parent, mountLabel string) ([]archive.Change, error) {
-	panicIfUsedByLcow()
-	rID, err := d.resolveID(id)
-	if err != nil {
-		return nil, err
-	}
-	parentChain, err := d.getLayerChain(rID)
-	if err != nil {
-		return nil, err
-	}
-
-	if err := hcsshim.ActivateLayer(d.info, rID); err != nil {
-		return nil, err
-	}
-	defer func() {
-		if err2 := hcsshim.DeactivateLayer(d.info, rID); err2 != nil {
-			logrus.Errorf("changes() failed to DeactivateLayer %s %s: %s", id, rID, err2)
-		}
-	}()
-
-	var changes []archive.Change
-	err = winio.RunWithPrivilege(winio.SeBackupPrivilege, func() error {
-		r, err := hcsshim.NewLayerReader(d.info, id, parentChain)
-		if err != nil {
-			return err
-		}
-		defer r.Close()
-
-		for {
-			name, _, fileInfo, err := r.Next()
-			if err == io.EOF {
-				return nil
-			}
-			if err != nil {
-				return err
-			}
-			name = filepath.ToSlash(name)
-			if fileInfo == nil {
-				changes = append(changes, archive.Change{Path: name, Kind: archive.ChangeDelete})
-			} else {
-				// Currently there is no way to tell between an add and a modify.
-				changes = append(changes, archive.Change{Path: name, Kind: archive.ChangeModify})
-			}
-		}
-	})
-	if err != nil {
-		return nil, err
-	}
-
-	return changes, nil
-}
-
-// ApplyDiff extracts the changeset from the given diff into the
-// layer with the specified id and parent, returning the size of the
-// new layer in bytes.
-// The layer should not be mounted when calling this function
-func (d *Driver) ApplyDiff(id, parent, mountLabel string, diff io.Reader) (int64, error) {
-	panicIfUsedByLcow()
-	var layerChain []string
-	if parent != "" {
-		rPId, err := d.resolveID(parent)
-		if err != nil {
-			return 0, err
-		}
-		parentChain, err := d.getLayerChain(rPId)
-		if err != nil {
-			return 0, err
-		}
-		parentPath, err := hcsshim.GetLayerMountPath(d.info, rPId)
-		if err != nil {
-			return 0, err
-		}
-		layerChain = append(layerChain, parentPath)
-		layerChain = append(layerChain, parentChain...)
-	}
-
-	size, err := d.importLayer(id, diff, layerChain)
-	if err != nil {
-		return 0, err
-	}
-
-	if err = d.setLayerChain(id, layerChain); err != nil {
-		return 0, err
-	}
-
-	return size, nil
-}
-
-// DiffSize calculates the changes between the specified layer
-// and its parent and returns the size in bytes of the changes
-// relative to its base filesystem directory.
-func (d *Driver) DiffSize(id, parent, mountLabel string) (size int64, err error) {
-	panicIfUsedByLcow()
-	rPId, err := d.resolveID(parent)
-	if err != nil {
-		return
-	}
-
-	changes, err := d.Changes(id, rPId, mountLabel)
-	if err != nil {
-		return
-	}
-
-	layerFs, err := d.Get(id, "")
-	if err != nil {
-		return
-	}
-	defer d.Put(id)
-
-	return archive.ChangesSize(layerFs, changes), nil
-}
-
-// Metadata returns custom driver information.
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	panicIfUsedByLcow()
-	m := make(map[string]string)
-	m["dir"] = d.dir(id)
-	return m, nil
-}
-
-func writeTarFromLayer(r hcsshim.LayerReader, w io.Writer) error {
-	t := tar.NewWriter(w)
-	for {
-		name, size, fileInfo, err := r.Next()
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return err
-		}
-		if fileInfo == nil {
-			// Write a whiteout file.
-			hdr := &tar.Header{
-				Name: filepath.ToSlash(filepath.Join(filepath.Dir(name), archive.WhiteoutPrefix+filepath.Base(name))),
-			}
-			err := t.WriteHeader(hdr)
-			if err != nil {
-				return err
-			}
-		} else {
-			err = backuptar.WriteTarFileFromBackupStream(t, r, name, size, fileInfo)
-			if err != nil {
-				return err
-			}
-		}
-	}
-	return t.Close()
-}
-
-// exportLayer generates an archive from a layer based on the given ID.
-func (d *Driver) exportLayer(id string, parentLayerPaths []string) (io.ReadCloser, error) {
-	archive, w := io.Pipe()
-	go func() {
-		err := winio.RunWithPrivilege(winio.SeBackupPrivilege, func() error {
-			r, err := hcsshim.NewLayerReader(d.info, id, parentLayerPaths)
-			if err != nil {
-				return err
-			}
-
-			err = writeTarFromLayer(r, w)
-			cerr := r.Close()
-			if err == nil {
-				err = cerr
-			}
-			return err
-		})
-		w.CloseWithError(err)
-	}()
-
-	return archive, nil
-}
-
-// writeBackupStreamFromTarAndSaveMutatedFiles reads data from a tar stream and
-// writes it to a backup stream, and also saves any files that will be mutated
-// by the import layer process to a backup location.
-func writeBackupStreamFromTarAndSaveMutatedFiles(buf *bufio.Writer, w io.Writer, t *tar.Reader, hdr *tar.Header, root string) (nextHdr *tar.Header, err error) {
-	var bcdBackup *os.File
-	var bcdBackupWriter *winio.BackupFileWriter
-	if backupPath, ok := mutatedFiles[hdr.Name]; ok {
-		bcdBackup, err = os.Create(filepath.Join(root, backupPath))
-		if err != nil {
-			return nil, err
-		}
-		defer func() {
-			cerr := bcdBackup.Close()
-			if err == nil {
-				err = cerr
-			}
-		}()
-
-		bcdBackupWriter = winio.NewBackupFileWriter(bcdBackup, false)
-		defer func() {
-			cerr := bcdBackupWriter.Close()
-			if err == nil {
-				err = cerr
-			}
-		}()
-
-		buf.Reset(io.MultiWriter(w, bcdBackupWriter))
-	} else {
-		buf.Reset(w)
-	}
-
-	defer func() {
-		ferr := buf.Flush()
-		if err == nil {
-			err = ferr
-		}
-	}()
-
-	return backuptar.WriteBackupStreamFromTarFile(buf, t, hdr)
-}
-
-func writeLayerFromTar(r io.Reader, w hcsshim.LayerWriter, root string) (int64, error) {
-	t := tar.NewReader(r)
-	hdr, err := t.Next()
-	totalSize := int64(0)
-	buf := bufio.NewWriter(nil)
-	for err == nil {
-		base := path.Base(hdr.Name)
-		if strings.HasPrefix(base, archive.WhiteoutPrefix) {
-			name := path.Join(path.Dir(hdr.Name), base[len(archive.WhiteoutPrefix):])
-			err = w.Remove(filepath.FromSlash(name))
-			if err != nil {
-				return 0, err
-			}
-			hdr, err = t.Next()
-		} else if hdr.Typeflag == tar.TypeLink {
-			err = w.AddLink(filepath.FromSlash(hdr.Name), filepath.FromSlash(hdr.Linkname))
-			if err != nil {
-				return 0, err
-			}
-			hdr, err = t.Next()
-		} else {
-			var (
-				name     string
-				size     int64
-				fileInfo *winio.FileBasicInfo
-			)
-			name, size, fileInfo, err = backuptar.FileInfoFromHeader(hdr)
-			if err != nil {
-				return 0, err
-			}
-			err = w.Add(filepath.FromSlash(name), fileInfo)
-			if err != nil {
-				return 0, err
-			}
-			hdr, err = writeBackupStreamFromTarAndSaveMutatedFiles(buf, w, t, hdr, root)
-			totalSize += size
-		}
-	}
-	if err != io.EOF {
-		return 0, err
-	}
-	return totalSize, nil
-}
-
-// importLayer adds a new layer to the tag and graph store based on the given data.
-func (d *Driver) importLayer(id string, layerData io.Reader, parentLayerPaths []string) (size int64, err error) {
-	if !noreexec {
-		cmd := reexec.Command(append([]string{"docker-windows-write-layer", d.info.HomeDir, id}, parentLayerPaths...)...)
-		output := bytes.NewBuffer(nil)
-		cmd.Stdin = layerData
-		cmd.Stdout = output
-		cmd.Stderr = output
-
-		if err = cmd.Start(); err != nil {
-			return
-		}
-
-		if err = cmd.Wait(); err != nil {
-			return 0, fmt.Errorf("re-exec error: %v: output: %s", err, output)
-		}
-
-		return strconv.ParseInt(output.String(), 10, 64)
-	}
-	return writeLayer(layerData, d.info.HomeDir, id, parentLayerPaths...)
-}
-
-// writeLayerReexec is the re-exec entry point for writing a layer from a tar file
-func writeLayerReexec() {
-	size, err := writeLayer(os.Stdin, os.Args[1], os.Args[2], os.Args[3:]...)
-	if err != nil {
-		fmt.Fprint(os.Stderr, err)
-		os.Exit(1)
-	}
-	fmt.Fprint(os.Stdout, size)
-}
-
-// writeLayer writes a layer from a tar file.
-func writeLayer(layerData io.Reader, home string, id string, parentLayerPaths ...string) (int64, error) {
-	err := winio.EnableProcessPrivileges([]string{winio.SeBackupPrivilege, winio.SeRestorePrivilege})
-	if err != nil {
-		return 0, err
-	}
-	if noreexec {
-		defer func() {
-			if err := winio.DisableProcessPrivileges([]string{winio.SeBackupPrivilege, winio.SeRestorePrivilege}); err != nil {
-				// This should never happen, but just in case when in debugging mode.
-				// See https://github.com/docker/docker/pull/28002#discussion_r86259241 for rationale.
-				panic("Failed to disabled process privileges while in non re-exec mode")
-			}
-		}()
-	}
-
-	info := hcsshim.DriverInfo{
-		Flavour: filterDriver,
-		HomeDir: home,
-	}
-
-	w, err := hcsshim.NewLayerWriter(info, id, parentLayerPaths)
-	if err != nil {
-		return 0, err
-	}
-
-	size, err := writeLayerFromTar(layerData, w, filepath.Join(home, id))
-	if err != nil {
-		return 0, err
-	}
-
-	err = w.Close()
-	if err != nil {
-		return 0, err
-	}
-
-	return size, nil
-}
-
-// resolveID computes the layerID information based on the given id.
-func (d *Driver) resolveID(id string) (string, error) {
-	content, err := ioutil.ReadFile(filepath.Join(d.dir(id), "layerID"))
-	if os.IsNotExist(err) {
-		return id, nil
-	} else if err != nil {
-		return "", err
-	}
-	return string(content), nil
-}
-
-// setID stores the layerId in disk.
-func (d *Driver) setID(id, altID string) error {
-	return ioutil.WriteFile(filepath.Join(d.dir(id), "layerId"), []byte(altID), 0600)
-}
-
-// getLayerChain returns the layer chain information.
-func (d *Driver) getLayerChain(id string) ([]string, error) {
-	jPath := filepath.Join(d.dir(id), "layerchain.json")
-	content, err := ioutil.ReadFile(jPath)
-	if os.IsNotExist(err) {
-		return nil, nil
-	} else if err != nil {
-		return nil, fmt.Errorf("Unable to read layerchain file - %s", err)
-	}
-
-	var layerChain []string
-	err = json.Unmarshal(content, &layerChain)
-	if err != nil {
-		return nil, fmt.Errorf("Failed to unmarshall layerchain json - %s", err)
-	}
-
-	return layerChain, nil
-}
-
-// setLayerChain stores the layer chain information in disk.
-func (d *Driver) setLayerChain(id string, chain []string) error {
-	content, err := json.Marshal(&chain)
-	if err != nil {
-		return fmt.Errorf("Failed to marshall layerchain json - %s", err)
-	}
-
-	jPath := filepath.Join(d.dir(id), "layerchain.json")
-	err = ioutil.WriteFile(jPath, content, 0600)
-	if err != nil {
-		return fmt.Errorf("Unable to write layerchain file - %s", err)
-	}
-
-	return nil
-}
-
-type fileGetCloserWithBackupPrivileges struct {
-	path string
-}
-
-func (fg *fileGetCloserWithBackupPrivileges) Get(filename string) (io.ReadCloser, error) {
-	if backupPath, ok := mutatedFiles[filename]; ok {
-		return os.Open(filepath.Join(fg.path, backupPath))
-	}
-
-	var f *os.File
-	// Open the file while holding the Windows backup privilege. This ensures that the
-	// file can be opened even if the caller does not actually have access to it according
-	// to the security descriptor. Also use sequential file access to avoid depleting the
-	// standby list - Microsoft VSO Bug Tracker #9900466
-	err := winio.RunWithPrivilege(winio.SeBackupPrivilege, func() error {
-		path := longpath.AddPrefix(filepath.Join(fg.path, filename))
-		p, err := windows.UTF16FromString(path)
-		if err != nil {
-			return err
-		}
-		const fileFlagSequentialScan = 0x08000000 // FILE_FLAG_SEQUENTIAL_SCAN
-		h, err := windows.CreateFile(&p[0], windows.GENERIC_READ, windows.FILE_SHARE_READ, nil, windows.OPEN_EXISTING, windows.FILE_FLAG_BACKUP_SEMANTICS|fileFlagSequentialScan, 0)
-		if err != nil {
-			return &os.PathError{Op: "open", Path: path, Err: err}
-		}
-		f = os.NewFile(uintptr(h), path)
-		return nil
-	})
-	return f, err
-}
-
-func (fg *fileGetCloserWithBackupPrivileges) Close() error {
-	return nil
-}
-
-// DiffGetter returns a FileGetCloser that can read files from the directory that
-// contains files for the layer differences. Used for direct access for tar-split.
-func (d *Driver) DiffGetter(id string) (graphdriver.FileGetCloser, error) {
-	panicIfUsedByLcow()
-	id, err := d.resolveID(id)
-	if err != nil {
-		return nil, err
-	}
-
-	return &fileGetCloserWithBackupPrivileges{d.dir(id)}, nil
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	return nil
-}
-
-type storageOptions struct {
-	size uint64
-}
-
-func parseStorageOpt(storageOpt map[string]string) (*storageOptions, error) {
-	options := storageOptions{}
-
-	// Read size to change the block device size per container.
-	for key, val := range storageOpt {
-		key := strings.ToLower(key)
-		switch key {
-		case "size":
-			size, err := units.RAMInBytes(val)
-			if err != nil {
-				return nil, err
-			}
-			options.size = uint64(size)
-		default:
-			return nil, fmt.Errorf("Unknown storage option: %s", key)
-		}
-	}
-	return &options, nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/zfs/zfs.go b/vendor/github.com/containers/storage/drivers/zfs/zfs.go
deleted file mode 100644
index 8c8e7d6718..0000000000
--- a/vendor/github.com/containers/storage/drivers/zfs/zfs.go
+++ /dev/null
@@ -1,426 +0,0 @@
-// +build linux freebsd solaris
-
-package zfs
-
-import (
-	"fmt"
-	"os"
-	"os/exec"
-	"path"
-	"strconv"
-	"strings"
-	"sync"
-	"time"
-
-	"github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/mount"
-	"github.com/containers/storage/pkg/parsers"
-	zfs "github.com/mistifyio/go-zfs"
-	"github.com/opencontainers/selinux/go-selinux/label"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-type zfsOptions struct {
-	fsName    string
-	mountPath string
-}
-
-func init() {
-	graphdriver.Register("zfs", Init)
-}
-
-// Logger returns a zfs logger implementation.
-type Logger struct{}
-
-// Log wraps log message from ZFS driver with a prefix '[zfs]'.
-func (*Logger) Log(cmd []string) {
-	logrus.Debugf("[zfs] %s", strings.Join(cmd, " "))
-}
-
-// Init returns a new ZFS driver.
-// It takes base mount path and an array of options which are represented as key value pairs.
-// Each option is in the for key=value. 'zfs.fsname' is expected to be a valid key in the options.
-func Init(base string, opt []string, uidMaps, gidMaps []idtools.IDMap) (graphdriver.Driver, error) {
-	var err error
-
-	if _, err := exec.LookPath("zfs"); err != nil {
-		logrus.Debugf("[zfs] zfs command is not available: %v", err)
-		return nil, errors.Wrap(graphdriver.ErrPrerequisites, "the 'zfs' command is not available")
-	}
-
-	file, err := os.OpenFile("/dev/zfs", os.O_RDWR, 600)
-	if err != nil {
-		logrus.Debugf("[zfs] cannot open /dev/zfs: %v", err)
-		return nil, errors.Wrapf(graphdriver.ErrPrerequisites, "could not open /dev/zfs: %v", err)
-	}
-	defer file.Close()
-
-	options, err := parseOptions(opt)
-	if err != nil {
-		return nil, err
-	}
-	options.mountPath = base
-
-	rootdir := path.Dir(base)
-
-	if options.fsName == "" {
-		err = checkRootdirFs(rootdir)
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	if options.fsName == "" {
-		options.fsName, err = lookupZfsDataset(rootdir)
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	zfs.SetLogger(new(Logger))
-
-	filesystems, err := zfs.Filesystems(options.fsName)
-	if err != nil {
-		return nil, fmt.Errorf("Cannot find root filesystem %s: %v", options.fsName, err)
-	}
-
-	filesystemsCache := make(map[string]bool, len(filesystems))
-	var rootDataset *zfs.Dataset
-	for _, fs := range filesystems {
-		if fs.Name == options.fsName {
-			rootDataset = fs
-		}
-		filesystemsCache[fs.Name] = true
-	}
-
-	if rootDataset == nil {
-		return nil, fmt.Errorf("BUG: zfs get all -t filesystem -rHp '%s' should contain '%s'", options.fsName, options.fsName)
-	}
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(uidMaps, gidMaps)
-	if err != nil {
-		return nil, fmt.Errorf("Failed to get root uid/guid: %v", err)
-	}
-	if err := idtools.MkdirAllAs(base, 0700, rootUID, rootGID); err != nil {
-		return nil, fmt.Errorf("Failed to create '%s': %v", base, err)
-	}
-
-	if err := mount.MakePrivate(base); err != nil {
-		return nil, err
-	}
-	d := &Driver{
-		dataset:          rootDataset,
-		options:          options,
-		filesystemsCache: filesystemsCache,
-		uidMaps:          uidMaps,
-		gidMaps:          gidMaps,
-		ctr:              graphdriver.NewRefCounter(graphdriver.NewDefaultChecker()),
-	}
-	return graphdriver.NewNaiveDiffDriver(d, uidMaps, gidMaps), nil
-}
-
-func parseOptions(opt []string) (zfsOptions, error) {
-	var options zfsOptions
-	options.fsName = ""
-	for _, option := range opt {
-		key, val, err := parsers.ParseKeyValueOpt(option)
-		if err != nil {
-			return options, err
-		}
-		key = strings.ToLower(key)
-		switch key {
-		case "zfs.fsname":
-			options.fsName = val
-		default:
-			return options, fmt.Errorf("Unknown option %s", key)
-		}
-	}
-	return options, nil
-}
-
-func lookupZfsDataset(rootdir string) (string, error) {
-	var stat unix.Stat_t
-	if err := unix.Stat(rootdir, &stat); err != nil {
-		return "", fmt.Errorf("Failed to access '%s': %s", rootdir, err)
-	}
-	wantedDev := stat.Dev
-
-	mounts, err := mount.GetMounts()
-	if err != nil {
-		return "", err
-	}
-	for _, m := range mounts {
-		if err := unix.Stat(m.Mountpoint, &stat); err != nil {
-			logrus.Debugf("[zfs] failed to stat '%s' while scanning for zfs mount: %v", m.Mountpoint, err)
-			continue // may fail on fuse file systems
-		}
-
-		if stat.Dev == wantedDev && m.Fstype == "zfs" {
-			return m.Source, nil
-		}
-	}
-
-	return "", fmt.Errorf("Failed to find zfs dataset mounted on '%s' in /proc/mounts", rootdir)
-}
-
-// Driver holds information about the driver, such as zfs dataset, options and cache.
-type Driver struct {
-	dataset          *zfs.Dataset
-	options          zfsOptions
-	sync.Mutex       // protects filesystem cache against concurrent access
-	filesystemsCache map[string]bool
-	uidMaps          []idtools.IDMap
-	gidMaps          []idtools.IDMap
-	ctr              *graphdriver.RefCounter
-}
-
-func (d *Driver) String() string {
-	return "zfs"
-}
-
-// Cleanup is used to implement graphdriver.ProtoDriver. There is no cleanup required for this driver.
-func (d *Driver) Cleanup() error {
-	return nil
-}
-
-// Status returns information about the ZFS filesystem. It returns a two dimensional array of information
-// such as pool name, dataset name, disk usage, parent quota and compression used.
-// Currently it return 'Zpool', 'Zpool Health', 'Parent Dataset', 'Space Used By Parent',
-// 'Space Available', 'Parent Quota' and 'Compression'.
-func (d *Driver) Status() [][2]string {
-	parts := strings.Split(d.dataset.Name, "/")
-	pool, err := zfs.GetZpool(parts[0])
-
-	var poolName, poolHealth string
-	if err == nil {
-		poolName = pool.Name
-		poolHealth = pool.Health
-	} else {
-		poolName = fmt.Sprintf("error while getting pool information %v", err)
-		poolHealth = "not available"
-	}
-
-	quota := "no"
-	if d.dataset.Quota != 0 {
-		quota = strconv.FormatUint(d.dataset.Quota, 10)
-	}
-
-	return [][2]string{
-		{"Zpool", poolName},
-		{"Zpool Health", poolHealth},
-		{"Parent Dataset", d.dataset.Name},
-		{"Space Used By Parent", strconv.FormatUint(d.dataset.Used, 10)},
-		{"Space Available", strconv.FormatUint(d.dataset.Avail, 10)},
-		{"Parent Quota", quota},
-		{"Compression", d.dataset.Compression},
-	}
-}
-
-// Metadata returns image/container metadata related to graph driver
-func (d *Driver) Metadata(id string) (map[string]string, error) {
-	return map[string]string{
-		"Mountpoint": d.mountPath(id),
-		"Dataset":    d.zfsPath(id),
-	}, nil
-}
-
-func (d *Driver) cloneFilesystem(name, parentName string) error {
-	snapshotName := fmt.Sprintf("%d", time.Now().Nanosecond())
-	parentDataset := zfs.Dataset{Name: parentName}
-	snapshot, err := parentDataset.Snapshot(snapshotName /*recursive */, false)
-	if err != nil {
-		return err
-	}
-
-	_, err = snapshot.Clone(name, map[string]string{"mountpoint": "legacy"})
-	if err == nil {
-		d.Lock()
-		d.filesystemsCache[name] = true
-		d.Unlock()
-	}
-
-	if err != nil {
-		snapshot.Destroy(zfs.DestroyDeferDeletion)
-		return err
-	}
-	return snapshot.Destroy(zfs.DestroyDeferDeletion)
-}
-
-func (d *Driver) zfsPath(id string) string {
-	return d.options.fsName + "/" + id
-}
-
-func (d *Driver) mountPath(id string) string {
-	return path.Join(d.options.mountPath, "graph", getMountpoint(id))
-}
-
-// CreateReadWrite creates a layer that is writable for use as a container
-// file system.
-func (d *Driver) CreateReadWrite(id, parent string, opts *graphdriver.CreateOpts) error {
-	return d.Create(id, parent, opts)
-}
-
-// Create prepares the dataset and filesystem for the ZFS driver for the given id under the parent.
-func (d *Driver) Create(id, parent string, opts *graphdriver.CreateOpts) error {
-	var storageOpt map[string]string
-	if opts != nil {
-		storageOpt = opts.StorageOpt
-	}
-
-	err := d.create(id, parent, storageOpt)
-	if err == nil {
-		return nil
-	}
-	if zfsError, ok := err.(*zfs.Error); ok {
-		if !strings.HasSuffix(zfsError.Stderr, "dataset already exists\n") {
-			return err
-		}
-		// aborted build -> cleanup
-	} else {
-		return err
-	}
-
-	dataset := zfs.Dataset{Name: d.zfsPath(id)}
-	if err := dataset.Destroy(zfs.DestroyRecursiveClones); err != nil {
-		return err
-	}
-
-	// retry
-	return d.create(id, parent, storageOpt)
-}
-
-func (d *Driver) create(id, parent string, storageOpt map[string]string) error {
-	name := d.zfsPath(id)
-	quota, err := parseStorageOpt(storageOpt)
-	if err != nil {
-		return err
-	}
-	if parent == "" {
-		mountoptions := map[string]string{"mountpoint": "legacy"}
-		fs, err := zfs.CreateFilesystem(name, mountoptions)
-		if err == nil {
-			err = setQuota(name, quota)
-			if err == nil {
-				d.Lock()
-				d.filesystemsCache[fs.Name] = true
-				d.Unlock()
-			}
-		}
-		return err
-	}
-	err = d.cloneFilesystem(name, d.zfsPath(parent))
-	if err == nil {
-		err = setQuota(name, quota)
-	}
-	return err
-}
-
-func parseStorageOpt(storageOpt map[string]string) (string, error) {
-	// Read size to change the disk quota per container
-	for k, v := range storageOpt {
-		key := strings.ToLower(k)
-		switch key {
-		case "size":
-			return v, nil
-		default:
-			return "0", fmt.Errorf("Unknown option %s", key)
-		}
-	}
-	return "0", nil
-}
-
-func setQuota(name string, quota string) error {
-	if quota == "0" {
-		return nil
-	}
-	fs, err := zfs.GetDataset(name)
-	if err != nil {
-		return err
-	}
-	return fs.SetProperty("quota", quota)
-}
-
-// Remove deletes the dataset, filesystem and the cache for the given id.
-func (d *Driver) Remove(id string) error {
-	name := d.zfsPath(id)
-	dataset := zfs.Dataset{Name: name}
-	err := dataset.Destroy(zfs.DestroyRecursive)
-	if err == nil {
-		d.Lock()
-		delete(d.filesystemsCache, name)
-		d.Unlock()
-	}
-	return err
-}
-
-// Get returns the mountpoint for the given id after creating the target directories if necessary.
-func (d *Driver) Get(id, mountLabel string) (string, error) {
-	mountpoint := d.mountPath(id)
-	if count := d.ctr.Increment(mountpoint); count > 1 {
-		return mountpoint, nil
-	}
-
-	filesystem := d.zfsPath(id)
-	options := label.FormatMountLabel("", mountLabel)
-	logrus.Debugf(`[zfs] mount("%s", "%s", "%s")`, filesystem, mountpoint, options)
-
-	rootUID, rootGID, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps)
-	if err != nil {
-		d.ctr.Decrement(mountpoint)
-		return "", err
-	}
-	// Create the target directories if they don't exist
-	if err := idtools.MkdirAllAs(mountpoint, 0755, rootUID, rootGID); err != nil {
-		d.ctr.Decrement(mountpoint)
-		return "", err
-	}
-
-	if err := mount.Mount(filesystem, mountpoint, "zfs", options); err != nil {
-		d.ctr.Decrement(mountpoint)
-		return "", fmt.Errorf("error creating zfs mount of %s to %s: %v", filesystem, mountpoint, err)
-	}
-
-	// this could be our first mount after creation of the filesystem, and the root dir may still have root
-	// permissions instead of the remapped root uid:gid (if user namespaces are enabled):
-	if err := os.Chown(mountpoint, rootUID, rootGID); err != nil {
-		mount.Unmount(mountpoint)
-		d.ctr.Decrement(mountpoint)
-		return "", fmt.Errorf("error modifying zfs mountpoint (%s) directory ownership: %v", mountpoint, err)
-	}
-
-	return mountpoint, nil
-}
-
-// Put removes the existing mountpoint for the given id if it exists.
-func (d *Driver) Put(id string) error {
-	mountpoint := d.mountPath(id)
-	if count := d.ctr.Decrement(mountpoint); count > 0 {
-		return nil
-	}
-	mounted, err := graphdriver.Mounted(graphdriver.FsMagicZfs, mountpoint)
-	if err != nil || !mounted {
-		return err
-	}
-
-	logrus.Debugf(`[zfs] unmount("%s")`, mountpoint)
-
-	if err := mount.Unmount(mountpoint); err != nil {
-		return fmt.Errorf("error unmounting to %s: %v", mountpoint, err)
-	}
-	return nil
-}
-
-// Exists checks to see if the cache entry exists for the given id.
-func (d *Driver) Exists(id string) bool {
-	d.Lock()
-	defer d.Unlock()
-	return d.filesystemsCache[d.zfsPath(id)]
-}
-
-// AdditionalImageStores returns additional image stores supported by the driver
-func (d *Driver) AdditionalImageStores() []string {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/drivers/zfs/zfs_freebsd.go b/vendor/github.com/containers/storage/drivers/zfs/zfs_freebsd.go
deleted file mode 100644
index 69c0448d34..0000000000
--- a/vendor/github.com/containers/storage/drivers/zfs/zfs_freebsd.go
+++ /dev/null
@@ -1,39 +0,0 @@
-package zfs
-
-import (
-	"fmt"
-	"strings"
-
-	"github.com/containers/storage/drivers"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-func checkRootdirFs(rootdir string) error {
-	var buf unix.Statfs_t
-	if err := unix.Statfs(rootdir, &buf); err != nil {
-		return fmt.Errorf("Failed to access '%s': %s", rootdir, err)
-	}
-
-	// on FreeBSD buf.Fstypename contains ['z', 'f', 's', 0 ... ]
-	if (buf.Fstypename[0] != 122) || (buf.Fstypename[1] != 102) || (buf.Fstypename[2] != 115) || (buf.Fstypename[3] != 0) {
-		logrus.Debugf("[zfs] no zfs dataset found for rootdir '%s'", rootdir)
-		return errors.Wrapf(graphdriver.ErrPrerequisites, "no zfs dataset found for rootdir '%s'", rootdir)
-	}
-
-	return nil
-}
-
-func getMountpoint(id string) string {
-	maxlen := 12
-
-	// we need to preserve filesystem suffix
-	suffix := strings.SplitN(id, "-", 2)
-
-	if len(suffix) > 1 {
-		return id[:maxlen] + "-" + suffix[1]
-	}
-
-	return id[:maxlen]
-}
diff --git a/vendor/github.com/containers/storage/drivers/zfs/zfs_linux.go b/vendor/github.com/containers/storage/drivers/zfs/zfs_linux.go
deleted file mode 100644
index da298047d5..0000000000
--- a/vendor/github.com/containers/storage/drivers/zfs/zfs_linux.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package zfs
-
-import (
-	"fmt"
-
-	"github.com/containers/storage/drivers"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-func checkRootdirFs(rootdir string) error {
-	var buf unix.Statfs_t
-	if err := unix.Statfs(rootdir, &buf); err != nil {
-		return fmt.Errorf("Failed to access '%s': %s", rootdir, err)
-	}
-
-	if graphdriver.FsMagic(buf.Type) != graphdriver.FsMagicZfs {
-		logrus.Debugf("[zfs] no zfs dataset found for rootdir '%s'", rootdir)
-		return errors.Wrapf(graphdriver.ErrPrerequisites, "no zfs dataset found for rootdir '%s'", rootdir)
-	}
-
-	return nil
-}
-
-func getMountpoint(id string) string {
-	return id
-}
diff --git a/vendor/github.com/containers/storage/drivers/zfs/zfs_solaris.go b/vendor/github.com/containers/storage/drivers/zfs/zfs_solaris.go
deleted file mode 100644
index 2383bf3bf3..0000000000
--- a/vendor/github.com/containers/storage/drivers/zfs/zfs_solaris.go
+++ /dev/null
@@ -1,59 +0,0 @@
-// +build solaris,cgo
-
-package zfs
-
-/*
-#include <sys/statvfs.h>
-#include <stdlib.h>
-
-static inline struct statvfs *getstatfs(char *s) {
-        struct statvfs *buf;
-        int err;
-        buf = (struct statvfs *)malloc(sizeof(struct statvfs));
-        err = statvfs(s, buf);
-        return buf;
-}
-*/
-import "C"
-import (
-	"path/filepath"
-	"strings"
-	"unsafe"
-
-	"github.com/containers/storage/drivers"
-	"github.com/pkg/errors"
-	"github.com/sirupsen/logrus"
-)
-
-func checkRootdirFs(rootdir string) error {
-
-	cs := C.CString(filepath.Dir(rootdir))
-	defer C.free(unsafe.Pointer(cs))
-	buf := C.getstatfs(cs)
-	defer C.free(unsafe.Pointer(buf))
-
-	// on Solaris buf.f_basetype contains ['z', 'f', 's', 0 ... ]
-	if (buf.f_basetype[0] != 122) || (buf.f_basetype[1] != 102) || (buf.f_basetype[2] != 115) ||
-		(buf.f_basetype[3] != 0) {
-		logrus.Debugf("[zfs] no zfs dataset found for rootdir '%s'", rootdir)
-		return errors.Wrapf(graphdriver.ErrPrerequisites, "no zfs dataset found for rootdir '%s'", rootdir)
-	}
-
-	return nil
-}
-
-/* rootfs is introduced to comply with the OCI spec
-which states that root filesystem must be mounted at <CID>/rootfs/ instead of <CID>/
-*/
-func getMountpoint(id string) string {
-	maxlen := 12
-
-	// we need to preserve filesystem suffix
-	suffix := strings.SplitN(id, "-", 2)
-
-	if len(suffix) > 1 {
-		return filepath.Join(id[:maxlen]+"-"+suffix[1], "rootfs", "root")
-	}
-
-	return filepath.Join(id[:maxlen], "rootfs", "root")
-}
diff --git a/vendor/github.com/containers/storage/drivers/zfs/zfs_unsupported.go b/vendor/github.com/containers/storage/drivers/zfs/zfs_unsupported.go
deleted file mode 100644
index ce8daadaf6..0000000000
--- a/vendor/github.com/containers/storage/drivers/zfs/zfs_unsupported.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build !linux,!freebsd,!solaris
-
-package zfs
-
-func checkRootdirFs(rootdir string) error {
-	return nil
-}
-
-func getMountpoint(id string) string {
-	return id
-}
diff --git a/vendor/github.com/containers/storage/errors.go b/vendor/github.com/containers/storage/errors.go
deleted file mode 100644
index bed6f8cdc7..0000000000
--- a/vendor/github.com/containers/storage/errors.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package storage
-
-import (
-	"errors"
-)
-
-var (
-	// ErrContainerUnknown indicates that there was no container with the specified name or ID.
-	ErrContainerUnknown = errors.New("container not known")
-	// ErrImageUnknown indicates that there was no image with the specified name or ID.
-	ErrImageUnknown = errors.New("image not known")
-	// ErrParentUnknown indicates that we didn't record the ID of the parent of the specified layer.
-	ErrParentUnknown = errors.New("parent of layer not known")
-	// ErrLayerUnknown indicates that there was no layer with the specified name or ID.
-	ErrLayerUnknown = errors.New("layer not known")
-	// ErrLoadError indicates that there was an initialization error.
-	ErrLoadError = errors.New("error loading storage metadata")
-	// ErrDuplicateID indicates that an ID which is to be assigned to a new item is already being used.
-	ErrDuplicateID = errors.New("that ID is already in use")
-	// ErrDuplicateName indicates that a name which is to be assigned to a new item is already being used.
-	ErrDuplicateName = errors.New("that name is already in use")
-	// ErrParentIsContainer is returned when a caller attempts to create a layer as a child of a container's layer.
-	ErrParentIsContainer = errors.New("would-be parent layer is a container")
-	// ErrNotAContainer is returned when the caller attempts to delete a container that isn't a container.
-	ErrNotAContainer = errors.New("identifier is not a container")
-	// ErrNotAnImage is returned when the caller attempts to delete an image that isn't an image.
-	ErrNotAnImage = errors.New("identifier is not an image")
-	// ErrNotALayer is returned when the caller attempts to delete a layer that isn't a layer.
-	ErrNotALayer = errors.New("identifier is not a layer")
-	// ErrNotAnID is returned when the caller attempts to read or write metadata from an item that doesn't exist.
-	ErrNotAnID = errors.New("identifier is not a layer, image, or container")
-	// ErrLayerHasChildren is returned when the caller attempts to delete a layer that has children.
-	ErrLayerHasChildren = errors.New("layer has children")
-	// ErrLayerUsedByImage is returned when the caller attempts to delete a layer that is an image's top layer.
-	ErrLayerUsedByImage = errors.New("layer is in use by an image")
-	// ErrLayerUsedByContainer is returned when the caller attempts to delete a layer that is a container's layer.
-	ErrLayerUsedByContainer = errors.New("layer is in use by a container")
-	// ErrImageUsedByContainer is returned when the caller attempts to delete an image that is a container's image.
-	ErrImageUsedByContainer = errors.New("image is in use by a container")
-	// ErrIncompleteOptions is returned when the caller attempts to initialize a Store without providing required information.
-	ErrIncompleteOptions = errors.New("missing necessary StoreOptions")
-	// ErrSizeUnknown is returned when the caller asks for the size of a big data item, but the Store couldn't determine the answer.
-	ErrSizeUnknown = errors.New("size is not known")
-	// ErrStoreIsReadOnly is returned when the caller makes a call to a read-only store that would require modifying its contents.
-	ErrStoreIsReadOnly = errors.New("called a write method on a read-only store")
-	// ErrLockReadOnly indicates that the caller only took a read-only lock, and is not allowed to write.
-	ErrLockReadOnly = errors.New("lock is not a read-write lock")
-	// ErrDuplicateImageNames indicates that the read-only store uses the same name for multiple images.
-	ErrDuplicateImageNames = errors.New("read-only image store assigns the same name to multiple images")
-	// ErrDuplicateLayerNames indicates that the read-only store uses the same name for multiple layers.
-	ErrDuplicateLayerNames = errors.New("read-only layer store assigns the same name to multiple layers")
-	// ErrInvalidBigDataName indicates that the name for a big data item is not acceptable; it may be empty.
-	ErrInvalidBigDataName = errors.New("not a valid name for a big data item")
-	// ErrDigestUnknown indicates that we were unable to compute the digest of a specified item.
-	ErrDigestUnknown = errors.New("could not compute digest of item")
-)
diff --git a/vendor/github.com/containers/storage/hack/generate-authors.sh b/vendor/github.com/containers/storage/hack/generate-authors.sh
deleted file mode 100755
index e78a97f962..0000000000
--- a/vendor/github.com/containers/storage/hack/generate-authors.sh
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/bin/bash
-set -e
-
-cd "$(dirname "$(readlink -f "$BASH_SOURCE")")/.."
-
-# see also ".mailmap" for how email addresses and names are deduplicated
-
-{
-	cat <<-'EOH'
-	# This file lists all individuals having contributed content to the repository.
-	# For how it is generated, see `hack/generate-authors.sh`.
-	EOH
-	echo
-	git log --format='%aN <%aE>' | LC_ALL=C.UTF-8 sort -uf
-} > AUTHORS
diff --git a/vendor/github.com/containers/storage/images.go b/vendor/github.com/containers/storage/images.go
deleted file mode 100644
index 962e1bb760..0000000000
--- a/vendor/github.com/containers/storage/images.go
+++ /dev/null
@@ -1,673 +0,0 @@
-package storage
-
-import (
-	"encoding/json"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"time"
-
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/stringid"
-	"github.com/containers/storage/pkg/truncindex"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-const (
-	// ImageDigestBigDataKey is the name of the big data item whose
-	// contents we consider useful for computing a "digest" of the
-	// image, by which we can locate the image later.
-	ImageDigestBigDataKey = "manifest"
-)
-
-// An Image is a reference to a layer and an associated metadata string.
-type Image struct {
-	// ID is either one which was specified at create-time, or a random
-	// value which was generated by the library.
-	ID string `json:"id"`
-
-	// Digest is a digest value that we can use to locate the image.
-	Digest digest.Digest `json:"digest,omitempty"`
-
-	// Names is an optional set of user-defined convenience values.  The
-	// image can be referred to by its ID or any of its names.  Names are
-	// unique among images.
-	Names []string `json:"names,omitempty"`
-
-	// TopLayer is the ID of the topmost layer of the image itself, if the
-	// image contains one or more layers.  Multiple images can refer to the
-	// same top layer.
-	TopLayer string `json:"layer,omitempty"`
-
-	// Metadata is data we keep for the convenience of the caller.  It is not
-	// expected to be large, since it is kept in memory.
-	Metadata string `json:"metadata,omitempty"`
-
-	// BigDataNames is a list of names of data items that we keep for the
-	// convenience of the caller.  They can be large, and are only in
-	// memory when being read from or written to disk.
-	BigDataNames []string `json:"big-data-names,omitempty"`
-
-	// BigDataSizes maps the names in BigDataNames to the sizes of the data
-	// that has been stored, if they're known.
-	BigDataSizes map[string]int64 `json:"big-data-sizes,omitempty"`
-
-	// BigDataDigests maps the names in BigDataNames to the digests of the
-	// data that has been stored, if they're known.
-	BigDataDigests map[string]digest.Digest `json:"big-data-digests,omitempty"`
-
-	// Created is the datestamp for when this image was created.  Older
-	// versions of the library did not track this information, so callers
-	// will likely want to use the IsZero() method to verify that a value
-	// is set before using it.
-	Created time.Time `json:"created,omitempty"`
-
-	Flags map[string]interface{} `json:"flags,omitempty"`
-}
-
-// ROImageStore provides bookkeeping for information about Images.
-type ROImageStore interface {
-	ROFileBasedStore
-	ROMetadataStore
-	ROBigDataStore
-
-	// Exists checks if there is an image with the given ID or name.
-	Exists(id string) bool
-
-	// Get retrieves information about an image given an ID or name.
-	Get(id string) (*Image, error)
-
-	// Lookup attempts to translate a name to an ID.  Most methods do this
-	// implicitly.
-	Lookup(name string) (string, error)
-
-	// Images returns a slice enumerating the known images.
-	Images() ([]Image, error)
-
-	// Images returns a slice enumerating the images which have a big data
-	// item with the name ImageDigestBigDataKey and the specified digest.
-	ByDigest(d digest.Digest) ([]*Image, error)
-}
-
-// ImageStore provides bookkeeping for information about Images.
-type ImageStore interface {
-	ROImageStore
-	RWFileBasedStore
-	RWMetadataStore
-	RWBigDataStore
-	FlaggableStore
-
-	// Create creates an image that has a specified ID (or a random one) and
-	// optional names, using the specified layer as its topmost (hopefully
-	// read-only) layer.  That layer can be referenced by multiple images.
-	Create(id string, names []string, layer, metadata string, created time.Time, searchableDigest digest.Digest) (*Image, error)
-
-	// SetNames replaces the list of names associated with an image with the
-	// supplied values.
-	SetNames(id string, names []string) error
-
-	// Delete removes the record of the image.
-	Delete(id string) error
-
-	// Wipe removes records of all images.
-	Wipe() error
-}
-
-type imageStore struct {
-	lockfile Locker
-	dir      string
-	images   []*Image
-	idindex  *truncindex.TruncIndex
-	byid     map[string]*Image
-	byname   map[string]*Image
-	bydigest map[digest.Digest][]*Image
-}
-
-func (r *imageStore) Images() ([]Image, error) {
-	images := make([]Image, len(r.images))
-	for i := range r.images {
-		images[i] = *(r.images[i])
-	}
-	return images, nil
-}
-
-func (r *imageStore) imagespath() string {
-	return filepath.Join(r.dir, "images.json")
-}
-
-func (r *imageStore) datadir(id string) string {
-	return filepath.Join(r.dir, id)
-}
-
-func (r *imageStore) datapath(id, key string) string {
-	return filepath.Join(r.datadir(id), makeBigDataBaseName(key))
-}
-
-func (r *imageStore) Load() error {
-	shouldSave := false
-	rpath := r.imagespath()
-	data, err := ioutil.ReadFile(rpath)
-	if err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	images := []*Image{}
-	idlist := []string{}
-	ids := make(map[string]*Image)
-	names := make(map[string]*Image)
-	digests := make(map[digest.Digest][]*Image)
-	if err = json.Unmarshal(data, &images); len(data) == 0 || err == nil {
-		idlist = make([]string, 0, len(images))
-		for n, image := range images {
-			ids[image.ID] = images[n]
-			idlist = append(idlist, image.ID)
-			for _, name := range image.Names {
-				if conflict, ok := names[name]; ok {
-					r.removeName(conflict, name)
-					shouldSave = true
-				}
-				names[name] = images[n]
-			}
-			// Implicit digest
-			if digest, ok := image.BigDataDigests[ImageDigestBigDataKey]; ok {
-				digests[digest] = append(digests[digest], images[n])
-			}
-			// Explicit digest
-			if image.Digest == "" {
-				image.Digest = image.BigDataDigests[ImageDigestBigDataKey]
-			} else if image.Digest != image.BigDataDigests[ImageDigestBigDataKey] {
-				digests[image.Digest] = append(digests[image.Digest], images[n])
-			}
-		}
-	}
-	if shouldSave && !r.IsReadWrite() {
-		return ErrDuplicateImageNames
-	}
-	r.images = images
-	r.idindex = truncindex.NewTruncIndex(idlist)
-	r.byid = ids
-	r.byname = names
-	r.bydigest = digests
-	if shouldSave {
-		return r.Save()
-	}
-	return nil
-}
-
-func (r *imageStore) Save() error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to modify the image store at %q", r.imagespath())
-	}
-	rpath := r.imagespath()
-	if err := os.MkdirAll(filepath.Dir(rpath), 0700); err != nil {
-		return err
-	}
-	jdata, err := json.Marshal(&r.images)
-	if err != nil {
-		return err
-	}
-	defer r.Touch()
-	return ioutils.AtomicWriteFile(rpath, jdata, 0600)
-}
-
-func newImageStore(dir string) (ImageStore, error) {
-	if err := os.MkdirAll(dir, 0700); err != nil {
-		return nil, err
-	}
-	lockfile, err := GetLockfile(filepath.Join(dir, "images.lock"))
-	if err != nil {
-		return nil, err
-	}
-	lockfile.Lock()
-	defer lockfile.Unlock()
-	istore := imageStore{
-		lockfile: lockfile,
-		dir:      dir,
-		images:   []*Image{},
-		byid:     make(map[string]*Image),
-		byname:   make(map[string]*Image),
-		bydigest: make(map[digest.Digest][]*Image),
-	}
-	if err := istore.Load(); err != nil {
-		return nil, err
-	}
-	return &istore, nil
-}
-
-func newROImageStore(dir string) (ROImageStore, error) {
-	lockfile, err := GetROLockfile(filepath.Join(dir, "images.lock"))
-	if err != nil {
-		return nil, err
-	}
-	lockfile.Lock()
-	defer lockfile.Unlock()
-	istore := imageStore{
-		lockfile: lockfile,
-		dir:      dir,
-		images:   []*Image{},
-		byid:     make(map[string]*Image),
-		byname:   make(map[string]*Image),
-		bydigest: make(map[digest.Digest][]*Image),
-	}
-	if err := istore.Load(); err != nil {
-		return nil, err
-	}
-	return &istore, nil
-}
-
-func (r *imageStore) lookup(id string) (*Image, bool) {
-	if image, ok := r.byid[id]; ok {
-		return image, ok
-	} else if image, ok := r.byname[id]; ok {
-		return image, ok
-	} else if longid, err := r.idindex.Get(id); err == nil {
-		image, ok := r.byid[longid]
-		return image, ok
-	}
-	return nil, false
-}
-
-func (r *imageStore) ClearFlag(id string, flag string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to clear flags on images at %q", r.imagespath())
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return ErrImageUnknown
-	}
-	delete(image.Flags, flag)
-	return r.Save()
-}
-
-func (r *imageStore) SetFlag(id string, flag string, value interface{}) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to set flags on images at %q", r.imagespath())
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return ErrImageUnknown
-	}
-	if image.Flags == nil {
-		image.Flags = make(map[string]interface{})
-	}
-	image.Flags[flag] = value
-	return r.Save()
-}
-
-func (r *imageStore) Create(id string, names []string, layer, metadata string, created time.Time, searchableDigest digest.Digest) (image *Image, err error) {
-	if !r.IsReadWrite() {
-		return nil, errors.Wrapf(ErrStoreIsReadOnly, "not allowed to create new images at %q", r.imagespath())
-	}
-	if id == "" {
-		id = stringid.GenerateRandomID()
-		_, idInUse := r.byid[id]
-		for idInUse {
-			id = stringid.GenerateRandomID()
-			_, idInUse = r.byid[id]
-		}
-	}
-	if _, idInUse := r.byid[id]; idInUse {
-		return nil, ErrDuplicateID
-	}
-	names = dedupeNames(names)
-	for _, name := range names {
-		if _, nameInUse := r.byname[name]; nameInUse {
-			return nil, ErrDuplicateName
-		}
-	}
-	if created.IsZero() {
-		created = time.Now().UTC()
-	}
-	if err == nil {
-		image = &Image{
-			ID:             id,
-			Digest:         searchableDigest,
-			Names:          names,
-			TopLayer:       layer,
-			Metadata:       metadata,
-			BigDataNames:   []string{},
-			BigDataSizes:   make(map[string]int64),
-			BigDataDigests: make(map[string]digest.Digest),
-			Created:        created,
-			Flags:          make(map[string]interface{}),
-		}
-		r.images = append(r.images, image)
-		r.idindex.Add(id)
-		r.byid[id] = image
-		if searchableDigest != "" {
-			list := r.bydigest[searchableDigest]
-			r.bydigest[searchableDigest] = append(list, image)
-		}
-		for _, name := range names {
-			r.byname[name] = image
-		}
-		err = r.Save()
-	}
-	return image, err
-}
-
-func (r *imageStore) Metadata(id string) (string, error) {
-	if image, ok := r.lookup(id); ok {
-		return image.Metadata, nil
-	}
-	return "", ErrImageUnknown
-}
-
-func (r *imageStore) SetMetadata(id, metadata string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to modify image metadata at %q", r.imagespath())
-	}
-	if image, ok := r.lookup(id); ok {
-		image.Metadata = metadata
-		return r.Save()
-	}
-	return ErrImageUnknown
-}
-
-func (r *imageStore) removeName(image *Image, name string) {
-	image.Names = stringSliceWithoutValue(image.Names, name)
-}
-
-func (r *imageStore) SetNames(id string, names []string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to change image name assignments at %q", r.imagespath())
-	}
-	names = dedupeNames(names)
-	if image, ok := r.lookup(id); ok {
-		for _, name := range image.Names {
-			delete(r.byname, name)
-		}
-		for _, name := range names {
-			if otherImage, ok := r.byname[name]; ok {
-				r.removeName(otherImage, name)
-			}
-			r.byname[name] = image
-		}
-		image.Names = names
-		return r.Save()
-	}
-	return ErrImageUnknown
-}
-
-func (r *imageStore) Delete(id string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to delete images at %q", r.imagespath())
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return ErrImageUnknown
-	}
-	id = image.ID
-	toDeleteIndex := -1
-	for i, candidate := range r.images {
-		if candidate.ID == id {
-			toDeleteIndex = i
-		}
-	}
-	delete(r.byid, id)
-	r.idindex.Delete(id)
-	for _, name := range image.Names {
-		delete(r.byname, name)
-	}
-	if toDeleteIndex != -1 {
-		// delete the image at toDeleteIndex
-		if toDeleteIndex == len(r.images)-1 {
-			r.images = r.images[:len(r.images)-1]
-		} else {
-			r.images = append(r.images[:toDeleteIndex], r.images[toDeleteIndex+1:]...)
-		}
-	}
-	if digest, ok := image.BigDataDigests[ImageDigestBigDataKey]; ok {
-		// remove the image from the digest-based index
-		if list, ok := r.bydigest[digest]; ok {
-			prunedList := imageSliceWithoutValue(list, image)
-			if len(prunedList) == 0 {
-				delete(r.bydigest, digest)
-			} else {
-				r.bydigest[digest] = prunedList
-			}
-		}
-	}
-	if image.Digest != "" {
-		// remove the image's hard-coded digest from the digest-based index
-		if list, ok := r.bydigest[image.Digest]; ok {
-			prunedList := imageSliceWithoutValue(list, image)
-			if len(prunedList) == 0 {
-				delete(r.bydigest, image.Digest)
-			} else {
-				r.bydigest[image.Digest] = prunedList
-			}
-		}
-	}
-	if err := r.Save(); err != nil {
-		return err
-	}
-	if err := os.RemoveAll(r.datadir(id)); err != nil {
-		return err
-	}
-	return nil
-}
-
-func (r *imageStore) Get(id string) (*Image, error) {
-	if image, ok := r.lookup(id); ok {
-		return image, nil
-	}
-	return nil, ErrImageUnknown
-}
-
-func (r *imageStore) Lookup(name string) (id string, err error) {
-	if image, ok := r.lookup(name); ok {
-		return image.ID, nil
-	}
-	return "", ErrImageUnknown
-}
-
-func (r *imageStore) Exists(id string) bool {
-	_, ok := r.lookup(id)
-	return ok
-}
-
-func (r *imageStore) ByDigest(d digest.Digest) ([]*Image, error) {
-	if images, ok := r.bydigest[d]; ok {
-		return images, nil
-	}
-	return nil, ErrImageUnknown
-}
-
-func (r *imageStore) BigData(id, key string) ([]byte, error) {
-	if key == "" {
-		return nil, errors.Wrapf(ErrInvalidBigDataName, "can't retrieve image big data value for empty name")
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return nil, ErrImageUnknown
-	}
-	return ioutil.ReadFile(r.datapath(image.ID, key))
-}
-
-func (r *imageStore) BigDataSize(id, key string) (int64, error) {
-	if key == "" {
-		return -1, errors.Wrapf(ErrInvalidBigDataName, "can't retrieve size of image big data with empty name")
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return -1, ErrImageUnknown
-	}
-	if image.BigDataSizes == nil {
-		image.BigDataSizes = make(map[string]int64)
-	}
-	if size, ok := image.BigDataSizes[key]; ok {
-		return size, nil
-	}
-	if data, err := r.BigData(id, key); err == nil && data != nil {
-		if r.SetBigData(id, key, data) == nil {
-			image, ok := r.lookup(id)
-			if !ok {
-				return -1, ErrImageUnknown
-			}
-			if size, ok := image.BigDataSizes[key]; ok {
-				return size, nil
-			}
-		}
-	}
-	return -1, ErrSizeUnknown
-}
-
-func (r *imageStore) BigDataDigest(id, key string) (digest.Digest, error) {
-	if key == "" {
-		return "", errors.Wrapf(ErrInvalidBigDataName, "can't retrieve digest of image big data value with empty name")
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return "", ErrImageUnknown
-	}
-	if image.BigDataDigests == nil {
-		image.BigDataDigests = make(map[string]digest.Digest)
-	}
-	if d, ok := image.BigDataDigests[key]; ok {
-		return d, nil
-	}
-	if data, err := r.BigData(id, key); err == nil && data != nil {
-		if r.SetBigData(id, key, data) == nil {
-			image, ok := r.lookup(id)
-			if !ok {
-				return "", ErrImageUnknown
-			}
-			if d, ok := image.BigDataDigests[key]; ok {
-				return d, nil
-			}
-		}
-	}
-	return "", ErrDigestUnknown
-}
-
-func (r *imageStore) BigDataNames(id string) ([]string, error) {
-	image, ok := r.lookup(id)
-	if !ok {
-		return nil, ErrImageUnknown
-	}
-	return image.BigDataNames, nil
-}
-
-func imageSliceWithoutValue(slice []*Image, value *Image) []*Image {
-	modified := make([]*Image, 0, len(slice))
-	for _, v := range slice {
-		if v == value {
-			continue
-		}
-		modified = append(modified, v)
-	}
-	return modified
-}
-
-func (r *imageStore) SetBigData(id, key string, data []byte) error {
-	if key == "" {
-		return errors.Wrapf(ErrInvalidBigDataName, "can't set empty name for image big data item")
-	}
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to save data items associated with images at %q", r.imagespath())
-	}
-	image, ok := r.lookup(id)
-	if !ok {
-		return ErrImageUnknown
-	}
-	if err := os.MkdirAll(r.datadir(image.ID), 0700); err != nil {
-		return err
-	}
-	err := ioutils.AtomicWriteFile(r.datapath(image.ID, key), data, 0600)
-	if err == nil {
-		save := false
-		if image.BigDataSizes == nil {
-			image.BigDataSizes = make(map[string]int64)
-		}
-		oldSize, sizeOk := image.BigDataSizes[key]
-		image.BigDataSizes[key] = int64(len(data))
-		if image.BigDataDigests == nil {
-			image.BigDataDigests = make(map[string]digest.Digest)
-		}
-		oldDigest, digestOk := image.BigDataDigests[key]
-		newDigest := digest.Canonical.FromBytes(data)
-		image.BigDataDigests[key] = newDigest
-		if !sizeOk || oldSize != image.BigDataSizes[key] || !digestOk || oldDigest != newDigest {
-			save = true
-		}
-		addName := true
-		for _, name := range image.BigDataNames {
-			if name == key {
-				addName = false
-				break
-			}
-		}
-		if addName {
-			image.BigDataNames = append(image.BigDataNames, key)
-			save = true
-		}
-		if key == ImageDigestBigDataKey {
-			if oldDigest != "" && oldDigest != newDigest && oldDigest != image.Digest {
-				// remove the image from the list of images in the digest-based
-				// index which corresponds to the old digest for this item, unless
-				// it's also the hard-coded digest
-				if list, ok := r.bydigest[oldDigest]; ok {
-					prunedList := imageSliceWithoutValue(list, image)
-					if len(prunedList) == 0 {
-						delete(r.bydigest, oldDigest)
-					} else {
-						r.bydigest[oldDigest] = prunedList
-					}
-				}
-			}
-			// add the image to the list of images in the digest-based index which
-			// corresponds to the new digest for this item, unless it's already there
-			list := r.bydigest[newDigest]
-			if len(list) == len(imageSliceWithoutValue(list, image)) {
-				// the list isn't shortened by trying to prune this image from it,
-				// so it's not in there yet
-				r.bydigest[newDigest] = append(list, image)
-			}
-		}
-		if save {
-			err = r.Save()
-		}
-	}
-	return err
-}
-
-func (r *imageStore) Wipe() error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to delete images at %q", r.imagespath())
-	}
-	ids := make([]string, 0, len(r.byid))
-	for id := range r.byid {
-		ids = append(ids, id)
-	}
-	for _, id := range ids {
-		if err := r.Delete(id); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func (r *imageStore) Lock() {
-	r.lockfile.Lock()
-}
-
-func (r *imageStore) Unlock() {
-	r.lockfile.Unlock()
-}
-
-func (r *imageStore) Touch() error {
-	return r.lockfile.Touch()
-}
-
-func (r *imageStore) Modified() (bool, error) {
-	return r.lockfile.Modified()
-}
-
-func (r *imageStore) IsReadWrite() bool {
-	return r.lockfile.IsReadWrite()
-}
-
-func (r *imageStore) TouchedSince(when time.Time) bool {
-	return r.lockfile.TouchedSince(when)
-}
diff --git a/vendor/github.com/containers/storage/images_ffjson.go b/vendor/github.com/containers/storage/images_ffjson.go
deleted file mode 100644
index f6a8b0650e..0000000000
--- a/vendor/github.com/containers/storage/images_ffjson.go
+++ /dev/null
@@ -1,1202 +0,0 @@
-// Code generated by ffjson <https://github.com/pquerna/ffjson>. DO NOT EDIT.
-// source: images.go
-
-package storage
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"github.com/opencontainers/go-digest"
-	fflib "github.com/pquerna/ffjson/fflib/v1"
-)
-
-// MarshalJSON marshal bytes to json - template
-func (j *Image) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *Image) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{ "id":`)
-	fflib.WriteJsonString(buf, string(j.ID))
-	buf.WriteByte(',')
-	if len(j.Digest) != 0 {
-		buf.WriteString(`"digest":`)
-		fflib.WriteJsonString(buf, string(j.Digest))
-		buf.WriteByte(',')
-	}
-	if len(j.Names) != 0 {
-		buf.WriteString(`"names":`)
-		if j.Names != nil {
-			buf.WriteString(`[`)
-			for i, v := range j.Names {
-				if i != 0 {
-					buf.WriteString(`,`)
-				}
-				fflib.WriteJsonString(buf, string(v))
-			}
-			buf.WriteString(`]`)
-		} else {
-			buf.WriteString(`null`)
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.TopLayer) != 0 {
-		buf.WriteString(`"layer":`)
-		fflib.WriteJsonString(buf, string(j.TopLayer))
-		buf.WriteByte(',')
-	}
-	if len(j.Metadata) != 0 {
-		buf.WriteString(`"metadata":`)
-		fflib.WriteJsonString(buf, string(j.Metadata))
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataNames) != 0 {
-		buf.WriteString(`"big-data-names":`)
-		if j.BigDataNames != nil {
-			buf.WriteString(`[`)
-			for i, v := range j.BigDataNames {
-				if i != 0 {
-					buf.WriteString(`,`)
-				}
-				fflib.WriteJsonString(buf, string(v))
-			}
-			buf.WriteString(`]`)
-		} else {
-			buf.WriteString(`null`)
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataSizes) != 0 {
-		if j.BigDataSizes == nil {
-			buf.WriteString(`"big-data-sizes":null`)
-		} else {
-			buf.WriteString(`"big-data-sizes":{ `)
-			for key, value := range j.BigDataSizes {
-				fflib.WriteJsonString(buf, key)
-				buf.WriteString(`:`)
-				fflib.FormatBits2(buf, uint64(value), 10, value < 0)
-				buf.WriteByte(',')
-			}
-			buf.Rewind(1)
-			buf.WriteByte('}')
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.BigDataDigests) != 0 {
-		if j.BigDataDigests == nil {
-			buf.WriteString(`"big-data-digests":null`)
-		} else {
-			buf.WriteString(`"big-data-digests":{ `)
-			for key, value := range j.BigDataDigests {
-				fflib.WriteJsonString(buf, key)
-				buf.WriteString(`:`)
-				fflib.WriteJsonString(buf, string(value))
-				buf.WriteByte(',')
-			}
-			buf.Rewind(1)
-			buf.WriteByte('}')
-		}
-		buf.WriteByte(',')
-	}
-	if true {
-		buf.WriteString(`"created":`)
-
-		{
-
-			obj, err = j.Created.MarshalJSON()
-			if err != nil {
-				return err
-			}
-			buf.Write(obj)
-
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.Flags) != 0 {
-		buf.WriteString(`"flags":`)
-		/* Falling back. type=map[string]interface {} kind=map */
-		err = buf.Encode(j.Flags)
-		if err != nil {
-			return err
-		}
-		buf.WriteByte(',')
-	}
-	buf.Rewind(1)
-	buf.WriteByte('}')
-	return nil
-}
-
-const (
-	ffjtImagebase = iota
-	ffjtImagenosuchkey
-
-	ffjtImageID
-
-	ffjtImageDigest
-
-	ffjtImageNames
-
-	ffjtImageTopLayer
-
-	ffjtImageMetadata
-
-	ffjtImageBigDataNames
-
-	ffjtImageBigDataSizes
-
-	ffjtImageBigDataDigests
-
-	ffjtImageCreated
-
-	ffjtImageFlags
-)
-
-var ffjKeyImageID = []byte("id")
-
-var ffjKeyImageDigest = []byte("digest")
-
-var ffjKeyImageNames = []byte("names")
-
-var ffjKeyImageTopLayer = []byte("layer")
-
-var ffjKeyImageMetadata = []byte("metadata")
-
-var ffjKeyImageBigDataNames = []byte("big-data-names")
-
-var ffjKeyImageBigDataSizes = []byte("big-data-sizes")
-
-var ffjKeyImageBigDataDigests = []byte("big-data-digests")
-
-var ffjKeyImageCreated = []byte("created")
-
-var ffjKeyImageFlags = []byte("flags")
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *Image) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *Image) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtImagebase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtImagenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				case 'b':
-
-					if bytes.Equal(ffjKeyImageBigDataNames, kn) {
-						currentKey = ffjtImageBigDataNames
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyImageBigDataSizes, kn) {
-						currentKey = ffjtImageBigDataSizes
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyImageBigDataDigests, kn) {
-						currentKey = ffjtImageBigDataDigests
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'c':
-
-					if bytes.Equal(ffjKeyImageCreated, kn) {
-						currentKey = ffjtImageCreated
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'd':
-
-					if bytes.Equal(ffjKeyImageDigest, kn) {
-						currentKey = ffjtImageDigest
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'f':
-
-					if bytes.Equal(ffjKeyImageFlags, kn) {
-						currentKey = ffjtImageFlags
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'i':
-
-					if bytes.Equal(ffjKeyImageID, kn) {
-						currentKey = ffjtImageID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'l':
-
-					if bytes.Equal(ffjKeyImageTopLayer, kn) {
-						currentKey = ffjtImageTopLayer
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'm':
-
-					if bytes.Equal(ffjKeyImageMetadata, kn) {
-						currentKey = ffjtImageMetadata
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'n':
-
-					if bytes.Equal(ffjKeyImageNames, kn) {
-						currentKey = ffjtImageNames
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageFlags, kn) {
-					currentKey = ffjtImageFlags
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyImageCreated, kn) {
-					currentKey = ffjtImageCreated
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageBigDataDigests, kn) {
-					currentKey = ffjtImageBigDataDigests
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageBigDataSizes, kn) {
-					currentKey = ffjtImageBigDataSizes
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageBigDataNames, kn) {
-					currentKey = ffjtImageBigDataNames
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyImageMetadata, kn) {
-					currentKey = ffjtImageMetadata
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyImageTopLayer, kn) {
-					currentKey = ffjtImageTopLayer
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageNames, kn) {
-					currentKey = ffjtImageNames
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyImageDigest, kn) {
-					currentKey = ffjtImageDigest
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyImageID, kn) {
-					currentKey = ffjtImageID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				currentKey = ffjtImagenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtImageID:
-					goto handle_ID
-
-				case ffjtImageDigest:
-					goto handle_Digest
-
-				case ffjtImageNames:
-					goto handle_Names
-
-				case ffjtImageTopLayer:
-					goto handle_TopLayer
-
-				case ffjtImageMetadata:
-					goto handle_Metadata
-
-				case ffjtImageBigDataNames:
-					goto handle_BigDataNames
-
-				case ffjtImageBigDataSizes:
-					goto handle_BigDataSizes
-
-				case ffjtImageBigDataDigests:
-					goto handle_BigDataDigests
-
-				case ffjtImageCreated:
-					goto handle_Created
-
-				case ffjtImageFlags:
-					goto handle_Flags
-
-				case ffjtImagenosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-handle_ID:
-
-	/* handler: j.ID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.ID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Digest:
-
-	/* handler: j.Digest type=digest.Digest kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Digest", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.Digest = digest.Digest(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Names:
-
-	/* handler: j.Names type=[]string kind=slice quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_brace && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Names = nil
-		} else {
-
-			j.Names = []string{}
-
-			wantVal := true
-
-			for {
-
-				var tmpJNames string
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_brace {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: tmpJNames type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJNames = string(string(outBuf))
-
-					}
-				}
-
-				j.Names = append(j.Names, tmpJNames)
-
-				wantVal = false
-			}
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_TopLayer:
-
-	/* handler: j.TopLayer type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.TopLayer = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Metadata:
-
-	/* handler: j.Metadata type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.Metadata = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataNames:
-
-	/* handler: j.BigDataNames type=[]string kind=slice quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_brace && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataNames = nil
-		} else {
-
-			j.BigDataNames = []string{}
-
-			wantVal := true
-
-			for {
-
-				var tmpJBigDataNames string
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_brace {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: tmpJBigDataNames type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJBigDataNames = string(string(outBuf))
-
-					}
-				}
-
-				j.BigDataNames = append(j.BigDataNames, tmpJBigDataNames)
-
-				wantVal = false
-			}
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataSizes:
-
-	/* handler: j.BigDataSizes type=map[string]int64 kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataSizes = nil
-		} else {
-
-			j.BigDataSizes = make(map[string]int64, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJBigDataSizes int64
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJBigDataSizes type=int64 kind=int64 quoted=false*/
-
-				{
-					if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-						return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for int64", tok))
-					}
-				}
-
-				{
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-						if err != nil {
-							return fs.WrapErr(err)
-						}
-
-						tmpJBigDataSizes = int64(tval)
-
-					}
-				}
-
-				j.BigDataSizes[k] = tmpJBigDataSizes
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_BigDataDigests:
-
-	/* handler: j.BigDataDigests type=map[string]digest.Digest kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.BigDataDigests = nil
-		} else {
-
-			j.BigDataDigests = make(map[string]digest.Digest, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJBigDataDigests digest.Digest
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJBigDataDigests type=digest.Digest kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Digest", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJBigDataDigests = digest.Digest(string(outBuf))
-
-					}
-				}
-
-				j.BigDataDigests[k] = tmpJBigDataDigests
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Created:
-
-	/* handler: j.Created type=time.Time kind=struct quoted=false*/
-
-	{
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tbuf, err := fs.CaptureField(tok)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			err = j.Created.UnmarshalJSON(tbuf)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-		}
-		state = fflib.FFParse_after_value
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Flags:
-
-	/* handler: j.Flags type=map[string]interface {} kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Flags = nil
-		} else {
-
-			j.Flags = make(map[string]interface{}, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJFlags interface{}
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJFlags type=interface {} kind=interface quoted=false*/
-
-				{
-					/* Falling back. type=interface {} kind=interface */
-					tbuf, err := fs.CaptureField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-
-					err = json.Unmarshal(tbuf, &tmpJFlags)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-				}
-
-				j.Flags[k] = tmpJFlags
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *imageStore) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *imageStore) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{}`)
-	return nil
-}
-
-const (
-	ffjtimageStorebase = iota
-	ffjtimageStorenosuchkey
-)
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *imageStore) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *imageStore) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtimageStorebase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtimageStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				}
-
-				currentKey = ffjtimageStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtimageStorenosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/layers.go b/vendor/github.com/containers/storage/layers.go
deleted file mode 100644
index a1be6eee77..0000000000
--- a/vendor/github.com/containers/storage/layers.go
+++ /dev/null
@@ -1,1041 +0,0 @@
-package storage
-
-import (
-	"bytes"
-	"compress/gzip"
-	"encoding/json"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"time"
-
-	drivers "github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/stringid"
-	"github.com/containers/storage/pkg/truncindex"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"github.com/vbatts/tar-split/tar/asm"
-	"github.com/vbatts/tar-split/tar/storage"
-)
-
-const (
-	tarSplitSuffix  = ".tar-split.gz"
-	incompleteFlag  = "incomplete"
-	compressionFlag = "diff-compression"
-)
-
-// A Layer is a record of a copy-on-write layer that's stored by the lower
-// level graph driver.
-type Layer struct {
-	// ID is either one which was specified at create-time, or a random
-	// value which was generated by the library.
-	ID string `json:"id"`
-
-	// Names is an optional set of user-defined convenience values.  The
-	// layer can be referred to by its ID or any of its names.  Names are
-	// unique among layers.
-	Names []string `json:"names,omitempty"`
-
-	// Parent is the ID of a layer from which this layer inherits data.
-	Parent string `json:"parent,omitempty"`
-
-	// Metadata is data we keep for the convenience of the caller.  It is not
-	// expected to be large, since it is kept in memory.
-	Metadata string `json:"metadata,omitempty"`
-
-	// MountLabel is an SELinux label which should be used when attempting to mount
-	// the layer.
-	MountLabel string `json:"mountlabel,omitempty"`
-
-	// MountPoint is the path where the layer is mounted, or where it was most
-	// recently mounted.  This can change between subsequent Unmount() and
-	// Mount() calls, so the caller should consult this value after Mount()
-	// succeeds to find the location of the container's root filesystem.
-	MountPoint string `json:"-"`
-
-	// MountCount is used as a reference count for the container's layer being
-	// mounted at the mount point.
-	MountCount int `json:"-"`
-
-	// Created is the datestamp for when this layer was created.  Older
-	// versions of the library did not track this information, so callers
-	// will likely want to use the IsZero() method to verify that a value
-	// is set before using it.
-	Created time.Time `json:"created,omitempty"`
-
-	// CompressedDigest is the digest of the blob that was last passed to
-	// ApplyDiff() or Put(), as it was presented to us.
-	CompressedDigest digest.Digest `json:"compressed-diff-digest,omitempty"`
-
-	// CompressedSize is the length of the blob that was last passed to
-	// ApplyDiff() or Put(), as it was presented to us.  If
-	// CompressedDigest is not set, this should be treated as if it were an
-	// uninitialized value.
-	CompressedSize int64 `json:"compressed-size,omitempty"`
-
-	// UncompressedDigest is the digest of the blob that was last passed to
-	// ApplyDiff() or Put(), after we decompressed it.  Often referred to
-	// as a DiffID.
-	UncompressedDigest digest.Digest `json:"diff-digest,omitempty"`
-
-	// UncompressedSize is the length of the blob that was last passed to
-	// ApplyDiff() or Put(), after we decompressed it.  If
-	// UncompressedDigest is not set, this should be treated as if it were
-	// an uninitialized value.
-	UncompressedSize int64 `json:"diff-size,omitempty"`
-
-	// CompressionType is the type of compression which we detected on the blob
-	// that was last passed to ApplyDiff() or Put().
-	CompressionType archive.Compression `json:"compression,omitempty"`
-
-	// Flags is arbitrary data about the layer.
-	Flags map[string]interface{} `json:"flags,omitempty"`
-}
-
-type layerMountPoint struct {
-	ID         string `json:"id"`
-	MountPoint string `json:"path"`
-	MountCount int    `json:"count"`
-}
-
-// DiffOptions override the default behavior of Diff() methods.
-type DiffOptions struct {
-	// Compression, if set overrides the default compressor when generating a diff.
-	Compression *archive.Compression
-}
-
-// ROLayerStore wraps a graph driver, adding the ability to refer to layers by
-// name, and keeping track of parent-child relationships, along with a list of
-// all known layers.
-type ROLayerStore interface {
-	ROFileBasedStore
-	ROMetadataStore
-
-	// Exists checks if a layer with the specified name or ID is known.
-	Exists(id string) bool
-
-	// Get retrieves information about a layer given an ID or name.
-	Get(id string) (*Layer, error)
-
-	// Status returns an slice of key-value pairs, suitable for human consumption,
-	// relaying whatever status information the underlying driver can share.
-	Status() ([][2]string, error)
-
-	// Changes returns a slice of Change structures, which contain a pathname
-	// (Path) and a description of what sort of change (Kind) was made by the
-	// layer (either ChangeModify, ChangeAdd, or ChangeDelete), relative to a
-	// specified layer.  By default, the layer's parent is used as a reference.
-	Changes(from, to string) ([]archive.Change, error)
-
-	// Diff produces a tarstream which can be applied to a layer with the contents
-	// of the first layer to produce a layer with the contents of the second layer.
-	// By default, the parent of the second layer is used as the first
-	// layer, so it need not be specified.  Options can be used to override
-	// default behavior, but are also not required.
-	Diff(from, to string, options *DiffOptions) (io.ReadCloser, error)
-
-	// DiffSize produces an estimate of the length of the tarstream which would be
-	// produced by Diff.
-	DiffSize(from, to string) (int64, error)
-
-	// Size produces a cached value for the uncompressed size of the layer,
-	// if one is known, or -1 if it is not known.  If the layer can not be
-	// found, it returns an error.
-	Size(name string) (int64, error)
-
-	// Lookup attempts to translate a name to an ID.  Most methods do this
-	// implicitly.
-	Lookup(name string) (string, error)
-
-	// LayersByCompressedDigest returns a slice of the layers with the
-	// specified compressed digest value recorded for them.
-	LayersByCompressedDigest(d digest.Digest) ([]Layer, error)
-
-	// LayersByUncompressedDigest returns a slice of the layers with the
-	// specified uncompressed digest value recorded for them.
-	LayersByUncompressedDigest(d digest.Digest) ([]Layer, error)
-
-	// Layers returns a slice of the known layers.
-	Layers() ([]Layer, error)
-}
-
-// LayerStore wraps a graph driver, adding the ability to refer to layers by
-// name, and keeping track of parent-child relationships, along with a list of
-// all known layers.
-type LayerStore interface {
-	ROLayerStore
-	RWFileBasedStore
-	RWMetadataStore
-	FlaggableStore
-
-	// Create creates a new layer, optionally giving it a specified ID rather than
-	// a randomly-generated one, either inheriting data from another specified
-	// layer or the empty base layer.  The new layer can optionally be given names
-	// and have an SELinux label specified for use when mounting it.  Some
-	// underlying drivers can accept a "size" option.  At this time, most
-	// underlying drivers do not themselves distinguish between writeable
-	// and read-only layers.
-	Create(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool) (*Layer, error)
-
-	// CreateWithFlags combines the functions of Create and SetFlag.
-	CreateWithFlags(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool, flags map[string]interface{}) (layer *Layer, err error)
-
-	// Put combines the functions of CreateWithFlags and ApplyDiff.
-	Put(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool, flags map[string]interface{}, diff io.Reader) (*Layer, int64, error)
-
-	// SetNames replaces the list of names associated with a layer with the
-	// supplied values.
-	SetNames(id string, names []string) error
-
-	// Delete deletes a layer with the specified name or ID.
-	Delete(id string) error
-
-	// Wipe deletes all layers.
-	Wipe() error
-
-	// Mount mounts a layer for use.  If the specified layer is the parent of other
-	// layers, it should not be written to.  An SELinux label to be applied to the
-	// mount can be specified to override the one configured for the layer.
-	Mount(id, mountLabel string) (string, error)
-
-	// Unmount unmounts a layer when it is no longer in use.
-	Unmount(id string) error
-
-	// ApplyDiff reads a tarstream which was created by a previous call to Diff and
-	// applies its changes to a specified layer.
-	ApplyDiff(to string, diff io.Reader) (int64, error)
-}
-
-type layerStore struct {
-	lockfile          Locker
-	rundir            string
-	driver            drivers.Driver
-	layerdir          string
-	layers            []*Layer
-	idindex           *truncindex.TruncIndex
-	byid              map[string]*Layer
-	byname            map[string]*Layer
-	bymount           map[string]*Layer
-	bycompressedsum   map[digest.Digest][]string
-	byuncompressedsum map[digest.Digest][]string
-}
-
-func (r *layerStore) Layers() ([]Layer, error) {
-	layers := make([]Layer, len(r.layers))
-	for i := range r.layers {
-		layers[i] = *(r.layers[i])
-	}
-	return layers, nil
-}
-
-func (r *layerStore) mountspath() string {
-	return filepath.Join(r.rundir, "mountpoints.json")
-}
-
-func (r *layerStore) layerspath() string {
-	return filepath.Join(r.layerdir, "layers.json")
-}
-
-func (r *layerStore) Load() error {
-	shouldSave := false
-	rpath := r.layerspath()
-	data, err := ioutil.ReadFile(rpath)
-	if err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	layers := []*Layer{}
-	idlist := []string{}
-	ids := make(map[string]*Layer)
-	names := make(map[string]*Layer)
-	mounts := make(map[string]*Layer)
-	compressedsums := make(map[digest.Digest][]string)
-	uncompressedsums := make(map[digest.Digest][]string)
-	if err = json.Unmarshal(data, &layers); len(data) == 0 || err == nil {
-		idlist = make([]string, 0, len(layers))
-		for n, layer := range layers {
-			ids[layer.ID] = layers[n]
-			idlist = append(idlist, layer.ID)
-			for _, name := range layer.Names {
-				if conflict, ok := names[name]; ok {
-					r.removeName(conflict, name)
-					shouldSave = true
-				}
-				names[name] = layers[n]
-			}
-			if layer.CompressedDigest != "" {
-				compressedsums[layer.CompressedDigest] = append(compressedsums[layer.CompressedDigest], layer.ID)
-			}
-			if layer.UncompressedDigest != "" {
-				uncompressedsums[layer.UncompressedDigest] = append(uncompressedsums[layer.UncompressedDigest], layer.ID)
-			}
-		}
-	}
-	if shouldSave && !r.IsReadWrite() {
-		return ErrDuplicateLayerNames
-	}
-	mpath := r.mountspath()
-	data, err = ioutil.ReadFile(mpath)
-	if err != nil && !os.IsNotExist(err) {
-		return err
-	}
-	layerMounts := []layerMountPoint{}
-	if err = json.Unmarshal(data, &layerMounts); len(data) == 0 || err == nil {
-		for _, mount := range layerMounts {
-			if mount.MountPoint != "" {
-				if layer, ok := ids[mount.ID]; ok {
-					mounts[mount.MountPoint] = layer
-					layer.MountPoint = mount.MountPoint
-					layer.MountCount = mount.MountCount
-				}
-			}
-		}
-	}
-	r.layers = layers
-	r.idindex = truncindex.NewTruncIndex(idlist)
-	r.byid = ids
-	r.byname = names
-	r.bymount = mounts
-	r.bycompressedsum = compressedsums
-	r.byuncompressedsum = uncompressedsums
-	err = nil
-	// Last step: if we're writable, try to remove anything that a previous
-	// user of this storage area marked for deletion but didn't manage to
-	// actually delete.
-	if r.IsReadWrite() {
-		for _, layer := range r.layers {
-			if layer.Flags == nil {
-				layer.Flags = make(map[string]interface{})
-			}
-			if cleanup, ok := layer.Flags[incompleteFlag]; ok {
-				if b, ok := cleanup.(bool); ok && b {
-					err = r.Delete(layer.ID)
-					if err != nil {
-						break
-					}
-					shouldSave = true
-				}
-			}
-		}
-		if shouldSave {
-			return r.Save()
-		}
-	}
-	return err
-}
-
-func (r *layerStore) Save() error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to modify the layer store at %q", r.layerspath())
-	}
-	rpath := r.layerspath()
-	if err := os.MkdirAll(filepath.Dir(rpath), 0700); err != nil {
-		return err
-	}
-	jldata, err := json.Marshal(&r.layers)
-	if err != nil {
-		return err
-	}
-	mpath := r.mountspath()
-	if err := os.MkdirAll(filepath.Dir(mpath), 0700); err != nil {
-		return err
-	}
-	mounts := make([]layerMountPoint, 0, len(r.layers))
-	for _, layer := range r.layers {
-		if layer.MountPoint != "" && layer.MountCount > 0 {
-			mounts = append(mounts, layerMountPoint{
-				ID:         layer.ID,
-				MountPoint: layer.MountPoint,
-				MountCount: layer.MountCount,
-			})
-		}
-	}
-	jmdata, err := json.Marshal(&mounts)
-	if err != nil {
-		return err
-	}
-	if err := ioutils.AtomicWriteFile(rpath, jldata, 0600); err != nil {
-		return err
-	}
-	defer r.Touch()
-	return ioutils.AtomicWriteFile(mpath, jmdata, 0600)
-}
-
-func newLayerStore(rundir string, layerdir string, driver drivers.Driver) (LayerStore, error) {
-	if err := os.MkdirAll(rundir, 0700); err != nil {
-		return nil, err
-	}
-	if err := os.MkdirAll(layerdir, 0700); err != nil {
-		return nil, err
-	}
-	lockfile, err := GetLockfile(filepath.Join(layerdir, "layers.lock"))
-	if err != nil {
-		return nil, err
-	}
-	lockfile.Lock()
-	defer lockfile.Unlock()
-	rlstore := layerStore{
-		lockfile: lockfile,
-		driver:   driver,
-		rundir:   rundir,
-		layerdir: layerdir,
-		byid:     make(map[string]*Layer),
-		bymount:  make(map[string]*Layer),
-		byname:   make(map[string]*Layer),
-	}
-	if err := rlstore.Load(); err != nil {
-		return nil, err
-	}
-	return &rlstore, nil
-}
-
-func newROLayerStore(rundir string, layerdir string, driver drivers.Driver) (ROLayerStore, error) {
-	lockfile, err := GetROLockfile(filepath.Join(layerdir, "layers.lock"))
-	if err != nil {
-		return nil, err
-	}
-	lockfile.Lock()
-	defer lockfile.Unlock()
-	rlstore := layerStore{
-		lockfile: lockfile,
-		driver:   driver,
-		rundir:   rundir,
-		layerdir: layerdir,
-		byid:     make(map[string]*Layer),
-		bymount:  make(map[string]*Layer),
-		byname:   make(map[string]*Layer),
-	}
-	if err := rlstore.Load(); err != nil {
-		return nil, err
-	}
-	return &rlstore, nil
-}
-
-func (r *layerStore) lookup(id string) (*Layer, bool) {
-	if layer, ok := r.byid[id]; ok {
-		return layer, ok
-	} else if layer, ok := r.byname[id]; ok {
-		return layer, ok
-	} else if longid, err := r.idindex.Get(id); err == nil {
-		layer, ok := r.byid[longid]
-		return layer, ok
-	}
-	return nil, false
-}
-
-func (r *layerStore) Size(name string) (int64, error) {
-	layer, ok := r.lookup(name)
-	if !ok {
-		return -1, ErrLayerUnknown
-	}
-	// We use the presence of a non-empty digest as an indicator that the size value was intentionally set, and that
-	// a zero value is not just present because it was never set to anything else (which can happen if the layer was
-	// created by a version of this library that didn't keep track of digest and size information).
-	if layer.UncompressedDigest != "" {
-		return layer.UncompressedSize, nil
-	}
-	return -1, nil
-}
-
-func (r *layerStore) ClearFlag(id string, flag string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to clear flags on layers at %q", r.layerspath())
-	}
-	layer, ok := r.lookup(id)
-	if !ok {
-		return ErrLayerUnknown
-	}
-	delete(layer.Flags, flag)
-	return r.Save()
-}
-
-func (r *layerStore) SetFlag(id string, flag string, value interface{}) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to set flags on layers at %q", r.layerspath())
-	}
-	layer, ok := r.lookup(id)
-	if !ok {
-		return ErrLayerUnknown
-	}
-	if layer.Flags == nil {
-		layer.Flags = make(map[string]interface{})
-	}
-	layer.Flags[flag] = value
-	return r.Save()
-}
-
-func (r *layerStore) Status() ([][2]string, error) {
-	return r.driver.Status(), nil
-}
-
-func (r *layerStore) Put(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool, flags map[string]interface{}, diff io.Reader) (layer *Layer, size int64, err error) {
-	if !r.IsReadWrite() {
-		return nil, -1, errors.Wrapf(ErrStoreIsReadOnly, "not allowed to create new layers at %q", r.layerspath())
-	}
-	size = -1
-	if err := os.MkdirAll(r.rundir, 0700); err != nil {
-		return nil, -1, err
-	}
-	if err := os.MkdirAll(r.layerdir, 0700); err != nil {
-		return nil, -1, err
-	}
-	if parent != "" {
-		if parentLayer, ok := r.lookup(parent); ok {
-			parent = parentLayer.ID
-		}
-	}
-	if id == "" {
-		id = stringid.GenerateRandomID()
-		_, idInUse := r.byid[id]
-		for idInUse {
-			id = stringid.GenerateRandomID()
-			_, idInUse = r.byid[id]
-		}
-	}
-	if _, idInUse := r.byid[id]; idInUse {
-		return nil, -1, ErrDuplicateID
-	}
-	names = dedupeNames(names)
-	for _, name := range names {
-		if _, nameInUse := r.byname[name]; nameInUse {
-			return nil, -1, ErrDuplicateName
-		}
-	}
-	opts := drivers.CreateOpts{
-		MountLabel: mountLabel,
-		StorageOpt: options,
-	}
-	if writeable {
-		err = r.driver.CreateReadWrite(id, parent, &opts)
-	} else {
-		err = r.driver.Create(id, parent, &opts)
-	}
-	if err == nil {
-		layer = &Layer{
-			ID:         id,
-			Parent:     parent,
-			Names:      names,
-			MountLabel: mountLabel,
-			Created:    time.Now().UTC(),
-			Flags:      make(map[string]interface{}),
-		}
-		r.layers = append(r.layers, layer)
-		r.idindex.Add(id)
-		r.byid[id] = layer
-		for _, name := range names {
-			r.byname[name] = layer
-		}
-		for flag, value := range flags {
-			layer.Flags[flag] = value
-		}
-		if diff != nil {
-			layer.Flags[incompleteFlag] = true
-			err = r.Save()
-			if err != nil {
-				// We don't have a record of this layer, but at least
-				// try to clean it up underneath us.
-				r.driver.Remove(id)
-				return nil, -1, err
-			}
-			size, err = r.ApplyDiff(layer.ID, diff)
-			if err != nil {
-				if r.Delete(layer.ID) != nil {
-					// Either a driver error or an error saving.
-					// We now have a layer that's been marked for
-					// deletion but which we failed to remove.
-				}
-				return nil, -1, err
-			}
-			delete(layer.Flags, incompleteFlag)
-		}
-		err = r.Save()
-		if err != nil {
-			// We don't have a record of this layer, but at least
-			// try to clean it up underneath us.
-			r.driver.Remove(id)
-			return nil, -1, err
-		}
-	}
-	return layer, size, err
-}
-
-func (r *layerStore) CreateWithFlags(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool, flags map[string]interface{}) (layer *Layer, err error) {
-	layer, _, err = r.Put(id, parent, names, mountLabel, options, writeable, flags, nil)
-	return layer, err
-}
-
-func (r *layerStore) Create(id, parent string, names []string, mountLabel string, options map[string]string, writeable bool) (layer *Layer, err error) {
-	return r.CreateWithFlags(id, parent, names, mountLabel, options, writeable, nil)
-}
-
-func (r *layerStore) Mount(id, mountLabel string) (string, error) {
-	if !r.IsReadWrite() {
-		return "", errors.Wrapf(ErrStoreIsReadOnly, "not allowed to update mount locations for layers at %q", r.mountspath())
-	}
-	layer, ok := r.lookup(id)
-	if !ok {
-		return "", ErrLayerUnknown
-	}
-	if layer.MountCount > 0 {
-		layer.MountCount++
-		return layer.MountPoint, r.Save()
-	}
-	if mountLabel == "" {
-		mountLabel = layer.MountLabel
-	}
-	mountpoint, err := r.driver.Get(id, mountLabel)
-	if mountpoint != "" && err == nil {
-		if layer.MountPoint != "" {
-			delete(r.bymount, layer.MountPoint)
-		}
-		layer.MountPoint = filepath.Clean(mountpoint)
-		layer.MountCount++
-		r.bymount[layer.MountPoint] = layer
-		err = r.Save()
-	}
-	return mountpoint, err
-}
-
-func (r *layerStore) Unmount(id string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to update mount locations for layers at %q", r.mountspath())
-	}
-	layer, ok := r.lookup(id)
-	if !ok {
-		layerByMount, ok := r.bymount[filepath.Clean(id)]
-		if !ok {
-			return ErrLayerUnknown
-		}
-		layer = layerByMount
-	}
-	if layer.MountCount > 1 {
-		layer.MountCount--
-		return r.Save()
-	}
-	err := r.driver.Put(id)
-	if err == nil || os.IsNotExist(err) {
-		if layer.MountPoint != "" {
-			delete(r.bymount, layer.MountPoint)
-		}
-		layer.MountCount--
-		layer.MountPoint = ""
-		err = r.Save()
-	}
-	return err
-}
-
-func (r *layerStore) removeName(layer *Layer, name string) {
-	layer.Names = stringSliceWithoutValue(layer.Names, name)
-}
-
-func (r *layerStore) SetNames(id string, names []string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to change layer name assignments at %q", r.layerspath())
-	}
-	names = dedupeNames(names)
-	if layer, ok := r.lookup(id); ok {
-		for _, name := range layer.Names {
-			delete(r.byname, name)
-		}
-		for _, name := range names {
-			if otherLayer, ok := r.byname[name]; ok {
-				r.removeName(otherLayer, name)
-			}
-			r.byname[name] = layer
-		}
-		layer.Names = names
-		return r.Save()
-	}
-	return ErrLayerUnknown
-}
-
-func (r *layerStore) Metadata(id string) (string, error) {
-	if layer, ok := r.lookup(id); ok {
-		return layer.Metadata, nil
-	}
-	return "", ErrLayerUnknown
-}
-
-func (r *layerStore) SetMetadata(id, metadata string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to modify layer metadata at %q", r.layerspath())
-	}
-	if layer, ok := r.lookup(id); ok {
-		layer.Metadata = metadata
-		return r.Save()
-	}
-	return ErrLayerUnknown
-}
-
-func (r *layerStore) tspath(id string) string {
-	return filepath.Join(r.layerdir, id+tarSplitSuffix)
-}
-
-func (r *layerStore) Delete(id string) error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to delete layers at %q", r.layerspath())
-	}
-	layer, ok := r.lookup(id)
-	if !ok {
-		return ErrLayerUnknown
-	}
-	id = layer.ID
-	for layer.MountCount > 0 {
-		if err := r.Unmount(id); err != nil {
-			return err
-		}
-	}
-	err := r.driver.Remove(id)
-	if err == nil {
-		os.Remove(r.tspath(id))
-		delete(r.byid, id)
-		r.idindex.Delete(id)
-		if layer.MountPoint != "" {
-			delete(r.bymount, layer.MountPoint)
-		}
-		toDeleteIndex := -1
-		for i, candidate := range r.layers {
-			if candidate.ID == id {
-				toDeleteIndex = i
-				break
-			}
-		}
-		if toDeleteIndex != -1 {
-			// delete the layer at toDeleteIndex
-			if toDeleteIndex == len(r.layers)-1 {
-				r.layers = r.layers[:len(r.layers)-1]
-			} else {
-				r.layers = append(r.layers[:toDeleteIndex], r.layers[toDeleteIndex+1:]...)
-			}
-		}
-		if err = r.Save(); err != nil {
-			return err
-		}
-	}
-	return err
-}
-
-func (r *layerStore) Lookup(name string) (id string, err error) {
-	if layer, ok := r.lookup(name); ok {
-		return layer.ID, nil
-	}
-	return "", ErrLayerUnknown
-}
-
-func (r *layerStore) Exists(id string) bool {
-	_, ok := r.lookup(id)
-	return ok
-}
-
-func (r *layerStore) Get(id string) (*Layer, error) {
-	if layer, ok := r.lookup(id); ok {
-		return layer, nil
-	}
-	return nil, ErrLayerUnknown
-}
-
-func (r *layerStore) Wipe() error {
-	if !r.IsReadWrite() {
-		return errors.Wrapf(ErrStoreIsReadOnly, "not allowed to delete layers at %q", r.layerspath())
-	}
-	ids := make([]string, 0, len(r.byid))
-	for id := range r.byid {
-		ids = append(ids, id)
-	}
-	for _, id := range ids {
-		if err := r.Delete(id); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func (r *layerStore) findParentAndLayer(from, to string) (fromID string, toID string, toLayer *Layer, err error) {
-	var ok bool
-	var fromLayer *Layer
-	toLayer, ok = r.lookup(to)
-	if !ok {
-		return "", "", nil, ErrLayerUnknown
-	}
-	to = toLayer.ID
-	if from == "" {
-		from = toLayer.Parent
-	}
-	if from != "" {
-		fromLayer, ok = r.lookup(from)
-		if ok {
-			from = fromLayer.ID
-		} else {
-			fromLayer, ok = r.lookup(toLayer.Parent)
-			if ok {
-				from = fromLayer.ID
-			}
-		}
-	}
-	return from, to, toLayer, nil
-}
-
-func (r *layerStore) Changes(from, to string) ([]archive.Change, error) {
-	from, to, toLayer, err := r.findParentAndLayer(from, to)
-	if err != nil {
-		return nil, ErrLayerUnknown
-	}
-	return r.driver.Changes(to, from, toLayer.MountLabel)
-}
-
-type simpleGetCloser struct {
-	r    *layerStore
-	path string
-	id   string
-}
-
-func (s *simpleGetCloser) Get(path string) (io.ReadCloser, error) {
-	return os.Open(filepath.Join(s.path, path))
-}
-
-func (s *simpleGetCloser) Close() error {
-	return s.r.Unmount(s.id)
-}
-
-func (r *layerStore) newFileGetter(id string) (drivers.FileGetCloser, error) {
-	if getter, ok := r.driver.(drivers.DiffGetterDriver); ok {
-		return getter.DiffGetter(id)
-	}
-	path, err := r.Mount(id, "")
-	if err != nil {
-		return nil, err
-	}
-	return &simpleGetCloser{
-		r:    r,
-		path: path,
-		id:   id,
-	}, nil
-}
-
-func (r *layerStore) Diff(from, to string, options *DiffOptions) (io.ReadCloser, error) {
-	var metadata storage.Unpacker
-
-	from, to, toLayer, err := r.findParentAndLayer(from, to)
-	if err != nil {
-		return nil, ErrLayerUnknown
-	}
-	// Default to applying the type of compression that we noted was used
-	// for the layerdiff when it was applied.
-	compression := toLayer.CompressionType
-	// If a particular compression type (or no compression) was selected,
-	// use that instead.
-	if options != nil && options.Compression != nil {
-		compression = *options.Compression
-	}
-	maybeCompressReadCloser := func(rc io.ReadCloser) (io.ReadCloser, error) {
-		// Depending on whether or not compression is desired, return either the
-		// passed-in ReadCloser, or a new one that provides its readers with a
-		// compressed version of the data that the original would have provided
-		// to its readers.
-		if compression == archive.Uncompressed {
-			return rc, nil
-		}
-		preader, pwriter := io.Pipe()
-		compressor, err := archive.CompressStream(pwriter, compression)
-		if err != nil {
-			rc.Close()
-			pwriter.Close()
-			preader.Close()
-			return nil, err
-		}
-		go func() {
-			defer pwriter.Close()
-			defer compressor.Close()
-			defer rc.Close()
-			io.Copy(compressor, rc)
-		}()
-		return preader, nil
-	}
-
-	if from != toLayer.Parent {
-		diff, err := r.driver.Diff(to, from, toLayer.MountLabel)
-		if err != nil {
-			return nil, err
-		}
-		return maybeCompressReadCloser(diff)
-	}
-
-	tsfile, err := os.Open(r.tspath(to))
-	if err != nil {
-		if !os.IsNotExist(err) {
-			return nil, err
-		}
-		diff, err := r.driver.Diff(to, from, toLayer.MountLabel)
-		if err != nil {
-			return nil, err
-		}
-		return maybeCompressReadCloser(diff)
-	}
-	defer tsfile.Close()
-
-	decompressor, err := gzip.NewReader(tsfile)
-	if err != nil {
-		return nil, err
-	}
-	defer decompressor.Close()
-
-	tsbytes, err := ioutil.ReadAll(decompressor)
-	if err != nil {
-		return nil, err
-	}
-
-	metadata = storage.NewJSONUnpacker(bytes.NewBuffer(tsbytes))
-
-	fgetter, err := r.newFileGetter(to)
-	if err != nil {
-		return nil, err
-	}
-
-	tarstream := asm.NewOutputTarStream(fgetter, metadata)
-	rc := ioutils.NewReadCloserWrapper(tarstream, func() error {
-		err1 := tarstream.Close()
-		err2 := fgetter.Close()
-		if err2 == nil {
-			return err1
-		}
-		return err2
-	})
-	return maybeCompressReadCloser(rc)
-}
-
-func (r *layerStore) DiffSize(from, to string) (size int64, err error) {
-	var toLayer *Layer
-	from, to, toLayer, err = r.findParentAndLayer(from, to)
-	if err != nil {
-		return -1, ErrLayerUnknown
-	}
-	return r.driver.DiffSize(to, from, toLayer.MountLabel)
-}
-
-func (r *layerStore) ApplyDiff(to string, diff io.Reader) (size int64, err error) {
-	if !r.IsReadWrite() {
-		return -1, errors.Wrapf(ErrStoreIsReadOnly, "not allowed to modify layer contents at %q", r.layerspath())
-	}
-
-	layer, ok := r.lookup(to)
-	if !ok {
-		return -1, ErrLayerUnknown
-	}
-
-	header := make([]byte, 10240)
-	n, err := diff.Read(header)
-	if err != nil && err != io.EOF {
-		return -1, err
-	}
-
-	compression := archive.DetectCompression(header[:n])
-	compressedDigest := digest.Canonical.Digester()
-	compressedCounter := ioutils.NewWriteCounter(compressedDigest.Hash())
-	defragmented := io.TeeReader(io.MultiReader(bytes.NewBuffer(header[:n]), diff), compressedCounter)
-
-	tsdata := bytes.Buffer{}
-	compressor, err := gzip.NewWriterLevel(&tsdata, gzip.BestSpeed)
-	if err != nil {
-		compressor = gzip.NewWriter(&tsdata)
-	}
-	metadata := storage.NewJSONPacker(compressor)
-	uncompressed, err := archive.DecompressStream(defragmented)
-	if err != nil {
-		return -1, err
-	}
-	uncompressedDigest := digest.Canonical.Digester()
-	uncompressedCounter := ioutils.NewWriteCounter(uncompressedDigest.Hash())
-	payload, err := asm.NewInputTarStream(io.TeeReader(uncompressed, uncompressedCounter), metadata, storage.NewDiscardFilePutter())
-	if err != nil {
-		return -1, err
-	}
-	size, err = r.driver.ApplyDiff(layer.ID, layer.Parent, layer.MountLabel, payload)
-	if err != nil {
-		return -1, err
-	}
-	compressor.Close()
-	if err == nil {
-		if err := os.MkdirAll(filepath.Dir(r.tspath(layer.ID)), 0700); err != nil {
-			return -1, err
-		}
-		if err := ioutils.AtomicWriteFile(r.tspath(layer.ID), tsdata.Bytes(), 0600); err != nil {
-			return -1, err
-		}
-	}
-
-	updateDigestMap := func(m *map[digest.Digest][]string, oldvalue, newvalue digest.Digest, id string) {
-		var newList []string
-		if oldvalue != "" {
-			for _, value := range (*m)[oldvalue] {
-				if value != id {
-					newList = append(newList, value)
-				}
-			}
-			if len(newList) > 0 {
-				(*m)[oldvalue] = newList
-			} else {
-				delete(*m, oldvalue)
-			}
-		}
-		if newvalue != "" {
-			(*m)[newvalue] = append((*m)[newvalue], id)
-		}
-	}
-	updateDigestMap(&r.bycompressedsum, layer.CompressedDigest, compressedDigest.Digest(), layer.ID)
-	layer.CompressedDigest = compressedDigest.Digest()
-	layer.CompressedSize = compressedCounter.Count
-	updateDigestMap(&r.byuncompressedsum, layer.UncompressedDigest, uncompressedDigest.Digest(), layer.ID)
-	layer.UncompressedDigest = uncompressedDigest.Digest()
-	layer.UncompressedSize = uncompressedCounter.Count
-	layer.CompressionType = compression
-
-	err = r.Save()
-
-	return size, err
-}
-
-func (r *layerStore) layersByDigestMap(m map[digest.Digest][]string, d digest.Digest) ([]Layer, error) {
-	var layers []Layer
-	for _, layerID := range m[d] {
-		layer, ok := r.lookup(layerID)
-		if !ok {
-			return nil, ErrLayerUnknown
-		}
-		layers = append(layers, *layer)
-	}
-	return layers, nil
-}
-
-func (r *layerStore) LayersByCompressedDigest(d digest.Digest) ([]Layer, error) {
-	return r.layersByDigestMap(r.bycompressedsum, d)
-}
-
-func (r *layerStore) LayersByUncompressedDigest(d digest.Digest) ([]Layer, error) {
-	return r.layersByDigestMap(r.byuncompressedsum, d)
-}
-
-func (r *layerStore) Lock() {
-	r.lockfile.Lock()
-}
-
-func (r *layerStore) Unlock() {
-	r.lockfile.Unlock()
-}
-
-func (r *layerStore) Touch() error {
-	return r.lockfile.Touch()
-}
-
-func (r *layerStore) Modified() (bool, error) {
-	return r.lockfile.Modified()
-}
-
-func (r *layerStore) IsReadWrite() bool {
-	return r.lockfile.IsReadWrite()
-}
-
-func (r *layerStore) TouchedSince(when time.Time) bool {
-	return r.lockfile.TouchedSince(when)
-}
diff --git a/vendor/github.com/containers/storage/layers_ffjson.go b/vendor/github.com/containers/storage/layers_ffjson.go
deleted file mode 100644
index 1d494e9d43..0000000000
--- a/vendor/github.com/containers/storage/layers_ffjson.go
+++ /dev/null
@@ -1,1713 +0,0 @@
-// Code generated by ffjson <https://github.com/pquerna/ffjson>. DO NOT EDIT.
-// source: layers.go.  Hack to make this work on github.com
-
-package storage
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/opencontainers/go-digest"
-	fflib "github.com/pquerna/ffjson/fflib/v1"
-)
-
-// MarshalJSON marshal bytes to json - template
-func (j *DiffOptions) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *DiffOptions) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	if j.Compression != nil {
-		buf.WriteString(`{"Compression":`)
-		fflib.FormatBits2(buf, uint64(*j.Compression), 10, *j.Compression < 0)
-	} else {
-		buf.WriteString(`{"Compression":null`)
-	}
-	buf.WriteByte('}')
-	return nil
-}
-
-const (
-	ffjtDiffOptionsbase = iota
-	ffjtDiffOptionsnosuchkey
-
-	ffjtDiffOptionsCompression
-)
-
-var ffjKeyDiffOptionsCompression = []byte("Compression")
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *DiffOptions) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *DiffOptions) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtDiffOptionsbase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtDiffOptionsnosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				case 'C':
-
-					if bytes.Equal(ffjKeyDiffOptionsCompression, kn) {
-						currentKey = ffjtDiffOptionsCompression
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				}
-
-				if fflib.EqualFoldRight(ffjKeyDiffOptionsCompression, kn) {
-					currentKey = ffjtDiffOptionsCompression
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				currentKey = ffjtDiffOptionsnosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtDiffOptionsCompression:
-					goto handle_Compression
-
-				case ffjtDiffOptionsnosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-handle_Compression:
-
-	/* handler: j.Compression type=archive.Compression kind=int quoted=false*/
-
-	{
-		if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-			return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Compression", tok))
-		}
-	}
-
-	{
-
-		if tok == fflib.FFTok_null {
-
-			j.Compression = nil
-
-		} else {
-
-			tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			ttypval := archive.Compression(tval)
-			j.Compression = &ttypval
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *Layer) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *Layer) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{ "id":`)
-	fflib.WriteJsonString(buf, string(j.ID))
-	buf.WriteByte(',')
-	if len(j.Names) != 0 {
-		buf.WriteString(`"names":`)
-		if j.Names != nil {
-			buf.WriteString(`[`)
-			for i, v := range j.Names {
-				if i != 0 {
-					buf.WriteString(`,`)
-				}
-				fflib.WriteJsonString(buf, string(v))
-			}
-			buf.WriteString(`]`)
-		} else {
-			buf.WriteString(`null`)
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.Parent) != 0 {
-		buf.WriteString(`"parent":`)
-		fflib.WriteJsonString(buf, string(j.Parent))
-		buf.WriteByte(',')
-	}
-	if len(j.Metadata) != 0 {
-		buf.WriteString(`"metadata":`)
-		fflib.WriteJsonString(buf, string(j.Metadata))
-		buf.WriteByte(',')
-	}
-	if len(j.MountLabel) != 0 {
-		buf.WriteString(`"mountlabel":`)
-		fflib.WriteJsonString(buf, string(j.MountLabel))
-		buf.WriteByte(',')
-	}
-	if true {
-		buf.WriteString(`"created":`)
-
-		{
-
-			obj, err = j.Created.MarshalJSON()
-			if err != nil {
-				return err
-			}
-			buf.Write(obj)
-
-		}
-		buf.WriteByte(',')
-	}
-	if len(j.CompressedDigest) != 0 {
-		buf.WriteString(`"compressed-diff-digest":`)
-		fflib.WriteJsonString(buf, string(j.CompressedDigest))
-		buf.WriteByte(',')
-	}
-	if j.CompressedSize != 0 {
-		buf.WriteString(`"compressed-size":`)
-		fflib.FormatBits2(buf, uint64(j.CompressedSize), 10, j.CompressedSize < 0)
-		buf.WriteByte(',')
-	}
-	if len(j.UncompressedDigest) != 0 {
-		buf.WriteString(`"diff-digest":`)
-		fflib.WriteJsonString(buf, string(j.UncompressedDigest))
-		buf.WriteByte(',')
-	}
-	if j.UncompressedSize != 0 {
-		buf.WriteString(`"diff-size":`)
-		fflib.FormatBits2(buf, uint64(j.UncompressedSize), 10, j.UncompressedSize < 0)
-		buf.WriteByte(',')
-	}
-	if j.CompressionType != 0 {
-		buf.WriteString(`"compression":`)
-		fflib.FormatBits2(buf, uint64(j.CompressionType), 10, j.CompressionType < 0)
-		buf.WriteByte(',')
-	}
-	if len(j.Flags) != 0 {
-		buf.WriteString(`"flags":`)
-		/* Falling back. type=map[string]interface {} kind=map */
-		err = buf.Encode(j.Flags)
-		if err != nil {
-			return err
-		}
-		buf.WriteByte(',')
-	}
-	buf.Rewind(1)
-	buf.WriteByte('}')
-	return nil
-}
-
-const (
-	ffjtLayerbase = iota
-	ffjtLayernosuchkey
-
-	ffjtLayerID
-
-	ffjtLayerNames
-
-	ffjtLayerParent
-
-	ffjtLayerMetadata
-
-	ffjtLayerMountLabel
-
-	ffjtLayerCreated
-
-	ffjtLayerCompressedDigest
-
-	ffjtLayerCompressedSize
-
-	ffjtLayerUncompressedDigest
-
-	ffjtLayerUncompressedSize
-
-	ffjtLayerCompressionType
-
-	ffjtLayerFlags
-)
-
-var ffjKeyLayerID = []byte("id")
-
-var ffjKeyLayerNames = []byte("names")
-
-var ffjKeyLayerParent = []byte("parent")
-
-var ffjKeyLayerMetadata = []byte("metadata")
-
-var ffjKeyLayerMountLabel = []byte("mountlabel")
-
-var ffjKeyLayerCreated = []byte("created")
-
-var ffjKeyLayerCompressedDigest = []byte("compressed-diff-digest")
-
-var ffjKeyLayerCompressedSize = []byte("compressed-size")
-
-var ffjKeyLayerUncompressedDigest = []byte("diff-digest")
-
-var ffjKeyLayerUncompressedSize = []byte("diff-size")
-
-var ffjKeyLayerCompressionType = []byte("compression")
-
-var ffjKeyLayerFlags = []byte("flags")
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *Layer) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *Layer) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtLayerbase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtLayernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				case 'c':
-
-					if bytes.Equal(ffjKeyLayerCreated, kn) {
-						currentKey = ffjtLayerCreated
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyLayerCompressedDigest, kn) {
-						currentKey = ffjtLayerCompressedDigest
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyLayerCompressedSize, kn) {
-						currentKey = ffjtLayerCompressedSize
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyLayerCompressionType, kn) {
-						currentKey = ffjtLayerCompressionType
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'd':
-
-					if bytes.Equal(ffjKeyLayerUncompressedDigest, kn) {
-						currentKey = ffjtLayerUncompressedDigest
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyLayerUncompressedSize, kn) {
-						currentKey = ffjtLayerUncompressedSize
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'f':
-
-					if bytes.Equal(ffjKeyLayerFlags, kn) {
-						currentKey = ffjtLayerFlags
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'i':
-
-					if bytes.Equal(ffjKeyLayerID, kn) {
-						currentKey = ffjtLayerID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'm':
-
-					if bytes.Equal(ffjKeyLayerMetadata, kn) {
-						currentKey = ffjtLayerMetadata
-						state = fflib.FFParse_want_colon
-						goto mainparse
-
-					} else if bytes.Equal(ffjKeyLayerMountLabel, kn) {
-						currentKey = ffjtLayerMountLabel
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'n':
-
-					if bytes.Equal(ffjKeyLayerNames, kn) {
-						currentKey = ffjtLayerNames
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'p':
-
-					if bytes.Equal(ffjKeyLayerParent, kn) {
-						currentKey = ffjtLayerParent
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerFlags, kn) {
-					currentKey = ffjtLayerFlags
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerCompressionType, kn) {
-					currentKey = ffjtLayerCompressionType
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerUncompressedSize, kn) {
-					currentKey = ffjtLayerUncompressedSize
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerUncompressedDigest, kn) {
-					currentKey = ffjtLayerUncompressedDigest
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerCompressedSize, kn) {
-					currentKey = ffjtLayerCompressedSize
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerCompressedDigest, kn) {
-					currentKey = ffjtLayerCompressedDigest
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyLayerCreated, kn) {
-					currentKey = ffjtLayerCreated
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyLayerMountLabel, kn) {
-					currentKey = ffjtLayerMountLabel
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyLayerMetadata, kn) {
-					currentKey = ffjtLayerMetadata
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyLayerParent, kn) {
-					currentKey = ffjtLayerParent
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.EqualFoldRight(ffjKeyLayerNames, kn) {
-					currentKey = ffjtLayerNames
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeyLayerID, kn) {
-					currentKey = ffjtLayerID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				currentKey = ffjtLayernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtLayerID:
-					goto handle_ID
-
-				case ffjtLayerNames:
-					goto handle_Names
-
-				case ffjtLayerParent:
-					goto handle_Parent
-
-				case ffjtLayerMetadata:
-					goto handle_Metadata
-
-				case ffjtLayerMountLabel:
-					goto handle_MountLabel
-
-				case ffjtLayerCreated:
-					goto handle_Created
-
-				case ffjtLayerCompressedDigest:
-					goto handle_CompressedDigest
-
-				case ffjtLayerCompressedSize:
-					goto handle_CompressedSize
-
-				case ffjtLayerUncompressedDigest:
-					goto handle_UncompressedDigest
-
-				case ffjtLayerUncompressedSize:
-					goto handle_UncompressedSize
-
-				case ffjtLayerCompressionType:
-					goto handle_CompressionType
-
-				case ffjtLayerFlags:
-					goto handle_Flags
-
-				case ffjtLayernosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-handle_ID:
-
-	/* handler: j.ID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.ID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Names:
-
-	/* handler: j.Names type=[]string kind=slice quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_brace && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Names = nil
-		} else {
-
-			j.Names = []string{}
-
-			wantVal := true
-
-			for {
-
-				var tmpJNames string
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_brace {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: tmpJNames type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						tmpJNames = string(string(outBuf))
-
-					}
-				}
-
-				j.Names = append(j.Names, tmpJNames)
-
-				wantVal = false
-			}
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Parent:
-
-	/* handler: j.Parent type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.Parent = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Metadata:
-
-	/* handler: j.Metadata type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.Metadata = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_MountLabel:
-
-	/* handler: j.MountLabel type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.MountLabel = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Created:
-
-	/* handler: j.Created type=time.Time kind=struct quoted=false*/
-
-	{
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tbuf, err := fs.CaptureField(tok)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			err = j.Created.UnmarshalJSON(tbuf)
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-		}
-		state = fflib.FFParse_after_value
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_CompressedDigest:
-
-	/* handler: j.CompressedDigest type=digest.Digest kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Digest", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.CompressedDigest = digest.Digest(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_CompressedSize:
-
-	/* handler: j.CompressedSize type=int64 kind=int64 quoted=false*/
-
-	{
-		if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-			return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for int64", tok))
-		}
-	}
-
-	{
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			j.CompressedSize = int64(tval)
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_UncompressedDigest:
-
-	/* handler: j.UncompressedDigest type=digest.Digest kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Digest", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.UncompressedDigest = digest.Digest(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_UncompressedSize:
-
-	/* handler: j.UncompressedSize type=int64 kind=int64 quoted=false*/
-
-	{
-		if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-			return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for int64", tok))
-		}
-	}
-
-	{
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			j.UncompressedSize = int64(tval)
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_CompressionType:
-
-	/* handler: j.CompressionType type=archive.Compression kind=int quoted=false*/
-
-	{
-		if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-			return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for Compression", tok))
-		}
-	}
-
-	{
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			j.CompressionType = archive.Compression(tval)
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_Flags:
-
-	/* handler: j.Flags type=map[string]interface {} kind=map quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_left_bracket && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for ", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-			j.Flags = nil
-		} else {
-
-			j.Flags = make(map[string]interface{}, 0)
-
-			wantVal := true
-
-			for {
-
-				var k string
-
-				var tmpJFlags interface{}
-
-				tok = fs.Scan()
-				if tok == fflib.FFTok_error {
-					goto tokerror
-				}
-				if tok == fflib.FFTok_right_bracket {
-					break
-				}
-
-				if tok == fflib.FFTok_comma {
-					if wantVal == true {
-						// TODO(pquerna): this isn't an ideal error message, this handles
-						// things like [,,,] as an array value.
-						return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-					}
-					continue
-				} else {
-					wantVal = true
-				}
-
-				/* handler: k type=string kind=string quoted=false*/
-
-				{
-
-					{
-						if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-							return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-						}
-					}
-
-					if tok == fflib.FFTok_null {
-
-					} else {
-
-						outBuf := fs.Output.Bytes()
-
-						k = string(string(outBuf))
-
-					}
-				}
-
-				// Expect ':' after key
-				tok = fs.Scan()
-				if tok != fflib.FFTok_colon {
-					return fs.WrapErr(fmt.Errorf("wanted colon token, but got token: %v", tok))
-				}
-
-				tok = fs.Scan()
-				/* handler: tmpJFlags type=interface {} kind=interface quoted=false*/
-
-				{
-					/* Falling back. type=interface {} kind=interface */
-					tbuf, err := fs.CaptureField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-
-					err = json.Unmarshal(tbuf, &tmpJFlags)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-				}
-
-				j.Flags[k] = tmpJFlags
-
-				wantVal = false
-			}
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *layerMountPoint) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *layerMountPoint) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{"id":`)
-	fflib.WriteJsonString(buf, string(j.ID))
-	buf.WriteString(`,"path":`)
-	fflib.WriteJsonString(buf, string(j.MountPoint))
-	buf.WriteString(`,"count":`)
-	fflib.FormatBits2(buf, uint64(j.MountCount), 10, j.MountCount < 0)
-	buf.WriteByte('}')
-	return nil
-}
-
-const (
-	ffjtlayerMountPointbase = iota
-	ffjtlayerMountPointnosuchkey
-
-	ffjtlayerMountPointID
-
-	ffjtlayerMountPointMountPoint
-
-	ffjtlayerMountPointMountCount
-)
-
-var ffjKeylayerMountPointID = []byte("id")
-
-var ffjKeylayerMountPointMountPoint = []byte("path")
-
-var ffjKeylayerMountPointMountCount = []byte("count")
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *layerMountPoint) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *layerMountPoint) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtlayerMountPointbase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtlayerMountPointnosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				case 'c':
-
-					if bytes.Equal(ffjKeylayerMountPointMountCount, kn) {
-						currentKey = ffjtlayerMountPointMountCount
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'i':
-
-					if bytes.Equal(ffjKeylayerMountPointID, kn) {
-						currentKey = ffjtlayerMountPointID
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				case 'p':
-
-					if bytes.Equal(ffjKeylayerMountPointMountPoint, kn) {
-						currentKey = ffjtlayerMountPointMountPoint
-						state = fflib.FFParse_want_colon
-						goto mainparse
-					}
-
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeylayerMountPointMountCount, kn) {
-					currentKey = ffjtlayerMountPointMountCount
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeylayerMountPointMountPoint, kn) {
-					currentKey = ffjtlayerMountPointMountPoint
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				if fflib.SimpleLetterEqualFold(ffjKeylayerMountPointID, kn) {
-					currentKey = ffjtlayerMountPointID
-					state = fflib.FFParse_want_colon
-					goto mainparse
-				}
-
-				currentKey = ffjtlayerMountPointnosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtlayerMountPointID:
-					goto handle_ID
-
-				case ffjtlayerMountPointMountPoint:
-					goto handle_MountPoint
-
-				case ffjtlayerMountPointMountCount:
-					goto handle_MountCount
-
-				case ffjtlayerMountPointnosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-handle_ID:
-
-	/* handler: j.ID type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.ID = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_MountPoint:
-
-	/* handler: j.MountPoint type=string kind=string quoted=false*/
-
-	{
-
-		{
-			if tok != fflib.FFTok_string && tok != fflib.FFTok_null {
-				return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for string", tok))
-			}
-		}
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			outBuf := fs.Output.Bytes()
-
-			j.MountPoint = string(string(outBuf))
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-handle_MountCount:
-
-	/* handler: j.MountCount type=int kind=int quoted=false*/
-
-	{
-		if tok != fflib.FFTok_integer && tok != fflib.FFTok_null {
-			return fs.WrapErr(fmt.Errorf("cannot unmarshal %s into Go value for int", tok))
-		}
-	}
-
-	{
-
-		if tok == fflib.FFTok_null {
-
-		} else {
-
-			tval, err := fflib.ParseInt(fs.Output.Bytes(), 10, 64)
-
-			if err != nil {
-				return fs.WrapErr(err)
-			}
-
-			j.MountCount = int(tval)
-
-		}
-	}
-
-	state = fflib.FFParse_after_value
-	goto mainparse
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *layerStore) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *layerStore) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{}`)
-	return nil
-}
-
-const (
-	ffjtlayerStorebase = iota
-	ffjtlayerStorenosuchkey
-)
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *layerStore) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *layerStore) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtlayerStorebase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtlayerStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				}
-
-				currentKey = ffjtlayerStorenosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtlayerStorenosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
-
-// MarshalJSON marshal bytes to json - template
-func (j *simpleGetCloser) MarshalJSON() ([]byte, error) {
-	var buf fflib.Buffer
-	if j == nil {
-		buf.WriteString("null")
-		return buf.Bytes(), nil
-	}
-	err := j.MarshalJSONBuf(&buf)
-	if err != nil {
-		return nil, err
-	}
-	return buf.Bytes(), nil
-}
-
-// MarshalJSONBuf marshal buff to json - template
-func (j *simpleGetCloser) MarshalJSONBuf(buf fflib.EncodingBuffer) error {
-	if j == nil {
-		buf.WriteString("null")
-		return nil
-	}
-	var err error
-	var obj []byte
-	_ = obj
-	_ = err
-	buf.WriteString(`{}`)
-	return nil
-}
-
-const (
-	ffjtsimpleGetCloserbase = iota
-	ffjtsimpleGetClosernosuchkey
-)
-
-// UnmarshalJSON umarshall json - template of ffjson
-func (j *simpleGetCloser) UnmarshalJSON(input []byte) error {
-	fs := fflib.NewFFLexer(input)
-	return j.UnmarshalJSONFFLexer(fs, fflib.FFParse_map_start)
-}
-
-// UnmarshalJSONFFLexer fast json unmarshall - template ffjson
-func (j *simpleGetCloser) UnmarshalJSONFFLexer(fs *fflib.FFLexer, state fflib.FFParseState) error {
-	var err error
-	currentKey := ffjtsimpleGetCloserbase
-	_ = currentKey
-	tok := fflib.FFTok_init
-	wantedTok := fflib.FFTok_init
-
-mainparse:
-	for {
-		tok = fs.Scan()
-		//	println(fmt.Sprintf("debug: tok: %v  state: %v", tok, state))
-		if tok == fflib.FFTok_error {
-			goto tokerror
-		}
-
-		switch state {
-
-		case fflib.FFParse_map_start:
-			if tok != fflib.FFTok_left_bracket {
-				wantedTok = fflib.FFTok_left_bracket
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_key
-			continue
-
-		case fflib.FFParse_after_value:
-			if tok == fflib.FFTok_comma {
-				state = fflib.FFParse_want_key
-			} else if tok == fflib.FFTok_right_bracket {
-				goto done
-			} else {
-				wantedTok = fflib.FFTok_comma
-				goto wrongtokenerror
-			}
-
-		case fflib.FFParse_want_key:
-			// json {} ended. goto exit. woo.
-			if tok == fflib.FFTok_right_bracket {
-				goto done
-			}
-			if tok != fflib.FFTok_string {
-				wantedTok = fflib.FFTok_string
-				goto wrongtokenerror
-			}
-
-			kn := fs.Output.Bytes()
-			if len(kn) <= 0 {
-				// "" case. hrm.
-				currentKey = ffjtsimpleGetClosernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			} else {
-				switch kn[0] {
-
-				}
-
-				currentKey = ffjtsimpleGetClosernosuchkey
-				state = fflib.FFParse_want_colon
-				goto mainparse
-			}
-
-		case fflib.FFParse_want_colon:
-			if tok != fflib.FFTok_colon {
-				wantedTok = fflib.FFTok_colon
-				goto wrongtokenerror
-			}
-			state = fflib.FFParse_want_value
-			continue
-		case fflib.FFParse_want_value:
-
-			if tok == fflib.FFTok_left_brace || tok == fflib.FFTok_left_bracket || tok == fflib.FFTok_integer || tok == fflib.FFTok_double || tok == fflib.FFTok_string || tok == fflib.FFTok_bool || tok == fflib.FFTok_null {
-				switch currentKey {
-
-				case ffjtsimpleGetClosernosuchkey:
-					err = fs.SkipField(tok)
-					if err != nil {
-						return fs.WrapErr(err)
-					}
-					state = fflib.FFParse_after_value
-					goto mainparse
-				}
-			} else {
-				goto wantedvalue
-			}
-		}
-	}
-
-wantedvalue:
-	return fs.WrapErr(fmt.Errorf("wanted value token, but got token: %v", tok))
-wrongtokenerror:
-	return fs.WrapErr(fmt.Errorf("ffjson: wanted token: %v, but got token: %v output=%s", wantedTok, tok, fs.Output.String()))
-tokerror:
-	if fs.BigError != nil {
-		return fs.WrapErr(fs.BigError)
-	}
-	err = fs.Error.ToError()
-	if err != nil {
-		return fs.WrapErr(err)
-	}
-	panic("ffjson-generated: unreachable, please report bug.")
-done:
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/lockfile.go b/vendor/github.com/containers/storage/lockfile.go
deleted file mode 100644
index c1aa482f85..0000000000
--- a/vendor/github.com/containers/storage/lockfile.go
+++ /dev/null
@@ -1,82 +0,0 @@
-package storage
-
-import (
-	"fmt"
-	"path/filepath"
-	"sync"
-	"time"
-
-	"github.com/pkg/errors"
-)
-
-// A Locker represents a file lock where the file is used to cache an
-// identifier of the last party that made changes to whatever's being protected
-// by the lock.
-type Locker interface {
-	sync.Locker
-
-	// Touch records, for others sharing the lock, that the caller was the
-	// last writer.  It should only be called with the lock held.
-	Touch() error
-
-	// Modified() checks if the most recent writer was a party other than the
-	// last recorded writer.  It should only be called with the lock held.
-	Modified() (bool, error)
-
-	// TouchedSince() checks if the most recent writer modified the file (likely using Touch()) after the specified time.
-	TouchedSince(when time.Time) bool
-
-	// IsReadWrite() checks if the lock file is read-write
-	IsReadWrite() bool
-}
-
-var (
-	lockfiles     map[string]Locker
-	lockfilesLock sync.Mutex
-)
-
-// GetLockfile opens a read-write lock file, creating it if necessary.  The
-// Locker object it returns will be returned unlocked.
-func GetLockfile(path string) (Locker, error) {
-	lockfilesLock.Lock()
-	defer lockfilesLock.Unlock()
-	if lockfiles == nil {
-		lockfiles = make(map[string]Locker)
-	}
-	cleanPath := filepath.Clean(path)
-	if locker, ok := lockfiles[cleanPath]; ok {
-		if !locker.IsReadWrite() {
-			return nil, errors.Wrapf(ErrLockReadOnly, "lock %q is a read-only lock", cleanPath)
-		}
-		return locker, nil
-	}
-	locker, err := getLockFile(path, false) // platform dependent locker
-	if err != nil {
-		return nil, err
-	}
-	lockfiles[filepath.Clean(path)] = locker
-	return locker, nil
-}
-
-// GetROLockfile opens a read-only lock file.  The Locker object it returns
-// will be returned unlocked.
-func GetROLockfile(path string) (Locker, error) {
-	lockfilesLock.Lock()
-	defer lockfilesLock.Unlock()
-	if lockfiles == nil {
-		lockfiles = make(map[string]Locker)
-	}
-	cleanPath := filepath.Clean(path)
-	if locker, ok := lockfiles[cleanPath]; ok {
-		if locker.IsReadWrite() {
-			return nil, fmt.Errorf("lock %q is a read-write lock", cleanPath)
-		}
-		return locker, nil
-	}
-	locker, err := getLockFile(path, true) // platform dependent locker
-	if err != nil {
-		return nil, err
-	}
-	lockfiles[filepath.Clean(path)] = locker
-	return locker, nil
-}
diff --git a/vendor/github.com/containers/storage/lockfile_darwin.go b/vendor/github.com/containers/storage/lockfile_darwin.go
deleted file mode 100644
index 041d54c057..0000000000
--- a/vendor/github.com/containers/storage/lockfile_darwin.go
+++ /dev/null
@@ -1,19 +0,0 @@
-// +build darwin freebsd
-
-package storage
-
-import (
-	"time"
-
-	"golang.org/x/sys/unix"
-)
-
-func (l *lockfile) TouchedSince(when time.Time) bool {
-	st := unix.Stat_t{}
-	err := unix.Fstat(int(l.fd), &st)
-	if err != nil {
-		return true
-	}
-	touched := time.Unix(st.Mtimespec.Unix())
-	return when.Before(touched)
-}
diff --git a/vendor/github.com/containers/storage/lockfile_linux.go b/vendor/github.com/containers/storage/lockfile_linux.go
deleted file mode 100644
index 903387c661..0000000000
--- a/vendor/github.com/containers/storage/lockfile_linux.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// +build linux solaris
-
-package storage
-
-import (
-	"time"
-
-	"golang.org/x/sys/unix"
-)
-
-// TouchedSince indicates if the lock file has been touched since the specified time
-func (l *lockfile) TouchedSince(when time.Time) bool {
-	st := unix.Stat_t{}
-	err := unix.Fstat(int(l.fd), &st)
-	if err != nil {
-		return true
-	}
-	touched := time.Unix(st.Mtim.Unix())
-	return when.Before(touched)
-}
diff --git a/vendor/github.com/containers/storage/lockfile_unix.go b/vendor/github.com/containers/storage/lockfile_unix.go
deleted file mode 100644
index 6792592344..0000000000
--- a/vendor/github.com/containers/storage/lockfile_unix.go
+++ /dev/null
@@ -1,115 +0,0 @@
-// +build linux solaris darwin freebsd
-
-package storage
-
-import (
-	"os"
-	"sync"
-	"time"
-
-	"github.com/containers/storage/pkg/stringid"
-	"github.com/pkg/errors"
-	"golang.org/x/sys/unix"
-)
-
-func getLockFile(path string, ro bool) (Locker, error) {
-	var fd int
-	var err error
-	if ro {
-		fd, err = unix.Open(path, os.O_RDONLY, 0)
-	} else {
-		fd, err = unix.Open(path, os.O_RDWR|os.O_CREATE, unix.S_IRUSR|unix.S_IWUSR)
-	}
-	if err != nil {
-		return nil, errors.Wrapf(err, "error opening %q", path)
-	}
-	unix.CloseOnExec(fd)
-	if ro {
-		return &lockfile{file: path, fd: uintptr(fd), lw: stringid.GenerateRandomID(), locktype: unix.F_RDLCK}, nil
-	}
-	return &lockfile{file: path, fd: uintptr(fd), lw: stringid.GenerateRandomID(), locktype: unix.F_WRLCK}, nil
-}
-
-type lockfile struct {
-	mu       sync.Mutex
-	file     string
-	fd       uintptr
-	lw       string
-	locktype int16
-}
-
-// Lock locks the lock file
-func (l *lockfile) Lock() {
-	lk := unix.Flock_t{
-		Type:   l.locktype,
-		Whence: int16(os.SEEK_SET),
-		Start:  0,
-		Len:    0,
-		Pid:    int32(os.Getpid()),
-	}
-	l.mu.Lock()
-	for unix.FcntlFlock(l.fd, unix.F_SETLKW, &lk) != nil {
-		time.Sleep(10 * time.Millisecond)
-	}
-}
-
-// Unlock unlocks the lock file
-func (l *lockfile) Unlock() {
-	lk := unix.Flock_t{
-		Type:   unix.F_UNLCK,
-		Whence: int16(os.SEEK_SET),
-		Start:  0,
-		Len:    0,
-		Pid:    int32(os.Getpid()),
-	}
-	for unix.FcntlFlock(l.fd, unix.F_SETLKW, &lk) != nil {
-		time.Sleep(10 * time.Millisecond)
-	}
-	l.mu.Unlock()
-}
-
-// Touch updates the lock file with the UID of the user
-func (l *lockfile) Touch() error {
-	l.lw = stringid.GenerateRandomID()
-	id := []byte(l.lw)
-	_, err := unix.Seek(int(l.fd), 0, os.SEEK_SET)
-	if err != nil {
-		return err
-	}
-	n, err := unix.Write(int(l.fd), id)
-	if err != nil {
-		return err
-	}
-	if n != len(id) {
-		return unix.ENOSPC
-	}
-	err = unix.Fsync(int(l.fd))
-	if err != nil {
-		return err
-	}
-	return nil
-}
-
-// Modified indicates if the lock file has been updated since the last time it was loaded
-func (l *lockfile) Modified() (bool, error) {
-	id := []byte(l.lw)
-	_, err := unix.Seek(int(l.fd), 0, os.SEEK_SET)
-	if err != nil {
-		return true, err
-	}
-	n, err := unix.Read(int(l.fd), id)
-	if err != nil {
-		return true, err
-	}
-	if n != len(id) {
-		return true, unix.ENOSPC
-	}
-	lw := l.lw
-	l.lw = string(id)
-	return l.lw != lw, nil
-}
-
-// IsRWLock indicates if the lock file is a read-write lock
-func (l *lockfile) IsReadWrite() bool {
-	return (l.locktype == unix.F_WRLCK)
-}
diff --git a/vendor/github.com/containers/storage/lockfile_windows.go b/vendor/github.com/containers/storage/lockfile_windows.go
deleted file mode 100644
index ed6c5c4b2b..0000000000
--- a/vendor/github.com/containers/storage/lockfile_windows.go
+++ /dev/null
@@ -1,40 +0,0 @@
-// +build windows
-
-package storage
-
-import (
-	"os"
-	"sync"
-	"time"
-)
-
-func getLockFile(path string, ro bool) (Locker, error) {
-	return &lockfile{}, nil
-}
-
-type lockfile struct {
-	mu   sync.Mutex
-	file string
-}
-
-func (l *lockfile) Lock() {
-}
-func (l *lockfile) Unlock() {
-}
-func (l *lockfile) Modified() (bool, error) {
-	return false, nil
-}
-func (l *lockfile) Touch() error {
-	return nil
-}
-func (l *lockfile) IsReadWrite() bool {
-	return false
-}
-
-func (l *lockfile) TouchedSince(when time.Time) bool {
-	stat, err := os.Stat(l.file)
-	if err != nil {
-		return true
-	}
-	return when.Before(stat.ModTime())
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/archive.go b/vendor/github.com/containers/storage/pkg/archive/archive.go
deleted file mode 100644
index abee36f7e4..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/archive.go
+++ /dev/null
@@ -1,1251 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"bufio"
-	"bytes"
-	"compress/bzip2"
-	"compress/gzip"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"os/exec"
-	"path/filepath"
-	"runtime"
-	"strings"
-	"syscall"
-
-	"github.com/containers/storage/pkg/fileutils"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/pools"
-	"github.com/containers/storage/pkg/promise"
-	"github.com/containers/storage/pkg/system"
-	"github.com/sirupsen/logrus"
-)
-
-type (
-	// Compression is the state represents if compressed or not.
-	Compression int
-	// WhiteoutFormat is the format of whiteouts unpacked
-	WhiteoutFormat int
-
-	// TarOptions wraps the tar options.
-	TarOptions struct {
-		IncludeFiles     []string
-		ExcludePatterns  []string
-		Compression      Compression
-		NoLchown         bool
-		UIDMaps          []idtools.IDMap
-		GIDMaps          []idtools.IDMap
-		ChownOpts        *idtools.IDPair
-		IncludeSourceDir bool
-		// WhiteoutFormat is the expected on disk format for whiteout files.
-		// This format will be converted to the standard format on pack
-		// and from the standard format on unpack.
-		WhiteoutFormat WhiteoutFormat
-		// When unpacking, specifies whether overwriting a directory with a
-		// non-directory is allowed and vice versa.
-		NoOverwriteDirNonDir bool
-		// For each include when creating an archive, the included name will be
-		// replaced with the matching name from this map.
-		RebaseNames map[string]string
-		InUserNS    bool
-	}
-)
-
-// Archiver allows the reuse of most utility functions of this package
-// with a pluggable Untar function. Also, to facilitate the passing of
-// specific id mappings for untar, an archiver can be created with maps
-// which will then be passed to Untar operations
-type Archiver struct {
-	Untar      func(io.Reader, string, *TarOptions) error
-	IDMappings *idtools.IDMappings
-}
-
-// NewDefaultArchiver returns a new Archiver without any IDMappings
-func NewDefaultArchiver() *Archiver {
-	return &Archiver{Untar: Untar, IDMappings: &idtools.IDMappings{}}
-}
-
-// breakoutError is used to differentiate errors related to breaking out
-// When testing archive breakout in the unit tests, this error is expected
-// in order for the test to pass.
-type breakoutError error
-
-const (
-	// Uncompressed represents the uncompressed.
-	Uncompressed Compression = iota
-	// Bzip2 is bzip2 compression algorithm.
-	Bzip2
-	// Gzip is gzip compression algorithm.
-	Gzip
-	// Xz is xz compression algorithm.
-	Xz
-)
-
-const (
-	// AUFSWhiteoutFormat is the default format for whiteouts
-	AUFSWhiteoutFormat WhiteoutFormat = iota
-	// OverlayWhiteoutFormat formats whiteout according to the overlay
-	// standard.
-	OverlayWhiteoutFormat
-)
-
-const (
-	modeISDIR  = 040000  // Directory
-	modeISFIFO = 010000  // FIFO
-	modeISREG  = 0100000 // Regular file
-	modeISLNK  = 0120000 // Symbolic link
-	modeISBLK  = 060000  // Block special file
-	modeISCHR  = 020000  // Character special file
-	modeISSOCK = 0140000 // Socket
-)
-
-// IsArchivePath checks if the (possibly compressed) file at the given path
-// starts with a tar file header.
-func IsArchivePath(path string) bool {
-	file, err := os.Open(path)
-	if err != nil {
-		return false
-	}
-	defer file.Close()
-	rdr, err := DecompressStream(file)
-	if err != nil {
-		return false
-	}
-	r := tar.NewReader(rdr)
-	_, err = r.Next()
-	return err == nil
-}
-
-// DetectCompression detects the compression algorithm of the source.
-func DetectCompression(source []byte) Compression {
-	for compression, m := range map[Compression][]byte{
-		Bzip2: {0x42, 0x5A, 0x68},
-		Gzip:  {0x1F, 0x8B, 0x08},
-		Xz:    {0xFD, 0x37, 0x7A, 0x58, 0x5A, 0x00},
-	} {
-		if len(source) < len(m) {
-			logrus.Debug("Len too short")
-			continue
-		}
-		if bytes.Equal(m, source[:len(m)]) {
-			return compression
-		}
-	}
-	return Uncompressed
-}
-
-func xzDecompress(archive io.Reader) (io.ReadCloser, <-chan struct{}, error) {
-	args := []string{"xz", "-d", "-c", "-q"}
-
-	return cmdStream(exec.Command(args[0], args[1:]...), archive)
-}
-
-// DecompressStream decompresses the archive and returns a ReaderCloser with the decompressed archive.
-func DecompressStream(archive io.Reader) (io.ReadCloser, error) {
-	p := pools.BufioReader32KPool
-	buf := p.Get(archive)
-	bs, err := buf.Peek(10)
-	if err != nil && err != io.EOF {
-		// Note: we'll ignore any io.EOF error because there are some odd
-		// cases where the layer.tar file will be empty (zero bytes) and
-		// that results in an io.EOF from the Peek() call. So, in those
-		// cases we'll just treat it as a non-compressed stream and
-		// that means just create an empty layer.
-		// See Issue 18170
-		return nil, err
-	}
-
-	compression := DetectCompression(bs)
-	switch compression {
-	case Uncompressed:
-		readBufWrapper := p.NewReadCloserWrapper(buf, buf)
-		return readBufWrapper, nil
-	case Gzip:
-		gzReader, err := gzip.NewReader(buf)
-		if err != nil {
-			return nil, err
-		}
-		readBufWrapper := p.NewReadCloserWrapper(buf, gzReader)
-		return readBufWrapper, nil
-	case Bzip2:
-		bz2Reader := bzip2.NewReader(buf)
-		readBufWrapper := p.NewReadCloserWrapper(buf, bz2Reader)
-		return readBufWrapper, nil
-	case Xz:
-		xzReader, chdone, err := xzDecompress(buf)
-		if err != nil {
-			return nil, err
-		}
-		readBufWrapper := p.NewReadCloserWrapper(buf, xzReader)
-		return ioutils.NewReadCloserWrapper(readBufWrapper, func() error {
-			<-chdone
-			return readBufWrapper.Close()
-		}), nil
-	default:
-		return nil, fmt.Errorf("Unsupported compression format %s", (&compression).Extension())
-	}
-}
-
-// CompressStream compresses the dest with specified compression algorithm.
-func CompressStream(dest io.Writer, compression Compression) (io.WriteCloser, error) {
-	p := pools.BufioWriter32KPool
-	buf := p.Get(dest)
-	switch compression {
-	case Uncompressed:
-		writeBufWrapper := p.NewWriteCloserWrapper(buf, buf)
-		return writeBufWrapper, nil
-	case Gzip:
-		gzWriter := gzip.NewWriter(dest)
-		writeBufWrapper := p.NewWriteCloserWrapper(buf, gzWriter)
-		return writeBufWrapper, nil
-	case Bzip2, Xz:
-		// archive/bzip2 does not support writing, and there is no xz support at all
-		// However, this is not a problem as docker only currently generates gzipped tars
-		return nil, fmt.Errorf("Unsupported compression format %s", (&compression).Extension())
-	default:
-		return nil, fmt.Errorf("Unsupported compression format %s", (&compression).Extension())
-	}
-}
-
-// TarModifierFunc is a function that can be passed to ReplaceFileTarWrapper to
-// modify the contents or header of an entry in the archive. If the file already
-// exists in the archive the TarModifierFunc will be called with the Header and
-// a reader which will return the files content. If the file does not exist both
-// header and content will be nil.
-type TarModifierFunc func(path string, header *tar.Header, content io.Reader) (*tar.Header, []byte, error)
-
-// ReplaceFileTarWrapper converts inputTarStream to a new tar stream. Files in the
-// tar stream are modified if they match any of the keys in mods.
-func ReplaceFileTarWrapper(inputTarStream io.ReadCloser, mods map[string]TarModifierFunc) io.ReadCloser {
-	pipeReader, pipeWriter := io.Pipe()
-
-	go func() {
-		tarReader := tar.NewReader(inputTarStream)
-		tarWriter := tar.NewWriter(pipeWriter)
-		defer inputTarStream.Close()
-		defer tarWriter.Close()
-
-		modify := func(name string, original *tar.Header, modifier TarModifierFunc, tarReader io.Reader) error {
-			header, data, err := modifier(name, original, tarReader)
-			switch {
-			case err != nil:
-				return err
-			case header == nil:
-				return nil
-			}
-
-			header.Name = name
-			header.Size = int64(len(data))
-			if err := tarWriter.WriteHeader(header); err != nil {
-				return err
-			}
-			if len(data) != 0 {
-				if _, err := tarWriter.Write(data); err != nil {
-					return err
-				}
-			}
-			return nil
-		}
-
-		var err error
-		var originalHeader *tar.Header
-		for {
-			originalHeader, err = tarReader.Next()
-			if err == io.EOF {
-				break
-			}
-			if err != nil {
-				pipeWriter.CloseWithError(err)
-				return
-			}
-
-			modifier, ok := mods[originalHeader.Name]
-			if !ok {
-				// No modifiers for this file, copy the header and data
-				if err := tarWriter.WriteHeader(originalHeader); err != nil {
-					pipeWriter.CloseWithError(err)
-					return
-				}
-				if _, err := pools.Copy(tarWriter, tarReader); err != nil {
-					pipeWriter.CloseWithError(err)
-					return
-				}
-				continue
-			}
-			delete(mods, originalHeader.Name)
-
-			if err := modify(originalHeader.Name, originalHeader, modifier, tarReader); err != nil {
-				pipeWriter.CloseWithError(err)
-				return
-			}
-		}
-
-		// Apply the modifiers that haven't matched any files in the archive
-		for name, modifier := range mods {
-			if err := modify(name, nil, modifier, nil); err != nil {
-				pipeWriter.CloseWithError(err)
-				return
-			}
-		}
-
-		pipeWriter.Close()
-
-	}()
-	return pipeReader
-}
-
-// Extension returns the extension of a file that uses the specified compression algorithm.
-func (compression *Compression) Extension() string {
-	switch *compression {
-	case Uncompressed:
-		return "tar"
-	case Bzip2:
-		return "tar.bz2"
-	case Gzip:
-		return "tar.gz"
-	case Xz:
-		return "tar.xz"
-	}
-	return ""
-}
-
-// FileInfoHeader creates a populated Header from fi.
-// Compared to archive pkg this function fills in more information.
-// Also, regardless of Go version, this function fills file type bits (e.g. hdr.Mode |= modeISDIR),
-// which have been deleted since Go 1.9 archive/tar.
-func FileInfoHeader(name string, fi os.FileInfo, link string) (*tar.Header, error) {
-	hdr, err := tar.FileInfoHeader(fi, link)
-	if err != nil {
-		return nil, err
-	}
-	hdr.Mode = fillGo18FileTypeBits(int64(chmodTarEntry(os.FileMode(hdr.Mode))), fi)
-	name, err = canonicalTarName(name, fi.IsDir())
-	if err != nil {
-		return nil, fmt.Errorf("tar: cannot canonicalize path: %v", err)
-	}
-	hdr.Name = name
-	if err := setHeaderForSpecialDevice(hdr, name, fi.Sys()); err != nil {
-		return nil, err
-	}
-	return hdr, nil
-}
-
-// fillGo18FileTypeBits fills type bits which have been removed on Go 1.9 archive/tar
-// https://github.com/golang/go/commit/66b5a2f
-func fillGo18FileTypeBits(mode int64, fi os.FileInfo) int64 {
-	fm := fi.Mode()
-	switch {
-	case fm.IsRegular():
-		mode |= modeISREG
-	case fi.IsDir():
-		mode |= modeISDIR
-	case fm&os.ModeSymlink != 0:
-		mode |= modeISLNK
-	case fm&os.ModeDevice != 0:
-		if fm&os.ModeCharDevice != 0 {
-			mode |= modeISCHR
-		} else {
-			mode |= modeISBLK
-		}
-	case fm&os.ModeNamedPipe != 0:
-		mode |= modeISFIFO
-	case fm&os.ModeSocket != 0:
-		mode |= modeISSOCK
-	}
-	return mode
-}
-
-// ReadSecurityXattrToTarHeader reads security.capability xattr from filesystem
-// to a tar header
-func ReadSecurityXattrToTarHeader(path string, hdr *tar.Header) error {
-	capability, _ := system.Lgetxattr(path, "security.capability")
-	if capability != nil {
-		hdr.Xattrs = make(map[string]string)
-		hdr.Xattrs["security.capability"] = string(capability)
-	}
-	return nil
-}
-
-type tarWhiteoutConverter interface {
-	ConvertWrite(*tar.Header, string, os.FileInfo) (*tar.Header, error)
-	ConvertRead(*tar.Header, string) (bool, error)
-}
-
-type tarAppender struct {
-	TarWriter *tar.Writer
-	Buffer    *bufio.Writer
-
-	// for hardlink mapping
-	SeenFiles  map[uint64]string
-	IDMappings *idtools.IDMappings
-	ChownOpts  *idtools.IDPair
-
-	// For packing and unpacking whiteout files in the
-	// non standard format. The whiteout files defined
-	// by the AUFS standard are used as the tar whiteout
-	// standard.
-	WhiteoutConverter tarWhiteoutConverter
-}
-
-func newTarAppender(idMapping *idtools.IDMappings, writer io.Writer, chownOpts *idtools.IDPair) *tarAppender {
-	return &tarAppender{
-		SeenFiles:  make(map[uint64]string),
-		TarWriter:  tar.NewWriter(writer),
-		Buffer:     pools.BufioWriter32KPool.Get(nil),
-		IDMappings: idMapping,
-		ChownOpts:  chownOpts,
-	}
-}
-
-// canonicalTarName provides a platform-independent and consistent posix-style
-//path for files and directories to be archived regardless of the platform.
-func canonicalTarName(name string, isDir bool) (string, error) {
-	name, err := CanonicalTarNameForPath(name)
-	if err != nil {
-		return "", err
-	}
-
-	// suffix with '/' for directories
-	if isDir && !strings.HasSuffix(name, "/") {
-		name += "/"
-	}
-	return name, nil
-}
-
-// addTarFile adds to the tar archive a file from `path` as `name`
-func (ta *tarAppender) addTarFile(path, name string) error {
-	fi, err := os.Lstat(path)
-	if err != nil {
-		return err
-	}
-
-	var link string
-	if fi.Mode()&os.ModeSymlink != 0 {
-		var err error
-		link, err = os.Readlink(path)
-		if err != nil {
-			return err
-		}
-	}
-
-	hdr, err := FileInfoHeader(name, fi, link)
-	if err != nil {
-		return err
-	}
-	if err := ReadSecurityXattrToTarHeader(path, hdr); err != nil {
-		return err
-	}
-
-	// if it's not a directory and has more than 1 link,
-	// it's hard linked, so set the type flag accordingly
-	if !fi.IsDir() && hasHardlinks(fi) {
-		inode, err := getInodeFromStat(fi.Sys())
-		if err != nil {
-			return err
-		}
-		// a link should have a name that it links too
-		// and that linked name should be first in the tar archive
-		if oldpath, ok := ta.SeenFiles[inode]; ok {
-			hdr.Typeflag = tar.TypeLink
-			hdr.Linkname = oldpath
-			hdr.Size = 0 // This Must be here for the writer math to add up!
-		} else {
-			ta.SeenFiles[inode] = name
-		}
-	}
-
-	//handle re-mapping container ID mappings back to host ID mappings before
-	//writing tar headers/files. We skip whiteout files because they were written
-	//by the kernel and already have proper ownership relative to the host
-	if !strings.HasPrefix(filepath.Base(hdr.Name), WhiteoutPrefix) && !ta.IDMappings.Empty() {
-		fileIDPair, err := getFileUIDGID(fi.Sys())
-		if err != nil {
-			return err
-		}
-		hdr.Uid, hdr.Gid, err = ta.IDMappings.ToContainer(fileIDPair)
-		if err != nil {
-			return err
-		}
-	}
-
-	// explicitly override with ChownOpts
-	if ta.ChownOpts != nil {
-		hdr.Uid = ta.ChownOpts.UID
-		hdr.Gid = ta.ChownOpts.GID
-	}
-
-	if ta.WhiteoutConverter != nil {
-		wo, err := ta.WhiteoutConverter.ConvertWrite(hdr, path, fi)
-		if err != nil {
-			return err
-		}
-
-		// If a new whiteout file exists, write original hdr, then
-		// replace hdr with wo to be written after. Whiteouts should
-		// always be written after the original. Note the original
-		// hdr may have been updated to be a whiteout with returning
-		// a whiteout header
-		if wo != nil {
-			if err := ta.TarWriter.WriteHeader(hdr); err != nil {
-				return err
-			}
-			if hdr.Typeflag == tar.TypeReg && hdr.Size > 0 {
-				return fmt.Errorf("tar: cannot use whiteout for non-empty file")
-			}
-			hdr = wo
-		}
-	}
-
-	if err := ta.TarWriter.WriteHeader(hdr); err != nil {
-		return err
-	}
-
-	if hdr.Typeflag == tar.TypeReg && hdr.Size > 0 {
-		// We use system.OpenSequential to ensure we use sequential file
-		// access on Windows to avoid depleting the standby list.
-		// On Linux, this equates to a regular os.Open.
-		file, err := system.OpenSequential(path)
-		if err != nil {
-			return err
-		}
-
-		ta.Buffer.Reset(ta.TarWriter)
-		defer ta.Buffer.Reset(nil)
-		_, err = io.Copy(ta.Buffer, file)
-		file.Close()
-		if err != nil {
-			return err
-		}
-		err = ta.Buffer.Flush()
-		if err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func createTarFile(path, extractDir string, hdr *tar.Header, reader io.Reader, Lchown bool, chownOpts *idtools.IDPair, inUserns bool) error {
-	// hdr.Mode is in linux format, which we can use for sycalls,
-	// but for os.Foo() calls we need the mode converted to os.FileMode,
-	// so use hdrInfo.Mode() (they differ for e.g. setuid bits)
-	hdrInfo := hdr.FileInfo()
-
-	switch hdr.Typeflag {
-	case tar.TypeDir:
-		// Create directory unless it exists as a directory already.
-		// In that case we just want to merge the two
-		if fi, err := os.Lstat(path); !(err == nil && fi.IsDir()) {
-			if err := os.Mkdir(path, hdrInfo.Mode()); err != nil {
-				return err
-			}
-		}
-
-	case tar.TypeReg, tar.TypeRegA:
-		// Source is regular file. We use system.OpenFileSequential to use sequential
-		// file access to avoid depleting the standby list on Windows.
-		// On Linux, this equates to a regular os.OpenFile
-		file, err := system.OpenFileSequential(path, os.O_CREATE|os.O_WRONLY, hdrInfo.Mode())
-		if err != nil {
-			return err
-		}
-		if _, err := io.Copy(file, reader); err != nil {
-			file.Close()
-			return err
-		}
-		file.Close()
-
-	case tar.TypeBlock, tar.TypeChar:
-		if inUserns { // cannot create devices in a userns
-			return nil
-		}
-		// Handle this is an OS-specific way
-		if err := handleTarTypeBlockCharFifo(hdr, path); err != nil {
-			return err
-		}
-
-	case tar.TypeFifo:
-		// Handle this is an OS-specific way
-		if err := handleTarTypeBlockCharFifo(hdr, path); err != nil {
-			return err
-		}
-
-	case tar.TypeLink:
-		targetPath := filepath.Join(extractDir, hdr.Linkname)
-		// check for hardlink breakout
-		if !strings.HasPrefix(targetPath, extractDir) {
-			return breakoutError(fmt.Errorf("invalid hardlink %q -> %q", targetPath, hdr.Linkname))
-		}
-		if err := os.Link(targetPath, path); err != nil {
-			return err
-		}
-
-	case tar.TypeSymlink:
-		// 	path 				-> hdr.Linkname = targetPath
-		// e.g. /extractDir/path/to/symlink 	-> ../2/file	= /extractDir/path/2/file
-		targetPath := filepath.Join(filepath.Dir(path), hdr.Linkname)
-
-		// the reason we don't need to check symlinks in the path (with FollowSymlinkInScope) is because
-		// that symlink would first have to be created, which would be caught earlier, at this very check:
-		if !strings.HasPrefix(targetPath, extractDir) {
-			return breakoutError(fmt.Errorf("invalid symlink %q -> %q", path, hdr.Linkname))
-		}
-		if err := os.Symlink(hdr.Linkname, path); err != nil {
-			return err
-		}
-
-	case tar.TypeXGlobalHeader:
-		logrus.Debug("PAX Global Extended Headers found and ignored")
-		return nil
-
-	default:
-		return fmt.Errorf("unhandled tar header type %d", hdr.Typeflag)
-	}
-
-	// Lchown is not supported on Windows.
-	if Lchown && runtime.GOOS != "windows" {
-		if chownOpts == nil {
-			chownOpts = &idtools.IDPair{UID: hdr.Uid, GID: hdr.Gid}
-		}
-		if err := os.Lchown(path, chownOpts.UID, chownOpts.GID); err != nil {
-			return err
-		}
-	}
-
-	var errors []string
-	for key, value := range hdr.Xattrs {
-		if err := system.Lsetxattr(path, key, []byte(value), 0); err != nil {
-			if err == syscall.ENOTSUP {
-				// We ignore errors here because not all graphdrivers support
-				// xattrs *cough* old versions of AUFS *cough*. However only
-				// ENOTSUP should be emitted in that case, otherwise we still
-				// bail.
-				errors = append(errors, err.Error())
-				continue
-			}
-			return err
-		}
-
-	}
-
-	if len(errors) > 0 {
-		logrus.WithFields(logrus.Fields{
-			"errors": errors,
-		}).Warn("ignored xattrs in archive: underlying filesystem doesn't support them")
-	}
-
-	// There is no LChmod, so ignore mode for symlink. Also, this
-	// must happen after chown, as that can modify the file mode
-	if err := handleLChmod(hdr, path, hdrInfo); err != nil {
-		return err
-	}
-
-	aTime := hdr.AccessTime
-	if aTime.Before(hdr.ModTime) {
-		// Last access time should never be before last modified time.
-		aTime = hdr.ModTime
-	}
-
-	// system.Chtimes doesn't support a NOFOLLOW flag atm
-	if hdr.Typeflag == tar.TypeLink {
-		if fi, err := os.Lstat(hdr.Linkname); err == nil && (fi.Mode()&os.ModeSymlink == 0) {
-			if err := system.Chtimes(path, aTime, hdr.ModTime); err != nil {
-				return err
-			}
-		}
-	} else if hdr.Typeflag != tar.TypeSymlink {
-		if err := system.Chtimes(path, aTime, hdr.ModTime); err != nil {
-			return err
-		}
-	} else {
-		ts := []syscall.Timespec{timeToTimespec(aTime), timeToTimespec(hdr.ModTime)}
-		if err := system.LUtimesNano(path, ts); err != nil && err != system.ErrNotSupportedPlatform {
-			return err
-		}
-	}
-	return nil
-}
-
-// Tar creates an archive from the directory at `path`, and returns it as a
-// stream of bytes.
-func Tar(path string, compression Compression) (io.ReadCloser, error) {
-	return TarWithOptions(path, &TarOptions{Compression: compression})
-}
-
-// TarWithOptions creates an archive from the directory at `path`, only including files whose relative
-// paths are included in `options.IncludeFiles` (if non-nil) or not in `options.ExcludePatterns`.
-func TarWithOptions(srcPath string, options *TarOptions) (io.ReadCloser, error) {
-
-	// Fix the source path to work with long path names. This is a no-op
-	// on platforms other than Windows.
-	srcPath = fixVolumePathPrefix(srcPath)
-
-	pm, err := fileutils.NewPatternMatcher(options.ExcludePatterns)
-	if err != nil {
-		return nil, err
-	}
-
-	pipeReader, pipeWriter := io.Pipe()
-
-	compressWriter, err := CompressStream(pipeWriter, options.Compression)
-	if err != nil {
-		return nil, err
-	}
-
-	go func() {
-		ta := newTarAppender(
-			idtools.NewIDMappingsFromMaps(options.UIDMaps, options.GIDMaps),
-			compressWriter,
-			options.ChownOpts,
-		)
-		ta.WhiteoutConverter = getWhiteoutConverter(options.WhiteoutFormat)
-
-		defer func() {
-			// Make sure to check the error on Close.
-			if err := ta.TarWriter.Close(); err != nil {
-				logrus.Errorf("Can't close tar writer: %s", err)
-			}
-			if err := compressWriter.Close(); err != nil {
-				logrus.Errorf("Can't close compress writer: %s", err)
-			}
-			if err := pipeWriter.Close(); err != nil {
-				logrus.Errorf("Can't close pipe writer: %s", err)
-			}
-		}()
-
-		// this buffer is needed for the duration of this piped stream
-		defer pools.BufioWriter32KPool.Put(ta.Buffer)
-
-		// In general we log errors here but ignore them because
-		// during e.g. a diff operation the container can continue
-		// mutating the filesystem and we can see transient errors
-		// from this
-
-		stat, err := os.Lstat(srcPath)
-		if err != nil {
-			return
-		}
-
-		if !stat.IsDir() {
-			// We can't later join a non-dir with any includes because the
-			// 'walk' will error if "file/." is stat-ed and "file" is not a
-			// directory. So, we must split the source path and use the
-			// basename as the include.
-			if len(options.IncludeFiles) > 0 {
-				logrus.Warn("Tar: Can't archive a file with includes")
-			}
-
-			dir, base := SplitPathDirEntry(srcPath)
-			srcPath = dir
-			options.IncludeFiles = []string{base}
-		}
-
-		if len(options.IncludeFiles) == 0 {
-			options.IncludeFiles = []string{"."}
-		}
-
-		seen := make(map[string]bool)
-
-		for _, include := range options.IncludeFiles {
-			rebaseName := options.RebaseNames[include]
-
-			walkRoot := getWalkRoot(srcPath, include)
-			filepath.Walk(walkRoot, func(filePath string, f os.FileInfo, err error) error {
-				if err != nil {
-					logrus.Errorf("Tar: Can't stat file %s to tar: %s", srcPath, err)
-					return nil
-				}
-
-				relFilePath, err := filepath.Rel(srcPath, filePath)
-				if err != nil || (!options.IncludeSourceDir && relFilePath == "." && f.IsDir()) {
-					// Error getting relative path OR we are looking
-					// at the source directory path. Skip in both situations.
-					return nil
-				}
-
-				if options.IncludeSourceDir && include == "." && relFilePath != "." {
-					relFilePath = strings.Join([]string{".", relFilePath}, string(filepath.Separator))
-				}
-
-				skip := false
-
-				// If "include" is an exact match for the current file
-				// then even if there's an "excludePatterns" pattern that
-				// matches it, don't skip it. IOW, assume an explicit 'include'
-				// is asking for that file no matter what - which is true
-				// for some files, like .dockerignore and Dockerfile (sometimes)
-				if include != relFilePath {
-					skip, err = pm.Matches(relFilePath)
-					if err != nil {
-						logrus.Errorf("Error matching %s: %v", relFilePath, err)
-						return err
-					}
-				}
-
-				if skip {
-					// If we want to skip this file and its a directory
-					// then we should first check to see if there's an
-					// excludes pattern (e.g. !dir/file) that starts with this
-					// dir. If so then we can't skip this dir.
-
-					// Its not a dir then so we can just return/skip.
-					if !f.IsDir() {
-						return nil
-					}
-
-					// No exceptions (!...) in patterns so just skip dir
-					if !pm.Exclusions() {
-						return filepath.SkipDir
-					}
-
-					dirSlash := relFilePath + string(filepath.Separator)
-
-					for _, pat := range pm.Patterns() {
-						if !pat.Exclusion() {
-							continue
-						}
-						if strings.HasPrefix(pat.String()+string(filepath.Separator), dirSlash) {
-							// found a match - so can't skip this dir
-							return nil
-						}
-					}
-
-					// No matching exclusion dir so just skip dir
-					return filepath.SkipDir
-				}
-
-				if seen[relFilePath] {
-					return nil
-				}
-				seen[relFilePath] = true
-
-				// Rename the base resource.
-				if rebaseName != "" {
-					var replacement string
-					if rebaseName != string(filepath.Separator) {
-						// Special case the root directory to replace with an
-						// empty string instead so that we don't end up with
-						// double slashes in the paths.
-						replacement = rebaseName
-					}
-
-					relFilePath = strings.Replace(relFilePath, include, replacement, 1)
-				}
-
-				if err := ta.addTarFile(filePath, relFilePath); err != nil {
-					logrus.Errorf("Can't add file %s to tar: %s", filePath, err)
-					// if pipe is broken, stop writing tar stream to it
-					if err == io.ErrClosedPipe {
-						return err
-					}
-				}
-				return nil
-			})
-		}
-	}()
-
-	return pipeReader, nil
-}
-
-// Unpack unpacks the decompressedArchive to dest with options.
-func Unpack(decompressedArchive io.Reader, dest string, options *TarOptions) error {
-	tr := tar.NewReader(decompressedArchive)
-	trBuf := pools.BufioReader32KPool.Get(nil)
-	defer pools.BufioReader32KPool.Put(trBuf)
-
-	var dirs []*tar.Header
-	idMappings := idtools.NewIDMappingsFromMaps(options.UIDMaps, options.GIDMaps)
-	rootIDs := idMappings.RootPair()
-	whiteoutConverter := getWhiteoutConverter(options.WhiteoutFormat)
-
-	// Iterate through the files in the archive.
-loop:
-	for {
-		hdr, err := tr.Next()
-		if err == io.EOF {
-			// end of tar archive
-			break
-		}
-		if err != nil {
-			return err
-		}
-
-		// Normalize name, for safety and for a simple is-root check
-		// This keeps "../" as-is, but normalizes "/../" to "/". Or Windows:
-		// This keeps "..\" as-is, but normalizes "\..\" to "\".
-		hdr.Name = filepath.Clean(hdr.Name)
-
-		for _, exclude := range options.ExcludePatterns {
-			if strings.HasPrefix(hdr.Name, exclude) {
-				continue loop
-			}
-		}
-
-		// After calling filepath.Clean(hdr.Name) above, hdr.Name will now be in
-		// the filepath format for the OS on which the daemon is running. Hence
-		// the check for a slash-suffix MUST be done in an OS-agnostic way.
-		if !strings.HasSuffix(hdr.Name, string(os.PathSeparator)) {
-			// Not the root directory, ensure that the parent directory exists
-			parent := filepath.Dir(hdr.Name)
-			parentPath := filepath.Join(dest, parent)
-			if _, err := os.Lstat(parentPath); err != nil && os.IsNotExist(err) {
-				err = idtools.MkdirAllAndChownNew(parentPath, 0777, rootIDs)
-				if err != nil {
-					return err
-				}
-			}
-		}
-
-		path := filepath.Join(dest, hdr.Name)
-		rel, err := filepath.Rel(dest, path)
-		if err != nil {
-			return err
-		}
-		if strings.HasPrefix(rel, ".."+string(os.PathSeparator)) {
-			return breakoutError(fmt.Errorf("%q is outside of %q", hdr.Name, dest))
-		}
-
-		// If path exits we almost always just want to remove and replace it
-		// The only exception is when it is a directory *and* the file from
-		// the layer is also a directory. Then we want to merge them (i.e.
-		// just apply the metadata from the layer).
-		if fi, err := os.Lstat(path); err == nil {
-			if options.NoOverwriteDirNonDir && fi.IsDir() && hdr.Typeflag != tar.TypeDir {
-				// If NoOverwriteDirNonDir is true then we cannot replace
-				// an existing directory with a non-directory from the archive.
-				return fmt.Errorf("cannot overwrite directory %q with non-directory %q", path, dest)
-			}
-
-			if options.NoOverwriteDirNonDir && !fi.IsDir() && hdr.Typeflag == tar.TypeDir {
-				// If NoOverwriteDirNonDir is true then we cannot replace
-				// an existing non-directory with a directory from the archive.
-				return fmt.Errorf("cannot overwrite non-directory %q with directory %q", path, dest)
-			}
-
-			if fi.IsDir() && hdr.Name == "." {
-				continue
-			}
-
-			if !(fi.IsDir() && hdr.Typeflag == tar.TypeDir) {
-				if err := os.RemoveAll(path); err != nil {
-					return err
-				}
-			}
-		}
-		trBuf.Reset(tr)
-
-		if err := remapIDs(idMappings, hdr); err != nil {
-			return err
-		}
-
-		if whiteoutConverter != nil {
-			writeFile, err := whiteoutConverter.ConvertRead(hdr, path)
-			if err != nil {
-				return err
-			}
-			if !writeFile {
-				continue
-			}
-		}
-
-		if err := createTarFile(path, dest, hdr, trBuf, !options.NoLchown, options.ChownOpts, options.InUserNS); err != nil {
-			return err
-		}
-
-		// Directory mtimes must be handled at the end to avoid further
-		// file creation in them to modify the directory mtime
-		if hdr.Typeflag == tar.TypeDir {
-			dirs = append(dirs, hdr)
-		}
-	}
-
-	for _, hdr := range dirs {
-		path := filepath.Join(dest, hdr.Name)
-
-		if err := system.Chtimes(path, hdr.AccessTime, hdr.ModTime); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// Untar reads a stream of bytes from `archive`, parses it as a tar archive,
-// and unpacks it into the directory at `dest`.
-// The archive may be compressed with one of the following algorithms:
-//  identity (uncompressed), gzip, bzip2, xz.
-// FIXME: specify behavior when target path exists vs. doesn't exist.
-func Untar(tarArchive io.Reader, dest string, options *TarOptions) error {
-	return untarHandler(tarArchive, dest, options, true)
-}
-
-// UntarUncompressed reads a stream of bytes from `archive`, parses it as a tar archive,
-// and unpacks it into the directory at `dest`.
-// The archive must be an uncompressed stream.
-func UntarUncompressed(tarArchive io.Reader, dest string, options *TarOptions) error {
-	return untarHandler(tarArchive, dest, options, false)
-}
-
-// Handler for teasing out the automatic decompression
-func untarHandler(tarArchive io.Reader, dest string, options *TarOptions, decompress bool) error {
-	if tarArchive == nil {
-		return fmt.Errorf("Empty archive")
-	}
-	dest = filepath.Clean(dest)
-	if options == nil {
-		options = &TarOptions{}
-	}
-	if options.ExcludePatterns == nil {
-		options.ExcludePatterns = []string{}
-	}
-
-	r := tarArchive
-	if decompress {
-		decompressedArchive, err := DecompressStream(tarArchive)
-		if err != nil {
-			return err
-		}
-		defer decompressedArchive.Close()
-		r = decompressedArchive
-	}
-
-	return Unpack(r, dest, options)
-}
-
-// TarUntar is a convenience function which calls Tar and Untar, with the output of one piped into the other.
-// If either Tar or Untar fails, TarUntar aborts and returns the error.
-func (archiver *Archiver) TarUntar(src, dst string) error {
-	logrus.Debugf("TarUntar(%s %s)", src, dst)
-	archive, err := TarWithOptions(src, &TarOptions{Compression: Uncompressed})
-	if err != nil {
-		return err
-	}
-	defer archive.Close()
-	options := &TarOptions{
-		UIDMaps: archiver.IDMappings.UIDs(),
-		GIDMaps: archiver.IDMappings.GIDs(),
-	}
-	return archiver.Untar(archive, dst, options)
-}
-
-// UntarPath untar a file from path to a destination, src is the source tar file path.
-func (archiver *Archiver) UntarPath(src, dst string) error {
-	archive, err := os.Open(src)
-	if err != nil {
-		return err
-	}
-	defer archive.Close()
-	options := &TarOptions{
-		UIDMaps: archiver.IDMappings.UIDs(),
-		GIDMaps: archiver.IDMappings.GIDs(),
-	}
-	return archiver.Untar(archive, dst, options)
-}
-
-// CopyWithTar creates a tar archive of filesystem path `src`, and
-// unpacks it at filesystem path `dst`.
-// The archive is streamed directly with fixed buffering and no
-// intermediary disk IO.
-func (archiver *Archiver) CopyWithTar(src, dst string) error {
-	srcSt, err := os.Stat(src)
-	if err != nil {
-		return err
-	}
-	if !srcSt.IsDir() {
-		return archiver.CopyFileWithTar(src, dst)
-	}
-
-	// if this archiver is set up with ID mapping we need to create
-	// the new destination directory with the remapped root UID/GID pair
-	// as owner
-	rootIDs := archiver.IDMappings.RootPair()
-	// Create dst, copy src's content into it
-	logrus.Debugf("Creating dest directory: %s", dst)
-	if err := idtools.MkdirAllAndChownNew(dst, 0755, rootIDs); err != nil {
-		return err
-	}
-	logrus.Debugf("Calling TarUntar(%s, %s)", src, dst)
-	return archiver.TarUntar(src, dst)
-}
-
-// CopyFileWithTar emulates the behavior of the 'cp' command-line
-// for a single file. It copies a regular file from path `src` to
-// path `dst`, and preserves all its metadata.
-func (archiver *Archiver) CopyFileWithTar(src, dst string) (err error) {
-	logrus.Debugf("CopyFileWithTar(%s, %s)", src, dst)
-	srcSt, err := os.Stat(src)
-	if err != nil {
-		return err
-	}
-
-	if srcSt.IsDir() {
-		return fmt.Errorf("Can't copy a directory")
-	}
-
-	// Clean up the trailing slash. This must be done in an operating
-	// system specific manner.
-	if dst[len(dst)-1] == os.PathSeparator {
-		dst = filepath.Join(dst, filepath.Base(src))
-	}
-	// Create the holding directory if necessary
-	if err := system.MkdirAll(filepath.Dir(dst), 0700, ""); err != nil {
-		return err
-	}
-
-	r, w := io.Pipe()
-	errC := promise.Go(func() error {
-		defer w.Close()
-
-		srcF, err := os.Open(src)
-		if err != nil {
-			return err
-		}
-		defer srcF.Close()
-
-		hdr, err := tar.FileInfoHeader(srcSt, "")
-		if err != nil {
-			return err
-		}
-		hdr.Name = filepath.Base(dst)
-		hdr.Mode = int64(chmodTarEntry(os.FileMode(hdr.Mode)))
-
-		if err := remapIDs(archiver.IDMappings, hdr); err != nil {
-			return err
-		}
-
-		tw := tar.NewWriter(w)
-		defer tw.Close()
-		if err := tw.WriteHeader(hdr); err != nil {
-			return err
-		}
-		if _, err := io.Copy(tw, srcF); err != nil {
-			return err
-		}
-		return nil
-	})
-	defer func() {
-		if er := <-errC; err == nil && er != nil {
-			err = er
-		}
-	}()
-
-	err = archiver.Untar(r, filepath.Dir(dst), nil)
-	if err != nil {
-		r.CloseWithError(err)
-	}
-	return err
-}
-
-func remapIDs(idMappings *idtools.IDMappings, hdr *tar.Header) error {
-	ids, err := idMappings.ToHost(idtools.IDPair{UID: hdr.Uid, GID: hdr.Gid})
-	hdr.Uid, hdr.Gid = ids.UID, ids.GID
-	return err
-}
-
-// cmdStream executes a command, and returns its stdout as a stream.
-// If the command fails to run or doesn't complete successfully, an error
-// will be returned, including anything written on stderr.
-func cmdStream(cmd *exec.Cmd, input io.Reader) (io.ReadCloser, <-chan struct{}, error) {
-	chdone := make(chan struct{})
-	cmd.Stdin = input
-	pipeR, pipeW := io.Pipe()
-	cmd.Stdout = pipeW
-	var errBuf bytes.Buffer
-	cmd.Stderr = &errBuf
-
-	// Run the command and return the pipe
-	if err := cmd.Start(); err != nil {
-		return nil, nil, err
-	}
-
-	// Copy stdout to the returned pipe
-	go func() {
-		if err := cmd.Wait(); err != nil {
-			pipeW.CloseWithError(fmt.Errorf("%s: %s", err, errBuf.String()))
-		} else {
-			pipeW.Close()
-		}
-		close(chdone)
-	}()
-
-	return pipeR, chdone, nil
-}
-
-// NewTempArchive reads the content of src into a temporary file, and returns the contents
-// of that file as an archive. The archive can only be read once - as soon as reading completes,
-// the file will be deleted.
-func NewTempArchive(src io.Reader, dir string) (*TempArchive, error) {
-	f, err := ioutil.TempFile(dir, "")
-	if err != nil {
-		return nil, err
-	}
-	if _, err := io.Copy(f, src); err != nil {
-		return nil, err
-	}
-	if _, err := f.Seek(0, 0); err != nil {
-		return nil, err
-	}
-	st, err := f.Stat()
-	if err != nil {
-		return nil, err
-	}
-	size := st.Size()
-	return &TempArchive{File: f, Size: size}, nil
-}
-
-// TempArchive is a temporary archive. The archive can only be read once - as soon as reading completes,
-// the file will be deleted.
-type TempArchive struct {
-	*os.File
-	Size   int64 // Pre-computed from Stat().Size() as a convenience
-	read   int64
-	closed bool
-}
-
-// Close closes the underlying file if it's still open, or does a no-op
-// to allow callers to try to close the TempArchive multiple times safely.
-func (archive *TempArchive) Close() error {
-	if archive.closed {
-		return nil
-	}
-
-	archive.closed = true
-
-	return archive.File.Close()
-}
-
-func (archive *TempArchive) Read(data []byte) (int, error) {
-	n, err := archive.File.Read(data)
-	archive.read += int64(n)
-	if err != nil || archive.read == archive.Size {
-		archive.Close()
-		os.Remove(archive.File.Name())
-	}
-	return n, err
-}
-
-// IsArchive checks for the magic bytes of a tar or any supported compression
-// algorithm.
-func IsArchive(header []byte) bool {
-	compression := DetectCompression(header)
-	if compression != Uncompressed {
-		return true
-	}
-	r := tar.NewReader(bytes.NewBuffer(header))
-	_, err := r.Next()
-	return err == nil
-}
-
-// UntarPath is a convenience function which looks for an archive
-// at filesystem path `src`, and unpacks it at `dst`.
-func UntarPath(src, dst string) error {
-	return NewDefaultArchiver().UntarPath(src, dst)
-}
-
-const (
-	// HeaderSize is the size in bytes of a tar header
-	HeaderSize = 512
-)
diff --git a/vendor/github.com/containers/storage/pkg/archive/archive_linux.go b/vendor/github.com/containers/storage/pkg/archive/archive_linux.go
deleted file mode 100644
index 5a14eb91a9..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/archive_linux.go
+++ /dev/null
@@ -1,92 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/storage/pkg/system"
-	"golang.org/x/sys/unix"
-)
-
-func getWhiteoutConverter(format WhiteoutFormat) tarWhiteoutConverter {
-	if format == OverlayWhiteoutFormat {
-		return overlayWhiteoutConverter{}
-	}
-	return nil
-}
-
-type overlayWhiteoutConverter struct{}
-
-func (overlayWhiteoutConverter) ConvertWrite(hdr *tar.Header, path string, fi os.FileInfo) (wo *tar.Header, err error) {
-	// convert whiteouts to AUFS format
-	if fi.Mode()&os.ModeCharDevice != 0 && hdr.Devmajor == 0 && hdr.Devminor == 0 {
-		// we just rename the file and make it normal
-		dir, filename := filepath.Split(hdr.Name)
-		hdr.Name = filepath.Join(dir, WhiteoutPrefix+filename)
-		hdr.Mode = 0600
-		hdr.Typeflag = tar.TypeReg
-		hdr.Size = 0
-	}
-
-	if fi.Mode()&os.ModeDir != 0 {
-		// convert opaque dirs to AUFS format by writing an empty file with the prefix
-		opaque, err := system.Lgetxattr(path, "trusted.overlay.opaque")
-		if err != nil {
-			return nil, err
-		}
-		if len(opaque) == 1 && opaque[0] == 'y' {
-			if hdr.Xattrs != nil {
-				delete(hdr.Xattrs, "trusted.overlay.opaque")
-			}
-
-			// create a header for the whiteout file
-			// it should inherit some properties from the parent, but be a regular file
-			wo = &tar.Header{
-				Typeflag:   tar.TypeReg,
-				Mode:       hdr.Mode & int64(os.ModePerm),
-				Name:       filepath.Join(hdr.Name, WhiteoutOpaqueDir),
-				Size:       0,
-				Uid:        hdr.Uid,
-				Uname:      hdr.Uname,
-				Gid:        hdr.Gid,
-				Gname:      hdr.Gname,
-				AccessTime: hdr.AccessTime,
-				ChangeTime: hdr.ChangeTime,
-			}
-		}
-	}
-
-	return
-}
-
-func (overlayWhiteoutConverter) ConvertRead(hdr *tar.Header, path string) (bool, error) {
-	base := filepath.Base(path)
-	dir := filepath.Dir(path)
-
-	// if a directory is marked as opaque by the AUFS special file, we need to translate that to overlay
-	if base == WhiteoutOpaqueDir {
-		err := unix.Setxattr(dir, "trusted.overlay.opaque", []byte{'y'}, 0)
-		// don't write the file itself
-		return false, err
-	}
-
-	// if a file was deleted and we are using overlay, we need to create a character device
-	if strings.HasPrefix(base, WhiteoutPrefix) {
-		originalBase := base[len(WhiteoutPrefix):]
-		originalPath := filepath.Join(dir, originalBase)
-
-		if err := unix.Mknod(originalPath, unix.S_IFCHR, 0); err != nil {
-			return false, err
-		}
-		if err := os.Chown(originalPath, hdr.Uid, hdr.Gid); err != nil {
-			return false, err
-		}
-
-		// don't write the file itself
-		return false, nil
-	}
-
-	return true, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/archive_other.go b/vendor/github.com/containers/storage/pkg/archive/archive_other.go
deleted file mode 100644
index 54acbf2856..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/archive_other.go
+++ /dev/null
@@ -1,7 +0,0 @@
-// +build !linux
-
-package archive
-
-func getWhiteoutConverter(format WhiteoutFormat) tarWhiteoutConverter {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/archive_unix.go b/vendor/github.com/containers/storage/pkg/archive/archive_unix.go
deleted file mode 100644
index bdc1a3d794..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/archive_unix.go
+++ /dev/null
@@ -1,122 +0,0 @@
-// +build !windows
-
-package archive
-
-import (
-	"archive/tar"
-	"errors"
-	"os"
-	"path/filepath"
-	"syscall"
-
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/system"
-	rsystem "github.com/opencontainers/runc/libcontainer/system"
-	"golang.org/x/sys/unix"
-)
-
-// fixVolumePathPrefix does platform specific processing to ensure that if
-// the path being passed in is not in a volume path format, convert it to one.
-func fixVolumePathPrefix(srcPath string) string {
-	return srcPath
-}
-
-// getWalkRoot calculates the root path when performing a TarWithOptions.
-// We use a separate function as this is platform specific. On Linux, we
-// can't use filepath.Join(srcPath,include) because this will clean away
-// a trailing "." or "/" which may be important.
-func getWalkRoot(srcPath string, include string) string {
-	return srcPath + string(filepath.Separator) + include
-}
-
-// CanonicalTarNameForPath returns platform-specific filepath
-// to canonical posix-style path for tar archival. p is relative
-// path.
-func CanonicalTarNameForPath(p string) (string, error) {
-	return p, nil // already unix-style
-}
-
-// chmodTarEntry is used to adjust the file permissions used in tar header based
-// on the platform the archival is done.
-
-func chmodTarEntry(perm os.FileMode) os.FileMode {
-	return perm // noop for unix as golang APIs provide perm bits correctly
-}
-
-func setHeaderForSpecialDevice(hdr *tar.Header, name string, stat interface{}) (err error) {
-	s, ok := stat.(*syscall.Stat_t)
-
-	if ok {
-		// Currently go does not fill in the major/minors
-		if s.Mode&unix.S_IFBLK != 0 ||
-			s.Mode&unix.S_IFCHR != 0 {
-			hdr.Devmajor = int64(major(uint64(s.Rdev))) // nolint: unconvert
-			hdr.Devminor = int64(minor(uint64(s.Rdev))) // nolint: unconvert
-		}
-	}
-
-	return
-}
-
-func getInodeFromStat(stat interface{}) (inode uint64, err error) {
-	s, ok := stat.(*syscall.Stat_t)
-
-	if ok {
-		inode = s.Ino
-	}
-
-	return
-}
-
-func getFileUIDGID(stat interface{}) (idtools.IDPair, error) {
-	s, ok := stat.(*syscall.Stat_t)
-
-	if !ok {
-		return idtools.IDPair{}, errors.New("cannot convert stat value to syscall.Stat_t")
-	}
-	return idtools.IDPair{UID: int(s.Uid), GID: int(s.Gid)}, nil
-}
-
-func major(device uint64) uint64 {
-	return (device >> 8) & 0xfff
-}
-
-func minor(device uint64) uint64 {
-	return (device & 0xff) | ((device >> 12) & 0xfff00)
-}
-
-// handleTarTypeBlockCharFifo is an OS-specific helper function used by
-// createTarFile to handle the following types of header: Block; Char; Fifo
-func handleTarTypeBlockCharFifo(hdr *tar.Header, path string) error {
-	if rsystem.RunningInUserNS() {
-		// cannot create a device if running in user namespace
-		return nil
-	}
-
-	mode := uint32(hdr.Mode & 07777)
-	switch hdr.Typeflag {
-	case tar.TypeBlock:
-		mode |= unix.S_IFBLK
-	case tar.TypeChar:
-		mode |= unix.S_IFCHR
-	case tar.TypeFifo:
-		mode |= unix.S_IFIFO
-	}
-
-	return system.Mknod(path, mode, int(system.Mkdev(hdr.Devmajor, hdr.Devminor)))
-}
-
-func handleLChmod(hdr *tar.Header, path string, hdrInfo os.FileInfo) error {
-	if hdr.Typeflag == tar.TypeLink {
-		if fi, err := os.Lstat(hdr.Linkname); err == nil && (fi.Mode()&os.ModeSymlink == 0) {
-			if err := os.Chmod(path, hdrInfo.Mode()); err != nil {
-				return err
-			}
-		}
-	} else if hdr.Typeflag != tar.TypeSymlink {
-		if err := os.Chmod(path, hdrInfo.Mode()); err != nil {
-			return err
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/archive_windows.go b/vendor/github.com/containers/storage/pkg/archive/archive_windows.go
deleted file mode 100644
index 0bcbb925d2..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/archive_windows.go
+++ /dev/null
@@ -1,79 +0,0 @@
-// +build windows
-
-package archive
-
-import (
-	"archive/tar"
-	"fmt"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/longpath"
-)
-
-// fixVolumePathPrefix does platform specific processing to ensure that if
-// the path being passed in is not in a volume path format, convert it to one.
-func fixVolumePathPrefix(srcPath string) string {
-	return longpath.AddPrefix(srcPath)
-}
-
-// getWalkRoot calculates the root path when performing a TarWithOptions.
-// We use a separate function as this is platform specific.
-func getWalkRoot(srcPath string, include string) string {
-	return filepath.Join(srcPath, include)
-}
-
-// CanonicalTarNameForPath returns platform-specific filepath
-// to canonical posix-style path for tar archival. p is relative
-// path.
-func CanonicalTarNameForPath(p string) (string, error) {
-	// windows: convert windows style relative path with backslashes
-	// into forward slashes. Since windows does not allow '/' or '\'
-	// in file names, it is mostly safe to replace however we must
-	// check just in case
-	if strings.Contains(p, "/") {
-		return "", fmt.Errorf("Windows path contains forward slash: %s", p)
-	}
-	return strings.Replace(p, string(os.PathSeparator), "/", -1), nil
-
-}
-
-// chmodTarEntry is used to adjust the file permissions used in tar header based
-// on the platform the archival is done.
-func chmodTarEntry(perm os.FileMode) os.FileMode {
-	//perm &= 0755 // this 0-ed out tar flags (like link, regular file, directory marker etc.)
-	permPart := perm & os.ModePerm
-	noPermPart := perm &^ os.ModePerm
-	// Add the x bit: make everything +x from windows
-	permPart |= 0111
-	permPart &= 0755
-
-	return noPermPart | permPart
-}
-
-func setHeaderForSpecialDevice(hdr *tar.Header, name string, stat interface{}) (err error) {
-	// do nothing. no notion of Rdev, Nlink in stat on Windows
-	return
-}
-
-func getInodeFromStat(stat interface{}) (inode uint64, err error) {
-	// do nothing. no notion of Inode in stat on Windows
-	return
-}
-
-// handleTarTypeBlockCharFifo is an OS-specific helper function used by
-// createTarFile to handle the following types of header: Block; Char; Fifo
-func handleTarTypeBlockCharFifo(hdr *tar.Header, path string) error {
-	return nil
-}
-
-func handleLChmod(hdr *tar.Header, path string, hdrInfo os.FileInfo) error {
-	return nil
-}
-
-func getFileUIDGID(stat interface{}) (idtools.IDPair, error) {
-	// no notion of file ownership mapping yet on Windows
-	return idtools.IDPair{0, 0}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/changes.go b/vendor/github.com/containers/storage/pkg/archive/changes.go
deleted file mode 100644
index 6ba4b8ec6f..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/changes.go
+++ /dev/null
@@ -1,441 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"bytes"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"sort"
-	"strings"
-	"syscall"
-	"time"
-
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/pools"
-	"github.com/containers/storage/pkg/system"
-	"github.com/sirupsen/logrus"
-)
-
-// ChangeType represents the change type.
-type ChangeType int
-
-const (
-	// ChangeModify represents the modify operation.
-	ChangeModify = iota
-	// ChangeAdd represents the add operation.
-	ChangeAdd
-	// ChangeDelete represents the delete operation.
-	ChangeDelete
-)
-
-func (c ChangeType) String() string {
-	switch c {
-	case ChangeModify:
-		return "C"
-	case ChangeAdd:
-		return "A"
-	case ChangeDelete:
-		return "D"
-	}
-	return ""
-}
-
-// Change represents a change, it wraps the change type and path.
-// It describes changes of the files in the path respect to the
-// parent layers. The change could be modify, add, delete.
-// This is used for layer diff.
-type Change struct {
-	Path string
-	Kind ChangeType
-}
-
-func (change *Change) String() string {
-	return fmt.Sprintf("%s %s", change.Kind, change.Path)
-}
-
-// for sort.Sort
-type changesByPath []Change
-
-func (c changesByPath) Less(i, j int) bool { return c[i].Path < c[j].Path }
-func (c changesByPath) Len() int           { return len(c) }
-func (c changesByPath) Swap(i, j int)      { c[j], c[i] = c[i], c[j] }
-
-// Gnu tar and the go tar writer don't have sub-second mtime
-// precision, which is problematic when we apply changes via tar
-// files, we handle this by comparing for exact times, *or* same
-// second count and either a or b having exactly 0 nanoseconds
-func sameFsTime(a, b time.Time) bool {
-	return a == b ||
-		(a.Unix() == b.Unix() &&
-			(a.Nanosecond() == 0 || b.Nanosecond() == 0))
-}
-
-func sameFsTimeSpec(a, b syscall.Timespec) bool {
-	return a.Sec == b.Sec &&
-		(a.Nsec == b.Nsec || a.Nsec == 0 || b.Nsec == 0)
-}
-
-// Changes walks the path rw and determines changes for the files in the path,
-// with respect to the parent layers
-func Changes(layers []string, rw string) ([]Change, error) {
-	return changes(layers, rw, aufsDeletedFile, aufsMetadataSkip)
-}
-
-func aufsMetadataSkip(path string) (skip bool, err error) {
-	skip, err = filepath.Match(string(os.PathSeparator)+WhiteoutMetaPrefix+"*", path)
-	if err != nil {
-		skip = true
-	}
-	return
-}
-
-func aufsDeletedFile(root, path string, fi os.FileInfo) (string, error) {
-	f := filepath.Base(path)
-
-	// If there is a whiteout, then the file was removed
-	if strings.HasPrefix(f, WhiteoutPrefix) {
-		originalFile := f[len(WhiteoutPrefix):]
-		return filepath.Join(filepath.Dir(path), originalFile), nil
-	}
-
-	return "", nil
-}
-
-type skipChange func(string) (bool, error)
-type deleteChange func(string, string, os.FileInfo) (string, error)
-
-func changes(layers []string, rw string, dc deleteChange, sc skipChange) ([]Change, error) {
-	var (
-		changes     []Change
-		changedDirs = make(map[string]struct{})
-	)
-
-	err := filepath.Walk(rw, func(path string, f os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-
-		// Rebase path
-		path, err = filepath.Rel(rw, path)
-		if err != nil {
-			return err
-		}
-
-		// As this runs on the daemon side, file paths are OS specific.
-		path = filepath.Join(string(os.PathSeparator), path)
-
-		// Skip root
-		if path == string(os.PathSeparator) {
-			return nil
-		}
-
-		if sc != nil {
-			if skip, err := sc(path); skip {
-				return err
-			}
-		}
-
-		change := Change{
-			Path: path,
-		}
-
-		deletedFile, err := dc(rw, path, f)
-		if err != nil {
-			return err
-		}
-
-		// Find out what kind of modification happened
-		if deletedFile != "" {
-			change.Path = deletedFile
-			change.Kind = ChangeDelete
-		} else {
-			// Otherwise, the file was added
-			change.Kind = ChangeAdd
-
-			// ...Unless it already existed in a top layer, in which case, it's a modification
-			for _, layer := range layers {
-				stat, err := os.Stat(filepath.Join(layer, path))
-				if err != nil && !os.IsNotExist(err) {
-					return err
-				}
-				if err == nil {
-					// The file existed in the top layer, so that's a modification
-
-					// However, if it's a directory, maybe it wasn't actually modified.
-					// If you modify /foo/bar/baz, then /foo will be part of the changed files only because it's the parent of bar
-					if stat.IsDir() && f.IsDir() {
-						if f.Size() == stat.Size() && f.Mode() == stat.Mode() && sameFsTime(f.ModTime(), stat.ModTime()) {
-							// Both directories are the same, don't record the change
-							return nil
-						}
-					}
-					change.Kind = ChangeModify
-					break
-				}
-			}
-		}
-
-		// If /foo/bar/file.txt is modified, then /foo/bar must be part of the changed files.
-		// This block is here to ensure the change is recorded even if the
-		// modify time, mode and size of the parent directory in the rw and ro layers are all equal.
-		// Check https://github.com/docker/docker/pull/13590 for details.
-		if f.IsDir() {
-			changedDirs[path] = struct{}{}
-		}
-		if change.Kind == ChangeAdd || change.Kind == ChangeDelete {
-			parent := filepath.Dir(path)
-			if _, ok := changedDirs[parent]; !ok && parent != "/" {
-				changes = append(changes, Change{Path: parent, Kind: ChangeModify})
-				changedDirs[parent] = struct{}{}
-			}
-		}
-
-		// Record change
-		changes = append(changes, change)
-		return nil
-	})
-	if err != nil && !os.IsNotExist(err) {
-		return nil, err
-	}
-	return changes, nil
-}
-
-// FileInfo describes the information of a file.
-type FileInfo struct {
-	parent     *FileInfo
-	name       string
-	stat       *system.StatT
-	children   map[string]*FileInfo
-	capability []byte
-	added      bool
-}
-
-// LookUp looks up the file information of a file.
-func (info *FileInfo) LookUp(path string) *FileInfo {
-	// As this runs on the daemon side, file paths are OS specific.
-	parent := info
-	if path == string(os.PathSeparator) {
-		return info
-	}
-
-	pathElements := strings.Split(path, string(os.PathSeparator))
-	for _, elem := range pathElements {
-		if elem != "" {
-			child := parent.children[elem]
-			if child == nil {
-				return nil
-			}
-			parent = child
-		}
-	}
-	return parent
-}
-
-func (info *FileInfo) path() string {
-	if info.parent == nil {
-		// As this runs on the daemon side, file paths are OS specific.
-		return string(os.PathSeparator)
-	}
-	return filepath.Join(info.parent.path(), info.name)
-}
-
-func (info *FileInfo) addChanges(oldInfo *FileInfo, changes *[]Change) {
-
-	sizeAtEntry := len(*changes)
-
-	if oldInfo == nil {
-		// add
-		change := Change{
-			Path: info.path(),
-			Kind: ChangeAdd,
-		}
-		*changes = append(*changes, change)
-		info.added = true
-	}
-
-	// We make a copy so we can modify it to detect additions
-	// also, we only recurse on the old dir if the new info is a directory
-	// otherwise any previous delete/change is considered recursive
-	oldChildren := make(map[string]*FileInfo)
-	if oldInfo != nil && info.isDir() {
-		for k, v := range oldInfo.children {
-			oldChildren[k] = v
-		}
-	}
-
-	for name, newChild := range info.children {
-		oldChild := oldChildren[name]
-		if oldChild != nil {
-			// change?
-			oldStat := oldChild.stat
-			newStat := newChild.stat
-			// Note: We can't compare inode or ctime or blocksize here, because these change
-			// when copying a file into a container. However, that is not generally a problem
-			// because any content change will change mtime, and any status change should
-			// be visible when actually comparing the stat fields. The only time this
-			// breaks down is if some code intentionally hides a change by setting
-			// back mtime
-			if statDifferent(oldStat, newStat) ||
-				!bytes.Equal(oldChild.capability, newChild.capability) {
-				change := Change{
-					Path: newChild.path(),
-					Kind: ChangeModify,
-				}
-				*changes = append(*changes, change)
-				newChild.added = true
-			}
-
-			// Remove from copy so we can detect deletions
-			delete(oldChildren, name)
-		}
-
-		newChild.addChanges(oldChild, changes)
-	}
-	for _, oldChild := range oldChildren {
-		// delete
-		change := Change{
-			Path: oldChild.path(),
-			Kind: ChangeDelete,
-		}
-		*changes = append(*changes, change)
-	}
-
-	// If there were changes inside this directory, we need to add it, even if the directory
-	// itself wasn't changed. This is needed to properly save and restore filesystem permissions.
-	// As this runs on the daemon side, file paths are OS specific.
-	if len(*changes) > sizeAtEntry && info.isDir() && !info.added && info.path() != string(os.PathSeparator) {
-		change := Change{
-			Path: info.path(),
-			Kind: ChangeModify,
-		}
-		// Let's insert the directory entry before the recently added entries located inside this dir
-		*changes = append(*changes, change) // just to resize the slice, will be overwritten
-		copy((*changes)[sizeAtEntry+1:], (*changes)[sizeAtEntry:])
-		(*changes)[sizeAtEntry] = change
-	}
-
-}
-
-// Changes add changes to file information.
-func (info *FileInfo) Changes(oldInfo *FileInfo) []Change {
-	var changes []Change
-
-	info.addChanges(oldInfo, &changes)
-
-	return changes
-}
-
-func newRootFileInfo() *FileInfo {
-	// As this runs on the daemon side, file paths are OS specific.
-	root := &FileInfo{
-		name:     string(os.PathSeparator),
-		children: make(map[string]*FileInfo),
-	}
-	return root
-}
-
-// ChangesDirs compares two directories and generates an array of Change objects describing the changes.
-// If oldDir is "", then all files in newDir will be Add-Changes.
-func ChangesDirs(newDir, oldDir string) ([]Change, error) {
-	var (
-		oldRoot, newRoot *FileInfo
-	)
-	if oldDir == "" {
-		emptyDir, err := ioutil.TempDir("", "empty")
-		if err != nil {
-			return nil, err
-		}
-		defer os.Remove(emptyDir)
-		oldDir = emptyDir
-	}
-	oldRoot, newRoot, err := collectFileInfoForChanges(oldDir, newDir)
-	if err != nil {
-		return nil, err
-	}
-
-	return newRoot.Changes(oldRoot), nil
-}
-
-// ChangesSize calculates the size in bytes of the provided changes, based on newDir.
-func ChangesSize(newDir string, changes []Change) int64 {
-	var (
-		size int64
-		sf   = make(map[uint64]struct{})
-	)
-	for _, change := range changes {
-		if change.Kind == ChangeModify || change.Kind == ChangeAdd {
-			file := filepath.Join(newDir, change.Path)
-			fileInfo, err := os.Lstat(file)
-			if err != nil {
-				logrus.Errorf("Can not stat %q: %s", file, err)
-				continue
-			}
-
-			if fileInfo != nil && !fileInfo.IsDir() {
-				if hasHardlinks(fileInfo) {
-					inode := getIno(fileInfo)
-					if _, ok := sf[inode]; !ok {
-						size += fileInfo.Size()
-						sf[inode] = struct{}{}
-					}
-				} else {
-					size += fileInfo.Size()
-				}
-			}
-		}
-	}
-	return size
-}
-
-// ExportChanges produces an Archive from the provided changes, relative to dir.
-func ExportChanges(dir string, changes []Change, uidMaps, gidMaps []idtools.IDMap) (io.ReadCloser, error) {
-	reader, writer := io.Pipe()
-	go func() {
-		ta := newTarAppender(idtools.NewIDMappingsFromMaps(uidMaps, gidMaps), writer, nil)
-
-		// this buffer is needed for the duration of this piped stream
-		defer pools.BufioWriter32KPool.Put(ta.Buffer)
-
-		sort.Sort(changesByPath(changes))
-
-		// In general we log errors here but ignore them because
-		// during e.g. a diff operation the container can continue
-		// mutating the filesystem and we can see transient errors
-		// from this
-		for _, change := range changes {
-			if change.Kind == ChangeDelete {
-				whiteOutDir := filepath.Dir(change.Path)
-				whiteOutBase := filepath.Base(change.Path)
-				whiteOut := filepath.Join(whiteOutDir, WhiteoutPrefix+whiteOutBase)
-				timestamp := time.Now()
-				hdr := &tar.Header{
-					Name:       whiteOut[1:],
-					Size:       0,
-					ModTime:    timestamp,
-					AccessTime: timestamp,
-					ChangeTime: timestamp,
-				}
-				if err := ta.TarWriter.WriteHeader(hdr); err != nil {
-					logrus.Debugf("Can't write whiteout header: %s", err)
-				}
-			} else {
-				path := filepath.Join(dir, change.Path)
-				if err := ta.addTarFile(path, change.Path[1:]); err != nil {
-					logrus.Debugf("Can't add file %s to tar: %s", path, err)
-				}
-			}
-		}
-
-		// Make sure to check the error on Close.
-		if err := ta.TarWriter.Close(); err != nil {
-			logrus.Debugf("Can't close layer: %s", err)
-		}
-		if err := writer.Close(); err != nil {
-			logrus.Debugf("failed close Changes writer: %s", err)
-		}
-	}()
-	return reader, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/changes_linux.go b/vendor/github.com/containers/storage/pkg/archive/changes_linux.go
deleted file mode 100644
index 90c9a627e5..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/changes_linux.go
+++ /dev/null
@@ -1,313 +0,0 @@
-package archive
-
-import (
-	"bytes"
-	"fmt"
-	"os"
-	"path/filepath"
-	"sort"
-	"syscall"
-	"unsafe"
-
-	"github.com/containers/storage/pkg/system"
-	"golang.org/x/sys/unix"
-)
-
-// walker is used to implement collectFileInfoForChanges on linux. Where this
-// method in general returns the entire contents of two directory trees, we
-// optimize some FS calls out on linux. In particular, we take advantage of the
-// fact that getdents(2) returns the inode of each file in the directory being
-// walked, which, when walking two trees in parallel to generate a list of
-// changes, can be used to prune subtrees without ever having to lstat(2) them
-// directly. Eliminating stat calls in this way can save up to seconds on large
-// images.
-type walker struct {
-	dir1  string
-	dir2  string
-	root1 *FileInfo
-	root2 *FileInfo
-}
-
-// collectFileInfoForChanges returns a complete representation of the trees
-// rooted at dir1 and dir2, with one important exception: any subtree or
-// leaf where the inode and device numbers are an exact match between dir1
-// and dir2 will be pruned from the results. This method is *only* to be used
-// to generating a list of changes between the two directories, as it does not
-// reflect the full contents.
-func collectFileInfoForChanges(dir1, dir2 string) (*FileInfo, *FileInfo, error) {
-	w := &walker{
-		dir1:  dir1,
-		dir2:  dir2,
-		root1: newRootFileInfo(),
-		root2: newRootFileInfo(),
-	}
-
-	i1, err := os.Lstat(w.dir1)
-	if err != nil {
-		return nil, nil, err
-	}
-	i2, err := os.Lstat(w.dir2)
-	if err != nil {
-		return nil, nil, err
-	}
-
-	if err := w.walk("/", i1, i2); err != nil {
-		return nil, nil, err
-	}
-
-	return w.root1, w.root2, nil
-}
-
-// Given a FileInfo, its path info, and a reference to the root of the tree
-// being constructed, register this file with the tree.
-func walkchunk(path string, fi os.FileInfo, dir string, root *FileInfo) error {
-	if fi == nil {
-		return nil
-	}
-	parent := root.LookUp(filepath.Dir(path))
-	if parent == nil {
-		return fmt.Errorf("walkchunk: Unexpectedly no parent for %s", path)
-	}
-	info := &FileInfo{
-		name:     filepath.Base(path),
-		children: make(map[string]*FileInfo),
-		parent:   parent,
-	}
-	cpath := filepath.Join(dir, path)
-	stat, err := system.FromStatT(fi.Sys().(*syscall.Stat_t))
-	if err != nil {
-		return err
-	}
-	info.stat = stat
-	info.capability, _ = system.Lgetxattr(cpath, "security.capability") // lgetxattr(2): fs access
-	parent.children[info.name] = info
-	return nil
-}
-
-// Walk a subtree rooted at the same path in both trees being iterated. For
-// example, /docker/overlay/1234/a/b/c/d and /docker/overlay/8888/a/b/c/d
-func (w *walker) walk(path string, i1, i2 os.FileInfo) (err error) {
-	// Register these nodes with the return trees, unless we're still at the
-	// (already-created) roots:
-	if path != "/" {
-		if err := walkchunk(path, i1, w.dir1, w.root1); err != nil {
-			return err
-		}
-		if err := walkchunk(path, i2, w.dir2, w.root2); err != nil {
-			return err
-		}
-	}
-
-	is1Dir := i1 != nil && i1.IsDir()
-	is2Dir := i2 != nil && i2.IsDir()
-
-	sameDevice := false
-	if i1 != nil && i2 != nil {
-		si1 := i1.Sys().(*syscall.Stat_t)
-		si2 := i2.Sys().(*syscall.Stat_t)
-		if si1.Dev == si2.Dev {
-			sameDevice = true
-		}
-	}
-
-	// If these files are both non-existent, or leaves (non-dirs), we are done.
-	if !is1Dir && !is2Dir {
-		return nil
-	}
-
-	// Fetch the names of all the files contained in both directories being walked:
-	var names1, names2 []nameIno
-	if is1Dir {
-		names1, err = readdirnames(filepath.Join(w.dir1, path)) // getdents(2): fs access
-		if err != nil {
-			return err
-		}
-	}
-	if is2Dir {
-		names2, err = readdirnames(filepath.Join(w.dir2, path)) // getdents(2): fs access
-		if err != nil {
-			return err
-		}
-	}
-
-	// We have lists of the files contained in both parallel directories, sorted
-	// in the same order. Walk them in parallel, generating a unique merged list
-	// of all items present in either or both directories.
-	var names []string
-	ix1 := 0
-	ix2 := 0
-
-	for {
-		if ix1 >= len(names1) {
-			break
-		}
-		if ix2 >= len(names2) {
-			break
-		}
-
-		ni1 := names1[ix1]
-		ni2 := names2[ix2]
-
-		switch bytes.Compare([]byte(ni1.name), []byte(ni2.name)) {
-		case -1: // ni1 < ni2 -- advance ni1
-			// we will not encounter ni1 in names2
-			names = append(names, ni1.name)
-			ix1++
-		case 0: // ni1 == ni2
-			if ni1.ino != ni2.ino || !sameDevice {
-				names = append(names, ni1.name)
-			}
-			ix1++
-			ix2++
-		case 1: // ni1 > ni2 -- advance ni2
-			// we will not encounter ni2 in names1
-			names = append(names, ni2.name)
-			ix2++
-		}
-	}
-	for ix1 < len(names1) {
-		names = append(names, names1[ix1].name)
-		ix1++
-	}
-	for ix2 < len(names2) {
-		names = append(names, names2[ix2].name)
-		ix2++
-	}
-
-	// For each of the names present in either or both of the directories being
-	// iterated, stat the name under each root, and recurse the pair of them:
-	for _, name := range names {
-		fname := filepath.Join(path, name)
-		var cInfo1, cInfo2 os.FileInfo
-		if is1Dir {
-			cInfo1, err = os.Lstat(filepath.Join(w.dir1, fname)) // lstat(2): fs access
-			if err != nil && !os.IsNotExist(err) {
-				return err
-			}
-		}
-		if is2Dir {
-			cInfo2, err = os.Lstat(filepath.Join(w.dir2, fname)) // lstat(2): fs access
-			if err != nil && !os.IsNotExist(err) {
-				return err
-			}
-		}
-		if err = w.walk(fname, cInfo1, cInfo2); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// {name,inode} pairs used to support the early-pruning logic of the walker type
-type nameIno struct {
-	name string
-	ino  uint64
-}
-
-type nameInoSlice []nameIno
-
-func (s nameInoSlice) Len() int           { return len(s) }
-func (s nameInoSlice) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
-func (s nameInoSlice) Less(i, j int) bool { return s[i].name < s[j].name }
-
-// readdirnames is a hacked-apart version of the Go stdlib code, exposing inode
-// numbers further up the stack when reading directory contents. Unlike
-// os.Readdirnames, which returns a list of filenames, this function returns a
-// list of {filename,inode} pairs.
-func readdirnames(dirname string) (names []nameIno, err error) {
-	var (
-		size = 100
-		buf  = make([]byte, 4096)
-		nbuf int
-		bufp int
-		nb   int
-	)
-
-	f, err := os.Open(dirname)
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	names = make([]nameIno, 0, size) // Empty with room to grow.
-	for {
-		// Refill the buffer if necessary
-		if bufp >= nbuf {
-			bufp = 0
-			nbuf, err = unix.ReadDirent(int(f.Fd()), buf) // getdents on linux
-			if nbuf < 0 {
-				nbuf = 0
-			}
-			if err != nil {
-				return nil, os.NewSyscallError("readdirent", err)
-			}
-			if nbuf <= 0 {
-				break // EOF
-			}
-		}
-
-		// Drain the buffer
-		nb, names = parseDirent(buf[bufp:nbuf], names)
-		bufp += nb
-	}
-
-	sl := nameInoSlice(names)
-	sort.Sort(sl)
-	return sl, nil
-}
-
-// parseDirent is a minor modification of unix.ParseDirent (linux version)
-// which returns {name,inode} pairs instead of just names.
-func parseDirent(buf []byte, names []nameIno) (consumed int, newnames []nameIno) {
-	origlen := len(buf)
-	for len(buf) > 0 {
-		dirent := (*unix.Dirent)(unsafe.Pointer(&buf[0]))
-		buf = buf[dirent.Reclen:]
-		if dirent.Ino == 0 { // File absent in directory.
-			continue
-		}
-		bytes := (*[10000]byte)(unsafe.Pointer(&dirent.Name[0]))
-		var name = string(bytes[0:clen(bytes[:])])
-		if name == "." || name == ".." { // Useless names
-			continue
-		}
-		names = append(names, nameIno{name, dirent.Ino})
-	}
-	return origlen - len(buf), names
-}
-
-func clen(n []byte) int {
-	for i := 0; i < len(n); i++ {
-		if n[i] == 0 {
-			return i
-		}
-	}
-	return len(n)
-}
-
-// OverlayChanges walks the path rw and determines changes for the files in the path,
-// with respect to the parent layers
-func OverlayChanges(layers []string, rw string) ([]Change, error) {
-	return changes(layers, rw, overlayDeletedFile, nil)
-}
-
-func overlayDeletedFile(root, path string, fi os.FileInfo) (string, error) {
-	if fi.Mode()&os.ModeCharDevice != 0 {
-		s := fi.Sys().(*syscall.Stat_t)
-		if major(s.Rdev) == 0 && minor(s.Rdev) == 0 {
-			return path, nil
-		}
-	}
-	if fi.Mode()&os.ModeDir != 0 {
-		opaque, err := system.Lgetxattr(filepath.Join(root, path), "trusted.overlay.opaque")
-		if err != nil {
-			return "", err
-		}
-		if len(opaque) == 1 && opaque[0] == 'y' {
-			return path, nil
-		}
-	}
-
-	return "", nil
-
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/changes_other.go b/vendor/github.com/containers/storage/pkg/archive/changes_other.go
deleted file mode 100644
index e1d1e7a91e..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/changes_other.go
+++ /dev/null
@@ -1,97 +0,0 @@
-// +build !linux
-
-package archive
-
-import (
-	"fmt"
-	"os"
-	"path/filepath"
-	"runtime"
-	"strings"
-
-	"github.com/containers/storage/pkg/system"
-)
-
-func collectFileInfoForChanges(oldDir, newDir string) (*FileInfo, *FileInfo, error) {
-	var (
-		oldRoot, newRoot *FileInfo
-		err1, err2       error
-		errs             = make(chan error, 2)
-	)
-	go func() {
-		oldRoot, err1 = collectFileInfo(oldDir)
-		errs <- err1
-	}()
-	go func() {
-		newRoot, err2 = collectFileInfo(newDir)
-		errs <- err2
-	}()
-
-	// block until both routines have returned
-	for i := 0; i < 2; i++ {
-		if err := <-errs; err != nil {
-			return nil, nil, err
-		}
-	}
-
-	return oldRoot, newRoot, nil
-}
-
-func collectFileInfo(sourceDir string) (*FileInfo, error) {
-	root := newRootFileInfo()
-
-	err := filepath.Walk(sourceDir, func(path string, f os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-
-		// Rebase path
-		relPath, err := filepath.Rel(sourceDir, path)
-		if err != nil {
-			return err
-		}
-
-		// As this runs on the daemon side, file paths are OS specific.
-		relPath = filepath.Join(string(os.PathSeparator), relPath)
-
-		// See https://github.com/golang/go/issues/9168 - bug in filepath.Join.
-		// Temporary workaround. If the returned path starts with two backslashes,
-		// trim it down to a single backslash. Only relevant on Windows.
-		if runtime.GOOS == "windows" {
-			if strings.HasPrefix(relPath, `\\`) {
-				relPath = relPath[1:]
-			}
-		}
-
-		if relPath == string(os.PathSeparator) {
-			return nil
-		}
-
-		parent := root.LookUp(filepath.Dir(relPath))
-		if parent == nil {
-			return fmt.Errorf("collectFileInfo: Unexpectedly no parent for %s", relPath)
-		}
-
-		info := &FileInfo{
-			name:     filepath.Base(relPath),
-			children: make(map[string]*FileInfo),
-			parent:   parent,
-		}
-
-		s, err := system.Lstat(path)
-		if err != nil {
-			return err
-		}
-		info.stat = s
-
-		info.capability, _ = system.Lgetxattr(path, "security.capability")
-
-		parent.children[info.name] = info
-
-		return nil
-	})
-	if err != nil {
-		return nil, err
-	}
-	return root, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/changes_unix.go b/vendor/github.com/containers/storage/pkg/archive/changes_unix.go
deleted file mode 100644
index d669c01b46..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/changes_unix.go
+++ /dev/null
@@ -1,37 +0,0 @@
-// +build !windows
-
-package archive
-
-import (
-	"os"
-	"syscall"
-
-	"github.com/containers/storage/pkg/system"
-	"golang.org/x/sys/unix"
-)
-
-func statDifferent(oldStat *system.StatT, newStat *system.StatT) bool {
-	// Don't look at size for dirs, its not a good measure of change
-	if oldStat.Mode() != newStat.Mode() ||
-		oldStat.UID() != newStat.UID() ||
-		oldStat.GID() != newStat.GID() ||
-		oldStat.Rdev() != newStat.Rdev() ||
-		// Don't look at size for dirs, its not a good measure of change
-		(oldStat.Mode()&unix.S_IFDIR != unix.S_IFDIR &&
-			(!sameFsTimeSpec(oldStat.Mtim(), newStat.Mtim()) || (oldStat.Size() != newStat.Size()))) {
-		return true
-	}
-	return false
-}
-
-func (info *FileInfo) isDir() bool {
-	return info.parent == nil || info.stat.Mode()&unix.S_IFDIR != 0
-}
-
-func getIno(fi os.FileInfo) uint64 {
-	return fi.Sys().(*syscall.Stat_t).Ino
-}
-
-func hasHardlinks(fi os.FileInfo) bool {
-	return fi.Sys().(*syscall.Stat_t).Nlink > 1
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/changes_windows.go b/vendor/github.com/containers/storage/pkg/archive/changes_windows.go
deleted file mode 100644
index 5ad3d7e38d..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/changes_windows.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package archive
-
-import (
-	"os"
-
-	"github.com/containers/storage/pkg/system"
-)
-
-func statDifferent(oldStat *system.StatT, newStat *system.StatT) bool {
-
-	// Don't look at size for dirs, its not a good measure of change
-	if oldStat.Mtim() != newStat.Mtim() ||
-		oldStat.Mode() != newStat.Mode() ||
-		oldStat.Size() != newStat.Size() && !oldStat.Mode().IsDir() {
-		return true
-	}
-	return false
-}
-
-func (info *FileInfo) isDir() bool {
-	return info.parent == nil || info.stat.Mode().IsDir()
-}
-
-func getIno(fi os.FileInfo) (inode uint64) {
-	return
-}
-
-func hasHardlinks(fi os.FileInfo) bool {
-	return false
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/copy.go b/vendor/github.com/containers/storage/pkg/archive/copy.go
deleted file mode 100644
index ea012b2d99..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/copy.go
+++ /dev/null
@@ -1,461 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"errors"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"strings"
-
-	"github.com/containers/storage/pkg/system"
-	"github.com/sirupsen/logrus"
-)
-
-// Errors used or returned by this file.
-var (
-	ErrNotDirectory      = errors.New("not a directory")
-	ErrDirNotExists      = errors.New("no such directory")
-	ErrCannotCopyDir     = errors.New("cannot copy directory")
-	ErrInvalidCopySource = errors.New("invalid copy source content")
-)
-
-// PreserveTrailingDotOrSeparator returns the given cleaned path (after
-// processing using any utility functions from the path or filepath stdlib
-// packages) and appends a trailing `/.` or `/` if its corresponding  original
-// path (from before being processed by utility functions from the path or
-// filepath stdlib packages) ends with a trailing `/.` or `/`. If the cleaned
-// path already ends in a `.` path segment, then another is not added. If the
-// clean path already ends in a path separator, then another is not added.
-func PreserveTrailingDotOrSeparator(cleanedPath, originalPath string) string {
-	// Ensure paths are in platform semantics
-	cleanedPath = normalizePath(cleanedPath)
-	originalPath = normalizePath(originalPath)
-
-	if !specifiesCurrentDir(cleanedPath) && specifiesCurrentDir(originalPath) {
-		if !hasTrailingPathSeparator(cleanedPath) {
-			// Add a separator if it doesn't already end with one (a cleaned
-			// path would only end in a separator if it is the root).
-			cleanedPath += string(filepath.Separator)
-		}
-		cleanedPath += "."
-	}
-
-	if !hasTrailingPathSeparator(cleanedPath) && hasTrailingPathSeparator(originalPath) {
-		cleanedPath += string(filepath.Separator)
-	}
-
-	return cleanedPath
-}
-
-// assertsDirectory returns whether the given path is
-// asserted to be a directory, i.e., the path ends with
-// a trailing '/' or `/.`, assuming a path separator of `/`.
-func assertsDirectory(path string) bool {
-	return hasTrailingPathSeparator(path) || specifiesCurrentDir(path)
-}
-
-// hasTrailingPathSeparator returns whether the given
-// path ends with the system's path separator character.
-func hasTrailingPathSeparator(path string) bool {
-	return len(path) > 0 && os.IsPathSeparator(path[len(path)-1])
-}
-
-// specifiesCurrentDir returns whether the given path specifies
-// a "current directory", i.e., the last path segment is `.`.
-func specifiesCurrentDir(path string) bool {
-	return filepath.Base(path) == "."
-}
-
-// SplitPathDirEntry splits the given path between its directory name and its
-// basename by first cleaning the path but preserves a trailing "." if the
-// original path specified the current directory.
-func SplitPathDirEntry(path string) (dir, base string) {
-	cleanedPath := filepath.Clean(normalizePath(path))
-
-	if specifiesCurrentDir(path) {
-		cleanedPath += string(filepath.Separator) + "."
-	}
-
-	return filepath.Dir(cleanedPath), filepath.Base(cleanedPath)
-}
-
-// TarResource archives the resource described by the given CopyInfo to a Tar
-// archive. A non-nil error is returned if sourcePath does not exist or is
-// asserted to be a directory but exists as another type of file.
-//
-// This function acts as a convenient wrapper around TarWithOptions, which
-// requires a directory as the source path. TarResource accepts either a
-// directory or a file path and correctly sets the Tar options.
-func TarResource(sourceInfo CopyInfo) (content io.ReadCloser, err error) {
-	return TarResourceRebase(sourceInfo.Path, sourceInfo.RebaseName)
-}
-
-// TarResourceRebase is like TarResource but renames the first path element of
-// items in the resulting tar archive to match the given rebaseName if not "".
-func TarResourceRebase(sourcePath, rebaseName string) (content io.ReadCloser, err error) {
-	sourcePath = normalizePath(sourcePath)
-	if _, err = os.Lstat(sourcePath); err != nil {
-		// Catches the case where the source does not exist or is not a
-		// directory if asserted to be a directory, as this also causes an
-		// error.
-		return
-	}
-
-	// Separate the source path between its directory and
-	// the entry in that directory which we are archiving.
-	sourceDir, sourceBase := SplitPathDirEntry(sourcePath)
-
-	filter := []string{sourceBase}
-
-	logrus.Debugf("copying %q from %q", sourceBase, sourceDir)
-
-	return TarWithOptions(sourceDir, &TarOptions{
-		Compression:      Uncompressed,
-		IncludeFiles:     filter,
-		IncludeSourceDir: true,
-		RebaseNames: map[string]string{
-			sourceBase: rebaseName,
-		},
-	})
-}
-
-// CopyInfo holds basic info about the source
-// or destination path of a copy operation.
-type CopyInfo struct {
-	Path       string
-	Exists     bool
-	IsDir      bool
-	RebaseName string
-}
-
-// CopyInfoSourcePath stats the given path to create a CopyInfo
-// struct representing that resource for the source of an archive copy
-// operation. The given path should be an absolute local path. A source path
-// has all symlinks evaluated that appear before the last path separator ("/"
-// on Unix). As it is to be a copy source, the path must exist.
-func CopyInfoSourcePath(path string, followLink bool) (CopyInfo, error) {
-	// normalize the file path and then evaluate the symbol link
-	// we will use the target file instead of the symbol link if
-	// followLink is set
-	path = normalizePath(path)
-
-	resolvedPath, rebaseName, err := ResolveHostSourcePath(path, followLink)
-	if err != nil {
-		return CopyInfo{}, err
-	}
-
-	stat, err := os.Lstat(resolvedPath)
-	if err != nil {
-		return CopyInfo{}, err
-	}
-
-	return CopyInfo{
-		Path:       resolvedPath,
-		Exists:     true,
-		IsDir:      stat.IsDir(),
-		RebaseName: rebaseName,
-	}, nil
-}
-
-// CopyInfoDestinationPath stats the given path to create a CopyInfo
-// struct representing that resource for the destination of an archive copy
-// operation. The given path should be an absolute local path.
-func CopyInfoDestinationPath(path string) (info CopyInfo, err error) {
-	maxSymlinkIter := 10 // filepath.EvalSymlinks uses 255, but 10 already seems like a lot.
-	path = normalizePath(path)
-	originalPath := path
-
-	stat, err := os.Lstat(path)
-
-	if err == nil && stat.Mode()&os.ModeSymlink == 0 {
-		// The path exists and is not a symlink.
-		return CopyInfo{
-			Path:   path,
-			Exists: true,
-			IsDir:  stat.IsDir(),
-		}, nil
-	}
-
-	// While the path is a symlink.
-	for n := 0; err == nil && stat.Mode()&os.ModeSymlink != 0; n++ {
-		if n > maxSymlinkIter {
-			// Don't follow symlinks more than this arbitrary number of times.
-			return CopyInfo{}, errors.New("too many symlinks in " + originalPath)
-		}
-
-		// The path is a symbolic link. We need to evaluate it so that the
-		// destination of the copy operation is the link target and not the
-		// link itself. This is notably different than CopyInfoSourcePath which
-		// only evaluates symlinks before the last appearing path separator.
-		// Also note that it is okay if the last path element is a broken
-		// symlink as the copy operation should create the target.
-		var linkTarget string
-
-		linkTarget, err = os.Readlink(path)
-		if err != nil {
-			return CopyInfo{}, err
-		}
-
-		if !system.IsAbs(linkTarget) {
-			// Join with the parent directory.
-			dstParent, _ := SplitPathDirEntry(path)
-			linkTarget = filepath.Join(dstParent, linkTarget)
-		}
-
-		path = linkTarget
-		stat, err = os.Lstat(path)
-	}
-
-	if err != nil {
-		// It's okay if the destination path doesn't exist. We can still
-		// continue the copy operation if the parent directory exists.
-		if !os.IsNotExist(err) {
-			return CopyInfo{}, err
-		}
-
-		// Ensure destination parent dir exists.
-		dstParent, _ := SplitPathDirEntry(path)
-
-		parentDirStat, err := os.Lstat(dstParent)
-		if err != nil {
-			return CopyInfo{}, err
-		}
-		if !parentDirStat.IsDir() {
-			return CopyInfo{}, ErrNotDirectory
-		}
-
-		return CopyInfo{Path: path}, nil
-	}
-
-	// The path exists after resolving symlinks.
-	return CopyInfo{
-		Path:   path,
-		Exists: true,
-		IsDir:  stat.IsDir(),
-	}, nil
-}
-
-// PrepareArchiveCopy prepares the given srcContent archive, which should
-// contain the archived resource described by srcInfo, to the destination
-// described by dstInfo. Returns the possibly modified content archive along
-// with the path to the destination directory which it should be extracted to.
-func PrepareArchiveCopy(srcContent io.Reader, srcInfo, dstInfo CopyInfo) (dstDir string, content io.ReadCloser, err error) {
-	// Ensure in platform semantics
-	srcInfo.Path = normalizePath(srcInfo.Path)
-	dstInfo.Path = normalizePath(dstInfo.Path)
-
-	// Separate the destination path between its directory and base
-	// components in case the source archive contents need to be rebased.
-	dstDir, dstBase := SplitPathDirEntry(dstInfo.Path)
-	_, srcBase := SplitPathDirEntry(srcInfo.Path)
-
-	switch {
-	case dstInfo.Exists && dstInfo.IsDir:
-		// The destination exists as a directory. No alteration
-		// to srcContent is needed as its contents can be
-		// simply extracted to the destination directory.
-		return dstInfo.Path, ioutil.NopCloser(srcContent), nil
-	case dstInfo.Exists && srcInfo.IsDir:
-		// The destination exists as some type of file and the source
-		// content is a directory. This is an error condition since
-		// you cannot copy a directory to an existing file location.
-		return "", nil, ErrCannotCopyDir
-	case dstInfo.Exists:
-		// The destination exists as some type of file and the source content
-		// is also a file. The source content entry will have to be renamed to
-		// have a basename which matches the destination path's basename.
-		if len(srcInfo.RebaseName) != 0 {
-			srcBase = srcInfo.RebaseName
-		}
-		return dstDir, RebaseArchiveEntries(srcContent, srcBase, dstBase), nil
-	case srcInfo.IsDir:
-		// The destination does not exist and the source content is an archive
-		// of a directory. The archive should be extracted to the parent of
-		// the destination path instead, and when it is, the directory that is
-		// created as a result should take the name of the destination path.
-		// The source content entries will have to be renamed to have a
-		// basename which matches the destination path's basename.
-		if len(srcInfo.RebaseName) != 0 {
-			srcBase = srcInfo.RebaseName
-		}
-		return dstDir, RebaseArchiveEntries(srcContent, srcBase, dstBase), nil
-	case assertsDirectory(dstInfo.Path):
-		// The destination does not exist and is asserted to be created as a
-		// directory, but the source content is not a directory. This is an
-		// error condition since you cannot create a directory from a file
-		// source.
-		return "", nil, ErrDirNotExists
-	default:
-		// The last remaining case is when the destination does not exist, is
-		// not asserted to be a directory, and the source content is not an
-		// archive of a directory. It this case, the destination file will need
-		// to be created when the archive is extracted and the source content
-		// entry will have to be renamed to have a basename which matches the
-		// destination path's basename.
-		if len(srcInfo.RebaseName) != 0 {
-			srcBase = srcInfo.RebaseName
-		}
-		return dstDir, RebaseArchiveEntries(srcContent, srcBase, dstBase), nil
-	}
-
-}
-
-// RebaseArchiveEntries rewrites the given srcContent archive replacing
-// an occurrence of oldBase with newBase at the beginning of entry names.
-func RebaseArchiveEntries(srcContent io.Reader, oldBase, newBase string) io.ReadCloser {
-	if oldBase == string(os.PathSeparator) {
-		// If oldBase specifies the root directory, use an empty string as
-		// oldBase instead so that newBase doesn't replace the path separator
-		// that all paths will start with.
-		oldBase = ""
-	}
-
-	rebased, w := io.Pipe()
-
-	go func() {
-		srcTar := tar.NewReader(srcContent)
-		rebasedTar := tar.NewWriter(w)
-
-		for {
-			hdr, err := srcTar.Next()
-			if err == io.EOF {
-				// Signals end of archive.
-				rebasedTar.Close()
-				w.Close()
-				return
-			}
-			if err != nil {
-				w.CloseWithError(err)
-				return
-			}
-
-			hdr.Name = strings.Replace(hdr.Name, oldBase, newBase, 1)
-			if hdr.Typeflag == tar.TypeLink {
-				hdr.Linkname = strings.Replace(hdr.Linkname, oldBase, newBase, 1)
-			}
-
-			if err = rebasedTar.WriteHeader(hdr); err != nil {
-				w.CloseWithError(err)
-				return
-			}
-
-			if _, err = io.Copy(rebasedTar, srcTar); err != nil {
-				w.CloseWithError(err)
-				return
-			}
-		}
-	}()
-
-	return rebased
-}
-
-// CopyResource performs an archive copy from the given source path to the
-// given destination path. The source path MUST exist and the destination
-// path's parent directory must exist.
-func CopyResource(srcPath, dstPath string, followLink bool) error {
-	var (
-		srcInfo CopyInfo
-		err     error
-	)
-
-	// Ensure in platform semantics
-	srcPath = normalizePath(srcPath)
-	dstPath = normalizePath(dstPath)
-
-	// Clean the source and destination paths.
-	srcPath = PreserveTrailingDotOrSeparator(filepath.Clean(srcPath), srcPath)
-	dstPath = PreserveTrailingDotOrSeparator(filepath.Clean(dstPath), dstPath)
-
-	if srcInfo, err = CopyInfoSourcePath(srcPath, followLink); err != nil {
-		return err
-	}
-
-	content, err := TarResource(srcInfo)
-	if err != nil {
-		return err
-	}
-	defer content.Close()
-
-	return CopyTo(content, srcInfo, dstPath)
-}
-
-// CopyTo handles extracting the given content whose
-// entries should be sourced from srcInfo to dstPath.
-func CopyTo(content io.Reader, srcInfo CopyInfo, dstPath string) error {
-	// The destination path need not exist, but CopyInfoDestinationPath will
-	// ensure that at least the parent directory exists.
-	dstInfo, err := CopyInfoDestinationPath(normalizePath(dstPath))
-	if err != nil {
-		return err
-	}
-
-	dstDir, copyArchive, err := PrepareArchiveCopy(content, srcInfo, dstInfo)
-	if err != nil {
-		return err
-	}
-	defer copyArchive.Close()
-
-	options := &TarOptions{
-		NoLchown:             true,
-		NoOverwriteDirNonDir: true,
-	}
-
-	return Untar(copyArchive, dstDir, options)
-}
-
-// ResolveHostSourcePath decides real path need to be copied with parameters such as
-// whether to follow symbol link or not, if followLink is true, resolvedPath will return
-// link target of any symbol link file, else it will only resolve symlink of directory
-// but return symbol link file itself without resolving.
-func ResolveHostSourcePath(path string, followLink bool) (resolvedPath, rebaseName string, err error) {
-	if followLink {
-		resolvedPath, err = filepath.EvalSymlinks(path)
-		if err != nil {
-			return
-		}
-
-		resolvedPath, rebaseName = GetRebaseName(path, resolvedPath)
-	} else {
-		dirPath, basePath := filepath.Split(path)
-
-		// if not follow symbol link, then resolve symbol link of parent dir
-		var resolvedDirPath string
-		resolvedDirPath, err = filepath.EvalSymlinks(dirPath)
-		if err != nil {
-			return
-		}
-		// resolvedDirPath will have been cleaned (no trailing path separators) so
-		// we can manually join it with the base path element.
-		resolvedPath = resolvedDirPath + string(filepath.Separator) + basePath
-		if hasTrailingPathSeparator(path) && filepath.Base(path) != filepath.Base(resolvedPath) {
-			rebaseName = filepath.Base(path)
-		}
-	}
-	return resolvedPath, rebaseName, nil
-}
-
-// GetRebaseName normalizes and compares path and resolvedPath,
-// return completed resolved path and rebased file name
-func GetRebaseName(path, resolvedPath string) (string, string) {
-	// linkTarget will have been cleaned (no trailing path separators and dot) so
-	// we can manually join it with them
-	var rebaseName string
-	if specifiesCurrentDir(path) && !specifiesCurrentDir(resolvedPath) {
-		resolvedPath += string(filepath.Separator) + "."
-	}
-
-	if hasTrailingPathSeparator(path) && !hasTrailingPathSeparator(resolvedPath) {
-		resolvedPath += string(filepath.Separator)
-	}
-
-	if filepath.Base(path) != filepath.Base(resolvedPath) {
-		// In the case where the path had a trailing separator and a symlink
-		// evaluation has changed the last path component, we will need to
-		// rebase the name in the archive that is being copied to match the
-		// originally requested name.
-		rebaseName = filepath.Base(path)
-	}
-	return resolvedPath, rebaseName
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/copy_unix.go b/vendor/github.com/containers/storage/pkg/archive/copy_unix.go
deleted file mode 100644
index e305b5e4af..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/copy_unix.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build !windows
-
-package archive
-
-import (
-	"path/filepath"
-)
-
-func normalizePath(path string) string {
-	return filepath.ToSlash(path)
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/copy_windows.go b/vendor/github.com/containers/storage/pkg/archive/copy_windows.go
deleted file mode 100644
index 2b775b45c4..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/copy_windows.go
+++ /dev/null
@@ -1,9 +0,0 @@
-package archive
-
-import (
-	"path/filepath"
-)
-
-func normalizePath(path string) string {
-	return filepath.FromSlash(path)
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/diff.go b/vendor/github.com/containers/storage/pkg/archive/diff.go
deleted file mode 100644
index f93f4cb175..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/diff.go
+++ /dev/null
@@ -1,256 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"runtime"
-	"strings"
-
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/pools"
-	"github.com/containers/storage/pkg/system"
-	"github.com/sirupsen/logrus"
-)
-
-// UnpackLayer unpack `layer` to a `dest`. The stream `layer` can be
-// compressed or uncompressed.
-// Returns the size in bytes of the contents of the layer.
-func UnpackLayer(dest string, layer io.Reader, options *TarOptions) (size int64, err error) {
-	tr := tar.NewReader(layer)
-	trBuf := pools.BufioReader32KPool.Get(tr)
-	defer pools.BufioReader32KPool.Put(trBuf)
-
-	var dirs []*tar.Header
-	unpackedPaths := make(map[string]struct{})
-
-	if options == nil {
-		options = &TarOptions{}
-	}
-	if options.ExcludePatterns == nil {
-		options.ExcludePatterns = []string{}
-	}
-	idMappings := idtools.NewIDMappingsFromMaps(options.UIDMaps, options.GIDMaps)
-
-	aufsTempdir := ""
-	aufsHardlinks := make(map[string]*tar.Header)
-
-	// Iterate through the files in the archive.
-	for {
-		hdr, err := tr.Next()
-		if err == io.EOF {
-			// end of tar archive
-			break
-		}
-		if err != nil {
-			return 0, err
-		}
-
-		size += hdr.Size
-
-		// Normalize name, for safety and for a simple is-root check
-		hdr.Name = filepath.Clean(hdr.Name)
-
-		// Windows does not support filenames with colons in them. Ignore
-		// these files. This is not a problem though (although it might
-		// appear that it is). Let's suppose a client is running docker pull.
-		// The daemon it points to is Windows. Would it make sense for the
-		// client to be doing a docker pull Ubuntu for example (which has files
-		// with colons in the name under /usr/share/man/man3)? No, absolutely
-		// not as it would really only make sense that they were pulling a
-		// Windows image. However, for development, it is necessary to be able
-		// to pull Linux images which are in the repository.
-		//
-		// TODO Windows. Once the registry is aware of what images are Windows-
-		// specific or Linux-specific, this warning should be changed to an error
-		// to cater for the situation where someone does manage to upload a Linux
-		// image but have it tagged as Windows inadvertently.
-		if runtime.GOOS == "windows" {
-			if strings.Contains(hdr.Name, ":") {
-				logrus.Warnf("Windows: Ignoring %s (is this a Linux image?)", hdr.Name)
-				continue
-			}
-		}
-
-		// Note as these operations are platform specific, so must the slash be.
-		if !strings.HasSuffix(hdr.Name, string(os.PathSeparator)) {
-			// Not the root directory, ensure that the parent directory exists.
-			// This happened in some tests where an image had a tarfile without any
-			// parent directories.
-			parent := filepath.Dir(hdr.Name)
-			parentPath := filepath.Join(dest, parent)
-
-			if _, err := os.Lstat(parentPath); err != nil && os.IsNotExist(err) {
-				err = system.MkdirAll(parentPath, 0600, "")
-				if err != nil {
-					return 0, err
-				}
-			}
-		}
-
-		// Skip AUFS metadata dirs
-		if strings.HasPrefix(hdr.Name, WhiteoutMetaPrefix) {
-			// Regular files inside /.wh..wh.plnk can be used as hardlink targets
-			// We don't want this directory, but we need the files in them so that
-			// such hardlinks can be resolved.
-			if strings.HasPrefix(hdr.Name, WhiteoutLinkDir) && hdr.Typeflag == tar.TypeReg {
-				basename := filepath.Base(hdr.Name)
-				aufsHardlinks[basename] = hdr
-				if aufsTempdir == "" {
-					if aufsTempdir, err = ioutil.TempDir("", "storageplnk"); err != nil {
-						return 0, err
-					}
-					defer os.RemoveAll(aufsTempdir)
-				}
-				if err := createTarFile(filepath.Join(aufsTempdir, basename), dest, hdr, tr, true, nil, options.InUserNS); err != nil {
-					return 0, err
-				}
-			}
-
-			if hdr.Name != WhiteoutOpaqueDir {
-				continue
-			}
-		}
-		path := filepath.Join(dest, hdr.Name)
-		rel, err := filepath.Rel(dest, path)
-		if err != nil {
-			return 0, err
-		}
-
-		// Note as these operations are platform specific, so must the slash be.
-		if strings.HasPrefix(rel, ".."+string(os.PathSeparator)) {
-			return 0, breakoutError(fmt.Errorf("%q is outside of %q", hdr.Name, dest))
-		}
-		base := filepath.Base(path)
-
-		if strings.HasPrefix(base, WhiteoutPrefix) {
-			dir := filepath.Dir(path)
-			if base == WhiteoutOpaqueDir {
-				_, err := os.Lstat(dir)
-				if err != nil {
-					return 0, err
-				}
-				err = filepath.Walk(dir, func(path string, info os.FileInfo, err error) error {
-					if err != nil {
-						if os.IsNotExist(err) {
-							err = nil // parent was deleted
-						}
-						return err
-					}
-					if path == dir {
-						return nil
-					}
-					if _, exists := unpackedPaths[path]; !exists {
-						err := os.RemoveAll(path)
-						return err
-					}
-					return nil
-				})
-				if err != nil {
-					return 0, err
-				}
-			} else {
-				originalBase := base[len(WhiteoutPrefix):]
-				originalPath := filepath.Join(dir, originalBase)
-				if err := os.RemoveAll(originalPath); err != nil {
-					return 0, err
-				}
-			}
-		} else {
-			// If path exits we almost always just want to remove and replace it.
-			// The only exception is when it is a directory *and* the file from
-			// the layer is also a directory. Then we want to merge them (i.e.
-			// just apply the metadata from the layer).
-			if fi, err := os.Lstat(path); err == nil {
-				if !(fi.IsDir() && hdr.Typeflag == tar.TypeDir) {
-					if err := os.RemoveAll(path); err != nil {
-						return 0, err
-					}
-				}
-			}
-
-			trBuf.Reset(tr)
-			srcData := io.Reader(trBuf)
-			srcHdr := hdr
-
-			// Hard links into /.wh..wh.plnk don't work, as we don't extract that directory, so
-			// we manually retarget these into the temporary files we extracted them into
-			if hdr.Typeflag == tar.TypeLink && strings.HasPrefix(filepath.Clean(hdr.Linkname), WhiteoutLinkDir) {
-				linkBasename := filepath.Base(hdr.Linkname)
-				srcHdr = aufsHardlinks[linkBasename]
-				if srcHdr == nil {
-					return 0, fmt.Errorf("Invalid aufs hardlink")
-				}
-				tmpFile, err := os.Open(filepath.Join(aufsTempdir, linkBasename))
-				if err != nil {
-					return 0, err
-				}
-				defer tmpFile.Close()
-				srcData = tmpFile
-			}
-
-			if err := remapIDs(idMappings, srcHdr); err != nil {
-				return 0, err
-			}
-
-			if err := createTarFile(path, dest, srcHdr, srcData, true, nil, options.InUserNS); err != nil {
-				return 0, err
-			}
-
-			// Directory mtimes must be handled at the end to avoid further
-			// file creation in them to modify the directory mtime
-			if hdr.Typeflag == tar.TypeDir {
-				dirs = append(dirs, hdr)
-			}
-			unpackedPaths[path] = struct{}{}
-		}
-	}
-
-	for _, hdr := range dirs {
-		path := filepath.Join(dest, hdr.Name)
-		if err := system.Chtimes(path, hdr.AccessTime, hdr.ModTime); err != nil {
-			return 0, err
-		}
-	}
-
-	return size, nil
-}
-
-// ApplyLayer parses a diff in the standard layer format from `layer`,
-// and applies it to the directory `dest`. The stream `layer` can be
-// compressed or uncompressed.
-// Returns the size in bytes of the contents of the layer.
-func ApplyLayer(dest string, layer io.Reader) (int64, error) {
-	return applyLayerHandler(dest, layer, &TarOptions{}, true)
-}
-
-// ApplyUncompressedLayer parses a diff in the standard layer format from
-// `layer`, and applies it to the directory `dest`. The stream `layer`
-// can only be uncompressed.
-// Returns the size in bytes of the contents of the layer.
-func ApplyUncompressedLayer(dest string, layer io.Reader, options *TarOptions) (int64, error) {
-	return applyLayerHandler(dest, layer, options, false)
-}
-
-// do the bulk load of ApplyLayer, but allow for not calling DecompressStream
-func applyLayerHandler(dest string, layer io.Reader, options *TarOptions, decompress bool) (int64, error) {
-	dest = filepath.Clean(dest)
-
-	// We need to be able to set any perms
-	oldmask, err := system.Umask(0)
-	if err != nil {
-		return 0, err
-	}
-	defer system.Umask(oldmask) // ignore err, ErrNotSupportedPlatform
-
-	if decompress {
-		layer, err = DecompressStream(layer)
-		if err != nil {
-			return 0, err
-		}
-	}
-	return UnpackLayer(dest, layer, options)
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/example_changes.go b/vendor/github.com/containers/storage/pkg/archive/example_changes.go
deleted file mode 100644
index 70f9c5564a..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/example_changes.go
+++ /dev/null
@@ -1,97 +0,0 @@
-// +build ignore
-
-// Simple tool to create an archive stream from an old and new directory
-//
-// By default it will stream the comparison of two temporary directories with junk files
-package main
-
-import (
-	"flag"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/sirupsen/logrus"
-)
-
-var (
-	flDebug  = flag.Bool("D", false, "debugging output")
-	flNewDir = flag.String("newdir", "", "")
-	flOldDir = flag.String("olddir", "", "")
-	log      = logrus.New()
-)
-
-func main() {
-	flag.Usage = func() {
-		fmt.Println("Produce a tar from comparing two directory paths. By default a demo tar is created of around 200 files (including hardlinks)")
-		fmt.Printf("%s [OPTIONS]\n", os.Args[0])
-		flag.PrintDefaults()
-	}
-	flag.Parse()
-	log.Out = os.Stderr
-	if (len(os.Getenv("DEBUG")) > 0) || *flDebug {
-		logrus.SetLevel(logrus.DebugLevel)
-	}
-	var newDir, oldDir string
-
-	if len(*flNewDir) == 0 {
-		var err error
-		newDir, err = ioutil.TempDir("", "storage-test-newDir")
-		if err != nil {
-			log.Fatal(err)
-		}
-		defer os.RemoveAll(newDir)
-		if _, err := prepareUntarSourceDirectory(100, newDir, true); err != nil {
-			log.Fatal(err)
-		}
-	} else {
-		newDir = *flNewDir
-	}
-
-	if len(*flOldDir) == 0 {
-		oldDir, err := ioutil.TempDir("", "storage-test-oldDir")
-		if err != nil {
-			log.Fatal(err)
-		}
-		defer os.RemoveAll(oldDir)
-	} else {
-		oldDir = *flOldDir
-	}
-
-	changes, err := archive.ChangesDirs(newDir, oldDir)
-	if err != nil {
-		log.Fatal(err)
-	}
-
-	a, err := archive.ExportChanges(newDir, changes)
-	if err != nil {
-		log.Fatal(err)
-	}
-	defer a.Close()
-
-	i, err := io.Copy(os.Stdout, a)
-	if err != nil && err != io.EOF {
-		log.Fatal(err)
-	}
-	fmt.Fprintf(os.Stderr, "wrote archive of %d bytes", i)
-}
-
-func prepareUntarSourceDirectory(numberOfFiles int, targetPath string, makeLinks bool) (int, error) {
-	fileData := []byte("fooo")
-	for n := 0; n < numberOfFiles; n++ {
-		fileName := fmt.Sprintf("file-%d", n)
-		if err := ioutil.WriteFile(path.Join(targetPath, fileName), fileData, 0700); err != nil {
-			return 0, err
-		}
-		if makeLinks {
-			if err := os.Link(path.Join(targetPath, fileName), path.Join(targetPath, fileName+"-link")); err != nil {
-				return 0, err
-			}
-		}
-	}
-	totalSize := numberOfFiles * len(fileData)
-	return totalSize, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/time_linux.go b/vendor/github.com/containers/storage/pkg/archive/time_linux.go
deleted file mode 100644
index 3448569b1e..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/time_linux.go
+++ /dev/null
@@ -1,16 +0,0 @@
-package archive
-
-import (
-	"syscall"
-	"time"
-)
-
-func timeToTimespec(time time.Time) (ts syscall.Timespec) {
-	if time.IsZero() {
-		// Return UTIME_OMIT special value
-		ts.Sec = 0
-		ts.Nsec = ((1 << 30) - 2)
-		return
-	}
-	return syscall.NsecToTimespec(time.UnixNano())
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/time_unsupported.go b/vendor/github.com/containers/storage/pkg/archive/time_unsupported.go
deleted file mode 100644
index e85aac0540..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/time_unsupported.go
+++ /dev/null
@@ -1,16 +0,0 @@
-// +build !linux
-
-package archive
-
-import (
-	"syscall"
-	"time"
-)
-
-func timeToTimespec(time time.Time) (ts syscall.Timespec) {
-	nsec := int64(0)
-	if !time.IsZero() {
-		nsec = time.UnixNano()
-	}
-	return syscall.NsecToTimespec(nsec)
-}
diff --git a/vendor/github.com/containers/storage/pkg/archive/whiteouts.go b/vendor/github.com/containers/storage/pkg/archive/whiteouts.go
deleted file mode 100644
index d20478a10d..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/whiteouts.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package archive
-
-// Whiteouts are files with a special meaning for the layered filesystem.
-// Docker uses AUFS whiteout files inside exported archives. In other
-// filesystems these files are generated/handled on tar creation/extraction.
-
-// WhiteoutPrefix prefix means file is a whiteout. If this is followed by a
-// filename this means that file has been removed from the base layer.
-const WhiteoutPrefix = ".wh."
-
-// WhiteoutMetaPrefix prefix means whiteout has a special meaning and is not
-// for removing an actual file. Normally these files are excluded from exported
-// archives.
-const WhiteoutMetaPrefix = WhiteoutPrefix + WhiteoutPrefix
-
-// WhiteoutLinkDir is a directory AUFS uses for storing hardlink links to other
-// layers. Normally these should not go into exported archives and all changed
-// hardlinks should be copied to the top layer.
-const WhiteoutLinkDir = WhiteoutMetaPrefix + "plnk"
-
-// WhiteoutOpaqueDir file means directory has been made opaque - meaning
-// readdir calls to this directory do not follow to lower layers.
-const WhiteoutOpaqueDir = WhiteoutMetaPrefix + ".opq"
diff --git a/vendor/github.com/containers/storage/pkg/archive/wrap.go b/vendor/github.com/containers/storage/pkg/archive/wrap.go
deleted file mode 100644
index b39d12c878..0000000000
--- a/vendor/github.com/containers/storage/pkg/archive/wrap.go
+++ /dev/null
@@ -1,59 +0,0 @@
-package archive
-
-import (
-	"archive/tar"
-	"bytes"
-	"io"
-)
-
-// Generate generates a new archive from the content provided
-// as input.
-//
-// `files` is a sequence of path/content pairs. A new file is
-// added to the archive for each pair.
-// If the last pair is incomplete, the file is created with an
-// empty content. For example:
-//
-// Generate("foo.txt", "hello world", "emptyfile")
-//
-// The above call will return an archive with 2 files:
-//  * ./foo.txt with content "hello world"
-//  * ./empty with empty content
-//
-// FIXME: stream content instead of buffering
-// FIXME: specify permissions and other archive metadata
-func Generate(input ...string) (io.Reader, error) {
-	files := parseStringPairs(input...)
-	buf := new(bytes.Buffer)
-	tw := tar.NewWriter(buf)
-	for _, file := range files {
-		name, content := file[0], file[1]
-		hdr := &tar.Header{
-			Name: name,
-			Size: int64(len(content)),
-		}
-		if err := tw.WriteHeader(hdr); err != nil {
-			return nil, err
-		}
-		if _, err := tw.Write([]byte(content)); err != nil {
-			return nil, err
-		}
-	}
-	if err := tw.Close(); err != nil {
-		return nil, err
-	}
-	return buf, nil
-}
-
-func parseStringPairs(input ...string) (output [][2]string) {
-	output = make([][2]string, 0, len(input)/2+1)
-	for i := 0; i < len(input); i += 2 {
-		var pair [2]string
-		pair[0] = input[i]
-		if i+1 < len(input) {
-			pair[1] = input[i+1]
-		}
-		output = append(output, pair)
-	}
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/archive.go b/vendor/github.com/containers/storage/pkg/chrootarchive/archive.go
deleted file mode 100644
index 2735f14001..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/archive.go
+++ /dev/null
@@ -1,70 +0,0 @@
-package chrootarchive
-
-import (
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/idtools"
-)
-
-// NewArchiver returns a new Archiver which uses chrootarchive.Untar
-func NewArchiver(idMappings *idtools.IDMappings) *archive.Archiver {
-	if idMappings == nil {
-		idMappings = &idtools.IDMappings{}
-	}
-	return &archive.Archiver{Untar: Untar, IDMappings: idMappings}
-}
-
-// Untar reads a stream of bytes from `archive`, parses it as a tar archive,
-// and unpacks it into the directory at `dest`.
-// The archive may be compressed with one of the following algorithms:
-//  identity (uncompressed), gzip, bzip2, xz.
-func Untar(tarArchive io.Reader, dest string, options *archive.TarOptions) error {
-	return untarHandler(tarArchive, dest, options, true)
-}
-
-// UntarUncompressed reads a stream of bytes from `archive`, parses it as a tar archive,
-// and unpacks it into the directory at `dest`.
-// The archive must be an uncompressed stream.
-func UntarUncompressed(tarArchive io.Reader, dest string, options *archive.TarOptions) error {
-	return untarHandler(tarArchive, dest, options, false)
-}
-
-// Handler for teasing out the automatic decompression
-func untarHandler(tarArchive io.Reader, dest string, options *archive.TarOptions, decompress bool) error {
-	if tarArchive == nil {
-		return fmt.Errorf("Empty archive")
-	}
-	if options == nil {
-		options = &archive.TarOptions{}
-	}
-	if options.ExcludePatterns == nil {
-		options.ExcludePatterns = []string{}
-	}
-
-	idMappings := idtools.NewIDMappingsFromMaps(options.UIDMaps, options.GIDMaps)
-	rootIDs := idMappings.RootPair()
-
-	dest = filepath.Clean(dest)
-	if _, err := os.Stat(dest); os.IsNotExist(err) {
-		if err := idtools.MkdirAllAndChownNew(dest, 0755, rootIDs); err != nil {
-			return err
-		}
-	}
-
-	r := ioutil.NopCloser(tarArchive)
-	if decompress {
-		decompressedArchive, err := archive.DecompressStream(tarArchive)
-		if err != nil {
-			return err
-		}
-		defer decompressedArchive.Close()
-		r = decompressedArchive
-	}
-
-	return invokeUnpack(r, dest, options)
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/archive_unix.go b/vendor/github.com/containers/storage/pkg/chrootarchive/archive_unix.go
deleted file mode 100644
index e04ed787c0..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/archive_unix.go
+++ /dev/null
@@ -1,86 +0,0 @@
-// +build !windows
-
-package chrootarchive
-
-import (
-	"bytes"
-	"encoding/json"
-	"flag"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"runtime"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/reexec"
-)
-
-// untar is the entry-point for storage-untar on re-exec. This is not used on
-// Windows as it does not support chroot, hence no point sandboxing through
-// chroot and rexec.
-func untar() {
-	runtime.LockOSThread()
-	flag.Parse()
-
-	var options *archive.TarOptions
-
-	//read the options from the pipe "ExtraFiles"
-	if err := json.NewDecoder(os.NewFile(3, "options")).Decode(&options); err != nil {
-		fatal(err)
-	}
-
-	if err := chroot(flag.Arg(0)); err != nil {
-		fatal(err)
-	}
-
-	if err := archive.Unpack(os.Stdin, "/", options); err != nil {
-		fatal(err)
-	}
-	// fully consume stdin in case it is zero padded
-	if _, err := flush(os.Stdin); err != nil {
-		fatal(err)
-	}
-
-	os.Exit(0)
-}
-
-func invokeUnpack(decompressedArchive io.Reader, dest string, options *archive.TarOptions) error {
-
-	// We can't pass a potentially large exclude list directly via cmd line
-	// because we easily overrun the kernel's max argument/environment size
-	// when the full image list is passed (e.g. when this is used by
-	// `docker load`). We will marshall the options via a pipe to the
-	// child
-	r, w, err := os.Pipe()
-	if err != nil {
-		return fmt.Errorf("Untar pipe failure: %v", err)
-	}
-
-	cmd := reexec.Command("storage-untar", dest)
-	cmd.Stdin = decompressedArchive
-
-	cmd.ExtraFiles = append(cmd.ExtraFiles, r)
-	output := bytes.NewBuffer(nil)
-	cmd.Stdout = output
-	cmd.Stderr = output
-
-	if err := cmd.Start(); err != nil {
-		return fmt.Errorf("Untar error on re-exec cmd: %v", err)
-	}
-	//write the options to the pipe for the untar exec to read
-	if err := json.NewEncoder(w).Encode(options); err != nil {
-		return fmt.Errorf("Untar json encode to pipe failed: %v", err)
-	}
-	w.Close()
-
-	if err := cmd.Wait(); err != nil {
-		// when `xz -d -c -q | storage-untar ...` failed on storage-untar side,
-		// we need to exhaust `xz`'s output, otherwise the `xz` side will be
-		// pending on write pipe forever
-		io.Copy(ioutil.Discard, decompressedArchive)
-
-		return fmt.Errorf("Error processing tar file(%v): %s", err, output)
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/archive_windows.go b/vendor/github.com/containers/storage/pkg/chrootarchive/archive_windows.go
deleted file mode 100644
index 93fde42206..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/archive_windows.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package chrootarchive
-
-import (
-	"io"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/longpath"
-)
-
-// chroot is not supported by Windows
-func chroot(path string) error {
-	return nil
-}
-
-func invokeUnpack(decompressedArchive io.ReadCloser,
-	dest string,
-	options *archive.TarOptions) error {
-	// Windows is different to Linux here because Windows does not support
-	// chroot. Hence there is no point sandboxing a chrooted process to
-	// do the unpack. We call inline instead within the daemon process.
-	return archive.Unpack(decompressedArchive, longpath.AddPrefix(dest), options)
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_linux.go b/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_linux.go
deleted file mode 100644
index e8bd22e36b..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_linux.go
+++ /dev/null
@@ -1,108 +0,0 @@
-package chrootarchive
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-
-	"github.com/containers/storage/pkg/mount"
-	rsystem "github.com/opencontainers/runc/libcontainer/system"
-	"golang.org/x/sys/unix"
-)
-
-// chroot on linux uses pivot_root instead of chroot
-// pivot_root takes a new root and an old root.
-// Old root must be a sub-dir of new root, it is where the current rootfs will reside after the call to pivot_root.
-// New root is where the new rootfs is set to.
-// Old root is removed after the call to pivot_root so it is no longer available under the new root.
-// This is similar to how libcontainer sets up a container's rootfs
-func chroot(path string) (err error) {
-	// if the engine is running in a user namespace we need to use actual chroot
-	if rsystem.RunningInUserNS() {
-		return realChroot(path)
-	}
-	if err := unix.Unshare(unix.CLONE_NEWNS); err != nil {
-		return fmt.Errorf("Error creating mount namespace before pivot: %v", err)
-	}
-
-	// make everything in new ns private
-	if err := mount.MakeRPrivate("/"); err != nil {
-		return err
-	}
-
-	if mounted, _ := mount.Mounted(path); !mounted {
-		if err := mount.Mount(path, path, "bind", "rbind,rw"); err != nil {
-			return realChroot(path)
-		}
-	}
-
-	// setup oldRoot for pivot_root
-	pivotDir, err := ioutil.TempDir(path, ".pivot_root")
-	if err != nil {
-		return fmt.Errorf("Error setting up pivot dir: %v", err)
-	}
-
-	var mounted bool
-	defer func() {
-		if mounted {
-			// make sure pivotDir is not mounted before we try to remove it
-			if errCleanup := unix.Unmount(pivotDir, unix.MNT_DETACH); errCleanup != nil {
-				if err == nil {
-					err = errCleanup
-				}
-				return
-			}
-		}
-
-		errCleanup := os.Remove(pivotDir)
-		// pivotDir doesn't exist if pivot_root failed and chroot+chdir was successful
-		// because we already cleaned it up on failed pivot_root
-		if errCleanup != nil && !os.IsNotExist(errCleanup) {
-			errCleanup = fmt.Errorf("Error cleaning up after pivot: %v", errCleanup)
-			if err == nil {
-				err = errCleanup
-			}
-		}
-	}()
-
-	if err := unix.PivotRoot(path, pivotDir); err != nil {
-		// If pivot fails, fall back to the normal chroot after cleaning up temp dir
-		if err := os.Remove(pivotDir); err != nil {
-			return fmt.Errorf("Error cleaning up after failed pivot: %v", err)
-		}
-		return realChroot(path)
-	}
-	mounted = true
-
-	// This is the new path for where the old root (prior to the pivot) has been moved to
-	// This dir contains the rootfs of the caller, which we need to remove so it is not visible during extraction
-	pivotDir = filepath.Join("/", filepath.Base(pivotDir))
-
-	if err := unix.Chdir("/"); err != nil {
-		return fmt.Errorf("Error changing to new root: %v", err)
-	}
-
-	// Make the pivotDir (where the old root lives) private so it can be unmounted without propagating to the host
-	if err := unix.Mount("", pivotDir, "", unix.MS_PRIVATE|unix.MS_REC, ""); err != nil {
-		return fmt.Errorf("Error making old root private after pivot: %v", err)
-	}
-
-	// Now unmount the old root so it's no longer visible from the new root
-	if err := unix.Unmount(pivotDir, unix.MNT_DETACH); err != nil {
-		return fmt.Errorf("Error while unmounting old root after pivot: %v", err)
-	}
-	mounted = false
-
-	return nil
-}
-
-func realChroot(path string) error {
-	if err := unix.Chroot(path); err != nil {
-		return fmt.Errorf("Error after fallback to chroot: %v", err)
-	}
-	if err := unix.Chdir("/"); err != nil {
-		return fmt.Errorf("Error changing to new root after chroot: %v", err)
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_unix.go b/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_unix.go
deleted file mode 100644
index f9b5dece8c..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/chroot_unix.go
+++ /dev/null
@@ -1,12 +0,0 @@
-// +build !windows,!linux
-
-package chrootarchive
-
-import "golang.org/x/sys/unix"
-
-func chroot(path string) error {
-	if err := unix.Chroot(path); err != nil {
-		return err
-	}
-	return unix.Chdir("/")
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/diff.go b/vendor/github.com/containers/storage/pkg/chrootarchive/diff.go
deleted file mode 100644
index 68b8f74f77..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/diff.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package chrootarchive
-
-import (
-	"io"
-
-	"github.com/containers/storage/pkg/archive"
-)
-
-// ApplyLayer parses a diff in the standard layer format from `layer`,
-// and applies it to the directory `dest`. The stream `layer` can only be
-// uncompressed.
-// Returns the size in bytes of the contents of the layer.
-func ApplyLayer(dest string, layer io.Reader) (size int64, err error) {
-	return applyLayerHandler(dest, layer, &archive.TarOptions{}, true)
-}
-
-// ApplyUncompressedLayer parses a diff in the standard layer format from
-// `layer`, and applies it to the directory `dest`. The stream `layer`
-// can only be uncompressed.
-// Returns the size in bytes of the contents of the layer.
-func ApplyUncompressedLayer(dest string, layer io.Reader, options *archive.TarOptions) (int64, error) {
-	return applyLayerHandler(dest, layer, options, false)
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/diff_unix.go b/vendor/github.com/containers/storage/pkg/chrootarchive/diff_unix.go
deleted file mode 100644
index 4369f30c99..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/diff_unix.go
+++ /dev/null
@@ -1,130 +0,0 @@
-//+build !windows
-
-package chrootarchive
-
-import (
-	"bytes"
-	"encoding/json"
-	"flag"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"runtime"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/reexec"
-	"github.com/containers/storage/pkg/system"
-	rsystem "github.com/opencontainers/runc/libcontainer/system"
-)
-
-type applyLayerResponse struct {
-	LayerSize int64 `json:"layerSize"`
-}
-
-// applyLayer is the entry-point for storage-applylayer on re-exec. This is not
-// used on Windows as it does not support chroot, hence no point sandboxing
-// through chroot and rexec.
-func applyLayer() {
-
-	var (
-		tmpDir  string
-		err     error
-		options *archive.TarOptions
-	)
-	runtime.LockOSThread()
-	flag.Parse()
-
-	inUserns := rsystem.RunningInUserNS()
-	if err := chroot(flag.Arg(0)); err != nil {
-		fatal(err)
-	}
-
-	// We need to be able to set any perms
-	oldmask, err := system.Umask(0)
-	defer system.Umask(oldmask)
-	if err != nil {
-		fatal(err)
-	}
-
-	if err := json.Unmarshal([]byte(os.Getenv("OPT")), &options); err != nil {
-		fatal(err)
-	}
-
-	if inUserns {
-		options.InUserNS = true
-	}
-
-	if tmpDir, err = ioutil.TempDir("/", "temp-storage-extract"); err != nil {
-		fatal(err)
-	}
-
-	os.Setenv("TMPDIR", tmpDir)
-	size, err := archive.UnpackLayer("/", os.Stdin, options)
-	os.RemoveAll(tmpDir)
-	if err != nil {
-		fatal(err)
-	}
-
-	encoder := json.NewEncoder(os.Stdout)
-	if err := encoder.Encode(applyLayerResponse{size}); err != nil {
-		fatal(fmt.Errorf("unable to encode layerSize JSON: %s", err))
-	}
-
-	if _, err := flush(os.Stdin); err != nil {
-		fatal(err)
-	}
-
-	os.Exit(0)
-}
-
-// applyLayerHandler parses a diff in the standard layer format from `layer`, and
-// applies it to the directory `dest`. Returns the size in bytes of the
-// contents of the layer.
-func applyLayerHandler(dest string, layer io.Reader, options *archive.TarOptions, decompress bool) (size int64, err error) {
-	dest = filepath.Clean(dest)
-	if decompress {
-		decompressed, err := archive.DecompressStream(layer)
-		if err != nil {
-			return 0, err
-		}
-		defer decompressed.Close()
-
-		layer = decompressed
-	}
-	if options == nil {
-		options = &archive.TarOptions{}
-		if rsystem.RunningInUserNS() {
-			options.InUserNS = true
-		}
-	}
-	if options.ExcludePatterns == nil {
-		options.ExcludePatterns = []string{}
-	}
-
-	data, err := json.Marshal(options)
-	if err != nil {
-		return 0, fmt.Errorf("ApplyLayer json encode: %v", err)
-	}
-
-	cmd := reexec.Command("storage-applyLayer", dest)
-	cmd.Stdin = layer
-	cmd.Env = append(cmd.Env, fmt.Sprintf("OPT=%s", data))
-
-	outBuf, errBuf := new(bytes.Buffer), new(bytes.Buffer)
-	cmd.Stdout, cmd.Stderr = outBuf, errBuf
-
-	if err = cmd.Run(); err != nil {
-		return 0, fmt.Errorf("ApplyLayer %s stdout: %s stderr: %s", err, outBuf, errBuf)
-	}
-
-	// Stdout should be a valid JSON struct representing an applyLayerResponse.
-	response := applyLayerResponse{}
-	decoder := json.NewDecoder(outBuf)
-	if err = decoder.Decode(&response); err != nil {
-		return 0, fmt.Errorf("unable to decode ApplyLayer JSON response: %s", err)
-	}
-
-	return response.LayerSize, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/diff_windows.go b/vendor/github.com/containers/storage/pkg/chrootarchive/diff_windows.go
deleted file mode 100644
index 8f8e88bfbe..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/diff_windows.go
+++ /dev/null
@@ -1,45 +0,0 @@
-package chrootarchive
-
-import (
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/longpath"
-)
-
-// applyLayerHandler parses a diff in the standard layer format from `layer`, and
-// applies it to the directory `dest`. Returns the size in bytes of the
-// contents of the layer.
-func applyLayerHandler(dest string, layer io.Reader, options *archive.TarOptions, decompress bool) (size int64, err error) {
-	dest = filepath.Clean(dest)
-
-	// Ensure it is a Windows-style volume path
-	dest = longpath.AddPrefix(dest)
-
-	if decompress {
-		decompressed, err := archive.DecompressStream(layer)
-		if err != nil {
-			return 0, err
-		}
-		defer decompressed.Close()
-
-		layer = decompressed
-	}
-
-	tmpDir, err := ioutil.TempDir(os.Getenv("temp"), "temp-storage-extract")
-	if err != nil {
-		return 0, fmt.Errorf("ApplyLayer failed to create temp-storage-extract under %s. %s", dest, err)
-	}
-
-	s, err := archive.UnpackLayer(dest, layer, nil)
-	os.RemoveAll(tmpDir)
-	if err != nil {
-		return 0, fmt.Errorf("ApplyLayer %s failed UnpackLayer to %s: %s", layer, dest, err)
-	}
-
-	return s, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/init_unix.go b/vendor/github.com/containers/storage/pkg/chrootarchive/init_unix.go
deleted file mode 100644
index 21cd879928..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/init_unix.go
+++ /dev/null
@@ -1,28 +0,0 @@
-// +build !windows
-
-package chrootarchive
-
-import (
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-
-	"github.com/containers/storage/pkg/reexec"
-)
-
-func init() {
-	reexec.Register("storage-applyLayer", applyLayer)
-	reexec.Register("storage-untar", untar)
-}
-
-func fatal(err error) {
-	fmt.Fprint(os.Stderr, err)
-	os.Exit(1)
-}
-
-// flush consumes all the bytes from the reader discarding
-// any errors
-func flush(r io.Reader) (bytes int64, err error) {
-	return io.Copy(ioutil.Discard, r)
-}
diff --git a/vendor/github.com/containers/storage/pkg/chrootarchive/init_windows.go b/vendor/github.com/containers/storage/pkg/chrootarchive/init_windows.go
deleted file mode 100644
index fa17c9bf83..0000000000
--- a/vendor/github.com/containers/storage/pkg/chrootarchive/init_windows.go
+++ /dev/null
@@ -1,4 +0,0 @@
-package chrootarchive
-
-func init() {
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper.go
deleted file mode 100644
index 6a0ac24647..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper.go
+++ /dev/null
@@ -1,821 +0,0 @@
-// +build linux,cgo
-
-package devicemapper
-
-import (
-	"errors"
-	"fmt"
-	"os"
-	"runtime"
-	"unsafe"
-
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/unix"
-)
-
-// Same as DM_DEVICE_* enum values from libdevmapper.h
-// nolint: deadcode
-const (
-	deviceCreate TaskType = iota
-	deviceReload
-	deviceRemove
-	deviceRemoveAll
-	deviceSuspend
-	deviceResume
-	deviceInfo
-	deviceDeps
-	deviceRename
-	deviceVersion
-	deviceStatus
-	deviceTable
-	deviceWaitevent
-	deviceList
-	deviceClear
-	deviceMknodes
-	deviceListVersions
-	deviceTargetMsg
-	deviceSetGeometry
-)
-
-const (
-	addNodeOnResume AddNodeType = iota
-	addNodeOnCreate
-)
-
-// List of errors returned when using devicemapper.
-var (
-	ErrTaskRun              = errors.New("dm_task_run failed")
-	ErrTaskSetName          = errors.New("dm_task_set_name failed")
-	ErrTaskSetMessage       = errors.New("dm_task_set_message failed")
-	ErrTaskSetAddNode       = errors.New("dm_task_set_add_node failed")
-	ErrTaskSetRo            = errors.New("dm_task_set_ro failed")
-	ErrTaskAddTarget        = errors.New("dm_task_add_target failed")
-	ErrTaskSetSector        = errors.New("dm_task_set_sector failed")
-	ErrTaskGetDeps          = errors.New("dm_task_get_deps failed")
-	ErrTaskGetInfo          = errors.New("dm_task_get_info failed")
-	ErrTaskGetDriverVersion = errors.New("dm_task_get_driver_version failed")
-	ErrTaskDeferredRemove   = errors.New("dm_task_deferred_remove failed")
-	ErrTaskSetCookie        = errors.New("dm_task_set_cookie failed")
-	ErrNilCookie            = errors.New("cookie ptr can't be nil")
-	ErrGetBlockSize         = errors.New("Can't get block size")
-	ErrUdevWait             = errors.New("wait on udev cookie failed")
-	ErrSetDevDir            = errors.New("dm_set_dev_dir failed")
-	ErrGetLibraryVersion    = errors.New("dm_get_library_version failed")
-	ErrCreateRemoveTask     = errors.New("Can't create task of type deviceRemove")
-	ErrRunRemoveDevice      = errors.New("running RemoveDevice failed")
-	ErrInvalidAddNode       = errors.New("Invalid AddNode type")
-	ErrBusy                 = errors.New("Device is Busy")
-	ErrDeviceIDExists       = errors.New("Device Id Exists")
-	ErrEnxio                = errors.New("No such device or address")
-)
-
-var (
-	dmSawBusy  bool
-	dmSawExist bool
-	dmSawEnxio bool // No Such Device or Address
-)
-
-type (
-	// Task represents a devicemapper task (like lvcreate, etc.) ; a task is needed for each ioctl
-	// command to execute.
-	Task struct {
-		unmanaged *cdmTask
-	}
-	// Deps represents dependents (layer) of a device.
-	Deps struct {
-		Count  uint32
-		Filler uint32
-		Device []uint64
-	}
-	// Info represents information about a device.
-	Info struct {
-		Exists         int
-		Suspended      int
-		LiveTable      int
-		InactiveTable  int
-		OpenCount      int32
-		EventNr        uint32
-		Major          uint32
-		Minor          uint32
-		ReadOnly       int
-		TargetCount    int32
-		DeferredRemove int
-	}
-	// TaskType represents a type of task
-	TaskType int
-	// AddNodeType represents a type of node to be added
-	AddNodeType int
-)
-
-// DeviceIDExists returns whether error conveys the information about device Id already
-// exist or not. This will be true if device creation or snap creation
-// operation fails if device or snap device already exists in pool.
-// Current implementation is little crude as it scans the error string
-// for exact pattern match. Replacing it with more robust implementation
-// is desirable.
-func DeviceIDExists(err error) bool {
-	return fmt.Sprint(err) == fmt.Sprint(ErrDeviceIDExists)
-}
-
-func (t *Task) destroy() {
-	if t != nil {
-		DmTaskDestroy(t.unmanaged)
-		runtime.SetFinalizer(t, nil)
-	}
-}
-
-// TaskCreateNamed is a convenience function for TaskCreate when a name
-// will be set on the task as well
-func TaskCreateNamed(t TaskType, name string) (*Task, error) {
-	task := TaskCreate(t)
-	if task == nil {
-		return nil, fmt.Errorf("devicemapper: Can't create task of type %d", int(t))
-	}
-	if err := task.setName(name); err != nil {
-		return nil, fmt.Errorf("devicemapper: Can't set task name %s", name)
-	}
-	return task, nil
-}
-
-// TaskCreate initializes a devicemapper task of tasktype
-func TaskCreate(tasktype TaskType) *Task {
-	Ctask := DmTaskCreate(int(tasktype))
-	if Ctask == nil {
-		return nil
-	}
-	task := &Task{unmanaged: Ctask}
-	runtime.SetFinalizer(task, (*Task).destroy)
-	return task
-}
-
-func (t *Task) run() error {
-	if res := DmTaskRun(t.unmanaged); res != 1 {
-		return ErrTaskRun
-	}
-	runtime.KeepAlive(t)
-	return nil
-}
-
-func (t *Task) setName(name string) error {
-	if res := DmTaskSetName(t.unmanaged, name); res != 1 {
-		return ErrTaskSetName
-	}
-	return nil
-}
-
-func (t *Task) setMessage(message string) error {
-	if res := DmTaskSetMessage(t.unmanaged, message); res != 1 {
-		return ErrTaskSetMessage
-	}
-	return nil
-}
-
-func (t *Task) setSector(sector uint64) error {
-	if res := DmTaskSetSector(t.unmanaged, sector); res != 1 {
-		return ErrTaskSetSector
-	}
-	return nil
-}
-
-func (t *Task) setCookie(cookie *uint, flags uint16) error {
-	if cookie == nil {
-		return ErrNilCookie
-	}
-	if res := DmTaskSetCookie(t.unmanaged, cookie, flags); res != 1 {
-		return ErrTaskSetCookie
-	}
-	return nil
-}
-
-func (t *Task) setAddNode(addNode AddNodeType) error {
-	if addNode != addNodeOnResume && addNode != addNodeOnCreate {
-		return ErrInvalidAddNode
-	}
-	if res := DmTaskSetAddNode(t.unmanaged, addNode); res != 1 {
-		return ErrTaskSetAddNode
-	}
-	return nil
-}
-
-func (t *Task) setRo() error {
-	if res := DmTaskSetRo(t.unmanaged); res != 1 {
-		return ErrTaskSetRo
-	}
-	return nil
-}
-
-func (t *Task) addTarget(start, size uint64, ttype, params string) error {
-	if res := DmTaskAddTarget(t.unmanaged, start, size,
-		ttype, params); res != 1 {
-		return ErrTaskAddTarget
-	}
-	return nil
-}
-
-func (t *Task) getDeps() (*Deps, error) {
-	var deps *Deps
-	if deps = DmTaskGetDeps(t.unmanaged); deps == nil {
-		return nil, ErrTaskGetDeps
-	}
-	return deps, nil
-}
-
-func (t *Task) getInfo() (*Info, error) {
-	info := &Info{}
-	if res := DmTaskGetInfo(t.unmanaged, info); res != 1 {
-		return nil, ErrTaskGetInfo
-	}
-	return info, nil
-}
-
-func (t *Task) getInfoWithDeferred() (*Info, error) {
-	info := &Info{}
-	if res := DmTaskGetInfoWithDeferred(t.unmanaged, info); res != 1 {
-		return nil, ErrTaskGetInfo
-	}
-	return info, nil
-}
-
-func (t *Task) getDriverVersion() (string, error) {
-	res := DmTaskGetDriverVersion(t.unmanaged)
-	if res == "" {
-		return "", ErrTaskGetDriverVersion
-	}
-	return res, nil
-}
-
-func (t *Task) getNextTarget(next unsafe.Pointer) (nextPtr unsafe.Pointer, start uint64,
-	length uint64, targetType string, params string) {
-
-	return DmGetNextTarget(t.unmanaged, next, &start, &length,
-			&targetType, &params),
-		start, length, targetType, params
-}
-
-// UdevWait waits for any processes that are waiting for udev to complete the specified cookie.
-func UdevWait(cookie *uint) error {
-	if res := DmUdevWait(*cookie); res != 1 {
-		logrus.Debugf("devicemapper: Failed to wait on udev cookie %d, %d", *cookie, res)
-		return ErrUdevWait
-	}
-	return nil
-}
-
-// SetDevDir sets the dev folder for the device mapper library (usually /dev).
-func SetDevDir(dir string) error {
-	if res := DmSetDevDir(dir); res != 1 {
-		logrus.Debug("devicemapper: Error dm_set_dev_dir")
-		return ErrSetDevDir
-	}
-	return nil
-}
-
-// GetLibraryVersion returns the device mapper library version.
-func GetLibraryVersion() (string, error) {
-	var version string
-	if res := DmGetLibraryVersion(&version); res != 1 {
-		return "", ErrGetLibraryVersion
-	}
-	return version, nil
-}
-
-// UdevSyncSupported returns whether device-mapper is able to sync with udev
-//
-// This is essential otherwise race conditions can arise where both udev and
-// device-mapper attempt to create and destroy devices.
-func UdevSyncSupported() bool {
-	return DmUdevGetSyncSupport() != 0
-}
-
-// UdevSetSyncSupport allows setting whether the udev sync should be enabled.
-// The return bool indicates the state of whether the sync is enabled.
-func UdevSetSyncSupport(enable bool) bool {
-	if enable {
-		DmUdevSetSyncSupport(1)
-	} else {
-		DmUdevSetSyncSupport(0)
-	}
-
-	return UdevSyncSupported()
-}
-
-// CookieSupported returns whether the version of device-mapper supports the
-// use of cookie's in the tasks.
-// This is largely a lower level call that other functions use.
-func CookieSupported() bool {
-	return DmCookieSupported() != 0
-}
-
-// RemoveDevice is a useful helper for cleaning up a device.
-func RemoveDevice(name string) error {
-	task, err := TaskCreateNamed(deviceRemove, name)
-	if task == nil {
-		return err
-	}
-
-	cookie := new(uint)
-	if err := task.setCookie(cookie, 0); err != nil {
-		return fmt.Errorf("devicemapper: Can not set cookie: %s", err)
-	}
-	defer UdevWait(cookie)
-
-	dmSawBusy = false // reset before the task is run
-	dmSawEnxio = false
-	if err = task.run(); err != nil {
-		if dmSawBusy {
-			return ErrBusy
-		}
-		if dmSawEnxio {
-			return ErrEnxio
-		}
-		return fmt.Errorf("devicemapper: Error running RemoveDevice %s", err)
-	}
-
-	return nil
-}
-
-// RemoveDeviceDeferred is a useful helper for cleaning up a device, but deferred.
-func RemoveDeviceDeferred(name string) error {
-	logrus.Debugf("devicemapper: RemoveDeviceDeferred START(%s)", name)
-	defer logrus.Debugf("devicemapper: RemoveDeviceDeferred END(%s)", name)
-	task, err := TaskCreateNamed(deviceRemove, name)
-	if task == nil {
-		return err
-	}
-
-	if err := DmTaskDeferredRemove(task.unmanaged); err != 1 {
-		return ErrTaskDeferredRemove
-	}
-
-	// set a task cookie and disable library fallback, or else libdevmapper will
-	// disable udev dm rules and delete the symlink under /dev/mapper by itself,
-	// even if the removal is deferred by the kernel.
-	cookie := new(uint)
-	var flags uint16
-	flags = DmUdevDisableLibraryFallback
-	if err := task.setCookie(cookie, flags); err != nil {
-		return fmt.Errorf("devicemapper: Can not set cookie: %s", err)
-	}
-
-	// libdevmapper and udev relies on System V semaphore for synchronization,
-	// semaphores created in `task.setCookie` will be cleaned up in `UdevWait`.
-	// So these two function call must come in pairs, otherwise semaphores will
-	// be leaked, and the  limit of number of semaphores defined in `/proc/sys/kernel/sem`
-	// will be reached, which will eventually make all following calls to 'task.SetCookie'
-	// fail.
-	// this call will not wait for the deferred removal's final executing, since no
-	// udev event will be generated, and the semaphore's value will not be incremented
-	// by udev, what UdevWait is just cleaning up the semaphore.
-	defer UdevWait(cookie)
-
-	dmSawEnxio = false
-	if err = task.run(); err != nil {
-		if dmSawEnxio {
-			return ErrEnxio
-		}
-		return fmt.Errorf("devicemapper: Error running RemoveDeviceDeferred %s", err)
-	}
-
-	return nil
-}
-
-// CancelDeferredRemove cancels a deferred remove for a device.
-func CancelDeferredRemove(deviceName string) error {
-	task, err := TaskCreateNamed(deviceTargetMsg, deviceName)
-	if task == nil {
-		return err
-	}
-
-	if err := task.setSector(0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set sector %s", err)
-	}
-
-	if err := task.setMessage(fmt.Sprintf("@cancel_deferred_remove")); err != nil {
-		return fmt.Errorf("devicemapper: Can't set message %s", err)
-	}
-
-	dmSawBusy = false
-	dmSawEnxio = false
-	if err := task.run(); err != nil {
-		// A device might be being deleted already
-		if dmSawBusy {
-			return ErrBusy
-		} else if dmSawEnxio {
-			return ErrEnxio
-		}
-		return fmt.Errorf("devicemapper: Error running CancelDeferredRemove %s", err)
-
-	}
-	return nil
-}
-
-// GetBlockDeviceSize returns the size of a block device identified by the specified file.
-func GetBlockDeviceSize(file *os.File) (uint64, error) {
-	size, err := ioctlBlkGetSize64(file.Fd())
-	if err != nil {
-		logrus.Errorf("devicemapper: Error getblockdevicesize: %s", err)
-		return 0, ErrGetBlockSize
-	}
-	return uint64(size), nil
-}
-
-// BlockDeviceDiscard runs discard for the given path.
-// This is used as a workaround for the kernel not discarding block so
-// on the thin pool when we remove a thinp device, so we do it
-// manually
-func BlockDeviceDiscard(path string) error {
-	file, err := os.OpenFile(path, os.O_RDWR, 0)
-	if err != nil {
-		return err
-	}
-	defer file.Close()
-
-	size, err := GetBlockDeviceSize(file)
-	if err != nil {
-		return err
-	}
-
-	if err := ioctlBlkDiscard(file.Fd(), 0, size); err != nil {
-		return err
-	}
-
-	// Without this sometimes the remove of the device that happens after
-	// discard fails with EBUSY.
-	unix.Sync()
-
-	return nil
-}
-
-// CreatePool is the programmatic example of "dmsetup create".
-// It creates a device with the specified poolName, data and metadata file and block size.
-func CreatePool(poolName string, dataFile, metadataFile *os.File, poolBlockSize uint32) error {
-	task, err := TaskCreateNamed(deviceCreate, poolName)
-	if task == nil {
-		return err
-	}
-
-	size, err := GetBlockDeviceSize(dataFile)
-	if err != nil {
-		return fmt.Errorf("devicemapper: Can't get data size %s", err)
-	}
-
-	params := fmt.Sprintf("%s %s %d 32768 1 skip_block_zeroing", metadataFile.Name(), dataFile.Name(), poolBlockSize)
-	if err := task.addTarget(0, size/512, "thin-pool", params); err != nil {
-		return fmt.Errorf("devicemapper: Can't add target %s", err)
-	}
-
-	cookie := new(uint)
-	var flags uint16
-	flags = DmUdevDisableSubsystemRulesFlag | DmUdevDisableDiskRulesFlag | DmUdevDisableOtherRulesFlag
-	if err := task.setCookie(cookie, flags); err != nil {
-		return fmt.Errorf("devicemapper: Can't set cookie %s", err)
-	}
-	defer UdevWait(cookie)
-
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running deviceCreate (CreatePool) %s", err)
-	}
-
-	return nil
-}
-
-// ReloadPool is the programmatic example of "dmsetup reload".
-// It reloads the table with the specified poolName, data and metadata file and block size.
-func ReloadPool(poolName string, dataFile, metadataFile *os.File, poolBlockSize uint32) error {
-	task, err := TaskCreateNamed(deviceReload, poolName)
-	if task == nil {
-		return err
-	}
-
-	size, err := GetBlockDeviceSize(dataFile)
-	if err != nil {
-		return fmt.Errorf("devicemapper: Can't get data size %s", err)
-	}
-
-	params := fmt.Sprintf("%s %s %d 32768 1 skip_block_zeroing", metadataFile.Name(), dataFile.Name(), poolBlockSize)
-	if err := task.addTarget(0, size/512, "thin-pool", params); err != nil {
-		return fmt.Errorf("devicemapper: Can't add target %s", err)
-	}
-
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running ReloadPool %s", err)
-	}
-
-	return nil
-}
-
-// GetDeps is the programmatic example of "dmsetup deps".
-// It outputs a list of devices referenced by the live table for the specified device.
-func GetDeps(name string) (*Deps, error) {
-	task, err := TaskCreateNamed(deviceDeps, name)
-	if task == nil {
-		return nil, err
-	}
-	if err := task.run(); err != nil {
-		return nil, err
-	}
-	return task.getDeps()
-}
-
-// GetInfo is the programmatic example of "dmsetup info".
-// It outputs some brief information about the device.
-func GetInfo(name string) (*Info, error) {
-	task, err := TaskCreateNamed(deviceInfo, name)
-	if task == nil {
-		return nil, err
-	}
-	if err := task.run(); err != nil {
-		return nil, err
-	}
-	return task.getInfo()
-}
-
-// GetInfoWithDeferred is the programmatic example of "dmsetup info", but deferred.
-// It outputs some brief information about the device.
-func GetInfoWithDeferred(name string) (*Info, error) {
-	task, err := TaskCreateNamed(deviceInfo, name)
-	if task == nil {
-		return nil, err
-	}
-	if err := task.run(); err != nil {
-		return nil, err
-	}
-	return task.getInfoWithDeferred()
-}
-
-// GetDriverVersion is the programmatic example of "dmsetup version".
-// It outputs version information of the driver.
-func GetDriverVersion() (string, error) {
-	task := TaskCreate(deviceVersion)
-	if task == nil {
-		return "", fmt.Errorf("devicemapper: Can't create deviceVersion task")
-	}
-	if err := task.run(); err != nil {
-		return "", err
-	}
-	return task.getDriverVersion()
-}
-
-// GetStatus is the programmatic example of "dmsetup status".
-// It outputs status information for the specified device name.
-func GetStatus(name string) (uint64, uint64, string, string, error) {
-	task, err := TaskCreateNamed(deviceStatus, name)
-	if task == nil {
-		logrus.Debugf("devicemapper: GetStatus() Error TaskCreateNamed: %s", err)
-		return 0, 0, "", "", err
-	}
-	if err := task.run(); err != nil {
-		logrus.Debugf("devicemapper: GetStatus() Error Run: %s", err)
-		return 0, 0, "", "", err
-	}
-
-	devinfo, err := task.getInfo()
-	if err != nil {
-		logrus.Debugf("devicemapper: GetStatus() Error GetInfo: %s", err)
-		return 0, 0, "", "", err
-	}
-	if devinfo.Exists == 0 {
-		logrus.Debugf("devicemapper: GetStatus() Non existing device %s", name)
-		return 0, 0, "", "", fmt.Errorf("devicemapper: Non existing device %s", name)
-	}
-
-	_, start, length, targetType, params := task.getNextTarget(unsafe.Pointer(nil))
-	return start, length, targetType, params, nil
-}
-
-// GetTable is the programmatic example for "dmsetup table".
-// It outputs the current table for the specified device name.
-func GetTable(name string) (uint64, uint64, string, string, error) {
-	task, err := TaskCreateNamed(deviceTable, name)
-	if task == nil {
-		logrus.Debugf("devicemapper: GetTable() Error TaskCreateNamed: %s", err)
-		return 0, 0, "", "", err
-	}
-	if err := task.run(); err != nil {
-		logrus.Debugf("devicemapper: GetTable() Error Run: %s", err)
-		return 0, 0, "", "", err
-	}
-
-	devinfo, err := task.getInfo()
-	if err != nil {
-		logrus.Debugf("devicemapper: GetTable() Error GetInfo: %s", err)
-		return 0, 0, "", "", err
-	}
-	if devinfo.Exists == 0 {
-		logrus.Debugf("devicemapper: GetTable() Non existing device %s", name)
-		return 0, 0, "", "", fmt.Errorf("devicemapper: Non existing device %s", name)
-	}
-
-	_, start, length, targetType, params := task.getNextTarget(unsafe.Pointer(nil))
-	return start, length, targetType, params, nil
-}
-
-// SetTransactionID sets a transaction id for the specified device name.
-func SetTransactionID(poolName string, oldID uint64, newID uint64) error {
-	task, err := TaskCreateNamed(deviceTargetMsg, poolName)
-	if task == nil {
-		return err
-	}
-
-	if err := task.setSector(0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set sector %s", err)
-	}
-
-	if err := task.setMessage(fmt.Sprintf("set_transaction_id %d %d", oldID, newID)); err != nil {
-		return fmt.Errorf("devicemapper: Can't set message %s", err)
-	}
-
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running SetTransactionID %s", err)
-	}
-	return nil
-}
-
-// SuspendDevice is the programmatic example of "dmsetup suspend".
-// It suspends the specified device.
-func SuspendDevice(name string) error {
-	task, err := TaskCreateNamed(deviceSuspend, name)
-	if task == nil {
-		return err
-	}
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running deviceSuspend %s", err)
-	}
-	return nil
-}
-
-// ResumeDevice is the programmatic example of "dmsetup resume".
-// It un-suspends the specified device.
-func ResumeDevice(name string) error {
-	task, err := TaskCreateNamed(deviceResume, name)
-	if task == nil {
-		return err
-	}
-
-	cookie := new(uint)
-	if err := task.setCookie(cookie, 0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set cookie %s", err)
-	}
-	defer UdevWait(cookie)
-
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running deviceResume %s", err)
-	}
-
-	return nil
-}
-
-// CreateDevice creates a device with the specified poolName with the specified device id.
-func CreateDevice(poolName string, deviceID int) error {
-	logrus.Debugf("devicemapper: CreateDevice(poolName=%v, deviceID=%v)", poolName, deviceID)
-	task, err := TaskCreateNamed(deviceTargetMsg, poolName)
-	if task == nil {
-		return err
-	}
-
-	if err := task.setSector(0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set sector %s", err)
-	}
-
-	if err := task.setMessage(fmt.Sprintf("create_thin %d", deviceID)); err != nil {
-		return fmt.Errorf("devicemapper: Can't set message %s", err)
-	}
-
-	dmSawExist = false // reset before the task is run
-	if err := task.run(); err != nil {
-		// Caller wants to know about ErrDeviceIDExists so that it can try with a different device id.
-		if dmSawExist {
-			return ErrDeviceIDExists
-		}
-
-		return fmt.Errorf("devicemapper: Error running CreateDevice %s", err)
-
-	}
-	return nil
-}
-
-// DeleteDevice deletes a device with the specified poolName with the specified device id.
-func DeleteDevice(poolName string, deviceID int) error {
-	task, err := TaskCreateNamed(deviceTargetMsg, poolName)
-	if task == nil {
-		return err
-	}
-
-	if err := task.setSector(0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set sector %s", err)
-	}
-
-	if err := task.setMessage(fmt.Sprintf("delete %d", deviceID)); err != nil {
-		return fmt.Errorf("devicemapper: Can't set message %s", err)
-	}
-
-	dmSawBusy = false
-	if err := task.run(); err != nil {
-		if dmSawBusy {
-			return ErrBusy
-		}
-		return fmt.Errorf("devicemapper: Error running DeleteDevice %s", err)
-	}
-	return nil
-}
-
-// ActivateDevice activates the device identified by the specified
-// poolName, name and deviceID with the specified size.
-func ActivateDevice(poolName string, name string, deviceID int, size uint64) error {
-	return activateDevice(poolName, name, deviceID, size, "")
-}
-
-// ActivateDeviceWithExternal activates the device identified by the specified
-// poolName, name and deviceID with the specified size.
-func ActivateDeviceWithExternal(poolName string, name string, deviceID int, size uint64, external string) error {
-	return activateDevice(poolName, name, deviceID, size, external)
-}
-
-func activateDevice(poolName string, name string, deviceID int, size uint64, external string) error {
-	task, err := TaskCreateNamed(deviceCreate, name)
-	if task == nil {
-		return err
-	}
-
-	var params string
-	if len(external) > 0 {
-		params = fmt.Sprintf("%s %d %s", poolName, deviceID, external)
-	} else {
-		params = fmt.Sprintf("%s %d", poolName, deviceID)
-	}
-	if err := task.addTarget(0, size/512, "thin", params); err != nil {
-		return fmt.Errorf("devicemapper: Can't add target %s", err)
-	}
-	if err := task.setAddNode(addNodeOnCreate); err != nil {
-		return fmt.Errorf("devicemapper: Can't add node %s", err)
-	}
-
-	cookie := new(uint)
-	if err := task.setCookie(cookie, 0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set cookie %s", err)
-	}
-
-	defer UdevWait(cookie)
-
-	if err := task.run(); err != nil {
-		return fmt.Errorf("devicemapper: Error running deviceCreate (ActivateDevice) %s", err)
-	}
-
-	return nil
-}
-
-// CreateSnapDeviceRaw creates a snapshot device. Caller needs to suspend and resume the origin device if it is active.
-func CreateSnapDeviceRaw(poolName string, deviceID int, baseDeviceID int) error {
-	task, err := TaskCreateNamed(deviceTargetMsg, poolName)
-	if task == nil {
-		return err
-	}
-
-	if err := task.setSector(0); err != nil {
-		return fmt.Errorf("devicemapper: Can't set sector %s", err)
-	}
-
-	if err := task.setMessage(fmt.Sprintf("create_snap %d %d", deviceID, baseDeviceID)); err != nil {
-		return fmt.Errorf("devicemapper: Can't set message %s", err)
-	}
-
-	dmSawExist = false // reset before the task is run
-	if err := task.run(); err != nil {
-		// Caller wants to know about ErrDeviceIDExists so that it can try with a different device id.
-		if dmSawExist {
-			return ErrDeviceIDExists
-		}
-		return fmt.Errorf("devicemapper: Error running deviceCreate (CreateSnapDeviceRaw) %s", err)
-	}
-
-	return nil
-}
-
-// CreateSnapDevice creates a snapshot based on the device identified by the baseName and baseDeviceId,
-func CreateSnapDevice(poolName string, deviceID int, baseName string, baseDeviceID int) error {
-	devinfo, _ := GetInfo(baseName)
-	doSuspend := devinfo != nil && devinfo.Exists != 0
-
-	if doSuspend {
-		if err := SuspendDevice(baseName); err != nil {
-			return err
-		}
-	}
-
-	if err := CreateSnapDeviceRaw(poolName, deviceID, baseDeviceID); err != nil {
-		if doSuspend {
-			if err2 := ResumeDevice(baseName); err2 != nil {
-				return fmt.Errorf("CreateSnapDeviceRaw Error: (%v): ResumeDevice Error: (%v)", err, err2)
-			}
-		}
-		return err
-	}
-
-	if doSuspend {
-		if err := ResumeDevice(baseName); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_log.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_log.go
deleted file mode 100644
index b540281fab..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_log.go
+++ /dev/null
@@ -1,121 +0,0 @@
-// +build linux,cgo
-
-package devicemapper
-
-import "C"
-
-import (
-	"fmt"
-	"strings"
-
-	"github.com/sirupsen/logrus"
-)
-
-// DevmapperLogger defines methods required to register as a callback for
-// logging events recieved from devicemapper. Note that devicemapper will send
-// *all* logs regardless to callbacks (including debug logs) so it's
-// recommended to not spam the console with the outputs.
-type DevmapperLogger interface {
-	// DMLog is the logging callback containing all of the information from
-	// devicemapper. The interface is identical to the C libdm counterpart.
-	DMLog(level int, file string, line int, dmError int, message string)
-}
-
-// dmLogger is the current logger in use that is being forwarded our messages.
-var dmLogger DevmapperLogger
-
-// LogInit changes the logging callback called after processing libdm logs for
-// error message information. The default logger simply forwards all logs to
-// logrus. Calling LogInit(nil) disables the calling of callbacks.
-func LogInit(logger DevmapperLogger) {
-	dmLogger = logger
-}
-
-// Due to the way cgo works this has to be in a separate file, as devmapper.go has
-// definitions in the cgo block, which is incompatible with using "//export"
-
-// StorageDevmapperLogCallback exports the devmapper log callback for cgo. Note that
-// because we are using callbacks, this function will be called for *every* log
-// in libdm (even debug ones because there's no way of setting the verbosity
-// level for an external logging callback).
-//export StorageDevmapperLogCallback
-func StorageDevmapperLogCallback(level C.int, file *C.char, line, dmErrnoOrClass C.int, message *C.char) {
-	msg := C.GoString(message)
-
-	// Track what errno libdm saw, because the library only gives us 0 or 1.
-	if level < LogLevelDebug {
-		if strings.Contains(msg, "busy") {
-			dmSawBusy = true
-		}
-
-		if strings.Contains(msg, "File exists") {
-			dmSawExist = true
-		}
-
-		if strings.Contains(msg, "No such device or address") {
-			dmSawEnxio = true
-		}
-	}
-
-	if dmLogger != nil {
-		dmLogger.DMLog(int(level), C.GoString(file), int(line), int(dmErrnoOrClass), msg)
-	}
-}
-
-// DefaultLogger is the default logger used by pkg/devicemapper. It forwards
-// all logs that are of higher or equal priority to the given level to the
-// corresponding logrus level.
-type DefaultLogger struct {
-	// Level corresponds to the highest libdm level that will be forwarded to
-	// logrus. In order to change this, register a new DefaultLogger.
-	Level int
-}
-
-// DMLog is the logging callback containing all of the information from
-// devicemapper. The interface is identical to the C libdm counterpart.
-func (l DefaultLogger) DMLog(level int, file string, line, dmError int, message string) {
-	if level <= l.Level {
-		// Forward the log to the correct logrus level, if allowed by dmLogLevel.
-		logMsg := fmt.Sprintf("libdevmapper(%d): %s:%d (%d) %s", level, file, line, dmError, message)
-		switch level {
-		case LogLevelFatal, LogLevelErr:
-			logrus.Error(logMsg)
-		case LogLevelWarn:
-			logrus.Warn(logMsg)
-		case LogLevelNotice, LogLevelInfo:
-			logrus.Info(logMsg)
-		case LogLevelDebug:
-			logrus.Debug(logMsg)
-		default:
-			// Don't drop any "unknown" levels.
-			logrus.Info(logMsg)
-		}
-	}
-}
-
-// registerLogCallback registers our own logging callback function for libdm
-// (which is StorageDevmapperLogCallback).
-//
-// Because libdm only gives us {0,1} error codes we need to parse the logs
-// produced by libdm (to set dmSawBusy and so on). Note that by registering a
-// callback using StorageDevmapperLogCallback, libdm will no longer output logs to
-// stderr so we have to log everything ourselves. None of this handling is
-// optional because we depend on log callbacks to parse the logs, and if we
-// don't forward the log information we'll be in a lot of trouble when
-// debugging things.
-func registerLogCallback() {
-	LogWithErrnoInit()
-}
-
-func init() {
-	// Use the default logger by default. We only allow LogLevelFatal by
-	// default, because internally we mask a lot of libdm errors by retrying
-	// and similar tricks. Also, libdm is very chatty and we don't want to
-	// worry users for no reason.
-	dmLogger = DefaultLogger{
-		Level: LogLevelFatal,
-	}
-
-	// Register as early as possible so we don't miss anything.
-	registerLogCallback()
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper.go
deleted file mode 100644
index 190d83d499..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper.go
+++ /dev/null
@@ -1,252 +0,0 @@
-// +build linux,cgo
-
-package devicemapper
-
-/*
-#define _GNU_SOURCE
-#include <libdevmapper.h>
-#include <linux/fs.h>   // FIXME: present only for BLKGETSIZE64, maybe we can remove it?
-
-// FIXME: Can't we find a way to do the logging in pure Go?
-extern void StorageDevmapperLogCallback(int level, char *file, int line, int dm_errno_or_class, char *str);
-
-static void	log_cb(int level, const char *file, int line, int dm_errno_or_class, const char *f, ...)
-{
-	char *buffer = NULL;
-	va_list ap;
-	int ret;
-
-	va_start(ap, f);
-	ret = vasprintf(&buffer, f, ap);
-	va_end(ap);
-	if (ret < 0) {
-		// memory allocation failed -- should never happen?
-		return;
-	}
-
-	StorageDevmapperLogCallback(level, (char *)file, line, dm_errno_or_class, buffer);
-	free(buffer);
-}
-
-static void	log_with_errno_init()
-{
-	dm_log_with_errno_init(log_cb);
-}
-*/
-import "C"
-
-import (
-	"reflect"
-	"unsafe"
-)
-
-type (
-	cdmTask C.struct_dm_task
-)
-
-// IOCTL consts
-const (
-	BlkGetSize64 = C.BLKGETSIZE64
-	BlkDiscard   = C.BLKDISCARD
-)
-
-// Devicemapper cookie flags.
-const (
-	DmUdevDisableSubsystemRulesFlag = C.DM_UDEV_DISABLE_SUBSYSTEM_RULES_FLAG
-	DmUdevDisableDiskRulesFlag      = C.DM_UDEV_DISABLE_DISK_RULES_FLAG
-	DmUdevDisableOtherRulesFlag     = C.DM_UDEV_DISABLE_OTHER_RULES_FLAG
-	DmUdevDisableLibraryFallback    = C.DM_UDEV_DISABLE_LIBRARY_FALLBACK
-)
-
-// DeviceMapper mapped functions.
-var (
-	DmGetLibraryVersion       = dmGetLibraryVersionFct
-	DmGetNextTarget           = dmGetNextTargetFct
-	DmSetDevDir               = dmSetDevDirFct
-	DmTaskAddTarget           = dmTaskAddTargetFct
-	DmTaskCreate              = dmTaskCreateFct
-	DmTaskDestroy             = dmTaskDestroyFct
-	DmTaskGetDeps             = dmTaskGetDepsFct
-	DmTaskGetInfo             = dmTaskGetInfoFct
-	DmTaskGetDriverVersion    = dmTaskGetDriverVersionFct
-	DmTaskRun                 = dmTaskRunFct
-	DmTaskSetAddNode          = dmTaskSetAddNodeFct
-	DmTaskSetCookie           = dmTaskSetCookieFct
-	DmTaskSetMessage          = dmTaskSetMessageFct
-	DmTaskSetName             = dmTaskSetNameFct
-	DmTaskSetRo               = dmTaskSetRoFct
-	DmTaskSetSector           = dmTaskSetSectorFct
-	DmUdevWait                = dmUdevWaitFct
-	DmUdevSetSyncSupport      = dmUdevSetSyncSupportFct
-	DmUdevGetSyncSupport      = dmUdevGetSyncSupportFct
-	DmCookieSupported         = dmCookieSupportedFct
-	LogWithErrnoInit          = logWithErrnoInitFct
-	DmTaskDeferredRemove      = dmTaskDeferredRemoveFct
-	DmTaskGetInfoWithDeferred = dmTaskGetInfoWithDeferredFct
-)
-
-func free(p *C.char) {
-	C.free(unsafe.Pointer(p))
-}
-
-func dmTaskDestroyFct(task *cdmTask) {
-	C.dm_task_destroy((*C.struct_dm_task)(task))
-}
-
-func dmTaskCreateFct(taskType int) *cdmTask {
-	return (*cdmTask)(C.dm_task_create(C.int(taskType)))
-}
-
-func dmTaskRunFct(task *cdmTask) int {
-	ret, _ := C.dm_task_run((*C.struct_dm_task)(task))
-	return int(ret)
-}
-
-func dmTaskSetNameFct(task *cdmTask, name string) int {
-	Cname := C.CString(name)
-	defer free(Cname)
-
-	return int(C.dm_task_set_name((*C.struct_dm_task)(task), Cname))
-}
-
-func dmTaskSetMessageFct(task *cdmTask, message string) int {
-	Cmessage := C.CString(message)
-	defer free(Cmessage)
-
-	return int(C.dm_task_set_message((*C.struct_dm_task)(task), Cmessage))
-}
-
-func dmTaskSetSectorFct(task *cdmTask, sector uint64) int {
-	return int(C.dm_task_set_sector((*C.struct_dm_task)(task), C.uint64_t(sector)))
-}
-
-func dmTaskSetCookieFct(task *cdmTask, cookie *uint, flags uint16) int {
-	cCookie := C.uint32_t(*cookie)
-	defer func() {
-		*cookie = uint(cCookie)
-	}()
-	return int(C.dm_task_set_cookie((*C.struct_dm_task)(task), &cCookie, C.uint16_t(flags)))
-}
-
-func dmTaskSetAddNodeFct(task *cdmTask, addNode AddNodeType) int {
-	return int(C.dm_task_set_add_node((*C.struct_dm_task)(task), C.dm_add_node_t(addNode)))
-}
-
-func dmTaskSetRoFct(task *cdmTask) int {
-	return int(C.dm_task_set_ro((*C.struct_dm_task)(task)))
-}
-
-func dmTaskAddTargetFct(task *cdmTask,
-	start, size uint64, ttype, params string) int {
-
-	Cttype := C.CString(ttype)
-	defer free(Cttype)
-
-	Cparams := C.CString(params)
-	defer free(Cparams)
-
-	return int(C.dm_task_add_target((*C.struct_dm_task)(task), C.uint64_t(start), C.uint64_t(size), Cttype, Cparams))
-}
-
-func dmTaskGetDepsFct(task *cdmTask) *Deps {
-	Cdeps := C.dm_task_get_deps((*C.struct_dm_task)(task))
-	if Cdeps == nil {
-		return nil
-	}
-
-	// golang issue: https://github.com/golang/go/issues/11925
-	hdr := reflect.SliceHeader{
-		Data: uintptr(unsafe.Pointer(uintptr(unsafe.Pointer(Cdeps)) + unsafe.Sizeof(*Cdeps))),
-		Len:  int(Cdeps.count),
-		Cap:  int(Cdeps.count),
-	}
-	devices := *(*[]C.uint64_t)(unsafe.Pointer(&hdr))
-
-	deps := &Deps{
-		Count:  uint32(Cdeps.count),
-		Filler: uint32(Cdeps.filler),
-	}
-	for _, device := range devices {
-		deps.Device = append(deps.Device, uint64(device))
-	}
-	return deps
-}
-
-func dmTaskGetInfoFct(task *cdmTask, info *Info) int {
-	Cinfo := C.struct_dm_info{}
-	defer func() {
-		info.Exists = int(Cinfo.exists)
-		info.Suspended = int(Cinfo.suspended)
-		info.LiveTable = int(Cinfo.live_table)
-		info.InactiveTable = int(Cinfo.inactive_table)
-		info.OpenCount = int32(Cinfo.open_count)
-		info.EventNr = uint32(Cinfo.event_nr)
-		info.Major = uint32(Cinfo.major)
-		info.Minor = uint32(Cinfo.minor)
-		info.ReadOnly = int(Cinfo.read_only)
-		info.TargetCount = int32(Cinfo.target_count)
-	}()
-	return int(C.dm_task_get_info((*C.struct_dm_task)(task), &Cinfo))
-}
-
-func dmTaskGetDriverVersionFct(task *cdmTask) string {
-	buffer := C.malloc(128)
-	defer C.free(buffer)
-	res := C.dm_task_get_driver_version((*C.struct_dm_task)(task), (*C.char)(buffer), 128)
-	if res == 0 {
-		return ""
-	}
-	return C.GoString((*C.char)(buffer))
-}
-
-func dmGetNextTargetFct(task *cdmTask, next unsafe.Pointer, start, length *uint64, target, params *string) unsafe.Pointer {
-	var (
-		Cstart, Clength      C.uint64_t
-		CtargetType, Cparams *C.char
-	)
-	defer func() {
-		*start = uint64(Cstart)
-		*length = uint64(Clength)
-		*target = C.GoString(CtargetType)
-		*params = C.GoString(Cparams)
-	}()
-
-	nextp := C.dm_get_next_target((*C.struct_dm_task)(task), next, &Cstart, &Clength, &CtargetType, &Cparams)
-	return nextp
-}
-
-func dmUdevSetSyncSupportFct(syncWithUdev int) {
-	(C.dm_udev_set_sync_support(C.int(syncWithUdev)))
-}
-
-func dmUdevGetSyncSupportFct() int {
-	return int(C.dm_udev_get_sync_support())
-}
-
-func dmUdevWaitFct(cookie uint) int {
-	return int(C.dm_udev_wait(C.uint32_t(cookie)))
-}
-
-func dmCookieSupportedFct() int {
-	return int(C.dm_cookie_supported())
-}
-
-func logWithErrnoInitFct() {
-	C.log_with_errno_init()
-}
-
-func dmSetDevDirFct(dir string) int {
-	Cdir := C.CString(dir)
-	defer free(Cdir)
-
-	return int(C.dm_set_dev_dir(Cdir))
-}
-
-func dmGetLibraryVersionFct(version *string) int {
-	buffer := C.CString(string(make([]byte, 128)))
-	defer free(buffer)
-	defer func() {
-		*version = C.GoString(buffer)
-	}()
-	return int(C.dm_get_library_version(buffer, 128))
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_deferred_remove.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_deferred_remove.go
deleted file mode 100644
index 7f793c2708..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_deferred_remove.go
+++ /dev/null
@@ -1,31 +0,0 @@
-// +build linux,cgo,!libdm_no_deferred_remove
-
-package devicemapper
-
-// #include <libdevmapper.h>
-import "C"
-
-// LibraryDeferredRemovalSupport tells if the feature is enabled in the build
-const LibraryDeferredRemovalSupport = true
-
-func dmTaskDeferredRemoveFct(task *cdmTask) int {
-	return int(C.dm_task_deferred_remove((*C.struct_dm_task)(task)))
-}
-
-func dmTaskGetInfoWithDeferredFct(task *cdmTask, info *Info) int {
-	Cinfo := C.struct_dm_info{}
-	defer func() {
-		info.Exists = int(Cinfo.exists)
-		info.Suspended = int(Cinfo.suspended)
-		info.LiveTable = int(Cinfo.live_table)
-		info.InactiveTable = int(Cinfo.inactive_table)
-		info.OpenCount = int32(Cinfo.open_count)
-		info.EventNr = uint32(Cinfo.event_nr)
-		info.Major = uint32(Cinfo.major)
-		info.Minor = uint32(Cinfo.minor)
-		info.ReadOnly = int(Cinfo.read_only)
-		info.TargetCount = int32(Cinfo.target_count)
-		info.DeferredRemove = int(Cinfo.deferred_remove)
-	}()
-	return int(C.dm_task_get_info((*C.struct_dm_task)(task), &Cinfo))
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_dynamic.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_dynamic.go
deleted file mode 100644
index 7d84508982..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_dynamic.go
+++ /dev/null
@@ -1,6 +0,0 @@
-// +build linux,cgo,!static_build
-
-package devicemapper
-
-// #cgo pkg-config: devmapper
-import "C"
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_no_deferred_remove.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_no_deferred_remove.go
deleted file mode 100644
index a880fec8c4..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_no_deferred_remove.go
+++ /dev/null
@@ -1,15 +0,0 @@
-// +build linux,cgo,libdm_no_deferred_remove
-
-package devicemapper
-
-// LibraryDeferredRemovalSupport tells if the feature is enabled in the build
-const LibraryDeferredRemovalSupport = false
-
-func dmTaskDeferredRemoveFct(task *cdmTask) int {
-	// Error. Nobody should be calling it.
-	return -1
-}
-
-func dmTaskGetInfoWithDeferredFct(task *cdmTask, info *Info) int {
-	return -1
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_static.go b/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_static.go
deleted file mode 100644
index cf7f26a4c6..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/devmapper_wrapper_static.go
+++ /dev/null
@@ -1,6 +0,0 @@
-// +build linux,cgo,static_build
-
-package devicemapper
-
-// #cgo pkg-config: --static devmapper
-import "C"
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/ioctl.go b/vendor/github.com/containers/storage/pkg/devicemapper/ioctl.go
deleted file mode 100644
index 50ea7c4823..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/ioctl.go
+++ /dev/null
@@ -1,28 +0,0 @@
-// +build linux,cgo
-
-package devicemapper
-
-import (
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-func ioctlBlkGetSize64(fd uintptr) (int64, error) {
-	var size int64
-	if _, _, err := unix.Syscall(unix.SYS_IOCTL, fd, BlkGetSize64, uintptr(unsafe.Pointer(&size))); err != 0 {
-		return 0, err
-	}
-	return size, nil
-}
-
-func ioctlBlkDiscard(fd uintptr, offset, length uint64) error {
-	var r [2]uint64
-	r[0] = offset
-	r[1] = length
-
-	if _, _, err := unix.Syscall(unix.SYS_IOCTL, fd, BlkDiscard, uintptr(unsafe.Pointer(&r[0]))); err != 0 {
-		return err
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/devicemapper/log.go b/vendor/github.com/containers/storage/pkg/devicemapper/log.go
deleted file mode 100644
index cee5e54549..0000000000
--- a/vendor/github.com/containers/storage/pkg/devicemapper/log.go
+++ /dev/null
@@ -1,11 +0,0 @@
-package devicemapper
-
-// definitions from lvm2 lib/log/log.h
-const (
-	LogLevelFatal  = 2 + iota // _LOG_FATAL
-	LogLevelErr               // _LOG_ERR
-	LogLevelWarn              // _LOG_WARN
-	LogLevelNotice            // _LOG_NOTICE
-	LogLevelInfo              // _LOG_INFO
-	LogLevelDebug             // _LOG_DEBUG
-)
diff --git a/vendor/github.com/containers/storage/pkg/directory/directory.go b/vendor/github.com/containers/storage/pkg/directory/directory.go
deleted file mode 100644
index 1715ef45d9..0000000000
--- a/vendor/github.com/containers/storage/pkg/directory/directory.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package directory
-
-import (
-	"io/ioutil"
-	"os"
-	"path/filepath"
-)
-
-// MoveToSubdir moves all contents of a directory to a subdirectory underneath the original path
-func MoveToSubdir(oldpath, subdir string) error {
-
-	infos, err := ioutil.ReadDir(oldpath)
-	if err != nil {
-		return err
-	}
-	for _, info := range infos {
-		if info.Name() != subdir {
-			oldName := filepath.Join(oldpath, info.Name())
-			newName := filepath.Join(oldpath, subdir, info.Name())
-			if err := os.Rename(oldName, newName); err != nil {
-				return err
-			}
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/directory/directory_unix.go b/vendor/github.com/containers/storage/pkg/directory/directory_unix.go
deleted file mode 100644
index 397251bdb8..0000000000
--- a/vendor/github.com/containers/storage/pkg/directory/directory_unix.go
+++ /dev/null
@@ -1,48 +0,0 @@
-// +build linux freebsd solaris
-
-package directory
-
-import (
-	"os"
-	"path/filepath"
-	"syscall"
-)
-
-// Size walks a directory tree and returns its total size in bytes.
-func Size(dir string) (size int64, err error) {
-	data := make(map[uint64]struct{})
-	err = filepath.Walk(dir, func(d string, fileInfo os.FileInfo, err error) error {
-		if err != nil {
-			// if dir does not exist, Size() returns the error.
-			// if dir/x disappeared while walking, Size() ignores dir/x.
-			if os.IsNotExist(err) && d != dir {
-				return nil
-			}
-			return err
-		}
-
-		// Ignore directory sizes
-		if fileInfo == nil {
-			return nil
-		}
-
-		s := fileInfo.Size()
-		if fileInfo.IsDir() || s == 0 {
-			return nil
-		}
-
-		// Check inode to handle hard links correctly
-		inode := fileInfo.Sys().(*syscall.Stat_t).Ino
-		// inode is not a uint64 on all platforms. Cast it to avoid issues.
-		if _, exists := data[uint64(inode)]; exists {
-			return nil
-		}
-		// inode is not a uint64 on all platforms. Cast it to avoid issues.
-		data[uint64(inode)] = struct{}{}
-
-		size += s
-
-		return nil
-	})
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/directory/directory_windows.go b/vendor/github.com/containers/storage/pkg/directory/directory_windows.go
deleted file mode 100644
index 6fb0917c4c..0000000000
--- a/vendor/github.com/containers/storage/pkg/directory/directory_windows.go
+++ /dev/null
@@ -1,37 +0,0 @@
-// +build windows
-
-package directory
-
-import (
-	"os"
-	"path/filepath"
-)
-
-// Size walks a directory tree and returns its total size in bytes.
-func Size(dir string) (size int64, err error) {
-	err = filepath.Walk(dir, func(d string, fileInfo os.FileInfo, err error) error {
-		if err != nil {
-			// if dir does not exist, Size() returns the error.
-			// if dir/x disappeared while walking, Size() ignores dir/x.
-			if os.IsNotExist(err) && d != dir {
-				return nil
-			}
-			return err
-		}
-
-		// Ignore directory sizes
-		if fileInfo == nil {
-			return nil
-		}
-
-		s := fileInfo.Size()
-		if fileInfo.IsDir() || s == 0 {
-			return nil
-		}
-
-		size += s
-
-		return nil
-	})
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/dmesg/dmesg_linux.go b/vendor/github.com/containers/storage/pkg/dmesg/dmesg_linux.go
deleted file mode 100644
index 7df7f3d436..0000000000
--- a/vendor/github.com/containers/storage/pkg/dmesg/dmesg_linux.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// +build linux
-
-package dmesg
-
-import (
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-// Dmesg returns last messages from the kernel log, up to size bytes
-func Dmesg(size int) []byte {
-	t := uintptr(3) // SYSLOG_ACTION_READ_ALL
-	b := make([]byte, size)
-	amt, _, err := unix.Syscall(unix.SYS_SYSLOG, t, uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)))
-	if err != 0 {
-		return []byte{}
-	}
-	return b[:amt]
-}
diff --git a/vendor/github.com/containers/storage/pkg/fileutils/fileutils.go b/vendor/github.com/containers/storage/pkg/fileutils/fileutils.go
deleted file mode 100644
index a129e654ea..0000000000
--- a/vendor/github.com/containers/storage/pkg/fileutils/fileutils.go
+++ /dev/null
@@ -1,298 +0,0 @@
-package fileutils
-
-import (
-	"errors"
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"regexp"
-	"strings"
-	"text/scanner"
-
-	"github.com/sirupsen/logrus"
-)
-
-// PatternMatcher allows checking paths agaist a list of patterns
-type PatternMatcher struct {
-	patterns   []*Pattern
-	exclusions bool
-}
-
-// NewPatternMatcher creates a new matcher object for specific patterns that can
-// be used later to match against patterns against paths
-func NewPatternMatcher(patterns []string) (*PatternMatcher, error) {
-	pm := &PatternMatcher{
-		patterns: make([]*Pattern, 0, len(patterns)),
-	}
-	for _, p := range patterns {
-		// Eliminate leading and trailing whitespace.
-		p = strings.TrimSpace(p)
-		if p == "" {
-			continue
-		}
-		p = filepath.Clean(p)
-		newp := &Pattern{}
-		if p[0] == '!' {
-			if len(p) == 1 {
-				return nil, errors.New("illegal exclusion pattern: \"!\"")
-			}
-			newp.exclusion = true
-			p = p[1:]
-			pm.exclusions = true
-		}
-		// Do some syntax checking on the pattern.
-		// filepath's Match() has some really weird rules that are inconsistent
-		// so instead of trying to dup their logic, just call Match() for its
-		// error state and if there is an error in the pattern return it.
-		// If this becomes an issue we can remove this since its really only
-		// needed in the error (syntax) case - which isn't really critical.
-		if _, err := filepath.Match(p, "."); err != nil {
-			return nil, err
-		}
-		newp.cleanedPattern = p
-		newp.dirs = strings.Split(p, string(os.PathSeparator))
-		pm.patterns = append(pm.patterns, newp)
-	}
-	return pm, nil
-}
-
-// Matches matches path against all the patterns. Matches is not safe to be
-// called concurrently
-func (pm *PatternMatcher) Matches(file string) (bool, error) {
-	matched := false
-	file = filepath.FromSlash(file)
-	parentPath := filepath.Dir(file)
-	parentPathDirs := strings.Split(parentPath, string(os.PathSeparator))
-
-	for _, pattern := range pm.patterns {
-		negative := false
-
-		if pattern.exclusion {
-			negative = true
-		}
-
-		match, err := pattern.match(file)
-		if err != nil {
-			return false, err
-		}
-
-		if !match && parentPath != "." {
-			// Check to see if the pattern matches one of our parent dirs.
-			if len(pattern.dirs) <= len(parentPathDirs) {
-				match, _ = pattern.match(strings.Join(parentPathDirs[:len(pattern.dirs)], string(os.PathSeparator)))
-			}
-		}
-
-		if match {
-			matched = !negative
-		}
-	}
-
-	if matched {
-		logrus.Debugf("Skipping excluded path: %s", file)
-	}
-
-	return matched, nil
-}
-
-// Exclusions returns true if any of the patterns define exclusions
-func (pm *PatternMatcher) Exclusions() bool {
-	return pm.exclusions
-}
-
-// Patterns returns array of active patterns
-func (pm *PatternMatcher) Patterns() []*Pattern {
-	return pm.patterns
-}
-
-// Pattern defines a single regexp used used to filter file paths.
-type Pattern struct {
-	cleanedPattern string
-	dirs           []string
-	regexp         *regexp.Regexp
-	exclusion      bool
-}
-
-func (p *Pattern) String() string {
-	return p.cleanedPattern
-}
-
-// Exclusion returns true if this pattern defines exclusion
-func (p *Pattern) Exclusion() bool {
-	return p.exclusion
-}
-
-func (p *Pattern) match(path string) (bool, error) {
-
-	if p.regexp == nil {
-		if err := p.compile(); err != nil {
-			return false, filepath.ErrBadPattern
-		}
-	}
-
-	b := p.regexp.MatchString(path)
-
-	return b, nil
-}
-
-func (p *Pattern) compile() error {
-	regStr := "^"
-	pattern := p.cleanedPattern
-	// Go through the pattern and convert it to a regexp.
-	// We use a scanner so we can support utf-8 chars.
-	var scan scanner.Scanner
-	scan.Init(strings.NewReader(pattern))
-
-	sl := string(os.PathSeparator)
-	escSL := sl
-	if sl == `\` {
-		escSL += `\`
-	}
-
-	for scan.Peek() != scanner.EOF {
-		ch := scan.Next()
-
-		if ch == '*' {
-			if scan.Peek() == '*' {
-				// is some flavor of "**"
-				scan.Next()
-
-				// Treat **/ as ** so eat the "/"
-				if string(scan.Peek()) == sl {
-					scan.Next()
-				}
-
-				if scan.Peek() == scanner.EOF {
-					// is "**EOF" - to align with .gitignore just accept all
-					regStr += ".*"
-				} else {
-					// is "**"
-					// Note that this allows for any # of /'s (even 0) because
-					// the .* will eat everything, even /'s
-					regStr += "(.*" + escSL + ")?"
-				}
-			} else {
-				// is "*" so map it to anything but "/"
-				regStr += "[^" + escSL + "]*"
-			}
-		} else if ch == '?' {
-			// "?" is any char except "/"
-			regStr += "[^" + escSL + "]"
-		} else if ch == '.' || ch == '$' {
-			// Escape some regexp special chars that have no meaning
-			// in golang's filepath.Match
-			regStr += `\` + string(ch)
-		} else if ch == '\\' {
-			// escape next char. Note that a trailing \ in the pattern
-			// will be left alone (but need to escape it)
-			if sl == `\` {
-				// On windows map "\" to "\\", meaning an escaped backslash,
-				// and then just continue because filepath.Match on
-				// Windows doesn't allow escaping at all
-				regStr += escSL
-				continue
-			}
-			if scan.Peek() != scanner.EOF {
-				regStr += `\` + string(scan.Next())
-			} else {
-				regStr += `\`
-			}
-		} else {
-			regStr += string(ch)
-		}
-	}
-
-	regStr += "$"
-
-	re, err := regexp.Compile(regStr)
-	if err != nil {
-		return err
-	}
-
-	p.regexp = re
-	return nil
-}
-
-// Matches returns true if file matches any of the patterns
-// and isn't excluded by any of the subsequent patterns.
-func Matches(file string, patterns []string) (bool, error) {
-	pm, err := NewPatternMatcher(patterns)
-	if err != nil {
-		return false, err
-	}
-	file = filepath.Clean(file)
-
-	if file == "." {
-		// Don't let them exclude everything, kind of silly.
-		return false, nil
-	}
-
-	return pm.Matches(file)
-}
-
-// CopyFile copies from src to dst until either EOF is reached
-// on src or an error occurs. It verifies src exists and removes
-// the dst if it exists.
-func CopyFile(src, dst string) (int64, error) {
-	cleanSrc := filepath.Clean(src)
-	cleanDst := filepath.Clean(dst)
-	if cleanSrc == cleanDst {
-		return 0, nil
-	}
-	sf, err := os.Open(cleanSrc)
-	if err != nil {
-		return 0, err
-	}
-	defer sf.Close()
-	if err := os.Remove(cleanDst); err != nil && !os.IsNotExist(err) {
-		return 0, err
-	}
-	df, err := os.Create(cleanDst)
-	if err != nil {
-		return 0, err
-	}
-	defer df.Close()
-	return io.Copy(df, sf)
-}
-
-// ReadSymlinkedDirectory returns the target directory of a symlink.
-// The target of the symbolic link may not be a file.
-func ReadSymlinkedDirectory(path string) (string, error) {
-	var realPath string
-	var err error
-	if realPath, err = filepath.Abs(path); err != nil {
-		return "", fmt.Errorf("unable to get absolute path for %s: %s", path, err)
-	}
-	if realPath, err = filepath.EvalSymlinks(realPath); err != nil {
-		return "", fmt.Errorf("failed to canonicalise path for %s: %s", path, err)
-	}
-	realPathInfo, err := os.Stat(realPath)
-	if err != nil {
-		return "", fmt.Errorf("failed to stat target '%s' of '%s': %s", realPath, path, err)
-	}
-	if !realPathInfo.Mode().IsDir() {
-		return "", fmt.Errorf("canonical path points to a file '%s'", realPath)
-	}
-	return realPath, nil
-}
-
-// CreateIfNotExists creates a file or a directory only if it does not already exist.
-func CreateIfNotExists(path string, isDir bool) error {
-	if _, err := os.Stat(path); err != nil {
-		if os.IsNotExist(err) {
-			if isDir {
-				return os.MkdirAll(path, 0755)
-			}
-			if err := os.MkdirAll(filepath.Dir(path), 0755); err != nil {
-				return err
-			}
-			f, err := os.OpenFile(path, os.O_CREATE, 0755)
-			if err != nil {
-				return err
-			}
-			f.Close()
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_darwin.go b/vendor/github.com/containers/storage/pkg/fileutils/fileutils_darwin.go
deleted file mode 100644
index ccd648fac3..0000000000
--- a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_darwin.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package fileutils
-
-import (
-	"os"
-	"os/exec"
-	"strconv"
-	"strings"
-)
-
-// GetTotalUsedFds returns the number of used File Descriptors by
-// executing `lsof -p PID`
-func GetTotalUsedFds() int {
-	pid := os.Getpid()
-
-	cmd := exec.Command("lsof", "-p", strconv.Itoa(pid))
-
-	output, err := cmd.CombinedOutput()
-	if err != nil {
-		return -1
-	}
-
-	outputStr := strings.TrimSpace(string(output))
-
-	fds := strings.Split(outputStr, "\n")
-
-	return len(fds) - 1
-}
diff --git a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_solaris.go b/vendor/github.com/containers/storage/pkg/fileutils/fileutils_solaris.go
deleted file mode 100644
index 0f2cb7ab93..0000000000
--- a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_solaris.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package fileutils
-
-// GetTotalUsedFds Returns the number of used File Descriptors.
-// On Solaris these limits are per process and not systemwide
-func GetTotalUsedFds() int {
-	return -1
-}
diff --git a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_unix.go b/vendor/github.com/containers/storage/pkg/fileutils/fileutils_unix.go
deleted file mode 100644
index 9e0e97bd64..0000000000
--- a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_unix.go
+++ /dev/null
@@ -1,22 +0,0 @@
-// +build linux freebsd
-
-package fileutils
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-
-	"github.com/sirupsen/logrus"
-)
-
-// GetTotalUsedFds Returns the number of used File Descriptors by
-// reading it via /proc filesystem.
-func GetTotalUsedFds() int {
-	if fds, err := ioutil.ReadDir(fmt.Sprintf("/proc/%d/fd", os.Getpid())); err != nil {
-		logrus.Errorf("Error opening /proc/%d/fd: %s", os.Getpid(), err)
-	} else {
-		return len(fds)
-	}
-	return -1
-}
diff --git a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_windows.go b/vendor/github.com/containers/storage/pkg/fileutils/fileutils_windows.go
deleted file mode 100644
index 5ec21cace5..0000000000
--- a/vendor/github.com/containers/storage/pkg/fileutils/fileutils_windows.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package fileutils
-
-// GetTotalUsedFds Returns the number of used File Descriptors. Not supported
-// on Windows.
-func GetTotalUsedFds() int {
-	return -1
-}
diff --git a/vendor/github.com/containers/storage/pkg/fsutils/fsutils_linux.go b/vendor/github.com/containers/storage/pkg/fsutils/fsutils_linux.go
deleted file mode 100644
index e6094b55b7..0000000000
--- a/vendor/github.com/containers/storage/pkg/fsutils/fsutils_linux.go
+++ /dev/null
@@ -1,88 +0,0 @@
-// +build linux
-
-package fsutils
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-func locateDummyIfEmpty(path string) (string, error) {
-	children, err := ioutil.ReadDir(path)
-	if err != nil {
-		return "", err
-	}
-	if len(children) != 0 {
-		return "", nil
-	}
-	dummyFile, err := ioutil.TempFile(path, "fsutils-dummy")
-	if err != nil {
-		return "", err
-	}
-	name := dummyFile.Name()
-	err = dummyFile.Close()
-	return name, err
-}
-
-// SupportsDType returns whether the filesystem mounted on path supports d_type
-func SupportsDType(path string) (bool, error) {
-	// locate dummy so that we have at least one dirent
-	dummy, err := locateDummyIfEmpty(path)
-	if err != nil {
-		return false, err
-	}
-	if dummy != "" {
-		defer os.Remove(dummy)
-	}
-
-	visited := 0
-	supportsDType := true
-	fn := func(ent *unix.Dirent) bool {
-		visited++
-		if ent.Type == unix.DT_UNKNOWN {
-			supportsDType = false
-			// stop iteration
-			return true
-		}
-		// continue iteration
-		return false
-	}
-	if err = iterateReadDir(path, fn); err != nil {
-		return false, err
-	}
-	if visited == 0 {
-		return false, fmt.Errorf("did not hit any dirent during iteration %s", path)
-	}
-	return supportsDType, nil
-}
-
-func iterateReadDir(path string, fn func(*unix.Dirent) bool) error {
-	d, err := os.Open(path)
-	if err != nil {
-		return err
-	}
-	defer d.Close()
-	fd := int(d.Fd())
-	buf := make([]byte, 4096)
-	for {
-		nbytes, err := unix.ReadDirent(fd, buf)
-		if err != nil {
-			return err
-		}
-		if nbytes == 0 {
-			break
-		}
-		for off := 0; off < nbytes; {
-			ent := (*unix.Dirent)(unsafe.Pointer(&buf[off]))
-			if stop := fn(ent); stop {
-				return nil
-			}
-			off += int(ent.Reclen)
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/homedir/homedir_linux.go b/vendor/github.com/containers/storage/pkg/homedir/homedir_linux.go
deleted file mode 100644
index c001fbecbf..0000000000
--- a/vendor/github.com/containers/storage/pkg/homedir/homedir_linux.go
+++ /dev/null
@@ -1,23 +0,0 @@
-// +build linux
-
-package homedir
-
-import (
-	"os"
-
-	"github.com/containers/storage/pkg/idtools"
-)
-
-// GetStatic returns the home directory for the current user without calling
-// os/user.Current(). This is useful for static-linked binary on glibc-based
-// system, because a call to os/user.Current() in a static binary leads to
-// segfault due to a glibc issue that won't be fixed in a short term.
-// (#29344, golang/go#13470, https://sourceware.org/bugzilla/show_bug.cgi?id=19341)
-func GetStatic() (string, error) {
-	uid := os.Getuid()
-	usr, err := idtools.LookupUID(uid)
-	if err != nil {
-		return "", err
-	}
-	return usr.Home, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/homedir/homedir_others.go b/vendor/github.com/containers/storage/pkg/homedir/homedir_others.go
deleted file mode 100644
index 6b96b856f6..0000000000
--- a/vendor/github.com/containers/storage/pkg/homedir/homedir_others.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// +build !linux
-
-package homedir
-
-import (
-	"errors"
-)
-
-// GetStatic is not needed for non-linux systems.
-// (Precisely, it is needed only for glibc-based linux systems.)
-func GetStatic() (string, error) {
-	return "", errors.New("homedir.GetStatic() is not supported on this system")
-}
diff --git a/vendor/github.com/containers/storage/pkg/homedir/homedir_unix.go b/vendor/github.com/containers/storage/pkg/homedir/homedir_unix.go
deleted file mode 100644
index f2a20ea8f8..0000000000
--- a/vendor/github.com/containers/storage/pkg/homedir/homedir_unix.go
+++ /dev/null
@@ -1,34 +0,0 @@
-// +build !windows
-
-package homedir
-
-import (
-	"os"
-
-	"github.com/opencontainers/runc/libcontainer/user"
-)
-
-// Key returns the env var name for the user's home dir based on
-// the platform being run on
-func Key() string {
-	return "HOME"
-}
-
-// Get returns the home directory of the current user with the help of
-// environment variables depending on the target operating system.
-// Returned path should be used with "path/filepath" to form new paths.
-func Get() string {
-	home := os.Getenv(Key())
-	if home == "" {
-		if u, err := user.CurrentUser(); err == nil {
-			return u.Home
-		}
-	}
-	return home
-}
-
-// GetShortcutString returns the string that is shortcut to user's home directory
-// in the native shell of the platform running on.
-func GetShortcutString() string {
-	return "~"
-}
diff --git a/vendor/github.com/containers/storage/pkg/homedir/homedir_windows.go b/vendor/github.com/containers/storage/pkg/homedir/homedir_windows.go
deleted file mode 100644
index fafdb2bbf9..0000000000
--- a/vendor/github.com/containers/storage/pkg/homedir/homedir_windows.go
+++ /dev/null
@@ -1,24 +0,0 @@
-package homedir
-
-import (
-	"os"
-)
-
-// Key returns the env var name for the user's home dir based on
-// the platform being run on
-func Key() string {
-	return "USERPROFILE"
-}
-
-// Get returns the home directory of the current user with the help of
-// environment variables depending on the target operating system.
-// Returned path should be used with "path/filepath" to form new paths.
-func Get() string {
-	return os.Getenv(Key())
-}
-
-// GetShortcutString returns the string that is shortcut to user's home directory
-// in the native shell of the platform running on.
-func GetShortcutString() string {
-	return "%USERPROFILE%" // be careful while using in format functions
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/idtools.go b/vendor/github.com/containers/storage/pkg/idtools/idtools.go
deleted file mode 100644
index 68a072db22..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/idtools.go
+++ /dev/null
@@ -1,279 +0,0 @@
-package idtools
-
-import (
-	"bufio"
-	"fmt"
-	"os"
-	"sort"
-	"strconv"
-	"strings"
-)
-
-// IDMap contains a single entry for user namespace range remapping. An array
-// of IDMap entries represents the structure that will be provided to the Linux
-// kernel for creating a user namespace.
-type IDMap struct {
-	ContainerID int `json:"container_id"`
-	HostID      int `json:"host_id"`
-	Size        int `json:"size"`
-}
-
-type subIDRange struct {
-	Start  int
-	Length int
-}
-
-type ranges []subIDRange
-
-func (e ranges) Len() int           { return len(e) }
-func (e ranges) Swap(i, j int)      { e[i], e[j] = e[j], e[i] }
-func (e ranges) Less(i, j int) bool { return e[i].Start < e[j].Start }
-
-const (
-	subuidFileName string = "/etc/subuid"
-	subgidFileName string = "/etc/subgid"
-)
-
-// MkdirAllAs creates a directory (include any along the path) and then modifies
-// ownership to the requested uid/gid.  If the directory already exists, this
-// function will still change ownership to the requested uid/gid pair.
-// Deprecated: Use MkdirAllAndChown
-func MkdirAllAs(path string, mode os.FileMode, ownerUID, ownerGID int) error {
-	return mkdirAs(path, mode, ownerUID, ownerGID, true, true)
-}
-
-// MkdirAs creates a directory and then modifies ownership to the requested uid/gid.
-// If the directory already exists, this function still changes ownership
-// Deprecated: Use MkdirAndChown with a IDPair
-func MkdirAs(path string, mode os.FileMode, ownerUID, ownerGID int) error {
-	return mkdirAs(path, mode, ownerUID, ownerGID, false, true)
-}
-
-// MkdirAllAndChown creates a directory (include any along the path) and then modifies
-// ownership to the requested uid/gid.  If the directory already exists, this
-// function will still change ownership to the requested uid/gid pair.
-func MkdirAllAndChown(path string, mode os.FileMode, ids IDPair) error {
-	return mkdirAs(path, mode, ids.UID, ids.GID, true, true)
-}
-
-// MkdirAndChown creates a directory and then modifies ownership to the requested uid/gid.
-// If the directory already exists, this function still changes ownership
-func MkdirAndChown(path string, mode os.FileMode, ids IDPair) error {
-	return mkdirAs(path, mode, ids.UID, ids.GID, false, true)
-}
-
-// MkdirAllAndChownNew creates a directory (include any along the path) and then modifies
-// ownership ONLY of newly created directories to the requested uid/gid. If the
-// directories along the path exist, no change of ownership will be performed
-func MkdirAllAndChownNew(path string, mode os.FileMode, ids IDPair) error {
-	return mkdirAs(path, mode, ids.UID, ids.GID, true, false)
-}
-
-// GetRootUIDGID retrieves the remapped root uid/gid pair from the set of maps.
-// If the maps are empty, then the root uid/gid will default to "real" 0/0
-func GetRootUIDGID(uidMap, gidMap []IDMap) (int, int, error) {
-	uid, err := toHost(0, uidMap)
-	if err != nil {
-		return -1, -1, err
-	}
-	gid, err := toHost(0, gidMap)
-	if err != nil {
-		return -1, -1, err
-	}
-	return uid, gid, nil
-}
-
-// toContainer takes an id mapping, and uses it to translate a
-// host ID to the remapped ID. If no map is provided, then the translation
-// assumes a 1-to-1 mapping and returns the passed in id
-func toContainer(hostID int, idMap []IDMap) (int, error) {
-	if idMap == nil {
-		return hostID, nil
-	}
-	for _, m := range idMap {
-		if (hostID >= m.HostID) && (hostID <= (m.HostID + m.Size - 1)) {
-			contID := m.ContainerID + (hostID - m.HostID)
-			return contID, nil
-		}
-	}
-	return -1, fmt.Errorf("Host ID %d cannot be mapped to a container ID", hostID)
-}
-
-// toHost takes an id mapping and a remapped ID, and translates the
-// ID to the mapped host ID. If no map is provided, then the translation
-// assumes a 1-to-1 mapping and returns the passed in id #
-func toHost(contID int, idMap []IDMap) (int, error) {
-	if idMap == nil {
-		return contID, nil
-	}
-	for _, m := range idMap {
-		if (contID >= m.ContainerID) && (contID <= (m.ContainerID + m.Size - 1)) {
-			hostID := m.HostID + (contID - m.ContainerID)
-			return hostID, nil
-		}
-	}
-	return -1, fmt.Errorf("Container ID %d cannot be mapped to a host ID", contID)
-}
-
-// IDPair is a UID and GID pair
-type IDPair struct {
-	UID int
-	GID int
-}
-
-// IDMappings contains a mappings of UIDs and GIDs
-type IDMappings struct {
-	uids []IDMap
-	gids []IDMap
-}
-
-// NewIDMappings takes a requested user and group name and
-// using the data from /etc/sub{uid,gid} ranges, creates the
-// proper uid and gid remapping ranges for that user/group pair
-func NewIDMappings(username, groupname string) (*IDMappings, error) {
-	subuidRanges, err := parseSubuid(username)
-	if err != nil {
-		return nil, err
-	}
-	subgidRanges, err := parseSubgid(groupname)
-	if err != nil {
-		return nil, err
-	}
-	if len(subuidRanges) == 0 {
-		return nil, fmt.Errorf("No subuid ranges found for user %q", username)
-	}
-	if len(subgidRanges) == 0 {
-		return nil, fmt.Errorf("No subgid ranges found for group %q", groupname)
-	}
-
-	return &IDMappings{
-		uids: createIDMap(subuidRanges),
-		gids: createIDMap(subgidRanges),
-	}, nil
-}
-
-// NewIDMappingsFromMaps creates a new mapping from two slices
-// Deprecated: this is a temporary shim while transitioning to IDMapping
-func NewIDMappingsFromMaps(uids []IDMap, gids []IDMap) *IDMappings {
-	return &IDMappings{uids: uids, gids: gids}
-}
-
-// RootPair returns a uid and gid pair for the root user. The error is ignored
-// because a root user always exists, and the defaults are correct when the uid
-// and gid maps are empty.
-func (i *IDMappings) RootPair() IDPair {
-	uid, gid, _ := GetRootUIDGID(i.uids, i.gids)
-	return IDPair{UID: uid, GID: gid}
-}
-
-// ToHost returns the host UID and GID for the container uid, gid.
-// Remapping is only performed if the ids aren't already the remapped root ids
-func (i *IDMappings) ToHost(pair IDPair) (IDPair, error) {
-	var err error
-	target := i.RootPair()
-
-	if pair.UID != target.UID {
-		target.UID, err = toHost(pair.UID, i.uids)
-		if err != nil {
-			return target, err
-		}
-	}
-
-	if pair.GID != target.GID {
-		target.GID, err = toHost(pair.GID, i.gids)
-	}
-	return target, err
-}
-
-// ToContainer returns the container UID and GID for the host uid and gid
-func (i *IDMappings) ToContainer(pair IDPair) (int, int, error) {
-	uid, err := toContainer(pair.UID, i.uids)
-	if err != nil {
-		return -1, -1, err
-	}
-	gid, err := toContainer(pair.GID, i.gids)
-	return uid, gid, err
-}
-
-// Empty returns true if there are no id mappings
-func (i *IDMappings) Empty() bool {
-	return len(i.uids) == 0 && len(i.gids) == 0
-}
-
-// UIDs return the UID mapping
-// TODO: remove this once everything has been refactored to use pairs
-func (i *IDMappings) UIDs() []IDMap {
-	return i.uids
-}
-
-// GIDs return the UID mapping
-// TODO: remove this once everything has been refactored to use pairs
-func (i *IDMappings) GIDs() []IDMap {
-	return i.gids
-}
-
-func createIDMap(subidRanges ranges) []IDMap {
-	idMap := []IDMap{}
-
-	// sort the ranges by lowest ID first
-	sort.Sort(subidRanges)
-	containerID := 0
-	for _, idrange := range subidRanges {
-		idMap = append(idMap, IDMap{
-			ContainerID: containerID,
-			HostID:      idrange.Start,
-			Size:        idrange.Length,
-		})
-		containerID = containerID + idrange.Length
-	}
-	return idMap
-}
-
-func parseSubuid(username string) (ranges, error) {
-	return parseSubidFile(subuidFileName, username)
-}
-
-func parseSubgid(username string) (ranges, error) {
-	return parseSubidFile(subgidFileName, username)
-}
-
-// parseSubidFile will read the appropriate file (/etc/subuid or /etc/subgid)
-// and return all found ranges for a specified username. If the special value
-// "ALL" is supplied for username, then all ranges in the file will be returned
-func parseSubidFile(path, username string) (ranges, error) {
-	var rangeList ranges
-
-	subidFile, err := os.Open(path)
-	if err != nil {
-		return rangeList, err
-	}
-	defer subidFile.Close()
-
-	s := bufio.NewScanner(subidFile)
-	for s.Scan() {
-		if err := s.Err(); err != nil {
-			return rangeList, err
-		}
-
-		text := strings.TrimSpace(s.Text())
-		if text == "" || strings.HasPrefix(text, "#") {
-			continue
-		}
-		parts := strings.Split(text, ":")
-		if len(parts) != 3 {
-			return rangeList, fmt.Errorf("Cannot parse subuid/gid information: Format not correct for %s file", path)
-		}
-		if parts[0] == username || username == "ALL" {
-			startid, err := strconv.Atoi(parts[1])
-			if err != nil {
-				return rangeList, fmt.Errorf("String to int conversion failed during subuid/gid parsing of %s: %v", path, err)
-			}
-			length, err := strconv.Atoi(parts[2])
-			if err != nil {
-				return rangeList, fmt.Errorf("String to int conversion failed during subuid/gid parsing of %s: %v", path, err)
-			}
-			rangeList = append(rangeList, subIDRange{startid, length})
-		}
-	}
-	return rangeList, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/idtools_unix.go b/vendor/github.com/containers/storage/pkg/idtools/idtools_unix.go
deleted file mode 100644
index b5870506a0..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/idtools_unix.go
+++ /dev/null
@@ -1,204 +0,0 @@
-// +build !windows
-
-package idtools
-
-import (
-	"bytes"
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"strings"
-	"sync"
-
-	"github.com/containers/storage/pkg/system"
-	"github.com/opencontainers/runc/libcontainer/user"
-)
-
-var (
-	entOnce   sync.Once
-	getentCmd string
-)
-
-func mkdirAs(path string, mode os.FileMode, ownerUID, ownerGID int, mkAll, chownExisting bool) error {
-	// make an array containing the original path asked for, plus (for mkAll == true)
-	// all path components leading up to the complete path that don't exist before we MkdirAll
-	// so that we can chown all of them properly at the end.  If chownExisting is false, we won't
-	// chown the full directory path if it exists
-	var paths []string
-	if _, err := os.Stat(path); err != nil && os.IsNotExist(err) {
-		paths = []string{path}
-	} else if err == nil && chownExisting {
-		// short-circuit--we were called with an existing directory and chown was requested
-		return os.Chown(path, ownerUID, ownerGID)
-	} else if err == nil {
-		// nothing to do; directory path fully exists already and chown was NOT requested
-		return nil
-	}
-
-	if mkAll {
-		// walk back to "/" looking for directories which do not exist
-		// and add them to the paths array for chown after creation
-		dirPath := path
-		for {
-			dirPath = filepath.Dir(dirPath)
-			if dirPath == "/" {
-				break
-			}
-			if _, err := os.Stat(dirPath); err != nil && os.IsNotExist(err) {
-				paths = append(paths, dirPath)
-			}
-		}
-		if err := system.MkdirAll(path, mode, ""); err != nil && !os.IsExist(err) {
-			return err
-		}
-	} else {
-		if err := os.Mkdir(path, mode); err != nil && !os.IsExist(err) {
-			return err
-		}
-	}
-	// even if it existed, we will chown the requested path + any subpaths that
-	// didn't exist when we called MkdirAll
-	for _, pathComponent := range paths {
-		if err := os.Chown(pathComponent, ownerUID, ownerGID); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// CanAccess takes a valid (existing) directory and a uid, gid pair and determines
-// if that uid, gid pair has access (execute bit) to the directory
-func CanAccess(path string, pair IDPair) bool {
-	statInfo, err := system.Stat(path)
-	if err != nil {
-		return false
-	}
-	fileMode := os.FileMode(statInfo.Mode())
-	permBits := fileMode.Perm()
-	return accessible(statInfo.UID() == uint32(pair.UID),
-		statInfo.GID() == uint32(pair.GID), permBits)
-}
-
-func accessible(isOwner, isGroup bool, perms os.FileMode) bool {
-	if isOwner && (perms&0100 == 0100) {
-		return true
-	}
-	if isGroup && (perms&0010 == 0010) {
-		return true
-	}
-	if perms&0001 == 0001 {
-		return true
-	}
-	return false
-}
-
-// LookupUser uses traditional local system files lookup (from libcontainer/user) on a username,
-// followed by a call to `getent` for supporting host configured non-files passwd and group dbs
-func LookupUser(username string) (user.User, error) {
-	// first try a local system files lookup using existing capabilities
-	usr, err := user.LookupUser(username)
-	if err == nil {
-		return usr, nil
-	}
-	// local files lookup failed; attempt to call `getent` to query configured passwd dbs
-	usr, err = getentUser(fmt.Sprintf("%s %s", "passwd", username))
-	if err != nil {
-		return user.User{}, err
-	}
-	return usr, nil
-}
-
-// LookupUID uses traditional local system files lookup (from libcontainer/user) on a uid,
-// followed by a call to `getent` for supporting host configured non-files passwd and group dbs
-func LookupUID(uid int) (user.User, error) {
-	// first try a local system files lookup using existing capabilities
-	usr, err := user.LookupUid(uid)
-	if err == nil {
-		return usr, nil
-	}
-	// local files lookup failed; attempt to call `getent` to query configured passwd dbs
-	return getentUser(fmt.Sprintf("%s %d", "passwd", uid))
-}
-
-func getentUser(args string) (user.User, error) {
-	reader, err := callGetent(args)
-	if err != nil {
-		return user.User{}, err
-	}
-	users, err := user.ParsePasswd(reader)
-	if err != nil {
-		return user.User{}, err
-	}
-	if len(users) == 0 {
-		return user.User{}, fmt.Errorf("getent failed to find passwd entry for %q", strings.Split(args, " ")[1])
-	}
-	return users[0], nil
-}
-
-// LookupGroup uses traditional local system files lookup (from libcontainer/user) on a group name,
-// followed by a call to `getent` for supporting host configured non-files passwd and group dbs
-func LookupGroup(groupname string) (user.Group, error) {
-	// first try a local system files lookup using existing capabilities
-	group, err := user.LookupGroup(groupname)
-	if err == nil {
-		return group, nil
-	}
-	// local files lookup failed; attempt to call `getent` to query configured group dbs
-	return getentGroup(fmt.Sprintf("%s %s", "group", groupname))
-}
-
-// LookupGID uses traditional local system files lookup (from libcontainer/user) on a group ID,
-// followed by a call to `getent` for supporting host configured non-files passwd and group dbs
-func LookupGID(gid int) (user.Group, error) {
-	// first try a local system files lookup using existing capabilities
-	group, err := user.LookupGid(gid)
-	if err == nil {
-		return group, nil
-	}
-	// local files lookup failed; attempt to call `getent` to query configured group dbs
-	return getentGroup(fmt.Sprintf("%s %d", "group", gid))
-}
-
-func getentGroup(args string) (user.Group, error) {
-	reader, err := callGetent(args)
-	if err != nil {
-		return user.Group{}, err
-	}
-	groups, err := user.ParseGroup(reader)
-	if err != nil {
-		return user.Group{}, err
-	}
-	if len(groups) == 0 {
-		return user.Group{}, fmt.Errorf("getent failed to find groups entry for %q", strings.Split(args, " ")[1])
-	}
-	return groups[0], nil
-}
-
-func callGetent(args string) (io.Reader, error) {
-	entOnce.Do(func() { getentCmd, _ = resolveBinary("getent") })
-	// if no `getent` command on host, can't do anything else
-	if getentCmd == "" {
-		return nil, fmt.Errorf("")
-	}
-	out, err := execCmd(getentCmd, args)
-	if err != nil {
-		exitCode, errC := system.GetExitCode(err)
-		if errC != nil {
-			return nil, err
-		}
-		switch exitCode {
-		case 1:
-			return nil, fmt.Errorf("getent reported invalid parameters/database unknown")
-		case 2:
-			terms := strings.Split(args, " ")
-			return nil, fmt.Errorf("getent unable to find entry %q in %s database", terms[1], terms[0])
-		case 3:
-			return nil, fmt.Errorf("getent database doesn't support enumeration")
-		default:
-			return nil, err
-		}
-
-	}
-	return bytes.NewReader(out), nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/idtools_windows.go b/vendor/github.com/containers/storage/pkg/idtools/idtools_windows.go
deleted file mode 100644
index dbf6bc4c94..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/idtools_windows.go
+++ /dev/null
@@ -1,25 +0,0 @@
-// +build windows
-
-package idtools
-
-import (
-	"os"
-
-	"github.com/containers/storage/pkg/system"
-)
-
-// Platforms such as Windows do not support the UID/GID concept. So make this
-// just a wrapper around system.MkdirAll.
-func mkdirAs(path string, mode os.FileMode, ownerUID, ownerGID int, mkAll, chownExisting bool) error {
-	if err := system.MkdirAll(path, mode, ""); err != nil && !os.IsExist(err) {
-		return err
-	}
-	return nil
-}
-
-// CanAccess takes a valid (existing) directory and a uid, gid pair and determines
-// if that uid, gid pair has access (execute bit) to the directory
-// Windows does not require/support this function, so always return true
-func CanAccess(path string, pair IDPair) bool {
-	return true
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_linux.go b/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_linux.go
deleted file mode 100644
index 9da7975e2c..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_linux.go
+++ /dev/null
@@ -1,164 +0,0 @@
-package idtools
-
-import (
-	"fmt"
-	"regexp"
-	"sort"
-	"strconv"
-	"strings"
-	"sync"
-)
-
-// add a user and/or group to Linux /etc/passwd, /etc/group using standard
-// Linux distribution commands:
-// adduser --system --shell /bin/false --disabled-login --disabled-password --no-create-home --group <username>
-// useradd -r -s /bin/false <username>
-
-var (
-	once        sync.Once
-	userCommand string
-
-	cmdTemplates = map[string]string{
-		"adduser": "--system --shell /bin/false --no-create-home --disabled-login --disabled-password --group %s",
-		"useradd": "-r -s /bin/false %s",
-		"usermod": "-%s %d-%d %s",
-	}
-
-	idOutRegexp = regexp.MustCompile(`uid=([0-9]+).*gid=([0-9]+)`)
-	// default length for a UID/GID subordinate range
-	defaultRangeLen   = 65536
-	defaultRangeStart = 100000
-	userMod           = "usermod"
-)
-
-// AddNamespaceRangesUser takes a username and uses the standard system
-// utility to create a system user/group pair used to hold the
-// /etc/sub{uid,gid} ranges which will be used for user namespace
-// mapping ranges in containers.
-func AddNamespaceRangesUser(name string) (int, int, error) {
-	if err := addUser(name); err != nil {
-		return -1, -1, fmt.Errorf("Error adding user %q: %v", name, err)
-	}
-
-	// Query the system for the created uid and gid pair
-	out, err := execCmd("id", name)
-	if err != nil {
-		return -1, -1, fmt.Errorf("Error trying to find uid/gid for new user %q: %v", name, err)
-	}
-	matches := idOutRegexp.FindStringSubmatch(strings.TrimSpace(string(out)))
-	if len(matches) != 3 {
-		return -1, -1, fmt.Errorf("Can't find uid, gid from `id` output: %q", string(out))
-	}
-	uid, err := strconv.Atoi(matches[1])
-	if err != nil {
-		return -1, -1, fmt.Errorf("Can't convert found uid (%s) to int: %v", matches[1], err)
-	}
-	gid, err := strconv.Atoi(matches[2])
-	if err != nil {
-		return -1, -1, fmt.Errorf("Can't convert found gid (%s) to int: %v", matches[2], err)
-	}
-
-	// Now we need to create the subuid/subgid ranges for our new user/group (system users
-	// do not get auto-created ranges in subuid/subgid)
-
-	if err := createSubordinateRanges(name); err != nil {
-		return -1, -1, fmt.Errorf("Couldn't create subordinate ID ranges: %v", err)
-	}
-	return uid, gid, nil
-}
-
-func addUser(userName string) error {
-	once.Do(func() {
-		// set up which commands are used for adding users/groups dependent on distro
-		if _, err := resolveBinary("adduser"); err == nil {
-			userCommand = "adduser"
-		} else if _, err := resolveBinary("useradd"); err == nil {
-			userCommand = "useradd"
-		}
-	})
-	if userCommand == "" {
-		return fmt.Errorf("Cannot add user; no useradd/adduser binary found")
-	}
-	args := fmt.Sprintf(cmdTemplates[userCommand], userName)
-	out, err := execCmd(userCommand, args)
-	if err != nil {
-		return fmt.Errorf("Failed to add user with error: %v; output: %q", err, string(out))
-	}
-	return nil
-}
-
-func createSubordinateRanges(name string) error {
-
-	// first, we should verify that ranges weren't automatically created
-	// by the distro tooling
-	ranges, err := parseSubuid(name)
-	if err != nil {
-		return fmt.Errorf("Error while looking for subuid ranges for user %q: %v", name, err)
-	}
-	if len(ranges) == 0 {
-		// no UID ranges; let's create one
-		startID, err := findNextUIDRange()
-		if err != nil {
-			return fmt.Errorf("Can't find available subuid range: %v", err)
-		}
-		out, err := execCmd(userMod, fmt.Sprintf(cmdTemplates[userMod], "v", startID, startID+defaultRangeLen-1, name))
-		if err != nil {
-			return fmt.Errorf("Unable to add subuid range to user: %q; output: %s, err: %v", name, out, err)
-		}
-	}
-
-	ranges, err = parseSubgid(name)
-	if err != nil {
-		return fmt.Errorf("Error while looking for subgid ranges for user %q: %v", name, err)
-	}
-	if len(ranges) == 0 {
-		// no GID ranges; let's create one
-		startID, err := findNextGIDRange()
-		if err != nil {
-			return fmt.Errorf("Can't find available subgid range: %v", err)
-		}
-		out, err := execCmd(userMod, fmt.Sprintf(cmdTemplates[userMod], "w", startID, startID+defaultRangeLen-1, name))
-		if err != nil {
-			return fmt.Errorf("Unable to add subgid range to user: %q; output: %s, err: %v", name, out, err)
-		}
-	}
-	return nil
-}
-
-func findNextUIDRange() (int, error) {
-	ranges, err := parseSubuid("ALL")
-	if err != nil {
-		return -1, fmt.Errorf("Couldn't parse all ranges in /etc/subuid file: %v", err)
-	}
-	sort.Sort(ranges)
-	return findNextRangeStart(ranges)
-}
-
-func findNextGIDRange() (int, error) {
-	ranges, err := parseSubgid("ALL")
-	if err != nil {
-		return -1, fmt.Errorf("Couldn't parse all ranges in /etc/subgid file: %v", err)
-	}
-	sort.Sort(ranges)
-	return findNextRangeStart(ranges)
-}
-
-func findNextRangeStart(rangeList ranges) (int, error) {
-	startID := defaultRangeStart
-	for _, arange := range rangeList {
-		if wouldOverlap(arange, startID) {
-			startID = arange.Start + arange.Length
-		}
-	}
-	return startID, nil
-}
-
-func wouldOverlap(arange subIDRange, ID int) bool {
-	low := ID
-	high := ID + defaultRangeLen
-	if (low >= arange.Start && low <= arange.Start+arange.Length) ||
-		(high <= arange.Start+arange.Length && high >= arange.Start) {
-		return true
-	}
-	return false
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_unsupported.go b/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_unsupported.go
deleted file mode 100644
index d98b354cbd..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/usergroupadd_unsupported.go
+++ /dev/null
@@ -1,12 +0,0 @@
-// +build !linux
-
-package idtools
-
-import "fmt"
-
-// AddNamespaceRangesUser takes a name and finds an unused uid, gid pair
-// and calls the appropriate helper function to add the group and then
-// the user to the group in /etc/group and /etc/passwd respectively.
-func AddNamespaceRangesUser(name string) (int, int, error) {
-	return -1, -1, fmt.Errorf("No support for adding users or groups on this OS")
-}
diff --git a/vendor/github.com/containers/storage/pkg/idtools/utils_unix.go b/vendor/github.com/containers/storage/pkg/idtools/utils_unix.go
deleted file mode 100644
index 9703ecbd9d..0000000000
--- a/vendor/github.com/containers/storage/pkg/idtools/utils_unix.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// +build !windows
-
-package idtools
-
-import (
-	"fmt"
-	"os/exec"
-	"path/filepath"
-	"strings"
-)
-
-func resolveBinary(binname string) (string, error) {
-	binaryPath, err := exec.LookPath(binname)
-	if err != nil {
-		return "", err
-	}
-	resolvedPath, err := filepath.EvalSymlinks(binaryPath)
-	if err != nil {
-		return "", err
-	}
-	//only return no error if the final resolved binary basename
-	//matches what was searched for
-	if filepath.Base(resolvedPath) == binname {
-		return resolvedPath, nil
-	}
-	return "", fmt.Errorf("Binary %q does not resolve to a binary of that name in $PATH (%q)", binname, resolvedPath)
-}
-
-func execCmd(cmd, args string) ([]byte, error) {
-	execCmd := exec.Command(cmd, strings.Split(args, " ")...)
-	return execCmd.CombinedOutput()
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/buffer.go b/vendor/github.com/containers/storage/pkg/ioutils/buffer.go
deleted file mode 100644
index 3d737b3e19..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/buffer.go
+++ /dev/null
@@ -1,51 +0,0 @@
-package ioutils
-
-import (
-	"errors"
-	"io"
-)
-
-var errBufferFull = errors.New("buffer is full")
-
-type fixedBuffer struct {
-	buf      []byte
-	pos      int
-	lastRead int
-}
-
-func (b *fixedBuffer) Write(p []byte) (int, error) {
-	n := copy(b.buf[b.pos:cap(b.buf)], p)
-	b.pos += n
-
-	if n < len(p) {
-		if b.pos == cap(b.buf) {
-			return n, errBufferFull
-		}
-		return n, io.ErrShortWrite
-	}
-	return n, nil
-}
-
-func (b *fixedBuffer) Read(p []byte) (int, error) {
-	n := copy(p, b.buf[b.lastRead:b.pos])
-	b.lastRead += n
-	return n, nil
-}
-
-func (b *fixedBuffer) Len() int {
-	return b.pos - b.lastRead
-}
-
-func (b *fixedBuffer) Cap() int {
-	return cap(b.buf)
-}
-
-func (b *fixedBuffer) Reset() {
-	b.pos = 0
-	b.lastRead = 0
-	b.buf = b.buf[:0]
-}
-
-func (b *fixedBuffer) String() string {
-	return string(b.buf[b.lastRead:b.pos])
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/bytespipe.go b/vendor/github.com/containers/storage/pkg/ioutils/bytespipe.go
deleted file mode 100644
index 72a04f3491..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/bytespipe.go
+++ /dev/null
@@ -1,186 +0,0 @@
-package ioutils
-
-import (
-	"errors"
-	"io"
-	"sync"
-)
-
-// maxCap is the highest capacity to use in byte slices that buffer data.
-const maxCap = 1e6
-
-// minCap is the lowest capacity to use in byte slices that buffer data
-const minCap = 64
-
-// blockThreshold is the minimum number of bytes in the buffer which will cause
-// a write to BytesPipe to block when allocating a new slice.
-const blockThreshold = 1e6
-
-var (
-	// ErrClosed is returned when Write is called on a closed BytesPipe.
-	ErrClosed = errors.New("write to closed BytesPipe")
-
-	bufPools     = make(map[int]*sync.Pool)
-	bufPoolsLock sync.Mutex
-)
-
-// BytesPipe is io.ReadWriteCloser which works similarly to pipe(queue).
-// All written data may be read at most once. Also, BytesPipe allocates
-// and releases new byte slices to adjust to current needs, so the buffer
-// won't be overgrown after peak loads.
-type BytesPipe struct {
-	mu       sync.Mutex
-	wait     *sync.Cond
-	buf      []*fixedBuffer
-	bufLen   int
-	closeErr error // error to return from next Read. set to nil if not closed.
-}
-
-// NewBytesPipe creates new BytesPipe, initialized by specified slice.
-// If buf is nil, then it will be initialized with slice which cap is 64.
-// buf will be adjusted in a way that len(buf) == 0, cap(buf) == cap(buf).
-func NewBytesPipe() *BytesPipe {
-	bp := &BytesPipe{}
-	bp.buf = append(bp.buf, getBuffer(minCap))
-	bp.wait = sync.NewCond(&bp.mu)
-	return bp
-}
-
-// Write writes p to BytesPipe.
-// It can allocate new []byte slices in a process of writing.
-func (bp *BytesPipe) Write(p []byte) (int, error) {
-	bp.mu.Lock()
-
-	written := 0
-loop0:
-	for {
-		if bp.closeErr != nil {
-			bp.mu.Unlock()
-			return written, ErrClosed
-		}
-
-		if len(bp.buf) == 0 {
-			bp.buf = append(bp.buf, getBuffer(64))
-		}
-		// get the last buffer
-		b := bp.buf[len(bp.buf)-1]
-
-		n, err := b.Write(p)
-		written += n
-		bp.bufLen += n
-
-		// errBufferFull is an error we expect to get if the buffer is full
-		if err != nil && err != errBufferFull {
-			bp.wait.Broadcast()
-			bp.mu.Unlock()
-			return written, err
-		}
-
-		// if there was enough room to write all then break
-		if len(p) == n {
-			break
-		}
-
-		// more data: write to the next slice
-		p = p[n:]
-
-		// make sure the buffer doesn't grow too big from this write
-		for bp.bufLen >= blockThreshold {
-			bp.wait.Wait()
-			if bp.closeErr != nil {
-				continue loop0
-			}
-		}
-
-		// add new byte slice to the buffers slice and continue writing
-		nextCap := b.Cap() * 2
-		if nextCap > maxCap {
-			nextCap = maxCap
-		}
-		bp.buf = append(bp.buf, getBuffer(nextCap))
-	}
-	bp.wait.Broadcast()
-	bp.mu.Unlock()
-	return written, nil
-}
-
-// CloseWithError causes further reads from a BytesPipe to return immediately.
-func (bp *BytesPipe) CloseWithError(err error) error {
-	bp.mu.Lock()
-	if err != nil {
-		bp.closeErr = err
-	} else {
-		bp.closeErr = io.EOF
-	}
-	bp.wait.Broadcast()
-	bp.mu.Unlock()
-	return nil
-}
-
-// Close causes further reads from a BytesPipe to return immediately.
-func (bp *BytesPipe) Close() error {
-	return bp.CloseWithError(nil)
-}
-
-// Read reads bytes from BytesPipe.
-// Data could be read only once.
-func (bp *BytesPipe) Read(p []byte) (n int, err error) {
-	bp.mu.Lock()
-	if bp.bufLen == 0 {
-		if bp.closeErr != nil {
-			bp.mu.Unlock()
-			return 0, bp.closeErr
-		}
-		bp.wait.Wait()
-		if bp.bufLen == 0 && bp.closeErr != nil {
-			err := bp.closeErr
-			bp.mu.Unlock()
-			return 0, err
-		}
-	}
-
-	for bp.bufLen > 0 {
-		b := bp.buf[0]
-		read, _ := b.Read(p) // ignore error since fixedBuffer doesn't really return an error
-		n += read
-		bp.bufLen -= read
-
-		if b.Len() == 0 {
-			// it's empty so return it to the pool and move to the next one
-			returnBuffer(b)
-			bp.buf[0] = nil
-			bp.buf = bp.buf[1:]
-		}
-
-		if len(p) == read {
-			break
-		}
-
-		p = p[read:]
-	}
-
-	bp.wait.Broadcast()
-	bp.mu.Unlock()
-	return
-}
-
-func returnBuffer(b *fixedBuffer) {
-	b.Reset()
-	bufPoolsLock.Lock()
-	pool := bufPools[b.Cap()]
-	bufPoolsLock.Unlock()
-	if pool != nil {
-		pool.Put(b)
-	}
-}
-
-func getBuffer(size int) *fixedBuffer {
-	bufPoolsLock.Lock()
-	pool, ok := bufPools[size]
-	if !ok {
-		pool = &sync.Pool{New: func() interface{} { return &fixedBuffer{buf: make([]byte, 0, size)} }}
-		bufPools[size] = pool
-	}
-	bufPoolsLock.Unlock()
-	return pool.Get().(*fixedBuffer)
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/fswriters.go b/vendor/github.com/containers/storage/pkg/ioutils/fswriters.go
deleted file mode 100644
index a56c462651..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/fswriters.go
+++ /dev/null
@@ -1,162 +0,0 @@
-package ioutils
-
-import (
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-)
-
-// NewAtomicFileWriter returns WriteCloser so that writing to it writes to a
-// temporary file and closing it atomically changes the temporary file to
-// destination path. Writing and closing concurrently is not allowed.
-func NewAtomicFileWriter(filename string, perm os.FileMode) (io.WriteCloser, error) {
-	f, err := ioutil.TempFile(filepath.Dir(filename), ".tmp-"+filepath.Base(filename))
-	if err != nil {
-		return nil, err
-	}
-
-	abspath, err := filepath.Abs(filename)
-	if err != nil {
-		return nil, err
-	}
-	return &atomicFileWriter{
-		f:    f,
-		fn:   abspath,
-		perm: perm,
-	}, nil
-}
-
-// AtomicWriteFile atomically writes data to a file named by filename.
-func AtomicWriteFile(filename string, data []byte, perm os.FileMode) error {
-	f, err := NewAtomicFileWriter(filename, perm)
-	if err != nil {
-		return err
-	}
-	n, err := f.Write(data)
-	if err == nil && n < len(data) {
-		err = io.ErrShortWrite
-		f.(*atomicFileWriter).writeErr = err
-	}
-	if err1 := f.Close(); err == nil {
-		err = err1
-	}
-	return err
-}
-
-type atomicFileWriter struct {
-	f        *os.File
-	fn       string
-	writeErr error
-	perm     os.FileMode
-}
-
-func (w *atomicFileWriter) Write(dt []byte) (int, error) {
-	n, err := w.f.Write(dt)
-	if err != nil {
-		w.writeErr = err
-	}
-	return n, err
-}
-
-func (w *atomicFileWriter) Close() (retErr error) {
-	defer func() {
-		if retErr != nil || w.writeErr != nil {
-			os.Remove(w.f.Name())
-		}
-	}()
-	if err := w.f.Sync(); err != nil {
-		w.f.Close()
-		return err
-	}
-	if err := w.f.Close(); err != nil {
-		return err
-	}
-	if err := os.Chmod(w.f.Name(), w.perm); err != nil {
-		return err
-	}
-	if w.writeErr == nil {
-		return os.Rename(w.f.Name(), w.fn)
-	}
-	return nil
-}
-
-// AtomicWriteSet is used to atomically write a set
-// of files and ensure they are visible at the same time.
-// Must be committed to a new directory.
-type AtomicWriteSet struct {
-	root string
-}
-
-// NewAtomicWriteSet creates a new atomic write set to
-// atomically create a set of files. The given directory
-// is used as the base directory for storing files before
-// commit. If no temporary directory is given the system
-// default is used.
-func NewAtomicWriteSet(tmpDir string) (*AtomicWriteSet, error) {
-	td, err := ioutil.TempDir(tmpDir, "write-set-")
-	if err != nil {
-		return nil, err
-	}
-
-	return &AtomicWriteSet{
-		root: td,
-	}, nil
-}
-
-// WriteFile writes a file to the set, guaranteeing the file
-// has been synced.
-func (ws *AtomicWriteSet) WriteFile(filename string, data []byte, perm os.FileMode) error {
-	f, err := ws.FileWriter(filename, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, perm)
-	if err != nil {
-		return err
-	}
-	n, err := f.Write(data)
-	if err == nil && n < len(data) {
-		err = io.ErrShortWrite
-	}
-	if err1 := f.Close(); err == nil {
-		err = err1
-	}
-	return err
-}
-
-type syncFileCloser struct {
-	*os.File
-}
-
-func (w syncFileCloser) Close() error {
-	err := w.File.Sync()
-	if err1 := w.File.Close(); err == nil {
-		err = err1
-	}
-	return err
-}
-
-// FileWriter opens a file writer inside the set. The file
-// should be synced and closed before calling commit.
-func (ws *AtomicWriteSet) FileWriter(name string, flag int, perm os.FileMode) (io.WriteCloser, error) {
-	f, err := os.OpenFile(filepath.Join(ws.root, name), flag, perm)
-	if err != nil {
-		return nil, err
-	}
-	return syncFileCloser{f}, nil
-}
-
-// Cancel cancels the set and removes all temporary data
-// created in the set.
-func (ws *AtomicWriteSet) Cancel() error {
-	return os.RemoveAll(ws.root)
-}
-
-// Commit moves all created files to the target directory. The
-// target directory must not exist and the parent of the target
-// directory must exist.
-func (ws *AtomicWriteSet) Commit(target string) error {
-	return os.Rename(ws.root, target)
-}
-
-// String returns the location the set is writing to.
-func (ws *AtomicWriteSet) String() string {
-	return ws.root
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/readers.go b/vendor/github.com/containers/storage/pkg/ioutils/readers.go
deleted file mode 100644
index 63f3c07f46..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/readers.go
+++ /dev/null
@@ -1,154 +0,0 @@
-package ioutils
-
-import (
-	"crypto/sha256"
-	"encoding/hex"
-	"io"
-
-	"golang.org/x/net/context"
-)
-
-type readCloserWrapper struct {
-	io.Reader
-	closer func() error
-}
-
-func (r *readCloserWrapper) Close() error {
-	return r.closer()
-}
-
-// NewReadCloserWrapper returns a new io.ReadCloser.
-func NewReadCloserWrapper(r io.Reader, closer func() error) io.ReadCloser {
-	return &readCloserWrapper{
-		Reader: r,
-		closer: closer,
-	}
-}
-
-type readerErrWrapper struct {
-	reader io.Reader
-	closer func()
-}
-
-func (r *readerErrWrapper) Read(p []byte) (int, error) {
-	n, err := r.reader.Read(p)
-	if err != nil {
-		r.closer()
-	}
-	return n, err
-}
-
-// NewReaderErrWrapper returns a new io.Reader.
-func NewReaderErrWrapper(r io.Reader, closer func()) io.Reader {
-	return &readerErrWrapper{
-		reader: r,
-		closer: closer,
-	}
-}
-
-// HashData returns the sha256 sum of src.
-func HashData(src io.Reader) (string, error) {
-	h := sha256.New()
-	if _, err := io.Copy(h, src); err != nil {
-		return "", err
-	}
-	return "sha256:" + hex.EncodeToString(h.Sum(nil)), nil
-}
-
-// OnEOFReader wraps an io.ReadCloser and a function
-// the function will run at the end of file or close the file.
-type OnEOFReader struct {
-	Rc io.ReadCloser
-	Fn func()
-}
-
-func (r *OnEOFReader) Read(p []byte) (n int, err error) {
-	n, err = r.Rc.Read(p)
-	if err == io.EOF {
-		r.runFunc()
-	}
-	return
-}
-
-// Close closes the file and run the function.
-func (r *OnEOFReader) Close() error {
-	err := r.Rc.Close()
-	r.runFunc()
-	return err
-}
-
-func (r *OnEOFReader) runFunc() {
-	if fn := r.Fn; fn != nil {
-		fn()
-		r.Fn = nil
-	}
-}
-
-// cancelReadCloser wraps an io.ReadCloser with a context for cancelling read
-// operations.
-type cancelReadCloser struct {
-	cancel func()
-	pR     *io.PipeReader // Stream to read from
-	pW     *io.PipeWriter
-}
-
-// NewCancelReadCloser creates a wrapper that closes the ReadCloser when the
-// context is cancelled. The returned io.ReadCloser must be closed when it is
-// no longer needed.
-func NewCancelReadCloser(ctx context.Context, in io.ReadCloser) io.ReadCloser {
-	pR, pW := io.Pipe()
-
-	// Create a context used to signal when the pipe is closed
-	doneCtx, cancel := context.WithCancel(context.Background())
-
-	p := &cancelReadCloser{
-		cancel: cancel,
-		pR:     pR,
-		pW:     pW,
-	}
-
-	go func() {
-		_, err := io.Copy(pW, in)
-		select {
-		case <-ctx.Done():
-			// If the context was closed, p.closeWithError
-			// was already called. Calling it again would
-			// change the error that Read returns.
-		default:
-			p.closeWithError(err)
-		}
-		in.Close()
-	}()
-	go func() {
-		for {
-			select {
-			case <-ctx.Done():
-				p.closeWithError(ctx.Err())
-			case <-doneCtx.Done():
-				return
-			}
-		}
-	}()
-
-	return p
-}
-
-// Read wraps the Read method of the pipe that provides data from the wrapped
-// ReadCloser.
-func (p *cancelReadCloser) Read(buf []byte) (n int, err error) {
-	return p.pR.Read(buf)
-}
-
-// closeWithError closes the wrapper and its underlying reader. It will
-// cause future calls to Read to return err.
-func (p *cancelReadCloser) closeWithError(err error) {
-	p.pW.CloseWithError(err)
-	p.cancel()
-}
-
-// Close closes the wrapper its underlying reader. It will cause
-// future calls to Read to return io.EOF.
-func (p *cancelReadCloser) Close() error {
-	p.closeWithError(io.EOF)
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/temp_unix.go b/vendor/github.com/containers/storage/pkg/ioutils/temp_unix.go
deleted file mode 100644
index 1539ad21b5..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/temp_unix.go
+++ /dev/null
@@ -1,10 +0,0 @@
-// +build !windows
-
-package ioutils
-
-import "io/ioutil"
-
-// TempDir on Unix systems is equivalent to ioutil.TempDir.
-func TempDir(dir, prefix string) (string, error) {
-	return ioutil.TempDir(dir, prefix)
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/temp_windows.go b/vendor/github.com/containers/storage/pkg/ioutils/temp_windows.go
deleted file mode 100644
index c719c120b5..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/temp_windows.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// +build windows
-
-package ioutils
-
-import (
-	"io/ioutil"
-
-	"github.com/containers/storage/pkg/longpath"
-)
-
-// TempDir is the equivalent of ioutil.TempDir, except that the result is in Windows longpath format.
-func TempDir(dir, prefix string) (string, error) {
-	tempDir, err := ioutil.TempDir(dir, prefix)
-	if err != nil {
-		return "", err
-	}
-	return longpath.AddPrefix(tempDir), nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/writeflusher.go b/vendor/github.com/containers/storage/pkg/ioutils/writeflusher.go
deleted file mode 100644
index 52a4901ade..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/writeflusher.go
+++ /dev/null
@@ -1,92 +0,0 @@
-package ioutils
-
-import (
-	"io"
-	"sync"
-)
-
-// WriteFlusher wraps the Write and Flush operation ensuring that every write
-// is a flush. In addition, the Close method can be called to intercept
-// Read/Write calls if the targets lifecycle has already ended.
-type WriteFlusher struct {
-	w           io.Writer
-	flusher     flusher
-	flushed     chan struct{}
-	flushedOnce sync.Once
-	closed      chan struct{}
-	closeLock   sync.Mutex
-}
-
-type flusher interface {
-	Flush()
-}
-
-var errWriteFlusherClosed = io.EOF
-
-func (wf *WriteFlusher) Write(b []byte) (n int, err error) {
-	select {
-	case <-wf.closed:
-		return 0, errWriteFlusherClosed
-	default:
-	}
-
-	n, err = wf.w.Write(b)
-	wf.Flush() // every write is a flush.
-	return n, err
-}
-
-// Flush the stream immediately.
-func (wf *WriteFlusher) Flush() {
-	select {
-	case <-wf.closed:
-		return
-	default:
-	}
-
-	wf.flushedOnce.Do(func() {
-		close(wf.flushed)
-	})
-	wf.flusher.Flush()
-}
-
-// Flushed returns the state of flushed.
-// If it's flushed, return true, or else it return false.
-func (wf *WriteFlusher) Flushed() bool {
-	// BUG(stevvooe): Remove this method. Its use is inherently racy. Seems to
-	// be used to detect whether or a response code has been issued or not.
-	// Another hook should be used instead.
-	var flushed bool
-	select {
-	case <-wf.flushed:
-		flushed = true
-	default:
-	}
-	return flushed
-}
-
-// Close closes the write flusher, disallowing any further writes to the
-// target. After the flusher is closed, all calls to write or flush will
-// result in an error.
-func (wf *WriteFlusher) Close() error {
-	wf.closeLock.Lock()
-	defer wf.closeLock.Unlock()
-
-	select {
-	case <-wf.closed:
-		return errWriteFlusherClosed
-	default:
-		close(wf.closed)
-	}
-	return nil
-}
-
-// NewWriteFlusher returns a new WriteFlusher.
-func NewWriteFlusher(w io.Writer) *WriteFlusher {
-	var fl flusher
-	if f, ok := w.(flusher); ok {
-		fl = f
-	} else {
-		fl = &NopFlusher{}
-	}
-	return &WriteFlusher{w: w, flusher: fl, closed: make(chan struct{}), flushed: make(chan struct{})}
-}
diff --git a/vendor/github.com/containers/storage/pkg/ioutils/writers.go b/vendor/github.com/containers/storage/pkg/ioutils/writers.go
deleted file mode 100644
index ccc7f9c23e..0000000000
--- a/vendor/github.com/containers/storage/pkg/ioutils/writers.go
+++ /dev/null
@@ -1,66 +0,0 @@
-package ioutils
-
-import "io"
-
-// NopWriter represents a type which write operation is nop.
-type NopWriter struct{}
-
-func (*NopWriter) Write(buf []byte) (int, error) {
-	return len(buf), nil
-}
-
-type nopWriteCloser struct {
-	io.Writer
-}
-
-func (w *nopWriteCloser) Close() error { return nil }
-
-// NopWriteCloser returns a nopWriteCloser.
-func NopWriteCloser(w io.Writer) io.WriteCloser {
-	return &nopWriteCloser{w}
-}
-
-// NopFlusher represents a type which flush operation is nop.
-type NopFlusher struct{}
-
-// Flush is a nop operation.
-func (f *NopFlusher) Flush() {}
-
-type writeCloserWrapper struct {
-	io.Writer
-	closer func() error
-}
-
-func (r *writeCloserWrapper) Close() error {
-	return r.closer()
-}
-
-// NewWriteCloserWrapper returns a new io.WriteCloser.
-func NewWriteCloserWrapper(r io.Writer, closer func() error) io.WriteCloser {
-	return &writeCloserWrapper{
-		Writer: r,
-		closer: closer,
-	}
-}
-
-// WriteCounter wraps a concrete io.Writer and hold a count of the number
-// of bytes written to the writer during a "session".
-// This can be convenient when write return is masked
-// (e.g., json.Encoder.Encode())
-type WriteCounter struct {
-	Count  int64
-	Writer io.Writer
-}
-
-// NewWriteCounter returns a new WriteCounter.
-func NewWriteCounter(w io.Writer) *WriteCounter {
-	return &WriteCounter{
-		Writer: w,
-	}
-}
-
-func (wc *WriteCounter) Write(p []byte) (count int, err error) {
-	count, err = wc.Writer.Write(p)
-	wc.Count += int64(count)
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/locker/locker.go b/vendor/github.com/containers/storage/pkg/locker/locker.go
deleted file mode 100644
index 0b22ddfab8..0000000000
--- a/vendor/github.com/containers/storage/pkg/locker/locker.go
+++ /dev/null
@@ -1,112 +0,0 @@
-/*
-Package locker provides a mechanism for creating finer-grained locking to help
-free up more global locks to handle other tasks.
-
-The implementation looks close to a sync.Mutex, however the user must provide a
-reference to use to refer to the underlying lock when locking and unlocking,
-and unlock may generate an error.
-
-If a lock with a given name does not exist when `Lock` is called, one is
-created.
-Lock references are automatically cleaned up on `Unlock` if nothing else is
-waiting for the lock.
-*/
-package locker
-
-import (
-	"errors"
-	"sync"
-	"sync/atomic"
-)
-
-// ErrNoSuchLock is returned when the requested lock does not exist
-var ErrNoSuchLock = errors.New("no such lock")
-
-// Locker provides a locking mechanism based on the passed in reference name
-type Locker struct {
-	mu    sync.Mutex
-	locks map[string]*lockCtr
-}
-
-// lockCtr is used by Locker to represent a lock with a given name.
-type lockCtr struct {
-	mu sync.Mutex
-	// waiters is the number of waiters waiting to acquire the lock
-	// this is int32 instead of uint32 so we can add `-1` in `dec()`
-	waiters int32
-}
-
-// inc increments the number of waiters waiting for the lock
-func (l *lockCtr) inc() {
-	atomic.AddInt32(&l.waiters, 1)
-}
-
-// dec decrements the number of waiters waiting on the lock
-func (l *lockCtr) dec() {
-	atomic.AddInt32(&l.waiters, -1)
-}
-
-// count gets the current number of waiters
-func (l *lockCtr) count() int32 {
-	return atomic.LoadInt32(&l.waiters)
-}
-
-// Lock locks the mutex
-func (l *lockCtr) Lock() {
-	l.mu.Lock()
-}
-
-// Unlock unlocks the mutex
-func (l *lockCtr) Unlock() {
-	l.mu.Unlock()
-}
-
-// New creates a new Locker
-func New() *Locker {
-	return &Locker{
-		locks: make(map[string]*lockCtr),
-	}
-}
-
-// Lock locks a mutex with the given name. If it doesn't exist, one is created
-func (l *Locker) Lock(name string) {
-	l.mu.Lock()
-	if l.locks == nil {
-		l.locks = make(map[string]*lockCtr)
-	}
-
-	nameLock, exists := l.locks[name]
-	if !exists {
-		nameLock = &lockCtr{}
-		l.locks[name] = nameLock
-	}
-
-	// increment the nameLock waiters while inside the main mutex
-	// this makes sure that the lock isn't deleted if `Lock` and `Unlock` are called concurrently
-	nameLock.inc()
-	l.mu.Unlock()
-
-	// Lock the nameLock outside the main mutex so we don't block other operations
-	// once locked then we can decrement the number of waiters for this lock
-	nameLock.Lock()
-	nameLock.dec()
-}
-
-// Unlock unlocks the mutex with the given name
-// If the given lock is not being waited on by any other callers, it is deleted
-func (l *Locker) Unlock(name string) error {
-	l.mu.Lock()
-	nameLock, exists := l.locks[name]
-	if !exists {
-		l.mu.Unlock()
-		return ErrNoSuchLock
-	}
-
-	if nameLock.count() == 0 {
-		delete(l.locks, name)
-	}
-	nameLock.Unlock()
-
-	l.mu.Unlock()
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/longpath/longpath.go b/vendor/github.com/containers/storage/pkg/longpath/longpath.go
deleted file mode 100644
index 9b15bfff4c..0000000000
--- a/vendor/github.com/containers/storage/pkg/longpath/longpath.go
+++ /dev/null
@@ -1,26 +0,0 @@
-// longpath introduces some constants and helper functions for handling long paths
-// in Windows, which are expected to be prepended with `\\?\` and followed by either
-// a drive letter, a UNC server\share, or a volume identifier.
-
-package longpath
-
-import (
-	"strings"
-)
-
-// Prefix is the longpath prefix for Windows file paths.
-const Prefix = `\\?\`
-
-// AddPrefix will add the Windows long path prefix to the path provided if
-// it does not already have it.
-func AddPrefix(path string) string {
-	if !strings.HasPrefix(path, Prefix) {
-		if strings.HasPrefix(path, `\\`) {
-			// This is a UNC path, so we need to add 'UNC' to the path as well.
-			path = Prefix + `UNC` + path[1:]
-		} else {
-			path = Prefix + path
-		}
-	}
-	return path
-}
diff --git a/vendor/github.com/containers/storage/pkg/loopback/attach_loopback.go b/vendor/github.com/containers/storage/pkg/loopback/attach_loopback.go
deleted file mode 100644
index 34c80548d2..0000000000
--- a/vendor/github.com/containers/storage/pkg/loopback/attach_loopback.go
+++ /dev/null
@@ -1,157 +0,0 @@
-// +build linux
-
-package loopback
-
-import (
-	"errors"
-	"fmt"
-	"os"
-	"syscall"
-
-	"github.com/sirupsen/logrus"
-)
-
-// Loopback related errors
-var (
-	ErrAttachLoopbackDevice   = errors.New("loopback attach failed")
-	ErrGetLoopbackBackingFile = errors.New("Unable to get loopback backing file")
-	ErrSetCapacity            = errors.New("Unable set loopback capacity")
-)
-
-func stringToLoopName(src string) [LoNameSize]uint8 {
-	var dst [LoNameSize]uint8
-	copy(dst[:], src[:])
-	return dst
-}
-
-func getNextFreeLoopbackIndex() (int, error) {
-	f, err := os.OpenFile("/dev/loop-control", os.O_RDONLY, 0644)
-	if err != nil {
-		return 0, err
-	}
-	defer f.Close()
-
-	index, err := ioctlLoopCtlGetFree(f.Fd())
-	if index < 0 {
-		index = 0
-	}
-	return index, err
-}
-
-func openNextAvailableLoopback(index int, sparseName string, sparseFile *os.File) (loopFile *os.File, err error) {
-	// Read information about the loopback file.
-	var st syscall.Stat_t
-	err = syscall.Fstat(int(sparseFile.Fd()), &st)
-	if err != nil {
-		logrus.Errorf("Error reading information about loopback file %s: %v", sparseName, err)
-		return nil, ErrAttachLoopbackDevice
-	}
-
-	// Start looking for a free /dev/loop
-	for {
-		target := fmt.Sprintf("/dev/loop%d", index)
-		index++
-
-		fi, err := os.Stat(target)
-		if err != nil {
-			if os.IsNotExist(err) {
-				logrus.Error("There are no more loopback devices available.")
-			}
-			return nil, ErrAttachLoopbackDevice
-		}
-
-		if fi.Mode()&os.ModeDevice != os.ModeDevice {
-			logrus.Errorf("Loopback device %s is not a block device.", target)
-			continue
-		}
-
-		// OpenFile adds O_CLOEXEC
-		loopFile, err = os.OpenFile(target, os.O_RDWR, 0644)
-		if err != nil {
-			logrus.Errorf("Error opening loopback device: %s", err)
-			return nil, ErrAttachLoopbackDevice
-		}
-
-		// Try to attach to the loop file
-		if err := ioctlLoopSetFd(loopFile.Fd(), sparseFile.Fd()); err != nil {
-			loopFile.Close()
-
-			// If the error is EBUSY, then try the next loopback
-			if err != syscall.EBUSY {
-				logrus.Errorf("Cannot set up loopback device %s: %s", target, err)
-				return nil, ErrAttachLoopbackDevice
-			}
-
-			// Otherwise, we keep going with the loop
-			continue
-		}
-
-		// Check if the loopback driver and underlying filesystem agree on the loopback file's
-		// device and inode numbers.
-		dev, ino, err := getLoopbackBackingFile(loopFile)
-		if err != nil {
-			logrus.Errorf("Error getting loopback backing file: %s", err)
-			return nil, ErrGetLoopbackBackingFile
-		}
-		if dev != st.Dev || ino != st.Ino {
-			logrus.Errorf("Loopback device and filesystem disagree on device/inode for %q: %#x(%d):%#x(%d) vs %#x(%d):%#x(%d)", sparseName, dev, dev, ino, ino, st.Dev, st.Dev, st.Ino, st.Ino)
-		}
-
-		// In case of success, we finished. Break the loop.
-		break
-	}
-
-	// This can't happen, but let's be sure
-	if loopFile == nil {
-		logrus.Errorf("Unreachable code reached! Error attaching %s to a loopback device.", sparseFile.Name())
-		return nil, ErrAttachLoopbackDevice
-	}
-
-	return loopFile, nil
-}
-
-// AttachLoopDevice attaches the given sparse file to the next
-// available loopback device. It returns an opened *os.File.
-func AttachLoopDevice(sparseName string) (loop *os.File, err error) {
-
-	// Try to retrieve the next available loopback device via syscall.
-	// If it fails, we discard error and start looping for a
-	// loopback from index 0.
-	startIndex, err := getNextFreeLoopbackIndex()
-	if err != nil {
-		logrus.Debugf("Error retrieving the next available loopback: %s", err)
-	}
-
-	// OpenFile adds O_CLOEXEC
-	sparseFile, err := os.OpenFile(sparseName, os.O_RDWR, 0644)
-	if err != nil {
-		logrus.Errorf("Error opening sparse file %s: %s", sparseName, err)
-		return nil, ErrAttachLoopbackDevice
-	}
-	defer sparseFile.Close()
-
-	loopFile, err := openNextAvailableLoopback(startIndex, sparseName, sparseFile)
-	if err != nil {
-		return nil, err
-	}
-
-	// Set the status of the loopback device
-	loopInfo := &loopInfo64{
-		loFileName: stringToLoopName(loopFile.Name()),
-		loOffset:   0,
-		loFlags:    LoFlagsAutoClear,
-	}
-
-	if err := ioctlLoopSetStatus64(loopFile.Fd(), loopInfo); err != nil {
-		logrus.Errorf("Cannot set up loopback device info: %s", err)
-
-		// If the call failed, then free the loopback device
-		if err := ioctlLoopClrFd(loopFile.Fd()); err != nil {
-			logrus.Error("Error while cleaning up the loopback device")
-		}
-		loopFile.Close()
-		return nil, ErrAttachLoopbackDevice
-	}
-
-	return loopFile, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/loopback/ioctl.go b/vendor/github.com/containers/storage/pkg/loopback/ioctl.go
deleted file mode 100644
index 0714eb5f87..0000000000
--- a/vendor/github.com/containers/storage/pkg/loopback/ioctl.go
+++ /dev/null
@@ -1,53 +0,0 @@
-// +build linux
-
-package loopback
-
-import (
-	"syscall"
-	"unsafe"
-)
-
-func ioctlLoopCtlGetFree(fd uintptr) (int, error) {
-	index, _, err := syscall.Syscall(syscall.SYS_IOCTL, fd, LoopCtlGetFree, 0)
-	if err != 0 {
-		return 0, err
-	}
-	return int(index), nil
-}
-
-func ioctlLoopSetFd(loopFd, sparseFd uintptr) error {
-	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, loopFd, LoopSetFd, sparseFd); err != 0 {
-		return err
-	}
-	return nil
-}
-
-func ioctlLoopSetStatus64(loopFd uintptr, loopInfo *loopInfo64) error {
-	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, loopFd, LoopSetStatus64, uintptr(unsafe.Pointer(loopInfo))); err != 0 {
-		return err
-	}
-	return nil
-}
-
-func ioctlLoopClrFd(loopFd uintptr) error {
-	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, loopFd, LoopClrFd, 0); err != 0 {
-		return err
-	}
-	return nil
-}
-
-func ioctlLoopGetStatus64(loopFd uintptr) (*loopInfo64, error) {
-	loopInfo := &loopInfo64{}
-
-	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, loopFd, LoopGetStatus64, uintptr(unsafe.Pointer(loopInfo))); err != 0 {
-		return nil, err
-	}
-	return loopInfo, nil
-}
-
-func ioctlLoopSetCapacity(loopFd uintptr, value int) error {
-	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, loopFd, LoopSetCapacity, uintptr(value)); err != 0 {
-		return err
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/loopback/loop_wrapper.go b/vendor/github.com/containers/storage/pkg/loopback/loop_wrapper.go
deleted file mode 100644
index e1100ce156..0000000000
--- a/vendor/github.com/containers/storage/pkg/loopback/loop_wrapper.go
+++ /dev/null
@@ -1,52 +0,0 @@
-// +build linux
-
-package loopback
-
-/*
-#include <linux/loop.h> // FIXME: present only for defines, maybe we can remove it?
-
-#ifndef LOOP_CTL_GET_FREE
-  #define LOOP_CTL_GET_FREE 0x4C82
-#endif
-
-#ifndef LO_FLAGS_PARTSCAN
-  #define LO_FLAGS_PARTSCAN 8
-#endif
-
-*/
-import "C"
-
-type loopInfo64 struct {
-	loDevice         uint64 /* ioctl r/o */
-	loInode          uint64 /* ioctl r/o */
-	loRdevice        uint64 /* ioctl r/o */
-	loOffset         uint64
-	loSizelimit      uint64 /* bytes, 0 == max available */
-	loNumber         uint32 /* ioctl r/o */
-	loEncryptType    uint32
-	loEncryptKeySize uint32 /* ioctl w/o */
-	loFlags          uint32 /* ioctl r/o */
-	loFileName       [LoNameSize]uint8
-	loCryptName      [LoNameSize]uint8
-	loEncryptKey     [LoKeySize]uint8 /* ioctl w/o */
-	loInit           [2]uint64
-}
-
-// IOCTL consts
-const (
-	LoopSetFd       = C.LOOP_SET_FD
-	LoopCtlGetFree  = C.LOOP_CTL_GET_FREE
-	LoopGetStatus64 = C.LOOP_GET_STATUS64
-	LoopSetStatus64 = C.LOOP_SET_STATUS64
-	LoopClrFd       = C.LOOP_CLR_FD
-	LoopSetCapacity = C.LOOP_SET_CAPACITY
-)
-
-// LOOP consts.
-const (
-	LoFlagsAutoClear = C.LO_FLAGS_AUTOCLEAR
-	LoFlagsReadOnly  = C.LO_FLAGS_READ_ONLY
-	LoFlagsPartScan  = C.LO_FLAGS_PARTSCAN
-	LoKeySize        = C.LO_KEY_SIZE
-	LoNameSize       = C.LO_NAME_SIZE
-)
diff --git a/vendor/github.com/containers/storage/pkg/loopback/loopback.go b/vendor/github.com/containers/storage/pkg/loopback/loopback.go
deleted file mode 100644
index a8ec3c6163..0000000000
--- a/vendor/github.com/containers/storage/pkg/loopback/loopback.go
+++ /dev/null
@@ -1,63 +0,0 @@
-// +build linux
-
-package loopback
-
-import (
-	"fmt"
-	"os"
-	"syscall"
-
-	"github.com/sirupsen/logrus"
-)
-
-func getLoopbackBackingFile(file *os.File) (uint64, uint64, error) {
-	loopInfo, err := ioctlLoopGetStatus64(file.Fd())
-	if err != nil {
-		logrus.Errorf("Error get loopback backing file: %s", err)
-		return 0, 0, ErrGetLoopbackBackingFile
-	}
-	return loopInfo.loDevice, loopInfo.loInode, nil
-}
-
-// SetCapacity reloads the size for the loopback device.
-func SetCapacity(file *os.File) error {
-	if err := ioctlLoopSetCapacity(file.Fd(), 0); err != nil {
-		logrus.Errorf("Error loopbackSetCapacity: %s", err)
-		return ErrSetCapacity
-	}
-	return nil
-}
-
-// FindLoopDeviceFor returns a loopback device file for the specified file which
-// is backing file of a loop back device.
-func FindLoopDeviceFor(file *os.File) *os.File {
-	stat, err := file.Stat()
-	if err != nil {
-		return nil
-	}
-	targetInode := stat.Sys().(*syscall.Stat_t).Ino
-	targetDevice := stat.Sys().(*syscall.Stat_t).Dev
-
-	for i := 0; true; i++ {
-		path := fmt.Sprintf("/dev/loop%d", i)
-
-		file, err := os.OpenFile(path, os.O_RDWR, 0)
-		if err != nil {
-			if os.IsNotExist(err) {
-				return nil
-			}
-
-			// Ignore all errors until the first not-exist
-			// we want to continue looking for the file
-			continue
-		}
-
-		dev, inode, err := getLoopbackBackingFile(file)
-		if err == nil && dev == targetDevice && inode == targetInode {
-			return file
-		}
-		file.Close()
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mflag/LICENSE b/vendor/github.com/containers/storage/pkg/mflag/LICENSE
deleted file mode 100644
index 9b4f4a294e..0000000000
--- a/vendor/github.com/containers/storage/pkg/mflag/LICENSE
+++ /dev/null
@@ -1,27 +0,0 @@
-Copyright (c) 2014-2016 The Docker & Go Authors. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-   * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-   * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-   * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/containers/storage/pkg/mount/flags.go b/vendor/github.com/containers/storage/pkg/mount/flags.go
deleted file mode 100644
index 607dbed43a..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/flags.go
+++ /dev/null
@@ -1,149 +0,0 @@
-package mount
-
-import (
-	"fmt"
-	"strings"
-)
-
-var flags = map[string]struct {
-	clear bool
-	flag  int
-}{
-	"defaults":      {false, 0},
-	"ro":            {false, RDONLY},
-	"rw":            {true, RDONLY},
-	"suid":          {true, NOSUID},
-	"nosuid":        {false, NOSUID},
-	"dev":           {true, NODEV},
-	"nodev":         {false, NODEV},
-	"exec":          {true, NOEXEC},
-	"noexec":        {false, NOEXEC},
-	"sync":          {false, SYNCHRONOUS},
-	"async":         {true, SYNCHRONOUS},
-	"dirsync":       {false, DIRSYNC},
-	"remount":       {false, REMOUNT},
-	"mand":          {false, MANDLOCK},
-	"nomand":        {true, MANDLOCK},
-	"atime":         {true, NOATIME},
-	"noatime":       {false, NOATIME},
-	"diratime":      {true, NODIRATIME},
-	"nodiratime":    {false, NODIRATIME},
-	"bind":          {false, BIND},
-	"rbind":         {false, RBIND},
-	"unbindable":    {false, UNBINDABLE},
-	"runbindable":   {false, RUNBINDABLE},
-	"private":       {false, PRIVATE},
-	"rprivate":      {false, RPRIVATE},
-	"shared":        {false, SHARED},
-	"rshared":       {false, RSHARED},
-	"slave":         {false, SLAVE},
-	"rslave":        {false, RSLAVE},
-	"relatime":      {false, RELATIME},
-	"norelatime":    {true, RELATIME},
-	"strictatime":   {false, STRICTATIME},
-	"nostrictatime": {true, STRICTATIME},
-}
-
-var validFlags = map[string]bool{
-	"":          true,
-	"size":      true,
-	"mode":      true,
-	"uid":       true,
-	"gid":       true,
-	"nr_inodes": true,
-	"nr_blocks": true,
-	"mpol":      true,
-}
-
-var propagationFlags = map[string]bool{
-	"bind":        true,
-	"rbind":       true,
-	"unbindable":  true,
-	"runbindable": true,
-	"private":     true,
-	"rprivate":    true,
-	"shared":      true,
-	"rshared":     true,
-	"slave":       true,
-	"rslave":      true,
-}
-
-// MergeTmpfsOptions merge mount options to make sure there is no duplicate.
-func MergeTmpfsOptions(options []string) ([]string, error) {
-	// We use collisions maps to remove duplicates.
-	// For flag, the key is the flag value (the key for propagation flag is -1)
-	// For data=value, the key is the data
-	flagCollisions := map[int]bool{}
-	dataCollisions := map[string]bool{}
-
-	var newOptions []string
-	// We process in reverse order
-	for i := len(options) - 1; i >= 0; i-- {
-		option := options[i]
-		if option == "defaults" {
-			continue
-		}
-		if f, ok := flags[option]; ok && f.flag != 0 {
-			// There is only one propagation mode
-			key := f.flag
-			if propagationFlags[option] {
-				key = -1
-			}
-			// Check to see if there is collision for flag
-			if !flagCollisions[key] {
-				// We prepend the option and add to collision map
-				newOptions = append([]string{option}, newOptions...)
-				flagCollisions[key] = true
-			}
-			continue
-		}
-		opt := strings.SplitN(option, "=", 2)
-		if len(opt) != 2 || !validFlags[opt[0]] {
-			return nil, fmt.Errorf("Invalid tmpfs option %q", opt)
-		}
-		if !dataCollisions[opt[0]] {
-			// We prepend the option and add to collision map
-			newOptions = append([]string{option}, newOptions...)
-			dataCollisions[opt[0]] = true
-		}
-	}
-
-	return newOptions, nil
-}
-
-// Parse fstab type mount options into mount() flags
-// and device specific data
-func parseOptions(options string) (int, string) {
-	var (
-		flag int
-		data []string
-	)
-
-	for _, o := range strings.Split(options, ",") {
-		// If the option does not exist in the flags table or the flag
-		// is not supported on the platform,
-		// then it is a data value for a specific fs type
-		if f, exists := flags[o]; exists && f.flag != 0 {
-			if f.clear {
-				flag &= ^f.flag
-			} else {
-				flag |= f.flag
-			}
-		} else {
-			data = append(data, o)
-		}
-	}
-	return flag, strings.Join(data, ",")
-}
-
-// ParseTmpfsOptions parse fstab type mount options into flags and data
-func ParseTmpfsOptions(options string) (int, string, error) {
-	flags, data := parseOptions(options)
-	for _, o := range strings.Split(data, ",") {
-		opt := strings.SplitN(o, "=", 2)
-		if !validFlags[opt[0]] {
-			return 0, "", fmt.Errorf("Invalid tmpfs option %q", opt)
-		}
-	}
-	return flags, data, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/flags_freebsd.go b/vendor/github.com/containers/storage/pkg/mount/flags_freebsd.go
deleted file mode 100644
index 5f76f331b6..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/flags_freebsd.go
+++ /dev/null
@@ -1,49 +0,0 @@
-// +build freebsd,cgo
-
-package mount
-
-/*
-#include <sys/mount.h>
-*/
-import "C"
-
-const (
-	// RDONLY will mount the filesystem as read-only.
-	RDONLY = C.MNT_RDONLY
-
-	// NOSUID will not allow set-user-identifier or set-group-identifier bits to
-	// take effect.
-	NOSUID = C.MNT_NOSUID
-
-	// NOEXEC will not allow execution of any binaries on the mounted file system.
-	NOEXEC = C.MNT_NOEXEC
-
-	// SYNCHRONOUS will allow any I/O to the file system to be done synchronously.
-	SYNCHRONOUS = C.MNT_SYNCHRONOUS
-
-	// NOATIME will not update the file access time when reading from a file.
-	NOATIME = C.MNT_NOATIME
-)
-
-// These flags are unsupported.
-const (
-	BIND        = 0
-	DIRSYNC     = 0
-	MANDLOCK    = 0
-	NODEV       = 0
-	NODIRATIME  = 0
-	UNBINDABLE  = 0
-	RUNBINDABLE = 0
-	PRIVATE     = 0
-	RPRIVATE    = 0
-	SHARED      = 0
-	RSHARED     = 0
-	SLAVE       = 0
-	RSLAVE      = 0
-	RBIND       = 0
-	RELATIVE    = 0
-	RELATIME    = 0
-	REMOUNT     = 0
-	STRICTATIME = 0
-	mntDetach   = 0
-)
diff --git a/vendor/github.com/containers/storage/pkg/mount/flags_linux.go b/vendor/github.com/containers/storage/pkg/mount/flags_linux.go
deleted file mode 100644
index 0425d0dd63..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/flags_linux.go
+++ /dev/null
@@ -1,87 +0,0 @@
-package mount
-
-import (
-	"golang.org/x/sys/unix"
-)
-
-const (
-	// RDONLY will mount the file system read-only.
-	RDONLY = unix.MS_RDONLY
-
-	// NOSUID will not allow set-user-identifier or set-group-identifier bits to
-	// take effect.
-	NOSUID = unix.MS_NOSUID
-
-	// NODEV will not interpret character or block special devices on the file
-	// system.
-	NODEV = unix.MS_NODEV
-
-	// NOEXEC will not allow execution of any binaries on the mounted file system.
-	NOEXEC = unix.MS_NOEXEC
-
-	// SYNCHRONOUS will allow I/O to the file system to be done synchronously.
-	SYNCHRONOUS = unix.MS_SYNCHRONOUS
-
-	// DIRSYNC will force all directory updates within the file system to be done
-	// synchronously. This affects the following system calls: create, link,
-	// unlink, symlink, mkdir, rmdir, mknod and rename.
-	DIRSYNC = unix.MS_DIRSYNC
-
-	// REMOUNT will attempt to remount an already-mounted file system. This is
-	// commonly used to change the mount flags for a file system, especially to
-	// make a readonly file system writeable. It does not change device or mount
-	// point.
-	REMOUNT = unix.MS_REMOUNT
-
-	// MANDLOCK will force mandatory locks on a filesystem.
-	MANDLOCK = unix.MS_MANDLOCK
-
-	// NOATIME will not update the file access time when reading from a file.
-	NOATIME = unix.MS_NOATIME
-
-	// NODIRATIME will not update the directory access time.
-	NODIRATIME = unix.MS_NODIRATIME
-
-	// BIND remounts a subtree somewhere else.
-	BIND = unix.MS_BIND
-
-	// RBIND remounts a subtree and all possible submounts somewhere else.
-	RBIND = unix.MS_BIND | unix.MS_REC
-
-	// UNBINDABLE creates a mount which cannot be cloned through a bind operation.
-	UNBINDABLE = unix.MS_UNBINDABLE
-
-	// RUNBINDABLE marks the entire mount tree as UNBINDABLE.
-	RUNBINDABLE = unix.MS_UNBINDABLE | unix.MS_REC
-
-	// PRIVATE creates a mount which carries no propagation abilities.
-	PRIVATE = unix.MS_PRIVATE
-
-	// RPRIVATE marks the entire mount tree as PRIVATE.
-	RPRIVATE = unix.MS_PRIVATE | unix.MS_REC
-
-	// SLAVE creates a mount which receives propagation from its master, but not
-	// vice versa.
-	SLAVE = unix.MS_SLAVE
-
-	// RSLAVE marks the entire mount tree as SLAVE.
-	RSLAVE = unix.MS_SLAVE | unix.MS_REC
-
-	// SHARED creates a mount which provides the ability to create mirrors of
-	// that mount such that mounts and unmounts within any of the mirrors
-	// propagate to the other mirrors.
-	SHARED = unix.MS_SHARED
-
-	// RSHARED marks the entire mount tree as SHARED.
-	RSHARED = unix.MS_SHARED | unix.MS_REC
-
-	// RELATIME updates inode access times relative to modify or change time.
-	RELATIME = unix.MS_RELATIME
-
-	// STRICTATIME allows to explicitly request full atime updates.  This makes
-	// it possible for the kernel to default to relatime or noatime but still
-	// allow userspace to override it.
-	STRICTATIME = unix.MS_STRICTATIME
-
-	mntDetach = unix.MNT_DETACH
-)
diff --git a/vendor/github.com/containers/storage/pkg/mount/flags_unsupported.go b/vendor/github.com/containers/storage/pkg/mount/flags_unsupported.go
deleted file mode 100644
index 9ed741e3ff..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/flags_unsupported.go
+++ /dev/null
@@ -1,31 +0,0 @@
-// +build !linux,!freebsd freebsd,!cgo solaris,!cgo
-
-package mount
-
-// These flags are unsupported.
-const (
-	BIND        = 0
-	DIRSYNC     = 0
-	MANDLOCK    = 0
-	NOATIME     = 0
-	NODEV       = 0
-	NODIRATIME  = 0
-	NOEXEC      = 0
-	NOSUID      = 0
-	UNBINDABLE  = 0
-	RUNBINDABLE = 0
-	PRIVATE     = 0
-	RPRIVATE    = 0
-	SHARED      = 0
-	RSHARED     = 0
-	SLAVE       = 0
-	RSLAVE      = 0
-	RBIND       = 0
-	RELATIME    = 0
-	RELATIVE    = 0
-	REMOUNT     = 0
-	STRICTATIME = 0
-	SYNCHRONOUS = 0
-	RDONLY      = 0
-	mntDetach   = 0
-)
diff --git a/vendor/github.com/containers/storage/pkg/mount/mount.go b/vendor/github.com/containers/storage/pkg/mount/mount.go
deleted file mode 100644
index d3caa16bda..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mount.go
+++ /dev/null
@@ -1,106 +0,0 @@
-package mount
-
-import (
-	"sort"
-	"strings"
-	"time"
-
-	"github.com/containers/storage/pkg/fileutils"
-)
-
-// GetMounts retrieves a list of mounts for the current running process.
-func GetMounts() ([]*Info, error) {
-	return parseMountTable()
-}
-
-// Mounted determines if a specified mountpoint has been mounted.
-// On Linux it looks at /proc/self/mountinfo and on Solaris at mnttab.
-func Mounted(mountpoint string) (bool, error) {
-	entries, err := parseMountTable()
-	if err != nil {
-		return false, err
-	}
-
-	mountpoint, err = fileutils.ReadSymlinkedDirectory(mountpoint)
-	if err != nil {
-		return false, err
-	}
-	// Search the table for the mountpoint
-	for _, e := range entries {
-		if e.Mountpoint == mountpoint {
-			return true, nil
-		}
-	}
-	return false, nil
-}
-
-// Mount will mount filesystem according to the specified configuration, on the
-// condition that the target path is *not* already mounted. Options must be
-// specified like the mount or fstab unix commands: "opt1=val1,opt2=val2". See
-// flags.go for supported option flags.
-func Mount(device, target, mType, options string) error {
-	flag, _ := parseOptions(options)
-	if flag&REMOUNT != REMOUNT {
-		if mounted, err := Mounted(target); err != nil || mounted {
-			return err
-		}
-	}
-	return ForceMount(device, target, mType, options)
-}
-
-// ForceMount will mount a filesystem according to the specified configuration,
-// *regardless* if the target path is not already mounted. Options must be
-// specified like the mount or fstab unix commands: "opt1=val1,opt2=val2". See
-// flags.go for supported option flags.
-func ForceMount(device, target, mType, options string) error {
-	flag, data := parseOptions(options)
-	return mount(device, target, mType, uintptr(flag), data)
-}
-
-// Unmount lazily unmounts a filesystem on supported platforms, otherwise
-// does a normal unmount.
-func Unmount(target string) error {
-	if mounted, err := Mounted(target); err != nil || !mounted {
-		return err
-	}
-	return ForceUnmount(target)
-}
-
-// RecursiveUnmount unmounts the target and all mounts underneath, starting with
-// the deepsest mount first.
-func RecursiveUnmount(target string) error {
-	mounts, err := GetMounts()
-	if err != nil {
-		return err
-	}
-
-	// Make the deepest mount be first
-	sort.Sort(sort.Reverse(byMountpoint(mounts)))
-
-	for i, m := range mounts {
-		if !strings.HasPrefix(m.Mountpoint, target) {
-			continue
-		}
-		if err := Unmount(m.Mountpoint); err != nil && i == len(mounts)-1 {
-			if mounted, err := Mounted(m.Mountpoint); err != nil || mounted {
-				return err
-			}
-			// Ignore errors for submounts and continue trying to unmount others
-			// The final unmount should fail if there ane any submounts remaining
-		}
-	}
-	return nil
-}
-
-// ForceUnmount will force an unmount of the target filesystem, regardless if
-// it is mounted or not.
-func ForceUnmount(target string) (err error) {
-	// Simple retry logic for unmount
-	for i := 0; i < 10; i++ {
-		if err = unmount(target, 0); err == nil {
-			return nil
-		}
-		time.Sleep(100 * time.Millisecond)
-	}
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mounter_freebsd.go b/vendor/github.com/containers/storage/pkg/mount/mounter_freebsd.go
deleted file mode 100644
index 814896cc9e..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mounter_freebsd.go
+++ /dev/null
@@ -1,60 +0,0 @@
-package mount
-
-/*
-#include <errno.h>
-#include <stdlib.h>
-#include <string.h>
-#include <sys/_iovec.h>
-#include <sys/mount.h>
-#include <sys/param.h>
-*/
-import "C"
-
-import (
-	"fmt"
-	"strings"
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-func allocateIOVecs(options []string) []C.struct_iovec {
-	out := make([]C.struct_iovec, len(options))
-	for i, option := range options {
-		out[i].iov_base = unsafe.Pointer(C.CString(option))
-		out[i].iov_len = C.size_t(len(option) + 1)
-	}
-	return out
-}
-
-func mount(device, target, mType string, flag uintptr, data string) error {
-	isNullFS := false
-
-	xs := strings.Split(data, ",")
-	for _, x := range xs {
-		if x == "bind" {
-			isNullFS = true
-		}
-	}
-
-	options := []string{"fspath", target}
-	if isNullFS {
-		options = append(options, "fstype", "nullfs", "target", device)
-	} else {
-		options = append(options, "fstype", mType, "from", device)
-	}
-	rawOptions := allocateIOVecs(options)
-	for _, rawOption := range rawOptions {
-		defer C.free(rawOption.iov_base)
-	}
-
-	if errno := C.nmount(&rawOptions[0], C.uint(len(options)), C.int(flag)); errno != 0 {
-		reason := C.GoString(C.strerror(*C.__error()))
-		return fmt.Errorf("Failed to call nmount: %s", reason)
-	}
-	return nil
-}
-
-func unmount(target string, flag int) error {
-	return unix.Unmount(target, flag)
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mounter_linux.go b/vendor/github.com/containers/storage/pkg/mount/mounter_linux.go
deleted file mode 100644
index 39c36d472a..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mounter_linux.go
+++ /dev/null
@@ -1,57 +0,0 @@
-package mount
-
-import (
-	"golang.org/x/sys/unix"
-)
-
-const (
-	// ptypes is the set propagation types.
-	ptypes = unix.MS_SHARED | unix.MS_PRIVATE | unix.MS_SLAVE | unix.MS_UNBINDABLE
-
-	// pflags is the full set valid flags for a change propagation call.
-	pflags = ptypes | unix.MS_REC | unix.MS_SILENT
-
-	// broflags is the combination of bind and read only
-	broflags = unix.MS_BIND | unix.MS_RDONLY
-)
-
-// isremount returns true if either device name or flags identify a remount request, false otherwise.
-func isremount(device string, flags uintptr) bool {
-	switch {
-	// We treat device "" and "none" as a remount request to provide compatibility with
-	// requests that don't explicitly set MS_REMOUNT such as those manipulating bind mounts.
-	case flags&unix.MS_REMOUNT != 0, device == "", device == "none":
-		return true
-	default:
-		return false
-	}
-}
-
-func mount(device, target, mType string, flags uintptr, data string) error {
-	oflags := flags &^ ptypes
-	if !isremount(device, flags) || data != "" {
-		// Initial call applying all non-propagation flags for mount
-		// or remount with changed data
-		if err := unix.Mount(device, target, mType, oflags, data); err != nil {
-			return err
-		}
-	}
-
-	if flags&ptypes != 0 {
-		// Change the propagation type.
-		if err := unix.Mount("", target, "", flags&pflags, ""); err != nil {
-			return err
-		}
-	}
-
-	if oflags&broflags == broflags {
-		// Remount the bind to apply read only.
-		return unix.Mount("", target, "", oflags|unix.MS_REMOUNT, "")
-	}
-
-	return nil
-}
-
-func unmount(target string, flag int) error {
-	return unix.Unmount(target, flag)
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mounter_solaris.go b/vendor/github.com/containers/storage/pkg/mount/mounter_solaris.go
deleted file mode 100644
index 48b86771e7..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mounter_solaris.go
+++ /dev/null
@@ -1,34 +0,0 @@
-// +build solaris,cgo
-
-package mount
-
-import (
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-// #include <stdlib.h>
-// #include <stdio.h>
-// #include <sys/mount.h>
-// int Mount(const char *spec, const char *dir, int mflag,
-// char *fstype, char *dataptr, int datalen, char *optptr, int optlen) {
-//     return mount(spec, dir, mflag, fstype, dataptr, datalen, optptr, optlen);
-// }
-import "C"
-
-func mount(device, target, mType string, flag uintptr, data string) error {
-	spec := C.CString(device)
-	dir := C.CString(target)
-	fstype := C.CString(mType)
-	_, err := C.Mount(spec, dir, C.int(flag), fstype, nil, 0, nil, 0)
-	C.free(unsafe.Pointer(spec))
-	C.free(unsafe.Pointer(dir))
-	C.free(unsafe.Pointer(fstype))
-	return err
-}
-
-func unmount(target string, flag int) error {
-	err := unix.Unmount(target, flag)
-	return err
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mounter_unsupported.go b/vendor/github.com/containers/storage/pkg/mount/mounter_unsupported.go
deleted file mode 100644
index a2a3bb457f..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mounter_unsupported.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build !linux,!freebsd,!solaris freebsd,!cgo solaris,!cgo
-
-package mount
-
-func mount(device, target, mType string, flag uintptr, data string) error {
-	panic("Not implemented")
-}
-
-func unmount(target string, flag int) error {
-	panic("Not implemented")
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo.go
deleted file mode 100644
index ff4cc1d86b..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo.go
+++ /dev/null
@@ -1,54 +0,0 @@
-package mount
-
-// Info reveals information about a particular mounted filesystem. This
-// struct is populated from the content in the /proc/<pid>/mountinfo file.
-type Info struct {
-	// ID is a unique identifier of the mount (may be reused after umount).
-	ID int
-
-	// Parent indicates the ID of the mount parent (or of self for the top of the
-	// mount tree).
-	Parent int
-
-	// Major indicates one half of the device ID which identifies the device class.
-	Major int
-
-	// Minor indicates one half of the device ID which identifies a specific
-	// instance of device.
-	Minor int
-
-	// Root of the mount within the filesystem.
-	Root string
-
-	// Mountpoint indicates the mount point relative to the process's root.
-	Mountpoint string
-
-	// Opts represents mount-specific options.
-	Opts string
-
-	// Optional represents optional fields.
-	Optional string
-
-	// Fstype indicates the type of filesystem, such as EXT3.
-	Fstype string
-
-	// Source indicates filesystem specific information or "none".
-	Source string
-
-	// VfsOpts represents per super block options.
-	VfsOpts string
-}
-
-type byMountpoint []*Info
-
-func (by byMountpoint) Len() int {
-	return len(by)
-}
-
-func (by byMountpoint) Less(i, j int) bool {
-	return by[i].Mountpoint < by[j].Mountpoint
-}
-
-func (by byMountpoint) Swap(i, j int) {
-	by[i], by[j] = by[j], by[i]
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo_freebsd.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo_freebsd.go
deleted file mode 100644
index 4f32edcd90..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo_freebsd.go
+++ /dev/null
@@ -1,41 +0,0 @@
-package mount
-
-/*
-#include <sys/param.h>
-#include <sys/ucred.h>
-#include <sys/mount.h>
-*/
-import "C"
-
-import (
-	"fmt"
-	"reflect"
-	"unsafe"
-)
-
-// Parse /proc/self/mountinfo because comparing Dev and ino does not work from
-// bind mounts.
-func parseMountTable() ([]*Info, error) {
-	var rawEntries *C.struct_statfs
-
-	count := int(C.getmntinfo(&rawEntries, C.MNT_WAIT))
-	if count == 0 {
-		return nil, fmt.Errorf("Failed to call getmntinfo")
-	}
-
-	var entries []C.struct_statfs
-	header := (*reflect.SliceHeader)(unsafe.Pointer(&entries))
-	header.Cap = count
-	header.Len = count
-	header.Data = uintptr(unsafe.Pointer(rawEntries))
-
-	var out []*Info
-	for _, entry := range entries {
-		var mountinfo Info
-		mountinfo.Mountpoint = C.GoString(&entry.f_mntonname[0])
-		mountinfo.Source = C.GoString(&entry.f_mntfromname[0])
-		mountinfo.Fstype = C.GoString(&entry.f_fstypename[0])
-		out = append(out, &mountinfo)
-	}
-	return out, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo_linux.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo_linux.go
deleted file mode 100644
index be69fee1d7..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo_linux.go
+++ /dev/null
@@ -1,95 +0,0 @@
-// +build linux
-
-package mount
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"os"
-	"strings"
-)
-
-const (
-	/* 36 35 98:0 /mnt1 /mnt2 rw,noatime master:1 - ext3 /dev/root rw,errors=continue
-	   (1)(2)(3)   (4)   (5)      (6)      (7)   (8) (9)   (10)         (11)
-
-	   (1) mount ID:  unique identifier of the mount (may be reused after umount)
-	   (2) parent ID:  ID of parent (or of self for the top of the mount tree)
-	   (3) major:minor:  value of st_dev for files on filesystem
-	   (4) root:  root of the mount within the filesystem
-	   (5) mount point:  mount point relative to the process's root
-	   (6) mount options:  per mount options
-	   (7) optional fields:  zero or more fields of the form "tag[:value]"
-	   (8) separator:  marks the end of the optional fields
-	   (9) filesystem type:  name of filesystem of the form "type[.subtype]"
-	   (10) mount source:  filesystem specific information or "none"
-	   (11) super options:  per super block options*/
-	mountinfoFormat = "%d %d %d:%d %s %s %s %s"
-)
-
-// Parse /proc/self/mountinfo because comparing Dev and ino does not work from
-// bind mounts
-func parseMountTable() ([]*Info, error) {
-	f, err := os.Open("/proc/self/mountinfo")
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return parseInfoFile(f)
-}
-
-func parseInfoFile(r io.Reader) ([]*Info, error) {
-	var (
-		s   = bufio.NewScanner(r)
-		out = []*Info{}
-	)
-
-	for s.Scan() {
-		if err := s.Err(); err != nil {
-			return nil, err
-		}
-
-		var (
-			p              = &Info{}
-			text           = s.Text()
-			optionalFields string
-		)
-
-		if _, err := fmt.Sscanf(text, mountinfoFormat,
-			&p.ID, &p.Parent, &p.Major, &p.Minor,
-			&p.Root, &p.Mountpoint, &p.Opts, &optionalFields); err != nil {
-			return nil, fmt.Errorf("Scanning '%s' failed: %s", text, err)
-		}
-		// Safe as mountinfo encodes mountpoints with spaces as \040.
-		index := strings.Index(text, " - ")
-		postSeparatorFields := strings.Fields(text[index+3:])
-		if len(postSeparatorFields) < 3 {
-			return nil, fmt.Errorf("Error found less than 3 fields post '-' in %q", text)
-		}
-
-		if optionalFields != "-" {
-			p.Optional = optionalFields
-		}
-
-		p.Fstype = postSeparatorFields[0]
-		p.Source = postSeparatorFields[1]
-		p.VfsOpts = strings.Join(postSeparatorFields[2:], " ")
-		out = append(out, p)
-	}
-	return out, nil
-}
-
-// PidMountInfo collects the mounts for a specific process ID. If the process
-// ID is unknown, it is better to use `GetMounts` which will inspect
-// "/proc/self/mountinfo" instead.
-func PidMountInfo(pid int) ([]*Info, error) {
-	f, err := os.Open(fmt.Sprintf("/proc/%d/mountinfo", pid))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return parseInfoFile(f)
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo_solaris.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo_solaris.go
deleted file mode 100644
index ad9ab57f8b..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo_solaris.go
+++ /dev/null
@@ -1,37 +0,0 @@
-// +build solaris,cgo
-
-package mount
-
-/*
-#include <stdio.h>
-#include <sys/mnttab.h>
-*/
-import "C"
-
-import (
-	"fmt"
-)
-
-func parseMountTable() ([]*Info, error) {
-	mnttab := C.fopen(C.CString(C.MNTTAB), C.CString("r"))
-	if mnttab == nil {
-		return nil, fmt.Errorf("Failed to open %s", C.MNTTAB)
-	}
-
-	var out []*Info
-	var mp C.struct_mnttab
-
-	ret := C.getmntent(mnttab, &mp)
-	for ret == 0 {
-		var mountinfo Info
-		mountinfo.Mountpoint = C.GoString(mp.mnt_mountp)
-		mountinfo.Source = C.GoString(mp.mnt_special)
-		mountinfo.Fstype = C.GoString(mp.mnt_fstype)
-		mountinfo.Opts = C.GoString(mp.mnt_mntopts)
-		out = append(out, &mountinfo)
-		ret = C.getmntent(mnttab, &mp)
-	}
-
-	C.fclose(mnttab)
-	return out, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo_unsupported.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo_unsupported.go
deleted file mode 100644
index 7fbcf19214..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo_unsupported.go
+++ /dev/null
@@ -1,12 +0,0 @@
-// +build !windows,!linux,!freebsd,!solaris freebsd,!cgo solaris,!cgo
-
-package mount
-
-import (
-	"fmt"
-	"runtime"
-)
-
-func parseMountTable() ([]*Info, error) {
-	return nil, fmt.Errorf("mount.parseMountTable is not implemented on %s/%s", runtime.GOOS, runtime.GOARCH)
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/mountinfo_windows.go b/vendor/github.com/containers/storage/pkg/mount/mountinfo_windows.go
deleted file mode 100644
index dab8a37ed0..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/mountinfo_windows.go
+++ /dev/null
@@ -1,6 +0,0 @@
-package mount
-
-func parseMountTable() ([]*Info, error) {
-	// Do NOT return an error!
-	return nil, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_linux.go b/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_linux.go
deleted file mode 100644
index 8ceec84bc6..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_linux.go
+++ /dev/null
@@ -1,69 +0,0 @@
-// +build linux
-
-package mount
-
-// MakeShared ensures a mounted filesystem has the SHARED mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeShared(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "shared")
-}
-
-// MakeRShared ensures a mounted filesystem has the RSHARED mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeRShared(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rshared")
-}
-
-// MakePrivate ensures a mounted filesystem has the PRIVATE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakePrivate(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "private")
-}
-
-// MakeRPrivate ensures a mounted filesystem has the RPRIVATE mount option
-// enabled. See the supported options in flags.go for further reference.
-func MakeRPrivate(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rprivate")
-}
-
-// MakeSlave ensures a mounted filesystem has the SLAVE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeSlave(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "slave")
-}
-
-// MakeRSlave ensures a mounted filesystem has the RSLAVE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeRSlave(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rslave")
-}
-
-// MakeUnbindable ensures a mounted filesystem has the UNBINDABLE mount option
-// enabled. See the supported options in flags.go for further reference.
-func MakeUnbindable(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "unbindable")
-}
-
-// MakeRUnbindable ensures a mounted filesystem has the RUNBINDABLE mount
-// option enabled. See the supported options in flags.go for further reference.
-func MakeRUnbindable(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "runbindable")
-}
-
-func ensureMountedAs(mountPoint, options string) error {
-	mounted, err := Mounted(mountPoint)
-	if err != nil {
-		return err
-	}
-
-	if !mounted {
-		if err := Mount(mountPoint, mountPoint, "none", "bind,rw"); err != nil {
-			return err
-		}
-	}
-	if _, err = Mounted(mountPoint); err != nil {
-		return err
-	}
-
-	return ForceMount("", mountPoint, "none", options)
-}
diff --git a/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_solaris.go b/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_solaris.go
deleted file mode 100644
index 09f6b03cbc..0000000000
--- a/vendor/github.com/containers/storage/pkg/mount/sharedsubtree_solaris.go
+++ /dev/null
@@ -1,58 +0,0 @@
-// +build solaris
-
-package mount
-
-// MakeShared ensures a mounted filesystem has the SHARED mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeShared(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "shared")
-}
-
-// MakeRShared ensures a mounted filesystem has the RSHARED mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeRShared(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rshared")
-}
-
-// MakePrivate ensures a mounted filesystem has the PRIVATE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakePrivate(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "private")
-}
-
-// MakeRPrivate ensures a mounted filesystem has the RPRIVATE mount option
-// enabled. See the supported options in flags.go for further reference.
-func MakeRPrivate(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rprivate")
-}
-
-// MakeSlave ensures a mounted filesystem has the SLAVE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeSlave(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "slave")
-}
-
-// MakeRSlave ensures a mounted filesystem has the RSLAVE mount option enabled.
-// See the supported options in flags.go for further reference.
-func MakeRSlave(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "rslave")
-}
-
-// MakeUnbindable ensures a mounted filesystem has the UNBINDABLE mount option
-// enabled. See the supported options in flags.go for further reference.
-func MakeUnbindable(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "unbindable")
-}
-
-// MakeRUnbindable ensures a mounted filesystem has the RUNBINDABLE mount
-// option enabled. See the supported options in flags.go for further reference.
-func MakeRUnbindable(mountPoint string) error {
-	return ensureMountedAs(mountPoint, "runbindable")
-}
-
-func ensureMountedAs(mountPoint, options string) error {
-	// TODO: Solaris does not support bind mounts.
-	// Evaluate lofs and also look at the relevant
-	// mount flags to be supported.
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel.go
deleted file mode 100644
index 7738fc7411..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel.go
+++ /dev/null
@@ -1,74 +0,0 @@
-// +build !windows
-
-// Package kernel provides helper function to get, parse and compare kernel
-// versions for different platforms.
-package kernel
-
-import (
-	"errors"
-	"fmt"
-)
-
-// VersionInfo holds information about the kernel.
-type VersionInfo struct {
-	Kernel int    // Version of the kernel (e.g. 4.1.2-generic -> 4)
-	Major  int    // Major part of the kernel version (e.g. 4.1.2-generic -> 1)
-	Minor  int    // Minor part of the kernel version (e.g. 4.1.2-generic -> 2)
-	Flavor string // Flavor of the kernel version (e.g. 4.1.2-generic -> generic)
-}
-
-func (k *VersionInfo) String() string {
-	return fmt.Sprintf("%d.%d.%d%s", k.Kernel, k.Major, k.Minor, k.Flavor)
-}
-
-// CompareKernelVersion compares two kernel.VersionInfo structs.
-// Returns -1 if a < b, 0 if a == b, 1 it a > b
-func CompareKernelVersion(a, b VersionInfo) int {
-	if a.Kernel < b.Kernel {
-		return -1
-	} else if a.Kernel > b.Kernel {
-		return 1
-	}
-
-	if a.Major < b.Major {
-		return -1
-	} else if a.Major > b.Major {
-		return 1
-	}
-
-	if a.Minor < b.Minor {
-		return -1
-	} else if a.Minor > b.Minor {
-		return 1
-	}
-
-	return 0
-}
-
-// ParseRelease parses a string and creates a VersionInfo based on it.
-func ParseRelease(release string) (*VersionInfo, error) {
-	var (
-		kernel, major, minor, parsed int
-		flavor, partial              string
-	)
-
-	// Ignore error from Sscanf to allow an empty flavor.  Instead, just
-	// make sure we got all the version numbers.
-	parsed, _ = fmt.Sscanf(release, "%d.%d%s", &kernel, &major, &partial)
-	if parsed < 2 {
-		return nil, errors.New("Can't parse kernel version " + release)
-	}
-
-	// sometimes we have 3.12.25-gentoo, but sometimes we just have 3.12-1-amd64
-	parsed, _ = fmt.Sscanf(partial, ".%d%s", &minor, &flavor)
-	if parsed < 1 {
-		flavor = partial
-	}
-
-	return &VersionInfo{
-		Kernel: kernel,
-		Major:  major,
-		Minor:  minor,
-		Flavor: flavor,
-	}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_darwin.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_darwin.go
deleted file mode 100644
index 71f205b285..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_darwin.go
+++ /dev/null
@@ -1,56 +0,0 @@
-// +build darwin
-
-// Package kernel provides helper function to get, parse and compare kernel
-// versions for different platforms.
-package kernel
-
-import (
-	"fmt"
-	"os/exec"
-	"strings"
-
-	"github.com/mattn/go-shellwords"
-)
-
-// GetKernelVersion gets the current kernel version.
-func GetKernelVersion() (*VersionInfo, error) {
-	release, err := getRelease()
-	if err != nil {
-		return nil, err
-	}
-
-	return ParseRelease(release)
-}
-
-// getRelease uses `system_profiler SPSoftwareDataType` to get OSX kernel version
-func getRelease() (string, error) {
-	cmd := exec.Command("system_profiler", "SPSoftwareDataType")
-	osName, err := cmd.Output()
-	if err != nil {
-		return "", err
-	}
-
-	var release string
-	data := strings.Split(string(osName), "\n")
-	for _, line := range data {
-		if strings.Contains(line, "Kernel Version") {
-			// It has the format like '      Kernel Version: Darwin 14.5.0'
-			content := strings.SplitN(line, ":", 2)
-			if len(content) != 2 {
-				return "", fmt.Errorf("Kernel Version is invalid")
-			}
-
-			prettyNames, err := shellwords.Parse(content[1])
-			if err != nil {
-				return "", fmt.Errorf("Kernel Version is invalid: %s", err.Error())
-			}
-
-			if len(prettyNames) != 2 {
-				return "", fmt.Errorf("Kernel Version needs to be 'Darwin x.x.x' ")
-			}
-			release = prettyNames[1]
-		}
-	}
-
-	return release, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_unix.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_unix.go
deleted file mode 100644
index 76e1e499f3..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_unix.go
+++ /dev/null
@@ -1,45 +0,0 @@
-// +build linux freebsd solaris openbsd
-
-// Package kernel provides helper function to get, parse and compare kernel
-// versions for different platforms.
-package kernel
-
-import (
-	"bytes"
-
-	"github.com/sirupsen/logrus"
-)
-
-// GetKernelVersion gets the current kernel version.
-func GetKernelVersion() (*VersionInfo, error) {
-	uts, err := uname()
-	if err != nil {
-		return nil, err
-	}
-
-	release := make([]byte, len(uts.Release))
-
-	i := 0
-	for _, c := range uts.Release {
-		release[i] = byte(c)
-		i++
-	}
-
-	// Remove the \x00 from the release for Atoi to parse correctly
-	release = release[:bytes.IndexByte(release, 0)]
-
-	return ParseRelease(string(release))
-}
-
-// CheckKernelVersion checks if current kernel is newer than (or equal to)
-// the given version.
-func CheckKernelVersion(k, major, minor int) bool {
-	if v, err := GetKernelVersion(); err != nil {
-		logrus.Warnf("error getting kernel version: %s", err)
-	} else {
-		if CompareKernelVersion(*v, VersionInfo{Kernel: k, Major: major, Minor: minor}) < 0 {
-			return false
-		}
-	}
-	return true
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_windows.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_windows.go
deleted file mode 100644
index e598672776..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/kernel_windows.go
+++ /dev/null
@@ -1,70 +0,0 @@
-// +build windows
-
-package kernel
-
-import (
-	"fmt"
-	"unsafe"
-
-	"golang.org/x/sys/windows"
-)
-
-// VersionInfo holds information about the kernel.
-type VersionInfo struct {
-	kvi   string // Version of the kernel (e.g. 6.1.7601.17592 -> 6)
-	major int    // Major part of the kernel version (e.g. 6.1.7601.17592 -> 1)
-	minor int    // Minor part of the kernel version (e.g. 6.1.7601.17592 -> 7601)
-	build int    // Build number of the kernel version (e.g. 6.1.7601.17592 -> 17592)
-}
-
-func (k *VersionInfo) String() string {
-	return fmt.Sprintf("%d.%d %d (%s)", k.major, k.minor, k.build, k.kvi)
-}
-
-// GetKernelVersion gets the current kernel version.
-func GetKernelVersion() (*VersionInfo, error) {
-
-	var (
-		h         windows.Handle
-		dwVersion uint32
-		err       error
-	)
-
-	KVI := &VersionInfo{"Unknown", 0, 0, 0}
-
-	if err = windows.RegOpenKeyEx(windows.HKEY_LOCAL_MACHINE,
-		windows.StringToUTF16Ptr(`SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\`),
-		0,
-		windows.KEY_READ,
-		&h); err != nil {
-		return KVI, err
-	}
-	defer windows.RegCloseKey(h)
-
-	var buf [1 << 10]uint16
-	var typ uint32
-	n := uint32(len(buf) * 2) // api expects array of bytes, not uint16
-
-	if err = windows.RegQueryValueEx(h,
-		windows.StringToUTF16Ptr("BuildLabEx"),
-		nil,
-		&typ,
-		(*byte)(unsafe.Pointer(&buf[0])),
-		&n); err != nil {
-		return KVI, err
-	}
-
-	KVI.kvi = windows.UTF16ToString(buf[:])
-
-	// Important - docker.exe MUST be manifested for this API to return
-	// the correct information.
-	if dwVersion, err = windows.GetVersion(); err != nil {
-		return KVI, err
-	}
-
-	KVI.major = int(dwVersion & 0xFF)
-	KVI.minor = int((dwVersion & 0XFF00) >> 8)
-	KVI.build = int((dwVersion & 0xFFFF0000) >> 16)
-
-	return KVI, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_linux.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_linux.go
deleted file mode 100644
index e913fad001..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_linux.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package kernel
-
-import "golang.org/x/sys/unix"
-
-// Utsname represents the system name structure.
-// It is passthrough for unix.Utsname in order to make it portable with
-// other platforms where it is not available.
-type Utsname unix.Utsname
-
-func uname() (*unix.Utsname, error) {
-	uts := &unix.Utsname{}
-
-	if err := unix.Uname(uts); err != nil {
-		return nil, err
-	}
-	return uts, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_solaris.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_solaris.go
deleted file mode 100644
index 49370bd3dd..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_solaris.go
+++ /dev/null
@@ -1,14 +0,0 @@
-package kernel
-
-import (
-	"golang.org/x/sys/unix"
-)
-
-func uname() (*unix.Utsname, error) {
-	uts := &unix.Utsname{}
-
-	if err := unix.Uname(uts); err != nil {
-		return nil, err
-	}
-	return uts, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_unsupported.go b/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_unsupported.go
deleted file mode 100644
index 1da3f239fa..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/kernel/uname_unsupported.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// +build !linux,!solaris
-
-package kernel
-
-import (
-	"errors"
-)
-
-// Utsname represents the system name structure.
-// It is defined here to make it portable as it is available on linux but not
-// on windows.
-type Utsname struct {
-	Release [65]byte
-}
-
-func uname() (*Utsname, error) {
-	return nil, errors.New("Kernel version detection is available only on linux")
-}
diff --git a/vendor/github.com/containers/storage/pkg/parsers/parsers.go b/vendor/github.com/containers/storage/pkg/parsers/parsers.go
deleted file mode 100644
index acc897168f..0000000000
--- a/vendor/github.com/containers/storage/pkg/parsers/parsers.go
+++ /dev/null
@@ -1,69 +0,0 @@
-// Package parsers provides helper functions to parse and validate different type
-// of string. It can be hosts, unix addresses, tcp addresses, filters, kernel
-// operating system versions.
-package parsers
-
-import (
-	"fmt"
-	"strconv"
-	"strings"
-)
-
-// ParseKeyValueOpt parses and validates the specified string as a key/value pair (key=value)
-func ParseKeyValueOpt(opt string) (string, string, error) {
-	parts := strings.SplitN(opt, "=", 2)
-	if len(parts) != 2 {
-		return "", "", fmt.Errorf("Unable to parse key/value option: %s", opt)
-	}
-	return strings.TrimSpace(parts[0]), strings.TrimSpace(parts[1]), nil
-}
-
-// ParseUintList parses and validates the specified string as the value
-// found in some cgroup file (e.g. `cpuset.cpus`, `cpuset.mems`), which could be
-// one of the formats below. Note that duplicates are actually allowed in the
-// input string. It returns a `map[int]bool` with available elements from `val`
-// set to `true`.
-// Supported formats:
-//     7
-//     1-6
-//     0,3-4,7,8-10
-//     0-0,0,1-7
-//     03,1-3      <- this is gonna get parsed as [1,2,3]
-//     3,2,1
-//     0-2,3,1
-func ParseUintList(val string) (map[int]bool, error) {
-	if val == "" {
-		return map[int]bool{}, nil
-	}
-
-	availableInts := make(map[int]bool)
-	split := strings.Split(val, ",")
-	errInvalidFormat := fmt.Errorf("invalid format: %s", val)
-
-	for _, r := range split {
-		if !strings.Contains(r, "-") {
-			v, err := strconv.Atoi(r)
-			if err != nil {
-				return nil, errInvalidFormat
-			}
-			availableInts[v] = true
-		} else {
-			split := strings.SplitN(r, "-", 2)
-			min, err := strconv.Atoi(split[0])
-			if err != nil {
-				return nil, errInvalidFormat
-			}
-			max, err := strconv.Atoi(split[1])
-			if err != nil {
-				return nil, errInvalidFormat
-			}
-			if max < min {
-				return nil, errInvalidFormat
-			}
-			for i := min; i <= max; i++ {
-				availableInts[i] = true
-			}
-		}
-	}
-	return availableInts, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/pools/pools.go b/vendor/github.com/containers/storage/pkg/pools/pools.go
deleted file mode 100644
index a15e3688b9..0000000000
--- a/vendor/github.com/containers/storage/pkg/pools/pools.go
+++ /dev/null
@@ -1,119 +0,0 @@
-// Package pools provides a collection of pools which provide various
-// data types with buffers. These can be used to lower the number of
-// memory allocations and reuse buffers.
-//
-// New pools should be added to this package to allow them to be
-// shared across packages.
-//
-// Utility functions which operate on pools should be added to this
-// package to allow them to be reused.
-package pools
-
-import (
-	"bufio"
-	"io"
-	"sync"
-
-	"github.com/containers/storage/pkg/ioutils"
-)
-
-var (
-	// BufioReader32KPool is a pool which returns bufio.Reader with a 32K buffer.
-	BufioReader32KPool *BufioReaderPool
-	// BufioWriter32KPool is a pool which returns bufio.Writer with a 32K buffer.
-	BufioWriter32KPool *BufioWriterPool
-)
-
-const buffer32K = 32 * 1024
-
-// BufioReaderPool is a bufio reader that uses sync.Pool.
-type BufioReaderPool struct {
-	pool *sync.Pool
-}
-
-func init() {
-	BufioReader32KPool = newBufioReaderPoolWithSize(buffer32K)
-	BufioWriter32KPool = newBufioWriterPoolWithSize(buffer32K)
-}
-
-// newBufioReaderPoolWithSize is unexported because new pools should be
-// added here to be shared where required.
-func newBufioReaderPoolWithSize(size int) *BufioReaderPool {
-	pool := &sync.Pool{
-		New: func() interface{} { return bufio.NewReaderSize(nil, size) },
-	}
-	return &BufioReaderPool{pool: pool}
-}
-
-// Get returns a bufio.Reader which reads from r. The buffer size is that of the pool.
-func (bufPool *BufioReaderPool) Get(r io.Reader) *bufio.Reader {
-	buf := bufPool.pool.Get().(*bufio.Reader)
-	buf.Reset(r)
-	return buf
-}
-
-// Put puts the bufio.Reader back into the pool.
-func (bufPool *BufioReaderPool) Put(b *bufio.Reader) {
-	b.Reset(nil)
-	bufPool.pool.Put(b)
-}
-
-// Copy is a convenience wrapper which uses a buffer to avoid allocation in io.Copy.
-func Copy(dst io.Writer, src io.Reader) (written int64, err error) {
-	buf := BufioReader32KPool.Get(src)
-	written, err = io.Copy(dst, buf)
-	BufioReader32KPool.Put(buf)
-	return
-}
-
-// NewReadCloserWrapper returns a wrapper which puts the bufio.Reader back
-// into the pool and closes the reader if it's an io.ReadCloser.
-func (bufPool *BufioReaderPool) NewReadCloserWrapper(buf *bufio.Reader, r io.Reader) io.ReadCloser {
-	return ioutils.NewReadCloserWrapper(r, func() error {
-		if readCloser, ok := r.(io.ReadCloser); ok {
-			readCloser.Close()
-		}
-		bufPool.Put(buf)
-		return nil
-	})
-}
-
-// BufioWriterPool is a bufio writer that uses sync.Pool.
-type BufioWriterPool struct {
-	pool *sync.Pool
-}
-
-// newBufioWriterPoolWithSize is unexported because new pools should be
-// added here to be shared where required.
-func newBufioWriterPoolWithSize(size int) *BufioWriterPool {
-	pool := &sync.Pool{
-		New: func() interface{} { return bufio.NewWriterSize(nil, size) },
-	}
-	return &BufioWriterPool{pool: pool}
-}
-
-// Get returns a bufio.Writer which writes to w. The buffer size is that of the pool.
-func (bufPool *BufioWriterPool) Get(w io.Writer) *bufio.Writer {
-	buf := bufPool.pool.Get().(*bufio.Writer)
-	buf.Reset(w)
-	return buf
-}
-
-// Put puts the bufio.Writer back into the pool.
-func (bufPool *BufioWriterPool) Put(b *bufio.Writer) {
-	b.Reset(nil)
-	bufPool.pool.Put(b)
-}
-
-// NewWriteCloserWrapper returns a wrapper which puts the bufio.Writer back
-// into the pool and closes the writer if it's an io.Writecloser.
-func (bufPool *BufioWriterPool) NewWriteCloserWrapper(buf *bufio.Writer, w io.Writer) io.WriteCloser {
-	return ioutils.NewWriteCloserWrapper(w, func() error {
-		buf.Flush()
-		if writeCloser, ok := w.(io.WriteCloser); ok {
-			writeCloser.Close()
-		}
-		bufPool.Put(buf)
-		return nil
-	})
-}
diff --git a/vendor/github.com/containers/storage/pkg/promise/promise.go b/vendor/github.com/containers/storage/pkg/promise/promise.go
deleted file mode 100644
index dd52b9082f..0000000000
--- a/vendor/github.com/containers/storage/pkg/promise/promise.go
+++ /dev/null
@@ -1,11 +0,0 @@
-package promise
-
-// Go is a basic promise implementation: it wraps calls a function in a goroutine,
-// and returns a channel which will later return the function's return value.
-func Go(f func() error) chan error {
-	ch := make(chan error, 1)
-	go func() {
-		ch <- f()
-	}()
-	return ch
-}
diff --git a/vendor/github.com/containers/storage/pkg/reexec/command_linux.go b/vendor/github.com/containers/storage/pkg/reexec/command_linux.go
deleted file mode 100644
index 05319eacc9..0000000000
--- a/vendor/github.com/containers/storage/pkg/reexec/command_linux.go
+++ /dev/null
@@ -1,30 +0,0 @@
-// +build linux
-
-package reexec
-
-import (
-	"os/exec"
-	"syscall"
-
-	"golang.org/x/sys/unix"
-)
-
-// Self returns the path to the current process's binary.
-// Returns "/proc/self/exe".
-func Self() string {
-	return "/proc/self/exe"
-}
-
-// Command returns *exec.Cmd which has Path as current binary. Also it setting
-// SysProcAttr.Pdeathsig to SIGTERM.
-// This will use the in-memory version (/proc/self/exe) of the current binary,
-// it is thus safe to delete or replace the on-disk binary (os.Args[0]).
-func Command(args ...string) *exec.Cmd {
-	return &exec.Cmd{
-		Path: Self(),
-		Args: args,
-		SysProcAttr: &syscall.SysProcAttr{
-			Pdeathsig: unix.SIGTERM,
-		},
-	}
-}
diff --git a/vendor/github.com/containers/storage/pkg/reexec/command_unix.go b/vendor/github.com/containers/storage/pkg/reexec/command_unix.go
deleted file mode 100644
index 778a720e3b..0000000000
--- a/vendor/github.com/containers/storage/pkg/reexec/command_unix.go
+++ /dev/null
@@ -1,23 +0,0 @@
-// +build freebsd solaris darwin
-
-package reexec
-
-import (
-	"os/exec"
-)
-
-// Self returns the path to the current process's binary.
-// Uses os.Args[0].
-func Self() string {
-	return naiveSelf()
-}
-
-// Command returns *exec.Cmd which has Path as current binary.
-// For example if current binary is "docker" at "/usr/bin/", then cmd.Path will
-// be set to "/usr/bin/docker".
-func Command(args ...string) *exec.Cmd {
-	return &exec.Cmd{
-		Path: Self(),
-		Args: args,
-	}
-}
diff --git a/vendor/github.com/containers/storage/pkg/reexec/command_unsupported.go b/vendor/github.com/containers/storage/pkg/reexec/command_unsupported.go
deleted file mode 100644
index 76edd82427..0000000000
--- a/vendor/github.com/containers/storage/pkg/reexec/command_unsupported.go
+++ /dev/null
@@ -1,12 +0,0 @@
-// +build !linux,!windows,!freebsd,!solaris,!darwin
-
-package reexec
-
-import (
-	"os/exec"
-)
-
-// Command is unsupported on operating systems apart from Linux, Windows, Solaris and Darwin.
-func Command(args ...string) *exec.Cmd {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/reexec/command_windows.go b/vendor/github.com/containers/storage/pkg/reexec/command_windows.go
deleted file mode 100644
index ca871c4227..0000000000
--- a/vendor/github.com/containers/storage/pkg/reexec/command_windows.go
+++ /dev/null
@@ -1,23 +0,0 @@
-// +build windows
-
-package reexec
-
-import (
-	"os/exec"
-)
-
-// Self returns the path to the current process's binary.
-// Uses os.Args[0].
-func Self() string {
-	return naiveSelf()
-}
-
-// Command returns *exec.Cmd which has Path as current binary.
-// For example if current binary is "docker.exe" at "C:\", then cmd.Path will
-// be set to "C:\docker.exe".
-func Command(args ...string) *exec.Cmd {
-	return &exec.Cmd{
-		Path: Self(),
-		Args: args,
-	}
-}
diff --git a/vendor/github.com/containers/storage/pkg/reexec/reexec.go b/vendor/github.com/containers/storage/pkg/reexec/reexec.go
deleted file mode 100644
index c56671d919..0000000000
--- a/vendor/github.com/containers/storage/pkg/reexec/reexec.go
+++ /dev/null
@@ -1,47 +0,0 @@
-package reexec
-
-import (
-	"fmt"
-	"os"
-	"os/exec"
-	"path/filepath"
-)
-
-var registeredInitializers = make(map[string]func())
-
-// Register adds an initialization func under the specified name
-func Register(name string, initializer func()) {
-	if _, exists := registeredInitializers[name]; exists {
-		panic(fmt.Sprintf("reexec func already registered under name %q", name))
-	}
-
-	registeredInitializers[name] = initializer
-}
-
-// Init is called as the first part of the exec process and returns true if an
-// initialization function was called.
-func Init() bool {
-	initializer, exists := registeredInitializers[os.Args[0]]
-	if exists {
-		initializer()
-
-		return true
-	}
-	return false
-}
-
-func naiveSelf() string {
-	name := os.Args[0]
-	if filepath.Base(name) == name {
-		if lp, err := exec.LookPath(name); err == nil {
-			return lp
-		}
-	}
-	// handle conversion of relative paths to absolute
-	if absName, err := filepath.Abs(name); err == nil {
-		return absName
-	}
-	// if we couldn't get absolute name, return original
-	// (NOTE: Go only errors on Abs() if os.Getwd fails)
-	return name
-}
diff --git a/vendor/github.com/containers/storage/pkg/stringid/stringid.go b/vendor/github.com/containers/storage/pkg/stringid/stringid.go
deleted file mode 100644
index a0c7c42a05..0000000000
--- a/vendor/github.com/containers/storage/pkg/stringid/stringid.go
+++ /dev/null
@@ -1,99 +0,0 @@
-// Package stringid provides helper functions for dealing with string identifiers
-package stringid
-
-import (
-	cryptorand "crypto/rand"
-	"encoding/hex"
-	"fmt"
-	"io"
-	"math"
-	"math/big"
-	"math/rand"
-	"regexp"
-	"strconv"
-	"strings"
-	"time"
-)
-
-const shortLen = 12
-
-var (
-	validShortID = regexp.MustCompile("^[a-f0-9]{12}$")
-	validHex     = regexp.MustCompile(`^[a-f0-9]{64}$`)
-)
-
-// IsShortID determines if an arbitrary string *looks like* a short ID.
-func IsShortID(id string) bool {
-	return validShortID.MatchString(id)
-}
-
-// TruncateID returns a shorthand version of a string identifier for convenience.
-// A collision with other shorthands is very unlikely, but possible.
-// In case of a collision a lookup with TruncIndex.Get() will fail, and the caller
-// will need to use a longer prefix, or the full-length Id.
-func TruncateID(id string) string {
-	if i := strings.IndexRune(id, ':'); i >= 0 {
-		id = id[i+1:]
-	}
-	if len(id) > shortLen {
-		id = id[:shortLen]
-	}
-	return id
-}
-
-func generateID(r io.Reader) string {
-	b := make([]byte, 32)
-	for {
-		if _, err := io.ReadFull(r, b); err != nil {
-			panic(err) // This shouldn't happen
-		}
-		id := hex.EncodeToString(b)
-		// if we try to parse the truncated for as an int and we don't have
-		// an error then the value is all numeric and causes issues when
-		// used as a hostname. ref #3869
-		if _, err := strconv.ParseInt(TruncateID(id), 10, 64); err == nil {
-			continue
-		}
-		return id
-	}
-}
-
-// GenerateRandomID returns a unique id.
-func GenerateRandomID() string {
-	return generateID(cryptorand.Reader)
-}
-
-// GenerateNonCryptoID generates unique id without using cryptographically
-// secure sources of random.
-// It helps you to save entropy.
-func GenerateNonCryptoID() string {
-	return generateID(readerFunc(rand.Read))
-}
-
-// ValidateID checks whether an ID string is a valid image ID.
-func ValidateID(id string) error {
-	if ok := validHex.MatchString(id); !ok {
-		return fmt.Errorf("image ID %q is invalid", id)
-	}
-	return nil
-}
-
-func init() {
-	// safely set the seed globally so we generate random ids. Tries to use a
-	// crypto seed before falling back to time.
-	var seed int64
-	if cryptoseed, err := cryptorand.Int(cryptorand.Reader, big.NewInt(math.MaxInt64)); err != nil {
-		// This should not happen, but worst-case fallback to time-based seed.
-		seed = time.Now().UnixNano()
-	} else {
-		seed = cryptoseed.Int64()
-	}
-
-	rand.Seed(seed)
-}
-
-type readerFunc func(p []byte) (int, error)
-
-func (fn readerFunc) Read(p []byte) (int, error) {
-	return fn(p)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/chtimes.go b/vendor/github.com/containers/storage/pkg/system/chtimes.go
deleted file mode 100644
index 056d19954d..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/chtimes.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package system
-
-import (
-	"os"
-	"time"
-)
-
-// Chtimes changes the access time and modified time of a file at the given path
-func Chtimes(name string, atime time.Time, mtime time.Time) error {
-	unixMinTime := time.Unix(0, 0)
-	unixMaxTime := maxTime
-
-	// If the modified time is prior to the Unix Epoch, or after the
-	// end of Unix Time, os.Chtimes has undefined behavior
-	// default to Unix Epoch in this case, just in case
-
-	if atime.Before(unixMinTime) || atime.After(unixMaxTime) {
-		atime = unixMinTime
-	}
-
-	if mtime.Before(unixMinTime) || mtime.After(unixMaxTime) {
-		mtime = unixMinTime
-	}
-
-	if err := os.Chtimes(name, atime, mtime); err != nil {
-		return err
-	}
-
-	// Take platform specific action for setting create time.
-	if err := setCTime(name, mtime); err != nil {
-		return err
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/chtimes_unix.go b/vendor/github.com/containers/storage/pkg/system/chtimes_unix.go
deleted file mode 100644
index 09d58bcbfd..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/chtimes_unix.go
+++ /dev/null
@@ -1,14 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"time"
-)
-
-//setCTime will set the create time on a file. On Unix, the create
-//time is updated as a side effect of setting the modified time, so
-//no action is required.
-func setCTime(path string, ctime time.Time) error {
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/chtimes_windows.go b/vendor/github.com/containers/storage/pkg/system/chtimes_windows.go
deleted file mode 100644
index 45428c141c..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/chtimes_windows.go
+++ /dev/null
@@ -1,28 +0,0 @@
-// +build windows
-
-package system
-
-import (
-	"time"
-
-	"golang.org/x/sys/windows"
-)
-
-//setCTime will set the create time on a file. On Windows, this requires
-//calling SetFileTime and explicitly including the create time.
-func setCTime(path string, ctime time.Time) error {
-	ctimespec := windows.NsecToTimespec(ctime.UnixNano())
-	pathp, e := windows.UTF16PtrFromString(path)
-	if e != nil {
-		return e
-	}
-	h, e := windows.CreateFile(pathp,
-		windows.FILE_WRITE_ATTRIBUTES, windows.FILE_SHARE_WRITE, nil,
-		windows.OPEN_EXISTING, windows.FILE_FLAG_BACKUP_SEMANTICS, 0)
-	if e != nil {
-		return e
-	}
-	defer windows.Close(h)
-	c := windows.NsecToFiletime(windows.TimespecToNsec(ctimespec))
-	return windows.SetFileTime(h, &c, nil, nil)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/errors.go b/vendor/github.com/containers/storage/pkg/system/errors.go
deleted file mode 100644
index 288318985e..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/errors.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package system
-
-import (
-	"errors"
-)
-
-var (
-	// ErrNotSupportedPlatform means the platform is not supported.
-	ErrNotSupportedPlatform = errors.New("platform and architecture is not supported")
-)
diff --git a/vendor/github.com/containers/storage/pkg/system/exitcode.go b/vendor/github.com/containers/storage/pkg/system/exitcode.go
deleted file mode 100644
index 60f0514b1d..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/exitcode.go
+++ /dev/null
@@ -1,33 +0,0 @@
-package system
-
-import (
-	"fmt"
-	"os/exec"
-	"syscall"
-)
-
-// GetExitCode returns the ExitStatus of the specified error if its type is
-// exec.ExitError, returns 0 and an error otherwise.
-func GetExitCode(err error) (int, error) {
-	exitCode := 0
-	if exiterr, ok := err.(*exec.ExitError); ok {
-		if procExit, ok := exiterr.Sys().(syscall.WaitStatus); ok {
-			return procExit.ExitStatus(), nil
-		}
-	}
-	return exitCode, fmt.Errorf("failed to get exit code")
-}
-
-// ProcessExitCode process the specified error and returns the exit status code
-// if the error was of type exec.ExitError, returns nothing otherwise.
-func ProcessExitCode(err error) (exitCode int) {
-	if err != nil {
-		var exiterr error
-		if exitCode, exiterr = GetExitCode(err); exiterr != nil {
-			// TODO: Fix this so we check the error's text.
-			// we've failed to retrieve exit code, so we set it to 127
-			exitCode = 127
-		}
-	}
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/filesys.go b/vendor/github.com/containers/storage/pkg/system/filesys.go
deleted file mode 100644
index 102565f760..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/filesys.go
+++ /dev/null
@@ -1,67 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"io/ioutil"
-	"os"
-	"path/filepath"
-)
-
-// MkdirAllWithACL is a wrapper for MkdirAll on unix systems.
-func MkdirAllWithACL(path string, perm os.FileMode, sddl string) error {
-	return MkdirAll(path, perm, sddl)
-}
-
-// MkdirAll creates a directory named path along with any necessary parents,
-// with permission specified by attribute perm for all dir created.
-func MkdirAll(path string, perm os.FileMode, sddl string) error {
-	return os.MkdirAll(path, perm)
-}
-
-// IsAbs is a platform-specific wrapper for filepath.IsAbs.
-func IsAbs(path string) bool {
-	return filepath.IsAbs(path)
-}
-
-// The functions below here are wrappers for the equivalents in the os and ioutils packages.
-// They are passthrough on Unix platforms, and only relevant on Windows.
-
-// CreateSequential creates the named file with mode 0666 (before umask), truncating
-// it if it already exists. If successful, methods on the returned
-// File can be used for I/O; the associated file descriptor has mode
-// O_RDWR.
-// If there is an error, it will be of type *PathError.
-func CreateSequential(name string) (*os.File, error) {
-	return os.Create(name)
-}
-
-// OpenSequential opens the named file for reading. If successful, methods on
-// the returned file can be used for reading; the associated file
-// descriptor has mode O_RDONLY.
-// If there is an error, it will be of type *PathError.
-func OpenSequential(name string) (*os.File, error) {
-	return os.Open(name)
-}
-
-// OpenFileSequential is the generalized open call; most users will use Open
-// or Create instead. It opens the named file with specified flag
-// (O_RDONLY etc.) and perm, (0666 etc.) if applicable. If successful,
-// methods on the returned File can be used for I/O.
-// If there is an error, it will be of type *PathError.
-func OpenFileSequential(name string, flag int, perm os.FileMode) (*os.File, error) {
-	return os.OpenFile(name, flag, perm)
-}
-
-// TempFileSequential creates a new temporary file in the directory dir
-// with a name beginning with prefix, opens the file for reading
-// and writing, and returns the resulting *os.File.
-// If dir is the empty string, TempFile uses the default directory
-// for temporary files (see os.TempDir).
-// Multiple programs calling TempFile simultaneously
-// will not choose the same file. The caller can use f.Name()
-// to find the pathname of the file. It is the caller's responsibility
-// to remove the file when no longer needed.
-func TempFileSequential(dir, prefix string) (f *os.File, err error) {
-	return ioutil.TempFile(dir, prefix)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/filesys_windows.go b/vendor/github.com/containers/storage/pkg/system/filesys_windows.go
deleted file mode 100644
index a61b53d0ba..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/filesys_windows.go
+++ /dev/null
@@ -1,298 +0,0 @@
-// +build windows
-
-package system
-
-import (
-	"os"
-	"path/filepath"
-	"regexp"
-	"strconv"
-	"strings"
-	"sync"
-	"syscall"
-	"time"
-	"unsafe"
-
-	winio "github.com/Microsoft/go-winio"
-	"golang.org/x/sys/windows"
-)
-
-const (
-	// SddlAdministratorsLocalSystem is local administrators plus NT AUTHORITY\System
-	SddlAdministratorsLocalSystem = "D:P(A;OICI;GA;;;BA)(A;OICI;GA;;;SY)"
-	// SddlNtvmAdministratorsLocalSystem is NT VIRTUAL MACHINE\Virtual Machines plus local administrators plus NT AUTHORITY\System
-	SddlNtvmAdministratorsLocalSystem = "D:P(A;OICI;GA;;;S-1-5-83-0)(A;OICI;GA;;;BA)(A;OICI;GA;;;SY)"
-)
-
-// MkdirAllWithACL is a wrapper for MkdirAll that creates a directory
-// with an appropriate SDDL defined ACL.
-func MkdirAllWithACL(path string, perm os.FileMode, sddl string) error {
-	return mkdirall(path, true, sddl)
-}
-
-// MkdirAll implementation that is volume path aware for Windows.
-func MkdirAll(path string, _ os.FileMode, sddl string) error {
-	return mkdirall(path, false, sddl)
-}
-
-// mkdirall is a custom version of os.MkdirAll modified for use on Windows
-// so that it is both volume path aware, and can create a directory with
-// a DACL.
-func mkdirall(path string, applyACL bool, sddl string) error {
-	if re := regexp.MustCompile(`^\\\\\?\\Volume{[a-z0-9-]+}$`); re.MatchString(path) {
-		return nil
-	}
-
-	// The rest of this method is largely copied from os.MkdirAll and should be kept
-	// as-is to ensure compatibility.
-
-	// Fast path: if we can tell whether path is a directory or file, stop with success or error.
-	dir, err := os.Stat(path)
-	if err == nil {
-		if dir.IsDir() {
-			return nil
-		}
-		return &os.PathError{
-			Op:   "mkdir",
-			Path: path,
-			Err:  syscall.ENOTDIR,
-		}
-	}
-
-	// Slow path: make sure parent exists and then call Mkdir for path.
-	i := len(path)
-	for i > 0 && os.IsPathSeparator(path[i-1]) { // Skip trailing path separator.
-		i--
-	}
-
-	j := i
-	for j > 0 && !os.IsPathSeparator(path[j-1]) { // Scan backward over element.
-		j--
-	}
-
-	if j > 1 {
-		// Create parent
-		err = mkdirall(path[0:j-1], false, sddl)
-		if err != nil {
-			return err
-		}
-	}
-
-	// Parent now exists; invoke os.Mkdir or mkdirWithACL and use its result.
-	if applyACL {
-		err = mkdirWithACL(path, sddl)
-	} else {
-		err = os.Mkdir(path, 0)
-	}
-
-	if err != nil {
-		// Handle arguments like "foo/." by
-		// double-checking that directory doesn't exist.
-		dir, err1 := os.Lstat(path)
-		if err1 == nil && dir.IsDir() {
-			return nil
-		}
-		return err
-	}
-	return nil
-}
-
-// mkdirWithACL creates a new directory. If there is an error, it will be of
-// type *PathError. .
-//
-// This is a modified and combined version of os.Mkdir and windows.Mkdir
-// in golang to cater for creating a directory am ACL permitting full
-// access, with inheritance, to any subfolder/file for Built-in Administrators
-// and Local System.
-func mkdirWithACL(name string, sddl string) error {
-	sa := windows.SecurityAttributes{Length: 0}
-	sd, err := winio.SddlToSecurityDescriptor(sddl)
-	if err != nil {
-		return &os.PathError{Op: "mkdir", Path: name, Err: err}
-	}
-	sa.Length = uint32(unsafe.Sizeof(sa))
-	sa.InheritHandle = 1
-	sa.SecurityDescriptor = uintptr(unsafe.Pointer(&sd[0]))
-
-	namep, err := windows.UTF16PtrFromString(name)
-	if err != nil {
-		return &os.PathError{Op: "mkdir", Path: name, Err: err}
-	}
-
-	e := windows.CreateDirectory(namep, &sa)
-	if e != nil {
-		return &os.PathError{Op: "mkdir", Path: name, Err: e}
-	}
-	return nil
-}
-
-// IsAbs is a platform-specific wrapper for filepath.IsAbs. On Windows,
-// golang filepath.IsAbs does not consider a path \windows\system32 as absolute
-// as it doesn't start with a drive-letter/colon combination. However, in
-// docker we need to verify things such as WORKDIR /windows/system32 in
-// a Dockerfile (which gets translated to \windows\system32 when being processed
-// by the daemon. This SHOULD be treated as absolute from a docker processing
-// perspective.
-func IsAbs(path string) bool {
-	if !filepath.IsAbs(path) {
-		if !strings.HasPrefix(path, string(os.PathSeparator)) {
-			return false
-		}
-	}
-	return true
-}
-
-// The origin of the functions below here are the golang OS and windows packages,
-// slightly modified to only cope with files, not directories due to the
-// specific use case.
-//
-// The alteration is to allow a file on Windows to be opened with
-// FILE_FLAG_SEQUENTIAL_SCAN (particular for docker load), to avoid eating
-// the standby list, particularly when accessing large files such as layer.tar.
-
-// CreateSequential creates the named file with mode 0666 (before umask), truncating
-// it if it already exists. If successful, methods on the returned
-// File can be used for I/O; the associated file descriptor has mode
-// O_RDWR.
-// If there is an error, it will be of type *PathError.
-func CreateSequential(name string) (*os.File, error) {
-	return OpenFileSequential(name, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0)
-}
-
-// OpenSequential opens the named file for reading. If successful, methods on
-// the returned file can be used for reading; the associated file
-// descriptor has mode O_RDONLY.
-// If there is an error, it will be of type *PathError.
-func OpenSequential(name string) (*os.File, error) {
-	return OpenFileSequential(name, os.O_RDONLY, 0)
-}
-
-// OpenFileSequential is the generalized open call; most users will use Open
-// or Create instead.
-// If there is an error, it will be of type *PathError.
-func OpenFileSequential(name string, flag int, _ os.FileMode) (*os.File, error) {
-	if name == "" {
-		return nil, &os.PathError{Op: "open", Path: name, Err: syscall.ENOENT}
-	}
-	r, errf := windowsOpenFileSequential(name, flag, 0)
-	if errf == nil {
-		return r, nil
-	}
-	return nil, &os.PathError{Op: "open", Path: name, Err: errf}
-}
-
-func windowsOpenFileSequential(name string, flag int, _ os.FileMode) (file *os.File, err error) {
-	r, e := windowsOpenSequential(name, flag|windows.O_CLOEXEC, 0)
-	if e != nil {
-		return nil, e
-	}
-	return os.NewFile(uintptr(r), name), nil
-}
-
-func makeInheritSa() *windows.SecurityAttributes {
-	var sa windows.SecurityAttributes
-	sa.Length = uint32(unsafe.Sizeof(sa))
-	sa.InheritHandle = 1
-	return &sa
-}
-
-func windowsOpenSequential(path string, mode int, _ uint32) (fd windows.Handle, err error) {
-	if len(path) == 0 {
-		return windows.InvalidHandle, windows.ERROR_FILE_NOT_FOUND
-	}
-	pathp, err := windows.UTF16PtrFromString(path)
-	if err != nil {
-		return windows.InvalidHandle, err
-	}
-	var access uint32
-	switch mode & (windows.O_RDONLY | windows.O_WRONLY | windows.O_RDWR) {
-	case windows.O_RDONLY:
-		access = windows.GENERIC_READ
-	case windows.O_WRONLY:
-		access = windows.GENERIC_WRITE
-	case windows.O_RDWR:
-		access = windows.GENERIC_READ | windows.GENERIC_WRITE
-	}
-	if mode&windows.O_CREAT != 0 {
-		access |= windows.GENERIC_WRITE
-	}
-	if mode&windows.O_APPEND != 0 {
-		access &^= windows.GENERIC_WRITE
-		access |= windows.FILE_APPEND_DATA
-	}
-	sharemode := uint32(windows.FILE_SHARE_READ | windows.FILE_SHARE_WRITE)
-	var sa *windows.SecurityAttributes
-	if mode&windows.O_CLOEXEC == 0 {
-		sa = makeInheritSa()
-	}
-	var createmode uint32
-	switch {
-	case mode&(windows.O_CREAT|windows.O_EXCL) == (windows.O_CREAT | windows.O_EXCL):
-		createmode = windows.CREATE_NEW
-	case mode&(windows.O_CREAT|windows.O_TRUNC) == (windows.O_CREAT | windows.O_TRUNC):
-		createmode = windows.CREATE_ALWAYS
-	case mode&windows.O_CREAT == windows.O_CREAT:
-		createmode = windows.OPEN_ALWAYS
-	case mode&windows.O_TRUNC == windows.O_TRUNC:
-		createmode = windows.TRUNCATE_EXISTING
-	default:
-		createmode = windows.OPEN_EXISTING
-	}
-	// Use FILE_FLAG_SEQUENTIAL_SCAN rather than FILE_ATTRIBUTE_NORMAL as implemented in golang.
-	//https://msdn.microsoft.com/en-us/library/windows/desktop/aa363858(v=vs.85).aspx
-	const fileFlagSequentialScan = 0x08000000 // FILE_FLAG_SEQUENTIAL_SCAN
-	h, e := windows.CreateFile(pathp, access, sharemode, sa, createmode, fileFlagSequentialScan, 0)
-	return h, e
-}
-
-// Helpers for TempFileSequential
-var rand uint32
-var randmu sync.Mutex
-
-func reseed() uint32 {
-	return uint32(time.Now().UnixNano() + int64(os.Getpid()))
-}
-func nextSuffix() string {
-	randmu.Lock()
-	r := rand
-	if r == 0 {
-		r = reseed()
-	}
-	r = r*1664525 + 1013904223 // constants from Numerical Recipes
-	rand = r
-	randmu.Unlock()
-	return strconv.Itoa(int(1e9 + r%1e9))[1:]
-}
-
-// TempFileSequential is a copy of ioutil.TempFile, modified to use sequential
-// file access. Below is the original comment from golang:
-// TempFile creates a new temporary file in the directory dir
-// with a name beginning with prefix, opens the file for reading
-// and writing, and returns the resulting *os.File.
-// If dir is the empty string, TempFile uses the default directory
-// for temporary files (see os.TempDir).
-// Multiple programs calling TempFile simultaneously
-// will not choose the same file. The caller can use f.Name()
-// to find the pathname of the file. It is the caller's responsibility
-// to remove the file when no longer needed.
-func TempFileSequential(dir, prefix string) (f *os.File, err error) {
-	if dir == "" {
-		dir = os.TempDir()
-	}
-
-	nconflict := 0
-	for i := 0; i < 10000; i++ {
-		name := filepath.Join(dir, prefix+nextSuffix())
-		f, err = OpenFileSequential(name, os.O_RDWR|os.O_CREATE|os.O_EXCL, 0600)
-		if os.IsExist(err) {
-			if nconflict++; nconflict > 10 {
-				randmu.Lock()
-				rand = reseed()
-				randmu.Unlock()
-			}
-			continue
-		}
-		break
-	}
-	return
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/init.go b/vendor/github.com/containers/storage/pkg/system/init.go
deleted file mode 100644
index 17935088de..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/init.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package system
-
-import (
-	"syscall"
-	"time"
-	"unsafe"
-)
-
-// Used by chtimes
-var maxTime time.Time
-
-func init() {
-	// chtimes initialization
-	if unsafe.Sizeof(syscall.Timespec{}.Nsec) == 8 {
-		// This is a 64 bit timespec
-		// os.Chtimes limits time to the following
-		maxTime = time.Unix(0, 1<<63-1)
-	} else {
-		// This is a 32 bit timespec
-		maxTime = time.Unix(1<<31-1, 0)
-	}
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/init_windows.go b/vendor/github.com/containers/storage/pkg/system/init_windows.go
deleted file mode 100644
index 019c66441c..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/init_windows.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package system
-
-import "os"
-
-// LCOWSupported determines if Linux Containers on Windows are supported.
-// Note: This feature is in development (06/17) and enabled through an
-// environment variable. At a future time, it will be enabled based
-// on build number. @jhowardmsft
-var lcowSupported = false
-
-func init() {
-	// LCOW initialization
-	if os.Getenv("LCOW_SUPPORTED") != "" {
-		lcowSupported = true
-	}
-
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/lcow_unix.go b/vendor/github.com/containers/storage/pkg/system/lcow_unix.go
deleted file mode 100644
index cff33bb408..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/lcow_unix.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !windows
-
-package system
-
-// LCOWSupported returns true if Linux containers on Windows are supported.
-func LCOWSupported() bool {
-	return false
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/lcow_windows.go b/vendor/github.com/containers/storage/pkg/system/lcow_windows.go
deleted file mode 100644
index e54d01e696..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/lcow_windows.go
+++ /dev/null
@@ -1,6 +0,0 @@
-package system
-
-// LCOWSupported returns true if Linux containers on Windows are supported.
-func LCOWSupported() bool {
-	return lcowSupported
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/lstat_unix.go b/vendor/github.com/containers/storage/pkg/system/lstat_unix.go
deleted file mode 100644
index bd23c4d50b..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/lstat_unix.go
+++ /dev/null
@@ -1,19 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"syscall"
-)
-
-// Lstat takes a path to a file and returns
-// a system.StatT type pertaining to that file.
-//
-// Throws an error if the file does not exist
-func Lstat(path string) (*StatT, error) {
-	s := &syscall.Stat_t{}
-	if err := syscall.Lstat(path, s); err != nil {
-		return nil, err
-	}
-	return fromStatT(s)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/lstat_windows.go b/vendor/github.com/containers/storage/pkg/system/lstat_windows.go
deleted file mode 100644
index e51df0dafe..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/lstat_windows.go
+++ /dev/null
@@ -1,14 +0,0 @@
-package system
-
-import "os"
-
-// Lstat calls os.Lstat to get a fileinfo interface back.
-// This is then copied into our own locally defined structure.
-func Lstat(path string) (*StatT, error) {
-	fi, err := os.Lstat(path)
-	if err != nil {
-		return nil, err
-	}
-
-	return fromStatT(&fi)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/meminfo.go b/vendor/github.com/containers/storage/pkg/system/meminfo.go
deleted file mode 100644
index 3b6e947e67..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/meminfo.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package system
-
-// MemInfo contains memory statistics of the host system.
-type MemInfo struct {
-	// Total usable RAM (i.e. physical RAM minus a few reserved bits and the
-	// kernel binary code).
-	MemTotal int64
-
-	// Amount of free memory.
-	MemFree int64
-
-	// Total amount of swap space available.
-	SwapTotal int64
-
-	// Amount of swap space that is currently unused.
-	SwapFree int64
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/meminfo_linux.go b/vendor/github.com/containers/storage/pkg/system/meminfo_linux.go
deleted file mode 100644
index 385f1d5e73..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/meminfo_linux.go
+++ /dev/null
@@ -1,65 +0,0 @@
-package system
-
-import (
-	"bufio"
-	"io"
-	"os"
-	"strconv"
-	"strings"
-
-	"github.com/docker/go-units"
-)
-
-// ReadMemInfo retrieves memory statistics of the host system and returns a
-// MemInfo type.
-func ReadMemInfo() (*MemInfo, error) {
-	file, err := os.Open("/proc/meminfo")
-	if err != nil {
-		return nil, err
-	}
-	defer file.Close()
-	return parseMemInfo(file)
-}
-
-// parseMemInfo parses the /proc/meminfo file into
-// a MemInfo object given an io.Reader to the file.
-// Throws error if there are problems reading from the file
-func parseMemInfo(reader io.Reader) (*MemInfo, error) {
-	meminfo := &MemInfo{}
-	scanner := bufio.NewScanner(reader)
-	for scanner.Scan() {
-		// Expected format: ["MemTotal:", "1234", "kB"]
-		parts := strings.Fields(scanner.Text())
-
-		// Sanity checks: Skip malformed entries.
-		if len(parts) < 3 || parts[2] != "kB" {
-			continue
-		}
-
-		// Convert to bytes.
-		size, err := strconv.Atoi(parts[1])
-		if err != nil {
-			continue
-		}
-		bytes := int64(size) * units.KiB
-
-		switch parts[0] {
-		case "MemTotal:":
-			meminfo.MemTotal = bytes
-		case "MemFree:":
-			meminfo.MemFree = bytes
-		case "SwapTotal:":
-			meminfo.SwapTotal = bytes
-		case "SwapFree:":
-			meminfo.SwapFree = bytes
-		}
-
-	}
-
-	// Handle errors that may have occurred during the reading of the file.
-	if err := scanner.Err(); err != nil {
-		return nil, err
-	}
-
-	return meminfo, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/meminfo_solaris.go b/vendor/github.com/containers/storage/pkg/system/meminfo_solaris.go
deleted file mode 100644
index 925776e789..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/meminfo_solaris.go
+++ /dev/null
@@ -1,129 +0,0 @@
-// +build solaris,cgo
-
-package system
-
-import (
-	"fmt"
-	"unsafe"
-)
-
-// #cgo CFLAGS: -std=c99
-// #cgo LDFLAGS: -lkstat
-// #include <unistd.h>
-// #include <stdlib.h>
-// #include <stdio.h>
-// #include <kstat.h>
-// #include <sys/swap.h>
-// #include <sys/param.h>
-// struct swaptable *allocSwaptable(int num) {
-//	struct swaptable *st;
-//	struct swapent *swapent;
-// 	st = (struct swaptable *)malloc(num * sizeof(swapent_t) + sizeof (int));
-//	swapent = st->swt_ent;
-//	for (int i = 0; i < num; i++,swapent++) {
-//		swapent->ste_path = (char *)malloc(MAXPATHLEN * sizeof (char));
-//	}
-//	st->swt_n = num;
-//	return st;
-//}
-// void freeSwaptable (struct swaptable *st) {
-//	struct swapent *swapent = st->swt_ent;
-//	for (int i = 0; i < st->swt_n; i++,swapent++) {
-//		free(swapent->ste_path);
-//	}
-//	free(st);
-// }
-// swapent_t getSwapEnt(swapent_t *ent, int i) {
-//	return ent[i];
-// }
-// int64_t getPpKernel() {
-//	int64_t pp_kernel = 0;
-//	kstat_ctl_t *ksc;
-//	kstat_t *ks;
-//	kstat_named_t *knp;
-//	kid_t kid;
-//
-//	if ((ksc = kstat_open()) == NULL) {
-//		return -1;
-//	}
-//	if ((ks = kstat_lookup(ksc, "unix", 0, "system_pages")) == NULL) {
-//		return -1;
-//	}
-//	if (((kid = kstat_read(ksc, ks, NULL)) == -1) ||
-//	    ((knp = kstat_data_lookup(ks, "pp_kernel")) == NULL)) {
-//		return -1;
-//	}
-//	switch (knp->data_type) {
-//	case KSTAT_DATA_UINT64:
-//		pp_kernel = knp->value.ui64;
-//		break;
-//	case KSTAT_DATA_UINT32:
-//		pp_kernel = knp->value.ui32;
-//		break;
-//	}
-//	pp_kernel *= sysconf(_SC_PAGESIZE);
-//	return (pp_kernel > 0 ? pp_kernel : -1);
-// }
-import "C"
-
-// Get the system memory info using sysconf same as prtconf
-func getTotalMem() int64 {
-	pagesize := C.sysconf(C._SC_PAGESIZE)
-	npages := C.sysconf(C._SC_PHYS_PAGES)
-	return int64(pagesize * npages)
-}
-
-func getFreeMem() int64 {
-	pagesize := C.sysconf(C._SC_PAGESIZE)
-	npages := C.sysconf(C._SC_AVPHYS_PAGES)
-	return int64(pagesize * npages)
-}
-
-// ReadMemInfo retrieves memory statistics of the host system and returns a
-//  MemInfo type.
-func ReadMemInfo() (*MemInfo, error) {
-
-	ppKernel := C.getPpKernel()
-	MemTotal := getTotalMem()
-	MemFree := getFreeMem()
-	SwapTotal, SwapFree, err := getSysSwap()
-
-	if ppKernel < 0 || MemTotal < 0 || MemFree < 0 || SwapTotal < 0 ||
-		SwapFree < 0 {
-		return nil, fmt.Errorf("error getting system memory info %v\n", err)
-	}
-
-	meminfo := &MemInfo{}
-	// Total memory is total physical memory less than memory locked by kernel
-	meminfo.MemTotal = MemTotal - int64(ppKernel)
-	meminfo.MemFree = MemFree
-	meminfo.SwapTotal = SwapTotal
-	meminfo.SwapFree = SwapFree
-
-	return meminfo, nil
-}
-
-func getSysSwap() (int64, int64, error) {
-	var tSwap int64
-	var fSwap int64
-	var diskblksPerPage int64
-	num, err := C.swapctl(C.SC_GETNSWP, nil)
-	if err != nil {
-		return -1, -1, err
-	}
-	st := C.allocSwaptable(num)
-	_, err = C.swapctl(C.SC_LIST, unsafe.Pointer(st))
-	if err != nil {
-		C.freeSwaptable(st)
-		return -1, -1, err
-	}
-
-	diskblksPerPage = int64(C.sysconf(C._SC_PAGESIZE) >> C.DEV_BSHIFT)
-	for i := 0; i < int(num); i++ {
-		swapent := C.getSwapEnt(&st.swt_ent[0], C.int(i))
-		tSwap += int64(swapent.ste_pages) * diskblksPerPage
-		fSwap += int64(swapent.ste_free) * diskblksPerPage
-	}
-	C.freeSwaptable(st)
-	return tSwap, fSwap, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/meminfo_unsupported.go b/vendor/github.com/containers/storage/pkg/system/meminfo_unsupported.go
deleted file mode 100644
index 3ce019dffd..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/meminfo_unsupported.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build !linux,!windows,!solaris
-
-package system
-
-// ReadMemInfo is not supported on platforms other than linux and windows.
-func ReadMemInfo() (*MemInfo, error) {
-	return nil, ErrNotSupportedPlatform
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/meminfo_windows.go b/vendor/github.com/containers/storage/pkg/system/meminfo_windows.go
deleted file mode 100644
index 883944a4c5..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/meminfo_windows.go
+++ /dev/null
@@ -1,45 +0,0 @@
-package system
-
-import (
-	"unsafe"
-
-	"golang.org/x/sys/windows"
-)
-
-var (
-	modkernel32 = windows.NewLazySystemDLL("kernel32.dll")
-
-	procGlobalMemoryStatusEx = modkernel32.NewProc("GlobalMemoryStatusEx")
-)
-
-// https://msdn.microsoft.com/en-us/library/windows/desktop/aa366589(v=vs.85).aspx
-// https://msdn.microsoft.com/en-us/library/windows/desktop/aa366770(v=vs.85).aspx
-type memorystatusex struct {
-	dwLength                uint32
-	dwMemoryLoad            uint32
-	ullTotalPhys            uint64
-	ullAvailPhys            uint64
-	ullTotalPageFile        uint64
-	ullAvailPageFile        uint64
-	ullTotalVirtual         uint64
-	ullAvailVirtual         uint64
-	ullAvailExtendedVirtual uint64
-}
-
-// ReadMemInfo retrieves memory statistics of the host system and returns a
-//  MemInfo type.
-func ReadMemInfo() (*MemInfo, error) {
-	msi := &memorystatusex{
-		dwLength: 64,
-	}
-	r1, _, _ := procGlobalMemoryStatusEx.Call(uintptr(unsafe.Pointer(msi)))
-	if r1 == 0 {
-		return &MemInfo{}, nil
-	}
-	return &MemInfo{
-		MemTotal:  int64(msi.ullTotalPhys),
-		MemFree:   int64(msi.ullAvailPhys),
-		SwapTotal: int64(msi.ullTotalPageFile),
-		SwapFree:  int64(msi.ullAvailPageFile),
-	}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/mknod.go b/vendor/github.com/containers/storage/pkg/system/mknod.go
deleted file mode 100644
index af79a65383..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/mknod.go
+++ /dev/null
@@ -1,22 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"golang.org/x/sys/unix"
-)
-
-// Mknod creates a filesystem node (file, device special file or named pipe) named path
-// with attributes specified by mode and dev.
-func Mknod(path string, mode uint32, dev int) error {
-	return unix.Mknod(path, mode, dev)
-}
-
-// Mkdev is used to build the value of linux devices (in /dev/) which specifies major
-// and minor number of the newly created device special file.
-// Linux device nodes are a bit weird due to backwards compat with 16 bit device nodes.
-// They are, from low to high: the lower 8 bits of the minor, then 12 bits of the major,
-// then the top 12 bits of the minor.
-func Mkdev(major int64, minor int64) uint32 {
-	return uint32(((minor & 0xfff00) << 12) | ((major & 0xfff) << 8) | (minor & 0xff))
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/mknod_windows.go b/vendor/github.com/containers/storage/pkg/system/mknod_windows.go
deleted file mode 100644
index 2e863c0215..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/mknod_windows.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// +build windows
-
-package system
-
-// Mknod is not implemented on Windows.
-func Mknod(path string, mode uint32, dev int) error {
-	return ErrNotSupportedPlatform
-}
-
-// Mkdev is not implemented on Windows.
-func Mkdev(major int64, minor int64) uint32 {
-	panic("Mkdev not implemented on Windows.")
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/path.go b/vendor/github.com/containers/storage/pkg/system/path.go
deleted file mode 100644
index f634a6be67..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/path.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package system
-
-import "runtime"
-
-const defaultUnixPathEnv = "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
-
-// DefaultPathEnv is unix style list of directories to search for
-// executables. Each directory is separated from the next by a colon
-// ':' character .
-func DefaultPathEnv(platform string) string {
-	if runtime.GOOS == "windows" {
-		if platform != runtime.GOOS && LCOWSupported() {
-			return defaultUnixPathEnv
-		}
-		// Deliberately empty on Windows containers on Windows as the default path will be set by
-		// the container. Docker has no context of what the default path should be.
-		return ""
-	}
-	return defaultUnixPathEnv
-
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/path_unix.go b/vendor/github.com/containers/storage/pkg/system/path_unix.go
deleted file mode 100644
index f3762e69d3..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/path_unix.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build !windows
-
-package system
-
-// CheckSystemDriveAndRemoveDriveLetter verifies that a path, if it includes a drive letter,
-// is the system drive. This is a no-op on Linux.
-func CheckSystemDriveAndRemoveDriveLetter(path string) (string, error) {
-	return path, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/path_windows.go b/vendor/github.com/containers/storage/pkg/system/path_windows.go
deleted file mode 100644
index aab891522d..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/path_windows.go
+++ /dev/null
@@ -1,33 +0,0 @@
-// +build windows
-
-package system
-
-import (
-	"fmt"
-	"path/filepath"
-	"strings"
-)
-
-// CheckSystemDriveAndRemoveDriveLetter verifies and manipulates a Windows path.
-// This is used, for example, when validating a user provided path in docker cp.
-// If a drive letter is supplied, it must be the system drive. The drive letter
-// is always removed. Also, it translates it to OS semantics (IOW / to \). We
-// need the path in this syntax so that it can ultimately be concatenated with
-// a Windows long-path which doesn't support drive-letters. Examples:
-// C:			--> Fail
-// C:\			--> \
-// a			--> a
-// /a			--> \a
-// d:\			--> Fail
-func CheckSystemDriveAndRemoveDriveLetter(path string) (string, error) {
-	if len(path) == 2 && string(path[1]) == ":" {
-		return "", fmt.Errorf("No relative path specified in %q", path)
-	}
-	if !filepath.IsAbs(path) || len(path) < 2 {
-		return filepath.FromSlash(path), nil
-	}
-	if string(path[1]) == ":" && !strings.EqualFold(string(path[0]), "c") {
-		return "", fmt.Errorf("The specified path is not on the system drive (C:)")
-	}
-	return filepath.FromSlash(path[2:]), nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/process_unix.go b/vendor/github.com/containers/storage/pkg/system/process_unix.go
deleted file mode 100644
index 26c8b42c17..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/process_unix.go
+++ /dev/null
@@ -1,24 +0,0 @@
-// +build linux freebsd solaris darwin
-
-package system
-
-import (
-	"syscall"
-
-	"golang.org/x/sys/unix"
-)
-
-// IsProcessAlive returns true if process with a given pid is running.
-func IsProcessAlive(pid int) bool {
-	err := unix.Kill(pid, syscall.Signal(0))
-	if err == nil || err == unix.EPERM {
-		return true
-	}
-
-	return false
-}
-
-// KillProcess force-stops a process.
-func KillProcess(pid int) {
-	unix.Kill(pid, unix.SIGKILL)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/rm.go b/vendor/github.com/containers/storage/pkg/system/rm.go
deleted file mode 100644
index fc03c3e6b6..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/rm.go
+++ /dev/null
@@ -1,80 +0,0 @@
-package system
-
-import (
-	"os"
-	"syscall"
-	"time"
-
-	"github.com/containers/storage/pkg/mount"
-	"github.com/pkg/errors"
-)
-
-// EnsureRemoveAll wraps `os.RemoveAll` to check for specific errors that can
-// often be remedied.
-// Only use `EnsureRemoveAll` if you really want to make every effort to remove
-// a directory.
-//
-// Because of the way `os.Remove` (and by extension `os.RemoveAll`) works, there
-// can be a race between reading directory entries and then actually attempting
-// to remove everything in the directory.
-// These types of errors do not need to be returned since it's ok for the dir to
-// be gone we can just retry the remove operation.
-//
-// This should not return a `os.ErrNotExist` kind of error under any circumstances
-func EnsureRemoveAll(dir string) error {
-	notExistErr := make(map[string]bool)
-
-	// track retries
-	exitOnErr := make(map[string]int)
-	maxRetry := 5
-
-	// Attempt to unmount anything beneath this dir first
-	mount.RecursiveUnmount(dir)
-
-	for {
-		err := os.RemoveAll(dir)
-		if err == nil {
-			return err
-		}
-
-		pe, ok := err.(*os.PathError)
-		if !ok {
-			return err
-		}
-
-		if os.IsNotExist(err) {
-			if notExistErr[pe.Path] {
-				return err
-			}
-			notExistErr[pe.Path] = true
-
-			// There is a race where some subdir can be removed but after the parent
-			//   dir entries have been read.
-			// So the path could be from `os.Remove(subdir)`
-			// If the reported non-existent path is not the passed in `dir` we
-			// should just retry, but otherwise return with no error.
-			if pe.Path == dir {
-				return nil
-			}
-			continue
-		}
-
-		if pe.Err != syscall.EBUSY {
-			return err
-		}
-
-		if mounted, _ := mount.Mounted(pe.Path); mounted {
-			if e := mount.Unmount(pe.Path); e != nil {
-				if mounted, _ := mount.Mounted(pe.Path); mounted {
-					return errors.Wrapf(e, "error while removing %s", dir)
-				}
-			}
-		}
-
-		if exitOnErr[pe.Path] == maxRetry {
-			return err
-		}
-		exitOnErr[pe.Path]++
-		time.Sleep(100 * time.Millisecond)
-	}
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_darwin.go b/vendor/github.com/containers/storage/pkg/system/stat_darwin.go
deleted file mode 100644
index 715f05b938..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_darwin.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package system
-
-import "syscall"
-
-// fromStatT converts a syscall.Stat_t type to a system.Stat_t type
-func fromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return &StatT{size: s.Size,
-		mode: uint32(s.Mode),
-		uid:  s.Uid,
-		gid:  s.Gid,
-		rdev: uint64(s.Rdev),
-		mtim: s.Mtimespec}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_freebsd.go b/vendor/github.com/containers/storage/pkg/system/stat_freebsd.go
deleted file mode 100644
index 715f05b938..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_freebsd.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package system
-
-import "syscall"
-
-// fromStatT converts a syscall.Stat_t type to a system.Stat_t type
-func fromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return &StatT{size: s.Size,
-		mode: uint32(s.Mode),
-		uid:  s.Uid,
-		gid:  s.Gid,
-		rdev: uint64(s.Rdev),
-		mtim: s.Mtimespec}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_linux.go b/vendor/github.com/containers/storage/pkg/system/stat_linux.go
deleted file mode 100644
index 1939f95181..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_linux.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package system
-
-import "syscall"
-
-// fromStatT converts a syscall.Stat_t type to a system.Stat_t type
-func fromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return &StatT{size: s.Size,
-		mode: s.Mode,
-		uid:  s.Uid,
-		gid:  s.Gid,
-		rdev: s.Rdev,
-		mtim: s.Mtim}, nil
-}
-
-// FromStatT converts a syscall.Stat_t type to a system.Stat_t type
-// This is exposed on Linux as pkg/archive/changes uses it.
-func FromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return fromStatT(s)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_openbsd.go b/vendor/github.com/containers/storage/pkg/system/stat_openbsd.go
deleted file mode 100644
index b607dea946..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_openbsd.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package system
-
-import "syscall"
-
-// fromStatT converts a syscall.Stat_t type to a system.Stat_t type
-func fromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return &StatT{size: s.Size,
-		mode: uint32(s.Mode),
-		uid:  s.Uid,
-		gid:  s.Gid,
-		rdev: uint64(s.Rdev),
-		mtim: s.Mtim}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_solaris.go b/vendor/github.com/containers/storage/pkg/system/stat_solaris.go
deleted file mode 100644
index b607dea946..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_solaris.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package system
-
-import "syscall"
-
-// fromStatT converts a syscall.Stat_t type to a system.Stat_t type
-func fromStatT(s *syscall.Stat_t) (*StatT, error) {
-	return &StatT{size: s.Size,
-		mode: uint32(s.Mode),
-		uid:  s.Uid,
-		gid:  s.Gid,
-		rdev: uint64(s.Rdev),
-		mtim: s.Mtim}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_unix.go b/vendor/github.com/containers/storage/pkg/system/stat_unix.go
deleted file mode 100644
index 91c7d121cc..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_unix.go
+++ /dev/null
@@ -1,60 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"syscall"
-)
-
-// StatT type contains status of a file. It contains metadata
-// like permission, owner, group, size, etc about a file.
-type StatT struct {
-	mode uint32
-	uid  uint32
-	gid  uint32
-	rdev uint64
-	size int64
-	mtim syscall.Timespec
-}
-
-// Mode returns file's permission mode.
-func (s StatT) Mode() uint32 {
-	return s.mode
-}
-
-// UID returns file's user id of owner.
-func (s StatT) UID() uint32 {
-	return s.uid
-}
-
-// GID returns file's group id of owner.
-func (s StatT) GID() uint32 {
-	return s.gid
-}
-
-// Rdev returns file's device ID (if it's special file).
-func (s StatT) Rdev() uint64 {
-	return s.rdev
-}
-
-// Size returns file's size.
-func (s StatT) Size() int64 {
-	return s.size
-}
-
-// Mtim returns file's last modification time.
-func (s StatT) Mtim() syscall.Timespec {
-	return s.mtim
-}
-
-// Stat takes a path to a file and returns
-// a system.StatT type pertaining to that file.
-//
-// Throws an error if the file does not exist
-func Stat(path string) (*StatT, error) {
-	s := &syscall.Stat_t{}
-	if err := syscall.Stat(path, s); err != nil {
-		return nil, err
-	}
-	return fromStatT(s)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/stat_windows.go b/vendor/github.com/containers/storage/pkg/system/stat_windows.go
deleted file mode 100644
index 6c63972682..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/stat_windows.go
+++ /dev/null
@@ -1,49 +0,0 @@
-package system
-
-import (
-	"os"
-	"time"
-)
-
-// StatT type contains status of a file. It contains metadata
-// like permission, size, etc about a file.
-type StatT struct {
-	mode os.FileMode
-	size int64
-	mtim time.Time
-}
-
-// Size returns file's size.
-func (s StatT) Size() int64 {
-	return s.size
-}
-
-// Mode returns file's permission mode.
-func (s StatT) Mode() os.FileMode {
-	return os.FileMode(s.mode)
-}
-
-// Mtim returns file's last modification time.
-func (s StatT) Mtim() time.Time {
-	return time.Time(s.mtim)
-}
-
-// Stat takes a path to a file and returns
-// a system.StatT type pertaining to that file.
-//
-// Throws an error if the file does not exist
-func Stat(path string) (*StatT, error) {
-	fi, err := os.Stat(path)
-	if err != nil {
-		return nil, err
-	}
-	return fromStatT(&fi)
-}
-
-// fromStatT converts a os.FileInfo type to a system.StatT type
-func fromStatT(fi *os.FileInfo) (*StatT, error) {
-	return &StatT{
-		size: (*fi).Size(),
-		mode: (*fi).Mode(),
-		mtim: (*fi).ModTime()}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/syscall_unix.go b/vendor/github.com/containers/storage/pkg/system/syscall_unix.go
deleted file mode 100644
index 49dbdd3781..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/syscall_unix.go
+++ /dev/null
@@ -1,17 +0,0 @@
-// +build linux freebsd
-
-package system
-
-import "golang.org/x/sys/unix"
-
-// Unmount is a platform-specific helper function to call
-// the unmount syscall.
-func Unmount(dest string) error {
-	return unix.Unmount(dest, 0)
-}
-
-// CommandLineToArgv should not be used on Unix.
-// It simply returns commandLine in the only element in the returned array.
-func CommandLineToArgv(commandLine string) ([]string, error) {
-	return []string{commandLine}, nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/syscall_windows.go b/vendor/github.com/containers/storage/pkg/system/syscall_windows.go
deleted file mode 100644
index 23e9b207c7..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/syscall_windows.go
+++ /dev/null
@@ -1,122 +0,0 @@
-package system
-
-import (
-	"unsafe"
-
-	"github.com/sirupsen/logrus"
-	"golang.org/x/sys/windows"
-)
-
-var (
-	ntuserApiset       = windows.NewLazyDLL("ext-ms-win-ntuser-window-l1-1-0")
-	procGetVersionExW  = modkernel32.NewProc("GetVersionExW")
-	procGetProductInfo = modkernel32.NewProc("GetProductInfo")
-)
-
-// OSVersion is a wrapper for Windows version information
-// https://msdn.microsoft.com/en-us/library/windows/desktop/ms724439(v=vs.85).aspx
-type OSVersion struct {
-	Version      uint32
-	MajorVersion uint8
-	MinorVersion uint8
-	Build        uint16
-}
-
-// https://msdn.microsoft.com/en-us/library/windows/desktop/ms724833(v=vs.85).aspx
-type osVersionInfoEx struct {
-	OSVersionInfoSize uint32
-	MajorVersion      uint32
-	MinorVersion      uint32
-	BuildNumber       uint32
-	PlatformID        uint32
-	CSDVersion        [128]uint16
-	ServicePackMajor  uint16
-	ServicePackMinor  uint16
-	SuiteMask         uint16
-	ProductType       byte
-	Reserve           byte
-}
-
-// GetOSVersion gets the operating system version on Windows. Note that
-// docker.exe must be manifested to get the correct version information.
-func GetOSVersion() OSVersion {
-	var err error
-	osv := OSVersion{}
-	osv.Version, err = windows.GetVersion()
-	if err != nil {
-		// GetVersion never fails.
-		panic(err)
-	}
-	osv.MajorVersion = uint8(osv.Version & 0xFF)
-	osv.MinorVersion = uint8(osv.Version >> 8 & 0xFF)
-	osv.Build = uint16(osv.Version >> 16)
-	return osv
-}
-
-// IsWindowsClient returns true if the SKU is client
-// @engine maintainers - this function should not be removed or modified as it
-// is used to enforce licensing restrictions on Windows.
-func IsWindowsClient() bool {
-	osviex := &osVersionInfoEx{OSVersionInfoSize: 284}
-	r1, _, err := procGetVersionExW.Call(uintptr(unsafe.Pointer(osviex)))
-	if r1 == 0 {
-		logrus.Warnf("GetVersionExW failed - assuming server SKU: %v", err)
-		return false
-	}
-	const verNTWorkstation = 0x00000001
-	return osviex.ProductType == verNTWorkstation
-}
-
-// IsIoTCore returns true if the currently running image is based off of
-// Windows 10 IoT Core.
-// @engine maintainers - this function should not be removed or modified as it
-// is used to enforce licensing restrictions on Windows.
-func IsIoTCore() bool {
-	var returnedProductType uint32
-	r1, _, err := procGetProductInfo.Call(6, 1, 0, 0, uintptr(unsafe.Pointer(&returnedProductType)))
-	if r1 == 0 {
-		logrus.Warnf("GetProductInfo failed - assuming this is not IoT: %v", err)
-		return false
-	}
-	const productIoTUAP = 0x0000007B
-	const productIoTUAPCommercial = 0x00000083
-	return returnedProductType == productIoTUAP || returnedProductType == productIoTUAPCommercial
-}
-
-// Unmount is a platform-specific helper function to call
-// the unmount syscall. Not supported on Windows
-func Unmount(dest string) error {
-	return nil
-}
-
-// CommandLineToArgv wraps the Windows syscall to turn a commandline into an argument array.
-func CommandLineToArgv(commandLine string) ([]string, error) {
-	var argc int32
-
-	argsPtr, err := windows.UTF16PtrFromString(commandLine)
-	if err != nil {
-		return nil, err
-	}
-
-	argv, err := windows.CommandLineToArgv(argsPtr, &argc)
-	if err != nil {
-		return nil, err
-	}
-	defer windows.LocalFree(windows.Handle(uintptr(unsafe.Pointer(argv))))
-
-	newArgs := make([]string, argc)
-	for i, v := range (*argv)[:argc] {
-		newArgs[i] = string(windows.UTF16ToString((*v)[:]))
-	}
-
-	return newArgs, nil
-}
-
-// HasWin32KSupport determines whether containers that depend on win32k can
-// run on this machine. Win32k is the driver used to implement windowing.
-func HasWin32KSupport() bool {
-	// For now, check for ntuser API support on the host. In the future, a host
-	// may support win32k in containers even if the host does not support ntuser
-	// APIs.
-	return ntuserApiset.Load() == nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/umask.go b/vendor/github.com/containers/storage/pkg/system/umask.go
deleted file mode 100644
index 5a10eda5af..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/umask.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// +build !windows
-
-package system
-
-import (
-	"golang.org/x/sys/unix"
-)
-
-// Umask sets current process's file mode creation mask to newmask
-// and returns oldmask.
-func Umask(newmask int) (oldmask int, err error) {
-	return unix.Umask(newmask), nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/umask_windows.go b/vendor/github.com/containers/storage/pkg/system/umask_windows.go
deleted file mode 100644
index 13f1de1769..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/umask_windows.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build windows
-
-package system
-
-// Umask is not supported on the windows platform.
-func Umask(newmask int) (oldmask int, err error) {
-	// should not be called on cli code path
-	return 0, ErrNotSupportedPlatform
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/utimes_freebsd.go b/vendor/github.com/containers/storage/pkg/system/utimes_freebsd.go
deleted file mode 100644
index 6a77524376..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/utimes_freebsd.go
+++ /dev/null
@@ -1,24 +0,0 @@
-package system
-
-import (
-	"syscall"
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-// LUtimesNano is used to change access and modification time of the specified path.
-// It's used for symbol link file because unix.UtimesNano doesn't support a NOFOLLOW flag atm.
-func LUtimesNano(path string, ts []syscall.Timespec) error {
-	var _path *byte
-	_path, err := unix.BytePtrFromString(path)
-	if err != nil {
-		return err
-	}
-
-	if _, _, err := unix.Syscall(unix.SYS_LUTIMES, uintptr(unsafe.Pointer(_path)), uintptr(unsafe.Pointer(&ts[0])), 0); err != 0 && err != unix.ENOSYS {
-		return err
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/utimes_linux.go b/vendor/github.com/containers/storage/pkg/system/utimes_linux.go
deleted file mode 100644
index edc588a63f..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/utimes_linux.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package system
-
-import (
-	"syscall"
-	"unsafe"
-
-	"golang.org/x/sys/unix"
-)
-
-// LUtimesNano is used to change access and modification time of the specified path.
-// It's used for symbol link file because unix.UtimesNano doesn't support a NOFOLLOW flag atm.
-func LUtimesNano(path string, ts []syscall.Timespec) error {
-	atFdCwd := unix.AT_FDCWD
-
-	var _path *byte
-	_path, err := unix.BytePtrFromString(path)
-	if err != nil {
-		return err
-	}
-	if _, _, err := unix.Syscall6(unix.SYS_UTIMENSAT, uintptr(atFdCwd), uintptr(unsafe.Pointer(_path)), uintptr(unsafe.Pointer(&ts[0])), unix.AT_SYMLINK_NOFOLLOW, 0, 0); err != 0 && err != unix.ENOSYS {
-		return err
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/utimes_unsupported.go b/vendor/github.com/containers/storage/pkg/system/utimes_unsupported.go
deleted file mode 100644
index 139714544d..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/utimes_unsupported.go
+++ /dev/null
@@ -1,10 +0,0 @@
-// +build !linux,!freebsd
-
-package system
-
-import "syscall"
-
-// LUtimesNano is only supported on linux and freebsd.
-func LUtimesNano(path string, ts []syscall.Timespec) error {
-	return ErrNotSupportedPlatform
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/xattrs_linux.go b/vendor/github.com/containers/storage/pkg/system/xattrs_linux.go
deleted file mode 100644
index 98b111be42..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/xattrs_linux.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package system
-
-import "golang.org/x/sys/unix"
-
-// Lgetxattr retrieves the value of the extended attribute identified by attr
-// and associated with the given path in the file system.
-// It will returns a nil slice and nil error if the xattr is not set.
-func Lgetxattr(path string, attr string) ([]byte, error) {
-	dest := make([]byte, 128)
-	sz, errno := unix.Lgetxattr(path, attr, dest)
-	if errno == unix.ENODATA {
-		return nil, nil
-	}
-	if errno == unix.ERANGE {
-		dest = make([]byte, sz)
-		sz, errno = unix.Lgetxattr(path, attr, dest)
-	}
-	if errno != nil {
-		return nil, errno
-	}
-
-	return dest[:sz], nil
-}
-
-// Lsetxattr sets the value of the extended attribute identified by attr
-// and associated with the given path in the file system.
-func Lsetxattr(path string, attr string, data []byte, flags int) error {
-	return unix.Lsetxattr(path, attr, data, flags)
-}
diff --git a/vendor/github.com/containers/storage/pkg/system/xattrs_unsupported.go b/vendor/github.com/containers/storage/pkg/system/xattrs_unsupported.go
deleted file mode 100644
index 0114f2227c..0000000000
--- a/vendor/github.com/containers/storage/pkg/system/xattrs_unsupported.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// +build !linux
-
-package system
-
-// Lgetxattr is not supported on platforms other than linux.
-func Lgetxattr(path string, attr string) ([]byte, error) {
-	return nil, ErrNotSupportedPlatform
-}
-
-// Lsetxattr is not supported on platforms other than linux.
-func Lsetxattr(path string, attr string, data []byte, flags int) error {
-	return ErrNotSupportedPlatform
-}
diff --git a/vendor/github.com/containers/storage/pkg/truncindex/truncindex.go b/vendor/github.com/containers/storage/pkg/truncindex/truncindex.go
deleted file mode 100644
index 74776e65e6..0000000000
--- a/vendor/github.com/containers/storage/pkg/truncindex/truncindex.go
+++ /dev/null
@@ -1,139 +0,0 @@
-// Package truncindex provides a general 'index tree', used by Docker
-// in order to be able to reference containers by only a few unambiguous
-// characters of their id.
-package truncindex
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-	"sync"
-
-	"github.com/tchap/go-patricia/patricia"
-)
-
-var (
-	// ErrEmptyPrefix is an error returned if the prefix was empty.
-	ErrEmptyPrefix = errors.New("Prefix can't be empty")
-
-	// ErrIllegalChar is returned when a space is in the ID
-	ErrIllegalChar = errors.New("illegal character: ' '")
-
-	// ErrNotExist is returned when ID or its prefix not found in index.
-	ErrNotExist = errors.New("ID does not exist")
-)
-
-// ErrAmbiguousPrefix is returned if the prefix was ambiguous
-// (multiple ids for the prefix).
-type ErrAmbiguousPrefix struct {
-	prefix string
-}
-
-func (e ErrAmbiguousPrefix) Error() string {
-	return fmt.Sprintf("Multiple IDs found with provided prefix: %s", e.prefix)
-}
-
-// TruncIndex allows the retrieval of string identifiers by any of their unique prefixes.
-// This is used to retrieve image and container IDs by more convenient shorthand prefixes.
-type TruncIndex struct {
-	sync.RWMutex
-	trie *patricia.Trie
-	ids  map[string]struct{}
-}
-
-// NewTruncIndex creates a new TruncIndex and initializes with a list of IDs.
-func NewTruncIndex(ids []string) (idx *TruncIndex) {
-	idx = &TruncIndex{
-		ids: make(map[string]struct{}),
-
-		// Change patricia max prefix per node length,
-		// because our len(ID) always 64
-		trie: patricia.NewTrie(patricia.MaxPrefixPerNode(64)),
-	}
-	for _, id := range ids {
-		idx.addID(id)
-	}
-	return
-}
-
-func (idx *TruncIndex) addID(id string) error {
-	if strings.Contains(id, " ") {
-		return ErrIllegalChar
-	}
-	if id == "" {
-		return ErrEmptyPrefix
-	}
-	if _, exists := idx.ids[id]; exists {
-		return fmt.Errorf("id already exists: '%s'", id)
-	}
-	idx.ids[id] = struct{}{}
-	if inserted := idx.trie.Insert(patricia.Prefix(id), struct{}{}); !inserted {
-		return fmt.Errorf("failed to insert id: %s", id)
-	}
-	return nil
-}
-
-// Add adds a new ID to the TruncIndex.
-func (idx *TruncIndex) Add(id string) error {
-	idx.Lock()
-	defer idx.Unlock()
-	return idx.addID(id)
-}
-
-// Delete removes an ID from the TruncIndex. If there are multiple IDs
-// with the given prefix, an error is thrown.
-func (idx *TruncIndex) Delete(id string) error {
-	idx.Lock()
-	defer idx.Unlock()
-	if _, exists := idx.ids[id]; !exists || id == "" {
-		return fmt.Errorf("no such id: '%s'", id)
-	}
-	delete(idx.ids, id)
-	if deleted := idx.trie.Delete(patricia.Prefix(id)); !deleted {
-		return fmt.Errorf("no such id: '%s'", id)
-	}
-	return nil
-}
-
-// Get retrieves an ID from the TruncIndex. If there are multiple IDs
-// with the given prefix, an error is thrown.
-func (idx *TruncIndex) Get(s string) (string, error) {
-	if s == "" {
-		return "", ErrEmptyPrefix
-	}
-	var (
-		id string
-	)
-	subTreeVisitFunc := func(prefix patricia.Prefix, item patricia.Item) error {
-		if id != "" {
-			// we haven't found the ID if there are two or more IDs
-			id = ""
-			return ErrAmbiguousPrefix{prefix: string(prefix)}
-		}
-		id = string(prefix)
-		return nil
-	}
-
-	idx.RLock()
-	defer idx.RUnlock()
-	if err := idx.trie.VisitSubtree(patricia.Prefix(s), subTreeVisitFunc); err != nil {
-		return "", err
-	}
-	if id != "" {
-		return id, nil
-	}
-	return "", ErrNotExist
-}
-
-// Iterate iterates over all stored IDs and passes each of them to the given
-// handler. Take care that the handler method does not call any public
-// method on truncindex as the internal locking is not reentrant/recursive
-// and will result in deadlock.
-func (idx *TruncIndex) Iterate(handler func(id string)) {
-	idx.Lock()
-	defer idx.Unlock()
-	idx.trie.Visit(func(prefix patricia.Prefix, item patricia.Item) error {
-		handler(string(prefix))
-		return nil
-	})
-}
diff --git a/vendor/github.com/containers/storage/store.go b/vendor/github.com/containers/storage/store.go
deleted file mode 100644
index a31a08b2a4..0000000000
--- a/vendor/github.com/containers/storage/store.go
+++ /dev/null
@@ -1,2425 +0,0 @@
-package storage
-
-import (
-	"encoding/base64"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"os"
-	"path/filepath"
-	"strings"
-	"sync"
-	"time"
-
-	// register all of the built-in drivers
-	_ "github.com/containers/storage/drivers/register"
-
-	"github.com/BurntSushi/toml"
-	drivers "github.com/containers/storage/drivers"
-	"github.com/containers/storage/pkg/archive"
-	"github.com/containers/storage/pkg/idtools"
-	"github.com/containers/storage/pkg/ioutils"
-	"github.com/containers/storage/pkg/stringid"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-)
-
-var (
-	// DefaultStoreOptions is a reasonable default set of options.
-	DefaultStoreOptions StoreOptions
-	stores              []*store
-	storesLock          sync.Mutex
-)
-
-// ROFileBasedStore wraps up the methods of the various types of file-based
-// data stores that we implement which are needed for both read-only and
-// read-write files.
-type ROFileBasedStore interface {
-	Locker
-
-	// Load reloads the contents of the store from disk.  It should be called
-	// with the lock held.
-	Load() error
-}
-
-// RWFileBasedStore wraps up the methods of various types of file-based data
-// stores that we implement using read-write files.
-type RWFileBasedStore interface {
-	// Save saves the contents of the store to disk.  It should be called with
-	// the lock held, and Touch() should be called afterward before releasing the
-	// lock.
-	Save() error
-}
-
-// FileBasedStore wraps up the common methods of various types of file-based
-// data stores that we implement.
-type FileBasedStore interface {
-	ROFileBasedStore
-	RWFileBasedStore
-}
-
-// ROMetadataStore wraps a method for reading metadata associated with an ID.
-type ROMetadataStore interface {
-	// Metadata reads metadata associated with an item with the specified ID.
-	Metadata(id string) (string, error)
-}
-
-// RWMetadataStore wraps a method for setting metadata associated with an ID.
-type RWMetadataStore interface {
-	// SetMetadata updates the metadata associated with the item with the specified ID.
-	SetMetadata(id, metadata string) error
-}
-
-// MetadataStore wraps up methods for getting and setting metadata associated with IDs.
-type MetadataStore interface {
-	ROMetadataStore
-	RWMetadataStore
-}
-
-// An ROBigDataStore wraps up the read-only big-data related methods of the
-// various types of file-based lookaside stores that we implement.
-type ROBigDataStore interface {
-	// BigData retrieves a (potentially large) piece of data associated with
-	// this ID, if it has previously been set.
-	BigData(id, key string) ([]byte, error)
-
-	// BigDataSize retrieves the size of a (potentially large) piece of
-	// data associated with this ID, if it has previously been set.
-	BigDataSize(id, key string) (int64, error)
-
-	// BigDataDigest retrieves the digest of a (potentially large) piece of
-	// data associated with this ID, if it has previously been set.
-	BigDataDigest(id, key string) (digest.Digest, error)
-
-	// BigDataNames() returns a list of the names of previously-stored pieces of
-	// data.
-	BigDataNames(id string) ([]string, error)
-}
-
-// A RWBigDataStore wraps up the read-write big-data related methods of the
-// various types of file-based lookaside stores that we implement.
-type RWBigDataStore interface {
-	// SetBigData stores a (potentially large) piece of data associated with this
-	// ID.
-	SetBigData(id, key string, data []byte) error
-}
-
-// A BigDataStore wraps up the most common big-data related methods of the
-// various types of file-based lookaside stores that we implement.
-type BigDataStore interface {
-	ROBigDataStore
-	RWBigDataStore
-}
-
-// A FlaggableStore can have flags set and cleared on items which it manages.
-type FlaggableStore interface {
-	// ClearFlag removes a named flag from an item in the store.
-	ClearFlag(id string, flag string) error
-
-	// SetFlag sets a named flag and its value on an item in the store.
-	SetFlag(id string, flag string, value interface{}) error
-}
-
-// StoreOptions is used for passing initialization options to GetStore(), for
-// initializing a Store object and the underlying storage that it controls.
-type StoreOptions struct {
-	// RunRoot is the filesystem path under which we can store run-time
-	// information, such as the locations of active mount points, that we
-	// want to lose if the host is rebooted.
-	RunRoot string `json:"runroot,omitempty"`
-	// GraphRoot is the filesystem path under which we will store the
-	// contents of layers, images, and containers.
-	GraphRoot string `json:"root,omitempty"`
-	// GraphDriverName is the underlying storage driver that we'll be
-	// using.  It only needs to be specified the first time a Store is
-	// initialized for a given RunRoot and GraphRoot.
-	GraphDriverName string `json:"driver,omitempty"`
-	// GraphDriverOptions are driver-specific options.
-	GraphDriverOptions []string `json:"driver-options,omitempty"`
-	// UIDMap and GIDMap are used mainly for deciding on the ownership of
-	// files in layers as they're stored on disk, which is often necessary
-	// when user namespaces are being used.
-	UIDMap []idtools.IDMap `json:"uidmap,omitempty"`
-	GIDMap []idtools.IDMap `json:"gidmap,omitempty"`
-}
-
-// Store wraps up the various types of file-based stores that we use into a
-// singleton object that initializes and manages them all together.
-type Store interface {
-	// RunRoot, GraphRoot, GraphDriverName, and GraphOptions retrieve
-	// settings that were passed to GetStore() when the object was created.
-	RunRoot() string
-	GraphRoot() string
-	GraphDriverName() string
-	GraphOptions() []string
-
-	// GraphDriver obtains and returns a handle to the graph Driver object used
-	// by the Store.
-	GraphDriver() (drivers.Driver, error)
-
-	// CreateLayer creates a new layer in the underlying storage driver,
-	// optionally having the specified ID (one will be assigned if none is
-	// specified), with the specified layer (or no layer) as its parent,
-	// and with optional names.  (The writeable flag is ignored.)
-	CreateLayer(id, parent string, names []string, mountLabel string, writeable bool) (*Layer, error)
-
-	// PutLayer combines the functions of CreateLayer and ApplyDiff,
-	// marking the layer for automatic removal if applying the diff fails
-	// for any reason.
-	//
-	// Note that we do some of this work in a child process.  The calling
-	// process's main() function needs to import our pkg/reexec package and
-	// should begin with something like this in order to allow us to
-	// properly start that child process:
-	//   if reexec.Init {
-	//       return
-	//   }
-	PutLayer(id, parent string, names []string, mountLabel string, writeable bool, diff io.Reader) (*Layer, int64, error)
-
-	// CreateImage creates a new image, optionally with the specified ID
-	// (one will be assigned if none is specified), with optional names,
-	// referring to a specified image, and with optional metadata.  An
-	// image is a record which associates the ID of a layer with a
-	// additional bookkeeping information which the library stores for the
-	// convenience of its caller.
-	CreateImage(id string, names []string, layer, metadata string, options *ImageOptions) (*Image, error)
-
-	// CreateContainer creates a new container, optionally with the
-	// specified ID (one will be assigned if none is specified), with
-	// optional names, using the specified image's top layer as the basis
-	// for the container's layer, and assigning the specified ID to that
-	// layer (one will be created if none is specified).  A container is a
-	// layer which is associated with additional bookkeeping information
-	// which the library stores for the convenience of its caller.
-	CreateContainer(id string, names []string, image, layer, metadata string, options *ContainerOptions) (*Container, error)
-
-	// Metadata retrieves the metadata which is associated with a layer,
-	// image, or container (whichever the passed-in ID refers to).
-	Metadata(id string) (string, error)
-
-	// SetMetadata updates the metadata which is associated with a layer,
-	// image, or container (whichever the passed-in ID refers to) to match
-	// the specified value.  The metadata value can be retrieved at any
-	// time using Metadata, or using Layer, Image, or Container and reading
-	// the object directly.
-	SetMetadata(id, metadata string) error
-
-	// Exists checks if there is a layer, image, or container which has the
-	// passed-in ID or name.
-	Exists(id string) bool
-
-	// Status asks for a status report, in the form of key-value pairs,
-	// from the underlying storage driver.  The contents vary from driver
-	// to driver.
-	Status() ([][2]string, error)
-
-	// Delete removes the layer, image, or container which has the
-	// passed-in ID or name.  Note that no safety checks are performed, so
-	// this can leave images with references to layers which do not exist,
-	// and layers with references to parents which no longer exist.
-	Delete(id string) error
-
-	// DeleteLayer attempts to remove the specified layer.  If the layer is the
-	// parent of any other layer, or is referred to by any images, it will return
-	// an error.
-	DeleteLayer(id string) error
-
-	// DeleteImage removes the specified image if it is not referred to by
-	// any containers.  If its top layer is then no longer referred to by
-	// any other images and is not the parent of any other layers, its top
-	// layer will be removed.  If that layer's parent is no longer referred
-	// to by any other images and is not the parent of any other layers,
-	// then it, too, will be removed.  This procedure will be repeated
-	// until a layer which should not be removed, or the base layer, is
-	// reached, at which point the list of removed layers is returned.  If
-	// the commit argument is false, the image and layers are not removed,
-	// but the list of layers which would be removed is still returned.
-	DeleteImage(id string, commit bool) (layers []string, err error)
-
-	// DeleteContainer removes the specified container and its layer.  If
-	// there is no matching container, or if the container exists but its
-	// layer does not, an error will be returned.
-	DeleteContainer(id string) error
-
-	// Wipe removes all known layers, images, and containers.
-	Wipe() error
-
-	// Mount attempts to mount a layer, image, or container for access, and
-	// returns the pathname if it succeeds.
-	//
-	// Note that we do some of this work in a child process.  The calling
-	// process's main() function needs to import our pkg/reexec package and
-	// should begin with something like this in order to allow us to
-	// properly start that child process:
-	//   if reexec.Init {
-	//       return
-	//   }
-	Mount(id, mountLabel string) (string, error)
-
-	// Unmount attempts to unmount a layer, image, or container, given an ID, a
-	// name, or a mount path.
-	Unmount(id string) error
-
-	// Changes returns a summary of the changes which would need to be made
-	// to one layer to make its contents the same as a second layer.  If
-	// the first layer is not specified, the second layer's parent is
-	// assumed.  Each Change structure contains a Path relative to the
-	// layer's root directory, and a Kind which is either ChangeAdd,
-	// ChangeModify, or ChangeDelete.
-	Changes(from, to string) ([]archive.Change, error)
-
-	// DiffSize returns a count of the size of the tarstream which would
-	// specify the changes returned by Changes.
-	DiffSize(from, to string) (int64, error)
-
-	// Diff returns the tarstream which would specify the changes returned
-	// by Changes.  If options are passed in, they can override default
-	// behaviors.
-	Diff(from, to string, options *DiffOptions) (io.ReadCloser, error)
-
-	// ApplyDiff applies a tarstream to a layer.  Information about the
-	// tarstream is cached with the layer.  Typically, a layer which is
-	// populated using a tarstream will be expected to not be modified in
-	// any other way, either before or after the diff is applied.
-	//
-	// Note that we do some of this work in a child process.  The calling
-	// process's main() function needs to import our pkg/reexec package and
-	// should begin with something like this in order to allow us to
-	// properly start that child process:
-	//   if reexec.Init {
-	//       return
-	//   }
-	ApplyDiff(to string, diff io.Reader) (int64, error)
-
-	// LayersByCompressedDigest returns a slice of the layers with the
-	// specified compressed digest value recorded for them.
-	LayersByCompressedDigest(d digest.Digest) ([]Layer, error)
-
-	// LayersByUncompressedDigest returns a slice of the layers with the
-	// specified uncompressed digest value recorded for them.
-	LayersByUncompressedDigest(d digest.Digest) ([]Layer, error)
-
-	// LayerSize returns a cached approximation of the layer's size, or -1
-	// if we don't have a value on hand.
-	LayerSize(id string) (int64, error)
-
-	// Layers returns a list of the currently known layers.
-	Layers() ([]Layer, error)
-
-	// Images returns a list of the currently known images.
-	Images() ([]Image, error)
-
-	// Containers returns a list of the currently known containers.
-	Containers() ([]Container, error)
-
-	// Names returns the list of names for a layer, image, or container.
-	Names(id string) ([]string, error)
-
-	// SetNames changes the list of names for a layer, image, or container.
-	// Duplicate names are removed from the list automatically.
-	SetNames(id string, names []string) error
-
-	// ListImageBigData retrieves a list of the (possibly large) chunks of
-	// named data associated with an image.
-	ListImageBigData(id string) ([]string, error)
-
-	// ImageBigData retrieves a (possibly large) chunk of named data
-	// associated with an image.
-	ImageBigData(id, key string) ([]byte, error)
-
-	// ImageBigDataSize retrieves the size of a (possibly large) chunk
-	// of named data associated with an image.
-	ImageBigDataSize(id, key string) (int64, error)
-
-	// ImageBigDataDigest retrieves the digest of a (possibly large) chunk
-	// of named data associated with an image.
-	ImageBigDataDigest(id, key string) (digest.Digest, error)
-
-	// SetImageBigData stores a (possibly large) chunk of named data associated
-	// with an image.
-	SetImageBigData(id, key string, data []byte) error
-
-	// ListContainerBigData retrieves a list of the (possibly large) chunks of
-	// named data associated with a container.
-	ListContainerBigData(id string) ([]string, error)
-
-	// ContainerBigData retrieves a (possibly large) chunk of named data
-	// associated with a container.
-	ContainerBigData(id, key string) ([]byte, error)
-
-	// ContainerBigDataSize retrieves the size of a (possibly large)
-	// chunk of named data associated with a container.
-	ContainerBigDataSize(id, key string) (int64, error)
-
-	// ContainerBigDataDigest retrieves the digest of a (possibly large)
-	// chunk of named data associated with a container.
-	ContainerBigDataDigest(id, key string) (digest.Digest, error)
-
-	// SetContainerBigData stores a (possibly large) chunk of named data
-	// associated with a container.
-	SetContainerBigData(id, key string, data []byte) error
-
-	// Layer returns a specific layer.
-	Layer(id string) (*Layer, error)
-
-	// Image returns a specific image.
-	Image(id string) (*Image, error)
-
-	// ImagesByTopLayer returns a list of images which reference the specified
-	// layer as their top layer.  They will have different IDs and names
-	// and may have different metadata, big data items, and flags.
-	ImagesByTopLayer(id string) ([]*Image, error)
-
-	// ImagesByDigest returns a list of images which contain a big data item
-	// named ImageDigestBigDataKey whose contents have the specified digest.
-	ImagesByDigest(d digest.Digest) ([]*Image, error)
-
-	// Container returns a specific container.
-	Container(id string) (*Container, error)
-
-	// ContainerByLayer returns a specific container based on its layer ID or
-	// name.
-	ContainerByLayer(id string) (*Container, error)
-
-	// ContainerDirectory returns a path of a directory which the caller
-	// can use to store data, specific to the container, which the library
-	// does not directly manage.  The directory will be deleted when the
-	// container is deleted.
-	ContainerDirectory(id string) (string, error)
-
-	// SetContainerDirectoryFile is a convenience function which stores
-	// a piece of data in the specified file relative to the container's
-	// directory.
-	SetContainerDirectoryFile(id, file string, data []byte) error
-
-	// FromContainerDirectory is a convenience function which reads
-	// the contents of the specified file relative to the container's
-	// directory.
-	FromContainerDirectory(id, file string) ([]byte, error)
-
-	// ContainerRunDirectory returns a path of a directory which the
-	// caller can use to store data, specific to the container, which the
-	// library does not directly manage.  The directory will be deleted
-	// when the host system is restarted.
-	ContainerRunDirectory(id string) (string, error)
-
-	// SetContainerRunDirectoryFile is a convenience function which stores
-	// a piece of data in the specified file relative to the container's
-	// run directory.
-	SetContainerRunDirectoryFile(id, file string, data []byte) error
-
-	// FromContainerRunDirectory is a convenience function which reads
-	// the contents of the specified file relative to the container's run
-	// directory.
-	FromContainerRunDirectory(id, file string) ([]byte, error)
-
-	// Lookup returns the ID of a layer, image, or container with the specified
-	// name or ID.
-	Lookup(name string) (string, error)
-
-	// Shutdown attempts to free any kernel resources which are being used
-	// by the underlying driver.  If "force" is true, any mounted (i.e., in
-	// use) layers are unmounted beforehand.  If "force" is not true, then
-	// layers being in use is considered to be an error condition.  A list
-	// of still-mounted layers is returned along with possible errors.
-	Shutdown(force bool) (layers []string, err error)
-
-	// Version returns version information, in the form of key-value pairs, from
-	// the storage package.
-	Version() ([][2]string, error)
-}
-
-// ImageOptions is used for passing options to a Store's CreateImage() method.
-type ImageOptions struct {
-	// CreationDate, if not zero, will override the default behavior of marking the image as having been
-	// created when CreateImage() was called, recording CreationDate instead.
-	CreationDate time.Time
-	// Digest is a hard-coded digest value that we can use to look up the image.  It is optional.
-	Digest digest.Digest
-}
-
-// ContainerOptions is used for passing options to a Store's CreateContainer() method.
-type ContainerOptions struct {
-}
-
-type store struct {
-	lastLoaded      time.Time
-	runRoot         string
-	graphLock       Locker
-	graphRoot       string
-	graphDriverName string
-	graphOptions    []string
-	uidMap          []idtools.IDMap
-	gidMap          []idtools.IDMap
-	graphDriver     drivers.Driver
-	layerStore      LayerStore
-	roLayerStores   []ROLayerStore
-	imageStore      ImageStore
-	roImageStores   []ROImageStore
-	containerStore  ContainerStore
-}
-
-// GetStore attempts to find an already-created Store object matching the
-// specified location and graph driver, and if it can't, it creates and
-// initializes a new Store object, and the underlying storage that it controls.
-//
-// If StoreOptions `options` haven't been fully populated, then DefaultStoreOptions are used.
-//
-// These defaults observe environment variables:
-//  * `STORAGE_DRIVER` for the name of the storage driver to attempt to use
-//  * `STORAGE_OPTS` for the string of options to pass to the driver
-func GetStore(options StoreOptions) (Store, error) {
-	if options.RunRoot == "" && options.GraphRoot == "" && options.GraphDriverName == "" && len(options.GraphDriverOptions) == 0 {
-		options = DefaultStoreOptions
-	}
-
-	if options.GraphRoot != "" {
-		options.GraphRoot = filepath.Clean(options.GraphRoot)
-	}
-	if options.RunRoot != "" {
-		options.RunRoot = filepath.Clean(options.RunRoot)
-	}
-
-	storesLock.Lock()
-	defer storesLock.Unlock()
-
-	for _, s := range stores {
-		if s.graphRoot == options.GraphRoot && (options.GraphDriverName == "" || s.graphDriverName == options.GraphDriverName) {
-			return s, nil
-		}
-	}
-
-	if options.GraphRoot == "" {
-		return nil, ErrIncompleteOptions
-	}
-	if options.RunRoot == "" {
-		return nil, ErrIncompleteOptions
-	}
-
-	if err := os.MkdirAll(options.RunRoot, 0700); err != nil && !os.IsExist(err) {
-		return nil, err
-	}
-	if err := os.MkdirAll(options.GraphRoot, 0700); err != nil && !os.IsExist(err) {
-		return nil, err
-	}
-	for _, subdir := range []string{"mounts", "tmp", options.GraphDriverName} {
-		if err := os.MkdirAll(filepath.Join(options.GraphRoot, subdir), 0700); err != nil && !os.IsExist(err) {
-			return nil, err
-		}
-	}
-
-	graphLock, err := GetLockfile(filepath.Join(options.GraphRoot, "storage.lock"))
-	if err != nil {
-		return nil, err
-	}
-	s := &store{
-		runRoot:         options.RunRoot,
-		graphLock:       graphLock,
-		graphRoot:       options.GraphRoot,
-		graphDriverName: options.GraphDriverName,
-		graphOptions:    options.GraphDriverOptions,
-		uidMap:          copyIDMap(options.UIDMap),
-		gidMap:          copyIDMap(options.GIDMap),
-	}
-	if err := s.load(); err != nil {
-		return nil, err
-	}
-
-	stores = append(stores, s)
-
-	return s, nil
-}
-
-func copyIDMap(idmap []idtools.IDMap) []idtools.IDMap {
-	m := []idtools.IDMap{}
-	if idmap != nil {
-		m = make([]idtools.IDMap, len(idmap))
-		copy(m, idmap)
-	}
-	if len(m) > 0 {
-		return m[:]
-	}
-	return nil
-}
-
-func (s *store) RunRoot() string {
-	return s.runRoot
-}
-
-func (s *store) GraphDriverName() string {
-	return s.graphDriverName
-}
-
-func (s *store) GraphRoot() string {
-	return s.graphRoot
-}
-
-func (s *store) GraphOptions() []string {
-	return s.graphOptions
-}
-
-func (s *store) load() error {
-	driver, err := s.GraphDriver()
-	if err != nil {
-		return err
-	}
-	s.graphDriver = driver
-	s.graphDriverName = driver.String()
-	driverPrefix := s.graphDriverName + "-"
-
-	rls, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	s.layerStore = rls
-	if _, err := s.ROLayerStores(); err != nil {
-		return err
-	}
-
-	gipath := filepath.Join(s.graphRoot, driverPrefix+"images")
-	if err := os.MkdirAll(gipath, 0700); err != nil {
-		return err
-	}
-	ris, err := newImageStore(gipath)
-	if err != nil {
-		return err
-	}
-	s.imageStore = ris
-	if _, err := s.ROImageStores(); err != nil {
-		return err
-	}
-
-	gcpath := filepath.Join(s.graphRoot, driverPrefix+"containers")
-	if err := os.MkdirAll(gcpath, 0700); err != nil {
-		return err
-	}
-	rcs, err := newContainerStore(gcpath)
-	if err != nil {
-		return err
-	}
-	rcpath := filepath.Join(s.runRoot, driverPrefix+"containers")
-	if err := os.MkdirAll(rcpath, 0700); err != nil {
-		return err
-	}
-	s.containerStore = rcs
-	return nil
-}
-
-func (s *store) getGraphDriver() (drivers.Driver, error) {
-	if s.graphDriver != nil {
-		return s.graphDriver, nil
-	}
-	config := drivers.Options{
-		Root:          s.graphRoot,
-		DriverOptions: s.graphOptions,
-		UIDMaps:       s.uidMap,
-		GIDMaps:       s.gidMap,
-	}
-	driver, err := drivers.New(s.graphDriverName, config)
-	if err != nil {
-		return nil, err
-	}
-	s.graphDriver = driver
-	s.graphDriverName = driver.String()
-	return driver, nil
-}
-
-func (s *store) GraphDriver() (drivers.Driver, error) {
-	s.graphLock.Lock()
-	defer s.graphLock.Unlock()
-	if s.graphLock.TouchedSince(s.lastLoaded) {
-		s.graphDriver = nil
-		s.layerStore = nil
-		s.lastLoaded = time.Now()
-	}
-	return s.getGraphDriver()
-}
-
-// LayerStore obtains and returns a handle to the writeable layer store object
-// used by the Store.  Accessing this store directly will bypass locking and
-// synchronization, so it is not a part of the exported Store interface.
-func (s *store) LayerStore() (LayerStore, error) {
-	s.graphLock.Lock()
-	defer s.graphLock.Unlock()
-	if s.graphLock.TouchedSince(s.lastLoaded) {
-		s.graphDriver = nil
-		s.layerStore = nil
-		s.lastLoaded = time.Now()
-	}
-	if s.layerStore != nil {
-		return s.layerStore, nil
-	}
-	driver, err := s.getGraphDriver()
-	if err != nil {
-		return nil, err
-	}
-	driverPrefix := s.graphDriverName + "-"
-	rlpath := filepath.Join(s.runRoot, driverPrefix+"layers")
-	if err := os.MkdirAll(rlpath, 0700); err != nil {
-		return nil, err
-	}
-	glpath := filepath.Join(s.graphRoot, driverPrefix+"layers")
-	if err := os.MkdirAll(glpath, 0700); err != nil {
-		return nil, err
-	}
-	rls, err := newLayerStore(rlpath, glpath, driver)
-	if err != nil {
-		return nil, err
-	}
-	s.layerStore = rls
-	return s.layerStore, nil
-}
-
-// ROLayerStores obtains additional read/only layer store objects used by the
-// Store.  Accessing these stores directly will bypass locking and
-// synchronization, so it is not part of the exported Store interface.
-func (s *store) ROLayerStores() ([]ROLayerStore, error) {
-	s.graphLock.Lock()
-	defer s.graphLock.Unlock()
-	if s.roLayerStores != nil {
-		return s.roLayerStores, nil
-	}
-	driver, err := s.getGraphDriver()
-	if err != nil {
-		return nil, err
-	}
-	driverPrefix := s.graphDriverName + "-"
-	rlpath := filepath.Join(s.runRoot, driverPrefix+"layers")
-	if err := os.MkdirAll(rlpath, 0700); err != nil {
-		return nil, err
-	}
-	for _, store := range driver.AdditionalImageStores() {
-		glpath := filepath.Join(store, driverPrefix+"layers")
-		rls, err := newROLayerStore(rlpath, glpath, driver)
-		if err != nil {
-			return nil, err
-		}
-		s.roLayerStores = append(s.roLayerStores, rls)
-	}
-	return s.roLayerStores, nil
-}
-
-// ImageStore obtains and returns a handle to the writable image store object
-// used by the Store.  Accessing this store directly will bypass locking and
-// synchronization, so it is not a part of the exported Store interface.
-func (s *store) ImageStore() (ImageStore, error) {
-	if s.imageStore != nil {
-		return s.imageStore, nil
-	}
-	return nil, ErrLoadError
-}
-
-// ROImageStores obtains additional read/only image store objects used by the
-// Store.  Accessing these stores directly will bypass locking and
-// synchronization, so it is not a part of the exported Store interface.
-func (s *store) ROImageStores() ([]ROImageStore, error) {
-	if len(s.roImageStores) != 0 {
-		return s.roImageStores, nil
-	}
-	driver, err := s.getGraphDriver()
-	if err != nil {
-		return nil, err
-	}
-	driverPrefix := s.graphDriverName + "-"
-	for _, store := range driver.AdditionalImageStores() {
-		gipath := filepath.Join(store, driverPrefix+"images")
-		ris, err := newROImageStore(gipath)
-		if err != nil {
-			return nil, err
-		}
-		s.roImageStores = append(s.roImageStores, ris)
-	}
-	return s.roImageStores, nil
-}
-
-// ContainerStore obtains and returns a handle to the container store object
-// used by the Store.  Accessing this store directly will bypass locking and
-// synchronization, so it is not a part of the exported Store interface.
-func (s *store) ContainerStore() (ContainerStore, error) {
-	if s.containerStore != nil {
-		return s.containerStore, nil
-	}
-	return nil, ErrLoadError
-}
-
-func (s *store) PutLayer(id, parent string, names []string, mountLabel string, writeable bool, diff io.Reader) (*Layer, int64, error) {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return nil, -1, err
-	}
-	rlstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, -1, err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, -1, err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	if id == "" {
-		id = stringid.GenerateRandomID()
-	}
-	if parent != "" {
-		var ilayer *Layer
-		for _, lstore := range append([]ROLayerStore{rlstore}, rlstores...) {
-			if l, err := lstore.Get(parent); err == nil && l != nil {
-				ilayer = l
-				parent = ilayer.ID
-				break
-			}
-		}
-		if ilayer == nil {
-			return nil, -1, ErrLayerUnknown
-		}
-		containers, err := rcstore.Containers()
-		if err != nil {
-			return nil, -1, err
-		}
-		for _, container := range containers {
-			if container.LayerID == parent {
-				return nil, -1, ErrParentIsContainer
-			}
-		}
-	}
-	return rlstore.Put(id, parent, names, mountLabel, nil, writeable, nil, diff)
-}
-
-func (s *store) CreateLayer(id, parent string, names []string, mountLabel string, writeable bool) (*Layer, error) {
-	layer, _, err := s.PutLayer(id, parent, names, mountLabel, writeable, nil)
-	return layer, err
-}
-
-func (s *store) CreateImage(id string, names []string, layer, metadata string, options *ImageOptions) (*Image, error) {
-	if id == "" {
-		id = stringid.GenerateRandomID()
-	}
-
-	if layer != "" {
-		lstore, err := s.LayerStore()
-		if err != nil {
-			return nil, err
-		}
-		lstores, err := s.ROLayerStores()
-		if err != nil {
-			return nil, err
-		}
-		var ilayer *Layer
-		for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-			store.Lock()
-			defer store.Unlock()
-			if modified, err := store.Modified(); modified || err != nil {
-				store.Load()
-			}
-			ilayer, err = store.Get(layer)
-			if err == nil {
-				break
-			}
-		}
-		if ilayer == nil {
-			return nil, ErrLayerUnknown
-		}
-		layer = ilayer.ID
-	}
-
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-
-	creationDate := time.Now().UTC()
-	if options != nil && !options.CreationDate.IsZero() {
-		creationDate = options.CreationDate
-	}
-
-	return ristore.Create(id, names, layer, metadata, creationDate, options.Digest)
-}
-
-func (s *store) CreateContainer(id string, names []string, image, layer, metadata string, options *ContainerOptions) (*Container, error) {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	if id == "" {
-		id = stringid.GenerateRandomID()
-	}
-
-	imageTopLayer := ""
-	imageID := ""
-	if image != "" {
-		istore, err := s.ImageStore()
-		if err != nil {
-			return nil, err
-		}
-		istores, err := s.ROImageStores()
-		if err != nil {
-			return nil, err
-		}
-		var cimage *Image
-		for _, store := range append([]ROImageStore{istore}, istores...) {
-			store.Lock()
-			defer store.Unlock()
-			if modified, err := store.Modified(); modified || err != nil {
-				store.Load()
-			}
-			cimage, err = store.Get(image)
-			if err == nil {
-				break
-			}
-		}
-		if cimage == nil {
-			return nil, ErrImageUnknown
-		}
-		imageTopLayer = cimage.TopLayer
-		imageID = cimage.ID
-	}
-	clayer, err := rlstore.Create(layer, imageTopLayer, nil, "", nil, true)
-	if err != nil {
-		return nil, err
-	}
-	layer = clayer.ID
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	container, err := rcstore.Create(id, names, imageID, layer, metadata)
-	if err != nil || container == nil {
-		rlstore.Delete(layer)
-	}
-	return container, err
-}
-
-func (s *store) SetMetadata(id, metadata string) error {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	if rlstore.Exists(id) {
-		return rlstore.SetMetadata(id, metadata)
-	}
-	if ristore.Exists(id) {
-		return ristore.SetMetadata(id, metadata)
-	}
-	if rcstore.Exists(id) {
-		return rcstore.SetMetadata(id, metadata)
-	}
-	return ErrNotAnID
-}
-
-func (s *store) Metadata(id string) (string, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return "", err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return "", err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(id) {
-			return store.Metadata(id)
-		}
-	}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return "", err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return "", err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(id) {
-			return store.Metadata(id)
-		}
-	}
-
-	cstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-	cstore.Lock()
-	defer cstore.Unlock()
-	if modified, err := cstore.Modified(); modified || err != nil {
-		cstore.Load()
-	}
-	if cstore.Exists(id) {
-		return cstore.Metadata(id)
-	}
-	return "", ErrNotAnID
-}
-
-func (s *store) ListImageBigData(id string) ([]string, error) {
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		bigDataNames, err := store.BigDataNames(id)
-		if err == nil {
-			return bigDataNames, err
-		}
-	}
-	return nil, ErrImageUnknown
-}
-
-func (s *store) ImageBigDataSize(id, key string) (int64, error) {
-	istore, err := s.ImageStore()
-	if err != nil {
-		return -1, err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return -1, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		size, err := store.BigDataSize(id, key)
-		if err == nil {
-			return size, nil
-		}
-	}
-	return -1, ErrSizeUnknown
-}
-
-func (s *store) ImageBigDataDigest(id, key string) (digest.Digest, error) {
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return "", err
-	}
-	stores, err := s.ROImageStores()
-	if err != nil {
-		return "", err
-	}
-	stores = append([]ROImageStore{ristore}, stores...)
-	for _, ristore := range stores {
-		ristore.Lock()
-		defer ristore.Unlock()
-		if modified, err := ristore.Modified(); modified || err != nil {
-			ristore.Load()
-		}
-		d, err := ristore.BigDataDigest(id, key)
-		if err == nil && d.Validate() == nil {
-			return d, nil
-		}
-	}
-	return "", ErrDigestUnknown
-}
-
-func (s *store) ImageBigData(id, key string) ([]byte, error) {
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		data, err := store.BigData(id, key)
-		if err == nil {
-			return data, nil
-		}
-	}
-	return nil, ErrImageUnknown
-}
-
-func (s *store) SetImageBigData(id, key string, data []byte) error {
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-
-	return ristore.SetBigData(id, key, data)
-}
-
-func (s *store) ListContainerBigData(id string) ([]string, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	return rcstore.BigDataNames(id)
-}
-
-func (s *store) ContainerBigDataSize(id, key string) (int64, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return -1, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	return rcstore.BigDataSize(id, key)
-}
-
-func (s *store) ContainerBigDataDigest(id, key string) (digest.Digest, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	return rcstore.BigDataDigest(id, key)
-}
-
-func (s *store) ContainerBigData(id, key string) ([]byte, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	return rcstore.BigData(id, key)
-}
-
-func (s *store) SetContainerBigData(id, key string, data []byte) error {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	return rcstore.SetBigData(id, key, data)
-}
-
-func (s *store) Exists(id string) bool {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return false
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return false
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(id) {
-			return true
-		}
-	}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return false
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return false
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(id) {
-			return true
-		}
-	}
-
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return false
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	if rcstore.Exists(id) {
-		return true
-	}
-
-	return false
-}
-
-func dedupeNames(names []string) []string {
-	seen := make(map[string]bool)
-	deduped := make([]string, 0, len(names))
-	for _, name := range names {
-		if _, wasSeen := seen[name]; !wasSeen {
-			seen[name] = true
-			deduped = append(deduped, name)
-		}
-	}
-	return deduped
-}
-
-func (s *store) SetNames(id string, names []string) error {
-	deduped := dedupeNames(names)
-
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	if rlstore.Exists(id) {
-		return rlstore.SetNames(id, deduped)
-	}
-
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	if ristore.Exists(id) {
-		return ristore.SetNames(id, deduped)
-	}
-
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	if rcstore.Exists(id) {
-		return rcstore.SetNames(id, deduped)
-	}
-	return ErrLayerUnknown
-}
-
-func (s *store) Names(id string) ([]string, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if l, err := store.Get(id); l != nil && err == nil {
-			return l.Names, nil
-		}
-	}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if i, err := store.Get(id); i != nil && err == nil {
-			return i.Names, nil
-		}
-	}
-
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	if c, err := rcstore.Get(id); c != nil && err == nil {
-		return c.Names, nil
-	}
-	return nil, ErrLayerUnknown
-}
-
-func (s *store) Lookup(name string) (string, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return "", err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return "", err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if l, err := store.Get(name); l != nil && err == nil {
-			return l.ID, nil
-		}
-	}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return "", err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return "", err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if i, err := store.Get(name); i != nil && err == nil {
-			return i.ID, nil
-		}
-	}
-
-	cstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-	cstore.Lock()
-	defer cstore.Unlock()
-	if modified, err := cstore.Modified(); modified || err != nil {
-		cstore.Load()
-	}
-	if c, err := cstore.Get(name); c != nil && err == nil {
-		return c.ID, nil
-	}
-
-	return "", ErrLayerUnknown
-}
-
-func (s *store) DeleteLayer(id string) error {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	if rlstore.Exists(id) {
-		if l, err := rlstore.Get(id); err != nil {
-			id = l.ID
-		}
-		layers, err := rlstore.Layers()
-		if err != nil {
-			return err
-		}
-		for _, layer := range layers {
-			if layer.Parent == id {
-				return ErrLayerHasChildren
-			}
-		}
-		images, err := ristore.Images()
-		if err != nil {
-			return err
-		}
-		for _, image := range images {
-			if image.TopLayer == id {
-				return errors.Wrapf(ErrLayerUsedByImage, "Layer %v used by image %v", id, image.ID)
-			}
-		}
-		containers, err := rcstore.Containers()
-		if err != nil {
-			return err
-		}
-		for _, container := range containers {
-			if container.LayerID == id {
-				return errors.Wrapf(ErrLayerUsedByContainer, "Layer %v used by container %v", id, container.ID)
-			}
-		}
-		return rlstore.Delete(id)
-	}
-	return ErrNotALayer
-}
-
-func (s *store) DeleteImage(id string, commit bool) (layers []string, err error) {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	layersToRemove := []string{}
-	if ristore.Exists(id) {
-		image, err := ristore.Get(id)
-		if err != nil {
-			return nil, err
-		}
-		id = image.ID
-		containers, err := rcstore.Containers()
-		if err != nil {
-			return nil, err
-		}
-		aContainerByImage := make(map[string]string)
-		for _, container := range containers {
-			aContainerByImage[container.ImageID] = container.ID
-		}
-		if container, ok := aContainerByImage[id]; ok {
-			return nil, errors.Wrapf(ErrImageUsedByContainer, "Image used by %v", container)
-		}
-		images, err := ristore.Images()
-		if err != nil {
-			return nil, err
-		}
-		layers, err := rlstore.Layers()
-		if err != nil {
-			return nil, err
-		}
-		childrenByParent := make(map[string]*[]string)
-		for _, layer := range layers {
-			parent := layer.Parent
-			if list, ok := childrenByParent[parent]; ok {
-				newList := append(*list, layer.ID)
-				childrenByParent[parent] = &newList
-			} else {
-				childrenByParent[parent] = &([]string{layer.ID})
-			}
-		}
-		anyImageByTopLayer := make(map[string]string)
-		for _, img := range images {
-			if img.ID != id {
-				anyImageByTopLayer[img.TopLayer] = img.ID
-			}
-		}
-		if commit {
-			if err = ristore.Delete(id); err != nil {
-				return nil, err
-			}
-		}
-		layer := image.TopLayer
-		lastRemoved := ""
-		for layer != "" {
-			if rcstore.Exists(layer) {
-				break
-			}
-			if _, ok := anyImageByTopLayer[layer]; ok {
-				break
-			}
-			parent := ""
-			if l, err := rlstore.Get(layer); err == nil {
-				parent = l.Parent
-			}
-			otherRefs := 0
-			if childList, ok := childrenByParent[layer]; ok && childList != nil {
-				children := *childList
-				for _, child := range children {
-					if child != lastRemoved {
-						otherRefs++
-					}
-				}
-			}
-			if otherRefs != 0 {
-				break
-			}
-			lastRemoved = layer
-			layersToRemove = append(layersToRemove, lastRemoved)
-			layer = parent
-		}
-	} else {
-		return nil, ErrNotAnImage
-	}
-	if commit {
-		for _, layer := range layersToRemove {
-			if err = rlstore.Delete(layer); err != nil {
-				return nil, err
-			}
-		}
-	}
-	return layersToRemove, nil
-}
-
-func (s *store) DeleteContainer(id string) error {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	if rcstore.Exists(id) {
-		if container, err := rcstore.Get(id); err == nil {
-			if rlstore.Exists(container.LayerID) {
-				if err = rlstore.Delete(container.LayerID); err != nil {
-					return err
-				}
-				if err = rcstore.Delete(id); err != nil {
-					return err
-				}
-				middleDir := s.graphDriverName + "-containers"
-				gcpath := filepath.Join(s.GraphRoot(), middleDir, container.ID)
-				if err = os.RemoveAll(gcpath); err != nil {
-					return err
-				}
-				rcpath := filepath.Join(s.RunRoot(), middleDir, container.ID)
-				if err = os.RemoveAll(rcpath); err != nil {
-					return err
-				}
-				return nil
-			}
-			return ErrNotALayer
-		}
-	}
-	return ErrNotAContainer
-}
-
-func (s *store) Delete(id string) error {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	if rcstore.Exists(id) {
-		if container, err := rcstore.Get(id); err == nil {
-			if rlstore.Exists(container.LayerID) {
-				if err = rlstore.Delete(container.LayerID); err != nil {
-					return err
-				}
-				if err = rcstore.Delete(id); err != nil {
-					return err
-				}
-				middleDir := s.graphDriverName + "-containers"
-				gcpath := filepath.Join(s.GraphRoot(), middleDir, container.ID, "userdata")
-				if err = os.RemoveAll(gcpath); err != nil {
-					return err
-				}
-				rcpath := filepath.Join(s.RunRoot(), middleDir, container.ID, "userdata")
-				if err = os.RemoveAll(rcpath); err != nil {
-					return err
-				}
-				return nil
-			}
-			return ErrNotALayer
-		}
-	}
-	if ristore.Exists(id) {
-		return ristore.Delete(id)
-	}
-	if rlstore.Exists(id) {
-		return rlstore.Delete(id)
-	}
-	return ErrLayerUnknown
-}
-
-func (s *store) Wipe() error {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return err
-	}
-	ristore, err := s.ImageStore()
-	if err != nil {
-		return err
-	}
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	ristore.Lock()
-	defer ristore.Unlock()
-	if modified, err := ristore.Modified(); modified || err != nil {
-		ristore.Load()
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	if err = rcstore.Wipe(); err != nil {
-		return err
-	}
-	if err = ristore.Wipe(); err != nil {
-		return err
-	}
-	return rlstore.Wipe()
-}
-
-func (s *store) Status() ([][2]string, error) {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	return rlstore.Status()
-}
-
-func (s *store) Version() ([][2]string, error) {
-	return [][2]string{}, nil
-}
-
-func (s *store) Mount(id, mountLabel string) (string, error) {
-	if layerID, err := s.ContainerLayerID(id); err == nil {
-		id = layerID
-	}
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return "", err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	if rlstore.Exists(id) {
-		return rlstore.Mount(id, mountLabel)
-	}
-	return "", ErrLayerUnknown
-}
-
-func (s *store) Unmount(id string) error {
-	if layerID, err := s.ContainerLayerID(id); err == nil {
-		id = layerID
-	}
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	if rlstore.Exists(id) {
-		return rlstore.Unmount(id)
-	}
-	return ErrLayerUnknown
-}
-
-func (s *store) Changes(from, to string) ([]archive.Change, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(to) {
-			return store.Changes(from, to)
-		}
-	}
-	return nil, ErrLayerUnknown
-}
-
-func (s *store) DiffSize(from, to string) (int64, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return -1, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return -1, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(to) {
-			return store.DiffSize(from, to)
-		}
-	}
-	return -1, ErrLayerUnknown
-}
-
-func (s *store) Diff(from, to string, options *DiffOptions) (io.ReadCloser, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(to) {
-			return store.Diff(from, to, options)
-		}
-	}
-	return nil, ErrLayerUnknown
-}
-
-func (s *store) ApplyDiff(to string, diff io.Reader) (int64, error) {
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return -1, err
-	}
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-	if rlstore.Exists(to) {
-		return rlstore.ApplyDiff(to, diff)
-	}
-	return -1, ErrLayerUnknown
-}
-
-func (s *store) layersByMappedDigest(m func(ROLayerStore, digest.Digest) ([]Layer, error), d digest.Digest) ([]Layer, error) {
-	var layers []Layer
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		storeLayers, err := m(store, d)
-		if err != nil {
-			if errors.Cause(err) != ErrLayerUnknown {
-				return nil, err
-			}
-			continue
-		}
-		layers = append(layers, storeLayers...)
-	}
-	if len(layers) == 0 {
-		return nil, ErrLayerUnknown
-	}
-	return layers, nil
-}
-
-func (s *store) LayersByCompressedDigest(d digest.Digest) ([]Layer, error) {
-	if err := d.Validate(); err != nil {
-		return nil, errors.Wrapf(err, "error looking for compressed layers matching digest %q", d)
-	}
-	return s.layersByMappedDigest(func(r ROLayerStore, d digest.Digest) ([]Layer, error) { return r.LayersByCompressedDigest(d) }, d)
-}
-
-func (s *store) LayersByUncompressedDigest(d digest.Digest) ([]Layer, error) {
-	if err := d.Validate(); err != nil {
-		return nil, errors.Wrapf(err, "error looking for layers matching digest %q", d)
-	}
-	return s.layersByMappedDigest(func(r ROLayerStore, d digest.Digest) ([]Layer, error) { return r.LayersByUncompressedDigest(d) }, d)
-}
-
-func (s *store) LayerSize(id string) (int64, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return -1, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return -1, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		if store.Exists(id) {
-			return store.Size(id)
-		}
-	}
-	return -1, ErrLayerUnknown
-}
-
-func (s *store) Layers() ([]Layer, error) {
-	var layers []Layer
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		storeLayers, err := store.Layers()
-		if err != nil {
-			return nil, err
-		}
-		layers = append(layers, storeLayers...)
-	}
-	return layers, nil
-}
-
-func (s *store) Images() ([]Image, error) {
-	var images []Image
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		storeImages, err := store.Images()
-		if err != nil {
-			return nil, err
-		}
-		images = append(images, storeImages...)
-	}
-	return images, nil
-}
-
-func (s *store) Containers() ([]Container, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	return rcstore.Containers()
-}
-
-func (s *store) Layer(id string) (*Layer, error) {
-	lstore, err := s.LayerStore()
-	if err != nil {
-		return nil, err
-	}
-	lstores, err := s.ROLayerStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROLayerStore{lstore}, lstores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		layer, err := store.Get(id)
-		if err == nil {
-			return layer, nil
-		}
-	}
-	return nil, ErrLayerUnknown
-}
-
-func (s *store) Image(id string) (*Image, error) {
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		image, err := store.Get(id)
-		if err == nil {
-			return image, nil
-		}
-	}
-	return nil, ErrImageUnknown
-}
-
-func (s *store) ImagesByTopLayer(id string) ([]*Image, error) {
-	images := []*Image{}
-	layer, err := s.Layer(id)
-	if err != nil {
-		return nil, err
-	}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		imageList, err := store.Images()
-		if err != nil {
-			return nil, err
-		}
-		for _, image := range imageList {
-			if image.TopLayer == layer.ID {
-				images = append(images, &image)
-			}
-		}
-	}
-	return images, nil
-}
-
-func (s *store) ImagesByDigest(d digest.Digest) ([]*Image, error) {
-	images := []*Image{}
-
-	istore, err := s.ImageStore()
-	if err != nil {
-		return nil, err
-	}
-
-	istores, err := s.ROImageStores()
-	if err != nil {
-		return nil, err
-	}
-	for _, store := range append([]ROImageStore{istore}, istores...) {
-		store.Lock()
-		defer store.Unlock()
-		if modified, err := store.Modified(); modified || err != nil {
-			store.Load()
-		}
-		imageList, err := store.ByDigest(d)
-		if err != nil && err != ErrImageUnknown {
-			return nil, err
-		}
-		images = append(images, imageList...)
-	}
-	return images, nil
-}
-
-func (s *store) Container(id string) (*Container, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	return rcstore.Get(id)
-}
-
-func (s *store) ContainerLayerID(id string) (string, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	container, err := rcstore.Get(id)
-	if err != nil {
-		return "", err
-	}
-	return container.LayerID, nil
-}
-
-func (s *store) ContainerByLayer(id string) (*Container, error) {
-	layer, err := s.Layer(id)
-	if err != nil {
-		return nil, err
-	}
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return nil, err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-	containerList, err := rcstore.Containers()
-	if err != nil {
-		return nil, err
-	}
-	for _, container := range containerList {
-		if container.LayerID == layer.ID {
-			return &container, nil
-		}
-	}
-
-	return nil, ErrContainerUnknown
-}
-
-func (s *store) ContainerDirectory(id string) (string, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	id, err = rcstore.Lookup(id)
-	if err != nil {
-		return "", err
-	}
-
-	middleDir := s.graphDriverName + "-containers"
-	gcpath := filepath.Join(s.GraphRoot(), middleDir, id, "userdata")
-	if err := os.MkdirAll(gcpath, 0700); err != nil {
-		return "", err
-	}
-	return gcpath, nil
-}
-
-func (s *store) ContainerRunDirectory(id string) (string, error) {
-	rcstore, err := s.ContainerStore()
-	if err != nil {
-		return "", err
-	}
-
-	rcstore.Lock()
-	defer rcstore.Unlock()
-	if modified, err := rcstore.Modified(); modified || err != nil {
-		rcstore.Load()
-	}
-
-	id, err = rcstore.Lookup(id)
-	if err != nil {
-		return "", err
-	}
-
-	middleDir := s.graphDriverName + "-containers"
-	rcpath := filepath.Join(s.RunRoot(), middleDir, id, "userdata")
-	if err := os.MkdirAll(rcpath, 0700); err != nil {
-		return "", err
-	}
-	return rcpath, nil
-}
-
-func (s *store) SetContainerDirectoryFile(id, file string, data []byte) error {
-	dir, err := s.ContainerDirectory(id)
-	if err != nil {
-		return err
-	}
-	err = os.MkdirAll(filepath.Dir(filepath.Join(dir, file)), 0700)
-	if err != nil {
-		return err
-	}
-	return ioutils.AtomicWriteFile(filepath.Join(dir, file), data, 0600)
-}
-
-func (s *store) FromContainerDirectory(id, file string) ([]byte, error) {
-	dir, err := s.ContainerDirectory(id)
-	if err != nil {
-		return nil, err
-	}
-	return ioutil.ReadFile(filepath.Join(dir, file))
-}
-
-func (s *store) SetContainerRunDirectoryFile(id, file string, data []byte) error {
-	dir, err := s.ContainerRunDirectory(id)
-	if err != nil {
-		return err
-	}
-	err = os.MkdirAll(filepath.Dir(filepath.Join(dir, file)), 0700)
-	if err != nil {
-		return err
-	}
-	return ioutils.AtomicWriteFile(filepath.Join(dir, file), data, 0600)
-}
-
-func (s *store) FromContainerRunDirectory(id, file string) ([]byte, error) {
-	dir, err := s.ContainerRunDirectory(id)
-	if err != nil {
-		return nil, err
-	}
-	return ioutil.ReadFile(filepath.Join(dir, file))
-}
-
-func (s *store) Shutdown(force bool) ([]string, error) {
-	mounted := []string{}
-	modified := false
-
-	rlstore, err := s.LayerStore()
-	if err != nil {
-		return mounted, err
-	}
-
-	s.graphLock.Lock()
-	defer s.graphLock.Unlock()
-
-	rlstore.Lock()
-	defer rlstore.Unlock()
-	if modified, err := rlstore.Modified(); modified || err != nil {
-		rlstore.Load()
-	}
-
-	layers, err := rlstore.Layers()
-	if err != nil {
-		return mounted, err
-	}
-	for _, layer := range layers {
-		if layer.MountCount == 0 {
-			continue
-		}
-		mounted = append(mounted, layer.ID)
-		if force {
-			for layer.MountCount > 0 {
-				err2 := rlstore.Unmount(layer.ID)
-				if err2 != nil {
-					if err == nil {
-						err = err2
-					}
-					break
-				}
-				modified = true
-			}
-		}
-	}
-	if len(mounted) > 0 && err == nil {
-		err = errors.Wrap(ErrLayerUsedByContainer, "A layer is mounted")
-	}
-	if err == nil {
-		err = s.graphDriver.Cleanup()
-		s.graphLock.Touch()
-		modified = true
-	}
-	if modified {
-		rlstore.Touch()
-	}
-	return mounted, err
-}
-
-// Convert a BigData key name into an acceptable file name.
-func makeBigDataBaseName(key string) string {
-	reader := strings.NewReader(key)
-	for reader.Len() > 0 {
-		ch, size, err := reader.ReadRune()
-		if err != nil || size != 1 {
-			break
-		}
-		if ch != '.' && !(ch >= '0' && ch <= '9') && !(ch >= 'a' && ch <= 'z') {
-			break
-		}
-	}
-	if reader.Len() > 0 {
-		return "=" + base64.StdEncoding.EncodeToString([]byte(key))
-	}
-	return key
-}
-
-func stringSliceWithoutValue(slice []string, value string) []string {
-	modified := make([]string, 0, len(slice))
-	for _, v := range slice {
-		if v == value {
-			continue
-		}
-		modified = append(modified, v)
-	}
-	return modified
-}
-
-const configFile = "/etc/containers/storage.conf"
-
-// OptionsConfig represents the "storage.options" TOML config table.
-type OptionsConfig struct {
-	// AdditionalImagesStores is the location of additional read/only
-	// Image stores.  Usually used to access Networked File System
-	// for shared image content
-	AdditionalImageStores []string `toml:"additionalimagestores"`
-
-	// Size
-	Size string `toml:"size"`
-
-	// OverrideKernelCheck
-	OverrideKernelCheck string `toml:"override_kernel_check"`
-}
-
-// TOML-friendly explicit tables used for conversions.
-type tomlConfig struct {
-	Storage struct {
-		Driver    string                  `toml:"driver"`
-		RunRoot   string                  `toml:"runroot"`
-		GraphRoot string                  `toml:"graphroot"`
-		Options   struct{ OptionsConfig } `toml:"options"`
-	} `toml:"storage"`
-}
-
-func init() {
-	DefaultStoreOptions.RunRoot = "/var/run/containers/storage"
-	DefaultStoreOptions.GraphRoot = "/var/lib/containers/storage"
-	DefaultStoreOptions.GraphDriverName = ""
-
-	data, err := ioutil.ReadFile(configFile)
-	if err != nil {
-		if !os.IsNotExist(err) {
-			fmt.Printf("Failed to read %s %v\n", configFile, err.Error())
-			return
-		}
-	}
-
-	config := new(tomlConfig)
-
-	if _, err := toml.Decode(string(data), config); err != nil {
-		fmt.Printf("Failed to parse %s %v\n", configFile, err.Error())
-		return
-	}
-	if config.Storage.Driver != "" {
-		DefaultStoreOptions.GraphDriverName = config.Storage.Driver
-	}
-	if config.Storage.RunRoot != "" {
-		DefaultStoreOptions.RunRoot = config.Storage.RunRoot
-	}
-	if config.Storage.GraphRoot != "" {
-		DefaultStoreOptions.GraphRoot = config.Storage.GraphRoot
-	}
-	for _, s := range config.Storage.Options.AdditionalImageStores {
-		DefaultStoreOptions.GraphDriverOptions = append(DefaultStoreOptions.GraphDriverOptions, fmt.Sprintf("%s.imagestore=%s", config.Storage.Driver, s))
-	}
-	if config.Storage.Options.Size != "" {
-		DefaultStoreOptions.GraphDriverOptions = append(DefaultStoreOptions.GraphDriverOptions, fmt.Sprintf("%s.size=%s", config.Storage.Driver, config.Storage.Options.Size))
-	}
-	if config.Storage.Options.OverrideKernelCheck != "" {
-		DefaultStoreOptions.GraphDriverOptions = append(DefaultStoreOptions.GraphDriverOptions, fmt.Sprintf("%s.override_kernel_check=%s", config.Storage.Driver, config.Storage.Options.OverrideKernelCheck))
-	}
-	if os.Getenv("STORAGE_DRIVER") != "" {
-		DefaultStoreOptions.GraphDriverName = os.Getenv("STORAGE_DRIVER")
-	}
-	if os.Getenv("STORAGE_OPTS") != "" {
-		DefaultStoreOptions.GraphDriverOptions = append(DefaultStoreOptions.GraphDriverOptions, strings.Split(os.Getenv("STORAGE_OPTS"), ",")...)
-	}
-	if len(DefaultStoreOptions.GraphDriverOptions) == 1 && DefaultStoreOptions.GraphDriverOptions[0] == "" {
-		DefaultStoreOptions.GraphDriverOptions = nil
-	}
-}
diff --git a/vendor/github.com/docker/distribution/AUTHORS b/vendor/github.com/docker/distribution/AUTHORS
deleted file mode 100644
index 252ff8aa2a..0000000000
--- a/vendor/github.com/docker/distribution/AUTHORS
+++ /dev/null
@@ -1,182 +0,0 @@
-a-palchikov <deemok@gmail.com>
-Aaron Lehmann <aaron.lehmann@docker.com>
-Aaron Schlesinger <aschlesinger@deis.com>
-Aaron Vinson <avinson.public@gmail.com>
-Adam Duke <adam.v.duke@gmail.com>
-Adam Enger <adamenger@gmail.com>
-Adrian Mouat <adrian.mouat@gmail.com>
-Ahmet Alp Balkan <ahmetalpbalkan@gmail.com>
-Alex Chan <alex.chan@metaswitch.com>
-Alex Elman <aelman@indeed.com>
-Alexey Gladkov <gladkov.alexey@gmail.com>
-allencloud <allen.sun@daocloud.io>
-amitshukla <ashukla73@hotmail.com>
-Amy Lindburg <amy.lindburg@docker.com>
-Andrew Hsu <andrewhsu@acm.org>
-Andrew Meredith <andymeredith@gmail.com>
-Andrew T Nguyen <andrew.nguyen@docker.com>
-Andrey Kostov <kostov.andrey@gmail.com>
-Andy Goldstein <agoldste@redhat.com>
-Anis Elleuch <vadmeste@gmail.com>
-Anton Tiurin <noxiouz@yandex.ru>
-Antonio Mercado <amercado@thinknode.com>
-Antonio Murdaca <runcom@redhat.com>
-Anusha Ragunathan <anusha@docker.com>
-Arien Holthuizen <aholthuizen@schubergphilis.com>
-Arnaud Porterie <arnaud.porterie@docker.com>
-Arthur Baars <arthur@semmle.com>
-Asuka Suzuki <hello@tanksuzuki.com>
-Avi Miller <avi.miller@oracle.com>
-Ayose Cazorla <ayosec@gmail.com>
-BadZen <dave.trombley@gmail.com>
-Ben Bodenmiller <bbodenmiller@hotmail.com>
-Ben Firshman <ben@firshman.co.uk>
-bin liu <liubin0329@gmail.com>
-Brian Bland <brian.bland@docker.com>
-burnettk <burnettk@gmail.com>
-Carson A <ca@carsonoid.net>
-Cezar Sa Espinola <cezarsa@gmail.com>
-Charles Smith <charles.smith@docker.com>
-Chris Dillon <squarism@gmail.com>
-cuiwei13 <cuiwei13@pku.edu.cn>
-cyli <cyli@twistedmatrix.com>
-Daisuke Fujita <dtanshi45@gmail.com>
-Daniel Huhn <daniel@danielhuhn.de>
-Darren Shepherd <darren@rancher.com>
-Dave Trombley <dave.trombley@gmail.com>
-Dave Tucker <dt@docker.com>
-David Lawrence <david.lawrence@docker.com>
-David Verhasselt <david@crowdway.com>
-David Xia <dxia@spotify.com>
-davidli <wenquan.li@hp.com>
-Dejan Golja <dejan@golja.org>
-Derek McGowan <derek@mcgstyle.net>
-Diogo Mónica <diogo.monica@gmail.com>
-DJ Enriquez <dj.enriquez@infospace.com>
-Donald Huang <don.hcd@gmail.com>
-Doug Davis <dug@us.ibm.com>
-Edgar Lee <edgar.lee@docker.com>
-Eric Yang <windfarer@gmail.com>
-Fabio Berchtold <jamesclonk@jamesclonk.ch>
-Fabio Huser <fabio@fh1.ch>
-farmerworking <farmerworking@gmail.com>
-Felix Yan <felixonmars@archlinux.org>
-Florentin Raud <florentin.raud@gmail.com>
-Frank Chen <frankchn@gmail.com>
-Frederick F. Kautz IV <fkautz@alumni.cmu.edu>
-gabriell nascimento <gabriell@bluesoft.com.br>
-Gleb Schukin <gschukin@ptsecurity.com>
-harche <p.harshal@gmail.com>
-Henri Gomez <henri.gomez@gmail.com>
-Hu Keping <hukeping@huawei.com>
-Hua Wang <wanghua.humble@gmail.com>
-HuKeping <hukeping@huawei.com>
-Ian Babrou <ibobrik@gmail.com>
-igayoso <igayoso@gmail.com>
-Jack Griffin <jackpg14@gmail.com>
-James Findley <jfindley@fastmail.com>
-Jason Freidman <jason.freidman@gmail.com>
-Jason Heiss <jheiss@aput.net>
-Jeff Nickoloff <jeff@allingeek.com>
-Jess Frazelle <acidburn@google.com>
-Jessie Frazelle <jessie@docker.com>
-jhaohai <jhaohai@foxmail.com>
-Jianqing Wang <tsing@jianqing.org>
-Jihoon Chung <jihoon@gmail.com>
-Joao Fernandes <joao.fernandes@docker.com>
-John Mulhausen <john@docker.com>
-John Starks <jostarks@microsoft.com>
-Jon Johnson <jonjohnson@google.com>
-Jon Poler <jonathan.poler@apcera.com>
-Jonathan Boulle <jonathanboulle@gmail.com>
-Jordan Liggitt <jliggitt@redhat.com>
-Josh Chorlton <josh.chorlton@docker.com>
-Josh Hawn <josh.hawn@docker.com>
-Julien Fernandez <julien.fernandez@gmail.com>
-Ke Xu <leonhartx.k@gmail.com>
-Keerthan Mala <kmala@engineyard.com>
-Kelsey Hightower <kelsey.hightower@gmail.com>
-Kenneth Lim <kennethlimcp@gmail.com>
-Kenny Leung <kleung@google.com>
-Li Yi <denverdino@gmail.com>
-Liu Hua <sdu.liu@huawei.com>
-liuchang0812 <liuchang0812@gmail.com>
-Lloyd Ramey <lnr0626@gmail.com>
-Louis Kottmann <louis.kottmann@gmail.com>
-Luke Carpenter <x@rubynerd.net>
-Marcus Martins <marcus@docker.com>
-Mary Anthony <mary@docker.com>
-Matt Bentley <mbentley@mbentley.net>
-Matt Duch <matt@learnmetrics.com>
-Matt Moore <mattmoor@google.com>
-Matt Robenolt <matt@ydekproductions.com>
-Matthew Green <greenmr@live.co.uk>
-Michael Prokop <mika@grml.org>
-Michal Minar <miminar@redhat.com>
-Michal Minář <miminar@redhat.com>
-Mike Brown <brownwm@us.ibm.com>
-Miquel Sabaté <msabate@suse.com>
-Misty Stanley-Jones <misty@apache.org>
-Misty Stanley-Jones <misty@docker.com>
-Morgan Bauer <mbauer@us.ibm.com>
-moxiegirl <mary@docker.com>
-Nathan Sullivan <nathan@nightsys.net>
-nevermosby <robolwq@qq.com>
-Nghia Tran <tcnghia@gmail.com>
-Nikita Tarasov <nikita@mygento.ru>
-Noah Treuhaft <noah.treuhaft@docker.com>
-Nuutti Kotivuori <nuutti.kotivuori@poplatek.fi>
-Oilbeater <liumengxinfly@gmail.com>
-Olivier Gambier <olivier@docker.com>
-Olivier Jacques <olivier.jacques@hp.com>
-Omer Cohen <git@omer.io>
-Patrick Devine <patrick.devine@docker.com>
-Phil Estes <estesp@linux.vnet.ibm.com>
-Philip Misiowiec <philip@atlashealth.com>
-Pierre-Yves Ritschard <pyr@spootnik.org>
-Qiao Anran <qiaoanran@gmail.com>
-Randy Barlow <randy@electronsweatshop.com>
-Richard Scothern <richard.scothern@docker.com>
-Rodolfo Carvalho <rhcarvalho@gmail.com>
-Rusty Conover <rusty@luckydinosaur.com>
-Sean Boran <Boran@users.noreply.github.com>
-Sebastiaan van Stijn <github@gone.nl>
-Sebastien Coavoux <s.coavoux@free.fr>
-Serge Dubrouski <sergeyfd@gmail.com>
-Sharif Nassar <sharif@mrwacky.com>
-Shawn Falkner-Horine <dreadpirateshawn@gmail.com>
-Shreyas Karnik <karnik.shreyas@gmail.com>
-Simon Thulbourn <simon+github@thulbourn.com>
-spacexnice <yaoyao.xyy@alibaba-inc.com>
-Spencer Rinehart <anubis@overthemonkey.com>
-Stan Hu <stanhu@gmail.com>
-Stefan Majewsky <stefan.majewsky@sap.com>
-Stefan Weil <sw@weilnetz.de>
-Stephen J Day <stephen.day@docker.com>
-Sungho Moon <sungho.moon@navercorp.com>
-Sven Dowideit <SvenDowideit@home.org.au>
-Sylvain Baubeau <sbaubeau@redhat.com>
-Ted Reed <ted.reed@gmail.com>
-tgic <farmer1992@gmail.com>
-Thomas Sjögren <konstruktoid@users.noreply.github.com>
-Tianon Gravi <admwiggin@gmail.com>
-Tibor Vass <teabee89@gmail.com>
-Tonis Tiigi <tonistiigi@gmail.com>
-Tony Holdstock-Brown <tony@docker.com>
-Trevor Pounds <trevor.pounds@gmail.com>
-Troels Thomsen <troels@thomsen.io>
-Victor Vieux <vieux@docker.com>
-Victoria Bialas <victoria.bialas@docker.com>
-Vincent Batts <vbatts@redhat.com>
-Vincent Demeester <vincent@sbr.pm>
-Vincent Giersch <vincent.giersch@ovh.net>
-W. Trevor King <wking@tremily.us>
-weiyuan.yl <weiyuan.yl@alibaba-inc.com>
-xg.song <xg.song@venusource.com>
-xiekeyang <xiekeyang@huawei.com>
-Yann ROBERT <yann.robert@anantaplex.fr>
-yaoyao.xyy <yaoyao.xyy@alibaba-inc.com>
-yuexiao-wang <wang.yuexiao@zte.com.cn>
-yuzou <zouyu7@huawei.com>
-zhouhaibing089 <zhouhaibing089@gmail.com>
-姜继忠 <jizhong.jiangjz@alibaba-inc.com>
diff --git a/vendor/github.com/docker/distribution/LICENSE b/vendor/github.com/docker/distribution/LICENSE
deleted file mode 100644
index e06d208186..0000000000
--- a/vendor/github.com/docker/distribution/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "{}"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright {yyyy} {name of copyright owner}
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
-
diff --git a/vendor/github.com/docker/distribution/blobs.go b/vendor/github.com/docker/distribution/blobs.go
deleted file mode 100644
index 145b078532..0000000000
--- a/vendor/github.com/docker/distribution/blobs.go
+++ /dev/null
@@ -1,257 +0,0 @@
-package distribution
-
-import (
-	"context"
-	"errors"
-	"fmt"
-	"io"
-	"net/http"
-	"time"
-
-	"github.com/docker/distribution/reference"
-	"github.com/opencontainers/go-digest"
-)
-
-var (
-	// ErrBlobExists returned when blob already exists
-	ErrBlobExists = errors.New("blob exists")
-
-	// ErrBlobDigestUnsupported when blob digest is an unsupported version.
-	ErrBlobDigestUnsupported = errors.New("unsupported blob digest")
-
-	// ErrBlobUnknown when blob is not found.
-	ErrBlobUnknown = errors.New("unknown blob")
-
-	// ErrBlobUploadUnknown returned when upload is not found.
-	ErrBlobUploadUnknown = errors.New("blob upload unknown")
-
-	// ErrBlobInvalidLength returned when the blob has an expected length on
-	// commit, meaning mismatched with the descriptor or an invalid value.
-	ErrBlobInvalidLength = errors.New("blob invalid length")
-)
-
-// ErrBlobInvalidDigest returned when digest check fails.
-type ErrBlobInvalidDigest struct {
-	Digest digest.Digest
-	Reason error
-}
-
-func (err ErrBlobInvalidDigest) Error() string {
-	return fmt.Sprintf("invalid digest for referenced layer: %v, %v",
-		err.Digest, err.Reason)
-}
-
-// ErrBlobMounted returned when a blob is mounted from another repository
-// instead of initiating an upload session.
-type ErrBlobMounted struct {
-	From       reference.Canonical
-	Descriptor Descriptor
-}
-
-func (err ErrBlobMounted) Error() string {
-	return fmt.Sprintf("blob mounted from: %v to: %v",
-		err.From, err.Descriptor)
-}
-
-// Descriptor describes targeted content. Used in conjunction with a blob
-// store, a descriptor can be used to fetch, store and target any kind of
-// blob. The struct also describes the wire protocol format. Fields should
-// only be added but never changed.
-type Descriptor struct {
-	// MediaType describe the type of the content. All text based formats are
-	// encoded as utf-8.
-	MediaType string `json:"mediaType,omitempty"`
-
-	// Size in bytes of content.
-	Size int64 `json:"size,omitempty"`
-
-	// Digest uniquely identifies the content. A byte stream can be verified
-	// against against this digest.
-	Digest digest.Digest `json:"digest,omitempty"`
-
-	// URLs contains the source URLs of this content.
-	URLs []string `json:"urls,omitempty"`
-
-	// NOTE: Before adding a field here, please ensure that all
-	// other options have been exhausted. Much of the type relationships
-	// depend on the simplicity of this type.
-}
-
-// Descriptor returns the descriptor, to make it satisfy the Describable
-// interface. Note that implementations of Describable are generally objects
-// which can be described, not simply descriptors; this exception is in place
-// to make it more convenient to pass actual descriptors to functions that
-// expect Describable objects.
-func (d Descriptor) Descriptor() Descriptor {
-	return d
-}
-
-// BlobStatter makes blob descriptors available by digest. The service may
-// provide a descriptor of a different digest if the provided digest is not
-// canonical.
-type BlobStatter interface {
-	// Stat provides metadata about a blob identified by the digest. If the
-	// blob is unknown to the describer, ErrBlobUnknown will be returned.
-	Stat(ctx context.Context, dgst digest.Digest) (Descriptor, error)
-}
-
-// BlobDeleter enables deleting blobs from storage.
-type BlobDeleter interface {
-	Delete(ctx context.Context, dgst digest.Digest) error
-}
-
-// BlobEnumerator enables iterating over blobs from storage
-type BlobEnumerator interface {
-	Enumerate(ctx context.Context, ingester func(dgst digest.Digest) error) error
-}
-
-// BlobDescriptorService manages metadata about a blob by digest. Most
-// implementations will not expose such an interface explicitly. Such mappings
-// should be maintained by interacting with the BlobIngester. Hence, this is
-// left off of BlobService and BlobStore.
-type BlobDescriptorService interface {
-	BlobStatter
-
-	// SetDescriptor assigns the descriptor to the digest. The provided digest and
-	// the digest in the descriptor must map to identical content but they may
-	// differ on their algorithm. The descriptor must have the canonical
-	// digest of the content and the digest algorithm must match the
-	// annotators canonical algorithm.
-	//
-	// Such a facility can be used to map blobs between digest domains, with
-	// the restriction that the algorithm of the descriptor must match the
-	// canonical algorithm (ie sha256) of the annotator.
-	SetDescriptor(ctx context.Context, dgst digest.Digest, desc Descriptor) error
-
-	// Clear enables descriptors to be unlinked
-	Clear(ctx context.Context, dgst digest.Digest) error
-}
-
-// BlobDescriptorServiceFactory creates middleware for BlobDescriptorService.
-type BlobDescriptorServiceFactory interface {
-	BlobAccessController(svc BlobDescriptorService) BlobDescriptorService
-}
-
-// ReadSeekCloser is the primary reader type for blob data, combining
-// io.ReadSeeker with io.Closer.
-type ReadSeekCloser interface {
-	io.ReadSeeker
-	io.Closer
-}
-
-// BlobProvider describes operations for getting blob data.
-type BlobProvider interface {
-	// Get returns the entire blob identified by digest along with the descriptor.
-	Get(ctx context.Context, dgst digest.Digest) ([]byte, error)
-
-	// Open provides a ReadSeekCloser to the blob identified by the provided
-	// descriptor. If the blob is not known to the service, an error will be
-	// returned.
-	Open(ctx context.Context, dgst digest.Digest) (ReadSeekCloser, error)
-}
-
-// BlobServer can serve blobs via http.
-type BlobServer interface {
-	// ServeBlob attempts to serve the blob, identified by dgst, via http. The
-	// service may decide to redirect the client elsewhere or serve the data
-	// directly.
-	//
-	// This handler only issues successful responses, such as 2xx or 3xx,
-	// meaning it serves data or issues a redirect. If the blob is not
-	// available, an error will be returned and the caller may still issue a
-	// response.
-	//
-	// The implementation may serve the same blob from a different digest
-	// domain. The appropriate headers will be set for the blob, unless they
-	// have already been set by the caller.
-	ServeBlob(ctx context.Context, w http.ResponseWriter, r *http.Request, dgst digest.Digest) error
-}
-
-// BlobIngester ingests blob data.
-type BlobIngester interface {
-	// Put inserts the content p into the blob service, returning a descriptor
-	// or an error.
-	Put(ctx context.Context, mediaType string, p []byte) (Descriptor, error)
-
-	// Create allocates a new blob writer to add a blob to this service. The
-	// returned handle can be written to and later resumed using an opaque
-	// identifier. With this approach, one can Close and Resume a BlobWriter
-	// multiple times until the BlobWriter is committed or cancelled.
-	Create(ctx context.Context, options ...BlobCreateOption) (BlobWriter, error)
-
-	// Resume attempts to resume a write to a blob, identified by an id.
-	Resume(ctx context.Context, id string) (BlobWriter, error)
-}
-
-// BlobCreateOption is a general extensible function argument for blob creation
-// methods. A BlobIngester may choose to honor any or none of the given
-// BlobCreateOptions, which can be specific to the implementation of the
-// BlobIngester receiving them.
-// TODO (brianbland): unify this with ManifestServiceOption in the future
-type BlobCreateOption interface {
-	Apply(interface{}) error
-}
-
-// CreateOptions is a collection of blob creation modifiers relevant to general
-// blob storage intended to be configured by the BlobCreateOption.Apply method.
-type CreateOptions struct {
-	Mount struct {
-		ShouldMount bool
-		From        reference.Canonical
-		// Stat allows to pass precalculated descriptor to link and return.
-		// Blob access check will be skipped if set.
-		Stat *Descriptor
-	}
-}
-
-// BlobWriter provides a handle for inserting data into a blob store.
-// Instances should be obtained from BlobWriteService.Writer and
-// BlobWriteService.Resume. If supported by the store, a writer can be
-// recovered with the id.
-type BlobWriter interface {
-	io.WriteCloser
-	io.ReaderFrom
-
-	// Size returns the number of bytes written to this blob.
-	Size() int64
-
-	// ID returns the identifier for this writer. The ID can be used with the
-	// Blob service to later resume the write.
-	ID() string
-
-	// StartedAt returns the time this blob write was started.
-	StartedAt() time.Time
-
-	// Commit completes the blob writer process. The content is verified
-	// against the provided provisional descriptor, which may result in an
-	// error. Depending on the implementation, written data may be validated
-	// against the provisional descriptor fields. If MediaType is not present,
-	// the implementation may reject the commit or assign "application/octet-
-	// stream" to the blob. The returned descriptor may have a different
-	// digest depending on the blob store, referred to as the canonical
-	// descriptor.
-	Commit(ctx context.Context, provisional Descriptor) (canonical Descriptor, err error)
-
-	// Cancel ends the blob write without storing any data and frees any
-	// associated resources. Any data written thus far will be lost. Cancel
-	// implementations should allow multiple calls even after a commit that
-	// result in a no-op. This allows use of Cancel in a defer statement,
-	// increasing the assurance that it is correctly called.
-	Cancel(ctx context.Context) error
-}
-
-// BlobService combines the operations to access, read and write blobs. This
-// can be used to describe remote blob services.
-type BlobService interface {
-	BlobStatter
-	BlobProvider
-	BlobIngester
-}
-
-// BlobStore represent the entire suite of blob related operations. Such an
-// implementation can access, read, write, delete and serve blobs.
-type BlobStore interface {
-	BlobService
-	BlobServer
-	BlobDeleter
-}
diff --git a/vendor/github.com/docker/distribution/digestset/set.go b/vendor/github.com/docker/distribution/digestset/set.go
deleted file mode 100644
index 71327dca72..0000000000
--- a/vendor/github.com/docker/distribution/digestset/set.go
+++ /dev/null
@@ -1,247 +0,0 @@
-package digestset
-
-import (
-	"errors"
-	"sort"
-	"strings"
-	"sync"
-
-	digest "github.com/opencontainers/go-digest"
-)
-
-var (
-	// ErrDigestNotFound is used when a matching digest
-	// could not be found in a set.
-	ErrDigestNotFound = errors.New("digest not found")
-
-	// ErrDigestAmbiguous is used when multiple digests
-	// are found in a set. None of the matching digests
-	// should be considered valid matches.
-	ErrDigestAmbiguous = errors.New("ambiguous digest string")
-)
-
-// Set is used to hold a unique set of digests which
-// may be easily referenced by easily  referenced by a string
-// representation of the digest as well as short representation.
-// The uniqueness of the short representation is based on other
-// digests in the set. If digests are omitted from this set,
-// collisions in a larger set may not be detected, therefore it
-// is important to always do short representation lookups on
-// the complete set of digests. To mitigate collisions, an
-// appropriately long short code should be used.
-type Set struct {
-	mutex   sync.RWMutex
-	entries digestEntries
-}
-
-// NewSet creates an empty set of digests
-// which may have digests added.
-func NewSet() *Set {
-	return &Set{
-		entries: digestEntries{},
-	}
-}
-
-// checkShortMatch checks whether two digests match as either whole
-// values or short values. This function does not test equality,
-// rather whether the second value could match against the first
-// value.
-func checkShortMatch(alg digest.Algorithm, hex, shortAlg, shortHex string) bool {
-	if len(hex) == len(shortHex) {
-		if hex != shortHex {
-			return false
-		}
-		if len(shortAlg) > 0 && string(alg) != shortAlg {
-			return false
-		}
-	} else if !strings.HasPrefix(hex, shortHex) {
-		return false
-	} else if len(shortAlg) > 0 && string(alg) != shortAlg {
-		return false
-	}
-	return true
-}
-
-// Lookup looks for a digest matching the given string representation.
-// If no digests could be found ErrDigestNotFound will be returned
-// with an empty digest value. If multiple matches are found
-// ErrDigestAmbiguous will be returned with an empty digest value.
-func (dst *Set) Lookup(d string) (digest.Digest, error) {
-	dst.mutex.RLock()
-	defer dst.mutex.RUnlock()
-	if len(dst.entries) == 0 {
-		return "", ErrDigestNotFound
-	}
-	var (
-		searchFunc func(int) bool
-		alg        digest.Algorithm
-		hex        string
-	)
-	dgst, err := digest.Parse(d)
-	if err == digest.ErrDigestInvalidFormat {
-		hex = d
-		searchFunc = func(i int) bool {
-			return dst.entries[i].val >= d
-		}
-	} else {
-		hex = dgst.Hex()
-		alg = dgst.Algorithm()
-		searchFunc = func(i int) bool {
-			if dst.entries[i].val == hex {
-				return dst.entries[i].alg >= alg
-			}
-			return dst.entries[i].val >= hex
-		}
-	}
-	idx := sort.Search(len(dst.entries), searchFunc)
-	if idx == len(dst.entries) || !checkShortMatch(dst.entries[idx].alg, dst.entries[idx].val, string(alg), hex) {
-		return "", ErrDigestNotFound
-	}
-	if dst.entries[idx].alg == alg && dst.entries[idx].val == hex {
-		return dst.entries[idx].digest, nil
-	}
-	if idx+1 < len(dst.entries) && checkShortMatch(dst.entries[idx+1].alg, dst.entries[idx+1].val, string(alg), hex) {
-		return "", ErrDigestAmbiguous
-	}
-
-	return dst.entries[idx].digest, nil
-}
-
-// Add adds the given digest to the set. An error will be returned
-// if the given digest is invalid. If the digest already exists in the
-// set, this operation will be a no-op.
-func (dst *Set) Add(d digest.Digest) error {
-	if err := d.Validate(); err != nil {
-		return err
-	}
-	dst.mutex.Lock()
-	defer dst.mutex.Unlock()
-	entry := &digestEntry{alg: d.Algorithm(), val: d.Hex(), digest: d}
-	searchFunc := func(i int) bool {
-		if dst.entries[i].val == entry.val {
-			return dst.entries[i].alg >= entry.alg
-		}
-		return dst.entries[i].val >= entry.val
-	}
-	idx := sort.Search(len(dst.entries), searchFunc)
-	if idx == len(dst.entries) {
-		dst.entries = append(dst.entries, entry)
-		return nil
-	} else if dst.entries[idx].digest == d {
-		return nil
-	}
-
-	entries := append(dst.entries, nil)
-	copy(entries[idx+1:], entries[idx:len(entries)-1])
-	entries[idx] = entry
-	dst.entries = entries
-	return nil
-}
-
-// Remove removes the given digest from the set. An err will be
-// returned if the given digest is invalid. If the digest does
-// not exist in the set, this operation will be a no-op.
-func (dst *Set) Remove(d digest.Digest) error {
-	if err := d.Validate(); err != nil {
-		return err
-	}
-	dst.mutex.Lock()
-	defer dst.mutex.Unlock()
-	entry := &digestEntry{alg: d.Algorithm(), val: d.Hex(), digest: d}
-	searchFunc := func(i int) bool {
-		if dst.entries[i].val == entry.val {
-			return dst.entries[i].alg >= entry.alg
-		}
-		return dst.entries[i].val >= entry.val
-	}
-	idx := sort.Search(len(dst.entries), searchFunc)
-	// Not found if idx is after or value at idx is not digest
-	if idx == len(dst.entries) || dst.entries[idx].digest != d {
-		return nil
-	}
-
-	entries := dst.entries
-	copy(entries[idx:], entries[idx+1:])
-	entries = entries[:len(entries)-1]
-	dst.entries = entries
-
-	return nil
-}
-
-// All returns all the digests in the set
-func (dst *Set) All() []digest.Digest {
-	dst.mutex.RLock()
-	defer dst.mutex.RUnlock()
-	retValues := make([]digest.Digest, len(dst.entries))
-	for i := range dst.entries {
-		retValues[i] = dst.entries[i].digest
-	}
-
-	return retValues
-}
-
-// ShortCodeTable returns a map of Digest to unique short codes. The
-// length represents the minimum value, the maximum length may be the
-// entire value of digest if uniqueness cannot be achieved without the
-// full value. This function will attempt to make short codes as short
-// as possible to be unique.
-func ShortCodeTable(dst *Set, length int) map[digest.Digest]string {
-	dst.mutex.RLock()
-	defer dst.mutex.RUnlock()
-	m := make(map[digest.Digest]string, len(dst.entries))
-	l := length
-	resetIdx := 0
-	for i := 0; i < len(dst.entries); i++ {
-		var short string
-		extended := true
-		for extended {
-			extended = false
-			if len(dst.entries[i].val) <= l {
-				short = dst.entries[i].digest.String()
-			} else {
-				short = dst.entries[i].val[:l]
-				for j := i + 1; j < len(dst.entries); j++ {
-					if checkShortMatch(dst.entries[j].alg, dst.entries[j].val, "", short) {
-						if j > resetIdx {
-							resetIdx = j
-						}
-						extended = true
-					} else {
-						break
-					}
-				}
-				if extended {
-					l++
-				}
-			}
-		}
-		m[dst.entries[i].digest] = short
-		if i >= resetIdx {
-			l = length
-		}
-	}
-	return m
-}
-
-type digestEntry struct {
-	alg    digest.Algorithm
-	val    string
-	digest digest.Digest
-}
-
-type digestEntries []*digestEntry
-
-func (d digestEntries) Len() int {
-	return len(d)
-}
-
-func (d digestEntries) Less(i, j int) bool {
-	if d[i].val != d[j].val {
-		return d[i].val < d[j].val
-	}
-	return d[i].alg < d[j].alg
-}
-
-func (d digestEntries) Swap(i, j int) {
-	d[i], d[j] = d[j], d[i]
-}
diff --git a/vendor/github.com/docker/distribution/doc.go b/vendor/github.com/docker/distribution/doc.go
deleted file mode 100644
index bdd8cb708e..0000000000
--- a/vendor/github.com/docker/distribution/doc.go
+++ /dev/null
@@ -1,7 +0,0 @@
-// Package distribution will define the interfaces for the components of
-// docker distribution. The goal is to allow users to reliably package, ship
-// and store content related to docker images.
-//
-// This is currently a work in progress. More details are available in the
-// README.md.
-package distribution
diff --git a/vendor/github.com/docker/distribution/errors.go b/vendor/github.com/docker/distribution/errors.go
deleted file mode 100644
index 020d33258b..0000000000
--- a/vendor/github.com/docker/distribution/errors.go
+++ /dev/null
@@ -1,115 +0,0 @@
-package distribution
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-
-	"github.com/opencontainers/go-digest"
-)
-
-// ErrAccessDenied is returned when an access to a requested resource is
-// denied.
-var ErrAccessDenied = errors.New("access denied")
-
-// ErrManifestNotModified is returned when a conditional manifest GetByTag
-// returns nil due to the client indicating it has the latest version
-var ErrManifestNotModified = errors.New("manifest not modified")
-
-// ErrUnsupported is returned when an unimplemented or unsupported action is
-// performed
-var ErrUnsupported = errors.New("operation unsupported")
-
-// ErrTagUnknown is returned if the given tag is not known by the tag service
-type ErrTagUnknown struct {
-	Tag string
-}
-
-func (err ErrTagUnknown) Error() string {
-	return fmt.Sprintf("unknown tag=%s", err.Tag)
-}
-
-// ErrRepositoryUnknown is returned if the named repository is not known by
-// the registry.
-type ErrRepositoryUnknown struct {
-	Name string
-}
-
-func (err ErrRepositoryUnknown) Error() string {
-	return fmt.Sprintf("unknown repository name=%s", err.Name)
-}
-
-// ErrRepositoryNameInvalid should be used to denote an invalid repository
-// name. Reason may set, indicating the cause of invalidity.
-type ErrRepositoryNameInvalid struct {
-	Name   string
-	Reason error
-}
-
-func (err ErrRepositoryNameInvalid) Error() string {
-	return fmt.Sprintf("repository name %q invalid: %v", err.Name, err.Reason)
-}
-
-// ErrManifestUnknown is returned if the manifest is not known by the
-// registry.
-type ErrManifestUnknown struct {
-	Name string
-	Tag  string
-}
-
-func (err ErrManifestUnknown) Error() string {
-	return fmt.Sprintf("unknown manifest name=%s tag=%s", err.Name, err.Tag)
-}
-
-// ErrManifestUnknownRevision is returned when a manifest cannot be found by
-// revision within a repository.
-type ErrManifestUnknownRevision struct {
-	Name     string
-	Revision digest.Digest
-}
-
-func (err ErrManifestUnknownRevision) Error() string {
-	return fmt.Sprintf("unknown manifest name=%s revision=%s", err.Name, err.Revision)
-}
-
-// ErrManifestUnverified is returned when the registry is unable to verify
-// the manifest.
-type ErrManifestUnverified struct{}
-
-func (ErrManifestUnverified) Error() string {
-	return "unverified manifest"
-}
-
-// ErrManifestVerification provides a type to collect errors encountered
-// during manifest verification. Currently, it accepts errors of all types,
-// but it may be narrowed to those involving manifest verification.
-type ErrManifestVerification []error
-
-func (errs ErrManifestVerification) Error() string {
-	var parts []string
-	for _, err := range errs {
-		parts = append(parts, err.Error())
-	}
-
-	return fmt.Sprintf("errors verifying manifest: %v", strings.Join(parts, ","))
-}
-
-// ErrManifestBlobUnknown returned when a referenced blob cannot be found.
-type ErrManifestBlobUnknown struct {
-	Digest digest.Digest
-}
-
-func (err ErrManifestBlobUnknown) Error() string {
-	return fmt.Sprintf("unknown blob %v on manifest", err.Digest)
-}
-
-// ErrManifestNameInvalid should be used to denote an invalid manifest
-// name. Reason may set, indicating the cause of invalidity.
-type ErrManifestNameInvalid struct {
-	Name   string
-	Reason error
-}
-
-func (err ErrManifestNameInvalid) Error() string {
-	return fmt.Sprintf("manifest name %q invalid: %v", err.Name, err.Reason)
-}
diff --git a/vendor/github.com/docker/distribution/manifests.go b/vendor/github.com/docker/distribution/manifests.go
deleted file mode 100644
index 1816baea1d..0000000000
--- a/vendor/github.com/docker/distribution/manifests.go
+++ /dev/null
@@ -1,125 +0,0 @@
-package distribution
-
-import (
-	"context"
-	"fmt"
-	"mime"
-
-	"github.com/opencontainers/go-digest"
-)
-
-// Manifest represents a registry object specifying a set of
-// references and an optional target
-type Manifest interface {
-	// References returns a list of objects which make up this manifest.
-	// A reference is anything which can be represented by a
-	// distribution.Descriptor. These can consist of layers, resources or other
-	// manifests.
-	//
-	// While no particular order is required, implementations should return
-	// them from highest to lowest priority. For example, one might want to
-	// return the base layer before the top layer.
-	References() []Descriptor
-
-	// Payload provides the serialized format of the manifest, in addition to
-	// the media type.
-	Payload() (mediaType string, payload []byte, err error)
-}
-
-// ManifestBuilder creates a manifest allowing one to include dependencies.
-// Instances can be obtained from a version-specific manifest package.  Manifest
-// specific data is passed into the function which creates the builder.
-type ManifestBuilder interface {
-	// Build creates the manifest from his builder.
-	Build(ctx context.Context) (Manifest, error)
-
-	// References returns a list of objects which have been added to this
-	// builder. The dependencies are returned in the order they were added,
-	// which should be from base to head.
-	References() []Descriptor
-
-	// AppendReference includes the given object in the manifest after any
-	// existing dependencies. If the add fails, such as when adding an
-	// unsupported dependency, an error may be returned.
-	//
-	// The destination of the reference is dependent on the manifest type and
-	// the dependency type.
-	AppendReference(dependency Describable) error
-}
-
-// ManifestService describes operations on image manifests.
-type ManifestService interface {
-	// Exists returns true if the manifest exists.
-	Exists(ctx context.Context, dgst digest.Digest) (bool, error)
-
-	// Get retrieves the manifest specified by the given digest
-	Get(ctx context.Context, dgst digest.Digest, options ...ManifestServiceOption) (Manifest, error)
-
-	// Put creates or updates the given manifest returning the manifest digest
-	Put(ctx context.Context, manifest Manifest, options ...ManifestServiceOption) (digest.Digest, error)
-
-	// Delete removes the manifest specified by the given digest. Deleting
-	// a manifest that doesn't exist will return ErrManifestNotFound
-	Delete(ctx context.Context, dgst digest.Digest) error
-}
-
-// ManifestEnumerator enables iterating over manifests
-type ManifestEnumerator interface {
-	// Enumerate calls ingester for each manifest.
-	Enumerate(ctx context.Context, ingester func(digest.Digest) error) error
-}
-
-// Describable is an interface for descriptors
-type Describable interface {
-	Descriptor() Descriptor
-}
-
-// ManifestMediaTypes returns the supported media types for manifests.
-func ManifestMediaTypes() (mediaTypes []string) {
-	for t := range mappings {
-		if t != "" {
-			mediaTypes = append(mediaTypes, t)
-		}
-	}
-	return
-}
-
-// UnmarshalFunc implements manifest unmarshalling a given MediaType
-type UnmarshalFunc func([]byte) (Manifest, Descriptor, error)
-
-var mappings = make(map[string]UnmarshalFunc, 0)
-
-// UnmarshalManifest looks up manifest unmarshal functions based on
-// MediaType
-func UnmarshalManifest(ctHeader string, p []byte) (Manifest, Descriptor, error) {
-	// Need to look up by the actual media type, not the raw contents of
-	// the header. Strip semicolons and anything following them.
-	var mediaType string
-	if ctHeader != "" {
-		var err error
-		mediaType, _, err = mime.ParseMediaType(ctHeader)
-		if err != nil {
-			return nil, Descriptor{}, err
-		}
-	}
-
-	unmarshalFunc, ok := mappings[mediaType]
-	if !ok {
-		unmarshalFunc, ok = mappings[""]
-		if !ok {
-			return nil, Descriptor{}, fmt.Errorf("unsupported manifest media type and no default available: %s", mediaType)
-		}
-	}
-
-	return unmarshalFunc(p)
-}
-
-// RegisterManifestSchema registers an UnmarshalFunc for a given schema type.  This
-// should be called from specific
-func RegisterManifestSchema(mediaType string, u UnmarshalFunc) error {
-	if _, ok := mappings[mediaType]; ok {
-		return fmt.Errorf("manifest media type registration would overwrite existing: %s", mediaType)
-	}
-	mappings[mediaType] = u
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/metrics/prometheus.go b/vendor/github.com/docker/distribution/metrics/prometheus.go
deleted file mode 100644
index b5a5321448..0000000000
--- a/vendor/github.com/docker/distribution/metrics/prometheus.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package metrics
-
-import "github.com/docker/go-metrics"
-
-const (
-	// NamespacePrefix is the namespace of prometheus metrics
-	NamespacePrefix = "registry"
-)
-
-var (
-	// StorageNamespace is the prometheus namespace of blob/cache related operations
-	StorageNamespace = metrics.NewNamespace(NamespacePrefix, "storage", nil)
-)
diff --git a/vendor/github.com/docker/distribution/reference/helpers.go b/vendor/github.com/docker/distribution/reference/helpers.go
deleted file mode 100644
index 978df7eabb..0000000000
--- a/vendor/github.com/docker/distribution/reference/helpers.go
+++ /dev/null
@@ -1,42 +0,0 @@
-package reference
-
-import "path"
-
-// IsNameOnly returns true if reference only contains a repo name.
-func IsNameOnly(ref Named) bool {
-	if _, ok := ref.(NamedTagged); ok {
-		return false
-	}
-	if _, ok := ref.(Canonical); ok {
-		return false
-	}
-	return true
-}
-
-// FamiliarName returns the familiar name string
-// for the given named, familiarizing if needed.
-func FamiliarName(ref Named) string {
-	if nn, ok := ref.(normalizedNamed); ok {
-		return nn.Familiar().Name()
-	}
-	return ref.Name()
-}
-
-// FamiliarString returns the familiar string representation
-// for the given reference, familiarizing if needed.
-func FamiliarString(ref Reference) string {
-	if nn, ok := ref.(normalizedNamed); ok {
-		return nn.Familiar().String()
-	}
-	return ref.String()
-}
-
-// FamiliarMatch reports whether ref matches the specified pattern.
-// See https://godoc.org/path#Match for supported patterns.
-func FamiliarMatch(pattern string, ref Reference) (bool, error) {
-	matched, err := path.Match(pattern, FamiliarString(ref))
-	if namedRef, isNamed := ref.(Named); isNamed && !matched {
-		matched, _ = path.Match(pattern, FamiliarName(namedRef))
-	}
-	return matched, err
-}
diff --git a/vendor/github.com/docker/distribution/reference/normalize.go b/vendor/github.com/docker/distribution/reference/normalize.go
deleted file mode 100644
index 2d71fc5e9f..0000000000
--- a/vendor/github.com/docker/distribution/reference/normalize.go
+++ /dev/null
@@ -1,170 +0,0 @@
-package reference
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-
-	"github.com/docker/distribution/digestset"
-	"github.com/opencontainers/go-digest"
-)
-
-var (
-	legacyDefaultDomain = "index.docker.io"
-	defaultDomain       = "docker.io"
-	officialRepoName    = "library"
-	defaultTag          = "latest"
-)
-
-// normalizedNamed represents a name which has been
-// normalized and has a familiar form. A familiar name
-// is what is used in Docker UI. An example normalized
-// name is "docker.io/library/ubuntu" and corresponding
-// familiar name of "ubuntu".
-type normalizedNamed interface {
-	Named
-	Familiar() Named
-}
-
-// ParseNormalizedNamed parses a string into a named reference
-// transforming a familiar name from Docker UI to a fully
-// qualified reference. If the value may be an identifier
-// use ParseAnyReference.
-func ParseNormalizedNamed(s string) (Named, error) {
-	if ok := anchoredIdentifierRegexp.MatchString(s); ok {
-		return nil, fmt.Errorf("invalid repository name (%s), cannot specify 64-byte hexadecimal strings", s)
-	}
-	domain, remainder := splitDockerDomain(s)
-	var remoteName string
-	if tagSep := strings.IndexRune(remainder, ':'); tagSep > -1 {
-		remoteName = remainder[:tagSep]
-	} else {
-		remoteName = remainder
-	}
-	if strings.ToLower(remoteName) != remoteName {
-		return nil, errors.New("invalid reference format: repository name must be lowercase")
-	}
-
-	ref, err := Parse(domain + "/" + remainder)
-	if err != nil {
-		return nil, err
-	}
-	named, isNamed := ref.(Named)
-	if !isNamed {
-		return nil, fmt.Errorf("reference %s has no name", ref.String())
-	}
-	return named, nil
-}
-
-// splitDockerDomain splits a repository name to domain and remotename string.
-// If no valid domain is found, the default domain is used. Repository name
-// needs to be already validated before.
-func splitDockerDomain(name string) (domain, remainder string) {
-	i := strings.IndexRune(name, '/')
-	if i == -1 || (!strings.ContainsAny(name[:i], ".:") && name[:i] != "localhost") {
-		domain, remainder = defaultDomain, name
-	} else {
-		domain, remainder = name[:i], name[i+1:]
-	}
-	if domain == legacyDefaultDomain {
-		domain = defaultDomain
-	}
-	if domain == defaultDomain && !strings.ContainsRune(remainder, '/') {
-		remainder = officialRepoName + "/" + remainder
-	}
-	return
-}
-
-// familiarizeName returns a shortened version of the name familiar
-// to to the Docker UI. Familiar names have the default domain
-// "docker.io" and "library/" repository prefix removed.
-// For example, "docker.io/library/redis" will have the familiar
-// name "redis" and "docker.io/dmcgowan/myapp" will be "dmcgowan/myapp".
-// Returns a familiarized named only reference.
-func familiarizeName(named namedRepository) repository {
-	repo := repository{
-		domain: named.Domain(),
-		path:   named.Path(),
-	}
-
-	if repo.domain == defaultDomain {
-		repo.domain = ""
-		// Handle official repositories which have the pattern "library/<official repo name>"
-		if split := strings.Split(repo.path, "/"); len(split) == 2 && split[0] == officialRepoName {
-			repo.path = split[1]
-		}
-	}
-	return repo
-}
-
-func (r reference) Familiar() Named {
-	return reference{
-		namedRepository: familiarizeName(r.namedRepository),
-		tag:             r.tag,
-		digest:          r.digest,
-	}
-}
-
-func (r repository) Familiar() Named {
-	return familiarizeName(r)
-}
-
-func (t taggedReference) Familiar() Named {
-	return taggedReference{
-		namedRepository: familiarizeName(t.namedRepository),
-		tag:             t.tag,
-	}
-}
-
-func (c canonicalReference) Familiar() Named {
-	return canonicalReference{
-		namedRepository: familiarizeName(c.namedRepository),
-		digest:          c.digest,
-	}
-}
-
-// TagNameOnly adds the default tag "latest" to a reference if it only has
-// a repo name.
-func TagNameOnly(ref Named) Named {
-	if IsNameOnly(ref) {
-		namedTagged, err := WithTag(ref, defaultTag)
-		if err != nil {
-			// Default tag must be valid, to create a NamedTagged
-			// type with non-validated input the WithTag function
-			// should be used instead
-			panic(err)
-		}
-		return namedTagged
-	}
-	return ref
-}
-
-// ParseAnyReference parses a reference string as a possible identifier,
-// full digest, or familiar name.
-func ParseAnyReference(ref string) (Reference, error) {
-	if ok := anchoredIdentifierRegexp.MatchString(ref); ok {
-		return digestReference("sha256:" + ref), nil
-	}
-	if dgst, err := digest.Parse(ref); err == nil {
-		return digestReference(dgst), nil
-	}
-
-	return ParseNormalizedNamed(ref)
-}
-
-// ParseAnyReferenceWithSet parses a reference string as a possible short
-// identifier to be matched in a digest set, a full digest, or familiar name.
-func ParseAnyReferenceWithSet(ref string, ds *digestset.Set) (Reference, error) {
-	if ok := anchoredShortIdentifierRegexp.MatchString(ref); ok {
-		dgst, err := ds.Lookup(ref)
-		if err == nil {
-			return digestReference(dgst), nil
-		}
-	} else {
-		if dgst, err := digest.Parse(ref); err == nil {
-			return digestReference(dgst), nil
-		}
-	}
-
-	return ParseNormalizedNamed(ref)
-}
diff --git a/vendor/github.com/docker/distribution/reference/reference.go b/vendor/github.com/docker/distribution/reference/reference.go
deleted file mode 100644
index 2f66cca87a..0000000000
--- a/vendor/github.com/docker/distribution/reference/reference.go
+++ /dev/null
@@ -1,433 +0,0 @@
-// Package reference provides a general type to represent any way of referencing images within the registry.
-// Its main purpose is to abstract tags and digests (content-addressable hash).
-//
-// Grammar
-//
-// 	reference                       := name [ ":" tag ] [ "@" digest ]
-//	name                            := [domain '/'] path-component ['/' path-component]*
-//	domain                          := domain-component ['.' domain-component]* [':' port-number]
-//	domain-component                := /([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])/
-//	port-number                     := /[0-9]+/
-//	path-component                  := alpha-numeric [separator alpha-numeric]*
-// 	alpha-numeric                   := /[a-z0-9]+/
-//	separator                       := /[_.]|__|[-]*/
-//
-//	tag                             := /[\w][\w.-]{0,127}/
-//
-//	digest                          := digest-algorithm ":" digest-hex
-//	digest-algorithm                := digest-algorithm-component [ digest-algorithm-separator digest-algorithm-component ]*
-//	digest-algorithm-separator      := /[+.-_]/
-//	digest-algorithm-component      := /[A-Za-z][A-Za-z0-9]*/
-//	digest-hex                      := /[0-9a-fA-F]{32,}/ ; At least 128 bit digest value
-//
-//	identifier                      := /[a-f0-9]{64}/
-//	short-identifier                := /[a-f0-9]{6,64}/
-package reference
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-
-	"github.com/opencontainers/go-digest"
-)
-
-const (
-	// NameTotalLengthMax is the maximum total number of characters in a repository name.
-	NameTotalLengthMax = 255
-)
-
-var (
-	// ErrReferenceInvalidFormat represents an error while trying to parse a string as a reference.
-	ErrReferenceInvalidFormat = errors.New("invalid reference format")
-
-	// ErrTagInvalidFormat represents an error while trying to parse a string as a tag.
-	ErrTagInvalidFormat = errors.New("invalid tag format")
-
-	// ErrDigestInvalidFormat represents an error while trying to parse a string as a tag.
-	ErrDigestInvalidFormat = errors.New("invalid digest format")
-
-	// ErrNameContainsUppercase is returned for invalid repository names that contain uppercase characters.
-	ErrNameContainsUppercase = errors.New("repository name must be lowercase")
-
-	// ErrNameEmpty is returned for empty, invalid repository names.
-	ErrNameEmpty = errors.New("repository name must have at least one component")
-
-	// ErrNameTooLong is returned when a repository name is longer than NameTotalLengthMax.
-	ErrNameTooLong = fmt.Errorf("repository name must not be more than %v characters", NameTotalLengthMax)
-
-	// ErrNameNotCanonical is returned when a name is not canonical.
-	ErrNameNotCanonical = errors.New("repository name must be canonical")
-)
-
-// Reference is an opaque object reference identifier that may include
-// modifiers such as a hostname, name, tag, and digest.
-type Reference interface {
-	// String returns the full reference
-	String() string
-}
-
-// Field provides a wrapper type for resolving correct reference types when
-// working with encoding.
-type Field struct {
-	reference Reference
-}
-
-// AsField wraps a reference in a Field for encoding.
-func AsField(reference Reference) Field {
-	return Field{reference}
-}
-
-// Reference unwraps the reference type from the field to
-// return the Reference object. This object should be
-// of the appropriate type to further check for different
-// reference types.
-func (f Field) Reference() Reference {
-	return f.reference
-}
-
-// MarshalText serializes the field to byte text which
-// is the string of the reference.
-func (f Field) MarshalText() (p []byte, err error) {
-	return []byte(f.reference.String()), nil
-}
-
-// UnmarshalText parses text bytes by invoking the
-// reference parser to ensure the appropriately
-// typed reference object is wrapped by field.
-func (f *Field) UnmarshalText(p []byte) error {
-	r, err := Parse(string(p))
-	if err != nil {
-		return err
-	}
-
-	f.reference = r
-	return nil
-}
-
-// Named is an object with a full name
-type Named interface {
-	Reference
-	Name() string
-}
-
-// Tagged is an object which has a tag
-type Tagged interface {
-	Reference
-	Tag() string
-}
-
-// NamedTagged is an object including a name and tag.
-type NamedTagged interface {
-	Named
-	Tag() string
-}
-
-// Digested is an object which has a digest
-// in which it can be referenced by
-type Digested interface {
-	Reference
-	Digest() digest.Digest
-}
-
-// Canonical reference is an object with a fully unique
-// name including a name with domain and digest
-type Canonical interface {
-	Named
-	Digest() digest.Digest
-}
-
-// namedRepository is a reference to a repository with a name.
-// A namedRepository has both domain and path components.
-type namedRepository interface {
-	Named
-	Domain() string
-	Path() string
-}
-
-// Domain returns the domain part of the Named reference
-func Domain(named Named) string {
-	if r, ok := named.(namedRepository); ok {
-		return r.Domain()
-	}
-	domain, _ := splitDomain(named.Name())
-	return domain
-}
-
-// Path returns the name without the domain part of the Named reference
-func Path(named Named) (name string) {
-	if r, ok := named.(namedRepository); ok {
-		return r.Path()
-	}
-	_, path := splitDomain(named.Name())
-	return path
-}
-
-func splitDomain(name string) (string, string) {
-	match := anchoredNameRegexp.FindStringSubmatch(name)
-	if len(match) != 3 {
-		return "", name
-	}
-	return match[1], match[2]
-}
-
-// SplitHostname splits a named reference into a
-// hostname and name string. If no valid hostname is
-// found, the hostname is empty and the full value
-// is returned as name
-// DEPRECATED: Use Domain or Path
-func SplitHostname(named Named) (string, string) {
-	if r, ok := named.(namedRepository); ok {
-		return r.Domain(), r.Path()
-	}
-	return splitDomain(named.Name())
-}
-
-// Parse parses s and returns a syntactically valid Reference.
-// If an error was encountered it is returned, along with a nil Reference.
-// NOTE: Parse will not handle short digests.
-func Parse(s string) (Reference, error) {
-	matches := ReferenceRegexp.FindStringSubmatch(s)
-	if matches == nil {
-		if s == "" {
-			return nil, ErrNameEmpty
-		}
-		if ReferenceRegexp.FindStringSubmatch(strings.ToLower(s)) != nil {
-			return nil, ErrNameContainsUppercase
-		}
-		return nil, ErrReferenceInvalidFormat
-	}
-
-	if len(matches[1]) > NameTotalLengthMax {
-		return nil, ErrNameTooLong
-	}
-
-	var repo repository
-
-	nameMatch := anchoredNameRegexp.FindStringSubmatch(matches[1])
-	if nameMatch != nil && len(nameMatch) == 3 {
-		repo.domain = nameMatch[1]
-		repo.path = nameMatch[2]
-	} else {
-		repo.domain = ""
-		repo.path = matches[1]
-	}
-
-	ref := reference{
-		namedRepository: repo,
-		tag:             matches[2],
-	}
-	if matches[3] != "" {
-		var err error
-		ref.digest, err = digest.Parse(matches[3])
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	r := getBestReferenceType(ref)
-	if r == nil {
-		return nil, ErrNameEmpty
-	}
-
-	return r, nil
-}
-
-// ParseNamed parses s and returns a syntactically valid reference implementing
-// the Named interface. The reference must have a name and be in the canonical
-// form, otherwise an error is returned.
-// If an error was encountered it is returned, along with a nil Reference.
-// NOTE: ParseNamed will not handle short digests.
-func ParseNamed(s string) (Named, error) {
-	named, err := ParseNormalizedNamed(s)
-	if err != nil {
-		return nil, err
-	}
-	if named.String() != s {
-		return nil, ErrNameNotCanonical
-	}
-	return named, nil
-}
-
-// WithName returns a named object representing the given string. If the input
-// is invalid ErrReferenceInvalidFormat will be returned.
-func WithName(name string) (Named, error) {
-	if len(name) > NameTotalLengthMax {
-		return nil, ErrNameTooLong
-	}
-
-	match := anchoredNameRegexp.FindStringSubmatch(name)
-	if match == nil || len(match) != 3 {
-		return nil, ErrReferenceInvalidFormat
-	}
-	return repository{
-		domain: match[1],
-		path:   match[2],
-	}, nil
-}
-
-// WithTag combines the name from "name" and the tag from "tag" to form a
-// reference incorporating both the name and the tag.
-func WithTag(name Named, tag string) (NamedTagged, error) {
-	if !anchoredTagRegexp.MatchString(tag) {
-		return nil, ErrTagInvalidFormat
-	}
-	var repo repository
-	if r, ok := name.(namedRepository); ok {
-		repo.domain = r.Domain()
-		repo.path = r.Path()
-	} else {
-		repo.path = name.Name()
-	}
-	if canonical, ok := name.(Canonical); ok {
-		return reference{
-			namedRepository: repo,
-			tag:             tag,
-			digest:          canonical.Digest(),
-		}, nil
-	}
-	return taggedReference{
-		namedRepository: repo,
-		tag:             tag,
-	}, nil
-}
-
-// WithDigest combines the name from "name" and the digest from "digest" to form
-// a reference incorporating both the name and the digest.
-func WithDigest(name Named, digest digest.Digest) (Canonical, error) {
-	if !anchoredDigestRegexp.MatchString(digest.String()) {
-		return nil, ErrDigestInvalidFormat
-	}
-	var repo repository
-	if r, ok := name.(namedRepository); ok {
-		repo.domain = r.Domain()
-		repo.path = r.Path()
-	} else {
-		repo.path = name.Name()
-	}
-	if tagged, ok := name.(Tagged); ok {
-		return reference{
-			namedRepository: repo,
-			tag:             tagged.Tag(),
-			digest:          digest,
-		}, nil
-	}
-	return canonicalReference{
-		namedRepository: repo,
-		digest:          digest,
-	}, nil
-}
-
-// TrimNamed removes any tag or digest from the named reference.
-func TrimNamed(ref Named) Named {
-	domain, path := SplitHostname(ref)
-	return repository{
-		domain: domain,
-		path:   path,
-	}
-}
-
-func getBestReferenceType(ref reference) Reference {
-	if ref.Name() == "" {
-		// Allow digest only references
-		if ref.digest != "" {
-			return digestReference(ref.digest)
-		}
-		return nil
-	}
-	if ref.tag == "" {
-		if ref.digest != "" {
-			return canonicalReference{
-				namedRepository: ref.namedRepository,
-				digest:          ref.digest,
-			}
-		}
-		return ref.namedRepository
-	}
-	if ref.digest == "" {
-		return taggedReference{
-			namedRepository: ref.namedRepository,
-			tag:             ref.tag,
-		}
-	}
-
-	return ref
-}
-
-type reference struct {
-	namedRepository
-	tag    string
-	digest digest.Digest
-}
-
-func (r reference) String() string {
-	return r.Name() + ":" + r.tag + "@" + r.digest.String()
-}
-
-func (r reference) Tag() string {
-	return r.tag
-}
-
-func (r reference) Digest() digest.Digest {
-	return r.digest
-}
-
-type repository struct {
-	domain string
-	path   string
-}
-
-func (r repository) String() string {
-	return r.Name()
-}
-
-func (r repository) Name() string {
-	if r.domain == "" {
-		return r.path
-	}
-	return r.domain + "/" + r.path
-}
-
-func (r repository) Domain() string {
-	return r.domain
-}
-
-func (r repository) Path() string {
-	return r.path
-}
-
-type digestReference digest.Digest
-
-func (d digestReference) String() string {
-	return digest.Digest(d).String()
-}
-
-func (d digestReference) Digest() digest.Digest {
-	return digest.Digest(d)
-}
-
-type taggedReference struct {
-	namedRepository
-	tag string
-}
-
-func (t taggedReference) String() string {
-	return t.Name() + ":" + t.tag
-}
-
-func (t taggedReference) Tag() string {
-	return t.tag
-}
-
-type canonicalReference struct {
-	namedRepository
-	digest digest.Digest
-}
-
-func (c canonicalReference) String() string {
-	return c.Name() + "@" + c.digest.String()
-}
-
-func (c canonicalReference) Digest() digest.Digest {
-	return c.digest
-}
diff --git a/vendor/github.com/docker/distribution/reference/regexp.go b/vendor/github.com/docker/distribution/reference/regexp.go
deleted file mode 100644
index 7860349320..0000000000
--- a/vendor/github.com/docker/distribution/reference/regexp.go
+++ /dev/null
@@ -1,143 +0,0 @@
-package reference
-
-import "regexp"
-
-var (
-	// alphaNumericRegexp defines the alpha numeric atom, typically a
-	// component of names. This only allows lower case characters and digits.
-	alphaNumericRegexp = match(`[a-z0-9]+`)
-
-	// separatorRegexp defines the separators allowed to be embedded in name
-	// components. This allow one period, one or two underscore and multiple
-	// dashes.
-	separatorRegexp = match(`(?:[._]|__|[-]*)`)
-
-	// nameComponentRegexp restricts registry path component names to start
-	// with at least one letter or number, with following parts able to be
-	// separated by one period, one or two underscore and multiple dashes.
-	nameComponentRegexp = expression(
-		alphaNumericRegexp,
-		optional(repeated(separatorRegexp, alphaNumericRegexp)))
-
-	// domainComponentRegexp restricts the registry domain component of a
-	// repository name to start with a component as defined by DomainRegexp
-	// and followed by an optional port.
-	domainComponentRegexp = match(`(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])`)
-
-	// DomainRegexp defines the structure of potential domain components
-	// that may be part of image names. This is purposely a subset of what is
-	// allowed by DNS to ensure backwards compatibility with Docker image
-	// names.
-	DomainRegexp = expression(
-		domainComponentRegexp,
-		optional(repeated(literal(`.`), domainComponentRegexp)),
-		optional(literal(`:`), match(`[0-9]+`)))
-
-	// TagRegexp matches valid tag names. From docker/docker:graph/tags.go.
-	TagRegexp = match(`[\w][\w.-]{0,127}`)
-
-	// anchoredTagRegexp matches valid tag names, anchored at the start and
-	// end of the matched string.
-	anchoredTagRegexp = anchored(TagRegexp)
-
-	// DigestRegexp matches valid digests.
-	DigestRegexp = match(`[A-Za-z][A-Za-z0-9]*(?:[-_+.][A-Za-z][A-Za-z0-9]*)*[:][[:xdigit:]]{32,}`)
-
-	// anchoredDigestRegexp matches valid digests, anchored at the start and
-	// end of the matched string.
-	anchoredDigestRegexp = anchored(DigestRegexp)
-
-	// NameRegexp is the format for the name component of references. The
-	// regexp has capturing groups for the domain and name part omitting
-	// the separating forward slash from either.
-	NameRegexp = expression(
-		optional(DomainRegexp, literal(`/`)),
-		nameComponentRegexp,
-		optional(repeated(literal(`/`), nameComponentRegexp)))
-
-	// anchoredNameRegexp is used to parse a name value, capturing the
-	// domain and trailing components.
-	anchoredNameRegexp = anchored(
-		optional(capture(DomainRegexp), literal(`/`)),
-		capture(nameComponentRegexp,
-			optional(repeated(literal(`/`), nameComponentRegexp))))
-
-	// ReferenceRegexp is the full supported format of a reference. The regexp
-	// is anchored and has capturing groups for name, tag, and digest
-	// components.
-	ReferenceRegexp = anchored(capture(NameRegexp),
-		optional(literal(":"), capture(TagRegexp)),
-		optional(literal("@"), capture(DigestRegexp)))
-
-	// IdentifierRegexp is the format for string identifier used as a
-	// content addressable identifier using sha256. These identifiers
-	// are like digests without the algorithm, since sha256 is used.
-	IdentifierRegexp = match(`([a-f0-9]{64})`)
-
-	// ShortIdentifierRegexp is the format used to represent a prefix
-	// of an identifier. A prefix may be used to match a sha256 identifier
-	// within a list of trusted identifiers.
-	ShortIdentifierRegexp = match(`([a-f0-9]{6,64})`)
-
-	// anchoredIdentifierRegexp is used to check or match an
-	// identifier value, anchored at start and end of string.
-	anchoredIdentifierRegexp = anchored(IdentifierRegexp)
-
-	// anchoredShortIdentifierRegexp is used to check if a value
-	// is a possible identifier prefix, anchored at start and end
-	// of string.
-	anchoredShortIdentifierRegexp = anchored(ShortIdentifierRegexp)
-)
-
-// match compiles the string to a regular expression.
-var match = regexp.MustCompile
-
-// literal compiles s into a literal regular expression, escaping any regexp
-// reserved characters.
-func literal(s string) *regexp.Regexp {
-	re := match(regexp.QuoteMeta(s))
-
-	if _, complete := re.LiteralPrefix(); !complete {
-		panic("must be a literal")
-	}
-
-	return re
-}
-
-// expression defines a full expression, where each regular expression must
-// follow the previous.
-func expression(res ...*regexp.Regexp) *regexp.Regexp {
-	var s string
-	for _, re := range res {
-		s += re.String()
-	}
-
-	return match(s)
-}
-
-// optional wraps the expression in a non-capturing group and makes the
-// production optional.
-func optional(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(group(expression(res...)).String() + `?`)
-}
-
-// repeated wraps the regexp in a non-capturing group to get one or more
-// matches.
-func repeated(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(group(expression(res...)).String() + `+`)
-}
-
-// group wraps the regexp in a non-capturing group.
-func group(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`(?:` + expression(res...).String() + `)`)
-}
-
-// capture wraps the expression in a capturing group.
-func capture(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`(` + expression(res...).String() + `)`)
-}
-
-// anchored anchors the regular expression by adding start and end delimiters.
-func anchored(res ...*regexp.Regexp) *regexp.Regexp {
-	return match(`^` + expression(res...).String() + `$`)
-}
diff --git a/vendor/github.com/docker/distribution/registry.go b/vendor/github.com/docker/distribution/registry.go
deleted file mode 100644
index a3a80ab884..0000000000
--- a/vendor/github.com/docker/distribution/registry.go
+++ /dev/null
@@ -1,113 +0,0 @@
-package distribution
-
-import (
-	"context"
-
-	"github.com/docker/distribution/reference"
-)
-
-// Scope defines the set of items that match a namespace.
-type Scope interface {
-	// Contains returns true if the name belongs to the namespace.
-	Contains(name string) bool
-}
-
-type fullScope struct{}
-
-func (f fullScope) Contains(string) bool {
-	return true
-}
-
-// GlobalScope represents the full namespace scope which contains
-// all other scopes.
-var GlobalScope = Scope(fullScope{})
-
-// Namespace represents a collection of repositories, addressable by name.
-// Generally, a namespace is backed by a set of one or more services,
-// providing facilities such as registry access, trust, and indexing.
-type Namespace interface {
-	// Scope describes the names that can be used with this Namespace. The
-	// global namespace will have a scope that matches all names. The scope
-	// effectively provides an identity for the namespace.
-	Scope() Scope
-
-	// Repository should return a reference to the named repository. The
-	// registry may or may not have the repository but should always return a
-	// reference.
-	Repository(ctx context.Context, name reference.Named) (Repository, error)
-
-	// Repositories fills 'repos' with a lexicographically sorted catalog of repositories
-	// up to the size of 'repos' and returns the value 'n' for the number of entries
-	// which were filled.  'last' contains an offset in the catalog, and 'err' will be
-	// set to io.EOF if there are no more entries to obtain.
-	Repositories(ctx context.Context, repos []string, last string) (n int, err error)
-
-	// Blobs returns a blob enumerator to access all blobs
-	Blobs() BlobEnumerator
-
-	// BlobStatter returns a BlobStatter to control
-	BlobStatter() BlobStatter
-}
-
-// RepositoryEnumerator describes an operation to enumerate repositories
-type RepositoryEnumerator interface {
-	Enumerate(ctx context.Context, ingester func(string) error) error
-}
-
-// ManifestServiceOption is a function argument for Manifest Service methods
-type ManifestServiceOption interface {
-	Apply(ManifestService) error
-}
-
-// WithTag allows a tag to be passed into Put
-func WithTag(tag string) ManifestServiceOption {
-	return WithTagOption{tag}
-}
-
-// WithTagOption holds a tag
-type WithTagOption struct{ Tag string }
-
-// Apply conforms to the ManifestServiceOption interface
-func (o WithTagOption) Apply(m ManifestService) error {
-	// no implementation
-	return nil
-}
-
-// WithManifestMediaTypes lists the media types the client wishes
-// the server to provide.
-func WithManifestMediaTypes(mediaTypes []string) ManifestServiceOption {
-	return WithManifestMediaTypesOption{mediaTypes}
-}
-
-// WithManifestMediaTypesOption holds a list of accepted media types
-type WithManifestMediaTypesOption struct{ MediaTypes []string }
-
-// Apply conforms to the ManifestServiceOption interface
-func (o WithManifestMediaTypesOption) Apply(m ManifestService) error {
-	// no implementation
-	return nil
-}
-
-// Repository is a named collection of manifests and layers.
-type Repository interface {
-	// Named returns the name of the repository.
-	Named() reference.Named
-
-	// Manifests returns a reference to this repository's manifest service.
-	// with the supplied options applied.
-	Manifests(ctx context.Context, options ...ManifestServiceOption) (ManifestService, error)
-
-	// Blobs returns a reference to this repository's blob service.
-	Blobs(ctx context.Context) BlobStore
-
-	// TODO(stevvooe): The above BlobStore return can probably be relaxed to
-	// be a BlobService for use with clients. This will allow such
-	// implementations to avoid implementing ServeBlob.
-
-	// Tags returns a reference to this repositories tag service
-	Tags(ctx context.Context) TagService
-}
-
-// TODO(stevvooe): Must add close methods to all these. May want to change the
-// way instances are created to better reflect internal dependency
-// relationships.
diff --git a/vendor/github.com/docker/distribution/registry/api/errcode/errors.go b/vendor/github.com/docker/distribution/registry/api/errcode/errors.go
deleted file mode 100644
index 6d9bb4b62a..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/errcode/errors.go
+++ /dev/null
@@ -1,267 +0,0 @@
-package errcode
-
-import (
-	"encoding/json"
-	"fmt"
-	"strings"
-)
-
-// ErrorCoder is the base interface for ErrorCode and Error allowing
-// users of each to just call ErrorCode to get the real ID of each
-type ErrorCoder interface {
-	ErrorCode() ErrorCode
-}
-
-// ErrorCode represents the error type. The errors are serialized via strings
-// and the integer format may change and should *never* be exported.
-type ErrorCode int
-
-var _ error = ErrorCode(0)
-
-// ErrorCode just returns itself
-func (ec ErrorCode) ErrorCode() ErrorCode {
-	return ec
-}
-
-// Error returns the ID/Value
-func (ec ErrorCode) Error() string {
-	// NOTE(stevvooe): Cannot use message here since it may have unpopulated args.
-	return strings.ToLower(strings.Replace(ec.String(), "_", " ", -1))
-}
-
-// Descriptor returns the descriptor for the error code.
-func (ec ErrorCode) Descriptor() ErrorDescriptor {
-	d, ok := errorCodeToDescriptors[ec]
-
-	if !ok {
-		return ErrorCodeUnknown.Descriptor()
-	}
-
-	return d
-}
-
-// String returns the canonical identifier for this error code.
-func (ec ErrorCode) String() string {
-	return ec.Descriptor().Value
-}
-
-// Message returned the human-readable error message for this error code.
-func (ec ErrorCode) Message() string {
-	return ec.Descriptor().Message
-}
-
-// MarshalText encodes the receiver into UTF-8-encoded text and returns the
-// result.
-func (ec ErrorCode) MarshalText() (text []byte, err error) {
-	return []byte(ec.String()), nil
-}
-
-// UnmarshalText decodes the form generated by MarshalText.
-func (ec *ErrorCode) UnmarshalText(text []byte) error {
-	desc, ok := idToDescriptors[string(text)]
-
-	if !ok {
-		desc = ErrorCodeUnknown.Descriptor()
-	}
-
-	*ec = desc.Code
-
-	return nil
-}
-
-// WithMessage creates a new Error struct based on the passed-in info and
-// overrides the Message property.
-func (ec ErrorCode) WithMessage(message string) Error {
-	return Error{
-		Code:    ec,
-		Message: message,
-	}
-}
-
-// WithDetail creates a new Error struct based on the passed-in info and
-// set the Detail property appropriately
-func (ec ErrorCode) WithDetail(detail interface{}) Error {
-	return Error{
-		Code:    ec,
-		Message: ec.Message(),
-	}.WithDetail(detail)
-}
-
-// WithArgs creates a new Error struct and sets the Args slice
-func (ec ErrorCode) WithArgs(args ...interface{}) Error {
-	return Error{
-		Code:    ec,
-		Message: ec.Message(),
-	}.WithArgs(args...)
-}
-
-// Error provides a wrapper around ErrorCode with extra Details provided.
-type Error struct {
-	Code    ErrorCode   `json:"code"`
-	Message string      `json:"message"`
-	Detail  interface{} `json:"detail,omitempty"`
-
-	// TODO(duglin): See if we need an "args" property so we can do the
-	// variable substitution right before showing the message to the user
-}
-
-var _ error = Error{}
-
-// ErrorCode returns the ID/Value of this Error
-func (e Error) ErrorCode() ErrorCode {
-	return e.Code
-}
-
-// Error returns a human readable representation of the error.
-func (e Error) Error() string {
-	return fmt.Sprintf("%s: %s", e.Code.Error(), e.Message)
-}
-
-// WithDetail will return a new Error, based on the current one, but with
-// some Detail info added
-func (e Error) WithDetail(detail interface{}) Error {
-	return Error{
-		Code:    e.Code,
-		Message: e.Message,
-		Detail:  detail,
-	}
-}
-
-// WithArgs uses the passed-in list of interface{} as the substitution
-// variables in the Error's Message string, but returns a new Error
-func (e Error) WithArgs(args ...interface{}) Error {
-	return Error{
-		Code:    e.Code,
-		Message: fmt.Sprintf(e.Code.Message(), args...),
-		Detail:  e.Detail,
-	}
-}
-
-// ErrorDescriptor provides relevant information about a given error code.
-type ErrorDescriptor struct {
-	// Code is the error code that this descriptor describes.
-	Code ErrorCode
-
-	// Value provides a unique, string key, often captilized with
-	// underscores, to identify the error code. This value is used as the
-	// keyed value when serializing api errors.
-	Value string
-
-	// Message is a short, human readable decription of the error condition
-	// included in API responses.
-	Message string
-
-	// Description provides a complete account of the errors purpose, suitable
-	// for use in documentation.
-	Description string
-
-	// HTTPStatusCode provides the http status code that is associated with
-	// this error condition.
-	HTTPStatusCode int
-}
-
-// ParseErrorCode returns the value by the string error code.
-// `ErrorCodeUnknown` will be returned if the error is not known.
-func ParseErrorCode(value string) ErrorCode {
-	ed, ok := idToDescriptors[value]
-	if ok {
-		return ed.Code
-	}
-
-	return ErrorCodeUnknown
-}
-
-// Errors provides the envelope for multiple errors and a few sugar methods
-// for use within the application.
-type Errors []error
-
-var _ error = Errors{}
-
-func (errs Errors) Error() string {
-	switch len(errs) {
-	case 0:
-		return "<nil>"
-	case 1:
-		return errs[0].Error()
-	default:
-		msg := "errors:\n"
-		for _, err := range errs {
-			msg += err.Error() + "\n"
-		}
-		return msg
-	}
-}
-
-// Len returns the current number of errors.
-func (errs Errors) Len() int {
-	return len(errs)
-}
-
-// MarshalJSON converts slice of error, ErrorCode or Error into a
-// slice of Error - then serializes
-func (errs Errors) MarshalJSON() ([]byte, error) {
-	var tmpErrs struct {
-		Errors []Error `json:"errors,omitempty"`
-	}
-
-	for _, daErr := range errs {
-		var err Error
-
-		switch daErr.(type) {
-		case ErrorCode:
-			err = daErr.(ErrorCode).WithDetail(nil)
-		case Error:
-			err = daErr.(Error)
-		default:
-			err = ErrorCodeUnknown.WithDetail(daErr)
-
-		}
-
-		// If the Error struct was setup and they forgot to set the
-		// Message field (meaning its "") then grab it from the ErrCode
-		msg := err.Message
-		if msg == "" {
-			msg = err.Code.Message()
-		}
-
-		tmpErrs.Errors = append(tmpErrs.Errors, Error{
-			Code:    err.Code,
-			Message: msg,
-			Detail:  err.Detail,
-		})
-	}
-
-	return json.Marshal(tmpErrs)
-}
-
-// UnmarshalJSON deserializes []Error and then converts it into slice of
-// Error or ErrorCode
-func (errs *Errors) UnmarshalJSON(data []byte) error {
-	var tmpErrs struct {
-		Errors []Error
-	}
-
-	if err := json.Unmarshal(data, &tmpErrs); err != nil {
-		return err
-	}
-
-	var newErrs Errors
-	for _, daErr := range tmpErrs.Errors {
-		// If Message is empty or exactly matches the Code's message string
-		// then just use the Code, no need for a full Error struct
-		if daErr.Detail == nil && (daErr.Message == "" || daErr.Message == daErr.Code.Message()) {
-			// Error's w/o details get converted to ErrorCode
-			newErrs = append(newErrs, daErr.Code)
-		} else {
-			// Error's w/ details are untouched
-			newErrs = append(newErrs, Error{
-				Code:    daErr.Code,
-				Message: daErr.Message,
-				Detail:  daErr.Detail,
-			})
-		}
-	}
-
-	*errs = newErrs
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/errcode/handler.go b/vendor/github.com/docker/distribution/registry/api/errcode/handler.go
deleted file mode 100644
index d77e70473e..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/errcode/handler.go
+++ /dev/null
@@ -1,40 +0,0 @@
-package errcode
-
-import (
-	"encoding/json"
-	"net/http"
-)
-
-// ServeJSON attempts to serve the errcode in a JSON envelope. It marshals err
-// and sets the content-type header to 'application/json'. It will handle
-// ErrorCoder and Errors, and if necessary will create an envelope.
-func ServeJSON(w http.ResponseWriter, err error) error {
-	w.Header().Set("Content-Type", "application/json; charset=utf-8")
-	var sc int
-
-	switch errs := err.(type) {
-	case Errors:
-		if len(errs) < 1 {
-			break
-		}
-
-		if err, ok := errs[0].(ErrorCoder); ok {
-			sc = err.ErrorCode().Descriptor().HTTPStatusCode
-		}
-	case ErrorCoder:
-		sc = errs.ErrorCode().Descriptor().HTTPStatusCode
-		err = Errors{err} // create an envelope.
-	default:
-		// We just have an unhandled error type, so just place in an envelope
-		// and move along.
-		err = Errors{err}
-	}
-
-	if sc == 0 {
-		sc = http.StatusInternalServerError
-	}
-
-	w.WriteHeader(sc)
-
-	return json.NewEncoder(w).Encode(err)
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/errcode/register.go b/vendor/github.com/docker/distribution/registry/api/errcode/register.go
deleted file mode 100644
index d1e8826c6d..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/errcode/register.go
+++ /dev/null
@@ -1,138 +0,0 @@
-package errcode
-
-import (
-	"fmt"
-	"net/http"
-	"sort"
-	"sync"
-)
-
-var (
-	errorCodeToDescriptors = map[ErrorCode]ErrorDescriptor{}
-	idToDescriptors        = map[string]ErrorDescriptor{}
-	groupToDescriptors     = map[string][]ErrorDescriptor{}
-)
-
-var (
-	// ErrorCodeUnknown is a generic error that can be used as a last
-	// resort if there is no situation-specific error message that can be used
-	ErrorCodeUnknown = Register("errcode", ErrorDescriptor{
-		Value:   "UNKNOWN",
-		Message: "unknown error",
-		Description: `Generic error returned when the error does not have an
-			                                            API classification.`,
-		HTTPStatusCode: http.StatusInternalServerError,
-	})
-
-	// ErrorCodeUnsupported is returned when an operation is not supported.
-	ErrorCodeUnsupported = Register("errcode", ErrorDescriptor{
-		Value:   "UNSUPPORTED",
-		Message: "The operation is unsupported.",
-		Description: `The operation was unsupported due to a missing
-		implementation or invalid set of parameters.`,
-		HTTPStatusCode: http.StatusMethodNotAllowed,
-	})
-
-	// ErrorCodeUnauthorized is returned if a request requires
-	// authentication.
-	ErrorCodeUnauthorized = Register("errcode", ErrorDescriptor{
-		Value:   "UNAUTHORIZED",
-		Message: "authentication required",
-		Description: `The access controller was unable to authenticate
-		the client. Often this will be accompanied by a
-		Www-Authenticate HTTP response header indicating how to
-		authenticate.`,
-		HTTPStatusCode: http.StatusUnauthorized,
-	})
-
-	// ErrorCodeDenied is returned if a client does not have sufficient
-	// permission to perform an action.
-	ErrorCodeDenied = Register("errcode", ErrorDescriptor{
-		Value:   "DENIED",
-		Message: "requested access to the resource is denied",
-		Description: `The access controller denied access for the
-		operation on a resource.`,
-		HTTPStatusCode: http.StatusForbidden,
-	})
-
-	// ErrorCodeUnavailable provides a common error to report unavailability
-	// of a service or endpoint.
-	ErrorCodeUnavailable = Register("errcode", ErrorDescriptor{
-		Value:          "UNAVAILABLE",
-		Message:        "service unavailable",
-		Description:    "Returned when a service is not available",
-		HTTPStatusCode: http.StatusServiceUnavailable,
-	})
-
-	// ErrorCodeTooManyRequests is returned if a client attempts too many
-	// times to contact a service endpoint.
-	ErrorCodeTooManyRequests = Register("errcode", ErrorDescriptor{
-		Value:   "TOOMANYREQUESTS",
-		Message: "too many requests",
-		Description: `Returned when a client attempts to contact a
-		service too many times`,
-		HTTPStatusCode: http.StatusTooManyRequests,
-	})
-)
-
-var nextCode = 1000
-var registerLock sync.Mutex
-
-// Register will make the passed-in error known to the environment and
-// return a new ErrorCode
-func Register(group string, descriptor ErrorDescriptor) ErrorCode {
-	registerLock.Lock()
-	defer registerLock.Unlock()
-
-	descriptor.Code = ErrorCode(nextCode)
-
-	if _, ok := idToDescriptors[descriptor.Value]; ok {
-		panic(fmt.Sprintf("ErrorValue %q is already registered", descriptor.Value))
-	}
-	if _, ok := errorCodeToDescriptors[descriptor.Code]; ok {
-		panic(fmt.Sprintf("ErrorCode %v is already registered", descriptor.Code))
-	}
-
-	groupToDescriptors[group] = append(groupToDescriptors[group], descriptor)
-	errorCodeToDescriptors[descriptor.Code] = descriptor
-	idToDescriptors[descriptor.Value] = descriptor
-
-	nextCode++
-	return descriptor.Code
-}
-
-type byValue []ErrorDescriptor
-
-func (a byValue) Len() int           { return len(a) }
-func (a byValue) Swap(i, j int)      { a[i], a[j] = a[j], a[i] }
-func (a byValue) Less(i, j int) bool { return a[i].Value < a[j].Value }
-
-// GetGroupNames returns the list of Error group names that are registered
-func GetGroupNames() []string {
-	keys := []string{}
-
-	for k := range groupToDescriptors {
-		keys = append(keys, k)
-	}
-	sort.Strings(keys)
-	return keys
-}
-
-// GetErrorCodeGroup returns the named group of error descriptors
-func GetErrorCodeGroup(name string) []ErrorDescriptor {
-	desc := groupToDescriptors[name]
-	sort.Sort(byValue(desc))
-	return desc
-}
-
-// GetErrorAllDescriptors returns a slice of all ErrorDescriptors that are
-// registered, irrespective of what group they're in
-func GetErrorAllDescriptors() []ErrorDescriptor {
-	result := []ErrorDescriptor{}
-
-	for _, group := range GetGroupNames() {
-		result = append(result, GetErrorCodeGroup(group)...)
-	}
-	sort.Sort(byValue(result))
-	return result
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/descriptors.go b/vendor/github.com/docker/distribution/registry/api/v2/descriptors.go
deleted file mode 100644
index a9616c58ad..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/descriptors.go
+++ /dev/null
@@ -1,1596 +0,0 @@
-package v2
-
-import (
-	"net/http"
-	"regexp"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/distribution/registry/api/errcode"
-	"github.com/opencontainers/go-digest"
-)
-
-var (
-	nameParameterDescriptor = ParameterDescriptor{
-		Name:        "name",
-		Type:        "string",
-		Format:      reference.NameRegexp.String(),
-		Required:    true,
-		Description: `Name of the target repository.`,
-	}
-
-	referenceParameterDescriptor = ParameterDescriptor{
-		Name:        "reference",
-		Type:        "string",
-		Format:      reference.TagRegexp.String(),
-		Required:    true,
-		Description: `Tag or digest of the target manifest.`,
-	}
-
-	uuidParameterDescriptor = ParameterDescriptor{
-		Name:        "uuid",
-		Type:        "opaque",
-		Required:    true,
-		Description: "A uuid identifying the upload. This field can accept characters that match `[a-zA-Z0-9-_.=]+`.",
-	}
-
-	digestPathParameter = ParameterDescriptor{
-		Name:        "digest",
-		Type:        "path",
-		Required:    true,
-		Format:      digest.DigestRegexp.String(),
-		Description: `Digest of desired blob.`,
-	}
-
-	hostHeader = ParameterDescriptor{
-		Name:        "Host",
-		Type:        "string",
-		Description: "Standard HTTP Host Header. Should be set to the registry host.",
-		Format:      "<registry host>",
-		Examples:    []string{"registry-1.docker.io"},
-	}
-
-	authHeader = ParameterDescriptor{
-		Name:        "Authorization",
-		Type:        "string",
-		Description: "An RFC7235 compliant authorization header.",
-		Format:      "<scheme> <token>",
-		Examples:    []string{"Bearer dGhpcyBpcyBhIGZha2UgYmVhcmVyIHRva2VuIQ=="},
-	}
-
-	authChallengeHeader = ParameterDescriptor{
-		Name:        "WWW-Authenticate",
-		Type:        "string",
-		Description: "An RFC7235 compliant authentication challenge header.",
-		Format:      `<scheme> realm="<realm>", ..."`,
-		Examples: []string{
-			`Bearer realm="https://auth.docker.com/", service="registry.docker.com", scopes="repository:library/ubuntu:pull"`,
-		},
-	}
-
-	contentLengthZeroHeader = ParameterDescriptor{
-		Name:        "Content-Length",
-		Description: "The `Content-Length` header must be zero and the body must be empty.",
-		Type:        "integer",
-		Format:      "0",
-	}
-
-	dockerUploadUUIDHeader = ParameterDescriptor{
-		Name:        "Docker-Upload-UUID",
-		Description: "Identifies the docker upload uuid for the current request.",
-		Type:        "uuid",
-		Format:      "<uuid>",
-	}
-
-	digestHeader = ParameterDescriptor{
-		Name:        "Docker-Content-Digest",
-		Description: "Digest of the targeted content for the request.",
-		Type:        "digest",
-		Format:      "<digest>",
-	}
-
-	linkHeader = ParameterDescriptor{
-		Name:        "Link",
-		Type:        "link",
-		Description: "RFC5988 compliant rel='next' with URL to next result set, if available",
-		Format:      `<<url>?n=<last n value>&last=<last entry from response>>; rel="next"`,
-	}
-
-	paginationParameters = []ParameterDescriptor{
-		{
-			Name:        "n",
-			Type:        "integer",
-			Description: "Limit the number of entries in each response. It not present, all entries will be returned.",
-			Format:      "<integer>",
-			Required:    false,
-		},
-		{
-			Name:        "last",
-			Type:        "string",
-			Description: "Result set will include values lexically after last.",
-			Format:      "<integer>",
-			Required:    false,
-		},
-	}
-
-	unauthorizedResponseDescriptor = ResponseDescriptor{
-		Name:        "Authentication Required",
-		StatusCode:  http.StatusUnauthorized,
-		Description: "The client is not authenticated.",
-		Headers: []ParameterDescriptor{
-			authChallengeHeader,
-			{
-				Name:        "Content-Length",
-				Type:        "integer",
-				Description: "Length of the JSON response body.",
-				Format:      "<length>",
-			},
-		},
-		Body: BodyDescriptor{
-			ContentType: "application/json; charset=utf-8",
-			Format:      errorsBody,
-		},
-		ErrorCodes: []errcode.ErrorCode{
-			errcode.ErrorCodeUnauthorized,
-		},
-	}
-
-	repositoryNotFoundResponseDescriptor = ResponseDescriptor{
-		Name:        "No Such Repository Error",
-		StatusCode:  http.StatusNotFound,
-		Description: "The repository is not known to the registry.",
-		Headers: []ParameterDescriptor{
-			{
-				Name:        "Content-Length",
-				Type:        "integer",
-				Description: "Length of the JSON response body.",
-				Format:      "<length>",
-			},
-		},
-		Body: BodyDescriptor{
-			ContentType: "application/json; charset=utf-8",
-			Format:      errorsBody,
-		},
-		ErrorCodes: []errcode.ErrorCode{
-			ErrorCodeNameUnknown,
-		},
-	}
-
-	deniedResponseDescriptor = ResponseDescriptor{
-		Name:        "Access Denied",
-		StatusCode:  http.StatusForbidden,
-		Description: "The client does not have required access to the repository.",
-		Headers: []ParameterDescriptor{
-			{
-				Name:        "Content-Length",
-				Type:        "integer",
-				Description: "Length of the JSON response body.",
-				Format:      "<length>",
-			},
-		},
-		Body: BodyDescriptor{
-			ContentType: "application/json; charset=utf-8",
-			Format:      errorsBody,
-		},
-		ErrorCodes: []errcode.ErrorCode{
-			errcode.ErrorCodeDenied,
-		},
-	}
-
-	tooManyRequestsDescriptor = ResponseDescriptor{
-		Name:        "Too Many Requests",
-		StatusCode:  http.StatusTooManyRequests,
-		Description: "The client made too many requests within a time interval.",
-		Headers: []ParameterDescriptor{
-			{
-				Name:        "Content-Length",
-				Type:        "integer",
-				Description: "Length of the JSON response body.",
-				Format:      "<length>",
-			},
-		},
-		Body: BodyDescriptor{
-			ContentType: "application/json; charset=utf-8",
-			Format:      errorsBody,
-		},
-		ErrorCodes: []errcode.ErrorCode{
-			errcode.ErrorCodeTooManyRequests,
-		},
-	}
-)
-
-const (
-	manifestBody = `{
-   "name": <name>,
-   "tag": <tag>,
-   "fsLayers": [
-      {
-         "blobSum": "<digest>"
-      },
-      ...
-    ]
-   ],
-   "history": <v1 images>,
-   "signature": <JWS>
-}`
-
-	errorsBody = `{
-	"errors:" [
-	    {
-            "code": <error code>,
-            "message": "<error message>",
-            "detail": ...
-        },
-        ...
-    ]
-}`
-)
-
-// APIDescriptor exports descriptions of the layout of the v2 registry API.
-var APIDescriptor = struct {
-	// RouteDescriptors provides a list of the routes available in the API.
-	RouteDescriptors []RouteDescriptor
-}{
-	RouteDescriptors: routeDescriptors,
-}
-
-// RouteDescriptor describes a route specified by name.
-type RouteDescriptor struct {
-	// Name is the name of the route, as specified in RouteNameXXX exports.
-	// These names a should be considered a unique reference for a route. If
-	// the route is registered with gorilla, this is the name that will be
-	// used.
-	Name string
-
-	// Path is a gorilla/mux-compatible regexp that can be used to match the
-	// route. For any incoming method and path, only one route descriptor
-	// should match.
-	Path string
-
-	// Entity should be a short, human-readalbe description of the object
-	// targeted by the endpoint.
-	Entity string
-
-	// Description should provide an accurate overview of the functionality
-	// provided by the route.
-	Description string
-
-	// Methods should describe the various HTTP methods that may be used on
-	// this route, including request and response formats.
-	Methods []MethodDescriptor
-}
-
-// MethodDescriptor provides a description of the requests that may be
-// conducted with the target method.
-type MethodDescriptor struct {
-
-	// Method is an HTTP method, such as GET, PUT or POST.
-	Method string
-
-	// Description should provide an overview of the functionality provided by
-	// the covered method, suitable for use in documentation. Use of markdown
-	// here is encouraged.
-	Description string
-
-	// Requests is a slice of request descriptors enumerating how this
-	// endpoint may be used.
-	Requests []RequestDescriptor
-}
-
-// RequestDescriptor covers a particular set of headers and parameters that
-// can be carried out with the parent method. Its most helpful to have one
-// RequestDescriptor per API use case.
-type RequestDescriptor struct {
-	// Name provides a short identifier for the request, usable as a title or
-	// to provide quick context for the particular request.
-	Name string
-
-	// Description should cover the requests purpose, covering any details for
-	// this particular use case.
-	Description string
-
-	// Headers describes headers that must be used with the HTTP request.
-	Headers []ParameterDescriptor
-
-	// PathParameters enumerate the parameterized path components for the
-	// given request, as defined in the route's regular expression.
-	PathParameters []ParameterDescriptor
-
-	// QueryParameters provides a list of query parameters for the given
-	// request.
-	QueryParameters []ParameterDescriptor
-
-	// Body describes the format of the request body.
-	Body BodyDescriptor
-
-	// Successes enumerates the possible responses that are considered to be
-	// the result of a successful request.
-	Successes []ResponseDescriptor
-
-	// Failures covers the possible failures from this particular request.
-	Failures []ResponseDescriptor
-}
-
-// ResponseDescriptor describes the components of an API response.
-type ResponseDescriptor struct {
-	// Name provides a short identifier for the response, usable as a title or
-	// to provide quick context for the particular response.
-	Name string
-
-	// Description should provide a brief overview of the role of the
-	// response.
-	Description string
-
-	// StatusCode specifies the status received by this particular response.
-	StatusCode int
-
-	// Headers covers any headers that may be returned from the response.
-	Headers []ParameterDescriptor
-
-	// Fields describes any fields that may be present in the response.
-	Fields []ParameterDescriptor
-
-	// ErrorCodes enumerates the error codes that may be returned along with
-	// the response.
-	ErrorCodes []errcode.ErrorCode
-
-	// Body describes the body of the response, if any.
-	Body BodyDescriptor
-}
-
-// BodyDescriptor describes a request body and its expected content type. For
-// the most  part, it should be example json or some placeholder for body
-// data in documentation.
-type BodyDescriptor struct {
-	ContentType string
-	Format      string
-}
-
-// ParameterDescriptor describes the format of a request parameter, which may
-// be a header, path parameter or query parameter.
-type ParameterDescriptor struct {
-	// Name is the name of the parameter, either of the path component or
-	// query parameter.
-	Name string
-
-	// Type specifies the type of the parameter, such as string, integer, etc.
-	Type string
-
-	// Description provides a human-readable description of the parameter.
-	Description string
-
-	// Required means the field is required when set.
-	Required bool
-
-	// Format is a specifying the string format accepted by this parameter.
-	Format string
-
-	// Regexp is a compiled regular expression that can be used to validate
-	// the contents of the parameter.
-	Regexp *regexp.Regexp
-
-	// Examples provides multiple examples for the values that might be valid
-	// for this parameter.
-	Examples []string
-}
-
-var routeDescriptors = []RouteDescriptor{
-	{
-		Name:        RouteNameBase,
-		Path:        "/v2/",
-		Entity:      "Base",
-		Description: `Base V2 API route. Typically, this can be used for lightweight version checks and to validate registry authentication.`,
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Check that the endpoint implements Docker Registry API V2.",
-				Requests: []RequestDescriptor{
-					{
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The API implements V2 protocol and is accessible.",
-								StatusCode:  http.StatusOK,
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "The registry does not implement the V2 API.",
-								StatusCode:  http.StatusNotFound,
-							},
-							unauthorizedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-		},
-	},
-	{
-		Name:        RouteNameTags,
-		Path:        "/v2/{name:" + reference.NameRegexp.String() + "}/tags/list",
-		Entity:      "Tags",
-		Description: "Retrieve information about tags.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Fetch the tags under the repository identified by `name`.",
-				Requests: []RequestDescriptor{
-					{
-						Name:        "Tags",
-						Description: "Return all tags for the repository",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								StatusCode:  http.StatusOK,
-								Description: "A list of tags for the named repository.",
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "Length of the JSON response body.",
-										Format:      "<length>",
-									},
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format: `{
-    "name": <name>,
-    "tags": [
-        <tag>,
-        ...
-    ]
-}`,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-					{
-						Name:            "Tags Paginated",
-						Description:     "Return a portion of the tags for the specified repository.",
-						PathParameters:  []ParameterDescriptor{nameParameterDescriptor},
-						QueryParameters: paginationParameters,
-						Successes: []ResponseDescriptor{
-							{
-								StatusCode:  http.StatusOK,
-								Description: "A list of tags for the named repository.",
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "Length of the JSON response body.",
-										Format:      "<length>",
-									},
-									linkHeader,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format: `{
-    "name": <name>,
-    "tags": [
-        <tag>,
-        ...
-    ],
-}`,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-		},
-	},
-	{
-		Name:        RouteNameManifest,
-		Path:        "/v2/{name:" + reference.NameRegexp.String() + "}/manifests/{reference:" + reference.TagRegexp.String() + "|" + digest.DigestRegexp.String() + "}",
-		Entity:      "Manifest",
-		Description: "Create, update, delete and retrieve manifests.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Fetch the manifest identified by `name` and `reference` where `reference` can be a tag or digest. A `HEAD` request can also be issued to this endpoint to obtain resource information without receiving all data.",
-				Requests: []RequestDescriptor{
-					{
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							referenceParameterDescriptor,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The manifest identified by `name` and `reference`. The contents can be used to identify and resolve resources required to run the specified image.",
-								StatusCode:  http.StatusOK,
-								Headers: []ParameterDescriptor{
-									digestHeader,
-								},
-								Body: BodyDescriptor{
-									ContentType: "<media type of manifest>",
-									Format:      manifestBody,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "The name or reference was invalid.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeTagInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-			{
-				Method:      "PUT",
-				Description: "Put the manifest identified by `name` and `reference` where `reference` can be a tag or digest.",
-				Requests: []RequestDescriptor{
-					{
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							referenceParameterDescriptor,
-						},
-						Body: BodyDescriptor{
-							ContentType: "<media type of manifest>",
-							Format:      manifestBody,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The manifest has been accepted by the registry and is stored under the specified `name` and `tag`.",
-								StatusCode:  http.StatusCreated,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Location",
-										Type:        "url",
-										Description: "The canonical location url of the uploaded manifest.",
-										Format:      "<url>",
-									},
-									contentLengthZeroHeader,
-									digestHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:        "Invalid Manifest",
-								Description: "The received manifest was invalid in some way, as described by the error codes. The client should resolve the issue and retry the request.",
-								StatusCode:  http.StatusBadRequest,
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeTagInvalid,
-									ErrorCodeManifestInvalid,
-									ErrorCodeManifestUnverified,
-									ErrorCodeBlobUnknown,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-							{
-								Name:        "Missing Layer(s)",
-								Description: "One or more layers may be missing during a manifest upload. If so, the missing layers will be enumerated in the error response.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format: `{
-    "errors:" [{
-            "code": "BLOB_UNKNOWN",
-            "message": "blob unknown to registry",
-            "detail": {
-                "digest": "<digest>"
-            }
-        },
-        ...
-    ]
-}`,
-								},
-							},
-							{
-								Name:        "Not allowed",
-								Description: "Manifest put is not allowed because the registry is configured as a pull-through cache or for some other reason",
-								StatusCode:  http.StatusMethodNotAllowed,
-								ErrorCodes: []errcode.ErrorCode{
-									errcode.ErrorCodeUnsupported,
-								},
-							},
-						},
-					},
-				},
-			},
-			{
-				Method:      "DELETE",
-				Description: "Delete the manifest identified by `name` and `reference`. Note that a manifest can _only_ be deleted by `digest`.",
-				Requests: []RequestDescriptor{
-					{
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							referenceParameterDescriptor,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								StatusCode: http.StatusAccepted,
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:        "Invalid Name or Reference",
-								Description: "The specified `name` or `reference` were invalid and the delete was unable to proceed.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeTagInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-							{
-								Name:        "Unknown Manifest",
-								Description: "The specified `name` or `reference` are unknown to the registry and the delete was unable to proceed. Clients can assume the manifest was already deleted if this response is returned.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameUnknown,
-									ErrorCodeManifestUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Name:        "Not allowed",
-								Description: "Manifest delete is not allowed because the registry is configured as a pull-through cache or `delete` has been disabled.",
-								StatusCode:  http.StatusMethodNotAllowed,
-								ErrorCodes: []errcode.ErrorCode{
-									errcode.ErrorCodeUnsupported,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	},
-
-	{
-		Name:        RouteNameBlob,
-		Path:        "/v2/{name:" + reference.NameRegexp.String() + "}/blobs/{digest:" + digest.DigestRegexp.String() + "}",
-		Entity:      "Blob",
-		Description: "Operations on blobs identified by `name` and `digest`. Used to fetch or delete layers by digest.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Retrieve the blob from the registry identified by `digest`. A `HEAD` request can also be issued to this endpoint to obtain resource information without receiving all data.",
-				Requests: []RequestDescriptor{
-					{
-						Name: "Fetch Blob",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							digestPathParameter,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The blob identified by `digest` is available. The blob content will be present in the body of the request.",
-								StatusCode:  http.StatusOK,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "The length of the requested blob content.",
-										Format:      "<length>",
-									},
-									digestHeader,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/octet-stream",
-									Format:      "<blob binary data>",
-								},
-							},
-							{
-								Description: "The blob identified by `digest` is available at the provided location.",
-								StatusCode:  http.StatusTemporaryRedirect,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Location",
-										Type:        "url",
-										Description: "The location where the layer should be accessible.",
-										Format:      "<blob location>",
-									},
-									digestHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was a problem with the request that needs to be addressed by the client, such as an invalid `name` or `tag`.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeDigestInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The blob, identified by `name` and `digest`, is unknown to the registry.",
-								StatusCode:  http.StatusNotFound,
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameUnknown,
-									ErrorCodeBlobUnknown,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-					{
-						Name:        "Fetch Blob Part",
-						Description: "This endpoint may also support RFC7233 compliant range requests. Support can be detected by issuing a HEAD request. If the header `Accept-Range: bytes` is returned, range requests can be used to fetch partial content.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							{
-								Name:        "Range",
-								Type:        "string",
-								Description: "HTTP Range header specifying blob chunk.",
-								Format:      "bytes=<start>-<end>",
-							},
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							digestPathParameter,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The blob identified by `digest` is available. The specified chunk of blob content will be present in the body of the request.",
-								StatusCode:  http.StatusPartialContent,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "The length of the requested blob chunk.",
-										Format:      "<length>",
-									},
-									{
-										Name:        "Content-Range",
-										Type:        "byte range",
-										Description: "Content range of blob chunk.",
-										Format:      "bytes <start>-<end>/<size>",
-									},
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/octet-stream",
-									Format:      "<blob binary data>",
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was a problem with the request that needs to be addressed by the client, such as an invalid `name` or `tag`.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeDigestInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								StatusCode: http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameUnknown,
-									ErrorCodeBlobUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The range specification cannot be satisfied for the requested content. This can happen when the range is not formatted correctly or if the range is outside of the valid size of the content.",
-								StatusCode:  http.StatusRequestedRangeNotSatisfiable,
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-			{
-				Method:      "DELETE",
-				Description: "Delete the blob identified by `name` and `digest`",
-				Requests: []RequestDescriptor{
-					{
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							digestPathParameter,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								StatusCode: http.StatusAccepted,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "0",
-										Format:      "0",
-									},
-									digestHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:       "Invalid Name or Digest",
-								StatusCode: http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-								},
-							},
-							{
-								Description: "The blob, identified by `name` and `digest`, is unknown to the registry.",
-								StatusCode:  http.StatusNotFound,
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameUnknown,
-									ErrorCodeBlobUnknown,
-								},
-							},
-							{
-								Description: "Blob delete is not allowed because the registry is configured as a pull-through cache or `delete` has been disabled",
-								StatusCode:  http.StatusMethodNotAllowed,
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-								ErrorCodes: []errcode.ErrorCode{
-									errcode.ErrorCodeUnsupported,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-
-			// TODO(stevvooe): We may want to add a PUT request here to
-			// kickoff an upload of a blob, integrated with the blob upload
-			// API.
-		},
-	},
-
-	{
-		Name:        RouteNameBlobUpload,
-		Path:        "/v2/{name:" + reference.NameRegexp.String() + "}/blobs/uploads/",
-		Entity:      "Initiate Blob Upload",
-		Description: "Initiate a blob upload. This endpoint can be used to create resumable uploads or monolithic uploads.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "POST",
-				Description: "Initiate a resumable blob upload. If successful, an upload location will be provided to complete the upload. Optionally, if the `digest` parameter is present, the request body will be used to complete the upload in a single request.",
-				Requests: []RequestDescriptor{
-					{
-						Name:        "Initiate Monolithic Blob Upload",
-						Description: "Upload a blob identified by the `digest` parameter in single request. This upload will not be resumable unless a recoverable error is returned.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							{
-								Name:   "Content-Length",
-								Type:   "integer",
-								Format: "<length of blob>",
-							},
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-						},
-						QueryParameters: []ParameterDescriptor{
-							{
-								Name:        "digest",
-								Type:        "query",
-								Format:      "<digest>",
-								Regexp:      digest.DigestRegexp,
-								Description: `Digest of uploaded blob. If present, the upload will be completed, in a single request, with contents of the request body as the resulting blob.`,
-							},
-						},
-						Body: BodyDescriptor{
-							ContentType: "application/octect-stream",
-							Format:      "<binary data>",
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The blob has been created in the registry and is available at the provided location.",
-								StatusCode:  http.StatusCreated,
-								Headers: []ParameterDescriptor{
-									{
-										Name:   "Location",
-										Type:   "url",
-										Format: "<blob location>",
-									},
-									contentLengthZeroHeader,
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:       "Invalid Name or Digest",
-								StatusCode: http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-								},
-							},
-							{
-								Name:        "Not allowed",
-								Description: "Blob upload is not allowed because the registry is configured as a pull-through cache or for some other reason",
-								StatusCode:  http.StatusMethodNotAllowed,
-								ErrorCodes: []errcode.ErrorCode{
-									errcode.ErrorCodeUnsupported,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-					{
-						Name:        "Initiate Resumable Blob Upload",
-						Description: "Initiate a resumable blob upload with an empty request body.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							contentLengthZeroHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The upload has been created. The `Location` header must be used to complete the upload. The response should be identical to a `GET` request on the contents of the returned `Location` header.",
-								StatusCode:  http.StatusAccepted,
-								Headers: []ParameterDescriptor{
-									contentLengthZeroHeader,
-									{
-										Name:        "Location",
-										Type:        "url",
-										Format:      "/v2/<name>/blobs/uploads/<uuid>",
-										Description: "The location of the created upload. Clients should use the contents verbatim to complete the upload, adding parameters where required.",
-									},
-									{
-										Name:        "Range",
-										Format:      "0-0",
-										Description: "Range header indicating the progress of the upload. When starting an upload, it will return an empty range, since no content has been received.",
-									},
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:       "Invalid Name or Digest",
-								StatusCode: http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-					{
-						Name:        "Mount Blob",
-						Description: "Mount a blob identified by the `mount` parameter from another repository.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							contentLengthZeroHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-						},
-						QueryParameters: []ParameterDescriptor{
-							{
-								Name:        "mount",
-								Type:        "query",
-								Format:      "<digest>",
-								Regexp:      digest.DigestRegexp,
-								Description: `Digest of blob to mount from the source repository.`,
-							},
-							{
-								Name:        "from",
-								Type:        "query",
-								Format:      "<repository name>",
-								Regexp:      reference.NameRegexp,
-								Description: `Name of the source repository.`,
-							},
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Description: "The blob has been mounted in the repository and is available at the provided location.",
-								StatusCode:  http.StatusCreated,
-								Headers: []ParameterDescriptor{
-									{
-										Name:   "Location",
-										Type:   "url",
-										Format: "<blob location>",
-									},
-									contentLengthZeroHeader,
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Name:       "Invalid Name or Digest",
-								StatusCode: http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-								},
-							},
-							{
-								Name:        "Not allowed",
-								Description: "Blob mount is not allowed because the registry is configured as a pull-through cache or for some other reason",
-								StatusCode:  http.StatusMethodNotAllowed,
-								ErrorCodes: []errcode.ErrorCode{
-									errcode.ErrorCodeUnsupported,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-		},
-	},
-
-	{
-		Name:        RouteNameBlobUploadChunk,
-		Path:        "/v2/{name:" + reference.NameRegexp.String() + "}/blobs/uploads/{uuid:[a-zA-Z0-9-_.=]+}",
-		Entity:      "Blob Upload",
-		Description: "Interact with blob uploads. Clients should never assemble URLs for this endpoint and should only take it through the `Location` header on related API requests. The `Location` header and its parameters should be preserved by clients, using the latest value returned via upload related API calls.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Retrieve status of upload identified by `uuid`. The primary purpose of this endpoint is to resolve the current status of a resumable upload.",
-				Requests: []RequestDescriptor{
-					{
-						Description: "Retrieve the progress of the current upload, as reported by the `Range` header.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							uuidParameterDescriptor,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Name:        "Upload Progress",
-								Description: "The upload is known and in progress. The last received offset is available in the `Range` header.",
-								StatusCode:  http.StatusNoContent,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Range",
-										Type:        "header",
-										Format:      "0-<offset>",
-										Description: "Range indicating the current progress of the upload.",
-									},
-									contentLengthZeroHeader,
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was an error processing the upload and it must be restarted.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-									ErrorCodeBlobUploadInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The upload is unknown to the registry. The upload must be restarted.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUploadUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-			{
-				Method:      "PATCH",
-				Description: "Upload a chunk of data for the specified upload.",
-				Requests: []RequestDescriptor{
-					{
-						Name:        "Stream upload",
-						Description: "Upload a stream of data to upload without completing the upload.",
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							uuidParameterDescriptor,
-						},
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-						},
-						Body: BodyDescriptor{
-							ContentType: "application/octet-stream",
-							Format:      "<binary data>",
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Name:        "Data Accepted",
-								Description: "The stream of data has been accepted and the current progress is available in the range header. The updated upload location is available in the `Location` header.",
-								StatusCode:  http.StatusNoContent,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Location",
-										Type:        "url",
-										Format:      "/v2/<name>/blobs/uploads/<uuid>",
-										Description: "The location of the upload. Clients should assume this changes after each request. Clients should use the contents verbatim to complete the upload, adding parameters where required.",
-									},
-									{
-										Name:        "Range",
-										Type:        "header",
-										Format:      "0-<offset>",
-										Description: "Range indicating the current progress of the upload.",
-									},
-									contentLengthZeroHeader,
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was an error processing the upload and it must be restarted.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-									ErrorCodeBlobUploadInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The upload is unknown to the registry. The upload must be restarted.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUploadUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-					{
-						Name:        "Chunked upload",
-						Description: "Upload a chunk of data to specified upload without completing the upload. The data will be uploaded to the specified Content Range.",
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							uuidParameterDescriptor,
-						},
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							{
-								Name:        "Content-Range",
-								Type:        "header",
-								Format:      "<start of range>-<end of range, inclusive>",
-								Required:    true,
-								Description: "Range of bytes identifying the desired block of content represented by the body. Start must the end offset retrieved via status check plus one. Note that this is a non-standard use of the `Content-Range` header.",
-							},
-							{
-								Name:        "Content-Length",
-								Type:        "integer",
-								Format:      "<length of chunk>",
-								Description: "Length of the chunk being uploaded, corresponding the length of the request body.",
-							},
-						},
-						Body: BodyDescriptor{
-							ContentType: "application/octet-stream",
-							Format:      "<binary chunk>",
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Name:        "Chunk Accepted",
-								Description: "The chunk of data has been accepted and the current progress is available in the range header. The updated upload location is available in the `Location` header.",
-								StatusCode:  http.StatusNoContent,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Location",
-										Type:        "url",
-										Format:      "/v2/<name>/blobs/uploads/<uuid>",
-										Description: "The location of the upload. Clients should assume this changes after each request. Clients should use the contents verbatim to complete the upload, adding parameters where required.",
-									},
-									{
-										Name:        "Range",
-										Type:        "header",
-										Format:      "0-<offset>",
-										Description: "Range indicating the current progress of the upload.",
-									},
-									contentLengthZeroHeader,
-									dockerUploadUUIDHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was an error processing the upload and it must be restarted.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-									ErrorCodeBlobUploadInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The upload is unknown to the registry. The upload must be restarted.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUploadUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The `Content-Range` specification cannot be accepted, either because it does not overlap with the current progress or it is invalid.",
-								StatusCode:  http.StatusRequestedRangeNotSatisfiable,
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-			{
-				Method:      "PUT",
-				Description: "Complete the upload specified by `uuid`, optionally appending the body as the final chunk.",
-				Requests: []RequestDescriptor{
-					{
-						Description: "Complete the upload, providing all the data in the body, if necessary. A request without a body will just complete the upload with previously uploaded content.",
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							{
-								Name:        "Content-Length",
-								Type:        "integer",
-								Format:      "<length of data>",
-								Description: "Length of the data being uploaded, corresponding to the length of the request body. May be zero if no data is provided.",
-							},
-						},
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							uuidParameterDescriptor,
-						},
-						QueryParameters: []ParameterDescriptor{
-							{
-								Name:        "digest",
-								Type:        "string",
-								Format:      "<digest>",
-								Regexp:      digest.DigestRegexp,
-								Required:    true,
-								Description: `Digest of uploaded blob.`,
-							},
-						},
-						Body: BodyDescriptor{
-							ContentType: "application/octet-stream",
-							Format:      "<binary data>",
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Name:        "Upload Complete",
-								Description: "The upload has been completed and accepted by the registry. The canonical location will be available in the `Location` header.",
-								StatusCode:  http.StatusNoContent,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Location",
-										Type:        "url",
-										Format:      "<blob location>",
-										Description: "The canonical location of the blob for retrieval",
-									},
-									{
-										Name:        "Content-Range",
-										Type:        "header",
-										Format:      "<start of range>-<end of range, inclusive>",
-										Description: "Range of bytes identifying the desired block of content represented by the body. Start must match the end of offset retrieved via status check. Note that this is a non-standard use of the `Content-Range` header.",
-									},
-									contentLengthZeroHeader,
-									digestHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "There was an error processing the upload and it must be restarted.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeDigestInvalid,
-									ErrorCodeNameInvalid,
-									ErrorCodeBlobUploadInvalid,
-									errcode.ErrorCodeUnsupported,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The upload is unknown to the registry. The upload must be restarted.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUploadUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-			{
-				Method:      "DELETE",
-				Description: "Cancel outstanding upload processes, releasing associated resources. If this is not called, the unfinished uploads will eventually timeout.",
-				Requests: []RequestDescriptor{
-					{
-						Description: "Cancel the upload specified by `uuid`.",
-						PathParameters: []ParameterDescriptor{
-							nameParameterDescriptor,
-							uuidParameterDescriptor,
-						},
-						Headers: []ParameterDescriptor{
-							hostHeader,
-							authHeader,
-							contentLengthZeroHeader,
-						},
-						Successes: []ResponseDescriptor{
-							{
-								Name:        "Upload Deleted",
-								Description: "The upload has been successfully deleted.",
-								StatusCode:  http.StatusNoContent,
-								Headers: []ParameterDescriptor{
-									contentLengthZeroHeader,
-								},
-							},
-						},
-						Failures: []ResponseDescriptor{
-							{
-								Description: "An error was encountered processing the delete. The client may ignore this error.",
-								StatusCode:  http.StatusBadRequest,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeNameInvalid,
-									ErrorCodeBlobUploadInvalid,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							{
-								Description: "The upload is unknown to the registry. The client may ignore this error and assume the upload has been deleted.",
-								StatusCode:  http.StatusNotFound,
-								ErrorCodes: []errcode.ErrorCode{
-									ErrorCodeBlobUploadUnknown,
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format:      errorsBody,
-								},
-							},
-							unauthorizedResponseDescriptor,
-							repositoryNotFoundResponseDescriptor,
-							deniedResponseDescriptor,
-							tooManyRequestsDescriptor,
-						},
-					},
-				},
-			},
-		},
-	},
-	{
-		Name:        RouteNameCatalog,
-		Path:        "/v2/_catalog",
-		Entity:      "Catalog",
-		Description: "List a set of available repositories in the local registry cluster. Does not provide any indication of what may be available upstream. Applications can only determine if a repository is available but not if it is not available.",
-		Methods: []MethodDescriptor{
-			{
-				Method:      "GET",
-				Description: "Retrieve a sorted, json list of repositories available in the registry.",
-				Requests: []RequestDescriptor{
-					{
-						Name:        "Catalog Fetch",
-						Description: "Request an unabridged list of repositories available.  The implementation may impose a maximum limit and return a partial set with pagination links.",
-						Successes: []ResponseDescriptor{
-							{
-								Description: "Returns the unabridged list of repositories as a json response.",
-								StatusCode:  http.StatusOK,
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "Length of the JSON response body.",
-										Format:      "<length>",
-									},
-								},
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format: `{
-	"repositories": [
-		<name>,
-		...
-	]
-}`,
-								},
-							},
-						},
-					},
-					{
-						Name:            "Catalog Fetch Paginated",
-						Description:     "Return the specified portion of repositories.",
-						QueryParameters: paginationParameters,
-						Successes: []ResponseDescriptor{
-							{
-								StatusCode: http.StatusOK,
-								Body: BodyDescriptor{
-									ContentType: "application/json; charset=utf-8",
-									Format: `{
-	"repositories": [
-		<name>,
-		...
-	]
-	"next": "<url>?last=<name>&n=<last value of n>"
-}`,
-								},
-								Headers: []ParameterDescriptor{
-									{
-										Name:        "Content-Length",
-										Type:        "integer",
-										Description: "Length of the JSON response body.",
-										Format:      "<length>",
-									},
-									linkHeader,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	},
-}
-
-var routeDescriptorsMap map[string]RouteDescriptor
-
-func init() {
-	routeDescriptorsMap = make(map[string]RouteDescriptor, len(routeDescriptors))
-
-	for _, descriptor := range routeDescriptors {
-		routeDescriptorsMap[descriptor.Name] = descriptor
-	}
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/doc.go b/vendor/github.com/docker/distribution/registry/api/v2/doc.go
deleted file mode 100644
index cde0119594..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/doc.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// Package v2 describes routes, urls and the error codes used in the Docker
-// Registry JSON HTTP API V2. In addition to declarations, descriptors are
-// provided for routes and error codes that can be used for implementation and
-// automatically generating documentation.
-//
-// Definitions here are considered to be locked down for the V2 registry api.
-// Any changes must be considered carefully and should not proceed without a
-// change proposal in docker core.
-package v2
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/errors.go b/vendor/github.com/docker/distribution/registry/api/v2/errors.go
deleted file mode 100644
index 97d6923aa0..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/errors.go
+++ /dev/null
@@ -1,136 +0,0 @@
-package v2
-
-import (
-	"net/http"
-
-	"github.com/docker/distribution/registry/api/errcode"
-)
-
-const errGroup = "registry.api.v2"
-
-var (
-	// ErrorCodeDigestInvalid is returned when uploading a blob if the
-	// provided digest does not match the blob contents.
-	ErrorCodeDigestInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "DIGEST_INVALID",
-		Message: "provided digest did not match uploaded content",
-		Description: `When a blob is uploaded, the registry will check that
-		the content matches the digest provided by the client. The error may
-		include a detail structure with the key "digest", including the
-		invalid digest string. This error may also be returned when a manifest
-		includes an invalid layer digest.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeSizeInvalid is returned when uploading a blob if the provided
-	ErrorCodeSizeInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "SIZE_INVALID",
-		Message: "provided length did not match content length",
-		Description: `When a layer is uploaded, the provided size will be
-		checked against the uploaded content. If they do not match, this error
-		will be returned.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeNameInvalid is returned when the name in the manifest does not
-	// match the provided name.
-	ErrorCodeNameInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "NAME_INVALID",
-		Message: "invalid repository name",
-		Description: `Invalid repository name encountered either during
-		manifest validation or any API operation.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeTagInvalid is returned when the tag in the manifest does not
-	// match the provided tag.
-	ErrorCodeTagInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "TAG_INVALID",
-		Message: "manifest tag did not match URI",
-		Description: `During a manifest upload, if the tag in the manifest
-		does not match the uri tag, this error will be returned.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeNameUnknown when the repository name is not known.
-	ErrorCodeNameUnknown = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "NAME_UNKNOWN",
-		Message: "repository name not known to registry",
-		Description: `This is returned if the name used during an operation is
-		unknown to the registry.`,
-		HTTPStatusCode: http.StatusNotFound,
-	})
-
-	// ErrorCodeManifestUnknown returned when image manifest is unknown.
-	ErrorCodeManifestUnknown = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "MANIFEST_UNKNOWN",
-		Message: "manifest unknown",
-		Description: `This error is returned when the manifest, identified by
-		name and tag is unknown to the repository.`,
-		HTTPStatusCode: http.StatusNotFound,
-	})
-
-	// ErrorCodeManifestInvalid returned when an image manifest is invalid,
-	// typically during a PUT operation. This error encompasses all errors
-	// encountered during manifest validation that aren't signature errors.
-	ErrorCodeManifestInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "MANIFEST_INVALID",
-		Message: "manifest invalid",
-		Description: `During upload, manifests undergo several checks ensuring
-		validity. If those checks fail, this error may be returned, unless a
-		more specific error is included. The detail will contain information
-		the failed validation.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeManifestUnverified is returned when the manifest fails
-	// signature verification.
-	ErrorCodeManifestUnverified = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "MANIFEST_UNVERIFIED",
-		Message: "manifest failed signature verification",
-		Description: `During manifest upload, if the manifest fails signature
-		verification, this error will be returned.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeManifestBlobUnknown is returned when a manifest blob is
-	// unknown to the registry.
-	ErrorCodeManifestBlobUnknown = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "MANIFEST_BLOB_UNKNOWN",
-		Message: "blob unknown to registry",
-		Description: `This error may be returned when a manifest blob is 
-		unknown to the registry.`,
-		HTTPStatusCode: http.StatusBadRequest,
-	})
-
-	// ErrorCodeBlobUnknown is returned when a blob is unknown to the
-	// registry. This can happen when the manifest references a nonexistent
-	// layer or the result is not found by a blob fetch.
-	ErrorCodeBlobUnknown = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "BLOB_UNKNOWN",
-		Message: "blob unknown to registry",
-		Description: `This error may be returned when a blob is unknown to the
-		registry in a specified repository. This can be returned with a
-		standard get or if a manifest references an unknown layer during
-		upload.`,
-		HTTPStatusCode: http.StatusNotFound,
-	})
-
-	// ErrorCodeBlobUploadUnknown is returned when an upload is unknown.
-	ErrorCodeBlobUploadUnknown = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "BLOB_UPLOAD_UNKNOWN",
-		Message: "blob upload unknown to registry",
-		Description: `If a blob upload has been cancelled or was never
-		started, this error code may be returned.`,
-		HTTPStatusCode: http.StatusNotFound,
-	})
-
-	// ErrorCodeBlobUploadInvalid is returned when an upload is invalid.
-	ErrorCodeBlobUploadInvalid = errcode.Register(errGroup, errcode.ErrorDescriptor{
-		Value:   "BLOB_UPLOAD_INVALID",
-		Message: "blob upload invalid",
-		Description: `The blob upload encountered an error and can no
-		longer proceed.`,
-		HTTPStatusCode: http.StatusNotFound,
-	})
-)
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/headerparser.go b/vendor/github.com/docker/distribution/registry/api/v2/headerparser.go
deleted file mode 100644
index 9bc41a3a64..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/headerparser.go
+++ /dev/null
@@ -1,161 +0,0 @@
-package v2
-
-import (
-	"fmt"
-	"regexp"
-	"strings"
-	"unicode"
-)
-
-var (
-	// according to rfc7230
-	reToken            = regexp.MustCompile(`^[^"(),/:;<=>?@[\]{}[:space:][:cntrl:]]+`)
-	reQuotedValue      = regexp.MustCompile(`^[^\\"]+`)
-	reEscapedCharacter = regexp.MustCompile(`^[[:blank:][:graph:]]`)
-)
-
-// parseForwardedHeader is a benevolent parser of Forwarded header defined in rfc7239. The header contains
-// a comma-separated list of forwarding key-value pairs. Each list element is set by single proxy. The
-// function parses only the first element of the list, which is set by the very first proxy. It returns a map
-// of corresponding key-value pairs and an unparsed slice of the input string.
-//
-// Examples of Forwarded header values:
-//
-//  1. Forwarded: For=192.0.2.43; Proto=https,For="[2001:db8:cafe::17]",For=unknown
-//  2. Forwarded: for="192.0.2.43:443"; host="registry.example.org", for="10.10.05.40:80"
-//
-// The first will be parsed into {"for": "192.0.2.43", "proto": "https"} while the second into
-// {"for": "192.0.2.43:443", "host": "registry.example.org"}.
-func parseForwardedHeader(forwarded string) (map[string]string, string, error) {
-	// Following are states of forwarded header parser. Any state could transition to a failure.
-	const (
-		// terminating state; can transition to Parameter
-		stateElement = iota
-		// terminating state; can transition to KeyValueDelimiter
-		stateParameter
-		// can transition to Value
-		stateKeyValueDelimiter
-		// can transition to one of { QuotedValue, PairEnd }
-		stateValue
-		// can transition to one of { EscapedCharacter, PairEnd }
-		stateQuotedValue
-		// can transition to one of { QuotedValue }
-		stateEscapedCharacter
-		// terminating state; can transition to one of { Parameter, Element }
-		statePairEnd
-	)
-
-	var (
-		parameter string
-		value     string
-		parse     = forwarded[:]
-		res       = map[string]string{}
-		state     = stateElement
-	)
-
-Loop:
-	for {
-		// skip spaces unless in quoted value
-		if state != stateQuotedValue && state != stateEscapedCharacter {
-			parse = strings.TrimLeftFunc(parse, unicode.IsSpace)
-		}
-
-		if len(parse) == 0 {
-			if state != stateElement && state != statePairEnd && state != stateParameter {
-				return nil, parse, fmt.Errorf("unexpected end of input")
-			}
-			// terminating
-			break
-		}
-
-		switch state {
-		// terminate at list element delimiter
-		case stateElement:
-			if parse[0] == ',' {
-				parse = parse[1:]
-				break Loop
-			}
-			state = stateParameter
-
-		// parse parameter (the key of key-value pair)
-		case stateParameter:
-			match := reToken.FindString(parse)
-			if len(match) == 0 {
-				return nil, parse, fmt.Errorf("failed to parse token at position %d", len(forwarded)-len(parse))
-			}
-			parameter = strings.ToLower(match)
-			parse = parse[len(match):]
-			state = stateKeyValueDelimiter
-
-		// parse '='
-		case stateKeyValueDelimiter:
-			if parse[0] != '=' {
-				return nil, parse, fmt.Errorf("expected '=', not '%c' at position %d", parse[0], len(forwarded)-len(parse))
-			}
-			parse = parse[1:]
-			state = stateValue
-
-		// parse value or quoted value
-		case stateValue:
-			if parse[0] == '"' {
-				parse = parse[1:]
-				state = stateQuotedValue
-			} else {
-				value = reToken.FindString(parse)
-				if len(value) == 0 {
-					return nil, parse, fmt.Errorf("failed to parse value at position %d", len(forwarded)-len(parse))
-				}
-				if _, exists := res[parameter]; exists {
-					return nil, parse, fmt.Errorf("duplicate parameter %q at position %d", parameter, len(forwarded)-len(parse))
-				}
-				res[parameter] = value
-				parse = parse[len(value):]
-				value = ""
-				state = statePairEnd
-			}
-
-		// parse a part of quoted value until the first backslash
-		case stateQuotedValue:
-			match := reQuotedValue.FindString(parse)
-			value += match
-			parse = parse[len(match):]
-			switch {
-			case len(parse) == 0:
-				return nil, parse, fmt.Errorf("unterminated quoted string")
-			case parse[0] == '"':
-				res[parameter] = value
-				value = ""
-				parse = parse[1:]
-				state = statePairEnd
-			case parse[0] == '\\':
-				parse = parse[1:]
-				state = stateEscapedCharacter
-			}
-
-		// parse escaped character in a quoted string, ignore the backslash
-		// transition back to QuotedValue state
-		case stateEscapedCharacter:
-			c := reEscapedCharacter.FindString(parse)
-			if len(c) == 0 {
-				return nil, parse, fmt.Errorf("invalid escape sequence at position %d", len(forwarded)-len(parse)-1)
-			}
-			value += c
-			parse = parse[1:]
-			state = stateQuotedValue
-
-		// expect either a new key-value pair, new list or end of input
-		case statePairEnd:
-			switch parse[0] {
-			case ';':
-				parse = parse[1:]
-				state = stateParameter
-			case ',':
-				state = stateElement
-			default:
-				return nil, parse, fmt.Errorf("expected ',' or ';', not %c at position %d", parse[0], len(forwarded)-len(parse))
-			}
-		}
-	}
-
-	return res, parse, nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/routes.go b/vendor/github.com/docker/distribution/registry/api/v2/routes.go
deleted file mode 100644
index 5b80d5be76..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/routes.go
+++ /dev/null
@@ -1,49 +0,0 @@
-package v2
-
-import "github.com/gorilla/mux"
-
-// The following are definitions of the name under which all V2 routes are
-// registered. These symbols can be used to look up a route based on the name.
-const (
-	RouteNameBase            = "base"
-	RouteNameManifest        = "manifest"
-	RouteNameTags            = "tags"
-	RouteNameBlob            = "blob"
-	RouteNameBlobUpload      = "blob-upload"
-	RouteNameBlobUploadChunk = "blob-upload-chunk"
-	RouteNameCatalog         = "catalog"
-)
-
-var allEndpoints = []string{
-	RouteNameManifest,
-	RouteNameCatalog,
-	RouteNameTags,
-	RouteNameBlob,
-	RouteNameBlobUpload,
-	RouteNameBlobUploadChunk,
-}
-
-// Router builds a gorilla router with named routes for the various API
-// methods. This can be used directly by both server implementations and
-// clients.
-func Router() *mux.Router {
-	return RouterWithPrefix("")
-}
-
-// RouterWithPrefix builds a gorilla router with a configured prefix
-// on all routes.
-func RouterWithPrefix(prefix string) *mux.Router {
-	rootRouter := mux.NewRouter()
-	router := rootRouter
-	if prefix != "" {
-		router = router.PathPrefix(prefix).Subrouter()
-	}
-
-	router.StrictSlash(true)
-
-	for _, descriptor := range routeDescriptors {
-		router.Path(descriptor.Path).Name(descriptor.Name)
-	}
-
-	return rootRouter
-}
diff --git a/vendor/github.com/docker/distribution/registry/api/v2/urls.go b/vendor/github.com/docker/distribution/registry/api/v2/urls.go
deleted file mode 100644
index 1337bdb127..0000000000
--- a/vendor/github.com/docker/distribution/registry/api/v2/urls.go
+++ /dev/null
@@ -1,266 +0,0 @@
-package v2
-
-import (
-	"fmt"
-	"net/http"
-	"net/url"
-	"strings"
-
-	"github.com/docker/distribution/reference"
-	"github.com/gorilla/mux"
-)
-
-// URLBuilder creates registry API urls from a single base endpoint. It can be
-// used to create urls for use in a registry client or server.
-//
-// All urls will be created from the given base, including the api version.
-// For example, if a root of "/foo/" is provided, urls generated will be fall
-// under "/foo/v2/...". Most application will only provide a schema, host and
-// port, such as "https://localhost:5000/".
-type URLBuilder struct {
-	root     *url.URL // url root (ie http://localhost/)
-	router   *mux.Router
-	relative bool
-}
-
-// NewURLBuilder creates a URLBuilder with provided root url object.
-func NewURLBuilder(root *url.URL, relative bool) *URLBuilder {
-	return &URLBuilder{
-		root:     root,
-		router:   Router(),
-		relative: relative,
-	}
-}
-
-// NewURLBuilderFromString workes identically to NewURLBuilder except it takes
-// a string argument for the root, returning an error if it is not a valid
-// url.
-func NewURLBuilderFromString(root string, relative bool) (*URLBuilder, error) {
-	u, err := url.Parse(root)
-	if err != nil {
-		return nil, err
-	}
-
-	return NewURLBuilder(u, relative), nil
-}
-
-// NewURLBuilderFromRequest uses information from an *http.Request to
-// construct the root url.
-func NewURLBuilderFromRequest(r *http.Request, relative bool) *URLBuilder {
-	var (
-		scheme = "http"
-		host   = r.Host
-	)
-
-	if r.TLS != nil {
-		scheme = "https"
-	} else if len(r.URL.Scheme) > 0 {
-		scheme = r.URL.Scheme
-	}
-
-	// Handle fowarded headers
-	// Prefer "Forwarded" header as defined by rfc7239 if given
-	// see https://tools.ietf.org/html/rfc7239
-	if forwarded := r.Header.Get("Forwarded"); len(forwarded) > 0 {
-		forwardedHeader, _, err := parseForwardedHeader(forwarded)
-		if err == nil {
-			if fproto := forwardedHeader["proto"]; len(fproto) > 0 {
-				scheme = fproto
-			}
-			if fhost := forwardedHeader["host"]; len(fhost) > 0 {
-				host = fhost
-			}
-		}
-	} else {
-		if forwardedProto := r.Header.Get("X-Forwarded-Proto"); len(forwardedProto) > 0 {
-			scheme = forwardedProto
-		}
-		if forwardedHost := r.Header.Get("X-Forwarded-Host"); len(forwardedHost) > 0 {
-			// According to the Apache mod_proxy docs, X-Forwarded-Host can be a
-			// comma-separated list of hosts, to which each proxy appends the
-			// requested host. We want to grab the first from this comma-separated
-			// list.
-			hosts := strings.SplitN(forwardedHost, ",", 2)
-			host = strings.TrimSpace(hosts[0])
-		}
-	}
-
-	basePath := routeDescriptorsMap[RouteNameBase].Path
-
-	requestPath := r.URL.Path
-	index := strings.Index(requestPath, basePath)
-
-	u := &url.URL{
-		Scheme: scheme,
-		Host:   host,
-	}
-
-	if index > 0 {
-		// N.B. index+1 is important because we want to include the trailing /
-		u.Path = requestPath[0 : index+1]
-	}
-
-	return NewURLBuilder(u, relative)
-}
-
-// BuildBaseURL constructs a base url for the API, typically just "/v2/".
-func (ub *URLBuilder) BuildBaseURL() (string, error) {
-	route := ub.cloneRoute(RouteNameBase)
-
-	baseURL, err := route.URL()
-	if err != nil {
-		return "", err
-	}
-
-	return baseURL.String(), nil
-}
-
-// BuildCatalogURL constructs a url get a catalog of repositories
-func (ub *URLBuilder) BuildCatalogURL(values ...url.Values) (string, error) {
-	route := ub.cloneRoute(RouteNameCatalog)
-
-	catalogURL, err := route.URL()
-	if err != nil {
-		return "", err
-	}
-
-	return appendValuesURL(catalogURL, values...).String(), nil
-}
-
-// BuildTagsURL constructs a url to list the tags in the named repository.
-func (ub *URLBuilder) BuildTagsURL(name reference.Named) (string, error) {
-	route := ub.cloneRoute(RouteNameTags)
-
-	tagsURL, err := route.URL("name", name.Name())
-	if err != nil {
-		return "", err
-	}
-
-	return tagsURL.String(), nil
-}
-
-// BuildManifestURL constructs a url for the manifest identified by name and
-// reference. The argument reference may be either a tag or digest.
-func (ub *URLBuilder) BuildManifestURL(ref reference.Named) (string, error) {
-	route := ub.cloneRoute(RouteNameManifest)
-
-	tagOrDigest := ""
-	switch v := ref.(type) {
-	case reference.Tagged:
-		tagOrDigest = v.Tag()
-	case reference.Digested:
-		tagOrDigest = v.Digest().String()
-	default:
-		return "", fmt.Errorf("reference must have a tag or digest")
-	}
-
-	manifestURL, err := route.URL("name", ref.Name(), "reference", tagOrDigest)
-	if err != nil {
-		return "", err
-	}
-
-	return manifestURL.String(), nil
-}
-
-// BuildBlobURL constructs the url for the blob identified by name and dgst.
-func (ub *URLBuilder) BuildBlobURL(ref reference.Canonical) (string, error) {
-	route := ub.cloneRoute(RouteNameBlob)
-
-	layerURL, err := route.URL("name", ref.Name(), "digest", ref.Digest().String())
-	if err != nil {
-		return "", err
-	}
-
-	return layerURL.String(), nil
-}
-
-// BuildBlobUploadURL constructs a url to begin a blob upload in the
-// repository identified by name.
-func (ub *URLBuilder) BuildBlobUploadURL(name reference.Named, values ...url.Values) (string, error) {
-	route := ub.cloneRoute(RouteNameBlobUpload)
-
-	uploadURL, err := route.URL("name", name.Name())
-	if err != nil {
-		return "", err
-	}
-
-	return appendValuesURL(uploadURL, values...).String(), nil
-}
-
-// BuildBlobUploadChunkURL constructs a url for the upload identified by uuid,
-// including any url values. This should generally not be used by clients, as
-// this url is provided by server implementations during the blob upload
-// process.
-func (ub *URLBuilder) BuildBlobUploadChunkURL(name reference.Named, uuid string, values ...url.Values) (string, error) {
-	route := ub.cloneRoute(RouteNameBlobUploadChunk)
-
-	uploadURL, err := route.URL("name", name.Name(), "uuid", uuid)
-	if err != nil {
-		return "", err
-	}
-
-	return appendValuesURL(uploadURL, values...).String(), nil
-}
-
-// clondedRoute returns a clone of the named route from the router. Routes
-// must be cloned to avoid modifying them during url generation.
-func (ub *URLBuilder) cloneRoute(name string) clonedRoute {
-	route := new(mux.Route)
-	root := new(url.URL)
-
-	*route = *ub.router.GetRoute(name) // clone the route
-	*root = *ub.root
-
-	return clonedRoute{Route: route, root: root, relative: ub.relative}
-}
-
-type clonedRoute struct {
-	*mux.Route
-	root     *url.URL
-	relative bool
-}
-
-func (cr clonedRoute) URL(pairs ...string) (*url.URL, error) {
-	routeURL, err := cr.Route.URL(pairs...)
-	if err != nil {
-		return nil, err
-	}
-
-	if cr.relative {
-		return routeURL, nil
-	}
-
-	if routeURL.Scheme == "" && routeURL.User == nil && routeURL.Host == "" {
-		routeURL.Path = routeURL.Path[1:]
-	}
-
-	url := cr.root.ResolveReference(routeURL)
-	url.Scheme = cr.root.Scheme
-	return url, nil
-}
-
-// appendValuesURL appends the parameters to the url.
-func appendValuesURL(u *url.URL, values ...url.Values) *url.URL {
-	merged := u.Query()
-
-	for _, v := range values {
-		for k, vv := range v {
-			merged[k] = append(merged[k], vv...)
-		}
-	}
-
-	u.RawQuery = merged.Encode()
-	return u
-}
-
-// appendValues appends the parameters to the url. Panics if the string is not
-// a url.
-func appendValues(u string, values ...url.Values) string {
-	up, err := url.Parse(u)
-
-	if err != nil {
-		panic(err) // should never happen
-	}
-
-	return appendValuesURL(up, values...).String()
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/auth/challenge/addr.go b/vendor/github.com/docker/distribution/registry/client/auth/challenge/addr.go
deleted file mode 100644
index 2c3ebe1653..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/auth/challenge/addr.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package challenge
-
-import (
-	"net/url"
-	"strings"
-)
-
-// FROM: https://golang.org/src/net/http/http.go
-// Given a string of the form "host", "host:port", or "[ipv6::address]:port",
-// return true if the string includes a port.
-func hasPort(s string) bool { return strings.LastIndex(s, ":") > strings.LastIndex(s, "]") }
-
-// FROM: http://golang.org/src/net/http/transport.go
-var portMap = map[string]string{
-	"http":  "80",
-	"https": "443",
-}
-
-// canonicalAddr returns url.Host but always with a ":port" suffix
-// FROM: http://golang.org/src/net/http/transport.go
-func canonicalAddr(url *url.URL) string {
-	addr := url.Host
-	if !hasPort(addr) {
-		return addr + ":" + portMap[url.Scheme]
-	}
-	return addr
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/auth/challenge/authchallenge.go b/vendor/github.com/docker/distribution/registry/client/auth/challenge/authchallenge.go
deleted file mode 100644
index 6e3f1ccc41..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/auth/challenge/authchallenge.go
+++ /dev/null
@@ -1,237 +0,0 @@
-package challenge
-
-import (
-	"fmt"
-	"net/http"
-	"net/url"
-	"strings"
-	"sync"
-)
-
-// Challenge carries information from a WWW-Authenticate response header.
-// See RFC 2617.
-type Challenge struct {
-	// Scheme is the auth-scheme according to RFC 2617
-	Scheme string
-
-	// Parameters are the auth-params according to RFC 2617
-	Parameters map[string]string
-}
-
-// Manager manages the challenges for endpoints.
-// The challenges are pulled out of HTTP responses. Only
-// responses which expect challenges should be added to
-// the manager, since a non-unauthorized request will be
-// viewed as not requiring challenges.
-type Manager interface {
-	// GetChallenges returns the challenges for the given
-	// endpoint URL.
-	GetChallenges(endpoint url.URL) ([]Challenge, error)
-
-	// AddResponse adds the response to the challenge
-	// manager. The challenges will be parsed out of
-	// the WWW-Authenicate headers and added to the
-	// URL which was produced the response. If the
-	// response was authorized, any challenges for the
-	// endpoint will be cleared.
-	AddResponse(resp *http.Response) error
-}
-
-// NewSimpleManager returns an instance of
-// Manger which only maps endpoints to challenges
-// based on the responses which have been added the
-// manager. The simple manager will make no attempt to
-// perform requests on the endpoints or cache the responses
-// to a backend.
-func NewSimpleManager() Manager {
-	return &simpleManager{
-		Challenges: make(map[string][]Challenge),
-	}
-}
-
-type simpleManager struct {
-	sync.RWMutex
-	Challenges map[string][]Challenge
-}
-
-func normalizeURL(endpoint *url.URL) {
-	endpoint.Host = strings.ToLower(endpoint.Host)
-	endpoint.Host = canonicalAddr(endpoint)
-}
-
-func (m *simpleManager) GetChallenges(endpoint url.URL) ([]Challenge, error) {
-	normalizeURL(&endpoint)
-
-	m.RLock()
-	defer m.RUnlock()
-	challenges := m.Challenges[endpoint.String()]
-	return challenges, nil
-}
-
-func (m *simpleManager) AddResponse(resp *http.Response) error {
-	challenges := ResponseChallenges(resp)
-	if resp.Request == nil {
-		return fmt.Errorf("missing request reference")
-	}
-	urlCopy := url.URL{
-		Path:   resp.Request.URL.Path,
-		Host:   resp.Request.URL.Host,
-		Scheme: resp.Request.URL.Scheme,
-	}
-	normalizeURL(&urlCopy)
-
-	m.Lock()
-	defer m.Unlock()
-	m.Challenges[urlCopy.String()] = challenges
-	return nil
-}
-
-// Octet types from RFC 2616.
-type octetType byte
-
-var octetTypes [256]octetType
-
-const (
-	isToken octetType = 1 << iota
-	isSpace
-)
-
-func init() {
-	// OCTET      = <any 8-bit sequence of data>
-	// CHAR       = <any US-ASCII character (octets 0 - 127)>
-	// CTL        = <any US-ASCII control character (octets 0 - 31) and DEL (127)>
-	// CR         = <US-ASCII CR, carriage return (13)>
-	// LF         = <US-ASCII LF, linefeed (10)>
-	// SP         = <US-ASCII SP, space (32)>
-	// HT         = <US-ASCII HT, horizontal-tab (9)>
-	// <">        = <US-ASCII double-quote mark (34)>
-	// CRLF       = CR LF
-	// LWS        = [CRLF] 1*( SP | HT )
-	// TEXT       = <any OCTET except CTLs, but including LWS>
-	// separators = "(" | ")" | "<" | ">" | "@" | "," | ";" | ":" | "\" | <">
-	//              | "/" | "[" | "]" | "?" | "=" | "{" | "}" | SP | HT
-	// token      = 1*<any CHAR except CTLs or separators>
-	// qdtext     = <any TEXT except <">>
-
-	for c := 0; c < 256; c++ {
-		var t octetType
-		isCtl := c <= 31 || c == 127
-		isChar := 0 <= c && c <= 127
-		isSeparator := strings.IndexRune(" \t\"(),/:;<=>?@[]\\{}", rune(c)) >= 0
-		if strings.IndexRune(" \t\r\n", rune(c)) >= 0 {
-			t |= isSpace
-		}
-		if isChar && !isCtl && !isSeparator {
-			t |= isToken
-		}
-		octetTypes[c] = t
-	}
-}
-
-// ResponseChallenges returns a list of authorization challenges
-// for the given http Response. Challenges are only checked if
-// the response status code was a 401.
-func ResponseChallenges(resp *http.Response) []Challenge {
-	if resp.StatusCode == http.StatusUnauthorized {
-		// Parse the WWW-Authenticate Header and store the challenges
-		// on this endpoint object.
-		return parseAuthHeader(resp.Header)
-	}
-
-	return nil
-}
-
-func parseAuthHeader(header http.Header) []Challenge {
-	challenges := []Challenge{}
-	for _, h := range header[http.CanonicalHeaderKey("WWW-Authenticate")] {
-		v, p := parseValueAndParams(h)
-		if v != "" {
-			challenges = append(challenges, Challenge{Scheme: v, Parameters: p})
-		}
-	}
-	return challenges
-}
-
-func parseValueAndParams(header string) (value string, params map[string]string) {
-	params = make(map[string]string)
-	value, s := expectToken(header)
-	if value == "" {
-		return
-	}
-	value = strings.ToLower(value)
-	s = "," + skipSpace(s)
-	for strings.HasPrefix(s, ",") {
-		var pkey string
-		pkey, s = expectToken(skipSpace(s[1:]))
-		if pkey == "" {
-			return
-		}
-		if !strings.HasPrefix(s, "=") {
-			return
-		}
-		var pvalue string
-		pvalue, s = expectTokenOrQuoted(s[1:])
-		if pvalue == "" {
-			return
-		}
-		pkey = strings.ToLower(pkey)
-		params[pkey] = pvalue
-		s = skipSpace(s)
-	}
-	return
-}
-
-func skipSpace(s string) (rest string) {
-	i := 0
-	for ; i < len(s); i++ {
-		if octetTypes[s[i]]&isSpace == 0 {
-			break
-		}
-	}
-	return s[i:]
-}
-
-func expectToken(s string) (token, rest string) {
-	i := 0
-	for ; i < len(s); i++ {
-		if octetTypes[s[i]]&isToken == 0 {
-			break
-		}
-	}
-	return s[:i], s[i:]
-}
-
-func expectTokenOrQuoted(s string) (value string, rest string) {
-	if !strings.HasPrefix(s, "\"") {
-		return expectToken(s)
-	}
-	s = s[1:]
-	for i := 0; i < len(s); i++ {
-		switch s[i] {
-		case '"':
-			return s[:i], s[i+1:]
-		case '\\':
-			p := make([]byte, len(s)-1)
-			j := copy(p, s[:i])
-			escape := true
-			for i = i + 1; i < len(s); i++ {
-				b := s[i]
-				switch {
-				case escape:
-					escape = false
-					p[j] = b
-					j++
-				case b == '\\':
-					escape = true
-				case b == '"':
-					return string(p[:j]), s[i+1:]
-				default:
-					p[j] = b
-					j++
-				}
-			}
-			return "", ""
-		}
-	}
-	return "", ""
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/blob_writer.go b/vendor/github.com/docker/distribution/registry/client/blob_writer.go
deleted file mode 100644
index 695bf852f1..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/blob_writer.go
+++ /dev/null
@@ -1,162 +0,0 @@
-package client
-
-import (
-	"bytes"
-	"context"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"time"
-
-	"github.com/docker/distribution"
-)
-
-type httpBlobUpload struct {
-	statter distribution.BlobStatter
-	client  *http.Client
-
-	uuid      string
-	startedAt time.Time
-
-	location string // always the last value of the location header.
-	offset   int64
-	closed   bool
-}
-
-func (hbu *httpBlobUpload) Reader() (io.ReadCloser, error) {
-	panic("Not implemented")
-}
-
-func (hbu *httpBlobUpload) handleErrorResponse(resp *http.Response) error {
-	if resp.StatusCode == http.StatusNotFound {
-		return distribution.ErrBlobUploadUnknown
-	}
-	return HandleErrorResponse(resp)
-}
-
-func (hbu *httpBlobUpload) ReadFrom(r io.Reader) (n int64, err error) {
-	req, err := http.NewRequest("PATCH", hbu.location, ioutil.NopCloser(r))
-	if err != nil {
-		return 0, err
-	}
-	defer req.Body.Close()
-
-	resp, err := hbu.client.Do(req)
-	if err != nil {
-		return 0, err
-	}
-
-	if !SuccessStatus(resp.StatusCode) {
-		return 0, hbu.handleErrorResponse(resp)
-	}
-
-	hbu.uuid = resp.Header.Get("Docker-Upload-UUID")
-	hbu.location, err = sanitizeLocation(resp.Header.Get("Location"), hbu.location)
-	if err != nil {
-		return 0, err
-	}
-	rng := resp.Header.Get("Range")
-	var start, end int64
-	if n, err := fmt.Sscanf(rng, "%d-%d", &start, &end); err != nil {
-		return 0, err
-	} else if n != 2 || end < start {
-		return 0, fmt.Errorf("bad range format: %s", rng)
-	}
-
-	return (end - start + 1), nil
-
-}
-
-func (hbu *httpBlobUpload) Write(p []byte) (n int, err error) {
-	req, err := http.NewRequest("PATCH", hbu.location, bytes.NewReader(p))
-	if err != nil {
-		return 0, err
-	}
-	req.Header.Set("Content-Range", fmt.Sprintf("%d-%d", hbu.offset, hbu.offset+int64(len(p)-1)))
-	req.Header.Set("Content-Length", fmt.Sprintf("%d", len(p)))
-	req.Header.Set("Content-Type", "application/octet-stream")
-
-	resp, err := hbu.client.Do(req)
-	if err != nil {
-		return 0, err
-	}
-
-	if !SuccessStatus(resp.StatusCode) {
-		return 0, hbu.handleErrorResponse(resp)
-	}
-
-	hbu.uuid = resp.Header.Get("Docker-Upload-UUID")
-	hbu.location, err = sanitizeLocation(resp.Header.Get("Location"), hbu.location)
-	if err != nil {
-		return 0, err
-	}
-	rng := resp.Header.Get("Range")
-	var start, end int
-	if n, err := fmt.Sscanf(rng, "%d-%d", &start, &end); err != nil {
-		return 0, err
-	} else if n != 2 || end < start {
-		return 0, fmt.Errorf("bad range format: %s", rng)
-	}
-
-	return (end - start + 1), nil
-
-}
-
-func (hbu *httpBlobUpload) Size() int64 {
-	return hbu.offset
-}
-
-func (hbu *httpBlobUpload) ID() string {
-	return hbu.uuid
-}
-
-func (hbu *httpBlobUpload) StartedAt() time.Time {
-	return hbu.startedAt
-}
-
-func (hbu *httpBlobUpload) Commit(ctx context.Context, desc distribution.Descriptor) (distribution.Descriptor, error) {
-	// TODO(dmcgowan): Check if already finished, if so just fetch
-	req, err := http.NewRequest("PUT", hbu.location, nil)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-
-	values := req.URL.Query()
-	values.Set("digest", desc.Digest.String())
-	req.URL.RawQuery = values.Encode()
-
-	resp, err := hbu.client.Do(req)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	defer resp.Body.Close()
-
-	if !SuccessStatus(resp.StatusCode) {
-		return distribution.Descriptor{}, hbu.handleErrorResponse(resp)
-	}
-
-	return hbu.statter.Stat(ctx, desc.Digest)
-}
-
-func (hbu *httpBlobUpload) Cancel(ctx context.Context) error {
-	req, err := http.NewRequest("DELETE", hbu.location, nil)
-	if err != nil {
-		return err
-	}
-	resp, err := hbu.client.Do(req)
-	if err != nil {
-		return err
-	}
-	defer resp.Body.Close()
-
-	if resp.StatusCode == http.StatusNotFound || SuccessStatus(resp.StatusCode) {
-		return nil
-	}
-	return hbu.handleErrorResponse(resp)
-}
-
-func (hbu *httpBlobUpload) Close() error {
-	hbu.closed = true
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/errors.go b/vendor/github.com/docker/distribution/registry/client/errors.go
deleted file mode 100644
index 52d49d5d29..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/errors.go
+++ /dev/null
@@ -1,139 +0,0 @@
-package client
-
-import (
-	"encoding/json"
-	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-
-	"github.com/docker/distribution/registry/api/errcode"
-	"github.com/docker/distribution/registry/client/auth/challenge"
-)
-
-// ErrNoErrorsInBody is returned when an HTTP response body parses to an empty
-// errcode.Errors slice.
-var ErrNoErrorsInBody = errors.New("no error details found in HTTP response body")
-
-// UnexpectedHTTPStatusError is returned when an unexpected HTTP status is
-// returned when making a registry api call.
-type UnexpectedHTTPStatusError struct {
-	Status string
-}
-
-func (e *UnexpectedHTTPStatusError) Error() string {
-	return fmt.Sprintf("received unexpected HTTP status: %s", e.Status)
-}
-
-// UnexpectedHTTPResponseError is returned when an expected HTTP status code
-// is returned, but the content was unexpected and failed to be parsed.
-type UnexpectedHTTPResponseError struct {
-	ParseErr   error
-	StatusCode int
-	Response   []byte
-}
-
-func (e *UnexpectedHTTPResponseError) Error() string {
-	return fmt.Sprintf("error parsing HTTP %d response body: %s: %q", e.StatusCode, e.ParseErr.Error(), string(e.Response))
-}
-
-func parseHTTPErrorResponse(statusCode int, r io.Reader) error {
-	var errors errcode.Errors
-	body, err := ioutil.ReadAll(r)
-	if err != nil {
-		return err
-	}
-
-	// For backward compatibility, handle irregularly formatted
-	// messages that contain a "details" field.
-	var detailsErr struct {
-		Details string `json:"details"`
-	}
-	err = json.Unmarshal(body, &detailsErr)
-	if err == nil && detailsErr.Details != "" {
-		switch statusCode {
-		case http.StatusUnauthorized:
-			return errcode.ErrorCodeUnauthorized.WithMessage(detailsErr.Details)
-		case http.StatusTooManyRequests:
-			return errcode.ErrorCodeTooManyRequests.WithMessage(detailsErr.Details)
-		default:
-			return errcode.ErrorCodeUnknown.WithMessage(detailsErr.Details)
-		}
-	}
-
-	if err := json.Unmarshal(body, &errors); err != nil {
-		return &UnexpectedHTTPResponseError{
-			ParseErr:   err,
-			StatusCode: statusCode,
-			Response:   body,
-		}
-	}
-
-	if len(errors) == 0 {
-		// If there was no error specified in the body, return
-		// UnexpectedHTTPResponseError.
-		return &UnexpectedHTTPResponseError{
-			ParseErr:   ErrNoErrorsInBody,
-			StatusCode: statusCode,
-			Response:   body,
-		}
-	}
-
-	return errors
-}
-
-func makeErrorList(err error) []error {
-	if errL, ok := err.(errcode.Errors); ok {
-		return []error(errL)
-	}
-	return []error{err}
-}
-
-func mergeErrors(err1, err2 error) error {
-	return errcode.Errors(append(makeErrorList(err1), makeErrorList(err2)...))
-}
-
-// HandleErrorResponse returns error parsed from HTTP response for an
-// unsuccessful HTTP response code (in the range 400 - 499 inclusive). An
-// UnexpectedHTTPStatusError returned for response code outside of expected
-// range.
-func HandleErrorResponse(resp *http.Response) error {
-	if resp.StatusCode >= 400 && resp.StatusCode < 500 {
-		// Check for OAuth errors within the `WWW-Authenticate` header first
-		// See https://tools.ietf.org/html/rfc6750#section-3
-		for _, c := range challenge.ResponseChallenges(resp) {
-			if c.Scheme == "bearer" {
-				var err errcode.Error
-				// codes defined at https://tools.ietf.org/html/rfc6750#section-3.1
-				switch c.Parameters["error"] {
-				case "invalid_token":
-					err.Code = errcode.ErrorCodeUnauthorized
-				case "insufficient_scope":
-					err.Code = errcode.ErrorCodeDenied
-				default:
-					continue
-				}
-				if description := c.Parameters["error_description"]; description != "" {
-					err.Message = description
-				} else {
-					err.Message = err.Code.Message()
-				}
-
-				return mergeErrors(err, parseHTTPErrorResponse(resp.StatusCode, resp.Body))
-			}
-		}
-		err := parseHTTPErrorResponse(resp.StatusCode, resp.Body)
-		if uErr, ok := err.(*UnexpectedHTTPResponseError); ok && resp.StatusCode == 401 {
-			return errcode.ErrorCodeUnauthorized.WithDetail(uErr.Response)
-		}
-		return err
-	}
-	return &UnexpectedHTTPStatusError{Status: resp.Status}
-}
-
-// SuccessStatus returns true if the argument is a successful HTTP response
-// code (in the range 200 - 399 inclusive).
-func SuccessStatus(status int) bool {
-	return status >= 200 && status <= 399
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/repository.go b/vendor/github.com/docker/distribution/registry/client/repository.go
deleted file mode 100644
index d8e2c795d9..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/repository.go
+++ /dev/null
@@ -1,869 +0,0 @@
-package client
-
-import (
-	"bytes"
-	"context"
-	"encoding/json"
-	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net/http"
-	"net/url"
-	"strconv"
-	"strings"
-	"time"
-
-	"github.com/docker/distribution"
-	"github.com/docker/distribution/reference"
-	"github.com/docker/distribution/registry/api/v2"
-	"github.com/docker/distribution/registry/client/transport"
-	"github.com/docker/distribution/registry/storage/cache"
-	"github.com/docker/distribution/registry/storage/cache/memory"
-	"github.com/opencontainers/go-digest"
-)
-
-// Registry provides an interface for calling Repositories, which returns a catalog of repositories.
-type Registry interface {
-	Repositories(ctx context.Context, repos []string, last string) (n int, err error)
-}
-
-// checkHTTPRedirect is a callback that can manipulate redirected HTTP
-// requests. It is used to preserve Accept and Range headers.
-func checkHTTPRedirect(req *http.Request, via []*http.Request) error {
-	if len(via) >= 10 {
-		return errors.New("stopped after 10 redirects")
-	}
-
-	if len(via) > 0 {
-		for headerName, headerVals := range via[0].Header {
-			if headerName != "Accept" && headerName != "Range" {
-				continue
-			}
-			for _, val := range headerVals {
-				// Don't add to redirected request if redirected
-				// request already has a header with the same
-				// name and value.
-				hasValue := false
-				for _, existingVal := range req.Header[headerName] {
-					if existingVal == val {
-						hasValue = true
-						break
-					}
-				}
-				if !hasValue {
-					req.Header.Add(headerName, val)
-				}
-			}
-		}
-	}
-
-	return nil
-}
-
-// NewRegistry creates a registry namespace which can be used to get a listing of repositories
-func NewRegistry(baseURL string, transport http.RoundTripper) (Registry, error) {
-	ub, err := v2.NewURLBuilderFromString(baseURL, false)
-	if err != nil {
-		return nil, err
-	}
-
-	client := &http.Client{
-		Transport:     transport,
-		Timeout:       1 * time.Minute,
-		CheckRedirect: checkHTTPRedirect,
-	}
-
-	return &registry{
-		client: client,
-		ub:     ub,
-	}, nil
-}
-
-type registry struct {
-	client  *http.Client
-	ub      *v2.URLBuilder
-	context context.Context
-}
-
-// Repositories returns a lexigraphically sorted catalog given a base URL.  The 'entries' slice will be filled up to the size
-// of the slice, starting at the value provided in 'last'.  The number of entries will be returned along with io.EOF if there
-// are no more entries
-func (r *registry) Repositories(ctx context.Context, entries []string, last string) (int, error) {
-	var numFilled int
-	var returnErr error
-
-	values := buildCatalogValues(len(entries), last)
-	u, err := r.ub.BuildCatalogURL(values)
-	if err != nil {
-		return 0, err
-	}
-
-	resp, err := r.client.Get(u)
-	if err != nil {
-		return 0, err
-	}
-	defer resp.Body.Close()
-
-	if SuccessStatus(resp.StatusCode) {
-		var ctlg struct {
-			Repositories []string `json:"repositories"`
-		}
-		decoder := json.NewDecoder(resp.Body)
-
-		if err := decoder.Decode(&ctlg); err != nil {
-			return 0, err
-		}
-
-		for cnt := range ctlg.Repositories {
-			entries[cnt] = ctlg.Repositories[cnt]
-		}
-		numFilled = len(ctlg.Repositories)
-
-		link := resp.Header.Get("Link")
-		if link == "" {
-			returnErr = io.EOF
-		}
-	} else {
-		return 0, HandleErrorResponse(resp)
-	}
-
-	return numFilled, returnErr
-}
-
-// NewRepository creates a new Repository for the given repository name and base URL.
-func NewRepository(name reference.Named, baseURL string, transport http.RoundTripper) (distribution.Repository, error) {
-	ub, err := v2.NewURLBuilderFromString(baseURL, false)
-	if err != nil {
-		return nil, err
-	}
-
-	client := &http.Client{
-		Transport:     transport,
-		CheckRedirect: checkHTTPRedirect,
-		// TODO(dmcgowan): create cookie jar
-	}
-
-	return &repository{
-		client: client,
-		ub:     ub,
-		name:   name,
-	}, nil
-}
-
-type repository struct {
-	client  *http.Client
-	ub      *v2.URLBuilder
-	context context.Context
-	name    reference.Named
-}
-
-func (r *repository) Named() reference.Named {
-	return r.name
-}
-
-func (r *repository) Blobs(ctx context.Context) distribution.BlobStore {
-	statter := &blobStatter{
-		name:   r.name,
-		ub:     r.ub,
-		client: r.client,
-	}
-	return &blobs{
-		name:    r.name,
-		ub:      r.ub,
-		client:  r.client,
-		statter: cache.NewCachedBlobStatter(memory.NewInMemoryBlobDescriptorCacheProvider(), statter),
-	}
-}
-
-func (r *repository) Manifests(ctx context.Context, options ...distribution.ManifestServiceOption) (distribution.ManifestService, error) {
-	// todo(richardscothern): options should be sent over the wire
-	return &manifests{
-		name:   r.name,
-		ub:     r.ub,
-		client: r.client,
-		etags:  make(map[string]string),
-	}, nil
-}
-
-func (r *repository) Tags(ctx context.Context) distribution.TagService {
-	return &tags{
-		client: r.client,
-		ub:     r.ub,
-		name:   r.Named(),
-	}
-}
-
-// tags implements remote tagging operations.
-type tags struct {
-	client *http.Client
-	ub     *v2.URLBuilder
-	name   reference.Named
-}
-
-// All returns all tags
-func (t *tags) All(ctx context.Context) ([]string, error) {
-	var tags []string
-
-	listURLStr, err := t.ub.BuildTagsURL(t.name)
-	if err != nil {
-		return tags, err
-	}
-
-	listURL, err := url.Parse(listURLStr)
-	if err != nil {
-		return tags, err
-	}
-
-	for {
-		resp, err := t.client.Get(listURL.String())
-		if err != nil {
-			return tags, err
-		}
-		defer resp.Body.Close()
-
-		if SuccessStatus(resp.StatusCode) {
-			b, err := ioutil.ReadAll(resp.Body)
-			if err != nil {
-				return tags, err
-			}
-
-			tagsResponse := struct {
-				Tags []string `json:"tags"`
-			}{}
-			if err := json.Unmarshal(b, &tagsResponse); err != nil {
-				return tags, err
-			}
-			tags = append(tags, tagsResponse.Tags...)
-			if link := resp.Header.Get("Link"); link != "" {
-				linkURLStr := strings.Trim(strings.Split(link, ";")[0], "<>")
-				linkURL, err := url.Parse(linkURLStr)
-				if err != nil {
-					return tags, err
-				}
-
-				listURL = listURL.ResolveReference(linkURL)
-			} else {
-				return tags, nil
-			}
-		} else {
-			return tags, HandleErrorResponse(resp)
-		}
-	}
-}
-
-func descriptorFromResponse(response *http.Response) (distribution.Descriptor, error) {
-	desc := distribution.Descriptor{}
-	headers := response.Header
-
-	ctHeader := headers.Get("Content-Type")
-	if ctHeader == "" {
-		return distribution.Descriptor{}, errors.New("missing or empty Content-Type header")
-	}
-	desc.MediaType = ctHeader
-
-	digestHeader := headers.Get("Docker-Content-Digest")
-	if digestHeader == "" {
-		bytes, err := ioutil.ReadAll(response.Body)
-		if err != nil {
-			return distribution.Descriptor{}, err
-		}
-		_, desc, err := distribution.UnmarshalManifest(ctHeader, bytes)
-		if err != nil {
-			return distribution.Descriptor{}, err
-		}
-		return desc, nil
-	}
-
-	dgst, err := digest.Parse(digestHeader)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	desc.Digest = dgst
-
-	lengthHeader := headers.Get("Content-Length")
-	if lengthHeader == "" {
-		return distribution.Descriptor{}, errors.New("missing or empty Content-Length header")
-	}
-	length, err := strconv.ParseInt(lengthHeader, 10, 64)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	desc.Size = length
-
-	return desc, nil
-
-}
-
-// Get issues a HEAD request for a Manifest against its named endpoint in order
-// to construct a descriptor for the tag.  If the registry doesn't support HEADing
-// a manifest, fallback to GET.
-func (t *tags) Get(ctx context.Context, tag string) (distribution.Descriptor, error) {
-	ref, err := reference.WithTag(t.name, tag)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	u, err := t.ub.BuildManifestURL(ref)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-
-	newRequest := func(method string) (*http.Response, error) {
-		req, err := http.NewRequest(method, u, nil)
-		if err != nil {
-			return nil, err
-		}
-
-		for _, t := range distribution.ManifestMediaTypes() {
-			req.Header.Add("Accept", t)
-		}
-		resp, err := t.client.Do(req)
-		return resp, err
-	}
-
-	resp, err := newRequest("HEAD")
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	defer resp.Body.Close()
-
-	switch {
-	case resp.StatusCode >= 200 && resp.StatusCode < 400 && len(resp.Header.Get("Docker-Content-Digest")) > 0:
-		// if the response is a success AND a Docker-Content-Digest can be retrieved from the headers
-		return descriptorFromResponse(resp)
-	default:
-		// if the response is an error - there will be no body to decode.
-		// Issue a GET request:
-		//   - for data from a server that does not handle HEAD
-		//   - to get error details in case of a failure
-		resp, err = newRequest("GET")
-		if err != nil {
-			return distribution.Descriptor{}, err
-		}
-		defer resp.Body.Close()
-
-		if resp.StatusCode >= 200 && resp.StatusCode < 400 {
-			return descriptorFromResponse(resp)
-		}
-		return distribution.Descriptor{}, HandleErrorResponse(resp)
-	}
-}
-
-func (t *tags) Lookup(ctx context.Context, digest distribution.Descriptor) ([]string, error) {
-	panic("not implemented")
-}
-
-func (t *tags) Tag(ctx context.Context, tag string, desc distribution.Descriptor) error {
-	panic("not implemented")
-}
-
-func (t *tags) Untag(ctx context.Context, tag string) error {
-	panic("not implemented")
-}
-
-type manifests struct {
-	name   reference.Named
-	ub     *v2.URLBuilder
-	client *http.Client
-	etags  map[string]string
-}
-
-func (ms *manifests) Exists(ctx context.Context, dgst digest.Digest) (bool, error) {
-	ref, err := reference.WithDigest(ms.name, dgst)
-	if err != nil {
-		return false, err
-	}
-	u, err := ms.ub.BuildManifestURL(ref)
-	if err != nil {
-		return false, err
-	}
-
-	resp, err := ms.client.Head(u)
-	if err != nil {
-		return false, err
-	}
-
-	if SuccessStatus(resp.StatusCode) {
-		return true, nil
-	} else if resp.StatusCode == http.StatusNotFound {
-		return false, nil
-	}
-	return false, HandleErrorResponse(resp)
-}
-
-// AddEtagToTag allows a client to supply an eTag to Get which will be
-// used for a conditional HTTP request.  If the eTag matches, a nil manifest
-// and ErrManifestNotModified error will be returned. etag is automatically
-// quoted when added to this map.
-func AddEtagToTag(tag, etag string) distribution.ManifestServiceOption {
-	return etagOption{tag, etag}
-}
-
-type etagOption struct{ tag, etag string }
-
-func (o etagOption) Apply(ms distribution.ManifestService) error {
-	if ms, ok := ms.(*manifests); ok {
-		ms.etags[o.tag] = fmt.Sprintf(`"%s"`, o.etag)
-		return nil
-	}
-	return fmt.Errorf("etag options is a client-only option")
-}
-
-// ReturnContentDigest allows a client to set a the content digest on
-// a successful request from the 'Docker-Content-Digest' header. This
-// returned digest is represents the digest which the registry uses
-// to refer to the content and can be used to delete the content.
-func ReturnContentDigest(dgst *digest.Digest) distribution.ManifestServiceOption {
-	return contentDigestOption{dgst}
-}
-
-type contentDigestOption struct{ digest *digest.Digest }
-
-func (o contentDigestOption) Apply(ms distribution.ManifestService) error {
-	return nil
-}
-
-func (ms *manifests) Get(ctx context.Context, dgst digest.Digest, options ...distribution.ManifestServiceOption) (distribution.Manifest, error) {
-	var (
-		digestOrTag string
-		ref         reference.Named
-		err         error
-		contentDgst *digest.Digest
-		mediaTypes  []string
-	)
-
-	for _, option := range options {
-		switch opt := option.(type) {
-		case distribution.WithTagOption:
-			digestOrTag = opt.Tag
-			ref, err = reference.WithTag(ms.name, opt.Tag)
-			if err != nil {
-				return nil, err
-			}
-		case contentDigestOption:
-			contentDgst = opt.digest
-		case distribution.WithManifestMediaTypesOption:
-			mediaTypes = opt.MediaTypes
-		default:
-			err := option.Apply(ms)
-			if err != nil {
-				return nil, err
-			}
-		}
-	}
-
-	if digestOrTag == "" {
-		digestOrTag = dgst.String()
-		ref, err = reference.WithDigest(ms.name, dgst)
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	if len(mediaTypes) == 0 {
-		mediaTypes = distribution.ManifestMediaTypes()
-	}
-
-	u, err := ms.ub.BuildManifestURL(ref)
-	if err != nil {
-		return nil, err
-	}
-
-	req, err := http.NewRequest("GET", u, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	for _, t := range mediaTypes {
-		req.Header.Add("Accept", t)
-	}
-
-	if _, ok := ms.etags[digestOrTag]; ok {
-		req.Header.Set("If-None-Match", ms.etags[digestOrTag])
-	}
-
-	resp, err := ms.client.Do(req)
-	if err != nil {
-		return nil, err
-	}
-	defer resp.Body.Close()
-	if resp.StatusCode == http.StatusNotModified {
-		return nil, distribution.ErrManifestNotModified
-	} else if SuccessStatus(resp.StatusCode) {
-		if contentDgst != nil {
-			dgst, err := digest.Parse(resp.Header.Get("Docker-Content-Digest"))
-			if err == nil {
-				*contentDgst = dgst
-			}
-		}
-		mt := resp.Header.Get("Content-Type")
-		body, err := ioutil.ReadAll(resp.Body)
-
-		if err != nil {
-			return nil, err
-		}
-		m, _, err := distribution.UnmarshalManifest(mt, body)
-		if err != nil {
-			return nil, err
-		}
-		return m, nil
-	}
-	return nil, HandleErrorResponse(resp)
-}
-
-// Put puts a manifest.  A tag can be specified using an options parameter which uses some shared state to hold the
-// tag name in order to build the correct upload URL.
-func (ms *manifests) Put(ctx context.Context, m distribution.Manifest, options ...distribution.ManifestServiceOption) (digest.Digest, error) {
-	ref := ms.name
-	var tagged bool
-
-	for _, option := range options {
-		if opt, ok := option.(distribution.WithTagOption); ok {
-			var err error
-			ref, err = reference.WithTag(ref, opt.Tag)
-			if err != nil {
-				return "", err
-			}
-			tagged = true
-		} else {
-			err := option.Apply(ms)
-			if err != nil {
-				return "", err
-			}
-		}
-	}
-	mediaType, p, err := m.Payload()
-	if err != nil {
-		return "", err
-	}
-
-	if !tagged {
-		// generate a canonical digest and Put by digest
-		_, d, err := distribution.UnmarshalManifest(mediaType, p)
-		if err != nil {
-			return "", err
-		}
-		ref, err = reference.WithDigest(ref, d.Digest)
-		if err != nil {
-			return "", err
-		}
-	}
-
-	manifestURL, err := ms.ub.BuildManifestURL(ref)
-	if err != nil {
-		return "", err
-	}
-
-	putRequest, err := http.NewRequest("PUT", manifestURL, bytes.NewReader(p))
-	if err != nil {
-		return "", err
-	}
-
-	putRequest.Header.Set("Content-Type", mediaType)
-
-	resp, err := ms.client.Do(putRequest)
-	if err != nil {
-		return "", err
-	}
-	defer resp.Body.Close()
-
-	if SuccessStatus(resp.StatusCode) {
-		dgstHeader := resp.Header.Get("Docker-Content-Digest")
-		dgst, err := digest.Parse(dgstHeader)
-		if err != nil {
-			return "", err
-		}
-
-		return dgst, nil
-	}
-
-	return "", HandleErrorResponse(resp)
-}
-
-func (ms *manifests) Delete(ctx context.Context, dgst digest.Digest) error {
-	ref, err := reference.WithDigest(ms.name, dgst)
-	if err != nil {
-		return err
-	}
-	u, err := ms.ub.BuildManifestURL(ref)
-	if err != nil {
-		return err
-	}
-	req, err := http.NewRequest("DELETE", u, nil)
-	if err != nil {
-		return err
-	}
-
-	resp, err := ms.client.Do(req)
-	if err != nil {
-		return err
-	}
-	defer resp.Body.Close()
-
-	if SuccessStatus(resp.StatusCode) {
-		return nil
-	}
-	return HandleErrorResponse(resp)
-}
-
-// todo(richardscothern): Restore interface and implementation with merge of #1050
-/*func (ms *manifests) Enumerate(ctx context.Context, manifests []distribution.Manifest, last distribution.Manifest) (n int, err error) {
-	panic("not supported")
-}*/
-
-type blobs struct {
-	name   reference.Named
-	ub     *v2.URLBuilder
-	client *http.Client
-
-	statter distribution.BlobDescriptorService
-	distribution.BlobDeleter
-}
-
-func sanitizeLocation(location, base string) (string, error) {
-	baseURL, err := url.Parse(base)
-	if err != nil {
-		return "", err
-	}
-
-	locationURL, err := url.Parse(location)
-	if err != nil {
-		return "", err
-	}
-
-	return baseURL.ResolveReference(locationURL).String(), nil
-}
-
-func (bs *blobs) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	return bs.statter.Stat(ctx, dgst)
-
-}
-
-func (bs *blobs) Get(ctx context.Context, dgst digest.Digest) ([]byte, error) {
-	reader, err := bs.Open(ctx, dgst)
-	if err != nil {
-		return nil, err
-	}
-	defer reader.Close()
-
-	return ioutil.ReadAll(reader)
-}
-
-func (bs *blobs) Open(ctx context.Context, dgst digest.Digest) (distribution.ReadSeekCloser, error) {
-	ref, err := reference.WithDigest(bs.name, dgst)
-	if err != nil {
-		return nil, err
-	}
-	blobURL, err := bs.ub.BuildBlobURL(ref)
-	if err != nil {
-		return nil, err
-	}
-
-	return transport.NewHTTPReadSeeker(bs.client, blobURL,
-		func(resp *http.Response) error {
-			if resp.StatusCode == http.StatusNotFound {
-				return distribution.ErrBlobUnknown
-			}
-			return HandleErrorResponse(resp)
-		}), nil
-}
-
-func (bs *blobs) ServeBlob(ctx context.Context, w http.ResponseWriter, r *http.Request, dgst digest.Digest) error {
-	panic("not implemented")
-}
-
-func (bs *blobs) Put(ctx context.Context, mediaType string, p []byte) (distribution.Descriptor, error) {
-	writer, err := bs.Create(ctx)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	dgstr := digest.Canonical.Digester()
-	n, err := io.Copy(writer, io.TeeReader(bytes.NewReader(p), dgstr.Hash()))
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	if n < int64(len(p)) {
-		return distribution.Descriptor{}, fmt.Errorf("short copy: wrote %d of %d", n, len(p))
-	}
-
-	desc := distribution.Descriptor{
-		MediaType: mediaType,
-		Size:      int64(len(p)),
-		Digest:    dgstr.Digest(),
-	}
-
-	return writer.Commit(ctx, desc)
-}
-
-type optionFunc func(interface{}) error
-
-func (f optionFunc) Apply(v interface{}) error {
-	return f(v)
-}
-
-// WithMountFrom returns a BlobCreateOption which designates that the blob should be
-// mounted from the given canonical reference.
-func WithMountFrom(ref reference.Canonical) distribution.BlobCreateOption {
-	return optionFunc(func(v interface{}) error {
-		opts, ok := v.(*distribution.CreateOptions)
-		if !ok {
-			return fmt.Errorf("unexpected options type: %T", v)
-		}
-
-		opts.Mount.ShouldMount = true
-		opts.Mount.From = ref
-
-		return nil
-	})
-}
-
-func (bs *blobs) Create(ctx context.Context, options ...distribution.BlobCreateOption) (distribution.BlobWriter, error) {
-	var opts distribution.CreateOptions
-
-	for _, option := range options {
-		err := option.Apply(&opts)
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	var values []url.Values
-
-	if opts.Mount.ShouldMount {
-		values = append(values, url.Values{"from": {opts.Mount.From.Name()}, "mount": {opts.Mount.From.Digest().String()}})
-	}
-
-	u, err := bs.ub.BuildBlobUploadURL(bs.name, values...)
-	if err != nil {
-		return nil, err
-	}
-
-	resp, err := bs.client.Post(u, "", nil)
-	if err != nil {
-		return nil, err
-	}
-	defer resp.Body.Close()
-
-	switch resp.StatusCode {
-	case http.StatusCreated:
-		desc, err := bs.statter.Stat(ctx, opts.Mount.From.Digest())
-		if err != nil {
-			return nil, err
-		}
-		return nil, distribution.ErrBlobMounted{From: opts.Mount.From, Descriptor: desc}
-	case http.StatusAccepted:
-		// TODO(dmcgowan): Check for invalid UUID
-		uuid := resp.Header.Get("Docker-Upload-UUID")
-		location, err := sanitizeLocation(resp.Header.Get("Location"), u)
-		if err != nil {
-			return nil, err
-		}
-
-		return &httpBlobUpload{
-			statter:   bs.statter,
-			client:    bs.client,
-			uuid:      uuid,
-			startedAt: time.Now(),
-			location:  location,
-		}, nil
-	default:
-		return nil, HandleErrorResponse(resp)
-	}
-}
-
-func (bs *blobs) Resume(ctx context.Context, id string) (distribution.BlobWriter, error) {
-	panic("not implemented")
-}
-
-func (bs *blobs) Delete(ctx context.Context, dgst digest.Digest) error {
-	return bs.statter.Clear(ctx, dgst)
-}
-
-type blobStatter struct {
-	name   reference.Named
-	ub     *v2.URLBuilder
-	client *http.Client
-}
-
-func (bs *blobStatter) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	ref, err := reference.WithDigest(bs.name, dgst)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	u, err := bs.ub.BuildBlobURL(ref)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-
-	resp, err := bs.client.Head(u)
-	if err != nil {
-		return distribution.Descriptor{}, err
-	}
-	defer resp.Body.Close()
-
-	if SuccessStatus(resp.StatusCode) {
-		lengthHeader := resp.Header.Get("Content-Length")
-		if lengthHeader == "" {
-			return distribution.Descriptor{}, fmt.Errorf("missing content-length header for request: %s", u)
-		}
-
-		length, err := strconv.ParseInt(lengthHeader, 10, 64)
-		if err != nil {
-			return distribution.Descriptor{}, fmt.Errorf("error parsing content-length: %v", err)
-		}
-
-		return distribution.Descriptor{
-			MediaType: resp.Header.Get("Content-Type"),
-			Size:      length,
-			Digest:    dgst,
-		}, nil
-	} else if resp.StatusCode == http.StatusNotFound {
-		return distribution.Descriptor{}, distribution.ErrBlobUnknown
-	}
-	return distribution.Descriptor{}, HandleErrorResponse(resp)
-}
-
-func buildCatalogValues(maxEntries int, last string) url.Values {
-	values := url.Values{}
-
-	if maxEntries > 0 {
-		values.Add("n", strconv.Itoa(maxEntries))
-	}
-
-	if last != "" {
-		values.Add("last", last)
-	}
-
-	return values
-}
-
-func (bs *blobStatter) Clear(ctx context.Context, dgst digest.Digest) error {
-	ref, err := reference.WithDigest(bs.name, dgst)
-	if err != nil {
-		return err
-	}
-	blobURL, err := bs.ub.BuildBlobURL(ref)
-	if err != nil {
-		return err
-	}
-
-	req, err := http.NewRequest("DELETE", blobURL, nil)
-	if err != nil {
-		return err
-	}
-
-	resp, err := bs.client.Do(req)
-	if err != nil {
-		return err
-	}
-	defer resp.Body.Close()
-
-	if SuccessStatus(resp.StatusCode) {
-		return nil
-	}
-	return HandleErrorResponse(resp)
-}
-
-func (bs *blobStatter) SetDescriptor(ctx context.Context, dgst digest.Digest, desc distribution.Descriptor) error {
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/transport/http_reader.go b/vendor/github.com/docker/distribution/registry/client/transport/http_reader.go
deleted file mode 100644
index e5ff09d756..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/transport/http_reader.go
+++ /dev/null
@@ -1,251 +0,0 @@
-package transport
-
-import (
-	"errors"
-	"fmt"
-	"io"
-	"net/http"
-	"os"
-	"regexp"
-	"strconv"
-)
-
-var (
-	contentRangeRegexp = regexp.MustCompile(`bytes ([0-9]+)-([0-9]+)/([0-9]+|\\*)`)
-
-	// ErrWrongCodeForByteRange is returned if the client sends a request
-	// with a Range header but the server returns a 2xx or 3xx code other
-	// than 206 Partial Content.
-	ErrWrongCodeForByteRange = errors.New("expected HTTP 206 from byte range request")
-)
-
-// ReadSeekCloser combines io.ReadSeeker with io.Closer.
-type ReadSeekCloser interface {
-	io.ReadSeeker
-	io.Closer
-}
-
-// NewHTTPReadSeeker handles reading from an HTTP endpoint using a GET
-// request. When seeking and starting a read from a non-zero offset
-// the a "Range" header will be added which sets the offset.
-// TODO(dmcgowan): Move this into a separate utility package
-func NewHTTPReadSeeker(client *http.Client, url string, errorHandler func(*http.Response) error) ReadSeekCloser {
-	return &httpReadSeeker{
-		client:       client,
-		url:          url,
-		errorHandler: errorHandler,
-	}
-}
-
-type httpReadSeeker struct {
-	client *http.Client
-	url    string
-
-	// errorHandler creates an error from an unsuccessful HTTP response.
-	// This allows the error to be created with the HTTP response body
-	// without leaking the body through a returned error.
-	errorHandler func(*http.Response) error
-
-	size int64
-
-	// rc is the remote read closer.
-	rc io.ReadCloser
-	// readerOffset tracks the offset as of the last read.
-	readerOffset int64
-	// seekOffset allows Seek to override the offset. Seek changes
-	// seekOffset instead of changing readOffset directly so that
-	// connection resets can be delayed and possibly avoided if the
-	// seek is undone (i.e. seeking to the end and then back to the
-	// beginning).
-	seekOffset int64
-	err        error
-}
-
-func (hrs *httpReadSeeker) Read(p []byte) (n int, err error) {
-	if hrs.err != nil {
-		return 0, hrs.err
-	}
-
-	// If we sought to a different position, we need to reset the
-	// connection. This logic is here instead of Seek so that if
-	// a seek is undone before the next read, the connection doesn't
-	// need to be closed and reopened. A common example of this is
-	// seeking to the end to determine the length, and then seeking
-	// back to the original position.
-	if hrs.readerOffset != hrs.seekOffset {
-		hrs.reset()
-	}
-
-	hrs.readerOffset = hrs.seekOffset
-
-	rd, err := hrs.reader()
-	if err != nil {
-		return 0, err
-	}
-
-	n, err = rd.Read(p)
-	hrs.seekOffset += int64(n)
-	hrs.readerOffset += int64(n)
-
-	return n, err
-}
-
-func (hrs *httpReadSeeker) Seek(offset int64, whence int) (int64, error) {
-	if hrs.err != nil {
-		return 0, hrs.err
-	}
-
-	lastReaderOffset := hrs.readerOffset
-
-	if whence == os.SEEK_SET && hrs.rc == nil {
-		// If no request has been made yet, and we are seeking to an
-		// absolute position, set the read offset as well to avoid an
-		// unnecessary request.
-		hrs.readerOffset = offset
-	}
-
-	_, err := hrs.reader()
-	if err != nil {
-		hrs.readerOffset = lastReaderOffset
-		return 0, err
-	}
-
-	newOffset := hrs.seekOffset
-
-	switch whence {
-	case os.SEEK_CUR:
-		newOffset += offset
-	case os.SEEK_END:
-		if hrs.size < 0 {
-			return 0, errors.New("content length not known")
-		}
-		newOffset = hrs.size + offset
-	case os.SEEK_SET:
-		newOffset = offset
-	}
-
-	if newOffset < 0 {
-		err = errors.New("cannot seek to negative position")
-	} else {
-		hrs.seekOffset = newOffset
-	}
-
-	return hrs.seekOffset, err
-}
-
-func (hrs *httpReadSeeker) Close() error {
-	if hrs.err != nil {
-		return hrs.err
-	}
-
-	// close and release reader chain
-	if hrs.rc != nil {
-		hrs.rc.Close()
-	}
-
-	hrs.rc = nil
-
-	hrs.err = errors.New("httpLayer: closed")
-
-	return nil
-}
-
-func (hrs *httpReadSeeker) reset() {
-	if hrs.err != nil {
-		return
-	}
-	if hrs.rc != nil {
-		hrs.rc.Close()
-		hrs.rc = nil
-	}
-}
-
-func (hrs *httpReadSeeker) reader() (io.Reader, error) {
-	if hrs.err != nil {
-		return nil, hrs.err
-	}
-
-	if hrs.rc != nil {
-		return hrs.rc, nil
-	}
-
-	req, err := http.NewRequest("GET", hrs.url, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	if hrs.readerOffset > 0 {
-		// If we are at different offset, issue a range request from there.
-		req.Header.Add("Range", fmt.Sprintf("bytes=%d-", hrs.readerOffset))
-		// TODO: get context in here
-		// context.GetLogger(hrs.context).Infof("Range: %s", req.Header.Get("Range"))
-	}
-
-	req.Header.Add("Accept-Encoding", "identity")
-	resp, err := hrs.client.Do(req)
-	if err != nil {
-		return nil, err
-	}
-
-	// Normally would use client.SuccessStatus, but that would be a cyclic
-	// import
-	if resp.StatusCode >= 200 && resp.StatusCode <= 399 {
-		if hrs.readerOffset > 0 {
-			if resp.StatusCode != http.StatusPartialContent {
-				return nil, ErrWrongCodeForByteRange
-			}
-
-			contentRange := resp.Header.Get("Content-Range")
-			if contentRange == "" {
-				return nil, errors.New("no Content-Range header found in HTTP 206 response")
-			}
-
-			submatches := contentRangeRegexp.FindStringSubmatch(contentRange)
-			if len(submatches) < 4 {
-				return nil, fmt.Errorf("could not parse Content-Range header: %s", contentRange)
-			}
-
-			startByte, err := strconv.ParseUint(submatches[1], 10, 64)
-			if err != nil {
-				return nil, fmt.Errorf("could not parse start of range in Content-Range header: %s", contentRange)
-			}
-
-			if startByte != uint64(hrs.readerOffset) {
-				return nil, fmt.Errorf("received Content-Range starting at offset %d instead of requested %d", startByte, hrs.readerOffset)
-			}
-
-			endByte, err := strconv.ParseUint(submatches[2], 10, 64)
-			if err != nil {
-				return nil, fmt.Errorf("could not parse end of range in Content-Range header: %s", contentRange)
-			}
-
-			if submatches[3] == "*" {
-				hrs.size = -1
-			} else {
-				size, err := strconv.ParseUint(submatches[3], 10, 64)
-				if err != nil {
-					return nil, fmt.Errorf("could not parse total size in Content-Range header: %s", contentRange)
-				}
-
-				if endByte+1 != size {
-					return nil, fmt.Errorf("range in Content-Range stops before the end of the content: %s", contentRange)
-				}
-
-				hrs.size = int64(size)
-			}
-		} else if resp.StatusCode == http.StatusOK {
-			hrs.size = resp.ContentLength
-		} else {
-			hrs.size = -1
-		}
-		hrs.rc = resp.Body
-	} else {
-		defer resp.Body.Close()
-		if hrs.errorHandler != nil {
-			return nil, hrs.errorHandler(resp)
-		}
-		return nil, fmt.Errorf("unexpected status resolving reader: %v", resp.Status)
-	}
-
-	return hrs.rc, nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/client/transport/transport.go b/vendor/github.com/docker/distribution/registry/client/transport/transport.go
deleted file mode 100644
index 30e45fab0f..0000000000
--- a/vendor/github.com/docker/distribution/registry/client/transport/transport.go
+++ /dev/null
@@ -1,147 +0,0 @@
-package transport
-
-import (
-	"io"
-	"net/http"
-	"sync"
-)
-
-// RequestModifier represents an object which will do an inplace
-// modification of an HTTP request.
-type RequestModifier interface {
-	ModifyRequest(*http.Request) error
-}
-
-type headerModifier http.Header
-
-// NewHeaderRequestModifier returns a new RequestModifier which will
-// add the given headers to a request.
-func NewHeaderRequestModifier(header http.Header) RequestModifier {
-	return headerModifier(header)
-}
-
-func (h headerModifier) ModifyRequest(req *http.Request) error {
-	for k, s := range http.Header(h) {
-		req.Header[k] = append(req.Header[k], s...)
-	}
-
-	return nil
-}
-
-// NewTransport creates a new transport which will apply modifiers to
-// the request on a RoundTrip call.
-func NewTransport(base http.RoundTripper, modifiers ...RequestModifier) http.RoundTripper {
-	return &transport{
-		Modifiers: modifiers,
-		Base:      base,
-	}
-}
-
-// transport is an http.RoundTripper that makes HTTP requests after
-// copying and modifying the request
-type transport struct {
-	Modifiers []RequestModifier
-	Base      http.RoundTripper
-
-	mu     sync.Mutex                      // guards modReq
-	modReq map[*http.Request]*http.Request // original -> modified
-}
-
-// RoundTrip authorizes and authenticates the request with an
-// access token. If no token exists or token is expired,
-// tries to refresh/fetch a new token.
-func (t *transport) RoundTrip(req *http.Request) (*http.Response, error) {
-	req2 := cloneRequest(req)
-	for _, modifier := range t.Modifiers {
-		if err := modifier.ModifyRequest(req2); err != nil {
-			return nil, err
-		}
-	}
-
-	t.setModReq(req, req2)
-	res, err := t.base().RoundTrip(req2)
-	if err != nil {
-		t.setModReq(req, nil)
-		return nil, err
-	}
-	res.Body = &onEOFReader{
-		rc: res.Body,
-		fn: func() { t.setModReq(req, nil) },
-	}
-	return res, nil
-}
-
-// CancelRequest cancels an in-flight request by closing its connection.
-func (t *transport) CancelRequest(req *http.Request) {
-	type canceler interface {
-		CancelRequest(*http.Request)
-	}
-	if cr, ok := t.base().(canceler); ok {
-		t.mu.Lock()
-		modReq := t.modReq[req]
-		delete(t.modReq, req)
-		t.mu.Unlock()
-		cr.CancelRequest(modReq)
-	}
-}
-
-func (t *transport) base() http.RoundTripper {
-	if t.Base != nil {
-		return t.Base
-	}
-	return http.DefaultTransport
-}
-
-func (t *transport) setModReq(orig, mod *http.Request) {
-	t.mu.Lock()
-	defer t.mu.Unlock()
-	if t.modReq == nil {
-		t.modReq = make(map[*http.Request]*http.Request)
-	}
-	if mod == nil {
-		delete(t.modReq, orig)
-	} else {
-		t.modReq[orig] = mod
-	}
-}
-
-// cloneRequest returns a clone of the provided *http.Request.
-// The clone is a shallow copy of the struct and its Header map.
-func cloneRequest(r *http.Request) *http.Request {
-	// shallow copy of the struct
-	r2 := new(http.Request)
-	*r2 = *r
-	// deep copy of the Header
-	r2.Header = make(http.Header, len(r.Header))
-	for k, s := range r.Header {
-		r2.Header[k] = append([]string(nil), s...)
-	}
-
-	return r2
-}
-
-type onEOFReader struct {
-	rc io.ReadCloser
-	fn func()
-}
-
-func (r *onEOFReader) Read(p []byte) (n int, err error) {
-	n, err = r.rc.Read(p)
-	if err == io.EOF {
-		r.runFunc()
-	}
-	return
-}
-
-func (r *onEOFReader) Close() error {
-	err := r.rc.Close()
-	r.runFunc()
-	return err
-}
-
-func (r *onEOFReader) runFunc() {
-	if fn := r.fn; fn != nil {
-		fn()
-		r.fn = nil
-	}
-}
diff --git a/vendor/github.com/docker/distribution/registry/storage/cache/cache.go b/vendor/github.com/docker/distribution/registry/storage/cache/cache.go
deleted file mode 100644
index 10a3909197..0000000000
--- a/vendor/github.com/docker/distribution/registry/storage/cache/cache.go
+++ /dev/null
@@ -1,35 +0,0 @@
-// Package cache provides facilities to speed up access to the storage
-// backend.
-package cache
-
-import (
-	"fmt"
-
-	"github.com/docker/distribution"
-)
-
-// BlobDescriptorCacheProvider provides repository scoped
-// BlobDescriptorService cache instances and a global descriptor cache.
-type BlobDescriptorCacheProvider interface {
-	distribution.BlobDescriptorService
-
-	RepositoryScoped(repo string) (distribution.BlobDescriptorService, error)
-}
-
-// ValidateDescriptor provides a helper function to ensure that caches have
-// common criteria for admitting descriptors.
-func ValidateDescriptor(desc distribution.Descriptor) error {
-	if err := desc.Digest.Validate(); err != nil {
-		return err
-	}
-
-	if desc.Size < 0 {
-		return fmt.Errorf("cache: invalid length in descriptor: %v < 0", desc.Size)
-	}
-
-	if desc.MediaType == "" {
-		return fmt.Errorf("cache: empty mediatype on descriptor: %v", desc)
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/registry/storage/cache/cachedblobdescriptorstore.go b/vendor/github.com/docker/distribution/registry/storage/cache/cachedblobdescriptorstore.go
deleted file mode 100644
index ac4c452117..0000000000
--- a/vendor/github.com/docker/distribution/registry/storage/cache/cachedblobdescriptorstore.go
+++ /dev/null
@@ -1,129 +0,0 @@
-package cache
-
-import (
-	"context"
-
-	"github.com/docker/distribution"
-	prometheus "github.com/docker/distribution/metrics"
-	"github.com/opencontainers/go-digest"
-)
-
-// Metrics is used to hold metric counters
-// related to the number of times a cache was
-// hit or missed.
-type Metrics struct {
-	Requests uint64
-	Hits     uint64
-	Misses   uint64
-}
-
-// Logger can be provided on the MetricsTracker to log errors.
-//
-// Usually, this is just a proxy to dcontext.GetLogger.
-type Logger interface {
-	Errorf(format string, args ...interface{})
-}
-
-// MetricsTracker represents a metric tracker
-// which simply counts the number of hits and misses.
-type MetricsTracker interface {
-	Hit()
-	Miss()
-	Metrics() Metrics
-	Logger(context.Context) Logger
-}
-
-type cachedBlobStatter struct {
-	cache   distribution.BlobDescriptorService
-	backend distribution.BlobDescriptorService
-	tracker MetricsTracker
-}
-
-var (
-	// cacheCount is the number of total cache request received/hits/misses
-	cacheCount = prometheus.StorageNamespace.NewLabeledCounter("cache", "The number of cache request received", "type")
-)
-
-// NewCachedBlobStatter creates a new statter which prefers a cache and
-// falls back to a backend.
-func NewCachedBlobStatter(cache distribution.BlobDescriptorService, backend distribution.BlobDescriptorService) distribution.BlobDescriptorService {
-	return &cachedBlobStatter{
-		cache:   cache,
-		backend: backend,
-	}
-}
-
-// NewCachedBlobStatterWithMetrics creates a new statter which prefers a cache and
-// falls back to a backend. Hits and misses will send to the tracker.
-func NewCachedBlobStatterWithMetrics(cache distribution.BlobDescriptorService, backend distribution.BlobDescriptorService, tracker MetricsTracker) distribution.BlobStatter {
-	return &cachedBlobStatter{
-		cache:   cache,
-		backend: backend,
-		tracker: tracker,
-	}
-}
-
-func (cbds *cachedBlobStatter) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	cacheCount.WithValues("Request").Inc(1)
-	desc, err := cbds.cache.Stat(ctx, dgst)
-	if err != nil {
-		if err != distribution.ErrBlobUnknown {
-			logErrorf(ctx, cbds.tracker, "error retrieving descriptor from cache: %v", err)
-		}
-
-		goto fallback
-	}
-	cacheCount.WithValues("Hit").Inc(1)
-	if cbds.tracker != nil {
-		cbds.tracker.Hit()
-	}
-	return desc, nil
-fallback:
-	cacheCount.WithValues("Miss").Inc(1)
-	if cbds.tracker != nil {
-		cbds.tracker.Miss()
-	}
-	desc, err = cbds.backend.Stat(ctx, dgst)
-	if err != nil {
-		return desc, err
-	}
-
-	if err := cbds.cache.SetDescriptor(ctx, dgst, desc); err != nil {
-		logErrorf(ctx, cbds.tracker, "error adding descriptor %v to cache: %v", desc.Digest, err)
-	}
-
-	return desc, err
-
-}
-
-func (cbds *cachedBlobStatter) Clear(ctx context.Context, dgst digest.Digest) error {
-	err := cbds.cache.Clear(ctx, dgst)
-	if err != nil {
-		return err
-	}
-
-	err = cbds.backend.Clear(ctx, dgst)
-	if err != nil {
-		return err
-	}
-	return nil
-}
-
-func (cbds *cachedBlobStatter) SetDescriptor(ctx context.Context, dgst digest.Digest, desc distribution.Descriptor) error {
-	if err := cbds.cache.SetDescriptor(ctx, dgst, desc); err != nil {
-		logErrorf(ctx, cbds.tracker, "error adding descriptor %v to cache: %v", desc.Digest, err)
-	}
-	return nil
-}
-
-func logErrorf(ctx context.Context, tracker MetricsTracker, format string, args ...interface{}) {
-	if tracker == nil {
-		return
-	}
-
-	logger := tracker.Logger(ctx)
-	if logger == nil {
-		return
-	}
-	logger.Errorf(format, args...)
-}
diff --git a/vendor/github.com/docker/distribution/registry/storage/cache/memory/memory.go b/vendor/github.com/docker/distribution/registry/storage/cache/memory/memory.go
deleted file mode 100644
index 42d94d9bde..0000000000
--- a/vendor/github.com/docker/distribution/registry/storage/cache/memory/memory.go
+++ /dev/null
@@ -1,179 +0,0 @@
-package memory
-
-import (
-	"context"
-	"sync"
-
-	"github.com/docker/distribution"
-	"github.com/docker/distribution/reference"
-	"github.com/docker/distribution/registry/storage/cache"
-	"github.com/opencontainers/go-digest"
-)
-
-type inMemoryBlobDescriptorCacheProvider struct {
-	global       *mapBlobDescriptorCache
-	repositories map[string]*mapBlobDescriptorCache
-	mu           sync.RWMutex
-}
-
-// NewInMemoryBlobDescriptorCacheProvider returns a new mapped-based cache for
-// storing blob descriptor data.
-func NewInMemoryBlobDescriptorCacheProvider() cache.BlobDescriptorCacheProvider {
-	return &inMemoryBlobDescriptorCacheProvider{
-		global:       newMapBlobDescriptorCache(),
-		repositories: make(map[string]*mapBlobDescriptorCache),
-	}
-}
-
-func (imbdcp *inMemoryBlobDescriptorCacheProvider) RepositoryScoped(repo string) (distribution.BlobDescriptorService, error) {
-	if _, err := reference.ParseNormalizedNamed(repo); err != nil {
-		return nil, err
-	}
-
-	imbdcp.mu.RLock()
-	defer imbdcp.mu.RUnlock()
-
-	return &repositoryScopedInMemoryBlobDescriptorCache{
-		repo:       repo,
-		parent:     imbdcp,
-		repository: imbdcp.repositories[repo],
-	}, nil
-}
-
-func (imbdcp *inMemoryBlobDescriptorCacheProvider) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	return imbdcp.global.Stat(ctx, dgst)
-}
-
-func (imbdcp *inMemoryBlobDescriptorCacheProvider) Clear(ctx context.Context, dgst digest.Digest) error {
-	return imbdcp.global.Clear(ctx, dgst)
-}
-
-func (imbdcp *inMemoryBlobDescriptorCacheProvider) SetDescriptor(ctx context.Context, dgst digest.Digest, desc distribution.Descriptor) error {
-	_, err := imbdcp.Stat(ctx, dgst)
-	if err == distribution.ErrBlobUnknown {
-
-		if dgst.Algorithm() != desc.Digest.Algorithm() && dgst != desc.Digest {
-			// if the digests differ, set the other canonical mapping
-			if err := imbdcp.global.SetDescriptor(ctx, desc.Digest, desc); err != nil {
-				return err
-			}
-		}
-
-		// unknown, just set it
-		return imbdcp.global.SetDescriptor(ctx, dgst, desc)
-	}
-
-	// we already know it, do nothing
-	return err
-}
-
-// repositoryScopedInMemoryBlobDescriptorCache provides the request scoped
-// repository cache. Instances are not thread-safe but the delegated
-// operations are.
-type repositoryScopedInMemoryBlobDescriptorCache struct {
-	repo       string
-	parent     *inMemoryBlobDescriptorCacheProvider // allows lazy allocation of repo's map
-	repository *mapBlobDescriptorCache
-}
-
-func (rsimbdcp *repositoryScopedInMemoryBlobDescriptorCache) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	rsimbdcp.parent.mu.Lock()
-	repo := rsimbdcp.repository
-	rsimbdcp.parent.mu.Unlock()
-
-	if repo == nil {
-		return distribution.Descriptor{}, distribution.ErrBlobUnknown
-	}
-
-	return repo.Stat(ctx, dgst)
-}
-
-func (rsimbdcp *repositoryScopedInMemoryBlobDescriptorCache) Clear(ctx context.Context, dgst digest.Digest) error {
-	rsimbdcp.parent.mu.Lock()
-	repo := rsimbdcp.repository
-	rsimbdcp.parent.mu.Unlock()
-
-	if repo == nil {
-		return distribution.ErrBlobUnknown
-	}
-
-	return repo.Clear(ctx, dgst)
-}
-
-func (rsimbdcp *repositoryScopedInMemoryBlobDescriptorCache) SetDescriptor(ctx context.Context, dgst digest.Digest, desc distribution.Descriptor) error {
-	rsimbdcp.parent.mu.Lock()
-	repo := rsimbdcp.repository
-	if repo == nil {
-		// allocate map since we are setting it now.
-		var ok bool
-		// have to read back value since we may have allocated elsewhere.
-		repo, ok = rsimbdcp.parent.repositories[rsimbdcp.repo]
-		if !ok {
-			repo = newMapBlobDescriptorCache()
-			rsimbdcp.parent.repositories[rsimbdcp.repo] = repo
-		}
-		rsimbdcp.repository = repo
-	}
-	rsimbdcp.parent.mu.Unlock()
-
-	if err := repo.SetDescriptor(ctx, dgst, desc); err != nil {
-		return err
-	}
-
-	return rsimbdcp.parent.SetDescriptor(ctx, dgst, desc)
-}
-
-// mapBlobDescriptorCache provides a simple map-based implementation of the
-// descriptor cache.
-type mapBlobDescriptorCache struct {
-	descriptors map[digest.Digest]distribution.Descriptor
-	mu          sync.RWMutex
-}
-
-var _ distribution.BlobDescriptorService = &mapBlobDescriptorCache{}
-
-func newMapBlobDescriptorCache() *mapBlobDescriptorCache {
-	return &mapBlobDescriptorCache{
-		descriptors: make(map[digest.Digest]distribution.Descriptor),
-	}
-}
-
-func (mbdc *mapBlobDescriptorCache) Stat(ctx context.Context, dgst digest.Digest) (distribution.Descriptor, error) {
-	if err := dgst.Validate(); err != nil {
-		return distribution.Descriptor{}, err
-	}
-
-	mbdc.mu.RLock()
-	defer mbdc.mu.RUnlock()
-
-	desc, ok := mbdc.descriptors[dgst]
-	if !ok {
-		return distribution.Descriptor{}, distribution.ErrBlobUnknown
-	}
-
-	return desc, nil
-}
-
-func (mbdc *mapBlobDescriptorCache) Clear(ctx context.Context, dgst digest.Digest) error {
-	mbdc.mu.Lock()
-	defer mbdc.mu.Unlock()
-
-	delete(mbdc.descriptors, dgst)
-	return nil
-}
-
-func (mbdc *mapBlobDescriptorCache) SetDescriptor(ctx context.Context, dgst digest.Digest, desc distribution.Descriptor) error {
-	if err := dgst.Validate(); err != nil {
-		return err
-	}
-
-	if err := cache.ValidateDescriptor(desc); err != nil {
-		return err
-	}
-
-	mbdc.mu.Lock()
-	defer mbdc.mu.Unlock()
-
-	mbdc.descriptors[dgst] = desc
-	return nil
-}
diff --git a/vendor/github.com/docker/distribution/tags.go b/vendor/github.com/docker/distribution/tags.go
deleted file mode 100644
index f22df2b850..0000000000
--- a/vendor/github.com/docker/distribution/tags.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package distribution
-
-import (
-	"context"
-)
-
-// TagService provides access to information about tagged objects.
-type TagService interface {
-	// Get retrieves the descriptor identified by the tag. Some
-	// implementations may differentiate between "trusted" tags and
-	// "untrusted" tags. If a tag is "untrusted", the mapping will be returned
-	// as an ErrTagUntrusted error, with the target descriptor.
-	Get(ctx context.Context, tag string) (Descriptor, error)
-
-	// Tag associates the tag with the provided descriptor, updating the
-	// current association, if needed.
-	Tag(ctx context.Context, tag string, desc Descriptor) error
-
-	// Untag removes the given tag association
-	Untag(ctx context.Context, tag string) error
-
-	// All returns the set of tags managed by this tag service
-	All(ctx context.Context) ([]string, error)
-
-	// Lookup returns the set of tags referencing the given digest.
-	Lookup(ctx context.Context, digest Descriptor) ([]string, error)
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/LICENSE b/vendor/github.com/docker/docker-credential-helpers/LICENSE
deleted file mode 100644
index 1ea555e2af..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/LICENSE
+++ /dev/null
@@ -1,20 +0,0 @@
-Copyright (c) 2016 David Calavera
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
-IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
-CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
-TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
-SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/docker/docker-credential-helpers/client/client.go b/vendor/github.com/docker/docker-credential-helpers/client/client.go
deleted file mode 100644
index d1d0434cb5..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/client/client.go
+++ /dev/null
@@ -1,121 +0,0 @@
-package client
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"strings"
-
-	"github.com/docker/docker-credential-helpers/credentials"
-)
-
-// isValidCredsMessage checks if 'msg' contains invalid credentials error message.
-// It returns whether the logs are free of invalid credentials errors and the error if it isn't.
-// error values can be errCredentialsMissingServerURL or errCredentialsMissingUsername.
-func isValidCredsMessage(msg string) error {
-	if credentials.IsCredentialsMissingServerURLMessage(msg) {
-		return credentials.NewErrCredentialsMissingServerURL()
-	}
-
-	if credentials.IsCredentialsMissingUsernameMessage(msg) {
-		return credentials.NewErrCredentialsMissingUsername()
-	}
-
-	return nil
-}
-
-// Store uses an external program to save credentials.
-func Store(program ProgramFunc, creds *credentials.Credentials) error {
-	cmd := program("store")
-
-	buffer := new(bytes.Buffer)
-	if err := json.NewEncoder(buffer).Encode(creds); err != nil {
-		return err
-	}
-	cmd.Input(buffer)
-
-	out, err := cmd.Output()
-	if err != nil {
-		t := strings.TrimSpace(string(out))
-
-		if isValidErr := isValidCredsMessage(t); isValidErr != nil {
-			err = isValidErr
-		}
-
-		return fmt.Errorf("error storing credentials - err: %v, out: `%s`", err, t)
-	}
-
-	return nil
-}
-
-// Get executes an external program to get the credentials from a native store.
-func Get(program ProgramFunc, serverURL string) (*credentials.Credentials, error) {
-	cmd := program("get")
-	cmd.Input(strings.NewReader(serverURL))
-
-	out, err := cmd.Output()
-	if err != nil {
-		t := strings.TrimSpace(string(out))
-
-		if credentials.IsErrCredentialsNotFoundMessage(t) {
-			return nil, credentials.NewErrCredentialsNotFound()
-		}
-
-		if isValidErr := isValidCredsMessage(t); isValidErr != nil {
-			err = isValidErr
-		}
-
-		return nil, fmt.Errorf("error getting credentials - err: %v, out: `%s`", err, t)
-	}
-
-	resp := &credentials.Credentials{
-		ServerURL: serverURL,
-	}
-
-	if err := json.NewDecoder(bytes.NewReader(out)).Decode(resp); err != nil {
-		return nil, err
-	}
-
-	return resp, nil
-}
-
-// Erase executes a program to remove the server credentials from the native store.
-func Erase(program ProgramFunc, serverURL string) error {
-	cmd := program("erase")
-	cmd.Input(strings.NewReader(serverURL))
-	out, err := cmd.Output()
-	if err != nil {
-		t := strings.TrimSpace(string(out))
-
-		if isValidErr := isValidCredsMessage(t); isValidErr != nil {
-			err = isValidErr
-		}
-
-		return fmt.Errorf("error erasing credentials - err: %v, out: `%s`", err, t)
-	}
-
-	return nil
-}
-
-// List executes a program to list server credentials in the native store.
-func List(program ProgramFunc) (map[string]string, error) {
-	cmd := program("list")
-	cmd.Input(strings.NewReader("unused"))
-	out, err := cmd.Output()
-	if err != nil {
-		t := strings.TrimSpace(string(out))
-
-		if isValidErr := isValidCredsMessage(t); isValidErr != nil {
-			err = isValidErr
-		}
-
-		return nil, fmt.Errorf("error listing credentials - err: %v, out: `%s`", err, t)
-	}
-
-	var resp map[string]string
-	if err = json.NewDecoder(bytes.NewReader(out)).Decode(&resp); err != nil {
-		return nil, err
-	}
-
-	return resp, nil
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/client/command.go b/vendor/github.com/docker/docker-credential-helpers/client/command.go
deleted file mode 100644
index 8da3343065..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/client/command.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package client
-
-import (
-	"fmt"
-	"io"
-	"os"
-	"os/exec"
-)
-
-// Program is an interface to execute external programs.
-type Program interface {
-	Output() ([]byte, error)
-	Input(in io.Reader)
-}
-
-// ProgramFunc is a type of function that initializes programs based on arguments.
-type ProgramFunc func(args ...string) Program
-
-// NewShellProgramFunc creates programs that are executed in a Shell.
-func NewShellProgramFunc(name string) ProgramFunc {
-	return NewShellProgramFuncWithEnv(name, nil)
-}
-
-// NewShellProgramFuncWithEnv creates programs that are executed in a Shell with environment variables
-func NewShellProgramFuncWithEnv(name string, env *map[string]string) ProgramFunc {
-	return func(args ...string) Program {
-		return &Shell{cmd: createProgramCmdRedirectErr(name, args, env)}
-	}
-}
-
-func createProgramCmdRedirectErr(commandName string, args []string, env *map[string]string) *exec.Cmd {
-	programCmd := exec.Command(commandName, args...)
-	programCmd.Env = os.Environ()
-	if env != nil {
-		for k, v := range *env {
-			programCmd.Env = append(programCmd.Env, fmt.Sprintf("%s=%s", k, v))
-		}
-	}
-	programCmd.Stderr = os.Stderr
-	return programCmd
-}
-
-// Shell invokes shell commands to talk with a remote credentials helper.
-type Shell struct {
-	cmd *exec.Cmd
-}
-
-// Output returns responses from the remote credentials helper.
-func (s *Shell) Output() ([]byte, error) {
-	return s.cmd.Output()
-}
-
-// Input sets the input to send to a remote credentials helper.
-func (s *Shell) Input(in io.Reader) {
-	s.cmd.Stdin = in
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/credentials/credentials.go b/vendor/github.com/docker/docker-credential-helpers/credentials/credentials.go
deleted file mode 100644
index da8b594e7f..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/credentials/credentials.go
+++ /dev/null
@@ -1,186 +0,0 @@
-package credentials
-
-import (
-	"bufio"
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io"
-	"os"
-	"strings"
-)
-
-// Credentials holds the information shared between docker and the credentials store.
-type Credentials struct {
-	ServerURL string
-	Username  string
-	Secret    string
-}
-
-// isValid checks the integrity of Credentials object such that no credentials lack
-// a server URL or a username.
-// It returns whether the credentials are valid and the error if it isn't.
-// error values can be errCredentialsMissingServerURL or errCredentialsMissingUsername
-func (c *Credentials) isValid() (bool, error) {
-	if len(c.ServerURL) == 0 {
-		return false, NewErrCredentialsMissingServerURL()
-	}
-
-	if len(c.Username) == 0 {
-		return false, NewErrCredentialsMissingUsername()
-	}
-
-	return true, nil
-}
-
-// CredsLabel holds the way Docker credentials should be labeled as such in credentials stores that allow labelling.
-// That label allows to filter out non-Docker credentials too at lookup/search in macOS keychain,
-// Windows credentials manager and Linux libsecret. Default value is "Docker Credentials"
-var CredsLabel = "Docker Credentials"
-
-// SetCredsLabel is a simple setter for CredsLabel
-func SetCredsLabel(label string) {
-	CredsLabel = label
-}
-
-// Serve initializes the credentials helper and parses the action argument.
-// This function is designed to be called from a command line interface.
-// It uses os.Args[1] as the key for the action.
-// It uses os.Stdin as input and os.Stdout as output.
-// This function terminates the program with os.Exit(1) if there is an error.
-func Serve(helper Helper) {
-	var err error
-	if len(os.Args) != 2 {
-		err = fmt.Errorf("Usage: %s <store|get|erase|list|version>", os.Args[0])
-	}
-
-	if err == nil {
-		err = HandleCommand(helper, os.Args[1], os.Stdin, os.Stdout)
-	}
-
-	if err != nil {
-		fmt.Fprintf(os.Stdout, "%v\n", err)
-		os.Exit(1)
-	}
-}
-
-// HandleCommand uses a helper and a key to run a credential action.
-func HandleCommand(helper Helper, key string, in io.Reader, out io.Writer) error {
-	switch key {
-	case "store":
-		return Store(helper, in)
-	case "get":
-		return Get(helper, in, out)
-	case "erase":
-		return Erase(helper, in)
-	case "list":
-		return List(helper, out)
-	case "version":
-		return PrintVersion(out)
-	}
-	return fmt.Errorf("Unknown credential action `%s`", key)
-}
-
-// Store uses a helper and an input reader to save credentials.
-// The reader must contain the JSON serialization of a Credentials struct.
-func Store(helper Helper, reader io.Reader) error {
-	scanner := bufio.NewScanner(reader)
-
-	buffer := new(bytes.Buffer)
-	for scanner.Scan() {
-		buffer.Write(scanner.Bytes())
-	}
-
-	if err := scanner.Err(); err != nil && err != io.EOF {
-		return err
-	}
-
-	var creds Credentials
-	if err := json.NewDecoder(buffer).Decode(&creds); err != nil {
-		return err
-	}
-
-	if ok, err := creds.isValid(); !ok {
-		return err
-	}
-
-	return helper.Add(&creds)
-}
-
-// Get retrieves the credentials for a given server url.
-// The reader must contain the server URL to search.
-// The writer is used to write the JSON serialization of the credentials.
-func Get(helper Helper, reader io.Reader, writer io.Writer) error {
-	scanner := bufio.NewScanner(reader)
-
-	buffer := new(bytes.Buffer)
-	for scanner.Scan() {
-		buffer.Write(scanner.Bytes())
-	}
-
-	if err := scanner.Err(); err != nil && err != io.EOF {
-		return err
-	}
-
-	serverURL := strings.TrimSpace(buffer.String())
-	if len(serverURL) == 0 {
-		return NewErrCredentialsMissingServerURL()
-	}
-
-	username, secret, err := helper.Get(serverURL)
-	if err != nil {
-		return err
-	}
-
-	resp := Credentials{
-		ServerURL: serverURL,
-		Username:  username,
-		Secret:    secret,
-	}
-
-	buffer.Reset()
-	if err := json.NewEncoder(buffer).Encode(resp); err != nil {
-		return err
-	}
-
-	fmt.Fprint(writer, buffer.String())
-	return nil
-}
-
-// Erase removes credentials from the store.
-// The reader must contain the server URL to remove.
-func Erase(helper Helper, reader io.Reader) error {
-	scanner := bufio.NewScanner(reader)
-
-	buffer := new(bytes.Buffer)
-	for scanner.Scan() {
-		buffer.Write(scanner.Bytes())
-	}
-
-	if err := scanner.Err(); err != nil && err != io.EOF {
-		return err
-	}
-
-	serverURL := strings.TrimSpace(buffer.String())
-	if len(serverURL) == 0 {
-		return NewErrCredentialsMissingServerURL()
-	}
-
-	return helper.Delete(serverURL)
-}
-
-//List returns all the serverURLs of keys in
-//the OS store as a list of strings
-func List(helper Helper, writer io.Writer) error {
-	accts, err := helper.List()
-	if err != nil {
-		return err
-	}
-	return json.NewEncoder(writer).Encode(accts)
-}
-
-//PrintVersion outputs the current version.
-func PrintVersion(writer io.Writer) error {
-	fmt.Fprintln(writer, Version)
-	return nil
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/credentials/error.go b/vendor/github.com/docker/docker-credential-helpers/credentials/error.go
deleted file mode 100644
index fe6a5aef45..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/credentials/error.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package credentials
-
-const (
-	// ErrCredentialsNotFound standardizes the not found error, so every helper returns
-	// the same message and docker can handle it properly.
-	errCredentialsNotFoundMessage = "credentials not found in native keychain"
-
-	// ErrCredentialsMissingServerURL and ErrCredentialsMissingUsername standardize
-	// invalid credentials or credentials management operations
-	errCredentialsMissingServerURLMessage = "no credentials server URL"
-	errCredentialsMissingUsernameMessage  = "no credentials username"
-)
-
-// errCredentialsNotFound represents an error
-// raised when credentials are not in the store.
-type errCredentialsNotFound struct{}
-
-// Error returns the standard error message
-// for when the credentials are not in the store.
-func (errCredentialsNotFound) Error() string {
-	return errCredentialsNotFoundMessage
-}
-
-// NewErrCredentialsNotFound creates a new error
-// for when the credentials are not in the store.
-func NewErrCredentialsNotFound() error {
-	return errCredentialsNotFound{}
-}
-
-// IsErrCredentialsNotFound returns true if the error
-// was caused by not having a set of credentials in a store.
-func IsErrCredentialsNotFound(err error) bool {
-	_, ok := err.(errCredentialsNotFound)
-	return ok
-}
-
-// IsErrCredentialsNotFoundMessage returns true if the error
-// was caused by not having a set of credentials in a store.
-//
-// This function helps to check messages returned by an
-// external program via its standard output.
-func IsErrCredentialsNotFoundMessage(err string) bool {
-	return err == errCredentialsNotFoundMessage
-}
-
-// errCredentialsMissingServerURL represents an error raised
-// when the credentials object has no server URL or when no
-// server URL is provided to a credentials operation requiring
-// one.
-type errCredentialsMissingServerURL struct{}
-
-func (errCredentialsMissingServerURL) Error() string {
-	return errCredentialsMissingServerURLMessage
-}
-
-// errCredentialsMissingUsername represents an error raised
-// when the credentials object has no username or when no
-// username is provided to a credentials operation requiring
-// one.
-type errCredentialsMissingUsername struct{}
-
-func (errCredentialsMissingUsername) Error() string {
-	return errCredentialsMissingUsernameMessage
-}
-
-// NewErrCredentialsMissingServerURL creates a new error for
-// errCredentialsMissingServerURL.
-func NewErrCredentialsMissingServerURL() error {
-	return errCredentialsMissingServerURL{}
-}
-
-// NewErrCredentialsMissingUsername creates a new error for
-// errCredentialsMissingUsername.
-func NewErrCredentialsMissingUsername() error {
-	return errCredentialsMissingUsername{}
-}
-
-// IsCredentialsMissingServerURL returns true if the error
-// was an errCredentialsMissingServerURL.
-func IsCredentialsMissingServerURL(err error) bool {
-	_, ok := err.(errCredentialsMissingServerURL)
-	return ok
-}
-
-// IsCredentialsMissingServerURLMessage checks for an
-// errCredentialsMissingServerURL in the error message.
-func IsCredentialsMissingServerURLMessage(err string) bool {
-	return err == errCredentialsMissingServerURLMessage
-}
-
-// IsCredentialsMissingUsername returns true if the error
-// was an errCredentialsMissingUsername.
-func IsCredentialsMissingUsername(err error) bool {
-	_, ok := err.(errCredentialsMissingUsername)
-	return ok
-}
-
-// IsCredentialsMissingUsernameMessage checks for an
-// errCredentialsMissingUsername in the error message.
-func IsCredentialsMissingUsernameMessage(err string) bool {
-	return err == errCredentialsMissingUsernameMessage
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/credentials/helper.go b/vendor/github.com/docker/docker-credential-helpers/credentials/helper.go
deleted file mode 100644
index 135acd254d..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/credentials/helper.go
+++ /dev/null
@@ -1,14 +0,0 @@
-package credentials
-
-// Helper is the interface a credentials store helper must implement.
-type Helper interface {
-	// Add appends credentials to the store.
-	Add(*Credentials) error
-	// Delete removes credentials from the store.
-	Delete(serverURL string) error
-	// Get retrieves credentials from the store.
-	// It returns username and secret as strings.
-	Get(serverURL string) (string, string, error)
-	// List returns the stored serverURLs and their associated usernames.
-	List() (map[string]string, error)
-}
diff --git a/vendor/github.com/docker/docker-credential-helpers/credentials/version.go b/vendor/github.com/docker/docker-credential-helpers/credentials/version.go
deleted file mode 100644
index 033a5fee55..0000000000
--- a/vendor/github.com/docker/docker-credential-helpers/credentials/version.go
+++ /dev/null
@@ -1,4 +0,0 @@
-package credentials
-
-// Version holds a string describing the current version
-const Version = "0.6.0"
diff --git a/vendor/github.com/docker/docker/api/common.go b/vendor/github.com/docker/docker/api/common.go
deleted file mode 100644
index 97a92f8b78..0000000000
--- a/vendor/github.com/docker/docker/api/common.go
+++ /dev/null
@@ -1,11 +0,0 @@
-package api // import "github.com/docker/docker/api"
-
-// Common constants for daemon and client.
-const (
-	// DefaultVersion of Current REST API
-	DefaultVersion string = "1.36"
-
-	// NoBaseImageSpecifier is the symbol used by the FROM
-	// command to specify that no base image is to be used.
-	NoBaseImageSpecifier string = "scratch"
-)
diff --git a/vendor/github.com/docker/docker/api/common_unix.go b/vendor/github.com/docker/docker/api/common_unix.go
deleted file mode 100644
index af1a541646..0000000000
--- a/vendor/github.com/docker/docker/api/common_unix.go
+++ /dev/null
@@ -1,6 +0,0 @@
-// +build !windows
-
-package api // import "github.com/docker/docker/api"
-
-// MinVersion represents Minimum REST API version supported
-const MinVersion string = "1.12"
diff --git a/vendor/github.com/docker/docker/api/common_windows.go b/vendor/github.com/docker/docker/api/common_windows.go
deleted file mode 100644
index 590ba5479b..0000000000
--- a/vendor/github.com/docker/docker/api/common_windows.go
+++ /dev/null
@@ -1,8 +0,0 @@
-package api // import "github.com/docker/docker/api"
-
-// MinVersion represents Minimum REST API version supported
-// Technically the first daemon API version released on Windows is v1.25 in
-// engine version 1.13. However, some clients are explicitly using downlevel
-// APIs (e.g. docker-compose v2.1 file format) and that is just too restrictive.
-// Hence also allowing 1.24 on Windows.
-const MinVersion string = "1.24"
diff --git a/vendor/github.com/docker/docker/api/types/auth.go b/vendor/github.com/docker/docker/api/types/auth.go
deleted file mode 100644
index ddf15bb182..0000000000
--- a/vendor/github.com/docker/docker/api/types/auth.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-// AuthConfig contains authorization information for connecting to a Registry
-type AuthConfig struct {
-	Username string `json:"username,omitempty"`
-	Password string `json:"password,omitempty"`
-	Auth     string `json:"auth,omitempty"`
-
-	// Email is an optional value associated with the username.
-	// This field is deprecated and will be removed in a later
-	// version of docker.
-	Email string `json:"email,omitempty"`
-
-	ServerAddress string `json:"serveraddress,omitempty"`
-
-	// IdentityToken is used to authenticate the user and get
-	// an access token for the registry.
-	IdentityToken string `json:"identitytoken,omitempty"`
-
-	// RegistryToken is a bearer token to be sent to a registry
-	RegistryToken string `json:"registrytoken,omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/client.go b/vendor/github.com/docker/docker/api/types/client.go
deleted file mode 100644
index 18b36d592b..0000000000
--- a/vendor/github.com/docker/docker/api/types/client.go
+++ /dev/null
@@ -1,390 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-import (
-	"bufio"
-	"io"
-	"net"
-
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/filters"
-	units "github.com/docker/go-units"
-)
-
-// CheckpointCreateOptions holds parameters to create a checkpoint from a container
-type CheckpointCreateOptions struct {
-	CheckpointID  string
-	CheckpointDir string
-	Exit          bool
-}
-
-// CheckpointListOptions holds parameters to list checkpoints for a container
-type CheckpointListOptions struct {
-	CheckpointDir string
-}
-
-// CheckpointDeleteOptions holds parameters to delete a checkpoint from a container
-type CheckpointDeleteOptions struct {
-	CheckpointID  string
-	CheckpointDir string
-}
-
-// ContainerAttachOptions holds parameters to attach to a container.
-type ContainerAttachOptions struct {
-	Stream     bool
-	Stdin      bool
-	Stdout     bool
-	Stderr     bool
-	DetachKeys string
-	Logs       bool
-}
-
-// ContainerCommitOptions holds parameters to commit changes into a container.
-type ContainerCommitOptions struct {
-	Reference string
-	Comment   string
-	Author    string
-	Changes   []string
-	Pause     bool
-	Config    *container.Config
-}
-
-// ContainerExecInspect holds information returned by exec inspect.
-type ContainerExecInspect struct {
-	ExecID      string
-	ContainerID string
-	Running     bool
-	ExitCode    int
-	Pid         int
-}
-
-// ContainerListOptions holds parameters to list containers with.
-type ContainerListOptions struct {
-	Quiet   bool
-	Size    bool
-	All     bool
-	Latest  bool
-	Since   string
-	Before  string
-	Limit   int
-	Filters filters.Args
-}
-
-// ContainerLogsOptions holds parameters to filter logs with.
-type ContainerLogsOptions struct {
-	ShowStdout bool
-	ShowStderr bool
-	Since      string
-	Until      string
-	Timestamps bool
-	Follow     bool
-	Tail       string
-	Details    bool
-}
-
-// ContainerRemoveOptions holds parameters to remove containers.
-type ContainerRemoveOptions struct {
-	RemoveVolumes bool
-	RemoveLinks   bool
-	Force         bool
-}
-
-// ContainerStartOptions holds parameters to start containers.
-type ContainerStartOptions struct {
-	CheckpointID  string
-	CheckpointDir string
-}
-
-// CopyToContainerOptions holds information
-// about files to copy into a container
-type CopyToContainerOptions struct {
-	AllowOverwriteDirWithFile bool
-	CopyUIDGID                bool
-}
-
-// EventsOptions holds parameters to filter events with.
-type EventsOptions struct {
-	Since   string
-	Until   string
-	Filters filters.Args
-}
-
-// NetworkListOptions holds parameters to filter the list of networks with.
-type NetworkListOptions struct {
-	Filters filters.Args
-}
-
-// HijackedResponse holds connection information for a hijacked request.
-type HijackedResponse struct {
-	Conn   net.Conn
-	Reader *bufio.Reader
-}
-
-// Close closes the hijacked connection and reader.
-func (h *HijackedResponse) Close() {
-	h.Conn.Close()
-}
-
-// CloseWriter is an interface that implements structs
-// that close input streams to prevent from writing.
-type CloseWriter interface {
-	CloseWrite() error
-}
-
-// CloseWrite closes a readWriter for writing.
-func (h *HijackedResponse) CloseWrite() error {
-	if conn, ok := h.Conn.(CloseWriter); ok {
-		return conn.CloseWrite()
-	}
-	return nil
-}
-
-// ImageBuildOptions holds the information
-// necessary to build images.
-type ImageBuildOptions struct {
-	Tags           []string
-	SuppressOutput bool
-	RemoteContext  string
-	NoCache        bool
-	Remove         bool
-	ForceRemove    bool
-	PullParent     bool
-	Isolation      container.Isolation
-	CPUSetCPUs     string
-	CPUSetMems     string
-	CPUShares      int64
-	CPUQuota       int64
-	CPUPeriod      int64
-	Memory         int64
-	MemorySwap     int64
-	CgroupParent   string
-	NetworkMode    string
-	ShmSize        int64
-	Dockerfile     string
-	Ulimits        []*units.Ulimit
-	// BuildArgs needs to be a *string instead of just a string so that
-	// we can tell the difference between "" (empty string) and no value
-	// at all (nil). See the parsing of buildArgs in
-	// api/server/router/build/build_routes.go for even more info.
-	BuildArgs   map[string]*string
-	AuthConfigs map[string]AuthConfig
-	Context     io.Reader
-	Labels      map[string]string
-	// squash the resulting image's layers to the parent
-	// preserves the original image and creates a new one from the parent with all
-	// the changes applied to a single layer
-	Squash bool
-	// CacheFrom specifies images that are used for matching cache. Images
-	// specified here do not need to have a valid parent chain to match cache.
-	CacheFrom   []string
-	SecurityOpt []string
-	ExtraHosts  []string // List of extra hosts
-	Target      string
-	SessionID   string
-	Platform    string
-}
-
-// ImageBuildResponse holds information
-// returned by a server after building
-// an image.
-type ImageBuildResponse struct {
-	Body   io.ReadCloser
-	OSType string
-}
-
-// ImageCreateOptions holds information to create images.
-type ImageCreateOptions struct {
-	RegistryAuth string // RegistryAuth is the base64 encoded credentials for the registry.
-	Platform     string // Platform is the target platform of the image if it needs to be pulled from the registry.
-}
-
-// ImageImportSource holds source information for ImageImport
-type ImageImportSource struct {
-	Source     io.Reader // Source is the data to send to the server to create this image from. You must set SourceName to "-" to leverage this.
-	SourceName string    // SourceName is the name of the image to pull. Set to "-" to leverage the Source attribute.
-}
-
-// ImageImportOptions holds information to import images from the client host.
-type ImageImportOptions struct {
-	Tag      string   // Tag is the name to tag this image with. This attribute is deprecated.
-	Message  string   // Message is the message to tag the image with
-	Changes  []string // Changes are the raw changes to apply to this image
-	Platform string   // Platform is the target platform of the image
-}
-
-// ImageListOptions holds parameters to filter the list of images with.
-type ImageListOptions struct {
-	All     bool
-	Filters filters.Args
-}
-
-// ImageLoadResponse returns information to the client about a load process.
-type ImageLoadResponse struct {
-	// Body must be closed to avoid a resource leak
-	Body io.ReadCloser
-	JSON bool
-}
-
-// ImagePullOptions holds information to pull images.
-type ImagePullOptions struct {
-	All           bool
-	RegistryAuth  string // RegistryAuth is the base64 encoded credentials for the registry
-	PrivilegeFunc RequestPrivilegeFunc
-	Platform      string
-}
-
-// RequestPrivilegeFunc is a function interface that
-// clients can supply to retry operations after
-// getting an authorization error.
-// This function returns the registry authentication
-// header value in base 64 format, or an error
-// if the privilege request fails.
-type RequestPrivilegeFunc func() (string, error)
-
-//ImagePushOptions holds information to push images.
-type ImagePushOptions ImagePullOptions
-
-// ImageRemoveOptions holds parameters to remove images.
-type ImageRemoveOptions struct {
-	Force         bool
-	PruneChildren bool
-}
-
-// ImageSearchOptions holds parameters to search images with.
-type ImageSearchOptions struct {
-	RegistryAuth  string
-	PrivilegeFunc RequestPrivilegeFunc
-	Filters       filters.Args
-	Limit         int
-}
-
-// ResizeOptions holds parameters to resize a tty.
-// It can be used to resize container ttys and
-// exec process ttys too.
-type ResizeOptions struct {
-	Height uint
-	Width  uint
-}
-
-// NodeListOptions holds parameters to list nodes with.
-type NodeListOptions struct {
-	Filters filters.Args
-}
-
-// NodeRemoveOptions holds parameters to remove nodes with.
-type NodeRemoveOptions struct {
-	Force bool
-}
-
-// ServiceCreateOptions contains the options to use when creating a service.
-type ServiceCreateOptions struct {
-	// EncodedRegistryAuth is the encoded registry authorization credentials to
-	// use when updating the service.
-	//
-	// This field follows the format of the X-Registry-Auth header.
-	EncodedRegistryAuth string
-
-	// QueryRegistry indicates whether the service update requires
-	// contacting a registry. A registry may be contacted to retrieve
-	// the image digest and manifest, which in turn can be used to update
-	// platform or other information about the service.
-	QueryRegistry bool
-}
-
-// ServiceCreateResponse contains the information returned to a client
-// on the creation of a new service.
-type ServiceCreateResponse struct {
-	// ID is the ID of the created service.
-	ID string
-	// Warnings is a set of non-fatal warning messages to pass on to the user.
-	Warnings []string `json:",omitempty"`
-}
-
-// Values for RegistryAuthFrom in ServiceUpdateOptions
-const (
-	RegistryAuthFromSpec         = "spec"
-	RegistryAuthFromPreviousSpec = "previous-spec"
-)
-
-// ServiceUpdateOptions contains the options to be used for updating services.
-type ServiceUpdateOptions struct {
-	// EncodedRegistryAuth is the encoded registry authorization credentials to
-	// use when updating the service.
-	//
-	// This field follows the format of the X-Registry-Auth header.
-	EncodedRegistryAuth string
-
-	// TODO(stevvooe): Consider moving the version parameter of ServiceUpdate
-	// into this field. While it does open API users up to racy writes, most
-	// users may not need that level of consistency in practice.
-
-	// RegistryAuthFrom specifies where to find the registry authorization
-	// credentials if they are not given in EncodedRegistryAuth. Valid
-	// values are "spec" and "previous-spec".
-	RegistryAuthFrom string
-
-	// Rollback indicates whether a server-side rollback should be
-	// performed. When this is set, the provided spec will be ignored.
-	// The valid values are "previous" and "none". An empty value is the
-	// same as "none".
-	Rollback string
-
-	// QueryRegistry indicates whether the service update requires
-	// contacting a registry. A registry may be contacted to retrieve
-	// the image digest and manifest, which in turn can be used to update
-	// platform or other information about the service.
-	QueryRegistry bool
-}
-
-// ServiceListOptions holds parameters to list services with.
-type ServiceListOptions struct {
-	Filters filters.Args
-}
-
-// ServiceInspectOptions holds parameters related to the "service inspect"
-// operation.
-type ServiceInspectOptions struct {
-	InsertDefaults bool
-}
-
-// TaskListOptions holds parameters to list tasks with.
-type TaskListOptions struct {
-	Filters filters.Args
-}
-
-// PluginRemoveOptions holds parameters to remove plugins.
-type PluginRemoveOptions struct {
-	Force bool
-}
-
-// PluginEnableOptions holds parameters to enable plugins.
-type PluginEnableOptions struct {
-	Timeout int
-}
-
-// PluginDisableOptions holds parameters to disable plugins.
-type PluginDisableOptions struct {
-	Force bool
-}
-
-// PluginInstallOptions holds parameters to install a plugin.
-type PluginInstallOptions struct {
-	Disabled              bool
-	AcceptAllPermissions  bool
-	RegistryAuth          string // RegistryAuth is the base64 encoded credentials for the registry
-	RemoteRef             string // RemoteRef is the plugin name on the registry
-	PrivilegeFunc         RequestPrivilegeFunc
-	AcceptPermissionsFunc func(PluginPrivileges) (bool, error)
-	Args                  []string
-}
-
-// SwarmUnlockKeyResponse contains the response for Engine API:
-// GET /swarm/unlockkey
-type SwarmUnlockKeyResponse struct {
-	// UnlockKey is the unlock key in ASCII-armored format.
-	UnlockKey string
-}
-
-// PluginCreateOptions hold all options to plugin create.
-type PluginCreateOptions struct {
-	RepoName string
-}
diff --git a/vendor/github.com/docker/docker/api/types/configs.go b/vendor/github.com/docker/docker/api/types/configs.go
deleted file mode 100644
index f6537a27f2..0000000000
--- a/vendor/github.com/docker/docker/api/types/configs.go
+++ /dev/null
@@ -1,57 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-import (
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/network"
-)
-
-// configs holds structs used for internal communication between the
-// frontend (such as an http server) and the backend (such as the
-// docker daemon).
-
-// ContainerCreateConfig is the parameter set to ContainerCreate()
-type ContainerCreateConfig struct {
-	Name             string
-	Config           *container.Config
-	HostConfig       *container.HostConfig
-	NetworkingConfig *network.NetworkingConfig
-	AdjustCPUShares  bool
-}
-
-// ContainerRmConfig holds arguments for the container remove
-// operation. This struct is used to tell the backend what operations
-// to perform.
-type ContainerRmConfig struct {
-	ForceRemove, RemoveVolume, RemoveLink bool
-}
-
-// ExecConfig is a small subset of the Config struct that holds the configuration
-// for the exec feature of docker.
-type ExecConfig struct {
-	User         string   // User that will run the command
-	Privileged   bool     // Is the container in privileged mode
-	Tty          bool     // Attach standard streams to a tty.
-	AttachStdin  bool     // Attach the standard input, makes possible user interaction
-	AttachStderr bool     // Attach the standard error
-	AttachStdout bool     // Attach the standard output
-	Detach       bool     // Execute in detach mode
-	DetachKeys   string   // Escape keys for detach
-	Env          []string // Environment variables
-	WorkingDir   string   // Working directory
-	Cmd          []string // Execution commands and args
-}
-
-// PluginRmConfig holds arguments for plugin remove.
-type PluginRmConfig struct {
-	ForceRemove bool
-}
-
-// PluginEnableConfig holds arguments for plugin enable
-type PluginEnableConfig struct {
-	Timeout int
-}
-
-// PluginDisableConfig holds arguments for plugin disable.
-type PluginDisableConfig struct {
-	ForceDisable bool
-}
diff --git a/vendor/github.com/docker/docker/api/types/error_response.go b/vendor/github.com/docker/docker/api/types/error_response.go
deleted file mode 100644
index dc942d9d9e..0000000000
--- a/vendor/github.com/docker/docker/api/types/error_response.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// ErrorResponse Represents an error.
-// swagger:model ErrorResponse
-type ErrorResponse struct {
-
-	// The error message.
-	// Required: true
-	Message string `json:"message"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/events/events.go b/vendor/github.com/docker/docker/api/types/events/events.go
deleted file mode 100644
index 027c6edb72..0000000000
--- a/vendor/github.com/docker/docker/api/types/events/events.go
+++ /dev/null
@@ -1,52 +0,0 @@
-package events // import "github.com/docker/docker/api/types/events"
-
-const (
-	// ContainerEventType is the event type that containers generate
-	ContainerEventType = "container"
-	// DaemonEventType is the event type that daemon generate
-	DaemonEventType = "daemon"
-	// ImageEventType is the event type that images generate
-	ImageEventType = "image"
-	// NetworkEventType is the event type that networks generate
-	NetworkEventType = "network"
-	// PluginEventType is the event type that plugins generate
-	PluginEventType = "plugin"
-	// VolumeEventType is the event type that volumes generate
-	VolumeEventType = "volume"
-	// ServiceEventType is the event type that services generate
-	ServiceEventType = "service"
-	// NodeEventType is the event type that nodes generate
-	NodeEventType = "node"
-	// SecretEventType is the event type that secrets generate
-	SecretEventType = "secret"
-	// ConfigEventType is the event type that configs generate
-	ConfigEventType = "config"
-)
-
-// Actor describes something that generates events,
-// like a container, or a network, or a volume.
-// It has a defined name and a set or attributes.
-// The container attributes are its labels, other actors
-// can generate these attributes from other properties.
-type Actor struct {
-	ID         string
-	Attributes map[string]string
-}
-
-// Message represents the information an event contains
-type Message struct {
-	// Deprecated information from JSONMessage.
-	// With data only in container events.
-	Status string `json:"status,omitempty"`
-	ID     string `json:"id,omitempty"`
-	From   string `json:"from,omitempty"`
-
-	Type   string
-	Action string
-	Actor  Actor
-	// Engine events are local scope. Cluster events are swarm scope.
-	Scope string `json:"scope,omitempty"`
-
-	Time     int64 `json:"time,omitempty"`
-	TimeNano int64 `json:"timeNano,omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/filters/parse.go b/vendor/github.com/docker/docker/api/types/filters/parse.go
deleted file mode 100644
index a41e3d8d96..0000000000
--- a/vendor/github.com/docker/docker/api/types/filters/parse.go
+++ /dev/null
@@ -1,350 +0,0 @@
-/*Package filters provides tools for encoding a mapping of keys to a set of
-multiple values.
-*/
-package filters // import "github.com/docker/docker/api/types/filters"
-
-import (
-	"encoding/json"
-	"errors"
-	"regexp"
-	"strings"
-
-	"github.com/docker/docker/api/types/versions"
-)
-
-// Args stores a mapping of keys to a set of multiple values.
-type Args struct {
-	fields map[string]map[string]bool
-}
-
-// KeyValuePair are used to initialize a new Args
-type KeyValuePair struct {
-	Key   string
-	Value string
-}
-
-// Arg creates a new KeyValuePair for initializing Args
-func Arg(key, value string) KeyValuePair {
-	return KeyValuePair{Key: key, Value: value}
-}
-
-// NewArgs returns a new Args populated with the initial args
-func NewArgs(initialArgs ...KeyValuePair) Args {
-	args := Args{fields: map[string]map[string]bool{}}
-	for _, arg := range initialArgs {
-		args.Add(arg.Key, arg.Value)
-	}
-	return args
-}
-
-// ParseFlag parses a key=value string and adds it to an Args.
-//
-// Deprecated: Use Args.Add()
-func ParseFlag(arg string, prev Args) (Args, error) {
-	filters := prev
-	if len(arg) == 0 {
-		return filters, nil
-	}
-
-	if !strings.Contains(arg, "=") {
-		return filters, ErrBadFormat
-	}
-
-	f := strings.SplitN(arg, "=", 2)
-
-	name := strings.ToLower(strings.TrimSpace(f[0]))
-	value := strings.TrimSpace(f[1])
-
-	filters.Add(name, value)
-
-	return filters, nil
-}
-
-// ErrBadFormat is an error returned when a filter is not in the form key=value
-//
-// Deprecated: this error will be removed in a future version
-var ErrBadFormat = errors.New("bad format of filter (expected name=value)")
-
-// ToParam encodes the Args as args JSON encoded string
-//
-// Deprecated: use ToJSON
-func ToParam(a Args) (string, error) {
-	return ToJSON(a)
-}
-
-// MarshalJSON returns a JSON byte representation of the Args
-func (args Args) MarshalJSON() ([]byte, error) {
-	if len(args.fields) == 0 {
-		return []byte{}, nil
-	}
-	return json.Marshal(args.fields)
-}
-
-// ToJSON returns the Args as a JSON encoded string
-func ToJSON(a Args) (string, error) {
-	if a.Len() == 0 {
-		return "", nil
-	}
-	buf, err := json.Marshal(a)
-	return string(buf), err
-}
-
-// ToParamWithVersion encodes Args as a JSON string. If version is less than 1.22
-// then the encoded format will use an older legacy format where the values are a
-// list of strings, instead of a set.
-//
-// Deprecated: Use ToJSON
-func ToParamWithVersion(version string, a Args) (string, error) {
-	if a.Len() == 0 {
-		return "", nil
-	}
-
-	if version != "" && versions.LessThan(version, "1.22") {
-		buf, err := json.Marshal(convertArgsToSlice(a.fields))
-		return string(buf), err
-	}
-
-	return ToJSON(a)
-}
-
-// FromParam decodes a JSON encoded string into Args
-//
-// Deprecated: use FromJSON
-func FromParam(p string) (Args, error) {
-	return FromJSON(p)
-}
-
-// FromJSON decodes a JSON encoded string into Args
-func FromJSON(p string) (Args, error) {
-	args := NewArgs()
-
-	if p == "" {
-		return args, nil
-	}
-
-	raw := []byte(p)
-	err := json.Unmarshal(raw, &args)
-	if err == nil {
-		return args, nil
-	}
-
-	// Fallback to parsing arguments in the legacy slice format
-	deprecated := map[string][]string{}
-	if legacyErr := json.Unmarshal(raw, &deprecated); legacyErr != nil {
-		return args, err
-	}
-
-	args.fields = deprecatedArgs(deprecated)
-	return args, nil
-}
-
-// UnmarshalJSON populates the Args from JSON encode bytes
-func (args Args) UnmarshalJSON(raw []byte) error {
-	if len(raw) == 0 {
-		return nil
-	}
-	return json.Unmarshal(raw, &args.fields)
-}
-
-// Get returns the list of values associated with the key
-func (args Args) Get(key string) []string {
-	values := args.fields[key]
-	if values == nil {
-		return make([]string, 0)
-	}
-	slice := make([]string, 0, len(values))
-	for key := range values {
-		slice = append(slice, key)
-	}
-	return slice
-}
-
-// Add a new value to the set of values
-func (args Args) Add(key, value string) {
-	if _, ok := args.fields[key]; ok {
-		args.fields[key][value] = true
-	} else {
-		args.fields[key] = map[string]bool{value: true}
-	}
-}
-
-// Del removes a value from the set
-func (args Args) Del(key, value string) {
-	if _, ok := args.fields[key]; ok {
-		delete(args.fields[key], value)
-		if len(args.fields[key]) == 0 {
-			delete(args.fields, key)
-		}
-	}
-}
-
-// Len returns the number of keys in the mapping
-func (args Args) Len() int {
-	return len(args.fields)
-}
-
-// MatchKVList returns true if all the pairs in sources exist as key=value
-// pairs in the mapping at key, or if there are no values at key.
-func (args Args) MatchKVList(key string, sources map[string]string) bool {
-	fieldValues := args.fields[key]
-
-	//do not filter if there is no filter set or cannot determine filter
-	if len(fieldValues) == 0 {
-		return true
-	}
-
-	if len(sources) == 0 {
-		return false
-	}
-
-	for value := range fieldValues {
-		testKV := strings.SplitN(value, "=", 2)
-
-		v, ok := sources[testKV[0]]
-		if !ok {
-			return false
-		}
-		if len(testKV) == 2 && testKV[1] != v {
-			return false
-		}
-	}
-
-	return true
-}
-
-// Match returns true if any of the values at key match the source string
-func (args Args) Match(field, source string) bool {
-	if args.ExactMatch(field, source) {
-		return true
-	}
-
-	fieldValues := args.fields[field]
-	for name2match := range fieldValues {
-		match, err := regexp.MatchString(name2match, source)
-		if err != nil {
-			continue
-		}
-		if match {
-			return true
-		}
-	}
-	return false
-}
-
-// ExactMatch returns true if the source matches exactly one of the values.
-func (args Args) ExactMatch(key, source string) bool {
-	fieldValues, ok := args.fields[key]
-	//do not filter if there is no filter set or cannot determine filter
-	if !ok || len(fieldValues) == 0 {
-		return true
-	}
-
-	// try to match full name value to avoid O(N) regular expression matching
-	return fieldValues[source]
-}
-
-// UniqueExactMatch returns true if there is only one value and the source
-// matches exactly the value.
-func (args Args) UniqueExactMatch(key, source string) bool {
-	fieldValues := args.fields[key]
-	//do not filter if there is no filter set or cannot determine filter
-	if len(fieldValues) == 0 {
-		return true
-	}
-	if len(args.fields[key]) != 1 {
-		return false
-	}
-
-	// try to match full name value to avoid O(N) regular expression matching
-	return fieldValues[source]
-}
-
-// FuzzyMatch returns true if the source matches exactly one value,  or the
-// source has one of the values as a prefix.
-func (args Args) FuzzyMatch(key, source string) bool {
-	if args.ExactMatch(key, source) {
-		return true
-	}
-
-	fieldValues := args.fields[key]
-	for prefix := range fieldValues {
-		if strings.HasPrefix(source, prefix) {
-			return true
-		}
-	}
-	return false
-}
-
-// Include returns true if the key exists in the mapping
-//
-// Deprecated: use Contains
-func (args Args) Include(field string) bool {
-	_, ok := args.fields[field]
-	return ok
-}
-
-// Contains returns true if the key exists in the mapping
-func (args Args) Contains(field string) bool {
-	_, ok := args.fields[field]
-	return ok
-}
-
-type invalidFilter string
-
-func (e invalidFilter) Error() string {
-	return "Invalid filter '" + string(e) + "'"
-}
-
-func (invalidFilter) InvalidParameter() {}
-
-// Validate compared the set of accepted keys against the keys in the mapping.
-// An error is returned if any mapping keys are not in the accepted set.
-func (args Args) Validate(accepted map[string]bool) error {
-	for name := range args.fields {
-		if !accepted[name] {
-			return invalidFilter(name)
-		}
-	}
-	return nil
-}
-
-// WalkValues iterates over the list of values for a key in the mapping and calls
-// op() for each value. If op returns an error the iteration stops and the
-// error is returned.
-func (args Args) WalkValues(field string, op func(value string) error) error {
-	if _, ok := args.fields[field]; !ok {
-		return nil
-	}
-	for v := range args.fields[field] {
-		if err := op(v); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func deprecatedArgs(d map[string][]string) map[string]map[string]bool {
-	m := map[string]map[string]bool{}
-	for k, v := range d {
-		values := map[string]bool{}
-		for _, vv := range v {
-			values[vv] = true
-		}
-		m[k] = values
-	}
-	return m
-}
-
-func convertArgsToSlice(f map[string]map[string]bool) map[string][]string {
-	m := map[string][]string{}
-	for k, v := range f {
-		values := []string{}
-		for kk := range v {
-			if v[kk] {
-				values = append(values, kk)
-			}
-		}
-		m[k] = values
-	}
-	return m
-}
diff --git a/vendor/github.com/docker/docker/api/types/graph_driver_data.go b/vendor/github.com/docker/docker/api/types/graph_driver_data.go
deleted file mode 100644
index 4d9bf1c62c..0000000000
--- a/vendor/github.com/docker/docker/api/types/graph_driver_data.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// GraphDriverData Information about a container's graph driver.
-// swagger:model GraphDriverData
-type GraphDriverData struct {
-
-	// data
-	// Required: true
-	Data map[string]string `json:"Data"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/id_response.go b/vendor/github.com/docker/docker/api/types/id_response.go
deleted file mode 100644
index 7592d2f8b1..0000000000
--- a/vendor/github.com/docker/docker/api/types/id_response.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// IDResponse Response to an API call that returns just an Id
-// swagger:model IdResponse
-type IDResponse struct {
-
-	// The id of the newly created object.
-	// Required: true
-	ID string `json:"Id"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/image/image_history.go b/vendor/github.com/docker/docker/api/types/image/image_history.go
deleted file mode 100644
index d6b354bcdf..0000000000
--- a/vendor/github.com/docker/docker/api/types/image/image_history.go
+++ /dev/null
@@ -1,37 +0,0 @@
-package image
-
-// ----------------------------------------------------------------------------
-// DO NOT EDIT THIS FILE
-// This file was generated by `swagger generate operation`
-//
-// See hack/generate-swagger-api.sh
-// ----------------------------------------------------------------------------
-
-// HistoryResponseItem individual image layer information in response to ImageHistory operation
-// swagger:model HistoryResponseItem
-type HistoryResponseItem struct {
-
-	// comment
-	// Required: true
-	Comment string `json:"Comment"`
-
-	// created
-	// Required: true
-	Created int64 `json:"Created"`
-
-	// created by
-	// Required: true
-	CreatedBy string `json:"CreatedBy"`
-
-	// Id
-	// Required: true
-	ID string `json:"Id"`
-
-	// size
-	// Required: true
-	Size int64 `json:"Size"`
-
-	// tags
-	// Required: true
-	Tags []string `json:"Tags"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/image_delete_response_item.go b/vendor/github.com/docker/docker/api/types/image_delete_response_item.go
deleted file mode 100644
index b9a65a0d8e..0000000000
--- a/vendor/github.com/docker/docker/api/types/image_delete_response_item.go
+++ /dev/null
@@ -1,15 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// ImageDeleteResponseItem image delete response item
-// swagger:model ImageDeleteResponseItem
-type ImageDeleteResponseItem struct {
-
-	// The image ID of an image that was deleted
-	Deleted string `json:"Deleted,omitempty"`
-
-	// The image ID of an image that was untagged
-	Untagged string `json:"Untagged,omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/image_summary.go b/vendor/github.com/docker/docker/api/types/image_summary.go
deleted file mode 100644
index e145b3dcfc..0000000000
--- a/vendor/github.com/docker/docker/api/types/image_summary.go
+++ /dev/null
@@ -1,49 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// ImageSummary image summary
-// swagger:model ImageSummary
-type ImageSummary struct {
-
-	// containers
-	// Required: true
-	Containers int64 `json:"Containers"`
-
-	// created
-	// Required: true
-	Created int64 `json:"Created"`
-
-	// Id
-	// Required: true
-	ID string `json:"Id"`
-
-	// labels
-	// Required: true
-	Labels map[string]string `json:"Labels"`
-
-	// parent Id
-	// Required: true
-	ParentID string `json:"ParentId"`
-
-	// repo digests
-	// Required: true
-	RepoDigests []string `json:"RepoDigests"`
-
-	// repo tags
-	// Required: true
-	RepoTags []string `json:"RepoTags"`
-
-	// shared size
-	// Required: true
-	SharedSize int64 `json:"SharedSize"`
-
-	// size
-	// Required: true
-	Size int64 `json:"Size"`
-
-	// virtual size
-	// Required: true
-	VirtualSize int64 `json:"VirtualSize"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/network/network.go b/vendor/github.com/docker/docker/api/types/network/network.go
deleted file mode 100644
index 761d0b34f2..0000000000
--- a/vendor/github.com/docker/docker/api/types/network/network.go
+++ /dev/null
@@ -1,108 +0,0 @@
-package network // import "github.com/docker/docker/api/types/network"
-
-// Address represents an IP address
-type Address struct {
-	Addr      string
-	PrefixLen int
-}
-
-// IPAM represents IP Address Management
-type IPAM struct {
-	Driver  string
-	Options map[string]string //Per network IPAM driver options
-	Config  []IPAMConfig
-}
-
-// IPAMConfig represents IPAM configurations
-type IPAMConfig struct {
-	Subnet     string            `json:",omitempty"`
-	IPRange    string            `json:",omitempty"`
-	Gateway    string            `json:",omitempty"`
-	AuxAddress map[string]string `json:"AuxiliaryAddresses,omitempty"`
-}
-
-// EndpointIPAMConfig represents IPAM configurations for the endpoint
-type EndpointIPAMConfig struct {
-	IPv4Address  string   `json:",omitempty"`
-	IPv6Address  string   `json:",omitempty"`
-	LinkLocalIPs []string `json:",omitempty"`
-}
-
-// Copy makes a copy of the endpoint ipam config
-func (cfg *EndpointIPAMConfig) Copy() *EndpointIPAMConfig {
-	cfgCopy := *cfg
-	cfgCopy.LinkLocalIPs = make([]string, 0, len(cfg.LinkLocalIPs))
-	cfgCopy.LinkLocalIPs = append(cfgCopy.LinkLocalIPs, cfg.LinkLocalIPs...)
-	return &cfgCopy
-}
-
-// PeerInfo represents one peer of an overlay network
-type PeerInfo struct {
-	Name string
-	IP   string
-}
-
-// EndpointSettings stores the network endpoint details
-type EndpointSettings struct {
-	// Configurations
-	IPAMConfig *EndpointIPAMConfig
-	Links      []string
-	Aliases    []string
-	// Operational data
-	NetworkID           string
-	EndpointID          string
-	Gateway             string
-	IPAddress           string
-	IPPrefixLen         int
-	IPv6Gateway         string
-	GlobalIPv6Address   string
-	GlobalIPv6PrefixLen int
-	MacAddress          string
-	DriverOpts          map[string]string
-}
-
-// Task carries the information about one backend task
-type Task struct {
-	Name       string
-	EndpointID string
-	EndpointIP string
-	Info       map[string]string
-}
-
-// ServiceInfo represents service parameters with the list of service's tasks
-type ServiceInfo struct {
-	VIP          string
-	Ports        []string
-	LocalLBIndex int
-	Tasks        []Task
-}
-
-// Copy makes a deep copy of `EndpointSettings`
-func (es *EndpointSettings) Copy() *EndpointSettings {
-	epCopy := *es
-	if es.IPAMConfig != nil {
-		epCopy.IPAMConfig = es.IPAMConfig.Copy()
-	}
-
-	if es.Links != nil {
-		links := make([]string, 0, len(es.Links))
-		epCopy.Links = append(links, es.Links...)
-	}
-
-	if es.Aliases != nil {
-		aliases := make([]string, 0, len(es.Aliases))
-		epCopy.Aliases = append(aliases, es.Aliases...)
-	}
-	return &epCopy
-}
-
-// NetworkingConfig represents the container's networking configuration for each of its interfaces
-// Carries the networking configs specified in the `docker run` and `docker network connect` commands
-type NetworkingConfig struct {
-	EndpointsConfig map[string]*EndpointSettings // Endpoint configs for each connecting network
-}
-
-// ConfigReference specifies the source which provides a network's configuration
-type ConfigReference struct {
-	Network string
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin.go b/vendor/github.com/docker/docker/api/types/plugin.go
deleted file mode 100644
index cab333e01a..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin.go
+++ /dev/null
@@ -1,200 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// Plugin A plugin for the Engine API
-// swagger:model Plugin
-type Plugin struct {
-
-	// config
-	// Required: true
-	Config PluginConfig `json:"Config"`
-
-	// True if the plugin is running. False if the plugin is not running, only installed.
-	// Required: true
-	Enabled bool `json:"Enabled"`
-
-	// Id
-	ID string `json:"Id,omitempty"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-
-	// plugin remote reference used to push/pull the plugin
-	PluginReference string `json:"PluginReference,omitempty"`
-
-	// settings
-	// Required: true
-	Settings PluginSettings `json:"Settings"`
-}
-
-// PluginConfig The config of a plugin.
-// swagger:model PluginConfig
-type PluginConfig struct {
-
-	// args
-	// Required: true
-	Args PluginConfigArgs `json:"Args"`
-
-	// description
-	// Required: true
-	Description string `json:"Description"`
-
-	// Docker Version used to create the plugin
-	DockerVersion string `json:"DockerVersion,omitempty"`
-
-	// documentation
-	// Required: true
-	Documentation string `json:"Documentation"`
-
-	// entrypoint
-	// Required: true
-	Entrypoint []string `json:"Entrypoint"`
-
-	// env
-	// Required: true
-	Env []PluginEnv `json:"Env"`
-
-	// interface
-	// Required: true
-	Interface PluginConfigInterface `json:"Interface"`
-
-	// ipc host
-	// Required: true
-	IpcHost bool `json:"IpcHost"`
-
-	// linux
-	// Required: true
-	Linux PluginConfigLinux `json:"Linux"`
-
-	// mounts
-	// Required: true
-	Mounts []PluginMount `json:"Mounts"`
-
-	// network
-	// Required: true
-	Network PluginConfigNetwork `json:"Network"`
-
-	// pid host
-	// Required: true
-	PidHost bool `json:"PidHost"`
-
-	// propagated mount
-	// Required: true
-	PropagatedMount string `json:"PropagatedMount"`
-
-	// user
-	User PluginConfigUser `json:"User,omitempty"`
-
-	// work dir
-	// Required: true
-	WorkDir string `json:"WorkDir"`
-
-	// rootfs
-	Rootfs *PluginConfigRootfs `json:"rootfs,omitempty"`
-}
-
-// PluginConfigArgs plugin config args
-// swagger:model PluginConfigArgs
-type PluginConfigArgs struct {
-
-	// description
-	// Required: true
-	Description string `json:"Description"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-
-	// settable
-	// Required: true
-	Settable []string `json:"Settable"`
-
-	// value
-	// Required: true
-	Value []string `json:"Value"`
-}
-
-// PluginConfigInterface The interface between Docker and the plugin
-// swagger:model PluginConfigInterface
-type PluginConfigInterface struct {
-
-	// socket
-	// Required: true
-	Socket string `json:"Socket"`
-
-	// types
-	// Required: true
-	Types []PluginInterfaceType `json:"Types"`
-}
-
-// PluginConfigLinux plugin config linux
-// swagger:model PluginConfigLinux
-type PluginConfigLinux struct {
-
-	// allow all devices
-	// Required: true
-	AllowAllDevices bool `json:"AllowAllDevices"`
-
-	// capabilities
-	// Required: true
-	Capabilities []string `json:"Capabilities"`
-
-	// devices
-	// Required: true
-	Devices []PluginDevice `json:"Devices"`
-}
-
-// PluginConfigNetwork plugin config network
-// swagger:model PluginConfigNetwork
-type PluginConfigNetwork struct {
-
-	// type
-	// Required: true
-	Type string `json:"Type"`
-}
-
-// PluginConfigRootfs plugin config rootfs
-// swagger:model PluginConfigRootfs
-type PluginConfigRootfs struct {
-
-	// diff ids
-	DiffIds []string `json:"diff_ids"`
-
-	// type
-	Type string `json:"type,omitempty"`
-}
-
-// PluginConfigUser plugin config user
-// swagger:model PluginConfigUser
-type PluginConfigUser struct {
-
-	// g ID
-	GID uint32 `json:"GID,omitempty"`
-
-	// UID
-	UID uint32 `json:"UID,omitempty"`
-}
-
-// PluginSettings Settings that can be modified by users.
-// swagger:model PluginSettings
-type PluginSettings struct {
-
-	// args
-	// Required: true
-	Args []string `json:"Args"`
-
-	// devices
-	// Required: true
-	Devices []PluginDevice `json:"Devices"`
-
-	// env
-	// Required: true
-	Env []string `json:"Env"`
-
-	// mounts
-	// Required: true
-	Mounts []PluginMount `json:"Mounts"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_device.go b/vendor/github.com/docker/docker/api/types/plugin_device.go
deleted file mode 100644
index 5699010675..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin_device.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// PluginDevice plugin device
-// swagger:model PluginDevice
-type PluginDevice struct {
-
-	// description
-	// Required: true
-	Description string `json:"Description"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-
-	// path
-	// Required: true
-	Path *string `json:"Path"`
-
-	// settable
-	// Required: true
-	Settable []string `json:"Settable"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_env.go b/vendor/github.com/docker/docker/api/types/plugin_env.go
deleted file mode 100644
index 32962dc2eb..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin_env.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// PluginEnv plugin env
-// swagger:model PluginEnv
-type PluginEnv struct {
-
-	// description
-	// Required: true
-	Description string `json:"Description"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-
-	// settable
-	// Required: true
-	Settable []string `json:"Settable"`
-
-	// value
-	// Required: true
-	Value *string `json:"Value"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_interface_type.go b/vendor/github.com/docker/docker/api/types/plugin_interface_type.go
deleted file mode 100644
index c82f204e87..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin_interface_type.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// PluginInterfaceType plugin interface type
-// swagger:model PluginInterfaceType
-type PluginInterfaceType struct {
-
-	// capability
-	// Required: true
-	Capability string `json:"Capability"`
-
-	// prefix
-	// Required: true
-	Prefix string `json:"Prefix"`
-
-	// version
-	// Required: true
-	Version string `json:"Version"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_mount.go b/vendor/github.com/docker/docker/api/types/plugin_mount.go
deleted file mode 100644
index 5c031cf8b5..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin_mount.go
+++ /dev/null
@@ -1,37 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// PluginMount plugin mount
-// swagger:model PluginMount
-type PluginMount struct {
-
-	// description
-	// Required: true
-	Description string `json:"Description"`
-
-	// destination
-	// Required: true
-	Destination string `json:"Destination"`
-
-	// name
-	// Required: true
-	Name string `json:"Name"`
-
-	// options
-	// Required: true
-	Options []string `json:"Options"`
-
-	// settable
-	// Required: true
-	Settable []string `json:"Settable"`
-
-	// source
-	// Required: true
-	Source *string `json:"Source"`
-
-	// type
-	// Required: true
-	Type string `json:"Type"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_responses.go b/vendor/github.com/docker/docker/api/types/plugin_responses.go
deleted file mode 100644
index 60d1fb5ad8..0000000000
--- a/vendor/github.com/docker/docker/api/types/plugin_responses.go
+++ /dev/null
@@ -1,71 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-import (
-	"encoding/json"
-	"fmt"
-	"sort"
-)
-
-// PluginsListResponse contains the response for the Engine API
-type PluginsListResponse []*Plugin
-
-// UnmarshalJSON implements json.Unmarshaler for PluginInterfaceType
-func (t *PluginInterfaceType) UnmarshalJSON(p []byte) error {
-	versionIndex := len(p)
-	prefixIndex := 0
-	if len(p) < 2 || p[0] != '"' || p[len(p)-1] != '"' {
-		return fmt.Errorf("%q is not a plugin interface type", p)
-	}
-	p = p[1 : len(p)-1]
-loop:
-	for i, b := range p {
-		switch b {
-		case '.':
-			prefixIndex = i
-		case '/':
-			versionIndex = i
-			break loop
-		}
-	}
-	t.Prefix = string(p[:prefixIndex])
-	t.Capability = string(p[prefixIndex+1 : versionIndex])
-	if versionIndex < len(p) {
-		t.Version = string(p[versionIndex+1:])
-	}
-	return nil
-}
-
-// MarshalJSON implements json.Marshaler for PluginInterfaceType
-func (t *PluginInterfaceType) MarshalJSON() ([]byte, error) {
-	return json.Marshal(t.String())
-}
-
-// String implements fmt.Stringer for PluginInterfaceType
-func (t PluginInterfaceType) String() string {
-	return fmt.Sprintf("%s.%s/%s", t.Prefix, t.Capability, t.Version)
-}
-
-// PluginPrivilege describes a permission the user has to accept
-// upon installing a plugin.
-type PluginPrivilege struct {
-	Name        string
-	Description string
-	Value       []string
-}
-
-// PluginPrivileges is a list of PluginPrivilege
-type PluginPrivileges []PluginPrivilege
-
-func (s PluginPrivileges) Len() int {
-	return len(s)
-}
-
-func (s PluginPrivileges) Less(i, j int) bool {
-	return s[i].Name < s[j].Name
-}
-
-func (s PluginPrivileges) Swap(i, j int) {
-	sort.Strings(s[i].Value)
-	sort.Strings(s[j].Value)
-	s[i], s[j] = s[j], s[i]
-}
diff --git a/vendor/github.com/docker/docker/api/types/port.go b/vendor/github.com/docker/docker/api/types/port.go
deleted file mode 100644
index ad52d46d56..0000000000
--- a/vendor/github.com/docker/docker/api/types/port.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// Port An open port on a container
-// swagger:model Port
-type Port struct {
-
-	// IP
-	IP string `json:"IP,omitempty"`
-
-	// Port on the container
-	// Required: true
-	PrivatePort uint16 `json:"PrivatePort"`
-
-	// Port exposed on the host
-	PublicPort uint16 `json:"PublicPort,omitempty"`
-
-	// type
-	// Required: true
-	Type string `json:"Type"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/registry/authenticate.go b/vendor/github.com/docker/docker/api/types/registry/authenticate.go
deleted file mode 100644
index f0a2113e40..0000000000
--- a/vendor/github.com/docker/docker/api/types/registry/authenticate.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package registry // import "github.com/docker/docker/api/types/registry"
-
-// ----------------------------------------------------------------------------
-// DO NOT EDIT THIS FILE
-// This file was generated by `swagger generate operation`
-//
-// See hack/generate-swagger-api.sh
-// ----------------------------------------------------------------------------
-
-// AuthenticateOKBody authenticate o k body
-// swagger:model AuthenticateOKBody
-type AuthenticateOKBody struct {
-
-	// An opaque token used to authenticate a user after a successful login
-	// Required: true
-	IdentityToken string `json:"IdentityToken"`
-
-	// The status of the authentication
-	// Required: true
-	Status string `json:"Status"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/registry/registry.go b/vendor/github.com/docker/docker/api/types/registry/registry.go
deleted file mode 100644
index 8789ad3b32..0000000000
--- a/vendor/github.com/docker/docker/api/types/registry/registry.go
+++ /dev/null
@@ -1,119 +0,0 @@
-package registry // import "github.com/docker/docker/api/types/registry"
-
-import (
-	"encoding/json"
-	"net"
-
-	"github.com/opencontainers/image-spec/specs-go/v1"
-)
-
-// ServiceConfig stores daemon registry services configuration.
-type ServiceConfig struct {
-	AllowNondistributableArtifactsCIDRs     []*NetIPNet
-	AllowNondistributableArtifactsHostnames []string
-	InsecureRegistryCIDRs                   []*NetIPNet           `json:"InsecureRegistryCIDRs"`
-	IndexConfigs                            map[string]*IndexInfo `json:"IndexConfigs"`
-	Mirrors                                 []string
-}
-
-// NetIPNet is the net.IPNet type, which can be marshalled and
-// unmarshalled to JSON
-type NetIPNet net.IPNet
-
-// String returns the CIDR notation of ipnet
-func (ipnet *NetIPNet) String() string {
-	return (*net.IPNet)(ipnet).String()
-}
-
-// MarshalJSON returns the JSON representation of the IPNet
-func (ipnet *NetIPNet) MarshalJSON() ([]byte, error) {
-	return json.Marshal((*net.IPNet)(ipnet).String())
-}
-
-// UnmarshalJSON sets the IPNet from a byte array of JSON
-func (ipnet *NetIPNet) UnmarshalJSON(b []byte) (err error) {
-	var ipnetStr string
-	if err = json.Unmarshal(b, &ipnetStr); err == nil {
-		var cidr *net.IPNet
-		if _, cidr, err = net.ParseCIDR(ipnetStr); err == nil {
-			*ipnet = NetIPNet(*cidr)
-		}
-	}
-	return
-}
-
-// IndexInfo contains information about a registry
-//
-// RepositoryInfo Examples:
-// {
-//   "Index" : {
-//     "Name" : "docker.io",
-//     "Mirrors" : ["https://registry-2.docker.io/v1/", "https://registry-3.docker.io/v1/"],
-//     "Secure" : true,
-//     "Official" : true,
-//   },
-//   "RemoteName" : "library/debian",
-//   "LocalName" : "debian",
-//   "CanonicalName" : "docker.io/debian"
-//   "Official" : true,
-// }
-//
-// {
-//   "Index" : {
-//     "Name" : "127.0.0.1:5000",
-//     "Mirrors" : [],
-//     "Secure" : false,
-//     "Official" : false,
-//   },
-//   "RemoteName" : "user/repo",
-//   "LocalName" : "127.0.0.1:5000/user/repo",
-//   "CanonicalName" : "127.0.0.1:5000/user/repo",
-//   "Official" : false,
-// }
-type IndexInfo struct {
-	// Name is the name of the registry, such as "docker.io"
-	Name string
-	// Mirrors is a list of mirrors, expressed as URIs
-	Mirrors []string
-	// Secure is set to false if the registry is part of the list of
-	// insecure registries. Insecure registries accept HTTP and/or accept
-	// HTTPS with certificates from unknown CAs.
-	Secure bool
-	// Official indicates whether this is an official registry
-	Official bool
-}
-
-// SearchResult describes a search result returned from a registry
-type SearchResult struct {
-	// StarCount indicates the number of stars this repository has
-	StarCount int `json:"star_count"`
-	// IsOfficial is true if the result is from an official repository.
-	IsOfficial bool `json:"is_official"`
-	// Name is the name of the repository
-	Name string `json:"name"`
-	// IsAutomated indicates whether the result is automated
-	IsAutomated bool `json:"is_automated"`
-	// Description is a textual description of the repository
-	Description string `json:"description"`
-}
-
-// SearchResults lists a collection search results returned from a registry
-type SearchResults struct {
-	// Query contains the query string that generated the search results
-	Query string `json:"query"`
-	// NumResults indicates the number of results the query returned
-	NumResults int `json:"num_results"`
-	// Results is a slice containing the actual results for the search
-	Results []SearchResult `json:"results"`
-}
-
-// DistributionInspect describes the result obtained from contacting the
-// registry to retrieve image metadata
-type DistributionInspect struct {
-	// Descriptor contains information about the manifest, including
-	// the content addressable digest
-	Descriptor v1.Descriptor
-	// Platforms contains the list of platforms supported by the image,
-	// obtained by parsing the manifest
-	Platforms []v1.Platform
-}
diff --git a/vendor/github.com/docker/docker/api/types/seccomp.go b/vendor/github.com/docker/docker/api/types/seccomp.go
deleted file mode 100644
index 67a41e1a89..0000000000
--- a/vendor/github.com/docker/docker/api/types/seccomp.go
+++ /dev/null
@@ -1,93 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-// Seccomp represents the config for a seccomp profile for syscall restriction.
-type Seccomp struct {
-	DefaultAction Action `json:"defaultAction"`
-	// Architectures is kept to maintain backward compatibility with the old
-	// seccomp profile.
-	Architectures []Arch         `json:"architectures,omitempty"`
-	ArchMap       []Architecture `json:"archMap,omitempty"`
-	Syscalls      []*Syscall     `json:"syscalls"`
-}
-
-// Architecture is used to represent a specific architecture
-// and its sub-architectures
-type Architecture struct {
-	Arch      Arch   `json:"architecture"`
-	SubArches []Arch `json:"subArchitectures"`
-}
-
-// Arch used for architectures
-type Arch string
-
-// Additional architectures permitted to be used for system calls
-// By default only the native architecture of the kernel is permitted
-const (
-	ArchX86         Arch = "SCMP_ARCH_X86"
-	ArchX86_64      Arch = "SCMP_ARCH_X86_64"
-	ArchX32         Arch = "SCMP_ARCH_X32"
-	ArchARM         Arch = "SCMP_ARCH_ARM"
-	ArchAARCH64     Arch = "SCMP_ARCH_AARCH64"
-	ArchMIPS        Arch = "SCMP_ARCH_MIPS"
-	ArchMIPS64      Arch = "SCMP_ARCH_MIPS64"
-	ArchMIPS64N32   Arch = "SCMP_ARCH_MIPS64N32"
-	ArchMIPSEL      Arch = "SCMP_ARCH_MIPSEL"
-	ArchMIPSEL64    Arch = "SCMP_ARCH_MIPSEL64"
-	ArchMIPSEL64N32 Arch = "SCMP_ARCH_MIPSEL64N32"
-	ArchPPC         Arch = "SCMP_ARCH_PPC"
-	ArchPPC64       Arch = "SCMP_ARCH_PPC64"
-	ArchPPC64LE     Arch = "SCMP_ARCH_PPC64LE"
-	ArchS390        Arch = "SCMP_ARCH_S390"
-	ArchS390X       Arch = "SCMP_ARCH_S390X"
-)
-
-// Action taken upon Seccomp rule match
-type Action string
-
-// Define actions for Seccomp rules
-const (
-	ActKill  Action = "SCMP_ACT_KILL"
-	ActTrap  Action = "SCMP_ACT_TRAP"
-	ActErrno Action = "SCMP_ACT_ERRNO"
-	ActTrace Action = "SCMP_ACT_TRACE"
-	ActAllow Action = "SCMP_ACT_ALLOW"
-)
-
-// Operator used to match syscall arguments in Seccomp
-type Operator string
-
-// Define operators for syscall arguments in Seccomp
-const (
-	OpNotEqual     Operator = "SCMP_CMP_NE"
-	OpLessThan     Operator = "SCMP_CMP_LT"
-	OpLessEqual    Operator = "SCMP_CMP_LE"
-	OpEqualTo      Operator = "SCMP_CMP_EQ"
-	OpGreaterEqual Operator = "SCMP_CMP_GE"
-	OpGreaterThan  Operator = "SCMP_CMP_GT"
-	OpMaskedEqual  Operator = "SCMP_CMP_MASKED_EQ"
-)
-
-// Arg used for matching specific syscall arguments in Seccomp
-type Arg struct {
-	Index    uint     `json:"index"`
-	Value    uint64   `json:"value"`
-	ValueTwo uint64   `json:"valueTwo"`
-	Op       Operator `json:"op"`
-}
-
-// Filter is used to conditionally apply Seccomp rules
-type Filter struct {
-	Caps   []string `json:"caps,omitempty"`
-	Arches []string `json:"arches,omitempty"`
-}
-
-// Syscall is used to match a group of syscalls in Seccomp
-type Syscall struct {
-	Name     string   `json:"name,omitempty"`
-	Names    []string `json:"names,omitempty"`
-	Action   Action   `json:"action"`
-	Args     []*Arg   `json:"args"`
-	Comment  string   `json:"comment"`
-	Includes Filter   `json:"includes"`
-	Excludes Filter   `json:"excludes"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/service_update_response.go b/vendor/github.com/docker/docker/api/types/service_update_response.go
deleted file mode 100644
index 74ea64b1bb..0000000000
--- a/vendor/github.com/docker/docker/api/types/service_update_response.go
+++ /dev/null
@@ -1,12 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// ServiceUpdateResponse service update response
-// swagger:model ServiceUpdateResponse
-type ServiceUpdateResponse struct {
-
-	// Optional warning messages
-	Warnings []string `json:"Warnings"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/stats.go b/vendor/github.com/docker/docker/api/types/stats.go
deleted file mode 100644
index 60175c0613..0000000000
--- a/vendor/github.com/docker/docker/api/types/stats.go
+++ /dev/null
@@ -1,181 +0,0 @@
-// Package types is used for API stability in the types and response to the
-// consumers of the API stats endpoint.
-package types // import "github.com/docker/docker/api/types"
-
-import "time"
-
-// ThrottlingData stores CPU throttling stats of one running container.
-// Not used on Windows.
-type ThrottlingData struct {
-	// Number of periods with throttling active
-	Periods uint64 `json:"periods"`
-	// Number of periods when the container hits its throttling limit.
-	ThrottledPeriods uint64 `json:"throttled_periods"`
-	// Aggregate time the container was throttled for in nanoseconds.
-	ThrottledTime uint64 `json:"throttled_time"`
-}
-
-// CPUUsage stores All CPU stats aggregated since container inception.
-type CPUUsage struct {
-	// Total CPU time consumed.
-	// Units: nanoseconds (Linux)
-	// Units: 100's of nanoseconds (Windows)
-	TotalUsage uint64 `json:"total_usage"`
-
-	// Total CPU time consumed per core (Linux). Not used on Windows.
-	// Units: nanoseconds.
-	PercpuUsage []uint64 `json:"percpu_usage,omitempty"`
-
-	// Time spent by tasks of the cgroup in kernel mode (Linux).
-	// Time spent by all container processes in kernel mode (Windows).
-	// Units: nanoseconds (Linux).
-	// Units: 100's of nanoseconds (Windows). Not populated for Hyper-V Containers.
-	UsageInKernelmode uint64 `json:"usage_in_kernelmode"`
-
-	// Time spent by tasks of the cgroup in user mode (Linux).
-	// Time spent by all container processes in user mode (Windows).
-	// Units: nanoseconds (Linux).
-	// Units: 100's of nanoseconds (Windows). Not populated for Hyper-V Containers
-	UsageInUsermode uint64 `json:"usage_in_usermode"`
-}
-
-// CPUStats aggregates and wraps all CPU related info of container
-type CPUStats struct {
-	// CPU Usage. Linux and Windows.
-	CPUUsage CPUUsage `json:"cpu_usage"`
-
-	// System Usage. Linux only.
-	SystemUsage uint64 `json:"system_cpu_usage,omitempty"`
-
-	// Online CPUs. Linux only.
-	OnlineCPUs uint32 `json:"online_cpus,omitempty"`
-
-	// Throttling Data. Linux only.
-	ThrottlingData ThrottlingData `json:"throttling_data,omitempty"`
-}
-
-// MemoryStats aggregates all memory stats since container inception on Linux.
-// Windows returns stats for commit and private working set only.
-type MemoryStats struct {
-	// Linux Memory Stats
-
-	// current res_counter usage for memory
-	Usage uint64 `json:"usage,omitempty"`
-	// maximum usage ever recorded.
-	MaxUsage uint64 `json:"max_usage,omitempty"`
-	// TODO(vishh): Export these as stronger types.
-	// all the stats exported via memory.stat.
-	Stats map[string]uint64 `json:"stats,omitempty"`
-	// number of times memory usage hits limits.
-	Failcnt uint64 `json:"failcnt,omitempty"`
-	Limit   uint64 `json:"limit,omitempty"`
-
-	// Windows Memory Stats
-	// See https://technet.microsoft.com/en-us/magazine/ff382715.aspx
-
-	// committed bytes
-	Commit uint64 `json:"commitbytes,omitempty"`
-	// peak committed bytes
-	CommitPeak uint64 `json:"commitpeakbytes,omitempty"`
-	// private working set
-	PrivateWorkingSet uint64 `json:"privateworkingset,omitempty"`
-}
-
-// BlkioStatEntry is one small entity to store a piece of Blkio stats
-// Not used on Windows.
-type BlkioStatEntry struct {
-	Major uint64 `json:"major"`
-	Minor uint64 `json:"minor"`
-	Op    string `json:"op"`
-	Value uint64 `json:"value"`
-}
-
-// BlkioStats stores All IO service stats for data read and write.
-// This is a Linux specific structure as the differences between expressing
-// block I/O on Windows and Linux are sufficiently significant to make
-// little sense attempting to morph into a combined structure.
-type BlkioStats struct {
-	// number of bytes transferred to and from the block device
-	IoServiceBytesRecursive []BlkioStatEntry `json:"io_service_bytes_recursive"`
-	IoServicedRecursive     []BlkioStatEntry `json:"io_serviced_recursive"`
-	IoQueuedRecursive       []BlkioStatEntry `json:"io_queue_recursive"`
-	IoServiceTimeRecursive  []BlkioStatEntry `json:"io_service_time_recursive"`
-	IoWaitTimeRecursive     []BlkioStatEntry `json:"io_wait_time_recursive"`
-	IoMergedRecursive       []BlkioStatEntry `json:"io_merged_recursive"`
-	IoTimeRecursive         []BlkioStatEntry `json:"io_time_recursive"`
-	SectorsRecursive        []BlkioStatEntry `json:"sectors_recursive"`
-}
-
-// StorageStats is the disk I/O stats for read/write on Windows.
-type StorageStats struct {
-	ReadCountNormalized  uint64 `json:"read_count_normalized,omitempty"`
-	ReadSizeBytes        uint64 `json:"read_size_bytes,omitempty"`
-	WriteCountNormalized uint64 `json:"write_count_normalized,omitempty"`
-	WriteSizeBytes       uint64 `json:"write_size_bytes,omitempty"`
-}
-
-// NetworkStats aggregates the network stats of one container
-type NetworkStats struct {
-	// Bytes received. Windows and Linux.
-	RxBytes uint64 `json:"rx_bytes"`
-	// Packets received. Windows and Linux.
-	RxPackets uint64 `json:"rx_packets"`
-	// Received errors. Not used on Windows. Note that we dont `omitempty` this
-	// field as it is expected in the >=v1.21 API stats structure.
-	RxErrors uint64 `json:"rx_errors"`
-	// Incoming packets dropped. Windows and Linux.
-	RxDropped uint64 `json:"rx_dropped"`
-	// Bytes sent. Windows and Linux.
-	TxBytes uint64 `json:"tx_bytes"`
-	// Packets sent. Windows and Linux.
-	TxPackets uint64 `json:"tx_packets"`
-	// Sent errors. Not used on Windows. Note that we dont `omitempty` this
-	// field as it is expected in the >=v1.21 API stats structure.
-	TxErrors uint64 `json:"tx_errors"`
-	// Outgoing packets dropped. Windows and Linux.
-	TxDropped uint64 `json:"tx_dropped"`
-	// Endpoint ID. Not used on Linux.
-	EndpointID string `json:"endpoint_id,omitempty"`
-	// Instance ID. Not used on Linux.
-	InstanceID string `json:"instance_id,omitempty"`
-}
-
-// PidsStats contains the stats of a container's pids
-type PidsStats struct {
-	// Current is the number of pids in the cgroup
-	Current uint64 `json:"current,omitempty"`
-	// Limit is the hard limit on the number of pids in the cgroup.
-	// A "Limit" of 0 means that there is no limit.
-	Limit uint64 `json:"limit,omitempty"`
-}
-
-// Stats is Ultimate struct aggregating all types of stats of one container
-type Stats struct {
-	// Common stats
-	Read    time.Time `json:"read"`
-	PreRead time.Time `json:"preread"`
-
-	// Linux specific stats, not populated on Windows.
-	PidsStats  PidsStats  `json:"pids_stats,omitempty"`
-	BlkioStats BlkioStats `json:"blkio_stats,omitempty"`
-
-	// Windows specific stats, not populated on Linux.
-	NumProcs     uint32       `json:"num_procs"`
-	StorageStats StorageStats `json:"storage_stats,omitempty"`
-
-	// Shared stats
-	CPUStats    CPUStats    `json:"cpu_stats,omitempty"`
-	PreCPUStats CPUStats    `json:"precpu_stats,omitempty"` // "Pre"="Previous"
-	MemoryStats MemoryStats `json:"memory_stats,omitempty"`
-}
-
-// StatsJSON is newly used Networks
-type StatsJSON struct {
-	Stats
-
-	Name string `json:"name,omitempty"`
-	ID   string `json:"id,omitempty"`
-
-	// Networks request version >=1.21
-	Networks map[string]NetworkStats `json:"networks,omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/common.go b/vendor/github.com/docker/docker/api/types/swarm/common.go
deleted file mode 100644
index ef020f458b..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/common.go
+++ /dev/null
@@ -1,40 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import "time"
-
-// Version represents the internal object version.
-type Version struct {
-	Index uint64 `json:",omitempty"`
-}
-
-// Meta is a base object inherited by most of the other once.
-type Meta struct {
-	Version   Version   `json:",omitempty"`
-	CreatedAt time.Time `json:",omitempty"`
-	UpdatedAt time.Time `json:",omitempty"`
-}
-
-// Annotations represents how to describe an object.
-type Annotations struct {
-	Name   string            `json:",omitempty"`
-	Labels map[string]string `json:"Labels"`
-}
-
-// Driver represents a driver (network, logging, secrets backend).
-type Driver struct {
-	Name    string            `json:",omitempty"`
-	Options map[string]string `json:",omitempty"`
-}
-
-// TLSInfo represents the TLS information about what CA certificate is trusted,
-// and who the issuer for a TLS certificate is
-type TLSInfo struct {
-	// TrustRoot is the trusted CA root certificate in PEM format
-	TrustRoot string `json:",omitempty"`
-
-	// CertIssuer is the raw subject bytes of the issuer
-	CertIssuerSubject []byte `json:",omitempty"`
-
-	// CertIssuerPublicKey is the raw public key bytes of the issuer
-	CertIssuerPublicKey []byte `json:",omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/config.go b/vendor/github.com/docker/docker/api/types/swarm/config.go
deleted file mode 100644
index c1fdf3b3e4..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/config.go
+++ /dev/null
@@ -1,31 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import "os"
-
-// Config represents a config.
-type Config struct {
-	ID string
-	Meta
-	Spec ConfigSpec
-}
-
-// ConfigSpec represents a config specification from a config in swarm
-type ConfigSpec struct {
-	Annotations
-	Data []byte `json:",omitempty"`
-}
-
-// ConfigReferenceFileTarget is a file target in a config reference
-type ConfigReferenceFileTarget struct {
-	Name string
-	UID  string
-	GID  string
-	Mode os.FileMode
-}
-
-// ConfigReference is a reference to a config in swarm
-type ConfigReference struct {
-	File       *ConfigReferenceFileTarget
-	ConfigID   string
-	ConfigName string
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/container.go b/vendor/github.com/docker/docker/api/types/swarm/container.go
deleted file mode 100644
index 0041653c9d..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/container.go
+++ /dev/null
@@ -1,73 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import (
-	"time"
-
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/mount"
-)
-
-// DNSConfig specifies DNS related configurations in resolver configuration file (resolv.conf)
-// Detailed documentation is available in:
-// http://man7.org/linux/man-pages/man5/resolv.conf.5.html
-// `nameserver`, `search`, `options` have been supported.
-// TODO: `domain` is not supported yet.
-type DNSConfig struct {
-	// Nameservers specifies the IP addresses of the name servers
-	Nameservers []string `json:",omitempty"`
-	// Search specifies the search list for host-name lookup
-	Search []string `json:",omitempty"`
-	// Options allows certain internal resolver variables to be modified
-	Options []string `json:",omitempty"`
-}
-
-// SELinuxContext contains the SELinux labels of the container.
-type SELinuxContext struct {
-	Disable bool
-
-	User  string
-	Role  string
-	Type  string
-	Level string
-}
-
-// CredentialSpec for managed service account (Windows only)
-type CredentialSpec struct {
-	File     string
-	Registry string
-}
-
-// Privileges defines the security options for the container.
-type Privileges struct {
-	CredentialSpec *CredentialSpec
-	SELinuxContext *SELinuxContext
-}
-
-// ContainerSpec represents the spec of a container.
-type ContainerSpec struct {
-	Image           string                  `json:",omitempty"`
-	Labels          map[string]string       `json:",omitempty"`
-	Command         []string                `json:",omitempty"`
-	Args            []string                `json:",omitempty"`
-	Hostname        string                  `json:",omitempty"`
-	Env             []string                `json:",omitempty"`
-	Dir             string                  `json:",omitempty"`
-	User            string                  `json:",omitempty"`
-	Groups          []string                `json:",omitempty"`
-	Privileges      *Privileges             `json:",omitempty"`
-	StopSignal      string                  `json:",omitempty"`
-	TTY             bool                    `json:",omitempty"`
-	OpenStdin       bool                    `json:",omitempty"`
-	ReadOnly        bool                    `json:",omitempty"`
-	Mounts          []mount.Mount           `json:",omitempty"`
-	StopGracePeriod *time.Duration          `json:",omitempty"`
-	Healthcheck     *container.HealthConfig `json:",omitempty"`
-	// The format of extra hosts on swarmkit is specified in:
-	// http://man7.org/linux/man-pages/man5/hosts.5.html
-	//    IP_address canonical_hostname [aliases...]
-	Hosts     []string            `json:",omitempty"`
-	DNSConfig *DNSConfig          `json:",omitempty"`
-	Secrets   []*SecretReference  `json:",omitempty"`
-	Configs   []*ConfigReference  `json:",omitempty"`
-	Isolation container.Isolation `json:",omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/network.go b/vendor/github.com/docker/docker/api/types/swarm/network.go
deleted file mode 100644
index fd9b1a52c2..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/network.go
+++ /dev/null
@@ -1,119 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import (
-	"github.com/docker/docker/api/types/network"
-)
-
-// Endpoint represents an endpoint.
-type Endpoint struct {
-	Spec       EndpointSpec        `json:",omitempty"`
-	Ports      []PortConfig        `json:",omitempty"`
-	VirtualIPs []EndpointVirtualIP `json:",omitempty"`
-}
-
-// EndpointSpec represents the spec of an endpoint.
-type EndpointSpec struct {
-	Mode  ResolutionMode `json:",omitempty"`
-	Ports []PortConfig   `json:",omitempty"`
-}
-
-// ResolutionMode represents a resolution mode.
-type ResolutionMode string
-
-const (
-	// ResolutionModeVIP VIP
-	ResolutionModeVIP ResolutionMode = "vip"
-	// ResolutionModeDNSRR DNSRR
-	ResolutionModeDNSRR ResolutionMode = "dnsrr"
-)
-
-// PortConfig represents the config of a port.
-type PortConfig struct {
-	Name     string             `json:",omitempty"`
-	Protocol PortConfigProtocol `json:",omitempty"`
-	// TargetPort is the port inside the container
-	TargetPort uint32 `json:",omitempty"`
-	// PublishedPort is the port on the swarm hosts
-	PublishedPort uint32 `json:",omitempty"`
-	// PublishMode is the mode in which port is published
-	PublishMode PortConfigPublishMode `json:",omitempty"`
-}
-
-// PortConfigPublishMode represents the mode in which the port is to
-// be published.
-type PortConfigPublishMode string
-
-const (
-	// PortConfigPublishModeIngress is used for ports published
-	// for ingress load balancing using routing mesh.
-	PortConfigPublishModeIngress PortConfigPublishMode = "ingress"
-	// PortConfigPublishModeHost is used for ports published
-	// for direct host level access on the host where the task is running.
-	PortConfigPublishModeHost PortConfigPublishMode = "host"
-)
-
-// PortConfigProtocol represents the protocol of a port.
-type PortConfigProtocol string
-
-const (
-	// TODO(stevvooe): These should be used generally, not just for PortConfig.
-
-	// PortConfigProtocolTCP TCP
-	PortConfigProtocolTCP PortConfigProtocol = "tcp"
-	// PortConfigProtocolUDP UDP
-	PortConfigProtocolUDP PortConfigProtocol = "udp"
-)
-
-// EndpointVirtualIP represents the virtual ip of a port.
-type EndpointVirtualIP struct {
-	NetworkID string `json:",omitempty"`
-	Addr      string `json:",omitempty"`
-}
-
-// Network represents a network.
-type Network struct {
-	ID string
-	Meta
-	Spec        NetworkSpec  `json:",omitempty"`
-	DriverState Driver       `json:",omitempty"`
-	IPAMOptions *IPAMOptions `json:",omitempty"`
-}
-
-// NetworkSpec represents the spec of a network.
-type NetworkSpec struct {
-	Annotations
-	DriverConfiguration *Driver                  `json:",omitempty"`
-	IPv6Enabled         bool                     `json:",omitempty"`
-	Internal            bool                     `json:",omitempty"`
-	Attachable          bool                     `json:",omitempty"`
-	Ingress             bool                     `json:",omitempty"`
-	IPAMOptions         *IPAMOptions             `json:",omitempty"`
-	ConfigFrom          *network.ConfigReference `json:",omitempty"`
-	Scope               string                   `json:",omitempty"`
-}
-
-// NetworkAttachmentConfig represents the configuration of a network attachment.
-type NetworkAttachmentConfig struct {
-	Target     string            `json:",omitempty"`
-	Aliases    []string          `json:",omitempty"`
-	DriverOpts map[string]string `json:",omitempty"`
-}
-
-// NetworkAttachment represents a network attachment.
-type NetworkAttachment struct {
-	Network   Network  `json:",omitempty"`
-	Addresses []string `json:",omitempty"`
-}
-
-// IPAMOptions represents ipam options.
-type IPAMOptions struct {
-	Driver  Driver       `json:",omitempty"`
-	Configs []IPAMConfig `json:",omitempty"`
-}
-
-// IPAMConfig represents ipam configuration.
-type IPAMConfig struct {
-	Subnet  string `json:",omitempty"`
-	Range   string `json:",omitempty"`
-	Gateway string `json:",omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/node.go b/vendor/github.com/docker/docker/api/types/swarm/node.go
deleted file mode 100644
index 1e30f5fa10..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/node.go
+++ /dev/null
@@ -1,115 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-// Node represents a node.
-type Node struct {
-	ID string
-	Meta
-	// Spec defines the desired state of the node as specified by the user.
-	// The system will honor this and will *never* modify it.
-	Spec NodeSpec `json:",omitempty"`
-	// Description encapsulates the properties of the Node as reported by the
-	// agent.
-	Description NodeDescription `json:",omitempty"`
-	// Status provides the current status of the node, as seen by the manager.
-	Status NodeStatus `json:",omitempty"`
-	// ManagerStatus provides the current status of the node's manager
-	// component, if the node is a manager.
-	ManagerStatus *ManagerStatus `json:",omitempty"`
-}
-
-// NodeSpec represents the spec of a node.
-type NodeSpec struct {
-	Annotations
-	Role         NodeRole         `json:",omitempty"`
-	Availability NodeAvailability `json:",omitempty"`
-}
-
-// NodeRole represents the role of a node.
-type NodeRole string
-
-const (
-	// NodeRoleWorker WORKER
-	NodeRoleWorker NodeRole = "worker"
-	// NodeRoleManager MANAGER
-	NodeRoleManager NodeRole = "manager"
-)
-
-// NodeAvailability represents the availability of a node.
-type NodeAvailability string
-
-const (
-	// NodeAvailabilityActive ACTIVE
-	NodeAvailabilityActive NodeAvailability = "active"
-	// NodeAvailabilityPause PAUSE
-	NodeAvailabilityPause NodeAvailability = "pause"
-	// NodeAvailabilityDrain DRAIN
-	NodeAvailabilityDrain NodeAvailability = "drain"
-)
-
-// NodeDescription represents the description of a node.
-type NodeDescription struct {
-	Hostname  string            `json:",omitempty"`
-	Platform  Platform          `json:",omitempty"`
-	Resources Resources         `json:",omitempty"`
-	Engine    EngineDescription `json:",omitempty"`
-	TLSInfo   TLSInfo           `json:",omitempty"`
-}
-
-// Platform represents the platform (Arch/OS).
-type Platform struct {
-	Architecture string `json:",omitempty"`
-	OS           string `json:",omitempty"`
-}
-
-// EngineDescription represents the description of an engine.
-type EngineDescription struct {
-	EngineVersion string              `json:",omitempty"`
-	Labels        map[string]string   `json:",omitempty"`
-	Plugins       []PluginDescription `json:",omitempty"`
-}
-
-// PluginDescription represents the description of an engine plugin.
-type PluginDescription struct {
-	Type string `json:",omitempty"`
-	Name string `json:",omitempty"`
-}
-
-// NodeStatus represents the status of a node.
-type NodeStatus struct {
-	State   NodeState `json:",omitempty"`
-	Message string    `json:",omitempty"`
-	Addr    string    `json:",omitempty"`
-}
-
-// Reachability represents the reachability of a node.
-type Reachability string
-
-const (
-	// ReachabilityUnknown UNKNOWN
-	ReachabilityUnknown Reachability = "unknown"
-	// ReachabilityUnreachable UNREACHABLE
-	ReachabilityUnreachable Reachability = "unreachable"
-	// ReachabilityReachable REACHABLE
-	ReachabilityReachable Reachability = "reachable"
-)
-
-// ManagerStatus represents the status of a manager.
-type ManagerStatus struct {
-	Leader       bool         `json:",omitempty"`
-	Reachability Reachability `json:",omitempty"`
-	Addr         string       `json:",omitempty"`
-}
-
-// NodeState represents the state of a node.
-type NodeState string
-
-const (
-	// NodeStateUnknown UNKNOWN
-	NodeStateUnknown NodeState = "unknown"
-	// NodeStateDown DOWN
-	NodeStateDown NodeState = "down"
-	// NodeStateReady READY
-	NodeStateReady NodeState = "ready"
-	// NodeStateDisconnected DISCONNECTED
-	NodeStateDisconnected NodeState = "disconnected"
-)
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime.go b/vendor/github.com/docker/docker/api/types/swarm/runtime.go
deleted file mode 100644
index 81b5f4cfd9..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/runtime.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-// RuntimeType is the type of runtime used for the TaskSpec
-type RuntimeType string
-
-// RuntimeURL is the proto type url
-type RuntimeURL string
-
-const (
-	// RuntimeContainer is the container based runtime
-	RuntimeContainer RuntimeType = "container"
-	// RuntimePlugin is the plugin based runtime
-	RuntimePlugin RuntimeType = "plugin"
-
-	// RuntimeURLContainer is the proto url for the container type
-	RuntimeURLContainer RuntimeURL = "types.docker.com/RuntimeContainer"
-	// RuntimeURLPlugin is the proto url for the plugin type
-	RuntimeURLPlugin RuntimeURL = "types.docker.com/RuntimePlugin"
-)
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go b/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
deleted file mode 100644
index 98c2806c31..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
+++ /dev/null
@@ -1,3 +0,0 @@
-//go:generate protoc -I . --gogofast_out=import_path=github.com/docker/docker/api/types/swarm/runtime:. plugin.proto
-
-package runtime // import "github.com/docker/docker/api/types/swarm/runtime"
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go b/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
deleted file mode 100644
index 1fdc9b0436..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
+++ /dev/null
@@ -1,712 +0,0 @@
-// Code generated by protoc-gen-gogo.
-// source: plugin.proto
-// DO NOT EDIT!
-
-/*
-	Package runtime is a generated protocol buffer package.
-
-	It is generated from these files:
-		plugin.proto
-
-	It has these top-level messages:
-		PluginSpec
-		PluginPrivilege
-*/
-package runtime
-
-import proto "github.com/gogo/protobuf/proto"
-import fmt "fmt"
-import math "math"
-
-import io "io"
-
-// Reference imports to suppress errors if they are not otherwise used.
-var _ = proto.Marshal
-var _ = fmt.Errorf
-var _ = math.Inf
-
-// This is a compile-time assertion to ensure that this generated file
-// is compatible with the proto package it is being compiled against.
-// A compilation error at this line likely means your copy of the
-// proto package needs to be updated.
-const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
-
-// PluginSpec defines the base payload which clients can specify for creating
-// a service with the plugin runtime.
-type PluginSpec struct {
-	Name       string             `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
-	Remote     string             `protobuf:"bytes,2,opt,name=remote,proto3" json:"remote,omitempty"`
-	Privileges []*PluginPrivilege `protobuf:"bytes,3,rep,name=privileges" json:"privileges,omitempty"`
-	Disabled   bool               `protobuf:"varint,4,opt,name=disabled,proto3" json:"disabled,omitempty"`
-}
-
-func (m *PluginSpec) Reset()                    { *m = PluginSpec{} }
-func (m *PluginSpec) String() string            { return proto.CompactTextString(m) }
-func (*PluginSpec) ProtoMessage()               {}
-func (*PluginSpec) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{0} }
-
-func (m *PluginSpec) GetName() string {
-	if m != nil {
-		return m.Name
-	}
-	return ""
-}
-
-func (m *PluginSpec) GetRemote() string {
-	if m != nil {
-		return m.Remote
-	}
-	return ""
-}
-
-func (m *PluginSpec) GetPrivileges() []*PluginPrivilege {
-	if m != nil {
-		return m.Privileges
-	}
-	return nil
-}
-
-func (m *PluginSpec) GetDisabled() bool {
-	if m != nil {
-		return m.Disabled
-	}
-	return false
-}
-
-// PluginPrivilege describes a permission the user has to accept
-// upon installing a plugin.
-type PluginPrivilege struct {
-	Name        string   `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
-	Description string   `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
-	Value       []string `protobuf:"bytes,3,rep,name=value" json:"value,omitempty"`
-}
-
-func (m *PluginPrivilege) Reset()                    { *m = PluginPrivilege{} }
-func (m *PluginPrivilege) String() string            { return proto.CompactTextString(m) }
-func (*PluginPrivilege) ProtoMessage()               {}
-func (*PluginPrivilege) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{1} }
-
-func (m *PluginPrivilege) GetName() string {
-	if m != nil {
-		return m.Name
-	}
-	return ""
-}
-
-func (m *PluginPrivilege) GetDescription() string {
-	if m != nil {
-		return m.Description
-	}
-	return ""
-}
-
-func (m *PluginPrivilege) GetValue() []string {
-	if m != nil {
-		return m.Value
-	}
-	return nil
-}
-
-func init() {
-	proto.RegisterType((*PluginSpec)(nil), "PluginSpec")
-	proto.RegisterType((*PluginPrivilege)(nil), "PluginPrivilege")
-}
-func (m *PluginSpec) Marshal() (dAtA []byte, err error) {
-	size := m.Size()
-	dAtA = make([]byte, size)
-	n, err := m.MarshalTo(dAtA)
-	if err != nil {
-		return nil, err
-	}
-	return dAtA[:n], nil
-}
-
-func (m *PluginSpec) MarshalTo(dAtA []byte) (int, error) {
-	var i int
-	_ = i
-	var l int
-	_ = l
-	if len(m.Name) > 0 {
-		dAtA[i] = 0xa
-		i++
-		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Name)))
-		i += copy(dAtA[i:], m.Name)
-	}
-	if len(m.Remote) > 0 {
-		dAtA[i] = 0x12
-		i++
-		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Remote)))
-		i += copy(dAtA[i:], m.Remote)
-	}
-	if len(m.Privileges) > 0 {
-		for _, msg := range m.Privileges {
-			dAtA[i] = 0x1a
-			i++
-			i = encodeVarintPlugin(dAtA, i, uint64(msg.Size()))
-			n, err := msg.MarshalTo(dAtA[i:])
-			if err != nil {
-				return 0, err
-			}
-			i += n
-		}
-	}
-	if m.Disabled {
-		dAtA[i] = 0x20
-		i++
-		if m.Disabled {
-			dAtA[i] = 1
-		} else {
-			dAtA[i] = 0
-		}
-		i++
-	}
-	return i, nil
-}
-
-func (m *PluginPrivilege) Marshal() (dAtA []byte, err error) {
-	size := m.Size()
-	dAtA = make([]byte, size)
-	n, err := m.MarshalTo(dAtA)
-	if err != nil {
-		return nil, err
-	}
-	return dAtA[:n], nil
-}
-
-func (m *PluginPrivilege) MarshalTo(dAtA []byte) (int, error) {
-	var i int
-	_ = i
-	var l int
-	_ = l
-	if len(m.Name) > 0 {
-		dAtA[i] = 0xa
-		i++
-		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Name)))
-		i += copy(dAtA[i:], m.Name)
-	}
-	if len(m.Description) > 0 {
-		dAtA[i] = 0x12
-		i++
-		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Description)))
-		i += copy(dAtA[i:], m.Description)
-	}
-	if len(m.Value) > 0 {
-		for _, s := range m.Value {
-			dAtA[i] = 0x1a
-			i++
-			l = len(s)
-			for l >= 1<<7 {
-				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
-				l >>= 7
-				i++
-			}
-			dAtA[i] = uint8(l)
-			i++
-			i += copy(dAtA[i:], s)
-		}
-	}
-	return i, nil
-}
-
-func encodeFixed64Plugin(dAtA []byte, offset int, v uint64) int {
-	dAtA[offset] = uint8(v)
-	dAtA[offset+1] = uint8(v >> 8)
-	dAtA[offset+2] = uint8(v >> 16)
-	dAtA[offset+3] = uint8(v >> 24)
-	dAtA[offset+4] = uint8(v >> 32)
-	dAtA[offset+5] = uint8(v >> 40)
-	dAtA[offset+6] = uint8(v >> 48)
-	dAtA[offset+7] = uint8(v >> 56)
-	return offset + 8
-}
-func encodeFixed32Plugin(dAtA []byte, offset int, v uint32) int {
-	dAtA[offset] = uint8(v)
-	dAtA[offset+1] = uint8(v >> 8)
-	dAtA[offset+2] = uint8(v >> 16)
-	dAtA[offset+3] = uint8(v >> 24)
-	return offset + 4
-}
-func encodeVarintPlugin(dAtA []byte, offset int, v uint64) int {
-	for v >= 1<<7 {
-		dAtA[offset] = uint8(v&0x7f | 0x80)
-		v >>= 7
-		offset++
-	}
-	dAtA[offset] = uint8(v)
-	return offset + 1
-}
-func (m *PluginSpec) Size() (n int) {
-	var l int
-	_ = l
-	l = len(m.Name)
-	if l > 0 {
-		n += 1 + l + sovPlugin(uint64(l))
-	}
-	l = len(m.Remote)
-	if l > 0 {
-		n += 1 + l + sovPlugin(uint64(l))
-	}
-	if len(m.Privileges) > 0 {
-		for _, e := range m.Privileges {
-			l = e.Size()
-			n += 1 + l + sovPlugin(uint64(l))
-		}
-	}
-	if m.Disabled {
-		n += 2
-	}
-	return n
-}
-
-func (m *PluginPrivilege) Size() (n int) {
-	var l int
-	_ = l
-	l = len(m.Name)
-	if l > 0 {
-		n += 1 + l + sovPlugin(uint64(l))
-	}
-	l = len(m.Description)
-	if l > 0 {
-		n += 1 + l + sovPlugin(uint64(l))
-	}
-	if len(m.Value) > 0 {
-		for _, s := range m.Value {
-			l = len(s)
-			n += 1 + l + sovPlugin(uint64(l))
-		}
-	}
-	return n
-}
-
-func sovPlugin(x uint64) (n int) {
-	for {
-		n++
-		x >>= 7
-		if x == 0 {
-			break
-		}
-	}
-	return n
-}
-func sozPlugin(x uint64) (n int) {
-	return sovPlugin(uint64((x << 1) ^ uint64((int64(x) >> 63))))
-}
-func (m *PluginSpec) Unmarshal(dAtA []byte) error {
-	l := len(dAtA)
-	iNdEx := 0
-	for iNdEx < l {
-		preIndex := iNdEx
-		var wire uint64
-		for shift := uint(0); ; shift += 7 {
-			if shift >= 64 {
-				return ErrIntOverflowPlugin
-			}
-			if iNdEx >= l {
-				return io.ErrUnexpectedEOF
-			}
-			b := dAtA[iNdEx]
-			iNdEx++
-			wire |= (uint64(b) & 0x7F) << shift
-			if b < 0x80 {
-				break
-			}
-		}
-		fieldNum := int32(wire >> 3)
-		wireType := int(wire & 0x7)
-		if wireType == 4 {
-			return fmt.Errorf("proto: PluginSpec: wiretype end group for non-group")
-		}
-		if fieldNum <= 0 {
-			return fmt.Errorf("proto: PluginSpec: illegal tag %d (wire type %d)", fieldNum, wire)
-		}
-		switch fieldNum {
-		case 1:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
-			}
-			var stringLen uint64
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				stringLen |= (uint64(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			intStringLen := int(stringLen)
-			if intStringLen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + intStringLen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Name = string(dAtA[iNdEx:postIndex])
-			iNdEx = postIndex
-		case 2:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Remote", wireType)
-			}
-			var stringLen uint64
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				stringLen |= (uint64(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			intStringLen := int(stringLen)
-			if intStringLen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + intStringLen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Remote = string(dAtA[iNdEx:postIndex])
-			iNdEx = postIndex
-		case 3:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Privileges", wireType)
-			}
-			var msglen int
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				msglen |= (int(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			if msglen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + msglen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Privileges = append(m.Privileges, &PluginPrivilege{})
-			if err := m.Privileges[len(m.Privileges)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
-				return err
-			}
-			iNdEx = postIndex
-		case 4:
-			if wireType != 0 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Disabled", wireType)
-			}
-			var v int
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				v |= (int(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			m.Disabled = bool(v != 0)
-		default:
-			iNdEx = preIndex
-			skippy, err := skipPlugin(dAtA[iNdEx:])
-			if err != nil {
-				return err
-			}
-			if skippy < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			if (iNdEx + skippy) > l {
-				return io.ErrUnexpectedEOF
-			}
-			iNdEx += skippy
-		}
-	}
-
-	if iNdEx > l {
-		return io.ErrUnexpectedEOF
-	}
-	return nil
-}
-func (m *PluginPrivilege) Unmarshal(dAtA []byte) error {
-	l := len(dAtA)
-	iNdEx := 0
-	for iNdEx < l {
-		preIndex := iNdEx
-		var wire uint64
-		for shift := uint(0); ; shift += 7 {
-			if shift >= 64 {
-				return ErrIntOverflowPlugin
-			}
-			if iNdEx >= l {
-				return io.ErrUnexpectedEOF
-			}
-			b := dAtA[iNdEx]
-			iNdEx++
-			wire |= (uint64(b) & 0x7F) << shift
-			if b < 0x80 {
-				break
-			}
-		}
-		fieldNum := int32(wire >> 3)
-		wireType := int(wire & 0x7)
-		if wireType == 4 {
-			return fmt.Errorf("proto: PluginPrivilege: wiretype end group for non-group")
-		}
-		if fieldNum <= 0 {
-			return fmt.Errorf("proto: PluginPrivilege: illegal tag %d (wire type %d)", fieldNum, wire)
-		}
-		switch fieldNum {
-		case 1:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
-			}
-			var stringLen uint64
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				stringLen |= (uint64(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			intStringLen := int(stringLen)
-			if intStringLen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + intStringLen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Name = string(dAtA[iNdEx:postIndex])
-			iNdEx = postIndex
-		case 2:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Description", wireType)
-			}
-			var stringLen uint64
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				stringLen |= (uint64(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			intStringLen := int(stringLen)
-			if intStringLen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + intStringLen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Description = string(dAtA[iNdEx:postIndex])
-			iNdEx = postIndex
-		case 3:
-			if wireType != 2 {
-				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
-			}
-			var stringLen uint64
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				stringLen |= (uint64(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			intStringLen := int(stringLen)
-			if intStringLen < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			postIndex := iNdEx + intStringLen
-			if postIndex > l {
-				return io.ErrUnexpectedEOF
-			}
-			m.Value = append(m.Value, string(dAtA[iNdEx:postIndex]))
-			iNdEx = postIndex
-		default:
-			iNdEx = preIndex
-			skippy, err := skipPlugin(dAtA[iNdEx:])
-			if err != nil {
-				return err
-			}
-			if skippy < 0 {
-				return ErrInvalidLengthPlugin
-			}
-			if (iNdEx + skippy) > l {
-				return io.ErrUnexpectedEOF
-			}
-			iNdEx += skippy
-		}
-	}
-
-	if iNdEx > l {
-		return io.ErrUnexpectedEOF
-	}
-	return nil
-}
-func skipPlugin(dAtA []byte) (n int, err error) {
-	l := len(dAtA)
-	iNdEx := 0
-	for iNdEx < l {
-		var wire uint64
-		for shift := uint(0); ; shift += 7 {
-			if shift >= 64 {
-				return 0, ErrIntOverflowPlugin
-			}
-			if iNdEx >= l {
-				return 0, io.ErrUnexpectedEOF
-			}
-			b := dAtA[iNdEx]
-			iNdEx++
-			wire |= (uint64(b) & 0x7F) << shift
-			if b < 0x80 {
-				break
-			}
-		}
-		wireType := int(wire & 0x7)
-		switch wireType {
-		case 0:
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return 0, ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return 0, io.ErrUnexpectedEOF
-				}
-				iNdEx++
-				if dAtA[iNdEx-1] < 0x80 {
-					break
-				}
-			}
-			return iNdEx, nil
-		case 1:
-			iNdEx += 8
-			return iNdEx, nil
-		case 2:
-			var length int
-			for shift := uint(0); ; shift += 7 {
-				if shift >= 64 {
-					return 0, ErrIntOverflowPlugin
-				}
-				if iNdEx >= l {
-					return 0, io.ErrUnexpectedEOF
-				}
-				b := dAtA[iNdEx]
-				iNdEx++
-				length |= (int(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			iNdEx += length
-			if length < 0 {
-				return 0, ErrInvalidLengthPlugin
-			}
-			return iNdEx, nil
-		case 3:
-			for {
-				var innerWire uint64
-				var start int = iNdEx
-				for shift := uint(0); ; shift += 7 {
-					if shift >= 64 {
-						return 0, ErrIntOverflowPlugin
-					}
-					if iNdEx >= l {
-						return 0, io.ErrUnexpectedEOF
-					}
-					b := dAtA[iNdEx]
-					iNdEx++
-					innerWire |= (uint64(b) & 0x7F) << shift
-					if b < 0x80 {
-						break
-					}
-				}
-				innerWireType := int(innerWire & 0x7)
-				if innerWireType == 4 {
-					break
-				}
-				next, err := skipPlugin(dAtA[start:])
-				if err != nil {
-					return 0, err
-				}
-				iNdEx = start + next
-			}
-			return iNdEx, nil
-		case 4:
-			return iNdEx, nil
-		case 5:
-			iNdEx += 4
-			return iNdEx, nil
-		default:
-			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
-		}
-	}
-	panic("unreachable")
-}
-
-var (
-	ErrInvalidLengthPlugin = fmt.Errorf("proto: negative length found during unmarshaling")
-	ErrIntOverflowPlugin   = fmt.Errorf("proto: integer overflow")
-)
-
-func init() { proto.RegisterFile("plugin.proto", fileDescriptorPlugin) }
-
-var fileDescriptorPlugin = []byte{
-	// 196 bytes of a gzipped FileDescriptorProto
-	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0x29, 0xc8, 0x29, 0x4d,
-	0xcf, 0xcc, 0xd3, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x57, 0x6a, 0x63, 0xe4, 0xe2, 0x0a, 0x00, 0x0b,
-	0x04, 0x17, 0xa4, 0x26, 0x0b, 0x09, 0x71, 0xb1, 0xe4, 0x25, 0xe6, 0xa6, 0x4a, 0x30, 0x2a, 0x30,
-	0x6a, 0x70, 0x06, 0x81, 0xd9, 0x42, 0x62, 0x5c, 0x6c, 0x45, 0xa9, 0xb9, 0xf9, 0x25, 0xa9, 0x12,
-	0x4c, 0x60, 0x51, 0x28, 0x4f, 0xc8, 0x80, 0x8b, 0xab, 0xa0, 0x28, 0xb3, 0x2c, 0x33, 0x27, 0x35,
-	0x3d, 0xb5, 0x58, 0x82, 0x59, 0x81, 0x59, 0x83, 0xdb, 0x48, 0x40, 0x0f, 0x62, 0x58, 0x00, 0x4c,
-	0x22, 0x08, 0x49, 0x8d, 0x90, 0x14, 0x17, 0x47, 0x4a, 0x66, 0x71, 0x62, 0x52, 0x4e, 0x6a, 0x8a,
-	0x04, 0x8b, 0x02, 0xa3, 0x06, 0x47, 0x10, 0x9c, 0xaf, 0x14, 0xcb, 0xc5, 0x8f, 0xa6, 0x15, 0xab,
-	0x63, 0x14, 0xb8, 0xb8, 0x53, 0x52, 0x8b, 0x93, 0x8b, 0x32, 0x0b, 0x4a, 0x32, 0xf3, 0xf3, 0xa0,
-	0x2e, 0x42, 0x16, 0x12, 0x12, 0xe1, 0x62, 0x2d, 0x4b, 0xcc, 0x29, 0x4d, 0x05, 0xbb, 0x88, 0x33,
-	0x08, 0xc2, 0x71, 0xe2, 0x39, 0xf1, 0x48, 0x8e, 0xf1, 0xc2, 0x23, 0x39, 0xc6, 0x07, 0x8f, 0xe4,
-	0x18, 0x93, 0xd8, 0xc0, 0x9e, 0x37, 0x06, 0x04, 0x00, 0x00, 0xff, 0xff, 0xb8, 0x84, 0xad, 0x79,
-	0x0c, 0x01, 0x00, 0x00,
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/secret.go b/vendor/github.com/docker/docker/api/types/swarm/secret.go
deleted file mode 100644
index cfba1141d8..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/secret.go
+++ /dev/null
@@ -1,32 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import "os"
-
-// Secret represents a secret.
-type Secret struct {
-	ID string
-	Meta
-	Spec SecretSpec
-}
-
-// SecretSpec represents a secret specification from a secret in swarm
-type SecretSpec struct {
-	Annotations
-	Data   []byte  `json:",omitempty"`
-	Driver *Driver `json:",omitempty"` // name of the secrets driver used to fetch the secret's value from an external secret store
-}
-
-// SecretReferenceFileTarget is a file target in a secret reference
-type SecretReferenceFileTarget struct {
-	Name string
-	UID  string
-	GID  string
-	Mode os.FileMode
-}
-
-// SecretReference is a reference to a secret in swarm
-type SecretReference struct {
-	File       *SecretReferenceFileTarget
-	SecretID   string
-	SecretName string
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/service.go b/vendor/github.com/docker/docker/api/types/swarm/service.go
deleted file mode 100644
index abf192e759..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/service.go
+++ /dev/null
@@ -1,124 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import "time"
-
-// Service represents a service.
-type Service struct {
-	ID string
-	Meta
-	Spec         ServiceSpec   `json:",omitempty"`
-	PreviousSpec *ServiceSpec  `json:",omitempty"`
-	Endpoint     Endpoint      `json:",omitempty"`
-	UpdateStatus *UpdateStatus `json:",omitempty"`
-}
-
-// ServiceSpec represents the spec of a service.
-type ServiceSpec struct {
-	Annotations
-
-	// TaskTemplate defines how the service should construct new tasks when
-	// orchestrating this service.
-	TaskTemplate   TaskSpec      `json:",omitempty"`
-	Mode           ServiceMode   `json:",omitempty"`
-	UpdateConfig   *UpdateConfig `json:",omitempty"`
-	RollbackConfig *UpdateConfig `json:",omitempty"`
-
-	// Networks field in ServiceSpec is deprecated. The
-	// same field in TaskSpec should be used instead.
-	// This field will be removed in a future release.
-	Networks     []NetworkAttachmentConfig `json:",omitempty"`
-	EndpointSpec *EndpointSpec             `json:",omitempty"`
-}
-
-// ServiceMode represents the mode of a service.
-type ServiceMode struct {
-	Replicated *ReplicatedService `json:",omitempty"`
-	Global     *GlobalService     `json:",omitempty"`
-}
-
-// UpdateState is the state of a service update.
-type UpdateState string
-
-const (
-	// UpdateStateUpdating is the updating state.
-	UpdateStateUpdating UpdateState = "updating"
-	// UpdateStatePaused is the paused state.
-	UpdateStatePaused UpdateState = "paused"
-	// UpdateStateCompleted is the completed state.
-	UpdateStateCompleted UpdateState = "completed"
-	// UpdateStateRollbackStarted is the state with a rollback in progress.
-	UpdateStateRollbackStarted UpdateState = "rollback_started"
-	// UpdateStateRollbackPaused is the state with a rollback in progress.
-	UpdateStateRollbackPaused UpdateState = "rollback_paused"
-	// UpdateStateRollbackCompleted is the state with a rollback in progress.
-	UpdateStateRollbackCompleted UpdateState = "rollback_completed"
-)
-
-// UpdateStatus reports the status of a service update.
-type UpdateStatus struct {
-	State       UpdateState `json:",omitempty"`
-	StartedAt   *time.Time  `json:",omitempty"`
-	CompletedAt *time.Time  `json:",omitempty"`
-	Message     string      `json:",omitempty"`
-}
-
-// ReplicatedService is a kind of ServiceMode.
-type ReplicatedService struct {
-	Replicas *uint64 `json:",omitempty"`
-}
-
-// GlobalService is a kind of ServiceMode.
-type GlobalService struct{}
-
-const (
-	// UpdateFailureActionPause PAUSE
-	UpdateFailureActionPause = "pause"
-	// UpdateFailureActionContinue CONTINUE
-	UpdateFailureActionContinue = "continue"
-	// UpdateFailureActionRollback ROLLBACK
-	UpdateFailureActionRollback = "rollback"
-
-	// UpdateOrderStopFirst STOP_FIRST
-	UpdateOrderStopFirst = "stop-first"
-	// UpdateOrderStartFirst START_FIRST
-	UpdateOrderStartFirst = "start-first"
-)
-
-// UpdateConfig represents the update configuration.
-type UpdateConfig struct {
-	// Maximum number of tasks to be updated in one iteration.
-	// 0 means unlimited parallelism.
-	Parallelism uint64
-
-	// Amount of time between updates.
-	Delay time.Duration `json:",omitempty"`
-
-	// FailureAction is the action to take when an update failures.
-	FailureAction string `json:",omitempty"`
-
-	// Monitor indicates how long to monitor a task for failure after it is
-	// created. If the task fails by ending up in one of the states
-	// REJECTED, COMPLETED, or FAILED, within Monitor from its creation,
-	// this counts as a failure. If it fails after Monitor, it does not
-	// count as a failure. If Monitor is unspecified, a default value will
-	// be used.
-	Monitor time.Duration `json:",omitempty"`
-
-	// MaxFailureRatio is the fraction of tasks that may fail during
-	// an update before the failure action is invoked. Any task created by
-	// the current update which ends up in one of the states REJECTED,
-	// COMPLETED or FAILED within Monitor from its creation counts as a
-	// failure. The number of failures is divided by the number of tasks
-	// being updated, and if this fraction is greater than
-	// MaxFailureRatio, the failure action is invoked.
-	//
-	// If the failure action is CONTINUE, there is no effect.
-	// If the failure action is PAUSE, no more tasks will be updated until
-	// another update is started.
-	MaxFailureRatio float32
-
-	// Order indicates the order of operations when rolling out an updated
-	// task. Either the old task is shut down before the new task is
-	// started, or the new task is started before the old task is shut down.
-	Order string
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/swarm.go b/vendor/github.com/docker/docker/api/types/swarm/swarm.go
deleted file mode 100644
index 1b111d725b..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/swarm.go
+++ /dev/null
@@ -1,217 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import "time"
-
-// ClusterInfo represents info about the cluster for outputting in "info"
-// it contains the same information as "Swarm", but without the JoinTokens
-type ClusterInfo struct {
-	ID string
-	Meta
-	Spec                   Spec
-	TLSInfo                TLSInfo
-	RootRotationInProgress bool
-}
-
-// Swarm represents a swarm.
-type Swarm struct {
-	ClusterInfo
-	JoinTokens JoinTokens
-}
-
-// JoinTokens contains the tokens workers and managers need to join the swarm.
-type JoinTokens struct {
-	// Worker is the join token workers may use to join the swarm.
-	Worker string
-	// Manager is the join token managers may use to join the swarm.
-	Manager string
-}
-
-// Spec represents the spec of a swarm.
-type Spec struct {
-	Annotations
-
-	Orchestration    OrchestrationConfig `json:",omitempty"`
-	Raft             RaftConfig          `json:",omitempty"`
-	Dispatcher       DispatcherConfig    `json:",omitempty"`
-	CAConfig         CAConfig            `json:",omitempty"`
-	TaskDefaults     TaskDefaults        `json:",omitempty"`
-	EncryptionConfig EncryptionConfig    `json:",omitempty"`
-}
-
-// OrchestrationConfig represents orchestration configuration.
-type OrchestrationConfig struct {
-	// TaskHistoryRetentionLimit is the number of historic tasks to keep per instance or
-	// node. If negative, never remove completed or failed tasks.
-	TaskHistoryRetentionLimit *int64 `json:",omitempty"`
-}
-
-// TaskDefaults parameterizes cluster-level task creation with default values.
-type TaskDefaults struct {
-	// LogDriver selects the log driver to use for tasks created in the
-	// orchestrator if unspecified by a service.
-	//
-	// Updating this value will only have an affect on new tasks. Old tasks
-	// will continue use their previously configured log driver until
-	// recreated.
-	LogDriver *Driver `json:",omitempty"`
-}
-
-// EncryptionConfig controls at-rest encryption of data and keys.
-type EncryptionConfig struct {
-	// AutoLockManagers specifies whether or not managers TLS keys and raft data
-	// should be encrypted at rest in such a way that they must be unlocked
-	// before the manager node starts up again.
-	AutoLockManagers bool
-}
-
-// RaftConfig represents raft configuration.
-type RaftConfig struct {
-	// SnapshotInterval is the number of log entries between snapshots.
-	SnapshotInterval uint64 `json:",omitempty"`
-
-	// KeepOldSnapshots is the number of snapshots to keep beyond the
-	// current snapshot.
-	KeepOldSnapshots *uint64 `json:",omitempty"`
-
-	// LogEntriesForSlowFollowers is the number of log entries to keep
-	// around to sync up slow followers after a snapshot is created.
-	LogEntriesForSlowFollowers uint64 `json:",omitempty"`
-
-	// ElectionTick is the number of ticks that a follower will wait for a message
-	// from the leader before becoming a candidate and starting an election.
-	// ElectionTick must be greater than HeartbeatTick.
-	//
-	// A tick currently defaults to one second, so these translate directly to
-	// seconds currently, but this is NOT guaranteed.
-	ElectionTick int
-
-	// HeartbeatTick is the number of ticks between heartbeats. Every
-	// HeartbeatTick ticks, the leader will send a heartbeat to the
-	// followers.
-	//
-	// A tick currently defaults to one second, so these translate directly to
-	// seconds currently, but this is NOT guaranteed.
-	HeartbeatTick int
-}
-
-// DispatcherConfig represents dispatcher configuration.
-type DispatcherConfig struct {
-	// HeartbeatPeriod defines how often agent should send heartbeats to
-	// dispatcher.
-	HeartbeatPeriod time.Duration `json:",omitempty"`
-}
-
-// CAConfig represents CA configuration.
-type CAConfig struct {
-	// NodeCertExpiry is the duration certificates should be issued for
-	NodeCertExpiry time.Duration `json:",omitempty"`
-
-	// ExternalCAs is a list of CAs to which a manager node will make
-	// certificate signing requests for node certificates.
-	ExternalCAs []*ExternalCA `json:",omitempty"`
-
-	// SigningCACert and SigningCAKey specify the desired signing root CA and
-	// root CA key for the swarm.  When inspecting the cluster, the key will
-	// be redacted.
-	SigningCACert string `json:",omitempty"`
-	SigningCAKey  string `json:",omitempty"`
-
-	// If this value changes, and there is no specified signing cert and key,
-	// then the swarm is forced to generate a new root certificate ane key.
-	ForceRotate uint64 `json:",omitempty"`
-}
-
-// ExternalCAProtocol represents type of external CA.
-type ExternalCAProtocol string
-
-// ExternalCAProtocolCFSSL CFSSL
-const ExternalCAProtocolCFSSL ExternalCAProtocol = "cfssl"
-
-// ExternalCA defines external CA to be used by the cluster.
-type ExternalCA struct {
-	// Protocol is the protocol used by this external CA.
-	Protocol ExternalCAProtocol
-
-	// URL is the URL where the external CA can be reached.
-	URL string
-
-	// Options is a set of additional key/value pairs whose interpretation
-	// depends on the specified CA type.
-	Options map[string]string `json:",omitempty"`
-
-	// CACert specifies which root CA is used by this external CA.  This certificate must
-	// be in PEM format.
-	CACert string
-}
-
-// InitRequest is the request used to init a swarm.
-type InitRequest struct {
-	ListenAddr       string
-	AdvertiseAddr    string
-	DataPathAddr     string
-	ForceNewCluster  bool
-	Spec             Spec
-	AutoLockManagers bool
-	Availability     NodeAvailability
-}
-
-// JoinRequest is the request used to join a swarm.
-type JoinRequest struct {
-	ListenAddr    string
-	AdvertiseAddr string
-	DataPathAddr  string
-	RemoteAddrs   []string
-	JoinToken     string // accept by secret
-	Availability  NodeAvailability
-}
-
-// UnlockRequest is the request used to unlock a swarm.
-type UnlockRequest struct {
-	// UnlockKey is the unlock key in ASCII-armored format.
-	UnlockKey string
-}
-
-// LocalNodeState represents the state of the local node.
-type LocalNodeState string
-
-const (
-	// LocalNodeStateInactive INACTIVE
-	LocalNodeStateInactive LocalNodeState = "inactive"
-	// LocalNodeStatePending PENDING
-	LocalNodeStatePending LocalNodeState = "pending"
-	// LocalNodeStateActive ACTIVE
-	LocalNodeStateActive LocalNodeState = "active"
-	// LocalNodeStateError ERROR
-	LocalNodeStateError LocalNodeState = "error"
-	// LocalNodeStateLocked LOCKED
-	LocalNodeStateLocked LocalNodeState = "locked"
-)
-
-// Info represents generic information about swarm.
-type Info struct {
-	NodeID   string
-	NodeAddr string
-
-	LocalNodeState   LocalNodeState
-	ControlAvailable bool
-	Error            string
-
-	RemoteManagers []Peer
-	Nodes          int `json:",omitempty"`
-	Managers       int `json:",omitempty"`
-
-	Cluster *ClusterInfo `json:",omitempty"`
-}
-
-// Peer represents a peer.
-type Peer struct {
-	NodeID string
-	Addr   string
-}
-
-// UpdateFlags contains flags for SwarmUpdate.
-type UpdateFlags struct {
-	RotateWorkerToken      bool
-	RotateManagerToken     bool
-	RotateManagerUnlockKey bool
-}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/task.go b/vendor/github.com/docker/docker/api/types/swarm/task.go
deleted file mode 100644
index 5c2bc492e4..0000000000
--- a/vendor/github.com/docker/docker/api/types/swarm/task.go
+++ /dev/null
@@ -1,188 +0,0 @@
-package swarm // import "github.com/docker/docker/api/types/swarm"
-
-import (
-	"time"
-
-	"github.com/docker/docker/api/types/swarm/runtime"
-)
-
-// TaskState represents the state of a task.
-type TaskState string
-
-const (
-	// TaskStateNew NEW
-	TaskStateNew TaskState = "new"
-	// TaskStateAllocated ALLOCATED
-	TaskStateAllocated TaskState = "allocated"
-	// TaskStatePending PENDING
-	TaskStatePending TaskState = "pending"
-	// TaskStateAssigned ASSIGNED
-	TaskStateAssigned TaskState = "assigned"
-	// TaskStateAccepted ACCEPTED
-	TaskStateAccepted TaskState = "accepted"
-	// TaskStatePreparing PREPARING
-	TaskStatePreparing TaskState = "preparing"
-	// TaskStateReady READY
-	TaskStateReady TaskState = "ready"
-	// TaskStateStarting STARTING
-	TaskStateStarting TaskState = "starting"
-	// TaskStateRunning RUNNING
-	TaskStateRunning TaskState = "running"
-	// TaskStateComplete COMPLETE
-	TaskStateComplete TaskState = "complete"
-	// TaskStateShutdown SHUTDOWN
-	TaskStateShutdown TaskState = "shutdown"
-	// TaskStateFailed FAILED
-	TaskStateFailed TaskState = "failed"
-	// TaskStateRejected REJECTED
-	TaskStateRejected TaskState = "rejected"
-	// TaskStateRemove REMOVE
-	TaskStateRemove TaskState = "remove"
-	// TaskStateOrphaned ORPHANED
-	TaskStateOrphaned TaskState = "orphaned"
-)
-
-// Task represents a task.
-type Task struct {
-	ID string
-	Meta
-	Annotations
-
-	Spec                TaskSpec            `json:",omitempty"`
-	ServiceID           string              `json:",omitempty"`
-	Slot                int                 `json:",omitempty"`
-	NodeID              string              `json:",omitempty"`
-	Status              TaskStatus          `json:",omitempty"`
-	DesiredState        TaskState           `json:",omitempty"`
-	NetworksAttachments []NetworkAttachment `json:",omitempty"`
-	GenericResources    []GenericResource   `json:",omitempty"`
-}
-
-// TaskSpec represents the spec of a task.
-type TaskSpec struct {
-	// ContainerSpec and PluginSpec are mutually exclusive.
-	// PluginSpec will only be used when the `Runtime` field is set to `plugin`
-	ContainerSpec *ContainerSpec      `json:",omitempty"`
-	PluginSpec    *runtime.PluginSpec `json:",omitempty"`
-
-	Resources     *ResourceRequirements     `json:",omitempty"`
-	RestartPolicy *RestartPolicy            `json:",omitempty"`
-	Placement     *Placement                `json:",omitempty"`
-	Networks      []NetworkAttachmentConfig `json:",omitempty"`
-
-	// LogDriver specifies the LogDriver to use for tasks created from this
-	// spec. If not present, the one on cluster default on swarm.Spec will be
-	// used, finally falling back to the engine default if not specified.
-	LogDriver *Driver `json:",omitempty"`
-
-	// ForceUpdate is a counter that triggers an update even if no relevant
-	// parameters have been changed.
-	ForceUpdate uint64
-
-	Runtime RuntimeType `json:",omitempty"`
-}
-
-// Resources represents resources (CPU/Memory).
-type Resources struct {
-	NanoCPUs         int64             `json:",omitempty"`
-	MemoryBytes      int64             `json:",omitempty"`
-	GenericResources []GenericResource `json:",omitempty"`
-}
-
-// GenericResource represents a "user defined" resource which can
-// be either an integer (e.g: SSD=3) or a string (e.g: SSD=sda1)
-type GenericResource struct {
-	NamedResourceSpec    *NamedGenericResource    `json:",omitempty"`
-	DiscreteResourceSpec *DiscreteGenericResource `json:",omitempty"`
-}
-
-// NamedGenericResource represents a "user defined" resource which is defined
-// as a string.
-// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
-// Value is used to identify the resource (GPU="UUID-1", FPGA="/dev/sdb5", ...)
-type NamedGenericResource struct {
-	Kind  string `json:",omitempty"`
-	Value string `json:",omitempty"`
-}
-
-// DiscreteGenericResource represents a "user defined" resource which is defined
-// as an integer
-// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
-// Value is used to count the resource (SSD=5, HDD=3, ...)
-type DiscreteGenericResource struct {
-	Kind  string `json:",omitempty"`
-	Value int64  `json:",omitempty"`
-}
-
-// ResourceRequirements represents resources requirements.
-type ResourceRequirements struct {
-	Limits       *Resources `json:",omitempty"`
-	Reservations *Resources `json:",omitempty"`
-}
-
-// Placement represents orchestration parameters.
-type Placement struct {
-	Constraints []string              `json:",omitempty"`
-	Preferences []PlacementPreference `json:",omitempty"`
-
-	// Platforms stores all the platforms that the image can run on.
-	// This field is used in the platform filter for scheduling. If empty,
-	// then the platform filter is off, meaning there are no scheduling restrictions.
-	Platforms []Platform `json:",omitempty"`
-}
-
-// PlacementPreference provides a way to make the scheduler aware of factors
-// such as topology.
-type PlacementPreference struct {
-	Spread *SpreadOver
-}
-
-// SpreadOver is a scheduling preference that instructs the scheduler to spread
-// tasks evenly over groups of nodes identified by labels.
-type SpreadOver struct {
-	// label descriptor, such as engine.labels.az
-	SpreadDescriptor string
-}
-
-// RestartPolicy represents the restart policy.
-type RestartPolicy struct {
-	Condition   RestartPolicyCondition `json:",omitempty"`
-	Delay       *time.Duration         `json:",omitempty"`
-	MaxAttempts *uint64                `json:",omitempty"`
-	Window      *time.Duration         `json:",omitempty"`
-}
-
-// RestartPolicyCondition represents when to restart.
-type RestartPolicyCondition string
-
-const (
-	// RestartPolicyConditionNone NONE
-	RestartPolicyConditionNone RestartPolicyCondition = "none"
-	// RestartPolicyConditionOnFailure ON_FAILURE
-	RestartPolicyConditionOnFailure RestartPolicyCondition = "on-failure"
-	// RestartPolicyConditionAny ANY
-	RestartPolicyConditionAny RestartPolicyCondition = "any"
-)
-
-// TaskStatus represents the status of a task.
-type TaskStatus struct {
-	Timestamp       time.Time        `json:",omitempty"`
-	State           TaskState        `json:",omitempty"`
-	Message         string           `json:",omitempty"`
-	Err             string           `json:",omitempty"`
-	ContainerStatus *ContainerStatus `json:",omitempty"`
-	PortStatus      PortStatus       `json:",omitempty"`
-}
-
-// ContainerStatus represents the status of a container.
-type ContainerStatus struct {
-	ContainerID string
-	PID         int
-	ExitCode    int
-}
-
-// PortStatus represents the port status of a task's host ports whose
-// service has published host ports
-type PortStatus struct {
-	Ports []PortConfig `json:",omitempty"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/time/duration_convert.go b/vendor/github.com/docker/docker/api/types/time/duration_convert.go
deleted file mode 100644
index 84b6f07322..0000000000
--- a/vendor/github.com/docker/docker/api/types/time/duration_convert.go
+++ /dev/null
@@ -1,12 +0,0 @@
-package time // import "github.com/docker/docker/api/types/time"
-
-import (
-	"strconv"
-	"time"
-)
-
-// DurationToSecondsString converts the specified duration to the number
-// seconds it represents, formatted as a string.
-func DurationToSecondsString(duration time.Duration) string {
-	return strconv.FormatFloat(duration.Seconds(), 'f', 0, 64)
-}
diff --git a/vendor/github.com/docker/docker/api/types/time/timestamp.go b/vendor/github.com/docker/docker/api/types/time/timestamp.go
deleted file mode 100644
index 8d573accb1..0000000000
--- a/vendor/github.com/docker/docker/api/types/time/timestamp.go
+++ /dev/null
@@ -1,122 +0,0 @@
-package time // import "github.com/docker/docker/api/types/time"
-
-import (
-	"fmt"
-	"math"
-	"strconv"
-	"strings"
-	"time"
-)
-
-// These are additional predefined layouts for use in Time.Format and Time.Parse
-// with --since and --until parameters for `docker logs` and `docker events`
-const (
-	rFC3339Local     = "2006-01-02T15:04:05"           // RFC3339 with local timezone
-	rFC3339NanoLocal = "2006-01-02T15:04:05.999999999" // RFC3339Nano with local timezone
-	dateWithZone     = "2006-01-02Z07:00"              // RFC3339 with time at 00:00:00
-	dateLocal        = "2006-01-02"                    // RFC3339 with local timezone and time at 00:00:00
-)
-
-// GetTimestamp tries to parse given string as golang duration,
-// then RFC3339 time and finally as a Unix timestamp. If
-// any of these were successful, it returns a Unix timestamp
-// as string otherwise returns the given value back.
-// In case of duration input, the returned timestamp is computed
-// as the given reference time minus the amount of the duration.
-func GetTimestamp(value string, reference time.Time) (string, error) {
-	if d, err := time.ParseDuration(value); value != "0" && err == nil {
-		return strconv.FormatInt(reference.Add(-d).Unix(), 10), nil
-	}
-
-	var format string
-	// if the string has a Z or a + or three dashes use parse otherwise use parseinlocation
-	parseInLocation := !(strings.ContainsAny(value, "zZ+") || strings.Count(value, "-") == 3)
-
-	if strings.Contains(value, ".") {
-		if parseInLocation {
-			format = rFC3339NanoLocal
-		} else {
-			format = time.RFC3339Nano
-		}
-	} else if strings.Contains(value, "T") {
-		// we want the number of colons in the T portion of the timestamp
-		tcolons := strings.Count(value, ":")
-		// if parseInLocation is off and we have a +/- zone offset (not Z) then
-		// there will be an extra colon in the input for the tz offset subtract that
-		// colon from the tcolons count
-		if !parseInLocation && !strings.ContainsAny(value, "zZ") && tcolons > 0 {
-			tcolons--
-		}
-		if parseInLocation {
-			switch tcolons {
-			case 0:
-				format = "2006-01-02T15"
-			case 1:
-				format = "2006-01-02T15:04"
-			default:
-				format = rFC3339Local
-			}
-		} else {
-			switch tcolons {
-			case 0:
-				format = "2006-01-02T15Z07:00"
-			case 1:
-				format = "2006-01-02T15:04Z07:00"
-			default:
-				format = time.RFC3339
-			}
-		}
-	} else if parseInLocation {
-		format = dateLocal
-	} else {
-		format = dateWithZone
-	}
-
-	var t time.Time
-	var err error
-
-	if parseInLocation {
-		t, err = time.ParseInLocation(format, value, time.FixedZone(reference.Zone()))
-	} else {
-		t, err = time.Parse(format, value)
-	}
-
-	if err != nil {
-		// if there is a `-` then it's an RFC3339 like timestamp otherwise assume unixtimestamp
-		if strings.Contains(value, "-") {
-			return "", err // was probably an RFC3339 like timestamp but the parser failed with an error
-		}
-		return value, nil // unixtimestamp in and out case (meaning: the value passed at the command line is already in the right format for passing to the server)
-	}
-
-	return fmt.Sprintf("%d.%09d", t.Unix(), int64(t.Nanosecond())), nil
-}
-
-// ParseTimestamps returns seconds and nanoseconds from a timestamp that has the
-// format "%d.%09d", time.Unix(), int64(time.Nanosecond()))
-// if the incoming nanosecond portion is longer or shorter than 9 digits it is
-// converted to nanoseconds.  The expectation is that the seconds and
-// seconds will be used to create a time variable.  For example:
-//     seconds, nanoseconds, err := ParseTimestamp("1136073600.000000001",0)
-//     if err == nil since := time.Unix(seconds, nanoseconds)
-// returns seconds as def(aultSeconds) if value == ""
-func ParseTimestamps(value string, def int64) (int64, int64, error) {
-	if value == "" {
-		return def, 0, nil
-	}
-	sa := strings.SplitN(value, ".", 2)
-	s, err := strconv.ParseInt(sa[0], 10, 64)
-	if err != nil {
-		return s, 0, err
-	}
-	if len(sa) != 2 {
-		return s, 0, nil
-	}
-	n, err := strconv.ParseInt(sa[1], 10, 64)
-	if err != nil {
-		return s, n, err
-	}
-	// should already be in nanoseconds but just in case convert n to nanoseconds
-	n = int64(float64(n) * math.Pow(float64(10), float64(9-len(sa[1]))))
-	return s, n, nil
-}
diff --git a/vendor/github.com/docker/docker/api/types/types.go b/vendor/github.com/docker/docker/api/types/types.go
deleted file mode 100644
index 729f4eb6c4..0000000000
--- a/vendor/github.com/docker/docker/api/types/types.go
+++ /dev/null
@@ -1,587 +0,0 @@
-package types // import "github.com/docker/docker/api/types"
-
-import (
-	"errors"
-	"fmt"
-	"io"
-	"os"
-	"strings"
-	"time"
-
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/mount"
-	"github.com/docker/docker/api/types/network"
-	"github.com/docker/docker/api/types/registry"
-	"github.com/docker/docker/api/types/swarm"
-	"github.com/docker/go-connections/nat"
-)
-
-// RootFS returns Image's RootFS description including the layer IDs.
-type RootFS struct {
-	Type      string
-	Layers    []string `json:",omitempty"`
-	BaseLayer string   `json:",omitempty"`
-}
-
-// ImageInspect contains response of Engine API:
-// GET "/images/{name:.*}/json"
-type ImageInspect struct {
-	ID              string `json:"Id"`
-	RepoTags        []string
-	RepoDigests     []string
-	Parent          string
-	Comment         string
-	Created         string
-	Container       string
-	ContainerConfig *container.Config
-	DockerVersion   string
-	Author          string
-	Config          *container.Config
-	Architecture    string
-	Os              string
-	OsVersion       string `json:",omitempty"`
-	Size            int64
-	VirtualSize     int64
-	GraphDriver     GraphDriverData
-	RootFS          RootFS
-	Metadata        ImageMetadata
-}
-
-// ImageMetadata contains engine-local data about the image
-type ImageMetadata struct {
-	LastTagTime time.Time `json:",omitempty"`
-}
-
-// Container contains response of Engine API:
-// GET "/containers/json"
-type Container struct {
-	ID         string `json:"Id"`
-	Names      []string
-	Image      string
-	ImageID    string
-	Command    string
-	Created    int64
-	Ports      []Port
-	SizeRw     int64 `json:",omitempty"`
-	SizeRootFs int64 `json:",omitempty"`
-	Labels     map[string]string
-	State      string
-	Status     string
-	HostConfig struct {
-		NetworkMode string `json:",omitempty"`
-	}
-	NetworkSettings *SummaryNetworkSettings
-	Mounts          []MountPoint
-}
-
-// CopyConfig contains request body of Engine API:
-// POST "/containers/"+containerID+"/copy"
-type CopyConfig struct {
-	Resource string
-}
-
-// ContainerPathStat is used to encode the header from
-// GET "/containers/{name:.*}/archive"
-// "Name" is the file or directory name.
-type ContainerPathStat struct {
-	Name       string      `json:"name"`
-	Size       int64       `json:"size"`
-	Mode       os.FileMode `json:"mode"`
-	Mtime      time.Time   `json:"mtime"`
-	LinkTarget string      `json:"linkTarget"`
-}
-
-// ContainerStats contains response of Engine API:
-// GET "/stats"
-type ContainerStats struct {
-	Body   io.ReadCloser `json:"body"`
-	OSType string        `json:"ostype"`
-}
-
-// Ping contains response of Engine API:
-// GET "/_ping"
-type Ping struct {
-	APIVersion   string
-	OSType       string
-	Experimental bool
-}
-
-// ComponentVersion describes the version information for a specific component.
-type ComponentVersion struct {
-	Name    string
-	Version string
-	Details map[string]string `json:",omitempty"`
-}
-
-// Version contains response of Engine API:
-// GET "/version"
-type Version struct {
-	Platform   struct{ Name string } `json:",omitempty"`
-	Components []ComponentVersion    `json:",omitempty"`
-
-	// The following fields are deprecated, they relate to the Engine component and are kept for backwards compatibility
-
-	Version       string
-	APIVersion    string `json:"ApiVersion"`
-	MinAPIVersion string `json:"MinAPIVersion,omitempty"`
-	GitCommit     string
-	GoVersion     string
-	Os            string
-	Arch          string
-	KernelVersion string `json:",omitempty"`
-	Experimental  bool   `json:",omitempty"`
-	BuildTime     string `json:",omitempty"`
-}
-
-// Commit holds the Git-commit (SHA1) that a binary was built from, as reported
-// in the version-string of external tools, such as containerd, or runC.
-type Commit struct {
-	ID       string // ID is the actual commit ID of external tool.
-	Expected string // Expected is the commit ID of external tool expected by dockerd as set at build time.
-}
-
-// Info contains response of Engine API:
-// GET "/info"
-type Info struct {
-	ID                 string
-	Containers         int
-	ContainersRunning  int
-	ContainersPaused   int
-	ContainersStopped  int
-	Images             int
-	Driver             string
-	DriverStatus       [][2]string
-	SystemStatus       [][2]string
-	Plugins            PluginsInfo
-	MemoryLimit        bool
-	SwapLimit          bool
-	KernelMemory       bool
-	CPUCfsPeriod       bool `json:"CpuCfsPeriod"`
-	CPUCfsQuota        bool `json:"CpuCfsQuota"`
-	CPUShares          bool
-	CPUSet             bool
-	IPv4Forwarding     bool
-	BridgeNfIptables   bool
-	BridgeNfIP6tables  bool `json:"BridgeNfIp6tables"`
-	Debug              bool
-	NFd                int
-	OomKillDisable     bool
-	NGoroutines        int
-	SystemTime         string
-	LoggingDriver      string
-	CgroupDriver       string
-	NEventsListener    int
-	KernelVersion      string
-	OperatingSystem    string
-	OSType             string
-	Architecture       string
-	IndexServerAddress string
-	RegistryConfig     *registry.ServiceConfig
-	NCPU               int
-	MemTotal           int64
-	GenericResources   []swarm.GenericResource
-	DockerRootDir      string
-	HTTPProxy          string `json:"HttpProxy"`
-	HTTPSProxy         string `json:"HttpsProxy"`
-	NoProxy            string
-	Name               string
-	Labels             []string
-	ExperimentalBuild  bool
-	ServerVersion      string
-	ClusterStore       string
-	ClusterAdvertise   string
-	Runtimes           map[string]Runtime
-	DefaultRuntime     string
-	Swarm              swarm.Info
-	// LiveRestoreEnabled determines whether containers should be kept
-	// running when the daemon is shutdown or upon daemon start if
-	// running containers are detected
-	LiveRestoreEnabled bool
-	Isolation          container.Isolation
-	InitBinary         string
-	ContainerdCommit   Commit
-	RuncCommit         Commit
-	InitCommit         Commit
-	SecurityOptions    []string
-}
-
-// KeyValue holds a key/value pair
-type KeyValue struct {
-	Key, Value string
-}
-
-// SecurityOpt contains the name and options of a security option
-type SecurityOpt struct {
-	Name    string
-	Options []KeyValue
-}
-
-// DecodeSecurityOptions decodes a security options string slice to a type safe
-// SecurityOpt
-func DecodeSecurityOptions(opts []string) ([]SecurityOpt, error) {
-	so := []SecurityOpt{}
-	for _, opt := range opts {
-		// support output from a < 1.13 docker daemon
-		if !strings.Contains(opt, "=") {
-			so = append(so, SecurityOpt{Name: opt})
-			continue
-		}
-		secopt := SecurityOpt{}
-		split := strings.Split(opt, ",")
-		for _, s := range split {
-			kv := strings.SplitN(s, "=", 2)
-			if len(kv) != 2 {
-				return nil, fmt.Errorf("invalid security option %q", s)
-			}
-			if kv[0] == "" || kv[1] == "" {
-				return nil, errors.New("invalid empty security option")
-			}
-			if kv[0] == "name" {
-				secopt.Name = kv[1]
-				continue
-			}
-			secopt.Options = append(secopt.Options, KeyValue{Key: kv[0], Value: kv[1]})
-		}
-		so = append(so, secopt)
-	}
-	return so, nil
-}
-
-// PluginsInfo is a temp struct holding Plugins name
-// registered with docker daemon. It is used by Info struct
-type PluginsInfo struct {
-	// List of Volume plugins registered
-	Volume []string
-	// List of Network plugins registered
-	Network []string
-	// List of Authorization plugins registered
-	Authorization []string
-	// List of Log plugins registered
-	Log []string
-}
-
-// ExecStartCheck is a temp struct used by execStart
-// Config fields is part of ExecConfig in runconfig package
-type ExecStartCheck struct {
-	// ExecStart will first check if it's detached
-	Detach bool
-	// Check if there's a tty
-	Tty bool
-}
-
-// HealthcheckResult stores information about a single run of a healthcheck probe
-type HealthcheckResult struct {
-	Start    time.Time // Start is the time this check started
-	End      time.Time // End is the time this check ended
-	ExitCode int       // ExitCode meanings: 0=healthy, 1=unhealthy, 2=reserved (considered unhealthy), else=error running probe
-	Output   string    // Output from last check
-}
-
-// Health states
-const (
-	NoHealthcheck = "none"      // Indicates there is no healthcheck
-	Starting      = "starting"  // Starting indicates that the container is not yet ready
-	Healthy       = "healthy"   // Healthy indicates that the container is running correctly
-	Unhealthy     = "unhealthy" // Unhealthy indicates that the container has a problem
-)
-
-// Health stores information about the container's healthcheck results
-type Health struct {
-	Status        string               // Status is one of Starting, Healthy or Unhealthy
-	FailingStreak int                  // FailingStreak is the number of consecutive failures
-	Log           []*HealthcheckResult // Log contains the last few results (oldest first)
-}
-
-// ContainerState stores container's running state
-// it's part of ContainerJSONBase and will return by "inspect" command
-type ContainerState struct {
-	Status     string // String representation of the container state. Can be one of "created", "running", "paused", "restarting", "removing", "exited", or "dead"
-	Running    bool
-	Paused     bool
-	Restarting bool
-	OOMKilled  bool
-	Dead       bool
-	Pid        int
-	ExitCode   int
-	Error      string
-	StartedAt  string
-	FinishedAt string
-	Health     *Health `json:",omitempty"`
-}
-
-// ContainerNode stores information about the node that a container
-// is running on.  It's only available in Docker Swarm
-type ContainerNode struct {
-	ID        string
-	IPAddress string `json:"IP"`
-	Addr      string
-	Name      string
-	Cpus      int
-	Memory    int64
-	Labels    map[string]string
-}
-
-// ContainerJSONBase contains response of Engine API:
-// GET "/containers/{name:.*}/json"
-type ContainerJSONBase struct {
-	ID              string `json:"Id"`
-	Created         string
-	Path            string
-	Args            []string
-	State           *ContainerState
-	Image           string
-	ResolvConfPath  string
-	HostnamePath    string
-	HostsPath       string
-	LogPath         string
-	Node            *ContainerNode `json:",omitempty"`
-	Name            string
-	RestartCount    int
-	Driver          string
-	Platform        string
-	MountLabel      string
-	ProcessLabel    string
-	AppArmorProfile string
-	ExecIDs         []string
-	HostConfig      *container.HostConfig
-	GraphDriver     GraphDriverData
-	SizeRw          *int64 `json:",omitempty"`
-	SizeRootFs      *int64 `json:",omitempty"`
-}
-
-// ContainerJSON is newly used struct along with MountPoint
-type ContainerJSON struct {
-	*ContainerJSONBase
-	Mounts          []MountPoint
-	Config          *container.Config
-	NetworkSettings *NetworkSettings
-}
-
-// NetworkSettings exposes the network settings in the api
-type NetworkSettings struct {
-	NetworkSettingsBase
-	DefaultNetworkSettings
-	Networks map[string]*network.EndpointSettings
-}
-
-// SummaryNetworkSettings provides a summary of container's networks
-// in /containers/json
-type SummaryNetworkSettings struct {
-	Networks map[string]*network.EndpointSettings
-}
-
-// NetworkSettingsBase holds basic information about networks
-type NetworkSettingsBase struct {
-	Bridge                 string      // Bridge is the Bridge name the network uses(e.g. `docker0`)
-	SandboxID              string      // SandboxID uniquely represents a container's network stack
-	HairpinMode            bool        // HairpinMode specifies if hairpin NAT should be enabled on the virtual interface
-	LinkLocalIPv6Address   string      // LinkLocalIPv6Address is an IPv6 unicast address using the link-local prefix
-	LinkLocalIPv6PrefixLen int         // LinkLocalIPv6PrefixLen is the prefix length of an IPv6 unicast address
-	Ports                  nat.PortMap // Ports is a collection of PortBinding indexed by Port
-	SandboxKey             string      // SandboxKey identifies the sandbox
-	SecondaryIPAddresses   []network.Address
-	SecondaryIPv6Addresses []network.Address
-}
-
-// DefaultNetworkSettings holds network information
-// during the 2 release deprecation period.
-// It will be removed in Docker 1.11.
-type DefaultNetworkSettings struct {
-	EndpointID          string // EndpointID uniquely represents a service endpoint in a Sandbox
-	Gateway             string // Gateway holds the gateway address for the network
-	GlobalIPv6Address   string // GlobalIPv6Address holds network's global IPv6 address
-	GlobalIPv6PrefixLen int    // GlobalIPv6PrefixLen represents mask length of network's global IPv6 address
-	IPAddress           string // IPAddress holds the IPv4 address for the network
-	IPPrefixLen         int    // IPPrefixLen represents mask length of network's IPv4 address
-	IPv6Gateway         string // IPv6Gateway holds gateway address specific for IPv6
-	MacAddress          string // MacAddress holds the MAC address for the network
-}
-
-// MountPoint represents a mount point configuration inside the container.
-// This is used for reporting the mountpoints in use by a container.
-type MountPoint struct {
-	Type        mount.Type `json:",omitempty"`
-	Name        string     `json:",omitempty"`
-	Source      string
-	Destination string
-	Driver      string `json:",omitempty"`
-	Mode        string
-	RW          bool
-	Propagation mount.Propagation
-}
-
-// NetworkResource is the body of the "get network" http response message
-type NetworkResource struct {
-	Name       string                         // Name is the requested name of the network
-	ID         string                         `json:"Id"` // ID uniquely identifies a network on a single machine
-	Created    time.Time                      // Created is the time the network created
-	Scope      string                         // Scope describes the level at which the network exists (e.g. `swarm` for cluster-wide or `local` for machine level)
-	Driver     string                         // Driver is the Driver name used to create the network (e.g. `bridge`, `overlay`)
-	EnableIPv6 bool                           // EnableIPv6 represents whether to enable IPv6
-	IPAM       network.IPAM                   // IPAM is the network's IP Address Management
-	Internal   bool                           // Internal represents if the network is used internal only
-	Attachable bool                           // Attachable represents if the global scope is manually attachable by regular containers from workers in swarm mode.
-	Ingress    bool                           // Ingress indicates the network is providing the routing-mesh for the swarm cluster.
-	ConfigFrom network.ConfigReference        // ConfigFrom specifies the source which will provide the configuration for this network.
-	ConfigOnly bool                           // ConfigOnly networks are place-holder networks for network configurations to be used by other networks. ConfigOnly networks cannot be used directly to run containers or services.
-	Containers map[string]EndpointResource    // Containers contains endpoints belonging to the network
-	Options    map[string]string              // Options holds the network specific options to use for when creating the network
-	Labels     map[string]string              // Labels holds metadata specific to the network being created
-	Peers      []network.PeerInfo             `json:",omitempty"` // List of peer nodes for an overlay network
-	Services   map[string]network.ServiceInfo `json:",omitempty"`
-}
-
-// EndpointResource contains network resources allocated and used for a container in a network
-type EndpointResource struct {
-	Name        string
-	EndpointID  string
-	MacAddress  string
-	IPv4Address string
-	IPv6Address string
-}
-
-// NetworkCreate is the expected body of the "create network" http request message
-type NetworkCreate struct {
-	// Check for networks with duplicate names.
-	// Network is primarily keyed based on a random ID and not on the name.
-	// Network name is strictly a user-friendly alias to the network
-	// which is uniquely identified using ID.
-	// And there is no guaranteed way to check for duplicates.
-	// Option CheckDuplicate is there to provide a best effort checking of any networks
-	// which has the same name but it is not guaranteed to catch all name collisions.
-	CheckDuplicate bool
-	Driver         string
-	Scope          string
-	EnableIPv6     bool
-	IPAM           *network.IPAM
-	Internal       bool
-	Attachable     bool
-	Ingress        bool
-	ConfigOnly     bool
-	ConfigFrom     *network.ConfigReference
-	Options        map[string]string
-	Labels         map[string]string
-}
-
-// NetworkCreateRequest is the request message sent to the server for network create call.
-type NetworkCreateRequest struct {
-	NetworkCreate
-	Name string
-}
-
-// NetworkCreateResponse is the response message sent by the server for network create call
-type NetworkCreateResponse struct {
-	ID      string `json:"Id"`
-	Warning string
-}
-
-// NetworkConnect represents the data to be used to connect a container to the network
-type NetworkConnect struct {
-	Container      string
-	EndpointConfig *network.EndpointSettings `json:",omitempty"`
-}
-
-// NetworkDisconnect represents the data to be used to disconnect a container from the network
-type NetworkDisconnect struct {
-	Container string
-	Force     bool
-}
-
-// NetworkInspectOptions holds parameters to inspect network
-type NetworkInspectOptions struct {
-	Scope   string
-	Verbose bool
-}
-
-// Checkpoint represents the details of a checkpoint
-type Checkpoint struct {
-	Name string // Name is the name of the checkpoint
-}
-
-// Runtime describes an OCI runtime
-type Runtime struct {
-	Path string   `json:"path"`
-	Args []string `json:"runtimeArgs,omitempty"`
-}
-
-// DiskUsage contains response of Engine API:
-// GET "/system/df"
-type DiskUsage struct {
-	LayersSize  int64
-	Images      []*ImageSummary
-	Containers  []*Container
-	Volumes     []*Volume
-	BuilderSize int64
-}
-
-// ContainersPruneReport contains the response for Engine API:
-// POST "/containers/prune"
-type ContainersPruneReport struct {
-	ContainersDeleted []string
-	SpaceReclaimed    uint64
-}
-
-// VolumesPruneReport contains the response for Engine API:
-// POST "/volumes/prune"
-type VolumesPruneReport struct {
-	VolumesDeleted []string
-	SpaceReclaimed uint64
-}
-
-// ImagesPruneReport contains the response for Engine API:
-// POST "/images/prune"
-type ImagesPruneReport struct {
-	ImagesDeleted  []ImageDeleteResponseItem
-	SpaceReclaimed uint64
-}
-
-// BuildCachePruneReport contains the response for Engine API:
-// POST "/build/prune"
-type BuildCachePruneReport struct {
-	SpaceReclaimed uint64
-}
-
-// NetworksPruneReport contains the response for Engine API:
-// POST "/networks/prune"
-type NetworksPruneReport struct {
-	NetworksDeleted []string
-}
-
-// SecretCreateResponse contains the information returned to a client
-// on the creation of a new secret.
-type SecretCreateResponse struct {
-	// ID is the id of the created secret.
-	ID string
-}
-
-// SecretListOptions holds parameters to list secrets
-type SecretListOptions struct {
-	Filters filters.Args
-}
-
-// ConfigCreateResponse contains the information returned to a client
-// on the creation of a new config.
-type ConfigCreateResponse struct {
-	// ID is the id of the created config.
-	ID string
-}
-
-// ConfigListOptions holds parameters to list configs
-type ConfigListOptions struct {
-	Filters filters.Args
-}
-
-// PushResult contains the tag, manifest digest, and manifest size from the
-// push. It's used to signal this information to the trust code in the client
-// so it can sign the manifest if necessary.
-type PushResult struct {
-	Tag    string
-	Digest string
-	Size   int
-}
-
-// BuildResult contains the image id of a successful build
-type BuildResult struct {
-	ID string
-}
diff --git a/vendor/github.com/docker/docker/api/types/versions/compare.go b/vendor/github.com/docker/docker/api/types/versions/compare.go
deleted file mode 100644
index 8ccb0aa92e..0000000000
--- a/vendor/github.com/docker/docker/api/types/versions/compare.go
+++ /dev/null
@@ -1,62 +0,0 @@
-package versions // import "github.com/docker/docker/api/types/versions"
-
-import (
-	"strconv"
-	"strings"
-)
-
-// compare compares two version strings
-// returns -1 if v1 < v2, 1 if v1 > v2, 0 otherwise.
-func compare(v1, v2 string) int {
-	var (
-		currTab  = strings.Split(v1, ".")
-		otherTab = strings.Split(v2, ".")
-	)
-
-	max := len(currTab)
-	if len(otherTab) > max {
-		max = len(otherTab)
-	}
-	for i := 0; i < max; i++ {
-		var currInt, otherInt int
-
-		if len(currTab) > i {
-			currInt, _ = strconv.Atoi(currTab[i])
-		}
-		if len(otherTab) > i {
-			otherInt, _ = strconv.Atoi(otherTab[i])
-		}
-		if currInt > otherInt {
-			return 1
-		}
-		if otherInt > currInt {
-			return -1
-		}
-	}
-	return 0
-}
-
-// LessThan checks if a version is less than another
-func LessThan(v, other string) bool {
-	return compare(v, other) == -1
-}
-
-// LessThanOrEqualTo checks if a version is less than or equal to another
-func LessThanOrEqualTo(v, other string) bool {
-	return compare(v, other) <= 0
-}
-
-// GreaterThan checks if a version is greater than another
-func GreaterThan(v, other string) bool {
-	return compare(v, other) == 1
-}
-
-// GreaterThanOrEqualTo checks if a version is greater than or equal to another
-func GreaterThanOrEqualTo(v, other string) bool {
-	return compare(v, other) >= 0
-}
-
-// Equal checks if a version is equal to another
-func Equal(v, other string) bool {
-	return compare(v, other) == 0
-}
diff --git a/vendor/github.com/docker/docker/api/types/volume.go b/vendor/github.com/docker/docker/api/types/volume.go
deleted file mode 100644
index b5ee96a500..0000000000
--- a/vendor/github.com/docker/docker/api/types/volume.go
+++ /dev/null
@@ -1,69 +0,0 @@
-package types
-
-// This file was generated by the swagger tool.
-// Editing this file might prove futile when you re-run the swagger generate command
-
-// Volume volume
-// swagger:model Volume
-type Volume struct {
-
-	// Date/Time the volume was created.
-	CreatedAt string `json:"CreatedAt,omitempty"`
-
-	// Name of the volume driver used by the volume.
-	// Required: true
-	Driver string `json:"Driver"`
-
-	// User-defined key/value metadata.
-	// Required: true
-	Labels map[string]string `json:"Labels"`
-
-	// Mount path of the volume on the host.
-	// Required: true
-	Mountpoint string `json:"Mountpoint"`
-
-	// Name of the volume.
-	// Required: true
-	Name string `json:"Name"`
-
-	// The driver specific options used when creating the volume.
-	// Required: true
-	Options map[string]string `json:"Options"`
-
-	// The level at which the volume exists. Either `global` for cluster-wide, or `local` for machine level.
-	// Required: true
-	Scope string `json:"Scope"`
-
-	// Low-level details about the volume, provided by the volume driver.
-	// Details are returned as a map with key/value pairs:
-	// `{"key":"value","key2":"value2"}`.
-	//
-	// The `Status` field is optional, and is omitted if the volume driver
-	// does not support this feature.
-	//
-	Status map[string]interface{} `json:"Status,omitempty"`
-
-	// usage data
-	UsageData *VolumeUsageData `json:"UsageData,omitempty"`
-}
-
-// VolumeUsageData Usage details about the volume. This information is used by the
-// `GET /system/df` endpoint, and omitted in other endpoints.
-//
-// swagger:model VolumeUsageData
-type VolumeUsageData struct {
-
-	// The number of containers referencing this volume. This field
-	// is set to `-1` if the reference-count is not available.
-	//
-	// Required: true
-	RefCount int64 `json:"RefCount"`
-
-	// Amount of disk space used by the volume (in bytes). This information
-	// is only available for volumes created with the `"local"` volume
-	// driver. For volumes created with other volume drivers, this field
-	// is set to `-1` ("not available")
-	//
-	// Required: true
-	Size int64 `json:"Size"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/volume/volumes_create.go b/vendor/github.com/docker/docker/api/types/volume/volumes_create.go
deleted file mode 100644
index b2dd3a419d..0000000000
--- a/vendor/github.com/docker/docker/api/types/volume/volumes_create.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package volume // import "github.com/docker/docker/api/types/volume"
-
-// ----------------------------------------------------------------------------
-// DO NOT EDIT THIS FILE
-// This file was generated by `swagger generate operation`
-//
-// See hack/generate-swagger-api.sh
-// ----------------------------------------------------------------------------
-
-// VolumesCreateBody volumes create body
-// swagger:model VolumesCreateBody
-type VolumesCreateBody struct {
-
-	// Name of the volume driver to use.
-	// Required: true
-	Driver string `json:"Driver"`
-
-	// A mapping of driver options and values. These options are passed directly to the driver and are driver specific.
-	// Required: true
-	DriverOpts map[string]string `json:"DriverOpts"`
-
-	// User-defined key/value metadata.
-	// Required: true
-	Labels map[string]string `json:"Labels"`
-
-	// The new volume's name. If not specified, Docker generates a name.
-	// Required: true
-	Name string `json:"Name"`
-}
diff --git a/vendor/github.com/docker/docker/api/types/volume/volumes_list.go b/vendor/github.com/docker/docker/api/types/volume/volumes_list.go
deleted file mode 100644
index e071ca08fc..0000000000
--- a/vendor/github.com/docker/docker/api/types/volume/volumes_list.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package volume // import "github.com/docker/docker/api/types/volume"
-
-// ----------------------------------------------------------------------------
-// DO NOT EDIT THIS FILE
-// This file was generated by `swagger generate operation`
-//
-// See hack/generate-swagger-api.sh
-// ----------------------------------------------------------------------------
-
-import "github.com/docker/docker/api/types"
-
-// VolumesListOKBody volumes list o k body
-// swagger:model VolumesListOKBody
-type VolumesListOKBody struct {
-
-	// List of volumes
-	// Required: true
-	Volumes []*types.Volume `json:"Volumes"`
-
-	// Warnings that occurred when fetching the list of volumes
-	// Required: true
-	Warnings []string `json:"Warnings"`
-}
diff --git a/vendor/github.com/docker/docker/client/build_prune.go b/vendor/github.com/docker/docker/client/build_prune.go
deleted file mode 100644
index 3ad07ccb85..0000000000
--- a/vendor/github.com/docker/docker/client/build_prune.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// BuildCachePrune requests the daemon to delete unused cache data
-func (cli *Client) BuildCachePrune(ctx context.Context) (*types.BuildCachePruneReport, error) {
-	if err := cli.NewVersionError("1.31", "build prune"); err != nil {
-		return nil, err
-	}
-
-	report := types.BuildCachePruneReport{}
-
-	serverResp, err := cli.post(ctx, "/build/prune", nil, nil, nil)
-	if err != nil {
-		return nil, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&report); err != nil {
-		return nil, fmt.Errorf("Error retrieving disk usage: %v", err)
-	}
-
-	return &report, nil
-}
diff --git a/vendor/github.com/docker/docker/client/checkpoint_create.go b/vendor/github.com/docker/docker/client/checkpoint_create.go
deleted file mode 100644
index 6441ed2501..0000000000
--- a/vendor/github.com/docker/docker/client/checkpoint_create.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// CheckpointCreate creates a checkpoint from the given container with the given name
-func (cli *Client) CheckpointCreate(ctx context.Context, container string, options types.CheckpointCreateOptions) error {
-	resp, err := cli.post(ctx, "/containers/"+container+"/checkpoints", nil, options, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/checkpoint_delete.go b/vendor/github.com/docker/docker/client/checkpoint_delete.go
deleted file mode 100644
index 5b97c35c6b..0000000000
--- a/vendor/github.com/docker/docker/client/checkpoint_delete.go
+++ /dev/null
@@ -1,20 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// CheckpointDelete deletes the checkpoint with the given name from the given container
-func (cli *Client) CheckpointDelete(ctx context.Context, containerID string, options types.CheckpointDeleteOptions) error {
-	query := url.Values{}
-	if options.CheckpointDir != "" {
-		query.Set("dir", options.CheckpointDir)
-	}
-
-	resp, err := cli.delete(ctx, "/containers/"+containerID+"/checkpoints/"+options.CheckpointID, query, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/checkpoint_list.go b/vendor/github.com/docker/docker/client/checkpoint_list.go
deleted file mode 100644
index 8ba1ddff7f..0000000000
--- a/vendor/github.com/docker/docker/client/checkpoint_list.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// CheckpointList returns the checkpoints of the given container in the docker host
-func (cli *Client) CheckpointList(ctx context.Context, container string, options types.CheckpointListOptions) ([]types.Checkpoint, error) {
-	var checkpoints []types.Checkpoint
-
-	query := url.Values{}
-	if options.CheckpointDir != "" {
-		query.Set("dir", options.CheckpointDir)
-	}
-
-	resp, err := cli.get(ctx, "/containers/"+container+"/checkpoints", query, nil)
-	if err != nil {
-		return checkpoints, wrapResponseError(err, resp, "container", container)
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&checkpoints)
-	ensureReaderClosed(resp)
-	return checkpoints, err
-}
diff --git a/vendor/github.com/docker/docker/client/client.go b/vendor/github.com/docker/docker/client/client.go
deleted file mode 100644
index 6ce0cdba1f..0000000000
--- a/vendor/github.com/docker/docker/client/client.go
+++ /dev/null
@@ -1,383 +0,0 @@
-/*
-Package client is a Go client for the Docker Engine API.
-
-For more information about the Engine API, see the documentation:
-https://docs.docker.com/engine/reference/api/
-
-Usage
-
-You use the library by creating a client object and calling methods on it. The
-client can be created either from environment variables with NewEnvClient, or
-configured manually with NewClient.
-
-For example, to list running containers (the equivalent of "docker ps"):
-
-	package main
-
-	import (
-		"context"
-		"fmt"
-
-		"github.com/docker/docker/api/types"
-		"github.com/docker/docker/client"
-	)
-
-	func main() {
-		cli, err := client.NewEnvClient()
-		if err != nil {
-			panic(err)
-		}
-
-		containers, err := cli.ContainerList(context.Background(), types.ContainerListOptions{})
-		if err != nil {
-			panic(err)
-		}
-
-		for _, container := range containers {
-			fmt.Printf("%s %s\n", container.ID[:10], container.Image)
-		}
-	}
-
-*/
-package client // import "github.com/docker/docker/client"
-
-import (
-	"errors"
-	"fmt"
-	"net/http"
-	"net/url"
-	"os"
-	"path"
-	"path/filepath"
-	"strings"
-
-	"github.com/docker/docker/api"
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/versions"
-	"github.com/docker/go-connections/sockets"
-	"github.com/docker/go-connections/tlsconfig"
-	"golang.org/x/net/context"
-)
-
-// ErrRedirect is the error returned by checkRedirect when the request is non-GET.
-var ErrRedirect = errors.New("unexpected redirect in response")
-
-// Client is the API client that performs all operations
-// against a docker server.
-type Client struct {
-	// scheme sets the scheme for the client
-	scheme string
-	// host holds the server address to connect to
-	host string
-	// proto holds the client protocol i.e. unix.
-	proto string
-	// addr holds the client address.
-	addr string
-	// basePath holds the path to prepend to the requests.
-	basePath string
-	// client used to send and receive http requests.
-	client *http.Client
-	// version of the server to talk to.
-	version string
-	// custom http headers configured by users.
-	customHTTPHeaders map[string]string
-	// manualOverride is set to true when the version was set by users.
-	manualOverride bool
-}
-
-// CheckRedirect specifies the policy for dealing with redirect responses:
-// If the request is non-GET return `ErrRedirect`. Otherwise use the last response.
-//
-// Go 1.8 changes behavior for HTTP redirects (specifically 301, 307, and 308) in the client .
-// The Docker client (and by extension docker API client) can be made to to send a request
-// like POST /containers//start where what would normally be in the name section of the URL is empty.
-// This triggers an HTTP 301 from the daemon.
-// In go 1.8 this 301 will be converted to a GET request, and ends up getting a 404 from the daemon.
-// This behavior change manifests in the client in that before the 301 was not followed and
-// the client did not generate an error, but now results in a message like Error response from daemon: page not found.
-func CheckRedirect(req *http.Request, via []*http.Request) error {
-	if via[0].Method == http.MethodGet {
-		return http.ErrUseLastResponse
-	}
-	return ErrRedirect
-}
-
-// NewEnvClient initializes a new API client based on environment variables.
-// Use DOCKER_HOST to set the url to the docker server.
-// Use DOCKER_API_VERSION to set the version of the API to reach, leave empty for latest.
-// Use DOCKER_CERT_PATH to load the TLS certificates from.
-// Use DOCKER_TLS_VERIFY to enable or disable TLS verification, off by default.
-// deprecated: use NewClientWithOpts(FromEnv)
-func NewEnvClient() (*Client, error) {
-	return NewClientWithOpts(FromEnv)
-}
-
-// FromEnv enhance the default client with values from environment variables
-func FromEnv(c *Client) error {
-	var httpClient *http.Client
-	if dockerCertPath := os.Getenv("DOCKER_CERT_PATH"); dockerCertPath != "" {
-		options := tlsconfig.Options{
-			CAFile:             filepath.Join(dockerCertPath, "ca.pem"),
-			CertFile:           filepath.Join(dockerCertPath, "cert.pem"),
-			KeyFile:            filepath.Join(dockerCertPath, "key.pem"),
-			InsecureSkipVerify: os.Getenv("DOCKER_TLS_VERIFY") == "",
-		}
-		tlsc, err := tlsconfig.Client(options)
-		if err != nil {
-			return err
-		}
-
-		httpClient = &http.Client{
-			Transport: &http.Transport{
-				TLSClientConfig: tlsc,
-			},
-			CheckRedirect: CheckRedirect,
-		}
-		WithHTTPClient(httpClient)(c)
-	}
-
-	host := os.Getenv("DOCKER_HOST")
-	if host != "" {
-		// WithHost will create an API client if it doesn't exist
-		if err := WithHost(host)(c); err != nil {
-			return err
-		}
-	}
-	version := os.Getenv("DOCKER_API_VERSION")
-	if version != "" {
-		c.version = version
-		c.manualOverride = true
-	}
-	return nil
-}
-
-// WithVersion overrides the client version with the specified one
-func WithVersion(version string) func(*Client) error {
-	return func(c *Client) error {
-		c.version = version
-		return nil
-	}
-}
-
-// WithHost overrides the client host with the specified one, creating a new
-// http client if one doesn't exist
-func WithHost(host string) func(*Client) error {
-	return func(c *Client) error {
-		hostURL, err := ParseHostURL(host)
-		if err != nil {
-			return err
-		}
-		c.host = host
-		c.proto = hostURL.Scheme
-		c.addr = hostURL.Host
-		c.basePath = hostURL.Path
-		if c.client == nil {
-			client, err := defaultHTTPClient(host)
-			if err != nil {
-				return err
-			}
-			return WithHTTPClient(client)(c)
-		}
-		if transport, ok := c.client.Transport.(*http.Transport); ok {
-			return sockets.ConfigureTransport(transport, c.proto, c.addr)
-		}
-		return fmt.Errorf("cannot apply host to http transport")
-	}
-}
-
-// WithHTTPClient overrides the client http client with the specified one
-func WithHTTPClient(client *http.Client) func(*Client) error {
-	return func(c *Client) error {
-		if client != nil {
-			c.client = client
-		}
-		return nil
-	}
-}
-
-// WithHTTPHeaders overrides the client default http headers
-func WithHTTPHeaders(headers map[string]string) func(*Client) error {
-	return func(c *Client) error {
-		c.customHTTPHeaders = headers
-		return nil
-	}
-}
-
-// NewClientWithOpts initializes a new API client with default values. It takes functors
-// to modify values when creating it, like `NewClientWithOpts(WithVersion(…))`
-// It also initializes the custom http headers to add to each request.
-//
-// It won't send any version information if the version number is empty. It is
-// highly recommended that you set a version or your client may break if the
-// server is upgraded.
-func NewClientWithOpts(ops ...func(*Client) error) (*Client, error) {
-	client, err := defaultHTTPClient(DefaultDockerHost)
-	if err != nil {
-		return nil, err
-	}
-	c := &Client{
-		host:    DefaultDockerHost,
-		version: api.DefaultVersion,
-		scheme:  "http",
-		client:  client,
-		proto:   defaultProto,
-		addr:    defaultAddr,
-	}
-
-	for _, op := range ops {
-		if err := op(c); err != nil {
-			return nil, err
-		}
-	}
-
-	if _, ok := c.client.Transport.(http.RoundTripper); !ok {
-		return nil, fmt.Errorf("unable to verify TLS configuration, invalid transport %v", c.client.Transport)
-	}
-	tlsConfig := resolveTLSConfig(c.client.Transport)
-	if tlsConfig != nil {
-		// TODO(stevvooe): This isn't really the right way to write clients in Go.
-		// `NewClient` should probably only take an `*http.Client` and work from there.
-		// Unfortunately, the model of having a host-ish/url-thingy as the connection
-		// string has us confusing protocol and transport layers. We continue doing
-		// this to avoid breaking existing clients but this should be addressed.
-		c.scheme = "https"
-	}
-
-	return c, nil
-}
-
-func defaultHTTPClient(host string) (*http.Client, error) {
-	url, err := ParseHostURL(host)
-	if err != nil {
-		return nil, err
-	}
-	transport := new(http.Transport)
-	sockets.ConfigureTransport(transport, url.Scheme, url.Host)
-	return &http.Client{
-		Transport:     transport,
-		CheckRedirect: CheckRedirect,
-	}, nil
-}
-
-// NewClient initializes a new API client for the given host and API version.
-// It uses the given http client as transport.
-// It also initializes the custom http headers to add to each request.
-//
-// It won't send any version information if the version number is empty. It is
-// highly recommended that you set a version or your client may break if the
-// server is upgraded.
-// deprecated: use NewClientWithOpts
-func NewClient(host string, version string, client *http.Client, httpHeaders map[string]string) (*Client, error) {
-	return NewClientWithOpts(WithHost(host), WithVersion(version), WithHTTPClient(client), WithHTTPHeaders(httpHeaders))
-}
-
-// Close the transport used by the client
-func (cli *Client) Close() error {
-	if t, ok := cli.client.Transport.(*http.Transport); ok {
-		t.CloseIdleConnections()
-	}
-	return nil
-}
-
-// getAPIPath returns the versioned request path to call the api.
-// It appends the query parameters to the path if they are not empty.
-func (cli *Client) getAPIPath(p string, query url.Values) string {
-	var apiPath string
-	if cli.version != "" {
-		v := strings.TrimPrefix(cli.version, "v")
-		apiPath = path.Join(cli.basePath, "/v"+v, p)
-	} else {
-		apiPath = path.Join(cli.basePath, p)
-	}
-	return (&url.URL{Path: apiPath, RawQuery: query.Encode()}).String()
-}
-
-// ClientVersion returns the API version used by this client.
-func (cli *Client) ClientVersion() string {
-	return cli.version
-}
-
-// NegotiateAPIVersion queries the API and updates the version to match the
-// API version. Any errors are silently ignored.
-func (cli *Client) NegotiateAPIVersion(ctx context.Context) {
-	ping, _ := cli.Ping(ctx)
-	cli.NegotiateAPIVersionPing(ping)
-}
-
-// NegotiateAPIVersionPing updates the client version to match the Ping.APIVersion
-// if the ping version is less than the default version.
-func (cli *Client) NegotiateAPIVersionPing(p types.Ping) {
-	if cli.manualOverride {
-		return
-	}
-
-	// try the latest version before versioning headers existed
-	if p.APIVersion == "" {
-		p.APIVersion = "1.24"
-	}
-
-	// if the client is not initialized with a version, start with the latest supported version
-	if cli.version == "" {
-		cli.version = api.DefaultVersion
-	}
-
-	// if server version is lower than the client version, downgrade
-	if versions.LessThan(p.APIVersion, cli.version) {
-		cli.version = p.APIVersion
-	}
-}
-
-// DaemonHost returns the host address used by the client
-func (cli *Client) DaemonHost() string {
-	return cli.host
-}
-
-// ParseHost parses a url string, validates the strings is a host url, and returns
-// the parsed host as: protocol, address, and base path
-// Deprecated: use ParseHostURL
-func ParseHost(host string) (string, string, string, error) {
-	hostURL, err := ParseHostURL(host)
-	if err != nil {
-		return "", "", "", err
-	}
-	return hostURL.Scheme, hostURL.Host, hostURL.Path, nil
-}
-
-// ParseHostURL parses a url string, validates the string is a host url, and
-// returns the parsed URL
-func ParseHostURL(host string) (*url.URL, error) {
-	protoAddrParts := strings.SplitN(host, "://", 2)
-	if len(protoAddrParts) == 1 {
-		return nil, fmt.Errorf("unable to parse docker host `%s`", host)
-	}
-
-	var basePath string
-	proto, addr := protoAddrParts[0], protoAddrParts[1]
-	if proto == "tcp" {
-		parsed, err := url.Parse("tcp://" + addr)
-		if err != nil {
-			return nil, err
-		}
-		addr = parsed.Host
-		basePath = parsed.Path
-	}
-	return &url.URL{
-		Scheme: proto,
-		Host:   addr,
-		Path:   basePath,
-	}, nil
-}
-
-// CustomHTTPHeaders returns the custom http headers stored by the client.
-func (cli *Client) CustomHTTPHeaders() map[string]string {
-	m := make(map[string]string)
-	for k, v := range cli.customHTTPHeaders {
-		m[k] = v
-	}
-	return m
-}
-
-// SetCustomHTTPHeaders that will be set on every HTTP request made by the client.
-func (cli *Client) SetCustomHTTPHeaders(headers map[string]string) {
-	cli.customHTTPHeaders = headers
-}
diff --git a/vendor/github.com/docker/docker/client/client_unix.go b/vendor/github.com/docker/docker/client/client_unix.go
deleted file mode 100644
index 3d24470ba3..0000000000
--- a/vendor/github.com/docker/docker/client/client_unix.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build linux freebsd openbsd darwin
-
-package client // import "github.com/docker/docker/client"
-
-// DefaultDockerHost defines os specific default if DOCKER_HOST is unset
-const DefaultDockerHost = "unix:///var/run/docker.sock"
-
-const defaultProto = "unix"
-const defaultAddr = "/var/run/docker.sock"
diff --git a/vendor/github.com/docker/docker/client/client_windows.go b/vendor/github.com/docker/docker/client/client_windows.go
deleted file mode 100644
index c649e54412..0000000000
--- a/vendor/github.com/docker/docker/client/client_windows.go
+++ /dev/null
@@ -1,7 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-// DefaultDockerHost defines os specific default if DOCKER_HOST is unset
-const DefaultDockerHost = "npipe:////./pipe/docker_engine"
-
-const defaultProto = "npipe"
-const defaultAddr = "//./pipe/docker_engine"
diff --git a/vendor/github.com/docker/docker/client/config_create.go b/vendor/github.com/docker/docker/client/config_create.go
deleted file mode 100644
index b6d15b70e4..0000000000
--- a/vendor/github.com/docker/docker/client/config_create.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ConfigCreate creates a new Config.
-func (cli *Client) ConfigCreate(ctx context.Context, config swarm.ConfigSpec) (types.ConfigCreateResponse, error) {
-	var response types.ConfigCreateResponse
-	if err := cli.NewVersionError("1.30", "config create"); err != nil {
-		return response, err
-	}
-	resp, err := cli.post(ctx, "/configs/create", nil, config, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/config_inspect.go b/vendor/github.com/docker/docker/client/config_inspect.go
deleted file mode 100644
index b49fdf568a..0000000000
--- a/vendor/github.com/docker/docker/client/config_inspect.go
+++ /dev/null
@@ -1,33 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ConfigInspectWithRaw returns the config information with raw data
-func (cli *Client) ConfigInspectWithRaw(ctx context.Context, id string) (swarm.Config, []byte, error) {
-	if err := cli.NewVersionError("1.30", "config inspect"); err != nil {
-		return swarm.Config{}, nil, err
-	}
-	resp, err := cli.get(ctx, "/configs/"+id, nil, nil)
-	if err != nil {
-		return swarm.Config{}, nil, wrapResponseError(err, resp, "config", id)
-	}
-	defer ensureReaderClosed(resp)
-
-	body, err := ioutil.ReadAll(resp.body)
-	if err != nil {
-		return swarm.Config{}, nil, err
-	}
-
-	var config swarm.Config
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&config)
-
-	return config, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/config_list.go b/vendor/github.com/docker/docker/client/config_list.go
deleted file mode 100644
index b9d2632f6a..0000000000
--- a/vendor/github.com/docker/docker/client/config_list.go
+++ /dev/null
@@ -1,38 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ConfigList returns the list of configs.
-func (cli *Client) ConfigList(ctx context.Context, options types.ConfigListOptions) ([]swarm.Config, error) {
-	if err := cli.NewVersionError("1.30", "config list"); err != nil {
-		return nil, err
-	}
-	query := url.Values{}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/configs", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var configs []swarm.Config
-	err = json.NewDecoder(resp.body).Decode(&configs)
-	ensureReaderClosed(resp)
-	return configs, err
-}
diff --git a/vendor/github.com/docker/docker/client/config_remove.go b/vendor/github.com/docker/docker/client/config_remove.go
deleted file mode 100644
index 9c8f293f3e..0000000000
--- a/vendor/github.com/docker/docker/client/config_remove.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// ConfigRemove removes a Config.
-func (cli *Client) ConfigRemove(ctx context.Context, id string) error {
-	if err := cli.NewVersionError("1.30", "config remove"); err != nil {
-		return err
-	}
-	resp, err := cli.delete(ctx, "/configs/"+id, nil, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "config", id)
-}
diff --git a/vendor/github.com/docker/docker/client/config_update.go b/vendor/github.com/docker/docker/client/config_update.go
deleted file mode 100644
index 6b24024cd1..0000000000
--- a/vendor/github.com/docker/docker/client/config_update.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ConfigUpdate attempts to update a Config
-func (cli *Client) ConfigUpdate(ctx context.Context, id string, version swarm.Version, config swarm.ConfigSpec) error {
-	if err := cli.NewVersionError("1.30", "config update"); err != nil {
-		return err
-	}
-	query := url.Values{}
-	query.Set("version", strconv.FormatUint(version.Index, 10))
-	resp, err := cli.post(ctx, "/configs/"+id+"/update", query, config, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_attach.go b/vendor/github.com/docker/docker/client/container_attach.go
deleted file mode 100644
index 1a2a431975..0000000000
--- a/vendor/github.com/docker/docker/client/container_attach.go
+++ /dev/null
@@ -1,57 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerAttach attaches a connection to a container in the server.
-// It returns a types.HijackedConnection with the hijacked connection
-// and the a reader to get output. It's up to the called to close
-// the hijacked connection by calling types.HijackedResponse.Close.
-//
-// The stream format on the response will be in one of two formats:
-//
-// If the container is using a TTY, there is only a single stream (stdout), and
-// data is copied directly from the container output stream, no extra
-// multiplexing or headers.
-//
-// If the container is *not* using a TTY, streams for stdout and stderr are
-// multiplexed.
-// The format of the multiplexed stream is as follows:
-//
-//    [8]byte{STREAM_TYPE, 0, 0, 0, SIZE1, SIZE2, SIZE3, SIZE4}[]byte{OUTPUT}
-//
-// STREAM_TYPE can be 1 for stdout and 2 for stderr
-//
-// SIZE1, SIZE2, SIZE3, and SIZE4 are four bytes of uint32 encoded as big endian.
-// This is the size of OUTPUT.
-//
-// You can use github.com/docker/docker/pkg/stdcopy.StdCopy to demultiplex this
-// stream.
-func (cli *Client) ContainerAttach(ctx context.Context, container string, options types.ContainerAttachOptions) (types.HijackedResponse, error) {
-	query := url.Values{}
-	if options.Stream {
-		query.Set("stream", "1")
-	}
-	if options.Stdin {
-		query.Set("stdin", "1")
-	}
-	if options.Stdout {
-		query.Set("stdout", "1")
-	}
-	if options.Stderr {
-		query.Set("stderr", "1")
-	}
-	if options.DetachKeys != "" {
-		query.Set("detachKeys", options.DetachKeys)
-	}
-	if options.Logs {
-		query.Set("logs", "1")
-	}
-
-	headers := map[string][]string{"Content-Type": {"text/plain"}}
-	return cli.postHijacked(ctx, "/containers/"+container+"/attach", query, nil, headers)
-}
diff --git a/vendor/github.com/docker/docker/client/container_commit.go b/vendor/github.com/docker/docker/client/container_commit.go
deleted file mode 100644
index 95219beb17..0000000000
--- a/vendor/github.com/docker/docker/client/container_commit.go
+++ /dev/null
@@ -1,55 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"errors"
-	"net/url"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerCommit applies changes into a container and creates a new tagged image.
-func (cli *Client) ContainerCommit(ctx context.Context, container string, options types.ContainerCommitOptions) (types.IDResponse, error) {
-	var repository, tag string
-	if options.Reference != "" {
-		ref, err := reference.ParseNormalizedNamed(options.Reference)
-		if err != nil {
-			return types.IDResponse{}, err
-		}
-
-		if _, isCanonical := ref.(reference.Canonical); isCanonical {
-			return types.IDResponse{}, errors.New("refusing to create a tag with a digest reference")
-		}
-		ref = reference.TagNameOnly(ref)
-
-		if tagged, ok := ref.(reference.Tagged); ok {
-			tag = tagged.Tag()
-		}
-		repository = reference.FamiliarName(ref)
-	}
-
-	query := url.Values{}
-	query.Set("container", container)
-	query.Set("repo", repository)
-	query.Set("tag", tag)
-	query.Set("comment", options.Comment)
-	query.Set("author", options.Author)
-	for _, change := range options.Changes {
-		query.Add("changes", change)
-	}
-	if !options.Pause {
-		query.Set("pause", "0")
-	}
-
-	var response types.IDResponse
-	resp, err := cli.post(ctx, "/commit", query, options.Config, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_copy.go b/vendor/github.com/docker/docker/client/container_copy.go
deleted file mode 100644
index 036298c17c..0000000000
--- a/vendor/github.com/docker/docker/client/container_copy.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/base64"
-	"encoding/json"
-	"fmt"
-	"io"
-	"net/http"
-	"net/url"
-	"path/filepath"
-	"strings"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-)
-
-// ContainerStatPath returns Stat information about a path inside the container filesystem.
-func (cli *Client) ContainerStatPath(ctx context.Context, containerID, path string) (types.ContainerPathStat, error) {
-	query := url.Values{}
-	query.Set("path", filepath.ToSlash(path)) // Normalize the paths used in the API.
-
-	urlStr := "/containers/" + containerID + "/archive"
-	response, err := cli.head(ctx, urlStr, query, nil)
-	if err != nil {
-		return types.ContainerPathStat{}, wrapResponseError(err, response, "container:path", containerID+":"+path)
-	}
-	defer ensureReaderClosed(response)
-	return getContainerPathStatFromHeader(response.header)
-}
-
-// CopyToContainer copies content into the container filesystem.
-// Note that `content` must be a Reader for a TAR archive
-func (cli *Client) CopyToContainer(ctx context.Context, containerID, dstPath string, content io.Reader, options types.CopyToContainerOptions) error {
-	query := url.Values{}
-	query.Set("path", filepath.ToSlash(dstPath)) // Normalize the paths used in the API.
-	// Do not allow for an existing directory to be overwritten by a non-directory and vice versa.
-	if !options.AllowOverwriteDirWithFile {
-		query.Set("noOverwriteDirNonDir", "true")
-	}
-
-	if options.CopyUIDGID {
-		query.Set("copyUIDGID", "true")
-	}
-
-	apiPath := "/containers/" + containerID + "/archive"
-
-	response, err := cli.putRaw(ctx, apiPath, query, content, nil)
-	if err != nil {
-		return wrapResponseError(err, response, "container:path", containerID+":"+dstPath)
-	}
-	defer ensureReaderClosed(response)
-
-	if response.statusCode != http.StatusOK {
-		return fmt.Errorf("unexpected status code from daemon: %d", response.statusCode)
-	}
-
-	return nil
-}
-
-// CopyFromContainer gets the content from the container and returns it as a Reader
-// for a TAR archive to manipulate it in the host. It's up to the caller to close the reader.
-func (cli *Client) CopyFromContainer(ctx context.Context, containerID, srcPath string) (io.ReadCloser, types.ContainerPathStat, error) {
-	query := make(url.Values, 1)
-	query.Set("path", filepath.ToSlash(srcPath)) // Normalize the paths used in the API.
-
-	apiPath := "/containers/" + containerID + "/archive"
-	response, err := cli.get(ctx, apiPath, query, nil)
-	if err != nil {
-		return nil, types.ContainerPathStat{}, wrapResponseError(err, response, "container:path", containerID+":"+srcPath)
-	}
-
-	if response.statusCode != http.StatusOK {
-		return nil, types.ContainerPathStat{}, fmt.Errorf("unexpected status code from daemon: %d", response.statusCode)
-	}
-
-	// In order to get the copy behavior right, we need to know information
-	// about both the source and the destination. The response headers include
-	// stat info about the source that we can use in deciding exactly how to
-	// copy it locally. Along with the stat info about the local destination,
-	// we have everything we need to handle the multiple possibilities there
-	// can be when copying a file/dir from one location to another file/dir.
-	stat, err := getContainerPathStatFromHeader(response.header)
-	if err != nil {
-		return nil, stat, fmt.Errorf("unable to get resource stat from response: %s", err)
-	}
-	return response.body, stat, err
-}
-
-func getContainerPathStatFromHeader(header http.Header) (types.ContainerPathStat, error) {
-	var stat types.ContainerPathStat
-
-	encodedStat := header.Get("X-Docker-Container-Path-Stat")
-	statDecoder := base64.NewDecoder(base64.StdEncoding, strings.NewReader(encodedStat))
-
-	err := json.NewDecoder(statDecoder).Decode(&stat)
-	if err != nil {
-		err = fmt.Errorf("unable to decode container path stat header: %s", err)
-	}
-
-	return stat, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_create.go b/vendor/github.com/docker/docker/client/container_create.go
deleted file mode 100644
index 0af82a19ec..0000000000
--- a/vendor/github.com/docker/docker/client/container_create.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-	"strings"
-
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/network"
-	"github.com/docker/docker/api/types/versions"
-	"golang.org/x/net/context"
-)
-
-type configWrapper struct {
-	*container.Config
-	HostConfig       *container.HostConfig
-	NetworkingConfig *network.NetworkingConfig
-}
-
-// ContainerCreate creates a new container based in the given configuration.
-// It can be associated with a name, but it's not mandatory.
-func (cli *Client) ContainerCreate(ctx context.Context, config *container.Config, hostConfig *container.HostConfig, networkingConfig *network.NetworkingConfig, containerName string) (container.ContainerCreateCreatedBody, error) {
-	var response container.ContainerCreateCreatedBody
-
-	if err := cli.NewVersionError("1.25", "stop timeout"); config != nil && config.StopTimeout != nil && err != nil {
-		return response, err
-	}
-
-	// When using API 1.24 and under, the client is responsible for removing the container
-	if hostConfig != nil && versions.LessThan(cli.ClientVersion(), "1.25") {
-		hostConfig.AutoRemove = false
-	}
-
-	query := url.Values{}
-	if containerName != "" {
-		query.Set("name", containerName)
-	}
-
-	body := configWrapper{
-		Config:           config,
-		HostConfig:       hostConfig,
-		NetworkingConfig: networkingConfig,
-	}
-
-	serverResp, err := cli.post(ctx, "/containers/create", query, body, nil)
-	if err != nil {
-		if serverResp.statusCode == 404 && strings.Contains(err.Error(), "No such image") {
-			return response, objectNotFoundError{object: "image", id: config.Image}
-		}
-		return response, err
-	}
-
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_diff.go b/vendor/github.com/docker/docker/client/container_diff.go
deleted file mode 100644
index f03ebf1da3..0000000000
--- a/vendor/github.com/docker/docker/client/container_diff.go
+++ /dev/null
@@ -1,23 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types/container"
-	"golang.org/x/net/context"
-)
-
-// ContainerDiff shows differences in a container filesystem since it was started.
-func (cli *Client) ContainerDiff(ctx context.Context, containerID string) ([]container.ContainerChangeResponseItem, error) {
-	var changes []container.ContainerChangeResponseItem
-
-	serverResp, err := cli.get(ctx, "/containers/"+containerID+"/changes", url.Values{}, nil)
-	if err != nil {
-		return changes, err
-	}
-
-	err = json.NewDecoder(serverResp.body).Decode(&changes)
-	ensureReaderClosed(serverResp)
-	return changes, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_exec.go b/vendor/github.com/docker/docker/client/container_exec.go
deleted file mode 100644
index 59db8a90fb..0000000000
--- a/vendor/github.com/docker/docker/client/container_exec.go
+++ /dev/null
@@ -1,54 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerExecCreate creates a new exec configuration to run an exec process.
-func (cli *Client) ContainerExecCreate(ctx context.Context, container string, config types.ExecConfig) (types.IDResponse, error) {
-	var response types.IDResponse
-
-	if err := cli.NewVersionError("1.25", "env"); len(config.Env) != 0 && err != nil {
-		return response, err
-	}
-
-	resp, err := cli.post(ctx, "/containers/"+container+"/exec", nil, config, nil)
-	if err != nil {
-		return response, err
-	}
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
-
-// ContainerExecStart starts an exec process already created in the docker host.
-func (cli *Client) ContainerExecStart(ctx context.Context, execID string, config types.ExecStartCheck) error {
-	resp, err := cli.post(ctx, "/exec/"+execID+"/start", nil, config, nil)
-	ensureReaderClosed(resp)
-	return err
-}
-
-// ContainerExecAttach attaches a connection to an exec process in the server.
-// It returns a types.HijackedConnection with the hijacked connection
-// and the a reader to get output. It's up to the called to close
-// the hijacked connection by calling types.HijackedResponse.Close.
-func (cli *Client) ContainerExecAttach(ctx context.Context, execID string, config types.ExecStartCheck) (types.HijackedResponse, error) {
-	headers := map[string][]string{"Content-Type": {"application/json"}}
-	return cli.postHijacked(ctx, "/exec/"+execID+"/start", nil, config, headers)
-}
-
-// ContainerExecInspect returns information about a specific exec process on the docker host.
-func (cli *Client) ContainerExecInspect(ctx context.Context, execID string) (types.ContainerExecInspect, error) {
-	var response types.ContainerExecInspect
-	resp, err := cli.get(ctx, "/exec/"+execID+"/json", nil, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_export.go b/vendor/github.com/docker/docker/client/container_export.go
deleted file mode 100644
index f4c2bee368..0000000000
--- a/vendor/github.com/docker/docker/client/container_export.go
+++ /dev/null
@@ -1,20 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-
-	"golang.org/x/net/context"
-)
-
-// ContainerExport retrieves the raw contents of a container
-// and returns them as an io.ReadCloser. It's up to the caller
-// to close the stream.
-func (cli *Client) ContainerExport(ctx context.Context, containerID string) (io.ReadCloser, error) {
-	serverResp, err := cli.get(ctx, "/containers/"+containerID+"/export", url.Values{}, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	return serverResp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/container_inspect.go b/vendor/github.com/docker/docker/client/container_inspect.go
deleted file mode 100644
index 1ec45e823f..0000000000
--- a/vendor/github.com/docker/docker/client/container_inspect.go
+++ /dev/null
@@ -1,47 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerInspect returns the container information.
-func (cli *Client) ContainerInspect(ctx context.Context, containerID string) (types.ContainerJSON, error) {
-	serverResp, err := cli.get(ctx, "/containers/"+containerID+"/json", nil, nil)
-	if err != nil {
-		return types.ContainerJSON{}, wrapResponseError(err, serverResp, "container", containerID)
-	}
-
-	var response types.ContainerJSON
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
-
-// ContainerInspectWithRaw returns the container information and its raw representation.
-func (cli *Client) ContainerInspectWithRaw(ctx context.Context, containerID string, getSize bool) (types.ContainerJSON, []byte, error) {
-	query := url.Values{}
-	if getSize {
-		query.Set("size", "1")
-	}
-	serverResp, err := cli.get(ctx, "/containers/"+containerID+"/json", query, nil)
-	if err != nil {
-		return types.ContainerJSON{}, nil, wrapResponseError(err, serverResp, "container", containerID)
-	}
-	defer ensureReaderClosed(serverResp)
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return types.ContainerJSON{}, nil, err
-	}
-
-	var response types.ContainerJSON
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&response)
-	return response, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_kill.go b/vendor/github.com/docker/docker/client/container_kill.go
deleted file mode 100644
index c5a9fe75b2..0000000000
--- a/vendor/github.com/docker/docker/client/container_kill.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"golang.org/x/net/context"
-)
-
-// ContainerKill terminates the container process but does not remove the container from the docker host.
-func (cli *Client) ContainerKill(ctx context.Context, containerID, signal string) error {
-	query := url.Values{}
-	query.Set("signal", signal)
-
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/kill", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_list.go b/vendor/github.com/docker/docker/client/container_list.go
deleted file mode 100644
index cd2e13835b..0000000000
--- a/vendor/github.com/docker/docker/client/container_list.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// ContainerList returns the list of containers in the docker host.
-func (cli *Client) ContainerList(ctx context.Context, options types.ContainerListOptions) ([]types.Container, error) {
-	query := url.Values{}
-
-	if options.All {
-		query.Set("all", "1")
-	}
-
-	if options.Limit != -1 {
-		query.Set("limit", strconv.Itoa(options.Limit))
-	}
-
-	if options.Since != "" {
-		query.Set("since", options.Since)
-	}
-
-	if options.Before != "" {
-		query.Set("before", options.Before)
-	}
-
-	if options.Size {
-		query.Set("size", "1")
-	}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cli.version, options.Filters)
-
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/containers/json", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var containers []types.Container
-	err = json.NewDecoder(resp.body).Decode(&containers)
-	ensureReaderClosed(resp)
-	return containers, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_logs.go b/vendor/github.com/docker/docker/client/container_logs.go
deleted file mode 100644
index 01d88a322f..0000000000
--- a/vendor/github.com/docker/docker/client/container_logs.go
+++ /dev/null
@@ -1,80 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-	"time"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-	timetypes "github.com/docker/docker/api/types/time"
-)
-
-// ContainerLogs returns the logs generated by a container in an io.ReadCloser.
-// It's up to the caller to close the stream.
-//
-// The stream format on the response will be in one of two formats:
-//
-// If the container is using a TTY, there is only a single stream (stdout), and
-// data is copied directly from the container output stream, no extra
-// multiplexing or headers.
-//
-// If the container is *not* using a TTY, streams for stdout and stderr are
-// multiplexed.
-// The format of the multiplexed stream is as follows:
-//
-//    [8]byte{STREAM_TYPE, 0, 0, 0, SIZE1, SIZE2, SIZE3, SIZE4}[]byte{OUTPUT}
-//
-// STREAM_TYPE can be 1 for stdout and 2 for stderr
-//
-// SIZE1, SIZE2, SIZE3, and SIZE4 are four bytes of uint32 encoded as big endian.
-// This is the size of OUTPUT.
-//
-// You can use github.com/docker/docker/pkg/stdcopy.StdCopy to demultiplex this
-// stream.
-func (cli *Client) ContainerLogs(ctx context.Context, container string, options types.ContainerLogsOptions) (io.ReadCloser, error) {
-	query := url.Values{}
-	if options.ShowStdout {
-		query.Set("stdout", "1")
-	}
-
-	if options.ShowStderr {
-		query.Set("stderr", "1")
-	}
-
-	if options.Since != "" {
-		ts, err := timetypes.GetTimestamp(options.Since, time.Now())
-		if err != nil {
-			return nil, err
-		}
-		query.Set("since", ts)
-	}
-
-	if options.Until != "" {
-		ts, err := timetypes.GetTimestamp(options.Until, time.Now())
-		if err != nil {
-			return nil, err
-		}
-		query.Set("until", ts)
-	}
-
-	if options.Timestamps {
-		query.Set("timestamps", "1")
-	}
-
-	if options.Details {
-		query.Set("details", "1")
-	}
-
-	if options.Follow {
-		query.Set("follow", "1")
-	}
-	query.Set("tail", options.Tail)
-
-	resp, err := cli.get(ctx, "/containers/"+container+"/logs", query, nil)
-	if err != nil {
-		return nil, wrapResponseError(err, resp, "container", container)
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/container_pause.go b/vendor/github.com/docker/docker/client/container_pause.go
deleted file mode 100644
index fa0a9011a3..0000000000
--- a/vendor/github.com/docker/docker/client/container_pause.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// ContainerPause pauses the main process of a given container without terminating it.
-func (cli *Client) ContainerPause(ctx context.Context, containerID string) error {
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/pause", nil, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_prune.go b/vendor/github.com/docker/docker/client/container_prune.go
deleted file mode 100644
index 4129841d49..0000000000
--- a/vendor/github.com/docker/docker/client/container_prune.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// ContainersPrune requests the daemon to delete unused data
-func (cli *Client) ContainersPrune(ctx context.Context, pruneFilters filters.Args) (types.ContainersPruneReport, error) {
-	var report types.ContainersPruneReport
-
-	if err := cli.NewVersionError("1.25", "container prune"); err != nil {
-		return report, err
-	}
-
-	query, err := getFiltersQuery(pruneFilters)
-	if err != nil {
-		return report, err
-	}
-
-	serverResp, err := cli.post(ctx, "/containers/prune", query, nil, nil)
-	if err != nil {
-		return report, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&report); err != nil {
-		return report, fmt.Errorf("Error retrieving disk usage: %v", err)
-	}
-
-	return report, nil
-}
diff --git a/vendor/github.com/docker/docker/client/container_remove.go b/vendor/github.com/docker/docker/client/container_remove.go
deleted file mode 100644
index c782914319..0000000000
--- a/vendor/github.com/docker/docker/client/container_remove.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerRemove kills and removes a container from the docker host.
-func (cli *Client) ContainerRemove(ctx context.Context, containerID string, options types.ContainerRemoveOptions) error {
-	query := url.Values{}
-	if options.RemoveVolumes {
-		query.Set("v", "1")
-	}
-	if options.RemoveLinks {
-		query.Set("link", "1")
-	}
-
-	if options.Force {
-		query.Set("force", "1")
-	}
-
-	resp, err := cli.delete(ctx, "/containers/"+containerID, query, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "container", containerID)
-}
diff --git a/vendor/github.com/docker/docker/client/container_rename.go b/vendor/github.com/docker/docker/client/container_rename.go
deleted file mode 100644
index ad43e398d5..0000000000
--- a/vendor/github.com/docker/docker/client/container_rename.go
+++ /dev/null
@@ -1,16 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"golang.org/x/net/context"
-)
-
-// ContainerRename changes the name of a given container.
-func (cli *Client) ContainerRename(ctx context.Context, containerID, newContainerName string) error {
-	query := url.Values{}
-	query.Set("name", newContainerName)
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/rename", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_resize.go b/vendor/github.com/docker/docker/client/container_resize.go
deleted file mode 100644
index 8f1244e228..0000000000
--- a/vendor/github.com/docker/docker/client/container_resize.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerResize changes the size of the tty for a container.
-func (cli *Client) ContainerResize(ctx context.Context, containerID string, options types.ResizeOptions) error {
-	return cli.resize(ctx, "/containers/"+containerID, options.Height, options.Width)
-}
-
-// ContainerExecResize changes the size of the tty for an exec process running inside a container.
-func (cli *Client) ContainerExecResize(ctx context.Context, execID string, options types.ResizeOptions) error {
-	return cli.resize(ctx, "/exec/"+execID, options.Height, options.Width)
-}
-
-func (cli *Client) resize(ctx context.Context, basePath string, height, width uint) error {
-	query := url.Values{}
-	query.Set("h", strconv.Itoa(int(height)))
-	query.Set("w", strconv.Itoa(int(width)))
-
-	resp, err := cli.post(ctx, basePath+"/resize", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_restart.go b/vendor/github.com/docker/docker/client/container_restart.go
deleted file mode 100644
index 8c8085dcf2..0000000000
--- a/vendor/github.com/docker/docker/client/container_restart.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"time"
-
-	timetypes "github.com/docker/docker/api/types/time"
-	"golang.org/x/net/context"
-)
-
-// ContainerRestart stops and starts a container again.
-// It makes the daemon to wait for the container to be up again for
-// a specific amount of time, given the timeout.
-func (cli *Client) ContainerRestart(ctx context.Context, containerID string, timeout *time.Duration) error {
-	query := url.Values{}
-	if timeout != nil {
-		query.Set("t", timetypes.DurationToSecondsString(*timeout))
-	}
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/restart", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_start.go b/vendor/github.com/docker/docker/client/container_start.go
deleted file mode 100644
index d06b637003..0000000000
--- a/vendor/github.com/docker/docker/client/container_start.go
+++ /dev/null
@@ -1,24 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-)
-
-// ContainerStart sends a request to the docker daemon to start a container.
-func (cli *Client) ContainerStart(ctx context.Context, containerID string, options types.ContainerStartOptions) error {
-	query := url.Values{}
-	if len(options.CheckpointID) != 0 {
-		query.Set("checkpoint", options.CheckpointID)
-	}
-	if len(options.CheckpointDir) != 0 {
-		query.Set("checkpoint-dir", options.CheckpointDir)
-	}
-
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/start", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_stats.go b/vendor/github.com/docker/docker/client/container_stats.go
deleted file mode 100644
index a7a2b8ec35..0000000000
--- a/vendor/github.com/docker/docker/client/container_stats.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ContainerStats returns near realtime stats for a given container.
-// It's up to the caller to close the io.ReadCloser returned.
-func (cli *Client) ContainerStats(ctx context.Context, containerID string, stream bool) (types.ContainerStats, error) {
-	query := url.Values{}
-	query.Set("stream", "0")
-	if stream {
-		query.Set("stream", "1")
-	}
-
-	resp, err := cli.get(ctx, "/containers/"+containerID+"/stats", query, nil)
-	if err != nil {
-		return types.ContainerStats{}, err
-	}
-
-	osType := getDockerOS(resp.header.Get("Server"))
-	return types.ContainerStats{Body: resp.body, OSType: osType}, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_stop.go b/vendor/github.com/docker/docker/client/container_stop.go
deleted file mode 100644
index ca316666a9..0000000000
--- a/vendor/github.com/docker/docker/client/container_stop.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"time"
-
-	timetypes "github.com/docker/docker/api/types/time"
-	"golang.org/x/net/context"
-)
-
-// ContainerStop stops a container without terminating the process.
-// The process is blocked until the container stops or the timeout expires.
-func (cli *Client) ContainerStop(ctx context.Context, containerID string, timeout *time.Duration) error {
-	query := url.Values{}
-	if timeout != nil {
-		query.Set("t", timetypes.DurationToSecondsString(*timeout))
-	}
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/stop", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_top.go b/vendor/github.com/docker/docker/client/container_top.go
deleted file mode 100644
index 55841ce998..0000000000
--- a/vendor/github.com/docker/docker/client/container_top.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-	"strings"
-
-	"github.com/docker/docker/api/types/container"
-	"golang.org/x/net/context"
-)
-
-// ContainerTop shows process information from within a container.
-func (cli *Client) ContainerTop(ctx context.Context, containerID string, arguments []string) (container.ContainerTopOKBody, error) {
-	var response container.ContainerTopOKBody
-	query := url.Values{}
-	if len(arguments) > 0 {
-		query.Set("ps_args", strings.Join(arguments, " "))
-	}
-
-	resp, err := cli.get(ctx, "/containers/"+containerID+"/top", query, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_unpause.go b/vendor/github.com/docker/docker/client/container_unpause.go
deleted file mode 100644
index b75fb0c31e..0000000000
--- a/vendor/github.com/docker/docker/client/container_unpause.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// ContainerUnpause resumes the process execution within a container
-func (cli *Client) ContainerUnpause(ctx context.Context, containerID string) error {
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/unpause", nil, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/container_update.go b/vendor/github.com/docker/docker/client/container_update.go
deleted file mode 100644
index 218ec90fd9..0000000000
--- a/vendor/github.com/docker/docker/client/container_update.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types/container"
-	"golang.org/x/net/context"
-)
-
-// ContainerUpdate updates resources of a container
-func (cli *Client) ContainerUpdate(ctx context.Context, containerID string, updateConfig container.UpdateConfig) (container.ContainerUpdateOKBody, error) {
-	var response container.ContainerUpdateOKBody
-	serverResp, err := cli.post(ctx, "/containers/"+containerID+"/update", nil, updateConfig, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/container_wait.go b/vendor/github.com/docker/docker/client/container_wait.go
deleted file mode 100644
index 87b0dc1afd..0000000000
--- a/vendor/github.com/docker/docker/client/container_wait.go
+++ /dev/null
@@ -1,84 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/versions"
-)
-
-// ContainerWait waits until the specified container is in a certain state
-// indicated by the given condition, either "not-running" (default),
-// "next-exit", or "removed".
-//
-// If this client's API version is before 1.30, condition is ignored and
-// ContainerWait will return immediately with the two channels, as the server
-// will wait as if the condition were "not-running".
-//
-// If this client's API version is at least 1.30, ContainerWait blocks until
-// the request has been acknowledged by the server (with a response header),
-// then returns two channels on which the caller can wait for the exit status
-// of the container or an error if there was a problem either beginning the
-// wait request or in getting the response. This allows the caller to
-// synchronize ContainerWait with other calls, such as specifying a
-// "next-exit" condition before issuing a ContainerStart request.
-func (cli *Client) ContainerWait(ctx context.Context, containerID string, condition container.WaitCondition) (<-chan container.ContainerWaitOKBody, <-chan error) {
-	if versions.LessThan(cli.ClientVersion(), "1.30") {
-		return cli.legacyContainerWait(ctx, containerID)
-	}
-
-	resultC := make(chan container.ContainerWaitOKBody)
-	errC := make(chan error, 1)
-
-	query := url.Values{}
-	query.Set("condition", string(condition))
-
-	resp, err := cli.post(ctx, "/containers/"+containerID+"/wait", query, nil, nil)
-	if err != nil {
-		defer ensureReaderClosed(resp)
-		errC <- err
-		return resultC, errC
-	}
-
-	go func() {
-		defer ensureReaderClosed(resp)
-		var res container.ContainerWaitOKBody
-		if err := json.NewDecoder(resp.body).Decode(&res); err != nil {
-			errC <- err
-			return
-		}
-
-		resultC <- res
-	}()
-
-	return resultC, errC
-}
-
-// legacyContainerWait returns immediately and doesn't have an option to wait
-// until the container is removed.
-func (cli *Client) legacyContainerWait(ctx context.Context, containerID string) (<-chan container.ContainerWaitOKBody, <-chan error) {
-	resultC := make(chan container.ContainerWaitOKBody)
-	errC := make(chan error)
-
-	go func() {
-		resp, err := cli.post(ctx, "/containers/"+containerID+"/wait", nil, nil, nil)
-		if err != nil {
-			errC <- err
-			return
-		}
-		defer ensureReaderClosed(resp)
-
-		var res container.ContainerWaitOKBody
-		if err := json.NewDecoder(resp.body).Decode(&res); err != nil {
-			errC <- err
-			return
-		}
-
-		resultC <- res
-	}()
-
-	return resultC, errC
-}
diff --git a/vendor/github.com/docker/docker/client/disk_usage.go b/vendor/github.com/docker/docker/client/disk_usage.go
deleted file mode 100644
index 831fd40e62..0000000000
--- a/vendor/github.com/docker/docker/client/disk_usage.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// DiskUsage requests the current data usage from the daemon
-func (cli *Client) DiskUsage(ctx context.Context) (types.DiskUsage, error) {
-	var du types.DiskUsage
-
-	serverResp, err := cli.get(ctx, "/system/df", nil, nil)
-	if err != nil {
-		return du, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&du); err != nil {
-		return du, fmt.Errorf("Error retrieving disk usage: %v", err)
-	}
-
-	return du, nil
-}
diff --git a/vendor/github.com/docker/docker/client/distribution_inspect.go b/vendor/github.com/docker/docker/client/distribution_inspect.go
deleted file mode 100644
index 5f55945c41..0000000000
--- a/vendor/github.com/docker/docker/client/distribution_inspect.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	registrytypes "github.com/docker/docker/api/types/registry"
-	"golang.org/x/net/context"
-)
-
-// DistributionInspect returns the image digest with full Manifest
-func (cli *Client) DistributionInspect(ctx context.Context, image, encodedRegistryAuth string) (registrytypes.DistributionInspect, error) {
-	// Contact the registry to retrieve digest and platform information
-	var distributionInspect registrytypes.DistributionInspect
-
-	if err := cli.NewVersionError("1.30", "distribution inspect"); err != nil {
-		return distributionInspect, err
-	}
-	var headers map[string][]string
-
-	if encodedRegistryAuth != "" {
-		headers = map[string][]string{
-			"X-Registry-Auth": {encodedRegistryAuth},
-		}
-	}
-
-	resp, err := cli.get(ctx, "/distribution/"+image+"/json", url.Values{}, headers)
-	if err != nil {
-		return distributionInspect, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&distributionInspect)
-	ensureReaderClosed(resp)
-	return distributionInspect, err
-}
diff --git a/vendor/github.com/docker/docker/client/errors.go b/vendor/github.com/docker/docker/client/errors.go
deleted file mode 100644
index 05c1246276..0000000000
--- a/vendor/github.com/docker/docker/client/errors.go
+++ /dev/null
@@ -1,133 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"fmt"
-
-	"net/http"
-
-	"github.com/docker/docker/api/types/versions"
-	"github.com/pkg/errors"
-)
-
-// errConnectionFailed implements an error returned when connection failed.
-type errConnectionFailed struct {
-	host string
-}
-
-// Error returns a string representation of an errConnectionFailed
-func (err errConnectionFailed) Error() string {
-	if err.host == "" {
-		return "Cannot connect to the Docker daemon. Is the docker daemon running on this host?"
-	}
-	return fmt.Sprintf("Cannot connect to the Docker daemon at %s. Is the docker daemon running?", err.host)
-}
-
-// IsErrConnectionFailed returns true if the error is caused by connection failed.
-func IsErrConnectionFailed(err error) bool {
-	_, ok := errors.Cause(err).(errConnectionFailed)
-	return ok
-}
-
-// ErrorConnectionFailed returns an error with host in the error message when connection to docker daemon failed.
-func ErrorConnectionFailed(host string) error {
-	return errConnectionFailed{host: host}
-}
-
-type notFound interface {
-	error
-	NotFound() bool // Is the error a NotFound error
-}
-
-// IsErrNotFound returns true if the error is a NotFound error, which is returned
-// by the API when some object is not found.
-func IsErrNotFound(err error) bool {
-	te, ok := err.(notFound)
-	return ok && te.NotFound()
-}
-
-type objectNotFoundError struct {
-	object string
-	id     string
-}
-
-func (e objectNotFoundError) NotFound() bool {
-	return true
-}
-
-func (e objectNotFoundError) Error() string {
-	return fmt.Sprintf("Error: No such %s: %s", e.object, e.id)
-}
-
-func wrapResponseError(err error, resp serverResponse, object, id string) error {
-	switch {
-	case err == nil:
-		return nil
-	case resp.statusCode == http.StatusNotFound:
-		return objectNotFoundError{object: object, id: id}
-	case resp.statusCode == http.StatusNotImplemented:
-		return notImplementedError{message: err.Error()}
-	default:
-		return err
-	}
-}
-
-// unauthorizedError represents an authorization error in a remote registry.
-type unauthorizedError struct {
-	cause error
-}
-
-// Error returns a string representation of an unauthorizedError
-func (u unauthorizedError) Error() string {
-	return u.cause.Error()
-}
-
-// IsErrUnauthorized returns true if the error is caused
-// when a remote registry authentication fails
-func IsErrUnauthorized(err error) bool {
-	_, ok := err.(unauthorizedError)
-	return ok
-}
-
-type pluginPermissionDenied struct {
-	name string
-}
-
-func (e pluginPermissionDenied) Error() string {
-	return "Permission denied while installing plugin " + e.name
-}
-
-// IsErrPluginPermissionDenied returns true if the error is caused
-// when a user denies a plugin's permissions
-func IsErrPluginPermissionDenied(err error) bool {
-	_, ok := err.(pluginPermissionDenied)
-	return ok
-}
-
-type notImplementedError struct {
-	message string
-}
-
-func (e notImplementedError) Error() string {
-	return e.message
-}
-
-func (e notImplementedError) NotImplemented() bool {
-	return true
-}
-
-// IsErrNotImplemented returns true if the error is a NotImplemented error.
-// This is returned by the API when a requested feature has not been
-// implemented.
-func IsErrNotImplemented(err error) bool {
-	te, ok := err.(notImplementedError)
-	return ok && te.NotImplemented()
-}
-
-// NewVersionError returns an error if the APIVersion required
-// if less than the current supported version
-func (cli *Client) NewVersionError(APIrequired, feature string) error {
-	if cli.version != "" && versions.LessThan(cli.version, APIrequired) {
-		return fmt.Errorf("%q requires API version %s, but the Docker daemon API version is %s", feature, APIrequired, cli.version)
-	}
-	return nil
-}
diff --git a/vendor/github.com/docker/docker/client/events.go b/vendor/github.com/docker/docker/client/events.go
deleted file mode 100644
index d5d4dd8ac2..0000000000
--- a/vendor/github.com/docker/docker/client/events.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-	"time"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/events"
-	"github.com/docker/docker/api/types/filters"
-	timetypes "github.com/docker/docker/api/types/time"
-)
-
-// Events returns a stream of events in the daemon. It's up to the caller to close the stream
-// by cancelling the context. Once the stream has been completely read an io.EOF error will
-// be sent over the error channel. If an error is sent all processing will be stopped. It's up
-// to the caller to reopen the stream in the event of an error by reinvoking this method.
-func (cli *Client) Events(ctx context.Context, options types.EventsOptions) (<-chan events.Message, <-chan error) {
-
-	messages := make(chan events.Message)
-	errs := make(chan error, 1)
-
-	started := make(chan struct{})
-	go func() {
-		defer close(errs)
-
-		query, err := buildEventsQueryParams(cli.version, options)
-		if err != nil {
-			close(started)
-			errs <- err
-			return
-		}
-
-		resp, err := cli.get(ctx, "/events", query, nil)
-		if err != nil {
-			close(started)
-			errs <- err
-			return
-		}
-		defer resp.body.Close()
-
-		decoder := json.NewDecoder(resp.body)
-
-		close(started)
-		for {
-			select {
-			case <-ctx.Done():
-				errs <- ctx.Err()
-				return
-			default:
-				var event events.Message
-				if err := decoder.Decode(&event); err != nil {
-					errs <- err
-					return
-				}
-
-				select {
-				case messages <- event:
-				case <-ctx.Done():
-					errs <- ctx.Err()
-					return
-				}
-			}
-		}
-	}()
-	<-started
-
-	return messages, errs
-}
-
-func buildEventsQueryParams(cliVersion string, options types.EventsOptions) (url.Values, error) {
-	query := url.Values{}
-	ref := time.Now()
-
-	if options.Since != "" {
-		ts, err := timetypes.GetTimestamp(options.Since, ref)
-		if err != nil {
-			return nil, err
-		}
-		query.Set("since", ts)
-	}
-
-	if options.Until != "" {
-		ts, err := timetypes.GetTimestamp(options.Until, ref)
-		if err != nil {
-			return nil, err
-		}
-		query.Set("until", ts)
-	}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cliVersion, options.Filters)
-		if err != nil {
-			return nil, err
-		}
-		query.Set("filters", filterJSON)
-	}
-
-	return query, nil
-}
diff --git a/vendor/github.com/docker/docker/client/hijack.go b/vendor/github.com/docker/docker/client/hijack.go
deleted file mode 100644
index 628adfda65..0000000000
--- a/vendor/github.com/docker/docker/client/hijack.go
+++ /dev/null
@@ -1,207 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bufio"
-	"crypto/tls"
-	"fmt"
-	"net"
-	"net/http"
-	"net/http/httputil"
-	"net/url"
-	"strings"
-	"time"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/go-connections/sockets"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-// tlsClientCon holds tls information and a dialed connection.
-type tlsClientCon struct {
-	*tls.Conn
-	rawConn net.Conn
-}
-
-func (c *tlsClientCon) CloseWrite() error {
-	// Go standard tls.Conn doesn't provide the CloseWrite() method so we do it
-	// on its underlying connection.
-	if conn, ok := c.rawConn.(types.CloseWriter); ok {
-		return conn.CloseWrite()
-	}
-	return nil
-}
-
-// postHijacked sends a POST request and hijacks the connection.
-func (cli *Client) postHijacked(ctx context.Context, path string, query url.Values, body interface{}, headers map[string][]string) (types.HijackedResponse, error) {
-	bodyEncoded, err := encodeData(body)
-	if err != nil {
-		return types.HijackedResponse{}, err
-	}
-
-	apiPath := cli.getAPIPath(path, query)
-	req, err := http.NewRequest("POST", apiPath, bodyEncoded)
-	if err != nil {
-		return types.HijackedResponse{}, err
-	}
-	req = cli.addHeaders(req, headers)
-
-	conn, err := cli.setupHijackConn(req, "tcp")
-	if err != nil {
-		return types.HijackedResponse{}, err
-	}
-
-	return types.HijackedResponse{Conn: conn, Reader: bufio.NewReader(conn)}, err
-}
-
-func tlsDial(network, addr string, config *tls.Config) (net.Conn, error) {
-	return tlsDialWithDialer(new(net.Dialer), network, addr, config)
-}
-
-// We need to copy Go's implementation of tls.Dial (pkg/cryptor/tls/tls.go) in
-// order to return our custom tlsClientCon struct which holds both the tls.Conn
-// object _and_ its underlying raw connection. The rationale for this is that
-// we need to be able to close the write end of the connection when attaching,
-// which tls.Conn does not provide.
-func tlsDialWithDialer(dialer *net.Dialer, network, addr string, config *tls.Config) (net.Conn, error) {
-	// We want the Timeout and Deadline values from dialer to cover the
-	// whole process: TCP connection and TLS handshake. This means that we
-	// also need to start our own timers now.
-	timeout := dialer.Timeout
-
-	if !dialer.Deadline.IsZero() {
-		deadlineTimeout := time.Until(dialer.Deadline)
-		if timeout == 0 || deadlineTimeout < timeout {
-			timeout = deadlineTimeout
-		}
-	}
-
-	var errChannel chan error
-
-	if timeout != 0 {
-		errChannel = make(chan error, 2)
-		time.AfterFunc(timeout, func() {
-			errChannel <- errors.New("")
-		})
-	}
-
-	proxyDialer, err := sockets.DialerFromEnvironment(dialer)
-	if err != nil {
-		return nil, err
-	}
-
-	rawConn, err := proxyDialer.Dial(network, addr)
-	if err != nil {
-		return nil, err
-	}
-	// When we set up a TCP connection for hijack, there could be long periods
-	// of inactivity (a long running command with no output) that in certain
-	// network setups may cause ECONNTIMEOUT, leaving the client in an unknown
-	// state. Setting TCP KeepAlive on the socket connection will prohibit
-	// ECONNTIMEOUT unless the socket connection truly is broken
-	if tcpConn, ok := rawConn.(*net.TCPConn); ok {
-		tcpConn.SetKeepAlive(true)
-		tcpConn.SetKeepAlivePeriod(30 * time.Second)
-	}
-
-	colonPos := strings.LastIndex(addr, ":")
-	if colonPos == -1 {
-		colonPos = len(addr)
-	}
-	hostname := addr[:colonPos]
-
-	// If no ServerName is set, infer the ServerName
-	// from the hostname we're connecting to.
-	if config.ServerName == "" {
-		// Make a copy to avoid polluting argument or default.
-		config = tlsConfigClone(config)
-		config.ServerName = hostname
-	}
-
-	conn := tls.Client(rawConn, config)
-
-	if timeout == 0 {
-		err = conn.Handshake()
-	} else {
-		go func() {
-			errChannel <- conn.Handshake()
-		}()
-
-		err = <-errChannel
-	}
-
-	if err != nil {
-		rawConn.Close()
-		return nil, err
-	}
-
-	// This is Docker difference with standard's crypto/tls package: returned a
-	// wrapper which holds both the TLS and raw connections.
-	return &tlsClientCon{conn, rawConn}, nil
-}
-
-func dial(proto, addr string, tlsConfig *tls.Config) (net.Conn, error) {
-	if tlsConfig != nil && proto != "unix" && proto != "npipe" {
-		// Notice this isn't Go standard's tls.Dial function
-		return tlsDial(proto, addr, tlsConfig)
-	}
-	if proto == "npipe" {
-		return sockets.DialPipe(addr, 32*time.Second)
-	}
-	return net.Dial(proto, addr)
-}
-
-func (cli *Client) setupHijackConn(req *http.Request, proto string) (net.Conn, error) {
-	req.Host = cli.addr
-	req.Header.Set("Connection", "Upgrade")
-	req.Header.Set("Upgrade", proto)
-
-	conn, err := dial(cli.proto, cli.addr, resolveTLSConfig(cli.client.Transport))
-	if err != nil {
-		return nil, errors.Wrap(err, "cannot connect to the Docker daemon. Is 'docker daemon' running on this host?")
-	}
-
-	// When we set up a TCP connection for hijack, there could be long periods
-	// of inactivity (a long running command with no output) that in certain
-	// network setups may cause ECONNTIMEOUT, leaving the client in an unknown
-	// state. Setting TCP KeepAlive on the socket connection will prohibit
-	// ECONNTIMEOUT unless the socket connection truly is broken
-	if tcpConn, ok := conn.(*net.TCPConn); ok {
-		tcpConn.SetKeepAlive(true)
-		tcpConn.SetKeepAlivePeriod(30 * time.Second)
-	}
-
-	clientconn := httputil.NewClientConn(conn, nil)
-	defer clientconn.Close()
-
-	// Server hijacks the connection, error 'connection closed' expected
-	resp, err := clientconn.Do(req)
-	if err != httputil.ErrPersistEOF {
-		if err != nil {
-			return nil, err
-		}
-		if resp.StatusCode != http.StatusSwitchingProtocols {
-			resp.Body.Close()
-			return nil, fmt.Errorf("unable to upgrade to %s, received %d", proto, resp.StatusCode)
-		}
-	}
-
-	c, br := clientconn.Hijack()
-	if br.Buffered() > 0 {
-		// If there is buffered content, wrap the connection
-		c = &hijackedConn{c, br}
-	} else {
-		br.Reset(nil)
-	}
-
-	return c, nil
-}
-
-type hijackedConn struct {
-	net.Conn
-	r *bufio.Reader
-}
-
-func (c *hijackedConn) Read(b []byte) (int, error) {
-	return c.r.Read(b)
-}
diff --git a/vendor/github.com/docker/docker/client/image_build.go b/vendor/github.com/docker/docker/client/image_build.go
deleted file mode 100644
index 97c9301c82..0000000000
--- a/vendor/github.com/docker/docker/client/image_build.go
+++ /dev/null
@@ -1,138 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/base64"
-	"encoding/json"
-	"io"
-	"net/http"
-	"net/url"
-	"strconv"
-	"strings"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/container"
-)
-
-// ImageBuild sends request to the daemon to build images.
-// The Body in the response implement an io.ReadCloser and it's up to the caller to
-// close it.
-func (cli *Client) ImageBuild(ctx context.Context, buildContext io.Reader, options types.ImageBuildOptions) (types.ImageBuildResponse, error) {
-	query, err := cli.imageBuildOptionsToQuery(options)
-	if err != nil {
-		return types.ImageBuildResponse{}, err
-	}
-
-	headers := http.Header(make(map[string][]string))
-	buf, err := json.Marshal(options.AuthConfigs)
-	if err != nil {
-		return types.ImageBuildResponse{}, err
-	}
-	headers.Add("X-Registry-Config", base64.URLEncoding.EncodeToString(buf))
-
-	if options.Platform != "" {
-		if err := cli.NewVersionError("1.32", "platform"); err != nil {
-			return types.ImageBuildResponse{}, err
-		}
-		query.Set("platform", options.Platform)
-	}
-	headers.Set("Content-Type", "application/x-tar")
-
-	serverResp, err := cli.postRaw(ctx, "/build", query, buildContext, headers)
-	if err != nil {
-		return types.ImageBuildResponse{}, err
-	}
-
-	osType := getDockerOS(serverResp.header.Get("Server"))
-
-	return types.ImageBuildResponse{
-		Body:   serverResp.body,
-		OSType: osType,
-	}, nil
-}
-
-func (cli *Client) imageBuildOptionsToQuery(options types.ImageBuildOptions) (url.Values, error) {
-	query := url.Values{
-		"t":           options.Tags,
-		"securityopt": options.SecurityOpt,
-		"extrahosts":  options.ExtraHosts,
-	}
-	if options.SuppressOutput {
-		query.Set("q", "1")
-	}
-	if options.RemoteContext != "" {
-		query.Set("remote", options.RemoteContext)
-	}
-	if options.NoCache {
-		query.Set("nocache", "1")
-	}
-	if options.Remove {
-		query.Set("rm", "1")
-	} else {
-		query.Set("rm", "0")
-	}
-
-	if options.ForceRemove {
-		query.Set("forcerm", "1")
-	}
-
-	if options.PullParent {
-		query.Set("pull", "1")
-	}
-
-	if options.Squash {
-		if err := cli.NewVersionError("1.25", "squash"); err != nil {
-			return query, err
-		}
-		query.Set("squash", "1")
-	}
-
-	if !container.Isolation.IsDefault(options.Isolation) {
-		query.Set("isolation", string(options.Isolation))
-	}
-
-	query.Set("cpusetcpus", options.CPUSetCPUs)
-	query.Set("networkmode", options.NetworkMode)
-	query.Set("cpusetmems", options.CPUSetMems)
-	query.Set("cpushares", strconv.FormatInt(options.CPUShares, 10))
-	query.Set("cpuquota", strconv.FormatInt(options.CPUQuota, 10))
-	query.Set("cpuperiod", strconv.FormatInt(options.CPUPeriod, 10))
-	query.Set("memory", strconv.FormatInt(options.Memory, 10))
-	query.Set("memswap", strconv.FormatInt(options.MemorySwap, 10))
-	query.Set("cgroupparent", options.CgroupParent)
-	query.Set("shmsize", strconv.FormatInt(options.ShmSize, 10))
-	query.Set("dockerfile", options.Dockerfile)
-	query.Set("target", options.Target)
-
-	ulimitsJSON, err := json.Marshal(options.Ulimits)
-	if err != nil {
-		return query, err
-	}
-	query.Set("ulimits", string(ulimitsJSON))
-
-	buildArgsJSON, err := json.Marshal(options.BuildArgs)
-	if err != nil {
-		return query, err
-	}
-	query.Set("buildargs", string(buildArgsJSON))
-
-	labelsJSON, err := json.Marshal(options.Labels)
-	if err != nil {
-		return query, err
-	}
-	query.Set("labels", string(labelsJSON))
-
-	cacheFromJSON, err := json.Marshal(options.CacheFrom)
-	if err != nil {
-		return query, err
-	}
-	query.Set("cachefrom", string(cacheFromJSON))
-	if options.SessionID != "" {
-		query.Set("session", options.SessionID)
-	}
-	if options.Platform != "" {
-		query.Set("platform", strings.ToLower(options.Platform))
-	}
-	return query, nil
-}
diff --git a/vendor/github.com/docker/docker/client/image_create.go b/vendor/github.com/docker/docker/client/image_create.go
deleted file mode 100644
index fe237508b1..0000000000
--- a/vendor/github.com/docker/docker/client/image_create.go
+++ /dev/null
@@ -1,38 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-	"strings"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-)
-
-// ImageCreate creates a new image based in the parent options.
-// It returns the JSON content in the response body.
-func (cli *Client) ImageCreate(ctx context.Context, parentReference string, options types.ImageCreateOptions) (io.ReadCloser, error) {
-	ref, err := reference.ParseNormalizedNamed(parentReference)
-	if err != nil {
-		return nil, err
-	}
-
-	query := url.Values{}
-	query.Set("fromImage", reference.FamiliarName(ref))
-	query.Set("tag", getAPITagFromNamedRef(ref))
-	if options.Platform != "" {
-		query.Set("platform", strings.ToLower(options.Platform))
-	}
-	resp, err := cli.tryImageCreate(ctx, query, options.RegistryAuth)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
-
-func (cli *Client) tryImageCreate(ctx context.Context, query url.Values, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.post(ctx, "/images/create", query, nil, headers)
-}
diff --git a/vendor/github.com/docker/docker/client/image_history.go b/vendor/github.com/docker/docker/client/image_history.go
deleted file mode 100644
index cf74723a03..0000000000
--- a/vendor/github.com/docker/docker/client/image_history.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types/image"
-	"golang.org/x/net/context"
-)
-
-// ImageHistory returns the changes in an image in history format.
-func (cli *Client) ImageHistory(ctx context.Context, imageID string) ([]image.HistoryResponseItem, error) {
-	var history []image.HistoryResponseItem
-	serverResp, err := cli.get(ctx, "/images/"+imageID+"/history", url.Values{}, nil)
-	if err != nil {
-		return history, err
-	}
-
-	err = json.NewDecoder(serverResp.body).Decode(&history)
-	ensureReaderClosed(serverResp)
-	return history, err
-}
diff --git a/vendor/github.com/docker/docker/client/image_import.go b/vendor/github.com/docker/docker/client/image_import.go
deleted file mode 100644
index dddbf9c629..0000000000
--- a/vendor/github.com/docker/docker/client/image_import.go
+++ /dev/null
@@ -1,41 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-	"strings"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-)
-
-// ImageImport creates a new image based in the source options.
-// It returns the JSON content in the response body.
-func (cli *Client) ImageImport(ctx context.Context, source types.ImageImportSource, ref string, options types.ImageImportOptions) (io.ReadCloser, error) {
-	if ref != "" {
-		//Check if the given image name can be resolved
-		if _, err := reference.ParseNormalizedNamed(ref); err != nil {
-			return nil, err
-		}
-	}
-
-	query := url.Values{}
-	query.Set("fromSrc", source.SourceName)
-	query.Set("repo", ref)
-	query.Set("tag", options.Tag)
-	query.Set("message", options.Message)
-	if options.Platform != "" {
-		query.Set("platform", strings.ToLower(options.Platform))
-	}
-	for _, change := range options.Changes {
-		query.Add("changes", change)
-	}
-
-	resp, err := cli.postRaw(ctx, "/images/create", query, source.Source, nil)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/image_inspect.go b/vendor/github.com/docker/docker/client/image_inspect.go
deleted file mode 100644
index 75057bf324..0000000000
--- a/vendor/github.com/docker/docker/client/image_inspect.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ImageInspectWithRaw returns the image information and its raw representation.
-func (cli *Client) ImageInspectWithRaw(ctx context.Context, imageID string) (types.ImageInspect, []byte, error) {
-	serverResp, err := cli.get(ctx, "/images/"+imageID+"/json", nil, nil)
-	if err != nil {
-		return types.ImageInspect{}, nil, wrapResponseError(err, serverResp, "image", imageID)
-	}
-	defer ensureReaderClosed(serverResp)
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return types.ImageInspect{}, nil, err
-	}
-
-	var response types.ImageInspect
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&response)
-	return response, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/image_list.go b/vendor/github.com/docker/docker/client/image_list.go
deleted file mode 100644
index 1e84a962da..0000000000
--- a/vendor/github.com/docker/docker/client/image_list.go
+++ /dev/null
@@ -1,45 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/versions"
-	"golang.org/x/net/context"
-)
-
-// ImageList returns a list of images in the docker host.
-func (cli *Client) ImageList(ctx context.Context, options types.ImageListOptions) ([]types.ImageSummary, error) {
-	var images []types.ImageSummary
-	query := url.Values{}
-
-	optionFilters := options.Filters
-	referenceFilters := optionFilters.Get("reference")
-	if versions.LessThan(cli.version, "1.25") && len(referenceFilters) > 0 {
-		query.Set("filter", referenceFilters[0])
-		for _, filterValue := range referenceFilters {
-			optionFilters.Del("reference", filterValue)
-		}
-	}
-	if optionFilters.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cli.version, optionFilters)
-		if err != nil {
-			return images, err
-		}
-		query.Set("filters", filterJSON)
-	}
-	if options.All {
-		query.Set("all", "1")
-	}
-
-	serverResp, err := cli.get(ctx, "/images/json", query, nil)
-	if err != nil {
-		return images, err
-	}
-
-	err = json.NewDecoder(serverResp.body).Decode(&images)
-	ensureReaderClosed(serverResp)
-	return images, err
-}
diff --git a/vendor/github.com/docker/docker/client/image_load.go b/vendor/github.com/docker/docker/client/image_load.go
deleted file mode 100644
index 411567c0c9..0000000000
--- a/vendor/github.com/docker/docker/client/image_load.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-)
-
-// ImageLoad loads an image in the docker host from the client host.
-// It's up to the caller to close the io.ReadCloser in the
-// ImageLoadResponse returned by this function.
-func (cli *Client) ImageLoad(ctx context.Context, input io.Reader, quiet bool) (types.ImageLoadResponse, error) {
-	v := url.Values{}
-	v.Set("quiet", "0")
-	if quiet {
-		v.Set("quiet", "1")
-	}
-	headers := map[string][]string{"Content-Type": {"application/x-tar"}}
-	resp, err := cli.postRaw(ctx, "/images/load", v, input, headers)
-	if err != nil {
-		return types.ImageLoadResponse{}, err
-	}
-	return types.ImageLoadResponse{
-		Body: resp.body,
-		JSON: resp.header.Get("Content-Type") == "application/json",
-	}, nil
-}
diff --git a/vendor/github.com/docker/docker/client/image_prune.go b/vendor/github.com/docker/docker/client/image_prune.go
deleted file mode 100644
index 32ea9098c3..0000000000
--- a/vendor/github.com/docker/docker/client/image_prune.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// ImagesPrune requests the daemon to delete unused data
-func (cli *Client) ImagesPrune(ctx context.Context, pruneFilters filters.Args) (types.ImagesPruneReport, error) {
-	var report types.ImagesPruneReport
-
-	if err := cli.NewVersionError("1.25", "image prune"); err != nil {
-		return report, err
-	}
-
-	query, err := getFiltersQuery(pruneFilters)
-	if err != nil {
-		return report, err
-	}
-
-	serverResp, err := cli.post(ctx, "/images/prune", query, nil, nil)
-	if err != nil {
-		return report, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&report); err != nil {
-		return report, fmt.Errorf("Error retrieving disk usage: %v", err)
-	}
-
-	return report, nil
-}
diff --git a/vendor/github.com/docker/docker/client/image_pull.go b/vendor/github.com/docker/docker/client/image_pull.go
deleted file mode 100644
index ee5923a8f6..0000000000
--- a/vendor/github.com/docker/docker/client/image_pull.go
+++ /dev/null
@@ -1,65 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/http"
-	"net/url"
-	"strings"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-)
-
-// ImagePull requests the docker host to pull an image from a remote registry.
-// It executes the privileged function if the operation is unauthorized
-// and it tries one more time.
-// It's up to the caller to handle the io.ReadCloser and close it properly.
-//
-// FIXME(vdemeester): there is currently used in a few way in docker/docker
-// - if not in trusted content, ref is used to pass the whole reference, and tag is empty
-// - if in trusted content, ref is used to pass the reference name, and tag for the digest
-func (cli *Client) ImagePull(ctx context.Context, refStr string, options types.ImagePullOptions) (io.ReadCloser, error) {
-	ref, err := reference.ParseNormalizedNamed(refStr)
-	if err != nil {
-		return nil, err
-	}
-
-	query := url.Values{}
-	query.Set("fromImage", reference.FamiliarName(ref))
-	if !options.All {
-		query.Set("tag", getAPITagFromNamedRef(ref))
-	}
-	if options.Platform != "" {
-		query.Set("platform", strings.ToLower(options.Platform))
-	}
-
-	resp, err := cli.tryImageCreate(ctx, query, options.RegistryAuth)
-	if resp.statusCode == http.StatusUnauthorized && options.PrivilegeFunc != nil {
-		newAuthHeader, privilegeErr := options.PrivilegeFunc()
-		if privilegeErr != nil {
-			return nil, privilegeErr
-		}
-		resp, err = cli.tryImageCreate(ctx, query, newAuthHeader)
-	}
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
-
-// getAPITagFromNamedRef returns a tag from the specified reference.
-// This function is necessary as long as the docker "server" api expects
-// digests to be sent as tags and makes a distinction between the name
-// and tag/digest part of a reference.
-func getAPITagFromNamedRef(ref reference.Named) string {
-	if digested, ok := ref.(reference.Digested); ok {
-		return digested.Digest().String()
-	}
-	ref = reference.TagNameOnly(ref)
-	if tagged, ok := ref.(reference.Tagged); ok {
-		return tagged.Tag()
-	}
-	return ""
-}
diff --git a/vendor/github.com/docker/docker/client/image_push.go b/vendor/github.com/docker/docker/client/image_push.go
deleted file mode 100644
index 6fcc1626ec..0000000000
--- a/vendor/github.com/docker/docker/client/image_push.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"errors"
-	"io"
-	"net/http"
-	"net/url"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-)
-
-// ImagePush requests the docker host to push an image to a remote registry.
-// It executes the privileged function if the operation is unauthorized
-// and it tries one more time.
-// It's up to the caller to handle the io.ReadCloser and close it properly.
-func (cli *Client) ImagePush(ctx context.Context, image string, options types.ImagePushOptions) (io.ReadCloser, error) {
-	ref, err := reference.ParseNormalizedNamed(image)
-	if err != nil {
-		return nil, err
-	}
-
-	if _, isCanonical := ref.(reference.Canonical); isCanonical {
-		return nil, errors.New("cannot push a digest reference")
-	}
-
-	tag := ""
-	name := reference.FamiliarName(ref)
-
-	if nameTaggedRef, isNamedTagged := ref.(reference.NamedTagged); isNamedTagged {
-		tag = nameTaggedRef.Tag()
-	}
-
-	query := url.Values{}
-	query.Set("tag", tag)
-
-	resp, err := cli.tryImagePush(ctx, name, query, options.RegistryAuth)
-	if resp.statusCode == http.StatusUnauthorized && options.PrivilegeFunc != nil {
-		newAuthHeader, privilegeErr := options.PrivilegeFunc()
-		if privilegeErr != nil {
-			return nil, privilegeErr
-		}
-		resp, err = cli.tryImagePush(ctx, name, query, newAuthHeader)
-	}
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
-
-func (cli *Client) tryImagePush(ctx context.Context, imageID string, query url.Values, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.post(ctx, "/images/"+imageID+"/push", query, nil, headers)
-}
diff --git a/vendor/github.com/docker/docker/client/image_remove.go b/vendor/github.com/docker/docker/client/image_remove.go
deleted file mode 100644
index 6d222a5077..0000000000
--- a/vendor/github.com/docker/docker/client/image_remove.go
+++ /dev/null
@@ -1,31 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ImageRemove removes an image from the docker host.
-func (cli *Client) ImageRemove(ctx context.Context, imageID string, options types.ImageRemoveOptions) ([]types.ImageDeleteResponseItem, error) {
-	query := url.Values{}
-
-	if options.Force {
-		query.Set("force", "1")
-	}
-	if !options.PruneChildren {
-		query.Set("noprune", "1")
-	}
-
-	var dels []types.ImageDeleteResponseItem
-	resp, err := cli.delete(ctx, "/images/"+imageID, query, nil)
-	if err != nil {
-		return dels, wrapResponseError(err, resp, "image", imageID)
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&dels)
-	ensureReaderClosed(resp)
-	return dels, err
-}
diff --git a/vendor/github.com/docker/docker/client/image_save.go b/vendor/github.com/docker/docker/client/image_save.go
deleted file mode 100644
index a919615966..0000000000
--- a/vendor/github.com/docker/docker/client/image_save.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-
-	"golang.org/x/net/context"
-)
-
-// ImageSave retrieves one or more images from the docker host as an io.ReadCloser.
-// It's up to the caller to store the images and close the stream.
-func (cli *Client) ImageSave(ctx context.Context, imageIDs []string) (io.ReadCloser, error) {
-	query := url.Values{
-		"names": imageIDs,
-	}
-
-	resp, err := cli.get(ctx, "/images/get", query, nil)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/image_search.go b/vendor/github.com/docker/docker/client/image_search.go
deleted file mode 100644
index ba5072ad59..0000000000
--- a/vendor/github.com/docker/docker/client/image_search.go
+++ /dev/null
@@ -1,51 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-	"net/http"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/registry"
-	"golang.org/x/net/context"
-)
-
-// ImageSearch makes the docker host to search by a term in a remote registry.
-// The list of results is not sorted in any fashion.
-func (cli *Client) ImageSearch(ctx context.Context, term string, options types.ImageSearchOptions) ([]registry.SearchResult, error) {
-	var results []registry.SearchResult
-	query := url.Values{}
-	query.Set("term", term)
-	query.Set("limit", fmt.Sprintf("%d", options.Limit))
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-		if err != nil {
-			return results, err
-		}
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.tryImageSearch(ctx, query, options.RegistryAuth)
-	if resp.statusCode == http.StatusUnauthorized && options.PrivilegeFunc != nil {
-		newAuthHeader, privilegeErr := options.PrivilegeFunc()
-		if privilegeErr != nil {
-			return results, privilegeErr
-		}
-		resp, err = cli.tryImageSearch(ctx, query, newAuthHeader)
-	}
-	if err != nil {
-		return results, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&results)
-	ensureReaderClosed(resp)
-	return results, err
-}
-
-func (cli *Client) tryImageSearch(ctx context.Context, query url.Values, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.get(ctx, "/images/search", query, headers)
-}
diff --git a/vendor/github.com/docker/docker/client/image_tag.go b/vendor/github.com/docker/docker/client/image_tag.go
deleted file mode 100644
index 4399a3e9aa..0000000000
--- a/vendor/github.com/docker/docker/client/image_tag.go
+++ /dev/null
@@ -1,37 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/distribution/reference"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-// ImageTag tags an image in the docker host
-func (cli *Client) ImageTag(ctx context.Context, source, target string) error {
-	if _, err := reference.ParseAnyReference(source); err != nil {
-		return errors.Wrapf(err, "Error parsing reference: %q is not a valid repository/tag", source)
-	}
-
-	ref, err := reference.ParseNormalizedNamed(target)
-	if err != nil {
-		return errors.Wrapf(err, "Error parsing reference: %q is not a valid repository/tag", target)
-	}
-
-	if _, isCanonical := ref.(reference.Canonical); isCanonical {
-		return errors.New("refusing to create a tag with a digest reference")
-	}
-
-	ref = reference.TagNameOnly(ref)
-
-	query := url.Values{}
-	query.Set("repo", reference.FamiliarName(ref))
-	if tagged, ok := ref.(reference.Tagged); ok {
-		query.Set("tag", tagged.Tag())
-	}
-
-	resp, err := cli.post(ctx, "/images/"+source+"/tag", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/info.go b/vendor/github.com/docker/docker/client/info.go
deleted file mode 100644
index 3f6746c942..0000000000
--- a/vendor/github.com/docker/docker/client/info.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// Info returns information about the docker server.
-func (cli *Client) Info(ctx context.Context) (types.Info, error) {
-	var info types.Info
-	serverResp, err := cli.get(ctx, "/info", url.Values{}, nil)
-	if err != nil {
-		return info, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&info); err != nil {
-		return info, fmt.Errorf("Error reading remote info: %v", err)
-	}
-
-	return info, nil
-}
diff --git a/vendor/github.com/docker/docker/client/interface.go b/vendor/github.com/docker/docker/client/interface.go
deleted file mode 100644
index e928e647a7..0000000000
--- a/vendor/github.com/docker/docker/client/interface.go
+++ /dev/null
@@ -1,194 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net"
-	"time"
-
-	"github.com/docker/docker/api/types"
-	containertypes "github.com/docker/docker/api/types/container"
-	"github.com/docker/docker/api/types/events"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/image"
-	networktypes "github.com/docker/docker/api/types/network"
-	"github.com/docker/docker/api/types/registry"
-	"github.com/docker/docker/api/types/swarm"
-	volumetypes "github.com/docker/docker/api/types/volume"
-	"golang.org/x/net/context"
-)
-
-// CommonAPIClient is the common methods between stable and experimental versions of APIClient.
-type CommonAPIClient interface {
-	ConfigAPIClient
-	ContainerAPIClient
-	DistributionAPIClient
-	ImageAPIClient
-	NodeAPIClient
-	NetworkAPIClient
-	PluginAPIClient
-	ServiceAPIClient
-	SwarmAPIClient
-	SecretAPIClient
-	SystemAPIClient
-	VolumeAPIClient
-	ClientVersion() string
-	DaemonHost() string
-	ServerVersion(ctx context.Context) (types.Version, error)
-	NegotiateAPIVersion(ctx context.Context)
-	NegotiateAPIVersionPing(types.Ping)
-	DialSession(ctx context.Context, proto string, meta map[string][]string) (net.Conn, error)
-}
-
-// ContainerAPIClient defines API client methods for the containers
-type ContainerAPIClient interface {
-	ContainerAttach(ctx context.Context, container string, options types.ContainerAttachOptions) (types.HijackedResponse, error)
-	ContainerCommit(ctx context.Context, container string, options types.ContainerCommitOptions) (types.IDResponse, error)
-	ContainerCreate(ctx context.Context, config *containertypes.Config, hostConfig *containertypes.HostConfig, networkingConfig *networktypes.NetworkingConfig, containerName string) (containertypes.ContainerCreateCreatedBody, error)
-	ContainerDiff(ctx context.Context, container string) ([]containertypes.ContainerChangeResponseItem, error)
-	ContainerExecAttach(ctx context.Context, execID string, config types.ExecStartCheck) (types.HijackedResponse, error)
-	ContainerExecCreate(ctx context.Context, container string, config types.ExecConfig) (types.IDResponse, error)
-	ContainerExecInspect(ctx context.Context, execID string) (types.ContainerExecInspect, error)
-	ContainerExecResize(ctx context.Context, execID string, options types.ResizeOptions) error
-	ContainerExecStart(ctx context.Context, execID string, config types.ExecStartCheck) error
-	ContainerExport(ctx context.Context, container string) (io.ReadCloser, error)
-	ContainerInspect(ctx context.Context, container string) (types.ContainerJSON, error)
-	ContainerInspectWithRaw(ctx context.Context, container string, getSize bool) (types.ContainerJSON, []byte, error)
-	ContainerKill(ctx context.Context, container, signal string) error
-	ContainerList(ctx context.Context, options types.ContainerListOptions) ([]types.Container, error)
-	ContainerLogs(ctx context.Context, container string, options types.ContainerLogsOptions) (io.ReadCloser, error)
-	ContainerPause(ctx context.Context, container string) error
-	ContainerRemove(ctx context.Context, container string, options types.ContainerRemoveOptions) error
-	ContainerRename(ctx context.Context, container, newContainerName string) error
-	ContainerResize(ctx context.Context, container string, options types.ResizeOptions) error
-	ContainerRestart(ctx context.Context, container string, timeout *time.Duration) error
-	ContainerStatPath(ctx context.Context, container, path string) (types.ContainerPathStat, error)
-	ContainerStats(ctx context.Context, container string, stream bool) (types.ContainerStats, error)
-	ContainerStart(ctx context.Context, container string, options types.ContainerStartOptions) error
-	ContainerStop(ctx context.Context, container string, timeout *time.Duration) error
-	ContainerTop(ctx context.Context, container string, arguments []string) (containertypes.ContainerTopOKBody, error)
-	ContainerUnpause(ctx context.Context, container string) error
-	ContainerUpdate(ctx context.Context, container string, updateConfig containertypes.UpdateConfig) (containertypes.ContainerUpdateOKBody, error)
-	ContainerWait(ctx context.Context, container string, condition containertypes.WaitCondition) (<-chan containertypes.ContainerWaitOKBody, <-chan error)
-	CopyFromContainer(ctx context.Context, container, srcPath string) (io.ReadCloser, types.ContainerPathStat, error)
-	CopyToContainer(ctx context.Context, container, path string, content io.Reader, options types.CopyToContainerOptions) error
-	ContainersPrune(ctx context.Context, pruneFilters filters.Args) (types.ContainersPruneReport, error)
-}
-
-// DistributionAPIClient defines API client methods for the registry
-type DistributionAPIClient interface {
-	DistributionInspect(ctx context.Context, image, encodedRegistryAuth string) (registry.DistributionInspect, error)
-}
-
-// ImageAPIClient defines API client methods for the images
-type ImageAPIClient interface {
-	ImageBuild(ctx context.Context, context io.Reader, options types.ImageBuildOptions) (types.ImageBuildResponse, error)
-	BuildCachePrune(ctx context.Context) (*types.BuildCachePruneReport, error)
-	ImageCreate(ctx context.Context, parentReference string, options types.ImageCreateOptions) (io.ReadCloser, error)
-	ImageHistory(ctx context.Context, image string) ([]image.HistoryResponseItem, error)
-	ImageImport(ctx context.Context, source types.ImageImportSource, ref string, options types.ImageImportOptions) (io.ReadCloser, error)
-	ImageInspectWithRaw(ctx context.Context, image string) (types.ImageInspect, []byte, error)
-	ImageList(ctx context.Context, options types.ImageListOptions) ([]types.ImageSummary, error)
-	ImageLoad(ctx context.Context, input io.Reader, quiet bool) (types.ImageLoadResponse, error)
-	ImagePull(ctx context.Context, ref string, options types.ImagePullOptions) (io.ReadCloser, error)
-	ImagePush(ctx context.Context, ref string, options types.ImagePushOptions) (io.ReadCloser, error)
-	ImageRemove(ctx context.Context, image string, options types.ImageRemoveOptions) ([]types.ImageDeleteResponseItem, error)
-	ImageSearch(ctx context.Context, term string, options types.ImageSearchOptions) ([]registry.SearchResult, error)
-	ImageSave(ctx context.Context, images []string) (io.ReadCloser, error)
-	ImageTag(ctx context.Context, image, ref string) error
-	ImagesPrune(ctx context.Context, pruneFilter filters.Args) (types.ImagesPruneReport, error)
-}
-
-// NetworkAPIClient defines API client methods for the networks
-type NetworkAPIClient interface {
-	NetworkConnect(ctx context.Context, network, container string, config *networktypes.EndpointSettings) error
-	NetworkCreate(ctx context.Context, name string, options types.NetworkCreate) (types.NetworkCreateResponse, error)
-	NetworkDisconnect(ctx context.Context, network, container string, force bool) error
-	NetworkInspect(ctx context.Context, network string, options types.NetworkInspectOptions) (types.NetworkResource, error)
-	NetworkInspectWithRaw(ctx context.Context, network string, options types.NetworkInspectOptions) (types.NetworkResource, []byte, error)
-	NetworkList(ctx context.Context, options types.NetworkListOptions) ([]types.NetworkResource, error)
-	NetworkRemove(ctx context.Context, network string) error
-	NetworksPrune(ctx context.Context, pruneFilter filters.Args) (types.NetworksPruneReport, error)
-}
-
-// NodeAPIClient defines API client methods for the nodes
-type NodeAPIClient interface {
-	NodeInspectWithRaw(ctx context.Context, nodeID string) (swarm.Node, []byte, error)
-	NodeList(ctx context.Context, options types.NodeListOptions) ([]swarm.Node, error)
-	NodeRemove(ctx context.Context, nodeID string, options types.NodeRemoveOptions) error
-	NodeUpdate(ctx context.Context, nodeID string, version swarm.Version, node swarm.NodeSpec) error
-}
-
-// PluginAPIClient defines API client methods for the plugins
-type PluginAPIClient interface {
-	PluginList(ctx context.Context, filter filters.Args) (types.PluginsListResponse, error)
-	PluginRemove(ctx context.Context, name string, options types.PluginRemoveOptions) error
-	PluginEnable(ctx context.Context, name string, options types.PluginEnableOptions) error
-	PluginDisable(ctx context.Context, name string, options types.PluginDisableOptions) error
-	PluginInstall(ctx context.Context, name string, options types.PluginInstallOptions) (io.ReadCloser, error)
-	PluginUpgrade(ctx context.Context, name string, options types.PluginInstallOptions) (io.ReadCloser, error)
-	PluginPush(ctx context.Context, name string, registryAuth string) (io.ReadCloser, error)
-	PluginSet(ctx context.Context, name string, args []string) error
-	PluginInspectWithRaw(ctx context.Context, name string) (*types.Plugin, []byte, error)
-	PluginCreate(ctx context.Context, createContext io.Reader, options types.PluginCreateOptions) error
-}
-
-// ServiceAPIClient defines API client methods for the services
-type ServiceAPIClient interface {
-	ServiceCreate(ctx context.Context, service swarm.ServiceSpec, options types.ServiceCreateOptions) (types.ServiceCreateResponse, error)
-	ServiceInspectWithRaw(ctx context.Context, serviceID string, options types.ServiceInspectOptions) (swarm.Service, []byte, error)
-	ServiceList(ctx context.Context, options types.ServiceListOptions) ([]swarm.Service, error)
-	ServiceRemove(ctx context.Context, serviceID string) error
-	ServiceUpdate(ctx context.Context, serviceID string, version swarm.Version, service swarm.ServiceSpec, options types.ServiceUpdateOptions) (types.ServiceUpdateResponse, error)
-	ServiceLogs(ctx context.Context, serviceID string, options types.ContainerLogsOptions) (io.ReadCloser, error)
-	TaskLogs(ctx context.Context, taskID string, options types.ContainerLogsOptions) (io.ReadCloser, error)
-	TaskInspectWithRaw(ctx context.Context, taskID string) (swarm.Task, []byte, error)
-	TaskList(ctx context.Context, options types.TaskListOptions) ([]swarm.Task, error)
-}
-
-// SwarmAPIClient defines API client methods for the swarm
-type SwarmAPIClient interface {
-	SwarmInit(ctx context.Context, req swarm.InitRequest) (string, error)
-	SwarmJoin(ctx context.Context, req swarm.JoinRequest) error
-	SwarmGetUnlockKey(ctx context.Context) (types.SwarmUnlockKeyResponse, error)
-	SwarmUnlock(ctx context.Context, req swarm.UnlockRequest) error
-	SwarmLeave(ctx context.Context, force bool) error
-	SwarmInspect(ctx context.Context) (swarm.Swarm, error)
-	SwarmUpdate(ctx context.Context, version swarm.Version, swarm swarm.Spec, flags swarm.UpdateFlags) error
-}
-
-// SystemAPIClient defines API client methods for the system
-type SystemAPIClient interface {
-	Events(ctx context.Context, options types.EventsOptions) (<-chan events.Message, <-chan error)
-	Info(ctx context.Context) (types.Info, error)
-	RegistryLogin(ctx context.Context, auth types.AuthConfig) (registry.AuthenticateOKBody, error)
-	DiskUsage(ctx context.Context) (types.DiskUsage, error)
-	Ping(ctx context.Context) (types.Ping, error)
-}
-
-// VolumeAPIClient defines API client methods for the volumes
-type VolumeAPIClient interface {
-	VolumeCreate(ctx context.Context, options volumetypes.VolumesCreateBody) (types.Volume, error)
-	VolumeInspect(ctx context.Context, volumeID string) (types.Volume, error)
-	VolumeInspectWithRaw(ctx context.Context, volumeID string) (types.Volume, []byte, error)
-	VolumeList(ctx context.Context, filter filters.Args) (volumetypes.VolumesListOKBody, error)
-	VolumeRemove(ctx context.Context, volumeID string, force bool) error
-	VolumesPrune(ctx context.Context, pruneFilter filters.Args) (types.VolumesPruneReport, error)
-}
-
-// SecretAPIClient defines API client methods for secrets
-type SecretAPIClient interface {
-	SecretList(ctx context.Context, options types.SecretListOptions) ([]swarm.Secret, error)
-	SecretCreate(ctx context.Context, secret swarm.SecretSpec) (types.SecretCreateResponse, error)
-	SecretRemove(ctx context.Context, id string) error
-	SecretInspectWithRaw(ctx context.Context, name string) (swarm.Secret, []byte, error)
-	SecretUpdate(ctx context.Context, id string, version swarm.Version, secret swarm.SecretSpec) error
-}
-
-// ConfigAPIClient defines API client methods for configs
-type ConfigAPIClient interface {
-	ConfigList(ctx context.Context, options types.ConfigListOptions) ([]swarm.Config, error)
-	ConfigCreate(ctx context.Context, config swarm.ConfigSpec) (types.ConfigCreateResponse, error)
-	ConfigRemove(ctx context.Context, id string) error
-	ConfigInspectWithRaw(ctx context.Context, name string) (swarm.Config, []byte, error)
-	ConfigUpdate(ctx context.Context, id string, version swarm.Version, config swarm.ConfigSpec) error
-}
diff --git a/vendor/github.com/docker/docker/client/interface_experimental.go b/vendor/github.com/docker/docker/client/interface_experimental.go
deleted file mode 100644
index 236c1d6ca6..0000000000
--- a/vendor/github.com/docker/docker/client/interface_experimental.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-type apiClientExperimental interface {
-	CheckpointAPIClient
-}
-
-// CheckpointAPIClient defines API client methods for the checkpoints
-type CheckpointAPIClient interface {
-	CheckpointCreate(ctx context.Context, container string, options types.CheckpointCreateOptions) error
-	CheckpointDelete(ctx context.Context, container string, options types.CheckpointDeleteOptions) error
-	CheckpointList(ctx context.Context, container string, options types.CheckpointListOptions) ([]types.Checkpoint, error)
-}
diff --git a/vendor/github.com/docker/docker/client/interface_stable.go b/vendor/github.com/docker/docker/client/interface_stable.go
deleted file mode 100644
index 5502cd7426..0000000000
--- a/vendor/github.com/docker/docker/client/interface_stable.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-// APIClient is an interface that clients that talk with a docker server must implement.
-type APIClient interface {
-	CommonAPIClient
-	apiClientExperimental
-}
-
-// Ensure that Client always implements APIClient.
-var _ APIClient = &Client{}
diff --git a/vendor/github.com/docker/docker/client/login.go b/vendor/github.com/docker/docker/client/login.go
deleted file mode 100644
index fefb101ade..0000000000
--- a/vendor/github.com/docker/docker/client/login.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/http"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/registry"
-	"golang.org/x/net/context"
-)
-
-// RegistryLogin authenticates the docker server with a given docker registry.
-// It returns unauthorizedError when the authentication fails.
-func (cli *Client) RegistryLogin(ctx context.Context, auth types.AuthConfig) (registry.AuthenticateOKBody, error) {
-	resp, err := cli.post(ctx, "/auth", url.Values{}, auth, nil)
-
-	if resp.statusCode == http.StatusUnauthorized {
-		return registry.AuthenticateOKBody{}, unauthorizedError{err}
-	}
-	if err != nil {
-		return registry.AuthenticateOKBody{}, err
-	}
-
-	var response registry.AuthenticateOKBody
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/network_connect.go b/vendor/github.com/docker/docker/client/network_connect.go
deleted file mode 100644
index af4a61659b..0000000000
--- a/vendor/github.com/docker/docker/client/network_connect.go
+++ /dev/null
@@ -1,18 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/network"
-	"golang.org/x/net/context"
-)
-
-// NetworkConnect connects a container to an existent network in the docker host.
-func (cli *Client) NetworkConnect(ctx context.Context, networkID, containerID string, config *network.EndpointSettings) error {
-	nc := types.NetworkConnect{
-		Container:      containerID,
-		EndpointConfig: config,
-	}
-	resp, err := cli.post(ctx, "/networks/"+networkID+"/connect", nil, nc, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/network_create.go b/vendor/github.com/docker/docker/client/network_create.go
deleted file mode 100644
index fa1d301a4c..0000000000
--- a/vendor/github.com/docker/docker/client/network_create.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// NetworkCreate creates a new network in the docker host.
-func (cli *Client) NetworkCreate(ctx context.Context, name string, options types.NetworkCreate) (types.NetworkCreateResponse, error) {
-	networkCreateRequest := types.NetworkCreateRequest{
-		NetworkCreate: options,
-		Name:          name,
-	}
-	var response types.NetworkCreateResponse
-	serverResp, err := cli.post(ctx, "/networks/create", nil, networkCreateRequest, nil)
-	if err != nil {
-		return response, err
-	}
-
-	json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/network_disconnect.go b/vendor/github.com/docker/docker/client/network_disconnect.go
deleted file mode 100644
index 5fc75a9412..0000000000
--- a/vendor/github.com/docker/docker/client/network_disconnect.go
+++ /dev/null
@@ -1,14 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// NetworkDisconnect disconnects a container from an existent network in the docker host.
-func (cli *Client) NetworkDisconnect(ctx context.Context, networkID, containerID string, force bool) error {
-	nd := types.NetworkDisconnect{Container: containerID, Force: force}
-	resp, err := cli.post(ctx, "/networks/"+networkID+"/disconnect", nil, nd, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/network_inspect.go b/vendor/github.com/docker/docker/client/network_inspect.go
deleted file mode 100644
index 3308f18ded..0000000000
--- a/vendor/github.com/docker/docker/client/network_inspect.go
+++ /dev/null
@@ -1,46 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// NetworkInspect returns the information for a specific network configured in the docker host.
-func (cli *Client) NetworkInspect(ctx context.Context, networkID string, options types.NetworkInspectOptions) (types.NetworkResource, error) {
-	networkResource, _, err := cli.NetworkInspectWithRaw(ctx, networkID, options)
-	return networkResource, err
-}
-
-// NetworkInspectWithRaw returns the information for a specific network configured in the docker host and its raw representation.
-func (cli *Client) NetworkInspectWithRaw(ctx context.Context, networkID string, options types.NetworkInspectOptions) (types.NetworkResource, []byte, error) {
-	var (
-		networkResource types.NetworkResource
-		resp            serverResponse
-		err             error
-	)
-	query := url.Values{}
-	if options.Verbose {
-		query.Set("verbose", "true")
-	}
-	if options.Scope != "" {
-		query.Set("scope", options.Scope)
-	}
-	resp, err = cli.get(ctx, "/networks/"+networkID, query, nil)
-	if err != nil {
-		return networkResource, nil, wrapResponseError(err, resp, "network", networkID)
-	}
-	defer ensureReaderClosed(resp)
-
-	body, err := ioutil.ReadAll(resp.body)
-	if err != nil {
-		return networkResource, nil, err
-	}
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&networkResource)
-	return networkResource, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/network_list.go b/vendor/github.com/docker/docker/client/network_list.go
deleted file mode 100644
index 9b424285eb..0000000000
--- a/vendor/github.com/docker/docker/client/network_list.go
+++ /dev/null
@@ -1,31 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// NetworkList returns the list of networks configured in the docker host.
-func (cli *Client) NetworkList(ctx context.Context, options types.NetworkListOptions) ([]types.NetworkResource, error) {
-	query := url.Values{}
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cli.version, options.Filters)
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-	var networkResources []types.NetworkResource
-	resp, err := cli.get(ctx, "/networks", query, nil)
-	if err != nil {
-		return networkResources, err
-	}
-	err = json.NewDecoder(resp.body).Decode(&networkResources)
-	ensureReaderClosed(resp)
-	return networkResources, err
-}
diff --git a/vendor/github.com/docker/docker/client/network_prune.go b/vendor/github.com/docker/docker/client/network_prune.go
deleted file mode 100644
index d546f0c304..0000000000
--- a/vendor/github.com/docker/docker/client/network_prune.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// NetworksPrune requests the daemon to delete unused networks
-func (cli *Client) NetworksPrune(ctx context.Context, pruneFilters filters.Args) (types.NetworksPruneReport, error) {
-	var report types.NetworksPruneReport
-
-	if err := cli.NewVersionError("1.25", "network prune"); err != nil {
-		return report, err
-	}
-
-	query, err := getFiltersQuery(pruneFilters)
-	if err != nil {
-		return report, err
-	}
-
-	serverResp, err := cli.post(ctx, "/networks/prune", query, nil, nil)
-	if err != nil {
-		return report, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&report); err != nil {
-		return report, fmt.Errorf("Error retrieving network prune report: %v", err)
-	}
-
-	return report, nil
-}
diff --git a/vendor/github.com/docker/docker/client/network_remove.go b/vendor/github.com/docker/docker/client/network_remove.go
deleted file mode 100644
index c99de10c83..0000000000
--- a/vendor/github.com/docker/docker/client/network_remove.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// NetworkRemove removes an existent network from the docker host.
-func (cli *Client) NetworkRemove(ctx context.Context, networkID string) error {
-	resp, err := cli.delete(ctx, "/networks/"+networkID, nil, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "network", networkID)
-}
diff --git a/vendor/github.com/docker/docker/client/node_inspect.go b/vendor/github.com/docker/docker/client/node_inspect.go
deleted file mode 100644
index 454db9f17b..0000000000
--- a/vendor/github.com/docker/docker/client/node_inspect.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// NodeInspectWithRaw returns the node information.
-func (cli *Client) NodeInspectWithRaw(ctx context.Context, nodeID string) (swarm.Node, []byte, error) {
-	serverResp, err := cli.get(ctx, "/nodes/"+nodeID, nil, nil)
-	if err != nil {
-		return swarm.Node{}, nil, wrapResponseError(err, serverResp, "node", nodeID)
-	}
-	defer ensureReaderClosed(serverResp)
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return swarm.Node{}, nil, err
-	}
-
-	var response swarm.Node
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&response)
-	return response, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/node_list.go b/vendor/github.com/docker/docker/client/node_list.go
deleted file mode 100644
index c613ad2197..0000000000
--- a/vendor/github.com/docker/docker/client/node_list.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// NodeList returns the list of nodes.
-func (cli *Client) NodeList(ctx context.Context, options types.NodeListOptions) ([]swarm.Node, error) {
-	query := url.Values{}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/nodes", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var nodes []swarm.Node
-	err = json.NewDecoder(resp.body).Decode(&nodes)
-	ensureReaderClosed(resp)
-	return nodes, err
-}
diff --git a/vendor/github.com/docker/docker/client/node_remove.go b/vendor/github.com/docker/docker/client/node_remove.go
deleted file mode 100644
index 7c1a757d31..0000000000
--- a/vendor/github.com/docker/docker/client/node_remove.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-
-	"golang.org/x/net/context"
-)
-
-// NodeRemove removes a Node.
-func (cli *Client) NodeRemove(ctx context.Context, nodeID string, options types.NodeRemoveOptions) error {
-	query := url.Values{}
-	if options.Force {
-		query.Set("force", "1")
-	}
-
-	resp, err := cli.delete(ctx, "/nodes/"+nodeID, query, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "node", nodeID)
-}
diff --git a/vendor/github.com/docker/docker/client/node_update.go b/vendor/github.com/docker/docker/client/node_update.go
deleted file mode 100644
index 0b528a4703..0000000000
--- a/vendor/github.com/docker/docker/client/node_update.go
+++ /dev/null
@@ -1,18 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// NodeUpdate updates a Node.
-func (cli *Client) NodeUpdate(ctx context.Context, nodeID string, version swarm.Version, node swarm.NodeSpec) error {
-	query := url.Values{}
-	query.Set("version", strconv.FormatUint(version.Index, 10))
-	resp, err := cli.post(ctx, "/nodes/"+nodeID+"/update", query, node, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/ping.go b/vendor/github.com/docker/docker/client/ping.go
deleted file mode 100644
index e2366276da..0000000000
--- a/vendor/github.com/docker/docker/client/ping.go
+++ /dev/null
@@ -1,32 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"path"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// Ping pings the server and returns the value of the "Docker-Experimental", "OS-Type" & "API-Version" headers
-func (cli *Client) Ping(ctx context.Context) (types.Ping, error) {
-	var ping types.Ping
-	req, err := cli.buildRequest("GET", path.Join(cli.basePath, "/_ping"), nil, nil)
-	if err != nil {
-		return ping, err
-	}
-	serverResp, err := cli.doRequest(ctx, req)
-	if err != nil {
-		return ping, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if serverResp.header != nil {
-		ping.APIVersion = serverResp.header.Get("API-Version")
-
-		if serverResp.header.Get("Docker-Experimental") == "true" {
-			ping.Experimental = true
-		}
-		ping.OSType = serverResp.header.Get("OSType")
-	}
-	return ping, cli.checkResponseErr(serverResp)
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_create.go b/vendor/github.com/docker/docker/client/plugin_create.go
deleted file mode 100644
index 51ef9c9945..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_create.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/http"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// PluginCreate creates a plugin
-func (cli *Client) PluginCreate(ctx context.Context, createContext io.Reader, createOptions types.PluginCreateOptions) error {
-	headers := http.Header(make(map[string][]string))
-	headers.Set("Content-Type", "application/x-tar")
-
-	query := url.Values{}
-	query.Set("name", createOptions.RepoName)
-
-	resp, err := cli.postRaw(ctx, "/plugins/create", query, createContext, headers)
-	if err != nil {
-		return err
-	}
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_disable.go b/vendor/github.com/docker/docker/client/plugin_disable.go
deleted file mode 100644
index 8d8c41d226..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_disable.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// PluginDisable disables a plugin
-func (cli *Client) PluginDisable(ctx context.Context, name string, options types.PluginDisableOptions) error {
-	query := url.Values{}
-	if options.Force {
-		query.Set("force", "1")
-	}
-	resp, err := cli.post(ctx, "/plugins/"+name+"/disable", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_enable.go b/vendor/github.com/docker/docker/client/plugin_enable.go
deleted file mode 100644
index 1f0f8f7340..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_enable.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// PluginEnable enables a plugin
-func (cli *Client) PluginEnable(ctx context.Context, name string, options types.PluginEnableOptions) error {
-	query := url.Values{}
-	query.Set("timeout", strconv.Itoa(options.Timeout))
-
-	resp, err := cli.post(ctx, "/plugins/"+name+"/enable", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_inspect.go b/vendor/github.com/docker/docker/client/plugin_inspect.go
deleted file mode 100644
index 8957a805ec..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_inspect.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// PluginInspectWithRaw inspects an existing plugin
-func (cli *Client) PluginInspectWithRaw(ctx context.Context, name string) (*types.Plugin, []byte, error) {
-	resp, err := cli.get(ctx, "/plugins/"+name+"/json", nil, nil)
-	if err != nil {
-		return nil, nil, wrapResponseError(err, resp, "plugin", name)
-	}
-
-	defer ensureReaderClosed(resp)
-	body, err := ioutil.ReadAll(resp.body)
-	if err != nil {
-		return nil, nil, err
-	}
-	var p types.Plugin
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&p)
-	return &p, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_install.go b/vendor/github.com/docker/docker/client/plugin_install.go
deleted file mode 100644
index ae04387d5d..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_install.go
+++ /dev/null
@@ -1,113 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"io"
-	"net/http"
-	"net/url"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-// PluginInstall installs a plugin
-func (cli *Client) PluginInstall(ctx context.Context, name string, options types.PluginInstallOptions) (rc io.ReadCloser, err error) {
-	query := url.Values{}
-	if _, err := reference.ParseNormalizedNamed(options.RemoteRef); err != nil {
-		return nil, errors.Wrap(err, "invalid remote reference")
-	}
-	query.Set("remote", options.RemoteRef)
-
-	privileges, err := cli.checkPluginPermissions(ctx, query, options)
-	if err != nil {
-		return nil, err
-	}
-
-	// set name for plugin pull, if empty should default to remote reference
-	query.Set("name", name)
-
-	resp, err := cli.tryPluginPull(ctx, query, privileges, options.RegistryAuth)
-	if err != nil {
-		return nil, err
-	}
-
-	name = resp.header.Get("Docker-Plugin-Name")
-
-	pr, pw := io.Pipe()
-	go func() { // todo: the client should probably be designed more around the actual api
-		_, err := io.Copy(pw, resp.body)
-		if err != nil {
-			pw.CloseWithError(err)
-			return
-		}
-		defer func() {
-			if err != nil {
-				delResp, _ := cli.delete(ctx, "/plugins/"+name, nil, nil)
-				ensureReaderClosed(delResp)
-			}
-		}()
-		if len(options.Args) > 0 {
-			if err := cli.PluginSet(ctx, name, options.Args); err != nil {
-				pw.CloseWithError(err)
-				return
-			}
-		}
-
-		if options.Disabled {
-			pw.Close()
-			return
-		}
-
-		enableErr := cli.PluginEnable(ctx, name, types.PluginEnableOptions{Timeout: 0})
-		pw.CloseWithError(enableErr)
-	}()
-	return pr, nil
-}
-
-func (cli *Client) tryPluginPrivileges(ctx context.Context, query url.Values, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.get(ctx, "/plugins/privileges", query, headers)
-}
-
-func (cli *Client) tryPluginPull(ctx context.Context, query url.Values, privileges types.PluginPrivileges, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.post(ctx, "/plugins/pull", query, privileges, headers)
-}
-
-func (cli *Client) checkPluginPermissions(ctx context.Context, query url.Values, options types.PluginInstallOptions) (types.PluginPrivileges, error) {
-	resp, err := cli.tryPluginPrivileges(ctx, query, options.RegistryAuth)
-	if resp.statusCode == http.StatusUnauthorized && options.PrivilegeFunc != nil {
-		// todo: do inspect before to check existing name before checking privileges
-		newAuthHeader, privilegeErr := options.PrivilegeFunc()
-		if privilegeErr != nil {
-			ensureReaderClosed(resp)
-			return nil, privilegeErr
-		}
-		options.RegistryAuth = newAuthHeader
-		resp, err = cli.tryPluginPrivileges(ctx, query, options.RegistryAuth)
-	}
-	if err != nil {
-		ensureReaderClosed(resp)
-		return nil, err
-	}
-
-	var privileges types.PluginPrivileges
-	if err := json.NewDecoder(resp.body).Decode(&privileges); err != nil {
-		ensureReaderClosed(resp)
-		return nil, err
-	}
-	ensureReaderClosed(resp)
-
-	if !options.AcceptAllPermissions && options.AcceptPermissionsFunc != nil && len(privileges) > 0 {
-		accept, err := options.AcceptPermissionsFunc(privileges)
-		if err != nil {
-			return nil, err
-		}
-		if !accept {
-			return nil, pluginPermissionDenied{options.RemoteRef}
-		}
-	}
-	return privileges, nil
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_list.go b/vendor/github.com/docker/docker/client/plugin_list.go
deleted file mode 100644
index e49876621d..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_list.go
+++ /dev/null
@@ -1,32 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// PluginList returns the installed plugins
-func (cli *Client) PluginList(ctx context.Context, filter filters.Args) (types.PluginsListResponse, error) {
-	var plugins types.PluginsListResponse
-	query := url.Values{}
-
-	if filter.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cli.version, filter)
-		if err != nil {
-			return plugins, err
-		}
-		query.Set("filters", filterJSON)
-	}
-	resp, err := cli.get(ctx, "/plugins", query, nil)
-	if err != nil {
-		return plugins, wrapResponseError(err, resp, "plugin", "")
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&plugins)
-	ensureReaderClosed(resp)
-	return plugins, err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_push.go b/vendor/github.com/docker/docker/client/plugin_push.go
deleted file mode 100644
index 33b38d843c..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_push.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-
-	"golang.org/x/net/context"
-)
-
-// PluginPush pushes a plugin to a registry
-func (cli *Client) PluginPush(ctx context.Context, name string, registryAuth string) (io.ReadCloser, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	resp, err := cli.post(ctx, "/plugins/"+name+"/push", nil, nil, headers)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_remove.go b/vendor/github.com/docker/docker/client/plugin_remove.go
deleted file mode 100644
index b9e7d8e4a8..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_remove.go
+++ /dev/null
@@ -1,20 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// PluginRemove removes a plugin
-func (cli *Client) PluginRemove(ctx context.Context, name string, options types.PluginRemoveOptions) error {
-	query := url.Values{}
-	if options.Force {
-		query.Set("force", "1")
-	}
-
-	resp, err := cli.delete(ctx, "/plugins/"+name, query, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "plugin", name)
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_set.go b/vendor/github.com/docker/docker/client/plugin_set.go
deleted file mode 100644
index de72cc0d3a..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_set.go
+++ /dev/null
@@ -1,12 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"golang.org/x/net/context"
-)
-
-// PluginSet modifies settings for an existing plugin
-func (cli *Client) PluginSet(ctx context.Context, name string, args []string) error {
-	resp, err := cli.post(ctx, "/plugins/"+name+"/set", nil, args, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/plugin_upgrade.go b/vendor/github.com/docker/docker/client/plugin_upgrade.go
deleted file mode 100644
index 33b740ca76..0000000000
--- a/vendor/github.com/docker/docker/client/plugin_upgrade.go
+++ /dev/null
@@ -1,39 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-// PluginUpgrade upgrades a plugin
-func (cli *Client) PluginUpgrade(ctx context.Context, name string, options types.PluginInstallOptions) (rc io.ReadCloser, err error) {
-	if err := cli.NewVersionError("1.26", "plugin upgrade"); err != nil {
-		return nil, err
-	}
-	query := url.Values{}
-	if _, err := reference.ParseNormalizedNamed(options.RemoteRef); err != nil {
-		return nil, errors.Wrap(err, "invalid remote reference")
-	}
-	query.Set("remote", options.RemoteRef)
-
-	privileges, err := cli.checkPluginPermissions(ctx, query, options)
-	if err != nil {
-		return nil, err
-	}
-
-	resp, err := cli.tryPluginUpgrade(ctx, query, privileges, name, options.RegistryAuth)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
-
-func (cli *Client) tryPluginUpgrade(ctx context.Context, query url.Values, privileges types.PluginPrivileges, name, registryAuth string) (serverResponse, error) {
-	headers := map[string][]string{"X-Registry-Auth": {registryAuth}}
-	return cli.post(ctx, "/plugins/"+name+"/upgrade", query, privileges, headers)
-}
diff --git a/vendor/github.com/docker/docker/client/request.go b/vendor/github.com/docker/docker/client/request.go
deleted file mode 100644
index 986b512dda..0000000000
--- a/vendor/github.com/docker/docker/client/request.go
+++ /dev/null
@@ -1,262 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net"
-	"net/http"
-	"net/url"
-	"os"
-	"strings"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/versions"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-	"golang.org/x/net/context/ctxhttp"
-)
-
-// serverResponse is a wrapper for http API responses.
-type serverResponse struct {
-	body       io.ReadCloser
-	header     http.Header
-	statusCode int
-	reqURL     *url.URL
-}
-
-// head sends an http request to the docker API using the method HEAD.
-func (cli *Client) head(ctx context.Context, path string, query url.Values, headers map[string][]string) (serverResponse, error) {
-	return cli.sendRequest(ctx, "HEAD", path, query, nil, headers)
-}
-
-// get sends an http request to the docker API using the method GET with a specific Go context.
-func (cli *Client) get(ctx context.Context, path string, query url.Values, headers map[string][]string) (serverResponse, error) {
-	return cli.sendRequest(ctx, "GET", path, query, nil, headers)
-}
-
-// post sends an http request to the docker API using the method POST with a specific Go context.
-func (cli *Client) post(ctx context.Context, path string, query url.Values, obj interface{}, headers map[string][]string) (serverResponse, error) {
-	body, headers, err := encodeBody(obj, headers)
-	if err != nil {
-		return serverResponse{}, err
-	}
-	return cli.sendRequest(ctx, "POST", path, query, body, headers)
-}
-
-func (cli *Client) postRaw(ctx context.Context, path string, query url.Values, body io.Reader, headers map[string][]string) (serverResponse, error) {
-	return cli.sendRequest(ctx, "POST", path, query, body, headers)
-}
-
-// put sends an http request to the docker API using the method PUT.
-func (cli *Client) put(ctx context.Context, path string, query url.Values, obj interface{}, headers map[string][]string) (serverResponse, error) {
-	body, headers, err := encodeBody(obj, headers)
-	if err != nil {
-		return serverResponse{}, err
-	}
-	return cli.sendRequest(ctx, "PUT", path, query, body, headers)
-}
-
-// putRaw sends an http request to the docker API using the method PUT.
-func (cli *Client) putRaw(ctx context.Context, path string, query url.Values, body io.Reader, headers map[string][]string) (serverResponse, error) {
-	return cli.sendRequest(ctx, "PUT", path, query, body, headers)
-}
-
-// delete sends an http request to the docker API using the method DELETE.
-func (cli *Client) delete(ctx context.Context, path string, query url.Values, headers map[string][]string) (serverResponse, error) {
-	return cli.sendRequest(ctx, "DELETE", path, query, nil, headers)
-}
-
-type headers map[string][]string
-
-func encodeBody(obj interface{}, headers headers) (io.Reader, headers, error) {
-	if obj == nil {
-		return nil, headers, nil
-	}
-
-	body, err := encodeData(obj)
-	if err != nil {
-		return nil, headers, err
-	}
-	if headers == nil {
-		headers = make(map[string][]string)
-	}
-	headers["Content-Type"] = []string{"application/json"}
-	return body, headers, nil
-}
-
-func (cli *Client) buildRequest(method, path string, body io.Reader, headers headers) (*http.Request, error) {
-	expectedPayload := (method == "POST" || method == "PUT")
-	if expectedPayload && body == nil {
-		body = bytes.NewReader([]byte{})
-	}
-
-	req, err := http.NewRequest(method, path, body)
-	if err != nil {
-		return nil, err
-	}
-	req = cli.addHeaders(req, headers)
-
-	if cli.proto == "unix" || cli.proto == "npipe" {
-		// For local communications, it doesn't matter what the host is. We just
-		// need a valid and meaningful host name. (See #189)
-		req.Host = "docker"
-	}
-
-	req.URL.Host = cli.addr
-	req.URL.Scheme = cli.scheme
-
-	if expectedPayload && req.Header.Get("Content-Type") == "" {
-		req.Header.Set("Content-Type", "text/plain")
-	}
-	return req, nil
-}
-
-func (cli *Client) sendRequest(ctx context.Context, method, path string, query url.Values, body io.Reader, headers headers) (serverResponse, error) {
-	req, err := cli.buildRequest(method, cli.getAPIPath(path, query), body, headers)
-	if err != nil {
-		return serverResponse{}, err
-	}
-	resp, err := cli.doRequest(ctx, req)
-	if err != nil {
-		return resp, err
-	}
-	if err := cli.checkResponseErr(resp); err != nil {
-		return resp, err
-	}
-	return resp, nil
-}
-
-func (cli *Client) doRequest(ctx context.Context, req *http.Request) (serverResponse, error) {
-	serverResp := serverResponse{statusCode: -1, reqURL: req.URL}
-
-	resp, err := ctxhttp.Do(ctx, cli.client, req)
-	if err != nil {
-		if cli.scheme != "https" && strings.Contains(err.Error(), "malformed HTTP response") {
-			return serverResp, fmt.Errorf("%v.\n* Are you trying to connect to a TLS-enabled daemon without TLS?", err)
-		}
-
-		if cli.scheme == "https" && strings.Contains(err.Error(), "bad certificate") {
-			return serverResp, fmt.Errorf("The server probably has client authentication (--tlsverify) enabled. Please check your TLS client certification settings: %v", err)
-		}
-
-		// Don't decorate context sentinel errors; users may be comparing to
-		// them directly.
-		switch err {
-		case context.Canceled, context.DeadlineExceeded:
-			return serverResp, err
-		}
-
-		if nErr, ok := err.(*url.Error); ok {
-			if nErr, ok := nErr.Err.(*net.OpError); ok {
-				if os.IsPermission(nErr.Err) {
-					return serverResp, errors.Wrapf(err, "Got permission denied while trying to connect to the Docker daemon socket at %v", cli.host)
-				}
-			}
-		}
-
-		if err, ok := err.(net.Error); ok {
-			if err.Timeout() {
-				return serverResp, ErrorConnectionFailed(cli.host)
-			}
-			if !err.Temporary() {
-				if strings.Contains(err.Error(), "connection refused") || strings.Contains(err.Error(), "dial unix") {
-					return serverResp, ErrorConnectionFailed(cli.host)
-				}
-			}
-		}
-
-		// Although there's not a strongly typed error for this in go-winio,
-		// lots of people are using the default configuration for the docker
-		// daemon on Windows where the daemon is listening on a named pipe
-		// `//./pipe/docker_engine, and the client must be running elevated.
-		// Give users a clue rather than the not-overly useful message
-		// such as `error during connect: Get http://%2F%2F.%2Fpipe%2Fdocker_engine/v1.26/info:
-		// open //./pipe/docker_engine: The system cannot find the file specified.`.
-		// Note we can't string compare "The system cannot find the file specified" as
-		// this is localised - for example in French the error would be
-		// `open //./pipe/docker_engine: Le fichier spécifié est introuvable.`
-		if strings.Contains(err.Error(), `open //./pipe/docker_engine`) {
-			err = errors.New(err.Error() + " In the default daemon configuration on Windows, the docker client must be run elevated to connect. This error may also indicate that the docker daemon is not running.")
-		}
-
-		return serverResp, errors.Wrap(err, "error during connect")
-	}
-
-	if resp != nil {
-		serverResp.statusCode = resp.StatusCode
-		serverResp.body = resp.Body
-		serverResp.header = resp.Header
-	}
-	return serverResp, nil
-}
-
-func (cli *Client) checkResponseErr(serverResp serverResponse) error {
-	if serverResp.statusCode >= 200 && serverResp.statusCode < 400 {
-		return nil
-	}
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return err
-	}
-	if len(body) == 0 {
-		return fmt.Errorf("request returned %s for API route and version %s, check if the server supports the requested API version", http.StatusText(serverResp.statusCode), serverResp.reqURL)
-	}
-
-	var ct string
-	if serverResp.header != nil {
-		ct = serverResp.header.Get("Content-Type")
-	}
-
-	var errorMessage string
-	if (cli.version == "" || versions.GreaterThan(cli.version, "1.23")) && ct == "application/json" {
-		var errorResponse types.ErrorResponse
-		if err := json.Unmarshal(body, &errorResponse); err != nil {
-			return fmt.Errorf("Error reading JSON: %v", err)
-		}
-		errorMessage = errorResponse.Message
-	} else {
-		errorMessage = string(body)
-	}
-
-	return fmt.Errorf("Error response from daemon: %s", strings.TrimSpace(errorMessage))
-}
-
-func (cli *Client) addHeaders(req *http.Request, headers headers) *http.Request {
-	// Add CLI Config's HTTP Headers BEFORE we set the Docker headers
-	// then the user can't change OUR headers
-	for k, v := range cli.customHTTPHeaders {
-		if versions.LessThan(cli.version, "1.25") && k == "User-Agent" {
-			continue
-		}
-		req.Header.Set(k, v)
-	}
-
-	if headers != nil {
-		for k, v := range headers {
-			req.Header[k] = v
-		}
-	}
-	return req
-}
-
-func encodeData(data interface{}) (*bytes.Buffer, error) {
-	params := bytes.NewBuffer(nil)
-	if data != nil {
-		if err := json.NewEncoder(params).Encode(data); err != nil {
-			return nil, err
-		}
-	}
-	return params, nil
-}
-
-func ensureReaderClosed(response serverResponse) {
-	if response.body != nil {
-		// Drain up to 512 bytes and close the body to let the Transport reuse the connection
-		io.CopyN(ioutil.Discard, response.body, 512)
-		response.body.Close()
-	}
-}
diff --git a/vendor/github.com/docker/docker/client/secret_create.go b/vendor/github.com/docker/docker/client/secret_create.go
deleted file mode 100644
index fa639caf5b..0000000000
--- a/vendor/github.com/docker/docker/client/secret_create.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SecretCreate creates a new Secret.
-func (cli *Client) SecretCreate(ctx context.Context, secret swarm.SecretSpec) (types.SecretCreateResponse, error) {
-	var response types.SecretCreateResponse
-	if err := cli.NewVersionError("1.25", "secret create"); err != nil {
-		return response, err
-	}
-	resp, err := cli.post(ctx, "/secrets/create", nil, secret, nil)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/secret_inspect.go b/vendor/github.com/docker/docker/client/secret_inspect.go
deleted file mode 100644
index 6ff7549e5c..0000000000
--- a/vendor/github.com/docker/docker/client/secret_inspect.go
+++ /dev/null
@@ -1,33 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SecretInspectWithRaw returns the secret information with raw data
-func (cli *Client) SecretInspectWithRaw(ctx context.Context, id string) (swarm.Secret, []byte, error) {
-	if err := cli.NewVersionError("1.25", "secret inspect"); err != nil {
-		return swarm.Secret{}, nil, err
-	}
-	resp, err := cli.get(ctx, "/secrets/"+id, nil, nil)
-	if err != nil {
-		return swarm.Secret{}, nil, wrapResponseError(err, resp, "secret", id)
-	}
-	defer ensureReaderClosed(resp)
-
-	body, err := ioutil.ReadAll(resp.body)
-	if err != nil {
-		return swarm.Secret{}, nil, err
-	}
-
-	var secret swarm.Secret
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&secret)
-
-	return secret, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/secret_list.go b/vendor/github.com/docker/docker/client/secret_list.go
deleted file mode 100644
index adf4d92be2..0000000000
--- a/vendor/github.com/docker/docker/client/secret_list.go
+++ /dev/null
@@ -1,38 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SecretList returns the list of secrets.
-func (cli *Client) SecretList(ctx context.Context, options types.SecretListOptions) ([]swarm.Secret, error) {
-	if err := cli.NewVersionError("1.25", "secret list"); err != nil {
-		return nil, err
-	}
-	query := url.Values{}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/secrets", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var secrets []swarm.Secret
-	err = json.NewDecoder(resp.body).Decode(&secrets)
-	ensureReaderClosed(resp)
-	return secrets, err
-}
diff --git a/vendor/github.com/docker/docker/client/secret_remove.go b/vendor/github.com/docker/docker/client/secret_remove.go
deleted file mode 100644
index 89326e0908..0000000000
--- a/vendor/github.com/docker/docker/client/secret_remove.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// SecretRemove removes a Secret.
-func (cli *Client) SecretRemove(ctx context.Context, id string) error {
-	if err := cli.NewVersionError("1.25", "secret remove"); err != nil {
-		return err
-	}
-	resp, err := cli.delete(ctx, "/secrets/"+id, nil, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "secret", id)
-}
diff --git a/vendor/github.com/docker/docker/client/secret_update.go b/vendor/github.com/docker/docker/client/secret_update.go
deleted file mode 100644
index 8efd35c1eb..0000000000
--- a/vendor/github.com/docker/docker/client/secret_update.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SecretUpdate attempts to update a Secret
-func (cli *Client) SecretUpdate(ctx context.Context, id string, version swarm.Version, secret swarm.SecretSpec) error {
-	if err := cli.NewVersionError("1.25", "secret update"); err != nil {
-		return err
-	}
-	query := url.Values{}
-	query.Set("version", strconv.FormatUint(version.Index, 10))
-	resp, err := cli.post(ctx, "/secrets/"+id+"/update", query, secret, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/service_create.go b/vendor/github.com/docker/docker/client/service_create.go
deleted file mode 100644
index cf85ca4a18..0000000000
--- a/vendor/github.com/docker/docker/client/service_create.go
+++ /dev/null
@@ -1,166 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-	"strings"
-
-	"github.com/docker/distribution/reference"
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/swarm"
-	digest "github.com/opencontainers/go-digest"
-	"github.com/pkg/errors"
-	"golang.org/x/net/context"
-)
-
-// ServiceCreate creates a new Service.
-func (cli *Client) ServiceCreate(ctx context.Context, service swarm.ServiceSpec, options types.ServiceCreateOptions) (types.ServiceCreateResponse, error) {
-	var distErr error
-
-	headers := map[string][]string{
-		"version": {cli.version},
-	}
-
-	if options.EncodedRegistryAuth != "" {
-		headers["X-Registry-Auth"] = []string{options.EncodedRegistryAuth}
-	}
-
-	// Make sure containerSpec is not nil when no runtime is set or the runtime is set to container
-	if service.TaskTemplate.ContainerSpec == nil && (service.TaskTemplate.Runtime == "" || service.TaskTemplate.Runtime == swarm.RuntimeContainer) {
-		service.TaskTemplate.ContainerSpec = &swarm.ContainerSpec{}
-	}
-
-	if err := validateServiceSpec(service); err != nil {
-		return types.ServiceCreateResponse{}, err
-	}
-
-	// ensure that the image is tagged
-	var imgPlatforms []swarm.Platform
-	if service.TaskTemplate.ContainerSpec != nil {
-		if taggedImg := imageWithTagString(service.TaskTemplate.ContainerSpec.Image); taggedImg != "" {
-			service.TaskTemplate.ContainerSpec.Image = taggedImg
-		}
-		if options.QueryRegistry {
-			var img string
-			img, imgPlatforms, distErr = imageDigestAndPlatforms(ctx, cli, service.TaskTemplate.ContainerSpec.Image, options.EncodedRegistryAuth)
-			if img != "" {
-				service.TaskTemplate.ContainerSpec.Image = img
-			}
-		}
-	}
-
-	// ensure that the image is tagged
-	if service.TaskTemplate.PluginSpec != nil {
-		if taggedImg := imageWithTagString(service.TaskTemplate.PluginSpec.Remote); taggedImg != "" {
-			service.TaskTemplate.PluginSpec.Remote = taggedImg
-		}
-		if options.QueryRegistry {
-			var img string
-			img, imgPlatforms, distErr = imageDigestAndPlatforms(ctx, cli, service.TaskTemplate.PluginSpec.Remote, options.EncodedRegistryAuth)
-			if img != "" {
-				service.TaskTemplate.PluginSpec.Remote = img
-			}
-		}
-	}
-
-	if service.TaskTemplate.Placement == nil && len(imgPlatforms) > 0 {
-		service.TaskTemplate.Placement = &swarm.Placement{}
-	}
-	if len(imgPlatforms) > 0 {
-		service.TaskTemplate.Placement.Platforms = imgPlatforms
-	}
-
-	var response types.ServiceCreateResponse
-	resp, err := cli.post(ctx, "/services/create", nil, service, headers)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-
-	if distErr != nil {
-		response.Warnings = append(response.Warnings, digestWarning(service.TaskTemplate.ContainerSpec.Image))
-	}
-
-	ensureReaderClosed(resp)
-	return response, err
-}
-
-func imageDigestAndPlatforms(ctx context.Context, cli DistributionAPIClient, image, encodedAuth string) (string, []swarm.Platform, error) {
-	distributionInspect, err := cli.DistributionInspect(ctx, image, encodedAuth)
-	var platforms []swarm.Platform
-	if err != nil {
-		return "", nil, err
-	}
-
-	imageWithDigest := imageWithDigestString(image, distributionInspect.Descriptor.Digest)
-
-	if len(distributionInspect.Platforms) > 0 {
-		platforms = make([]swarm.Platform, 0, len(distributionInspect.Platforms))
-		for _, p := range distributionInspect.Platforms {
-			// clear architecture field for arm. This is a temporary patch to address
-			// https://github.com/docker/swarmkit/issues/2294. The issue is that while
-			// image manifests report "arm" as the architecture, the node reports
-			// something like "armv7l" (includes the variant), which causes arm images
-			// to stop working with swarm mode. This patch removes the architecture
-			// constraint for arm images to ensure tasks get scheduled.
-			arch := p.Architecture
-			if strings.ToLower(arch) == "arm" {
-				arch = ""
-			}
-			platforms = append(platforms, swarm.Platform{
-				Architecture: arch,
-				OS:           p.OS,
-			})
-		}
-	}
-	return imageWithDigest, platforms, err
-}
-
-// imageWithDigestString takes an image string and a digest, and updates
-// the image string if it didn't originally contain a digest. It returns
-// an empty string if there are no updates.
-func imageWithDigestString(image string, dgst digest.Digest) string {
-	namedRef, err := reference.ParseNormalizedNamed(image)
-	if err == nil {
-		if _, isCanonical := namedRef.(reference.Canonical); !isCanonical {
-			// ensure that image gets a default tag if none is provided
-			img, err := reference.WithDigest(namedRef, dgst)
-			if err == nil {
-				return reference.FamiliarString(img)
-			}
-		}
-	}
-	return ""
-}
-
-// imageWithTagString takes an image string, and returns a tagged image
-// string, adding a 'latest' tag if one was not provided. It returns an
-// emptry string if a canonical reference was provided
-func imageWithTagString(image string) string {
-	namedRef, err := reference.ParseNormalizedNamed(image)
-	if err == nil {
-		return reference.FamiliarString(reference.TagNameOnly(namedRef))
-	}
-	return ""
-}
-
-// digestWarning constructs a formatted warning string using the
-// image name that could not be pinned by digest. The formatting
-// is hardcoded, but could me made smarter in the future
-func digestWarning(image string) string {
-	return fmt.Sprintf("image %s could not be accessed on a registry to record\nits digest. Each node will access %s independently,\npossibly leading to different nodes running different\nversions of the image.\n", image, image)
-}
-
-func validateServiceSpec(s swarm.ServiceSpec) error {
-	if s.TaskTemplate.ContainerSpec != nil && s.TaskTemplate.PluginSpec != nil {
-		return errors.New("must not specify both a container spec and a plugin spec in the task template")
-	}
-	if s.TaskTemplate.PluginSpec != nil && s.TaskTemplate.Runtime != swarm.RuntimePlugin {
-		return errors.New("mismatched runtime with plugin spec")
-	}
-	if s.TaskTemplate.ContainerSpec != nil && (s.TaskTemplate.Runtime != "" && s.TaskTemplate.Runtime != swarm.RuntimeContainer) {
-		return errors.New("mismatched runtime with container spec")
-	}
-	return nil
-}
diff --git a/vendor/github.com/docker/docker/client/service_inspect.go b/vendor/github.com/docker/docker/client/service_inspect.go
deleted file mode 100644
index 67bcc9cfaf..0000000000
--- a/vendor/github.com/docker/docker/client/service_inspect.go
+++ /dev/null
@@ -1,34 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"io/ioutil"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ServiceInspectWithRaw returns the service information and the raw data.
-func (cli *Client) ServiceInspectWithRaw(ctx context.Context, serviceID string, opts types.ServiceInspectOptions) (swarm.Service, []byte, error) {
-	query := url.Values{}
-	query.Set("insertDefaults", fmt.Sprintf("%v", opts.InsertDefaults))
-	serverResp, err := cli.get(ctx, "/services/"+serviceID, query, nil)
-	if err != nil {
-		return swarm.Service{}, nil, wrapResponseError(err, serverResp, "service", serviceID)
-	}
-	defer ensureReaderClosed(serverResp)
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return swarm.Service{}, nil, err
-	}
-
-	var response swarm.Service
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&response)
-	return response, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/service_list.go b/vendor/github.com/docker/docker/client/service_list.go
deleted file mode 100644
index fdb33cc221..0000000000
--- a/vendor/github.com/docker/docker/client/service_list.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ServiceList returns the list of services.
-func (cli *Client) ServiceList(ctx context.Context, options types.ServiceListOptions) ([]swarm.Service, error) {
-	query := url.Values{}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/services", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var services []swarm.Service
-	err = json.NewDecoder(resp.body).Decode(&services)
-	ensureReaderClosed(resp)
-	return services, err
-}
diff --git a/vendor/github.com/docker/docker/client/service_logs.go b/vendor/github.com/docker/docker/client/service_logs.go
deleted file mode 100644
index 4b393bb494..0000000000
--- a/vendor/github.com/docker/docker/client/service_logs.go
+++ /dev/null
@@ -1,52 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-	"time"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-	timetypes "github.com/docker/docker/api/types/time"
-)
-
-// ServiceLogs returns the logs generated by a service in an io.ReadCloser.
-// It's up to the caller to close the stream.
-func (cli *Client) ServiceLogs(ctx context.Context, serviceID string, options types.ContainerLogsOptions) (io.ReadCloser, error) {
-	query := url.Values{}
-	if options.ShowStdout {
-		query.Set("stdout", "1")
-	}
-
-	if options.ShowStderr {
-		query.Set("stderr", "1")
-	}
-
-	if options.Since != "" {
-		ts, err := timetypes.GetTimestamp(options.Since, time.Now())
-		if err != nil {
-			return nil, err
-		}
-		query.Set("since", ts)
-	}
-
-	if options.Timestamps {
-		query.Set("timestamps", "1")
-	}
-
-	if options.Details {
-		query.Set("details", "1")
-	}
-
-	if options.Follow {
-		query.Set("follow", "1")
-	}
-	query.Set("tail", options.Tail)
-
-	resp, err := cli.get(ctx, "/services/"+serviceID+"/logs", query, nil)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/service_remove.go b/vendor/github.com/docker/docker/client/service_remove.go
deleted file mode 100644
index 7ef04e8204..0000000000
--- a/vendor/github.com/docker/docker/client/service_remove.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import "golang.org/x/net/context"
-
-// ServiceRemove kills and removes a service.
-func (cli *Client) ServiceRemove(ctx context.Context, serviceID string) error {
-	resp, err := cli.delete(ctx, "/services/"+serviceID, nil, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "service", serviceID)
-}
diff --git a/vendor/github.com/docker/docker/client/service_update.go b/vendor/github.com/docker/docker/client/service_update.go
deleted file mode 100644
index 57cb45d8d2..0000000000
--- a/vendor/github.com/docker/docker/client/service_update.go
+++ /dev/null
@@ -1,92 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// ServiceUpdate updates a Service.
-func (cli *Client) ServiceUpdate(ctx context.Context, serviceID string, version swarm.Version, service swarm.ServiceSpec, options types.ServiceUpdateOptions) (types.ServiceUpdateResponse, error) {
-	var (
-		query   = url.Values{}
-		distErr error
-	)
-
-	headers := map[string][]string{
-		"version": {cli.version},
-	}
-
-	if options.EncodedRegistryAuth != "" {
-		headers["X-Registry-Auth"] = []string{options.EncodedRegistryAuth}
-	}
-
-	if options.RegistryAuthFrom != "" {
-		query.Set("registryAuthFrom", options.RegistryAuthFrom)
-	}
-
-	if options.Rollback != "" {
-		query.Set("rollback", options.Rollback)
-	}
-
-	query.Set("version", strconv.FormatUint(version.Index, 10))
-
-	if err := validateServiceSpec(service); err != nil {
-		return types.ServiceUpdateResponse{}, err
-	}
-
-	var imgPlatforms []swarm.Platform
-	// ensure that the image is tagged
-	if service.TaskTemplate.ContainerSpec != nil {
-		if taggedImg := imageWithTagString(service.TaskTemplate.ContainerSpec.Image); taggedImg != "" {
-			service.TaskTemplate.ContainerSpec.Image = taggedImg
-		}
-		if options.QueryRegistry {
-			var img string
-			img, imgPlatforms, distErr = imageDigestAndPlatforms(ctx, cli, service.TaskTemplate.ContainerSpec.Image, options.EncodedRegistryAuth)
-			if img != "" {
-				service.TaskTemplate.ContainerSpec.Image = img
-			}
-		}
-	}
-
-	// ensure that the image is tagged
-	if service.TaskTemplate.PluginSpec != nil {
-		if taggedImg := imageWithTagString(service.TaskTemplate.PluginSpec.Remote); taggedImg != "" {
-			service.TaskTemplate.PluginSpec.Remote = taggedImg
-		}
-		if options.QueryRegistry {
-			var img string
-			img, imgPlatforms, distErr = imageDigestAndPlatforms(ctx, cli, service.TaskTemplate.PluginSpec.Remote, options.EncodedRegistryAuth)
-			if img != "" {
-				service.TaskTemplate.PluginSpec.Remote = img
-			}
-		}
-	}
-
-	if service.TaskTemplate.Placement == nil && len(imgPlatforms) > 0 {
-		service.TaskTemplate.Placement = &swarm.Placement{}
-	}
-	if len(imgPlatforms) > 0 {
-		service.TaskTemplate.Placement.Platforms = imgPlatforms
-	}
-
-	var response types.ServiceUpdateResponse
-	resp, err := cli.post(ctx, "/services/"+serviceID+"/update", query, service, headers)
-	if err != nil {
-		return response, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&response)
-
-	if distErr != nil {
-		response.Warnings = append(response.Warnings, digestWarning(service.TaskTemplate.ContainerSpec.Image))
-	}
-
-	ensureReaderClosed(resp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/session.go b/vendor/github.com/docker/docker/client/session.go
deleted file mode 100644
index b136538c22..0000000000
--- a/vendor/github.com/docker/docker/client/session.go
+++ /dev/null
@@ -1,19 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net"
-	"net/http"
-
-	"golang.org/x/net/context"
-)
-
-// DialSession returns a connection that can be used communication with daemon
-func (cli *Client) DialSession(ctx context.Context, proto string, meta map[string][]string) (net.Conn, error) {
-	req, err := http.NewRequest("POST", "/session", nil)
-	if err != nil {
-		return nil, err
-	}
-	req = cli.addHeaders(req, meta)
-
-	return cli.setupHijackConn(req, proto)
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_get_unlock_key.go b/vendor/github.com/docker/docker/client/swarm_get_unlock_key.go
deleted file mode 100644
index c02ae35c6d..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_get_unlock_key.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// SwarmGetUnlockKey retrieves the swarm's unlock key.
-func (cli *Client) SwarmGetUnlockKey(ctx context.Context) (types.SwarmUnlockKeyResponse, error) {
-	serverResp, err := cli.get(ctx, "/swarm/unlockkey", nil, nil)
-	if err != nil {
-		return types.SwarmUnlockKeyResponse{}, err
-	}
-
-	var response types.SwarmUnlockKeyResponse
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_init.go b/vendor/github.com/docker/docker/client/swarm_init.go
deleted file mode 100644
index 2997836317..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_init.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SwarmInit initializes the swarm.
-func (cli *Client) SwarmInit(ctx context.Context, req swarm.InitRequest) (string, error) {
-	serverResp, err := cli.post(ctx, "/swarm/init", nil, req, nil)
-	if err != nil {
-		return "", err
-	}
-
-	var response string
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_inspect.go b/vendor/github.com/docker/docker/client/swarm_inspect.go
deleted file mode 100644
index 02f42aa8a9..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_inspect.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SwarmInspect inspects the swarm.
-func (cli *Client) SwarmInspect(ctx context.Context) (swarm.Swarm, error) {
-	serverResp, err := cli.get(ctx, "/swarm", nil, nil)
-	if err != nil {
-		return swarm.Swarm{}, err
-	}
-
-	var response swarm.Swarm
-	err = json.NewDecoder(serverResp.body).Decode(&response)
-	ensureReaderClosed(serverResp)
-	return response, err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_join.go b/vendor/github.com/docker/docker/client/swarm_join.go
deleted file mode 100644
index 13f8d79d6c..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_join.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SwarmJoin joins the swarm.
-func (cli *Client) SwarmJoin(ctx context.Context, req swarm.JoinRequest) error {
-	resp, err := cli.post(ctx, "/swarm/join", nil, req, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_leave.go b/vendor/github.com/docker/docker/client/swarm_leave.go
deleted file mode 100644
index d0d00cbb4a..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_leave.go
+++ /dev/null
@@ -1,18 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"golang.org/x/net/context"
-)
-
-// SwarmLeave leaves the swarm.
-func (cli *Client) SwarmLeave(ctx context.Context, force bool) error {
-	query := url.Values{}
-	if force {
-		query.Set("force", "1")
-	}
-	resp, err := cli.post(ctx, "/swarm/leave", query, nil, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_unlock.go b/vendor/github.com/docker/docker/client/swarm_unlock.go
deleted file mode 100644
index 44a26bcc95..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_unlock.go
+++ /dev/null
@@ -1,13 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SwarmUnlock unlocks locked swarm.
-func (cli *Client) SwarmUnlock(ctx context.Context, req swarm.UnlockRequest) error {
-	serverResp, err := cli.post(ctx, "/swarm/unlock", nil, req, nil)
-	ensureReaderClosed(serverResp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/swarm_update.go b/vendor/github.com/docker/docker/client/swarm_update.go
deleted file mode 100644
index df6f1b0dc5..0000000000
--- a/vendor/github.com/docker/docker/client/swarm_update.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"fmt"
-	"net/url"
-	"strconv"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// SwarmUpdate updates the swarm.
-func (cli *Client) SwarmUpdate(ctx context.Context, version swarm.Version, swarm swarm.Spec, flags swarm.UpdateFlags) error {
-	query := url.Values{}
-	query.Set("version", strconv.FormatUint(version.Index, 10))
-	query.Set("rotateWorkerToken", fmt.Sprintf("%v", flags.RotateWorkerToken))
-	query.Set("rotateManagerToken", fmt.Sprintf("%v", flags.RotateManagerToken))
-	query.Set("rotateManagerUnlockKey", fmt.Sprintf("%v", flags.RotateManagerUnlockKey))
-	resp, err := cli.post(ctx, "/swarm/update", query, swarm, nil)
-	ensureReaderClosed(resp)
-	return err
-}
diff --git a/vendor/github.com/docker/docker/client/task_inspect.go b/vendor/github.com/docker/docker/client/task_inspect.go
deleted file mode 100644
index a7b31219a6..0000000000
--- a/vendor/github.com/docker/docker/client/task_inspect.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// TaskInspectWithRaw returns the task information and its raw representation..
-func (cli *Client) TaskInspectWithRaw(ctx context.Context, taskID string) (swarm.Task, []byte, error) {
-	serverResp, err := cli.get(ctx, "/tasks/"+taskID, nil, nil)
-	if err != nil {
-		return swarm.Task{}, nil, wrapResponseError(err, serverResp, "task", taskID)
-	}
-	defer ensureReaderClosed(serverResp)
-
-	body, err := ioutil.ReadAll(serverResp.body)
-	if err != nil {
-		return swarm.Task{}, nil, err
-	}
-
-	var response swarm.Task
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&response)
-	return response, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/task_list.go b/vendor/github.com/docker/docker/client/task_list.go
deleted file mode 100644
index e56718012c..0000000000
--- a/vendor/github.com/docker/docker/client/task_list.go
+++ /dev/null
@@ -1,35 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"github.com/docker/docker/api/types/swarm"
-	"golang.org/x/net/context"
-)
-
-// TaskList returns the list of tasks.
-func (cli *Client) TaskList(ctx context.Context, options types.TaskListOptions) ([]swarm.Task, error) {
-	query := url.Values{}
-
-	if options.Filters.Len() > 0 {
-		filterJSON, err := filters.ToJSON(options.Filters)
-		if err != nil {
-			return nil, err
-		}
-
-		query.Set("filters", filterJSON)
-	}
-
-	resp, err := cli.get(ctx, "/tasks", query, nil)
-	if err != nil {
-		return nil, err
-	}
-
-	var tasks []swarm.Task
-	err = json.NewDecoder(resp.body).Decode(&tasks)
-	ensureReaderClosed(resp)
-	return tasks, err
-}
diff --git a/vendor/github.com/docker/docker/client/task_logs.go b/vendor/github.com/docker/docker/client/task_logs.go
deleted file mode 100644
index cf0b3f6bba..0000000000
--- a/vendor/github.com/docker/docker/client/task_logs.go
+++ /dev/null
@@ -1,52 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"io"
-	"net/url"
-	"time"
-
-	"golang.org/x/net/context"
-
-	"github.com/docker/docker/api/types"
-	timetypes "github.com/docker/docker/api/types/time"
-)
-
-// TaskLogs returns the logs generated by a task in an io.ReadCloser.
-// It's up to the caller to close the stream.
-func (cli *Client) TaskLogs(ctx context.Context, taskID string, options types.ContainerLogsOptions) (io.ReadCloser, error) {
-	query := url.Values{}
-	if options.ShowStdout {
-		query.Set("stdout", "1")
-	}
-
-	if options.ShowStderr {
-		query.Set("stderr", "1")
-	}
-
-	if options.Since != "" {
-		ts, err := timetypes.GetTimestamp(options.Since, time.Now())
-		if err != nil {
-			return nil, err
-		}
-		query.Set("since", ts)
-	}
-
-	if options.Timestamps {
-		query.Set("timestamps", "1")
-	}
-
-	if options.Details {
-		query.Set("details", "1")
-	}
-
-	if options.Follow {
-		query.Set("follow", "1")
-	}
-	query.Set("tail", options.Tail)
-
-	resp, err := cli.get(ctx, "/tasks/"+taskID+"/logs", query, nil)
-	if err != nil {
-		return nil, err
-	}
-	return resp.body, nil
-}
diff --git a/vendor/github.com/docker/docker/client/tlsconfig_clone.go b/vendor/github.com/docker/docker/client/tlsconfig_clone.go
deleted file mode 100644
index 88200e92c3..0000000000
--- a/vendor/github.com/docker/docker/client/tlsconfig_clone.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build go1.8
-
-package client // import "github.com/docker/docker/client"
-
-import "crypto/tls"
-
-// tlsConfigClone returns a clone of tls.Config. This function is provided for
-// compatibility for go1.7 that doesn't include this method in stdlib.
-func tlsConfigClone(c *tls.Config) *tls.Config {
-	return c.Clone()
-}
diff --git a/vendor/github.com/docker/docker/client/tlsconfig_clone_go17.go b/vendor/github.com/docker/docker/client/tlsconfig_clone_go17.go
deleted file mode 100644
index e298542367..0000000000
--- a/vendor/github.com/docker/docker/client/tlsconfig_clone_go17.go
+++ /dev/null
@@ -1,33 +0,0 @@
-// +build go1.7,!go1.8
-
-package client // import "github.com/docker/docker/client"
-
-import "crypto/tls"
-
-// tlsConfigClone returns a clone of tls.Config. This function is provided for
-// compatibility for go1.7 that doesn't include this method in stdlib.
-func tlsConfigClone(c *tls.Config) *tls.Config {
-	return &tls.Config{
-		Rand:                        c.Rand,
-		Time:                        c.Time,
-		Certificates:                c.Certificates,
-		NameToCertificate:           c.NameToCertificate,
-		GetCertificate:              c.GetCertificate,
-		RootCAs:                     c.RootCAs,
-		NextProtos:                  c.NextProtos,
-		ServerName:                  c.ServerName,
-		ClientAuth:                  c.ClientAuth,
-		ClientCAs:                   c.ClientCAs,
-		InsecureSkipVerify:          c.InsecureSkipVerify,
-		CipherSuites:                c.CipherSuites,
-		PreferServerCipherSuites:    c.PreferServerCipherSuites,
-		SessionTicketsDisabled:      c.SessionTicketsDisabled,
-		SessionTicketKey:            c.SessionTicketKey,
-		ClientSessionCache:          c.ClientSessionCache,
-		MinVersion:                  c.MinVersion,
-		MaxVersion:                  c.MaxVersion,
-		CurvePreferences:            c.CurvePreferences,
-		DynamicRecordSizingDisabled: c.DynamicRecordSizingDisabled,
-		Renegotiation:               c.Renegotiation,
-	}
-}
diff --git a/vendor/github.com/docker/docker/client/transport.go b/vendor/github.com/docker/docker/client/transport.go
deleted file mode 100644
index 5541344366..0000000000
--- a/vendor/github.com/docker/docker/client/transport.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"crypto/tls"
-	"net/http"
-)
-
-// resolveTLSConfig attempts to resolve the TLS configuration from the
-// RoundTripper.
-func resolveTLSConfig(transport http.RoundTripper) *tls.Config {
-	switch tr := transport.(type) {
-	case *http.Transport:
-		return tr.TLSClientConfig
-	default:
-		return nil
-	}
-}
diff --git a/vendor/github.com/docker/docker/client/utils.go b/vendor/github.com/docker/docker/client/utils.go
deleted file mode 100644
index 7f3ff44eb8..0000000000
--- a/vendor/github.com/docker/docker/client/utils.go
+++ /dev/null
@@ -1,34 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-	"regexp"
-
-	"github.com/docker/docker/api/types/filters"
-)
-
-var headerRegexp = regexp.MustCompile(`\ADocker/.+\s\((.+)\)\z`)
-
-// getDockerOS returns the operating system based on the server header from the daemon.
-func getDockerOS(serverHeader string) string {
-	var osType string
-	matches := headerRegexp.FindStringSubmatch(serverHeader)
-	if len(matches) > 0 {
-		osType = matches[1]
-	}
-	return osType
-}
-
-// getFiltersQuery returns a url query with "filters" query term, based on the
-// filters provided.
-func getFiltersQuery(f filters.Args) (url.Values, error) {
-	query := url.Values{}
-	if f.Len() > 0 {
-		filterJSON, err := filters.ToJSON(f)
-		if err != nil {
-			return query, err
-		}
-		query.Set("filters", filterJSON)
-	}
-	return query, nil
-}
diff --git a/vendor/github.com/docker/docker/client/version.go b/vendor/github.com/docker/docker/client/version.go
deleted file mode 100644
index 4bb60fab58..0000000000
--- a/vendor/github.com/docker/docker/client/version.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// ServerVersion returns information of the docker client and server host.
-func (cli *Client) ServerVersion(ctx context.Context) (types.Version, error) {
-	resp, err := cli.get(ctx, "/version", nil, nil)
-	if err != nil {
-		return types.Version{}, err
-	}
-
-	var server types.Version
-	err = json.NewDecoder(resp.body).Decode(&server)
-	ensureReaderClosed(resp)
-	return server, err
-}
diff --git a/vendor/github.com/docker/docker/client/volume_create.go b/vendor/github.com/docker/docker/client/volume_create.go
deleted file mode 100644
index 8108b7b92f..0000000000
--- a/vendor/github.com/docker/docker/client/volume_create.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-
-	"github.com/docker/docker/api/types"
-	volumetypes "github.com/docker/docker/api/types/volume"
-	"golang.org/x/net/context"
-)
-
-// VolumeCreate creates a volume in the docker host.
-func (cli *Client) VolumeCreate(ctx context.Context, options volumetypes.VolumesCreateBody) (types.Volume, error) {
-	var volume types.Volume
-	resp, err := cli.post(ctx, "/volumes/create", nil, options, nil)
-	if err != nil {
-		return volume, err
-	}
-	err = json.NewDecoder(resp.body).Decode(&volume)
-	ensureReaderClosed(resp)
-	return volume, err
-}
diff --git a/vendor/github.com/docker/docker/client/volume_inspect.go b/vendor/github.com/docker/docker/client/volume_inspect.go
deleted file mode 100644
index b72e64d793..0000000000
--- a/vendor/github.com/docker/docker/client/volume_inspect.go
+++ /dev/null
@@ -1,42 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"bytes"
-	"encoding/json"
-	"io/ioutil"
-	"path"
-
-	"github.com/docker/docker/api/types"
-	"golang.org/x/net/context"
-)
-
-// VolumeInspect returns the information about a specific volume in the docker host.
-func (cli *Client) VolumeInspect(ctx context.Context, volumeID string) (types.Volume, error) {
-	volume, _, err := cli.VolumeInspectWithRaw(ctx, volumeID)
-	return volume, err
-}
-
-// VolumeInspectWithRaw returns the information about a specific volume in the docker host and its raw representation
-func (cli *Client) VolumeInspectWithRaw(ctx context.Context, volumeID string) (types.Volume, []byte, error) {
-	// The empty ID needs to be handled here because with an empty ID the
-	// request url will not contain a trailing / which calls the volume list API
-	// instead of volume inspect
-	if volumeID == "" {
-		return types.Volume{}, nil, objectNotFoundError{object: "volume", id: volumeID}
-	}
-
-	var volume types.Volume
-	resp, err := cli.get(ctx, path.Join("/volumes", volumeID), nil, nil)
-	if err != nil {
-		return volume, nil, wrapResponseError(err, resp, "volume", volumeID)
-	}
-	defer ensureReaderClosed(resp)
-
-	body, err := ioutil.ReadAll(resp.body)
-	if err != nil {
-		return volume, nil, err
-	}
-	rdr := bytes.NewReader(body)
-	err = json.NewDecoder(rdr).Decode(&volume)
-	return volume, body, err
-}
diff --git a/vendor/github.com/docker/docker/client/volume_list.go b/vendor/github.com/docker/docker/client/volume_list.go
deleted file mode 100644
index aeca1cc1a3..0000000000
--- a/vendor/github.com/docker/docker/client/volume_list.go
+++ /dev/null
@@ -1,32 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"net/url"
-
-	"github.com/docker/docker/api/types/filters"
-	volumetypes "github.com/docker/docker/api/types/volume"
-	"golang.org/x/net/context"
-)
-
-// VolumeList returns the volumes configured in the docker host.
-func (cli *Client) VolumeList(ctx context.Context, filter filters.Args) (volumetypes.VolumesListOKBody, error) {
-	var volumes volumetypes.VolumesListOKBody
-	query := url.Values{}
-
-	if filter.Len() > 0 {
-		filterJSON, err := filters.ToParamWithVersion(cli.version, filter)
-		if err != nil {
-			return volumes, err
-		}
-		query.Set("filters", filterJSON)
-	}
-	resp, err := cli.get(ctx, "/volumes", query, nil)
-	if err != nil {
-		return volumes, err
-	}
-
-	err = json.NewDecoder(resp.body).Decode(&volumes)
-	ensureReaderClosed(resp)
-	return volumes, err
-}
diff --git a/vendor/github.com/docker/docker/client/volume_prune.go b/vendor/github.com/docker/docker/client/volume_prune.go
deleted file mode 100644
index 090a6a66df..0000000000
--- a/vendor/github.com/docker/docker/client/volume_prune.go
+++ /dev/null
@@ -1,36 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"encoding/json"
-	"fmt"
-
-	"github.com/docker/docker/api/types"
-	"github.com/docker/docker/api/types/filters"
-	"golang.org/x/net/context"
-)
-
-// VolumesPrune requests the daemon to delete unused data
-func (cli *Client) VolumesPrune(ctx context.Context, pruneFilters filters.Args) (types.VolumesPruneReport, error) {
-	var report types.VolumesPruneReport
-
-	if err := cli.NewVersionError("1.25", "volume prune"); err != nil {
-		return report, err
-	}
-
-	query, err := getFiltersQuery(pruneFilters)
-	if err != nil {
-		return report, err
-	}
-
-	serverResp, err := cli.post(ctx, "/volumes/prune", query, nil, nil)
-	if err != nil {
-		return report, err
-	}
-	defer ensureReaderClosed(serverResp)
-
-	if err := json.NewDecoder(serverResp.body).Decode(&report); err != nil {
-		return report, fmt.Errorf("Error retrieving volume prune report: %v", err)
-	}
-
-	return report, nil
-}
diff --git a/vendor/github.com/docker/docker/client/volume_remove.go b/vendor/github.com/docker/docker/client/volume_remove.go
deleted file mode 100644
index 02ee573a73..0000000000
--- a/vendor/github.com/docker/docker/client/volume_remove.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package client // import "github.com/docker/docker/client"
-
-import (
-	"net/url"
-
-	"github.com/docker/docker/api/types/versions"
-	"golang.org/x/net/context"
-)
-
-// VolumeRemove removes a volume from the docker host.
-func (cli *Client) VolumeRemove(ctx context.Context, volumeID string, force bool) error {
-	query := url.Values{}
-	if versions.GreaterThanOrEqualTo(cli.version, "1.25") {
-		if force {
-			query.Set("force", "1")
-		}
-	}
-	resp, err := cli.delete(ctx, "/volumes/"+volumeID, query, nil)
-	ensureReaderClosed(resp)
-	return wrapResponseError(err, resp, "volume", volumeID)
-}
diff --git a/vendor/github.com/docker/docker/pkg/homedir/homedir_linux.go b/vendor/github.com/docker/docker/pkg/homedir/homedir_linux.go
deleted file mode 100644
index ee15ed52b1..0000000000
--- a/vendor/github.com/docker/docker/pkg/homedir/homedir_linux.go
+++ /dev/null
@@ -1,21 +0,0 @@
-package homedir // import "github.com/docker/docker/pkg/homedir"
-
-import (
-	"os"
-
-	"github.com/docker/docker/pkg/idtools"
-)
-
-// GetStatic returns the home directory for the current user without calling
-// os/user.Current(). This is useful for static-linked binary on glibc-based
-// system, because a call to os/user.Current() in a static binary leads to
-// segfault due to a glibc issue that won't be fixed in a short term.
-// (#29344, golang/go#13470, https://sourceware.org/bugzilla/show_bug.cgi?id=19341)
-func GetStatic() (string, error) {
-	uid := os.Getuid()
-	usr, err := idtools.LookupUID(uid)
-	if err != nil {
-		return "", err
-	}
-	return usr.Home, nil
-}
diff --git a/vendor/github.com/docker/docker/pkg/homedir/homedir_others.go b/vendor/github.com/docker/docker/pkg/homedir/homedir_others.go
deleted file mode 100644
index 75ada2fe54..0000000000
--- a/vendor/github.com/docker/docker/pkg/homedir/homedir_others.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// +build !linux
-
-package homedir // import "github.com/docker/docker/pkg/homedir"
-
-import (
-	"errors"
-)
-
-// GetStatic is not needed for non-linux systems.
-// (Precisely, it is needed only for glibc-based linux systems.)
-func GetStatic() (string, error) {
-	return "", errors.New("homedir.GetStatic() is not supported on this system")
-}
diff --git a/vendor/github.com/docker/docker/pkg/homedir/homedir_unix.go b/vendor/github.com/docker/docker/pkg/homedir/homedir_unix.go
deleted file mode 100644
index d85e124488..0000000000
--- a/vendor/github.com/docker/docker/pkg/homedir/homedir_unix.go
+++ /dev/null
@@ -1,34 +0,0 @@
-// +build !windows
-
-package homedir // import "github.com/docker/docker/pkg/homedir"
-
-import (
-	"os"
-
-	"github.com/opencontainers/runc/libcontainer/user"
-)
-
-// Key returns the env var name for the user's home dir based on
-// the platform being run on
-func Key() string {
-	return "HOME"
-}
-
-// Get returns the home directory of the current user with the help of
-// environment variables depending on the target operating system.
-// Returned path should be used with "path/filepath" to form new paths.
-func Get() string {
-	home := os.Getenv(Key())
-	if home == "" {
-		if u, err := user.CurrentUser(); err == nil {
-			return u.Home
-		}
-	}
-	return home
-}
-
-// GetShortcutString returns the string that is shortcut to user's home directory
-// in the native shell of the platform running on.
-func GetShortcutString() string {
-	return "~"
-}
diff --git a/vendor/github.com/docker/docker/pkg/homedir/homedir_windows.go b/vendor/github.com/docker/docker/pkg/homedir/homedir_windows.go
deleted file mode 100644
index 2f81813b28..0000000000
--- a/vendor/github.com/docker/docker/pkg/homedir/homedir_windows.go
+++ /dev/null
@@ -1,24 +0,0 @@
-package homedir // import "github.com/docker/docker/pkg/homedir"
-
-import (
-	"os"
-)
-
-// Key returns the env var name for the user's home dir based on
-// the platform being run on
-func Key() string {
-	return "USERPROFILE"
-}
-
-// Get returns the home directory of the current user with the help of
-// environment variables depending on the target operating system.
-// Returned path should be used with "path/filepath" to form new paths.
-func Get() string {
-	return os.Getenv(Key())
-}
-
-// GetShortcutString returns the string that is shortcut to user's home directory
-// in the native shell of the platform running on.
-func GetShortcutString() string {
-	return "%USERPROFILE%" // be careful while using in format functions
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/inmem_socket.go b/vendor/github.com/docker/go-connections/sockets/inmem_socket.go
deleted file mode 100644
index 99846ffddb..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/inmem_socket.go
+++ /dev/null
@@ -1,81 +0,0 @@
-package sockets
-
-import (
-	"errors"
-	"net"
-	"sync"
-)
-
-var errClosed = errors.New("use of closed network connection")
-
-// InmemSocket implements net.Listener using in-memory only connections.
-type InmemSocket struct {
-	chConn  chan net.Conn
-	chClose chan struct{}
-	addr    string
-	mu      sync.Mutex
-}
-
-// dummyAddr is used to satisfy net.Addr for the in-mem socket
-// it is just stored as a string and returns the string for all calls
-type dummyAddr string
-
-// NewInmemSocket creates an in-memory only net.Listener
-// The addr argument can be any string, but is used to satisfy the `Addr()` part
-// of the net.Listener interface
-func NewInmemSocket(addr string, bufSize int) *InmemSocket {
-	return &InmemSocket{
-		chConn:  make(chan net.Conn, bufSize),
-		chClose: make(chan struct{}),
-		addr:    addr,
-	}
-}
-
-// Addr returns the socket's addr string to satisfy net.Listener
-func (s *InmemSocket) Addr() net.Addr {
-	return dummyAddr(s.addr)
-}
-
-// Accept implements the Accept method in the Listener interface; it waits for the next call and returns a generic Conn.
-func (s *InmemSocket) Accept() (net.Conn, error) {
-	select {
-	case conn := <-s.chConn:
-		return conn, nil
-	case <-s.chClose:
-		return nil, errClosed
-	}
-}
-
-// Close closes the listener. It will be unavailable for use once closed.
-func (s *InmemSocket) Close() error {
-	s.mu.Lock()
-	defer s.mu.Unlock()
-	select {
-	case <-s.chClose:
-	default:
-		close(s.chClose)
-	}
-	return nil
-}
-
-// Dial is used to establish a connection with the in-mem server
-func (s *InmemSocket) Dial(network, addr string) (net.Conn, error) {
-	srvConn, clientConn := net.Pipe()
-	select {
-	case s.chConn <- srvConn:
-	case <-s.chClose:
-		return nil, errClosed
-	}
-
-	return clientConn, nil
-}
-
-// Network returns the addr string, satisfies net.Addr
-func (a dummyAddr) Network() string {
-	return string(a)
-}
-
-// String returns the string form
-func (a dummyAddr) String() string {
-	return string(a)
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/proxy.go b/vendor/github.com/docker/go-connections/sockets/proxy.go
deleted file mode 100644
index 98e9a1dc61..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/proxy.go
+++ /dev/null
@@ -1,51 +0,0 @@
-package sockets
-
-import (
-	"net"
-	"net/url"
-	"os"
-	"strings"
-
-	"golang.org/x/net/proxy"
-)
-
-// GetProxyEnv allows access to the uppercase and the lowercase forms of
-// proxy-related variables.  See the Go specification for details on these
-// variables. https://golang.org/pkg/net/http/
-func GetProxyEnv(key string) string {
-	proxyValue := os.Getenv(strings.ToUpper(key))
-	if proxyValue == "" {
-		return os.Getenv(strings.ToLower(key))
-	}
-	return proxyValue
-}
-
-// DialerFromEnvironment takes in a "direct" *net.Dialer and returns a
-// proxy.Dialer which will route the connections through the proxy using the
-// given dialer.
-func DialerFromEnvironment(direct *net.Dialer) (proxy.Dialer, error) {
-	allProxy := GetProxyEnv("all_proxy")
-	if len(allProxy) == 0 {
-		return direct, nil
-	}
-
-	proxyURL, err := url.Parse(allProxy)
-	if err != nil {
-		return direct, err
-	}
-
-	proxyFromURL, err := proxy.FromURL(proxyURL, direct)
-	if err != nil {
-		return direct, err
-	}
-
-	noProxy := GetProxyEnv("no_proxy")
-	if len(noProxy) == 0 {
-		return proxyFromURL, nil
-	}
-
-	perHost := proxy.NewPerHost(proxyFromURL, direct)
-	perHost.AddFromString(noProxy)
-
-	return perHost, nil
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets.go b/vendor/github.com/docker/go-connections/sockets/sockets.go
deleted file mode 100644
index a1d7beb4d8..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/sockets.go
+++ /dev/null
@@ -1,38 +0,0 @@
-// Package sockets provides helper functions to create and configure Unix or TCP sockets.
-package sockets
-
-import (
-	"errors"
-	"net"
-	"net/http"
-	"time"
-)
-
-// Why 32? See https://github.com/docker/docker/pull/8035.
-const defaultTimeout = 32 * time.Second
-
-// ErrProtocolNotAvailable is returned when a given transport protocol is not provided by the operating system.
-var ErrProtocolNotAvailable = errors.New("protocol not available")
-
-// ConfigureTransport configures the specified Transport according to the
-// specified proto and addr.
-// If the proto is unix (using a unix socket to communicate) or npipe the
-// compression is disabled.
-func ConfigureTransport(tr *http.Transport, proto, addr string) error {
-	switch proto {
-	case "unix":
-		return configureUnixTransport(tr, proto, addr)
-	case "npipe":
-		return configureNpipeTransport(tr, proto, addr)
-	default:
-		tr.Proxy = http.ProxyFromEnvironment
-		dialer, err := DialerFromEnvironment(&net.Dialer{
-			Timeout: defaultTimeout,
-		})
-		if err != nil {
-			return err
-		}
-		tr.Dial = dialer.Dial
-	}
-	return nil
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets_unix.go b/vendor/github.com/docker/go-connections/sockets/sockets_unix.go
deleted file mode 100644
index 386cf0dbbd..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/sockets_unix.go
+++ /dev/null
@@ -1,35 +0,0 @@
-// +build !windows
-
-package sockets
-
-import (
-	"fmt"
-	"net"
-	"net/http"
-	"syscall"
-	"time"
-)
-
-const maxUnixSocketPathSize = len(syscall.RawSockaddrUnix{}.Path)
-
-func configureUnixTransport(tr *http.Transport, proto, addr string) error {
-	if len(addr) > maxUnixSocketPathSize {
-		return fmt.Errorf("Unix socket path %q is too long", addr)
-	}
-	// No need for compression in local communications.
-	tr.DisableCompression = true
-	tr.Dial = func(_, _ string) (net.Conn, error) {
-		return net.DialTimeout(proto, addr, defaultTimeout)
-	}
-	return nil
-}
-
-func configureNpipeTransport(tr *http.Transport, proto, addr string) error {
-	return ErrProtocolNotAvailable
-}
-
-// DialPipe connects to a Windows named pipe.
-// This is not supported on other OSes.
-func DialPipe(_ string, _ time.Duration) (net.Conn, error) {
-	return nil, syscall.EAFNOSUPPORT
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets_windows.go b/vendor/github.com/docker/go-connections/sockets/sockets_windows.go
deleted file mode 100644
index 5c21644e1f..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/sockets_windows.go
+++ /dev/null
@@ -1,27 +0,0 @@
-package sockets
-
-import (
-	"net"
-	"net/http"
-	"time"
-
-	"github.com/Microsoft/go-winio"
-)
-
-func configureUnixTransport(tr *http.Transport, proto, addr string) error {
-	return ErrProtocolNotAvailable
-}
-
-func configureNpipeTransport(tr *http.Transport, proto, addr string) error {
-	// No need for compression in local communications.
-	tr.DisableCompression = true
-	tr.Dial = func(_, _ string) (net.Conn, error) {
-		return DialPipe(addr, defaultTimeout)
-	}
-	return nil
-}
-
-// DialPipe connects to a Windows named pipe.
-func DialPipe(addr string, timeout time.Duration) (net.Conn, error) {
-	return winio.DialPipe(addr, &timeout)
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/tcp_socket.go b/vendor/github.com/docker/go-connections/sockets/tcp_socket.go
deleted file mode 100644
index 53cbb6c79e..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/tcp_socket.go
+++ /dev/null
@@ -1,22 +0,0 @@
-// Package sockets provides helper functions to create and configure Unix or TCP sockets.
-package sockets
-
-import (
-	"crypto/tls"
-	"net"
-)
-
-// NewTCPSocket creates a TCP socket listener with the specified address and
-// the specified tls configuration. If TLSConfig is set, will encapsulate the
-// TCP listener inside a TLS one.
-func NewTCPSocket(addr string, tlsConfig *tls.Config) (net.Listener, error) {
-	l, err := net.Listen("tcp", addr)
-	if err != nil {
-		return nil, err
-	}
-	if tlsConfig != nil {
-		tlsConfig.NextProtos = []string{"http/1.1"}
-		l = tls.NewListener(l, tlsConfig)
-	}
-	return l, nil
-}
diff --git a/vendor/github.com/docker/go-connections/sockets/unix_socket.go b/vendor/github.com/docker/go-connections/sockets/unix_socket.go
deleted file mode 100644
index a8b5dbb6fd..0000000000
--- a/vendor/github.com/docker/go-connections/sockets/unix_socket.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// +build !windows
-
-package sockets
-
-import (
-	"net"
-	"os"
-	"syscall"
-)
-
-// NewUnixSocket creates a unix socket with the specified path and group.
-func NewUnixSocket(path string, gid int) (net.Listener, error) {
-	if err := syscall.Unlink(path); err != nil && !os.IsNotExist(err) {
-		return nil, err
-	}
-	mask := syscall.Umask(0777)
-	defer syscall.Umask(mask)
-
-	l, err := net.Listen("unix", path)
-	if err != nil {
-		return nil, err
-	}
-	if err := os.Chown(path, 0, gid); err != nil {
-		l.Close()
-		return nil, err
-	}
-	if err := os.Chmod(path, 0660); err != nil {
-		l.Close()
-		return nil, err
-	}
-	return l, nil
-}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go b/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
deleted file mode 100644
index 1ca0965e06..0000000000
--- a/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// +build go1.7
-
-package tlsconfig
-
-import (
-	"crypto/x509"
-	"runtime"
-)
-
-// SystemCertPool returns a copy of the system cert pool,
-// returns an error if failed to load or empty pool on windows.
-func SystemCertPool() (*x509.CertPool, error) {
-	certpool, err := x509.SystemCertPool()
-	if err != nil && runtime.GOOS == "windows" {
-		return x509.NewCertPool(), nil
-	}
-	return certpool, err
-}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go b/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
deleted file mode 100644
index 9ca974539a..0000000000
--- a/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
+++ /dev/null
@@ -1,14 +0,0 @@
-// +build !go1.7
-
-package tlsconfig
-
-import (
-	"crypto/x509"
-
-)
-
-// SystemCertPool returns an new empty cert pool,
-// accessing system cert pool is supported in go 1.7
-func SystemCertPool() (*x509.CertPool, error) {
-	return x509.NewCertPool(), nil
-}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config.go b/vendor/github.com/docker/go-connections/tlsconfig/config.go
deleted file mode 100644
index 1b31bbb8b1..0000000000
--- a/vendor/github.com/docker/go-connections/tlsconfig/config.go
+++ /dev/null
@@ -1,244 +0,0 @@
-// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
-//
-// As a reminder from https://golang.org/pkg/crypto/tls/#Config:
-//	A Config structure is used to configure a TLS client or server. After one has been passed to a TLS function it must not be modified.
-//	A Config may be reused; the tls package will also not modify it.
-package tlsconfig
-
-import (
-	"crypto/tls"
-	"crypto/x509"
-	"encoding/pem"
-	"fmt"
-	"io/ioutil"
-	"os"
-
-	"github.com/pkg/errors"
-)
-
-// Options represents the information needed to create client and server TLS configurations.
-type Options struct {
-	CAFile string
-
-	// If either CertFile or KeyFile is empty, Client() will not load them
-	// preventing the client from authenticating to the server.
-	// However, Server() requires them and will error out if they are empty.
-	CertFile string
-	KeyFile  string
-
-	// client-only option
-	InsecureSkipVerify bool
-	// server-only option
-	ClientAuth tls.ClientAuthType
-	// If ExclusiveRootPools is set, then if a CA file is provided, the root pool used for TLS
-	// creds will include exclusively the roots in that CA file.  If no CA file is provided,
-	// the system pool will be used.
-	ExclusiveRootPools bool
-	MinVersion         uint16
-	// If Passphrase is set, it will be used to decrypt a TLS private key
-	// if the key is encrypted
-	Passphrase string
-}
-
-// Extra (server-side) accepted CBC cipher suites - will phase out in the future
-var acceptedCBCCiphers = []uint16{
-	tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
-	tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
-	tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
-	tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
-	tls.TLS_RSA_WITH_AES_256_CBC_SHA,
-	tls.TLS_RSA_WITH_AES_128_CBC_SHA,
-}
-
-// DefaultServerAcceptedCiphers should be uses by code which already has a crypto/tls
-// options struct but wants to use a commonly accepted set of TLS cipher suites, with
-// known weak algorithms removed.
-var DefaultServerAcceptedCiphers = append(clientCipherSuites, acceptedCBCCiphers...)
-
-// allTLSVersions lists all the TLS versions and is used by the code that validates
-// a uint16 value as a TLS version.
-var allTLSVersions = map[uint16]struct{}{
-	tls.VersionSSL30: {},
-	tls.VersionTLS10: {},
-	tls.VersionTLS11: {},
-	tls.VersionTLS12: {},
-}
-
-// ServerDefault returns a secure-enough TLS configuration for the server TLS configuration.
-func ServerDefault() *tls.Config {
-	return &tls.Config{
-		// Avoid fallback to SSL protocols < TLS1.0
-		MinVersion:               tls.VersionTLS10,
-		PreferServerCipherSuites: true,
-		CipherSuites:             DefaultServerAcceptedCiphers,
-	}
-}
-
-// ClientDefault returns a secure-enough TLS configuration for the client TLS configuration.
-func ClientDefault() *tls.Config {
-	return &tls.Config{
-		// Prefer TLS1.2 as the client minimum
-		MinVersion:   tls.VersionTLS12,
-		CipherSuites: clientCipherSuites,
-	}
-}
-
-// certPool returns an X.509 certificate pool from `caFile`, the certificate file.
-func certPool(caFile string, exclusivePool bool) (*x509.CertPool, error) {
-	// If we should verify the server, we need to load a trusted ca
-	var (
-		certPool *x509.CertPool
-		err      error
-	)
-	if exclusivePool {
-		certPool = x509.NewCertPool()
-	} else {
-		certPool, err = SystemCertPool()
-		if err != nil {
-			return nil, fmt.Errorf("failed to read system certificates: %v", err)
-		}
-	}
-	pem, err := ioutil.ReadFile(caFile)
-	if err != nil {
-		return nil, fmt.Errorf("could not read CA certificate %q: %v", caFile, err)
-	}
-	if !certPool.AppendCertsFromPEM(pem) {
-		return nil, fmt.Errorf("failed to append certificates from PEM file: %q", caFile)
-	}
-	return certPool, nil
-}
-
-// isValidMinVersion checks that the input value is a valid tls minimum version
-func isValidMinVersion(version uint16) bool {
-	_, ok := allTLSVersions[version]
-	return ok
-}
-
-// adjustMinVersion sets the MinVersion on `config`, the input configuration.
-// It assumes the current MinVersion on the `config` is the lowest allowed.
-func adjustMinVersion(options Options, config *tls.Config) error {
-	if options.MinVersion > 0 {
-		if !isValidMinVersion(options.MinVersion) {
-			return fmt.Errorf("Invalid minimum TLS version: %x", options.MinVersion)
-		}
-		if options.MinVersion < config.MinVersion {
-			return fmt.Errorf("Requested minimum TLS version is too low. Should be at-least: %x", config.MinVersion)
-		}
-		config.MinVersion = options.MinVersion
-	}
-
-	return nil
-}
-
-// IsErrEncryptedKey returns true if the 'err' is an error of incorrect
-// password when tryin to decrypt a TLS private key
-func IsErrEncryptedKey(err error) bool {
-	return errors.Cause(err) == x509.IncorrectPasswordError
-}
-
-// getPrivateKey returns the private key in 'keyBytes', in PEM-encoded format.
-// If the private key is encrypted, 'passphrase' is used to decrypted the
-// private key.
-func getPrivateKey(keyBytes []byte, passphrase string) ([]byte, error) {
-	// this section makes some small changes to code from notary/tuf/utils/x509.go
-	pemBlock, _ := pem.Decode(keyBytes)
-	if pemBlock == nil {
-		return nil, fmt.Errorf("no valid private key found")
-	}
-
-	var err error
-	if x509.IsEncryptedPEMBlock(pemBlock) {
-		keyBytes, err = x509.DecryptPEMBlock(pemBlock, []byte(passphrase))
-		if err != nil {
-			return nil, errors.Wrap(err, "private key is encrypted, but could not decrypt it")
-		}
-		keyBytes = pem.EncodeToMemory(&pem.Block{Type: pemBlock.Type, Bytes: keyBytes})
-	}
-
-	return keyBytes, nil
-}
-
-// getCert returns a Certificate from the CertFile and KeyFile in 'options',
-// if the key is encrypted, the Passphrase in 'options' will be used to
-// decrypt it.
-func getCert(options Options) ([]tls.Certificate, error) {
-	if options.CertFile == "" && options.KeyFile == "" {
-		return nil, nil
-	}
-
-	errMessage := "Could not load X509 key pair"
-
-	cert, err := ioutil.ReadFile(options.CertFile)
-	if err != nil {
-		return nil, errors.Wrap(err, errMessage)
-	}
-
-	prKeyBytes, err := ioutil.ReadFile(options.KeyFile)
-	if err != nil {
-		return nil, errors.Wrap(err, errMessage)
-	}
-
-	prKeyBytes, err = getPrivateKey(prKeyBytes, options.Passphrase)
-	if err != nil {
-		return nil, errors.Wrap(err, errMessage)
-	}
-
-	tlsCert, err := tls.X509KeyPair(cert, prKeyBytes)
-	if err != nil {
-		return nil, errors.Wrap(err, errMessage)
-	}
-
-	return []tls.Certificate{tlsCert}, nil
-}
-
-// Client returns a TLS configuration meant to be used by a client.
-func Client(options Options) (*tls.Config, error) {
-	tlsConfig := ClientDefault()
-	tlsConfig.InsecureSkipVerify = options.InsecureSkipVerify
-	if !options.InsecureSkipVerify && options.CAFile != "" {
-		CAs, err := certPool(options.CAFile, options.ExclusiveRootPools)
-		if err != nil {
-			return nil, err
-		}
-		tlsConfig.RootCAs = CAs
-	}
-
-	tlsCerts, err := getCert(options)
-	if err != nil {
-		return nil, err
-	}
-	tlsConfig.Certificates = tlsCerts
-
-	if err := adjustMinVersion(options, tlsConfig); err != nil {
-		return nil, err
-	}
-
-	return tlsConfig, nil
-}
-
-// Server returns a TLS configuration meant to be used by a server.
-func Server(options Options) (*tls.Config, error) {
-	tlsConfig := ServerDefault()
-	tlsConfig.ClientAuth = options.ClientAuth
-	tlsCert, err := tls.LoadX509KeyPair(options.CertFile, options.KeyFile)
-	if err != nil {
-		if os.IsNotExist(err) {
-			return nil, fmt.Errorf("Could not load X509 key pair (cert: %q, key: %q): %v", options.CertFile, options.KeyFile, err)
-		}
-		return nil, fmt.Errorf("Error reading X509 key pair (cert: %q, key: %q): %v. Make sure the key is not encrypted.", options.CertFile, options.KeyFile, err)
-	}
-	tlsConfig.Certificates = []tls.Certificate{tlsCert}
-	if options.ClientAuth >= tls.VerifyClientCertIfGiven && options.CAFile != "" {
-		CAs, err := certPool(options.CAFile, options.ExclusiveRootPools)
-		if err != nil {
-			return nil, err
-		}
-		tlsConfig.ClientCAs = CAs
-	}
-
-	if err := adjustMinVersion(options, tlsConfig); err != nil {
-		return nil, err
-	}
-
-	return tlsConfig, nil
-}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go b/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
deleted file mode 100644
index 6b4c6a7c0d..0000000000
--- a/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
+++ /dev/null
@@ -1,17 +0,0 @@
-// +build go1.5
-
-// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
-//
-package tlsconfig
-
-import (
-	"crypto/tls"
-)
-
-// Client TLS cipher suites (dropping CBC ciphers for client preferred suite set)
-var clientCipherSuites = []uint16{
-	tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
-	tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
-	tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
-	tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
-}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go b/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
deleted file mode 100644
index ee22df47cb..0000000000
--- a/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
+++ /dev/null
@@ -1,15 +0,0 @@
-// +build !go1.5
-
-// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
-//
-package tlsconfig
-
-import (
-	"crypto/tls"
-)
-
-// Client TLS cipher suites (dropping CBC ciphers for client preferred suite set)
-var clientCipherSuites = []uint16{
-	tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
-	tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
-}
diff --git a/vendor/github.com/docker/go-metrics/LICENSE.code b/vendor/github.com/docker/go-metrics/LICENSE.code
deleted file mode 100644
index 8f3fee627a..0000000000
--- a/vendor/github.com/docker/go-metrics/LICENSE.code
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        https://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2013-2016 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       https://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/docker/go-metrics/LICENSE.docs b/vendor/github.com/docker/go-metrics/LICENSE.docs
deleted file mode 100644
index e26cd4fc8e..0000000000
--- a/vendor/github.com/docker/go-metrics/LICENSE.docs
+++ /dev/null
@@ -1,425 +0,0 @@
-Attribution-ShareAlike 4.0 International
-
-=======================================================================
-
-Creative Commons Corporation ("Creative Commons") is not a law firm and
-does not provide legal services or legal advice. Distribution of
-Creative Commons public licenses does not create a lawyer-client or
-other relationship. Creative Commons makes its licenses and related
-information available on an "as-is" basis. Creative Commons gives no
-warranties regarding its licenses, any material licensed under their
-terms and conditions, or any related information. Creative Commons
-disclaims all liability for damages resulting from their use to the
-fullest extent possible.
-
-Using Creative Commons Public Licenses
-
-Creative Commons public licenses provide a standard set of terms and
-conditions that creators and other rights holders may use to share
-original works of authorship and other material subject to copyright
-and certain other rights specified in the public license below. The
-following considerations are for informational purposes only, are not
-exhaustive, and do not form part of our licenses.
-
-     Considerations for licensors: Our public licenses are
-     intended for use by those authorized to give the public
-     permission to use material in ways otherwise restricted by
-     copyright and certain other rights. Our licenses are
-     irrevocable. Licensors should read and understand the terms
-     and conditions of the license they choose before applying it.
-     Licensors should also secure all rights necessary before
-     applying our licenses so that the public can reuse the
-     material as expected. Licensors should clearly mark any
-     material not subject to the license. This includes other CC-
-     licensed material, or material used under an exception or
-     limitation to copyright. More considerations for licensors:
-	wiki.creativecommons.org/Considerations_for_licensors
-
-     Considerations for the public: By using one of our public
-     licenses, a licensor grants the public permission to use the
-     licensed material under specified terms and conditions. If
-     the licensor's permission is not necessary for any reason--for
-     example, because of any applicable exception or limitation to
-     copyright--then that use is not regulated by the license. Our
-     licenses grant only permissions under copyright and certain
-     other rights that a licensor has authority to grant. Use of
-     the licensed material may still be restricted for other
-     reasons, including because others have copyright or other
-     rights in the material. A licensor may make special requests,
-     such as asking that all changes be marked or described.
-     Although not required by our licenses, you are encouraged to
-     respect those requests where reasonable. More_considerations
-     for the public:
-	wiki.creativecommons.org/Considerations_for_licensees
-
-=======================================================================
-
-Creative Commons Attribution-ShareAlike 4.0 International Public
-License
-
-By exercising the Licensed Rights (defined below), You accept and agree
-to be bound by the terms and conditions of this Creative Commons
-Attribution-ShareAlike 4.0 International Public License ("Public
-License"). To the extent this Public License may be interpreted as a
-contract, You are granted the Licensed Rights in consideration of Your
-acceptance of these terms and conditions, and the Licensor grants You
-such rights in consideration of benefits the Licensor receives from
-making the Licensed Material available under these terms and
-conditions.
-
-
-Section 1 -- Definitions.
-
-  a. Adapted Material means material subject to Copyright and Similar
-     Rights that is derived from or based upon the Licensed Material
-     and in which the Licensed Material is translated, altered,
-     arranged, transformed, or otherwise modified in a manner requiring
-     permission under the Copyright and Similar Rights held by the
-     Licensor. For purposes of this Public License, where the Licensed
-     Material is a musical work, performance, or sound recording,
-     Adapted Material is always produced where the Licensed Material is
-     synched in timed relation with a moving image.
-
-  b. Adapter's License means the license You apply to Your Copyright
-     and Similar Rights in Your contributions to Adapted Material in
-     accordance with the terms and conditions of this Public License.
-
-  c. BY-SA Compatible License means a license listed at
-     creativecommons.org/compatiblelicenses, approved by Creative
-     Commons as essentially the equivalent of this Public License.
-
-  d. Copyright and Similar Rights means copyright and/or similar rights
-     closely related to copyright including, without limitation,
-     performance, broadcast, sound recording, and Sui Generis Database
-     Rights, without regard to how the rights are labeled or
-     categorized. For purposes of this Public License, the rights
-     specified in Section 2(b)(1)-(2) are not Copyright and Similar
-     Rights.
-
-  e. Effective Technological Measures means those measures that, in the
-     absence of proper authority, may not be circumvented under laws
-     fulfilling obligations under Article 11 of the WIPO Copyright
-     Treaty adopted on December 20, 1996, and/or similar international
-     agreements.
-
-  f. Exceptions and Limitations means fair use, fair dealing, and/or
-     any other exception or limitation to Copyright and Similar Rights
-     that applies to Your use of the Licensed Material.
-
-  g. License Elements means the license attributes listed in the name
-     of a Creative Commons Public License. The License Elements of this
-     Public License are Attribution and ShareAlike.
-
-  h. Licensed Material means the artistic or literary work, database,
-     or other material to which the Licensor applied this Public
-     License.
-
-  i. Licensed Rights means the rights granted to You subject to the
-     terms and conditions of this Public License, which are limited to
-     all Copyright and Similar Rights that apply to Your use of the
-     Licensed Material and that the Licensor has authority to license.
-
-  j. Licensor means the individual(s) or entity(ies) granting rights
-     under this Public License.
-
-  k. Share means to provide material to the public by any means or
-     process that requires permission under the Licensed Rights, such
-     as reproduction, public display, public performance, distribution,
-     dissemination, communication, or importation, and to make material
-     available to the public including in ways that members of the
-     public may access the material from a place and at a time
-     individually chosen by them.
-
-  l. Sui Generis Database Rights means rights other than copyright
-     resulting from Directive 96/9/EC of the European Parliament and of
-     the Council of 11 March 1996 on the legal protection of databases,
-     as amended and/or succeeded, as well as other essentially
-     equivalent rights anywhere in the world.
-
-  m. You means the individual or entity exercising the Licensed Rights
-     under this Public License. Your has a corresponding meaning.
-
-
-Section 2 -- Scope.
-
-  a. License grant.
-
-       1. Subject to the terms and conditions of this Public License,
-          the Licensor hereby grants You a worldwide, royalty-free,
-          non-sublicensable, non-exclusive, irrevocable license to
-          exercise the Licensed Rights in the Licensed Material to:
-
-            a. reproduce and Share the Licensed Material, in whole or
-               in part; and
-
-            b. produce, reproduce, and Share Adapted Material.
-
-       2. Exceptions and Limitations. For the avoidance of doubt, where
-          Exceptions and Limitations apply to Your use, this Public
-          License does not apply, and You do not need to comply with
-          its terms and conditions.
-
-       3. Term. The term of this Public License is specified in Section
-          6(a).
-
-       4. Media and formats; technical modifications allowed. The
-          Licensor authorizes You to exercise the Licensed Rights in
-          all media and formats whether now known or hereafter created,
-          and to make technical modifications necessary to do so. The
-          Licensor waives and/or agrees not to assert any right or
-          authority to forbid You from making technical modifications
-          necessary to exercise the Licensed Rights, including
-          technical modifications necessary to circumvent Effective
-          Technological Measures. For purposes of this Public License,
-          simply making modifications authorized by this Section 2(a)
-          (4) never produces Adapted Material.
-
-       5. Downstream recipients.
-
-            a. Offer from the Licensor -- Licensed Material. Every
-               recipient of the Licensed Material automatically
-               receives an offer from the Licensor to exercise the
-               Licensed Rights under the terms and conditions of this
-               Public License.
-
-            b. Additional offer from the Licensor -- Adapted Material.
-               Every recipient of Adapted Material from You
-               automatically receives an offer from the Licensor to
-               exercise the Licensed Rights in the Adapted Material
-               under the conditions of the Adapter's License You apply.
-
-            c. No downstream restrictions. You may not offer or impose
-               any additional or different terms or conditions on, or
-               apply any Effective Technological Measures to, the
-               Licensed Material if doing so restricts exercise of the
-               Licensed Rights by any recipient of the Licensed
-               Material.
-
-       6. No endorsement. Nothing in this Public License constitutes or
-          may be construed as permission to assert or imply that You
-          are, or that Your use of the Licensed Material is, connected
-          with, or sponsored, endorsed, or granted official status by,
-          the Licensor or others designated to receive attribution as
-          provided in Section 3(a)(1)(A)(i).
-
-  b. Other rights.
-
-       1. Moral rights, such as the right of integrity, are not
-          licensed under this Public License, nor are publicity,
-          privacy, and/or other similar personality rights; however, to
-          the extent possible, the Licensor waives and/or agrees not to
-          assert any such rights held by the Licensor to the limited
-          extent necessary to allow You to exercise the Licensed
-          Rights, but not otherwise.
-
-       2. Patent and trademark rights are not licensed under this
-          Public License.
-
-       3. To the extent possible, the Licensor waives any right to
-          collect royalties from You for the exercise of the Licensed
-          Rights, whether directly or through a collecting society
-          under any voluntary or waivable statutory or compulsory
-          licensing scheme. In all other cases the Licensor expressly
-          reserves any right to collect such royalties.
-
-
-Section 3 -- License Conditions.
-
-Your exercise of the Licensed Rights is expressly made subject to the
-following conditions.
-
-  a. Attribution.
-
-       1. If You Share the Licensed Material (including in modified
-          form), You must:
-
-            a. retain the following if it is supplied by the Licensor
-               with the Licensed Material:
-
-                 i. identification of the creator(s) of the Licensed
-                    Material and any others designated to receive
-                    attribution, in any reasonable manner requested by
-                    the Licensor (including by pseudonym if
-                    designated);
-
-                ii. a copyright notice;
-
-               iii. a notice that refers to this Public License;
-
-                iv. a notice that refers to the disclaimer of
-                    warranties;
-
-                 v. a URI or hyperlink to the Licensed Material to the
-                    extent reasonably practicable;
-
-            b. indicate if You modified the Licensed Material and
-               retain an indication of any previous modifications; and
-
-            c. indicate the Licensed Material is licensed under this
-               Public License, and include the text of, or the URI or
-               hyperlink to, this Public License.
-
-       2. You may satisfy the conditions in Section 3(a)(1) in any
-          reasonable manner based on the medium, means, and context in
-          which You Share the Licensed Material. For example, it may be
-          reasonable to satisfy the conditions by providing a URI or
-          hyperlink to a resource that includes the required
-          information.
-
-       3. If requested by the Licensor, You must remove any of the
-          information required by Section 3(a)(1)(A) to the extent
-          reasonably practicable.
-
-  b. ShareAlike.
-
-     In addition to the conditions in Section 3(a), if You Share
-     Adapted Material You produce, the following conditions also apply.
-
-       1. The Adapter's License You apply must be a Creative Commons
-          license with the same License Elements, this version or
-          later, or a BY-SA Compatible License.
-
-       2. You must include the text of, or the URI or hyperlink to, the
-          Adapter's License You apply. You may satisfy this condition
-          in any reasonable manner based on the medium, means, and
-          context in which You Share Adapted Material.
-
-       3. You may not offer or impose any additional or different terms
-          or conditions on, or apply any Effective Technological
-          Measures to, Adapted Material that restrict exercise of the
-          rights granted under the Adapter's License You apply.
-
-
-Section 4 -- Sui Generis Database Rights.
-
-Where the Licensed Rights include Sui Generis Database Rights that
-apply to Your use of the Licensed Material:
-
-  a. for the avoidance of doubt, Section 2(a)(1) grants You the right
-     to extract, reuse, reproduce, and Share all or a substantial
-     portion of the contents of the database;
-
-  b. if You include all or a substantial portion of the database
-     contents in a database in which You have Sui Generis Database
-     Rights, then the database in which You have Sui Generis Database
-     Rights (but not its individual contents) is Adapted Material,
-
-     including for purposes of Section 3(b); and
-  c. You must comply with the conditions in Section 3(a) if You Share
-     all or a substantial portion of the contents of the database.
-
-For the avoidance of doubt, this Section 4 supplements and does not
-replace Your obligations under this Public License where the Licensed
-Rights include other Copyright and Similar Rights.
-
-
-Section 5 -- Disclaimer of Warranties and Limitation of Liability.
-
-  a. UNLESS OTHERWISE SEPARATELY UNDERTAKEN BY THE LICENSOR, TO THE
-     EXTENT POSSIBLE, THE LICENSOR OFFERS THE LICENSED MATERIAL AS-IS
-     AND AS-AVAILABLE, AND MAKES NO REPRESENTATIONS OR WARRANTIES OF
-     ANY KIND CONCERNING THE LICENSED MATERIAL, WHETHER EXPRESS,
-     IMPLIED, STATUTORY, OR OTHER. THIS INCLUDES, WITHOUT LIMITATION,
-     WARRANTIES OF TITLE, MERCHANTABILITY, FITNESS FOR A PARTICULAR
-     PURPOSE, NON-INFRINGEMENT, ABSENCE OF LATENT OR OTHER DEFECTS,
-     ACCURACY, OR THE PRESENCE OR ABSENCE OF ERRORS, WHETHER OR NOT
-     KNOWN OR DISCOVERABLE. WHERE DISCLAIMERS OF WARRANTIES ARE NOT
-     ALLOWED IN FULL OR IN PART, THIS DISCLAIMER MAY NOT APPLY TO YOU.
-
-  b. TO THE EXTENT POSSIBLE, IN NO EVENT WILL THE LICENSOR BE LIABLE
-     TO YOU ON ANY LEGAL THEORY (INCLUDING, WITHOUT LIMITATION,
-     NEGLIGENCE) OR OTHERWISE FOR ANY DIRECT, SPECIAL, INDIRECT,
-     INCIDENTAL, CONSEQUENTIAL, PUNITIVE, EXEMPLARY, OR OTHER LOSSES,
-     COSTS, EXPENSES, OR DAMAGES ARISING OUT OF THIS PUBLIC LICENSE OR
-     USE OF THE LICENSED MATERIAL, EVEN IF THE LICENSOR HAS BEEN
-     ADVISED OF THE POSSIBILITY OF SUCH LOSSES, COSTS, EXPENSES, OR
-     DAMAGES. WHERE A LIMITATION OF LIABILITY IS NOT ALLOWED IN FULL OR
-     IN PART, THIS LIMITATION MAY NOT APPLY TO YOU.
-
-  c. The disclaimer of warranties and limitation of liability provided
-     above shall be interpreted in a manner that, to the extent
-     possible, most closely approximates an absolute disclaimer and
-     waiver of all liability.
-
-
-Section 6 -- Term and Termination.
-
-  a. This Public License applies for the term of the Copyright and
-     Similar Rights licensed here. However, if You fail to comply with
-     this Public License, then Your rights under this Public License
-     terminate automatically.
-
-  b. Where Your right to use the Licensed Material has terminated under
-     Section 6(a), it reinstates:
-
-       1. automatically as of the date the violation is cured, provided
-          it is cured within 30 days of Your discovery of the
-          violation; or
-
-       2. upon express reinstatement by the Licensor.
-
-     For the avoidance of doubt, this Section 6(b) does not affect any
-     right the Licensor may have to seek remedies for Your violations
-     of this Public License.
-
-  c. For the avoidance of doubt, the Licensor may also offer the
-     Licensed Material under separate terms or conditions or stop
-     distributing the Licensed Material at any time; however, doing so
-     will not terminate this Public License.
-
-  d. Sections 1, 5, 6, 7, and 8 survive termination of this Public
-     License.
-
-
-Section 7 -- Other Terms and Conditions.
-
-  a. The Licensor shall not be bound by any additional or different
-     terms or conditions communicated by You unless expressly agreed.
-
-  b. Any arrangements, understandings, or agreements regarding the
-     Licensed Material not stated herein are separate from and
-     independent of the terms and conditions of this Public License.
-
-
-Section 8 -- Interpretation.
-
-  a. For the avoidance of doubt, this Public License does not, and
-     shall not be interpreted to, reduce, limit, restrict, or impose
-     conditions on any use of the Licensed Material that could lawfully
-     be made without permission under this Public License.
-
-  b. To the extent possible, if any provision of this Public License is
-     deemed unenforceable, it shall be automatically reformed to the
-     minimum extent necessary to make it enforceable. If the provision
-     cannot be reformed, it shall be severed from this Public License
-     without affecting the enforceability of the remaining terms and
-     conditions.
-
-  c. No term or condition of this Public License will be waived and no
-     failure to comply consented to unless expressly agreed to by the
-     Licensor.
-
-  d. Nothing in this Public License constitutes or may be interpreted
-     as a limitation upon, or waiver of, any privileges and immunities
-     that apply to the Licensor or You, including from the legal
-     processes of any jurisdiction or authority.
-
-
-=======================================================================
-
-Creative Commons is not a party to its public licenses.
-Notwithstanding, Creative Commons may elect to apply one of its public
-licenses to material it publishes and in those instances will be
-considered the "Licensor." Except for the limited purpose of indicating
-that material is shared under a Creative Commons public license or as
-otherwise permitted by the Creative Commons policies published at
-creativecommons.org/policies, Creative Commons does not authorize the
-use of the trademark "Creative Commons" or any other trademark or logo
-of Creative Commons without its prior written consent including,
-without limitation, in connection with any unauthorized modifications
-to any of its public licenses or any other arrangements,
-understandings, or agreements concerning use of licensed material. For
-the avoidance of doubt, this paragraph does not form part of the public
-licenses.
-
-Creative Commons may be contacted at creativecommons.org.
diff --git a/vendor/github.com/docker/go-metrics/NOTICE b/vendor/github.com/docker/go-metrics/NOTICE
deleted file mode 100644
index 8915f02773..0000000000
--- a/vendor/github.com/docker/go-metrics/NOTICE
+++ /dev/null
@@ -1,16 +0,0 @@
-Docker
-Copyright 2012-2015 Docker, Inc.
-
-This product includes software developed at Docker, Inc. (https://www.docker.com).
-
-The following is courtesy of our legal counsel:
-
-
-Use and transfer of Docker may be subject to certain restrictions by the
-United States and other governments.
-It is your responsibility to ensure that your use and/or transfer does not
-violate applicable laws.
-
-For more information, please see https://www.bis.doc.gov
-
-See also https://www.apache.org/dev/crypto.html and/or seek legal counsel.
diff --git a/vendor/github.com/docker/go-metrics/counter.go b/vendor/github.com/docker/go-metrics/counter.go
deleted file mode 100644
index fe36316a45..0000000000
--- a/vendor/github.com/docker/go-metrics/counter.go
+++ /dev/null
@@ -1,52 +0,0 @@
-package metrics
-
-import "github.com/prometheus/client_golang/prometheus"
-
-// Counter is a metrics that can only increment its current count
-type Counter interface {
-	// Inc adds Sum(vs) to the counter. Sum(vs) must be positive.
-	//
-	// If len(vs) == 0, increments the counter by 1.
-	Inc(vs ...float64)
-}
-
-// LabeledCounter is counter that must have labels populated before use.
-type LabeledCounter interface {
-	WithValues(vs ...string) Counter
-}
-
-type labeledCounter struct {
-	pc *prometheus.CounterVec
-}
-
-func (lc *labeledCounter) WithValues(vs ...string) Counter {
-	return &counter{pc: lc.pc.WithLabelValues(vs...)}
-}
-
-func (lc *labeledCounter) Describe(ch chan<- *prometheus.Desc) {
-	lc.pc.Describe(ch)
-}
-
-func (lc *labeledCounter) Collect(ch chan<- prometheus.Metric) {
-	lc.pc.Collect(ch)
-}
-
-type counter struct {
-	pc prometheus.Counter
-}
-
-func (c *counter) Inc(vs ...float64) {
-	if len(vs) == 0 {
-		c.pc.Inc()
-	}
-
-	c.pc.Add(sumFloat64(vs...))
-}
-
-func (c *counter) Describe(ch chan<- *prometheus.Desc) {
-	c.pc.Describe(ch)
-}
-
-func (c *counter) Collect(ch chan<- prometheus.Metric) {
-	c.pc.Collect(ch)
-}
diff --git a/vendor/github.com/docker/go-metrics/docs.go b/vendor/github.com/docker/go-metrics/docs.go
deleted file mode 100644
index 8fbdfc697d..0000000000
--- a/vendor/github.com/docker/go-metrics/docs.go
+++ /dev/null
@@ -1,3 +0,0 @@
-// This package is small wrapper around the prometheus go client to help enforce convention and best practices for metrics collection in Docker projects.
-
-package metrics
diff --git a/vendor/github.com/docker/go-metrics/gauge.go b/vendor/github.com/docker/go-metrics/gauge.go
deleted file mode 100644
index 74296e8774..0000000000
--- a/vendor/github.com/docker/go-metrics/gauge.go
+++ /dev/null
@@ -1,72 +0,0 @@
-package metrics
-
-import "github.com/prometheus/client_golang/prometheus"
-
-// Gauge is a metric that allows incrementing and decrementing a value
-type Gauge interface {
-	Inc(...float64)
-	Dec(...float64)
-
-	// Add adds the provided value to the gauge's current value
-	Add(float64)
-
-	// Set replaces the gauge's current value with the provided value
-	Set(float64)
-}
-
-// LabeledGauge describes a gauge the must have values populated before use.
-type LabeledGauge interface {
-	WithValues(labels ...string) Gauge
-}
-
-type labeledGauge struct {
-	pg *prometheus.GaugeVec
-}
-
-func (lg *labeledGauge) WithValues(labels ...string) Gauge {
-	return &gauge{pg: lg.pg.WithLabelValues(labels...)}
-}
-
-func (lg *labeledGauge) Describe(c chan<- *prometheus.Desc) {
-	lg.pg.Describe(c)
-}
-
-func (lg *labeledGauge) Collect(c chan<- prometheus.Metric) {
-	lg.pg.Collect(c)
-}
-
-type gauge struct {
-	pg prometheus.Gauge
-}
-
-func (g *gauge) Inc(vs ...float64) {
-	if len(vs) == 0 {
-		g.pg.Inc()
-	}
-
-	g.Add(sumFloat64(vs...))
-}
-
-func (g *gauge) Dec(vs ...float64) {
-	if len(vs) == 0 {
-		g.pg.Dec()
-	}
-
-	g.Add(-sumFloat64(vs...))
-}
-
-func (g *gauge) Add(v float64) {
-	g.pg.Add(v)
-}
-
-func (g *gauge) Set(v float64) {
-	g.pg.Set(v)
-}
-
-func (g *gauge) Describe(c chan<- *prometheus.Desc) {
-	g.pg.Describe(c)
-}
-
-func (g *gauge) Collect(c chan<- prometheus.Metric) {
-	g.pg.Collect(c)
-}
diff --git a/vendor/github.com/docker/go-metrics/handler.go b/vendor/github.com/docker/go-metrics/handler.go
deleted file mode 100644
index 05601e9ecd..0000000000
--- a/vendor/github.com/docker/go-metrics/handler.go
+++ /dev/null
@@ -1,74 +0,0 @@
-package metrics
-
-import (
-	"net/http"
-
-	"github.com/prometheus/client_golang/prometheus"
-	"github.com/prometheus/client_golang/prometheus/promhttp"
-)
-
-// HTTPHandlerOpts describes a set of configurable options of http metrics
-type HTTPHandlerOpts struct {
-	DurationBuckets     []float64
-	RequestSizeBuckets  []float64
-	ResponseSizeBuckets []float64
-}
-
-const (
-	InstrumentHandlerResponseSize = iota
-	InstrumentHandlerRequestSize
-	InstrumentHandlerDuration
-	InstrumentHandlerCounter
-	InstrumentHandlerInFlight
-)
-
-type HTTPMetric struct {
-	prometheus.Collector
-	handlerType int
-}
-
-var (
-	defaultDurationBuckets     = []float64{.005, .01, .025, .05, .1, .25, .5, 1, 2.5, 5, 10, 25, 60}
-	defaultRequestSizeBuckets  = prometheus.ExponentialBuckets(1024, 2, 22) //1K to 4G
-	defaultResponseSizeBuckets = defaultRequestSizeBuckets
-)
-
-// Handler returns the global http.Handler that provides the prometheus
-// metrics format on GET requests. This handler is no longer instrumented.
-func Handler() http.Handler {
-	return promhttp.Handler()
-}
-
-func InstrumentHandler(metrics []*HTTPMetric, handler http.Handler) http.HandlerFunc {
-	return InstrumentHandlerFunc(metrics, handler.ServeHTTP)
-}
-
-func InstrumentHandlerFunc(metrics []*HTTPMetric, handlerFunc http.HandlerFunc) http.HandlerFunc {
-	var handler http.Handler
-	handler = http.HandlerFunc(handlerFunc)
-	for _, metric := range metrics {
-		switch metric.handlerType {
-		case InstrumentHandlerResponseSize:
-			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
-				handler = promhttp.InstrumentHandlerResponseSize(collector, handler)
-			}
-		case InstrumentHandlerRequestSize:
-			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
-				handler = promhttp.InstrumentHandlerRequestSize(collector, handler)
-			}
-		case InstrumentHandlerDuration:
-			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
-				handler = promhttp.InstrumentHandlerDuration(collector, handler)
-			}
-		case InstrumentHandlerCounter:
-			if collector, ok := metric.Collector.(*prometheus.CounterVec); ok {
-				handler = promhttp.InstrumentHandlerCounter(collector, handler)
-			}
-		case InstrumentHandlerInFlight:
-			if collector, ok := metric.Collector.(prometheus.Gauge); ok {
-				handler = promhttp.InstrumentHandlerInFlight(collector, handler)
-			}
-		}
-	}
-	return handler.ServeHTTP
-}
diff --git a/vendor/github.com/docker/go-metrics/helpers.go b/vendor/github.com/docker/go-metrics/helpers.go
deleted file mode 100644
index 68b7f51b33..0000000000
--- a/vendor/github.com/docker/go-metrics/helpers.go
+++ /dev/null
@@ -1,10 +0,0 @@
-package metrics
-
-func sumFloat64(vs ...float64) float64 {
-	var sum float64
-	for _, v := range vs {
-		sum += v
-	}
-
-	return sum
-}
diff --git a/vendor/github.com/docker/go-metrics/namespace.go b/vendor/github.com/docker/go-metrics/namespace.go
deleted file mode 100644
index 798315451a..0000000000
--- a/vendor/github.com/docker/go-metrics/namespace.go
+++ /dev/null
@@ -1,315 +0,0 @@
-package metrics
-
-import (
-	"fmt"
-	"sync"
-
-	"github.com/prometheus/client_golang/prometheus"
-)
-
-type Labels map[string]string
-
-// NewNamespace returns a namespaces that is responsible for managing a collection of
-// metrics for a particual namespace and subsystem
-//
-// labels allows const labels to be added to all metrics created in this namespace
-// and are commonly used for data like application version and git commit
-func NewNamespace(name, subsystem string, labels Labels) *Namespace {
-	if labels == nil {
-		labels = make(map[string]string)
-	}
-	return &Namespace{
-		name:      name,
-		subsystem: subsystem,
-		labels:    labels,
-	}
-}
-
-// Namespace describes a set of metrics that share a namespace and subsystem.
-type Namespace struct {
-	name      string
-	subsystem string
-	labels    Labels
-	mu        sync.Mutex
-	metrics   []prometheus.Collector
-}
-
-// WithConstLabels returns a namespace with the provided set of labels merged
-// with the existing constant labels on the namespace.
-//
-//  Only metrics created with the returned namespace will get the new constant
-//  labels.  The returned namespace must be registered separately.
-func (n *Namespace) WithConstLabels(labels Labels) *Namespace {
-	n.mu.Lock()
-	ns := &Namespace{
-		name:      n.name,
-		subsystem: n.subsystem,
-		labels:    mergeLabels(n.labels, labels),
-	}
-	n.mu.Unlock()
-	return ns
-}
-
-func (n *Namespace) NewCounter(name, help string) Counter {
-	c := &counter{pc: prometheus.NewCounter(n.newCounterOpts(name, help))}
-	n.Add(c)
-	return c
-}
-
-func (n *Namespace) NewLabeledCounter(name, help string, labels ...string) LabeledCounter {
-	c := &labeledCounter{pc: prometheus.NewCounterVec(n.newCounterOpts(name, help), labels)}
-	n.Add(c)
-	return c
-}
-
-func (n *Namespace) newCounterOpts(name, help string) prometheus.CounterOpts {
-	return prometheus.CounterOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        makeName(name, Total),
-		Help:        help,
-		ConstLabels: prometheus.Labels(n.labels),
-	}
-}
-
-func (n *Namespace) NewTimer(name, help string) Timer {
-	t := &timer{
-		m: prometheus.NewHistogram(n.newTimerOpts(name, help)),
-	}
-	n.Add(t)
-	return t
-}
-
-func (n *Namespace) NewLabeledTimer(name, help string, labels ...string) LabeledTimer {
-	t := &labeledTimer{
-		m: prometheus.NewHistogramVec(n.newTimerOpts(name, help), labels),
-	}
-	n.Add(t)
-	return t
-}
-
-func (n *Namespace) newTimerOpts(name, help string) prometheus.HistogramOpts {
-	return prometheus.HistogramOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        makeName(name, Seconds),
-		Help:        help,
-		ConstLabels: prometheus.Labels(n.labels),
-	}
-}
-
-func (n *Namespace) NewGauge(name, help string, unit Unit) Gauge {
-	g := &gauge{
-		pg: prometheus.NewGauge(n.newGaugeOpts(name, help, unit)),
-	}
-	n.Add(g)
-	return g
-}
-
-func (n *Namespace) NewLabeledGauge(name, help string, unit Unit, labels ...string) LabeledGauge {
-	g := &labeledGauge{
-		pg: prometheus.NewGaugeVec(n.newGaugeOpts(name, help, unit), labels),
-	}
-	n.Add(g)
-	return g
-}
-
-func (n *Namespace) newGaugeOpts(name, help string, unit Unit) prometheus.GaugeOpts {
-	return prometheus.GaugeOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        makeName(name, unit),
-		Help:        help,
-		ConstLabels: prometheus.Labels(n.labels),
-	}
-}
-
-func (n *Namespace) Describe(ch chan<- *prometheus.Desc) {
-	n.mu.Lock()
-	defer n.mu.Unlock()
-
-	for _, metric := range n.metrics {
-		metric.Describe(ch)
-	}
-}
-
-func (n *Namespace) Collect(ch chan<- prometheus.Metric) {
-	n.mu.Lock()
-	defer n.mu.Unlock()
-
-	for _, metric := range n.metrics {
-		metric.Collect(ch)
-	}
-}
-
-func (n *Namespace) Add(collector prometheus.Collector) {
-	n.mu.Lock()
-	n.metrics = append(n.metrics, collector)
-	n.mu.Unlock()
-}
-
-func (n *Namespace) NewDesc(name, help string, unit Unit, labels ...string) *prometheus.Desc {
-	name = makeName(name, unit)
-	namespace := n.name
-	if n.subsystem != "" {
-		namespace = fmt.Sprintf("%s_%s", namespace, n.subsystem)
-	}
-	name = fmt.Sprintf("%s_%s", namespace, name)
-	return prometheus.NewDesc(name, help, labels, prometheus.Labels(n.labels))
-}
-
-// mergeLabels merges two or more labels objects into a single map, favoring
-// the later labels.
-func mergeLabels(lbs ...Labels) Labels {
-	merged := make(Labels)
-
-	for _, target := range lbs {
-		for k, v := range target {
-			merged[k] = v
-		}
-	}
-
-	return merged
-}
-
-func makeName(name string, unit Unit) string {
-	if unit == "" {
-		return name
-	}
-
-	return fmt.Sprintf("%s_%s", name, unit)
-}
-
-func (n *Namespace) NewDefaultHttpMetrics(handlerName string) []*HTTPMetric {
-	return n.NewHttpMetricsWithOpts(handlerName, HTTPHandlerOpts{
-		DurationBuckets:     defaultDurationBuckets,
-		RequestSizeBuckets:  defaultResponseSizeBuckets,
-		ResponseSizeBuckets: defaultResponseSizeBuckets,
-	})
-}
-
-func (n *Namespace) NewHttpMetrics(handlerName string, durationBuckets, requestSizeBuckets, responseSizeBuckets []float64) []*HTTPMetric {
-	return n.NewHttpMetricsWithOpts(handlerName, HTTPHandlerOpts{
-		DurationBuckets:     durationBuckets,
-		RequestSizeBuckets:  requestSizeBuckets,
-		ResponseSizeBuckets: responseSizeBuckets,
-	})
-}
-
-func (n *Namespace) NewHttpMetricsWithOpts(handlerName string, opts HTTPHandlerOpts) []*HTTPMetric {
-	var httpMetrics []*HTTPMetric
-	inFlightMetric := n.NewInFlightGaugeMetric(handlerName)
-	requestTotalMetric := n.NewRequestTotalMetric(handlerName)
-	requestDurationMetric := n.NewRequestDurationMetric(handlerName, opts.DurationBuckets)
-	requestSizeMetric := n.NewRequestSizeMetric(handlerName, opts.RequestSizeBuckets)
-	responseSizeMetric := n.NewResponseSizeMetric(handlerName, opts.ResponseSizeBuckets)
-	httpMetrics = append(httpMetrics, inFlightMetric, requestDurationMetric, requestTotalMetric, requestSizeMetric, responseSizeMetric)
-	return httpMetrics
-}
-
-func (n *Namespace) NewInFlightGaugeMetric(handlerName string) *HTTPMetric {
-	labels := prometheus.Labels(n.labels)
-	labels["handler"] = handlerName
-	metric := prometheus.NewGauge(prometheus.GaugeOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        "in_flight_requests",
-		Help:        "The in-flight HTTP requests",
-		ConstLabels: prometheus.Labels(labels),
-	})
-	httpMetric := &HTTPMetric{
-		Collector:   metric,
-		handlerType: InstrumentHandlerInFlight,
-	}
-	n.Add(httpMetric)
-	return httpMetric
-}
-
-func (n *Namespace) NewRequestTotalMetric(handlerName string) *HTTPMetric {
-	labels := prometheus.Labels(n.labels)
-	labels["handler"] = handlerName
-	metric := prometheus.NewCounterVec(
-		prometheus.CounterOpts{
-			Namespace:   n.name,
-			Subsystem:   n.subsystem,
-			Name:        "requests_total",
-			Help:        "Total number of HTTP requests made.",
-			ConstLabels: prometheus.Labels(labels),
-		},
-		[]string{"code", "method"},
-	)
-	httpMetric := &HTTPMetric{
-		Collector:   metric,
-		handlerType: InstrumentHandlerCounter,
-	}
-	n.Add(httpMetric)
-	return httpMetric
-}
-func (n *Namespace) NewRequestDurationMetric(handlerName string, buckets []float64) *HTTPMetric {
-	if len(buckets) == 0 {
-		panic("DurationBuckets must be provided")
-	}
-	labels := prometheus.Labels(n.labels)
-	labels["handler"] = handlerName
-	opts := prometheus.HistogramOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        "request_duration_seconds",
-		Help:        "The HTTP request latencies in seconds.",
-		Buckets:     buckets,
-		ConstLabels: prometheus.Labels(labels),
-	}
-	metric := prometheus.NewHistogramVec(opts, []string{"method"})
-	httpMetric := &HTTPMetric{
-		Collector:   metric,
-		handlerType: InstrumentHandlerDuration,
-	}
-	n.Add(httpMetric)
-	return httpMetric
-}
-
-func (n *Namespace) NewRequestSizeMetric(handlerName string, buckets []float64) *HTTPMetric {
-	if len(buckets) == 0 {
-		panic("RequestSizeBuckets must be provided")
-	}
-	labels := prometheus.Labels(n.labels)
-	labels["handler"] = handlerName
-	opts := prometheus.HistogramOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        "request_size_bytes",
-		Help:        "The HTTP request sizes in bytes.",
-		Buckets:     buckets,
-		ConstLabels: prometheus.Labels(labels),
-	}
-	metric := prometheus.NewHistogramVec(opts, []string{})
-	httpMetric := &HTTPMetric{
-		Collector:   metric,
-		handlerType: InstrumentHandlerRequestSize,
-	}
-	n.Add(httpMetric)
-	return httpMetric
-}
-
-func (n *Namespace) NewResponseSizeMetric(handlerName string, buckets []float64) *HTTPMetric {
-	if len(buckets) == 0 {
-		panic("ResponseSizeBuckets must be provided")
-	}
-	labels := prometheus.Labels(n.labels)
-	labels["handler"] = handlerName
-	opts := prometheus.HistogramOpts{
-		Namespace:   n.name,
-		Subsystem:   n.subsystem,
-		Name:        "response_size_bytes",
-		Help:        "The HTTP response sizes in bytes.",
-		Buckets:     buckets,
-		ConstLabels: prometheus.Labels(labels),
-	}
-	metrics := prometheus.NewHistogramVec(opts, []string{})
-	httpMetric := &HTTPMetric{
-		Collector:   metrics,
-		handlerType: InstrumentHandlerResponseSize,
-	}
-	n.Add(httpMetric)
-	return httpMetric
-}
diff --git a/vendor/github.com/docker/go-metrics/register.go b/vendor/github.com/docker/go-metrics/register.go
deleted file mode 100644
index 708358df01..0000000000
--- a/vendor/github.com/docker/go-metrics/register.go
+++ /dev/null
@@ -1,15 +0,0 @@
-package metrics
-
-import "github.com/prometheus/client_golang/prometheus"
-
-// Register adds all the metrics in the provided namespace to the global
-// metrics registry
-func Register(n *Namespace) {
-	prometheus.MustRegister(n)
-}
-
-// Deregister removes all the metrics in the provided namespace from the
-// global metrics registry
-func Deregister(n *Namespace) {
-	prometheus.Unregister(n)
-}
diff --git a/vendor/github.com/docker/go-metrics/timer.go b/vendor/github.com/docker/go-metrics/timer.go
deleted file mode 100644
index 824c98739c..0000000000
--- a/vendor/github.com/docker/go-metrics/timer.go
+++ /dev/null
@@ -1,85 +0,0 @@
-package metrics
-
-import (
-	"time"
-
-	"github.com/prometheus/client_golang/prometheus"
-)
-
-// StartTimer begins a timer observation at the callsite. When the target
-// operation is completed, the caller should call the return done func().
-func StartTimer(timer Timer) (done func()) {
-	start := time.Now()
-	return func() {
-		timer.Update(time.Since(start))
-	}
-}
-
-// Timer is a metric that allows collecting the duration of an action in seconds
-type Timer interface {
-	// Update records an observation, duration, and converts to the target
-	// units.
-	Update(duration time.Duration)
-
-	// UpdateSince will add the duration from the provided starting time to the
-	// timer's summary with the precisions that was used in creation of the timer
-	UpdateSince(time.Time)
-}
-
-// LabeledTimer is a timer that must have label values populated before use.
-type LabeledTimer interface {
-	WithValues(labels ...string) *labeledTimerObserver
-}
-
-type labeledTimer struct {
-	m *prometheus.HistogramVec
-}
-
-type labeledTimerObserver struct {
-	m prometheus.Observer
-}
-
-func (lbo *labeledTimerObserver) Update(duration time.Duration) {
-	lbo.m.Observe(duration.Seconds())
-}
-
-func (lbo *labeledTimerObserver) UpdateSince(since time.Time) {
-	lbo.m.Observe(time.Since(since).Seconds())
-}
-
-func (lt *labeledTimer) WithValues(labels ...string) *labeledTimerObserver {
-	return &labeledTimerObserver{m: lt.m.WithLabelValues(labels...)}
-}
-
-func (lt *labeledTimer) Describe(c chan<- *prometheus.Desc) {
-	lt.m.Describe(c)
-}
-
-func (lt *labeledTimer) Collect(c chan<- prometheus.Metric) {
-	lt.m.Collect(c)
-}
-
-type timer struct {
-	m prometheus.Observer
-}
-
-func (t *timer) Update(duration time.Duration) {
-	t.m.Observe(duration.Seconds())
-}
-
-func (t *timer) UpdateSince(since time.Time) {
-	t.m.Observe(time.Since(since).Seconds())
-}
-
-func (t *timer) Describe(c chan<- *prometheus.Desc) {
-	c <- t.m.(prometheus.Metric).Desc()
-}
-
-func (t *timer) Collect(c chan<- prometheus.Metric) {
-	// Are there any observers that don't implement Collector? It is really
-	// unclear what the point of the upstream change was, but we'll let this
-	// panic if we get an observer that doesn't implement collector. In this
-	// case, we should almost always see metricVec objects, so this should
-	// never panic.
-	t.m.(prometheus.Collector).Collect(c)
-}
diff --git a/vendor/github.com/docker/go-metrics/unit.go b/vendor/github.com/docker/go-metrics/unit.go
deleted file mode 100644
index c96622f903..0000000000
--- a/vendor/github.com/docker/go-metrics/unit.go
+++ /dev/null
@@ -1,12 +0,0 @@
-package metrics
-
-// Unit represents the type or precision of a metric that is appended to
-// the metrics fully qualified name
-type Unit string
-
-const (
-	Nanoseconds Unit = "nanoseconds"
-	Seconds     Unit = "seconds"
-	Bytes       Unit = "bytes"
-	Total       Unit = "total"
-)
diff --git a/vendor/github.com/docker/libtrust/LICENSE b/vendor/github.com/docker/libtrust/LICENSE
deleted file mode 100644
index 27448585ad..0000000000
--- a/vendor/github.com/docker/libtrust/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2014 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/docker/libtrust/certificates.go b/vendor/github.com/docker/libtrust/certificates.go
deleted file mode 100644
index 3dcca33cb1..0000000000
--- a/vendor/github.com/docker/libtrust/certificates.go
+++ /dev/null
@@ -1,175 +0,0 @@
-package libtrust
-
-import (
-	"crypto/rand"
-	"crypto/x509"
-	"crypto/x509/pkix"
-	"encoding/pem"
-	"fmt"
-	"io/ioutil"
-	"math/big"
-	"net"
-	"time"
-)
-
-type certTemplateInfo struct {
-	commonName  string
-	domains     []string
-	ipAddresses []net.IP
-	isCA        bool
-	clientAuth  bool
-	serverAuth  bool
-}
-
-func generateCertTemplate(info *certTemplateInfo) *x509.Certificate {
-	// Generate a certificate template which is valid from the past week to
-	// 10 years from now. The usage of the certificate depends on the
-	// specified fields in the given certTempInfo object.
-	var (
-		keyUsage    x509.KeyUsage
-		extKeyUsage []x509.ExtKeyUsage
-	)
-
-	if info.isCA {
-		keyUsage = x509.KeyUsageCertSign
-	}
-
-	if info.clientAuth {
-		extKeyUsage = append(extKeyUsage, x509.ExtKeyUsageClientAuth)
-	}
-
-	if info.serverAuth {
-		extKeyUsage = append(extKeyUsage, x509.ExtKeyUsageServerAuth)
-	}
-
-	return &x509.Certificate{
-		SerialNumber: big.NewInt(0),
-		Subject: pkix.Name{
-			CommonName: info.commonName,
-		},
-		NotBefore:             time.Now().Add(-time.Hour * 24 * 7),
-		NotAfter:              time.Now().Add(time.Hour * 24 * 365 * 10),
-		DNSNames:              info.domains,
-		IPAddresses:           info.ipAddresses,
-		IsCA:                  info.isCA,
-		KeyUsage:              keyUsage,
-		ExtKeyUsage:           extKeyUsage,
-		BasicConstraintsValid: info.isCA,
-	}
-}
-
-func generateCert(pub PublicKey, priv PrivateKey, subInfo, issInfo *certTemplateInfo) (cert *x509.Certificate, err error) {
-	pubCertTemplate := generateCertTemplate(subInfo)
-	privCertTemplate := generateCertTemplate(issInfo)
-
-	certDER, err := x509.CreateCertificate(
-		rand.Reader, pubCertTemplate, privCertTemplate,
-		pub.CryptoPublicKey(), priv.CryptoPrivateKey(),
-	)
-	if err != nil {
-		return nil, fmt.Errorf("failed to create certificate: %s", err)
-	}
-
-	cert, err = x509.ParseCertificate(certDER)
-	if err != nil {
-		return nil, fmt.Errorf("failed to parse certificate: %s", err)
-	}
-
-	return
-}
-
-// GenerateSelfSignedServerCert creates a self-signed certificate for the
-// given key which is to be used for TLS servers with the given domains and
-// IP addresses.
-func GenerateSelfSignedServerCert(key PrivateKey, domains []string, ipAddresses []net.IP) (*x509.Certificate, error) {
-	info := &certTemplateInfo{
-		commonName:  key.KeyID(),
-		domains:     domains,
-		ipAddresses: ipAddresses,
-		serverAuth:  true,
-	}
-
-	return generateCert(key.PublicKey(), key, info, info)
-}
-
-// GenerateSelfSignedClientCert creates a self-signed certificate for the
-// given key which is to be used for TLS clients.
-func GenerateSelfSignedClientCert(key PrivateKey) (*x509.Certificate, error) {
-	info := &certTemplateInfo{
-		commonName: key.KeyID(),
-		clientAuth: true,
-	}
-
-	return generateCert(key.PublicKey(), key, info, info)
-}
-
-// GenerateCACert creates a certificate which can be used as a trusted
-// certificate authority.
-func GenerateCACert(signer PrivateKey, trustedKey PublicKey) (*x509.Certificate, error) {
-	subjectInfo := &certTemplateInfo{
-		commonName: trustedKey.KeyID(),
-		isCA:       true,
-	}
-	issuerInfo := &certTemplateInfo{
-		commonName: signer.KeyID(),
-	}
-
-	return generateCert(trustedKey, signer, subjectInfo, issuerInfo)
-}
-
-// GenerateCACertPool creates a certificate authority pool to be used for a
-// TLS configuration. Any self-signed certificates issued by the specified
-// trusted keys will be verified during a TLS handshake
-func GenerateCACertPool(signer PrivateKey, trustedKeys []PublicKey) (*x509.CertPool, error) {
-	certPool := x509.NewCertPool()
-
-	for _, trustedKey := range trustedKeys {
-		cert, err := GenerateCACert(signer, trustedKey)
-		if err != nil {
-			return nil, fmt.Errorf("failed to generate CA certificate: %s", err)
-		}
-
-		certPool.AddCert(cert)
-	}
-
-	return certPool, nil
-}
-
-// LoadCertificateBundle loads certificates from the given file.  The file should be pem encoded
-// containing one or more certificates.  The expected pem type is "CERTIFICATE".
-func LoadCertificateBundle(filename string) ([]*x509.Certificate, error) {
-	b, err := ioutil.ReadFile(filename)
-	if err != nil {
-		return nil, err
-	}
-	certificates := []*x509.Certificate{}
-	var block *pem.Block
-	block, b = pem.Decode(b)
-	for ; block != nil; block, b = pem.Decode(b) {
-		if block.Type == "CERTIFICATE" {
-			cert, err := x509.ParseCertificate(block.Bytes)
-			if err != nil {
-				return nil, err
-			}
-			certificates = append(certificates, cert)
-		} else {
-			return nil, fmt.Errorf("invalid pem block type: %s", block.Type)
-		}
-	}
-
-	return certificates, nil
-}
-
-// LoadCertificatePool loads a CA pool from the given file.  The file should be pem encoded
-// containing one or more certificates. The expected pem type is "CERTIFICATE".
-func LoadCertificatePool(filename string) (*x509.CertPool, error) {
-	certs, err := LoadCertificateBundle(filename)
-	if err != nil {
-		return nil, err
-	}
-	pool := x509.NewCertPool()
-	for _, cert := range certs {
-		pool.AddCert(cert)
-	}
-	return pool, nil
-}
diff --git a/vendor/github.com/docker/libtrust/doc.go b/vendor/github.com/docker/libtrust/doc.go
deleted file mode 100644
index ec5d2159c1..0000000000
--- a/vendor/github.com/docker/libtrust/doc.go
+++ /dev/null
@@ -1,9 +0,0 @@
-/*
-Package libtrust provides an interface for managing authentication and
-authorization using public key cryptography. Authentication is handled
-using the identity attached to the public key and verified through TLS
-x509 certificates, a key challenge, or signature. Authorization and
-access control is managed through a trust graph distributed between
-both remote trust servers and locally cached and managed data.
-*/
-package libtrust
diff --git a/vendor/github.com/docker/libtrust/ec_key.go b/vendor/github.com/docker/libtrust/ec_key.go
deleted file mode 100644
index 00bbe4b3ca..0000000000
--- a/vendor/github.com/docker/libtrust/ec_key.go
+++ /dev/null
@@ -1,428 +0,0 @@
-package libtrust
-
-import (
-	"crypto"
-	"crypto/ecdsa"
-	"crypto/elliptic"
-	"crypto/rand"
-	"crypto/x509"
-	"encoding/json"
-	"encoding/pem"
-	"errors"
-	"fmt"
-	"io"
-	"math/big"
-)
-
-/*
- * EC DSA PUBLIC KEY
- */
-
-// ecPublicKey implements a libtrust.PublicKey using elliptic curve digital
-// signature algorithms.
-type ecPublicKey struct {
-	*ecdsa.PublicKey
-	curveName          string
-	signatureAlgorithm *signatureAlgorithm
-	extended           map[string]interface{}
-}
-
-func fromECPublicKey(cryptoPublicKey *ecdsa.PublicKey) (*ecPublicKey, error) {
-	curve := cryptoPublicKey.Curve
-
-	switch {
-	case curve == elliptic.P256():
-		return &ecPublicKey{cryptoPublicKey, "P-256", es256, map[string]interface{}{}}, nil
-	case curve == elliptic.P384():
-		return &ecPublicKey{cryptoPublicKey, "P-384", es384, map[string]interface{}{}}, nil
-	case curve == elliptic.P521():
-		return &ecPublicKey{cryptoPublicKey, "P-521", es512, map[string]interface{}{}}, nil
-	default:
-		return nil, errors.New("unsupported elliptic curve")
-	}
-}
-
-// KeyType returns the key type for elliptic curve keys, i.e., "EC".
-func (k *ecPublicKey) KeyType() string {
-	return "EC"
-}
-
-// CurveName returns the elliptic curve identifier.
-// Possible values are "P-256", "P-384", and "P-521".
-func (k *ecPublicKey) CurveName() string {
-	return k.curveName
-}
-
-// KeyID returns a distinct identifier which is unique to this Public Key.
-func (k *ecPublicKey) KeyID() string {
-	return keyIDFromCryptoKey(k)
-}
-
-func (k *ecPublicKey) String() string {
-	return fmt.Sprintf("EC Public Key <%s>", k.KeyID())
-}
-
-// Verify verifyies the signature of the data in the io.Reader using this
-// PublicKey. The alg parameter should identify the digital signature
-// algorithm which was used to produce the signature and should be supported
-// by this public key. Returns a nil error if the signature is valid.
-func (k *ecPublicKey) Verify(data io.Reader, alg string, signature []byte) error {
-	// For EC keys there is only one supported signature algorithm depending
-	// on the curve parameters.
-	if k.signatureAlgorithm.HeaderParam() != alg {
-		return fmt.Errorf("unable to verify signature: EC Public Key with curve %q does not support signature algorithm %q", k.curveName, alg)
-	}
-
-	// signature is the concatenation of (r, s), base64Url encoded.
-	sigLength := len(signature)
-	expectedOctetLength := 2 * ((k.Params().BitSize + 7) >> 3)
-	if sigLength != expectedOctetLength {
-		return fmt.Errorf("signature length is %d octets long, should be %d", sigLength, expectedOctetLength)
-	}
-
-	rBytes, sBytes := signature[:sigLength/2], signature[sigLength/2:]
-	r := new(big.Int).SetBytes(rBytes)
-	s := new(big.Int).SetBytes(sBytes)
-
-	hasher := k.signatureAlgorithm.HashID().New()
-	_, err := io.Copy(hasher, data)
-	if err != nil {
-		return fmt.Errorf("error reading data to sign: %s", err)
-	}
-	hash := hasher.Sum(nil)
-
-	if !ecdsa.Verify(k.PublicKey, hash, r, s) {
-		return errors.New("invalid signature")
-	}
-
-	return nil
-}
-
-// CryptoPublicKey returns the internal object which can be used as a
-// crypto.PublicKey for use with other standard library operations. The type
-// is either *rsa.PublicKey or *ecdsa.PublicKey
-func (k *ecPublicKey) CryptoPublicKey() crypto.PublicKey {
-	return k.PublicKey
-}
-
-func (k *ecPublicKey) toMap() map[string]interface{} {
-	jwk := make(map[string]interface{})
-	for k, v := range k.extended {
-		jwk[k] = v
-	}
-	jwk["kty"] = k.KeyType()
-	jwk["kid"] = k.KeyID()
-	jwk["crv"] = k.CurveName()
-
-	xBytes := k.X.Bytes()
-	yBytes := k.Y.Bytes()
-	octetLength := (k.Params().BitSize + 7) >> 3
-	// MUST include leading zeros in the output so that x, y are each
-	// *octetLength* bytes long.
-	xBuf := make([]byte, octetLength-len(xBytes), octetLength)
-	yBuf := make([]byte, octetLength-len(yBytes), octetLength)
-	xBuf = append(xBuf, xBytes...)
-	yBuf = append(yBuf, yBytes...)
-
-	jwk["x"] = joseBase64UrlEncode(xBuf)
-	jwk["y"] = joseBase64UrlEncode(yBuf)
-
-	return jwk
-}
-
-// MarshalJSON serializes this Public Key using the JWK JSON serialization format for
-// elliptic curve keys.
-func (k *ecPublicKey) MarshalJSON() (data []byte, err error) {
-	return json.Marshal(k.toMap())
-}
-
-// PEMBlock serializes this Public Key to DER-encoded PKIX format.
-func (k *ecPublicKey) PEMBlock() (*pem.Block, error) {
-	derBytes, err := x509.MarshalPKIXPublicKey(k.PublicKey)
-	if err != nil {
-		return nil, fmt.Errorf("unable to serialize EC PublicKey to DER-encoded PKIX format: %s", err)
-	}
-	k.extended["kid"] = k.KeyID() // For display purposes.
-	return createPemBlock("PUBLIC KEY", derBytes, k.extended)
-}
-
-func (k *ecPublicKey) AddExtendedField(field string, value interface{}) {
-	k.extended[field] = value
-}
-
-func (k *ecPublicKey) GetExtendedField(field string) interface{} {
-	v, ok := k.extended[field]
-	if !ok {
-		return nil
-	}
-	return v
-}
-
-func ecPublicKeyFromMap(jwk map[string]interface{}) (*ecPublicKey, error) {
-	// JWK key type (kty) has already been determined to be "EC".
-	// Need to extract 'crv', 'x', 'y', and 'kid' and check for
-	// consistency.
-
-	// Get the curve identifier value.
-	crv, err := stringFromMap(jwk, "crv")
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Public Key curve identifier: %s", err)
-	}
-
-	var (
-		curve  elliptic.Curve
-		sigAlg *signatureAlgorithm
-	)
-
-	switch {
-	case crv == "P-256":
-		curve = elliptic.P256()
-		sigAlg = es256
-	case crv == "P-384":
-		curve = elliptic.P384()
-		sigAlg = es384
-	case crv == "P-521":
-		curve = elliptic.P521()
-		sigAlg = es512
-	default:
-		return nil, fmt.Errorf("JWK EC Public Key curve identifier not supported: %q\n", crv)
-	}
-
-	// Get the X and Y coordinates for the public key point.
-	xB64Url, err := stringFromMap(jwk, "x")
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Public Key x-coordinate: %s", err)
-	}
-	x, err := parseECCoordinate(xB64Url, curve)
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Public Key x-coordinate: %s", err)
-	}
-
-	yB64Url, err := stringFromMap(jwk, "y")
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Public Key y-coordinate: %s", err)
-	}
-	y, err := parseECCoordinate(yB64Url, curve)
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Public Key y-coordinate: %s", err)
-	}
-
-	key := &ecPublicKey{
-		PublicKey: &ecdsa.PublicKey{Curve: curve, X: x, Y: y},
-		curveName: crv, signatureAlgorithm: sigAlg,
-	}
-
-	// Key ID is optional too, but if it exists, it should match the key.
-	_, ok := jwk["kid"]
-	if ok {
-		kid, err := stringFromMap(jwk, "kid")
-		if err != nil {
-			return nil, fmt.Errorf("JWK EC Public Key ID: %s", err)
-		}
-		if kid != key.KeyID() {
-			return nil, fmt.Errorf("JWK EC Public Key ID does not match: %s", kid)
-		}
-	}
-
-	key.extended = jwk
-
-	return key, nil
-}
-
-/*
- * EC DSA PRIVATE KEY
- */
-
-// ecPrivateKey implements a JWK Private Key using elliptic curve digital signature
-// algorithms.
-type ecPrivateKey struct {
-	ecPublicKey
-	*ecdsa.PrivateKey
-}
-
-func fromECPrivateKey(cryptoPrivateKey *ecdsa.PrivateKey) (*ecPrivateKey, error) {
-	publicKey, err := fromECPublicKey(&cryptoPrivateKey.PublicKey)
-	if err != nil {
-		return nil, err
-	}
-
-	return &ecPrivateKey{*publicKey, cryptoPrivateKey}, nil
-}
-
-// PublicKey returns the Public Key data associated with this Private Key.
-func (k *ecPrivateKey) PublicKey() PublicKey {
-	return &k.ecPublicKey
-}
-
-func (k *ecPrivateKey) String() string {
-	return fmt.Sprintf("EC Private Key <%s>", k.KeyID())
-}
-
-// Sign signs the data read from the io.Reader using a signature algorithm supported
-// by the elliptic curve private key. If the specified hashing algorithm is
-// supported by this key, that hash function is used to generate the signature
-// otherwise the the default hashing algorithm for this key is used. Returns
-// the signature and the name of the JWK signature algorithm used, e.g.,
-// "ES256", "ES384", "ES512".
-func (k *ecPrivateKey) Sign(data io.Reader, hashID crypto.Hash) (signature []byte, alg string, err error) {
-	// Generate a signature of the data using the internal alg.
-	// The given hashId is only a suggestion, and since EC keys only support
-	// on signature/hash algorithm given the curve name, we disregard it for
-	// the elliptic curve JWK signature implementation.
-	hasher := k.signatureAlgorithm.HashID().New()
-	_, err = io.Copy(hasher, data)
-	if err != nil {
-		return nil, "", fmt.Errorf("error reading data to sign: %s", err)
-	}
-	hash := hasher.Sum(nil)
-
-	r, s, err := ecdsa.Sign(rand.Reader, k.PrivateKey, hash)
-	if err != nil {
-		return nil, "", fmt.Errorf("error producing signature: %s", err)
-	}
-	rBytes, sBytes := r.Bytes(), s.Bytes()
-	octetLength := (k.ecPublicKey.Params().BitSize + 7) >> 3
-	// MUST include leading zeros in the output
-	rBuf := make([]byte, octetLength-len(rBytes), octetLength)
-	sBuf := make([]byte, octetLength-len(sBytes), octetLength)
-
-	rBuf = append(rBuf, rBytes...)
-	sBuf = append(sBuf, sBytes...)
-
-	signature = append(rBuf, sBuf...)
-	alg = k.signatureAlgorithm.HeaderParam()
-
-	return
-}
-
-// CryptoPrivateKey returns the internal object which can be used as a
-// crypto.PublicKey for use with other standard library operations. The type
-// is either *rsa.PublicKey or *ecdsa.PublicKey
-func (k *ecPrivateKey) CryptoPrivateKey() crypto.PrivateKey {
-	return k.PrivateKey
-}
-
-func (k *ecPrivateKey) toMap() map[string]interface{} {
-	jwk := k.ecPublicKey.toMap()
-
-	dBytes := k.D.Bytes()
-	// The length of this octet string MUST be ceiling(log-base-2(n)/8)
-	// octets (where n is the order of the curve). This is because the private
-	// key d must be in the interval [1, n-1] so the bitlength of d should be
-	// no larger than the bitlength of n-1. The easiest way to find the octet
-	// length is to take bitlength(n-1), add 7 to force a carry, and shift this
-	// bit sequence right by 3, which is essentially dividing by 8 and adding
-	// 1 if there is any remainder. Thus, the private key value d should be
-	// output to (bitlength(n-1)+7)>>3 octets.
-	n := k.ecPublicKey.Params().N
-	octetLength := (new(big.Int).Sub(n, big.NewInt(1)).BitLen() + 7) >> 3
-	// Create a buffer with the necessary zero-padding.
-	dBuf := make([]byte, octetLength-len(dBytes), octetLength)
-	dBuf = append(dBuf, dBytes...)
-
-	jwk["d"] = joseBase64UrlEncode(dBuf)
-
-	return jwk
-}
-
-// MarshalJSON serializes this Private Key using the JWK JSON serialization format for
-// elliptic curve keys.
-func (k *ecPrivateKey) MarshalJSON() (data []byte, err error) {
-	return json.Marshal(k.toMap())
-}
-
-// PEMBlock serializes this Private Key to DER-encoded PKIX format.
-func (k *ecPrivateKey) PEMBlock() (*pem.Block, error) {
-	derBytes, err := x509.MarshalECPrivateKey(k.PrivateKey)
-	if err != nil {
-		return nil, fmt.Errorf("unable to serialize EC PrivateKey to DER-encoded PKIX format: %s", err)
-	}
-	k.extended["keyID"] = k.KeyID() // For display purposes.
-	return createPemBlock("EC PRIVATE KEY", derBytes, k.extended)
-}
-
-func ecPrivateKeyFromMap(jwk map[string]interface{}) (*ecPrivateKey, error) {
-	dB64Url, err := stringFromMap(jwk, "d")
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Private Key: %s", err)
-	}
-
-	// JWK key type (kty) has already been determined to be "EC".
-	// Need to extract the public key information, then extract the private
-	// key value 'd'.
-	publicKey, err := ecPublicKeyFromMap(jwk)
-	if err != nil {
-		return nil, err
-	}
-
-	d, err := parseECPrivateParam(dB64Url, publicKey.Curve)
-	if err != nil {
-		return nil, fmt.Errorf("JWK EC Private Key d-param: %s", err)
-	}
-
-	key := &ecPrivateKey{
-		ecPublicKey: *publicKey,
-		PrivateKey: &ecdsa.PrivateKey{
-			PublicKey: *publicKey.PublicKey,
-			D:         d,
-		},
-	}
-
-	return key, nil
-}
-
-/*
- *	Key Generation Functions.
- */
-
-func generateECPrivateKey(curve elliptic.Curve) (k *ecPrivateKey, err error) {
-	k = new(ecPrivateKey)
-	k.PrivateKey, err = ecdsa.GenerateKey(curve, rand.Reader)
-	if err != nil {
-		return nil, err
-	}
-
-	k.ecPublicKey.PublicKey = &k.PrivateKey.PublicKey
-	k.extended = make(map[string]interface{})
-
-	return
-}
-
-// GenerateECP256PrivateKey generates a key pair using elliptic curve P-256.
-func GenerateECP256PrivateKey() (PrivateKey, error) {
-	k, err := generateECPrivateKey(elliptic.P256())
-	if err != nil {
-		return nil, fmt.Errorf("error generating EC P-256 key: %s", err)
-	}
-
-	k.curveName = "P-256"
-	k.signatureAlgorithm = es256
-
-	return k, nil
-}
-
-// GenerateECP384PrivateKey generates a key pair using elliptic curve P-384.
-func GenerateECP384PrivateKey() (PrivateKey, error) {
-	k, err := generateECPrivateKey(elliptic.P384())
-	if err != nil {
-		return nil, fmt.Errorf("error generating EC P-384 key: %s", err)
-	}
-
-	k.curveName = "P-384"
-	k.signatureAlgorithm = es384
-
-	return k, nil
-}
-
-// GenerateECP521PrivateKey generates aß key pair using elliptic curve P-521.
-func GenerateECP521PrivateKey() (PrivateKey, error) {
-	k, err := generateECPrivateKey(elliptic.P521())
-	if err != nil {
-		return nil, fmt.Errorf("error generating EC P-521 key: %s", err)
-	}
-
-	k.curveName = "P-521"
-	k.signatureAlgorithm = es512
-
-	return k, nil
-}
diff --git a/vendor/github.com/docker/libtrust/filter.go b/vendor/github.com/docker/libtrust/filter.go
deleted file mode 100644
index 5b2b4fca6f..0000000000
--- a/vendor/github.com/docker/libtrust/filter.go
+++ /dev/null
@@ -1,50 +0,0 @@
-package libtrust
-
-import (
-	"path/filepath"
-)
-
-// FilterByHosts filters the list of PublicKeys to only those which contain a
-// 'hosts' pattern which matches the given host. If *includeEmpty* is true,
-// then keys which do not specify any hosts are also returned.
-func FilterByHosts(keys []PublicKey, host string, includeEmpty bool) ([]PublicKey, error) {
-	filtered := make([]PublicKey, 0, len(keys))
-
-	for _, pubKey := range keys {
-		var hosts []string
-		switch v := pubKey.GetExtendedField("hosts").(type) {
-		case []string:
-			hosts = v
-		case []interface{}:
-			for _, value := range v {
-				h, ok := value.(string)
-				if !ok {
-					continue
-				}
-				hosts = append(hosts, h)
-			}
-		}
-
-		if len(hosts) == 0 {
-			if includeEmpty {
-				filtered = append(filtered, pubKey)
-			}
-			continue
-		}
-
-		// Check if any hosts match pattern
-		for _, hostPattern := range hosts {
-			match, err := filepath.Match(hostPattern, host)
-			if err != nil {
-				return nil, err
-			}
-
-			if match {
-				filtered = append(filtered, pubKey)
-				continue
-			}
-		}
-	}
-
-	return filtered, nil
-}
diff --git a/vendor/github.com/docker/libtrust/hash.go b/vendor/github.com/docker/libtrust/hash.go
deleted file mode 100644
index a2df787dd9..0000000000
--- a/vendor/github.com/docker/libtrust/hash.go
+++ /dev/null
@@ -1,56 +0,0 @@
-package libtrust
-
-import (
-	"crypto"
-	_ "crypto/sha256" // Registrer SHA224 and SHA256
-	_ "crypto/sha512" // Registrer SHA384 and SHA512
-	"fmt"
-)
-
-type signatureAlgorithm struct {
-	algHeaderParam string
-	hashID         crypto.Hash
-}
-
-func (h *signatureAlgorithm) HeaderParam() string {
-	return h.algHeaderParam
-}
-
-func (h *signatureAlgorithm) HashID() crypto.Hash {
-	return h.hashID
-}
-
-var (
-	rs256 = &signatureAlgorithm{"RS256", crypto.SHA256}
-	rs384 = &signatureAlgorithm{"RS384", crypto.SHA384}
-	rs512 = &signatureAlgorithm{"RS512", crypto.SHA512}
-	es256 = &signatureAlgorithm{"ES256", crypto.SHA256}
-	es384 = &signatureAlgorithm{"ES384", crypto.SHA384}
-	es512 = &signatureAlgorithm{"ES512", crypto.SHA512}
-)
-
-func rsaSignatureAlgorithmByName(alg string) (*signatureAlgorithm, error) {
-	switch {
-	case alg == "RS256":
-		return rs256, nil
-	case alg == "RS384":
-		return rs384, nil
-	case alg == "RS512":
-		return rs512, nil
-	default:
-		return nil, fmt.Errorf("RSA Digital Signature Algorithm %q not supported", alg)
-	}
-}
-
-func rsaPKCS1v15SignatureAlgorithmForHashID(hashID crypto.Hash) *signatureAlgorithm {
-	switch {
-	case hashID == crypto.SHA512:
-		return rs512
-	case hashID == crypto.SHA384:
-		return rs384
-	case hashID == crypto.SHA256:
-		fallthrough
-	default:
-		return rs256
-	}
-}
diff --git a/vendor/github.com/docker/libtrust/jsonsign.go b/vendor/github.com/docker/libtrust/jsonsign.go
deleted file mode 100644
index cb2ca9a769..0000000000
--- a/vendor/github.com/docker/libtrust/jsonsign.go
+++ /dev/null
@@ -1,657 +0,0 @@
-package libtrust
-
-import (
-	"bytes"
-	"crypto"
-	"crypto/x509"
-	"encoding/base64"
-	"encoding/json"
-	"errors"
-	"fmt"
-	"sort"
-	"time"
-	"unicode"
-)
-
-var (
-	// ErrInvalidSignContent is used when the content to be signed is invalid.
-	ErrInvalidSignContent = errors.New("invalid sign content")
-
-	// ErrInvalidJSONContent is used when invalid json is encountered.
-	ErrInvalidJSONContent = errors.New("invalid json content")
-
-	// ErrMissingSignatureKey is used when the specified signature key
-	// does not exist in the JSON content.
-	ErrMissingSignatureKey = errors.New("missing signature key")
-)
-
-type jsHeader struct {
-	JWK       PublicKey `json:"jwk,omitempty"`
-	Algorithm string    `json:"alg"`
-	Chain     []string  `json:"x5c,omitempty"`
-}
-
-type jsSignature struct {
-	Header    jsHeader `json:"header"`
-	Signature string   `json:"signature"`
-	Protected string   `json:"protected,omitempty"`
-}
-
-type jsSignaturesSorted []jsSignature
-
-func (jsbkid jsSignaturesSorted) Swap(i, j int) { jsbkid[i], jsbkid[j] = jsbkid[j], jsbkid[i] }
-func (jsbkid jsSignaturesSorted) Len() int      { return len(jsbkid) }
-
-func (jsbkid jsSignaturesSorted) Less(i, j int) bool {
-	ki, kj := jsbkid[i].Header.JWK.KeyID(), jsbkid[j].Header.JWK.KeyID()
-	si, sj := jsbkid[i].Signature, jsbkid[j].Signature
-
-	if ki == kj {
-		return si < sj
-	}
-
-	return ki < kj
-}
-
-type signKey struct {
-	PrivateKey
-	Chain []*x509.Certificate
-}
-
-// JSONSignature represents a signature of a json object.
-type JSONSignature struct {
-	payload      string
-	signatures   []jsSignature
-	indent       string
-	formatLength int
-	formatTail   []byte
-}
-
-func newJSONSignature() *JSONSignature {
-	return &JSONSignature{
-		signatures: make([]jsSignature, 0, 1),
-	}
-}
-
-// Payload returns the encoded payload of the signature. This
-// payload should not be signed directly
-func (js *JSONSignature) Payload() ([]byte, error) {
-	return joseBase64UrlDecode(js.payload)
-}
-
-func (js *JSONSignature) protectedHeader() (string, error) {
-	protected := map[string]interface{}{
-		"formatLength": js.formatLength,
-		"formatTail":   joseBase64UrlEncode(js.formatTail),
-		"time":         time.Now().UTC().Format(time.RFC3339),
-	}
-	protectedBytes, err := json.Marshal(protected)
-	if err != nil {
-		return "", err
-	}
-
-	return joseBase64UrlEncode(protectedBytes), nil
-}
-
-func (js *JSONSignature) signBytes(protectedHeader string) ([]byte, error) {
-	buf := make([]byte, len(js.payload)+len(protectedHeader)+1)
-	copy(buf, protectedHeader)
-	buf[len(protectedHeader)] = '.'
-	copy(buf[len(protectedHeader)+1:], js.payload)
-	return buf, nil
-}
-
-// Sign adds a signature using the given private key.
-func (js *JSONSignature) Sign(key PrivateKey) error {
-	protected, err := js.protectedHeader()
-	if err != nil {
-		return err
-	}
-	signBytes, err := js.signBytes(protected)
-	if err != nil {
-		return err
-	}
-	sigBytes, algorithm, err := key.Sign(bytes.NewReader(signBytes), crypto.SHA256)
-	if err != nil {
-		return err
-	}
-
-	js.signatures = append(js.signatures, jsSignature{
-		Header: jsHeader{
-			JWK:       key.PublicKey(),
-			Algorithm: algorithm,
-		},
-		Signature: joseBase64UrlEncode(sigBytes),
-		Protected: protected,
-	})
-
-	return nil
-}
-
-// SignWithChain adds a signature using the given private key
-// and setting the x509 chain. The public key of the first element
-// in the chain must be the public key corresponding with the sign key.
-func (js *JSONSignature) SignWithChain(key PrivateKey, chain []*x509.Certificate) error {
-	// Ensure key.Chain[0] is public key for key
-	//key.Chain.PublicKey
-	//key.PublicKey().CryptoPublicKey()
-
-	// Verify chain
-	protected, err := js.protectedHeader()
-	if err != nil {
-		return err
-	}
-	signBytes, err := js.signBytes(protected)
-	if err != nil {
-		return err
-	}
-	sigBytes, algorithm, err := key.Sign(bytes.NewReader(signBytes), crypto.SHA256)
-	if err != nil {
-		return err
-	}
-
-	header := jsHeader{
-		Chain:     make([]string, len(chain)),
-		Algorithm: algorithm,
-	}
-
-	for i, cert := range chain {
-		header.Chain[i] = base64.StdEncoding.EncodeToString(cert.Raw)
-	}
-
-	js.signatures = append(js.signatures, jsSignature{
-		Header:    header,
-		Signature: joseBase64UrlEncode(sigBytes),
-		Protected: protected,
-	})
-
-	return nil
-}
-
-// Verify verifies all the signatures and returns the list of
-// public keys used to sign. Any x509 chains are not checked.
-func (js *JSONSignature) Verify() ([]PublicKey, error) {
-	keys := make([]PublicKey, len(js.signatures))
-	for i, signature := range js.signatures {
-		signBytes, err := js.signBytes(signature.Protected)
-		if err != nil {
-			return nil, err
-		}
-		var publicKey PublicKey
-		if len(signature.Header.Chain) > 0 {
-			certBytes, err := base64.StdEncoding.DecodeString(signature.Header.Chain[0])
-			if err != nil {
-				return nil, err
-			}
-			cert, err := x509.ParseCertificate(certBytes)
-			if err != nil {
-				return nil, err
-			}
-			publicKey, err = FromCryptoPublicKey(cert.PublicKey)
-			if err != nil {
-				return nil, err
-			}
-		} else if signature.Header.JWK != nil {
-			publicKey = signature.Header.JWK
-		} else {
-			return nil, errors.New("missing public key")
-		}
-
-		sigBytes, err := joseBase64UrlDecode(signature.Signature)
-		if err != nil {
-			return nil, err
-		}
-
-		err = publicKey.Verify(bytes.NewReader(signBytes), signature.Header.Algorithm, sigBytes)
-		if err != nil {
-			return nil, err
-		}
-
-		keys[i] = publicKey
-	}
-	return keys, nil
-}
-
-// VerifyChains verifies all the signatures and the chains associated
-// with each signature and returns the list of verified chains.
-// Signatures without an x509 chain are not checked.
-func (js *JSONSignature) VerifyChains(ca *x509.CertPool) ([][]*x509.Certificate, error) {
-	chains := make([][]*x509.Certificate, 0, len(js.signatures))
-	for _, signature := range js.signatures {
-		signBytes, err := js.signBytes(signature.Protected)
-		if err != nil {
-			return nil, err
-		}
-		var publicKey PublicKey
-		if len(signature.Header.Chain) > 0 {
-			certBytes, err := base64.StdEncoding.DecodeString(signature.Header.Chain[0])
-			if err != nil {
-				return nil, err
-			}
-			cert, err := x509.ParseCertificate(certBytes)
-			if err != nil {
-				return nil, err
-			}
-			publicKey, err = FromCryptoPublicKey(cert.PublicKey)
-			if err != nil {
-				return nil, err
-			}
-			intermediates := x509.NewCertPool()
-			if len(signature.Header.Chain) > 1 {
-				intermediateChain := signature.Header.Chain[1:]
-				for i := range intermediateChain {
-					certBytes, err := base64.StdEncoding.DecodeString(intermediateChain[i])
-					if err != nil {
-						return nil, err
-					}
-					intermediate, err := x509.ParseCertificate(certBytes)
-					if err != nil {
-						return nil, err
-					}
-					intermediates.AddCert(intermediate)
-				}
-			}
-
-			verifyOptions := x509.VerifyOptions{
-				Intermediates: intermediates,
-				Roots:         ca,
-			}
-
-			verifiedChains, err := cert.Verify(verifyOptions)
-			if err != nil {
-				return nil, err
-			}
-			chains = append(chains, verifiedChains...)
-
-			sigBytes, err := joseBase64UrlDecode(signature.Signature)
-			if err != nil {
-				return nil, err
-			}
-
-			err = publicKey.Verify(bytes.NewReader(signBytes), signature.Header.Algorithm, sigBytes)
-			if err != nil {
-				return nil, err
-			}
-		}
-
-	}
-	return chains, nil
-}
-
-// JWS returns JSON serialized JWS according to
-// http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-31#section-7.2
-func (js *JSONSignature) JWS() ([]byte, error) {
-	if len(js.signatures) == 0 {
-		return nil, errors.New("missing signature")
-	}
-
-	sort.Sort(jsSignaturesSorted(js.signatures))
-
-	jsonMap := map[string]interface{}{
-		"payload":    js.payload,
-		"signatures": js.signatures,
-	}
-
-	return json.MarshalIndent(jsonMap, "", "   ")
-}
-
-func notSpace(r rune) bool {
-	return !unicode.IsSpace(r)
-}
-
-func detectJSONIndent(jsonContent []byte) (indent string) {
-	if len(jsonContent) > 2 && jsonContent[0] == '{' && jsonContent[1] == '\n' {
-		quoteIndex := bytes.IndexRune(jsonContent[1:], '"')
-		if quoteIndex > 0 {
-			indent = string(jsonContent[2 : quoteIndex+1])
-		}
-	}
-	return
-}
-
-type jsParsedHeader struct {
-	JWK       json.RawMessage `json:"jwk"`
-	Algorithm string          `json:"alg"`
-	Chain     []string        `json:"x5c"`
-}
-
-type jsParsedSignature struct {
-	Header    jsParsedHeader `json:"header"`
-	Signature string         `json:"signature"`
-	Protected string         `json:"protected"`
-}
-
-// ParseJWS parses a JWS serialized JSON object into a Json Signature.
-func ParseJWS(content []byte) (*JSONSignature, error) {
-	type jsParsed struct {
-		Payload    string              `json:"payload"`
-		Signatures []jsParsedSignature `json:"signatures"`
-	}
-	parsed := &jsParsed{}
-	err := json.Unmarshal(content, parsed)
-	if err != nil {
-		return nil, err
-	}
-	if len(parsed.Signatures) == 0 {
-		return nil, errors.New("missing signatures")
-	}
-	payload, err := joseBase64UrlDecode(parsed.Payload)
-	if err != nil {
-		return nil, err
-	}
-
-	js, err := NewJSONSignature(payload)
-	if err != nil {
-		return nil, err
-	}
-	js.signatures = make([]jsSignature, len(parsed.Signatures))
-	for i, signature := range parsed.Signatures {
-		header := jsHeader{
-			Algorithm: signature.Header.Algorithm,
-		}
-		if signature.Header.Chain != nil {
-			header.Chain = signature.Header.Chain
-		}
-		if signature.Header.JWK != nil {
-			publicKey, err := UnmarshalPublicKeyJWK([]byte(signature.Header.JWK))
-			if err != nil {
-				return nil, err
-			}
-			header.JWK = publicKey
-		}
-		js.signatures[i] = jsSignature{
-			Header:    header,
-			Signature: signature.Signature,
-			Protected: signature.Protected,
-		}
-	}
-
-	return js, nil
-}
-
-// NewJSONSignature returns a new unsigned JWS from a json byte array.
-// JSONSignature will need to be signed before serializing or storing.
-// Optionally, one or more signatures can be provided as byte buffers,
-// containing serialized JWS signatures, to assemble a fully signed JWS
-// package. It is the callers responsibility to ensure uniqueness of the
-// provided signatures.
-func NewJSONSignature(content []byte, signatures ...[]byte) (*JSONSignature, error) {
-	var dataMap map[string]interface{}
-	err := json.Unmarshal(content, &dataMap)
-	if err != nil {
-		return nil, err
-	}
-
-	js := newJSONSignature()
-	js.indent = detectJSONIndent(content)
-
-	js.payload = joseBase64UrlEncode(content)
-
-	// Find trailing } and whitespace, put in protected header
-	closeIndex := bytes.LastIndexFunc(content, notSpace)
-	if content[closeIndex] != '}' {
-		return nil, ErrInvalidJSONContent
-	}
-	lastRuneIndex := bytes.LastIndexFunc(content[:closeIndex], notSpace)
-	if content[lastRuneIndex] == ',' {
-		return nil, ErrInvalidJSONContent
-	}
-	js.formatLength = lastRuneIndex + 1
-	js.formatTail = content[js.formatLength:]
-
-	if len(signatures) > 0 {
-		for _, signature := range signatures {
-			var parsedJSig jsParsedSignature
-
-			if err := json.Unmarshal(signature, &parsedJSig); err != nil {
-				return nil, err
-			}
-
-			// TODO(stevvooe): A lot of the code below is repeated in
-			// ParseJWS. It will require more refactoring to fix that.
-			jsig := jsSignature{
-				Header: jsHeader{
-					Algorithm: parsedJSig.Header.Algorithm,
-				},
-				Signature: parsedJSig.Signature,
-				Protected: parsedJSig.Protected,
-			}
-
-			if parsedJSig.Header.Chain != nil {
-				jsig.Header.Chain = parsedJSig.Header.Chain
-			}
-
-			if parsedJSig.Header.JWK != nil {
-				publicKey, err := UnmarshalPublicKeyJWK([]byte(parsedJSig.Header.JWK))
-				if err != nil {
-					return nil, err
-				}
-				jsig.Header.JWK = publicKey
-			}
-
-			js.signatures = append(js.signatures, jsig)
-		}
-	}
-
-	return js, nil
-}
-
-// NewJSONSignatureFromMap returns a new unsigned JSONSignature from a map or
-// struct. JWS will need to be signed before serializing or storing.
-func NewJSONSignatureFromMap(content interface{}) (*JSONSignature, error) {
-	switch content.(type) {
-	case map[string]interface{}:
-	case struct{}:
-	default:
-		return nil, errors.New("invalid data type")
-	}
-
-	js := newJSONSignature()
-	js.indent = "   "
-
-	payload, err := json.MarshalIndent(content, "", js.indent)
-	if err != nil {
-		return nil, err
-	}
-	js.payload = joseBase64UrlEncode(payload)
-
-	// Remove '\n}' from formatted section, put in protected header
-	js.formatLength = len(payload) - 2
-	js.formatTail = payload[js.formatLength:]
-
-	return js, nil
-}
-
-func readIntFromMap(key string, m map[string]interface{}) (int, bool) {
-	value, ok := m[key]
-	if !ok {
-		return 0, false
-	}
-	switch v := value.(type) {
-	case int:
-		return v, true
-	case float64:
-		return int(v), true
-	default:
-		return 0, false
-	}
-}
-
-func readStringFromMap(key string, m map[string]interface{}) (v string, ok bool) {
-	value, ok := m[key]
-	if !ok {
-		return "", false
-	}
-	v, ok = value.(string)
-	return
-}
-
-// ParsePrettySignature parses a formatted signature into a
-// JSON signature. If the signatures are missing the format information
-// an error is thrown. The formatted signature must be created by
-// the same method as format signature.
-func ParsePrettySignature(content []byte, signatureKey string) (*JSONSignature, error) {
-	var contentMap map[string]json.RawMessage
-	err := json.Unmarshal(content, &contentMap)
-	if err != nil {
-		return nil, fmt.Errorf("error unmarshalling content: %s", err)
-	}
-	sigMessage, ok := contentMap[signatureKey]
-	if !ok {
-		return nil, ErrMissingSignatureKey
-	}
-
-	var signatureBlocks []jsParsedSignature
-	err = json.Unmarshal([]byte(sigMessage), &signatureBlocks)
-	if err != nil {
-		return nil, fmt.Errorf("error unmarshalling signatures: %s", err)
-	}
-
-	js := newJSONSignature()
-	js.signatures = make([]jsSignature, len(signatureBlocks))
-
-	for i, signatureBlock := range signatureBlocks {
-		protectedBytes, err := joseBase64UrlDecode(signatureBlock.Protected)
-		if err != nil {
-			return nil, fmt.Errorf("base64 decode error: %s", err)
-		}
-		var protectedHeader map[string]interface{}
-		err = json.Unmarshal(protectedBytes, &protectedHeader)
-		if err != nil {
-			return nil, fmt.Errorf("error unmarshalling protected header: %s", err)
-		}
-
-		formatLength, ok := readIntFromMap("formatLength", protectedHeader)
-		if !ok {
-			return nil, errors.New("missing formatted length")
-		}
-		encodedTail, ok := readStringFromMap("formatTail", protectedHeader)
-		if !ok {
-			return nil, errors.New("missing formatted tail")
-		}
-		formatTail, err := joseBase64UrlDecode(encodedTail)
-		if err != nil {
-			return nil, fmt.Errorf("base64 decode error on tail: %s", err)
-		}
-		if js.formatLength == 0 {
-			js.formatLength = formatLength
-		} else if js.formatLength != formatLength {
-			return nil, errors.New("conflicting format length")
-		}
-		if len(js.formatTail) == 0 {
-			js.formatTail = formatTail
-		} else if bytes.Compare(js.formatTail, formatTail) != 0 {
-			return nil, errors.New("conflicting format tail")
-		}
-
-		header := jsHeader{
-			Algorithm: signatureBlock.Header.Algorithm,
-			Chain:     signatureBlock.Header.Chain,
-		}
-		if signatureBlock.Header.JWK != nil {
-			publicKey, err := UnmarshalPublicKeyJWK([]byte(signatureBlock.Header.JWK))
-			if err != nil {
-				return nil, fmt.Errorf("error unmarshalling public key: %s", err)
-			}
-			header.JWK = publicKey
-		}
-		js.signatures[i] = jsSignature{
-			Header:    header,
-			Signature: signatureBlock.Signature,
-			Protected: signatureBlock.Protected,
-		}
-	}
-	if js.formatLength > len(content) {
-		return nil, errors.New("invalid format length")
-	}
-	formatted := make([]byte, js.formatLength+len(js.formatTail))
-	copy(formatted, content[:js.formatLength])
-	copy(formatted[js.formatLength:], js.formatTail)
-	js.indent = detectJSONIndent(formatted)
-	js.payload = joseBase64UrlEncode(formatted)
-
-	return js, nil
-}
-
-// PrettySignature formats a json signature into an easy to read
-// single json serialized object.
-func (js *JSONSignature) PrettySignature(signatureKey string) ([]byte, error) {
-	if len(js.signatures) == 0 {
-		return nil, errors.New("no signatures")
-	}
-	payload, err := joseBase64UrlDecode(js.payload)
-	if err != nil {
-		return nil, err
-	}
-	payload = payload[:js.formatLength]
-
-	sort.Sort(jsSignaturesSorted(js.signatures))
-
-	var marshalled []byte
-	var marshallErr error
-	if js.indent != "" {
-		marshalled, marshallErr = json.MarshalIndent(js.signatures, js.indent, js.indent)
-	} else {
-		marshalled, marshallErr = json.Marshal(js.signatures)
-	}
-	if marshallErr != nil {
-		return nil, marshallErr
-	}
-
-	buf := bytes.NewBuffer(make([]byte, 0, len(payload)+len(marshalled)+34))
-	buf.Write(payload)
-	buf.WriteByte(',')
-	if js.indent != "" {
-		buf.WriteByte('\n')
-		buf.WriteString(js.indent)
-		buf.WriteByte('"')
-		buf.WriteString(signatureKey)
-		buf.WriteString("\": ")
-		buf.Write(marshalled)
-		buf.WriteByte('\n')
-	} else {
-		buf.WriteByte('"')
-		buf.WriteString(signatureKey)
-		buf.WriteString("\":")
-		buf.Write(marshalled)
-	}
-	buf.WriteByte('}')
-
-	return buf.Bytes(), nil
-}
-
-// Signatures provides the signatures on this JWS as opaque blobs, sorted by
-// keyID. These blobs can be stored and reassembled with payloads. Internally,
-// they are simply marshaled json web signatures but implementations should
-// not rely on this.
-func (js *JSONSignature) Signatures() ([][]byte, error) {
-	sort.Sort(jsSignaturesSorted(js.signatures))
-
-	var sb [][]byte
-	for _, jsig := range js.signatures {
-		p, err := json.Marshal(jsig)
-		if err != nil {
-			return nil, err
-		}
-
-		sb = append(sb, p)
-	}
-
-	return sb, nil
-}
-
-// Merge combines the signatures from one or more other signatures into the
-// method receiver. If the payloads differ for any argument, an error will be
-// returned and the receiver will not be modified.
-func (js *JSONSignature) Merge(others ...*JSONSignature) error {
-	merged := js.signatures
-	for _, other := range others {
-		if js.payload != other.payload {
-			return fmt.Errorf("payloads differ from merge target")
-		}
-		merged = append(merged, other.signatures...)
-	}
-
-	js.signatures = merged
-	return nil
-}
diff --git a/vendor/github.com/docker/libtrust/key.go b/vendor/github.com/docker/libtrust/key.go
deleted file mode 100644
index 73642db2a8..0000000000
--- a/vendor/github.com/docker/libtrust/key.go
+++ /dev/null
@@ -1,253 +0,0 @@
-package libtrust
-
-import (
-	"crypto"
-	"crypto/ecdsa"
-	"crypto/rsa"
-	"crypto/x509"
-	"encoding/json"
-	"encoding/pem"
-	"errors"
-	"fmt"
-	"io"
-)
-
-// PublicKey is a generic interface for a Public Key.
-type PublicKey interface {
-	// KeyType returns the key type for this key. For elliptic curve keys,
-	// this value should be "EC". For RSA keys, this value should be "RSA".
-	KeyType() string
-	// KeyID returns a distinct identifier which is unique to this Public Key.
-	// The format generated by this library is a base32 encoding of a 240 bit
-	// hash of the public key data divided into 12 groups like so:
-	//    ABCD:EFGH:IJKL:MNOP:QRST:UVWX:YZ23:4567:ABCD:EFGH:IJKL:MNOP
-	KeyID() string
-	// Verify verifyies the signature of the data in the io.Reader using this
-	// Public Key. The alg parameter should identify the digital signature
-	// algorithm which was used to produce the signature and should be
-	// supported by this public key. Returns a nil error if the signature
-	// is valid.
-	Verify(data io.Reader, alg string, signature []byte) error
-	// CryptoPublicKey returns the internal object which can be used as a
-	// crypto.PublicKey for use with other standard library operations. The type
-	// is either *rsa.PublicKey or *ecdsa.PublicKey
-	CryptoPublicKey() crypto.PublicKey
-	// These public keys can be serialized to the standard JSON encoding for
-	// JSON Web Keys. See section 6 of the IETF draft RFC for JOSE JSON Web
-	// Algorithms.
-	MarshalJSON() ([]byte, error)
-	// These keys can also be serialized to the standard PEM encoding.
-	PEMBlock() (*pem.Block, error)
-	// The string representation of a key is its key type and ID.
-	String() string
-	AddExtendedField(string, interface{})
-	GetExtendedField(string) interface{}
-}
-
-// PrivateKey is a generic interface for a Private Key.
-type PrivateKey interface {
-	// A PrivateKey contains all fields and methods of a PublicKey of the
-	// same type. The MarshalJSON method also outputs the private key as a
-	// JSON Web Key, and the PEMBlock method outputs the private key as a
-	// PEM block.
-	PublicKey
-	// PublicKey returns the PublicKey associated with this PrivateKey.
-	PublicKey() PublicKey
-	// Sign signs the data read from the io.Reader using a signature algorithm
-	// supported by the private key. If the specified hashing algorithm is
-	// supported by this key, that hash function is used to generate the
-	// signature otherwise the the default hashing algorithm for this key is
-	// used. Returns the signature and identifier of the algorithm used.
-	Sign(data io.Reader, hashID crypto.Hash) (signature []byte, alg string, err error)
-	// CryptoPrivateKey returns the internal object which can be used as a
-	// crypto.PublicKey for use with other standard library operations. The
-	// type is either *rsa.PublicKey or *ecdsa.PublicKey
-	CryptoPrivateKey() crypto.PrivateKey
-}
-
-// FromCryptoPublicKey returns a libtrust PublicKey representation of the given
-// *ecdsa.PublicKey or *rsa.PublicKey. Returns a non-nil error when the given
-// key is of an unsupported type.
-func FromCryptoPublicKey(cryptoPublicKey crypto.PublicKey) (PublicKey, error) {
-	switch cryptoPublicKey := cryptoPublicKey.(type) {
-	case *ecdsa.PublicKey:
-		return fromECPublicKey(cryptoPublicKey)
-	case *rsa.PublicKey:
-		return fromRSAPublicKey(cryptoPublicKey), nil
-	default:
-		return nil, fmt.Errorf("public key type %T is not supported", cryptoPublicKey)
-	}
-}
-
-// FromCryptoPrivateKey returns a libtrust PrivateKey representation of the given
-// *ecdsa.PrivateKey or *rsa.PrivateKey. Returns a non-nil error when the given
-// key is of an unsupported type.
-func FromCryptoPrivateKey(cryptoPrivateKey crypto.PrivateKey) (PrivateKey, error) {
-	switch cryptoPrivateKey := cryptoPrivateKey.(type) {
-	case *ecdsa.PrivateKey:
-		return fromECPrivateKey(cryptoPrivateKey)
-	case *rsa.PrivateKey:
-		return fromRSAPrivateKey(cryptoPrivateKey), nil
-	default:
-		return nil, fmt.Errorf("private key type %T is not supported", cryptoPrivateKey)
-	}
-}
-
-// UnmarshalPublicKeyPEM parses the PEM encoded data and returns a libtrust
-// PublicKey or an error if there is a problem with the encoding.
-func UnmarshalPublicKeyPEM(data []byte) (PublicKey, error) {
-	pemBlock, _ := pem.Decode(data)
-	if pemBlock == nil {
-		return nil, errors.New("unable to find PEM encoded data")
-	} else if pemBlock.Type != "PUBLIC KEY" {
-		return nil, fmt.Errorf("unable to get PublicKey from PEM type: %s", pemBlock.Type)
-	}
-
-	return pubKeyFromPEMBlock(pemBlock)
-}
-
-// UnmarshalPublicKeyPEMBundle parses the PEM encoded data as a bundle of
-// PEM blocks appended one after the other and returns a slice of PublicKey
-// objects that it finds.
-func UnmarshalPublicKeyPEMBundle(data []byte) ([]PublicKey, error) {
-	pubKeys := []PublicKey{}
-
-	for {
-		var pemBlock *pem.Block
-		pemBlock, data = pem.Decode(data)
-		if pemBlock == nil {
-			break
-		} else if pemBlock.Type != "PUBLIC KEY" {
-			return nil, fmt.Errorf("unable to get PublicKey from PEM type: %s", pemBlock.Type)
-		}
-
-		pubKey, err := pubKeyFromPEMBlock(pemBlock)
-		if err != nil {
-			return nil, err
-		}
-
-		pubKeys = append(pubKeys, pubKey)
-	}
-
-	return pubKeys, nil
-}
-
-// UnmarshalPrivateKeyPEM parses the PEM encoded data and returns a libtrust
-// PrivateKey or an error if there is a problem with the encoding.
-func UnmarshalPrivateKeyPEM(data []byte) (PrivateKey, error) {
-	pemBlock, _ := pem.Decode(data)
-	if pemBlock == nil {
-		return nil, errors.New("unable to find PEM encoded data")
-	}
-
-	var key PrivateKey
-
-	switch {
-	case pemBlock.Type == "RSA PRIVATE KEY":
-		rsaPrivateKey, err := x509.ParsePKCS1PrivateKey(pemBlock.Bytes)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode RSA Private Key PEM data: %s", err)
-		}
-		key = fromRSAPrivateKey(rsaPrivateKey)
-	case pemBlock.Type == "EC PRIVATE KEY":
-		ecPrivateKey, err := x509.ParseECPrivateKey(pemBlock.Bytes)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode EC Private Key PEM data: %s", err)
-		}
-		key, err = fromECPrivateKey(ecPrivateKey)
-		if err != nil {
-			return nil, err
-		}
-	default:
-		return nil, fmt.Errorf("unable to get PrivateKey from PEM type: %s", pemBlock.Type)
-	}
-
-	addPEMHeadersToKey(pemBlock, key.PublicKey())
-
-	return key, nil
-}
-
-// UnmarshalPublicKeyJWK unmarshals the given JSON Web Key into a generic
-// Public Key to be used with libtrust.
-func UnmarshalPublicKeyJWK(data []byte) (PublicKey, error) {
-	jwk := make(map[string]interface{})
-
-	err := json.Unmarshal(data, &jwk)
-	if err != nil {
-		return nil, fmt.Errorf(
-			"decoding JWK Public Key JSON data: %s\n", err,
-		)
-	}
-
-	// Get the Key Type value.
-	kty, err := stringFromMap(jwk, "kty")
-	if err != nil {
-		return nil, fmt.Errorf("JWK Public Key type: %s", err)
-	}
-
-	switch {
-	case kty == "EC":
-		// Call out to unmarshal EC public key.
-		return ecPublicKeyFromMap(jwk)
-	case kty == "RSA":
-		// Call out to unmarshal RSA public key.
-		return rsaPublicKeyFromMap(jwk)
-	default:
-		return nil, fmt.Errorf(
-			"JWK Public Key type not supported: %q\n", kty,
-		)
-	}
-}
-
-// UnmarshalPublicKeyJWKSet parses the JSON encoded data as a JSON Web Key Set
-// and returns a slice of Public Key objects.
-func UnmarshalPublicKeyJWKSet(data []byte) ([]PublicKey, error) {
-	rawKeys, err := loadJSONKeySetRaw(data)
-	if err != nil {
-		return nil, err
-	}
-
-	pubKeys := make([]PublicKey, 0, len(rawKeys))
-
-	for _, rawKey := range rawKeys {
-		pubKey, err := UnmarshalPublicKeyJWK(rawKey)
-		if err != nil {
-			return nil, err
-		}
-		pubKeys = append(pubKeys, pubKey)
-	}
-
-	return pubKeys, nil
-}
-
-// UnmarshalPrivateKeyJWK unmarshals the given JSON Web Key into a generic
-// Private Key to be used with libtrust.
-func UnmarshalPrivateKeyJWK(data []byte) (PrivateKey, error) {
-	jwk := make(map[string]interface{})
-
-	err := json.Unmarshal(data, &jwk)
-	if err != nil {
-		return nil, fmt.Errorf(
-			"decoding JWK Private Key JSON data: %s\n", err,
-		)
-	}
-
-	// Get the Key Type value.
-	kty, err := stringFromMap(jwk, "kty")
-	if err != nil {
-		return nil, fmt.Errorf("JWK Private Key type: %s", err)
-	}
-
-	switch {
-	case kty == "EC":
-		// Call out to unmarshal EC private key.
-		return ecPrivateKeyFromMap(jwk)
-	case kty == "RSA":
-		// Call out to unmarshal RSA private key.
-		return rsaPrivateKeyFromMap(jwk)
-	default:
-		return nil, fmt.Errorf(
-			"JWK Private Key type not supported: %q\n", kty,
-		)
-	}
-}
diff --git a/vendor/github.com/docker/libtrust/key_files.go b/vendor/github.com/docker/libtrust/key_files.go
deleted file mode 100644
index c526de5455..0000000000
--- a/vendor/github.com/docker/libtrust/key_files.go
+++ /dev/null
@@ -1,255 +0,0 @@
-package libtrust
-
-import (
-	"encoding/json"
-	"encoding/pem"
-	"errors"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"strings"
-)
-
-var (
-	// ErrKeyFileDoesNotExist indicates that the private key file does not exist.
-	ErrKeyFileDoesNotExist = errors.New("key file does not exist")
-)
-
-func readKeyFileBytes(filename string) ([]byte, error) {
-	data, err := ioutil.ReadFile(filename)
-	if err != nil {
-		if os.IsNotExist(err) {
-			err = ErrKeyFileDoesNotExist
-		} else {
-			err = fmt.Errorf("unable to read key file %s: %s", filename, err)
-		}
-
-		return nil, err
-	}
-
-	return data, nil
-}
-
-/*
-	Loading and Saving of Public and Private Keys in either PEM or JWK format.
-*/
-
-// LoadKeyFile opens the given filename and attempts to read a Private Key
-// encoded in either PEM or JWK format (if .json or .jwk file extension).
-func LoadKeyFile(filename string) (PrivateKey, error) {
-	contents, err := readKeyFileBytes(filename)
-	if err != nil {
-		return nil, err
-	}
-
-	var key PrivateKey
-
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		key, err = UnmarshalPrivateKeyJWK(contents)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode private key JWK: %s", err)
-		}
-	} else {
-		key, err = UnmarshalPrivateKeyPEM(contents)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode private key PEM: %s", err)
-		}
-	}
-
-	return key, nil
-}
-
-// LoadPublicKeyFile opens the given filename and attempts to read a Public Key
-// encoded in either PEM or JWK format (if .json or .jwk file extension).
-func LoadPublicKeyFile(filename string) (PublicKey, error) {
-	contents, err := readKeyFileBytes(filename)
-	if err != nil {
-		return nil, err
-	}
-
-	var key PublicKey
-
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		key, err = UnmarshalPublicKeyJWK(contents)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode public key JWK: %s", err)
-		}
-	} else {
-		key, err = UnmarshalPublicKeyPEM(contents)
-		if err != nil {
-			return nil, fmt.Errorf("unable to decode public key PEM: %s", err)
-		}
-	}
-
-	return key, nil
-}
-
-// SaveKey saves the given key to a file using the provided filename.
-// This process will overwrite any existing file at the provided location.
-func SaveKey(filename string, key PrivateKey) error {
-	var encodedKey []byte
-	var err error
-
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		// Encode in JSON Web Key format.
-		encodedKey, err = json.MarshalIndent(key, "", "    ")
-		if err != nil {
-			return fmt.Errorf("unable to encode private key JWK: %s", err)
-		}
-	} else {
-		// Encode in PEM format.
-		pemBlock, err := key.PEMBlock()
-		if err != nil {
-			return fmt.Errorf("unable to encode private key PEM: %s", err)
-		}
-		encodedKey = pem.EncodeToMemory(pemBlock)
-	}
-
-	err = ioutil.WriteFile(filename, encodedKey, os.FileMode(0600))
-	if err != nil {
-		return fmt.Errorf("unable to write private key file %s: %s", filename, err)
-	}
-
-	return nil
-}
-
-// SavePublicKey saves the given public key to the file.
-func SavePublicKey(filename string, key PublicKey) error {
-	var encodedKey []byte
-	var err error
-
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		// Encode in JSON Web Key format.
-		encodedKey, err = json.MarshalIndent(key, "", "    ")
-		if err != nil {
-			return fmt.Errorf("unable to encode public key JWK: %s", err)
-		}
-	} else {
-		// Encode in PEM format.
-		pemBlock, err := key.PEMBlock()
-		if err != nil {
-			return fmt.Errorf("unable to encode public key PEM: %s", err)
-		}
-		encodedKey = pem.EncodeToMemory(pemBlock)
-	}
-
-	err = ioutil.WriteFile(filename, encodedKey, os.FileMode(0644))
-	if err != nil {
-		return fmt.Errorf("unable to write public key file %s: %s", filename, err)
-	}
-
-	return nil
-}
-
-// Public Key Set files
-
-type jwkSet struct {
-	Keys []json.RawMessage `json:"keys"`
-}
-
-// LoadKeySetFile loads a key set
-func LoadKeySetFile(filename string) ([]PublicKey, error) {
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		return loadJSONKeySetFile(filename)
-	}
-
-	// Must be a PEM format file
-	return loadPEMKeySetFile(filename)
-}
-
-func loadJSONKeySetRaw(data []byte) ([]json.RawMessage, error) {
-	if len(data) == 0 {
-		// This is okay, just return an empty slice.
-		return []json.RawMessage{}, nil
-	}
-
-	keySet := jwkSet{}
-
-	err := json.Unmarshal(data, &keySet)
-	if err != nil {
-		return nil, fmt.Errorf("unable to decode JSON Web Key Set: %s", err)
-	}
-
-	return keySet.Keys, nil
-}
-
-func loadJSONKeySetFile(filename string) ([]PublicKey, error) {
-	contents, err := readKeyFileBytes(filename)
-	if err != nil && err != ErrKeyFileDoesNotExist {
-		return nil, err
-	}
-
-	return UnmarshalPublicKeyJWKSet(contents)
-}
-
-func loadPEMKeySetFile(filename string) ([]PublicKey, error) {
-	data, err := readKeyFileBytes(filename)
-	if err != nil && err != ErrKeyFileDoesNotExist {
-		return nil, err
-	}
-
-	return UnmarshalPublicKeyPEMBundle(data)
-}
-
-// AddKeySetFile adds a key to a key set
-func AddKeySetFile(filename string, key PublicKey) error {
-	if strings.HasSuffix(filename, ".json") || strings.HasSuffix(filename, ".jwk") {
-		return addKeySetJSONFile(filename, key)
-	}
-
-	// Must be a PEM format file
-	return addKeySetPEMFile(filename, key)
-}
-
-func addKeySetJSONFile(filename string, key PublicKey) error {
-	encodedKey, err := json.Marshal(key)
-	if err != nil {
-		return fmt.Errorf("unable to encode trusted client key: %s", err)
-	}
-
-	contents, err := readKeyFileBytes(filename)
-	if err != nil && err != ErrKeyFileDoesNotExist {
-		return err
-	}
-
-	rawEntries, err := loadJSONKeySetRaw(contents)
-	if err != nil {
-		return err
-	}
-
-	rawEntries = append(rawEntries, json.RawMessage(encodedKey))
-	entriesWrapper := jwkSet{Keys: rawEntries}
-
-	encodedEntries, err := json.MarshalIndent(entriesWrapper, "", "    ")
-	if err != nil {
-		return fmt.Errorf("unable to encode trusted client keys: %s", err)
-	}
-
-	err = ioutil.WriteFile(filename, encodedEntries, os.FileMode(0644))
-	if err != nil {
-		return fmt.Errorf("unable to write trusted client keys file %s: %s", filename, err)
-	}
-
-	return nil
-}
-
-func addKeySetPEMFile(filename string, key PublicKey) error {
-	// Encode to PEM, open file for appending, write PEM.
-	file, err := os.OpenFile(filename, os.O_CREATE|os.O_APPEND|os.O_RDWR, os.FileMode(0644))
-	if err != nil {
-		return fmt.Errorf("unable to open trusted client keys file %s: %s", filename, err)
-	}
-	defer file.Close()
-
-	pemBlock, err := key.PEMBlock()
-	if err != nil {
-		return fmt.Errorf("unable to encoded trusted key: %s", err)
-	}
-
-	_, err = file.Write(pem.EncodeToMemory(pemBlock))
-	if err != nil {
-		return fmt.Errorf("unable to write trusted keys file: %s", err)
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/docker/libtrust/key_manager.go b/vendor/github.com/docker/libtrust/key_manager.go
deleted file mode 100644
index 9a98ae3574..0000000000
--- a/vendor/github.com/docker/libtrust/key_manager.go
+++ /dev/null
@@ -1,175 +0,0 @@
-package libtrust
-
-import (
-	"crypto/tls"
-	"crypto/x509"
-	"fmt"
-	"io/ioutil"
-	"net"
-	"os"
-	"path"
-	"sync"
-)
-
-// ClientKeyManager manages client keys on the filesystem
-type ClientKeyManager struct {
-	key        PrivateKey
-	clientFile string
-	clientDir  string
-
-	clientLock sync.RWMutex
-	clients    []PublicKey
-
-	configLock sync.Mutex
-	configs    []*tls.Config
-}
-
-// NewClientKeyManager loads a new manager from a set of key files
-// and managed by the given private key.
-func NewClientKeyManager(trustKey PrivateKey, clientFile, clientDir string) (*ClientKeyManager, error) {
-	m := &ClientKeyManager{
-		key:        trustKey,
-		clientFile: clientFile,
-		clientDir:  clientDir,
-	}
-	if err := m.loadKeys(); err != nil {
-		return nil, err
-	}
-	// TODO Start watching file and directory
-
-	return m, nil
-}
-
-func (c *ClientKeyManager) loadKeys() (err error) {
-	// Load authorized keys file
-	var clients []PublicKey
-	if c.clientFile != "" {
-		clients, err = LoadKeySetFile(c.clientFile)
-		if err != nil {
-			return fmt.Errorf("unable to load authorized keys: %s", err)
-		}
-	}
-
-	// Add clients from authorized keys directory
-	files, err := ioutil.ReadDir(c.clientDir)
-	if err != nil && !os.IsNotExist(err) {
-		return fmt.Errorf("unable to open authorized keys directory: %s", err)
-	}
-	for _, f := range files {
-		if !f.IsDir() {
-			publicKey, err := LoadPublicKeyFile(path.Join(c.clientDir, f.Name()))
-			if err != nil {
-				return fmt.Errorf("unable to load authorized key file: %s", err)
-			}
-			clients = append(clients, publicKey)
-		}
-	}
-
-	c.clientLock.Lock()
-	c.clients = clients
-	c.clientLock.Unlock()
-
-	return nil
-}
-
-// RegisterTLSConfig registers a tls configuration to manager
-// such that any changes to the keys may be reflected in
-// the tls client CA pool
-func (c *ClientKeyManager) RegisterTLSConfig(tlsConfig *tls.Config) error {
-	c.clientLock.RLock()
-	certPool, err := GenerateCACertPool(c.key, c.clients)
-	if err != nil {
-		return fmt.Errorf("CA pool generation error: %s", err)
-	}
-	c.clientLock.RUnlock()
-
-	tlsConfig.ClientCAs = certPool
-
-	c.configLock.Lock()
-	c.configs = append(c.configs, tlsConfig)
-	c.configLock.Unlock()
-
-	return nil
-}
-
-// NewIdentityAuthTLSConfig creates a tls.Config for the server to use for
-// libtrust identity authentication for the domain specified
-func NewIdentityAuthTLSConfig(trustKey PrivateKey, clients *ClientKeyManager, addr string, domain string) (*tls.Config, error) {
-	tlsConfig := newTLSConfig()
-
-	tlsConfig.ClientAuth = tls.RequireAndVerifyClientCert
-	if err := clients.RegisterTLSConfig(tlsConfig); err != nil {
-		return nil, err
-	}
-
-	// Generate cert
-	ips, domains, err := parseAddr(addr)
-	if err != nil {
-		return nil, err
-	}
-	// add domain that it expects clients to use
-	domains = append(domains, domain)
-	x509Cert, err := GenerateSelfSignedServerCert(trustKey, domains, ips)
-	if err != nil {
-		return nil, fmt.Errorf("certificate generation error: %s", err)
-	}
-	tlsConfig.Certificates = []tls.Certificate{{
-		Certificate: [][]byte{x509Cert.Raw},
-		PrivateKey:  trustKey.CryptoPrivateKey(),
-		Leaf:        x509Cert,
-	}}
-
-	return tlsConfig, nil
-}
-
-// NewCertAuthTLSConfig creates a tls.Config for the server to use for
-// certificate authentication
-func NewCertAuthTLSConfig(caPath, certPath, keyPath string) (*tls.Config, error) {
-	tlsConfig := newTLSConfig()
-
-	cert, err := tls.LoadX509KeyPair(certPath, keyPath)
-	if err != nil {
-		return nil, fmt.Errorf("Couldn't load X509 key pair (%s, %s): %s. Key encrypted?", certPath, keyPath, err)
-	}
-	tlsConfig.Certificates = []tls.Certificate{cert}
-
-	// Verify client certificates against a CA?
-	if caPath != "" {
-		certPool := x509.NewCertPool()
-		file, err := ioutil.ReadFile(caPath)
-		if err != nil {
-			return nil, fmt.Errorf("Couldn't read CA certificate: %s", err)
-		}
-		certPool.AppendCertsFromPEM(file)
-
-		tlsConfig.ClientAuth = tls.RequireAndVerifyClientCert
-		tlsConfig.ClientCAs = certPool
-	}
-
-	return tlsConfig, nil
-}
-
-func newTLSConfig() *tls.Config {
-	return &tls.Config{
-		NextProtos: []string{"http/1.1"},
-		// Avoid fallback on insecure SSL protocols
-		MinVersion: tls.VersionTLS10,
-	}
-}
-
-// parseAddr parses an address into an array of IPs and domains
-func parseAddr(addr string) ([]net.IP, []string, error) {
-	host, _, err := net.SplitHostPort(addr)
-	if err != nil {
-		return nil, nil, err
-	}
-	var domains []string
-	var ips []net.IP
-	ip := net.ParseIP(host)
-	if ip != nil {
-		ips = []net.IP{ip}
-	} else {
-		domains = []string{host}
-	}
-	return ips, domains, nil
-}
diff --git a/vendor/github.com/docker/libtrust/rsa_key.go b/vendor/github.com/docker/libtrust/rsa_key.go
deleted file mode 100644
index dac4cacf20..0000000000
--- a/vendor/github.com/docker/libtrust/rsa_key.go
+++ /dev/null
@@ -1,427 +0,0 @@
-package libtrust
-
-import (
-	"crypto"
-	"crypto/rand"
-	"crypto/rsa"
-	"crypto/x509"
-	"encoding/json"
-	"encoding/pem"
-	"errors"
-	"fmt"
-	"io"
-	"math/big"
-)
-
-/*
- * RSA DSA PUBLIC KEY
- */
-
-// rsaPublicKey implements a JWK Public Key using RSA digital signature algorithms.
-type rsaPublicKey struct {
-	*rsa.PublicKey
-	extended map[string]interface{}
-}
-
-func fromRSAPublicKey(cryptoPublicKey *rsa.PublicKey) *rsaPublicKey {
-	return &rsaPublicKey{cryptoPublicKey, map[string]interface{}{}}
-}
-
-// KeyType returns the JWK key type for RSA keys, i.e., "RSA".
-func (k *rsaPublicKey) KeyType() string {
-	return "RSA"
-}
-
-// KeyID returns a distinct identifier which is unique to this Public Key.
-func (k *rsaPublicKey) KeyID() string {
-	return keyIDFromCryptoKey(k)
-}
-
-func (k *rsaPublicKey) String() string {
-	return fmt.Sprintf("RSA Public Key <%s>", k.KeyID())
-}
-
-// Verify verifyies the signature of the data in the io.Reader using this Public Key.
-// The alg parameter should be the name of the JWA digital signature algorithm
-// which was used to produce the signature and should be supported by this
-// public key. Returns a nil error if the signature is valid.
-func (k *rsaPublicKey) Verify(data io.Reader, alg string, signature []byte) error {
-	// Verify the signature of the given date, return non-nil error if valid.
-	sigAlg, err := rsaSignatureAlgorithmByName(alg)
-	if err != nil {
-		return fmt.Errorf("unable to verify Signature: %s", err)
-	}
-
-	hasher := sigAlg.HashID().New()
-	_, err = io.Copy(hasher, data)
-	if err != nil {
-		return fmt.Errorf("error reading data to sign: %s", err)
-	}
-	hash := hasher.Sum(nil)
-
-	err = rsa.VerifyPKCS1v15(k.PublicKey, sigAlg.HashID(), hash, signature)
-	if err != nil {
-		return fmt.Errorf("invalid %s signature: %s", sigAlg.HeaderParam(), err)
-	}
-
-	return nil
-}
-
-// CryptoPublicKey returns the internal object which can be used as a
-// crypto.PublicKey for use with other standard library operations. The type
-// is either *rsa.PublicKey or *ecdsa.PublicKey
-func (k *rsaPublicKey) CryptoPublicKey() crypto.PublicKey {
-	return k.PublicKey
-}
-
-func (k *rsaPublicKey) toMap() map[string]interface{} {
-	jwk := make(map[string]interface{})
-	for k, v := range k.extended {
-		jwk[k] = v
-	}
-	jwk["kty"] = k.KeyType()
-	jwk["kid"] = k.KeyID()
-	jwk["n"] = joseBase64UrlEncode(k.N.Bytes())
-	jwk["e"] = joseBase64UrlEncode(serializeRSAPublicExponentParam(k.E))
-
-	return jwk
-}
-
-// MarshalJSON serializes this Public Key using the JWK JSON serialization format for
-// RSA keys.
-func (k *rsaPublicKey) MarshalJSON() (data []byte, err error) {
-	return json.Marshal(k.toMap())
-}
-
-// PEMBlock serializes this Public Key to DER-encoded PKIX format.
-func (k *rsaPublicKey) PEMBlock() (*pem.Block, error) {
-	derBytes, err := x509.MarshalPKIXPublicKey(k.PublicKey)
-	if err != nil {
-		return nil, fmt.Errorf("unable to serialize RSA PublicKey to DER-encoded PKIX format: %s", err)
-	}
-	k.extended["kid"] = k.KeyID() // For display purposes.
-	return createPemBlock("PUBLIC KEY", derBytes, k.extended)
-}
-
-func (k *rsaPublicKey) AddExtendedField(field string, value interface{}) {
-	k.extended[field] = value
-}
-
-func (k *rsaPublicKey) GetExtendedField(field string) interface{} {
-	v, ok := k.extended[field]
-	if !ok {
-		return nil
-	}
-	return v
-}
-
-func rsaPublicKeyFromMap(jwk map[string]interface{}) (*rsaPublicKey, error) {
-	// JWK key type (kty) has already been determined to be "RSA".
-	// Need to extract 'n', 'e', and 'kid' and check for
-	// consistency.
-
-	// Get the modulus parameter N.
-	nB64Url, err := stringFromMap(jwk, "n")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Public Key modulus: %s", err)
-	}
-
-	n, err := parseRSAModulusParam(nB64Url)
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Public Key modulus: %s", err)
-	}
-
-	// Get the public exponent E.
-	eB64Url, err := stringFromMap(jwk, "e")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Public Key exponent: %s", err)
-	}
-
-	e, err := parseRSAPublicExponentParam(eB64Url)
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Public Key exponent: %s", err)
-	}
-
-	key := &rsaPublicKey{
-		PublicKey: &rsa.PublicKey{N: n, E: e},
-	}
-
-	// Key ID is optional, but if it exists, it should match the key.
-	_, ok := jwk["kid"]
-	if ok {
-		kid, err := stringFromMap(jwk, "kid")
-		if err != nil {
-			return nil, fmt.Errorf("JWK RSA Public Key ID: %s", err)
-		}
-		if kid != key.KeyID() {
-			return nil, fmt.Errorf("JWK RSA Public Key ID does not match: %s", kid)
-		}
-	}
-
-	if _, ok := jwk["d"]; ok {
-		return nil, fmt.Errorf("JWK RSA Public Key cannot contain private exponent")
-	}
-
-	key.extended = jwk
-
-	return key, nil
-}
-
-/*
- * RSA DSA PRIVATE KEY
- */
-
-// rsaPrivateKey implements a JWK Private Key using RSA digital signature algorithms.
-type rsaPrivateKey struct {
-	rsaPublicKey
-	*rsa.PrivateKey
-}
-
-func fromRSAPrivateKey(cryptoPrivateKey *rsa.PrivateKey) *rsaPrivateKey {
-	return &rsaPrivateKey{
-		*fromRSAPublicKey(&cryptoPrivateKey.PublicKey),
-		cryptoPrivateKey,
-	}
-}
-
-// PublicKey returns the Public Key data associated with this Private Key.
-func (k *rsaPrivateKey) PublicKey() PublicKey {
-	return &k.rsaPublicKey
-}
-
-func (k *rsaPrivateKey) String() string {
-	return fmt.Sprintf("RSA Private Key <%s>", k.KeyID())
-}
-
-// Sign signs the data read from the io.Reader using a signature algorithm supported
-// by the RSA private key. If the specified hashing algorithm is supported by
-// this key, that hash function is used to generate the signature otherwise the
-// the default hashing algorithm for this key is used. Returns the signature
-// and the name of the JWK signature algorithm used, e.g., "RS256", "RS384",
-// "RS512".
-func (k *rsaPrivateKey) Sign(data io.Reader, hashID crypto.Hash) (signature []byte, alg string, err error) {
-	// Generate a signature of the data using the internal alg.
-	sigAlg := rsaPKCS1v15SignatureAlgorithmForHashID(hashID)
-	hasher := sigAlg.HashID().New()
-
-	_, err = io.Copy(hasher, data)
-	if err != nil {
-		return nil, "", fmt.Errorf("error reading data to sign: %s", err)
-	}
-	hash := hasher.Sum(nil)
-
-	signature, err = rsa.SignPKCS1v15(rand.Reader, k.PrivateKey, sigAlg.HashID(), hash)
-	if err != nil {
-		return nil, "", fmt.Errorf("error producing signature: %s", err)
-	}
-
-	alg = sigAlg.HeaderParam()
-
-	return
-}
-
-// CryptoPrivateKey returns the internal object which can be used as a
-// crypto.PublicKey for use with other standard library operations. The type
-// is either *rsa.PublicKey or *ecdsa.PublicKey
-func (k *rsaPrivateKey) CryptoPrivateKey() crypto.PrivateKey {
-	return k.PrivateKey
-}
-
-func (k *rsaPrivateKey) toMap() map[string]interface{} {
-	k.Precompute() // Make sure the precomputed values are stored.
-	jwk := k.rsaPublicKey.toMap()
-
-	jwk["d"] = joseBase64UrlEncode(k.D.Bytes())
-	jwk["p"] = joseBase64UrlEncode(k.Primes[0].Bytes())
-	jwk["q"] = joseBase64UrlEncode(k.Primes[1].Bytes())
-	jwk["dp"] = joseBase64UrlEncode(k.Precomputed.Dp.Bytes())
-	jwk["dq"] = joseBase64UrlEncode(k.Precomputed.Dq.Bytes())
-	jwk["qi"] = joseBase64UrlEncode(k.Precomputed.Qinv.Bytes())
-
-	otherPrimes := k.Primes[2:]
-
-	if len(otherPrimes) > 0 {
-		otherPrimesInfo := make([]interface{}, len(otherPrimes))
-		for i, r := range otherPrimes {
-			otherPrimeInfo := make(map[string]string, 3)
-			otherPrimeInfo["r"] = joseBase64UrlEncode(r.Bytes())
-			crtVal := k.Precomputed.CRTValues[i]
-			otherPrimeInfo["d"] = joseBase64UrlEncode(crtVal.Exp.Bytes())
-			otherPrimeInfo["t"] = joseBase64UrlEncode(crtVal.Coeff.Bytes())
-			otherPrimesInfo[i] = otherPrimeInfo
-		}
-		jwk["oth"] = otherPrimesInfo
-	}
-
-	return jwk
-}
-
-// MarshalJSON serializes this Private Key using the JWK JSON serialization format for
-// RSA keys.
-func (k *rsaPrivateKey) MarshalJSON() (data []byte, err error) {
-	return json.Marshal(k.toMap())
-}
-
-// PEMBlock serializes this Private Key to DER-encoded PKIX format.
-func (k *rsaPrivateKey) PEMBlock() (*pem.Block, error) {
-	derBytes := x509.MarshalPKCS1PrivateKey(k.PrivateKey)
-	k.extended["keyID"] = k.KeyID() // For display purposes.
-	return createPemBlock("RSA PRIVATE KEY", derBytes, k.extended)
-}
-
-func rsaPrivateKeyFromMap(jwk map[string]interface{}) (*rsaPrivateKey, error) {
-	// The JWA spec for RSA Private Keys (draft rfc section 5.3.2) states that
-	// only the private key exponent 'd' is REQUIRED, the others are just for
-	// signature/decryption optimizations and SHOULD be included when the JWK
-	// is produced. We MAY choose to accept a JWK which only includes 'd', but
-	// we're going to go ahead and not choose to accept it without the extra
-	// fields. Only the 'oth' field will be optional (for multi-prime keys).
-	privateExponent, err := parseRSAPrivateKeyParamFromMap(jwk, "d")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key exponent: %s", err)
-	}
-	firstPrimeFactor, err := parseRSAPrivateKeyParamFromMap(jwk, "p")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key prime factor: %s", err)
-	}
-	secondPrimeFactor, err := parseRSAPrivateKeyParamFromMap(jwk, "q")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key prime factor: %s", err)
-	}
-	firstFactorCRT, err := parseRSAPrivateKeyParamFromMap(jwk, "dp")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key CRT exponent: %s", err)
-	}
-	secondFactorCRT, err := parseRSAPrivateKeyParamFromMap(jwk, "dq")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key CRT exponent: %s", err)
-	}
-	crtCoeff, err := parseRSAPrivateKeyParamFromMap(jwk, "qi")
-	if err != nil {
-		return nil, fmt.Errorf("JWK RSA Private Key CRT coefficient: %s", err)
-	}
-
-	var oth interface{}
-	if _, ok := jwk["oth"]; ok {
-		oth = jwk["oth"]
-		delete(jwk, "oth")
-	}
-
-	// JWK key type (kty) has already been determined to be "RSA".
-	// Need to extract the public key information, then extract the private
-	// key values.
-	publicKey, err := rsaPublicKeyFromMap(jwk)
-	if err != nil {
-		return nil, err
-	}
-
-	privateKey := &rsa.PrivateKey{
-		PublicKey: *publicKey.PublicKey,
-		D:         privateExponent,
-		Primes:    []*big.Int{firstPrimeFactor, secondPrimeFactor},
-		Precomputed: rsa.PrecomputedValues{
-			Dp:   firstFactorCRT,
-			Dq:   secondFactorCRT,
-			Qinv: crtCoeff,
-		},
-	}
-
-	if oth != nil {
-		// Should be an array of more JSON objects.
-		otherPrimesInfo, ok := oth.([]interface{})
-		if !ok {
-			return nil, errors.New("JWK RSA Private Key: Invalid other primes info: must be an array")
-		}
-		numOtherPrimeFactors := len(otherPrimesInfo)
-		if numOtherPrimeFactors == 0 {
-			return nil, errors.New("JWK RSA Privake Key: Invalid other primes info: must be absent or non-empty")
-		}
-		otherPrimeFactors := make([]*big.Int, numOtherPrimeFactors)
-		productOfPrimes := new(big.Int).Mul(firstPrimeFactor, secondPrimeFactor)
-		crtValues := make([]rsa.CRTValue, numOtherPrimeFactors)
-
-		for i, val := range otherPrimesInfo {
-			otherPrimeinfo, ok := val.(map[string]interface{})
-			if !ok {
-				return nil, errors.New("JWK RSA Private Key: Invalid other prime info: must be a JSON object")
-			}
-
-			otherPrimeFactor, err := parseRSAPrivateKeyParamFromMap(otherPrimeinfo, "r")
-			if err != nil {
-				return nil, fmt.Errorf("JWK RSA Private Key prime factor: %s", err)
-			}
-			otherFactorCRT, err := parseRSAPrivateKeyParamFromMap(otherPrimeinfo, "d")
-			if err != nil {
-				return nil, fmt.Errorf("JWK RSA Private Key CRT exponent: %s", err)
-			}
-			otherCrtCoeff, err := parseRSAPrivateKeyParamFromMap(otherPrimeinfo, "t")
-			if err != nil {
-				return nil, fmt.Errorf("JWK RSA Private Key CRT coefficient: %s", err)
-			}
-
-			crtValue := crtValues[i]
-			crtValue.Exp = otherFactorCRT
-			crtValue.Coeff = otherCrtCoeff
-			crtValue.R = productOfPrimes
-			otherPrimeFactors[i] = otherPrimeFactor
-			productOfPrimes = new(big.Int).Mul(productOfPrimes, otherPrimeFactor)
-		}
-
-		privateKey.Primes = append(privateKey.Primes, otherPrimeFactors...)
-		privateKey.Precomputed.CRTValues = crtValues
-	}
-
-	key := &rsaPrivateKey{
-		rsaPublicKey: *publicKey,
-		PrivateKey:   privateKey,
-	}
-
-	return key, nil
-}
-
-/*
- *	Key Generation Functions.
- */
-
-func generateRSAPrivateKey(bits int) (k *rsaPrivateKey, err error) {
-	k = new(rsaPrivateKey)
-	k.PrivateKey, err = rsa.GenerateKey(rand.Reader, bits)
-	if err != nil {
-		return nil, err
-	}
-
-	k.rsaPublicKey.PublicKey = &k.PrivateKey.PublicKey
-	k.extended = make(map[string]interface{})
-
-	return
-}
-
-// GenerateRSA2048PrivateKey generates a key pair using 2048-bit RSA.
-func GenerateRSA2048PrivateKey() (PrivateKey, error) {
-	k, err := generateRSAPrivateKey(2048)
-	if err != nil {
-		return nil, fmt.Errorf("error generating RSA 2048-bit key: %s", err)
-	}
-
-	return k, nil
-}
-
-// GenerateRSA3072PrivateKey generates a key pair using 3072-bit RSA.
-func GenerateRSA3072PrivateKey() (PrivateKey, error) {
-	k, err := generateRSAPrivateKey(3072)
-	if err != nil {
-		return nil, fmt.Errorf("error generating RSA 3072-bit key: %s", err)
-	}
-
-	return k, nil
-}
-
-// GenerateRSA4096PrivateKey generates a key pair using 4096-bit RSA.
-func GenerateRSA4096PrivateKey() (PrivateKey, error) {
-	k, err := generateRSAPrivateKey(4096)
-	if err != nil {
-		return nil, fmt.Errorf("error generating RSA 4096-bit key: %s", err)
-	}
-
-	return k, nil
-}
diff --git a/vendor/github.com/docker/libtrust/util.go b/vendor/github.com/docker/libtrust/util.go
deleted file mode 100644
index a5a101d3f1..0000000000
--- a/vendor/github.com/docker/libtrust/util.go
+++ /dev/null
@@ -1,363 +0,0 @@
-package libtrust
-
-import (
-	"bytes"
-	"crypto"
-	"crypto/elliptic"
-	"crypto/tls"
-	"crypto/x509"
-	"encoding/base32"
-	"encoding/base64"
-	"encoding/binary"
-	"encoding/pem"
-	"errors"
-	"fmt"
-	"math/big"
-	"net/url"
-	"os"
-	"path/filepath"
-	"strings"
-	"time"
-)
-
-// LoadOrCreateTrustKey will load a PrivateKey from the specified path
-func LoadOrCreateTrustKey(trustKeyPath string) (PrivateKey, error) {
-	if err := os.MkdirAll(filepath.Dir(trustKeyPath), 0700); err != nil {
-		return nil, err
-	}
-
-	trustKey, err := LoadKeyFile(trustKeyPath)
-	if err == ErrKeyFileDoesNotExist {
-		trustKey, err = GenerateECP256PrivateKey()
-		if err != nil {
-			return nil, fmt.Errorf("error generating key: %s", err)
-		}
-
-		if err := SaveKey(trustKeyPath, trustKey); err != nil {
-			return nil, fmt.Errorf("error saving key file: %s", err)
-		}
-
-		dir, file := filepath.Split(trustKeyPath)
-		if err := SavePublicKey(filepath.Join(dir, "public-"+file), trustKey.PublicKey()); err != nil {
-			return nil, fmt.Errorf("error saving public key file: %s", err)
-		}
-	} else if err != nil {
-		return nil, fmt.Errorf("error loading key file: %s", err)
-	}
-	return trustKey, nil
-}
-
-// NewIdentityAuthTLSClientConfig returns a tls.Config configured to use identity
-// based authentication from the specified dockerUrl, the rootConfigPath and
-// the server name to which it is connecting.
-// If trustUnknownHosts is true it will automatically add the host to the
-// known-hosts.json in rootConfigPath.
-func NewIdentityAuthTLSClientConfig(dockerUrl string, trustUnknownHosts bool, rootConfigPath string, serverName string) (*tls.Config, error) {
-	tlsConfig := newTLSConfig()
-
-	trustKeyPath := filepath.Join(rootConfigPath, "key.json")
-	knownHostsPath := filepath.Join(rootConfigPath, "known-hosts.json")
-
-	u, err := url.Parse(dockerUrl)
-	if err != nil {
-		return nil, fmt.Errorf("unable to parse machine url")
-	}
-
-	if u.Scheme == "unix" {
-		return nil, nil
-	}
-
-	addr := u.Host
-	proto := "tcp"
-
-	trustKey, err := LoadOrCreateTrustKey(trustKeyPath)
-	if err != nil {
-		return nil, fmt.Errorf("unable to load trust key: %s", err)
-	}
-
-	knownHosts, err := LoadKeySetFile(knownHostsPath)
-	if err != nil {
-		return nil, fmt.Errorf("could not load trusted hosts file: %s", err)
-	}
-
-	allowedHosts, err := FilterByHosts(knownHosts, addr, false)
-	if err != nil {
-		return nil, fmt.Errorf("error filtering hosts: %s", err)
-	}
-
-	certPool, err := GenerateCACertPool(trustKey, allowedHosts)
-	if err != nil {
-		return nil, fmt.Errorf("Could not create CA pool: %s", err)
-	}
-
-	tlsConfig.ServerName = serverName
-	tlsConfig.RootCAs = certPool
-
-	x509Cert, err := GenerateSelfSignedClientCert(trustKey)
-	if err != nil {
-		return nil, fmt.Errorf("certificate generation error: %s", err)
-	}
-
-	tlsConfig.Certificates = []tls.Certificate{{
-		Certificate: [][]byte{x509Cert.Raw},
-		PrivateKey:  trustKey.CryptoPrivateKey(),
-		Leaf:        x509Cert,
-	}}
-
-	tlsConfig.InsecureSkipVerify = true
-
-	testConn, err := tls.Dial(proto, addr, tlsConfig)
-	if err != nil {
-		return nil, fmt.Errorf("tls Handshake error: %s", err)
-	}
-
-	opts := x509.VerifyOptions{
-		Roots:         tlsConfig.RootCAs,
-		CurrentTime:   time.Now(),
-		DNSName:       tlsConfig.ServerName,
-		Intermediates: x509.NewCertPool(),
-	}
-
-	certs := testConn.ConnectionState().PeerCertificates
-	for i, cert := range certs {
-		if i == 0 {
-			continue
-		}
-		opts.Intermediates.AddCert(cert)
-	}
-
-	if _, err := certs[0].Verify(opts); err != nil {
-		if _, ok := err.(x509.UnknownAuthorityError); ok {
-			if trustUnknownHosts {
-				pubKey, err := FromCryptoPublicKey(certs[0].PublicKey)
-				if err != nil {
-					return nil, fmt.Errorf("error extracting public key from cert: %s", err)
-				}
-
-				pubKey.AddExtendedField("hosts", []string{addr})
-
-				if err := AddKeySetFile(knownHostsPath, pubKey); err != nil {
-					return nil, fmt.Errorf("error adding machine to known hosts: %s", err)
-				}
-			} else {
-				return nil, fmt.Errorf("unable to connect.  unknown host: %s", addr)
-			}
-		}
-	}
-
-	testConn.Close()
-	tlsConfig.InsecureSkipVerify = false
-
-	return tlsConfig, nil
-}
-
-// joseBase64UrlEncode encodes the given data using the standard base64 url
-// encoding format but with all trailing '=' characters omitted in accordance
-// with the jose specification.
-// http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-31#section-2
-func joseBase64UrlEncode(b []byte) string {
-	return strings.TrimRight(base64.URLEncoding.EncodeToString(b), "=")
-}
-
-// joseBase64UrlDecode decodes the given string using the standard base64 url
-// decoder but first adds the appropriate number of trailing '=' characters in
-// accordance with the jose specification.
-// http://tools.ietf.org/html/draft-ietf-jose-json-web-signature-31#section-2
-func joseBase64UrlDecode(s string) ([]byte, error) {
-	s = strings.Replace(s, "\n", "", -1)
-	s = strings.Replace(s, " ", "", -1)
-	switch len(s) % 4 {
-	case 0:
-	case 2:
-		s += "=="
-	case 3:
-		s += "="
-	default:
-		return nil, errors.New("illegal base64url string")
-	}
-	return base64.URLEncoding.DecodeString(s)
-}
-
-func keyIDEncode(b []byte) string {
-	s := strings.TrimRight(base32.StdEncoding.EncodeToString(b), "=")
-	var buf bytes.Buffer
-	var i int
-	for i = 0; i < len(s)/4-1; i++ {
-		start := i * 4
-		end := start + 4
-		buf.WriteString(s[start:end] + ":")
-	}
-	buf.WriteString(s[i*4:])
-	return buf.String()
-}
-
-func keyIDFromCryptoKey(pubKey PublicKey) string {
-	// Generate and return a 'libtrust' fingerprint of the public key.
-	// For an RSA key this should be:
-	//   SHA256(DER encoded ASN1)
-	// Then truncated to 240 bits and encoded into 12 base32 groups like so:
-	//   ABCD:EFGH:IJKL:MNOP:QRST:UVWX:YZ23:4567:ABCD:EFGH:IJKL:MNOP
-	derBytes, err := x509.MarshalPKIXPublicKey(pubKey.CryptoPublicKey())
-	if err != nil {
-		return ""
-	}
-	hasher := crypto.SHA256.New()
-	hasher.Write(derBytes)
-	return keyIDEncode(hasher.Sum(nil)[:30])
-}
-
-func stringFromMap(m map[string]interface{}, key string) (string, error) {
-	val, ok := m[key]
-	if !ok {
-		return "", fmt.Errorf("%q value not specified", key)
-	}
-
-	str, ok := val.(string)
-	if !ok {
-		return "", fmt.Errorf("%q value must be a string", key)
-	}
-	delete(m, key)
-
-	return str, nil
-}
-
-func parseECCoordinate(cB64Url string, curve elliptic.Curve) (*big.Int, error) {
-	curveByteLen := (curve.Params().BitSize + 7) >> 3
-
-	cBytes, err := joseBase64UrlDecode(cB64Url)
-	if err != nil {
-		return nil, fmt.Errorf("invalid base64 URL encoding: %s", err)
-	}
-	cByteLength := len(cBytes)
-	if cByteLength != curveByteLen {
-		return nil, fmt.Errorf("invalid number of octets: got %d, should be %d", cByteLength, curveByteLen)
-	}
-	return new(big.Int).SetBytes(cBytes), nil
-}
-
-func parseECPrivateParam(dB64Url string, curve elliptic.Curve) (*big.Int, error) {
-	dBytes, err := joseBase64UrlDecode(dB64Url)
-	if err != nil {
-		return nil, fmt.Errorf("invalid base64 URL encoding: %s", err)
-	}
-
-	// The length of this octet string MUST be ceiling(log-base-2(n)/8)
-	// octets (where n is the order of the curve). This is because the private
-	// key d must be in the interval [1, n-1] so the bitlength of d should be
-	// no larger than the bitlength of n-1. The easiest way to find the octet
-	// length is to take bitlength(n-1), add 7 to force a carry, and shift this
-	// bit sequence right by 3, which is essentially dividing by 8 and adding
-	// 1 if there is any remainder. Thus, the private key value d should be
-	// output to (bitlength(n-1)+7)>>3 octets.
-	n := curve.Params().N
-	octetLength := (new(big.Int).Sub(n, big.NewInt(1)).BitLen() + 7) >> 3
-	dByteLength := len(dBytes)
-
-	if dByteLength != octetLength {
-		return nil, fmt.Errorf("invalid number of octets: got %d, should be %d", dByteLength, octetLength)
-	}
-
-	return new(big.Int).SetBytes(dBytes), nil
-}
-
-func parseRSAModulusParam(nB64Url string) (*big.Int, error) {
-	nBytes, err := joseBase64UrlDecode(nB64Url)
-	if err != nil {
-		return nil, fmt.Errorf("invalid base64 URL encoding: %s", err)
-	}
-
-	return new(big.Int).SetBytes(nBytes), nil
-}
-
-func serializeRSAPublicExponentParam(e int) []byte {
-	// We MUST use the minimum number of octets to represent E.
-	// E is supposed to be 65537 for performance and security reasons
-	// and is what golang's rsa package generates, but it might be
-	// different if imported from some other generator.
-	buf := make([]byte, 4)
-	binary.BigEndian.PutUint32(buf, uint32(e))
-	var i int
-	for i = 0; i < 8; i++ {
-		if buf[i] != 0 {
-			break
-		}
-	}
-	return buf[i:]
-}
-
-func parseRSAPublicExponentParam(eB64Url string) (int, error) {
-	eBytes, err := joseBase64UrlDecode(eB64Url)
-	if err != nil {
-		return 0, fmt.Errorf("invalid base64 URL encoding: %s", err)
-	}
-	// Only the minimum number of bytes were used to represent E, but
-	// binary.BigEndian.Uint32 expects at least 4 bytes, so we need
-	// to add zero padding if necassary.
-	byteLen := len(eBytes)
-	buf := make([]byte, 4-byteLen, 4)
-	eBytes = append(buf, eBytes...)
-
-	return int(binary.BigEndian.Uint32(eBytes)), nil
-}
-
-func parseRSAPrivateKeyParamFromMap(m map[string]interface{}, key string) (*big.Int, error) {
-	b64Url, err := stringFromMap(m, key)
-	if err != nil {
-		return nil, err
-	}
-
-	paramBytes, err := joseBase64UrlDecode(b64Url)
-	if err != nil {
-		return nil, fmt.Errorf("invaled base64 URL encoding: %s", err)
-	}
-
-	return new(big.Int).SetBytes(paramBytes), nil
-}
-
-func createPemBlock(name string, derBytes []byte, headers map[string]interface{}) (*pem.Block, error) {
-	pemBlock := &pem.Block{Type: name, Bytes: derBytes, Headers: map[string]string{}}
-	for k, v := range headers {
-		switch val := v.(type) {
-		case string:
-			pemBlock.Headers[k] = val
-		case []string:
-			if k == "hosts" {
-				pemBlock.Headers[k] = strings.Join(val, ",")
-			} else {
-				// Return error, non-encodable type
-			}
-		default:
-			// Return error, non-encodable type
-		}
-	}
-
-	return pemBlock, nil
-}
-
-func pubKeyFromPEMBlock(pemBlock *pem.Block) (PublicKey, error) {
-	cryptoPublicKey, err := x509.ParsePKIXPublicKey(pemBlock.Bytes)
-	if err != nil {
-		return nil, fmt.Errorf("unable to decode Public Key PEM data: %s", err)
-	}
-
-	pubKey, err := FromCryptoPublicKey(cryptoPublicKey)
-	if err != nil {
-		return nil, err
-	}
-
-	addPEMHeadersToKey(pemBlock, pubKey)
-
-	return pubKey, nil
-}
-
-func addPEMHeadersToKey(pemBlock *pem.Block, pubKey PublicKey) {
-	for key, value := range pemBlock.Headers {
-		var safeVal interface{}
-		if key == "hosts" {
-			safeVal = strings.Split(value, ",")
-		} else {
-			safeVal = value
-		}
-		pubKey.AddExtendedField(key, safeVal)
-	}
-}
diff --git a/vendor/github.com/ghodss/yaml/LICENSE b/vendor/github.com/ghodss/yaml/LICENSE
deleted file mode 100644
index 7805d36de7..0000000000
--- a/vendor/github.com/ghodss/yaml/LICENSE
+++ /dev/null
@@ -1,50 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2014 Sam Ghods
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
-
-
-Copyright (c) 2012 The Go Authors. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-   * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-   * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-   * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/ghodss/yaml/fields.go b/vendor/github.com/ghodss/yaml/fields.go
deleted file mode 100644
index 5860074026..0000000000
--- a/vendor/github.com/ghodss/yaml/fields.go
+++ /dev/null
@@ -1,501 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-package yaml
-
-import (
-	"bytes"
-	"encoding"
-	"encoding/json"
-	"reflect"
-	"sort"
-	"strings"
-	"sync"
-	"unicode"
-	"unicode/utf8"
-)
-
-// indirect walks down v allocating pointers as needed,
-// until it gets to a non-pointer.
-// if it encounters an Unmarshaler, indirect stops and returns that.
-// if decodingNull is true, indirect stops at the last pointer so it can be set to nil.
-func indirect(v reflect.Value, decodingNull bool) (json.Unmarshaler, encoding.TextUnmarshaler, reflect.Value) {
-	// If v is a named type and is addressable,
-	// start with its address, so that if the type has pointer methods,
-	// we find them.
-	if v.Kind() != reflect.Ptr && v.Type().Name() != "" && v.CanAddr() {
-		v = v.Addr()
-	}
-	for {
-		// Load value from interface, but only if the result will be
-		// usefully addressable.
-		if v.Kind() == reflect.Interface && !v.IsNil() {
-			e := v.Elem()
-			if e.Kind() == reflect.Ptr && !e.IsNil() && (!decodingNull || e.Elem().Kind() == reflect.Ptr) {
-				v = e
-				continue
-			}
-		}
-
-		if v.Kind() != reflect.Ptr {
-			break
-		}
-
-		if v.Elem().Kind() != reflect.Ptr && decodingNull && v.CanSet() {
-			break
-		}
-		if v.IsNil() {
-			if v.CanSet() {
-				v.Set(reflect.New(v.Type().Elem()))
-			} else {
-				v = reflect.New(v.Type().Elem())
-			}
-		}
-		if v.Type().NumMethod() > 0 {
-			if u, ok := v.Interface().(json.Unmarshaler); ok {
-				return u, nil, reflect.Value{}
-			}
-			if u, ok := v.Interface().(encoding.TextUnmarshaler); ok {
-				return nil, u, reflect.Value{}
-			}
-		}
-		v = v.Elem()
-	}
-	return nil, nil, v
-}
-
-// A field represents a single field found in a struct.
-type field struct {
-	name      string
-	nameBytes []byte                 // []byte(name)
-	equalFold func(s, t []byte) bool // bytes.EqualFold or equivalent
-
-	tag       bool
-	index     []int
-	typ       reflect.Type
-	omitEmpty bool
-	quoted    bool
-}
-
-func fillField(f field) field {
-	f.nameBytes = []byte(f.name)
-	f.equalFold = foldFunc(f.nameBytes)
-	return f
-}
-
-// byName sorts field by name, breaking ties with depth,
-// then breaking ties with "name came from json tag", then
-// breaking ties with index sequence.
-type byName []field
-
-func (x byName) Len() int { return len(x) }
-
-func (x byName) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
-
-func (x byName) Less(i, j int) bool {
-	if x[i].name != x[j].name {
-		return x[i].name < x[j].name
-	}
-	if len(x[i].index) != len(x[j].index) {
-		return len(x[i].index) < len(x[j].index)
-	}
-	if x[i].tag != x[j].tag {
-		return x[i].tag
-	}
-	return byIndex(x).Less(i, j)
-}
-
-// byIndex sorts field by index sequence.
-type byIndex []field
-
-func (x byIndex) Len() int { return len(x) }
-
-func (x byIndex) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
-
-func (x byIndex) Less(i, j int) bool {
-	for k, xik := range x[i].index {
-		if k >= len(x[j].index) {
-			return false
-		}
-		if xik != x[j].index[k] {
-			return xik < x[j].index[k]
-		}
-	}
-	return len(x[i].index) < len(x[j].index)
-}
-
-// typeFields returns a list of fields that JSON should recognize for the given type.
-// The algorithm is breadth-first search over the set of structs to include - the top struct
-// and then any reachable anonymous structs.
-func typeFields(t reflect.Type) []field {
-	// Anonymous fields to explore at the current level and the next.
-	current := []field{}
-	next := []field{{typ: t}}
-
-	// Count of queued names for current level and the next.
-	count := map[reflect.Type]int{}
-	nextCount := map[reflect.Type]int{}
-
-	// Types already visited at an earlier level.
-	visited := map[reflect.Type]bool{}
-
-	// Fields found.
-	var fields []field
-
-	for len(next) > 0 {
-		current, next = next, current[:0]
-		count, nextCount = nextCount, map[reflect.Type]int{}
-
-		for _, f := range current {
-			if visited[f.typ] {
-				continue
-			}
-			visited[f.typ] = true
-
-			// Scan f.typ for fields to include.
-			for i := 0; i < f.typ.NumField(); i++ {
-				sf := f.typ.Field(i)
-				if sf.PkgPath != "" { // unexported
-					continue
-				}
-				tag := sf.Tag.Get("json")
-				if tag == "-" {
-					continue
-				}
-				name, opts := parseTag(tag)
-				if !isValidTag(name) {
-					name = ""
-				}
-				index := make([]int, len(f.index)+1)
-				copy(index, f.index)
-				index[len(f.index)] = i
-
-				ft := sf.Type
-				if ft.Name() == "" && ft.Kind() == reflect.Ptr {
-					// Follow pointer.
-					ft = ft.Elem()
-				}
-
-				// Record found field and index sequence.
-				if name != "" || !sf.Anonymous || ft.Kind() != reflect.Struct {
-					tagged := name != ""
-					if name == "" {
-						name = sf.Name
-					}
-					fields = append(fields, fillField(field{
-						name:      name,
-						tag:       tagged,
-						index:     index,
-						typ:       ft,
-						omitEmpty: opts.Contains("omitempty"),
-						quoted:    opts.Contains("string"),
-					}))
-					if count[f.typ] > 1 {
-						// If there were multiple instances, add a second,
-						// so that the annihilation code will see a duplicate.
-						// It only cares about the distinction between 1 or 2,
-						// so don't bother generating any more copies.
-						fields = append(fields, fields[len(fields)-1])
-					}
-					continue
-				}
-
-				// Record new anonymous struct to explore in next round.
-				nextCount[ft]++
-				if nextCount[ft] == 1 {
-					next = append(next, fillField(field{name: ft.Name(), index: index, typ: ft}))
-				}
-			}
-		}
-	}
-
-	sort.Sort(byName(fields))
-
-	// Delete all fields that are hidden by the Go rules for embedded fields,
-	// except that fields with JSON tags are promoted.
-
-	// The fields are sorted in primary order of name, secondary order
-	// of field index length. Loop over names; for each name, delete
-	// hidden fields by choosing the one dominant field that survives.
-	out := fields[:0]
-	for advance, i := 0, 0; i < len(fields); i += advance {
-		// One iteration per name.
-		// Find the sequence of fields with the name of this first field.
-		fi := fields[i]
-		name := fi.name
-		for advance = 1; i+advance < len(fields); advance++ {
-			fj := fields[i+advance]
-			if fj.name != name {
-				break
-			}
-		}
-		if advance == 1 { // Only one field with this name
-			out = append(out, fi)
-			continue
-		}
-		dominant, ok := dominantField(fields[i : i+advance])
-		if ok {
-			out = append(out, dominant)
-		}
-	}
-
-	fields = out
-	sort.Sort(byIndex(fields))
-
-	return fields
-}
-
-// dominantField looks through the fields, all of which are known to
-// have the same name, to find the single field that dominates the
-// others using Go's embedding rules, modified by the presence of
-// JSON tags. If there are multiple top-level fields, the boolean
-// will be false: This condition is an error in Go and we skip all
-// the fields.
-func dominantField(fields []field) (field, bool) {
-	// The fields are sorted in increasing index-length order. The winner
-	// must therefore be one with the shortest index length. Drop all
-	// longer entries, which is easy: just truncate the slice.
-	length := len(fields[0].index)
-	tagged := -1 // Index of first tagged field.
-	for i, f := range fields {
-		if len(f.index) > length {
-			fields = fields[:i]
-			break
-		}
-		if f.tag {
-			if tagged >= 0 {
-				// Multiple tagged fields at the same level: conflict.
-				// Return no field.
-				return field{}, false
-			}
-			tagged = i
-		}
-	}
-	if tagged >= 0 {
-		return fields[tagged], true
-	}
-	// All remaining fields have the same length. If there's more than one,
-	// we have a conflict (two fields named "X" at the same level) and we
-	// return no field.
-	if len(fields) > 1 {
-		return field{}, false
-	}
-	return fields[0], true
-}
-
-var fieldCache struct {
-	sync.RWMutex
-	m map[reflect.Type][]field
-}
-
-// cachedTypeFields is like typeFields but uses a cache to avoid repeated work.
-func cachedTypeFields(t reflect.Type) []field {
-	fieldCache.RLock()
-	f := fieldCache.m[t]
-	fieldCache.RUnlock()
-	if f != nil {
-		return f
-	}
-
-	// Compute fields without lock.
-	// Might duplicate effort but won't hold other computations back.
-	f = typeFields(t)
-	if f == nil {
-		f = []field{}
-	}
-
-	fieldCache.Lock()
-	if fieldCache.m == nil {
-		fieldCache.m = map[reflect.Type][]field{}
-	}
-	fieldCache.m[t] = f
-	fieldCache.Unlock()
-	return f
-}
-
-func isValidTag(s string) bool {
-	if s == "" {
-		return false
-	}
-	for _, c := range s {
-		switch {
-		case strings.ContainsRune("!#$%&()*+-./:<=>?@[]^_{|}~ ", c):
-			// Backslash and quote chars are reserved, but
-			// otherwise any punctuation chars are allowed
-			// in a tag name.
-		default:
-			if !unicode.IsLetter(c) && !unicode.IsDigit(c) {
-				return false
-			}
-		}
-	}
-	return true
-}
-
-const (
-	caseMask     = ^byte(0x20) // Mask to ignore case in ASCII.
-	kelvin       = '\u212a'
-	smallLongEss = '\u017f'
-)
-
-// foldFunc returns one of four different case folding equivalence
-// functions, from most general (and slow) to fastest:
-//
-// 1) bytes.EqualFold, if the key s contains any non-ASCII UTF-8
-// 2) equalFoldRight, if s contains special folding ASCII ('k', 'K', 's', 'S')
-// 3) asciiEqualFold, no special, but includes non-letters (including _)
-// 4) simpleLetterEqualFold, no specials, no non-letters.
-//
-// The letters S and K are special because they map to 3 runes, not just 2:
-//  * S maps to s and to U+017F 'ſ' Latin small letter long s
-//  * k maps to K and to U+212A 'K' Kelvin sign
-// See http://play.golang.org/p/tTxjOc0OGo
-//
-// The returned function is specialized for matching against s and
-// should only be given s. It's not curried for performance reasons.
-func foldFunc(s []byte) func(s, t []byte) bool {
-	nonLetter := false
-	special := false // special letter
-	for _, b := range s {
-		if b >= utf8.RuneSelf {
-			return bytes.EqualFold
-		}
-		upper := b & caseMask
-		if upper < 'A' || upper > 'Z' {
-			nonLetter = true
-		} else if upper == 'K' || upper == 'S' {
-			// See above for why these letters are special.
-			special = true
-		}
-	}
-	if special {
-		return equalFoldRight
-	}
-	if nonLetter {
-		return asciiEqualFold
-	}
-	return simpleLetterEqualFold
-}
-
-// equalFoldRight is a specialization of bytes.EqualFold when s is
-// known to be all ASCII (including punctuation), but contains an 's',
-// 'S', 'k', or 'K', requiring a Unicode fold on the bytes in t.
-// See comments on foldFunc.
-func equalFoldRight(s, t []byte) bool {
-	for _, sb := range s {
-		if len(t) == 0 {
-			return false
-		}
-		tb := t[0]
-		if tb < utf8.RuneSelf {
-			if sb != tb {
-				sbUpper := sb & caseMask
-				if 'A' <= sbUpper && sbUpper <= 'Z' {
-					if sbUpper != tb&caseMask {
-						return false
-					}
-				} else {
-					return false
-				}
-			}
-			t = t[1:]
-			continue
-		}
-		// sb is ASCII and t is not. t must be either kelvin
-		// sign or long s; sb must be s, S, k, or K.
-		tr, size := utf8.DecodeRune(t)
-		switch sb {
-		case 's', 'S':
-			if tr != smallLongEss {
-				return false
-			}
-		case 'k', 'K':
-			if tr != kelvin {
-				return false
-			}
-		default:
-			return false
-		}
-		t = t[size:]
-
-	}
-	if len(t) > 0 {
-		return false
-	}
-	return true
-}
-
-// asciiEqualFold is a specialization of bytes.EqualFold for use when
-// s is all ASCII (but may contain non-letters) and contains no
-// special-folding letters.
-// See comments on foldFunc.
-func asciiEqualFold(s, t []byte) bool {
-	if len(s) != len(t) {
-		return false
-	}
-	for i, sb := range s {
-		tb := t[i]
-		if sb == tb {
-			continue
-		}
-		if ('a' <= sb && sb <= 'z') || ('A' <= sb && sb <= 'Z') {
-			if sb&caseMask != tb&caseMask {
-				return false
-			}
-		} else {
-			return false
-		}
-	}
-	return true
-}
-
-// simpleLetterEqualFold is a specialization of bytes.EqualFold for
-// use when s is all ASCII letters (no underscores, etc) and also
-// doesn't contain 'k', 'K', 's', or 'S'.
-// See comments on foldFunc.
-func simpleLetterEqualFold(s, t []byte) bool {
-	if len(s) != len(t) {
-		return false
-	}
-	for i, b := range s {
-		if b&caseMask != t[i]&caseMask {
-			return false
-		}
-	}
-	return true
-}
-
-// tagOptions is the string following a comma in a struct field's "json"
-// tag, or the empty string. It does not include the leading comma.
-type tagOptions string
-
-// parseTag splits a struct field's json tag into its name and
-// comma-separated options.
-func parseTag(tag string) (string, tagOptions) {
-	if idx := strings.Index(tag, ","); idx != -1 {
-		return tag[:idx], tagOptions(tag[idx+1:])
-	}
-	return tag, tagOptions("")
-}
-
-// Contains reports whether a comma-separated list of options
-// contains a particular substr flag. substr must be surrounded by a
-// string boundary or commas.
-func (o tagOptions) Contains(optionName string) bool {
-	if len(o) == 0 {
-		return false
-	}
-	s := string(o)
-	for s != "" {
-		var next string
-		i := strings.Index(s, ",")
-		if i >= 0 {
-			s, next = s[:i], s[i+1:]
-		}
-		if s == optionName {
-			return true
-		}
-		s = next
-	}
-	return false
-}
diff --git a/vendor/github.com/ghodss/yaml/yaml.go b/vendor/github.com/ghodss/yaml/yaml.go
deleted file mode 100644
index 4fb4054a8b..0000000000
--- a/vendor/github.com/ghodss/yaml/yaml.go
+++ /dev/null
@@ -1,277 +0,0 @@
-package yaml
-
-import (
-	"bytes"
-	"encoding/json"
-	"fmt"
-	"reflect"
-	"strconv"
-
-	"gopkg.in/yaml.v2"
-)
-
-// Marshals the object into JSON then converts JSON to YAML and returns the
-// YAML.
-func Marshal(o interface{}) ([]byte, error) {
-	j, err := json.Marshal(o)
-	if err != nil {
-		return nil, fmt.Errorf("error marshaling into JSON: %v", err)
-	}
-
-	y, err := JSONToYAML(j)
-	if err != nil {
-		return nil, fmt.Errorf("error converting JSON to YAML: %v", err)
-	}
-
-	return y, nil
-}
-
-// Converts YAML to JSON then uses JSON to unmarshal into an object.
-func Unmarshal(y []byte, o interface{}) error {
-	vo := reflect.ValueOf(o)
-	j, err := yamlToJSON(y, &vo)
-	if err != nil {
-		return fmt.Errorf("error converting YAML to JSON: %v", err)
-	}
-
-	err = json.Unmarshal(j, o)
-	if err != nil {
-		return fmt.Errorf("error unmarshaling JSON: %v", err)
-	}
-
-	return nil
-}
-
-// Convert JSON to YAML.
-func JSONToYAML(j []byte) ([]byte, error) {
-	// Convert the JSON to an object.
-	var jsonObj interface{}
-	// We are using yaml.Unmarshal here (instead of json.Unmarshal) because the
-	// Go JSON library doesn't try to pick the right number type (int, float,
-	// etc.) when unmarshalling to interface{}, it just picks float64
-	// universally. go-yaml does go through the effort of picking the right
-	// number type, so we can preserve number type throughout this process.
-	err := yaml.Unmarshal(j, &jsonObj)
-	if err != nil {
-		return nil, err
-	}
-
-	// Marshal this object into YAML.
-	return yaml.Marshal(jsonObj)
-}
-
-// Convert YAML to JSON. Since JSON is a subset of YAML, passing JSON through
-// this method should be a no-op.
-//
-// Things YAML can do that are not supported by JSON:
-// * In YAML you can have binary and null keys in your maps. These are invalid
-//   in JSON. (int and float keys are converted to strings.)
-// * Binary data in YAML with the !!binary tag is not supported. If you want to
-//   use binary data with this library, encode the data as base64 as usual but do
-//   not use the !!binary tag in your YAML. This will ensure the original base64
-//   encoded data makes it all the way through to the JSON.
-func YAMLToJSON(y []byte) ([]byte, error) {
-	return yamlToJSON(y, nil)
-}
-
-func yamlToJSON(y []byte, jsonTarget *reflect.Value) ([]byte, error) {
-	// Convert the YAML to an object.
-	var yamlObj interface{}
-	err := yaml.Unmarshal(y, &yamlObj)
-	if err != nil {
-		return nil, err
-	}
-
-	// YAML objects are not completely compatible with JSON objects (e.g. you
-	// can have non-string keys in YAML). So, convert the YAML-compatible object
-	// to a JSON-compatible object, failing with an error if irrecoverable
-	// incompatibilties happen along the way.
-	jsonObj, err := convertToJSONableObject(yamlObj, jsonTarget)
-	if err != nil {
-		return nil, err
-	}
-
-	// Convert this object to JSON and return the data.
-	return json.Marshal(jsonObj)
-}
-
-func convertToJSONableObject(yamlObj interface{}, jsonTarget *reflect.Value) (interface{}, error) {
-	var err error
-
-	// Resolve jsonTarget to a concrete value (i.e. not a pointer or an
-	// interface). We pass decodingNull as false because we're not actually
-	// decoding into the value, we're just checking if the ultimate target is a
-	// string.
-	if jsonTarget != nil {
-		ju, tu, pv := indirect(*jsonTarget, false)
-		// We have a JSON or Text Umarshaler at this level, so we can't be trying
-		// to decode into a string.
-		if ju != nil || tu != nil {
-			jsonTarget = nil
-		} else {
-			jsonTarget = &pv
-		}
-	}
-
-	// If yamlObj is a number or a boolean, check if jsonTarget is a string -
-	// if so, coerce.  Else return normal.
-	// If yamlObj is a map or array, find the field that each key is
-	// unmarshaling to, and when you recurse pass the reflect.Value for that
-	// field back into this function.
-	switch typedYAMLObj := yamlObj.(type) {
-	case map[interface{}]interface{}:
-		// JSON does not support arbitrary keys in a map, so we must convert
-		// these keys to strings.
-		//
-		// From my reading of go-yaml v2 (specifically the resolve function),
-		// keys can only have the types string, int, int64, float64, binary
-		// (unsupported), or null (unsupported).
-		strMap := make(map[string]interface{})
-		for k, v := range typedYAMLObj {
-			// Resolve the key to a string first.
-			var keyString string
-			switch typedKey := k.(type) {
-			case string:
-				keyString = typedKey
-			case int:
-				keyString = strconv.Itoa(typedKey)
-			case int64:
-				// go-yaml will only return an int64 as a key if the system
-				// architecture is 32-bit and the key's value is between 32-bit
-				// and 64-bit. Otherwise the key type will simply be int.
-				keyString = strconv.FormatInt(typedKey, 10)
-			case float64:
-				// Stolen from go-yaml to use the same conversion to string as
-				// the go-yaml library uses to convert float to string when
-				// Marshaling.
-				s := strconv.FormatFloat(typedKey, 'g', -1, 32)
-				switch s {
-				case "+Inf":
-					s = ".inf"
-				case "-Inf":
-					s = "-.inf"
-				case "NaN":
-					s = ".nan"
-				}
-				keyString = s
-			case bool:
-				if typedKey {
-					keyString = "true"
-				} else {
-					keyString = "false"
-				}
-			default:
-				return nil, fmt.Errorf("Unsupported map key of type: %s, key: %+#v, value: %+#v",
-					reflect.TypeOf(k), k, v)
-			}
-
-			// jsonTarget should be a struct or a map. If it's a struct, find
-			// the field it's going to map to and pass its reflect.Value. If
-			// it's a map, find the element type of the map and pass the
-			// reflect.Value created from that type. If it's neither, just pass
-			// nil - JSON conversion will error for us if it's a real issue.
-			if jsonTarget != nil {
-				t := *jsonTarget
-				if t.Kind() == reflect.Struct {
-					keyBytes := []byte(keyString)
-					// Find the field that the JSON library would use.
-					var f *field
-					fields := cachedTypeFields(t.Type())
-					for i := range fields {
-						ff := &fields[i]
-						if bytes.Equal(ff.nameBytes, keyBytes) {
-							f = ff
-							break
-						}
-						// Do case-insensitive comparison.
-						if f == nil && ff.equalFold(ff.nameBytes, keyBytes) {
-							f = ff
-						}
-					}
-					if f != nil {
-						// Find the reflect.Value of the most preferential
-						// struct field.
-						jtf := t.Field(f.index[0])
-						strMap[keyString], err = convertToJSONableObject(v, &jtf)
-						if err != nil {
-							return nil, err
-						}
-						continue
-					}
-				} else if t.Kind() == reflect.Map {
-					// Create a zero value of the map's element type to use as
-					// the JSON target.
-					jtv := reflect.Zero(t.Type().Elem())
-					strMap[keyString], err = convertToJSONableObject(v, &jtv)
-					if err != nil {
-						return nil, err
-					}
-					continue
-				}
-			}
-			strMap[keyString], err = convertToJSONableObject(v, nil)
-			if err != nil {
-				return nil, err
-			}
-		}
-		return strMap, nil
-	case []interface{}:
-		// We need to recurse into arrays in case there are any
-		// map[interface{}]interface{}'s inside and to convert any
-		// numbers to strings.
-
-		// If jsonTarget is a slice (which it really should be), find the
-		// thing it's going to map to. If it's not a slice, just pass nil
-		// - JSON conversion will error for us if it's a real issue.
-		var jsonSliceElemValue *reflect.Value
-		if jsonTarget != nil {
-			t := *jsonTarget
-			if t.Kind() == reflect.Slice {
-				// By default slices point to nil, but we need a reflect.Value
-				// pointing to a value of the slice type, so we create one here.
-				ev := reflect.Indirect(reflect.New(t.Type().Elem()))
-				jsonSliceElemValue = &ev
-			}
-		}
-
-		// Make and use a new array.
-		arr := make([]interface{}, len(typedYAMLObj))
-		for i, v := range typedYAMLObj {
-			arr[i], err = convertToJSONableObject(v, jsonSliceElemValue)
-			if err != nil {
-				return nil, err
-			}
-		}
-		return arr, nil
-	default:
-		// If the target type is a string and the YAML type is a number,
-		// convert the YAML type to a string.
-		if jsonTarget != nil && (*jsonTarget).Kind() == reflect.String {
-			// Based on my reading of go-yaml, it may return int, int64,
-			// float64, or uint64.
-			var s string
-			switch typedVal := typedYAMLObj.(type) {
-			case int:
-				s = strconv.FormatInt(int64(typedVal), 10)
-			case int64:
-				s = strconv.FormatInt(typedVal, 10)
-			case float64:
-				s = strconv.FormatFloat(typedVal, 'g', -1, 32)
-			case uint64:
-				s = strconv.FormatUint(typedVal, 10)
-			case bool:
-				if typedVal {
-					s = "true"
-				} else {
-					s = "false"
-				}
-			}
-			if len(s) > 0 {
-				yamlObj = interface{}(s)
-			}
-		}
-		return yamlObj, nil
-	}
-
-	return nil, nil
-}
diff --git a/vendor/github.com/gogo/protobuf/AUTHORS b/vendor/github.com/gogo/protobuf/AUTHORS
deleted file mode 100644
index 3d97fc7a29..0000000000
--- a/vendor/github.com/gogo/protobuf/AUTHORS
+++ /dev/null
@@ -1,15 +0,0 @@
-# This is the official list of GoGo authors for copyright purposes.
-# This file is distinct from the CONTRIBUTORS file, which
-# lists people.  For example, employees are listed in CONTRIBUTORS,
-# but not in AUTHORS, because the employer holds the copyright.
-
-# Names should be added to this file as one of
-#     Organization's name
-#     Individual's name <submission email address>
-#     Individual's name <submission email address> <email2> <emailN>
-
-# Please keep the list sorted.
-
-Sendgrid, Inc
-Vastech SA (PTY) LTD
-Walter Schulze <awalterschulze@gmail.com>
diff --git a/vendor/github.com/gogo/protobuf/CONTRIBUTORS b/vendor/github.com/gogo/protobuf/CONTRIBUTORS
deleted file mode 100644
index 1b4f6c208a..0000000000
--- a/vendor/github.com/gogo/protobuf/CONTRIBUTORS
+++ /dev/null
@@ -1,23 +0,0 @@
-Anton Povarov <anton.povarov@gmail.com>
-Brian Goff <cpuguy83@gmail.com>
-Clayton Coleman <ccoleman@redhat.com>
-Denis Smirnov <denis.smirnov.91@gmail.com>
-DongYun Kang <ceram1000@gmail.com>
-Dwayne Schultz <dschultz@pivotal.io>
-Georg Apitz <gapitz@pivotal.io>
-Gustav Paul <gustav.paul@gmail.com>
-Johan Brandhorst <johan.brandhorst@gmail.com>
-John Shahid <jvshahid@gmail.com>
-John Tuley <john@tuley.org>
-Laurent <laurent@adyoulike.com>
-Patrick Lee <patrick@dropbox.com>
-Peter Edge <peter.edge@gmail.com>
-Roger Johansson <rogeralsing@gmail.com>
-Sam Nguyen <sam.nguyen@sendgrid.com>
-Sergio Arbeo <serabe@gmail.com>
-Stephen J Day <stephen.day@docker.com>
-Tamir Duberstein <tamird@gmail.com>
-Todd Eisenberger <teisenberger@dropbox.com>
-Tormod Erevik Lea <tormodlea@gmail.com>
-Vyacheslav Kim <kane@sendgrid.com>
-Walter Schulze <awalterschulze@gmail.com>
diff --git a/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS b/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
deleted file mode 100644
index b368efb7f2..0000000000
--- a/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
+++ /dev/null
@@ -1,5 +0,0 @@
-The contributors to the Go protobuf repository:
-
-# This source code was written by the Go contributors.
-# The master list of contributors is in the main Go distribution,
-# visible at http://tip.golang.org/CONTRIBUTORS.
\ No newline at end of file
diff --git a/vendor/github.com/gogo/protobuf/LICENSE b/vendor/github.com/gogo/protobuf/LICENSE
deleted file mode 100644
index 7be0cc7b62..0000000000
--- a/vendor/github.com/gogo/protobuf/LICENSE
+++ /dev/null
@@ -1,36 +0,0 @@
-Protocol Buffers for Go with Gadgets
-
-Copyright (c) 2013, The GoGo Authors. All rights reserved.
-http://github.com/gogo/protobuf
-
-Go support for Protocol Buffers - Google's data interchange format
-
-Copyright 2010 The Go Authors.  All rights reserved.
-https://github.com/golang/protobuf
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-    * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-    * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-    * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
diff --git a/vendor/github.com/gogo/protobuf/proto/clone.go b/vendor/github.com/gogo/protobuf/proto/clone.go
deleted file mode 100644
index 5d4cba4b51..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/clone.go
+++ /dev/null
@@ -1,234 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2011 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// Protocol buffer deep copy and merge.
-// TODO: RawMessage.
-
-package proto
-
-import (
-	"log"
-	"reflect"
-	"strings"
-)
-
-// Clone returns a deep copy of a protocol buffer.
-func Clone(pb Message) Message {
-	in := reflect.ValueOf(pb)
-	if in.IsNil() {
-		return pb
-	}
-
-	out := reflect.New(in.Type().Elem())
-	// out is empty so a merge is a deep copy.
-	mergeStruct(out.Elem(), in.Elem())
-	return out.Interface().(Message)
-}
-
-// Merge merges src into dst.
-// Required and optional fields that are set in src will be set to that value in dst.
-// Elements of repeated fields will be appended.
-// Merge panics if src and dst are not the same type, or if dst is nil.
-func Merge(dst, src Message) {
-	in := reflect.ValueOf(src)
-	out := reflect.ValueOf(dst)
-	if out.IsNil() {
-		panic("proto: nil destination")
-	}
-	if in.Type() != out.Type() {
-		// Explicit test prior to mergeStruct so that mistyped nils will fail
-		panic("proto: type mismatch")
-	}
-	if in.IsNil() {
-		// Merging nil into non-nil is a quiet no-op
-		return
-	}
-	mergeStruct(out.Elem(), in.Elem())
-}
-
-func mergeStruct(out, in reflect.Value) {
-	sprop := GetProperties(in.Type())
-	for i := 0; i < in.NumField(); i++ {
-		f := in.Type().Field(i)
-		if strings.HasPrefix(f.Name, "XXX_") {
-			continue
-		}
-		mergeAny(out.Field(i), in.Field(i), false, sprop.Prop[i])
-	}
-
-	if emIn, ok := in.Addr().Interface().(extensionsBytes); ok {
-		emOut := out.Addr().Interface().(extensionsBytes)
-		bIn := emIn.GetExtensions()
-		bOut := emOut.GetExtensions()
-		*bOut = append(*bOut, *bIn...)
-	} else if emIn, ok := extendable(in.Addr().Interface()); ok {
-		emOut, _ := extendable(out.Addr().Interface())
-		mIn, muIn := emIn.extensionsRead()
-		if mIn != nil {
-			mOut := emOut.extensionsWrite()
-			muIn.Lock()
-			mergeExtension(mOut, mIn)
-			muIn.Unlock()
-		}
-	}
-
-	uf := in.FieldByName("XXX_unrecognized")
-	if !uf.IsValid() {
-		return
-	}
-	uin := uf.Bytes()
-	if len(uin) > 0 {
-		out.FieldByName("XXX_unrecognized").SetBytes(append([]byte(nil), uin...))
-	}
-}
-
-// mergeAny performs a merge between two values of the same type.
-// viaPtr indicates whether the values were indirected through a pointer (implying proto2).
-// prop is set if this is a struct field (it may be nil).
-func mergeAny(out, in reflect.Value, viaPtr bool, prop *Properties) {
-	if in.Type() == protoMessageType {
-		if !in.IsNil() {
-			if out.IsNil() {
-				out.Set(reflect.ValueOf(Clone(in.Interface().(Message))))
-			} else {
-				Merge(out.Interface().(Message), in.Interface().(Message))
-			}
-		}
-		return
-	}
-	switch in.Kind() {
-	case reflect.Bool, reflect.Float32, reflect.Float64, reflect.Int32, reflect.Int64,
-		reflect.String, reflect.Uint32, reflect.Uint64:
-		if !viaPtr && isProto3Zero(in) {
-			return
-		}
-		out.Set(in)
-	case reflect.Interface:
-		// Probably a oneof field; copy non-nil values.
-		if in.IsNil() {
-			return
-		}
-		// Allocate destination if it is not set, or set to a different type.
-		// Otherwise we will merge as normal.
-		if out.IsNil() || out.Elem().Type() != in.Elem().Type() {
-			out.Set(reflect.New(in.Elem().Elem().Type())) // interface -> *T -> T -> new(T)
-		}
-		mergeAny(out.Elem(), in.Elem(), false, nil)
-	case reflect.Map:
-		if in.Len() == 0 {
-			return
-		}
-		if out.IsNil() {
-			out.Set(reflect.MakeMap(in.Type()))
-		}
-		// For maps with value types of *T or []byte we need to deep copy each value.
-		elemKind := in.Type().Elem().Kind()
-		for _, key := range in.MapKeys() {
-			var val reflect.Value
-			switch elemKind {
-			case reflect.Ptr:
-				val = reflect.New(in.Type().Elem().Elem())
-				mergeAny(val, in.MapIndex(key), false, nil)
-			case reflect.Slice:
-				val = in.MapIndex(key)
-				val = reflect.ValueOf(append([]byte{}, val.Bytes()...))
-			default:
-				val = in.MapIndex(key)
-			}
-			out.SetMapIndex(key, val)
-		}
-	case reflect.Ptr:
-		if in.IsNil() {
-			return
-		}
-		if out.IsNil() {
-			out.Set(reflect.New(in.Elem().Type()))
-		}
-		mergeAny(out.Elem(), in.Elem(), true, nil)
-	case reflect.Slice:
-		if in.IsNil() {
-			return
-		}
-		if in.Type().Elem().Kind() == reflect.Uint8 {
-			// []byte is a scalar bytes field, not a repeated field.
-
-			// Edge case: if this is in a proto3 message, a zero length
-			// bytes field is considered the zero value, and should not
-			// be merged.
-			if prop != nil && prop.proto3 && in.Len() == 0 {
-				return
-			}
-
-			// Make a deep copy.
-			// Append to []byte{} instead of []byte(nil) so that we never end up
-			// with a nil result.
-			out.SetBytes(append([]byte{}, in.Bytes()...))
-			return
-		}
-		n := in.Len()
-		if out.IsNil() {
-			out.Set(reflect.MakeSlice(in.Type(), 0, n))
-		}
-		switch in.Type().Elem().Kind() {
-		case reflect.Bool, reflect.Float32, reflect.Float64, reflect.Int32, reflect.Int64,
-			reflect.String, reflect.Uint32, reflect.Uint64:
-			out.Set(reflect.AppendSlice(out, in))
-		default:
-			for i := 0; i < n; i++ {
-				x := reflect.Indirect(reflect.New(in.Type().Elem()))
-				mergeAny(x, in.Index(i), false, nil)
-				out.Set(reflect.Append(out, x))
-			}
-		}
-	case reflect.Struct:
-		mergeStruct(out, in)
-	default:
-		// unknown type, so not a protocol buffer
-		log.Printf("proto: don't know how to copy %v", in)
-	}
-}
-
-func mergeExtension(out, in map[int32]Extension) {
-	for extNum, eIn := range in {
-		eOut := Extension{desc: eIn.desc}
-		if eIn.value != nil {
-			v := reflect.New(reflect.TypeOf(eIn.value)).Elem()
-			mergeAny(v, reflect.ValueOf(eIn.value), false, nil)
-			eOut.value = v.Interface()
-		}
-		if eIn.enc != nil {
-			eOut.enc = make([]byte, len(eIn.enc))
-			copy(eOut.enc, eIn.enc)
-		}
-
-		out[extNum] = eOut
-	}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/decode.go b/vendor/github.com/gogo/protobuf/proto/decode.go
deleted file mode 100644
index 737f2731d4..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/decode.go
+++ /dev/null
@@ -1,978 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-/*
- * Routines for decoding protocol buffer data to construct in-memory representations.
- */
-
-import (
-	"errors"
-	"fmt"
-	"io"
-	"os"
-	"reflect"
-)
-
-// errOverflow is returned when an integer is too large to be represented.
-var errOverflow = errors.New("proto: integer overflow")
-
-// ErrInternalBadWireType is returned by generated code when an incorrect
-// wire type is encountered. It does not get returned to user code.
-var ErrInternalBadWireType = errors.New("proto: internal error: bad wiretype for oneof")
-
-// The fundamental decoders that interpret bytes on the wire.
-// Those that take integer types all return uint64 and are
-// therefore of type valueDecoder.
-
-// DecodeVarint reads a varint-encoded integer from the slice.
-// It returns the integer and the number of bytes consumed, or
-// zero if there is not enough.
-// This is the format for the
-// int32, int64, uint32, uint64, bool, and enum
-// protocol buffer types.
-func DecodeVarint(buf []byte) (x uint64, n int) {
-	for shift := uint(0); shift < 64; shift += 7 {
-		if n >= len(buf) {
-			return 0, 0
-		}
-		b := uint64(buf[n])
-		n++
-		x |= (b & 0x7F) << shift
-		if (b & 0x80) == 0 {
-			return x, n
-		}
-	}
-
-	// The number is too large to represent in a 64-bit value.
-	return 0, 0
-}
-
-func (p *Buffer) decodeVarintSlow() (x uint64, err error) {
-	i := p.index
-	l := len(p.buf)
-
-	for shift := uint(0); shift < 64; shift += 7 {
-		if i >= l {
-			err = io.ErrUnexpectedEOF
-			return
-		}
-		b := p.buf[i]
-		i++
-		x |= (uint64(b) & 0x7F) << shift
-		if b < 0x80 {
-			p.index = i
-			return
-		}
-	}
-
-	// The number is too large to represent in a 64-bit value.
-	err = errOverflow
-	return
-}
-
-// DecodeVarint reads a varint-encoded integer from the Buffer.
-// This is the format for the
-// int32, int64, uint32, uint64, bool, and enum
-// protocol buffer types.
-func (p *Buffer) DecodeVarint() (x uint64, err error) {
-	i := p.index
-	buf := p.buf
-
-	if i >= len(buf) {
-		return 0, io.ErrUnexpectedEOF
-	} else if buf[i] < 0x80 {
-		p.index++
-		return uint64(buf[i]), nil
-	} else if len(buf)-i < 10 {
-		return p.decodeVarintSlow()
-	}
-
-	var b uint64
-	// we already checked the first byte
-	x = uint64(buf[i]) - 0x80
-	i++
-
-	b = uint64(buf[i])
-	i++
-	x += b << 7
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 7
-
-	b = uint64(buf[i])
-	i++
-	x += b << 14
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 14
-
-	b = uint64(buf[i])
-	i++
-	x += b << 21
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 21
-
-	b = uint64(buf[i])
-	i++
-	x += b << 28
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 28
-
-	b = uint64(buf[i])
-	i++
-	x += b << 35
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 35
-
-	b = uint64(buf[i])
-	i++
-	x += b << 42
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 42
-
-	b = uint64(buf[i])
-	i++
-	x += b << 49
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 49
-
-	b = uint64(buf[i])
-	i++
-	x += b << 56
-	if b&0x80 == 0 {
-		goto done
-	}
-	x -= 0x80 << 56
-
-	b = uint64(buf[i])
-	i++
-	x += b << 63
-	if b&0x80 == 0 {
-		goto done
-	}
-	// x -= 0x80 << 63 // Always zero.
-
-	return 0, errOverflow
-
-done:
-	p.index = i
-	return x, nil
-}
-
-// DecodeFixed64 reads a 64-bit integer from the Buffer.
-// This is the format for the
-// fixed64, sfixed64, and double protocol buffer types.
-func (p *Buffer) DecodeFixed64() (x uint64, err error) {
-	// x, err already 0
-	i := p.index + 8
-	if i < 0 || i > len(p.buf) {
-		err = io.ErrUnexpectedEOF
-		return
-	}
-	p.index = i
-
-	x = uint64(p.buf[i-8])
-	x |= uint64(p.buf[i-7]) << 8
-	x |= uint64(p.buf[i-6]) << 16
-	x |= uint64(p.buf[i-5]) << 24
-	x |= uint64(p.buf[i-4]) << 32
-	x |= uint64(p.buf[i-3]) << 40
-	x |= uint64(p.buf[i-2]) << 48
-	x |= uint64(p.buf[i-1]) << 56
-	return
-}
-
-// DecodeFixed32 reads a 32-bit integer from the Buffer.
-// This is the format for the
-// fixed32, sfixed32, and float protocol buffer types.
-func (p *Buffer) DecodeFixed32() (x uint64, err error) {
-	// x, err already 0
-	i := p.index + 4
-	if i < 0 || i > len(p.buf) {
-		err = io.ErrUnexpectedEOF
-		return
-	}
-	p.index = i
-
-	x = uint64(p.buf[i-4])
-	x |= uint64(p.buf[i-3]) << 8
-	x |= uint64(p.buf[i-2]) << 16
-	x |= uint64(p.buf[i-1]) << 24
-	return
-}
-
-// DecodeZigzag64 reads a zigzag-encoded 64-bit integer
-// from the Buffer.
-// This is the format used for the sint64 protocol buffer type.
-func (p *Buffer) DecodeZigzag64() (x uint64, err error) {
-	x, err = p.DecodeVarint()
-	if err != nil {
-		return
-	}
-	x = (x >> 1) ^ uint64((int64(x&1)<<63)>>63)
-	return
-}
-
-// DecodeZigzag32 reads a zigzag-encoded 32-bit integer
-// from  the Buffer.
-// This is the format used for the sint32 protocol buffer type.
-func (p *Buffer) DecodeZigzag32() (x uint64, err error) {
-	x, err = p.DecodeVarint()
-	if err != nil {
-		return
-	}
-	x = uint64((uint32(x) >> 1) ^ uint32((int32(x&1)<<31)>>31))
-	return
-}
-
-// These are not ValueDecoders: they produce an array of bytes or a string.
-// bytes, embedded messages
-
-// DecodeRawBytes reads a count-delimited byte buffer from the Buffer.
-// This is the format used for the bytes protocol buffer
-// type and for embedded messages.
-func (p *Buffer) DecodeRawBytes(alloc bool) (buf []byte, err error) {
-	n, err := p.DecodeVarint()
-	if err != nil {
-		return nil, err
-	}
-
-	nb := int(n)
-	if nb < 0 {
-		return nil, fmt.Errorf("proto: bad byte length %d", nb)
-	}
-	end := p.index + nb
-	if end < p.index || end > len(p.buf) {
-		return nil, io.ErrUnexpectedEOF
-	}
-
-	if !alloc {
-		// todo: check if can get more uses of alloc=false
-		buf = p.buf[p.index:end]
-		p.index += nb
-		return
-	}
-
-	buf = make([]byte, nb)
-	copy(buf, p.buf[p.index:])
-	p.index += nb
-	return
-}
-
-// DecodeStringBytes reads an encoded string from the Buffer.
-// This is the format used for the proto2 string type.
-func (p *Buffer) DecodeStringBytes() (s string, err error) {
-	buf, err := p.DecodeRawBytes(false)
-	if err != nil {
-		return
-	}
-	return string(buf), nil
-}
-
-// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
-// If the protocol buffer has extensions, and the field matches, add it as an extension.
-// Otherwise, if the XXX_unrecognized field exists, append the skipped data there.
-func (o *Buffer) skipAndSave(t reflect.Type, tag, wire int, base structPointer, unrecField field) error {
-	oi := o.index
-
-	err := o.skip(t, tag, wire)
-	if err != nil {
-		return err
-	}
-
-	if !unrecField.IsValid() {
-		return nil
-	}
-
-	ptr := structPointer_Bytes(base, unrecField)
-
-	// Add the skipped field to struct field
-	obuf := o.buf
-
-	o.buf = *ptr
-	o.EncodeVarint(uint64(tag<<3 | wire))
-	*ptr = append(o.buf, obuf[oi:o.index]...)
-
-	o.buf = obuf
-
-	return nil
-}
-
-// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
-func (o *Buffer) skip(t reflect.Type, tag, wire int) error {
-
-	var u uint64
-	var err error
-
-	switch wire {
-	case WireVarint:
-		_, err = o.DecodeVarint()
-	case WireFixed64:
-		_, err = o.DecodeFixed64()
-	case WireBytes:
-		_, err = o.DecodeRawBytes(false)
-	case WireFixed32:
-		_, err = o.DecodeFixed32()
-	case WireStartGroup:
-		for {
-			u, err = o.DecodeVarint()
-			if err != nil {
-				break
-			}
-			fwire := int(u & 0x7)
-			if fwire == WireEndGroup {
-				break
-			}
-			ftag := int(u >> 3)
-			err = o.skip(t, ftag, fwire)
-			if err != nil {
-				break
-			}
-		}
-	default:
-		err = fmt.Errorf("proto: can't skip unknown wire type %d for %s", wire, t)
-	}
-	return err
-}
-
-// Unmarshaler is the interface representing objects that can
-// unmarshal themselves.  The method should reset the receiver before
-// decoding starts.  The argument points to data that may be
-// overwritten, so implementations should not keep references to the
-// buffer.
-type Unmarshaler interface {
-	Unmarshal([]byte) error
-}
-
-// Unmarshal parses the protocol buffer representation in buf and places the
-// decoded result in pb.  If the struct underlying pb does not match
-// the data in buf, the results can be unpredictable.
-//
-// Unmarshal resets pb before starting to unmarshal, so any
-// existing data in pb is always removed. Use UnmarshalMerge
-// to preserve and append to existing data.
-func Unmarshal(buf []byte, pb Message) error {
-	pb.Reset()
-	return UnmarshalMerge(buf, pb)
-}
-
-// UnmarshalMerge parses the protocol buffer representation in buf and
-// writes the decoded result to pb.  If the struct underlying pb does not match
-// the data in buf, the results can be unpredictable.
-//
-// UnmarshalMerge merges into existing data in pb.
-// Most code should use Unmarshal instead.
-func UnmarshalMerge(buf []byte, pb Message) error {
-	// If the object can unmarshal itself, let it.
-	if u, ok := pb.(Unmarshaler); ok {
-		return u.Unmarshal(buf)
-	}
-	return NewBuffer(buf).Unmarshal(pb)
-}
-
-// DecodeMessage reads a count-delimited message from the Buffer.
-func (p *Buffer) DecodeMessage(pb Message) error {
-	enc, err := p.DecodeRawBytes(false)
-	if err != nil {
-		return err
-	}
-	return NewBuffer(enc).Unmarshal(pb)
-}
-
-// DecodeGroup reads a tag-delimited group from the Buffer.
-func (p *Buffer) DecodeGroup(pb Message) error {
-	typ, base, err := getbase(pb)
-	if err != nil {
-		return err
-	}
-	return p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), true, base)
-}
-
-// Unmarshal parses the protocol buffer representation in the
-// Buffer and places the decoded result in pb.  If the struct
-// underlying pb does not match the data in the buffer, the results can be
-// unpredictable.
-//
-// Unlike proto.Unmarshal, this does not reset pb before starting to unmarshal.
-func (p *Buffer) Unmarshal(pb Message) error {
-	// If the object can unmarshal itself, let it.
-	if u, ok := pb.(Unmarshaler); ok {
-		err := u.Unmarshal(p.buf[p.index:])
-		p.index = len(p.buf)
-		return err
-	}
-
-	typ, base, err := getbase(pb)
-	if err != nil {
-		return err
-	}
-
-	err = p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), false, base)
-
-	if collectStats {
-		stats.Decode++
-	}
-
-	return err
-}
-
-// unmarshalType does the work of unmarshaling a structure.
-func (o *Buffer) unmarshalType(st reflect.Type, prop *StructProperties, is_group bool, base structPointer) error {
-	var state errorState
-	required, reqFields := prop.reqCount, uint64(0)
-
-	var err error
-	for err == nil && o.index < len(o.buf) {
-		oi := o.index
-		var u uint64
-		u, err = o.DecodeVarint()
-		if err != nil {
-			break
-		}
-		wire := int(u & 0x7)
-		if wire == WireEndGroup {
-			if is_group {
-				if required > 0 {
-					// Not enough information to determine the exact field.
-					// (See below.)
-					return &RequiredNotSetError{"{Unknown}"}
-				}
-				return nil // input is satisfied
-			}
-			return fmt.Errorf("proto: %s: wiretype end group for non-group", st)
-		}
-		tag := int(u >> 3)
-		if tag <= 0 {
-			return fmt.Errorf("proto: %s: illegal tag %d (wire type %d)", st, tag, wire)
-		}
-		fieldnum, ok := prop.decoderTags.get(tag)
-		if !ok {
-			// Maybe it's an extension?
-			if prop.extendable {
-				if e, eok := structPointer_Interface(base, st).(extensionsBytes); eok {
-					if isExtensionField(e, int32(tag)) {
-						if err = o.skip(st, tag, wire); err == nil {
-							ext := e.GetExtensions()
-							*ext = append(*ext, o.buf[oi:o.index]...)
-						}
-						continue
-					}
-				} else if e, _ := extendable(structPointer_Interface(base, st)); isExtensionField(e, int32(tag)) {
-					if err = o.skip(st, tag, wire); err == nil {
-						extmap := e.extensionsWrite()
-						ext := extmap[int32(tag)] // may be missing
-						ext.enc = append(ext.enc, o.buf[oi:o.index]...)
-						extmap[int32(tag)] = ext
-					}
-					continue
-				}
-			}
-			// Maybe it's a oneof?
-			if prop.oneofUnmarshaler != nil {
-				m := structPointer_Interface(base, st).(Message)
-				// First return value indicates whether tag is a oneof field.
-				ok, err = prop.oneofUnmarshaler(m, tag, wire, o)
-				if err == ErrInternalBadWireType {
-					// Map the error to something more descriptive.
-					// Do the formatting here to save generated code space.
-					err = fmt.Errorf("bad wiretype for oneof field in %T", m)
-				}
-				if ok {
-					continue
-				}
-			}
-			err = o.skipAndSave(st, tag, wire, base, prop.unrecField)
-			continue
-		}
-		p := prop.Prop[fieldnum]
-
-		if p.dec == nil {
-			fmt.Fprintf(os.Stderr, "proto: no protobuf decoder for %s.%s\n", st, st.Field(fieldnum).Name)
-			continue
-		}
-		dec := p.dec
-		if wire != WireStartGroup && wire != p.WireType {
-			if wire == WireBytes && p.packedDec != nil {
-				// a packable field
-				dec = p.packedDec
-			} else {
-				err = fmt.Errorf("proto: bad wiretype for field %s.%s: got wiretype %d, want %d", st, st.Field(fieldnum).Name, wire, p.WireType)
-				continue
-			}
-		}
-		decErr := dec(o, p, base)
-		if decErr != nil && !state.shouldContinue(decErr, p) {
-			err = decErr
-		}
-		if err == nil && p.Required {
-			// Successfully decoded a required field.
-			if tag <= 64 {
-				// use bitmap for fields 1-64 to catch field reuse.
-				var mask uint64 = 1 << uint64(tag-1)
-				if reqFields&mask == 0 {
-					// new required field
-					reqFields |= mask
-					required--
-				}
-			} else {
-				// This is imprecise. It can be fooled by a required field
-				// with a tag > 64 that is encoded twice; that's very rare.
-				// A fully correct implementation would require allocating
-				// a data structure, which we would like to avoid.
-				required--
-			}
-		}
-	}
-	if err == nil {
-		if is_group {
-			return io.ErrUnexpectedEOF
-		}
-		if state.err != nil {
-			return state.err
-		}
-		if required > 0 {
-			// Not enough information to determine the exact field. If we use extra
-			// CPU, we could determine the field only if the missing required field
-			// has a tag <= 64 and we check reqFields.
-			return &RequiredNotSetError{"{Unknown}"}
-		}
-	}
-	return err
-}
-
-// Individual type decoders
-// For each,
-//	u is the decoded value,
-//	v is a pointer to the field (pointer) in the struct
-
-// Sizes of the pools to allocate inside the Buffer.
-// The goal is modest amortization and allocation
-// on at least 16-byte boundaries.
-const (
-	boolPoolSize   = 16
-	uint32PoolSize = 8
-	uint64PoolSize = 4
-)
-
-// Decode a bool.
-func (o *Buffer) dec_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	if len(o.bools) == 0 {
-		o.bools = make([]bool, boolPoolSize)
-	}
-	o.bools[0] = u != 0
-	*structPointer_Bool(base, p.field) = &o.bools[0]
-	o.bools = o.bools[1:]
-	return nil
-}
-
-func (o *Buffer) dec_proto3_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	*structPointer_BoolVal(base, p.field) = u != 0
-	return nil
-}
-
-// Decode an int32.
-func (o *Buffer) dec_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word32_Set(structPointer_Word32(base, p.field), o, uint32(u))
-	return nil
-}
-
-func (o *Buffer) dec_proto3_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word32Val_Set(structPointer_Word32Val(base, p.field), uint32(u))
-	return nil
-}
-
-// Decode an int64.
-func (o *Buffer) dec_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word64_Set(structPointer_Word64(base, p.field), o, u)
-	return nil
-}
-
-func (o *Buffer) dec_proto3_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word64Val_Set(structPointer_Word64Val(base, p.field), o, u)
-	return nil
-}
-
-// Decode a string.
-func (o *Buffer) dec_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	*structPointer_String(base, p.field) = &s
-	return nil
-}
-
-func (o *Buffer) dec_proto3_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	*structPointer_StringVal(base, p.field) = s
-	return nil
-}
-
-// Decode a slice of bytes ([]byte).
-func (o *Buffer) dec_slice_byte(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	*structPointer_Bytes(base, p.field) = b
-	return nil
-}
-
-// Decode a slice of bools ([]bool).
-func (o *Buffer) dec_slice_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	v := structPointer_BoolSlice(base, p.field)
-	*v = append(*v, u != 0)
-	return nil
-}
-
-// Decode a slice of bools ([]bool) in packed format.
-func (o *Buffer) dec_slice_packed_bool(p *Properties, base structPointer) error {
-	v := structPointer_BoolSlice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded bools
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-
-	y := *v
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		y = append(y, u != 0)
-	}
-
-	*v = y
-	return nil
-}
-
-// Decode a slice of int32s ([]int32).
-func (o *Buffer) dec_slice_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	structPointer_Word32Slice(base, p.field).Append(uint32(u))
-	return nil
-}
-
-// Decode a slice of int32s ([]int32) in packed format.
-func (o *Buffer) dec_slice_packed_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Slice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded int32s
-
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		v.Append(uint32(u))
-	}
-	return nil
-}
-
-// Decode a slice of int64s ([]int64).
-func (o *Buffer) dec_slice_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-
-	structPointer_Word64Slice(base, p.field).Append(u)
-	return nil
-}
-
-// Decode a slice of int64s ([]int64) in packed format.
-func (o *Buffer) dec_slice_packed_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64Slice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded int64s
-
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		v.Append(u)
-	}
-	return nil
-}
-
-// Decode a slice of strings ([]string).
-func (o *Buffer) dec_slice_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	v := structPointer_StringSlice(base, p.field)
-	*v = append(*v, s)
-	return nil
-}
-
-// Decode a slice of slice of bytes ([][]byte).
-func (o *Buffer) dec_slice_slice_byte(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	v := structPointer_BytesSlice(base, p.field)
-	*v = append(*v, b)
-	return nil
-}
-
-// Decode a map field.
-func (o *Buffer) dec_new_map(p *Properties, base structPointer) error {
-	raw, err := o.DecodeRawBytes(false)
-	if err != nil {
-		return err
-	}
-	oi := o.index       // index at the end of this map entry
-	o.index -= len(raw) // move buffer back to start of map entry
-
-	mptr := structPointer_NewAt(base, p.field, p.mtype) // *map[K]V
-	if mptr.Elem().IsNil() {
-		mptr.Elem().Set(reflect.MakeMap(mptr.Type().Elem()))
-	}
-	v := mptr.Elem() // map[K]V
-
-	// Prepare addressable doubly-indirect placeholders for the key and value types.
-	// See enc_new_map for why.
-	keyptr := reflect.New(reflect.PtrTo(p.mtype.Key())).Elem() // addressable *K
-	keybase := toStructPointer(keyptr.Addr())                  // **K
-
-	var valbase structPointer
-	var valptr reflect.Value
-	switch p.mtype.Elem().Kind() {
-	case reflect.Slice:
-		// []byte
-		var dummy []byte
-		valptr = reflect.ValueOf(&dummy)  // *[]byte
-		valbase = toStructPointer(valptr) // *[]byte
-	case reflect.Ptr:
-		// message; valptr is **Msg; need to allocate the intermediate pointer
-		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
-		valptr.Set(reflect.New(valptr.Type().Elem()))
-		valbase = toStructPointer(valptr)
-	default:
-		// everything else
-		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
-		valbase = toStructPointer(valptr.Addr())                   // **V
-	}
-
-	// Decode.
-	// This parses a restricted wire format, namely the encoding of a message
-	// with two fields. See enc_new_map for the format.
-	for o.index < oi {
-		// tagcode for key and value properties are always a single byte
-		// because they have tags 1 and 2.
-		tagcode := o.buf[o.index]
-		o.index++
-		switch tagcode {
-		case p.mkeyprop.tagcode[0]:
-			if err := p.mkeyprop.dec(o, p.mkeyprop, keybase); err != nil {
-				return err
-			}
-		case p.mvalprop.tagcode[0]:
-			if err := p.mvalprop.dec(o, p.mvalprop, valbase); err != nil {
-				return err
-			}
-		default:
-			// TODO: Should we silently skip this instead?
-			return fmt.Errorf("proto: bad map data tag %d", raw[0])
-		}
-	}
-	keyelem, valelem := keyptr.Elem(), valptr.Elem()
-	if !keyelem.IsValid() {
-		keyelem = reflect.Zero(p.mtype.Key())
-	}
-	if !valelem.IsValid() {
-		valelem = reflect.Zero(p.mtype.Elem())
-	}
-
-	v.SetMapIndex(keyelem, valelem)
-	return nil
-}
-
-// Decode a group.
-func (o *Buffer) dec_struct_group(p *Properties, base structPointer) error {
-	bas := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(bas) {
-		// allocate new nested message
-		bas = toStructPointer(reflect.New(p.stype))
-		structPointer_SetStructPointer(base, p.field, bas)
-	}
-	return o.unmarshalType(p.stype, p.sprop, true, bas)
-}
-
-// Decode an embedded message.
-func (o *Buffer) dec_struct_message(p *Properties, base structPointer) (err error) {
-	raw, e := o.DecodeRawBytes(false)
-	if e != nil {
-		return e
-	}
-
-	bas := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(bas) {
-		// allocate new nested message
-		bas = toStructPointer(reflect.New(p.stype))
-		structPointer_SetStructPointer(base, p.field, bas)
-	}
-
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		iv := structPointer_Interface(bas, p.stype)
-		return iv.(Unmarshaler).Unmarshal(raw)
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	err = o.unmarshalType(p.stype, p.sprop, false, bas)
-	o.buf = obuf
-	o.index = oi
-
-	return err
-}
-
-// Decode a slice of embedded messages.
-func (o *Buffer) dec_slice_struct_message(p *Properties, base structPointer) error {
-	return o.dec_slice_struct(p, false, base)
-}
-
-// Decode a slice of embedded groups.
-func (o *Buffer) dec_slice_struct_group(p *Properties, base structPointer) error {
-	return o.dec_slice_struct(p, true, base)
-}
-
-// Decode a slice of structs ([]*struct).
-func (o *Buffer) dec_slice_struct(p *Properties, is_group bool, base structPointer) error {
-	v := reflect.New(p.stype)
-	bas := toStructPointer(v)
-	structPointer_StructPointerSlice(base, p.field).Append(bas)
-
-	if is_group {
-		err := o.unmarshalType(p.stype, p.sprop, is_group, bas)
-		return err
-	}
-
-	raw, err := o.DecodeRawBytes(false)
-	if err != nil {
-		return err
-	}
-
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		iv := v.Interface()
-		return iv.(Unmarshaler).Unmarshal(raw)
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	err = o.unmarshalType(p.stype, p.sprop, is_group, bas)
-
-	o.buf = obuf
-	o.index = oi
-
-	return err
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/decode_gogo.go b/vendor/github.com/gogo/protobuf/proto/decode_gogo.go
deleted file mode 100644
index 6fb74de4cc..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/decode_gogo.go
+++ /dev/null
@@ -1,172 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"reflect"
-)
-
-// Decode a reference to a struct pointer.
-func (o *Buffer) dec_ref_struct_message(p *Properties, base structPointer) (err error) {
-	raw, e := o.DecodeRawBytes(false)
-	if e != nil {
-		return e
-	}
-
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		panic("not supported, since this is a pointer receiver")
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	bas := structPointer_FieldPointer(base, p.field)
-
-	err = o.unmarshalType(p.stype, p.sprop, false, bas)
-	o.buf = obuf
-	o.index = oi
-
-	return err
-}
-
-// Decode a slice of references to struct pointers ([]struct).
-func (o *Buffer) dec_slice_ref_struct(p *Properties, is_group bool, base structPointer) error {
-	newBas := appendStructPointer(base, p.field, p.sstype)
-
-	if is_group {
-		panic("not supported, maybe in future, if requested.")
-	}
-
-	raw, err := o.DecodeRawBytes(false)
-	if err != nil {
-		return err
-	}
-
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		panic("not supported, since this is not a pointer receiver.")
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	err = o.unmarshalType(p.stype, p.sprop, is_group, newBas)
-
-	o.buf = obuf
-	o.index = oi
-
-	return err
-}
-
-// Decode a slice of references to struct pointers.
-func (o *Buffer) dec_slice_ref_struct_message(p *Properties, base structPointer) error {
-	return o.dec_slice_ref_struct(p, false, base)
-}
-
-func setPtrCustomType(base structPointer, f field, v interface{}) {
-	if v == nil {
-		return
-	}
-	structPointer_SetStructPointer(base, f, toStructPointer(reflect.ValueOf(v)))
-}
-
-func setCustomType(base structPointer, f field, value interface{}) {
-	if value == nil {
-		return
-	}
-	v := reflect.ValueOf(value).Elem()
-	t := reflect.TypeOf(value).Elem()
-	kind := t.Kind()
-	switch kind {
-	case reflect.Slice:
-		slice := reflect.MakeSlice(t, v.Len(), v.Cap())
-		reflect.Copy(slice, v)
-		oldHeader := structPointer_GetSliceHeader(base, f)
-		oldHeader.Data = slice.Pointer()
-		oldHeader.Len = v.Len()
-		oldHeader.Cap = v.Cap()
-	default:
-		size := reflect.TypeOf(value).Elem().Size()
-		structPointer_Copy(toStructPointer(reflect.ValueOf(value)), structPointer_Add(base, f), int(size))
-	}
-}
-
-func (o *Buffer) dec_custom_bytes(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	i := reflect.New(p.ctype.Elem()).Interface()
-	custom := (i).(Unmarshaler)
-	if err := custom.Unmarshal(b); err != nil {
-		return err
-	}
-	setPtrCustomType(base, p.field, custom)
-	return nil
-}
-
-func (o *Buffer) dec_custom_ref_bytes(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	i := reflect.New(p.ctype).Interface()
-	custom := (i).(Unmarshaler)
-	if err := custom.Unmarshal(b); err != nil {
-		return err
-	}
-	if custom != nil {
-		setCustomType(base, p.field, custom)
-	}
-	return nil
-}
-
-// Decode a slice of bytes ([]byte) into a slice of custom types.
-func (o *Buffer) dec_custom_slice_bytes(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	i := reflect.New(p.ctype.Elem()).Interface()
-	custom := (i).(Unmarshaler)
-	if err := custom.Unmarshal(b); err != nil {
-		return err
-	}
-	newBas := appendStructPointer(base, p.field, p.ctype)
-
-	var zero field
-	setCustomType(newBas, zero, custom)
-
-	return nil
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/discard.go b/vendor/github.com/gogo/protobuf/proto/discard.go
deleted file mode 100644
index bd0e3bb4c8..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/discard.go
+++ /dev/null
@@ -1,151 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2017 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"fmt"
-	"reflect"
-	"strings"
-)
-
-// DiscardUnknown recursively discards all unknown fields from this message
-// and all embedded messages.
-//
-// When unmarshaling a message with unrecognized fields, the tags and values
-// of such fields are preserved in the Message. This allows a later call to
-// marshal to be able to produce a message that continues to have those
-// unrecognized fields. To avoid this, DiscardUnknown is used to
-// explicitly clear the unknown fields after unmarshaling.
-//
-// For proto2 messages, the unknown fields of message extensions are only
-// discarded from messages that have been accessed via GetExtension.
-func DiscardUnknown(m Message) {
-	discardLegacy(m)
-}
-
-func discardLegacy(m Message) {
-	v := reflect.ValueOf(m)
-	if v.Kind() != reflect.Ptr || v.IsNil() {
-		return
-	}
-	v = v.Elem()
-	if v.Kind() != reflect.Struct {
-		return
-	}
-	t := v.Type()
-
-	for i := 0; i < v.NumField(); i++ {
-		f := t.Field(i)
-		if strings.HasPrefix(f.Name, "XXX_") {
-			continue
-		}
-		vf := v.Field(i)
-		tf := f.Type
-
-		// Unwrap tf to get its most basic type.
-		var isPointer, isSlice bool
-		if tf.Kind() == reflect.Slice && tf.Elem().Kind() != reflect.Uint8 {
-			isSlice = true
-			tf = tf.Elem()
-		}
-		if tf.Kind() == reflect.Ptr {
-			isPointer = true
-			tf = tf.Elem()
-		}
-		if isPointer && isSlice && tf.Kind() != reflect.Struct {
-			panic(fmt.Sprintf("%T.%s cannot be a slice of pointers to primitive types", m, f.Name))
-		}
-
-		switch tf.Kind() {
-		case reflect.Struct:
-			switch {
-			case !isPointer:
-				panic(fmt.Sprintf("%T.%s cannot be a direct struct value", m, f.Name))
-			case isSlice: // E.g., []*pb.T
-				for j := 0; j < vf.Len(); j++ {
-					discardLegacy(vf.Index(j).Interface().(Message))
-				}
-			default: // E.g., *pb.T
-				discardLegacy(vf.Interface().(Message))
-			}
-		case reflect.Map:
-			switch {
-			case isPointer || isSlice:
-				panic(fmt.Sprintf("%T.%s cannot be a pointer to a map or a slice of map values", m, f.Name))
-			default: // E.g., map[K]V
-				tv := vf.Type().Elem()
-				if tv.Kind() == reflect.Ptr && tv.Implements(protoMessageType) { // Proto struct (e.g., *T)
-					for _, key := range vf.MapKeys() {
-						val := vf.MapIndex(key)
-						discardLegacy(val.Interface().(Message))
-					}
-				}
-			}
-		case reflect.Interface:
-			// Must be oneof field.
-			switch {
-			case isPointer || isSlice:
-				panic(fmt.Sprintf("%T.%s cannot be a pointer to a interface or a slice of interface values", m, f.Name))
-			default: // E.g., test_proto.isCommunique_Union interface
-				if !vf.IsNil() && f.Tag.Get("protobuf_oneof") != "" {
-					vf = vf.Elem() // E.g., *test_proto.Communique_Msg
-					if !vf.IsNil() {
-						vf = vf.Elem()   // E.g., test_proto.Communique_Msg
-						vf = vf.Field(0) // E.g., Proto struct (e.g., *T) or primitive value
-						if vf.Kind() == reflect.Ptr {
-							discardLegacy(vf.Interface().(Message))
-						}
-					}
-				}
-			}
-		}
-	}
-
-	if vf := v.FieldByName("XXX_unrecognized"); vf.IsValid() {
-		if vf.Type() != reflect.TypeOf([]byte{}) {
-			panic("expected XXX_unrecognized to be of type []byte")
-		}
-		vf.Set(reflect.ValueOf([]byte(nil)))
-	}
-
-	// For proto2 messages, only discard unknown fields in message extensions
-	// that have been accessed via GetExtension.
-	if em, ok := extendable(m); ok {
-		// Ignore lock since discardLegacy is not concurrency safe.
-		emm, _ := em.extensionsRead()
-		for _, mx := range emm {
-			if m, ok := mx.value.(Message); ok {
-				discardLegacy(m)
-			}
-		}
-	}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/duration.go b/vendor/github.com/gogo/protobuf/proto/duration.go
deleted file mode 100644
index 93464c91cf..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/duration.go
+++ /dev/null
@@ -1,100 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2016 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-// This file implements conversions between google.protobuf.Duration
-// and time.Duration.
-
-import (
-	"errors"
-	"fmt"
-	"time"
-)
-
-const (
-	// Range of a Duration in seconds, as specified in
-	// google/protobuf/duration.proto. This is about 10,000 years in seconds.
-	maxSeconds = int64(10000 * 365.25 * 24 * 60 * 60)
-	minSeconds = -maxSeconds
-)
-
-// validateDuration determines whether the Duration is valid according to the
-// definition in google/protobuf/duration.proto. A valid Duration
-// may still be too large to fit into a time.Duration (the range of Duration
-// is about 10,000 years, and the range of time.Duration is about 290).
-func validateDuration(d *duration) error {
-	if d == nil {
-		return errors.New("duration: nil Duration")
-	}
-	if d.Seconds < minSeconds || d.Seconds > maxSeconds {
-		return fmt.Errorf("duration: %#v: seconds out of range", d)
-	}
-	if d.Nanos <= -1e9 || d.Nanos >= 1e9 {
-		return fmt.Errorf("duration: %#v: nanos out of range", d)
-	}
-	// Seconds and Nanos must have the same sign, unless d.Nanos is zero.
-	if (d.Seconds < 0 && d.Nanos > 0) || (d.Seconds > 0 && d.Nanos < 0) {
-		return fmt.Errorf("duration: %#v: seconds and nanos have different signs", d)
-	}
-	return nil
-}
-
-// DurationFromProto converts a Duration to a time.Duration. DurationFromProto
-// returns an error if the Duration is invalid or is too large to be
-// represented in a time.Duration.
-func durationFromProto(p *duration) (time.Duration, error) {
-	if err := validateDuration(p); err != nil {
-		return 0, err
-	}
-	d := time.Duration(p.Seconds) * time.Second
-	if int64(d/time.Second) != p.Seconds {
-		return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
-	}
-	if p.Nanos != 0 {
-		d += time.Duration(p.Nanos)
-		if (d < 0) != (p.Nanos < 0) {
-			return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
-		}
-	}
-	return d, nil
-}
-
-// DurationProto converts a time.Duration to a Duration.
-func durationProto(d time.Duration) *duration {
-	nanos := d.Nanoseconds()
-	secs := nanos / 1e9
-	nanos -= secs * 1e9
-	return &duration{
-		Seconds: secs,
-		Nanos:   int32(nanos),
-	}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/duration_gogo.go b/vendor/github.com/gogo/protobuf/proto/duration_gogo.go
deleted file mode 100644
index 18e2a5f776..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/duration_gogo.go
+++ /dev/null
@@ -1,203 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2016, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"reflect"
-	"time"
-)
-
-var durationType = reflect.TypeOf((*time.Duration)(nil)).Elem()
-
-type duration struct {
-	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
-	Nanos   int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
-}
-
-func (m *duration) Reset()       { *m = duration{} }
-func (*duration) ProtoMessage()  {}
-func (*duration) String() string { return "duration<string>" }
-
-func init() {
-	RegisterType((*duration)(nil), "gogo.protobuf.proto.duration")
-}
-
-func (o *Buffer) decDuration() (time.Duration, error) {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return 0, err
-	}
-	dproto := &duration{}
-	if err := Unmarshal(b, dproto); err != nil {
-		return 0, err
-	}
-	return durationFromProto(dproto)
-}
-
-func (o *Buffer) dec_duration(p *Properties, base structPointer) error {
-	d, err := o.decDuration()
-	if err != nil {
-		return err
-	}
-	word64_Set(structPointer_Word64(base, p.field), o, uint64(d))
-	return nil
-}
-
-func (o *Buffer) dec_ref_duration(p *Properties, base structPointer) error {
-	d, err := o.decDuration()
-	if err != nil {
-		return err
-	}
-	word64Val_Set(structPointer_Word64Val(base, p.field), o, uint64(d))
-	return nil
-}
-
-func (o *Buffer) dec_slice_duration(p *Properties, base structPointer) error {
-	d, err := o.decDuration()
-	if err != nil {
-		return err
-	}
-	newBas := appendStructPointer(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType)))
-	var zero field
-	setPtrCustomType(newBas, zero, &d)
-	return nil
-}
-
-func (o *Buffer) dec_slice_ref_duration(p *Properties, base structPointer) error {
-	d, err := o.decDuration()
-	if err != nil {
-		return err
-	}
-	structPointer_Word64Slice(base, p.field).Append(uint64(d))
-	return nil
-}
-
-func size_duration(p *Properties, base structPointer) (n int) {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return 0
-	}
-	dur := structPointer_Interface(structp, durationType).(*time.Duration)
-	d := durationProto(*dur)
-	size := Size(d)
-	return size + sizeVarint(uint64(size)) + len(p.tagcode)
-}
-
-func (o *Buffer) enc_duration(p *Properties, base structPointer) error {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return ErrNil
-	}
-	dur := structPointer_Interface(structp, durationType).(*time.Duration)
-	d := durationProto(*dur)
-	data, err := Marshal(d)
-	if err != nil {
-		return err
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_ref_duration(p *Properties, base structPointer) (n int) {
-	dur := structPointer_InterfaceAt(base, p.field, durationType).(*time.Duration)
-	d := durationProto(*dur)
-	size := Size(d)
-	return size + sizeVarint(uint64(size)) + len(p.tagcode)
-}
-
-func (o *Buffer) enc_ref_duration(p *Properties, base structPointer) error {
-	dur := structPointer_InterfaceAt(base, p.field, durationType).(*time.Duration)
-	d := durationProto(*dur)
-	data, err := Marshal(d)
-	if err != nil {
-		return err
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_slice_duration(p *Properties, base structPointer) (n int) {
-	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType))).(*[]*time.Duration)
-	durs := *pdurs
-	for i := 0; i < len(durs); i++ {
-		if durs[i] == nil {
-			return 0
-		}
-		dproto := durationProto(*durs[i])
-		size := Size(dproto)
-		n += len(p.tagcode) + size + sizeVarint(uint64(size))
-	}
-	return n
-}
-
-func (o *Buffer) enc_slice_duration(p *Properties, base structPointer) error {
-	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType))).(*[]*time.Duration)
-	durs := *pdurs
-	for i := 0; i < len(durs); i++ {
-		if durs[i] == nil {
-			return errRepeatedHasNil
-		}
-		dproto := durationProto(*durs[i])
-		data, err := Marshal(dproto)
-		if err != nil {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-	}
-	return nil
-}
-
-func size_slice_ref_duration(p *Properties, base structPointer) (n int) {
-	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(durationType)).(*[]time.Duration)
-	durs := *pdurs
-	for i := 0; i < len(durs); i++ {
-		dproto := durationProto(durs[i])
-		size := Size(dproto)
-		n += len(p.tagcode) + size + sizeVarint(uint64(size))
-	}
-	return n
-}
-
-func (o *Buffer) enc_slice_ref_duration(p *Properties, base structPointer) error {
-	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(durationType)).(*[]time.Duration)
-	durs := *pdurs
-	for i := 0; i < len(durs); i++ {
-		dproto := durationProto(durs[i])
-		data, err := Marshal(dproto)
-		if err != nil {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-	}
-	return nil
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/encode.go b/vendor/github.com/gogo/protobuf/proto/encode.go
deleted file mode 100644
index 8b84d1b22d..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/encode.go
+++ /dev/null
@@ -1,1362 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-/*
- * Routines for encoding data into the wire format for protocol buffers.
- */
-
-import (
-	"errors"
-	"fmt"
-	"reflect"
-	"sort"
-)
-
-// RequiredNotSetError is the error returned if Marshal is called with
-// a protocol buffer struct whose required fields have not
-// all been initialized. It is also the error returned if Unmarshal is
-// called with an encoded protocol buffer that does not include all the
-// required fields.
-//
-// When printed, RequiredNotSetError reports the first unset required field in a
-// message. If the field cannot be precisely determined, it is reported as
-// "{Unknown}".
-type RequiredNotSetError struct {
-	field string
-}
-
-func (e *RequiredNotSetError) Error() string {
-	return fmt.Sprintf("proto: required field %q not set", e.field)
-}
-
-var (
-	// errRepeatedHasNil is the error returned if Marshal is called with
-	// a struct with a repeated field containing a nil element.
-	errRepeatedHasNil = errors.New("proto: repeated field has nil element")
-
-	// errOneofHasNil is the error returned if Marshal is called with
-	// a struct with a oneof field containing a nil element.
-	errOneofHasNil = errors.New("proto: oneof field has nil value")
-
-	// ErrNil is the error returned if Marshal is called with nil.
-	ErrNil = errors.New("proto: Marshal called with nil")
-
-	// ErrTooLarge is the error returned if Marshal is called with a
-	// message that encodes to >2GB.
-	ErrTooLarge = errors.New("proto: message encodes to over 2 GB")
-)
-
-// The fundamental encoders that put bytes on the wire.
-// Those that take integer types all accept uint64 and are
-// therefore of type valueEncoder.
-
-const maxVarintBytes = 10 // maximum length of a varint
-
-// maxMarshalSize is the largest allowed size of an encoded protobuf,
-// since C++ and Java use signed int32s for the size.
-const maxMarshalSize = 1<<31 - 1
-
-// EncodeVarint returns the varint encoding of x.
-// This is the format for the
-// int32, int64, uint32, uint64, bool, and enum
-// protocol buffer types.
-// Not used by the package itself, but helpful to clients
-// wishing to use the same encoding.
-func EncodeVarint(x uint64) []byte {
-	var buf [maxVarintBytes]byte
-	var n int
-	for n = 0; x > 127; n++ {
-		buf[n] = 0x80 | uint8(x&0x7F)
-		x >>= 7
-	}
-	buf[n] = uint8(x)
-	n++
-	return buf[0:n]
-}
-
-// EncodeVarint writes a varint-encoded integer to the Buffer.
-// This is the format for the
-// int32, int64, uint32, uint64, bool, and enum
-// protocol buffer types.
-func (p *Buffer) EncodeVarint(x uint64) error {
-	for x >= 1<<7 {
-		p.buf = append(p.buf, uint8(x&0x7f|0x80))
-		x >>= 7
-	}
-	p.buf = append(p.buf, uint8(x))
-	return nil
-}
-
-// SizeVarint returns the varint encoding size of an integer.
-func SizeVarint(x uint64) int {
-	return sizeVarint(x)
-}
-
-func sizeVarint(x uint64) (n int) {
-	for {
-		n++
-		x >>= 7
-		if x == 0 {
-			break
-		}
-	}
-	return n
-}
-
-// EncodeFixed64 writes a 64-bit integer to the Buffer.
-// This is the format for the
-// fixed64, sfixed64, and double protocol buffer types.
-func (p *Buffer) EncodeFixed64(x uint64) error {
-	p.buf = append(p.buf,
-		uint8(x),
-		uint8(x>>8),
-		uint8(x>>16),
-		uint8(x>>24),
-		uint8(x>>32),
-		uint8(x>>40),
-		uint8(x>>48),
-		uint8(x>>56))
-	return nil
-}
-
-func sizeFixed64(x uint64) int {
-	return 8
-}
-
-// EncodeFixed32 writes a 32-bit integer to the Buffer.
-// This is the format for the
-// fixed32, sfixed32, and float protocol buffer types.
-func (p *Buffer) EncodeFixed32(x uint64) error {
-	p.buf = append(p.buf,
-		uint8(x),
-		uint8(x>>8),
-		uint8(x>>16),
-		uint8(x>>24))
-	return nil
-}
-
-func sizeFixed32(x uint64) int {
-	return 4
-}
-
-// EncodeZigzag64 writes a zigzag-encoded 64-bit integer
-// to the Buffer.
-// This is the format used for the sint64 protocol buffer type.
-func (p *Buffer) EncodeZigzag64(x uint64) error {
-	// use signed number to get arithmetic right shift.
-	return p.EncodeVarint((x << 1) ^ uint64((int64(x) >> 63)))
-}
-
-func sizeZigzag64(x uint64) int {
-	return sizeVarint((x << 1) ^ uint64((int64(x) >> 63)))
-}
-
-// EncodeZigzag32 writes a zigzag-encoded 32-bit integer
-// to the Buffer.
-// This is the format used for the sint32 protocol buffer type.
-func (p *Buffer) EncodeZigzag32(x uint64) error {
-	// use signed number to get arithmetic right shift.
-	return p.EncodeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
-}
-
-func sizeZigzag32(x uint64) int {
-	return sizeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
-}
-
-// EncodeRawBytes writes a count-delimited byte buffer to the Buffer.
-// This is the format used for the bytes protocol buffer
-// type and for embedded messages.
-func (p *Buffer) EncodeRawBytes(b []byte) error {
-	p.EncodeVarint(uint64(len(b)))
-	p.buf = append(p.buf, b...)
-	return nil
-}
-
-func sizeRawBytes(b []byte) int {
-	return sizeVarint(uint64(len(b))) +
-		len(b)
-}
-
-// EncodeStringBytes writes an encoded string to the Buffer.
-// This is the format used for the proto2 string type.
-func (p *Buffer) EncodeStringBytes(s string) error {
-	p.EncodeVarint(uint64(len(s)))
-	p.buf = append(p.buf, s...)
-	return nil
-}
-
-func sizeStringBytes(s string) int {
-	return sizeVarint(uint64(len(s))) +
-		len(s)
-}
-
-// Marshaler is the interface representing objects that can marshal themselves.
-type Marshaler interface {
-	Marshal() ([]byte, error)
-}
-
-// Marshal takes the protocol buffer
-// and encodes it into the wire format, returning the data.
-func Marshal(pb Message) ([]byte, error) {
-	// Can the object marshal itself?
-	if m, ok := pb.(Marshaler); ok {
-		return m.Marshal()
-	}
-	p := NewBuffer(nil)
-	err := p.Marshal(pb)
-	if p.buf == nil && err == nil {
-		// Return a non-nil slice on success.
-		return []byte{}, nil
-	}
-	return p.buf, err
-}
-
-// EncodeMessage writes the protocol buffer to the Buffer,
-// prefixed by a varint-encoded length.
-func (p *Buffer) EncodeMessage(pb Message) error {
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return ErrNil
-	}
-	if err == nil {
-		var state errorState
-		err = p.enc_len_struct(GetProperties(t.Elem()), base, &state)
-	}
-	return err
-}
-
-// Marshal takes the protocol buffer
-// and encodes it into the wire format, writing the result to the
-// Buffer.
-func (p *Buffer) Marshal(pb Message) error {
-	// Can the object marshal itself?
-	if m, ok := pb.(Marshaler); ok {
-		data, err := m.Marshal()
-		p.buf = append(p.buf, data...)
-		return err
-	}
-
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return ErrNil
-	}
-	if err == nil {
-		err = p.enc_struct(GetProperties(t.Elem()), base)
-	}
-
-	if collectStats {
-		(stats).Encode++ // Parens are to work around a goimports bug.
-	}
-
-	if len(p.buf) > maxMarshalSize {
-		return ErrTooLarge
-	}
-	return err
-}
-
-// Size returns the encoded size of a protocol buffer.
-func Size(pb Message) (n int) {
-	// Can the object marshal itself?  If so, Size is slow.
-	// TODO: add Size to Marshaler, or add a Sizer interface.
-	if m, ok := pb.(Marshaler); ok {
-		b, _ := m.Marshal()
-		return len(b)
-	}
-
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return 0
-	}
-	if err == nil {
-		n = size_struct(GetProperties(t.Elem()), base)
-	}
-
-	if collectStats {
-		(stats).Size++ // Parens are to work around a goimports bug.
-	}
-
-	return
-}
-
-// Individual type encoders.
-
-// Encode a bool.
-func (o *Buffer) enc_bool(p *Properties, base structPointer) error {
-	v := *structPointer_Bool(base, p.field)
-	if v == nil {
-		return ErrNil
-	}
-	x := 0
-	if *v {
-		x = 1
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_bool(p *Properties, base structPointer) error {
-	v := *structPointer_BoolVal(base, p.field)
-	if !v {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, 1)
-	return nil
-}
-
-func size_bool(p *Properties, base structPointer) int {
-	v := *structPointer_Bool(base, p.field)
-	if v == nil {
-		return 0
-	}
-	return len(p.tagcode) + 1 // each bool takes exactly one byte
-}
-
-func size_proto3_bool(p *Properties, base structPointer) int {
-	v := *structPointer_BoolVal(base, p.field)
-	if !v && !p.oneof {
-		return 0
-	}
-	return len(p.tagcode) + 1 // each bool takes exactly one byte
-}
-
-// Encode an int32.
-func (o *Buffer) enc_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return ErrNil
-	}
-	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_int32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return 0
-	}
-	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-func size_proto3_int32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-// Encode a uint32.
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_uint32(p *Properties, base structPointer) error {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return ErrNil
-	}
-	x := word32_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_uint32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_uint32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return 0
-	}
-	x := word32_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-func size_proto3_uint32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-// Encode an int64.
-func (o *Buffer) enc_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64(base, p.field)
-	if word64_IsNil(v) {
-		return ErrNil
-	}
-	x := word64_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, x)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, x)
-	return nil
-}
-
-func size_int64(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word64(base, p.field)
-	if word64_IsNil(v) {
-		return 0
-	}
-	x := word64_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(x)
-	return
-}
-
-func size_proto3_int64(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(x)
-	return
-}
-
-// Encode a string.
-func (o *Buffer) enc_string(p *Properties, base structPointer) error {
-	v := *structPointer_String(base, p.field)
-	if v == nil {
-		return ErrNil
-	}
-	x := *v
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeStringBytes(x)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_string(p *Properties, base structPointer) error {
-	v := *structPointer_StringVal(base, p.field)
-	if v == "" {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeStringBytes(v)
-	return nil
-}
-
-func size_string(p *Properties, base structPointer) (n int) {
-	v := *structPointer_String(base, p.field)
-	if v == nil {
-		return 0
-	}
-	x := *v
-	n += len(p.tagcode)
-	n += sizeStringBytes(x)
-	return
-}
-
-func size_proto3_string(p *Properties, base structPointer) (n int) {
-	v := *structPointer_StringVal(base, p.field)
-	if v == "" && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeStringBytes(v)
-	return
-}
-
-// All protocol buffer fields are nillable, but be careful.
-func isNil(v reflect.Value) bool {
-	switch v.Kind() {
-	case reflect.Interface, reflect.Map, reflect.Ptr, reflect.Slice:
-		return v.IsNil()
-	}
-	return false
-}
-
-// Encode a message struct.
-func (o *Buffer) enc_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return ErrNil
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, err := m.Marshal()
-		if err != nil && !state.shouldContinue(err, nil) {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-		return state.err
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	return o.enc_len_struct(p.sprop, structp, &state)
-}
-
-func size_struct_message(p *Properties, base structPointer) int {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return 0
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, _ := m.Marshal()
-		n0 := len(p.tagcode)
-		n1 := sizeRawBytes(data)
-		return n0 + n1
-	}
-
-	n0 := len(p.tagcode)
-	n1 := size_struct(p.sprop, structp)
-	n2 := sizeVarint(uint64(n1)) // size of encoded length
-	return n0 + n1 + n2
-}
-
-// Encode a group struct.
-func (o *Buffer) enc_struct_group(p *Properties, base structPointer) error {
-	var state errorState
-	b := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(b) {
-		return ErrNil
-	}
-
-	o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
-	err := o.enc_struct(p.sprop, b)
-	if err != nil && !state.shouldContinue(err, nil) {
-		return err
-	}
-	o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	return state.err
-}
-
-func size_struct_group(p *Properties, base structPointer) (n int) {
-	b := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(b) {
-		return 0
-	}
-
-	n += sizeVarint(uint64((p.Tag << 3) | WireStartGroup))
-	n += size_struct(p.sprop, b)
-	n += sizeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	return
-}
-
-// Encode a slice of bools ([]bool).
-func (o *Buffer) enc_slice_bool(p *Properties, base structPointer) error {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return ErrNil
-	}
-	for _, x := range s {
-		o.buf = append(o.buf, p.tagcode...)
-		v := uint64(0)
-		if x {
-			v = 1
-		}
-		p.valEnc(o, v)
-	}
-	return nil
-}
-
-func size_slice_bool(p *Properties, base structPointer) int {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return 0
-	}
-	return l * (len(p.tagcode) + 1) // each bool takes exactly one byte
-}
-
-// Encode a slice of bools ([]bool) in packed format.
-func (o *Buffer) enc_slice_packed_bool(p *Properties, base structPointer) error {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(l)) // each bool takes exactly one byte
-	for _, x := range s {
-		v := uint64(0)
-		if x {
-			v = 1
-		}
-		p.valEnc(o, v)
-	}
-	return nil
-}
-
-func size_slice_packed_bool(p *Properties, base structPointer) (n int) {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(l))
-	n += l // each bool takes exactly one byte
-	return
-}
-
-// Encode a slice of bytes ([]byte).
-func (o *Buffer) enc_slice_byte(p *Properties, base structPointer) error {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(s)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_slice_byte(p *Properties, base structPointer) error {
-	s := *structPointer_Bytes(base, p.field)
-	if len(s) == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(s)
-	return nil
-}
-
-func size_slice_byte(p *Properties, base structPointer) (n int) {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeRawBytes(s)
-	return
-}
-
-func size_proto3_slice_byte(p *Properties, base structPointer) (n int) {
-	s := *structPointer_Bytes(base, p.field)
-	if len(s) == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeRawBytes(s)
-	return
-}
-
-// Encode a slice of int32s ([]int32).
-func (o *Buffer) enc_slice_int32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		p.valEnc(o, uint64(x))
-	}
-	return nil
-}
-
-func size_slice_int32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		n += p.valSize(uint64(x))
-	}
-	return
-}
-
-// Encode a slice of int32s ([]int32) in packed format.
-func (o *Buffer) enc_slice_packed_int32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		p.valEnc(buf, uint64(x))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_int32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		bufSize += p.valSize(uint64(x))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of uint32s ([]uint32).
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_slice_uint32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		x := s.Index(i)
-		p.valEnc(o, uint64(x))
-	}
-	return nil
-}
-
-func size_slice_uint32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		x := s.Index(i)
-		n += p.valSize(uint64(x))
-	}
-	return
-}
-
-// Encode a slice of uint32s ([]uint32) in packed format.
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_slice_packed_uint32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		p.valEnc(buf, uint64(s.Index(i)))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_uint32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		bufSize += p.valSize(uint64(s.Index(i)))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of int64s ([]int64).
-func (o *Buffer) enc_slice_int64(p *Properties, base structPointer) error {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		p.valEnc(o, s.Index(i))
-	}
-	return nil
-}
-
-func size_slice_int64(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		n += p.valSize(s.Index(i))
-	}
-	return
-}
-
-// Encode a slice of int64s ([]int64) in packed format.
-func (o *Buffer) enc_slice_packed_int64(p *Properties, base structPointer) error {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		p.valEnc(buf, s.Index(i))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_int64(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		bufSize += p.valSize(s.Index(i))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of slice of bytes ([][]byte).
-func (o *Buffer) enc_slice_slice_byte(p *Properties, base structPointer) error {
-	ss := *structPointer_BytesSlice(base, p.field)
-	l := len(ss)
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(ss[i])
-	}
-	return nil
-}
-
-func size_slice_slice_byte(p *Properties, base structPointer) (n int) {
-	ss := *structPointer_BytesSlice(base, p.field)
-	l := len(ss)
-	if l == 0 {
-		return 0
-	}
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		n += sizeRawBytes(ss[i])
-	}
-	return
-}
-
-// Encode a slice of strings ([]string).
-func (o *Buffer) enc_slice_string(p *Properties, base structPointer) error {
-	ss := *structPointer_StringSlice(base, p.field)
-	l := len(ss)
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeStringBytes(ss[i])
-	}
-	return nil
-}
-
-func size_slice_string(p *Properties, base structPointer) (n int) {
-	ss := *structPointer_StringSlice(base, p.field)
-	l := len(ss)
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		n += sizeStringBytes(ss[i])
-	}
-	return
-}
-
-// Encode a slice of message structs ([]*struct).
-func (o *Buffer) enc_slice_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	for i := 0; i < l; i++ {
-		structp := s.Index(i)
-		if structPointer_IsNil(structp) {
-			return errRepeatedHasNil
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, err := m.Marshal()
-			if err != nil && !state.shouldContinue(err, nil) {
-				return err
-			}
-			o.buf = append(o.buf, p.tagcode...)
-			o.EncodeRawBytes(data)
-			continue
-		}
-
-		o.buf = append(o.buf, p.tagcode...)
-		err := o.enc_len_struct(p.sprop, structp, &state)
-		if err != nil && !state.shouldContinue(err, nil) {
-			if err == ErrNil {
-				return errRepeatedHasNil
-			}
-			return err
-		}
-	}
-	return state.err
-}
-
-func size_slice_struct_message(p *Properties, base structPointer) (n int) {
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		structp := s.Index(i)
-		if structPointer_IsNil(structp) {
-			return // return the size up to this point
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, _ := m.Marshal()
-			n += sizeRawBytes(data)
-			continue
-		}
-
-		n0 := size_struct(p.sprop, structp)
-		n1 := sizeVarint(uint64(n0)) // size of encoded length
-		n += n0 + n1
-	}
-	return
-}
-
-// Encode a slice of group structs ([]*struct).
-func (o *Buffer) enc_slice_struct_group(p *Properties, base structPointer) error {
-	var state errorState
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	for i := 0; i < l; i++ {
-		b := s.Index(i)
-		if structPointer_IsNil(b) {
-			return errRepeatedHasNil
-		}
-
-		o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
-
-		err := o.enc_struct(p.sprop, b)
-
-		if err != nil && !state.shouldContinue(err, nil) {
-			if err == ErrNil {
-				return errRepeatedHasNil
-			}
-			return err
-		}
-
-		o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	}
-	return state.err
-}
-
-func size_slice_struct_group(p *Properties, base structPointer) (n int) {
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	n += l * sizeVarint(uint64((p.Tag<<3)|WireStartGroup))
-	n += l * sizeVarint(uint64((p.Tag<<3)|WireEndGroup))
-	for i := 0; i < l; i++ {
-		b := s.Index(i)
-		if structPointer_IsNil(b) {
-			return // return size up to this point
-		}
-
-		n += size_struct(p.sprop, b)
-	}
-	return
-}
-
-// Encode an extension map.
-func (o *Buffer) enc_map(p *Properties, base structPointer) error {
-	exts := structPointer_ExtMap(base, p.field)
-	if err := encodeExtensionsMap(*exts); err != nil {
-		return err
-	}
-
-	return o.enc_map_body(*exts)
-}
-
-func (o *Buffer) enc_exts(p *Properties, base structPointer) error {
-	exts := structPointer_Extensions(base, p.field)
-
-	v, mu := exts.extensionsRead()
-	if v == nil {
-		return nil
-	}
-
-	mu.Lock()
-	defer mu.Unlock()
-	if err := encodeExtensionsMap(v); err != nil {
-		return err
-	}
-
-	return o.enc_map_body(v)
-}
-
-func (o *Buffer) enc_map_body(v map[int32]Extension) error {
-	// Fast-path for common cases: zero or one extensions.
-	if len(v) <= 1 {
-		for _, e := range v {
-			o.buf = append(o.buf, e.enc...)
-		}
-		return nil
-	}
-
-	// Sort keys to provide a deterministic encoding.
-	keys := make([]int, 0, len(v))
-	for k := range v {
-		keys = append(keys, int(k))
-	}
-	sort.Ints(keys)
-
-	for _, k := range keys {
-		o.buf = append(o.buf, v[int32(k)].enc...)
-	}
-	return nil
-}
-
-func size_map(p *Properties, base structPointer) int {
-	v := structPointer_ExtMap(base, p.field)
-	return extensionsMapSize(*v)
-}
-
-func size_exts(p *Properties, base structPointer) int {
-	v := structPointer_Extensions(base, p.field)
-	return extensionsSize(v)
-}
-
-// Encode a map field.
-func (o *Buffer) enc_new_map(p *Properties, base structPointer) error {
-	var state errorState // XXX: or do we need to plumb this through?
-
-	/*
-		A map defined as
-			map<key_type, value_type> map_field = N;
-		is encoded in the same way as
-			message MapFieldEntry {
-				key_type key = 1;
-				value_type value = 2;
-			}
-			repeated MapFieldEntry map_field = N;
-	*/
-
-	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
-	if v.Len() == 0 {
-		return nil
-	}
-
-	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
-
-	enc := func() error {
-		if err := p.mkeyprop.enc(o, p.mkeyprop, keybase); err != nil {
-			return err
-		}
-		if err := p.mvalprop.enc(o, p.mvalprop, valbase); err != nil && err != ErrNil {
-			return err
-		}
-		return nil
-	}
-
-	// Don't sort map keys. It is not required by the spec, and C++ doesn't do it.
-	for _, key := range v.MapKeys() {
-		val := v.MapIndex(key)
-
-		keycopy.Set(key)
-		valcopy.Set(val)
-
-		o.buf = append(o.buf, p.tagcode...)
-		if err := o.enc_len_thing(enc, &state); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func size_new_map(p *Properties, base structPointer) int {
-	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
-
-	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
-
-	n := 0
-	for _, key := range v.MapKeys() {
-		val := v.MapIndex(key)
-		keycopy.Set(key)
-		valcopy.Set(val)
-
-		// Tag codes for key and val are the responsibility of the sub-sizer.
-		keysize := p.mkeyprop.size(p.mkeyprop, keybase)
-		valsize := p.mvalprop.size(p.mvalprop, valbase)
-		entry := keysize + valsize
-		// Add on tag code and length of map entry itself.
-		n += len(p.tagcode) + sizeVarint(uint64(entry)) + entry
-	}
-	return n
-}
-
-// mapEncodeScratch returns a new reflect.Value matching the map's value type,
-// and a structPointer suitable for passing to an encoder or sizer.
-func mapEncodeScratch(mapType reflect.Type) (keycopy, valcopy reflect.Value, keybase, valbase structPointer) {
-	// Prepare addressable doubly-indirect placeholders for the key and value types.
-	// This is needed because the element-type encoders expect **T, but the map iteration produces T.
-
-	keycopy = reflect.New(mapType.Key()).Elem()                 // addressable K
-	keyptr := reflect.New(reflect.PtrTo(keycopy.Type())).Elem() // addressable *K
-	keyptr.Set(keycopy.Addr())                                  //
-	keybase = toStructPointer(keyptr.Addr())                    // **K
-
-	// Value types are more varied and require special handling.
-	switch mapType.Elem().Kind() {
-	case reflect.Slice:
-		// []byte
-		var dummy []byte
-		valcopy = reflect.ValueOf(&dummy).Elem() // addressable []byte
-		valbase = toStructPointer(valcopy.Addr())
-	case reflect.Ptr:
-		// message; the generated field type is map[K]*Msg (so V is *Msg),
-		// so we only need one level of indirection.
-		valcopy = reflect.New(mapType.Elem()).Elem() // addressable V
-		valbase = toStructPointer(valcopy.Addr())
-	default:
-		// everything else
-		valcopy = reflect.New(mapType.Elem()).Elem()                // addressable V
-		valptr := reflect.New(reflect.PtrTo(valcopy.Type())).Elem() // addressable *V
-		valptr.Set(valcopy.Addr())                                  //
-		valbase = toStructPointer(valptr.Addr())                    // **V
-	}
-	return
-}
-
-// Encode a struct.
-func (o *Buffer) enc_struct(prop *StructProperties, base structPointer) error {
-	var state errorState
-	// Encode fields in tag order so that decoders may use optimizations
-	// that depend on the ordering.
-	// https://developers.google.com/protocol-buffers/docs/encoding#order
-	for _, i := range prop.order {
-		p := prop.Prop[i]
-		if p.enc != nil {
-			err := p.enc(o, p, base)
-			if err != nil {
-				if err == ErrNil {
-					if p.Required && state.err == nil {
-						state.err = &RequiredNotSetError{p.Name}
-					}
-				} else if err == errRepeatedHasNil {
-					// Give more context to nil values in repeated fields.
-					return errors.New("repeated field " + p.OrigName + " has nil element")
-				} else if !state.shouldContinue(err, p) {
-					return err
-				}
-			}
-			if len(o.buf) > maxMarshalSize {
-				return ErrTooLarge
-			}
-		}
-	}
-
-	// Do oneof fields.
-	if prop.oneofMarshaler != nil {
-		m := structPointer_Interface(base, prop.stype).(Message)
-		if err := prop.oneofMarshaler(m, o); err == ErrNil {
-			return errOneofHasNil
-		} else if err != nil {
-			return err
-		}
-	}
-
-	// Add unrecognized fields at the end.
-	if prop.unrecField.IsValid() {
-		v := *structPointer_Bytes(base, prop.unrecField)
-		if len(o.buf)+len(v) > maxMarshalSize {
-			return ErrTooLarge
-		}
-		if len(v) > 0 {
-			o.buf = append(o.buf, v...)
-		}
-	}
-
-	return state.err
-}
-
-func size_struct(prop *StructProperties, base structPointer) (n int) {
-	for _, i := range prop.order {
-		p := prop.Prop[i]
-		if p.size != nil {
-			n += p.size(p, base)
-		}
-	}
-
-	// Add unrecognized fields at the end.
-	if prop.unrecField.IsValid() {
-		v := *structPointer_Bytes(base, prop.unrecField)
-		n += len(v)
-	}
-
-	// Factor in any oneof fields.
-	if prop.oneofSizer != nil {
-		m := structPointer_Interface(base, prop.stype).(Message)
-		n += prop.oneofSizer(m)
-	}
-
-	return
-}
-
-var zeroes [20]byte // longer than any conceivable sizeVarint
-
-// Encode a struct, preceded by its encoded length (as a varint).
-func (o *Buffer) enc_len_struct(prop *StructProperties, base structPointer, state *errorState) error {
-	return o.enc_len_thing(func() error { return o.enc_struct(prop, base) }, state)
-}
-
-// Encode something, preceded by its encoded length (as a varint).
-func (o *Buffer) enc_len_thing(enc func() error, state *errorState) error {
-	iLen := len(o.buf)
-	o.buf = append(o.buf, 0, 0, 0, 0) // reserve four bytes for length
-	iMsg := len(o.buf)
-	err := enc()
-	if err != nil && !state.shouldContinue(err, nil) {
-		return err
-	}
-	lMsg := len(o.buf) - iMsg
-	lLen := sizeVarint(uint64(lMsg))
-	switch x := lLen - (iMsg - iLen); {
-	case x > 0: // actual length is x bytes larger than the space we reserved
-		// Move msg x bytes right.
-		o.buf = append(o.buf, zeroes[:x]...)
-		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
-	case x < 0: // actual length is x bytes smaller than the space we reserved
-		// Move msg x bytes left.
-		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
-		o.buf = o.buf[:len(o.buf)+x] // x is negative
-	}
-	// Encode the length in the reserved space.
-	o.buf = o.buf[:iLen]
-	o.EncodeVarint(uint64(lMsg))
-	o.buf = o.buf[:len(o.buf)+lMsg]
-	return state.err
-}
-
-// errorState maintains the first error that occurs and updates that error
-// with additional context.
-type errorState struct {
-	err error
-}
-
-// shouldContinue reports whether encoding should continue upon encountering the
-// given error. If the error is RequiredNotSetError, shouldContinue returns true
-// and, if this is the first appearance of that error, remembers it for future
-// reporting.
-//
-// If prop is not nil, it may update any error with additional context about the
-// field with the error.
-func (s *errorState) shouldContinue(err error, prop *Properties) bool {
-	// Ignore unset required fields.
-	reqNotSet, ok := err.(*RequiredNotSetError)
-	if !ok {
-		return false
-	}
-	if s.err == nil {
-		if prop != nil {
-			err = &RequiredNotSetError{prop.Name + "." + reqNotSet.field}
-		}
-		s.err = err
-	}
-	return true
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/encode_gogo.go b/vendor/github.com/gogo/protobuf/proto/encode_gogo.go
deleted file mode 100644
index 32111b7f41..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/encode_gogo.go
+++ /dev/null
@@ -1,350 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// http://github.com/golang/protobuf/
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"reflect"
-)
-
-func NewRequiredNotSetError(field string) *RequiredNotSetError {
-	return &RequiredNotSetError{field}
-}
-
-type Sizer interface {
-	Size() int
-}
-
-func (o *Buffer) enc_ext_slice_byte(p *Properties, base structPointer) error {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil {
-		return ErrNil
-	}
-	o.buf = append(o.buf, s...)
-	return nil
-}
-
-func size_ext_slice_byte(p *Properties, base structPointer) (n int) {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil {
-		return 0
-	}
-	n += len(s)
-	return
-}
-
-// Encode a reference to bool pointer.
-func (o *Buffer) enc_ref_bool(p *Properties, base structPointer) error {
-	v := *structPointer_BoolVal(base, p.field)
-	x := 0
-	if v {
-		x = 1
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_ref_bool(p *Properties, base structPointer) int {
-	return len(p.tagcode) + 1 // each bool takes exactly one byte
-}
-
-// Encode a reference to int32 pointer.
-func (o *Buffer) enc_ref_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v))
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_ref_int32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v))
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-func (o *Buffer) enc_ref_uint32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_ref_uint32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-// Encode a reference to an int64 pointer.
-func (o *Buffer) enc_ref_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, x)
-	return nil
-}
-
-func size_ref_int64(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(x)
-	return
-}
-
-// Encode a reference to a string pointer.
-func (o *Buffer) enc_ref_string(p *Properties, base structPointer) error {
-	v := *structPointer_StringVal(base, p.field)
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeStringBytes(v)
-	return nil
-}
-
-func size_ref_string(p *Properties, base structPointer) (n int) {
-	v := *structPointer_StringVal(base, p.field)
-	n += len(p.tagcode)
-	n += sizeStringBytes(v)
-	return
-}
-
-// Encode a reference to a message struct.
-func (o *Buffer) enc_ref_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	structp := structPointer_GetRefStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return ErrNil
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, err := m.Marshal()
-		if err != nil && !state.shouldContinue(err, nil) {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-		return nil
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	return o.enc_len_struct(p.sprop, structp, &state)
-}
-
-//TODO this is only copied, please fix this
-func size_ref_struct_message(p *Properties, base structPointer) int {
-	structp := structPointer_GetRefStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return 0
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, _ := m.Marshal()
-		n0 := len(p.tagcode)
-		n1 := sizeRawBytes(data)
-		return n0 + n1
-	}
-
-	n0 := len(p.tagcode)
-	n1 := size_struct(p.sprop, structp)
-	n2 := sizeVarint(uint64(n1)) // size of encoded length
-	return n0 + n1 + n2
-}
-
-// Encode a slice of references to message struct pointers ([]struct).
-func (o *Buffer) enc_slice_ref_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	ss := structPointer_StructRefSlice(base, p.field, p.stype.Size())
-	l := ss.Len()
-	for i := 0; i < l; i++ {
-		structp := ss.Index(i)
-		if structPointer_IsNil(structp) {
-			return errRepeatedHasNil
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, err := m.Marshal()
-			if err != nil && !state.shouldContinue(err, nil) {
-				return err
-			}
-			o.buf = append(o.buf, p.tagcode...)
-			o.EncodeRawBytes(data)
-			continue
-		}
-
-		o.buf = append(o.buf, p.tagcode...)
-		err := o.enc_len_struct(p.sprop, structp, &state)
-		if err != nil && !state.shouldContinue(err, nil) {
-			if err == ErrNil {
-				return errRepeatedHasNil
-			}
-			return err
-		}
-
-	}
-	return state.err
-}
-
-//TODO this is only copied, please fix this
-func size_slice_ref_struct_message(p *Properties, base structPointer) (n int) {
-	ss := structPointer_StructRefSlice(base, p.field, p.stype.Size())
-	l := ss.Len()
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		structp := ss.Index(i)
-		if structPointer_IsNil(structp) {
-			return // return the size up to this point
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, _ := m.Marshal()
-			n += len(p.tagcode)
-			n += sizeRawBytes(data)
-			continue
-		}
-
-		n0 := size_struct(p.sprop, structp)
-		n1 := sizeVarint(uint64(n0)) // size of encoded length
-		n += n0 + n1
-	}
-	return
-}
-
-func (o *Buffer) enc_custom_bytes(p *Properties, base structPointer) error {
-	i := structPointer_InterfaceRef(base, p.field, p.ctype)
-	if i == nil {
-		return ErrNil
-	}
-	custom := i.(Marshaler)
-	data, err := custom.Marshal()
-	if err != nil {
-		return err
-	}
-	if data == nil {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_custom_bytes(p *Properties, base structPointer) (n int) {
-	n += len(p.tagcode)
-	i := structPointer_InterfaceRef(base, p.field, p.ctype)
-	if i == nil {
-		return 0
-	}
-	custom := i.(Marshaler)
-	data, _ := custom.Marshal()
-	n += sizeRawBytes(data)
-	return
-}
-
-func (o *Buffer) enc_custom_ref_bytes(p *Properties, base structPointer) error {
-	custom := structPointer_InterfaceAt(base, p.field, p.ctype).(Marshaler)
-	data, err := custom.Marshal()
-	if err != nil {
-		return err
-	}
-	if data == nil {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_custom_ref_bytes(p *Properties, base structPointer) (n int) {
-	n += len(p.tagcode)
-	i := structPointer_InterfaceAt(base, p.field, p.ctype)
-	if i == nil {
-		return 0
-	}
-	custom := i.(Marshaler)
-	data, _ := custom.Marshal()
-	n += sizeRawBytes(data)
-	return
-}
-
-func (o *Buffer) enc_custom_slice_bytes(p *Properties, base structPointer) error {
-	inter := structPointer_InterfaceRef(base, p.field, p.ctype)
-	if inter == nil {
-		return ErrNil
-	}
-	slice := reflect.ValueOf(inter)
-	l := slice.Len()
-	for i := 0; i < l; i++ {
-		v := slice.Index(i)
-		custom := v.Interface().(Marshaler)
-		data, err := custom.Marshal()
-		if err != nil {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-	}
-	return nil
-}
-
-func size_custom_slice_bytes(p *Properties, base structPointer) (n int) {
-	inter := structPointer_InterfaceRef(base, p.field, p.ctype)
-	if inter == nil {
-		return 0
-	}
-	slice := reflect.ValueOf(inter)
-	l := slice.Len()
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		v := slice.Index(i)
-		custom := v.Interface().(Marshaler)
-		data, _ := custom.Marshal()
-		n += sizeRawBytes(data)
-	}
-	return
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/equal.go b/vendor/github.com/gogo/protobuf/proto/equal.go
deleted file mode 100644
index 2ed1cf5966..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/equal.go
+++ /dev/null
@@ -1,300 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2011 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// Protocol buffer comparison.
-
-package proto
-
-import (
-	"bytes"
-	"log"
-	"reflect"
-	"strings"
-)
-
-/*
-Equal returns true iff protocol buffers a and b are equal.
-The arguments must both be pointers to protocol buffer structs.
-
-Equality is defined in this way:
-  - Two messages are equal iff they are the same type,
-    corresponding fields are equal, unknown field sets
-    are equal, and extensions sets are equal.
-  - Two set scalar fields are equal iff their values are equal.
-    If the fields are of a floating-point type, remember that
-    NaN != x for all x, including NaN. If the message is defined
-    in a proto3 .proto file, fields are not "set"; specifically,
-    zero length proto3 "bytes" fields are equal (nil == {}).
-  - Two repeated fields are equal iff their lengths are the same,
-    and their corresponding elements are equal. Note a "bytes" field,
-    although represented by []byte, is not a repeated field and the
-    rule for the scalar fields described above applies.
-  - Two unset fields are equal.
-  - Two unknown field sets are equal if their current
-    encoded state is equal.
-  - Two extension sets are equal iff they have corresponding
-    elements that are pairwise equal.
-  - Two map fields are equal iff their lengths are the same,
-    and they contain the same set of elements. Zero-length map
-    fields are equal.
-  - Every other combination of things are not equal.
-
-The return value is undefined if a and b are not protocol buffers.
-*/
-func Equal(a, b Message) bool {
-	if a == nil || b == nil {
-		return a == b
-	}
-	v1, v2 := reflect.ValueOf(a), reflect.ValueOf(b)
-	if v1.Type() != v2.Type() {
-		return false
-	}
-	if v1.Kind() == reflect.Ptr {
-		if v1.IsNil() {
-			return v2.IsNil()
-		}
-		if v2.IsNil() {
-			return false
-		}
-		v1, v2 = v1.Elem(), v2.Elem()
-	}
-	if v1.Kind() != reflect.Struct {
-		return false
-	}
-	return equalStruct(v1, v2)
-}
-
-// v1 and v2 are known to have the same type.
-func equalStruct(v1, v2 reflect.Value) bool {
-	sprop := GetProperties(v1.Type())
-	for i := 0; i < v1.NumField(); i++ {
-		f := v1.Type().Field(i)
-		if strings.HasPrefix(f.Name, "XXX_") {
-			continue
-		}
-		f1, f2 := v1.Field(i), v2.Field(i)
-		if f.Type.Kind() == reflect.Ptr {
-			if n1, n2 := f1.IsNil(), f2.IsNil(); n1 && n2 {
-				// both unset
-				continue
-			} else if n1 != n2 {
-				// set/unset mismatch
-				return false
-			}
-			b1, ok := f1.Interface().(raw)
-			if ok {
-				b2 := f2.Interface().(raw)
-				// RawMessage
-				if !bytes.Equal(b1.Bytes(), b2.Bytes()) {
-					return false
-				}
-				continue
-			}
-			f1, f2 = f1.Elem(), f2.Elem()
-		}
-		if !equalAny(f1, f2, sprop.Prop[i]) {
-			return false
-		}
-	}
-
-	if em1 := v1.FieldByName("XXX_InternalExtensions"); em1.IsValid() {
-		em2 := v2.FieldByName("XXX_InternalExtensions")
-		if !equalExtensions(v1.Type(), em1.Interface().(XXX_InternalExtensions), em2.Interface().(XXX_InternalExtensions)) {
-			return false
-		}
-	}
-
-	if em1 := v1.FieldByName("XXX_extensions"); em1.IsValid() {
-		em2 := v2.FieldByName("XXX_extensions")
-		if !equalExtMap(v1.Type(), em1.Interface().(map[int32]Extension), em2.Interface().(map[int32]Extension)) {
-			return false
-		}
-	}
-
-	uf := v1.FieldByName("XXX_unrecognized")
-	if !uf.IsValid() {
-		return true
-	}
-
-	u1 := uf.Bytes()
-	u2 := v2.FieldByName("XXX_unrecognized").Bytes()
-	if !bytes.Equal(u1, u2) {
-		return false
-	}
-
-	return true
-}
-
-// v1 and v2 are known to have the same type.
-// prop may be nil.
-func equalAny(v1, v2 reflect.Value, prop *Properties) bool {
-	if v1.Type() == protoMessageType {
-		m1, _ := v1.Interface().(Message)
-		m2, _ := v2.Interface().(Message)
-		return Equal(m1, m2)
-	}
-	switch v1.Kind() {
-	case reflect.Bool:
-		return v1.Bool() == v2.Bool()
-	case reflect.Float32, reflect.Float64:
-		return v1.Float() == v2.Float()
-	case reflect.Int32, reflect.Int64:
-		return v1.Int() == v2.Int()
-	case reflect.Interface:
-		// Probably a oneof field; compare the inner values.
-		n1, n2 := v1.IsNil(), v2.IsNil()
-		if n1 || n2 {
-			return n1 == n2
-		}
-		e1, e2 := v1.Elem(), v2.Elem()
-		if e1.Type() != e2.Type() {
-			return false
-		}
-		return equalAny(e1, e2, nil)
-	case reflect.Map:
-		if v1.Len() != v2.Len() {
-			return false
-		}
-		for _, key := range v1.MapKeys() {
-			val2 := v2.MapIndex(key)
-			if !val2.IsValid() {
-				// This key was not found in the second map.
-				return false
-			}
-			if !equalAny(v1.MapIndex(key), val2, nil) {
-				return false
-			}
-		}
-		return true
-	case reflect.Ptr:
-		// Maps may have nil values in them, so check for nil.
-		if v1.IsNil() && v2.IsNil() {
-			return true
-		}
-		if v1.IsNil() != v2.IsNil() {
-			return false
-		}
-		return equalAny(v1.Elem(), v2.Elem(), prop)
-	case reflect.Slice:
-		if v1.Type().Elem().Kind() == reflect.Uint8 {
-			// short circuit: []byte
-
-			// Edge case: if this is in a proto3 message, a zero length
-			// bytes field is considered the zero value.
-			if prop != nil && prop.proto3 && v1.Len() == 0 && v2.Len() == 0 {
-				return true
-			}
-			if v1.IsNil() != v2.IsNil() {
-				return false
-			}
-			return bytes.Equal(v1.Interface().([]byte), v2.Interface().([]byte))
-		}
-
-		if v1.Len() != v2.Len() {
-			return false
-		}
-		for i := 0; i < v1.Len(); i++ {
-			if !equalAny(v1.Index(i), v2.Index(i), prop) {
-				return false
-			}
-		}
-		return true
-	case reflect.String:
-		return v1.Interface().(string) == v2.Interface().(string)
-	case reflect.Struct:
-		return equalStruct(v1, v2)
-	case reflect.Uint32, reflect.Uint64:
-		return v1.Uint() == v2.Uint()
-	}
-
-	// unknown type, so not a protocol buffer
-	log.Printf("proto: don't know how to compare %v", v1)
-	return false
-}
-
-// base is the struct type that the extensions are based on.
-// x1 and x2 are InternalExtensions.
-func equalExtensions(base reflect.Type, x1, x2 XXX_InternalExtensions) bool {
-	em1, _ := x1.extensionsRead()
-	em2, _ := x2.extensionsRead()
-	return equalExtMap(base, em1, em2)
-}
-
-func equalExtMap(base reflect.Type, em1, em2 map[int32]Extension) bool {
-	if len(em1) != len(em2) {
-		return false
-	}
-
-	for extNum, e1 := range em1 {
-		e2, ok := em2[extNum]
-		if !ok {
-			return false
-		}
-
-		m1, m2 := e1.value, e2.value
-
-		if m1 != nil && m2 != nil {
-			// Both are unencoded.
-			if !equalAny(reflect.ValueOf(m1), reflect.ValueOf(m2), nil) {
-				return false
-			}
-			continue
-		}
-
-		// At least one is encoded. To do a semantically correct comparison
-		// we need to unmarshal them first.
-		var desc *ExtensionDesc
-		if m := extensionMaps[base]; m != nil {
-			desc = m[extNum]
-		}
-		if desc == nil {
-			log.Printf("proto: don't know how to compare extension %d of %v", extNum, base)
-			continue
-		}
-		var err error
-		if m1 == nil {
-			m1, err = decodeExtension(e1.enc, desc)
-		}
-		if m2 == nil && err == nil {
-			m2, err = decodeExtension(e2.enc, desc)
-		}
-		if err != nil {
-			// The encoded form is invalid.
-			log.Printf("proto: badly encoded extension %d of %v: %v", extNum, base, err)
-			return false
-		}
-		if !equalAny(reflect.ValueOf(m1), reflect.ValueOf(m2), nil) {
-			return false
-		}
-	}
-
-	return true
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/extensions.go b/vendor/github.com/gogo/protobuf/proto/extensions.go
deleted file mode 100644
index 0dfcb538e8..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/extensions.go
+++ /dev/null
@@ -1,693 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-/*
- * Types and routines for supporting protocol buffer extensions.
- */
-
-import (
-	"errors"
-	"fmt"
-	"reflect"
-	"strconv"
-	"sync"
-)
-
-// ErrMissingExtension is the error returned by GetExtension if the named extension is not in the message.
-var ErrMissingExtension = errors.New("proto: missing extension")
-
-// ExtensionRange represents a range of message extensions for a protocol buffer.
-// Used in code generated by the protocol compiler.
-type ExtensionRange struct {
-	Start, End int32 // both inclusive
-}
-
-// extendableProto is an interface implemented by any protocol buffer generated by the current
-// proto compiler that may be extended.
-type extendableProto interface {
-	Message
-	ExtensionRangeArray() []ExtensionRange
-	extensionsWrite() map[int32]Extension
-	extensionsRead() (map[int32]Extension, sync.Locker)
-}
-
-// extendableProtoV1 is an interface implemented by a protocol buffer generated by the previous
-// version of the proto compiler that may be extended.
-type extendableProtoV1 interface {
-	Message
-	ExtensionRangeArray() []ExtensionRange
-	ExtensionMap() map[int32]Extension
-}
-
-type extensionsBytes interface {
-	Message
-	ExtensionRangeArray() []ExtensionRange
-	GetExtensions() *[]byte
-}
-
-// extensionAdapter is a wrapper around extendableProtoV1 that implements extendableProto.
-type extensionAdapter struct {
-	extendableProtoV1
-}
-
-func (e extensionAdapter) extensionsWrite() map[int32]Extension {
-	return e.ExtensionMap()
-}
-
-func (e extensionAdapter) extensionsRead() (map[int32]Extension, sync.Locker) {
-	return e.ExtensionMap(), notLocker{}
-}
-
-// notLocker is a sync.Locker whose Lock and Unlock methods are nops.
-type notLocker struct{}
-
-func (n notLocker) Lock()   {}
-func (n notLocker) Unlock() {}
-
-// extendable returns the extendableProto interface for the given generated proto message.
-// If the proto message has the old extension format, it returns a wrapper that implements
-// the extendableProto interface.
-func extendable(p interface{}) (extendableProto, bool) {
-	if ep, ok := p.(extendableProto); ok {
-		return ep, ok
-	}
-	if ep, ok := p.(extendableProtoV1); ok {
-		return extensionAdapter{ep}, ok
-	}
-	return nil, false
-}
-
-// XXX_InternalExtensions is an internal representation of proto extensions.
-//
-// Each generated message struct type embeds an anonymous XXX_InternalExtensions field,
-// thus gaining the unexported 'extensions' method, which can be called only from the proto package.
-//
-// The methods of XXX_InternalExtensions are not concurrency safe in general,
-// but calls to logically read-only methods such as has and get may be executed concurrently.
-type XXX_InternalExtensions struct {
-	// The struct must be indirect so that if a user inadvertently copies a
-	// generated message and its embedded XXX_InternalExtensions, they
-	// avoid the mayhem of a copied mutex.
-	//
-	// The mutex serializes all logically read-only operations to p.extensionMap.
-	// It is up to the client to ensure that write operations to p.extensionMap are
-	// mutually exclusive with other accesses.
-	p *struct {
-		mu           sync.Mutex
-		extensionMap map[int32]Extension
-	}
-}
-
-// extensionsWrite returns the extension map, creating it on first use.
-func (e *XXX_InternalExtensions) extensionsWrite() map[int32]Extension {
-	if e.p == nil {
-		e.p = new(struct {
-			mu           sync.Mutex
-			extensionMap map[int32]Extension
-		})
-		e.p.extensionMap = make(map[int32]Extension)
-	}
-	return e.p.extensionMap
-}
-
-// extensionsRead returns the extensions map for read-only use.  It may be nil.
-// The caller must hold the returned mutex's lock when accessing Elements within the map.
-func (e *XXX_InternalExtensions) extensionsRead() (map[int32]Extension, sync.Locker) {
-	if e.p == nil {
-		return nil, nil
-	}
-	return e.p.extensionMap, &e.p.mu
-}
-
-type extensionRange interface {
-	Message
-	ExtensionRangeArray() []ExtensionRange
-}
-
-var extendableProtoType = reflect.TypeOf((*extendableProto)(nil)).Elem()
-var extendableProtoV1Type = reflect.TypeOf((*extendableProtoV1)(nil)).Elem()
-var extendableBytesType = reflect.TypeOf((*extensionsBytes)(nil)).Elem()
-var extensionRangeType = reflect.TypeOf((*extensionRange)(nil)).Elem()
-
-// ExtensionDesc represents an extension specification.
-// Used in generated code from the protocol compiler.
-type ExtensionDesc struct {
-	ExtendedType  Message     // nil pointer to the type that is being extended
-	ExtensionType interface{} // nil pointer to the extension type
-	Field         int32       // field number
-	Name          string      // fully-qualified name of extension, for text formatting
-	Tag           string      // protobuf tag style
-	Filename      string      // name of the file in which the extension is defined
-}
-
-func (ed *ExtensionDesc) repeated() bool {
-	t := reflect.TypeOf(ed.ExtensionType)
-	return t.Kind() == reflect.Slice && t.Elem().Kind() != reflect.Uint8
-}
-
-// Extension represents an extension in a message.
-type Extension struct {
-	// When an extension is stored in a message using SetExtension
-	// only desc and value are set. When the message is marshaled
-	// enc will be set to the encoded form of the message.
-	//
-	// When a message is unmarshaled and contains extensions, each
-	// extension will have only enc set. When such an extension is
-	// accessed using GetExtension (or GetExtensions) desc and value
-	// will be set.
-	desc  *ExtensionDesc
-	value interface{}
-	enc   []byte
-}
-
-// SetRawExtension is for testing only.
-func SetRawExtension(base Message, id int32, b []byte) {
-	if ebase, ok := base.(extensionsBytes); ok {
-		clearExtension(base, id)
-		ext := ebase.GetExtensions()
-		*ext = append(*ext, b...)
-		return
-	}
-	epb, ok := extendable(base)
-	if !ok {
-		return
-	}
-	extmap := epb.extensionsWrite()
-	extmap[id] = Extension{enc: b}
-}
-
-// isExtensionField returns true iff the given field number is in an extension range.
-func isExtensionField(pb extensionRange, field int32) bool {
-	for _, er := range pb.ExtensionRangeArray() {
-		if er.Start <= field && field <= er.End {
-			return true
-		}
-	}
-	return false
-}
-
-// checkExtensionTypes checks that the given extension is valid for pb.
-func checkExtensionTypes(pb extendableProto, extension *ExtensionDesc) error {
-	var pbi interface{} = pb
-	// Check the extended type.
-	if ea, ok := pbi.(extensionAdapter); ok {
-		pbi = ea.extendableProtoV1
-	}
-	if a, b := reflect.TypeOf(pbi), reflect.TypeOf(extension.ExtendedType); a != b {
-		return errors.New("proto: bad extended type; " + b.String() + " does not extend " + a.String())
-	}
-	// Check the range.
-	if !isExtensionField(pb, extension.Field) {
-		return errors.New("proto: bad extension number; not in declared ranges")
-	}
-	return nil
-}
-
-// extPropKey is sufficient to uniquely identify an extension.
-type extPropKey struct {
-	base  reflect.Type
-	field int32
-}
-
-var extProp = struct {
-	sync.RWMutex
-	m map[extPropKey]*Properties
-}{
-	m: make(map[extPropKey]*Properties),
-}
-
-func extensionProperties(ed *ExtensionDesc) *Properties {
-	key := extPropKey{base: reflect.TypeOf(ed.ExtendedType), field: ed.Field}
-
-	extProp.RLock()
-	if prop, ok := extProp.m[key]; ok {
-		extProp.RUnlock()
-		return prop
-	}
-	extProp.RUnlock()
-
-	extProp.Lock()
-	defer extProp.Unlock()
-	// Check again.
-	if prop, ok := extProp.m[key]; ok {
-		return prop
-	}
-
-	prop := new(Properties)
-	prop.Init(reflect.TypeOf(ed.ExtensionType), "unknown_name", ed.Tag, nil)
-	extProp.m[key] = prop
-	return prop
-}
-
-// encode encodes any unmarshaled (unencoded) extensions in e.
-func encodeExtensions(e *XXX_InternalExtensions) error {
-	m, mu := e.extensionsRead()
-	if m == nil {
-		return nil // fast path
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	return encodeExtensionsMap(m)
-}
-
-// encode encodes any unmarshaled (unencoded) extensions in e.
-func encodeExtensionsMap(m map[int32]Extension) error {
-	for k, e := range m {
-		if e.value == nil || e.desc == nil {
-			// Extension is only in its encoded form.
-			continue
-		}
-
-		// We don't skip extensions that have an encoded form set,
-		// because the extension value may have been mutated after
-		// the last time this function was called.
-
-		et := reflect.TypeOf(e.desc.ExtensionType)
-		props := extensionProperties(e.desc)
-
-		p := NewBuffer(nil)
-		// If e.value has type T, the encoder expects a *struct{ X T }.
-		// Pass a *T with a zero field and hope it all works out.
-		x := reflect.New(et)
-		x.Elem().Set(reflect.ValueOf(e.value))
-		if err := props.enc(p, props, toStructPointer(x)); err != nil {
-			return err
-		}
-		e.enc = p.buf
-		m[k] = e
-	}
-	return nil
-}
-
-func extensionsSize(e *XXX_InternalExtensions) (n int) {
-	m, mu := e.extensionsRead()
-	if m == nil {
-		return 0
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	return extensionsMapSize(m)
-}
-
-func extensionsMapSize(m map[int32]Extension) (n int) {
-	for _, e := range m {
-		if e.value == nil || e.desc == nil {
-			// Extension is only in its encoded form.
-			n += len(e.enc)
-			continue
-		}
-
-		// We don't skip extensions that have an encoded form set,
-		// because the extension value may have been mutated after
-		// the last time this function was called.
-
-		et := reflect.TypeOf(e.desc.ExtensionType)
-		props := extensionProperties(e.desc)
-
-		// If e.value has type T, the encoder expects a *struct{ X T }.
-		// Pass a *T with a zero field and hope it all works out.
-		x := reflect.New(et)
-		x.Elem().Set(reflect.ValueOf(e.value))
-		n += props.size(props, toStructPointer(x))
-	}
-	return
-}
-
-// HasExtension returns whether the given extension is present in pb.
-func HasExtension(pb Message, extension *ExtensionDesc) bool {
-	if epb, doki := pb.(extensionsBytes); doki {
-		ext := epb.GetExtensions()
-		buf := *ext
-		o := 0
-		for o < len(buf) {
-			tag, n := DecodeVarint(buf[o:])
-			fieldNum := int32(tag >> 3)
-			if int32(fieldNum) == extension.Field {
-				return true
-			}
-			wireType := int(tag & 0x7)
-			o += n
-			l, err := size(buf[o:], wireType)
-			if err != nil {
-				return false
-			}
-			o += l
-		}
-		return false
-	}
-	// TODO: Check types, field numbers, etc.?
-	epb, ok := extendable(pb)
-	if !ok {
-		return false
-	}
-	extmap, mu := epb.extensionsRead()
-	if extmap == nil {
-		return false
-	}
-	mu.Lock()
-	_, ok = extmap[extension.Field]
-	mu.Unlock()
-	return ok
-}
-
-func deleteExtension(pb extensionsBytes, theFieldNum int32, offset int) int {
-	ext := pb.GetExtensions()
-	for offset < len(*ext) {
-		tag, n1 := DecodeVarint((*ext)[offset:])
-		fieldNum := int32(tag >> 3)
-		wireType := int(tag & 0x7)
-		n2, err := size((*ext)[offset+n1:], wireType)
-		if err != nil {
-			panic(err)
-		}
-		newOffset := offset + n1 + n2
-		if fieldNum == theFieldNum {
-			*ext = append((*ext)[:offset], (*ext)[newOffset:]...)
-			return offset
-		}
-		offset = newOffset
-	}
-	return -1
-}
-
-// ClearExtension removes the given extension from pb.
-func ClearExtension(pb Message, extension *ExtensionDesc) {
-	clearExtension(pb, extension.Field)
-}
-
-func clearExtension(pb Message, fieldNum int32) {
-	if epb, doki := pb.(extensionsBytes); doki {
-		offset := 0
-		for offset != -1 {
-			offset = deleteExtension(epb, fieldNum, offset)
-		}
-		return
-	}
-	epb, ok := extendable(pb)
-	if !ok {
-		return
-	}
-	// TODO: Check types, field numbers, etc.?
-	extmap := epb.extensionsWrite()
-	delete(extmap, fieldNum)
-}
-
-// GetExtension parses and returns the given extension of pb.
-// If the extension is not present and has no default value it returns ErrMissingExtension.
-func GetExtension(pb Message, extension *ExtensionDesc) (interface{}, error) {
-	if epb, doki := pb.(extensionsBytes); doki {
-		ext := epb.GetExtensions()
-		o := 0
-		for o < len(*ext) {
-			tag, n := DecodeVarint((*ext)[o:])
-			fieldNum := int32(tag >> 3)
-			wireType := int(tag & 0x7)
-			l, err := size((*ext)[o+n:], wireType)
-			if err != nil {
-				return nil, err
-			}
-			if int32(fieldNum) == extension.Field {
-				v, err := decodeExtension((*ext)[o:o+n+l], extension)
-				if err != nil {
-					return nil, err
-				}
-				return v, nil
-			}
-			o += n + l
-		}
-		return defaultExtensionValue(extension)
-	}
-	epb, ok := extendable(pb)
-	if !ok {
-		return nil, errors.New("proto: not an extendable proto")
-	}
-	if err := checkExtensionTypes(epb, extension); err != nil {
-		return nil, err
-	}
-
-	emap, mu := epb.extensionsRead()
-	if emap == nil {
-		return defaultExtensionValue(extension)
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	e, ok := emap[extension.Field]
-	if !ok {
-		// defaultExtensionValue returns the default value or
-		// ErrMissingExtension if there is no default.
-		return defaultExtensionValue(extension)
-	}
-
-	if e.value != nil {
-		// Already decoded. Check the descriptor, though.
-		if e.desc != extension {
-			// This shouldn't happen. If it does, it means that
-			// GetExtension was called twice with two different
-			// descriptors with the same field number.
-			return nil, errors.New("proto: descriptor conflict")
-		}
-		return e.value, nil
-	}
-
-	v, err := decodeExtension(e.enc, extension)
-	if err != nil {
-		return nil, err
-	}
-
-	// Remember the decoded version and drop the encoded version.
-	// That way it is safe to mutate what we return.
-	e.value = v
-	e.desc = extension
-	e.enc = nil
-	emap[extension.Field] = e
-	return e.value, nil
-}
-
-// defaultExtensionValue returns the default value for extension.
-// If no default for an extension is defined ErrMissingExtension is returned.
-func defaultExtensionValue(extension *ExtensionDesc) (interface{}, error) {
-	t := reflect.TypeOf(extension.ExtensionType)
-	props := extensionProperties(extension)
-
-	sf, _, err := fieldDefault(t, props)
-	if err != nil {
-		return nil, err
-	}
-
-	if sf == nil || sf.value == nil {
-		// There is no default value.
-		return nil, ErrMissingExtension
-	}
-
-	if t.Kind() != reflect.Ptr {
-		// We do not need to return a Ptr, we can directly return sf.value.
-		return sf.value, nil
-	}
-
-	// We need to return an interface{} that is a pointer to sf.value.
-	value := reflect.New(t).Elem()
-	value.Set(reflect.New(value.Type().Elem()))
-	if sf.kind == reflect.Int32 {
-		// We may have an int32 or an enum, but the underlying data is int32.
-		// Since we can't set an int32 into a non int32 reflect.value directly
-		// set it as a int32.
-		value.Elem().SetInt(int64(sf.value.(int32)))
-	} else {
-		value.Elem().Set(reflect.ValueOf(sf.value))
-	}
-	return value.Interface(), nil
-}
-
-// decodeExtension decodes an extension encoded in b.
-func decodeExtension(b []byte, extension *ExtensionDesc) (interface{}, error) {
-	o := NewBuffer(b)
-
-	t := reflect.TypeOf(extension.ExtensionType)
-
-	props := extensionProperties(extension)
-
-	// t is a pointer to a struct, pointer to basic type or a slice.
-	// Allocate a "field" to store the pointer/slice itself; the
-	// pointer/slice will be stored here. We pass
-	// the address of this field to props.dec.
-	// This passes a zero field and a *t and lets props.dec
-	// interpret it as a *struct{ x t }.
-	value := reflect.New(t).Elem()
-
-	for {
-		// Discard wire type and field number varint. It isn't needed.
-		if _, err := o.DecodeVarint(); err != nil {
-			return nil, err
-		}
-
-		if err := props.dec(o, props, toStructPointer(value.Addr())); err != nil {
-			return nil, err
-		}
-
-		if o.index >= len(o.buf) {
-			break
-		}
-	}
-	return value.Interface(), nil
-}
-
-// GetExtensions returns a slice of the extensions present in pb that are also listed in es.
-// The returned slice has the same length as es; missing extensions will appear as nil elements.
-func GetExtensions(pb Message, es []*ExtensionDesc) (extensions []interface{}, err error) {
-	extensions = make([]interface{}, len(es))
-	for i, e := range es {
-		extensions[i], err = GetExtension(pb, e)
-		if err == ErrMissingExtension {
-			err = nil
-		}
-		if err != nil {
-			return
-		}
-	}
-	return
-}
-
-// ExtensionDescs returns a new slice containing pb's extension descriptors, in undefined order.
-// For non-registered extensions, ExtensionDescs returns an incomplete descriptor containing
-// just the Field field, which defines the extension's field number.
-func ExtensionDescs(pb Message) ([]*ExtensionDesc, error) {
-	epb, ok := extendable(pb)
-	if !ok {
-		return nil, fmt.Errorf("proto: %T is not an extendable proto.Message", pb)
-	}
-	registeredExtensions := RegisteredExtensions(pb)
-
-	emap, mu := epb.extensionsRead()
-	if emap == nil {
-		return nil, nil
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	extensions := make([]*ExtensionDesc, 0, len(emap))
-	for extid, e := range emap {
-		desc := e.desc
-		if desc == nil {
-			desc = registeredExtensions[extid]
-			if desc == nil {
-				desc = &ExtensionDesc{Field: extid}
-			}
-		}
-
-		extensions = append(extensions, desc)
-	}
-	return extensions, nil
-}
-
-// SetExtension sets the specified extension of pb to the specified value.
-func SetExtension(pb Message, extension *ExtensionDesc, value interface{}) error {
-	if epb, doki := pb.(extensionsBytes); doki {
-		ClearExtension(pb, extension)
-		ext := epb.GetExtensions()
-		et := reflect.TypeOf(extension.ExtensionType)
-		props := extensionProperties(extension)
-		p := NewBuffer(nil)
-		x := reflect.New(et)
-		x.Elem().Set(reflect.ValueOf(value))
-		if err := props.enc(p, props, toStructPointer(x)); err != nil {
-			return err
-		}
-		*ext = append(*ext, p.buf...)
-		return nil
-	}
-	epb, ok := extendable(pb)
-	if !ok {
-		return errors.New("proto: not an extendable proto")
-	}
-	if err := checkExtensionTypes(epb, extension); err != nil {
-		return err
-	}
-	typ := reflect.TypeOf(extension.ExtensionType)
-	if typ != reflect.TypeOf(value) {
-		return errors.New("proto: bad extension value type")
-	}
-	// nil extension values need to be caught early, because the
-	// encoder can't distinguish an ErrNil due to a nil extension
-	// from an ErrNil due to a missing field. Extensions are
-	// always optional, so the encoder would just swallow the error
-	// and drop all the extensions from the encoded message.
-	if reflect.ValueOf(value).IsNil() {
-		return fmt.Errorf("proto: SetExtension called with nil value of type %T", value)
-	}
-
-	extmap := epb.extensionsWrite()
-	extmap[extension.Field] = Extension{desc: extension, value: value}
-	return nil
-}
-
-// ClearAllExtensions clears all extensions from pb.
-func ClearAllExtensions(pb Message) {
-	if epb, doki := pb.(extensionsBytes); doki {
-		ext := epb.GetExtensions()
-		*ext = []byte{}
-		return
-	}
-	epb, ok := extendable(pb)
-	if !ok {
-		return
-	}
-	m := epb.extensionsWrite()
-	for k := range m {
-		delete(m, k)
-	}
-}
-
-// A global registry of extensions.
-// The generated code will register the generated descriptors by calling RegisterExtension.
-
-var extensionMaps = make(map[reflect.Type]map[int32]*ExtensionDesc)
-
-// RegisterExtension is called from the generated code.
-func RegisterExtension(desc *ExtensionDesc) {
-	st := reflect.TypeOf(desc.ExtendedType).Elem()
-	m := extensionMaps[st]
-	if m == nil {
-		m = make(map[int32]*ExtensionDesc)
-		extensionMaps[st] = m
-	}
-	if _, ok := m[desc.Field]; ok {
-		panic("proto: duplicate extension registered: " + st.String() + " " + strconv.Itoa(int(desc.Field)))
-	}
-	m[desc.Field] = desc
-}
-
-// RegisteredExtensions returns a map of the registered extensions of a
-// protocol buffer struct, indexed by the extension number.
-// The argument pb should be a nil pointer to the struct type.
-func RegisteredExtensions(pb Message) map[int32]*ExtensionDesc {
-	return extensionMaps[reflect.TypeOf(pb).Elem()]
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go b/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
deleted file mode 100644
index ea6478f009..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
+++ /dev/null
@@ -1,294 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"reflect"
-	"sort"
-	"strings"
-	"sync"
-)
-
-func GetBoolExtension(pb Message, extension *ExtensionDesc, ifnotset bool) bool {
-	if reflect.ValueOf(pb).IsNil() {
-		return ifnotset
-	}
-	value, err := GetExtension(pb, extension)
-	if err != nil {
-		return ifnotset
-	}
-	if value == nil {
-		return ifnotset
-	}
-	if value.(*bool) == nil {
-		return ifnotset
-	}
-	return *(value.(*bool))
-}
-
-func (this *Extension) Equal(that *Extension) bool {
-	return bytes.Equal(this.enc, that.enc)
-}
-
-func (this *Extension) Compare(that *Extension) int {
-	return bytes.Compare(this.enc, that.enc)
-}
-
-func SizeOfInternalExtension(m extendableProto) (n int) {
-	return SizeOfExtensionMap(m.extensionsWrite())
-}
-
-func SizeOfExtensionMap(m map[int32]Extension) (n int) {
-	return extensionsMapSize(m)
-}
-
-type sortableMapElem struct {
-	field int32
-	ext   Extension
-}
-
-func newSortableExtensionsFromMap(m map[int32]Extension) sortableExtensions {
-	s := make(sortableExtensions, 0, len(m))
-	for k, v := range m {
-		s = append(s, &sortableMapElem{field: k, ext: v})
-	}
-	return s
-}
-
-type sortableExtensions []*sortableMapElem
-
-func (this sortableExtensions) Len() int { return len(this) }
-
-func (this sortableExtensions) Swap(i, j int) { this[i], this[j] = this[j], this[i] }
-
-func (this sortableExtensions) Less(i, j int) bool { return this[i].field < this[j].field }
-
-func (this sortableExtensions) String() string {
-	sort.Sort(this)
-	ss := make([]string, len(this))
-	for i := range this {
-		ss[i] = fmt.Sprintf("%d: %v", this[i].field, this[i].ext)
-	}
-	return "map[" + strings.Join(ss, ",") + "]"
-}
-
-func StringFromInternalExtension(m extendableProto) string {
-	return StringFromExtensionsMap(m.extensionsWrite())
-}
-
-func StringFromExtensionsMap(m map[int32]Extension) string {
-	return newSortableExtensionsFromMap(m).String()
-}
-
-func StringFromExtensionsBytes(ext []byte) string {
-	m, err := BytesToExtensionsMap(ext)
-	if err != nil {
-		panic(err)
-	}
-	return StringFromExtensionsMap(m)
-}
-
-func EncodeInternalExtension(m extendableProto, data []byte) (n int, err error) {
-	return EncodeExtensionMap(m.extensionsWrite(), data)
-}
-
-func EncodeExtensionMap(m map[int32]Extension, data []byte) (n int, err error) {
-	if err := encodeExtensionsMap(m); err != nil {
-		return 0, err
-	}
-	keys := make([]int, 0, len(m))
-	for k := range m {
-		keys = append(keys, int(k))
-	}
-	sort.Ints(keys)
-	for _, k := range keys {
-		n += copy(data[n:], m[int32(k)].enc)
-	}
-	return n, nil
-}
-
-func GetRawExtension(m map[int32]Extension, id int32) ([]byte, error) {
-	if m[id].value == nil || m[id].desc == nil {
-		return m[id].enc, nil
-	}
-	if err := encodeExtensionsMap(m); err != nil {
-		return nil, err
-	}
-	return m[id].enc, nil
-}
-
-func size(buf []byte, wire int) (int, error) {
-	switch wire {
-	case WireVarint:
-		_, n := DecodeVarint(buf)
-		return n, nil
-	case WireFixed64:
-		return 8, nil
-	case WireBytes:
-		v, n := DecodeVarint(buf)
-		return int(v) + n, nil
-	case WireFixed32:
-		return 4, nil
-	case WireStartGroup:
-		offset := 0
-		for {
-			u, n := DecodeVarint(buf[offset:])
-			fwire := int(u & 0x7)
-			offset += n
-			if fwire == WireEndGroup {
-				return offset, nil
-			}
-			s, err := size(buf[offset:], wire)
-			if err != nil {
-				return 0, err
-			}
-			offset += s
-		}
-	}
-	return 0, fmt.Errorf("proto: can't get size for unknown wire type %d", wire)
-}
-
-func BytesToExtensionsMap(buf []byte) (map[int32]Extension, error) {
-	m := make(map[int32]Extension)
-	i := 0
-	for i < len(buf) {
-		tag, n := DecodeVarint(buf[i:])
-		if n <= 0 {
-			return nil, fmt.Errorf("unable to decode varint")
-		}
-		fieldNum := int32(tag >> 3)
-		wireType := int(tag & 0x7)
-		l, err := size(buf[i+n:], wireType)
-		if err != nil {
-			return nil, err
-		}
-		end := i + int(l) + n
-		m[int32(fieldNum)] = Extension{enc: buf[i:end]}
-		i = end
-	}
-	return m, nil
-}
-
-func NewExtension(e []byte) Extension {
-	ee := Extension{enc: make([]byte, len(e))}
-	copy(ee.enc, e)
-	return ee
-}
-
-func AppendExtension(e Message, tag int32, buf []byte) {
-	if ee, eok := e.(extensionsBytes); eok {
-		ext := ee.GetExtensions()
-		*ext = append(*ext, buf...)
-		return
-	}
-	if ee, eok := e.(extendableProto); eok {
-		m := ee.extensionsWrite()
-		ext := m[int32(tag)] // may be missing
-		ext.enc = append(ext.enc, buf...)
-		m[int32(tag)] = ext
-	}
-}
-
-func encodeExtension(e *Extension) error {
-	if e.value == nil || e.desc == nil {
-		// Extension is only in its encoded form.
-		return nil
-	}
-	// We don't skip extensions that have an encoded form set,
-	// because the extension value may have been mutated after
-	// the last time this function was called.
-
-	et := reflect.TypeOf(e.desc.ExtensionType)
-	props := extensionProperties(e.desc)
-
-	p := NewBuffer(nil)
-	// If e.value has type T, the encoder expects a *struct{ X T }.
-	// Pass a *T with a zero field and hope it all works out.
-	x := reflect.New(et)
-	x.Elem().Set(reflect.ValueOf(e.value))
-	if err := props.enc(p, props, toStructPointer(x)); err != nil {
-		return err
-	}
-	e.enc = p.buf
-	return nil
-}
-
-func (this Extension) GoString() string {
-	if this.enc == nil {
-		if err := encodeExtension(&this); err != nil {
-			panic(err)
-		}
-	}
-	return fmt.Sprintf("proto.NewExtension(%#v)", this.enc)
-}
-
-func SetUnsafeExtension(pb Message, fieldNum int32, value interface{}) error {
-	typ := reflect.TypeOf(pb).Elem()
-	ext, ok := extensionMaps[typ]
-	if !ok {
-		return fmt.Errorf("proto: bad extended type; %s is not extendable", typ.String())
-	}
-	desc, ok := ext[fieldNum]
-	if !ok {
-		return errors.New("proto: bad extension number; not in declared ranges")
-	}
-	return SetExtension(pb, desc, value)
-}
-
-func GetUnsafeExtension(pb Message, fieldNum int32) (interface{}, error) {
-	typ := reflect.TypeOf(pb).Elem()
-	ext, ok := extensionMaps[typ]
-	if !ok {
-		return nil, fmt.Errorf("proto: bad extended type; %s is not extendable", typ.String())
-	}
-	desc, ok := ext[fieldNum]
-	if !ok {
-		return nil, fmt.Errorf("unregistered field number %d", fieldNum)
-	}
-	return GetExtension(pb, desc)
-}
-
-func NewUnsafeXXX_InternalExtensions(m map[int32]Extension) XXX_InternalExtensions {
-	x := &XXX_InternalExtensions{
-		p: new(struct {
-			mu           sync.Mutex
-			extensionMap map[int32]Extension
-		}),
-	}
-	x.p.extensionMap = m
-	return *x
-}
-
-func GetUnsafeExtensionsMap(extendable Message) map[int32]Extension {
-	pb := extendable.(extendableProto)
-	return pb.extensionsWrite()
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/lib.go b/vendor/github.com/gogo/protobuf/proto/lib.go
deleted file mode 100644
index c98d73da49..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/lib.go
+++ /dev/null
@@ -1,897 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-/*
-Package proto converts data structures to and from the wire format of
-protocol buffers.  It works in concert with the Go source code generated
-for .proto files by the protocol compiler.
-
-A summary of the properties of the protocol buffer interface
-for a protocol buffer variable v:
-
-  - Names are turned from camel_case to CamelCase for export.
-  - There are no methods on v to set fields; just treat
-	them as structure fields.
-  - There are getters that return a field's value if set,
-	and return the field's default value if unset.
-	The getters work even if the receiver is a nil message.
-  - The zero value for a struct is its correct initialization state.
-	All desired fields must be set before marshaling.
-  - A Reset() method will restore a protobuf struct to its zero state.
-  - Non-repeated fields are pointers to the values; nil means unset.
-	That is, optional or required field int32 f becomes F *int32.
-  - Repeated fields are slices.
-  - Helper functions are available to aid the setting of fields.
-	msg.Foo = proto.String("hello") // set field
-  - Constants are defined to hold the default values of all fields that
-	have them.  They have the form Default_StructName_FieldName.
-	Because the getter methods handle defaulted values,
-	direct use of these constants should be rare.
-  - Enums are given type names and maps from names to values.
-	Enum values are prefixed by the enclosing message's name, or by the
-	enum's type name if it is a top-level enum. Enum types have a String
-	method, and a Enum method to assist in message construction.
-  - Nested messages, groups and enums have type names prefixed with the name of
-	the surrounding message type.
-  - Extensions are given descriptor names that start with E_,
-	followed by an underscore-delimited list of the nested messages
-	that contain it (if any) followed by the CamelCased name of the
-	extension field itself.  HasExtension, ClearExtension, GetExtension
-	and SetExtension are functions for manipulating extensions.
-  - Oneof field sets are given a single field in their message,
-	with distinguished wrapper types for each possible field value.
-  - Marshal and Unmarshal are functions to encode and decode the wire format.
-
-When the .proto file specifies `syntax="proto3"`, there are some differences:
-
-  - Non-repeated fields of non-message type are values instead of pointers.
-  - Enum types do not get an Enum method.
-
-The simplest way to describe this is to see an example.
-Given file test.proto, containing
-
-	package example;
-
-	enum FOO { X = 17; }
-
-	message Test {
-	  required string label = 1;
-	  optional int32 type = 2 [default=77];
-	  repeated int64 reps = 3;
-	  optional group OptionalGroup = 4 {
-	    required string RequiredField = 5;
-	  }
-	  oneof union {
-	    int32 number = 6;
-	    string name = 7;
-	  }
-	}
-
-The resulting file, test.pb.go, is:
-
-	package example
-
-	import proto "github.com/gogo/protobuf/proto"
-	import math "math"
-
-	type FOO int32
-	const (
-		FOO_X FOO = 17
-	)
-	var FOO_name = map[int32]string{
-		17: "X",
-	}
-	var FOO_value = map[string]int32{
-		"X": 17,
-	}
-
-	func (x FOO) Enum() *FOO {
-		p := new(FOO)
-		*p = x
-		return p
-	}
-	func (x FOO) String() string {
-		return proto.EnumName(FOO_name, int32(x))
-	}
-	func (x *FOO) UnmarshalJSON(data []byte) error {
-		value, err := proto.UnmarshalJSONEnum(FOO_value, data)
-		if err != nil {
-			return err
-		}
-		*x = FOO(value)
-		return nil
-	}
-
-	type Test struct {
-		Label         *string             `protobuf:"bytes,1,req,name=label" json:"label,omitempty"`
-		Type          *int32              `protobuf:"varint,2,opt,name=type,def=77" json:"type,omitempty"`
-		Reps          []int64             `protobuf:"varint,3,rep,name=reps" json:"reps,omitempty"`
-		Optionalgroup *Test_OptionalGroup `protobuf:"group,4,opt,name=OptionalGroup" json:"optionalgroup,omitempty"`
-		// Types that are valid to be assigned to Union:
-		//	*Test_Number
-		//	*Test_Name
-		Union            isTest_Union `protobuf_oneof:"union"`
-		XXX_unrecognized []byte       `json:"-"`
-	}
-	func (m *Test) Reset()         { *m = Test{} }
-	func (m *Test) String() string { return proto.CompactTextString(m) }
-	func (*Test) ProtoMessage() {}
-
-	type isTest_Union interface {
-		isTest_Union()
-	}
-
-	type Test_Number struct {
-		Number int32 `protobuf:"varint,6,opt,name=number"`
-	}
-	type Test_Name struct {
-		Name string `protobuf:"bytes,7,opt,name=name"`
-	}
-
-	func (*Test_Number) isTest_Union() {}
-	func (*Test_Name) isTest_Union()   {}
-
-	func (m *Test) GetUnion() isTest_Union {
-		if m != nil {
-			return m.Union
-		}
-		return nil
-	}
-	const Default_Test_Type int32 = 77
-
-	func (m *Test) GetLabel() string {
-		if m != nil && m.Label != nil {
-			return *m.Label
-		}
-		return ""
-	}
-
-	func (m *Test) GetType() int32 {
-		if m != nil && m.Type != nil {
-			return *m.Type
-		}
-		return Default_Test_Type
-	}
-
-	func (m *Test) GetOptionalgroup() *Test_OptionalGroup {
-		if m != nil {
-			return m.Optionalgroup
-		}
-		return nil
-	}
-
-	type Test_OptionalGroup struct {
-		RequiredField *string `protobuf:"bytes,5,req" json:"RequiredField,omitempty"`
-	}
-	func (m *Test_OptionalGroup) Reset()         { *m = Test_OptionalGroup{} }
-	func (m *Test_OptionalGroup) String() string { return proto.CompactTextString(m) }
-
-	func (m *Test_OptionalGroup) GetRequiredField() string {
-		if m != nil && m.RequiredField != nil {
-			return *m.RequiredField
-		}
-		return ""
-	}
-
-	func (m *Test) GetNumber() int32 {
-		if x, ok := m.GetUnion().(*Test_Number); ok {
-			return x.Number
-		}
-		return 0
-	}
-
-	func (m *Test) GetName() string {
-		if x, ok := m.GetUnion().(*Test_Name); ok {
-			return x.Name
-		}
-		return ""
-	}
-
-	func init() {
-		proto.RegisterEnum("example.FOO", FOO_name, FOO_value)
-	}
-
-To create and play with a Test object:
-
-	package main
-
-	import (
-		"log"
-
-		"github.com/gogo/protobuf/proto"
-		pb "./example.pb"
-	)
-
-	func main() {
-		test := &pb.Test{
-			Label: proto.String("hello"),
-			Type:  proto.Int32(17),
-			Reps:  []int64{1, 2, 3},
-			Optionalgroup: &pb.Test_OptionalGroup{
-				RequiredField: proto.String("good bye"),
-			},
-			Union: &pb.Test_Name{"fred"},
-		}
-		data, err := proto.Marshal(test)
-		if err != nil {
-			log.Fatal("marshaling error: ", err)
-		}
-		newTest := &pb.Test{}
-		err = proto.Unmarshal(data, newTest)
-		if err != nil {
-			log.Fatal("unmarshaling error: ", err)
-		}
-		// Now test and newTest contain the same data.
-		if test.GetLabel() != newTest.GetLabel() {
-			log.Fatalf("data mismatch %q != %q", test.GetLabel(), newTest.GetLabel())
-		}
-		// Use a type switch to determine which oneof was set.
-		switch u := test.Union.(type) {
-		case *pb.Test_Number: // u.Number contains the number.
-		case *pb.Test_Name: // u.Name contains the string.
-		}
-		// etc.
-	}
-*/
-package proto
-
-import (
-	"encoding/json"
-	"fmt"
-	"log"
-	"reflect"
-	"sort"
-	"strconv"
-	"sync"
-)
-
-// Message is implemented by generated protocol buffer messages.
-type Message interface {
-	Reset()
-	String() string
-	ProtoMessage()
-}
-
-// Stats records allocation details about the protocol buffer encoders
-// and decoders.  Useful for tuning the library itself.
-type Stats struct {
-	Emalloc uint64 // mallocs in encode
-	Dmalloc uint64 // mallocs in decode
-	Encode  uint64 // number of encodes
-	Decode  uint64 // number of decodes
-	Chit    uint64 // number of cache hits
-	Cmiss   uint64 // number of cache misses
-	Size    uint64 // number of sizes
-}
-
-// Set to true to enable stats collection.
-const collectStats = false
-
-var stats Stats
-
-// GetStats returns a copy of the global Stats structure.
-func GetStats() Stats { return stats }
-
-// A Buffer is a buffer manager for marshaling and unmarshaling
-// protocol buffers.  It may be reused between invocations to
-// reduce memory usage.  It is not necessary to use a Buffer;
-// the global functions Marshal and Unmarshal create a
-// temporary Buffer and are fine for most applications.
-type Buffer struct {
-	buf   []byte // encode/decode byte stream
-	index int    // read point
-
-	// pools of basic types to amortize allocation.
-	bools   []bool
-	uint32s []uint32
-	uint64s []uint64
-
-	// extra pools, only used with pointer_reflect.go
-	int32s   []int32
-	int64s   []int64
-	float32s []float32
-	float64s []float64
-}
-
-// NewBuffer allocates a new Buffer and initializes its internal data to
-// the contents of the argument slice.
-func NewBuffer(e []byte) *Buffer {
-	return &Buffer{buf: e}
-}
-
-// Reset resets the Buffer, ready for marshaling a new protocol buffer.
-func (p *Buffer) Reset() {
-	p.buf = p.buf[0:0] // for reading/writing
-	p.index = 0        // for reading
-}
-
-// SetBuf replaces the internal buffer with the slice,
-// ready for unmarshaling the contents of the slice.
-func (p *Buffer) SetBuf(s []byte) {
-	p.buf = s
-	p.index = 0
-}
-
-// Bytes returns the contents of the Buffer.
-func (p *Buffer) Bytes() []byte { return p.buf }
-
-/*
- * Helper routines for simplifying the creation of optional fields of basic type.
- */
-
-// Bool is a helper routine that allocates a new bool value
-// to store v and returns a pointer to it.
-func Bool(v bool) *bool {
-	return &v
-}
-
-// Int32 is a helper routine that allocates a new int32 value
-// to store v and returns a pointer to it.
-func Int32(v int32) *int32 {
-	return &v
-}
-
-// Int is a helper routine that allocates a new int32 value
-// to store v and returns a pointer to it, but unlike Int32
-// its argument value is an int.
-func Int(v int) *int32 {
-	p := new(int32)
-	*p = int32(v)
-	return p
-}
-
-// Int64 is a helper routine that allocates a new int64 value
-// to store v and returns a pointer to it.
-func Int64(v int64) *int64 {
-	return &v
-}
-
-// Float32 is a helper routine that allocates a new float32 value
-// to store v and returns a pointer to it.
-func Float32(v float32) *float32 {
-	return &v
-}
-
-// Float64 is a helper routine that allocates a new float64 value
-// to store v and returns a pointer to it.
-func Float64(v float64) *float64 {
-	return &v
-}
-
-// Uint32 is a helper routine that allocates a new uint32 value
-// to store v and returns a pointer to it.
-func Uint32(v uint32) *uint32 {
-	return &v
-}
-
-// Uint64 is a helper routine that allocates a new uint64 value
-// to store v and returns a pointer to it.
-func Uint64(v uint64) *uint64 {
-	return &v
-}
-
-// String is a helper routine that allocates a new string value
-// to store v and returns a pointer to it.
-func String(v string) *string {
-	return &v
-}
-
-// EnumName is a helper function to simplify printing protocol buffer enums
-// by name.  Given an enum map and a value, it returns a useful string.
-func EnumName(m map[int32]string, v int32) string {
-	s, ok := m[v]
-	if ok {
-		return s
-	}
-	return strconv.Itoa(int(v))
-}
-
-// UnmarshalJSONEnum is a helper function to simplify recovering enum int values
-// from their JSON-encoded representation. Given a map from the enum's symbolic
-// names to its int values, and a byte buffer containing the JSON-encoded
-// value, it returns an int32 that can be cast to the enum type by the caller.
-//
-// The function can deal with both JSON representations, numeric and symbolic.
-func UnmarshalJSONEnum(m map[string]int32, data []byte, enumName string) (int32, error) {
-	if data[0] == '"' {
-		// New style: enums are strings.
-		var repr string
-		if err := json.Unmarshal(data, &repr); err != nil {
-			return -1, err
-		}
-		val, ok := m[repr]
-		if !ok {
-			return 0, fmt.Errorf("unrecognized enum %s value %q", enumName, repr)
-		}
-		return val, nil
-	}
-	// Old style: enums are ints.
-	var val int32
-	if err := json.Unmarshal(data, &val); err != nil {
-		return 0, fmt.Errorf("cannot unmarshal %#q into enum %s", data, enumName)
-	}
-	return val, nil
-}
-
-// DebugPrint dumps the encoded data in b in a debugging format with a header
-// including the string s. Used in testing but made available for general debugging.
-func (p *Buffer) DebugPrint(s string, b []byte) {
-	var u uint64
-
-	obuf := p.buf
-	sindex := p.index
-	p.buf = b
-	p.index = 0
-	depth := 0
-
-	fmt.Printf("\n--- %s ---\n", s)
-
-out:
-	for {
-		for i := 0; i < depth; i++ {
-			fmt.Print("  ")
-		}
-
-		index := p.index
-		if index == len(p.buf) {
-			break
-		}
-
-		op, err := p.DecodeVarint()
-		if err != nil {
-			fmt.Printf("%3d: fetching op err %v\n", index, err)
-			break out
-		}
-		tag := op >> 3
-		wire := op & 7
-
-		switch wire {
-		default:
-			fmt.Printf("%3d: t=%3d unknown wire=%d\n",
-				index, tag, wire)
-			break out
-
-		case WireBytes:
-			var r []byte
-
-			r, err = p.DecodeRawBytes(false)
-			if err != nil {
-				break out
-			}
-			fmt.Printf("%3d: t=%3d bytes [%d]", index, tag, len(r))
-			if len(r) <= 6 {
-				for i := 0; i < len(r); i++ {
-					fmt.Printf(" %.2x", r[i])
-				}
-			} else {
-				for i := 0; i < 3; i++ {
-					fmt.Printf(" %.2x", r[i])
-				}
-				fmt.Printf(" ..")
-				for i := len(r) - 3; i < len(r); i++ {
-					fmt.Printf(" %.2x", r[i])
-				}
-			}
-			fmt.Printf("\n")
-
-		case WireFixed32:
-			u, err = p.DecodeFixed32()
-			if err != nil {
-				fmt.Printf("%3d: t=%3d fix32 err %v\n", index, tag, err)
-				break out
-			}
-			fmt.Printf("%3d: t=%3d fix32 %d\n", index, tag, u)
-
-		case WireFixed64:
-			u, err = p.DecodeFixed64()
-			if err != nil {
-				fmt.Printf("%3d: t=%3d fix64 err %v\n", index, tag, err)
-				break out
-			}
-			fmt.Printf("%3d: t=%3d fix64 %d\n", index, tag, u)
-
-		case WireVarint:
-			u, err = p.DecodeVarint()
-			if err != nil {
-				fmt.Printf("%3d: t=%3d varint err %v\n", index, tag, err)
-				break out
-			}
-			fmt.Printf("%3d: t=%3d varint %d\n", index, tag, u)
-
-		case WireStartGroup:
-			fmt.Printf("%3d: t=%3d start\n", index, tag)
-			depth++
-
-		case WireEndGroup:
-			depth--
-			fmt.Printf("%3d: t=%3d end\n", index, tag)
-		}
-	}
-
-	if depth != 0 {
-		fmt.Printf("%3d: start-end not balanced %d\n", p.index, depth)
-	}
-	fmt.Printf("\n")
-
-	p.buf = obuf
-	p.index = sindex
-}
-
-// SetDefaults sets unset protocol buffer fields to their default values.
-// It only modifies fields that are both unset and have defined defaults.
-// It recursively sets default values in any non-nil sub-messages.
-func SetDefaults(pb Message) {
-	setDefaults(reflect.ValueOf(pb), true, false)
-}
-
-// v is a pointer to a struct.
-func setDefaults(v reflect.Value, recur, zeros bool) {
-	v = v.Elem()
-
-	defaultMu.RLock()
-	dm, ok := defaults[v.Type()]
-	defaultMu.RUnlock()
-	if !ok {
-		dm = buildDefaultMessage(v.Type())
-		defaultMu.Lock()
-		defaults[v.Type()] = dm
-		defaultMu.Unlock()
-	}
-
-	for _, sf := range dm.scalars {
-		f := v.Field(sf.index)
-		if !f.IsNil() {
-			// field already set
-			continue
-		}
-		dv := sf.value
-		if dv == nil && !zeros {
-			// no explicit default, and don't want to set zeros
-			continue
-		}
-		fptr := f.Addr().Interface() // **T
-		// TODO: Consider batching the allocations we do here.
-		switch sf.kind {
-		case reflect.Bool:
-			b := new(bool)
-			if dv != nil {
-				*b = dv.(bool)
-			}
-			*(fptr.(**bool)) = b
-		case reflect.Float32:
-			f := new(float32)
-			if dv != nil {
-				*f = dv.(float32)
-			}
-			*(fptr.(**float32)) = f
-		case reflect.Float64:
-			f := new(float64)
-			if dv != nil {
-				*f = dv.(float64)
-			}
-			*(fptr.(**float64)) = f
-		case reflect.Int32:
-			// might be an enum
-			if ft := f.Type(); ft != int32PtrType {
-				// enum
-				f.Set(reflect.New(ft.Elem()))
-				if dv != nil {
-					f.Elem().SetInt(int64(dv.(int32)))
-				}
-			} else {
-				// int32 field
-				i := new(int32)
-				if dv != nil {
-					*i = dv.(int32)
-				}
-				*(fptr.(**int32)) = i
-			}
-		case reflect.Int64:
-			i := new(int64)
-			if dv != nil {
-				*i = dv.(int64)
-			}
-			*(fptr.(**int64)) = i
-		case reflect.String:
-			s := new(string)
-			if dv != nil {
-				*s = dv.(string)
-			}
-			*(fptr.(**string)) = s
-		case reflect.Uint8:
-			// exceptional case: []byte
-			var b []byte
-			if dv != nil {
-				db := dv.([]byte)
-				b = make([]byte, len(db))
-				copy(b, db)
-			} else {
-				b = []byte{}
-			}
-			*(fptr.(*[]byte)) = b
-		case reflect.Uint32:
-			u := new(uint32)
-			if dv != nil {
-				*u = dv.(uint32)
-			}
-			*(fptr.(**uint32)) = u
-		case reflect.Uint64:
-			u := new(uint64)
-			if dv != nil {
-				*u = dv.(uint64)
-			}
-			*(fptr.(**uint64)) = u
-		default:
-			log.Printf("proto: can't set default for field %v (sf.kind=%v)", f, sf.kind)
-		}
-	}
-
-	for _, ni := range dm.nested {
-		f := v.Field(ni)
-		// f is *T or []*T or map[T]*T
-		switch f.Kind() {
-		case reflect.Ptr:
-			if f.IsNil() {
-				continue
-			}
-			setDefaults(f, recur, zeros)
-
-		case reflect.Slice:
-			for i := 0; i < f.Len(); i++ {
-				e := f.Index(i)
-				if e.IsNil() {
-					continue
-				}
-				setDefaults(e, recur, zeros)
-			}
-
-		case reflect.Map:
-			for _, k := range f.MapKeys() {
-				e := f.MapIndex(k)
-				if e.IsNil() {
-					continue
-				}
-				setDefaults(e, recur, zeros)
-			}
-		}
-	}
-}
-
-var (
-	// defaults maps a protocol buffer struct type to a slice of the fields,
-	// with its scalar fields set to their proto-declared non-zero default values.
-	defaultMu sync.RWMutex
-	defaults  = make(map[reflect.Type]defaultMessage)
-
-	int32PtrType = reflect.TypeOf((*int32)(nil))
-)
-
-// defaultMessage represents information about the default values of a message.
-type defaultMessage struct {
-	scalars []scalarField
-	nested  []int // struct field index of nested messages
-}
-
-type scalarField struct {
-	index int          // struct field index
-	kind  reflect.Kind // element type (the T in *T or []T)
-	value interface{}  // the proto-declared default value, or nil
-}
-
-// t is a struct type.
-func buildDefaultMessage(t reflect.Type) (dm defaultMessage) {
-	sprop := GetProperties(t)
-	for _, prop := range sprop.Prop {
-		fi, ok := sprop.decoderTags.get(prop.Tag)
-		if !ok {
-			// XXX_unrecognized
-			continue
-		}
-		ft := t.Field(fi).Type
-
-		sf, nested, err := fieldDefault(ft, prop)
-		switch {
-		case err != nil:
-			log.Print(err)
-		case nested:
-			dm.nested = append(dm.nested, fi)
-		case sf != nil:
-			sf.index = fi
-			dm.scalars = append(dm.scalars, *sf)
-		}
-	}
-
-	return dm
-}
-
-// fieldDefault returns the scalarField for field type ft.
-// sf will be nil if the field can not have a default.
-// nestedMessage will be true if this is a nested message.
-// Note that sf.index is not set on return.
-func fieldDefault(ft reflect.Type, prop *Properties) (sf *scalarField, nestedMessage bool, err error) {
-	var canHaveDefault bool
-	switch ft.Kind() {
-	case reflect.Ptr:
-		if ft.Elem().Kind() == reflect.Struct {
-			nestedMessage = true
-		} else {
-			canHaveDefault = true // proto2 scalar field
-		}
-
-	case reflect.Slice:
-		switch ft.Elem().Kind() {
-		case reflect.Ptr:
-			nestedMessage = true // repeated message
-		case reflect.Uint8:
-			canHaveDefault = true // bytes field
-		}
-
-	case reflect.Map:
-		if ft.Elem().Kind() == reflect.Ptr {
-			nestedMessage = true // map with message values
-		}
-	}
-
-	if !canHaveDefault {
-		if nestedMessage {
-			return nil, true, nil
-		}
-		return nil, false, nil
-	}
-
-	// We now know that ft is a pointer or slice.
-	sf = &scalarField{kind: ft.Elem().Kind()}
-
-	// scalar fields without defaults
-	if !prop.HasDefault {
-		return sf, false, nil
-	}
-
-	// a scalar field: either *T or []byte
-	switch ft.Elem().Kind() {
-	case reflect.Bool:
-		x, err := strconv.ParseBool(prop.Default)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default bool %q: %v", prop.Default, err)
-		}
-		sf.value = x
-	case reflect.Float32:
-		x, err := strconv.ParseFloat(prop.Default, 32)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default float32 %q: %v", prop.Default, err)
-		}
-		sf.value = float32(x)
-	case reflect.Float64:
-		x, err := strconv.ParseFloat(prop.Default, 64)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default float64 %q: %v", prop.Default, err)
-		}
-		sf.value = x
-	case reflect.Int32:
-		x, err := strconv.ParseInt(prop.Default, 10, 32)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default int32 %q: %v", prop.Default, err)
-		}
-		sf.value = int32(x)
-	case reflect.Int64:
-		x, err := strconv.ParseInt(prop.Default, 10, 64)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default int64 %q: %v", prop.Default, err)
-		}
-		sf.value = x
-	case reflect.String:
-		sf.value = prop.Default
-	case reflect.Uint8:
-		// []byte (not *uint8)
-		sf.value = []byte(prop.Default)
-	case reflect.Uint32:
-		x, err := strconv.ParseUint(prop.Default, 10, 32)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default uint32 %q: %v", prop.Default, err)
-		}
-		sf.value = uint32(x)
-	case reflect.Uint64:
-		x, err := strconv.ParseUint(prop.Default, 10, 64)
-		if err != nil {
-			return nil, false, fmt.Errorf("proto: bad default uint64 %q: %v", prop.Default, err)
-		}
-		sf.value = x
-	default:
-		return nil, false, fmt.Errorf("proto: unhandled def kind %v", ft.Elem().Kind())
-	}
-
-	return sf, false, nil
-}
-
-// Map fields may have key types of non-float scalars, strings and enums.
-// The easiest way to sort them in some deterministic order is to use fmt.
-// If this turns out to be inefficient we can always consider other options,
-// such as doing a Schwartzian transform.
-
-func mapKeys(vs []reflect.Value) sort.Interface {
-	s := mapKeySorter{
-		vs: vs,
-		// default Less function: textual comparison
-		less: func(a, b reflect.Value) bool {
-			return fmt.Sprint(a.Interface()) < fmt.Sprint(b.Interface())
-		},
-	}
-
-	// Type specialization per https://developers.google.com/protocol-buffers/docs/proto#maps;
-	// numeric keys are sorted numerically.
-	if len(vs) == 0 {
-		return s
-	}
-	switch vs[0].Kind() {
-	case reflect.Int32, reflect.Int64:
-		s.less = func(a, b reflect.Value) bool { return a.Int() < b.Int() }
-	case reflect.Uint32, reflect.Uint64:
-		s.less = func(a, b reflect.Value) bool { return a.Uint() < b.Uint() }
-	}
-
-	return s
-}
-
-type mapKeySorter struct {
-	vs   []reflect.Value
-	less func(a, b reflect.Value) bool
-}
-
-func (s mapKeySorter) Len() int      { return len(s.vs) }
-func (s mapKeySorter) Swap(i, j int) { s.vs[i], s.vs[j] = s.vs[j], s.vs[i] }
-func (s mapKeySorter) Less(i, j int) bool {
-	return s.less(s.vs[i], s.vs[j])
-}
-
-// isProto3Zero reports whether v is a zero proto3 value.
-func isProto3Zero(v reflect.Value) bool {
-	switch v.Kind() {
-	case reflect.Bool:
-		return !v.Bool()
-	case reflect.Int32, reflect.Int64:
-		return v.Int() == 0
-	case reflect.Uint32, reflect.Uint64:
-		return v.Uint() == 0
-	case reflect.Float32, reflect.Float64:
-		return v.Float() == 0
-	case reflect.String:
-		return v.String() == ""
-	}
-	return false
-}
-
-// ProtoPackageIsVersion2 is referenced from generated protocol buffer files
-// to assert that that code is compatible with this version of the proto package.
-const GoGoProtoPackageIsVersion2 = true
-
-// ProtoPackageIsVersion1 is referenced from generated protocol buffer files
-// to assert that that code is compatible with this version of the proto package.
-const GoGoProtoPackageIsVersion1 = true
diff --git a/vendor/github.com/gogo/protobuf/proto/lib_gogo.go b/vendor/github.com/gogo/protobuf/proto/lib_gogo.go
deleted file mode 100644
index 4b4f7c909e..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/lib_gogo.go
+++ /dev/null
@@ -1,42 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"encoding/json"
-	"strconv"
-)
-
-func MarshalJSONEnum(m map[int32]string, value int32) ([]byte, error) {
-	s, ok := m[value]
-	if !ok {
-		s = strconv.Itoa(int(value))
-	}
-	return json.Marshal(s)
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/message_set.go b/vendor/github.com/gogo/protobuf/proto/message_set.go
deleted file mode 100644
index fd982decd6..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/message_set.go
+++ /dev/null
@@ -1,311 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-/*
- * Support for message sets.
- */
-
-import (
-	"bytes"
-	"encoding/json"
-	"errors"
-	"fmt"
-	"reflect"
-	"sort"
-)
-
-// errNoMessageTypeID occurs when a protocol buffer does not have a message type ID.
-// A message type ID is required for storing a protocol buffer in a message set.
-var errNoMessageTypeID = errors.New("proto does not have a message type ID")
-
-// The first two types (_MessageSet_Item and messageSet)
-// model what the protocol compiler produces for the following protocol message:
-//   message MessageSet {
-//     repeated group Item = 1 {
-//       required int32 type_id = 2;
-//       required string message = 3;
-//     };
-//   }
-// That is the MessageSet wire format. We can't use a proto to generate these
-// because that would introduce a circular dependency between it and this package.
-
-type _MessageSet_Item struct {
-	TypeId  *int32 `protobuf:"varint,2,req,name=type_id"`
-	Message []byte `protobuf:"bytes,3,req,name=message"`
-}
-
-type messageSet struct {
-	Item             []*_MessageSet_Item `protobuf:"group,1,rep"`
-	XXX_unrecognized []byte
-	// TODO: caching?
-}
-
-// Make sure messageSet is a Message.
-var _ Message = (*messageSet)(nil)
-
-// messageTypeIder is an interface satisfied by a protocol buffer type
-// that may be stored in a MessageSet.
-type messageTypeIder interface {
-	MessageTypeId() int32
-}
-
-func (ms *messageSet) find(pb Message) *_MessageSet_Item {
-	mti, ok := pb.(messageTypeIder)
-	if !ok {
-		return nil
-	}
-	id := mti.MessageTypeId()
-	for _, item := range ms.Item {
-		if *item.TypeId == id {
-			return item
-		}
-	}
-	return nil
-}
-
-func (ms *messageSet) Has(pb Message) bool {
-	if ms.find(pb) != nil {
-		return true
-	}
-	return false
-}
-
-func (ms *messageSet) Unmarshal(pb Message) error {
-	if item := ms.find(pb); item != nil {
-		return Unmarshal(item.Message, pb)
-	}
-	if _, ok := pb.(messageTypeIder); !ok {
-		return errNoMessageTypeID
-	}
-	return nil // TODO: return error instead?
-}
-
-func (ms *messageSet) Marshal(pb Message) error {
-	msg, err := Marshal(pb)
-	if err != nil {
-		return err
-	}
-	if item := ms.find(pb); item != nil {
-		// reuse existing item
-		item.Message = msg
-		return nil
-	}
-
-	mti, ok := pb.(messageTypeIder)
-	if !ok {
-		return errNoMessageTypeID
-	}
-
-	mtid := mti.MessageTypeId()
-	ms.Item = append(ms.Item, &_MessageSet_Item{
-		TypeId:  &mtid,
-		Message: msg,
-	})
-	return nil
-}
-
-func (ms *messageSet) Reset()         { *ms = messageSet{} }
-func (ms *messageSet) String() string { return CompactTextString(ms) }
-func (*messageSet) ProtoMessage()     {}
-
-// Support for the message_set_wire_format message option.
-
-func skipVarint(buf []byte) []byte {
-	i := 0
-	for ; buf[i]&0x80 != 0; i++ {
-	}
-	return buf[i+1:]
-}
-
-// MarshalMessageSet encodes the extension map represented by m in the message set wire format.
-// It is called by generated Marshal methods on protocol buffer messages with the message_set_wire_format option.
-func MarshalMessageSet(exts interface{}) ([]byte, error) {
-	var m map[int32]Extension
-	switch exts := exts.(type) {
-	case *XXX_InternalExtensions:
-		if err := encodeExtensions(exts); err != nil {
-			return nil, err
-		}
-		m, _ = exts.extensionsRead()
-	case map[int32]Extension:
-		if err := encodeExtensionsMap(exts); err != nil {
-			return nil, err
-		}
-		m = exts
-	default:
-		return nil, errors.New("proto: not an extension map")
-	}
-
-	// Sort extension IDs to provide a deterministic encoding.
-	// See also enc_map in encode.go.
-	ids := make([]int, 0, len(m))
-	for id := range m {
-		ids = append(ids, int(id))
-	}
-	sort.Ints(ids)
-
-	ms := &messageSet{Item: make([]*_MessageSet_Item, 0, len(m))}
-	for _, id := range ids {
-		e := m[int32(id)]
-		// Remove the wire type and field number varint, as well as the length varint.
-		msg := skipVarint(skipVarint(e.enc))
-
-		ms.Item = append(ms.Item, &_MessageSet_Item{
-			TypeId:  Int32(int32(id)),
-			Message: msg,
-		})
-	}
-	return Marshal(ms)
-}
-
-// UnmarshalMessageSet decodes the extension map encoded in buf in the message set wire format.
-// It is called by generated Unmarshal methods on protocol buffer messages with the message_set_wire_format option.
-func UnmarshalMessageSet(buf []byte, exts interface{}) error {
-	var m map[int32]Extension
-	switch exts := exts.(type) {
-	case *XXX_InternalExtensions:
-		m = exts.extensionsWrite()
-	case map[int32]Extension:
-		m = exts
-	default:
-		return errors.New("proto: not an extension map")
-	}
-
-	ms := new(messageSet)
-	if err := Unmarshal(buf, ms); err != nil {
-		return err
-	}
-	for _, item := range ms.Item {
-		id := *item.TypeId
-		msg := item.Message
-
-		// Restore wire type and field number varint, plus length varint.
-		// Be careful to preserve duplicate items.
-		b := EncodeVarint(uint64(id)<<3 | WireBytes)
-		if ext, ok := m[id]; ok {
-			// Existing data; rip off the tag and length varint
-			// so we join the new data correctly.
-			// We can assume that ext.enc is set because we are unmarshaling.
-			o := ext.enc[len(b):]   // skip wire type and field number
-			_, n := DecodeVarint(o) // calculate length of length varint
-			o = o[n:]               // skip length varint
-			msg = append(o, msg...) // join old data and new data
-		}
-		b = append(b, EncodeVarint(uint64(len(msg)))...)
-		b = append(b, msg...)
-
-		m[id] = Extension{enc: b}
-	}
-	return nil
-}
-
-// MarshalMessageSetJSON encodes the extension map represented by m in JSON format.
-// It is called by generated MarshalJSON methods on protocol buffer messages with the message_set_wire_format option.
-func MarshalMessageSetJSON(exts interface{}) ([]byte, error) {
-	var m map[int32]Extension
-	switch exts := exts.(type) {
-	case *XXX_InternalExtensions:
-		m, _ = exts.extensionsRead()
-	case map[int32]Extension:
-		m = exts
-	default:
-		return nil, errors.New("proto: not an extension map")
-	}
-	var b bytes.Buffer
-	b.WriteByte('{')
-
-	// Process the map in key order for deterministic output.
-	ids := make([]int32, 0, len(m))
-	for id := range m {
-		ids = append(ids, id)
-	}
-	sort.Sort(int32Slice(ids)) // int32Slice defined in text.go
-
-	for i, id := range ids {
-		ext := m[id]
-		if i > 0 {
-			b.WriteByte(',')
-		}
-
-		msd, ok := messageSetMap[id]
-		if !ok {
-			// Unknown type; we can't render it, so skip it.
-			continue
-		}
-		fmt.Fprintf(&b, `"[%s]":`, msd.name)
-
-		x := ext.value
-		if x == nil {
-			x = reflect.New(msd.t.Elem()).Interface()
-			if err := Unmarshal(ext.enc, x.(Message)); err != nil {
-				return nil, err
-			}
-		}
-		d, err := json.Marshal(x)
-		if err != nil {
-			return nil, err
-		}
-		b.Write(d)
-	}
-	b.WriteByte('}')
-	return b.Bytes(), nil
-}
-
-// UnmarshalMessageSetJSON decodes the extension map encoded in buf in JSON format.
-// It is called by generated UnmarshalJSON methods on protocol buffer messages with the message_set_wire_format option.
-func UnmarshalMessageSetJSON(buf []byte, exts interface{}) error {
-	// Common-case fast path.
-	if len(buf) == 0 || bytes.Equal(buf, []byte("{}")) {
-		return nil
-	}
-
-	// This is fairly tricky, and it's not clear that it is needed.
-	return errors.New("TODO: UnmarshalMessageSetJSON not yet implemented")
-}
-
-// A global registry of types that can be used in a MessageSet.
-
-var messageSetMap = make(map[int32]messageSetDesc)
-
-type messageSetDesc struct {
-	t    reflect.Type // pointer to struct
-	name string
-}
-
-// RegisterMessageSetType is called from the generated code.
-func RegisterMessageSetType(m Message, fieldNum int32, name string) {
-	messageSetMap[fieldNum] = messageSetDesc{
-		t:    reflect.TypeOf(m),
-		name: name,
-	}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go b/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
deleted file mode 100644
index fb512e2e16..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
+++ /dev/null
@@ -1,484 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2012 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// +build appengine js
-
-// This file contains an implementation of proto field accesses using package reflect.
-// It is slower than the code in pointer_unsafe.go but it avoids package unsafe and can
-// be used on App Engine.
-
-package proto
-
-import (
-	"math"
-	"reflect"
-)
-
-// A structPointer is a pointer to a struct.
-type structPointer struct {
-	v reflect.Value
-}
-
-// toStructPointer returns a structPointer equivalent to the given reflect value.
-// The reflect value must itself be a pointer to a struct.
-func toStructPointer(v reflect.Value) structPointer {
-	return structPointer{v}
-}
-
-// IsNil reports whether p is nil.
-func structPointer_IsNil(p structPointer) bool {
-	return p.v.IsNil()
-}
-
-// Interface returns the struct pointer as an interface value.
-func structPointer_Interface(p structPointer, _ reflect.Type) interface{} {
-	return p.v.Interface()
-}
-
-// A field identifies a field in a struct, accessible from a structPointer.
-// In this implementation, a field is identified by the sequence of field indices
-// passed to reflect's FieldByIndex.
-type field []int
-
-// toField returns a field equivalent to the given reflect field.
-func toField(f *reflect.StructField) field {
-	return f.Index
-}
-
-// invalidField is an invalid field identifier.
-var invalidField = field(nil)
-
-// IsValid reports whether the field identifier is valid.
-func (f field) IsValid() bool { return f != nil }
-
-// field returns the given field in the struct as a reflect value.
-func structPointer_field(p structPointer, f field) reflect.Value {
-	// Special case: an extension map entry with a value of type T
-	// passes a *T to the struct-handling code with a zero field,
-	// expecting that it will be treated as equivalent to *struct{ X T },
-	// which has the same memory layout. We have to handle that case
-	// specially, because reflect will panic if we call FieldByIndex on a
-	// non-struct.
-	if f == nil {
-		return p.v.Elem()
-	}
-
-	return p.v.Elem().FieldByIndex(f)
-}
-
-// ifield returns the given field in the struct as an interface value.
-func structPointer_ifield(p structPointer, f field) interface{} {
-	return structPointer_field(p, f).Addr().Interface()
-}
-
-// Bytes returns the address of a []byte field in the struct.
-func structPointer_Bytes(p structPointer, f field) *[]byte {
-	return structPointer_ifield(p, f).(*[]byte)
-}
-
-// BytesSlice returns the address of a [][]byte field in the struct.
-func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
-	return structPointer_ifield(p, f).(*[][]byte)
-}
-
-// Bool returns the address of a *bool field in the struct.
-func structPointer_Bool(p structPointer, f field) **bool {
-	return structPointer_ifield(p, f).(**bool)
-}
-
-// BoolVal returns the address of a bool field in the struct.
-func structPointer_BoolVal(p structPointer, f field) *bool {
-	return structPointer_ifield(p, f).(*bool)
-}
-
-// BoolSlice returns the address of a []bool field in the struct.
-func structPointer_BoolSlice(p structPointer, f field) *[]bool {
-	return structPointer_ifield(p, f).(*[]bool)
-}
-
-// String returns the address of a *string field in the struct.
-func structPointer_String(p structPointer, f field) **string {
-	return structPointer_ifield(p, f).(**string)
-}
-
-// StringVal returns the address of a string field in the struct.
-func structPointer_StringVal(p structPointer, f field) *string {
-	return structPointer_ifield(p, f).(*string)
-}
-
-// StringSlice returns the address of a []string field in the struct.
-func structPointer_StringSlice(p structPointer, f field) *[]string {
-	return structPointer_ifield(p, f).(*[]string)
-}
-
-// Extensions returns the address of an extension map field in the struct.
-func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
-	return structPointer_ifield(p, f).(*XXX_InternalExtensions)
-}
-
-// ExtMap returns the address of an extension map field in the struct.
-func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
-	return structPointer_ifield(p, f).(*map[int32]Extension)
-}
-
-// NewAt returns the reflect.Value for a pointer to a field in the struct.
-func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
-	return structPointer_field(p, f).Addr()
-}
-
-// SetStructPointer writes a *struct field in the struct.
-func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
-	structPointer_field(p, f).Set(q.v)
-}
-
-// GetStructPointer reads a *struct field in the struct.
-func structPointer_GetStructPointer(p structPointer, f field) structPointer {
-	return structPointer{structPointer_field(p, f)}
-}
-
-// StructPointerSlice the address of a []*struct field in the struct.
-func structPointer_StructPointerSlice(p structPointer, f field) structPointerSlice {
-	return structPointerSlice{structPointer_field(p, f)}
-}
-
-// A structPointerSlice represents the address of a slice of pointers to structs
-// (themselves messages or groups). That is, v.Type() is *[]*struct{...}.
-type structPointerSlice struct {
-	v reflect.Value
-}
-
-func (p structPointerSlice) Len() int                  { return p.v.Len() }
-func (p structPointerSlice) Index(i int) structPointer { return structPointer{p.v.Index(i)} }
-func (p structPointerSlice) Append(q structPointer) {
-	p.v.Set(reflect.Append(p.v, q.v))
-}
-
-var (
-	int32Type   = reflect.TypeOf(int32(0))
-	uint32Type  = reflect.TypeOf(uint32(0))
-	float32Type = reflect.TypeOf(float32(0))
-	int64Type   = reflect.TypeOf(int64(0))
-	uint64Type  = reflect.TypeOf(uint64(0))
-	float64Type = reflect.TypeOf(float64(0))
-)
-
-// A word32 represents a field of type *int32, *uint32, *float32, or *enum.
-// That is, v.Type() is *int32, *uint32, *float32, or *enum and v is assignable.
-type word32 struct {
-	v reflect.Value
-}
-
-// IsNil reports whether p is nil.
-func word32_IsNil(p word32) bool {
-	return p.v.IsNil()
-}
-
-// Set sets p to point at a newly allocated word with bits set to x.
-func word32_Set(p word32, o *Buffer, x uint32) {
-	t := p.v.Type().Elem()
-	switch t {
-	case int32Type:
-		if len(o.int32s) == 0 {
-			o.int32s = make([]int32, uint32PoolSize)
-		}
-		o.int32s[0] = int32(x)
-		p.v.Set(reflect.ValueOf(&o.int32s[0]))
-		o.int32s = o.int32s[1:]
-		return
-	case uint32Type:
-		if len(o.uint32s) == 0 {
-			o.uint32s = make([]uint32, uint32PoolSize)
-		}
-		o.uint32s[0] = x
-		p.v.Set(reflect.ValueOf(&o.uint32s[0]))
-		o.uint32s = o.uint32s[1:]
-		return
-	case float32Type:
-		if len(o.float32s) == 0 {
-			o.float32s = make([]float32, uint32PoolSize)
-		}
-		o.float32s[0] = math.Float32frombits(x)
-		p.v.Set(reflect.ValueOf(&o.float32s[0]))
-		o.float32s = o.float32s[1:]
-		return
-	}
-
-	// must be enum
-	p.v.Set(reflect.New(t))
-	p.v.Elem().SetInt(int64(int32(x)))
-}
-
-// Get gets the bits pointed at by p, as a uint32.
-func word32_Get(p word32) uint32 {
-	elem := p.v.Elem()
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
-}
-
-// Word32 returns a reference to a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32(p structPointer, f field) word32 {
-	return word32{structPointer_field(p, f)}
-}
-
-// A word32Val represents a field of type int32, uint32, float32, or enum.
-// That is, v.Type() is int32, uint32, float32, or enum and v is assignable.
-type word32Val struct {
-	v reflect.Value
-}
-
-// Set sets *p to x.
-func word32Val_Set(p word32Val, x uint32) {
-	switch p.v.Type() {
-	case int32Type:
-		p.v.SetInt(int64(x))
-		return
-	case uint32Type:
-		p.v.SetUint(uint64(x))
-		return
-	case float32Type:
-		p.v.SetFloat(float64(math.Float32frombits(x)))
-		return
-	}
-
-	// must be enum
-	p.v.SetInt(int64(int32(x)))
-}
-
-// Get gets the bits pointed at by p, as a uint32.
-func word32Val_Get(p word32Val) uint32 {
-	elem := p.v
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
-}
-
-// Word32Val returns a reference to a int32, uint32, float32, or enum field in the struct.
-func structPointer_Word32Val(p structPointer, f field) word32Val {
-	return word32Val{structPointer_field(p, f)}
-}
-
-// A word32Slice is a slice of 32-bit values.
-// That is, v.Type() is []int32, []uint32, []float32, or []enum.
-type word32Slice struct {
-	v reflect.Value
-}
-
-func (p word32Slice) Append(x uint32) {
-	n, m := p.v.Len(), p.v.Cap()
-	if n < m {
-		p.v.SetLen(n + 1)
-	} else {
-		t := p.v.Type().Elem()
-		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
-	}
-	elem := p.v.Index(n)
-	switch elem.Kind() {
-	case reflect.Int32:
-		elem.SetInt(int64(int32(x)))
-	case reflect.Uint32:
-		elem.SetUint(uint64(x))
-	case reflect.Float32:
-		elem.SetFloat(float64(math.Float32frombits(x)))
-	}
-}
-
-func (p word32Slice) Len() int {
-	return p.v.Len()
-}
-
-func (p word32Slice) Index(i int) uint32 {
-	elem := p.v.Index(i)
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
-}
-
-// Word32Slice returns a reference to a []int32, []uint32, []float32, or []enum field in the struct.
-func structPointer_Word32Slice(p structPointer, f field) word32Slice {
-	return word32Slice{structPointer_field(p, f)}
-}
-
-// word64 is like word32 but for 64-bit values.
-type word64 struct {
-	v reflect.Value
-}
-
-func word64_Set(p word64, o *Buffer, x uint64) {
-	t := p.v.Type().Elem()
-	switch t {
-	case int64Type:
-		if len(o.int64s) == 0 {
-			o.int64s = make([]int64, uint64PoolSize)
-		}
-		o.int64s[0] = int64(x)
-		p.v.Set(reflect.ValueOf(&o.int64s[0]))
-		o.int64s = o.int64s[1:]
-		return
-	case uint64Type:
-		if len(o.uint64s) == 0 {
-			o.uint64s = make([]uint64, uint64PoolSize)
-		}
-		o.uint64s[0] = x
-		p.v.Set(reflect.ValueOf(&o.uint64s[0]))
-		o.uint64s = o.uint64s[1:]
-		return
-	case float64Type:
-		if len(o.float64s) == 0 {
-			o.float64s = make([]float64, uint64PoolSize)
-		}
-		o.float64s[0] = math.Float64frombits(x)
-		p.v.Set(reflect.ValueOf(&o.float64s[0]))
-		o.float64s = o.float64s[1:]
-		return
-	}
-	panic("unreachable")
-}
-
-func word64_IsNil(p word64) bool {
-	return p.v.IsNil()
-}
-
-func word64_Get(p word64) uint64 {
-	elem := p.v.Elem()
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return elem.Uint()
-	case reflect.Float64:
-		return math.Float64bits(elem.Float())
-	}
-	panic("unreachable")
-}
-
-func structPointer_Word64(p structPointer, f field) word64 {
-	return word64{structPointer_field(p, f)}
-}
-
-// word64Val is like word32Val but for 64-bit values.
-type word64Val struct {
-	v reflect.Value
-}
-
-func word64Val_Set(p word64Val, o *Buffer, x uint64) {
-	switch p.v.Type() {
-	case int64Type:
-		p.v.SetInt(int64(x))
-		return
-	case uint64Type:
-		p.v.SetUint(x)
-		return
-	case float64Type:
-		p.v.SetFloat(math.Float64frombits(x))
-		return
-	}
-	panic("unreachable")
-}
-
-func word64Val_Get(p word64Val) uint64 {
-	elem := p.v
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return elem.Uint()
-	case reflect.Float64:
-		return math.Float64bits(elem.Float())
-	}
-	panic("unreachable")
-}
-
-func structPointer_Word64Val(p structPointer, f field) word64Val {
-	return word64Val{structPointer_field(p, f)}
-}
-
-type word64Slice struct {
-	v reflect.Value
-}
-
-func (p word64Slice) Append(x uint64) {
-	n, m := p.v.Len(), p.v.Cap()
-	if n < m {
-		p.v.SetLen(n + 1)
-	} else {
-		t := p.v.Type().Elem()
-		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
-	}
-	elem := p.v.Index(n)
-	switch elem.Kind() {
-	case reflect.Int64:
-		elem.SetInt(int64(int64(x)))
-	case reflect.Uint64:
-		elem.SetUint(uint64(x))
-	case reflect.Float64:
-		elem.SetFloat(float64(math.Float64frombits(x)))
-	}
-}
-
-func (p word64Slice) Len() int {
-	return p.v.Len()
-}
-
-func (p word64Slice) Index(i int) uint64 {
-	elem := p.v.Index(i)
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return uint64(elem.Uint())
-	case reflect.Float64:
-		return math.Float64bits(float64(elem.Float()))
-	}
-	panic("unreachable")
-}
-
-func structPointer_Word64Slice(p structPointer, f field) word64Slice {
-	return word64Slice{structPointer_field(p, f)}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go b/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
deleted file mode 100644
index 1763a5f227..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
+++ /dev/null
@@ -1,85 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2016, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// +build appengine js
-
-package proto
-
-import (
-	"reflect"
-)
-
-func structPointer_FieldPointer(p structPointer, f field) structPointer {
-	panic("not implemented")
-}
-
-func appendStructPointer(base structPointer, f field, typ reflect.Type) structPointer {
-	panic("not implemented")
-}
-
-func structPointer_InterfaceAt(p structPointer, f field, t reflect.Type) interface{} {
-	panic("not implemented")
-}
-
-func structPointer_InterfaceRef(p structPointer, f field, t reflect.Type) interface{} {
-	panic("not implemented")
-}
-
-func structPointer_GetRefStructPointer(p structPointer, f field) structPointer {
-	panic("not implemented")
-}
-
-func structPointer_Add(p structPointer, size field) structPointer {
-	panic("not implemented")
-}
-
-func structPointer_Len(p structPointer, f field) int {
-	panic("not implemented")
-}
-
-func structPointer_GetSliceHeader(p structPointer, f field) *reflect.SliceHeader {
-	panic("not implemented")
-}
-
-func structPointer_Copy(oldptr structPointer, newptr structPointer, size int) {
-	panic("not implemented")
-}
-
-func structPointer_StructRefSlice(p structPointer, f field, size uintptr) *structRefSlice {
-	panic("not implemented")
-}
-
-type structRefSlice struct{}
-
-func (v *structRefSlice) Len() int {
-	panic("not implemented")
-}
-
-func (v *structRefSlice) Index(i int) structPointer {
-	panic("not implemented")
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
deleted file mode 100644
index 6b5567d47c..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
+++ /dev/null
@@ -1,270 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2012 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// +build !appengine,!js
-
-// This file contains the implementation of the proto field accesses using package unsafe.
-
-package proto
-
-import (
-	"reflect"
-	"unsafe"
-)
-
-// NOTE: These type_Foo functions would more idiomatically be methods,
-// but Go does not allow methods on pointer types, and we must preserve
-// some pointer type for the garbage collector. We use these
-// funcs with clunky names as our poor approximation to methods.
-//
-// An alternative would be
-//	type structPointer struct { p unsafe.Pointer }
-// but that does not registerize as well.
-
-// A structPointer is a pointer to a struct.
-type structPointer unsafe.Pointer
-
-// toStructPointer returns a structPointer equivalent to the given reflect value.
-func toStructPointer(v reflect.Value) structPointer {
-	return structPointer(unsafe.Pointer(v.Pointer()))
-}
-
-// IsNil reports whether p is nil.
-func structPointer_IsNil(p structPointer) bool {
-	return p == nil
-}
-
-// Interface returns the struct pointer, assumed to have element type t,
-// as an interface value.
-func structPointer_Interface(p structPointer, t reflect.Type) interface{} {
-	return reflect.NewAt(t, unsafe.Pointer(p)).Interface()
-}
-
-// A field identifies a field in a struct, accessible from a structPointer.
-// In this implementation, a field is identified by its byte offset from the start of the struct.
-type field uintptr
-
-// toField returns a field equivalent to the given reflect field.
-func toField(f *reflect.StructField) field {
-	return field(f.Offset)
-}
-
-// invalidField is an invalid field identifier.
-const invalidField = ^field(0)
-
-// IsValid reports whether the field identifier is valid.
-func (f field) IsValid() bool {
-	return f != ^field(0)
-}
-
-// Bytes returns the address of a []byte field in the struct.
-func structPointer_Bytes(p structPointer, f field) *[]byte {
-	return (*[]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// BytesSlice returns the address of a [][]byte field in the struct.
-func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
-	return (*[][]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// Bool returns the address of a *bool field in the struct.
-func structPointer_Bool(p structPointer, f field) **bool {
-	return (**bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// BoolVal returns the address of a bool field in the struct.
-func structPointer_BoolVal(p structPointer, f field) *bool {
-	return (*bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// BoolSlice returns the address of a []bool field in the struct.
-func structPointer_BoolSlice(p structPointer, f field) *[]bool {
-	return (*[]bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// String returns the address of a *string field in the struct.
-func structPointer_String(p structPointer, f field) **string {
-	return (**string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// StringVal returns the address of a string field in the struct.
-func structPointer_StringVal(p structPointer, f field) *string {
-	return (*string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// StringSlice returns the address of a []string field in the struct.
-func structPointer_StringSlice(p structPointer, f field) *[]string {
-	return (*[]string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// ExtMap returns the address of an extension map field in the struct.
-func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
-	return (*XXX_InternalExtensions)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
-	return (*map[int32]Extension)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// NewAt returns the reflect.Value for a pointer to a field in the struct.
-func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
-	return reflect.NewAt(typ, unsafe.Pointer(uintptr(p)+uintptr(f)))
-}
-
-// SetStructPointer writes a *struct field in the struct.
-func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
-	*(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f))) = q
-}
-
-// GetStructPointer reads a *struct field in the struct.
-func structPointer_GetStructPointer(p structPointer, f field) structPointer {
-	return *(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// StructPointerSlice the address of a []*struct field in the struct.
-func structPointer_StructPointerSlice(p structPointer, f field) *structPointerSlice {
-	return (*structPointerSlice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// A structPointerSlice represents a slice of pointers to structs (themselves submessages or groups).
-type structPointerSlice []structPointer
-
-func (v *structPointerSlice) Len() int                  { return len(*v) }
-func (v *structPointerSlice) Index(i int) structPointer { return (*v)[i] }
-func (v *structPointerSlice) Append(p structPointer)    { *v = append(*v, p) }
-
-// A word32 is the address of a "pointer to 32-bit value" field.
-type word32 **uint32
-
-// IsNil reports whether *v is nil.
-func word32_IsNil(p word32) bool {
-	return *p == nil
-}
-
-// Set sets *v to point at a newly allocated word set to x.
-func word32_Set(p word32, o *Buffer, x uint32) {
-	if len(o.uint32s) == 0 {
-		o.uint32s = make([]uint32, uint32PoolSize)
-	}
-	o.uint32s[0] = x
-	*p = &o.uint32s[0]
-	o.uint32s = o.uint32s[1:]
-}
-
-// Get gets the value pointed at by *v.
-func word32_Get(p word32) uint32 {
-	return **p
-}
-
-// Word32 returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32(p structPointer, f field) word32 {
-	return word32((**uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
-}
-
-// A word32Val is the address of a 32-bit value field.
-type word32Val *uint32
-
-// Set sets *p to x.
-func word32Val_Set(p word32Val, x uint32) {
-	*p = x
-}
-
-// Get gets the value pointed at by p.
-func word32Val_Get(p word32Val) uint32 {
-	return *p
-}
-
-// Word32Val returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32Val(p structPointer, f field) word32Val {
-	return word32Val((*uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
-}
-
-// A word32Slice is a slice of 32-bit values.
-type word32Slice []uint32
-
-func (v *word32Slice) Append(x uint32)    { *v = append(*v, x) }
-func (v *word32Slice) Len() int           { return len(*v) }
-func (v *word32Slice) Index(i int) uint32 { return (*v)[i] }
-
-// Word32Slice returns the address of a []int32, []uint32, []float32, or []enum field in the struct.
-func structPointer_Word32Slice(p structPointer, f field) *word32Slice {
-	return (*word32Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-// word64 is like word32 but for 64-bit values.
-type word64 **uint64
-
-func word64_Set(p word64, o *Buffer, x uint64) {
-	if len(o.uint64s) == 0 {
-		o.uint64s = make([]uint64, uint64PoolSize)
-	}
-	o.uint64s[0] = x
-	*p = &o.uint64s[0]
-	o.uint64s = o.uint64s[1:]
-}
-
-func word64_IsNil(p word64) bool {
-	return *p == nil
-}
-
-func word64_Get(p word64) uint64 {
-	return **p
-}
-
-func structPointer_Word64(p structPointer, f field) word64 {
-	return word64((**uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
-}
-
-// word64Val is like word32Val but for 64-bit values.
-type word64Val *uint64
-
-func word64Val_Set(p word64Val, o *Buffer, x uint64) {
-	*p = x
-}
-
-func word64Val_Get(p word64Val) uint64 {
-	return *p
-}
-
-func structPointer_Word64Val(p structPointer, f field) word64Val {
-	return word64Val((*uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
-}
-
-// word64Slice is like word32Slice but for 64-bit values.
-type word64Slice []uint64
-
-func (v *word64Slice) Append(x uint64)    { *v = append(*v, x) }
-func (v *word64Slice) Len() int           { return len(*v) }
-func (v *word64Slice) Index(i int) uint64 { return (*v)[i] }
-
-func structPointer_Word64Slice(p structPointer, f field) *word64Slice {
-	return (*word64Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
deleted file mode 100644
index f156a29f0e..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
+++ /dev/null
@@ -1,128 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-// +build !appengine,!js
-
-// This file contains the implementation of the proto field accesses using package unsafe.
-
-package proto
-
-import (
-	"reflect"
-	"unsafe"
-)
-
-func structPointer_InterfaceAt(p structPointer, f field, t reflect.Type) interface{} {
-	point := unsafe.Pointer(uintptr(p) + uintptr(f))
-	r := reflect.NewAt(t, point)
-	return r.Interface()
-}
-
-func structPointer_InterfaceRef(p structPointer, f field, t reflect.Type) interface{} {
-	point := unsafe.Pointer(uintptr(p) + uintptr(f))
-	r := reflect.NewAt(t, point)
-	if r.Elem().IsNil() {
-		return nil
-	}
-	return r.Elem().Interface()
-}
-
-func copyUintPtr(oldptr, newptr uintptr, size int) {
-	oldbytes := make([]byte, 0)
-	oldslice := (*reflect.SliceHeader)(unsafe.Pointer(&oldbytes))
-	oldslice.Data = oldptr
-	oldslice.Len = size
-	oldslice.Cap = size
-	newbytes := make([]byte, 0)
-	newslice := (*reflect.SliceHeader)(unsafe.Pointer(&newbytes))
-	newslice.Data = newptr
-	newslice.Len = size
-	newslice.Cap = size
-	copy(newbytes, oldbytes)
-}
-
-func structPointer_Copy(oldptr structPointer, newptr structPointer, size int) {
-	copyUintPtr(uintptr(oldptr), uintptr(newptr), size)
-}
-
-func appendStructPointer(base structPointer, f field, typ reflect.Type) structPointer {
-	size := typ.Elem().Size()
-
-	oldHeader := structPointer_GetSliceHeader(base, f)
-	oldSlice := reflect.NewAt(typ, unsafe.Pointer(oldHeader)).Elem()
-	newLen := oldHeader.Len + 1
-	newSlice := reflect.MakeSlice(typ, newLen, newLen)
-	reflect.Copy(newSlice, oldSlice)
-	bas := toStructPointer(newSlice)
-	oldHeader.Data = uintptr(bas)
-	oldHeader.Len = newLen
-	oldHeader.Cap = newLen
-
-	return structPointer(unsafe.Pointer(uintptr(unsafe.Pointer(bas)) + uintptr(uintptr(newLen-1)*size)))
-}
-
-func structPointer_FieldPointer(p structPointer, f field) structPointer {
-	return structPointer(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-func structPointer_GetRefStructPointer(p structPointer, f field) structPointer {
-	return structPointer((*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f))))
-}
-
-func structPointer_GetSliceHeader(p structPointer, f field) *reflect.SliceHeader {
-	return (*reflect.SliceHeader)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
-
-func structPointer_Add(p structPointer, size field) structPointer {
-	return structPointer(unsafe.Pointer(uintptr(p) + uintptr(size)))
-}
-
-func structPointer_Len(p structPointer, f field) int {
-	return len(*(*[]interface{})(unsafe.Pointer(structPointer_GetRefStructPointer(p, f))))
-}
-
-func structPointer_StructRefSlice(p structPointer, f field, size uintptr) *structRefSlice {
-	return &structRefSlice{p: p, f: f, size: size}
-}
-
-// A structRefSlice represents a slice of structs (themselves submessages or groups).
-type structRefSlice struct {
-	p    structPointer
-	f    field
-	size uintptr
-}
-
-func (v *structRefSlice) Len() int {
-	return structPointer_Len(v.p, v.f)
-}
-
-func (v *structRefSlice) Index(i int) structPointer {
-	ss := structPointer_GetStructPointer(v.p, v.f)
-	ss1 := structPointer_GetRefStructPointer(ss, 0)
-	return structPointer_Add(ss1, field(uintptr(i)*v.size))
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/properties.go b/vendor/github.com/gogo/protobuf/proto/properties.go
deleted file mode 100644
index 2a69e8862d..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/properties.go
+++ /dev/null
@@ -1,971 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-/*
- * Routines for encoding data into the wire format for protocol buffers.
- */
-
-import (
-	"fmt"
-	"log"
-	"os"
-	"reflect"
-	"sort"
-	"strconv"
-	"strings"
-	"sync"
-)
-
-const debug bool = false
-
-// Constants that identify the encoding of a value on the wire.
-const (
-	WireVarint     = 0
-	WireFixed64    = 1
-	WireBytes      = 2
-	WireStartGroup = 3
-	WireEndGroup   = 4
-	WireFixed32    = 5
-)
-
-const startSize = 10 // initial slice/string sizes
-
-// Encoders are defined in encode.go
-// An encoder outputs the full representation of a field, including its
-// tag and encoder type.
-type encoder func(p *Buffer, prop *Properties, base structPointer) error
-
-// A valueEncoder encodes a single integer in a particular encoding.
-type valueEncoder func(o *Buffer, x uint64) error
-
-// Sizers are defined in encode.go
-// A sizer returns the encoded size of a field, including its tag and encoder
-// type.
-type sizer func(prop *Properties, base structPointer) int
-
-// A valueSizer returns the encoded size of a single integer in a particular
-// encoding.
-type valueSizer func(x uint64) int
-
-// Decoders are defined in decode.go
-// A decoder creates a value from its wire representation.
-// Unrecognized subelements are saved in unrec.
-type decoder func(p *Buffer, prop *Properties, base structPointer) error
-
-// A valueDecoder decodes a single integer in a particular encoding.
-type valueDecoder func(o *Buffer) (x uint64, err error)
-
-// A oneofMarshaler does the marshaling for all oneof fields in a message.
-type oneofMarshaler func(Message, *Buffer) error
-
-// A oneofUnmarshaler does the unmarshaling for a oneof field in a message.
-type oneofUnmarshaler func(Message, int, int, *Buffer) (bool, error)
-
-// A oneofSizer does the sizing for all oneof fields in a message.
-type oneofSizer func(Message) int
-
-// tagMap is an optimization over map[int]int for typical protocol buffer
-// use-cases. Encoded protocol buffers are often in tag order with small tag
-// numbers.
-type tagMap struct {
-	fastTags []int
-	slowTags map[int]int
-}
-
-// tagMapFastLimit is the upper bound on the tag number that will be stored in
-// the tagMap slice rather than its map.
-const tagMapFastLimit = 1024
-
-func (p *tagMap) get(t int) (int, bool) {
-	if t > 0 && t < tagMapFastLimit {
-		if t >= len(p.fastTags) {
-			return 0, false
-		}
-		fi := p.fastTags[t]
-		return fi, fi >= 0
-	}
-	fi, ok := p.slowTags[t]
-	return fi, ok
-}
-
-func (p *tagMap) put(t int, fi int) {
-	if t > 0 && t < tagMapFastLimit {
-		for len(p.fastTags) < t+1 {
-			p.fastTags = append(p.fastTags, -1)
-		}
-		p.fastTags[t] = fi
-		return
-	}
-	if p.slowTags == nil {
-		p.slowTags = make(map[int]int)
-	}
-	p.slowTags[t] = fi
-}
-
-// StructProperties represents properties for all the fields of a struct.
-// decoderTags and decoderOrigNames should only be used by the decoder.
-type StructProperties struct {
-	Prop             []*Properties  // properties for each field
-	reqCount         int            // required count
-	decoderTags      tagMap         // map from proto tag to struct field number
-	decoderOrigNames map[string]int // map from original name to struct field number
-	order            []int          // list of struct field numbers in tag order
-	unrecField       field          // field id of the XXX_unrecognized []byte field
-	extendable       bool           // is this an extendable proto
-
-	oneofMarshaler   oneofMarshaler
-	oneofUnmarshaler oneofUnmarshaler
-	oneofSizer       oneofSizer
-	stype            reflect.Type
-
-	// OneofTypes contains information about the oneof fields in this message.
-	// It is keyed by the original name of a field.
-	OneofTypes map[string]*OneofProperties
-}
-
-// OneofProperties represents information about a specific field in a oneof.
-type OneofProperties struct {
-	Type  reflect.Type // pointer to generated struct type for this oneof field
-	Field int          // struct field number of the containing oneof in the message
-	Prop  *Properties
-}
-
-// Implement the sorting interface so we can sort the fields in tag order, as recommended by the spec.
-// See encode.go, (*Buffer).enc_struct.
-
-func (sp *StructProperties) Len() int { return len(sp.order) }
-func (sp *StructProperties) Less(i, j int) bool {
-	return sp.Prop[sp.order[i]].Tag < sp.Prop[sp.order[j]].Tag
-}
-func (sp *StructProperties) Swap(i, j int) { sp.order[i], sp.order[j] = sp.order[j], sp.order[i] }
-
-// Properties represents the protocol-specific behavior of a single struct field.
-type Properties struct {
-	Name     string // name of the field, for error messages
-	OrigName string // original name before protocol compiler (always set)
-	JSONName string // name to use for JSON; determined by protoc
-	Wire     string
-	WireType int
-	Tag      int
-	Required bool
-	Optional bool
-	Repeated bool
-	Packed   bool   // relevant for repeated primitives only
-	Enum     string // set for enum types only
-	proto3   bool   // whether this is known to be a proto3 field; set for []byte only
-	oneof    bool   // whether this is a oneof field
-
-	Default     string // default value
-	HasDefault  bool   // whether an explicit default was provided
-	CustomType  string
-	CastType    string
-	StdTime     bool
-	StdDuration bool
-
-	enc           encoder
-	valEnc        valueEncoder // set for bool and numeric types only
-	field         field
-	tagcode       []byte // encoding of EncodeVarint((Tag<<3)|WireType)
-	tagbuf        [8]byte
-	stype         reflect.Type      // set for struct types only
-	sstype        reflect.Type      // set for slices of structs types only
-	ctype         reflect.Type      // set for custom types only
-	sprop         *StructProperties // set for struct types only
-	isMarshaler   bool
-	isUnmarshaler bool
-
-	mtype    reflect.Type // set for map types only
-	mkeyprop *Properties  // set for map types only
-	mvalprop *Properties  // set for map types only
-
-	size    sizer
-	valSize valueSizer // set for bool and numeric types only
-
-	dec    decoder
-	valDec valueDecoder // set for bool and numeric types only
-
-	// If this is a packable field, this will be the decoder for the packed version of the field.
-	packedDec decoder
-}
-
-// String formats the properties in the protobuf struct field tag style.
-func (p *Properties) String() string {
-	s := p.Wire
-	s = ","
-	s += strconv.Itoa(p.Tag)
-	if p.Required {
-		s += ",req"
-	}
-	if p.Optional {
-		s += ",opt"
-	}
-	if p.Repeated {
-		s += ",rep"
-	}
-	if p.Packed {
-		s += ",packed"
-	}
-	s += ",name=" + p.OrigName
-	if p.JSONName != p.OrigName {
-		s += ",json=" + p.JSONName
-	}
-	if p.proto3 {
-		s += ",proto3"
-	}
-	if p.oneof {
-		s += ",oneof"
-	}
-	if len(p.Enum) > 0 {
-		s += ",enum=" + p.Enum
-	}
-	if p.HasDefault {
-		s += ",def=" + p.Default
-	}
-	return s
-}
-
-// Parse populates p by parsing a string in the protobuf struct field tag style.
-func (p *Properties) Parse(s string) {
-	// "bytes,49,opt,name=foo,def=hello!"
-	fields := strings.Split(s, ",") // breaks def=, but handled below.
-	if len(fields) < 2 {
-		fmt.Fprintf(os.Stderr, "proto: tag has too few fields: %q\n", s)
-		return
-	}
-
-	p.Wire = fields[0]
-	switch p.Wire {
-	case "varint":
-		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeVarint
-		p.valDec = (*Buffer).DecodeVarint
-		p.valSize = sizeVarint
-	case "fixed32":
-		p.WireType = WireFixed32
-		p.valEnc = (*Buffer).EncodeFixed32
-		p.valDec = (*Buffer).DecodeFixed32
-		p.valSize = sizeFixed32
-	case "fixed64":
-		p.WireType = WireFixed64
-		p.valEnc = (*Buffer).EncodeFixed64
-		p.valDec = (*Buffer).DecodeFixed64
-		p.valSize = sizeFixed64
-	case "zigzag32":
-		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeZigzag32
-		p.valDec = (*Buffer).DecodeZigzag32
-		p.valSize = sizeZigzag32
-	case "zigzag64":
-		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeZigzag64
-		p.valDec = (*Buffer).DecodeZigzag64
-		p.valSize = sizeZigzag64
-	case "bytes", "group":
-		p.WireType = WireBytes
-		// no numeric converter for non-numeric types
-	default:
-		fmt.Fprintf(os.Stderr, "proto: tag has unknown wire type: %q\n", s)
-		return
-	}
-
-	var err error
-	p.Tag, err = strconv.Atoi(fields[1])
-	if err != nil {
-		return
-	}
-
-	for i := 2; i < len(fields); i++ {
-		f := fields[i]
-		switch {
-		case f == "req":
-			p.Required = true
-		case f == "opt":
-			p.Optional = true
-		case f == "rep":
-			p.Repeated = true
-		case f == "packed":
-			p.Packed = true
-		case strings.HasPrefix(f, "name="):
-			p.OrigName = f[5:]
-		case strings.HasPrefix(f, "json="):
-			p.JSONName = f[5:]
-		case strings.HasPrefix(f, "enum="):
-			p.Enum = f[5:]
-		case f == "proto3":
-			p.proto3 = true
-		case f == "oneof":
-			p.oneof = true
-		case strings.HasPrefix(f, "def="):
-			p.HasDefault = true
-			p.Default = f[4:] // rest of string
-			if i+1 < len(fields) {
-				// Commas aren't escaped, and def is always last.
-				p.Default += "," + strings.Join(fields[i+1:], ",")
-				break
-			}
-		case strings.HasPrefix(f, "embedded="):
-			p.OrigName = strings.Split(f, "=")[1]
-		case strings.HasPrefix(f, "customtype="):
-			p.CustomType = strings.Split(f, "=")[1]
-		case strings.HasPrefix(f, "casttype="):
-			p.CastType = strings.Split(f, "=")[1]
-		case f == "stdtime":
-			p.StdTime = true
-		case f == "stdduration":
-			p.StdDuration = true
-		}
-	}
-}
-
-func logNoSliceEnc(t1, t2 reflect.Type) {
-	fmt.Fprintf(os.Stderr, "proto: no slice oenc for %T = []%T\n", t1, t2)
-}
-
-var protoMessageType = reflect.TypeOf((*Message)(nil)).Elem()
-
-// Initialize the fields for encoding and decoding.
-func (p *Properties) setEncAndDec(typ reflect.Type, f *reflect.StructField, lockGetProp bool) {
-	p.enc = nil
-	p.dec = nil
-	p.size = nil
-	isMap := typ.Kind() == reflect.Map
-	if len(p.CustomType) > 0 && !isMap {
-		p.setCustomEncAndDec(typ)
-		p.setTag(lockGetProp)
-		return
-	}
-	if p.StdTime && !isMap {
-		p.setTimeEncAndDec(typ)
-		p.setTag(lockGetProp)
-		return
-	}
-	if p.StdDuration && !isMap {
-		p.setDurationEncAndDec(typ)
-		p.setTag(lockGetProp)
-		return
-	}
-	switch t1 := typ; t1.Kind() {
-	default:
-		fmt.Fprintf(os.Stderr, "proto: no coders for %v\n", t1)
-
-	// proto3 scalar types
-
-	case reflect.Bool:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_bool
-			p.dec = (*Buffer).dec_proto3_bool
-			p.size = size_proto3_bool
-		} else {
-			p.enc = (*Buffer).enc_ref_bool
-			p.dec = (*Buffer).dec_proto3_bool
-			p.size = size_ref_bool
-		}
-	case reflect.Int32:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_int32
-			p.dec = (*Buffer).dec_proto3_int32
-			p.size = size_proto3_int32
-		} else {
-			p.enc = (*Buffer).enc_ref_int32
-			p.dec = (*Buffer).dec_proto3_int32
-			p.size = size_ref_int32
-		}
-	case reflect.Uint32:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_uint32
-			p.dec = (*Buffer).dec_proto3_int32 // can reuse
-			p.size = size_proto3_uint32
-		} else {
-			p.enc = (*Buffer).enc_ref_uint32
-			p.dec = (*Buffer).dec_proto3_int32 // can reuse
-			p.size = size_ref_uint32
-		}
-	case reflect.Int64, reflect.Uint64:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_int64
-			p.dec = (*Buffer).dec_proto3_int64
-			p.size = size_proto3_int64
-		} else {
-			p.enc = (*Buffer).enc_ref_int64
-			p.dec = (*Buffer).dec_proto3_int64
-			p.size = size_ref_int64
-		}
-	case reflect.Float32:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_uint32 // can just treat them as bits
-			p.dec = (*Buffer).dec_proto3_int32
-			p.size = size_proto3_uint32
-		} else {
-			p.enc = (*Buffer).enc_ref_uint32 // can just treat them as bits
-			p.dec = (*Buffer).dec_proto3_int32
-			p.size = size_ref_uint32
-		}
-	case reflect.Float64:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_int64 // can just treat them as bits
-			p.dec = (*Buffer).dec_proto3_int64
-			p.size = size_proto3_int64
-		} else {
-			p.enc = (*Buffer).enc_ref_int64 // can just treat them as bits
-			p.dec = (*Buffer).dec_proto3_int64
-			p.size = size_ref_int64
-		}
-	case reflect.String:
-		if p.proto3 {
-			p.enc = (*Buffer).enc_proto3_string
-			p.dec = (*Buffer).dec_proto3_string
-			p.size = size_proto3_string
-		} else {
-			p.enc = (*Buffer).enc_ref_string
-			p.dec = (*Buffer).dec_proto3_string
-			p.size = size_ref_string
-		}
-	case reflect.Struct:
-		p.stype = typ
-		p.isMarshaler = isMarshaler(typ)
-		p.isUnmarshaler = isUnmarshaler(typ)
-		if p.Wire == "bytes" {
-			p.enc = (*Buffer).enc_ref_struct_message
-			p.dec = (*Buffer).dec_ref_struct_message
-			p.size = size_ref_struct_message
-		} else {
-			fmt.Fprintf(os.Stderr, "proto: no coders for struct %T\n", typ)
-		}
-
-	case reflect.Ptr:
-		switch t2 := t1.Elem(); t2.Kind() {
-		default:
-			fmt.Fprintf(os.Stderr, "proto: no encoder function for %v -> %v\n", t1, t2)
-			break
-		case reflect.Bool:
-			p.enc = (*Buffer).enc_bool
-			p.dec = (*Buffer).dec_bool
-			p.size = size_bool
-		case reflect.Int32:
-			p.enc = (*Buffer).enc_int32
-			p.dec = (*Buffer).dec_int32
-			p.size = size_int32
-		case reflect.Uint32:
-			p.enc = (*Buffer).enc_uint32
-			p.dec = (*Buffer).dec_int32 // can reuse
-			p.size = size_uint32
-		case reflect.Int64, reflect.Uint64:
-			p.enc = (*Buffer).enc_int64
-			p.dec = (*Buffer).dec_int64
-			p.size = size_int64
-		case reflect.Float32:
-			p.enc = (*Buffer).enc_uint32 // can just treat them as bits
-			p.dec = (*Buffer).dec_int32
-			p.size = size_uint32
-		case reflect.Float64:
-			p.enc = (*Buffer).enc_int64 // can just treat them as bits
-			p.dec = (*Buffer).dec_int64
-			p.size = size_int64
-		case reflect.String:
-			p.enc = (*Buffer).enc_string
-			p.dec = (*Buffer).dec_string
-			p.size = size_string
-		case reflect.Struct:
-			p.stype = t1.Elem()
-			p.isMarshaler = isMarshaler(t1)
-			p.isUnmarshaler = isUnmarshaler(t1)
-			if p.Wire == "bytes" {
-				p.enc = (*Buffer).enc_struct_message
-				p.dec = (*Buffer).dec_struct_message
-				p.size = size_struct_message
-			} else {
-				p.enc = (*Buffer).enc_struct_group
-				p.dec = (*Buffer).dec_struct_group
-				p.size = size_struct_group
-			}
-		}
-
-	case reflect.Slice:
-		switch t2 := t1.Elem(); t2.Kind() {
-		default:
-			logNoSliceEnc(t1, t2)
-			break
-		case reflect.Bool:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_bool
-				p.size = size_slice_packed_bool
-			} else {
-				p.enc = (*Buffer).enc_slice_bool
-				p.size = size_slice_bool
-			}
-			p.dec = (*Buffer).dec_slice_bool
-			p.packedDec = (*Buffer).dec_slice_packed_bool
-		case reflect.Int32:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_int32
-				p.size = size_slice_packed_int32
-			} else {
-				p.enc = (*Buffer).enc_slice_int32
-				p.size = size_slice_int32
-			}
-			p.dec = (*Buffer).dec_slice_int32
-			p.packedDec = (*Buffer).dec_slice_packed_int32
-		case reflect.Uint32:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_uint32
-				p.size = size_slice_packed_uint32
-			} else {
-				p.enc = (*Buffer).enc_slice_uint32
-				p.size = size_slice_uint32
-			}
-			p.dec = (*Buffer).dec_slice_int32
-			p.packedDec = (*Buffer).dec_slice_packed_int32
-		case reflect.Int64, reflect.Uint64:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_int64
-				p.size = size_slice_packed_int64
-			} else {
-				p.enc = (*Buffer).enc_slice_int64
-				p.size = size_slice_int64
-			}
-			p.dec = (*Buffer).dec_slice_int64
-			p.packedDec = (*Buffer).dec_slice_packed_int64
-		case reflect.Uint8:
-			p.dec = (*Buffer).dec_slice_byte
-			if p.proto3 {
-				p.enc = (*Buffer).enc_proto3_slice_byte
-				p.size = size_proto3_slice_byte
-			} else {
-				p.enc = (*Buffer).enc_slice_byte
-				p.size = size_slice_byte
-			}
-		case reflect.Float32, reflect.Float64:
-			switch t2.Bits() {
-			case 32:
-				// can just treat them as bits
-				if p.Packed {
-					p.enc = (*Buffer).enc_slice_packed_uint32
-					p.size = size_slice_packed_uint32
-				} else {
-					p.enc = (*Buffer).enc_slice_uint32
-					p.size = size_slice_uint32
-				}
-				p.dec = (*Buffer).dec_slice_int32
-				p.packedDec = (*Buffer).dec_slice_packed_int32
-			case 64:
-				// can just treat them as bits
-				if p.Packed {
-					p.enc = (*Buffer).enc_slice_packed_int64
-					p.size = size_slice_packed_int64
-				} else {
-					p.enc = (*Buffer).enc_slice_int64
-					p.size = size_slice_int64
-				}
-				p.dec = (*Buffer).dec_slice_int64
-				p.packedDec = (*Buffer).dec_slice_packed_int64
-			default:
-				logNoSliceEnc(t1, t2)
-				break
-			}
-		case reflect.String:
-			p.enc = (*Buffer).enc_slice_string
-			p.dec = (*Buffer).dec_slice_string
-			p.size = size_slice_string
-		case reflect.Ptr:
-			switch t3 := t2.Elem(); t3.Kind() {
-			default:
-				fmt.Fprintf(os.Stderr, "proto: no ptr oenc for %T -> %T -> %T\n", t1, t2, t3)
-				break
-			case reflect.Struct:
-				p.stype = t2.Elem()
-				p.isMarshaler = isMarshaler(t2)
-				p.isUnmarshaler = isUnmarshaler(t2)
-				if p.Wire == "bytes" {
-					p.enc = (*Buffer).enc_slice_struct_message
-					p.dec = (*Buffer).dec_slice_struct_message
-					p.size = size_slice_struct_message
-				} else {
-					p.enc = (*Buffer).enc_slice_struct_group
-					p.dec = (*Buffer).dec_slice_struct_group
-					p.size = size_slice_struct_group
-				}
-			}
-		case reflect.Slice:
-			switch t2.Elem().Kind() {
-			default:
-				fmt.Fprintf(os.Stderr, "proto: no slice elem oenc for %T -> %T -> %T\n", t1, t2, t2.Elem())
-				break
-			case reflect.Uint8:
-				p.enc = (*Buffer).enc_slice_slice_byte
-				p.dec = (*Buffer).dec_slice_slice_byte
-				p.size = size_slice_slice_byte
-			}
-		case reflect.Struct:
-			p.setSliceOfNonPointerStructs(t1)
-		}
-
-	case reflect.Map:
-		p.enc = (*Buffer).enc_new_map
-		p.dec = (*Buffer).dec_new_map
-		p.size = size_new_map
-
-		p.mtype = t1
-		p.mkeyprop = &Properties{}
-		p.mkeyprop.init(reflect.PtrTo(p.mtype.Key()), "Key", f.Tag.Get("protobuf_key"), nil, lockGetProp)
-		p.mvalprop = &Properties{}
-		vtype := p.mtype.Elem()
-		if vtype.Kind() != reflect.Ptr && vtype.Kind() != reflect.Slice {
-			// The value type is not a message (*T) or bytes ([]byte),
-			// so we need encoders for the pointer to this type.
-			vtype = reflect.PtrTo(vtype)
-		}
-
-		p.mvalprop.CustomType = p.CustomType
-		p.mvalprop.StdDuration = p.StdDuration
-		p.mvalprop.StdTime = p.StdTime
-		p.mvalprop.init(vtype, "Value", f.Tag.Get("protobuf_val"), nil, lockGetProp)
-	}
-	p.setTag(lockGetProp)
-}
-
-func (p *Properties) setTag(lockGetProp bool) {
-	// precalculate tag code
-	wire := p.WireType
-	if p.Packed {
-		wire = WireBytes
-	}
-	x := uint32(p.Tag)<<3 | uint32(wire)
-	i := 0
-	for i = 0; x > 127; i++ {
-		p.tagbuf[i] = 0x80 | uint8(x&0x7F)
-		x >>= 7
-	}
-	p.tagbuf[i] = uint8(x)
-	p.tagcode = p.tagbuf[0 : i+1]
-
-	if p.stype != nil {
-		if lockGetProp {
-			p.sprop = GetProperties(p.stype)
-		} else {
-			p.sprop = getPropertiesLocked(p.stype)
-		}
-	}
-}
-
-var (
-	marshalerType   = reflect.TypeOf((*Marshaler)(nil)).Elem()
-	unmarshalerType = reflect.TypeOf((*Unmarshaler)(nil)).Elem()
-)
-
-// isMarshaler reports whether type t implements Marshaler.
-func isMarshaler(t reflect.Type) bool {
-	return t.Implements(marshalerType)
-}
-
-// isUnmarshaler reports whether type t implements Unmarshaler.
-func isUnmarshaler(t reflect.Type) bool {
-	return t.Implements(unmarshalerType)
-}
-
-// Init populates the properties from a protocol buffer struct tag.
-func (p *Properties) Init(typ reflect.Type, name, tag string, f *reflect.StructField) {
-	p.init(typ, name, tag, f, true)
-}
-
-func (p *Properties) init(typ reflect.Type, name, tag string, f *reflect.StructField, lockGetProp bool) {
-	// "bytes,49,opt,def=hello!"
-	p.Name = name
-	p.OrigName = name
-	if f != nil {
-		p.field = toField(f)
-	}
-	if tag == "" {
-		return
-	}
-	p.Parse(tag)
-	p.setEncAndDec(typ, f, lockGetProp)
-}
-
-var (
-	propertiesMu  sync.RWMutex
-	propertiesMap = make(map[reflect.Type]*StructProperties)
-)
-
-// GetProperties returns the list of properties for the type represented by t.
-// t must represent a generated struct type of a protocol message.
-func GetProperties(t reflect.Type) *StructProperties {
-	if t.Kind() != reflect.Struct {
-		panic("proto: type must have kind struct")
-	}
-
-	// Most calls to GetProperties in a long-running program will be
-	// retrieving details for types we have seen before.
-	propertiesMu.RLock()
-	sprop, ok := propertiesMap[t]
-	propertiesMu.RUnlock()
-	if ok {
-		if collectStats {
-			stats.Chit++
-		}
-		return sprop
-	}
-
-	propertiesMu.Lock()
-	sprop = getPropertiesLocked(t)
-	propertiesMu.Unlock()
-	return sprop
-}
-
-// getPropertiesLocked requires that propertiesMu is held.
-func getPropertiesLocked(t reflect.Type) *StructProperties {
-	if prop, ok := propertiesMap[t]; ok {
-		if collectStats {
-			stats.Chit++
-		}
-		return prop
-	}
-	if collectStats {
-		stats.Cmiss++
-	}
-
-	prop := new(StructProperties)
-	// in case of recursive protos, fill this in now.
-	propertiesMap[t] = prop
-
-	// build properties
-	prop.extendable = reflect.PtrTo(t).Implements(extendableProtoType) ||
-		reflect.PtrTo(t).Implements(extendableProtoV1Type) ||
-		reflect.PtrTo(t).Implements(extendableBytesType)
-	prop.unrecField = invalidField
-	prop.Prop = make([]*Properties, t.NumField())
-	prop.order = make([]int, t.NumField())
-
-	isOneofMessage := false
-	for i := 0; i < t.NumField(); i++ {
-		f := t.Field(i)
-		p := new(Properties)
-		name := f.Name
-		p.init(f.Type, name, f.Tag.Get("protobuf"), &f, false)
-
-		if f.Name == "XXX_InternalExtensions" { // special case
-			p.enc = (*Buffer).enc_exts
-			p.dec = nil // not needed
-			p.size = size_exts
-		} else if f.Name == "XXX_extensions" { // special case
-			if len(f.Tag.Get("protobuf")) > 0 {
-				p.enc = (*Buffer).enc_ext_slice_byte
-				p.dec = nil // not needed
-				p.size = size_ext_slice_byte
-			} else {
-				p.enc = (*Buffer).enc_map
-				p.dec = nil // not needed
-				p.size = size_map
-			}
-		} else if f.Name == "XXX_unrecognized" { // special case
-			prop.unrecField = toField(&f)
-		}
-		oneof := f.Tag.Get("protobuf_oneof") // special case
-		if oneof != "" {
-			isOneofMessage = true
-			// Oneof fields don't use the traditional protobuf tag.
-			p.OrigName = oneof
-		}
-		prop.Prop[i] = p
-		prop.order[i] = i
-		if debug {
-			print(i, " ", f.Name, " ", t.String(), " ")
-			if p.Tag > 0 {
-				print(p.String())
-			}
-			print("\n")
-		}
-		if p.enc == nil && !strings.HasPrefix(f.Name, "XXX_") && oneof == "" {
-			fmt.Fprintln(os.Stderr, "proto: no encoder for", f.Name, f.Type.String(), "[GetProperties]")
-		}
-	}
-
-	// Re-order prop.order.
-	sort.Sort(prop)
-
-	type oneofMessage interface {
-		XXX_OneofFuncs() (func(Message, *Buffer) error, func(Message, int, int, *Buffer) (bool, error), func(Message) int, []interface{})
-	}
-	if om, ok := reflect.Zero(reflect.PtrTo(t)).Interface().(oneofMessage); isOneofMessage && ok {
-		var oots []interface{}
-		prop.oneofMarshaler, prop.oneofUnmarshaler, prop.oneofSizer, oots = om.XXX_OneofFuncs()
-		prop.stype = t
-
-		// Interpret oneof metadata.
-		prop.OneofTypes = make(map[string]*OneofProperties)
-		for _, oot := range oots {
-			oop := &OneofProperties{
-				Type: reflect.ValueOf(oot).Type(), // *T
-				Prop: new(Properties),
-			}
-			sft := oop.Type.Elem().Field(0)
-			oop.Prop.Name = sft.Name
-			oop.Prop.Parse(sft.Tag.Get("protobuf"))
-			// There will be exactly one interface field that
-			// this new value is assignable to.
-			for i := 0; i < t.NumField(); i++ {
-				f := t.Field(i)
-				if f.Type.Kind() != reflect.Interface {
-					continue
-				}
-				if !oop.Type.AssignableTo(f.Type) {
-					continue
-				}
-				oop.Field = i
-				break
-			}
-			prop.OneofTypes[oop.Prop.OrigName] = oop
-		}
-	}
-
-	// build required counts
-	// build tags
-	reqCount := 0
-	prop.decoderOrigNames = make(map[string]int)
-	for i, p := range prop.Prop {
-		if strings.HasPrefix(p.Name, "XXX_") {
-			// Internal fields should not appear in tags/origNames maps.
-			// They are handled specially when encoding and decoding.
-			continue
-		}
-		if p.Required {
-			reqCount++
-		}
-		prop.decoderTags.put(p.Tag, i)
-		prop.decoderOrigNames[p.OrigName] = i
-	}
-	prop.reqCount = reqCount
-
-	return prop
-}
-
-// Return the Properties object for the x[0]'th field of the structure.
-func propByIndex(t reflect.Type, x []int) *Properties {
-	if len(x) != 1 {
-		fmt.Fprintf(os.Stderr, "proto: field index dimension %d (not 1) for type %s\n", len(x), t)
-		return nil
-	}
-	prop := GetProperties(t)
-	return prop.Prop[x[0]]
-}
-
-// Get the address and type of a pointer to a struct from an interface.
-func getbase(pb Message) (t reflect.Type, b structPointer, err error) {
-	if pb == nil {
-		err = ErrNil
-		return
-	}
-	// get the reflect type of the pointer to the struct.
-	t = reflect.TypeOf(pb)
-	// get the address of the struct.
-	value := reflect.ValueOf(pb)
-	b = toStructPointer(value)
-	return
-}
-
-// A global registry of enum types.
-// The generated code will register the generated maps by calling RegisterEnum.
-
-var enumValueMaps = make(map[string]map[string]int32)
-var enumStringMaps = make(map[string]map[int32]string)
-
-// RegisterEnum is called from the generated code to install the enum descriptor
-// maps into the global table to aid parsing text format protocol buffers.
-func RegisterEnum(typeName string, unusedNameMap map[int32]string, valueMap map[string]int32) {
-	if _, ok := enumValueMaps[typeName]; ok {
-		panic("proto: duplicate enum registered: " + typeName)
-	}
-	enumValueMaps[typeName] = valueMap
-	if _, ok := enumStringMaps[typeName]; ok {
-		panic("proto: duplicate enum registered: " + typeName)
-	}
-	enumStringMaps[typeName] = unusedNameMap
-}
-
-// EnumValueMap returns the mapping from names to integers of the
-// enum type enumType, or a nil if not found.
-func EnumValueMap(enumType string) map[string]int32 {
-	return enumValueMaps[enumType]
-}
-
-// A registry of all linked message types.
-// The string is a fully-qualified proto name ("pkg.Message").
-var (
-	protoTypes    = make(map[string]reflect.Type)
-	revProtoTypes = make(map[reflect.Type]string)
-)
-
-// RegisterType is called from generated code and maps from the fully qualified
-// proto name to the type (pointer to struct) of the protocol buffer.
-func RegisterType(x Message, name string) {
-	if _, ok := protoTypes[name]; ok {
-		// TODO: Some day, make this a panic.
-		log.Printf("proto: duplicate proto type registered: %s", name)
-		return
-	}
-	t := reflect.TypeOf(x)
-	protoTypes[name] = t
-	revProtoTypes[t] = name
-}
-
-// MessageName returns the fully-qualified proto name for the given message type.
-func MessageName(x Message) string {
-	type xname interface {
-		XXX_MessageName() string
-	}
-	if m, ok := x.(xname); ok {
-		return m.XXX_MessageName()
-	}
-	return revProtoTypes[reflect.TypeOf(x)]
-}
-
-// MessageType returns the message type (pointer to struct) for a named message.
-func MessageType(name string) reflect.Type { return protoTypes[name] }
-
-// A registry of all linked proto files.
-var (
-	protoFiles = make(map[string][]byte) // file name => fileDescriptor
-)
-
-// RegisterFile is called from generated code and maps from the
-// full file name of a .proto file to its compressed FileDescriptorProto.
-func RegisterFile(filename string, fileDescriptor []byte) {
-	protoFiles[filename] = fileDescriptor
-}
-
-// FileDescriptor returns the compressed FileDescriptorProto for a .proto file.
-func FileDescriptor(filename string) []byte { return protoFiles[filename] }
diff --git a/vendor/github.com/gogo/protobuf/proto/properties_gogo.go b/vendor/github.com/gogo/protobuf/proto/properties_gogo.go
deleted file mode 100644
index b6b7176c56..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/properties_gogo.go
+++ /dev/null
@@ -1,111 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"fmt"
-	"os"
-	"reflect"
-)
-
-func (p *Properties) setCustomEncAndDec(typ reflect.Type) {
-	p.ctype = typ
-	if p.Repeated {
-		p.enc = (*Buffer).enc_custom_slice_bytes
-		p.dec = (*Buffer).dec_custom_slice_bytes
-		p.size = size_custom_slice_bytes
-	} else if typ.Kind() == reflect.Ptr {
-		p.enc = (*Buffer).enc_custom_bytes
-		p.dec = (*Buffer).dec_custom_bytes
-		p.size = size_custom_bytes
-	} else {
-		p.enc = (*Buffer).enc_custom_ref_bytes
-		p.dec = (*Buffer).dec_custom_ref_bytes
-		p.size = size_custom_ref_bytes
-	}
-}
-
-func (p *Properties) setDurationEncAndDec(typ reflect.Type) {
-	if p.Repeated {
-		if typ.Elem().Kind() == reflect.Ptr {
-			p.enc = (*Buffer).enc_slice_duration
-			p.dec = (*Buffer).dec_slice_duration
-			p.size = size_slice_duration
-		} else {
-			p.enc = (*Buffer).enc_slice_ref_duration
-			p.dec = (*Buffer).dec_slice_ref_duration
-			p.size = size_slice_ref_duration
-		}
-	} else if typ.Kind() == reflect.Ptr {
-		p.enc = (*Buffer).enc_duration
-		p.dec = (*Buffer).dec_duration
-		p.size = size_duration
-	} else {
-		p.enc = (*Buffer).enc_ref_duration
-		p.dec = (*Buffer).dec_ref_duration
-		p.size = size_ref_duration
-	}
-}
-
-func (p *Properties) setTimeEncAndDec(typ reflect.Type) {
-	if p.Repeated {
-		if typ.Elem().Kind() == reflect.Ptr {
-			p.enc = (*Buffer).enc_slice_time
-			p.dec = (*Buffer).dec_slice_time
-			p.size = size_slice_time
-		} else {
-			p.enc = (*Buffer).enc_slice_ref_time
-			p.dec = (*Buffer).dec_slice_ref_time
-			p.size = size_slice_ref_time
-		}
-	} else if typ.Kind() == reflect.Ptr {
-		p.enc = (*Buffer).enc_time
-		p.dec = (*Buffer).dec_time
-		p.size = size_time
-	} else {
-		p.enc = (*Buffer).enc_ref_time
-		p.dec = (*Buffer).dec_ref_time
-		p.size = size_ref_time
-	}
-
-}
-
-func (p *Properties) setSliceOfNonPointerStructs(typ reflect.Type) {
-	t2 := typ.Elem()
-	p.sstype = typ
-	p.stype = t2
-	p.isMarshaler = isMarshaler(t2)
-	p.isUnmarshaler = isUnmarshaler(t2)
-	p.enc = (*Buffer).enc_slice_ref_struct_message
-	p.dec = (*Buffer).dec_slice_ref_struct_message
-	p.size = size_slice_ref_struct_message
-	if p.Wire != "bytes" {
-		fmt.Fprintf(os.Stderr, "proto: no ptr oenc for %T -> %T \n", typ, t2)
-	}
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/skip_gogo.go b/vendor/github.com/gogo/protobuf/proto/skip_gogo.go
deleted file mode 100644
index 5a5fd93f7c..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/skip_gogo.go
+++ /dev/null
@@ -1,119 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"fmt"
-	"io"
-)
-
-func Skip(data []byte) (n int, err error) {
-	l := len(data)
-	index := 0
-	for index < l {
-		var wire uint64
-		for shift := uint(0); ; shift += 7 {
-			if index >= l {
-				return 0, io.ErrUnexpectedEOF
-			}
-			b := data[index]
-			index++
-			wire |= (uint64(b) & 0x7F) << shift
-			if b < 0x80 {
-				break
-			}
-		}
-		wireType := int(wire & 0x7)
-		switch wireType {
-		case 0:
-			for {
-				if index >= l {
-					return 0, io.ErrUnexpectedEOF
-				}
-				index++
-				if data[index-1] < 0x80 {
-					break
-				}
-			}
-			return index, nil
-		case 1:
-			index += 8
-			return index, nil
-		case 2:
-			var length int
-			for shift := uint(0); ; shift += 7 {
-				if index >= l {
-					return 0, io.ErrUnexpectedEOF
-				}
-				b := data[index]
-				index++
-				length |= (int(b) & 0x7F) << shift
-				if b < 0x80 {
-					break
-				}
-			}
-			index += length
-			return index, nil
-		case 3:
-			for {
-				var innerWire uint64
-				var start int = index
-				for shift := uint(0); ; shift += 7 {
-					if index >= l {
-						return 0, io.ErrUnexpectedEOF
-					}
-					b := data[index]
-					index++
-					innerWire |= (uint64(b) & 0x7F) << shift
-					if b < 0x80 {
-						break
-					}
-				}
-				innerWireType := int(innerWire & 0x7)
-				if innerWireType == 4 {
-					break
-				}
-				next, err := Skip(data[start:])
-				if err != nil {
-					return 0, err
-				}
-				index = start + next
-			}
-			return index, nil
-		case 4:
-			return index, nil
-		case 5:
-			index += 4
-			return index, nil
-		default:
-			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
-		}
-	}
-	panic("unreachable")
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/text.go b/vendor/github.com/gogo/protobuf/proto/text.go
deleted file mode 100644
index f609d1d453..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/text.go
+++ /dev/null
@@ -1,939 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-// Functions for writing the text protocol buffer format.
-
-import (
-	"bufio"
-	"bytes"
-	"encoding"
-	"errors"
-	"fmt"
-	"io"
-	"log"
-	"math"
-	"reflect"
-	"sort"
-	"strings"
-	"sync"
-	"time"
-)
-
-var (
-	newline         = []byte("\n")
-	spaces          = []byte("                                        ")
-	gtNewline       = []byte(">\n")
-	endBraceNewline = []byte("}\n")
-	backslashN      = []byte{'\\', 'n'}
-	backslashR      = []byte{'\\', 'r'}
-	backslashT      = []byte{'\\', 't'}
-	backslashDQ     = []byte{'\\', '"'}
-	backslashBS     = []byte{'\\', '\\'}
-	posInf          = []byte("inf")
-	negInf          = []byte("-inf")
-	nan             = []byte("nan")
-)
-
-type writer interface {
-	io.Writer
-	WriteByte(byte) error
-}
-
-// textWriter is an io.Writer that tracks its indentation level.
-type textWriter struct {
-	ind      int
-	complete bool // if the current position is a complete line
-	compact  bool // whether to write out as a one-liner
-	w        writer
-}
-
-func (w *textWriter) WriteString(s string) (n int, err error) {
-	if !strings.Contains(s, "\n") {
-		if !w.compact && w.complete {
-			w.writeIndent()
-		}
-		w.complete = false
-		return io.WriteString(w.w, s)
-	}
-	// WriteString is typically called without newlines, so this
-	// codepath and its copy are rare.  We copy to avoid
-	// duplicating all of Write's logic here.
-	return w.Write([]byte(s))
-}
-
-func (w *textWriter) Write(p []byte) (n int, err error) {
-	newlines := bytes.Count(p, newline)
-	if newlines == 0 {
-		if !w.compact && w.complete {
-			w.writeIndent()
-		}
-		n, err = w.w.Write(p)
-		w.complete = false
-		return n, err
-	}
-
-	frags := bytes.SplitN(p, newline, newlines+1)
-	if w.compact {
-		for i, frag := range frags {
-			if i > 0 {
-				if err := w.w.WriteByte(' '); err != nil {
-					return n, err
-				}
-				n++
-			}
-			nn, err := w.w.Write(frag)
-			n += nn
-			if err != nil {
-				return n, err
-			}
-		}
-		return n, nil
-	}
-
-	for i, frag := range frags {
-		if w.complete {
-			w.writeIndent()
-		}
-		nn, err := w.w.Write(frag)
-		n += nn
-		if err != nil {
-			return n, err
-		}
-		if i+1 < len(frags) {
-			if err := w.w.WriteByte('\n'); err != nil {
-				return n, err
-			}
-			n++
-		}
-	}
-	w.complete = len(frags[len(frags)-1]) == 0
-	return n, nil
-}
-
-func (w *textWriter) WriteByte(c byte) error {
-	if w.compact && c == '\n' {
-		c = ' '
-	}
-	if !w.compact && w.complete {
-		w.writeIndent()
-	}
-	err := w.w.WriteByte(c)
-	w.complete = c == '\n'
-	return err
-}
-
-func (w *textWriter) indent() { w.ind++ }
-
-func (w *textWriter) unindent() {
-	if w.ind == 0 {
-		log.Print("proto: textWriter unindented too far")
-		return
-	}
-	w.ind--
-}
-
-func writeName(w *textWriter, props *Properties) error {
-	if _, err := w.WriteString(props.OrigName); err != nil {
-		return err
-	}
-	if props.Wire != "group" {
-		return w.WriteByte(':')
-	}
-	return nil
-}
-
-// raw is the interface satisfied by RawMessage.
-type raw interface {
-	Bytes() []byte
-}
-
-func requiresQuotes(u string) bool {
-	// When type URL contains any characters except [0-9A-Za-z./\-]*, it must be quoted.
-	for _, ch := range u {
-		switch {
-		case ch == '.' || ch == '/' || ch == '_':
-			continue
-		case '0' <= ch && ch <= '9':
-			continue
-		case 'A' <= ch && ch <= 'Z':
-			continue
-		case 'a' <= ch && ch <= 'z':
-			continue
-		default:
-			return true
-		}
-	}
-	return false
-}
-
-// isAny reports whether sv is a google.protobuf.Any message
-func isAny(sv reflect.Value) bool {
-	type wkt interface {
-		XXX_WellKnownType() string
-	}
-	t, ok := sv.Addr().Interface().(wkt)
-	return ok && t.XXX_WellKnownType() == "Any"
-}
-
-// writeProto3Any writes an expanded google.protobuf.Any message.
-//
-// It returns (false, nil) if sv value can't be unmarshaled (e.g. because
-// required messages are not linked in).
-//
-// It returns (true, error) when sv was written in expanded format or an error
-// was encountered.
-func (tm *TextMarshaler) writeProto3Any(w *textWriter, sv reflect.Value) (bool, error) {
-	turl := sv.FieldByName("TypeUrl")
-	val := sv.FieldByName("Value")
-	if !turl.IsValid() || !val.IsValid() {
-		return true, errors.New("proto: invalid google.protobuf.Any message")
-	}
-
-	b, ok := val.Interface().([]byte)
-	if !ok {
-		return true, errors.New("proto: invalid google.protobuf.Any message")
-	}
-
-	parts := strings.Split(turl.String(), "/")
-	mt := MessageType(parts[len(parts)-1])
-	if mt == nil {
-		return false, nil
-	}
-	m := reflect.New(mt.Elem())
-	if err := Unmarshal(b, m.Interface().(Message)); err != nil {
-		return false, nil
-	}
-	w.Write([]byte("["))
-	u := turl.String()
-	if requiresQuotes(u) {
-		writeString(w, u)
-	} else {
-		w.Write([]byte(u))
-	}
-	if w.compact {
-		w.Write([]byte("]:<"))
-	} else {
-		w.Write([]byte("]: <\n"))
-		w.ind++
-	}
-	if err := tm.writeStruct(w, m.Elem()); err != nil {
-		return true, err
-	}
-	if w.compact {
-		w.Write([]byte("> "))
-	} else {
-		w.ind--
-		w.Write([]byte(">\n"))
-	}
-	return true, nil
-}
-
-func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
-	if tm.ExpandAny && isAny(sv) {
-		if canExpand, err := tm.writeProto3Any(w, sv); canExpand {
-			return err
-		}
-	}
-	st := sv.Type()
-	sprops := GetProperties(st)
-	for i := 0; i < sv.NumField(); i++ {
-		fv := sv.Field(i)
-		props := sprops.Prop[i]
-		name := st.Field(i).Name
-
-		if strings.HasPrefix(name, "XXX_") {
-			// There are two XXX_ fields:
-			//   XXX_unrecognized []byte
-			//   XXX_extensions   map[int32]proto.Extension
-			// The first is handled here;
-			// the second is handled at the bottom of this function.
-			if name == "XXX_unrecognized" && !fv.IsNil() {
-				if err := writeUnknownStruct(w, fv.Interface().([]byte)); err != nil {
-					return err
-				}
-			}
-			continue
-		}
-		if fv.Kind() == reflect.Ptr && fv.IsNil() {
-			// Field not filled in. This could be an optional field or
-			// a required field that wasn't filled in. Either way, there
-			// isn't anything we can show for it.
-			continue
-		}
-		if fv.Kind() == reflect.Slice && fv.IsNil() {
-			// Repeated field that is empty, or a bytes field that is unused.
-			continue
-		}
-
-		if props.Repeated && fv.Kind() == reflect.Slice {
-			// Repeated field.
-			for j := 0; j < fv.Len(); j++ {
-				if err := writeName(w, props); err != nil {
-					return err
-				}
-				if !w.compact {
-					if err := w.WriteByte(' '); err != nil {
-						return err
-					}
-				}
-				v := fv.Index(j)
-				if v.Kind() == reflect.Ptr && v.IsNil() {
-					// A nil message in a repeated field is not valid,
-					// but we can handle that more gracefully than panicking.
-					if _, err := w.Write([]byte("<nil>\n")); err != nil {
-						return err
-					}
-					continue
-				}
-				if len(props.Enum) > 0 {
-					if err := tm.writeEnum(w, v, props); err != nil {
-						return err
-					}
-				} else if err := tm.writeAny(w, v, props); err != nil {
-					return err
-				}
-				if err := w.WriteByte('\n'); err != nil {
-					return err
-				}
-			}
-			continue
-		}
-		if fv.Kind() == reflect.Map {
-			// Map fields are rendered as a repeated struct with key/value fields.
-			keys := fv.MapKeys()
-			sort.Sort(mapKeys(keys))
-			for _, key := range keys {
-				val := fv.MapIndex(key)
-				if err := writeName(w, props); err != nil {
-					return err
-				}
-				if !w.compact {
-					if err := w.WriteByte(' '); err != nil {
-						return err
-					}
-				}
-				// open struct
-				if err := w.WriteByte('<'); err != nil {
-					return err
-				}
-				if !w.compact {
-					if err := w.WriteByte('\n'); err != nil {
-						return err
-					}
-				}
-				w.indent()
-				// key
-				if _, err := w.WriteString("key:"); err != nil {
-					return err
-				}
-				if !w.compact {
-					if err := w.WriteByte(' '); err != nil {
-						return err
-					}
-				}
-				if err := tm.writeAny(w, key, props.mkeyprop); err != nil {
-					return err
-				}
-				if err := w.WriteByte('\n'); err != nil {
-					return err
-				}
-				// nil values aren't legal, but we can avoid panicking because of them.
-				if val.Kind() != reflect.Ptr || !val.IsNil() {
-					// value
-					if _, err := w.WriteString("value:"); err != nil {
-						return err
-					}
-					if !w.compact {
-						if err := w.WriteByte(' '); err != nil {
-							return err
-						}
-					}
-					if err := tm.writeAny(w, val, props.mvalprop); err != nil {
-						return err
-					}
-					if err := w.WriteByte('\n'); err != nil {
-						return err
-					}
-				}
-				// close struct
-				w.unindent()
-				if err := w.WriteByte('>'); err != nil {
-					return err
-				}
-				if err := w.WriteByte('\n'); err != nil {
-					return err
-				}
-			}
-			continue
-		}
-		if props.proto3 && fv.Kind() == reflect.Slice && fv.Len() == 0 {
-			// empty bytes field
-			continue
-		}
-		if props.proto3 && fv.Kind() != reflect.Ptr && fv.Kind() != reflect.Slice {
-			// proto3 non-repeated scalar field; skip if zero value
-			if isProto3Zero(fv) {
-				continue
-			}
-		}
-
-		if fv.Kind() == reflect.Interface {
-			// Check if it is a oneof.
-			if st.Field(i).Tag.Get("protobuf_oneof") != "" {
-				// fv is nil, or holds a pointer to generated struct.
-				// That generated struct has exactly one field,
-				// which has a protobuf struct tag.
-				if fv.IsNil() {
-					continue
-				}
-				inner := fv.Elem().Elem() // interface -> *T -> T
-				tag := inner.Type().Field(0).Tag.Get("protobuf")
-				props = new(Properties) // Overwrite the outer props var, but not its pointee.
-				props.Parse(tag)
-				// Write the value in the oneof, not the oneof itself.
-				fv = inner.Field(0)
-
-				// Special case to cope with malformed messages gracefully:
-				// If the value in the oneof is a nil pointer, don't panic
-				// in writeAny.
-				if fv.Kind() == reflect.Ptr && fv.IsNil() {
-					// Use errors.New so writeAny won't render quotes.
-					msg := errors.New("/* nil */")
-					fv = reflect.ValueOf(&msg).Elem()
-				}
-			}
-		}
-
-		if err := writeName(w, props); err != nil {
-			return err
-		}
-		if !w.compact {
-			if err := w.WriteByte(' '); err != nil {
-				return err
-			}
-		}
-		if b, ok := fv.Interface().(raw); ok {
-			if err := writeRaw(w, b.Bytes()); err != nil {
-				return err
-			}
-			continue
-		}
-
-		if len(props.Enum) > 0 {
-			if err := tm.writeEnum(w, fv, props); err != nil {
-				return err
-			}
-		} else if err := tm.writeAny(w, fv, props); err != nil {
-			return err
-		}
-
-		if err := w.WriteByte('\n'); err != nil {
-			return err
-		}
-	}
-
-	// Extensions (the XXX_extensions field).
-	pv := sv
-	if pv.CanAddr() {
-		pv = sv.Addr()
-	} else {
-		pv = reflect.New(sv.Type())
-		pv.Elem().Set(sv)
-	}
-	if pv.Type().Implements(extensionRangeType) {
-		if err := tm.writeExtensions(w, pv); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-// writeRaw writes an uninterpreted raw message.
-func writeRaw(w *textWriter, b []byte) error {
-	if err := w.WriteByte('<'); err != nil {
-		return err
-	}
-	if !w.compact {
-		if err := w.WriteByte('\n'); err != nil {
-			return err
-		}
-	}
-	w.indent()
-	if err := writeUnknownStruct(w, b); err != nil {
-		return err
-	}
-	w.unindent()
-	if err := w.WriteByte('>'); err != nil {
-		return err
-	}
-	return nil
-}
-
-// writeAny writes an arbitrary field.
-func (tm *TextMarshaler) writeAny(w *textWriter, v reflect.Value, props *Properties) error {
-	v = reflect.Indirect(v)
-
-	if props != nil {
-		if len(props.CustomType) > 0 {
-			custom, ok := v.Interface().(Marshaler)
-			if ok {
-				data, err := custom.Marshal()
-				if err != nil {
-					return err
-				}
-				if err := writeString(w, string(data)); err != nil {
-					return err
-				}
-				return nil
-			}
-		} else if len(props.CastType) > 0 {
-			if _, ok := v.Interface().(interface {
-				String() string
-			}); ok {
-				switch v.Kind() {
-				case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64,
-					reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
-					_, err := fmt.Fprintf(w, "%d", v.Interface())
-					return err
-				}
-			}
-		} else if props.StdTime {
-			t, ok := v.Interface().(time.Time)
-			if !ok {
-				return fmt.Errorf("stdtime is not time.Time, but %T", v.Interface())
-			}
-			tproto, err := timestampProto(t)
-			if err != nil {
-				return err
-			}
-			propsCopy := *props // Make a copy so that this is goroutine-safe
-			propsCopy.StdTime = false
-			err = tm.writeAny(w, reflect.ValueOf(tproto), &propsCopy)
-			return err
-		} else if props.StdDuration {
-			d, ok := v.Interface().(time.Duration)
-			if !ok {
-				return fmt.Errorf("stdtime is not time.Duration, but %T", v.Interface())
-			}
-			dproto := durationProto(d)
-			propsCopy := *props // Make a copy so that this is goroutine-safe
-			propsCopy.StdDuration = false
-			err := tm.writeAny(w, reflect.ValueOf(dproto), &propsCopy)
-			return err
-		}
-	}
-
-	// Floats have special cases.
-	if v.Kind() == reflect.Float32 || v.Kind() == reflect.Float64 {
-		x := v.Float()
-		var b []byte
-		switch {
-		case math.IsInf(x, 1):
-			b = posInf
-		case math.IsInf(x, -1):
-			b = negInf
-		case math.IsNaN(x):
-			b = nan
-		}
-		if b != nil {
-			_, err := w.Write(b)
-			return err
-		}
-		// Other values are handled below.
-	}
-
-	// We don't attempt to serialise every possible value type; only those
-	// that can occur in protocol buffers.
-	switch v.Kind() {
-	case reflect.Slice:
-		// Should only be a []byte; repeated fields are handled in writeStruct.
-		if err := writeString(w, string(v.Bytes())); err != nil {
-			return err
-		}
-	case reflect.String:
-		if err := writeString(w, v.String()); err != nil {
-			return err
-		}
-	case reflect.Struct:
-		// Required/optional group/message.
-		var bra, ket byte = '<', '>'
-		if props != nil && props.Wire == "group" {
-			bra, ket = '{', '}'
-		}
-		if err := w.WriteByte(bra); err != nil {
-			return err
-		}
-		if !w.compact {
-			if err := w.WriteByte('\n'); err != nil {
-				return err
-			}
-		}
-		w.indent()
-		if etm, ok := v.Interface().(encoding.TextMarshaler); ok {
-			text, err := etm.MarshalText()
-			if err != nil {
-				return err
-			}
-			if _, err = w.Write(text); err != nil {
-				return err
-			}
-		} else if err := tm.writeStruct(w, v); err != nil {
-			return err
-		}
-		w.unindent()
-		if err := w.WriteByte(ket); err != nil {
-			return err
-		}
-	default:
-		_, err := fmt.Fprint(w, v.Interface())
-		return err
-	}
-	return nil
-}
-
-// equivalent to C's isprint.
-func isprint(c byte) bool {
-	return c >= 0x20 && c < 0x7f
-}
-
-// writeString writes a string in the protocol buffer text format.
-// It is similar to strconv.Quote except we don't use Go escape sequences,
-// we treat the string as a byte sequence, and we use octal escapes.
-// These differences are to maintain interoperability with the other
-// languages' implementations of the text format.
-func writeString(w *textWriter, s string) error {
-	// use WriteByte here to get any needed indent
-	if err := w.WriteByte('"'); err != nil {
-		return err
-	}
-	// Loop over the bytes, not the runes.
-	for i := 0; i < len(s); i++ {
-		var err error
-		// Divergence from C++: we don't escape apostrophes.
-		// There's no need to escape them, and the C++ parser
-		// copes with a naked apostrophe.
-		switch c := s[i]; c {
-		case '\n':
-			_, err = w.w.Write(backslashN)
-		case '\r':
-			_, err = w.w.Write(backslashR)
-		case '\t':
-			_, err = w.w.Write(backslashT)
-		case '"':
-			_, err = w.w.Write(backslashDQ)
-		case '\\':
-			_, err = w.w.Write(backslashBS)
-		default:
-			if isprint(c) {
-				err = w.w.WriteByte(c)
-			} else {
-				_, err = fmt.Fprintf(w.w, "\\%03o", c)
-			}
-		}
-		if err != nil {
-			return err
-		}
-	}
-	return w.WriteByte('"')
-}
-
-func writeUnknownStruct(w *textWriter, data []byte) (err error) {
-	if !w.compact {
-		if _, err := fmt.Fprintf(w, "/* %d unknown bytes */\n", len(data)); err != nil {
-			return err
-		}
-	}
-	b := NewBuffer(data)
-	for b.index < len(b.buf) {
-		x, err := b.DecodeVarint()
-		if err != nil {
-			_, ferr := fmt.Fprintf(w, "/* %v */\n", err)
-			return ferr
-		}
-		wire, tag := x&7, x>>3
-		if wire == WireEndGroup {
-			w.unindent()
-			if _, werr := w.Write(endBraceNewline); werr != nil {
-				return werr
-			}
-			continue
-		}
-		if _, ferr := fmt.Fprint(w, tag); ferr != nil {
-			return ferr
-		}
-		if wire != WireStartGroup {
-			if err = w.WriteByte(':'); err != nil {
-				return err
-			}
-		}
-		if !w.compact || wire == WireStartGroup {
-			if err = w.WriteByte(' '); err != nil {
-				return err
-			}
-		}
-		switch wire {
-		case WireBytes:
-			buf, e := b.DecodeRawBytes(false)
-			if e == nil {
-				_, err = fmt.Fprintf(w, "%q", buf)
-			} else {
-				_, err = fmt.Fprintf(w, "/* %v */", e)
-			}
-		case WireFixed32:
-			x, err = b.DecodeFixed32()
-			err = writeUnknownInt(w, x, err)
-		case WireFixed64:
-			x, err = b.DecodeFixed64()
-			err = writeUnknownInt(w, x, err)
-		case WireStartGroup:
-			err = w.WriteByte('{')
-			w.indent()
-		case WireVarint:
-			x, err = b.DecodeVarint()
-			err = writeUnknownInt(w, x, err)
-		default:
-			_, err = fmt.Fprintf(w, "/* unknown wire type %d */", wire)
-		}
-		if err != nil {
-			return err
-		}
-		if err := w.WriteByte('\n'); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func writeUnknownInt(w *textWriter, x uint64, err error) error {
-	if err == nil {
-		_, err = fmt.Fprint(w, x)
-	} else {
-		_, err = fmt.Fprintf(w, "/* %v */", err)
-	}
-	return err
-}
-
-type int32Slice []int32
-
-func (s int32Slice) Len() int           { return len(s) }
-func (s int32Slice) Less(i, j int) bool { return s[i] < s[j] }
-func (s int32Slice) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
-
-// writeExtensions writes all the extensions in pv.
-// pv is assumed to be a pointer to a protocol message struct that is extendable.
-func (tm *TextMarshaler) writeExtensions(w *textWriter, pv reflect.Value) error {
-	emap := extensionMaps[pv.Type().Elem()]
-	e := pv.Interface().(Message)
-
-	var m map[int32]Extension
-	var mu sync.Locker
-	if em, ok := e.(extensionsBytes); ok {
-		eb := em.GetExtensions()
-		var err error
-		m, err = BytesToExtensionsMap(*eb)
-		if err != nil {
-			return err
-		}
-		mu = notLocker{}
-	} else if _, ok := e.(extendableProto); ok {
-		ep, _ := extendable(e)
-		m, mu = ep.extensionsRead()
-		if m == nil {
-			return nil
-		}
-	}
-
-	// Order the extensions by ID.
-	// This isn't strictly necessary, but it will give us
-	// canonical output, which will also make testing easier.
-
-	mu.Lock()
-	ids := make([]int32, 0, len(m))
-	for id := range m {
-		ids = append(ids, id)
-	}
-	sort.Sort(int32Slice(ids))
-	mu.Unlock()
-
-	for _, extNum := range ids {
-		ext := m[extNum]
-		var desc *ExtensionDesc
-		if emap != nil {
-			desc = emap[extNum]
-		}
-		if desc == nil {
-			// Unknown extension.
-			if err := writeUnknownStruct(w, ext.enc); err != nil {
-				return err
-			}
-			continue
-		}
-
-		pb, err := GetExtension(e, desc)
-		if err != nil {
-			return fmt.Errorf("failed getting extension: %v", err)
-		}
-
-		// Repeated extensions will appear as a slice.
-		if !desc.repeated() {
-			if err := tm.writeExtension(w, desc.Name, pb); err != nil {
-				return err
-			}
-		} else {
-			v := reflect.ValueOf(pb)
-			for i := 0; i < v.Len(); i++ {
-				if err := tm.writeExtension(w, desc.Name, v.Index(i).Interface()); err != nil {
-					return err
-				}
-			}
-		}
-	}
-	return nil
-}
-
-func (tm *TextMarshaler) writeExtension(w *textWriter, name string, pb interface{}) error {
-	if _, err := fmt.Fprintf(w, "[%s]:", name); err != nil {
-		return err
-	}
-	if !w.compact {
-		if err := w.WriteByte(' '); err != nil {
-			return err
-		}
-	}
-	if err := tm.writeAny(w, reflect.ValueOf(pb), nil); err != nil {
-		return err
-	}
-	if err := w.WriteByte('\n'); err != nil {
-		return err
-	}
-	return nil
-}
-
-func (w *textWriter) writeIndent() {
-	if !w.complete {
-		return
-	}
-	remain := w.ind * 2
-	for remain > 0 {
-		n := remain
-		if n > len(spaces) {
-			n = len(spaces)
-		}
-		w.w.Write(spaces[:n])
-		remain -= n
-	}
-	w.complete = false
-}
-
-// TextMarshaler is a configurable text format marshaler.
-type TextMarshaler struct {
-	Compact   bool // use compact text format (one line).
-	ExpandAny bool // expand google.protobuf.Any messages of known types
-}
-
-// Marshal writes a given protocol buffer in text format.
-// The only errors returned are from w.
-func (tm *TextMarshaler) Marshal(w io.Writer, pb Message) error {
-	val := reflect.ValueOf(pb)
-	if pb == nil || val.IsNil() {
-		w.Write([]byte("<nil>"))
-		return nil
-	}
-	var bw *bufio.Writer
-	ww, ok := w.(writer)
-	if !ok {
-		bw = bufio.NewWriter(w)
-		ww = bw
-	}
-	aw := &textWriter{
-		w:        ww,
-		complete: true,
-		compact:  tm.Compact,
-	}
-
-	if etm, ok := pb.(encoding.TextMarshaler); ok {
-		text, err := etm.MarshalText()
-		if err != nil {
-			return err
-		}
-		if _, err = aw.Write(text); err != nil {
-			return err
-		}
-		if bw != nil {
-			return bw.Flush()
-		}
-		return nil
-	}
-	// Dereference the received pointer so we don't have outer < and >.
-	v := reflect.Indirect(val)
-	if err := tm.writeStruct(aw, v); err != nil {
-		return err
-	}
-	if bw != nil {
-		return bw.Flush()
-	}
-	return nil
-}
-
-// Text is the same as Marshal, but returns the string directly.
-func (tm *TextMarshaler) Text(pb Message) string {
-	var buf bytes.Buffer
-	tm.Marshal(&buf, pb)
-	return buf.String()
-}
-
-var (
-	defaultTextMarshaler = TextMarshaler{}
-	compactTextMarshaler = TextMarshaler{Compact: true}
-)
-
-// TODO: consider removing some of the Marshal functions below.
-
-// MarshalText writes a given protocol buffer in text format.
-// The only errors returned are from w.
-func MarshalText(w io.Writer, pb Message) error { return defaultTextMarshaler.Marshal(w, pb) }
-
-// MarshalTextString is the same as MarshalText, but returns the string directly.
-func MarshalTextString(pb Message) string { return defaultTextMarshaler.Text(pb) }
-
-// CompactText writes a given protocol buffer in compact text format (one line).
-func CompactText(w io.Writer, pb Message) error { return compactTextMarshaler.Marshal(w, pb) }
-
-// CompactTextString is the same as CompactText, but returns the string directly.
-func CompactTextString(pb Message) string { return compactTextMarshaler.Text(pb) }
diff --git a/vendor/github.com/gogo/protobuf/proto/text_gogo.go b/vendor/github.com/gogo/protobuf/proto/text_gogo.go
deleted file mode 100644
index 1d6c6aa0e4..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/text_gogo.go
+++ /dev/null
@@ -1,57 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"fmt"
-	"reflect"
-)
-
-func (tm *TextMarshaler) writeEnum(w *textWriter, v reflect.Value, props *Properties) error {
-	m, ok := enumStringMaps[props.Enum]
-	if !ok {
-		if err := tm.writeAny(w, v, props); err != nil {
-			return err
-		}
-	}
-	key := int32(0)
-	if v.Kind() == reflect.Ptr {
-		key = int32(v.Elem().Int())
-	} else {
-		key = int32(v.Int())
-	}
-	s, ok := m[key]
-	if !ok {
-		if err := tm.writeAny(w, v, props); err != nil {
-			return err
-		}
-	}
-	_, err := fmt.Fprint(w, s)
-	return err
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/text_parser.go b/vendor/github.com/gogo/protobuf/proto/text_parser.go
deleted file mode 100644
index f1276729a3..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/text_parser.go
+++ /dev/null
@@ -1,1013 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2013, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2010 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-// Functions for parsing the Text protocol buffer format.
-// TODO: message sets.
-
-import (
-	"encoding"
-	"errors"
-	"fmt"
-	"reflect"
-	"strconv"
-	"strings"
-	"time"
-	"unicode/utf8"
-)
-
-// Error string emitted when deserializing Any and fields are already set
-const anyRepeatedlyUnpacked = "Any message unpacked multiple times, or %q already set"
-
-type ParseError struct {
-	Message string
-	Line    int // 1-based line number
-	Offset  int // 0-based byte offset from start of input
-}
-
-func (p *ParseError) Error() string {
-	if p.Line == 1 {
-		// show offset only for first line
-		return fmt.Sprintf("line 1.%d: %v", p.Offset, p.Message)
-	}
-	return fmt.Sprintf("line %d: %v", p.Line, p.Message)
-}
-
-type token struct {
-	value    string
-	err      *ParseError
-	line     int    // line number
-	offset   int    // byte number from start of input, not start of line
-	unquoted string // the unquoted version of value, if it was a quoted string
-}
-
-func (t *token) String() string {
-	if t.err == nil {
-		return fmt.Sprintf("%q (line=%d, offset=%d)", t.value, t.line, t.offset)
-	}
-	return fmt.Sprintf("parse error: %v", t.err)
-}
-
-type textParser struct {
-	s            string // remaining input
-	done         bool   // whether the parsing is finished (success or error)
-	backed       bool   // whether back() was called
-	offset, line int
-	cur          token
-}
-
-func newTextParser(s string) *textParser {
-	p := new(textParser)
-	p.s = s
-	p.line = 1
-	p.cur.line = 1
-	return p
-}
-
-func (p *textParser) errorf(format string, a ...interface{}) *ParseError {
-	pe := &ParseError{fmt.Sprintf(format, a...), p.cur.line, p.cur.offset}
-	p.cur.err = pe
-	p.done = true
-	return pe
-}
-
-// Numbers and identifiers are matched by [-+._A-Za-z0-9]
-func isIdentOrNumberChar(c byte) bool {
-	switch {
-	case 'A' <= c && c <= 'Z', 'a' <= c && c <= 'z':
-		return true
-	case '0' <= c && c <= '9':
-		return true
-	}
-	switch c {
-	case '-', '+', '.', '_':
-		return true
-	}
-	return false
-}
-
-func isWhitespace(c byte) bool {
-	switch c {
-	case ' ', '\t', '\n', '\r':
-		return true
-	}
-	return false
-}
-
-func isQuote(c byte) bool {
-	switch c {
-	case '"', '\'':
-		return true
-	}
-	return false
-}
-
-func (p *textParser) skipWhitespace() {
-	i := 0
-	for i < len(p.s) && (isWhitespace(p.s[i]) || p.s[i] == '#') {
-		if p.s[i] == '#' {
-			// comment; skip to end of line or input
-			for i < len(p.s) && p.s[i] != '\n' {
-				i++
-			}
-			if i == len(p.s) {
-				break
-			}
-		}
-		if p.s[i] == '\n' {
-			p.line++
-		}
-		i++
-	}
-	p.offset += i
-	p.s = p.s[i:len(p.s)]
-	if len(p.s) == 0 {
-		p.done = true
-	}
-}
-
-func (p *textParser) advance() {
-	// Skip whitespace
-	p.skipWhitespace()
-	if p.done {
-		return
-	}
-
-	// Start of non-whitespace
-	p.cur.err = nil
-	p.cur.offset, p.cur.line = p.offset, p.line
-	p.cur.unquoted = ""
-	switch p.s[0] {
-	case '<', '>', '{', '}', ':', '[', ']', ';', ',', '/':
-		// Single symbol
-		p.cur.value, p.s = p.s[0:1], p.s[1:len(p.s)]
-	case '"', '\'':
-		// Quoted string
-		i := 1
-		for i < len(p.s) && p.s[i] != p.s[0] && p.s[i] != '\n' {
-			if p.s[i] == '\\' && i+1 < len(p.s) {
-				// skip escaped char
-				i++
-			}
-			i++
-		}
-		if i >= len(p.s) || p.s[i] != p.s[0] {
-			p.errorf("unmatched quote")
-			return
-		}
-		unq, err := unquoteC(p.s[1:i], rune(p.s[0]))
-		if err != nil {
-			p.errorf("invalid quoted string %s: %v", p.s[0:i+1], err)
-			return
-		}
-		p.cur.value, p.s = p.s[0:i+1], p.s[i+1:len(p.s)]
-		p.cur.unquoted = unq
-	default:
-		i := 0
-		for i < len(p.s) && isIdentOrNumberChar(p.s[i]) {
-			i++
-		}
-		if i == 0 {
-			p.errorf("unexpected byte %#x", p.s[0])
-			return
-		}
-		p.cur.value, p.s = p.s[0:i], p.s[i:len(p.s)]
-	}
-	p.offset += len(p.cur.value)
-}
-
-var (
-	errBadUTF8 = errors.New("proto: bad UTF-8")
-	errBadHex  = errors.New("proto: bad hexadecimal")
-)
-
-func unquoteC(s string, quote rune) (string, error) {
-	// This is based on C++'s tokenizer.cc.
-	// Despite its name, this is *not* parsing C syntax.
-	// For instance, "\0" is an invalid quoted string.
-
-	// Avoid allocation in trivial cases.
-	simple := true
-	for _, r := range s {
-		if r == '\\' || r == quote {
-			simple = false
-			break
-		}
-	}
-	if simple {
-		return s, nil
-	}
-
-	buf := make([]byte, 0, 3*len(s)/2)
-	for len(s) > 0 {
-		r, n := utf8.DecodeRuneInString(s)
-		if r == utf8.RuneError && n == 1 {
-			return "", errBadUTF8
-		}
-		s = s[n:]
-		if r != '\\' {
-			if r < utf8.RuneSelf {
-				buf = append(buf, byte(r))
-			} else {
-				buf = append(buf, string(r)...)
-			}
-			continue
-		}
-
-		ch, tail, err := unescape(s)
-		if err != nil {
-			return "", err
-		}
-		buf = append(buf, ch...)
-		s = tail
-	}
-	return string(buf), nil
-}
-
-func unescape(s string) (ch string, tail string, err error) {
-	r, n := utf8.DecodeRuneInString(s)
-	if r == utf8.RuneError && n == 1 {
-		return "", "", errBadUTF8
-	}
-	s = s[n:]
-	switch r {
-	case 'a':
-		return "\a", s, nil
-	case 'b':
-		return "\b", s, nil
-	case 'f':
-		return "\f", s, nil
-	case 'n':
-		return "\n", s, nil
-	case 'r':
-		return "\r", s, nil
-	case 't':
-		return "\t", s, nil
-	case 'v':
-		return "\v", s, nil
-	case '?':
-		return "?", s, nil // trigraph workaround
-	case '\'', '"', '\\':
-		return string(r), s, nil
-	case '0', '1', '2', '3', '4', '5', '6', '7', 'x', 'X':
-		if len(s) < 2 {
-			return "", "", fmt.Errorf(`\%c requires 2 following digits`, r)
-		}
-		base := 8
-		ss := s[:2]
-		s = s[2:]
-		if r == 'x' || r == 'X' {
-			base = 16
-		} else {
-			ss = string(r) + ss
-		}
-		i, err := strconv.ParseUint(ss, base, 8)
-		if err != nil {
-			return "", "", err
-		}
-		return string([]byte{byte(i)}), s, nil
-	case 'u', 'U':
-		n := 4
-		if r == 'U' {
-			n = 8
-		}
-		if len(s) < n {
-			return "", "", fmt.Errorf(`\%c requires %d digits`, r, n)
-		}
-
-		bs := make([]byte, n/2)
-		for i := 0; i < n; i += 2 {
-			a, ok1 := unhex(s[i])
-			b, ok2 := unhex(s[i+1])
-			if !ok1 || !ok2 {
-				return "", "", errBadHex
-			}
-			bs[i/2] = a<<4 | b
-		}
-		s = s[n:]
-		return string(bs), s, nil
-	}
-	return "", "", fmt.Errorf(`unknown escape \%c`, r)
-}
-
-// Adapted from src/pkg/strconv/quote.go.
-func unhex(b byte) (v byte, ok bool) {
-	switch {
-	case '0' <= b && b <= '9':
-		return b - '0', true
-	case 'a' <= b && b <= 'f':
-		return b - 'a' + 10, true
-	case 'A' <= b && b <= 'F':
-		return b - 'A' + 10, true
-	}
-	return 0, false
-}
-
-// Back off the parser by one token. Can only be done between calls to next().
-// It makes the next advance() a no-op.
-func (p *textParser) back() { p.backed = true }
-
-// Advances the parser and returns the new current token.
-func (p *textParser) next() *token {
-	if p.backed || p.done {
-		p.backed = false
-		return &p.cur
-	}
-	p.advance()
-	if p.done {
-		p.cur.value = ""
-	} else if len(p.cur.value) > 0 && isQuote(p.cur.value[0]) {
-		// Look for multiple quoted strings separated by whitespace,
-		// and concatenate them.
-		cat := p.cur
-		for {
-			p.skipWhitespace()
-			if p.done || !isQuote(p.s[0]) {
-				break
-			}
-			p.advance()
-			if p.cur.err != nil {
-				return &p.cur
-			}
-			cat.value += " " + p.cur.value
-			cat.unquoted += p.cur.unquoted
-		}
-		p.done = false // parser may have seen EOF, but we want to return cat
-		p.cur = cat
-	}
-	return &p.cur
-}
-
-func (p *textParser) consumeToken(s string) error {
-	tok := p.next()
-	if tok.err != nil {
-		return tok.err
-	}
-	if tok.value != s {
-		p.back()
-		return p.errorf("expected %q, found %q", s, tok.value)
-	}
-	return nil
-}
-
-// Return a RequiredNotSetError indicating which required field was not set.
-func (p *textParser) missingRequiredFieldError(sv reflect.Value) *RequiredNotSetError {
-	st := sv.Type()
-	sprops := GetProperties(st)
-	for i := 0; i < st.NumField(); i++ {
-		if !isNil(sv.Field(i)) {
-			continue
-		}
-
-		props := sprops.Prop[i]
-		if props.Required {
-			return &RequiredNotSetError{fmt.Sprintf("%v.%v", st, props.OrigName)}
-		}
-	}
-	return &RequiredNotSetError{fmt.Sprintf("%v.<unknown field name>", st)} // should not happen
-}
-
-// Returns the index in the struct for the named field, as well as the parsed tag properties.
-func structFieldByName(sprops *StructProperties, name string) (int, *Properties, bool) {
-	i, ok := sprops.decoderOrigNames[name]
-	if ok {
-		return i, sprops.Prop[i], true
-	}
-	return -1, nil, false
-}
-
-// Consume a ':' from the input stream (if the next token is a colon),
-// returning an error if a colon is needed but not present.
-func (p *textParser) checkForColon(props *Properties, typ reflect.Type) *ParseError {
-	tok := p.next()
-	if tok.err != nil {
-		return tok.err
-	}
-	if tok.value != ":" {
-		// Colon is optional when the field is a group or message.
-		needColon := true
-		switch props.Wire {
-		case "group":
-			needColon = false
-		case "bytes":
-			// A "bytes" field is either a message, a string, or a repeated field;
-			// those three become *T, *string and []T respectively, so we can check for
-			// this field being a pointer to a non-string.
-			if typ.Kind() == reflect.Ptr {
-				// *T or *string
-				if typ.Elem().Kind() == reflect.String {
-					break
-				}
-			} else if typ.Kind() == reflect.Slice {
-				// []T or []*T
-				if typ.Elem().Kind() != reflect.Ptr {
-					break
-				}
-			} else if typ.Kind() == reflect.String {
-				// The proto3 exception is for a string field,
-				// which requires a colon.
-				break
-			}
-			needColon = false
-		}
-		if needColon {
-			return p.errorf("expected ':', found %q", tok.value)
-		}
-		p.back()
-	}
-	return nil
-}
-
-func (p *textParser) readStruct(sv reflect.Value, terminator string) error {
-	st := sv.Type()
-	sprops := GetProperties(st)
-	reqCount := sprops.reqCount
-	var reqFieldErr error
-	fieldSet := make(map[string]bool)
-	// A struct is a sequence of "name: value", terminated by one of
-	// '>' or '}', or the end of the input.  A name may also be
-	// "[extension]" or "[type/url]".
-	//
-	// The whole struct can also be an expanded Any message, like:
-	// [type/url] < ... struct contents ... >
-	for {
-		tok := p.next()
-		if tok.err != nil {
-			return tok.err
-		}
-		if tok.value == terminator {
-			break
-		}
-		if tok.value == "[" {
-			// Looks like an extension or an Any.
-			//
-			// TODO: Check whether we need to handle
-			// namespace rooted names (e.g. ".something.Foo").
-			extName, err := p.consumeExtName()
-			if err != nil {
-				return err
-			}
-
-			if s := strings.LastIndex(extName, "/"); s >= 0 {
-				// If it contains a slash, it's an Any type URL.
-				messageName := extName[s+1:]
-				mt := MessageType(messageName)
-				if mt == nil {
-					return p.errorf("unrecognized message %q in google.protobuf.Any", messageName)
-				}
-				tok = p.next()
-				if tok.err != nil {
-					return tok.err
-				}
-				// consume an optional colon
-				if tok.value == ":" {
-					tok = p.next()
-					if tok.err != nil {
-						return tok.err
-					}
-				}
-				var terminator string
-				switch tok.value {
-				case "<":
-					terminator = ">"
-				case "{":
-					terminator = "}"
-				default:
-					return p.errorf("expected '{' or '<', found %q", tok.value)
-				}
-				v := reflect.New(mt.Elem())
-				if pe := p.readStruct(v.Elem(), terminator); pe != nil {
-					return pe
-				}
-				b, err := Marshal(v.Interface().(Message))
-				if err != nil {
-					return p.errorf("failed to marshal message of type %q: %v", messageName, err)
-				}
-				if fieldSet["type_url"] {
-					return p.errorf(anyRepeatedlyUnpacked, "type_url")
-				}
-				if fieldSet["value"] {
-					return p.errorf(anyRepeatedlyUnpacked, "value")
-				}
-				sv.FieldByName("TypeUrl").SetString(extName)
-				sv.FieldByName("Value").SetBytes(b)
-				fieldSet["type_url"] = true
-				fieldSet["value"] = true
-				continue
-			}
-
-			var desc *ExtensionDesc
-			// This could be faster, but it's functional.
-			// TODO: Do something smarter than a linear scan.
-			for _, d := range RegisteredExtensions(reflect.New(st).Interface().(Message)) {
-				if d.Name == extName {
-					desc = d
-					break
-				}
-			}
-			if desc == nil {
-				return p.errorf("unrecognized extension %q", extName)
-			}
-
-			props := &Properties{}
-			props.Parse(desc.Tag)
-
-			typ := reflect.TypeOf(desc.ExtensionType)
-			if err := p.checkForColon(props, typ); err != nil {
-				return err
-			}
-
-			rep := desc.repeated()
-
-			// Read the extension structure, and set it in
-			// the value we're constructing.
-			var ext reflect.Value
-			if !rep {
-				ext = reflect.New(typ).Elem()
-			} else {
-				ext = reflect.New(typ.Elem()).Elem()
-			}
-			if err := p.readAny(ext, props); err != nil {
-				if _, ok := err.(*RequiredNotSetError); !ok {
-					return err
-				}
-				reqFieldErr = err
-			}
-			ep := sv.Addr().Interface().(Message)
-			if !rep {
-				SetExtension(ep, desc, ext.Interface())
-			} else {
-				old, err := GetExtension(ep, desc)
-				var sl reflect.Value
-				if err == nil {
-					sl = reflect.ValueOf(old) // existing slice
-				} else {
-					sl = reflect.MakeSlice(typ, 0, 1)
-				}
-				sl = reflect.Append(sl, ext)
-				SetExtension(ep, desc, sl.Interface())
-			}
-			if err := p.consumeOptionalSeparator(); err != nil {
-				return err
-			}
-			continue
-		}
-
-		// This is a normal, non-extension field.
-		name := tok.value
-		var dst reflect.Value
-		fi, props, ok := structFieldByName(sprops, name)
-		if ok {
-			dst = sv.Field(fi)
-		} else if oop, ok := sprops.OneofTypes[name]; ok {
-			// It is a oneof.
-			props = oop.Prop
-			nv := reflect.New(oop.Type.Elem())
-			dst = nv.Elem().Field(0)
-			field := sv.Field(oop.Field)
-			if !field.IsNil() {
-				return p.errorf("field '%s' would overwrite already parsed oneof '%s'", name, sv.Type().Field(oop.Field).Name)
-			}
-			field.Set(nv)
-		}
-		if !dst.IsValid() {
-			return p.errorf("unknown field name %q in %v", name, st)
-		}
-
-		if dst.Kind() == reflect.Map {
-			// Consume any colon.
-			if err := p.checkForColon(props, dst.Type()); err != nil {
-				return err
-			}
-
-			// Construct the map if it doesn't already exist.
-			if dst.IsNil() {
-				dst.Set(reflect.MakeMap(dst.Type()))
-			}
-			key := reflect.New(dst.Type().Key()).Elem()
-			val := reflect.New(dst.Type().Elem()).Elem()
-
-			// The map entry should be this sequence of tokens:
-			//	< key : KEY value : VALUE >
-			// However, implementations may omit key or value, and technically
-			// we should support them in any order.  See b/28924776 for a time
-			// this went wrong.
-
-			tok := p.next()
-			var terminator string
-			switch tok.value {
-			case "<":
-				terminator = ">"
-			case "{":
-				terminator = "}"
-			default:
-				return p.errorf("expected '{' or '<', found %q", tok.value)
-			}
-			for {
-				tok := p.next()
-				if tok.err != nil {
-					return tok.err
-				}
-				if tok.value == terminator {
-					break
-				}
-				switch tok.value {
-				case "key":
-					if err := p.consumeToken(":"); err != nil {
-						return err
-					}
-					if err := p.readAny(key, props.mkeyprop); err != nil {
-						return err
-					}
-					if err := p.consumeOptionalSeparator(); err != nil {
-						return err
-					}
-				case "value":
-					if err := p.checkForColon(props.mvalprop, dst.Type().Elem()); err != nil {
-						return err
-					}
-					if err := p.readAny(val, props.mvalprop); err != nil {
-						return err
-					}
-					if err := p.consumeOptionalSeparator(); err != nil {
-						return err
-					}
-				default:
-					p.back()
-					return p.errorf(`expected "key", "value", or %q, found %q`, terminator, tok.value)
-				}
-			}
-
-			dst.SetMapIndex(key, val)
-			continue
-		}
-
-		// Check that it's not already set if it's not a repeated field.
-		if !props.Repeated && fieldSet[name] {
-			return p.errorf("non-repeated field %q was repeated", name)
-		}
-
-		if err := p.checkForColon(props, dst.Type()); err != nil {
-			return err
-		}
-
-		// Parse into the field.
-		fieldSet[name] = true
-		if err := p.readAny(dst, props); err != nil {
-			if _, ok := err.(*RequiredNotSetError); !ok {
-				return err
-			}
-			reqFieldErr = err
-		}
-		if props.Required {
-			reqCount--
-		}
-
-		if err := p.consumeOptionalSeparator(); err != nil {
-			return err
-		}
-
-	}
-
-	if reqCount > 0 {
-		return p.missingRequiredFieldError(sv)
-	}
-	return reqFieldErr
-}
-
-// consumeExtName consumes extension name or expanded Any type URL and the
-// following ']'. It returns the name or URL consumed.
-func (p *textParser) consumeExtName() (string, error) {
-	tok := p.next()
-	if tok.err != nil {
-		return "", tok.err
-	}
-
-	// If extension name or type url is quoted, it's a single token.
-	if len(tok.value) > 2 && isQuote(tok.value[0]) && tok.value[len(tok.value)-1] == tok.value[0] {
-		name, err := unquoteC(tok.value[1:len(tok.value)-1], rune(tok.value[0]))
-		if err != nil {
-			return "", err
-		}
-		return name, p.consumeToken("]")
-	}
-
-	// Consume everything up to "]"
-	var parts []string
-	for tok.value != "]" {
-		parts = append(parts, tok.value)
-		tok = p.next()
-		if tok.err != nil {
-			return "", p.errorf("unrecognized type_url or extension name: %s", tok.err)
-		}
-	}
-	return strings.Join(parts, ""), nil
-}
-
-// consumeOptionalSeparator consumes an optional semicolon or comma.
-// It is used in readStruct to provide backward compatibility.
-func (p *textParser) consumeOptionalSeparator() error {
-	tok := p.next()
-	if tok.err != nil {
-		return tok.err
-	}
-	if tok.value != ";" && tok.value != "," {
-		p.back()
-	}
-	return nil
-}
-
-func (p *textParser) readAny(v reflect.Value, props *Properties) error {
-	tok := p.next()
-	if tok.err != nil {
-		return tok.err
-	}
-	if tok.value == "" {
-		return p.errorf("unexpected EOF")
-	}
-	if len(props.CustomType) > 0 {
-		if props.Repeated {
-			t := reflect.TypeOf(v.Interface())
-			if t.Kind() == reflect.Slice {
-				tc := reflect.TypeOf(new(Marshaler))
-				ok := t.Elem().Implements(tc.Elem())
-				if ok {
-					fv := v
-					flen := fv.Len()
-					if flen == fv.Cap() {
-						nav := reflect.MakeSlice(v.Type(), flen, 2*flen+1)
-						reflect.Copy(nav, fv)
-						fv.Set(nav)
-					}
-					fv.SetLen(flen + 1)
-
-					// Read one.
-					p.back()
-					return p.readAny(fv.Index(flen), props)
-				}
-			}
-		}
-		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
-			custom := reflect.New(props.ctype.Elem()).Interface().(Unmarshaler)
-			err := custom.Unmarshal([]byte(tok.unquoted))
-			if err != nil {
-				return p.errorf("%v %v: %v", err, v.Type(), tok.value)
-			}
-			v.Set(reflect.ValueOf(custom))
-		} else {
-			custom := reflect.New(reflect.TypeOf(v.Interface())).Interface().(Unmarshaler)
-			err := custom.Unmarshal([]byte(tok.unquoted))
-			if err != nil {
-				return p.errorf("%v %v: %v", err, v.Type(), tok.value)
-			}
-			v.Set(reflect.Indirect(reflect.ValueOf(custom)))
-		}
-		return nil
-	}
-	if props.StdTime {
-		fv := v
-		p.back()
-		props.StdTime = false
-		tproto := &timestamp{}
-		err := p.readAny(reflect.ValueOf(tproto).Elem(), props)
-		props.StdTime = true
-		if err != nil {
-			return err
-		}
-		tim, err := timestampFromProto(tproto)
-		if err != nil {
-			return err
-		}
-		if props.Repeated {
-			t := reflect.TypeOf(v.Interface())
-			if t.Kind() == reflect.Slice {
-				if t.Elem().Kind() == reflect.Ptr {
-					ts := fv.Interface().([]*time.Time)
-					ts = append(ts, &tim)
-					fv.Set(reflect.ValueOf(ts))
-					return nil
-				} else {
-					ts := fv.Interface().([]time.Time)
-					ts = append(ts, tim)
-					fv.Set(reflect.ValueOf(ts))
-					return nil
-				}
-			}
-		}
-		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
-			v.Set(reflect.ValueOf(&tim))
-		} else {
-			v.Set(reflect.Indirect(reflect.ValueOf(&tim)))
-		}
-		return nil
-	}
-	if props.StdDuration {
-		fv := v
-		p.back()
-		props.StdDuration = false
-		dproto := &duration{}
-		err := p.readAny(reflect.ValueOf(dproto).Elem(), props)
-		props.StdDuration = true
-		if err != nil {
-			return err
-		}
-		dur, err := durationFromProto(dproto)
-		if err != nil {
-			return err
-		}
-		if props.Repeated {
-			t := reflect.TypeOf(v.Interface())
-			if t.Kind() == reflect.Slice {
-				if t.Elem().Kind() == reflect.Ptr {
-					ds := fv.Interface().([]*time.Duration)
-					ds = append(ds, &dur)
-					fv.Set(reflect.ValueOf(ds))
-					return nil
-				} else {
-					ds := fv.Interface().([]time.Duration)
-					ds = append(ds, dur)
-					fv.Set(reflect.ValueOf(ds))
-					return nil
-				}
-			}
-		}
-		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
-			v.Set(reflect.ValueOf(&dur))
-		} else {
-			v.Set(reflect.Indirect(reflect.ValueOf(&dur)))
-		}
-		return nil
-	}
-	switch fv := v; fv.Kind() {
-	case reflect.Slice:
-		at := v.Type()
-		if at.Elem().Kind() == reflect.Uint8 {
-			// Special case for []byte
-			if tok.value[0] != '"' && tok.value[0] != '\'' {
-				// Deliberately written out here, as the error after
-				// this switch statement would write "invalid []byte: ...",
-				// which is not as user-friendly.
-				return p.errorf("invalid string: %v", tok.value)
-			}
-			bytes := []byte(tok.unquoted)
-			fv.Set(reflect.ValueOf(bytes))
-			return nil
-		}
-		// Repeated field.
-		if tok.value == "[" {
-			// Repeated field with list notation, like [1,2,3].
-			for {
-				fv.Set(reflect.Append(fv, reflect.New(at.Elem()).Elem()))
-				err := p.readAny(fv.Index(fv.Len()-1), props)
-				if err != nil {
-					return err
-				}
-				ntok := p.next()
-				if ntok.err != nil {
-					return ntok.err
-				}
-				if ntok.value == "]" {
-					break
-				}
-				if ntok.value != "," {
-					return p.errorf("Expected ']' or ',' found %q", ntok.value)
-				}
-			}
-			return nil
-		}
-		// One value of the repeated field.
-		p.back()
-		fv.Set(reflect.Append(fv, reflect.New(at.Elem()).Elem()))
-		return p.readAny(fv.Index(fv.Len()-1), props)
-	case reflect.Bool:
-		// true/1/t/True or false/f/0/False.
-		switch tok.value {
-		case "true", "1", "t", "True":
-			fv.SetBool(true)
-			return nil
-		case "false", "0", "f", "False":
-			fv.SetBool(false)
-			return nil
-		}
-	case reflect.Float32, reflect.Float64:
-		v := tok.value
-		// Ignore 'f' for compatibility with output generated by C++, but don't
-		// remove 'f' when the value is "-inf" or "inf".
-		if strings.HasSuffix(v, "f") && tok.value != "-inf" && tok.value != "inf" {
-			v = v[:len(v)-1]
-		}
-		if f, err := strconv.ParseFloat(v, fv.Type().Bits()); err == nil {
-			fv.SetFloat(f)
-			return nil
-		}
-	case reflect.Int32:
-		if x, err := strconv.ParseInt(tok.value, 0, 32); err == nil {
-			fv.SetInt(x)
-			return nil
-		}
-
-		if len(props.Enum) == 0 {
-			break
-		}
-		m, ok := enumValueMaps[props.Enum]
-		if !ok {
-			break
-		}
-		x, ok := m[tok.value]
-		if !ok {
-			break
-		}
-		fv.SetInt(int64(x))
-		return nil
-	case reflect.Int64:
-		if x, err := strconv.ParseInt(tok.value, 0, 64); err == nil {
-			fv.SetInt(x)
-			return nil
-		}
-
-	case reflect.Ptr:
-		// A basic field (indirected through pointer), or a repeated message/group
-		p.back()
-		fv.Set(reflect.New(fv.Type().Elem()))
-		return p.readAny(fv.Elem(), props)
-	case reflect.String:
-		if tok.value[0] == '"' || tok.value[0] == '\'' {
-			fv.SetString(tok.unquoted)
-			return nil
-		}
-	case reflect.Struct:
-		var terminator string
-		switch tok.value {
-		case "{":
-			terminator = "}"
-		case "<":
-			terminator = ">"
-		default:
-			return p.errorf("expected '{' or '<', found %q", tok.value)
-		}
-		// TODO: Handle nested messages which implement encoding.TextUnmarshaler.
-		return p.readStruct(fv, terminator)
-	case reflect.Uint32:
-		if x, err := strconv.ParseUint(tok.value, 0, 32); err == nil {
-			fv.SetUint(x)
-			return nil
-		}
-	case reflect.Uint64:
-		if x, err := strconv.ParseUint(tok.value, 0, 64); err == nil {
-			fv.SetUint(x)
-			return nil
-		}
-	}
-	return p.errorf("invalid %v: %v", v.Type(), tok.value)
-}
-
-// UnmarshalText reads a protocol buffer in Text format. UnmarshalText resets pb
-// before starting to unmarshal, so any existing data in pb is always removed.
-// If a required field is not set and no other error occurs,
-// UnmarshalText returns *RequiredNotSetError.
-func UnmarshalText(s string, pb Message) error {
-	if um, ok := pb.(encoding.TextUnmarshaler); ok {
-		err := um.UnmarshalText([]byte(s))
-		return err
-	}
-	pb.Reset()
-	v := reflect.ValueOf(pb)
-	if pe := newTextParser(s).readStruct(v.Elem(), ""); pe != nil {
-		return pe
-	}
-	return nil
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/timestamp.go b/vendor/github.com/gogo/protobuf/proto/timestamp.go
deleted file mode 100644
index 9324f6542b..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/timestamp.go
+++ /dev/null
@@ -1,113 +0,0 @@
-// Go support for Protocol Buffers - Google's data interchange format
-//
-// Copyright 2016 The Go Authors.  All rights reserved.
-// https://github.com/golang/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-// This file implements operations on google.protobuf.Timestamp.
-
-import (
-	"errors"
-	"fmt"
-	"time"
-)
-
-const (
-	// Seconds field of the earliest valid Timestamp.
-	// This is time.Date(1, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
-	minValidSeconds = -62135596800
-	// Seconds field just after the latest valid Timestamp.
-	// This is time.Date(10000, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
-	maxValidSeconds = 253402300800
-)
-
-// validateTimestamp determines whether a Timestamp is valid.
-// A valid timestamp represents a time in the range
-// [0001-01-01, 10000-01-01) and has a Nanos field
-// in the range [0, 1e9).
-//
-// If the Timestamp is valid, validateTimestamp returns nil.
-// Otherwise, it returns an error that describes
-// the problem.
-//
-// Every valid Timestamp can be represented by a time.Time, but the converse is not true.
-func validateTimestamp(ts *timestamp) error {
-	if ts == nil {
-		return errors.New("timestamp: nil Timestamp")
-	}
-	if ts.Seconds < minValidSeconds {
-		return fmt.Errorf("timestamp: %#v before 0001-01-01", ts)
-	}
-	if ts.Seconds >= maxValidSeconds {
-		return fmt.Errorf("timestamp: %#v after 10000-01-01", ts)
-	}
-	if ts.Nanos < 0 || ts.Nanos >= 1e9 {
-		return fmt.Errorf("timestamp: %#v: nanos not in range [0, 1e9)", ts)
-	}
-	return nil
-}
-
-// TimestampFromProto converts a google.protobuf.Timestamp proto to a time.Time.
-// It returns an error if the argument is invalid.
-//
-// Unlike most Go functions, if Timestamp returns an error, the first return value
-// is not the zero time.Time. Instead, it is the value obtained from the
-// time.Unix function when passed the contents of the Timestamp, in the UTC
-// locale. This may or may not be a meaningful time; many invalid Timestamps
-// do map to valid time.Times.
-//
-// A nil Timestamp returns an error. The first return value in that case is
-// undefined.
-func timestampFromProto(ts *timestamp) (time.Time, error) {
-	// Don't return the zero value on error, because corresponds to a valid
-	// timestamp. Instead return whatever time.Unix gives us.
-	var t time.Time
-	if ts == nil {
-		t = time.Unix(0, 0).UTC() // treat nil like the empty Timestamp
-	} else {
-		t = time.Unix(ts.Seconds, int64(ts.Nanos)).UTC()
-	}
-	return t, validateTimestamp(ts)
-}
-
-// TimestampProto converts the time.Time to a google.protobuf.Timestamp proto.
-// It returns an error if the resulting Timestamp is invalid.
-func timestampProto(t time.Time) (*timestamp, error) {
-	seconds := t.Unix()
-	nanos := int32(t.Sub(time.Unix(seconds, 0)))
-	ts := &timestamp{
-		Seconds: seconds,
-		Nanos:   nanos,
-	}
-	if err := validateTimestamp(ts); err != nil {
-		return nil, err
-	}
-	return ts, nil
-}
diff --git a/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go b/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
deleted file mode 100644
index d427647436..0000000000
--- a/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
+++ /dev/null
@@ -1,229 +0,0 @@
-// Protocol Buffers for Go with Gadgets
-//
-// Copyright (c) 2016, The GoGo Authors. All rights reserved.
-// http://github.com/gogo/protobuf
-//
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
-//
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-package proto
-
-import (
-	"reflect"
-	"time"
-)
-
-var timeType = reflect.TypeOf((*time.Time)(nil)).Elem()
-
-type timestamp struct {
-	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
-	Nanos   int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
-}
-
-func (m *timestamp) Reset()       { *m = timestamp{} }
-func (*timestamp) ProtoMessage()  {}
-func (*timestamp) String() string { return "timestamp<string>" }
-
-func init() {
-	RegisterType((*timestamp)(nil), "gogo.protobuf.proto.timestamp")
-}
-
-func (o *Buffer) decTimestamp() (time.Time, error) {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return time.Time{}, err
-	}
-	tproto := &timestamp{}
-	if err := Unmarshal(b, tproto); err != nil {
-		return time.Time{}, err
-	}
-	return timestampFromProto(tproto)
-}
-
-func (o *Buffer) dec_time(p *Properties, base structPointer) error {
-	t, err := o.decTimestamp()
-	if err != nil {
-		return err
-	}
-	setPtrCustomType(base, p.field, &t)
-	return nil
-}
-
-func (o *Buffer) dec_ref_time(p *Properties, base structPointer) error {
-	t, err := o.decTimestamp()
-	if err != nil {
-		return err
-	}
-	setCustomType(base, p.field, &t)
-	return nil
-}
-
-func (o *Buffer) dec_slice_time(p *Properties, base structPointer) error {
-	t, err := o.decTimestamp()
-	if err != nil {
-		return err
-	}
-	newBas := appendStructPointer(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType)))
-	var zero field
-	setPtrCustomType(newBas, zero, &t)
-	return nil
-}
-
-func (o *Buffer) dec_slice_ref_time(p *Properties, base structPointer) error {
-	t, err := o.decTimestamp()
-	if err != nil {
-		return err
-	}
-	newBas := appendStructPointer(base, p.field, reflect.SliceOf(timeType))
-	var zero field
-	setCustomType(newBas, zero, &t)
-	return nil
-}
-
-func size_time(p *Properties, base structPointer) (n int) {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return 0
-	}
-	tim := structPointer_Interface(structp, timeType).(*time.Time)
-	t, err := timestampProto(*tim)
-	if err != nil {
-		return 0
-	}
-	size := Size(t)
-	return size + sizeVarint(uint64(size)) + len(p.tagcode)
-}
-
-func (o *Buffer) enc_time(p *Properties, base structPointer) error {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return ErrNil
-	}
-	tim := structPointer_Interface(structp, timeType).(*time.Time)
-	t, err := timestampProto(*tim)
-	if err != nil {
-		return err
-	}
-	data, err := Marshal(t)
-	if err != nil {
-		return err
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_ref_time(p *Properties, base structPointer) (n int) {
-	tim := structPointer_InterfaceAt(base, p.field, timeType).(*time.Time)
-	t, err := timestampProto(*tim)
-	if err != nil {
-		return 0
-	}
-	size := Size(t)
-	return size + sizeVarint(uint64(size)) + len(p.tagcode)
-}
-
-func (o *Buffer) enc_ref_time(p *Properties, base structPointer) error {
-	tim := structPointer_InterfaceAt(base, p.field, timeType).(*time.Time)
-	t, err := timestampProto(*tim)
-	if err != nil {
-		return err
-	}
-	data, err := Marshal(t)
-	if err != nil {
-		return err
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(data)
-	return nil
-}
-
-func size_slice_time(p *Properties, base structPointer) (n int) {
-	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType))).(*[]*time.Time)
-	tims := *ptims
-	for i := 0; i < len(tims); i++ {
-		if tims[i] == nil {
-			return 0
-		}
-		tproto, err := timestampProto(*tims[i])
-		if err != nil {
-			return 0
-		}
-		size := Size(tproto)
-		n += len(p.tagcode) + size + sizeVarint(uint64(size))
-	}
-	return n
-}
-
-func (o *Buffer) enc_slice_time(p *Properties, base structPointer) error {
-	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType))).(*[]*time.Time)
-	tims := *ptims
-	for i := 0; i < len(tims); i++ {
-		if tims[i] == nil {
-			return errRepeatedHasNil
-		}
-		tproto, err := timestampProto(*tims[i])
-		if err != nil {
-			return err
-		}
-		data, err := Marshal(tproto)
-		if err != nil {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-	}
-	return nil
-}
-
-func size_slice_ref_time(p *Properties, base structPointer) (n int) {
-	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(timeType)).(*[]time.Time)
-	tims := *ptims
-	for i := 0; i < len(tims); i++ {
-		tproto, err := timestampProto(tims[i])
-		if err != nil {
-			return 0
-		}
-		size := Size(tproto)
-		n += len(p.tagcode) + size + sizeVarint(uint64(size))
-	}
-	return n
-}
-
-func (o *Buffer) enc_slice_ref_time(p *Properties, base structPointer) error {
-	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(timeType)).(*[]time.Time)
-	tims := *ptims
-	for i := 0; i < len(tims); i++ {
-		tproto, err := timestampProto(tims[i])
-		if err != nil {
-			return err
-		}
-		data, err := Marshal(tproto)
-		if err != nil {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-	}
-	return nil
-}
diff --git a/vendor/github.com/prometheus/client_golang/LICENSE b/vendor/github.com/google/go-containerregistry/LICENSE
similarity index 99%
rename from vendor/github.com/prometheus/client_golang/LICENSE
rename to vendor/github.com/google/go-containerregistry/LICENSE
index 261eeb9e9f..7a4a3ea242 100644
--- a/vendor/github.com/prometheus/client_golang/LICENSE
+++ b/vendor/github.com/google/go-containerregistry/LICENSE
@@ -1,3 +1,4 @@
+
                                  Apache License
                            Version 2.0, January 2004
                         http://www.apache.org/licenses/
@@ -198,4 +199,4 @@
    distributed under the License is distributed on an "AS IS" BASIS,
    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    See the License for the specific language governing permissions and
-   limitations under the License.
+   limitations under the License.
\ No newline at end of file
diff --git a/vendor/github.com/google/go-containerregistry/authn/anon.go b/vendor/github.com/google/go-containerregistry/authn/anon.go
new file mode 100644
index 0000000000..c9c08ec737
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/anon.go
@@ -0,0 +1,26 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+// anonymous implements Authenticator for anonymous authentication.
+type anonymous struct{}
+
+// Authorization implements Authenticator.
+func (a *anonymous) Authorization() (string, error) {
+	return "", nil
+}
+
+// Anonymous is a singleton Authenticator for providing anonymous auth.
+var Anonymous Authenticator = &anonymous{}
diff --git a/vendor/github.com/google/go-containerregistry/authn/auth.go b/vendor/github.com/google/go-containerregistry/authn/auth.go
new file mode 100644
index 0000000000..c39ee5a9f9
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/auth.go
@@ -0,0 +1,29 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+import (
+	"fmt"
+)
+
+// auth implements Authenticator for an "auth" entry of the docker config.
+type auth struct {
+	token string
+}
+
+// Authorization implements Authenticator.
+func (a *auth) Authorization() (string, error) {
+	return fmt.Sprintf("Basic %s", a.token), nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/authn/authn.go b/vendor/github.com/google/go-containerregistry/authn/authn.go
new file mode 100644
index 0000000000..30e935cbc9
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/authn.go
@@ -0,0 +1,21 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+// Authenticator is used to authenticate Docker transports.
+type Authenticator interface {
+	// Authorization returns the value to use in an http transport's Authorization header.
+	Authorization() (string, error)
+}
diff --git a/vendor/github.com/google/go-containerregistry/authn/basic.go b/vendor/github.com/google/go-containerregistry/authn/basic.go
new file mode 100644
index 0000000000..7cd4984069
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/basic.go
@@ -0,0 +1,33 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+import (
+	"encoding/base64"
+	"fmt"
+)
+
+// Basic implements Authenticator for basic authentication.
+type Basic struct {
+	Username string
+	Password string
+}
+
+// Authorization implements Authenticator.
+func (b *Basic) Authorization() (string, error) {
+	delimited := fmt.Sprintf("%s:%s", b.Username, b.Password)
+	encoded := base64.StdEncoding.EncodeToString([]byte(delimited))
+	return fmt.Sprintf("Basic %s", encoded), nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/authn/bearer.go b/vendor/github.com/google/go-containerregistry/authn/bearer.go
new file mode 100644
index 0000000000..cb1ae5845a
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/bearer.go
@@ -0,0 +1,29 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+import (
+	"fmt"
+)
+
+// Bearer implements Authenticator for bearer authentication.
+type Bearer struct {
+	Token string `json:"token"`
+}
+
+// Authorization implements Authenticator.
+func (b *Bearer) Authorization() (string, error) {
+	return fmt.Sprintf("Bearer %s", b.Token), nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/authn/doc.go b/vendor/github.com/google/go-containerregistry/authn/doc.go
new file mode 100644
index 0000000000..c2a5fc0267
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/doc.go
@@ -0,0 +1,17 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package authn defines different methods of authentication for
+// talking to a container registry.
+package authn
diff --git a/vendor/github.com/google/go-containerregistry/authn/helper.go b/vendor/github.com/google/go-containerregistry/authn/helper.go
new file mode 100644
index 0000000000..5b2467ae83
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/helper.go
@@ -0,0 +1,94 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"os/exec"
+	"strings"
+
+	"github.com/google/go-containerregistry/name"
+)
+
+// magicNotFoundMessage is the string that the CLI special cases to mean
+// that a given registry domain wasn't found.
+const (
+	magicNotFoundMessage = "credentials not found in native keychain"
+)
+
+// runner allows us to swap out how we "Run" os/exec commands.
+type runner interface {
+	Run(*exec.Cmd) error
+}
+
+// defaultRunner implements runner by just calling Run().
+type defaultRunner struct{}
+
+// Run implements runner.
+func (dr *defaultRunner) Run(cmd *exec.Cmd) error {
+	return cmd.Run()
+}
+
+// helper executes the named credential helper against the given domain.
+type helper struct {
+	name   string
+	domain name.Registry
+
+	// We add this layer of indirection to facilitate unit testing.
+	r runner
+}
+
+// helperOutput is the expected JSON output form of a credential helper
+// (or at least these are the fields that we care about).
+type helperOutput struct {
+	Username string
+	Secret   string
+}
+
+// Authorization implements Authenticator.
+func (h *helper) Authorization() (string, error) {
+	helperName := fmt.Sprintf("docker-credential-%s", h.name)
+	// We want to execute:
+	//   echo -n {domain} | docker-credential-{name} get
+	cmd := exec.Command(helperName, "get")
+
+	// Some keychains expect a scheme:
+	// https://github.com/bazelbuild/rules_docker/issues/111
+	cmd.Stdin = strings.NewReader(fmt.Sprintf("https://%v", h.domain))
+
+	var out bytes.Buffer
+	cmd.Stdout = &out
+	if err := h.r.Run(cmd); err != nil {
+		return "", err
+	}
+	output := out.String()
+
+	// If we see this specific message, it means the domain wasn't found
+	// and we should fall back on anonymous auth.
+	if output == magicNotFoundMessage {
+		return Anonymous.Authorization()
+	}
+
+	// Any other output should be parsed as JSON and the Username / Secret
+	// fields used for Basic authentication.
+	ho := helperOutput{}
+	if err := json.Unmarshal([]byte(output), &ho); err != nil {
+		return "", err
+	}
+	b := Basic{Username: ho.Username, Password: ho.Secret}
+	return b.Authorization()
+}
diff --git a/vendor/github.com/google/go-containerregistry/authn/keychain.go b/vendor/github.com/google/go-containerregistry/authn/keychain.go
new file mode 100644
index 0000000000..c7c6a15074
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/authn/keychain.go
@@ -0,0 +1,140 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package authn
+
+import (
+	"encoding/json"
+	"fmt"
+	"io/ioutil"
+	"log"
+	"os"
+	"os/user"
+	"path"
+
+	"github.com/google/go-containerregistry/name"
+)
+
+// Keychain is an interface for resolving an image reference to a credential.
+type Keychain interface {
+	// Resolve looks up the most appropriate credential for the specified registry.
+	Resolve(name.Registry) (Authenticator, error)
+}
+
+// defaultKeychain implements Keychain with the semantics of the standard Docker
+// credential keychain.
+type defaultKeychain struct{}
+
+// configDir returns the directory containing Docker's config.json
+func configDir() (string, error) {
+	if dc := os.Getenv("DOCKER_CONFIG"); dc != "" {
+		return dc, nil
+	}
+	usr, err := user.Current()
+	if err != nil {
+		return "", err
+	}
+	return path.Join(usr.HomeDir, ".docker"), nil
+}
+
+// authEntry is a helper for JSON parsing an "auth" entry of config.json
+// This is not meant for direct consumption.
+type authEntry struct {
+	Auth     string `json:"auth"`
+	Username string `json:"username"`
+	Password string `json:"password"`
+}
+
+// cfg is a helper for JSON parsing Docker's config.json
+// This is not meant for direct consumption.
+type cfg struct {
+	CredHelper map[string]string    `json:"credHelpers,omitempty"`
+	CredStore  string               `json:"credsStore,omitempty"`
+	Auths      map[string]authEntry `json:"auths,omitempty"`
+}
+
+// There are a variety of ways a domain may get qualified within the Docker credential file.
+// We enumerate them here as format strings.
+var (
+	domainForms = []string{
+		// Allow naked domains
+		"%s",
+		// Allow scheme-prefixed.
+		"https://%s",
+		"http://%s",
+		// Allow scheme-prefixes with version in url path.
+		"https://%s/v1/",
+		"http://%s/v1/",
+		"https://%s/v2/",
+		"http://%s/v2/",
+	}
+
+	// Export an instance of the default keychain.
+	DefaultKeychain Keychain = &defaultKeychain{}
+)
+
+// Resolve implements Keychain.
+func (dk *defaultKeychain) Resolve(reg name.Registry) (Authenticator, error) {
+	dir, err := configDir()
+	if err != nil {
+		log.Printf("Unable to determine config dir, falling back on anonymous: %v", err)
+		return Anonymous, nil
+	}
+	file := path.Join(dir, "config.json")
+	content, err := ioutil.ReadFile(file)
+	if err != nil {
+		log.Printf("Unable to read %q, falling back on anonymous: %v", file, err)
+		return Anonymous, nil
+	}
+
+	var cf cfg
+	if err := json.Unmarshal(content, &cf); err != nil {
+		log.Printf("Unable to parse %q, falling back on anonymous: %v", file, err)
+		return Anonymous, nil
+	}
+
+	// Per-registry credential helpers take precedence.
+	if cf.CredHelper != nil {
+		for _, form := range domainForms {
+			if entry, ok := cf.CredHelper[fmt.Sprintf(form, reg.Name())]; ok {
+				return &helper{name: entry, domain: reg, r: &defaultRunner{}}, nil
+			}
+		}
+	}
+
+	// A global credential helper is next in precedence.
+	if cf.CredStore != "" {
+		return &helper{name: cf.CredStore, domain: reg, r: &defaultRunner{}}, nil
+	}
+
+	// Lastly, the 'auths' section directly contains basic auth entries.
+	if cf.Auths != nil {
+		for _, form := range domainForms {
+			if entry, ok := cf.Auths[fmt.Sprintf(form, reg.Name())]; ok {
+				if entry.Auth != "" {
+					return &auth{entry.Auth}, nil
+				} else if entry.Username != "" {
+					return &Basic{Username: entry.Username, Password: entry.Password}, nil
+				} else {
+					// TODO(mattmoor): Support identitytoken
+					// TODO(mattmoor): Support registrytoken
+					return nil, fmt.Errorf("Unsupported entry in \"auths\" section of %q", file)
+				}
+			}
+		}
+	}
+
+	log.Printf("No matching credentials found for %v, falling back on anoynmous", reg)
+	return Anonymous, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/check.go b/vendor/github.com/google/go-containerregistry/name/check.go
new file mode 100644
index 0000000000..01a25d554a
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/check.go
@@ -0,0 +1,52 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import (
+	"strings"
+	"unicode/utf8"
+)
+
+// Strictness defines the level of strictness for name validation.
+type Strictness int
+
+// Enums for CRUD operations.
+const (
+	StrictValidation Strictness = iota
+	WeakValidation
+)
+
+// stripRunesFn returns a function which returns -1 (i.e. a value which
+// signals deletion in strings.Map) for runes in 'runes', and the rune otherwise.
+func stripRunesFn(runes string) func(rune) rune {
+	return func(r rune) rune {
+		if strings.ContainsRune(runes, r) {
+			return -1
+		}
+		return r
+	}
+}
+
+// checkElement checks a given named element matches character and length restrictions.
+// Returns true if the given element adheres to the given restrictions, false otherwise.
+func checkElement(name, element, allowedRunes string, minRunes, maxRunes int) error {
+	numRunes := utf8.RuneCountInString(element)
+	if (numRunes < minRunes) || (maxRunes < numRunes) {
+		return NewErrBadName("%s must be between %d and %d runes in length: %s", name, minRunes, maxRunes, element)
+	} else if len(strings.Map(stripRunesFn(allowedRunes), element)) != 0 {
+		return NewErrBadName("%s can only contain the runes `%s`: %s", name, allowedRunes, element)
+	}
+	return nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/digest.go b/vendor/github.com/google/go-containerregistry/name/digest.go
new file mode 100644
index 0000000000..ea6287a847
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/digest.go
@@ -0,0 +1,91 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package name defines structured types for representing image references.
+package name
+
+import (
+	"strings"
+)
+
+const (
+	// These have the form: sha256:<hex string>
+	// TODO(dekkagaijin): replace with opencontainers/go-digest or docker/distribution's validation.
+	digestChars = "sh:0123456789abcdef"
+	digestDelim = "@"
+)
+
+// Digest stores a digest name in a structured form.
+type Digest struct {
+	Repository
+	digest string
+}
+
+// Ensure Digest implements Reference
+var _ Reference = (*Digest)(nil)
+
+// Context implements Reference.
+func (d Digest) Context() Repository {
+	return d.Repository
+}
+
+// Identifier implements Reference.
+func (d Digest) Identifier() string {
+	return d.DigestStr()
+}
+
+// DigestStr returns the digest component of the Digest.
+func (d Digest) DigestStr() string {
+	return d.digest
+}
+
+// Name returns the name from which the Digest was derived.
+func (d Digest) Name() string {
+	return d.Repository.Name() + digestDelim + d.DigestStr()
+}
+
+func (d Digest) String() string {
+	return d.Name()
+}
+
+func checkDigest(name string) error {
+	return checkElement("digest", name, digestChars, 7+64, 7+64)
+}
+
+// NewDigest returns a new Digest representing the given name, according to the given strictness.
+func NewDigest(name string, strict Strictness) (Digest, error) {
+	// Split on "@"
+	parts := strings.Split(name, digestDelim)
+	if len(parts) != 2 {
+		return Digest{}, NewErrBadName("a digest must contain exactly one '@' separator (e.g. registry/repository@digest) saw: %s", name)
+	}
+	base := parts[0]
+	digest := parts[1]
+
+	// We don't require a digest, but if we get one check it's valid,
+	// even when not being strict.
+	// If we are being strict, we want to validate the digest regardless in case
+	// it's empty.
+	if digest != "" || strict == StrictValidation {
+		if err := checkDigest(digest); err != nil {
+			return Digest{}, err
+		}
+	}
+
+	repo, err := NewRepository(base, strict)
+	if err != nil {
+		return Digest{}, err
+	}
+	return Digest{repo, digest}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/errors.go b/vendor/github.com/google/go-containerregistry/name/errors.go
new file mode 100644
index 0000000000..7847cc5d1e
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/errors.go
@@ -0,0 +1,37 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import "fmt"
+
+// ErrBadName is an error for when a bad docker name is supplied.
+type ErrBadName struct {
+	info string
+}
+
+func (e *ErrBadName) Error() string {
+	return e.info
+}
+
+// NewErrBadName returns a ErrBadName which returns the given formatted string from Error().
+func NewErrBadName(fmtStr string, args ...interface{}) *ErrBadName {
+	return &ErrBadName{fmt.Sprintf(fmtStr, args...)}
+}
+
+// IsErrBadName returns true if the given error is an ErrBadName.
+func IsErrBadName(err error) bool {
+	_, ok := err.(*ErrBadName)
+	return ok
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/ref.go b/vendor/github.com/google/go-containerregistry/name/ref.go
new file mode 100644
index 0000000000..356d79eb69
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/ref.go
@@ -0,0 +1,49 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import (
+	"errors"
+	"fmt"
+)
+
+// Reference defines the interface that consumers use when they can
+// take either a tag or a digest.
+type Reference interface {
+	fmt.Stringer
+
+	// Context accesses the Repository context of the reference.
+	Context() Repository
+
+	// Identifier accesses the type-specific portion of the reference.
+	Identifier() string
+
+	// Name is the fully-qualified reference name.
+	Name() string
+
+	// Scope is the scope needed to access this reference.
+	Scope(string) string
+}
+
+// ParseReference parses the string as a reference, either by tag or digest.
+func ParseReference(s string, strict Strictness) (Reference, error) {
+	if t, err := NewTag(s, strict); err == nil {
+		return t, nil
+	}
+	if d, err := NewDigest(s, strict); err == nil {
+		return d, nil
+	}
+	return nil, errors.New("could not parse reference")
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/registry.go b/vendor/github.com/google/go-containerregistry/name/registry.go
new file mode 100644
index 0000000000..6d06cc5fed
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/registry.go
@@ -0,0 +1,79 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import "net/url"
+
+const (
+	DefaultRegistry      = "index.docker.io"
+	defaultRegistryAlias = "docker.io"
+)
+
+// Registry stores a docker registry name in a structured form.
+type Registry struct {
+	registry string
+}
+
+// RegistryStr returns the registry component of the Registry.
+func (r Registry) RegistryStr() string {
+	if r.registry != "" {
+		return r.registry
+	}
+	return DefaultRegistry
+}
+
+// Name returns the name from which the Registry was derived.
+func (r Registry) Name() string {
+	return r.RegistryStr()
+}
+
+func (r Registry) String() string {
+	return r.Name()
+}
+
+// Scope returns the scope required to access the registry.
+func (r Registry) Scope(string) string {
+	// The only resource under 'registry' is 'catalog'. http://goo.gl/N9cN9Z
+	return "registry:catalog:*"
+}
+
+func checkRegistry(name string) error {
+	// Per RFC 3986, registries (authorities) are required to be prefixed with "//"
+	// url.Host == hostname[:port] == authority
+	if url, err := url.Parse("//" + name); err != nil || url.Host != name {
+		return NewErrBadName("registries must be valid RFC 3986 URI authorities: %s", name)
+	}
+	return nil
+}
+
+// NewRegistry returns a Registry based on the given name.
+// Strict validation requires explicit, valid RFC 3986 URI authorities to be given.
+func NewRegistry(name string, strict Strictness) (Registry, error) {
+	if strict == StrictValidation && len(name) == 0 {
+		return Registry{}, NewErrBadName("strict validation requires the registry to be explicitly defined")
+	}
+
+	if err := checkRegistry(name); err != nil {
+		return Registry{}, err
+	}
+
+	// Rewrite "docker.io" to "index.docker.io".
+	// See: https://github.com/google/go-containerregistry/issues/68
+	if name == defaultRegistryAlias {
+		name = DefaultRegistry
+	}
+
+	return Registry{registry: name}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/repository.go b/vendor/github.com/google/go-containerregistry/name/repository.go
new file mode 100644
index 0000000000..7c296e394a
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/repository.go
@@ -0,0 +1,99 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import (
+	"fmt"
+	"strings"
+)
+
+const (
+	defaultNamespace = "library"
+	repositoryChars  = "abcdefghijklmnopqrstuvwxyz0123456789_-./"
+	regRepoDelimiter = "/"
+)
+
+// Repository stores a docker repository name in a structured form.
+type Repository struct {
+	Registry
+	repository string
+}
+
+// See https://docs.docker.com/docker-hub/official_repos
+func hasImplicitNamespace(repo string, reg Registry) bool {
+	return !strings.ContainsRune(repo, '/') && reg.RegistryStr() == DefaultRegistry
+}
+
+// RepositoryStr returns the repository component of the Repository.
+func (r Repository) RepositoryStr() string {
+	if hasImplicitNamespace(r.repository, r.Registry) {
+		return fmt.Sprintf("%s/%s", defaultNamespace, r.repository)
+	}
+	return r.repository
+}
+
+// Name returns the name from which the Repository was derived.
+func (r Repository) Name() string {
+	regName := r.Registry.Name()
+	if regName != "" {
+		return regName + regRepoDelimiter + r.RepositoryStr()
+	}
+	return r.RepositoryStr()
+}
+
+func (r Repository) String() string {
+	return r.Name()
+}
+
+// Scope returns the scope required to perform the given action on the registry.
+// TODO(jonjohnsonjr): consider moving scopes to a separate package.
+func (r Repository) Scope(action string) string {
+	return fmt.Sprintf("repository:%s:%s", r.RepositoryStr(), action)
+}
+
+func checkRepository(repository string) error {
+	return checkElement("repository", repository, repositoryChars, 2, 255)
+}
+
+// NewRepository returns a new Repository representing the given name, according to the given strictness.
+func NewRepository(name string, strict Strictness) (Repository, error) {
+	if len(name) == 0 {
+		return Repository{}, NewErrBadName("a repository name must be specified")
+	}
+
+	var registry string
+	repo := name
+	parts := strings.SplitN(name, regRepoDelimiter, 2)
+	if len(parts) == 2 && (strings.ContainsRune(parts[0], '.') || strings.ContainsRune(parts[0], ':')) {
+		// The first part of the repository is treated as the registry domain
+		// iff it contains a '.' or ':' character, otherwise it is all repository
+		// and the domain defaults to DockerHub.
+		registry = parts[0]
+		repo = parts[1]
+	}
+
+	if err := checkRepository(repo); err != nil {
+		return Repository{}, err
+	}
+
+	reg, err := NewRegistry(registry, strict)
+	if err != nil {
+		return Repository{}, err
+	}
+	if hasImplicitNamespace(repo, reg) && strict == StrictValidation {
+		return Repository{}, NewErrBadName("strict validation requires the full repository path (missing 'library')")
+	}
+	return Repository{reg, repo}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/tag.go b/vendor/github.com/google/go-containerregistry/name/tag.go
new file mode 100644
index 0000000000..cb0e70b177
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/name/tag.go
@@ -0,0 +1,99 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package name
+
+import (
+	"strings"
+)
+
+const (
+	defaultTag = "latest"
+	// TODO(dekkagaijin): use the docker/distribution regexes for validation.
+	tagChars = "abcdefghijklmnopqrstuvwxyz0123456789_-.ABCDEFGHIJKLMNOPQRSTUVWXYZ"
+	tagDelim = ":"
+)
+
+// Tag stores a docker tag name in a structured form.
+type Tag struct {
+	Repository
+	tag string
+}
+
+// Ensure Tag implements Reference
+var _ Reference = (*Tag)(nil)
+
+// Context implements Reference.
+func (t Tag) Context() Repository {
+	return t.Repository
+}
+
+// Identifier implements Reference.
+func (t Tag) Identifier() string {
+	return t.TagStr()
+}
+
+// TagStr returns the tag component of the Tag.
+func (t Tag) TagStr() string {
+	if t.tag != "" {
+		return t.tag
+	}
+	return defaultTag
+}
+
+// Name returns the name from which the Tag was derived.
+func (t Tag) Name() string {
+	return t.Repository.Name() + tagDelim + t.TagStr()
+}
+
+func (t Tag) String() string {
+	return t.Name()
+}
+
+// Scope returns the scope required to perform the given action on the tag.
+func (t Tag) Scope(action string) string {
+	return t.Repository.Scope(action)
+}
+
+func checkTag(name string) error {
+	return checkElement("tag", name, tagChars, 1, 127)
+}
+
+// NewTag returns a new Tag representing the given name, according to the given strictness.
+func NewTag(name string, strict Strictness) (Tag, error) {
+	base := name
+	tag := ""
+
+	// Split on ":"
+	if parts := strings.Split(name, tagDelim); len(parts) >= 2 {
+		base = strings.Join(parts[:len(parts)-1], tagDelim)
+		tag = parts[len(parts)-1]
+	}
+
+	// We don't require a tag, but if we get one check it's valid,
+	// even when not being strict.
+	// If we are being strict, we want to validate the tag regardless in case
+	// it's empty.
+	if tag != "" || strict == StrictValidation {
+		if err := checkTag(tag); err != nil {
+			return Tag{}, err
+		}
+	}
+
+	repo, err := NewRepository(base, strict)
+	if err != nil {
+		return Tag{}, err
+	}
+	return Tag{repo, tag}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/config.go b/vendor/github.com/google/go-containerregistry/v1/config.go
new file mode 100644
index 0000000000..17fa0d20bf
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/config.go
@@ -0,0 +1,108 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1
+
+import (
+	"encoding/json"
+	"io"
+	"time"
+)
+
+// ConfigFile is the configuration file that holds the metadata describing
+// how to launch a container.  The names of the fields are chosen to reflect
+// the JSON payload of the ConfigFile as defined here: https://git.io/vrAEY
+type ConfigFile struct {
+	Architecture    string    `json:"architecture"`
+	Container       string    `json:"container"`
+	Created         Time      `json:"created"`
+	DockerVersion   string    `json:"docker_version"`
+	History         []History `json:"history"`
+	OS              string    `json:"os"`
+	RootFS          RootFS    `json:"rootfs"`
+	Config          Config    `json:"config"`
+	ContainerConfig Config    `json:"container_config"`
+	OSVersion       string    `json:"osversion"`
+}
+
+// History is one entry of a list recording how this container image was built.
+type History struct {
+	Author     string `json:"author"`
+	Created    Time   `json:"created"`
+	CreatedBy  string `json:"created_by"`
+	Comment    string `json:"comment"`
+	EmptyLayer bool   `json:"empty_layer,omitempty"`
+}
+
+// Time is a wrapper around time.Time to help with deep copying
+type Time struct {
+	time.Time
+}
+
+// DeepCopyInto creates a deep-copy of the Time value.  The underlying time.Time
+// type is effectively immutable in the time API, so it is safe to
+// copy-by-assign, despite the presence of (unexported) Pointer fields.
+func (t *Time) DeepCopyInto(out *Time) {
+	*out = *t
+}
+
+// RootFS holds the ordered list of file system deltas that comprise the
+// container image's root filesystem.
+type RootFS struct {
+	Type    string `json:"type"`
+	DiffIDs []Hash `json:"diff_ids"`
+}
+
+// Config is a submessage of the config file described as:
+//   The execution parameters which SHOULD be used as a base when running
+//   a container using the image.
+// The names of the fields in this message are chosen to reflect the JSON
+// payload of the Config as defined here:
+// https://git.io/vrAET
+// and
+// https://github.com/opencontainers/image-spec/blob/master/config.md
+type Config struct {
+	AttachStderr    bool
+	AttachStdin     bool
+	AttachStdout    bool
+	Cmd             []string
+	Domainname      string
+	Entrypoint      []string
+	Env             []string
+	Hostname        string
+	Image           string
+	Labels          map[string]string
+	OnBuild         []string
+	OpenStdin       bool
+	StdinOnce       bool
+	Tty             bool
+	User            string
+	Volumes         map[string]struct{}
+	WorkingDir      string
+	ExposedPorts    map[string]struct{}
+	ArgsEscaped     bool
+	NetworkDisabled bool
+	MacAddress      string
+	StopSignal      string
+	Shell           []string
+}
+
+// ParseConfigFile parses the io.Reader's contents into a ConfigFile.
+func ParseConfigFile(r io.Reader) (*ConfigFile, error) {
+	cf := ConfigFile{}
+	if err := json.NewDecoder(r).Decode(&cf); err != nil {
+		return nil, err
+	}
+	return &cf, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/doc.go b/vendor/github.com/google/go-containerregistry/v1/doc.go
new file mode 100644
index 0000000000..c9b203173e
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/doc.go
@@ -0,0 +1,19 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package v1 defines structured types for OCI v1 images
+// +k8s:deepcopy-gen=package
+
+//go:generate deepcopy-gen -O zz_deepcopy_generated --go-header-file $BOILER_PLATE_FILE -i .
+package v1
diff --git a/vendor/github.com/prometheus/common/model/model.go b/vendor/github.com/google/go-containerregistry/v1/empty/doc.go
similarity index 70%
rename from vendor/github.com/prometheus/common/model/model.go
rename to vendor/github.com/google/go-containerregistry/v1/empty/doc.go
index a7b9691707..1a521e9a74 100644
--- a/vendor/github.com/prometheus/common/model/model.go
+++ b/vendor/github.com/google/go-containerregistry/v1/empty/doc.go
@@ -1,9 +1,10 @@
-// Copyright 2013 The Prometheus Authors
+// Copyright 2018 Google LLC All Rights Reserved.
+//
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
-// http://www.apache.org/licenses/LICENSE-2.0
+//    http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
@@ -11,6 +12,5 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-// Package model contains common data structures that are shared across
-// Prometheus components and libraries.
-package model
+// Package empty provides an implementation of v1.Image equivalent to "FROM scratch".
+package empty
diff --git a/vendor/github.com/google/go-containerregistry/v1/empty/image.go b/vendor/github.com/google/go-containerregistry/v1/empty/image.go
new file mode 100644
index 0000000000..78527b8480
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/empty/image.go
@@ -0,0 +1,22 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package empty
+
+import (
+	"github.com/google/go-containerregistry/v1/random"
+)
+
+// Image is a singleton empty image, think: FROM scratch.
+var Image, _ = random.Image(0, 0)
diff --git a/vendor/github.com/google/go-containerregistry/v1/hash.go b/vendor/github.com/google/go-containerregistry/v1/hash.go
new file mode 100644
index 0000000000..f0db0d51cf
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/hash.go
@@ -0,0 +1,111 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1
+
+import (
+	"crypto/sha256"
+	"encoding/hex"
+	"encoding/json"
+	"fmt"
+	"hash"
+	"io"
+	"strconv"
+	"strings"
+)
+
+// Hash is an unqualified digest of some content, e.g. sha256:deadbeef
+type Hash struct {
+	// Algorithm holds the algorithm used to compute the hash.
+	Algorithm string
+
+	// Hex holds the hex portion of the content hash.
+	Hex string
+}
+
+// String reverses NewHash returning the string-form of the hash.
+func (h Hash) String() string {
+	return fmt.Sprintf("%s:%s", h.Algorithm, h.Hex)
+}
+
+// NewHash validates the input string is a hash and returns a strongly type Hash object.
+func NewHash(s string) (Hash, error) {
+	h := Hash{}
+	if err := h.parse(s); err != nil {
+		return Hash{}, err
+	}
+	return h, nil
+}
+
+// MarshalJSON implements json.Marshaler
+func (h *Hash) MarshalJSON() ([]byte, error) {
+	return json.Marshal(h.String())
+}
+
+// UnmarshalJSON implements json.Unmarshaler
+func (h *Hash) UnmarshalJSON(data []byte) error {
+	s, err := strconv.Unquote(string(data))
+	if err != nil {
+		return err
+	}
+	return h.parse(s)
+}
+
+// Hasher returns a hash.Hash for the named algorithm (e.g. "sha256")
+func Hasher(name string) (hash.Hash, error) {
+	switch name {
+	case "sha256":
+		return sha256.New(), nil
+	default:
+		return nil, fmt.Errorf("unsupported hash: %q", name)
+	}
+}
+
+func (h *Hash) parse(unquoted string) error {
+	parts := strings.Split(unquoted, ":")
+	if len(parts) != 2 {
+		return fmt.Errorf("too many parts in hash: %s", unquoted)
+	}
+
+	rest := strings.TrimLeft(parts[1], "0123456789abcdef")
+	if len(rest) != 0 {
+		return fmt.Errorf("found non-hex character in hash: %c", rest[0])
+	}
+
+	hasher, err := Hasher(parts[0])
+	if err != nil {
+		return err
+	}
+	// Compare the hex to the expected size (2 hex characters per byte)
+	if len(parts[1]) != hasher.Size()*2 {
+		return fmt.Errorf("wrong number of hex digits for %s: %s", parts[0], parts[1])
+	}
+
+	h.Algorithm = parts[0]
+	h.Hex = parts[1]
+	return nil
+}
+
+// SHA256 computes the Hash of the provided io.Reader's content.
+func SHA256(r io.Reader) (Hash, int64, error) {
+	hasher := sha256.New()
+	n, err := io.Copy(hasher, r)
+	if err != nil {
+		return Hash{}, 0, err
+	}
+	return Hash{
+		Algorithm: "sha256",
+		Hex:       hex.EncodeToString(hasher.Sum(make([]byte, 0, hasher.Size()))),
+	}, n, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/image.go b/vendor/github.com/google/go-containerregistry/v1/image.go
new file mode 100644
index 0000000000..89d1439637
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/image.go
@@ -0,0 +1,58 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1
+
+import (
+	"github.com/google/go-containerregistry/v1/types"
+)
+
+// Image defines the interface for interacting with an OCI v1 image.
+type Image interface {
+	// Layers returns the ordered collection of filesystem layers that comprise this image.
+	// The order of the list is oldest/base layer first, and most-recent/top layer last.
+	Layers() ([]Layer, error)
+
+	// BlobSet returns an unordered collection of all the blobs in the image.
+	BlobSet() (map[Hash]struct{}, error)
+
+	// MediaType of this image's manifest.
+	MediaType() (types.MediaType, error)
+
+	// ConfigName returns the hash of the image's config file.
+	ConfigName() (Hash, error)
+
+	// ConfigFile returns this image's config file.
+	ConfigFile() (*ConfigFile, error)
+
+	// RawConfigFile returns the serialized bytes of ConfigFile()
+	RawConfigFile() ([]byte, error)
+
+	// Digest returns the sha256 of this image's manifest.
+	Digest() (Hash, error)
+
+	// Manifest returns this image's Manifest object.
+	Manifest() (*Manifest, error)
+
+	// RawManifest returns the serialized bytes of Manifest()
+	RawManifest() ([]byte, error)
+
+	// LayerByDigest returns a Layer for interacting with a particular layer of
+	// the image, looking it up by "digest" (the compressed hash).
+	LayerByDigest(Hash) (Layer, error)
+
+	// LayerByDiffID is an analog to LayerByDigest, looking up by "diff id"
+	// (the uncompressed hash).
+	LayerByDiffID(Hash) (Layer, error)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/layer.go b/vendor/github.com/google/go-containerregistry/v1/layer.go
new file mode 100644
index 0000000000..8b5091e45b
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/layer.go
@@ -0,0 +1,37 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1
+
+import (
+	"io"
+)
+
+// Layer is an interface for accessing the properties of a particular layer of a v1.Image
+type Layer interface {
+	// Digest returns the Hash of the compressed layer.
+	Digest() (Hash, error)
+
+	// DiffID returns the Hash of the uncompressed layer.
+	DiffID() (Hash, error)
+
+	// Compressed returns an io.ReadCloser for the compressed layer contents.
+	Compressed() (io.ReadCloser, error)
+
+	// Uncompressed returns an io.ReadCloser for the uncompressed layer contents.
+	Uncompressed() (io.ReadCloser, error)
+
+	// Size returns the compressed size of the Layer.
+	Size() (int64, error)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/manifest.go b/vendor/github.com/google/go-containerregistry/v1/manifest.go
new file mode 100644
index 0000000000..79c9b05291
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/manifest.go
@@ -0,0 +1,49 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1
+
+import (
+	"encoding/json"
+	"io"
+
+	"github.com/google/go-containerregistry/v1/types"
+)
+
+// Manifest represents the OCI image manifest in a structured way.
+type Manifest struct {
+	SchemaVersion int64             `json:"schemaVersion"`
+	MediaType     types.MediaType   `json:"mediaType"`
+	Config        Descriptor        `json:"config"`
+	Layers        []Descriptor      `json:"layers"`
+	Annotations   map[string]string `json:"annotations,omitempty"`
+}
+
+// Descriptor holds a reference from the manifest to one of its constituent elements.
+type Descriptor struct {
+	MediaType   types.MediaType   `json:"mediaType"`
+	Size        int64             `json:"size"`
+	Digest      Hash              `json:"digest"`
+	URLs        []string          `json:"urls,omitempty"`
+	Annotations map[string]string `json:"annotations,omitempty"`
+}
+
+// ParseManifest parses the io.Reader's contents into a Manifest.
+func ParseManifest(r io.Reader) (*Manifest, error) {
+	m := Manifest{}
+	if err := json.NewDecoder(r).Decode(&m); err != nil {
+		return nil, err
+	}
+	return &m, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
new file mode 100644
index 0000000000..bd8d4258a9
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
@@ -0,0 +1,233 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package mutate
+
+import (
+	"encoding/json"
+	"errors"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/partial"
+	"github.com/google/go-containerregistry/v1/types"
+)
+
+// Addendum contains layers and history to be appended
+// to a base image
+type Addendum struct {
+	Layer   v1.Layer
+	History v1.History
+}
+
+// AppendLayers applies layers to a base image
+func AppendLayers(base v1.Image, layers ...v1.Layer) (v1.Image, error) {
+	additions := make([]Addendum, 0, len(layers))
+	for _, layer := range layers {
+		additions = append(additions, Addendum{Layer: layer})
+	}
+
+	return Append(base, additions...)
+}
+
+// Append will apply the list of addendums to the base image
+func Append(base v1.Image, adds ...Addendum) (v1.Image, error) {
+	if len(adds) == 0 {
+		return base, nil
+	}
+
+	if err := validate(adds); err != nil {
+		return nil, err
+	}
+
+	m, err := base.Manifest()
+	if err != nil {
+		return nil, err
+	}
+
+	cf, err := base.ConfigFile()
+	if err != nil {
+		return nil, err
+	}
+
+	image := &image{
+		Image:      base,
+		manifest:   m.DeepCopy(),
+		configFile: cf.DeepCopy(),
+		diffIDMap:  make(map[v1.Hash]v1.Layer),
+		digestMap:  make(map[v1.Hash]v1.Layer),
+	}
+
+	diffIDs := image.configFile.RootFS.DiffIDs
+	history := image.configFile.History
+
+	for _, add := range adds {
+		diffID, err := add.Layer.DiffID()
+		if err != nil {
+			return nil, err
+		}
+		diffIDs = append(diffIDs, diffID)
+		history = append(history, add.History)
+		image.diffIDMap[diffID] = add.Layer
+	}
+
+	manifestLayers := image.manifest.Layers
+
+	for _, add := range adds {
+		d := v1.Descriptor{
+			MediaType: types.DockerLayer,
+		}
+
+		if d.Size, err = add.Layer.Size(); err != nil {
+			return nil, err
+		}
+
+		if d.Digest, err = add.Layer.Digest(); err != nil {
+			return nil, err
+		}
+
+		manifestLayers = append(manifestLayers, d)
+		image.digestMap[d.Digest] = add.Layer
+	}
+
+	image.configFile.RootFS.DiffIDs = diffIDs
+	image.configFile.History = history
+	image.manifest.Layers = manifestLayers
+	image.manifest.Config.Digest, err = image.ConfigName()
+	if err != nil {
+		return nil, err
+	}
+
+	return image, nil
+}
+
+// Config mutates the provided v1.Image to have the provided v1.Config
+func Config(base v1.Image, cfg v1.Config) (v1.Image, error) {
+	m, err := base.Manifest()
+	if err != nil {
+		return nil, err
+	}
+
+	cf, err := base.ConfigFile()
+	if err != nil {
+		return nil, err
+	}
+
+	cf.Config = cfg
+
+	image := &image{
+		Image:      base,
+		manifest:   m.DeepCopy(),
+		configFile: cf.DeepCopy(),
+		diffIDMap:  make(map[v1.Hash]v1.Layer),
+		digestMap:  make(map[v1.Hash]v1.Layer),
+	}
+	image.manifest.Config.Digest, err = image.ConfigName()
+	if err != nil {
+		return nil, err
+	}
+	return image, nil
+}
+
+type image struct {
+	v1.Image
+	configFile *v1.ConfigFile
+	manifest   *v1.Manifest
+	diffIDMap  map[v1.Hash]v1.Layer
+	digestMap  map[v1.Hash]v1.Layer
+}
+
+// Layers returns the ordered collection of filesystem layers that comprise this image.
+// The order of the list is most-recent first, and oldest base layer last.
+func (i *image) Layers() ([]v1.Layer, error) {
+	diffIDs, err := partial.DiffIDs(i)
+	if err != nil {
+		return nil, err
+	}
+	ls := make([]v1.Layer, 0, len(diffIDs))
+	for _, h := range diffIDs {
+		l, err := i.LayerByDiffID(h)
+		if err != nil {
+			return nil, err
+		}
+		ls = append(ls, l)
+	}
+	return ls, nil
+}
+
+// BlobSet returns an unordered collection of all the blobs in the image.
+func (i *image) BlobSet() (map[v1.Hash]struct{}, error) {
+	return partial.BlobSet(i)
+}
+
+// ConfigName returns the hash of the image's config file.
+func (i *image) ConfigName() (v1.Hash, error) {
+	return partial.ConfigName(i)
+}
+
+// ConfigFile returns this image's config file.
+func (i *image) ConfigFile() (*v1.ConfigFile, error) {
+	return i.configFile, nil
+}
+
+// RawConfigFile returns the serialized bytes of ConfigFile()
+func (i *image) RawConfigFile() ([]byte, error) {
+	return json.Marshal(i.configFile)
+}
+
+// Digest returns the sha256 of this image's manifest.
+func (i *image) Digest() (v1.Hash, error) {
+	return partial.Digest(i)
+}
+
+// Manifest returns this image's Manifest object.
+func (i *image) Manifest() (*v1.Manifest, error) {
+	return i.manifest, nil
+}
+
+// RawManifest returns the serialized bytes of Manifest()
+func (i *image) RawManifest() ([]byte, error) {
+	return json.Marshal(i.manifest)
+}
+
+// LayerByDigest returns a Layer for interacting with a particular layer of
+// the image, looking it up by "digest" (the compressed hash).
+func (i *image) LayerByDigest(h v1.Hash) (v1.Layer, error) {
+	if cn, err := i.ConfigName(); err != nil {
+		return nil, err
+	} else if h == cn {
+		return partial.ConfigLayer(i)
+	}
+	if layer, ok := i.digestMap[h]; ok {
+		return layer, nil
+	}
+	return i.Image.LayerByDigest(h)
+}
+
+// LayerByDiffID is an analog to LayerByDigest, looking up by "diff id"
+// (the uncompressed hash).
+func (i *image) LayerByDiffID(h v1.Hash) (v1.Layer, error) {
+	if layer, ok := i.diffIDMap[h]; ok {
+		return layer, nil
+	}
+	return i.Image.LayerByDiffID(h)
+}
+
+func validate(adds []Addendum) error {
+	for _, add := range adds {
+		if add.Layer == nil {
+			return errors.New("Unable to add a nil layer to the image")
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/compressed.go b/vendor/github.com/google/go-containerregistry/v1/partial/compressed.go
new file mode 100644
index 0000000000..1c810ff043
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/compressed.go
@@ -0,0 +1,154 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package partial
+
+import (
+	"io"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+// CompressedLayer represents the bare minimum interface a natively
+// compressed layer must implement for us to produce a v1.Layer
+type CompressedLayer interface {
+	// Digest returns the Hash of the compressed layer.
+	Digest() (v1.Hash, error)
+
+	// Compressed returns an io.ReadCloser for the compressed layer contents.
+	Compressed() (io.ReadCloser, error)
+
+	// Size returns the compressed size of the Layer.
+	Size() (int64, error)
+}
+
+// compressedLayerExtender implements v1.Image using the compressed base properties.
+type compressedLayerExtender struct {
+	CompressedLayer
+}
+
+// Uncompressed implements v1.Layer
+func (ule *compressedLayerExtender) Uncompressed() (io.ReadCloser, error) {
+	u, err := ule.Compressed()
+	if err != nil {
+		return nil, err
+	}
+	return v1util.GunzipReadCloser(u)
+}
+
+// DiffID implements v1.Layer
+func (ule *compressedLayerExtender) DiffID() (v1.Hash, error) {
+	r, err := ule.Uncompressed()
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	defer r.Close()
+	h, _, err := v1.SHA256(r)
+	return h, err
+}
+
+// CompressedToLayer fills in the missing methods from a CompressedLayer so that it implements v1.Layer
+func CompressedToLayer(ul CompressedLayer) (v1.Layer, error) {
+	return &compressedLayerExtender{ul}, nil
+}
+
+// CompressedImageCore represents the base minimum interface a natively
+// compressed image must implement for us to produce a v1.Image.
+type CompressedImageCore interface {
+	imageCore
+
+	// RawManifest returns the serialized bytes of the manifest.
+	RawManifest() ([]byte, error)
+
+	// LayerByDigest is a variation on the v1.Image method, which returns
+	// a CompressedLayer instead.
+	LayerByDigest(v1.Hash) (CompressedLayer, error)
+}
+
+// compressedImageExtender implements v1.Image by extending CompressedImageCore with the
+// appropriate methods computed from the minimal core.
+type compressedImageExtender struct {
+	CompressedImageCore
+}
+
+// Assert that our extender type completes the v1.Image interface
+var _ v1.Image = (*compressedImageExtender)(nil)
+
+// BlobSet implements v1.Image
+func (i *compressedImageExtender) BlobSet() (map[v1.Hash]struct{}, error) {
+	return BlobSet(i)
+}
+
+// Digest implements v1.Image
+func (i *compressedImageExtender) Digest() (v1.Hash, error) {
+	return Digest(i)
+}
+
+// ConfigName implements v1.Image
+func (i *compressedImageExtender) ConfigName() (v1.Hash, error) {
+	return ConfigName(i)
+}
+
+// Layers implements v1.Image
+func (i *compressedImageExtender) Layers() ([]v1.Layer, error) {
+	hs, err := FSLayers(i)
+	if err != nil {
+		return nil, err
+	}
+	ls := make([]v1.Layer, 0, len(hs))
+	for _, h := range hs {
+		l, err := i.LayerByDigest(h)
+		if err != nil {
+			return nil, err
+		}
+		ls = append(ls, l)
+	}
+	return ls, nil
+}
+
+// LayerByDigest implements v1.Image
+func (i *compressedImageExtender) LayerByDigest(h v1.Hash) (v1.Layer, error) {
+	cl, err := i.CompressedImageCore.LayerByDigest(h)
+	if err != nil {
+		return nil, err
+	}
+	return CompressedToLayer(cl)
+}
+
+// LayerByDiffID implements v1.Image
+func (i *compressedImageExtender) LayerByDiffID(h v1.Hash) (v1.Layer, error) {
+	h, err := DiffIDToBlob(i, h)
+	if err != nil {
+		return nil, err
+	}
+	return i.LayerByDigest(h)
+}
+
+// ConfigFile implements v1.Image
+func (i *compressedImageExtender) ConfigFile() (*v1.ConfigFile, error) {
+	return ConfigFile(i)
+}
+
+// Manifest implements v1.Image
+func (i *compressedImageExtender) Manifest() (*v1.Manifest, error) {
+	return Manifest(i)
+}
+
+// CompressedToImage fills in the missing methods from a CompressedImageCore so that it implements v1.Image
+func CompressedToImage(cic CompressedImageCore) (v1.Image, error) {
+	return &compressedImageExtender{
+		CompressedImageCore: cic,
+	}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/doc.go b/vendor/github.com/google/go-containerregistry/v1/partial/doc.go
new file mode 100644
index 0000000000..153dfe4d53
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/doc.go
@@ -0,0 +1,17 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package partial defines methods for building up a v1.Image from
+// minimal subsets that are sufficient for defining a v1.Image.
+package partial
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/image.go b/vendor/github.com/google/go-containerregistry/v1/partial/image.go
new file mode 100644
index 0000000000..b82ea36b69
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/image.go
@@ -0,0 +1,28 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package partial
+
+import (
+	"github.com/google/go-containerregistry/v1/types"
+)
+
+// imageCore is the core set of properties without which we cannot build a v1.Image
+type imageCore interface {
+	// RawConfigFile returns the serialized bytes of this image's config file.
+	RawConfigFile() ([]byte, error)
+
+	// MediaType of this image's manifest.
+	MediaType() (types.MediaType, error)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/uncompressed.go b/vendor/github.com/google/go-containerregistry/v1/partial/uncompressed.go
new file mode 100644
index 0000000000..fb8c38bd02
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/uncompressed.go
@@ -0,0 +1,229 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package partial
+
+import (
+	"bytes"
+	"io"
+	"sync"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/types"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+// UncompressedLayer represents the bare minimum interface a natively
+// uncompressed layer must implement for us to produce a v1.Layer
+type UncompressedLayer interface {
+	// DiffID returns the Hash of the uncompressed layer.
+	DiffID() (v1.Hash, error)
+
+	// Uncompressed returns an io.ReadCloser for the uncompressed layer contents.
+	Uncompressed() (io.ReadCloser, error)
+}
+
+// uncompressedLayerExtender implements v1.Image using the uncompressed base properties.
+type uncompressedLayerExtender struct {
+	UncompressedLayer
+	// TODO(mattmoor): Memoize size/hash so that the methods aren't twice as
+	// expensive as doing this manually.
+}
+
+// Compressed implements v1.Layer
+func (ule *uncompressedLayerExtender) Compressed() (io.ReadCloser, error) {
+	u, err := ule.Uncompressed()
+	if err != nil {
+		return nil, err
+	}
+	return v1util.GzipReadCloser(u)
+}
+
+// Digest implements v1.Layer
+func (ule *uncompressedLayerExtender) Digest() (v1.Hash, error) {
+	r, err := ule.Compressed()
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	defer r.Close()
+	h, _, err := v1.SHA256(r)
+	return h, err
+}
+
+// Size implements v1.Layer
+func (ule *uncompressedLayerExtender) Size() (int64, error) {
+	r, err := ule.Compressed()
+	if err != nil {
+		return -1, err
+	}
+	defer r.Close()
+	_, i, err := v1.SHA256(r)
+	return i, err
+}
+
+// UncompressedToLayer fills in the missing methods from an UncompressedLayer so that it implements v1.Layer
+func UncompressedToLayer(ul UncompressedLayer) (v1.Layer, error) {
+	return &uncompressedLayerExtender{ul}, nil
+}
+
+// UncompressedImageCore represents the bare minimum interface a natively
+// uncompressed image must implement for us to produce a v1.Image
+type UncompressedImageCore interface {
+	imageCore
+
+	// LayerByDiffID is a variation on the v1.Image method, which returns
+	// an UncompressedLayer instead.
+	LayerByDiffID(v1.Hash) (UncompressedLayer, error)
+}
+
+// UncompressedToImage fills in the missing methods from an UncompressedImageCore so that it implements v1.Image.
+func UncompressedToImage(uic UncompressedImageCore) (v1.Image, error) {
+	return &uncompressedImageExtender{
+		UncompressedImageCore: uic,
+	}, nil
+}
+
+// uncompressedImageExtender implements v1.Image by extending UncompressedImageCore with the
+// appropriate methods computed from the minimal core.
+type uncompressedImageExtender struct {
+	UncompressedImageCore
+
+	lock     sync.Mutex
+	manifest *v1.Manifest
+}
+
+// Assert that our extender type completes the v1.Image interface
+var _ v1.Image = (*uncompressedImageExtender)(nil)
+
+// BlobSet implements v1.Image
+func (i *uncompressedImageExtender) BlobSet() (map[v1.Hash]struct{}, error) {
+	return BlobSet(i)
+}
+
+// Digest implements v1.Image
+func (i *uncompressedImageExtender) Digest() (v1.Hash, error) {
+	return Digest(i)
+}
+
+// Manifest implements v1.Image
+func (i *uncompressedImageExtender) Manifest() (*v1.Manifest, error) {
+	i.lock.Lock()
+	defer i.lock.Unlock()
+	if i.manifest != nil {
+		return i.manifest, nil
+	}
+
+	b, err := i.RawConfigFile()
+	if err != nil {
+		return nil, err
+	}
+
+	cfgHash, cfgSize, err := v1.SHA256(bytes.NewReader(b))
+	if err != nil {
+		return nil, err
+	}
+
+	m := &v1.Manifest{
+		SchemaVersion: 2,
+		MediaType:     types.DockerManifestSchema2,
+		Config: v1.Descriptor{
+			MediaType: types.DockerConfigJSON,
+			Size:      cfgSize,
+			Digest:    cfgHash,
+		},
+	}
+
+	ls, err := i.Layers()
+	if err != nil {
+		return nil, err
+	}
+
+	m.Layers = make([]v1.Descriptor, len(ls))
+	for i, l := range ls {
+		sz, err := l.Size()
+		if err != nil {
+			return nil, err
+		}
+		h, err := l.Digest()
+		if err != nil {
+			return nil, err
+		}
+
+		m.Layers[i] = v1.Descriptor{
+			MediaType: types.DockerLayer,
+			Size:      sz,
+			Digest:    h,
+		}
+	}
+
+	i.manifest = m
+	return i.manifest, nil
+}
+
+// RawManifest implements v1.Image
+func (i *uncompressedImageExtender) RawManifest() ([]byte, error) {
+	return RawManifest(i)
+}
+
+// ConfigName implements v1.Image
+func (i *uncompressedImageExtender) ConfigName() (v1.Hash, error) {
+	return ConfigName(i)
+}
+
+// ConfigFile implements v1.Image
+func (i *uncompressedImageExtender) ConfigFile() (*v1.ConfigFile, error) {
+	return ConfigFile(i)
+}
+
+// Layers implements v1.Image
+func (i *uncompressedImageExtender) Layers() ([]v1.Layer, error) {
+	diffIDs, err := DiffIDs(i)
+	if err != nil {
+		return nil, err
+	}
+	ls := make([]v1.Layer, 0, len(diffIDs))
+	for _, h := range diffIDs {
+		l, err := i.LayerByDiffID(h)
+		if err != nil {
+			return nil, err
+		}
+		ls = append(ls, l)
+	}
+	return ls, nil
+}
+
+// LayerByDiffID implements v1.Image
+func (i *uncompressedImageExtender) LayerByDiffID(diffID v1.Hash) (v1.Layer, error) {
+	ul, err := i.UncompressedImageCore.LayerByDiffID(diffID)
+	if err != nil {
+		return nil, err
+	}
+	return UncompressedToLayer(ul)
+}
+
+// LayerByDigest implements v1.Image
+func (i *uncompressedImageExtender) LayerByDigest(h v1.Hash) (v1.Layer, error) {
+	// Support returning the ConfigFile when asked for its hash.
+	if cfgName, err := i.ConfigName(); err != nil {
+		return nil, err
+	} else if cfgName == h {
+		return ConfigLayer(i)
+	}
+
+	diffID, err := BlobToDiffID(i, h)
+	if err != nil {
+		return nil, err
+	}
+	return i.LayerByDiffID(diffID)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/with.go b/vendor/github.com/google/go-containerregistry/v1/partial/with.go
new file mode 100644
index 0000000000..0557449afd
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/with.go
@@ -0,0 +1,291 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package partial
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"io"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+// WithRawConfigFile defines the subset of v1.Image used by these helper methods
+type WithRawConfigFile interface {
+	// RawConfigFile returns the serialized bytes of this image's config file.
+	RawConfigFile() ([]byte, error)
+}
+
+// ConfigFile is a helper for implementing v1.Image
+func ConfigFile(i WithRawConfigFile) (*v1.ConfigFile, error) {
+	b, err := i.RawConfigFile()
+	if err != nil {
+		return nil, err
+	}
+	return v1.ParseConfigFile(bytes.NewReader(b))
+}
+
+// ConfigName is a helper for implementing v1.Image
+func ConfigName(i WithRawConfigFile) (v1.Hash, error) {
+	b, err := i.RawConfigFile()
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	h, _, err := v1.SHA256(bytes.NewReader(b))
+	return h, err
+}
+
+// configLayer implements v1.Layer from the raw config bytes.
+// This is so that clients (e.g. remote) can access the config as a blob.
+type configLayer struct {
+	hash    v1.Hash
+	content []byte
+}
+
+// Digest implements v1.Layer
+func (cl *configLayer) Digest() (v1.Hash, error) {
+	return cl.hash, nil
+}
+
+// DiffID implements v1.Layer
+func (cl *configLayer) DiffID() (v1.Hash, error) {
+	return cl.hash, nil
+}
+
+// Uncompressed implements v1.Layer
+func (cl *configLayer) Uncompressed() (io.ReadCloser, error) {
+	return v1util.NopReadCloser(bytes.NewBuffer(cl.content)), nil
+}
+
+// Compressed implements v1.Layer
+func (cl *configLayer) Compressed() (io.ReadCloser, error) {
+	return v1util.NopReadCloser(bytes.NewBuffer(cl.content)), nil
+}
+
+// Size implements v1.Layer
+func (cl *configLayer) Size() (int64, error) {
+	return int64(len(cl.content)), nil
+}
+
+var _ v1.Layer = (*configLayer)(nil)
+
+func ConfigLayer(i WithRawConfigFile) (v1.Layer, error) {
+	h, err := ConfigName(i)
+	if err != nil {
+		return nil, err
+	}
+	rcfg, err := i.RawConfigFile()
+	if err != nil {
+		return nil, err
+	}
+	return &configLayer{
+		hash:    h,
+		content: rcfg,
+	}, nil
+}
+
+// WithConfigFile defines the subset of v1.Image used by these helper methods
+type WithConfigFile interface {
+	// ConfigFile returns this image's config file.
+	ConfigFile() (*v1.ConfigFile, error)
+}
+
+// DiffIDs is a helper for implementing v1.Image
+func DiffIDs(i WithConfigFile) ([]v1.Hash, error) {
+	cfg, err := i.ConfigFile()
+	if err != nil {
+		return nil, err
+	}
+	dids := make([]v1.Hash, len(cfg.RootFS.DiffIDs))
+	for i, did := range cfg.RootFS.DiffIDs {
+		dids[len(dids)-i-1] = did
+	}
+	return dids, nil
+}
+
+// RawConfigFile is a helper for implementing v1.Image
+func RawConfigFile(i WithConfigFile) ([]byte, error) {
+	cfg, err := i.ConfigFile()
+	if err != nil {
+		return nil, err
+	}
+	return json.Marshal(cfg)
+}
+
+// WithUncompressedLayer defines the subset of v1.Image used by these helper methods
+type WithUncompressedLayer interface {
+	// UncompressedLayer is like UncompressedBlob, but takes the "diff id".
+	UncompressedLayer(v1.Hash) (io.ReadCloser, error)
+}
+
+// Layer is the same as Blob, but takes the "diff id".
+func Layer(wul WithUncompressedLayer, h v1.Hash) (io.ReadCloser, error) {
+	rc, err := wul.UncompressedLayer(h)
+	if err != nil {
+		return nil, err
+	}
+	return v1util.GzipReadCloser(rc)
+}
+
+// WithRawManifest defines the subset of v1.Image used by these helper methods
+type WithRawManifest interface {
+	// RawManifest returns the serialized bytes of this image's config file.
+	RawManifest() ([]byte, error)
+}
+
+// Digest is a helper for implementing v1.Image
+func Digest(i WithRawManifest) (v1.Hash, error) {
+	mb, err := i.RawManifest()
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	digest, _, err := v1.SHA256(bytes.NewReader(mb))
+	return digest, err
+}
+
+// Manifest is a helper for implementing v1.Image
+func Manifest(i WithRawManifest) (*v1.Manifest, error) {
+	b, err := i.RawManifest()
+	if err != nil {
+		return nil, err
+	}
+	return v1.ParseManifest(bytes.NewReader(b))
+}
+
+// WithManifest defines the subset of v1.Image used by these helper methods
+type WithManifest interface {
+	// Manifest returns this image's Manifest object.
+	Manifest() (*v1.Manifest, error)
+}
+
+// RawManifest is a helper for implementing v1.Image
+func RawManifest(i WithManifest) ([]byte, error) {
+	m, err := i.Manifest()
+	if err != nil {
+		return nil, err
+	}
+	return json.Marshal(m)
+}
+
+// FSLayers is a helper for implementing v1.Image
+func FSLayers(i WithManifest) ([]v1.Hash, error) {
+	m, err := i.Manifest()
+	if err != nil {
+		return nil, err
+	}
+	fsl := make([]v1.Hash, len(m.Layers))
+	for i, l := range m.Layers {
+		fsl[i] = l.Digest
+	}
+	return fsl, nil
+}
+
+// BlobSet is a helper for implementing v1.Image
+func BlobSet(i WithManifest) (map[v1.Hash]struct{}, error) {
+	m, err := i.Manifest()
+	if err != nil {
+		return nil, err
+	}
+	bs := make(map[v1.Hash]struct{})
+	for _, l := range m.Layers {
+		bs[l.Digest] = struct{}{}
+	}
+	bs[m.Config.Digest] = struct{}{}
+	return bs, nil
+}
+
+// BlobSize is a helper for implementing v1.Image
+func BlobSize(i WithManifest, h v1.Hash) (int64, error) {
+	m, err := i.Manifest()
+	if err != nil {
+		return -1, err
+	}
+	for _, l := range m.Layers {
+		if l.Digest == h {
+			return l.Size, nil
+		}
+	}
+	return -1, fmt.Errorf("blob %v not found", h)
+}
+
+// WithManifestAndConfigFile defines the subset of v1.Image used by these helper methods
+type WithManifestAndConfigFile interface {
+	WithConfigFile
+
+	// Manifest returns this image's Manifest object.
+	Manifest() (*v1.Manifest, error)
+}
+
+// BlobToDiffID is a helper for mapping between compressed
+// and uncompressed blob hashes.
+func BlobToDiffID(i WithManifestAndConfigFile, h v1.Hash) (v1.Hash, error) {
+	blobs, err := FSLayers(i)
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	diffIDs, err := DiffIDs(i)
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	if len(blobs) != len(diffIDs) {
+		return v1.Hash{}, fmt.Errorf("mismatched fs layers (%d) and diff ids (%d)", len(blobs), len(diffIDs))
+	}
+	for i, blob := range blobs {
+		if blob == h {
+			return diffIDs[i], nil
+		}
+	}
+	return v1.Hash{}, fmt.Errorf("unknown blob %v", h)
+}
+
+// DiffIDToBlob is a helper for mapping between uncompressed
+// and compressed blob hashes.
+func DiffIDToBlob(wm WithManifestAndConfigFile, h v1.Hash) (v1.Hash, error) {
+	blobs, err := FSLayers(wm)
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	diffIDs, err := DiffIDs(wm)
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	if len(blobs) != len(diffIDs) {
+		return v1.Hash{}, fmt.Errorf("mismatched fs layers (%d) and diff ids (%d)", len(blobs), len(diffIDs))
+	}
+	for i, diffID := range diffIDs {
+		if diffID == h {
+			return blobs[i], nil
+		}
+	}
+	return v1.Hash{}, fmt.Errorf("unknown diffID %v", h)
+
+}
+
+// WithBlob defines the subset of v1.Image used by these helper methods
+type WithBlob interface {
+	// Blob returns a ReadCloser for streaming the blob's content.
+	Blob(v1.Hash) (io.ReadCloser, error)
+}
+
+// UncompressedBlob returns a ReadCloser for streaming the blob's content uncompressed.
+func UncompressedBlob(b WithBlob, h v1.Hash) (io.ReadCloser, error) {
+	rc, err := b.Blob(h)
+	if err != nil {
+		return nil, err
+	}
+	return v1util.GunzipReadCloser(rc)
+}
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go b/vendor/github.com/google/go-containerregistry/v1/random/doc.go
similarity index 72%
rename from vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go
rename to vendor/github.com/google/go-containerregistry/v1/random/doc.go
index c318385cbe..d3712767d2 100644
--- a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go
+++ b/vendor/github.com/google/go-containerregistry/v1/random/doc.go
@@ -1,10 +1,10 @@
-// Copyright 2013 Matt T. Proud
+// Copyright 2018 Google LLC All Rights Reserved.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
-//     http://www.apache.org/licenses/LICENSE-2.0
+//    http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
@@ -12,5 +12,5 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-// Package pbutil provides record length-delimited Protocol Buffer streaming.
-package pbutil
+// Package random provides a facility for synthesizing pseudo-random images.
+package random
diff --git a/vendor/github.com/google/go-containerregistry/v1/random/image.go b/vendor/github.com/google/go-containerregistry/v1/random/image.go
new file mode 100644
index 0000000000..03b3c4384b
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/random/image.go
@@ -0,0 +1,110 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package random
+
+import (
+	"bytes"
+	"crypto/rand"
+	"fmt"
+	"io"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/partial"
+	"github.com/google/go-containerregistry/v1/types"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+// uncompressedLayer implements partial.UncompressedLayer from raw bytes.
+// TODO(mattmoor): Consider moving this into a library.
+type uncompressedLayer struct {
+	diffID  v1.Hash
+	content []byte
+}
+
+// DiffID implements partial.UncompressedLayer
+func (ul *uncompressedLayer) DiffID() (v1.Hash, error) {
+	return ul.diffID, nil
+}
+
+// Uncompressed implements partial.UncompressedLayer
+func (ul *uncompressedLayer) Uncompressed() (io.ReadCloser, error) {
+	return v1util.NopReadCloser(bytes.NewBuffer(ul.content)), nil
+}
+
+var _ partial.UncompressedLayer = (*uncompressedLayer)(nil)
+
+// Image returns a pseudo-randomly generated Image.
+func Image(byteSize, layers int64) (v1.Image, error) {
+	layerz := make(map[v1.Hash]partial.UncompressedLayer)
+	for i := int64(0); i < layers; i++ {
+		b := bytes.NewBuffer(nil)
+		if _, err := io.CopyN(b, rand.Reader, byteSize); err != nil {
+			return nil, err
+		}
+		bts := b.Bytes()
+		h, _, err := v1.SHA256(bytes.NewReader(bts))
+		if err != nil {
+			return nil, err
+		}
+		layerz[h] = &uncompressedLayer{
+			diffID:  h,
+			content: bts,
+		}
+	}
+
+	cfg := &v1.ConfigFile{}
+
+	// It is ok that iteration order is random in Go, because this is the random image anyways.
+	for k := range layerz {
+		cfg.RootFS.DiffIDs = append(cfg.RootFS.DiffIDs, k)
+	}
+
+	return partial.UncompressedToImage(&image{
+		config: cfg,
+		layers: layerz,
+	})
+}
+
+// image is pseudo-randomly generated.
+type image struct {
+	config *v1.ConfigFile
+	layers map[v1.Hash]partial.UncompressedLayer
+}
+
+var _ partial.UncompressedImageCore = (*image)(nil)
+
+// RawConfigFile implements partial.UncompressedImageCore
+func (i *image) RawConfigFile() ([]byte, error) {
+	return partial.RawConfigFile(i)
+}
+
+// ConfigFile implements v1.Image
+func (i *image) ConfigFile() (*v1.ConfigFile, error) {
+	return i.config, nil
+}
+
+// MediaType implements partial.UncompressedImageCore
+func (i *image) MediaType() (types.MediaType, error) {
+	return types.DockerManifestSchema2, nil
+}
+
+// LayerByDiffID implements partial.UncompressedImageCore
+func (i *image) LayerByDiffID(diffID v1.Hash) (partial.UncompressedLayer, error) {
+	l, ok := i.layers[diffID]
+	if !ok {
+		return nil, fmt.Errorf("unknown diff_id: %v", diffID)
+	}
+	return l, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/delete.go b/vendor/github.com/google/go-containerregistry/v1/remote/delete.go
new file mode 100644
index 0000000000..48f2c44a8f
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/delete.go
@@ -0,0 +1,70 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package remote
+
+import (
+	"fmt"
+	"io/ioutil"
+	"net/http"
+	"net/url"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1/remote/transport"
+)
+
+// DeleteOptions are used to expose optional information to guide or
+// control the image deletion.
+type DeleteOptions struct {
+	// TODO(mattmoor): Fail on not found?
+	// TODO(mattmoor): Delete tag and manifest?
+}
+
+// Delete removes the specified image reference from the remote registry.
+func Delete(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, do DeleteOptions) error {
+	tr, err := transport.New(ref, auth, t, transport.DeleteScope)
+	if err != nil {
+		return err
+	}
+	c := &http.Client{Transport: tr}
+
+	u := url.URL{
+		Scheme: transport.Scheme(ref.Context().Registry),
+		Host:   ref.Context().RegistryStr(),
+		Path:   fmt.Sprintf("/v2/%s/manifests/%s", ref.Context().RepositoryStr(), ref.Identifier()),
+	}
+
+	req, err := http.NewRequest(http.MethodDelete, u.String(), nil)
+	if err != nil {
+		return err
+	}
+
+	resp, err := c.Do(req)
+	if err != nil {
+		return err
+	}
+	defer resp.Body.Close()
+
+	switch resp.StatusCode {
+	case http.StatusOK, http.StatusAccepted:
+		return nil
+	default:
+		b, err := ioutil.ReadAll(resp.Body)
+		if err != nil {
+			return err
+		}
+		return fmt.Errorf("unrecognized status code during DELETE: %v; %v", resp.Status, string(b))
+	}
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/doc.go b/vendor/github.com/google/go-containerregistry/v1/remote/doc.go
new file mode 100644
index 0000000000..846ba07cda
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/doc.go
@@ -0,0 +1,17 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package remote provides facilities for reading/writing v1.Images from/to
+// a remote image registry.
+package remote
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/error.go b/vendor/github.com/google/go-containerregistry/v1/remote/error.go
new file mode 100644
index 0000000000..8c4b814e24
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/error.go
@@ -0,0 +1,106 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package remote
+
+import (
+	"encoding/json"
+	"fmt"
+	"io/ioutil"
+	"net/http"
+	"strings"
+)
+
+// Error implements error to support the following error specification:
+// https://github.com/docker/distribution/blob/master/docs/spec/api.md#errors
+type Error struct {
+	Errors []Diagnostic `json:"errors,omitempty"`
+}
+
+// Check that Error implements error
+var _ error = (*Error)(nil)
+
+// Error implements error
+func (e *Error) Error() string {
+	switch len(e.Errors) {
+	case 0:
+		return "<empty remote.Error response>"
+	case 1:
+		return e.Errors[0].String()
+	default:
+		var errors []string
+		for _, d := range e.Errors {
+			errors = append(errors, d.String())
+		}
+		return fmt.Sprintf("multiple errors returned: %s",
+			strings.Join(errors, ";"))
+	}
+}
+
+// Diagnostic represents a single error returned by a Docker registry interaction.
+type Diagnostic struct {
+	Code    ErrorCode   `json:"code"`
+	Message string      `json:"message,omitempty"`
+	Detail  interface{} `json:"detail,omitempty"`
+}
+
+// String stringifies the Diagnostic
+func (d Diagnostic) String() string {
+	return fmt.Sprintf("%s: %q", d.Code, d.Message)
+}
+
+// ErrorCode is an enumeration of supported error codes.
+type ErrorCode string
+
+// The set of error conditions a registry may return:
+// https://github.com/docker/distribution/blob/master/docs/spec/api.md#errors-2
+const (
+	BlobUnknownErrorCode         ErrorCode = "BLOB_UNKNOWN"
+	BlobUploadInvalidErrorCode   ErrorCode = "BLOB_UPLOAD_INVALID"
+	BlobUploadUnknownErrorCode   ErrorCode = "BLOB_UPLOAD_UNKNOWN"
+	DigestInvalidErrorCode       ErrorCode = "DIGEST_INVALID"
+	ManifestBlobUnknownErrorCode ErrorCode = "MANIFEST_BLOB_UNKNOWN"
+	ManifestInvalidErrorCode     ErrorCode = "MANIFEST_INVALID"
+	ManifestUnknownErrorCode     ErrorCode = "MANIFEST_UNKNOWN"
+	ManifestUnverifiedErrorCode  ErrorCode = "MANIFEST_UNVERIFIED"
+	NameInvalidErrorCode         ErrorCode = "NAME_INVALID"
+	NameUnknownErrorCode         ErrorCode = "NAME_UNKNOWN"
+	SizeInvalidErrorCode         ErrorCode = "SIZE_INVALID"
+	TagInvalidErrorCode          ErrorCode = "TAG_INVALID"
+	UnauthorizedErrorCode        ErrorCode = "UNAUTHORIZED"
+	DeniedErrorCode              ErrorCode = "DENIED"
+	UnsupportedErrorCode         ErrorCode = "UNSUPPORTED"
+)
+
+func checkError(resp *http.Response, codes ...int) error {
+	for _, code := range codes {
+		if resp.StatusCode == code {
+			// This is one of the supported status codes.
+			return nil
+		}
+	}
+	b, err := ioutil.ReadAll(resp.Body)
+	if err != nil {
+		return err
+	}
+
+	// https://github.com/docker/distribution/blob/master/docs/spec/api.md#errors
+	var structuredError Error
+	if err := json.Unmarshal(b, &structuredError); err != nil {
+		// If the response isn't an unstructured error, then return some
+		// reasonable error response containing the response body.
+		return fmt.Errorf("unsupported status code %d; body: %s", resp.StatusCode, string(b))
+	}
+	return &structuredError
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/image.go b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
new file mode 100644
index 0000000000..52e9a7e763
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
@@ -0,0 +1,201 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package remote
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"log"
+	"net/http"
+	"net/url"
+	"sync"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/partial"
+	"github.com/google/go-containerregistry/v1/remote/transport"
+	"github.com/google/go-containerregistry/v1/types"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+// remoteImage accesses an image from a remote registry
+type remoteImage struct {
+	ref          name.Reference
+	client       *http.Client
+	manifestLock sync.Mutex // Protects manifest
+	manifest     []byte
+	configLock   sync.Mutex // Protects config
+	config       []byte
+}
+
+var _ partial.CompressedImageCore = (*remoteImage)(nil)
+
+// Image accesses a given image reference over the provided transport, with the provided authentication.
+func Image(ref name.Reference, auth authn.Authenticator, t http.RoundTripper) (v1.Image, error) {
+	tr, err := transport.New(ref, auth, t, transport.PullScope)
+	if err != nil {
+		return nil, err
+	}
+	return partial.CompressedToImage(&remoteImage{
+		ref:    ref,
+		client: &http.Client{Transport: tr},
+	})
+}
+
+func (r *remoteImage) url(resource, identifier string) url.URL {
+	return url.URL{
+		Scheme: transport.Scheme(r.ref.Context().Registry),
+		Host:   r.ref.Context().RegistryStr(),
+		Path:   fmt.Sprintf("/v2/%s/%s/%s", r.ref.Context().RepositoryStr(), resource, identifier),
+	}
+}
+
+func (r *remoteImage) MediaType() (types.MediaType, error) {
+	// TODO(jonjohnsonjr): Determine this based on response.
+	return types.DockerManifestSchema2, nil
+}
+
+// TODO(jonjohnsonjr): Handle manifest lists.
+func (r *remoteImage) RawManifest() ([]byte, error) {
+	r.manifestLock.Lock()
+	defer r.manifestLock.Unlock()
+	if r.manifest != nil {
+		return r.manifest, nil
+	}
+
+	u := r.url("manifests", r.ref.Identifier())
+	req, err := http.NewRequest(http.MethodGet, u.String(), nil)
+	if err != nil {
+		return nil, err
+	}
+	// TODO(jonjohnsonjr): Accept OCI manifest, manifest list, and image index.
+	req.Header.Set("Accept", string(types.DockerManifestSchema2))
+	resp, err := r.client.Do(req)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	if err := checkError(resp, http.StatusOK); err != nil {
+		return nil, err
+	}
+
+	manifest, err := ioutil.ReadAll(resp.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	digest, _, err := v1.SHA256(bytes.NewReader(manifest))
+	if err != nil {
+		return nil, err
+	}
+
+	// Validate the digest matches what we asked for, if pulling by digest.
+	if dgst, ok := r.ref.(name.Digest); ok {
+		if digest.String() != dgst.DigestStr() {
+			return nil, fmt.Errorf("manifest digest: %q does not match requested digest: %q for %q", digest, dgst.DigestStr(), r.ref)
+		}
+	} else if checksum := resp.Header.Get("Docker-Content-Digest"); checksum != "" && checksum != digest.String() {
+		err := fmt.Errorf("manifest digest: %q does not match Docker-Content-Digest: %q for %q", digest, checksum, r.ref)
+		if r.ref.Context().RegistryStr() == name.DefaultRegistry {
+			// TODO(docker/distribution#2395): Remove this check.
+			log.Println(err)
+		} else {
+			// When pulling by tag, we can only validate that the digest matches what the registry told us it should be.
+			return nil, err
+		}
+	}
+
+	r.manifest = manifest
+	return r.manifest, nil
+}
+
+func (r *remoteImage) RawConfigFile() ([]byte, error) {
+	r.configLock.Lock()
+	defer r.configLock.Unlock()
+	if r.config != nil {
+		return r.config, nil
+	}
+
+	m, err := partial.Manifest(r)
+	if err != nil {
+		return nil, err
+	}
+
+	cl, err := r.LayerByDigest(m.Config.Digest)
+	if err != nil {
+		return nil, err
+	}
+	body, err := cl.Compressed()
+	if err != nil {
+		return nil, err
+	}
+	defer body.Close()
+
+	r.config, err = ioutil.ReadAll(body)
+	if err != nil {
+		return nil, err
+	}
+	return r.config, nil
+}
+
+// remoteLayer implements partial.CompressedLayer
+type remoteLayer struct {
+	ri     *remoteImage
+	digest v1.Hash
+}
+
+// Digest implements partial.CompressedLayer
+func (rl *remoteLayer) Digest() (v1.Hash, error) {
+	return rl.digest, nil
+}
+
+// Compressed implements partial.CompressedLayer
+func (rl *remoteLayer) Compressed() (io.ReadCloser, error) {
+	u := rl.ri.url("blobs", rl.digest.String())
+	resp, err := rl.ri.client.Get(u.String())
+	if err != nil {
+		return nil, err
+	}
+
+	if err := checkError(resp, http.StatusOK); err != nil {
+		resp.Body.Close()
+		return nil, err
+	}
+
+	return v1util.VerifyReadCloser(resp.Body, rl.digest)
+}
+
+// Manifest implements partial.WithManifest so that we can use partial.BlobSize below.
+func (rl *remoteLayer) Manifest() (*v1.Manifest, error) {
+	return partial.Manifest(rl.ri)
+}
+
+// Size implements partial.CompressedLayer
+func (rl *remoteLayer) Size() (int64, error) {
+	// Look up the size of this digest in the manifest to avoid a request.
+	return partial.BlobSize(rl, rl.digest)
+}
+
+// LayerByDigest implements partial.CompressedLayer
+func (r *remoteImage) LayerByDigest(h v1.Hash) (partial.CompressedLayer, error) {
+	return &remoteLayer{
+		ri:     r,
+		digest: h,
+	}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/basic.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/basic.go
new file mode 100644
index 0000000000..a9ab46beb3
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/basic.go
@@ -0,0 +1,47 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+import (
+	"net/http"
+
+	"github.com/google/go-containerregistry/authn"
+)
+
+type basicTransport struct {
+	inner  http.RoundTripper
+	auth   authn.Authenticator
+	target string
+}
+
+var _ http.RoundTripper = (*basicTransport)(nil)
+
+// RoundTrip implements http.RoundTripper
+func (bt *basicTransport) RoundTrip(in *http.Request) (*http.Response, error) {
+	hdr, err := bt.auth.Authorization()
+	if err != nil {
+		return nil, err
+	}
+
+	// http.Client handles redirects at a layer above the http.RoundTripper
+	// abstraction, so to avoid forwarding Authorization headers to places
+	// we are redirected, only set it when the authorization header matches
+	// the host with which we are interacting.
+	if in.Host == bt.target {
+		in.Header.Set("Authorization", hdr)
+	}
+	in.Header.Set("User-Agent", transportName)
+	return bt.inner.RoundTrip(in)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
new file mode 100644
index 0000000000..82a96c507f
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
@@ -0,0 +1,119 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+import (
+	"fmt"
+
+	"encoding/json"
+	"io/ioutil"
+	"net/http"
+	"net/url"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+)
+
+type bearerTransport struct {
+	// Wrapped by bearerTransport.
+	inner http.RoundTripper
+	// Basic credentials that we exchange for bearer tokens.
+	basic authn.Authenticator
+	// Holds the bearer response from the token service.
+	bearer *authn.Bearer
+	// Registry to which we send bearer tokens.
+	registry name.Registry
+	// See https://tools.ietf.org/html/rfc6750#section-3
+	realm string
+	// See https://docs.docker.com/registry/spec/auth/token/
+	service string
+	scope   string
+}
+
+var _ http.RoundTripper = (*bearerTransport)(nil)
+
+// RoundTrip implements http.RoundTripper
+func (bt *bearerTransport) RoundTrip(in *http.Request) (*http.Response, error) {
+	hdr, err := bt.bearer.Authorization()
+	if err != nil {
+		return nil, err
+	}
+
+	// http.Client handles redirects at a layer above the http.RoundTripper
+	// abstraction, so to avoid forwarding Authorization headers to places
+	// we are redirected, only set it when the authorization header matches
+	// the registry with which we are interacting.
+	if in.Host == bt.registry.RegistryStr() {
+		in.Header.Set("Authorization", hdr)
+	}
+	in.Header.Set("User-Agent", transportName)
+
+	// TODO(mattmoor): On 401s perform a single refresh() and retry.
+	return bt.inner.RoundTrip(in)
+}
+
+func (bt *bearerTransport) refresh() error {
+	u, err := url.Parse(bt.realm)
+	if err != nil {
+		return err
+	}
+	b := &basicTransport{
+		inner:  bt.inner,
+		auth:   bt.basic,
+		target: u.Host,
+	}
+	client := http.Client{Transport: b}
+
+	u.RawQuery = url.Values{
+		"scope":   []string{bt.scope},
+		"service": []string{bt.service},
+	}.Encode()
+
+	resp, err := client.Get(u.String())
+	if err != nil {
+		return err
+	}
+	defer resp.Body.Close()
+
+	content, err := ioutil.ReadAll(resp.Body)
+	if err != nil {
+		return err
+	}
+
+	// Some registries don't have "token" in the response. See #54.
+	type tokenResponse struct {
+		Token       string `json:"token"`
+		AccessToken string `json:"access_token"`
+	}
+
+	var response tokenResponse
+	if err := json.Unmarshal(content, &response); err != nil {
+		return err
+	}
+
+	// Find a token to turn into a Bearer authenticator
+	var bearer authn.Bearer
+	if response.Token != "" {
+		bearer = authn.Bearer{Token: response.Token}
+	} else if response.AccessToken != "" {
+		bearer = authn.Bearer{Token: response.AccessToken}
+	} else {
+		return fmt.Errorf("no token in bearer response:\n%s", content)
+	}
+
+	// Replace our old bearer authenticator (if we had one) with our newly refreshed authenticator.
+	bt.bearer = &bearer
+	return nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/doc.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/doc.go
new file mode 100644
index 0000000000..ff7025b5c0
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/doc.go
@@ -0,0 +1,18 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package transport provides facilities for setting up an authenticated
+// http.RoundTripper given an Authenticator and base RoundTripper.  See
+// transport.New for more information.
+package transport
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/ping.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/ping.go
new file mode 100644
index 0000000000..82d7546490
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/ping.go
@@ -0,0 +1,89 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/google/go-containerregistry/name"
+)
+
+type challenge string
+
+const (
+	anonymous challenge = "Anonymous"
+	basic     challenge = "Basic"
+	bearer    challenge = "Bearer"
+)
+
+type pingResp struct {
+	challenge challenge
+
+	// Following the challenge there are often key/value pairs
+	// e.g. Bearer service="gcr.io",realm="https://auth.gcr.io/v36/tokenz"
+	parameters map[string]string
+}
+
+func parseChallenge(suffix string) map[string]string {
+	kv := make(map[string]string)
+	for _, token := range strings.Split(suffix, ",") {
+		// Trim any whitespace around each token.
+		token = strings.Trim(token, " ")
+
+		// Break the token into a key/value pair
+		if parts := strings.SplitN(token, "=", 2); len(parts) == 2 {
+			// Unquote the value, if it is quoted.
+			kv[parts[0]] = strings.Trim(parts[1], `"`)
+		} else {
+			// If there was only one part, treat is as a key with an empty value
+			kv[token] = ""
+		}
+	}
+	return kv
+}
+
+func ping(reg name.Registry, t http.RoundTripper) (*pingResp, error) {
+	client := http.Client{Transport: t}
+
+	url := fmt.Sprintf("%s://%s/v2/", Scheme(reg), reg.Name())
+	resp, err := client.Get(url)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	switch resp.StatusCode {
+	case http.StatusOK:
+		// If we get a 200, then no authentication is needed.
+		return &pingResp{challenge: anonymous}, nil
+	case http.StatusUnauthorized:
+		wac := resp.Header.Get(http.CanonicalHeaderKey("WWW-Authenticate"))
+		if parts := strings.SplitN(wac, " ", 2); len(parts) == 2 {
+			// If there are two parts, then parse the challenge parameters.
+			return &pingResp{
+				challenge:  challenge(strings.Title(parts[0])),
+				parameters: parseChallenge(parts[1]),
+			}, nil
+		}
+		// Otherwise, just return the challenge without parameters.
+		return &pingResp{
+			challenge: challenge(strings.Title(wac)),
+		}, nil
+	default:
+		return nil, fmt.Errorf("unrecognized HTTP status: %v", resp.Status)
+	}
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/scheme.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scheme.go
new file mode 100644
index 0000000000..b9d1dd3bf0
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scheme.go
@@ -0,0 +1,42 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+import (
+	"regexp"
+	"strings"
+
+	"github.com/google/go-containerregistry/name"
+)
+
+// Detect more complex forms of local references.
+var reLocal = regexp.MustCompile(`.*\.local(?:host)?(?::\d{1,5})?$`)
+
+// Detect the loopback IP (127.0.0.1)
+var reLoopback = regexp.MustCompile(regexp.QuoteMeta("127.0.0.1"))
+
+// Scheme returns https scheme for all the endpoints except localhost.
+func Scheme(reg name.Registry) string {
+	if strings.HasPrefix(reg.Name(), "localhost:") {
+		return "http"
+	}
+	if reLocal.MatchString(reg.Name()) {
+		return "http"
+	}
+	if reLoopback.MatchString(reg.Name()) {
+		return "http"
+	}
+	return "https"
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
new file mode 100644
index 0000000000..7f5a8bf0a5
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
@@ -0,0 +1,27 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+// Scope is an enumeration of the supported scopes to pass a transport.
+type Scope string
+
+// Scopes suitable to pass to New()
+const (
+	PullScope Scope = "pull"
+	PushScope Scope = "push,pull"
+	// For now DELETE is PUSH, which is the read/write ACL.
+	DeleteScope  Scope = PushScope
+	CatalogScope Scope = "catalog"
+)
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
new file mode 100644
index 0000000000..9ef17ac1c2
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
@@ -0,0 +1,84 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package transport
+
+import (
+	"fmt"
+	"net/http"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+)
+
+const (
+	transportName = "go-containerregistry"
+)
+
+// New returns a new RoundTripper based on the provided RoundTripper that has been
+// setup to authenticate with the remote registry hosting "ref", in the capacity
+// laid out by the specified Scope.
+func New(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, a Scope) (http.RoundTripper, error) {
+	// The handshake:
+	//  1. Use "t" to ping() the registry for the authentication challenge.
+	//
+	//  2a. If we get back a 200, then simply use "t".
+	//
+	//  2b. If we get back a 401 with a Basic challenge, then use a transport
+	//     that just attachs auth each roundtrip.
+	//
+	//  2c. If we get back a 401 with a Bearer challenge, then use a transport
+	//     that attaches a bearer token to each request, and refreshes is on 401s.
+	//     Perform an initial refresh to seed the bearer token.
+
+	// First we ping the registry to determine the parameters of the authentication handshake
+	// (if one is even necessary).
+	pr, err := ping(ref.Context().Registry, t)
+	if err != nil {
+		return nil, err
+	}
+
+	switch pr.challenge {
+	case anonymous:
+		return t, nil
+	case basic:
+		return &basicTransport{inner: t, auth: auth, target: ref.Context().RegistryStr()}, nil
+	case bearer:
+		// We require the realm, which tells us where to send our Basic auth to turn it into Bearer auth.
+		realm, ok := pr.parameters["realm"]
+		if !ok {
+			return nil, fmt.Errorf("malformed www-authenticate, missing realm: %v", pr.parameters)
+		}
+		service, ok := pr.parameters["service"]
+		if !ok {
+			// If the service parameter is not specified, then default it to the registry
+			// with which we are talking.
+			service = ref.Context().Registry.String()
+		}
+		bt := &bearerTransport{
+			inner:    t,
+			basic:    auth,
+			realm:    realm,
+			registry: ref.Context().Registry,
+			service:  service,
+			scope:    ref.Scope(string(a)),
+		}
+		if err := bt.refresh(); err != nil {
+			return nil, err
+		}
+		return bt, nil
+	default:
+		return nil, fmt.Errorf("Unrecognized challenge: %s", pr.challenge)
+	}
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/write.go b/vendor/github.com/google/go-containerregistry/v1/remote/write.go
new file mode 100644
index 0000000000..fe8eb69c6f
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/write.go
@@ -0,0 +1,281 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package remote
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"log"
+	"net/http"
+	"net/url"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/remote/transport"
+)
+
+// WriteOptions are used to expose optional information to guide or
+// control the image write.
+type WriteOptions struct {
+	// The set of paths from which to attempt to mount blobs.
+	MountPaths []name.Repository
+	// TODO(mattmoor): Expose "threads" to limit parallelism?
+}
+
+// Write pushes the provided img to the specified image reference.
+func Write(ref name.Reference, img v1.Image, auth authn.Authenticator, t http.RoundTripper,
+	wo WriteOptions) error {
+	tr, err := transport.New(ref, auth, t, transport.PushScope)
+	if err != nil {
+		return err
+	}
+	w := writer{
+		ref:     ref,
+		client:  &http.Client{Transport: tr},
+		img:     img,
+		options: wo,
+	}
+
+	bs, err := img.BlobSet()
+	if err != nil {
+		return err
+	}
+
+	// Spin up go routines to publish each of the members of BlobSet(),
+	// and use an error channel to collect their results.
+	errCh := make(chan error)
+	defer close(errCh)
+	for h := range bs {
+		go func(h v1.Hash) {
+			errCh <- w.uploadOne(h)
+		}(h)
+	}
+
+	// Now wait for all of the blob uploads to complete.
+	var errors []error
+	for _ = range bs {
+		if err := <-errCh; err != nil {
+			errors = append(errors, err)
+		}
+	}
+	if len(errors) > 0 {
+		// Return the first error we encountered.
+		return errors[0]
+	}
+
+	// With all of the constituent elements uploaded, upload the manifest
+	// to commit the image.
+	return w.commitImage()
+}
+
+// writer writes the elements of an image to a remote image reference.
+type writer struct {
+	ref     name.Reference
+	client  *http.Client
+	img     v1.Image
+	options WriteOptions
+}
+
+// url returns a url.Url for the specified path in the context of this remote image reference.
+func (w *writer) url(path string) url.URL {
+	return url.URL{
+		Scheme: transport.Scheme(w.ref.Context().Registry),
+		Host:   w.ref.Context().RegistryStr(),
+		Path:   path,
+	}
+}
+
+// nextLocation extracts the fully-qualified URL to which we should send the next request in an upload sequence.
+func (w *writer) nextLocation(resp *http.Response) (string, error) {
+	loc := resp.Header.Get("Location")
+	if len(loc) == 0 {
+		return "", errors.New("missing Location header")
+	}
+	u, err := url.Parse(loc)
+	if err != nil {
+		return "", err
+	}
+
+	// If the location header returned is just a url path, then fully qualify it.
+	// We cannot simply call w.url, since there might be an embedded query string.
+	return resp.Request.URL.ResolveReference(u).String(), nil
+}
+
+// initiateUpload initiates the blob upload, which starts with a POST that can
+// optionally include the hash of the layer and a list of repositories from
+// which that layer might be read. On failure, an error is returned.
+// On success, the layer was either mounted (nothing more to do) or a blob
+// upload was initiated and the body of that blob should be sent to the returned
+// location.
+func (w *writer) initiateUpload(h v1.Hash) (location string, mounted bool, err error) {
+	u := w.url(fmt.Sprintf("/v2/%s/blobs/uploads/", w.ref.Context().RepositoryStr()))
+	uv := url.Values{
+		"mount": []string{h.String()},
+	}
+	var from []string
+	for _, m := range w.options.MountPaths {
+		from = append(from, m.RepositoryStr())
+	}
+	// We currently avoid HEAD because it's semi-redundant with the mount that is part
+	// of initiating the blob upload.  GCR will perform an existence check on the initiation
+	// if "mount" is specified, even if no "from" sources are specified.  If this turns out
+	// to not be broadly applicable then we should replace mounts without "from"s with a HEAD.
+	if len(from) > 0 {
+		uv["from"] = from
+	}
+	u.RawQuery = uv.Encode()
+
+	// Make the request to initiate the blob upload.
+	resp, err := w.client.Post(u.String(), "application/json", nil)
+	if err != nil {
+		return "", false, err
+	}
+	defer resp.Body.Close()
+
+	if err := checkError(resp, http.StatusCreated, http.StatusAccepted); err != nil {
+		return "", false, err
+	}
+
+	// Check the response code to determine the result.
+	switch resp.StatusCode {
+	case http.StatusCreated:
+		// We're done, we were able to fast-path.
+		return "", true, nil
+	case http.StatusAccepted:
+		// Proceed to PATCH, upload has begun.
+		loc, err := w.nextLocation(resp)
+		return loc, false, err
+	default:
+		panic("Unreachable: initiateUpload")
+	}
+}
+
+// streamBlob streams the contents of the blob to the specified location.
+// On failure, this will return an error.  On success, this will return the location
+// header indicating how to commit the streamed blob.
+func (w *writer) streamBlob(h v1.Hash, streamLocation string) (commitLocation string, err error) {
+	l, err := w.img.LayerByDigest(h)
+	if err != nil {
+		return "", err
+	}
+	blob, err := l.Compressed()
+	if err != nil {
+		return "", err
+	}
+	defer blob.Close()
+
+	req, err := http.NewRequest(http.MethodPatch, streamLocation, blob)
+	if err != nil {
+		return "", err
+	}
+
+	resp, err := w.client.Do(req)
+	if err != nil {
+		return "", err
+	}
+	defer resp.Body.Close()
+
+	if err := checkError(resp, http.StatusNoContent, http.StatusAccepted, http.StatusCreated); err != nil {
+		return "", err
+	}
+
+	// The blob has been uploaded, return the location header indicating
+	// how to commit this layer.
+	return w.nextLocation(resp)
+}
+
+// commitBlob commits this blob by sending a PUT to the location returned from streaming the blob.
+func (w *writer) commitBlob(h v1.Hash, location string) (err error) {
+	u, err := url.Parse(location)
+	if err != nil {
+		return err
+	}
+	v := u.Query()
+	v.Set("digest", h.String())
+	u.RawQuery = v.Encode()
+
+	req, err := http.NewRequest(http.MethodPut, u.String(), nil)
+	if err != nil {
+		return err
+	}
+
+	resp, err := w.client.Do(req)
+	if err != nil {
+		return err
+	}
+	defer resp.Body.Close()
+
+	return checkError(resp, http.StatusCreated)
+}
+
+// uploadOne performs a complete upload of a single layer.
+func (w *writer) uploadOne(h v1.Hash) error {
+	location, mounted, err := w.initiateUpload(h)
+	if err != nil {
+		return err
+	} else if mounted {
+		log.Printf("mounted %v", h)
+		return nil
+	}
+
+	location, err = w.streamBlob(h, location)
+	if err != nil {
+		return err
+	}
+
+	if err := w.commitBlob(h, location); err != nil {
+		return err
+	}
+	log.Printf("pushed %v", h)
+	return nil
+}
+
+// commitImage does a PUT of the image's manifest.
+func (w *writer) commitImage() error {
+	raw, err := w.img.RawManifest()
+	if err != nil {
+		return err
+	}
+	mt, err := w.img.MediaType()
+	if err != nil {
+		return err
+	}
+
+	u := w.url(fmt.Sprintf("/v2/%s/manifests/%s", w.ref.Context().RepositoryStr(), w.ref.Identifier()))
+
+	// Make the request to PUT the serialized manifest
+	req, err := http.NewRequest(http.MethodPut, u.String(), bytes.NewBuffer(raw))
+	if err != nil {
+		return err
+	}
+	req.Header.Set("Content-Type", string(mt))
+
+	resp, err := w.client.Do(req)
+	if err != nil {
+		return err
+	}
+	defer resp.Body.Close()
+
+	if err := checkError(resp, http.StatusOK, http.StatusCreated, http.StatusAccepted); err != nil {
+		return err
+	}
+	// The image was successfully pushed!
+	log.Printf("pushed %v", w.ref)
+	return nil
+}
+
+// TODO(mattmoor): WriteIndex
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/doc.go b/vendor/github.com/google/go-containerregistry/v1/tarball/doc.go
new file mode 100644
index 0000000000..4eb79bb4e5
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/doc.go
@@ -0,0 +1,17 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package tarball provides facilities for reading/writing v1.Images from/to
+// a tarball on-disk.
+package tarball
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/image.go b/vendor/github.com/google/go-containerregistry/v1/tarball/image.go
new file mode 100644
index 0000000000..7346dbcef2
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/image.go
@@ -0,0 +1,338 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package tarball
+
+import (
+	"archive/tar"
+	"bytes"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"sync"
+
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/partial"
+	"github.com/google/go-containerregistry/v1/types"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+type image struct {
+	opener        Opener
+	td            *tarDescriptor
+	config        []byte
+	imgDescriptor *singleImageTarDescriptor
+
+	tag *name.Tag
+}
+
+type uncompressedImage struct {
+	*image
+}
+
+type compressedImage struct {
+	*image
+	manifestLock sync.Mutex // Protects manifest
+	manifest     *v1.Manifest
+}
+
+var _ partial.UncompressedImageCore = (*uncompressedImage)(nil)
+var _ partial.CompressedImageCore = (*compressedImage)(nil)
+
+type Opener func() (io.ReadCloser, error)
+
+func pathOpener(path string) Opener {
+	return func() (io.ReadCloser, error) {
+		return os.Open(path)
+	}
+}
+
+func ImageFromPath(path string, tag *name.Tag) (v1.Image, error) {
+	return Image(pathOpener(path), tag)
+}
+
+// Image exposes an image from the tarball at the provided path.
+func Image(opener Opener, tag *name.Tag) (v1.Image, error) {
+	img := &image{
+		opener: opener,
+		tag:    tag,
+	}
+	if err := img.loadTarDescriptorAndConfig(); err != nil {
+		return nil, err
+	}
+
+	// Peek at the first layer and see if it's compressed.
+	compressed, err := img.areLayersCompressed()
+	if err != nil {
+		return nil, err
+	}
+	if compressed {
+		c := compressedImage{
+			image: img,
+		}
+		return partial.CompressedToImage(&c)
+	}
+
+	uc := uncompressedImage{
+		image: img,
+	}
+	return partial.UncompressedToImage(&uc)
+}
+
+func (i *image) MediaType() (types.MediaType, error) {
+	return types.DockerManifestSchema2, nil
+}
+
+// singleImageTarDescriptor is the struct used to represent a single image inside a `docker save` tarball.
+type singleImageTarDescriptor struct {
+	Config   string
+	RepoTags []string
+	Layers   []string
+}
+
+// tarDescriptor is the struct used inside the `manifest.json` file of a `docker save` tarball.
+type tarDescriptor []singleImageTarDescriptor
+
+func (td tarDescriptor) findSpecifiedImageDescriptor(tag *name.Tag) (*singleImageTarDescriptor, error) {
+	if tag == nil {
+		if len(td) != 1 {
+			return nil, errors.New("tarball must contain only a single image to be used with tarball.Image")
+		}
+		return &(td)[0], nil
+	}
+	for _, img := range td {
+		for _, tagStr := range img.RepoTags {
+			repoTag, err := name.NewTag(tagStr, name.WeakValidation)
+			if err != nil {
+				return nil, err
+			}
+
+			// Compare the resolved names, since there are several ways to specify the same tag.
+			if repoTag.Name() == tag.Name() {
+				return &img, nil
+			}
+		}
+	}
+	return nil, fmt.Errorf("tag %s not found in tarball", tag)
+}
+
+func (i *image) areLayersCompressed() (bool, error) {
+	if len(i.imgDescriptor.Layers) == 0 {
+		return false, errors.New("0 layers found in image")
+	}
+	layer := i.imgDescriptor.Layers[0]
+	blob, err := extractFileFromTar(i.opener, layer)
+	if err != nil {
+		return false, err
+	}
+	defer blob.Close()
+	return v1util.IsGzipped(blob)
+}
+
+func (i *image) loadTarDescriptorAndConfig() error {
+	td, err := extractFileFromTar(i.opener, "manifest.json")
+	if err != nil {
+		return err
+	}
+	defer td.Close()
+
+	if err := json.NewDecoder(td).Decode(&i.td); err != nil {
+		return err
+	}
+
+	i.imgDescriptor, err = i.td.findSpecifiedImageDescriptor(i.tag)
+	if err != nil {
+		return err
+	}
+
+	cfg, err := extractFileFromTar(i.opener, i.imgDescriptor.Config)
+	if err != nil {
+		return err
+	}
+	defer cfg.Close()
+
+	i.config, err = ioutil.ReadAll(cfg)
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func (i *image) RawConfigFile() ([]byte, error) {
+	return i.config, nil
+}
+
+// tarFile represents a single file inside a tar. Closing it closes the tar itself.
+type tarFile struct {
+	io.Reader
+	io.Closer
+}
+
+func extractFileFromTar(opener Opener, filePath string) (io.ReadCloser, error) {
+	f, err := opener()
+	if err != nil {
+		return nil, err
+	}
+	tf := tar.NewReader(f)
+	for {
+		hdr, err := tf.Next()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return nil, err
+		}
+		if hdr.Name == filePath {
+			return tarFile{
+				Reader: tf,
+				Closer: f,
+			}, nil
+		}
+	}
+	return nil, fmt.Errorf("file %s not found in tar", filePath)
+}
+
+// uncompressedLayerFromTarball implements partial.UncompressedLayer
+type uncompressedLayerFromTarball struct {
+	diffID   v1.Hash
+	opener   Opener
+	filePath string
+}
+
+// DiffID implements partial.UncompressedLayer
+func (ulft *uncompressedLayerFromTarball) DiffID() (v1.Hash, error) {
+	return ulft.diffID, nil
+}
+
+// Uncompressed implements partial.UncompressedLayer
+func (ulft *uncompressedLayerFromTarball) Uncompressed() (io.ReadCloser, error) {
+	return extractFileFromTar(ulft.opener, ulft.filePath)
+}
+
+func (i *uncompressedImage) LayerByDiffID(h v1.Hash) (partial.UncompressedLayer, error) {
+	cfg, err := partial.ConfigFile(i)
+	if err != nil {
+		return nil, err
+	}
+	for idx, diffID := range cfg.RootFS.DiffIDs {
+		if diffID == h {
+			return &uncompressedLayerFromTarball{
+				diffID:   diffID,
+				opener:   i.opener,
+				filePath: i.imgDescriptor.Layers[idx],
+			}, nil
+		}
+	}
+	return nil, fmt.Errorf("diff id %q not found", h)
+}
+
+func (c *compressedImage) Manifest() (*v1.Manifest, error) {
+	c.manifestLock.Lock()
+	defer c.manifestLock.Unlock()
+	if c.manifest != nil {
+		return c.manifest, nil
+	}
+
+	b, err := c.RawConfigFile()
+	if err != nil {
+		return nil, err
+	}
+
+	cfgHash, cfgSize, err := v1.SHA256(bytes.NewReader(b))
+	if err != nil {
+		return nil, err
+	}
+
+	c.manifest = &v1.Manifest{
+		SchemaVersion: 2,
+		MediaType:     types.DockerManifestSchema2,
+		Config: v1.Descriptor{
+			MediaType: types.DockerConfigJSON,
+			Size:      cfgSize,
+			Digest:    cfgHash,
+		},
+	}
+
+	for _, p := range c.imgDescriptor.Layers {
+		l, err := extractFileFromTar(c.opener, p)
+		if err != nil {
+			return nil, err
+		}
+		defer l.Close()
+		sha, size, err := v1.SHA256(l)
+		if err != nil {
+			return nil, err
+		}
+		c.manifest.Layers = append(c.manifest.Layers, v1.Descriptor{
+			MediaType: types.DockerLayer,
+			Size:      size,
+			Digest:    sha,
+		})
+	}
+	return c.manifest, nil
+}
+
+func (c *compressedImage) RawManifest() ([]byte, error) {
+	return partial.RawManifest(c)
+}
+
+// compressedLayerFromTarball implements partial.CompressedLayer
+type compressedLayerFromTarball struct {
+	digest   v1.Hash
+	opener   Opener
+	filePath string
+}
+
+// DiffID implements partial.CompressedLayer
+func (clft *compressedLayerFromTarball) Digest() (v1.Hash, error) {
+	return clft.digest, nil
+}
+
+// Compressed implements partial.CompressedLayer
+func (clft *compressedLayerFromTarball) Compressed() (io.ReadCloser, error) {
+	return extractFileFromTar(clft.opener, clft.filePath)
+}
+
+// Size implements partial.CompressedLayer
+func (clft *compressedLayerFromTarball) Size() (int64, error) {
+	r, err := clft.Compressed()
+	if err != nil {
+		return -1, err
+	}
+	defer r.Close()
+	_, i, err := v1.SHA256(r)
+	return i, err
+}
+
+func (c *compressedImage) LayerByDigest(h v1.Hash) (partial.CompressedLayer, error) {
+	m, err := c.Manifest()
+	if err != nil {
+		return nil, err
+	}
+	for i, l := range m.Layers {
+		if l.Digest == h {
+			fp := c.imgDescriptor.Layers[i]
+			return &compressedLayerFromTarball{
+				digest:   h,
+				opener:   c.opener,
+				filePath: fp,
+			}, nil
+		}
+	}
+	return nil, fmt.Errorf("blob %v not found", h)
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go b/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
new file mode 100644
index 0000000000..ba8d8b339c
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
@@ -0,0 +1,144 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package tarball
+
+import (
+	"compress/gzip"
+	"io"
+	"io/ioutil"
+	"os"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/v1util"
+)
+
+type layer struct {
+	digest     v1.Hash
+	diffID     v1.Hash
+	size       int64
+	opener     Opener
+	compressed bool
+}
+
+func (l *layer) Digest() (v1.Hash, error) {
+	return l.digest, nil
+}
+
+func (l *layer) DiffID() (v1.Hash, error) {
+	return l.diffID, nil
+}
+
+func (l *layer) Compressed() (io.ReadCloser, error) {
+	rc, err := l.opener()
+	if err == nil && !l.compressed {
+		return v1util.GzipReadCloser(rc)
+	}
+
+	return rc, err
+}
+
+func (l *layer) Uncompressed() (io.ReadCloser, error) {
+	rc, err := l.opener()
+	if err == nil && l.compressed {
+		return v1util.GunzipReadCloser(rc)
+	}
+
+	return rc, err
+}
+
+func (l *layer) Size() (int64, error) {
+	return l.size, nil
+}
+
+// LayerFromFile returns a v1.Layer given a tarball
+func LayerFromFile(path string) (v1.Layer, error) {
+	opener := func() (io.ReadCloser, error) {
+		return os.Open(path)
+	}
+	return LayerFromOpener(opener)
+}
+
+// LayerFromOpener returns a v1.Layer given an Opener function
+func LayerFromOpener(opener Opener) (v1.Layer, error) {
+	rc, err := opener()
+	if err != nil {
+		return nil, err
+	}
+	defer rc.Close()
+
+	compressed, err := v1util.IsGzipped(rc)
+	if err != nil {
+		return nil, err
+	}
+
+	var digest v1.Hash
+	var size int64
+	if digest, size, err = computeDigest(opener, compressed); err != nil {
+		return nil, err
+	}
+
+	diffID, err := computeDiffID(opener, compressed)
+	if err != nil {
+		return nil, err
+	}
+
+	return &layer{
+		digest:     digest,
+		diffID:     diffID,
+		size:       size,
+		compressed: compressed,
+		opener:     opener,
+	}, nil
+}
+
+func computeDigest(opener Opener, compressed bool) (v1.Hash, int64, error) {
+	rc, err := opener()
+	if err != nil {
+		return v1.Hash{}, 0, err
+	}
+	defer rc.Close()
+	
+	if compressed {
+		return v1.SHA256(rc)
+	}
+
+	reader, err := v1util.GzipReadCloser(ioutil.NopCloser(rc))
+	if err != nil {
+		return v1.Hash{}, 0, err
+	}
+
+	return v1.SHA256(reader)
+}
+
+func computeDiffID(opener Opener, compressed bool) (v1.Hash, error) {
+	rc, err := opener()
+	if err != nil {
+		return v1.Hash{}, err
+	}
+	defer rc.Close()
+
+	if !compressed {
+		digest, _, err := v1.SHA256(rc)
+		return digest, err
+	}
+
+	reader, err := gzip.NewReader(rc)
+	if err != nil {
+		return v1.Hash{}, err
+	}
+
+	diffID, _, err := v1.SHA256(reader)
+	return diffID, err
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/write.go b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
new file mode 100644
index 0000000000..cd37ed70dd
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
@@ -0,0 +1,122 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package tarball
+
+import (
+	"archive/tar"
+	"bytes"
+	"encoding/json"
+	"io"
+	"os"
+
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+)
+
+// WriteOptions are used to expose optional information to guide or
+// control the image write.
+type WriteOptions struct {
+	// TODO(mattmoor): Whether to store things compressed?
+}
+
+// Write saves the image as the given tag in a tarball at the given path.
+func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
+	// Write in the compressed format.
+	// This is a tarball, on-disk, with:
+	// One manifest.json file at the top level containing information about several images.
+	// One file for each layer, named after the layer's SHA.
+	// One file for the config blob, named after its SHA.
+
+	w, err := os.Create(p)
+	if err != nil {
+		return err
+	}
+	defer w.Close()
+
+	tf := tar.NewWriter(w)
+	defer tf.Close()
+
+	// Write the config.
+	cfgName, err := img.ConfigName()
+	if err != nil {
+		return err
+	}
+	cfg, err := img.ConfigFile()
+	if err != nil {
+		return err
+	}
+	cfgBlob, err := json.Marshal(cfg)
+	if err != nil {
+		return err
+	}
+	if err := writeFile(tf, cfgName.String(), bytes.NewReader(cfgBlob), int64(len(cfgBlob))); err != nil {
+		return err
+	}
+
+	// Write the layers.
+	layers, err := img.Layers()
+	if err != nil {
+		return err
+	}
+	digests := make([]string, len(layers))
+	for i, l := range layers {
+		d, err := l.Digest()
+		if err != nil {
+			return err
+		}
+
+		digests[i] = d.String()
+		r, err := l.Compressed()
+		if err != nil {
+			return err
+		}
+		blobSize, err := l.Size()
+		if err != nil {
+			return err
+		}
+
+		if err := writeFile(tf, d.String(), r, blobSize); err != nil {
+			return err
+		}
+	}
+
+	// Generate the tar descriptor and write it.
+	td := tarDescriptor{
+		singleImageTarDescriptor{
+			Config:   cfgName.String(),
+			RepoTags: []string{tag.String()},
+			Layers:   digests,
+		},
+	}
+	tdBytes, err := json.Marshal(td)
+	if err != nil {
+		return err
+	}
+	return writeFile(tf, "manifest.json", bytes.NewReader(tdBytes), int64(len(tdBytes)))
+}
+
+func writeFile(tf *tar.Writer, path string, r io.Reader, size int64) error {
+	hdr := &tar.Header{
+		Mode:     0644,
+		Typeflag: tar.TypeReg,
+		Size:     size,
+		Name:     path,
+	}
+	if err := tf.WriteHeader(hdr); err != nil {
+		return err
+	}
+	_, err := io.Copy(tf, r)
+	return err
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/types/types.go b/vendor/github.com/google/go-containerregistry/v1/types/types.go
new file mode 100644
index 0000000000..ddaf71962e
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/types/types.go
@@ -0,0 +1,40 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+// MediaType is an enumeration of the supported mime types that an element of an image might have.
+type MediaType string
+
+// The collection of known MediaType values.
+const (
+	OCIContentDescriptor           MediaType = "application/vnd.oci.descriptor.v1+json"
+	OCIImageIndex                  MediaType = "application/vnd.oci.image.index.v1+json"
+	OCIManifestSchema1             MediaType = "application/vnd.oci.image.manifest.v1+json"
+	OCIConfigJSON                  MediaType = "application/vnd.oci.image.config.v1+json"
+	OCILayer                       MediaType = "application/vnd.oci.image.layer.v1.tar+gzip"
+	OCIRestrictedLayer             MediaType = "application/vnd.oci.image.layer.nondistributable.v1.tar+gzip"
+	OCIUncompressedLayer           MediaType = "application/vnd.oci.image.layer.v1.tar"
+	OCIUncompressedRestrictedLayer MediaType = "application/vnd.oci.image.layer.nondistributable.v1.tar"
+
+	DockerManifestSchema1       MediaType = "application/vnd.docker.distribution.manifest.v1+json"
+	DockerManifestSchema1Signed MediaType = "application/vnd.docker.distribution.manifest.v1+prettyjws"
+	DockerManifestSchema2       MediaType = "application/vnd.docker.distribution.manifest.v2+json"
+	DockerManifestList          MediaType = "application/vnd.docker.distribution.manifest.list.v2+json"
+	DockerLayer                 MediaType = "application/vnd.docker.image.rootfs.diff.tar.gzip"
+	DockerConfigJSON            MediaType = "application/vnd.docker.container.image.v1+json"
+	DockerPluginConfig          MediaType = "application/vnd.docker.plugin.v1+json"
+	DockerForeignLayer          MediaType = "application/vnd.docker.image.rootfs.foreign.diff.tar.gzip"
+	DockerUncompressedLayer     MediaType = "application/vnd.docker.image.rootfs.diff.tar"
+)
diff --git a/vendor/github.com/google/go-containerregistry/v1/v1util/and_closer.go b/vendor/github.com/google/go-containerregistry/v1/v1util/and_closer.go
new file mode 100644
index 0000000000..0925f13d54
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/v1util/and_closer.go
@@ -0,0 +1,47 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1util
+
+import (
+	"io"
+)
+
+// readAndCloser implements io.ReadCloser by reading from a particular io.Reader
+// and then calling the provided "Close()" method.
+type readAndCloser struct {
+	io.Reader
+	CloseFunc func() error
+}
+
+var _ io.ReadCloser = (*readAndCloser)(nil)
+
+// Close implements io.ReadCloser
+func (rac *readAndCloser) Close() error {
+	return rac.CloseFunc()
+}
+
+// writeAndCloser implements io.WriteCloser by reading from a particular io.Writer
+// and then calling the provided "Close()" method.
+type writeAndCloser struct {
+	io.Writer
+	CloseFunc func() error
+}
+
+var _ io.WriteCloser = (*writeAndCloser)(nil)
+
+// Close implements io.WriteCloser
+func (wac *writeAndCloser) Close() error {
+	return wac.CloseFunc()
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/v1util/nop.go b/vendor/github.com/google/go-containerregistry/v1/v1util/nop.go
new file mode 100644
index 0000000000..8ff288d978
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/v1util/nop.go
@@ -0,0 +1,40 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1util
+
+import (
+	"io"
+)
+
+func nop() error {
+	return nil
+}
+
+// NopWriteCloser wraps the io.Writer as an io.WriteCloser with a Close() method that does nothing.
+func NopWriteCloser(w io.Writer) io.WriteCloser {
+	return &writeAndCloser{
+		Writer:    w,
+		CloseFunc: nop,
+	}
+}
+
+// NopReadCloser wraps the io.Reader as an io.ReadCloser with a Close() method that does nothing.
+// This is technically redundant with ioutil.NopCloser, but provided for symmetry and clarity.
+func NopReadCloser(r io.Reader) io.ReadCloser {
+	return &readAndCloser{
+		Reader:    r,
+		CloseFunc: nop,
+	}
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/v1util/verify.go b/vendor/github.com/google/go-containerregistry/v1/v1util/verify.go
new file mode 100644
index 0000000000..610ca5c01b
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/v1util/verify.go
@@ -0,0 +1,61 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1util
+
+import (
+	"encoding/hex"
+	"fmt"
+	"hash"
+	"io"
+
+	"github.com/google/go-containerregistry/v1"
+)
+
+type verifyReader struct {
+	inner    io.Reader
+	hasher   hash.Hash
+	expected v1.Hash
+}
+
+// Read implements io.Reader
+func (vc *verifyReader) Read(b []byte) (int, error) {
+	n, err := vc.inner.Read(b)
+	if err == io.EOF {
+		got := hex.EncodeToString(vc.hasher.Sum(make([]byte, 0, vc.hasher.Size())))
+		if want := vc.expected.Hex; got != want {
+			return n, fmt.Errorf("error verifying %s checksum; got %q, want %q",
+				vc.expected.Algorithm, got, want)
+		}
+	}
+	return n, err
+}
+
+// VerifyReadCloser wraps the given io.ReadCloser to verify that its contents match
+// the provided v1.Hash before io.EOF is returned.
+func VerifyReadCloser(r io.ReadCloser, h v1.Hash) (io.ReadCloser, error) {
+	w, err := v1.Hasher(h.Algorithm)
+	if err != nil {
+		return nil, err
+	}
+	r2 := io.TeeReader(r, w)
+	return &readAndCloser{
+		Reader: &verifyReader{
+			inner:    r2,
+			hasher:   w,
+			expected: h,
+		},
+		CloseFunc: r.Close,
+	}, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/v1util/zip.go b/vendor/github.com/google/go-containerregistry/v1/v1util/zip.go
new file mode 100644
index 0000000000..469d29146f
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/v1util/zip.go
@@ -0,0 +1,117 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1util
+
+import (
+	"bytes"
+	"compress/gzip"
+	"io"
+)
+
+var gzipMagicHeader = []byte{'\x1f', '\x8b'}
+
+// GzipReadCloser reads uncompressed input data from the io.ReadCloser and
+// returns an io.ReadCloser from which compressed data may be read.
+func GzipReadCloser(r io.ReadCloser) (io.ReadCloser, error) {
+	pr, pw := io.Pipe()
+
+	go func() {
+		defer pw.Close()
+		defer r.Close()
+
+		gw, _ := gzip.NewWriterLevel(pw, gzip.BestCompression)
+		defer gw.Close()
+
+		_, err := io.Copy(gw, r)
+		if err != nil {
+			pr.CloseWithError(err)
+		}
+	}()
+
+	return pr, nil
+}
+
+// GunzipReadCloser reads compressed input data from the io.ReadCloser and
+// returns an io.ReadCloser from which uncompessed data may be read.
+func GunzipReadCloser(r io.ReadCloser) (io.ReadCloser, error) {
+	gr, err := gzip.NewReader(r)
+	if err != nil {
+		return nil, err
+	}
+	return &readAndCloser{
+		Reader: gr,
+		CloseFunc: func() error {
+			if err := gr.Close(); err != nil {
+				return err
+			}
+			return r.Close()
+		},
+	}, nil
+}
+
+// GzipWriteCloser returns an io.WriteCloser to which uncompressed data may be
+// written, and the compressed data is then written to the provided
+// io.WriteCloser.
+func GzipWriteCloser(w io.WriteCloser) io.WriteCloser {
+	gw := gzip.NewWriter(w)
+	return &writeAndCloser{
+		Writer: gw,
+		CloseFunc: func() error {
+			if err := gw.Close(); err != nil {
+				return err
+			}
+			return w.Close()
+		},
+	}
+}
+
+// gunzipWriteCloser implements io.WriteCloser
+// It is used to implement GunzipWriteClose.
+type gunzipWriteCloser struct {
+	*bytes.Buffer
+	writer io.WriteCloser
+}
+
+// Close implements io.WriteCloser
+func (gwc *gunzipWriteCloser) Close() error {
+	// TODO(mattmoor): How to avoid buffering this whole thing into memory?
+	gr, err := gzip.NewReader(gwc.Buffer)
+	if err != nil {
+		return err
+	}
+	if _, err := io.Copy(gwc.writer, gr); err != nil {
+		return err
+	}
+	return gwc.writer.Close()
+}
+
+// GunzipWriteCloser returns an io.WriteCloser to which compressed data may be
+// written, and the uncompressed data is then written to the provided
+// io.WriteCloser.
+func GunzipWriteCloser(w io.WriteCloser) (io.WriteCloser, error) {
+	return &gunzipWriteCloser{
+		Buffer: bytes.NewBuffer(nil),
+		writer: w,
+	}, nil
+}
+
+// IsGzipped detects whether the input stream is compressed.
+func IsGzipped(r io.Reader) (bool, error) {
+	magicHeader := make([]byte, 2)
+	if _, err := r.Read(magicHeader); err != nil {
+		return false, err
+	}
+	return bytes.Equal(magicHeader, gzipMagicHeader), nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/zz_deepcopy_generated.go b/vendor/github.com/google/go-containerregistry/v1/zz_deepcopy_generated.go
new file mode 100644
index 0000000000..530e048fbd
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/zz_deepcopy_generated.go
@@ -0,0 +1,232 @@
+// +build !ignore_autogenerated
+
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Code generated by deepcopy-gen. DO NOT EDIT.
+
+package v1
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *Config) DeepCopyInto(out *Config) {
+	*out = *in
+	if in.Cmd != nil {
+		in, out := &in.Cmd, &out.Cmd
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	if in.Entrypoint != nil {
+		in, out := &in.Entrypoint, &out.Entrypoint
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	if in.Env != nil {
+		in, out := &in.Env, &out.Env
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	if in.Labels != nil {
+		in, out := &in.Labels, &out.Labels
+		*out = make(map[string]string, len(*in))
+		for key, val := range *in {
+			(*out)[key] = val
+		}
+	}
+	if in.OnBuild != nil {
+		in, out := &in.OnBuild, &out.OnBuild
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	if in.Volumes != nil {
+		in, out := &in.Volumes, &out.Volumes
+		*out = make(map[string]struct{}, len(*in))
+		for key := range *in {
+			(*out)[key] = struct{}{}
+		}
+	}
+	if in.ExposedPorts != nil {
+		in, out := &in.ExposedPorts, &out.ExposedPorts
+		*out = make(map[string]struct{}, len(*in))
+		for key := range *in {
+			(*out)[key] = struct{}{}
+		}
+	}
+	if in.Shell != nil {
+		in, out := &in.Shell, &out.Shell
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Config.
+func (in *Config) DeepCopy() *Config {
+	if in == nil {
+		return nil
+	}
+	out := new(Config)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *ConfigFile) DeepCopyInto(out *ConfigFile) {
+	*out = *in
+	in.Created.DeepCopyInto(&out.Created)
+	if in.History != nil {
+		in, out := &in.History, &out.History
+		*out = make([]History, len(*in))
+		for i := range *in {
+			(*in)[i].DeepCopyInto(&(*out)[i])
+		}
+	}
+	in.RootFS.DeepCopyInto(&out.RootFS)
+	in.Config.DeepCopyInto(&out.Config)
+	in.ContainerConfig.DeepCopyInto(&out.ContainerConfig)
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConfigFile.
+func (in *ConfigFile) DeepCopy() *ConfigFile {
+	if in == nil {
+		return nil
+	}
+	out := new(ConfigFile)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *Descriptor) DeepCopyInto(out *Descriptor) {
+	*out = *in
+	out.Digest = in.Digest
+	if in.URLs != nil {
+		in, out := &in.URLs, &out.URLs
+		*out = make([]string, len(*in))
+		copy(*out, *in)
+	}
+	if in.Annotations != nil {
+		in, out := &in.Annotations, &out.Annotations
+		*out = make(map[string]string, len(*in))
+		for key, val := range *in {
+			(*out)[key] = val
+		}
+	}
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Descriptor.
+func (in *Descriptor) DeepCopy() *Descriptor {
+	if in == nil {
+		return nil
+	}
+	out := new(Descriptor)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *Hash) DeepCopyInto(out *Hash) {
+	*out = *in
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Hash.
+func (in *Hash) DeepCopy() *Hash {
+	if in == nil {
+		return nil
+	}
+	out := new(Hash)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *History) DeepCopyInto(out *History) {
+	*out = *in
+	in.Created.DeepCopyInto(&out.Created)
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new History.
+func (in *History) DeepCopy() *History {
+	if in == nil {
+		return nil
+	}
+	out := new(History)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *Manifest) DeepCopyInto(out *Manifest) {
+	*out = *in
+	in.Config.DeepCopyInto(&out.Config)
+	if in.Layers != nil {
+		in, out := &in.Layers, &out.Layers
+		*out = make([]Descriptor, len(*in))
+		for i := range *in {
+			(*in)[i].DeepCopyInto(&(*out)[i])
+		}
+	}
+	if in.Annotations != nil {
+		in, out := &in.Annotations, &out.Annotations
+		*out = make(map[string]string, len(*in))
+		for key, val := range *in {
+			(*out)[key] = val
+		}
+	}
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Manifest.
+func (in *Manifest) DeepCopy() *Manifest {
+	if in == nil {
+		return nil
+	}
+	out := new(Manifest)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *RootFS) DeepCopyInto(out *RootFS) {
+	*out = *in
+	if in.DiffIDs != nil {
+		in, out := &in.DiffIDs, &out.DiffIDs
+		*out = make([]Hash, len(*in))
+		copy(*out, *in)
+	}
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RootFS.
+func (in *RootFS) DeepCopy() *RootFS {
+	if in == nil {
+		return nil
+	}
+	out := new(RootFS)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Time.
+func (in *Time) DeepCopy() *Time {
+	if in == nil {
+		return nil
+	}
+	out := new(Time)
+	in.DeepCopyInto(out)
+	return out
+}
diff --git a/vendor/github.com/gorilla/context/LICENSE b/vendor/github.com/gorilla/context/LICENSE
deleted file mode 100644
index 0e5fb87280..0000000000
--- a/vendor/github.com/gorilla/context/LICENSE
+++ /dev/null
@@ -1,27 +0,0 @@
-Copyright (c) 2012 Rodrigo Moraes. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-	 * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-	 * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-	 * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/gorilla/context/context.go b/vendor/github.com/gorilla/context/context.go
deleted file mode 100644
index 81cb128b19..0000000000
--- a/vendor/github.com/gorilla/context/context.go
+++ /dev/null
@@ -1,143 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package context
-
-import (
-	"net/http"
-	"sync"
-	"time"
-)
-
-var (
-	mutex sync.RWMutex
-	data  = make(map[*http.Request]map[interface{}]interface{})
-	datat = make(map[*http.Request]int64)
-)
-
-// Set stores a value for a given key in a given request.
-func Set(r *http.Request, key, val interface{}) {
-	mutex.Lock()
-	if data[r] == nil {
-		data[r] = make(map[interface{}]interface{})
-		datat[r] = time.Now().Unix()
-	}
-	data[r][key] = val
-	mutex.Unlock()
-}
-
-// Get returns a value stored for a given key in a given request.
-func Get(r *http.Request, key interface{}) interface{} {
-	mutex.RLock()
-	if ctx := data[r]; ctx != nil {
-		value := ctx[key]
-		mutex.RUnlock()
-		return value
-	}
-	mutex.RUnlock()
-	return nil
-}
-
-// GetOk returns stored value and presence state like multi-value return of map access.
-func GetOk(r *http.Request, key interface{}) (interface{}, bool) {
-	mutex.RLock()
-	if _, ok := data[r]; ok {
-		value, ok := data[r][key]
-		mutex.RUnlock()
-		return value, ok
-	}
-	mutex.RUnlock()
-	return nil, false
-}
-
-// GetAll returns all stored values for the request as a map. Nil is returned for invalid requests.
-func GetAll(r *http.Request) map[interface{}]interface{} {
-	mutex.RLock()
-	if context, ok := data[r]; ok {
-		result := make(map[interface{}]interface{}, len(context))
-		for k, v := range context {
-			result[k] = v
-		}
-		mutex.RUnlock()
-		return result
-	}
-	mutex.RUnlock()
-	return nil
-}
-
-// GetAllOk returns all stored values for the request as a map and a boolean value that indicates if
-// the request was registered.
-func GetAllOk(r *http.Request) (map[interface{}]interface{}, bool) {
-	mutex.RLock()
-	context, ok := data[r]
-	result := make(map[interface{}]interface{}, len(context))
-	for k, v := range context {
-		result[k] = v
-	}
-	mutex.RUnlock()
-	return result, ok
-}
-
-// Delete removes a value stored for a given key in a given request.
-func Delete(r *http.Request, key interface{}) {
-	mutex.Lock()
-	if data[r] != nil {
-		delete(data[r], key)
-	}
-	mutex.Unlock()
-}
-
-// Clear removes all values stored for a given request.
-//
-// This is usually called by a handler wrapper to clean up request
-// variables at the end of a request lifetime. See ClearHandler().
-func Clear(r *http.Request) {
-	mutex.Lock()
-	clear(r)
-	mutex.Unlock()
-}
-
-// clear is Clear without the lock.
-func clear(r *http.Request) {
-	delete(data, r)
-	delete(datat, r)
-}
-
-// Purge removes request data stored for longer than maxAge, in seconds.
-// It returns the amount of requests removed.
-//
-// If maxAge <= 0, all request data is removed.
-//
-// This is only used for sanity check: in case context cleaning was not
-// properly set some request data can be kept forever, consuming an increasing
-// amount of memory. In case this is detected, Purge() must be called
-// periodically until the problem is fixed.
-func Purge(maxAge int) int {
-	mutex.Lock()
-	count := 0
-	if maxAge <= 0 {
-		count = len(data)
-		data = make(map[*http.Request]map[interface{}]interface{})
-		datat = make(map[*http.Request]int64)
-	} else {
-		min := time.Now().Unix() - int64(maxAge)
-		for r := range data {
-			if datat[r] < min {
-				clear(r)
-				count++
-			}
-		}
-	}
-	mutex.Unlock()
-	return count
-}
-
-// ClearHandler wraps an http.Handler and clears request values at the end
-// of a request lifetime.
-func ClearHandler(h http.Handler) http.Handler {
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		defer Clear(r)
-		h.ServeHTTP(w, r)
-	})
-}
diff --git a/vendor/github.com/gorilla/context/doc.go b/vendor/github.com/gorilla/context/doc.go
deleted file mode 100644
index 73c7400311..0000000000
--- a/vendor/github.com/gorilla/context/doc.go
+++ /dev/null
@@ -1,82 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-/*
-Package context stores values shared during a request lifetime.
-
-For example, a router can set variables extracted from the URL and later
-application handlers can access those values, or it can be used to store
-sessions values to be saved at the end of a request. There are several
-others common uses.
-
-The idea was posted by Brad Fitzpatrick to the go-nuts mailing list:
-
-	http://groups.google.com/group/golang-nuts/msg/e2d679d303aa5d53
-
-Here's the basic usage: first define the keys that you will need. The key
-type is interface{} so a key can be of any type that supports equality.
-Here we define a key using a custom int type to avoid name collisions:
-
-	package foo
-
-	import (
-		"github.com/gorilla/context"
-	)
-
-	type key int
-
-	const MyKey key = 0
-
-Then set a variable. Variables are bound to an http.Request object, so you
-need a request instance to set a value:
-
-	context.Set(r, MyKey, "bar")
-
-The application can later access the variable using the same key you provided:
-
-	func MyHandler(w http.ResponseWriter, r *http.Request) {
-		// val is "bar".
-		val := context.Get(r, foo.MyKey)
-
-		// returns ("bar", true)
-		val, ok := context.GetOk(r, foo.MyKey)
-		// ...
-	}
-
-And that's all about the basic usage. We discuss some other ideas below.
-
-Any type can be stored in the context. To enforce a given type, make the key
-private and wrap Get() and Set() to accept and return values of a specific
-type:
-
-	type key int
-
-	const mykey key = 0
-
-	// GetMyKey returns a value for this package from the request values.
-	func GetMyKey(r *http.Request) SomeType {
-		if rv := context.Get(r, mykey); rv != nil {
-			return rv.(SomeType)
-		}
-		return nil
-	}
-
-	// SetMyKey sets a value for this package in the request values.
-	func SetMyKey(r *http.Request, val SomeType) {
-		context.Set(r, mykey, val)
-	}
-
-Variables must be cleared at the end of a request, to remove all values
-that were stored. This can be done in an http.Handler, after a request was
-served. Just call Clear() passing the request:
-
-	context.Clear(r)
-
-...or use ClearHandler(), which conveniently wraps an http.Handler to clear
-variables at the end of a request lifetime.
-
-The Routers from the packages gorilla/mux and gorilla/pat call Clear()
-so if you are using either of them you don't need to clear the context manually.
-*/
-package context
diff --git a/vendor/github.com/gorilla/mux/LICENSE b/vendor/github.com/gorilla/mux/LICENSE
deleted file mode 100644
index 0e5fb87280..0000000000
--- a/vendor/github.com/gorilla/mux/LICENSE
+++ /dev/null
@@ -1,27 +0,0 @@
-Copyright (c) 2012 Rodrigo Moraes. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-	 * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-	 * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-	 * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/gorilla/mux/context_gorilla.go b/vendor/github.com/gorilla/mux/context_gorilla.go
deleted file mode 100644
index d7adaa8fad..0000000000
--- a/vendor/github.com/gorilla/mux/context_gorilla.go
+++ /dev/null
@@ -1,26 +0,0 @@
-// +build !go1.7
-
-package mux
-
-import (
-	"net/http"
-
-	"github.com/gorilla/context"
-)
-
-func contextGet(r *http.Request, key interface{}) interface{} {
-	return context.Get(r, key)
-}
-
-func contextSet(r *http.Request, key, val interface{}) *http.Request {
-	if val == nil {
-		return r
-	}
-
-	context.Set(r, key, val)
-	return r
-}
-
-func contextClear(r *http.Request) {
-	context.Clear(r)
-}
diff --git a/vendor/github.com/gorilla/mux/context_native.go b/vendor/github.com/gorilla/mux/context_native.go
deleted file mode 100644
index 209cbea7d6..0000000000
--- a/vendor/github.com/gorilla/mux/context_native.go
+++ /dev/null
@@ -1,24 +0,0 @@
-// +build go1.7
-
-package mux
-
-import (
-	"context"
-	"net/http"
-)
-
-func contextGet(r *http.Request, key interface{}) interface{} {
-	return r.Context().Value(key)
-}
-
-func contextSet(r *http.Request, key, val interface{}) *http.Request {
-	if val == nil {
-		return r
-	}
-
-	return r.WithContext(context.WithValue(r.Context(), key, val))
-}
-
-func contextClear(r *http.Request) {
-	return
-}
diff --git a/vendor/github.com/gorilla/mux/doc.go b/vendor/github.com/gorilla/mux/doc.go
deleted file mode 100644
index 013f088985..0000000000
--- a/vendor/github.com/gorilla/mux/doc.go
+++ /dev/null
@@ -1,307 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-/*
-Package mux implements a request router and dispatcher.
-
-The name mux stands for "HTTP request multiplexer". Like the standard
-http.ServeMux, mux.Router matches incoming requests against a list of
-registered routes and calls a handler for the route that matches the URL
-or other conditions. The main features are:
-
-	* Requests can be matched based on URL host, path, path prefix, schemes,
-	  header and query values, HTTP methods or using custom matchers.
-	* URL hosts, paths and query values can have variables with an optional
-	  regular expression.
-	* Registered URLs can be built, or "reversed", which helps maintaining
-	  references to resources.
-	* Routes can be used as subrouters: nested routes are only tested if the
-	  parent route matches. This is useful to define groups of routes that
-	  share common conditions like a host, a path prefix or other repeated
-	  attributes. As a bonus, this optimizes request matching.
-	* It implements the http.Handler interface so it is compatible with the
-	  standard http.ServeMux.
-
-Let's start registering a couple of URL paths and handlers:
-
-	func main() {
-		r := mux.NewRouter()
-		r.HandleFunc("/", HomeHandler)
-		r.HandleFunc("/products", ProductsHandler)
-		r.HandleFunc("/articles", ArticlesHandler)
-		http.Handle("/", r)
-	}
-
-Here we register three routes mapping URL paths to handlers. This is
-equivalent to how http.HandleFunc() works: if an incoming request URL matches
-one of the paths, the corresponding handler is called passing
-(http.ResponseWriter, *http.Request) as parameters.
-
-Paths can have variables. They are defined using the format {name} or
-{name:pattern}. If a regular expression pattern is not defined, the matched
-variable will be anything until the next slash. For example:
-
-	r := mux.NewRouter()
-	r.HandleFunc("/products/{key}", ProductHandler)
-	r.HandleFunc("/articles/{category}/", ArticlesCategoryHandler)
-	r.HandleFunc("/articles/{category}/{id:[0-9]+}", ArticleHandler)
-
-Groups can be used inside patterns, as long as they are non-capturing (?:re). For example:
-
-	r.HandleFunc("/articles/{category}/{sort:(?:asc|desc|new)}", ArticlesCategoryHandler)
-
-The names are used to create a map of route variables which can be retrieved
-calling mux.Vars():
-
-	vars := mux.Vars(request)
-	category := vars["category"]
-
-Note that if any capturing groups are present, mux will panic() during parsing. To prevent
-this, convert any capturing groups to non-capturing, e.g. change "/{sort:(asc|desc)}" to
-"/{sort:(?:asc|desc)}". This is a change from prior versions which behaved unpredictably
-when capturing groups were present.
-
-And this is all you need to know about the basic usage. More advanced options
-are explained below.
-
-Routes can also be restricted to a domain or subdomain. Just define a host
-pattern to be matched. They can also have variables:
-
-	r := mux.NewRouter()
-	// Only matches if domain is "www.example.com".
-	r.Host("www.example.com")
-	// Matches a dynamic subdomain.
-	r.Host("{subdomain:[a-z]+}.domain.com")
-
-There are several other matchers that can be added. To match path prefixes:
-
-	r.PathPrefix("/products/")
-
-...or HTTP methods:
-
-	r.Methods("GET", "POST")
-
-...or URL schemes:
-
-	r.Schemes("https")
-
-...or header values:
-
-	r.Headers("X-Requested-With", "XMLHttpRequest")
-
-...or query values:
-
-	r.Queries("key", "value")
-
-...or to use a custom matcher function:
-
-	r.MatcherFunc(func(r *http.Request, rm *RouteMatch) bool {
-		return r.ProtoMajor == 0
-	})
-
-...and finally, it is possible to combine several matchers in a single route:
-
-	r.HandleFunc("/products", ProductsHandler).
-	  Host("www.example.com").
-	  Methods("GET").
-	  Schemes("http")
-
-Setting the same matching conditions again and again can be boring, so we have
-a way to group several routes that share the same requirements.
-We call it "subrouting".
-
-For example, let's say we have several URLs that should only match when the
-host is "www.example.com". Create a route for that host and get a "subrouter"
-from it:
-
-	r := mux.NewRouter()
-	s := r.Host("www.example.com").Subrouter()
-
-Then register routes in the subrouter:
-
-	s.HandleFunc("/products/", ProductsHandler)
-	s.HandleFunc("/products/{key}", ProductHandler)
-	s.HandleFunc("/articles/{category}/{id:[0-9]+}"), ArticleHandler)
-
-The three URL paths we registered above will only be tested if the domain is
-"www.example.com", because the subrouter is tested first. This is not
-only convenient, but also optimizes request matching. You can create
-subrouters combining any attribute matchers accepted by a route.
-
-Subrouters can be used to create domain or path "namespaces": you define
-subrouters in a central place and then parts of the app can register its
-paths relatively to a given subrouter.
-
-There's one more thing about subroutes. When a subrouter has a path prefix,
-the inner routes use it as base for their paths:
-
-	r := mux.NewRouter()
-	s := r.PathPrefix("/products").Subrouter()
-	// "/products/"
-	s.HandleFunc("/", ProductsHandler)
-	// "/products/{key}/"
-	s.HandleFunc("/{key}/", ProductHandler)
-	// "/products/{key}/details"
-	s.HandleFunc("/{key}/details", ProductDetailsHandler)
-
-Note that the path provided to PathPrefix() represents a "wildcard": calling
-PathPrefix("/static/").Handler(...) means that the handler will be passed any
-request that matches "/static/*". This makes it easy to serve static files with mux:
-
-	func main() {
-		var dir string
-
-		flag.StringVar(&dir, "dir", ".", "the directory to serve files from. Defaults to the current dir")
-		flag.Parse()
-		r := mux.NewRouter()
-
-		// This will serve files under http://localhost:8000/static/<filename>
-		r.PathPrefix("/static/").Handler(http.StripPrefix("/static/", http.FileServer(http.Dir(dir))))
-
-		srv := &http.Server{
-			Handler:      r,
-			Addr:         "127.0.0.1:8000",
-			// Good practice: enforce timeouts for servers you create!
-			WriteTimeout: 15 * time.Second,
-			ReadTimeout:  15 * time.Second,
-		}
-
-		log.Fatal(srv.ListenAndServe())
-	}
-
-Now let's see how to build registered URLs.
-
-Routes can be named. All routes that define a name can have their URLs built,
-or "reversed". We define a name calling Name() on a route. For example:
-
-	r := mux.NewRouter()
-	r.HandleFunc("/articles/{category}/{id:[0-9]+}", ArticleHandler).
-	  Name("article")
-
-To build a URL, get the route and call the URL() method, passing a sequence of
-key/value pairs for the route variables. For the previous route, we would do:
-
-	url, err := r.Get("article").URL("category", "technology", "id", "42")
-
-...and the result will be a url.URL with the following path:
-
-	"/articles/technology/42"
-
-This also works for host and query value variables:
-
-	r := mux.NewRouter()
-	r.Host("{subdomain}.domain.com").
-	  Path("/articles/{category}/{id:[0-9]+}").
-	  Queries("filter", "{filter}").
-	  HandlerFunc(ArticleHandler).
-	  Name("article")
-
-	// url.String() will be "http://news.domain.com/articles/technology/42?filter=gorilla"
-	url, err := r.Get("article").URL("subdomain", "news",
-	                                 "category", "technology",
-	                                 "id", "42",
-	                                 "filter", "gorilla")
-
-All variables defined in the route are required, and their values must
-conform to the corresponding patterns. These requirements guarantee that a
-generated URL will always match a registered route -- the only exception is
-for explicitly defined "build-only" routes which never match.
-
-Regex support also exists for matching Headers within a route. For example, we could do:
-
-	r.HeadersRegexp("Content-Type", "application/(text|json)")
-
-...and the route will match both requests with a Content-Type of `application/json` as well as
-`application/text`
-
-There's also a way to build only the URL host or path for a route:
-use the methods URLHost() or URLPath() instead. For the previous route,
-we would do:
-
-	// "http://news.domain.com/"
-	host, err := r.Get("article").URLHost("subdomain", "news")
-
-	// "/articles/technology/42"
-	path, err := r.Get("article").URLPath("category", "technology", "id", "42")
-
-And if you use subrouters, host and path defined separately can be built
-as well:
-
-	r := mux.NewRouter()
-	s := r.Host("{subdomain}.domain.com").Subrouter()
-	s.Path("/articles/{category}/{id:[0-9]+}").
-	  HandlerFunc(ArticleHandler).
-	  Name("article")
-
-	// "http://news.domain.com/articles/technology/42"
-	url, err := r.Get("article").URL("subdomain", "news",
-	                                 "category", "technology",
-	                                 "id", "42")
-
-Since **vX.Y.Z**, mux supports the addition of middlewares to a [Router](https://godoc.org/github.com/gorilla/mux#Router), which are executed if a
-match is found (including subrouters). Middlewares are defined using the de facto standard type:
-
-	type MiddlewareFunc func(http.Handler) http.Handler
-
-Typically, the returned handler is a closure which does something with the http.ResponseWriter and http.Request passed to it, and then calls the handler passed as parameter to the MiddlewareFunc (closures can access variables from the context where they are created).
-
-A very basic middleware which logs the URI of the request being handled could be written as:
-
-	func simpleMw(next http.Handler) http.Handler {
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			// Do stuff here
-			log.Println(r.RequestURI)
-			// Call the next handler, which can be another middleware in the chain, or the final handler.
-			next.ServeHTTP(w, r)
-		})
-	}
-
-Middlewares can be added to a router using `Router.Use()`:
-
-	r := mux.NewRouter()
-	r.HandleFunc("/", handler)
-	r.AddMiddleware(simpleMw)
-
-A more complex authentication middleware, which maps session token to users, could be written as:
-
-	// Define our struct
-	type authenticationMiddleware struct {
-		tokenUsers map[string]string
-	}
-
-	// Initialize it somewhere
-	func (amw *authenticationMiddleware) Populate() {
-		amw.tokenUsers["00000000"] = "user0"
-		amw.tokenUsers["aaaaaaaa"] = "userA"
-		amw.tokenUsers["05f717e5"] = "randomUser"
-		amw.tokenUsers["deadbeef"] = "user0"
-	}
-
-	// Middleware function, which will be called for each request
-	func (amw *authenticationMiddleware) Middleware(next http.Handler) http.Handler {
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			token := r.Header.Get("X-Session-Token")
-
-			if user, found := amw.tokenUsers[token]; found {
-				// We found the token in our map
-				log.Printf("Authenticated user %s\n", user)
-				next.ServeHTTP(w, r)
-			} else {
-				http.Error(w, "Forbidden", 403)
-			}
-		})
-	}
-
-	r := mux.NewRouter()
-	r.HandleFunc("/", handler)
-
-	amw := authenticationMiddleware{}
-	amw.Populate()
-
-	r.Use(amw.Middleware)
-
-Note: The handler chain will be stopped if your middleware doesn't call `next.ServeHTTP()` with the corresponding parameters. This can be used to abort a request if the middleware writer wants to.
-
-*/
-package mux
diff --git a/vendor/github.com/gorilla/mux/middleware.go b/vendor/github.com/gorilla/mux/middleware.go
deleted file mode 100644
index 8f898675ea..0000000000
--- a/vendor/github.com/gorilla/mux/middleware.go
+++ /dev/null
@@ -1,28 +0,0 @@
-package mux
-
-import "net/http"
-
-// MiddlewareFunc is a function which receives an http.Handler and returns another http.Handler.
-// Typically, the returned handler is a closure which does something with the http.ResponseWriter and http.Request passed
-// to it, and then calls the handler passed as parameter to the MiddlewareFunc.
-type MiddlewareFunc func(http.Handler) http.Handler
-
-// middleware interface is anything which implements a MiddlewareFunc named Middleware.
-type middleware interface {
-	Middleware(handler http.Handler) http.Handler
-}
-
-// MiddlewareFunc also implements the middleware interface.
-func (mw MiddlewareFunc) Middleware(handler http.Handler) http.Handler {
-	return mw(handler)
-}
-
-// Use appends a MiddlewareFunc to the chain. Middleware can be used to intercept or otherwise modify requests and/or responses, and are executed in the order that they are applied to the Router.
-func (r *Router) Use(mwf MiddlewareFunc) {
-	r.middlewares = append(r.middlewares, mwf)
-}
-
-// useInterface appends a middleware to the chain. Middleware can be used to intercept or otherwise modify requests and/or responses, and are executed in the order that they are applied to the Router.
-func (r *Router) useInterface(mw middleware) {
-	r.middlewares = append(r.middlewares, mw)
-}
diff --git a/vendor/github.com/gorilla/mux/mux.go b/vendor/github.com/gorilla/mux/mux.go
deleted file mode 100644
index efabd24175..0000000000
--- a/vendor/github.com/gorilla/mux/mux.go
+++ /dev/null
@@ -1,585 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package mux
-
-import (
-	"errors"
-	"fmt"
-	"net/http"
-	"path"
-	"regexp"
-)
-
-var (
-	ErrMethodMismatch = errors.New("method is not allowed")
-	ErrNotFound       = errors.New("no matching route was found")
-)
-
-// NewRouter returns a new router instance.
-func NewRouter() *Router {
-	return &Router{namedRoutes: make(map[string]*Route), KeepContext: false}
-}
-
-// Router registers routes to be matched and dispatches a handler.
-//
-// It implements the http.Handler interface, so it can be registered to serve
-// requests:
-//
-//     var router = mux.NewRouter()
-//
-//     func main() {
-//         http.Handle("/", router)
-//     }
-//
-// Or, for Google App Engine, register it in a init() function:
-//
-//     func init() {
-//         http.Handle("/", router)
-//     }
-//
-// This will send all incoming requests to the router.
-type Router struct {
-	// Configurable Handler to be used when no route matches.
-	NotFoundHandler http.Handler
-
-	// Configurable Handler to be used when the request method does not match the route.
-	MethodNotAllowedHandler http.Handler
-
-	// Parent route, if this is a subrouter.
-	parent parentRoute
-	// Routes to be matched, in order.
-	routes []*Route
-	// Routes by name for URL building.
-	namedRoutes map[string]*Route
-	// See Router.StrictSlash(). This defines the flag for new routes.
-	strictSlash bool
-	// See Router.SkipClean(). This defines the flag for new routes.
-	skipClean bool
-	// If true, do not clear the request context after handling the request.
-	// This has no effect when go1.7+ is used, since the context is stored
-	// on the request itself.
-	KeepContext bool
-	// see Router.UseEncodedPath(). This defines a flag for all routes.
-	useEncodedPath bool
-	// Slice of middlewares to be called after a match is found
-	middlewares []middleware
-}
-
-// Match attempts to match the given request against the router's registered routes.
-//
-// If the request matches a route of this router or one of its subrouters the Route,
-// Handler, and Vars fields of the the match argument are filled and this function
-// returns true.
-//
-// If the request does not match any of this router's or its subrouters' routes
-// then this function returns false. If available, a reason for the match failure
-// will be filled in the match argument's MatchErr field. If the match failure type
-// (eg: not found) has a registered handler, the handler is assigned to the Handler
-// field of the match argument.
-func (r *Router) Match(req *http.Request, match *RouteMatch) bool {
-	for _, route := range r.routes {
-		if route.Match(req, match) {
-			// Build middleware chain if no error was found
-			if match.MatchErr == nil {
-				for i := len(r.middlewares) - 1; i >= 0; i-- {
-					match.Handler = r.middlewares[i].Middleware(match.Handler)
-				}
-			}
-			return true
-		}
-	}
-
-	if match.MatchErr == ErrMethodMismatch {
-		if r.MethodNotAllowedHandler != nil {
-			match.Handler = r.MethodNotAllowedHandler
-			return true
-		} else {
-			return false
-		}
-	}
-
-	// Closest match for a router (includes sub-routers)
-	if r.NotFoundHandler != nil {
-		match.Handler = r.NotFoundHandler
-		match.MatchErr = ErrNotFound
-		return true
-	}
-
-	match.MatchErr = ErrNotFound
-	return false
-}
-
-// ServeHTTP dispatches the handler registered in the matched route.
-//
-// When there is a match, the route variables can be retrieved calling
-// mux.Vars(request).
-func (r *Router) ServeHTTP(w http.ResponseWriter, req *http.Request) {
-	if !r.skipClean {
-		path := req.URL.Path
-		if r.useEncodedPath {
-			path = req.URL.EscapedPath()
-		}
-		// Clean path to canonical form and redirect.
-		if p := cleanPath(path); p != path {
-
-			// Added 3 lines (Philip Schlump) - It was dropping the query string and #whatever from query.
-			// This matches with fix in go 1.2 r.c. 4 for same problem.  Go Issue:
-			// http://code.google.com/p/go/issues/detail?id=5252
-			url := *req.URL
-			url.Path = p
-			p = url.String()
-
-			w.Header().Set("Location", p)
-			w.WriteHeader(http.StatusMovedPermanently)
-			return
-		}
-	}
-	var match RouteMatch
-	var handler http.Handler
-	if r.Match(req, &match) {
-		handler = match.Handler
-		req = setVars(req, match.Vars)
-		req = setCurrentRoute(req, match.Route)
-	}
-
-	if handler == nil && match.MatchErr == ErrMethodMismatch {
-		handler = methodNotAllowedHandler()
-	}
-
-	if handler == nil {
-		handler = http.NotFoundHandler()
-	}
-
-	if !r.KeepContext {
-		defer contextClear(req)
-	}
-
-	handler.ServeHTTP(w, req)
-}
-
-// Get returns a route registered with the given name.
-func (r *Router) Get(name string) *Route {
-	return r.getNamedRoutes()[name]
-}
-
-// GetRoute returns a route registered with the given name. This method
-// was renamed to Get() and remains here for backwards compatibility.
-func (r *Router) GetRoute(name string) *Route {
-	return r.getNamedRoutes()[name]
-}
-
-// StrictSlash defines the trailing slash behavior for new routes. The initial
-// value is false.
-//
-// When true, if the route path is "/path/", accessing "/path" will perform a redirect
-// to the former and vice versa. In other words, your application will always
-// see the path as specified in the route.
-//
-// When false, if the route path is "/path", accessing "/path/" will not match
-// this route and vice versa.
-//
-// The re-direct is a HTTP 301 (Moved Permanently). Note that when this is set for
-// routes with a non-idempotent method (e.g. POST, PUT), the subsequent re-directed
-// request will be made as a GET by most clients. Use middleware or client settings
-// to modify this behaviour as needed.
-//
-// Special case: when a route sets a path prefix using the PathPrefix() method,
-// strict slash is ignored for that route because the redirect behavior can't
-// be determined from a prefix alone. However, any subrouters created from that
-// route inherit the original StrictSlash setting.
-func (r *Router) StrictSlash(value bool) *Router {
-	r.strictSlash = value
-	return r
-}
-
-// SkipClean defines the path cleaning behaviour for new routes. The initial
-// value is false. Users should be careful about which routes are not cleaned
-//
-// When true, if the route path is "/path//to", it will remain with the double
-// slash. This is helpful if you have a route like: /fetch/http://xkcd.com/534/
-//
-// When false, the path will be cleaned, so /fetch/http://xkcd.com/534/ will
-// become /fetch/http/xkcd.com/534
-func (r *Router) SkipClean(value bool) *Router {
-	r.skipClean = value
-	return r
-}
-
-// UseEncodedPath tells the router to match the encoded original path
-// to the routes.
-// For eg. "/path/foo%2Fbar/to" will match the path "/path/{var}/to".
-//
-// If not called, the router will match the unencoded path to the routes.
-// For eg. "/path/foo%2Fbar/to" will match the path "/path/foo/bar/to"
-func (r *Router) UseEncodedPath() *Router {
-	r.useEncodedPath = true
-	return r
-}
-
-// ----------------------------------------------------------------------------
-// parentRoute
-// ----------------------------------------------------------------------------
-
-func (r *Router) getBuildScheme() string {
-	if r.parent != nil {
-		return r.parent.getBuildScheme()
-	}
-	return ""
-}
-
-// getNamedRoutes returns the map where named routes are registered.
-func (r *Router) getNamedRoutes() map[string]*Route {
-	if r.namedRoutes == nil {
-		if r.parent != nil {
-			r.namedRoutes = r.parent.getNamedRoutes()
-		} else {
-			r.namedRoutes = make(map[string]*Route)
-		}
-	}
-	return r.namedRoutes
-}
-
-// getRegexpGroup returns regexp definitions from the parent route, if any.
-func (r *Router) getRegexpGroup() *routeRegexpGroup {
-	if r.parent != nil {
-		return r.parent.getRegexpGroup()
-	}
-	return nil
-}
-
-func (r *Router) buildVars(m map[string]string) map[string]string {
-	if r.parent != nil {
-		m = r.parent.buildVars(m)
-	}
-	return m
-}
-
-// ----------------------------------------------------------------------------
-// Route factories
-// ----------------------------------------------------------------------------
-
-// NewRoute registers an empty route.
-func (r *Router) NewRoute() *Route {
-	route := &Route{parent: r, strictSlash: r.strictSlash, skipClean: r.skipClean, useEncodedPath: r.useEncodedPath}
-	r.routes = append(r.routes, route)
-	return route
-}
-
-// Handle registers a new route with a matcher for the URL path.
-// See Route.Path() and Route.Handler().
-func (r *Router) Handle(path string, handler http.Handler) *Route {
-	return r.NewRoute().Path(path).Handler(handler)
-}
-
-// HandleFunc registers a new route with a matcher for the URL path.
-// See Route.Path() and Route.HandlerFunc().
-func (r *Router) HandleFunc(path string, f func(http.ResponseWriter,
-	*http.Request)) *Route {
-	return r.NewRoute().Path(path).HandlerFunc(f)
-}
-
-// Headers registers a new route with a matcher for request header values.
-// See Route.Headers().
-func (r *Router) Headers(pairs ...string) *Route {
-	return r.NewRoute().Headers(pairs...)
-}
-
-// Host registers a new route with a matcher for the URL host.
-// See Route.Host().
-func (r *Router) Host(tpl string) *Route {
-	return r.NewRoute().Host(tpl)
-}
-
-// MatcherFunc registers a new route with a custom matcher function.
-// See Route.MatcherFunc().
-func (r *Router) MatcherFunc(f MatcherFunc) *Route {
-	return r.NewRoute().MatcherFunc(f)
-}
-
-// Methods registers a new route with a matcher for HTTP methods.
-// See Route.Methods().
-func (r *Router) Methods(methods ...string) *Route {
-	return r.NewRoute().Methods(methods...)
-}
-
-// Path registers a new route with a matcher for the URL path.
-// See Route.Path().
-func (r *Router) Path(tpl string) *Route {
-	return r.NewRoute().Path(tpl)
-}
-
-// PathPrefix registers a new route with a matcher for the URL path prefix.
-// See Route.PathPrefix().
-func (r *Router) PathPrefix(tpl string) *Route {
-	return r.NewRoute().PathPrefix(tpl)
-}
-
-// Queries registers a new route with a matcher for URL query values.
-// See Route.Queries().
-func (r *Router) Queries(pairs ...string) *Route {
-	return r.NewRoute().Queries(pairs...)
-}
-
-// Schemes registers a new route with a matcher for URL schemes.
-// See Route.Schemes().
-func (r *Router) Schemes(schemes ...string) *Route {
-	return r.NewRoute().Schemes(schemes...)
-}
-
-// BuildVarsFunc registers a new route with a custom function for modifying
-// route variables before building a URL.
-func (r *Router) BuildVarsFunc(f BuildVarsFunc) *Route {
-	return r.NewRoute().BuildVarsFunc(f)
-}
-
-// Walk walks the router and all its sub-routers, calling walkFn for each route
-// in the tree. The routes are walked in the order they were added. Sub-routers
-// are explored depth-first.
-func (r *Router) Walk(walkFn WalkFunc) error {
-	return r.walk(walkFn, []*Route{})
-}
-
-// SkipRouter is used as a return value from WalkFuncs to indicate that the
-// router that walk is about to descend down to should be skipped.
-var SkipRouter = errors.New("skip this router")
-
-// WalkFunc is the type of the function called for each route visited by Walk.
-// At every invocation, it is given the current route, and the current router,
-// and a list of ancestor routes that lead to the current route.
-type WalkFunc func(route *Route, router *Router, ancestors []*Route) error
-
-func (r *Router) walk(walkFn WalkFunc, ancestors []*Route) error {
-	for _, t := range r.routes {
-		err := walkFn(t, r, ancestors)
-		if err == SkipRouter {
-			continue
-		}
-		if err != nil {
-			return err
-		}
-		for _, sr := range t.matchers {
-			if h, ok := sr.(*Router); ok {
-				ancestors = append(ancestors, t)
-				err := h.walk(walkFn, ancestors)
-				if err != nil {
-					return err
-				}
-				ancestors = ancestors[:len(ancestors)-1]
-			}
-		}
-		if h, ok := t.handler.(*Router); ok {
-			ancestors = append(ancestors, t)
-			err := h.walk(walkFn, ancestors)
-			if err != nil {
-				return err
-			}
-			ancestors = ancestors[:len(ancestors)-1]
-		}
-	}
-	return nil
-}
-
-// ----------------------------------------------------------------------------
-// Context
-// ----------------------------------------------------------------------------
-
-// RouteMatch stores information about a matched route.
-type RouteMatch struct {
-	Route   *Route
-	Handler http.Handler
-	Vars    map[string]string
-
-	// MatchErr is set to appropriate matching error
-	// It is set to ErrMethodMismatch if there is a mismatch in
-	// the request method and route method
-	MatchErr error
-}
-
-type contextKey int
-
-const (
-	varsKey contextKey = iota
-	routeKey
-)
-
-// Vars returns the route variables for the current request, if any.
-func Vars(r *http.Request) map[string]string {
-	if rv := contextGet(r, varsKey); rv != nil {
-		return rv.(map[string]string)
-	}
-	return nil
-}
-
-// CurrentRoute returns the matched route for the current request, if any.
-// This only works when called inside the handler of the matched route
-// because the matched route is stored in the request context which is cleared
-// after the handler returns, unless the KeepContext option is set on the
-// Router.
-func CurrentRoute(r *http.Request) *Route {
-	if rv := contextGet(r, routeKey); rv != nil {
-		return rv.(*Route)
-	}
-	return nil
-}
-
-func setVars(r *http.Request, val interface{}) *http.Request {
-	return contextSet(r, varsKey, val)
-}
-
-func setCurrentRoute(r *http.Request, val interface{}) *http.Request {
-	return contextSet(r, routeKey, val)
-}
-
-// ----------------------------------------------------------------------------
-// Helpers
-// ----------------------------------------------------------------------------
-
-// cleanPath returns the canonical path for p, eliminating . and .. elements.
-// Borrowed from the net/http package.
-func cleanPath(p string) string {
-	if p == "" {
-		return "/"
-	}
-	if p[0] != '/' {
-		p = "/" + p
-	}
-	np := path.Clean(p)
-	// path.Clean removes trailing slash except for root;
-	// put the trailing slash back if necessary.
-	if p[len(p)-1] == '/' && np != "/" {
-		np += "/"
-	}
-
-	return np
-}
-
-// uniqueVars returns an error if two slices contain duplicated strings.
-func uniqueVars(s1, s2 []string) error {
-	for _, v1 := range s1 {
-		for _, v2 := range s2 {
-			if v1 == v2 {
-				return fmt.Errorf("mux: duplicated route variable %q", v2)
-			}
-		}
-	}
-	return nil
-}
-
-// checkPairs returns the count of strings passed in, and an error if
-// the count is not an even number.
-func checkPairs(pairs ...string) (int, error) {
-	length := len(pairs)
-	if length%2 != 0 {
-		return length, fmt.Errorf(
-			"mux: number of parameters must be multiple of 2, got %v", pairs)
-	}
-	return length, nil
-}
-
-// mapFromPairsToString converts variadic string parameters to a
-// string to string map.
-func mapFromPairsToString(pairs ...string) (map[string]string, error) {
-	length, err := checkPairs(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	m := make(map[string]string, length/2)
-	for i := 0; i < length; i += 2 {
-		m[pairs[i]] = pairs[i+1]
-	}
-	return m, nil
-}
-
-// mapFromPairsToRegex converts variadic string parameters to a
-// string to regex map.
-func mapFromPairsToRegex(pairs ...string) (map[string]*regexp.Regexp, error) {
-	length, err := checkPairs(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	m := make(map[string]*regexp.Regexp, length/2)
-	for i := 0; i < length; i += 2 {
-		regex, err := regexp.Compile(pairs[i+1])
-		if err != nil {
-			return nil, err
-		}
-		m[pairs[i]] = regex
-	}
-	return m, nil
-}
-
-// matchInArray returns true if the given string value is in the array.
-func matchInArray(arr []string, value string) bool {
-	for _, v := range arr {
-		if v == value {
-			return true
-		}
-	}
-	return false
-}
-
-// matchMapWithString returns true if the given key/value pairs exist in a given map.
-func matchMapWithString(toCheck map[string]string, toMatch map[string][]string, canonicalKey bool) bool {
-	for k, v := range toCheck {
-		// Check if key exists.
-		if canonicalKey {
-			k = http.CanonicalHeaderKey(k)
-		}
-		if values := toMatch[k]; values == nil {
-			return false
-		} else if v != "" {
-			// If value was defined as an empty string we only check that the
-			// key exists. Otherwise we also check for equality.
-			valueExists := false
-			for _, value := range values {
-				if v == value {
-					valueExists = true
-					break
-				}
-			}
-			if !valueExists {
-				return false
-			}
-		}
-	}
-	return true
-}
-
-// matchMapWithRegex returns true if the given key/value pairs exist in a given map compiled against
-// the given regex
-func matchMapWithRegex(toCheck map[string]*regexp.Regexp, toMatch map[string][]string, canonicalKey bool) bool {
-	for k, v := range toCheck {
-		// Check if key exists.
-		if canonicalKey {
-			k = http.CanonicalHeaderKey(k)
-		}
-		if values := toMatch[k]; values == nil {
-			return false
-		} else if v != nil {
-			// If value was defined as an empty string we only check that the
-			// key exists. Otherwise we also check for equality.
-			valueExists := false
-			for _, value := range values {
-				if v.MatchString(value) {
-					valueExists = true
-					break
-				}
-			}
-			if !valueExists {
-				return false
-			}
-		}
-	}
-	return true
-}
-
-// methodNotAllowed replies to the request with an HTTP status code 405.
-func methodNotAllowed(w http.ResponseWriter, r *http.Request) {
-	w.WriteHeader(http.StatusMethodNotAllowed)
-}
-
-// methodNotAllowedHandler returns a simple request handler
-// that replies to each request with a status code 405.
-func methodNotAllowedHandler() http.Handler { return http.HandlerFunc(methodNotAllowed) }
diff --git a/vendor/github.com/gorilla/mux/regexp.go b/vendor/github.com/gorilla/mux/regexp.go
deleted file mode 100644
index 2b57e5627d..0000000000
--- a/vendor/github.com/gorilla/mux/regexp.go
+++ /dev/null
@@ -1,332 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package mux
-
-import (
-	"bytes"
-	"fmt"
-	"net/http"
-	"net/url"
-	"regexp"
-	"strconv"
-	"strings"
-)
-
-type routeRegexpOptions struct {
-	strictSlash    bool
-	useEncodedPath bool
-}
-
-type regexpType int
-
-const (
-	regexpTypePath   regexpType = 0
-	regexpTypeHost   regexpType = 1
-	regexpTypePrefix regexpType = 2
-	regexpTypeQuery  regexpType = 3
-)
-
-// newRouteRegexp parses a route template and returns a routeRegexp,
-// used to match a host, a path or a query string.
-//
-// It will extract named variables, assemble a regexp to be matched, create
-// a "reverse" template to build URLs and compile regexps to validate variable
-// values used in URL building.
-//
-// Previously we accepted only Python-like identifiers for variable
-// names ([a-zA-Z_][a-zA-Z0-9_]*), but currently the only restriction is that
-// name and pattern can't be empty, and names can't contain a colon.
-func newRouteRegexp(tpl string, typ regexpType, options routeRegexpOptions) (*routeRegexp, error) {
-	// Check if it is well-formed.
-	idxs, errBraces := braceIndices(tpl)
-	if errBraces != nil {
-		return nil, errBraces
-	}
-	// Backup the original.
-	template := tpl
-	// Now let's parse it.
-	defaultPattern := "[^/]+"
-	if typ == regexpTypeQuery {
-		defaultPattern = ".*"
-	} else if typ == regexpTypeHost {
-		defaultPattern = "[^.]+"
-	}
-	// Only match strict slash if not matching
-	if typ != regexpTypePath {
-		options.strictSlash = false
-	}
-	// Set a flag for strictSlash.
-	endSlash := false
-	if options.strictSlash && strings.HasSuffix(tpl, "/") {
-		tpl = tpl[:len(tpl)-1]
-		endSlash = true
-	}
-	varsN := make([]string, len(idxs)/2)
-	varsR := make([]*regexp.Regexp, len(idxs)/2)
-	pattern := bytes.NewBufferString("")
-	pattern.WriteByte('^')
-	reverse := bytes.NewBufferString("")
-	var end int
-	var err error
-	for i := 0; i < len(idxs); i += 2 {
-		// Set all values we are interested in.
-		raw := tpl[end:idxs[i]]
-		end = idxs[i+1]
-		parts := strings.SplitN(tpl[idxs[i]+1:end-1], ":", 2)
-		name := parts[0]
-		patt := defaultPattern
-		if len(parts) == 2 {
-			patt = parts[1]
-		}
-		// Name or pattern can't be empty.
-		if name == "" || patt == "" {
-			return nil, fmt.Errorf("mux: missing name or pattern in %q",
-				tpl[idxs[i]:end])
-		}
-		// Build the regexp pattern.
-		fmt.Fprintf(pattern, "%s(?P<%s>%s)", regexp.QuoteMeta(raw), varGroupName(i/2), patt)
-
-		// Build the reverse template.
-		fmt.Fprintf(reverse, "%s%%s", raw)
-
-		// Append variable name and compiled pattern.
-		varsN[i/2] = name
-		varsR[i/2], err = regexp.Compile(fmt.Sprintf("^%s$", patt))
-		if err != nil {
-			return nil, err
-		}
-	}
-	// Add the remaining.
-	raw := tpl[end:]
-	pattern.WriteString(regexp.QuoteMeta(raw))
-	if options.strictSlash {
-		pattern.WriteString("[/]?")
-	}
-	if typ == regexpTypeQuery {
-		// Add the default pattern if the query value is empty
-		if queryVal := strings.SplitN(template, "=", 2)[1]; queryVal == "" {
-			pattern.WriteString(defaultPattern)
-		}
-	}
-	if typ != regexpTypePrefix {
-		pattern.WriteByte('$')
-	}
-	reverse.WriteString(raw)
-	if endSlash {
-		reverse.WriteByte('/')
-	}
-	// Compile full regexp.
-	reg, errCompile := regexp.Compile(pattern.String())
-	if errCompile != nil {
-		return nil, errCompile
-	}
-
-	// Check for capturing groups which used to work in older versions
-	if reg.NumSubexp() != len(idxs)/2 {
-		panic(fmt.Sprintf("route %s contains capture groups in its regexp. ", template) +
-			"Only non-capturing groups are accepted: e.g. (?:pattern) instead of (pattern)")
-	}
-
-	// Done!
-	return &routeRegexp{
-		template:   template,
-		regexpType: typ,
-		options:    options,
-		regexp:     reg,
-		reverse:    reverse.String(),
-		varsN:      varsN,
-		varsR:      varsR,
-	}, nil
-}
-
-// routeRegexp stores a regexp to match a host or path and information to
-// collect and validate route variables.
-type routeRegexp struct {
-	// The unmodified template.
-	template string
-	// The type of match
-	regexpType regexpType
-	// Options for matching
-	options routeRegexpOptions
-	// Expanded regexp.
-	regexp *regexp.Regexp
-	// Reverse template.
-	reverse string
-	// Variable names.
-	varsN []string
-	// Variable regexps (validators).
-	varsR []*regexp.Regexp
-}
-
-// Match matches the regexp against the URL host or path.
-func (r *routeRegexp) Match(req *http.Request, match *RouteMatch) bool {
-	if r.regexpType != regexpTypeHost {
-		if r.regexpType == regexpTypeQuery {
-			return r.matchQueryString(req)
-		}
-		path := req.URL.Path
-		if r.options.useEncodedPath {
-			path = req.URL.EscapedPath()
-		}
-		return r.regexp.MatchString(path)
-	}
-
-	return r.regexp.MatchString(getHost(req))
-}
-
-// url builds a URL part using the given values.
-func (r *routeRegexp) url(values map[string]string) (string, error) {
-	urlValues := make([]interface{}, len(r.varsN))
-	for k, v := range r.varsN {
-		value, ok := values[v]
-		if !ok {
-			return "", fmt.Errorf("mux: missing route variable %q", v)
-		}
-		if r.regexpType == regexpTypeQuery {
-			value = url.QueryEscape(value)
-		}
-		urlValues[k] = value
-	}
-	rv := fmt.Sprintf(r.reverse, urlValues...)
-	if !r.regexp.MatchString(rv) {
-		// The URL is checked against the full regexp, instead of checking
-		// individual variables. This is faster but to provide a good error
-		// message, we check individual regexps if the URL doesn't match.
-		for k, v := range r.varsN {
-			if !r.varsR[k].MatchString(values[v]) {
-				return "", fmt.Errorf(
-					"mux: variable %q doesn't match, expected %q", values[v],
-					r.varsR[k].String())
-			}
-		}
-	}
-	return rv, nil
-}
-
-// getURLQuery returns a single query parameter from a request URL.
-// For a URL with foo=bar&baz=ding, we return only the relevant key
-// value pair for the routeRegexp.
-func (r *routeRegexp) getURLQuery(req *http.Request) string {
-	if r.regexpType != regexpTypeQuery {
-		return ""
-	}
-	templateKey := strings.SplitN(r.template, "=", 2)[0]
-	for key, vals := range req.URL.Query() {
-		if key == templateKey && len(vals) > 0 {
-			return key + "=" + vals[0]
-		}
-	}
-	return ""
-}
-
-func (r *routeRegexp) matchQueryString(req *http.Request) bool {
-	return r.regexp.MatchString(r.getURLQuery(req))
-}
-
-// braceIndices returns the first level curly brace indices from a string.
-// It returns an error in case of unbalanced braces.
-func braceIndices(s string) ([]int, error) {
-	var level, idx int
-	var idxs []int
-	for i := 0; i < len(s); i++ {
-		switch s[i] {
-		case '{':
-			if level++; level == 1 {
-				idx = i
-			}
-		case '}':
-			if level--; level == 0 {
-				idxs = append(idxs, idx, i+1)
-			} else if level < 0 {
-				return nil, fmt.Errorf("mux: unbalanced braces in %q", s)
-			}
-		}
-	}
-	if level != 0 {
-		return nil, fmt.Errorf("mux: unbalanced braces in %q", s)
-	}
-	return idxs, nil
-}
-
-// varGroupName builds a capturing group name for the indexed variable.
-func varGroupName(idx int) string {
-	return "v" + strconv.Itoa(idx)
-}
-
-// ----------------------------------------------------------------------------
-// routeRegexpGroup
-// ----------------------------------------------------------------------------
-
-// routeRegexpGroup groups the route matchers that carry variables.
-type routeRegexpGroup struct {
-	host    *routeRegexp
-	path    *routeRegexp
-	queries []*routeRegexp
-}
-
-// setMatch extracts the variables from the URL once a route matches.
-func (v *routeRegexpGroup) setMatch(req *http.Request, m *RouteMatch, r *Route) {
-	// Store host variables.
-	if v.host != nil {
-		host := getHost(req)
-		matches := v.host.regexp.FindStringSubmatchIndex(host)
-		if len(matches) > 0 {
-			extractVars(host, matches, v.host.varsN, m.Vars)
-		}
-	}
-	path := req.URL.Path
-	if r.useEncodedPath {
-		path = req.URL.EscapedPath()
-	}
-	// Store path variables.
-	if v.path != nil {
-		matches := v.path.regexp.FindStringSubmatchIndex(path)
-		if len(matches) > 0 {
-			extractVars(path, matches, v.path.varsN, m.Vars)
-			// Check if we should redirect.
-			if v.path.options.strictSlash {
-				p1 := strings.HasSuffix(path, "/")
-				p2 := strings.HasSuffix(v.path.template, "/")
-				if p1 != p2 {
-					u, _ := url.Parse(req.URL.String())
-					if p1 {
-						u.Path = u.Path[:len(u.Path)-1]
-					} else {
-						u.Path += "/"
-					}
-					m.Handler = http.RedirectHandler(u.String(), 301)
-				}
-			}
-		}
-	}
-	// Store query string variables.
-	for _, q := range v.queries {
-		queryURL := q.getURLQuery(req)
-		matches := q.regexp.FindStringSubmatchIndex(queryURL)
-		if len(matches) > 0 {
-			extractVars(queryURL, matches, q.varsN, m.Vars)
-		}
-	}
-}
-
-// getHost tries its best to return the request host.
-func getHost(r *http.Request) string {
-	if r.URL.IsAbs() {
-		return r.URL.Host
-	}
-	host := r.Host
-	// Slice off any port information.
-	if i := strings.Index(host, ":"); i != -1 {
-		host = host[:i]
-	}
-	return host
-
-}
-
-func extractVars(input string, matches []int, names []string, output map[string]string) {
-	for i, name := range names {
-		output[name] = input[matches[2*i+2]:matches[2*i+3]]
-	}
-}
diff --git a/vendor/github.com/gorilla/mux/route.go b/vendor/github.com/gorilla/mux/route.go
deleted file mode 100644
index 4ce098d4fb..0000000000
--- a/vendor/github.com/gorilla/mux/route.go
+++ /dev/null
@@ -1,761 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package mux
-
-import (
-	"errors"
-	"fmt"
-	"net/http"
-	"net/url"
-	"regexp"
-	"strings"
-)
-
-// Route stores information to match a request and build URLs.
-type Route struct {
-	// Parent where the route was registered (a Router).
-	parent parentRoute
-	// Request handler for the route.
-	handler http.Handler
-	// List of matchers.
-	matchers []matcher
-	// Manager for the variables from host and path.
-	regexp *routeRegexpGroup
-	// If true, when the path pattern is "/path/", accessing "/path" will
-	// redirect to the former and vice versa.
-	strictSlash bool
-	// If true, when the path pattern is "/path//to", accessing "/path//to"
-	// will not redirect
-	skipClean bool
-	// If true, "/path/foo%2Fbar/to" will match the path "/path/{var}/to"
-	useEncodedPath bool
-	// The scheme used when building URLs.
-	buildScheme string
-	// If true, this route never matches: it is only used to build URLs.
-	buildOnly bool
-	// The name used to build URLs.
-	name string
-	// Error resulted from building a route.
-	err error
-
-	buildVarsFunc BuildVarsFunc
-}
-
-func (r *Route) SkipClean() bool {
-	return r.skipClean
-}
-
-// Match matches the route against the request.
-func (r *Route) Match(req *http.Request, match *RouteMatch) bool {
-	if r.buildOnly || r.err != nil {
-		return false
-	}
-
-	var matchErr error
-
-	// Match everything.
-	for _, m := range r.matchers {
-		if matched := m.Match(req, match); !matched {
-			if _, ok := m.(methodMatcher); ok {
-				matchErr = ErrMethodMismatch
-				continue
-			}
-			matchErr = nil
-			return false
-		}
-	}
-
-	if matchErr != nil {
-		match.MatchErr = matchErr
-		return false
-	}
-
-	if match.MatchErr == ErrMethodMismatch {
-		// We found a route which matches request method, clear MatchErr
-		match.MatchErr = nil
-		// Then override the mis-matched handler
-		match.Handler = r.handler
-	}
-
-	// Yay, we have a match. Let's collect some info about it.
-	if match.Route == nil {
-		match.Route = r
-	}
-	if match.Handler == nil {
-		match.Handler = r.handler
-	}
-	if match.Vars == nil {
-		match.Vars = make(map[string]string)
-	}
-
-	// Set variables.
-	if r.regexp != nil {
-		r.regexp.setMatch(req, match, r)
-	}
-	return true
-}
-
-// ----------------------------------------------------------------------------
-// Route attributes
-// ----------------------------------------------------------------------------
-
-// GetError returns an error resulted from building the route, if any.
-func (r *Route) GetError() error {
-	return r.err
-}
-
-// BuildOnly sets the route to never match: it is only used to build URLs.
-func (r *Route) BuildOnly() *Route {
-	r.buildOnly = true
-	return r
-}
-
-// Handler --------------------------------------------------------------------
-
-// Handler sets a handler for the route.
-func (r *Route) Handler(handler http.Handler) *Route {
-	if r.err == nil {
-		r.handler = handler
-	}
-	return r
-}
-
-// HandlerFunc sets a handler function for the route.
-func (r *Route) HandlerFunc(f func(http.ResponseWriter, *http.Request)) *Route {
-	return r.Handler(http.HandlerFunc(f))
-}
-
-// GetHandler returns the handler for the route, if any.
-func (r *Route) GetHandler() http.Handler {
-	return r.handler
-}
-
-// Name -----------------------------------------------------------------------
-
-// Name sets the name for the route, used to build URLs.
-// If the name was registered already it will be overwritten.
-func (r *Route) Name(name string) *Route {
-	if r.name != "" {
-		r.err = fmt.Errorf("mux: route already has name %q, can't set %q",
-			r.name, name)
-	}
-	if r.err == nil {
-		r.name = name
-		r.getNamedRoutes()[name] = r
-	}
-	return r
-}
-
-// GetName returns the name for the route, if any.
-func (r *Route) GetName() string {
-	return r.name
-}
-
-// ----------------------------------------------------------------------------
-// Matchers
-// ----------------------------------------------------------------------------
-
-// matcher types try to match a request.
-type matcher interface {
-	Match(*http.Request, *RouteMatch) bool
-}
-
-// addMatcher adds a matcher to the route.
-func (r *Route) addMatcher(m matcher) *Route {
-	if r.err == nil {
-		r.matchers = append(r.matchers, m)
-	}
-	return r
-}
-
-// addRegexpMatcher adds a host or path matcher and builder to a route.
-func (r *Route) addRegexpMatcher(tpl string, typ regexpType) error {
-	if r.err != nil {
-		return r.err
-	}
-	r.regexp = r.getRegexpGroup()
-	if typ == regexpTypePath || typ == regexpTypePrefix {
-		if len(tpl) > 0 && tpl[0] != '/' {
-			return fmt.Errorf("mux: path must start with a slash, got %q", tpl)
-		}
-		if r.regexp.path != nil {
-			tpl = strings.TrimRight(r.regexp.path.template, "/") + tpl
-		}
-	}
-	rr, err := newRouteRegexp(tpl, typ, routeRegexpOptions{
-		strictSlash:    r.strictSlash,
-		useEncodedPath: r.useEncodedPath,
-	})
-	if err != nil {
-		return err
-	}
-	for _, q := range r.regexp.queries {
-		if err = uniqueVars(rr.varsN, q.varsN); err != nil {
-			return err
-		}
-	}
-	if typ == regexpTypeHost {
-		if r.regexp.path != nil {
-			if err = uniqueVars(rr.varsN, r.regexp.path.varsN); err != nil {
-				return err
-			}
-		}
-		r.regexp.host = rr
-	} else {
-		if r.regexp.host != nil {
-			if err = uniqueVars(rr.varsN, r.regexp.host.varsN); err != nil {
-				return err
-			}
-		}
-		if typ == regexpTypeQuery {
-			r.regexp.queries = append(r.regexp.queries, rr)
-		} else {
-			r.regexp.path = rr
-		}
-	}
-	r.addMatcher(rr)
-	return nil
-}
-
-// Headers --------------------------------------------------------------------
-
-// headerMatcher matches the request against header values.
-type headerMatcher map[string]string
-
-func (m headerMatcher) Match(r *http.Request, match *RouteMatch) bool {
-	return matchMapWithString(m, r.Header, true)
-}
-
-// Headers adds a matcher for request header values.
-// It accepts a sequence of key/value pairs to be matched. For example:
-//
-//     r := mux.NewRouter()
-//     r.Headers("Content-Type", "application/json",
-//               "X-Requested-With", "XMLHttpRequest")
-//
-// The above route will only match if both request header values match.
-// If the value is an empty string, it will match any value if the key is set.
-func (r *Route) Headers(pairs ...string) *Route {
-	if r.err == nil {
-		var headers map[string]string
-		headers, r.err = mapFromPairsToString(pairs...)
-		return r.addMatcher(headerMatcher(headers))
-	}
-	return r
-}
-
-// headerRegexMatcher matches the request against the route given a regex for the header
-type headerRegexMatcher map[string]*regexp.Regexp
-
-func (m headerRegexMatcher) Match(r *http.Request, match *RouteMatch) bool {
-	return matchMapWithRegex(m, r.Header, true)
-}
-
-// HeadersRegexp accepts a sequence of key/value pairs, where the value has regex
-// support. For example:
-//
-//     r := mux.NewRouter()
-//     r.HeadersRegexp("Content-Type", "application/(text|json)",
-//               "X-Requested-With", "XMLHttpRequest")
-//
-// The above route will only match if both the request header matches both regular expressions.
-// If the value is an empty string, it will match any value if the key is set.
-// Use the start and end of string anchors (^ and $) to match an exact value.
-func (r *Route) HeadersRegexp(pairs ...string) *Route {
-	if r.err == nil {
-		var headers map[string]*regexp.Regexp
-		headers, r.err = mapFromPairsToRegex(pairs...)
-		return r.addMatcher(headerRegexMatcher(headers))
-	}
-	return r
-}
-
-// Host -----------------------------------------------------------------------
-
-// Host adds a matcher for the URL host.
-// It accepts a template with zero or more URL variables enclosed by {}.
-// Variables can define an optional regexp pattern to be matched:
-//
-// - {name} matches anything until the next dot.
-//
-// - {name:pattern} matches the given regexp pattern.
-//
-// For example:
-//
-//     r := mux.NewRouter()
-//     r.Host("www.example.com")
-//     r.Host("{subdomain}.domain.com")
-//     r.Host("{subdomain:[a-z]+}.domain.com")
-//
-// Variable names must be unique in a given route. They can be retrieved
-// calling mux.Vars(request).
-func (r *Route) Host(tpl string) *Route {
-	r.err = r.addRegexpMatcher(tpl, regexpTypeHost)
-	return r
-}
-
-// MatcherFunc ----------------------------------------------------------------
-
-// MatcherFunc is the function signature used by custom matchers.
-type MatcherFunc func(*http.Request, *RouteMatch) bool
-
-// Match returns the match for a given request.
-func (m MatcherFunc) Match(r *http.Request, match *RouteMatch) bool {
-	return m(r, match)
-}
-
-// MatcherFunc adds a custom function to be used as request matcher.
-func (r *Route) MatcherFunc(f MatcherFunc) *Route {
-	return r.addMatcher(f)
-}
-
-// Methods --------------------------------------------------------------------
-
-// methodMatcher matches the request against HTTP methods.
-type methodMatcher []string
-
-func (m methodMatcher) Match(r *http.Request, match *RouteMatch) bool {
-	return matchInArray(m, r.Method)
-}
-
-// Methods adds a matcher for HTTP methods.
-// It accepts a sequence of one or more methods to be matched, e.g.:
-// "GET", "POST", "PUT".
-func (r *Route) Methods(methods ...string) *Route {
-	for k, v := range methods {
-		methods[k] = strings.ToUpper(v)
-	}
-	return r.addMatcher(methodMatcher(methods))
-}
-
-// Path -----------------------------------------------------------------------
-
-// Path adds a matcher for the URL path.
-// It accepts a template with zero or more URL variables enclosed by {}. The
-// template must start with a "/".
-// Variables can define an optional regexp pattern to be matched:
-//
-// - {name} matches anything until the next slash.
-//
-// - {name:pattern} matches the given regexp pattern.
-//
-// For example:
-//
-//     r := mux.NewRouter()
-//     r.Path("/products/").Handler(ProductsHandler)
-//     r.Path("/products/{key}").Handler(ProductsHandler)
-//     r.Path("/articles/{category}/{id:[0-9]+}").
-//       Handler(ArticleHandler)
-//
-// Variable names must be unique in a given route. They can be retrieved
-// calling mux.Vars(request).
-func (r *Route) Path(tpl string) *Route {
-	r.err = r.addRegexpMatcher(tpl, regexpTypePath)
-	return r
-}
-
-// PathPrefix -----------------------------------------------------------------
-
-// PathPrefix adds a matcher for the URL path prefix. This matches if the given
-// template is a prefix of the full URL path. See Route.Path() for details on
-// the tpl argument.
-//
-// Note that it does not treat slashes specially ("/foobar/" will be matched by
-// the prefix "/foo") so you may want to use a trailing slash here.
-//
-// Also note that the setting of Router.StrictSlash() has no effect on routes
-// with a PathPrefix matcher.
-func (r *Route) PathPrefix(tpl string) *Route {
-	r.err = r.addRegexpMatcher(tpl, regexpTypePrefix)
-	return r
-}
-
-// Query ----------------------------------------------------------------------
-
-// Queries adds a matcher for URL query values.
-// It accepts a sequence of key/value pairs. Values may define variables.
-// For example:
-//
-//     r := mux.NewRouter()
-//     r.Queries("foo", "bar", "id", "{id:[0-9]+}")
-//
-// The above route will only match if the URL contains the defined queries
-// values, e.g.: ?foo=bar&id=42.
-//
-// It the value is an empty string, it will match any value if the key is set.
-//
-// Variables can define an optional regexp pattern to be matched:
-//
-// - {name} matches anything until the next slash.
-//
-// - {name:pattern} matches the given regexp pattern.
-func (r *Route) Queries(pairs ...string) *Route {
-	length := len(pairs)
-	if length%2 != 0 {
-		r.err = fmt.Errorf(
-			"mux: number of parameters must be multiple of 2, got %v", pairs)
-		return nil
-	}
-	for i := 0; i < length; i += 2 {
-		if r.err = r.addRegexpMatcher(pairs[i]+"="+pairs[i+1], regexpTypeQuery); r.err != nil {
-			return r
-		}
-	}
-
-	return r
-}
-
-// Schemes --------------------------------------------------------------------
-
-// schemeMatcher matches the request against URL schemes.
-type schemeMatcher []string
-
-func (m schemeMatcher) Match(r *http.Request, match *RouteMatch) bool {
-	return matchInArray(m, r.URL.Scheme)
-}
-
-// Schemes adds a matcher for URL schemes.
-// It accepts a sequence of schemes to be matched, e.g.: "http", "https".
-func (r *Route) Schemes(schemes ...string) *Route {
-	for k, v := range schemes {
-		schemes[k] = strings.ToLower(v)
-	}
-	if r.buildScheme == "" && len(schemes) > 0 {
-		r.buildScheme = schemes[0]
-	}
-	return r.addMatcher(schemeMatcher(schemes))
-}
-
-// BuildVarsFunc --------------------------------------------------------------
-
-// BuildVarsFunc is the function signature used by custom build variable
-// functions (which can modify route variables before a route's URL is built).
-type BuildVarsFunc func(map[string]string) map[string]string
-
-// BuildVarsFunc adds a custom function to be used to modify build variables
-// before a route's URL is built.
-func (r *Route) BuildVarsFunc(f BuildVarsFunc) *Route {
-	r.buildVarsFunc = f
-	return r
-}
-
-// Subrouter ------------------------------------------------------------------
-
-// Subrouter creates a subrouter for the route.
-//
-// It will test the inner routes only if the parent route matched. For example:
-//
-//     r := mux.NewRouter()
-//     s := r.Host("www.example.com").Subrouter()
-//     s.HandleFunc("/products/", ProductsHandler)
-//     s.HandleFunc("/products/{key}", ProductHandler)
-//     s.HandleFunc("/articles/{category}/{id:[0-9]+}"), ArticleHandler)
-//
-// Here, the routes registered in the subrouter won't be tested if the host
-// doesn't match.
-func (r *Route) Subrouter() *Router {
-	router := &Router{parent: r, strictSlash: r.strictSlash}
-	r.addMatcher(router)
-	return router
-}
-
-// ----------------------------------------------------------------------------
-// URL building
-// ----------------------------------------------------------------------------
-
-// URL builds a URL for the route.
-//
-// It accepts a sequence of key/value pairs for the route variables. For
-// example, given this route:
-//
-//     r := mux.NewRouter()
-//     r.HandleFunc("/articles/{category}/{id:[0-9]+}", ArticleHandler).
-//       Name("article")
-//
-// ...a URL for it can be built using:
-//
-//     url, err := r.Get("article").URL("category", "technology", "id", "42")
-//
-// ...which will return an url.URL with the following path:
-//
-//     "/articles/technology/42"
-//
-// This also works for host variables:
-//
-//     r := mux.NewRouter()
-//     r.Host("{subdomain}.domain.com").
-//       HandleFunc("/articles/{category}/{id:[0-9]+}", ArticleHandler).
-//       Name("article")
-//
-//     // url.String() will be "http://news.domain.com/articles/technology/42"
-//     url, err := r.Get("article").URL("subdomain", "news",
-//                                      "category", "technology",
-//                                      "id", "42")
-//
-// All variables defined in the route are required, and their values must
-// conform to the corresponding patterns.
-func (r *Route) URL(pairs ...string) (*url.URL, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	if r.regexp == nil {
-		return nil, errors.New("mux: route doesn't have a host or path")
-	}
-	values, err := r.prepareVars(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	var scheme, host, path string
-	queries := make([]string, 0, len(r.regexp.queries))
-	if r.regexp.host != nil {
-		if host, err = r.regexp.host.url(values); err != nil {
-			return nil, err
-		}
-		scheme = "http"
-		if s := r.getBuildScheme(); s != "" {
-			scheme = s
-		}
-	}
-	if r.regexp.path != nil {
-		if path, err = r.regexp.path.url(values); err != nil {
-			return nil, err
-		}
-	}
-	for _, q := range r.regexp.queries {
-		var query string
-		if query, err = q.url(values); err != nil {
-			return nil, err
-		}
-		queries = append(queries, query)
-	}
-	return &url.URL{
-		Scheme:   scheme,
-		Host:     host,
-		Path:     path,
-		RawQuery: strings.Join(queries, "&"),
-	}, nil
-}
-
-// URLHost builds the host part of the URL for a route. See Route.URL().
-//
-// The route must have a host defined.
-func (r *Route) URLHost(pairs ...string) (*url.URL, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	if r.regexp == nil || r.regexp.host == nil {
-		return nil, errors.New("mux: route doesn't have a host")
-	}
-	values, err := r.prepareVars(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	host, err := r.regexp.host.url(values)
-	if err != nil {
-		return nil, err
-	}
-	u := &url.URL{
-		Scheme: "http",
-		Host:   host,
-	}
-	if s := r.getBuildScheme(); s != "" {
-		u.Scheme = s
-	}
-	return u, nil
-}
-
-// URLPath builds the path part of the URL for a route. See Route.URL().
-//
-// The route must have a path defined.
-func (r *Route) URLPath(pairs ...string) (*url.URL, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	if r.regexp == nil || r.regexp.path == nil {
-		return nil, errors.New("mux: route doesn't have a path")
-	}
-	values, err := r.prepareVars(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	path, err := r.regexp.path.url(values)
-	if err != nil {
-		return nil, err
-	}
-	return &url.URL{
-		Path: path,
-	}, nil
-}
-
-// GetPathTemplate returns the template used to build the
-// route match.
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An error will be returned if the route does not define a path.
-func (r *Route) GetPathTemplate() (string, error) {
-	if r.err != nil {
-		return "", r.err
-	}
-	if r.regexp == nil || r.regexp.path == nil {
-		return "", errors.New("mux: route doesn't have a path")
-	}
-	return r.regexp.path.template, nil
-}
-
-// GetPathRegexp returns the expanded regular expression used to match route path.
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An error will be returned if the route does not define a path.
-func (r *Route) GetPathRegexp() (string, error) {
-	if r.err != nil {
-		return "", r.err
-	}
-	if r.regexp == nil || r.regexp.path == nil {
-		return "", errors.New("mux: route does not have a path")
-	}
-	return r.regexp.path.regexp.String(), nil
-}
-
-// GetQueriesRegexp returns the expanded regular expressions used to match the
-// route queries.
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An empty list will be returned if the route does not have queries.
-func (r *Route) GetQueriesRegexp() ([]string, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	if r.regexp == nil || r.regexp.queries == nil {
-		return nil, errors.New("mux: route doesn't have queries")
-	}
-	var queries []string
-	for _, query := range r.regexp.queries {
-		queries = append(queries, query.regexp.String())
-	}
-	return queries, nil
-}
-
-// GetQueriesTemplates returns the templates used to build the
-// query matching.
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An empty list will be returned if the route does not define queries.
-func (r *Route) GetQueriesTemplates() ([]string, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	if r.regexp == nil || r.regexp.queries == nil {
-		return nil, errors.New("mux: route doesn't have queries")
-	}
-	var queries []string
-	for _, query := range r.regexp.queries {
-		queries = append(queries, query.template)
-	}
-	return queries, nil
-}
-
-// GetMethods returns the methods the route matches against
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An empty list will be returned if route does not have methods.
-func (r *Route) GetMethods() ([]string, error) {
-	if r.err != nil {
-		return nil, r.err
-	}
-	for _, m := range r.matchers {
-		if methods, ok := m.(methodMatcher); ok {
-			return []string(methods), nil
-		}
-	}
-	return nil, nil
-}
-
-// GetHostTemplate returns the template used to build the
-// route match.
-// This is useful for building simple REST API documentation and for instrumentation
-// against third-party services.
-// An error will be returned if the route does not define a host.
-func (r *Route) GetHostTemplate() (string, error) {
-	if r.err != nil {
-		return "", r.err
-	}
-	if r.regexp == nil || r.regexp.host == nil {
-		return "", errors.New("mux: route doesn't have a host")
-	}
-	return r.regexp.host.template, nil
-}
-
-// prepareVars converts the route variable pairs into a map. If the route has a
-// BuildVarsFunc, it is invoked.
-func (r *Route) prepareVars(pairs ...string) (map[string]string, error) {
-	m, err := mapFromPairsToString(pairs...)
-	if err != nil {
-		return nil, err
-	}
-	return r.buildVars(m), nil
-}
-
-func (r *Route) buildVars(m map[string]string) map[string]string {
-	if r.parent != nil {
-		m = r.parent.buildVars(m)
-	}
-	if r.buildVarsFunc != nil {
-		m = r.buildVarsFunc(m)
-	}
-	return m
-}
-
-// ----------------------------------------------------------------------------
-// parentRoute
-// ----------------------------------------------------------------------------
-
-// parentRoute allows routes to know about parent host and path definitions.
-type parentRoute interface {
-	getBuildScheme() string
-	getNamedRoutes() map[string]*Route
-	getRegexpGroup() *routeRegexpGroup
-	buildVars(map[string]string) map[string]string
-}
-
-func (r *Route) getBuildScheme() string {
-	if r.buildScheme != "" {
-		return r.buildScheme
-	}
-	if r.parent != nil {
-		return r.parent.getBuildScheme()
-	}
-	return ""
-}
-
-// getNamedRoutes returns the map where named routes are registered.
-func (r *Route) getNamedRoutes() map[string]*Route {
-	if r.parent == nil {
-		// During tests router is not always set.
-		r.parent = NewRouter()
-	}
-	return r.parent.getNamedRoutes()
-}
-
-// getRegexpGroup returns regexp definitions from this route.
-func (r *Route) getRegexpGroup() *routeRegexpGroup {
-	if r.regexp == nil {
-		if r.parent == nil {
-			// During tests router is not always set.
-			r.parent = NewRouter()
-		}
-		regexp := r.parent.getRegexpGroup()
-		if regexp == nil {
-			r.regexp = new(routeRegexpGroup)
-		} else {
-			// Copy.
-			r.regexp = &routeRegexpGroup{
-				host:    regexp.host,
-				path:    regexp.path,
-				queries: regexp.queries,
-			}
-		}
-	}
-	return r.regexp
-}
diff --git a/vendor/github.com/gorilla/mux/test_helpers.go b/vendor/github.com/gorilla/mux/test_helpers.go
deleted file mode 100644
index 8b2c4a4c58..0000000000
--- a/vendor/github.com/gorilla/mux/test_helpers.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// Copyright 2012 The Gorilla Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package mux
-
-import "net/http"
-
-// SetURLVars sets the URL variables for the given request, to be accessed via
-// mux.Vars for testing route behaviour.
-//
-// This API should only be used for testing purposes; it provides a way to
-// inject variables into the request context. Alternatively, URL variables
-// can be set by making a route that captures the required variables,
-// starting a server and sending the request to that server.
-func SetURLVars(r *http.Request, val map[string]string) *http.Request {
-	return setVars(r, val)
-}
diff --git a/vendor/github.com/imdario/mergo/LICENSE b/vendor/github.com/imdario/mergo/LICENSE
deleted file mode 100644
index 686680298d..0000000000
--- a/vendor/github.com/imdario/mergo/LICENSE
+++ /dev/null
@@ -1,28 +0,0 @@
-Copyright (c) 2013 Dario Castañé. All rights reserved.
-Copyright (c) 2012 The Go Authors. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-   * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-   * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-   * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/imdario/mergo/doc.go b/vendor/github.com/imdario/mergo/doc.go
deleted file mode 100644
index 6e9aa7baf3..0000000000
--- a/vendor/github.com/imdario/mergo/doc.go
+++ /dev/null
@@ -1,44 +0,0 @@
-// Copyright 2013 Dario Castañé. All rights reserved.
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-/*
-Package mergo merges same-type structs and maps by setting default values in zero-value fields.
-
-Mergo won't merge unexported (private) fields but will do recursively any exported one. It also won't merge structs inside maps (because they are not addressable using Go reflection).
-
-Usage
-
-From my own work-in-progress project:
-
-	type networkConfig struct {
-		Protocol string
-		Address string
-		ServerType string `json: "server_type"`
-		Port uint16
-	}
-
-	type FssnConfig struct {
-		Network networkConfig
-	}
-
-	var fssnDefault = FssnConfig {
-		networkConfig {
-			"tcp",
-			"127.0.0.1",
-			"http",
-			31560,
-		},
-	}
-
-	// Inside a function [...]
-
-	if err := mergo.Merge(&config, fssnDefault); err != nil {
-		log.Fatal(err)
-	}
-
-	// More code [...]
-
-*/
-package mergo
diff --git a/vendor/github.com/imdario/mergo/map.go b/vendor/github.com/imdario/mergo/map.go
deleted file mode 100644
index 6ea38e636b..0000000000
--- a/vendor/github.com/imdario/mergo/map.go
+++ /dev/null
@@ -1,174 +0,0 @@
-// Copyright 2014 Dario Castañé. All rights reserved.
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Based on src/pkg/reflect/deepequal.go from official
-// golang's stdlib.
-
-package mergo
-
-import (
-	"fmt"
-	"reflect"
-	"unicode"
-	"unicode/utf8"
-)
-
-func changeInitialCase(s string, mapper func(rune) rune) string {
-	if s == "" {
-		return s
-	}
-	r, n := utf8.DecodeRuneInString(s)
-	return string(mapper(r)) + s[n:]
-}
-
-func isExported(field reflect.StructField) bool {
-	r, _ := utf8.DecodeRuneInString(field.Name)
-	return r >= 'A' && r <= 'Z'
-}
-
-// Traverses recursively both values, assigning src's fields values to dst.
-// The map argument tracks comparisons that have already been seen, which allows
-// short circuiting on recursive types.
-func deepMap(dst, src reflect.Value, visited map[uintptr]*visit, depth int, config *Config) (err error) {
-	overwrite := config.Overwrite
-	if dst.CanAddr() {
-		addr := dst.UnsafeAddr()
-		h := 17 * addr
-		seen := visited[h]
-		typ := dst.Type()
-		for p := seen; p != nil; p = p.next {
-			if p.ptr == addr && p.typ == typ {
-				return nil
-			}
-		}
-		// Remember, remember...
-		visited[h] = &visit{addr, typ, seen}
-	}
-	zeroValue := reflect.Value{}
-	switch dst.Kind() {
-	case reflect.Map:
-		dstMap := dst.Interface().(map[string]interface{})
-		for i, n := 0, src.NumField(); i < n; i++ {
-			srcType := src.Type()
-			field := srcType.Field(i)
-			if !isExported(field) {
-				continue
-			}
-			fieldName := field.Name
-			fieldName = changeInitialCase(fieldName, unicode.ToLower)
-			if v, ok := dstMap[fieldName]; !ok || (isEmptyValue(reflect.ValueOf(v)) || overwrite) {
-				dstMap[fieldName] = src.Field(i).Interface()
-			}
-		}
-	case reflect.Ptr:
-		if dst.IsNil() {
-			v := reflect.New(dst.Type().Elem())
-			dst.Set(v)
-		}
-		dst = dst.Elem()
-		fallthrough
-	case reflect.Struct:
-		srcMap := src.Interface().(map[string]interface{})
-		for key := range srcMap {
-			srcValue := srcMap[key]
-			fieldName := changeInitialCase(key, unicode.ToUpper)
-			dstElement := dst.FieldByName(fieldName)
-			if dstElement == zeroValue {
-				// We discard it because the field doesn't exist.
-				continue
-			}
-			srcElement := reflect.ValueOf(srcValue)
-			dstKind := dstElement.Kind()
-			srcKind := srcElement.Kind()
-			if srcKind == reflect.Ptr && dstKind != reflect.Ptr {
-				srcElement = srcElement.Elem()
-				srcKind = reflect.TypeOf(srcElement.Interface()).Kind()
-			} else if dstKind == reflect.Ptr {
-				// Can this work? I guess it can't.
-				if srcKind != reflect.Ptr && srcElement.CanAddr() {
-					srcPtr := srcElement.Addr()
-					srcElement = reflect.ValueOf(srcPtr)
-					srcKind = reflect.Ptr
-				}
-			}
-
-			if !srcElement.IsValid() {
-				continue
-			}
-			if srcKind == dstKind {
-				if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
-					return
-				}
-			} else if dstKind == reflect.Interface && dstElement.Kind() == reflect.Interface {
-				if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
-					return
-				}
-			} else if srcKind == reflect.Map {
-				if err = deepMap(dstElement, srcElement, visited, depth+1, config); err != nil {
-					return
-				}
-			} else {
-				return fmt.Errorf("type mismatch on %s field: found %v, expected %v", fieldName, srcKind, dstKind)
-			}
-		}
-	}
-	return
-}
-
-// Map sets fields' values in dst from src.
-// src can be a map with string keys or a struct. dst must be the opposite:
-// if src is a map, dst must be a valid pointer to struct. If src is a struct,
-// dst must be map[string]interface{}.
-// It won't merge unexported (private) fields and will do recursively
-// any exported field.
-// If dst is a map, keys will be src fields' names in lower camel case.
-// Missing key in src that doesn't match a field in dst will be skipped. This
-// doesn't apply if dst is a map.
-// This is separated method from Merge because it is cleaner and it keeps sane
-// semantics: merging equal types, mapping different (restricted) types.
-func Map(dst, src interface{}, opts ...func(*Config)) error {
-	return _map(dst, src, opts...)
-}
-
-// MapWithOverwrite will do the same as Map except that non-empty dst attributes will be overridden by
-// non-empty src attribute values.
-// Deprecated: Use Map(…) with WithOverride
-func MapWithOverwrite(dst, src interface{}, opts ...func(*Config)) error {
-	return _map(dst, src, append(opts, WithOverride)...)
-}
-
-func _map(dst, src interface{}, opts ...func(*Config)) error {
-	var (
-		vDst, vSrc reflect.Value
-		err        error
-	)
-	config := &Config{}
-
-	for _, opt := range opts {
-		opt(config)
-	}
-
-	if vDst, vSrc, err = resolveValues(dst, src); err != nil {
-		return err
-	}
-	// To be friction-less, we redirect equal-type arguments
-	// to deepMerge. Only because arguments can be anything.
-	if vSrc.Kind() == vDst.Kind() {
-		return deepMerge(vDst, vSrc, make(map[uintptr]*visit), 0, config)
-	}
-	switch vSrc.Kind() {
-	case reflect.Struct:
-		if vDst.Kind() != reflect.Map {
-			return ErrExpectedMapAsDestination
-		}
-	case reflect.Map:
-		if vDst.Kind() != reflect.Struct {
-			return ErrExpectedStructAsDestination
-		}
-	default:
-		return ErrNotSupported
-	}
-	return deepMap(vDst, vSrc, make(map[uintptr]*visit), 0, config)
-}
diff --git a/vendor/github.com/imdario/mergo/merge.go b/vendor/github.com/imdario/mergo/merge.go
deleted file mode 100644
index f0e17924ac..0000000000
--- a/vendor/github.com/imdario/mergo/merge.go
+++ /dev/null
@@ -1,233 +0,0 @@
-// Copyright 2013 Dario Castañé. All rights reserved.
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Based on src/pkg/reflect/deepequal.go from official
-// golang's stdlib.
-
-package mergo
-
-import (
-	"reflect"
-)
-
-func hasExportedField(dst reflect.Value) (exported bool) {
-	for i, n := 0, dst.NumField(); i < n; i++ {
-		field := dst.Type().Field(i)
-		if field.Anonymous && dst.Field(i).Kind() == reflect.Struct {
-			exported = exported || hasExportedField(dst.Field(i))
-		} else {
-			exported = exported || len(field.PkgPath) == 0
-		}
-	}
-	return
-}
-
-type Config struct {
-	Overwrite    bool
-	AppendSlice  bool
-	Transformers Transformers
-}
-
-type Transformers interface {
-	Transformer(reflect.Type) func(dst, src reflect.Value) error
-}
-
-// Traverses recursively both values, assigning src's fields values to dst.
-// The map argument tracks comparisons that have already been seen, which allows
-// short circuiting on recursive types.
-func deepMerge(dst, src reflect.Value, visited map[uintptr]*visit, depth int, config *Config) (err error) {
-	overwrite := config.Overwrite
-
-	if !src.IsValid() {
-		return
-	}
-	if dst.CanAddr() {
-		addr := dst.UnsafeAddr()
-		h := 17 * addr
-		seen := visited[h]
-		typ := dst.Type()
-		for p := seen; p != nil; p = p.next {
-			if p.ptr == addr && p.typ == typ {
-				return nil
-			}
-		}
-		// Remember, remember...
-		visited[h] = &visit{addr, typ, seen}
-	}
-
-	if config.Transformers != nil && !isEmptyValue(dst) {
-		if fn := config.Transformers.Transformer(dst.Type()); fn != nil {
-			err = fn(dst, src)
-			return
-		}
-	}
-
-	switch dst.Kind() {
-	case reflect.Struct:
-		if hasExportedField(dst) {
-			for i, n := 0, dst.NumField(); i < n; i++ {
-				if err = deepMerge(dst.Field(i), src.Field(i), visited, depth+1, config); err != nil {
-					return
-				}
-			}
-		} else {
-			if dst.CanSet() && !isEmptyValue(src) && (overwrite || isEmptyValue(dst)) {
-				dst.Set(src)
-			}
-		}
-	case reflect.Map:
-		if dst.IsNil() && !src.IsNil() {
-			dst.Set(reflect.MakeMap(dst.Type()))
-		}
-		for _, key := range src.MapKeys() {
-			srcElement := src.MapIndex(key)
-			if !srcElement.IsValid() {
-				continue
-			}
-			dstElement := dst.MapIndex(key)
-			switch srcElement.Kind() {
-			case reflect.Chan, reflect.Func, reflect.Map, reflect.Interface, reflect.Slice:
-				if srcElement.IsNil() {
-					continue
-				}
-				fallthrough
-			default:
-				if !srcElement.CanInterface() {
-					continue
-				}
-				switch reflect.TypeOf(srcElement.Interface()).Kind() {
-				case reflect.Struct:
-					fallthrough
-				case reflect.Ptr:
-					fallthrough
-				case reflect.Map:
-					if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
-						return
-					}
-				case reflect.Slice:
-					srcSlice := reflect.ValueOf(srcElement.Interface())
-
-					var dstSlice reflect.Value
-					if !dstElement.IsValid() || dstElement.IsNil() {
-						dstSlice = reflect.MakeSlice(srcSlice.Type(), 0, srcSlice.Len())
-					} else {
-						dstSlice = reflect.ValueOf(dstElement.Interface())
-					}
-
-					dstSlice = reflect.AppendSlice(dstSlice, srcSlice)
-					dst.SetMapIndex(key, dstSlice)
-				}
-			}
-			if dstElement.IsValid() && reflect.TypeOf(srcElement.Interface()).Kind() == reflect.Map {
-				continue
-			}
-
-			if srcElement.IsValid() && (overwrite || (!dstElement.IsValid() || isEmptyValue(dst))) {
-				if dst.IsNil() {
-					dst.Set(reflect.MakeMap(dst.Type()))
-				}
-				dst.SetMapIndex(key, srcElement)
-			}
-		}
-	case reflect.Slice:
-		if !dst.CanSet() {
-			break
-		}
-		if !isEmptyValue(src) && (overwrite || isEmptyValue(dst)) && !config.AppendSlice {
-			dst.Set(src)
-		} else {
-			dst.Set(reflect.AppendSlice(dst, src))
-		}
-	case reflect.Ptr:
-		fallthrough
-	case reflect.Interface:
-		if src.IsNil() {
-			break
-		}
-		if src.Kind() != reflect.Interface {
-			if dst.IsNil() || overwrite {
-				if dst.CanSet() && (overwrite || isEmptyValue(dst)) {
-					dst.Set(src)
-				}
-			} else if src.Kind() == reflect.Ptr {
-				if err = deepMerge(dst.Elem(), src.Elem(), visited, depth+1, config); err != nil {
-					return
-				}
-			} else if dst.Elem().Type() == src.Type() {
-				if err = deepMerge(dst.Elem(), src, visited, depth+1, config); err != nil {
-					return
-				}
-			} else {
-				return ErrDifferentArgumentsTypes
-			}
-			break
-		}
-		if dst.IsNil() || overwrite {
-			if dst.CanSet() && (overwrite || isEmptyValue(dst)) {
-				dst.Set(src)
-			}
-		} else if err = deepMerge(dst.Elem(), src.Elem(), visited, depth+1, config); err != nil {
-			return
-		}
-	default:
-		if dst.CanSet() && !isEmptyValue(src) && (overwrite || isEmptyValue(dst)) {
-			dst.Set(src)
-		}
-	}
-	return
-}
-
-// Merge will fill any empty for value type attributes on the dst struct using corresponding
-// src attributes if they themselves are not empty. dst and src must be valid same-type structs
-// and dst must be a pointer to struct.
-// It won't merge unexported (private) fields and will do recursively any exported field.
-func Merge(dst, src interface{}, opts ...func(*Config)) error {
-	return merge(dst, src, opts...)
-}
-
-// MergeWithOverwrite will do the same as Merge except that non-empty dst attributes will be overriden by
-// non-empty src attribute values.
-// Deprecated: use Merge(…) with WithOverride
-func MergeWithOverwrite(dst, src interface{}, opts ...func(*Config)) error {
-	return merge(dst, src, append(opts, WithOverride)...)
-}
-
-// WithTransformers adds transformers to merge, allowing to customize the merging of some types.
-func WithTransformers(transformers Transformers) func(*Config) {
-	return func(config *Config) {
-		config.Transformers = transformers
-	}
-}
-
-// WithOverride will make merge override non-empty dst attributes with non-empty src attributes values.
-func WithOverride(config *Config) {
-	config.Overwrite = true
-}
-
-// WithAppendSlice will make merge append slices instead of overwriting it
-func WithAppendSlice(config *Config) {
-	config.AppendSlice = true
-}
-
-func merge(dst, src interface{}, opts ...func(*Config)) error {
-	var (
-		vDst, vSrc reflect.Value
-		err        error
-	)
-
-	config := &Config{}
-
-	for _, opt := range opts {
-		opt(config)
-	}
-
-	if vDst, vSrc, err = resolveValues(dst, src); err != nil {
-		return err
-	}
-	if vDst.Type() != vSrc.Type() {
-		return ErrDifferentArgumentsTypes
-	}
-	return deepMerge(vDst, vSrc, make(map[uintptr]*visit), 0, config)
-}
diff --git a/vendor/github.com/imdario/mergo/mergo.go b/vendor/github.com/imdario/mergo/mergo.go
deleted file mode 100644
index 785618cd07..0000000000
--- a/vendor/github.com/imdario/mergo/mergo.go
+++ /dev/null
@@ -1,92 +0,0 @@
-// Copyright 2013 Dario Castañé. All rights reserved.
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Based on src/pkg/reflect/deepequal.go from official
-// golang's stdlib.
-
-package mergo
-
-import (
-	"errors"
-	"reflect"
-)
-
-// Errors reported by Mergo when it finds invalid arguments.
-var (
-	ErrNilArguments                = errors.New("src and dst must not be nil")
-	ErrDifferentArgumentsTypes     = errors.New("src and dst must be of same type")
-	ErrNotSupported                = errors.New("only structs and maps are supported")
-	ErrExpectedMapAsDestination    = errors.New("dst was expected to be a map")
-	ErrExpectedStructAsDestination = errors.New("dst was expected to be a struct")
-)
-
-// During deepMerge, must keep track of checks that are
-// in progress.  The comparison algorithm assumes that all
-// checks in progress are true when it reencounters them.
-// Visited are stored in a map indexed by 17 * a1 + a2;
-type visit struct {
-	ptr  uintptr
-	typ  reflect.Type
-	next *visit
-}
-
-// From src/pkg/encoding/json/encode.go.
-func isEmptyValue(v reflect.Value) bool {
-	switch v.Kind() {
-	case reflect.Array, reflect.Map, reflect.Slice, reflect.String:
-		return v.Len() == 0
-	case reflect.Bool:
-		return !v.Bool()
-	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
-		return v.Int() == 0
-	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
-		return v.Uint() == 0
-	case reflect.Float32, reflect.Float64:
-		return v.Float() == 0
-	case reflect.Interface, reflect.Ptr, reflect.Func:
-		return v.IsNil()
-	case reflect.Invalid:
-		return true
-	}
-	return false
-}
-
-func resolveValues(dst, src interface{}) (vDst, vSrc reflect.Value, err error) {
-	if dst == nil || src == nil {
-		err = ErrNilArguments
-		return
-	}
-	vDst = reflect.ValueOf(dst).Elem()
-	if vDst.Kind() != reflect.Struct && vDst.Kind() != reflect.Map {
-		err = ErrNotSupported
-		return
-	}
-	vSrc = reflect.ValueOf(src)
-	// We check if vSrc is a pointer to dereference it.
-	if vSrc.Kind() == reflect.Ptr {
-		vSrc = vSrc.Elem()
-	}
-	return
-}
-
-// Traverses recursively both values, assigning src's fields values to dst.
-// The map argument tracks comparisons that have already been seen, which allows
-// short circuiting on recursive types.
-func deeper(dst, src reflect.Value, visited map[uintptr]*visit, depth int) (err error) {
-	if dst.CanAddr() {
-		addr := dst.UnsafeAddr()
-		h := 17 * addr
-		seen := visited[h]
-		typ := dst.Type()
-		for p := seen; p != nil; p = p.next {
-			if p.ptr == addr && p.typ == typ {
-				return nil
-			}
-		}
-		// Remember, remember...
-		visited[h] = &visit{addr, typ, seen}
-	}
-	return // TODO refactor
-}
diff --git a/vendor/github.com/imdario/mergo/testdata/license.yml b/vendor/github.com/imdario/mergo/testdata/license.yml
deleted file mode 100644
index 2f1ad0082b..0000000000
--- a/vendor/github.com/imdario/mergo/testdata/license.yml
+++ /dev/null
@@ -1,4 +0,0 @@
-import: ../../../../fossene/db/schema/thing.yml
-fields:
-    site: string
-    author: root
diff --git a/vendor/github.com/mattn/go-runewidth/LICENSE b/vendor/github.com/mattn/go-runewidth/LICENSE
deleted file mode 100644
index 91b5cef30e..0000000000
--- a/vendor/github.com/mattn/go-runewidth/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2016 Yasuhiro Matsumoto
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
diff --git a/vendor/github.com/mattn/go-runewidth/runewidth.go b/vendor/github.com/mattn/go-runewidth/runewidth.go
deleted file mode 100644
index 2164497ad9..0000000000
--- a/vendor/github.com/mattn/go-runewidth/runewidth.go
+++ /dev/null
@@ -1,1223 +0,0 @@
-package runewidth
-
-var (
-	// EastAsianWidth will be set true if the current locale is CJK
-	EastAsianWidth = IsEastAsian()
-
-	// DefaultCondition is a condition in current locale
-	DefaultCondition = &Condition{EastAsianWidth}
-)
-
-type interval struct {
-	first rune
-	last  rune
-}
-
-type table []interval
-
-func inTables(r rune, ts ...table) bool {
-	for _, t := range ts {
-		if inTable(r, t) {
-			return true
-		}
-	}
-	return false
-}
-
-func inTable(r rune, t table) bool {
-	// func (t table) IncludesRune(r rune) bool {
-	if r < t[0].first {
-		return false
-	}
-
-	bot := 0
-	top := len(t) - 1
-	for top >= bot {
-		mid := (bot + top) / 2
-
-		switch {
-		case t[mid].last < r:
-			bot = mid + 1
-		case t[mid].first > r:
-			top = mid - 1
-		default:
-			return true
-		}
-	}
-
-	return false
-}
-
-var private = table{
-	{0x00E000, 0x00F8FF}, {0x0F0000, 0x0FFFFD}, {0x100000, 0x10FFFD},
-}
-
-var nonprint = table{
-	{0x0000, 0x001F}, {0x007F, 0x009F}, {0x00AD, 0x00AD},
-	{0x070F, 0x070F}, {0x180B, 0x180E}, {0x200B, 0x200F},
-	{0x202A, 0x202E}, {0x206A, 0x206F}, {0xD800, 0xDFFF},
-	{0xFEFF, 0xFEFF}, {0xFFF9, 0xFFFB}, {0xFFFE, 0xFFFF},
-}
-
-var combining = table{
-	{0x0300, 0x036F}, {0x0483, 0x0489}, {0x0591, 0x05BD},
-	{0x05BF, 0x05BF}, {0x05C1, 0x05C2}, {0x05C4, 0x05C5},
-	{0x05C7, 0x05C7}, {0x0610, 0x061A}, {0x064B, 0x065F},
-	{0x0670, 0x0670}, {0x06D6, 0x06DC}, {0x06DF, 0x06E4},
-	{0x06E7, 0x06E8}, {0x06EA, 0x06ED}, {0x0711, 0x0711},
-	{0x0730, 0x074A}, {0x07A6, 0x07B0}, {0x07EB, 0x07F3},
-	{0x0816, 0x0819}, {0x081B, 0x0823}, {0x0825, 0x0827},
-	{0x0829, 0x082D}, {0x0859, 0x085B}, {0x08D4, 0x08E1},
-	{0x08E3, 0x0903}, {0x093A, 0x093C}, {0x093E, 0x094F},
-	{0x0951, 0x0957}, {0x0962, 0x0963}, {0x0981, 0x0983},
-	{0x09BC, 0x09BC}, {0x09BE, 0x09C4}, {0x09C7, 0x09C8},
-	{0x09CB, 0x09CD}, {0x09D7, 0x09D7}, {0x09E2, 0x09E3},
-	{0x0A01, 0x0A03}, {0x0A3C, 0x0A3C}, {0x0A3E, 0x0A42},
-	{0x0A47, 0x0A48}, {0x0A4B, 0x0A4D}, {0x0A51, 0x0A51},
-	{0x0A70, 0x0A71}, {0x0A75, 0x0A75}, {0x0A81, 0x0A83},
-	{0x0ABC, 0x0ABC}, {0x0ABE, 0x0AC5}, {0x0AC7, 0x0AC9},
-	{0x0ACB, 0x0ACD}, {0x0AE2, 0x0AE3}, {0x0B01, 0x0B03},
-	{0x0B3C, 0x0B3C}, {0x0B3E, 0x0B44}, {0x0B47, 0x0B48},
-	{0x0B4B, 0x0B4D}, {0x0B56, 0x0B57}, {0x0B62, 0x0B63},
-	{0x0B82, 0x0B82}, {0x0BBE, 0x0BC2}, {0x0BC6, 0x0BC8},
-	{0x0BCA, 0x0BCD}, {0x0BD7, 0x0BD7}, {0x0C00, 0x0C03},
-	{0x0C3E, 0x0C44}, {0x0C46, 0x0C48}, {0x0C4A, 0x0C4D},
-	{0x0C55, 0x0C56}, {0x0C62, 0x0C63}, {0x0C81, 0x0C83},
-	{0x0CBC, 0x0CBC}, {0x0CBE, 0x0CC4}, {0x0CC6, 0x0CC8},
-	{0x0CCA, 0x0CCD}, {0x0CD5, 0x0CD6}, {0x0CE2, 0x0CE3},
-	{0x0D01, 0x0D03}, {0x0D3E, 0x0D44}, {0x0D46, 0x0D48},
-	{0x0D4A, 0x0D4D}, {0x0D57, 0x0D57}, {0x0D62, 0x0D63},
-	{0x0D82, 0x0D83}, {0x0DCA, 0x0DCA}, {0x0DCF, 0x0DD4},
-	{0x0DD6, 0x0DD6}, {0x0DD8, 0x0DDF}, {0x0DF2, 0x0DF3},
-	{0x0E31, 0x0E31}, {0x0E34, 0x0E3A}, {0x0E47, 0x0E4E},
-	{0x0EB1, 0x0EB1}, {0x0EB4, 0x0EB9}, {0x0EBB, 0x0EBC},
-	{0x0EC8, 0x0ECD}, {0x0F18, 0x0F19}, {0x0F35, 0x0F35},
-	{0x0F37, 0x0F37}, {0x0F39, 0x0F39}, {0x0F3E, 0x0F3F},
-	{0x0F71, 0x0F84}, {0x0F86, 0x0F87}, {0x0F8D, 0x0F97},
-	{0x0F99, 0x0FBC}, {0x0FC6, 0x0FC6}, {0x102B, 0x103E},
-	{0x1056, 0x1059}, {0x105E, 0x1060}, {0x1062, 0x1064},
-	{0x1067, 0x106D}, {0x1071, 0x1074}, {0x1082, 0x108D},
-	{0x108F, 0x108F}, {0x109A, 0x109D}, {0x135D, 0x135F},
-	{0x1712, 0x1714}, {0x1732, 0x1734}, {0x1752, 0x1753},
-	{0x1772, 0x1773}, {0x17B4, 0x17D3}, {0x17DD, 0x17DD},
-	{0x180B, 0x180D}, {0x1885, 0x1886}, {0x18A9, 0x18A9},
-	{0x1920, 0x192B}, {0x1930, 0x193B}, {0x1A17, 0x1A1B},
-	{0x1A55, 0x1A5E}, {0x1A60, 0x1A7C}, {0x1A7F, 0x1A7F},
-	{0x1AB0, 0x1ABE}, {0x1B00, 0x1B04}, {0x1B34, 0x1B44},
-	{0x1B6B, 0x1B73}, {0x1B80, 0x1B82}, {0x1BA1, 0x1BAD},
-	{0x1BE6, 0x1BF3}, {0x1C24, 0x1C37}, {0x1CD0, 0x1CD2},
-	{0x1CD4, 0x1CE8}, {0x1CED, 0x1CED}, {0x1CF2, 0x1CF4},
-	{0x1CF8, 0x1CF9}, {0x1DC0, 0x1DF5}, {0x1DFB, 0x1DFF},
-	{0x20D0, 0x20F0}, {0x2CEF, 0x2CF1}, {0x2D7F, 0x2D7F},
-	{0x2DE0, 0x2DFF}, {0x302A, 0x302F}, {0x3099, 0x309A},
-	{0xA66F, 0xA672}, {0xA674, 0xA67D}, {0xA69E, 0xA69F},
-	{0xA6F0, 0xA6F1}, {0xA802, 0xA802}, {0xA806, 0xA806},
-	{0xA80B, 0xA80B}, {0xA823, 0xA827}, {0xA880, 0xA881},
-	{0xA8B4, 0xA8C5}, {0xA8E0, 0xA8F1}, {0xA926, 0xA92D},
-	{0xA947, 0xA953}, {0xA980, 0xA983}, {0xA9B3, 0xA9C0},
-	{0xA9E5, 0xA9E5}, {0xAA29, 0xAA36}, {0xAA43, 0xAA43},
-	{0xAA4C, 0xAA4D}, {0xAA7B, 0xAA7D}, {0xAAB0, 0xAAB0},
-	{0xAAB2, 0xAAB4}, {0xAAB7, 0xAAB8}, {0xAABE, 0xAABF},
-	{0xAAC1, 0xAAC1}, {0xAAEB, 0xAAEF}, {0xAAF5, 0xAAF6},
-	{0xABE3, 0xABEA}, {0xABEC, 0xABED}, {0xFB1E, 0xFB1E},
-	{0xFE00, 0xFE0F}, {0xFE20, 0xFE2F}, {0x101FD, 0x101FD},
-	{0x102E0, 0x102E0}, {0x10376, 0x1037A}, {0x10A01, 0x10A03},
-	{0x10A05, 0x10A06}, {0x10A0C, 0x10A0F}, {0x10A38, 0x10A3A},
-	{0x10A3F, 0x10A3F}, {0x10AE5, 0x10AE6}, {0x11000, 0x11002},
-	{0x11038, 0x11046}, {0x1107F, 0x11082}, {0x110B0, 0x110BA},
-	{0x11100, 0x11102}, {0x11127, 0x11134}, {0x11173, 0x11173},
-	{0x11180, 0x11182}, {0x111B3, 0x111C0}, {0x111CA, 0x111CC},
-	{0x1122C, 0x11237}, {0x1123E, 0x1123E}, {0x112DF, 0x112EA},
-	{0x11300, 0x11303}, {0x1133C, 0x1133C}, {0x1133E, 0x11344},
-	{0x11347, 0x11348}, {0x1134B, 0x1134D}, {0x11357, 0x11357},
-	{0x11362, 0x11363}, {0x11366, 0x1136C}, {0x11370, 0x11374},
-	{0x11435, 0x11446}, {0x114B0, 0x114C3}, {0x115AF, 0x115B5},
-	{0x115B8, 0x115C0}, {0x115DC, 0x115DD}, {0x11630, 0x11640},
-	{0x116AB, 0x116B7}, {0x1171D, 0x1172B}, {0x11C2F, 0x11C36},
-	{0x11C38, 0x11C3F}, {0x11C92, 0x11CA7}, {0x11CA9, 0x11CB6},
-	{0x16AF0, 0x16AF4}, {0x16B30, 0x16B36}, {0x16F51, 0x16F7E},
-	{0x16F8F, 0x16F92}, {0x1BC9D, 0x1BC9E}, {0x1D165, 0x1D169},
-	{0x1D16D, 0x1D172}, {0x1D17B, 0x1D182}, {0x1D185, 0x1D18B},
-	{0x1D1AA, 0x1D1AD}, {0x1D242, 0x1D244}, {0x1DA00, 0x1DA36},
-	{0x1DA3B, 0x1DA6C}, {0x1DA75, 0x1DA75}, {0x1DA84, 0x1DA84},
-	{0x1DA9B, 0x1DA9F}, {0x1DAA1, 0x1DAAF}, {0x1E000, 0x1E006},
-	{0x1E008, 0x1E018}, {0x1E01B, 0x1E021}, {0x1E023, 0x1E024},
-	{0x1E026, 0x1E02A}, {0x1E8D0, 0x1E8D6}, {0x1E944, 0x1E94A},
-	{0xE0100, 0xE01EF},
-}
-
-var doublewidth = table{
-	{0x1100, 0x115F}, {0x231A, 0x231B}, {0x2329, 0x232A},
-	{0x23E9, 0x23EC}, {0x23F0, 0x23F0}, {0x23F3, 0x23F3},
-	{0x25FD, 0x25FE}, {0x2614, 0x2615}, {0x2648, 0x2653},
-	{0x267F, 0x267F}, {0x2693, 0x2693}, {0x26A1, 0x26A1},
-	{0x26AA, 0x26AB}, {0x26BD, 0x26BE}, {0x26C4, 0x26C5},
-	{0x26CE, 0x26CE}, {0x26D4, 0x26D4}, {0x26EA, 0x26EA},
-	{0x26F2, 0x26F3}, {0x26F5, 0x26F5}, {0x26FA, 0x26FA},
-	{0x26FD, 0x26FD}, {0x2705, 0x2705}, {0x270A, 0x270B},
-	{0x2728, 0x2728}, {0x274C, 0x274C}, {0x274E, 0x274E},
-	{0x2753, 0x2755}, {0x2757, 0x2757}, {0x2795, 0x2797},
-	{0x27B0, 0x27B0}, {0x27BF, 0x27BF}, {0x2B1B, 0x2B1C},
-	{0x2B50, 0x2B50}, {0x2B55, 0x2B55}, {0x2E80, 0x2E99},
-	{0x2E9B, 0x2EF3}, {0x2F00, 0x2FD5}, {0x2FF0, 0x2FFB},
-	{0x3000, 0x303E}, {0x3041, 0x3096}, {0x3099, 0x30FF},
-	{0x3105, 0x312D}, {0x3131, 0x318E}, {0x3190, 0x31BA},
-	{0x31C0, 0x31E3}, {0x31F0, 0x321E}, {0x3220, 0x3247},
-	{0x3250, 0x32FE}, {0x3300, 0x4DBF}, {0x4E00, 0xA48C},
-	{0xA490, 0xA4C6}, {0xA960, 0xA97C}, {0xAC00, 0xD7A3},
-	{0xF900, 0xFAFF}, {0xFE10, 0xFE19}, {0xFE30, 0xFE52},
-	{0xFE54, 0xFE66}, {0xFE68, 0xFE6B}, {0xFF01, 0xFF60},
-	{0xFFE0, 0xFFE6}, {0x16FE0, 0x16FE0}, {0x17000, 0x187EC},
-	{0x18800, 0x18AF2}, {0x1B000, 0x1B001}, {0x1F004, 0x1F004},
-	{0x1F0CF, 0x1F0CF}, {0x1F18E, 0x1F18E}, {0x1F191, 0x1F19A},
-	{0x1F200, 0x1F202}, {0x1F210, 0x1F23B}, {0x1F240, 0x1F248},
-	{0x1F250, 0x1F251}, {0x1F300, 0x1F320}, {0x1F32D, 0x1F335},
-	{0x1F337, 0x1F37C}, {0x1F37E, 0x1F393}, {0x1F3A0, 0x1F3CA},
-	{0x1F3CF, 0x1F3D3}, {0x1F3E0, 0x1F3F0}, {0x1F3F4, 0x1F3F4},
-	{0x1F3F8, 0x1F43E}, {0x1F440, 0x1F440}, {0x1F442, 0x1F4FC},
-	{0x1F4FF, 0x1F53D}, {0x1F54B, 0x1F54E}, {0x1F550, 0x1F567},
-	{0x1F57A, 0x1F57A}, {0x1F595, 0x1F596}, {0x1F5A4, 0x1F5A4},
-	{0x1F5FB, 0x1F64F}, {0x1F680, 0x1F6C5}, {0x1F6CC, 0x1F6CC},
-	{0x1F6D0, 0x1F6D2}, {0x1F6EB, 0x1F6EC}, {0x1F6F4, 0x1F6F6},
-	{0x1F910, 0x1F91E}, {0x1F920, 0x1F927}, {0x1F930, 0x1F930},
-	{0x1F933, 0x1F93E}, {0x1F940, 0x1F94B}, {0x1F950, 0x1F95E},
-	{0x1F980, 0x1F991}, {0x1F9C0, 0x1F9C0}, {0x20000, 0x2FFFD},
-	{0x30000, 0x3FFFD},
-}
-
-var ambiguous = table{
-	{0x00A1, 0x00A1}, {0x00A4, 0x00A4}, {0x00A7, 0x00A8},
-	{0x00AA, 0x00AA}, {0x00AD, 0x00AE}, {0x00B0, 0x00B4},
-	{0x00B6, 0x00BA}, {0x00BC, 0x00BF}, {0x00C6, 0x00C6},
-	{0x00D0, 0x00D0}, {0x00D7, 0x00D8}, {0x00DE, 0x00E1},
-	{0x00E6, 0x00E6}, {0x00E8, 0x00EA}, {0x00EC, 0x00ED},
-	{0x00F0, 0x00F0}, {0x00F2, 0x00F3}, {0x00F7, 0x00FA},
-	{0x00FC, 0x00FC}, {0x00FE, 0x00FE}, {0x0101, 0x0101},
-	{0x0111, 0x0111}, {0x0113, 0x0113}, {0x011B, 0x011B},
-	{0x0126, 0x0127}, {0x012B, 0x012B}, {0x0131, 0x0133},
-	{0x0138, 0x0138}, {0x013F, 0x0142}, {0x0144, 0x0144},
-	{0x0148, 0x014B}, {0x014D, 0x014D}, {0x0152, 0x0153},
-	{0x0166, 0x0167}, {0x016B, 0x016B}, {0x01CE, 0x01CE},
-	{0x01D0, 0x01D0}, {0x01D2, 0x01D2}, {0x01D4, 0x01D4},
-	{0x01D6, 0x01D6}, {0x01D8, 0x01D8}, {0x01DA, 0x01DA},
-	{0x01DC, 0x01DC}, {0x0251, 0x0251}, {0x0261, 0x0261},
-	{0x02C4, 0x02C4}, {0x02C7, 0x02C7}, {0x02C9, 0x02CB},
-	{0x02CD, 0x02CD}, {0x02D0, 0x02D0}, {0x02D8, 0x02DB},
-	{0x02DD, 0x02DD}, {0x02DF, 0x02DF}, {0x0300, 0x036F},
-	{0x0391, 0x03A1}, {0x03A3, 0x03A9}, {0x03B1, 0x03C1},
-	{0x03C3, 0x03C9}, {0x0401, 0x0401}, {0x0410, 0x044F},
-	{0x0451, 0x0451}, {0x2010, 0x2010}, {0x2013, 0x2016},
-	{0x2018, 0x2019}, {0x201C, 0x201D}, {0x2020, 0x2022},
-	{0x2024, 0x2027}, {0x2030, 0x2030}, {0x2032, 0x2033},
-	{0x2035, 0x2035}, {0x203B, 0x203B}, {0x203E, 0x203E},
-	{0x2074, 0x2074}, {0x207F, 0x207F}, {0x2081, 0x2084},
-	{0x20AC, 0x20AC}, {0x2103, 0x2103}, {0x2105, 0x2105},
-	{0x2109, 0x2109}, {0x2113, 0x2113}, {0x2116, 0x2116},
-	{0x2121, 0x2122}, {0x2126, 0x2126}, {0x212B, 0x212B},
-	{0x2153, 0x2154}, {0x215B, 0x215E}, {0x2160, 0x216B},
-	{0x2170, 0x2179}, {0x2189, 0x2189}, {0x2190, 0x2199},
-	{0x21B8, 0x21B9}, {0x21D2, 0x21D2}, {0x21D4, 0x21D4},
-	{0x21E7, 0x21E7}, {0x2200, 0x2200}, {0x2202, 0x2203},
-	{0x2207, 0x2208}, {0x220B, 0x220B}, {0x220F, 0x220F},
-	{0x2211, 0x2211}, {0x2215, 0x2215}, {0x221A, 0x221A},
-	{0x221D, 0x2220}, {0x2223, 0x2223}, {0x2225, 0x2225},
-	{0x2227, 0x222C}, {0x222E, 0x222E}, {0x2234, 0x2237},
-	{0x223C, 0x223D}, {0x2248, 0x2248}, {0x224C, 0x224C},
-	{0x2252, 0x2252}, {0x2260, 0x2261}, {0x2264, 0x2267},
-	{0x226A, 0x226B}, {0x226E, 0x226F}, {0x2282, 0x2283},
-	{0x2286, 0x2287}, {0x2295, 0x2295}, {0x2299, 0x2299},
-	{0x22A5, 0x22A5}, {0x22BF, 0x22BF}, {0x2312, 0x2312},
-	{0x2460, 0x24E9}, {0x24EB, 0x254B}, {0x2550, 0x2573},
-	{0x2580, 0x258F}, {0x2592, 0x2595}, {0x25A0, 0x25A1},
-	{0x25A3, 0x25A9}, {0x25B2, 0x25B3}, {0x25B6, 0x25B7},
-	{0x25BC, 0x25BD}, {0x25C0, 0x25C1}, {0x25C6, 0x25C8},
-	{0x25CB, 0x25CB}, {0x25CE, 0x25D1}, {0x25E2, 0x25E5},
-	{0x25EF, 0x25EF}, {0x2605, 0x2606}, {0x2609, 0x2609},
-	{0x260E, 0x260F}, {0x261C, 0x261C}, {0x261E, 0x261E},
-	{0x2640, 0x2640}, {0x2642, 0x2642}, {0x2660, 0x2661},
-	{0x2663, 0x2665}, {0x2667, 0x266A}, {0x266C, 0x266D},
-	{0x266F, 0x266F}, {0x269E, 0x269F}, {0x26BF, 0x26BF},
-	{0x26C6, 0x26CD}, {0x26CF, 0x26D3}, {0x26D5, 0x26E1},
-	{0x26E3, 0x26E3}, {0x26E8, 0x26E9}, {0x26EB, 0x26F1},
-	{0x26F4, 0x26F4}, {0x26F6, 0x26F9}, {0x26FB, 0x26FC},
-	{0x26FE, 0x26FF}, {0x273D, 0x273D}, {0x2776, 0x277F},
-	{0x2B56, 0x2B59}, {0x3248, 0x324F}, {0xE000, 0xF8FF},
-	{0xFE00, 0xFE0F}, {0xFFFD, 0xFFFD}, {0x1F100, 0x1F10A},
-	{0x1F110, 0x1F12D}, {0x1F130, 0x1F169}, {0x1F170, 0x1F18D},
-	{0x1F18F, 0x1F190}, {0x1F19B, 0x1F1AC}, {0xE0100, 0xE01EF},
-	{0xF0000, 0xFFFFD}, {0x100000, 0x10FFFD},
-}
-
-var emoji = table{
-	{0x1F1E6, 0x1F1FF}, {0x1F321, 0x1F321}, {0x1F324, 0x1F32C},
-	{0x1F336, 0x1F336}, {0x1F37D, 0x1F37D}, {0x1F396, 0x1F397},
-	{0x1F399, 0x1F39B}, {0x1F39E, 0x1F39F}, {0x1F3CB, 0x1F3CE},
-	{0x1F3D4, 0x1F3DF}, {0x1F3F3, 0x1F3F5}, {0x1F3F7, 0x1F3F7},
-	{0x1F43F, 0x1F43F}, {0x1F441, 0x1F441}, {0x1F4FD, 0x1F4FD},
-	{0x1F549, 0x1F54A}, {0x1F56F, 0x1F570}, {0x1F573, 0x1F579},
-	{0x1F587, 0x1F587}, {0x1F58A, 0x1F58D}, {0x1F590, 0x1F590},
-	{0x1F5A5, 0x1F5A5}, {0x1F5A8, 0x1F5A8}, {0x1F5B1, 0x1F5B2},
-	{0x1F5BC, 0x1F5BC}, {0x1F5C2, 0x1F5C4}, {0x1F5D1, 0x1F5D3},
-	{0x1F5DC, 0x1F5DE}, {0x1F5E1, 0x1F5E1}, {0x1F5E3, 0x1F5E3},
-	{0x1F5E8, 0x1F5E8}, {0x1F5EF, 0x1F5EF}, {0x1F5F3, 0x1F5F3},
-	{0x1F5FA, 0x1F5FA}, {0x1F6CB, 0x1F6CF}, {0x1F6E0, 0x1F6E5},
-	{0x1F6E9, 0x1F6E9}, {0x1F6F0, 0x1F6F0}, {0x1F6F3, 0x1F6F3},
-}
-
-var notassigned = table{
-	{0x0378, 0x0379}, {0x0380, 0x0383}, {0x038B, 0x038B},
-	{0x038D, 0x038D}, {0x03A2, 0x03A2}, {0x0530, 0x0530},
-	{0x0557, 0x0558}, {0x0560, 0x0560}, {0x0588, 0x0588},
-	{0x058B, 0x058C}, {0x0590, 0x0590}, {0x05C8, 0x05CF},
-	{0x05EB, 0x05EF}, {0x05F5, 0x05FF}, {0x061D, 0x061D},
-	{0x070E, 0x070E}, {0x074B, 0x074C}, {0x07B2, 0x07BF},
-	{0x07FB, 0x07FF}, {0x082E, 0x082F}, {0x083F, 0x083F},
-	{0x085C, 0x085D}, {0x085F, 0x089F}, {0x08B5, 0x08B5},
-	{0x08BE, 0x08D3}, {0x0984, 0x0984}, {0x098D, 0x098E},
-	{0x0991, 0x0992}, {0x09A9, 0x09A9}, {0x09B1, 0x09B1},
-	{0x09B3, 0x09B5}, {0x09BA, 0x09BB}, {0x09C5, 0x09C6},
-	{0x09C9, 0x09CA}, {0x09CF, 0x09D6}, {0x09D8, 0x09DB},
-	{0x09DE, 0x09DE}, {0x09E4, 0x09E5}, {0x09FC, 0x0A00},
-	{0x0A04, 0x0A04}, {0x0A0B, 0x0A0E}, {0x0A11, 0x0A12},
-	{0x0A29, 0x0A29}, {0x0A31, 0x0A31}, {0x0A34, 0x0A34},
-	{0x0A37, 0x0A37}, {0x0A3A, 0x0A3B}, {0x0A3D, 0x0A3D},
-	{0x0A43, 0x0A46}, {0x0A49, 0x0A4A}, {0x0A4E, 0x0A50},
-	{0x0A52, 0x0A58}, {0x0A5D, 0x0A5D}, {0x0A5F, 0x0A65},
-	{0x0A76, 0x0A80}, {0x0A84, 0x0A84}, {0x0A8E, 0x0A8E},
-	{0x0A92, 0x0A92}, {0x0AA9, 0x0AA9}, {0x0AB1, 0x0AB1},
-	{0x0AB4, 0x0AB4}, {0x0ABA, 0x0ABB}, {0x0AC6, 0x0AC6},
-	{0x0ACA, 0x0ACA}, {0x0ACE, 0x0ACF}, {0x0AD1, 0x0ADF},
-	{0x0AE4, 0x0AE5}, {0x0AF2, 0x0AF8}, {0x0AFA, 0x0B00},
-	{0x0B04, 0x0B04}, {0x0B0D, 0x0B0E}, {0x0B11, 0x0B12},
-	{0x0B29, 0x0B29}, {0x0B31, 0x0B31}, {0x0B34, 0x0B34},
-	{0x0B3A, 0x0B3B}, {0x0B45, 0x0B46}, {0x0B49, 0x0B4A},
-	{0x0B4E, 0x0B55}, {0x0B58, 0x0B5B}, {0x0B5E, 0x0B5E},
-	{0x0B64, 0x0B65}, {0x0B78, 0x0B81}, {0x0B84, 0x0B84},
-	{0x0B8B, 0x0B8D}, {0x0B91, 0x0B91}, {0x0B96, 0x0B98},
-	{0x0B9B, 0x0B9B}, {0x0B9D, 0x0B9D}, {0x0BA0, 0x0BA2},
-	{0x0BA5, 0x0BA7}, {0x0BAB, 0x0BAD}, {0x0BBA, 0x0BBD},
-	{0x0BC3, 0x0BC5}, {0x0BC9, 0x0BC9}, {0x0BCE, 0x0BCF},
-	{0x0BD1, 0x0BD6}, {0x0BD8, 0x0BE5}, {0x0BFB, 0x0BFF},
-	{0x0C04, 0x0C04}, {0x0C0D, 0x0C0D}, {0x0C11, 0x0C11},
-	{0x0C29, 0x0C29}, {0x0C3A, 0x0C3C}, {0x0C45, 0x0C45},
-	{0x0C49, 0x0C49}, {0x0C4E, 0x0C54}, {0x0C57, 0x0C57},
-	{0x0C5B, 0x0C5F}, {0x0C64, 0x0C65}, {0x0C70, 0x0C77},
-	{0x0C84, 0x0C84}, {0x0C8D, 0x0C8D}, {0x0C91, 0x0C91},
-	{0x0CA9, 0x0CA9}, {0x0CB4, 0x0CB4}, {0x0CBA, 0x0CBB},
-	{0x0CC5, 0x0CC5}, {0x0CC9, 0x0CC9}, {0x0CCE, 0x0CD4},
-	{0x0CD7, 0x0CDD}, {0x0CDF, 0x0CDF}, {0x0CE4, 0x0CE5},
-	{0x0CF0, 0x0CF0}, {0x0CF3, 0x0D00}, {0x0D04, 0x0D04},
-	{0x0D0D, 0x0D0D}, {0x0D11, 0x0D11}, {0x0D3B, 0x0D3C},
-	{0x0D45, 0x0D45}, {0x0D49, 0x0D49}, {0x0D50, 0x0D53},
-	{0x0D64, 0x0D65}, {0x0D80, 0x0D81}, {0x0D84, 0x0D84},
-	{0x0D97, 0x0D99}, {0x0DB2, 0x0DB2}, {0x0DBC, 0x0DBC},
-	{0x0DBE, 0x0DBF}, {0x0DC7, 0x0DC9}, {0x0DCB, 0x0DCE},
-	{0x0DD5, 0x0DD5}, {0x0DD7, 0x0DD7}, {0x0DE0, 0x0DE5},
-	{0x0DF0, 0x0DF1}, {0x0DF5, 0x0E00}, {0x0E3B, 0x0E3E},
-	{0x0E5C, 0x0E80}, {0x0E83, 0x0E83}, {0x0E85, 0x0E86},
-	{0x0E89, 0x0E89}, {0x0E8B, 0x0E8C}, {0x0E8E, 0x0E93},
-	{0x0E98, 0x0E98}, {0x0EA0, 0x0EA0}, {0x0EA4, 0x0EA4},
-	{0x0EA6, 0x0EA6}, {0x0EA8, 0x0EA9}, {0x0EAC, 0x0EAC},
-	{0x0EBA, 0x0EBA}, {0x0EBE, 0x0EBF}, {0x0EC5, 0x0EC5},
-	{0x0EC7, 0x0EC7}, {0x0ECE, 0x0ECF}, {0x0EDA, 0x0EDB},
-	{0x0EE0, 0x0EFF}, {0x0F48, 0x0F48}, {0x0F6D, 0x0F70},
-	{0x0F98, 0x0F98}, {0x0FBD, 0x0FBD}, {0x0FCD, 0x0FCD},
-	{0x0FDB, 0x0FFF}, {0x10C6, 0x10C6}, {0x10C8, 0x10CC},
-	{0x10CE, 0x10CF}, {0x1249, 0x1249}, {0x124E, 0x124F},
-	{0x1257, 0x1257}, {0x1259, 0x1259}, {0x125E, 0x125F},
-	{0x1289, 0x1289}, {0x128E, 0x128F}, {0x12B1, 0x12B1},
-	{0x12B6, 0x12B7}, {0x12BF, 0x12BF}, {0x12C1, 0x12C1},
-	{0x12C6, 0x12C7}, {0x12D7, 0x12D7}, {0x1311, 0x1311},
-	{0x1316, 0x1317}, {0x135B, 0x135C}, {0x137D, 0x137F},
-	{0x139A, 0x139F}, {0x13F6, 0x13F7}, {0x13FE, 0x13FF},
-	{0x169D, 0x169F}, {0x16F9, 0x16FF}, {0x170D, 0x170D},
-	{0x1715, 0x171F}, {0x1737, 0x173F}, {0x1754, 0x175F},
-	{0x176D, 0x176D}, {0x1771, 0x1771}, {0x1774, 0x177F},
-	{0x17DE, 0x17DF}, {0x17EA, 0x17EF}, {0x17FA, 0x17FF},
-	{0x180F, 0x180F}, {0x181A, 0x181F}, {0x1878, 0x187F},
-	{0x18AB, 0x18AF}, {0x18F6, 0x18FF}, {0x191F, 0x191F},
-	{0x192C, 0x192F}, {0x193C, 0x193F}, {0x1941, 0x1943},
-	{0x196E, 0x196F}, {0x1975, 0x197F}, {0x19AC, 0x19AF},
-	{0x19CA, 0x19CF}, {0x19DB, 0x19DD}, {0x1A1C, 0x1A1D},
-	{0x1A5F, 0x1A5F}, {0x1A7D, 0x1A7E}, {0x1A8A, 0x1A8F},
-	{0x1A9A, 0x1A9F}, {0x1AAE, 0x1AAF}, {0x1ABF, 0x1AFF},
-	{0x1B4C, 0x1B4F}, {0x1B7D, 0x1B7F}, {0x1BF4, 0x1BFB},
-	{0x1C38, 0x1C3A}, {0x1C4A, 0x1C4C}, {0x1C89, 0x1CBF},
-	{0x1CC8, 0x1CCF}, {0x1CF7, 0x1CF7}, {0x1CFA, 0x1CFF},
-	{0x1DF6, 0x1DFA}, {0x1F16, 0x1F17}, {0x1F1E, 0x1F1F},
-	{0x1F46, 0x1F47}, {0x1F4E, 0x1F4F}, {0x1F58, 0x1F58},
-	{0x1F5A, 0x1F5A}, {0x1F5C, 0x1F5C}, {0x1F5E, 0x1F5E},
-	{0x1F7E, 0x1F7F}, {0x1FB5, 0x1FB5}, {0x1FC5, 0x1FC5},
-	{0x1FD4, 0x1FD5}, {0x1FDC, 0x1FDC}, {0x1FF0, 0x1FF1},
-	{0x1FF5, 0x1FF5}, {0x1FFF, 0x1FFF}, {0x2065, 0x2065},
-	{0x2072, 0x2073}, {0x208F, 0x208F}, {0x209D, 0x209F},
-	{0x20BF, 0x20CF}, {0x20F1, 0x20FF}, {0x218C, 0x218F},
-	{0x23FF, 0x23FF}, {0x2427, 0x243F}, {0x244B, 0x245F},
-	{0x2B74, 0x2B75}, {0x2B96, 0x2B97}, {0x2BBA, 0x2BBC},
-	{0x2BC9, 0x2BC9}, {0x2BD2, 0x2BEB}, {0x2BF0, 0x2BFF},
-	{0x2C2F, 0x2C2F}, {0x2C5F, 0x2C5F}, {0x2CF4, 0x2CF8},
-	{0x2D26, 0x2D26}, {0x2D28, 0x2D2C}, {0x2D2E, 0x2D2F},
-	{0x2D68, 0x2D6E}, {0x2D71, 0x2D7E}, {0x2D97, 0x2D9F},
-	{0x2DA7, 0x2DA7}, {0x2DAF, 0x2DAF}, {0x2DB7, 0x2DB7},
-	{0x2DBF, 0x2DBF}, {0x2DC7, 0x2DC7}, {0x2DCF, 0x2DCF},
-	{0x2DD7, 0x2DD7}, {0x2DDF, 0x2DDF}, {0x2E45, 0x2E7F},
-	{0x2E9A, 0x2E9A}, {0x2EF4, 0x2EFF}, {0x2FD6, 0x2FEF},
-	{0x2FFC, 0x2FFF}, {0x3040, 0x3040}, {0x3097, 0x3098},
-	{0x3100, 0x3104}, {0x312E, 0x3130}, {0x318F, 0x318F},
-	{0x31BB, 0x31BF}, {0x31E4, 0x31EF}, {0x321F, 0x321F},
-	{0x32FF, 0x32FF}, {0x4DB6, 0x4DBF}, {0x9FD6, 0x9FFF},
-	{0xA48D, 0xA48F}, {0xA4C7, 0xA4CF}, {0xA62C, 0xA63F},
-	{0xA6F8, 0xA6FF}, {0xA7AF, 0xA7AF}, {0xA7B8, 0xA7F6},
-	{0xA82C, 0xA82F}, {0xA83A, 0xA83F}, {0xA878, 0xA87F},
-	{0xA8C6, 0xA8CD}, {0xA8DA, 0xA8DF}, {0xA8FE, 0xA8FF},
-	{0xA954, 0xA95E}, {0xA97D, 0xA97F}, {0xA9CE, 0xA9CE},
-	{0xA9DA, 0xA9DD}, {0xA9FF, 0xA9FF}, {0xAA37, 0xAA3F},
-	{0xAA4E, 0xAA4F}, {0xAA5A, 0xAA5B}, {0xAAC3, 0xAADA},
-	{0xAAF7, 0xAB00}, {0xAB07, 0xAB08}, {0xAB0F, 0xAB10},
-	{0xAB17, 0xAB1F}, {0xAB27, 0xAB27}, {0xAB2F, 0xAB2F},
-	{0xAB66, 0xAB6F}, {0xABEE, 0xABEF}, {0xABFA, 0xABFF},
-	{0xD7A4, 0xD7AF}, {0xD7C7, 0xD7CA}, {0xD7FC, 0xD7FF},
-	{0xFA6E, 0xFA6F}, {0xFADA, 0xFAFF}, {0xFB07, 0xFB12},
-	{0xFB18, 0xFB1C}, {0xFB37, 0xFB37}, {0xFB3D, 0xFB3D},
-	{0xFB3F, 0xFB3F}, {0xFB42, 0xFB42}, {0xFB45, 0xFB45},
-	{0xFBC2, 0xFBD2}, {0xFD40, 0xFD4F}, {0xFD90, 0xFD91},
-	{0xFDC8, 0xFDEF}, {0xFDFE, 0xFDFF}, {0xFE1A, 0xFE1F},
-	{0xFE53, 0xFE53}, {0xFE67, 0xFE67}, {0xFE6C, 0xFE6F},
-	{0xFE75, 0xFE75}, {0xFEFD, 0xFEFE}, {0xFF00, 0xFF00},
-	{0xFFBF, 0xFFC1}, {0xFFC8, 0xFFC9}, {0xFFD0, 0xFFD1},
-	{0xFFD8, 0xFFD9}, {0xFFDD, 0xFFDF}, {0xFFE7, 0xFFE7},
-	{0xFFEF, 0xFFF8}, {0xFFFE, 0xFFFF}, {0x1000C, 0x1000C},
-	{0x10027, 0x10027}, {0x1003B, 0x1003B}, {0x1003E, 0x1003E},
-	{0x1004E, 0x1004F}, {0x1005E, 0x1007F}, {0x100FB, 0x100FF},
-	{0x10103, 0x10106}, {0x10134, 0x10136}, {0x1018F, 0x1018F},
-	{0x1019C, 0x1019F}, {0x101A1, 0x101CF}, {0x101FE, 0x1027F},
-	{0x1029D, 0x1029F}, {0x102D1, 0x102DF}, {0x102FC, 0x102FF},
-	{0x10324, 0x1032F}, {0x1034B, 0x1034F}, {0x1037B, 0x1037F},
-	{0x1039E, 0x1039E}, {0x103C4, 0x103C7}, {0x103D6, 0x103FF},
-	{0x1049E, 0x1049F}, {0x104AA, 0x104AF}, {0x104D4, 0x104D7},
-	{0x104FC, 0x104FF}, {0x10528, 0x1052F}, {0x10564, 0x1056E},
-	{0x10570, 0x105FF}, {0x10737, 0x1073F}, {0x10756, 0x1075F},
-	{0x10768, 0x107FF}, {0x10806, 0x10807}, {0x10809, 0x10809},
-	{0x10836, 0x10836}, {0x10839, 0x1083B}, {0x1083D, 0x1083E},
-	{0x10856, 0x10856}, {0x1089F, 0x108A6}, {0x108B0, 0x108DF},
-	{0x108F3, 0x108F3}, {0x108F6, 0x108FA}, {0x1091C, 0x1091E},
-	{0x1093A, 0x1093E}, {0x10940, 0x1097F}, {0x109B8, 0x109BB},
-	{0x109D0, 0x109D1}, {0x10A04, 0x10A04}, {0x10A07, 0x10A0B},
-	{0x10A14, 0x10A14}, {0x10A18, 0x10A18}, {0x10A34, 0x10A37},
-	{0x10A3B, 0x10A3E}, {0x10A48, 0x10A4F}, {0x10A59, 0x10A5F},
-	{0x10AA0, 0x10ABF}, {0x10AE7, 0x10AEA}, {0x10AF7, 0x10AFF},
-	{0x10B36, 0x10B38}, {0x10B56, 0x10B57}, {0x10B73, 0x10B77},
-	{0x10B92, 0x10B98}, {0x10B9D, 0x10BA8}, {0x10BB0, 0x10BFF},
-	{0x10C49, 0x10C7F}, {0x10CB3, 0x10CBF}, {0x10CF3, 0x10CF9},
-	{0x10D00, 0x10E5F}, {0x10E7F, 0x10FFF}, {0x1104E, 0x11051},
-	{0x11070, 0x1107E}, {0x110C2, 0x110CF}, {0x110E9, 0x110EF},
-	{0x110FA, 0x110FF}, {0x11135, 0x11135}, {0x11144, 0x1114F},
-	{0x11177, 0x1117F}, {0x111CE, 0x111CF}, {0x111E0, 0x111E0},
-	{0x111F5, 0x111FF}, {0x11212, 0x11212}, {0x1123F, 0x1127F},
-	{0x11287, 0x11287}, {0x11289, 0x11289}, {0x1128E, 0x1128E},
-	{0x1129E, 0x1129E}, {0x112AA, 0x112AF}, {0x112EB, 0x112EF},
-	{0x112FA, 0x112FF}, {0x11304, 0x11304}, {0x1130D, 0x1130E},
-	{0x11311, 0x11312}, {0x11329, 0x11329}, {0x11331, 0x11331},
-	{0x11334, 0x11334}, {0x1133A, 0x1133B}, {0x11345, 0x11346},
-	{0x11349, 0x1134A}, {0x1134E, 0x1134F}, {0x11351, 0x11356},
-	{0x11358, 0x1135C}, {0x11364, 0x11365}, {0x1136D, 0x1136F},
-	{0x11375, 0x113FF}, {0x1145A, 0x1145A}, {0x1145C, 0x1145C},
-	{0x1145E, 0x1147F}, {0x114C8, 0x114CF}, {0x114DA, 0x1157F},
-	{0x115B6, 0x115B7}, {0x115DE, 0x115FF}, {0x11645, 0x1164F},
-	{0x1165A, 0x1165F}, {0x1166D, 0x1167F}, {0x116B8, 0x116BF},
-	{0x116CA, 0x116FF}, {0x1171A, 0x1171C}, {0x1172C, 0x1172F},
-	{0x11740, 0x1189F}, {0x118F3, 0x118FE}, {0x11900, 0x11ABF},
-	{0x11AF9, 0x11BFF}, {0x11C09, 0x11C09}, {0x11C37, 0x11C37},
-	{0x11C46, 0x11C4F}, {0x11C6D, 0x11C6F}, {0x11C90, 0x11C91},
-	{0x11CA8, 0x11CA8}, {0x11CB7, 0x11FFF}, {0x1239A, 0x123FF},
-	{0x1246F, 0x1246F}, {0x12475, 0x1247F}, {0x12544, 0x12FFF},
-	{0x1342F, 0x143FF}, {0x14647, 0x167FF}, {0x16A39, 0x16A3F},
-	{0x16A5F, 0x16A5F}, {0x16A6A, 0x16A6D}, {0x16A70, 0x16ACF},
-	{0x16AEE, 0x16AEF}, {0x16AF6, 0x16AFF}, {0x16B46, 0x16B4F},
-	{0x16B5A, 0x16B5A}, {0x16B62, 0x16B62}, {0x16B78, 0x16B7C},
-	{0x16B90, 0x16EFF}, {0x16F45, 0x16F4F}, {0x16F7F, 0x16F8E},
-	{0x16FA0, 0x16FDF}, {0x16FE1, 0x16FFF}, {0x187ED, 0x187FF},
-	{0x18AF3, 0x1AFFF}, {0x1B002, 0x1BBFF}, {0x1BC6B, 0x1BC6F},
-	{0x1BC7D, 0x1BC7F}, {0x1BC89, 0x1BC8F}, {0x1BC9A, 0x1BC9B},
-	{0x1BCA4, 0x1CFFF}, {0x1D0F6, 0x1D0FF}, {0x1D127, 0x1D128},
-	{0x1D1E9, 0x1D1FF}, {0x1D246, 0x1D2FF}, {0x1D357, 0x1D35F},
-	{0x1D372, 0x1D3FF}, {0x1D455, 0x1D455}, {0x1D49D, 0x1D49D},
-	{0x1D4A0, 0x1D4A1}, {0x1D4A3, 0x1D4A4}, {0x1D4A7, 0x1D4A8},
-	{0x1D4AD, 0x1D4AD}, {0x1D4BA, 0x1D4BA}, {0x1D4BC, 0x1D4BC},
-	{0x1D4C4, 0x1D4C4}, {0x1D506, 0x1D506}, {0x1D50B, 0x1D50C},
-	{0x1D515, 0x1D515}, {0x1D51D, 0x1D51D}, {0x1D53A, 0x1D53A},
-	{0x1D53F, 0x1D53F}, {0x1D545, 0x1D545}, {0x1D547, 0x1D549},
-	{0x1D551, 0x1D551}, {0x1D6A6, 0x1D6A7}, {0x1D7CC, 0x1D7CD},
-	{0x1DA8C, 0x1DA9A}, {0x1DAA0, 0x1DAA0}, {0x1DAB0, 0x1DFFF},
-	{0x1E007, 0x1E007}, {0x1E019, 0x1E01A}, {0x1E022, 0x1E022},
-	{0x1E025, 0x1E025}, {0x1E02B, 0x1E7FF}, {0x1E8C5, 0x1E8C6},
-	{0x1E8D7, 0x1E8FF}, {0x1E94B, 0x1E94F}, {0x1E95A, 0x1E95D},
-	{0x1E960, 0x1EDFF}, {0x1EE04, 0x1EE04}, {0x1EE20, 0x1EE20},
-	{0x1EE23, 0x1EE23}, {0x1EE25, 0x1EE26}, {0x1EE28, 0x1EE28},
-	{0x1EE33, 0x1EE33}, {0x1EE38, 0x1EE38}, {0x1EE3A, 0x1EE3A},
-	{0x1EE3C, 0x1EE41}, {0x1EE43, 0x1EE46}, {0x1EE48, 0x1EE48},
-	{0x1EE4A, 0x1EE4A}, {0x1EE4C, 0x1EE4C}, {0x1EE50, 0x1EE50},
-	{0x1EE53, 0x1EE53}, {0x1EE55, 0x1EE56}, {0x1EE58, 0x1EE58},
-	{0x1EE5A, 0x1EE5A}, {0x1EE5C, 0x1EE5C}, {0x1EE5E, 0x1EE5E},
-	{0x1EE60, 0x1EE60}, {0x1EE63, 0x1EE63}, {0x1EE65, 0x1EE66},
-	{0x1EE6B, 0x1EE6B}, {0x1EE73, 0x1EE73}, {0x1EE78, 0x1EE78},
-	{0x1EE7D, 0x1EE7D}, {0x1EE7F, 0x1EE7F}, {0x1EE8A, 0x1EE8A},
-	{0x1EE9C, 0x1EEA0}, {0x1EEA4, 0x1EEA4}, {0x1EEAA, 0x1EEAA},
-	{0x1EEBC, 0x1EEEF}, {0x1EEF2, 0x1EFFF}, {0x1F02C, 0x1F02F},
-	{0x1F094, 0x1F09F}, {0x1F0AF, 0x1F0B0}, {0x1F0C0, 0x1F0C0},
-	{0x1F0D0, 0x1F0D0}, {0x1F0F6, 0x1F0FF}, {0x1F10D, 0x1F10F},
-	{0x1F12F, 0x1F12F}, {0x1F16C, 0x1F16F}, {0x1F1AD, 0x1F1E5},
-	{0x1F203, 0x1F20F}, {0x1F23C, 0x1F23F}, {0x1F249, 0x1F24F},
-	{0x1F252, 0x1F2FF}, {0x1F6D3, 0x1F6DF}, {0x1F6ED, 0x1F6EF},
-	{0x1F6F7, 0x1F6FF}, {0x1F774, 0x1F77F}, {0x1F7D5, 0x1F7FF},
-	{0x1F80C, 0x1F80F}, {0x1F848, 0x1F84F}, {0x1F85A, 0x1F85F},
-	{0x1F888, 0x1F88F}, {0x1F8AE, 0x1F90F}, {0x1F91F, 0x1F91F},
-	{0x1F928, 0x1F92F}, {0x1F931, 0x1F932}, {0x1F93F, 0x1F93F},
-	{0x1F94C, 0x1F94F}, {0x1F95F, 0x1F97F}, {0x1F992, 0x1F9BF},
-	{0x1F9C1, 0x1FFFF}, {0x2A6D7, 0x2A6FF}, {0x2B735, 0x2B73F},
-	{0x2B81E, 0x2B81F}, {0x2CEA2, 0x2F7FF}, {0x2FA1E, 0xE0000},
-	{0xE0002, 0xE001F}, {0xE0080, 0xE00FF}, {0xE01F0, 0xEFFFF},
-	{0xFFFFE, 0xFFFFF},
-}
-
-var neutral = table{
-	{0x0000, 0x001F}, {0x007F, 0x007F}, {0x0080, 0x009F},
-	{0x00A0, 0x00A0}, {0x00A9, 0x00A9}, {0x00AB, 0x00AB},
-	{0x00B5, 0x00B5}, {0x00BB, 0x00BB}, {0x00C0, 0x00C5},
-	{0x00C7, 0x00CF}, {0x00D1, 0x00D6}, {0x00D9, 0x00DD},
-	{0x00E2, 0x00E5}, {0x00E7, 0x00E7}, {0x00EB, 0x00EB},
-	{0x00EE, 0x00EF}, {0x00F1, 0x00F1}, {0x00F4, 0x00F6},
-	{0x00FB, 0x00FB}, {0x00FD, 0x00FD}, {0x00FF, 0x00FF},
-	{0x0100, 0x0100}, {0x0102, 0x0110}, {0x0112, 0x0112},
-	{0x0114, 0x011A}, {0x011C, 0x0125}, {0x0128, 0x012A},
-	{0x012C, 0x0130}, {0x0134, 0x0137}, {0x0139, 0x013E},
-	{0x0143, 0x0143}, {0x0145, 0x0147}, {0x014C, 0x014C},
-	{0x014E, 0x0151}, {0x0154, 0x0165}, {0x0168, 0x016A},
-	{0x016C, 0x017F}, {0x0180, 0x01BA}, {0x01BB, 0x01BB},
-	{0x01BC, 0x01BF}, {0x01C0, 0x01C3}, {0x01C4, 0x01CD},
-	{0x01CF, 0x01CF}, {0x01D1, 0x01D1}, {0x01D3, 0x01D3},
-	{0x01D5, 0x01D5}, {0x01D7, 0x01D7}, {0x01D9, 0x01D9},
-	{0x01DB, 0x01DB}, {0x01DD, 0x024F}, {0x0250, 0x0250},
-	{0x0252, 0x0260}, {0x0262, 0x0293}, {0x0294, 0x0294},
-	{0x0295, 0x02AF}, {0x02B0, 0x02C1}, {0x02C2, 0x02C3},
-	{0x02C5, 0x02C5}, {0x02C6, 0x02C6}, {0x02C8, 0x02C8},
-	{0x02CC, 0x02CC}, {0x02CE, 0x02CF}, {0x02D1, 0x02D1},
-	{0x02D2, 0x02D7}, {0x02DC, 0x02DC}, {0x02DE, 0x02DE},
-	{0x02E0, 0x02E4}, {0x02E5, 0x02EB}, {0x02EC, 0x02EC},
-	{0x02ED, 0x02ED}, {0x02EE, 0x02EE}, {0x02EF, 0x02FF},
-	{0x0370, 0x0373}, {0x0374, 0x0374}, {0x0375, 0x0375},
-	{0x0376, 0x0377}, {0x037A, 0x037A}, {0x037B, 0x037D},
-	{0x037E, 0x037E}, {0x037F, 0x037F}, {0x0384, 0x0385},
-	{0x0386, 0x0386}, {0x0387, 0x0387}, {0x0388, 0x038A},
-	{0x038C, 0x038C}, {0x038E, 0x0390}, {0x03AA, 0x03B0},
-	{0x03C2, 0x03C2}, {0x03CA, 0x03F5}, {0x03F6, 0x03F6},
-	{0x03F7, 0x03FF}, {0x0400, 0x0400}, {0x0402, 0x040F},
-	{0x0450, 0x0450}, {0x0452, 0x0481}, {0x0482, 0x0482},
-	{0x0483, 0x0487}, {0x0488, 0x0489}, {0x048A, 0x04FF},
-	{0x0500, 0x052F}, {0x0531, 0x0556}, {0x0559, 0x0559},
-	{0x055A, 0x055F}, {0x0561, 0x0587}, {0x0589, 0x0589},
-	{0x058A, 0x058A}, {0x058D, 0x058E}, {0x058F, 0x058F},
-	{0x0591, 0x05BD}, {0x05BE, 0x05BE}, {0x05BF, 0x05BF},
-	{0x05C0, 0x05C0}, {0x05C1, 0x05C2}, {0x05C3, 0x05C3},
-	{0x05C4, 0x05C5}, {0x05C6, 0x05C6}, {0x05C7, 0x05C7},
-	{0x05D0, 0x05EA}, {0x05F0, 0x05F2}, {0x05F3, 0x05F4},
-	{0x0600, 0x0605}, {0x0606, 0x0608}, {0x0609, 0x060A},
-	{0x060B, 0x060B}, {0x060C, 0x060D}, {0x060E, 0x060F},
-	{0x0610, 0x061A}, {0x061B, 0x061B}, {0x061C, 0x061C},
-	{0x061E, 0x061F}, {0x0620, 0x063F}, {0x0640, 0x0640},
-	{0x0641, 0x064A}, {0x064B, 0x065F}, {0x0660, 0x0669},
-	{0x066A, 0x066D}, {0x066E, 0x066F}, {0x0670, 0x0670},
-	{0x0671, 0x06D3}, {0x06D4, 0x06D4}, {0x06D5, 0x06D5},
-	{0x06D6, 0x06DC}, {0x06DD, 0x06DD}, {0x06DE, 0x06DE},
-	{0x06DF, 0x06E4}, {0x06E5, 0x06E6}, {0x06E7, 0x06E8},
-	{0x06E9, 0x06E9}, {0x06EA, 0x06ED}, {0x06EE, 0x06EF},
-	{0x06F0, 0x06F9}, {0x06FA, 0x06FC}, {0x06FD, 0x06FE},
-	{0x06FF, 0x06FF}, {0x0700, 0x070D}, {0x070F, 0x070F},
-	{0x0710, 0x0710}, {0x0711, 0x0711}, {0x0712, 0x072F},
-	{0x0730, 0x074A}, {0x074D, 0x074F}, {0x0750, 0x077F},
-	{0x0780, 0x07A5}, {0x07A6, 0x07B0}, {0x07B1, 0x07B1},
-	{0x07C0, 0x07C9}, {0x07CA, 0x07EA}, {0x07EB, 0x07F3},
-	{0x07F4, 0x07F5}, {0x07F6, 0x07F6}, {0x07F7, 0x07F9},
-	{0x07FA, 0x07FA}, {0x0800, 0x0815}, {0x0816, 0x0819},
-	{0x081A, 0x081A}, {0x081B, 0x0823}, {0x0824, 0x0824},
-	{0x0825, 0x0827}, {0x0828, 0x0828}, {0x0829, 0x082D},
-	{0x0830, 0x083E}, {0x0840, 0x0858}, {0x0859, 0x085B},
-	{0x085E, 0x085E}, {0x08A0, 0x08B4}, {0x08B6, 0x08BD},
-	{0x08D4, 0x08E1}, {0x08E2, 0x08E2}, {0x08E3, 0x08FF},
-	{0x0900, 0x0902}, {0x0903, 0x0903}, {0x0904, 0x0939},
-	{0x093A, 0x093A}, {0x093B, 0x093B}, {0x093C, 0x093C},
-	{0x093D, 0x093D}, {0x093E, 0x0940}, {0x0941, 0x0948},
-	{0x0949, 0x094C}, {0x094D, 0x094D}, {0x094E, 0x094F},
-	{0x0950, 0x0950}, {0x0951, 0x0957}, {0x0958, 0x0961},
-	{0x0962, 0x0963}, {0x0964, 0x0965}, {0x0966, 0x096F},
-	{0x0970, 0x0970}, {0x0971, 0x0971}, {0x0972, 0x097F},
-	{0x0980, 0x0980}, {0x0981, 0x0981}, {0x0982, 0x0983},
-	{0x0985, 0x098C}, {0x098F, 0x0990}, {0x0993, 0x09A8},
-	{0x09AA, 0x09B0}, {0x09B2, 0x09B2}, {0x09B6, 0x09B9},
-	{0x09BC, 0x09BC}, {0x09BD, 0x09BD}, {0x09BE, 0x09C0},
-	{0x09C1, 0x09C4}, {0x09C7, 0x09C8}, {0x09CB, 0x09CC},
-	{0x09CD, 0x09CD}, {0x09CE, 0x09CE}, {0x09D7, 0x09D7},
-	{0x09DC, 0x09DD}, {0x09DF, 0x09E1}, {0x09E2, 0x09E3},
-	{0x09E6, 0x09EF}, {0x09F0, 0x09F1}, {0x09F2, 0x09F3},
-	{0x09F4, 0x09F9}, {0x09FA, 0x09FA}, {0x09FB, 0x09FB},
-	{0x0A01, 0x0A02}, {0x0A03, 0x0A03}, {0x0A05, 0x0A0A},
-	{0x0A0F, 0x0A10}, {0x0A13, 0x0A28}, {0x0A2A, 0x0A30},
-	{0x0A32, 0x0A33}, {0x0A35, 0x0A36}, {0x0A38, 0x0A39},
-	{0x0A3C, 0x0A3C}, {0x0A3E, 0x0A40}, {0x0A41, 0x0A42},
-	{0x0A47, 0x0A48}, {0x0A4B, 0x0A4D}, {0x0A51, 0x0A51},
-	{0x0A59, 0x0A5C}, {0x0A5E, 0x0A5E}, {0x0A66, 0x0A6F},
-	{0x0A70, 0x0A71}, {0x0A72, 0x0A74}, {0x0A75, 0x0A75},
-	{0x0A81, 0x0A82}, {0x0A83, 0x0A83}, {0x0A85, 0x0A8D},
-	{0x0A8F, 0x0A91}, {0x0A93, 0x0AA8}, {0x0AAA, 0x0AB0},
-	{0x0AB2, 0x0AB3}, {0x0AB5, 0x0AB9}, {0x0ABC, 0x0ABC},
-	{0x0ABD, 0x0ABD}, {0x0ABE, 0x0AC0}, {0x0AC1, 0x0AC5},
-	{0x0AC7, 0x0AC8}, {0x0AC9, 0x0AC9}, {0x0ACB, 0x0ACC},
-	{0x0ACD, 0x0ACD}, {0x0AD0, 0x0AD0}, {0x0AE0, 0x0AE1},
-	{0x0AE2, 0x0AE3}, {0x0AE6, 0x0AEF}, {0x0AF0, 0x0AF0},
-	{0x0AF1, 0x0AF1}, {0x0AF9, 0x0AF9}, {0x0B01, 0x0B01},
-	{0x0B02, 0x0B03}, {0x0B05, 0x0B0C}, {0x0B0F, 0x0B10},
-	{0x0B13, 0x0B28}, {0x0B2A, 0x0B30}, {0x0B32, 0x0B33},
-	{0x0B35, 0x0B39}, {0x0B3C, 0x0B3C}, {0x0B3D, 0x0B3D},
-	{0x0B3E, 0x0B3E}, {0x0B3F, 0x0B3F}, {0x0B40, 0x0B40},
-	{0x0B41, 0x0B44}, {0x0B47, 0x0B48}, {0x0B4B, 0x0B4C},
-	{0x0B4D, 0x0B4D}, {0x0B56, 0x0B56}, {0x0B57, 0x0B57},
-	{0x0B5C, 0x0B5D}, {0x0B5F, 0x0B61}, {0x0B62, 0x0B63},
-	{0x0B66, 0x0B6F}, {0x0B70, 0x0B70}, {0x0B71, 0x0B71},
-	{0x0B72, 0x0B77}, {0x0B82, 0x0B82}, {0x0B83, 0x0B83},
-	{0x0B85, 0x0B8A}, {0x0B8E, 0x0B90}, {0x0B92, 0x0B95},
-	{0x0B99, 0x0B9A}, {0x0B9C, 0x0B9C}, {0x0B9E, 0x0B9F},
-	{0x0BA3, 0x0BA4}, {0x0BA8, 0x0BAA}, {0x0BAE, 0x0BB9},
-	{0x0BBE, 0x0BBF}, {0x0BC0, 0x0BC0}, {0x0BC1, 0x0BC2},
-	{0x0BC6, 0x0BC8}, {0x0BCA, 0x0BCC}, {0x0BCD, 0x0BCD},
-	{0x0BD0, 0x0BD0}, {0x0BD7, 0x0BD7}, {0x0BE6, 0x0BEF},
-	{0x0BF0, 0x0BF2}, {0x0BF3, 0x0BF8}, {0x0BF9, 0x0BF9},
-	{0x0BFA, 0x0BFA}, {0x0C00, 0x0C00}, {0x0C01, 0x0C03},
-	{0x0C05, 0x0C0C}, {0x0C0E, 0x0C10}, {0x0C12, 0x0C28},
-	{0x0C2A, 0x0C39}, {0x0C3D, 0x0C3D}, {0x0C3E, 0x0C40},
-	{0x0C41, 0x0C44}, {0x0C46, 0x0C48}, {0x0C4A, 0x0C4D},
-	{0x0C55, 0x0C56}, {0x0C58, 0x0C5A}, {0x0C60, 0x0C61},
-	{0x0C62, 0x0C63}, {0x0C66, 0x0C6F}, {0x0C78, 0x0C7E},
-	{0x0C7F, 0x0C7F}, {0x0C80, 0x0C80}, {0x0C81, 0x0C81},
-	{0x0C82, 0x0C83}, {0x0C85, 0x0C8C}, {0x0C8E, 0x0C90},
-	{0x0C92, 0x0CA8}, {0x0CAA, 0x0CB3}, {0x0CB5, 0x0CB9},
-	{0x0CBC, 0x0CBC}, {0x0CBD, 0x0CBD}, {0x0CBE, 0x0CBE},
-	{0x0CBF, 0x0CBF}, {0x0CC0, 0x0CC4}, {0x0CC6, 0x0CC6},
-	{0x0CC7, 0x0CC8}, {0x0CCA, 0x0CCB}, {0x0CCC, 0x0CCD},
-	{0x0CD5, 0x0CD6}, {0x0CDE, 0x0CDE}, {0x0CE0, 0x0CE1},
-	{0x0CE2, 0x0CE3}, {0x0CE6, 0x0CEF}, {0x0CF1, 0x0CF2},
-	{0x0D01, 0x0D01}, {0x0D02, 0x0D03}, {0x0D05, 0x0D0C},
-	{0x0D0E, 0x0D10}, {0x0D12, 0x0D3A}, {0x0D3D, 0x0D3D},
-	{0x0D3E, 0x0D40}, {0x0D41, 0x0D44}, {0x0D46, 0x0D48},
-	{0x0D4A, 0x0D4C}, {0x0D4D, 0x0D4D}, {0x0D4E, 0x0D4E},
-	{0x0D4F, 0x0D4F}, {0x0D54, 0x0D56}, {0x0D57, 0x0D57},
-	{0x0D58, 0x0D5E}, {0x0D5F, 0x0D61}, {0x0D62, 0x0D63},
-	{0x0D66, 0x0D6F}, {0x0D70, 0x0D78}, {0x0D79, 0x0D79},
-	{0x0D7A, 0x0D7F}, {0x0D82, 0x0D83}, {0x0D85, 0x0D96},
-	{0x0D9A, 0x0DB1}, {0x0DB3, 0x0DBB}, {0x0DBD, 0x0DBD},
-	{0x0DC0, 0x0DC6}, {0x0DCA, 0x0DCA}, {0x0DCF, 0x0DD1},
-	{0x0DD2, 0x0DD4}, {0x0DD6, 0x0DD6}, {0x0DD8, 0x0DDF},
-	{0x0DE6, 0x0DEF}, {0x0DF2, 0x0DF3}, {0x0DF4, 0x0DF4},
-	{0x0E01, 0x0E30}, {0x0E31, 0x0E31}, {0x0E32, 0x0E33},
-	{0x0E34, 0x0E3A}, {0x0E3F, 0x0E3F}, {0x0E40, 0x0E45},
-	{0x0E46, 0x0E46}, {0x0E47, 0x0E4E}, {0x0E4F, 0x0E4F},
-	{0x0E50, 0x0E59}, {0x0E5A, 0x0E5B}, {0x0E81, 0x0E82},
-	{0x0E84, 0x0E84}, {0x0E87, 0x0E88}, {0x0E8A, 0x0E8A},
-	{0x0E8D, 0x0E8D}, {0x0E94, 0x0E97}, {0x0E99, 0x0E9F},
-	{0x0EA1, 0x0EA3}, {0x0EA5, 0x0EA5}, {0x0EA7, 0x0EA7},
-	{0x0EAA, 0x0EAB}, {0x0EAD, 0x0EB0}, {0x0EB1, 0x0EB1},
-	{0x0EB2, 0x0EB3}, {0x0EB4, 0x0EB9}, {0x0EBB, 0x0EBC},
-	{0x0EBD, 0x0EBD}, {0x0EC0, 0x0EC4}, {0x0EC6, 0x0EC6},
-	{0x0EC8, 0x0ECD}, {0x0ED0, 0x0ED9}, {0x0EDC, 0x0EDF},
-	{0x0F00, 0x0F00}, {0x0F01, 0x0F03}, {0x0F04, 0x0F12},
-	{0x0F13, 0x0F13}, {0x0F14, 0x0F14}, {0x0F15, 0x0F17},
-	{0x0F18, 0x0F19}, {0x0F1A, 0x0F1F}, {0x0F20, 0x0F29},
-	{0x0F2A, 0x0F33}, {0x0F34, 0x0F34}, {0x0F35, 0x0F35},
-	{0x0F36, 0x0F36}, {0x0F37, 0x0F37}, {0x0F38, 0x0F38},
-	{0x0F39, 0x0F39}, {0x0F3A, 0x0F3A}, {0x0F3B, 0x0F3B},
-	{0x0F3C, 0x0F3C}, {0x0F3D, 0x0F3D}, {0x0F3E, 0x0F3F},
-	{0x0F40, 0x0F47}, {0x0F49, 0x0F6C}, {0x0F71, 0x0F7E},
-	{0x0F7F, 0x0F7F}, {0x0F80, 0x0F84}, {0x0F85, 0x0F85},
-	{0x0F86, 0x0F87}, {0x0F88, 0x0F8C}, {0x0F8D, 0x0F97},
-	{0x0F99, 0x0FBC}, {0x0FBE, 0x0FC5}, {0x0FC6, 0x0FC6},
-	{0x0FC7, 0x0FCC}, {0x0FCE, 0x0FCF}, {0x0FD0, 0x0FD4},
-	{0x0FD5, 0x0FD8}, {0x0FD9, 0x0FDA}, {0x1000, 0x102A},
-	{0x102B, 0x102C}, {0x102D, 0x1030}, {0x1031, 0x1031},
-	{0x1032, 0x1037}, {0x1038, 0x1038}, {0x1039, 0x103A},
-	{0x103B, 0x103C}, {0x103D, 0x103E}, {0x103F, 0x103F},
-	{0x1040, 0x1049}, {0x104A, 0x104F}, {0x1050, 0x1055},
-	{0x1056, 0x1057}, {0x1058, 0x1059}, {0x105A, 0x105D},
-	{0x105E, 0x1060}, {0x1061, 0x1061}, {0x1062, 0x1064},
-	{0x1065, 0x1066}, {0x1067, 0x106D}, {0x106E, 0x1070},
-	{0x1071, 0x1074}, {0x1075, 0x1081}, {0x1082, 0x1082},
-	{0x1083, 0x1084}, {0x1085, 0x1086}, {0x1087, 0x108C},
-	{0x108D, 0x108D}, {0x108E, 0x108E}, {0x108F, 0x108F},
-	{0x1090, 0x1099}, {0x109A, 0x109C}, {0x109D, 0x109D},
-	{0x109E, 0x109F}, {0x10A0, 0x10C5}, {0x10C7, 0x10C7},
-	{0x10CD, 0x10CD}, {0x10D0, 0x10FA}, {0x10FB, 0x10FB},
-	{0x10FC, 0x10FC}, {0x10FD, 0x10FF}, {0x1160, 0x11FF},
-	{0x1200, 0x1248}, {0x124A, 0x124D}, {0x1250, 0x1256},
-	{0x1258, 0x1258}, {0x125A, 0x125D}, {0x1260, 0x1288},
-	{0x128A, 0x128D}, {0x1290, 0x12B0}, {0x12B2, 0x12B5},
-	{0x12B8, 0x12BE}, {0x12C0, 0x12C0}, {0x12C2, 0x12C5},
-	{0x12C8, 0x12D6}, {0x12D8, 0x1310}, {0x1312, 0x1315},
-	{0x1318, 0x135A}, {0x135D, 0x135F}, {0x1360, 0x1368},
-	{0x1369, 0x137C}, {0x1380, 0x138F}, {0x1390, 0x1399},
-	{0x13A0, 0x13F5}, {0x13F8, 0x13FD}, {0x1400, 0x1400},
-	{0x1401, 0x166C}, {0x166D, 0x166E}, {0x166F, 0x167F},
-	{0x1680, 0x1680}, {0x1681, 0x169A}, {0x169B, 0x169B},
-	{0x169C, 0x169C}, {0x16A0, 0x16EA}, {0x16EB, 0x16ED},
-	{0x16EE, 0x16F0}, {0x16F1, 0x16F8}, {0x1700, 0x170C},
-	{0x170E, 0x1711}, {0x1712, 0x1714}, {0x1720, 0x1731},
-	{0x1732, 0x1734}, {0x1735, 0x1736}, {0x1740, 0x1751},
-	{0x1752, 0x1753}, {0x1760, 0x176C}, {0x176E, 0x1770},
-	{0x1772, 0x1773}, {0x1780, 0x17B3}, {0x17B4, 0x17B5},
-	{0x17B6, 0x17B6}, {0x17B7, 0x17BD}, {0x17BE, 0x17C5},
-	{0x17C6, 0x17C6}, {0x17C7, 0x17C8}, {0x17C9, 0x17D3},
-	{0x17D4, 0x17D6}, {0x17D7, 0x17D7}, {0x17D8, 0x17DA},
-	{0x17DB, 0x17DB}, {0x17DC, 0x17DC}, {0x17DD, 0x17DD},
-	{0x17E0, 0x17E9}, {0x17F0, 0x17F9}, {0x1800, 0x1805},
-	{0x1806, 0x1806}, {0x1807, 0x180A}, {0x180B, 0x180D},
-	{0x180E, 0x180E}, {0x1810, 0x1819}, {0x1820, 0x1842},
-	{0x1843, 0x1843}, {0x1844, 0x1877}, {0x1880, 0x1884},
-	{0x1885, 0x1886}, {0x1887, 0x18A8}, {0x18A9, 0x18A9},
-	{0x18AA, 0x18AA}, {0x18B0, 0x18F5}, {0x1900, 0x191E},
-	{0x1920, 0x1922}, {0x1923, 0x1926}, {0x1927, 0x1928},
-	{0x1929, 0x192B}, {0x1930, 0x1931}, {0x1932, 0x1932},
-	{0x1933, 0x1938}, {0x1939, 0x193B}, {0x1940, 0x1940},
-	{0x1944, 0x1945}, {0x1946, 0x194F}, {0x1950, 0x196D},
-	{0x1970, 0x1974}, {0x1980, 0x19AB}, {0x19B0, 0x19C9},
-	{0x19D0, 0x19D9}, {0x19DA, 0x19DA}, {0x19DE, 0x19DF},
-	{0x19E0, 0x19FF}, {0x1A00, 0x1A16}, {0x1A17, 0x1A18},
-	{0x1A19, 0x1A1A}, {0x1A1B, 0x1A1B}, {0x1A1E, 0x1A1F},
-	{0x1A20, 0x1A54}, {0x1A55, 0x1A55}, {0x1A56, 0x1A56},
-	{0x1A57, 0x1A57}, {0x1A58, 0x1A5E}, {0x1A60, 0x1A60},
-	{0x1A61, 0x1A61}, {0x1A62, 0x1A62}, {0x1A63, 0x1A64},
-	{0x1A65, 0x1A6C}, {0x1A6D, 0x1A72}, {0x1A73, 0x1A7C},
-	{0x1A7F, 0x1A7F}, {0x1A80, 0x1A89}, {0x1A90, 0x1A99},
-	{0x1AA0, 0x1AA6}, {0x1AA7, 0x1AA7}, {0x1AA8, 0x1AAD},
-	{0x1AB0, 0x1ABD}, {0x1ABE, 0x1ABE}, {0x1B00, 0x1B03},
-	{0x1B04, 0x1B04}, {0x1B05, 0x1B33}, {0x1B34, 0x1B34},
-	{0x1B35, 0x1B35}, {0x1B36, 0x1B3A}, {0x1B3B, 0x1B3B},
-	{0x1B3C, 0x1B3C}, {0x1B3D, 0x1B41}, {0x1B42, 0x1B42},
-	{0x1B43, 0x1B44}, {0x1B45, 0x1B4B}, {0x1B50, 0x1B59},
-	{0x1B5A, 0x1B60}, {0x1B61, 0x1B6A}, {0x1B6B, 0x1B73},
-	{0x1B74, 0x1B7C}, {0x1B80, 0x1B81}, {0x1B82, 0x1B82},
-	{0x1B83, 0x1BA0}, {0x1BA1, 0x1BA1}, {0x1BA2, 0x1BA5},
-	{0x1BA6, 0x1BA7}, {0x1BA8, 0x1BA9}, {0x1BAA, 0x1BAA},
-	{0x1BAB, 0x1BAD}, {0x1BAE, 0x1BAF}, {0x1BB0, 0x1BB9},
-	{0x1BBA, 0x1BBF}, {0x1BC0, 0x1BE5}, {0x1BE6, 0x1BE6},
-	{0x1BE7, 0x1BE7}, {0x1BE8, 0x1BE9}, {0x1BEA, 0x1BEC},
-	{0x1BED, 0x1BED}, {0x1BEE, 0x1BEE}, {0x1BEF, 0x1BF1},
-	{0x1BF2, 0x1BF3}, {0x1BFC, 0x1BFF}, {0x1C00, 0x1C23},
-	{0x1C24, 0x1C2B}, {0x1C2C, 0x1C33}, {0x1C34, 0x1C35},
-	{0x1C36, 0x1C37}, {0x1C3B, 0x1C3F}, {0x1C40, 0x1C49},
-	{0x1C4D, 0x1C4F}, {0x1C50, 0x1C59}, {0x1C5A, 0x1C77},
-	{0x1C78, 0x1C7D}, {0x1C7E, 0x1C7F}, {0x1C80, 0x1C88},
-	{0x1CC0, 0x1CC7}, {0x1CD0, 0x1CD2}, {0x1CD3, 0x1CD3},
-	{0x1CD4, 0x1CE0}, {0x1CE1, 0x1CE1}, {0x1CE2, 0x1CE8},
-	{0x1CE9, 0x1CEC}, {0x1CED, 0x1CED}, {0x1CEE, 0x1CF1},
-	{0x1CF2, 0x1CF3}, {0x1CF4, 0x1CF4}, {0x1CF5, 0x1CF6},
-	{0x1CF8, 0x1CF9}, {0x1D00, 0x1D2B}, {0x1D2C, 0x1D6A},
-	{0x1D6B, 0x1D77}, {0x1D78, 0x1D78}, {0x1D79, 0x1D7F},
-	{0x1D80, 0x1D9A}, {0x1D9B, 0x1DBF}, {0x1DC0, 0x1DF5},
-	{0x1DFB, 0x1DFF}, {0x1E00, 0x1EFF}, {0x1F00, 0x1F15},
-	{0x1F18, 0x1F1D}, {0x1F20, 0x1F45}, {0x1F48, 0x1F4D},
-	{0x1F50, 0x1F57}, {0x1F59, 0x1F59}, {0x1F5B, 0x1F5B},
-	{0x1F5D, 0x1F5D}, {0x1F5F, 0x1F7D}, {0x1F80, 0x1FB4},
-	{0x1FB6, 0x1FBC}, {0x1FBD, 0x1FBD}, {0x1FBE, 0x1FBE},
-	{0x1FBF, 0x1FC1}, {0x1FC2, 0x1FC4}, {0x1FC6, 0x1FCC},
-	{0x1FCD, 0x1FCF}, {0x1FD0, 0x1FD3}, {0x1FD6, 0x1FDB},
-	{0x1FDD, 0x1FDF}, {0x1FE0, 0x1FEC}, {0x1FED, 0x1FEF},
-	{0x1FF2, 0x1FF4}, {0x1FF6, 0x1FFC}, {0x1FFD, 0x1FFE},
-	{0x2000, 0x200A}, {0x200B, 0x200F}, {0x2011, 0x2012},
-	{0x2017, 0x2017}, {0x201A, 0x201A}, {0x201B, 0x201B},
-	{0x201E, 0x201E}, {0x201F, 0x201F}, {0x2023, 0x2023},
-	{0x2028, 0x2028}, {0x2029, 0x2029}, {0x202A, 0x202E},
-	{0x202F, 0x202F}, {0x2031, 0x2031}, {0x2034, 0x2034},
-	{0x2036, 0x2038}, {0x2039, 0x2039}, {0x203A, 0x203A},
-	{0x203C, 0x203D}, {0x203F, 0x2040}, {0x2041, 0x2043},
-	{0x2044, 0x2044}, {0x2045, 0x2045}, {0x2046, 0x2046},
-	{0x2047, 0x2051}, {0x2052, 0x2052}, {0x2053, 0x2053},
-	{0x2054, 0x2054}, {0x2055, 0x205E}, {0x205F, 0x205F},
-	{0x2060, 0x2064}, {0x2066, 0x206F}, {0x2070, 0x2070},
-	{0x2071, 0x2071}, {0x2075, 0x2079}, {0x207A, 0x207C},
-	{0x207D, 0x207D}, {0x207E, 0x207E}, {0x2080, 0x2080},
-	{0x2085, 0x2089}, {0x208A, 0x208C}, {0x208D, 0x208D},
-	{0x208E, 0x208E}, {0x2090, 0x209C}, {0x20A0, 0x20A8},
-	{0x20AA, 0x20AB}, {0x20AD, 0x20BE}, {0x20D0, 0x20DC},
-	{0x20DD, 0x20E0}, {0x20E1, 0x20E1}, {0x20E2, 0x20E4},
-	{0x20E5, 0x20F0}, {0x2100, 0x2101}, {0x2102, 0x2102},
-	{0x2104, 0x2104}, {0x2106, 0x2106}, {0x2107, 0x2107},
-	{0x2108, 0x2108}, {0x210A, 0x2112}, {0x2114, 0x2114},
-	{0x2115, 0x2115}, {0x2117, 0x2117}, {0x2118, 0x2118},
-	{0x2119, 0x211D}, {0x211E, 0x2120}, {0x2123, 0x2123},
-	{0x2124, 0x2124}, {0x2125, 0x2125}, {0x2127, 0x2127},
-	{0x2128, 0x2128}, {0x2129, 0x2129}, {0x212A, 0x212A},
-	{0x212C, 0x212D}, {0x212E, 0x212E}, {0x212F, 0x2134},
-	{0x2135, 0x2138}, {0x2139, 0x2139}, {0x213A, 0x213B},
-	{0x213C, 0x213F}, {0x2140, 0x2144}, {0x2145, 0x2149},
-	{0x214A, 0x214A}, {0x214B, 0x214B}, {0x214C, 0x214D},
-	{0x214E, 0x214E}, {0x214F, 0x214F}, {0x2150, 0x2152},
-	{0x2155, 0x215A}, {0x215F, 0x215F}, {0x216C, 0x216F},
-	{0x217A, 0x2182}, {0x2183, 0x2184}, {0x2185, 0x2188},
-	{0x218A, 0x218B}, {0x219A, 0x219B}, {0x219C, 0x219F},
-	{0x21A0, 0x21A0}, {0x21A1, 0x21A2}, {0x21A3, 0x21A3},
-	{0x21A4, 0x21A5}, {0x21A6, 0x21A6}, {0x21A7, 0x21AD},
-	{0x21AE, 0x21AE}, {0x21AF, 0x21B7}, {0x21BA, 0x21CD},
-	{0x21CE, 0x21CF}, {0x21D0, 0x21D1}, {0x21D3, 0x21D3},
-	{0x21D5, 0x21E6}, {0x21E8, 0x21F3}, {0x21F4, 0x21FF},
-	{0x2201, 0x2201}, {0x2204, 0x2206}, {0x2209, 0x220A},
-	{0x220C, 0x220E}, {0x2210, 0x2210}, {0x2212, 0x2214},
-	{0x2216, 0x2219}, {0x221B, 0x221C}, {0x2221, 0x2222},
-	{0x2224, 0x2224}, {0x2226, 0x2226}, {0x222D, 0x222D},
-	{0x222F, 0x2233}, {0x2238, 0x223B}, {0x223E, 0x2247},
-	{0x2249, 0x224B}, {0x224D, 0x2251}, {0x2253, 0x225F},
-	{0x2262, 0x2263}, {0x2268, 0x2269}, {0x226C, 0x226D},
-	{0x2270, 0x2281}, {0x2284, 0x2285}, {0x2288, 0x2294},
-	{0x2296, 0x2298}, {0x229A, 0x22A4}, {0x22A6, 0x22BE},
-	{0x22C0, 0x22FF}, {0x2300, 0x2307}, {0x2308, 0x2308},
-	{0x2309, 0x2309}, {0x230A, 0x230A}, {0x230B, 0x230B},
-	{0x230C, 0x2311}, {0x2313, 0x2319}, {0x231C, 0x231F},
-	{0x2320, 0x2321}, {0x2322, 0x2328}, {0x232B, 0x237B},
-	{0x237C, 0x237C}, {0x237D, 0x239A}, {0x239B, 0x23B3},
-	{0x23B4, 0x23DB}, {0x23DC, 0x23E1}, {0x23E2, 0x23E8},
-	{0x23ED, 0x23EF}, {0x23F1, 0x23F2}, {0x23F4, 0x23FE},
-	{0x2400, 0x2426}, {0x2440, 0x244A}, {0x24EA, 0x24EA},
-	{0x254C, 0x254F}, {0x2574, 0x257F}, {0x2590, 0x2591},
-	{0x2596, 0x259F}, {0x25A2, 0x25A2}, {0x25AA, 0x25B1},
-	{0x25B4, 0x25B5}, {0x25B8, 0x25BB}, {0x25BE, 0x25BF},
-	{0x25C2, 0x25C5}, {0x25C9, 0x25CA}, {0x25CC, 0x25CD},
-	{0x25D2, 0x25E1}, {0x25E6, 0x25EE}, {0x25F0, 0x25F7},
-	{0x25F8, 0x25FC}, {0x25FF, 0x25FF}, {0x2600, 0x2604},
-	{0x2607, 0x2608}, {0x260A, 0x260D}, {0x2610, 0x2613},
-	{0x2616, 0x261B}, {0x261D, 0x261D}, {0x261F, 0x263F},
-	{0x2641, 0x2641}, {0x2643, 0x2647}, {0x2654, 0x265F},
-	{0x2662, 0x2662}, {0x2666, 0x2666}, {0x266B, 0x266B},
-	{0x266E, 0x266E}, {0x2670, 0x267E}, {0x2680, 0x2692},
-	{0x2694, 0x269D}, {0x26A0, 0x26A0}, {0x26A2, 0x26A9},
-	{0x26AC, 0x26BC}, {0x26C0, 0x26C3}, {0x26E2, 0x26E2},
-	{0x26E4, 0x26E7}, {0x2700, 0x2704}, {0x2706, 0x2709},
-	{0x270C, 0x2727}, {0x2729, 0x273C}, {0x273E, 0x274B},
-	{0x274D, 0x274D}, {0x274F, 0x2752}, {0x2756, 0x2756},
-	{0x2758, 0x2767}, {0x2768, 0x2768}, {0x2769, 0x2769},
-	{0x276A, 0x276A}, {0x276B, 0x276B}, {0x276C, 0x276C},
-	{0x276D, 0x276D}, {0x276E, 0x276E}, {0x276F, 0x276F},
-	{0x2770, 0x2770}, {0x2771, 0x2771}, {0x2772, 0x2772},
-	{0x2773, 0x2773}, {0x2774, 0x2774}, {0x2775, 0x2775},
-	{0x2780, 0x2793}, {0x2794, 0x2794}, {0x2798, 0x27AF},
-	{0x27B1, 0x27BE}, {0x27C0, 0x27C4}, {0x27C5, 0x27C5},
-	{0x27C6, 0x27C6}, {0x27C7, 0x27E5}, {0x27EE, 0x27EE},
-	{0x27EF, 0x27EF}, {0x27F0, 0x27FF}, {0x2800, 0x28FF},
-	{0x2900, 0x297F}, {0x2980, 0x2982}, {0x2983, 0x2983},
-	{0x2984, 0x2984}, {0x2987, 0x2987}, {0x2988, 0x2988},
-	{0x2989, 0x2989}, {0x298A, 0x298A}, {0x298B, 0x298B},
-	{0x298C, 0x298C}, {0x298D, 0x298D}, {0x298E, 0x298E},
-	{0x298F, 0x298F}, {0x2990, 0x2990}, {0x2991, 0x2991},
-	{0x2992, 0x2992}, {0x2993, 0x2993}, {0x2994, 0x2994},
-	{0x2995, 0x2995}, {0x2996, 0x2996}, {0x2997, 0x2997},
-	{0x2998, 0x2998}, {0x2999, 0x29D7}, {0x29D8, 0x29D8},
-	{0x29D9, 0x29D9}, {0x29DA, 0x29DA}, {0x29DB, 0x29DB},
-	{0x29DC, 0x29FB}, {0x29FC, 0x29FC}, {0x29FD, 0x29FD},
-	{0x29FE, 0x29FF}, {0x2A00, 0x2AFF}, {0x2B00, 0x2B1A},
-	{0x2B1D, 0x2B2F}, {0x2B30, 0x2B44}, {0x2B45, 0x2B46},
-	{0x2B47, 0x2B4C}, {0x2B4D, 0x2B4F}, {0x2B51, 0x2B54},
-	{0x2B5A, 0x2B73}, {0x2B76, 0x2B95}, {0x2B98, 0x2BB9},
-	{0x2BBD, 0x2BC8}, {0x2BCA, 0x2BD1}, {0x2BEC, 0x2BEF},
-	{0x2C00, 0x2C2E}, {0x2C30, 0x2C5E}, {0x2C60, 0x2C7B},
-	{0x2C7C, 0x2C7D}, {0x2C7E, 0x2C7F}, {0x2C80, 0x2CE4},
-	{0x2CE5, 0x2CEA}, {0x2CEB, 0x2CEE}, {0x2CEF, 0x2CF1},
-	{0x2CF2, 0x2CF3}, {0x2CF9, 0x2CFC}, {0x2CFD, 0x2CFD},
-	{0x2CFE, 0x2CFF}, {0x2D00, 0x2D25}, {0x2D27, 0x2D27},
-	{0x2D2D, 0x2D2D}, {0x2D30, 0x2D67}, {0x2D6F, 0x2D6F},
-	{0x2D70, 0x2D70}, {0x2D7F, 0x2D7F}, {0x2D80, 0x2D96},
-	{0x2DA0, 0x2DA6}, {0x2DA8, 0x2DAE}, {0x2DB0, 0x2DB6},
-	{0x2DB8, 0x2DBE}, {0x2DC0, 0x2DC6}, {0x2DC8, 0x2DCE},
-	{0x2DD0, 0x2DD6}, {0x2DD8, 0x2DDE}, {0x2DE0, 0x2DFF},
-	{0x2E00, 0x2E01}, {0x2E02, 0x2E02}, {0x2E03, 0x2E03},
-	{0x2E04, 0x2E04}, {0x2E05, 0x2E05}, {0x2E06, 0x2E08},
-	{0x2E09, 0x2E09}, {0x2E0A, 0x2E0A}, {0x2E0B, 0x2E0B},
-	{0x2E0C, 0x2E0C}, {0x2E0D, 0x2E0D}, {0x2E0E, 0x2E16},
-	{0x2E17, 0x2E17}, {0x2E18, 0x2E19}, {0x2E1A, 0x2E1A},
-	{0x2E1B, 0x2E1B}, {0x2E1C, 0x2E1C}, {0x2E1D, 0x2E1D},
-	{0x2E1E, 0x2E1F}, {0x2E20, 0x2E20}, {0x2E21, 0x2E21},
-	{0x2E22, 0x2E22}, {0x2E23, 0x2E23}, {0x2E24, 0x2E24},
-	{0x2E25, 0x2E25}, {0x2E26, 0x2E26}, {0x2E27, 0x2E27},
-	{0x2E28, 0x2E28}, {0x2E29, 0x2E29}, {0x2E2A, 0x2E2E},
-	{0x2E2F, 0x2E2F}, {0x2E30, 0x2E39}, {0x2E3A, 0x2E3B},
-	{0x2E3C, 0x2E3F}, {0x2E40, 0x2E40}, {0x2E41, 0x2E41},
-	{0x2E42, 0x2E42}, {0x2E43, 0x2E44}, {0x303F, 0x303F},
-	{0x4DC0, 0x4DFF}, {0xA4D0, 0xA4F7}, {0xA4F8, 0xA4FD},
-	{0xA4FE, 0xA4FF}, {0xA500, 0xA60B}, {0xA60C, 0xA60C},
-	{0xA60D, 0xA60F}, {0xA610, 0xA61F}, {0xA620, 0xA629},
-	{0xA62A, 0xA62B}, {0xA640, 0xA66D}, {0xA66E, 0xA66E},
-	{0xA66F, 0xA66F}, {0xA670, 0xA672}, {0xA673, 0xA673},
-	{0xA674, 0xA67D}, {0xA67E, 0xA67E}, {0xA67F, 0xA67F},
-	{0xA680, 0xA69B}, {0xA69C, 0xA69D}, {0xA69E, 0xA69F},
-	{0xA6A0, 0xA6E5}, {0xA6E6, 0xA6EF}, {0xA6F0, 0xA6F1},
-	{0xA6F2, 0xA6F7}, {0xA700, 0xA716}, {0xA717, 0xA71F},
-	{0xA720, 0xA721}, {0xA722, 0xA76F}, {0xA770, 0xA770},
-	{0xA771, 0xA787}, {0xA788, 0xA788}, {0xA789, 0xA78A},
-	{0xA78B, 0xA78E}, {0xA78F, 0xA78F}, {0xA790, 0xA7AE},
-	{0xA7B0, 0xA7B7}, {0xA7F7, 0xA7F7}, {0xA7F8, 0xA7F9},
-	{0xA7FA, 0xA7FA}, {0xA7FB, 0xA7FF}, {0xA800, 0xA801},
-	{0xA802, 0xA802}, {0xA803, 0xA805}, {0xA806, 0xA806},
-	{0xA807, 0xA80A}, {0xA80B, 0xA80B}, {0xA80C, 0xA822},
-	{0xA823, 0xA824}, {0xA825, 0xA826}, {0xA827, 0xA827},
-	{0xA828, 0xA82B}, {0xA830, 0xA835}, {0xA836, 0xA837},
-	{0xA838, 0xA838}, {0xA839, 0xA839}, {0xA840, 0xA873},
-	{0xA874, 0xA877}, {0xA880, 0xA881}, {0xA882, 0xA8B3},
-	{0xA8B4, 0xA8C3}, {0xA8C4, 0xA8C5}, {0xA8CE, 0xA8CF},
-	{0xA8D0, 0xA8D9}, {0xA8E0, 0xA8F1}, {0xA8F2, 0xA8F7},
-	{0xA8F8, 0xA8FA}, {0xA8FB, 0xA8FB}, {0xA8FC, 0xA8FC},
-	{0xA8FD, 0xA8FD}, {0xA900, 0xA909}, {0xA90A, 0xA925},
-	{0xA926, 0xA92D}, {0xA92E, 0xA92F}, {0xA930, 0xA946},
-	{0xA947, 0xA951}, {0xA952, 0xA953}, {0xA95F, 0xA95F},
-	{0xA980, 0xA982}, {0xA983, 0xA983}, {0xA984, 0xA9B2},
-	{0xA9B3, 0xA9B3}, {0xA9B4, 0xA9B5}, {0xA9B6, 0xA9B9},
-	{0xA9BA, 0xA9BB}, {0xA9BC, 0xA9BC}, {0xA9BD, 0xA9C0},
-	{0xA9C1, 0xA9CD}, {0xA9CF, 0xA9CF}, {0xA9D0, 0xA9D9},
-	{0xA9DE, 0xA9DF}, {0xA9E0, 0xA9E4}, {0xA9E5, 0xA9E5},
-	{0xA9E6, 0xA9E6}, {0xA9E7, 0xA9EF}, {0xA9F0, 0xA9F9},
-	{0xA9FA, 0xA9FE}, {0xAA00, 0xAA28}, {0xAA29, 0xAA2E},
-	{0xAA2F, 0xAA30}, {0xAA31, 0xAA32}, {0xAA33, 0xAA34},
-	{0xAA35, 0xAA36}, {0xAA40, 0xAA42}, {0xAA43, 0xAA43},
-	{0xAA44, 0xAA4B}, {0xAA4C, 0xAA4C}, {0xAA4D, 0xAA4D},
-	{0xAA50, 0xAA59}, {0xAA5C, 0xAA5F}, {0xAA60, 0xAA6F},
-	{0xAA70, 0xAA70}, {0xAA71, 0xAA76}, {0xAA77, 0xAA79},
-	{0xAA7A, 0xAA7A}, {0xAA7B, 0xAA7B}, {0xAA7C, 0xAA7C},
-	{0xAA7D, 0xAA7D}, {0xAA7E, 0xAA7F}, {0xAA80, 0xAAAF},
-	{0xAAB0, 0xAAB0}, {0xAAB1, 0xAAB1}, {0xAAB2, 0xAAB4},
-	{0xAAB5, 0xAAB6}, {0xAAB7, 0xAAB8}, {0xAAB9, 0xAABD},
-	{0xAABE, 0xAABF}, {0xAAC0, 0xAAC0}, {0xAAC1, 0xAAC1},
-	{0xAAC2, 0xAAC2}, {0xAADB, 0xAADC}, {0xAADD, 0xAADD},
-	{0xAADE, 0xAADF}, {0xAAE0, 0xAAEA}, {0xAAEB, 0xAAEB},
-	{0xAAEC, 0xAAED}, {0xAAEE, 0xAAEF}, {0xAAF0, 0xAAF1},
-	{0xAAF2, 0xAAF2}, {0xAAF3, 0xAAF4}, {0xAAF5, 0xAAF5},
-	{0xAAF6, 0xAAF6}, {0xAB01, 0xAB06}, {0xAB09, 0xAB0E},
-	{0xAB11, 0xAB16}, {0xAB20, 0xAB26}, {0xAB28, 0xAB2E},
-	{0xAB30, 0xAB5A}, {0xAB5B, 0xAB5B}, {0xAB5C, 0xAB5F},
-	{0xAB60, 0xAB65}, {0xAB70, 0xABBF}, {0xABC0, 0xABE2},
-	{0xABE3, 0xABE4}, {0xABE5, 0xABE5}, {0xABE6, 0xABE7},
-	{0xABE8, 0xABE8}, {0xABE9, 0xABEA}, {0xABEB, 0xABEB},
-	{0xABEC, 0xABEC}, {0xABED, 0xABED}, {0xABF0, 0xABF9},
-	{0xD7B0, 0xD7C6}, {0xD7CB, 0xD7FB}, {0xD800, 0xDB7F},
-	{0xDB80, 0xDBFF}, {0xDC00, 0xDFFF}, {0xFB00, 0xFB06},
-	{0xFB13, 0xFB17}, {0xFB1D, 0xFB1D}, {0xFB1E, 0xFB1E},
-	{0xFB1F, 0xFB28}, {0xFB29, 0xFB29}, {0xFB2A, 0xFB36},
-	{0xFB38, 0xFB3C}, {0xFB3E, 0xFB3E}, {0xFB40, 0xFB41},
-	{0xFB43, 0xFB44}, {0xFB46, 0xFB4F}, {0xFB50, 0xFBB1},
-	{0xFBB2, 0xFBC1}, {0xFBD3, 0xFD3D}, {0xFD3E, 0xFD3E},
-	{0xFD3F, 0xFD3F}, {0xFD50, 0xFD8F}, {0xFD92, 0xFDC7},
-	{0xFDF0, 0xFDFB}, {0xFDFC, 0xFDFC}, {0xFDFD, 0xFDFD},
-	{0xFE20, 0xFE2F}, {0xFE70, 0xFE74}, {0xFE76, 0xFEFC},
-	{0xFEFF, 0xFEFF}, {0xFFF9, 0xFFFB}, {0xFFFC, 0xFFFC},
-	{0x10000, 0x1000B}, {0x1000D, 0x10026}, {0x10028, 0x1003A},
-	{0x1003C, 0x1003D}, {0x1003F, 0x1004D}, {0x10050, 0x1005D},
-	{0x10080, 0x100FA}, {0x10100, 0x10102}, {0x10107, 0x10133},
-	{0x10137, 0x1013F}, {0x10140, 0x10174}, {0x10175, 0x10178},
-	{0x10179, 0x10189}, {0x1018A, 0x1018B}, {0x1018C, 0x1018E},
-	{0x10190, 0x1019B}, {0x101A0, 0x101A0}, {0x101D0, 0x101FC},
-	{0x101FD, 0x101FD}, {0x10280, 0x1029C}, {0x102A0, 0x102D0},
-	{0x102E0, 0x102E0}, {0x102E1, 0x102FB}, {0x10300, 0x1031F},
-	{0x10320, 0x10323}, {0x10330, 0x10340}, {0x10341, 0x10341},
-	{0x10342, 0x10349}, {0x1034A, 0x1034A}, {0x10350, 0x10375},
-	{0x10376, 0x1037A}, {0x10380, 0x1039D}, {0x1039F, 0x1039F},
-	{0x103A0, 0x103C3}, {0x103C8, 0x103CF}, {0x103D0, 0x103D0},
-	{0x103D1, 0x103D5}, {0x10400, 0x1044F}, {0x10450, 0x1047F},
-	{0x10480, 0x1049D}, {0x104A0, 0x104A9}, {0x104B0, 0x104D3},
-	{0x104D8, 0x104FB}, {0x10500, 0x10527}, {0x10530, 0x10563},
-	{0x1056F, 0x1056F}, {0x10600, 0x10736}, {0x10740, 0x10755},
-	{0x10760, 0x10767}, {0x10800, 0x10805}, {0x10808, 0x10808},
-	{0x1080A, 0x10835}, {0x10837, 0x10838}, {0x1083C, 0x1083C},
-	{0x1083F, 0x1083F}, {0x10840, 0x10855}, {0x10857, 0x10857},
-	{0x10858, 0x1085F}, {0x10860, 0x10876}, {0x10877, 0x10878},
-	{0x10879, 0x1087F}, {0x10880, 0x1089E}, {0x108A7, 0x108AF},
-	{0x108E0, 0x108F2}, {0x108F4, 0x108F5}, {0x108FB, 0x108FF},
-	{0x10900, 0x10915}, {0x10916, 0x1091B}, {0x1091F, 0x1091F},
-	{0x10920, 0x10939}, {0x1093F, 0x1093F}, {0x10980, 0x1099F},
-	{0x109A0, 0x109B7}, {0x109BC, 0x109BD}, {0x109BE, 0x109BF},
-	{0x109C0, 0x109CF}, {0x109D2, 0x109FF}, {0x10A00, 0x10A00},
-	{0x10A01, 0x10A03}, {0x10A05, 0x10A06}, {0x10A0C, 0x10A0F},
-	{0x10A10, 0x10A13}, {0x10A15, 0x10A17}, {0x10A19, 0x10A33},
-	{0x10A38, 0x10A3A}, {0x10A3F, 0x10A3F}, {0x10A40, 0x10A47},
-	{0x10A50, 0x10A58}, {0x10A60, 0x10A7C}, {0x10A7D, 0x10A7E},
-	{0x10A7F, 0x10A7F}, {0x10A80, 0x10A9C}, {0x10A9D, 0x10A9F},
-	{0x10AC0, 0x10AC7}, {0x10AC8, 0x10AC8}, {0x10AC9, 0x10AE4},
-	{0x10AE5, 0x10AE6}, {0x10AEB, 0x10AEF}, {0x10AF0, 0x10AF6},
-	{0x10B00, 0x10B35}, {0x10B39, 0x10B3F}, {0x10B40, 0x10B55},
-	{0x10B58, 0x10B5F}, {0x10B60, 0x10B72}, {0x10B78, 0x10B7F},
-	{0x10B80, 0x10B91}, {0x10B99, 0x10B9C}, {0x10BA9, 0x10BAF},
-	{0x10C00, 0x10C48}, {0x10C80, 0x10CB2}, {0x10CC0, 0x10CF2},
-	{0x10CFA, 0x10CFF}, {0x10E60, 0x10E7E}, {0x11000, 0x11000},
-	{0x11001, 0x11001}, {0x11002, 0x11002}, {0x11003, 0x11037},
-	{0x11038, 0x11046}, {0x11047, 0x1104D}, {0x11052, 0x11065},
-	{0x11066, 0x1106F}, {0x1107F, 0x1107F}, {0x11080, 0x11081},
-	{0x11082, 0x11082}, {0x11083, 0x110AF}, {0x110B0, 0x110B2},
-	{0x110B3, 0x110B6}, {0x110B7, 0x110B8}, {0x110B9, 0x110BA},
-	{0x110BB, 0x110BC}, {0x110BD, 0x110BD}, {0x110BE, 0x110C1},
-	{0x110D0, 0x110E8}, {0x110F0, 0x110F9}, {0x11100, 0x11102},
-	{0x11103, 0x11126}, {0x11127, 0x1112B}, {0x1112C, 0x1112C},
-	{0x1112D, 0x11134}, {0x11136, 0x1113F}, {0x11140, 0x11143},
-	{0x11150, 0x11172}, {0x11173, 0x11173}, {0x11174, 0x11175},
-	{0x11176, 0x11176}, {0x11180, 0x11181}, {0x11182, 0x11182},
-	{0x11183, 0x111B2}, {0x111B3, 0x111B5}, {0x111B6, 0x111BE},
-	{0x111BF, 0x111C0}, {0x111C1, 0x111C4}, {0x111C5, 0x111C9},
-	{0x111CA, 0x111CC}, {0x111CD, 0x111CD}, {0x111D0, 0x111D9},
-	{0x111DA, 0x111DA}, {0x111DB, 0x111DB}, {0x111DC, 0x111DC},
-	{0x111DD, 0x111DF}, {0x111E1, 0x111F4}, {0x11200, 0x11211},
-	{0x11213, 0x1122B}, {0x1122C, 0x1122E}, {0x1122F, 0x11231},
-	{0x11232, 0x11233}, {0x11234, 0x11234}, {0x11235, 0x11235},
-	{0x11236, 0x11237}, {0x11238, 0x1123D}, {0x1123E, 0x1123E},
-	{0x11280, 0x11286}, {0x11288, 0x11288}, {0x1128A, 0x1128D},
-	{0x1128F, 0x1129D}, {0x1129F, 0x112A8}, {0x112A9, 0x112A9},
-	{0x112B0, 0x112DE}, {0x112DF, 0x112DF}, {0x112E0, 0x112E2},
-	{0x112E3, 0x112EA}, {0x112F0, 0x112F9}, {0x11300, 0x11301},
-	{0x11302, 0x11303}, {0x11305, 0x1130C}, {0x1130F, 0x11310},
-	{0x11313, 0x11328}, {0x1132A, 0x11330}, {0x11332, 0x11333},
-	{0x11335, 0x11339}, {0x1133C, 0x1133C}, {0x1133D, 0x1133D},
-	{0x1133E, 0x1133F}, {0x11340, 0x11340}, {0x11341, 0x11344},
-	{0x11347, 0x11348}, {0x1134B, 0x1134D}, {0x11350, 0x11350},
-	{0x11357, 0x11357}, {0x1135D, 0x11361}, {0x11362, 0x11363},
-	{0x11366, 0x1136C}, {0x11370, 0x11374}, {0x11400, 0x11434},
-	{0x11435, 0x11437}, {0x11438, 0x1143F}, {0x11440, 0x11441},
-	{0x11442, 0x11444}, {0x11445, 0x11445}, {0x11446, 0x11446},
-	{0x11447, 0x1144A}, {0x1144B, 0x1144F}, {0x11450, 0x11459},
-	{0x1145B, 0x1145B}, {0x1145D, 0x1145D}, {0x11480, 0x114AF},
-	{0x114B0, 0x114B2}, {0x114B3, 0x114B8}, {0x114B9, 0x114B9},
-	{0x114BA, 0x114BA}, {0x114BB, 0x114BE}, {0x114BF, 0x114C0},
-	{0x114C1, 0x114C1}, {0x114C2, 0x114C3}, {0x114C4, 0x114C5},
-	{0x114C6, 0x114C6}, {0x114C7, 0x114C7}, {0x114D0, 0x114D9},
-	{0x11580, 0x115AE}, {0x115AF, 0x115B1}, {0x115B2, 0x115B5},
-	{0x115B8, 0x115BB}, {0x115BC, 0x115BD}, {0x115BE, 0x115BE},
-	{0x115BF, 0x115C0}, {0x115C1, 0x115D7}, {0x115D8, 0x115DB},
-	{0x115DC, 0x115DD}, {0x11600, 0x1162F}, {0x11630, 0x11632},
-	{0x11633, 0x1163A}, {0x1163B, 0x1163C}, {0x1163D, 0x1163D},
-	{0x1163E, 0x1163E}, {0x1163F, 0x11640}, {0x11641, 0x11643},
-	{0x11644, 0x11644}, {0x11650, 0x11659}, {0x11660, 0x1166C},
-	{0x11680, 0x116AA}, {0x116AB, 0x116AB}, {0x116AC, 0x116AC},
-	{0x116AD, 0x116AD}, {0x116AE, 0x116AF}, {0x116B0, 0x116B5},
-	{0x116B6, 0x116B6}, {0x116B7, 0x116B7}, {0x116C0, 0x116C9},
-	{0x11700, 0x11719}, {0x1171D, 0x1171F}, {0x11720, 0x11721},
-	{0x11722, 0x11725}, {0x11726, 0x11726}, {0x11727, 0x1172B},
-	{0x11730, 0x11739}, {0x1173A, 0x1173B}, {0x1173C, 0x1173E},
-	{0x1173F, 0x1173F}, {0x118A0, 0x118DF}, {0x118E0, 0x118E9},
-	{0x118EA, 0x118F2}, {0x118FF, 0x118FF}, {0x11AC0, 0x11AF8},
-	{0x11C00, 0x11C08}, {0x11C0A, 0x11C2E}, {0x11C2F, 0x11C2F},
-	{0x11C30, 0x11C36}, {0x11C38, 0x11C3D}, {0x11C3E, 0x11C3E},
-	{0x11C3F, 0x11C3F}, {0x11C40, 0x11C40}, {0x11C41, 0x11C45},
-	{0x11C50, 0x11C59}, {0x11C5A, 0x11C6C}, {0x11C70, 0x11C71},
-	{0x11C72, 0x11C8F}, {0x11C92, 0x11CA7}, {0x11CA9, 0x11CA9},
-	{0x11CAA, 0x11CB0}, {0x11CB1, 0x11CB1}, {0x11CB2, 0x11CB3},
-	{0x11CB4, 0x11CB4}, {0x11CB5, 0x11CB6}, {0x12000, 0x12399},
-	{0x12400, 0x1246E}, {0x12470, 0x12474}, {0x12480, 0x12543},
-	{0x13000, 0x1342E}, {0x14400, 0x14646}, {0x16800, 0x16A38},
-	{0x16A40, 0x16A5E}, {0x16A60, 0x16A69}, {0x16A6E, 0x16A6F},
-	{0x16AD0, 0x16AED}, {0x16AF0, 0x16AF4}, {0x16AF5, 0x16AF5},
-	{0x16B00, 0x16B2F}, {0x16B30, 0x16B36}, {0x16B37, 0x16B3B},
-	{0x16B3C, 0x16B3F}, {0x16B40, 0x16B43}, {0x16B44, 0x16B44},
-	{0x16B45, 0x16B45}, {0x16B50, 0x16B59}, {0x16B5B, 0x16B61},
-	{0x16B63, 0x16B77}, {0x16B7D, 0x16B8F}, {0x16F00, 0x16F44},
-	{0x16F50, 0x16F50}, {0x16F51, 0x16F7E}, {0x16F8F, 0x16F92},
-	{0x16F93, 0x16F9F}, {0x1BC00, 0x1BC6A}, {0x1BC70, 0x1BC7C},
-	{0x1BC80, 0x1BC88}, {0x1BC90, 0x1BC99}, {0x1BC9C, 0x1BC9C},
-	{0x1BC9D, 0x1BC9E}, {0x1BC9F, 0x1BC9F}, {0x1BCA0, 0x1BCA3},
-	{0x1D000, 0x1D0F5}, {0x1D100, 0x1D126}, {0x1D129, 0x1D164},
-	{0x1D165, 0x1D166}, {0x1D167, 0x1D169}, {0x1D16A, 0x1D16C},
-	{0x1D16D, 0x1D172}, {0x1D173, 0x1D17A}, {0x1D17B, 0x1D182},
-	{0x1D183, 0x1D184}, {0x1D185, 0x1D18B}, {0x1D18C, 0x1D1A9},
-	{0x1D1AA, 0x1D1AD}, {0x1D1AE, 0x1D1E8}, {0x1D200, 0x1D241},
-	{0x1D242, 0x1D244}, {0x1D245, 0x1D245}, {0x1D300, 0x1D356},
-	{0x1D360, 0x1D371}, {0x1D400, 0x1D454}, {0x1D456, 0x1D49C},
-	{0x1D49E, 0x1D49F}, {0x1D4A2, 0x1D4A2}, {0x1D4A5, 0x1D4A6},
-	{0x1D4A9, 0x1D4AC}, {0x1D4AE, 0x1D4B9}, {0x1D4BB, 0x1D4BB},
-	{0x1D4BD, 0x1D4C3}, {0x1D4C5, 0x1D505}, {0x1D507, 0x1D50A},
-	{0x1D50D, 0x1D514}, {0x1D516, 0x1D51C}, {0x1D51E, 0x1D539},
-	{0x1D53B, 0x1D53E}, {0x1D540, 0x1D544}, {0x1D546, 0x1D546},
-	{0x1D54A, 0x1D550}, {0x1D552, 0x1D6A5}, {0x1D6A8, 0x1D6C0},
-	{0x1D6C1, 0x1D6C1}, {0x1D6C2, 0x1D6DA}, {0x1D6DB, 0x1D6DB},
-	{0x1D6DC, 0x1D6FA}, {0x1D6FB, 0x1D6FB}, {0x1D6FC, 0x1D714},
-	{0x1D715, 0x1D715}, {0x1D716, 0x1D734}, {0x1D735, 0x1D735},
-	{0x1D736, 0x1D74E}, {0x1D74F, 0x1D74F}, {0x1D750, 0x1D76E},
-	{0x1D76F, 0x1D76F}, {0x1D770, 0x1D788}, {0x1D789, 0x1D789},
-	{0x1D78A, 0x1D7A8}, {0x1D7A9, 0x1D7A9}, {0x1D7AA, 0x1D7C2},
-	{0x1D7C3, 0x1D7C3}, {0x1D7C4, 0x1D7CB}, {0x1D7CE, 0x1D7FF},
-	{0x1D800, 0x1D9FF}, {0x1DA00, 0x1DA36}, {0x1DA37, 0x1DA3A},
-	{0x1DA3B, 0x1DA6C}, {0x1DA6D, 0x1DA74}, {0x1DA75, 0x1DA75},
-	{0x1DA76, 0x1DA83}, {0x1DA84, 0x1DA84}, {0x1DA85, 0x1DA86},
-	{0x1DA87, 0x1DA8B}, {0x1DA9B, 0x1DA9F}, {0x1DAA1, 0x1DAAF},
-	{0x1E000, 0x1E006}, {0x1E008, 0x1E018}, {0x1E01B, 0x1E021},
-	{0x1E023, 0x1E024}, {0x1E026, 0x1E02A}, {0x1E800, 0x1E8C4},
-	{0x1E8C7, 0x1E8CF}, {0x1E8D0, 0x1E8D6}, {0x1E900, 0x1E943},
-	{0x1E944, 0x1E94A}, {0x1E950, 0x1E959}, {0x1E95E, 0x1E95F},
-	{0x1EE00, 0x1EE03}, {0x1EE05, 0x1EE1F}, {0x1EE21, 0x1EE22},
-	{0x1EE24, 0x1EE24}, {0x1EE27, 0x1EE27}, {0x1EE29, 0x1EE32},
-	{0x1EE34, 0x1EE37}, {0x1EE39, 0x1EE39}, {0x1EE3B, 0x1EE3B},
-	{0x1EE42, 0x1EE42}, {0x1EE47, 0x1EE47}, {0x1EE49, 0x1EE49},
-	{0x1EE4B, 0x1EE4B}, {0x1EE4D, 0x1EE4F}, {0x1EE51, 0x1EE52},
-	{0x1EE54, 0x1EE54}, {0x1EE57, 0x1EE57}, {0x1EE59, 0x1EE59},
-	{0x1EE5B, 0x1EE5B}, {0x1EE5D, 0x1EE5D}, {0x1EE5F, 0x1EE5F},
-	{0x1EE61, 0x1EE62}, {0x1EE64, 0x1EE64}, {0x1EE67, 0x1EE6A},
-	{0x1EE6C, 0x1EE72}, {0x1EE74, 0x1EE77}, {0x1EE79, 0x1EE7C},
-	{0x1EE7E, 0x1EE7E}, {0x1EE80, 0x1EE89}, {0x1EE8B, 0x1EE9B},
-	{0x1EEA1, 0x1EEA3}, {0x1EEA5, 0x1EEA9}, {0x1EEAB, 0x1EEBB},
-	{0x1EEF0, 0x1EEF1}, {0x1F000, 0x1F003}, {0x1F005, 0x1F02B},
-	{0x1F030, 0x1F093}, {0x1F0A0, 0x1F0AE}, {0x1F0B1, 0x1F0BF},
-	{0x1F0C1, 0x1F0CE}, {0x1F0D1, 0x1F0F5}, {0x1F10B, 0x1F10C},
-	{0x1F12E, 0x1F12E}, {0x1F16A, 0x1F16B}, {0x1F1E6, 0x1F1FF},
-	{0x1F321, 0x1F32C}, {0x1F336, 0x1F336}, {0x1F37D, 0x1F37D},
-	{0x1F394, 0x1F39F}, {0x1F3CB, 0x1F3CE}, {0x1F3D4, 0x1F3DF},
-	{0x1F3F1, 0x1F3F3}, {0x1F3F5, 0x1F3F7}, {0x1F43F, 0x1F43F},
-	{0x1F441, 0x1F441}, {0x1F4FD, 0x1F4FE}, {0x1F53E, 0x1F54A},
-	{0x1F54F, 0x1F54F}, {0x1F568, 0x1F579}, {0x1F57B, 0x1F594},
-	{0x1F597, 0x1F5A3}, {0x1F5A5, 0x1F5FA}, {0x1F650, 0x1F67F},
-	{0x1F6C6, 0x1F6CB}, {0x1F6CD, 0x1F6CF}, {0x1F6E0, 0x1F6EA},
-	{0x1F6F0, 0x1F6F3}, {0x1F700, 0x1F773}, {0x1F780, 0x1F7D4},
-	{0x1F800, 0x1F80B}, {0x1F810, 0x1F847}, {0x1F850, 0x1F859},
-	{0x1F860, 0x1F887}, {0x1F890, 0x1F8AD}, {0xE0001, 0xE0001},
-	{0xE0020, 0xE007F},
-}
-
-// Condition have flag EastAsianWidth whether the current locale is CJK or not.
-type Condition struct {
-	EastAsianWidth bool
-}
-
-// NewCondition return new instance of Condition which is current locale.
-func NewCondition() *Condition {
-	return &Condition{EastAsianWidth}
-}
-
-// RuneWidth returns the number of cells in r.
-// See http://www.unicode.org/reports/tr11/
-func (c *Condition) RuneWidth(r rune) int {
-	switch {
-	case r < 0 || r > 0x10FFFF ||
-		inTables(r, nonprint, combining, notassigned):
-		return 0
-	case (c.EastAsianWidth && IsAmbiguousWidth(r)) ||
-		inTables(r, doublewidth, emoji):
-		return 2
-	default:
-		return 1
-	}
-}
-
-// StringWidth return width as you can see
-func (c *Condition) StringWidth(s string) (width int) {
-	for _, r := range []rune(s) {
-		width += c.RuneWidth(r)
-	}
-	return width
-}
-
-// Truncate return string truncated with w cells
-func (c *Condition) Truncate(s string, w int, tail string) string {
-	if c.StringWidth(s) <= w {
-		return s
-	}
-	r := []rune(s)
-	tw := c.StringWidth(tail)
-	w -= tw
-	width := 0
-	i := 0
-	for ; i < len(r); i++ {
-		cw := c.RuneWidth(r[i])
-		if width+cw > w {
-			break
-		}
-		width += cw
-	}
-	return string(r[0:i]) + tail
-}
-
-// Wrap return string wrapped with w cells
-func (c *Condition) Wrap(s string, w int) string {
-	width := 0
-	out := ""
-	for _, r := range []rune(s) {
-		cw := RuneWidth(r)
-		if r == '\n' {
-			out += string(r)
-			width = 0
-			continue
-		} else if width+cw > w {
-			out += "\n"
-			width = 0
-			out += string(r)
-			width += cw
-			continue
-		}
-		out += string(r)
-		width += cw
-	}
-	return out
-}
-
-// FillLeft return string filled in left by spaces in w cells
-func (c *Condition) FillLeft(s string, w int) string {
-	width := c.StringWidth(s)
-	count := w - width
-	if count > 0 {
-		b := make([]byte, count)
-		for i := range b {
-			b[i] = ' '
-		}
-		return string(b) + s
-	}
-	return s
-}
-
-// FillRight return string filled in left by spaces in w cells
-func (c *Condition) FillRight(s string, w int) string {
-	width := c.StringWidth(s)
-	count := w - width
-	if count > 0 {
-		b := make([]byte, count)
-		for i := range b {
-			b[i] = ' '
-		}
-		return s + string(b)
-	}
-	return s
-}
-
-// RuneWidth returns the number of cells in r.
-// See http://www.unicode.org/reports/tr11/
-func RuneWidth(r rune) int {
-	return DefaultCondition.RuneWidth(r)
-}
-
-// IsAmbiguousWidth returns whether is ambiguous width or not.
-func IsAmbiguousWidth(r rune) bool {
-	return inTables(r, private, ambiguous)
-}
-
-// IsNeutralWidth returns whether is neutral width or not.
-func IsNeutralWidth(r rune) bool {
-	return inTable(r, neutral)
-}
-
-// StringWidth return width as you can see
-func StringWidth(s string) (width int) {
-	return DefaultCondition.StringWidth(s)
-}
-
-// Truncate return string truncated with w cells
-func Truncate(s string, w int, tail string) string {
-	return DefaultCondition.Truncate(s, w, tail)
-}
-
-// Wrap return string wrapped with w cells
-func Wrap(s string, w int) string {
-	return DefaultCondition.Wrap(s, w)
-}
-
-// FillLeft return string filled in left by spaces in w cells
-func FillLeft(s string, w int) string {
-	return DefaultCondition.FillLeft(s, w)
-}
-
-// FillRight return string filled in left by spaces in w cells
-func FillRight(s string, w int) string {
-	return DefaultCondition.FillRight(s, w)
-}
diff --git a/vendor/github.com/mattn/go-runewidth/runewidth_js.go b/vendor/github.com/mattn/go-runewidth/runewidth_js.go
deleted file mode 100644
index 0ce32c5e7b..0000000000
--- a/vendor/github.com/mattn/go-runewidth/runewidth_js.go
+++ /dev/null
@@ -1,8 +0,0 @@
-// +build js
-
-package runewidth
-
-func IsEastAsian() bool {
-	// TODO: Implement this for the web. Detect east asian in a compatible way, and return true.
-	return false
-}
diff --git a/vendor/github.com/mattn/go-runewidth/runewidth_posix.go b/vendor/github.com/mattn/go-runewidth/runewidth_posix.go
deleted file mode 100644
index c579e9a314..0000000000
--- a/vendor/github.com/mattn/go-runewidth/runewidth_posix.go
+++ /dev/null
@@ -1,77 +0,0 @@
-// +build !windows,!js
-
-package runewidth
-
-import (
-	"os"
-	"regexp"
-	"strings"
-)
-
-var reLoc = regexp.MustCompile(`^[a-z][a-z][a-z]?(?:_[A-Z][A-Z])?\.(.+)`)
-
-var mblenTable = map[string]int{
-	"utf-8":   6,
-	"utf8":    6,
-	"jis":     8,
-	"eucjp":   3,
-	"euckr":   2,
-	"euccn":   2,
-	"sjis":    2,
-	"cp932":   2,
-	"cp51932": 2,
-	"cp936":   2,
-	"cp949":   2,
-	"cp950":   2,
-	"big5":    2,
-	"gbk":     2,
-	"gb2312":  2,
-}
-
-func isEastAsian(locale string) bool {
-	charset := strings.ToLower(locale)
-	r := reLoc.FindStringSubmatch(locale)
-	if len(r) == 2 {
-		charset = strings.ToLower(r[1])
-	}
-
-	if strings.HasSuffix(charset, "@cjk_narrow") {
-		return false
-	}
-
-	for pos, b := range []byte(charset) {
-		if b == '@' {
-			charset = charset[:pos]
-			break
-		}
-	}
-	max := 1
-	if m, ok := mblenTable[charset]; ok {
-		max = m
-	}
-	if max > 1 && (charset[0] != 'u' ||
-		strings.HasPrefix(locale, "ja") ||
-		strings.HasPrefix(locale, "ko") ||
-		strings.HasPrefix(locale, "zh")) {
-		return true
-	}
-	return false
-}
-
-// IsEastAsian return true if the current locale is CJK
-func IsEastAsian() bool {
-	locale := os.Getenv("LC_CTYPE")
-	if locale == "" {
-		locale = os.Getenv("LANG")
-	}
-
-	// ignore C locale
-	if locale == "POSIX" || locale == "C" {
-		return false
-	}
-	if len(locale) > 1 && locale[0] == 'C' && (locale[1] == '.' || locale[1] == '-') {
-		return false
-	}
-
-	return isEastAsian(locale)
-}
diff --git a/vendor/github.com/mattn/go-runewidth/runewidth_windows.go b/vendor/github.com/mattn/go-runewidth/runewidth_windows.go
deleted file mode 100644
index 0258876b99..0000000000
--- a/vendor/github.com/mattn/go-runewidth/runewidth_windows.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package runewidth
-
-import (
-	"syscall"
-)
-
-var (
-	kernel32               = syscall.NewLazyDLL("kernel32")
-	procGetConsoleOutputCP = kernel32.NewProc("GetConsoleOutputCP")
-)
-
-// IsEastAsian return true if the current locale is CJK
-func IsEastAsian() bool {
-	r1, _, _ := procGetConsoleOutputCP.Call()
-	if r1 == 0 {
-		return false
-	}
-
-	switch int(r1) {
-	case 932, 51932, 936, 949, 950:
-		return true
-	}
-
-	return false
-}
diff --git a/vendor/github.com/mattn/go-shellwords/LICENSE b/vendor/github.com/mattn/go-shellwords/LICENSE
deleted file mode 100644
index 740fa93132..0000000000
--- a/vendor/github.com/mattn/go-shellwords/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2017 Yasuhiro Matsumoto
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
diff --git a/vendor/github.com/mattn/go-shellwords/shellwords.go b/vendor/github.com/mattn/go-shellwords/shellwords.go
deleted file mode 100644
index 107803927a..0000000000
--- a/vendor/github.com/mattn/go-shellwords/shellwords.go
+++ /dev/null
@@ -1,145 +0,0 @@
-package shellwords
-
-import (
-	"errors"
-	"os"
-	"regexp"
-)
-
-var (
-	ParseEnv      bool = false
-	ParseBacktick bool = false
-)
-
-var envRe = regexp.MustCompile(`\$({[a-zA-Z0-9_]+}|[a-zA-Z0-9_]+)`)
-
-func isSpace(r rune) bool {
-	switch r {
-	case ' ', '\t', '\r', '\n':
-		return true
-	}
-	return false
-}
-
-func replaceEnv(s string) string {
-	return envRe.ReplaceAllStringFunc(s, func(s string) string {
-		s = s[1:]
-		if s[0] == '{' {
-			s = s[1 : len(s)-1]
-		}
-		return os.Getenv(s)
-	})
-}
-
-type Parser struct {
-	ParseEnv      bool
-	ParseBacktick bool
-	Position      int
-}
-
-func NewParser() *Parser {
-	return &Parser{ParseEnv, ParseBacktick, 0}
-}
-
-func (p *Parser) Parse(line string) ([]string, error) {
-	args := []string{}
-	buf := ""
-	var escaped, doubleQuoted, singleQuoted, backQuote bool
-	backtick := ""
-
-	pos := -1
-	got := false
-
-loop:
-	for i, r := range line {
-		if escaped {
-			buf += string(r)
-			escaped = false
-			continue
-		}
-
-		if r == '\\' {
-			if singleQuoted {
-				buf += string(r)
-			} else {
-				escaped = true
-			}
-			continue
-		}
-
-		if isSpace(r) {
-			if singleQuoted || doubleQuoted || backQuote {
-				buf += string(r)
-				backtick += string(r)
-			} else if got {
-				if p.ParseEnv {
-					buf = replaceEnv(buf)
-				}
-				args = append(args, buf)
-				buf = ""
-				got = false
-			}
-			continue
-		}
-
-		switch r {
-		case '`':
-			if !singleQuoted && !doubleQuoted {
-				if p.ParseBacktick {
-					if backQuote {
-						out, err := shellRun(backtick)
-						if err != nil {
-							return nil, err
-						}
-						buf = out
-					}
-					backtick = ""
-					backQuote = !backQuote
-					continue
-				}
-				backtick = ""
-				backQuote = !backQuote
-			}
-		case '"':
-			if !singleQuoted {
-				doubleQuoted = !doubleQuoted
-				continue
-			}
-		case '\'':
-			if !doubleQuoted {
-				singleQuoted = !singleQuoted
-				continue
-			}
-		case ';', '&', '|', '<', '>':
-			if !(escaped || singleQuoted || doubleQuoted || backQuote) {
-				pos = i
-				break loop
-			}
-		}
-
-		got = true
-		buf += string(r)
-		if backQuote {
-			backtick += string(r)
-		}
-	}
-
-	if got {
-		if p.ParseEnv {
-			buf = replaceEnv(buf)
-		}
-		args = append(args, buf)
-	}
-
-	if escaped || singleQuoted || doubleQuoted || backQuote {
-		return nil, errors.New("invalid command line string")
-	}
-
-	p.Position = pos
-
-	return args, nil
-}
-
-func Parse(line string) ([]string, error) {
-	return NewParser().Parse(line)
-}
diff --git a/vendor/github.com/mattn/go-shellwords/util_posix.go b/vendor/github.com/mattn/go-shellwords/util_posix.go
deleted file mode 100644
index 4f8ac55e47..0000000000
--- a/vendor/github.com/mattn/go-shellwords/util_posix.go
+++ /dev/null
@@ -1,19 +0,0 @@
-// +build !windows
-
-package shellwords
-
-import (
-	"errors"
-	"os"
-	"os/exec"
-	"strings"
-)
-
-func shellRun(line string) (string, error) {
-	shell := os.Getenv("SHELL")
-	b, err := exec.Command(shell, "-c", line).Output()
-	if err != nil {
-		return "", errors.New(err.Error() + ":" + string(b))
-	}
-	return strings.TrimSpace(string(b)), nil
-}
diff --git a/vendor/github.com/mattn/go-shellwords/util_windows.go b/vendor/github.com/mattn/go-shellwords/util_windows.go
deleted file mode 100644
index 7cad4cf06f..0000000000
--- a/vendor/github.com/mattn/go-shellwords/util_windows.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package shellwords
-
-import (
-	"errors"
-	"os"
-	"os/exec"
-	"strings"
-)
-
-func shellRun(line string) (string, error) {
-	shell := os.Getenv("COMSPEC")
-	b, err := exec.Command(shell, "/c", line).Output()
-	if err != nil {
-		return "", errors.New(err.Error() + ":" + string(b))
-	}
-	return strings.TrimSpace(string(b)), nil
-}
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE b/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
deleted file mode 100644
index 8dada3edaf..0000000000
--- a/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "{}"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright {yyyy} {name of copyright owner}
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE b/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
deleted file mode 100644
index 5d8cb5b72e..0000000000
--- a/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
+++ /dev/null
@@ -1 +0,0 @@
-Copyright 2012 Matt T. Proud (matt.proud@gmail.com)
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
deleted file mode 100644
index 258c0636aa..0000000000
--- a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
+++ /dev/null
@@ -1,75 +0,0 @@
-// Copyright 2013 Matt T. Proud
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-//     http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package pbutil
-
-import (
-	"encoding/binary"
-	"errors"
-	"io"
-
-	"github.com/golang/protobuf/proto"
-)
-
-var errInvalidVarint = errors.New("invalid varint32 encountered")
-
-// ReadDelimited decodes a message from the provided length-delimited stream,
-// where the length is encoded as 32-bit varint prefix to the message body.
-// It returns the total number of bytes read and any applicable error.  This is
-// roughly equivalent to the companion Java API's
-// MessageLite#parseDelimitedFrom.  As per the reader contract, this function
-// calls r.Read repeatedly as required until exactly one message including its
-// prefix is read and decoded (or an error has occurred).  The function never
-// reads more bytes from the stream than required.  The function never returns
-// an error if a message has been read and decoded correctly, even if the end
-// of the stream has been reached in doing so.  In that case, any subsequent
-// calls return (0, io.EOF).
-func ReadDelimited(r io.Reader, m proto.Message) (n int, err error) {
-	// Per AbstractParser#parsePartialDelimitedFrom with
-	// CodedInputStream#readRawVarint32.
-	var headerBuf [binary.MaxVarintLen32]byte
-	var bytesRead, varIntBytes int
-	var messageLength uint64
-	for varIntBytes == 0 { // i.e. no varint has been decoded yet.
-		if bytesRead >= len(headerBuf) {
-			return bytesRead, errInvalidVarint
-		}
-		// We have to read byte by byte here to avoid reading more bytes
-		// than required. Each read byte is appended to what we have
-		// read before.
-		newBytesRead, err := r.Read(headerBuf[bytesRead : bytesRead+1])
-		if newBytesRead == 0 {
-			if err != nil {
-				return bytesRead, err
-			}
-			// A Reader should not return (0, nil), but if it does,
-			// it should be treated as no-op (according to the
-			// Reader contract). So let's go on...
-			continue
-		}
-		bytesRead += newBytesRead
-		// Now present everything read so far to the varint decoder and
-		// see if a varint can be decoded already.
-		messageLength, varIntBytes = proto.DecodeVarint(headerBuf[:bytesRead])
-	}
-
-	messageBuf := make([]byte, messageLength)
-	newBytesRead, err := io.ReadFull(r, messageBuf)
-	bytesRead += newBytesRead
-	if err != nil {
-		return bytesRead, err
-	}
-
-	return bytesRead, proto.Unmarshal(messageBuf, m)
-}
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
deleted file mode 100644
index 8fb59ad226..0000000000
--- a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
+++ /dev/null
@@ -1,46 +0,0 @@
-// Copyright 2013 Matt T. Proud
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-//     http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package pbutil
-
-import (
-	"encoding/binary"
-	"io"
-
-	"github.com/golang/protobuf/proto"
-)
-
-// WriteDelimited encodes and dumps a message to the provided writer prefixed
-// with a 32-bit varint indicating the length of the encoded message, producing
-// a length-delimited record stream, which can be used to chain together
-// encoded messages of the same type together in a file.  It returns the total
-// number of bytes written and any applicable error.  This is roughly
-// equivalent to the companion Java API's MessageLite#writeDelimitedTo.
-func WriteDelimited(w io.Writer, m proto.Message) (n int, err error) {
-	buffer, err := proto.Marshal(m)
-	if err != nil {
-		return 0, err
-	}
-
-	var buf [binary.MaxVarintLen32]byte
-	encodedLength := binary.PutUvarint(buf[:], uint64(len(buffer)))
-
-	sync, err := w.Write(buf[:encodedLength])
-	if err != nil {
-		return sync, err
-	}
-
-	n, err = w.Write(buffer)
-	return n + sync, err
-}
diff --git a/vendor/github.com/mistifyio/go-zfs/LICENSE b/vendor/github.com/mistifyio/go-zfs/LICENSE
deleted file mode 100644
index f4c265cfec..0000000000
--- a/vendor/github.com/mistifyio/go-zfs/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "{}"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright (c) 2014, OmniTI Computer Consulting, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
\ No newline at end of file
diff --git a/vendor/github.com/mistifyio/go-zfs/error.go b/vendor/github.com/mistifyio/go-zfs/error.go
deleted file mode 100644
index 5408ccdb55..0000000000
--- a/vendor/github.com/mistifyio/go-zfs/error.go
+++ /dev/null
@@ -1,18 +0,0 @@
-package zfs
-
-import (
-	"fmt"
-)
-
-// Error is an error which is returned when the `zfs` or `zpool` shell
-// commands return with a non-zero exit code.
-type Error struct {
-	Err    error
-	Debug  string
-	Stderr string
-}
-
-// Error returns the string representation of an Error.
-func (e Error) Error() string {
-	return fmt.Sprintf("%s: %q => %s", e.Err, e.Debug, e.Stderr)
-}
diff --git a/vendor/github.com/mistifyio/go-zfs/utils.go b/vendor/github.com/mistifyio/go-zfs/utils.go
deleted file mode 100644
index d5b7353494..0000000000
--- a/vendor/github.com/mistifyio/go-zfs/utils.go
+++ /dev/null
@@ -1,320 +0,0 @@
-package zfs
-
-import (
-	"bytes"
-	"fmt"
-	"io"
-	"os/exec"
-	"regexp"
-	"strconv"
-	"strings"
-)
-
-type command struct {
-	Command string
-	Stdin   io.Reader
-	Stdout  io.Writer
-}
-
-func (c *command) Run(arg ...string) ([][]string, error) {
-
-	cmd := exec.Command(c.Command, arg...)
-
-	var stdout, stderr bytes.Buffer
-
-	if c.Stdout == nil {
-		cmd.Stdout = &stdout
-	} else {
-		cmd.Stdout = c.Stdout
-	}
-
-	if c.Stdin != nil {
-		cmd.Stdin = c.Stdin
-
-	}
-	cmd.Stderr = &stderr
-
-	debug := strings.Join([]string{cmd.Path, strings.Join(cmd.Args, " ")}, " ")
-	if logger != nil {
-		logger.Log(cmd.Args)
-	}
-	err := cmd.Run()
-
-	if err != nil {
-		return nil, &Error{
-			Err:    err,
-			Debug:  debug,
-			Stderr: stderr.String(),
-		}
-	}
-
-	// assume if you passed in something for stdout, that you know what to do with it
-	if c.Stdout != nil {
-		return nil, nil
-	}
-
-	lines := strings.Split(stdout.String(), "\n")
-
-	//last line is always blank
-	lines = lines[0 : len(lines)-1]
-	output := make([][]string, len(lines))
-
-	for i, l := range lines {
-		output[i] = strings.Fields(l)
-	}
-
-	return output, nil
-}
-
-func setString(field *string, value string) {
-	v := ""
-	if value != "-" {
-		v = value
-	}
-	*field = v
-}
-
-func setUint(field *uint64, value string) error {
-	var v uint64
-	if value != "-" {
-		var err error
-		v, err = strconv.ParseUint(value, 10, 64)
-		if err != nil {
-			return err
-		}
-	}
-	*field = v
-	return nil
-}
-
-func (ds *Dataset) parseLine(line []string) error {
-	prop := line[1]
-	val := line[2]
-
-	var err error
-
-	switch prop {
-	case "available":
-		err = setUint(&ds.Avail, val)
-	case "compression":
-		setString(&ds.Compression, val)
-	case "mountpoint":
-		setString(&ds.Mountpoint, val)
-	case "quota":
-		err = setUint(&ds.Quota, val)
-	case "type":
-		setString(&ds.Type, val)
-	case "origin":
-		setString(&ds.Origin, val)
-	case "used":
-		err = setUint(&ds.Used, val)
-	case "volsize":
-		err = setUint(&ds.Volsize, val)
-	case "written":
-		err = setUint(&ds.Written, val)
-	case "logicalused":
-		err = setUint(&ds.Logicalused, val)
-	}
-	return err
-}
-
-/*
- * from zfs diff`s escape function:
- *
- * Prints a file name out a character at a time.  If the character is
- * not in the range of what we consider "printable" ASCII, display it
- * as an escaped 3-digit octal value.  ASCII values less than a space
- * are all control characters and we declare the upper end as the
- * DELete character.  This also is the last 7-bit ASCII character.
- * We choose to treat all 8-bit ASCII as not printable for this
- * application.
- */
-func unescapeFilepath(path string) (string, error) {
-	buf := make([]byte, 0, len(path))
-	llen := len(path)
-	for i := 0; i < llen; {
-		if path[i] == '\\' {
-			if llen < i+4 {
-				return "", fmt.Errorf("Invalid octal code: too short")
-			}
-			octalCode := path[(i + 1):(i + 4)]
-			val, err := strconv.ParseUint(octalCode, 8, 8)
-			if err != nil {
-				return "", fmt.Errorf("Invalid octal code: %v", err)
-			}
-			buf = append(buf, byte(val))
-			i += 4
-		} else {
-			buf = append(buf, path[i])
-			i++
-		}
-	}
-	return string(buf), nil
-}
-
-var changeTypeMap = map[string]ChangeType{
-	"-": Removed,
-	"+": Created,
-	"M": Modified,
-	"R": Renamed,
-}
-var inodeTypeMap = map[string]InodeType{
-	"B": BlockDevice,
-	"C": CharacterDevice,
-	"/": Directory,
-	">": Door,
-	"|": NamedPipe,
-	"@": SymbolicLink,
-	"P": EventPort,
-	"=": Socket,
-	"F": File,
-}
-
-// matches (+1) or (-1)
-var referenceCountRegex = regexp.MustCompile("\\(([+-]\\d+?)\\)")
-
-func parseReferenceCount(field string) (int, error) {
-	matches := referenceCountRegex.FindStringSubmatch(field)
-	if matches == nil {
-		return 0, fmt.Errorf("Regexp does not match")
-	}
-	return strconv.Atoi(matches[1])
-}
-
-func parseInodeChange(line []string) (*InodeChange, error) {
-	llen := len(line)
-	if llen < 1 {
-		return nil, fmt.Errorf("Empty line passed")
-	}
-
-	changeType := changeTypeMap[line[0]]
-	if changeType == 0 {
-		return nil, fmt.Errorf("Unknown change type '%s'", line[0])
-	}
-
-	switch changeType {
-	case Renamed:
-		if llen != 4 {
-			return nil, fmt.Errorf("Mismatching number of fields: expect 4, got: %d", llen)
-		}
-	case Modified:
-		if llen != 4 && llen != 3 {
-			return nil, fmt.Errorf("Mismatching number of fields: expect 3..4, got: %d", llen)
-		}
-	default:
-		if llen != 3 {
-			return nil, fmt.Errorf("Mismatching number of fields: expect 3, got: %d", llen)
-		}
-	}
-
-	inodeType := inodeTypeMap[line[1]]
-	if inodeType == 0 {
-		return nil, fmt.Errorf("Unknown inode type '%s'", line[1])
-	}
-
-	path, err := unescapeFilepath(line[2])
-	if err != nil {
-		return nil, fmt.Errorf("Failed to parse filename: %v", err)
-	}
-
-	var newPath string
-	var referenceCount int
-	switch changeType {
-	case Renamed:
-		newPath, err = unescapeFilepath(line[3])
-		if err != nil {
-			return nil, fmt.Errorf("Failed to parse filename: %v", err)
-		}
-	case Modified:
-		if llen == 4 {
-			referenceCount, err = parseReferenceCount(line[3])
-			if err != nil {
-				return nil, fmt.Errorf("Failed to parse reference count: %v", err)
-			}
-		}
-	default:
-		newPath = ""
-	}
-
-	return &InodeChange{
-		Change:               changeType,
-		Type:                 inodeType,
-		Path:                 path,
-		NewPath:              newPath,
-		ReferenceCountChange: referenceCount,
-	}, nil
-}
-
-// example input
-//M       /       /testpool/bar/
-//+       F       /testpool/bar/hello.txt
-//M       /       /testpool/bar/hello.txt (+1)
-//M       /       /testpool/bar/hello-hardlink
-func parseInodeChanges(lines [][]string) ([]*InodeChange, error) {
-	changes := make([]*InodeChange, len(lines))
-
-	for i, line := range lines {
-		c, err := parseInodeChange(line)
-		if err != nil {
-			return nil, fmt.Errorf("Failed to parse line %d of zfs diff: %v, got: '%s'", i, err, line)
-		}
-		changes[i] = c
-	}
-	return changes, nil
-}
-
-func listByType(t, filter string) ([]*Dataset, error) {
-	args := []string{"get", "-rHp", "-t", t, "all"}
-	if filter != "" {
-		args = append(args, filter)
-	}
-	out, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-
-	var datasets []*Dataset
-
-	name := ""
-	var ds *Dataset
-	for _, line := range out {
-		if name != line[0] {
-			name = line[0]
-			ds = &Dataset{Name: name}
-			datasets = append(datasets, ds)
-		}
-		if err := ds.parseLine(line); err != nil {
-			return nil, err
-		}
-	}
-
-	return datasets, nil
-}
-
-func propsSlice(properties map[string]string) []string {
-	args := make([]string, 0, len(properties)*3)
-	for k, v := range properties {
-		args = append(args, "-o")
-		args = append(args, fmt.Sprintf("%s=%s", k, v))
-	}
-	return args
-}
-
-func (z *Zpool) parseLine(line []string) error {
-	prop := line[1]
-	val := line[2]
-
-	var err error
-
-	switch prop {
-	case "health":
-		setString(&z.Health, val)
-	case "allocated":
-		err = setUint(&z.Allocated, val)
-	case "size":
-		err = setUint(&z.Size, val)
-	case "free":
-		err = setUint(&z.Free, val)
-	}
-	return err
-}
diff --git a/vendor/github.com/mistifyio/go-zfs/zfs.go b/vendor/github.com/mistifyio/go-zfs/zfs.go
deleted file mode 100644
index a1d740e07e..0000000000
--- a/vendor/github.com/mistifyio/go-zfs/zfs.go
+++ /dev/null
@@ -1,382 +0,0 @@
-// Package zfs provides wrappers around the ZFS command line tools.
-package zfs
-
-import (
-	"errors"
-	"fmt"
-	"io"
-	"strconv"
-	"strings"
-)
-
-// ZFS dataset types, which can indicate if a dataset is a filesystem,
-// snapshot, or volume.
-const (
-	DatasetFilesystem = "filesystem"
-	DatasetSnapshot   = "snapshot"
-	DatasetVolume     = "volume"
-)
-
-// Dataset is a ZFS dataset.  A dataset could be a clone, filesystem, snapshot,
-// or volume.  The Type struct member can be used to determine a dataset's type.
-//
-// The field definitions can be found in the ZFS manual:
-// http://www.freebsd.org/cgi/man.cgi?zfs(8).
-type Dataset struct {
-	Name          string
-	Origin        string
-	Used          uint64
-	Avail         uint64
-	Mountpoint    string
-	Compression   string
-	Type          string
-	Written       uint64
-	Volsize       uint64
-	Usedbydataset uint64
-	Logicalused   uint64
-	Quota         uint64
-}
-
-// InodeType is the type of inode as reported by Diff
-type InodeType int
-
-// Types of Inodes
-const (
-	_                     = iota // 0 == unknown type
-	BlockDevice InodeType = iota
-	CharacterDevice
-	Directory
-	Door
-	NamedPipe
-	SymbolicLink
-	EventPort
-	Socket
-	File
-)
-
-// ChangeType is the type of inode change as reported by Diff
-type ChangeType int
-
-// Types of Changes
-const (
-	_                  = iota // 0 == unknown type
-	Removed ChangeType = iota
-	Created
-	Modified
-	Renamed
-)
-
-// DestroyFlag is the options flag passed to Destroy
-type DestroyFlag int
-
-// Valid destroy options
-const (
-	DestroyDefault         DestroyFlag = 1 << iota
-	DestroyRecursive                   = 1 << iota
-	DestroyRecursiveClones             = 1 << iota
-	DestroyDeferDeletion               = 1 << iota
-	DestroyForceUmount                 = 1 << iota
-)
-
-// InodeChange represents a change as reported by Diff
-type InodeChange struct {
-	Change               ChangeType
-	Type                 InodeType
-	Path                 string
-	NewPath              string
-	ReferenceCountChange int
-}
-
-// Logger can be used to log commands/actions
-type Logger interface {
-	Log(cmd []string)
-}
-
-var logger Logger
-
-// SetLogger set a log handler to log all commands including arguments before
-// they are executed
-func SetLogger(l Logger) {
-	logger = l
-}
-
-// zfs is a helper function to wrap typical calls to zfs.
-func zfs(arg ...string) ([][]string, error) {
-	c := command{Command: "zfs"}
-	return c.Run(arg...)
-}
-
-// Datasets returns a slice of ZFS datasets, regardless of type.
-// A filter argument may be passed to select a dataset with the matching name,
-// or empty string ("") may be used to select all datasets.
-func Datasets(filter string) ([]*Dataset, error) {
-	return listByType("all", filter)
-}
-
-// Snapshots returns a slice of ZFS snapshots.
-// A filter argument may be passed to select a snapshot with the matching name,
-// or empty string ("") may be used to select all snapshots.
-func Snapshots(filter string) ([]*Dataset, error) {
-	return listByType(DatasetSnapshot, filter)
-}
-
-// Filesystems returns a slice of ZFS filesystems.
-// A filter argument may be passed to select a filesystem with the matching name,
-// or empty string ("") may be used to select all filesystems.
-func Filesystems(filter string) ([]*Dataset, error) {
-	return listByType(DatasetFilesystem, filter)
-}
-
-// Volumes returns a slice of ZFS volumes.
-// A filter argument may be passed to select a volume with the matching name,
-// or empty string ("") may be used to select all volumes.
-func Volumes(filter string) ([]*Dataset, error) {
-	return listByType(DatasetVolume, filter)
-}
-
-// GetDataset retrieves a single ZFS dataset by name.  This dataset could be
-// any valid ZFS dataset type, such as a clone, filesystem, snapshot, or volume.
-func GetDataset(name string) (*Dataset, error) {
-	out, err := zfs("get", "-Hp", "all", name)
-	if err != nil {
-		return nil, err
-	}
-
-	ds := &Dataset{Name: name}
-	for _, line := range out {
-		if err := ds.parseLine(line); err != nil {
-			return nil, err
-		}
-	}
-
-	return ds, nil
-}
-
-// Clone clones a ZFS snapshot and returns a clone dataset.
-// An error will be returned if the input dataset is not of snapshot type.
-func (d *Dataset) Clone(dest string, properties map[string]string) (*Dataset, error) {
-	if d.Type != DatasetSnapshot {
-		return nil, errors.New("can only clone snapshots")
-	}
-	args := make([]string, 2, 4)
-	args[0] = "clone"
-	args[1] = "-p"
-	if properties != nil {
-		args = append(args, propsSlice(properties)...)
-	}
-	args = append(args, []string{d.Name, dest}...)
-	_, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-	return GetDataset(dest)
-}
-
-// ReceiveSnapshot receives a ZFS stream from the input io.Reader, creates a
-// new snapshot with the specified name, and streams the input data into the
-// newly-created snapshot.
-func ReceiveSnapshot(input io.Reader, name string) (*Dataset, error) {
-	c := command{Command: "zfs", Stdin: input}
-	_, err := c.Run("receive", name)
-	if err != nil {
-		return nil, err
-	}
-	return GetDataset(name)
-}
-
-// SendSnapshot sends a ZFS stream of a snapshot to the input io.Writer.
-// An error will be returned if the input dataset is not of snapshot type.
-func (d *Dataset) SendSnapshot(output io.Writer) error {
-	if d.Type != DatasetSnapshot {
-		return errors.New("can only send snapshots")
-	}
-
-	c := command{Command: "zfs", Stdout: output}
-	_, err := c.Run("send", d.Name)
-	return err
-}
-
-// CreateVolume creates a new ZFS volume with the specified name, size, and
-// properties.
-// A full list of available ZFS properties may be found here:
-// https://www.freebsd.org/cgi/man.cgi?zfs(8).
-func CreateVolume(name string, size uint64, properties map[string]string) (*Dataset, error) {
-	args := make([]string, 4, 5)
-	args[0] = "create"
-	args[1] = "-p"
-	args[2] = "-V"
-	args[3] = strconv.FormatUint(size, 10)
-	if properties != nil {
-		args = append(args, propsSlice(properties)...)
-	}
-	args = append(args, name)
-	_, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-	return GetDataset(name)
-}
-
-// Destroy destroys a ZFS dataset. If the destroy bit flag is set, any
-// descendents of the dataset will be recursively destroyed, including snapshots.
-// If the deferred bit flag is set, the snapshot is marked for deferred
-// deletion.
-func (d *Dataset) Destroy(flags DestroyFlag) error {
-	args := make([]string, 1, 3)
-	args[0] = "destroy"
-	if flags&DestroyRecursive != 0 {
-		args = append(args, "-r")
-	}
-
-	if flags&DestroyRecursiveClones != 0 {
-		args = append(args, "-R")
-	}
-
-	if flags&DestroyDeferDeletion != 0 {
-		args = append(args, "-d")
-	}
-
-	if flags&DestroyForceUmount != 0 {
-		args = append(args, "-f")
-	}
-
-	args = append(args, d.Name)
-	_, err := zfs(args...)
-	return err
-}
-
-// SetProperty sets a ZFS property on the receiving dataset.
-// A full list of available ZFS properties may be found here:
-// https://www.freebsd.org/cgi/man.cgi?zfs(8).
-func (d *Dataset) SetProperty(key, val string) error {
-	prop := strings.Join([]string{key, val}, "=")
-	_, err := zfs("set", prop, d.Name)
-	return err
-}
-
-// GetProperty returns the current value of a ZFS property from the
-// receiving dataset.
-// A full list of available ZFS properties may be found here:
-// https://www.freebsd.org/cgi/man.cgi?zfs(8).
-func (d *Dataset) GetProperty(key string) (string, error) {
-	out, err := zfs("get", key, d.Name)
-	if err != nil {
-		return "", err
-	}
-
-	return out[0][2], nil
-}
-
-// Snapshots returns a slice of all ZFS snapshots of a given dataset.
-func (d *Dataset) Snapshots() ([]*Dataset, error) {
-	return Snapshots(d.Name)
-}
-
-// CreateFilesystem creates a new ZFS filesystem with the specified name and
-// properties.
-// A full list of available ZFS properties may be found here:
-// https://www.freebsd.org/cgi/man.cgi?zfs(8).
-func CreateFilesystem(name string, properties map[string]string) (*Dataset, error) {
-	args := make([]string, 1, 4)
-	args[0] = "create"
-
-	if properties != nil {
-		args = append(args, propsSlice(properties)...)
-	}
-
-	args = append(args, name)
-	_, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-	return GetDataset(name)
-}
-
-// Snapshot creates a new ZFS snapshot of the receiving dataset, using the
-// specified name.  Optionally, the snapshot can be taken recursively, creating
-// snapshots of all descendent filesystems in a single, atomic operation.
-func (d *Dataset) Snapshot(name string, recursive bool) (*Dataset, error) {
-	args := make([]string, 1, 4)
-	args[0] = "snapshot"
-	if recursive {
-		args = append(args, "-r")
-	}
-	snapName := fmt.Sprintf("%s@%s", d.Name, name)
-	args = append(args, snapName)
-	_, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-	return GetDataset(snapName)
-}
-
-// Rollback rolls back the receiving ZFS dataset to a previous snapshot.
-// Optionally, intermediate snapshots can be destroyed.  A ZFS snapshot
-// rollback cannot be completed without this option, if more recent
-// snapshots exist.
-// An error will be returned if the input dataset is not of snapshot type.
-func (d *Dataset) Rollback(destroyMoreRecent bool) error {
-	if d.Type != DatasetSnapshot {
-		return errors.New("can only rollback snapshots")
-	}
-
-	args := make([]string, 1, 3)
-	args[0] = "rollback"
-	if destroyMoreRecent {
-		args = append(args, "-r")
-	}
-	args = append(args, d.Name)
-
-	_, err := zfs(args...)
-	return err
-}
-
-// Children returns a slice of children of the receiving ZFS dataset.
-// A recursion depth may be specified, or a depth of 0 allows unlimited
-// recursion.
-func (d *Dataset) Children(depth uint64) ([]*Dataset, error) {
-	args := []string{"get", "-t", "all", "-Hp", "all"}
-	if depth > 0 {
-		args = append(args, "-d")
-		args = append(args, strconv.FormatUint(depth, 10))
-	} else {
-		args = append(args, "-r")
-	}
-	args = append(args, d.Name)
-
-	out, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-
-	var datasets []*Dataset
-	name := ""
-	var ds *Dataset
-	for _, line := range out {
-		if name != line[0] {
-			name = line[0]
-			ds = &Dataset{Name: name}
-			datasets = append(datasets, ds)
-		}
-		if err := ds.parseLine(line); err != nil {
-			return nil, err
-		}
-	}
-	return datasets[1:], nil
-}
-
-// Diff returns changes between a snapshot and the given ZFS dataset.
-// The snapshot name must include the filesystem part as it is possible to
-// compare clones with their origin snapshots.
-func (d *Dataset) Diff(snapshot string) ([]*InodeChange, error) {
-	args := []string{"diff", "-FH", snapshot, d.Name}[:]
-	out, err := zfs(args...)
-	if err != nil {
-		return nil, err
-	}
-	inodeChanges, err := parseInodeChanges(out)
-	if err != nil {
-		return nil, err
-	}
-	return inodeChanges, nil
-}
diff --git a/vendor/github.com/mistifyio/go-zfs/zpool.go b/vendor/github.com/mistifyio/go-zfs/zpool.go
deleted file mode 100644
index 6ba52d30cb..0000000000
--- a/vendor/github.com/mistifyio/go-zfs/zpool.go
+++ /dev/null
@@ -1,105 +0,0 @@
-package zfs
-
-// ZFS zpool states, which can indicate if a pool is online, offline,
-// degraded, etc.  More information regarding zpool states can be found here:
-// https://docs.oracle.com/cd/E19253-01/819-5461/gamno/index.html.
-const (
-	ZpoolOnline   = "ONLINE"
-	ZpoolDegraded = "DEGRADED"
-	ZpoolFaulted  = "FAULTED"
-	ZpoolOffline  = "OFFLINE"
-	ZpoolUnavail  = "UNAVAIL"
-	ZpoolRemoved  = "REMOVED"
-)
-
-// Zpool is a ZFS zpool.  A pool is a top-level structure in ZFS, and can
-// contain many descendent datasets.
-type Zpool struct {
-	Name      string
-	Health    string
-	Allocated uint64
-	Size      uint64
-	Free      uint64
-}
-
-// zpool is a helper function to wrap typical calls to zpool.
-func zpool(arg ...string) ([][]string, error) {
-	c := command{Command: "zpool"}
-	return c.Run(arg...)
-}
-
-// GetZpool retrieves a single ZFS zpool by name.
-func GetZpool(name string) (*Zpool, error) {
-	out, err := zpool("get", "all", "-p", name)
-	if err != nil {
-		return nil, err
-	}
-
-	// there is no -H
-	out = out[1:]
-
-	z := &Zpool{Name: name}
-	for _, line := range out {
-		if err := z.parseLine(line); err != nil {
-			return nil, err
-		}
-	}
-
-	return z, nil
-}
-
-// Datasets returns a slice of all ZFS datasets in a zpool.
-func (z *Zpool) Datasets() ([]*Dataset, error) {
-	return Datasets(z.Name)
-}
-
-// Snapshots returns a slice of all ZFS snapshots in a zpool.
-func (z *Zpool) Snapshots() ([]*Dataset, error) {
-	return Snapshots(z.Name)
-}
-
-// CreateZpool creates a new ZFS zpool with the specified name, properties,
-// and optional arguments.
-// A full list of available ZFS properties and command-line arguments may be
-// found here: https://www.freebsd.org/cgi/man.cgi?zfs(8).
-func CreateZpool(name string, properties map[string]string, args ...string) (*Zpool, error) {
-	cli := make([]string, 1, 4)
-	cli[0] = "create"
-	if properties != nil {
-		cli = append(cli, propsSlice(properties)...)
-	}
-	cli = append(cli, name)
-	cli = append(cli, args...)
-	_, err := zpool(cli...)
-	if err != nil {
-		return nil, err
-	}
-
-	return &Zpool{Name: name}, nil
-}
-
-// Destroy destroys a ZFS zpool by name.
-func (z *Zpool) Destroy() error {
-	_, err := zpool("destroy", z.Name)
-	return err
-}
-
-// ListZpools list all ZFS zpools accessible on the current system.
-func ListZpools() ([]*Zpool, error) {
-	args := []string{"list", "-Ho", "name"}
-	out, err := zpool(args...)
-	if err != nil {
-		return nil, err
-	}
-
-	var pools []*Zpool
-
-	for _, line := range out {
-		z, err := GetZpool(line[0])
-		if err != nil {
-			return nil, err
-		}
-		pools = append(pools, z)
-	}
-	return pools, nil
-}
diff --git a/vendor/github.com/mtrmac/gpgme/LICENSE b/vendor/github.com/mtrmac/gpgme/LICENSE
deleted file mode 100644
index 06d4ab7731..0000000000
--- a/vendor/github.com/mtrmac/gpgme/LICENSE
+++ /dev/null
@@ -1,12 +0,0 @@
-Copyright (c) 2015, James Fargher <proglottis@gmail.com>
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
-
-1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
-
-2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
-
-3. Neither the name of the copyright holder nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/mtrmac/gpgme/callbacks.go b/vendor/github.com/mtrmac/gpgme/callbacks.go
deleted file mode 100644
index d1dc610d42..0000000000
--- a/vendor/github.com/mtrmac/gpgme/callbacks.go
+++ /dev/null
@@ -1,42 +0,0 @@
-package gpgme
-
-import (
-	"sync"
-)
-
-var callbacks struct {
-	sync.Mutex
-	m map[uintptr]interface{}
-	c uintptr
-}
-
-func callbackAdd(v interface{}) uintptr {
-	callbacks.Lock()
-	defer callbacks.Unlock()
-	if callbacks.m == nil {
-		callbacks.m = make(map[uintptr]interface{})
-	}
-	callbacks.c++
-	ret := callbacks.c
-	callbacks.m[ret] = v
-	return ret
-}
-
-func callbackLookup(c uintptr) interface{} {
-	callbacks.Lock()
-	defer callbacks.Unlock()
-	ret := callbacks.m[c]
-	if ret == nil {
-		panic("callback pointer not found")
-	}
-	return ret
-}
-
-func callbackDelete(c uintptr) {
-	callbacks.Lock()
-	defer callbacks.Unlock()
-	if callbacks.m[c] == nil {
-		panic("callback pointer not found")
-	}
-	delete(callbacks.m, c)
-}
diff --git a/vendor/github.com/mtrmac/gpgme/data.go b/vendor/github.com/mtrmac/gpgme/data.go
deleted file mode 100644
index eebc972634..0000000000
--- a/vendor/github.com/mtrmac/gpgme/data.go
+++ /dev/null
@@ -1,191 +0,0 @@
-package gpgme
-
-// #include <string.h>
-// #include <gpgme.h>
-// #include <errno.h>
-// #include "go_gpgme.h"
-import "C"
-
-import (
-	"io"
-	"os"
-	"runtime"
-	"unsafe"
-)
-
-const (
-	SeekSet = C.SEEK_SET
-	SeekCur = C.SEEK_CUR
-	SeekEnd = C.SEEK_END
-)
-
-//export gogpgme_readfunc
-func gogpgme_readfunc(handle, buffer unsafe.Pointer, size C.size_t) C.ssize_t {
-	d := callbackLookup(uintptr(handle)).(*Data)
-	if len(d.buf) < int(size) {
-		d.buf = make([]byte, size)
-	}
-	n, err := d.r.Read(d.buf[:size])
-	if err != nil && err != io.EOF {
-		C.gpgme_err_set_errno(C.EIO)
-		return -1
-	}
-	C.memcpy(buffer, unsafe.Pointer(&d.buf[0]), C.size_t(n))
-	return C.ssize_t(n)
-}
-
-//export gogpgme_writefunc
-func gogpgme_writefunc(handle, buffer unsafe.Pointer, size C.size_t) C.ssize_t {
-	d := callbackLookup(uintptr(handle)).(*Data)
-	if len(d.buf) < int(size) {
-		d.buf = make([]byte, size)
-	}
-	C.memcpy(unsafe.Pointer(&d.buf[0]), buffer, C.size_t(size))
-	n, err := d.w.Write(d.buf[:size])
-	if err != nil && err != io.EOF {
-		C.gpgme_err_set_errno(C.EIO)
-		return -1
-	}
-	return C.ssize_t(n)
-}
-
-//export gogpgme_seekfunc
-func gogpgme_seekfunc(handle unsafe.Pointer, offset C.off_t, whence C.int) C.off_t {
-	d := callbackLookup(uintptr(handle)).(*Data)
-	n, err := d.s.Seek(int64(offset), int(whence))
-	if err != nil {
-		C.gpgme_err_set_errno(C.EIO)
-		return -1
-	}
-	return C.off_t(n)
-}
-
-// The Data buffer used to communicate with GPGME
-type Data struct {
-	dh  C.gpgme_data_t
-	buf []byte
-	cbs C.struct_gpgme_data_cbs
-	r   io.Reader
-	w   io.Writer
-	s   io.Seeker
-	cbc uintptr
-}
-
-func newData() *Data {
-	d := &Data{}
-	runtime.SetFinalizer(d, (*Data).Close)
-	return d
-}
-
-// NewData returns a new memory based data buffer
-func NewData() (*Data, error) {
-	d := newData()
-	return d, handleError(C.gpgme_data_new(&d.dh))
-}
-
-// NewDataFile returns a new file based data buffer
-func NewDataFile(f *os.File) (*Data, error) {
-	d := newData()
-	return d, handleError(C.gpgme_data_new_from_fd(&d.dh, C.int(f.Fd())))
-}
-
-// NewDataBytes returns a new memory based data buffer that contains `b` bytes
-func NewDataBytes(b []byte) (*Data, error) {
-	d := newData()
-	var cb *C.char
-	if len(b) != 0 {
-		cb = (*C.char)(unsafe.Pointer(&b[0]))
-	}
-	return d, handleError(C.gpgme_data_new_from_mem(&d.dh, cb, C.size_t(len(b)), 1))
-}
-
-// NewDataReader returns a new callback based data buffer
-func NewDataReader(r io.Reader) (*Data, error) {
-	d := newData()
-	d.r = r
-	d.cbs.read = C.gpgme_data_read_cb_t(C.gogpgme_readfunc)
-	cbc := callbackAdd(d)
-	d.cbc = cbc
-	return d, handleError(C.gogpgme_data_new_from_cbs(&d.dh, &d.cbs, C.uintptr_t(cbc)))
-}
-
-// NewDataWriter returns a new callback based data buffer
-func NewDataWriter(w io.Writer) (*Data, error) {
-	d := newData()
-	d.w = w
-	d.cbs.write = C.gpgme_data_write_cb_t(C.gogpgme_writefunc)
-	cbc := callbackAdd(d)
-	d.cbc = cbc
-	return d, handleError(C.gogpgme_data_new_from_cbs(&d.dh, &d.cbs, C.uintptr_t(cbc)))
-}
-
-// NewDataReadWriter returns a new callback based data buffer
-func NewDataReadWriter(rw io.ReadWriter) (*Data, error) {
-	d := newData()
-	d.r = rw
-	d.w = rw
-	d.cbs.read = C.gpgme_data_read_cb_t(C.gogpgme_readfunc)
-	d.cbs.write = C.gpgme_data_write_cb_t(C.gogpgme_writefunc)
-	cbc := callbackAdd(d)
-	d.cbc = cbc
-	return d, handleError(C.gogpgme_data_new_from_cbs(&d.dh, &d.cbs, C.uintptr_t(cbc)))
-}
-
-// NewDataReadWriteSeeker returns a new callback based data buffer
-func NewDataReadWriteSeeker(rw io.ReadWriteSeeker) (*Data, error) {
-	d := newData()
-	d.r = rw
-	d.w = rw
-	d.s = rw
-	d.cbs.read = C.gpgme_data_read_cb_t(C.gogpgme_readfunc)
-	d.cbs.write = C.gpgme_data_write_cb_t(C.gogpgme_writefunc)
-	d.cbs.seek = C.gpgme_data_seek_cb_t(C.gogpgme_seekfunc)
-	cbc := callbackAdd(d)
-	d.cbc = cbc
-	return d, handleError(C.gogpgme_data_new_from_cbs(&d.dh, &d.cbs, C.uintptr_t(cbc)))
-}
-
-// Close releases any resources associated with the data buffer
-func (d *Data) Close() error {
-	if d.dh == nil {
-		return nil
-	}
-	if d.cbc > 0 {
-		callbackDelete(d.cbc)
-	}
-	_, err := C.gpgme_data_release(d.dh)
-	d.dh = nil
-	return err
-}
-
-func (d *Data) Write(p []byte) (int, error) {
-	n, err := C.gpgme_data_write(d.dh, unsafe.Pointer(&p[0]), C.size_t(len(p)))
-	if err != nil {
-		return 0, err
-	}
-	if n == 0 {
-		return 0, io.EOF
-	}
-	return int(n), nil
-}
-
-func (d *Data) Read(p []byte) (int, error) {
-	n, err := C.gpgme_data_read(d.dh, unsafe.Pointer(&p[0]), C.size_t(len(p)))
-	if err != nil {
-		return 0, err
-	}
-	if n == 0 {
-		return 0, io.EOF
-	}
-	return int(n), nil
-}
-
-func (d *Data) Seek(offset int64, whence int) (int64, error) {
-	n, err := C.gpgme_data_seek(d.dh, C.off_t(offset), C.int(whence))
-	return int64(n), err
-}
-
-// Name returns the associated filename if any
-func (d *Data) Name() string {
-	return C.GoString(C.gpgme_data_get_file_name(d.dh))
-}
diff --git a/vendor/github.com/mtrmac/gpgme/go_gpgme.c b/vendor/github.com/mtrmac/gpgme/go_gpgme.c
deleted file mode 100644
index b887574e0c..0000000000
--- a/vendor/github.com/mtrmac/gpgme/go_gpgme.c
+++ /dev/null
@@ -1,89 +0,0 @@
-#include "go_gpgme.h"
-
-gpgme_error_t gogpgme_data_new_from_cbs(gpgme_data_t *dh, gpgme_data_cbs_t cbs, uintptr_t handle) {
-	return gpgme_data_new_from_cbs(dh, cbs, (void *)handle);
-}
-
-void gogpgme_set_passphrase_cb(gpgme_ctx_t ctx, gpgme_passphrase_cb_t cb, uintptr_t handle) {
-	gpgme_set_passphrase_cb(ctx, cb, (void *)handle);
-}
-
-unsigned int key_revoked(gpgme_key_t k) {
-	return k->revoked;
-}
-
-unsigned int key_expired(gpgme_key_t k) {
-	return k->expired;
-}
-
-unsigned int key_disabled(gpgme_key_t k) {
-	return k->disabled;
-}
-
-unsigned int key_invalid(gpgme_key_t k) {
-	return k->invalid;
-}
-
-unsigned int key_can_encrypt(gpgme_key_t k) {
-	return k->can_encrypt;
-}
-
-unsigned int key_can_sign(gpgme_key_t k) {
-	return k->can_sign;
-}
-
-unsigned int key_can_certify(gpgme_key_t k) {
-	return k->can_certify;
-}
-
-unsigned int key_secret(gpgme_key_t k) {
-	return k->secret;
-}
-
-unsigned int key_can_authenticate(gpgme_key_t k) {
-	return k->can_authenticate;
-}
-
-unsigned int key_is_qualified(gpgme_key_t k) {
-	return k->is_qualified;
-}
-
-unsigned int signature_wrong_key_usage(gpgme_signature_t s) {
-    return s->wrong_key_usage;
-}
-
-unsigned int signature_pka_trust(gpgme_signature_t s) {
-    return s->pka_trust;
-}
-
-unsigned int signature_chain_model(gpgme_signature_t s) {
-    return s->chain_model;
-}
-
-unsigned int subkey_revoked(gpgme_subkey_t k) {
-	return k->revoked;
-}
-
-unsigned int subkey_expired(gpgme_subkey_t k) {
-	return k->expired;
-}
-
-unsigned int subkey_disabled(gpgme_subkey_t k) {
-	return k->disabled;
-}
-
-unsigned int subkey_invalid(gpgme_subkey_t k) {
-	return k->invalid;
-}
-
-unsigned int subkey_secret(gpgme_subkey_t k) {
-	return k->secret;
-}
-
-unsigned int uid_revoked(gpgme_user_id_t u) {
-	return u->revoked;
-}
-
-unsigned int uid_invalid(gpgme_user_id_t u) {
-	return u->invalid;
-}
diff --git a/vendor/github.com/mtrmac/gpgme/go_gpgme.h b/vendor/github.com/mtrmac/gpgme/go_gpgme.h
deleted file mode 100644
index a3678b127a..0000000000
--- a/vendor/github.com/mtrmac/gpgme/go_gpgme.h
+++ /dev/null
@@ -1,37 +0,0 @@
-#ifndef GO_GPGME_H
-#define GO_GPGME_H
-
-#define _FILE_OFFSET_BITS 64
-#include <stdint.h>
-
-#include <gpgme.h>
-
-extern ssize_t gogpgme_readfunc(void *handle, void *buffer, size_t size);
-extern ssize_t gogpgme_writefunc(void *handle, void *buffer, size_t size);
-extern off_t gogpgme_seekfunc(void *handle, off_t offset, int whence);
-extern gpgme_error_t gogpgme_passfunc(void *hook, char *uid_hint, char *passphrase_info, int prev_was_bad, int fd);
-extern gpgme_error_t gogpgme_data_new_from_cbs(gpgme_data_t *dh, gpgme_data_cbs_t cbs, uintptr_t handle);
-extern void gogpgme_set_passphrase_cb(gpgme_ctx_t ctx, gpgme_passphrase_cb_t cb, uintptr_t handle);
-
-extern unsigned int key_revoked(gpgme_key_t k);
-extern unsigned int key_expired(gpgme_key_t k);
-extern unsigned int key_disabled(gpgme_key_t k);
-extern unsigned int key_invalid(gpgme_key_t k);
-extern unsigned int key_can_encrypt(gpgme_key_t k);
-extern unsigned int key_can_sign(gpgme_key_t k);
-extern unsigned int key_can_certify(gpgme_key_t k);
-extern unsigned int key_secret(gpgme_key_t k);
-extern unsigned int key_can_authenticate(gpgme_key_t k);
-extern unsigned int key_is_qualified(gpgme_key_t k);
-extern unsigned int signature_wrong_key_usage(gpgme_signature_t s);
-extern unsigned int signature_pka_trust(gpgme_signature_t s);
-extern unsigned int signature_chain_model(gpgme_signature_t s);
-extern unsigned int subkey_revoked(gpgme_subkey_t k);
-extern unsigned int subkey_expired(gpgme_subkey_t k);
-extern unsigned int subkey_disabled(gpgme_subkey_t k);
-extern unsigned int subkey_invalid(gpgme_subkey_t k);
-extern unsigned int subkey_secret(gpgme_subkey_t k);
-extern unsigned int uid_revoked(gpgme_user_id_t u);
-extern unsigned int uid_invalid(gpgme_user_id_t u);
-
-#endif
diff --git a/vendor/github.com/mtrmac/gpgme/gpgme.go b/vendor/github.com/mtrmac/gpgme/gpgme.go
deleted file mode 100644
index 20aad737c6..0000000000
--- a/vendor/github.com/mtrmac/gpgme/gpgme.go
+++ /dev/null
@@ -1,748 +0,0 @@
-// Package gpgme provides a Go wrapper for the GPGME library
-package gpgme
-
-// #cgo LDFLAGS: -lgpgme -lassuan -lgpg-error
-// #cgo CPPFLAGS: -D_FILE_OFFSET_BITS=64
-// #include <stdlib.h>
-// #include <gpgme.h>
-// #include "go_gpgme.h"
-import "C"
-
-import (
-	"fmt"
-	"io"
-	"os"
-	"runtime"
-	"time"
-	"unsafe"
-)
-
-var Version string
-
-func init() {
-	Version = C.GoString(C.gpgme_check_version(nil))
-}
-
-// Callback is the function that is called when a passphrase is required
-type Callback func(uidHint string, prevWasBad bool, f *os.File) error
-
-//export gogpgme_passfunc
-func gogpgme_passfunc(hook unsafe.Pointer, uid_hint, passphrase_info *C.char, prev_was_bad, fd C.int) C.gpgme_error_t {
-	c := callbackLookup(uintptr(hook)).(*Context)
-	go_uid_hint := C.GoString(uid_hint)
-	f := os.NewFile(uintptr(fd), go_uid_hint)
-	defer f.Close()
-	err := c.callback(go_uid_hint, prev_was_bad != 0, f)
-	if err != nil {
-		return C.GPG_ERR_CANCELED
-	}
-	return 0
-}
-
-type Protocol int
-
-const (
-	ProtocolOpenPGP  Protocol = C.GPGME_PROTOCOL_OpenPGP
-	ProtocolCMS      Protocol = C.GPGME_PROTOCOL_CMS
-	ProtocolGPGConf  Protocol = C.GPGME_PROTOCOL_GPGCONF
-	ProtocolAssuan   Protocol = C.GPGME_PROTOCOL_ASSUAN
-	ProtocolG13      Protocol = C.GPGME_PROTOCOL_G13
-	ProtocolUIServer Protocol = C.GPGME_PROTOCOL_UISERVER
-	// ProtocolSpawn    Protocol = C.GPGME_PROTOCOL_SPAWN // Unavailable in 1.4.3
-	ProtocolDefault Protocol = C.GPGME_PROTOCOL_DEFAULT
-	ProtocolUnknown Protocol = C.GPGME_PROTOCOL_UNKNOWN
-)
-
-type PinEntryMode int
-
-// const ( // Unavailable in 1.3.2
-// 	PinEntryDefault  PinEntryMode = C.GPGME_PINENTRY_MODE_DEFAULT
-// 	PinEntryAsk      PinEntryMode = C.GPGME_PINENTRY_MODE_ASK
-// 	PinEntryCancel   PinEntryMode = C.GPGME_PINENTRY_MODE_CANCEL
-// 	PinEntryError    PinEntryMode = C.GPGME_PINENTRY_MODE_ERROR
-// 	PinEntryLoopback PinEntryMode = C.GPGME_PINENTRY_MODE_LOOPBACK
-// )
-
-type EncryptFlag uint
-
-const (
-	EncryptAlwaysTrust EncryptFlag = C.GPGME_ENCRYPT_ALWAYS_TRUST
-	EncryptNoEncryptTo EncryptFlag = C.GPGME_ENCRYPT_NO_ENCRYPT_TO
-	EncryptPrepare     EncryptFlag = C.GPGME_ENCRYPT_PREPARE
-	EncryptExceptSign  EncryptFlag = C.GPGME_ENCRYPT_EXPECT_SIGN
-	// EncryptNoCompress  EncryptFlag = C.GPGME_ENCRYPT_NO_COMPRESS // Unavailable in 1.4.3
-)
-
-type HashAlgo int
-
-// const values for HashAlgo values should be added when necessary.
-
-type KeyListMode uint
-
-const (
-	KeyListModeLocal        KeyListMode = C.GPGME_KEYLIST_MODE_LOCAL
-	KeyListModeExtern       KeyListMode = C.GPGME_KEYLIST_MODE_EXTERN
-	KeyListModeSigs         KeyListMode = C.GPGME_KEYLIST_MODE_SIGS
-	KeyListModeSigNotations KeyListMode = C.GPGME_KEYLIST_MODE_SIG_NOTATIONS
-	// KeyListModeWithSecret   KeyListMode = C.GPGME_KEYLIST_MODE_WITH_SECRET // Unavailable in 1.4.3
-	KeyListModeEphemeral    KeyListMode = C.GPGME_KEYLIST_MODE_EPHEMERAL
-	KeyListModeModeValidate KeyListMode = C.GPGME_KEYLIST_MODE_VALIDATE
-)
-
-type PubkeyAlgo int
-
-// const values for PubkeyAlgo values should be added when necessary.
-
-type SigMode int
-
-const (
-	SigModeNormal SigMode = C.GPGME_SIG_MODE_NORMAL
-	SigModeDetach SigMode = C.GPGME_SIG_MODE_DETACH
-	SigModeClear  SigMode = C.GPGME_SIG_MODE_CLEAR
-)
-
-type SigSum int
-
-const (
-	SigSumValid      SigSum = C.GPGME_SIGSUM_VALID
-	SigSumGreen      SigSum = C.GPGME_SIGSUM_GREEN
-	SigSumRed        SigSum = C.GPGME_SIGSUM_RED
-	SigSumKeyRevoked SigSum = C.GPGME_SIGSUM_KEY_REVOKED
-	SigSumKeyExpired SigSum = C.GPGME_SIGSUM_KEY_EXPIRED
-	SigSumSigExpired SigSum = C.GPGME_SIGSUM_SIG_EXPIRED
-	SigSumKeyMissing SigSum = C.GPGME_SIGSUM_KEY_MISSING
-	SigSumCRLMissing SigSum = C.GPGME_SIGSUM_CRL_MISSING
-	SigSumCRLTooOld  SigSum = C.GPGME_SIGSUM_CRL_TOO_OLD
-	SigSumBadPolicy  SigSum = C.GPGME_SIGSUM_BAD_POLICY
-	SigSumSysError   SigSum = C.GPGME_SIGSUM_SYS_ERROR
-)
-
-type Validity int
-
-const (
-	ValidityUnknown   Validity = C.GPGME_VALIDITY_UNKNOWN
-	ValidityUndefined Validity = C.GPGME_VALIDITY_UNDEFINED
-	ValidityNever     Validity = C.GPGME_VALIDITY_NEVER
-	ValidityMarginal  Validity = C.GPGME_VALIDITY_MARGINAL
-	ValidityFull      Validity = C.GPGME_VALIDITY_FULL
-	ValidityUltimate  Validity = C.GPGME_VALIDITY_ULTIMATE
-)
-
-type ErrorCode int
-
-const (
-	ErrorNoError ErrorCode = C.GPG_ERR_NO_ERROR
-	ErrorEOF     ErrorCode = C.GPG_ERR_EOF
-)
-
-// Error is a wrapper for GPGME errors
-type Error struct {
-	err C.gpgme_error_t
-}
-
-func (e Error) Code() ErrorCode {
-	return ErrorCode(C.gpgme_err_code(e.err))
-}
-
-func (e Error) Error() string {
-	return C.GoString(C.gpgme_strerror(e.err))
-}
-
-func handleError(err C.gpgme_error_t) error {
-	e := Error{err: err}
-	if e.Code() == ErrorNoError {
-		return nil
-	}
-	return e
-}
-
-func cbool(b bool) C.int {
-	if b {
-		return 1
-	}
-	return 0
-}
-
-func EngineCheckVersion(p Protocol) error {
-	return handleError(C.gpgme_engine_check_version(C.gpgme_protocol_t(p)))
-}
-
-type EngineInfo struct {
-	info C.gpgme_engine_info_t
-}
-
-func (e *EngineInfo) Next() *EngineInfo {
-	if e.info.next == nil {
-		return nil
-	}
-	return &EngineInfo{info: e.info.next}
-}
-
-func (e *EngineInfo) Protocol() Protocol {
-	return Protocol(e.info.protocol)
-}
-
-func (e *EngineInfo) FileName() string {
-	return C.GoString(e.info.file_name)
-}
-
-func (e *EngineInfo) Version() string {
-	return C.GoString(e.info.version)
-}
-
-func (e *EngineInfo) RequiredVersion() string {
-	return C.GoString(e.info.req_version)
-}
-
-func (e *EngineInfo) HomeDir() string {
-	return C.GoString(e.info.home_dir)
-}
-
-func GetEngineInfo() (*EngineInfo, error) {
-	info := &EngineInfo{}
-	return info, handleError(C.gpgme_get_engine_info(&info.info))
-}
-
-func SetEngineInfo(proto Protocol, fileName, homeDir string) error {
-	var cfn, chome *C.char
-	if fileName != "" {
-		cfn = C.CString(fileName)
-		defer C.free(unsafe.Pointer(cfn))
-	}
-	if homeDir != "" {
-		chome = C.CString(homeDir)
-		defer C.free(unsafe.Pointer(chome))
-	}
-	return handleError(C.gpgme_set_engine_info(C.gpgme_protocol_t(proto), cfn, chome))
-}
-
-func FindKeys(pattern string, secretOnly bool) ([]*Key, error) {
-	var keys []*Key
-	ctx, err := New()
-	if err != nil {
-		return keys, err
-	}
-	defer ctx.Release()
-	if err := ctx.KeyListStart(pattern, secretOnly); err != nil {
-		return keys, err
-	}
-	defer ctx.KeyListEnd()
-	for ctx.KeyListNext() {
-		keys = append(keys, ctx.Key)
-	}
-	if ctx.KeyError != nil {
-		return keys, ctx.KeyError
-	}
-	return keys, nil
-}
-
-func Decrypt(r io.Reader) (*Data, error) {
-	ctx, err := New()
-	if err != nil {
-		return nil, err
-	}
-	defer ctx.Release()
-	cipher, err := NewDataReader(r)
-	if err != nil {
-		return nil, err
-	}
-	defer cipher.Close()
-	plain, err := NewData()
-	if err != nil {
-		return nil, err
-	}
-	err = ctx.Decrypt(cipher, plain)
-	plain.Seek(0, SeekSet)
-	return plain, err
-}
-
-type Context struct {
-	Key      *Key
-	KeyError error
-
-	callback Callback
-	cbc      uintptr
-
-	ctx C.gpgme_ctx_t
-}
-
-func New() (*Context, error) {
-	c := &Context{}
-	err := C.gpgme_new(&c.ctx)
-	runtime.SetFinalizer(c, (*Context).Release)
-	return c, handleError(err)
-}
-
-func (c *Context) Release() {
-	if c.ctx == nil {
-		return
-	}
-	if c.cbc > 0 {
-		callbackDelete(c.cbc)
-	}
-	C.gpgme_release(c.ctx)
-	c.ctx = nil
-}
-
-func (c *Context) SetArmor(yes bool) {
-	C.gpgme_set_armor(c.ctx, cbool(yes))
-}
-
-func (c *Context) Armor() bool {
-	return C.gpgme_get_armor(c.ctx) != 0
-}
-
-func (c *Context) SetTextMode(yes bool) {
-	C.gpgme_set_textmode(c.ctx, cbool(yes))
-}
-
-func (c *Context) TextMode() bool {
-	return C.gpgme_get_textmode(c.ctx) != 0
-}
-
-func (c *Context) SetProtocol(p Protocol) error {
-	return handleError(C.gpgme_set_protocol(c.ctx, C.gpgme_protocol_t(p)))
-}
-
-func (c *Context) Protocol() Protocol {
-	return Protocol(C.gpgme_get_protocol(c.ctx))
-}
-
-func (c *Context) SetKeyListMode(m KeyListMode) error {
-	return handleError(C.gpgme_set_keylist_mode(c.ctx, C.gpgme_keylist_mode_t(m)))
-}
-
-func (c *Context) KeyListMode() KeyListMode {
-	return KeyListMode(C.gpgme_get_keylist_mode(c.ctx))
-}
-
-// Unavailable in 1.3.2:
-// func (c *Context) SetPinEntryMode(m PinEntryMode) error {
-// 	return handleError(C.gpgme_set_pinentry_mode(c.ctx, C.gpgme_pinentry_mode_t(m)))
-// }
-
-// Unavailable in 1.3.2:
-// func (c *Context) PinEntryMode() PinEntryMode {
-// 	return PinEntryMode(C.gpgme_get_pinentry_mode(c.ctx))
-// }
-
-func (c *Context) SetCallback(callback Callback) error {
-	var err error
-	c.callback = callback
-	if c.cbc > 0 {
-		callbackDelete(c.cbc)
-	}
-	if callback != nil {
-		cbc := callbackAdd(c)
-		c.cbc = cbc
-		_, err = C.gogpgme_set_passphrase_cb(c.ctx, C.gpgme_passphrase_cb_t(C.gogpgme_passfunc), C.uintptr_t(cbc))
-	} else {
-		c.cbc = 0
-		_, err = C.gogpgme_set_passphrase_cb(c.ctx, nil, 0)
-	}
-	return err
-}
-
-func (c *Context) EngineInfo() *EngineInfo {
-	return &EngineInfo{info: C.gpgme_ctx_get_engine_info(c.ctx)}
-}
-
-func (c *Context) SetEngineInfo(proto Protocol, fileName, homeDir string) error {
-	var cfn, chome *C.char
-	if fileName != "" {
-		cfn = C.CString(fileName)
-		defer C.free(unsafe.Pointer(cfn))
-	}
-	if homeDir != "" {
-		chome = C.CString(homeDir)
-		defer C.free(unsafe.Pointer(chome))
-	}
-	return handleError(C.gpgme_ctx_set_engine_info(c.ctx, C.gpgme_protocol_t(proto), cfn, chome))
-}
-
-func (c *Context) KeyListStart(pattern string, secretOnly bool) error {
-	cpattern := C.CString(pattern)
-	defer C.free(unsafe.Pointer(cpattern))
-	err := C.gpgme_op_keylist_start(c.ctx, cpattern, cbool(secretOnly))
-	return handleError(err)
-}
-
-func (c *Context) KeyListNext() bool {
-	c.Key = newKey()
-	err := handleError(C.gpgme_op_keylist_next(c.ctx, &c.Key.k))
-	if err != nil {
-		if e, ok := err.(Error); ok && e.Code() == ErrorEOF {
-			c.KeyError = nil
-		} else {
-			c.KeyError = err
-		}
-		return false
-	}
-	c.KeyError = nil
-	return true
-}
-
-func (c *Context) KeyListEnd() error {
-	return handleError(C.gpgme_op_keylist_end(c.ctx))
-}
-
-func (c *Context) GetKey(fingerprint string, secret bool) (*Key, error) {
-	key := newKey()
-	cfpr := C.CString(fingerprint)
-	defer C.free(unsafe.Pointer(cfpr))
-	err := handleError(C.gpgme_get_key(c.ctx, cfpr, &key.k, cbool(secret)))
-	if e, ok := err.(Error); key.k == nil && ok && e.Code() == ErrorEOF {
-		return nil, fmt.Errorf("key %q not found", fingerprint)
-	}
-	if err != nil {
-		return nil, err
-	}
-	return key, nil
-}
-
-func (c *Context) Decrypt(ciphertext, plaintext *Data) error {
-	return handleError(C.gpgme_op_decrypt(c.ctx, ciphertext.dh, plaintext.dh))
-}
-
-func (c *Context) DecryptVerify(ciphertext, plaintext *Data) error {
-	return handleError(C.gpgme_op_decrypt_verify(c.ctx, ciphertext.dh, plaintext.dh))
-}
-
-type Signature struct {
-	Summary        SigSum
-	Fingerprint    string
-	Status         error
-	Timestamp      time.Time
-	ExpTimestamp   time.Time
-	WrongKeyUsage  bool
-	PKATrust       uint
-	ChainModel     bool
-	Validity       Validity
-	ValidityReason error
-	PubkeyAlgo     PubkeyAlgo
-	HashAlgo       HashAlgo
-}
-
-func (c *Context) Verify(sig, signedText, plain *Data) (string, []Signature, error) {
-	var signedTextPtr, plainPtr C.gpgme_data_t = nil, nil
-	if signedText != nil {
-		signedTextPtr = signedText.dh
-	}
-	if plain != nil {
-		plainPtr = plain.dh
-	}
-	err := handleError(C.gpgme_op_verify(c.ctx, sig.dh, signedTextPtr, plainPtr))
-	if err != nil {
-		return "", nil, err
-	}
-	res := C.gpgme_op_verify_result(c.ctx)
-	sigs := []Signature{}
-	for s := res.signatures; s != nil; s = s.next {
-		sig := Signature{
-			Summary:     SigSum(s.summary),
-			Fingerprint: C.GoString(s.fpr),
-			Status:      handleError(s.status),
-			// s.notations not implemented
-			Timestamp:      time.Unix(int64(s.timestamp), 0),
-			ExpTimestamp:   time.Unix(int64(s.exp_timestamp), 0),
-			WrongKeyUsage:  C.signature_wrong_key_usage(s) != 0,
-			PKATrust:       uint(C.signature_pka_trust(s)),
-			ChainModel:     C.signature_chain_model(s) != 0,
-			Validity:       Validity(s.validity),
-			ValidityReason: handleError(s.validity_reason),
-			PubkeyAlgo:     PubkeyAlgo(s.pubkey_algo),
-			HashAlgo:       HashAlgo(s.hash_algo),
-		}
-		sigs = append(sigs, sig)
-	}
-	return C.GoString(res.file_name), sigs, nil
-}
-
-func (c *Context) Encrypt(recipients []*Key, flags EncryptFlag, plaintext, ciphertext *Data) error {
-	size := unsafe.Sizeof(new(C.gpgme_key_t))
-	recp := C.calloc(C.size_t(len(recipients)+1), C.size_t(size))
-	defer C.free(recp)
-	for i := range recipients {
-		ptr := (*C.gpgme_key_t)(unsafe.Pointer(uintptr(recp) + size*uintptr(i)))
-		*ptr = recipients[i].k
-	}
-	err := C.gpgme_op_encrypt(c.ctx, (*C.gpgme_key_t)(recp), C.gpgme_encrypt_flags_t(flags), plaintext.dh, ciphertext.dh)
-	return handleError(err)
-}
-
-func (c *Context) Sign(signers []*Key, plain, sig *Data, mode SigMode) error {
-	C.gpgme_signers_clear(c.ctx)
-	for _, k := range signers {
-		if err := handleError(C.gpgme_signers_add(c.ctx, k.k)); err != nil {
-			C.gpgme_signers_clear(c.ctx)
-			return err
-		}
-	}
-	return handleError(C.gpgme_op_sign(c.ctx, plain.dh, sig.dh, C.gpgme_sig_mode_t(mode)))
-}
-
-// ImportStatusFlags describes the type of ImportStatus.Status. The C API in gpgme.h simply uses "unsigned".
-type ImportStatusFlags uint
-
-const (
-	ImportNew    ImportStatusFlags = C.GPGME_IMPORT_NEW
-	ImportUID    ImportStatusFlags = C.GPGME_IMPORT_UID
-	ImportSIG    ImportStatusFlags = C.GPGME_IMPORT_SIG
-	ImportSubKey ImportStatusFlags = C.GPGME_IMPORT_SUBKEY
-	ImportSecret ImportStatusFlags = C.GPGME_IMPORT_SECRET
-)
-
-type ImportStatus struct {
-	Fingerprint string
-	Result      error
-	Status      ImportStatusFlags
-}
-
-type ImportResult struct {
-	Considered      int
-	NoUserID        int
-	Imported        int
-	ImportedRSA     int
-	Unchanged       int
-	NewUserIDs      int
-	NewSubKeys      int
-	NewSignatures   int
-	NewRevocations  int
-	SecretRead      int
-	SecretImported  int
-	SecretUnchanged int
-	NotImported     int
-	Imports         []ImportStatus
-}
-
-func (c *Context) Import(keyData *Data) (*ImportResult, error) {
-	err := handleError(C.gpgme_op_import(c.ctx, keyData.dh))
-	if err != nil {
-		return nil, err
-	}
-	res := C.gpgme_op_import_result(c.ctx)
-	imports := []ImportStatus{}
-	for s := res.imports; s != nil; s = s.next {
-		imports = append(imports, ImportStatus{
-			Fingerprint: C.GoString(s.fpr),
-			Result:      handleError(s.result),
-			Status:      ImportStatusFlags(s.status),
-		})
-	}
-	return &ImportResult{
-		Considered:      int(res.considered),
-		NoUserID:        int(res.no_user_id),
-		Imported:        int(res.imported),
-		ImportedRSA:     int(res.imported_rsa),
-		Unchanged:       int(res.unchanged),
-		NewUserIDs:      int(res.new_user_ids),
-		NewSubKeys:      int(res.new_sub_keys),
-		NewSignatures:   int(res.new_signatures),
-		NewRevocations:  int(res.new_revocations),
-		SecretRead:      int(res.secret_read),
-		SecretImported:  int(res.secret_imported),
-		SecretUnchanged: int(res.secret_unchanged),
-		NotImported:     int(res.not_imported),
-		Imports:         imports,
-	}, nil
-}
-
-type Key struct {
-	k C.gpgme_key_t
-}
-
-func newKey() *Key {
-	k := &Key{}
-	runtime.SetFinalizer(k, (*Key).Release)
-	return k
-}
-
-func (k *Key) Release() {
-	C.gpgme_key_release(k.k)
-	k.k = nil
-}
-
-func (k *Key) Revoked() bool {
-	return C.key_revoked(k.k) != 0
-}
-
-func (k *Key) Expired() bool {
-	return C.key_expired(k.k) != 0
-}
-
-func (k *Key) Disabled() bool {
-	return C.key_disabled(k.k) != 0
-}
-
-func (k *Key) Invalid() bool {
-	return C.key_invalid(k.k) != 0
-}
-
-func (k *Key) CanEncrypt() bool {
-	return C.key_can_encrypt(k.k) != 0
-}
-
-func (k *Key) CanSign() bool {
-	return C.key_can_sign(k.k) != 0
-}
-
-func (k *Key) CanCertify() bool {
-	return C.key_can_certify(k.k) != 0
-}
-
-func (k *Key) Secret() bool {
-	return C.key_secret(k.k) != 0
-}
-
-func (k *Key) CanAuthenticate() bool {
-	return C.key_can_authenticate(k.k) != 0
-}
-
-func (k *Key) IsQualified() bool {
-	return C.key_is_qualified(k.k) != 0
-}
-
-func (k *Key) Protocol() Protocol {
-	return Protocol(k.k.protocol)
-}
-
-func (k *Key) IssuerSerial() string {
-	return C.GoString(k.k.issuer_serial)
-}
-
-func (k *Key) IssuerName() string {
-	return C.GoString(k.k.issuer_name)
-}
-
-func (k *Key) ChainID() string {
-	return C.GoString(k.k.chain_id)
-}
-
-func (k *Key) OwnerTrust() Validity {
-	return Validity(k.k.owner_trust)
-}
-
-func (k *Key) SubKeys() *SubKey {
-	if k.k.subkeys == nil {
-		return nil
-	}
-	return &SubKey{k: k.k.subkeys, parent: k}
-}
-
-func (k *Key) UserIDs() *UserID {
-	if k.k.uids == nil {
-		return nil
-	}
-	return &UserID{u: k.k.uids, parent: k}
-}
-
-func (k *Key) KeyListMode() KeyListMode {
-	return KeyListMode(k.k.keylist_mode)
-}
-
-type SubKey struct {
-	k      C.gpgme_subkey_t
-	parent *Key // make sure the key is not released when we have a reference to a subkey
-}
-
-func (k *SubKey) Next() *SubKey {
-	if k.k.next == nil {
-		return nil
-	}
-	return &SubKey{k: k.k.next, parent: k.parent}
-}
-
-func (k *SubKey) Revoked() bool {
-	return C.subkey_revoked(k.k) != 0
-}
-
-func (k *SubKey) Expired() bool {
-	return C.subkey_expired(k.k) != 0
-}
-
-func (k *SubKey) Disabled() bool {
-	return C.subkey_disabled(k.k) != 0
-}
-
-func (k *SubKey) Invalid() bool {
-	return C.subkey_invalid(k.k) != 0
-}
-
-func (k *SubKey) Secret() bool {
-	return C.subkey_secret(k.k) != 0
-}
-
-func (k *SubKey) KeyID() string {
-	return C.GoString(k.k.keyid)
-}
-
-func (k *SubKey) Fingerprint() string {
-	return C.GoString(k.k.fpr)
-}
-
-func (k *SubKey) Created() time.Time {
-	if k.k.timestamp <= 0 {
-		return time.Time{}
-	}
-	return time.Unix(int64(k.k.timestamp), 0)
-}
-
-func (k *SubKey) Expires() time.Time {
-	if k.k.expires <= 0 {
-		return time.Time{}
-	}
-	return time.Unix(int64(k.k.expires), 0)
-}
-
-func (k *SubKey) CardNumber() string {
-	return C.GoString(k.k.card_number)
-}
-
-type UserID struct {
-	u      C.gpgme_user_id_t
-	parent *Key // make sure the key is not released when we have a reference to a user ID
-}
-
-func (u *UserID) Next() *UserID {
-	if u.u.next == nil {
-		return nil
-	}
-	return &UserID{u: u.u.next, parent: u.parent}
-}
-
-func (u *UserID) Revoked() bool {
-	return C.uid_revoked(u.u) != 0
-}
-
-func (u *UserID) Invalid() bool {
-	return C.uid_invalid(u.u) != 0
-}
-
-func (u *UserID) Validity() Validity {
-	return Validity(u.u.validity)
-}
-
-func (u *UserID) UID() string {
-	return C.GoString(u.u.uid)
-}
-
-func (u *UserID) Name() string {
-	return C.GoString(u.u.name)
-}
-
-func (u *UserID) Comment() string {
-	return C.GoString(u.u.comment)
-}
-
-func (u *UserID) Email() string {
-	return C.GoString(u.u.email)
-}
-
-// This is somewhat of a horrible hack. We need to unset GPG_AGENT_INFO so that gpgme does not pass --use-agent to GPG.
-// os.Unsetenv should be enough, but that only calls the underlying C library (which gpgme uses) if cgo is involved
-// - and cgo can't be used in tests. So, provide this helper for test initialization.
-func unsetenvGPGAgentInfo() {
-	v := C.CString("GPG_AGENT_INFO")
-	defer C.free(unsafe.Pointer(v))
-	C.unsetenv(v)
-}
diff --git a/vendor/github.com/opencontainers/selinux/LICENSE b/vendor/github.com/opencontainers/selinux/LICENSE
deleted file mode 100644
index 8dada3edaf..0000000000
--- a/vendor/github.com/opencontainers/selinux/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "{}"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright {yyyy} {name of copyright owner}
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go b/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
deleted file mode 100644
index 6cfc5fded8..0000000000
--- a/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
+++ /dev/null
@@ -1,84 +0,0 @@
-// +build !selinux !linux
-
-package label
-
-// InitLabels returns the process label and file labels to be used within
-// the container.  A list of options can be passed into this function to alter
-// the labels.
-func InitLabels(options []string) (string, string, error) {
-	return "", "", nil
-}
-
-func GetROMountLabel() string {
-	return ""
-}
-
-func GenLabels(options string) (string, string, error) {
-	return "", "", nil
-}
-
-func FormatMountLabel(src string, mountLabel string) string {
-	return src
-}
-
-func SetProcessLabel(processLabel string) error {
-	return nil
-}
-
-func GetFileLabel(path string) (string, error) {
-	return "", nil
-}
-
-func SetFileLabel(path string, fileLabel string) error {
-	return nil
-}
-
-func SetFileCreateLabel(fileLabel string) error {
-	return nil
-}
-
-func Relabel(path string, fileLabel string, shared bool) error {
-	return nil
-}
-
-func GetPidLabel(pid int) (string, error) {
-	return "", nil
-}
-
-func Init() {
-}
-
-func ReserveLabel(label string) error {
-	return nil
-}
-
-func ReleaseLabel(label string) error {
-	return nil
-}
-
-// DupSecOpt takes a process label and returns security options that
-// can be used to set duplicate labels on future container processes
-func DupSecOpt(src string) []string {
-	return nil
-}
-
-// DisableSecOpt returns a security opt that can disable labeling
-// support for future container processes
-func DisableSecOpt() []string {
-	return nil
-}
-
-// Validate checks that the label does not include unexpected options
-func Validate(label string) error {
-	return nil
-}
-
-// RelabelNeeded checks whether the user requested a relabel
-func RelabelNeeded(label string) bool {
-	return false
-}
-
-// IsShared checks that the label includes a "shared" mark
-func IsShared(label string) bool {
-	return false
-}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go b/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
deleted file mode 100644
index 569dcf0841..0000000000
--- a/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
+++ /dev/null
@@ -1,204 +0,0 @@
-// +build selinux,linux
-
-package label
-
-import (
-	"fmt"
-	"strings"
-
-	"github.com/opencontainers/selinux/go-selinux"
-)
-
-// Valid Label Options
-var validOptions = map[string]bool{
-	"disable": true,
-	"type":    true,
-	"user":    true,
-	"role":    true,
-	"level":   true,
-}
-
-var ErrIncompatibleLabel = fmt.Errorf("Bad SELinux option z and Z can not be used together")
-
-// InitLabels returns the process label and file labels to be used within
-// the container.  A list of options can be passed into this function to alter
-// the labels.  The labels returned will include a random MCS String, that is
-// guaranteed to be unique.
-func InitLabels(options []string) (string, string, error) {
-	if !selinux.GetEnabled() {
-		return "", "", nil
-	}
-	processLabel, mountLabel := selinux.ContainerLabels()
-	if processLabel != "" {
-		pcon := selinux.NewContext(processLabel)
-		mcon := selinux.NewContext(mountLabel)
-		for _, opt := range options {
-			if opt == "disable" {
-				return "", "", nil
-			}
-			if i := strings.Index(opt, ":"); i == -1 {
-				return "", "", fmt.Errorf("Bad label option %q, valid options 'disable' or \n'user, role, level, type' followed by ':' and a value", opt)
-			}
-			con := strings.SplitN(opt, ":", 2)
-			if !validOptions[con[0]] {
-				return "", "", fmt.Errorf("Bad label option %q, valid options 'disable, user, role, level, type'", con[0])
-
-			}
-			pcon[con[0]] = con[1]
-			if con[0] == "level" || con[0] == "user" {
-				mcon[con[0]] = con[1]
-			}
-		}
-		processLabel = pcon.Get()
-		mountLabel = mcon.Get()
-	}
-	return processLabel, mountLabel, nil
-}
-
-func ROMountLabel() string {
-	return selinux.ROFileLabel()
-}
-
-// DEPRECATED: The GenLabels function is only to be used during the transition to the official API.
-func GenLabels(options string) (string, string, error) {
-	return InitLabels(strings.Fields(options))
-}
-
-// FormatMountLabel returns a string to be used by the mount command.
-// The format of this string will be used to alter the labeling of the mountpoint.
-// The string returned is suitable to be used as the options field of the mount command.
-// If you need to have additional mount point options, you can pass them in as
-// the first parameter.  Second parameter is the label that you wish to apply
-// to all content in the mount point.
-func FormatMountLabel(src, mountLabel string) string {
-	if mountLabel != "" {
-		switch src {
-		case "":
-			src = fmt.Sprintf("context=%q", mountLabel)
-		default:
-			src = fmt.Sprintf("%s,context=%q", src, mountLabel)
-		}
-	}
-	return src
-}
-
-// SetProcessLabel takes a process label and tells the kernel to assign the
-// label to the next program executed by the current process.
-func SetProcessLabel(processLabel string) error {
-	if processLabel == "" {
-		return nil
-	}
-	return selinux.SetExecLabel(processLabel)
-}
-
-// ProcessLabel returns the process label that the kernel will assign
-// to the next program executed by the current process.  If "" is returned
-// this indicates that the default labeling will happen for the process.
-func ProcessLabel() (string, error) {
-	return selinux.ExecLabel()
-}
-
-// GetFileLabel returns the label for specified path
-func FileLabel(path string) (string, error) {
-	return selinux.FileLabel(path)
-}
-
-// SetFileLabel modifies the "path" label to the specified file label
-func SetFileLabel(path string, fileLabel string) error {
-	if selinux.GetEnabled() && fileLabel != "" {
-		return selinux.SetFileLabel(path, fileLabel)
-	}
-	return nil
-}
-
-// SetFileCreateLabel tells the kernel the label for all files to be created
-func SetFileCreateLabel(fileLabel string) error {
-	if selinux.GetEnabled() {
-		return selinux.SetFSCreateLabel(fileLabel)
-	}
-	return nil
-}
-
-// Relabel changes the label of path to the filelabel string.
-// It changes the MCS label to s0 if shared is true.
-// This will allow all containers to share the content.
-func Relabel(path string, fileLabel string, shared bool) error {
-	if !selinux.GetEnabled() {
-		return nil
-	}
-
-	if fileLabel == "" {
-		return nil
-	}
-
-	exclude_paths := map[string]bool{"/": true, "/usr": true, "/etc": true}
-	if exclude_paths[path] {
-		return fmt.Errorf("SELinux relabeling of %s is not allowed", path)
-	}
-
-	if shared {
-		c := selinux.NewContext(fileLabel)
-		c["level"] = "s0"
-		fileLabel = c.Get()
-	}
-	if err := selinux.Chcon(path, fileLabel, true); err != nil {
-		return err
-	}
-	return nil
-}
-
-// PidLabel will return the label of the process running with the specified pid
-func PidLabel(pid int) (string, error) {
-	return selinux.PidLabel(pid)
-}
-
-// Init initialises the labeling system
-func Init() {
-	selinux.GetEnabled()
-}
-
-// ReserveLabel will record the fact that the MCS label has already been used.
-// This will prevent InitLabels from using the MCS label in a newly created
-// container
-func ReserveLabel(label string) error {
-	selinux.ReserveLabel(label)
-	return nil
-}
-
-// ReleaseLabel will remove the reservation of the MCS label.
-// This will allow InitLabels to use the MCS label in a newly created
-// containers
-func ReleaseLabel(label string) error {
-	selinux.ReleaseLabel(label)
-	return nil
-}
-
-// DupSecOpt takes a process label and returns security options that
-// can be used to set duplicate labels on future container processes
-func DupSecOpt(src string) []string {
-	return selinux.DupSecOpt(src)
-}
-
-// DisableSecOpt returns a security opt that can disable labeling
-// support for future container processes
-func DisableSecOpt() []string {
-	return selinux.DisableSecOpt()
-}
-
-// Validate checks that the label does not include unexpected options
-func Validate(label string) error {
-	if strings.Contains(label, "z") && strings.Contains(label, "Z") {
-		return ErrIncompatibleLabel
-	}
-	return nil
-}
-
-// RelabelNeeded checks whether the user requested a relabel
-func RelabelNeeded(label string) bool {
-	return strings.Contains(label, "z") || strings.Contains(label, "Z")
-}
-
-// IsShared checks that the label includes a "shared" mark
-func IsShared(label string) bool {
-	return strings.Contains(label, "z")
-}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go b/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
deleted file mode 100644
index 4cf2c45de7..0000000000
--- a/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
+++ /dev/null
@@ -1,593 +0,0 @@
-// +build linux
-
-package selinux
-
-import (
-	"bufio"
-	"crypto/rand"
-	"encoding/binary"
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-	"regexp"
-	"strconv"
-	"strings"
-	"sync"
-	"syscall"
-)
-
-const (
-	// Enforcing constant indicate SELinux is in enforcing mode
-	Enforcing = 1
-	// Permissive constant to indicate SELinux is in permissive mode
-	Permissive = 0
-	// Disabled constant to indicate SELinux is disabled
-	Disabled         = -1
-	selinuxDir       = "/etc/selinux/"
-	selinuxConfig    = selinuxDir + "config"
-	selinuxTypeTag   = "SELINUXTYPE"
-	selinuxTag       = "SELINUX"
-	selinuxPath      = "/sys/fs/selinux"
-	xattrNameSelinux = "security.selinux"
-	stRdOnly         = 0x01
-)
-
-type selinuxState struct {
-	enabledSet   bool
-	enabled      bool
-	selinuxfsSet bool
-	selinuxfs    string
-	mcsList      map[string]bool
-	sync.Mutex
-}
-
-var (
-	assignRegex = regexp.MustCompile(`^([^=]+)=(.*)$`)
-	state       = selinuxState{
-		mcsList: make(map[string]bool),
-	}
-)
-
-// Context is a representation of the SELinux label broken into 4 parts
-type Context map[string]string
-
-func (s *selinuxState) setEnable(enabled bool) bool {
-	s.Lock()
-	defer s.Unlock()
-	s.enabledSet = true
-	s.enabled = enabled
-	return s.enabled
-}
-
-func (s *selinuxState) getEnabled() bool {
-	s.Lock()
-	enabled := s.enabled
-	enabledSet := s.enabledSet
-	s.Unlock()
-	if enabledSet {
-		return enabled
-	}
-
-	enabled = false
-	if fs := getSelinuxMountPoint(); fs != "" {
-		if con, _ := CurrentLabel(); con != "kernel" {
-			enabled = true
-		}
-	}
-	return s.setEnable(enabled)
-}
-
-// SetDisabled disables selinux support for the package
-func SetDisabled() {
-	state.setEnable(false)
-}
-
-func (s *selinuxState) setSELinuxfs(selinuxfs string) string {
-	s.Lock()
-	defer s.Unlock()
-	s.selinuxfsSet = true
-	s.selinuxfs = selinuxfs
-	return s.selinuxfs
-}
-
-func (s *selinuxState) getSELinuxfs() string {
-	s.Lock()
-	selinuxfs := s.selinuxfs
-	selinuxfsSet := s.selinuxfsSet
-	s.Unlock()
-	if selinuxfsSet {
-		return selinuxfs
-	}
-
-	selinuxfs = ""
-	f, err := os.Open("/proc/self/mountinfo")
-	if err != nil {
-		return selinuxfs
-	}
-	defer f.Close()
-
-	scanner := bufio.NewScanner(f)
-	for scanner.Scan() {
-		txt := scanner.Text()
-		// Safe as mountinfo encodes mountpoints with spaces as \040.
-		sepIdx := strings.Index(txt, " - ")
-		if sepIdx == -1 {
-			continue
-		}
-		if !strings.Contains(txt[sepIdx:], "selinuxfs") {
-			continue
-		}
-		fields := strings.Split(txt, " ")
-		if len(fields) < 5 {
-			continue
-		}
-		selinuxfs = fields[4]
-		break
-	}
-
-	if selinuxfs != "" {
-		var buf syscall.Statfs_t
-		syscall.Statfs(selinuxfs, &buf)
-		if (buf.Flags & stRdOnly) == 1 {
-			selinuxfs = ""
-		}
-	}
-	return s.setSELinuxfs(selinuxfs)
-}
-
-// getSelinuxMountPoint returns the path to the mountpoint of an selinuxfs
-// filesystem or an empty string if no mountpoint is found.  Selinuxfs is
-// a proc-like pseudo-filesystem that exposes the selinux policy API to
-// processes.  The existence of an selinuxfs mount is used to determine
-// whether selinux is currently enabled or not.
-func getSelinuxMountPoint() string {
-	return state.getSELinuxfs()
-}
-
-// GetEnabled returns whether selinux is currently enabled.
-func GetEnabled() bool {
-	return state.getEnabled()
-}
-
-func readConfig(target string) (value string) {
-	var (
-		val, key string
-		bufin    *bufio.Reader
-	)
-
-	in, err := os.Open(selinuxConfig)
-	if err != nil {
-		return ""
-	}
-	defer in.Close()
-
-	bufin = bufio.NewReader(in)
-
-	for done := false; !done; {
-		var line string
-		if line, err = bufin.ReadString('\n'); err != nil {
-			if err != io.EOF {
-				return ""
-			}
-			done = true
-		}
-		line = strings.TrimSpace(line)
-		if len(line) == 0 {
-			// Skip blank lines
-			continue
-		}
-		if line[0] == ';' || line[0] == '#' {
-			// Skip comments
-			continue
-		}
-		if groups := assignRegex.FindStringSubmatch(line); groups != nil {
-			key, val = strings.TrimSpace(groups[1]), strings.TrimSpace(groups[2])
-			if key == target {
-				return strings.Trim(val, "\"")
-			}
-		}
-	}
-	return ""
-}
-
-func getSELinuxPolicyRoot() string {
-	return selinuxDir + readConfig(selinuxTypeTag)
-}
-
-func readCon(name string) (string, error) {
-	var val string
-
-	in, err := os.Open(name)
-	if err != nil {
-		return "", err
-	}
-	defer in.Close()
-
-	_, err = fmt.Fscanf(in, "%s", &val)
-	return val, err
-}
-
-// SetFileLabel sets the SELinux label for this path or returns an error.
-func SetFileLabel(path string, label string) error {
-	return lsetxattr(path, xattrNameSelinux, []byte(label), 0)
-}
-
-// Filecon returns the SELinux label for this path or returns an error.
-func FileLabel(path string) (string, error) {
-	label, err := lgetxattr(path, xattrNameSelinux)
-	if err != nil {
-		return "", err
-	}
-	// Trim the NUL byte at the end of the byte buffer, if present.
-	if len(label) > 0 && label[len(label)-1] == '\x00' {
-		label = label[:len(label)-1]
-	}
-	return string(label), nil
-}
-
-/*
-SetFSCreateLabel tells kernel the label to create all file system objects
-created by this task. Setting label="" to return to default.
-*/
-func SetFSCreateLabel(label string) error {
-	return writeCon(fmt.Sprintf("/proc/self/task/%d/attr/fscreate", syscall.Gettid()), label)
-}
-
-/*
-FSCreateLabel returns the default label the kernel which the kernel is using
-for file system objects created by this task. "" indicates default.
-*/
-func FSCreateLabel() (string, error) {
-	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/fscreate", syscall.Gettid()))
-}
-
-// CurrentLabel returns the SELinux label of the current process thread, or an error.
-func CurrentLabel() (string, error) {
-	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/current", syscall.Gettid()))
-}
-
-// PidLabel returns the SELinux label of the given pid, or an error.
-func PidLabel(pid int) (string, error) {
-	return readCon(fmt.Sprintf("/proc/%d/attr/current", pid))
-}
-
-/*
-ExecLabel returns the SELinux label that the kernel will use for any programs
-that are executed by the current process thread, or an error.
-*/
-func ExecLabel() (string, error) {
-	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/exec", syscall.Gettid()))
-}
-
-func writeCon(name string, val string) error {
-	out, err := os.OpenFile(name, os.O_WRONLY, 0)
-	if err != nil {
-		return err
-	}
-	defer out.Close()
-
-	if val != "" {
-		_, err = out.Write([]byte(val))
-	} else {
-		_, err = out.Write(nil)
-	}
-	return err
-}
-
-/*
-SetExecLabel sets the SELinux label that the kernel will use for any programs
-that are executed by the current process thread, or an error.
-*/
-func SetExecLabel(label string) error {
-	return writeCon(fmt.Sprintf("/proc/self/task/%d/attr/exec", syscall.Gettid()), label)
-}
-
-// Get returns the Context as a string
-func (c Context) Get() string {
-	return fmt.Sprintf("%s:%s:%s:%s", c["user"], c["role"], c["type"], c["level"])
-}
-
-// NewContext creates a new Context struct from the specified label
-func NewContext(label string) Context {
-	c := make(Context)
-
-	if len(label) != 0 {
-		con := strings.SplitN(label, ":", 4)
-		c["user"] = con[0]
-		c["role"] = con[1]
-		c["type"] = con[2]
-		c["level"] = con[3]
-	}
-	return c
-}
-
-// ReserveLabel reserves the MLS/MCS level component of the specified label
-func ReserveLabel(label string) {
-	if len(label) != 0 {
-		con := strings.SplitN(label, ":", 4)
-		mcsAdd(con[3])
-	}
-}
-
-func selinuxEnforcePath() string {
-	return fmt.Sprintf("%s/enforce", selinuxPath)
-}
-
-// EnforceMode returns the current SELinux mode Enforcing, Permissive, Disabled
-func EnforceMode() int {
-	var enforce int
-
-	enforceS, err := readCon(selinuxEnforcePath())
-	if err != nil {
-		return -1
-	}
-
-	enforce, err = strconv.Atoi(string(enforceS))
-	if err != nil {
-		return -1
-	}
-	return enforce
-}
-
-/*
-SetEnforce sets the current SELinux mode Enforcing, Permissive.
-Disabled is not valid, since this needs to be set at boot time.
-*/
-func SetEnforceMode(mode int) error {
-	return writeCon(selinuxEnforcePath(), fmt.Sprintf("%d", mode))
-}
-
-/*
-DefaultEnforceMode returns the systems default SELinux mode Enforcing,
-Permissive or Disabled. Note this is is just the default at boot time.
-EnforceMode tells you the systems current mode.
-*/
-func DefaultEnforceMode() int {
-	switch readConfig(selinuxTag) {
-	case "enforcing":
-		return Enforcing
-	case "permissive":
-		return Permissive
-	}
-	return Disabled
-}
-
-func mcsAdd(mcs string) error {
-	state.Lock()
-	defer state.Unlock()
-	if state.mcsList[mcs] {
-		return fmt.Errorf("MCS Label already exists")
-	}
-	state.mcsList[mcs] = true
-	return nil
-}
-
-func mcsDelete(mcs string) {
-	state.Lock()
-	defer state.Unlock()
-	state.mcsList[mcs] = false
-}
-
-func intToMcs(id int, catRange uint32) string {
-	var (
-		SETSIZE = int(catRange)
-		TIER    = SETSIZE
-		ORD     = id
-	)
-
-	if id < 1 || id > 523776 {
-		return ""
-	}
-
-	for ORD > TIER {
-		ORD = ORD - TIER
-		TIER--
-	}
-	TIER = SETSIZE - TIER
-	ORD = ORD + TIER
-	return fmt.Sprintf("s0:c%d,c%d", TIER, ORD)
-}
-
-func uniqMcs(catRange uint32) string {
-	var (
-		n      uint32
-		c1, c2 uint32
-		mcs    string
-	)
-
-	for {
-		binary.Read(rand.Reader, binary.LittleEndian, &n)
-		c1 = n % catRange
-		binary.Read(rand.Reader, binary.LittleEndian, &n)
-		c2 = n % catRange
-		if c1 == c2 {
-			continue
-		} else {
-			if c1 > c2 {
-				c1, c2 = c2, c1
-			}
-		}
-		mcs = fmt.Sprintf("s0:c%d,c%d", c1, c2)
-		if err := mcsAdd(mcs); err != nil {
-			continue
-		}
-		break
-	}
-	return mcs
-}
-
-/*
-ReleaseLabel will unreserve the MLS/MCS Level field of the specified label.
-Allowing it to be used by another process.
-*/
-func ReleaseLabel(label string) {
-	if len(label) != 0 {
-		con := strings.SplitN(label, ":", 4)
-		mcsDelete(con[3])
-	}
-}
-
-var roFileLabel string
-
-// ROFileLabel returns the specified SELinux readonly file label
-func ROFileLabel() (fileLabel string) {
-	return roFileLabel
-}
-
-/*
-ContainerLabels returns an allocated processLabel and fileLabel to be used for
-container labeling by the calling process.
-*/
-func ContainerLabels() (processLabel string, fileLabel string) {
-	var (
-		val, key string
-		bufin    *bufio.Reader
-	)
-
-	if !GetEnabled() {
-		return "", ""
-	}
-	lxcPath := fmt.Sprintf("%s/contexts/lxc_contexts", getSELinuxPolicyRoot())
-	in, err := os.Open(lxcPath)
-	if err != nil {
-		return "", ""
-	}
-	defer in.Close()
-
-	bufin = bufio.NewReader(in)
-
-	for done := false; !done; {
-		var line string
-		if line, err = bufin.ReadString('\n'); err != nil {
-			if err == io.EOF {
-				done = true
-			} else {
-				goto exit
-			}
-		}
-		line = strings.TrimSpace(line)
-		if len(line) == 0 {
-			// Skip blank lines
-			continue
-		}
-		if line[0] == ';' || line[0] == '#' {
-			// Skip comments
-			continue
-		}
-		if groups := assignRegex.FindStringSubmatch(line); groups != nil {
-			key, val = strings.TrimSpace(groups[1]), strings.TrimSpace(groups[2])
-			if key == "process" {
-				processLabel = strings.Trim(val, "\"")
-			}
-			if key == "file" {
-				fileLabel = strings.Trim(val, "\"")
-			}
-			if key == "ro_file" {
-				roFileLabel = strings.Trim(val, "\"")
-			}
-		}
-	}
-
-	if processLabel == "" || fileLabel == "" {
-		return "", ""
-	}
-
-	if roFileLabel == "" {
-		roFileLabel = fileLabel
-	}
-exit:
-	mcs := uniqMcs(1024)
-	scon := NewContext(processLabel)
-	scon["level"] = mcs
-	processLabel = scon.Get()
-	scon = NewContext(fileLabel)
-	scon["level"] = mcs
-	fileLabel = scon.Get()
-	return processLabel, fileLabel
-}
-
-// SecurityCheckContext validates that the SELinux label is understood by the kernel
-func SecurityCheckContext(val string) error {
-	return writeCon(fmt.Sprintf("%s.context", selinuxPath), val)
-}
-
-/*
-CopyLevel returns a label with the MLS/MCS level from src label replaces on
-the dest label.
-*/
-func CopyLevel(src, dest string) (string, error) {
-	if src == "" {
-		return "", nil
-	}
-	if err := SecurityCheckContext(src); err != nil {
-		return "", err
-	}
-	if err := SecurityCheckContext(dest); err != nil {
-		return "", err
-	}
-	scon := NewContext(src)
-	tcon := NewContext(dest)
-	mcsDelete(tcon["level"])
-	mcsAdd(scon["level"])
-	tcon["level"] = scon["level"]
-	return tcon.Get(), nil
-}
-
-// Prevent users from relabing system files
-func badPrefix(fpath string) error {
-	var badprefixes = []string{"/usr"}
-
-	for _, prefix := range badprefixes {
-		if fpath == prefix || strings.HasPrefix(fpath, fmt.Sprintf("%s/", prefix)) {
-			return fmt.Errorf("relabeling content in %s is not allowed", prefix)
-		}
-	}
-	return nil
-}
-
-// Chcon changes the fpath file object to the SELinux label label.
-// If the fpath is a directory and recurse is true Chcon will walk the
-// directory tree setting the label
-func Chcon(fpath string, label string, recurse bool) error {
-	if label == "" {
-		return nil
-	}
-	if err := badPrefix(fpath); err != nil {
-		return err
-	}
-	callback := func(p string, info os.FileInfo, err error) error {
-		return SetFileLabel(p, label)
-	}
-
-	if recurse {
-		return filepath.Walk(fpath, callback)
-	}
-
-	return SetFileLabel(fpath, label)
-}
-
-// DupSecOpt takes an SELinux process label and returns security options that
-// can will set the SELinux Type and Level for future container processes
-func DupSecOpt(src string) []string {
-	if src == "" {
-		return nil
-	}
-	con := NewContext(src)
-	if con["user"] == "" ||
-		con["role"] == "" ||
-		con["type"] == "" ||
-		con["level"] == "" {
-		return nil
-	}
-	return []string{"user:" + con["user"],
-		"role:" + con["role"],
-		"type:" + con["type"],
-		"level:" + con["level"]}
-}
-
-// DisableSecOpt returns a security opt that can be used to disabling SELinux
-// labeling support for future container processes
-func DisableSecOpt() []string {
-	return []string{"disable"}
-}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go b/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
deleted file mode 100644
index 7f2ef85049..0000000000
--- a/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
+++ /dev/null
@@ -1,78 +0,0 @@
-// +build linux
-
-package selinux
-
-import (
-	"syscall"
-	"unsafe"
-)
-
-var _zero uintptr
-
-// Returns a []byte slice if the xattr is set and nil otherwise
-// Requires path and its attribute as arguments
-func lgetxattr(path string, attr string) ([]byte, error) {
-	var sz int
-	pathBytes, err := syscall.BytePtrFromString(path)
-	if err != nil {
-		return nil, err
-	}
-	attrBytes, err := syscall.BytePtrFromString(attr)
-	if err != nil {
-		return nil, err
-	}
-
-	// Start with a 128 length byte array
-	sz = 128
-	dest := make([]byte, sz)
-	destBytes := unsafe.Pointer(&dest[0])
-	_sz, _, errno := syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
-
-	switch {
-	case errno == syscall.ENODATA:
-		return nil, errno
-	case errno == syscall.ENOTSUP:
-		return nil, errno
-	case errno == syscall.ERANGE:
-		// 128 byte array might just not be good enough,
-		// A dummy buffer is used ``uintptr(0)`` to get real size
-		// of the xattrs on disk
-		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(unsafe.Pointer(nil)), uintptr(0), 0, 0)
-		sz = int(_sz)
-		if sz < 0 {
-			return nil, errno
-		}
-		dest = make([]byte, sz)
-		destBytes := unsafe.Pointer(&dest[0])
-		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
-		if errno != 0 {
-			return nil, errno
-		}
-	case errno != 0:
-		return nil, errno
-	}
-	sz = int(_sz)
-	return dest[:sz], nil
-}
-
-func lsetxattr(path string, attr string, data []byte, flags int) error {
-	pathBytes, err := syscall.BytePtrFromString(path)
-	if err != nil {
-		return err
-	}
-	attrBytes, err := syscall.BytePtrFromString(attr)
-	if err != nil {
-		return err
-	}
-	var dataBytes unsafe.Pointer
-	if len(data) > 0 {
-		dataBytes = unsafe.Pointer(&data[0])
-	} else {
-		dataBytes = unsafe.Pointer(&_zero)
-	}
-	_, _, errno := syscall.Syscall6(syscall.SYS_LSETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(dataBytes), uintptr(len(data)), uintptr(flags), 0)
-	if errno != 0 {
-		return errno
-	}
-	return nil
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/LICENSE b/vendor/github.com/ostreedev/ostree-go/LICENSE
deleted file mode 100644
index aa93b4dab9..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/LICENSE
+++ /dev/null
@@ -1,17 +0,0 @@
-Portions of this code are derived from:
-
-https://github.com/dradtke/gotk3
-
-Copyright (c) 2013 Conformal Systems LLC.
-
-Permission to use, copy, modify, and distribute this software for any
-purpose with or without fee is hereby granted, provided that the above
-copyright notice and this permission notice appear in all copies.
-
-THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
-WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
-MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
-ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
-WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
-ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
-OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gboolean.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gboolean.go
deleted file mode 100644
index a4ad0f0005..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gboolean.go
+++ /dev/null
@@ -1,60 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-import (
-	"unsafe"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-
-/*
- * GBoolean
- */
-
-// GBoolean is a Go representation of glib's gboolean
-type GBoolean C.gboolean
-
-func NewGBoolean() GBoolean {
-	return GBoolean(0)
-}
-
-func GBool(b bool) GBoolean {
-	if b {
-		return GBoolean(1)
-	}
-	return GBoolean(0)
-}
-
-func (b GBoolean) Ptr() unsafe.Pointer {
-	return unsafe.Pointer(&b)
-}
-
-func GoBool(b GBoolean) bool {
-	if b != 0 {
-		return true
-	}
-	return false
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gcancellable.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gcancellable.go
deleted file mode 100644
index 537db4720d..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gcancellable.go
+++ /dev/null
@@ -1,47 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-
-import (
-	"unsafe"
-)
-
-// GIO types
-
-type GCancellable struct {
-	*GObject
-}
-
-func (self *GCancellable) native() *C.GCancellable {
-	return (*C.GCancellable)(unsafe.Pointer(self))
-}
-
-func (self *GCancellable) Ptr() unsafe.Pointer {
-	return unsafe.Pointer(self)
-}
-
-// At the moment, no cancellable API, just pass nil
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gerror.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gerror.go
deleted file mode 100644
index 714b15d0bf..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gerror.go
+++ /dev/null
@@ -1,71 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-import (
-	"errors"
-	"unsafe"
-)
-
-/*
- * GError
- */
-
-// GError is a representation of GLib's GError
-type GError struct {
-	ptr unsafe.Pointer
-}
-
-func NewGError() GError {
-	return GError{nil}
-}
-
-func (e GError) Ptr() unsafe.Pointer {
-	if e.ptr == nil {
-		return nil
-	}
-	return e.ptr
-}
-
-func (e GError) Nil() {
-	e.ptr = nil
-}
-
-func (e *GError) native() *C.GError {
-	if e == nil || e.ptr == nil {
-		return nil
-	}
-	return (*C.GError)(e.ptr)
-}
-
-func ToGError(ptr unsafe.Pointer) GError {
-	return GError{ptr}
-}
-
-func ConvertGError(e GError) error {
-	defer C.g_error_free(e.native())
-	return errors.New(C.GoString((*C.char)(C._g_error_get_message(e.native()))))
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfile.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfile.go
deleted file mode 100644
index babe705096..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfile.go
+++ /dev/null
@@ -1,52 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-import (
-	"unsafe"
-)
-
-/*
- * GFile
- */
-
-type GFile struct {
-	ptr unsafe.Pointer
-}
-
-func (f GFile) Ptr() unsafe.Pointer {
-	return f.ptr
-}
-
-func NewGFile() *GFile {
-	return &GFile{nil}
-}
-
-func ToGFile(ptr unsafe.Pointer) *GFile {
-	gf := NewGFile()
-	gf.ptr = ptr
-	return gf
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfileinfo.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfileinfo.go
deleted file mode 100644
index 9c155834a8..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gfileinfo.go
+++ /dev/null
@@ -1,53 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-import (
-	"unsafe"
-)
-
-/*
- * GFileInfo
- */
-
-type GFileInfo struct {
-	ptr unsafe.Pointer
-}
-
-func (fi GFileInfo) Ptr() unsafe.Pointer {
-	return fi.ptr
-}
-
-func NewGFileInfo() GFileInfo {
-	var fi GFileInfo = GFileInfo{nil}
-	return fi
-}
-
-func ToGFileInfo(p unsafe.Pointer) *GFileInfo {
-	var fi *GFileInfo = &GFileInfo{}
-	fi.ptr = p
-	return fi
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtable.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtable.go
deleted file mode 100644
index 20cc321cbb..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtable.go
+++ /dev/null
@@ -1,50 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-import (
-	"unsafe"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-
-/*
- * GHashTable
- */
-type GHashTable struct {
-	ptr unsafe.Pointer
-}
-
-func (ht *GHashTable) Ptr() unsafe.Pointer {
-	return ht.ptr
-}
-
-func (ht *GHashTable) native() *C.GHashTable {
-	return (*C.GHashTable)(ht.ptr)
-}
-
-func ToGHashTable(ptr unsafe.Pointer) *GHashTable {
-	return &GHashTable{ptr}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtableiter.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtableiter.go
deleted file mode 100644
index 1657edf5fc..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/ghashtableiter.go
+++ /dev/null
@@ -1,50 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-import (
-	"unsafe"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-
-/*
- * GHashTableIter
- */
-type GHashTableIter struct {
-	ptr unsafe.Pointer
-}
-
-func (ht *GHashTableIter) Ptr() unsafe.Pointer {
-	return ht.ptr
-}
-
-func (ht *GHashTableIter) native() *C.GHashTableIter {
-	return (*C.GHashTableIter)(ht.ptr)
-}
-
-func ToGHashTableIter(ptr unsafe.Pointer) *GHashTableIter {
-	return &GHashTableIter{ptr}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go
deleted file mode 100644
index f3d3aa5266..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go
+++ /dev/null
@@ -1,27 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go.h b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go.h
deleted file mode 100644
index a55bd242f9..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/glibobject.go.h
+++ /dev/null
@@ -1,17 +0,0 @@
-#include <glib.h>
-
-static char *
-_g_error_get_message (GError *error)
-{
-  g_assert (error != NULL);
-  return error->message;
-}
-
-static const char *
-_g_variant_lookup_string (GVariant *v, const char *key)
-{
-  const char *r;
-  if (g_variant_lookup (v, key, "&s", &r))
-    return r;
-  return NULL;
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gobject.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gobject.go
deleted file mode 100644
index dedbe749a4..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gobject.go
+++ /dev/null
@@ -1,79 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-import (
-	"unsafe"
-)
-
-/*
- * GObject
- */
-
-// IObject is an interface type implemented by Object and all types which embed
-// an Object.  It is meant to be used as a type for function arguments which
-// require GObjects or any subclasses thereof.
-type IObject interface {
-	toGObject() *C.GObject
-	ToObject() *GObject
-}
-
-// GObject is a representation of GLib's GObject.
-type GObject struct {
-	ptr unsafe.Pointer
-}
-
-func (v *GObject) Ptr() unsafe.Pointer {
-	return v.ptr
-}
-
-func (v *GObject) native() *C.GObject {
-	if v == nil {
-		return nil
-	}
-	return (*C.GObject)(v.ptr)
-}
-
-func (v *GObject) Ref() {
-	C.g_object_ref(C.gpointer(v.Ptr()))
-}
-
-func (v *GObject) Unref() {
-	C.g_object_unref(C.gpointer(v.Ptr()))
-}
-
-func (v *GObject) RefSink() {
-	C.g_object_ref_sink(C.gpointer(v.native()))
-}
-
-func (v *GObject) IsFloating() bool {
-	c := C.g_object_is_floating(C.gpointer(v.native()))
-	return GoBool(GBoolean(c))
-}
-
-func (v *GObject) ForceFloating() {
-	C.g_object_force_floating(v.native())
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/goptioncontext.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/goptioncontext.go
deleted file mode 100644
index 05fd54a1a4..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/goptioncontext.go
+++ /dev/null
@@ -1,51 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-import (
-	"unsafe"
-)
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-
-/*
- * GOptionContext
- */
-
-type GOptionContext struct {
-	ptr unsafe.Pointer
-}
-
-func (oc *GOptionContext) Ptr() unsafe.Pointer {
-	return oc.ptr
-}
-
-func (oc *GOptionContext) native() *C.GOptionContext {
-	return (*C.GOptionContext)(oc.ptr)
-}
-
-func ToGOptionContext(ptr unsafe.Pointer) GOptionContext {
-	return GOptionContext{ptr}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gvariant.go b/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gvariant.go
deleted file mode 100644
index 30572ea87f..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/glibobject/gvariant.go
+++ /dev/null
@@ -1,97 +0,0 @@
-/*
- * Copyright (c) 2013 Conformal Systems <info@conformal.com>
- *
- * This file originated from: http://opensource.conformal.com/
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package glibobject
-
-// #cgo pkg-config: glib-2.0 gobject-2.0
-// #include <glib.h>
-// #include <glib-object.h>
-// #include <gio/gio.h>
-// #include "glibobject.go.h"
-// #include <stdlib.h>
-import "C"
-import (
-	"fmt"
-	"unsafe"
-)
-
-/*
- * GVariant
- */
-
-type GVariant struct {
-	ptr unsafe.Pointer
-}
-
-//func GVariantNew(p unsafe.Pointer) *GVariant {
-//o := &GVariant{p}
-//runtime.SetFinalizer(o, (*GVariant).Unref)
-//return o;
-//}
-
-//func GVariantNewSink(p unsafe.Pointer) *GVariant {
-//o := &GVariant{p}
-//runtime.SetFinalizer(o, (*GVariant).Unref)
-//o.RefSink()
-//return o;
-//}
-
-func (v *GVariant) native() *C.GVariant {
-	return (*C.GVariant)(v.ptr)
-}
-
-func (v *GVariant) Ptr() unsafe.Pointer {
-	return v.ptr
-}
-
-func (v *GVariant) Ref() {
-	C.g_variant_ref(v.native())
-}
-
-func (v *GVariant) Unref() {
-	C.g_variant_unref(v.native())
-}
-
-func (v *GVariant) RefSink() {
-	C.g_variant_ref_sink(v.native())
-}
-
-func (v *GVariant) TypeString() string {
-	cs := (*C.char)(C.g_variant_get_type_string(v.native()))
-	return C.GoString(cs)
-}
-
-func (v *GVariant) GetChildValue(i int) *GVariant {
-	cchild := C.g_variant_get_child_value(v.native(), C.gsize(i))
-	return (*GVariant)(unsafe.Pointer(cchild))
-}
-
-func (v *GVariant) LookupString(key string) (string, error) {
-	ckey := C.CString(key)
-	defer C.free(unsafe.Pointer(ckey))
-	// TODO: Find a way to have constant C strings in golang
-	cstr := C._g_variant_lookup_string(v.native(), ckey)
-	if cstr == nil {
-		return "", fmt.Errorf("No such key: %s", key)
-	}
-	return C.GoString(cstr), nil
-}
-
-func ToGVariant(ptr unsafe.Pointer) *GVariant {
-	return &GVariant{ptr}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go
deleted file mode 100644
index d3a8ae5fde..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go
+++ /dev/null
@@ -1,93 +0,0 @@
-// Package otbuiltin contains all of the basic commands for creating and
-// interacting with an ostree repository
-package otbuiltin
-
-import (
-	"errors"
-	"fmt"
-	"runtime"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-type Repo struct {
-	//*glib.GObject
-	ptr unsafe.Pointer
-}
-
-// Converts an ostree repo struct to its C equivalent
-func (r *Repo) native() *C.OstreeRepo {
-	//return (*C.OstreeRepo)(r.Ptr())
-	return (*C.OstreeRepo)(r.ptr)
-}
-
-// Takes a C ostree repo and converts it to a Go struct
-func repoFromNative(p *C.OstreeRepo) *Repo {
-	if p == nil {
-		return nil
-	}
-	//o := (*glib.GObject)(unsafe.Pointer(p))
-	//r := &Repo{o}
-	r := &Repo{unsafe.Pointer(p)}
-	return r
-}
-
-// Checks if the repo has been initialized
-func (r *Repo) isInitialized() bool {
-	if r.ptr != nil {
-		return true
-	}
-	return false
-}
-
-// Attempts to open the repo at the given path
-func OpenRepo(path string) (*Repo, error) {
-	var cerr *C.GError = nil
-	cpath := C.CString(path)
-	pathc := C.g_file_new_for_path(cpath)
-	defer C.g_object_unref(C.gpointer(pathc))
-	crepo := C.ostree_repo_new(pathc)
-	repo := repoFromNative(crepo)
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_open(crepo, nil, &cerr)))
-	if !r {
-		return nil, generateError(cerr)
-	}
-	return repo, nil
-}
-
-// Enable support for tombstone commits, which allow the repo to distinguish between
-// commits that were intentionally deleted and commits that were removed accidentally
-func enableTombstoneCommits(repo *Repo) error {
-	var tombstoneCommits bool
-	var config *C.GKeyFile = C.ostree_repo_get_config(repo.native())
-	var cerr *C.GError
-
-	tombstoneCommits = glib.GoBool(glib.GBoolean(C.g_key_file_get_boolean(config, (*C.gchar)(C.CString("core")), (*C.gchar)(C.CString("tombstone-commits")), nil)))
-
-	//tombstoneCommits is false only if it really is false or if it is set to FALSE in the config file
-	if !tombstoneCommits {
-		C.g_key_file_set_boolean(config, (*C.gchar)(C.CString("core")), (*C.gchar)(C.CString("tombstone-commits")), C.TRUE)
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_config(repo.native(), config, &cerr))) {
-			return generateError(cerr)
-		}
-	}
-	return nil
-}
-
-func generateError(err *C.GError) error {
-	goErr := glib.ConvertGError(glib.ToGError(unsafe.Pointer(err)))
-	_, file, line, ok := runtime.Caller(1)
-	if ok {
-		return errors.New(fmt.Sprintf("%s:%d - %s", file, line, goErr))
-	} else {
-		return goErr
-	}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go.h b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go.h
deleted file mode 100644
index 734de98219..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/builtin.go.h
+++ /dev/null
@@ -1,191 +0,0 @@
-#ifndef BUILTIN_GO_H
-#define BUILTIN_GO_H
-
-#include <glib.h>
-#include <ostree.h>
-#include <string.h>
-#include <fcntl.h>
-
-static guint32 owner_uid;
-static guint32 owner_gid;
-
-static void
-_ostree_repo_append_modifier_flags(OstreeRepoCommitModifierFlags *flags, int flag) {
-  *flags |= flag;
-}
-
-struct CommitFilterData {
-  GHashTable *mode_adds;
-  GHashTable *skip_list;
-};
-
-typedef struct CommitFilterData CommitFilterData;
-
-static char* _gptr_to_str(gpointer p)
-{
-    return (char*)p;
-}
-
-// The following 3 functions are wrapper functions for macros since CGO can't parse macros
-static OstreeRepoFile*
-_ostree_repo_file(GFile *file)
-{
-  return OSTREE_REPO_FILE (file);
-}
-
-static guint
-_gpointer_to_uint (gpointer ptr)
-{
-  return GPOINTER_TO_UINT (ptr);
-}
-
-static gpointer
-_guint_to_pointer (guint u)
-{
-  return GUINT_TO_POINTER (u);
-}
-
-static void
-_g_clear_object (volatile GObject **object_ptr)
-{
-  g_clear_object(object_ptr);
-}
-
-static const GVariantType*
-_g_variant_type (char *type)
-{
-  return G_VARIANT_TYPE (type);
-}
-
-static int
-_at_fdcwd ()
-{
-  return AT_FDCWD;
-}
-
-static guint64
-_guint64_from_be (guint64 val)
-{
-  return GUINT64_FROM_BE (val);
-}
-
-
-
-// These functions are wrappers for variadic functions since CGO can't parse variadic functions
-static void
-_g_printerr_onearg (char* msg,
-                    char* arg)
-{
-  g_printerr("%s %s\n", msg, arg);
-}
-
-static void
-_g_set_error_onearg (GError *err,
-                     char*  msg,
-                     char*  arg)
-{
-  g_set_error(&err, G_IO_ERROR, G_IO_ERROR_FAILED, "%s %s", msg, arg);
-}
-
-static void
-_g_variant_builder_add_twoargs (GVariantBuilder*     builder,
-                                const char    *format_string,
-                                char          *arg1,
-                                GVariant      *arg2)
-{
-  g_variant_builder_add(builder, format_string, arg1, arg2);
-}
-
-static GHashTable*
-_g_hash_table_new_full ()
-{
-  return g_hash_table_new_full(g_str_hash, g_str_equal, g_free, NULL);
-}
-
-static void
-_g_variant_get_commit_dump (GVariant    *variant,
-                            const char  *format,
-                            char        **subject,
-                            char        **body,
-                            guint64     *timestamp)
-{
-  return g_variant_get (variant, format, NULL, NULL, NULL, subject, body, timestamp, NULL, NULL);
-}
-
-static guint32
-_binary_or (guint32 a, guint32 b)
-{
-  return a | b;
-}
-
-static void
-_cleanup (OstreeRepo                *self,
-          OstreeRepoCommitModifier  *modifier,
-          GCancellable              *cancellable,
-          GError                    **out_error)
-{
-  if (self)
-    ostree_repo_abort_transaction(self, cancellable, out_error);
-  if (modifier)
-    ostree_repo_commit_modifier_unref (modifier);
-}
-
-// The following functions make up a commit_filter function that gets passed into
-// another C function (and thus can't be a go function) as well as its helpers
-static OstreeRepoCommitFilterResult
-_commit_filter (OstreeRepo         *self,
-               const char         *path,
-               GFileInfo          *file_info,
-               gpointer            user_data)
-{
-  struct CommitFilterData *data = user_data;
-  GHashTable *mode_adds = data->mode_adds;
-  GHashTable *skip_list = data->skip_list;
-  gpointer value;
-
-  if (owner_uid >= 0)
-    g_file_info_set_attribute_uint32 (file_info, "unix::uid", owner_uid);
-  if (owner_gid >= 0)
-    g_file_info_set_attribute_uint32 (file_info, "unix::gid", owner_gid);
-
-  if (mode_adds && g_hash_table_lookup_extended (mode_adds, path, NULL, &value))
-    {
-      guint current_mode = g_file_info_get_attribute_uint32 (file_info, "unix::mode");
-      guint mode_add = GPOINTER_TO_UINT (value);
-      g_file_info_set_attribute_uint32 (file_info, "unix::mode",
-                                        current_mode | mode_add);
-      g_hash_table_remove (mode_adds, path);
-    }
-
-  if (skip_list && g_hash_table_contains (skip_list, path))
-    {
-      g_hash_table_remove (skip_list, path);
-      return OSTREE_REPO_COMMIT_FILTER_SKIP;
-    }
-
-  return OSTREE_REPO_COMMIT_FILTER_ALLOW;
-}
-
-
-static void
-_set_owner_uid (guint32 uid)
-{
-  owner_uid = uid;
-}
-
-static void _set_owner_gid (guint32 gid)
-{
-  owner_gid = gid;
-}
-
-// Wrapper function for a function that takes a C function as a parameter.
-// That translation doesn't work in go
-static OstreeRepoCommitModifier*
-_ostree_repo_commit_modifier_new_wrapper (OstreeRepoCommitModifierFlags  flags,
-                                          gpointer                       user_data,
-                                          GDestroyNotify                 destroy_notify)
-{
-  return ostree_repo_commit_modifier_new(flags, _commit_filter, user_data, destroy_notify);
-}
-
-#endif
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/cat.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/cat.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/cat.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checkout.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checkout.go
deleted file mode 100644
index 55b51bfbd0..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checkout.go
+++ /dev/null
@@ -1,102 +0,0 @@
-package otbuiltin
-
-import (
-	"strings"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-// Global variable for options
-var checkoutOpts checkoutOptions
-
-// Contains all of the options for checking commits out of
-// an ostree repo
-type checkoutOptions struct {
-	UserMode         bool   // Do not change file ownership or initialize extended attributes
-	Union            bool   // Keep existing directories and unchanged files, overwriting existing filesystem
-	AllowNoent       bool   // Do nothing if the specified filepath does not exist
-	DisableCache     bool   // Do not update or use the internal repository uncompressed object caceh
-	Whiteouts        bool   // Process 'whiteout' (docker style) entries
-	RequireHardlinks bool   // Do not fall back to full copies if hard linking fails
-	Subpath          string // Checkout sub-directory path
-	FromFile         string // Process many checkouts from the given file
-}
-
-// Instantiates and returns a checkoutOptions struct with default values set
-func NewCheckoutOptions() checkoutOptions {
-	return checkoutOptions{}
-}
-
-// Checks out a commit with the given ref from a repository at the location of repo path to to the destination.  Returns an error if the checkout could not be processed
-func Checkout(repoPath, destination, commit string, opts checkoutOptions) error {
-	checkoutOpts = opts
-
-	var cancellable *glib.GCancellable
-	ccommit := C.CString(commit)
-	defer C.free(unsafe.Pointer(ccommit))
-	var gerr = glib.NewGError()
-	cerr := (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-
-	repoPathc := C.g_file_new_for_path(C.CString(repoPath))
-	defer C.g_object_unref(C.gpointer(repoPathc))
-	crepo := C.ostree_repo_new(repoPathc)
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_open(crepo, (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-		return generateError(cerr)
-	}
-
-	if strings.Compare(checkoutOpts.FromFile, "") != 0 {
-		err := processManyCheckouts(crepo, destination, cancellable)
-		if err != nil {
-			return err
-		}
-	} else {
-		var resolvedCommit *C.char
-		defer C.free(unsafe.Pointer(resolvedCommit))
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_resolve_rev(crepo, ccommit, C.FALSE, &resolvedCommit, &cerr))) {
-			return generateError(cerr)
-		}
-		err := processOneCheckout(crepo, resolvedCommit, checkoutOpts.Subpath, destination, cancellable)
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// Processes one checkout from the repo
-func processOneCheckout(crepo *C.OstreeRepo, resolvedCommit *C.char, subpath, destination string, cancellable *glib.GCancellable) error {
-	cdest := C.CString(destination)
-	defer C.free(unsafe.Pointer(cdest))
-	var gerr = glib.NewGError()
-	cerr := (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-	var repoCheckoutAtOptions C.OstreeRepoCheckoutAtOptions
-
-	if checkoutOpts.UserMode {
-		repoCheckoutAtOptions.mode = C.OSTREE_REPO_CHECKOUT_MODE_USER
-	}
-	if checkoutOpts.Union {
-		repoCheckoutAtOptions.overwrite_mode = C.OSTREE_REPO_CHECKOUT_OVERWRITE_UNION_FILES
-	}
-
-	checkedOut := glib.GoBool(glib.GBoolean(C.ostree_repo_checkout_at(crepo, &repoCheckoutAtOptions, C._at_fdcwd(), cdest, resolvedCommit, nil, &cerr)))
-	if !checkedOut {
-		return generateError(cerr)
-	}
-
-	return nil
-}
-
-// process many checkouts
-func processManyCheckouts(crepo *C.OstreeRepo, target string, cancellable *glib.GCancellable) error {
-	return nil
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checksum.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checksum.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/checksum.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/commit.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/commit.go
deleted file mode 100644
index 9550f802c8..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/commit.go
+++ /dev/null
@@ -1,482 +0,0 @@
-package otbuiltin
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"strings"
-	"time"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-// Declare global variable to store commitOptions
-var options commitOptions
-
-// Declare a function prototype for being passed into another function
-type handleLineFunc func(string, *glib.GHashTable) error
-
-// Contains all of the options for commmiting to an ostree repo.  Initialize
-// with NewCommitOptions()
-type commitOptions struct {
-	Subject                   string    // One line subject
-	Body                      string    // Full description
-	Parent                    string    // Parent of the commit
-	Tree                      []string  // 'dir=PATH' or 'tar=TARFILE' or 'ref=COMMIT': overlay the given argument as a tree
-	AddMetadataString         []string  // Add a key/value pair to metadata
-	AddDetachedMetadataString []string  // Add a key/value pair to detached metadata
-	OwnerUID                  int       // Set file ownership to user id
-	OwnerGID                  int       // Set file ownership to group id
-	NoXattrs                  bool      // Do not import extended attributes
-	LinkCheckoutSpeedup       bool      // Optimize for commits of trees composed of hardlinks in the repository
-	TarAutoCreateParents      bool      // When loading tar archives, automatically create parent directories as needed
-	SkipIfUnchanged           bool      // If the contents are unchanged from a previous commit, do nothing
-	StatOverrideFile          string    // File containing list of modifications to make permissions
-	SkipListFile              string    // File containing list of file paths to skip
-	GenerateSizes             bool      // Generate size information along with commit metadata
-	GpgSign                   []string  // GPG Key ID with which to sign the commit (if you have GPGME - GNU Privacy Guard Made Easy)
-	GpgHomedir                string    // GPG home directory to use when looking for keyrings (if you have GPGME - GNU Privacy Guard Made Easy)
-	Timestamp                 time.Time // Override the timestamp of the commit
-	Orphan                    bool      // Commit does not belong to a branch
-	Fsync                     bool      // Specify whether fsync should be used or not.  Default to true
-}
-
-// Initializes a commitOptions struct and sets default values
-func NewCommitOptions() commitOptions {
-	var co commitOptions
-	co.OwnerUID = -1
-	co.OwnerGID = -1
-	co.Fsync = true
-	return co
-}
-
-type OstreeRepoTransactionStats struct {
-	metadata_objects_total int32
-	metadata_objects_written int32
-	content_objects_total int32
-	content_objects_written int32
-	content_bytes_written uint64
-}
-
-func (repo *Repo) PrepareTransaction() (bool, error) {
-	var cerr *C.GError = nil
-	var resume C.gboolean
-
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_prepare_transaction(repo.native(), &resume, nil, &cerr)))
-	if !r {
-		return false, generateError(cerr)
-	}
-	return glib.GoBool(glib.GBoolean(resume)), nil
-}
-
-func (repo *Repo) CommitTransaction() (*OstreeRepoTransactionStats, error) {
-	var cerr *C.GError = nil
-	var stats OstreeRepoTransactionStats = OstreeRepoTransactionStats{}
-	statsPtr := (*C.OstreeRepoTransactionStats)(unsafe.Pointer(&stats))
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_commit_transaction(repo.native(), statsPtr, nil, &cerr)))
-	if !r {
-		return nil, generateError(cerr)
-	}
-	return &stats, nil
-}
-
-func (repo *Repo) TransactionSetRef(remote string, ref string, checksum string) {
-	var cRemote *C.char = nil
-	var cRef *C.char = nil
-	var cChecksum *C.char = nil
-
-	if remote != "" {
-		cRemote = C.CString(remote)
-	}
-	if ref != "" {
-		cRef = C.CString(ref)
-	}
-	if checksum != "" {
-		cChecksum = C.CString(checksum)
-	}
-	C.ostree_repo_transaction_set_ref(repo.native(), cRemote, cRef, cChecksum)
-}
-
-func (repo *Repo) AbortTransaction() error {
-	var cerr *C.GError = nil
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_abort_transaction(repo.native(), nil, &cerr)))
-	if !r {
-		return generateError(cerr)
-	}
-	return nil
-}
-
-func (repo *Repo) RegenerateSummary() error {
-	var cerr *C.GError = nil
-	r := glib.GoBool(glib.GBoolean(C.ostree_repo_regenerate_summary(repo.native(), nil, nil, &cerr)))
-	if !r {
-		return generateError(cerr)
-	}
-	return nil
-}
-
-// Commits a directory, specified by commitPath, to an ostree repo as a given branch
-func (repo *Repo) Commit(commitPath, branch string, opts commitOptions) (string, error) {
-	options = opts
-
-	var err error
-	var modeAdds *glib.GHashTable
-	var skipList *glib.GHashTable
-	var objectToCommit *glib.GFile
-	var skipCommit bool = false
-	var ccommitChecksum *C.char
-	defer C.free(unsafe.Pointer(ccommitChecksum))
-	var flags C.OstreeRepoCommitModifierFlags = 0
-	var filter_data C.CommitFilterData
-
-	var cerr *C.GError
-	defer C.free(unsafe.Pointer(cerr))
-	var metadata *C.GVariant = nil
-	defer func(){
-		if metadata != nil {
-			defer C.g_variant_unref(metadata)
-		}
-	}()
-
-	var detachedMetadata *C.GVariant = nil
-	defer C.free(unsafe.Pointer(detachedMetadata))
-	var mtree *C.OstreeMutableTree
-	defer C.free(unsafe.Pointer(mtree))
-	var root *C.GFile
-	defer C.free(unsafe.Pointer(root))
-	var modifier *C.OstreeRepoCommitModifier
-	defer C.free(unsafe.Pointer(modifier))
-	var cancellable *C.GCancellable
-	defer C.free(unsafe.Pointer(cancellable))
-
-	cpath := C.CString(commitPath)
-	defer C.free(unsafe.Pointer(cpath))
-	csubject := C.CString(options.Subject)
-	defer C.free(unsafe.Pointer(csubject))
-	cbody := C.CString(options.Body)
-	defer C.free(unsafe.Pointer(cbody))
-	cbranch := C.CString(branch)
-	defer C.free(unsafe.Pointer(cbranch))
-	cparent := C.CString(options.Parent)
-	defer C.free(unsafe.Pointer(cparent))
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_is_writable(repo.native(), &cerr))) {
-		goto out
-	}
-
-	// If the user provided a stat override file
-	if strings.Compare(options.StatOverrideFile, "") != 0 {
-		modeAdds = glib.ToGHashTable(unsafe.Pointer(C._g_hash_table_new_full()))
-		if err = parseFileByLine(options.StatOverrideFile, handleStatOverrideLine, modeAdds, cancellable); err != nil {
-			goto out
-		}
-	}
-
-	// If the user provided a skiplist file
-	if strings.Compare(options.SkipListFile, "") != 0 {
-		skipList = glib.ToGHashTable(unsafe.Pointer(C._g_hash_table_new_full()))
-		if err = parseFileByLine(options.SkipListFile, handleSkipListline, skipList, cancellable); err != nil {
-			goto out
-		}
-	}
-
-	if options.AddMetadataString != nil {
-		metadata, err = parseKeyValueStrings(options.AddMetadataString)
-		if err != nil {
-			goto out
-		}
-	}
-
-	if options.AddDetachedMetadataString != nil {
-		_, err := parseKeyValueStrings(options.AddDetachedMetadataString)
-		if err != nil {
-			goto out
-		}
-	}
-
-	if strings.Compare(branch, "") == 0 && !options.Orphan {
-		err = errors.New("A branch must be specified or use commitOptions.Orphan")
-		goto out
-	}
-
-	if options.NoXattrs {
-		C._ostree_repo_append_modifier_flags(&flags, C.OSTREE_REPO_COMMIT_MODIFIER_FLAGS_SKIP_XATTRS)
-	}
-	if options.GenerateSizes {
-		C._ostree_repo_append_modifier_flags(&flags, C.OSTREE_REPO_COMMIT_MODIFIER_FLAGS_GENERATE_SIZES)
-	}
-	if !options.Fsync {
-		C.ostree_repo_set_disable_fsync(repo.native(), C.TRUE)
-	}
-
-	if flags != 0 || options.OwnerUID >= 0 || options.OwnerGID >= 0 || strings.Compare(options.StatOverrideFile, "") != 0 || options.NoXattrs {
-		filter_data.mode_adds = (*C.GHashTable)(modeAdds.Ptr())
-		filter_data.skip_list = (*C.GHashTable)(skipList.Ptr())
-		C._set_owner_uid((C.guint32)(options.OwnerUID))
-		C._set_owner_gid((C.guint32)(options.OwnerGID))
-		modifier = C._ostree_repo_commit_modifier_new_wrapper(flags, C.gpointer(&filter_data), nil)
-	}
-
-	if strings.Compare(options.Parent, "") != 0 {
-		if strings.Compare(options.Parent, "none") == 0 {
-			options.Parent = ""
-		}
-	} else if !options.Orphan {
-		cerr = nil
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_resolve_rev(repo.native(), cbranch, C.TRUE, &cparent, &cerr))) {
-			goto out
-		}
-	}
-
-	if options.LinkCheckoutSpeedup && !glib.GoBool(glib.GBoolean(C.ostree_repo_scan_hardlinks(repo.native(), cancellable, &cerr))) {
-		goto out
-	}
-
-	mtree = C.ostree_mutable_tree_new()
-
-	if len(commitPath) == 0 && (len(options.Tree) == 0 || len(options.Tree[0]) == 0) {
-		currentDir := (*C.char)(C.g_get_current_dir())
-		objectToCommit = glib.ToGFile(unsafe.Pointer(C.g_file_new_for_path(currentDir)))
-		C.g_free(C.gpointer(currentDir))
-
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_directory_to_mtree(repo.native(), (*C.GFile)(objectToCommit.Ptr()), mtree, modifier, cancellable, &cerr))) {
-			goto out
-		}
-	} else if len(options.Tree) != 0 {
-		var eq int = -1
-		cerr = nil
-		for tree := range options.Tree {
-			eq = strings.Index(options.Tree[tree], "=")
-			if eq == -1 {
-				C._g_set_error_onearg(cerr, C.CString("Missing type in tree specification"), C.CString(options.Tree[tree]))
-				goto out
-			}
-			treeType := options.Tree[tree][:eq]
-			treeVal := options.Tree[tree][eq+1:]
-
-			if strings.Compare(treeType, "dir") == 0 {
-				objectToCommit = glib.ToGFile(unsafe.Pointer(C.g_file_new_for_path(C.CString(treeVal))))
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_directory_to_mtree(repo.native(), (*C.GFile)(objectToCommit.Ptr()), mtree, modifier, cancellable, &cerr))) {
-					goto out
-				}
-			} else if strings.Compare(treeType, "tar") == 0 {
-				objectToCommit = glib.ToGFile(unsafe.Pointer(C.g_file_new_for_path(C.CString(treeVal))))
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_archive_to_mtree(repo.native(), (*C.GFile)(objectToCommit.Ptr()), mtree, modifier, (C.gboolean)(glib.GBool(opts.TarAutoCreateParents)), cancellable, &cerr))) {
-					fmt.Println("error 1")
-					goto out
-				}
-			} else if strings.Compare(treeType, "ref") == 0 {
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_read_commit(repo.native(), C.CString(treeVal), (**C.GFile)(objectToCommit.Ptr()), nil, cancellable, &cerr))) {
-					goto out
-				}
-
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_directory_to_mtree(repo.native(), (*C.GFile)(objectToCommit.Ptr()), mtree, modifier, cancellable, &cerr))) {
-					goto out
-				}
-			} else {
-				C._g_set_error_onearg(cerr, C.CString("Missing type in tree specification"), C.CString(treeVal))
-				goto out
-			}
-		}
-	} else {
-		objectToCommit = glib.ToGFile(unsafe.Pointer(C.g_file_new_for_path(cpath)))
-		cerr = nil
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_directory_to_mtree(repo.native(), (*C.GFile)(objectToCommit.Ptr()), mtree, modifier, cancellable, &cerr))) {
-			goto out
-		}
-	}
-
-	if modeAdds != nil && C.g_hash_table_size((*C.GHashTable)(modeAdds.Ptr())) > 0 {
-		var hashIter *C.GHashTableIter
-
-		var key, value C.gpointer
-
-		C.g_hash_table_iter_init(hashIter, (*C.GHashTable)(modeAdds.Ptr()))
-
-		for glib.GoBool(glib.GBoolean(C.g_hash_table_iter_next(hashIter, &key, &value))) {
-			C._g_printerr_onearg(C.CString("Unmatched StatOverride path: "), C._gptr_to_str(key))
-		}
-		err = errors.New("Unmatched StatOverride paths")
-		C.free(unsafe.Pointer(hashIter))
-		C.free(unsafe.Pointer(key))
-		C.free(unsafe.Pointer(value))
-		goto out
-	}
-
-	if skipList != nil && C.g_hash_table_size((*C.GHashTable)(skipList.Ptr())) > 0 {
-		var hashIter *C.GHashTableIter
-		var key, value C.gpointer
-
-		C.g_hash_table_iter_init(hashIter, (*C.GHashTable)(skipList.Ptr()))
-
-		for glib.GoBool(glib.GBoolean(C.g_hash_table_iter_next(hashIter, &key, &value))) {
-			C._g_printerr_onearg(C.CString("Unmatched SkipList path: "), C._gptr_to_str(key))
-		}
-		err = errors.New("Unmatched SkipList paths")
-		C.free(unsafe.Pointer(hashIter))
-		C.free(unsafe.Pointer(key))
-		C.free(unsafe.Pointer(value))
-		goto out
-	}
-
-	cerr = nil
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_mtree(repo.native(), mtree, &root, cancellable, &cerr))) {
-		goto out
-	}
-
-	if options.SkipIfUnchanged && strings.Compare(options.Parent, "") != 0 {
-		var parentRoot *C.GFile
-
-		cerr = nil
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_read_commit(repo.native(), cparent, &parentRoot, nil, cancellable, &cerr))) {
-			C.free(unsafe.Pointer(parentRoot))
-			goto out
-		}
-
-		if glib.GoBool(glib.GBoolean(C.g_file_equal(root, parentRoot))) {
-			skipCommit = true
-		}
-		C.free(unsafe.Pointer(parentRoot))
-	}
-
-	if !skipCommit {
-		var timestamp C.guint64
-
-		if options.Timestamp.IsZero() {
-			var now *C.GDateTime = C.g_date_time_new_now_utc()
-			timestamp = (C.guint64)(C.g_date_time_to_unix(now))
-			C.g_date_time_unref(now)
-
-			cerr = nil
-			ret := C.ostree_repo_write_commit(repo.native(), cparent, csubject, cbody, metadata, C._ostree_repo_file(root), &ccommitChecksum, cancellable, &cerr)
-			if !glib.GoBool(glib.GBoolean(ret)) {
-				goto out
-			}
-		} else {
-			timestamp = (C.guint64)(options.Timestamp.Unix())
-
-			if !glib.GoBool(glib.GBoolean(C.ostree_repo_write_commit_with_time(repo.native(), cparent, csubject, cbody,
-				metadata, C._ostree_repo_file(root), timestamp, &ccommitChecksum, cancellable, &cerr))) {
-				goto out
-			}
-		}
-
-		if detachedMetadata != nil {
-			C.ostree_repo_write_commit_detached_metadata(repo.native(), ccommitChecksum, detachedMetadata, cancellable, &cerr)
-		}
-
-		if len(options.GpgSign) != 0 {
-			for key := range options.GpgSign {
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_sign_commit(repo.native(), (*C.gchar)(ccommitChecksum), (*C.gchar)(C.CString(options.GpgSign[key])), (*C.gchar)(C.CString(options.GpgHomedir)), cancellable, &cerr))) {
-					goto out
-				}
-			}
-		}
-
-		if strings.Compare(branch, "") != 0 {
-			C.ostree_repo_transaction_set_ref(repo.native(), nil, cbranch, ccommitChecksum)
-		} else if !options.Orphan {
-			goto out
-		} else {
-			// TODO: Looks like I forgot to implement this.
-		}
-	} else {
-		ccommitChecksum = C.CString(options.Parent)
-	}
-
-	return C.GoString(ccommitChecksum), nil
-out:
-	if repo.native() != nil {
-		C.ostree_repo_abort_transaction(repo.native(), cancellable, nil)
-		//C.free(unsafe.Pointer(repo.native()))
-	}
-	if modifier != nil {
-		C.ostree_repo_commit_modifier_unref(modifier)
-	}
-	if err != nil {
-		return "", err
-	}
-	return "", generateError(cerr)
-}
-
-// Parse an array of key value pairs of the format KEY=VALUE and add them to a GVariant
-func parseKeyValueStrings(pairs []string) (*C.GVariant, error) {
-	builder := C.g_variant_builder_new(C._g_variant_type(C.CString("a{sv}")))
-	defer C.g_variant_builder_unref(builder)
-
-	for iter := range pairs {
-		index := strings.Index(pairs[iter], "=")
-		if index <= 0 {
-			var buffer bytes.Buffer
-			buffer.WriteString("Missing '=' in KEY=VALUE metadata '%s'")
-			buffer.WriteString(pairs[iter])
-			return nil, errors.New(buffer.String())
-		}
-
-		key := C.CString(pairs[iter][:index])
-		value := C.CString(pairs[iter][index+1:])
-
-		valueVariant := C.g_variant_new_string((*C.gchar)(value))
-
-		C._g_variant_builder_add_twoargs(builder, C.CString("{sv}"), key, valueVariant)
-	}
-
-	metadata := C.g_variant_builder_end(builder)
-	return C.g_variant_ref_sink(metadata), nil
-}
-
-// Parse a file linue by line and handle the line with the handleLineFunc
-func parseFileByLine(path string, fn handleLineFunc, table *glib.GHashTable, cancellable *C.GCancellable) error {
-	var contents *C.char
-	var file *glib.GFile
-	var lines []string
-	var gerr = glib.NewGError()
-	cerr := (*C.GError)(gerr.Ptr())
-
-	file = glib.ToGFile(unsafe.Pointer(C.g_file_new_for_path(C.CString(path))))
-	if !glib.GoBool(glib.GBoolean(C.g_file_load_contents((*C.GFile)(file.Ptr()), cancellable, &contents, nil, nil, &cerr))) {
-		return generateError(cerr)
-	}
-
-	lines = strings.Split(C.GoString(contents), "\n")
-	for line := range lines {
-		if strings.Compare(lines[line], "") == 0 {
-			continue
-		}
-
-		if err := fn(lines[line], table); err != nil {
-			return generateError(cerr)
-		}
-	}
-	return nil
-}
-
-// Handle an individual line from a Statoverride file
-func handleStatOverrideLine(line string, table *glib.GHashTable) error {
-	var space int
-	var modeAdd C.guint
-
-	if space = strings.IndexRune(line, ' '); space == -1 {
-		return errors.New("Malformed StatOverrideFile (no space found)")
-	}
-
-	modeAdd = (C.guint)(C.g_ascii_strtod((*C.gchar)(C.CString(line)), nil))
-	C.g_hash_table_insert((*C.GHashTable)(table.Ptr()), C.gpointer(C.g_strdup((*C.gchar)(C.CString(line[space+1:])))), C._guint_to_pointer(modeAdd))
-
-	return nil
-}
-
-// Handle an individual line from a Skiplist file
-func handleSkipListline(line string, table *glib.GHashTable) error {
-	C.g_hash_table_add((*C.GHashTable)(table.Ptr()), C.gpointer( C.g_strdup((*C.gchar)(C.CString(line)))))
-
-	return nil
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/config.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/config.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/config.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/diff.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/diff.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/diff.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/export.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/export.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/export.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/fsck.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/fsck.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/fsck.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/gpgsign.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/gpgsign.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/gpgsign.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/init.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/init.go
deleted file mode 100644
index 9f2527927f..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/init.go
+++ /dev/null
@@ -1,91 +0,0 @@
-package otbuiltin
-
-import (
-	"errors"
-	"strings"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-// Declare variables for options
-var initOpts initOptions
-
-// Contains all of the options for initializing an ostree repo
-type initOptions struct {
-	Mode string // either bare, archive-z2, or bare-user
-
-	repoMode C.OstreeRepoMode
-}
-
-// Instantiates and returns an initOptions struct with default values set
-func NewInitOptions() initOptions {
-	io := initOptions{}
-	io.Mode = "bare"
-	io.repoMode = C.OSTREE_REPO_MODE_BARE
-	return io
-}
-
-// Initializes a new ostree repository at the given path.  Returns true
-// if the repo exists at the location, regardless of whether it was initialized
-// by the function or if it already existed.  Returns an error if the repo could
-// not be initialized
-func Init(path string, options initOptions) (bool, error) {
-	initOpts = options
-	err := parseMode()
-	if err != nil {
-		return false, err
-	}
-
-	// Create a repo struct from the path
-	var cerr *C.GError
-	defer C.free(unsafe.Pointer(cerr))
-	cpath := C.CString(path)
-	defer C.free(unsafe.Pointer(cpath))
-	pathc := C.g_file_new_for_path(cpath)
-	defer C.g_object_unref(C.gpointer(pathc))
-	crepo := C.ostree_repo_new(pathc)
-
-	// If the repo exists in the filesystem, return an error but set exists to true
-	/* var exists C.gboolean = 0
-	success := glib.GoBool(glib.GBoolean(C.ostree_repo_exists(crepo, &exists, &cerr)))
-	if exists != 0 {
-	  err = errors.New("repository already exists")
-	  return true, err
-	} else if !success {
-	  return false, generateError(cerr)
-	}*/
-
-	cerr = nil
-	created := glib.GoBool(glib.GBoolean(C.ostree_repo_create(crepo, initOpts.repoMode, nil, &cerr)))
-	if !created {
-		err := generateError(cerr)
-		errString := err.Error()
-		if strings.Contains(errString, "File exists") {
-			return true, err
-		}
-		return false, err
-	}
-	return true, nil
-}
-
-// Converts the mode string to a C.OSTREE_REPO_MODE enum value
-func parseMode() error {
-	if strings.EqualFold(initOpts.Mode, "bare") {
-		initOpts.repoMode = C.OSTREE_REPO_MODE_BARE
-	} else if strings.EqualFold(initOpts.Mode, "bare-user") {
-		initOpts.repoMode = C.OSTREE_REPO_MODE_BARE_USER
-	} else if strings.EqualFold(initOpts.Mode, "archive-z2") {
-		initOpts.repoMode = C.OSTREE_REPO_MODE_ARCHIVE_Z2
-	} else {
-		return errors.New("Invalid option for mode")
-	}
-	return nil
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/log.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/log.go
deleted file mode 100644
index 2ceea09257..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/log.go
+++ /dev/null
@@ -1,167 +0,0 @@
-package otbuiltin
-
-import (
-	"fmt"
-	"strings"
-	"time"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-// Declare variables for options
-var logOpts logOptions
-
-// Set the format of the strings in the log
-const formatString = "2006-01-02 03:04;05 -0700"
-
-// Struct for the various pieces of data in a log entry
-type LogEntry struct {
-	Checksum  []byte
-	Variant   []byte
-	Timestamp time.Time
-	Subject   string
-	Body      string
-}
-
-// Convert the log entry to a string
-func (l LogEntry) String() string {
-	if len(l.Variant) == 0 {
-		return fmt.Sprintf("%s\n%s\n\n\t%s\n\n\t%s\n\n", l.Checksum, l.Timestamp, l.Subject, l.Body)
-	}
-	return fmt.Sprintf("%s\n%s\n\n", l.Checksum, l.Variant)
-}
-
-type OstreeDumpFlags uint
-
-const (
-	OSTREE_DUMP_NONE OstreeDumpFlags = 0
-	OSTREE_DUMP_RAW  OstreeDumpFlags = 1 << iota
-)
-
-// Contains all of the options for initializing an ostree repo
-type logOptions struct {
-	Raw bool // Show raw variant data
-}
-
-//Instantiates and returns a logOptions struct with default values set
-func NewLogOptions() logOptions {
-	return logOptions{}
-}
-
-// Show the logs of a branch starting with a given commit or ref.  Returns a
-// slice of log entries on success and an error otherwise
-func Log(repoPath, branch string, options logOptions) ([]LogEntry, error) {
-	// attempt to open the repository
-	repo, err := OpenRepo(repoPath)
-	if err != nil {
-		return nil, err
-	}
-
-	cbranch := C.CString(branch)
-	defer C.free(unsafe.Pointer(cbranch))
-	var checksum *C.char
-	defer C.free(unsafe.Pointer(checksum))
-	var flags OstreeDumpFlags = OSTREE_DUMP_NONE
-	var cerr *C.GError
-	defer C.free(unsafe.Pointer(cerr))
-
-	if logOpts.Raw {
-		flags |= OSTREE_DUMP_RAW
-	}
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_resolve_rev(repo.native(), cbranch, C.FALSE, &checksum, &cerr))) {
-		return nil, generateError(cerr)
-	}
-
-	return logCommit(repo, checksum, false, flags)
-}
-
-func logCommit(repo *Repo, checksum *C.char, isRecursive bool, flags OstreeDumpFlags) ([]LogEntry, error) {
-	var variant *C.GVariant
-	var parent *C.char
-	defer C.free(unsafe.Pointer(parent))
-	var gerr = glib.NewGError()
-	var cerr = (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-	entries := make([]LogEntry, 0, 1)
-	var err error
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_load_variant(repo.native(), C.OSTREE_OBJECT_TYPE_COMMIT, checksum, &variant, &cerr))) {
-		if isRecursive && glib.GoBool(glib.GBoolean(C.g_error_matches(cerr, C.g_io_error_quark(), C.G_IO_ERROR_NOT_FOUND))) {
-			return nil, nil
-		}
-		return entries, generateError(cerr)
-	}
-
-	nextLogEntry := dumpLogObject(C.OSTREE_OBJECT_TYPE_COMMIT, checksum, variant, flags)
-
-	// get the parent of this commit
-	parent = (*C.char)(C.ostree_commit_get_parent(variant))
-	defer C.free(unsafe.Pointer(parent))
-	if parent != nil {
-		entries, err = logCommit(repo, parent, true, flags)
-		if err != nil {
-			return nil, err
-		}
-	}
-	entries = append(entries, *nextLogEntry)
-	return entries, nil
-}
-
-func dumpLogObject(objectType C.OstreeObjectType, checksum *C.char, variant *C.GVariant, flags OstreeDumpFlags) *LogEntry {
-	objLog := new(LogEntry)
-	objLog.Checksum = []byte(C.GoString(checksum))
-
-	if (flags & OSTREE_DUMP_RAW) != 0 {
-		dumpVariant(objLog, variant)
-		return objLog
-	}
-
-	switch objectType {
-	case C.OSTREE_OBJECT_TYPE_COMMIT:
-		dumpCommit(objLog, variant, flags)
-		return objLog
-	default:
-		return objLog
-	}
-}
-
-func dumpVariant(log *LogEntry, variant *C.GVariant) {
-	var byteswappedVariant *C.GVariant
-
-	if C.G_BYTE_ORDER != C.G_BIG_ENDIAN {
-		byteswappedVariant = C.g_variant_byteswap(variant)
-		log.Variant = []byte(C.GoString((*C.char)(C.g_variant_print(byteswappedVariant, C.TRUE))))
-	} else {
-		log.Variant = []byte(C.GoString((*C.char)(C.g_variant_print(byteswappedVariant, C.TRUE))))
-	}
-}
-
-func dumpCommit(log *LogEntry, variant *C.GVariant, flags OstreeDumpFlags) {
-	var subject, body *C.char
-	defer C.free(unsafe.Pointer(subject))
-	defer C.free(unsafe.Pointer(body))
-	var timestamp C.guint64
-
-	C._g_variant_get_commit_dump(variant, C.CString("(a{sv}aya(say)&s&stayay)"), &subject, &body, &timestamp)
-
-	// Timestamp is now a Unix formatted timestamp as a guint64
-	timestamp = C._guint64_from_be(timestamp)
-	log.Timestamp = time.Unix((int64)(timestamp), 0)
-
-	if strings.Compare(C.GoString(subject), "") != 0 {
-		log.Subject = C.GoString(subject)
-	}
-
-	if strings.Compare(C.GoString(body), "") != 0 {
-		log.Body = C.GoString(body)
-	}
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/ls.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/ls.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/ls.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/prune.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/prune.go
deleted file mode 100644
index 8dfa40a55b..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/prune.go
+++ /dev/null
@@ -1,217 +0,0 @@
-package otbuiltin
-
-import (
-	"bytes"
-	"errors"
-	"strconv"
-	"strings"
-	"time"
-	"unsafe"
-
-	glib "github.com/ostreedev/ostree-go/pkg/glibobject"
-)
-
-// #cgo pkg-config: ostree-1
-// #include <stdlib.h>
-// #include <glib.h>
-// #include <ostree.h>
-// #include "builtin.go.h"
-import "C"
-
-// Declare gobal variable for options
-var pruneOpts pruneOptions
-
-// Contains all of the options for pruning an ostree repo.  Use
-// NewPruneOptions() to initialize
-type pruneOptions struct {
-	NoPrune          bool      // Only display unreachable objects; don't delete
-	RefsOnly         bool      // Only compute reachability via refs
-	DeleteCommit     string    // Specify a commit to delete
-	KeepYoungerThan  time.Time // All commits older than this date will be pruned
-	Depth            int       // Only traverse depths (integer) parents for each commit (default: -1=infinite)
-	StaticDeltasOnly int       // Change the behavior of --keep-younger-than and --delete-commit to prune only the static delta files
-}
-
-// Instantiates and returns a pruneOptions struct with default values set
-func NewPruneOptions() pruneOptions {
-	po := new(pruneOptions)
-	po.Depth = -1
-	return *po
-}
-
-// Search for unreachable objects in the repository given by repoPath.  Removes the
-// objects unless pruneOptions.NoPrune is specified
-func Prune(repoPath string, options pruneOptions) (string, error) {
-	pruneOpts = options
-	// attempt to open the repository
-	repo, err := OpenRepo(repoPath)
-	if err != nil {
-		return "", err
-	}
-
-	var pruneFlags C.OstreeRepoPruneFlags
-	var numObjectsTotal int
-	var numObjectsPruned int
-	var objSizeTotal uint64
-	var gerr = glib.NewGError()
-	var cerr = (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-	var cancellable *glib.GCancellable
-
-	if !pruneOpts.NoPrune && !glib.GoBool(glib.GBoolean(C.ostree_repo_is_writable(repo.native(), &cerr))) {
-		return "", generateError(cerr)
-	}
-
-	cerr = nil
-	if strings.Compare(pruneOpts.DeleteCommit, "") != 0 {
-		if pruneOpts.NoPrune {
-			return "", errors.New("Cannot specify both pruneOptions.DeleteCommit and pruneOptions.NoPrune")
-		}
-
-		if pruneOpts.StaticDeltasOnly > 0 {
-			if glib.GoBool(glib.GBoolean(C.ostree_repo_prune_static_deltas(repo.native(), C.CString(pruneOpts.DeleteCommit), (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-				return "", generateError(cerr)
-			}
-		} else if err = deleteCommit(repo, pruneOpts.DeleteCommit, cancellable); err != nil {
-			return "", err
-		}
-	}
-
-	if !pruneOpts.KeepYoungerThan.IsZero() {
-		if pruneOpts.NoPrune {
-			return "", errors.New("Cannot specify both pruneOptions.KeepYoungerThan and pruneOptions.NoPrune")
-		}
-
-		if err = pruneCommitsKeepYoungerThanDate(repo, pruneOpts.KeepYoungerThan, cancellable); err != nil {
-			return "", err
-		}
-	}
-
-	if pruneOpts.RefsOnly {
-		pruneFlags |= C.OSTREE_REPO_PRUNE_FLAGS_REFS_ONLY
-	}
-	if pruneOpts.NoPrune {
-		pruneFlags |= C.OSTREE_REPO_PRUNE_FLAGS_NO_PRUNE
-	}
-
-	formattedFreedSize := C.GoString((*C.char)(C.g_format_size_full((C.guint64)(objSizeTotal), 0)))
-
-	var buffer bytes.Buffer
-
-	buffer.WriteString("Total objects: ")
-	buffer.WriteString(strconv.Itoa(numObjectsTotal))
-	if numObjectsPruned == 0 {
-		buffer.WriteString("\nNo unreachable objects")
-	} else if pruneOpts.NoPrune {
-		buffer.WriteString("\nWould delete: ")
-		buffer.WriteString(strconv.Itoa(numObjectsPruned))
-		buffer.WriteString(" objects, freeing ")
-		buffer.WriteString(formattedFreedSize)
-	} else {
-		buffer.WriteString("\nDeleted ")
-		buffer.WriteString(strconv.Itoa(numObjectsPruned))
-		buffer.WriteString(" objects, ")
-		buffer.WriteString(formattedFreedSize)
-		buffer.WriteString(" freed")
-	}
-
-	return buffer.String(), nil
-}
-
-// Delete an unreachable commit from the repo
-func deleteCommit(repo *Repo, commitToDelete string, cancellable *glib.GCancellable) error {
-	var refs *glib.GHashTable
-	var hashIter glib.GHashTableIter
-	var hashkey, hashvalue C.gpointer
-	var gerr = glib.NewGError()
-	var cerr = (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-
-	if glib.GoBool(glib.GBoolean(C.ostree_repo_list_refs(repo.native(), nil, (**C.GHashTable)(refs.Ptr()), (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-		return generateError(cerr)
-	}
-
-	C.g_hash_table_iter_init((*C.GHashTableIter)(hashIter.Ptr()), (*C.GHashTable)(refs.Ptr()))
-	for C.g_hash_table_iter_next((*C.GHashTableIter)(hashIter.Ptr()), &hashkey, &hashvalue) != 0 {
-		var ref string = C.GoString((*C.char)(hashkey))
-		var commit string = C.GoString((*C.char)(hashvalue))
-		if strings.Compare(commitToDelete, commit) == 0 {
-			var buffer bytes.Buffer
-			buffer.WriteString("Commit ")
-			buffer.WriteString(commitToDelete)
-			buffer.WriteString(" is referenced by ")
-			buffer.WriteString(ref)
-			return errors.New(buffer.String())
-		}
-	}
-
-	if err := enableTombstoneCommits(repo); err != nil {
-		return err
-	}
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_delete_object(repo.native(), C.OSTREE_OBJECT_TYPE_COMMIT, C.CString(commitToDelete), (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-		return generateError(cerr)
-	}
-
-	return nil
-}
-
-// Prune commits but keep any younger than the given date regardless of whether they
-// are reachable
-func pruneCommitsKeepYoungerThanDate(repo *Repo, date time.Time, cancellable *glib.GCancellable) error {
-	var objects *glib.GHashTable
-	defer C.free(unsafe.Pointer(objects))
-	var hashIter glib.GHashTableIter
-	var key, value C.gpointer
-	defer C.free(unsafe.Pointer(key))
-	defer C.free(unsafe.Pointer(value))
-	var gerr = glib.NewGError()
-	var cerr = (*C.GError)(gerr.Ptr())
-	defer C.free(unsafe.Pointer(cerr))
-
-	if err := enableTombstoneCommits(repo); err != nil {
-		return err
-	}
-
-	if !glib.GoBool(glib.GBoolean(C.ostree_repo_list_objects(repo.native(), C.OSTREE_REPO_LIST_OBJECTS_ALL, (**C.GHashTable)(objects.Ptr()), (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-		return generateError(cerr)
-	}
-
-	C.g_hash_table_iter_init((*C.GHashTableIter)(hashIter.Ptr()), (*C.GHashTable)(objects.Ptr()))
-	for C.g_hash_table_iter_next((*C.GHashTableIter)(hashIter.Ptr()), &key, &value) != 0 {
-		var serializedKey *glib.GVariant
-		defer C.free(unsafe.Pointer(serializedKey))
-		var checksum *C.char
-		defer C.free(unsafe.Pointer(checksum))
-		var objType C.OstreeObjectType
-		var commitTimestamp uint64
-		var commit *glib.GVariant = nil
-
-		C.ostree_object_name_deserialize((*C.GVariant)(serializedKey.Ptr()), &checksum, &objType)
-
-		if objType != C.OSTREE_OBJECT_TYPE_COMMIT {
-			continue
-		}
-
-		cerr = nil
-		if !glib.GoBool(glib.GBoolean(C.ostree_repo_load_variant(repo.native(), C.OSTREE_OBJECT_TYPE_COMMIT, checksum, (**C.GVariant)(commit.Ptr()), &cerr))) {
-			return generateError(cerr)
-		}
-
-		commitTimestamp = (uint64)(C.ostree_commit_get_timestamp((*C.GVariant)(commit.Ptr())))
-		if commitTimestamp < (uint64)(date.Unix()) {
-			cerr = nil
-			if pruneOpts.StaticDeltasOnly != 0 {
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_prune_static_deltas(repo.native(), checksum, (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-					return generateError(cerr)
-				}
-			} else {
-				if !glib.GoBool(glib.GBoolean(C.ostree_repo_delete_object(repo.native(), C.OSTREE_OBJECT_TYPE_COMMIT, checksum, (*C.GCancellable)(cancellable.Ptr()), &cerr))) {
-					return generateError(cerr)
-				}
-			}
-		}
-	}
-
-	return nil
-}
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pull.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pull.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pull.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pulllocal.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pulllocal.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/pulllocal.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/refs.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/refs.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/refs.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/remote.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/remote.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/remote.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/reset.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/reset.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/reset.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/revparse.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/revparse.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/revparse.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/show.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/show.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/show.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/staticdelta.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/staticdelta.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/staticdelta.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/summary.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/summary.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/summary.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/trivialhttpd.go b/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/trivialhttpd.go
deleted file mode 100644
index d43ea07c74..0000000000
--- a/vendor/github.com/ostreedev/ostree-go/pkg/otbuiltin/trivialhttpd.go
+++ /dev/null
@@ -1 +0,0 @@
-package otbuiltin
diff --git a/vendor/github.com/pquerna/ffjson/LICENSE b/vendor/github.com/pquerna/ffjson/LICENSE
deleted file mode 100644
index d645695673..0000000000
--- a/vendor/github.com/pquerna/ffjson/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/pquerna/ffjson/NOTICE b/vendor/github.com/pquerna/ffjson/NOTICE
deleted file mode 100644
index 405a49618b..0000000000
--- a/vendor/github.com/pquerna/ffjson/NOTICE
+++ /dev/null
@@ -1,8 +0,0 @@
-ffjson
-Copyright (c) 2014, Paul Querna
-
-This product includes software developed by 
-Paul Querna (http://paul.querna.org/).
-
-Portions of this software were developed as
-part of Go, Copyright (c) 2012 The Go Authors.
\ No newline at end of file
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer.go b/vendor/github.com/pquerna/ffjson/fflib/v1/buffer.go
deleted file mode 100644
index 7f63a8582d..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer.go
+++ /dev/null
@@ -1,421 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-// Simple byte buffer for marshaling data.
-
-import (
-	"bytes"
-	"encoding/json"
-	"errors"
-	"io"
-	"unicode/utf8"
-)
-
-type grower interface {
-	Grow(n int)
-}
-
-type truncater interface {
-	Truncate(n int)
-	Reset()
-}
-
-type bytesReader interface {
-	Bytes() []byte
-	String() string
-}
-
-type runeWriter interface {
-	WriteRune(r rune) (n int, err error)
-}
-
-type stringWriter interface {
-	WriteString(s string) (n int, err error)
-}
-
-type lener interface {
-	Len() int
-}
-
-type rewinder interface {
-	Rewind(n int) (err error)
-}
-
-type encoder interface {
-	Encode(interface{}) error
-}
-
-// TODO(pquerna): continue to reduce these interfaces
-
-type EncodingBuffer interface {
-	io.Writer
-	io.WriterTo
-	io.ByteWriter
-	stringWriter
-	truncater
-	grower
-	rewinder
-	encoder
-}
-
-type DecodingBuffer interface {
-	io.ReadWriter
-	io.ByteWriter
-	stringWriter
-	runeWriter
-	truncater
-	grower
-	bytesReader
-	lener
-}
-
-// A Buffer is a variable-sized buffer of bytes with Read and Write methods.
-// The zero value for Buffer is an empty buffer ready to use.
-type Buffer struct {
-	buf              []byte            // contents are the bytes buf[off : len(buf)]
-	off              int               // read at &buf[off], write at &buf[len(buf)]
-	runeBytes        [utf8.UTFMax]byte // avoid allocation of slice on each WriteByte or Rune
-	encoder          *json.Encoder
-	skipTrailingByte bool
-}
-
-// ErrTooLarge is passed to panic if memory cannot be allocated to store data in a buffer.
-var ErrTooLarge = errors.New("fflib.v1.Buffer: too large")
-
-// Bytes returns a slice of the contents of the unread portion of the buffer;
-// len(b.Bytes()) == b.Len().  If the caller changes the contents of the
-// returned slice, the contents of the buffer will change provided there
-// are no intervening method calls on the Buffer.
-func (b *Buffer) Bytes() []byte { return b.buf[b.off:] }
-
-// String returns the contents of the unread portion of the buffer
-// as a string.  If the Buffer is a nil pointer, it returns "<nil>".
-func (b *Buffer) String() string {
-	if b == nil {
-		// Special case, useful in debugging.
-		return "<nil>"
-	}
-	return string(b.buf[b.off:])
-}
-
-// Len returns the number of bytes of the unread portion of the buffer;
-// b.Len() == len(b.Bytes()).
-func (b *Buffer) Len() int { return len(b.buf) - b.off }
-
-// Truncate discards all but the first n unread bytes from the buffer.
-// It panics if n is negative or greater than the length of the buffer.
-func (b *Buffer) Truncate(n int) {
-	if n == 0 {
-		b.off = 0
-		b.buf = b.buf[0:0]
-	} else {
-		b.buf = b.buf[0 : b.off+n]
-	}
-}
-
-// Reset resets the buffer so it has no content.
-// b.Reset() is the same as b.Truncate(0).
-func (b *Buffer) Reset() { b.Truncate(0) }
-
-// grow grows the buffer to guarantee space for n more bytes.
-// It returns the index where bytes should be written.
-// If the buffer can't grow it will panic with ErrTooLarge.
-func (b *Buffer) grow(n int) int {
-	// If we have no buffer, get one from the pool
-	m := b.Len()
-	if m == 0 {
-		if b.buf == nil {
-			b.buf = makeSlice(2 * n)
-			b.off = 0
-		} else if b.off != 0 {
-			// If buffer is empty, reset to recover space.
-			b.Truncate(0)
-		}
-	}
-	if len(b.buf)+n > cap(b.buf) {
-		var buf []byte
-		if m+n <= cap(b.buf)/2 {
-			// We can slide things down instead of allocating a new
-			// slice. We only need m+n <= cap(b.buf) to slide, but
-			// we instead let capacity get twice as large so we
-			// don't spend all our time copying.
-			copy(b.buf[:], b.buf[b.off:])
-			buf = b.buf[:m]
-		} else {
-			// not enough space anywhere
-			buf = makeSlice(2*cap(b.buf) + n)
-			copy(buf, b.buf[b.off:])
-			Pool(b.buf)
-			b.buf = buf
-		}
-		b.off = 0
-	}
-	b.buf = b.buf[0 : b.off+m+n]
-	return b.off + m
-}
-
-// Grow grows the buffer's capacity, if necessary, to guarantee space for
-// another n bytes. After Grow(n), at least n bytes can be written to the
-// buffer without another allocation.
-// If n is negative, Grow will panic.
-// If the buffer can't grow it will panic with ErrTooLarge.
-func (b *Buffer) Grow(n int) {
-	if n < 0 {
-		panic("bytes.Buffer.Grow: negative count")
-	}
-	m := b.grow(n)
-	b.buf = b.buf[0:m]
-}
-
-// Write appends the contents of p to the buffer, growing the buffer as
-// needed. The return value n is the length of p; err is always nil. If the
-// buffer becomes too large, Write will panic with ErrTooLarge.
-func (b *Buffer) Write(p []byte) (n int, err error) {
-	if b.skipTrailingByte {
-		p = p[:len(p)-1]
-	}
-	m := b.grow(len(p))
-	return copy(b.buf[m:], p), nil
-}
-
-// WriteString appends the contents of s to the buffer, growing the buffer as
-// needed. The return value n is the length of s; err is always nil. If the
-// buffer becomes too large, WriteString will panic with ErrTooLarge.
-func (b *Buffer) WriteString(s string) (n int, err error) {
-	m := b.grow(len(s))
-	return copy(b.buf[m:], s), nil
-}
-
-// MinRead is the minimum slice size passed to a Read call by
-// Buffer.ReadFrom.  As long as the Buffer has at least MinRead bytes beyond
-// what is required to hold the contents of r, ReadFrom will not grow the
-// underlying buffer.
-const minRead = 512
-
-// ReadFrom reads data from r until EOF and appends it to the buffer, growing
-// the buffer as needed. The return value n is the number of bytes read. Any
-// error except io.EOF encountered during the read is also returned. If the
-// buffer becomes too large, ReadFrom will panic with ErrTooLarge.
-func (b *Buffer) ReadFrom(r io.Reader) (n int64, err error) {
-	// If buffer is empty, reset to recover space.
-	if b.off >= len(b.buf) {
-		b.Truncate(0)
-	}
-	for {
-		if free := cap(b.buf) - len(b.buf); free < minRead {
-			// not enough space at end
-			newBuf := b.buf
-			if b.off+free < minRead {
-				// not enough space using beginning of buffer;
-				// double buffer capacity
-				newBuf = makeSlice(2*cap(b.buf) + minRead)
-			}
-			copy(newBuf, b.buf[b.off:])
-			Pool(b.buf)
-			b.buf = newBuf[:len(b.buf)-b.off]
-			b.off = 0
-		}
-		m, e := r.Read(b.buf[len(b.buf):cap(b.buf)])
-		b.buf = b.buf[0 : len(b.buf)+m]
-		n += int64(m)
-		if e == io.EOF {
-			break
-		}
-		if e != nil {
-			return n, e
-		}
-	}
-	return n, nil // err is EOF, so return nil explicitly
-}
-
-// WriteTo writes data to w until the buffer is drained or an error occurs.
-// The return value n is the number of bytes written; it always fits into an
-// int, but it is int64 to match the io.WriterTo interface. Any error
-// encountered during the write is also returned.
-func (b *Buffer) WriteTo(w io.Writer) (n int64, err error) {
-	if b.off < len(b.buf) {
-		nBytes := b.Len()
-		m, e := w.Write(b.buf[b.off:])
-		if m > nBytes {
-			panic("bytes.Buffer.WriteTo: invalid Write count")
-		}
-		b.off += m
-		n = int64(m)
-		if e != nil {
-			return n, e
-		}
-		// all bytes should have been written, by definition of
-		// Write method in io.Writer
-		if m != nBytes {
-			return n, io.ErrShortWrite
-		}
-	}
-	// Buffer is now empty; reset.
-	b.Truncate(0)
-	return
-}
-
-// WriteByte appends the byte c to the buffer, growing the buffer as needed.
-// The returned error is always nil, but is included to match bufio.Writer's
-// WriteByte. If the buffer becomes too large, WriteByte will panic with
-// ErrTooLarge.
-func (b *Buffer) WriteByte(c byte) error {
-	m := b.grow(1)
-	b.buf[m] = c
-	return nil
-}
-
-func (b *Buffer) Rewind(n int) error {
-	b.buf = b.buf[:len(b.buf)-n]
-	return nil
-}
-
-func (b *Buffer) Encode(v interface{}) error {
-	if b.encoder == nil {
-		b.encoder = json.NewEncoder(b)
-	}
-	b.skipTrailingByte = true
-	err := b.encoder.Encode(v)
-	b.skipTrailingByte = false
-	return err
-}
-
-// WriteRune appends the UTF-8 encoding of Unicode code point r to the
-// buffer, returning its length and an error, which is always nil but is
-// included to match bufio.Writer's WriteRune. The buffer is grown as needed;
-// if it becomes too large, WriteRune will panic with ErrTooLarge.
-func (b *Buffer) WriteRune(r rune) (n int, err error) {
-	if r < utf8.RuneSelf {
-		b.WriteByte(byte(r))
-		return 1, nil
-	}
-	n = utf8.EncodeRune(b.runeBytes[0:], r)
-	b.Write(b.runeBytes[0:n])
-	return n, nil
-}
-
-// Read reads the next len(p) bytes from the buffer or until the buffer
-// is drained.  The return value n is the number of bytes read.  If the
-// buffer has no data to return, err is io.EOF (unless len(p) is zero);
-// otherwise it is nil.
-func (b *Buffer) Read(p []byte) (n int, err error) {
-	if b.off >= len(b.buf) {
-		// Buffer is empty, reset to recover space.
-		b.Truncate(0)
-		if len(p) == 0 {
-			return
-		}
-		return 0, io.EOF
-	}
-	n = copy(p, b.buf[b.off:])
-	b.off += n
-	return
-}
-
-// Next returns a slice containing the next n bytes from the buffer,
-// advancing the buffer as if the bytes had been returned by Read.
-// If there are fewer than n bytes in the buffer, Next returns the entire buffer.
-// The slice is only valid until the next call to a read or write method.
-func (b *Buffer) Next(n int) []byte {
-	m := b.Len()
-	if n > m {
-		n = m
-	}
-	data := b.buf[b.off : b.off+n]
-	b.off += n
-	return data
-}
-
-// ReadByte reads and returns the next byte from the buffer.
-// If no byte is available, it returns error io.EOF.
-func (b *Buffer) ReadByte() (c byte, err error) {
-	if b.off >= len(b.buf) {
-		// Buffer is empty, reset to recover space.
-		b.Truncate(0)
-		return 0, io.EOF
-	}
-	c = b.buf[b.off]
-	b.off++
-	return c, nil
-}
-
-// ReadRune reads and returns the next UTF-8-encoded
-// Unicode code point from the buffer.
-// If no bytes are available, the error returned is io.EOF.
-// If the bytes are an erroneous UTF-8 encoding, it
-// consumes one byte and returns U+FFFD, 1.
-func (b *Buffer) ReadRune() (r rune, size int, err error) {
-	if b.off >= len(b.buf) {
-		// Buffer is empty, reset to recover space.
-		b.Truncate(0)
-		return 0, 0, io.EOF
-	}
-	c := b.buf[b.off]
-	if c < utf8.RuneSelf {
-		b.off++
-		return rune(c), 1, nil
-	}
-	r, n := utf8.DecodeRune(b.buf[b.off:])
-	b.off += n
-	return r, n, nil
-}
-
-// ReadBytes reads until the first occurrence of delim in the input,
-// returning a slice containing the data up to and including the delimiter.
-// If ReadBytes encounters an error before finding a delimiter,
-// it returns the data read before the error and the error itself (often io.EOF).
-// ReadBytes returns err != nil if and only if the returned data does not end in
-// delim.
-func (b *Buffer) ReadBytes(delim byte) (line []byte, err error) {
-	slice, err := b.readSlice(delim)
-	// return a copy of slice. The buffer's backing array may
-	// be overwritten by later calls.
-	line = append(line, slice...)
-	return
-}
-
-// readSlice is like ReadBytes but returns a reference to internal buffer data.
-func (b *Buffer) readSlice(delim byte) (line []byte, err error) {
-	i := bytes.IndexByte(b.buf[b.off:], delim)
-	end := b.off + i + 1
-	if i < 0 {
-		end = len(b.buf)
-		err = io.EOF
-	}
-	line = b.buf[b.off:end]
-	b.off = end
-	return line, err
-}
-
-// ReadString reads until the first occurrence of delim in the input,
-// returning a string containing the data up to and including the delimiter.
-// If ReadString encounters an error before finding a delimiter,
-// it returns the data read before the error and the error itself (often io.EOF).
-// ReadString returns err != nil if and only if the returned data does not end
-// in delim.
-func (b *Buffer) ReadString(delim byte) (line string, err error) {
-	slice, err := b.readSlice(delim)
-	return string(slice), err
-}
-
-// NewBuffer creates and initializes a new Buffer using buf as its initial
-// contents.  It is intended to prepare a Buffer to read existing data.  It
-// can also be used to size the internal buffer for writing. To do that,
-// buf should have the desired capacity but a length of zero.
-//
-// In most cases, new(Buffer) (or just declaring a Buffer variable) is
-// sufficient to initialize a Buffer.
-func NewBuffer(buf []byte) *Buffer { return &Buffer{buf: buf} }
-
-// NewBufferString creates and initializes a new Buffer using string s as its
-// initial contents. It is intended to prepare a buffer to read an existing
-// string.
-//
-// In most cases, new(Buffer) (or just declaring a Buffer variable) is
-// sufficient to initialize a Buffer.
-func NewBufferString(s string) *Buffer {
-	return &Buffer{buf: []byte(s)}
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_nopool.go b/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_nopool.go
deleted file mode 100644
index b84af6ff96..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_nopool.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build !go1.3
-
-package v1
-
-// Stub version of buffer_pool.go for Go 1.2, which doesn't have sync.Pool.
-
-func Pool(b []byte) {}
-
-func makeSlice(n int) []byte {
-	return make([]byte, n)
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_pool.go b/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_pool.go
deleted file mode 100644
index a021c57cf4..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/buffer_pool.go
+++ /dev/null
@@ -1,105 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build go1.3
-
-package v1
-
-// Allocation pools for Buffers.
-
-import "sync"
-
-var pools [14]sync.Pool
-var pool64 *sync.Pool
-
-func init() {
-	var i uint
-	// TODO(pquerna): add science here around actual pool sizes.
-	for i = 6; i < 20; i++ {
-		n := 1 << i
-		pools[poolNum(n)].New = func() interface{} { return make([]byte, 0, n) }
-	}
-	pool64 = &pools[0]
-}
-
-// This returns the pool number that will give a buffer of
-// at least 'i' bytes.
-func poolNum(i int) int {
-	// TODO(pquerna): convert to log2 w/ bsr asm instruction:
-	// 	<https://groups.google.com/forum/#!topic/golang-nuts/uAb5J1_y7ns>
-	if i <= 64 {
-		return 0
-	} else if i <= 128 {
-		return 1
-	} else if i <= 256 {
-		return 2
-	} else if i <= 512 {
-		return 3
-	} else if i <= 1024 {
-		return 4
-	} else if i <= 2048 {
-		return 5
-	} else if i <= 4096 {
-		return 6
-	} else if i <= 8192 {
-		return 7
-	} else if i <= 16384 {
-		return 8
-	} else if i <= 32768 {
-		return 9
-	} else if i <= 65536 {
-		return 10
-	} else if i <= 131072 {
-		return 11
-	} else if i <= 262144 {
-		return 12
-	} else if i <= 524288 {
-		return 13
-	} else {
-		return -1
-	}
-}
-
-// Send a buffer to the Pool to reuse for other instances.
-// You may no longer utilize the content of the buffer, since it may be used
-// by other goroutines.
-func Pool(b []byte) {
-	if b == nil {
-		return
-	}
-	c := cap(b)
-
-	// Our smallest buffer is 64 bytes, so we discard smaller buffers.
-	if c < 64 {
-		return
-	}
-
-	// We need to put the incoming buffer into the NEXT buffer,
-	// since a buffer guarantees AT LEAST the number of bytes available
-	// that is the top of this buffer.
-	// That is the reason for dividing the cap by 2, so it gets into the NEXT bucket.
-	// We add 2 to avoid rounding down if size is exactly power of 2.
-	pn := poolNum((c + 2) >> 1)
-	if pn != -1 {
-		pools[pn].Put(b[0:0])
-	}
-	// if we didn't have a slot for this []byte, we just drop it and let the GC
-	// take care of it.
-}
-
-// makeSlice allocates a slice of size n -- it will attempt to use a pool'ed
-// instance whenever possible.
-func makeSlice(n int) []byte {
-	if n <= 64 {
-		return pool64.Get().([]byte)[0:n]
-	}
-
-	pn := poolNum(n)
-
-	if pn != -1 {
-		return pools[pn].Get().([]byte)[0:n]
-	} else {
-		return make([]byte, n)
-	}
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/bytenum.go b/vendor/github.com/pquerna/ffjson/fflib/v1/bytenum.go
deleted file mode 100644
index 08477409ac..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/bytenum.go
+++ /dev/null
@@ -1,88 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's strconv/iota.go */
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-import (
-	"github.com/pquerna/ffjson/fflib/v1/internal"
-)
-
-func ParseFloat(s []byte, bitSize int) (f float64, err error) {
-	return internal.ParseFloat(s, bitSize)
-}
-
-// ParseUint is like ParseInt but for unsigned numbers, and oeprating on []byte
-func ParseUint(s []byte, base int, bitSize int) (n uint64, err error) {
-	if len(s) == 1 {
-		switch s[0] {
-		case '0':
-			return 0, nil
-		case '1':
-			return 1, nil
-		case '2':
-			return 2, nil
-		case '3':
-			return 3, nil
-		case '4':
-			return 4, nil
-		case '5':
-			return 5, nil
-		case '6':
-			return 6, nil
-		case '7':
-			return 7, nil
-		case '8':
-			return 8, nil
-		case '9':
-			return 9, nil
-		}
-	}
-	return internal.ParseUint(s, base, bitSize)
-}
-
-func ParseInt(s []byte, base int, bitSize int) (i int64, err error) {
-	if len(s) == 1 {
-		switch s[0] {
-		case '0':
-			return 0, nil
-		case '1':
-			return 1, nil
-		case '2':
-			return 2, nil
-		case '3':
-			return 3, nil
-		case '4':
-			return 4, nil
-		case '5':
-			return 5, nil
-		case '6':
-			return 6, nil
-		case '7':
-			return 7, nil
-		case '8':
-			return 8, nil
-		case '9':
-			return 9, nil
-		}
-	}
-	return internal.ParseInt(s, base, bitSize)
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/decimal.go b/vendor/github.com/pquerna/ffjson/fflib/v1/decimal.go
deleted file mode 100644
index 069df7a02a..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/decimal.go
+++ /dev/null
@@ -1,378 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Multiprecision decimal numbers.
-// For floating-point formatting only; not general purpose.
-// Only operations are assign and (binary) left/right shift.
-// Can do binary floating point in multiprecision decimal precisely
-// because 2 divides 10; cannot do decimal floating point
-// in multiprecision binary precisely.
-
-package v1
-
-type decimal struct {
-	d     [800]byte // digits
-	nd    int       // number of digits used
-	dp    int       // decimal point
-	neg   bool
-	trunc bool // discarded nonzero digits beyond d[:nd]
-}
-
-func (a *decimal) String() string {
-	n := 10 + a.nd
-	if a.dp > 0 {
-		n += a.dp
-	}
-	if a.dp < 0 {
-		n += -a.dp
-	}
-
-	buf := make([]byte, n)
-	w := 0
-	switch {
-	case a.nd == 0:
-		return "0"
-
-	case a.dp <= 0:
-		// zeros fill space between decimal point and digits
-		buf[w] = '0'
-		w++
-		buf[w] = '.'
-		w++
-		w += digitZero(buf[w : w+-a.dp])
-		w += copy(buf[w:], a.d[0:a.nd])
-
-	case a.dp < a.nd:
-		// decimal point in middle of digits
-		w += copy(buf[w:], a.d[0:a.dp])
-		buf[w] = '.'
-		w++
-		w += copy(buf[w:], a.d[a.dp:a.nd])
-
-	default:
-		// zeros fill space between digits and decimal point
-		w += copy(buf[w:], a.d[0:a.nd])
-		w += digitZero(buf[w : w+a.dp-a.nd])
-	}
-	return string(buf[0:w])
-}
-
-func digitZero(dst []byte) int {
-	for i := range dst {
-		dst[i] = '0'
-	}
-	return len(dst)
-}
-
-// trim trailing zeros from number.
-// (They are meaningless; the decimal point is tracked
-// independent of the number of digits.)
-func trim(a *decimal) {
-	for a.nd > 0 && a.d[a.nd-1] == '0' {
-		a.nd--
-	}
-	if a.nd == 0 {
-		a.dp = 0
-	}
-}
-
-// Assign v to a.
-func (a *decimal) Assign(v uint64) {
-	var buf [24]byte
-
-	// Write reversed decimal in buf.
-	n := 0
-	for v > 0 {
-		v1 := v / 10
-		v -= 10 * v1
-		buf[n] = byte(v + '0')
-		n++
-		v = v1
-	}
-
-	// Reverse again to produce forward decimal in a.d.
-	a.nd = 0
-	for n--; n >= 0; n-- {
-		a.d[a.nd] = buf[n]
-		a.nd++
-	}
-	a.dp = a.nd
-	trim(a)
-}
-
-// Maximum shift that we can do in one pass without overflow.
-// Signed int has 31 bits, and we have to be able to accommodate 9<<k.
-const maxShift = 27
-
-// Binary shift right (* 2) by k bits.  k <= maxShift to avoid overflow.
-func rightShift(a *decimal, k uint) {
-	r := 0 // read pointer
-	w := 0 // write pointer
-
-	// Pick up enough leading digits to cover first shift.
-	n := 0
-	for ; n>>k == 0; r++ {
-		if r >= a.nd {
-			if n == 0 {
-				// a == 0; shouldn't get here, but handle anyway.
-				a.nd = 0
-				return
-			}
-			for n>>k == 0 {
-				n = n * 10
-				r++
-			}
-			break
-		}
-		c := int(a.d[r])
-		n = n*10 + c - '0'
-	}
-	a.dp -= r - 1
-
-	// Pick up a digit, put down a digit.
-	for ; r < a.nd; r++ {
-		c := int(a.d[r])
-		dig := n >> k
-		n -= dig << k
-		a.d[w] = byte(dig + '0')
-		w++
-		n = n*10 + c - '0'
-	}
-
-	// Put down extra digits.
-	for n > 0 {
-		dig := n >> k
-		n -= dig << k
-		if w < len(a.d) {
-			a.d[w] = byte(dig + '0')
-			w++
-		} else if dig > 0 {
-			a.trunc = true
-		}
-		n = n * 10
-	}
-
-	a.nd = w
-	trim(a)
-}
-
-// Cheat sheet for left shift: table indexed by shift count giving
-// number of new digits that will be introduced by that shift.
-//
-// For example, leftcheats[4] = {2, "625"}.  That means that
-// if we are shifting by 4 (multiplying by 16), it will add 2 digits
-// when the string prefix is "625" through "999", and one fewer digit
-// if the string prefix is "000" through "624".
-//
-// Credit for this trick goes to Ken.
-
-type leftCheat struct {
-	delta  int    // number of new digits
-	cutoff string //   minus one digit if original < a.
-}
-
-var leftcheats = []leftCheat{
-	// Leading digits of 1/2^i = 5^i.
-	// 5^23 is not an exact 64-bit floating point number,
-	// so have to use bc for the math.
-	/*
-		seq 27 | sed 's/^/5^/' | bc |
-		awk 'BEGIN{ print "\tleftCheat{ 0, \"\" }," }
-		{
-			log2 = log(2)/log(10)
-			printf("\tleftCheat{ %d, \"%s\" },\t// * %d\n",
-				int(log2*NR+1), $0, 2**NR)
-		}'
-	*/
-	{0, ""},
-	{1, "5"},                   // * 2
-	{1, "25"},                  // * 4
-	{1, "125"},                 // * 8
-	{2, "625"},                 // * 16
-	{2, "3125"},                // * 32
-	{2, "15625"},               // * 64
-	{3, "78125"},               // * 128
-	{3, "390625"},              // * 256
-	{3, "1953125"},             // * 512
-	{4, "9765625"},             // * 1024
-	{4, "48828125"},            // * 2048
-	{4, "244140625"},           // * 4096
-	{4, "1220703125"},          // * 8192
-	{5, "6103515625"},          // * 16384
-	{5, "30517578125"},         // * 32768
-	{5, "152587890625"},        // * 65536
-	{6, "762939453125"},        // * 131072
-	{6, "3814697265625"},       // * 262144
-	{6, "19073486328125"},      // * 524288
-	{7, "95367431640625"},      // * 1048576
-	{7, "476837158203125"},     // * 2097152
-	{7, "2384185791015625"},    // * 4194304
-	{7, "11920928955078125"},   // * 8388608
-	{8, "59604644775390625"},   // * 16777216
-	{8, "298023223876953125"},  // * 33554432
-	{8, "1490116119384765625"}, // * 67108864
-	{9, "7450580596923828125"}, // * 134217728
-}
-
-// Is the leading prefix of b lexicographically less than s?
-func prefixIsLessThan(b []byte, s string) bool {
-	for i := 0; i < len(s); i++ {
-		if i >= len(b) {
-			return true
-		}
-		if b[i] != s[i] {
-			return b[i] < s[i]
-		}
-	}
-	return false
-}
-
-// Binary shift left (/ 2) by k bits.  k <= maxShift to avoid overflow.
-func leftShift(a *decimal, k uint) {
-	delta := leftcheats[k].delta
-	if prefixIsLessThan(a.d[0:a.nd], leftcheats[k].cutoff) {
-		delta--
-	}
-
-	r := a.nd         // read index
-	w := a.nd + delta // write index
-	n := 0
-
-	// Pick up a digit, put down a digit.
-	for r--; r >= 0; r-- {
-		n += (int(a.d[r]) - '0') << k
-		quo := n / 10
-		rem := n - 10*quo
-		w--
-		if w < len(a.d) {
-			a.d[w] = byte(rem + '0')
-		} else if rem != 0 {
-			a.trunc = true
-		}
-		n = quo
-	}
-
-	// Put down extra digits.
-	for n > 0 {
-		quo := n / 10
-		rem := n - 10*quo
-		w--
-		if w < len(a.d) {
-			a.d[w] = byte(rem + '0')
-		} else if rem != 0 {
-			a.trunc = true
-		}
-		n = quo
-	}
-
-	a.nd += delta
-	if a.nd >= len(a.d) {
-		a.nd = len(a.d)
-	}
-	a.dp += delta
-	trim(a)
-}
-
-// Binary shift left (k > 0) or right (k < 0).
-func (a *decimal) Shift(k int) {
-	switch {
-	case a.nd == 0:
-		// nothing to do: a == 0
-	case k > 0:
-		for k > maxShift {
-			leftShift(a, maxShift)
-			k -= maxShift
-		}
-		leftShift(a, uint(k))
-	case k < 0:
-		for k < -maxShift {
-			rightShift(a, maxShift)
-			k += maxShift
-		}
-		rightShift(a, uint(-k))
-	}
-}
-
-// If we chop a at nd digits, should we round up?
-func shouldRoundUp(a *decimal, nd int) bool {
-	if nd < 0 || nd >= a.nd {
-		return false
-	}
-	if a.d[nd] == '5' && nd+1 == a.nd { // exactly halfway - round to even
-		// if we truncated, a little higher than what's recorded - always round up
-		if a.trunc {
-			return true
-		}
-		return nd > 0 && (a.d[nd-1]-'0')%2 != 0
-	}
-	// not halfway - digit tells all
-	return a.d[nd] >= '5'
-}
-
-// Round a to nd digits (or fewer).
-// If nd is zero, it means we're rounding
-// just to the left of the digits, as in
-// 0.09 -> 0.1.
-func (a *decimal) Round(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-	if shouldRoundUp(a, nd) {
-		a.RoundUp(nd)
-	} else {
-		a.RoundDown(nd)
-	}
-}
-
-// Round a down to nd digits (or fewer).
-func (a *decimal) RoundDown(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-	a.nd = nd
-	trim(a)
-}
-
-// Round a up to nd digits (or fewer).
-func (a *decimal) RoundUp(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-
-	// round up
-	for i := nd - 1; i >= 0; i-- {
-		c := a.d[i]
-		if c < '9' { // can stop after this digit
-			a.d[i]++
-			a.nd = i + 1
-			return
-		}
-	}
-
-	// Number is all 9s.
-	// Change to single 1 with adjusted decimal point.
-	a.d[0] = '1'
-	a.nd = 1
-	a.dp++
-}
-
-// Extract integer part, rounded appropriately.
-// No guarantees about overflow.
-func (a *decimal) RoundedInteger() uint64 {
-	if a.dp > 20 {
-		return 0xFFFFFFFFFFFFFFFF
-	}
-	var i int
-	n := uint64(0)
-	for i = 0; i < a.dp && i < a.nd; i++ {
-		n = n*10 + uint64(a.d[i]-'0')
-	}
-	for ; i < a.dp; i++ {
-		n *= 10
-	}
-	if shouldRoundUp(a, a.dp) {
-		n++
-	}
-	return n
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/extfloat.go b/vendor/github.com/pquerna/ffjson/fflib/v1/extfloat.go
deleted file mode 100644
index 508ddc6bed..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/extfloat.go
+++ /dev/null
@@ -1,668 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-// An extFloat represents an extended floating-point number, with more
-// precision than a float64. It does not try to save bits: the
-// number represented by the structure is mant*(2^exp), with a negative
-// sign if neg is true.
-type extFloat struct {
-	mant uint64
-	exp  int
-	neg  bool
-}
-
-// Powers of ten taken from double-conversion library.
-// http://code.google.com/p/double-conversion/
-const (
-	firstPowerOfTen = -348
-	stepPowerOfTen  = 8
-)
-
-var smallPowersOfTen = [...]extFloat{
-	{1 << 63, -63, false},        // 1
-	{0xa << 60, -60, false},      // 1e1
-	{0x64 << 57, -57, false},     // 1e2
-	{0x3e8 << 54, -54, false},    // 1e3
-	{0x2710 << 50, -50, false},   // 1e4
-	{0x186a0 << 47, -47, false},  // 1e5
-	{0xf4240 << 44, -44, false},  // 1e6
-	{0x989680 << 40, -40, false}, // 1e7
-}
-
-var powersOfTen = [...]extFloat{
-	{0xfa8fd5a0081c0288, -1220, false}, // 10^-348
-	{0xbaaee17fa23ebf76, -1193, false}, // 10^-340
-	{0x8b16fb203055ac76, -1166, false}, // 10^-332
-	{0xcf42894a5dce35ea, -1140, false}, // 10^-324
-	{0x9a6bb0aa55653b2d, -1113, false}, // 10^-316
-	{0xe61acf033d1a45df, -1087, false}, // 10^-308
-	{0xab70fe17c79ac6ca, -1060, false}, // 10^-300
-	{0xff77b1fcbebcdc4f, -1034, false}, // 10^-292
-	{0xbe5691ef416bd60c, -1007, false}, // 10^-284
-	{0x8dd01fad907ffc3c, -980, false},  // 10^-276
-	{0xd3515c2831559a83, -954, false},  // 10^-268
-	{0x9d71ac8fada6c9b5, -927, false},  // 10^-260
-	{0xea9c227723ee8bcb, -901, false},  // 10^-252
-	{0xaecc49914078536d, -874, false},  // 10^-244
-	{0x823c12795db6ce57, -847, false},  // 10^-236
-	{0xc21094364dfb5637, -821, false},  // 10^-228
-	{0x9096ea6f3848984f, -794, false},  // 10^-220
-	{0xd77485cb25823ac7, -768, false},  // 10^-212
-	{0xa086cfcd97bf97f4, -741, false},  // 10^-204
-	{0xef340a98172aace5, -715, false},  // 10^-196
-	{0xb23867fb2a35b28e, -688, false},  // 10^-188
-	{0x84c8d4dfd2c63f3b, -661, false},  // 10^-180
-	{0xc5dd44271ad3cdba, -635, false},  // 10^-172
-	{0x936b9fcebb25c996, -608, false},  // 10^-164
-	{0xdbac6c247d62a584, -582, false},  // 10^-156
-	{0xa3ab66580d5fdaf6, -555, false},  // 10^-148
-	{0xf3e2f893dec3f126, -529, false},  // 10^-140
-	{0xb5b5ada8aaff80b8, -502, false},  // 10^-132
-	{0x87625f056c7c4a8b, -475, false},  // 10^-124
-	{0xc9bcff6034c13053, -449, false},  // 10^-116
-	{0x964e858c91ba2655, -422, false},  // 10^-108
-	{0xdff9772470297ebd, -396, false},  // 10^-100
-	{0xa6dfbd9fb8e5b88f, -369, false},  // 10^-92
-	{0xf8a95fcf88747d94, -343, false},  // 10^-84
-	{0xb94470938fa89bcf, -316, false},  // 10^-76
-	{0x8a08f0f8bf0f156b, -289, false},  // 10^-68
-	{0xcdb02555653131b6, -263, false},  // 10^-60
-	{0x993fe2c6d07b7fac, -236, false},  // 10^-52
-	{0xe45c10c42a2b3b06, -210, false},  // 10^-44
-	{0xaa242499697392d3, -183, false},  // 10^-36
-	{0xfd87b5f28300ca0e, -157, false},  // 10^-28
-	{0xbce5086492111aeb, -130, false},  // 10^-20
-	{0x8cbccc096f5088cc, -103, false},  // 10^-12
-	{0xd1b71758e219652c, -77, false},   // 10^-4
-	{0x9c40000000000000, -50, false},   // 10^4
-	{0xe8d4a51000000000, -24, false},   // 10^12
-	{0xad78ebc5ac620000, 3, false},     // 10^20
-	{0x813f3978f8940984, 30, false},    // 10^28
-	{0xc097ce7bc90715b3, 56, false},    // 10^36
-	{0x8f7e32ce7bea5c70, 83, false},    // 10^44
-	{0xd5d238a4abe98068, 109, false},   // 10^52
-	{0x9f4f2726179a2245, 136, false},   // 10^60
-	{0xed63a231d4c4fb27, 162, false},   // 10^68
-	{0xb0de65388cc8ada8, 189, false},   // 10^76
-	{0x83c7088e1aab65db, 216, false},   // 10^84
-	{0xc45d1df942711d9a, 242, false},   // 10^92
-	{0x924d692ca61be758, 269, false},   // 10^100
-	{0xda01ee641a708dea, 295, false},   // 10^108
-	{0xa26da3999aef774a, 322, false},   // 10^116
-	{0xf209787bb47d6b85, 348, false},   // 10^124
-	{0xb454e4a179dd1877, 375, false},   // 10^132
-	{0x865b86925b9bc5c2, 402, false},   // 10^140
-	{0xc83553c5c8965d3d, 428, false},   // 10^148
-	{0x952ab45cfa97a0b3, 455, false},   // 10^156
-	{0xde469fbd99a05fe3, 481, false},   // 10^164
-	{0xa59bc234db398c25, 508, false},   // 10^172
-	{0xf6c69a72a3989f5c, 534, false},   // 10^180
-	{0xb7dcbf5354e9bece, 561, false},   // 10^188
-	{0x88fcf317f22241e2, 588, false},   // 10^196
-	{0xcc20ce9bd35c78a5, 614, false},   // 10^204
-	{0x98165af37b2153df, 641, false},   // 10^212
-	{0xe2a0b5dc971f303a, 667, false},   // 10^220
-	{0xa8d9d1535ce3b396, 694, false},   // 10^228
-	{0xfb9b7cd9a4a7443c, 720, false},   // 10^236
-	{0xbb764c4ca7a44410, 747, false},   // 10^244
-	{0x8bab8eefb6409c1a, 774, false},   // 10^252
-	{0xd01fef10a657842c, 800, false},   // 10^260
-	{0x9b10a4e5e9913129, 827, false},   // 10^268
-	{0xe7109bfba19c0c9d, 853, false},   // 10^276
-	{0xac2820d9623bf429, 880, false},   // 10^284
-	{0x80444b5e7aa7cf85, 907, false},   // 10^292
-	{0xbf21e44003acdd2d, 933, false},   // 10^300
-	{0x8e679c2f5e44ff8f, 960, false},   // 10^308
-	{0xd433179d9c8cb841, 986, false},   // 10^316
-	{0x9e19db92b4e31ba9, 1013, false},  // 10^324
-	{0xeb96bf6ebadf77d9, 1039, false},  // 10^332
-	{0xaf87023b9bf0ee6b, 1066, false},  // 10^340
-}
-
-// floatBits returns the bits of the float64 that best approximates
-// the extFloat passed as receiver. Overflow is set to true if
-// the resulting float64 is ±Inf.
-func (f *extFloat) floatBits(flt *floatInfo) (bits uint64, overflow bool) {
-	f.Normalize()
-
-	exp := f.exp + 63
-
-	// Exponent too small.
-	if exp < flt.bias+1 {
-		n := flt.bias + 1 - exp
-		f.mant >>= uint(n)
-		exp += n
-	}
-
-	// Extract 1+flt.mantbits bits from the 64-bit mantissa.
-	mant := f.mant >> (63 - flt.mantbits)
-	if f.mant&(1<<(62-flt.mantbits)) != 0 {
-		// Round up.
-		mant += 1
-	}
-
-	// Rounding might have added a bit; shift down.
-	if mant == 2<<flt.mantbits {
-		mant >>= 1
-		exp++
-	}
-
-	// Infinities.
-	if exp-flt.bias >= 1<<flt.expbits-1 {
-		// ±Inf
-		mant = 0
-		exp = 1<<flt.expbits - 1 + flt.bias
-		overflow = true
-	} else if mant&(1<<flt.mantbits) == 0 {
-		// Denormalized?
-		exp = flt.bias
-	}
-	// Assemble bits.
-	bits = mant & (uint64(1)<<flt.mantbits - 1)
-	bits |= uint64((exp-flt.bias)&(1<<flt.expbits-1)) << flt.mantbits
-	if f.neg {
-		bits |= 1 << (flt.mantbits + flt.expbits)
-	}
-	return
-}
-
-// AssignComputeBounds sets f to the floating point value
-// defined by mant, exp and precision given by flt. It returns
-// lower, upper such that any number in the closed interval
-// [lower, upper] is converted back to the same floating point number.
-func (f *extFloat) AssignComputeBounds(mant uint64, exp int, neg bool, flt *floatInfo) (lower, upper extFloat) {
-	f.mant = mant
-	f.exp = exp - int(flt.mantbits)
-	f.neg = neg
-	if f.exp <= 0 && mant == (mant>>uint(-f.exp))<<uint(-f.exp) {
-		// An exact integer
-		f.mant >>= uint(-f.exp)
-		f.exp = 0
-		return *f, *f
-	}
-	expBiased := exp - flt.bias
-
-	upper = extFloat{mant: 2*f.mant + 1, exp: f.exp - 1, neg: f.neg}
-	if mant != 1<<flt.mantbits || expBiased == 1 {
-		lower = extFloat{mant: 2*f.mant - 1, exp: f.exp - 1, neg: f.neg}
-	} else {
-		lower = extFloat{mant: 4*f.mant - 1, exp: f.exp - 2, neg: f.neg}
-	}
-	return
-}
-
-// Normalize normalizes f so that the highest bit of the mantissa is
-// set, and returns the number by which the mantissa was left-shifted.
-func (f *extFloat) Normalize() (shift uint) {
-	mant, exp := f.mant, f.exp
-	if mant == 0 {
-		return 0
-	}
-	if mant>>(64-32) == 0 {
-		mant <<= 32
-		exp -= 32
-	}
-	if mant>>(64-16) == 0 {
-		mant <<= 16
-		exp -= 16
-	}
-	if mant>>(64-8) == 0 {
-		mant <<= 8
-		exp -= 8
-	}
-	if mant>>(64-4) == 0 {
-		mant <<= 4
-		exp -= 4
-	}
-	if mant>>(64-2) == 0 {
-		mant <<= 2
-		exp -= 2
-	}
-	if mant>>(64-1) == 0 {
-		mant <<= 1
-		exp -= 1
-	}
-	shift = uint(f.exp - exp)
-	f.mant, f.exp = mant, exp
-	return
-}
-
-// Multiply sets f to the product f*g: the result is correctly rounded,
-// but not normalized.
-func (f *extFloat) Multiply(g extFloat) {
-	fhi, flo := f.mant>>32, uint64(uint32(f.mant))
-	ghi, glo := g.mant>>32, uint64(uint32(g.mant))
-
-	// Cross products.
-	cross1 := fhi * glo
-	cross2 := flo * ghi
-
-	// f.mant*g.mant is fhi*ghi << 64 + (cross1+cross2) << 32 + flo*glo
-	f.mant = fhi*ghi + (cross1 >> 32) + (cross2 >> 32)
-	rem := uint64(uint32(cross1)) + uint64(uint32(cross2)) + ((flo * glo) >> 32)
-	// Round up.
-	rem += (1 << 31)
-
-	f.mant += (rem >> 32)
-	f.exp = f.exp + g.exp + 64
-}
-
-var uint64pow10 = [...]uint64{
-	1, 1e1, 1e2, 1e3, 1e4, 1e5, 1e6, 1e7, 1e8, 1e9,
-	1e10, 1e11, 1e12, 1e13, 1e14, 1e15, 1e16, 1e17, 1e18, 1e19,
-}
-
-// AssignDecimal sets f to an approximate value mantissa*10^exp. It
-// returns true if the value represented by f is guaranteed to be the
-// best approximation of d after being rounded to a float64 or
-// float32 depending on flt.
-func (f *extFloat) AssignDecimal(mantissa uint64, exp10 int, neg bool, trunc bool, flt *floatInfo) (ok bool) {
-	const uint64digits = 19
-	const errorscale = 8
-	errors := 0 // An upper bound for error, computed in errorscale*ulp.
-	if trunc {
-		// the decimal number was truncated.
-		errors += errorscale / 2
-	}
-
-	f.mant = mantissa
-	f.exp = 0
-	f.neg = neg
-
-	// Multiply by powers of ten.
-	i := (exp10 - firstPowerOfTen) / stepPowerOfTen
-	if exp10 < firstPowerOfTen || i >= len(powersOfTen) {
-		return false
-	}
-	adjExp := (exp10 - firstPowerOfTen) % stepPowerOfTen
-
-	// We multiply by exp%step
-	if adjExp < uint64digits && mantissa < uint64pow10[uint64digits-adjExp] {
-		// We can multiply the mantissa exactly.
-		f.mant *= uint64pow10[adjExp]
-		f.Normalize()
-	} else {
-		f.Normalize()
-		f.Multiply(smallPowersOfTen[adjExp])
-		errors += errorscale / 2
-	}
-
-	// We multiply by 10 to the exp - exp%step.
-	f.Multiply(powersOfTen[i])
-	if errors > 0 {
-		errors += 1
-	}
-	errors += errorscale / 2
-
-	// Normalize
-	shift := f.Normalize()
-	errors <<= shift
-
-	// Now f is a good approximation of the decimal.
-	// Check whether the error is too large: that is, if the mantissa
-	// is perturbated by the error, the resulting float64 will change.
-	// The 64 bits mantissa is 1 + 52 bits for float64 + 11 extra bits.
-	//
-	// In many cases the approximation will be good enough.
-	denormalExp := flt.bias - 63
-	var extrabits uint
-	if f.exp <= denormalExp {
-		// f.mant * 2^f.exp is smaller than 2^(flt.bias+1).
-		extrabits = uint(63 - flt.mantbits + 1 + uint(denormalExp-f.exp))
-	} else {
-		extrabits = uint(63 - flt.mantbits)
-	}
-
-	halfway := uint64(1) << (extrabits - 1)
-	mant_extra := f.mant & (1<<extrabits - 1)
-
-	// Do a signed comparison here! If the error estimate could make
-	// the mantissa round differently for the conversion to double,
-	// then we can't give a definite answer.
-	if int64(halfway)-int64(errors) < int64(mant_extra) &&
-		int64(mant_extra) < int64(halfway)+int64(errors) {
-		return false
-	}
-	return true
-}
-
-// Frexp10 is an analogue of math.Frexp for decimal powers. It scales
-// f by an approximate power of ten 10^-exp, and returns exp10, so
-// that f*10^exp10 has the same value as the old f, up to an ulp,
-// as well as the index of 10^-exp in the powersOfTen table.
-func (f *extFloat) frexp10() (exp10, index int) {
-	// The constants expMin and expMax constrain the final value of the
-	// binary exponent of f. We want a small integral part in the result
-	// because finding digits of an integer requires divisions, whereas
-	// digits of the fractional part can be found by repeatedly multiplying
-	// by 10.
-	const expMin = -60
-	const expMax = -32
-	// Find power of ten such that x * 10^n has a binary exponent
-	// between expMin and expMax.
-	approxExp10 := ((expMin+expMax)/2 - f.exp) * 28 / 93 // log(10)/log(2) is close to 93/28.
-	i := (approxExp10 - firstPowerOfTen) / stepPowerOfTen
-Loop:
-	for {
-		exp := f.exp + powersOfTen[i].exp + 64
-		switch {
-		case exp < expMin:
-			i++
-		case exp > expMax:
-			i--
-		default:
-			break Loop
-		}
-	}
-	// Apply the desired decimal shift on f. It will have exponent
-	// in the desired range. This is multiplication by 10^-exp10.
-	f.Multiply(powersOfTen[i])
-
-	return -(firstPowerOfTen + i*stepPowerOfTen), i
-}
-
-// frexp10Many applies a common shift by a power of ten to a, b, c.
-func frexp10Many(a, b, c *extFloat) (exp10 int) {
-	exp10, i := c.frexp10()
-	a.Multiply(powersOfTen[i])
-	b.Multiply(powersOfTen[i])
-	return
-}
-
-// FixedDecimal stores in d the first n significant digits
-// of the decimal representation of f. It returns false
-// if it cannot be sure of the answer.
-func (f *extFloat) FixedDecimal(d *decimalSlice, n int) bool {
-	if f.mant == 0 {
-		d.nd = 0
-		d.dp = 0
-		d.neg = f.neg
-		return true
-	}
-	if n == 0 {
-		panic("strconv: internal error: extFloat.FixedDecimal called with n == 0")
-	}
-	// Multiply by an appropriate power of ten to have a reasonable
-	// number to process.
-	f.Normalize()
-	exp10, _ := f.frexp10()
-
-	shift := uint(-f.exp)
-	integer := uint32(f.mant >> shift)
-	fraction := f.mant - (uint64(integer) << shift)
-	ε := uint64(1) // ε is the uncertainty we have on the mantissa of f.
-
-	// Write exactly n digits to d.
-	needed := n        // how many digits are left to write.
-	integerDigits := 0 // the number of decimal digits of integer.
-	pow10 := uint64(1) // the power of ten by which f was scaled.
-	for i, pow := 0, uint64(1); i < 20; i++ {
-		if pow > uint64(integer) {
-			integerDigits = i
-			break
-		}
-		pow *= 10
-	}
-	rest := integer
-	if integerDigits > needed {
-		// the integral part is already large, trim the last digits.
-		pow10 = uint64pow10[integerDigits-needed]
-		integer /= uint32(pow10)
-		rest -= integer * uint32(pow10)
-	} else {
-		rest = 0
-	}
-
-	// Write the digits of integer: the digits of rest are omitted.
-	var buf [32]byte
-	pos := len(buf)
-	for v := integer; v > 0; {
-		v1 := v / 10
-		v -= 10 * v1
-		pos--
-		buf[pos] = byte(v + '0')
-		v = v1
-	}
-	for i := pos; i < len(buf); i++ {
-		d.d[i-pos] = buf[i]
-	}
-	nd := len(buf) - pos
-	d.nd = nd
-	d.dp = integerDigits + exp10
-	needed -= nd
-
-	if needed > 0 {
-		if rest != 0 || pow10 != 1 {
-			panic("strconv: internal error, rest != 0 but needed > 0")
-		}
-		// Emit digits for the fractional part. Each time, 10*fraction
-		// fits in a uint64 without overflow.
-		for needed > 0 {
-			fraction *= 10
-			ε *= 10 // the uncertainty scales as we multiply by ten.
-			if 2*ε > 1<<shift {
-				// the error is so large it could modify which digit to write, abort.
-				return false
-			}
-			digit := fraction >> shift
-			d.d[nd] = byte(digit + '0')
-			fraction -= digit << shift
-			nd++
-			needed--
-		}
-		d.nd = nd
-	}
-
-	// We have written a truncation of f (a numerator / 10^d.dp). The remaining part
-	// can be interpreted as a small number (< 1) to be added to the last digit of the
-	// numerator.
-	//
-	// If rest > 0, the amount is:
-	//    (rest<<shift | fraction) / (pow10 << shift)
-	//    fraction being known with a ±ε uncertainty.
-	//    The fact that n > 0 guarantees that pow10 << shift does not overflow a uint64.
-	//
-	// If rest = 0, pow10 == 1 and the amount is
-	//    fraction / (1 << shift)
-	//    fraction being known with a ±ε uncertainty.
-	//
-	// We pass this information to the rounding routine for adjustment.
-
-	ok := adjustLastDigitFixed(d, uint64(rest)<<shift|fraction, pow10, shift, ε)
-	if !ok {
-		return false
-	}
-	// Trim trailing zeros.
-	for i := d.nd - 1; i >= 0; i-- {
-		if d.d[i] != '0' {
-			d.nd = i + 1
-			break
-		}
-	}
-	return true
-}
-
-// adjustLastDigitFixed assumes d contains the representation of the integral part
-// of some number, whose fractional part is num / (den << shift). The numerator
-// num is only known up to an uncertainty of size ε, assumed to be less than
-// (den << shift)/2.
-//
-// It will increase the last digit by one to account for correct rounding, typically
-// when the fractional part is greater than 1/2, and will return false if ε is such
-// that no correct answer can be given.
-func adjustLastDigitFixed(d *decimalSlice, num, den uint64, shift uint, ε uint64) bool {
-	if num > den<<shift {
-		panic("strconv: num > den<<shift in adjustLastDigitFixed")
-	}
-	if 2*ε > den<<shift {
-		panic("strconv: ε > (den<<shift)/2")
-	}
-	if 2*(num+ε) < den<<shift {
-		return true
-	}
-	if 2*(num-ε) > den<<shift {
-		// increment d by 1.
-		i := d.nd - 1
-		for ; i >= 0; i-- {
-			if d.d[i] == '9' {
-				d.nd--
-			} else {
-				break
-			}
-		}
-		if i < 0 {
-			d.d[0] = '1'
-			d.nd = 1
-			d.dp++
-		} else {
-			d.d[i]++
-		}
-		return true
-	}
-	return false
-}
-
-// ShortestDecimal stores in d the shortest decimal representation of f
-// which belongs to the open interval (lower, upper), where f is supposed
-// to lie. It returns false whenever the result is unsure. The implementation
-// uses the Grisu3 algorithm.
-func (f *extFloat) ShortestDecimal(d *decimalSlice, lower, upper *extFloat) bool {
-	if f.mant == 0 {
-		d.nd = 0
-		d.dp = 0
-		d.neg = f.neg
-		return true
-	}
-	if f.exp == 0 && *lower == *f && *lower == *upper {
-		// an exact integer.
-		var buf [24]byte
-		n := len(buf) - 1
-		for v := f.mant; v > 0; {
-			v1 := v / 10
-			v -= 10 * v1
-			buf[n] = byte(v + '0')
-			n--
-			v = v1
-		}
-		nd := len(buf) - n - 1
-		for i := 0; i < nd; i++ {
-			d.d[i] = buf[n+1+i]
-		}
-		d.nd, d.dp = nd, nd
-		for d.nd > 0 && d.d[d.nd-1] == '0' {
-			d.nd--
-		}
-		if d.nd == 0 {
-			d.dp = 0
-		}
-		d.neg = f.neg
-		return true
-	}
-	upper.Normalize()
-	// Uniformize exponents.
-	if f.exp > upper.exp {
-		f.mant <<= uint(f.exp - upper.exp)
-		f.exp = upper.exp
-	}
-	if lower.exp > upper.exp {
-		lower.mant <<= uint(lower.exp - upper.exp)
-		lower.exp = upper.exp
-	}
-
-	exp10 := frexp10Many(lower, f, upper)
-	// Take a safety margin due to rounding in frexp10Many, but we lose precision.
-	upper.mant++
-	lower.mant--
-
-	// The shortest representation of f is either rounded up or down, but
-	// in any case, it is a truncation of upper.
-	shift := uint(-upper.exp)
-	integer := uint32(upper.mant >> shift)
-	fraction := upper.mant - (uint64(integer) << shift)
-
-	// How far we can go down from upper until the result is wrong.
-	allowance := upper.mant - lower.mant
-	// How far we should go to get a very precise result.
-	targetDiff := upper.mant - f.mant
-
-	// Count integral digits: there are at most 10.
-	var integerDigits int
-	for i, pow := 0, uint64(1); i < 20; i++ {
-		if pow > uint64(integer) {
-			integerDigits = i
-			break
-		}
-		pow *= 10
-	}
-	for i := 0; i < integerDigits; i++ {
-		pow := uint64pow10[integerDigits-i-1]
-		digit := integer / uint32(pow)
-		d.d[i] = byte(digit + '0')
-		integer -= digit * uint32(pow)
-		// evaluate whether we should stop.
-		if currentDiff := uint64(integer)<<shift + fraction; currentDiff < allowance {
-			d.nd = i + 1
-			d.dp = integerDigits + exp10
-			d.neg = f.neg
-			// Sometimes allowance is so large the last digit might need to be
-			// decremented to get closer to f.
-			return adjustLastDigit(d, currentDiff, targetDiff, allowance, pow<<shift, 2)
-		}
-	}
-	d.nd = integerDigits
-	d.dp = d.nd + exp10
-	d.neg = f.neg
-
-	// Compute digits of the fractional part. At each step fraction does not
-	// overflow. The choice of minExp implies that fraction is less than 2^60.
-	var digit int
-	multiplier := uint64(1)
-	for {
-		fraction *= 10
-		multiplier *= 10
-		digit = int(fraction >> shift)
-		d.d[d.nd] = byte(digit + '0')
-		d.nd++
-		fraction -= uint64(digit) << shift
-		if fraction < allowance*multiplier {
-			// We are in the admissible range. Note that if allowance is about to
-			// overflow, that is, allowance > 2^64/10, the condition is automatically
-			// true due to the limited range of fraction.
-			return adjustLastDigit(d,
-				fraction, targetDiff*multiplier, allowance*multiplier,
-				1<<shift, multiplier*2)
-		}
-	}
-}
-
-// adjustLastDigit modifies d = x-currentDiff*ε, to get closest to
-// d = x-targetDiff*ε, without becoming smaller than x-maxDiff*ε.
-// It assumes that a decimal digit is worth ulpDecimal*ε, and that
-// all data is known with a error estimate of ulpBinary*ε.
-func adjustLastDigit(d *decimalSlice, currentDiff, targetDiff, maxDiff, ulpDecimal, ulpBinary uint64) bool {
-	if ulpDecimal < 2*ulpBinary {
-		// Approximation is too wide.
-		return false
-	}
-	for currentDiff+ulpDecimal/2+ulpBinary < targetDiff {
-		d.d[d.nd-1]--
-		currentDiff += ulpDecimal
-	}
-	if currentDiff+ulpDecimal <= targetDiff+ulpDecimal/2+ulpBinary {
-		// we have two choices, and don't know what to do.
-		return false
-	}
-	if currentDiff < ulpBinary || currentDiff > maxDiff-ulpBinary {
-		// we went too far
-		return false
-	}
-	if d.nd == 1 && d.d[0] == '0' {
-		// the number has actually reached zero.
-		d.nd = 0
-		d.dp = 0
-	}
-	return true
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/fold.go b/vendor/github.com/pquerna/ffjson/fflib/v1/fold.go
deleted file mode 100644
index 4d33e6f77d..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/fold.go
+++ /dev/null
@@ -1,121 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's encoding/json/fold.go */
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-import (
-	"unicode/utf8"
-)
-
-const (
-	caseMask     = ^byte(0x20) // Mask to ignore case in ASCII.
-	kelvin       = '\u212a'
-	smallLongEss = '\u017f'
-)
-
-// equalFoldRight is a specialization of bytes.EqualFold when s is
-// known to be all ASCII (including punctuation), but contains an 's',
-// 'S', 'k', or 'K', requiring a Unicode fold on the bytes in t.
-// See comments on foldFunc.
-func EqualFoldRight(s, t []byte) bool {
-	for _, sb := range s {
-		if len(t) == 0 {
-			return false
-		}
-		tb := t[0]
-		if tb < utf8.RuneSelf {
-			if sb != tb {
-				sbUpper := sb & caseMask
-				if 'A' <= sbUpper && sbUpper <= 'Z' {
-					if sbUpper != tb&caseMask {
-						return false
-					}
-				} else {
-					return false
-				}
-			}
-			t = t[1:]
-			continue
-		}
-		// sb is ASCII and t is not. t must be either kelvin
-		// sign or long s; sb must be s, S, k, or K.
-		tr, size := utf8.DecodeRune(t)
-		switch sb {
-		case 's', 'S':
-			if tr != smallLongEss {
-				return false
-			}
-		case 'k', 'K':
-			if tr != kelvin {
-				return false
-			}
-		default:
-			return false
-		}
-		t = t[size:]
-
-	}
-	if len(t) > 0 {
-		return false
-	}
-	return true
-}
-
-// asciiEqualFold is a specialization of bytes.EqualFold for use when
-// s is all ASCII (but may contain non-letters) and contains no
-// special-folding letters.
-// See comments on foldFunc.
-func AsciiEqualFold(s, t []byte) bool {
-	if len(s) != len(t) {
-		return false
-	}
-	for i, sb := range s {
-		tb := t[i]
-		if sb == tb {
-			continue
-		}
-		if ('a' <= sb && sb <= 'z') || ('A' <= sb && sb <= 'Z') {
-			if sb&caseMask != tb&caseMask {
-				return false
-			}
-		} else {
-			return false
-		}
-	}
-	return true
-}
-
-// simpleLetterEqualFold is a specialization of bytes.EqualFold for
-// use when s is all ASCII letters (no underscores, etc) and also
-// doesn't contain 'k', 'K', 's', or 'S'.
-// See comments on foldFunc.
-func SimpleLetterEqualFold(s, t []byte) bool {
-	if len(s) != len(t) {
-		return false
-	}
-	for i, b := range s {
-		if b&caseMask != t[i]&caseMask {
-			return false
-		}
-	}
-	return true
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/ftoa.go b/vendor/github.com/pquerna/ffjson/fflib/v1/ftoa.go
deleted file mode 100644
index 360d6dbcf9..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/ftoa.go
+++ /dev/null
@@ -1,542 +0,0 @@
-package v1
-
-/**
- *  Copyright 2015 Paul Querna, Klaus Post
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Most of this file are on Go stdlib's strconv/ftoa.go */
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-import "math"
-
-// TODO: move elsewhere?
-type floatInfo struct {
-	mantbits uint
-	expbits  uint
-	bias     int
-}
-
-var optimize = true // can change for testing
-
-var float32info = floatInfo{23, 8, -127}
-var float64info = floatInfo{52, 11, -1023}
-
-// AppendFloat appends the string form of the floating-point number f,
-// as generated by FormatFloat
-func AppendFloat(dst EncodingBuffer, val float64, fmt byte, prec, bitSize int) {
-	var bits uint64
-	var flt *floatInfo
-	switch bitSize {
-	case 32:
-		bits = uint64(math.Float32bits(float32(val)))
-		flt = &float32info
-	case 64:
-		bits = math.Float64bits(val)
-		flt = &float64info
-	default:
-		panic("strconv: illegal AppendFloat/FormatFloat bitSize")
-	}
-
-	neg := bits>>(flt.expbits+flt.mantbits) != 0
-	exp := int(bits>>flt.mantbits) & (1<<flt.expbits - 1)
-	mant := bits & (uint64(1)<<flt.mantbits - 1)
-
-	switch exp {
-	case 1<<flt.expbits - 1:
-		// Inf, NaN
-		var s string
-		switch {
-		case mant != 0:
-			s = "NaN"
-		case neg:
-			s = "-Inf"
-		default:
-			s = "+Inf"
-		}
-		dst.WriteString(s)
-		return
-
-	case 0:
-		// denormalized
-		exp++
-
-	default:
-		// add implicit top bit
-		mant |= uint64(1) << flt.mantbits
-	}
-	exp += flt.bias
-
-	// Pick off easy binary format.
-	if fmt == 'b' {
-		fmtB(dst, neg, mant, exp, flt)
-		return
-	}
-
-	if !optimize {
-		bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-		return
-	}
-
-	var digs decimalSlice
-	ok := false
-	// Negative precision means "only as much as needed to be exact."
-	shortest := prec < 0
-	if shortest {
-		// Try Grisu3 algorithm.
-		f := new(extFloat)
-		lower, upper := f.AssignComputeBounds(mant, exp, neg, flt)
-		var buf [32]byte
-		digs.d = buf[:]
-		ok = f.ShortestDecimal(&digs, &lower, &upper)
-		if !ok {
-			bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-			return
-		}
-		// Precision for shortest representation mode.
-		switch fmt {
-		case 'e', 'E':
-			prec = max(digs.nd-1, 0)
-		case 'f':
-			prec = max(digs.nd-digs.dp, 0)
-		case 'g', 'G':
-			prec = digs.nd
-		}
-	} else if fmt != 'f' {
-		// Fixed number of digits.
-		digits := prec
-		switch fmt {
-		case 'e', 'E':
-			digits++
-		case 'g', 'G':
-			if prec == 0 {
-				prec = 1
-			}
-			digits = prec
-		}
-		if digits <= 15 {
-			// try fast algorithm when the number of digits is reasonable.
-			var buf [24]byte
-			digs.d = buf[:]
-			f := extFloat{mant, exp - int(flt.mantbits), neg}
-			ok = f.FixedDecimal(&digs, digits)
-		}
-	}
-	if !ok {
-		bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-		return
-	}
-	formatDigits(dst, shortest, neg, digs, prec, fmt)
-	return
-}
-
-// bigFtoa uses multiprecision computations to format a float.
-func bigFtoa(dst EncodingBuffer, prec int, fmt byte, neg bool, mant uint64, exp int, flt *floatInfo) {
-	d := new(decimal)
-	d.Assign(mant)
-	d.Shift(exp - int(flt.mantbits))
-	var digs decimalSlice
-	shortest := prec < 0
-	if shortest {
-		roundShortest(d, mant, exp, flt)
-		digs = decimalSlice{d: d.d[:], nd: d.nd, dp: d.dp}
-		// Precision for shortest representation mode.
-		switch fmt {
-		case 'e', 'E':
-			prec = digs.nd - 1
-		case 'f':
-			prec = max(digs.nd-digs.dp, 0)
-		case 'g', 'G':
-			prec = digs.nd
-		}
-	} else {
-		// Round appropriately.
-		switch fmt {
-		case 'e', 'E':
-			d.Round(prec + 1)
-		case 'f':
-			d.Round(d.dp + prec)
-		case 'g', 'G':
-			if prec == 0 {
-				prec = 1
-			}
-			d.Round(prec)
-		}
-		digs = decimalSlice{d: d.d[:], nd: d.nd, dp: d.dp}
-	}
-	formatDigits(dst, shortest, neg, digs, prec, fmt)
-	return
-}
-
-func formatDigits(dst EncodingBuffer, shortest bool, neg bool, digs decimalSlice, prec int, fmt byte) {
-	switch fmt {
-	case 'e', 'E':
-		fmtE(dst, neg, digs, prec, fmt)
-		return
-	case 'f':
-		fmtF(dst, neg, digs, prec)
-		return
-	case 'g', 'G':
-		// trailing fractional zeros in 'e' form will be trimmed.
-		eprec := prec
-		if eprec > digs.nd && digs.nd >= digs.dp {
-			eprec = digs.nd
-		}
-		// %e is used if the exponent from the conversion
-		// is less than -4 or greater than or equal to the precision.
-		// if precision was the shortest possible, use precision 6 for this decision.
-		if shortest {
-			eprec = 6
-		}
-		exp := digs.dp - 1
-		if exp < -4 || exp >= eprec {
-			if prec > digs.nd {
-				prec = digs.nd
-			}
-			fmtE(dst, neg, digs, prec-1, fmt+'e'-'g')
-			return
-		}
-		if prec > digs.dp {
-			prec = digs.nd
-		}
-		fmtF(dst, neg, digs, max(prec-digs.dp, 0))
-		return
-	}
-
-	// unknown format
-	dst.Write([]byte{'%', fmt})
-	return
-}
-
-// Round d (= mant * 2^exp) to the shortest number of digits
-// that will let the original floating point value be precisely
-// reconstructed.  Size is original floating point size (64 or 32).
-func roundShortest(d *decimal, mant uint64, exp int, flt *floatInfo) {
-	// If mantissa is zero, the number is zero; stop now.
-	if mant == 0 {
-		d.nd = 0
-		return
-	}
-
-	// Compute upper and lower such that any decimal number
-	// between upper and lower (possibly inclusive)
-	// will round to the original floating point number.
-
-	// We may see at once that the number is already shortest.
-	//
-	// Suppose d is not denormal, so that 2^exp <= d < 10^dp.
-	// The closest shorter number is at least 10^(dp-nd) away.
-	// The lower/upper bounds computed below are at distance
-	// at most 2^(exp-mantbits).
-	//
-	// So the number is already shortest if 10^(dp-nd) > 2^(exp-mantbits),
-	// or equivalently log2(10)*(dp-nd) > exp-mantbits.
-	// It is true if 332/100*(dp-nd) >= exp-mantbits (log2(10) > 3.32).
-	minexp := flt.bias + 1 // minimum possible exponent
-	if exp > minexp && 332*(d.dp-d.nd) >= 100*(exp-int(flt.mantbits)) {
-		// The number is already shortest.
-		return
-	}
-
-	// d = mant << (exp - mantbits)
-	// Next highest floating point number is mant+1 << exp-mantbits.
-	// Our upper bound is halfway between, mant*2+1 << exp-mantbits-1.
-	upper := new(decimal)
-	upper.Assign(mant*2 + 1)
-	upper.Shift(exp - int(flt.mantbits) - 1)
-
-	// d = mant << (exp - mantbits)
-	// Next lowest floating point number is mant-1 << exp-mantbits,
-	// unless mant-1 drops the significant bit and exp is not the minimum exp,
-	// in which case the next lowest is mant*2-1 << exp-mantbits-1.
-	// Either way, call it mantlo << explo-mantbits.
-	// Our lower bound is halfway between, mantlo*2+1 << explo-mantbits-1.
-	var mantlo uint64
-	var explo int
-	if mant > 1<<flt.mantbits || exp == minexp {
-		mantlo = mant - 1
-		explo = exp
-	} else {
-		mantlo = mant*2 - 1
-		explo = exp - 1
-	}
-	lower := new(decimal)
-	lower.Assign(mantlo*2 + 1)
-	lower.Shift(explo - int(flt.mantbits) - 1)
-
-	// The upper and lower bounds are possible outputs only if
-	// the original mantissa is even, so that IEEE round-to-even
-	// would round to the original mantissa and not the neighbors.
-	inclusive := mant%2 == 0
-
-	// Now we can figure out the minimum number of digits required.
-	// Walk along until d has distinguished itself from upper and lower.
-	for i := 0; i < d.nd; i++ {
-		var l, m, u byte // lower, middle, upper digits
-		if i < lower.nd {
-			l = lower.d[i]
-		} else {
-			l = '0'
-		}
-		m = d.d[i]
-		if i < upper.nd {
-			u = upper.d[i]
-		} else {
-			u = '0'
-		}
-
-		// Okay to round down (truncate) if lower has a different digit
-		// or if lower is inclusive and is exactly the result of rounding down.
-		okdown := l != m || (inclusive && l == m && i+1 == lower.nd)
-
-		// Okay to round up if upper has a different digit and
-		// either upper is inclusive or upper is bigger than the result of rounding up.
-		okup := m != u && (inclusive || m+1 < u || i+1 < upper.nd)
-
-		// If it's okay to do either, then round to the nearest one.
-		// If it's okay to do only one, do it.
-		switch {
-		case okdown && okup:
-			d.Round(i + 1)
-			return
-		case okdown:
-			d.RoundDown(i + 1)
-			return
-		case okup:
-			d.RoundUp(i + 1)
-			return
-		}
-	}
-}
-
-type decimalSlice struct {
-	d      []byte
-	nd, dp int
-	neg    bool
-}
-
-// %e: -d.ddddde±dd
-func fmtE(dst EncodingBuffer, neg bool, d decimalSlice, prec int, fmt byte) {
-	// sign
-	if neg {
-		dst.WriteByte('-')
-	}
-
-	// first digit
-	ch := byte('0')
-	if d.nd != 0 {
-		ch = d.d[0]
-	}
-	dst.WriteByte(ch)
-
-	// .moredigits
-	if prec > 0 {
-		dst.WriteByte('.')
-		i := 1
-		m := min(d.nd, prec+1)
-		if i < m {
-			dst.Write(d.d[i:m])
-			i = m
-		}
-		for i <= prec {
-			dst.WriteByte('0')
-			i++
-		}
-	}
-
-	// e±
-	dst.WriteByte(fmt)
-	exp := d.dp - 1
-	if d.nd == 0 { // special case: 0 has exponent 0
-		exp = 0
-	}
-	if exp < 0 {
-		ch = '-'
-		exp = -exp
-	} else {
-		ch = '+'
-	}
-	dst.WriteByte(ch)
-
-	// dd or ddd
-	switch {
-	case exp < 10:
-		dst.WriteByte('0')
-		dst.WriteByte(byte(exp) + '0')
-	case exp < 100:
-		dst.WriteByte(byte(exp/10) + '0')
-		dst.WriteByte(byte(exp%10) + '0')
-	default:
-		dst.WriteByte(byte(exp/100) + '0')
-		dst.WriteByte(byte(exp/10)%10 + '0')
-		dst.WriteByte(byte(exp%10) + '0')
-	}
-
-	return
-}
-
-// %f: -ddddddd.ddddd
-func fmtF(dst EncodingBuffer, neg bool, d decimalSlice, prec int) {
-	// sign
-	if neg {
-		dst.WriteByte('-')
-	}
-
-	// integer, padded with zeros as needed.
-	if d.dp > 0 {
-		m := min(d.nd, d.dp)
-		dst.Write(d.d[:m])
-		for ; m < d.dp; m++ {
-			dst.WriteByte('0')
-		}
-	} else {
-		dst.WriteByte('0')
-	}
-
-	// fraction
-	if prec > 0 {
-		dst.WriteByte('.')
-		for i := 0; i < prec; i++ {
-			ch := byte('0')
-			if j := d.dp + i; 0 <= j && j < d.nd {
-				ch = d.d[j]
-			}
-			dst.WriteByte(ch)
-		}
-	}
-
-	return
-}
-
-// %b: -ddddddddp±ddd
-func fmtB(dst EncodingBuffer, neg bool, mant uint64, exp int, flt *floatInfo) {
-	// sign
-	if neg {
-		dst.WriteByte('-')
-	}
-
-	// mantissa
-	formatBits(dst, mant, 10, false)
-
-	// p
-	dst.WriteByte('p')
-
-	// ±exponent
-	exp -= int(flt.mantbits)
-	if exp >= 0 {
-		dst.WriteByte('+')
-	}
-	formatBits(dst, uint64(exp), 10, exp < 0)
-
-	return
-}
-
-func min(a, b int) int {
-	if a < b {
-		return a
-	}
-	return b
-}
-
-func max(a, b int) int {
-	if a > b {
-		return a
-	}
-	return b
-}
-
-// formatBits computes the string representation of u in the given base.
-// If neg is set, u is treated as negative int64 value.
-func formatBits(dst EncodingBuffer, u uint64, base int, neg bool) {
-	if base < 2 || base > len(digits) {
-		panic("strconv: illegal AppendInt/FormatInt base")
-	}
-	// 2 <= base && base <= len(digits)
-
-	var a [64 + 1]byte // +1 for sign of 64bit value in base 2
-	i := len(a)
-
-	if neg {
-		u = -u
-	}
-
-	// convert bits
-	if base == 10 {
-		// common case: use constants for / because
-		// the compiler can optimize it into a multiply+shift
-
-		if ^uintptr(0)>>32 == 0 {
-			for u > uint64(^uintptr(0)) {
-				q := u / 1e9
-				us := uintptr(u - q*1e9) // us % 1e9 fits into a uintptr
-				for j := 9; j > 0; j-- {
-					i--
-					qs := us / 10
-					a[i] = byte(us - qs*10 + '0')
-					us = qs
-				}
-				u = q
-			}
-		}
-
-		// u guaranteed to fit into a uintptr
-		us := uintptr(u)
-		for us >= 10 {
-			i--
-			q := us / 10
-			a[i] = byte(us - q*10 + '0')
-			us = q
-		}
-		// u < 10
-		i--
-		a[i] = byte(us + '0')
-
-	} else if s := shifts[base]; s > 0 {
-		// base is power of 2: use shifts and masks instead of / and %
-		b := uint64(base)
-		m := uintptr(b) - 1 // == 1<<s - 1
-		for u >= b {
-			i--
-			a[i] = digits[uintptr(u)&m]
-			u >>= s
-		}
-		// u < base
-		i--
-		a[i] = digits[uintptr(u)]
-
-	} else {
-		// general case
-		b := uint64(base)
-		for u >= b {
-			i--
-			q := u / b
-			a[i] = digits[uintptr(u-q*b)]
-			u = q
-		}
-		// u < base
-		i--
-		a[i] = digits[uintptr(u)]
-	}
-
-	// add sign, if any
-	if neg {
-		i--
-		a[i] = '-'
-	}
-
-	dst.Write(a[i:])
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atof.go b/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atof.go
deleted file mode 100644
index 46c1289ec4..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atof.go
+++ /dev/null
@@ -1,936 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's strconv/atof.go */
-
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package internal
-
-// decimal to binary floating point conversion.
-// Algorithm:
-//   1) Store input in multiprecision decimal.
-//   2) Multiply/divide decimal by powers of two until in range [0.5, 1)
-//   3) Multiply by 2^precision and round to get mantissa.
-
-import "math"
-
-var optimize = true // can change for testing
-
-func equalIgnoreCase(s1 []byte, s2 []byte) bool {
-	if len(s1) != len(s2) {
-		return false
-	}
-	for i := 0; i < len(s1); i++ {
-		c1 := s1[i]
-		if 'A' <= c1 && c1 <= 'Z' {
-			c1 += 'a' - 'A'
-		}
-		c2 := s2[i]
-		if 'A' <= c2 && c2 <= 'Z' {
-			c2 += 'a' - 'A'
-		}
-		if c1 != c2 {
-			return false
-		}
-	}
-	return true
-}
-
-func special(s []byte) (f float64, ok bool) {
-	if len(s) == 0 {
-		return
-	}
-	switch s[0] {
-	default:
-		return
-	case '+':
-		if equalIgnoreCase(s, []byte("+inf")) || equalIgnoreCase(s, []byte("+infinity")) {
-			return math.Inf(1), true
-		}
-	case '-':
-		if equalIgnoreCase(s, []byte("-inf")) || equalIgnoreCase(s, []byte("-infinity")) {
-			return math.Inf(-1), true
-		}
-	case 'n', 'N':
-		if equalIgnoreCase(s, []byte("nan")) {
-			return math.NaN(), true
-		}
-	case 'i', 'I':
-		if equalIgnoreCase(s, []byte("inf")) || equalIgnoreCase(s, []byte("infinity")) {
-			return math.Inf(1), true
-		}
-	}
-	return
-}
-
-func (b *decimal) set(s []byte) (ok bool) {
-	i := 0
-	b.neg = false
-	b.trunc = false
-
-	// optional sign
-	if i >= len(s) {
-		return
-	}
-	switch {
-	case s[i] == '+':
-		i++
-	case s[i] == '-':
-		b.neg = true
-		i++
-	}
-
-	// digits
-	sawdot := false
-	sawdigits := false
-	for ; i < len(s); i++ {
-		switch {
-		case s[i] == '.':
-			if sawdot {
-				return
-			}
-			sawdot = true
-			b.dp = b.nd
-			continue
-
-		case '0' <= s[i] && s[i] <= '9':
-			sawdigits = true
-			if s[i] == '0' && b.nd == 0 { // ignore leading zeros
-				b.dp--
-				continue
-			}
-			if b.nd < len(b.d) {
-				b.d[b.nd] = s[i]
-				b.nd++
-			} else if s[i] != '0' {
-				b.trunc = true
-			}
-			continue
-		}
-		break
-	}
-	if !sawdigits {
-		return
-	}
-	if !sawdot {
-		b.dp = b.nd
-	}
-
-	// optional exponent moves decimal point.
-	// if we read a very large, very long number,
-	// just be sure to move the decimal point by
-	// a lot (say, 100000).  it doesn't matter if it's
-	// not the exact number.
-	if i < len(s) && (s[i] == 'e' || s[i] == 'E') {
-		i++
-		if i >= len(s) {
-			return
-		}
-		esign := 1
-		if s[i] == '+' {
-			i++
-		} else if s[i] == '-' {
-			i++
-			esign = -1
-		}
-		if i >= len(s) || s[i] < '0' || s[i] > '9' {
-			return
-		}
-		e := 0
-		for ; i < len(s) && '0' <= s[i] && s[i] <= '9'; i++ {
-			if e < 10000 {
-				e = e*10 + int(s[i]) - '0'
-			}
-		}
-		b.dp += e * esign
-	}
-
-	if i != len(s) {
-		return
-	}
-
-	ok = true
-	return
-}
-
-// readFloat reads a decimal mantissa and exponent from a float
-// string representation. It sets ok to false if the number could
-// not fit return types or is invalid.
-func readFloat(s []byte) (mantissa uint64, exp int, neg, trunc, ok bool) {
-	const uint64digits = 19
-	i := 0
-
-	// optional sign
-	if i >= len(s) {
-		return
-	}
-	switch {
-	case s[i] == '+':
-		i++
-	case s[i] == '-':
-		neg = true
-		i++
-	}
-
-	// digits
-	sawdot := false
-	sawdigits := false
-	nd := 0
-	ndMant := 0
-	dp := 0
-	for ; i < len(s); i++ {
-		switch c := s[i]; true {
-		case c == '.':
-			if sawdot {
-				return
-			}
-			sawdot = true
-			dp = nd
-			continue
-
-		case '0' <= c && c <= '9':
-			sawdigits = true
-			if c == '0' && nd == 0 { // ignore leading zeros
-				dp--
-				continue
-			}
-			nd++
-			if ndMant < uint64digits {
-				mantissa *= 10
-				mantissa += uint64(c - '0')
-				ndMant++
-			} else if s[i] != '0' {
-				trunc = true
-			}
-			continue
-		}
-		break
-	}
-	if !sawdigits {
-		return
-	}
-	if !sawdot {
-		dp = nd
-	}
-
-	// optional exponent moves decimal point.
-	// if we read a very large, very long number,
-	// just be sure to move the decimal point by
-	// a lot (say, 100000).  it doesn't matter if it's
-	// not the exact number.
-	if i < len(s) && (s[i] == 'e' || s[i] == 'E') {
-		i++
-		if i >= len(s) {
-			return
-		}
-		esign := 1
-		if s[i] == '+' {
-			i++
-		} else if s[i] == '-' {
-			i++
-			esign = -1
-		}
-		if i >= len(s) || s[i] < '0' || s[i] > '9' {
-			return
-		}
-		e := 0
-		for ; i < len(s) && '0' <= s[i] && s[i] <= '9'; i++ {
-			if e < 10000 {
-				e = e*10 + int(s[i]) - '0'
-			}
-		}
-		dp += e * esign
-	}
-
-	if i != len(s) {
-		return
-	}
-
-	exp = dp - ndMant
-	ok = true
-	return
-
-}
-
-// decimal power of ten to binary power of two.
-var powtab = []int{1, 3, 6, 9, 13, 16, 19, 23, 26}
-
-func (d *decimal) floatBits(flt *floatInfo) (b uint64, overflow bool) {
-	var exp int
-	var mant uint64
-
-	// Zero is always a special case.
-	if d.nd == 0 {
-		mant = 0
-		exp = flt.bias
-		goto out
-	}
-
-	// Obvious overflow/underflow.
-	// These bounds are for 64-bit floats.
-	// Will have to change if we want to support 80-bit floats in the future.
-	if d.dp > 310 {
-		goto overflow
-	}
-	if d.dp < -330 {
-		// zero
-		mant = 0
-		exp = flt.bias
-		goto out
-	}
-
-	// Scale by powers of two until in range [0.5, 1.0)
-	exp = 0
-	for d.dp > 0 {
-		var n int
-		if d.dp >= len(powtab) {
-			n = 27
-		} else {
-			n = powtab[d.dp]
-		}
-		d.Shift(-n)
-		exp += n
-	}
-	for d.dp < 0 || d.dp == 0 && d.d[0] < '5' {
-		var n int
-		if -d.dp >= len(powtab) {
-			n = 27
-		} else {
-			n = powtab[-d.dp]
-		}
-		d.Shift(n)
-		exp -= n
-	}
-
-	// Our range is [0.5,1) but floating point range is [1,2).
-	exp--
-
-	// Minimum representable exponent is flt.bias+1.
-	// If the exponent is smaller, move it up and
-	// adjust d accordingly.
-	if exp < flt.bias+1 {
-		n := flt.bias + 1 - exp
-		d.Shift(-n)
-		exp += n
-	}
-
-	if exp-flt.bias >= 1<<flt.expbits-1 {
-		goto overflow
-	}
-
-	// Extract 1+flt.mantbits bits.
-	d.Shift(int(1 + flt.mantbits))
-	mant = d.RoundedInteger()
-
-	// Rounding might have added a bit; shift down.
-	if mant == 2<<flt.mantbits {
-		mant >>= 1
-		exp++
-		if exp-flt.bias >= 1<<flt.expbits-1 {
-			goto overflow
-		}
-	}
-
-	// Denormalized?
-	if mant&(1<<flt.mantbits) == 0 {
-		exp = flt.bias
-	}
-	goto out
-
-overflow:
-	// ±Inf
-	mant = 0
-	exp = 1<<flt.expbits - 1 + flt.bias
-	overflow = true
-
-out:
-	// Assemble bits.
-	bits := mant & (uint64(1)<<flt.mantbits - 1)
-	bits |= uint64((exp-flt.bias)&(1<<flt.expbits-1)) << flt.mantbits
-	if d.neg {
-		bits |= 1 << flt.mantbits << flt.expbits
-	}
-	return bits, overflow
-}
-
-// Exact powers of 10.
-var float64pow10 = []float64{
-	1e0, 1e1, 1e2, 1e3, 1e4, 1e5, 1e6, 1e7, 1e8, 1e9,
-	1e10, 1e11, 1e12, 1e13, 1e14, 1e15, 1e16, 1e17, 1e18, 1e19,
-	1e20, 1e21, 1e22,
-}
-var float32pow10 = []float32{1e0, 1e1, 1e2, 1e3, 1e4, 1e5, 1e6, 1e7, 1e8, 1e9, 1e10}
-
-// If possible to convert decimal representation to 64-bit float f exactly,
-// entirely in floating-point math, do so, avoiding the expense of decimalToFloatBits.
-// Three common cases:
-//	value is exact integer
-//	value is exact integer * exact power of ten
-//	value is exact integer / exact power of ten
-// These all produce potentially inexact but correctly rounded answers.
-func atof64exact(mantissa uint64, exp int, neg bool) (f float64, ok bool) {
-	if mantissa>>float64info.mantbits != 0 {
-		return
-	}
-	f = float64(mantissa)
-	if neg {
-		f = -f
-	}
-	switch {
-	case exp == 0:
-		// an integer.
-		return f, true
-	// Exact integers are <= 10^15.
-	// Exact powers of ten are <= 10^22.
-	case exp > 0 && exp <= 15+22: // int * 10^k
-		// If exponent is big but number of digits is not,
-		// can move a few zeros into the integer part.
-		if exp > 22 {
-			f *= float64pow10[exp-22]
-			exp = 22
-		}
-		if f > 1e15 || f < -1e15 {
-			// the exponent was really too large.
-			return
-		}
-		return f * float64pow10[exp], true
-	case exp < 0 && exp >= -22: // int / 10^k
-		return f / float64pow10[-exp], true
-	}
-	return
-}
-
-// If possible to compute mantissa*10^exp to 32-bit float f exactly,
-// entirely in floating-point math, do so, avoiding the machinery above.
-func atof32exact(mantissa uint64, exp int, neg bool) (f float32, ok bool) {
-	if mantissa>>float32info.mantbits != 0 {
-		return
-	}
-	f = float32(mantissa)
-	if neg {
-		f = -f
-	}
-	switch {
-	case exp == 0:
-		return f, true
-	// Exact integers are <= 10^7.
-	// Exact powers of ten are <= 10^10.
-	case exp > 0 && exp <= 7+10: // int * 10^k
-		// If exponent is big but number of digits is not,
-		// can move a few zeros into the integer part.
-		if exp > 10 {
-			f *= float32pow10[exp-10]
-			exp = 10
-		}
-		if f > 1e7 || f < -1e7 {
-			// the exponent was really too large.
-			return
-		}
-		return f * float32pow10[exp], true
-	case exp < 0 && exp >= -10: // int / 10^k
-		return f / float32pow10[-exp], true
-	}
-	return
-}
-
-const fnParseFloat = "ParseFloat"
-
-func atof32(s []byte) (f float32, err error) {
-	if val, ok := special(s); ok {
-		return float32(val), nil
-	}
-
-	if optimize {
-		// Parse mantissa and exponent.
-		mantissa, exp, neg, trunc, ok := readFloat(s)
-		if ok {
-			// Try pure floating-point arithmetic conversion.
-			if !trunc {
-				if f, ok := atof32exact(mantissa, exp, neg); ok {
-					return f, nil
-				}
-			}
-			// Try another fast path.
-			ext := new(extFloat)
-			if ok := ext.AssignDecimal(mantissa, exp, neg, trunc, &float32info); ok {
-				b, ovf := ext.floatBits(&float32info)
-				f = math.Float32frombits(uint32(b))
-				if ovf {
-					err = rangeError(fnParseFloat, string(s))
-				}
-				return f, err
-			}
-		}
-	}
-	var d decimal
-	if !d.set(s) {
-		return 0, syntaxError(fnParseFloat, string(s))
-	}
-	b, ovf := d.floatBits(&float32info)
-	f = math.Float32frombits(uint32(b))
-	if ovf {
-		err = rangeError(fnParseFloat, string(s))
-	}
-	return f, err
-}
-
-func atof64(s []byte) (f float64, err error) {
-	if val, ok := special(s); ok {
-		return val, nil
-	}
-
-	if optimize {
-		// Parse mantissa and exponent.
-		mantissa, exp, neg, trunc, ok := readFloat(s)
-		if ok {
-			// Try pure floating-point arithmetic conversion.
-			if !trunc {
-				if f, ok := atof64exact(mantissa, exp, neg); ok {
-					return f, nil
-				}
-			}
-			// Try another fast path.
-			ext := new(extFloat)
-			if ok := ext.AssignDecimal(mantissa, exp, neg, trunc, &float64info); ok {
-				b, ovf := ext.floatBits(&float64info)
-				f = math.Float64frombits(b)
-				if ovf {
-					err = rangeError(fnParseFloat, string(s))
-				}
-				return f, err
-			}
-		}
-	}
-	var d decimal
-	if !d.set(s) {
-		return 0, syntaxError(fnParseFloat, string(s))
-	}
-	b, ovf := d.floatBits(&float64info)
-	f = math.Float64frombits(b)
-	if ovf {
-		err = rangeError(fnParseFloat, string(s))
-	}
-	return f, err
-}
-
-// ParseFloat converts the string s to a floating-point number
-// with the precision specified by bitSize: 32 for float32, or 64 for float64.
-// When bitSize=32, the result still has type float64, but it will be
-// convertible to float32 without changing its value.
-//
-// If s is well-formed and near a valid floating point number,
-// ParseFloat returns the nearest floating point number rounded
-// using IEEE754 unbiased rounding.
-//
-// The errors that ParseFloat returns have concrete type *NumError
-// and include err.Num = s.
-//
-// If s is not syntactically well-formed, ParseFloat returns err.Err = ErrSyntax.
-//
-// If s is syntactically well-formed but is more than 1/2 ULP
-// away from the largest floating point number of the given size,
-// ParseFloat returns f = ±Inf, err.Err = ErrRange.
-func ParseFloat(s []byte, bitSize int) (f float64, err error) {
-	if bitSize == 32 {
-		f1, err1 := atof32(s)
-		return float64(f1), err1
-	}
-	f1, err1 := atof64(s)
-	return f1, err1
-}
-
-// oroginal: strconv/decimal.go, but not exported, and needed for PareFloat.
-
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Multiprecision decimal numbers.
-// For floating-point formatting only; not general purpose.
-// Only operations are assign and (binary) left/right shift.
-// Can do binary floating point in multiprecision decimal precisely
-// because 2 divides 10; cannot do decimal floating point
-// in multiprecision binary precisely.
-
-type decimal struct {
-	d     [800]byte // digits
-	nd    int       // number of digits used
-	dp    int       // decimal point
-	neg   bool
-	trunc bool // discarded nonzero digits beyond d[:nd]
-}
-
-func (a *decimal) String() string {
-	n := 10 + a.nd
-	if a.dp > 0 {
-		n += a.dp
-	}
-	if a.dp < 0 {
-		n += -a.dp
-	}
-
-	buf := make([]byte, n)
-	w := 0
-	switch {
-	case a.nd == 0:
-		return "0"
-
-	case a.dp <= 0:
-		// zeros fill space between decimal point and digits
-		buf[w] = '0'
-		w++
-		buf[w] = '.'
-		w++
-		w += digitZero(buf[w : w+-a.dp])
-		w += copy(buf[w:], a.d[0:a.nd])
-
-	case a.dp < a.nd:
-		// decimal point in middle of digits
-		w += copy(buf[w:], a.d[0:a.dp])
-		buf[w] = '.'
-		w++
-		w += copy(buf[w:], a.d[a.dp:a.nd])
-
-	default:
-		// zeros fill space between digits and decimal point
-		w += copy(buf[w:], a.d[0:a.nd])
-		w += digitZero(buf[w : w+a.dp-a.nd])
-	}
-	return string(buf[0:w])
-}
-
-func digitZero(dst []byte) int {
-	for i := range dst {
-		dst[i] = '0'
-	}
-	return len(dst)
-}
-
-// trim trailing zeros from number.
-// (They are meaningless; the decimal point is tracked
-// independent of the number of digits.)
-func trim(a *decimal) {
-	for a.nd > 0 && a.d[a.nd-1] == '0' {
-		a.nd--
-	}
-	if a.nd == 0 {
-		a.dp = 0
-	}
-}
-
-// Assign v to a.
-func (a *decimal) Assign(v uint64) {
-	var buf [24]byte
-
-	// Write reversed decimal in buf.
-	n := 0
-	for v > 0 {
-		v1 := v / 10
-		v -= 10 * v1
-		buf[n] = byte(v + '0')
-		n++
-		v = v1
-	}
-
-	// Reverse again to produce forward decimal in a.d.
-	a.nd = 0
-	for n--; n >= 0; n-- {
-		a.d[a.nd] = buf[n]
-		a.nd++
-	}
-	a.dp = a.nd
-	trim(a)
-}
-
-// Maximum shift that we can do in one pass without overflow.
-// Signed int has 31 bits, and we have to be able to accommodate 9<<k.
-const maxShift = 27
-
-// Binary shift right (* 2) by k bits.  k <= maxShift to avoid overflow.
-func rightShift(a *decimal, k uint) {
-	r := 0 // read pointer
-	w := 0 // write pointer
-
-	// Pick up enough leading digits to cover first shift.
-	n := 0
-	for ; n>>k == 0; r++ {
-		if r >= a.nd {
-			if n == 0 {
-				// a == 0; shouldn't get here, but handle anyway.
-				a.nd = 0
-				return
-			}
-			for n>>k == 0 {
-				n = n * 10
-				r++
-			}
-			break
-		}
-		c := int(a.d[r])
-		n = n*10 + c - '0'
-	}
-	a.dp -= r - 1
-
-	// Pick up a digit, put down a digit.
-	for ; r < a.nd; r++ {
-		c := int(a.d[r])
-		dig := n >> k
-		n -= dig << k
-		a.d[w] = byte(dig + '0')
-		w++
-		n = n*10 + c - '0'
-	}
-
-	// Put down extra digits.
-	for n > 0 {
-		dig := n >> k
-		n -= dig << k
-		if w < len(a.d) {
-			a.d[w] = byte(dig + '0')
-			w++
-		} else if dig > 0 {
-			a.trunc = true
-		}
-		n = n * 10
-	}
-
-	a.nd = w
-	trim(a)
-}
-
-// Cheat sheet for left shift: table indexed by shift count giving
-// number of new digits that will be introduced by that shift.
-//
-// For example, leftcheats[4] = {2, "625"}.  That means that
-// if we are shifting by 4 (multiplying by 16), it will add 2 digits
-// when the string prefix is "625" through "999", and one fewer digit
-// if the string prefix is "000" through "624".
-//
-// Credit for this trick goes to Ken.
-
-type leftCheat struct {
-	delta  int    // number of new digits
-	cutoff string //   minus one digit if original < a.
-}
-
-var leftcheats = []leftCheat{
-	// Leading digits of 1/2^i = 5^i.
-	// 5^23 is not an exact 64-bit floating point number,
-	// so have to use bc for the math.
-	/*
-		seq 27 | sed 's/^/5^/' | bc |
-		awk 'BEGIN{ print "\tleftCheat{ 0, \"\" }," }
-		{
-			log2 = log(2)/log(10)
-			printf("\tleftCheat{ %d, \"%s\" },\t// * %d\n",
-				int(log2*NR+1), $0, 2**NR)
-		}'
-	*/
-	{0, ""},
-	{1, "5"},                   // * 2
-	{1, "25"},                  // * 4
-	{1, "125"},                 // * 8
-	{2, "625"},                 // * 16
-	{2, "3125"},                // * 32
-	{2, "15625"},               // * 64
-	{3, "78125"},               // * 128
-	{3, "390625"},              // * 256
-	{3, "1953125"},             // * 512
-	{4, "9765625"},             // * 1024
-	{4, "48828125"},            // * 2048
-	{4, "244140625"},           // * 4096
-	{4, "1220703125"},          // * 8192
-	{5, "6103515625"},          // * 16384
-	{5, "30517578125"},         // * 32768
-	{5, "152587890625"},        // * 65536
-	{6, "762939453125"},        // * 131072
-	{6, "3814697265625"},       // * 262144
-	{6, "19073486328125"},      // * 524288
-	{7, "95367431640625"},      // * 1048576
-	{7, "476837158203125"},     // * 2097152
-	{7, "2384185791015625"},    // * 4194304
-	{7, "11920928955078125"},   // * 8388608
-	{8, "59604644775390625"},   // * 16777216
-	{8, "298023223876953125"},  // * 33554432
-	{8, "1490116119384765625"}, // * 67108864
-	{9, "7450580596923828125"}, // * 134217728
-}
-
-// Is the leading prefix of b lexicographically less than s?
-func prefixIsLessThan(b []byte, s string) bool {
-	for i := 0; i < len(s); i++ {
-		if i >= len(b) {
-			return true
-		}
-		if b[i] != s[i] {
-			return b[i] < s[i]
-		}
-	}
-	return false
-}
-
-// Binary shift left (/ 2) by k bits.  k <= maxShift to avoid overflow.
-func leftShift(a *decimal, k uint) {
-	delta := leftcheats[k].delta
-	if prefixIsLessThan(a.d[0:a.nd], leftcheats[k].cutoff) {
-		delta--
-	}
-
-	r := a.nd         // read index
-	w := a.nd + delta // write index
-	n := 0
-
-	// Pick up a digit, put down a digit.
-	for r--; r >= 0; r-- {
-		n += (int(a.d[r]) - '0') << k
-		quo := n / 10
-		rem := n - 10*quo
-		w--
-		if w < len(a.d) {
-			a.d[w] = byte(rem + '0')
-		} else if rem != 0 {
-			a.trunc = true
-		}
-		n = quo
-	}
-
-	// Put down extra digits.
-	for n > 0 {
-		quo := n / 10
-		rem := n - 10*quo
-		w--
-		if w < len(a.d) {
-			a.d[w] = byte(rem + '0')
-		} else if rem != 0 {
-			a.trunc = true
-		}
-		n = quo
-	}
-
-	a.nd += delta
-	if a.nd >= len(a.d) {
-		a.nd = len(a.d)
-	}
-	a.dp += delta
-	trim(a)
-}
-
-// Binary shift left (k > 0) or right (k < 0).
-func (a *decimal) Shift(k int) {
-	switch {
-	case a.nd == 0:
-		// nothing to do: a == 0
-	case k > 0:
-		for k > maxShift {
-			leftShift(a, maxShift)
-			k -= maxShift
-		}
-		leftShift(a, uint(k))
-	case k < 0:
-		for k < -maxShift {
-			rightShift(a, maxShift)
-			k += maxShift
-		}
-		rightShift(a, uint(-k))
-	}
-}
-
-// If we chop a at nd digits, should we round up?
-func shouldRoundUp(a *decimal, nd int) bool {
-	if nd < 0 || nd >= a.nd {
-		return false
-	}
-	if a.d[nd] == '5' && nd+1 == a.nd { // exactly halfway - round to even
-		// if we truncated, a little higher than what's recorded - always round up
-		if a.trunc {
-			return true
-		}
-		return nd > 0 && (a.d[nd-1]-'0')%2 != 0
-	}
-	// not halfway - digit tells all
-	return a.d[nd] >= '5'
-}
-
-// Round a to nd digits (or fewer).
-// If nd is zero, it means we're rounding
-// just to the left of the digits, as in
-// 0.09 -> 0.1.
-func (a *decimal) Round(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-	if shouldRoundUp(a, nd) {
-		a.RoundUp(nd)
-	} else {
-		a.RoundDown(nd)
-	}
-}
-
-// Round a down to nd digits (or fewer).
-func (a *decimal) RoundDown(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-	a.nd = nd
-	trim(a)
-}
-
-// Round a up to nd digits (or fewer).
-func (a *decimal) RoundUp(nd int) {
-	if nd < 0 || nd >= a.nd {
-		return
-	}
-
-	// round up
-	for i := nd - 1; i >= 0; i-- {
-		c := a.d[i]
-		if c < '9' { // can stop after this digit
-			a.d[i]++
-			a.nd = i + 1
-			return
-		}
-	}
-
-	// Number is all 9s.
-	// Change to single 1 with adjusted decimal point.
-	a.d[0] = '1'
-	a.nd = 1
-	a.dp++
-}
-
-// Extract integer part, rounded appropriately.
-// No guarantees about overflow.
-func (a *decimal) RoundedInteger() uint64 {
-	if a.dp > 20 {
-		return 0xFFFFFFFFFFFFFFFF
-	}
-	var i int
-	n := uint64(0)
-	for i = 0; i < a.dp && i < a.nd; i++ {
-		n = n*10 + uint64(a.d[i]-'0')
-	}
-	for ; i < a.dp; i++ {
-		n *= 10
-	}
-	if shouldRoundUp(a, a.dp) {
-		n++
-	}
-	return n
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atoi.go b/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atoi.go
deleted file mode 100644
index 06eb2ec29f..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/atoi.go
+++ /dev/null
@@ -1,213 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's strconv/atoi.go */
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package internal
-
-import (
-	"errors"
-	"strconv"
-)
-
-// ErrRange indicates that a value is out of range for the target type.
-var ErrRange = errors.New("value out of range")
-
-// ErrSyntax indicates that a value does not have the right syntax for the target type.
-var ErrSyntax = errors.New("invalid syntax")
-
-// A NumError records a failed conversion.
-type NumError struct {
-	Func string // the failing function (ParseBool, ParseInt, ParseUint, ParseFloat)
-	Num  string // the input
-	Err  error  // the reason the conversion failed (ErrRange, ErrSyntax)
-}
-
-func (e *NumError) Error() string {
-	return "strconv." + e.Func + ": " + "parsing " + strconv.Quote(e.Num) + ": " + e.Err.Error()
-}
-
-func syntaxError(fn, str string) *NumError {
-	return &NumError{fn, str, ErrSyntax}
-}
-
-func rangeError(fn, str string) *NumError {
-	return &NumError{fn, str, ErrRange}
-}
-
-const intSize = 32 << uint(^uint(0)>>63)
-
-// IntSize is the size in bits of an int or uint value.
-const IntSize = intSize
-
-// Return the first number n such that n*base >= 1<<64.
-func cutoff64(base int) uint64 {
-	if base < 2 {
-		return 0
-	}
-	return (1<<64-1)/uint64(base) + 1
-}
-
-// ParseUint is like ParseInt but for unsigned numbers, and oeprating on []byte
-func ParseUint(s []byte, base int, bitSize int) (n uint64, err error) {
-	var cutoff, maxVal uint64
-
-	if bitSize == 0 {
-		bitSize = int(IntSize)
-	}
-
-	s0 := s
-	switch {
-	case len(s) < 1:
-		err = ErrSyntax
-		goto Error
-
-	case 2 <= base && base <= 36:
-		// valid base; nothing to do
-
-	case base == 0:
-		// Look for octal, hex prefix.
-		switch {
-		case s[0] == '0' && len(s) > 1 && (s[1] == 'x' || s[1] == 'X'):
-			base = 16
-			s = s[2:]
-			if len(s) < 1 {
-				err = ErrSyntax
-				goto Error
-			}
-		case s[0] == '0':
-			base = 8
-		default:
-			base = 10
-		}
-
-	default:
-		err = errors.New("invalid base " + strconv.Itoa(base))
-		goto Error
-	}
-
-	n = 0
-	cutoff = cutoff64(base)
-	maxVal = 1<<uint(bitSize) - 1
-
-	for i := 0; i < len(s); i++ {
-		var v byte
-		d := s[i]
-		switch {
-		case '0' <= d && d <= '9':
-			v = d - '0'
-		case 'a' <= d && d <= 'z':
-			v = d - 'a' + 10
-		case 'A' <= d && d <= 'Z':
-			v = d - 'A' + 10
-		default:
-			n = 0
-			err = ErrSyntax
-			goto Error
-		}
-		if int(v) >= base {
-			n = 0
-			err = ErrSyntax
-			goto Error
-		}
-
-		if n >= cutoff {
-			// n*base overflows
-			n = 1<<64 - 1
-			err = ErrRange
-			goto Error
-		}
-		n *= uint64(base)
-
-		n1 := n + uint64(v)
-		if n1 < n || n1 > maxVal {
-			// n+v overflows
-			n = 1<<64 - 1
-			err = ErrRange
-			goto Error
-		}
-		n = n1
-	}
-
-	return n, nil
-
-Error:
-	return n, &NumError{"ParseUint", string(s0), err}
-}
-
-// ParseInt interprets a string s in the given base (2 to 36) and
-// returns the corresponding value i.  If base == 0, the base is
-// implied by the string's prefix: base 16 for "0x", base 8 for
-// "0", and base 10 otherwise.
-//
-// The bitSize argument specifies the integer type
-// that the result must fit into.  Bit sizes 0, 8, 16, 32, and 64
-// correspond to int, int8, int16, int32, and int64.
-//
-// The errors that ParseInt returns have concrete type *NumError
-// and include err.Num = s.  If s is empty or contains invalid
-// digits, err.Err = ErrSyntax and the returned value is 0;
-// if the value corresponding to s cannot be represented by a
-// signed integer of the given size, err.Err = ErrRange and the
-// returned value is the maximum magnitude integer of the
-// appropriate bitSize and sign.
-func ParseInt(s []byte, base int, bitSize int) (i int64, err error) {
-	const fnParseInt = "ParseInt"
-
-	if bitSize == 0 {
-		bitSize = int(IntSize)
-	}
-
-	// Empty string bad.
-	if len(s) == 0 {
-		return 0, syntaxError(fnParseInt, string(s))
-	}
-
-	// Pick off leading sign.
-	s0 := s
-	neg := false
-	if s[0] == '+' {
-		s = s[1:]
-	} else if s[0] == '-' {
-		neg = true
-		s = s[1:]
-	}
-
-	// Convert unsigned and check range.
-	var un uint64
-	un, err = ParseUint(s, base, bitSize)
-	if err != nil && err.(*NumError).Err != ErrRange {
-		err.(*NumError).Func = fnParseInt
-		err.(*NumError).Num = string(s0)
-		return 0, err
-	}
-	cutoff := uint64(1 << uint(bitSize-1))
-	if !neg && un >= cutoff {
-		return int64(cutoff - 1), rangeError(fnParseInt, string(s0))
-	}
-	if neg && un > cutoff {
-		return -int64(cutoff), rangeError(fnParseInt, string(s0))
-	}
-	n := int64(un)
-	if neg {
-		n = -n
-	}
-	return n, nil
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/extfloat.go b/vendor/github.com/pquerna/ffjson/fflib/v1/internal/extfloat.go
deleted file mode 100644
index ab791085a4..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/extfloat.go
+++ /dev/null
@@ -1,668 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package internal
-
-// An extFloat represents an extended floating-point number, with more
-// precision than a float64. It does not try to save bits: the
-// number represented by the structure is mant*(2^exp), with a negative
-// sign if neg is true.
-type extFloat struct {
-	mant uint64
-	exp  int
-	neg  bool
-}
-
-// Powers of ten taken from double-conversion library.
-// http://code.google.com/p/double-conversion/
-const (
-	firstPowerOfTen = -348
-	stepPowerOfTen  = 8
-)
-
-var smallPowersOfTen = [...]extFloat{
-	{1 << 63, -63, false},        // 1
-	{0xa << 60, -60, false},      // 1e1
-	{0x64 << 57, -57, false},     // 1e2
-	{0x3e8 << 54, -54, false},    // 1e3
-	{0x2710 << 50, -50, false},   // 1e4
-	{0x186a0 << 47, -47, false},  // 1e5
-	{0xf4240 << 44, -44, false},  // 1e6
-	{0x989680 << 40, -40, false}, // 1e7
-}
-
-var powersOfTen = [...]extFloat{
-	{0xfa8fd5a0081c0288, -1220, false}, // 10^-348
-	{0xbaaee17fa23ebf76, -1193, false}, // 10^-340
-	{0x8b16fb203055ac76, -1166, false}, // 10^-332
-	{0xcf42894a5dce35ea, -1140, false}, // 10^-324
-	{0x9a6bb0aa55653b2d, -1113, false}, // 10^-316
-	{0xe61acf033d1a45df, -1087, false}, // 10^-308
-	{0xab70fe17c79ac6ca, -1060, false}, // 10^-300
-	{0xff77b1fcbebcdc4f, -1034, false}, // 10^-292
-	{0xbe5691ef416bd60c, -1007, false}, // 10^-284
-	{0x8dd01fad907ffc3c, -980, false},  // 10^-276
-	{0xd3515c2831559a83, -954, false},  // 10^-268
-	{0x9d71ac8fada6c9b5, -927, false},  // 10^-260
-	{0xea9c227723ee8bcb, -901, false},  // 10^-252
-	{0xaecc49914078536d, -874, false},  // 10^-244
-	{0x823c12795db6ce57, -847, false},  // 10^-236
-	{0xc21094364dfb5637, -821, false},  // 10^-228
-	{0x9096ea6f3848984f, -794, false},  // 10^-220
-	{0xd77485cb25823ac7, -768, false},  // 10^-212
-	{0xa086cfcd97bf97f4, -741, false},  // 10^-204
-	{0xef340a98172aace5, -715, false},  // 10^-196
-	{0xb23867fb2a35b28e, -688, false},  // 10^-188
-	{0x84c8d4dfd2c63f3b, -661, false},  // 10^-180
-	{0xc5dd44271ad3cdba, -635, false},  // 10^-172
-	{0x936b9fcebb25c996, -608, false},  // 10^-164
-	{0xdbac6c247d62a584, -582, false},  // 10^-156
-	{0xa3ab66580d5fdaf6, -555, false},  // 10^-148
-	{0xf3e2f893dec3f126, -529, false},  // 10^-140
-	{0xb5b5ada8aaff80b8, -502, false},  // 10^-132
-	{0x87625f056c7c4a8b, -475, false},  // 10^-124
-	{0xc9bcff6034c13053, -449, false},  // 10^-116
-	{0x964e858c91ba2655, -422, false},  // 10^-108
-	{0xdff9772470297ebd, -396, false},  // 10^-100
-	{0xa6dfbd9fb8e5b88f, -369, false},  // 10^-92
-	{0xf8a95fcf88747d94, -343, false},  // 10^-84
-	{0xb94470938fa89bcf, -316, false},  // 10^-76
-	{0x8a08f0f8bf0f156b, -289, false},  // 10^-68
-	{0xcdb02555653131b6, -263, false},  // 10^-60
-	{0x993fe2c6d07b7fac, -236, false},  // 10^-52
-	{0xe45c10c42a2b3b06, -210, false},  // 10^-44
-	{0xaa242499697392d3, -183, false},  // 10^-36
-	{0xfd87b5f28300ca0e, -157, false},  // 10^-28
-	{0xbce5086492111aeb, -130, false},  // 10^-20
-	{0x8cbccc096f5088cc, -103, false},  // 10^-12
-	{0xd1b71758e219652c, -77, false},   // 10^-4
-	{0x9c40000000000000, -50, false},   // 10^4
-	{0xe8d4a51000000000, -24, false},   // 10^12
-	{0xad78ebc5ac620000, 3, false},     // 10^20
-	{0x813f3978f8940984, 30, false},    // 10^28
-	{0xc097ce7bc90715b3, 56, false},    // 10^36
-	{0x8f7e32ce7bea5c70, 83, false},    // 10^44
-	{0xd5d238a4abe98068, 109, false},   // 10^52
-	{0x9f4f2726179a2245, 136, false},   // 10^60
-	{0xed63a231d4c4fb27, 162, false},   // 10^68
-	{0xb0de65388cc8ada8, 189, false},   // 10^76
-	{0x83c7088e1aab65db, 216, false},   // 10^84
-	{0xc45d1df942711d9a, 242, false},   // 10^92
-	{0x924d692ca61be758, 269, false},   // 10^100
-	{0xda01ee641a708dea, 295, false},   // 10^108
-	{0xa26da3999aef774a, 322, false},   // 10^116
-	{0xf209787bb47d6b85, 348, false},   // 10^124
-	{0xb454e4a179dd1877, 375, false},   // 10^132
-	{0x865b86925b9bc5c2, 402, false},   // 10^140
-	{0xc83553c5c8965d3d, 428, false},   // 10^148
-	{0x952ab45cfa97a0b3, 455, false},   // 10^156
-	{0xde469fbd99a05fe3, 481, false},   // 10^164
-	{0xa59bc234db398c25, 508, false},   // 10^172
-	{0xf6c69a72a3989f5c, 534, false},   // 10^180
-	{0xb7dcbf5354e9bece, 561, false},   // 10^188
-	{0x88fcf317f22241e2, 588, false},   // 10^196
-	{0xcc20ce9bd35c78a5, 614, false},   // 10^204
-	{0x98165af37b2153df, 641, false},   // 10^212
-	{0xe2a0b5dc971f303a, 667, false},   // 10^220
-	{0xa8d9d1535ce3b396, 694, false},   // 10^228
-	{0xfb9b7cd9a4a7443c, 720, false},   // 10^236
-	{0xbb764c4ca7a44410, 747, false},   // 10^244
-	{0x8bab8eefb6409c1a, 774, false},   // 10^252
-	{0xd01fef10a657842c, 800, false},   // 10^260
-	{0x9b10a4e5e9913129, 827, false},   // 10^268
-	{0xe7109bfba19c0c9d, 853, false},   // 10^276
-	{0xac2820d9623bf429, 880, false},   // 10^284
-	{0x80444b5e7aa7cf85, 907, false},   // 10^292
-	{0xbf21e44003acdd2d, 933, false},   // 10^300
-	{0x8e679c2f5e44ff8f, 960, false},   // 10^308
-	{0xd433179d9c8cb841, 986, false},   // 10^316
-	{0x9e19db92b4e31ba9, 1013, false},  // 10^324
-	{0xeb96bf6ebadf77d9, 1039, false},  // 10^332
-	{0xaf87023b9bf0ee6b, 1066, false},  // 10^340
-}
-
-// floatBits returns the bits of the float64 that best approximates
-// the extFloat passed as receiver. Overflow is set to true if
-// the resulting float64 is ±Inf.
-func (f *extFloat) floatBits(flt *floatInfo) (bits uint64, overflow bool) {
-	f.Normalize()
-
-	exp := f.exp + 63
-
-	// Exponent too small.
-	if exp < flt.bias+1 {
-		n := flt.bias + 1 - exp
-		f.mant >>= uint(n)
-		exp += n
-	}
-
-	// Extract 1+flt.mantbits bits from the 64-bit mantissa.
-	mant := f.mant >> (63 - flt.mantbits)
-	if f.mant&(1<<(62-flt.mantbits)) != 0 {
-		// Round up.
-		mant += 1
-	}
-
-	// Rounding might have added a bit; shift down.
-	if mant == 2<<flt.mantbits {
-		mant >>= 1
-		exp++
-	}
-
-	// Infinities.
-	if exp-flt.bias >= 1<<flt.expbits-1 {
-		// ±Inf
-		mant = 0
-		exp = 1<<flt.expbits - 1 + flt.bias
-		overflow = true
-	} else if mant&(1<<flt.mantbits) == 0 {
-		// Denormalized?
-		exp = flt.bias
-	}
-	// Assemble bits.
-	bits = mant & (uint64(1)<<flt.mantbits - 1)
-	bits |= uint64((exp-flt.bias)&(1<<flt.expbits-1)) << flt.mantbits
-	if f.neg {
-		bits |= 1 << (flt.mantbits + flt.expbits)
-	}
-	return
-}
-
-// AssignComputeBounds sets f to the floating point value
-// defined by mant, exp and precision given by flt. It returns
-// lower, upper such that any number in the closed interval
-// [lower, upper] is converted back to the same floating point number.
-func (f *extFloat) AssignComputeBounds(mant uint64, exp int, neg bool, flt *floatInfo) (lower, upper extFloat) {
-	f.mant = mant
-	f.exp = exp - int(flt.mantbits)
-	f.neg = neg
-	if f.exp <= 0 && mant == (mant>>uint(-f.exp))<<uint(-f.exp) {
-		// An exact integer
-		f.mant >>= uint(-f.exp)
-		f.exp = 0
-		return *f, *f
-	}
-	expBiased := exp - flt.bias
-
-	upper = extFloat{mant: 2*f.mant + 1, exp: f.exp - 1, neg: f.neg}
-	if mant != 1<<flt.mantbits || expBiased == 1 {
-		lower = extFloat{mant: 2*f.mant - 1, exp: f.exp - 1, neg: f.neg}
-	} else {
-		lower = extFloat{mant: 4*f.mant - 1, exp: f.exp - 2, neg: f.neg}
-	}
-	return
-}
-
-// Normalize normalizes f so that the highest bit of the mantissa is
-// set, and returns the number by which the mantissa was left-shifted.
-func (f *extFloat) Normalize() (shift uint) {
-	mant, exp := f.mant, f.exp
-	if mant == 0 {
-		return 0
-	}
-	if mant>>(64-32) == 0 {
-		mant <<= 32
-		exp -= 32
-	}
-	if mant>>(64-16) == 0 {
-		mant <<= 16
-		exp -= 16
-	}
-	if mant>>(64-8) == 0 {
-		mant <<= 8
-		exp -= 8
-	}
-	if mant>>(64-4) == 0 {
-		mant <<= 4
-		exp -= 4
-	}
-	if mant>>(64-2) == 0 {
-		mant <<= 2
-		exp -= 2
-	}
-	if mant>>(64-1) == 0 {
-		mant <<= 1
-		exp -= 1
-	}
-	shift = uint(f.exp - exp)
-	f.mant, f.exp = mant, exp
-	return
-}
-
-// Multiply sets f to the product f*g: the result is correctly rounded,
-// but not normalized.
-func (f *extFloat) Multiply(g extFloat) {
-	fhi, flo := f.mant>>32, uint64(uint32(f.mant))
-	ghi, glo := g.mant>>32, uint64(uint32(g.mant))
-
-	// Cross products.
-	cross1 := fhi * glo
-	cross2 := flo * ghi
-
-	// f.mant*g.mant is fhi*ghi << 64 + (cross1+cross2) << 32 + flo*glo
-	f.mant = fhi*ghi + (cross1 >> 32) + (cross2 >> 32)
-	rem := uint64(uint32(cross1)) + uint64(uint32(cross2)) + ((flo * glo) >> 32)
-	// Round up.
-	rem += (1 << 31)
-
-	f.mant += (rem >> 32)
-	f.exp = f.exp + g.exp + 64
-}
-
-var uint64pow10 = [...]uint64{
-	1, 1e1, 1e2, 1e3, 1e4, 1e5, 1e6, 1e7, 1e8, 1e9,
-	1e10, 1e11, 1e12, 1e13, 1e14, 1e15, 1e16, 1e17, 1e18, 1e19,
-}
-
-// AssignDecimal sets f to an approximate value mantissa*10^exp. It
-// returns true if the value represented by f is guaranteed to be the
-// best approximation of d after being rounded to a float64 or
-// float32 depending on flt.
-func (f *extFloat) AssignDecimal(mantissa uint64, exp10 int, neg bool, trunc bool, flt *floatInfo) (ok bool) {
-	const uint64digits = 19
-	const errorscale = 8
-	errors := 0 // An upper bound for error, computed in errorscale*ulp.
-	if trunc {
-		// the decimal number was truncated.
-		errors += errorscale / 2
-	}
-
-	f.mant = mantissa
-	f.exp = 0
-	f.neg = neg
-
-	// Multiply by powers of ten.
-	i := (exp10 - firstPowerOfTen) / stepPowerOfTen
-	if exp10 < firstPowerOfTen || i >= len(powersOfTen) {
-		return false
-	}
-	adjExp := (exp10 - firstPowerOfTen) % stepPowerOfTen
-
-	// We multiply by exp%step
-	if adjExp < uint64digits && mantissa < uint64pow10[uint64digits-adjExp] {
-		// We can multiply the mantissa exactly.
-		f.mant *= uint64pow10[adjExp]
-		f.Normalize()
-	} else {
-		f.Normalize()
-		f.Multiply(smallPowersOfTen[adjExp])
-		errors += errorscale / 2
-	}
-
-	// We multiply by 10 to the exp - exp%step.
-	f.Multiply(powersOfTen[i])
-	if errors > 0 {
-		errors += 1
-	}
-	errors += errorscale / 2
-
-	// Normalize
-	shift := f.Normalize()
-	errors <<= shift
-
-	// Now f is a good approximation of the decimal.
-	// Check whether the error is too large: that is, if the mantissa
-	// is perturbated by the error, the resulting float64 will change.
-	// The 64 bits mantissa is 1 + 52 bits for float64 + 11 extra bits.
-	//
-	// In many cases the approximation will be good enough.
-	denormalExp := flt.bias - 63
-	var extrabits uint
-	if f.exp <= denormalExp {
-		// f.mant * 2^f.exp is smaller than 2^(flt.bias+1).
-		extrabits = uint(63 - flt.mantbits + 1 + uint(denormalExp-f.exp))
-	} else {
-		extrabits = uint(63 - flt.mantbits)
-	}
-
-	halfway := uint64(1) << (extrabits - 1)
-	mant_extra := f.mant & (1<<extrabits - 1)
-
-	// Do a signed comparison here! If the error estimate could make
-	// the mantissa round differently for the conversion to double,
-	// then we can't give a definite answer.
-	if int64(halfway)-int64(errors) < int64(mant_extra) &&
-		int64(mant_extra) < int64(halfway)+int64(errors) {
-		return false
-	}
-	return true
-}
-
-// Frexp10 is an analogue of math.Frexp for decimal powers. It scales
-// f by an approximate power of ten 10^-exp, and returns exp10, so
-// that f*10^exp10 has the same value as the old f, up to an ulp,
-// as well as the index of 10^-exp in the powersOfTen table.
-func (f *extFloat) frexp10() (exp10, index int) {
-	// The constants expMin and expMax constrain the final value of the
-	// binary exponent of f. We want a small integral part in the result
-	// because finding digits of an integer requires divisions, whereas
-	// digits of the fractional part can be found by repeatedly multiplying
-	// by 10.
-	const expMin = -60
-	const expMax = -32
-	// Find power of ten such that x * 10^n has a binary exponent
-	// between expMin and expMax.
-	approxExp10 := ((expMin+expMax)/2 - f.exp) * 28 / 93 // log(10)/log(2) is close to 93/28.
-	i := (approxExp10 - firstPowerOfTen) / stepPowerOfTen
-Loop:
-	for {
-		exp := f.exp + powersOfTen[i].exp + 64
-		switch {
-		case exp < expMin:
-			i++
-		case exp > expMax:
-			i--
-		default:
-			break Loop
-		}
-	}
-	// Apply the desired decimal shift on f. It will have exponent
-	// in the desired range. This is multiplication by 10^-exp10.
-	f.Multiply(powersOfTen[i])
-
-	return -(firstPowerOfTen + i*stepPowerOfTen), i
-}
-
-// frexp10Many applies a common shift by a power of ten to a, b, c.
-func frexp10Many(a, b, c *extFloat) (exp10 int) {
-	exp10, i := c.frexp10()
-	a.Multiply(powersOfTen[i])
-	b.Multiply(powersOfTen[i])
-	return
-}
-
-// FixedDecimal stores in d the first n significant digits
-// of the decimal representation of f. It returns false
-// if it cannot be sure of the answer.
-func (f *extFloat) FixedDecimal(d *decimalSlice, n int) bool {
-	if f.mant == 0 {
-		d.nd = 0
-		d.dp = 0
-		d.neg = f.neg
-		return true
-	}
-	if n == 0 {
-		panic("strconv: internal error: extFloat.FixedDecimal called with n == 0")
-	}
-	// Multiply by an appropriate power of ten to have a reasonable
-	// number to process.
-	f.Normalize()
-	exp10, _ := f.frexp10()
-
-	shift := uint(-f.exp)
-	integer := uint32(f.mant >> shift)
-	fraction := f.mant - (uint64(integer) << shift)
-	ε := uint64(1) // ε is the uncertainty we have on the mantissa of f.
-
-	// Write exactly n digits to d.
-	needed := n        // how many digits are left to write.
-	integerDigits := 0 // the number of decimal digits of integer.
-	pow10 := uint64(1) // the power of ten by which f was scaled.
-	for i, pow := 0, uint64(1); i < 20; i++ {
-		if pow > uint64(integer) {
-			integerDigits = i
-			break
-		}
-		pow *= 10
-	}
-	rest := integer
-	if integerDigits > needed {
-		// the integral part is already large, trim the last digits.
-		pow10 = uint64pow10[integerDigits-needed]
-		integer /= uint32(pow10)
-		rest -= integer * uint32(pow10)
-	} else {
-		rest = 0
-	}
-
-	// Write the digits of integer: the digits of rest are omitted.
-	var buf [32]byte
-	pos := len(buf)
-	for v := integer; v > 0; {
-		v1 := v / 10
-		v -= 10 * v1
-		pos--
-		buf[pos] = byte(v + '0')
-		v = v1
-	}
-	for i := pos; i < len(buf); i++ {
-		d.d[i-pos] = buf[i]
-	}
-	nd := len(buf) - pos
-	d.nd = nd
-	d.dp = integerDigits + exp10
-	needed -= nd
-
-	if needed > 0 {
-		if rest != 0 || pow10 != 1 {
-			panic("strconv: internal error, rest != 0 but needed > 0")
-		}
-		// Emit digits for the fractional part. Each time, 10*fraction
-		// fits in a uint64 without overflow.
-		for needed > 0 {
-			fraction *= 10
-			ε *= 10 // the uncertainty scales as we multiply by ten.
-			if 2*ε > 1<<shift {
-				// the error is so large it could modify which digit to write, abort.
-				return false
-			}
-			digit := fraction >> shift
-			d.d[nd] = byte(digit + '0')
-			fraction -= digit << shift
-			nd++
-			needed--
-		}
-		d.nd = nd
-	}
-
-	// We have written a truncation of f (a numerator / 10^d.dp). The remaining part
-	// can be interpreted as a small number (< 1) to be added to the last digit of the
-	// numerator.
-	//
-	// If rest > 0, the amount is:
-	//    (rest<<shift | fraction) / (pow10 << shift)
-	//    fraction being known with a ±ε uncertainty.
-	//    The fact that n > 0 guarantees that pow10 << shift does not overflow a uint64.
-	//
-	// If rest = 0, pow10 == 1 and the amount is
-	//    fraction / (1 << shift)
-	//    fraction being known with a ±ε uncertainty.
-	//
-	// We pass this information to the rounding routine for adjustment.
-
-	ok := adjustLastDigitFixed(d, uint64(rest)<<shift|fraction, pow10, shift, ε)
-	if !ok {
-		return false
-	}
-	// Trim trailing zeros.
-	for i := d.nd - 1; i >= 0; i-- {
-		if d.d[i] != '0' {
-			d.nd = i + 1
-			break
-		}
-	}
-	return true
-}
-
-// adjustLastDigitFixed assumes d contains the representation of the integral part
-// of some number, whose fractional part is num / (den << shift). The numerator
-// num is only known up to an uncertainty of size ε, assumed to be less than
-// (den << shift)/2.
-//
-// It will increase the last digit by one to account for correct rounding, typically
-// when the fractional part is greater than 1/2, and will return false if ε is such
-// that no correct answer can be given.
-func adjustLastDigitFixed(d *decimalSlice, num, den uint64, shift uint, ε uint64) bool {
-	if num > den<<shift {
-		panic("strconv: num > den<<shift in adjustLastDigitFixed")
-	}
-	if 2*ε > den<<shift {
-		panic("strconv: ε > (den<<shift)/2")
-	}
-	if 2*(num+ε) < den<<shift {
-		return true
-	}
-	if 2*(num-ε) > den<<shift {
-		// increment d by 1.
-		i := d.nd - 1
-		for ; i >= 0; i-- {
-			if d.d[i] == '9' {
-				d.nd--
-			} else {
-				break
-			}
-		}
-		if i < 0 {
-			d.d[0] = '1'
-			d.nd = 1
-			d.dp++
-		} else {
-			d.d[i]++
-		}
-		return true
-	}
-	return false
-}
-
-// ShortestDecimal stores in d the shortest decimal representation of f
-// which belongs to the open interval (lower, upper), where f is supposed
-// to lie. It returns false whenever the result is unsure. The implementation
-// uses the Grisu3 algorithm.
-func (f *extFloat) ShortestDecimal(d *decimalSlice, lower, upper *extFloat) bool {
-	if f.mant == 0 {
-		d.nd = 0
-		d.dp = 0
-		d.neg = f.neg
-		return true
-	}
-	if f.exp == 0 && *lower == *f && *lower == *upper {
-		// an exact integer.
-		var buf [24]byte
-		n := len(buf) - 1
-		for v := f.mant; v > 0; {
-			v1 := v / 10
-			v -= 10 * v1
-			buf[n] = byte(v + '0')
-			n--
-			v = v1
-		}
-		nd := len(buf) - n - 1
-		for i := 0; i < nd; i++ {
-			d.d[i] = buf[n+1+i]
-		}
-		d.nd, d.dp = nd, nd
-		for d.nd > 0 && d.d[d.nd-1] == '0' {
-			d.nd--
-		}
-		if d.nd == 0 {
-			d.dp = 0
-		}
-		d.neg = f.neg
-		return true
-	}
-	upper.Normalize()
-	// Uniformize exponents.
-	if f.exp > upper.exp {
-		f.mant <<= uint(f.exp - upper.exp)
-		f.exp = upper.exp
-	}
-	if lower.exp > upper.exp {
-		lower.mant <<= uint(lower.exp - upper.exp)
-		lower.exp = upper.exp
-	}
-
-	exp10 := frexp10Many(lower, f, upper)
-	// Take a safety margin due to rounding in frexp10Many, but we lose precision.
-	upper.mant++
-	lower.mant--
-
-	// The shortest representation of f is either rounded up or down, but
-	// in any case, it is a truncation of upper.
-	shift := uint(-upper.exp)
-	integer := uint32(upper.mant >> shift)
-	fraction := upper.mant - (uint64(integer) << shift)
-
-	// How far we can go down from upper until the result is wrong.
-	allowance := upper.mant - lower.mant
-	// How far we should go to get a very precise result.
-	targetDiff := upper.mant - f.mant
-
-	// Count integral digits: there are at most 10.
-	var integerDigits int
-	for i, pow := 0, uint64(1); i < 20; i++ {
-		if pow > uint64(integer) {
-			integerDigits = i
-			break
-		}
-		pow *= 10
-	}
-	for i := 0; i < integerDigits; i++ {
-		pow := uint64pow10[integerDigits-i-1]
-		digit := integer / uint32(pow)
-		d.d[i] = byte(digit + '0')
-		integer -= digit * uint32(pow)
-		// evaluate whether we should stop.
-		if currentDiff := uint64(integer)<<shift + fraction; currentDiff < allowance {
-			d.nd = i + 1
-			d.dp = integerDigits + exp10
-			d.neg = f.neg
-			// Sometimes allowance is so large the last digit might need to be
-			// decremented to get closer to f.
-			return adjustLastDigit(d, currentDiff, targetDiff, allowance, pow<<shift, 2)
-		}
-	}
-	d.nd = integerDigits
-	d.dp = d.nd + exp10
-	d.neg = f.neg
-
-	// Compute digits of the fractional part. At each step fraction does not
-	// overflow. The choice of minExp implies that fraction is less than 2^60.
-	var digit int
-	multiplier := uint64(1)
-	for {
-		fraction *= 10
-		multiplier *= 10
-		digit = int(fraction >> shift)
-		d.d[d.nd] = byte(digit + '0')
-		d.nd++
-		fraction -= uint64(digit) << shift
-		if fraction < allowance*multiplier {
-			// We are in the admissible range. Note that if allowance is about to
-			// overflow, that is, allowance > 2^64/10, the condition is automatically
-			// true due to the limited range of fraction.
-			return adjustLastDigit(d,
-				fraction, targetDiff*multiplier, allowance*multiplier,
-				1<<shift, multiplier*2)
-		}
-	}
-}
-
-// adjustLastDigit modifies d = x-currentDiff*ε, to get closest to
-// d = x-targetDiff*ε, without becoming smaller than x-maxDiff*ε.
-// It assumes that a decimal digit is worth ulpDecimal*ε, and that
-// all data is known with a error estimate of ulpBinary*ε.
-func adjustLastDigit(d *decimalSlice, currentDiff, targetDiff, maxDiff, ulpDecimal, ulpBinary uint64) bool {
-	if ulpDecimal < 2*ulpBinary {
-		// Approximation is too wide.
-		return false
-	}
-	for currentDiff+ulpDecimal/2+ulpBinary < targetDiff {
-		d.d[d.nd-1]--
-		currentDiff += ulpDecimal
-	}
-	if currentDiff+ulpDecimal <= targetDiff+ulpDecimal/2+ulpBinary {
-		// we have two choices, and don't know what to do.
-		return false
-	}
-	if currentDiff < ulpBinary || currentDiff > maxDiff-ulpBinary {
-		// we went too far
-		return false
-	}
-	if d.nd == 1 && d.d[0] == '0' {
-		// the number has actually reached zero.
-		d.nd = 0
-		d.dp = 0
-	}
-	return true
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/ftoa.go b/vendor/github.com/pquerna/ffjson/fflib/v1/internal/ftoa.go
deleted file mode 100644
index 253f83b45a..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/internal/ftoa.go
+++ /dev/null
@@ -1,475 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Binary to decimal floating point conversion.
-// Algorithm:
-//   1) store mantissa in multiprecision decimal
-//   2) shift decimal by exponent
-//   3) read digits out & format
-
-package internal
-
-import "math"
-
-// TODO: move elsewhere?
-type floatInfo struct {
-	mantbits uint
-	expbits  uint
-	bias     int
-}
-
-var float32info = floatInfo{23, 8, -127}
-var float64info = floatInfo{52, 11, -1023}
-
-// FormatFloat converts the floating-point number f to a string,
-// according to the format fmt and precision prec.  It rounds the
-// result assuming that the original was obtained from a floating-point
-// value of bitSize bits (32 for float32, 64 for float64).
-//
-// The format fmt is one of
-// 'b' (-ddddp±ddd, a binary exponent),
-// 'e' (-d.dddde±dd, a decimal exponent),
-// 'E' (-d.ddddE±dd, a decimal exponent),
-// 'f' (-ddd.dddd, no exponent),
-// 'g' ('e' for large exponents, 'f' otherwise), or
-// 'G' ('E' for large exponents, 'f' otherwise).
-//
-// The precision prec controls the number of digits
-// (excluding the exponent) printed by the 'e', 'E', 'f', 'g', and 'G' formats.
-// For 'e', 'E', and 'f' it is the number of digits after the decimal point.
-// For 'g' and 'G' it is the total number of digits.
-// The special precision -1 uses the smallest number of digits
-// necessary such that ParseFloat will return f exactly.
-func formatFloat(f float64, fmt byte, prec, bitSize int) string {
-	return string(genericFtoa(make([]byte, 0, max(prec+4, 24)), f, fmt, prec, bitSize))
-}
-
-// AppendFloat appends the string form of the floating-point number f,
-// as generated by FormatFloat, to dst and returns the extended buffer.
-func appendFloat(dst []byte, f float64, fmt byte, prec int, bitSize int) []byte {
-	return genericFtoa(dst, f, fmt, prec, bitSize)
-}
-
-func genericFtoa(dst []byte, val float64, fmt byte, prec, bitSize int) []byte {
-	var bits uint64
-	var flt *floatInfo
-	switch bitSize {
-	case 32:
-		bits = uint64(math.Float32bits(float32(val)))
-		flt = &float32info
-	case 64:
-		bits = math.Float64bits(val)
-		flt = &float64info
-	default:
-		panic("strconv: illegal AppendFloat/FormatFloat bitSize")
-	}
-
-	neg := bits>>(flt.expbits+flt.mantbits) != 0
-	exp := int(bits>>flt.mantbits) & (1<<flt.expbits - 1)
-	mant := bits & (uint64(1)<<flt.mantbits - 1)
-
-	switch exp {
-	case 1<<flt.expbits - 1:
-		// Inf, NaN
-		var s string
-		switch {
-		case mant != 0:
-			s = "NaN"
-		case neg:
-			s = "-Inf"
-		default:
-			s = "+Inf"
-		}
-		return append(dst, s...)
-
-	case 0:
-		// denormalized
-		exp++
-
-	default:
-		// add implicit top bit
-		mant |= uint64(1) << flt.mantbits
-	}
-	exp += flt.bias
-
-	// Pick off easy binary format.
-	if fmt == 'b' {
-		return fmtB(dst, neg, mant, exp, flt)
-	}
-
-	if !optimize {
-		return bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-	}
-
-	var digs decimalSlice
-	ok := false
-	// Negative precision means "only as much as needed to be exact."
-	shortest := prec < 0
-	if shortest {
-		// Try Grisu3 algorithm.
-		f := new(extFloat)
-		lower, upper := f.AssignComputeBounds(mant, exp, neg, flt)
-		var buf [32]byte
-		digs.d = buf[:]
-		ok = f.ShortestDecimal(&digs, &lower, &upper)
-		if !ok {
-			return bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-		}
-		// Precision for shortest representation mode.
-		switch fmt {
-		case 'e', 'E':
-			prec = digs.nd - 1
-		case 'f':
-			prec = max(digs.nd-digs.dp, 0)
-		case 'g', 'G':
-			prec = digs.nd
-		}
-	} else if fmt != 'f' {
-		// Fixed number of digits.
-		digits := prec
-		switch fmt {
-		case 'e', 'E':
-			digits++
-		case 'g', 'G':
-			if prec == 0 {
-				prec = 1
-			}
-			digits = prec
-		}
-		if digits <= 15 {
-			// try fast algorithm when the number of digits is reasonable.
-			var buf [24]byte
-			digs.d = buf[:]
-			f := extFloat{mant, exp - int(flt.mantbits), neg}
-			ok = f.FixedDecimal(&digs, digits)
-		}
-	}
-	if !ok {
-		return bigFtoa(dst, prec, fmt, neg, mant, exp, flt)
-	}
-	return formatDigits(dst, shortest, neg, digs, prec, fmt)
-}
-
-// bigFtoa uses multiprecision computations to format a float.
-func bigFtoa(dst []byte, prec int, fmt byte, neg bool, mant uint64, exp int, flt *floatInfo) []byte {
-	d := new(decimal)
-	d.Assign(mant)
-	d.Shift(exp - int(flt.mantbits))
-	var digs decimalSlice
-	shortest := prec < 0
-	if shortest {
-		roundShortest(d, mant, exp, flt)
-		digs = decimalSlice{d: d.d[:], nd: d.nd, dp: d.dp}
-		// Precision for shortest representation mode.
-		switch fmt {
-		case 'e', 'E':
-			prec = digs.nd - 1
-		case 'f':
-			prec = max(digs.nd-digs.dp, 0)
-		case 'g', 'G':
-			prec = digs.nd
-		}
-	} else {
-		// Round appropriately.
-		switch fmt {
-		case 'e', 'E':
-			d.Round(prec + 1)
-		case 'f':
-			d.Round(d.dp + prec)
-		case 'g', 'G':
-			if prec == 0 {
-				prec = 1
-			}
-			d.Round(prec)
-		}
-		digs = decimalSlice{d: d.d[:], nd: d.nd, dp: d.dp}
-	}
-	return formatDigits(dst, shortest, neg, digs, prec, fmt)
-}
-
-func formatDigits(dst []byte, shortest bool, neg bool, digs decimalSlice, prec int, fmt byte) []byte {
-	switch fmt {
-	case 'e', 'E':
-		return fmtE(dst, neg, digs, prec, fmt)
-	case 'f':
-		return fmtF(dst, neg, digs, prec)
-	case 'g', 'G':
-		// trailing fractional zeros in 'e' form will be trimmed.
-		eprec := prec
-		if eprec > digs.nd && digs.nd >= digs.dp {
-			eprec = digs.nd
-		}
-		// %e is used if the exponent from the conversion
-		// is less than -4 or greater than or equal to the precision.
-		// if precision was the shortest possible, use precision 6 for this decision.
-		if shortest {
-			eprec = 6
-		}
-		exp := digs.dp - 1
-		if exp < -4 || exp >= eprec {
-			if prec > digs.nd {
-				prec = digs.nd
-			}
-			return fmtE(dst, neg, digs, prec-1, fmt+'e'-'g')
-		}
-		if prec > digs.dp {
-			prec = digs.nd
-		}
-		return fmtF(dst, neg, digs, max(prec-digs.dp, 0))
-	}
-
-	// unknown format
-	return append(dst, '%', fmt)
-}
-
-// Round d (= mant * 2^exp) to the shortest number of digits
-// that will let the original floating point value be precisely
-// reconstructed.  Size is original floating point size (64 or 32).
-func roundShortest(d *decimal, mant uint64, exp int, flt *floatInfo) {
-	// If mantissa is zero, the number is zero; stop now.
-	if mant == 0 {
-		d.nd = 0
-		return
-	}
-
-	// Compute upper and lower such that any decimal number
-	// between upper and lower (possibly inclusive)
-	// will round to the original floating point number.
-
-	// We may see at once that the number is already shortest.
-	//
-	// Suppose d is not denormal, so that 2^exp <= d < 10^dp.
-	// The closest shorter number is at least 10^(dp-nd) away.
-	// The lower/upper bounds computed below are at distance
-	// at most 2^(exp-mantbits).
-	//
-	// So the number is already shortest if 10^(dp-nd) > 2^(exp-mantbits),
-	// or equivalently log2(10)*(dp-nd) > exp-mantbits.
-	// It is true if 332/100*(dp-nd) >= exp-mantbits (log2(10) > 3.32).
-	minexp := flt.bias + 1 // minimum possible exponent
-	if exp > minexp && 332*(d.dp-d.nd) >= 100*(exp-int(flt.mantbits)) {
-		// The number is already shortest.
-		return
-	}
-
-	// d = mant << (exp - mantbits)
-	// Next highest floating point number is mant+1 << exp-mantbits.
-	// Our upper bound is halfway between, mant*2+1 << exp-mantbits-1.
-	upper := new(decimal)
-	upper.Assign(mant*2 + 1)
-	upper.Shift(exp - int(flt.mantbits) - 1)
-
-	// d = mant << (exp - mantbits)
-	// Next lowest floating point number is mant-1 << exp-mantbits,
-	// unless mant-1 drops the significant bit and exp is not the minimum exp,
-	// in which case the next lowest is mant*2-1 << exp-mantbits-1.
-	// Either way, call it mantlo << explo-mantbits.
-	// Our lower bound is halfway between, mantlo*2+1 << explo-mantbits-1.
-	var mantlo uint64
-	var explo int
-	if mant > 1<<flt.mantbits || exp == minexp {
-		mantlo = mant - 1
-		explo = exp
-	} else {
-		mantlo = mant*2 - 1
-		explo = exp - 1
-	}
-	lower := new(decimal)
-	lower.Assign(mantlo*2 + 1)
-	lower.Shift(explo - int(flt.mantbits) - 1)
-
-	// The upper and lower bounds are possible outputs only if
-	// the original mantissa is even, so that IEEE round-to-even
-	// would round to the original mantissa and not the neighbors.
-	inclusive := mant%2 == 0
-
-	// Now we can figure out the minimum number of digits required.
-	// Walk along until d has distinguished itself from upper and lower.
-	for i := 0; i < d.nd; i++ {
-		var l, m, u byte // lower, middle, upper digits
-		if i < lower.nd {
-			l = lower.d[i]
-		} else {
-			l = '0'
-		}
-		m = d.d[i]
-		if i < upper.nd {
-			u = upper.d[i]
-		} else {
-			u = '0'
-		}
-
-		// Okay to round down (truncate) if lower has a different digit
-		// or if lower is inclusive and is exactly the result of rounding down.
-		okdown := l != m || (inclusive && l == m && i+1 == lower.nd)
-
-		// Okay to round up if upper has a different digit and
-		// either upper is inclusive or upper is bigger than the result of rounding up.
-		okup := m != u && (inclusive || m+1 < u || i+1 < upper.nd)
-
-		// If it's okay to do either, then round to the nearest one.
-		// If it's okay to do only one, do it.
-		switch {
-		case okdown && okup:
-			d.Round(i + 1)
-			return
-		case okdown:
-			d.RoundDown(i + 1)
-			return
-		case okup:
-			d.RoundUp(i + 1)
-			return
-		}
-	}
-}
-
-type decimalSlice struct {
-	d      []byte
-	nd, dp int
-	neg    bool
-}
-
-// %e: -d.ddddde±dd
-func fmtE(dst []byte, neg bool, d decimalSlice, prec int, fmt byte) []byte {
-	// sign
-	if neg {
-		dst = append(dst, '-')
-	}
-
-	// first digit
-	ch := byte('0')
-	if d.nd != 0 {
-		ch = d.d[0]
-	}
-	dst = append(dst, ch)
-
-	// .moredigits
-	if prec > 0 {
-		dst = append(dst, '.')
-		i := 1
-		m := d.nd + prec + 1 - max(d.nd, prec+1)
-		for i < m {
-			dst = append(dst, d.d[i])
-			i++
-		}
-		for i <= prec {
-			dst = append(dst, '0')
-			i++
-		}
-	}
-
-	// e±
-	dst = append(dst, fmt)
-	exp := d.dp - 1
-	if d.nd == 0 { // special case: 0 has exponent 0
-		exp = 0
-	}
-	if exp < 0 {
-		ch = '-'
-		exp = -exp
-	} else {
-		ch = '+'
-	}
-	dst = append(dst, ch)
-
-	// dddd
-	var buf [3]byte
-	i := len(buf)
-	for exp >= 10 {
-		i--
-		buf[i] = byte(exp%10 + '0')
-		exp /= 10
-	}
-	// exp < 10
-	i--
-	buf[i] = byte(exp + '0')
-
-	switch i {
-	case 0:
-		dst = append(dst, buf[0], buf[1], buf[2])
-	case 1:
-		dst = append(dst, buf[1], buf[2])
-	case 2:
-		// leading zeroes
-		dst = append(dst, '0', buf[2])
-	}
-	return dst
-}
-
-// %f: -ddddddd.ddddd
-func fmtF(dst []byte, neg bool, d decimalSlice, prec int) []byte {
-	// sign
-	if neg {
-		dst = append(dst, '-')
-	}
-
-	// integer, padded with zeros as needed.
-	if d.dp > 0 {
-		var i int
-		for i = 0; i < d.dp && i < d.nd; i++ {
-			dst = append(dst, d.d[i])
-		}
-		for ; i < d.dp; i++ {
-			dst = append(dst, '0')
-		}
-	} else {
-		dst = append(dst, '0')
-	}
-
-	// fraction
-	if prec > 0 {
-		dst = append(dst, '.')
-		for i := 0; i < prec; i++ {
-			ch := byte('0')
-			if j := d.dp + i; 0 <= j && j < d.nd {
-				ch = d.d[j]
-			}
-			dst = append(dst, ch)
-		}
-	}
-
-	return dst
-}
-
-// %b: -ddddddddp+ddd
-func fmtB(dst []byte, neg bool, mant uint64, exp int, flt *floatInfo) []byte {
-	var buf [50]byte
-	w := len(buf)
-	exp -= int(flt.mantbits)
-	esign := byte('+')
-	if exp < 0 {
-		esign = '-'
-		exp = -exp
-	}
-	n := 0
-	for exp > 0 || n < 1 {
-		n++
-		w--
-		buf[w] = byte(exp%10 + '0')
-		exp /= 10
-	}
-	w--
-	buf[w] = esign
-	w--
-	buf[w] = 'p'
-	n = 0
-	for mant > 0 || n < 1 {
-		n++
-		w--
-		buf[w] = byte(mant%10 + '0')
-		mant /= 10
-	}
-	if neg {
-		w--
-		buf[w] = '-'
-	}
-	return append(dst, buf[w:]...)
-}
-
-func max(a, b int) int {
-	if a > b {
-		return a
-	}
-	return b
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/iota.go b/vendor/github.com/pquerna/ffjson/fflib/v1/iota.go
deleted file mode 100644
index 3e50f0c418..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/iota.go
+++ /dev/null
@@ -1,161 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's strconv/iota.go */
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-import (
-	"io"
-)
-
-const (
-	digits   = "0123456789abcdefghijklmnopqrstuvwxyz"
-	digits01 = "0123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789"
-	digits10 = "0000000000111111111122222222223333333333444444444455555555556666666666777777777788888888889999999999"
-)
-
-var shifts = [len(digits) + 1]uint{
-	1 << 1: 1,
-	1 << 2: 2,
-	1 << 3: 3,
-	1 << 4: 4,
-	1 << 5: 5,
-}
-
-var smallNumbers = [][]byte{
-	[]byte("0"),
-	[]byte("1"),
-	[]byte("2"),
-	[]byte("3"),
-	[]byte("4"),
-	[]byte("5"),
-	[]byte("6"),
-	[]byte("7"),
-	[]byte("8"),
-	[]byte("9"),
-	[]byte("10"),
-}
-
-type FormatBitsWriter interface {
-	io.Writer
-	io.ByteWriter
-}
-
-type FormatBitsScratch struct{}
-
-//
-// DEPRECIATED: `scratch` is no longer used, FormatBits2 is available.
-//
-// FormatBits computes the string representation of u in the given base.
-// If neg is set, u is treated as negative int64 value. If append_ is
-// set, the string is appended to dst and the resulting byte slice is
-// returned as the first result value; otherwise the string is returned
-// as the second result value.
-//
-func FormatBits(scratch *FormatBitsScratch, dst FormatBitsWriter, u uint64, base int, neg bool) {
-	FormatBits2(dst, u, base, neg)
-}
-
-// FormatBits2 computes the string representation of u in the given base.
-// If neg is set, u is treated as negative int64 value. If append_ is
-// set, the string is appended to dst and the resulting byte slice is
-// returned as the first result value; otherwise the string is returned
-// as the second result value.
-//
-func FormatBits2(dst FormatBitsWriter, u uint64, base int, neg bool) {
-	if base < 2 || base > len(digits) {
-		panic("strconv: illegal AppendInt/FormatInt base")
-	}
-	// fast path for small common numbers
-	if u <= 10 {
-		if neg {
-			dst.WriteByte('-')
-		}
-		dst.Write(smallNumbers[u])
-		return
-	}
-
-	// 2 <= base && base <= len(digits)
-
-	var a = makeSlice(65)
-	//	var a [64 + 1]byte // +1 for sign of 64bit value in base 2
-	i := len(a)
-
-	if neg {
-		u = -u
-	}
-
-	// convert bits
-	if base == 10 {
-		// common case: use constants for / and % because
-		// the compiler can optimize it into a multiply+shift,
-		// and unroll loop
-		for u >= 100 {
-			i -= 2
-			q := u / 100
-			j := uintptr(u - q*100)
-			a[i+1] = digits01[j]
-			a[i+0] = digits10[j]
-			u = q
-		}
-		if u >= 10 {
-			i--
-			q := u / 10
-			a[i] = digits[uintptr(u-q*10)]
-			u = q
-		}
-
-	} else if s := shifts[base]; s > 0 {
-		// base is power of 2: use shifts and masks instead of / and %
-		b := uint64(base)
-		m := uintptr(b) - 1 // == 1<<s - 1
-		for u >= b {
-			i--
-			a[i] = digits[uintptr(u)&m]
-			u >>= s
-		}
-
-	} else {
-		// general case
-		b := uint64(base)
-		for u >= b {
-			i--
-			a[i] = digits[uintptr(u%b)]
-			u /= b
-		}
-	}
-
-	// u < base
-	i--
-	a[i] = digits[uintptr(u)]
-
-	// add sign, if any
-	if neg {
-		i--
-		a[i] = '-'
-	}
-
-	dst.Write(a[i:])
-
-	Pool(a)
-
-	return
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/jsonstring.go b/vendor/github.com/pquerna/ffjson/fflib/v1/jsonstring.go
deleted file mode 100644
index 513b45d570..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/jsonstring.go
+++ /dev/null
@@ -1,512 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on Go stdlib's encoding/json/encode.go */
-// Copyright 2010 The Go Authors.  All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package v1
-
-import (
-	"io"
-	"unicode/utf8"
-	"strconv"
-	"unicode/utf16"
-	"unicode"
-)
-
-const hex = "0123456789abcdef"
-
-type JsonStringWriter interface {
-	io.Writer
-	io.ByteWriter
-	stringWriter
-}
-
-func WriteJsonString(buf JsonStringWriter, s string) {
-	WriteJson(buf, []byte(s))
-}
-
-/**
- * Function ported from encoding/json: func (e *encodeState) string(s string) (int, error)
- */
-func WriteJson(buf JsonStringWriter, s []byte) {
-	buf.WriteByte('"')
-	start := 0
-	for i := 0; i < len(s); {
-		if b := s[i]; b < utf8.RuneSelf {
-			/*
-				if 0x20 <= b && b != '\\' && b != '"' && b != '<' && b != '>' && b != '&' {
-					i++
-					continue
-				}
-			*/
-			if lt[b] == true {
-				i++
-				continue
-			}
-
-			if start < i {
-				buf.Write(s[start:i])
-			}
-			switch b {
-			case '\\', '"':
-				buf.WriteByte('\\')
-				buf.WriteByte(b)
-			case '\n':
-				buf.WriteByte('\\')
-				buf.WriteByte('n')
-			case '\r':
-				buf.WriteByte('\\')
-				buf.WriteByte('r')
-			default:
-				// This encodes bytes < 0x20 except for \n and \r,
-				// as well as < and >. The latter are escaped because they
-				// can lead to security holes when user-controlled strings
-				// are rendered into JSON and served to some browsers.
-				buf.WriteString(`\u00`)
-				buf.WriteByte(hex[b>>4])
-				buf.WriteByte(hex[b&0xF])
-			}
-			i++
-			start = i
-			continue
-		}
-		c, size := utf8.DecodeRune(s[i:])
-		if c == utf8.RuneError && size == 1 {
-			if start < i {
-				buf.Write(s[start:i])
-			}
-			buf.WriteString(`\ufffd`)
-			i += size
-			start = i
-			continue
-		}
-		// U+2028 is LINE SEPARATOR.
-		// U+2029 is PARAGRAPH SEPARATOR.
-		// They are both technically valid characters in JSON strings,
-		// but don't work in JSONP, which has to be evaluated as JavaScript,
-		// and can lead to security holes there. It is valid JSON to
-		// escape them, so we do so unconditionally.
-		// See http://timelessrepo.com/json-isnt-a-javascript-subset for discussion.
-		if c == '\u2028' || c == '\u2029' {
-			if start < i {
-				buf.Write(s[start:i])
-			}
-			buf.WriteString(`\u202`)
-			buf.WriteByte(hex[c&0xF])
-			i += size
-			start = i
-			continue
-		}
-		i += size
-	}
-	if start < len(s) {
-		buf.Write(s[start:])
-	}
-	buf.WriteByte('"')
-}
-
-// UnquoteBytes will decode []byte containing json string to go string
-// ported from encoding/json/decode.go
-func UnquoteBytes(s []byte) (t []byte, ok bool) {
-	if len(s) < 2 || s[0] != '"' || s[len(s)-1] != '"' {
-		return
-	}
-	s = s[1 : len(s)-1]
-
-	// Check for unusual characters. If there are none,
-	// then no unquoting is needed, so return a slice of the
-	// original bytes.
-	r := 0
-	for r < len(s) {
-		c := s[r]
-		if c == '\\' || c == '"' || c < ' ' {
-			break
-		}
-		if c < utf8.RuneSelf {
-			r++
-			continue
-		}
-		rr, size := utf8.DecodeRune(s[r:])
-		if rr == utf8.RuneError && size == 1 {
-			break
-		}
-		r += size
-	}
-	if r == len(s) {
-		return s, true
-	}
-
-	b := make([]byte, len(s)+2*utf8.UTFMax)
-	w := copy(b, s[0:r])
-	for r < len(s) {
-		// Out of room?  Can only happen if s is full of
-		// malformed UTF-8 and we're replacing each
-		// byte with RuneError.
-		if w >= len(b)-2*utf8.UTFMax {
-			nb := make([]byte, (len(b)+utf8.UTFMax)*2)
-			copy(nb, b[0:w])
-			b = nb
-		}
-		switch c := s[r]; {
-		case c == '\\':
-			r++
-			if r >= len(s) {
-				return
-			}
-			switch s[r] {
-			default:
-				return
-			case '"', '\\', '/', '\'':
-				b[w] = s[r]
-				r++
-				w++
-			case 'b':
-				b[w] = '\b'
-				r++
-				w++
-			case 'f':
-				b[w] = '\f'
-				r++
-				w++
-			case 'n':
-				b[w] = '\n'
-				r++
-				w++
-			case 'r':
-				b[w] = '\r'
-				r++
-				w++
-			case 't':
-				b[w] = '\t'
-				r++
-				w++
-			case 'u':
-				r--
-				rr := getu4(s[r:])
-				if rr < 0 {
-					return
-				}
-				r += 6
-				if utf16.IsSurrogate(rr) {
-					rr1 := getu4(s[r:])
-					if dec := utf16.DecodeRune(rr, rr1); dec != unicode.ReplacementChar {
-						// A valid pair; consume.
-						r += 6
-						w += utf8.EncodeRune(b[w:], dec)
-						break
-					}
-					// Invalid surrogate; fall back to replacement rune.
-					rr = unicode.ReplacementChar
-				}
-				w += utf8.EncodeRune(b[w:], rr)
-			}
-
-		// Quote, control characters are invalid.
-		case c == '"', c < ' ':
-			return
-
-		// ASCII
-		case c < utf8.RuneSelf:
-			b[w] = c
-			r++
-			w++
-
-		// Coerce to well-formed UTF-8.
-		default:
-			rr, size := utf8.DecodeRune(s[r:])
-			r += size
-			w += utf8.EncodeRune(b[w:], rr)
-		}
-	}
-	return b[0:w], true
-}
-
-// getu4 decodes \uXXXX from the beginning of s, returning the hex value,
-// or it returns -1.
-func getu4(s []byte) rune {
-	if len(s) < 6 || s[0] != '\\' || s[1] != 'u' {
-		return -1
-	}
-	r, err := strconv.ParseUint(string(s[2:6]), 16, 64)
-	if err != nil {
-		return -1
-	}
-	return rune(r)
-}
-
-// TODO(pquerna): consider combining wibth the normal byte mask.
-var lt [256]bool = [256]bool{
-	false, /* 0 */
-	false, /* 1 */
-	false, /* 2 */
-	false, /* 3 */
-	false, /* 4 */
-	false, /* 5 */
-	false, /* 6 */
-	false, /* 7 */
-	false, /* 8 */
-	false, /* 9 */
-	false, /* 10 */
-	false, /* 11 */
-	false, /* 12 */
-	false, /* 13 */
-	false, /* 14 */
-	false, /* 15 */
-	false, /* 16 */
-	false, /* 17 */
-	false, /* 18 */
-	false, /* 19 */
-	false, /* 20 */
-	false, /* 21 */
-	false, /* 22 */
-	false, /* 23 */
-	false, /* 24 */
-	false, /* 25 */
-	false, /* 26 */
-	false, /* 27 */
-	false, /* 28 */
-	false, /* 29 */
-	false, /* 30 */
-	false, /* 31 */
-	true,  /* 32 */
-	true,  /* 33 */
-	false, /* 34 */
-	true,  /* 35 */
-	true,  /* 36 */
-	true,  /* 37 */
-	false, /* 38 */
-	true,  /* 39 */
-	true,  /* 40 */
-	true,  /* 41 */
-	true,  /* 42 */
-	true,  /* 43 */
-	true,  /* 44 */
-	true,  /* 45 */
-	true,  /* 46 */
-	true,  /* 47 */
-	true,  /* 48 */
-	true,  /* 49 */
-	true,  /* 50 */
-	true,  /* 51 */
-	true,  /* 52 */
-	true,  /* 53 */
-	true,  /* 54 */
-	true,  /* 55 */
-	true,  /* 56 */
-	true,  /* 57 */
-	true,  /* 58 */
-	true,  /* 59 */
-	false, /* 60 */
-	true,  /* 61 */
-	false, /* 62 */
-	true,  /* 63 */
-	true,  /* 64 */
-	true,  /* 65 */
-	true,  /* 66 */
-	true,  /* 67 */
-	true,  /* 68 */
-	true,  /* 69 */
-	true,  /* 70 */
-	true,  /* 71 */
-	true,  /* 72 */
-	true,  /* 73 */
-	true,  /* 74 */
-	true,  /* 75 */
-	true,  /* 76 */
-	true,  /* 77 */
-	true,  /* 78 */
-	true,  /* 79 */
-	true,  /* 80 */
-	true,  /* 81 */
-	true,  /* 82 */
-	true,  /* 83 */
-	true,  /* 84 */
-	true,  /* 85 */
-	true,  /* 86 */
-	true,  /* 87 */
-	true,  /* 88 */
-	true,  /* 89 */
-	true,  /* 90 */
-	true,  /* 91 */
-	false, /* 92 */
-	true,  /* 93 */
-	true,  /* 94 */
-	true,  /* 95 */
-	true,  /* 96 */
-	true,  /* 97 */
-	true,  /* 98 */
-	true,  /* 99 */
-	true,  /* 100 */
-	true,  /* 101 */
-	true,  /* 102 */
-	true,  /* 103 */
-	true,  /* 104 */
-	true,  /* 105 */
-	true,  /* 106 */
-	true,  /* 107 */
-	true,  /* 108 */
-	true,  /* 109 */
-	true,  /* 110 */
-	true,  /* 111 */
-	true,  /* 112 */
-	true,  /* 113 */
-	true,  /* 114 */
-	true,  /* 115 */
-	true,  /* 116 */
-	true,  /* 117 */
-	true,  /* 118 */
-	true,  /* 119 */
-	true,  /* 120 */
-	true,  /* 121 */
-	true,  /* 122 */
-	true,  /* 123 */
-	true,  /* 124 */
-	true,  /* 125 */
-	true,  /* 126 */
-	true,  /* 127 */
-	true,  /* 128 */
-	true,  /* 129 */
-	true,  /* 130 */
-	true,  /* 131 */
-	true,  /* 132 */
-	true,  /* 133 */
-	true,  /* 134 */
-	true,  /* 135 */
-	true,  /* 136 */
-	true,  /* 137 */
-	true,  /* 138 */
-	true,  /* 139 */
-	true,  /* 140 */
-	true,  /* 141 */
-	true,  /* 142 */
-	true,  /* 143 */
-	true,  /* 144 */
-	true,  /* 145 */
-	true,  /* 146 */
-	true,  /* 147 */
-	true,  /* 148 */
-	true,  /* 149 */
-	true,  /* 150 */
-	true,  /* 151 */
-	true,  /* 152 */
-	true,  /* 153 */
-	true,  /* 154 */
-	true,  /* 155 */
-	true,  /* 156 */
-	true,  /* 157 */
-	true,  /* 158 */
-	true,  /* 159 */
-	true,  /* 160 */
-	true,  /* 161 */
-	true,  /* 162 */
-	true,  /* 163 */
-	true,  /* 164 */
-	true,  /* 165 */
-	true,  /* 166 */
-	true,  /* 167 */
-	true,  /* 168 */
-	true,  /* 169 */
-	true,  /* 170 */
-	true,  /* 171 */
-	true,  /* 172 */
-	true,  /* 173 */
-	true,  /* 174 */
-	true,  /* 175 */
-	true,  /* 176 */
-	true,  /* 177 */
-	true,  /* 178 */
-	true,  /* 179 */
-	true,  /* 180 */
-	true,  /* 181 */
-	true,  /* 182 */
-	true,  /* 183 */
-	true,  /* 184 */
-	true,  /* 185 */
-	true,  /* 186 */
-	true,  /* 187 */
-	true,  /* 188 */
-	true,  /* 189 */
-	true,  /* 190 */
-	true,  /* 191 */
-	true,  /* 192 */
-	true,  /* 193 */
-	true,  /* 194 */
-	true,  /* 195 */
-	true,  /* 196 */
-	true,  /* 197 */
-	true,  /* 198 */
-	true,  /* 199 */
-	true,  /* 200 */
-	true,  /* 201 */
-	true,  /* 202 */
-	true,  /* 203 */
-	true,  /* 204 */
-	true,  /* 205 */
-	true,  /* 206 */
-	true,  /* 207 */
-	true,  /* 208 */
-	true,  /* 209 */
-	true,  /* 210 */
-	true,  /* 211 */
-	true,  /* 212 */
-	true,  /* 213 */
-	true,  /* 214 */
-	true,  /* 215 */
-	true,  /* 216 */
-	true,  /* 217 */
-	true,  /* 218 */
-	true,  /* 219 */
-	true,  /* 220 */
-	true,  /* 221 */
-	true,  /* 222 */
-	true,  /* 223 */
-	true,  /* 224 */
-	true,  /* 225 */
-	true,  /* 226 */
-	true,  /* 227 */
-	true,  /* 228 */
-	true,  /* 229 */
-	true,  /* 230 */
-	true,  /* 231 */
-	true,  /* 232 */
-	true,  /* 233 */
-	true,  /* 234 */
-	true,  /* 235 */
-	true,  /* 236 */
-	true,  /* 237 */
-	true,  /* 238 */
-	true,  /* 239 */
-	true,  /* 240 */
-	true,  /* 241 */
-	true,  /* 242 */
-	true,  /* 243 */
-	true,  /* 244 */
-	true,  /* 245 */
-	true,  /* 246 */
-	true,  /* 247 */
-	true,  /* 248 */
-	true,  /* 249 */
-	true,  /* 250 */
-	true,  /* 251 */
-	true,  /* 252 */
-	true,  /* 253 */
-	true,  /* 254 */
-	true,  /* 255 */
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/lexer.go b/vendor/github.com/pquerna/ffjson/fflib/v1/lexer.go
deleted file mode 100644
index 8ffd54be53..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/lexer.go
+++ /dev/null
@@ -1,937 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-/* Portions of this file are on derived from yajl: <https://github.com/lloyd/yajl> */
-/*
- * Copyright (c) 2007-2014, Lloyd Hilaiel <me@lloyd.io>
- *
- * Permission to use, copy, modify, and/or distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-package v1
-
-import (
-	"errors"
-	"fmt"
-	"io"
-)
-
-type FFParseState int
-
-const (
-	FFParse_map_start FFParseState = iota
-	FFParse_want_key
-	FFParse_want_colon
-	FFParse_want_value
-	FFParse_after_value
-)
-
-type FFTok int
-
-const (
-	FFTok_init          FFTok = iota
-	FFTok_bool          FFTok = iota
-	FFTok_colon         FFTok = iota
-	FFTok_comma         FFTok = iota
-	FFTok_eof           FFTok = iota
-	FFTok_error         FFTok = iota
-	FFTok_left_brace    FFTok = iota
-	FFTok_left_bracket  FFTok = iota
-	FFTok_null          FFTok = iota
-	FFTok_right_brace   FFTok = iota
-	FFTok_right_bracket FFTok = iota
-
-	/* we differentiate between integers and doubles to allow the
-	 * parser to interpret the number without re-scanning */
-	FFTok_integer FFTok = iota
-	FFTok_double  FFTok = iota
-
-	FFTok_string FFTok = iota
-
-	/* comment tokens are not currently returned to the parser, ever */
-	FFTok_comment FFTok = iota
-)
-
-type FFErr int
-
-const (
-	FFErr_e_ok                           FFErr = iota
-	FFErr_io                             FFErr = iota
-	FFErr_string_invalid_utf8            FFErr = iota
-	FFErr_string_invalid_escaped_char    FFErr = iota
-	FFErr_string_invalid_json_char       FFErr = iota
-	FFErr_string_invalid_hex_char        FFErr = iota
-	FFErr_invalid_char                   FFErr = iota
-	FFErr_invalid_string                 FFErr = iota
-	FFErr_missing_integer_after_decimal  FFErr = iota
-	FFErr_missing_integer_after_exponent FFErr = iota
-	FFErr_missing_integer_after_minus    FFErr = iota
-	FFErr_unallowed_comment              FFErr = iota
-	FFErr_incomplete_comment             FFErr = iota
-	FFErr_unexpected_token_type          FFErr = iota // TODO: improve this error
-)
-
-type FFLexer struct {
-	reader   *ffReader
-	Output   DecodingBuffer
-	Token    FFTok
-	Error    FFErr
-	BigError error
-	// TODO: convert all of this to an interface
-	lastCurrentChar int
-	captureAll      bool
-	buf             Buffer
-}
-
-func NewFFLexer(input []byte) *FFLexer {
-	fl := &FFLexer{
-		Token:  FFTok_init,
-		Error:  FFErr_e_ok,
-		reader: newffReader(input),
-		Output: &Buffer{},
-	}
-	// TODO: guess size?
-	//fl.Output.Grow(64)
-	return fl
-}
-
-type LexerError struct {
-	offset int
-	line   int
-	char   int
-	err    error
-}
-
-// Reset the Lexer and add new input.
-func (ffl *FFLexer) Reset(input []byte) {
-	ffl.Token = FFTok_init
-	ffl.Error = FFErr_e_ok
-	ffl.BigError = nil
-	ffl.reader.Reset(input)
-	ffl.lastCurrentChar = 0
-	ffl.Output.Reset()
-}
-
-func (le *LexerError) Error() string {
-	return fmt.Sprintf(`ffjson error: (%T)%s offset=%d line=%d char=%d`,
-		le.err, le.err.Error(),
-		le.offset, le.line, le.char)
-}
-
-func (ffl *FFLexer) WrapErr(err error) error {
-	line, char := ffl.reader.PosWithLine()
-	// TOOD: calcualte lines/characters based on offset
-	return &LexerError{
-		offset: ffl.reader.Pos(),
-		line:   line,
-		char:   char,
-		err:    err,
-	}
-}
-
-func (ffl *FFLexer) scanReadByte() (byte, error) {
-	var c byte
-	var err error
-	if ffl.captureAll {
-		c, err = ffl.reader.ReadByte()
-	} else {
-		c, err = ffl.reader.ReadByteNoWS()
-	}
-
-	if err != nil {
-		ffl.Error = FFErr_io
-		ffl.BigError = err
-		return 0, err
-	}
-
-	return c, nil
-}
-
-func (ffl *FFLexer) readByte() (byte, error) {
-
-	c, err := ffl.reader.ReadByte()
-	if err != nil {
-		ffl.Error = FFErr_io
-		ffl.BigError = err
-		return 0, err
-	}
-
-	return c, nil
-}
-
-func (ffl *FFLexer) unreadByte() {
-	ffl.reader.UnreadByte()
-}
-
-func (ffl *FFLexer) wantBytes(want []byte, iftrue FFTok) FFTok {
-	startPos := ffl.reader.Pos()
-	for _, b := range want {
-		c, err := ffl.readByte()
-
-		if err != nil {
-			return FFTok_error
-		}
-
-		if c != b {
-			ffl.unreadByte()
-			// fmt.Printf("wanted bytes: %s\n", string(want))
-			// TODO(pquerna): thsi is a bad error message
-			ffl.Error = FFErr_invalid_string
-			return FFTok_error
-		}
-	}
-
-	endPos := ffl.reader.Pos()
-	ffl.Output.Write(ffl.reader.Slice(startPos, endPos))
-	return iftrue
-}
-
-func (ffl *FFLexer) lexComment() FFTok {
-	c, err := ffl.readByte()
-	if err != nil {
-		return FFTok_error
-	}
-
-	if c == '/' {
-		// a // comment, scan until line ends.
-		for {
-			c, err := ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-
-			if c == '\n' {
-				return FFTok_comment
-			}
-		}
-	} else if c == '*' {
-		// a /* */ comment, scan */
-		for {
-			c, err := ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-
-			if c == '*' {
-				c, err := ffl.readByte()
-
-				if err != nil {
-					return FFTok_error
-				}
-
-				if c == '/' {
-					return FFTok_comment
-				}
-
-				ffl.Error = FFErr_incomplete_comment
-				return FFTok_error
-			}
-		}
-	} else {
-		ffl.Error = FFErr_incomplete_comment
-		return FFTok_error
-	}
-}
-
-func (ffl *FFLexer) lexString() FFTok {
-	if ffl.captureAll {
-		ffl.buf.Reset()
-		err := ffl.reader.SliceString(&ffl.buf)
-
-		if err != nil {
-			ffl.BigError = err
-			return FFTok_error
-		}
-
-		WriteJson(ffl.Output, ffl.buf.Bytes())
-
-		return FFTok_string
-	} else {
-		err := ffl.reader.SliceString(ffl.Output)
-
-		if err != nil {
-			ffl.BigError = err
-			return FFTok_error
-		}
-
-		return FFTok_string
-	}
-}
-
-func (ffl *FFLexer) lexNumber() FFTok {
-	var numRead int = 0
-	tok := FFTok_integer
-	startPos := ffl.reader.Pos()
-
-	c, err := ffl.readByte()
-	if err != nil {
-		return FFTok_error
-	}
-
-	/* optional leading minus */
-	if c == '-' {
-		c, err = ffl.readByte()
-		if err != nil {
-			return FFTok_error
-		}
-	}
-
-	/* a single zero, or a series of integers */
-	if c == '0' {
-		c, err = ffl.readByte()
-		if err != nil {
-			return FFTok_error
-		}
-	} else if c >= '1' && c <= '9' {
-		for c >= '0' && c <= '9' {
-			c, err = ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-		}
-	} else {
-		ffl.unreadByte()
-		ffl.Error = FFErr_missing_integer_after_minus
-		return FFTok_error
-	}
-
-	if c == '.' {
-		numRead = 0
-		c, err = ffl.readByte()
-		if err != nil {
-			return FFTok_error
-		}
-
-		for c >= '0' && c <= '9' {
-			numRead++
-			c, err = ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-		}
-
-		if numRead == 0 {
-			ffl.unreadByte()
-
-			ffl.Error = FFErr_missing_integer_after_decimal
-			return FFTok_error
-		}
-
-		tok = FFTok_double
-	}
-
-	/* optional exponent (indicates this is floating point) */
-	if c == 'e' || c == 'E' {
-		numRead = 0
-		c, err = ffl.readByte()
-		if err != nil {
-			return FFTok_error
-		}
-
-		/* optional sign */
-		if c == '+' || c == '-' {
-			c, err = ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-		}
-
-		for c >= '0' && c <= '9' {
-			numRead++
-			c, err = ffl.readByte()
-			if err != nil {
-				return FFTok_error
-			}
-		}
-
-		if numRead == 0 {
-			ffl.Error = FFErr_missing_integer_after_exponent
-			return FFTok_error
-		}
-
-		tok = FFTok_double
-	}
-
-	ffl.unreadByte()
-
-	endPos := ffl.reader.Pos()
-	ffl.Output.Write(ffl.reader.Slice(startPos, endPos))
-	return tok
-}
-
-var true_bytes = []byte{'r', 'u', 'e'}
-var false_bytes = []byte{'a', 'l', 's', 'e'}
-var null_bytes = []byte{'u', 'l', 'l'}
-
-func (ffl *FFLexer) Scan() FFTok {
-	tok := FFTok_error
-	if ffl.captureAll == false {
-		ffl.Output.Reset()
-	}
-	ffl.Token = FFTok_init
-
-	for {
-		c, err := ffl.scanReadByte()
-		if err != nil {
-			if err == io.EOF {
-				return FFTok_eof
-			} else {
-				return FFTok_error
-			}
-		}
-
-		switch c {
-		case '{':
-			tok = FFTok_left_bracket
-			if ffl.captureAll {
-				ffl.Output.WriteByte('{')
-			}
-			goto lexed
-		case '}':
-			tok = FFTok_right_bracket
-			if ffl.captureAll {
-				ffl.Output.WriteByte('}')
-			}
-			goto lexed
-		case '[':
-			tok = FFTok_left_brace
-			if ffl.captureAll {
-				ffl.Output.WriteByte('[')
-			}
-			goto lexed
-		case ']':
-			tok = FFTok_right_brace
-			if ffl.captureAll {
-				ffl.Output.WriteByte(']')
-			}
-			goto lexed
-		case ',':
-			tok = FFTok_comma
-			if ffl.captureAll {
-				ffl.Output.WriteByte(',')
-			}
-			goto lexed
-		case ':':
-			tok = FFTok_colon
-			if ffl.captureAll {
-				ffl.Output.WriteByte(':')
-			}
-			goto lexed
-		case '\t', '\n', '\v', '\f', '\r', ' ':
-			if ffl.captureAll {
-				ffl.Output.WriteByte(c)
-			}
-			break
-		case 't':
-			ffl.Output.WriteByte('t')
-			tok = ffl.wantBytes(true_bytes, FFTok_bool)
-			goto lexed
-		case 'f':
-			ffl.Output.WriteByte('f')
-			tok = ffl.wantBytes(false_bytes, FFTok_bool)
-			goto lexed
-		case 'n':
-			ffl.Output.WriteByte('n')
-			tok = ffl.wantBytes(null_bytes, FFTok_null)
-			goto lexed
-		case '"':
-			tok = ffl.lexString()
-			goto lexed
-		case '-', '0', '1', '2', '3', '4', '5', '6', '7', '8', '9':
-			ffl.unreadByte()
-			tok = ffl.lexNumber()
-			goto lexed
-		case '/':
-			tok = ffl.lexComment()
-			goto lexed
-		default:
-			tok = FFTok_error
-			ffl.Error = FFErr_invalid_char
-		}
-	}
-
-lexed:
-	ffl.Token = tok
-	return tok
-}
-
-func (ffl *FFLexer) scanField(start FFTok, capture bool) ([]byte, error) {
-	switch start {
-	case FFTok_left_brace,
-		FFTok_left_bracket:
-		{
-			end := FFTok_right_brace
-			if start == FFTok_left_bracket {
-				end = FFTok_right_bracket
-				if capture {
-					ffl.Output.WriteByte('{')
-				}
-			} else {
-				if capture {
-					ffl.Output.WriteByte('[')
-				}
-			}
-
-			depth := 1
-			if capture {
-				ffl.captureAll = true
-			}
-			// TODO: work.
-		scanloop:
-			for {
-				tok := ffl.Scan()
-				//fmt.Printf("capture-token: %v end: %v depth: %v\n", tok, end, depth)
-				switch tok {
-				case FFTok_eof:
-					return nil, errors.New("ffjson: unexpected EOF")
-				case FFTok_error:
-					if ffl.BigError != nil {
-						return nil, ffl.BigError
-					}
-					return nil, ffl.Error.ToError()
-				case end:
-					depth--
-					if depth == 0 {
-						break scanloop
-					}
-				case start:
-					depth++
-				}
-			}
-
-			if capture {
-				ffl.captureAll = false
-			}
-
-			if capture {
-				return ffl.Output.Bytes(), nil
-			} else {
-				return nil, nil
-			}
-		}
-	case FFTok_bool,
-		FFTok_integer,
-		FFTok_null,
-		FFTok_double:
-		// simple value, return it.
-		if capture {
-			return ffl.Output.Bytes(), nil
-		} else {
-			return nil, nil
-		}
-
-	case FFTok_string:
-		//TODO(pquerna): so, other users expect this to be a quoted string :(
-		if capture {
-			ffl.buf.Reset()
-			WriteJson(&ffl.buf, ffl.Output.Bytes())
-			return ffl.buf.Bytes(), nil
-		} else {
-			return nil, nil
-		}
-	}
-
-	return nil, fmt.Errorf("ffjson: invalid capture type: %v", start)
-}
-
-// Captures an entire field value, including recursive objects,
-// and converts them to a []byte suitable to pass to a sub-object's
-// UnmarshalJSON
-func (ffl *FFLexer) CaptureField(start FFTok) ([]byte, error) {
-	return ffl.scanField(start, true)
-}
-
-func (ffl *FFLexer) SkipField(start FFTok) error {
-	_, err := ffl.scanField(start, false)
-	return err
-}
-
-// TODO(pquerna): return line number and offset.
-func (err FFErr) ToError() error {
-	switch err {
-	case FFErr_e_ok:
-		return nil
-	case FFErr_io:
-		return errors.New("ffjson: IO error")
-	case FFErr_string_invalid_utf8:
-		return errors.New("ffjson: string with invalid UTF-8 sequence")
-	case FFErr_string_invalid_escaped_char:
-		return errors.New("ffjson: string with invalid escaped character")
-	case FFErr_string_invalid_json_char:
-		return errors.New("ffjson: string with invalid JSON character")
-	case FFErr_string_invalid_hex_char:
-		return errors.New("ffjson: string with invalid hex character")
-	case FFErr_invalid_char:
-		return errors.New("ffjson: invalid character")
-	case FFErr_invalid_string:
-		return errors.New("ffjson: invalid string")
-	case FFErr_missing_integer_after_decimal:
-		return errors.New("ffjson: missing integer after decimal")
-	case FFErr_missing_integer_after_exponent:
-		return errors.New("ffjson: missing integer after exponent")
-	case FFErr_missing_integer_after_minus:
-		return errors.New("ffjson: missing integer after minus")
-	case FFErr_unallowed_comment:
-		return errors.New("ffjson: unallowed comment")
-	case FFErr_incomplete_comment:
-		return errors.New("ffjson: incomplete comment")
-	case FFErr_unexpected_token_type:
-		return errors.New("ffjson: unexpected token sequence")
-	}
-
-	panic(fmt.Sprintf("unknown error type: %v ", err))
-}
-
-func (state FFParseState) String() string {
-	switch state {
-	case FFParse_map_start:
-		return "map:start"
-	case FFParse_want_key:
-		return "want_key"
-	case FFParse_want_colon:
-		return "want_colon"
-	case FFParse_want_value:
-		return "want_value"
-	case FFParse_after_value:
-		return "after_value"
-	}
-
-	panic(fmt.Sprintf("unknown parse state: %d", int(state)))
-}
-
-func (tok FFTok) String() string {
-	switch tok {
-	case FFTok_init:
-		return "tok:init"
-	case FFTok_bool:
-		return "tok:bool"
-	case FFTok_colon:
-		return "tok:colon"
-	case FFTok_comma:
-		return "tok:comma"
-	case FFTok_eof:
-		return "tok:eof"
-	case FFTok_error:
-		return "tok:error"
-	case FFTok_left_brace:
-		return "tok:left_brace"
-	case FFTok_left_bracket:
-		return "tok:left_bracket"
-	case FFTok_null:
-		return "tok:null"
-	case FFTok_right_brace:
-		return "tok:right_brace"
-	case FFTok_right_bracket:
-		return "tok:right_bracket"
-	case FFTok_integer:
-		return "tok:integer"
-	case FFTok_double:
-		return "tok:double"
-	case FFTok_string:
-		return "tok:string"
-	case FFTok_comment:
-		return "comment"
-	}
-
-	panic(fmt.Sprintf("unknown token: %d", int(tok)))
-}
-
-/* a lookup table which lets us quickly determine three things:
- * cVEC - valid escaped control char
- * note.  the solidus '/' may be escaped or not.
- * cIJC - invalid json char
- * cVHC - valid hex char
- * cNFP - needs further processing (from a string scanning perspective)
- * cNUC - needs utf8 checking when enabled (from a string scanning perspective)
- */
-
-const (
-	cVEC int8 = 0x01
-	cIJC int8 = 0x02
-	cVHC int8 = 0x04
-	cNFP int8 = 0x08
-	cNUC int8 = 0x10
-)
-
-var byteLookupTable [256]int8 = [256]int8{
-	cIJC,               /* 0 */
-	cIJC,               /* 1 */
-	cIJC,               /* 2 */
-	cIJC,               /* 3 */
-	cIJC,               /* 4 */
-	cIJC,               /* 5 */
-	cIJC,               /* 6 */
-	cIJC,               /* 7 */
-	cIJC,               /* 8 */
-	cIJC,               /* 9 */
-	cIJC,               /* 10 */
-	cIJC,               /* 11 */
-	cIJC,               /* 12 */
-	cIJC,               /* 13 */
-	cIJC,               /* 14 */
-	cIJC,               /* 15 */
-	cIJC,               /* 16 */
-	cIJC,               /* 17 */
-	cIJC,               /* 18 */
-	cIJC,               /* 19 */
-	cIJC,               /* 20 */
-	cIJC,               /* 21 */
-	cIJC,               /* 22 */
-	cIJC,               /* 23 */
-	cIJC,               /* 24 */
-	cIJC,               /* 25 */
-	cIJC,               /* 26 */
-	cIJC,               /* 27 */
-	cIJC,               /* 28 */
-	cIJC,               /* 29 */
-	cIJC,               /* 30 */
-	cIJC,               /* 31 */
-	0,                  /* 32 */
-	0,                  /* 33 */
-	cVEC | cIJC | cNFP, /* 34 */
-	0,                  /* 35 */
-	0,                  /* 36 */
-	0,                  /* 37 */
-	0,                  /* 38 */
-	0,                  /* 39 */
-	0,                  /* 40 */
-	0,                  /* 41 */
-	0,                  /* 42 */
-	0,                  /* 43 */
-	0,                  /* 44 */
-	0,                  /* 45 */
-	0,                  /* 46 */
-	cVEC,               /* 47 */
-	cVHC,               /* 48 */
-	cVHC,               /* 49 */
-	cVHC,               /* 50 */
-	cVHC,               /* 51 */
-	cVHC,               /* 52 */
-	cVHC,               /* 53 */
-	cVHC,               /* 54 */
-	cVHC,               /* 55 */
-	cVHC,               /* 56 */
-	cVHC,               /* 57 */
-	0,                  /* 58 */
-	0,                  /* 59 */
-	0,                  /* 60 */
-	0,                  /* 61 */
-	0,                  /* 62 */
-	0,                  /* 63 */
-	0,                  /* 64 */
-	cVHC,               /* 65 */
-	cVHC,               /* 66 */
-	cVHC,               /* 67 */
-	cVHC,               /* 68 */
-	cVHC,               /* 69 */
-	cVHC,               /* 70 */
-	0,                  /* 71 */
-	0,                  /* 72 */
-	0,                  /* 73 */
-	0,                  /* 74 */
-	0,                  /* 75 */
-	0,                  /* 76 */
-	0,                  /* 77 */
-	0,                  /* 78 */
-	0,                  /* 79 */
-	0,                  /* 80 */
-	0,                  /* 81 */
-	0,                  /* 82 */
-	0,                  /* 83 */
-	0,                  /* 84 */
-	0,                  /* 85 */
-	0,                  /* 86 */
-	0,                  /* 87 */
-	0,                  /* 88 */
-	0,                  /* 89 */
-	0,                  /* 90 */
-	0,                  /* 91 */
-	cVEC | cIJC | cNFP, /* 92 */
-	0,                  /* 93 */
-	0,                  /* 94 */
-	0,                  /* 95 */
-	0,                  /* 96 */
-	cVHC,               /* 97 */
-	cVEC | cVHC,        /* 98 */
-	cVHC,               /* 99 */
-	cVHC,               /* 100 */
-	cVHC,               /* 101 */
-	cVEC | cVHC,        /* 102 */
-	0,                  /* 103 */
-	0,                  /* 104 */
-	0,                  /* 105 */
-	0,                  /* 106 */
-	0,                  /* 107 */
-	0,                  /* 108 */
-	0,                  /* 109 */
-	cVEC,               /* 110 */
-	0,                  /* 111 */
-	0,                  /* 112 */
-	0,                  /* 113 */
-	cVEC,               /* 114 */
-	0,                  /* 115 */
-	cVEC,               /* 116 */
-	0,                  /* 117 */
-	0,                  /* 118 */
-	0,                  /* 119 */
-	0,                  /* 120 */
-	0,                  /* 121 */
-	0,                  /* 122 */
-	0,                  /* 123 */
-	0,                  /* 124 */
-	0,                  /* 125 */
-	0,                  /* 126 */
-	0,                  /* 127 */
-	cNUC,               /* 128 */
-	cNUC,               /* 129 */
-	cNUC,               /* 130 */
-	cNUC,               /* 131 */
-	cNUC,               /* 132 */
-	cNUC,               /* 133 */
-	cNUC,               /* 134 */
-	cNUC,               /* 135 */
-	cNUC,               /* 136 */
-	cNUC,               /* 137 */
-	cNUC,               /* 138 */
-	cNUC,               /* 139 */
-	cNUC,               /* 140 */
-	cNUC,               /* 141 */
-	cNUC,               /* 142 */
-	cNUC,               /* 143 */
-	cNUC,               /* 144 */
-	cNUC,               /* 145 */
-	cNUC,               /* 146 */
-	cNUC,               /* 147 */
-	cNUC,               /* 148 */
-	cNUC,               /* 149 */
-	cNUC,               /* 150 */
-	cNUC,               /* 151 */
-	cNUC,               /* 152 */
-	cNUC,               /* 153 */
-	cNUC,               /* 154 */
-	cNUC,               /* 155 */
-	cNUC,               /* 156 */
-	cNUC,               /* 157 */
-	cNUC,               /* 158 */
-	cNUC,               /* 159 */
-	cNUC,               /* 160 */
-	cNUC,               /* 161 */
-	cNUC,               /* 162 */
-	cNUC,               /* 163 */
-	cNUC,               /* 164 */
-	cNUC,               /* 165 */
-	cNUC,               /* 166 */
-	cNUC,               /* 167 */
-	cNUC,               /* 168 */
-	cNUC,               /* 169 */
-	cNUC,               /* 170 */
-	cNUC,               /* 171 */
-	cNUC,               /* 172 */
-	cNUC,               /* 173 */
-	cNUC,               /* 174 */
-	cNUC,               /* 175 */
-	cNUC,               /* 176 */
-	cNUC,               /* 177 */
-	cNUC,               /* 178 */
-	cNUC,               /* 179 */
-	cNUC,               /* 180 */
-	cNUC,               /* 181 */
-	cNUC,               /* 182 */
-	cNUC,               /* 183 */
-	cNUC,               /* 184 */
-	cNUC,               /* 185 */
-	cNUC,               /* 186 */
-	cNUC,               /* 187 */
-	cNUC,               /* 188 */
-	cNUC,               /* 189 */
-	cNUC,               /* 190 */
-	cNUC,               /* 191 */
-	cNUC,               /* 192 */
-	cNUC,               /* 193 */
-	cNUC,               /* 194 */
-	cNUC,               /* 195 */
-	cNUC,               /* 196 */
-	cNUC,               /* 197 */
-	cNUC,               /* 198 */
-	cNUC,               /* 199 */
-	cNUC,               /* 200 */
-	cNUC,               /* 201 */
-	cNUC,               /* 202 */
-	cNUC,               /* 203 */
-	cNUC,               /* 204 */
-	cNUC,               /* 205 */
-	cNUC,               /* 206 */
-	cNUC,               /* 207 */
-	cNUC,               /* 208 */
-	cNUC,               /* 209 */
-	cNUC,               /* 210 */
-	cNUC,               /* 211 */
-	cNUC,               /* 212 */
-	cNUC,               /* 213 */
-	cNUC,               /* 214 */
-	cNUC,               /* 215 */
-	cNUC,               /* 216 */
-	cNUC,               /* 217 */
-	cNUC,               /* 218 */
-	cNUC,               /* 219 */
-	cNUC,               /* 220 */
-	cNUC,               /* 221 */
-	cNUC,               /* 222 */
-	cNUC,               /* 223 */
-	cNUC,               /* 224 */
-	cNUC,               /* 225 */
-	cNUC,               /* 226 */
-	cNUC,               /* 227 */
-	cNUC,               /* 228 */
-	cNUC,               /* 229 */
-	cNUC,               /* 230 */
-	cNUC,               /* 231 */
-	cNUC,               /* 232 */
-	cNUC,               /* 233 */
-	cNUC,               /* 234 */
-	cNUC,               /* 235 */
-	cNUC,               /* 236 */
-	cNUC,               /* 237 */
-	cNUC,               /* 238 */
-	cNUC,               /* 239 */
-	cNUC,               /* 240 */
-	cNUC,               /* 241 */
-	cNUC,               /* 242 */
-	cNUC,               /* 243 */
-	cNUC,               /* 244 */
-	cNUC,               /* 245 */
-	cNUC,               /* 246 */
-	cNUC,               /* 247 */
-	cNUC,               /* 248 */
-	cNUC,               /* 249 */
-	cNUC,               /* 250 */
-	cNUC,               /* 251 */
-	cNUC,               /* 252 */
-	cNUC,               /* 253 */
-	cNUC,               /* 254 */
-	cNUC,               /* 255 */
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/reader.go b/vendor/github.com/pquerna/ffjson/fflib/v1/reader.go
deleted file mode 100644
index 0f22c469d6..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/reader.go
+++ /dev/null
@@ -1,512 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-package v1
-
-import (
-	"fmt"
-	"io"
-	"unicode"
-	"unicode/utf16"
-)
-
-const sliceStringMask = cIJC | cNFP
-
-type ffReader struct {
-	s []byte
-	i int
-	l int
-}
-
-func newffReader(d []byte) *ffReader {
-	return &ffReader{
-		s: d,
-		i: 0,
-		l: len(d),
-	}
-}
-
-func (r *ffReader) Slice(start, stop int) []byte {
-	return r.s[start:stop]
-}
-
-func (r *ffReader) Pos() int {
-	return r.i
-}
-
-// Reset the reader, and add new input.
-func (r *ffReader) Reset(d []byte) {
-	r.s = d
-	r.i = 0
-	r.l = len(d)
-}
-
-// Calcuates the Position with line and line offset,
-// because this isn't counted for performance reasons,
-// it will iterate the buffer from the beginning, and should
-// only be used in error-paths.
-func (r *ffReader) PosWithLine() (int, int) {
-	currentLine := 1
-	currentChar := 0
-
-	for i := 0; i < r.i; i++ {
-		c := r.s[i]
-		currentChar++
-		if c == '\n' {
-			currentLine++
-			currentChar = 0
-		}
-	}
-
-	return currentLine, currentChar
-}
-
-func (r *ffReader) ReadByteNoWS() (byte, error) {
-	if r.i >= r.l {
-		return 0, io.EOF
-	}
-
-	j := r.i
-
-	for {
-		c := r.s[j]
-		j++
-
-		// inline whitespace parsing gives another ~8% performance boost
-		// for many kinds of nicely indented JSON.
-		// ... and using a [255]bool instead of multiple ifs, gives another 2%
-		/*
-			if c != '\t' &&
-				c != '\n' &&
-				c != '\v' &&
-				c != '\f' &&
-				c != '\r' &&
-				c != ' ' {
-				r.i = j
-				return c, nil
-			}
-		*/
-		if whitespaceLookupTable[c] == false {
-			r.i = j
-			return c, nil
-		}
-
-		if j >= r.l {
-			return 0, io.EOF
-		}
-	}
-}
-
-func (r *ffReader) ReadByte() (byte, error) {
-	if r.i >= r.l {
-		return 0, io.EOF
-	}
-
-	r.i++
-
-	return r.s[r.i-1], nil
-}
-
-func (r *ffReader) UnreadByte() error {
-	if r.i <= 0 {
-		panic("ffReader.UnreadByte: at beginning of slice")
-	}
-	r.i--
-	return nil
-}
-
-func (r *ffReader) readU4(j int) (rune, error) {
-
-	var u4 [4]byte
-	for i := 0; i < 4; i++ {
-		if j >= r.l {
-			return -1, io.EOF
-		}
-		c := r.s[j]
-		if byteLookupTable[c]&cVHC != 0 {
-			u4[i] = c
-			j++
-			continue
-		} else {
-			// TODO(pquerna): handle errors better. layering violation.
-			return -1, fmt.Errorf("lex_string_invalid_hex_char: %v %v", c, string(u4[:]))
-		}
-	}
-
-	// TODO(pquerna): utf16.IsSurrogate
-	rr, err := ParseUint(u4[:], 16, 64)
-	if err != nil {
-		return -1, err
-	}
-	return rune(rr), nil
-}
-
-func (r *ffReader) handleEscaped(c byte, j int, out DecodingBuffer) (int, error) {
-	if j >= r.l {
-		return 0, io.EOF
-	}
-
-	c = r.s[j]
-	j++
-
-	if c == 'u' {
-		ru, err := r.readU4(j)
-		if err != nil {
-			return 0, err
-		}
-
-		if utf16.IsSurrogate(ru) {
-			ru2, err := r.readU4(j + 6)
-			if err != nil {
-				return 0, err
-			}
-			out.Write(r.s[r.i : j-2])
-			r.i = j + 10
-			j = r.i
-			rval := utf16.DecodeRune(ru, ru2)
-			if rval != unicode.ReplacementChar {
-				out.WriteRune(rval)
-			} else {
-				return 0, fmt.Errorf("lex_string_invalid_unicode_surrogate: %v %v", ru, ru2)
-			}
-		} else {
-			out.Write(r.s[r.i : j-2])
-			r.i = j + 4
-			j = r.i
-			out.WriteRune(ru)
-		}
-		return j, nil
-	} else if byteLookupTable[c]&cVEC == 0 {
-		return 0, fmt.Errorf("lex_string_invalid_escaped_char: %v", c)
-	} else {
-		out.Write(r.s[r.i : j-2])
-		r.i = j
-		j = r.i
-
-		switch c {
-		case '"':
-			out.WriteByte('"')
-		case '\\':
-			out.WriteByte('\\')
-		case '/':
-			out.WriteByte('/')
-		case 'b':
-			out.WriteByte('\b')
-		case 'f':
-			out.WriteByte('\f')
-		case 'n':
-			out.WriteByte('\n')
-		case 'r':
-			out.WriteByte('\r')
-		case 't':
-			out.WriteByte('\t')
-		}
-	}
-
-	return j, nil
-}
-
-func (r *ffReader) SliceString(out DecodingBuffer) error {
-	var c byte
-	// TODO(pquerna): string_with_escapes? de-escape here?
-	j := r.i
-
-	for {
-		if j >= r.l {
-			return io.EOF
-		}
-
-		j, c = scanString(r.s, j)
-
-		if c == '"' {
-			if j != r.i {
-				out.Write(r.s[r.i : j-1])
-				r.i = j
-			}
-			return nil
-		} else if c == '\\' {
-			var err error
-			j, err = r.handleEscaped(c, j, out)
-			if err != nil {
-				return err
-			}
-		} else if byteLookupTable[c]&cIJC != 0 {
-			return fmt.Errorf("lex_string_invalid_json_char: %v", c)
-		}
-		continue
-	}
-}
-
-// TODO(pquerna): consider combining wibth the normal byte mask.
-var whitespaceLookupTable [256]bool = [256]bool{
-	false, /* 0 */
-	false, /* 1 */
-	false, /* 2 */
-	false, /* 3 */
-	false, /* 4 */
-	false, /* 5 */
-	false, /* 6 */
-	false, /* 7 */
-	false, /* 8 */
-	true,  /* 9 */
-	true,  /* 10 */
-	true,  /* 11 */
-	true,  /* 12 */
-	true,  /* 13 */
-	false, /* 14 */
-	false, /* 15 */
-	false, /* 16 */
-	false, /* 17 */
-	false, /* 18 */
-	false, /* 19 */
-	false, /* 20 */
-	false, /* 21 */
-	false, /* 22 */
-	false, /* 23 */
-	false, /* 24 */
-	false, /* 25 */
-	false, /* 26 */
-	false, /* 27 */
-	false, /* 28 */
-	false, /* 29 */
-	false, /* 30 */
-	false, /* 31 */
-	true,  /* 32 */
-	false, /* 33 */
-	false, /* 34 */
-	false, /* 35 */
-	false, /* 36 */
-	false, /* 37 */
-	false, /* 38 */
-	false, /* 39 */
-	false, /* 40 */
-	false, /* 41 */
-	false, /* 42 */
-	false, /* 43 */
-	false, /* 44 */
-	false, /* 45 */
-	false, /* 46 */
-	false, /* 47 */
-	false, /* 48 */
-	false, /* 49 */
-	false, /* 50 */
-	false, /* 51 */
-	false, /* 52 */
-	false, /* 53 */
-	false, /* 54 */
-	false, /* 55 */
-	false, /* 56 */
-	false, /* 57 */
-	false, /* 58 */
-	false, /* 59 */
-	false, /* 60 */
-	false, /* 61 */
-	false, /* 62 */
-	false, /* 63 */
-	false, /* 64 */
-	false, /* 65 */
-	false, /* 66 */
-	false, /* 67 */
-	false, /* 68 */
-	false, /* 69 */
-	false, /* 70 */
-	false, /* 71 */
-	false, /* 72 */
-	false, /* 73 */
-	false, /* 74 */
-	false, /* 75 */
-	false, /* 76 */
-	false, /* 77 */
-	false, /* 78 */
-	false, /* 79 */
-	false, /* 80 */
-	false, /* 81 */
-	false, /* 82 */
-	false, /* 83 */
-	false, /* 84 */
-	false, /* 85 */
-	false, /* 86 */
-	false, /* 87 */
-	false, /* 88 */
-	false, /* 89 */
-	false, /* 90 */
-	false, /* 91 */
-	false, /* 92 */
-	false, /* 93 */
-	false, /* 94 */
-	false, /* 95 */
-	false, /* 96 */
-	false, /* 97 */
-	false, /* 98 */
-	false, /* 99 */
-	false, /* 100 */
-	false, /* 101 */
-	false, /* 102 */
-	false, /* 103 */
-	false, /* 104 */
-	false, /* 105 */
-	false, /* 106 */
-	false, /* 107 */
-	false, /* 108 */
-	false, /* 109 */
-	false, /* 110 */
-	false, /* 111 */
-	false, /* 112 */
-	false, /* 113 */
-	false, /* 114 */
-	false, /* 115 */
-	false, /* 116 */
-	false, /* 117 */
-	false, /* 118 */
-	false, /* 119 */
-	false, /* 120 */
-	false, /* 121 */
-	false, /* 122 */
-	false, /* 123 */
-	false, /* 124 */
-	false, /* 125 */
-	false, /* 126 */
-	false, /* 127 */
-	false, /* 128 */
-	false, /* 129 */
-	false, /* 130 */
-	false, /* 131 */
-	false, /* 132 */
-	false, /* 133 */
-	false, /* 134 */
-	false, /* 135 */
-	false, /* 136 */
-	false, /* 137 */
-	false, /* 138 */
-	false, /* 139 */
-	false, /* 140 */
-	false, /* 141 */
-	false, /* 142 */
-	false, /* 143 */
-	false, /* 144 */
-	false, /* 145 */
-	false, /* 146 */
-	false, /* 147 */
-	false, /* 148 */
-	false, /* 149 */
-	false, /* 150 */
-	false, /* 151 */
-	false, /* 152 */
-	false, /* 153 */
-	false, /* 154 */
-	false, /* 155 */
-	false, /* 156 */
-	false, /* 157 */
-	false, /* 158 */
-	false, /* 159 */
-	false, /* 160 */
-	false, /* 161 */
-	false, /* 162 */
-	false, /* 163 */
-	false, /* 164 */
-	false, /* 165 */
-	false, /* 166 */
-	false, /* 167 */
-	false, /* 168 */
-	false, /* 169 */
-	false, /* 170 */
-	false, /* 171 */
-	false, /* 172 */
-	false, /* 173 */
-	false, /* 174 */
-	false, /* 175 */
-	false, /* 176 */
-	false, /* 177 */
-	false, /* 178 */
-	false, /* 179 */
-	false, /* 180 */
-	false, /* 181 */
-	false, /* 182 */
-	false, /* 183 */
-	false, /* 184 */
-	false, /* 185 */
-	false, /* 186 */
-	false, /* 187 */
-	false, /* 188 */
-	false, /* 189 */
-	false, /* 190 */
-	false, /* 191 */
-	false, /* 192 */
-	false, /* 193 */
-	false, /* 194 */
-	false, /* 195 */
-	false, /* 196 */
-	false, /* 197 */
-	false, /* 198 */
-	false, /* 199 */
-	false, /* 200 */
-	false, /* 201 */
-	false, /* 202 */
-	false, /* 203 */
-	false, /* 204 */
-	false, /* 205 */
-	false, /* 206 */
-	false, /* 207 */
-	false, /* 208 */
-	false, /* 209 */
-	false, /* 210 */
-	false, /* 211 */
-	false, /* 212 */
-	false, /* 213 */
-	false, /* 214 */
-	false, /* 215 */
-	false, /* 216 */
-	false, /* 217 */
-	false, /* 218 */
-	false, /* 219 */
-	false, /* 220 */
-	false, /* 221 */
-	false, /* 222 */
-	false, /* 223 */
-	false, /* 224 */
-	false, /* 225 */
-	false, /* 226 */
-	false, /* 227 */
-	false, /* 228 */
-	false, /* 229 */
-	false, /* 230 */
-	false, /* 231 */
-	false, /* 232 */
-	false, /* 233 */
-	false, /* 234 */
-	false, /* 235 */
-	false, /* 236 */
-	false, /* 237 */
-	false, /* 238 */
-	false, /* 239 */
-	false, /* 240 */
-	false, /* 241 */
-	false, /* 242 */
-	false, /* 243 */
-	false, /* 244 */
-	false, /* 245 */
-	false, /* 246 */
-	false, /* 247 */
-	false, /* 248 */
-	false, /* 249 */
-	false, /* 250 */
-	false, /* 251 */
-	false, /* 252 */
-	false, /* 253 */
-	false, /* 254 */
-	false, /* 255 */
-}
diff --git a/vendor/github.com/pquerna/ffjson/fflib/v1/reader_scan_generic.go b/vendor/github.com/pquerna/ffjson/fflib/v1/reader_scan_generic.go
deleted file mode 100644
index 47c2607708..0000000000
--- a/vendor/github.com/pquerna/ffjson/fflib/v1/reader_scan_generic.go
+++ /dev/null
@@ -1,34 +0,0 @@
-/**
- *  Copyright 2014 Paul Querna
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- *
- */
-
-package v1
-
-func scanString(s []byte, j int) (int, byte) {
-	for {
-		if j >= len(s) {
-			return j, 0
-		}
-
-		c := s[j]
-		j++
-		if byteLookupTable[c]&sliceStringMask == 0 {
-			continue
-		}
-
-		return j, c
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/NOTICE b/vendor/github.com/prometheus/client_golang/NOTICE
deleted file mode 100644
index dd878a30ee..0000000000
--- a/vendor/github.com/prometheus/client_golang/NOTICE
+++ /dev/null
@@ -1,23 +0,0 @@
-Prometheus instrumentation library for Go applications
-Copyright 2012-2015 The Prometheus Authors
-
-This product includes software developed at
-SoundCloud Ltd. (http://soundcloud.com/).
-
-
-The following components are included in this product:
-
-perks - a fork of https://github.com/bmizerany/perks
-https://github.com/beorn7/perks
-Copyright 2013-2015 Blake Mizerany, Björn Rabenstein
-See https://github.com/beorn7/perks/blob/master/README.md for license details.
-
-Go support for Protocol Buffers - Google's data interchange format
-http://github.com/golang/protobuf/
-Copyright 2010 The Go Authors
-See source code for license details.
-
-Support for streaming Protocol Buffer messages for the Go language (golang).
-https://github.com/matttproud/golang_protobuf_extensions
-Copyright 2013 Matt T. Proud
-Licensed under the Apache License, Version 2.0
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/collector.go b/vendor/github.com/prometheus/client_golang/prometheus/collector.go
deleted file mode 100644
index 623d3d83fe..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/collector.go
+++ /dev/null
@@ -1,75 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-// Collector is the interface implemented by anything that can be used by
-// Prometheus to collect metrics. A Collector has to be registered for
-// collection. See Registerer.Register.
-//
-// The stock metrics provided by this package (Gauge, Counter, Summary,
-// Histogram, Untyped) are also Collectors (which only ever collect one metric,
-// namely itself). An implementer of Collector may, however, collect multiple
-// metrics in a coordinated fashion and/or create metrics on the fly. Examples
-// for collectors already implemented in this library are the metric vectors
-// (i.e. collection of multiple instances of the same Metric but with different
-// label values) like GaugeVec or SummaryVec, and the ExpvarCollector.
-type Collector interface {
-	// Describe sends the super-set of all possible descriptors of metrics
-	// collected by this Collector to the provided channel and returns once
-	// the last descriptor has been sent. The sent descriptors fulfill the
-	// consistency and uniqueness requirements described in the Desc
-	// documentation. (It is valid if one and the same Collector sends
-	// duplicate descriptors. Those duplicates are simply ignored. However,
-	// two different Collectors must not send duplicate descriptors.) This
-	// method idempotently sends the same descriptors throughout the
-	// lifetime of the Collector. If a Collector encounters an error while
-	// executing this method, it must send an invalid descriptor (created
-	// with NewInvalidDesc) to signal the error to the registry.
-	Describe(chan<- *Desc)
-	// Collect is called by the Prometheus registry when collecting
-	// metrics. The implementation sends each collected metric via the
-	// provided channel and returns once the last metric has been sent. The
-	// descriptor of each sent metric is one of those returned by
-	// Describe. Returned metrics that share the same descriptor must differ
-	// in their variable label values. This method may be called
-	// concurrently and must therefore be implemented in a concurrency safe
-	// way. Blocking occurs at the expense of total performance of rendering
-	// all registered metrics. Ideally, Collector implementations support
-	// concurrent readers.
-	Collect(chan<- Metric)
-}
-
-// selfCollector implements Collector for a single Metric so that the Metric
-// collects itself. Add it as an anonymous field to a struct that implements
-// Metric, and call init with the Metric itself as an argument.
-type selfCollector struct {
-	self Metric
-}
-
-// init provides the selfCollector with a reference to the metric it is supposed
-// to collect. It is usually called within the factory function to create a
-// metric. See example.
-func (c *selfCollector) init(self Metric) {
-	c.self = self
-}
-
-// Describe implements Collector.
-func (c *selfCollector) Describe(ch chan<- *Desc) {
-	ch <- c.self.Desc()
-}
-
-// Collect implements Collector.
-func (c *selfCollector) Collect(ch chan<- Metric) {
-	ch <- c.self
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/counter.go b/vendor/github.com/prometheus/client_golang/prometheus/counter.go
deleted file mode 100644
index 765e4550c6..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/counter.go
+++ /dev/null
@@ -1,277 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"errors"
-	"math"
-	"sync/atomic"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// Counter is a Metric that represents a single numerical value that only ever
-// goes up. That implies that it cannot be used to count items whose number can
-// also go down, e.g. the number of currently running goroutines. Those
-// "counters" are represented by Gauges.
-//
-// A Counter is typically used to count requests served, tasks completed, errors
-// occurred, etc.
-//
-// To create Counter instances, use NewCounter.
-type Counter interface {
-	Metric
-	Collector
-
-	// Inc increments the counter by 1. Use Add to increment it by arbitrary
-	// non-negative values.
-	Inc()
-	// Add adds the given value to the counter. It panics if the value is <
-	// 0.
-	Add(float64)
-}
-
-// CounterOpts is an alias for Opts. See there for doc comments.
-type CounterOpts Opts
-
-// NewCounter creates a new Counter based on the provided CounterOpts.
-//
-// The returned implementation tracks the counter value in two separate
-// variables, a float64 and a uint64. The latter is used to track calls of the
-// Inc method and calls of the Add method with a value that can be represented
-// as a uint64. This allows atomic increments of the counter with optimal
-// performance. (It is common to have an Inc call in very hot execution paths.)
-// Both internal tracking values are added up in the Write method. This has to
-// be taken into account when it comes to precision and overflow behavior.
-func NewCounter(opts CounterOpts) Counter {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		nil,
-		opts.ConstLabels,
-	)
-	result := &counter{desc: desc, labelPairs: desc.constLabelPairs}
-	result.init(result) // Init self-collection.
-	return result
-}
-
-type counter struct {
-	// valBits contains the bits of the represented float64 value, while
-	// valInt stores values that are exact integers. Both have to go first
-	// in the struct to guarantee alignment for atomic operations.
-	// http://golang.org/pkg/sync/atomic/#pkg-note-BUG
-	valBits uint64
-	valInt  uint64
-
-	selfCollector
-	desc *Desc
-
-	labelPairs []*dto.LabelPair
-}
-
-func (c *counter) Desc() *Desc {
-	return c.desc
-}
-
-func (c *counter) Add(v float64) {
-	if v < 0 {
-		panic(errors.New("counter cannot decrease in value"))
-	}
-	ival := uint64(v)
-	if float64(ival) == v {
-		atomic.AddUint64(&c.valInt, ival)
-		return
-	}
-
-	for {
-		oldBits := atomic.LoadUint64(&c.valBits)
-		newBits := math.Float64bits(math.Float64frombits(oldBits) + v)
-		if atomic.CompareAndSwapUint64(&c.valBits, oldBits, newBits) {
-			return
-		}
-	}
-}
-
-func (c *counter) Inc() {
-	atomic.AddUint64(&c.valInt, 1)
-}
-
-func (c *counter) Write(out *dto.Metric) error {
-	fval := math.Float64frombits(atomic.LoadUint64(&c.valBits))
-	ival := atomic.LoadUint64(&c.valInt)
-	val := fval + float64(ival)
-
-	return populateMetric(CounterValue, val, c.labelPairs, out)
-}
-
-// CounterVec is a Collector that bundles a set of Counters that all share the
-// same Desc, but have different values for their variable labels. This is used
-// if you want to count the same thing partitioned by various dimensions
-// (e.g. number of HTTP requests, partitioned by response code and
-// method). Create instances with NewCounterVec.
-type CounterVec struct {
-	*metricVec
-}
-
-// NewCounterVec creates a new CounterVec based on the provided CounterOpts and
-// partitioned by the given label names.
-func NewCounterVec(opts CounterOpts, labelNames []string) *CounterVec {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		labelNames,
-		opts.ConstLabels,
-	)
-	return &CounterVec{
-		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
-			if len(lvs) != len(desc.variableLabels) {
-				panic(errInconsistentCardinality)
-			}
-			result := &counter{desc: desc, labelPairs: makeLabelPairs(desc, lvs)}
-			result.init(result) // Init self-collection.
-			return result
-		}),
-	}
-}
-
-// GetMetricWithLabelValues returns the Counter for the given slice of label
-// values (same order as the VariableLabels in Desc). If that combination of
-// label values is accessed for the first time, a new Counter is created.
-//
-// It is possible to call this method without using the returned Counter to only
-// create the new Counter but leave it at its starting value 0. See also the
-// SummaryVec example.
-//
-// Keeping the Counter for later use is possible (and should be considered if
-// performance is critical), but keep in mind that Reset, DeleteLabelValues and
-// Delete can be used to delete the Counter from the CounterVec. In that case,
-// the Counter will still exist, but it will not be exported anymore, even if a
-// Counter with the same label values is created later.
-//
-// An error is returned if the number of label values is not the same as the
-// number of VariableLabels in Desc (minus any curried labels).
-//
-// Note that for more than one label value, this method is prone to mistakes
-// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
-// an alternative to avoid that type of mistake. For higher label numbers, the
-// latter has a much more readable (albeit more verbose) syntax, but it comes
-// with a performance overhead (for creating and processing the Labels map).
-// See also the GaugeVec example.
-func (v *CounterVec) GetMetricWithLabelValues(lvs ...string) (Counter, error) {
-	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
-	if metric != nil {
-		return metric.(Counter), err
-	}
-	return nil, err
-}
-
-// GetMetricWith returns the Counter for the given Labels map (the label names
-// must match those of the VariableLabels in Desc). If that label map is
-// accessed for the first time, a new Counter is created. Implications of
-// creating a Counter without using it and keeping the Counter for later use are
-// the same as for GetMetricWithLabelValues.
-//
-// An error is returned if the number and names of the Labels are inconsistent
-// with those of the VariableLabels in Desc (minus any curried labels).
-//
-// This method is used for the same purpose as
-// GetMetricWithLabelValues(...string). See there for pros and cons of the two
-// methods.
-func (v *CounterVec) GetMetricWith(labels Labels) (Counter, error) {
-	metric, err := v.metricVec.getMetricWith(labels)
-	if metric != nil {
-		return metric.(Counter), err
-	}
-	return nil, err
-}
-
-// WithLabelValues works as GetMetricWithLabelValues, but panics where
-// GetMetricWithLabelValues would have returned an error. Not returning an
-// error allows shortcuts like
-//     myVec.WithLabelValues("404", "GET").Add(42)
-func (v *CounterVec) WithLabelValues(lvs ...string) Counter {
-	c, err := v.GetMetricWithLabelValues(lvs...)
-	if err != nil {
-		panic(err)
-	}
-	return c
-}
-
-// With works as GetMetricWith, but panics where GetMetricWithLabels would have
-// returned an error. Not returning an error allows shortcuts like
-//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Add(42)
-func (v *CounterVec) With(labels Labels) Counter {
-	c, err := v.GetMetricWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return c
-}
-
-// CurryWith returns a vector curried with the provided labels, i.e. the
-// returned vector has those labels pre-set for all labeled operations performed
-// on it. The cardinality of the curried vector is reduced accordingly. The
-// order of the remaining labels stays the same (just with the curried labels
-// taken out of the sequence – which is relevant for the
-// (GetMetric)WithLabelValues methods). It is possible to curry a curried
-// vector, but only with labels not yet used for currying before.
-//
-// The metrics contained in the CounterVec are shared between the curried and
-// uncurried vectors. They are just accessed differently. Curried and uncurried
-// vectors behave identically in terms of collection. Only one must be
-// registered with a given registry (usually the uncurried version). The Reset
-// method deletes all metrics, even if called on a curried vector.
-func (v *CounterVec) CurryWith(labels Labels) (*CounterVec, error) {
-	vec, err := v.curryWith(labels)
-	if vec != nil {
-		return &CounterVec{vec}, err
-	}
-	return nil, err
-}
-
-// MustCurryWith works as CurryWith but panics where CurryWith would have
-// returned an error.
-func (v *CounterVec) MustCurryWith(labels Labels) *CounterVec {
-	vec, err := v.CurryWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return vec
-}
-
-// CounterFunc is a Counter whose value is determined at collect time by calling a
-// provided function.
-//
-// To create CounterFunc instances, use NewCounterFunc.
-type CounterFunc interface {
-	Metric
-	Collector
-}
-
-// NewCounterFunc creates a new CounterFunc based on the provided
-// CounterOpts. The value reported is determined by calling the given function
-// from within the Write method. Take into account that metric collection may
-// happen concurrently. If that results in concurrent calls to Write, like in
-// the case where a CounterFunc is directly registered with Prometheus, the
-// provided function must be concurrency-safe. The function should also honor
-// the contract for a Counter (values only go up, not down), but compliance will
-// not be checked.
-func NewCounterFunc(opts CounterOpts, function func() float64) CounterFunc {
-	return newValueFunc(NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		nil,
-		opts.ConstLabels,
-	), CounterValue, function)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/desc.go b/vendor/github.com/prometheus/client_golang/prometheus/desc.go
deleted file mode 100644
index 4a755b0fa5..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/desc.go
+++ /dev/null
@@ -1,188 +0,0 @@
-// Copyright 2016 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"errors"
-	"fmt"
-	"sort"
-	"strings"
-
-	"github.com/golang/protobuf/proto"
-	"github.com/prometheus/common/model"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// Desc is the descriptor used by every Prometheus Metric. It is essentially
-// the immutable meta-data of a Metric. The normal Metric implementations
-// included in this package manage their Desc under the hood. Users only have to
-// deal with Desc if they use advanced features like the ExpvarCollector or
-// custom Collectors and Metrics.
-//
-// Descriptors registered with the same registry have to fulfill certain
-// consistency and uniqueness criteria if they share the same fully-qualified
-// name: They must have the same help string and the same label names (aka label
-// dimensions) in each, constLabels and variableLabels, but they must differ in
-// the values of the constLabels.
-//
-// Descriptors that share the same fully-qualified names and the same label
-// values of their constLabels are considered equal.
-//
-// Use NewDesc to create new Desc instances.
-type Desc struct {
-	// fqName has been built from Namespace, Subsystem, and Name.
-	fqName string
-	// help provides some helpful information about this metric.
-	help string
-	// constLabelPairs contains precalculated DTO label pairs based on
-	// the constant labels.
-	constLabelPairs []*dto.LabelPair
-	// VariableLabels contains names of labels for which the metric
-	// maintains variable values.
-	variableLabels []string
-	// id is a hash of the values of the ConstLabels and fqName. This
-	// must be unique among all registered descriptors and can therefore be
-	// used as an identifier of the descriptor.
-	id uint64
-	// dimHash is a hash of the label names (preset and variable) and the
-	// Help string. Each Desc with the same fqName must have the same
-	// dimHash.
-	dimHash uint64
-	// err is an error that occurred during construction. It is reported on
-	// registration time.
-	err error
-}
-
-// NewDesc allocates and initializes a new Desc. Errors are recorded in the Desc
-// and will be reported on registration time. variableLabels and constLabels can
-// be nil if no such labels should be set. fqName and help must not be empty.
-//
-// variableLabels only contain the label names. Their label values are variable
-// and therefore not part of the Desc. (They are managed within the Metric.)
-//
-// For constLabels, the label values are constant. Therefore, they are fully
-// specified in the Desc. See the Collector example for a usage pattern.
-func NewDesc(fqName, help string, variableLabels []string, constLabels Labels) *Desc {
-	d := &Desc{
-		fqName:         fqName,
-		help:           help,
-		variableLabels: variableLabels,
-	}
-	if help == "" {
-		d.err = errors.New("empty help string")
-		return d
-	}
-	if !model.IsValidMetricName(model.LabelValue(fqName)) {
-		d.err = fmt.Errorf("%q is not a valid metric name", fqName)
-		return d
-	}
-	// labelValues contains the label values of const labels (in order of
-	// their sorted label names) plus the fqName (at position 0).
-	labelValues := make([]string, 1, len(constLabels)+1)
-	labelValues[0] = fqName
-	labelNames := make([]string, 0, len(constLabels)+len(variableLabels))
-	labelNameSet := map[string]struct{}{}
-	// First add only the const label names and sort them...
-	for labelName := range constLabels {
-		if !checkLabelName(labelName) {
-			d.err = fmt.Errorf("%q is not a valid label name", labelName)
-			return d
-		}
-		labelNames = append(labelNames, labelName)
-		labelNameSet[labelName] = struct{}{}
-	}
-	sort.Strings(labelNames)
-	// ... so that we can now add const label values in the order of their names.
-	for _, labelName := range labelNames {
-		labelValues = append(labelValues, constLabels[labelName])
-	}
-	// Validate the const label values. They can't have a wrong cardinality, so
-	// use in len(labelValues) as expectedNumberOfValues.
-	if err := validateLabelValues(labelValues, len(labelValues)); err != nil {
-		d.err = err
-		return d
-	}
-	// Now add the variable label names, but prefix them with something that
-	// cannot be in a regular label name. That prevents matching the label
-	// dimension with a different mix between preset and variable labels.
-	for _, labelName := range variableLabels {
-		if !checkLabelName(labelName) {
-			d.err = fmt.Errorf("%q is not a valid label name", labelName)
-			return d
-		}
-		labelNames = append(labelNames, "$"+labelName)
-		labelNameSet[labelName] = struct{}{}
-	}
-	if len(labelNames) != len(labelNameSet) {
-		d.err = errors.New("duplicate label names")
-		return d
-	}
-
-	vh := hashNew()
-	for _, val := range labelValues {
-		vh = hashAdd(vh, val)
-		vh = hashAddByte(vh, separatorByte)
-	}
-	d.id = vh
-	// Sort labelNames so that order doesn't matter for the hash.
-	sort.Strings(labelNames)
-	// Now hash together (in this order) the help string and the sorted
-	// label names.
-	lh := hashNew()
-	lh = hashAdd(lh, help)
-	lh = hashAddByte(lh, separatorByte)
-	for _, labelName := range labelNames {
-		lh = hashAdd(lh, labelName)
-		lh = hashAddByte(lh, separatorByte)
-	}
-	d.dimHash = lh
-
-	d.constLabelPairs = make([]*dto.LabelPair, 0, len(constLabels))
-	for n, v := range constLabels {
-		d.constLabelPairs = append(d.constLabelPairs, &dto.LabelPair{
-			Name:  proto.String(n),
-			Value: proto.String(v),
-		})
-	}
-	sort.Sort(LabelPairSorter(d.constLabelPairs))
-	return d
-}
-
-// NewInvalidDesc returns an invalid descriptor, i.e. a descriptor with the
-// provided error set. If a collector returning such a descriptor is registered,
-// registration will fail with the provided error. NewInvalidDesc can be used by
-// a Collector to signal inability to describe itself.
-func NewInvalidDesc(err error) *Desc {
-	return &Desc{
-		err: err,
-	}
-}
-
-func (d *Desc) String() string {
-	lpStrings := make([]string, 0, len(d.constLabelPairs))
-	for _, lp := range d.constLabelPairs {
-		lpStrings = append(
-			lpStrings,
-			fmt.Sprintf("%s=%q", lp.GetName(), lp.GetValue()),
-		)
-	}
-	return fmt.Sprintf(
-		"Desc{fqName: %q, help: %q, constLabels: {%s}, variableLabels: %v}",
-		d.fqName,
-		d.help,
-		strings.Join(lpStrings, ","),
-		d.variableLabels,
-	)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/doc.go b/vendor/github.com/prometheus/client_golang/prometheus/doc.go
deleted file mode 100644
index 36ef155670..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/doc.go
+++ /dev/null
@@ -1,186 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package prometheus provides metrics primitives to instrument code for
-// monitoring. It also offers a registry for metrics. Sub-packages allow to
-// expose the registered metrics via HTTP (package promhttp) or push them to a
-// Pushgateway (package push).
-//
-// All exported functions and methods are safe to be used concurrently unless
-// specified otherwise.
-//
-// A Basic Example
-//
-// As a starting point, a very basic usage example:
-//
-//    package main
-//
-//    import (
-//    	"log"
-//    	"net/http"
-//
-//    	"github.com/prometheus/client_golang/prometheus"
-//    	"github.com/prometheus/client_golang/prometheus/promhttp"
-//    )
-//
-//    var (
-//    	cpuTemp = prometheus.NewGauge(prometheus.GaugeOpts{
-//    		Name: "cpu_temperature_celsius",
-//    		Help: "Current temperature of the CPU.",
-//    	})
-//    	hdFailures = prometheus.NewCounterVec(
-//    		prometheus.CounterOpts{
-//    			Name: "hd_errors_total",
-//    			Help: "Number of hard-disk errors.",
-//    		},
-//    		[]string{"device"},
-//    	)
-//    )
-//
-//    func init() {
-//    	// Metrics have to be registered to be exposed:
-//    	prometheus.MustRegister(cpuTemp)
-//    	prometheus.MustRegister(hdFailures)
-//    }
-//
-//    func main() {
-//    	cpuTemp.Set(65.3)
-//    	hdFailures.With(prometheus.Labels{"device":"/dev/sda"}).Inc()
-//
-//    	// The Handler function provides a default handler to expose metrics
-//    	// via an HTTP server. "/metrics" is the usual endpoint for that.
-//    	http.Handle("/metrics", promhttp.Handler())
-//    	log.Fatal(http.ListenAndServe(":8080", nil))
-//    }
-//
-//
-// This is a complete program that exports two metrics, a Gauge and a Counter,
-// the latter with a label attached to turn it into a (one-dimensional) vector.
-//
-// Metrics
-//
-// The number of exported identifiers in this package might appear a bit
-// overwhelming. However, in addition to the basic plumbing shown in the example
-// above, you only need to understand the different metric types and their
-// vector versions for basic usage.
-//
-// Above, you have already touched the Counter and the Gauge. There are two more
-// advanced metric types: the Summary and Histogram. A more thorough description
-// of those four metric types can be found in the Prometheus docs:
-// https://prometheus.io/docs/concepts/metric_types/
-//
-// A fifth "type" of metric is Untyped. It behaves like a Gauge, but signals the
-// Prometheus server not to assume anything about its type.
-//
-// In addition to the fundamental metric types Gauge, Counter, Summary,
-// Histogram, and Untyped, a very important part of the Prometheus data model is
-// the partitioning of samples along dimensions called labels, which results in
-// metric vectors. The fundamental types are GaugeVec, CounterVec, SummaryVec,
-// HistogramVec, and UntypedVec.
-//
-// While only the fundamental metric types implement the Metric interface, both
-// the metrics and their vector versions implement the Collector interface. A
-// Collector manages the collection of a number of Metrics, but for convenience,
-// a Metric can also “collect itself”. Note that Gauge, Counter, Summary,
-// Histogram, and Untyped are interfaces themselves while GaugeVec, CounterVec,
-// SummaryVec, HistogramVec, and UntypedVec are not.
-//
-// To create instances of Metrics and their vector versions, you need a suitable
-// …Opts struct, i.e. GaugeOpts, CounterOpts, SummaryOpts, HistogramOpts, or
-// UntypedOpts.
-//
-// Custom Collectors and constant Metrics
-//
-// While you could create your own implementations of Metric, most likely you
-// will only ever implement the Collector interface on your own. At a first
-// glance, a custom Collector seems handy to bundle Metrics for common
-// registration (with the prime example of the different metric vectors above,
-// which bundle all the metrics of the same name but with different labels).
-//
-// There is a more involved use case, too: If you already have metrics
-// available, created outside of the Prometheus context, you don't need the
-// interface of the various Metric types. You essentially want to mirror the
-// existing numbers into Prometheus Metrics during collection. An own
-// implementation of the Collector interface is perfect for that. You can create
-// Metric instances “on the fly” using NewConstMetric, NewConstHistogram, and
-// NewConstSummary (and their respective Must… versions). That will happen in
-// the Collect method. The Describe method has to return separate Desc
-// instances, representative of the “throw-away” metrics to be created later.
-// NewDesc comes in handy to create those Desc instances.
-//
-// The Collector example illustrates the use case. You can also look at the
-// source code of the processCollector (mirroring process metrics), the
-// goCollector (mirroring Go metrics), or the expvarCollector (mirroring expvar
-// metrics) as examples that are used in this package itself.
-//
-// If you just need to call a function to get a single float value to collect as
-// a metric, GaugeFunc, CounterFunc, or UntypedFunc might be interesting
-// shortcuts.
-//
-// Advanced Uses of the Registry
-//
-// While MustRegister is the by far most common way of registering a Collector,
-// sometimes you might want to handle the errors the registration might cause.
-// As suggested by the name, MustRegister panics if an error occurs. With the
-// Register function, the error is returned and can be handled.
-//
-// An error is returned if the registered Collector is incompatible or
-// inconsistent with already registered metrics. The registry aims for
-// consistency of the collected metrics according to the Prometheus data model.
-// Inconsistencies are ideally detected at registration time, not at collect
-// time. The former will usually be detected at start-up time of a program,
-// while the latter will only happen at scrape time, possibly not even on the
-// first scrape if the inconsistency only becomes relevant later. That is the
-// main reason why a Collector and a Metric have to describe themselves to the
-// registry.
-//
-// So far, everything we did operated on the so-called default registry, as it
-// can be found in the global DefaultRegisterer variable. With NewRegistry, you
-// can create a custom registry, or you can even implement the Registerer or
-// Gatherer interfaces yourself. The methods Register and Unregister work in the
-// same way on a custom registry as the global functions Register and Unregister
-// on the default registry.
-//
-// There are a number of uses for custom registries: You can use registries with
-// special properties, see NewPedanticRegistry. You can avoid global state, as
-// it is imposed by the DefaultRegisterer. You can use multiple registries at
-// the same time to expose different metrics in different ways.  You can use
-// separate registries for testing purposes.
-//
-// Also note that the DefaultRegisterer comes registered with a Collector for Go
-// runtime metrics (via NewGoCollector) and a Collector for process metrics (via
-// NewProcessCollector). With a custom registry, you are in control and decide
-// yourself about the Collectors to register.
-//
-// HTTP Exposition
-//
-// The Registry implements the Gatherer interface. The caller of the Gather
-// method can then expose the gathered metrics in some way. Usually, the metrics
-// are served via HTTP on the /metrics endpoint. That's happening in the example
-// above. The tools to expose metrics via HTTP are in the promhttp sub-package.
-// (The top-level functions in the prometheus package are deprecated.)
-//
-// Pushing to the Pushgateway
-//
-// Function for pushing to the Pushgateway can be found in the push sub-package.
-//
-// Graphite Bridge
-//
-// Functions and examples to push metrics from a Gatherer to Graphite can be
-// found in the graphite sub-package.
-//
-// Other Means of Exposition
-//
-// More ways of exposing metrics can easily be added by following the approaches
-// of the existing implementations.
-package prometheus
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
deleted file mode 100644
index 18a99d5faa..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
+++ /dev/null
@@ -1,119 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"encoding/json"
-	"expvar"
-)
-
-type expvarCollector struct {
-	exports map[string]*Desc
-}
-
-// NewExpvarCollector returns a newly allocated expvar Collector that still has
-// to be registered with a Prometheus registry.
-//
-// An expvar Collector collects metrics from the expvar interface. It provides a
-// quick way to expose numeric values that are already exported via expvar as
-// Prometheus metrics. Note that the data models of expvar and Prometheus are
-// fundamentally different, and that the expvar Collector is inherently slower
-// than native Prometheus metrics. Thus, the expvar Collector is probably great
-// for experiments and prototying, but you should seriously consider a more
-// direct implementation of Prometheus metrics for monitoring production
-// systems.
-//
-// The exports map has the following meaning:
-//
-// The keys in the map correspond to expvar keys, i.e. for every expvar key you
-// want to export as Prometheus metric, you need an entry in the exports
-// map. The descriptor mapped to each key describes how to export the expvar
-// value. It defines the name and the help string of the Prometheus metric
-// proxying the expvar value. The type will always be Untyped.
-//
-// For descriptors without variable labels, the expvar value must be a number or
-// a bool. The number is then directly exported as the Prometheus sample
-// value. (For a bool, 'false' translates to 0 and 'true' to 1). Expvar values
-// that are not numbers or bools are silently ignored.
-//
-// If the descriptor has one variable label, the expvar value must be an expvar
-// map. The keys in the expvar map become the various values of the one
-// Prometheus label. The values in the expvar map must be numbers or bools again
-// as above.
-//
-// For descriptors with more than one variable label, the expvar must be a
-// nested expvar map, i.e. where the values of the topmost map are maps again
-// etc. until a depth is reached that corresponds to the number of labels. The
-// leaves of that structure must be numbers or bools as above to serve as the
-// sample values.
-//
-// Anything that does not fit into the scheme above is silently ignored.
-func NewExpvarCollector(exports map[string]*Desc) Collector {
-	return &expvarCollector{
-		exports: exports,
-	}
-}
-
-// Describe implements Collector.
-func (e *expvarCollector) Describe(ch chan<- *Desc) {
-	for _, desc := range e.exports {
-		ch <- desc
-	}
-}
-
-// Collect implements Collector.
-func (e *expvarCollector) Collect(ch chan<- Metric) {
-	for name, desc := range e.exports {
-		var m Metric
-		expVar := expvar.Get(name)
-		if expVar == nil {
-			continue
-		}
-		var v interface{}
-		labels := make([]string, len(desc.variableLabels))
-		if err := json.Unmarshal([]byte(expVar.String()), &v); err != nil {
-			ch <- NewInvalidMetric(desc, err)
-			continue
-		}
-		var processValue func(v interface{}, i int)
-		processValue = func(v interface{}, i int) {
-			if i >= len(labels) {
-				copiedLabels := append(make([]string, 0, len(labels)), labels...)
-				switch v := v.(type) {
-				case float64:
-					m = MustNewConstMetric(desc, UntypedValue, v, copiedLabels...)
-				case bool:
-					if v {
-						m = MustNewConstMetric(desc, UntypedValue, 1, copiedLabels...)
-					} else {
-						m = MustNewConstMetric(desc, UntypedValue, 0, copiedLabels...)
-					}
-				default:
-					return
-				}
-				ch <- m
-				return
-			}
-			vm, ok := v.(map[string]interface{})
-			if !ok {
-				return
-			}
-			for lv, val := range vm {
-				labels[i] = lv
-				processValue(val, i+1)
-			}
-		}
-		processValue(v, 0)
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/fnv.go b/vendor/github.com/prometheus/client_golang/prometheus/fnv.go
deleted file mode 100644
index e3b67df8ac..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/fnv.go
+++ /dev/null
@@ -1,29 +0,0 @@
-package prometheus
-
-// Inline and byte-free variant of hash/fnv's fnv64a.
-
-const (
-	offset64 = 14695981039346656037
-	prime64  = 1099511628211
-)
-
-// hashNew initializies a new fnv64a hash value.
-func hashNew() uint64 {
-	return offset64
-}
-
-// hashAdd adds a string to a fnv64a hash value, returning the updated hash.
-func hashAdd(h uint64, s string) uint64 {
-	for i := 0; i < len(s); i++ {
-		h ^= uint64(s[i])
-		h *= prime64
-	}
-	return h
-}
-
-// hashAddByte adds a byte to a fnv64a hash value, returning the updated hash.
-func hashAddByte(h uint64, b byte) uint64 {
-	h ^= uint64(b)
-	h *= prime64
-	return h
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/gauge.go b/vendor/github.com/prometheus/client_golang/prometheus/gauge.go
deleted file mode 100644
index 17c72d7eb0..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/gauge.go
+++ /dev/null
@@ -1,286 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"math"
-	"sync/atomic"
-	"time"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// Gauge is a Metric that represents a single numerical value that can
-// arbitrarily go up and down.
-//
-// A Gauge is typically used for measured values like temperatures or current
-// memory usage, but also "counts" that can go up and down, like the number of
-// running goroutines.
-//
-// To create Gauge instances, use NewGauge.
-type Gauge interface {
-	Metric
-	Collector
-
-	// Set sets the Gauge to an arbitrary value.
-	Set(float64)
-	// Inc increments the Gauge by 1. Use Add to increment it by arbitrary
-	// values.
-	Inc()
-	// Dec decrements the Gauge by 1. Use Sub to decrement it by arbitrary
-	// values.
-	Dec()
-	// Add adds the given value to the Gauge. (The value can be negative,
-	// resulting in a decrease of the Gauge.)
-	Add(float64)
-	// Sub subtracts the given value from the Gauge. (The value can be
-	// negative, resulting in an increase of the Gauge.)
-	Sub(float64)
-
-	// SetToCurrentTime sets the Gauge to the current Unix time in seconds.
-	SetToCurrentTime()
-}
-
-// GaugeOpts is an alias for Opts. See there for doc comments.
-type GaugeOpts Opts
-
-// NewGauge creates a new Gauge based on the provided GaugeOpts.
-//
-// The returned implementation is optimized for a fast Set method. If you have a
-// choice for managing the value of a Gauge via Set vs. Inc/Dec/Add/Sub, pick
-// the former. For example, the Inc method of the returned Gauge is slower than
-// the Inc method of a Counter returned by NewCounter. This matches the typical
-// scenarios for Gauges and Counters, where the former tends to be Set-heavy and
-// the latter Inc-heavy.
-func NewGauge(opts GaugeOpts) Gauge {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		nil,
-		opts.ConstLabels,
-	)
-	result := &gauge{desc: desc, labelPairs: desc.constLabelPairs}
-	result.init(result) // Init self-collection.
-	return result
-}
-
-type gauge struct {
-	// valBits contains the bits of the represented float64 value. It has
-	// to go first in the struct to guarantee alignment for atomic
-	// operations.  http://golang.org/pkg/sync/atomic/#pkg-note-BUG
-	valBits uint64
-
-	selfCollector
-
-	desc       *Desc
-	labelPairs []*dto.LabelPair
-}
-
-func (g *gauge) Desc() *Desc {
-	return g.desc
-}
-
-func (g *gauge) Set(val float64) {
-	atomic.StoreUint64(&g.valBits, math.Float64bits(val))
-}
-
-func (g *gauge) SetToCurrentTime() {
-	g.Set(float64(time.Now().UnixNano()) / 1e9)
-}
-
-func (g *gauge) Inc() {
-	g.Add(1)
-}
-
-func (g *gauge) Dec() {
-	g.Add(-1)
-}
-
-func (g *gauge) Add(val float64) {
-	for {
-		oldBits := atomic.LoadUint64(&g.valBits)
-		newBits := math.Float64bits(math.Float64frombits(oldBits) + val)
-		if atomic.CompareAndSwapUint64(&g.valBits, oldBits, newBits) {
-			return
-		}
-	}
-}
-
-func (g *gauge) Sub(val float64) {
-	g.Add(val * -1)
-}
-
-func (g *gauge) Write(out *dto.Metric) error {
-	val := math.Float64frombits(atomic.LoadUint64(&g.valBits))
-	return populateMetric(GaugeValue, val, g.labelPairs, out)
-}
-
-// GaugeVec is a Collector that bundles a set of Gauges that all share the same
-// Desc, but have different values for their variable labels. This is used if
-// you want to count the same thing partitioned by various dimensions
-// (e.g. number of operations queued, partitioned by user and operation
-// type). Create instances with NewGaugeVec.
-type GaugeVec struct {
-	*metricVec
-}
-
-// NewGaugeVec creates a new GaugeVec based on the provided GaugeOpts and
-// partitioned by the given label names.
-func NewGaugeVec(opts GaugeOpts, labelNames []string) *GaugeVec {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		labelNames,
-		opts.ConstLabels,
-	)
-	return &GaugeVec{
-		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
-			if len(lvs) != len(desc.variableLabels) {
-				panic(errInconsistentCardinality)
-			}
-			result := &gauge{desc: desc, labelPairs: makeLabelPairs(desc, lvs)}
-			result.init(result) // Init self-collection.
-			return result
-		}),
-	}
-}
-
-// GetMetricWithLabelValues returns the Gauge for the given slice of label
-// values (same order as the VariableLabels in Desc). If that combination of
-// label values is accessed for the first time, a new Gauge is created.
-//
-// It is possible to call this method without using the returned Gauge to only
-// create the new Gauge but leave it at its starting value 0. See also the
-// SummaryVec example.
-//
-// Keeping the Gauge for later use is possible (and should be considered if
-// performance is critical), but keep in mind that Reset, DeleteLabelValues and
-// Delete can be used to delete the Gauge from the GaugeVec. In that case, the
-// Gauge will still exist, but it will not be exported anymore, even if a
-// Gauge with the same label values is created later. See also the CounterVec
-// example.
-//
-// An error is returned if the number of label values is not the same as the
-// number of VariableLabels in Desc (minus any curried labels).
-//
-// Note that for more than one label value, this method is prone to mistakes
-// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
-// an alternative to avoid that type of mistake. For higher label numbers, the
-// latter has a much more readable (albeit more verbose) syntax, but it comes
-// with a performance overhead (for creating and processing the Labels map).
-func (v *GaugeVec) GetMetricWithLabelValues(lvs ...string) (Gauge, error) {
-	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
-	if metric != nil {
-		return metric.(Gauge), err
-	}
-	return nil, err
-}
-
-// GetMetricWith returns the Gauge for the given Labels map (the label names
-// must match those of the VariableLabels in Desc). If that label map is
-// accessed for the first time, a new Gauge is created. Implications of
-// creating a Gauge without using it and keeping the Gauge for later use are
-// the same as for GetMetricWithLabelValues.
-//
-// An error is returned if the number and names of the Labels are inconsistent
-// with those of the VariableLabels in Desc (minus any curried labels).
-//
-// This method is used for the same purpose as
-// GetMetricWithLabelValues(...string). See there for pros and cons of the two
-// methods.
-func (v *GaugeVec) GetMetricWith(labels Labels) (Gauge, error) {
-	metric, err := v.metricVec.getMetricWith(labels)
-	if metric != nil {
-		return metric.(Gauge), err
-	}
-	return nil, err
-}
-
-// WithLabelValues works as GetMetricWithLabelValues, but panics where
-// GetMetricWithLabelValues would have returned an error. Not returning an
-// error allows shortcuts like
-//     myVec.WithLabelValues("404", "GET").Add(42)
-func (v *GaugeVec) WithLabelValues(lvs ...string) Gauge {
-	g, err := v.GetMetricWithLabelValues(lvs...)
-	if err != nil {
-		panic(err)
-	}
-	return g
-}
-
-// With works as GetMetricWith, but panics where GetMetricWithLabels would have
-// returned an error. Not returning an error allows shortcuts like
-//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Add(42)
-func (v *GaugeVec) With(labels Labels) Gauge {
-	g, err := v.GetMetricWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return g
-}
-
-// CurryWith returns a vector curried with the provided labels, i.e. the
-// returned vector has those labels pre-set for all labeled operations performed
-// on it. The cardinality of the curried vector is reduced accordingly. The
-// order of the remaining labels stays the same (just with the curried labels
-// taken out of the sequence – which is relevant for the
-// (GetMetric)WithLabelValues methods). It is possible to curry a curried
-// vector, but only with labels not yet used for currying before.
-//
-// The metrics contained in the GaugeVec are shared between the curried and
-// uncurried vectors. They are just accessed differently. Curried and uncurried
-// vectors behave identically in terms of collection. Only one must be
-// registered with a given registry (usually the uncurried version). The Reset
-// method deletes all metrics, even if called on a curried vector.
-func (v *GaugeVec) CurryWith(labels Labels) (*GaugeVec, error) {
-	vec, err := v.curryWith(labels)
-	if vec != nil {
-		return &GaugeVec{vec}, err
-	}
-	return nil, err
-}
-
-// MustCurryWith works as CurryWith but panics where CurryWith would have
-// returned an error.
-func (v *GaugeVec) MustCurryWith(labels Labels) *GaugeVec {
-	vec, err := v.CurryWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return vec
-}
-
-// GaugeFunc is a Gauge whose value is determined at collect time by calling a
-// provided function.
-//
-// To create GaugeFunc instances, use NewGaugeFunc.
-type GaugeFunc interface {
-	Metric
-	Collector
-}
-
-// NewGaugeFunc creates a new GaugeFunc based on the provided GaugeOpts. The
-// value reported is determined by calling the given function from within the
-// Write method. Take into account that metric collection may happen
-// concurrently. If that results in concurrent calls to Write, like in the case
-// where a GaugeFunc is directly registered with Prometheus, the provided
-// function must be concurrency-safe.
-func NewGaugeFunc(opts GaugeOpts, function func() float64) GaugeFunc {
-	return newValueFunc(NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		nil,
-		opts.ConstLabels,
-	), GaugeValue, function)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
deleted file mode 100644
index 096454af91..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
+++ /dev/null
@@ -1,284 +0,0 @@
-package prometheus
-
-import (
-	"fmt"
-	"runtime"
-	"runtime/debug"
-	"time"
-)
-
-type goCollector struct {
-	goroutinesDesc *Desc
-	threadsDesc    *Desc
-	gcDesc         *Desc
-	goInfoDesc     *Desc
-
-	// metrics to describe and collect
-	metrics memStatsMetrics
-}
-
-// NewGoCollector returns a collector which exports metrics about the current
-// go process.
-func NewGoCollector() Collector {
-	return &goCollector{
-		goroutinesDesc: NewDesc(
-			"go_goroutines",
-			"Number of goroutines that currently exist.",
-			nil, nil),
-		threadsDesc: NewDesc(
-			"go_threads",
-			"Number of OS threads created.",
-			nil, nil),
-		gcDesc: NewDesc(
-			"go_gc_duration_seconds",
-			"A summary of the GC invocation durations.",
-			nil, nil),
-		goInfoDesc: NewDesc(
-			"go_info",
-			"Information about the Go environment.",
-			nil, Labels{"version": runtime.Version()}),
-		metrics: memStatsMetrics{
-			{
-				desc: NewDesc(
-					memstatNamespace("alloc_bytes"),
-					"Number of bytes allocated and still in use.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Alloc) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("alloc_bytes_total"),
-					"Total number of bytes allocated, even if freed.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.TotalAlloc) },
-				valType: CounterValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("sys_bytes"),
-					"Number of bytes obtained from system.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Sys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("lookups_total"),
-					"Total number of pointer lookups.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Lookups) },
-				valType: CounterValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("mallocs_total"),
-					"Total number of mallocs.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Mallocs) },
-				valType: CounterValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("frees_total"),
-					"Total number of frees.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Frees) },
-				valType: CounterValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_alloc_bytes"),
-					"Number of heap bytes allocated and still in use.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapAlloc) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_sys_bytes"),
-					"Number of heap bytes obtained from system.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_idle_bytes"),
-					"Number of heap bytes waiting to be used.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapIdle) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_inuse_bytes"),
-					"Number of heap bytes that are in use.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapInuse) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_released_bytes"),
-					"Number of heap bytes released to OS.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapReleased) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("heap_objects"),
-					"Number of allocated objects.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapObjects) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("stack_inuse_bytes"),
-					"Number of bytes in use by the stack allocator.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.StackInuse) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("stack_sys_bytes"),
-					"Number of bytes obtained from system for stack allocator.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.StackSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("mspan_inuse_bytes"),
-					"Number of bytes in use by mspan structures.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MSpanInuse) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("mspan_sys_bytes"),
-					"Number of bytes used for mspan structures obtained from system.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MSpanSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("mcache_inuse_bytes"),
-					"Number of bytes in use by mcache structures.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MCacheInuse) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("mcache_sys_bytes"),
-					"Number of bytes used for mcache structures obtained from system.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MCacheSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("buck_hash_sys_bytes"),
-					"Number of bytes used by the profiling bucket hash table.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.BuckHashSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("gc_sys_bytes"),
-					"Number of bytes used for garbage collection system metadata.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.GCSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("other_sys_bytes"),
-					"Number of bytes used for other system allocations.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.OtherSys) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("next_gc_bytes"),
-					"Number of heap bytes when next garbage collection will take place.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.NextGC) },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("last_gc_time_seconds"),
-					"Number of seconds since 1970 of last garbage collection.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.LastGC) / 1e9 },
-				valType: GaugeValue,
-			}, {
-				desc: NewDesc(
-					memstatNamespace("gc_cpu_fraction"),
-					"The fraction of this program's available CPU time used by the GC since the program started.",
-					nil, nil,
-				),
-				eval:    func(ms *runtime.MemStats) float64 { return ms.GCCPUFraction },
-				valType: GaugeValue,
-			},
-		},
-	}
-}
-
-func memstatNamespace(s string) string {
-	return fmt.Sprintf("go_memstats_%s", s)
-}
-
-// Describe returns all descriptions of the collector.
-func (c *goCollector) Describe(ch chan<- *Desc) {
-	ch <- c.goroutinesDesc
-	ch <- c.threadsDesc
-	ch <- c.gcDesc
-	ch <- c.goInfoDesc
-	for _, i := range c.metrics {
-		ch <- i.desc
-	}
-}
-
-// Collect returns the current state of all metrics of the collector.
-func (c *goCollector) Collect(ch chan<- Metric) {
-	ch <- MustNewConstMetric(c.goroutinesDesc, GaugeValue, float64(runtime.NumGoroutine()))
-	n, _ := runtime.ThreadCreateProfile(nil)
-	ch <- MustNewConstMetric(c.threadsDesc, GaugeValue, float64(n))
-
-	var stats debug.GCStats
-	stats.PauseQuantiles = make([]time.Duration, 5)
-	debug.ReadGCStats(&stats)
-
-	quantiles := make(map[float64]float64)
-	for idx, pq := range stats.PauseQuantiles[1:] {
-		quantiles[float64(idx+1)/float64(len(stats.PauseQuantiles)-1)] = pq.Seconds()
-	}
-	quantiles[0.0] = stats.PauseQuantiles[0].Seconds()
-	ch <- MustNewConstSummary(c.gcDesc, uint64(stats.NumGC), float64(stats.PauseTotal.Seconds()), quantiles)
-
-	ch <- MustNewConstMetric(c.goInfoDesc, GaugeValue, 1)
-
-	ms := &runtime.MemStats{}
-	runtime.ReadMemStats(ms)
-	for _, i := range c.metrics {
-		ch <- MustNewConstMetric(i.desc, i.valType, i.eval(ms))
-	}
-}
-
-// memStatsMetrics provide description, value, and value type for memstat metrics.
-type memStatsMetrics []struct {
-	desc    *Desc
-	eval    func(*runtime.MemStats) float64
-	valType ValueType
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/histogram.go b/vendor/github.com/prometheus/client_golang/prometheus/histogram.go
deleted file mode 100644
index 331783a75c..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/histogram.go
+++ /dev/null
@@ -1,505 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"fmt"
-	"math"
-	"sort"
-	"sync/atomic"
-
-	"github.com/golang/protobuf/proto"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// A Histogram counts individual observations from an event or sample stream in
-// configurable buckets. Similar to a summary, it also provides a sum of
-// observations and an observation count.
-//
-// On the Prometheus server, quantiles can be calculated from a Histogram using
-// the histogram_quantile function in the query language.
-//
-// Note that Histograms, in contrast to Summaries, can be aggregated with the
-// Prometheus query language (see the documentation for detailed
-// procedures). However, Histograms require the user to pre-define suitable
-// buckets, and they are in general less accurate. The Observe method of a
-// Histogram has a very low performance overhead in comparison with the Observe
-// method of a Summary.
-//
-// To create Histogram instances, use NewHistogram.
-type Histogram interface {
-	Metric
-	Collector
-
-	// Observe adds a single observation to the histogram.
-	Observe(float64)
-}
-
-// bucketLabel is used for the label that defines the upper bound of a
-// bucket of a histogram ("le" -> "less or equal").
-const bucketLabel = "le"
-
-// DefBuckets are the default Histogram buckets. The default buckets are
-// tailored to broadly measure the response time (in seconds) of a network
-// service. Most likely, however, you will be required to define buckets
-// customized to your use case.
-var (
-	DefBuckets = []float64{.005, .01, .025, .05, .1, .25, .5, 1, 2.5, 5, 10}
-
-	errBucketLabelNotAllowed = fmt.Errorf(
-		"%q is not allowed as label name in histograms", bucketLabel,
-	)
-)
-
-// LinearBuckets creates 'count' buckets, each 'width' wide, where the lowest
-// bucket has an upper bound of 'start'. The final +Inf bucket is not counted
-// and not included in the returned slice. The returned slice is meant to be
-// used for the Buckets field of HistogramOpts.
-//
-// The function panics if 'count' is zero or negative.
-func LinearBuckets(start, width float64, count int) []float64 {
-	if count < 1 {
-		panic("LinearBuckets needs a positive count")
-	}
-	buckets := make([]float64, count)
-	for i := range buckets {
-		buckets[i] = start
-		start += width
-	}
-	return buckets
-}
-
-// ExponentialBuckets creates 'count' buckets, where the lowest bucket has an
-// upper bound of 'start' and each following bucket's upper bound is 'factor'
-// times the previous bucket's upper bound. The final +Inf bucket is not counted
-// and not included in the returned slice. The returned slice is meant to be
-// used for the Buckets field of HistogramOpts.
-//
-// The function panics if 'count' is 0 or negative, if 'start' is 0 or negative,
-// or if 'factor' is less than or equal 1.
-func ExponentialBuckets(start, factor float64, count int) []float64 {
-	if count < 1 {
-		panic("ExponentialBuckets needs a positive count")
-	}
-	if start <= 0 {
-		panic("ExponentialBuckets needs a positive start value")
-	}
-	if factor <= 1 {
-		panic("ExponentialBuckets needs a factor greater than 1")
-	}
-	buckets := make([]float64, count)
-	for i := range buckets {
-		buckets[i] = start
-		start *= factor
-	}
-	return buckets
-}
-
-// HistogramOpts bundles the options for creating a Histogram metric. It is
-// mandatory to set Name and Help to a non-empty string. All other fields are
-// optional and can safely be left at their zero value.
-type HistogramOpts struct {
-	// Namespace, Subsystem, and Name are components of the fully-qualified
-	// name of the Histogram (created by joining these components with
-	// "_"). Only Name is mandatory, the others merely help structuring the
-	// name. Note that the fully-qualified name of the Histogram must be a
-	// valid Prometheus metric name.
-	Namespace string
-	Subsystem string
-	Name      string
-
-	// Help provides information about this Histogram. Mandatory!
-	//
-	// Metrics with the same fully-qualified name must have the same Help
-	// string.
-	Help string
-
-	// ConstLabels are used to attach fixed labels to this metric. Metrics
-	// with the same fully-qualified name must have the same label names in
-	// their ConstLabels.
-	//
-	// ConstLabels are only used rarely. In particular, do not use them to
-	// attach the same labels to all your metrics. Those use cases are
-	// better covered by target labels set by the scraping Prometheus
-	// server, or by one specific metric (e.g. a build_info or a
-	// machine_role metric). See also
-	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
-	ConstLabels Labels
-
-	// Buckets defines the buckets into which observations are counted. Each
-	// element in the slice is the upper inclusive bound of a bucket. The
-	// values must be sorted in strictly increasing order. There is no need
-	// to add a highest bucket with +Inf bound, it will be added
-	// implicitly. The default value is DefBuckets.
-	Buckets []float64
-}
-
-// NewHistogram creates a new Histogram based on the provided HistogramOpts. It
-// panics if the buckets in HistogramOpts are not in strictly increasing order.
-func NewHistogram(opts HistogramOpts) Histogram {
-	return newHistogram(
-		NewDesc(
-			BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-			opts.Help,
-			nil,
-			opts.ConstLabels,
-		),
-		opts,
-	)
-}
-
-func newHistogram(desc *Desc, opts HistogramOpts, labelValues ...string) Histogram {
-	if len(desc.variableLabels) != len(labelValues) {
-		panic(errInconsistentCardinality)
-	}
-
-	for _, n := range desc.variableLabels {
-		if n == bucketLabel {
-			panic(errBucketLabelNotAllowed)
-		}
-	}
-	for _, lp := range desc.constLabelPairs {
-		if lp.GetName() == bucketLabel {
-			panic(errBucketLabelNotAllowed)
-		}
-	}
-
-	if len(opts.Buckets) == 0 {
-		opts.Buckets = DefBuckets
-	}
-
-	h := &histogram{
-		desc:        desc,
-		upperBounds: opts.Buckets,
-		labelPairs:  makeLabelPairs(desc, labelValues),
-	}
-	for i, upperBound := range h.upperBounds {
-		if i < len(h.upperBounds)-1 {
-			if upperBound >= h.upperBounds[i+1] {
-				panic(fmt.Errorf(
-					"histogram buckets must be in increasing order: %f >= %f",
-					upperBound, h.upperBounds[i+1],
-				))
-			}
-		} else {
-			if math.IsInf(upperBound, +1) {
-				// The +Inf bucket is implicit. Remove it here.
-				h.upperBounds = h.upperBounds[:i]
-			}
-		}
-	}
-	// Finally we know the final length of h.upperBounds and can make counts.
-	h.counts = make([]uint64, len(h.upperBounds))
-
-	h.init(h) // Init self-collection.
-	return h
-}
-
-type histogram struct {
-	// sumBits contains the bits of the float64 representing the sum of all
-	// observations. sumBits and count have to go first in the struct to
-	// guarantee alignment for atomic operations.
-	// http://golang.org/pkg/sync/atomic/#pkg-note-BUG
-	sumBits uint64
-	count   uint64
-
-	selfCollector
-	// Note that there is no mutex required.
-
-	desc *Desc
-
-	upperBounds []float64
-	counts      []uint64
-
-	labelPairs []*dto.LabelPair
-}
-
-func (h *histogram) Desc() *Desc {
-	return h.desc
-}
-
-func (h *histogram) Observe(v float64) {
-	// TODO(beorn7): For small numbers of buckets (<30), a linear search is
-	// slightly faster than the binary search. If we really care, we could
-	// switch from one search strategy to the other depending on the number
-	// of buckets.
-	//
-	// Microbenchmarks (BenchmarkHistogramNoLabels):
-	// 11 buckets: 38.3 ns/op linear - binary 48.7 ns/op
-	// 100 buckets: 78.1 ns/op linear - binary 54.9 ns/op
-	// 300 buckets: 154 ns/op linear - binary 61.6 ns/op
-	i := sort.SearchFloat64s(h.upperBounds, v)
-	if i < len(h.counts) {
-		atomic.AddUint64(&h.counts[i], 1)
-	}
-	atomic.AddUint64(&h.count, 1)
-	for {
-		oldBits := atomic.LoadUint64(&h.sumBits)
-		newBits := math.Float64bits(math.Float64frombits(oldBits) + v)
-		if atomic.CompareAndSwapUint64(&h.sumBits, oldBits, newBits) {
-			break
-		}
-	}
-}
-
-func (h *histogram) Write(out *dto.Metric) error {
-	his := &dto.Histogram{}
-	buckets := make([]*dto.Bucket, len(h.upperBounds))
-
-	his.SampleSum = proto.Float64(math.Float64frombits(atomic.LoadUint64(&h.sumBits)))
-	his.SampleCount = proto.Uint64(atomic.LoadUint64(&h.count))
-	var count uint64
-	for i, upperBound := range h.upperBounds {
-		count += atomic.LoadUint64(&h.counts[i])
-		buckets[i] = &dto.Bucket{
-			CumulativeCount: proto.Uint64(count),
-			UpperBound:      proto.Float64(upperBound),
-		}
-	}
-	his.Bucket = buckets
-	out.Histogram = his
-	out.Label = h.labelPairs
-	return nil
-}
-
-// HistogramVec is a Collector that bundles a set of Histograms that all share the
-// same Desc, but have different values for their variable labels. This is used
-// if you want to count the same thing partitioned by various dimensions
-// (e.g. HTTP request latencies, partitioned by status code and method). Create
-// instances with NewHistogramVec.
-type HistogramVec struct {
-	*metricVec
-}
-
-// NewHistogramVec creates a new HistogramVec based on the provided HistogramOpts and
-// partitioned by the given label names.
-func NewHistogramVec(opts HistogramOpts, labelNames []string) *HistogramVec {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		labelNames,
-		opts.ConstLabels,
-	)
-	return &HistogramVec{
-		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
-			return newHistogram(desc, opts, lvs...)
-		}),
-	}
-}
-
-// GetMetricWithLabelValues returns the Histogram for the given slice of label
-// values (same order as the VariableLabels in Desc). If that combination of
-// label values is accessed for the first time, a new Histogram is created.
-//
-// It is possible to call this method without using the returned Histogram to only
-// create the new Histogram but leave it at its starting value, a Histogram without
-// any observations.
-//
-// Keeping the Histogram for later use is possible (and should be considered if
-// performance is critical), but keep in mind that Reset, DeleteLabelValues and
-// Delete can be used to delete the Histogram from the HistogramVec. In that case, the
-// Histogram will still exist, but it will not be exported anymore, even if a
-// Histogram with the same label values is created later. See also the CounterVec
-// example.
-//
-// An error is returned if the number of label values is not the same as the
-// number of VariableLabels in Desc (minus any curried labels).
-//
-// Note that for more than one label value, this method is prone to mistakes
-// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
-// an alternative to avoid that type of mistake. For higher label numbers, the
-// latter has a much more readable (albeit more verbose) syntax, but it comes
-// with a performance overhead (for creating and processing the Labels map).
-// See also the GaugeVec example.
-func (v *HistogramVec) GetMetricWithLabelValues(lvs ...string) (Observer, error) {
-	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
-	if metric != nil {
-		return metric.(Observer), err
-	}
-	return nil, err
-}
-
-// GetMetricWith returns the Histogram for the given Labels map (the label names
-// must match those of the VariableLabels in Desc). If that label map is
-// accessed for the first time, a new Histogram is created. Implications of
-// creating a Histogram without using it and keeping the Histogram for later use
-// are the same as for GetMetricWithLabelValues.
-//
-// An error is returned if the number and names of the Labels are inconsistent
-// with those of the VariableLabels in Desc (minus any curried labels).
-//
-// This method is used for the same purpose as
-// GetMetricWithLabelValues(...string). See there for pros and cons of the two
-// methods.
-func (v *HistogramVec) GetMetricWith(labels Labels) (Observer, error) {
-	metric, err := v.metricVec.getMetricWith(labels)
-	if metric != nil {
-		return metric.(Observer), err
-	}
-	return nil, err
-}
-
-// WithLabelValues works as GetMetricWithLabelValues, but panics where
-// GetMetricWithLabelValues would have returned an error. Not returning an
-// error allows shortcuts like
-//     myVec.WithLabelValues("404", "GET").Observe(42.21)
-func (v *HistogramVec) WithLabelValues(lvs ...string) Observer {
-	h, err := v.GetMetricWithLabelValues(lvs...)
-	if err != nil {
-		panic(err)
-	}
-	return h
-}
-
-// With works as GetMetricWith but panics where GetMetricWithLabels would have
-// returned an error. Not returning an error allows shortcuts like
-//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Observe(42.21)
-func (v *HistogramVec) With(labels Labels) Observer {
-	h, err := v.GetMetricWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return h
-}
-
-// CurryWith returns a vector curried with the provided labels, i.e. the
-// returned vector has those labels pre-set for all labeled operations performed
-// on it. The cardinality of the curried vector is reduced accordingly. The
-// order of the remaining labels stays the same (just with the curried labels
-// taken out of the sequence – which is relevant for the
-// (GetMetric)WithLabelValues methods). It is possible to curry a curried
-// vector, but only with labels not yet used for currying before.
-//
-// The metrics contained in the HistogramVec are shared between the curried and
-// uncurried vectors. They are just accessed differently. Curried and uncurried
-// vectors behave identically in terms of collection. Only one must be
-// registered with a given registry (usually the uncurried version). The Reset
-// method deletes all metrics, even if called on a curried vector.
-func (v *HistogramVec) CurryWith(labels Labels) (ObserverVec, error) {
-	vec, err := v.curryWith(labels)
-	if vec != nil {
-		return &HistogramVec{vec}, err
-	}
-	return nil, err
-}
-
-// MustCurryWith works as CurryWith but panics where CurryWith would have
-// returned an error.
-func (v *HistogramVec) MustCurryWith(labels Labels) ObserverVec {
-	vec, err := v.CurryWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return vec
-}
-
-type constHistogram struct {
-	desc       *Desc
-	count      uint64
-	sum        float64
-	buckets    map[float64]uint64
-	labelPairs []*dto.LabelPair
-}
-
-func (h *constHistogram) Desc() *Desc {
-	return h.desc
-}
-
-func (h *constHistogram) Write(out *dto.Metric) error {
-	his := &dto.Histogram{}
-	buckets := make([]*dto.Bucket, 0, len(h.buckets))
-
-	his.SampleCount = proto.Uint64(h.count)
-	his.SampleSum = proto.Float64(h.sum)
-
-	for upperBound, count := range h.buckets {
-		buckets = append(buckets, &dto.Bucket{
-			CumulativeCount: proto.Uint64(count),
-			UpperBound:      proto.Float64(upperBound),
-		})
-	}
-
-	if len(buckets) > 0 {
-		sort.Sort(buckSort(buckets))
-	}
-	his.Bucket = buckets
-
-	out.Histogram = his
-	out.Label = h.labelPairs
-
-	return nil
-}
-
-// NewConstHistogram returns a metric representing a Prometheus histogram with
-// fixed values for the count, sum, and bucket counts. As those parameters
-// cannot be changed, the returned value does not implement the Histogram
-// interface (but only the Metric interface). Users of this package will not
-// have much use for it in regular operations. However, when implementing custom
-// Collectors, it is useful as a throw-away metric that is generated on the fly
-// to send it to Prometheus in the Collect method.
-//
-// buckets is a map of upper bounds to cumulative counts, excluding the +Inf
-// bucket.
-//
-// NewConstHistogram returns an error if the length of labelValues is not
-// consistent with the variable labels in Desc.
-func NewConstHistogram(
-	desc *Desc,
-	count uint64,
-	sum float64,
-	buckets map[float64]uint64,
-	labelValues ...string,
-) (Metric, error) {
-	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
-		return nil, err
-	}
-	return &constHistogram{
-		desc:       desc,
-		count:      count,
-		sum:        sum,
-		buckets:    buckets,
-		labelPairs: makeLabelPairs(desc, labelValues),
-	}, nil
-}
-
-// MustNewConstHistogram is a version of NewConstHistogram that panics where
-// NewConstMetric would have returned an error.
-func MustNewConstHistogram(
-	desc *Desc,
-	count uint64,
-	sum float64,
-	buckets map[float64]uint64,
-	labelValues ...string,
-) Metric {
-	m, err := NewConstHistogram(desc, count, sum, buckets, labelValues...)
-	if err != nil {
-		panic(err)
-	}
-	return m
-}
-
-type buckSort []*dto.Bucket
-
-func (s buckSort) Len() int {
-	return len(s)
-}
-
-func (s buckSort) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-func (s buckSort) Less(i, j int) bool {
-	return s[i].GetUpperBound() < s[j].GetUpperBound()
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/http.go b/vendor/github.com/prometheus/client_golang/prometheus/http.go
deleted file mode 100644
index dd0f8197f9..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/http.go
+++ /dev/null
@@ -1,523 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"bufio"
-	"bytes"
-	"compress/gzip"
-	"fmt"
-	"io"
-	"net"
-	"net/http"
-	"strconv"
-	"strings"
-	"sync"
-	"time"
-
-	"github.com/prometheus/common/expfmt"
-)
-
-// TODO(beorn7): Remove this whole file. It is a partial mirror of
-// promhttp/http.go (to avoid circular import chains) where everything HTTP
-// related should live. The functions here are just for avoiding
-// breakage. Everything is deprecated.
-
-const (
-	contentTypeHeader     = "Content-Type"
-	contentLengthHeader   = "Content-Length"
-	contentEncodingHeader = "Content-Encoding"
-	acceptEncodingHeader  = "Accept-Encoding"
-)
-
-var bufPool sync.Pool
-
-func getBuf() *bytes.Buffer {
-	buf := bufPool.Get()
-	if buf == nil {
-		return &bytes.Buffer{}
-	}
-	return buf.(*bytes.Buffer)
-}
-
-func giveBuf(buf *bytes.Buffer) {
-	buf.Reset()
-	bufPool.Put(buf)
-}
-
-// Handler returns an HTTP handler for the DefaultGatherer. It is
-// already instrumented with InstrumentHandler (using "prometheus" as handler
-// name).
-//
-// Deprecated: Please note the issues described in the doc comment of
-// InstrumentHandler. You might want to consider using
-// promhttp.InstrumentedHandler instead.
-func Handler() http.Handler {
-	return InstrumentHandler("prometheus", UninstrumentedHandler())
-}
-
-// UninstrumentedHandler returns an HTTP handler for the DefaultGatherer.
-//
-// Deprecated: Use promhttp.Handler instead. See there for further documentation.
-func UninstrumentedHandler() http.Handler {
-	return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
-		mfs, err := DefaultGatherer.Gather()
-		if err != nil {
-			http.Error(w, "An error has occurred during metrics collection:\n\n"+err.Error(), http.StatusInternalServerError)
-			return
-		}
-
-		contentType := expfmt.Negotiate(req.Header)
-		buf := getBuf()
-		defer giveBuf(buf)
-		writer, encoding := decorateWriter(req, buf)
-		enc := expfmt.NewEncoder(writer, contentType)
-		var lastErr error
-		for _, mf := range mfs {
-			if err := enc.Encode(mf); err != nil {
-				lastErr = err
-				http.Error(w, "An error has occurred during metrics encoding:\n\n"+err.Error(), http.StatusInternalServerError)
-				return
-			}
-		}
-		if closer, ok := writer.(io.Closer); ok {
-			closer.Close()
-		}
-		if lastErr != nil && buf.Len() == 0 {
-			http.Error(w, "No metrics encoded, last error:\n\n"+lastErr.Error(), http.StatusInternalServerError)
-			return
-		}
-		header := w.Header()
-		header.Set(contentTypeHeader, string(contentType))
-		header.Set(contentLengthHeader, fmt.Sprint(buf.Len()))
-		if encoding != "" {
-			header.Set(contentEncodingHeader, encoding)
-		}
-		w.Write(buf.Bytes())
-	})
-}
-
-// decorateWriter wraps a writer to handle gzip compression if requested.  It
-// returns the decorated writer and the appropriate "Content-Encoding" header
-// (which is empty if no compression is enabled).
-func decorateWriter(request *http.Request, writer io.Writer) (io.Writer, string) {
-	header := request.Header.Get(acceptEncodingHeader)
-	parts := strings.Split(header, ",")
-	for _, part := range parts {
-		part := strings.TrimSpace(part)
-		if part == "gzip" || strings.HasPrefix(part, "gzip;") {
-			return gzip.NewWriter(writer), "gzip"
-		}
-	}
-	return writer, ""
-}
-
-var instLabels = []string{"method", "code"}
-
-type nower interface {
-	Now() time.Time
-}
-
-type nowFunc func() time.Time
-
-func (n nowFunc) Now() time.Time {
-	return n()
-}
-
-var now nower = nowFunc(func() time.Time {
-	return time.Now()
-})
-
-func nowSeries(t ...time.Time) nower {
-	return nowFunc(func() time.Time {
-		defer func() {
-			t = t[1:]
-		}()
-
-		return t[0]
-	})
-}
-
-// InstrumentHandler wraps the given HTTP handler for instrumentation. It
-// registers four metric collectors (if not already done) and reports HTTP
-// metrics to the (newly or already) registered collectors: http_requests_total
-// (CounterVec), http_request_duration_microseconds (Summary),
-// http_request_size_bytes (Summary), http_response_size_bytes (Summary). Each
-// has a constant label named "handler" with the provided handlerName as
-// value. http_requests_total is a metric vector partitioned by HTTP method
-// (label name "method") and HTTP status code (label name "code").
-//
-// Deprecated: InstrumentHandler has several issues. Use the tooling provided in
-// package promhttp instead. The issues are the following:
-//
-// - It uses Summaries rather than Histograms. Summaries are not useful if
-// aggregation across multiple instances is required.
-//
-// - It uses microseconds as unit, which is deprecated and should be replaced by
-// seconds.
-//
-// - The size of the request is calculated in a separate goroutine. Since this
-// calculator requires access to the request header, it creates a race with
-// any writes to the header performed during request handling.
-// httputil.ReverseProxy is a prominent example for a handler
-// performing such writes.
-//
-// - It has additional issues with HTTP/2, cf.
-// https://github.com/prometheus/client_golang/issues/272.
-func InstrumentHandler(handlerName string, handler http.Handler) http.HandlerFunc {
-	return InstrumentHandlerFunc(handlerName, handler.ServeHTTP)
-}
-
-// InstrumentHandlerFunc wraps the given function for instrumentation. It
-// otherwise works in the same way as InstrumentHandler (and shares the same
-// issues).
-//
-// Deprecated: InstrumentHandlerFunc is deprecated for the same reasons as
-// InstrumentHandler is. Use the tooling provided in package promhttp instead.
-func InstrumentHandlerFunc(handlerName string, handlerFunc func(http.ResponseWriter, *http.Request)) http.HandlerFunc {
-	return InstrumentHandlerFuncWithOpts(
-		SummaryOpts{
-			Subsystem:   "http",
-			ConstLabels: Labels{"handler": handlerName},
-			Objectives:  map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001},
-		},
-		handlerFunc,
-	)
-}
-
-// InstrumentHandlerWithOpts works like InstrumentHandler (and shares the same
-// issues) but provides more flexibility (at the cost of a more complex call
-// syntax). As InstrumentHandler, this function registers four metric
-// collectors, but it uses the provided SummaryOpts to create them. However, the
-// fields "Name" and "Help" in the SummaryOpts are ignored. "Name" is replaced
-// by "requests_total", "request_duration_microseconds", "request_size_bytes",
-// and "response_size_bytes", respectively. "Help" is replaced by an appropriate
-// help string. The names of the variable labels of the http_requests_total
-// CounterVec are "method" (get, post, etc.), and "code" (HTTP status code).
-//
-// If InstrumentHandlerWithOpts is called as follows, it mimics exactly the
-// behavior of InstrumentHandler:
-//
-//     prometheus.InstrumentHandlerWithOpts(
-//         prometheus.SummaryOpts{
-//              Subsystem:   "http",
-//              ConstLabels: prometheus.Labels{"handler": handlerName},
-//         },
-//         handler,
-//     )
-//
-// Technical detail: "requests_total" is a CounterVec, not a SummaryVec, so it
-// cannot use SummaryOpts. Instead, a CounterOpts struct is created internally,
-// and all its fields are set to the equally named fields in the provided
-// SummaryOpts.
-//
-// Deprecated: InstrumentHandlerWithOpts is deprecated for the same reasons as
-// InstrumentHandler is. Use the tooling provided in package promhttp instead.
-func InstrumentHandlerWithOpts(opts SummaryOpts, handler http.Handler) http.HandlerFunc {
-	return InstrumentHandlerFuncWithOpts(opts, handler.ServeHTTP)
-}
-
-// InstrumentHandlerFuncWithOpts works like InstrumentHandlerFunc (and shares
-// the same issues) but provides more flexibility (at the cost of a more complex
-// call syntax). See InstrumentHandlerWithOpts for details how the provided
-// SummaryOpts are used.
-//
-// Deprecated: InstrumentHandlerFuncWithOpts is deprecated for the same reasons
-// as InstrumentHandler is. Use the tooling provided in package promhttp instead.
-func InstrumentHandlerFuncWithOpts(opts SummaryOpts, handlerFunc func(http.ResponseWriter, *http.Request)) http.HandlerFunc {
-	reqCnt := NewCounterVec(
-		CounterOpts{
-			Namespace:   opts.Namespace,
-			Subsystem:   opts.Subsystem,
-			Name:        "requests_total",
-			Help:        "Total number of HTTP requests made.",
-			ConstLabels: opts.ConstLabels,
-		},
-		instLabels,
-	)
-	if err := Register(reqCnt); err != nil {
-		if are, ok := err.(AlreadyRegisteredError); ok {
-			reqCnt = are.ExistingCollector.(*CounterVec)
-		} else {
-			panic(err)
-		}
-	}
-
-	opts.Name = "request_duration_microseconds"
-	opts.Help = "The HTTP request latencies in microseconds."
-	reqDur := NewSummary(opts)
-	if err := Register(reqDur); err != nil {
-		if are, ok := err.(AlreadyRegisteredError); ok {
-			reqDur = are.ExistingCollector.(Summary)
-		} else {
-			panic(err)
-		}
-	}
-
-	opts.Name = "request_size_bytes"
-	opts.Help = "The HTTP request sizes in bytes."
-	reqSz := NewSummary(opts)
-	if err := Register(reqSz); err != nil {
-		if are, ok := err.(AlreadyRegisteredError); ok {
-			reqSz = are.ExistingCollector.(Summary)
-		} else {
-			panic(err)
-		}
-	}
-
-	opts.Name = "response_size_bytes"
-	opts.Help = "The HTTP response sizes in bytes."
-	resSz := NewSummary(opts)
-	if err := Register(resSz); err != nil {
-		if are, ok := err.(AlreadyRegisteredError); ok {
-			resSz = are.ExistingCollector.(Summary)
-		} else {
-			panic(err)
-		}
-	}
-
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		now := time.Now()
-
-		delegate := &responseWriterDelegator{ResponseWriter: w}
-		out := computeApproximateRequestSize(r)
-
-		_, cn := w.(http.CloseNotifier)
-		_, fl := w.(http.Flusher)
-		_, hj := w.(http.Hijacker)
-		_, rf := w.(io.ReaderFrom)
-		var rw http.ResponseWriter
-		if cn && fl && hj && rf {
-			rw = &fancyResponseWriterDelegator{delegate}
-		} else {
-			rw = delegate
-		}
-		handlerFunc(rw, r)
-
-		elapsed := float64(time.Since(now)) / float64(time.Microsecond)
-
-		method := sanitizeMethod(r.Method)
-		code := sanitizeCode(delegate.status)
-		reqCnt.WithLabelValues(method, code).Inc()
-		reqDur.Observe(elapsed)
-		resSz.Observe(float64(delegate.written))
-		reqSz.Observe(float64(<-out))
-	})
-}
-
-func computeApproximateRequestSize(r *http.Request) <-chan int {
-	// Get URL length in current go routine for avoiding a race condition.
-	// HandlerFunc that runs in parallel may modify the URL.
-	s := 0
-	if r.URL != nil {
-		s += len(r.URL.String())
-	}
-
-	out := make(chan int, 1)
-
-	go func() {
-		s += len(r.Method)
-		s += len(r.Proto)
-		for name, values := range r.Header {
-			s += len(name)
-			for _, value := range values {
-				s += len(value)
-			}
-		}
-		s += len(r.Host)
-
-		// N.B. r.Form and r.MultipartForm are assumed to be included in r.URL.
-
-		if r.ContentLength != -1 {
-			s += int(r.ContentLength)
-		}
-		out <- s
-		close(out)
-	}()
-
-	return out
-}
-
-type responseWriterDelegator struct {
-	http.ResponseWriter
-
-	handler, method string
-	status          int
-	written         int64
-	wroteHeader     bool
-}
-
-func (r *responseWriterDelegator) WriteHeader(code int) {
-	r.status = code
-	r.wroteHeader = true
-	r.ResponseWriter.WriteHeader(code)
-}
-
-func (r *responseWriterDelegator) Write(b []byte) (int, error) {
-	if !r.wroteHeader {
-		r.WriteHeader(http.StatusOK)
-	}
-	n, err := r.ResponseWriter.Write(b)
-	r.written += int64(n)
-	return n, err
-}
-
-type fancyResponseWriterDelegator struct {
-	*responseWriterDelegator
-}
-
-func (f *fancyResponseWriterDelegator) CloseNotify() <-chan bool {
-	return f.ResponseWriter.(http.CloseNotifier).CloseNotify()
-}
-
-func (f *fancyResponseWriterDelegator) Flush() {
-	f.ResponseWriter.(http.Flusher).Flush()
-}
-
-func (f *fancyResponseWriterDelegator) Hijack() (net.Conn, *bufio.ReadWriter, error) {
-	return f.ResponseWriter.(http.Hijacker).Hijack()
-}
-
-func (f *fancyResponseWriterDelegator) ReadFrom(r io.Reader) (int64, error) {
-	if !f.wroteHeader {
-		f.WriteHeader(http.StatusOK)
-	}
-	n, err := f.ResponseWriter.(io.ReaderFrom).ReadFrom(r)
-	f.written += n
-	return n, err
-}
-
-func sanitizeMethod(m string) string {
-	switch m {
-	case "GET", "get":
-		return "get"
-	case "PUT", "put":
-		return "put"
-	case "HEAD", "head":
-		return "head"
-	case "POST", "post":
-		return "post"
-	case "DELETE", "delete":
-		return "delete"
-	case "CONNECT", "connect":
-		return "connect"
-	case "OPTIONS", "options":
-		return "options"
-	case "NOTIFY", "notify":
-		return "notify"
-	default:
-		return strings.ToLower(m)
-	}
-}
-
-func sanitizeCode(s int) string {
-	switch s {
-	case 100:
-		return "100"
-	case 101:
-		return "101"
-
-	case 200:
-		return "200"
-	case 201:
-		return "201"
-	case 202:
-		return "202"
-	case 203:
-		return "203"
-	case 204:
-		return "204"
-	case 205:
-		return "205"
-	case 206:
-		return "206"
-
-	case 300:
-		return "300"
-	case 301:
-		return "301"
-	case 302:
-		return "302"
-	case 304:
-		return "304"
-	case 305:
-		return "305"
-	case 307:
-		return "307"
-
-	case 400:
-		return "400"
-	case 401:
-		return "401"
-	case 402:
-		return "402"
-	case 403:
-		return "403"
-	case 404:
-		return "404"
-	case 405:
-		return "405"
-	case 406:
-		return "406"
-	case 407:
-		return "407"
-	case 408:
-		return "408"
-	case 409:
-		return "409"
-	case 410:
-		return "410"
-	case 411:
-		return "411"
-	case 412:
-		return "412"
-	case 413:
-		return "413"
-	case 414:
-		return "414"
-	case 415:
-		return "415"
-	case 416:
-		return "416"
-	case 417:
-		return "417"
-	case 418:
-		return "418"
-
-	case 500:
-		return "500"
-	case 501:
-		return "501"
-	case 502:
-		return "502"
-	case 503:
-		return "503"
-	case 504:
-		return "504"
-	case 505:
-		return "505"
-
-	case 428:
-		return "428"
-	case 429:
-		return "429"
-	case 431:
-		return "431"
-	case 511:
-		return "511"
-
-	default:
-		return strconv.Itoa(s)
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/labels.go b/vendor/github.com/prometheus/client_golang/prometheus/labels.go
deleted file mode 100644
index 2502e37348..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/labels.go
+++ /dev/null
@@ -1,57 +0,0 @@
-package prometheus
-
-import (
-	"errors"
-	"fmt"
-	"strings"
-	"unicode/utf8"
-
-	"github.com/prometheus/common/model"
-)
-
-// Labels represents a collection of label name -> value mappings. This type is
-// commonly used with the With(Labels) and GetMetricWith(Labels) methods of
-// metric vector Collectors, e.g.:
-//     myVec.With(Labels{"code": "404", "method": "GET"}).Add(42)
-//
-// The other use-case is the specification of constant label pairs in Opts or to
-// create a Desc.
-type Labels map[string]string
-
-// reservedLabelPrefix is a prefix which is not legal in user-supplied
-// label names.
-const reservedLabelPrefix = "__"
-
-var errInconsistentCardinality = errors.New("inconsistent label cardinality")
-
-func validateValuesInLabels(labels Labels, expectedNumberOfValues int) error {
-	if len(labels) != expectedNumberOfValues {
-		return errInconsistentCardinality
-	}
-
-	for name, val := range labels {
-		if !utf8.ValidString(val) {
-			return fmt.Errorf("label %s: value %q is not valid UTF-8", name, val)
-		}
-	}
-
-	return nil
-}
-
-func validateLabelValues(vals []string, expectedNumberOfValues int) error {
-	if len(vals) != expectedNumberOfValues {
-		return errInconsistentCardinality
-	}
-
-	for _, val := range vals {
-		if !utf8.ValidString(val) {
-			return fmt.Errorf("label value %q is not valid UTF-8", val)
-		}
-	}
-
-	return nil
-}
-
-func checkLabelName(l string) bool {
-	return model.LabelName(l).IsValid() && !strings.HasPrefix(l, reservedLabelPrefix)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/metric.go b/vendor/github.com/prometheus/client_golang/prometheus/metric.go
deleted file mode 100644
index 6213ee8127..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/metric.go
+++ /dev/null
@@ -1,158 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"strings"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-const separatorByte byte = 255
-
-// A Metric models a single sample value with its meta data being exported to
-// Prometheus. Implementations of Metric in this package are Gauge, Counter,
-// Histogram, Summary, and Untyped.
-type Metric interface {
-	// Desc returns the descriptor for the Metric. This method idempotently
-	// returns the same descriptor throughout the lifetime of the
-	// Metric. The returned descriptor is immutable by contract. A Metric
-	// unable to describe itself must return an invalid descriptor (created
-	// with NewInvalidDesc).
-	Desc() *Desc
-	// Write encodes the Metric into a "Metric" Protocol Buffer data
-	// transmission object.
-	//
-	// Metric implementations must observe concurrency safety as reads of
-	// this metric may occur at any time, and any blocking occurs at the
-	// expense of total performance of rendering all registered
-	// metrics. Ideally, Metric implementations should support concurrent
-	// readers.
-	//
-	// While populating dto.Metric, it is the responsibility of the
-	// implementation to ensure validity of the Metric protobuf (like valid
-	// UTF-8 strings or syntactically valid metric and label names). It is
-	// recommended to sort labels lexicographically. (Implementers may find
-	// LabelPairSorter useful for that.) Callers of Write should still make
-	// sure of sorting if they depend on it.
-	Write(*dto.Metric) error
-	// TODO(beorn7): The original rationale of passing in a pre-allocated
-	// dto.Metric protobuf to save allocations has disappeared. The
-	// signature of this method should be changed to "Write() (*dto.Metric,
-	// error)".
-}
-
-// Opts bundles the options for creating most Metric types. Each metric
-// implementation XXX has its own XXXOpts type, but in most cases, it is just be
-// an alias of this type (which might change when the requirement arises.)
-//
-// It is mandatory to set Name and Help to a non-empty string. All other fields
-// are optional and can safely be left at their zero value.
-type Opts struct {
-	// Namespace, Subsystem, and Name are components of the fully-qualified
-	// name of the Metric (created by joining these components with
-	// "_"). Only Name is mandatory, the others merely help structuring the
-	// name. Note that the fully-qualified name of the metric must be a
-	// valid Prometheus metric name.
-	Namespace string
-	Subsystem string
-	Name      string
-
-	// Help provides information about this metric. Mandatory!
-	//
-	// Metrics with the same fully-qualified name must have the same Help
-	// string.
-	Help string
-
-	// ConstLabels are used to attach fixed labels to this metric. Metrics
-	// with the same fully-qualified name must have the same label names in
-	// their ConstLabels.
-	//
-	// ConstLabels are only used rarely. In particular, do not use them to
-	// attach the same labels to all your metrics. Those use cases are
-	// better covered by target labels set by the scraping Prometheus
-	// server, or by one specific metric (e.g. a build_info or a
-	// machine_role metric). See also
-	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
-	ConstLabels Labels
-}
-
-// BuildFQName joins the given three name components by "_". Empty name
-// components are ignored. If the name parameter itself is empty, an empty
-// string is returned, no matter what. Metric implementations included in this
-// library use this function internally to generate the fully-qualified metric
-// name from the name component in their Opts. Users of the library will only
-// need this function if they implement their own Metric or instantiate a Desc
-// (with NewDesc) directly.
-func BuildFQName(namespace, subsystem, name string) string {
-	if name == "" {
-		return ""
-	}
-	switch {
-	case namespace != "" && subsystem != "":
-		return strings.Join([]string{namespace, subsystem, name}, "_")
-	case namespace != "":
-		return strings.Join([]string{namespace, name}, "_")
-	case subsystem != "":
-		return strings.Join([]string{subsystem, name}, "_")
-	}
-	return name
-}
-
-// LabelPairSorter implements sort.Interface. It is used to sort a slice of
-// dto.LabelPair pointers. This is useful for implementing the Write method of
-// custom metrics.
-type LabelPairSorter []*dto.LabelPair
-
-func (s LabelPairSorter) Len() int {
-	return len(s)
-}
-
-func (s LabelPairSorter) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-func (s LabelPairSorter) Less(i, j int) bool {
-	return s[i].GetName() < s[j].GetName()
-}
-
-type hashSorter []uint64
-
-func (s hashSorter) Len() int {
-	return len(s)
-}
-
-func (s hashSorter) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-func (s hashSorter) Less(i, j int) bool {
-	return s[i] < s[j]
-}
-
-type invalidMetric struct {
-	desc *Desc
-	err  error
-}
-
-// NewInvalidMetric returns a metric whose Write method always returns the
-// provided error. It is useful if a Collector finds itself unable to collect
-// a metric and wishes to report an error to the registry.
-func NewInvalidMetric(desc *Desc, err error) Metric {
-	return &invalidMetric{desc, err}
-}
-
-func (m *invalidMetric) Desc() *Desc { return m.desc }
-
-func (m *invalidMetric) Write(*dto.Metric) error { return m.err }
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/observer.go b/vendor/github.com/prometheus/client_golang/prometheus/observer.go
deleted file mode 100644
index 5806cd09e3..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/observer.go
+++ /dev/null
@@ -1,52 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-// Observer is the interface that wraps the Observe method, which is used by
-// Histogram and Summary to add observations.
-type Observer interface {
-	Observe(float64)
-}
-
-// The ObserverFunc type is an adapter to allow the use of ordinary
-// functions as Observers. If f is a function with the appropriate
-// signature, ObserverFunc(f) is an Observer that calls f.
-//
-// This adapter is usually used in connection with the Timer type, and there are
-// two general use cases:
-//
-// The most common one is to use a Gauge as the Observer for a Timer.
-// See the "Gauge" Timer example.
-//
-// The more advanced use case is to create a function that dynamically decides
-// which Observer to use for observing the duration. See the "Complex" Timer
-// example.
-type ObserverFunc func(float64)
-
-// Observe calls f(value). It implements Observer.
-func (f ObserverFunc) Observe(value float64) {
-	f(value)
-}
-
-// ObserverVec is an interface implemented by `HistogramVec` and `SummaryVec`.
-type ObserverVec interface {
-	GetMetricWith(Labels) (Observer, error)
-	GetMetricWithLabelValues(lvs ...string) (Observer, error)
-	With(Labels) Observer
-	WithLabelValues(...string) Observer
-	CurryWith(Labels) (ObserverVec, error)
-	MustCurryWith(Labels) ObserverVec
-
-	Collector
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
deleted file mode 100644
index 32ac74a7f7..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
+++ /dev/null
@@ -1,140 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import "github.com/prometheus/procfs"
-
-type processCollector struct {
-	pid             int
-	collectFn       func(chan<- Metric)
-	pidFn           func() (int, error)
-	cpuTotal        *Desc
-	openFDs, maxFDs *Desc
-	vsize, rss      *Desc
-	startTime       *Desc
-}
-
-// NewProcessCollector returns a collector which exports the current state of
-// process metrics including CPU, memory and file descriptor usage as well as
-// the process start time for the given process ID under the given namespace.
-//
-// Currently, the collector depends on a Linux-style proc filesystem and
-// therefore only exports metrics for Linux.
-func NewProcessCollector(pid int, namespace string) Collector {
-	return NewProcessCollectorPIDFn(
-		func() (int, error) { return pid, nil },
-		namespace,
-	)
-}
-
-// NewProcessCollectorPIDFn works like NewProcessCollector but the process ID is
-// determined on each collect anew by calling the given pidFn function.
-func NewProcessCollectorPIDFn(
-	pidFn func() (int, error),
-	namespace string,
-) Collector {
-	ns := ""
-	if len(namespace) > 0 {
-		ns = namespace + "_"
-	}
-
-	c := processCollector{
-		pidFn:     pidFn,
-		collectFn: func(chan<- Metric) {},
-
-		cpuTotal: NewDesc(
-			ns+"process_cpu_seconds_total",
-			"Total user and system CPU time spent in seconds.",
-			nil, nil,
-		),
-		openFDs: NewDesc(
-			ns+"process_open_fds",
-			"Number of open file descriptors.",
-			nil, nil,
-		),
-		maxFDs: NewDesc(
-			ns+"process_max_fds",
-			"Maximum number of open file descriptors.",
-			nil, nil,
-		),
-		vsize: NewDesc(
-			ns+"process_virtual_memory_bytes",
-			"Virtual memory size in bytes.",
-			nil, nil,
-		),
-		rss: NewDesc(
-			ns+"process_resident_memory_bytes",
-			"Resident memory size in bytes.",
-			nil, nil,
-		),
-		startTime: NewDesc(
-			ns+"process_start_time_seconds",
-			"Start time of the process since unix epoch in seconds.",
-			nil, nil,
-		),
-	}
-
-	// Set up process metric collection if supported by the runtime.
-	if _, err := procfs.NewStat(); err == nil {
-		c.collectFn = c.processCollect
-	}
-
-	return &c
-}
-
-// Describe returns all descriptions of the collector.
-func (c *processCollector) Describe(ch chan<- *Desc) {
-	ch <- c.cpuTotal
-	ch <- c.openFDs
-	ch <- c.maxFDs
-	ch <- c.vsize
-	ch <- c.rss
-	ch <- c.startTime
-}
-
-// Collect returns the current state of all metrics of the collector.
-func (c *processCollector) Collect(ch chan<- Metric) {
-	c.collectFn(ch)
-}
-
-// TODO(ts): Bring back error reporting by reverting 7faf9e7 as soon as the
-// client allows users to configure the error behavior.
-func (c *processCollector) processCollect(ch chan<- Metric) {
-	pid, err := c.pidFn()
-	if err != nil {
-		return
-	}
-
-	p, err := procfs.NewProc(pid)
-	if err != nil {
-		return
-	}
-
-	if stat, err := p.NewStat(); err == nil {
-		ch <- MustNewConstMetric(c.cpuTotal, CounterValue, stat.CPUTime())
-		ch <- MustNewConstMetric(c.vsize, GaugeValue, float64(stat.VirtualMemory()))
-		ch <- MustNewConstMetric(c.rss, GaugeValue, float64(stat.ResidentMemory()))
-		if startTime, err := stat.StartTime(); err == nil {
-			ch <- MustNewConstMetric(c.startTime, GaugeValue, startTime)
-		}
-	}
-
-	if fds, err := p.FileDescriptorsLen(); err == nil {
-		ch <- MustNewConstMetric(c.openFDs, GaugeValue, float64(fds))
-	}
-
-	if limits, err := p.NewLimits(); err == nil {
-		ch <- MustNewConstMetric(c.maxFDs, GaugeValue, float64(limits.OpenFiles))
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
deleted file mode 100644
index 9c1c66dcc7..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
+++ /dev/null
@@ -1,199 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package promhttp
-
-import (
-	"bufio"
-	"io"
-	"net"
-	"net/http"
-)
-
-const (
-	closeNotifier = 1 << iota
-	flusher
-	hijacker
-	readerFrom
-	pusher
-)
-
-type delegator interface {
-	http.ResponseWriter
-
-	Status() int
-	Written() int64
-}
-
-type responseWriterDelegator struct {
-	http.ResponseWriter
-
-	handler, method    string
-	status             int
-	written            int64
-	wroteHeader        bool
-	observeWriteHeader func(int)
-}
-
-func (r *responseWriterDelegator) Status() int {
-	return r.status
-}
-
-func (r *responseWriterDelegator) Written() int64 {
-	return r.written
-}
-
-func (r *responseWriterDelegator) WriteHeader(code int) {
-	r.status = code
-	r.wroteHeader = true
-	r.ResponseWriter.WriteHeader(code)
-	if r.observeWriteHeader != nil {
-		r.observeWriteHeader(code)
-	}
-}
-
-func (r *responseWriterDelegator) Write(b []byte) (int, error) {
-	if !r.wroteHeader {
-		r.WriteHeader(http.StatusOK)
-	}
-	n, err := r.ResponseWriter.Write(b)
-	r.written += int64(n)
-	return n, err
-}
-
-type closeNotifierDelegator struct{ *responseWriterDelegator }
-type flusherDelegator struct{ *responseWriterDelegator }
-type hijackerDelegator struct{ *responseWriterDelegator }
-type readerFromDelegator struct{ *responseWriterDelegator }
-
-func (d *closeNotifierDelegator) CloseNotify() <-chan bool {
-	return d.ResponseWriter.(http.CloseNotifier).CloseNotify()
-}
-func (d *flusherDelegator) Flush() {
-	d.ResponseWriter.(http.Flusher).Flush()
-}
-func (d *hijackerDelegator) Hijack() (net.Conn, *bufio.ReadWriter, error) {
-	return d.ResponseWriter.(http.Hijacker).Hijack()
-}
-func (d *readerFromDelegator) ReadFrom(re io.Reader) (int64, error) {
-	if !d.wroteHeader {
-		d.WriteHeader(http.StatusOK)
-	}
-	n, err := d.ResponseWriter.(io.ReaderFrom).ReadFrom(re)
-	d.written += n
-	return n, err
-}
-
-var pickDelegator = make([]func(*responseWriterDelegator) delegator, 32)
-
-func init() {
-	// TODO(beorn7): Code generation would help here.
-	pickDelegator[0] = func(d *responseWriterDelegator) delegator { // 0
-		return d
-	}
-	pickDelegator[closeNotifier] = func(d *responseWriterDelegator) delegator { // 1
-		return &closeNotifierDelegator{d}
-	}
-	pickDelegator[flusher] = func(d *responseWriterDelegator) delegator { // 2
-		return &flusherDelegator{d}
-	}
-	pickDelegator[flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 3
-		return struct {
-			*responseWriterDelegator
-			http.Flusher
-			http.CloseNotifier
-		}{d, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[hijacker] = func(d *responseWriterDelegator) delegator { // 4
-		return &hijackerDelegator{d}
-	}
-	pickDelegator[hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 5
-		return struct {
-			*responseWriterDelegator
-			http.Hijacker
-			http.CloseNotifier
-		}{d, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 6
-		return struct {
-			*responseWriterDelegator
-			http.Hijacker
-			http.Flusher
-		}{d, &hijackerDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 7
-		return struct {
-			*responseWriterDelegator
-			http.Hijacker
-			http.Flusher
-			http.CloseNotifier
-		}{d, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[readerFrom] = func(d *responseWriterDelegator) delegator { // 8
-		return readerFromDelegator{d}
-	}
-	pickDelegator[readerFrom+closeNotifier] = func(d *responseWriterDelegator) delegator { // 9
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.CloseNotifier
-		}{d, &readerFromDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[readerFrom+flusher] = func(d *responseWriterDelegator) delegator { // 10
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Flusher
-		}{d, &readerFromDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[readerFrom+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 11
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Flusher
-			http.CloseNotifier
-		}{d, &readerFromDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[readerFrom+hijacker] = func(d *responseWriterDelegator) delegator { // 12
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Hijacker
-		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}}
-	}
-	pickDelegator[readerFrom+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 13
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Hijacker
-			http.CloseNotifier
-		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[readerFrom+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 14
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Hijacker
-			http.Flusher
-		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[readerFrom+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 15
-		return struct {
-			*responseWriterDelegator
-			io.ReaderFrom
-			http.Hijacker
-			http.Flusher
-			http.CloseNotifier
-		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
deleted file mode 100644
index 75a905e2f4..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
+++ /dev/null
@@ -1,181 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// +build go1.8
-
-package promhttp
-
-import (
-	"io"
-	"net/http"
-)
-
-type pusherDelegator struct{ *responseWriterDelegator }
-
-func (d *pusherDelegator) Push(target string, opts *http.PushOptions) error {
-	return d.ResponseWriter.(http.Pusher).Push(target, opts)
-}
-
-func init() {
-	pickDelegator[pusher] = func(d *responseWriterDelegator) delegator { // 16
-		return &pusherDelegator{d}
-	}
-	pickDelegator[pusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 17
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+flusher] = func(d *responseWriterDelegator) delegator { // 18
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Flusher
-		}{d, &pusherDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[pusher+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 19
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Flusher
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+hijacker] = func(d *responseWriterDelegator) delegator { // 20
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Hijacker
-		}{d, &pusherDelegator{d}, &hijackerDelegator{d}}
-	}
-	pickDelegator[pusher+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 21
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Hijacker
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 22
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Hijacker
-			http.Flusher
-		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[pusher+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { //23
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			http.Hijacker
-			http.Flusher
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom] = func(d *responseWriterDelegator) delegator { // 24
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+closeNotifier] = func(d *responseWriterDelegator) delegator { // 25
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+flusher] = func(d *responseWriterDelegator) delegator { // 26
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Flusher
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 27
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Flusher
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+hijacker] = func(d *responseWriterDelegator) delegator { // 28
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Hijacker
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 29
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Hijacker
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 30
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Hijacker
-			http.Flusher
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
-	}
-	pickDelegator[pusher+readerFrom+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 31
-		return struct {
-			*responseWriterDelegator
-			http.Pusher
-			io.ReaderFrom
-			http.Hijacker
-			http.Flusher
-			http.CloseNotifier
-		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
-	}
-}
-
-func newDelegator(w http.ResponseWriter, observeWriteHeaderFunc func(int)) delegator {
-	d := &responseWriterDelegator{
-		ResponseWriter:     w,
-		observeWriteHeader: observeWriteHeaderFunc,
-	}
-
-	id := 0
-	if _, ok := w.(http.CloseNotifier); ok {
-		id += closeNotifier
-	}
-	if _, ok := w.(http.Flusher); ok {
-		id += flusher
-	}
-	if _, ok := w.(http.Hijacker); ok {
-		id += hijacker
-	}
-	if _, ok := w.(io.ReaderFrom); ok {
-		id += readerFrom
-	}
-	if _, ok := w.(http.Pusher); ok {
-		id += pusher
-	}
-
-	return pickDelegator[id](d)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
deleted file mode 100644
index 8bb9b8b68f..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
+++ /dev/null
@@ -1,44 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// +build !go1.8
-
-package promhttp
-
-import (
-	"io"
-	"net/http"
-)
-
-func newDelegator(w http.ResponseWriter, observeWriteHeaderFunc func(int)) delegator {
-	d := &responseWriterDelegator{
-		ResponseWriter:     w,
-		observeWriteHeader: observeWriteHeaderFunc,
-	}
-
-	id := 0
-	if _, ok := w.(http.CloseNotifier); ok {
-		id += closeNotifier
-	}
-	if _, ok := w.(http.Flusher); ok {
-		id += flusher
-	}
-	if _, ok := w.(http.Hijacker); ok {
-		id += hijacker
-	}
-	if _, ok := w.(io.ReaderFrom); ok {
-		id += readerFrom
-	}
-
-	return pickDelegator[id](d)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
deleted file mode 100644
index 714a7f98a7..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
+++ /dev/null
@@ -1,311 +0,0 @@
-// Copyright 2016 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package promhttp provides tooling around HTTP servers and clients.
-//
-// First, the package allows the creation of http.Handler instances to expose
-// Prometheus metrics via HTTP. promhttp.Handler acts on the
-// prometheus.DefaultGatherer. With HandlerFor, you can create a handler for a
-// custom registry or anything that implements the Gatherer interface. It also
-// allows the creation of handlers that act differently on errors or allow to
-// log errors.
-//
-// Second, the package provides tooling to instrument instances of http.Handler
-// via middleware. Middleware wrappers follow the naming scheme
-// InstrumentHandlerX, where X describes the intended use of the middleware.
-// See each function's doc comment for specific details.
-//
-// Finally, the package allows for an http.RoundTripper to be instrumented via
-// middleware. Middleware wrappers follow the naming scheme
-// InstrumentRoundTripperX, where X describes the intended use of the
-// middleware. See each function's doc comment for specific details.
-package promhttp
-
-import (
-	"bytes"
-	"compress/gzip"
-	"fmt"
-	"io"
-	"net/http"
-	"strings"
-	"sync"
-	"time"
-
-	"github.com/prometheus/common/expfmt"
-
-	"github.com/prometheus/client_golang/prometheus"
-)
-
-const (
-	contentTypeHeader     = "Content-Type"
-	contentLengthHeader   = "Content-Length"
-	contentEncodingHeader = "Content-Encoding"
-	acceptEncodingHeader  = "Accept-Encoding"
-)
-
-var bufPool sync.Pool
-
-func getBuf() *bytes.Buffer {
-	buf := bufPool.Get()
-	if buf == nil {
-		return &bytes.Buffer{}
-	}
-	return buf.(*bytes.Buffer)
-}
-
-func giveBuf(buf *bytes.Buffer) {
-	buf.Reset()
-	bufPool.Put(buf)
-}
-
-// Handler returns an http.Handler for the prometheus.DefaultGatherer, using
-// default HandlerOpts, i.e. it reports the first error as an HTTP error, it has
-// no error logging, and it applies compression if requested by the client.
-//
-// The returned http.Handler is already instrumented using the
-// InstrumentMetricHandler function and the prometheus.DefaultRegisterer. If you
-// create multiple http.Handlers by separate calls of the Handler function, the
-// metrics used for instrumentation will be shared between them, providing
-// global scrape counts.
-//
-// This function is meant to cover the bulk of basic use cases. If you are doing
-// anything that requires more customization (including using a non-default
-// Gatherer, different instrumentation, and non-default HandlerOpts), use the
-// HandlerFor function. See there for details.
-func Handler() http.Handler {
-	return InstrumentMetricHandler(
-		prometheus.DefaultRegisterer, HandlerFor(prometheus.DefaultGatherer, HandlerOpts{}),
-	)
-}
-
-// HandlerFor returns an uninstrumented http.Handler for the provided
-// Gatherer. The behavior of the Handler is defined by the provided
-// HandlerOpts. Thus, HandlerFor is useful to create http.Handlers for custom
-// Gatherers, with non-default HandlerOpts, and/or with custom (or no)
-// instrumentation. Use the InstrumentMetricHandler function to apply the same
-// kind of instrumentation as it is used by the Handler function.
-func HandlerFor(reg prometheus.Gatherer, opts HandlerOpts) http.Handler {
-	var inFlightSem chan struct{}
-	if opts.MaxRequestsInFlight > 0 {
-		inFlightSem = make(chan struct{}, opts.MaxRequestsInFlight)
-	}
-
-	h := http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
-		if inFlightSem != nil {
-			select {
-			case inFlightSem <- struct{}{}: // All good, carry on.
-				defer func() { <-inFlightSem }()
-			default:
-				http.Error(w, fmt.Sprintf(
-					"Limit of concurrent requests reached (%d), try again later.", opts.MaxRequestsInFlight,
-				), http.StatusServiceUnavailable)
-				return
-			}
-		}
-
-		mfs, err := reg.Gather()
-		if err != nil {
-			if opts.ErrorLog != nil {
-				opts.ErrorLog.Println("error gathering metrics:", err)
-			}
-			switch opts.ErrorHandling {
-			case PanicOnError:
-				panic(err)
-			case ContinueOnError:
-				if len(mfs) == 0 {
-					http.Error(w, "No metrics gathered, last error:\n\n"+err.Error(), http.StatusInternalServerError)
-					return
-				}
-			case HTTPErrorOnError:
-				http.Error(w, "An error has occurred during metrics gathering:\n\n"+err.Error(), http.StatusInternalServerError)
-				return
-			}
-		}
-
-		contentType := expfmt.Negotiate(req.Header)
-		buf := getBuf()
-		defer giveBuf(buf)
-		writer, encoding := decorateWriter(req, buf, opts.DisableCompression)
-		enc := expfmt.NewEncoder(writer, contentType)
-		var lastErr error
-		for _, mf := range mfs {
-			if err := enc.Encode(mf); err != nil {
-				lastErr = err
-				if opts.ErrorLog != nil {
-					opts.ErrorLog.Println("error encoding metric family:", err)
-				}
-				switch opts.ErrorHandling {
-				case PanicOnError:
-					panic(err)
-				case ContinueOnError:
-					// Handled later.
-				case HTTPErrorOnError:
-					http.Error(w, "An error has occurred during metrics encoding:\n\n"+err.Error(), http.StatusInternalServerError)
-					return
-				}
-			}
-		}
-		if closer, ok := writer.(io.Closer); ok {
-			closer.Close()
-		}
-		if lastErr != nil && buf.Len() == 0 {
-			http.Error(w, "No metrics encoded, last error:\n\n"+lastErr.Error(), http.StatusInternalServerError)
-			return
-		}
-		header := w.Header()
-		header.Set(contentTypeHeader, string(contentType))
-		header.Set(contentLengthHeader, fmt.Sprint(buf.Len()))
-		if encoding != "" {
-			header.Set(contentEncodingHeader, encoding)
-		}
-		if _, err := w.Write(buf.Bytes()); err != nil && opts.ErrorLog != nil {
-			opts.ErrorLog.Println("error while sending encoded metrics:", err)
-		}
-		// TODO(beorn7): Consider streaming serving of metrics.
-	})
-
-	if opts.Timeout <= 0 {
-		return h
-	}
-	return http.TimeoutHandler(h, opts.Timeout, fmt.Sprintf(
-		"Exceeded configured timeout of %v.\n",
-		opts.Timeout,
-	))
-}
-
-// InstrumentMetricHandler is usually used with an http.Handler returned by the
-// HandlerFor function. It instruments the provided http.Handler with two
-// metrics: A counter vector "promhttp_metric_handler_requests_total" to count
-// scrapes partitioned by HTTP status code, and a gauge
-// "promhttp_metric_handler_requests_in_flight" to track the number of
-// simultaneous scrapes. This function idempotently registers collectors for
-// both metrics with the provided Registerer. It panics if the registration
-// fails. The provided metrics are useful to see how many scrapes hit the
-// monitored target (which could be from different Prometheus servers or other
-// scrapers), and how often they overlap (which would result in more than one
-// scrape in flight at the same time). Note that the scrapes-in-flight gauge
-// will contain the scrape by which it is exposed, while the scrape counter will
-// only get incremented after the scrape is complete (as only then the status
-// code is known). For tracking scrape durations, use the
-// "scrape_duration_seconds" gauge created by the Prometheus server upon each
-// scrape.
-func InstrumentMetricHandler(reg prometheus.Registerer, handler http.Handler) http.Handler {
-	cnt := prometheus.NewCounterVec(
-		prometheus.CounterOpts{
-			Name: "promhttp_metric_handler_requests_total",
-			Help: "Total number of scrapes by HTTP status code.",
-		},
-		[]string{"code"},
-	)
-	// Initialize the most likely HTTP status codes.
-	cnt.WithLabelValues("200")
-	cnt.WithLabelValues("500")
-	cnt.WithLabelValues("503")
-	if err := reg.Register(cnt); err != nil {
-		if are, ok := err.(prometheus.AlreadyRegisteredError); ok {
-			cnt = are.ExistingCollector.(*prometheus.CounterVec)
-		} else {
-			panic(err)
-		}
-	}
-
-	gge := prometheus.NewGauge(prometheus.GaugeOpts{
-		Name: "promhttp_metric_handler_requests_in_flight",
-		Help: "Current number of scrapes being served.",
-	})
-	if err := reg.Register(gge); err != nil {
-		if are, ok := err.(prometheus.AlreadyRegisteredError); ok {
-			gge = are.ExistingCollector.(prometheus.Gauge)
-		} else {
-			panic(err)
-		}
-	}
-
-	return InstrumentHandlerCounter(cnt, InstrumentHandlerInFlight(gge, handler))
-}
-
-// HandlerErrorHandling defines how a Handler serving metrics will handle
-// errors.
-type HandlerErrorHandling int
-
-// These constants cause handlers serving metrics to behave as described if
-// errors are encountered.
-const (
-	// Serve an HTTP status code 500 upon the first error
-	// encountered. Report the error message in the body.
-	HTTPErrorOnError HandlerErrorHandling = iota
-	// Ignore errors and try to serve as many metrics as possible.  However,
-	// if no metrics can be served, serve an HTTP status code 500 and the
-	// last error message in the body. Only use this in deliberate "best
-	// effort" metrics collection scenarios. It is recommended to at least
-	// log errors (by providing an ErrorLog in HandlerOpts) to not mask
-	// errors completely.
-	ContinueOnError
-	// Panic upon the first error encountered (useful for "crash only" apps).
-	PanicOnError
-)
-
-// Logger is the minimal interface HandlerOpts needs for logging. Note that
-// log.Logger from the standard library implements this interface, and it is
-// easy to implement by custom loggers, if they don't do so already anyway.
-type Logger interface {
-	Println(v ...interface{})
-}
-
-// HandlerOpts specifies options how to serve metrics via an http.Handler. The
-// zero value of HandlerOpts is a reasonable default.
-type HandlerOpts struct {
-	// ErrorLog specifies an optional logger for errors collecting and
-	// serving metrics. If nil, errors are not logged at all.
-	ErrorLog Logger
-	// ErrorHandling defines how errors are handled. Note that errors are
-	// logged regardless of the configured ErrorHandling provided ErrorLog
-	// is not nil.
-	ErrorHandling HandlerErrorHandling
-	// If DisableCompression is true, the handler will never compress the
-	// response, even if requested by the client.
-	DisableCompression bool
-	// The number of concurrent HTTP requests is limited to
-	// MaxRequestsInFlight. Additional requests are responded to with 503
-	// Service Unavailable and a suitable message in the body. If
-	// MaxRequestsInFlight is 0 or negative, no limit is applied.
-	MaxRequestsInFlight int
-	// If handling a request takes longer than Timeout, it is repsonded to
-	// with 503 ServiceUnavailable and a suitable Message. No timeout is
-	// applied if Timeout is 0 or negative. Note that with the current
-	// implementation, reaching the timeout simply ends the HTTP requests as
-	// described above (and even that only if sending of the body hasn't
-	// started yet), while the bulk work of gathering all the metrics keeps
-	// running in the background (with the eventual result to be thrown
-	// away). Until the implementation is improved, it is recommended to
-	// implement a separate timeout in potentially slow Collectors.
-	Timeout time.Duration
-}
-
-// decorateWriter wraps a writer to handle gzip compression if requested.  It
-// returns the decorated writer and the appropriate "Content-Encoding" header
-// (which is empty if no compression is enabled).
-func decorateWriter(request *http.Request, writer io.Writer, compressionDisabled bool) (io.Writer, string) {
-	if compressionDisabled {
-		return writer, ""
-	}
-	header := request.Header.Get(acceptEncodingHeader)
-	parts := strings.Split(header, ",")
-	for _, part := range parts {
-		part := strings.TrimSpace(part)
-		if part == "gzip" || strings.HasPrefix(part, "gzip;") {
-			return gzip.NewWriter(writer), "gzip"
-		}
-	}
-	return writer, ""
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
deleted file mode 100644
index 86fd564470..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
+++ /dev/null
@@ -1,97 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package promhttp
-
-import (
-	"net/http"
-	"time"
-
-	"github.com/prometheus/client_golang/prometheus"
-)
-
-// The RoundTripperFunc type is an adapter to allow the use of ordinary
-// functions as RoundTrippers. If f is a function with the appropriate
-// signature, RountTripperFunc(f) is a RoundTripper that calls f.
-type RoundTripperFunc func(req *http.Request) (*http.Response, error)
-
-// RoundTrip implements the RoundTripper interface.
-func (rt RoundTripperFunc) RoundTrip(r *http.Request) (*http.Response, error) {
-	return rt(r)
-}
-
-// InstrumentRoundTripperInFlight is a middleware that wraps the provided
-// http.RoundTripper. It sets the provided prometheus.Gauge to the number of
-// requests currently handled by the wrapped http.RoundTripper.
-//
-// See the example for ExampleInstrumentRoundTripperDuration for example usage.
-func InstrumentRoundTripperInFlight(gauge prometheus.Gauge, next http.RoundTripper) RoundTripperFunc {
-	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
-		gauge.Inc()
-		defer gauge.Dec()
-		return next.RoundTrip(r)
-	})
-}
-
-// InstrumentRoundTripperCounter is a middleware that wraps the provided
-// http.RoundTripper to observe the request result with the provided CounterVec.
-// The CounterVec must have zero, one, or two non-const non-curried labels. For
-// those, the only allowed label names are "code" and "method". The function
-// panics otherwise. Partitioning of the CounterVec happens by HTTP status code
-// and/or HTTP method if the respective instance label names are present in the
-// CounterVec. For unpartitioned counting, use a CounterVec with zero labels.
-//
-// If the wrapped RoundTripper panics or returns a non-nil error, the Counter
-// is not incremented.
-//
-// See the example for ExampleInstrumentRoundTripperDuration for example usage.
-func InstrumentRoundTripperCounter(counter *prometheus.CounterVec, next http.RoundTripper) RoundTripperFunc {
-	code, method := checkLabels(counter)
-
-	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
-		resp, err := next.RoundTrip(r)
-		if err == nil {
-			counter.With(labels(code, method, r.Method, resp.StatusCode)).Inc()
-		}
-		return resp, err
-	})
-}
-
-// InstrumentRoundTripperDuration is a middleware that wraps the provided
-// http.RoundTripper to observe the request duration with the provided
-// ObserverVec.  The ObserverVec must have zero, one, or two non-const
-// non-curried labels. For those, the only allowed label names are "code" and
-// "method". The function panics otherwise. The Observe method of the Observer
-// in the ObserverVec is called with the request duration in
-// seconds. Partitioning happens by HTTP status code and/or HTTP method if the
-// respective instance label names are present in the ObserverVec. For
-// unpartitioned observations, use an ObserverVec with zero labels. Note that
-// partitioning of Histograms is expensive and should be used judiciously.
-//
-// If the wrapped RoundTripper panics or returns a non-nil error, no values are
-// reported.
-//
-// Note that this method is only guaranteed to never observe negative durations
-// if used with Go1.9+.
-func InstrumentRoundTripperDuration(obs prometheus.ObserverVec, next http.RoundTripper) RoundTripperFunc {
-	code, method := checkLabels(obs)
-
-	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
-		start := time.Now()
-		resp, err := next.RoundTrip(r)
-		if err == nil {
-			obs.With(labels(code, method, r.Method, resp.StatusCode)).Observe(time.Since(start).Seconds())
-		}
-		return resp, err
-	})
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
deleted file mode 100644
index 0bd80c3552..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
+++ /dev/null
@@ -1,144 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// +build go1.8
-
-package promhttp
-
-import (
-	"context"
-	"crypto/tls"
-	"net/http"
-	"net/http/httptrace"
-	"time"
-)
-
-// InstrumentTrace is used to offer flexibility in instrumenting the available
-// httptrace.ClientTrace hook functions. Each function is passed a float64
-// representing the time in seconds since the start of the http request. A user
-// may choose to use separately buckets Histograms, or implement custom
-// instance labels on a per function basis.
-type InstrumentTrace struct {
-	GotConn              func(float64)
-	PutIdleConn          func(float64)
-	GotFirstResponseByte func(float64)
-	Got100Continue       func(float64)
-	DNSStart             func(float64)
-	DNSDone              func(float64)
-	ConnectStart         func(float64)
-	ConnectDone          func(float64)
-	TLSHandshakeStart    func(float64)
-	TLSHandshakeDone     func(float64)
-	WroteHeaders         func(float64)
-	Wait100Continue      func(float64)
-	WroteRequest         func(float64)
-}
-
-// InstrumentRoundTripperTrace is a middleware that wraps the provided
-// RoundTripper and reports times to hook functions provided in the
-// InstrumentTrace struct. Hook functions that are not present in the provided
-// InstrumentTrace struct are ignored. Times reported to the hook functions are
-// time since the start of the request. Only with Go1.9+, those times are
-// guaranteed to never be negative. (Earlier Go versions are not using a
-// monotonic clock.) Note that partitioning of Histograms is expensive and
-// should be used judiciously.
-//
-// For hook functions that receive an error as an argument, no observations are
-// made in the event of a non-nil error value.
-//
-// See the example for ExampleInstrumentRoundTripperDuration for example usage.
-func InstrumentRoundTripperTrace(it *InstrumentTrace, next http.RoundTripper) RoundTripperFunc {
-	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
-		start := time.Now()
-
-		trace := &httptrace.ClientTrace{
-			GotConn: func(_ httptrace.GotConnInfo) {
-				if it.GotConn != nil {
-					it.GotConn(time.Since(start).Seconds())
-				}
-			},
-			PutIdleConn: func(err error) {
-				if err != nil {
-					return
-				}
-				if it.PutIdleConn != nil {
-					it.PutIdleConn(time.Since(start).Seconds())
-				}
-			},
-			DNSStart: func(_ httptrace.DNSStartInfo) {
-				if it.DNSStart != nil {
-					it.DNSStart(time.Since(start).Seconds())
-				}
-			},
-			DNSDone: func(_ httptrace.DNSDoneInfo) {
-				if it.DNSStart != nil {
-					it.DNSStart(time.Since(start).Seconds())
-				}
-			},
-			ConnectStart: func(_, _ string) {
-				if it.ConnectStart != nil {
-					it.ConnectStart(time.Since(start).Seconds())
-				}
-			},
-			ConnectDone: func(_, _ string, err error) {
-				if err != nil {
-					return
-				}
-				if it.ConnectDone != nil {
-					it.ConnectDone(time.Since(start).Seconds())
-				}
-			},
-			GotFirstResponseByte: func() {
-				if it.GotFirstResponseByte != nil {
-					it.GotFirstResponseByte(time.Since(start).Seconds())
-				}
-			},
-			Got100Continue: func() {
-				if it.Got100Continue != nil {
-					it.Got100Continue(time.Since(start).Seconds())
-				}
-			},
-			TLSHandshakeStart: func() {
-				if it.TLSHandshakeStart != nil {
-					it.TLSHandshakeStart(time.Since(start).Seconds())
-				}
-			},
-			TLSHandshakeDone: func(_ tls.ConnectionState, err error) {
-				if err != nil {
-					return
-				}
-				if it.TLSHandshakeDone != nil {
-					it.TLSHandshakeDone(time.Since(start).Seconds())
-				}
-			},
-			WroteHeaders: func() {
-				if it.WroteHeaders != nil {
-					it.WroteHeaders(time.Since(start).Seconds())
-				}
-			},
-			Wait100Continue: func() {
-				if it.Wait100Continue != nil {
-					it.Wait100Continue(time.Since(start).Seconds())
-				}
-			},
-			WroteRequest: func(_ httptrace.WroteRequestInfo) {
-				if it.WroteRequest != nil {
-					it.WroteRequest(time.Since(start).Seconds())
-				}
-			},
-		}
-		r = r.WithContext(httptrace.WithClientTrace(context.Background(), trace))
-
-		return next.RoundTrip(r)
-	})
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
deleted file mode 100644
index 9db2438053..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
+++ /dev/null
@@ -1,447 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package promhttp
-
-import (
-	"errors"
-	"net/http"
-	"strconv"
-	"strings"
-	"time"
-
-	dto "github.com/prometheus/client_model/go"
-
-	"github.com/prometheus/client_golang/prometheus"
-)
-
-// magicString is used for the hacky label test in checkLabels. Remove once fixed.
-const magicString = "zZgWfBxLqvG8kc8IMv3POi2Bb0tZI3vAnBx+gBaFi9FyPzB/CzKUer1yufDa"
-
-// InstrumentHandlerInFlight is a middleware that wraps the provided
-// http.Handler. It sets the provided prometheus.Gauge to the number of
-// requests currently handled by the wrapped http.Handler.
-//
-// See the example for InstrumentHandlerDuration for example usage.
-func InstrumentHandlerInFlight(g prometheus.Gauge, next http.Handler) http.Handler {
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		g.Inc()
-		defer g.Dec()
-		next.ServeHTTP(w, r)
-	})
-}
-
-// InstrumentHandlerDuration is a middleware that wraps the provided
-// http.Handler to observe the request duration with the provided ObserverVec.
-// The ObserverVec must have zero, one, or two non-const non-curried labels. For
-// those, the only allowed label names are "code" and "method". The function
-// panics otherwise. The Observe method of the Observer in the ObserverVec is
-// called with the request duration in seconds. Partitioning happens by HTTP
-// status code and/or HTTP method if the respective instance label names are
-// present in the ObserverVec. For unpartitioned observations, use an
-// ObserverVec with zero labels. Note that partitioning of Histograms is
-// expensive and should be used judiciously.
-//
-// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
-//
-// If the wrapped Handler panics, no values are reported.
-//
-// Note that this method is only guaranteed to never observe negative durations
-// if used with Go1.9+.
-func InstrumentHandlerDuration(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
-	code, method := checkLabels(obs)
-
-	if code {
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			now := time.Now()
-			d := newDelegator(w, nil)
-			next.ServeHTTP(d, r)
-
-			obs.With(labels(code, method, r.Method, d.Status())).Observe(time.Since(now).Seconds())
-		})
-	}
-
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		now := time.Now()
-		next.ServeHTTP(w, r)
-		obs.With(labels(code, method, r.Method, 0)).Observe(time.Since(now).Seconds())
-	})
-}
-
-// InstrumentHandlerCounter is a middleware that wraps the provided http.Handler
-// to observe the request result with the provided CounterVec.  The CounterVec
-// must have zero, one, or two non-const non-curried labels. For those, the only
-// allowed label names are "code" and "method". The function panics
-// otherwise. Partitioning of the CounterVec happens by HTTP status code and/or
-// HTTP method if the respective instance label names are present in the
-// CounterVec. For unpartitioned counting, use a CounterVec with zero labels.
-//
-// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
-//
-// If the wrapped Handler panics, the Counter is not incremented.
-//
-// See the example for InstrumentHandlerDuration for example usage.
-func InstrumentHandlerCounter(counter *prometheus.CounterVec, next http.Handler) http.HandlerFunc {
-	code, method := checkLabels(counter)
-
-	if code {
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			d := newDelegator(w, nil)
-			next.ServeHTTP(d, r)
-			counter.With(labels(code, method, r.Method, d.Status())).Inc()
-		})
-	}
-
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		next.ServeHTTP(w, r)
-		counter.With(labels(code, method, r.Method, 0)).Inc()
-	})
-}
-
-// InstrumentHandlerTimeToWriteHeader is a middleware that wraps the provided
-// http.Handler to observe with the provided ObserverVec the request duration
-// until the response headers are written. The ObserverVec must have zero, one,
-// or two non-const non-curried labels. For those, the only allowed label names
-// are "code" and "method". The function panics otherwise. The Observe method of
-// the Observer in the ObserverVec is called with the request duration in
-// seconds. Partitioning happens by HTTP status code and/or HTTP method if the
-// respective instance label names are present in the ObserverVec. For
-// unpartitioned observations, use an ObserverVec with zero labels. Note that
-// partitioning of Histograms is expensive and should be used judiciously.
-//
-// If the wrapped Handler panics before calling WriteHeader, no value is
-// reported.
-//
-// Note that this method is only guaranteed to never observe negative durations
-// if used with Go1.9+.
-//
-// See the example for InstrumentHandlerDuration for example usage.
-func InstrumentHandlerTimeToWriteHeader(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
-	code, method := checkLabels(obs)
-
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		now := time.Now()
-		d := newDelegator(w, func(status int) {
-			obs.With(labels(code, method, r.Method, status)).Observe(time.Since(now).Seconds())
-		})
-		next.ServeHTTP(d, r)
-	})
-}
-
-// InstrumentHandlerRequestSize is a middleware that wraps the provided
-// http.Handler to observe the request size with the provided ObserverVec.  The
-// ObserverVec must have zero, one, or two non-const non-curried labels. For
-// those, the only allowed label names are "code" and "method". The function
-// panics otherwise. The Observe method of the Observer in the ObserverVec is
-// called with the request size in bytes. Partitioning happens by HTTP status
-// code and/or HTTP method if the respective instance label names are present in
-// the ObserverVec. For unpartitioned observations, use an ObserverVec with zero
-// labels. Note that partitioning of Histograms is expensive and should be used
-// judiciously.
-//
-// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
-//
-// If the wrapped Handler panics, no values are reported.
-//
-// See the example for InstrumentHandlerDuration for example usage.
-func InstrumentHandlerRequestSize(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
-	code, method := checkLabels(obs)
-
-	if code {
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			d := newDelegator(w, nil)
-			next.ServeHTTP(d, r)
-			size := computeApproximateRequestSize(r)
-			obs.With(labels(code, method, r.Method, d.Status())).Observe(float64(size))
-		})
-	}
-
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		next.ServeHTTP(w, r)
-		size := computeApproximateRequestSize(r)
-		obs.With(labels(code, method, r.Method, 0)).Observe(float64(size))
-	})
-}
-
-// InstrumentHandlerResponseSize is a middleware that wraps the provided
-// http.Handler to observe the response size with the provided ObserverVec.  The
-// ObserverVec must have zero, one, or two non-const non-curried labels. For
-// those, the only allowed label names are "code" and "method". The function
-// panics otherwise. The Observe method of the Observer in the ObserverVec is
-// called with the response size in bytes. Partitioning happens by HTTP status
-// code and/or HTTP method if the respective instance label names are present in
-// the ObserverVec. For unpartitioned observations, use an ObserverVec with zero
-// labels. Note that partitioning of Histograms is expensive and should be used
-// judiciously.
-//
-// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
-//
-// If the wrapped Handler panics, no values are reported.
-//
-// See the example for InstrumentHandlerDuration for example usage.
-func InstrumentHandlerResponseSize(obs prometheus.ObserverVec, next http.Handler) http.Handler {
-	code, method := checkLabels(obs)
-	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		d := newDelegator(w, nil)
-		next.ServeHTTP(d, r)
-		obs.With(labels(code, method, r.Method, d.Status())).Observe(float64(d.Written()))
-	})
-}
-
-func checkLabels(c prometheus.Collector) (code bool, method bool) {
-	// TODO(beorn7): Remove this hacky way to check for instance labels
-	// once Descriptors can have their dimensionality queried.
-	var (
-		desc *prometheus.Desc
-		m    prometheus.Metric
-		pm   dto.Metric
-		lvs  []string
-	)
-
-	// Get the Desc from the Collector.
-	descc := make(chan *prometheus.Desc, 1)
-	c.Describe(descc)
-
-	select {
-	case desc = <-descc:
-	default:
-		panic("no description provided by collector")
-	}
-	select {
-	case <-descc:
-		panic("more than one description provided by collector")
-	default:
-	}
-
-	close(descc)
-
-	// Create a ConstMetric with the Desc. Since we don't know how many
-	// variable labels there are, try for as long as it needs.
-	for err := errors.New("dummy"); err != nil; lvs = append(lvs, magicString) {
-		m, err = prometheus.NewConstMetric(desc, prometheus.UntypedValue, 0, lvs...)
-	}
-
-	// Write out the metric into a proto message and look at the labels.
-	// If the value is not the magicString, it is a constLabel, which doesn't interest us.
-	// If the label is curried, it doesn't interest us.
-	// In all other cases, only "code" or "method" is allowed.
-	if err := m.Write(&pm); err != nil {
-		panic("error checking metric for labels")
-	}
-	for _, label := range pm.Label {
-		name, value := label.GetName(), label.GetValue()
-		if value != magicString || isLabelCurried(c, name) {
-			continue
-		}
-		switch name {
-		case "code":
-			code = true
-		case "method":
-			method = true
-		default:
-			panic("metric partitioned with non-supported labels")
-		}
-	}
-	return
-}
-
-func isLabelCurried(c prometheus.Collector, label string) bool {
-	// This is even hackier than the label test above.
-	// We essentially try to curry again and see if it works.
-	// But for that, we need to type-convert to the two
-	// types we use here, ObserverVec or *CounterVec.
-	switch v := c.(type) {
-	case *prometheus.CounterVec:
-		if _, err := v.CurryWith(prometheus.Labels{label: "dummy"}); err == nil {
-			return false
-		}
-	case prometheus.ObserverVec:
-		if _, err := v.CurryWith(prometheus.Labels{label: "dummy"}); err == nil {
-			return false
-		}
-	default:
-		panic("unsupported metric vec type")
-	}
-	return true
-}
-
-// emptyLabels is a one-time allocation for non-partitioned metrics to avoid
-// unnecessary allocations on each request.
-var emptyLabels = prometheus.Labels{}
-
-func labels(code, method bool, reqMethod string, status int) prometheus.Labels {
-	if !(code || method) {
-		return emptyLabels
-	}
-	labels := prometheus.Labels{}
-
-	if code {
-		labels["code"] = sanitizeCode(status)
-	}
-	if method {
-		labels["method"] = sanitizeMethod(reqMethod)
-	}
-
-	return labels
-}
-
-func computeApproximateRequestSize(r *http.Request) int {
-	s := 0
-	if r.URL != nil {
-		s += len(r.URL.String())
-	}
-
-	s += len(r.Method)
-	s += len(r.Proto)
-	for name, values := range r.Header {
-		s += len(name)
-		for _, value := range values {
-			s += len(value)
-		}
-	}
-	s += len(r.Host)
-
-	// N.B. r.Form and r.MultipartForm are assumed to be included in r.URL.
-
-	if r.ContentLength != -1 {
-		s += int(r.ContentLength)
-	}
-	return s
-}
-
-func sanitizeMethod(m string) string {
-	switch m {
-	case "GET", "get":
-		return "get"
-	case "PUT", "put":
-		return "put"
-	case "HEAD", "head":
-		return "head"
-	case "POST", "post":
-		return "post"
-	case "DELETE", "delete":
-		return "delete"
-	case "CONNECT", "connect":
-		return "connect"
-	case "OPTIONS", "options":
-		return "options"
-	case "NOTIFY", "notify":
-		return "notify"
-	default:
-		return strings.ToLower(m)
-	}
-}
-
-// If the wrapped http.Handler has not set a status code, i.e. the value is
-// currently 0, santizeCode will return 200, for consistency with behavior in
-// the stdlib.
-func sanitizeCode(s int) string {
-	switch s {
-	case 100:
-		return "100"
-	case 101:
-		return "101"
-
-	case 200, 0:
-		return "200"
-	case 201:
-		return "201"
-	case 202:
-		return "202"
-	case 203:
-		return "203"
-	case 204:
-		return "204"
-	case 205:
-		return "205"
-	case 206:
-		return "206"
-
-	case 300:
-		return "300"
-	case 301:
-		return "301"
-	case 302:
-		return "302"
-	case 304:
-		return "304"
-	case 305:
-		return "305"
-	case 307:
-		return "307"
-
-	case 400:
-		return "400"
-	case 401:
-		return "401"
-	case 402:
-		return "402"
-	case 403:
-		return "403"
-	case 404:
-		return "404"
-	case 405:
-		return "405"
-	case 406:
-		return "406"
-	case 407:
-		return "407"
-	case 408:
-		return "408"
-	case 409:
-		return "409"
-	case 410:
-		return "410"
-	case 411:
-		return "411"
-	case 412:
-		return "412"
-	case 413:
-		return "413"
-	case 414:
-		return "414"
-	case 415:
-		return "415"
-	case 416:
-		return "416"
-	case 417:
-		return "417"
-	case 418:
-		return "418"
-
-	case 500:
-		return "500"
-	case 501:
-		return "501"
-	case 502:
-		return "502"
-	case 503:
-		return "503"
-	case 504:
-		return "504"
-	case 505:
-		return "505"
-
-	case 428:
-		return "428"
-	case 429:
-		return "429"
-	case 431:
-		return "431"
-	case 511:
-		return "511"
-
-	default:
-		return strconv.Itoa(s)
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/registry.go b/vendor/github.com/prometheus/client_golang/prometheus/registry.go
deleted file mode 100644
index bee3703640..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/registry.go
+++ /dev/null
@@ -1,807 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"os"
-	"runtime"
-	"sort"
-	"sync"
-	"unicode/utf8"
-
-	"github.com/golang/protobuf/proto"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-const (
-	// Capacity for the channel to collect metrics and descriptors.
-	capMetricChan = 1000
-	capDescChan   = 10
-)
-
-// DefaultRegisterer and DefaultGatherer are the implementations of the
-// Registerer and Gatherer interface a number of convenience functions in this
-// package act on. Initially, both variables point to the same Registry, which
-// has a process collector (currently on Linux only, see NewProcessCollector)
-// and a Go collector (see NewGoCollector) already registered. This approach to
-// keep default instances as global state mirrors the approach of other packages
-// in the Go standard library. Note that there are caveats. Change the variables
-// with caution and only if you understand the consequences. Users who want to
-// avoid global state altogether should not use the convenience functions and
-// act on custom instances instead.
-var (
-	defaultRegistry              = NewRegistry()
-	DefaultRegisterer Registerer = defaultRegistry
-	DefaultGatherer   Gatherer   = defaultRegistry
-)
-
-func init() {
-	MustRegister(NewProcessCollector(os.Getpid(), ""))
-	MustRegister(NewGoCollector())
-}
-
-// NewRegistry creates a new vanilla Registry without any Collectors
-// pre-registered.
-func NewRegistry() *Registry {
-	return &Registry{
-		collectorsByID:  map[uint64]Collector{},
-		descIDs:         map[uint64]struct{}{},
-		dimHashesByName: map[string]uint64{},
-	}
-}
-
-// NewPedanticRegistry returns a registry that checks during collection if each
-// collected Metric is consistent with its reported Desc, and if the Desc has
-// actually been registered with the registry.
-//
-// Usually, a Registry will be happy as long as the union of all collected
-// Metrics is consistent and valid even if some metrics are not consistent with
-// their own Desc or a Desc provided by their registered Collector. Well-behaved
-// Collectors and Metrics will only provide consistent Descs. This Registry is
-// useful to test the implementation of Collectors and Metrics.
-func NewPedanticRegistry() *Registry {
-	r := NewRegistry()
-	r.pedanticChecksEnabled = true
-	return r
-}
-
-// Registerer is the interface for the part of a registry in charge of
-// registering and unregistering. Users of custom registries should use
-// Registerer as type for registration purposes (rather than the Registry type
-// directly). In that way, they are free to use custom Registerer implementation
-// (e.g. for testing purposes).
-type Registerer interface {
-	// Register registers a new Collector to be included in metrics
-	// collection. It returns an error if the descriptors provided by the
-	// Collector are invalid or if they — in combination with descriptors of
-	// already registered Collectors — do not fulfill the consistency and
-	// uniqueness criteria described in the documentation of metric.Desc.
-	//
-	// If the provided Collector is equal to a Collector already registered
-	// (which includes the case of re-registering the same Collector), the
-	// returned error is an instance of AlreadyRegisteredError, which
-	// contains the previously registered Collector.
-	//
-	// It is in general not safe to register the same Collector multiple
-	// times concurrently.
-	Register(Collector) error
-	// MustRegister works like Register but registers any number of
-	// Collectors and panics upon the first registration that causes an
-	// error.
-	MustRegister(...Collector)
-	// Unregister unregisters the Collector that equals the Collector passed
-	// in as an argument.  (Two Collectors are considered equal if their
-	// Describe method yields the same set of descriptors.) The function
-	// returns whether a Collector was unregistered.
-	//
-	// Note that even after unregistering, it will not be possible to
-	// register a new Collector that is inconsistent with the unregistered
-	// Collector, e.g. a Collector collecting metrics with the same name but
-	// a different help string. The rationale here is that the same registry
-	// instance must only collect consistent metrics throughout its
-	// lifetime.
-	Unregister(Collector) bool
-}
-
-// Gatherer is the interface for the part of a registry in charge of gathering
-// the collected metrics into a number of MetricFamilies. The Gatherer interface
-// comes with the same general implication as described for the Registerer
-// interface.
-type Gatherer interface {
-	// Gather calls the Collect method of the registered Collectors and then
-	// gathers the collected metrics into a lexicographically sorted slice
-	// of MetricFamily protobufs. Even if an error occurs, Gather attempts
-	// to gather as many metrics as possible. Hence, if a non-nil error is
-	// returned, the returned MetricFamily slice could be nil (in case of a
-	// fatal error that prevented any meaningful metric collection) or
-	// contain a number of MetricFamily protobufs, some of which might be
-	// incomplete, and some might be missing altogether. The returned error
-	// (which might be a MultiError) explains the details. In scenarios
-	// where complete collection is critical, the returned MetricFamily
-	// protobufs should be disregarded if the returned error is non-nil.
-	Gather() ([]*dto.MetricFamily, error)
-}
-
-// Register registers the provided Collector with the DefaultRegisterer.
-//
-// Register is a shortcut for DefaultRegisterer.Register(c). See there for more
-// details.
-func Register(c Collector) error {
-	return DefaultRegisterer.Register(c)
-}
-
-// MustRegister registers the provided Collectors with the DefaultRegisterer and
-// panics if any error occurs.
-//
-// MustRegister is a shortcut for DefaultRegisterer.MustRegister(cs...). See
-// there for more details.
-func MustRegister(cs ...Collector) {
-	DefaultRegisterer.MustRegister(cs...)
-}
-
-// Unregister removes the registration of the provided Collector from the
-// DefaultRegisterer.
-//
-// Unregister is a shortcut for DefaultRegisterer.Unregister(c). See there for
-// more details.
-func Unregister(c Collector) bool {
-	return DefaultRegisterer.Unregister(c)
-}
-
-// GathererFunc turns a function into a Gatherer.
-type GathererFunc func() ([]*dto.MetricFamily, error)
-
-// Gather implements Gatherer.
-func (gf GathererFunc) Gather() ([]*dto.MetricFamily, error) {
-	return gf()
-}
-
-// AlreadyRegisteredError is returned by the Register method if the Collector to
-// be registered has already been registered before, or a different Collector
-// that collects the same metrics has been registered before. Registration fails
-// in that case, but you can detect from the kind of error what has
-// happened. The error contains fields for the existing Collector and the
-// (rejected) new Collector that equals the existing one. This can be used to
-// find out if an equal Collector has been registered before and switch over to
-// using the old one, as demonstrated in the example.
-type AlreadyRegisteredError struct {
-	ExistingCollector, NewCollector Collector
-}
-
-func (err AlreadyRegisteredError) Error() string {
-	return "duplicate metrics collector registration attempted"
-}
-
-// MultiError is a slice of errors implementing the error interface. It is used
-// by a Gatherer to report multiple errors during MetricFamily gathering.
-type MultiError []error
-
-func (errs MultiError) Error() string {
-	if len(errs) == 0 {
-		return ""
-	}
-	buf := &bytes.Buffer{}
-	fmt.Fprintf(buf, "%d error(s) occurred:", len(errs))
-	for _, err := range errs {
-		fmt.Fprintf(buf, "\n* %s", err)
-	}
-	return buf.String()
-}
-
-// Append appends the provided error if it is not nil.
-func (errs *MultiError) Append(err error) {
-	if err != nil {
-		*errs = append(*errs, err)
-	}
-}
-
-// MaybeUnwrap returns nil if len(errs) is 0. It returns the first and only
-// contained error as error if len(errs is 1). In all other cases, it returns
-// the MultiError directly. This is helpful for returning a MultiError in a way
-// that only uses the MultiError if needed.
-func (errs MultiError) MaybeUnwrap() error {
-	switch len(errs) {
-	case 0:
-		return nil
-	case 1:
-		return errs[0]
-	default:
-		return errs
-	}
-}
-
-// Registry registers Prometheus collectors, collects their metrics, and gathers
-// them into MetricFamilies for exposition. It implements both Registerer and
-// Gatherer. The zero value is not usable. Create instances with NewRegistry or
-// NewPedanticRegistry.
-type Registry struct {
-	mtx                   sync.RWMutex
-	collectorsByID        map[uint64]Collector // ID is a hash of the descIDs.
-	descIDs               map[uint64]struct{}
-	dimHashesByName       map[string]uint64
-	pedanticChecksEnabled bool
-}
-
-// Register implements Registerer.
-func (r *Registry) Register(c Collector) error {
-	var (
-		descChan           = make(chan *Desc, capDescChan)
-		newDescIDs         = map[uint64]struct{}{}
-		newDimHashesByName = map[string]uint64{}
-		collectorID        uint64 // Just a sum of all desc IDs.
-		duplicateDescErr   error
-	)
-	go func() {
-		c.Describe(descChan)
-		close(descChan)
-	}()
-	r.mtx.Lock()
-	defer r.mtx.Unlock()
-	// Conduct various tests...
-	for desc := range descChan {
-
-		// Is the descriptor valid at all?
-		if desc.err != nil {
-			return fmt.Errorf("descriptor %s is invalid: %s", desc, desc.err)
-		}
-
-		// Is the descID unique?
-		// (In other words: Is the fqName + constLabel combination unique?)
-		if _, exists := r.descIDs[desc.id]; exists {
-			duplicateDescErr = fmt.Errorf("descriptor %s already exists with the same fully-qualified name and const label values", desc)
-		}
-		// If it is not a duplicate desc in this collector, add it to
-		// the collectorID.  (We allow duplicate descs within the same
-		// collector, but their existence must be a no-op.)
-		if _, exists := newDescIDs[desc.id]; !exists {
-			newDescIDs[desc.id] = struct{}{}
-			collectorID += desc.id
-		}
-
-		// Are all the label names and the help string consistent with
-		// previous descriptors of the same name?
-		// First check existing descriptors...
-		if dimHash, exists := r.dimHashesByName[desc.fqName]; exists {
-			if dimHash != desc.dimHash {
-				return fmt.Errorf("a previously registered descriptor with the same fully-qualified name as %s has different label names or a different help string", desc)
-			}
-		} else {
-			// ...then check the new descriptors already seen.
-			if dimHash, exists := newDimHashesByName[desc.fqName]; exists {
-				if dimHash != desc.dimHash {
-					return fmt.Errorf("descriptors reported by collector have inconsistent label names or help strings for the same fully-qualified name, offender is %s", desc)
-				}
-			} else {
-				newDimHashesByName[desc.fqName] = desc.dimHash
-			}
-		}
-	}
-	// Did anything happen at all?
-	if len(newDescIDs) == 0 {
-		return errors.New("collector has no descriptors")
-	}
-	if existing, exists := r.collectorsByID[collectorID]; exists {
-		return AlreadyRegisteredError{
-			ExistingCollector: existing,
-			NewCollector:      c,
-		}
-	}
-	// If the collectorID is new, but at least one of the descs existed
-	// before, we are in trouble.
-	if duplicateDescErr != nil {
-		return duplicateDescErr
-	}
-
-	// Only after all tests have passed, actually register.
-	r.collectorsByID[collectorID] = c
-	for hash := range newDescIDs {
-		r.descIDs[hash] = struct{}{}
-	}
-	for name, dimHash := range newDimHashesByName {
-		r.dimHashesByName[name] = dimHash
-	}
-	return nil
-}
-
-// Unregister implements Registerer.
-func (r *Registry) Unregister(c Collector) bool {
-	var (
-		descChan    = make(chan *Desc, capDescChan)
-		descIDs     = map[uint64]struct{}{}
-		collectorID uint64 // Just a sum of the desc IDs.
-	)
-	go func() {
-		c.Describe(descChan)
-		close(descChan)
-	}()
-	for desc := range descChan {
-		if _, exists := descIDs[desc.id]; !exists {
-			collectorID += desc.id
-			descIDs[desc.id] = struct{}{}
-		}
-	}
-
-	r.mtx.RLock()
-	if _, exists := r.collectorsByID[collectorID]; !exists {
-		r.mtx.RUnlock()
-		return false
-	}
-	r.mtx.RUnlock()
-
-	r.mtx.Lock()
-	defer r.mtx.Unlock()
-
-	delete(r.collectorsByID, collectorID)
-	for id := range descIDs {
-		delete(r.descIDs, id)
-	}
-	// dimHashesByName is left untouched as those must be consistent
-	// throughout the lifetime of a program.
-	return true
-}
-
-// MustRegister implements Registerer.
-func (r *Registry) MustRegister(cs ...Collector) {
-	for _, c := range cs {
-		if err := r.Register(c); err != nil {
-			panic(err)
-		}
-	}
-}
-
-// Gather implements Gatherer.
-func (r *Registry) Gather() ([]*dto.MetricFamily, error) {
-	var (
-		metricChan        = make(chan Metric, capMetricChan)
-		metricHashes      = map[uint64]struct{}{}
-		dimHashes         = map[string]uint64{}
-		wg                sync.WaitGroup
-		errs              MultiError          // The collected errors to return in the end.
-		registeredDescIDs map[uint64]struct{} // Only used for pedantic checks
-	)
-
-	r.mtx.RLock()
-	goroutineBudget := len(r.collectorsByID)
-	metricFamiliesByName := make(map[string]*dto.MetricFamily, len(r.dimHashesByName))
-	collectors := make(chan Collector, len(r.collectorsByID))
-	for _, collector := range r.collectorsByID {
-		collectors <- collector
-	}
-	// In case pedantic checks are enabled, we have to copy the map before
-	// giving up the RLock.
-	if r.pedanticChecksEnabled {
-		registeredDescIDs = make(map[uint64]struct{}, len(r.descIDs))
-		for id := range r.descIDs {
-			registeredDescIDs[id] = struct{}{}
-		}
-	}
-	r.mtx.RUnlock()
-
-	wg.Add(goroutineBudget)
-
-	collectWorker := func() {
-		for {
-			select {
-			case collector := <-collectors:
-				collector.Collect(metricChan)
-				wg.Done()
-			default:
-				return
-			}
-		}
-	}
-
-	// Start the first worker now to make sure at least one is running.
-	go collectWorker()
-	goroutineBudget--
-
-	// Close the metricChan once all collectors are collected.
-	go func() {
-		wg.Wait()
-		close(metricChan)
-	}()
-
-	// Drain metricChan in case of premature return.
-	defer func() {
-		for range metricChan {
-		}
-	}()
-
-collectLoop:
-	for {
-		select {
-		case metric, ok := <-metricChan:
-			if !ok {
-				// metricChan is closed, we are done.
-				break collectLoop
-			}
-			errs.Append(processMetric(
-				metric, metricFamiliesByName,
-				metricHashes, dimHashes,
-				registeredDescIDs,
-			))
-		default:
-			if goroutineBudget <= 0 || len(collectors) == 0 {
-				// All collectors are aleady being worked on or
-				// we have already as many goroutines started as
-				// there are collectors. Just process metrics
-				// from now on.
-				for metric := range metricChan {
-					errs.Append(processMetric(
-						metric, metricFamiliesByName,
-						metricHashes, dimHashes,
-						registeredDescIDs,
-					))
-				}
-				break collectLoop
-			}
-			// Start more workers.
-			go collectWorker()
-			goroutineBudget--
-			runtime.Gosched()
-		}
-	}
-	return normalizeMetricFamilies(metricFamiliesByName), errs.MaybeUnwrap()
-}
-
-// processMetric is an internal helper method only used by the Gather method.
-func processMetric(
-	metric Metric,
-	metricFamiliesByName map[string]*dto.MetricFamily,
-	metricHashes map[uint64]struct{},
-	dimHashes map[string]uint64,
-	registeredDescIDs map[uint64]struct{},
-) error {
-	desc := metric.Desc()
-	dtoMetric := &dto.Metric{}
-	if err := metric.Write(dtoMetric); err != nil {
-		return fmt.Errorf("error collecting metric %v: %s", desc, err)
-	}
-	metricFamily, ok := metricFamiliesByName[desc.fqName]
-	if ok {
-		if metricFamily.GetHelp() != desc.help {
-			return fmt.Errorf(
-				"collected metric %s %s has help %q but should have %q",
-				desc.fqName, dtoMetric, desc.help, metricFamily.GetHelp(),
-			)
-		}
-		// TODO(beorn7): Simplify switch once Desc has type.
-		switch metricFamily.GetType() {
-		case dto.MetricType_COUNTER:
-			if dtoMetric.Counter == nil {
-				return fmt.Errorf(
-					"collected metric %s %s should be a Counter",
-					desc.fqName, dtoMetric,
-				)
-			}
-		case dto.MetricType_GAUGE:
-			if dtoMetric.Gauge == nil {
-				return fmt.Errorf(
-					"collected metric %s %s should be a Gauge",
-					desc.fqName, dtoMetric,
-				)
-			}
-		case dto.MetricType_SUMMARY:
-			if dtoMetric.Summary == nil {
-				return fmt.Errorf(
-					"collected metric %s %s should be a Summary",
-					desc.fqName, dtoMetric,
-				)
-			}
-		case dto.MetricType_UNTYPED:
-			if dtoMetric.Untyped == nil {
-				return fmt.Errorf(
-					"collected metric %s %s should be Untyped",
-					desc.fqName, dtoMetric,
-				)
-			}
-		case dto.MetricType_HISTOGRAM:
-			if dtoMetric.Histogram == nil {
-				return fmt.Errorf(
-					"collected metric %s %s should be a Histogram",
-					desc.fqName, dtoMetric,
-				)
-			}
-		default:
-			panic("encountered MetricFamily with invalid type")
-		}
-	} else {
-		metricFamily = &dto.MetricFamily{}
-		metricFamily.Name = proto.String(desc.fqName)
-		metricFamily.Help = proto.String(desc.help)
-		// TODO(beorn7): Simplify switch once Desc has type.
-		switch {
-		case dtoMetric.Gauge != nil:
-			metricFamily.Type = dto.MetricType_GAUGE.Enum()
-		case dtoMetric.Counter != nil:
-			metricFamily.Type = dto.MetricType_COUNTER.Enum()
-		case dtoMetric.Summary != nil:
-			metricFamily.Type = dto.MetricType_SUMMARY.Enum()
-		case dtoMetric.Untyped != nil:
-			metricFamily.Type = dto.MetricType_UNTYPED.Enum()
-		case dtoMetric.Histogram != nil:
-			metricFamily.Type = dto.MetricType_HISTOGRAM.Enum()
-		default:
-			return fmt.Errorf("empty metric collected: %s", dtoMetric)
-		}
-		metricFamiliesByName[desc.fqName] = metricFamily
-	}
-	if err := checkMetricConsistency(metricFamily, dtoMetric, metricHashes, dimHashes); err != nil {
-		return err
-	}
-	if registeredDescIDs != nil {
-		// Is the desc registered at all?
-		if _, exist := registeredDescIDs[desc.id]; !exist {
-			return fmt.Errorf(
-				"collected metric %s %s with unregistered descriptor %s",
-				metricFamily.GetName(), dtoMetric, desc,
-			)
-		}
-		if err := checkDescConsistency(metricFamily, dtoMetric, desc); err != nil {
-			return err
-		}
-	}
-	metricFamily.Metric = append(metricFamily.Metric, dtoMetric)
-	return nil
-}
-
-// Gatherers is a slice of Gatherer instances that implements the Gatherer
-// interface itself. Its Gather method calls Gather on all Gatherers in the
-// slice in order and returns the merged results. Errors returned from the
-// Gather calles are all returned in a flattened MultiError. Duplicate and
-// inconsistent Metrics are skipped (first occurrence in slice order wins) and
-// reported in the returned error.
-//
-// Gatherers can be used to merge the Gather results from multiple
-// Registries. It also provides a way to directly inject existing MetricFamily
-// protobufs into the gathering by creating a custom Gatherer with a Gather
-// method that simply returns the existing MetricFamily protobufs. Note that no
-// registration is involved (in contrast to Collector registration), so
-// obviously registration-time checks cannot happen. Any inconsistencies between
-// the gathered MetricFamilies are reported as errors by the Gather method, and
-// inconsistent Metrics are dropped. Invalid parts of the MetricFamilies
-// (e.g. syntactically invalid metric or label names) will go undetected.
-type Gatherers []Gatherer
-
-// Gather implements Gatherer.
-func (gs Gatherers) Gather() ([]*dto.MetricFamily, error) {
-	var (
-		metricFamiliesByName = map[string]*dto.MetricFamily{}
-		metricHashes         = map[uint64]struct{}{}
-		dimHashes            = map[string]uint64{}
-		errs                 MultiError // The collected errors to return in the end.
-	)
-
-	for i, g := range gs {
-		mfs, err := g.Gather()
-		if err != nil {
-			if multiErr, ok := err.(MultiError); ok {
-				for _, err := range multiErr {
-					errs = append(errs, fmt.Errorf("[from Gatherer #%d] %s", i+1, err))
-				}
-			} else {
-				errs = append(errs, fmt.Errorf("[from Gatherer #%d] %s", i+1, err))
-			}
-		}
-		for _, mf := range mfs {
-			existingMF, exists := metricFamiliesByName[mf.GetName()]
-			if exists {
-				if existingMF.GetHelp() != mf.GetHelp() {
-					errs = append(errs, fmt.Errorf(
-						"gathered metric family %s has help %q but should have %q",
-						mf.GetName(), mf.GetHelp(), existingMF.GetHelp(),
-					))
-					continue
-				}
-				if existingMF.GetType() != mf.GetType() {
-					errs = append(errs, fmt.Errorf(
-						"gathered metric family %s has type %s but should have %s",
-						mf.GetName(), mf.GetType(), existingMF.GetType(),
-					))
-					continue
-				}
-			} else {
-				existingMF = &dto.MetricFamily{}
-				existingMF.Name = mf.Name
-				existingMF.Help = mf.Help
-				existingMF.Type = mf.Type
-				metricFamiliesByName[mf.GetName()] = existingMF
-			}
-			for _, m := range mf.Metric {
-				if err := checkMetricConsistency(existingMF, m, metricHashes, dimHashes); err != nil {
-					errs = append(errs, err)
-					continue
-				}
-				existingMF.Metric = append(existingMF.Metric, m)
-			}
-		}
-	}
-	return normalizeMetricFamilies(metricFamiliesByName), errs.MaybeUnwrap()
-}
-
-// metricSorter is a sortable slice of *dto.Metric.
-type metricSorter []*dto.Metric
-
-func (s metricSorter) Len() int {
-	return len(s)
-}
-
-func (s metricSorter) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-func (s metricSorter) Less(i, j int) bool {
-	if len(s[i].Label) != len(s[j].Label) {
-		// This should not happen. The metrics are
-		// inconsistent. However, we have to deal with the fact, as
-		// people might use custom collectors or metric family injection
-		// to create inconsistent metrics. So let's simply compare the
-		// number of labels in this case. That will still yield
-		// reproducible sorting.
-		return len(s[i].Label) < len(s[j].Label)
-	}
-	for n, lp := range s[i].Label {
-		vi := lp.GetValue()
-		vj := s[j].Label[n].GetValue()
-		if vi != vj {
-			return vi < vj
-		}
-	}
-
-	// We should never arrive here. Multiple metrics with the same
-	// label set in the same scrape will lead to undefined ingestion
-	// behavior. However, as above, we have to provide stable sorting
-	// here, even for inconsistent metrics. So sort equal metrics
-	// by their timestamp, with missing timestamps (implying "now")
-	// coming last.
-	if s[i].TimestampMs == nil {
-		return false
-	}
-	if s[j].TimestampMs == nil {
-		return true
-	}
-	return s[i].GetTimestampMs() < s[j].GetTimestampMs()
-}
-
-// normalizeMetricFamilies returns a MetricFamily slice with empty
-// MetricFamilies pruned and the remaining MetricFamilies sorted by name within
-// the slice, with the contained Metrics sorted within each MetricFamily.
-func normalizeMetricFamilies(metricFamiliesByName map[string]*dto.MetricFamily) []*dto.MetricFamily {
-	for _, mf := range metricFamiliesByName {
-		sort.Sort(metricSorter(mf.Metric))
-	}
-	names := make([]string, 0, len(metricFamiliesByName))
-	for name, mf := range metricFamiliesByName {
-		if len(mf.Metric) > 0 {
-			names = append(names, name)
-		}
-	}
-	sort.Strings(names)
-	result := make([]*dto.MetricFamily, 0, len(names))
-	for _, name := range names {
-		result = append(result, metricFamiliesByName[name])
-	}
-	return result
-}
-
-// checkMetricConsistency checks if the provided Metric is consistent with the
-// provided MetricFamily. It also hashed the Metric labels and the MetricFamily
-// name. If the resulting hash is already in the provided metricHashes, an error
-// is returned. If not, it is added to metricHashes. The provided dimHashes maps
-// MetricFamily names to their dimHash (hashed sorted label names). If dimHashes
-// doesn't yet contain a hash for the provided MetricFamily, it is
-// added. Otherwise, an error is returned if the existing dimHashes in not equal
-// the calculated dimHash.
-func checkMetricConsistency(
-	metricFamily *dto.MetricFamily,
-	dtoMetric *dto.Metric,
-	metricHashes map[uint64]struct{},
-	dimHashes map[string]uint64,
-) error {
-	// Type consistency with metric family.
-	if metricFamily.GetType() == dto.MetricType_GAUGE && dtoMetric.Gauge == nil ||
-		metricFamily.GetType() == dto.MetricType_COUNTER && dtoMetric.Counter == nil ||
-		metricFamily.GetType() == dto.MetricType_SUMMARY && dtoMetric.Summary == nil ||
-		metricFamily.GetType() == dto.MetricType_HISTOGRAM && dtoMetric.Histogram == nil ||
-		metricFamily.GetType() == dto.MetricType_UNTYPED && dtoMetric.Untyped == nil {
-		return fmt.Errorf(
-			"collected metric %s %s is not a %s",
-			metricFamily.GetName(), dtoMetric, metricFamily.GetType(),
-		)
-	}
-
-	for _, labelPair := range dtoMetric.GetLabel() {
-		if !utf8.ValidString(*labelPair.Value) {
-			return fmt.Errorf("collected metric's label %s is not utf8: %#v", *labelPair.Name, *labelPair.Value)
-		}
-	}
-
-	// Is the metric unique (i.e. no other metric with the same name and the same label values)?
-	h := hashNew()
-	h = hashAdd(h, metricFamily.GetName())
-	h = hashAddByte(h, separatorByte)
-	dh := hashNew()
-	// Make sure label pairs are sorted. We depend on it for the consistency
-	// check.
-	sort.Sort(LabelPairSorter(dtoMetric.Label))
-	for _, lp := range dtoMetric.Label {
-		h = hashAdd(h, lp.GetValue())
-		h = hashAddByte(h, separatorByte)
-		dh = hashAdd(dh, lp.GetName())
-		dh = hashAddByte(dh, separatorByte)
-	}
-	if _, exists := metricHashes[h]; exists {
-		return fmt.Errorf(
-			"collected metric %s %s was collected before with the same name and label values",
-			metricFamily.GetName(), dtoMetric,
-		)
-	}
-	if dimHash, ok := dimHashes[metricFamily.GetName()]; ok {
-		if dimHash != dh {
-			return fmt.Errorf(
-				"collected metric %s %s has label dimensions inconsistent with previously collected metrics in the same metric family",
-				metricFamily.GetName(), dtoMetric,
-			)
-		}
-	} else {
-		dimHashes[metricFamily.GetName()] = dh
-	}
-	metricHashes[h] = struct{}{}
-	return nil
-}
-
-func checkDescConsistency(
-	metricFamily *dto.MetricFamily,
-	dtoMetric *dto.Metric,
-	desc *Desc,
-) error {
-	// Desc help consistency with metric family help.
-	if metricFamily.GetHelp() != desc.help {
-		return fmt.Errorf(
-			"collected metric %s %s has help %q but should have %q",
-			metricFamily.GetName(), dtoMetric, metricFamily.GetHelp(), desc.help,
-		)
-	}
-
-	// Is the desc consistent with the content of the metric?
-	lpsFromDesc := make([]*dto.LabelPair, 0, len(dtoMetric.Label))
-	lpsFromDesc = append(lpsFromDesc, desc.constLabelPairs...)
-	for _, l := range desc.variableLabels {
-		lpsFromDesc = append(lpsFromDesc, &dto.LabelPair{
-			Name: proto.String(l),
-		})
-	}
-	if len(lpsFromDesc) != len(dtoMetric.Label) {
-		return fmt.Errorf(
-			"labels in collected metric %s %s are inconsistent with descriptor %s",
-			metricFamily.GetName(), dtoMetric, desc,
-		)
-	}
-	sort.Sort(LabelPairSorter(lpsFromDesc))
-	for i, lpFromDesc := range lpsFromDesc {
-		lpFromMetric := dtoMetric.Label[i]
-		if lpFromDesc.GetName() != lpFromMetric.GetName() ||
-			lpFromDesc.Value != nil && lpFromDesc.GetValue() != lpFromMetric.GetValue() {
-			return fmt.Errorf(
-				"labels in collected metric %s %s are inconsistent with descriptor %s",
-				metricFamily.GetName(), dtoMetric, desc,
-			)
-		}
-	}
-	return nil
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/summary.go b/vendor/github.com/prometheus/client_golang/prometheus/summary.go
deleted file mode 100644
index f7dc85b96d..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/summary.go
+++ /dev/null
@@ -1,609 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"fmt"
-	"math"
-	"sort"
-	"sync"
-	"time"
-
-	"github.com/beorn7/perks/quantile"
-	"github.com/golang/protobuf/proto"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// quantileLabel is used for the label that defines the quantile in a
-// summary.
-const quantileLabel = "quantile"
-
-// A Summary captures individual observations from an event or sample stream and
-// summarizes them in a manner similar to traditional summary statistics: 1. sum
-// of observations, 2. observation count, 3. rank estimations.
-//
-// A typical use-case is the observation of request latencies. By default, a
-// Summary provides the median, the 90th and the 99th percentile of the latency
-// as rank estimations. However, the default behavior will change in the
-// upcoming v0.10 of the library. There will be no rank estiamtions at all by
-// default. For a sane transition, it is recommended to set the desired rank
-// estimations explicitly.
-//
-// Note that the rank estimations cannot be aggregated in a meaningful way with
-// the Prometheus query language (i.e. you cannot average or add them). If you
-// need aggregatable quantiles (e.g. you want the 99th percentile latency of all
-// queries served across all instances of a service), consider the Histogram
-// metric type. See the Prometheus documentation for more details.
-//
-// To create Summary instances, use NewSummary.
-type Summary interface {
-	Metric
-	Collector
-
-	// Observe adds a single observation to the summary.
-	Observe(float64)
-}
-
-// DefObjectives are the default Summary quantile values.
-//
-// Deprecated: DefObjectives will not be used as the default objectives in
-// v0.10 of the library. The default Summary will have no quantiles then.
-var (
-	DefObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
-
-	errQuantileLabelNotAllowed = fmt.Errorf(
-		"%q is not allowed as label name in summaries", quantileLabel,
-	)
-)
-
-// Default values for SummaryOpts.
-const (
-	// DefMaxAge is the default duration for which observations stay
-	// relevant.
-	DefMaxAge time.Duration = 10 * time.Minute
-	// DefAgeBuckets is the default number of buckets used to calculate the
-	// age of observations.
-	DefAgeBuckets = 5
-	// DefBufCap is the standard buffer size for collecting Summary observations.
-	DefBufCap = 500
-)
-
-// SummaryOpts bundles the options for creating a Summary metric. It is
-// mandatory to set Name and Help to a non-empty string. While all other fields
-// are optional and can safely be left at their zero value, it is recommended to
-// explicitly set the Objectives field to the desired value as the default value
-// will change in the upcoming v0.10 of the library.
-type SummaryOpts struct {
-	// Namespace, Subsystem, and Name are components of the fully-qualified
-	// name of the Summary (created by joining these components with
-	// "_"). Only Name is mandatory, the others merely help structuring the
-	// name. Note that the fully-qualified name of the Summary must be a
-	// valid Prometheus metric name.
-	Namespace string
-	Subsystem string
-	Name      string
-
-	// Help provides information about this Summary. Mandatory!
-	//
-	// Metrics with the same fully-qualified name must have the same Help
-	// string.
-	Help string
-
-	// ConstLabels are used to attach fixed labels to this metric. Metrics
-	// with the same fully-qualified name must have the same label names in
-	// their ConstLabels.
-	//
-	// ConstLabels are only used rarely. In particular, do not use them to
-	// attach the same labels to all your metrics. Those use cases are
-	// better covered by target labels set by the scraping Prometheus
-	// server, or by one specific metric (e.g. a build_info or a
-	// machine_role metric). See also
-	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
-	ConstLabels Labels
-
-	// Objectives defines the quantile rank estimates with their respective
-	// absolute error. If Objectives[q] = e, then the value reported for q
-	// will be the φ-quantile value for some φ between q-e and q+e.  The
-	// default value is DefObjectives. It is used if Objectives is left at
-	// its zero value (i.e. nil). To create a Summary without Objectives,
-	// set it to an empty map (i.e. map[float64]float64{}).
-	//
-	// Deprecated: Note that the current value of DefObjectives is
-	// deprecated. It will be replaced by an empty map in v0.10 of the
-	// library. Please explicitly set Objectives to the desired value.
-	Objectives map[float64]float64
-
-	// MaxAge defines the duration for which an observation stays relevant
-	// for the summary. Must be positive. The default value is DefMaxAge.
-	MaxAge time.Duration
-
-	// AgeBuckets is the number of buckets used to exclude observations that
-	// are older than MaxAge from the summary. A higher number has a
-	// resource penalty, so only increase it if the higher resolution is
-	// really required. For very high observation rates, you might want to
-	// reduce the number of age buckets. With only one age bucket, you will
-	// effectively see a complete reset of the summary each time MaxAge has
-	// passed. The default value is DefAgeBuckets.
-	AgeBuckets uint32
-
-	// BufCap defines the default sample stream buffer size.  The default
-	// value of DefBufCap should suffice for most uses. If there is a need
-	// to increase the value, a multiple of 500 is recommended (because that
-	// is the internal buffer size of the underlying package
-	// "github.com/bmizerany/perks/quantile").
-	BufCap uint32
-}
-
-// Great fuck-up with the sliding-window decay algorithm... The Merge method of
-// perk/quantile is actually not working as advertised - and it might be
-// unfixable, as the underlying algorithm is apparently not capable of merging
-// summaries in the first place. To avoid using Merge, we are currently adding
-// observations to _each_ age bucket, i.e. the effort to add a sample is
-// essentially multiplied by the number of age buckets. When rotating age
-// buckets, we empty the previous head stream. On scrape time, we simply take
-// the quantiles from the head stream (no merging required). Result: More effort
-// on observation time, less effort on scrape time, which is exactly the
-// opposite of what we try to accomplish, but at least the results are correct.
-//
-// The quite elegant previous contraption to merge the age buckets efficiently
-// on scrape time (see code up commit 6b9530d72ea715f0ba612c0120e6e09fbf1d49d0)
-// can't be used anymore.
-
-// NewSummary creates a new Summary based on the provided SummaryOpts.
-func NewSummary(opts SummaryOpts) Summary {
-	return newSummary(
-		NewDesc(
-			BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-			opts.Help,
-			nil,
-			opts.ConstLabels,
-		),
-		opts,
-	)
-}
-
-func newSummary(desc *Desc, opts SummaryOpts, labelValues ...string) Summary {
-	if len(desc.variableLabels) != len(labelValues) {
-		panic(errInconsistentCardinality)
-	}
-
-	for _, n := range desc.variableLabels {
-		if n == quantileLabel {
-			panic(errQuantileLabelNotAllowed)
-		}
-	}
-	for _, lp := range desc.constLabelPairs {
-		if lp.GetName() == quantileLabel {
-			panic(errQuantileLabelNotAllowed)
-		}
-	}
-
-	if opts.Objectives == nil {
-		opts.Objectives = DefObjectives
-	}
-
-	if opts.MaxAge < 0 {
-		panic(fmt.Errorf("illegal max age MaxAge=%v", opts.MaxAge))
-	}
-	if opts.MaxAge == 0 {
-		opts.MaxAge = DefMaxAge
-	}
-
-	if opts.AgeBuckets == 0 {
-		opts.AgeBuckets = DefAgeBuckets
-	}
-
-	if opts.BufCap == 0 {
-		opts.BufCap = DefBufCap
-	}
-
-	s := &summary{
-		desc: desc,
-
-		objectives:       opts.Objectives,
-		sortedObjectives: make([]float64, 0, len(opts.Objectives)),
-
-		labelPairs: makeLabelPairs(desc, labelValues),
-
-		hotBuf:         make([]float64, 0, opts.BufCap),
-		coldBuf:        make([]float64, 0, opts.BufCap),
-		streamDuration: opts.MaxAge / time.Duration(opts.AgeBuckets),
-	}
-	s.headStreamExpTime = time.Now().Add(s.streamDuration)
-	s.hotBufExpTime = s.headStreamExpTime
-
-	for i := uint32(0); i < opts.AgeBuckets; i++ {
-		s.streams = append(s.streams, s.newStream())
-	}
-	s.headStream = s.streams[0]
-
-	for qu := range s.objectives {
-		s.sortedObjectives = append(s.sortedObjectives, qu)
-	}
-	sort.Float64s(s.sortedObjectives)
-
-	s.init(s) // Init self-collection.
-	return s
-}
-
-type summary struct {
-	selfCollector
-
-	bufMtx sync.Mutex // Protects hotBuf and hotBufExpTime.
-	mtx    sync.Mutex // Protects every other moving part.
-	// Lock bufMtx before mtx if both are needed.
-
-	desc *Desc
-
-	objectives       map[float64]float64
-	sortedObjectives []float64
-
-	labelPairs []*dto.LabelPair
-
-	sum float64
-	cnt uint64
-
-	hotBuf, coldBuf []float64
-
-	streams                          []*quantile.Stream
-	streamDuration                   time.Duration
-	headStream                       *quantile.Stream
-	headStreamIdx                    int
-	headStreamExpTime, hotBufExpTime time.Time
-}
-
-func (s *summary) Desc() *Desc {
-	return s.desc
-}
-
-func (s *summary) Observe(v float64) {
-	s.bufMtx.Lock()
-	defer s.bufMtx.Unlock()
-
-	now := time.Now()
-	if now.After(s.hotBufExpTime) {
-		s.asyncFlush(now)
-	}
-	s.hotBuf = append(s.hotBuf, v)
-	if len(s.hotBuf) == cap(s.hotBuf) {
-		s.asyncFlush(now)
-	}
-}
-
-func (s *summary) Write(out *dto.Metric) error {
-	sum := &dto.Summary{}
-	qs := make([]*dto.Quantile, 0, len(s.objectives))
-
-	s.bufMtx.Lock()
-	s.mtx.Lock()
-	// Swap bufs even if hotBuf is empty to set new hotBufExpTime.
-	s.swapBufs(time.Now())
-	s.bufMtx.Unlock()
-
-	s.flushColdBuf()
-	sum.SampleCount = proto.Uint64(s.cnt)
-	sum.SampleSum = proto.Float64(s.sum)
-
-	for _, rank := range s.sortedObjectives {
-		var q float64
-		if s.headStream.Count() == 0 {
-			q = math.NaN()
-		} else {
-			q = s.headStream.Query(rank)
-		}
-		qs = append(qs, &dto.Quantile{
-			Quantile: proto.Float64(rank),
-			Value:    proto.Float64(q),
-		})
-	}
-
-	s.mtx.Unlock()
-
-	if len(qs) > 0 {
-		sort.Sort(quantSort(qs))
-	}
-	sum.Quantile = qs
-
-	out.Summary = sum
-	out.Label = s.labelPairs
-	return nil
-}
-
-func (s *summary) newStream() *quantile.Stream {
-	return quantile.NewTargeted(s.objectives)
-}
-
-// asyncFlush needs bufMtx locked.
-func (s *summary) asyncFlush(now time.Time) {
-	s.mtx.Lock()
-	s.swapBufs(now)
-
-	// Unblock the original goroutine that was responsible for the mutation
-	// that triggered the compaction.  But hold onto the global non-buffer
-	// state mutex until the operation finishes.
-	go func() {
-		s.flushColdBuf()
-		s.mtx.Unlock()
-	}()
-}
-
-// rotateStreams needs mtx AND bufMtx locked.
-func (s *summary) maybeRotateStreams() {
-	for !s.hotBufExpTime.Equal(s.headStreamExpTime) {
-		s.headStream.Reset()
-		s.headStreamIdx++
-		if s.headStreamIdx >= len(s.streams) {
-			s.headStreamIdx = 0
-		}
-		s.headStream = s.streams[s.headStreamIdx]
-		s.headStreamExpTime = s.headStreamExpTime.Add(s.streamDuration)
-	}
-}
-
-// flushColdBuf needs mtx locked.
-func (s *summary) flushColdBuf() {
-	for _, v := range s.coldBuf {
-		for _, stream := range s.streams {
-			stream.Insert(v)
-		}
-		s.cnt++
-		s.sum += v
-	}
-	s.coldBuf = s.coldBuf[0:0]
-	s.maybeRotateStreams()
-}
-
-// swapBufs needs mtx AND bufMtx locked, coldBuf must be empty.
-func (s *summary) swapBufs(now time.Time) {
-	if len(s.coldBuf) != 0 {
-		panic("coldBuf is not empty")
-	}
-	s.hotBuf, s.coldBuf = s.coldBuf, s.hotBuf
-	// hotBuf is now empty and gets new expiration set.
-	for now.After(s.hotBufExpTime) {
-		s.hotBufExpTime = s.hotBufExpTime.Add(s.streamDuration)
-	}
-}
-
-type quantSort []*dto.Quantile
-
-func (s quantSort) Len() int {
-	return len(s)
-}
-
-func (s quantSort) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-func (s quantSort) Less(i, j int) bool {
-	return s[i].GetQuantile() < s[j].GetQuantile()
-}
-
-// SummaryVec is a Collector that bundles a set of Summaries that all share the
-// same Desc, but have different values for their variable labels. This is used
-// if you want to count the same thing partitioned by various dimensions
-// (e.g. HTTP request latencies, partitioned by status code and method). Create
-// instances with NewSummaryVec.
-type SummaryVec struct {
-	*metricVec
-}
-
-// NewSummaryVec creates a new SummaryVec based on the provided SummaryOpts and
-// partitioned by the given label names.
-func NewSummaryVec(opts SummaryOpts, labelNames []string) *SummaryVec {
-	desc := NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		labelNames,
-		opts.ConstLabels,
-	)
-	return &SummaryVec{
-		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
-			return newSummary(desc, opts, lvs...)
-		}),
-	}
-}
-
-// GetMetricWithLabelValues returns the Summary for the given slice of label
-// values (same order as the VariableLabels in Desc). If that combination of
-// label values is accessed for the first time, a new Summary is created.
-//
-// It is possible to call this method without using the returned Summary to only
-// create the new Summary but leave it at its starting value, a Summary without
-// any observations.
-//
-// Keeping the Summary for later use is possible (and should be considered if
-// performance is critical), but keep in mind that Reset, DeleteLabelValues and
-// Delete can be used to delete the Summary from the SummaryVec. In that case,
-// the Summary will still exist, but it will not be exported anymore, even if a
-// Summary with the same label values is created later. See also the CounterVec
-// example.
-//
-// An error is returned if the number of label values is not the same as the
-// number of VariableLabels in Desc (minus any curried labels).
-//
-// Note that for more than one label value, this method is prone to mistakes
-// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
-// an alternative to avoid that type of mistake. For higher label numbers, the
-// latter has a much more readable (albeit more verbose) syntax, but it comes
-// with a performance overhead (for creating and processing the Labels map).
-// See also the GaugeVec example.
-func (v *SummaryVec) GetMetricWithLabelValues(lvs ...string) (Observer, error) {
-	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
-	if metric != nil {
-		return metric.(Observer), err
-	}
-	return nil, err
-}
-
-// GetMetricWith returns the Summary for the given Labels map (the label names
-// must match those of the VariableLabels in Desc). If that label map is
-// accessed for the first time, a new Summary is created. Implications of
-// creating a Summary without using it and keeping the Summary for later use are
-// the same as for GetMetricWithLabelValues.
-//
-// An error is returned if the number and names of the Labels are inconsistent
-// with those of the VariableLabels in Desc (minus any curried labels).
-//
-// This method is used for the same purpose as
-// GetMetricWithLabelValues(...string). See there for pros and cons of the two
-// methods.
-func (v *SummaryVec) GetMetricWith(labels Labels) (Observer, error) {
-	metric, err := v.metricVec.getMetricWith(labels)
-	if metric != nil {
-		return metric.(Observer), err
-	}
-	return nil, err
-}
-
-// WithLabelValues works as GetMetricWithLabelValues, but panics where
-// GetMetricWithLabelValues would have returned an error. Not returning an
-// error allows shortcuts like
-//     myVec.WithLabelValues("404", "GET").Observe(42.21)
-func (v *SummaryVec) WithLabelValues(lvs ...string) Observer {
-	s, err := v.GetMetricWithLabelValues(lvs...)
-	if err != nil {
-		panic(err)
-	}
-	return s
-}
-
-// With works as GetMetricWith, but panics where GetMetricWithLabels would have
-// returned an error. Not returning an error allows shortcuts like
-//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Observe(42.21)
-func (v *SummaryVec) With(labels Labels) Observer {
-	s, err := v.GetMetricWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return s
-}
-
-// CurryWith returns a vector curried with the provided labels, i.e. the
-// returned vector has those labels pre-set for all labeled operations performed
-// on it. The cardinality of the curried vector is reduced accordingly. The
-// order of the remaining labels stays the same (just with the curried labels
-// taken out of the sequence – which is relevant for the
-// (GetMetric)WithLabelValues methods). It is possible to curry a curried
-// vector, but only with labels not yet used for currying before.
-//
-// The metrics contained in the SummaryVec are shared between the curried and
-// uncurried vectors. They are just accessed differently. Curried and uncurried
-// vectors behave identically in terms of collection. Only one must be
-// registered with a given registry (usually the uncurried version). The Reset
-// method deletes all metrics, even if called on a curried vector.
-func (v *SummaryVec) CurryWith(labels Labels) (ObserverVec, error) {
-	vec, err := v.curryWith(labels)
-	if vec != nil {
-		return &SummaryVec{vec}, err
-	}
-	return nil, err
-}
-
-// MustCurryWith works as CurryWith but panics where CurryWith would have
-// returned an error.
-func (v *SummaryVec) MustCurryWith(labels Labels) ObserverVec {
-	vec, err := v.CurryWith(labels)
-	if err != nil {
-		panic(err)
-	}
-	return vec
-}
-
-type constSummary struct {
-	desc       *Desc
-	count      uint64
-	sum        float64
-	quantiles  map[float64]float64
-	labelPairs []*dto.LabelPair
-}
-
-func (s *constSummary) Desc() *Desc {
-	return s.desc
-}
-
-func (s *constSummary) Write(out *dto.Metric) error {
-	sum := &dto.Summary{}
-	qs := make([]*dto.Quantile, 0, len(s.quantiles))
-
-	sum.SampleCount = proto.Uint64(s.count)
-	sum.SampleSum = proto.Float64(s.sum)
-
-	for rank, q := range s.quantiles {
-		qs = append(qs, &dto.Quantile{
-			Quantile: proto.Float64(rank),
-			Value:    proto.Float64(q),
-		})
-	}
-
-	if len(qs) > 0 {
-		sort.Sort(quantSort(qs))
-	}
-	sum.Quantile = qs
-
-	out.Summary = sum
-	out.Label = s.labelPairs
-
-	return nil
-}
-
-// NewConstSummary returns a metric representing a Prometheus summary with fixed
-// values for the count, sum, and quantiles. As those parameters cannot be
-// changed, the returned value does not implement the Summary interface (but
-// only the Metric interface). Users of this package will not have much use for
-// it in regular operations. However, when implementing custom Collectors, it is
-// useful as a throw-away metric that is generated on the fly to send it to
-// Prometheus in the Collect method.
-//
-// quantiles maps ranks to quantile values. For example, a median latency of
-// 0.23s and a 99th percentile latency of 0.56s would be expressed as:
-//     map[float64]float64{0.5: 0.23, 0.99: 0.56}
-//
-// NewConstSummary returns an error if the length of labelValues is not
-// consistent with the variable labels in Desc.
-func NewConstSummary(
-	desc *Desc,
-	count uint64,
-	sum float64,
-	quantiles map[float64]float64,
-	labelValues ...string,
-) (Metric, error) {
-	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
-		return nil, err
-	}
-	return &constSummary{
-		desc:       desc,
-		count:      count,
-		sum:        sum,
-		quantiles:  quantiles,
-		labelPairs: makeLabelPairs(desc, labelValues),
-	}, nil
-}
-
-// MustNewConstSummary is a version of NewConstSummary that panics where
-// NewConstMetric would have returned an error.
-func MustNewConstSummary(
-	desc *Desc,
-	count uint64,
-	sum float64,
-	quantiles map[float64]float64,
-	labelValues ...string,
-) Metric {
-	m, err := NewConstSummary(desc, count, sum, quantiles, labelValues...)
-	if err != nil {
-		panic(err)
-	}
-	return m
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/timer.go b/vendor/github.com/prometheus/client_golang/prometheus/timer.go
deleted file mode 100644
index b8fc5f18c8..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/timer.go
+++ /dev/null
@@ -1,51 +0,0 @@
-// Copyright 2016 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import "time"
-
-// Timer is a helper type to time functions. Use NewTimer to create new
-// instances.
-type Timer struct {
-	begin    time.Time
-	observer Observer
-}
-
-// NewTimer creates a new Timer. The provided Observer is used to observe a
-// duration in seconds. Timer is usually used to time a function call in the
-// following way:
-//    func TimeMe() {
-//        timer := NewTimer(myHistogram)
-//        defer timer.ObserveDuration()
-//        // Do actual work.
-//    }
-func NewTimer(o Observer) *Timer {
-	return &Timer{
-		begin:    time.Now(),
-		observer: o,
-	}
-}
-
-// ObserveDuration records the duration passed since the Timer was created with
-// NewTimer. It calls the Observe method of the Observer provided during
-// construction with the duration in seconds as an argument. ObserveDuration is
-// usually called with a defer statement.
-//
-// Note that this method is only guaranteed to never observe negative durations
-// if used with Go1.9+.
-func (t *Timer) ObserveDuration() {
-	if t.observer != nil {
-		t.observer.Observe(time.Since(t.begin).Seconds())
-	}
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/untyped.go b/vendor/github.com/prometheus/client_golang/prometheus/untyped.go
deleted file mode 100644
index 0f9ce63f40..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/untyped.go
+++ /dev/null
@@ -1,42 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-// UntypedOpts is an alias for Opts. See there for doc comments.
-type UntypedOpts Opts
-
-// UntypedFunc works like GaugeFunc but the collected metric is of type
-// "Untyped". UntypedFunc is useful to mirror an external metric of unknown
-// type.
-//
-// To create UntypedFunc instances, use NewUntypedFunc.
-type UntypedFunc interface {
-	Metric
-	Collector
-}
-
-// NewUntypedFunc creates a new UntypedFunc based on the provided
-// UntypedOpts. The value reported is determined by calling the given function
-// from within the Write method. Take into account that metric collection may
-// happen concurrently. If that results in concurrent calls to Write, like in
-// the case where an UntypedFunc is directly registered with Prometheus, the
-// provided function must be concurrency-safe.
-func NewUntypedFunc(opts UntypedOpts, function func() float64) UntypedFunc {
-	return newValueFunc(NewDesc(
-		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
-		opts.Help,
-		nil,
-		opts.ConstLabels,
-	), UntypedValue, function)
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/value.go b/vendor/github.com/prometheus/client_golang/prometheus/value.go
deleted file mode 100644
index 543b57c27e..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/value.go
+++ /dev/null
@@ -1,160 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"fmt"
-	"sort"
-
-	dto "github.com/prometheus/client_model/go"
-
-	"github.com/golang/protobuf/proto"
-)
-
-// ValueType is an enumeration of metric types that represent a simple value.
-type ValueType int
-
-// Possible values for the ValueType enum.
-const (
-	_ ValueType = iota
-	CounterValue
-	GaugeValue
-	UntypedValue
-)
-
-// valueFunc is a generic metric for simple values retrieved on collect time
-// from a function. It implements Metric and Collector. Its effective type is
-// determined by ValueType. This is a low-level building block used by the
-// library to back the implementations of CounterFunc, GaugeFunc, and
-// UntypedFunc.
-type valueFunc struct {
-	selfCollector
-
-	desc       *Desc
-	valType    ValueType
-	function   func() float64
-	labelPairs []*dto.LabelPair
-}
-
-// newValueFunc returns a newly allocated valueFunc with the given Desc and
-// ValueType. The value reported is determined by calling the given function
-// from within the Write method. Take into account that metric collection may
-// happen concurrently. If that results in concurrent calls to Write, like in
-// the case where a valueFunc is directly registered with Prometheus, the
-// provided function must be concurrency-safe.
-func newValueFunc(desc *Desc, valueType ValueType, function func() float64) *valueFunc {
-	result := &valueFunc{
-		desc:       desc,
-		valType:    valueType,
-		function:   function,
-		labelPairs: makeLabelPairs(desc, nil),
-	}
-	result.init(result)
-	return result
-}
-
-func (v *valueFunc) Desc() *Desc {
-	return v.desc
-}
-
-func (v *valueFunc) Write(out *dto.Metric) error {
-	return populateMetric(v.valType, v.function(), v.labelPairs, out)
-}
-
-// NewConstMetric returns a metric with one fixed value that cannot be
-// changed. Users of this package will not have much use for it in regular
-// operations. However, when implementing custom Collectors, it is useful as a
-// throw-away metric that is generated on the fly to send it to Prometheus in
-// the Collect method. NewConstMetric returns an error if the length of
-// labelValues is not consistent with the variable labels in Desc.
-func NewConstMetric(desc *Desc, valueType ValueType, value float64, labelValues ...string) (Metric, error) {
-	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
-		return nil, err
-	}
-	return &constMetric{
-		desc:       desc,
-		valType:    valueType,
-		val:        value,
-		labelPairs: makeLabelPairs(desc, labelValues),
-	}, nil
-}
-
-// MustNewConstMetric is a version of NewConstMetric that panics where
-// NewConstMetric would have returned an error.
-func MustNewConstMetric(desc *Desc, valueType ValueType, value float64, labelValues ...string) Metric {
-	m, err := NewConstMetric(desc, valueType, value, labelValues...)
-	if err != nil {
-		panic(err)
-	}
-	return m
-}
-
-type constMetric struct {
-	desc       *Desc
-	valType    ValueType
-	val        float64
-	labelPairs []*dto.LabelPair
-}
-
-func (m *constMetric) Desc() *Desc {
-	return m.desc
-}
-
-func (m *constMetric) Write(out *dto.Metric) error {
-	return populateMetric(m.valType, m.val, m.labelPairs, out)
-}
-
-func populateMetric(
-	t ValueType,
-	v float64,
-	labelPairs []*dto.LabelPair,
-	m *dto.Metric,
-) error {
-	m.Label = labelPairs
-	switch t {
-	case CounterValue:
-		m.Counter = &dto.Counter{Value: proto.Float64(v)}
-	case GaugeValue:
-		m.Gauge = &dto.Gauge{Value: proto.Float64(v)}
-	case UntypedValue:
-		m.Untyped = &dto.Untyped{Value: proto.Float64(v)}
-	default:
-		return fmt.Errorf("encountered unknown type %v", t)
-	}
-	return nil
-}
-
-func makeLabelPairs(desc *Desc, labelValues []string) []*dto.LabelPair {
-	totalLen := len(desc.variableLabels) + len(desc.constLabelPairs)
-	if totalLen == 0 {
-		// Super fast path.
-		return nil
-	}
-	if len(desc.variableLabels) == 0 {
-		// Moderately fast path.
-		return desc.constLabelPairs
-	}
-	labelPairs := make([]*dto.LabelPair, 0, totalLen)
-	for i, n := range desc.variableLabels {
-		labelPairs = append(labelPairs, &dto.LabelPair{
-			Name:  proto.String(n),
-			Value: proto.String(labelValues[i]),
-		})
-	}
-	for _, lp := range desc.constLabelPairs {
-		labelPairs = append(labelPairs, lp)
-	}
-	sort.Sort(LabelPairSorter(labelPairs))
-	return labelPairs
-}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/vec.go b/vendor/github.com/prometheus/client_golang/prometheus/vec.go
deleted file mode 100644
index cea1582499..0000000000
--- a/vendor/github.com/prometheus/client_golang/prometheus/vec.go
+++ /dev/null
@@ -1,469 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package prometheus
-
-import (
-	"fmt"
-	"sync"
-
-	"github.com/prometheus/common/model"
-)
-
-// metricVec is a Collector to bundle metrics of the same name that differ in
-// their label values. metricVec is not used directly (and therefore
-// unexported). It is used as a building block for implementations of vectors of
-// a given metric type, like GaugeVec, CounterVec, SummaryVec, and HistogramVec.
-// It also handles label currying. It uses basicMetricVec internally.
-type metricVec struct {
-	*metricMap
-
-	curry []curriedLabelValue
-
-	// hashAdd and hashAddByte can be replaced for testing collision handling.
-	hashAdd     func(h uint64, s string) uint64
-	hashAddByte func(h uint64, b byte) uint64
-}
-
-// newMetricVec returns an initialized metricVec.
-func newMetricVec(desc *Desc, newMetric func(lvs ...string) Metric) *metricVec {
-	return &metricVec{
-		metricMap: &metricMap{
-			metrics:   map[uint64][]metricWithLabelValues{},
-			desc:      desc,
-			newMetric: newMetric,
-		},
-		hashAdd:     hashAdd,
-		hashAddByte: hashAddByte,
-	}
-}
-
-// DeleteLabelValues removes the metric where the variable labels are the same
-// as those passed in as labels (same order as the VariableLabels in Desc). It
-// returns true if a metric was deleted.
-//
-// It is not an error if the number of label values is not the same as the
-// number of VariableLabels in Desc. However, such inconsistent label count can
-// never match an actual metric, so the method will always return false in that
-// case.
-//
-// Note that for more than one label value, this method is prone to mistakes
-// caused by an incorrect order of arguments. Consider Delete(Labels) as an
-// alternative to avoid that type of mistake. For higher label numbers, the
-// latter has a much more readable (albeit more verbose) syntax, but it comes
-// with a performance overhead (for creating and processing the Labels map).
-// See also the CounterVec example.
-func (m *metricVec) DeleteLabelValues(lvs ...string) bool {
-	h, err := m.hashLabelValues(lvs)
-	if err != nil {
-		return false
-	}
-
-	return m.metricMap.deleteByHashWithLabelValues(h, lvs, m.curry)
-}
-
-// Delete deletes the metric where the variable labels are the same as those
-// passed in as labels. It returns true if a metric was deleted.
-//
-// It is not an error if the number and names of the Labels are inconsistent
-// with those of the VariableLabels in Desc. However, such inconsistent Labels
-// can never match an actual metric, so the method will always return false in
-// that case.
-//
-// This method is used for the same purpose as DeleteLabelValues(...string). See
-// there for pros and cons of the two methods.
-func (m *metricVec) Delete(labels Labels) bool {
-	h, err := m.hashLabels(labels)
-	if err != nil {
-		return false
-	}
-
-	return m.metricMap.deleteByHashWithLabels(h, labels, m.curry)
-}
-
-func (m *metricVec) curryWith(labels Labels) (*metricVec, error) {
-	var (
-		newCurry []curriedLabelValue
-		oldCurry = m.curry
-		iCurry   int
-	)
-	for i, label := range m.desc.variableLabels {
-		val, ok := labels[label]
-		if iCurry < len(oldCurry) && oldCurry[iCurry].index == i {
-			if ok {
-				return nil, fmt.Errorf("label name %q is already curried", label)
-			}
-			newCurry = append(newCurry, oldCurry[iCurry])
-			iCurry++
-		} else {
-			if !ok {
-				continue // Label stays uncurried.
-			}
-			newCurry = append(newCurry, curriedLabelValue{i, val})
-		}
-	}
-	if l := len(oldCurry) + len(labels) - len(newCurry); l > 0 {
-		return nil, fmt.Errorf("%d unknown label(s) found during currying", l)
-	}
-
-	return &metricVec{
-		metricMap:   m.metricMap,
-		curry:       newCurry,
-		hashAdd:     m.hashAdd,
-		hashAddByte: m.hashAddByte,
-	}, nil
-}
-
-func (m *metricVec) getMetricWithLabelValues(lvs ...string) (Metric, error) {
-	h, err := m.hashLabelValues(lvs)
-	if err != nil {
-		return nil, err
-	}
-
-	return m.metricMap.getOrCreateMetricWithLabelValues(h, lvs, m.curry), nil
-}
-
-func (m *metricVec) getMetricWith(labels Labels) (Metric, error) {
-	h, err := m.hashLabels(labels)
-	if err != nil {
-		return nil, err
-	}
-
-	return m.metricMap.getOrCreateMetricWithLabels(h, labels, m.curry), nil
-}
-
-func (m *metricVec) hashLabelValues(vals []string) (uint64, error) {
-	if err := validateLabelValues(vals, len(m.desc.variableLabels)-len(m.curry)); err != nil {
-		return 0, err
-	}
-
-	var (
-		h             = hashNew()
-		curry         = m.curry
-		iVals, iCurry int
-	)
-	for i := 0; i < len(m.desc.variableLabels); i++ {
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			h = m.hashAdd(h, curry[iCurry].value)
-			iCurry++
-		} else {
-			h = m.hashAdd(h, vals[iVals])
-			iVals++
-		}
-		h = m.hashAddByte(h, model.SeparatorByte)
-	}
-	return h, nil
-}
-
-func (m *metricVec) hashLabels(labels Labels) (uint64, error) {
-	if err := validateValuesInLabels(labels, len(m.desc.variableLabels)-len(m.curry)); err != nil {
-		return 0, err
-	}
-
-	var (
-		h      = hashNew()
-		curry  = m.curry
-		iCurry int
-	)
-	for i, label := range m.desc.variableLabels {
-		val, ok := labels[label]
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			if ok {
-				return 0, fmt.Errorf("label name %q is already curried", label)
-			}
-			h = m.hashAdd(h, curry[iCurry].value)
-			iCurry++
-		} else {
-			if !ok {
-				return 0, fmt.Errorf("label name %q missing in label map", label)
-			}
-			h = m.hashAdd(h, val)
-		}
-		h = m.hashAddByte(h, model.SeparatorByte)
-	}
-	return h, nil
-}
-
-// metricWithLabelValues provides the metric and its label values for
-// disambiguation on hash collision.
-type metricWithLabelValues struct {
-	values []string
-	metric Metric
-}
-
-// curriedLabelValue sets the curried value for a label at the given index.
-type curriedLabelValue struct {
-	index int
-	value string
-}
-
-// metricMap is a helper for metricVec and shared between differently curried
-// metricVecs.
-type metricMap struct {
-	mtx       sync.RWMutex // Protects metrics.
-	metrics   map[uint64][]metricWithLabelValues
-	desc      *Desc
-	newMetric func(labelValues ...string) Metric
-}
-
-// Describe implements Collector. It will send exactly one Desc to the provided
-// channel.
-func (m *metricMap) Describe(ch chan<- *Desc) {
-	ch <- m.desc
-}
-
-// Collect implements Collector.
-func (m *metricMap) Collect(ch chan<- Metric) {
-	m.mtx.RLock()
-	defer m.mtx.RUnlock()
-
-	for _, metrics := range m.metrics {
-		for _, metric := range metrics {
-			ch <- metric.metric
-		}
-	}
-}
-
-// Reset deletes all metrics in this vector.
-func (m *metricMap) Reset() {
-	m.mtx.Lock()
-	defer m.mtx.Unlock()
-
-	for h := range m.metrics {
-		delete(m.metrics, h)
-	}
-}
-
-// deleteByHashWithLabelValues removes the metric from the hash bucket h. If
-// there are multiple matches in the bucket, use lvs to select a metric and
-// remove only that metric.
-func (m *metricMap) deleteByHashWithLabelValues(
-	h uint64, lvs []string, curry []curriedLabelValue,
-) bool {
-	m.mtx.Lock()
-	defer m.mtx.Unlock()
-
-	metrics, ok := m.metrics[h]
-	if !ok {
-		return false
-	}
-
-	i := findMetricWithLabelValues(metrics, lvs, curry)
-	if i >= len(metrics) {
-		return false
-	}
-
-	if len(metrics) > 1 {
-		m.metrics[h] = append(metrics[:i], metrics[i+1:]...)
-	} else {
-		delete(m.metrics, h)
-	}
-	return true
-}
-
-// deleteByHashWithLabels removes the metric from the hash bucket h. If there
-// are multiple matches in the bucket, use lvs to select a metric and remove
-// only that metric.
-func (m *metricMap) deleteByHashWithLabels(
-	h uint64, labels Labels, curry []curriedLabelValue,
-) bool {
-	metrics, ok := m.metrics[h]
-	if !ok {
-		return false
-	}
-	i := findMetricWithLabels(m.desc, metrics, labels, curry)
-	if i >= len(metrics) {
-		return false
-	}
-
-	if len(metrics) > 1 {
-		m.metrics[h] = append(metrics[:i], metrics[i+1:]...)
-	} else {
-		delete(m.metrics, h)
-	}
-	return true
-}
-
-// getOrCreateMetricWithLabelValues retrieves the metric by hash and label value
-// or creates it and returns the new one.
-//
-// This function holds the mutex.
-func (m *metricMap) getOrCreateMetricWithLabelValues(
-	hash uint64, lvs []string, curry []curriedLabelValue,
-) Metric {
-	m.mtx.RLock()
-	metric, ok := m.getMetricWithHashAndLabelValues(hash, lvs, curry)
-	m.mtx.RUnlock()
-	if ok {
-		return metric
-	}
-
-	m.mtx.Lock()
-	defer m.mtx.Unlock()
-	metric, ok = m.getMetricWithHashAndLabelValues(hash, lvs, curry)
-	if !ok {
-		inlinedLVs := inlineLabelValues(lvs, curry)
-		metric = m.newMetric(inlinedLVs...)
-		m.metrics[hash] = append(m.metrics[hash], metricWithLabelValues{values: inlinedLVs, metric: metric})
-	}
-	return metric
-}
-
-// getOrCreateMetricWithLabelValues retrieves the metric by hash and label value
-// or creates it and returns the new one.
-//
-// This function holds the mutex.
-func (m *metricMap) getOrCreateMetricWithLabels(
-	hash uint64, labels Labels, curry []curriedLabelValue,
-) Metric {
-	m.mtx.RLock()
-	metric, ok := m.getMetricWithHashAndLabels(hash, labels, curry)
-	m.mtx.RUnlock()
-	if ok {
-		return metric
-	}
-
-	m.mtx.Lock()
-	defer m.mtx.Unlock()
-	metric, ok = m.getMetricWithHashAndLabels(hash, labels, curry)
-	if !ok {
-		lvs := extractLabelValues(m.desc, labels, curry)
-		metric = m.newMetric(lvs...)
-		m.metrics[hash] = append(m.metrics[hash], metricWithLabelValues{values: lvs, metric: metric})
-	}
-	return metric
-}
-
-// getMetricWithHashAndLabelValues gets a metric while handling possible
-// collisions in the hash space. Must be called while holding the read mutex.
-func (m *metricMap) getMetricWithHashAndLabelValues(
-	h uint64, lvs []string, curry []curriedLabelValue,
-) (Metric, bool) {
-	metrics, ok := m.metrics[h]
-	if ok {
-		if i := findMetricWithLabelValues(metrics, lvs, curry); i < len(metrics) {
-			return metrics[i].metric, true
-		}
-	}
-	return nil, false
-}
-
-// getMetricWithHashAndLabels gets a metric while handling possible collisions in
-// the hash space. Must be called while holding read mutex.
-func (m *metricMap) getMetricWithHashAndLabels(
-	h uint64, labels Labels, curry []curriedLabelValue,
-) (Metric, bool) {
-	metrics, ok := m.metrics[h]
-	if ok {
-		if i := findMetricWithLabels(m.desc, metrics, labels, curry); i < len(metrics) {
-			return metrics[i].metric, true
-		}
-	}
-	return nil, false
-}
-
-// findMetricWithLabelValues returns the index of the matching metric or
-// len(metrics) if not found.
-func findMetricWithLabelValues(
-	metrics []metricWithLabelValues, lvs []string, curry []curriedLabelValue,
-) int {
-	for i, metric := range metrics {
-		if matchLabelValues(metric.values, lvs, curry) {
-			return i
-		}
-	}
-	return len(metrics)
-}
-
-// findMetricWithLabels returns the index of the matching metric or len(metrics)
-// if not found.
-func findMetricWithLabels(
-	desc *Desc, metrics []metricWithLabelValues, labels Labels, curry []curriedLabelValue,
-) int {
-	for i, metric := range metrics {
-		if matchLabels(desc, metric.values, labels, curry) {
-			return i
-		}
-	}
-	return len(metrics)
-}
-
-func matchLabelValues(values []string, lvs []string, curry []curriedLabelValue) bool {
-	if len(values) != len(lvs)+len(curry) {
-		return false
-	}
-	var iLVs, iCurry int
-	for i, v := range values {
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			if v != curry[iCurry].value {
-				return false
-			}
-			iCurry++
-			continue
-		}
-		if v != lvs[iLVs] {
-			return false
-		}
-		iLVs++
-	}
-	return true
-}
-
-func matchLabels(desc *Desc, values []string, labels Labels, curry []curriedLabelValue) bool {
-	if len(values) != len(labels)+len(curry) {
-		return false
-	}
-	iCurry := 0
-	for i, k := range desc.variableLabels {
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			if values[i] != curry[iCurry].value {
-				return false
-			}
-			iCurry++
-			continue
-		}
-		if values[i] != labels[k] {
-			return false
-		}
-	}
-	return true
-}
-
-func extractLabelValues(desc *Desc, labels Labels, curry []curriedLabelValue) []string {
-	labelValues := make([]string, len(labels)+len(curry))
-	iCurry := 0
-	for i, k := range desc.variableLabels {
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			labelValues[i] = curry[iCurry].value
-			iCurry++
-			continue
-		}
-		labelValues[i] = labels[k]
-	}
-	return labelValues
-}
-
-func inlineLabelValues(lvs []string, curry []curriedLabelValue) []string {
-	labelValues := make([]string, len(lvs)+len(curry))
-	var iCurry, iLVs int
-	for i := range labelValues {
-		if iCurry < len(curry) && curry[iCurry].index == i {
-			labelValues[i] = curry[iCurry].value
-			iCurry++
-			continue
-		}
-		labelValues[i] = lvs[iLVs]
-		iLVs++
-	}
-	return labelValues
-}
diff --git a/vendor/github.com/prometheus/client_model/LICENSE b/vendor/github.com/prometheus/client_model/LICENSE
deleted file mode 100644
index 261eeb9e9f..0000000000
--- a/vendor/github.com/prometheus/client_model/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/prometheus/client_model/NOTICE b/vendor/github.com/prometheus/client_model/NOTICE
deleted file mode 100644
index 20110e410e..0000000000
--- a/vendor/github.com/prometheus/client_model/NOTICE
+++ /dev/null
@@ -1,5 +0,0 @@
-Data model artifacts for Prometheus.
-Copyright 2012-2015 The Prometheus Authors
-
-This product includes software developed at
-SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/client_model/go/metrics.pb.go b/vendor/github.com/prometheus/client_model/go/metrics.pb.go
deleted file mode 100644
index b065f8683f..0000000000
--- a/vendor/github.com/prometheus/client_model/go/metrics.pb.go
+++ /dev/null
@@ -1,364 +0,0 @@
-// Code generated by protoc-gen-go.
-// source: metrics.proto
-// DO NOT EDIT!
-
-/*
-Package io_prometheus_client is a generated protocol buffer package.
-
-It is generated from these files:
-	metrics.proto
-
-It has these top-level messages:
-	LabelPair
-	Gauge
-	Counter
-	Quantile
-	Summary
-	Untyped
-	Histogram
-	Bucket
-	Metric
-	MetricFamily
-*/
-package io_prometheus_client
-
-import proto "github.com/golang/protobuf/proto"
-import math "math"
-
-// Reference imports to suppress errors if they are not otherwise used.
-var _ = proto.Marshal
-var _ = math.Inf
-
-type MetricType int32
-
-const (
-	MetricType_COUNTER   MetricType = 0
-	MetricType_GAUGE     MetricType = 1
-	MetricType_SUMMARY   MetricType = 2
-	MetricType_UNTYPED   MetricType = 3
-	MetricType_HISTOGRAM MetricType = 4
-)
-
-var MetricType_name = map[int32]string{
-	0: "COUNTER",
-	1: "GAUGE",
-	2: "SUMMARY",
-	3: "UNTYPED",
-	4: "HISTOGRAM",
-}
-var MetricType_value = map[string]int32{
-	"COUNTER":   0,
-	"GAUGE":     1,
-	"SUMMARY":   2,
-	"UNTYPED":   3,
-	"HISTOGRAM": 4,
-}
-
-func (x MetricType) Enum() *MetricType {
-	p := new(MetricType)
-	*p = x
-	return p
-}
-func (x MetricType) String() string {
-	return proto.EnumName(MetricType_name, int32(x))
-}
-func (x *MetricType) UnmarshalJSON(data []byte) error {
-	value, err := proto.UnmarshalJSONEnum(MetricType_value, data, "MetricType")
-	if err != nil {
-		return err
-	}
-	*x = MetricType(value)
-	return nil
-}
-
-type LabelPair struct {
-	Name             *string `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Value            *string `protobuf:"bytes,2,opt,name=value" json:"value,omitempty"`
-	XXX_unrecognized []byte  `json:"-"`
-}
-
-func (m *LabelPair) Reset()         { *m = LabelPair{} }
-func (m *LabelPair) String() string { return proto.CompactTextString(m) }
-func (*LabelPair) ProtoMessage()    {}
-
-func (m *LabelPair) GetName() string {
-	if m != nil && m.Name != nil {
-		return *m.Name
-	}
-	return ""
-}
-
-func (m *LabelPair) GetValue() string {
-	if m != nil && m.Value != nil {
-		return *m.Value
-	}
-	return ""
-}
-
-type Gauge struct {
-	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
-}
-
-func (m *Gauge) Reset()         { *m = Gauge{} }
-func (m *Gauge) String() string { return proto.CompactTextString(m) }
-func (*Gauge) ProtoMessage()    {}
-
-func (m *Gauge) GetValue() float64 {
-	if m != nil && m.Value != nil {
-		return *m.Value
-	}
-	return 0
-}
-
-type Counter struct {
-	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
-}
-
-func (m *Counter) Reset()         { *m = Counter{} }
-func (m *Counter) String() string { return proto.CompactTextString(m) }
-func (*Counter) ProtoMessage()    {}
-
-func (m *Counter) GetValue() float64 {
-	if m != nil && m.Value != nil {
-		return *m.Value
-	}
-	return 0
-}
-
-type Quantile struct {
-	Quantile         *float64 `protobuf:"fixed64,1,opt,name=quantile" json:"quantile,omitempty"`
-	Value            *float64 `protobuf:"fixed64,2,opt,name=value" json:"value,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
-}
-
-func (m *Quantile) Reset()         { *m = Quantile{} }
-func (m *Quantile) String() string { return proto.CompactTextString(m) }
-func (*Quantile) ProtoMessage()    {}
-
-func (m *Quantile) GetQuantile() float64 {
-	if m != nil && m.Quantile != nil {
-		return *m.Quantile
-	}
-	return 0
-}
-
-func (m *Quantile) GetValue() float64 {
-	if m != nil && m.Value != nil {
-		return *m.Value
-	}
-	return 0
-}
-
-type Summary struct {
-	SampleCount      *uint64     `protobuf:"varint,1,opt,name=sample_count" json:"sample_count,omitempty"`
-	SampleSum        *float64    `protobuf:"fixed64,2,opt,name=sample_sum" json:"sample_sum,omitempty"`
-	Quantile         []*Quantile `protobuf:"bytes,3,rep,name=quantile" json:"quantile,omitempty"`
-	XXX_unrecognized []byte      `json:"-"`
-}
-
-func (m *Summary) Reset()         { *m = Summary{} }
-func (m *Summary) String() string { return proto.CompactTextString(m) }
-func (*Summary) ProtoMessage()    {}
-
-func (m *Summary) GetSampleCount() uint64 {
-	if m != nil && m.SampleCount != nil {
-		return *m.SampleCount
-	}
-	return 0
-}
-
-func (m *Summary) GetSampleSum() float64 {
-	if m != nil && m.SampleSum != nil {
-		return *m.SampleSum
-	}
-	return 0
-}
-
-func (m *Summary) GetQuantile() []*Quantile {
-	if m != nil {
-		return m.Quantile
-	}
-	return nil
-}
-
-type Untyped struct {
-	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
-}
-
-func (m *Untyped) Reset()         { *m = Untyped{} }
-func (m *Untyped) String() string { return proto.CompactTextString(m) }
-func (*Untyped) ProtoMessage()    {}
-
-func (m *Untyped) GetValue() float64 {
-	if m != nil && m.Value != nil {
-		return *m.Value
-	}
-	return 0
-}
-
-type Histogram struct {
-	SampleCount      *uint64   `protobuf:"varint,1,opt,name=sample_count" json:"sample_count,omitempty"`
-	SampleSum        *float64  `protobuf:"fixed64,2,opt,name=sample_sum" json:"sample_sum,omitempty"`
-	Bucket           []*Bucket `protobuf:"bytes,3,rep,name=bucket" json:"bucket,omitempty"`
-	XXX_unrecognized []byte    `json:"-"`
-}
-
-func (m *Histogram) Reset()         { *m = Histogram{} }
-func (m *Histogram) String() string { return proto.CompactTextString(m) }
-func (*Histogram) ProtoMessage()    {}
-
-func (m *Histogram) GetSampleCount() uint64 {
-	if m != nil && m.SampleCount != nil {
-		return *m.SampleCount
-	}
-	return 0
-}
-
-func (m *Histogram) GetSampleSum() float64 {
-	if m != nil && m.SampleSum != nil {
-		return *m.SampleSum
-	}
-	return 0
-}
-
-func (m *Histogram) GetBucket() []*Bucket {
-	if m != nil {
-		return m.Bucket
-	}
-	return nil
-}
-
-type Bucket struct {
-	CumulativeCount  *uint64  `protobuf:"varint,1,opt,name=cumulative_count" json:"cumulative_count,omitempty"`
-	UpperBound       *float64 `protobuf:"fixed64,2,opt,name=upper_bound" json:"upper_bound,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
-}
-
-func (m *Bucket) Reset()         { *m = Bucket{} }
-func (m *Bucket) String() string { return proto.CompactTextString(m) }
-func (*Bucket) ProtoMessage()    {}
-
-func (m *Bucket) GetCumulativeCount() uint64 {
-	if m != nil && m.CumulativeCount != nil {
-		return *m.CumulativeCount
-	}
-	return 0
-}
-
-func (m *Bucket) GetUpperBound() float64 {
-	if m != nil && m.UpperBound != nil {
-		return *m.UpperBound
-	}
-	return 0
-}
-
-type Metric struct {
-	Label            []*LabelPair `protobuf:"bytes,1,rep,name=label" json:"label,omitempty"`
-	Gauge            *Gauge       `protobuf:"bytes,2,opt,name=gauge" json:"gauge,omitempty"`
-	Counter          *Counter     `protobuf:"bytes,3,opt,name=counter" json:"counter,omitempty"`
-	Summary          *Summary     `protobuf:"bytes,4,opt,name=summary" json:"summary,omitempty"`
-	Untyped          *Untyped     `protobuf:"bytes,5,opt,name=untyped" json:"untyped,omitempty"`
-	Histogram        *Histogram   `protobuf:"bytes,7,opt,name=histogram" json:"histogram,omitempty"`
-	TimestampMs      *int64       `protobuf:"varint,6,opt,name=timestamp_ms" json:"timestamp_ms,omitempty"`
-	XXX_unrecognized []byte       `json:"-"`
-}
-
-func (m *Metric) Reset()         { *m = Metric{} }
-func (m *Metric) String() string { return proto.CompactTextString(m) }
-func (*Metric) ProtoMessage()    {}
-
-func (m *Metric) GetLabel() []*LabelPair {
-	if m != nil {
-		return m.Label
-	}
-	return nil
-}
-
-func (m *Metric) GetGauge() *Gauge {
-	if m != nil {
-		return m.Gauge
-	}
-	return nil
-}
-
-func (m *Metric) GetCounter() *Counter {
-	if m != nil {
-		return m.Counter
-	}
-	return nil
-}
-
-func (m *Metric) GetSummary() *Summary {
-	if m != nil {
-		return m.Summary
-	}
-	return nil
-}
-
-func (m *Metric) GetUntyped() *Untyped {
-	if m != nil {
-		return m.Untyped
-	}
-	return nil
-}
-
-func (m *Metric) GetHistogram() *Histogram {
-	if m != nil {
-		return m.Histogram
-	}
-	return nil
-}
-
-func (m *Metric) GetTimestampMs() int64 {
-	if m != nil && m.TimestampMs != nil {
-		return *m.TimestampMs
-	}
-	return 0
-}
-
-type MetricFamily struct {
-	Name             *string     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Help             *string     `protobuf:"bytes,2,opt,name=help" json:"help,omitempty"`
-	Type             *MetricType `protobuf:"varint,3,opt,name=type,enum=io.prometheus.client.MetricType" json:"type,omitempty"`
-	Metric           []*Metric   `protobuf:"bytes,4,rep,name=metric" json:"metric,omitempty"`
-	XXX_unrecognized []byte      `json:"-"`
-}
-
-func (m *MetricFamily) Reset()         { *m = MetricFamily{} }
-func (m *MetricFamily) String() string { return proto.CompactTextString(m) }
-func (*MetricFamily) ProtoMessage()    {}
-
-func (m *MetricFamily) GetName() string {
-	if m != nil && m.Name != nil {
-		return *m.Name
-	}
-	return ""
-}
-
-func (m *MetricFamily) GetHelp() string {
-	if m != nil && m.Help != nil {
-		return *m.Help
-	}
-	return ""
-}
-
-func (m *MetricFamily) GetType() MetricType {
-	if m != nil && m.Type != nil {
-		return *m.Type
-	}
-	return MetricType_COUNTER
-}
-
-func (m *MetricFamily) GetMetric() []*Metric {
-	if m != nil {
-		return m.Metric
-	}
-	return nil
-}
-
-func init() {
-	proto.RegisterEnum("io.prometheus.client.MetricType", MetricType_name, MetricType_value)
-}
diff --git a/vendor/github.com/prometheus/client_model/ruby/LICENSE b/vendor/github.com/prometheus/client_model/ruby/LICENSE
deleted file mode 100644
index 11069edd79..0000000000
--- a/vendor/github.com/prometheus/client_model/ruby/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                              Apache License
-                        Version 2.0, January 2004
-                     http://www.apache.org/licenses/
-
-TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-1. Definitions.
-
-   "License" shall mean the terms and conditions for use, reproduction,
-   and distribution as defined by Sections 1 through 9 of this document.
-
-   "Licensor" shall mean the copyright owner or entity authorized by
-   the copyright owner that is granting the License.
-
-   "Legal Entity" shall mean the union of the acting entity and all
-   other entities that control, are controlled by, or are under common
-   control with that entity. For the purposes of this definition,
-   "control" means (i) the power, direct or indirect, to cause the
-   direction or management of such entity, whether by contract or
-   otherwise, or (ii) ownership of fifty percent (50%) or more of the
-   outstanding shares, or (iii) beneficial ownership of such entity.
-
-   "You" (or "Your") shall mean an individual or Legal Entity
-   exercising permissions granted by this License.
-
-   "Source" form shall mean the preferred form for making modifications,
-   including but not limited to software source code, documentation
-   source, and configuration files.
-
-   "Object" form shall mean any form resulting from mechanical
-   transformation or translation of a Source form, including but
-   not limited to compiled object code, generated documentation,
-   and conversions to other media types.
-
-   "Work" shall mean the work of authorship, whether in Source or
-   Object form, made available under the License, as indicated by a
-   copyright notice that is included in or attached to the work
-   (an example is provided in the Appendix below).
-
-   "Derivative Works" shall mean any work, whether in Source or Object
-   form, that is based on (or derived from) the Work and for which the
-   editorial revisions, annotations, elaborations, or other modifications
-   represent, as a whole, an original work of authorship. For the purposes
-   of this License, Derivative Works shall not include works that remain
-   separable from, or merely link (or bind by name) to the interfaces of,
-   the Work and Derivative Works thereof.
-
-   "Contribution" shall mean any work of authorship, including
-   the original version of the Work and any modifications or additions
-   to that Work or Derivative Works thereof, that is intentionally
-   submitted to Licensor for inclusion in the Work by the copyright owner
-   or by an individual or Legal Entity authorized to submit on behalf of
-   the copyright owner. For the purposes of this definition, "submitted"
-   means any form of electronic, verbal, or written communication sent
-   to the Licensor or its representatives, including but not limited to
-   communication on electronic mailing lists, source code control systems,
-   and issue tracking systems that are managed by, or on behalf of, the
-   Licensor for the purpose of discussing and improving the Work, but
-   excluding communication that is conspicuously marked or otherwise
-   designated in writing by the copyright owner as "Not a Contribution."
-
-   "Contributor" shall mean Licensor and any individual or Legal Entity
-   on behalf of whom a Contribution has been received by Licensor and
-   subsequently incorporated within the Work.
-
-2. Grant of Copyright License. Subject to the terms and conditions of
-   this License, each Contributor hereby grants to You a perpetual,
-   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-   copyright license to reproduce, prepare Derivative Works of,
-   publicly display, publicly perform, sublicense, and distribute the
-   Work and such Derivative Works in Source or Object form.
-
-3. Grant of Patent License. Subject to the terms and conditions of
-   this License, each Contributor hereby grants to You a perpetual,
-   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-   (except as stated in this section) patent license to make, have made,
-   use, offer to sell, sell, import, and otherwise transfer the Work,
-   where such license applies only to those patent claims licensable
-   by such Contributor that are necessarily infringed by their
-   Contribution(s) alone or by combination of their Contribution(s)
-   with the Work to which such Contribution(s) was submitted. If You
-   institute patent litigation against any entity (including a
-   cross-claim or counterclaim in a lawsuit) alleging that the Work
-   or a Contribution incorporated within the Work constitutes direct
-   or contributory patent infringement, then any patent licenses
-   granted to You under this License for that Work shall terminate
-   as of the date such litigation is filed.
-
-4. Redistribution. You may reproduce and distribute copies of the
-   Work or Derivative Works thereof in any medium, with or without
-   modifications, and in Source or Object form, provided that You
-   meet the following conditions:
-
-   (a) You must give any other recipients of the Work or
-       Derivative Works a copy of this License; and
-
-   (b) You must cause any modified files to carry prominent notices
-       stating that You changed the files; and
-
-   (c) You must retain, in the Source form of any Derivative Works
-       that You distribute, all copyright, patent, trademark, and
-       attribution notices from the Source form of the Work,
-       excluding those notices that do not pertain to any part of
-       the Derivative Works; and
-
-   (d) If the Work includes a "NOTICE" text file as part of its
-       distribution, then any Derivative Works that You distribute must
-       include a readable copy of the attribution notices contained
-       within such NOTICE file, excluding those notices that do not
-       pertain to any part of the Derivative Works, in at least one
-       of the following places: within a NOTICE text file distributed
-       as part of the Derivative Works; within the Source form or
-       documentation, if provided along with the Derivative Works; or,
-       within a display generated by the Derivative Works, if and
-       wherever such third-party notices normally appear. The contents
-       of the NOTICE file are for informational purposes only and
-       do not modify the License. You may add Your own attribution
-       notices within Derivative Works that You distribute, alongside
-       or as an addendum to the NOTICE text from the Work, provided
-       that such additional attribution notices cannot be construed
-       as modifying the License.
-
-   You may add Your own copyright statement to Your modifications and
-   may provide additional or different license terms and conditions
-   for use, reproduction, or distribution of Your modifications, or
-   for any such Derivative Works as a whole, provided Your use,
-   reproduction, and distribution of the Work otherwise complies with
-   the conditions stated in this License.
-
-5. Submission of Contributions. Unless You explicitly state otherwise,
-   any Contribution intentionally submitted for inclusion in the Work
-   by You to the Licensor shall be under the terms and conditions of
-   this License, without any additional terms or conditions.
-   Notwithstanding the above, nothing herein shall supersede or modify
-   the terms of any separate license agreement you may have executed
-   with Licensor regarding such Contributions.
-
-6. Trademarks. This License does not grant permission to use the trade
-   names, trademarks, service marks, or product names of the Licensor,
-   except as required for reasonable and customary use in describing the
-   origin of the Work and reproducing the content of the NOTICE file.
-
-7. Disclaimer of Warranty. Unless required by applicable law or
-   agreed to in writing, Licensor provides the Work (and each
-   Contributor provides its Contributions) on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-   implied, including, without limitation, any warranties or conditions
-   of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-   PARTICULAR PURPOSE. You are solely responsible for determining the
-   appropriateness of using or redistributing the Work and assume any
-   risks associated with Your exercise of permissions under this License.
-
-8. Limitation of Liability. In no event and under no legal theory,
-   whether in tort (including negligence), contract, or otherwise,
-   unless required by applicable law (such as deliberate and grossly
-   negligent acts) or agreed to in writing, shall any Contributor be
-   liable to You for damages, including any direct, indirect, special,
-   incidental, or consequential damages of any character arising as a
-   result of this License or out of the use or inability to use the
-   Work (including but not limited to damages for loss of goodwill,
-   work stoppage, computer failure or malfunction, or any and all
-   other commercial damages or losses), even if such Contributor
-   has been advised of the possibility of such damages.
-
-9. Accepting Warranty or Additional Liability. While redistributing
-   the Work or Derivative Works thereof, You may choose to offer,
-   and charge a fee for, acceptance of support, warranty, indemnity,
-   or other liability obligations and/or rights consistent with this
-   License. However, in accepting such obligations, You may act only
-   on Your own behalf and on Your sole responsibility, not on behalf
-   of any other Contributor, and only if You agree to indemnify,
-   defend, and hold each Contributor harmless for any liability
-   incurred by, or claims asserted against, such Contributor by reason
-   of your accepting any such warranty or additional liability.
-
-END OF TERMS AND CONDITIONS
-
-APPENDIX: How to apply the Apache License to your work.
-
-   To apply the Apache License to your work, attach the following
-   boilerplate notice, with the fields enclosed by brackets "[]"
-   replaced with your own identifying information. (Don't include
-   the brackets!)  The text should be enclosed in the appropriate
-   comment syntax for the file format. We also recommend that a
-   file or class name and description of purpose be included on the
-   same "printed page" as the copyright notice for easier
-   identification within third-party archives.
-
-Copyright [yyyy] [name of copyright owner]
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
diff --git a/vendor/github.com/prometheus/common/LICENSE b/vendor/github.com/prometheus/common/LICENSE
deleted file mode 100644
index 261eeb9e9f..0000000000
--- a/vendor/github.com/prometheus/common/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/prometheus/common/NOTICE b/vendor/github.com/prometheus/common/NOTICE
deleted file mode 100644
index 636a2c1a5e..0000000000
--- a/vendor/github.com/prometheus/common/NOTICE
+++ /dev/null
@@ -1,5 +0,0 @@
-Common libraries shared by Prometheus Go components.
-Copyright 2015 The Prometheus Authors
-
-This product includes software developed at
-SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/common/expfmt/decode.go b/vendor/github.com/prometheus/common/expfmt/decode.go
deleted file mode 100644
index c092723e84..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/decode.go
+++ /dev/null
@@ -1,429 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package expfmt
-
-import (
-	"fmt"
-	"io"
-	"math"
-	"mime"
-	"net/http"
-
-	dto "github.com/prometheus/client_model/go"
-
-	"github.com/matttproud/golang_protobuf_extensions/pbutil"
-	"github.com/prometheus/common/model"
-)
-
-// Decoder types decode an input stream into metric families.
-type Decoder interface {
-	Decode(*dto.MetricFamily) error
-}
-
-// DecodeOptions contains options used by the Decoder and in sample extraction.
-type DecodeOptions struct {
-	// Timestamp is added to each value from the stream that has no explicit timestamp set.
-	Timestamp model.Time
-}
-
-// ResponseFormat extracts the correct format from a HTTP response header.
-// If no matching format can be found FormatUnknown is returned.
-func ResponseFormat(h http.Header) Format {
-	ct := h.Get(hdrContentType)
-
-	mediatype, params, err := mime.ParseMediaType(ct)
-	if err != nil {
-		return FmtUnknown
-	}
-
-	const textType = "text/plain"
-
-	switch mediatype {
-	case ProtoType:
-		if p, ok := params["proto"]; ok && p != ProtoProtocol {
-			return FmtUnknown
-		}
-		if e, ok := params["encoding"]; ok && e != "delimited" {
-			return FmtUnknown
-		}
-		return FmtProtoDelim
-
-	case textType:
-		if v, ok := params["version"]; ok && v != TextVersion {
-			return FmtUnknown
-		}
-		return FmtText
-	}
-
-	return FmtUnknown
-}
-
-// NewDecoder returns a new decoder based on the given input format.
-// If the input format does not imply otherwise, a text format decoder is returned.
-func NewDecoder(r io.Reader, format Format) Decoder {
-	switch format {
-	case FmtProtoDelim:
-		return &protoDecoder{r: r}
-	}
-	return &textDecoder{r: r}
-}
-
-// protoDecoder implements the Decoder interface for protocol buffers.
-type protoDecoder struct {
-	r io.Reader
-}
-
-// Decode implements the Decoder interface.
-func (d *protoDecoder) Decode(v *dto.MetricFamily) error {
-	_, err := pbutil.ReadDelimited(d.r, v)
-	if err != nil {
-		return err
-	}
-	if !model.IsValidMetricName(model.LabelValue(v.GetName())) {
-		return fmt.Errorf("invalid metric name %q", v.GetName())
-	}
-	for _, m := range v.GetMetric() {
-		if m == nil {
-			continue
-		}
-		for _, l := range m.GetLabel() {
-			if l == nil {
-				continue
-			}
-			if !model.LabelValue(l.GetValue()).IsValid() {
-				return fmt.Errorf("invalid label value %q", l.GetValue())
-			}
-			if !model.LabelName(l.GetName()).IsValid() {
-				return fmt.Errorf("invalid label name %q", l.GetName())
-			}
-		}
-	}
-	return nil
-}
-
-// textDecoder implements the Decoder interface for the text protocol.
-type textDecoder struct {
-	r    io.Reader
-	p    TextParser
-	fams []*dto.MetricFamily
-}
-
-// Decode implements the Decoder interface.
-func (d *textDecoder) Decode(v *dto.MetricFamily) error {
-	// TODO(fabxc): Wrap this as a line reader to make streaming safer.
-	if len(d.fams) == 0 {
-		// No cached metric families, read everything and parse metrics.
-		fams, err := d.p.TextToMetricFamilies(d.r)
-		if err != nil {
-			return err
-		}
-		if len(fams) == 0 {
-			return io.EOF
-		}
-		d.fams = make([]*dto.MetricFamily, 0, len(fams))
-		for _, f := range fams {
-			d.fams = append(d.fams, f)
-		}
-	}
-
-	*v = *d.fams[0]
-	d.fams = d.fams[1:]
-
-	return nil
-}
-
-// SampleDecoder wraps a Decoder to extract samples from the metric families
-// decoded by the wrapped Decoder.
-type SampleDecoder struct {
-	Dec  Decoder
-	Opts *DecodeOptions
-
-	f dto.MetricFamily
-}
-
-// Decode calls the Decode method of the wrapped Decoder and then extracts the
-// samples from the decoded MetricFamily into the provided model.Vector.
-func (sd *SampleDecoder) Decode(s *model.Vector) error {
-	err := sd.Dec.Decode(&sd.f)
-	if err != nil {
-		return err
-	}
-	*s, err = extractSamples(&sd.f, sd.Opts)
-	return err
-}
-
-// ExtractSamples builds a slice of samples from the provided metric
-// families. If an error occurrs during sample extraction, it continues to
-// extract from the remaining metric families. The returned error is the last
-// error that has occurred.
-func ExtractSamples(o *DecodeOptions, fams ...*dto.MetricFamily) (model.Vector, error) {
-	var (
-		all     model.Vector
-		lastErr error
-	)
-	for _, f := range fams {
-		some, err := extractSamples(f, o)
-		if err != nil {
-			lastErr = err
-			continue
-		}
-		all = append(all, some...)
-	}
-	return all, lastErr
-}
-
-func extractSamples(f *dto.MetricFamily, o *DecodeOptions) (model.Vector, error) {
-	switch f.GetType() {
-	case dto.MetricType_COUNTER:
-		return extractCounter(o, f), nil
-	case dto.MetricType_GAUGE:
-		return extractGauge(o, f), nil
-	case dto.MetricType_SUMMARY:
-		return extractSummary(o, f), nil
-	case dto.MetricType_UNTYPED:
-		return extractUntyped(o, f), nil
-	case dto.MetricType_HISTOGRAM:
-		return extractHistogram(o, f), nil
-	}
-	return nil, fmt.Errorf("expfmt.extractSamples: unknown metric family type %v", f.GetType())
-}
-
-func extractCounter(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
-	samples := make(model.Vector, 0, len(f.Metric))
-
-	for _, m := range f.Metric {
-		if m.Counter == nil {
-			continue
-		}
-
-		lset := make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
-
-		smpl := &model.Sample{
-			Metric: model.Metric(lset),
-			Value:  model.SampleValue(m.Counter.GetValue()),
-		}
-
-		if m.TimestampMs != nil {
-			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
-		} else {
-			smpl.Timestamp = o.Timestamp
-		}
-
-		samples = append(samples, smpl)
-	}
-
-	return samples
-}
-
-func extractGauge(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
-	samples := make(model.Vector, 0, len(f.Metric))
-
-	for _, m := range f.Metric {
-		if m.Gauge == nil {
-			continue
-		}
-
-		lset := make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
-
-		smpl := &model.Sample{
-			Metric: model.Metric(lset),
-			Value:  model.SampleValue(m.Gauge.GetValue()),
-		}
-
-		if m.TimestampMs != nil {
-			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
-		} else {
-			smpl.Timestamp = o.Timestamp
-		}
-
-		samples = append(samples, smpl)
-	}
-
-	return samples
-}
-
-func extractUntyped(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
-	samples := make(model.Vector, 0, len(f.Metric))
-
-	for _, m := range f.Metric {
-		if m.Untyped == nil {
-			continue
-		}
-
-		lset := make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
-
-		smpl := &model.Sample{
-			Metric: model.Metric(lset),
-			Value:  model.SampleValue(m.Untyped.GetValue()),
-		}
-
-		if m.TimestampMs != nil {
-			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
-		} else {
-			smpl.Timestamp = o.Timestamp
-		}
-
-		samples = append(samples, smpl)
-	}
-
-	return samples
-}
-
-func extractSummary(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
-	samples := make(model.Vector, 0, len(f.Metric))
-
-	for _, m := range f.Metric {
-		if m.Summary == nil {
-			continue
-		}
-
-		timestamp := o.Timestamp
-		if m.TimestampMs != nil {
-			timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
-		}
-
-		for _, q := range m.Summary.Quantile {
-			lset := make(model.LabelSet, len(m.Label)+2)
-			for _, p := range m.Label {
-				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-			}
-			// BUG(matt): Update other names to "quantile".
-			lset[model.LabelName(model.QuantileLabel)] = model.LabelValue(fmt.Sprint(q.GetQuantile()))
-			lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
-
-			samples = append(samples, &model.Sample{
-				Metric:    model.Metric(lset),
-				Value:     model.SampleValue(q.GetValue()),
-				Timestamp: timestamp,
-			})
-		}
-
-		lset := make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_sum")
-
-		samples = append(samples, &model.Sample{
-			Metric:    model.Metric(lset),
-			Value:     model.SampleValue(m.Summary.GetSampleSum()),
-			Timestamp: timestamp,
-		})
-
-		lset = make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_count")
-
-		samples = append(samples, &model.Sample{
-			Metric:    model.Metric(lset),
-			Value:     model.SampleValue(m.Summary.GetSampleCount()),
-			Timestamp: timestamp,
-		})
-	}
-
-	return samples
-}
-
-func extractHistogram(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
-	samples := make(model.Vector, 0, len(f.Metric))
-
-	for _, m := range f.Metric {
-		if m.Histogram == nil {
-			continue
-		}
-
-		timestamp := o.Timestamp
-		if m.TimestampMs != nil {
-			timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
-		}
-
-		infSeen := false
-
-		for _, q := range m.Histogram.Bucket {
-			lset := make(model.LabelSet, len(m.Label)+2)
-			for _, p := range m.Label {
-				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-			}
-			lset[model.LabelName(model.BucketLabel)] = model.LabelValue(fmt.Sprint(q.GetUpperBound()))
-			lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_bucket")
-
-			if math.IsInf(q.GetUpperBound(), +1) {
-				infSeen = true
-			}
-
-			samples = append(samples, &model.Sample{
-				Metric:    model.Metric(lset),
-				Value:     model.SampleValue(q.GetCumulativeCount()),
-				Timestamp: timestamp,
-			})
-		}
-
-		lset := make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_sum")
-
-		samples = append(samples, &model.Sample{
-			Metric:    model.Metric(lset),
-			Value:     model.SampleValue(m.Histogram.GetSampleSum()),
-			Timestamp: timestamp,
-		})
-
-		lset = make(model.LabelSet, len(m.Label)+1)
-		for _, p := range m.Label {
-			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-		}
-		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_count")
-
-		count := &model.Sample{
-			Metric:    model.Metric(lset),
-			Value:     model.SampleValue(m.Histogram.GetSampleCount()),
-			Timestamp: timestamp,
-		}
-		samples = append(samples, count)
-
-		if !infSeen {
-			// Append an infinity bucket sample.
-			lset := make(model.LabelSet, len(m.Label)+2)
-			for _, p := range m.Label {
-				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
-			}
-			lset[model.LabelName(model.BucketLabel)] = model.LabelValue("+Inf")
-			lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_bucket")
-
-			samples = append(samples, &model.Sample{
-				Metric:    model.Metric(lset),
-				Value:     count.Value,
-				Timestamp: timestamp,
-			})
-		}
-	}
-
-	return samples
-}
diff --git a/vendor/github.com/prometheus/common/expfmt/encode.go b/vendor/github.com/prometheus/common/expfmt/encode.go
deleted file mode 100644
index 11839ed65c..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/encode.go
+++ /dev/null
@@ -1,88 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package expfmt
-
-import (
-	"fmt"
-	"io"
-	"net/http"
-
-	"github.com/golang/protobuf/proto"
-	"github.com/matttproud/golang_protobuf_extensions/pbutil"
-	"github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg"
-
-	dto "github.com/prometheus/client_model/go"
-)
-
-// Encoder types encode metric families into an underlying wire protocol.
-type Encoder interface {
-	Encode(*dto.MetricFamily) error
-}
-
-type encoder func(*dto.MetricFamily) error
-
-func (e encoder) Encode(v *dto.MetricFamily) error {
-	return e(v)
-}
-
-// Negotiate returns the Content-Type based on the given Accept header.
-// If no appropriate accepted type is found, FmtText is returned.
-func Negotiate(h http.Header) Format {
-	for _, ac := range goautoneg.ParseAccept(h.Get(hdrAccept)) {
-		// Check for protocol buffer
-		if ac.Type+"/"+ac.SubType == ProtoType && ac.Params["proto"] == ProtoProtocol {
-			switch ac.Params["encoding"] {
-			case "delimited":
-				return FmtProtoDelim
-			case "text":
-				return FmtProtoText
-			case "compact-text":
-				return FmtProtoCompact
-			}
-		}
-		// Check for text format.
-		ver := ac.Params["version"]
-		if ac.Type == "text" && ac.SubType == "plain" && (ver == TextVersion || ver == "") {
-			return FmtText
-		}
-	}
-	return FmtText
-}
-
-// NewEncoder returns a new encoder based on content type negotiation.
-func NewEncoder(w io.Writer, format Format) Encoder {
-	switch format {
-	case FmtProtoDelim:
-		return encoder(func(v *dto.MetricFamily) error {
-			_, err := pbutil.WriteDelimited(w, v)
-			return err
-		})
-	case FmtProtoCompact:
-		return encoder(func(v *dto.MetricFamily) error {
-			_, err := fmt.Fprintln(w, v.String())
-			return err
-		})
-	case FmtProtoText:
-		return encoder(func(v *dto.MetricFamily) error {
-			_, err := fmt.Fprintln(w, proto.MarshalTextString(v))
-			return err
-		})
-	case FmtText:
-		return encoder(func(v *dto.MetricFamily) error {
-			_, err := MetricFamilyToText(w, v)
-			return err
-		})
-	}
-	panic("expfmt.NewEncoder: unknown format")
-}
diff --git a/vendor/github.com/prometheus/common/expfmt/expfmt.go b/vendor/github.com/prometheus/common/expfmt/expfmt.go
deleted file mode 100644
index c71bcb9816..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/expfmt.go
+++ /dev/null
@@ -1,38 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package expfmt contains tools for reading and writing Prometheus metrics.
-package expfmt
-
-// Format specifies the HTTP content type of the different wire protocols.
-type Format string
-
-// Constants to assemble the Content-Type values for the different wire protocols.
-const (
-	TextVersion   = "0.0.4"
-	ProtoType     = `application/vnd.google.protobuf`
-	ProtoProtocol = `io.prometheus.client.MetricFamily`
-	ProtoFmt      = ProtoType + "; proto=" + ProtoProtocol + ";"
-
-	// The Content-Type values for the different wire protocols.
-	FmtUnknown      Format = `<unknown>`
-	FmtText         Format = `text/plain; version=` + TextVersion + `; charset=utf-8`
-	FmtProtoDelim   Format = ProtoFmt + ` encoding=delimited`
-	FmtProtoText    Format = ProtoFmt + ` encoding=text`
-	FmtProtoCompact Format = ProtoFmt + ` encoding=compact-text`
-)
-
-const (
-	hdrContentType = "Content-Type"
-	hdrAccept      = "Accept"
-)
diff --git a/vendor/github.com/prometheus/common/expfmt/fuzz.go b/vendor/github.com/prometheus/common/expfmt/fuzz.go
deleted file mode 100644
index dc2eedeefc..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/fuzz.go
+++ /dev/null
@@ -1,36 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Build only when actually fuzzing
-// +build gofuzz
-
-package expfmt
-
-import "bytes"
-
-// Fuzz text metric parser with with github.com/dvyukov/go-fuzz:
-//
-//     go-fuzz-build github.com/prometheus/common/expfmt
-//     go-fuzz -bin expfmt-fuzz.zip -workdir fuzz
-//
-// Further input samples should go in the folder fuzz/corpus.
-func Fuzz(in []byte) int {
-	parser := TextParser{}
-	_, err := parser.TextToMetricFamilies(bytes.NewReader(in))
-
-	if err != nil {
-		return 0
-	}
-
-	return 1
-}
diff --git a/vendor/github.com/prometheus/common/expfmt/text_create.go b/vendor/github.com/prometheus/common/expfmt/text_create.go
deleted file mode 100644
index f11321cd0c..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/text_create.go
+++ /dev/null
@@ -1,303 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package expfmt
-
-import (
-	"fmt"
-	"io"
-	"math"
-	"strings"
-
-	dto "github.com/prometheus/client_model/go"
-	"github.com/prometheus/common/model"
-)
-
-// MetricFamilyToText converts a MetricFamily proto message into text format and
-// writes the resulting lines to 'out'. It returns the number of bytes written
-// and any error encountered. The output will have the same order as the input,
-// no further sorting is performed. Furthermore, this function assumes the input
-// is already sanitized and does not perform any sanity checks. If the input
-// contains duplicate metrics or invalid metric or label names, the conversion
-// will result in invalid text format output.
-//
-// This method fulfills the type 'prometheus.encoder'.
-func MetricFamilyToText(out io.Writer, in *dto.MetricFamily) (int, error) {
-	var written int
-
-	// Fail-fast checks.
-	if len(in.Metric) == 0 {
-		return written, fmt.Errorf("MetricFamily has no metrics: %s", in)
-	}
-	name := in.GetName()
-	if name == "" {
-		return written, fmt.Errorf("MetricFamily has no name: %s", in)
-	}
-
-	// Comments, first HELP, then TYPE.
-	if in.Help != nil {
-		n, err := fmt.Fprintf(
-			out, "# HELP %s %s\n",
-			name, escapeString(*in.Help, false),
-		)
-		written += n
-		if err != nil {
-			return written, err
-		}
-	}
-	metricType := in.GetType()
-	n, err := fmt.Fprintf(
-		out, "# TYPE %s %s\n",
-		name, strings.ToLower(metricType.String()),
-	)
-	written += n
-	if err != nil {
-		return written, err
-	}
-
-	// Finally the samples, one line for each.
-	for _, metric := range in.Metric {
-		switch metricType {
-		case dto.MetricType_COUNTER:
-			if metric.Counter == nil {
-				return written, fmt.Errorf(
-					"expected counter in metric %s %s", name, metric,
-				)
-			}
-			n, err = writeSample(
-				name, metric, "", "",
-				metric.Counter.GetValue(),
-				out,
-			)
-		case dto.MetricType_GAUGE:
-			if metric.Gauge == nil {
-				return written, fmt.Errorf(
-					"expected gauge in metric %s %s", name, metric,
-				)
-			}
-			n, err = writeSample(
-				name, metric, "", "",
-				metric.Gauge.GetValue(),
-				out,
-			)
-		case dto.MetricType_UNTYPED:
-			if metric.Untyped == nil {
-				return written, fmt.Errorf(
-					"expected untyped in metric %s %s", name, metric,
-				)
-			}
-			n, err = writeSample(
-				name, metric, "", "",
-				metric.Untyped.GetValue(),
-				out,
-			)
-		case dto.MetricType_SUMMARY:
-			if metric.Summary == nil {
-				return written, fmt.Errorf(
-					"expected summary in metric %s %s", name, metric,
-				)
-			}
-			for _, q := range metric.Summary.Quantile {
-				n, err = writeSample(
-					name, metric,
-					model.QuantileLabel, fmt.Sprint(q.GetQuantile()),
-					q.GetValue(),
-					out,
-				)
-				written += n
-				if err != nil {
-					return written, err
-				}
-			}
-			n, err = writeSample(
-				name+"_sum", metric, "", "",
-				metric.Summary.GetSampleSum(),
-				out,
-			)
-			if err != nil {
-				return written, err
-			}
-			written += n
-			n, err = writeSample(
-				name+"_count", metric, "", "",
-				float64(metric.Summary.GetSampleCount()),
-				out,
-			)
-		case dto.MetricType_HISTOGRAM:
-			if metric.Histogram == nil {
-				return written, fmt.Errorf(
-					"expected histogram in metric %s %s", name, metric,
-				)
-			}
-			infSeen := false
-			for _, q := range metric.Histogram.Bucket {
-				n, err = writeSample(
-					name+"_bucket", metric,
-					model.BucketLabel, fmt.Sprint(q.GetUpperBound()),
-					float64(q.GetCumulativeCount()),
-					out,
-				)
-				written += n
-				if err != nil {
-					return written, err
-				}
-				if math.IsInf(q.GetUpperBound(), +1) {
-					infSeen = true
-				}
-			}
-			if !infSeen {
-				n, err = writeSample(
-					name+"_bucket", metric,
-					model.BucketLabel, "+Inf",
-					float64(metric.Histogram.GetSampleCount()),
-					out,
-				)
-				if err != nil {
-					return written, err
-				}
-				written += n
-			}
-			n, err = writeSample(
-				name+"_sum", metric, "", "",
-				metric.Histogram.GetSampleSum(),
-				out,
-			)
-			if err != nil {
-				return written, err
-			}
-			written += n
-			n, err = writeSample(
-				name+"_count", metric, "", "",
-				float64(metric.Histogram.GetSampleCount()),
-				out,
-			)
-		default:
-			return written, fmt.Errorf(
-				"unexpected type in metric %s %s", name, metric,
-			)
-		}
-		written += n
-		if err != nil {
-			return written, err
-		}
-	}
-	return written, nil
-}
-
-// writeSample writes a single sample in text format to out, given the metric
-// name, the metric proto message itself, optionally an additional label name
-// and value (use empty strings if not required), and the value. The function
-// returns the number of bytes written and any error encountered.
-func writeSample(
-	name string,
-	metric *dto.Metric,
-	additionalLabelName, additionalLabelValue string,
-	value float64,
-	out io.Writer,
-) (int, error) {
-	var written int
-	n, err := fmt.Fprint(out, name)
-	written += n
-	if err != nil {
-		return written, err
-	}
-	n, err = labelPairsToText(
-		metric.Label,
-		additionalLabelName, additionalLabelValue,
-		out,
-	)
-	written += n
-	if err != nil {
-		return written, err
-	}
-	n, err = fmt.Fprintf(out, " %v", value)
-	written += n
-	if err != nil {
-		return written, err
-	}
-	if metric.TimestampMs != nil {
-		n, err = fmt.Fprintf(out, " %v", *metric.TimestampMs)
-		written += n
-		if err != nil {
-			return written, err
-		}
-	}
-	n, err = out.Write([]byte{'\n'})
-	written += n
-	if err != nil {
-		return written, err
-	}
-	return written, nil
-}
-
-// labelPairsToText converts a slice of LabelPair proto messages plus the
-// explicitly given additional label pair into text formatted as required by the
-// text format and writes it to 'out'. An empty slice in combination with an
-// empty string 'additionalLabelName' results in nothing being
-// written. Otherwise, the label pairs are written, escaped as required by the
-// text format, and enclosed in '{...}'. The function returns the number of
-// bytes written and any error encountered.
-func labelPairsToText(
-	in []*dto.LabelPair,
-	additionalLabelName, additionalLabelValue string,
-	out io.Writer,
-) (int, error) {
-	if len(in) == 0 && additionalLabelName == "" {
-		return 0, nil
-	}
-	var written int
-	separator := '{'
-	for _, lp := range in {
-		n, err := fmt.Fprintf(
-			out, `%c%s="%s"`,
-			separator, lp.GetName(), escapeString(lp.GetValue(), true),
-		)
-		written += n
-		if err != nil {
-			return written, err
-		}
-		separator = ','
-	}
-	if additionalLabelName != "" {
-		n, err := fmt.Fprintf(
-			out, `%c%s="%s"`,
-			separator, additionalLabelName,
-			escapeString(additionalLabelValue, true),
-		)
-		written += n
-		if err != nil {
-			return written, err
-		}
-	}
-	n, err := out.Write([]byte{'}'})
-	written += n
-	if err != nil {
-		return written, err
-	}
-	return written, nil
-}
-
-var (
-	escape                = strings.NewReplacer("\\", `\\`, "\n", `\n`)
-	escapeWithDoubleQuote = strings.NewReplacer("\\", `\\`, "\n", `\n`, "\"", `\"`)
-)
-
-// escapeString replaces '\' by '\\', new line character by '\n', and - if
-// includeDoubleQuote is true - '"' by '\"'.
-func escapeString(v string, includeDoubleQuote bool) string {
-	if includeDoubleQuote {
-		return escapeWithDoubleQuote.Replace(v)
-	}
-
-	return escape.Replace(v)
-}
diff --git a/vendor/github.com/prometheus/common/expfmt/text_parse.go b/vendor/github.com/prometheus/common/expfmt/text_parse.go
deleted file mode 100644
index b86290afa3..0000000000
--- a/vendor/github.com/prometheus/common/expfmt/text_parse.go
+++ /dev/null
@@ -1,757 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package expfmt
-
-import (
-	"bufio"
-	"bytes"
-	"fmt"
-	"io"
-	"math"
-	"strconv"
-	"strings"
-
-	dto "github.com/prometheus/client_model/go"
-
-	"github.com/golang/protobuf/proto"
-	"github.com/prometheus/common/model"
-)
-
-// A stateFn is a function that represents a state in a state machine. By
-// executing it, the state is progressed to the next state. The stateFn returns
-// another stateFn, which represents the new state. The end state is represented
-// by nil.
-type stateFn func() stateFn
-
-// ParseError signals errors while parsing the simple and flat text-based
-// exchange format.
-type ParseError struct {
-	Line int
-	Msg  string
-}
-
-// Error implements the error interface.
-func (e ParseError) Error() string {
-	return fmt.Sprintf("text format parsing error in line %d: %s", e.Line, e.Msg)
-}
-
-// TextParser is used to parse the simple and flat text-based exchange format. Its
-// zero value is ready to use.
-type TextParser struct {
-	metricFamiliesByName map[string]*dto.MetricFamily
-	buf                  *bufio.Reader // Where the parsed input is read through.
-	err                  error         // Most recent error.
-	lineCount            int           // Tracks the line count for error messages.
-	currentByte          byte          // The most recent byte read.
-	currentToken         bytes.Buffer  // Re-used each time a token has to be gathered from multiple bytes.
-	currentMF            *dto.MetricFamily
-	currentMetric        *dto.Metric
-	currentLabelPair     *dto.LabelPair
-
-	// The remaining member variables are only used for summaries/histograms.
-	currentLabels map[string]string // All labels including '__name__' but excluding 'quantile'/'le'
-	// Summary specific.
-	summaries       map[uint64]*dto.Metric // Key is created with LabelsToSignature.
-	currentQuantile float64
-	// Histogram specific.
-	histograms    map[uint64]*dto.Metric // Key is created with LabelsToSignature.
-	currentBucket float64
-	// These tell us if the currently processed line ends on '_count' or
-	// '_sum' respectively and belong to a summary/histogram, representing the sample
-	// count and sum of that summary/histogram.
-	currentIsSummaryCount, currentIsSummarySum     bool
-	currentIsHistogramCount, currentIsHistogramSum bool
-}
-
-// TextToMetricFamilies reads 'in' as the simple and flat text-based exchange
-// format and creates MetricFamily proto messages. It returns the MetricFamily
-// proto messages in a map where the metric names are the keys, along with any
-// error encountered.
-//
-// If the input contains duplicate metrics (i.e. lines with the same metric name
-// and exactly the same label set), the resulting MetricFamily will contain
-// duplicate Metric proto messages. Similar is true for duplicate label
-// names. Checks for duplicates have to be performed separately, if required.
-// Also note that neither the metrics within each MetricFamily are sorted nor
-// the label pairs within each Metric. Sorting is not required for the most
-// frequent use of this method, which is sample ingestion in the Prometheus
-// server. However, for presentation purposes, you might want to sort the
-// metrics, and in some cases, you must sort the labels, e.g. for consumption by
-// the metric family injection hook of the Prometheus registry.
-//
-// Summaries and histograms are rather special beasts. You would probably not
-// use them in the simple text format anyway. This method can deal with
-// summaries and histograms if they are presented in exactly the way the
-// text.Create function creates them.
-//
-// This method must not be called concurrently. If you want to parse different
-// input concurrently, instantiate a separate Parser for each goroutine.
-func (p *TextParser) TextToMetricFamilies(in io.Reader) (map[string]*dto.MetricFamily, error) {
-	p.reset(in)
-	for nextState := p.startOfLine; nextState != nil; nextState = nextState() {
-		// Magic happens here...
-	}
-	// Get rid of empty metric families.
-	for k, mf := range p.metricFamiliesByName {
-		if len(mf.GetMetric()) == 0 {
-			delete(p.metricFamiliesByName, k)
-		}
-	}
-	// If p.err is io.EOF now, we have run into a premature end of the input
-	// stream. Turn this error into something nicer and more
-	// meaningful. (io.EOF is often used as a signal for the legitimate end
-	// of an input stream.)
-	if p.err == io.EOF {
-		p.parseError("unexpected end of input stream")
-	}
-	return p.metricFamiliesByName, p.err
-}
-
-func (p *TextParser) reset(in io.Reader) {
-	p.metricFamiliesByName = map[string]*dto.MetricFamily{}
-	if p.buf == nil {
-		p.buf = bufio.NewReader(in)
-	} else {
-		p.buf.Reset(in)
-	}
-	p.err = nil
-	p.lineCount = 0
-	if p.summaries == nil || len(p.summaries) > 0 {
-		p.summaries = map[uint64]*dto.Metric{}
-	}
-	if p.histograms == nil || len(p.histograms) > 0 {
-		p.histograms = map[uint64]*dto.Metric{}
-	}
-	p.currentQuantile = math.NaN()
-	p.currentBucket = math.NaN()
-}
-
-// startOfLine represents the state where the next byte read from p.buf is the
-// start of a line (or whitespace leading up to it).
-func (p *TextParser) startOfLine() stateFn {
-	p.lineCount++
-	if p.skipBlankTab(); p.err != nil {
-		// End of input reached. This is the only case where
-		// that is not an error but a signal that we are done.
-		p.err = nil
-		return nil
-	}
-	switch p.currentByte {
-	case '#':
-		return p.startComment
-	case '\n':
-		return p.startOfLine // Empty line, start the next one.
-	}
-	return p.readingMetricName
-}
-
-// startComment represents the state where the next byte read from p.buf is the
-// start of a comment (or whitespace leading up to it).
-func (p *TextParser) startComment() stateFn {
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte == '\n' {
-		return p.startOfLine
-	}
-	if p.readTokenUntilWhitespace(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	// If we have hit the end of line already, there is nothing left
-	// to do. This is not considered a syntax error.
-	if p.currentByte == '\n' {
-		return p.startOfLine
-	}
-	keyword := p.currentToken.String()
-	if keyword != "HELP" && keyword != "TYPE" {
-		// Generic comment, ignore by fast forwarding to end of line.
-		for p.currentByte != '\n' {
-			if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil {
-				return nil // Unexpected end of input.
-			}
-		}
-		return p.startOfLine
-	}
-	// There is something. Next has to be a metric name.
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.readTokenAsMetricName(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte == '\n' {
-		// At the end of the line already.
-		// Again, this is not considered a syntax error.
-		return p.startOfLine
-	}
-	if !isBlankOrTab(p.currentByte) {
-		p.parseError("invalid metric name in comment")
-		return nil
-	}
-	p.setOrCreateCurrentMF()
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte == '\n' {
-		// At the end of the line already.
-		// Again, this is not considered a syntax error.
-		return p.startOfLine
-	}
-	switch keyword {
-	case "HELP":
-		return p.readingHelp
-	case "TYPE":
-		return p.readingType
-	}
-	panic(fmt.Sprintf("code error: unexpected keyword %q", keyword))
-}
-
-// readingMetricName represents the state where the last byte read (now in
-// p.currentByte) is the first byte of a metric name.
-func (p *TextParser) readingMetricName() stateFn {
-	if p.readTokenAsMetricName(); p.err != nil {
-		return nil
-	}
-	if p.currentToken.Len() == 0 {
-		p.parseError("invalid metric name")
-		return nil
-	}
-	p.setOrCreateCurrentMF()
-	// Now is the time to fix the type if it hasn't happened yet.
-	if p.currentMF.Type == nil {
-		p.currentMF.Type = dto.MetricType_UNTYPED.Enum()
-	}
-	p.currentMetric = &dto.Metric{}
-	// Do not append the newly created currentMetric to
-	// currentMF.Metric right now. First wait if this is a summary,
-	// and the metric exists already, which we can only know after
-	// having read all the labels.
-	if p.skipBlankTabIfCurrentBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	return p.readingLabels
-}
-
-// readingLabels represents the state where the last byte read (now in
-// p.currentByte) is either the first byte of the label set (i.e. a '{'), or the
-// first byte of the value (otherwise).
-func (p *TextParser) readingLabels() stateFn {
-	// Summaries/histograms are special. We have to reset the
-	// currentLabels map, currentQuantile and currentBucket before starting to
-	// read labels.
-	if p.currentMF.GetType() == dto.MetricType_SUMMARY || p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
-		p.currentLabels = map[string]string{}
-		p.currentLabels[string(model.MetricNameLabel)] = p.currentMF.GetName()
-		p.currentQuantile = math.NaN()
-		p.currentBucket = math.NaN()
-	}
-	if p.currentByte != '{' {
-		return p.readingValue
-	}
-	return p.startLabelName
-}
-
-// startLabelName represents the state where the next byte read from p.buf is
-// the start of a label name (or whitespace leading up to it).
-func (p *TextParser) startLabelName() stateFn {
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte == '}' {
-		if p.skipBlankTab(); p.err != nil {
-			return nil // Unexpected end of input.
-		}
-		return p.readingValue
-	}
-	if p.readTokenAsLabelName(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentToken.Len() == 0 {
-		p.parseError(fmt.Sprintf("invalid label name for metric %q", p.currentMF.GetName()))
-		return nil
-	}
-	p.currentLabelPair = &dto.LabelPair{Name: proto.String(p.currentToken.String())}
-	if p.currentLabelPair.GetName() == string(model.MetricNameLabel) {
-		p.parseError(fmt.Sprintf("label name %q is reserved", model.MetricNameLabel))
-		return nil
-	}
-	// Special summary/histogram treatment. Don't add 'quantile' and 'le'
-	// labels to 'real' labels.
-	if !(p.currentMF.GetType() == dto.MetricType_SUMMARY && p.currentLabelPair.GetName() == model.QuantileLabel) &&
-		!(p.currentMF.GetType() == dto.MetricType_HISTOGRAM && p.currentLabelPair.GetName() == model.BucketLabel) {
-		p.currentMetric.Label = append(p.currentMetric.Label, p.currentLabelPair)
-	}
-	if p.skipBlankTabIfCurrentBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte != '=' {
-		p.parseError(fmt.Sprintf("expected '=' after label name, found %q", p.currentByte))
-		return nil
-	}
-	return p.startLabelValue
-}
-
-// startLabelValue represents the state where the next byte read from p.buf is
-// the start of a (quoted) label value (or whitespace leading up to it).
-func (p *TextParser) startLabelValue() stateFn {
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentByte != '"' {
-		p.parseError(fmt.Sprintf("expected '\"' at start of label value, found %q", p.currentByte))
-		return nil
-	}
-	if p.readTokenAsLabelValue(); p.err != nil {
-		return nil
-	}
-	if !model.LabelValue(p.currentToken.String()).IsValid() {
-		p.parseError(fmt.Sprintf("invalid label value %q", p.currentToken.String()))
-		return nil
-	}
-	p.currentLabelPair.Value = proto.String(p.currentToken.String())
-	// Special treatment of summaries:
-	// - Quantile labels are special, will result in dto.Quantile later.
-	// - Other labels have to be added to currentLabels for signature calculation.
-	if p.currentMF.GetType() == dto.MetricType_SUMMARY {
-		if p.currentLabelPair.GetName() == model.QuantileLabel {
-			if p.currentQuantile, p.err = strconv.ParseFloat(p.currentLabelPair.GetValue(), 64); p.err != nil {
-				// Create a more helpful error message.
-				p.parseError(fmt.Sprintf("expected float as value for 'quantile' label, got %q", p.currentLabelPair.GetValue()))
-				return nil
-			}
-		} else {
-			p.currentLabels[p.currentLabelPair.GetName()] = p.currentLabelPair.GetValue()
-		}
-	}
-	// Similar special treatment of histograms.
-	if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
-		if p.currentLabelPair.GetName() == model.BucketLabel {
-			if p.currentBucket, p.err = strconv.ParseFloat(p.currentLabelPair.GetValue(), 64); p.err != nil {
-				// Create a more helpful error message.
-				p.parseError(fmt.Sprintf("expected float as value for 'le' label, got %q", p.currentLabelPair.GetValue()))
-				return nil
-			}
-		} else {
-			p.currentLabels[p.currentLabelPair.GetName()] = p.currentLabelPair.GetValue()
-		}
-	}
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	switch p.currentByte {
-	case ',':
-		return p.startLabelName
-
-	case '}':
-		if p.skipBlankTab(); p.err != nil {
-			return nil // Unexpected end of input.
-		}
-		return p.readingValue
-	default:
-		p.parseError(fmt.Sprintf("unexpected end of label value %q", p.currentLabelPair.Value))
-		return nil
-	}
-}
-
-// readingValue represents the state where the last byte read (now in
-// p.currentByte) is the first byte of the sample value (i.e. a float).
-func (p *TextParser) readingValue() stateFn {
-	// When we are here, we have read all the labels, so for the
-	// special case of a summary/histogram, we can finally find out
-	// if the metric already exists.
-	if p.currentMF.GetType() == dto.MetricType_SUMMARY {
-		signature := model.LabelsToSignature(p.currentLabels)
-		if summary := p.summaries[signature]; summary != nil {
-			p.currentMetric = summary
-		} else {
-			p.summaries[signature] = p.currentMetric
-			p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
-		}
-	} else if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
-		signature := model.LabelsToSignature(p.currentLabels)
-		if histogram := p.histograms[signature]; histogram != nil {
-			p.currentMetric = histogram
-		} else {
-			p.histograms[signature] = p.currentMetric
-			p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
-		}
-	} else {
-		p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
-	}
-	if p.readTokenUntilWhitespace(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	value, err := strconv.ParseFloat(p.currentToken.String(), 64)
-	if err != nil {
-		// Create a more helpful error message.
-		p.parseError(fmt.Sprintf("expected float as value, got %q", p.currentToken.String()))
-		return nil
-	}
-	switch p.currentMF.GetType() {
-	case dto.MetricType_COUNTER:
-		p.currentMetric.Counter = &dto.Counter{Value: proto.Float64(value)}
-	case dto.MetricType_GAUGE:
-		p.currentMetric.Gauge = &dto.Gauge{Value: proto.Float64(value)}
-	case dto.MetricType_UNTYPED:
-		p.currentMetric.Untyped = &dto.Untyped{Value: proto.Float64(value)}
-	case dto.MetricType_SUMMARY:
-		// *sigh*
-		if p.currentMetric.Summary == nil {
-			p.currentMetric.Summary = &dto.Summary{}
-		}
-		switch {
-		case p.currentIsSummaryCount:
-			p.currentMetric.Summary.SampleCount = proto.Uint64(uint64(value))
-		case p.currentIsSummarySum:
-			p.currentMetric.Summary.SampleSum = proto.Float64(value)
-		case !math.IsNaN(p.currentQuantile):
-			p.currentMetric.Summary.Quantile = append(
-				p.currentMetric.Summary.Quantile,
-				&dto.Quantile{
-					Quantile: proto.Float64(p.currentQuantile),
-					Value:    proto.Float64(value),
-				},
-			)
-		}
-	case dto.MetricType_HISTOGRAM:
-		// *sigh*
-		if p.currentMetric.Histogram == nil {
-			p.currentMetric.Histogram = &dto.Histogram{}
-		}
-		switch {
-		case p.currentIsHistogramCount:
-			p.currentMetric.Histogram.SampleCount = proto.Uint64(uint64(value))
-		case p.currentIsHistogramSum:
-			p.currentMetric.Histogram.SampleSum = proto.Float64(value)
-		case !math.IsNaN(p.currentBucket):
-			p.currentMetric.Histogram.Bucket = append(
-				p.currentMetric.Histogram.Bucket,
-				&dto.Bucket{
-					UpperBound:      proto.Float64(p.currentBucket),
-					CumulativeCount: proto.Uint64(uint64(value)),
-				},
-			)
-		}
-	default:
-		p.err = fmt.Errorf("unexpected type for metric name %q", p.currentMF.GetName())
-	}
-	if p.currentByte == '\n' {
-		return p.startOfLine
-	}
-	return p.startTimestamp
-}
-
-// startTimestamp represents the state where the next byte read from p.buf is
-// the start of the timestamp (or whitespace leading up to it).
-func (p *TextParser) startTimestamp() stateFn {
-	if p.skipBlankTab(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.readTokenUntilWhitespace(); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	timestamp, err := strconv.ParseInt(p.currentToken.String(), 10, 64)
-	if err != nil {
-		// Create a more helpful error message.
-		p.parseError(fmt.Sprintf("expected integer as timestamp, got %q", p.currentToken.String()))
-		return nil
-	}
-	p.currentMetric.TimestampMs = proto.Int64(timestamp)
-	if p.readTokenUntilNewline(false); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	if p.currentToken.Len() > 0 {
-		p.parseError(fmt.Sprintf("spurious string after timestamp: %q", p.currentToken.String()))
-		return nil
-	}
-	return p.startOfLine
-}
-
-// readingHelp represents the state where the last byte read (now in
-// p.currentByte) is the first byte of the docstring after 'HELP'.
-func (p *TextParser) readingHelp() stateFn {
-	if p.currentMF.Help != nil {
-		p.parseError(fmt.Sprintf("second HELP line for metric name %q", p.currentMF.GetName()))
-		return nil
-	}
-	// Rest of line is the docstring.
-	if p.readTokenUntilNewline(true); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	p.currentMF.Help = proto.String(p.currentToken.String())
-	return p.startOfLine
-}
-
-// readingType represents the state where the last byte read (now in
-// p.currentByte) is the first byte of the type hint after 'HELP'.
-func (p *TextParser) readingType() stateFn {
-	if p.currentMF.Type != nil {
-		p.parseError(fmt.Sprintf("second TYPE line for metric name %q, or TYPE reported after samples", p.currentMF.GetName()))
-		return nil
-	}
-	// Rest of line is the type.
-	if p.readTokenUntilNewline(false); p.err != nil {
-		return nil // Unexpected end of input.
-	}
-	metricType, ok := dto.MetricType_value[strings.ToUpper(p.currentToken.String())]
-	if !ok {
-		p.parseError(fmt.Sprintf("unknown metric type %q", p.currentToken.String()))
-		return nil
-	}
-	p.currentMF.Type = dto.MetricType(metricType).Enum()
-	return p.startOfLine
-}
-
-// parseError sets p.err to a ParseError at the current line with the given
-// message.
-func (p *TextParser) parseError(msg string) {
-	p.err = ParseError{
-		Line: p.lineCount,
-		Msg:  msg,
-	}
-}
-
-// skipBlankTab reads (and discards) bytes from p.buf until it encounters a byte
-// that is neither ' ' nor '\t'. That byte is left in p.currentByte.
-func (p *TextParser) skipBlankTab() {
-	for {
-		if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil || !isBlankOrTab(p.currentByte) {
-			return
-		}
-	}
-}
-
-// skipBlankTabIfCurrentBlankTab works exactly as skipBlankTab but doesn't do
-// anything if p.currentByte is neither ' ' nor '\t'.
-func (p *TextParser) skipBlankTabIfCurrentBlankTab() {
-	if isBlankOrTab(p.currentByte) {
-		p.skipBlankTab()
-	}
-}
-
-// readTokenUntilWhitespace copies bytes from p.buf into p.currentToken.  The
-// first byte considered is the byte already read (now in p.currentByte).  The
-// first whitespace byte encountered is still copied into p.currentByte, but not
-// into p.currentToken.
-func (p *TextParser) readTokenUntilWhitespace() {
-	p.currentToken.Reset()
-	for p.err == nil && !isBlankOrTab(p.currentByte) && p.currentByte != '\n' {
-		p.currentToken.WriteByte(p.currentByte)
-		p.currentByte, p.err = p.buf.ReadByte()
-	}
-}
-
-// readTokenUntilNewline copies bytes from p.buf into p.currentToken.  The first
-// byte considered is the byte already read (now in p.currentByte).  The first
-// newline byte encountered is still copied into p.currentByte, but not into
-// p.currentToken. If recognizeEscapeSequence is true, two escape sequences are
-// recognized: '\\' translates into '\', and '\n' into a line-feed character.
-// All other escape sequences are invalid and cause an error.
-func (p *TextParser) readTokenUntilNewline(recognizeEscapeSequence bool) {
-	p.currentToken.Reset()
-	escaped := false
-	for p.err == nil {
-		if recognizeEscapeSequence && escaped {
-			switch p.currentByte {
-			case '\\':
-				p.currentToken.WriteByte(p.currentByte)
-			case 'n':
-				p.currentToken.WriteByte('\n')
-			default:
-				p.parseError(fmt.Sprintf("invalid escape sequence '\\%c'", p.currentByte))
-				return
-			}
-			escaped = false
-		} else {
-			switch p.currentByte {
-			case '\n':
-				return
-			case '\\':
-				escaped = true
-			default:
-				p.currentToken.WriteByte(p.currentByte)
-			}
-		}
-		p.currentByte, p.err = p.buf.ReadByte()
-	}
-}
-
-// readTokenAsMetricName copies a metric name from p.buf into p.currentToken.
-// The first byte considered is the byte already read (now in p.currentByte).
-// The first byte not part of a metric name is still copied into p.currentByte,
-// but not into p.currentToken.
-func (p *TextParser) readTokenAsMetricName() {
-	p.currentToken.Reset()
-	if !isValidMetricNameStart(p.currentByte) {
-		return
-	}
-	for {
-		p.currentToken.WriteByte(p.currentByte)
-		p.currentByte, p.err = p.buf.ReadByte()
-		if p.err != nil || !isValidMetricNameContinuation(p.currentByte) {
-			return
-		}
-	}
-}
-
-// readTokenAsLabelName copies a label name from p.buf into p.currentToken.
-// The first byte considered is the byte already read (now in p.currentByte).
-// The first byte not part of a label name is still copied into p.currentByte,
-// but not into p.currentToken.
-func (p *TextParser) readTokenAsLabelName() {
-	p.currentToken.Reset()
-	if !isValidLabelNameStart(p.currentByte) {
-		return
-	}
-	for {
-		p.currentToken.WriteByte(p.currentByte)
-		p.currentByte, p.err = p.buf.ReadByte()
-		if p.err != nil || !isValidLabelNameContinuation(p.currentByte) {
-			return
-		}
-	}
-}
-
-// readTokenAsLabelValue copies a label value from p.buf into p.currentToken.
-// In contrast to the other 'readTokenAs...' functions, which start with the
-// last read byte in p.currentByte, this method ignores p.currentByte and starts
-// with reading a new byte from p.buf. The first byte not part of a label value
-// is still copied into p.currentByte, but not into p.currentToken.
-func (p *TextParser) readTokenAsLabelValue() {
-	p.currentToken.Reset()
-	escaped := false
-	for {
-		if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil {
-			return
-		}
-		if escaped {
-			switch p.currentByte {
-			case '"', '\\':
-				p.currentToken.WriteByte(p.currentByte)
-			case 'n':
-				p.currentToken.WriteByte('\n')
-			default:
-				p.parseError(fmt.Sprintf("invalid escape sequence '\\%c'", p.currentByte))
-				return
-			}
-			escaped = false
-			continue
-		}
-		switch p.currentByte {
-		case '"':
-			return
-		case '\n':
-			p.parseError(fmt.Sprintf("label value %q contains unescaped new-line", p.currentToken.String()))
-			return
-		case '\\':
-			escaped = true
-		default:
-			p.currentToken.WriteByte(p.currentByte)
-		}
-	}
-}
-
-func (p *TextParser) setOrCreateCurrentMF() {
-	p.currentIsSummaryCount = false
-	p.currentIsSummarySum = false
-	p.currentIsHistogramCount = false
-	p.currentIsHistogramSum = false
-	name := p.currentToken.String()
-	if p.currentMF = p.metricFamiliesByName[name]; p.currentMF != nil {
-		return
-	}
-	// Try out if this is a _sum or _count for a summary/histogram.
-	summaryName := summaryMetricName(name)
-	if p.currentMF = p.metricFamiliesByName[summaryName]; p.currentMF != nil {
-		if p.currentMF.GetType() == dto.MetricType_SUMMARY {
-			if isCount(name) {
-				p.currentIsSummaryCount = true
-			}
-			if isSum(name) {
-				p.currentIsSummarySum = true
-			}
-			return
-		}
-	}
-	histogramName := histogramMetricName(name)
-	if p.currentMF = p.metricFamiliesByName[histogramName]; p.currentMF != nil {
-		if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
-			if isCount(name) {
-				p.currentIsHistogramCount = true
-			}
-			if isSum(name) {
-				p.currentIsHistogramSum = true
-			}
-			return
-		}
-	}
-	p.currentMF = &dto.MetricFamily{Name: proto.String(name)}
-	p.metricFamiliesByName[name] = p.currentMF
-}
-
-func isValidLabelNameStart(b byte) bool {
-	return (b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_'
-}
-
-func isValidLabelNameContinuation(b byte) bool {
-	return isValidLabelNameStart(b) || (b >= '0' && b <= '9')
-}
-
-func isValidMetricNameStart(b byte) bool {
-	return isValidLabelNameStart(b) || b == ':'
-}
-
-func isValidMetricNameContinuation(b byte) bool {
-	return isValidLabelNameContinuation(b) || b == ':'
-}
-
-func isBlankOrTab(b byte) bool {
-	return b == ' ' || b == '\t'
-}
-
-func isCount(name string) bool {
-	return len(name) > 6 && name[len(name)-6:] == "_count"
-}
-
-func isSum(name string) bool {
-	return len(name) > 4 && name[len(name)-4:] == "_sum"
-}
-
-func isBucket(name string) bool {
-	return len(name) > 7 && name[len(name)-7:] == "_bucket"
-}
-
-func summaryMetricName(name string) string {
-	switch {
-	case isCount(name):
-		return name[:len(name)-6]
-	case isSum(name):
-		return name[:len(name)-4]
-	default:
-		return name
-	}
-}
-
-func histogramMetricName(name string) string {
-	switch {
-	case isCount(name):
-		return name[:len(name)-6]
-	case isSum(name):
-		return name[:len(name)-4]
-	case isBucket(name):
-		return name[:len(name)-7]
-	default:
-		return name
-	}
-}
diff --git a/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go b/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
deleted file mode 100644
index 648b38cb65..0000000000
--- a/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
+++ /dev/null
@@ -1,162 +0,0 @@
-/*
-HTTP Content-Type Autonegotiation.
-
-The functions in this package implement the behaviour specified in
-http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html
-
-Copyright (c) 2011, Open Knowledge Foundation Ltd.
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-    Redistributions of source code must retain the above copyright
-    notice, this list of conditions and the following disclaimer.
-
-    Redistributions in binary form must reproduce the above copyright
-    notice, this list of conditions and the following disclaimer in
-    the documentation and/or other materials provided with the
-    distribution.
-
-    Neither the name of the Open Knowledge Foundation Ltd. nor the
-    names of its contributors may be used to endorse or promote
-    products derived from this software without specific prior written
-    permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
-
-*/
-package goautoneg
-
-import (
-	"sort"
-	"strconv"
-	"strings"
-)
-
-// Structure to represent a clause in an HTTP Accept Header
-type Accept struct {
-	Type, SubType string
-	Q             float64
-	Params        map[string]string
-}
-
-// For internal use, so that we can use the sort interface
-type accept_slice []Accept
-
-func (accept accept_slice) Len() int {
-	slice := []Accept(accept)
-	return len(slice)
-}
-
-func (accept accept_slice) Less(i, j int) bool {
-	slice := []Accept(accept)
-	ai, aj := slice[i], slice[j]
-	if ai.Q > aj.Q {
-		return true
-	}
-	if ai.Type != "*" && aj.Type == "*" {
-		return true
-	}
-	if ai.SubType != "*" && aj.SubType == "*" {
-		return true
-	}
-	return false
-}
-
-func (accept accept_slice) Swap(i, j int) {
-	slice := []Accept(accept)
-	slice[i], slice[j] = slice[j], slice[i]
-}
-
-// Parse an Accept Header string returning a sorted list
-// of clauses
-func ParseAccept(header string) (accept []Accept) {
-	parts := strings.Split(header, ",")
-	accept = make([]Accept, 0, len(parts))
-	for _, part := range parts {
-		part := strings.Trim(part, " ")
-
-		a := Accept{}
-		a.Params = make(map[string]string)
-		a.Q = 1.0
-
-		mrp := strings.Split(part, ";")
-
-		media_range := mrp[0]
-		sp := strings.Split(media_range, "/")
-		a.Type = strings.Trim(sp[0], " ")
-
-		switch {
-		case len(sp) == 1 && a.Type == "*":
-			a.SubType = "*"
-		case len(sp) == 2:
-			a.SubType = strings.Trim(sp[1], " ")
-		default:
-			continue
-		}
-
-		if len(mrp) == 1 {
-			accept = append(accept, a)
-			continue
-		}
-
-		for _, param := range mrp[1:] {
-			sp := strings.SplitN(param, "=", 2)
-			if len(sp) != 2 {
-				continue
-			}
-			token := strings.Trim(sp[0], " ")
-			if token == "q" {
-				a.Q, _ = strconv.ParseFloat(sp[1], 32)
-			} else {
-				a.Params[token] = strings.Trim(sp[1], " ")
-			}
-		}
-
-		accept = append(accept, a)
-	}
-
-	slice := accept_slice(accept)
-	sort.Sort(slice)
-
-	return
-}
-
-// Negotiate the most appropriate content_type given the accept header
-// and a list of alternatives.
-func Negotiate(header string, alternatives []string) (content_type string) {
-	asp := make([][]string, 0, len(alternatives))
-	for _, ctype := range alternatives {
-		asp = append(asp, strings.SplitN(ctype, "/", 2))
-	}
-	for _, clause := range ParseAccept(header) {
-		for i, ctsp := range asp {
-			if clause.Type == ctsp[0] && clause.SubType == ctsp[1] {
-				content_type = alternatives[i]
-				return
-			}
-			if clause.Type == ctsp[0] && clause.SubType == "*" {
-				content_type = alternatives[i]
-				return
-			}
-			if clause.Type == "*" && clause.SubType == "*" {
-				content_type = alternatives[i]
-				return
-			}
-		}
-	}
-	return
-}
diff --git a/vendor/github.com/prometheus/common/model/alert.go b/vendor/github.com/prometheus/common/model/alert.go
deleted file mode 100644
index 35e739c7ad..0000000000
--- a/vendor/github.com/prometheus/common/model/alert.go
+++ /dev/null
@@ -1,136 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"fmt"
-	"time"
-)
-
-type AlertStatus string
-
-const (
-	AlertFiring   AlertStatus = "firing"
-	AlertResolved AlertStatus = "resolved"
-)
-
-// Alert is a generic representation of an alert in the Prometheus eco-system.
-type Alert struct {
-	// Label value pairs for purpose of aggregation, matching, and disposition
-	// dispatching. This must minimally include an "alertname" label.
-	Labels LabelSet `json:"labels"`
-
-	// Extra key/value information which does not define alert identity.
-	Annotations LabelSet `json:"annotations"`
-
-	// The known time range for this alert. Both ends are optional.
-	StartsAt     time.Time `json:"startsAt,omitempty"`
-	EndsAt       time.Time `json:"endsAt,omitempty"`
-	GeneratorURL string    `json:"generatorURL"`
-}
-
-// Name returns the name of the alert. It is equivalent to the "alertname" label.
-func (a *Alert) Name() string {
-	return string(a.Labels[AlertNameLabel])
-}
-
-// Fingerprint returns a unique hash for the alert. It is equivalent to
-// the fingerprint of the alert's label set.
-func (a *Alert) Fingerprint() Fingerprint {
-	return a.Labels.Fingerprint()
-}
-
-func (a *Alert) String() string {
-	s := fmt.Sprintf("%s[%s]", a.Name(), a.Fingerprint().String()[:7])
-	if a.Resolved() {
-		return s + "[resolved]"
-	}
-	return s + "[active]"
-}
-
-// Resolved returns true iff the activity interval ended in the past.
-func (a *Alert) Resolved() bool {
-	return a.ResolvedAt(time.Now())
-}
-
-// ResolvedAt returns true off the activity interval ended before
-// the given timestamp.
-func (a *Alert) ResolvedAt(ts time.Time) bool {
-	if a.EndsAt.IsZero() {
-		return false
-	}
-	return !a.EndsAt.After(ts)
-}
-
-// Status returns the status of the alert.
-func (a *Alert) Status() AlertStatus {
-	if a.Resolved() {
-		return AlertResolved
-	}
-	return AlertFiring
-}
-
-// Validate checks whether the alert data is inconsistent.
-func (a *Alert) Validate() error {
-	if a.StartsAt.IsZero() {
-		return fmt.Errorf("start time missing")
-	}
-	if !a.EndsAt.IsZero() && a.EndsAt.Before(a.StartsAt) {
-		return fmt.Errorf("start time must be before end time")
-	}
-	if err := a.Labels.Validate(); err != nil {
-		return fmt.Errorf("invalid label set: %s", err)
-	}
-	if len(a.Labels) == 0 {
-		return fmt.Errorf("at least one label pair required")
-	}
-	if err := a.Annotations.Validate(); err != nil {
-		return fmt.Errorf("invalid annotations: %s", err)
-	}
-	return nil
-}
-
-// Alert is a list of alerts that can be sorted in chronological order.
-type Alerts []*Alert
-
-func (as Alerts) Len() int      { return len(as) }
-func (as Alerts) Swap(i, j int) { as[i], as[j] = as[j], as[i] }
-
-func (as Alerts) Less(i, j int) bool {
-	if as[i].StartsAt.Before(as[j].StartsAt) {
-		return true
-	}
-	if as[i].EndsAt.Before(as[j].EndsAt) {
-		return true
-	}
-	return as[i].Fingerprint() < as[j].Fingerprint()
-}
-
-// HasFiring returns true iff one of the alerts is not resolved.
-func (as Alerts) HasFiring() bool {
-	for _, a := range as {
-		if !a.Resolved() {
-			return true
-		}
-	}
-	return false
-}
-
-// Status returns StatusFiring iff at least one of the alerts is firing.
-func (as Alerts) Status() AlertStatus {
-	if as.HasFiring() {
-		return AlertFiring
-	}
-	return AlertResolved
-}
diff --git a/vendor/github.com/prometheus/common/model/fingerprinting.go b/vendor/github.com/prometheus/common/model/fingerprinting.go
deleted file mode 100644
index fc4de4106e..0000000000
--- a/vendor/github.com/prometheus/common/model/fingerprinting.go
+++ /dev/null
@@ -1,105 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"fmt"
-	"strconv"
-)
-
-// Fingerprint provides a hash-capable representation of a Metric.
-// For our purposes, FNV-1A 64-bit is used.
-type Fingerprint uint64
-
-// FingerprintFromString transforms a string representation into a Fingerprint.
-func FingerprintFromString(s string) (Fingerprint, error) {
-	num, err := strconv.ParseUint(s, 16, 64)
-	return Fingerprint(num), err
-}
-
-// ParseFingerprint parses the input string into a fingerprint.
-func ParseFingerprint(s string) (Fingerprint, error) {
-	num, err := strconv.ParseUint(s, 16, 64)
-	if err != nil {
-		return 0, err
-	}
-	return Fingerprint(num), nil
-}
-
-func (f Fingerprint) String() string {
-	return fmt.Sprintf("%016x", uint64(f))
-}
-
-// Fingerprints represents a collection of Fingerprint subject to a given
-// natural sorting scheme. It implements sort.Interface.
-type Fingerprints []Fingerprint
-
-// Len implements sort.Interface.
-func (f Fingerprints) Len() int {
-	return len(f)
-}
-
-// Less implements sort.Interface.
-func (f Fingerprints) Less(i, j int) bool {
-	return f[i] < f[j]
-}
-
-// Swap implements sort.Interface.
-func (f Fingerprints) Swap(i, j int) {
-	f[i], f[j] = f[j], f[i]
-}
-
-// FingerprintSet is a set of Fingerprints.
-type FingerprintSet map[Fingerprint]struct{}
-
-// Equal returns true if both sets contain the same elements (and not more).
-func (s FingerprintSet) Equal(o FingerprintSet) bool {
-	if len(s) != len(o) {
-		return false
-	}
-
-	for k := range s {
-		if _, ok := o[k]; !ok {
-			return false
-		}
-	}
-
-	return true
-}
-
-// Intersection returns the elements contained in both sets.
-func (s FingerprintSet) Intersection(o FingerprintSet) FingerprintSet {
-	myLength, otherLength := len(s), len(o)
-	if myLength == 0 || otherLength == 0 {
-		return FingerprintSet{}
-	}
-
-	subSet := s
-	superSet := o
-
-	if otherLength < myLength {
-		subSet = o
-		superSet = s
-	}
-
-	out := FingerprintSet{}
-
-	for k := range subSet {
-		if _, ok := superSet[k]; ok {
-			out[k] = struct{}{}
-		}
-	}
-
-	return out
-}
diff --git a/vendor/github.com/prometheus/common/model/fnv.go b/vendor/github.com/prometheus/common/model/fnv.go
deleted file mode 100644
index 038fc1c900..0000000000
--- a/vendor/github.com/prometheus/common/model/fnv.go
+++ /dev/null
@@ -1,42 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-// Inline and byte-free variant of hash/fnv's fnv64a.
-
-const (
-	offset64 = 14695981039346656037
-	prime64  = 1099511628211
-)
-
-// hashNew initializies a new fnv64a hash value.
-func hashNew() uint64 {
-	return offset64
-}
-
-// hashAdd adds a string to a fnv64a hash value, returning the updated hash.
-func hashAdd(h uint64, s string) uint64 {
-	for i := 0; i < len(s); i++ {
-		h ^= uint64(s[i])
-		h *= prime64
-	}
-	return h
-}
-
-// hashAddByte adds a byte to a fnv64a hash value, returning the updated hash.
-func hashAddByte(h uint64, b byte) uint64 {
-	h ^= uint64(b)
-	h *= prime64
-	return h
-}
diff --git a/vendor/github.com/prometheus/common/model/labels.go b/vendor/github.com/prometheus/common/model/labels.go
deleted file mode 100644
index 41051a01a3..0000000000
--- a/vendor/github.com/prometheus/common/model/labels.go
+++ /dev/null
@@ -1,210 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"encoding/json"
-	"fmt"
-	"regexp"
-	"strings"
-	"unicode/utf8"
-)
-
-const (
-	// AlertNameLabel is the name of the label containing the an alert's name.
-	AlertNameLabel = "alertname"
-
-	// ExportedLabelPrefix is the prefix to prepend to the label names present in
-	// exported metrics if a label of the same name is added by the server.
-	ExportedLabelPrefix = "exported_"
-
-	// MetricNameLabel is the label name indicating the metric name of a
-	// timeseries.
-	MetricNameLabel = "__name__"
-
-	// SchemeLabel is the name of the label that holds the scheme on which to
-	// scrape a target.
-	SchemeLabel = "__scheme__"
-
-	// AddressLabel is the name of the label that holds the address of
-	// a scrape target.
-	AddressLabel = "__address__"
-
-	// MetricsPathLabel is the name of the label that holds the path on which to
-	// scrape a target.
-	MetricsPathLabel = "__metrics_path__"
-
-	// ReservedLabelPrefix is a prefix which is not legal in user-supplied
-	// label names.
-	ReservedLabelPrefix = "__"
-
-	// MetaLabelPrefix is a prefix for labels that provide meta information.
-	// Labels with this prefix are used for intermediate label processing and
-	// will not be attached to time series.
-	MetaLabelPrefix = "__meta_"
-
-	// TmpLabelPrefix is a prefix for temporary labels as part of relabelling.
-	// Labels with this prefix are used for intermediate label processing and
-	// will not be attached to time series. This is reserved for use in
-	// Prometheus configuration files by users.
-	TmpLabelPrefix = "__tmp_"
-
-	// ParamLabelPrefix is a prefix for labels that provide URL parameters
-	// used to scrape a target.
-	ParamLabelPrefix = "__param_"
-
-	// JobLabel is the label name indicating the job from which a timeseries
-	// was scraped.
-	JobLabel = "job"
-
-	// InstanceLabel is the label name used for the instance label.
-	InstanceLabel = "instance"
-
-	// BucketLabel is used for the label that defines the upper bound of a
-	// bucket of a histogram ("le" -> "less or equal").
-	BucketLabel = "le"
-
-	// QuantileLabel is used for the label that defines the quantile in a
-	// summary.
-	QuantileLabel = "quantile"
-)
-
-// LabelNameRE is a regular expression matching valid label names. Note that the
-// IsValid method of LabelName performs the same check but faster than a match
-// with this regular expression.
-var LabelNameRE = regexp.MustCompile("^[a-zA-Z_][a-zA-Z0-9_]*$")
-
-// A LabelName is a key for a LabelSet or Metric.  It has a value associated
-// therewith.
-type LabelName string
-
-// IsValid is true iff the label name matches the pattern of LabelNameRE. This
-// method, however, does not use LabelNameRE for the check but a much faster
-// hardcoded implementation.
-func (ln LabelName) IsValid() bool {
-	if len(ln) == 0 {
-		return false
-	}
-	for i, b := range ln {
-		if !((b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_' || (b >= '0' && b <= '9' && i > 0)) {
-			return false
-		}
-	}
-	return true
-}
-
-// UnmarshalYAML implements the yaml.Unmarshaler interface.
-func (ln *LabelName) UnmarshalYAML(unmarshal func(interface{}) error) error {
-	var s string
-	if err := unmarshal(&s); err != nil {
-		return err
-	}
-	if !LabelName(s).IsValid() {
-		return fmt.Errorf("%q is not a valid label name", s)
-	}
-	*ln = LabelName(s)
-	return nil
-}
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (ln *LabelName) UnmarshalJSON(b []byte) error {
-	var s string
-	if err := json.Unmarshal(b, &s); err != nil {
-		return err
-	}
-	if !LabelName(s).IsValid() {
-		return fmt.Errorf("%q is not a valid label name", s)
-	}
-	*ln = LabelName(s)
-	return nil
-}
-
-// LabelNames is a sortable LabelName slice. In implements sort.Interface.
-type LabelNames []LabelName
-
-func (l LabelNames) Len() int {
-	return len(l)
-}
-
-func (l LabelNames) Less(i, j int) bool {
-	return l[i] < l[j]
-}
-
-func (l LabelNames) Swap(i, j int) {
-	l[i], l[j] = l[j], l[i]
-}
-
-func (l LabelNames) String() string {
-	labelStrings := make([]string, 0, len(l))
-	for _, label := range l {
-		labelStrings = append(labelStrings, string(label))
-	}
-	return strings.Join(labelStrings, ", ")
-}
-
-// A LabelValue is an associated value for a LabelName.
-type LabelValue string
-
-// IsValid returns true iff the string is a valid UTF8.
-func (lv LabelValue) IsValid() bool {
-	return utf8.ValidString(string(lv))
-}
-
-// LabelValues is a sortable LabelValue slice. It implements sort.Interface.
-type LabelValues []LabelValue
-
-func (l LabelValues) Len() int {
-	return len(l)
-}
-
-func (l LabelValues) Less(i, j int) bool {
-	return string(l[i]) < string(l[j])
-}
-
-func (l LabelValues) Swap(i, j int) {
-	l[i], l[j] = l[j], l[i]
-}
-
-// LabelPair pairs a name with a value.
-type LabelPair struct {
-	Name  LabelName
-	Value LabelValue
-}
-
-// LabelPairs is a sortable slice of LabelPair pointers. It implements
-// sort.Interface.
-type LabelPairs []*LabelPair
-
-func (l LabelPairs) Len() int {
-	return len(l)
-}
-
-func (l LabelPairs) Less(i, j int) bool {
-	switch {
-	case l[i].Name > l[j].Name:
-		return false
-	case l[i].Name < l[j].Name:
-		return true
-	case l[i].Value > l[j].Value:
-		return false
-	case l[i].Value < l[j].Value:
-		return true
-	default:
-		return false
-	}
-}
-
-func (l LabelPairs) Swap(i, j int) {
-	l[i], l[j] = l[j], l[i]
-}
diff --git a/vendor/github.com/prometheus/common/model/labelset.go b/vendor/github.com/prometheus/common/model/labelset.go
deleted file mode 100644
index 6eda08a739..0000000000
--- a/vendor/github.com/prometheus/common/model/labelset.go
+++ /dev/null
@@ -1,169 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"encoding/json"
-	"fmt"
-	"sort"
-	"strings"
-)
-
-// A LabelSet is a collection of LabelName and LabelValue pairs.  The LabelSet
-// may be fully-qualified down to the point where it may resolve to a single
-// Metric in the data store or not.  All operations that occur within the realm
-// of a LabelSet can emit a vector of Metric entities to which the LabelSet may
-// match.
-type LabelSet map[LabelName]LabelValue
-
-// Validate checks whether all names and values in the label set
-// are valid.
-func (ls LabelSet) Validate() error {
-	for ln, lv := range ls {
-		if !ln.IsValid() {
-			return fmt.Errorf("invalid name %q", ln)
-		}
-		if !lv.IsValid() {
-			return fmt.Errorf("invalid value %q", lv)
-		}
-	}
-	return nil
-}
-
-// Equal returns true iff both label sets have exactly the same key/value pairs.
-func (ls LabelSet) Equal(o LabelSet) bool {
-	if len(ls) != len(o) {
-		return false
-	}
-	for ln, lv := range ls {
-		olv, ok := o[ln]
-		if !ok {
-			return false
-		}
-		if olv != lv {
-			return false
-		}
-	}
-	return true
-}
-
-// Before compares the metrics, using the following criteria:
-//
-// If m has fewer labels than o, it is before o. If it has more, it is not.
-//
-// If the number of labels is the same, the superset of all label names is
-// sorted alphanumerically. The first differing label pair found in that order
-// determines the outcome: If the label does not exist at all in m, then m is
-// before o, and vice versa. Otherwise the label value is compared
-// alphanumerically.
-//
-// If m and o are equal, the method returns false.
-func (ls LabelSet) Before(o LabelSet) bool {
-	if len(ls) < len(o) {
-		return true
-	}
-	if len(ls) > len(o) {
-		return false
-	}
-
-	lns := make(LabelNames, 0, len(ls)+len(o))
-	for ln := range ls {
-		lns = append(lns, ln)
-	}
-	for ln := range o {
-		lns = append(lns, ln)
-	}
-	// It's probably not worth it to de-dup lns.
-	sort.Sort(lns)
-	for _, ln := range lns {
-		mlv, ok := ls[ln]
-		if !ok {
-			return true
-		}
-		olv, ok := o[ln]
-		if !ok {
-			return false
-		}
-		if mlv < olv {
-			return true
-		}
-		if mlv > olv {
-			return false
-		}
-	}
-	return false
-}
-
-// Clone returns a copy of the label set.
-func (ls LabelSet) Clone() LabelSet {
-	lsn := make(LabelSet, len(ls))
-	for ln, lv := range ls {
-		lsn[ln] = lv
-	}
-	return lsn
-}
-
-// Merge is a helper function to non-destructively merge two label sets.
-func (l LabelSet) Merge(other LabelSet) LabelSet {
-	result := make(LabelSet, len(l))
-
-	for k, v := range l {
-		result[k] = v
-	}
-
-	for k, v := range other {
-		result[k] = v
-	}
-
-	return result
-}
-
-func (l LabelSet) String() string {
-	lstrs := make([]string, 0, len(l))
-	for l, v := range l {
-		lstrs = append(lstrs, fmt.Sprintf("%s=%q", l, v))
-	}
-
-	sort.Strings(lstrs)
-	return fmt.Sprintf("{%s}", strings.Join(lstrs, ", "))
-}
-
-// Fingerprint returns the LabelSet's fingerprint.
-func (ls LabelSet) Fingerprint() Fingerprint {
-	return labelSetToFingerprint(ls)
-}
-
-// FastFingerprint returns the LabelSet's Fingerprint calculated by a faster hashing
-// algorithm, which is, however, more susceptible to hash collisions.
-func (ls LabelSet) FastFingerprint() Fingerprint {
-	return labelSetToFastFingerprint(ls)
-}
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (l *LabelSet) UnmarshalJSON(b []byte) error {
-	var m map[LabelName]LabelValue
-	if err := json.Unmarshal(b, &m); err != nil {
-		return err
-	}
-	// encoding/json only unmarshals maps of the form map[string]T. It treats
-	// LabelName as a string and does not call its UnmarshalJSON method.
-	// Thus, we have to replicate the behavior here.
-	for ln := range m {
-		if !ln.IsValid() {
-			return fmt.Errorf("%q is not a valid label name", ln)
-		}
-	}
-	*l = LabelSet(m)
-	return nil
-}
diff --git a/vendor/github.com/prometheus/common/model/metric.go b/vendor/github.com/prometheus/common/model/metric.go
deleted file mode 100644
index f7250909b9..0000000000
--- a/vendor/github.com/prometheus/common/model/metric.go
+++ /dev/null
@@ -1,103 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"fmt"
-	"regexp"
-	"sort"
-	"strings"
-)
-
-var (
-	separator = []byte{0}
-	// MetricNameRE is a regular expression matching valid metric
-	// names. Note that the IsValidMetricName function performs the same
-	// check but faster than a match with this regular expression.
-	MetricNameRE = regexp.MustCompile(`^[a-zA-Z_:][a-zA-Z0-9_:]*$`)
-)
-
-// A Metric is similar to a LabelSet, but the key difference is that a Metric is
-// a singleton and refers to one and only one stream of samples.
-type Metric LabelSet
-
-// Equal compares the metrics.
-func (m Metric) Equal(o Metric) bool {
-	return LabelSet(m).Equal(LabelSet(o))
-}
-
-// Before compares the metrics' underlying label sets.
-func (m Metric) Before(o Metric) bool {
-	return LabelSet(m).Before(LabelSet(o))
-}
-
-// Clone returns a copy of the Metric.
-func (m Metric) Clone() Metric {
-	clone := make(Metric, len(m))
-	for k, v := range m {
-		clone[k] = v
-	}
-	return clone
-}
-
-func (m Metric) String() string {
-	metricName, hasName := m[MetricNameLabel]
-	numLabels := len(m) - 1
-	if !hasName {
-		numLabels = len(m)
-	}
-	labelStrings := make([]string, 0, numLabels)
-	for label, value := range m {
-		if label != MetricNameLabel {
-			labelStrings = append(labelStrings, fmt.Sprintf("%s=%q", label, value))
-		}
-	}
-
-	switch numLabels {
-	case 0:
-		if hasName {
-			return string(metricName)
-		}
-		return "{}"
-	default:
-		sort.Strings(labelStrings)
-		return fmt.Sprintf("%s{%s}", metricName, strings.Join(labelStrings, ", "))
-	}
-}
-
-// Fingerprint returns a Metric's Fingerprint.
-func (m Metric) Fingerprint() Fingerprint {
-	return LabelSet(m).Fingerprint()
-}
-
-// FastFingerprint returns a Metric's Fingerprint calculated by a faster hashing
-// algorithm, which is, however, more susceptible to hash collisions.
-func (m Metric) FastFingerprint() Fingerprint {
-	return LabelSet(m).FastFingerprint()
-}
-
-// IsValidMetricName returns true iff name matches the pattern of MetricNameRE.
-// This function, however, does not use MetricNameRE for the check but a much
-// faster hardcoded implementation.
-func IsValidMetricName(n LabelValue) bool {
-	if len(n) == 0 {
-		return false
-	}
-	for i, b := range n {
-		if !((b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_' || b == ':' || (b >= '0' && b <= '9' && i > 0)) {
-			return false
-		}
-	}
-	return true
-}
diff --git a/vendor/github.com/prometheus/common/model/signature.go b/vendor/github.com/prometheus/common/model/signature.go
deleted file mode 100644
index 8762b13c63..0000000000
--- a/vendor/github.com/prometheus/common/model/signature.go
+++ /dev/null
@@ -1,144 +0,0 @@
-// Copyright 2014 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"sort"
-)
-
-// SeparatorByte is a byte that cannot occur in valid UTF-8 sequences and is
-// used to separate label names, label values, and other strings from each other
-// when calculating their combined hash value (aka signature aka fingerprint).
-const SeparatorByte byte = 255
-
-var (
-	// cache the signature of an empty label set.
-	emptyLabelSignature = hashNew()
-)
-
-// LabelsToSignature returns a quasi-unique signature (i.e., fingerprint) for a
-// given label set. (Collisions are possible but unlikely if the number of label
-// sets the function is applied to is small.)
-func LabelsToSignature(labels map[string]string) uint64 {
-	if len(labels) == 0 {
-		return emptyLabelSignature
-	}
-
-	labelNames := make([]string, 0, len(labels))
-	for labelName := range labels {
-		labelNames = append(labelNames, labelName)
-	}
-	sort.Strings(labelNames)
-
-	sum := hashNew()
-	for _, labelName := range labelNames {
-		sum = hashAdd(sum, labelName)
-		sum = hashAddByte(sum, SeparatorByte)
-		sum = hashAdd(sum, labels[labelName])
-		sum = hashAddByte(sum, SeparatorByte)
-	}
-	return sum
-}
-
-// labelSetToFingerprint works exactly as LabelsToSignature but takes a LabelSet as
-// parameter (rather than a label map) and returns a Fingerprint.
-func labelSetToFingerprint(ls LabelSet) Fingerprint {
-	if len(ls) == 0 {
-		return Fingerprint(emptyLabelSignature)
-	}
-
-	labelNames := make(LabelNames, 0, len(ls))
-	for labelName := range ls {
-		labelNames = append(labelNames, labelName)
-	}
-	sort.Sort(labelNames)
-
-	sum := hashNew()
-	for _, labelName := range labelNames {
-		sum = hashAdd(sum, string(labelName))
-		sum = hashAddByte(sum, SeparatorByte)
-		sum = hashAdd(sum, string(ls[labelName]))
-		sum = hashAddByte(sum, SeparatorByte)
-	}
-	return Fingerprint(sum)
-}
-
-// labelSetToFastFingerprint works similar to labelSetToFingerprint but uses a
-// faster and less allocation-heavy hash function, which is more susceptible to
-// create hash collisions. Therefore, collision detection should be applied.
-func labelSetToFastFingerprint(ls LabelSet) Fingerprint {
-	if len(ls) == 0 {
-		return Fingerprint(emptyLabelSignature)
-	}
-
-	var result uint64
-	for labelName, labelValue := range ls {
-		sum := hashNew()
-		sum = hashAdd(sum, string(labelName))
-		sum = hashAddByte(sum, SeparatorByte)
-		sum = hashAdd(sum, string(labelValue))
-		result ^= sum
-	}
-	return Fingerprint(result)
-}
-
-// SignatureForLabels works like LabelsToSignature but takes a Metric as
-// parameter (rather than a label map) and only includes the labels with the
-// specified LabelNames into the signature calculation. The labels passed in
-// will be sorted by this function.
-func SignatureForLabels(m Metric, labels ...LabelName) uint64 {
-	if len(labels) == 0 {
-		return emptyLabelSignature
-	}
-
-	sort.Sort(LabelNames(labels))
-
-	sum := hashNew()
-	for _, label := range labels {
-		sum = hashAdd(sum, string(label))
-		sum = hashAddByte(sum, SeparatorByte)
-		sum = hashAdd(sum, string(m[label]))
-		sum = hashAddByte(sum, SeparatorByte)
-	}
-	return sum
-}
-
-// SignatureWithoutLabels works like LabelsToSignature but takes a Metric as
-// parameter (rather than a label map) and excludes the labels with any of the
-// specified LabelNames from the signature calculation.
-func SignatureWithoutLabels(m Metric, labels map[LabelName]struct{}) uint64 {
-	if len(m) == 0 {
-		return emptyLabelSignature
-	}
-
-	labelNames := make(LabelNames, 0, len(m))
-	for labelName := range m {
-		if _, exclude := labels[labelName]; !exclude {
-			labelNames = append(labelNames, labelName)
-		}
-	}
-	if len(labelNames) == 0 {
-		return emptyLabelSignature
-	}
-	sort.Sort(labelNames)
-
-	sum := hashNew()
-	for _, labelName := range labelNames {
-		sum = hashAdd(sum, string(labelName))
-		sum = hashAddByte(sum, SeparatorByte)
-		sum = hashAdd(sum, string(m[labelName]))
-		sum = hashAddByte(sum, SeparatorByte)
-	}
-	return sum
-}
diff --git a/vendor/github.com/prometheus/common/model/silence.go b/vendor/github.com/prometheus/common/model/silence.go
deleted file mode 100644
index bb99889d2c..0000000000
--- a/vendor/github.com/prometheus/common/model/silence.go
+++ /dev/null
@@ -1,106 +0,0 @@
-// Copyright 2015 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"encoding/json"
-	"fmt"
-	"regexp"
-	"time"
-)
-
-// Matcher describes a matches the value of a given label.
-type Matcher struct {
-	Name    LabelName `json:"name"`
-	Value   string    `json:"value"`
-	IsRegex bool      `json:"isRegex"`
-}
-
-func (m *Matcher) UnmarshalJSON(b []byte) error {
-	type plain Matcher
-	if err := json.Unmarshal(b, (*plain)(m)); err != nil {
-		return err
-	}
-
-	if len(m.Name) == 0 {
-		return fmt.Errorf("label name in matcher must not be empty")
-	}
-	if m.IsRegex {
-		if _, err := regexp.Compile(m.Value); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// Validate returns true iff all fields of the matcher have valid values.
-func (m *Matcher) Validate() error {
-	if !m.Name.IsValid() {
-		return fmt.Errorf("invalid name %q", m.Name)
-	}
-	if m.IsRegex {
-		if _, err := regexp.Compile(m.Value); err != nil {
-			return fmt.Errorf("invalid regular expression %q", m.Value)
-		}
-	} else if !LabelValue(m.Value).IsValid() || len(m.Value) == 0 {
-		return fmt.Errorf("invalid value %q", m.Value)
-	}
-	return nil
-}
-
-// Silence defines the representation of a silence definition in the Prometheus
-// eco-system.
-type Silence struct {
-	ID uint64 `json:"id,omitempty"`
-
-	Matchers []*Matcher `json:"matchers"`
-
-	StartsAt time.Time `json:"startsAt"`
-	EndsAt   time.Time `json:"endsAt"`
-
-	CreatedAt time.Time `json:"createdAt,omitempty"`
-	CreatedBy string    `json:"createdBy"`
-	Comment   string    `json:"comment,omitempty"`
-}
-
-// Validate returns true iff all fields of the silence have valid values.
-func (s *Silence) Validate() error {
-	if len(s.Matchers) == 0 {
-		return fmt.Errorf("at least one matcher required")
-	}
-	for _, m := range s.Matchers {
-		if err := m.Validate(); err != nil {
-			return fmt.Errorf("invalid matcher: %s", err)
-		}
-	}
-	if s.StartsAt.IsZero() {
-		return fmt.Errorf("start time missing")
-	}
-	if s.EndsAt.IsZero() {
-		return fmt.Errorf("end time missing")
-	}
-	if s.EndsAt.Before(s.StartsAt) {
-		return fmt.Errorf("start time must be before end time")
-	}
-	if s.CreatedBy == "" {
-		return fmt.Errorf("creator information missing")
-	}
-	if s.Comment == "" {
-		return fmt.Errorf("comment missing")
-	}
-	if s.CreatedAt.IsZero() {
-		return fmt.Errorf("creation timestamp missing")
-	}
-	return nil
-}
diff --git a/vendor/github.com/prometheus/common/model/time.go b/vendor/github.com/prometheus/common/model/time.go
deleted file mode 100644
index 74ed5a9f7e..0000000000
--- a/vendor/github.com/prometheus/common/model/time.go
+++ /dev/null
@@ -1,264 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"fmt"
-	"math"
-	"regexp"
-	"strconv"
-	"strings"
-	"time"
-)
-
-const (
-	// MinimumTick is the minimum supported time resolution. This has to be
-	// at least time.Second in order for the code below to work.
-	minimumTick = time.Millisecond
-	// second is the Time duration equivalent to one second.
-	second = int64(time.Second / minimumTick)
-	// The number of nanoseconds per minimum tick.
-	nanosPerTick = int64(minimumTick / time.Nanosecond)
-
-	// Earliest is the earliest Time representable. Handy for
-	// initializing a high watermark.
-	Earliest = Time(math.MinInt64)
-	// Latest is the latest Time representable. Handy for initializing
-	// a low watermark.
-	Latest = Time(math.MaxInt64)
-)
-
-// Time is the number of milliseconds since the epoch
-// (1970-01-01 00:00 UTC) excluding leap seconds.
-type Time int64
-
-// Interval describes and interval between two timestamps.
-type Interval struct {
-	Start, End Time
-}
-
-// Now returns the current time as a Time.
-func Now() Time {
-	return TimeFromUnixNano(time.Now().UnixNano())
-}
-
-// TimeFromUnix returns the Time equivalent to the Unix Time t
-// provided in seconds.
-func TimeFromUnix(t int64) Time {
-	return Time(t * second)
-}
-
-// TimeFromUnixNano returns the Time equivalent to the Unix Time
-// t provided in nanoseconds.
-func TimeFromUnixNano(t int64) Time {
-	return Time(t / nanosPerTick)
-}
-
-// Equal reports whether two Times represent the same instant.
-func (t Time) Equal(o Time) bool {
-	return t == o
-}
-
-// Before reports whether the Time t is before o.
-func (t Time) Before(o Time) bool {
-	return t < o
-}
-
-// After reports whether the Time t is after o.
-func (t Time) After(o Time) bool {
-	return t > o
-}
-
-// Add returns the Time t + d.
-func (t Time) Add(d time.Duration) Time {
-	return t + Time(d/minimumTick)
-}
-
-// Sub returns the Duration t - o.
-func (t Time) Sub(o Time) time.Duration {
-	return time.Duration(t-o) * minimumTick
-}
-
-// Time returns the time.Time representation of t.
-func (t Time) Time() time.Time {
-	return time.Unix(int64(t)/second, (int64(t)%second)*nanosPerTick)
-}
-
-// Unix returns t as a Unix time, the number of seconds elapsed
-// since January 1, 1970 UTC.
-func (t Time) Unix() int64 {
-	return int64(t) / second
-}
-
-// UnixNano returns t as a Unix time, the number of nanoseconds elapsed
-// since January 1, 1970 UTC.
-func (t Time) UnixNano() int64 {
-	return int64(t) * nanosPerTick
-}
-
-// The number of digits after the dot.
-var dotPrecision = int(math.Log10(float64(second)))
-
-// String returns a string representation of the Time.
-func (t Time) String() string {
-	return strconv.FormatFloat(float64(t)/float64(second), 'f', -1, 64)
-}
-
-// MarshalJSON implements the json.Marshaler interface.
-func (t Time) MarshalJSON() ([]byte, error) {
-	return []byte(t.String()), nil
-}
-
-// UnmarshalJSON implements the json.Unmarshaler interface.
-func (t *Time) UnmarshalJSON(b []byte) error {
-	p := strings.Split(string(b), ".")
-	switch len(p) {
-	case 1:
-		v, err := strconv.ParseInt(string(p[0]), 10, 64)
-		if err != nil {
-			return err
-		}
-		*t = Time(v * second)
-
-	case 2:
-		v, err := strconv.ParseInt(string(p[0]), 10, 64)
-		if err != nil {
-			return err
-		}
-		v *= second
-
-		prec := dotPrecision - len(p[1])
-		if prec < 0 {
-			p[1] = p[1][:dotPrecision]
-		} else if prec > 0 {
-			p[1] = p[1] + strings.Repeat("0", prec)
-		}
-
-		va, err := strconv.ParseInt(p[1], 10, 32)
-		if err != nil {
-			return err
-		}
-
-		*t = Time(v + va)
-
-	default:
-		return fmt.Errorf("invalid time %q", string(b))
-	}
-	return nil
-}
-
-// Duration wraps time.Duration. It is used to parse the custom duration format
-// from YAML.
-// This type should not propagate beyond the scope of input/output processing.
-type Duration time.Duration
-
-// Set implements pflag/flag.Value
-func (d *Duration) Set(s string) error {
-	var err error
-	*d, err = ParseDuration(s)
-	return err
-}
-
-// Type implements pflag.Value
-func (d *Duration) Type() string {
-	return "duration"
-}
-
-var durationRE = regexp.MustCompile("^([0-9]+)(y|w|d|h|m|s|ms)$")
-
-// ParseDuration parses a string into a time.Duration, assuming that a year
-// always has 365d, a week always has 7d, and a day always has 24h.
-func ParseDuration(durationStr string) (Duration, error) {
-	matches := durationRE.FindStringSubmatch(durationStr)
-	if len(matches) != 3 {
-		return 0, fmt.Errorf("not a valid duration string: %q", durationStr)
-	}
-	var (
-		n, _ = strconv.Atoi(matches[1])
-		dur  = time.Duration(n) * time.Millisecond
-	)
-	switch unit := matches[2]; unit {
-	case "y":
-		dur *= 1000 * 60 * 60 * 24 * 365
-	case "w":
-		dur *= 1000 * 60 * 60 * 24 * 7
-	case "d":
-		dur *= 1000 * 60 * 60 * 24
-	case "h":
-		dur *= 1000 * 60 * 60
-	case "m":
-		dur *= 1000 * 60
-	case "s":
-		dur *= 1000
-	case "ms":
-		// Value already correct
-	default:
-		return 0, fmt.Errorf("invalid time unit in duration string: %q", unit)
-	}
-	return Duration(dur), nil
-}
-
-func (d Duration) String() string {
-	var (
-		ms   = int64(time.Duration(d) / time.Millisecond)
-		unit = "ms"
-	)
-	if ms == 0 {
-		return "0s"
-	}
-	factors := map[string]int64{
-		"y":  1000 * 60 * 60 * 24 * 365,
-		"w":  1000 * 60 * 60 * 24 * 7,
-		"d":  1000 * 60 * 60 * 24,
-		"h":  1000 * 60 * 60,
-		"m":  1000 * 60,
-		"s":  1000,
-		"ms": 1,
-	}
-
-	switch int64(0) {
-	case ms % factors["y"]:
-		unit = "y"
-	case ms % factors["w"]:
-		unit = "w"
-	case ms % factors["d"]:
-		unit = "d"
-	case ms % factors["h"]:
-		unit = "h"
-	case ms % factors["m"]:
-		unit = "m"
-	case ms % factors["s"]:
-		unit = "s"
-	}
-	return fmt.Sprintf("%v%v", ms/factors[unit], unit)
-}
-
-// MarshalYAML implements the yaml.Marshaler interface.
-func (d Duration) MarshalYAML() (interface{}, error) {
-	return d.String(), nil
-}
-
-// UnmarshalYAML implements the yaml.Unmarshaler interface.
-func (d *Duration) UnmarshalYAML(unmarshal func(interface{}) error) error {
-	var s string
-	if err := unmarshal(&s); err != nil {
-		return err
-	}
-	dur, err := ParseDuration(s)
-	if err != nil {
-		return err
-	}
-	*d = dur
-	return nil
-}
diff --git a/vendor/github.com/prometheus/common/model/value.go b/vendor/github.com/prometheus/common/model/value.go
deleted file mode 100644
index c9d8fb1a28..0000000000
--- a/vendor/github.com/prometheus/common/model/value.go
+++ /dev/null
@@ -1,416 +0,0 @@
-// Copyright 2013 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package model
-
-import (
-	"encoding/json"
-	"fmt"
-	"math"
-	"sort"
-	"strconv"
-	"strings"
-)
-
-var (
-	// ZeroSamplePair is the pseudo zero-value of SamplePair used to signal a
-	// non-existing sample pair. It is a SamplePair with timestamp Earliest and
-	// value 0.0. Note that the natural zero value of SamplePair has a timestamp
-	// of 0, which is possible to appear in a real SamplePair and thus not
-	// suitable to signal a non-existing SamplePair.
-	ZeroSamplePair = SamplePair{Timestamp: Earliest}
-
-	// ZeroSample is the pseudo zero-value of Sample used to signal a
-	// non-existing sample. It is a Sample with timestamp Earliest, value 0.0,
-	// and metric nil. Note that the natural zero value of Sample has a timestamp
-	// of 0, which is possible to appear in a real Sample and thus not suitable
-	// to signal a non-existing Sample.
-	ZeroSample = Sample{Timestamp: Earliest}
-)
-
-// A SampleValue is a representation of a value for a given sample at a given
-// time.
-type SampleValue float64
-
-// MarshalJSON implements json.Marshaler.
-func (v SampleValue) MarshalJSON() ([]byte, error) {
-	return json.Marshal(v.String())
-}
-
-// UnmarshalJSON implements json.Unmarshaler.
-func (v *SampleValue) UnmarshalJSON(b []byte) error {
-	if len(b) < 2 || b[0] != '"' || b[len(b)-1] != '"' {
-		return fmt.Errorf("sample value must be a quoted string")
-	}
-	f, err := strconv.ParseFloat(string(b[1:len(b)-1]), 64)
-	if err != nil {
-		return err
-	}
-	*v = SampleValue(f)
-	return nil
-}
-
-// Equal returns true if the value of v and o is equal or if both are NaN. Note
-// that v==o is false if both are NaN. If you want the conventional float
-// behavior, use == to compare two SampleValues.
-func (v SampleValue) Equal(o SampleValue) bool {
-	if v == o {
-		return true
-	}
-	return math.IsNaN(float64(v)) && math.IsNaN(float64(o))
-}
-
-func (v SampleValue) String() string {
-	return strconv.FormatFloat(float64(v), 'f', -1, 64)
-}
-
-// SamplePair pairs a SampleValue with a Timestamp.
-type SamplePair struct {
-	Timestamp Time
-	Value     SampleValue
-}
-
-// MarshalJSON implements json.Marshaler.
-func (s SamplePair) MarshalJSON() ([]byte, error) {
-	t, err := json.Marshal(s.Timestamp)
-	if err != nil {
-		return nil, err
-	}
-	v, err := json.Marshal(s.Value)
-	if err != nil {
-		return nil, err
-	}
-	return []byte(fmt.Sprintf("[%s,%s]", t, v)), nil
-}
-
-// UnmarshalJSON implements json.Unmarshaler.
-func (s *SamplePair) UnmarshalJSON(b []byte) error {
-	v := [...]json.Unmarshaler{&s.Timestamp, &s.Value}
-	return json.Unmarshal(b, &v)
-}
-
-// Equal returns true if this SamplePair and o have equal Values and equal
-// Timestamps. The semantics of Value equality is defined by SampleValue.Equal.
-func (s *SamplePair) Equal(o *SamplePair) bool {
-	return s == o || (s.Value.Equal(o.Value) && s.Timestamp.Equal(o.Timestamp))
-}
-
-func (s SamplePair) String() string {
-	return fmt.Sprintf("%s @[%s]", s.Value, s.Timestamp)
-}
-
-// Sample is a sample pair associated with a metric.
-type Sample struct {
-	Metric    Metric      `json:"metric"`
-	Value     SampleValue `json:"value"`
-	Timestamp Time        `json:"timestamp"`
-}
-
-// Equal compares first the metrics, then the timestamp, then the value. The
-// semantics of value equality is defined by SampleValue.Equal.
-func (s *Sample) Equal(o *Sample) bool {
-	if s == o {
-		return true
-	}
-
-	if !s.Metric.Equal(o.Metric) {
-		return false
-	}
-	if !s.Timestamp.Equal(o.Timestamp) {
-		return false
-	}
-
-	return s.Value.Equal(o.Value)
-}
-
-func (s Sample) String() string {
-	return fmt.Sprintf("%s => %s", s.Metric, SamplePair{
-		Timestamp: s.Timestamp,
-		Value:     s.Value,
-	})
-}
-
-// MarshalJSON implements json.Marshaler.
-func (s Sample) MarshalJSON() ([]byte, error) {
-	v := struct {
-		Metric Metric     `json:"metric"`
-		Value  SamplePair `json:"value"`
-	}{
-		Metric: s.Metric,
-		Value: SamplePair{
-			Timestamp: s.Timestamp,
-			Value:     s.Value,
-		},
-	}
-
-	return json.Marshal(&v)
-}
-
-// UnmarshalJSON implements json.Unmarshaler.
-func (s *Sample) UnmarshalJSON(b []byte) error {
-	v := struct {
-		Metric Metric     `json:"metric"`
-		Value  SamplePair `json:"value"`
-	}{
-		Metric: s.Metric,
-		Value: SamplePair{
-			Timestamp: s.Timestamp,
-			Value:     s.Value,
-		},
-	}
-
-	if err := json.Unmarshal(b, &v); err != nil {
-		return err
-	}
-
-	s.Metric = v.Metric
-	s.Timestamp = v.Value.Timestamp
-	s.Value = v.Value.Value
-
-	return nil
-}
-
-// Samples is a sortable Sample slice. It implements sort.Interface.
-type Samples []*Sample
-
-func (s Samples) Len() int {
-	return len(s)
-}
-
-// Less compares first the metrics, then the timestamp.
-func (s Samples) Less(i, j int) bool {
-	switch {
-	case s[i].Metric.Before(s[j].Metric):
-		return true
-	case s[j].Metric.Before(s[i].Metric):
-		return false
-	case s[i].Timestamp.Before(s[j].Timestamp):
-		return true
-	default:
-		return false
-	}
-}
-
-func (s Samples) Swap(i, j int) {
-	s[i], s[j] = s[j], s[i]
-}
-
-// Equal compares two sets of samples and returns true if they are equal.
-func (s Samples) Equal(o Samples) bool {
-	if len(s) != len(o) {
-		return false
-	}
-
-	for i, sample := range s {
-		if !sample.Equal(o[i]) {
-			return false
-		}
-	}
-	return true
-}
-
-// SampleStream is a stream of Values belonging to an attached COWMetric.
-type SampleStream struct {
-	Metric Metric       `json:"metric"`
-	Values []SamplePair `json:"values"`
-}
-
-func (ss SampleStream) String() string {
-	vals := make([]string, len(ss.Values))
-	for i, v := range ss.Values {
-		vals[i] = v.String()
-	}
-	return fmt.Sprintf("%s =>\n%s", ss.Metric, strings.Join(vals, "\n"))
-}
-
-// Value is a generic interface for values resulting from a query evaluation.
-type Value interface {
-	Type() ValueType
-	String() string
-}
-
-func (Matrix) Type() ValueType  { return ValMatrix }
-func (Vector) Type() ValueType  { return ValVector }
-func (*Scalar) Type() ValueType { return ValScalar }
-func (*String) Type() ValueType { return ValString }
-
-type ValueType int
-
-const (
-	ValNone ValueType = iota
-	ValScalar
-	ValVector
-	ValMatrix
-	ValString
-)
-
-// MarshalJSON implements json.Marshaler.
-func (et ValueType) MarshalJSON() ([]byte, error) {
-	return json.Marshal(et.String())
-}
-
-func (et *ValueType) UnmarshalJSON(b []byte) error {
-	var s string
-	if err := json.Unmarshal(b, &s); err != nil {
-		return err
-	}
-	switch s {
-	case "<ValNone>":
-		*et = ValNone
-	case "scalar":
-		*et = ValScalar
-	case "vector":
-		*et = ValVector
-	case "matrix":
-		*et = ValMatrix
-	case "string":
-		*et = ValString
-	default:
-		return fmt.Errorf("unknown value type %q", s)
-	}
-	return nil
-}
-
-func (e ValueType) String() string {
-	switch e {
-	case ValNone:
-		return "<ValNone>"
-	case ValScalar:
-		return "scalar"
-	case ValVector:
-		return "vector"
-	case ValMatrix:
-		return "matrix"
-	case ValString:
-		return "string"
-	}
-	panic("ValueType.String: unhandled value type")
-}
-
-// Scalar is a scalar value evaluated at the set timestamp.
-type Scalar struct {
-	Value     SampleValue `json:"value"`
-	Timestamp Time        `json:"timestamp"`
-}
-
-func (s Scalar) String() string {
-	return fmt.Sprintf("scalar: %v @[%v]", s.Value, s.Timestamp)
-}
-
-// MarshalJSON implements json.Marshaler.
-func (s Scalar) MarshalJSON() ([]byte, error) {
-	v := strconv.FormatFloat(float64(s.Value), 'f', -1, 64)
-	return json.Marshal([...]interface{}{s.Timestamp, string(v)})
-}
-
-// UnmarshalJSON implements json.Unmarshaler.
-func (s *Scalar) UnmarshalJSON(b []byte) error {
-	var f string
-	v := [...]interface{}{&s.Timestamp, &f}
-
-	if err := json.Unmarshal(b, &v); err != nil {
-		return err
-	}
-
-	value, err := strconv.ParseFloat(f, 64)
-	if err != nil {
-		return fmt.Errorf("error parsing sample value: %s", err)
-	}
-	s.Value = SampleValue(value)
-	return nil
-}
-
-// String is a string value evaluated at the set timestamp.
-type String struct {
-	Value     string `json:"value"`
-	Timestamp Time   `json:"timestamp"`
-}
-
-func (s *String) String() string {
-	return s.Value
-}
-
-// MarshalJSON implements json.Marshaler.
-func (s String) MarshalJSON() ([]byte, error) {
-	return json.Marshal([]interface{}{s.Timestamp, s.Value})
-}
-
-// UnmarshalJSON implements json.Unmarshaler.
-func (s *String) UnmarshalJSON(b []byte) error {
-	v := [...]interface{}{&s.Timestamp, &s.Value}
-	return json.Unmarshal(b, &v)
-}
-
-// Vector is basically only an alias for Samples, but the
-// contract is that in a Vector, all Samples have the same timestamp.
-type Vector []*Sample
-
-func (vec Vector) String() string {
-	entries := make([]string, len(vec))
-	for i, s := range vec {
-		entries[i] = s.String()
-	}
-	return strings.Join(entries, "\n")
-}
-
-func (vec Vector) Len() int      { return len(vec) }
-func (vec Vector) Swap(i, j int) { vec[i], vec[j] = vec[j], vec[i] }
-
-// Less compares first the metrics, then the timestamp.
-func (vec Vector) Less(i, j int) bool {
-	switch {
-	case vec[i].Metric.Before(vec[j].Metric):
-		return true
-	case vec[j].Metric.Before(vec[i].Metric):
-		return false
-	case vec[i].Timestamp.Before(vec[j].Timestamp):
-		return true
-	default:
-		return false
-	}
-}
-
-// Equal compares two sets of samples and returns true if they are equal.
-func (vec Vector) Equal(o Vector) bool {
-	if len(vec) != len(o) {
-		return false
-	}
-
-	for i, sample := range vec {
-		if !sample.Equal(o[i]) {
-			return false
-		}
-	}
-	return true
-}
-
-// Matrix is a list of time series.
-type Matrix []*SampleStream
-
-func (m Matrix) Len() int           { return len(m) }
-func (m Matrix) Less(i, j int) bool { return m[i].Metric.Before(m[j].Metric) }
-func (m Matrix) Swap(i, j int)      { m[i], m[j] = m[j], m[i] }
-
-func (mat Matrix) String() string {
-	matCp := make(Matrix, len(mat))
-	copy(matCp, mat)
-	sort.Sort(matCp)
-
-	strs := make([]string, len(matCp))
-
-	for i, ss := range matCp {
-		strs[i] = ss.String()
-	}
-
-	return strings.Join(strs, "\n")
-}
diff --git a/vendor/github.com/prometheus/procfs/LICENSE b/vendor/github.com/prometheus/procfs/LICENSE
deleted file mode 100644
index 261eeb9e9f..0000000000
--- a/vendor/github.com/prometheus/procfs/LICENSE
+++ /dev/null
@@ -1,201 +0,0 @@
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/prometheus/procfs/NOTICE b/vendor/github.com/prometheus/procfs/NOTICE
deleted file mode 100644
index 53c5e9aa11..0000000000
--- a/vendor/github.com/prometheus/procfs/NOTICE
+++ /dev/null
@@ -1,7 +0,0 @@
-procfs provides functions to retrieve system, kernel and process
-metrics from the pseudo-filesystem proc.
-
-Copyright 2014-2015 The Prometheus Authors
-
-This product includes software developed at
-SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/procfs/buddyinfo.go b/vendor/github.com/prometheus/procfs/buddyinfo.go
deleted file mode 100644
index d3a8268078..0000000000
--- a/vendor/github.com/prometheus/procfs/buddyinfo.go
+++ /dev/null
@@ -1,95 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// A BuddyInfo is the details parsed from /proc/buddyinfo.
-// The data is comprised of an array of free fragments of each size.
-// The sizes are 2^n*PAGE_SIZE, where n is the array index.
-type BuddyInfo struct {
-	Node  string
-	Zone  string
-	Sizes []float64
-}
-
-// NewBuddyInfo reads the buddyinfo statistics.
-func NewBuddyInfo() ([]BuddyInfo, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return nil, err
-	}
-
-	return fs.NewBuddyInfo()
-}
-
-// NewBuddyInfo reads the buddyinfo statistics from the specified `proc` filesystem.
-func (fs FS) NewBuddyInfo() ([]BuddyInfo, error) {
-	file, err := os.Open(fs.Path("buddyinfo"))
-	if err != nil {
-		return nil, err
-	}
-	defer file.Close()
-
-	return parseBuddyInfo(file)
-}
-
-func parseBuddyInfo(r io.Reader) ([]BuddyInfo, error) {
-	var (
-		buddyInfo   = []BuddyInfo{}
-		scanner     = bufio.NewScanner(r)
-		bucketCount = -1
-	)
-
-	for scanner.Scan() {
-		var err error
-		line := scanner.Text()
-		parts := strings.Fields(line)
-
-		if len(parts) < 4 {
-			return nil, fmt.Errorf("invalid number of fields when parsing buddyinfo")
-		}
-
-		node := strings.TrimRight(parts[1], ",")
-		zone := strings.TrimRight(parts[3], ",")
-		arraySize := len(parts[4:])
-
-		if bucketCount == -1 {
-			bucketCount = arraySize
-		} else {
-			if bucketCount != arraySize {
-				return nil, fmt.Errorf("mismatch in number of buddyinfo buckets, previous count %d, new count %d", bucketCount, arraySize)
-			}
-		}
-
-		sizes := make([]float64, arraySize)
-		for i := 0; i < arraySize; i++ {
-			sizes[i], err = strconv.ParseFloat(parts[i+4], 64)
-			if err != nil {
-				return nil, fmt.Errorf("invalid value in buddyinfo: %s", err)
-			}
-		}
-
-		buddyInfo = append(buddyInfo, BuddyInfo{node, zone, sizes})
-	}
-
-	return buddyInfo, scanner.Err()
-}
diff --git a/vendor/github.com/prometheus/procfs/doc.go b/vendor/github.com/prometheus/procfs/doc.go
deleted file mode 100644
index e2acd6d40a..0000000000
--- a/vendor/github.com/prometheus/procfs/doc.go
+++ /dev/null
@@ -1,45 +0,0 @@
-// Copyright 2014 Prometheus Team
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package procfs provides functions to retrieve system, kernel and process
-// metrics from the pseudo-filesystem proc.
-//
-// Example:
-//
-//    package main
-//
-//    import (
-//    	"fmt"
-//    	"log"
-//
-//    	"github.com/prometheus/procfs"
-//    )
-//
-//    func main() {
-//    	p, err := procfs.Self()
-//    	if err != nil {
-//    		log.Fatalf("could not get process: %s", err)
-//    	}
-//
-//    	stat, err := p.NewStat()
-//    	if err != nil {
-//    		log.Fatalf("could not get process stat: %s", err)
-//    	}
-//
-//    	fmt.Printf("command:  %s\n", stat.Comm)
-//    	fmt.Printf("cpu time: %fs\n", stat.CPUTime())
-//    	fmt.Printf("vsize:    %dB\n", stat.VirtualMemory())
-//    	fmt.Printf("rss:      %dB\n", stat.ResidentMemory())
-//    }
-//
-package procfs
diff --git a/vendor/github.com/prometheus/procfs/fs.go b/vendor/github.com/prometheus/procfs/fs.go
deleted file mode 100644
index b6c6b2ce1f..0000000000
--- a/vendor/github.com/prometheus/procfs/fs.go
+++ /dev/null
@@ -1,82 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"fmt"
-	"os"
-	"path"
-
-	"github.com/prometheus/procfs/nfs"
-	"github.com/prometheus/procfs/xfs"
-)
-
-// FS represents the pseudo-filesystem proc, which provides an interface to
-// kernel data structures.
-type FS string
-
-// DefaultMountPoint is the common mount point of the proc filesystem.
-const DefaultMountPoint = "/proc"
-
-// NewFS returns a new FS mounted under the given mountPoint. It will error
-// if the mount point can't be read.
-func NewFS(mountPoint string) (FS, error) {
-	info, err := os.Stat(mountPoint)
-	if err != nil {
-		return "", fmt.Errorf("could not read %s: %s", mountPoint, err)
-	}
-	if !info.IsDir() {
-		return "", fmt.Errorf("mount point %s is not a directory", mountPoint)
-	}
-
-	return FS(mountPoint), nil
-}
-
-// Path returns the path of the given subsystem relative to the procfs root.
-func (fs FS) Path(p ...string) string {
-	return path.Join(append([]string{string(fs)}, p...)...)
-}
-
-// XFSStats retrieves XFS filesystem runtime statistics.
-func (fs FS) XFSStats() (*xfs.Stats, error) {
-	f, err := os.Open(fs.Path("fs/xfs/stat"))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return xfs.ParseStats(f)
-}
-
-// NFSClientRPCStats retrieves NFS client RPC statistics.
-func (fs FS) NFSClientRPCStats() (*nfs.ClientRPCStats, error) {
-	f, err := os.Open(fs.Path("net/rpc/nfs"))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return nfs.ParseClientRPCStats(f)
-}
-
-// NFSdServerRPCStats retrieves NFS daemon RPC statistics.
-func (fs FS) NFSdServerRPCStats() (*nfs.ServerRPCStats, error) {
-	f, err := os.Open(fs.Path("net/rpc/nfsd"))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return nfs.ParseServerRPCStats(f)
-}
diff --git a/vendor/github.com/prometheus/procfs/internal/util/parse.go b/vendor/github.com/prometheus/procfs/internal/util/parse.go
deleted file mode 100644
index 1ad21c91a3..0000000000
--- a/vendor/github.com/prometheus/procfs/internal/util/parse.go
+++ /dev/null
@@ -1,46 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package util
-
-import "strconv"
-
-// ParseUint32s parses a slice of strings into a slice of uint32s.
-func ParseUint32s(ss []string) ([]uint32, error) {
-	us := make([]uint32, 0, len(ss))
-	for _, s := range ss {
-		u, err := strconv.ParseUint(s, 10, 32)
-		if err != nil {
-			return nil, err
-		}
-
-		us = append(us, uint32(u))
-	}
-
-	return us, nil
-}
-
-// ParseUint64s parses a slice of strings into a slice of uint64s.
-func ParseUint64s(ss []string) ([]uint64, error) {
-	us := make([]uint64, 0, len(ss))
-	for _, s := range ss {
-		u, err := strconv.ParseUint(s, 10, 64)
-		if err != nil {
-			return nil, err
-		}
-
-		us = append(us, u)
-	}
-
-	return us, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/ipvs.go b/vendor/github.com/prometheus/procfs/ipvs.go
deleted file mode 100644
index e36d4a3bd0..0000000000
--- a/vendor/github.com/prometheus/procfs/ipvs.go
+++ /dev/null
@@ -1,259 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"encoding/hex"
-	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// IPVSStats holds IPVS statistics, as exposed by the kernel in `/proc/net/ip_vs_stats`.
-type IPVSStats struct {
-	// Total count of connections.
-	Connections uint64
-	// Total incoming packages processed.
-	IncomingPackets uint64
-	// Total outgoing packages processed.
-	OutgoingPackets uint64
-	// Total incoming traffic.
-	IncomingBytes uint64
-	// Total outgoing traffic.
-	OutgoingBytes uint64
-}
-
-// IPVSBackendStatus holds current metrics of one virtual / real address pair.
-type IPVSBackendStatus struct {
-	// The local (virtual) IP address.
-	LocalAddress net.IP
-	// The remote (real) IP address.
-	RemoteAddress net.IP
-	// The local (virtual) port.
-	LocalPort uint16
-	// The remote (real) port.
-	RemotePort uint16
-	// The local firewall mark
-	LocalMark string
-	// The transport protocol (TCP, UDP).
-	Proto string
-	// The current number of active connections for this virtual/real address pair.
-	ActiveConn uint64
-	// The current number of inactive connections for this virtual/real address pair.
-	InactConn uint64
-	// The current weight of this virtual/real address pair.
-	Weight uint64
-}
-
-// NewIPVSStats reads the IPVS statistics.
-func NewIPVSStats() (IPVSStats, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-
-	return fs.NewIPVSStats()
-}
-
-// NewIPVSStats reads the IPVS statistics from the specified `proc` filesystem.
-func (fs FS) NewIPVSStats() (IPVSStats, error) {
-	file, err := os.Open(fs.Path("net/ip_vs_stats"))
-	if err != nil {
-		return IPVSStats{}, err
-	}
-	defer file.Close()
-
-	return parseIPVSStats(file)
-}
-
-// parseIPVSStats performs the actual parsing of `ip_vs_stats`.
-func parseIPVSStats(file io.Reader) (IPVSStats, error) {
-	var (
-		statContent []byte
-		statLines   []string
-		statFields  []string
-		stats       IPVSStats
-	)
-
-	statContent, err := ioutil.ReadAll(file)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-
-	statLines = strings.SplitN(string(statContent), "\n", 4)
-	if len(statLines) != 4 {
-		return IPVSStats{}, errors.New("ip_vs_stats corrupt: too short")
-	}
-
-	statFields = strings.Fields(statLines[2])
-	if len(statFields) != 5 {
-		return IPVSStats{}, errors.New("ip_vs_stats corrupt: unexpected number of fields")
-	}
-
-	stats.Connections, err = strconv.ParseUint(statFields[0], 16, 64)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-	stats.IncomingPackets, err = strconv.ParseUint(statFields[1], 16, 64)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-	stats.OutgoingPackets, err = strconv.ParseUint(statFields[2], 16, 64)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-	stats.IncomingBytes, err = strconv.ParseUint(statFields[3], 16, 64)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-	stats.OutgoingBytes, err = strconv.ParseUint(statFields[4], 16, 64)
-	if err != nil {
-		return IPVSStats{}, err
-	}
-
-	return stats, nil
-}
-
-// NewIPVSBackendStatus reads and returns the status of all (virtual,real) server pairs.
-func NewIPVSBackendStatus() ([]IPVSBackendStatus, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return []IPVSBackendStatus{}, err
-	}
-
-	return fs.NewIPVSBackendStatus()
-}
-
-// NewIPVSBackendStatus reads and returns the status of all (virtual,real) server pairs from the specified `proc` filesystem.
-func (fs FS) NewIPVSBackendStatus() ([]IPVSBackendStatus, error) {
-	file, err := os.Open(fs.Path("net/ip_vs"))
-	if err != nil {
-		return nil, err
-	}
-	defer file.Close()
-
-	return parseIPVSBackendStatus(file)
-}
-
-func parseIPVSBackendStatus(file io.Reader) ([]IPVSBackendStatus, error) {
-	var (
-		status       []IPVSBackendStatus
-		scanner      = bufio.NewScanner(file)
-		proto        string
-		localMark    string
-		localAddress net.IP
-		localPort    uint16
-		err          error
-	)
-
-	for scanner.Scan() {
-		fields := strings.Fields(scanner.Text())
-		if len(fields) == 0 {
-			continue
-		}
-		switch {
-		case fields[0] == "IP" || fields[0] == "Prot" || fields[1] == "RemoteAddress:Port":
-			continue
-		case fields[0] == "TCP" || fields[0] == "UDP":
-			if len(fields) < 2 {
-				continue
-			}
-			proto = fields[0]
-			localMark = ""
-			localAddress, localPort, err = parseIPPort(fields[1])
-			if err != nil {
-				return nil, err
-			}
-		case fields[0] == "FWM":
-			if len(fields) < 2 {
-				continue
-			}
-			proto = fields[0]
-			localMark = fields[1]
-			localAddress = nil
-			localPort = 0
-		case fields[0] == "->":
-			if len(fields) < 6 {
-				continue
-			}
-			remoteAddress, remotePort, err := parseIPPort(fields[1])
-			if err != nil {
-				return nil, err
-			}
-			weight, err := strconv.ParseUint(fields[3], 10, 64)
-			if err != nil {
-				return nil, err
-			}
-			activeConn, err := strconv.ParseUint(fields[4], 10, 64)
-			if err != nil {
-				return nil, err
-			}
-			inactConn, err := strconv.ParseUint(fields[5], 10, 64)
-			if err != nil {
-				return nil, err
-			}
-			status = append(status, IPVSBackendStatus{
-				LocalAddress:  localAddress,
-				LocalPort:     localPort,
-				LocalMark:     localMark,
-				RemoteAddress: remoteAddress,
-				RemotePort:    remotePort,
-				Proto:         proto,
-				Weight:        weight,
-				ActiveConn:    activeConn,
-				InactConn:     inactConn,
-			})
-		}
-	}
-	return status, nil
-}
-
-func parseIPPort(s string) (net.IP, uint16, error) {
-	var (
-		ip  net.IP
-		err error
-	)
-
-	switch len(s) {
-	case 13:
-		ip, err = hex.DecodeString(s[0:8])
-		if err != nil {
-			return nil, 0, err
-		}
-	case 46:
-		ip = net.ParseIP(s[1:40])
-		if ip == nil {
-			return nil, 0, fmt.Errorf("invalid IPv6 address: %s", s[1:40])
-		}
-	default:
-		return nil, 0, fmt.Errorf("unexpected IP:Port: %s", s)
-	}
-
-	portString := s[len(s)-4:]
-	if len(portString) != 4 {
-		return nil, 0, fmt.Errorf("unexpected port string format: %s", portString)
-	}
-	port, err := strconv.ParseUint(portString, 16, 16)
-	if err != nil {
-		return nil, 0, err
-	}
-
-	return ip, uint16(port), nil
-}
diff --git a/vendor/github.com/prometheus/procfs/mdstat.go b/vendor/github.com/prometheus/procfs/mdstat.go
deleted file mode 100644
index 9dc19583d8..0000000000
--- a/vendor/github.com/prometheus/procfs/mdstat.go
+++ /dev/null
@@ -1,151 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"fmt"
-	"io/ioutil"
-	"regexp"
-	"strconv"
-	"strings"
-)
-
-var (
-	statuslineRE = regexp.MustCompile(`(\d+) blocks .*\[(\d+)/(\d+)\] \[[U_]+\]`)
-	buildlineRE  = regexp.MustCompile(`\((\d+)/\d+\)`)
-)
-
-// MDStat holds info parsed from /proc/mdstat.
-type MDStat struct {
-	// Name of the device.
-	Name string
-	// activity-state of the device.
-	ActivityState string
-	// Number of active disks.
-	DisksActive int64
-	// Total number of disks the device consists of.
-	DisksTotal int64
-	// Number of blocks the device holds.
-	BlocksTotal int64
-	// Number of blocks on the device that are in sync.
-	BlocksSynced int64
-}
-
-// ParseMDStat parses an mdstat-file and returns a struct with the relevant infos.
-func (fs FS) ParseMDStat() (mdstates []MDStat, err error) {
-	mdStatusFilePath := fs.Path("mdstat")
-	content, err := ioutil.ReadFile(mdStatusFilePath)
-	if err != nil {
-		return []MDStat{}, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
-	}
-
-	mdStates := []MDStat{}
-	lines := strings.Split(string(content), "\n")
-	for i, l := range lines {
-		if l == "" {
-			continue
-		}
-		if l[0] == ' ' {
-			continue
-		}
-		if strings.HasPrefix(l, "Personalities") || strings.HasPrefix(l, "unused") {
-			continue
-		}
-
-		mainLine := strings.Split(l, " ")
-		if len(mainLine) < 3 {
-			return mdStates, fmt.Errorf("error parsing mdline: %s", l)
-		}
-		mdName := mainLine[0]
-		activityState := mainLine[2]
-
-		if len(lines) <= i+3 {
-			return mdStates, fmt.Errorf(
-				"error parsing %s: too few lines for md device %s",
-				mdStatusFilePath,
-				mdName,
-			)
-		}
-
-		active, total, size, err := evalStatusline(lines[i+1])
-		if err != nil {
-			return mdStates, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
-		}
-
-		// j is the line number of the syncing-line.
-		j := i + 2
-		if strings.Contains(lines[i+2], "bitmap") { // skip bitmap line
-			j = i + 3
-		}
-
-		// If device is syncing at the moment, get the number of currently
-		// synced bytes, otherwise that number equals the size of the device.
-		syncedBlocks := size
-		if strings.Contains(lines[j], "recovery") || strings.Contains(lines[j], "resync") {
-			syncedBlocks, err = evalBuildline(lines[j])
-			if err != nil {
-				return mdStates, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
-			}
-		}
-
-		mdStates = append(mdStates, MDStat{
-			Name:          mdName,
-			ActivityState: activityState,
-			DisksActive:   active,
-			DisksTotal:    total,
-			BlocksTotal:   size,
-			BlocksSynced:  syncedBlocks,
-		})
-	}
-
-	return mdStates, nil
-}
-
-func evalStatusline(statusline string) (active, total, size int64, err error) {
-	matches := statuslineRE.FindStringSubmatch(statusline)
-	if len(matches) != 4 {
-		return 0, 0, 0, fmt.Errorf("unexpected statusline: %s", statusline)
-	}
-
-	size, err = strconv.ParseInt(matches[1], 10, 64)
-	if err != nil {
-		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
-	}
-
-	total, err = strconv.ParseInt(matches[2], 10, 64)
-	if err != nil {
-		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
-	}
-
-	active, err = strconv.ParseInt(matches[3], 10, 64)
-	if err != nil {
-		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
-	}
-
-	return active, total, size, nil
-}
-
-func evalBuildline(buildline string) (syncedBlocks int64, err error) {
-	matches := buildlineRE.FindStringSubmatch(buildline)
-	if len(matches) != 2 {
-		return 0, fmt.Errorf("unexpected buildline: %s", buildline)
-	}
-
-	syncedBlocks, err = strconv.ParseInt(matches[1], 10, 64)
-	if err != nil {
-		return 0, fmt.Errorf("%s in buildline: %s", err, buildline)
-	}
-
-	return syncedBlocks, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/mountstats.go b/vendor/github.com/prometheus/procfs/mountstats.go
deleted file mode 100644
index e95ddbc67c..0000000000
--- a/vendor/github.com/prometheus/procfs/mountstats.go
+++ /dev/null
@@ -1,569 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-// While implementing parsing of /proc/[pid]/mountstats, this blog was used
-// heavily as a reference:
-//   https://utcc.utoronto.ca/~cks/space/blog/linux/NFSMountstatsIndex
-//
-// Special thanks to Chris Siebenmann for all of his posts explaining the
-// various statistics available for NFS.
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"strconv"
-	"strings"
-	"time"
-)
-
-// Constants shared between multiple functions.
-const (
-	deviceEntryLen = 8
-
-	fieldBytesLen  = 8
-	fieldEventsLen = 27
-
-	statVersion10 = "1.0"
-	statVersion11 = "1.1"
-
-	fieldTransport10Len = 10
-	fieldTransport11Len = 13
-)
-
-// A Mount is a device mount parsed from /proc/[pid]/mountstats.
-type Mount struct {
-	// Name of the device.
-	Device string
-	// The mount point of the device.
-	Mount string
-	// The filesystem type used by the device.
-	Type string
-	// If available additional statistics related to this Mount.
-	// Use a type assertion to determine if additional statistics are available.
-	Stats MountStats
-}
-
-// A MountStats is a type which contains detailed statistics for a specific
-// type of Mount.
-type MountStats interface {
-	mountStats()
-}
-
-// A MountStatsNFS is a MountStats implementation for NFSv3 and v4 mounts.
-type MountStatsNFS struct {
-	// The version of statistics provided.
-	StatVersion string
-	// The age of the NFS mount.
-	Age time.Duration
-	// Statistics related to byte counters for various operations.
-	Bytes NFSBytesStats
-	// Statistics related to various NFS event occurrences.
-	Events NFSEventsStats
-	// Statistics broken down by filesystem operation.
-	Operations []NFSOperationStats
-	// Statistics about the NFS RPC transport.
-	Transport NFSTransportStats
-}
-
-// mountStats implements MountStats.
-func (m MountStatsNFS) mountStats() {}
-
-// A NFSBytesStats contains statistics about the number of bytes read and written
-// by an NFS client to and from an NFS server.
-type NFSBytesStats struct {
-	// Number of bytes read using the read() syscall.
-	Read uint64
-	// Number of bytes written using the write() syscall.
-	Write uint64
-	// Number of bytes read using the read() syscall in O_DIRECT mode.
-	DirectRead uint64
-	// Number of bytes written using the write() syscall in O_DIRECT mode.
-	DirectWrite uint64
-	// Number of bytes read from the NFS server, in total.
-	ReadTotal uint64
-	// Number of bytes written to the NFS server, in total.
-	WriteTotal uint64
-	// Number of pages read directly via mmap()'d files.
-	ReadPages uint64
-	// Number of pages written directly via mmap()'d files.
-	WritePages uint64
-}
-
-// A NFSEventsStats contains statistics about NFS event occurrences.
-type NFSEventsStats struct {
-	// Number of times cached inode attributes are re-validated from the server.
-	InodeRevalidate uint64
-	// Number of times cached dentry nodes are re-validated from the server.
-	DnodeRevalidate uint64
-	// Number of times an inode cache is cleared.
-	DataInvalidate uint64
-	// Number of times cached inode attributes are invalidated.
-	AttributeInvalidate uint64
-	// Number of times files or directories have been open()'d.
-	VFSOpen uint64
-	// Number of times a directory lookup has occurred.
-	VFSLookup uint64
-	// Number of times permissions have been checked.
-	VFSAccess uint64
-	// Number of updates (and potential writes) to pages.
-	VFSUpdatePage uint64
-	// Number of pages read directly via mmap()'d files.
-	VFSReadPage uint64
-	// Number of times a group of pages have been read.
-	VFSReadPages uint64
-	// Number of pages written directly via mmap()'d files.
-	VFSWritePage uint64
-	// Number of times a group of pages have been written.
-	VFSWritePages uint64
-	// Number of times directory entries have been read with getdents().
-	VFSGetdents uint64
-	// Number of times attributes have been set on inodes.
-	VFSSetattr uint64
-	// Number of pending writes that have been forcefully flushed to the server.
-	VFSFlush uint64
-	// Number of times fsync() has been called on directories and files.
-	VFSFsync uint64
-	// Number of times locking has been attempted on a file.
-	VFSLock uint64
-	// Number of times files have been closed and released.
-	VFSFileRelease uint64
-	// Unknown.  Possibly unused.
-	CongestionWait uint64
-	// Number of times files have been truncated.
-	Truncation uint64
-	// Number of times a file has been grown due to writes beyond its existing end.
-	WriteExtension uint64
-	// Number of times a file was removed while still open by another process.
-	SillyRename uint64
-	// Number of times the NFS server gave less data than expected while reading.
-	ShortRead uint64
-	// Number of times the NFS server wrote less data than expected while writing.
-	ShortWrite uint64
-	// Number of times the NFS server indicated EJUKEBOX; retrieving data from
-	// offline storage.
-	JukeboxDelay uint64
-	// Number of NFS v4.1+ pNFS reads.
-	PNFSRead uint64
-	// Number of NFS v4.1+ pNFS writes.
-	PNFSWrite uint64
-}
-
-// A NFSOperationStats contains statistics for a single operation.
-type NFSOperationStats struct {
-	// The name of the operation.
-	Operation string
-	// Number of requests performed for this operation.
-	Requests uint64
-	// Number of times an actual RPC request has been transmitted for this operation.
-	Transmissions uint64
-	// Number of times a request has had a major timeout.
-	MajorTimeouts uint64
-	// Number of bytes sent for this operation, including RPC headers and payload.
-	BytesSent uint64
-	// Number of bytes received for this operation, including RPC headers and payload.
-	BytesReceived uint64
-	// Duration all requests spent queued for transmission before they were sent.
-	CumulativeQueueTime time.Duration
-	// Duration it took to get a reply back after the request was transmitted.
-	CumulativeTotalResponseTime time.Duration
-	// Duration from when a request was enqueued to when it was completely handled.
-	CumulativeTotalRequestTime time.Duration
-}
-
-// A NFSTransportStats contains statistics for the NFS mount RPC requests and
-// responses.
-type NFSTransportStats struct {
-	// The local port used for the NFS mount.
-	Port uint64
-	// Number of times the client has had to establish a connection from scratch
-	// to the NFS server.
-	Bind uint64
-	// Number of times the client has made a TCP connection to the NFS server.
-	Connect uint64
-	// Duration (in jiffies, a kernel internal unit of time) the NFS mount has
-	// spent waiting for connections to the server to be established.
-	ConnectIdleTime uint64
-	// Duration since the NFS mount last saw any RPC traffic.
-	IdleTime time.Duration
-	// Number of RPC requests for this mount sent to the NFS server.
-	Sends uint64
-	// Number of RPC responses for this mount received from the NFS server.
-	Receives uint64
-	// Number of times the NFS server sent a response with a transaction ID
-	// unknown to this client.
-	BadTransactionIDs uint64
-	// A running counter, incremented on each request as the current difference
-	// ebetween sends and receives.
-	CumulativeActiveRequests uint64
-	// A running counter, incremented on each request by the current backlog
-	// queue size.
-	CumulativeBacklog uint64
-
-	// Stats below only available with stat version 1.1.
-
-	// Maximum number of simultaneously active RPC requests ever used.
-	MaximumRPCSlotsUsed uint64
-	// A running counter, incremented on each request as the current size of the
-	// sending queue.
-	CumulativeSendingQueue uint64
-	// A running counter, incremented on each request as the current size of the
-	// pending queue.
-	CumulativePendingQueue uint64
-}
-
-// parseMountStats parses a /proc/[pid]/mountstats file and returns a slice
-// of Mount structures containing detailed information about each mount.
-// If available, statistics for each mount are parsed as well.
-func parseMountStats(r io.Reader) ([]*Mount, error) {
-	const (
-		device            = "device"
-		statVersionPrefix = "statvers="
-
-		nfs3Type = "nfs"
-		nfs4Type = "nfs4"
-	)
-
-	var mounts []*Mount
-
-	s := bufio.NewScanner(r)
-	for s.Scan() {
-		// Only look for device entries in this function
-		ss := strings.Fields(string(s.Bytes()))
-		if len(ss) == 0 || ss[0] != device {
-			continue
-		}
-
-		m, err := parseMount(ss)
-		if err != nil {
-			return nil, err
-		}
-
-		// Does this mount also possess statistics information?
-		if len(ss) > deviceEntryLen {
-			// Only NFSv3 and v4 are supported for parsing statistics
-			if m.Type != nfs3Type && m.Type != nfs4Type {
-				return nil, fmt.Errorf("cannot parse MountStats for fstype %q", m.Type)
-			}
-
-			statVersion := strings.TrimPrefix(ss[8], statVersionPrefix)
-
-			stats, err := parseMountStatsNFS(s, statVersion)
-			if err != nil {
-				return nil, err
-			}
-
-			m.Stats = stats
-		}
-
-		mounts = append(mounts, m)
-	}
-
-	return mounts, s.Err()
-}
-
-// parseMount parses an entry in /proc/[pid]/mountstats in the format:
-//   device [device] mounted on [mount] with fstype [type]
-func parseMount(ss []string) (*Mount, error) {
-	if len(ss) < deviceEntryLen {
-		return nil, fmt.Errorf("invalid device entry: %v", ss)
-	}
-
-	// Check for specific words appearing at specific indices to ensure
-	// the format is consistent with what we expect
-	format := []struct {
-		i int
-		s string
-	}{
-		{i: 0, s: "device"},
-		{i: 2, s: "mounted"},
-		{i: 3, s: "on"},
-		{i: 5, s: "with"},
-		{i: 6, s: "fstype"},
-	}
-
-	for _, f := range format {
-		if ss[f.i] != f.s {
-			return nil, fmt.Errorf("invalid device entry: %v", ss)
-		}
-	}
-
-	return &Mount{
-		Device: ss[1],
-		Mount:  ss[4],
-		Type:   ss[7],
-	}, nil
-}
-
-// parseMountStatsNFS parses a MountStatsNFS by scanning additional information
-// related to NFS statistics.
-func parseMountStatsNFS(s *bufio.Scanner, statVersion string) (*MountStatsNFS, error) {
-	// Field indicators for parsing specific types of data
-	const (
-		fieldAge        = "age:"
-		fieldBytes      = "bytes:"
-		fieldEvents     = "events:"
-		fieldPerOpStats = "per-op"
-		fieldTransport  = "xprt:"
-	)
-
-	stats := &MountStatsNFS{
-		StatVersion: statVersion,
-	}
-
-	for s.Scan() {
-		ss := strings.Fields(string(s.Bytes()))
-		if len(ss) == 0 {
-			break
-		}
-		if len(ss) < 2 {
-			return nil, fmt.Errorf("not enough information for NFS stats: %v", ss)
-		}
-
-		switch ss[0] {
-		case fieldAge:
-			// Age integer is in seconds
-			d, err := time.ParseDuration(ss[1] + "s")
-			if err != nil {
-				return nil, err
-			}
-
-			stats.Age = d
-		case fieldBytes:
-			bstats, err := parseNFSBytesStats(ss[1:])
-			if err != nil {
-				return nil, err
-			}
-
-			stats.Bytes = *bstats
-		case fieldEvents:
-			estats, err := parseNFSEventsStats(ss[1:])
-			if err != nil {
-				return nil, err
-			}
-
-			stats.Events = *estats
-		case fieldTransport:
-			if len(ss) < 3 {
-				return nil, fmt.Errorf("not enough information for NFS transport stats: %v", ss)
-			}
-
-			tstats, err := parseNFSTransportStats(ss[2:], statVersion)
-			if err != nil {
-				return nil, err
-			}
-
-			stats.Transport = *tstats
-		}
-
-		// When encountering "per-operation statistics", we must break this
-		// loop and parse them separately to ensure we can terminate parsing
-		// before reaching another device entry; hence why this 'if' statement
-		// is not just another switch case
-		if ss[0] == fieldPerOpStats {
-			break
-		}
-	}
-
-	if err := s.Err(); err != nil {
-		return nil, err
-	}
-
-	// NFS per-operation stats appear last before the next device entry
-	perOpStats, err := parseNFSOperationStats(s)
-	if err != nil {
-		return nil, err
-	}
-
-	stats.Operations = perOpStats
-
-	return stats, nil
-}
-
-// parseNFSBytesStats parses a NFSBytesStats line using an input set of
-// integer fields.
-func parseNFSBytesStats(ss []string) (*NFSBytesStats, error) {
-	if len(ss) != fieldBytesLen {
-		return nil, fmt.Errorf("invalid NFS bytes stats: %v", ss)
-	}
-
-	ns := make([]uint64, 0, fieldBytesLen)
-	for _, s := range ss {
-		n, err := strconv.ParseUint(s, 10, 64)
-		if err != nil {
-			return nil, err
-		}
-
-		ns = append(ns, n)
-	}
-
-	return &NFSBytesStats{
-		Read:        ns[0],
-		Write:       ns[1],
-		DirectRead:  ns[2],
-		DirectWrite: ns[3],
-		ReadTotal:   ns[4],
-		WriteTotal:  ns[5],
-		ReadPages:   ns[6],
-		WritePages:  ns[7],
-	}, nil
-}
-
-// parseNFSEventsStats parses a NFSEventsStats line using an input set of
-// integer fields.
-func parseNFSEventsStats(ss []string) (*NFSEventsStats, error) {
-	if len(ss) != fieldEventsLen {
-		return nil, fmt.Errorf("invalid NFS events stats: %v", ss)
-	}
-
-	ns := make([]uint64, 0, fieldEventsLen)
-	for _, s := range ss {
-		n, err := strconv.ParseUint(s, 10, 64)
-		if err != nil {
-			return nil, err
-		}
-
-		ns = append(ns, n)
-	}
-
-	return &NFSEventsStats{
-		InodeRevalidate:     ns[0],
-		DnodeRevalidate:     ns[1],
-		DataInvalidate:      ns[2],
-		AttributeInvalidate: ns[3],
-		VFSOpen:             ns[4],
-		VFSLookup:           ns[5],
-		VFSAccess:           ns[6],
-		VFSUpdatePage:       ns[7],
-		VFSReadPage:         ns[8],
-		VFSReadPages:        ns[9],
-		VFSWritePage:        ns[10],
-		VFSWritePages:       ns[11],
-		VFSGetdents:         ns[12],
-		VFSSetattr:          ns[13],
-		VFSFlush:            ns[14],
-		VFSFsync:            ns[15],
-		VFSLock:             ns[16],
-		VFSFileRelease:      ns[17],
-		CongestionWait:      ns[18],
-		Truncation:          ns[19],
-		WriteExtension:      ns[20],
-		SillyRename:         ns[21],
-		ShortRead:           ns[22],
-		ShortWrite:          ns[23],
-		JukeboxDelay:        ns[24],
-		PNFSRead:            ns[25],
-		PNFSWrite:           ns[26],
-	}, nil
-}
-
-// parseNFSOperationStats parses a slice of NFSOperationStats by scanning
-// additional information about per-operation statistics until an empty
-// line is reached.
-func parseNFSOperationStats(s *bufio.Scanner) ([]NFSOperationStats, error) {
-	const (
-		// Number of expected fields in each per-operation statistics set
-		numFields = 9
-	)
-
-	var ops []NFSOperationStats
-
-	for s.Scan() {
-		ss := strings.Fields(string(s.Bytes()))
-		if len(ss) == 0 {
-			// Must break when reading a blank line after per-operation stats to
-			// enable top-level function to parse the next device entry
-			break
-		}
-
-		if len(ss) != numFields {
-			return nil, fmt.Errorf("invalid NFS per-operations stats: %v", ss)
-		}
-
-		// Skip string operation name for integers
-		ns := make([]uint64, 0, numFields-1)
-		for _, st := range ss[1:] {
-			n, err := strconv.ParseUint(st, 10, 64)
-			if err != nil {
-				return nil, err
-			}
-
-			ns = append(ns, n)
-		}
-
-		ops = append(ops, NFSOperationStats{
-			Operation:                   strings.TrimSuffix(ss[0], ":"),
-			Requests:                    ns[0],
-			Transmissions:               ns[1],
-			MajorTimeouts:               ns[2],
-			BytesSent:                   ns[3],
-			BytesReceived:               ns[4],
-			CumulativeQueueTime:         time.Duration(ns[5]) * time.Millisecond,
-			CumulativeTotalResponseTime: time.Duration(ns[6]) * time.Millisecond,
-			CumulativeTotalRequestTime:  time.Duration(ns[7]) * time.Millisecond,
-		})
-	}
-
-	return ops, s.Err()
-}
-
-// parseNFSTransportStats parses a NFSTransportStats line using an input set of
-// integer fields matched to a specific stats version.
-func parseNFSTransportStats(ss []string, statVersion string) (*NFSTransportStats, error) {
-	switch statVersion {
-	case statVersion10:
-		if len(ss) != fieldTransport10Len {
-			return nil, fmt.Errorf("invalid NFS transport stats 1.0 statement: %v", ss)
-		}
-	case statVersion11:
-		if len(ss) != fieldTransport11Len {
-			return nil, fmt.Errorf("invalid NFS transport stats 1.1 statement: %v", ss)
-		}
-	default:
-		return nil, fmt.Errorf("unrecognized NFS transport stats version: %q", statVersion)
-	}
-
-	// Allocate enough for v1.1 stats since zero value for v1.1 stats will be okay
-	// in a v1.0 response.
-	//
-	// Note: slice length must be set to length of v1.1 stats to avoid a panic when
-	// only v1.0 stats are present.
-	// See: https://github.com/prometheus/node_exporter/issues/571.
-	ns := make([]uint64, fieldTransport11Len)
-	for i, s := range ss {
-		n, err := strconv.ParseUint(s, 10, 64)
-		if err != nil {
-			return nil, err
-		}
-
-		ns[i] = n
-	}
-
-	return &NFSTransportStats{
-		Port:                     ns[0],
-		Bind:                     ns[1],
-		Connect:                  ns[2],
-		ConnectIdleTime:          ns[3],
-		IdleTime:                 time.Duration(ns[4]) * time.Second,
-		Sends:                    ns[5],
-		Receives:                 ns[6],
-		BadTransactionIDs:        ns[7],
-		CumulativeActiveRequests: ns[8],
-		CumulativeBacklog:        ns[9],
-		MaximumRPCSlotsUsed:      ns[10],
-		CumulativeSendingQueue:   ns[11],
-		CumulativePendingQueue:   ns[12],
-	}, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/net_dev.go b/vendor/github.com/prometheus/procfs/net_dev.go
deleted file mode 100644
index 3f2523371a..0000000000
--- a/vendor/github.com/prometheus/procfs/net_dev.go
+++ /dev/null
@@ -1,216 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"errors"
-	"os"
-	"sort"
-	"strconv"
-	"strings"
-)
-
-// NetDevLine is single line parsed from /proc/net/dev or /proc/[pid]/net/dev.
-type NetDevLine struct {
-	Name         string `json:"name"`          // The name of the interface.
-	RxBytes      uint64 `json:"rx_bytes"`      // Cumulative count of bytes received.
-	RxPackets    uint64 `json:"rx_packets"`    // Cumulative count of packets received.
-	RxErrors     uint64 `json:"rx_errors"`     // Cumulative count of receive errors encountered.
-	RxDropped    uint64 `json:"rx_dropped"`    // Cumulative count of packets dropped while receiving.
-	RxFIFO       uint64 `json:"rx_fifo"`       // Cumulative count of FIFO buffer errors.
-	RxFrame      uint64 `json:"rx_frame"`      // Cumulative count of packet framing errors.
-	RxCompressed uint64 `json:"rx_compressed"` // Cumulative count of compressed packets received by the device driver.
-	RxMulticast  uint64 `json:"rx_multicast"`  // Cumulative count of multicast frames received by the device driver.
-	TxBytes      uint64 `json:"tx_bytes"`      // Cumulative count of bytes transmitted.
-	TxPackets    uint64 `json:"tx_packets"`    // Cumulative count of packets transmitted.
-	TxErrors     uint64 `json:"tx_errors"`     // Cumulative count of transmit errors encountered.
-	TxDropped    uint64 `json:"tx_dropped"`    // Cumulative count of packets dropped while transmitting.
-	TxFIFO       uint64 `json:"tx_fifo"`       // Cumulative count of FIFO buffer errors.
-	TxCollisions uint64 `json:"tx_collisions"` // Cumulative count of collisions detected on the interface.
-	TxCarrier    uint64 `json:"tx_carrier"`    // Cumulative count of carrier losses detected by the device driver.
-	TxCompressed uint64 `json:"tx_compressed"` // Cumulative count of compressed packets transmitted by the device driver.
-}
-
-// NetDev is parsed from /proc/net/dev or /proc/[pid]/net/dev. The map keys
-// are interface names.
-type NetDev map[string]NetDevLine
-
-// NewNetDev returns kernel/system statistics read from /proc/net/dev.
-func NewNetDev() (NetDev, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return nil, err
-	}
-
-	return fs.NewNetDev()
-}
-
-// NewNetDev returns kernel/system statistics read from /proc/net/dev.
-func (fs FS) NewNetDev() (NetDev, error) {
-	return newNetDev(fs.Path("net/dev"))
-}
-
-// NewNetDev returns kernel/system statistics read from /proc/[pid]/net/dev.
-func (p Proc) NewNetDev() (NetDev, error) {
-	return newNetDev(p.path("net/dev"))
-}
-
-// newNetDev creates a new NetDev from the contents of the given file.
-func newNetDev(file string) (NetDev, error) {
-	f, err := os.Open(file)
-	if err != nil {
-		return NetDev{}, err
-	}
-	defer f.Close()
-
-	nd := NetDev{}
-	s := bufio.NewScanner(f)
-	for n := 0; s.Scan(); n++ {
-		// Skip the 2 header lines.
-		if n < 2 {
-			continue
-		}
-
-		line, err := nd.parseLine(s.Text())
-		if err != nil {
-			return nd, err
-		}
-
-		nd[line.Name] = *line
-	}
-
-	return nd, s.Err()
-}
-
-// parseLine parses a single line from the /proc/net/dev file. Header lines
-// must be filtered prior to calling this method.
-func (nd NetDev) parseLine(rawLine string) (*NetDevLine, error) {
-	parts := strings.SplitN(rawLine, ":", 2)
-	if len(parts) != 2 {
-		return nil, errors.New("invalid net/dev line, missing colon")
-	}
-	fields := strings.Fields(strings.TrimSpace(parts[1]))
-
-	var err error
-	line := &NetDevLine{}
-
-	// Interface Name
-	line.Name = strings.TrimSpace(parts[0])
-	if line.Name == "" {
-		return nil, errors.New("invalid net/dev line, empty interface name")
-	}
-
-	// RX
-	line.RxBytes, err = strconv.ParseUint(fields[0], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxPackets, err = strconv.ParseUint(fields[1], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxErrors, err = strconv.ParseUint(fields[2], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxDropped, err = strconv.ParseUint(fields[3], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxFIFO, err = strconv.ParseUint(fields[4], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxFrame, err = strconv.ParseUint(fields[5], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxCompressed, err = strconv.ParseUint(fields[6], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.RxMulticast, err = strconv.ParseUint(fields[7], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-
-	// TX
-	line.TxBytes, err = strconv.ParseUint(fields[8], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxPackets, err = strconv.ParseUint(fields[9], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxErrors, err = strconv.ParseUint(fields[10], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxDropped, err = strconv.ParseUint(fields[11], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxFIFO, err = strconv.ParseUint(fields[12], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxCollisions, err = strconv.ParseUint(fields[13], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxCarrier, err = strconv.ParseUint(fields[14], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-	line.TxCompressed, err = strconv.ParseUint(fields[15], 10, 64)
-	if err != nil {
-		return nil, err
-	}
-
-	return line, nil
-}
-
-// Total aggregates the values across interfaces and returns a new NetDevLine.
-// The Name field will be a sorted comma separated list of interface names.
-func (nd NetDev) Total() NetDevLine {
-	total := NetDevLine{}
-
-	names := make([]string, 0, len(nd))
-	for _, ifc := range nd {
-		names = append(names, ifc.Name)
-		total.RxBytes += ifc.RxBytes
-		total.RxPackets += ifc.RxPackets
-		total.RxPackets += ifc.RxPackets
-		total.RxErrors += ifc.RxErrors
-		total.RxDropped += ifc.RxDropped
-		total.RxFIFO += ifc.RxFIFO
-		total.RxFrame += ifc.RxFrame
-		total.RxCompressed += ifc.RxCompressed
-		total.RxMulticast += ifc.RxMulticast
-		total.TxBytes += ifc.TxBytes
-		total.TxPackets += ifc.TxPackets
-		total.TxErrors += ifc.TxErrors
-		total.TxDropped += ifc.TxDropped
-		total.TxFIFO += ifc.TxFIFO
-		total.TxCollisions += ifc.TxCollisions
-		total.TxCarrier += ifc.TxCarrier
-		total.TxCompressed += ifc.TxCompressed
-	}
-	sort.Strings(names)
-	total.Name = strings.Join(names, ", ")
-
-	return total
-}
diff --git a/vendor/github.com/prometheus/procfs/nfs/nfs.go b/vendor/github.com/prometheus/procfs/nfs/nfs.go
deleted file mode 100644
index 651bf68195..0000000000
--- a/vendor/github.com/prometheus/procfs/nfs/nfs.go
+++ /dev/null
@@ -1,263 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package nfs implements parsing of /proc/net/rpc/nfsd.
-// Fields are documented in https://www.svennd.be/nfsd-stats-explained-procnetrpcnfsd/
-package nfs
-
-// ReplyCache models the "rc" line.
-type ReplyCache struct {
-	Hits    uint64
-	Misses  uint64
-	NoCache uint64
-}
-
-// FileHandles models the "fh" line.
-type FileHandles struct {
-	Stale        uint64
-	TotalLookups uint64
-	AnonLookups  uint64
-	DirNoCache   uint64
-	NoDirNoCache uint64
-}
-
-// InputOutput models the "io" line.
-type InputOutput struct {
-	Read  uint64
-	Write uint64
-}
-
-// Threads models the "th" line.
-type Threads struct {
-	Threads uint64
-	FullCnt uint64
-}
-
-// ReadAheadCache models the "ra" line.
-type ReadAheadCache struct {
-	CacheSize      uint64
-	CacheHistogram []uint64
-	NotFound       uint64
-}
-
-// Network models the "net" line.
-type Network struct {
-	NetCount   uint64
-	UDPCount   uint64
-	TCPCount   uint64
-	TCPConnect uint64
-}
-
-// ClientRPC models the nfs "rpc" line.
-type ClientRPC struct {
-	RPCCount        uint64
-	Retransmissions uint64
-	AuthRefreshes   uint64
-}
-
-// ServerRPC models the nfsd "rpc" line.
-type ServerRPC struct {
-	RPCCount uint64
-	BadCnt   uint64
-	BadFmt   uint64
-	BadAuth  uint64
-	BadcInt  uint64
-}
-
-// V2Stats models the "proc2" line.
-type V2Stats struct {
-	Null     uint64
-	GetAttr  uint64
-	SetAttr  uint64
-	Root     uint64
-	Lookup   uint64
-	ReadLink uint64
-	Read     uint64
-	WrCache  uint64
-	Write    uint64
-	Create   uint64
-	Remove   uint64
-	Rename   uint64
-	Link     uint64
-	SymLink  uint64
-	MkDir    uint64
-	RmDir    uint64
-	ReadDir  uint64
-	FsStat   uint64
-}
-
-// V3Stats models the "proc3" line.
-type V3Stats struct {
-	Null        uint64
-	GetAttr     uint64
-	SetAttr     uint64
-	Lookup      uint64
-	Access      uint64
-	ReadLink    uint64
-	Read        uint64
-	Write       uint64
-	Create      uint64
-	MkDir       uint64
-	SymLink     uint64
-	MkNod       uint64
-	Remove      uint64
-	RmDir       uint64
-	Rename      uint64
-	Link        uint64
-	ReadDir     uint64
-	ReadDirPlus uint64
-	FsStat      uint64
-	FsInfo      uint64
-	PathConf    uint64
-	Commit      uint64
-}
-
-// ClientV4Stats models the nfs "proc4" line.
-type ClientV4Stats struct {
-	Null               uint64
-	Read               uint64
-	Write              uint64
-	Commit             uint64
-	Open               uint64
-	OpenConfirm        uint64
-	OpenNoattr         uint64
-	OpenDowngrade      uint64
-	Close              uint64
-	Setattr            uint64
-	FsInfo             uint64
-	Renew              uint64
-	SetClientID        uint64
-	SetClientIDConfirm uint64
-	Lock               uint64
-	Lockt              uint64
-	Locku              uint64
-	Access             uint64
-	Getattr            uint64
-	Lookup             uint64
-	LookupRoot         uint64
-	Remove             uint64
-	Rename             uint64
-	Link               uint64
-	Symlink            uint64
-	Create             uint64
-	Pathconf           uint64
-	StatFs             uint64
-	ReadLink           uint64
-	ReadDir            uint64
-	ServerCaps         uint64
-	DelegReturn        uint64
-	GetACL             uint64
-	SetACL             uint64
-	FsLocations        uint64
-	ReleaseLockowner   uint64
-	Secinfo            uint64
-	FsidPresent        uint64
-	ExchangeID         uint64
-	CreateSession      uint64
-	DestroySession     uint64
-	Sequence           uint64
-	GetLeaseTime       uint64
-	ReclaimComplete    uint64
-	LayoutGet          uint64
-	GetDeviceInfo      uint64
-	LayoutCommit       uint64
-	LayoutReturn       uint64
-	SecinfoNoName      uint64
-	TestStateID        uint64
-	FreeStateID        uint64
-	GetDeviceList      uint64
-	BindConnToSession  uint64
-	DestroyClientID    uint64
-	Seek               uint64
-	Allocate           uint64
-	DeAllocate         uint64
-	LayoutStats        uint64
-	Clone              uint64
-}
-
-// ServerV4Stats models the nfsd "proc4" line.
-type ServerV4Stats struct {
-	Null     uint64
-	Compound uint64
-}
-
-// V4Ops models the "proc4ops" line: NFSv4 operations
-// Variable list, see:
-// v4.0 https://tools.ietf.org/html/rfc3010 (38 operations)
-// v4.1 https://tools.ietf.org/html/rfc5661 (58 operations)
-// v4.2 https://tools.ietf.org/html/draft-ietf-nfsv4-minorversion2-41 (71 operations)
-type V4Ops struct {
-	//Values       uint64 // Variable depending on v4.x sub-version. TODO: Will this always at least include the fields in this struct?
-	Op0Unused    uint64
-	Op1Unused    uint64
-	Op2Future    uint64
-	Access       uint64
-	Close        uint64
-	Commit       uint64
-	Create       uint64
-	DelegPurge   uint64
-	DelegReturn  uint64
-	GetAttr      uint64
-	GetFH        uint64
-	Link         uint64
-	Lock         uint64
-	Lockt        uint64
-	Locku        uint64
-	Lookup       uint64
-	LookupRoot   uint64
-	Nverify      uint64
-	Open         uint64
-	OpenAttr     uint64
-	OpenConfirm  uint64
-	OpenDgrd     uint64
-	PutFH        uint64
-	PutPubFH     uint64
-	PutRootFH    uint64
-	Read         uint64
-	ReadDir      uint64
-	ReadLink     uint64
-	Remove       uint64
-	Rename       uint64
-	Renew        uint64
-	RestoreFH    uint64
-	SaveFH       uint64
-	SecInfo      uint64
-	SetAttr      uint64
-	Verify       uint64
-	Write        uint64
-	RelLockOwner uint64
-}
-
-// ClientRPCStats models all stats from /proc/net/rpc/nfs.
-type ClientRPCStats struct {
-	Network       Network
-	ClientRPC     ClientRPC
-	V2Stats       V2Stats
-	V3Stats       V3Stats
-	ClientV4Stats ClientV4Stats
-}
-
-// ServerRPCStats models all stats from /proc/net/rpc/nfsd.
-type ServerRPCStats struct {
-	ReplyCache     ReplyCache
-	FileHandles    FileHandles
-	InputOutput    InputOutput
-	Threads        Threads
-	ReadAheadCache ReadAheadCache
-	Network        Network
-	ServerRPC      ServerRPC
-	V2Stats        V2Stats
-	V3Stats        V3Stats
-	ServerV4Stats  ServerV4Stats
-	V4Ops          V4Ops
-}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse.go b/vendor/github.com/prometheus/procfs/nfs/parse.go
deleted file mode 100644
index 95a83cc5bc..0000000000
--- a/vendor/github.com/prometheus/procfs/nfs/parse.go
+++ /dev/null
@@ -1,317 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package nfs
-
-import (
-	"fmt"
-)
-
-func parseReplyCache(v []uint64) (ReplyCache, error) {
-	if len(v) != 3 {
-		return ReplyCache{}, fmt.Errorf("invalid ReplyCache line %q", v)
-	}
-
-	return ReplyCache{
-		Hits:    v[0],
-		Misses:  v[1],
-		NoCache: v[2],
-	}, nil
-}
-
-func parseFileHandles(v []uint64) (FileHandles, error) {
-	if len(v) != 5 {
-		return FileHandles{}, fmt.Errorf("invalid FileHandles, line %q", v)
-	}
-
-	return FileHandles{
-		Stale:        v[0],
-		TotalLookups: v[1],
-		AnonLookups:  v[2],
-		DirNoCache:   v[3],
-		NoDirNoCache: v[4],
-	}, nil
-}
-
-func parseInputOutput(v []uint64) (InputOutput, error) {
-	if len(v) != 2 {
-		return InputOutput{}, fmt.Errorf("invalid InputOutput line %q", v)
-	}
-
-	return InputOutput{
-		Read:  v[0],
-		Write: v[1],
-	}, nil
-}
-
-func parseThreads(v []uint64) (Threads, error) {
-	if len(v) != 2 {
-		return Threads{}, fmt.Errorf("invalid Threads line %q", v)
-	}
-
-	return Threads{
-		Threads: v[0],
-		FullCnt: v[1],
-	}, nil
-}
-
-func parseReadAheadCache(v []uint64) (ReadAheadCache, error) {
-	if len(v) != 12 {
-		return ReadAheadCache{}, fmt.Errorf("invalid ReadAheadCache line %q", v)
-	}
-
-	return ReadAheadCache{
-		CacheSize:      v[0],
-		CacheHistogram: v[1:11],
-		NotFound:       v[11],
-	}, nil
-}
-
-func parseNetwork(v []uint64) (Network, error) {
-	if len(v) != 4 {
-		return Network{}, fmt.Errorf("invalid Network line %q", v)
-	}
-
-	return Network{
-		NetCount:   v[0],
-		UDPCount:   v[1],
-		TCPCount:   v[2],
-		TCPConnect: v[3],
-	}, nil
-}
-
-func parseServerRPC(v []uint64) (ServerRPC, error) {
-	if len(v) != 5 {
-		return ServerRPC{}, fmt.Errorf("invalid RPC line %q", v)
-	}
-
-	return ServerRPC{
-		RPCCount: v[0],
-		BadCnt:   v[1],
-		BadFmt:   v[2],
-		BadAuth:  v[3],
-		BadcInt:  v[4],
-	}, nil
-}
-
-func parseClientRPC(v []uint64) (ClientRPC, error) {
-	if len(v) != 3 {
-		return ClientRPC{}, fmt.Errorf("invalid RPC line %q", v)
-	}
-
-	return ClientRPC{
-		RPCCount:        v[0],
-		Retransmissions: v[1],
-		AuthRefreshes:   v[2],
-	}, nil
-}
-
-func parseV2Stats(v []uint64) (V2Stats, error) {
-	values := int(v[0])
-	if len(v[1:]) != values || values != 18 {
-		return V2Stats{}, fmt.Errorf("invalid V2Stats line %q", v)
-	}
-
-	return V2Stats{
-		Null:     v[1],
-		GetAttr:  v[2],
-		SetAttr:  v[3],
-		Root:     v[4],
-		Lookup:   v[5],
-		ReadLink: v[6],
-		Read:     v[7],
-		WrCache:  v[8],
-		Write:    v[9],
-		Create:   v[10],
-		Remove:   v[11],
-		Rename:   v[12],
-		Link:     v[13],
-		SymLink:  v[14],
-		MkDir:    v[15],
-		RmDir:    v[16],
-		ReadDir:  v[17],
-		FsStat:   v[18],
-	}, nil
-}
-
-func parseV3Stats(v []uint64) (V3Stats, error) {
-	values := int(v[0])
-	if len(v[1:]) != values || values != 22 {
-		return V3Stats{}, fmt.Errorf("invalid V3Stats line %q", v)
-	}
-
-	return V3Stats{
-		Null:        v[1],
-		GetAttr:     v[2],
-		SetAttr:     v[3],
-		Lookup:      v[4],
-		Access:      v[5],
-		ReadLink:    v[6],
-		Read:        v[7],
-		Write:       v[8],
-		Create:      v[9],
-		MkDir:       v[10],
-		SymLink:     v[11],
-		MkNod:       v[12],
-		Remove:      v[13],
-		RmDir:       v[14],
-		Rename:      v[15],
-		Link:        v[16],
-		ReadDir:     v[17],
-		ReadDirPlus: v[18],
-		FsStat:      v[19],
-		FsInfo:      v[20],
-		PathConf:    v[21],
-		Commit:      v[22],
-	}, nil
-}
-
-func parseClientV4Stats(v []uint64) (ClientV4Stats, error) {
-	values := int(v[0])
-	if len(v[1:]) != values {
-		return ClientV4Stats{}, fmt.Errorf("invalid ClientV4Stats line %q", v)
-	}
-
-	// This function currently supports mapping 59 NFS v4 client stats.  Older
-	// kernels may emit fewer stats, so we must detect this and pad out the
-	// values to match the expected slice size.
-	if values < 59 {
-		newValues := make([]uint64, 60)
-		copy(newValues, v)
-		v = newValues
-	}
-
-	return ClientV4Stats{
-		Null:               v[1],
-		Read:               v[2],
-		Write:              v[3],
-		Commit:             v[4],
-		Open:               v[5],
-		OpenConfirm:        v[6],
-		OpenNoattr:         v[7],
-		OpenDowngrade:      v[8],
-		Close:              v[9],
-		Setattr:            v[10],
-		FsInfo:             v[11],
-		Renew:              v[12],
-		SetClientID:        v[13],
-		SetClientIDConfirm: v[14],
-		Lock:               v[15],
-		Lockt:              v[16],
-		Locku:              v[17],
-		Access:             v[18],
-		Getattr:            v[19],
-		Lookup:             v[20],
-		LookupRoot:         v[21],
-		Remove:             v[22],
-		Rename:             v[23],
-		Link:               v[24],
-		Symlink:            v[25],
-		Create:             v[26],
-		Pathconf:           v[27],
-		StatFs:             v[28],
-		ReadLink:           v[29],
-		ReadDir:            v[30],
-		ServerCaps:         v[31],
-		DelegReturn:        v[32],
-		GetACL:             v[33],
-		SetACL:             v[34],
-		FsLocations:        v[35],
-		ReleaseLockowner:   v[36],
-		Secinfo:            v[37],
-		FsidPresent:        v[38],
-		ExchangeID:         v[39],
-		CreateSession:      v[40],
-		DestroySession:     v[41],
-		Sequence:           v[42],
-		GetLeaseTime:       v[43],
-		ReclaimComplete:    v[44],
-		LayoutGet:          v[45],
-		GetDeviceInfo:      v[46],
-		LayoutCommit:       v[47],
-		LayoutReturn:       v[48],
-		SecinfoNoName:      v[49],
-		TestStateID:        v[50],
-		FreeStateID:        v[51],
-		GetDeviceList:      v[52],
-		BindConnToSession:  v[53],
-		DestroyClientID:    v[54],
-		Seek:               v[55],
-		Allocate:           v[56],
-		DeAllocate:         v[57],
-		LayoutStats:        v[58],
-		Clone:              v[59],
-	}, nil
-}
-
-func parseServerV4Stats(v []uint64) (ServerV4Stats, error) {
-	values := int(v[0])
-	if len(v[1:]) != values || values != 2 {
-		return ServerV4Stats{}, fmt.Errorf("invalid V4Stats line %q", v)
-	}
-
-	return ServerV4Stats{
-		Null:     v[1],
-		Compound: v[2],
-	}, nil
-}
-
-func parseV4Ops(v []uint64) (V4Ops, error) {
-	values := int(v[0])
-	if len(v[1:]) != values || values < 39 {
-		return V4Ops{}, fmt.Errorf("invalid V4Ops line %q", v)
-	}
-
-	stats := V4Ops{
-		Op0Unused:    v[1],
-		Op1Unused:    v[2],
-		Op2Future:    v[3],
-		Access:       v[4],
-		Close:        v[5],
-		Commit:       v[6],
-		Create:       v[7],
-		DelegPurge:   v[8],
-		DelegReturn:  v[9],
-		GetAttr:      v[10],
-		GetFH:        v[11],
-		Link:         v[12],
-		Lock:         v[13],
-		Lockt:        v[14],
-		Locku:        v[15],
-		Lookup:       v[16],
-		LookupRoot:   v[17],
-		Nverify:      v[18],
-		Open:         v[19],
-		OpenAttr:     v[20],
-		OpenConfirm:  v[21],
-		OpenDgrd:     v[22],
-		PutFH:        v[23],
-		PutPubFH:     v[24],
-		PutRootFH:    v[25],
-		Read:         v[26],
-		ReadDir:      v[27],
-		ReadLink:     v[28],
-		Remove:       v[29],
-		Rename:       v[30],
-		Renew:        v[31],
-		RestoreFH:    v[32],
-		SaveFH:       v[33],
-		SecInfo:      v[34],
-		SetAttr:      v[35],
-		Verify:       v[36],
-		Write:        v[37],
-		RelLockOwner: v[38],
-	}
-
-	return stats, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go b/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
deleted file mode 100644
index c0d3a5ad9b..0000000000
--- a/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
+++ /dev/null
@@ -1,67 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package nfs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"strings"
-
-	"github.com/prometheus/procfs/internal/util"
-)
-
-// ParseClientRPCStats returns stats read from /proc/net/rpc/nfs
-func ParseClientRPCStats(r io.Reader) (*ClientRPCStats, error) {
-	stats := &ClientRPCStats{}
-
-	scanner := bufio.NewScanner(r)
-	for scanner.Scan() {
-		line := scanner.Text()
-		parts := strings.Fields(scanner.Text())
-		// require at least <key> <value>
-		if len(parts) < 2 {
-			return nil, fmt.Errorf("invalid NFS metric line %q", line)
-		}
-
-		values, err := util.ParseUint64s(parts[1:])
-		if err != nil {
-			return nil, fmt.Errorf("error parsing NFS metric line: %s", err)
-		}
-
-		switch metricLine := parts[0]; metricLine {
-		case "net":
-			stats.Network, err = parseNetwork(values)
-		case "rpc":
-			stats.ClientRPC, err = parseClientRPC(values)
-		case "proc2":
-			stats.V2Stats, err = parseV2Stats(values)
-		case "proc3":
-			stats.V3Stats, err = parseV3Stats(values)
-		case "proc4":
-			stats.ClientV4Stats, err = parseClientV4Stats(values)
-		default:
-			return nil, fmt.Errorf("unknown NFS metric line %q", metricLine)
-		}
-		if err != nil {
-			return nil, fmt.Errorf("errors parsing NFS metric line: %s", err)
-		}
-	}
-
-	if err := scanner.Err(); err != nil {
-		return nil, fmt.Errorf("error scanning NFS file: %s", err)
-	}
-
-	return stats, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go b/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
deleted file mode 100644
index 57bb4a3585..0000000000
--- a/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
+++ /dev/null
@@ -1,89 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package nfs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"strings"
-
-	"github.com/prometheus/procfs/internal/util"
-)
-
-// ParseServerRPCStats returns stats read from /proc/net/rpc/nfsd
-func ParseServerRPCStats(r io.Reader) (*ServerRPCStats, error) {
-	stats := &ServerRPCStats{}
-
-	scanner := bufio.NewScanner(r)
-	for scanner.Scan() {
-		line := scanner.Text()
-		parts := strings.Fields(scanner.Text())
-		// require at least <key> <value>
-		if len(parts) < 2 {
-			return nil, fmt.Errorf("invalid NFSd metric line %q", line)
-		}
-		label := parts[0]
-
-		var values []uint64
-		var err error
-		if label == "th" {
-			if len(parts) < 3 {
-				return nil, fmt.Errorf("invalid NFSd th metric line %q", line)
-			}
-			values, err = util.ParseUint64s(parts[1:3])
-		} else {
-			values, err = util.ParseUint64s(parts[1:])
-		}
-		if err != nil {
-			return nil, fmt.Errorf("error parsing NFSd metric line: %s", err)
-		}
-
-		switch metricLine := parts[0]; metricLine {
-		case "rc":
-			stats.ReplyCache, err = parseReplyCache(values)
-		case "fh":
-			stats.FileHandles, err = parseFileHandles(values)
-		case "io":
-			stats.InputOutput, err = parseInputOutput(values)
-		case "th":
-			stats.Threads, err = parseThreads(values)
-		case "ra":
-			stats.ReadAheadCache, err = parseReadAheadCache(values)
-		case "net":
-			stats.Network, err = parseNetwork(values)
-		case "rpc":
-			stats.ServerRPC, err = parseServerRPC(values)
-		case "proc2":
-			stats.V2Stats, err = parseV2Stats(values)
-		case "proc3":
-			stats.V3Stats, err = parseV3Stats(values)
-		case "proc4":
-			stats.ServerV4Stats, err = parseServerV4Stats(values)
-		case "proc4ops":
-			stats.V4Ops, err = parseV4Ops(values)
-		default:
-			return nil, fmt.Errorf("unknown NFSd metric line %q", metricLine)
-		}
-		if err != nil {
-			return nil, fmt.Errorf("errors parsing NFSd metric line: %s", err)
-		}
-	}
-
-	if err := scanner.Err(); err != nil {
-		return nil, fmt.Errorf("error scanning NFSd file: %s", err)
-	}
-
-	return stats, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/proc.go b/vendor/github.com/prometheus/procfs/proc.go
deleted file mode 100644
index 7cf5b8acf9..0000000000
--- a/vendor/github.com/prometheus/procfs/proc.go
+++ /dev/null
@@ -1,238 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bytes"
-	"fmt"
-	"io/ioutil"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// Proc provides information about a running process.
-type Proc struct {
-	// The process ID.
-	PID int
-
-	fs FS
-}
-
-// Procs represents a list of Proc structs.
-type Procs []Proc
-
-func (p Procs) Len() int           { return len(p) }
-func (p Procs) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
-func (p Procs) Less(i, j int) bool { return p[i].PID < p[j].PID }
-
-// Self returns a process for the current process read via /proc/self.
-func Self() (Proc, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return Proc{}, err
-	}
-	return fs.Self()
-}
-
-// NewProc returns a process for the given pid under /proc.
-func NewProc(pid int) (Proc, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return Proc{}, err
-	}
-	return fs.NewProc(pid)
-}
-
-// AllProcs returns a list of all currently available processes under /proc.
-func AllProcs() (Procs, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return Procs{}, err
-	}
-	return fs.AllProcs()
-}
-
-// Self returns a process for the current process.
-func (fs FS) Self() (Proc, error) {
-	p, err := os.Readlink(fs.Path("self"))
-	if err != nil {
-		return Proc{}, err
-	}
-	pid, err := strconv.Atoi(strings.Replace(p, string(fs), "", -1))
-	if err != nil {
-		return Proc{}, err
-	}
-	return fs.NewProc(pid)
-}
-
-// NewProc returns a process for the given pid.
-func (fs FS) NewProc(pid int) (Proc, error) {
-	if _, err := os.Stat(fs.Path(strconv.Itoa(pid))); err != nil {
-		return Proc{}, err
-	}
-	return Proc{PID: pid, fs: fs}, nil
-}
-
-// AllProcs returns a list of all currently available processes.
-func (fs FS) AllProcs() (Procs, error) {
-	d, err := os.Open(fs.Path())
-	if err != nil {
-		return Procs{}, err
-	}
-	defer d.Close()
-
-	names, err := d.Readdirnames(-1)
-	if err != nil {
-		return Procs{}, fmt.Errorf("could not read %s: %s", d.Name(), err)
-	}
-
-	p := Procs{}
-	for _, n := range names {
-		pid, err := strconv.ParseInt(n, 10, 64)
-		if err != nil {
-			continue
-		}
-		p = append(p, Proc{PID: int(pid), fs: fs})
-	}
-
-	return p, nil
-}
-
-// CmdLine returns the command line of a process.
-func (p Proc) CmdLine() ([]string, error) {
-	f, err := os.Open(p.path("cmdline"))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	data, err := ioutil.ReadAll(f)
-	if err != nil {
-		return nil, err
-	}
-
-	if len(data) < 1 {
-		return []string{}, nil
-	}
-
-	return strings.Split(string(bytes.TrimRight(data, string("\x00"))), string(byte(0))), nil
-}
-
-// Comm returns the command name of a process.
-func (p Proc) Comm() (string, error) {
-	f, err := os.Open(p.path("comm"))
-	if err != nil {
-		return "", err
-	}
-	defer f.Close()
-
-	data, err := ioutil.ReadAll(f)
-	if err != nil {
-		return "", err
-	}
-
-	return strings.TrimSpace(string(data)), nil
-}
-
-// Executable returns the absolute path of the executable command of a process.
-func (p Proc) Executable() (string, error) {
-	exe, err := os.Readlink(p.path("exe"))
-	if os.IsNotExist(err) {
-		return "", nil
-	}
-
-	return exe, err
-}
-
-// FileDescriptors returns the currently open file descriptors of a process.
-func (p Proc) FileDescriptors() ([]uintptr, error) {
-	names, err := p.fileDescriptors()
-	if err != nil {
-		return nil, err
-	}
-
-	fds := make([]uintptr, len(names))
-	for i, n := range names {
-		fd, err := strconv.ParseInt(n, 10, 32)
-		if err != nil {
-			return nil, fmt.Errorf("could not parse fd %s: %s", n, err)
-		}
-		fds[i] = uintptr(fd)
-	}
-
-	return fds, nil
-}
-
-// FileDescriptorTargets returns the targets of all file descriptors of a process.
-// If a file descriptor is not a symlink to a file (like a socket), that value will be the empty string.
-func (p Proc) FileDescriptorTargets() ([]string, error) {
-	names, err := p.fileDescriptors()
-	if err != nil {
-		return nil, err
-	}
-
-	targets := make([]string, len(names))
-
-	for i, name := range names {
-		target, err := os.Readlink(p.path("fd", name))
-		if err == nil {
-			targets[i] = target
-		}
-	}
-
-	return targets, nil
-}
-
-// FileDescriptorsLen returns the number of currently open file descriptors of
-// a process.
-func (p Proc) FileDescriptorsLen() (int, error) {
-	fds, err := p.fileDescriptors()
-	if err != nil {
-		return 0, err
-	}
-
-	return len(fds), nil
-}
-
-// MountStats retrieves statistics and configuration for mount points in a
-// process's namespace.
-func (p Proc) MountStats() ([]*Mount, error) {
-	f, err := os.Open(p.path("mountstats"))
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
-
-	return parseMountStats(f)
-}
-
-func (p Proc) fileDescriptors() ([]string, error) {
-	d, err := os.Open(p.path("fd"))
-	if err != nil {
-		return nil, err
-	}
-	defer d.Close()
-
-	names, err := d.Readdirnames(-1)
-	if err != nil {
-		return nil, fmt.Errorf("could not read %s: %s", d.Name(), err)
-	}
-
-	return names, nil
-}
-
-func (p Proc) path(pa ...string) string {
-	return p.fs.Path(append([]string{strconv.Itoa(p.PID)}, pa...)...)
-}
diff --git a/vendor/github.com/prometheus/procfs/proc_io.go b/vendor/github.com/prometheus/procfs/proc_io.go
deleted file mode 100644
index 0251c83bfe..0000000000
--- a/vendor/github.com/prometheus/procfs/proc_io.go
+++ /dev/null
@@ -1,65 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"fmt"
-	"io/ioutil"
-	"os"
-)
-
-// ProcIO models the content of /proc/<pid>/io.
-type ProcIO struct {
-	// Chars read.
-	RChar uint64
-	// Chars written.
-	WChar uint64
-	// Read syscalls.
-	SyscR uint64
-	// Write syscalls.
-	SyscW uint64
-	// Bytes read.
-	ReadBytes uint64
-	// Bytes written.
-	WriteBytes uint64
-	// Bytes written, but taking into account truncation. See
-	// Documentation/filesystems/proc.txt in the kernel sources for
-	// detailed explanation.
-	CancelledWriteBytes int64
-}
-
-// NewIO creates a new ProcIO instance from a given Proc instance.
-func (p Proc) NewIO() (ProcIO, error) {
-	pio := ProcIO{}
-
-	f, err := os.Open(p.path("io"))
-	if err != nil {
-		return pio, err
-	}
-	defer f.Close()
-
-	data, err := ioutil.ReadAll(f)
-	if err != nil {
-		return pio, err
-	}
-
-	ioFormat := "rchar: %d\nwchar: %d\nsyscr: %d\nsyscw: %d\n" +
-		"read_bytes: %d\nwrite_bytes: %d\n" +
-		"cancelled_write_bytes: %d\n"
-
-	_, err = fmt.Sscanf(string(data), ioFormat, &pio.RChar, &pio.WChar, &pio.SyscR,
-		&pio.SyscW, &pio.ReadBytes, &pio.WriteBytes, &pio.CancelledWriteBytes)
-
-	return pio, err
-}
diff --git a/vendor/github.com/prometheus/procfs/proc_limits.go b/vendor/github.com/prometheus/procfs/proc_limits.go
deleted file mode 100644
index f04ba6fda8..0000000000
--- a/vendor/github.com/prometheus/procfs/proc_limits.go
+++ /dev/null
@@ -1,150 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"fmt"
-	"os"
-	"regexp"
-	"strconv"
-)
-
-// ProcLimits represents the soft limits for each of the process's resource
-// limits. For more information see getrlimit(2):
-// http://man7.org/linux/man-pages/man2/getrlimit.2.html.
-type ProcLimits struct {
-	// CPU time limit in seconds.
-	CPUTime int64
-	// Maximum size of files that the process may create.
-	FileSize int64
-	// Maximum size of the process's data segment (initialized data,
-	// uninitialized data, and heap).
-	DataSize int64
-	// Maximum size of the process stack in bytes.
-	StackSize int64
-	// Maximum size of a core file.
-	CoreFileSize int64
-	// Limit of the process's resident set in pages.
-	ResidentSet int64
-	// Maximum number of processes that can be created for the real user ID of
-	// the calling process.
-	Processes int64
-	// Value one greater than the maximum file descriptor number that can be
-	// opened by this process.
-	OpenFiles int64
-	// Maximum number of bytes of memory that may be locked into RAM.
-	LockedMemory int64
-	// Maximum size of the process's virtual memory address space in bytes.
-	AddressSpace int64
-	// Limit on the combined number of flock(2) locks and fcntl(2) leases that
-	// this process may establish.
-	FileLocks int64
-	// Limit of signals that may be queued for the real user ID of the calling
-	// process.
-	PendingSignals int64
-	// Limit on the number of bytes that can be allocated for POSIX message
-	// queues for the real user ID of the calling process.
-	MsqqueueSize int64
-	// Limit of the nice priority set using setpriority(2) or nice(2).
-	NicePriority int64
-	// Limit of the real-time priority set using sched_setscheduler(2) or
-	// sched_setparam(2).
-	RealtimePriority int64
-	// Limit (in microseconds) on the amount of CPU time that a process
-	// scheduled under a real-time scheduling policy may consume without making
-	// a blocking system call.
-	RealtimeTimeout int64
-}
-
-const (
-	limitsFields    = 3
-	limitsUnlimited = "unlimited"
-)
-
-var (
-	limitsDelimiter = regexp.MustCompile("  +")
-)
-
-// NewLimits returns the current soft limits of the process.
-func (p Proc) NewLimits() (ProcLimits, error) {
-	f, err := os.Open(p.path("limits"))
-	if err != nil {
-		return ProcLimits{}, err
-	}
-	defer f.Close()
-
-	var (
-		l = ProcLimits{}
-		s = bufio.NewScanner(f)
-	)
-	for s.Scan() {
-		fields := limitsDelimiter.Split(s.Text(), limitsFields)
-		if len(fields) != limitsFields {
-			return ProcLimits{}, fmt.Errorf(
-				"couldn't parse %s line %s", f.Name(), s.Text())
-		}
-
-		switch fields[0] {
-		case "Max cpu time":
-			l.CPUTime, err = parseInt(fields[1])
-		case "Max file size":
-			l.FileSize, err = parseInt(fields[1])
-		case "Max data size":
-			l.DataSize, err = parseInt(fields[1])
-		case "Max stack size":
-			l.StackSize, err = parseInt(fields[1])
-		case "Max core file size":
-			l.CoreFileSize, err = parseInt(fields[1])
-		case "Max resident set":
-			l.ResidentSet, err = parseInt(fields[1])
-		case "Max processes":
-			l.Processes, err = parseInt(fields[1])
-		case "Max open files":
-			l.OpenFiles, err = parseInt(fields[1])
-		case "Max locked memory":
-			l.LockedMemory, err = parseInt(fields[1])
-		case "Max address space":
-			l.AddressSpace, err = parseInt(fields[1])
-		case "Max file locks":
-			l.FileLocks, err = parseInt(fields[1])
-		case "Max pending signals":
-			l.PendingSignals, err = parseInt(fields[1])
-		case "Max msgqueue size":
-			l.MsqqueueSize, err = parseInt(fields[1])
-		case "Max nice priority":
-			l.NicePriority, err = parseInt(fields[1])
-		case "Max realtime priority":
-			l.RealtimePriority, err = parseInt(fields[1])
-		case "Max realtime timeout":
-			l.RealtimeTimeout, err = parseInt(fields[1])
-		}
-		if err != nil {
-			return ProcLimits{}, err
-		}
-	}
-
-	return l, s.Err()
-}
-
-func parseInt(s string) (int64, error) {
-	if s == limitsUnlimited {
-		return -1, nil
-	}
-	i, err := strconv.ParseInt(s, 10, 64)
-	if err != nil {
-		return 0, fmt.Errorf("couldn't parse value %s: %s", s, err)
-	}
-	return i, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/proc_ns.go b/vendor/github.com/prometheus/procfs/proc_ns.go
deleted file mode 100644
index d06c26ebad..0000000000
--- a/vendor/github.com/prometheus/procfs/proc_ns.go
+++ /dev/null
@@ -1,68 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"fmt"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// Namespace represents a single namespace of a process.
-type Namespace struct {
-	Type  string // Namespace type.
-	Inode uint32 // Inode number of the namespace. If two processes are in the same namespace their inodes will match.
-}
-
-// Namespaces contains all of the namespaces that the process is contained in.
-type Namespaces map[string]Namespace
-
-// NewNamespaces reads from /proc/[pid/ns/* to get the namespaces of which the
-// process is a member.
-func (p Proc) NewNamespaces() (Namespaces, error) {
-	d, err := os.Open(p.path("ns"))
-	if err != nil {
-		return nil, err
-	}
-	defer d.Close()
-
-	names, err := d.Readdirnames(-1)
-	if err != nil {
-		return nil, fmt.Errorf("failed to read contents of ns dir: %v", err)
-	}
-
-	ns := make(Namespaces, len(names))
-	for _, name := range names {
-		target, err := os.Readlink(p.path("ns", name))
-		if err != nil {
-			return nil, err
-		}
-
-		fields := strings.SplitN(target, ":", 2)
-		if len(fields) != 2 {
-			return nil, fmt.Errorf("failed to parse namespace type and inode from '%v'", target)
-		}
-
-		typ := fields[0]
-		inode, err := strconv.ParseUint(strings.Trim(fields[1], "[]"), 10, 32)
-		if err != nil {
-			return nil, fmt.Errorf("failed to parse inode from '%v': %v", fields[1], err)
-		}
-
-		ns[name] = Namespace{typ, uint32(inode)}
-	}
-
-	return ns, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/proc_stat.go b/vendor/github.com/prometheus/procfs/proc_stat.go
deleted file mode 100644
index 3cf2a9f18f..0000000000
--- a/vendor/github.com/prometheus/procfs/proc_stat.go
+++ /dev/null
@@ -1,188 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bytes"
-	"fmt"
-	"io/ioutil"
-	"os"
-)
-
-// Originally, this USER_HZ value was dynamically retrieved via a sysconf call
-// which required cgo. However, that caused a lot of problems regarding
-// cross-compilation. Alternatives such as running a binary to determine the
-// value, or trying to derive it in some other way were all problematic.  After
-// much research it was determined that USER_HZ is actually hardcoded to 100 on
-// all Go-supported platforms as of the time of this writing. This is why we
-// decided to hardcode it here as well. It is not impossible that there could
-// be systems with exceptions, but they should be very exotic edge cases, and
-// in that case, the worst outcome will be two misreported metrics.
-//
-// See also the following discussions:
-//
-// - https://github.com/prometheus/node_exporter/issues/52
-// - https://github.com/prometheus/procfs/pull/2
-// - http://stackoverflow.com/questions/17410841/how-does-user-hz-solve-the-jiffy-scaling-issue
-const userHZ = 100
-
-// ProcStat provides status information about the process,
-// read from /proc/[pid]/stat.
-type ProcStat struct {
-	// The process ID.
-	PID int
-	// The filename of the executable.
-	Comm string
-	// The process state.
-	State string
-	// The PID of the parent of this process.
-	PPID int
-	// The process group ID of the process.
-	PGRP int
-	// The session ID of the process.
-	Session int
-	// The controlling terminal of the process.
-	TTY int
-	// The ID of the foreground process group of the controlling terminal of
-	// the process.
-	TPGID int
-	// The kernel flags word of the process.
-	Flags uint
-	// The number of minor faults the process has made which have not required
-	// loading a memory page from disk.
-	MinFlt uint
-	// The number of minor faults that the process's waited-for children have
-	// made.
-	CMinFlt uint
-	// The number of major faults the process has made which have required
-	// loading a memory page from disk.
-	MajFlt uint
-	// The number of major faults that the process's waited-for children have
-	// made.
-	CMajFlt uint
-	// Amount of time that this process has been scheduled in user mode,
-	// measured in clock ticks.
-	UTime uint
-	// Amount of time that this process has been scheduled in kernel mode,
-	// measured in clock ticks.
-	STime uint
-	// Amount of time that this process's waited-for children have been
-	// scheduled in user mode, measured in clock ticks.
-	CUTime uint
-	// Amount of time that this process's waited-for children have been
-	// scheduled in kernel mode, measured in clock ticks.
-	CSTime uint
-	// For processes running a real-time scheduling policy, this is the negated
-	// scheduling priority, minus one.
-	Priority int
-	// The nice value, a value in the range 19 (low priority) to -20 (high
-	// priority).
-	Nice int
-	// Number of threads in this process.
-	NumThreads int
-	// The time the process started after system boot, the value is expressed
-	// in clock ticks.
-	Starttime uint64
-	// Virtual memory size in bytes.
-	VSize int
-	// Resident set size in pages.
-	RSS int
-
-	fs FS
-}
-
-// NewStat returns the current status information of the process.
-func (p Proc) NewStat() (ProcStat, error) {
-	f, err := os.Open(p.path("stat"))
-	if err != nil {
-		return ProcStat{}, err
-	}
-	defer f.Close()
-
-	data, err := ioutil.ReadAll(f)
-	if err != nil {
-		return ProcStat{}, err
-	}
-
-	var (
-		ignore int
-
-		s = ProcStat{PID: p.PID, fs: p.fs}
-		l = bytes.Index(data, []byte("("))
-		r = bytes.LastIndex(data, []byte(")"))
-	)
-
-	if l < 0 || r < 0 {
-		return ProcStat{}, fmt.Errorf(
-			"unexpected format, couldn't extract comm: %s",
-			data,
-		)
-	}
-
-	s.Comm = string(data[l+1 : r])
-	_, err = fmt.Fscan(
-		bytes.NewBuffer(data[r+2:]),
-		&s.State,
-		&s.PPID,
-		&s.PGRP,
-		&s.Session,
-		&s.TTY,
-		&s.TPGID,
-		&s.Flags,
-		&s.MinFlt,
-		&s.CMinFlt,
-		&s.MajFlt,
-		&s.CMajFlt,
-		&s.UTime,
-		&s.STime,
-		&s.CUTime,
-		&s.CSTime,
-		&s.Priority,
-		&s.Nice,
-		&s.NumThreads,
-		&ignore,
-		&s.Starttime,
-		&s.VSize,
-		&s.RSS,
-	)
-	if err != nil {
-		return ProcStat{}, err
-	}
-
-	return s, nil
-}
-
-// VirtualMemory returns the virtual memory size in bytes.
-func (s ProcStat) VirtualMemory() int {
-	return s.VSize
-}
-
-// ResidentMemory returns the resident memory size in bytes.
-func (s ProcStat) ResidentMemory() int {
-	return s.RSS * os.Getpagesize()
-}
-
-// StartTime returns the unix timestamp of the process in seconds.
-func (s ProcStat) StartTime() (float64, error) {
-	stat, err := s.fs.NewStat()
-	if err != nil {
-		return 0, err
-	}
-	return float64(stat.BootTime) + (float64(s.Starttime) / userHZ), nil
-}
-
-// CPUTime returns the total CPU user and system time in seconds.
-func (s ProcStat) CPUTime() float64 {
-	return float64(s.UTime+s.STime) / userHZ
-}
diff --git a/vendor/github.com/prometheus/procfs/stat.go b/vendor/github.com/prometheus/procfs/stat.go
deleted file mode 100644
index 61eb6b0e3c..0000000000
--- a/vendor/github.com/prometheus/procfs/stat.go
+++ /dev/null
@@ -1,232 +0,0 @@
-// Copyright 2018 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// CPUStat shows how much time the cpu spend in various stages.
-type CPUStat struct {
-	User      float64
-	Nice      float64
-	System    float64
-	Idle      float64
-	Iowait    float64
-	IRQ       float64
-	SoftIRQ   float64
-	Steal     float64
-	Guest     float64
-	GuestNice float64
-}
-
-// SoftIRQStat represent the softirq statistics as exported in the procfs stat file.
-// A nice introduction can be found at https://0xax.gitbooks.io/linux-insides/content/interrupts/interrupts-9.html
-// It is possible to get per-cpu stats by reading /proc/softirqs
-type SoftIRQStat struct {
-	Hi          uint64
-	Timer       uint64
-	NetTx       uint64
-	NetRx       uint64
-	Block       uint64
-	BlockIoPoll uint64
-	Tasklet     uint64
-	Sched       uint64
-	Hrtimer     uint64
-	Rcu         uint64
-}
-
-// Stat represents kernel/system statistics.
-type Stat struct {
-	// Boot time in seconds since the Epoch.
-	BootTime uint64
-	// Summed up cpu statistics.
-	CPUTotal CPUStat
-	// Per-CPU statistics.
-	CPU []CPUStat
-	// Number of times interrupts were handled, which contains numbered and unnumbered IRQs.
-	IRQTotal uint64
-	// Number of times a numbered IRQ was triggered.
-	IRQ []uint64
-	// Number of times a context switch happened.
-	ContextSwitches uint64
-	// Number of times a process was created.
-	ProcessCreated uint64
-	// Number of processes currently running.
-	ProcessesRunning uint64
-	// Number of processes currently blocked (waiting for IO).
-	ProcessesBlocked uint64
-	// Number of times a softirq was scheduled.
-	SoftIRQTotal uint64
-	// Detailed softirq statistics.
-	SoftIRQ SoftIRQStat
-}
-
-// NewStat returns kernel/system statistics read from /proc/stat.
-func NewStat() (Stat, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return Stat{}, err
-	}
-
-	return fs.NewStat()
-}
-
-// Parse a cpu statistics line and returns the CPUStat struct plus the cpu id (or -1 for the overall sum).
-func parseCPUStat(line string) (CPUStat, int64, error) {
-	cpuStat := CPUStat{}
-	var cpu string
-
-	count, err := fmt.Sscanf(line, "%s %f %f %f %f %f %f %f %f %f %f",
-		&cpu,
-		&cpuStat.User, &cpuStat.Nice, &cpuStat.System, &cpuStat.Idle,
-		&cpuStat.Iowait, &cpuStat.IRQ, &cpuStat.SoftIRQ, &cpuStat.Steal,
-		&cpuStat.Guest, &cpuStat.GuestNice)
-
-	if err != nil && err != io.EOF {
-		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu): %s", line, err)
-	}
-	if count == 0 {
-		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu): 0 elements parsed", line)
-	}
-
-	cpuStat.User /= userHZ
-	cpuStat.Nice /= userHZ
-	cpuStat.System /= userHZ
-	cpuStat.Idle /= userHZ
-	cpuStat.Iowait /= userHZ
-	cpuStat.IRQ /= userHZ
-	cpuStat.SoftIRQ /= userHZ
-	cpuStat.Steal /= userHZ
-	cpuStat.Guest /= userHZ
-	cpuStat.GuestNice /= userHZ
-
-	if cpu == "cpu" {
-		return cpuStat, -1, nil
-	}
-
-	cpuID, err := strconv.ParseInt(cpu[3:], 10, 64)
-	if err != nil {
-		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu/cpuid): %s", line, err)
-	}
-
-	return cpuStat, cpuID, nil
-}
-
-// Parse a softirq line.
-func parseSoftIRQStat(line string) (SoftIRQStat, uint64, error) {
-	softIRQStat := SoftIRQStat{}
-	var total uint64
-	var prefix string
-
-	_, err := fmt.Sscanf(line, "%s %d %d %d %d %d %d %d %d %d %d %d",
-		&prefix, &total,
-		&softIRQStat.Hi, &softIRQStat.Timer, &softIRQStat.NetTx, &softIRQStat.NetRx,
-		&softIRQStat.Block, &softIRQStat.BlockIoPoll,
-		&softIRQStat.Tasklet, &softIRQStat.Sched,
-		&softIRQStat.Hrtimer, &softIRQStat.Rcu)
-
-	if err != nil {
-		return SoftIRQStat{}, 0, fmt.Errorf("couldn't parse %s (softirq): %s", line, err)
-	}
-
-	return softIRQStat, total, nil
-}
-
-// NewStat returns an information about current kernel/system statistics.
-func (fs FS) NewStat() (Stat, error) {
-	// See https://www.kernel.org/doc/Documentation/filesystems/proc.txt
-
-	f, err := os.Open(fs.Path("stat"))
-	if err != nil {
-		return Stat{}, err
-	}
-	defer f.Close()
-
-	stat := Stat{}
-
-	scanner := bufio.NewScanner(f)
-	for scanner.Scan() {
-		line := scanner.Text()
-		parts := strings.Fields(scanner.Text())
-		// require at least <key> <value>
-		if len(parts) < 2 {
-			continue
-		}
-		switch {
-		case parts[0] == "btime":
-			if stat.BootTime, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (btime): %s", parts[1], err)
-			}
-		case parts[0] == "intr":
-			if stat.IRQTotal, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (intr): %s", parts[1], err)
-			}
-			numberedIRQs := parts[2:]
-			stat.IRQ = make([]uint64, len(numberedIRQs))
-			for i, count := range numberedIRQs {
-				if stat.IRQ[i], err = strconv.ParseUint(count, 10, 64); err != nil {
-					return Stat{}, fmt.Errorf("couldn't parse %s (intr%d): %s", count, i, err)
-				}
-			}
-		case parts[0] == "ctxt":
-			if stat.ContextSwitches, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (ctxt): %s", parts[1], err)
-			}
-		case parts[0] == "processes":
-			if stat.ProcessCreated, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (processes): %s", parts[1], err)
-			}
-		case parts[0] == "procs_running":
-			if stat.ProcessesRunning, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (procs_running): %s", parts[1], err)
-			}
-		case parts[0] == "procs_blocked":
-			if stat.ProcessesBlocked, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
-				return Stat{}, fmt.Errorf("couldn't parse %s (procs_blocked): %s", parts[1], err)
-			}
-		case parts[0] == "softirq":
-			softIRQStats, total, err := parseSoftIRQStat(line)
-			if err != nil {
-				return Stat{}, err
-			}
-			stat.SoftIRQTotal = total
-			stat.SoftIRQ = softIRQStats
-		case strings.HasPrefix(parts[0], "cpu"):
-			cpuStat, cpuID, err := parseCPUStat(line)
-			if err != nil {
-				return Stat{}, err
-			}
-			if cpuID == -1 {
-				stat.CPUTotal = cpuStat
-			} else {
-				for int64(len(stat.CPU)) <= cpuID {
-					stat.CPU = append(stat.CPU, CPUStat{})
-				}
-				stat.CPU[cpuID] = cpuStat
-			}
-		}
-	}
-
-	if err := scanner.Err(); err != nil {
-		return Stat{}, fmt.Errorf("couldn't parse %s: %s", f.Name(), err)
-	}
-
-	return stat, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/xfrm.go b/vendor/github.com/prometheus/procfs/xfrm.go
deleted file mode 100644
index ffe9df50d6..0000000000
--- a/vendor/github.com/prometheus/procfs/xfrm.go
+++ /dev/null
@@ -1,187 +0,0 @@
-// Copyright 2017 Prometheus Team
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package procfs
-
-import (
-	"bufio"
-	"fmt"
-	"os"
-	"strconv"
-	"strings"
-)
-
-// XfrmStat models the contents of /proc/net/xfrm_stat.
-type XfrmStat struct {
-	// All errors which are not matched by other
-	XfrmInError int
-	// No buffer is left
-	XfrmInBufferError int
-	// Header Error
-	XfrmInHdrError int
-	// No state found
-	// i.e. either inbound SPI, address, or IPSEC protocol at SA is wrong
-	XfrmInNoStates int
-	// Transformation protocol specific error
-	// e.g. SA Key is wrong
-	XfrmInStateProtoError int
-	// Transformation mode specific error
-	XfrmInStateModeError int
-	// Sequence error
-	// e.g. sequence number is out of window
-	XfrmInStateSeqError int
-	// State is expired
-	XfrmInStateExpired int
-	// State has mismatch option
-	// e.g. UDP encapsulation type is mismatched
-	XfrmInStateMismatch int
-	// State is invalid
-	XfrmInStateInvalid int
-	// No matching template for states
-	// e.g. Inbound SAs are correct but SP rule is wrong
-	XfrmInTmplMismatch int
-	// No policy is found for states
-	// e.g. Inbound SAs are correct but no SP is found
-	XfrmInNoPols int
-	// Policy discards
-	XfrmInPolBlock int
-	// Policy error
-	XfrmInPolError int
-	// All errors which are not matched by others
-	XfrmOutError int
-	// Bundle generation error
-	XfrmOutBundleGenError int
-	// Bundle check error
-	XfrmOutBundleCheckError int
-	// No state was found
-	XfrmOutNoStates int
-	// Transformation protocol specific error
-	XfrmOutStateProtoError int
-	// Transportation mode specific error
-	XfrmOutStateModeError int
-	// Sequence error
-	// i.e sequence number overflow
-	XfrmOutStateSeqError int
-	// State is expired
-	XfrmOutStateExpired int
-	// Policy discads
-	XfrmOutPolBlock int
-	// Policy is dead
-	XfrmOutPolDead int
-	// Policy Error
-	XfrmOutPolError     int
-	XfrmFwdHdrError     int
-	XfrmOutStateInvalid int
-	XfrmAcquireError    int
-}
-
-// NewXfrmStat reads the xfrm_stat statistics.
-func NewXfrmStat() (XfrmStat, error) {
-	fs, err := NewFS(DefaultMountPoint)
-	if err != nil {
-		return XfrmStat{}, err
-	}
-
-	return fs.NewXfrmStat()
-}
-
-// NewXfrmStat reads the xfrm_stat statistics from the 'proc' filesystem.
-func (fs FS) NewXfrmStat() (XfrmStat, error) {
-	file, err := os.Open(fs.Path("net/xfrm_stat"))
-	if err != nil {
-		return XfrmStat{}, err
-	}
-	defer file.Close()
-
-	var (
-		x = XfrmStat{}
-		s = bufio.NewScanner(file)
-	)
-
-	for s.Scan() {
-		fields := strings.Fields(s.Text())
-
-		if len(fields) != 2 {
-			return XfrmStat{}, fmt.Errorf(
-				"couldnt parse %s line %s", file.Name(), s.Text())
-		}
-
-		name := fields[0]
-		value, err := strconv.Atoi(fields[1])
-		if err != nil {
-			return XfrmStat{}, err
-		}
-
-		switch name {
-		case "XfrmInError":
-			x.XfrmInError = value
-		case "XfrmInBufferError":
-			x.XfrmInBufferError = value
-		case "XfrmInHdrError":
-			x.XfrmInHdrError = value
-		case "XfrmInNoStates":
-			x.XfrmInNoStates = value
-		case "XfrmInStateProtoError":
-			x.XfrmInStateProtoError = value
-		case "XfrmInStateModeError":
-			x.XfrmInStateModeError = value
-		case "XfrmInStateSeqError":
-			x.XfrmInStateSeqError = value
-		case "XfrmInStateExpired":
-			x.XfrmInStateExpired = value
-		case "XfrmInStateInvalid":
-			x.XfrmInStateInvalid = value
-		case "XfrmInTmplMismatch":
-			x.XfrmInTmplMismatch = value
-		case "XfrmInNoPols":
-			x.XfrmInNoPols = value
-		case "XfrmInPolBlock":
-			x.XfrmInPolBlock = value
-		case "XfrmInPolError":
-			x.XfrmInPolError = value
-		case "XfrmOutError":
-			x.XfrmOutError = value
-		case "XfrmInStateMismatch":
-			x.XfrmInStateMismatch = value
-		case "XfrmOutBundleGenError":
-			x.XfrmOutBundleGenError = value
-		case "XfrmOutBundleCheckError":
-			x.XfrmOutBundleCheckError = value
-		case "XfrmOutNoStates":
-			x.XfrmOutNoStates = value
-		case "XfrmOutStateProtoError":
-			x.XfrmOutStateProtoError = value
-		case "XfrmOutStateModeError":
-			x.XfrmOutStateModeError = value
-		case "XfrmOutStateSeqError":
-			x.XfrmOutStateSeqError = value
-		case "XfrmOutStateExpired":
-			x.XfrmOutStateExpired = value
-		case "XfrmOutPolBlock":
-			x.XfrmOutPolBlock = value
-		case "XfrmOutPolDead":
-			x.XfrmOutPolDead = value
-		case "XfrmOutPolError":
-			x.XfrmOutPolError = value
-		case "XfrmFwdHdrError":
-			x.XfrmFwdHdrError = value
-		case "XfrmOutStateInvalid":
-			x.XfrmOutStateInvalid = value
-		case "XfrmAcquireError":
-			x.XfrmAcquireError = value
-		}
-
-	}
-
-	return x, s.Err()
-}
diff --git a/vendor/github.com/prometheus/procfs/xfs/parse.go b/vendor/github.com/prometheus/procfs/xfs/parse.go
deleted file mode 100644
index 2bc0ef3427..0000000000
--- a/vendor/github.com/prometheus/procfs/xfs/parse.go
+++ /dev/null
@@ -1,330 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-package xfs
-
-import (
-	"bufio"
-	"fmt"
-	"io"
-	"strings"
-
-	"github.com/prometheus/procfs/internal/util"
-)
-
-// ParseStats parses a Stats from an input io.Reader, using the format
-// found in /proc/fs/xfs/stat.
-func ParseStats(r io.Reader) (*Stats, error) {
-	const (
-		// Fields parsed into stats structures.
-		fieldExtentAlloc = "extent_alloc"
-		fieldAbt         = "abt"
-		fieldBlkMap      = "blk_map"
-		fieldBmbt        = "bmbt"
-		fieldDir         = "dir"
-		fieldTrans       = "trans"
-		fieldIg          = "ig"
-		fieldLog         = "log"
-		fieldRw          = "rw"
-		fieldAttr        = "attr"
-		fieldIcluster    = "icluster"
-		fieldVnodes      = "vnodes"
-		fieldBuf         = "buf"
-		fieldXpc         = "xpc"
-
-		// Unimplemented at this time due to lack of documentation.
-		fieldPushAil = "push_ail"
-		fieldXstrat  = "xstrat"
-		fieldAbtb2   = "abtb2"
-		fieldAbtc2   = "abtc2"
-		fieldBmbt2   = "bmbt2"
-		fieldIbt2    = "ibt2"
-		fieldFibt2   = "fibt2"
-		fieldQm      = "qm"
-		fieldDebug   = "debug"
-	)
-
-	var xfss Stats
-
-	s := bufio.NewScanner(r)
-	for s.Scan() {
-		// Expect at least a string label and a single integer value, ex:
-		//   - abt 0
-		//   - rw 1 2
-		ss := strings.Fields(string(s.Bytes()))
-		if len(ss) < 2 {
-			continue
-		}
-		label := ss[0]
-
-		// Extended precision counters are uint64 values.
-		if label == fieldXpc {
-			us, err := util.ParseUint64s(ss[1:])
-			if err != nil {
-				return nil, err
-			}
-
-			xfss.ExtendedPrecision, err = extendedPrecisionStats(us)
-			if err != nil {
-				return nil, err
-			}
-
-			continue
-		}
-
-		// All other counters are uint32 values.
-		us, err := util.ParseUint32s(ss[1:])
-		if err != nil {
-			return nil, err
-		}
-
-		switch label {
-		case fieldExtentAlloc:
-			xfss.ExtentAllocation, err = extentAllocationStats(us)
-		case fieldAbt:
-			xfss.AllocationBTree, err = btreeStats(us)
-		case fieldBlkMap:
-			xfss.BlockMapping, err = blockMappingStats(us)
-		case fieldBmbt:
-			xfss.BlockMapBTree, err = btreeStats(us)
-		case fieldDir:
-			xfss.DirectoryOperation, err = directoryOperationStats(us)
-		case fieldTrans:
-			xfss.Transaction, err = transactionStats(us)
-		case fieldIg:
-			xfss.InodeOperation, err = inodeOperationStats(us)
-		case fieldLog:
-			xfss.LogOperation, err = logOperationStats(us)
-		case fieldRw:
-			xfss.ReadWrite, err = readWriteStats(us)
-		case fieldAttr:
-			xfss.AttributeOperation, err = attributeOperationStats(us)
-		case fieldIcluster:
-			xfss.InodeClustering, err = inodeClusteringStats(us)
-		case fieldVnodes:
-			xfss.Vnode, err = vnodeStats(us)
-		case fieldBuf:
-			xfss.Buffer, err = bufferStats(us)
-		}
-		if err != nil {
-			return nil, err
-		}
-	}
-
-	return &xfss, s.Err()
-}
-
-// extentAllocationStats builds an ExtentAllocationStats from a slice of uint32s.
-func extentAllocationStats(us []uint32) (ExtentAllocationStats, error) {
-	if l := len(us); l != 4 {
-		return ExtentAllocationStats{}, fmt.Errorf("incorrect number of values for XFS extent allocation stats: %d", l)
-	}
-
-	return ExtentAllocationStats{
-		ExtentsAllocated: us[0],
-		BlocksAllocated:  us[1],
-		ExtentsFreed:     us[2],
-		BlocksFreed:      us[3],
-	}, nil
-}
-
-// btreeStats builds a BTreeStats from a slice of uint32s.
-func btreeStats(us []uint32) (BTreeStats, error) {
-	if l := len(us); l != 4 {
-		return BTreeStats{}, fmt.Errorf("incorrect number of values for XFS btree stats: %d", l)
-	}
-
-	return BTreeStats{
-		Lookups:         us[0],
-		Compares:        us[1],
-		RecordsInserted: us[2],
-		RecordsDeleted:  us[3],
-	}, nil
-}
-
-// BlockMappingStat builds a BlockMappingStats from a slice of uint32s.
-func blockMappingStats(us []uint32) (BlockMappingStats, error) {
-	if l := len(us); l != 7 {
-		return BlockMappingStats{}, fmt.Errorf("incorrect number of values for XFS block mapping stats: %d", l)
-	}
-
-	return BlockMappingStats{
-		Reads:                us[0],
-		Writes:               us[1],
-		Unmaps:               us[2],
-		ExtentListInsertions: us[3],
-		ExtentListDeletions:  us[4],
-		ExtentListLookups:    us[5],
-		ExtentListCompares:   us[6],
-	}, nil
-}
-
-// DirectoryOperationStats builds a DirectoryOperationStats from a slice of uint32s.
-func directoryOperationStats(us []uint32) (DirectoryOperationStats, error) {
-	if l := len(us); l != 4 {
-		return DirectoryOperationStats{}, fmt.Errorf("incorrect number of values for XFS directory operation stats: %d", l)
-	}
-
-	return DirectoryOperationStats{
-		Lookups:  us[0],
-		Creates:  us[1],
-		Removes:  us[2],
-		Getdents: us[3],
-	}, nil
-}
-
-// TransactionStats builds a TransactionStats from a slice of uint32s.
-func transactionStats(us []uint32) (TransactionStats, error) {
-	if l := len(us); l != 3 {
-		return TransactionStats{}, fmt.Errorf("incorrect number of values for XFS transaction stats: %d", l)
-	}
-
-	return TransactionStats{
-		Sync:  us[0],
-		Async: us[1],
-		Empty: us[2],
-	}, nil
-}
-
-// InodeOperationStats builds an InodeOperationStats from a slice of uint32s.
-func inodeOperationStats(us []uint32) (InodeOperationStats, error) {
-	if l := len(us); l != 7 {
-		return InodeOperationStats{}, fmt.Errorf("incorrect number of values for XFS inode operation stats: %d", l)
-	}
-
-	return InodeOperationStats{
-		Attempts:        us[0],
-		Found:           us[1],
-		Recycle:         us[2],
-		Missed:          us[3],
-		Duplicate:       us[4],
-		Reclaims:        us[5],
-		AttributeChange: us[6],
-	}, nil
-}
-
-// LogOperationStats builds a LogOperationStats from a slice of uint32s.
-func logOperationStats(us []uint32) (LogOperationStats, error) {
-	if l := len(us); l != 5 {
-		return LogOperationStats{}, fmt.Errorf("incorrect number of values for XFS log operation stats: %d", l)
-	}
-
-	return LogOperationStats{
-		Writes:            us[0],
-		Blocks:            us[1],
-		NoInternalBuffers: us[2],
-		Force:             us[3],
-		ForceSleep:        us[4],
-	}, nil
-}
-
-// ReadWriteStats builds a ReadWriteStats from a slice of uint32s.
-func readWriteStats(us []uint32) (ReadWriteStats, error) {
-	if l := len(us); l != 2 {
-		return ReadWriteStats{}, fmt.Errorf("incorrect number of values for XFS read write stats: %d", l)
-	}
-
-	return ReadWriteStats{
-		Read:  us[0],
-		Write: us[1],
-	}, nil
-}
-
-// AttributeOperationStats builds an AttributeOperationStats from a slice of uint32s.
-func attributeOperationStats(us []uint32) (AttributeOperationStats, error) {
-	if l := len(us); l != 4 {
-		return AttributeOperationStats{}, fmt.Errorf("incorrect number of values for XFS attribute operation stats: %d", l)
-	}
-
-	return AttributeOperationStats{
-		Get:    us[0],
-		Set:    us[1],
-		Remove: us[2],
-		List:   us[3],
-	}, nil
-}
-
-// InodeClusteringStats builds an InodeClusteringStats from a slice of uint32s.
-func inodeClusteringStats(us []uint32) (InodeClusteringStats, error) {
-	if l := len(us); l != 3 {
-		return InodeClusteringStats{}, fmt.Errorf("incorrect number of values for XFS inode clustering stats: %d", l)
-	}
-
-	return InodeClusteringStats{
-		Iflush:     us[0],
-		Flush:      us[1],
-		FlushInode: us[2],
-	}, nil
-}
-
-// VnodeStats builds a VnodeStats from a slice of uint32s.
-func vnodeStats(us []uint32) (VnodeStats, error) {
-	// The attribute "Free" appears to not be available on older XFS
-	// stats versions.  Therefore, 7 or 8 elements may appear in
-	// this slice.
-	l := len(us)
-	if l != 7 && l != 8 {
-		return VnodeStats{}, fmt.Errorf("incorrect number of values for XFS vnode stats: %d", l)
-	}
-
-	s := VnodeStats{
-		Active:   us[0],
-		Allocate: us[1],
-		Get:      us[2],
-		Hold:     us[3],
-		Release:  us[4],
-		Reclaim:  us[5],
-		Remove:   us[6],
-	}
-
-	// Skip adding free, unless it is present. The zero value will
-	// be used in place of an actual count.
-	if l == 7 {
-		return s, nil
-	}
-
-	s.Free = us[7]
-	return s, nil
-}
-
-// BufferStats builds a BufferStats from a slice of uint32s.
-func bufferStats(us []uint32) (BufferStats, error) {
-	if l := len(us); l != 9 {
-		return BufferStats{}, fmt.Errorf("incorrect number of values for XFS buffer stats: %d", l)
-	}
-
-	return BufferStats{
-		Get:             us[0],
-		Create:          us[1],
-		GetLocked:       us[2],
-		GetLockedWaited: us[3],
-		BusyLocked:      us[4],
-		MissLocked:      us[5],
-		PageRetries:     us[6],
-		PageFound:       us[7],
-		GetRead:         us[8],
-	}, nil
-}
-
-// ExtendedPrecisionStats builds an ExtendedPrecisionStats from a slice of uint32s.
-func extendedPrecisionStats(us []uint64) (ExtendedPrecisionStats, error) {
-	if l := len(us); l != 3 {
-		return ExtendedPrecisionStats{}, fmt.Errorf("incorrect number of values for XFS extended precision stats: %d", l)
-	}
-
-	return ExtendedPrecisionStats{
-		FlushBytes: us[0],
-		WriteBytes: us[1],
-		ReadBytes:  us[2],
-	}, nil
-}
diff --git a/vendor/github.com/prometheus/procfs/xfs/xfs.go b/vendor/github.com/prometheus/procfs/xfs/xfs.go
deleted file mode 100644
index d86794b7ca..0000000000
--- a/vendor/github.com/prometheus/procfs/xfs/xfs.go
+++ /dev/null
@@ -1,163 +0,0 @@
-// Copyright 2017 The Prometheus Authors
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// Package xfs provides access to statistics exposed by the XFS filesystem.
-package xfs
-
-// Stats contains XFS filesystem runtime statistics, parsed from
-// /proc/fs/xfs/stat.
-//
-// The names and meanings of each statistic were taken from
-// http://xfs.org/index.php/Runtime_Stats and xfs_stats.h in the Linux
-// kernel source. Most counters are uint32s (same data types used in
-// xfs_stats.h), but some of the "extended precision stats" are uint64s.
-type Stats struct {
-	// The name of the filesystem used to source these statistics.
-	// If empty, this indicates aggregated statistics for all XFS
-	// filesystems on the host.
-	Name string
-
-	ExtentAllocation   ExtentAllocationStats
-	AllocationBTree    BTreeStats
-	BlockMapping       BlockMappingStats
-	BlockMapBTree      BTreeStats
-	DirectoryOperation DirectoryOperationStats
-	Transaction        TransactionStats
-	InodeOperation     InodeOperationStats
-	LogOperation       LogOperationStats
-	ReadWrite          ReadWriteStats
-	AttributeOperation AttributeOperationStats
-	InodeClustering    InodeClusteringStats
-	Vnode              VnodeStats
-	Buffer             BufferStats
-	ExtendedPrecision  ExtendedPrecisionStats
-}
-
-// ExtentAllocationStats contains statistics regarding XFS extent allocations.
-type ExtentAllocationStats struct {
-	ExtentsAllocated uint32
-	BlocksAllocated  uint32
-	ExtentsFreed     uint32
-	BlocksFreed      uint32
-}
-
-// BTreeStats contains statistics regarding an XFS internal B-tree.
-type BTreeStats struct {
-	Lookups         uint32
-	Compares        uint32
-	RecordsInserted uint32
-	RecordsDeleted  uint32
-}
-
-// BlockMappingStats contains statistics regarding XFS block maps.
-type BlockMappingStats struct {
-	Reads                uint32
-	Writes               uint32
-	Unmaps               uint32
-	ExtentListInsertions uint32
-	ExtentListDeletions  uint32
-	ExtentListLookups    uint32
-	ExtentListCompares   uint32
-}
-
-// DirectoryOperationStats contains statistics regarding XFS directory entries.
-type DirectoryOperationStats struct {
-	Lookups  uint32
-	Creates  uint32
-	Removes  uint32
-	Getdents uint32
-}
-
-// TransactionStats contains statistics regarding XFS metadata transactions.
-type TransactionStats struct {
-	Sync  uint32
-	Async uint32
-	Empty uint32
-}
-
-// InodeOperationStats contains statistics regarding XFS inode operations.
-type InodeOperationStats struct {
-	Attempts        uint32
-	Found           uint32
-	Recycle         uint32
-	Missed          uint32
-	Duplicate       uint32
-	Reclaims        uint32
-	AttributeChange uint32
-}
-
-// LogOperationStats contains statistics regarding the XFS log buffer.
-type LogOperationStats struct {
-	Writes            uint32
-	Blocks            uint32
-	NoInternalBuffers uint32
-	Force             uint32
-	ForceSleep        uint32
-}
-
-// ReadWriteStats contains statistics regarding the number of read and write
-// system calls for XFS filesystems.
-type ReadWriteStats struct {
-	Read  uint32
-	Write uint32
-}
-
-// AttributeOperationStats contains statistics regarding manipulation of
-// XFS extended file attributes.
-type AttributeOperationStats struct {
-	Get    uint32
-	Set    uint32
-	Remove uint32
-	List   uint32
-}
-
-// InodeClusteringStats contains statistics regarding XFS inode clustering
-// operations.
-type InodeClusteringStats struct {
-	Iflush     uint32
-	Flush      uint32
-	FlushInode uint32
-}
-
-// VnodeStats contains statistics regarding XFS vnode operations.
-type VnodeStats struct {
-	Active   uint32
-	Allocate uint32
-	Get      uint32
-	Hold     uint32
-	Release  uint32
-	Reclaim  uint32
-	Remove   uint32
-	Free     uint32
-}
-
-// BufferStats contains statistics regarding XFS read/write I/O buffers.
-type BufferStats struct {
-	Get             uint32
-	Create          uint32
-	GetLocked       uint32
-	GetLockedWaited uint32
-	BusyLocked      uint32
-	MissLocked      uint32
-	PageRetries     uint32
-	PageFound       uint32
-	GetRead         uint32
-}
-
-// ExtendedPrecisionStats contains high precision counters used to track the
-// total number of bytes read, written, or flushed, during XFS operations.
-type ExtendedPrecisionStats struct {
-	FlushBytes uint64
-	WriteBytes uint64
-	ReadBytes  uint64
-}
diff --git a/vendor/github.com/tchap/go-patricia/AUTHORS b/vendor/github.com/tchap/go-patricia/AUTHORS
deleted file mode 100644
index e640b0bf51..0000000000
--- a/vendor/github.com/tchap/go-patricia/AUTHORS
+++ /dev/null
@@ -1,3 +0,0 @@
-This is the complete list of go-patricia copyright holders:
-
-Ondřej Kupka <ondra.cap@gmail.com>
diff --git a/vendor/github.com/tchap/go-patricia/LICENSE b/vendor/github.com/tchap/go-patricia/LICENSE
deleted file mode 100644
index e50d398e98..0000000000
--- a/vendor/github.com/tchap/go-patricia/LICENSE
+++ /dev/null
@@ -1,20 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2014 The AUTHORS
-
-Permission is hereby granted, free of charge, to any person obtaining a copy of
-this software and associated documentation files (the "Software"), to deal in
-the Software without restriction, including without limitation the rights to
-use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
-the Software, and to permit persons to whom the Software is furnished to do so,
-subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
-FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
-COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
-IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
-CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/tchap/go-patricia/patricia/children.go b/vendor/github.com/tchap/go-patricia/patricia/children.go
deleted file mode 100644
index a5677c3352..0000000000
--- a/vendor/github.com/tchap/go-patricia/patricia/children.go
+++ /dev/null
@@ -1,325 +0,0 @@
-// Copyright (c) 2014 The go-patricia AUTHORS
-//
-// Use of this source code is governed by The MIT License
-// that can be found in the LICENSE file.
-
-package patricia
-
-import (
-	"fmt"
-	"io"
-	"sort"
-)
-
-type childList interface {
-	length() int
-	head() *Trie
-	add(child *Trie) childList
-	remove(b byte)
-	replace(b byte, child *Trie)
-	next(b byte) *Trie
-	walk(prefix *Prefix, visitor VisitorFunc) error
-	print(w io.Writer, indent int)
-	total() int
-}
-
-type tries []*Trie
-
-func (t tries) Len() int {
-	return len(t)
-}
-
-func (t tries) Less(i, j int) bool {
-	strings := sort.StringSlice{string(t[i].prefix), string(t[j].prefix)}
-	return strings.Less(0, 1)
-}
-
-func (t tries) Swap(i, j int) {
-	t[i], t[j] = t[j], t[i]
-}
-
-type sparseChildList struct {
-	children tries
-}
-
-func newSparseChildList(maxChildrenPerSparseNode int) childList {
-	return &sparseChildList{
-		children: make(tries, 0, maxChildrenPerSparseNode),
-	}
-}
-
-func (list *sparseChildList) length() int {
-	return len(list.children)
-}
-
-func (list *sparseChildList) head() *Trie {
-	return list.children[0]
-}
-
-func (list *sparseChildList) add(child *Trie) childList {
-	// Search for an empty spot and insert the child if possible.
-	if len(list.children) != cap(list.children) {
-		list.children = append(list.children, child)
-		return list
-	}
-
-	// Otherwise we have to transform to the dense list type.
-	return newDenseChildList(list, child)
-}
-
-func (list *sparseChildList) remove(b byte) {
-	for i, node := range list.children {
-		if node.prefix[0] == b {
-			list.children[i] = list.children[len(list.children)-1]
-			list.children[len(list.children)-1] = nil
-			list.children = list.children[:len(list.children)-1]
-			return
-		}
-	}
-
-	// This is not supposed to be reached.
-	panic("removing non-existent child")
-}
-
-func (list *sparseChildList) replace(b byte, child *Trie) {
-	// Make a consistency check.
-	if p0 := child.prefix[0]; p0 != b {
-		panic(fmt.Errorf("child prefix mismatch: %v != %v", p0, b))
-	}
-
-	// Seek the child and replace it.
-	for i, node := range list.children {
-		if node.prefix[0] == b {
-			list.children[i] = child
-			return
-		}
-	}
-}
-
-func (list *sparseChildList) next(b byte) *Trie {
-	for _, child := range list.children {
-		if child.prefix[0] == b {
-			return child
-		}
-	}
-	return nil
-}
-
-func (list *sparseChildList) walk(prefix *Prefix, visitor VisitorFunc) error {
-
-	sort.Sort(list.children)
-
-	for _, child := range list.children {
-		*prefix = append(*prefix, child.prefix...)
-		if child.item != nil {
-			err := visitor(*prefix, child.item)
-			if err != nil {
-				if err == SkipSubtree {
-					*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-					continue
-				}
-				*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-				return err
-			}
-		}
-
-		err := child.children.walk(prefix, visitor)
-		*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-		if err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func (list *sparseChildList) total() int {
-	tot := 0
-	for _, child := range list.children {
-		if child != nil {
-			tot = tot + child.total()
-		}
-	}
-	return tot
-}
-
-func (list *sparseChildList) print(w io.Writer, indent int) {
-	for _, child := range list.children {
-		if child != nil {
-			child.print(w, indent)
-		}
-	}
-}
-
-type denseChildList struct {
-	min         int
-	max         int
-	numChildren int
-	headIndex   int
-	children    []*Trie
-}
-
-func newDenseChildList(list *sparseChildList, child *Trie) childList {
-	var (
-		min int = 255
-		max int = 0
-	)
-	for _, child := range list.children {
-		b := int(child.prefix[0])
-		if b < min {
-			min = b
-		}
-		if b > max {
-			max = b
-		}
-	}
-
-	b := int(child.prefix[0])
-	if b < min {
-		min = b
-	}
-	if b > max {
-		max = b
-	}
-
-	children := make([]*Trie, max-min+1)
-	for _, child := range list.children {
-		children[int(child.prefix[0])-min] = child
-	}
-	children[int(child.prefix[0])-min] = child
-
-	return &denseChildList{
-		min:         min,
-		max:         max,
-		numChildren: list.length() + 1,
-		headIndex:   0,
-		children:    children,
-	}
-}
-
-func (list *denseChildList) length() int {
-	return list.numChildren
-}
-
-func (list *denseChildList) head() *Trie {
-	return list.children[list.headIndex]
-}
-
-func (list *denseChildList) add(child *Trie) childList {
-	b := int(child.prefix[0])
-	var i int
-
-	switch {
-	case list.min <= b && b <= list.max:
-		if list.children[b-list.min] != nil {
-			panic("dense child list collision detected")
-		}
-		i = b - list.min
-		list.children[i] = child
-
-	case b < list.min:
-		children := make([]*Trie, list.max-b+1)
-		i = 0
-		children[i] = child
-		copy(children[list.min-b:], list.children)
-		list.children = children
-		list.min = b
-
-	default: // b > list.max
-		children := make([]*Trie, b-list.min+1)
-		i = b - list.min
-		children[i] = child
-		copy(children, list.children)
-		list.children = children
-		list.max = b
-	}
-
-	list.numChildren++
-	if i < list.headIndex {
-		list.headIndex = i
-	}
-	return list
-}
-
-func (list *denseChildList) remove(b byte) {
-	i := int(b) - list.min
-	if list.children[i] == nil {
-		// This is not supposed to be reached.
-		panic("removing non-existent child")
-	}
-	list.numChildren--
-	list.children[i] = nil
-
-	// Update head index.
-	if i == list.headIndex {
-		for ; i < len(list.children); i++ {
-			if list.children[i] != nil {
-				list.headIndex = i
-				return
-			}
-		}
-	}
-}
-
-func (list *denseChildList) replace(b byte, child *Trie) {
-	// Make a consistency check.
-	if p0 := child.prefix[0]; p0 != b {
-		panic(fmt.Errorf("child prefix mismatch: %v != %v", p0, b))
-	}
-
-	// Replace the child.
-	list.children[int(b)-list.min] = child
-}
-
-func (list *denseChildList) next(b byte) *Trie {
-	i := int(b)
-	if i < list.min || list.max < i {
-		return nil
-	}
-	return list.children[i-list.min]
-}
-
-func (list *denseChildList) walk(prefix *Prefix, visitor VisitorFunc) error {
-	for _, child := range list.children {
-		if child == nil {
-			continue
-		}
-		*prefix = append(*prefix, child.prefix...)
-		if child.item != nil {
-			if err := visitor(*prefix, child.item); err != nil {
-				if err == SkipSubtree {
-					*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-					continue
-				}
-				*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-				return err
-			}
-		}
-
-		err := child.children.walk(prefix, visitor)
-		*prefix = (*prefix)[:len(*prefix)-len(child.prefix)]
-		if err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func (list *denseChildList) print(w io.Writer, indent int) {
-	for _, child := range list.children {
-		if child != nil {
-			child.print(w, indent)
-		}
-	}
-}
-
-func (list *denseChildList) total() int {
-	tot := 0
-	for _, child := range list.children {
-		if child != nil {
-			tot = tot + child.total()
-		}
-	}
-	return tot
-}
diff --git a/vendor/github.com/tchap/go-patricia/patricia/patricia.go b/vendor/github.com/tchap/go-patricia/patricia/patricia.go
deleted file mode 100644
index a1fc53d5db..0000000000
--- a/vendor/github.com/tchap/go-patricia/patricia/patricia.go
+++ /dev/null
@@ -1,594 +0,0 @@
-// Copyright (c) 2014 The go-patricia AUTHORS
-//
-// Use of this source code is governed by The MIT License
-// that can be found in the LICENSE file.
-
-package patricia
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"io"
-	"strings"
-)
-
-//------------------------------------------------------------------------------
-// Trie
-//------------------------------------------------------------------------------
-
-const (
-	DefaultMaxPrefixPerNode         = 10
-	DefaultMaxChildrenPerSparseNode = 8
-)
-
-type (
-	Prefix      []byte
-	Item        interface{}
-	VisitorFunc func(prefix Prefix, item Item) error
-)
-
-// Trie is a generic patricia trie that allows fast retrieval of items by prefix.
-// and other funky stuff.
-//
-// Trie is not thread-safe.
-type Trie struct {
-	prefix Prefix
-	item   Item
-
-	maxPrefixPerNode         int
-	maxChildrenPerSparseNode int
-
-	children childList
-}
-
-// Public API ------------------------------------------------------------------
-
-type Option func(*Trie)
-
-// Trie constructor.
-func NewTrie(options ...Option) *Trie {
-	trie := &Trie{}
-
-	for _, opt := range options {
-		opt(trie)
-	}
-
-	if trie.maxPrefixPerNode <= 0 {
-		trie.maxPrefixPerNode = DefaultMaxPrefixPerNode
-	}
-	if trie.maxChildrenPerSparseNode <= 0 {
-		trie.maxChildrenPerSparseNode = DefaultMaxChildrenPerSparseNode
-	}
-
-	trie.children = newSparseChildList(trie.maxChildrenPerSparseNode)
-	return trie
-}
-
-func MaxPrefixPerNode(value int) Option {
-	return func(trie *Trie) {
-		trie.maxPrefixPerNode = value
-	}
-}
-
-func MaxChildrenPerSparseNode(value int) Option {
-	return func(trie *Trie) {
-		trie.maxChildrenPerSparseNode = value
-	}
-}
-
-// Item returns the item stored in the root of this trie.
-func (trie *Trie) Item() Item {
-	return trie.item
-}
-
-// Insert inserts a new item into the trie using the given prefix. Insert does
-// not replace existing items. It returns false if an item was already in place.
-func (trie *Trie) Insert(key Prefix, item Item) (inserted bool) {
-	return trie.put(key, item, false)
-}
-
-// Set works much like Insert, but it always sets the item, possibly replacing
-// the item previously inserted.
-func (trie *Trie) Set(key Prefix, item Item) {
-	trie.put(key, item, true)
-}
-
-// Get returns the item located at key.
-//
-// This method is a bit dangerous, because Get can as well end up in an internal
-// node that is not really representing any user-defined value. So when nil is
-// a valid value being used, it is not possible to tell if the value was inserted
-// into the tree by the user or not. A possible workaround for this is not to use
-// nil interface as a valid value, even using zero value of any type is enough
-// to prevent this bad behaviour.
-func (trie *Trie) Get(key Prefix) (item Item) {
-	_, node, found, leftover := trie.findSubtree(key)
-	if !found || len(leftover) != 0 {
-		return nil
-	}
-	return node.item
-}
-
-// Match returns what Get(prefix) != nil would return. The same warning as for
-// Get applies here as well.
-func (trie *Trie) Match(prefix Prefix) (matchedExactly bool) {
-	return trie.Get(prefix) != nil
-}
-
-// MatchSubtree returns true when there is a subtree representing extensions
-// to key, that is if there are any keys in the tree which have key as prefix.
-func (trie *Trie) MatchSubtree(key Prefix) (matched bool) {
-	_, _, matched, _ = trie.findSubtree(key)
-	return
-}
-
-// Visit calls visitor on every node containing a non-nil item
-// in alphabetical order.
-//
-// If an error is returned from visitor, the function stops visiting the tree
-// and returns that error, unless it is a special error - SkipSubtree. In that
-// case Visit skips the subtree represented by the current node and continues
-// elsewhere.
-func (trie *Trie) Visit(visitor VisitorFunc) error {
-	return trie.walk(nil, visitor)
-}
-
-func (trie *Trie) size() int {
-	n := 0
-
-	trie.walk(nil, func(prefix Prefix, item Item) error {
-		n++
-		return nil
-	})
-
-	return n
-}
-
-func (trie *Trie) total() int {
-	return 1 + trie.children.total()
-}
-
-// VisitSubtree works much like Visit, but it only visits nodes matching prefix.
-func (trie *Trie) VisitSubtree(prefix Prefix, visitor VisitorFunc) error {
-	// Nil prefix not allowed.
-	if prefix == nil {
-		panic(ErrNilPrefix)
-	}
-
-	// Empty trie must be handled explicitly.
-	if trie.prefix == nil {
-		return nil
-	}
-
-	// Locate the relevant subtree.
-	_, root, found, leftover := trie.findSubtree(prefix)
-	if !found {
-		return nil
-	}
-	prefix = append(prefix, leftover...)
-
-	// Visit it.
-	return root.walk(prefix, visitor)
-}
-
-// VisitPrefixes visits only nodes that represent prefixes of key.
-// To say the obvious, returning SkipSubtree from visitor makes no sense here.
-func (trie *Trie) VisitPrefixes(key Prefix, visitor VisitorFunc) error {
-	// Nil key not allowed.
-	if key == nil {
-		panic(ErrNilPrefix)
-	}
-
-	// Empty trie must be handled explicitly.
-	if trie.prefix == nil {
-		return nil
-	}
-
-	// Walk the path matching key prefixes.
-	node := trie
-	prefix := key
-	offset := 0
-	for {
-		// Compute what part of prefix matches.
-		common := node.longestCommonPrefixLength(key)
-		key = key[common:]
-		offset += common
-
-		// Partial match means that there is no subtree matching prefix.
-		if common < len(node.prefix) {
-			return nil
-		}
-
-		// Call the visitor.
-		if item := node.item; item != nil {
-			if err := visitor(prefix[:offset], item); err != nil {
-				return err
-			}
-		}
-
-		if len(key) == 0 {
-			// This node represents key, we are finished.
-			return nil
-		}
-
-		// There is some key suffix left, move to the children.
-		child := node.children.next(key[0])
-		if child == nil {
-			// There is nowhere to continue, return.
-			return nil
-		}
-
-		node = child
-	}
-}
-
-// Delete deletes the item represented by the given prefix.
-//
-// True is returned if the matching node was found and deleted.
-func (trie *Trie) Delete(key Prefix) (deleted bool) {
-	// Nil prefix not allowed.
-	if key == nil {
-		panic(ErrNilPrefix)
-	}
-
-	// Empty trie must be handled explicitly.
-	if trie.prefix == nil {
-		return false
-	}
-
-	// Find the relevant node.
-	path, found, _ := trie.findSubtreePath(key)
-	if !found {
-		return false
-	}
-
-	node := path[len(path)-1]
-	var parent *Trie
-	if len(path) != 1 {
-		parent = path[len(path)-2]
-	}
-
-	// If the item is already set to nil, there is nothing to do.
-	if node.item == nil {
-		return false
-	}
-
-	// Delete the item.
-	node.item = nil
-
-	// Initialise i before goto.
-	// Will be used later in a loop.
-	i := len(path) - 1
-
-	// In case there are some child nodes, we cannot drop the whole subtree.
-	// We can try to compact nodes, though.
-	if node.children.length() != 0 {
-		goto Compact
-	}
-
-	// In case we are at the root, just reset it and we are done.
-	if parent == nil {
-		node.reset()
-		return true
-	}
-
-	// We can drop a subtree.
-	// Find the first ancestor that has its value set or it has 2 or more child nodes.
-	// That will be the node where to drop the subtree at.
-	for ; i >= 0; i-- {
-		if current := path[i]; current.item != nil || current.children.length() >= 2 {
-			break
-		}
-	}
-
-	// Handle the case when there is no such node.
-	// In other words, we can reset the whole tree.
-	if i == -1 {
-		path[0].reset()
-		return true
-	}
-
-	// We can just remove the subtree here.
-	node = path[i]
-	if i == 0 {
-		parent = nil
-	} else {
-		parent = path[i-1]
-	}
-	// i+1 is always a valid index since i is never pointing to the last node.
-	// The loop above skips at least the last node since we are sure that the item
-	// is set to nil and it has no children, othewise we would be compacting instead.
-	node.children.remove(path[i+1].prefix[0])
-
-Compact:
-	// The node is set to the first non-empty ancestor,
-	// so try to compact since that might be possible now.
-	if compacted := node.compact(); compacted != node {
-		if parent == nil {
-			*node = *compacted
-		} else {
-			parent.children.replace(node.prefix[0], compacted)
-			*parent = *parent.compact()
-		}
-	}
-
-	return true
-}
-
-// DeleteSubtree finds the subtree exactly matching prefix and deletes it.
-//
-// True is returned if the subtree was found and deleted.
-func (trie *Trie) DeleteSubtree(prefix Prefix) (deleted bool) {
-	// Nil prefix not allowed.
-	if prefix == nil {
-		panic(ErrNilPrefix)
-	}
-
-	// Empty trie must be handled explicitly.
-	if trie.prefix == nil {
-		return false
-	}
-
-	// Locate the relevant subtree.
-	parent, root, found, _ := trie.findSubtree(prefix)
-	if !found {
-		return false
-	}
-
-	// If we are in the root of the trie, reset the trie.
-	if parent == nil {
-		root.reset()
-		return true
-	}
-
-	// Otherwise remove the root node from its parent.
-	parent.children.remove(root.prefix[0])
-	return true
-}
-
-// Internal helper methods -----------------------------------------------------
-
-func (trie *Trie) empty() bool {
-	return trie.item == nil && trie.children.length() == 0
-}
-
-func (trie *Trie) reset() {
-	trie.prefix = nil
-	trie.children = newSparseChildList(trie.maxPrefixPerNode)
-}
-
-func (trie *Trie) put(key Prefix, item Item, replace bool) (inserted bool) {
-	// Nil prefix not allowed.
-	if key == nil {
-		panic(ErrNilPrefix)
-	}
-
-	var (
-		common int
-		node   *Trie = trie
-		child  *Trie
-	)
-
-	if node.prefix == nil {
-		if len(key) <= trie.maxPrefixPerNode {
-			node.prefix = key
-			goto InsertItem
-		}
-		node.prefix = key[:trie.maxPrefixPerNode]
-		key = key[trie.maxPrefixPerNode:]
-		goto AppendChild
-	}
-
-	for {
-		// Compute the longest common prefix length.
-		common = node.longestCommonPrefixLength(key)
-		key = key[common:]
-
-		// Only a part matches, split.
-		if common < len(node.prefix) {
-			goto SplitPrefix
-		}
-
-		// common == len(node.prefix) since never (common > len(node.prefix))
-		// common == len(former key) <-> 0 == len(key)
-		// -> former key == node.prefix
-		if len(key) == 0 {
-			goto InsertItem
-		}
-
-		// Check children for matching prefix.
-		child = node.children.next(key[0])
-		if child == nil {
-			goto AppendChild
-		}
-		node = child
-	}
-
-SplitPrefix:
-	// Split the prefix if necessary.
-	child = new(Trie)
-	*child = *node
-	*node = *NewTrie()
-	node.prefix = child.prefix[:common]
-	child.prefix = child.prefix[common:]
-	child = child.compact()
-	node.children = node.children.add(child)
-
-AppendChild:
-	// Keep appending children until whole prefix is inserted.
-	// This loop starts with empty node.prefix that needs to be filled.
-	for len(key) != 0 {
-		child := NewTrie()
-		if len(key) <= trie.maxPrefixPerNode {
-			child.prefix = key
-			node.children = node.children.add(child)
-			node = child
-			goto InsertItem
-		} else {
-			child.prefix = key[:trie.maxPrefixPerNode]
-			key = key[trie.maxPrefixPerNode:]
-			node.children = node.children.add(child)
-			node = child
-		}
-	}
-
-InsertItem:
-	// Try to insert the item if possible.
-	if replace || node.item == nil {
-		node.item = item
-		return true
-	}
-	return false
-}
-
-func (trie *Trie) compact() *Trie {
-	// Only a node with a single child can be compacted.
-	if trie.children.length() != 1 {
-		return trie
-	}
-
-	child := trie.children.head()
-
-	// If any item is set, we cannot compact since we want to retain
-	// the ability to do searching by key. This makes compaction less usable,
-	// but that simply cannot be avoided.
-	if trie.item != nil || child.item != nil {
-		return trie
-	}
-
-	// Make sure the combined prefixes fit into a single node.
-	if len(trie.prefix)+len(child.prefix) > trie.maxPrefixPerNode {
-		return trie
-	}
-
-	// Concatenate the prefixes, move the items.
-	child.prefix = append(trie.prefix, child.prefix...)
-	if trie.item != nil {
-		child.item = trie.item
-	}
-
-	return child
-}
-
-func (trie *Trie) findSubtree(prefix Prefix) (parent *Trie, root *Trie, found bool, leftover Prefix) {
-	// Find the subtree matching prefix.
-	root = trie
-	for {
-		// Compute what part of prefix matches.
-		common := root.longestCommonPrefixLength(prefix)
-		prefix = prefix[common:]
-
-		// We used up the whole prefix, subtree found.
-		if len(prefix) == 0 {
-			found = true
-			leftover = root.prefix[common:]
-			return
-		}
-
-		// Partial match means that there is no subtree matching prefix.
-		if common < len(root.prefix) {
-			leftover = root.prefix[common:]
-			return
-		}
-
-		// There is some prefix left, move to the children.
-		child := root.children.next(prefix[0])
-		if child == nil {
-			// There is nowhere to continue, there is no subtree matching prefix.
-			return
-		}
-
-		parent = root
-		root = child
-	}
-}
-
-func (trie *Trie) findSubtreePath(prefix Prefix) (path []*Trie, found bool, leftover Prefix) {
-	// Find the subtree matching prefix.
-	root := trie
-	var subtreePath []*Trie
-	for {
-		// Append the current root to the path.
-		subtreePath = append(subtreePath, root)
-
-		// Compute what part of prefix matches.
-		common := root.longestCommonPrefixLength(prefix)
-		prefix = prefix[common:]
-
-		// We used up the whole prefix, subtree found.
-		if len(prefix) == 0 {
-			path = subtreePath
-			found = true
-			leftover = root.prefix[common:]
-			return
-		}
-
-		// Partial match means that there is no subtree matching prefix.
-		if common < len(root.prefix) {
-			leftover = root.prefix[common:]
-			return
-		}
-
-		// There is some prefix left, move to the children.
-		child := root.children.next(prefix[0])
-		if child == nil {
-			// There is nowhere to continue, there is no subtree matching prefix.
-			return
-		}
-
-		root = child
-	}
-}
-
-func (trie *Trie) walk(actualRootPrefix Prefix, visitor VisitorFunc) error {
-	var prefix Prefix
-	// Allocate a bit more space for prefix at the beginning.
-	if actualRootPrefix == nil {
-		prefix = make(Prefix, 32+len(trie.prefix))
-		copy(prefix, trie.prefix)
-		prefix = prefix[:len(trie.prefix)]
-	} else {
-		prefix = make(Prefix, 32+len(actualRootPrefix))
-		copy(prefix, actualRootPrefix)
-		prefix = prefix[:len(actualRootPrefix)]
-	}
-
-	// Visit the root first. Not that this works for empty trie as well since
-	// in that case item == nil && len(children) == 0.
-	if trie.item != nil {
-		if err := visitor(prefix, trie.item); err != nil {
-			if err == SkipSubtree {
-				return nil
-			}
-			return err
-		}
-	}
-
-	// Then continue to the children.
-	return trie.children.walk(&prefix, visitor)
-}
-
-func (trie *Trie) longestCommonPrefixLength(prefix Prefix) (i int) {
-	for ; i < len(prefix) && i < len(trie.prefix) && prefix[i] == trie.prefix[i]; i++ {
-	}
-	return
-}
-
-func (trie *Trie) dump() string {
-	writer := &bytes.Buffer{}
-	trie.print(writer, 0)
-	return writer.String()
-}
-
-func (trie *Trie) print(writer io.Writer, indent int) {
-	fmt.Fprintf(writer, "%s%s %v\n", strings.Repeat(" ", indent), string(trie.prefix), trie.item)
-	trie.children.print(writer, indent+2)
-}
-
-// Errors ----------------------------------------------------------------------
-
-var (
-	SkipSubtree  = errors.New("Skip this subtree")
-	ErrNilPrefix = errors.New("Nil prefix passed into a method call")
-)
diff --git a/vendor/github.com/vbatts/tar-split/LICENSE b/vendor/github.com/vbatts/tar-split/LICENSE
deleted file mode 100644
index ca03685b15..0000000000
--- a/vendor/github.com/vbatts/tar-split/LICENSE
+++ /dev/null
@@ -1,28 +0,0 @@
-Copyright (c) 2015 Vincent Batts, Raleigh, NC, USA
-
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are met:
-
-1. Redistributions of source code must retain the above copyright notice, this
-list of conditions and the following disclaimer.
-
-2. Redistributions in binary form must reproduce the above copyright notice,
-this list of conditions and the following disclaimer in the documentation
-and/or other materials provided with the distribution.
-
-3. Neither the name of the copyright holder nor the names of its contributors
-may be used to endorse or promote products derived from this software without
-specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
-ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
-WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
-FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
-SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
-CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
-OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/common.go b/vendor/github.com/vbatts/tar-split/archive/tar/common.go
deleted file mode 100644
index 36f4e23980..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/common.go
+++ /dev/null
@@ -1,340 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package tar implements access to tar archives.
-// It aims to cover most of the variations, including those produced
-// by GNU and BSD tars.
-//
-// References:
-//   http://www.freebsd.org/cgi/man.cgi?query=tar&sektion=5
-//   http://www.gnu.org/software/tar/manual/html_node/Standard.html
-//   http://pubs.opengroup.org/onlinepubs/9699919799/utilities/pax.html
-package tar
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"os"
-	"path"
-	"time"
-)
-
-const (
-	blockSize = 512
-
-	// Types
-	TypeReg           = '0'    // regular file
-	TypeRegA          = '\x00' // regular file
-	TypeLink          = '1'    // hard link
-	TypeSymlink       = '2'    // symbolic link
-	TypeChar          = '3'    // character device node
-	TypeBlock         = '4'    // block device node
-	TypeDir           = '5'    // directory
-	TypeFifo          = '6'    // fifo node
-	TypeCont          = '7'    // reserved
-	TypeXHeader       = 'x'    // extended header
-	TypeXGlobalHeader = 'g'    // global extended header
-	TypeGNULongName   = 'L'    // Next file has a long name
-	TypeGNULongLink   = 'K'    // Next file symlinks to a file w/ a long name
-	TypeGNUSparse     = 'S'    // sparse file
-)
-
-// A Header represents a single header in a tar archive.
-// Some fields may not be populated.
-type Header struct {
-	Name       string    // name of header file entry
-	Mode       int64     // permission and mode bits
-	Uid        int       // user id of owner
-	Gid        int       // group id of owner
-	Size       int64     // length in bytes
-	ModTime    time.Time // modified time
-	Typeflag   byte      // type of header entry
-	Linkname   string    // target name of link
-	Uname      string    // user name of owner
-	Gname      string    // group name of owner
-	Devmajor   int64     // major number of character or block device
-	Devminor   int64     // minor number of character or block device
-	AccessTime time.Time // access time
-	ChangeTime time.Time // status change time
-	Xattrs     map[string]string
-}
-
-// File name constants from the tar spec.
-const (
-	fileNameSize       = 100 // Maximum number of bytes in a standard tar name.
-	fileNamePrefixSize = 155 // Maximum number of ustar extension bytes.
-)
-
-// FileInfo returns an os.FileInfo for the Header.
-func (h *Header) FileInfo() os.FileInfo {
-	return headerFileInfo{h}
-}
-
-// headerFileInfo implements os.FileInfo.
-type headerFileInfo struct {
-	h *Header
-}
-
-func (fi headerFileInfo) Size() int64        { return fi.h.Size }
-func (fi headerFileInfo) IsDir() bool        { return fi.Mode().IsDir() }
-func (fi headerFileInfo) ModTime() time.Time { return fi.h.ModTime }
-func (fi headerFileInfo) Sys() interface{}   { return fi.h }
-
-// Name returns the base name of the file.
-func (fi headerFileInfo) Name() string {
-	if fi.IsDir() {
-		return path.Base(path.Clean(fi.h.Name))
-	}
-	return path.Base(fi.h.Name)
-}
-
-// Mode returns the permission and mode bits for the headerFileInfo.
-func (fi headerFileInfo) Mode() (mode os.FileMode) {
-	// Set file permission bits.
-	mode = os.FileMode(fi.h.Mode).Perm()
-
-	// Set setuid, setgid and sticky bits.
-	if fi.h.Mode&c_ISUID != 0 {
-		// setuid
-		mode |= os.ModeSetuid
-	}
-	if fi.h.Mode&c_ISGID != 0 {
-		// setgid
-		mode |= os.ModeSetgid
-	}
-	if fi.h.Mode&c_ISVTX != 0 {
-		// sticky
-		mode |= os.ModeSticky
-	}
-
-	// Set file mode bits.
-	// clear perm, setuid, setgid and sticky bits.
-	m := os.FileMode(fi.h.Mode) &^ 07777
-	if m == c_ISDIR {
-		// directory
-		mode |= os.ModeDir
-	}
-	if m == c_ISFIFO {
-		// named pipe (FIFO)
-		mode |= os.ModeNamedPipe
-	}
-	if m == c_ISLNK {
-		// symbolic link
-		mode |= os.ModeSymlink
-	}
-	if m == c_ISBLK {
-		// device file
-		mode |= os.ModeDevice
-	}
-	if m == c_ISCHR {
-		// Unix character device
-		mode |= os.ModeDevice
-		mode |= os.ModeCharDevice
-	}
-	if m == c_ISSOCK {
-		// Unix domain socket
-		mode |= os.ModeSocket
-	}
-
-	switch fi.h.Typeflag {
-	case TypeSymlink:
-		// symbolic link
-		mode |= os.ModeSymlink
-	case TypeChar:
-		// character device node
-		mode |= os.ModeDevice
-		mode |= os.ModeCharDevice
-	case TypeBlock:
-		// block device node
-		mode |= os.ModeDevice
-	case TypeDir:
-		// directory
-		mode |= os.ModeDir
-	case TypeFifo:
-		// fifo node
-		mode |= os.ModeNamedPipe
-	}
-
-	return mode
-}
-
-// sysStat, if non-nil, populates h from system-dependent fields of fi.
-var sysStat func(fi os.FileInfo, h *Header) error
-
-// Mode constants from the tar spec.
-const (
-	c_ISUID  = 04000   // Set uid
-	c_ISGID  = 02000   // Set gid
-	c_ISVTX  = 01000   // Save text (sticky bit)
-	c_ISDIR  = 040000  // Directory
-	c_ISFIFO = 010000  // FIFO
-	c_ISREG  = 0100000 // Regular file
-	c_ISLNK  = 0120000 // Symbolic link
-	c_ISBLK  = 060000  // Block special file
-	c_ISCHR  = 020000  // Character special file
-	c_ISSOCK = 0140000 // Socket
-)
-
-// Keywords for the PAX Extended Header
-const (
-	paxAtime    = "atime"
-	paxCharset  = "charset"
-	paxComment  = "comment"
-	paxCtime    = "ctime" // please note that ctime is not a valid pax header.
-	paxGid      = "gid"
-	paxGname    = "gname"
-	paxLinkpath = "linkpath"
-	paxMtime    = "mtime"
-	paxPath     = "path"
-	paxSize     = "size"
-	paxUid      = "uid"
-	paxUname    = "uname"
-	paxXattr    = "SCHILY.xattr."
-	paxNone     = ""
-)
-
-// FileInfoHeader creates a partially-populated Header from fi.
-// If fi describes a symlink, FileInfoHeader records link as the link target.
-// If fi describes a directory, a slash is appended to the name.
-// Because os.FileInfo's Name method returns only the base name of
-// the file it describes, it may be necessary to modify the Name field
-// of the returned header to provide the full path name of the file.
-func FileInfoHeader(fi os.FileInfo, link string) (*Header, error) {
-	if fi == nil {
-		return nil, errors.New("tar: FileInfo is nil")
-	}
-	fm := fi.Mode()
-	h := &Header{
-		Name:    fi.Name(),
-		ModTime: fi.ModTime(),
-		Mode:    int64(fm.Perm()), // or'd with c_IS* constants later
-	}
-	switch {
-	case fm.IsRegular():
-		h.Mode |= c_ISREG
-		h.Typeflag = TypeReg
-		h.Size = fi.Size()
-	case fi.IsDir():
-		h.Typeflag = TypeDir
-		h.Mode |= c_ISDIR
-		h.Name += "/"
-	case fm&os.ModeSymlink != 0:
-		h.Typeflag = TypeSymlink
-		h.Mode |= c_ISLNK
-		h.Linkname = link
-	case fm&os.ModeDevice != 0:
-		if fm&os.ModeCharDevice != 0 {
-			h.Mode |= c_ISCHR
-			h.Typeflag = TypeChar
-		} else {
-			h.Mode |= c_ISBLK
-			h.Typeflag = TypeBlock
-		}
-	case fm&os.ModeNamedPipe != 0:
-		h.Typeflag = TypeFifo
-		h.Mode |= c_ISFIFO
-	case fm&os.ModeSocket != 0:
-		h.Mode |= c_ISSOCK
-	default:
-		return nil, fmt.Errorf("archive/tar: unknown file mode %v", fm)
-	}
-	if fm&os.ModeSetuid != 0 {
-		h.Mode |= c_ISUID
-	}
-	if fm&os.ModeSetgid != 0 {
-		h.Mode |= c_ISGID
-	}
-	if fm&os.ModeSticky != 0 {
-		h.Mode |= c_ISVTX
-	}
-	// If possible, populate additional fields from OS-specific
-	// FileInfo fields.
-	if sys, ok := fi.Sys().(*Header); ok {
-		// This FileInfo came from a Header (not the OS). Use the
-		// original Header to populate all remaining fields.
-		h.Uid = sys.Uid
-		h.Gid = sys.Gid
-		h.Uname = sys.Uname
-		h.Gname = sys.Gname
-		h.AccessTime = sys.AccessTime
-		h.ChangeTime = sys.ChangeTime
-		if sys.Xattrs != nil {
-			h.Xattrs = make(map[string]string)
-			for k, v := range sys.Xattrs {
-				h.Xattrs[k] = v
-			}
-		}
-		if sys.Typeflag == TypeLink {
-			// hard link
-			h.Typeflag = TypeLink
-			h.Size = 0
-			h.Linkname = sys.Linkname
-		}
-	}
-	if sysStat != nil {
-		return h, sysStat(fi, h)
-	}
-	return h, nil
-}
-
-var zeroBlock = make([]byte, blockSize)
-
-// POSIX specifies a sum of the unsigned byte values, but the Sun tar uses signed byte values.
-// We compute and return both.
-func checksum(header []byte) (unsigned int64, signed int64) {
-	for i := 0; i < len(header); i++ {
-		if i == 148 {
-			// The chksum field (header[148:156]) is special: it should be treated as space bytes.
-			unsigned += ' ' * 8
-			signed += ' ' * 8
-			i += 7
-			continue
-		}
-		unsigned += int64(header[i])
-		signed += int64(int8(header[i]))
-	}
-	return
-}
-
-type slicer []byte
-
-func (sp *slicer) next(n int) (b []byte) {
-	s := *sp
-	b, *sp = s[0:n], s[n:]
-	return
-}
-
-func isASCII(s string) bool {
-	for _, c := range s {
-		if c >= 0x80 {
-			return false
-		}
-	}
-	return true
-}
-
-func toASCII(s string) string {
-	if isASCII(s) {
-		return s
-	}
-	var buf bytes.Buffer
-	for _, c := range s {
-		if c < 0x80 {
-			buf.WriteByte(byte(c))
-		}
-	}
-	return buf.String()
-}
-
-// isHeaderOnlyType checks if the given type flag is of the type that has no
-// data section even if a size is specified.
-func isHeaderOnlyType(flag byte) bool {
-	switch flag {
-	case TypeLink, TypeSymlink, TypeChar, TypeBlock, TypeDir, TypeFifo:
-		return true
-	default:
-		return false
-	}
-}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/reader.go b/vendor/github.com/vbatts/tar-split/archive/tar/reader.go
deleted file mode 100644
index adf32122e1..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/reader.go
+++ /dev/null
@@ -1,1064 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package tar
-
-// TODO(dsymonds):
-//   - pax extensions
-
-import (
-	"bytes"
-	"errors"
-	"io"
-	"io/ioutil"
-	"math"
-	"os"
-	"strconv"
-	"strings"
-	"time"
-)
-
-var (
-	ErrHeader = errors.New("archive/tar: invalid tar header")
-)
-
-const maxNanoSecondIntSize = 9
-
-// A Reader provides sequential access to the contents of a tar archive.
-// A tar archive consists of a sequence of files.
-// The Next method advances to the next file in the archive (including the first),
-// and then it can be treated as an io.Reader to access the file's data.
-type Reader struct {
-	r       io.Reader
-	err     error
-	pad     int64           // amount of padding (ignored) after current file entry
-	curr    numBytesReader  // reader for current file entry
-	hdrBuff [blockSize]byte // buffer to use in readHeader
-
-	RawAccounting bool          // Whether to enable the access needed to reassemble the tar from raw bytes. Some performance/memory hit for this.
-	rawBytes      *bytes.Buffer // last raw bits
-}
-
-type parser struct {
-	err error // Last error seen
-}
-
-// RawBytes accesses the raw bytes of the archive, apart from the file payload itself.
-// This includes the header and padding.
-//
-// This call resets the current rawbytes buffer
-//
-// Only when RawAccounting is enabled, otherwise this returns nil
-func (tr *Reader) RawBytes() []byte {
-	if !tr.RawAccounting {
-		return nil
-	}
-	if tr.rawBytes == nil {
-		tr.rawBytes = bytes.NewBuffer(nil)
-	}
-	// if we've read them, then flush them.
-	defer tr.rawBytes.Reset()
-	return tr.rawBytes.Bytes()
-}
-
-// A numBytesReader is an io.Reader with a numBytes method, returning the number
-// of bytes remaining in the underlying encoded data.
-type numBytesReader interface {
-	io.Reader
-	numBytes() int64
-}
-
-// A regFileReader is a numBytesReader for reading file data from a tar archive.
-type regFileReader struct {
-	r  io.Reader // underlying reader
-	nb int64     // number of unread bytes for current file entry
-}
-
-// A sparseFileReader is a numBytesReader for reading sparse file data from a
-// tar archive.
-type sparseFileReader struct {
-	rfr   numBytesReader // Reads the sparse-encoded file data
-	sp    []sparseEntry  // The sparse map for the file
-	pos   int64          // Keeps track of file position
-	total int64          // Total size of the file
-}
-
-// A sparseEntry holds a single entry in a sparse file's sparse map.
-//
-// Sparse files are represented using a series of sparseEntrys.
-// Despite the name, a sparseEntry represents an actual data fragment that
-// references data found in the underlying archive stream. All regions not
-// covered by a sparseEntry are logically filled with zeros.
-//
-// For example, if the underlying raw file contains the 10-byte data:
-//	var compactData = "abcdefgh"
-//
-// And the sparse map has the following entries:
-//	var sp = []sparseEntry{
-//		{offset: 2,  numBytes: 5} // Data fragment for [2..7]
-//		{offset: 18, numBytes: 3} // Data fragment for [18..21]
-//	}
-//
-// Then the content of the resulting sparse file with a "real" size of 25 is:
-//	var sparseData = "\x00"*2 + "abcde" + "\x00"*11 + "fgh" + "\x00"*4
-type sparseEntry struct {
-	offset   int64 // Starting position of the fragment
-	numBytes int64 // Length of the fragment
-}
-
-// Keywords for GNU sparse files in a PAX extended header
-const (
-	paxGNUSparseNumBlocks = "GNU.sparse.numblocks"
-	paxGNUSparseOffset    = "GNU.sparse.offset"
-	paxGNUSparseNumBytes  = "GNU.sparse.numbytes"
-	paxGNUSparseMap       = "GNU.sparse.map"
-	paxGNUSparseName      = "GNU.sparse.name"
-	paxGNUSparseMajor     = "GNU.sparse.major"
-	paxGNUSparseMinor     = "GNU.sparse.minor"
-	paxGNUSparseSize      = "GNU.sparse.size"
-	paxGNUSparseRealSize  = "GNU.sparse.realsize"
-)
-
-// Keywords for old GNU sparse headers
-const (
-	oldGNUSparseMainHeaderOffset               = 386
-	oldGNUSparseMainHeaderIsExtendedOffset     = 482
-	oldGNUSparseMainHeaderNumEntries           = 4
-	oldGNUSparseExtendedHeaderIsExtendedOffset = 504
-	oldGNUSparseExtendedHeaderNumEntries       = 21
-	oldGNUSparseOffsetSize                     = 12
-	oldGNUSparseNumBytesSize                   = 12
-)
-
-// NewReader creates a new Reader reading from r.
-func NewReader(r io.Reader) *Reader { return &Reader{r: r} }
-
-// Next advances to the next entry in the tar archive.
-//
-// io.EOF is returned at the end of the input.
-func (tr *Reader) Next() (*Header, error) {
-	if tr.RawAccounting {
-		if tr.rawBytes == nil {
-			tr.rawBytes = bytes.NewBuffer(nil)
-		} else {
-			tr.rawBytes.Reset()
-		}
-	}
-
-	if tr.err != nil {
-		return nil, tr.err
-	}
-
-	var hdr *Header
-	var extHdrs map[string]string
-
-	// Externally, Next iterates through the tar archive as if it is a series of
-	// files. Internally, the tar format often uses fake "files" to add meta
-	// data that describes the next file. These meta data "files" should not
-	// normally be visible to the outside. As such, this loop iterates through
-	// one or more "header files" until it finds a "normal file".
-loop:
-	for {
-		tr.err = tr.skipUnread()
-		if tr.err != nil {
-			return nil, tr.err
-		}
-
-		hdr = tr.readHeader()
-		if tr.err != nil {
-			return nil, tr.err
-		}
-		// Check for PAX/GNU special headers and files.
-		switch hdr.Typeflag {
-		case TypeXHeader:
-			extHdrs, tr.err = parsePAX(tr)
-			if tr.err != nil {
-				return nil, tr.err
-			}
-			continue loop // This is a meta header affecting the next header
-		case TypeGNULongName, TypeGNULongLink:
-			var realname []byte
-			realname, tr.err = ioutil.ReadAll(tr)
-			if tr.err != nil {
-				return nil, tr.err
-			}
-
-			if tr.RawAccounting {
-				if _, tr.err = tr.rawBytes.Write(realname); tr.err != nil {
-					return nil, tr.err
-				}
-			}
-
-			// Convert GNU extensions to use PAX headers.
-			if extHdrs == nil {
-				extHdrs = make(map[string]string)
-			}
-			var p parser
-			switch hdr.Typeflag {
-			case TypeGNULongName:
-				extHdrs[paxPath] = p.parseString(realname)
-			case TypeGNULongLink:
-				extHdrs[paxLinkpath] = p.parseString(realname)
-			}
-			if p.err != nil {
-				tr.err = p.err
-				return nil, tr.err
-			}
-			continue loop // This is a meta header affecting the next header
-		default:
-			mergePAX(hdr, extHdrs)
-
-			// Check for a PAX format sparse file
-			sp, err := tr.checkForGNUSparsePAXHeaders(hdr, extHdrs)
-			if err != nil {
-				tr.err = err
-				return nil, err
-			}
-			if sp != nil {
-				// Current file is a PAX format GNU sparse file.
-				// Set the current file reader to a sparse file reader.
-				tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
-				if tr.err != nil {
-					return nil, tr.err
-				}
-			}
-			break loop // This is a file, so stop
-		}
-	}
-	return hdr, nil
-}
-
-// checkForGNUSparsePAXHeaders checks the PAX headers for GNU sparse headers. If they are found, then
-// this function reads the sparse map and returns it. Unknown sparse formats are ignored, causing the file to
-// be treated as a regular file.
-func (tr *Reader) checkForGNUSparsePAXHeaders(hdr *Header, headers map[string]string) ([]sparseEntry, error) {
-	var sparseFormat string
-
-	// Check for sparse format indicators
-	major, majorOk := headers[paxGNUSparseMajor]
-	minor, minorOk := headers[paxGNUSparseMinor]
-	sparseName, sparseNameOk := headers[paxGNUSparseName]
-	_, sparseMapOk := headers[paxGNUSparseMap]
-	sparseSize, sparseSizeOk := headers[paxGNUSparseSize]
-	sparseRealSize, sparseRealSizeOk := headers[paxGNUSparseRealSize]
-
-	// Identify which, if any, sparse format applies from which PAX headers are set
-	if majorOk && minorOk {
-		sparseFormat = major + "." + minor
-	} else if sparseNameOk && sparseMapOk {
-		sparseFormat = "0.1"
-	} else if sparseSizeOk {
-		sparseFormat = "0.0"
-	} else {
-		// Not a PAX format GNU sparse file.
-		return nil, nil
-	}
-
-	// Check for unknown sparse format
-	if sparseFormat != "0.0" && sparseFormat != "0.1" && sparseFormat != "1.0" {
-		return nil, nil
-	}
-
-	// Update hdr from GNU sparse PAX headers
-	if sparseNameOk {
-		hdr.Name = sparseName
-	}
-	if sparseSizeOk {
-		realSize, err := strconv.ParseInt(sparseSize, 10, 0)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		hdr.Size = realSize
-	} else if sparseRealSizeOk {
-		realSize, err := strconv.ParseInt(sparseRealSize, 10, 0)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		hdr.Size = realSize
-	}
-
-	// Set up the sparse map, according to the particular sparse format in use
-	var sp []sparseEntry
-	var err error
-	switch sparseFormat {
-	case "0.0", "0.1":
-		sp, err = readGNUSparseMap0x1(headers)
-	case "1.0":
-		sp, err = readGNUSparseMap1x0(tr.curr)
-	}
-	return sp, err
-}
-
-// mergePAX merges well known headers according to PAX standard.
-// In general headers with the same name as those found
-// in the header struct overwrite those found in the header
-// struct with higher precision or longer values. Esp. useful
-// for name and linkname fields.
-func mergePAX(hdr *Header, headers map[string]string) error {
-	for k, v := range headers {
-		switch k {
-		case paxPath:
-			hdr.Name = v
-		case paxLinkpath:
-			hdr.Linkname = v
-		case paxGname:
-			hdr.Gname = v
-		case paxUname:
-			hdr.Uname = v
-		case paxUid:
-			uid, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Uid = int(uid)
-		case paxGid:
-			gid, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Gid = int(gid)
-		case paxAtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.AccessTime = t
-		case paxMtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.ModTime = t
-		case paxCtime:
-			t, err := parsePAXTime(v)
-			if err != nil {
-				return err
-			}
-			hdr.ChangeTime = t
-		case paxSize:
-			size, err := strconv.ParseInt(v, 10, 0)
-			if err != nil {
-				return err
-			}
-			hdr.Size = int64(size)
-		default:
-			if strings.HasPrefix(k, paxXattr) {
-				if hdr.Xattrs == nil {
-					hdr.Xattrs = make(map[string]string)
-				}
-				hdr.Xattrs[k[len(paxXattr):]] = v
-			}
-		}
-	}
-	return nil
-}
-
-// parsePAXTime takes a string of the form %d.%d as described in
-// the PAX specification.
-func parsePAXTime(t string) (time.Time, error) {
-	buf := []byte(t)
-	pos := bytes.IndexByte(buf, '.')
-	var seconds, nanoseconds int64
-	var err error
-	if pos == -1 {
-		seconds, err = strconv.ParseInt(t, 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-	} else {
-		seconds, err = strconv.ParseInt(string(buf[:pos]), 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-		nano_buf := string(buf[pos+1:])
-		// Pad as needed before converting to a decimal.
-		// For example .030 -> .030000000 -> 30000000 nanoseconds
-		if len(nano_buf) < maxNanoSecondIntSize {
-			// Right pad
-			nano_buf += strings.Repeat("0", maxNanoSecondIntSize-len(nano_buf))
-		} else if len(nano_buf) > maxNanoSecondIntSize {
-			// Right truncate
-			nano_buf = nano_buf[:maxNanoSecondIntSize]
-		}
-		nanoseconds, err = strconv.ParseInt(string(nano_buf), 10, 0)
-		if err != nil {
-			return time.Time{}, err
-		}
-	}
-	ts := time.Unix(seconds, nanoseconds)
-	return ts, nil
-}
-
-// parsePAX parses PAX headers.
-// If an extended header (type 'x') is invalid, ErrHeader is returned
-func parsePAX(r io.Reader) (map[string]string, error) {
-	buf, err := ioutil.ReadAll(r)
-	if err != nil {
-		return nil, err
-	}
-	// leaving this function for io.Reader makes it more testable
-	if tr, ok := r.(*Reader); ok && tr.RawAccounting {
-		if _, err = tr.rawBytes.Write(buf); err != nil {
-			return nil, err
-		}
-	}
-	sbuf := string(buf)
-
-	// For GNU PAX sparse format 0.0 support.
-	// This function transforms the sparse format 0.0 headers into sparse format 0.1 headers.
-	var sparseMap bytes.Buffer
-
-	headers := make(map[string]string)
-	// Each record is constructed as
-	//     "%d %s=%s\n", length, keyword, value
-	for len(sbuf) > 0 {
-		key, value, residual, err := parsePAXRecord(sbuf)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sbuf = residual
-
-		keyStr := string(key)
-		if keyStr == paxGNUSparseOffset || keyStr == paxGNUSparseNumBytes {
-			// GNU sparse format 0.0 special key. Write to sparseMap instead of using the headers map.
-			sparseMap.WriteString(value)
-			sparseMap.Write([]byte{','})
-		} else {
-			// Normal key. Set the value in the headers map.
-			headers[keyStr] = string(value)
-		}
-	}
-	if sparseMap.Len() != 0 {
-		// Add sparse info to headers, chopping off the extra comma
-		sparseMap.Truncate(sparseMap.Len() - 1)
-		headers[paxGNUSparseMap] = sparseMap.String()
-	}
-	return headers, nil
-}
-
-// parsePAXRecord parses the input PAX record string into a key-value pair.
-// If parsing is successful, it will slice off the currently read record and
-// return the remainder as r.
-//
-// A PAX record is of the following form:
-//	"%d %s=%s\n" % (size, key, value)
-func parsePAXRecord(s string) (k, v, r string, err error) {
-	// The size field ends at the first space.
-	sp := strings.IndexByte(s, ' ')
-	if sp == -1 {
-		return "", "", s, ErrHeader
-	}
-
-	// Parse the first token as a decimal integer.
-	n, perr := strconv.ParseInt(s[:sp], 10, 0) // Intentionally parse as native int
-	if perr != nil || n < 5 || int64(len(s)) < n {
-		return "", "", s, ErrHeader
-	}
-
-	// Extract everything between the space and the final newline.
-	rec, nl, rem := s[sp+1:n-1], s[n-1:n], s[n:]
-	if nl != "\n" {
-		return "", "", s, ErrHeader
-	}
-
-	// The first equals separates the key from the value.
-	eq := strings.IndexByte(rec, '=')
-	if eq == -1 {
-		return "", "", s, ErrHeader
-	}
-	return rec[:eq], rec[eq+1:], rem, nil
-}
-
-// parseString parses bytes as a NUL-terminated C-style string.
-// If a NUL byte is not found then the whole slice is returned as a string.
-func (*parser) parseString(b []byte) string {
-	n := 0
-	for n < len(b) && b[n] != 0 {
-		n++
-	}
-	return string(b[0:n])
-}
-
-// parseNumeric parses the input as being encoded in either base-256 or octal.
-// This function may return negative numbers.
-// If parsing fails or an integer overflow occurs, err will be set.
-func (p *parser) parseNumeric(b []byte) int64 {
-	// Check for base-256 (binary) format first.
-	// If the first bit is set, then all following bits constitute a two's
-	// complement encoded number in big-endian byte order.
-	if len(b) > 0 && b[0]&0x80 != 0 {
-		// Handling negative numbers relies on the following identity:
-		//	-a-1 == ^a
-		//
-		// If the number is negative, we use an inversion mask to invert the
-		// data bytes and treat the value as an unsigned number.
-		var inv byte // 0x00 if positive or zero, 0xff if negative
-		if b[0]&0x40 != 0 {
-			inv = 0xff
-		}
-
-		var x uint64
-		for i, c := range b {
-			c ^= inv // Inverts c only if inv is 0xff, otherwise does nothing
-			if i == 0 {
-				c &= 0x7f // Ignore signal bit in first byte
-			}
-			if (x >> 56) > 0 {
-				p.err = ErrHeader // Integer overflow
-				return 0
-			}
-			x = x<<8 | uint64(c)
-		}
-		if (x >> 63) > 0 {
-			p.err = ErrHeader // Integer overflow
-			return 0
-		}
-		if inv == 0xff {
-			return ^int64(x)
-		}
-		return int64(x)
-	}
-
-	// Normal case is base-8 (octal) format.
-	return p.parseOctal(b)
-}
-
-func (p *parser) parseOctal(b []byte) int64 {
-	// Because unused fields are filled with NULs, we need
-	// to skip leading NULs. Fields may also be padded with
-	// spaces or NULs.
-	// So we remove leading and trailing NULs and spaces to
-	// be sure.
-	b = bytes.Trim(b, " \x00")
-
-	if len(b) == 0 {
-		return 0
-	}
-	x, perr := strconv.ParseUint(p.parseString(b), 8, 64)
-	if perr != nil {
-		p.err = ErrHeader
-	}
-	return int64(x)
-}
-
-// skipUnread skips any unread bytes in the existing file entry, as well as any
-// alignment padding. It returns io.ErrUnexpectedEOF if any io.EOF is
-// encountered in the data portion; it is okay to hit io.EOF in the padding.
-//
-// Note that this function still works properly even when sparse files are being
-// used since numBytes returns the bytes remaining in the underlying io.Reader.
-func (tr *Reader) skipUnread() error {
-	dataSkip := tr.numBytes()      // Number of data bytes to skip
-	totalSkip := dataSkip + tr.pad // Total number of bytes to skip
-	tr.curr, tr.pad = nil, 0
-	if tr.RawAccounting {
-		_, tr.err = io.CopyN(tr.rawBytes, tr.r, totalSkip)
-		return tr.err
-	}
-	// If possible, Seek to the last byte before the end of the data section.
-	// Do this because Seek is often lazy about reporting errors; this will mask
-	// the fact that the tar stream may be truncated. We can rely on the
-	// io.CopyN done shortly afterwards to trigger any IO errors.
-	var seekSkipped int64 // Number of bytes skipped via Seek
-	if sr, ok := tr.r.(io.Seeker); ok && dataSkip > 1 {
-		// Not all io.Seeker can actually Seek. For example, os.Stdin implements
-		// io.Seeker, but calling Seek always returns an error and performs
-		// no action. Thus, we try an innocent seek to the current position
-		// to see if Seek is really supported.
-		pos1, err := sr.Seek(0, os.SEEK_CUR)
-		if err == nil {
-			// Seek seems supported, so perform the real Seek.
-			pos2, err := sr.Seek(dataSkip-1, os.SEEK_CUR)
-			if err != nil {
-				tr.err = err
-				return tr.err
-			}
-			seekSkipped = pos2 - pos1
-		}
-	}
-
-	var copySkipped int64 // Number of bytes skipped via CopyN
-	copySkipped, tr.err = io.CopyN(ioutil.Discard, tr.r, totalSkip-seekSkipped)
-	if tr.err == io.EOF && seekSkipped+copySkipped < dataSkip {
-		tr.err = io.ErrUnexpectedEOF
-	}
-	return tr.err
-}
-
-func (tr *Reader) verifyChecksum(header []byte) bool {
-	if tr.err != nil {
-		return false
-	}
-
-	var p parser
-	given := p.parseOctal(header[148:156])
-	unsigned, signed := checksum(header)
-	return p.err == nil && (given == unsigned || given == signed)
-}
-
-// readHeader reads the next block header and assumes that the underlying reader
-// is already aligned to a block boundary.
-//
-// The err will be set to io.EOF only when one of the following occurs:
-//	* Exactly 0 bytes are read and EOF is hit.
-//	* Exactly 1 block of zeros is read and EOF is hit.
-//	* At least 2 blocks of zeros are read.
-func (tr *Reader) readHeader() *Header {
-	header := tr.hdrBuff[:]
-	copy(header, zeroBlock)
-
-	if n, err := io.ReadFull(tr.r, header); err != nil {
-		tr.err = err
-		// because it could read some of the block, but reach EOF first
-		if tr.err == io.EOF && tr.RawAccounting {
-			if _, err := tr.rawBytes.Write(header[:n]); err != nil {
-				tr.err = err
-			}
-		}
-		return nil // io.EOF is okay here
-	}
-	if tr.RawAccounting {
-		if _, tr.err = tr.rawBytes.Write(header); tr.err != nil {
-			return nil
-		}
-	}
-
-	// Two blocks of zero bytes marks the end of the archive.
-	if bytes.Equal(header, zeroBlock[0:blockSize]) {
-		if n, err := io.ReadFull(tr.r, header); err != nil {
-			tr.err = err
-			// because it could read some of the block, but reach EOF first
-			if tr.err == io.EOF && tr.RawAccounting {
-				if _, err := tr.rawBytes.Write(header[:n]); err != nil {
-					tr.err = err
-				}
-			}
-			return nil // io.EOF is okay here
-		}
-		if tr.RawAccounting {
-			if _, tr.err = tr.rawBytes.Write(header); tr.err != nil {
-				return nil
-			}
-		}
-		if bytes.Equal(header, zeroBlock[0:blockSize]) {
-			tr.err = io.EOF
-		} else {
-			tr.err = ErrHeader // zero block and then non-zero block
-		}
-		return nil
-	}
-
-	if !tr.verifyChecksum(header) {
-		tr.err = ErrHeader
-		return nil
-	}
-
-	// Unpack
-	var p parser
-	hdr := new(Header)
-	s := slicer(header)
-
-	hdr.Name = p.parseString(s.next(100))
-	hdr.Mode = p.parseNumeric(s.next(8))
-	hdr.Uid = int(p.parseNumeric(s.next(8)))
-	hdr.Gid = int(p.parseNumeric(s.next(8)))
-	hdr.Size = p.parseNumeric(s.next(12))
-	hdr.ModTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-	s.next(8) // chksum
-	hdr.Typeflag = s.next(1)[0]
-	hdr.Linkname = p.parseString(s.next(100))
-
-	// The remainder of the header depends on the value of magic.
-	// The original (v7) version of tar had no explicit magic field,
-	// so its magic bytes, like the rest of the block, are NULs.
-	magic := string(s.next(8)) // contains version field as well.
-	var format string
-	switch {
-	case magic[:6] == "ustar\x00": // POSIX tar (1003.1-1988)
-		if string(header[508:512]) == "tar\x00" {
-			format = "star"
-		} else {
-			format = "posix"
-		}
-	case magic == "ustar  \x00": // old GNU tar
-		format = "gnu"
-	}
-
-	switch format {
-	case "posix", "gnu", "star":
-		hdr.Uname = p.parseString(s.next(32))
-		hdr.Gname = p.parseString(s.next(32))
-		devmajor := s.next(8)
-		devminor := s.next(8)
-		if hdr.Typeflag == TypeChar || hdr.Typeflag == TypeBlock {
-			hdr.Devmajor = p.parseNumeric(devmajor)
-			hdr.Devminor = p.parseNumeric(devminor)
-		}
-		var prefix string
-		switch format {
-		case "posix", "gnu":
-			prefix = p.parseString(s.next(155))
-		case "star":
-			prefix = p.parseString(s.next(131))
-			hdr.AccessTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-			hdr.ChangeTime = time.Unix(p.parseNumeric(s.next(12)), 0)
-		}
-		if len(prefix) > 0 {
-			hdr.Name = prefix + "/" + hdr.Name
-		}
-	}
-
-	if p.err != nil {
-		tr.err = p.err
-		return nil
-	}
-
-	nb := hdr.Size
-	if isHeaderOnlyType(hdr.Typeflag) {
-		nb = 0
-	}
-	if nb < 0 {
-		tr.err = ErrHeader
-		return nil
-	}
-
-	// Set the current file reader.
-	tr.pad = -nb & (blockSize - 1) // blockSize is a power of two
-	tr.curr = &regFileReader{r: tr.r, nb: nb}
-
-	// Check for old GNU sparse format entry.
-	if hdr.Typeflag == TypeGNUSparse {
-		// Get the real size of the file.
-		hdr.Size = p.parseNumeric(header[483:495])
-		if p.err != nil {
-			tr.err = p.err
-			return nil
-		}
-
-		// Read the sparse map.
-		sp := tr.readOldGNUSparseMap(header)
-		if tr.err != nil {
-			return nil
-		}
-
-		// Current file is a GNU sparse file. Update the current file reader.
-		tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
-		if tr.err != nil {
-			return nil
-		}
-	}
-
-	return hdr
-}
-
-// readOldGNUSparseMap reads the sparse map as stored in the old GNU sparse format.
-// The sparse map is stored in the tar header if it's small enough. If it's larger than four entries,
-// then one or more extension headers are used to store the rest of the sparse map.
-func (tr *Reader) readOldGNUSparseMap(header []byte) []sparseEntry {
-	var p parser
-	isExtended := header[oldGNUSparseMainHeaderIsExtendedOffset] != 0
-	spCap := oldGNUSparseMainHeaderNumEntries
-	if isExtended {
-		spCap += oldGNUSparseExtendedHeaderNumEntries
-	}
-	sp := make([]sparseEntry, 0, spCap)
-	s := slicer(header[oldGNUSparseMainHeaderOffset:])
-
-	// Read the four entries from the main tar header
-	for i := 0; i < oldGNUSparseMainHeaderNumEntries; i++ {
-		offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
-		numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
-		if p.err != nil {
-			tr.err = p.err
-			return nil
-		}
-		if offset == 0 && numBytes == 0 {
-			break
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-
-	for isExtended {
-		// There are more entries. Read an extension header and parse its entries.
-		sparseHeader := make([]byte, blockSize)
-		if _, tr.err = io.ReadFull(tr.r, sparseHeader); tr.err != nil {
-			return nil
-		}
-		if tr.RawAccounting {
-			if _, tr.err = tr.rawBytes.Write(sparseHeader); tr.err != nil {
-				return nil
-			}
-		}
-
-		isExtended = sparseHeader[oldGNUSparseExtendedHeaderIsExtendedOffset] != 0
-		s = slicer(sparseHeader)
-		for i := 0; i < oldGNUSparseExtendedHeaderNumEntries; i++ {
-			offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
-			numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
-			if p.err != nil {
-				tr.err = p.err
-				return nil
-			}
-			if offset == 0 && numBytes == 0 {
-				break
-			}
-			sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-		}
-	}
-	return sp
-}
-
-// readGNUSparseMap1x0 reads the sparse map as stored in GNU's PAX sparse format
-// version 1.0. The format of the sparse map consists of a series of
-// newline-terminated numeric fields. The first field is the number of entries
-// and is always present. Following this are the entries, consisting of two
-// fields (offset, numBytes). This function must stop reading at the end
-// boundary of the block containing the last newline.
-//
-// Note that the GNU manual says that numeric values should be encoded in octal
-// format. However, the GNU tar utility itself outputs these values in decimal.
-// As such, this library treats values as being encoded in decimal.
-func readGNUSparseMap1x0(r io.Reader) ([]sparseEntry, error) {
-	var cntNewline int64
-	var buf bytes.Buffer
-	var blk = make([]byte, blockSize)
-
-	// feedTokens copies data in numBlock chunks from r into buf until there are
-	// at least cnt newlines in buf. It will not read more blocks than needed.
-	var feedTokens = func(cnt int64) error {
-		for cntNewline < cnt {
-			if _, err := io.ReadFull(r, blk); err != nil {
-				if err == io.EOF {
-					err = io.ErrUnexpectedEOF
-				}
-				return err
-			}
-			buf.Write(blk)
-			for _, c := range blk {
-				if c == '\n' {
-					cntNewline++
-				}
-			}
-		}
-		return nil
-	}
-
-	// nextToken gets the next token delimited by a newline. This assumes that
-	// at least one newline exists in the buffer.
-	var nextToken = func() string {
-		cntNewline--
-		tok, _ := buf.ReadString('\n')
-		return tok[:len(tok)-1] // Cut off newline
-	}
-
-	// Parse for the number of entries.
-	// Use integer overflow resistant math to check this.
-	if err := feedTokens(1); err != nil {
-		return nil, err
-	}
-	numEntries, err := strconv.ParseInt(nextToken(), 10, 0) // Intentionally parse as native int
-	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
-		return nil, ErrHeader
-	}
-
-	// Parse for all member entries.
-	// numEntries is trusted after this since a potential attacker must have
-	// committed resources proportional to what this library used.
-	if err := feedTokens(2 * numEntries); err != nil {
-		return nil, err
-	}
-	sp := make([]sparseEntry, 0, numEntries)
-	for i := int64(0); i < numEntries; i++ {
-		offset, err := strconv.ParseInt(nextToken(), 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		numBytes, err := strconv.ParseInt(nextToken(), 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-	return sp, nil
-}
-
-// readGNUSparseMap0x1 reads the sparse map as stored in GNU's PAX sparse format
-// version 0.1. The sparse map is stored in the PAX headers.
-func readGNUSparseMap0x1(extHdrs map[string]string) ([]sparseEntry, error) {
-	// Get number of entries.
-	// Use integer overflow resistant math to check this.
-	numEntriesStr := extHdrs[paxGNUSparseNumBlocks]
-	numEntries, err := strconv.ParseInt(numEntriesStr, 10, 0) // Intentionally parse as native int
-	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
-		return nil, ErrHeader
-	}
-
-	// There should be two numbers in sparseMap for each entry.
-	sparseMap := strings.Split(extHdrs[paxGNUSparseMap], ",")
-	if int64(len(sparseMap)) != 2*numEntries {
-		return nil, ErrHeader
-	}
-
-	// Loop through the entries in the sparse map.
-	// numEntries is trusted now.
-	sp := make([]sparseEntry, 0, numEntries)
-	for i := int64(0); i < numEntries; i++ {
-		offset, err := strconv.ParseInt(sparseMap[2*i], 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		numBytes, err := strconv.ParseInt(sparseMap[2*i+1], 10, 64)
-		if err != nil {
-			return nil, ErrHeader
-		}
-		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
-	}
-	return sp, nil
-}
-
-// numBytes returns the number of bytes left to read in the current file's entry
-// in the tar archive, or 0 if there is no current file.
-func (tr *Reader) numBytes() int64 {
-	if tr.curr == nil {
-		// No current file, so no bytes
-		return 0
-	}
-	return tr.curr.numBytes()
-}
-
-// Read reads from the current entry in the tar archive.
-// It returns 0, io.EOF when it reaches the end of that entry,
-// until Next is called to advance to the next entry.
-//
-// Calling Read on special types like TypeLink, TypeSymLink, TypeChar,
-// TypeBlock, TypeDir, and TypeFifo returns 0, io.EOF regardless of what
-// the Header.Size claims.
-func (tr *Reader) Read(b []byte) (n int, err error) {
-	if tr.err != nil {
-		return 0, tr.err
-	}
-	if tr.curr == nil {
-		return 0, io.EOF
-	}
-
-	n, err = tr.curr.Read(b)
-	if err != nil && err != io.EOF {
-		tr.err = err
-	}
-	return
-}
-
-func (rfr *regFileReader) Read(b []byte) (n int, err error) {
-	if rfr.nb == 0 {
-		// file consumed
-		return 0, io.EOF
-	}
-	if int64(len(b)) > rfr.nb {
-		b = b[0:rfr.nb]
-	}
-	n, err = rfr.r.Read(b)
-	rfr.nb -= int64(n)
-
-	if err == io.EOF && rfr.nb > 0 {
-		err = io.ErrUnexpectedEOF
-	}
-	return
-}
-
-// numBytes returns the number of bytes left to read in the file's data in the tar archive.
-func (rfr *regFileReader) numBytes() int64 {
-	return rfr.nb
-}
-
-// newSparseFileReader creates a new sparseFileReader, but validates all of the
-// sparse entries before doing so.
-func newSparseFileReader(rfr numBytesReader, sp []sparseEntry, total int64) (*sparseFileReader, error) {
-	if total < 0 {
-		return nil, ErrHeader // Total size cannot be negative
-	}
-
-	// Validate all sparse entries. These are the same checks as performed by
-	// the BSD tar utility.
-	for i, s := range sp {
-		switch {
-		case s.offset < 0 || s.numBytes < 0:
-			return nil, ErrHeader // Negative values are never okay
-		case s.offset > math.MaxInt64-s.numBytes:
-			return nil, ErrHeader // Integer overflow with large length
-		case s.offset+s.numBytes > total:
-			return nil, ErrHeader // Region extends beyond the "real" size
-		case i > 0 && sp[i-1].offset+sp[i-1].numBytes > s.offset:
-			return nil, ErrHeader // Regions can't overlap and must be in order
-		}
-	}
-	return &sparseFileReader{rfr: rfr, sp: sp, total: total}, nil
-}
-
-// readHole reads a sparse hole ending at endOffset.
-func (sfr *sparseFileReader) readHole(b []byte, endOffset int64) int {
-	n64 := endOffset - sfr.pos
-	if n64 > int64(len(b)) {
-		n64 = int64(len(b))
-	}
-	n := int(n64)
-	for i := 0; i < n; i++ {
-		b[i] = 0
-	}
-	sfr.pos += n64
-	return n
-}
-
-// Read reads the sparse file data in expanded form.
-func (sfr *sparseFileReader) Read(b []byte) (n int, err error) {
-	// Skip past all empty fragments.
-	for len(sfr.sp) > 0 && sfr.sp[0].numBytes == 0 {
-		sfr.sp = sfr.sp[1:]
-	}
-
-	// If there are no more fragments, then it is possible that there
-	// is one last sparse hole.
-	if len(sfr.sp) == 0 {
-		// This behavior matches the BSD tar utility.
-		// However, GNU tar stops returning data even if sfr.total is unmet.
-		if sfr.pos < sfr.total {
-			return sfr.readHole(b, sfr.total), nil
-		}
-		return 0, io.EOF
-	}
-
-	// In front of a data fragment, so read a hole.
-	if sfr.pos < sfr.sp[0].offset {
-		return sfr.readHole(b, sfr.sp[0].offset), nil
-	}
-
-	// In a data fragment, so read from it.
-	// This math is overflow free since we verify that offset and numBytes can
-	// be safely added when creating the sparseFileReader.
-	endPos := sfr.sp[0].offset + sfr.sp[0].numBytes // End offset of fragment
-	bytesLeft := endPos - sfr.pos                   // Bytes left in fragment
-	if int64(len(b)) > bytesLeft {
-		b = b[:bytesLeft]
-	}
-
-	n, err = sfr.rfr.Read(b)
-	sfr.pos += int64(n)
-	if err == io.EOF {
-		if sfr.pos < endPos {
-			err = io.ErrUnexpectedEOF // There was supposed to be more data
-		} else if sfr.pos < sfr.total {
-			err = nil // There is still an implicit sparse hole at the end
-		}
-	}
-
-	if sfr.pos == endPos {
-		sfr.sp = sfr.sp[1:] // We are done with this fragment, so pop it
-	}
-	return n, err
-}
-
-// numBytes returns the number of bytes left to read in the sparse file's
-// sparse-encoded data in the tar archive.
-func (sfr *sparseFileReader) numBytes() int64 {
-	return sfr.rfr.numBytes()
-}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
deleted file mode 100644
index cf9cc79c59..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build linux dragonfly openbsd solaris
-
-package tar
-
-import (
-	"syscall"
-	"time"
-)
-
-func statAtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Atim.Unix())
-}
-
-func statCtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Ctim.Unix())
-}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
deleted file mode 100644
index 6f17dbe307..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
+++ /dev/null
@@ -1,20 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build darwin freebsd netbsd
-
-package tar
-
-import (
-	"syscall"
-	"time"
-)
-
-func statAtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Atimespec.Unix())
-}
-
-func statCtime(st *syscall.Stat_t) time.Time {
-	return time.Unix(st.Ctimespec.Unix())
-}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
deleted file mode 100644
index cb843db4cf..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build linux darwin dragonfly freebsd openbsd netbsd solaris
-
-package tar
-
-import (
-	"os"
-	"syscall"
-)
-
-func init() {
-	sysStat = statUnix
-}
-
-func statUnix(fi os.FileInfo, h *Header) error {
-	sys, ok := fi.Sys().(*syscall.Stat_t)
-	if !ok {
-		return nil
-	}
-	h.Uid = int(sys.Uid)
-	h.Gid = int(sys.Gid)
-	// TODO(bradfitz): populate username & group.  os/user
-	// doesn't cache LookupId lookups, and lacks group
-	// lookup functions.
-	h.AccessTime = statAtime(sys)
-	h.ChangeTime = statCtime(sys)
-	// TODO(bradfitz): major/minor device numbers?
-	return nil
-}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/writer.go b/vendor/github.com/vbatts/tar-split/archive/tar/writer.go
deleted file mode 100644
index 042638175c..0000000000
--- a/vendor/github.com/vbatts/tar-split/archive/tar/writer.go
+++ /dev/null
@@ -1,416 +0,0 @@
-// Copyright 2009 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package tar
-
-// TODO(dsymonds):
-// - catch more errors (no first header, etc.)
-
-import (
-	"bytes"
-	"errors"
-	"fmt"
-	"io"
-	"path"
-	"sort"
-	"strconv"
-	"strings"
-	"time"
-)
-
-var (
-	ErrWriteTooLong    = errors.New("archive/tar: write too long")
-	ErrFieldTooLong    = errors.New("archive/tar: header field too long")
-	ErrWriteAfterClose = errors.New("archive/tar: write after close")
-	errInvalidHeader   = errors.New("archive/tar: header field too long or contains invalid values")
-)
-
-// A Writer provides sequential writing of a tar archive in POSIX.1 format.
-// A tar archive consists of a sequence of files.
-// Call WriteHeader to begin a new file, and then call Write to supply that file's data,
-// writing at most hdr.Size bytes in total.
-type Writer struct {
-	w          io.Writer
-	err        error
-	nb         int64 // number of unwritten bytes for current file entry
-	pad        int64 // amount of padding to write after current file entry
-	closed     bool
-	usedBinary bool            // whether the binary numeric field extension was used
-	preferPax  bool            // use pax header instead of binary numeric header
-	hdrBuff    [blockSize]byte // buffer to use in writeHeader when writing a regular header
-	paxHdrBuff [blockSize]byte // buffer to use in writeHeader when writing a pax header
-}
-
-type formatter struct {
-	err error // Last error seen
-}
-
-// NewWriter creates a new Writer writing to w.
-func NewWriter(w io.Writer) *Writer { return &Writer{w: w} }
-
-// Flush finishes writing the current file (optional).
-func (tw *Writer) Flush() error {
-	if tw.nb > 0 {
-		tw.err = fmt.Errorf("archive/tar: missed writing %d bytes", tw.nb)
-		return tw.err
-	}
-
-	n := tw.nb + tw.pad
-	for n > 0 && tw.err == nil {
-		nr := n
-		if nr > blockSize {
-			nr = blockSize
-		}
-		var nw int
-		nw, tw.err = tw.w.Write(zeroBlock[0:nr])
-		n -= int64(nw)
-	}
-	tw.nb = 0
-	tw.pad = 0
-	return tw.err
-}
-
-// Write s into b, terminating it with a NUL if there is room.
-func (f *formatter) formatString(b []byte, s string) {
-	if len(s) > len(b) {
-		f.err = ErrFieldTooLong
-		return
-	}
-	ascii := toASCII(s)
-	copy(b, ascii)
-	if len(ascii) < len(b) {
-		b[len(ascii)] = 0
-	}
-}
-
-// Encode x as an octal ASCII string and write it into b with leading zeros.
-func (f *formatter) formatOctal(b []byte, x int64) {
-	s := strconv.FormatInt(x, 8)
-	// leading zeros, but leave room for a NUL.
-	for len(s)+1 < len(b) {
-		s = "0" + s
-	}
-	f.formatString(b, s)
-}
-
-// fitsInBase256 reports whether x can be encoded into n bytes using base-256
-// encoding. Unlike octal encoding, base-256 encoding does not require that the
-// string ends with a NUL character. Thus, all n bytes are available for output.
-//
-// If operating in binary mode, this assumes strict GNU binary mode; which means
-// that the first byte can only be either 0x80 or 0xff. Thus, the first byte is
-// equivalent to the sign bit in two's complement form.
-func fitsInBase256(n int, x int64) bool {
-	var binBits = uint(n-1) * 8
-	return n >= 9 || (x >= -1<<binBits && x < 1<<binBits)
-}
-
-// Write x into b, as binary (GNUtar/star extension).
-func (f *formatter) formatNumeric(b []byte, x int64) {
-	if fitsInBase256(len(b), x) {
-		for i := len(b) - 1; i >= 0; i-- {
-			b[i] = byte(x)
-			x >>= 8
-		}
-		b[0] |= 0x80 // Highest bit indicates binary format
-		return
-	}
-
-	f.formatOctal(b, 0) // Last resort, just write zero
-	f.err = ErrFieldTooLong
-}
-
-var (
-	minTime = time.Unix(0, 0)
-	// There is room for 11 octal digits (33 bits) of mtime.
-	maxTime = minTime.Add((1<<33 - 1) * time.Second)
-)
-
-// WriteHeader writes hdr and prepares to accept the file's contents.
-// WriteHeader calls Flush if it is not the first header.
-// Calling after a Close will return ErrWriteAfterClose.
-func (tw *Writer) WriteHeader(hdr *Header) error {
-	return tw.writeHeader(hdr, true)
-}
-
-// WriteHeader writes hdr and prepares to accept the file's contents.
-// WriteHeader calls Flush if it is not the first header.
-// Calling after a Close will return ErrWriteAfterClose.
-// As this method is called internally by writePax header to allow it to
-// suppress writing the pax header.
-func (tw *Writer) writeHeader(hdr *Header, allowPax bool) error {
-	if tw.closed {
-		return ErrWriteAfterClose
-	}
-	if tw.err == nil {
-		tw.Flush()
-	}
-	if tw.err != nil {
-		return tw.err
-	}
-
-	// a map to hold pax header records, if any are needed
-	paxHeaders := make(map[string]string)
-
-	// TODO(shanemhansen): we might want to use PAX headers for
-	// subsecond time resolution, but for now let's just capture
-	// too long fields or non ascii characters
-
-	var f formatter
-	var header []byte
-
-	// We need to select which scratch buffer to use carefully,
-	// since this method is called recursively to write PAX headers.
-	// If allowPax is true, this is the non-recursive call, and we will use hdrBuff.
-	// If allowPax is false, we are being called by writePAXHeader, and hdrBuff is
-	// already being used by the non-recursive call, so we must use paxHdrBuff.
-	header = tw.hdrBuff[:]
-	if !allowPax {
-		header = tw.paxHdrBuff[:]
-	}
-	copy(header, zeroBlock)
-	s := slicer(header)
-
-	// Wrappers around formatter that automatically sets paxHeaders if the
-	// argument extends beyond the capacity of the input byte slice.
-	var formatString = func(b []byte, s string, paxKeyword string) {
-		needsPaxHeader := paxKeyword != paxNone && len(s) > len(b) || !isASCII(s)
-		if needsPaxHeader {
-			paxHeaders[paxKeyword] = s
-			return
-		}
-		f.formatString(b, s)
-	}
-	var formatNumeric = func(b []byte, x int64, paxKeyword string) {
-		// Try octal first.
-		s := strconv.FormatInt(x, 8)
-		if len(s) < len(b) {
-			f.formatOctal(b, x)
-			return
-		}
-
-		// If it is too long for octal, and PAX is preferred, use a PAX header.
-		if paxKeyword != paxNone && tw.preferPax {
-			f.formatOctal(b, 0)
-			s := strconv.FormatInt(x, 10)
-			paxHeaders[paxKeyword] = s
-			return
-		}
-
-		tw.usedBinary = true
-		f.formatNumeric(b, x)
-	}
-
-	// keep a reference to the filename to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
-	pathHeaderBytes := s.next(fileNameSize)
-
-	formatString(pathHeaderBytes, hdr.Name, paxPath)
-
-	// Handle out of range ModTime carefully.
-	var modTime int64
-	if !hdr.ModTime.Before(minTime) && !hdr.ModTime.After(maxTime) {
-		modTime = hdr.ModTime.Unix()
-	}
-
-	f.formatOctal(s.next(8), hdr.Mode)               // 100:108
-	formatNumeric(s.next(8), int64(hdr.Uid), paxUid) // 108:116
-	formatNumeric(s.next(8), int64(hdr.Gid), paxGid) // 116:124
-	formatNumeric(s.next(12), hdr.Size, paxSize)     // 124:136
-	formatNumeric(s.next(12), modTime, paxNone)      // 136:148 --- consider using pax for finer granularity
-	s.next(8)                                        // chksum (148:156)
-	s.next(1)[0] = hdr.Typeflag                      // 156:157
-
-	formatString(s.next(100), hdr.Linkname, paxLinkpath)
-
-	copy(s.next(8), []byte("ustar\x0000"))          // 257:265
-	formatString(s.next(32), hdr.Uname, paxUname)   // 265:297
-	formatString(s.next(32), hdr.Gname, paxGname)   // 297:329
-	formatNumeric(s.next(8), hdr.Devmajor, paxNone) // 329:337
-	formatNumeric(s.next(8), hdr.Devminor, paxNone) // 337:345
-
-	// keep a reference to the prefix to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
-	prefixHeaderBytes := s.next(155)
-	formatString(prefixHeaderBytes, "", paxNone) // 345:500  prefix
-
-	// Use the GNU magic instead of POSIX magic if we used any GNU extensions.
-	if tw.usedBinary {
-		copy(header[257:265], []byte("ustar  \x00"))
-	}
-
-	_, paxPathUsed := paxHeaders[paxPath]
-	// try to use a ustar header when only the name is too long
-	if !tw.preferPax && len(paxHeaders) == 1 && paxPathUsed {
-		prefix, suffix, ok := splitUSTARPath(hdr.Name)
-		if ok {
-			// Since we can encode in USTAR format, disable PAX header.
-			delete(paxHeaders, paxPath)
-
-			// Update the path fields
-			formatString(pathHeaderBytes, suffix, paxNone)
-			formatString(prefixHeaderBytes, prefix, paxNone)
-		}
-	}
-
-	// The chksum field is terminated by a NUL and a space.
-	// This is different from the other octal fields.
-	chksum, _ := checksum(header)
-	f.formatOctal(header[148:155], chksum) // Never fails
-	header[155] = ' '
-
-	// Check if there were any formatting errors.
-	if f.err != nil {
-		tw.err = f.err
-		return tw.err
-	}
-
-	if allowPax {
-		for k, v := range hdr.Xattrs {
-			paxHeaders[paxXattr+k] = v
-		}
-	}
-
-	if len(paxHeaders) > 0 {
-		if !allowPax {
-			return errInvalidHeader
-		}
-		if err := tw.writePAXHeader(hdr, paxHeaders); err != nil {
-			return err
-		}
-	}
-	tw.nb = int64(hdr.Size)
-	tw.pad = (blockSize - (tw.nb % blockSize)) % blockSize
-
-	_, tw.err = tw.w.Write(header)
-	return tw.err
-}
-
-// splitUSTARPath splits a path according to USTAR prefix and suffix rules.
-// If the path is not splittable, then it will return ("", "", false).
-func splitUSTARPath(name string) (prefix, suffix string, ok bool) {
-	length := len(name)
-	if length <= fileNameSize || !isASCII(name) {
-		return "", "", false
-	} else if length > fileNamePrefixSize+1 {
-		length = fileNamePrefixSize + 1
-	} else if name[length-1] == '/' {
-		length--
-	}
-
-	i := strings.LastIndex(name[:length], "/")
-	nlen := len(name) - i - 1 // nlen is length of suffix
-	plen := i                 // plen is length of prefix
-	if i <= 0 || nlen > fileNameSize || nlen == 0 || plen > fileNamePrefixSize {
-		return "", "", false
-	}
-	return name[:i], name[i+1:], true
-}
-
-// writePaxHeader writes an extended pax header to the
-// archive.
-func (tw *Writer) writePAXHeader(hdr *Header, paxHeaders map[string]string) error {
-	// Prepare extended header
-	ext := new(Header)
-	ext.Typeflag = TypeXHeader
-	// Setting ModTime is required for reader parsing to
-	// succeed, and seems harmless enough.
-	ext.ModTime = hdr.ModTime
-	// The spec asks that we namespace our pseudo files
-	// with the current pid.  However, this results in differing outputs
-	// for identical inputs.  As such, the constant 0 is now used instead.
-	// golang.org/issue/12358
-	dir, file := path.Split(hdr.Name)
-	fullName := path.Join(dir, "PaxHeaders.0", file)
-
-	ascii := toASCII(fullName)
-	if len(ascii) > 100 {
-		ascii = ascii[:100]
-	}
-	ext.Name = ascii
-	// Construct the body
-	var buf bytes.Buffer
-
-	// Keys are sorted before writing to body to allow deterministic output.
-	var keys []string
-	for k := range paxHeaders {
-		keys = append(keys, k)
-	}
-	sort.Strings(keys)
-
-	for _, k := range keys {
-		fmt.Fprint(&buf, formatPAXRecord(k, paxHeaders[k]))
-	}
-
-	ext.Size = int64(len(buf.Bytes()))
-	if err := tw.writeHeader(ext, false); err != nil {
-		return err
-	}
-	if _, err := tw.Write(buf.Bytes()); err != nil {
-		return err
-	}
-	if err := tw.Flush(); err != nil {
-		return err
-	}
-	return nil
-}
-
-// formatPAXRecord formats a single PAX record, prefixing it with the
-// appropriate length.
-func formatPAXRecord(k, v string) string {
-	const padding = 3 // Extra padding for ' ', '=', and '\n'
-	size := len(k) + len(v) + padding
-	size += len(strconv.Itoa(size))
-	record := fmt.Sprintf("%d %s=%s\n", size, k, v)
-
-	// Final adjustment if adding size field increased the record size.
-	if len(record) != size {
-		size = len(record)
-		record = fmt.Sprintf("%d %s=%s\n", size, k, v)
-	}
-	return record
-}
-
-// Write writes to the current entry in the tar archive.
-// Write returns the error ErrWriteTooLong if more than
-// hdr.Size bytes are written after WriteHeader.
-func (tw *Writer) Write(b []byte) (n int, err error) {
-	if tw.closed {
-		err = ErrWriteAfterClose
-		return
-	}
-	overwrite := false
-	if int64(len(b)) > tw.nb {
-		b = b[0:tw.nb]
-		overwrite = true
-	}
-	n, err = tw.w.Write(b)
-	tw.nb -= int64(n)
-	if err == nil && overwrite {
-		err = ErrWriteTooLong
-		return
-	}
-	tw.err = err
-	return
-}
-
-// Close closes the tar archive, flushing any unwritten
-// data to the underlying writer.
-func (tw *Writer) Close() error {
-	if tw.err != nil || tw.closed {
-		return tw.err
-	}
-	tw.Flush()
-	tw.closed = true
-	if tw.err != nil {
-		return tw.err
-	}
-
-	// trailer: two zero blocks
-	for i := 0; i < 2; i++ {
-		_, tw.err = tw.w.Write(zeroBlock)
-		if tw.err != nil {
-			break
-		}
-	}
-	return tw.err
-}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go b/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
deleted file mode 100644
index d624450ab7..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
+++ /dev/null
@@ -1,130 +0,0 @@
-package asm
-
-import (
-	"bytes"
-	"fmt"
-	"hash"
-	"hash/crc64"
-	"io"
-	"sync"
-
-	"github.com/vbatts/tar-split/tar/storage"
-)
-
-// NewOutputTarStream returns an io.ReadCloser that is an assembled tar archive
-// stream.
-//
-// It takes a storage.FileGetter, for mapping the file payloads that are to be read in,
-// and a storage.Unpacker, which has access to the rawbytes and file order
-// metadata. With the combination of these two items, a precise assembled Tar
-// archive is possible.
-func NewOutputTarStream(fg storage.FileGetter, up storage.Unpacker) io.ReadCloser {
-	// ... Since these are interfaces, this is possible, so let's not have a nil pointer
-	if fg == nil || up == nil {
-		return nil
-	}
-	pr, pw := io.Pipe()
-	go func() {
-		err := WriteOutputTarStream(fg, up, pw)
-		if err != nil {
-			pw.CloseWithError(err)
-		} else {
-			pw.Close()
-		}
-	}()
-	return pr
-}
-
-// WriteOutputTarStream writes assembled tar archive to a writer.
-func WriteOutputTarStream(fg storage.FileGetter, up storage.Unpacker, w io.Writer) error {
-	// ... Since these are interfaces, this is possible, so let's not have a nil pointer
-	if fg == nil || up == nil {
-		return nil
-	}
-	var copyBuffer []byte
-	var crcHash hash.Hash
-	var crcSum []byte
-	var multiWriter io.Writer
-	for {
-		entry, err := up.Next()
-		if err != nil {
-			if err == io.EOF {
-				return nil
-			}
-			return err
-		}
-		switch entry.Type {
-		case storage.SegmentType:
-			if _, err := w.Write(entry.Payload); err != nil {
-				return err
-			}
-		case storage.FileType:
-			if entry.Size == 0 {
-				continue
-			}
-			fh, err := fg.Get(entry.GetName())
-			if err != nil {
-				return err
-			}
-			if crcHash == nil {
-				crcHash = crc64.New(storage.CRCTable)
-				crcSum = make([]byte, 8)
-				multiWriter = io.MultiWriter(w, crcHash)
-				copyBuffer = byteBufferPool.Get().([]byte)
-				defer byteBufferPool.Put(copyBuffer)
-			} else {
-				crcHash.Reset()
-			}
-
-			if _, err := copyWithBuffer(multiWriter, fh, copyBuffer); err != nil {
-				fh.Close()
-				return err
-			}
-
-			if !bytes.Equal(crcHash.Sum(crcSum[:0]), entry.Payload) {
-				// I would rather this be a comparable ErrInvalidChecksum or such,
-				// but since it's coming through the PipeReader, the context of
-				// _which_ file would be lost...
-				fh.Close()
-				return fmt.Errorf("file integrity checksum failed for %q", entry.GetName())
-			}
-			fh.Close()
-		}
-	}
-}
-
-var byteBufferPool = &sync.Pool{
-	New: func() interface{} {
-		return make([]byte, 32*1024)
-	},
-}
-
-// copyWithBuffer is taken from stdlib io.Copy implementation
-// https://github.com/golang/go/blob/go1.5.1/src/io/io.go#L367
-func copyWithBuffer(dst io.Writer, src io.Reader, buf []byte) (written int64, err error) {
-	for {
-		nr, er := src.Read(buf)
-		if nr > 0 {
-			nw, ew := dst.Write(buf[0:nr])
-			if nw > 0 {
-				written += int64(nw)
-			}
-			if ew != nil {
-				err = ew
-				break
-			}
-			if nr != nw {
-				err = io.ErrShortWrite
-				break
-			}
-		}
-		if er == io.EOF {
-			break
-		}
-		if er != nil {
-			err = er
-			break
-		}
-	}
-	return written, err
-}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go b/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
deleted file mode 100644
index 009b3f5d81..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
+++ /dev/null
@@ -1,154 +0,0 @@
-package asm
-
-import (
-	"io"
-
-	"github.com/vbatts/tar-split/archive/tar"
-	"github.com/vbatts/tar-split/tar/storage"
-)
-
-// NewInputTarStream wraps the Reader stream of a tar archive and provides a
-// Reader stream of the same.
-//
-// In the middle it will pack the segments and file metadata to storage.Packer
-// `p`.
-//
-// The the storage.FilePutter is where payload of files in the stream are
-// stashed. If this stashing is not needed, you can provide a nil
-// storage.FilePutter. Since the checksumming is still needed, then a default
-// of NewDiscardFilePutter will be used internally
-func NewInputTarStream(r io.Reader, p storage.Packer, fp storage.FilePutter) (io.Reader, error) {
-	// What to do here... folks will want their own access to the Reader that is
-	// their tar archive stream, but we'll need that same stream to use our
-	// forked 'archive/tar'.
-	// Perhaps do an io.TeeReader that hands back an io.Reader for them to read
-	// from, and we'll MITM the stream to store metadata.
-	// We'll need a storage.FilePutter too ...
-
-	// Another concern, whether to do any storage.FilePutter operations, such that we
-	// don't extract any amount of the archive. But then again, we're not making
-	// files/directories, hardlinks, etc. Just writing the io to the storage.FilePutter.
-	// Perhaps we have a DiscardFilePutter that is a bit bucket.
-
-	// we'll return the pipe reader, since TeeReader does not buffer and will
-	// only read what the outputRdr Read's. Since Tar archives have padding on
-	// the end, we want to be the one reading the padding, even if the user's
-	// `archive/tar` doesn't care.
-	pR, pW := io.Pipe()
-	outputRdr := io.TeeReader(r, pW)
-
-	// we need a putter that will generate the crc64 sums of file payloads
-	if fp == nil {
-		fp = storage.NewDiscardFilePutter()
-	}
-
-	go func() {
-		tr := tar.NewReader(outputRdr)
-		tr.RawAccounting = true
-		for {
-			hdr, err := tr.Next()
-			if err != nil {
-				if err != io.EOF {
-					pW.CloseWithError(err)
-					return
-				}
-				// even when an EOF is reached, there is often 1024 null bytes on
-				// the end of an archive. Collect them too.
-				if b := tr.RawBytes(); len(b) > 0 {
-					_, err := p.AddEntry(storage.Entry{
-						Type:    storage.SegmentType,
-						Payload: b,
-					})
-					if err != nil {
-						pW.CloseWithError(err)
-						return
-					}
-				}
-				break // not return. We need the end of the reader.
-			}
-			if hdr == nil {
-				break // not return. We need the end of the reader.
-			}
-
-			if b := tr.RawBytes(); len(b) > 0 {
-				_, err := p.AddEntry(storage.Entry{
-					Type:    storage.SegmentType,
-					Payload: b,
-				})
-				if err != nil {
-					pW.CloseWithError(err)
-					return
-				}
-			}
-
-			var csum []byte
-			if hdr.Size > 0 {
-				var err error
-				_, csum, err = fp.Put(hdr.Name, tr)
-				if err != nil {
-					pW.CloseWithError(err)
-					return
-				}
-			}
-
-			entry := storage.Entry{
-				Type:    storage.FileType,
-				Size:    hdr.Size,
-				Payload: csum,
-			}
-			// For proper marshalling of non-utf8 characters
-			entry.SetName(hdr.Name)
-
-			// File entries added, regardless of size
-			_, err = p.AddEntry(entry)
-			if err != nil {
-				pW.CloseWithError(err)
-				return
-			}
-
-			if b := tr.RawBytes(); len(b) > 0 {
-				_, err = p.AddEntry(storage.Entry{
-					Type:    storage.SegmentType,
-					Payload: b,
-				})
-				if err != nil {
-					pW.CloseWithError(err)
-					return
-				}
-			}
-		}
-
-		// It is allowable, and not uncommon that there is further padding on
-		// the end of an archive, apart from the expected 1024 null bytes. We
-		// do this in chunks rather than in one go to avoid cases where a
-		// maliciously crafted tar file tries to trick us into reading many GBs
-		// into memory.
-		const paddingChunkSize = 1024 * 1024
-		var paddingChunk [paddingChunkSize]byte
-		for {
-			var isEOF bool
-			n, err := outputRdr.Read(paddingChunk[:])
-			if err != nil {
-				if err != io.EOF {
-					pW.CloseWithError(err)
-					return
-				}
-				isEOF = true
-			}
-			_, err = p.AddEntry(storage.Entry{
-				Type:    storage.SegmentType,
-				Payload: paddingChunk[:n],
-			})
-			if err != nil {
-				pW.CloseWithError(err)
-				return
-			}
-			if isEOF {
-				break
-			}
-		}
-		pW.Close()
-	}()
-
-	return pR, nil
-}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/doc.go b/vendor/github.com/vbatts/tar-split/tar/asm/doc.go
deleted file mode 100644
index 4367b90220..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/asm/doc.go
+++ /dev/null
@@ -1,9 +0,0 @@
-/*
-Package asm provides the API for streaming assembly and disassembly of tar
-archives.
-
-Using the `github.com/vbatts/tar-split/tar/storage` for Packing/Unpacking the
-metadata for a stream, as well as an implementation of Getting/Putting the file
-entries' payload.
-*/
-package asm
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/doc.go b/vendor/github.com/vbatts/tar-split/tar/storage/doc.go
deleted file mode 100644
index 83f7089ff1..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/storage/doc.go
+++ /dev/null
@@ -1,12 +0,0 @@
-/*
-Package storage is for metadata of a tar archive.
-
-Packing and unpacking the Entries of the stream. The types of streams are
-either segments of raw bytes (for the raw headers and various padding) and for
-an entry marking a file payload.
-
-The raw bytes are stored precisely in the packed (marshalled) Entry, whereas
-the file payload marker include the name of the file, size, and crc64 checksum
-(for basic file integrity).
-*/
-package storage
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/entry.go b/vendor/github.com/vbatts/tar-split/tar/storage/entry.go
deleted file mode 100644
index c91e7ea1e8..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/storage/entry.go
+++ /dev/null
@@ -1,78 +0,0 @@
-package storage
-
-import "unicode/utf8"
-
-// Entries is for sorting by Position
-type Entries []Entry
-
-func (e Entries) Len() int           { return len(e) }
-func (e Entries) Swap(i, j int)      { e[i], e[j] = e[j], e[i] }
-func (e Entries) Less(i, j int) bool { return e[i].Position < e[j].Position }
-
-// Type of Entry
-type Type int
-
-const (
-	// FileType represents a file payload from the tar stream.
-	//
-	// This will be used to map to relative paths on disk. Only Size > 0 will get
-	// read into a resulting output stream (due to hardlinks).
-	FileType Type = 1 + iota
-	// SegmentType represents a raw bytes segment from the archive stream. These raw
-	// byte segments consist of the raw headers and various padding.
-	//
-	// Its payload is to be marshalled base64 encoded.
-	SegmentType
-)
-
-// Entry is the structure for packing and unpacking the information read from
-// the Tar archive.
-//
-// FileType Payload checksum is using `hash/crc64` for basic file integrity,
-// _not_ for cryptography.
-// From http://www.backplane.com/matt/crc64.html, CRC32 has almost 40,000
-// collisions in a sample of 18.2 million, CRC64 had none.
-type Entry struct {
-	Type     Type   `json:"type"`
-	Name     string `json:"name,omitempty"`
-	NameRaw  []byte `json:"name_raw,omitempty"`
-	Size     int64  `json:"size,omitempty"`
-	Payload  []byte `json:"payload"` // SegmentType stores payload here; FileType stores crc64 checksum here;
-	Position int    `json:"position"`
-}
-
-// SetName will check name for valid UTF-8 string, and set the appropriate
-// field. See https://github.com/vbatts/tar-split/issues/17
-func (e *Entry) SetName(name string) {
-	if utf8.ValidString(name) {
-		e.Name = name
-	} else {
-		e.NameRaw = []byte(name)
-	}
-}
-
-// SetNameBytes will check name for valid UTF-8 string, and set the appropriate
-// field
-func (e *Entry) SetNameBytes(name []byte) {
-	if utf8.Valid(name) {
-		e.Name = string(name)
-	} else {
-		e.NameRaw = name
-	}
-}
-
-// GetName returns the string for the entry's name, regardless of the field stored in
-func (e *Entry) GetName() string {
-	if len(e.NameRaw) > 0 {
-		return string(e.NameRaw)
-	}
-	return e.Name
-}
-
-// GetNameBytes returns the bytes for the entry's name, regardless of the field stored in
-func (e *Entry) GetNameBytes() []byte {
-	if len(e.NameRaw) > 0 {
-		return e.NameRaw
-	}
-	return []byte(e.Name)
-}
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/getter.go b/vendor/github.com/vbatts/tar-split/tar/storage/getter.go
deleted file mode 100644
index ae11f8ffd4..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/storage/getter.go
+++ /dev/null
@@ -1,104 +0,0 @@
-package storage
-
-import (
-	"bytes"
-	"errors"
-	"hash/crc64"
-	"io"
-	"os"
-	"path/filepath"
-)
-
-// FileGetter is the interface for getting a stream of a file payload,
-// addressed by name/filename. Presumably, the names will be scoped to relative
-// file paths.
-type FileGetter interface {
-	// Get returns a stream for the provided file path
-	Get(filename string) (output io.ReadCloser, err error)
-}
-
-// FilePutter is the interface for storing a stream of a file payload,
-// addressed by name/filename.
-type FilePutter interface {
-	// Put returns the size of the stream received, and the crc64 checksum for
-	// the provided stream
-	Put(filename string, input io.Reader) (size int64, checksum []byte, err error)
-}
-
-// FileGetPutter is the interface that groups both Getting and Putting file
-// payloads.
-type FileGetPutter interface {
-	FileGetter
-	FilePutter
-}
-
-// NewPathFileGetter returns a FileGetter that is for files relative to path
-// relpath.
-func NewPathFileGetter(relpath string) FileGetter {
-	return &pathFileGetter{root: relpath}
-}
-
-type pathFileGetter struct {
-	root string
-}
-
-func (pfg pathFileGetter) Get(filename string) (io.ReadCloser, error) {
-	return os.Open(filepath.Join(pfg.root, filename))
-}
-
-type bufferFileGetPutter struct {
-	files map[string][]byte
-}
-
-func (bfgp bufferFileGetPutter) Get(name string) (io.ReadCloser, error) {
-	if _, ok := bfgp.files[name]; !ok {
-		return nil, errors.New("no such file")
-	}
-	b := bytes.NewBuffer(bfgp.files[name])
-	return &readCloserWrapper{b}, nil
-}
-
-func (bfgp *bufferFileGetPutter) Put(name string, r io.Reader) (int64, []byte, error) {
-	crc := crc64.New(CRCTable)
-	buf := bytes.NewBuffer(nil)
-	cw := io.MultiWriter(crc, buf)
-	i, err := io.Copy(cw, r)
-	if err != nil {
-		return 0, nil, err
-	}
-	bfgp.files[name] = buf.Bytes()
-	return i, crc.Sum(nil), nil
-}
-
-type readCloserWrapper struct {
-	io.Reader
-}
-
-func (w *readCloserWrapper) Close() error { return nil }
-
-// NewBufferFileGetPutter is a simple in-memory FileGetPutter
-//
-// Implication is this is memory intensive...
-// Probably best for testing or light weight cases.
-func NewBufferFileGetPutter() FileGetPutter {
-	return &bufferFileGetPutter{
-		files: map[string][]byte{},
-	}
-}
-
-// NewDiscardFilePutter is a bit bucket FilePutter
-func NewDiscardFilePutter() FilePutter {
-	return &bitBucketFilePutter{}
-}
-
-type bitBucketFilePutter struct {
-}
-
-func (bbfp *bitBucketFilePutter) Put(name string, r io.Reader) (int64, []byte, error) {
-	c := crc64.New(CRCTable)
-	i, err := io.Copy(c, r)
-	return i, c.Sum(nil), err
-}
-
-// CRCTable is the default table used for crc64 sum calculations
-var CRCTable = crc64.MakeTable(crc64.ISO)
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/packer.go b/vendor/github.com/vbatts/tar-split/tar/storage/packer.go
deleted file mode 100644
index aba6948185..0000000000
--- a/vendor/github.com/vbatts/tar-split/tar/storage/packer.go
+++ /dev/null
@@ -1,127 +0,0 @@
-package storage
-
-import (
-	"encoding/json"
-	"errors"
-	"io"
-	"path/filepath"
-	"unicode/utf8"
-)
-
-// ErrDuplicatePath occurs when a tar archive has more than one entry for the
-// same file path
-var ErrDuplicatePath = errors.New("duplicates of file paths not supported")
-
-// Packer describes the methods to pack Entries to a storage destination
-type Packer interface {
-	// AddEntry packs the Entry and returns its position
-	AddEntry(e Entry) (int, error)
-}
-
-// Unpacker describes the methods to read Entries from a source
-type Unpacker interface {
-	// Next returns the next Entry being unpacked, or error, until io.EOF
-	Next() (*Entry, error)
-}
-
-/* TODO(vbatts) figure out a good model for this
-type PackUnpacker interface {
-	Packer
-	Unpacker
-}
-*/
-
-type jsonUnpacker struct {
-	seen seenNames
-	dec  *json.Decoder
-}
-
-func (jup *jsonUnpacker) Next() (*Entry, error) {
-	var e Entry
-	err := jup.dec.Decode(&e)
-	if err != nil {
-		return nil, err
-	}
-
-	// check for dup name
-	if e.Type == FileType {
-		cName := filepath.Clean(e.GetName())
-		if _, ok := jup.seen[cName]; ok {
-			return nil, ErrDuplicatePath
-		}
-		jup.seen[cName] = struct{}{}
-	}
-
-	return &e, err
-}
-
-// NewJSONUnpacker provides an Unpacker that reads Entries (SegmentType and
-// FileType) as a json document.
-//
-// Each Entry read are expected to be delimited by new line.
-func NewJSONUnpacker(r io.Reader) Unpacker {
-	return &jsonUnpacker{
-		dec:  json.NewDecoder(r),
-		seen: seenNames{},
-	}
-}
-
-type jsonPacker struct {
-	w    io.Writer
-	e    *json.Encoder
-	pos  int
-	seen seenNames
-}
-
-type seenNames map[string]struct{}
-
-func (jp *jsonPacker) AddEntry(e Entry) (int, error) {
-	// if Name is not valid utf8, switch it to raw first.
-	if e.Name != "" {
-		if !utf8.ValidString(e.Name) {
-			e.NameRaw = []byte(e.Name)
-			e.Name = ""
-		}
-	}
-
-	// check early for dup name
-	if e.Type == FileType {
-		cName := filepath.Clean(e.GetName())
-		if _, ok := jp.seen[cName]; ok {
-			return -1, ErrDuplicatePath
-		}
-		jp.seen[cName] = struct{}{}
-	}
-
-	e.Position = jp.pos
-	err := jp.e.Encode(e)
-	if err != nil {
-		return -1, err
-	}
-
-	// made it this far, increment now
-	jp.pos++
-	return e.Position, nil
-}
-
-// NewJSONPacker provides a Packer that writes each Entry (SegmentType and
-// FileType) as a json document.
-//
-// The Entries are delimited by new line.
-func NewJSONPacker(w io.Writer) Packer {
-	return &jsonPacker{
-		w:    w,
-		e:    json.NewEncoder(w),
-		seen: seenNames{},
-	}
-}
-
-/*
-TODO(vbatts) perhaps have a more compact packer/unpacker, maybe using msgapck
-(https://github.com/ugorji/go)
-
-
-Even though, since our jsonUnpacker and jsonPacker just take
-io.Reader/io.Writer, then we can get away with passing them a
-gzip.Reader/gzip.Writer
-*/
diff --git a/vendor/golang.org/x/crypto/cast5/cast5.go b/vendor/golang.org/x/crypto/cast5/cast5.go
deleted file mode 100644
index 0b4af37bdc..0000000000
--- a/vendor/golang.org/x/crypto/cast5/cast5.go
+++ /dev/null
@@ -1,526 +0,0 @@
-// Copyright 2010 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package cast5 implements CAST5, as defined in RFC 2144. CAST5 is a common
-// OpenPGP cipher.
-package cast5 // import "golang.org/x/crypto/cast5"
-
-import "errors"
-
-const BlockSize = 8
-const KeySize = 16
-
-type Cipher struct {
-	masking [16]uint32
-	rotate  [16]uint8
-}
-
-func NewCipher(key []byte) (c *Cipher, err error) {
-	if len(key) != KeySize {
-		return nil, errors.New("CAST5: keys must be 16 bytes")
-	}
-
-	c = new(Cipher)
-	c.keySchedule(key)
-	return
-}
-
-func (c *Cipher) BlockSize() int {
-	return BlockSize
-}
-
-func (c *Cipher) Encrypt(dst, src []byte) {
-	l := uint32(src[0])<<24 | uint32(src[1])<<16 | uint32(src[2])<<8 | uint32(src[3])
-	r := uint32(src[4])<<24 | uint32(src[5])<<16 | uint32(src[6])<<8 | uint32(src[7])
-
-	l, r = r, l^f1(r, c.masking[0], c.rotate[0])
-	l, r = r, l^f2(r, c.masking[1], c.rotate[1])
-	l, r = r, l^f3(r, c.masking[2], c.rotate[2])
-	l, r = r, l^f1(r, c.masking[3], c.rotate[3])
-
-	l, r = r, l^f2(r, c.masking[4], c.rotate[4])
-	l, r = r, l^f3(r, c.masking[5], c.rotate[5])
-	l, r = r, l^f1(r, c.masking[6], c.rotate[6])
-	l, r = r, l^f2(r, c.masking[7], c.rotate[7])
-
-	l, r = r, l^f3(r, c.masking[8], c.rotate[8])
-	l, r = r, l^f1(r, c.masking[9], c.rotate[9])
-	l, r = r, l^f2(r, c.masking[10], c.rotate[10])
-	l, r = r, l^f3(r, c.masking[11], c.rotate[11])
-
-	l, r = r, l^f1(r, c.masking[12], c.rotate[12])
-	l, r = r, l^f2(r, c.masking[13], c.rotate[13])
-	l, r = r, l^f3(r, c.masking[14], c.rotate[14])
-	l, r = r, l^f1(r, c.masking[15], c.rotate[15])
-
-	dst[0] = uint8(r >> 24)
-	dst[1] = uint8(r >> 16)
-	dst[2] = uint8(r >> 8)
-	dst[3] = uint8(r)
-	dst[4] = uint8(l >> 24)
-	dst[5] = uint8(l >> 16)
-	dst[6] = uint8(l >> 8)
-	dst[7] = uint8(l)
-}
-
-func (c *Cipher) Decrypt(dst, src []byte) {
-	l := uint32(src[0])<<24 | uint32(src[1])<<16 | uint32(src[2])<<8 | uint32(src[3])
-	r := uint32(src[4])<<24 | uint32(src[5])<<16 | uint32(src[6])<<8 | uint32(src[7])
-
-	l, r = r, l^f1(r, c.masking[15], c.rotate[15])
-	l, r = r, l^f3(r, c.masking[14], c.rotate[14])
-	l, r = r, l^f2(r, c.masking[13], c.rotate[13])
-	l, r = r, l^f1(r, c.masking[12], c.rotate[12])
-
-	l, r = r, l^f3(r, c.masking[11], c.rotate[11])
-	l, r = r, l^f2(r, c.masking[10], c.rotate[10])
-	l, r = r, l^f1(r, c.masking[9], c.rotate[9])
-	l, r = r, l^f3(r, c.masking[8], c.rotate[8])
-
-	l, r = r, l^f2(r, c.masking[7], c.rotate[7])
-	l, r = r, l^f1(r, c.masking[6], c.rotate[6])
-	l, r = r, l^f3(r, c.masking[5], c.rotate[5])
-	l, r = r, l^f2(r, c.masking[4], c.rotate[4])
-
-	l, r = r, l^f1(r, c.masking[3], c.rotate[3])
-	l, r = r, l^f3(r, c.masking[2], c.rotate[2])
-	l, r = r, l^f2(r, c.masking[1], c.rotate[1])
-	l, r = r, l^f1(r, c.masking[0], c.rotate[0])
-
-	dst[0] = uint8(r >> 24)
-	dst[1] = uint8(r >> 16)
-	dst[2] = uint8(r >> 8)
-	dst[3] = uint8(r)
-	dst[4] = uint8(l >> 24)
-	dst[5] = uint8(l >> 16)
-	dst[6] = uint8(l >> 8)
-	dst[7] = uint8(l)
-}
-
-type keyScheduleA [4][7]uint8
-type keyScheduleB [4][5]uint8
-
-// keyScheduleRound contains the magic values for a round of the key schedule.
-// The keyScheduleA deals with the lines like:
-//   z0z1z2z3 = x0x1x2x3 ^ S5[xD] ^ S6[xF] ^ S7[xC] ^ S8[xE] ^ S7[x8]
-// Conceptually, both x and z are in the same array, x first. The first
-// element describes which word of this array gets written to and the
-// second, which word gets read. So, for the line above, it's "4, 0", because
-// it's writing to the first word of z, which, being after x, is word 4, and
-// reading from the first word of x: word 0.
-//
-// Next are the indexes into the S-boxes. Now the array is treated as bytes. So
-// "xD" is 0xd. The first byte of z is written as "16 + 0", just to be clear
-// that it's z that we're indexing.
-//
-// keyScheduleB deals with lines like:
-//   K1 = S5[z8] ^ S6[z9] ^ S7[z7] ^ S8[z6] ^ S5[z2]
-// "K1" is ignored because key words are always written in order. So the five
-// elements are the S-box indexes. They use the same form as in keyScheduleA,
-// above.
-
-type keyScheduleRound struct{}
-type keySchedule []keyScheduleRound
-
-var schedule = []struct {
-	a keyScheduleA
-	b keyScheduleB
-}{
-	{
-		keyScheduleA{
-			{4, 0, 0xd, 0xf, 0xc, 0xe, 0x8},
-			{5, 2, 16 + 0, 16 + 2, 16 + 1, 16 + 3, 0xa},
-			{6, 3, 16 + 7, 16 + 6, 16 + 5, 16 + 4, 9},
-			{7, 1, 16 + 0xa, 16 + 9, 16 + 0xb, 16 + 8, 0xb},
-		},
-		keyScheduleB{
-			{16 + 8, 16 + 9, 16 + 7, 16 + 6, 16 + 2},
-			{16 + 0xa, 16 + 0xb, 16 + 5, 16 + 4, 16 + 6},
-			{16 + 0xc, 16 + 0xd, 16 + 3, 16 + 2, 16 + 9},
-			{16 + 0xe, 16 + 0xf, 16 + 1, 16 + 0, 16 + 0xc},
-		},
-	},
-	{
-		keyScheduleA{
-			{0, 6, 16 + 5, 16 + 7, 16 + 4, 16 + 6, 16 + 0},
-			{1, 4, 0, 2, 1, 3, 16 + 2},
-			{2, 5, 7, 6, 5, 4, 16 + 1},
-			{3, 7, 0xa, 9, 0xb, 8, 16 + 3},
-		},
-		keyScheduleB{
-			{3, 2, 0xc, 0xd, 8},
-			{1, 0, 0xe, 0xf, 0xd},
-			{7, 6, 8, 9, 3},
-			{5, 4, 0xa, 0xb, 7},
-		},
-	},
-	{
-		keyScheduleA{
-			{4, 0, 0xd, 0xf, 0xc, 0xe, 8},
-			{5, 2, 16 + 0, 16 + 2, 16 + 1, 16 + 3, 0xa},
-			{6, 3, 16 + 7, 16 + 6, 16 + 5, 16 + 4, 9},
-			{7, 1, 16 + 0xa, 16 + 9, 16 + 0xb, 16 + 8, 0xb},
-		},
-		keyScheduleB{
-			{16 + 3, 16 + 2, 16 + 0xc, 16 + 0xd, 16 + 9},
-			{16 + 1, 16 + 0, 16 + 0xe, 16 + 0xf, 16 + 0xc},
-			{16 + 7, 16 + 6, 16 + 8, 16 + 9, 16 + 2},
-			{16 + 5, 16 + 4, 16 + 0xa, 16 + 0xb, 16 + 6},
-		},
-	},
-	{
-		keyScheduleA{
-			{0, 6, 16 + 5, 16 + 7, 16 + 4, 16 + 6, 16 + 0},
-			{1, 4, 0, 2, 1, 3, 16 + 2},
-			{2, 5, 7, 6, 5, 4, 16 + 1},
-			{3, 7, 0xa, 9, 0xb, 8, 16 + 3},
-		},
-		keyScheduleB{
-			{8, 9, 7, 6, 3},
-			{0xa, 0xb, 5, 4, 7},
-			{0xc, 0xd, 3, 2, 8},
-			{0xe, 0xf, 1, 0, 0xd},
-		},
-	},
-}
-
-func (c *Cipher) keySchedule(in []byte) {
-	var t [8]uint32
-	var k [32]uint32
-
-	for i := 0; i < 4; i++ {
-		j := i * 4
-		t[i] = uint32(in[j])<<24 | uint32(in[j+1])<<16 | uint32(in[j+2])<<8 | uint32(in[j+3])
-	}
-
-	x := []byte{6, 7, 4, 5}
-	ki := 0
-
-	for half := 0; half < 2; half++ {
-		for _, round := range schedule {
-			for j := 0; j < 4; j++ {
-				var a [7]uint8
-				copy(a[:], round.a[j][:])
-				w := t[a[1]]
-				w ^= sBox[4][(t[a[2]>>2]>>(24-8*(a[2]&3)))&0xff]
-				w ^= sBox[5][(t[a[3]>>2]>>(24-8*(a[3]&3)))&0xff]
-				w ^= sBox[6][(t[a[4]>>2]>>(24-8*(a[4]&3)))&0xff]
-				w ^= sBox[7][(t[a[5]>>2]>>(24-8*(a[5]&3)))&0xff]
-				w ^= sBox[x[j]][(t[a[6]>>2]>>(24-8*(a[6]&3)))&0xff]
-				t[a[0]] = w
-			}
-
-			for j := 0; j < 4; j++ {
-				var b [5]uint8
-				copy(b[:], round.b[j][:])
-				w := sBox[4][(t[b[0]>>2]>>(24-8*(b[0]&3)))&0xff]
-				w ^= sBox[5][(t[b[1]>>2]>>(24-8*(b[1]&3)))&0xff]
-				w ^= sBox[6][(t[b[2]>>2]>>(24-8*(b[2]&3)))&0xff]
-				w ^= sBox[7][(t[b[3]>>2]>>(24-8*(b[3]&3)))&0xff]
-				w ^= sBox[4+j][(t[b[4]>>2]>>(24-8*(b[4]&3)))&0xff]
-				k[ki] = w
-				ki++
-			}
-		}
-	}
-
-	for i := 0; i < 16; i++ {
-		c.masking[i] = k[i]
-		c.rotate[i] = uint8(k[16+i] & 0x1f)
-	}
-}
-
-// These are the three 'f' functions. See RFC 2144, section 2.2.
-func f1(d, m uint32, r uint8) uint32 {
-	t := m + d
-	I := (t << r) | (t >> (32 - r))
-	return ((sBox[0][I>>24] ^ sBox[1][(I>>16)&0xff]) - sBox[2][(I>>8)&0xff]) + sBox[3][I&0xff]
-}
-
-func f2(d, m uint32, r uint8) uint32 {
-	t := m ^ d
-	I := (t << r) | (t >> (32 - r))
-	return ((sBox[0][I>>24] - sBox[1][(I>>16)&0xff]) + sBox[2][(I>>8)&0xff]) ^ sBox[3][I&0xff]
-}
-
-func f3(d, m uint32, r uint8) uint32 {
-	t := m - d
-	I := (t << r) | (t >> (32 - r))
-	return ((sBox[0][I>>24] + sBox[1][(I>>16)&0xff]) ^ sBox[2][(I>>8)&0xff]) - sBox[3][I&0xff]
-}
-
-var sBox = [8][256]uint32{
-	{
-		0x30fb40d4, 0x9fa0ff0b, 0x6beccd2f, 0x3f258c7a, 0x1e213f2f, 0x9c004dd3, 0x6003e540, 0xcf9fc949,
-		0xbfd4af27, 0x88bbbdb5, 0xe2034090, 0x98d09675, 0x6e63a0e0, 0x15c361d2, 0xc2e7661d, 0x22d4ff8e,
-		0x28683b6f, 0xc07fd059, 0xff2379c8, 0x775f50e2, 0x43c340d3, 0xdf2f8656, 0x887ca41a, 0xa2d2bd2d,
-		0xa1c9e0d6, 0x346c4819, 0x61b76d87, 0x22540f2f, 0x2abe32e1, 0xaa54166b, 0x22568e3a, 0xa2d341d0,
-		0x66db40c8, 0xa784392f, 0x004dff2f, 0x2db9d2de, 0x97943fac, 0x4a97c1d8, 0x527644b7, 0xb5f437a7,
-		0xb82cbaef, 0xd751d159, 0x6ff7f0ed, 0x5a097a1f, 0x827b68d0, 0x90ecf52e, 0x22b0c054, 0xbc8e5935,
-		0x4b6d2f7f, 0x50bb64a2, 0xd2664910, 0xbee5812d, 0xb7332290, 0xe93b159f, 0xb48ee411, 0x4bff345d,
-		0xfd45c240, 0xad31973f, 0xc4f6d02e, 0x55fc8165, 0xd5b1caad, 0xa1ac2dae, 0xa2d4b76d, 0xc19b0c50,
-		0x882240f2, 0x0c6e4f38, 0xa4e4bfd7, 0x4f5ba272, 0x564c1d2f, 0xc59c5319, 0xb949e354, 0xb04669fe,
-		0xb1b6ab8a, 0xc71358dd, 0x6385c545, 0x110f935d, 0x57538ad5, 0x6a390493, 0xe63d37e0, 0x2a54f6b3,
-		0x3a787d5f, 0x6276a0b5, 0x19a6fcdf, 0x7a42206a, 0x29f9d4d5, 0xf61b1891, 0xbb72275e, 0xaa508167,
-		0x38901091, 0xc6b505eb, 0x84c7cb8c, 0x2ad75a0f, 0x874a1427, 0xa2d1936b, 0x2ad286af, 0xaa56d291,
-		0xd7894360, 0x425c750d, 0x93b39e26, 0x187184c9, 0x6c00b32d, 0x73e2bb14, 0xa0bebc3c, 0x54623779,
-		0x64459eab, 0x3f328b82, 0x7718cf82, 0x59a2cea6, 0x04ee002e, 0x89fe78e6, 0x3fab0950, 0x325ff6c2,
-		0x81383f05, 0x6963c5c8, 0x76cb5ad6, 0xd49974c9, 0xca180dcf, 0x380782d5, 0xc7fa5cf6, 0x8ac31511,
-		0x35e79e13, 0x47da91d0, 0xf40f9086, 0xa7e2419e, 0x31366241, 0x051ef495, 0xaa573b04, 0x4a805d8d,
-		0x548300d0, 0x00322a3c, 0xbf64cddf, 0xba57a68e, 0x75c6372b, 0x50afd341, 0xa7c13275, 0x915a0bf5,
-		0x6b54bfab, 0x2b0b1426, 0xab4cc9d7, 0x449ccd82, 0xf7fbf265, 0xab85c5f3, 0x1b55db94, 0xaad4e324,
-		0xcfa4bd3f, 0x2deaa3e2, 0x9e204d02, 0xc8bd25ac, 0xeadf55b3, 0xd5bd9e98, 0xe31231b2, 0x2ad5ad6c,
-		0x954329de, 0xadbe4528, 0xd8710f69, 0xaa51c90f, 0xaa786bf6, 0x22513f1e, 0xaa51a79b, 0x2ad344cc,
-		0x7b5a41f0, 0xd37cfbad, 0x1b069505, 0x41ece491, 0xb4c332e6, 0x032268d4, 0xc9600acc, 0xce387e6d,
-		0xbf6bb16c, 0x6a70fb78, 0x0d03d9c9, 0xd4df39de, 0xe01063da, 0x4736f464, 0x5ad328d8, 0xb347cc96,
-		0x75bb0fc3, 0x98511bfb, 0x4ffbcc35, 0xb58bcf6a, 0xe11f0abc, 0xbfc5fe4a, 0xa70aec10, 0xac39570a,
-		0x3f04442f, 0x6188b153, 0xe0397a2e, 0x5727cb79, 0x9ceb418f, 0x1cacd68d, 0x2ad37c96, 0x0175cb9d,
-		0xc69dff09, 0xc75b65f0, 0xd9db40d8, 0xec0e7779, 0x4744ead4, 0xb11c3274, 0xdd24cb9e, 0x7e1c54bd,
-		0xf01144f9, 0xd2240eb1, 0x9675b3fd, 0xa3ac3755, 0xd47c27af, 0x51c85f4d, 0x56907596, 0xa5bb15e6,
-		0x580304f0, 0xca042cf1, 0x011a37ea, 0x8dbfaadb, 0x35ba3e4a, 0x3526ffa0, 0xc37b4d09, 0xbc306ed9,
-		0x98a52666, 0x5648f725, 0xff5e569d, 0x0ced63d0, 0x7c63b2cf, 0x700b45e1, 0xd5ea50f1, 0x85a92872,
-		0xaf1fbda7, 0xd4234870, 0xa7870bf3, 0x2d3b4d79, 0x42e04198, 0x0cd0ede7, 0x26470db8, 0xf881814c,
-		0x474d6ad7, 0x7c0c5e5c, 0xd1231959, 0x381b7298, 0xf5d2f4db, 0xab838653, 0x6e2f1e23, 0x83719c9e,
-		0xbd91e046, 0x9a56456e, 0xdc39200c, 0x20c8c571, 0x962bda1c, 0xe1e696ff, 0xb141ab08, 0x7cca89b9,
-		0x1a69e783, 0x02cc4843, 0xa2f7c579, 0x429ef47d, 0x427b169c, 0x5ac9f049, 0xdd8f0f00, 0x5c8165bf,
-	},
-	{
-		0x1f201094, 0xef0ba75b, 0x69e3cf7e, 0x393f4380, 0xfe61cf7a, 0xeec5207a, 0x55889c94, 0x72fc0651,
-		0xada7ef79, 0x4e1d7235, 0xd55a63ce, 0xde0436ba, 0x99c430ef, 0x5f0c0794, 0x18dcdb7d, 0xa1d6eff3,
-		0xa0b52f7b, 0x59e83605, 0xee15b094, 0xe9ffd909, 0xdc440086, 0xef944459, 0xba83ccb3, 0xe0c3cdfb,
-		0xd1da4181, 0x3b092ab1, 0xf997f1c1, 0xa5e6cf7b, 0x01420ddb, 0xe4e7ef5b, 0x25a1ff41, 0xe180f806,
-		0x1fc41080, 0x179bee7a, 0xd37ac6a9, 0xfe5830a4, 0x98de8b7f, 0x77e83f4e, 0x79929269, 0x24fa9f7b,
-		0xe113c85b, 0xacc40083, 0xd7503525, 0xf7ea615f, 0x62143154, 0x0d554b63, 0x5d681121, 0xc866c359,
-		0x3d63cf73, 0xcee234c0, 0xd4d87e87, 0x5c672b21, 0x071f6181, 0x39f7627f, 0x361e3084, 0xe4eb573b,
-		0x602f64a4, 0xd63acd9c, 0x1bbc4635, 0x9e81032d, 0x2701f50c, 0x99847ab4, 0xa0e3df79, 0xba6cf38c,
-		0x10843094, 0x2537a95e, 0xf46f6ffe, 0xa1ff3b1f, 0x208cfb6a, 0x8f458c74, 0xd9e0a227, 0x4ec73a34,
-		0xfc884f69, 0x3e4de8df, 0xef0e0088, 0x3559648d, 0x8a45388c, 0x1d804366, 0x721d9bfd, 0xa58684bb,
-		0xe8256333, 0x844e8212, 0x128d8098, 0xfed33fb4, 0xce280ae1, 0x27e19ba5, 0xd5a6c252, 0xe49754bd,
-		0xc5d655dd, 0xeb667064, 0x77840b4d, 0xa1b6a801, 0x84db26a9, 0xe0b56714, 0x21f043b7, 0xe5d05860,
-		0x54f03084, 0x066ff472, 0xa31aa153, 0xdadc4755, 0xb5625dbf, 0x68561be6, 0x83ca6b94, 0x2d6ed23b,
-		0xeccf01db, 0xa6d3d0ba, 0xb6803d5c, 0xaf77a709, 0x33b4a34c, 0x397bc8d6, 0x5ee22b95, 0x5f0e5304,
-		0x81ed6f61, 0x20e74364, 0xb45e1378, 0xde18639b, 0x881ca122, 0xb96726d1, 0x8049a7e8, 0x22b7da7b,
-		0x5e552d25, 0x5272d237, 0x79d2951c, 0xc60d894c, 0x488cb402, 0x1ba4fe5b, 0xa4b09f6b, 0x1ca815cf,
-		0xa20c3005, 0x8871df63, 0xb9de2fcb, 0x0cc6c9e9, 0x0beeff53, 0xe3214517, 0xb4542835, 0x9f63293c,
-		0xee41e729, 0x6e1d2d7c, 0x50045286, 0x1e6685f3, 0xf33401c6, 0x30a22c95, 0x31a70850, 0x60930f13,
-		0x73f98417, 0xa1269859, 0xec645c44, 0x52c877a9, 0xcdff33a6, 0xa02b1741, 0x7cbad9a2, 0x2180036f,
-		0x50d99c08, 0xcb3f4861, 0xc26bd765, 0x64a3f6ab, 0x80342676, 0x25a75e7b, 0xe4e6d1fc, 0x20c710e6,
-		0xcdf0b680, 0x17844d3b, 0x31eef84d, 0x7e0824e4, 0x2ccb49eb, 0x846a3bae, 0x8ff77888, 0xee5d60f6,
-		0x7af75673, 0x2fdd5cdb, 0xa11631c1, 0x30f66f43, 0xb3faec54, 0x157fd7fa, 0xef8579cc, 0xd152de58,
-		0xdb2ffd5e, 0x8f32ce19, 0x306af97a, 0x02f03ef8, 0x99319ad5, 0xc242fa0f, 0xa7e3ebb0, 0xc68e4906,
-		0xb8da230c, 0x80823028, 0xdcdef3c8, 0xd35fb171, 0x088a1bc8, 0xbec0c560, 0x61a3c9e8, 0xbca8f54d,
-		0xc72feffa, 0x22822e99, 0x82c570b4, 0xd8d94e89, 0x8b1c34bc, 0x301e16e6, 0x273be979, 0xb0ffeaa6,
-		0x61d9b8c6, 0x00b24869, 0xb7ffce3f, 0x08dc283b, 0x43daf65a, 0xf7e19798, 0x7619b72f, 0x8f1c9ba4,
-		0xdc8637a0, 0x16a7d3b1, 0x9fc393b7, 0xa7136eeb, 0xc6bcc63e, 0x1a513742, 0xef6828bc, 0x520365d6,
-		0x2d6a77ab, 0x3527ed4b, 0x821fd216, 0x095c6e2e, 0xdb92f2fb, 0x5eea29cb, 0x145892f5, 0x91584f7f,
-		0x5483697b, 0x2667a8cc, 0x85196048, 0x8c4bacea, 0x833860d4, 0x0d23e0f9, 0x6c387e8a, 0x0ae6d249,
-		0xb284600c, 0xd835731d, 0xdcb1c647, 0xac4c56ea, 0x3ebd81b3, 0x230eabb0, 0x6438bc87, 0xf0b5b1fa,
-		0x8f5ea2b3, 0xfc184642, 0x0a036b7a, 0x4fb089bd, 0x649da589, 0xa345415e, 0x5c038323, 0x3e5d3bb9,
-		0x43d79572, 0x7e6dd07c, 0x06dfdf1e, 0x6c6cc4ef, 0x7160a539, 0x73bfbe70, 0x83877605, 0x4523ecf1,
-	},
-	{
-		0x8defc240, 0x25fa5d9f, 0xeb903dbf, 0xe810c907, 0x47607fff, 0x369fe44b, 0x8c1fc644, 0xaececa90,
-		0xbeb1f9bf, 0xeefbcaea, 0xe8cf1950, 0x51df07ae, 0x920e8806, 0xf0ad0548, 0xe13c8d83, 0x927010d5,
-		0x11107d9f, 0x07647db9, 0xb2e3e4d4, 0x3d4f285e, 0xb9afa820, 0xfade82e0, 0xa067268b, 0x8272792e,
-		0x553fb2c0, 0x489ae22b, 0xd4ef9794, 0x125e3fbc, 0x21fffcee, 0x825b1bfd, 0x9255c5ed, 0x1257a240,
-		0x4e1a8302, 0xbae07fff, 0x528246e7, 0x8e57140e, 0x3373f7bf, 0x8c9f8188, 0xa6fc4ee8, 0xc982b5a5,
-		0xa8c01db7, 0x579fc264, 0x67094f31, 0xf2bd3f5f, 0x40fff7c1, 0x1fb78dfc, 0x8e6bd2c1, 0x437be59b,
-		0x99b03dbf, 0xb5dbc64b, 0x638dc0e6, 0x55819d99, 0xa197c81c, 0x4a012d6e, 0xc5884a28, 0xccc36f71,
-		0xb843c213, 0x6c0743f1, 0x8309893c, 0x0feddd5f, 0x2f7fe850, 0xd7c07f7e, 0x02507fbf, 0x5afb9a04,
-		0xa747d2d0, 0x1651192e, 0xaf70bf3e, 0x58c31380, 0x5f98302e, 0x727cc3c4, 0x0a0fb402, 0x0f7fef82,
-		0x8c96fdad, 0x5d2c2aae, 0x8ee99a49, 0x50da88b8, 0x8427f4a0, 0x1eac5790, 0x796fb449, 0x8252dc15,
-		0xefbd7d9b, 0xa672597d, 0xada840d8, 0x45f54504, 0xfa5d7403, 0xe83ec305, 0x4f91751a, 0x925669c2,
-		0x23efe941, 0xa903f12e, 0x60270df2, 0x0276e4b6, 0x94fd6574, 0x927985b2, 0x8276dbcb, 0x02778176,
-		0xf8af918d, 0x4e48f79e, 0x8f616ddf, 0xe29d840e, 0x842f7d83, 0x340ce5c8, 0x96bbb682, 0x93b4b148,
-		0xef303cab, 0x984faf28, 0x779faf9b, 0x92dc560d, 0x224d1e20, 0x8437aa88, 0x7d29dc96, 0x2756d3dc,
-		0x8b907cee, 0xb51fd240, 0xe7c07ce3, 0xe566b4a1, 0xc3e9615e, 0x3cf8209d, 0x6094d1e3, 0xcd9ca341,
-		0x5c76460e, 0x00ea983b, 0xd4d67881, 0xfd47572c, 0xf76cedd9, 0xbda8229c, 0x127dadaa, 0x438a074e,
-		0x1f97c090, 0x081bdb8a, 0x93a07ebe, 0xb938ca15, 0x97b03cff, 0x3dc2c0f8, 0x8d1ab2ec, 0x64380e51,
-		0x68cc7bfb, 0xd90f2788, 0x12490181, 0x5de5ffd4, 0xdd7ef86a, 0x76a2e214, 0xb9a40368, 0x925d958f,
-		0x4b39fffa, 0xba39aee9, 0xa4ffd30b, 0xfaf7933b, 0x6d498623, 0x193cbcfa, 0x27627545, 0x825cf47a,
-		0x61bd8ba0, 0xd11e42d1, 0xcead04f4, 0x127ea392, 0x10428db7, 0x8272a972, 0x9270c4a8, 0x127de50b,
-		0x285ba1c8, 0x3c62f44f, 0x35c0eaa5, 0xe805d231, 0x428929fb, 0xb4fcdf82, 0x4fb66a53, 0x0e7dc15b,
-		0x1f081fab, 0x108618ae, 0xfcfd086d, 0xf9ff2889, 0x694bcc11, 0x236a5cae, 0x12deca4d, 0x2c3f8cc5,
-		0xd2d02dfe, 0xf8ef5896, 0xe4cf52da, 0x95155b67, 0x494a488c, 0xb9b6a80c, 0x5c8f82bc, 0x89d36b45,
-		0x3a609437, 0xec00c9a9, 0x44715253, 0x0a874b49, 0xd773bc40, 0x7c34671c, 0x02717ef6, 0x4feb5536,
-		0xa2d02fff, 0xd2bf60c4, 0xd43f03c0, 0x50b4ef6d, 0x07478cd1, 0x006e1888, 0xa2e53f55, 0xb9e6d4bc,
-		0xa2048016, 0x97573833, 0xd7207d67, 0xde0f8f3d, 0x72f87b33, 0xabcc4f33, 0x7688c55d, 0x7b00a6b0,
-		0x947b0001, 0x570075d2, 0xf9bb88f8, 0x8942019e, 0x4264a5ff, 0x856302e0, 0x72dbd92b, 0xee971b69,
-		0x6ea22fde, 0x5f08ae2b, 0xaf7a616d, 0xe5c98767, 0xcf1febd2, 0x61efc8c2, 0xf1ac2571, 0xcc8239c2,
-		0x67214cb8, 0xb1e583d1, 0xb7dc3e62, 0x7f10bdce, 0xf90a5c38, 0x0ff0443d, 0x606e6dc6, 0x60543a49,
-		0x5727c148, 0x2be98a1d, 0x8ab41738, 0x20e1be24, 0xaf96da0f, 0x68458425, 0x99833be5, 0x600d457d,
-		0x282f9350, 0x8334b362, 0xd91d1120, 0x2b6d8da0, 0x642b1e31, 0x9c305a00, 0x52bce688, 0x1b03588a,
-		0xf7baefd5, 0x4142ed9c, 0xa4315c11, 0x83323ec5, 0xdfef4636, 0xa133c501, 0xe9d3531c, 0xee353783,
-	},
-	{
-		0x9db30420, 0x1fb6e9de, 0xa7be7bef, 0xd273a298, 0x4a4f7bdb, 0x64ad8c57, 0x85510443, 0xfa020ed1,
-		0x7e287aff, 0xe60fb663, 0x095f35a1, 0x79ebf120, 0xfd059d43, 0x6497b7b1, 0xf3641f63, 0x241e4adf,
-		0x28147f5f, 0x4fa2b8cd, 0xc9430040, 0x0cc32220, 0xfdd30b30, 0xc0a5374f, 0x1d2d00d9, 0x24147b15,
-		0xee4d111a, 0x0fca5167, 0x71ff904c, 0x2d195ffe, 0x1a05645f, 0x0c13fefe, 0x081b08ca, 0x05170121,
-		0x80530100, 0xe83e5efe, 0xac9af4f8, 0x7fe72701, 0xd2b8ee5f, 0x06df4261, 0xbb9e9b8a, 0x7293ea25,
-		0xce84ffdf, 0xf5718801, 0x3dd64b04, 0xa26f263b, 0x7ed48400, 0x547eebe6, 0x446d4ca0, 0x6cf3d6f5,
-		0x2649abdf, 0xaea0c7f5, 0x36338cc1, 0x503f7e93, 0xd3772061, 0x11b638e1, 0x72500e03, 0xf80eb2bb,
-		0xabe0502e, 0xec8d77de, 0x57971e81, 0xe14f6746, 0xc9335400, 0x6920318f, 0x081dbb99, 0xffc304a5,
-		0x4d351805, 0x7f3d5ce3, 0xa6c866c6, 0x5d5bcca9, 0xdaec6fea, 0x9f926f91, 0x9f46222f, 0x3991467d,
-		0xa5bf6d8e, 0x1143c44f, 0x43958302, 0xd0214eeb, 0x022083b8, 0x3fb6180c, 0x18f8931e, 0x281658e6,
-		0x26486e3e, 0x8bd78a70, 0x7477e4c1, 0xb506e07c, 0xf32d0a25, 0x79098b02, 0xe4eabb81, 0x28123b23,
-		0x69dead38, 0x1574ca16, 0xdf871b62, 0x211c40b7, 0xa51a9ef9, 0x0014377b, 0x041e8ac8, 0x09114003,
-		0xbd59e4d2, 0xe3d156d5, 0x4fe876d5, 0x2f91a340, 0x557be8de, 0x00eae4a7, 0x0ce5c2ec, 0x4db4bba6,
-		0xe756bdff, 0xdd3369ac, 0xec17b035, 0x06572327, 0x99afc8b0, 0x56c8c391, 0x6b65811c, 0x5e146119,
-		0x6e85cb75, 0xbe07c002, 0xc2325577, 0x893ff4ec, 0x5bbfc92d, 0xd0ec3b25, 0xb7801ab7, 0x8d6d3b24,
-		0x20c763ef, 0xc366a5fc, 0x9c382880, 0x0ace3205, 0xaac9548a, 0xeca1d7c7, 0x041afa32, 0x1d16625a,
-		0x6701902c, 0x9b757a54, 0x31d477f7, 0x9126b031, 0x36cc6fdb, 0xc70b8b46, 0xd9e66a48, 0x56e55a79,
-		0x026a4ceb, 0x52437eff, 0x2f8f76b4, 0x0df980a5, 0x8674cde3, 0xedda04eb, 0x17a9be04, 0x2c18f4df,
-		0xb7747f9d, 0xab2af7b4, 0xefc34d20, 0x2e096b7c, 0x1741a254, 0xe5b6a035, 0x213d42f6, 0x2c1c7c26,
-		0x61c2f50f, 0x6552daf9, 0xd2c231f8, 0x25130f69, 0xd8167fa2, 0x0418f2c8, 0x001a96a6, 0x0d1526ab,
-		0x63315c21, 0x5e0a72ec, 0x49bafefd, 0x187908d9, 0x8d0dbd86, 0x311170a7, 0x3e9b640c, 0xcc3e10d7,
-		0xd5cad3b6, 0x0caec388, 0xf73001e1, 0x6c728aff, 0x71eae2a1, 0x1f9af36e, 0xcfcbd12f, 0xc1de8417,
-		0xac07be6b, 0xcb44a1d8, 0x8b9b0f56, 0x013988c3, 0xb1c52fca, 0xb4be31cd, 0xd8782806, 0x12a3a4e2,
-		0x6f7de532, 0x58fd7eb6, 0xd01ee900, 0x24adffc2, 0xf4990fc5, 0x9711aac5, 0x001d7b95, 0x82e5e7d2,
-		0x109873f6, 0x00613096, 0xc32d9521, 0xada121ff, 0x29908415, 0x7fbb977f, 0xaf9eb3db, 0x29c9ed2a,
-		0x5ce2a465, 0xa730f32c, 0xd0aa3fe8, 0x8a5cc091, 0xd49e2ce7, 0x0ce454a9, 0xd60acd86, 0x015f1919,
-		0x77079103, 0xdea03af6, 0x78a8565e, 0xdee356df, 0x21f05cbe, 0x8b75e387, 0xb3c50651, 0xb8a5c3ef,
-		0xd8eeb6d2, 0xe523be77, 0xc2154529, 0x2f69efdf, 0xafe67afb, 0xf470c4b2, 0xf3e0eb5b, 0xd6cc9876,
-		0x39e4460c, 0x1fda8538, 0x1987832f, 0xca007367, 0xa99144f8, 0x296b299e, 0x492fc295, 0x9266beab,
-		0xb5676e69, 0x9bd3ddda, 0xdf7e052f, 0xdb25701c, 0x1b5e51ee, 0xf65324e6, 0x6afce36c, 0x0316cc04,
-		0x8644213e, 0xb7dc59d0, 0x7965291f, 0xccd6fd43, 0x41823979, 0x932bcdf6, 0xb657c34d, 0x4edfd282,
-		0x7ae5290c, 0x3cb9536b, 0x851e20fe, 0x9833557e, 0x13ecf0b0, 0xd3ffb372, 0x3f85c5c1, 0x0aef7ed2,
-	},
-	{
-		0x7ec90c04, 0x2c6e74b9, 0x9b0e66df, 0xa6337911, 0xb86a7fff, 0x1dd358f5, 0x44dd9d44, 0x1731167f,
-		0x08fbf1fa, 0xe7f511cc, 0xd2051b00, 0x735aba00, 0x2ab722d8, 0x386381cb, 0xacf6243a, 0x69befd7a,
-		0xe6a2e77f, 0xf0c720cd, 0xc4494816, 0xccf5c180, 0x38851640, 0x15b0a848, 0xe68b18cb, 0x4caadeff,
-		0x5f480a01, 0x0412b2aa, 0x259814fc, 0x41d0efe2, 0x4e40b48d, 0x248eb6fb, 0x8dba1cfe, 0x41a99b02,
-		0x1a550a04, 0xba8f65cb, 0x7251f4e7, 0x95a51725, 0xc106ecd7, 0x97a5980a, 0xc539b9aa, 0x4d79fe6a,
-		0xf2f3f763, 0x68af8040, 0xed0c9e56, 0x11b4958b, 0xe1eb5a88, 0x8709e6b0, 0xd7e07156, 0x4e29fea7,
-		0x6366e52d, 0x02d1c000, 0xc4ac8e05, 0x9377f571, 0x0c05372a, 0x578535f2, 0x2261be02, 0xd642a0c9,
-		0xdf13a280, 0x74b55bd2, 0x682199c0, 0xd421e5ec, 0x53fb3ce8, 0xc8adedb3, 0x28a87fc9, 0x3d959981,
-		0x5c1ff900, 0xfe38d399, 0x0c4eff0b, 0x062407ea, 0xaa2f4fb1, 0x4fb96976, 0x90c79505, 0xb0a8a774,
-		0xef55a1ff, 0xe59ca2c2, 0xa6b62d27, 0xe66a4263, 0xdf65001f, 0x0ec50966, 0xdfdd55bc, 0x29de0655,
-		0x911e739a, 0x17af8975, 0x32c7911c, 0x89f89468, 0x0d01e980, 0x524755f4, 0x03b63cc9, 0x0cc844b2,
-		0xbcf3f0aa, 0x87ac36e9, 0xe53a7426, 0x01b3d82b, 0x1a9e7449, 0x64ee2d7e, 0xcddbb1da, 0x01c94910,
-		0xb868bf80, 0x0d26f3fd, 0x9342ede7, 0x04a5c284, 0x636737b6, 0x50f5b616, 0xf24766e3, 0x8eca36c1,
-		0x136e05db, 0xfef18391, 0xfb887a37, 0xd6e7f7d4, 0xc7fb7dc9, 0x3063fcdf, 0xb6f589de, 0xec2941da,
-		0x26e46695, 0xb7566419, 0xf654efc5, 0xd08d58b7, 0x48925401, 0xc1bacb7f, 0xe5ff550f, 0xb6083049,
-		0x5bb5d0e8, 0x87d72e5a, 0xab6a6ee1, 0x223a66ce, 0xc62bf3cd, 0x9e0885f9, 0x68cb3e47, 0x086c010f,
-		0xa21de820, 0xd18b69de, 0xf3f65777, 0xfa02c3f6, 0x407edac3, 0xcbb3d550, 0x1793084d, 0xb0d70eba,
-		0x0ab378d5, 0xd951fb0c, 0xded7da56, 0x4124bbe4, 0x94ca0b56, 0x0f5755d1, 0xe0e1e56e, 0x6184b5be,
-		0x580a249f, 0x94f74bc0, 0xe327888e, 0x9f7b5561, 0xc3dc0280, 0x05687715, 0x646c6bd7, 0x44904db3,
-		0x66b4f0a3, 0xc0f1648a, 0x697ed5af, 0x49e92ff6, 0x309e374f, 0x2cb6356a, 0x85808573, 0x4991f840,
-		0x76f0ae02, 0x083be84d, 0x28421c9a, 0x44489406, 0x736e4cb8, 0xc1092910, 0x8bc95fc6, 0x7d869cf4,
-		0x134f616f, 0x2e77118d, 0xb31b2be1, 0xaa90b472, 0x3ca5d717, 0x7d161bba, 0x9cad9010, 0xaf462ba2,
-		0x9fe459d2, 0x45d34559, 0xd9f2da13, 0xdbc65487, 0xf3e4f94e, 0x176d486f, 0x097c13ea, 0x631da5c7,
-		0x445f7382, 0x175683f4, 0xcdc66a97, 0x70be0288, 0xb3cdcf72, 0x6e5dd2f3, 0x20936079, 0x459b80a5,
-		0xbe60e2db, 0xa9c23101, 0xeba5315c, 0x224e42f2, 0x1c5c1572, 0xf6721b2c, 0x1ad2fff3, 0x8c25404e,
-		0x324ed72f, 0x4067b7fd, 0x0523138e, 0x5ca3bc78, 0xdc0fd66e, 0x75922283, 0x784d6b17, 0x58ebb16e,
-		0x44094f85, 0x3f481d87, 0xfcfeae7b, 0x77b5ff76, 0x8c2302bf, 0xaaf47556, 0x5f46b02a, 0x2b092801,
-		0x3d38f5f7, 0x0ca81f36, 0x52af4a8a, 0x66d5e7c0, 0xdf3b0874, 0x95055110, 0x1b5ad7a8, 0xf61ed5ad,
-		0x6cf6e479, 0x20758184, 0xd0cefa65, 0x88f7be58, 0x4a046826, 0x0ff6f8f3, 0xa09c7f70, 0x5346aba0,
-		0x5ce96c28, 0xe176eda3, 0x6bac307f, 0x376829d2, 0x85360fa9, 0x17e3fe2a, 0x24b79767, 0xf5a96b20,
-		0xd6cd2595, 0x68ff1ebf, 0x7555442c, 0xf19f06be, 0xf9e0659a, 0xeeb9491d, 0x34010718, 0xbb30cab8,
-		0xe822fe15, 0x88570983, 0x750e6249, 0xda627e55, 0x5e76ffa8, 0xb1534546, 0x6d47de08, 0xefe9e7d4,
-	},
-	{
-		0xf6fa8f9d, 0x2cac6ce1, 0x4ca34867, 0xe2337f7c, 0x95db08e7, 0x016843b4, 0xeced5cbc, 0x325553ac,
-		0xbf9f0960, 0xdfa1e2ed, 0x83f0579d, 0x63ed86b9, 0x1ab6a6b8, 0xde5ebe39, 0xf38ff732, 0x8989b138,
-		0x33f14961, 0xc01937bd, 0xf506c6da, 0xe4625e7e, 0xa308ea99, 0x4e23e33c, 0x79cbd7cc, 0x48a14367,
-		0xa3149619, 0xfec94bd5, 0xa114174a, 0xeaa01866, 0xa084db2d, 0x09a8486f, 0xa888614a, 0x2900af98,
-		0x01665991, 0xe1992863, 0xc8f30c60, 0x2e78ef3c, 0xd0d51932, 0xcf0fec14, 0xf7ca07d2, 0xd0a82072,
-		0xfd41197e, 0x9305a6b0, 0xe86be3da, 0x74bed3cd, 0x372da53c, 0x4c7f4448, 0xdab5d440, 0x6dba0ec3,
-		0x083919a7, 0x9fbaeed9, 0x49dbcfb0, 0x4e670c53, 0x5c3d9c01, 0x64bdb941, 0x2c0e636a, 0xba7dd9cd,
-		0xea6f7388, 0xe70bc762, 0x35f29adb, 0x5c4cdd8d, 0xf0d48d8c, 0xb88153e2, 0x08a19866, 0x1ae2eac8,
-		0x284caf89, 0xaa928223, 0x9334be53, 0x3b3a21bf, 0x16434be3, 0x9aea3906, 0xefe8c36e, 0xf890cdd9,
-		0x80226dae, 0xc340a4a3, 0xdf7e9c09, 0xa694a807, 0x5b7c5ecc, 0x221db3a6, 0x9a69a02f, 0x68818a54,
-		0xceb2296f, 0x53c0843a, 0xfe893655, 0x25bfe68a, 0xb4628abc, 0xcf222ebf, 0x25ac6f48, 0xa9a99387,
-		0x53bddb65, 0xe76ffbe7, 0xe967fd78, 0x0ba93563, 0x8e342bc1, 0xe8a11be9, 0x4980740d, 0xc8087dfc,
-		0x8de4bf99, 0xa11101a0, 0x7fd37975, 0xda5a26c0, 0xe81f994f, 0x9528cd89, 0xfd339fed, 0xb87834bf,
-		0x5f04456d, 0x22258698, 0xc9c4c83b, 0x2dc156be, 0x4f628daa, 0x57f55ec5, 0xe2220abe, 0xd2916ebf,
-		0x4ec75b95, 0x24f2c3c0, 0x42d15d99, 0xcd0d7fa0, 0x7b6e27ff, 0xa8dc8af0, 0x7345c106, 0xf41e232f,
-		0x35162386, 0xe6ea8926, 0x3333b094, 0x157ec6f2, 0x372b74af, 0x692573e4, 0xe9a9d848, 0xf3160289,
-		0x3a62ef1d, 0xa787e238, 0xf3a5f676, 0x74364853, 0x20951063, 0x4576698d, 0xb6fad407, 0x592af950,
-		0x36f73523, 0x4cfb6e87, 0x7da4cec0, 0x6c152daa, 0xcb0396a8, 0xc50dfe5d, 0xfcd707ab, 0x0921c42f,
-		0x89dff0bb, 0x5fe2be78, 0x448f4f33, 0x754613c9, 0x2b05d08d, 0x48b9d585, 0xdc049441, 0xc8098f9b,
-		0x7dede786, 0xc39a3373, 0x42410005, 0x6a091751, 0x0ef3c8a6, 0x890072d6, 0x28207682, 0xa9a9f7be,
-		0xbf32679d, 0xd45b5b75, 0xb353fd00, 0xcbb0e358, 0x830f220a, 0x1f8fb214, 0xd372cf08, 0xcc3c4a13,
-		0x8cf63166, 0x061c87be, 0x88c98f88, 0x6062e397, 0x47cf8e7a, 0xb6c85283, 0x3cc2acfb, 0x3fc06976,
-		0x4e8f0252, 0x64d8314d, 0xda3870e3, 0x1e665459, 0xc10908f0, 0x513021a5, 0x6c5b68b7, 0x822f8aa0,
-		0x3007cd3e, 0x74719eef, 0xdc872681, 0x073340d4, 0x7e432fd9, 0x0c5ec241, 0x8809286c, 0xf592d891,
-		0x08a930f6, 0x957ef305, 0xb7fbffbd, 0xc266e96f, 0x6fe4ac98, 0xb173ecc0, 0xbc60b42a, 0x953498da,
-		0xfba1ae12, 0x2d4bd736, 0x0f25faab, 0xa4f3fceb, 0xe2969123, 0x257f0c3d, 0x9348af49, 0x361400bc,
-		0xe8816f4a, 0x3814f200, 0xa3f94043, 0x9c7a54c2, 0xbc704f57, 0xda41e7f9, 0xc25ad33a, 0x54f4a084,
-		0xb17f5505, 0x59357cbe, 0xedbd15c8, 0x7f97c5ab, 0xba5ac7b5, 0xb6f6deaf, 0x3a479c3a, 0x5302da25,
-		0x653d7e6a, 0x54268d49, 0x51a477ea, 0x5017d55b, 0xd7d25d88, 0x44136c76, 0x0404a8c8, 0xb8e5a121,
-		0xb81a928a, 0x60ed5869, 0x97c55b96, 0xeaec991b, 0x29935913, 0x01fdb7f1, 0x088e8dfa, 0x9ab6f6f5,
-		0x3b4cbf9f, 0x4a5de3ab, 0xe6051d35, 0xa0e1d855, 0xd36b4cf1, 0xf544edeb, 0xb0e93524, 0xbebb8fbd,
-		0xa2d762cf, 0x49c92f54, 0x38b5f331, 0x7128a454, 0x48392905, 0xa65b1db8, 0x851c97bd, 0xd675cf2f,
-	},
-	{
-		0x85e04019, 0x332bf567, 0x662dbfff, 0xcfc65693, 0x2a8d7f6f, 0xab9bc912, 0xde6008a1, 0x2028da1f,
-		0x0227bce7, 0x4d642916, 0x18fac300, 0x50f18b82, 0x2cb2cb11, 0xb232e75c, 0x4b3695f2, 0xb28707de,
-		0xa05fbcf6, 0xcd4181e9, 0xe150210c, 0xe24ef1bd, 0xb168c381, 0xfde4e789, 0x5c79b0d8, 0x1e8bfd43,
-		0x4d495001, 0x38be4341, 0x913cee1d, 0x92a79c3f, 0x089766be, 0xbaeeadf4, 0x1286becf, 0xb6eacb19,
-		0x2660c200, 0x7565bde4, 0x64241f7a, 0x8248dca9, 0xc3b3ad66, 0x28136086, 0x0bd8dfa8, 0x356d1cf2,
-		0x107789be, 0xb3b2e9ce, 0x0502aa8f, 0x0bc0351e, 0x166bf52a, 0xeb12ff82, 0xe3486911, 0xd34d7516,
-		0x4e7b3aff, 0x5f43671b, 0x9cf6e037, 0x4981ac83, 0x334266ce, 0x8c9341b7, 0xd0d854c0, 0xcb3a6c88,
-		0x47bc2829, 0x4725ba37, 0xa66ad22b, 0x7ad61f1e, 0x0c5cbafa, 0x4437f107, 0xb6e79962, 0x42d2d816,
-		0x0a961288, 0xe1a5c06e, 0x13749e67, 0x72fc081a, 0xb1d139f7, 0xf9583745, 0xcf19df58, 0xbec3f756,
-		0xc06eba30, 0x07211b24, 0x45c28829, 0xc95e317f, 0xbc8ec511, 0x38bc46e9, 0xc6e6fa14, 0xbae8584a,
-		0xad4ebc46, 0x468f508b, 0x7829435f, 0xf124183b, 0x821dba9f, 0xaff60ff4, 0xea2c4e6d, 0x16e39264,
-		0x92544a8b, 0x009b4fc3, 0xaba68ced, 0x9ac96f78, 0x06a5b79a, 0xb2856e6e, 0x1aec3ca9, 0xbe838688,
-		0x0e0804e9, 0x55f1be56, 0xe7e5363b, 0xb3a1f25d, 0xf7debb85, 0x61fe033c, 0x16746233, 0x3c034c28,
-		0xda6d0c74, 0x79aac56c, 0x3ce4e1ad, 0x51f0c802, 0x98f8f35a, 0x1626a49f, 0xeed82b29, 0x1d382fe3,
-		0x0c4fb99a, 0xbb325778, 0x3ec6d97b, 0x6e77a6a9, 0xcb658b5c, 0xd45230c7, 0x2bd1408b, 0x60c03eb7,
-		0xb9068d78, 0xa33754f4, 0xf430c87d, 0xc8a71302, 0xb96d8c32, 0xebd4e7be, 0xbe8b9d2d, 0x7979fb06,
-		0xe7225308, 0x8b75cf77, 0x11ef8da4, 0xe083c858, 0x8d6b786f, 0x5a6317a6, 0xfa5cf7a0, 0x5dda0033,
-		0xf28ebfb0, 0xf5b9c310, 0xa0eac280, 0x08b9767a, 0xa3d9d2b0, 0x79d34217, 0x021a718d, 0x9ac6336a,
-		0x2711fd60, 0x438050e3, 0x069908a8, 0x3d7fedc4, 0x826d2bef, 0x4eeb8476, 0x488dcf25, 0x36c9d566,
-		0x28e74e41, 0xc2610aca, 0x3d49a9cf, 0xbae3b9df, 0xb65f8de6, 0x92aeaf64, 0x3ac7d5e6, 0x9ea80509,
-		0xf22b017d, 0xa4173f70, 0xdd1e16c3, 0x15e0d7f9, 0x50b1b887, 0x2b9f4fd5, 0x625aba82, 0x6a017962,
-		0x2ec01b9c, 0x15488aa9, 0xd716e740, 0x40055a2c, 0x93d29a22, 0xe32dbf9a, 0x058745b9, 0x3453dc1e,
-		0xd699296e, 0x496cff6f, 0x1c9f4986, 0xdfe2ed07, 0xb87242d1, 0x19de7eae, 0x053e561a, 0x15ad6f8c,
-		0x66626c1c, 0x7154c24c, 0xea082b2a, 0x93eb2939, 0x17dcb0f0, 0x58d4f2ae, 0x9ea294fb, 0x52cf564c,
-		0x9883fe66, 0x2ec40581, 0x763953c3, 0x01d6692e, 0xd3a0c108, 0xa1e7160e, 0xe4f2dfa6, 0x693ed285,
-		0x74904698, 0x4c2b0edd, 0x4f757656, 0x5d393378, 0xa132234f, 0x3d321c5d, 0xc3f5e194, 0x4b269301,
-		0xc79f022f, 0x3c997e7e, 0x5e4f9504, 0x3ffafbbd, 0x76f7ad0e, 0x296693f4, 0x3d1fce6f, 0xc61e45be,
-		0xd3b5ab34, 0xf72bf9b7, 0x1b0434c0, 0x4e72b567, 0x5592a33d, 0xb5229301, 0xcfd2a87f, 0x60aeb767,
-		0x1814386b, 0x30bcc33d, 0x38a0c07d, 0xfd1606f2, 0xc363519b, 0x589dd390, 0x5479f8e6, 0x1cb8d647,
-		0x97fd61a9, 0xea7759f4, 0x2d57539d, 0x569a58cf, 0xe84e63ad, 0x462e1b78, 0x6580f87e, 0xf3817914,
-		0x91da55f4, 0x40a230f3, 0xd1988f35, 0xb6e318d2, 0x3ffa50bc, 0x3d40f021, 0xc3c0bdae, 0x4958c24c,
-		0x518f36b2, 0x84b1d370, 0x0fedce83, 0x878ddada, 0xf2a279c7, 0x94e01be8, 0x90716f4b, 0x954b8aa3,
-	},
-	{
-		0xe216300d, 0xbbddfffc, 0xa7ebdabd, 0x35648095, 0x7789f8b7, 0xe6c1121b, 0x0e241600, 0x052ce8b5,
-		0x11a9cfb0, 0xe5952f11, 0xece7990a, 0x9386d174, 0x2a42931c, 0x76e38111, 0xb12def3a, 0x37ddddfc,
-		0xde9adeb1, 0x0a0cc32c, 0xbe197029, 0x84a00940, 0xbb243a0f, 0xb4d137cf, 0xb44e79f0, 0x049eedfd,
-		0x0b15a15d, 0x480d3168, 0x8bbbde5a, 0x669ded42, 0xc7ece831, 0x3f8f95e7, 0x72df191b, 0x7580330d,
-		0x94074251, 0x5c7dcdfa, 0xabbe6d63, 0xaa402164, 0xb301d40a, 0x02e7d1ca, 0x53571dae, 0x7a3182a2,
-		0x12a8ddec, 0xfdaa335d, 0x176f43e8, 0x71fb46d4, 0x38129022, 0xce949ad4, 0xb84769ad, 0x965bd862,
-		0x82f3d055, 0x66fb9767, 0x15b80b4e, 0x1d5b47a0, 0x4cfde06f, 0xc28ec4b8, 0x57e8726e, 0x647a78fc,
-		0x99865d44, 0x608bd593, 0x6c200e03, 0x39dc5ff6, 0x5d0b00a3, 0xae63aff2, 0x7e8bd632, 0x70108c0c,
-		0xbbd35049, 0x2998df04, 0x980cf42a, 0x9b6df491, 0x9e7edd53, 0x06918548, 0x58cb7e07, 0x3b74ef2e,
-		0x522fffb1, 0xd24708cc, 0x1c7e27cd, 0xa4eb215b, 0x3cf1d2e2, 0x19b47a38, 0x424f7618, 0x35856039,
-		0x9d17dee7, 0x27eb35e6, 0xc9aff67b, 0x36baf5b8, 0x09c467cd, 0xc18910b1, 0xe11dbf7b, 0x06cd1af8,
-		0x7170c608, 0x2d5e3354, 0xd4de495a, 0x64c6d006, 0xbcc0c62c, 0x3dd00db3, 0x708f8f34, 0x77d51b42,
-		0x264f620f, 0x24b8d2bf, 0x15c1b79e, 0x46a52564, 0xf8d7e54e, 0x3e378160, 0x7895cda5, 0x859c15a5,
-		0xe6459788, 0xc37bc75f, 0xdb07ba0c, 0x0676a3ab, 0x7f229b1e, 0x31842e7b, 0x24259fd7, 0xf8bef472,
-		0x835ffcb8, 0x6df4c1f2, 0x96f5b195, 0xfd0af0fc, 0xb0fe134c, 0xe2506d3d, 0x4f9b12ea, 0xf215f225,
-		0xa223736f, 0x9fb4c428, 0x25d04979, 0x34c713f8, 0xc4618187, 0xea7a6e98, 0x7cd16efc, 0x1436876c,
-		0xf1544107, 0xbedeee14, 0x56e9af27, 0xa04aa441, 0x3cf7c899, 0x92ecbae6, 0xdd67016d, 0x151682eb,
-		0xa842eedf, 0xfdba60b4, 0xf1907b75, 0x20e3030f, 0x24d8c29e, 0xe139673b, 0xefa63fb8, 0x71873054,
-		0xb6f2cf3b, 0x9f326442, 0xcb15a4cc, 0xb01a4504, 0xf1e47d8d, 0x844a1be5, 0xbae7dfdc, 0x42cbda70,
-		0xcd7dae0a, 0x57e85b7a, 0xd53f5af6, 0x20cf4d8c, 0xcea4d428, 0x79d130a4, 0x3486ebfb, 0x33d3cddc,
-		0x77853b53, 0x37effcb5, 0xc5068778, 0xe580b3e6, 0x4e68b8f4, 0xc5c8b37e, 0x0d809ea2, 0x398feb7c,
-		0x132a4f94, 0x43b7950e, 0x2fee7d1c, 0x223613bd, 0xdd06caa2, 0x37df932b, 0xc4248289, 0xacf3ebc3,
-		0x5715f6b7, 0xef3478dd, 0xf267616f, 0xc148cbe4, 0x9052815e, 0x5e410fab, 0xb48a2465, 0x2eda7fa4,
-		0xe87b40e4, 0xe98ea084, 0x5889e9e1, 0xefd390fc, 0xdd07d35b, 0xdb485694, 0x38d7e5b2, 0x57720101,
-		0x730edebc, 0x5b643113, 0x94917e4f, 0x503c2fba, 0x646f1282, 0x7523d24a, 0xe0779695, 0xf9c17a8f,
-		0x7a5b2121, 0xd187b896, 0x29263a4d, 0xba510cdf, 0x81f47c9f, 0xad1163ed, 0xea7b5965, 0x1a00726e,
-		0x11403092, 0x00da6d77, 0x4a0cdd61, 0xad1f4603, 0x605bdfb0, 0x9eedc364, 0x22ebe6a8, 0xcee7d28a,
-		0xa0e736a0, 0x5564a6b9, 0x10853209, 0xc7eb8f37, 0x2de705ca, 0x8951570f, 0xdf09822b, 0xbd691a6c,
-		0xaa12e4f2, 0x87451c0f, 0xe0f6a27a, 0x3ada4819, 0x4cf1764f, 0x0d771c2b, 0x67cdb156, 0x350d8384,
-		0x5938fa0f, 0x42399ef3, 0x36997b07, 0x0e84093d, 0x4aa93e61, 0x8360d87b, 0x1fa98b0c, 0x1149382c,
-		0xe97625a5, 0x0614d1b7, 0x0e25244b, 0x0c768347, 0x589e8d82, 0x0d2059d1, 0xa466bb1e, 0xf8da0a82,
-		0x04f19130, 0xba6e4ec0, 0x99265164, 0x1ee7230d, 0x50b2ad80, 0xeaee6801, 0x8db2a283, 0xea8bf59e,
-	},
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/armor/armor.go b/vendor/golang.org/x/crypto/openpgp/armor/armor.go
deleted file mode 100644
index 592d186436..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/armor/armor.go
+++ /dev/null
@@ -1,219 +0,0 @@
-// Copyright 2010 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package armor implements OpenPGP ASCII Armor, see RFC 4880. OpenPGP Armor is
-// very similar to PEM except that it has an additional CRC checksum.
-package armor // import "golang.org/x/crypto/openpgp/armor"
-
-import (
-	"bufio"
-	"bytes"
-	"encoding/base64"
-	"golang.org/x/crypto/openpgp/errors"
-	"io"
-)
-
-// A Block represents an OpenPGP armored structure.
-//
-// The encoded form is:
-//    -----BEGIN Type-----
-//    Headers
-//
-//    base64-encoded Bytes
-//    '=' base64 encoded checksum
-//    -----END Type-----
-// where Headers is a possibly empty sequence of Key: Value lines.
-//
-// Since the armored data can be very large, this package presents a streaming
-// interface.
-type Block struct {
-	Type    string            // The type, taken from the preamble (i.e. "PGP SIGNATURE").
-	Header  map[string]string // Optional headers.
-	Body    io.Reader         // A Reader from which the contents can be read
-	lReader lineReader
-	oReader openpgpReader
-}
-
-var ArmorCorrupt error = errors.StructuralError("armor invalid")
-
-const crc24Init = 0xb704ce
-const crc24Poly = 0x1864cfb
-const crc24Mask = 0xffffff
-
-// crc24 calculates the OpenPGP checksum as specified in RFC 4880, section 6.1
-func crc24(crc uint32, d []byte) uint32 {
-	for _, b := range d {
-		crc ^= uint32(b) << 16
-		for i := 0; i < 8; i++ {
-			crc <<= 1
-			if crc&0x1000000 != 0 {
-				crc ^= crc24Poly
-			}
-		}
-	}
-	return crc
-}
-
-var armorStart = []byte("-----BEGIN ")
-var armorEnd = []byte("-----END ")
-var armorEndOfLine = []byte("-----")
-
-// lineReader wraps a line based reader. It watches for the end of an armor
-// block and records the expected CRC value.
-type lineReader struct {
-	in  *bufio.Reader
-	buf []byte
-	eof bool
-	crc uint32
-}
-
-func (l *lineReader) Read(p []byte) (n int, err error) {
-	if l.eof {
-		return 0, io.EOF
-	}
-
-	if len(l.buf) > 0 {
-		n = copy(p, l.buf)
-		l.buf = l.buf[n:]
-		return
-	}
-
-	line, isPrefix, err := l.in.ReadLine()
-	if err != nil {
-		return
-	}
-	if isPrefix {
-		return 0, ArmorCorrupt
-	}
-
-	if len(line) == 5 && line[0] == '=' {
-		// This is the checksum line
-		var expectedBytes [3]byte
-		var m int
-		m, err = base64.StdEncoding.Decode(expectedBytes[0:], line[1:])
-		if m != 3 || err != nil {
-			return
-		}
-		l.crc = uint32(expectedBytes[0])<<16 |
-			uint32(expectedBytes[1])<<8 |
-			uint32(expectedBytes[2])
-
-		line, _, err = l.in.ReadLine()
-		if err != nil && err != io.EOF {
-			return
-		}
-		if !bytes.HasPrefix(line, armorEnd) {
-			return 0, ArmorCorrupt
-		}
-
-		l.eof = true
-		return 0, io.EOF
-	}
-
-	if len(line) > 96 {
-		return 0, ArmorCorrupt
-	}
-
-	n = copy(p, line)
-	bytesToSave := len(line) - n
-	if bytesToSave > 0 {
-		if cap(l.buf) < bytesToSave {
-			l.buf = make([]byte, 0, bytesToSave)
-		}
-		l.buf = l.buf[0:bytesToSave]
-		copy(l.buf, line[n:])
-	}
-
-	return
-}
-
-// openpgpReader passes Read calls to the underlying base64 decoder, but keeps
-// a running CRC of the resulting data and checks the CRC against the value
-// found by the lineReader at EOF.
-type openpgpReader struct {
-	lReader    *lineReader
-	b64Reader  io.Reader
-	currentCRC uint32
-}
-
-func (r *openpgpReader) Read(p []byte) (n int, err error) {
-	n, err = r.b64Reader.Read(p)
-	r.currentCRC = crc24(r.currentCRC, p[:n])
-
-	if err == io.EOF {
-		if r.lReader.crc != uint32(r.currentCRC&crc24Mask) {
-			return 0, ArmorCorrupt
-		}
-	}
-
-	return
-}
-
-// Decode reads a PGP armored block from the given Reader. It will ignore
-// leading garbage. If it doesn't find a block, it will return nil, io.EOF. The
-// given Reader is not usable after calling this function: an arbitrary amount
-// of data may have been read past the end of the block.
-func Decode(in io.Reader) (p *Block, err error) {
-	r := bufio.NewReaderSize(in, 100)
-	var line []byte
-	ignoreNext := false
-
-TryNextBlock:
-	p = nil
-
-	// Skip leading garbage
-	for {
-		ignoreThis := ignoreNext
-		line, ignoreNext, err = r.ReadLine()
-		if err != nil {
-			return
-		}
-		if ignoreNext || ignoreThis {
-			continue
-		}
-		line = bytes.TrimSpace(line)
-		if len(line) > len(armorStart)+len(armorEndOfLine) && bytes.HasPrefix(line, armorStart) {
-			break
-		}
-	}
-
-	p = new(Block)
-	p.Type = string(line[len(armorStart) : len(line)-len(armorEndOfLine)])
-	p.Header = make(map[string]string)
-	nextIsContinuation := false
-	var lastKey string
-
-	// Read headers
-	for {
-		isContinuation := nextIsContinuation
-		line, nextIsContinuation, err = r.ReadLine()
-		if err != nil {
-			p = nil
-			return
-		}
-		if isContinuation {
-			p.Header[lastKey] += string(line)
-			continue
-		}
-		line = bytes.TrimSpace(line)
-		if len(line) == 0 {
-			break
-		}
-
-		i := bytes.Index(line, []byte(": "))
-		if i == -1 {
-			goto TryNextBlock
-		}
-		lastKey = string(line[:i])
-		p.Header[lastKey] = string(line[i+2:])
-	}
-
-	p.lReader.in = r
-	p.oReader.currentCRC = crc24Init
-	p.oReader.lReader = &p.lReader
-	p.oReader.b64Reader = base64.NewDecoder(base64.StdEncoding, &p.lReader)
-	p.Body = &p.oReader
-
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/armor/encode.go b/vendor/golang.org/x/crypto/openpgp/armor/encode.go
deleted file mode 100644
index 6f07582c37..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/armor/encode.go
+++ /dev/null
@@ -1,160 +0,0 @@
-// Copyright 2010 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package armor
-
-import (
-	"encoding/base64"
-	"io"
-)
-
-var armorHeaderSep = []byte(": ")
-var blockEnd = []byte("\n=")
-var newline = []byte("\n")
-var armorEndOfLineOut = []byte("-----\n")
-
-// writeSlices writes its arguments to the given Writer.
-func writeSlices(out io.Writer, slices ...[]byte) (err error) {
-	for _, s := range slices {
-		_, err = out.Write(s)
-		if err != nil {
-			return err
-		}
-	}
-	return
-}
-
-// lineBreaker breaks data across several lines, all of the same byte length
-// (except possibly the last). Lines are broken with a single '\n'.
-type lineBreaker struct {
-	lineLength  int
-	line        []byte
-	used        int
-	out         io.Writer
-	haveWritten bool
-}
-
-func newLineBreaker(out io.Writer, lineLength int) *lineBreaker {
-	return &lineBreaker{
-		lineLength: lineLength,
-		line:       make([]byte, lineLength),
-		used:       0,
-		out:        out,
-	}
-}
-
-func (l *lineBreaker) Write(b []byte) (n int, err error) {
-	n = len(b)
-
-	if n == 0 {
-		return
-	}
-
-	if l.used == 0 && l.haveWritten {
-		_, err = l.out.Write([]byte{'\n'})
-		if err != nil {
-			return
-		}
-	}
-
-	if l.used+len(b) < l.lineLength {
-		l.used += copy(l.line[l.used:], b)
-		return
-	}
-
-	l.haveWritten = true
-	_, err = l.out.Write(l.line[0:l.used])
-	if err != nil {
-		return
-	}
-	excess := l.lineLength - l.used
-	l.used = 0
-
-	_, err = l.out.Write(b[0:excess])
-	if err != nil {
-		return
-	}
-
-	_, err = l.Write(b[excess:])
-	return
-}
-
-func (l *lineBreaker) Close() (err error) {
-	if l.used > 0 {
-		_, err = l.out.Write(l.line[0:l.used])
-		if err != nil {
-			return
-		}
-	}
-
-	return
-}
-
-// encoding keeps track of a running CRC24 over the data which has been written
-// to it and outputs a OpenPGP checksum when closed, followed by an armor
-// trailer.
-//
-// It's built into a stack of io.Writers:
-//    encoding -> base64 encoder -> lineBreaker -> out
-type encoding struct {
-	out       io.Writer
-	breaker   *lineBreaker
-	b64       io.WriteCloser
-	crc       uint32
-	blockType []byte
-}
-
-func (e *encoding) Write(data []byte) (n int, err error) {
-	e.crc = crc24(e.crc, data)
-	return e.b64.Write(data)
-}
-
-func (e *encoding) Close() (err error) {
-	err = e.b64.Close()
-	if err != nil {
-		return
-	}
-	e.breaker.Close()
-
-	var checksumBytes [3]byte
-	checksumBytes[0] = byte(e.crc >> 16)
-	checksumBytes[1] = byte(e.crc >> 8)
-	checksumBytes[2] = byte(e.crc)
-
-	var b64ChecksumBytes [4]byte
-	base64.StdEncoding.Encode(b64ChecksumBytes[:], checksumBytes[:])
-
-	return writeSlices(e.out, blockEnd, b64ChecksumBytes[:], newline, armorEnd, e.blockType, armorEndOfLine)
-}
-
-// Encode returns a WriteCloser which will encode the data written to it in
-// OpenPGP armor.
-func Encode(out io.Writer, blockType string, headers map[string]string) (w io.WriteCloser, err error) {
-	bType := []byte(blockType)
-	err = writeSlices(out, armorStart, bType, armorEndOfLineOut)
-	if err != nil {
-		return
-	}
-
-	for k, v := range headers {
-		err = writeSlices(out, []byte(k), armorHeaderSep, []byte(v), newline)
-		if err != nil {
-			return
-		}
-	}
-
-	_, err = out.Write(newline)
-	if err != nil {
-		return
-	}
-
-	e := &encoding{
-		out:       out,
-		breaker:   newLineBreaker(out, 64),
-		crc:       crc24Init,
-		blockType: bType,
-	}
-	e.b64 = base64.NewEncoder(base64.StdEncoding, e.breaker)
-	return e, nil
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/canonical_text.go b/vendor/golang.org/x/crypto/openpgp/canonical_text.go
deleted file mode 100644
index e601e389f1..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/canonical_text.go
+++ /dev/null
@@ -1,59 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package openpgp
-
-import "hash"
-
-// NewCanonicalTextHash reformats text written to it into the canonical
-// form and then applies the hash h.  See RFC 4880, section 5.2.1.
-func NewCanonicalTextHash(h hash.Hash) hash.Hash {
-	return &canonicalTextHash{h, 0}
-}
-
-type canonicalTextHash struct {
-	h hash.Hash
-	s int
-}
-
-var newline = []byte{'\r', '\n'}
-
-func (cth *canonicalTextHash) Write(buf []byte) (int, error) {
-	start := 0
-
-	for i, c := range buf {
-		switch cth.s {
-		case 0:
-			if c == '\r' {
-				cth.s = 1
-			} else if c == '\n' {
-				cth.h.Write(buf[start:i])
-				cth.h.Write(newline)
-				start = i + 1
-			}
-		case 1:
-			cth.s = 0
-		}
-	}
-
-	cth.h.Write(buf[start:])
-	return len(buf), nil
-}
-
-func (cth *canonicalTextHash) Sum(in []byte) []byte {
-	return cth.h.Sum(in)
-}
-
-func (cth *canonicalTextHash) Reset() {
-	cth.h.Reset()
-	cth.s = 0
-}
-
-func (cth *canonicalTextHash) Size() int {
-	return cth.h.Size()
-}
-
-func (cth *canonicalTextHash) BlockSize() int {
-	return cth.h.BlockSize()
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/elgamal/elgamal.go b/vendor/golang.org/x/crypto/openpgp/elgamal/elgamal.go
deleted file mode 100644
index 73f4fe3785..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/elgamal/elgamal.go
+++ /dev/null
@@ -1,122 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package elgamal implements ElGamal encryption, suitable for OpenPGP,
-// as specified in "A Public-Key Cryptosystem and a Signature Scheme Based on
-// Discrete Logarithms," IEEE Transactions on Information Theory, v. IT-31,
-// n. 4, 1985, pp. 469-472.
-//
-// This form of ElGamal embeds PKCS#1 v1.5 padding, which may make it
-// unsuitable for other protocols. RSA should be used in preference in any
-// case.
-package elgamal // import "golang.org/x/crypto/openpgp/elgamal"
-
-import (
-	"crypto/rand"
-	"crypto/subtle"
-	"errors"
-	"io"
-	"math/big"
-)
-
-// PublicKey represents an ElGamal public key.
-type PublicKey struct {
-	G, P, Y *big.Int
-}
-
-// PrivateKey represents an ElGamal private key.
-type PrivateKey struct {
-	PublicKey
-	X *big.Int
-}
-
-// Encrypt encrypts the given message to the given public key. The result is a
-// pair of integers. Errors can result from reading random, or because msg is
-// too large to be encrypted to the public key.
-func Encrypt(random io.Reader, pub *PublicKey, msg []byte) (c1, c2 *big.Int, err error) {
-	pLen := (pub.P.BitLen() + 7) / 8
-	if len(msg) > pLen-11 {
-		err = errors.New("elgamal: message too long")
-		return
-	}
-
-	// EM = 0x02 || PS || 0x00 || M
-	em := make([]byte, pLen-1)
-	em[0] = 2
-	ps, mm := em[1:len(em)-len(msg)-1], em[len(em)-len(msg):]
-	err = nonZeroRandomBytes(ps, random)
-	if err != nil {
-		return
-	}
-	em[len(em)-len(msg)-1] = 0
-	copy(mm, msg)
-
-	m := new(big.Int).SetBytes(em)
-
-	k, err := rand.Int(random, pub.P)
-	if err != nil {
-		return
-	}
-
-	c1 = new(big.Int).Exp(pub.G, k, pub.P)
-	s := new(big.Int).Exp(pub.Y, k, pub.P)
-	c2 = s.Mul(s, m)
-	c2.Mod(c2, pub.P)
-
-	return
-}
-
-// Decrypt takes two integers, resulting from an ElGamal encryption, and
-// returns the plaintext of the message. An error can result only if the
-// ciphertext is invalid. Users should keep in mind that this is a padding
-// oracle and thus, if exposed to an adaptive chosen ciphertext attack, can
-// be used to break the cryptosystem.  See ``Chosen Ciphertext Attacks
-// Against Protocols Based on the RSA Encryption Standard PKCS #1'', Daniel
-// Bleichenbacher, Advances in Cryptology (Crypto '98),
-func Decrypt(priv *PrivateKey, c1, c2 *big.Int) (msg []byte, err error) {
-	s := new(big.Int).Exp(c1, priv.X, priv.P)
-	s.ModInverse(s, priv.P)
-	s.Mul(s, c2)
-	s.Mod(s, priv.P)
-	em := s.Bytes()
-
-	firstByteIsTwo := subtle.ConstantTimeByteEq(em[0], 2)
-
-	// The remainder of the plaintext must be a string of non-zero random
-	// octets, followed by a 0, followed by the message.
-	//   lookingForIndex: 1 iff we are still looking for the zero.
-	//   index: the offset of the first zero byte.
-	var lookingForIndex, index int
-	lookingForIndex = 1
-
-	for i := 1; i < len(em); i++ {
-		equals0 := subtle.ConstantTimeByteEq(em[i], 0)
-		index = subtle.ConstantTimeSelect(lookingForIndex&equals0, i, index)
-		lookingForIndex = subtle.ConstantTimeSelect(equals0, 0, lookingForIndex)
-	}
-
-	if firstByteIsTwo != 1 || lookingForIndex != 0 || index < 9 {
-		return nil, errors.New("elgamal: decryption error")
-	}
-	return em[index+1:], nil
-}
-
-// nonZeroRandomBytes fills the given slice with non-zero random octets.
-func nonZeroRandomBytes(s []byte, rand io.Reader) (err error) {
-	_, err = io.ReadFull(rand, s)
-	if err != nil {
-		return
-	}
-
-	for i := 0; i < len(s); i++ {
-		for s[i] == 0 {
-			_, err = io.ReadFull(rand, s[i:i+1])
-			if err != nil {
-				return
-			}
-		}
-	}
-
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/errors/errors.go b/vendor/golang.org/x/crypto/openpgp/errors/errors.go
deleted file mode 100644
index eb0550b2d0..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/errors/errors.go
+++ /dev/null
@@ -1,72 +0,0 @@
-// Copyright 2010 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package errors contains common error types for the OpenPGP packages.
-package errors // import "golang.org/x/crypto/openpgp/errors"
-
-import (
-	"strconv"
-)
-
-// A StructuralError is returned when OpenPGP data is found to be syntactically
-// invalid.
-type StructuralError string
-
-func (s StructuralError) Error() string {
-	return "openpgp: invalid data: " + string(s)
-}
-
-// UnsupportedError indicates that, although the OpenPGP data is valid, it
-// makes use of currently unimplemented features.
-type UnsupportedError string
-
-func (s UnsupportedError) Error() string {
-	return "openpgp: unsupported feature: " + string(s)
-}
-
-// InvalidArgumentError indicates that the caller is in error and passed an
-// incorrect value.
-type InvalidArgumentError string
-
-func (i InvalidArgumentError) Error() string {
-	return "openpgp: invalid argument: " + string(i)
-}
-
-// SignatureError indicates that a syntactically valid signature failed to
-// validate.
-type SignatureError string
-
-func (b SignatureError) Error() string {
-	return "openpgp: invalid signature: " + string(b)
-}
-
-type keyIncorrectError int
-
-func (ki keyIncorrectError) Error() string {
-	return "openpgp: incorrect key"
-}
-
-var ErrKeyIncorrect error = keyIncorrectError(0)
-
-type unknownIssuerError int
-
-func (unknownIssuerError) Error() string {
-	return "openpgp: signature made by unknown entity"
-}
-
-var ErrUnknownIssuer error = unknownIssuerError(0)
-
-type keyRevokedError int
-
-func (keyRevokedError) Error() string {
-	return "openpgp: signature made by revoked key"
-}
-
-var ErrKeyRevoked error = keyRevokedError(0)
-
-type UnknownPacketTypeError uint8
-
-func (upte UnknownPacketTypeError) Error() string {
-	return "openpgp: unknown packet type: " + strconv.Itoa(int(upte))
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/keys.go b/vendor/golang.org/x/crypto/openpgp/keys.go
deleted file mode 100644
index fd582a89c0..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/keys.go
+++ /dev/null
@@ -1,641 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package openpgp
-
-import (
-	"crypto/rsa"
-	"io"
-	"time"
-
-	"golang.org/x/crypto/openpgp/armor"
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/packet"
-)
-
-// PublicKeyType is the armor type for a PGP public key.
-var PublicKeyType = "PGP PUBLIC KEY BLOCK"
-
-// PrivateKeyType is the armor type for a PGP private key.
-var PrivateKeyType = "PGP PRIVATE KEY BLOCK"
-
-// An Entity represents the components of an OpenPGP key: a primary public key
-// (which must be a signing key), one or more identities claimed by that key,
-// and zero or more subkeys, which may be encryption keys.
-type Entity struct {
-	PrimaryKey  *packet.PublicKey
-	PrivateKey  *packet.PrivateKey
-	Identities  map[string]*Identity // indexed by Identity.Name
-	Revocations []*packet.Signature
-	Subkeys     []Subkey
-}
-
-// An Identity represents an identity claimed by an Entity and zero or more
-// assertions by other entities about that claim.
-type Identity struct {
-	Name          string // by convention, has the form "Full Name (comment) <email@example.com>"
-	UserId        *packet.UserId
-	SelfSignature *packet.Signature
-	Signatures    []*packet.Signature
-}
-
-// A Subkey is an additional public key in an Entity. Subkeys can be used for
-// encryption.
-type Subkey struct {
-	PublicKey  *packet.PublicKey
-	PrivateKey *packet.PrivateKey
-	Sig        *packet.Signature
-}
-
-// A Key identifies a specific public key in an Entity. This is either the
-// Entity's primary key or a subkey.
-type Key struct {
-	Entity        *Entity
-	PublicKey     *packet.PublicKey
-	PrivateKey    *packet.PrivateKey
-	SelfSignature *packet.Signature
-}
-
-// A KeyRing provides access to public and private keys.
-type KeyRing interface {
-	// KeysById returns the set of keys that have the given key id.
-	KeysById(id uint64) []Key
-	// KeysByIdAndUsage returns the set of keys with the given id
-	// that also meet the key usage given by requiredUsage.
-	// The requiredUsage is expressed as the bitwise-OR of
-	// packet.KeyFlag* values.
-	KeysByIdUsage(id uint64, requiredUsage byte) []Key
-	// DecryptionKeys returns all private keys that are valid for
-	// decryption.
-	DecryptionKeys() []Key
-}
-
-// primaryIdentity returns the Identity marked as primary or the first identity
-// if none are so marked.
-func (e *Entity) primaryIdentity() *Identity {
-	var firstIdentity *Identity
-	for _, ident := range e.Identities {
-		if firstIdentity == nil {
-			firstIdentity = ident
-		}
-		if ident.SelfSignature.IsPrimaryId != nil && *ident.SelfSignature.IsPrimaryId {
-			return ident
-		}
-	}
-	return firstIdentity
-}
-
-// encryptionKey returns the best candidate Key for encrypting a message to the
-// given Entity.
-func (e *Entity) encryptionKey(now time.Time) (Key, bool) {
-	candidateSubkey := -1
-
-	// Iterate the keys to find the newest key
-	var maxTime time.Time
-	for i, subkey := range e.Subkeys {
-		if subkey.Sig.FlagsValid &&
-			subkey.Sig.FlagEncryptCommunications &&
-			subkey.PublicKey.PubKeyAlgo.CanEncrypt() &&
-			!subkey.Sig.KeyExpired(now) &&
-			(maxTime.IsZero() || subkey.Sig.CreationTime.After(maxTime)) {
-			candidateSubkey = i
-			maxTime = subkey.Sig.CreationTime
-		}
-	}
-
-	if candidateSubkey != -1 {
-		subkey := e.Subkeys[candidateSubkey]
-		return Key{e, subkey.PublicKey, subkey.PrivateKey, subkey.Sig}, true
-	}
-
-	// If we don't have any candidate subkeys for encryption and
-	// the primary key doesn't have any usage metadata then we
-	// assume that the primary key is ok. Or, if the primary key is
-	// marked as ok to encrypt to, then we can obviously use it.
-	i := e.primaryIdentity()
-	if !i.SelfSignature.FlagsValid || i.SelfSignature.FlagEncryptCommunications &&
-		e.PrimaryKey.PubKeyAlgo.CanEncrypt() &&
-		!i.SelfSignature.KeyExpired(now) {
-		return Key{e, e.PrimaryKey, e.PrivateKey, i.SelfSignature}, true
-	}
-
-	// This Entity appears to be signing only.
-	return Key{}, false
-}
-
-// signingKey return the best candidate Key for signing a message with this
-// Entity.
-func (e *Entity) signingKey(now time.Time) (Key, bool) {
-	candidateSubkey := -1
-
-	for i, subkey := range e.Subkeys {
-		if subkey.Sig.FlagsValid &&
-			subkey.Sig.FlagSign &&
-			subkey.PublicKey.PubKeyAlgo.CanSign() &&
-			!subkey.Sig.KeyExpired(now) {
-			candidateSubkey = i
-			break
-		}
-	}
-
-	if candidateSubkey != -1 {
-		subkey := e.Subkeys[candidateSubkey]
-		return Key{e, subkey.PublicKey, subkey.PrivateKey, subkey.Sig}, true
-	}
-
-	// If we have no candidate subkey then we assume that it's ok to sign
-	// with the primary key.
-	i := e.primaryIdentity()
-	if !i.SelfSignature.FlagsValid || i.SelfSignature.FlagSign &&
-		!i.SelfSignature.KeyExpired(now) {
-		return Key{e, e.PrimaryKey, e.PrivateKey, i.SelfSignature}, true
-	}
-
-	return Key{}, false
-}
-
-// An EntityList contains one or more Entities.
-type EntityList []*Entity
-
-// KeysById returns the set of keys that have the given key id.
-func (el EntityList) KeysById(id uint64) (keys []Key) {
-	for _, e := range el {
-		if e.PrimaryKey.KeyId == id {
-			var selfSig *packet.Signature
-			for _, ident := range e.Identities {
-				if selfSig == nil {
-					selfSig = ident.SelfSignature
-				} else if ident.SelfSignature.IsPrimaryId != nil && *ident.SelfSignature.IsPrimaryId {
-					selfSig = ident.SelfSignature
-					break
-				}
-			}
-			keys = append(keys, Key{e, e.PrimaryKey, e.PrivateKey, selfSig})
-		}
-
-		for _, subKey := range e.Subkeys {
-			if subKey.PublicKey.KeyId == id {
-				keys = append(keys, Key{e, subKey.PublicKey, subKey.PrivateKey, subKey.Sig})
-			}
-		}
-	}
-	return
-}
-
-// KeysByIdAndUsage returns the set of keys with the given id that also meet
-// the key usage given by requiredUsage.  The requiredUsage is expressed as
-// the bitwise-OR of packet.KeyFlag* values.
-func (el EntityList) KeysByIdUsage(id uint64, requiredUsage byte) (keys []Key) {
-	for _, key := range el.KeysById(id) {
-		if len(key.Entity.Revocations) > 0 {
-			continue
-		}
-
-		if key.SelfSignature.RevocationReason != nil {
-			continue
-		}
-
-		if key.SelfSignature.FlagsValid && requiredUsage != 0 {
-			var usage byte
-			if key.SelfSignature.FlagCertify {
-				usage |= packet.KeyFlagCertify
-			}
-			if key.SelfSignature.FlagSign {
-				usage |= packet.KeyFlagSign
-			}
-			if key.SelfSignature.FlagEncryptCommunications {
-				usage |= packet.KeyFlagEncryptCommunications
-			}
-			if key.SelfSignature.FlagEncryptStorage {
-				usage |= packet.KeyFlagEncryptStorage
-			}
-			if usage&requiredUsage != requiredUsage {
-				continue
-			}
-		}
-
-		keys = append(keys, key)
-	}
-	return
-}
-
-// DecryptionKeys returns all private keys that are valid for decryption.
-func (el EntityList) DecryptionKeys() (keys []Key) {
-	for _, e := range el {
-		for _, subKey := range e.Subkeys {
-			if subKey.PrivateKey != nil && (!subKey.Sig.FlagsValid || subKey.Sig.FlagEncryptStorage || subKey.Sig.FlagEncryptCommunications) {
-				keys = append(keys, Key{e, subKey.PublicKey, subKey.PrivateKey, subKey.Sig})
-			}
-		}
-	}
-	return
-}
-
-// ReadArmoredKeyRing reads one or more public/private keys from an armor keyring file.
-func ReadArmoredKeyRing(r io.Reader) (EntityList, error) {
-	block, err := armor.Decode(r)
-	if err == io.EOF {
-		return nil, errors.InvalidArgumentError("no armored data found")
-	}
-	if err != nil {
-		return nil, err
-	}
-	if block.Type != PublicKeyType && block.Type != PrivateKeyType {
-		return nil, errors.InvalidArgumentError("expected public or private key block, got: " + block.Type)
-	}
-
-	return ReadKeyRing(block.Body)
-}
-
-// ReadKeyRing reads one or more public/private keys. Unsupported keys are
-// ignored as long as at least a single valid key is found.
-func ReadKeyRing(r io.Reader) (el EntityList, err error) {
-	packets := packet.NewReader(r)
-	var lastUnsupportedError error
-
-	for {
-		var e *Entity
-		e, err = ReadEntity(packets)
-		if err != nil {
-			// TODO: warn about skipped unsupported/unreadable keys
-			if _, ok := err.(errors.UnsupportedError); ok {
-				lastUnsupportedError = err
-				err = readToNextPublicKey(packets)
-			} else if _, ok := err.(errors.StructuralError); ok {
-				// Skip unreadable, badly-formatted keys
-				lastUnsupportedError = err
-				err = readToNextPublicKey(packets)
-			}
-			if err == io.EOF {
-				err = nil
-				break
-			}
-			if err != nil {
-				el = nil
-				break
-			}
-		} else {
-			el = append(el, e)
-		}
-	}
-
-	if len(el) == 0 && err == nil {
-		err = lastUnsupportedError
-	}
-	return
-}
-
-// readToNextPublicKey reads packets until the start of the entity and leaves
-// the first packet of the new entity in the Reader.
-func readToNextPublicKey(packets *packet.Reader) (err error) {
-	var p packet.Packet
-	for {
-		p, err = packets.Next()
-		if err == io.EOF {
-			return
-		} else if err != nil {
-			if _, ok := err.(errors.UnsupportedError); ok {
-				err = nil
-				continue
-			}
-			return
-		}
-
-		if pk, ok := p.(*packet.PublicKey); ok && !pk.IsSubkey {
-			packets.Unread(p)
-			return
-		}
-	}
-}
-
-// ReadEntity reads an entity (public key, identities, subkeys etc) from the
-// given Reader.
-func ReadEntity(packets *packet.Reader) (*Entity, error) {
-	e := new(Entity)
-	e.Identities = make(map[string]*Identity)
-
-	p, err := packets.Next()
-	if err != nil {
-		return nil, err
-	}
-
-	var ok bool
-	if e.PrimaryKey, ok = p.(*packet.PublicKey); !ok {
-		if e.PrivateKey, ok = p.(*packet.PrivateKey); !ok {
-			packets.Unread(p)
-			return nil, errors.StructuralError("first packet was not a public/private key")
-		}
-		e.PrimaryKey = &e.PrivateKey.PublicKey
-	}
-
-	if !e.PrimaryKey.PubKeyAlgo.CanSign() {
-		return nil, errors.StructuralError("primary key cannot be used for signatures")
-	}
-
-	var current *Identity
-	var revocations []*packet.Signature
-EachPacket:
-	for {
-		p, err := packets.Next()
-		if err == io.EOF {
-			break
-		} else if err != nil {
-			return nil, err
-		}
-
-		switch pkt := p.(type) {
-		case *packet.UserId:
-			current = new(Identity)
-			current.Name = pkt.Id
-			current.UserId = pkt
-			e.Identities[pkt.Id] = current
-
-			for {
-				p, err = packets.Next()
-				if err == io.EOF {
-					return nil, io.ErrUnexpectedEOF
-				} else if err != nil {
-					return nil, err
-				}
-
-				sig, ok := p.(*packet.Signature)
-				if !ok {
-					return nil, errors.StructuralError("user ID packet not followed by self-signature")
-				}
-
-				if (sig.SigType == packet.SigTypePositiveCert || sig.SigType == packet.SigTypeGenericCert) && sig.IssuerKeyId != nil && *sig.IssuerKeyId == e.PrimaryKey.KeyId {
-					if err = e.PrimaryKey.VerifyUserIdSignature(pkt.Id, e.PrimaryKey, sig); err != nil {
-						return nil, errors.StructuralError("user ID self-signature invalid: " + err.Error())
-					}
-					current.SelfSignature = sig
-					break
-				}
-				current.Signatures = append(current.Signatures, sig)
-			}
-		case *packet.Signature:
-			if pkt.SigType == packet.SigTypeKeyRevocation {
-				revocations = append(revocations, pkt)
-			} else if pkt.SigType == packet.SigTypeDirectSignature {
-				// TODO: RFC4880 5.2.1 permits signatures
-				// directly on keys (eg. to bind additional
-				// revocation keys).
-			} else if current == nil {
-				return nil, errors.StructuralError("signature packet found before user id packet")
-			} else {
-				current.Signatures = append(current.Signatures, pkt)
-			}
-		case *packet.PrivateKey:
-			if pkt.IsSubkey == false {
-				packets.Unread(p)
-				break EachPacket
-			}
-			err = addSubkey(e, packets, &pkt.PublicKey, pkt)
-			if err != nil {
-				return nil, err
-			}
-		case *packet.PublicKey:
-			if pkt.IsSubkey == false {
-				packets.Unread(p)
-				break EachPacket
-			}
-			err = addSubkey(e, packets, pkt, nil)
-			if err != nil {
-				return nil, err
-			}
-		default:
-			// we ignore unknown packets
-		}
-	}
-
-	if len(e.Identities) == 0 {
-		return nil, errors.StructuralError("entity without any identities")
-	}
-
-	for _, revocation := range revocations {
-		err = e.PrimaryKey.VerifyRevocationSignature(revocation)
-		if err == nil {
-			e.Revocations = append(e.Revocations, revocation)
-		} else {
-			// TODO: RFC 4880 5.2.3.15 defines revocation keys.
-			return nil, errors.StructuralError("revocation signature signed by alternate key")
-		}
-	}
-
-	return e, nil
-}
-
-func addSubkey(e *Entity, packets *packet.Reader, pub *packet.PublicKey, priv *packet.PrivateKey) error {
-	var subKey Subkey
-	subKey.PublicKey = pub
-	subKey.PrivateKey = priv
-	p, err := packets.Next()
-	if err == io.EOF {
-		return io.ErrUnexpectedEOF
-	}
-	if err != nil {
-		return errors.StructuralError("subkey signature invalid: " + err.Error())
-	}
-	var ok bool
-	subKey.Sig, ok = p.(*packet.Signature)
-	if !ok {
-		return errors.StructuralError("subkey packet not followed by signature")
-	}
-	if subKey.Sig.SigType != packet.SigTypeSubkeyBinding && subKey.Sig.SigType != packet.SigTypeSubkeyRevocation {
-		return errors.StructuralError("subkey signature with wrong type")
-	}
-	err = e.PrimaryKey.VerifyKeySignature(subKey.PublicKey, subKey.Sig)
-	if err != nil {
-		return errors.StructuralError("subkey signature invalid: " + err.Error())
-	}
-	e.Subkeys = append(e.Subkeys, subKey)
-	return nil
-}
-
-const defaultRSAKeyBits = 2048
-
-// NewEntity returns an Entity that contains a fresh RSA/RSA keypair with a
-// single identity composed of the given full name, comment and email, any of
-// which may be empty but must not contain any of "()<>\x00".
-// If config is nil, sensible defaults will be used.
-func NewEntity(name, comment, email string, config *packet.Config) (*Entity, error) {
-	currentTime := config.Now()
-
-	bits := defaultRSAKeyBits
-	if config != nil && config.RSABits != 0 {
-		bits = config.RSABits
-	}
-
-	uid := packet.NewUserId(name, comment, email)
-	if uid == nil {
-		return nil, errors.InvalidArgumentError("user id field contained invalid characters")
-	}
-	signingPriv, err := rsa.GenerateKey(config.Random(), bits)
-	if err != nil {
-		return nil, err
-	}
-	encryptingPriv, err := rsa.GenerateKey(config.Random(), bits)
-	if err != nil {
-		return nil, err
-	}
-
-	e := &Entity{
-		PrimaryKey: packet.NewRSAPublicKey(currentTime, &signingPriv.PublicKey),
-		PrivateKey: packet.NewRSAPrivateKey(currentTime, signingPriv),
-		Identities: make(map[string]*Identity),
-	}
-	isPrimaryId := true
-	e.Identities[uid.Id] = &Identity{
-		Name:   uid.Id,
-		UserId: uid,
-		SelfSignature: &packet.Signature{
-			CreationTime: currentTime,
-			SigType:      packet.SigTypePositiveCert,
-			PubKeyAlgo:   packet.PubKeyAlgoRSA,
-			Hash:         config.Hash(),
-			IsPrimaryId:  &isPrimaryId,
-			FlagsValid:   true,
-			FlagSign:     true,
-			FlagCertify:  true,
-			IssuerKeyId:  &e.PrimaryKey.KeyId,
-		},
-	}
-
-	// If the user passes in a DefaultHash via packet.Config,
-	// set the PreferredHash for the SelfSignature.
-	if config != nil && config.DefaultHash != 0 {
-		e.Identities[uid.Id].SelfSignature.PreferredHash = []uint8{hashToHashId(config.DefaultHash)}
-	}
-
-	// Likewise for DefaultCipher.
-	if config != nil && config.DefaultCipher != 0 {
-		e.Identities[uid.Id].SelfSignature.PreferredSymmetric = []uint8{uint8(config.DefaultCipher)}
-	}
-
-	e.Subkeys = make([]Subkey, 1)
-	e.Subkeys[0] = Subkey{
-		PublicKey:  packet.NewRSAPublicKey(currentTime, &encryptingPriv.PublicKey),
-		PrivateKey: packet.NewRSAPrivateKey(currentTime, encryptingPriv),
-		Sig: &packet.Signature{
-			CreationTime:              currentTime,
-			SigType:                   packet.SigTypeSubkeyBinding,
-			PubKeyAlgo:                packet.PubKeyAlgoRSA,
-			Hash:                      config.Hash(),
-			FlagsValid:                true,
-			FlagEncryptStorage:        true,
-			FlagEncryptCommunications: true,
-			IssuerKeyId:               &e.PrimaryKey.KeyId,
-		},
-	}
-	e.Subkeys[0].PublicKey.IsSubkey = true
-	e.Subkeys[0].PrivateKey.IsSubkey = true
-
-	return e, nil
-}
-
-// SerializePrivate serializes an Entity, including private key material, to
-// the given Writer. For now, it must only be used on an Entity returned from
-// NewEntity.
-// If config is nil, sensible defaults will be used.
-func (e *Entity) SerializePrivate(w io.Writer, config *packet.Config) (err error) {
-	err = e.PrivateKey.Serialize(w)
-	if err != nil {
-		return
-	}
-	for _, ident := range e.Identities {
-		err = ident.UserId.Serialize(w)
-		if err != nil {
-			return
-		}
-		err = ident.SelfSignature.SignUserId(ident.UserId.Id, e.PrimaryKey, e.PrivateKey, config)
-		if err != nil {
-			return
-		}
-		err = ident.SelfSignature.Serialize(w)
-		if err != nil {
-			return
-		}
-	}
-	for _, subkey := range e.Subkeys {
-		err = subkey.PrivateKey.Serialize(w)
-		if err != nil {
-			return
-		}
-		err = subkey.Sig.SignKey(subkey.PublicKey, e.PrivateKey, config)
-		if err != nil {
-			return
-		}
-		err = subkey.Sig.Serialize(w)
-		if err != nil {
-			return
-		}
-	}
-	return nil
-}
-
-// Serialize writes the public part of the given Entity to w. (No private
-// key material will be output).
-func (e *Entity) Serialize(w io.Writer) error {
-	err := e.PrimaryKey.Serialize(w)
-	if err != nil {
-		return err
-	}
-	for _, ident := range e.Identities {
-		err = ident.UserId.Serialize(w)
-		if err != nil {
-			return err
-		}
-		err = ident.SelfSignature.Serialize(w)
-		if err != nil {
-			return err
-		}
-		for _, sig := range ident.Signatures {
-			err = sig.Serialize(w)
-			if err != nil {
-				return err
-			}
-		}
-	}
-	for _, subkey := range e.Subkeys {
-		err = subkey.PublicKey.Serialize(w)
-		if err != nil {
-			return err
-		}
-		err = subkey.Sig.Serialize(w)
-		if err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-// SignIdentity adds a signature to e, from signer, attesting that identity is
-// associated with e. The provided identity must already be an element of
-// e.Identities and the private key of signer must have been decrypted if
-// necessary.
-// If config is nil, sensible defaults will be used.
-func (e *Entity) SignIdentity(identity string, signer *Entity, config *packet.Config) error {
-	if signer.PrivateKey == nil {
-		return errors.InvalidArgumentError("signing Entity must have a private key")
-	}
-	if signer.PrivateKey.Encrypted {
-		return errors.InvalidArgumentError("signing Entity's private key must be decrypted")
-	}
-	ident, ok := e.Identities[identity]
-	if !ok {
-		return errors.InvalidArgumentError("given identity string not found in Entity")
-	}
-
-	sig := &packet.Signature{
-		SigType:      packet.SigTypeGenericCert,
-		PubKeyAlgo:   signer.PrivateKey.PubKeyAlgo,
-		Hash:         config.Hash(),
-		CreationTime: config.Now(),
-		IssuerKeyId:  &signer.PrivateKey.KeyId,
-	}
-	if err := sig.SignUserId(identity, e.PrimaryKey, signer.PrivateKey, config); err != nil {
-		return err
-	}
-	ident.Signatures = append(ident.Signatures, sig)
-	return nil
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/compressed.go b/vendor/golang.org/x/crypto/openpgp/packet/compressed.go
deleted file mode 100644
index e8f0b5caa7..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/compressed.go
+++ /dev/null
@@ -1,123 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"compress/bzip2"
-	"compress/flate"
-	"compress/zlib"
-	"golang.org/x/crypto/openpgp/errors"
-	"io"
-	"strconv"
-)
-
-// Compressed represents a compressed OpenPGP packet. The decompressed contents
-// will contain more OpenPGP packets. See RFC 4880, section 5.6.
-type Compressed struct {
-	Body io.Reader
-}
-
-const (
-	NoCompression      = flate.NoCompression
-	BestSpeed          = flate.BestSpeed
-	BestCompression    = flate.BestCompression
-	DefaultCompression = flate.DefaultCompression
-)
-
-// CompressionConfig contains compressor configuration settings.
-type CompressionConfig struct {
-	// Level is the compression level to use. It must be set to
-	// between -1 and 9, with -1 causing the compressor to use the
-	// default compression level, 0 causing the compressor to use
-	// no compression and 1 to 9 representing increasing (better,
-	// slower) compression levels. If Level is less than -1 or
-	// more then 9, a non-nil error will be returned during
-	// encryption. See the constants above for convenient common
-	// settings for Level.
-	Level int
-}
-
-func (c *Compressed) parse(r io.Reader) error {
-	var buf [1]byte
-	_, err := readFull(r, buf[:])
-	if err != nil {
-		return err
-	}
-
-	switch buf[0] {
-	case 1:
-		c.Body = flate.NewReader(r)
-	case 2:
-		c.Body, err = zlib.NewReader(r)
-	case 3:
-		c.Body = bzip2.NewReader(r)
-	default:
-		err = errors.UnsupportedError("unknown compression algorithm: " + strconv.Itoa(int(buf[0])))
-	}
-
-	return err
-}
-
-// compressedWriterCloser represents the serialized compression stream
-// header and the compressor. Its Close() method ensures that both the
-// compressor and serialized stream header are closed. Its Write()
-// method writes to the compressor.
-type compressedWriteCloser struct {
-	sh io.Closer      // Stream Header
-	c  io.WriteCloser // Compressor
-}
-
-func (cwc compressedWriteCloser) Write(p []byte) (int, error) {
-	return cwc.c.Write(p)
-}
-
-func (cwc compressedWriteCloser) Close() (err error) {
-	err = cwc.c.Close()
-	if err != nil {
-		return err
-	}
-
-	return cwc.sh.Close()
-}
-
-// SerializeCompressed serializes a compressed data packet to w and
-// returns a WriteCloser to which the literal data packets themselves
-// can be written and which MUST be closed on completion. If cc is
-// nil, sensible defaults will be used to configure the compression
-// algorithm.
-func SerializeCompressed(w io.WriteCloser, algo CompressionAlgo, cc *CompressionConfig) (literaldata io.WriteCloser, err error) {
-	compressed, err := serializeStreamHeader(w, packetTypeCompressed)
-	if err != nil {
-		return
-	}
-
-	_, err = compressed.Write([]byte{uint8(algo)})
-	if err != nil {
-		return
-	}
-
-	level := DefaultCompression
-	if cc != nil {
-		level = cc.Level
-	}
-
-	var compressor io.WriteCloser
-	switch algo {
-	case CompressionZIP:
-		compressor, err = flate.NewWriter(compressed, level)
-	case CompressionZLIB:
-		compressor, err = zlib.NewWriterLevel(compressed, level)
-	default:
-		s := strconv.Itoa(int(algo))
-		err = errors.UnsupportedError("Unsupported compression algorithm: " + s)
-	}
-	if err != nil {
-		return
-	}
-
-	literaldata = compressedWriteCloser{compressed, compressor}
-
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/config.go b/vendor/golang.org/x/crypto/openpgp/packet/config.go
deleted file mode 100644
index c76eecc963..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/config.go
+++ /dev/null
@@ -1,91 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto"
-	"crypto/rand"
-	"io"
-	"time"
-)
-
-// Config collects a number of parameters along with sensible defaults.
-// A nil *Config is valid and results in all default values.
-type Config struct {
-	// Rand provides the source of entropy.
-	// If nil, the crypto/rand Reader is used.
-	Rand io.Reader
-	// DefaultHash is the default hash function to be used.
-	// If zero, SHA-256 is used.
-	DefaultHash crypto.Hash
-	// DefaultCipher is the cipher to be used.
-	// If zero, AES-128 is used.
-	DefaultCipher CipherFunction
-	// Time returns the current time as the number of seconds since the
-	// epoch. If Time is nil, time.Now is used.
-	Time func() time.Time
-	// DefaultCompressionAlgo is the compression algorithm to be
-	// applied to the plaintext before encryption. If zero, no
-	// compression is done.
-	DefaultCompressionAlgo CompressionAlgo
-	// CompressionConfig configures the compression settings.
-	CompressionConfig *CompressionConfig
-	// S2KCount is only used for symmetric encryption. It
-	// determines the strength of the passphrase stretching when
-	// the said passphrase is hashed to produce a key. S2KCount
-	// should be between 1024 and 65011712, inclusive. If Config
-	// is nil or S2KCount is 0, the value 65536 used. Not all
-	// values in the above range can be represented. S2KCount will
-	// be rounded up to the next representable value if it cannot
-	// be encoded exactly. When set, it is strongly encrouraged to
-	// use a value that is at least 65536. See RFC 4880 Section
-	// 3.7.1.3.
-	S2KCount int
-	// RSABits is the number of bits in new RSA keys made with NewEntity.
-	// If zero, then 2048 bit keys are created.
-	RSABits int
-}
-
-func (c *Config) Random() io.Reader {
-	if c == nil || c.Rand == nil {
-		return rand.Reader
-	}
-	return c.Rand
-}
-
-func (c *Config) Hash() crypto.Hash {
-	if c == nil || uint(c.DefaultHash) == 0 {
-		return crypto.SHA256
-	}
-	return c.DefaultHash
-}
-
-func (c *Config) Cipher() CipherFunction {
-	if c == nil || uint8(c.DefaultCipher) == 0 {
-		return CipherAES128
-	}
-	return c.DefaultCipher
-}
-
-func (c *Config) Now() time.Time {
-	if c == nil || c.Time == nil {
-		return time.Now()
-	}
-	return c.Time()
-}
-
-func (c *Config) Compression() CompressionAlgo {
-	if c == nil {
-		return CompressionNone
-	}
-	return c.DefaultCompressionAlgo
-}
-
-func (c *Config) PasswordHashIterations() int {
-	if c == nil || c.S2KCount == 0 {
-		return 0
-	}
-	return c.S2KCount
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/encrypted_key.go b/vendor/golang.org/x/crypto/openpgp/packet/encrypted_key.go
deleted file mode 100644
index 02b372cf37..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/encrypted_key.go
+++ /dev/null
@@ -1,206 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto/rsa"
-	"encoding/binary"
-	"io"
-	"math/big"
-	"strconv"
-
-	"golang.org/x/crypto/openpgp/elgamal"
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-const encryptedKeyVersion = 3
-
-// EncryptedKey represents a public-key encrypted session key. See RFC 4880,
-// section 5.1.
-type EncryptedKey struct {
-	KeyId      uint64
-	Algo       PublicKeyAlgorithm
-	CipherFunc CipherFunction // only valid after a successful Decrypt
-	Key        []byte         // only valid after a successful Decrypt
-
-	encryptedMPI1, encryptedMPI2 parsedMPI
-}
-
-func (e *EncryptedKey) parse(r io.Reader) (err error) {
-	var buf [10]byte
-	_, err = readFull(r, buf[:])
-	if err != nil {
-		return
-	}
-	if buf[0] != encryptedKeyVersion {
-		return errors.UnsupportedError("unknown EncryptedKey version " + strconv.Itoa(int(buf[0])))
-	}
-	e.KeyId = binary.BigEndian.Uint64(buf[1:9])
-	e.Algo = PublicKeyAlgorithm(buf[9])
-	switch e.Algo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly:
-		e.encryptedMPI1.bytes, e.encryptedMPI1.bitLength, err = readMPI(r)
-		if err != nil {
-			return
-		}
-	case PubKeyAlgoElGamal:
-		e.encryptedMPI1.bytes, e.encryptedMPI1.bitLength, err = readMPI(r)
-		if err != nil {
-			return
-		}
-		e.encryptedMPI2.bytes, e.encryptedMPI2.bitLength, err = readMPI(r)
-		if err != nil {
-			return
-		}
-	}
-	_, err = consumeAll(r)
-	return
-}
-
-func checksumKeyMaterial(key []byte) uint16 {
-	var checksum uint16
-	for _, v := range key {
-		checksum += uint16(v)
-	}
-	return checksum
-}
-
-// Decrypt decrypts an encrypted session key with the given private key. The
-// private key must have been decrypted first.
-// If config is nil, sensible defaults will be used.
-func (e *EncryptedKey) Decrypt(priv *PrivateKey, config *Config) error {
-	var err error
-	var b []byte
-
-	// TODO(agl): use session key decryption routines here to avoid
-	// padding oracle attacks.
-	switch priv.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly:
-		k := priv.PrivateKey.(*rsa.PrivateKey)
-		b, err = rsa.DecryptPKCS1v15(config.Random(), k, padToKeySize(&k.PublicKey, e.encryptedMPI1.bytes))
-	case PubKeyAlgoElGamal:
-		c1 := new(big.Int).SetBytes(e.encryptedMPI1.bytes)
-		c2 := new(big.Int).SetBytes(e.encryptedMPI2.bytes)
-		b, err = elgamal.Decrypt(priv.PrivateKey.(*elgamal.PrivateKey), c1, c2)
-	default:
-		err = errors.InvalidArgumentError("cannot decrypted encrypted session key with private key of type " + strconv.Itoa(int(priv.PubKeyAlgo)))
-	}
-
-	if err != nil {
-		return err
-	}
-
-	e.CipherFunc = CipherFunction(b[0])
-	e.Key = b[1 : len(b)-2]
-	expectedChecksum := uint16(b[len(b)-2])<<8 | uint16(b[len(b)-1])
-	checksum := checksumKeyMaterial(e.Key)
-	if checksum != expectedChecksum {
-		return errors.StructuralError("EncryptedKey checksum incorrect")
-	}
-
-	return nil
-}
-
-// Serialize writes the encrypted key packet, e, to w.
-func (e *EncryptedKey) Serialize(w io.Writer) error {
-	var mpiLen int
-	switch e.Algo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly:
-		mpiLen = 2 + len(e.encryptedMPI1.bytes)
-	case PubKeyAlgoElGamal:
-		mpiLen = 2 + len(e.encryptedMPI1.bytes) + 2 + len(e.encryptedMPI2.bytes)
-	default:
-		return errors.InvalidArgumentError("don't know how to serialize encrypted key type " + strconv.Itoa(int(e.Algo)))
-	}
-
-	serializeHeader(w, packetTypeEncryptedKey, 1 /* version */ +8 /* key id */ +1 /* algo */ +mpiLen)
-
-	w.Write([]byte{encryptedKeyVersion})
-	binary.Write(w, binary.BigEndian, e.KeyId)
-	w.Write([]byte{byte(e.Algo)})
-
-	switch e.Algo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly:
-		writeMPIs(w, e.encryptedMPI1)
-	case PubKeyAlgoElGamal:
-		writeMPIs(w, e.encryptedMPI1, e.encryptedMPI2)
-	default:
-		panic("internal error")
-	}
-
-	return nil
-}
-
-// SerializeEncryptedKey serializes an encrypted key packet to w that contains
-// key, encrypted to pub.
-// If config is nil, sensible defaults will be used.
-func SerializeEncryptedKey(w io.Writer, pub *PublicKey, cipherFunc CipherFunction, key []byte, config *Config) error {
-	var buf [10]byte
-	buf[0] = encryptedKeyVersion
-	binary.BigEndian.PutUint64(buf[1:9], pub.KeyId)
-	buf[9] = byte(pub.PubKeyAlgo)
-
-	keyBlock := make([]byte, 1 /* cipher type */ +len(key)+2 /* checksum */)
-	keyBlock[0] = byte(cipherFunc)
-	copy(keyBlock[1:], key)
-	checksum := checksumKeyMaterial(key)
-	keyBlock[1+len(key)] = byte(checksum >> 8)
-	keyBlock[1+len(key)+1] = byte(checksum)
-
-	switch pub.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly:
-		return serializeEncryptedKeyRSA(w, config.Random(), buf, pub.PublicKey.(*rsa.PublicKey), keyBlock)
-	case PubKeyAlgoElGamal:
-		return serializeEncryptedKeyElGamal(w, config.Random(), buf, pub.PublicKey.(*elgamal.PublicKey), keyBlock)
-	case PubKeyAlgoDSA, PubKeyAlgoRSASignOnly:
-		return errors.InvalidArgumentError("cannot encrypt to public key of type " + strconv.Itoa(int(pub.PubKeyAlgo)))
-	}
-
-	return errors.UnsupportedError("encrypting a key to public key of type " + strconv.Itoa(int(pub.PubKeyAlgo)))
-}
-
-func serializeEncryptedKeyRSA(w io.Writer, rand io.Reader, header [10]byte, pub *rsa.PublicKey, keyBlock []byte) error {
-	cipherText, err := rsa.EncryptPKCS1v15(rand, pub, keyBlock)
-	if err != nil {
-		return errors.InvalidArgumentError("RSA encryption failed: " + err.Error())
-	}
-
-	packetLen := 10 /* header length */ + 2 /* mpi size */ + len(cipherText)
-
-	err = serializeHeader(w, packetTypeEncryptedKey, packetLen)
-	if err != nil {
-		return err
-	}
-	_, err = w.Write(header[:])
-	if err != nil {
-		return err
-	}
-	return writeMPI(w, 8*uint16(len(cipherText)), cipherText)
-}
-
-func serializeEncryptedKeyElGamal(w io.Writer, rand io.Reader, header [10]byte, pub *elgamal.PublicKey, keyBlock []byte) error {
-	c1, c2, err := elgamal.Encrypt(rand, pub, keyBlock)
-	if err != nil {
-		return errors.InvalidArgumentError("ElGamal encryption failed: " + err.Error())
-	}
-
-	packetLen := 10 /* header length */
-	packetLen += 2 /* mpi size */ + (c1.BitLen()+7)/8
-	packetLen += 2 /* mpi size */ + (c2.BitLen()+7)/8
-
-	err = serializeHeader(w, packetTypeEncryptedKey, packetLen)
-	if err != nil {
-		return err
-	}
-	_, err = w.Write(header[:])
-	if err != nil {
-		return err
-	}
-	err = writeBig(w, c1)
-	if err != nil {
-		return err
-	}
-	return writeBig(w, c2)
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/literal.go b/vendor/golang.org/x/crypto/openpgp/packet/literal.go
deleted file mode 100644
index 1a9ec6e51e..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/literal.go
+++ /dev/null
@@ -1,89 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"encoding/binary"
-	"io"
-)
-
-// LiteralData represents an encrypted file. See RFC 4880, section 5.9.
-type LiteralData struct {
-	IsBinary bool
-	FileName string
-	Time     uint32 // Unix epoch time. Either creation time or modification time. 0 means undefined.
-	Body     io.Reader
-}
-
-// ForEyesOnly returns whether the contents of the LiteralData have been marked
-// as especially sensitive.
-func (l *LiteralData) ForEyesOnly() bool {
-	return l.FileName == "_CONSOLE"
-}
-
-func (l *LiteralData) parse(r io.Reader) (err error) {
-	var buf [256]byte
-
-	_, err = readFull(r, buf[:2])
-	if err != nil {
-		return
-	}
-
-	l.IsBinary = buf[0] == 'b'
-	fileNameLen := int(buf[1])
-
-	_, err = readFull(r, buf[:fileNameLen])
-	if err != nil {
-		return
-	}
-
-	l.FileName = string(buf[:fileNameLen])
-
-	_, err = readFull(r, buf[:4])
-	if err != nil {
-		return
-	}
-
-	l.Time = binary.BigEndian.Uint32(buf[:4])
-	l.Body = r
-	return
-}
-
-// SerializeLiteral serializes a literal data packet to w and returns a
-// WriteCloser to which the data itself can be written and which MUST be closed
-// on completion. The fileName is truncated to 255 bytes.
-func SerializeLiteral(w io.WriteCloser, isBinary bool, fileName string, time uint32) (plaintext io.WriteCloser, err error) {
-	var buf [4]byte
-	buf[0] = 't'
-	if isBinary {
-		buf[0] = 'b'
-	}
-	if len(fileName) > 255 {
-		fileName = fileName[:255]
-	}
-	buf[1] = byte(len(fileName))
-
-	inner, err := serializeStreamHeader(w, packetTypeLiteralData)
-	if err != nil {
-		return
-	}
-
-	_, err = inner.Write(buf[:2])
-	if err != nil {
-		return
-	}
-	_, err = inner.Write([]byte(fileName))
-	if err != nil {
-		return
-	}
-	binary.BigEndian.PutUint32(buf[:], time)
-	_, err = inner.Write(buf[:])
-	if err != nil {
-		return
-	}
-
-	plaintext = inner
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/ocfb.go b/vendor/golang.org/x/crypto/openpgp/packet/ocfb.go
deleted file mode 100644
index ce2a33a547..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/ocfb.go
+++ /dev/null
@@ -1,143 +0,0 @@
-// Copyright 2010 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// OpenPGP CFB Mode. http://tools.ietf.org/html/rfc4880#section-13.9
-
-package packet
-
-import (
-	"crypto/cipher"
-)
-
-type ocfbEncrypter struct {
-	b       cipher.Block
-	fre     []byte
-	outUsed int
-}
-
-// An OCFBResyncOption determines if the "resynchronization step" of OCFB is
-// performed.
-type OCFBResyncOption bool
-
-const (
-	OCFBResync   OCFBResyncOption = true
-	OCFBNoResync OCFBResyncOption = false
-)
-
-// NewOCFBEncrypter returns a cipher.Stream which encrypts data with OpenPGP's
-// cipher feedback mode using the given cipher.Block, and an initial amount of
-// ciphertext.  randData must be random bytes and be the same length as the
-// cipher.Block's block size. Resync determines if the "resynchronization step"
-// from RFC 4880, 13.9 step 7 is performed. Different parts of OpenPGP vary on
-// this point.
-func NewOCFBEncrypter(block cipher.Block, randData []byte, resync OCFBResyncOption) (cipher.Stream, []byte) {
-	blockSize := block.BlockSize()
-	if len(randData) != blockSize {
-		return nil, nil
-	}
-
-	x := &ocfbEncrypter{
-		b:       block,
-		fre:     make([]byte, blockSize),
-		outUsed: 0,
-	}
-	prefix := make([]byte, blockSize+2)
-
-	block.Encrypt(x.fre, x.fre)
-	for i := 0; i < blockSize; i++ {
-		prefix[i] = randData[i] ^ x.fre[i]
-	}
-
-	block.Encrypt(x.fre, prefix[:blockSize])
-	prefix[blockSize] = x.fre[0] ^ randData[blockSize-2]
-	prefix[blockSize+1] = x.fre[1] ^ randData[blockSize-1]
-
-	if resync {
-		block.Encrypt(x.fre, prefix[2:])
-	} else {
-		x.fre[0] = prefix[blockSize]
-		x.fre[1] = prefix[blockSize+1]
-		x.outUsed = 2
-	}
-	return x, prefix
-}
-
-func (x *ocfbEncrypter) XORKeyStream(dst, src []byte) {
-	for i := 0; i < len(src); i++ {
-		if x.outUsed == len(x.fre) {
-			x.b.Encrypt(x.fre, x.fre)
-			x.outUsed = 0
-		}
-
-		x.fre[x.outUsed] ^= src[i]
-		dst[i] = x.fre[x.outUsed]
-		x.outUsed++
-	}
-}
-
-type ocfbDecrypter struct {
-	b       cipher.Block
-	fre     []byte
-	outUsed int
-}
-
-// NewOCFBDecrypter returns a cipher.Stream which decrypts data with OpenPGP's
-// cipher feedback mode using the given cipher.Block. Prefix must be the first
-// blockSize + 2 bytes of the ciphertext, where blockSize is the cipher.Block's
-// block size. If an incorrect key is detected then nil is returned. On
-// successful exit, blockSize+2 bytes of decrypted data are written into
-// prefix. Resync determines if the "resynchronization step" from RFC 4880,
-// 13.9 step 7 is performed. Different parts of OpenPGP vary on this point.
-func NewOCFBDecrypter(block cipher.Block, prefix []byte, resync OCFBResyncOption) cipher.Stream {
-	blockSize := block.BlockSize()
-	if len(prefix) != blockSize+2 {
-		return nil
-	}
-
-	x := &ocfbDecrypter{
-		b:       block,
-		fre:     make([]byte, blockSize),
-		outUsed: 0,
-	}
-	prefixCopy := make([]byte, len(prefix))
-	copy(prefixCopy, prefix)
-
-	block.Encrypt(x.fre, x.fre)
-	for i := 0; i < blockSize; i++ {
-		prefixCopy[i] ^= x.fre[i]
-	}
-
-	block.Encrypt(x.fre, prefix[:blockSize])
-	prefixCopy[blockSize] ^= x.fre[0]
-	prefixCopy[blockSize+1] ^= x.fre[1]
-
-	if prefixCopy[blockSize-2] != prefixCopy[blockSize] ||
-		prefixCopy[blockSize-1] != prefixCopy[blockSize+1] {
-		return nil
-	}
-
-	if resync {
-		block.Encrypt(x.fre, prefix[2:])
-	} else {
-		x.fre[0] = prefix[blockSize]
-		x.fre[1] = prefix[blockSize+1]
-		x.outUsed = 2
-	}
-	copy(prefix, prefixCopy)
-	return x
-}
-
-func (x *ocfbDecrypter) XORKeyStream(dst, src []byte) {
-	for i := 0; i < len(src); i++ {
-		if x.outUsed == len(x.fre) {
-			x.b.Encrypt(x.fre, x.fre)
-			x.outUsed = 0
-		}
-
-		c := src[i]
-		dst[i] = x.fre[x.outUsed] ^ src[i]
-		x.fre[x.outUsed] = c
-		x.outUsed++
-	}
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/one_pass_signature.go b/vendor/golang.org/x/crypto/openpgp/packet/one_pass_signature.go
deleted file mode 100644
index 1713503395..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/one_pass_signature.go
+++ /dev/null
@@ -1,73 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto"
-	"encoding/binary"
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/s2k"
-	"io"
-	"strconv"
-)
-
-// OnePassSignature represents a one-pass signature packet. See RFC 4880,
-// section 5.4.
-type OnePassSignature struct {
-	SigType    SignatureType
-	Hash       crypto.Hash
-	PubKeyAlgo PublicKeyAlgorithm
-	KeyId      uint64
-	IsLast     bool
-}
-
-const onePassSignatureVersion = 3
-
-func (ops *OnePassSignature) parse(r io.Reader) (err error) {
-	var buf [13]byte
-
-	_, err = readFull(r, buf[:])
-	if err != nil {
-		return
-	}
-	if buf[0] != onePassSignatureVersion {
-		err = errors.UnsupportedError("one-pass-signature packet version " + strconv.Itoa(int(buf[0])))
-	}
-
-	var ok bool
-	ops.Hash, ok = s2k.HashIdToHash(buf[2])
-	if !ok {
-		return errors.UnsupportedError("hash function: " + strconv.Itoa(int(buf[2])))
-	}
-
-	ops.SigType = SignatureType(buf[1])
-	ops.PubKeyAlgo = PublicKeyAlgorithm(buf[3])
-	ops.KeyId = binary.BigEndian.Uint64(buf[4:12])
-	ops.IsLast = buf[12] != 0
-	return
-}
-
-// Serialize marshals the given OnePassSignature to w.
-func (ops *OnePassSignature) Serialize(w io.Writer) error {
-	var buf [13]byte
-	buf[0] = onePassSignatureVersion
-	buf[1] = uint8(ops.SigType)
-	var ok bool
-	buf[2], ok = s2k.HashToHashId(ops.Hash)
-	if !ok {
-		return errors.UnsupportedError("hash type: " + strconv.Itoa(int(ops.Hash)))
-	}
-	buf[3] = uint8(ops.PubKeyAlgo)
-	binary.BigEndian.PutUint64(buf[4:12], ops.KeyId)
-	if ops.IsLast {
-		buf[12] = 1
-	}
-
-	if err := serializeHeader(w, packetTypeOnePassSignature, len(buf)); err != nil {
-		return err
-	}
-	_, err := w.Write(buf[:])
-	return err
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/opaque.go b/vendor/golang.org/x/crypto/openpgp/packet/opaque.go
deleted file mode 100644
index 456d807f25..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/opaque.go
+++ /dev/null
@@ -1,162 +0,0 @@
-// Copyright 2012 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"io"
-	"io/ioutil"
-
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-// OpaquePacket represents an OpenPGP packet as raw, unparsed data. This is
-// useful for splitting and storing the original packet contents separately,
-// handling unsupported packet types or accessing parts of the packet not yet
-// implemented by this package.
-type OpaquePacket struct {
-	// Packet type
-	Tag uint8
-	// Reason why the packet was parsed opaquely
-	Reason error
-	// Binary contents of the packet data
-	Contents []byte
-}
-
-func (op *OpaquePacket) parse(r io.Reader) (err error) {
-	op.Contents, err = ioutil.ReadAll(r)
-	return
-}
-
-// Serialize marshals the packet to a writer in its original form, including
-// the packet header.
-func (op *OpaquePacket) Serialize(w io.Writer) (err error) {
-	err = serializeHeader(w, packetType(op.Tag), len(op.Contents))
-	if err == nil {
-		_, err = w.Write(op.Contents)
-	}
-	return
-}
-
-// Parse attempts to parse the opaque contents into a structure supported by
-// this package. If the packet is not known then the result will be another
-// OpaquePacket.
-func (op *OpaquePacket) Parse() (p Packet, err error) {
-	hdr := bytes.NewBuffer(nil)
-	err = serializeHeader(hdr, packetType(op.Tag), len(op.Contents))
-	if err != nil {
-		op.Reason = err
-		return op, err
-	}
-	p, err = Read(io.MultiReader(hdr, bytes.NewBuffer(op.Contents)))
-	if err != nil {
-		op.Reason = err
-		p = op
-	}
-	return
-}
-
-// OpaqueReader reads OpaquePackets from an io.Reader.
-type OpaqueReader struct {
-	r io.Reader
-}
-
-func NewOpaqueReader(r io.Reader) *OpaqueReader {
-	return &OpaqueReader{r: r}
-}
-
-// Read the next OpaquePacket.
-func (or *OpaqueReader) Next() (op *OpaquePacket, err error) {
-	tag, _, contents, err := readHeader(or.r)
-	if err != nil {
-		return
-	}
-	op = &OpaquePacket{Tag: uint8(tag), Reason: err}
-	err = op.parse(contents)
-	if err != nil {
-		consumeAll(contents)
-	}
-	return
-}
-
-// OpaqueSubpacket represents an unparsed OpenPGP subpacket,
-// as found in signature and user attribute packets.
-type OpaqueSubpacket struct {
-	SubType  uint8
-	Contents []byte
-}
-
-// OpaqueSubpackets extracts opaque, unparsed OpenPGP subpackets from
-// their byte representation.
-func OpaqueSubpackets(contents []byte) (result []*OpaqueSubpacket, err error) {
-	var (
-		subHeaderLen int
-		subPacket    *OpaqueSubpacket
-	)
-	for len(contents) > 0 {
-		subHeaderLen, subPacket, err = nextSubpacket(contents)
-		if err != nil {
-			break
-		}
-		result = append(result, subPacket)
-		contents = contents[subHeaderLen+len(subPacket.Contents):]
-	}
-	return
-}
-
-func nextSubpacket(contents []byte) (subHeaderLen int, subPacket *OpaqueSubpacket, err error) {
-	// RFC 4880, section 5.2.3.1
-	var subLen uint32
-	if len(contents) < 1 {
-		goto Truncated
-	}
-	subPacket = &OpaqueSubpacket{}
-	switch {
-	case contents[0] < 192:
-		subHeaderLen = 2 // 1 length byte, 1 subtype byte
-		if len(contents) < subHeaderLen {
-			goto Truncated
-		}
-		subLen = uint32(contents[0])
-		contents = contents[1:]
-	case contents[0] < 255:
-		subHeaderLen = 3 // 2 length bytes, 1 subtype
-		if len(contents) < subHeaderLen {
-			goto Truncated
-		}
-		subLen = uint32(contents[0]-192)<<8 + uint32(contents[1]) + 192
-		contents = contents[2:]
-	default:
-		subHeaderLen = 6 // 5 length bytes, 1 subtype
-		if len(contents) < subHeaderLen {
-			goto Truncated
-		}
-		subLen = uint32(contents[1])<<24 |
-			uint32(contents[2])<<16 |
-			uint32(contents[3])<<8 |
-			uint32(contents[4])
-		contents = contents[5:]
-	}
-	if subLen > uint32(len(contents)) || subLen == 0 {
-		goto Truncated
-	}
-	subPacket.SubType = contents[0]
-	subPacket.Contents = contents[1:subLen]
-	return
-Truncated:
-	err = errors.StructuralError("subpacket truncated")
-	return
-}
-
-func (osp *OpaqueSubpacket) Serialize(w io.Writer) (err error) {
-	buf := make([]byte, 6)
-	n := serializeSubpacketLength(buf, len(osp.Contents)+1)
-	buf[n] = osp.SubType
-	if _, err = w.Write(buf[:n+1]); err != nil {
-		return
-	}
-	_, err = w.Write(osp.Contents)
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/packet.go b/vendor/golang.org/x/crypto/openpgp/packet/packet.go
deleted file mode 100644
index 625bb5ac80..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/packet.go
+++ /dev/null
@@ -1,549 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package packet implements parsing and serialization of OpenPGP packets, as
-// specified in RFC 4880.
-package packet // import "golang.org/x/crypto/openpgp/packet"
-
-import (
-	"bufio"
-	"crypto/aes"
-	"crypto/cipher"
-	"crypto/des"
-	"crypto/rsa"
-	"io"
-	"math/big"
-
-	"golang.org/x/crypto/cast5"
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-// readFull is the same as io.ReadFull except that reading zero bytes returns
-// ErrUnexpectedEOF rather than EOF.
-func readFull(r io.Reader, buf []byte) (n int, err error) {
-	n, err = io.ReadFull(r, buf)
-	if err == io.EOF {
-		err = io.ErrUnexpectedEOF
-	}
-	return
-}
-
-// readLength reads an OpenPGP length from r. See RFC 4880, section 4.2.2.
-func readLength(r io.Reader) (length int64, isPartial bool, err error) {
-	var buf [4]byte
-	_, err = readFull(r, buf[:1])
-	if err != nil {
-		return
-	}
-	switch {
-	case buf[0] < 192:
-		length = int64(buf[0])
-	case buf[0] < 224:
-		length = int64(buf[0]-192) << 8
-		_, err = readFull(r, buf[0:1])
-		if err != nil {
-			return
-		}
-		length += int64(buf[0]) + 192
-	case buf[0] < 255:
-		length = int64(1) << (buf[0] & 0x1f)
-		isPartial = true
-	default:
-		_, err = readFull(r, buf[0:4])
-		if err != nil {
-			return
-		}
-		length = int64(buf[0])<<24 |
-			int64(buf[1])<<16 |
-			int64(buf[2])<<8 |
-			int64(buf[3])
-	}
-	return
-}
-
-// partialLengthReader wraps an io.Reader and handles OpenPGP partial lengths.
-// The continuation lengths are parsed and removed from the stream and EOF is
-// returned at the end of the packet. See RFC 4880, section 4.2.2.4.
-type partialLengthReader struct {
-	r         io.Reader
-	remaining int64
-	isPartial bool
-}
-
-func (r *partialLengthReader) Read(p []byte) (n int, err error) {
-	for r.remaining == 0 {
-		if !r.isPartial {
-			return 0, io.EOF
-		}
-		r.remaining, r.isPartial, err = readLength(r.r)
-		if err != nil {
-			return 0, err
-		}
-	}
-
-	toRead := int64(len(p))
-	if toRead > r.remaining {
-		toRead = r.remaining
-	}
-
-	n, err = r.r.Read(p[:int(toRead)])
-	r.remaining -= int64(n)
-	if n < int(toRead) && err == io.EOF {
-		err = io.ErrUnexpectedEOF
-	}
-	return
-}
-
-// partialLengthWriter writes a stream of data using OpenPGP partial lengths.
-// See RFC 4880, section 4.2.2.4.
-type partialLengthWriter struct {
-	w          io.WriteCloser
-	lengthByte [1]byte
-}
-
-func (w *partialLengthWriter) Write(p []byte) (n int, err error) {
-	for len(p) > 0 {
-		for power := uint(14); power < 32; power-- {
-			l := 1 << power
-			if len(p) >= l {
-				w.lengthByte[0] = 224 + uint8(power)
-				_, err = w.w.Write(w.lengthByte[:])
-				if err != nil {
-					return
-				}
-				var m int
-				m, err = w.w.Write(p[:l])
-				n += m
-				if err != nil {
-					return
-				}
-				p = p[l:]
-				break
-			}
-		}
-	}
-	return
-}
-
-func (w *partialLengthWriter) Close() error {
-	w.lengthByte[0] = 0
-	_, err := w.w.Write(w.lengthByte[:])
-	if err != nil {
-		return err
-	}
-	return w.w.Close()
-}
-
-// A spanReader is an io.LimitReader, but it returns ErrUnexpectedEOF if the
-// underlying Reader returns EOF before the limit has been reached.
-type spanReader struct {
-	r io.Reader
-	n int64
-}
-
-func (l *spanReader) Read(p []byte) (n int, err error) {
-	if l.n <= 0 {
-		return 0, io.EOF
-	}
-	if int64(len(p)) > l.n {
-		p = p[0:l.n]
-	}
-	n, err = l.r.Read(p)
-	l.n -= int64(n)
-	if l.n > 0 && err == io.EOF {
-		err = io.ErrUnexpectedEOF
-	}
-	return
-}
-
-// readHeader parses a packet header and returns an io.Reader which will return
-// the contents of the packet. See RFC 4880, section 4.2.
-func readHeader(r io.Reader) (tag packetType, length int64, contents io.Reader, err error) {
-	var buf [4]byte
-	_, err = io.ReadFull(r, buf[:1])
-	if err != nil {
-		return
-	}
-	if buf[0]&0x80 == 0 {
-		err = errors.StructuralError("tag byte does not have MSB set")
-		return
-	}
-	if buf[0]&0x40 == 0 {
-		// Old format packet
-		tag = packetType((buf[0] & 0x3f) >> 2)
-		lengthType := buf[0] & 3
-		if lengthType == 3 {
-			length = -1
-			contents = r
-			return
-		}
-		lengthBytes := 1 << lengthType
-		_, err = readFull(r, buf[0:lengthBytes])
-		if err != nil {
-			return
-		}
-		for i := 0; i < lengthBytes; i++ {
-			length <<= 8
-			length |= int64(buf[i])
-		}
-		contents = &spanReader{r, length}
-		return
-	}
-
-	// New format packet
-	tag = packetType(buf[0] & 0x3f)
-	length, isPartial, err := readLength(r)
-	if err != nil {
-		return
-	}
-	if isPartial {
-		contents = &partialLengthReader{
-			remaining: length,
-			isPartial: true,
-			r:         r,
-		}
-		length = -1
-	} else {
-		contents = &spanReader{r, length}
-	}
-	return
-}
-
-// serializeHeader writes an OpenPGP packet header to w. See RFC 4880, section
-// 4.2.
-func serializeHeader(w io.Writer, ptype packetType, length int) (err error) {
-	var buf [6]byte
-	var n int
-
-	buf[0] = 0x80 | 0x40 | byte(ptype)
-	if length < 192 {
-		buf[1] = byte(length)
-		n = 2
-	} else if length < 8384 {
-		length -= 192
-		buf[1] = 192 + byte(length>>8)
-		buf[2] = byte(length)
-		n = 3
-	} else {
-		buf[1] = 255
-		buf[2] = byte(length >> 24)
-		buf[3] = byte(length >> 16)
-		buf[4] = byte(length >> 8)
-		buf[5] = byte(length)
-		n = 6
-	}
-
-	_, err = w.Write(buf[:n])
-	return
-}
-
-// serializeStreamHeader writes an OpenPGP packet header to w where the
-// length of the packet is unknown. It returns a io.WriteCloser which can be
-// used to write the contents of the packet. See RFC 4880, section 4.2.
-func serializeStreamHeader(w io.WriteCloser, ptype packetType) (out io.WriteCloser, err error) {
-	var buf [1]byte
-	buf[0] = 0x80 | 0x40 | byte(ptype)
-	_, err = w.Write(buf[:])
-	if err != nil {
-		return
-	}
-	out = &partialLengthWriter{w: w}
-	return
-}
-
-// Packet represents an OpenPGP packet. Users are expected to try casting
-// instances of this interface to specific packet types.
-type Packet interface {
-	parse(io.Reader) error
-}
-
-// consumeAll reads from the given Reader until error, returning the number of
-// bytes read.
-func consumeAll(r io.Reader) (n int64, err error) {
-	var m int
-	var buf [1024]byte
-
-	for {
-		m, err = r.Read(buf[:])
-		n += int64(m)
-		if err == io.EOF {
-			err = nil
-			return
-		}
-		if err != nil {
-			return
-		}
-	}
-}
-
-// packetType represents the numeric ids of the different OpenPGP packet types. See
-// http://www.iana.org/assignments/pgp-parameters/pgp-parameters.xhtml#pgp-parameters-2
-type packetType uint8
-
-const (
-	packetTypeEncryptedKey              packetType = 1
-	packetTypeSignature                 packetType = 2
-	packetTypeSymmetricKeyEncrypted     packetType = 3
-	packetTypeOnePassSignature          packetType = 4
-	packetTypePrivateKey                packetType = 5
-	packetTypePublicKey                 packetType = 6
-	packetTypePrivateSubkey             packetType = 7
-	packetTypeCompressed                packetType = 8
-	packetTypeSymmetricallyEncrypted    packetType = 9
-	packetTypeLiteralData               packetType = 11
-	packetTypeUserId                    packetType = 13
-	packetTypePublicSubkey              packetType = 14
-	packetTypeUserAttribute             packetType = 17
-	packetTypeSymmetricallyEncryptedMDC packetType = 18
-)
-
-// peekVersion detects the version of a public key packet about to
-// be read. A bufio.Reader at the original position of the io.Reader
-// is returned.
-func peekVersion(r io.Reader) (bufr *bufio.Reader, ver byte, err error) {
-	bufr = bufio.NewReader(r)
-	var verBuf []byte
-	if verBuf, err = bufr.Peek(1); err != nil {
-		return
-	}
-	ver = verBuf[0]
-	return
-}
-
-// Read reads a single OpenPGP packet from the given io.Reader. If there is an
-// error parsing a packet, the whole packet is consumed from the input.
-func Read(r io.Reader) (p Packet, err error) {
-	tag, _, contents, err := readHeader(r)
-	if err != nil {
-		return
-	}
-
-	switch tag {
-	case packetTypeEncryptedKey:
-		p = new(EncryptedKey)
-	case packetTypeSignature:
-		var version byte
-		// Detect signature version
-		if contents, version, err = peekVersion(contents); err != nil {
-			return
-		}
-		if version < 4 {
-			p = new(SignatureV3)
-		} else {
-			p = new(Signature)
-		}
-	case packetTypeSymmetricKeyEncrypted:
-		p = new(SymmetricKeyEncrypted)
-	case packetTypeOnePassSignature:
-		p = new(OnePassSignature)
-	case packetTypePrivateKey, packetTypePrivateSubkey:
-		pk := new(PrivateKey)
-		if tag == packetTypePrivateSubkey {
-			pk.IsSubkey = true
-		}
-		p = pk
-	case packetTypePublicKey, packetTypePublicSubkey:
-		var version byte
-		if contents, version, err = peekVersion(contents); err != nil {
-			return
-		}
-		isSubkey := tag == packetTypePublicSubkey
-		if version < 4 {
-			p = &PublicKeyV3{IsSubkey: isSubkey}
-		} else {
-			p = &PublicKey{IsSubkey: isSubkey}
-		}
-	case packetTypeCompressed:
-		p = new(Compressed)
-	case packetTypeSymmetricallyEncrypted:
-		p = new(SymmetricallyEncrypted)
-	case packetTypeLiteralData:
-		p = new(LiteralData)
-	case packetTypeUserId:
-		p = new(UserId)
-	case packetTypeUserAttribute:
-		p = new(UserAttribute)
-	case packetTypeSymmetricallyEncryptedMDC:
-		se := new(SymmetricallyEncrypted)
-		se.MDC = true
-		p = se
-	default:
-		err = errors.UnknownPacketTypeError(tag)
-	}
-	if p != nil {
-		err = p.parse(contents)
-	}
-	if err != nil {
-		consumeAll(contents)
-	}
-	return
-}
-
-// SignatureType represents the different semantic meanings of an OpenPGP
-// signature. See RFC 4880, section 5.2.1.
-type SignatureType uint8
-
-const (
-	SigTypeBinary            SignatureType = 0
-	SigTypeText                            = 1
-	SigTypeGenericCert                     = 0x10
-	SigTypePersonaCert                     = 0x11
-	SigTypeCasualCert                      = 0x12
-	SigTypePositiveCert                    = 0x13
-	SigTypeSubkeyBinding                   = 0x18
-	SigTypePrimaryKeyBinding               = 0x19
-	SigTypeDirectSignature                 = 0x1F
-	SigTypeKeyRevocation                   = 0x20
-	SigTypeSubkeyRevocation                = 0x28
-)
-
-// PublicKeyAlgorithm represents the different public key system specified for
-// OpenPGP. See
-// http://www.iana.org/assignments/pgp-parameters/pgp-parameters.xhtml#pgp-parameters-12
-type PublicKeyAlgorithm uint8
-
-const (
-	PubKeyAlgoRSA            PublicKeyAlgorithm = 1
-	PubKeyAlgoRSAEncryptOnly PublicKeyAlgorithm = 2
-	PubKeyAlgoRSASignOnly    PublicKeyAlgorithm = 3
-	PubKeyAlgoElGamal        PublicKeyAlgorithm = 16
-	PubKeyAlgoDSA            PublicKeyAlgorithm = 17
-	// RFC 6637, Section 5.
-	PubKeyAlgoECDH  PublicKeyAlgorithm = 18
-	PubKeyAlgoECDSA PublicKeyAlgorithm = 19
-)
-
-// CanEncrypt returns true if it's possible to encrypt a message to a public
-// key of the given type.
-func (pka PublicKeyAlgorithm) CanEncrypt() bool {
-	switch pka {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoElGamal:
-		return true
-	}
-	return false
-}
-
-// CanSign returns true if it's possible for a public key of the given type to
-// sign a message.
-func (pka PublicKeyAlgorithm) CanSign() bool {
-	switch pka {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly, PubKeyAlgoDSA, PubKeyAlgoECDSA:
-		return true
-	}
-	return false
-}
-
-// CipherFunction represents the different block ciphers specified for OpenPGP. See
-// http://www.iana.org/assignments/pgp-parameters/pgp-parameters.xhtml#pgp-parameters-13
-type CipherFunction uint8
-
-const (
-	Cipher3DES   CipherFunction = 2
-	CipherCAST5  CipherFunction = 3
-	CipherAES128 CipherFunction = 7
-	CipherAES192 CipherFunction = 8
-	CipherAES256 CipherFunction = 9
-)
-
-// KeySize returns the key size, in bytes, of cipher.
-func (cipher CipherFunction) KeySize() int {
-	switch cipher {
-	case Cipher3DES:
-		return 24
-	case CipherCAST5:
-		return cast5.KeySize
-	case CipherAES128:
-		return 16
-	case CipherAES192:
-		return 24
-	case CipherAES256:
-		return 32
-	}
-	return 0
-}
-
-// blockSize returns the block size, in bytes, of cipher.
-func (cipher CipherFunction) blockSize() int {
-	switch cipher {
-	case Cipher3DES:
-		return des.BlockSize
-	case CipherCAST5:
-		return 8
-	case CipherAES128, CipherAES192, CipherAES256:
-		return 16
-	}
-	return 0
-}
-
-// new returns a fresh instance of the given cipher.
-func (cipher CipherFunction) new(key []byte) (block cipher.Block) {
-	switch cipher {
-	case Cipher3DES:
-		block, _ = des.NewTripleDESCipher(key)
-	case CipherCAST5:
-		block, _ = cast5.NewCipher(key)
-	case CipherAES128, CipherAES192, CipherAES256:
-		block, _ = aes.NewCipher(key)
-	}
-	return
-}
-
-// readMPI reads a big integer from r. The bit length returned is the bit
-// length that was specified in r. This is preserved so that the integer can be
-// reserialized exactly.
-func readMPI(r io.Reader) (mpi []byte, bitLength uint16, err error) {
-	var buf [2]byte
-	_, err = readFull(r, buf[0:])
-	if err != nil {
-		return
-	}
-	bitLength = uint16(buf[0])<<8 | uint16(buf[1])
-	numBytes := (int(bitLength) + 7) / 8
-	mpi = make([]byte, numBytes)
-	_, err = readFull(r, mpi)
-	// According to RFC 4880 3.2. we should check that the MPI has no leading
-	// zeroes (at least when not an encrypted MPI?), but this implementation
-	// does generate leading zeroes, so we keep accepting them.
-	return
-}
-
-// writeMPI serializes a big integer to w.
-func writeMPI(w io.Writer, bitLength uint16, mpiBytes []byte) (err error) {
-	// Note that we can produce leading zeroes, in violation of RFC 4880 3.2.
-	// Implementations seem to be tolerant of them, and stripping them would
-	// make it complex to guarantee matching re-serialization.
-	_, err = w.Write([]byte{byte(bitLength >> 8), byte(bitLength)})
-	if err == nil {
-		_, err = w.Write(mpiBytes)
-	}
-	return
-}
-
-// writeBig serializes a *big.Int to w.
-func writeBig(w io.Writer, i *big.Int) error {
-	return writeMPI(w, uint16(i.BitLen()), i.Bytes())
-}
-
-// padToKeySize left-pads a MPI with zeroes to match the length of the
-// specified RSA public.
-func padToKeySize(pub *rsa.PublicKey, b []byte) []byte {
-	k := (pub.N.BitLen() + 7) / 8
-	if len(b) >= k {
-		return b
-	}
-	bb := make([]byte, k)
-	copy(bb[len(bb)-len(b):], b)
-	return bb
-}
-
-// CompressionAlgo Represents the different compression algorithms
-// supported by OpenPGP (except for BZIP2, which is not currently
-// supported). See Section 9.3 of RFC 4880.
-type CompressionAlgo uint8
-
-const (
-	CompressionNone CompressionAlgo = 0
-	CompressionZIP  CompressionAlgo = 1
-	CompressionZLIB CompressionAlgo = 2
-)
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/private_key.go b/vendor/golang.org/x/crypto/openpgp/packet/private_key.go
deleted file mode 100644
index 34734cc63d..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/private_key.go
+++ /dev/null
@@ -1,380 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"crypto"
-	"crypto/cipher"
-	"crypto/dsa"
-	"crypto/ecdsa"
-	"crypto/rsa"
-	"crypto/sha1"
-	"io"
-	"io/ioutil"
-	"math/big"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/elgamal"
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/s2k"
-)
-
-// PrivateKey represents a possibly encrypted private key. See RFC 4880,
-// section 5.5.3.
-type PrivateKey struct {
-	PublicKey
-	Encrypted     bool // if true then the private key is unavailable until Decrypt has been called.
-	encryptedData []byte
-	cipher        CipherFunction
-	s2k           func(out, in []byte)
-	PrivateKey    interface{} // An *{rsa|dsa|ecdsa}.PrivateKey or a crypto.Signer.
-	sha1Checksum  bool
-	iv            []byte
-}
-
-func NewRSAPrivateKey(currentTime time.Time, priv *rsa.PrivateKey) *PrivateKey {
-	pk := new(PrivateKey)
-	pk.PublicKey = *NewRSAPublicKey(currentTime, &priv.PublicKey)
-	pk.PrivateKey = priv
-	return pk
-}
-
-func NewDSAPrivateKey(currentTime time.Time, priv *dsa.PrivateKey) *PrivateKey {
-	pk := new(PrivateKey)
-	pk.PublicKey = *NewDSAPublicKey(currentTime, &priv.PublicKey)
-	pk.PrivateKey = priv
-	return pk
-}
-
-func NewElGamalPrivateKey(currentTime time.Time, priv *elgamal.PrivateKey) *PrivateKey {
-	pk := new(PrivateKey)
-	pk.PublicKey = *NewElGamalPublicKey(currentTime, &priv.PublicKey)
-	pk.PrivateKey = priv
-	return pk
-}
-
-func NewECDSAPrivateKey(currentTime time.Time, priv *ecdsa.PrivateKey) *PrivateKey {
-	pk := new(PrivateKey)
-	pk.PublicKey = *NewECDSAPublicKey(currentTime, &priv.PublicKey)
-	pk.PrivateKey = priv
-	return pk
-}
-
-// NewSignerPrivateKey creates a sign-only PrivateKey from a crypto.Signer that
-// implements RSA or ECDSA.
-func NewSignerPrivateKey(currentTime time.Time, signer crypto.Signer) *PrivateKey {
-	pk := new(PrivateKey)
-	switch pubkey := signer.Public().(type) {
-	case rsa.PublicKey:
-		pk.PublicKey = *NewRSAPublicKey(currentTime, &pubkey)
-		pk.PubKeyAlgo = PubKeyAlgoRSASignOnly
-	case ecdsa.PublicKey:
-		pk.PublicKey = *NewECDSAPublicKey(currentTime, &pubkey)
-	default:
-		panic("openpgp: unknown crypto.Signer type in NewSignerPrivateKey")
-	}
-	pk.PrivateKey = signer
-	return pk
-}
-
-func (pk *PrivateKey) parse(r io.Reader) (err error) {
-	err = (&pk.PublicKey).parse(r)
-	if err != nil {
-		return
-	}
-	var buf [1]byte
-	_, err = readFull(r, buf[:])
-	if err != nil {
-		return
-	}
-
-	s2kType := buf[0]
-
-	switch s2kType {
-	case 0:
-		pk.s2k = nil
-		pk.Encrypted = false
-	case 254, 255:
-		_, err = readFull(r, buf[:])
-		if err != nil {
-			return
-		}
-		pk.cipher = CipherFunction(buf[0])
-		pk.Encrypted = true
-		pk.s2k, err = s2k.Parse(r)
-		if err != nil {
-			return
-		}
-		if s2kType == 254 {
-			pk.sha1Checksum = true
-		}
-	default:
-		return errors.UnsupportedError("deprecated s2k function in private key")
-	}
-
-	if pk.Encrypted {
-		blockSize := pk.cipher.blockSize()
-		if blockSize == 0 {
-			return errors.UnsupportedError("unsupported cipher in private key: " + strconv.Itoa(int(pk.cipher)))
-		}
-		pk.iv = make([]byte, blockSize)
-		_, err = readFull(r, pk.iv)
-		if err != nil {
-			return
-		}
-	}
-
-	pk.encryptedData, err = ioutil.ReadAll(r)
-	if err != nil {
-		return
-	}
-
-	if !pk.Encrypted {
-		return pk.parsePrivateKey(pk.encryptedData)
-	}
-
-	return
-}
-
-func mod64kHash(d []byte) uint16 {
-	var h uint16
-	for _, b := range d {
-		h += uint16(b)
-	}
-	return h
-}
-
-func (pk *PrivateKey) Serialize(w io.Writer) (err error) {
-	// TODO(agl): support encrypted private keys
-	buf := bytes.NewBuffer(nil)
-	err = pk.PublicKey.serializeWithoutHeaders(buf)
-	if err != nil {
-		return
-	}
-	buf.WriteByte(0 /* no encryption */)
-
-	privateKeyBuf := bytes.NewBuffer(nil)
-
-	switch priv := pk.PrivateKey.(type) {
-	case *rsa.PrivateKey:
-		err = serializeRSAPrivateKey(privateKeyBuf, priv)
-	case *dsa.PrivateKey:
-		err = serializeDSAPrivateKey(privateKeyBuf, priv)
-	case *elgamal.PrivateKey:
-		err = serializeElGamalPrivateKey(privateKeyBuf, priv)
-	case *ecdsa.PrivateKey:
-		err = serializeECDSAPrivateKey(privateKeyBuf, priv)
-	default:
-		err = errors.InvalidArgumentError("unknown private key type")
-	}
-	if err != nil {
-		return
-	}
-
-	ptype := packetTypePrivateKey
-	contents := buf.Bytes()
-	privateKeyBytes := privateKeyBuf.Bytes()
-	if pk.IsSubkey {
-		ptype = packetTypePrivateSubkey
-	}
-	err = serializeHeader(w, ptype, len(contents)+len(privateKeyBytes)+2)
-	if err != nil {
-		return
-	}
-	_, err = w.Write(contents)
-	if err != nil {
-		return
-	}
-	_, err = w.Write(privateKeyBytes)
-	if err != nil {
-		return
-	}
-
-	checksum := mod64kHash(privateKeyBytes)
-	var checksumBytes [2]byte
-	checksumBytes[0] = byte(checksum >> 8)
-	checksumBytes[1] = byte(checksum)
-	_, err = w.Write(checksumBytes[:])
-
-	return
-}
-
-func serializeRSAPrivateKey(w io.Writer, priv *rsa.PrivateKey) error {
-	err := writeBig(w, priv.D)
-	if err != nil {
-		return err
-	}
-	err = writeBig(w, priv.Primes[1])
-	if err != nil {
-		return err
-	}
-	err = writeBig(w, priv.Primes[0])
-	if err != nil {
-		return err
-	}
-	return writeBig(w, priv.Precomputed.Qinv)
-}
-
-func serializeDSAPrivateKey(w io.Writer, priv *dsa.PrivateKey) error {
-	return writeBig(w, priv.X)
-}
-
-func serializeElGamalPrivateKey(w io.Writer, priv *elgamal.PrivateKey) error {
-	return writeBig(w, priv.X)
-}
-
-func serializeECDSAPrivateKey(w io.Writer, priv *ecdsa.PrivateKey) error {
-	return writeBig(w, priv.D)
-}
-
-// Decrypt decrypts an encrypted private key using a passphrase.
-func (pk *PrivateKey) Decrypt(passphrase []byte) error {
-	if !pk.Encrypted {
-		return nil
-	}
-
-	key := make([]byte, pk.cipher.KeySize())
-	pk.s2k(key, passphrase)
-	block := pk.cipher.new(key)
-	cfb := cipher.NewCFBDecrypter(block, pk.iv)
-
-	data := make([]byte, len(pk.encryptedData))
-	cfb.XORKeyStream(data, pk.encryptedData)
-
-	if pk.sha1Checksum {
-		if len(data) < sha1.Size {
-			return errors.StructuralError("truncated private key data")
-		}
-		h := sha1.New()
-		h.Write(data[:len(data)-sha1.Size])
-		sum := h.Sum(nil)
-		if !bytes.Equal(sum, data[len(data)-sha1.Size:]) {
-			return errors.StructuralError("private key checksum failure")
-		}
-		data = data[:len(data)-sha1.Size]
-	} else {
-		if len(data) < 2 {
-			return errors.StructuralError("truncated private key data")
-		}
-		var sum uint16
-		for i := 0; i < len(data)-2; i++ {
-			sum += uint16(data[i])
-		}
-		if data[len(data)-2] != uint8(sum>>8) ||
-			data[len(data)-1] != uint8(sum) {
-			return errors.StructuralError("private key checksum failure")
-		}
-		data = data[:len(data)-2]
-	}
-
-	return pk.parsePrivateKey(data)
-}
-
-func (pk *PrivateKey) parsePrivateKey(data []byte) (err error) {
-	switch pk.PublicKey.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly, PubKeyAlgoRSAEncryptOnly:
-		return pk.parseRSAPrivateKey(data)
-	case PubKeyAlgoDSA:
-		return pk.parseDSAPrivateKey(data)
-	case PubKeyAlgoElGamal:
-		return pk.parseElGamalPrivateKey(data)
-	case PubKeyAlgoECDSA:
-		return pk.parseECDSAPrivateKey(data)
-	}
-	panic("impossible")
-}
-
-func (pk *PrivateKey) parseRSAPrivateKey(data []byte) (err error) {
-	rsaPub := pk.PublicKey.PublicKey.(*rsa.PublicKey)
-	rsaPriv := new(rsa.PrivateKey)
-	rsaPriv.PublicKey = *rsaPub
-
-	buf := bytes.NewBuffer(data)
-	d, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-	p, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-	q, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-
-	rsaPriv.D = new(big.Int).SetBytes(d)
-	rsaPriv.Primes = make([]*big.Int, 2)
-	rsaPriv.Primes[0] = new(big.Int).SetBytes(p)
-	rsaPriv.Primes[1] = new(big.Int).SetBytes(q)
-	if err := rsaPriv.Validate(); err != nil {
-		return err
-	}
-	rsaPriv.Precompute()
-	pk.PrivateKey = rsaPriv
-	pk.Encrypted = false
-	pk.encryptedData = nil
-
-	return nil
-}
-
-func (pk *PrivateKey) parseDSAPrivateKey(data []byte) (err error) {
-	dsaPub := pk.PublicKey.PublicKey.(*dsa.PublicKey)
-	dsaPriv := new(dsa.PrivateKey)
-	dsaPriv.PublicKey = *dsaPub
-
-	buf := bytes.NewBuffer(data)
-	x, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-
-	dsaPriv.X = new(big.Int).SetBytes(x)
-	pk.PrivateKey = dsaPriv
-	pk.Encrypted = false
-	pk.encryptedData = nil
-
-	return nil
-}
-
-func (pk *PrivateKey) parseElGamalPrivateKey(data []byte) (err error) {
-	pub := pk.PublicKey.PublicKey.(*elgamal.PublicKey)
-	priv := new(elgamal.PrivateKey)
-	priv.PublicKey = *pub
-
-	buf := bytes.NewBuffer(data)
-	x, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-
-	priv.X = new(big.Int).SetBytes(x)
-	pk.PrivateKey = priv
-	pk.Encrypted = false
-	pk.encryptedData = nil
-
-	return nil
-}
-
-func (pk *PrivateKey) parseECDSAPrivateKey(data []byte) (err error) {
-	ecdsaPub := pk.PublicKey.PublicKey.(*ecdsa.PublicKey)
-
-	buf := bytes.NewBuffer(data)
-	d, _, err := readMPI(buf)
-	if err != nil {
-		return
-	}
-
-	pk.PrivateKey = &ecdsa.PrivateKey{
-		PublicKey: *ecdsaPub,
-		D:         new(big.Int).SetBytes(d),
-	}
-	pk.Encrypted = false
-	pk.encryptedData = nil
-
-	return nil
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/public_key.go b/vendor/golang.org/x/crypto/openpgp/packet/public_key.go
deleted file mode 100644
index fcd5f52519..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/public_key.go
+++ /dev/null
@@ -1,753 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"crypto"
-	"crypto/dsa"
-	"crypto/ecdsa"
-	"crypto/elliptic"
-	"crypto/rsa"
-	"crypto/sha1"
-	_ "crypto/sha256"
-	_ "crypto/sha512"
-	"encoding/binary"
-	"fmt"
-	"hash"
-	"io"
-	"math/big"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/elgamal"
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-var (
-	// NIST curve P-256
-	oidCurveP256 []byte = []byte{0x2A, 0x86, 0x48, 0xCE, 0x3D, 0x03, 0x01, 0x07}
-	// NIST curve P-384
-	oidCurveP384 []byte = []byte{0x2B, 0x81, 0x04, 0x00, 0x22}
-	// NIST curve P-521
-	oidCurveP521 []byte = []byte{0x2B, 0x81, 0x04, 0x00, 0x23}
-)
-
-const maxOIDLength = 8
-
-// ecdsaKey stores the algorithm-specific fields for ECDSA keys.
-// as defined in RFC 6637, Section 9.
-type ecdsaKey struct {
-	// oid contains the OID byte sequence identifying the elliptic curve used
-	oid []byte
-	// p contains the elliptic curve point that represents the public key
-	p parsedMPI
-}
-
-// parseOID reads the OID for the curve as defined in RFC 6637, Section 9.
-func parseOID(r io.Reader) (oid []byte, err error) {
-	buf := make([]byte, maxOIDLength)
-	if _, err = readFull(r, buf[:1]); err != nil {
-		return
-	}
-	oidLen := buf[0]
-	if int(oidLen) > len(buf) {
-		err = errors.UnsupportedError("invalid oid length: " + strconv.Itoa(int(oidLen)))
-		return
-	}
-	oid = buf[:oidLen]
-	_, err = readFull(r, oid)
-	return
-}
-
-func (f *ecdsaKey) parse(r io.Reader) (err error) {
-	if f.oid, err = parseOID(r); err != nil {
-		return err
-	}
-	f.p.bytes, f.p.bitLength, err = readMPI(r)
-	return
-}
-
-func (f *ecdsaKey) serialize(w io.Writer) (err error) {
-	buf := make([]byte, maxOIDLength+1)
-	buf[0] = byte(len(f.oid))
-	copy(buf[1:], f.oid)
-	if _, err = w.Write(buf[:len(f.oid)+1]); err != nil {
-		return
-	}
-	return writeMPIs(w, f.p)
-}
-
-func (f *ecdsaKey) newECDSA() (*ecdsa.PublicKey, error) {
-	var c elliptic.Curve
-	if bytes.Equal(f.oid, oidCurveP256) {
-		c = elliptic.P256()
-	} else if bytes.Equal(f.oid, oidCurveP384) {
-		c = elliptic.P384()
-	} else if bytes.Equal(f.oid, oidCurveP521) {
-		c = elliptic.P521()
-	} else {
-		return nil, errors.UnsupportedError(fmt.Sprintf("unsupported oid: %x", f.oid))
-	}
-	x, y := elliptic.Unmarshal(c, f.p.bytes)
-	if x == nil {
-		return nil, errors.UnsupportedError("failed to parse EC point")
-	}
-	return &ecdsa.PublicKey{Curve: c, X: x, Y: y}, nil
-}
-
-func (f *ecdsaKey) byteLen() int {
-	return 1 + len(f.oid) + 2 + len(f.p.bytes)
-}
-
-type kdfHashFunction byte
-type kdfAlgorithm byte
-
-// ecdhKdf stores key derivation function parameters
-// used for ECDH encryption. See RFC 6637, Section 9.
-type ecdhKdf struct {
-	KdfHash kdfHashFunction
-	KdfAlgo kdfAlgorithm
-}
-
-func (f *ecdhKdf) parse(r io.Reader) (err error) {
-	buf := make([]byte, 1)
-	if _, err = readFull(r, buf); err != nil {
-		return
-	}
-	kdfLen := int(buf[0])
-	if kdfLen < 3 {
-		return errors.UnsupportedError("Unsupported ECDH KDF length: " + strconv.Itoa(kdfLen))
-	}
-	buf = make([]byte, kdfLen)
-	if _, err = readFull(r, buf); err != nil {
-		return
-	}
-	reserved := int(buf[0])
-	f.KdfHash = kdfHashFunction(buf[1])
-	f.KdfAlgo = kdfAlgorithm(buf[2])
-	if reserved != 0x01 {
-		return errors.UnsupportedError("Unsupported KDF reserved field: " + strconv.Itoa(reserved))
-	}
-	return
-}
-
-func (f *ecdhKdf) serialize(w io.Writer) (err error) {
-	buf := make([]byte, 4)
-	// See RFC 6637, Section 9, Algorithm-Specific Fields for ECDH keys.
-	buf[0] = byte(0x03) // Length of the following fields
-	buf[1] = byte(0x01) // Reserved for future extensions, must be 1 for now
-	buf[2] = byte(f.KdfHash)
-	buf[3] = byte(f.KdfAlgo)
-	_, err = w.Write(buf[:])
-	return
-}
-
-func (f *ecdhKdf) byteLen() int {
-	return 4
-}
-
-// PublicKey represents an OpenPGP public key. See RFC 4880, section 5.5.2.
-type PublicKey struct {
-	CreationTime time.Time
-	PubKeyAlgo   PublicKeyAlgorithm
-	PublicKey    interface{} // *rsa.PublicKey, *dsa.PublicKey or *ecdsa.PublicKey
-	Fingerprint  [20]byte
-	KeyId        uint64
-	IsSubkey     bool
-
-	n, e, p, q, g, y parsedMPI
-
-	// RFC 6637 fields
-	ec   *ecdsaKey
-	ecdh *ecdhKdf
-}
-
-// signingKey provides a convenient abstraction over signature verification
-// for v3 and v4 public keys.
-type signingKey interface {
-	SerializeSignaturePrefix(io.Writer)
-	serializeWithoutHeaders(io.Writer) error
-}
-
-func fromBig(n *big.Int) parsedMPI {
-	return parsedMPI{
-		bytes:     n.Bytes(),
-		bitLength: uint16(n.BitLen()),
-	}
-}
-
-// NewRSAPublicKey returns a PublicKey that wraps the given rsa.PublicKey.
-func NewRSAPublicKey(creationTime time.Time, pub *rsa.PublicKey) *PublicKey {
-	pk := &PublicKey{
-		CreationTime: creationTime,
-		PubKeyAlgo:   PubKeyAlgoRSA,
-		PublicKey:    pub,
-		n:            fromBig(pub.N),
-		e:            fromBig(big.NewInt(int64(pub.E))),
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return pk
-}
-
-// NewDSAPublicKey returns a PublicKey that wraps the given dsa.PublicKey.
-func NewDSAPublicKey(creationTime time.Time, pub *dsa.PublicKey) *PublicKey {
-	pk := &PublicKey{
-		CreationTime: creationTime,
-		PubKeyAlgo:   PubKeyAlgoDSA,
-		PublicKey:    pub,
-		p:            fromBig(pub.P),
-		q:            fromBig(pub.Q),
-		g:            fromBig(pub.G),
-		y:            fromBig(pub.Y),
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return pk
-}
-
-// NewElGamalPublicKey returns a PublicKey that wraps the given elgamal.PublicKey.
-func NewElGamalPublicKey(creationTime time.Time, pub *elgamal.PublicKey) *PublicKey {
-	pk := &PublicKey{
-		CreationTime: creationTime,
-		PubKeyAlgo:   PubKeyAlgoElGamal,
-		PublicKey:    pub,
-		p:            fromBig(pub.P),
-		g:            fromBig(pub.G),
-		y:            fromBig(pub.Y),
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return pk
-}
-
-func NewECDSAPublicKey(creationTime time.Time, pub *ecdsa.PublicKey) *PublicKey {
-	pk := &PublicKey{
-		CreationTime: creationTime,
-		PubKeyAlgo:   PubKeyAlgoECDSA,
-		PublicKey:    pub,
-		ec:           new(ecdsaKey),
-	}
-
-	switch pub.Curve {
-	case elliptic.P256():
-		pk.ec.oid = oidCurveP256
-	case elliptic.P384():
-		pk.ec.oid = oidCurveP384
-	case elliptic.P521():
-		pk.ec.oid = oidCurveP521
-	default:
-		panic("unknown elliptic curve")
-	}
-
-	pk.ec.p.bytes = elliptic.Marshal(pub.Curve, pub.X, pub.Y)
-
-	// The bit length is 3 (for the 0x04 specifying an uncompressed key)
-	// plus two field elements (for x and y), which are rounded up to the
-	// nearest byte. See https://tools.ietf.org/html/rfc6637#section-6
-	fieldBytes := (pub.Curve.Params().BitSize + 7) & ^7
-	pk.ec.p.bitLength = uint16(3 + fieldBytes + fieldBytes)
-
-	pk.setFingerPrintAndKeyId()
-	return pk
-}
-
-func (pk *PublicKey) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.5.2
-	var buf [6]byte
-	_, err = readFull(r, buf[:])
-	if err != nil {
-		return
-	}
-	if buf[0] != 4 {
-		return errors.UnsupportedError("public key version")
-	}
-	pk.CreationTime = time.Unix(int64(uint32(buf[1])<<24|uint32(buf[2])<<16|uint32(buf[3])<<8|uint32(buf[4])), 0)
-	pk.PubKeyAlgo = PublicKeyAlgorithm(buf[5])
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		err = pk.parseRSA(r)
-	case PubKeyAlgoDSA:
-		err = pk.parseDSA(r)
-	case PubKeyAlgoElGamal:
-		err = pk.parseElGamal(r)
-	case PubKeyAlgoECDSA:
-		pk.ec = new(ecdsaKey)
-		if err = pk.ec.parse(r); err != nil {
-			return err
-		}
-		pk.PublicKey, err = pk.ec.newECDSA()
-	case PubKeyAlgoECDH:
-		pk.ec = new(ecdsaKey)
-		if err = pk.ec.parse(r); err != nil {
-			return
-		}
-		pk.ecdh = new(ecdhKdf)
-		if err = pk.ecdh.parse(r); err != nil {
-			return
-		}
-		// The ECDH key is stored in an ecdsa.PublicKey for convenience.
-		pk.PublicKey, err = pk.ec.newECDSA()
-	default:
-		err = errors.UnsupportedError("public key type: " + strconv.Itoa(int(pk.PubKeyAlgo)))
-	}
-	if err != nil {
-		return
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return
-}
-
-func (pk *PublicKey) setFingerPrintAndKeyId() {
-	// RFC 4880, section 12.2
-	fingerPrint := sha1.New()
-	pk.SerializeSignaturePrefix(fingerPrint)
-	pk.serializeWithoutHeaders(fingerPrint)
-	copy(pk.Fingerprint[:], fingerPrint.Sum(nil))
-	pk.KeyId = binary.BigEndian.Uint64(pk.Fingerprint[12:20])
-}
-
-// parseRSA parses RSA public key material from the given Reader. See RFC 4880,
-// section 5.5.2.
-func (pk *PublicKey) parseRSA(r io.Reader) (err error) {
-	pk.n.bytes, pk.n.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.e.bytes, pk.e.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-
-	if len(pk.e.bytes) > 3 {
-		err = errors.UnsupportedError("large public exponent")
-		return
-	}
-	rsa := &rsa.PublicKey{
-		N: new(big.Int).SetBytes(pk.n.bytes),
-		E: 0,
-	}
-	for i := 0; i < len(pk.e.bytes); i++ {
-		rsa.E <<= 8
-		rsa.E |= int(pk.e.bytes[i])
-	}
-	pk.PublicKey = rsa
-	return
-}
-
-// parseDSA parses DSA public key material from the given Reader. See RFC 4880,
-// section 5.5.2.
-func (pk *PublicKey) parseDSA(r io.Reader) (err error) {
-	pk.p.bytes, pk.p.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.q.bytes, pk.q.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.g.bytes, pk.g.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.y.bytes, pk.y.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-
-	dsa := new(dsa.PublicKey)
-	dsa.P = new(big.Int).SetBytes(pk.p.bytes)
-	dsa.Q = new(big.Int).SetBytes(pk.q.bytes)
-	dsa.G = new(big.Int).SetBytes(pk.g.bytes)
-	dsa.Y = new(big.Int).SetBytes(pk.y.bytes)
-	pk.PublicKey = dsa
-	return
-}
-
-// parseElGamal parses ElGamal public key material from the given Reader. See
-// RFC 4880, section 5.5.2.
-func (pk *PublicKey) parseElGamal(r io.Reader) (err error) {
-	pk.p.bytes, pk.p.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.g.bytes, pk.g.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-	pk.y.bytes, pk.y.bitLength, err = readMPI(r)
-	if err != nil {
-		return
-	}
-
-	elgamal := new(elgamal.PublicKey)
-	elgamal.P = new(big.Int).SetBytes(pk.p.bytes)
-	elgamal.G = new(big.Int).SetBytes(pk.g.bytes)
-	elgamal.Y = new(big.Int).SetBytes(pk.y.bytes)
-	pk.PublicKey = elgamal
-	return
-}
-
-// SerializeSignaturePrefix writes the prefix for this public key to the given Writer.
-// The prefix is used when calculating a signature over this public key. See
-// RFC 4880, section 5.2.4.
-func (pk *PublicKey) SerializeSignaturePrefix(h io.Writer) {
-	var pLength uint16
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		pLength += 2 + uint16(len(pk.n.bytes))
-		pLength += 2 + uint16(len(pk.e.bytes))
-	case PubKeyAlgoDSA:
-		pLength += 2 + uint16(len(pk.p.bytes))
-		pLength += 2 + uint16(len(pk.q.bytes))
-		pLength += 2 + uint16(len(pk.g.bytes))
-		pLength += 2 + uint16(len(pk.y.bytes))
-	case PubKeyAlgoElGamal:
-		pLength += 2 + uint16(len(pk.p.bytes))
-		pLength += 2 + uint16(len(pk.g.bytes))
-		pLength += 2 + uint16(len(pk.y.bytes))
-	case PubKeyAlgoECDSA:
-		pLength += uint16(pk.ec.byteLen())
-	case PubKeyAlgoECDH:
-		pLength += uint16(pk.ec.byteLen())
-		pLength += uint16(pk.ecdh.byteLen())
-	default:
-		panic("unknown public key algorithm")
-	}
-	pLength += 6
-	h.Write([]byte{0x99, byte(pLength >> 8), byte(pLength)})
-	return
-}
-
-func (pk *PublicKey) Serialize(w io.Writer) (err error) {
-	length := 6 // 6 byte header
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		length += 2 + len(pk.n.bytes)
-		length += 2 + len(pk.e.bytes)
-	case PubKeyAlgoDSA:
-		length += 2 + len(pk.p.bytes)
-		length += 2 + len(pk.q.bytes)
-		length += 2 + len(pk.g.bytes)
-		length += 2 + len(pk.y.bytes)
-	case PubKeyAlgoElGamal:
-		length += 2 + len(pk.p.bytes)
-		length += 2 + len(pk.g.bytes)
-		length += 2 + len(pk.y.bytes)
-	case PubKeyAlgoECDSA:
-		length += pk.ec.byteLen()
-	case PubKeyAlgoECDH:
-		length += pk.ec.byteLen()
-		length += pk.ecdh.byteLen()
-	default:
-		panic("unknown public key algorithm")
-	}
-
-	packetType := packetTypePublicKey
-	if pk.IsSubkey {
-		packetType = packetTypePublicSubkey
-	}
-	err = serializeHeader(w, packetType, length)
-	if err != nil {
-		return
-	}
-	return pk.serializeWithoutHeaders(w)
-}
-
-// serializeWithoutHeaders marshals the PublicKey to w in the form of an
-// OpenPGP public key packet, not including the packet header.
-func (pk *PublicKey) serializeWithoutHeaders(w io.Writer) (err error) {
-	var buf [6]byte
-	buf[0] = 4
-	t := uint32(pk.CreationTime.Unix())
-	buf[1] = byte(t >> 24)
-	buf[2] = byte(t >> 16)
-	buf[3] = byte(t >> 8)
-	buf[4] = byte(t)
-	buf[5] = byte(pk.PubKeyAlgo)
-
-	_, err = w.Write(buf[:])
-	if err != nil {
-		return
-	}
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		return writeMPIs(w, pk.n, pk.e)
-	case PubKeyAlgoDSA:
-		return writeMPIs(w, pk.p, pk.q, pk.g, pk.y)
-	case PubKeyAlgoElGamal:
-		return writeMPIs(w, pk.p, pk.g, pk.y)
-	case PubKeyAlgoECDSA:
-		return pk.ec.serialize(w)
-	case PubKeyAlgoECDH:
-		if err = pk.ec.serialize(w); err != nil {
-			return
-		}
-		return pk.ecdh.serialize(w)
-	}
-	return errors.InvalidArgumentError("bad public-key algorithm")
-}
-
-// CanSign returns true iff this public key can generate signatures
-func (pk *PublicKey) CanSign() bool {
-	return pk.PubKeyAlgo != PubKeyAlgoRSAEncryptOnly && pk.PubKeyAlgo != PubKeyAlgoElGamal
-}
-
-// VerifySignature returns nil iff sig is a valid signature, made by this
-// public key, of the data hashed into signed. signed is mutated by this call.
-func (pk *PublicKey) VerifySignature(signed hash.Hash, sig *Signature) (err error) {
-	if !pk.CanSign() {
-		return errors.InvalidArgumentError("public key cannot generate signatures")
-	}
-
-	signed.Write(sig.HashSuffix)
-	hashBytes := signed.Sum(nil)
-
-	if hashBytes[0] != sig.HashTag[0] || hashBytes[1] != sig.HashTag[1] {
-		return errors.SignatureError("hash tag doesn't match")
-	}
-
-	if pk.PubKeyAlgo != sig.PubKeyAlgo {
-		return errors.InvalidArgumentError("public key and signature use different algorithms")
-	}
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		rsaPublicKey, _ := pk.PublicKey.(*rsa.PublicKey)
-		err = rsa.VerifyPKCS1v15(rsaPublicKey, sig.Hash, hashBytes, padToKeySize(rsaPublicKey, sig.RSASignature.bytes))
-		if err != nil {
-			return errors.SignatureError("RSA verification failure")
-		}
-		return nil
-	case PubKeyAlgoDSA:
-		dsaPublicKey, _ := pk.PublicKey.(*dsa.PublicKey)
-		// Need to truncate hashBytes to match FIPS 186-3 section 4.6.
-		subgroupSize := (dsaPublicKey.Q.BitLen() + 7) / 8
-		if len(hashBytes) > subgroupSize {
-			hashBytes = hashBytes[:subgroupSize]
-		}
-		if !dsa.Verify(dsaPublicKey, hashBytes, new(big.Int).SetBytes(sig.DSASigR.bytes), new(big.Int).SetBytes(sig.DSASigS.bytes)) {
-			return errors.SignatureError("DSA verification failure")
-		}
-		return nil
-	case PubKeyAlgoECDSA:
-		ecdsaPublicKey := pk.PublicKey.(*ecdsa.PublicKey)
-		if !ecdsa.Verify(ecdsaPublicKey, hashBytes, new(big.Int).SetBytes(sig.ECDSASigR.bytes), new(big.Int).SetBytes(sig.ECDSASigS.bytes)) {
-			return errors.SignatureError("ECDSA verification failure")
-		}
-		return nil
-	default:
-		return errors.SignatureError("Unsupported public key algorithm used in signature")
-	}
-}
-
-// VerifySignatureV3 returns nil iff sig is a valid signature, made by this
-// public key, of the data hashed into signed. signed is mutated by this call.
-func (pk *PublicKey) VerifySignatureV3(signed hash.Hash, sig *SignatureV3) (err error) {
-	if !pk.CanSign() {
-		return errors.InvalidArgumentError("public key cannot generate signatures")
-	}
-
-	suffix := make([]byte, 5)
-	suffix[0] = byte(sig.SigType)
-	binary.BigEndian.PutUint32(suffix[1:], uint32(sig.CreationTime.Unix()))
-	signed.Write(suffix)
-	hashBytes := signed.Sum(nil)
-
-	if hashBytes[0] != sig.HashTag[0] || hashBytes[1] != sig.HashTag[1] {
-		return errors.SignatureError("hash tag doesn't match")
-	}
-
-	if pk.PubKeyAlgo != sig.PubKeyAlgo {
-		return errors.InvalidArgumentError("public key and signature use different algorithms")
-	}
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		rsaPublicKey := pk.PublicKey.(*rsa.PublicKey)
-		if err = rsa.VerifyPKCS1v15(rsaPublicKey, sig.Hash, hashBytes, padToKeySize(rsaPublicKey, sig.RSASignature.bytes)); err != nil {
-			return errors.SignatureError("RSA verification failure")
-		}
-		return
-	case PubKeyAlgoDSA:
-		dsaPublicKey := pk.PublicKey.(*dsa.PublicKey)
-		// Need to truncate hashBytes to match FIPS 186-3 section 4.6.
-		subgroupSize := (dsaPublicKey.Q.BitLen() + 7) / 8
-		if len(hashBytes) > subgroupSize {
-			hashBytes = hashBytes[:subgroupSize]
-		}
-		if !dsa.Verify(dsaPublicKey, hashBytes, new(big.Int).SetBytes(sig.DSASigR.bytes), new(big.Int).SetBytes(sig.DSASigS.bytes)) {
-			return errors.SignatureError("DSA verification failure")
-		}
-		return nil
-	default:
-		panic("shouldn't happen")
-	}
-}
-
-// keySignatureHash returns a Hash of the message that needs to be signed for
-// pk to assert a subkey relationship to signed.
-func keySignatureHash(pk, signed signingKey, hashFunc crypto.Hash) (h hash.Hash, err error) {
-	if !hashFunc.Available() {
-		return nil, errors.UnsupportedError("hash function")
-	}
-	h = hashFunc.New()
-
-	// RFC 4880, section 5.2.4
-	pk.SerializeSignaturePrefix(h)
-	pk.serializeWithoutHeaders(h)
-	signed.SerializeSignaturePrefix(h)
-	signed.serializeWithoutHeaders(h)
-	return
-}
-
-// VerifyKeySignature returns nil iff sig is a valid signature, made by this
-// public key, of signed.
-func (pk *PublicKey) VerifyKeySignature(signed *PublicKey, sig *Signature) error {
-	h, err := keySignatureHash(pk, signed, sig.Hash)
-	if err != nil {
-		return err
-	}
-	if err = pk.VerifySignature(h, sig); err != nil {
-		return err
-	}
-
-	if sig.FlagSign {
-		// Signing subkeys must be cross-signed. See
-		// https://www.gnupg.org/faq/subkey-cross-certify.html.
-		if sig.EmbeddedSignature == nil {
-			return errors.StructuralError("signing subkey is missing cross-signature")
-		}
-		// Verify the cross-signature. This is calculated over the same
-		// data as the main signature, so we cannot just recursively
-		// call signed.VerifyKeySignature(...)
-		if h, err = keySignatureHash(pk, signed, sig.EmbeddedSignature.Hash); err != nil {
-			return errors.StructuralError("error while hashing for cross-signature: " + err.Error())
-		}
-		if err := signed.VerifySignature(h, sig.EmbeddedSignature); err != nil {
-			return errors.StructuralError("error while verifying cross-signature: " + err.Error())
-		}
-	}
-
-	return nil
-}
-
-func keyRevocationHash(pk signingKey, hashFunc crypto.Hash) (h hash.Hash, err error) {
-	if !hashFunc.Available() {
-		return nil, errors.UnsupportedError("hash function")
-	}
-	h = hashFunc.New()
-
-	// RFC 4880, section 5.2.4
-	pk.SerializeSignaturePrefix(h)
-	pk.serializeWithoutHeaders(h)
-
-	return
-}
-
-// VerifyRevocationSignature returns nil iff sig is a valid signature, made by this
-// public key.
-func (pk *PublicKey) VerifyRevocationSignature(sig *Signature) (err error) {
-	h, err := keyRevocationHash(pk, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return pk.VerifySignature(h, sig)
-}
-
-// userIdSignatureHash returns a Hash of the message that needs to be signed
-// to assert that pk is a valid key for id.
-func userIdSignatureHash(id string, pk *PublicKey, hashFunc crypto.Hash) (h hash.Hash, err error) {
-	if !hashFunc.Available() {
-		return nil, errors.UnsupportedError("hash function")
-	}
-	h = hashFunc.New()
-
-	// RFC 4880, section 5.2.4
-	pk.SerializeSignaturePrefix(h)
-	pk.serializeWithoutHeaders(h)
-
-	var buf [5]byte
-	buf[0] = 0xb4
-	buf[1] = byte(len(id) >> 24)
-	buf[2] = byte(len(id) >> 16)
-	buf[3] = byte(len(id) >> 8)
-	buf[4] = byte(len(id))
-	h.Write(buf[:])
-	h.Write([]byte(id))
-
-	return
-}
-
-// VerifyUserIdSignature returns nil iff sig is a valid signature, made by this
-// public key, that id is the identity of pub.
-func (pk *PublicKey) VerifyUserIdSignature(id string, pub *PublicKey, sig *Signature) (err error) {
-	h, err := userIdSignatureHash(id, pub, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return pk.VerifySignature(h, sig)
-}
-
-// VerifyUserIdSignatureV3 returns nil iff sig is a valid signature, made by this
-// public key, that id is the identity of pub.
-func (pk *PublicKey) VerifyUserIdSignatureV3(id string, pub *PublicKey, sig *SignatureV3) (err error) {
-	h, err := userIdSignatureV3Hash(id, pub, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return pk.VerifySignatureV3(h, sig)
-}
-
-// KeyIdString returns the public key's fingerprint in capital hex
-// (e.g. "6C7EE1B8621CC013").
-func (pk *PublicKey) KeyIdString() string {
-	return fmt.Sprintf("%X", pk.Fingerprint[12:20])
-}
-
-// KeyIdShortString returns the short form of public key's fingerprint
-// in capital hex, as shown by gpg --list-keys (e.g. "621CC013").
-func (pk *PublicKey) KeyIdShortString() string {
-	return fmt.Sprintf("%X", pk.Fingerprint[16:20])
-}
-
-// A parsedMPI is used to store the contents of a big integer, along with the
-// bit length that was specified in the original input. This allows the MPI to
-// be reserialized exactly.
-type parsedMPI struct {
-	bytes     []byte
-	bitLength uint16
-}
-
-// writeMPIs is a utility function for serializing several big integers to the
-// given Writer.
-func writeMPIs(w io.Writer, mpis ...parsedMPI) (err error) {
-	for _, mpi := range mpis {
-		err = writeMPI(w, mpi.bitLength, mpi.bytes)
-		if err != nil {
-			return
-		}
-	}
-	return
-}
-
-// BitLength returns the bit length for the given public key.
-func (pk *PublicKey) BitLength() (bitLength uint16, err error) {
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		bitLength = pk.n.bitLength
-	case PubKeyAlgoDSA:
-		bitLength = pk.p.bitLength
-	case PubKeyAlgoElGamal:
-		bitLength = pk.p.bitLength
-	default:
-		err = errors.InvalidArgumentError("bad public-key algorithm")
-	}
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/public_key_v3.go b/vendor/golang.org/x/crypto/openpgp/packet/public_key_v3.go
deleted file mode 100644
index 5daf7b6cfd..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/public_key_v3.go
+++ /dev/null
@@ -1,279 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto"
-	"crypto/md5"
-	"crypto/rsa"
-	"encoding/binary"
-	"fmt"
-	"hash"
-	"io"
-	"math/big"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-// PublicKeyV3 represents older, version 3 public keys. These keys are less secure and
-// should not be used for signing or encrypting. They are supported here only for
-// parsing version 3 key material and validating signatures.
-// See RFC 4880, section 5.5.2.
-type PublicKeyV3 struct {
-	CreationTime time.Time
-	DaysToExpire uint16
-	PubKeyAlgo   PublicKeyAlgorithm
-	PublicKey    *rsa.PublicKey
-	Fingerprint  [16]byte
-	KeyId        uint64
-	IsSubkey     bool
-
-	n, e parsedMPI
-}
-
-// newRSAPublicKeyV3 returns a PublicKey that wraps the given rsa.PublicKey.
-// Included here for testing purposes only. RFC 4880, section 5.5.2:
-// "an implementation MUST NOT generate a V3 key, but MAY accept it."
-func newRSAPublicKeyV3(creationTime time.Time, pub *rsa.PublicKey) *PublicKeyV3 {
-	pk := &PublicKeyV3{
-		CreationTime: creationTime,
-		PublicKey:    pub,
-		n:            fromBig(pub.N),
-		e:            fromBig(big.NewInt(int64(pub.E))),
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return pk
-}
-
-func (pk *PublicKeyV3) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.5.2
-	var buf [8]byte
-	if _, err = readFull(r, buf[:]); err != nil {
-		return
-	}
-	if buf[0] < 2 || buf[0] > 3 {
-		return errors.UnsupportedError("public key version")
-	}
-	pk.CreationTime = time.Unix(int64(uint32(buf[1])<<24|uint32(buf[2])<<16|uint32(buf[3])<<8|uint32(buf[4])), 0)
-	pk.DaysToExpire = binary.BigEndian.Uint16(buf[5:7])
-	pk.PubKeyAlgo = PublicKeyAlgorithm(buf[7])
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		err = pk.parseRSA(r)
-	default:
-		err = errors.UnsupportedError("public key type: " + strconv.Itoa(int(pk.PubKeyAlgo)))
-	}
-	if err != nil {
-		return
-	}
-
-	pk.setFingerPrintAndKeyId()
-	return
-}
-
-func (pk *PublicKeyV3) setFingerPrintAndKeyId() {
-	// RFC 4880, section 12.2
-	fingerPrint := md5.New()
-	fingerPrint.Write(pk.n.bytes)
-	fingerPrint.Write(pk.e.bytes)
-	fingerPrint.Sum(pk.Fingerprint[:0])
-	pk.KeyId = binary.BigEndian.Uint64(pk.n.bytes[len(pk.n.bytes)-8:])
-}
-
-// parseRSA parses RSA public key material from the given Reader. See RFC 4880,
-// section 5.5.2.
-func (pk *PublicKeyV3) parseRSA(r io.Reader) (err error) {
-	if pk.n.bytes, pk.n.bitLength, err = readMPI(r); err != nil {
-		return
-	}
-	if pk.e.bytes, pk.e.bitLength, err = readMPI(r); err != nil {
-		return
-	}
-
-	// RFC 4880 Section 12.2 requires the low 8 bytes of the
-	// modulus to form the key id.
-	if len(pk.n.bytes) < 8 {
-		return errors.StructuralError("v3 public key modulus is too short")
-	}
-	if len(pk.e.bytes) > 3 {
-		err = errors.UnsupportedError("large public exponent")
-		return
-	}
-	rsa := &rsa.PublicKey{N: new(big.Int).SetBytes(pk.n.bytes)}
-	for i := 0; i < len(pk.e.bytes); i++ {
-		rsa.E <<= 8
-		rsa.E |= int(pk.e.bytes[i])
-	}
-	pk.PublicKey = rsa
-	return
-}
-
-// SerializeSignaturePrefix writes the prefix for this public key to the given Writer.
-// The prefix is used when calculating a signature over this public key. See
-// RFC 4880, section 5.2.4.
-func (pk *PublicKeyV3) SerializeSignaturePrefix(w io.Writer) {
-	var pLength uint16
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		pLength += 2 + uint16(len(pk.n.bytes))
-		pLength += 2 + uint16(len(pk.e.bytes))
-	default:
-		panic("unknown public key algorithm")
-	}
-	pLength += 6
-	w.Write([]byte{0x99, byte(pLength >> 8), byte(pLength)})
-	return
-}
-
-func (pk *PublicKeyV3) Serialize(w io.Writer) (err error) {
-	length := 8 // 8 byte header
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		length += 2 + len(pk.n.bytes)
-		length += 2 + len(pk.e.bytes)
-	default:
-		panic("unknown public key algorithm")
-	}
-
-	packetType := packetTypePublicKey
-	if pk.IsSubkey {
-		packetType = packetTypePublicSubkey
-	}
-	if err = serializeHeader(w, packetType, length); err != nil {
-		return
-	}
-	return pk.serializeWithoutHeaders(w)
-}
-
-// serializeWithoutHeaders marshals the PublicKey to w in the form of an
-// OpenPGP public key packet, not including the packet header.
-func (pk *PublicKeyV3) serializeWithoutHeaders(w io.Writer) (err error) {
-	var buf [8]byte
-	// Version 3
-	buf[0] = 3
-	// Creation time
-	t := uint32(pk.CreationTime.Unix())
-	buf[1] = byte(t >> 24)
-	buf[2] = byte(t >> 16)
-	buf[3] = byte(t >> 8)
-	buf[4] = byte(t)
-	// Days to expire
-	buf[5] = byte(pk.DaysToExpire >> 8)
-	buf[6] = byte(pk.DaysToExpire)
-	// Public key algorithm
-	buf[7] = byte(pk.PubKeyAlgo)
-
-	if _, err = w.Write(buf[:]); err != nil {
-		return
-	}
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		return writeMPIs(w, pk.n, pk.e)
-	}
-	return errors.InvalidArgumentError("bad public-key algorithm")
-}
-
-// CanSign returns true iff this public key can generate signatures
-func (pk *PublicKeyV3) CanSign() bool {
-	return pk.PubKeyAlgo != PubKeyAlgoRSAEncryptOnly
-}
-
-// VerifySignatureV3 returns nil iff sig is a valid signature, made by this
-// public key, of the data hashed into signed. signed is mutated by this call.
-func (pk *PublicKeyV3) VerifySignatureV3(signed hash.Hash, sig *SignatureV3) (err error) {
-	if !pk.CanSign() {
-		return errors.InvalidArgumentError("public key cannot generate signatures")
-	}
-
-	suffix := make([]byte, 5)
-	suffix[0] = byte(sig.SigType)
-	binary.BigEndian.PutUint32(suffix[1:], uint32(sig.CreationTime.Unix()))
-	signed.Write(suffix)
-	hashBytes := signed.Sum(nil)
-
-	if hashBytes[0] != sig.HashTag[0] || hashBytes[1] != sig.HashTag[1] {
-		return errors.SignatureError("hash tag doesn't match")
-	}
-
-	if pk.PubKeyAlgo != sig.PubKeyAlgo {
-		return errors.InvalidArgumentError("public key and signature use different algorithms")
-	}
-
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		if err = rsa.VerifyPKCS1v15(pk.PublicKey, sig.Hash, hashBytes, sig.RSASignature.bytes); err != nil {
-			return errors.SignatureError("RSA verification failure")
-		}
-		return
-	default:
-		// V3 public keys only support RSA.
-		panic("shouldn't happen")
-	}
-}
-
-// VerifyUserIdSignatureV3 returns nil iff sig is a valid signature, made by this
-// public key, that id is the identity of pub.
-func (pk *PublicKeyV3) VerifyUserIdSignatureV3(id string, pub *PublicKeyV3, sig *SignatureV3) (err error) {
-	h, err := userIdSignatureV3Hash(id, pk, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return pk.VerifySignatureV3(h, sig)
-}
-
-// VerifyKeySignatureV3 returns nil iff sig is a valid signature, made by this
-// public key, of signed.
-func (pk *PublicKeyV3) VerifyKeySignatureV3(signed *PublicKeyV3, sig *SignatureV3) (err error) {
-	h, err := keySignatureHash(pk, signed, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return pk.VerifySignatureV3(h, sig)
-}
-
-// userIdSignatureV3Hash returns a Hash of the message that needs to be signed
-// to assert that pk is a valid key for id.
-func userIdSignatureV3Hash(id string, pk signingKey, hfn crypto.Hash) (h hash.Hash, err error) {
-	if !hfn.Available() {
-		return nil, errors.UnsupportedError("hash function")
-	}
-	h = hfn.New()
-
-	// RFC 4880, section 5.2.4
-	pk.SerializeSignaturePrefix(h)
-	pk.serializeWithoutHeaders(h)
-
-	h.Write([]byte(id))
-
-	return
-}
-
-// KeyIdString returns the public key's fingerprint in capital hex
-// (e.g. "6C7EE1B8621CC013").
-func (pk *PublicKeyV3) KeyIdString() string {
-	return fmt.Sprintf("%X", pk.KeyId)
-}
-
-// KeyIdShortString returns the short form of public key's fingerprint
-// in capital hex, as shown by gpg --list-keys (e.g. "621CC013").
-func (pk *PublicKeyV3) KeyIdShortString() string {
-	return fmt.Sprintf("%X", pk.KeyId&0xFFFFFFFF)
-}
-
-// BitLength returns the bit length for the given public key.
-func (pk *PublicKeyV3) BitLength() (bitLength uint16, err error) {
-	switch pk.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSAEncryptOnly, PubKeyAlgoRSASignOnly:
-		bitLength = pk.n.bitLength
-	default:
-		err = errors.InvalidArgumentError("bad public-key algorithm")
-	}
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/reader.go b/vendor/golang.org/x/crypto/openpgp/packet/reader.go
deleted file mode 100644
index 34bc7c613e..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/reader.go
+++ /dev/null
@@ -1,76 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"golang.org/x/crypto/openpgp/errors"
-	"io"
-)
-
-// Reader reads packets from an io.Reader and allows packets to be 'unread' so
-// that they result from the next call to Next.
-type Reader struct {
-	q       []Packet
-	readers []io.Reader
-}
-
-// New io.Readers are pushed when a compressed or encrypted packet is processed
-// and recursively treated as a new source of packets. However, a carefully
-// crafted packet can trigger an infinite recursive sequence of packets. See
-// http://mumble.net/~campbell/misc/pgp-quine
-// https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4402
-// This constant limits the number of recursive packets that may be pushed.
-const maxReaders = 32
-
-// Next returns the most recently unread Packet, or reads another packet from
-// the top-most io.Reader. Unknown packet types are skipped.
-func (r *Reader) Next() (p Packet, err error) {
-	if len(r.q) > 0 {
-		p = r.q[len(r.q)-1]
-		r.q = r.q[:len(r.q)-1]
-		return
-	}
-
-	for len(r.readers) > 0 {
-		p, err = Read(r.readers[len(r.readers)-1])
-		if err == nil {
-			return
-		}
-		if err == io.EOF {
-			r.readers = r.readers[:len(r.readers)-1]
-			continue
-		}
-		if _, ok := err.(errors.UnknownPacketTypeError); !ok {
-			return nil, err
-		}
-	}
-
-	return nil, io.EOF
-}
-
-// Push causes the Reader to start reading from a new io.Reader. When an EOF
-// error is seen from the new io.Reader, it is popped and the Reader continues
-// to read from the next most recent io.Reader. Push returns a StructuralError
-// if pushing the reader would exceed the maximum recursion level, otherwise it
-// returns nil.
-func (r *Reader) Push(reader io.Reader) (err error) {
-	if len(r.readers) >= maxReaders {
-		return errors.StructuralError("too many layers of packets")
-	}
-	r.readers = append(r.readers, reader)
-	return nil
-}
-
-// Unread causes the given Packet to be returned from the next call to Next.
-func (r *Reader) Unread(p Packet) {
-	r.q = append(r.q, p)
-}
-
-func NewReader(r io.Reader) *Reader {
-	return &Reader{
-		q:       nil,
-		readers: []io.Reader{r},
-	}
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/signature.go b/vendor/golang.org/x/crypto/openpgp/packet/signature.go
deleted file mode 100644
index 6ce0cbedbe..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/signature.go
+++ /dev/null
@@ -1,731 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"crypto"
-	"crypto/dsa"
-	"crypto/ecdsa"
-	"encoding/asn1"
-	"encoding/binary"
-	"hash"
-	"io"
-	"math/big"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/s2k"
-)
-
-const (
-	// See RFC 4880, section 5.2.3.21 for details.
-	KeyFlagCertify = 1 << iota
-	KeyFlagSign
-	KeyFlagEncryptCommunications
-	KeyFlagEncryptStorage
-)
-
-// Signature represents a signature. See RFC 4880, section 5.2.
-type Signature struct {
-	SigType    SignatureType
-	PubKeyAlgo PublicKeyAlgorithm
-	Hash       crypto.Hash
-
-	// HashSuffix is extra data that is hashed in after the signed data.
-	HashSuffix []byte
-	// HashTag contains the first two bytes of the hash for fast rejection
-	// of bad signed data.
-	HashTag      [2]byte
-	CreationTime time.Time
-
-	RSASignature         parsedMPI
-	DSASigR, DSASigS     parsedMPI
-	ECDSASigR, ECDSASigS parsedMPI
-
-	// rawSubpackets contains the unparsed subpackets, in order.
-	rawSubpackets []outputSubpacket
-
-	// The following are optional so are nil when not included in the
-	// signature.
-
-	SigLifetimeSecs, KeyLifetimeSecs                        *uint32
-	PreferredSymmetric, PreferredHash, PreferredCompression []uint8
-	IssuerKeyId                                             *uint64
-	IsPrimaryId                                             *bool
-
-	// FlagsValid is set if any flags were given. See RFC 4880, section
-	// 5.2.3.21 for details.
-	FlagsValid                                                           bool
-	FlagCertify, FlagSign, FlagEncryptCommunications, FlagEncryptStorage bool
-
-	// RevocationReason is set if this signature has been revoked.
-	// See RFC 4880, section 5.2.3.23 for details.
-	RevocationReason     *uint8
-	RevocationReasonText string
-
-	// MDC is set if this signature has a feature packet that indicates
-	// support for MDC subpackets.
-	MDC bool
-
-	// EmbeddedSignature, if non-nil, is a signature of the parent key, by
-	// this key. This prevents an attacker from claiming another's signing
-	// subkey as their own.
-	EmbeddedSignature *Signature
-
-	outSubpackets []outputSubpacket
-}
-
-func (sig *Signature) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.2.3
-	var buf [5]byte
-	_, err = readFull(r, buf[:1])
-	if err != nil {
-		return
-	}
-	if buf[0] != 4 {
-		err = errors.UnsupportedError("signature packet version " + strconv.Itoa(int(buf[0])))
-		return
-	}
-
-	_, err = readFull(r, buf[:5])
-	if err != nil {
-		return
-	}
-	sig.SigType = SignatureType(buf[0])
-	sig.PubKeyAlgo = PublicKeyAlgorithm(buf[1])
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly, PubKeyAlgoDSA, PubKeyAlgoECDSA:
-	default:
-		err = errors.UnsupportedError("public key algorithm " + strconv.Itoa(int(sig.PubKeyAlgo)))
-		return
-	}
-
-	var ok bool
-	sig.Hash, ok = s2k.HashIdToHash(buf[2])
-	if !ok {
-		return errors.UnsupportedError("hash function " + strconv.Itoa(int(buf[2])))
-	}
-
-	hashedSubpacketsLength := int(buf[3])<<8 | int(buf[4])
-	l := 6 + hashedSubpacketsLength
-	sig.HashSuffix = make([]byte, l+6)
-	sig.HashSuffix[0] = 4
-	copy(sig.HashSuffix[1:], buf[:5])
-	hashedSubpackets := sig.HashSuffix[6:l]
-	_, err = readFull(r, hashedSubpackets)
-	if err != nil {
-		return
-	}
-	// See RFC 4880, section 5.2.4
-	trailer := sig.HashSuffix[l:]
-	trailer[0] = 4
-	trailer[1] = 0xff
-	trailer[2] = uint8(l >> 24)
-	trailer[3] = uint8(l >> 16)
-	trailer[4] = uint8(l >> 8)
-	trailer[5] = uint8(l)
-
-	err = parseSignatureSubpackets(sig, hashedSubpackets, true)
-	if err != nil {
-		return
-	}
-
-	_, err = readFull(r, buf[:2])
-	if err != nil {
-		return
-	}
-	unhashedSubpacketsLength := int(buf[0])<<8 | int(buf[1])
-	unhashedSubpackets := make([]byte, unhashedSubpacketsLength)
-	_, err = readFull(r, unhashedSubpackets)
-	if err != nil {
-		return
-	}
-	err = parseSignatureSubpackets(sig, unhashedSubpackets, false)
-	if err != nil {
-		return
-	}
-
-	_, err = readFull(r, sig.HashTag[:2])
-	if err != nil {
-		return
-	}
-
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		sig.RSASignature.bytes, sig.RSASignature.bitLength, err = readMPI(r)
-	case PubKeyAlgoDSA:
-		sig.DSASigR.bytes, sig.DSASigR.bitLength, err = readMPI(r)
-		if err == nil {
-			sig.DSASigS.bytes, sig.DSASigS.bitLength, err = readMPI(r)
-		}
-	case PubKeyAlgoECDSA:
-		sig.ECDSASigR.bytes, sig.ECDSASigR.bitLength, err = readMPI(r)
-		if err == nil {
-			sig.ECDSASigS.bytes, sig.ECDSASigS.bitLength, err = readMPI(r)
-		}
-	default:
-		panic("unreachable")
-	}
-	return
-}
-
-// parseSignatureSubpackets parses subpackets of the main signature packet. See
-// RFC 4880, section 5.2.3.1.
-func parseSignatureSubpackets(sig *Signature, subpackets []byte, isHashed bool) (err error) {
-	for len(subpackets) > 0 {
-		subpackets, err = parseSignatureSubpacket(sig, subpackets, isHashed)
-		if err != nil {
-			return
-		}
-	}
-
-	if sig.CreationTime.IsZero() {
-		err = errors.StructuralError("no creation time in signature")
-	}
-
-	return
-}
-
-type signatureSubpacketType uint8
-
-const (
-	creationTimeSubpacket        signatureSubpacketType = 2
-	signatureExpirationSubpacket signatureSubpacketType = 3
-	keyExpirationSubpacket       signatureSubpacketType = 9
-	prefSymmetricAlgosSubpacket  signatureSubpacketType = 11
-	issuerSubpacket              signatureSubpacketType = 16
-	prefHashAlgosSubpacket       signatureSubpacketType = 21
-	prefCompressionSubpacket     signatureSubpacketType = 22
-	primaryUserIdSubpacket       signatureSubpacketType = 25
-	keyFlagsSubpacket            signatureSubpacketType = 27
-	reasonForRevocationSubpacket signatureSubpacketType = 29
-	featuresSubpacket            signatureSubpacketType = 30
-	embeddedSignatureSubpacket   signatureSubpacketType = 32
-)
-
-// parseSignatureSubpacket parses a single subpacket. len(subpacket) is >= 1.
-func parseSignatureSubpacket(sig *Signature, subpacket []byte, isHashed bool) (rest []byte, err error) {
-	// RFC 4880, section 5.2.3.1
-	var (
-		length     uint32
-		packetType signatureSubpacketType
-		isCritical bool
-	)
-	switch {
-	case subpacket[0] < 192:
-		length = uint32(subpacket[0])
-		subpacket = subpacket[1:]
-	case subpacket[0] < 255:
-		if len(subpacket) < 2 {
-			goto Truncated
-		}
-		length = uint32(subpacket[0]-192)<<8 + uint32(subpacket[1]) + 192
-		subpacket = subpacket[2:]
-	default:
-		if len(subpacket) < 5 {
-			goto Truncated
-		}
-		length = uint32(subpacket[1])<<24 |
-			uint32(subpacket[2])<<16 |
-			uint32(subpacket[3])<<8 |
-			uint32(subpacket[4])
-		subpacket = subpacket[5:]
-	}
-	if length > uint32(len(subpacket)) {
-		goto Truncated
-	}
-	rest = subpacket[length:]
-	subpacket = subpacket[:length]
-	if len(subpacket) == 0 {
-		err = errors.StructuralError("zero length signature subpacket")
-		return
-	}
-	packetType = signatureSubpacketType(subpacket[0] & 0x7f)
-	isCritical = subpacket[0]&0x80 == 0x80
-	subpacket = subpacket[1:]
-	sig.rawSubpackets = append(sig.rawSubpackets, outputSubpacket{isHashed, packetType, isCritical, subpacket})
-	switch packetType {
-	case creationTimeSubpacket:
-		if !isHashed {
-			err = errors.StructuralError("signature creation time in non-hashed area")
-			return
-		}
-		if len(subpacket) != 4 {
-			err = errors.StructuralError("signature creation time not four bytes")
-			return
-		}
-		t := binary.BigEndian.Uint32(subpacket)
-		sig.CreationTime = time.Unix(int64(t), 0)
-	case signatureExpirationSubpacket:
-		// Signature expiration time, section 5.2.3.10
-		if !isHashed {
-			return
-		}
-		if len(subpacket) != 4 {
-			err = errors.StructuralError("expiration subpacket with bad length")
-			return
-		}
-		sig.SigLifetimeSecs = new(uint32)
-		*sig.SigLifetimeSecs = binary.BigEndian.Uint32(subpacket)
-	case keyExpirationSubpacket:
-		// Key expiration time, section 5.2.3.6
-		if !isHashed {
-			return
-		}
-		if len(subpacket) != 4 {
-			err = errors.StructuralError("key expiration subpacket with bad length")
-			return
-		}
-		sig.KeyLifetimeSecs = new(uint32)
-		*sig.KeyLifetimeSecs = binary.BigEndian.Uint32(subpacket)
-	case prefSymmetricAlgosSubpacket:
-		// Preferred symmetric algorithms, section 5.2.3.7
-		if !isHashed {
-			return
-		}
-		sig.PreferredSymmetric = make([]byte, len(subpacket))
-		copy(sig.PreferredSymmetric, subpacket)
-	case issuerSubpacket:
-		// Issuer, section 5.2.3.5
-		if len(subpacket) != 8 {
-			err = errors.StructuralError("issuer subpacket with bad length")
-			return
-		}
-		sig.IssuerKeyId = new(uint64)
-		*sig.IssuerKeyId = binary.BigEndian.Uint64(subpacket)
-	case prefHashAlgosSubpacket:
-		// Preferred hash algorithms, section 5.2.3.8
-		if !isHashed {
-			return
-		}
-		sig.PreferredHash = make([]byte, len(subpacket))
-		copy(sig.PreferredHash, subpacket)
-	case prefCompressionSubpacket:
-		// Preferred compression algorithms, section 5.2.3.9
-		if !isHashed {
-			return
-		}
-		sig.PreferredCompression = make([]byte, len(subpacket))
-		copy(sig.PreferredCompression, subpacket)
-	case primaryUserIdSubpacket:
-		// Primary User ID, section 5.2.3.19
-		if !isHashed {
-			return
-		}
-		if len(subpacket) != 1 {
-			err = errors.StructuralError("primary user id subpacket with bad length")
-			return
-		}
-		sig.IsPrimaryId = new(bool)
-		if subpacket[0] > 0 {
-			*sig.IsPrimaryId = true
-		}
-	case keyFlagsSubpacket:
-		// Key flags, section 5.2.3.21
-		if !isHashed {
-			return
-		}
-		if len(subpacket) == 0 {
-			err = errors.StructuralError("empty key flags subpacket")
-			return
-		}
-		sig.FlagsValid = true
-		if subpacket[0]&KeyFlagCertify != 0 {
-			sig.FlagCertify = true
-		}
-		if subpacket[0]&KeyFlagSign != 0 {
-			sig.FlagSign = true
-		}
-		if subpacket[0]&KeyFlagEncryptCommunications != 0 {
-			sig.FlagEncryptCommunications = true
-		}
-		if subpacket[0]&KeyFlagEncryptStorage != 0 {
-			sig.FlagEncryptStorage = true
-		}
-	case reasonForRevocationSubpacket:
-		// Reason For Revocation, section 5.2.3.23
-		if !isHashed {
-			return
-		}
-		if len(subpacket) == 0 {
-			err = errors.StructuralError("empty revocation reason subpacket")
-			return
-		}
-		sig.RevocationReason = new(uint8)
-		*sig.RevocationReason = subpacket[0]
-		sig.RevocationReasonText = string(subpacket[1:])
-	case featuresSubpacket:
-		// Features subpacket, section 5.2.3.24 specifies a very general
-		// mechanism for OpenPGP implementations to signal support for new
-		// features. In practice, the subpacket is used exclusively to
-		// indicate support for MDC-protected encryption.
-		sig.MDC = len(subpacket) >= 1 && subpacket[0]&1 == 1
-	case embeddedSignatureSubpacket:
-		// Only usage is in signatures that cross-certify
-		// signing subkeys. section 5.2.3.26 describes the
-		// format, with its usage described in section 11.1
-		if sig.EmbeddedSignature != nil {
-			err = errors.StructuralError("Cannot have multiple embedded signatures")
-			return
-		}
-		sig.EmbeddedSignature = new(Signature)
-		// Embedded signatures are required to be v4 signatures see
-		// section 12.1. However, we only parse v4 signatures in this
-		// file anyway.
-		if err := sig.EmbeddedSignature.parse(bytes.NewBuffer(subpacket)); err != nil {
-			return nil, err
-		}
-		if sigType := sig.EmbeddedSignature.SigType; sigType != SigTypePrimaryKeyBinding {
-			return nil, errors.StructuralError("cross-signature has unexpected type " + strconv.Itoa(int(sigType)))
-		}
-	default:
-		if isCritical {
-			err = errors.UnsupportedError("unknown critical signature subpacket type " + strconv.Itoa(int(packetType)))
-			return
-		}
-	}
-	return
-
-Truncated:
-	err = errors.StructuralError("signature subpacket truncated")
-	return
-}
-
-// subpacketLengthLength returns the length, in bytes, of an encoded length value.
-func subpacketLengthLength(length int) int {
-	if length < 192 {
-		return 1
-	}
-	if length < 16320 {
-		return 2
-	}
-	return 5
-}
-
-// serializeSubpacketLength marshals the given length into to.
-func serializeSubpacketLength(to []byte, length int) int {
-	// RFC 4880, Section 4.2.2.
-	if length < 192 {
-		to[0] = byte(length)
-		return 1
-	}
-	if length < 16320 {
-		length -= 192
-		to[0] = byte((length >> 8) + 192)
-		to[1] = byte(length)
-		return 2
-	}
-	to[0] = 255
-	to[1] = byte(length >> 24)
-	to[2] = byte(length >> 16)
-	to[3] = byte(length >> 8)
-	to[4] = byte(length)
-	return 5
-}
-
-// subpacketsLength returns the serialized length, in bytes, of the given
-// subpackets.
-func subpacketsLength(subpackets []outputSubpacket, hashed bool) (length int) {
-	for _, subpacket := range subpackets {
-		if subpacket.hashed == hashed {
-			length += subpacketLengthLength(len(subpacket.contents) + 1)
-			length += 1 // type byte
-			length += len(subpacket.contents)
-		}
-	}
-	return
-}
-
-// serializeSubpackets marshals the given subpackets into to.
-func serializeSubpackets(to []byte, subpackets []outputSubpacket, hashed bool) {
-	for _, subpacket := range subpackets {
-		if subpacket.hashed == hashed {
-			n := serializeSubpacketLength(to, len(subpacket.contents)+1)
-			to[n] = byte(subpacket.subpacketType)
-			to = to[1+n:]
-			n = copy(to, subpacket.contents)
-			to = to[n:]
-		}
-	}
-	return
-}
-
-// KeyExpired returns whether sig is a self-signature of a key that has
-// expired.
-func (sig *Signature) KeyExpired(currentTime time.Time) bool {
-	if sig.KeyLifetimeSecs == nil {
-		return false
-	}
-	expiry := sig.CreationTime.Add(time.Duration(*sig.KeyLifetimeSecs) * time.Second)
-	return currentTime.After(expiry)
-}
-
-// buildHashSuffix constructs the HashSuffix member of sig in preparation for signing.
-func (sig *Signature) buildHashSuffix() (err error) {
-	hashedSubpacketsLen := subpacketsLength(sig.outSubpackets, true)
-
-	var ok bool
-	l := 6 + hashedSubpacketsLen
-	sig.HashSuffix = make([]byte, l+6)
-	sig.HashSuffix[0] = 4
-	sig.HashSuffix[1] = uint8(sig.SigType)
-	sig.HashSuffix[2] = uint8(sig.PubKeyAlgo)
-	sig.HashSuffix[3], ok = s2k.HashToHashId(sig.Hash)
-	if !ok {
-		sig.HashSuffix = nil
-		return errors.InvalidArgumentError("hash cannot be represented in OpenPGP: " + strconv.Itoa(int(sig.Hash)))
-	}
-	sig.HashSuffix[4] = byte(hashedSubpacketsLen >> 8)
-	sig.HashSuffix[5] = byte(hashedSubpacketsLen)
-	serializeSubpackets(sig.HashSuffix[6:l], sig.outSubpackets, true)
-	trailer := sig.HashSuffix[l:]
-	trailer[0] = 4
-	trailer[1] = 0xff
-	trailer[2] = byte(l >> 24)
-	trailer[3] = byte(l >> 16)
-	trailer[4] = byte(l >> 8)
-	trailer[5] = byte(l)
-	return
-}
-
-func (sig *Signature) signPrepareHash(h hash.Hash) (digest []byte, err error) {
-	err = sig.buildHashSuffix()
-	if err != nil {
-		return
-	}
-
-	h.Write(sig.HashSuffix)
-	digest = h.Sum(nil)
-	copy(sig.HashTag[:], digest)
-	return
-}
-
-// Sign signs a message with a private key. The hash, h, must contain
-// the hash of the message to be signed and will be mutated by this function.
-// On success, the signature is stored in sig. Call Serialize to write it out.
-// If config is nil, sensible defaults will be used.
-func (sig *Signature) Sign(h hash.Hash, priv *PrivateKey, config *Config) (err error) {
-	sig.outSubpackets = sig.buildSubpackets()
-	digest, err := sig.signPrepareHash(h)
-	if err != nil {
-		return
-	}
-
-	switch priv.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		// supports both *rsa.PrivateKey and crypto.Signer
-		sig.RSASignature.bytes, err = priv.PrivateKey.(crypto.Signer).Sign(config.Random(), digest, sig.Hash)
-		sig.RSASignature.bitLength = uint16(8 * len(sig.RSASignature.bytes))
-	case PubKeyAlgoDSA:
-		dsaPriv := priv.PrivateKey.(*dsa.PrivateKey)
-
-		// Need to truncate hashBytes to match FIPS 186-3 section 4.6.
-		subgroupSize := (dsaPriv.Q.BitLen() + 7) / 8
-		if len(digest) > subgroupSize {
-			digest = digest[:subgroupSize]
-		}
-		r, s, err := dsa.Sign(config.Random(), dsaPriv, digest)
-		if err == nil {
-			sig.DSASigR.bytes = r.Bytes()
-			sig.DSASigR.bitLength = uint16(8 * len(sig.DSASigR.bytes))
-			sig.DSASigS.bytes = s.Bytes()
-			sig.DSASigS.bitLength = uint16(8 * len(sig.DSASigS.bytes))
-		}
-	case PubKeyAlgoECDSA:
-		var r, s *big.Int
-		if pk, ok := priv.PrivateKey.(*ecdsa.PrivateKey); ok {
-			// direct support, avoid asn1 wrapping/unwrapping
-			r, s, err = ecdsa.Sign(config.Random(), pk, digest)
-		} else {
-			var b []byte
-			b, err = priv.PrivateKey.(crypto.Signer).Sign(config.Random(), digest, nil)
-			if err == nil {
-				r, s, err = unwrapECDSASig(b)
-			}
-		}
-		if err == nil {
-			sig.ECDSASigR = fromBig(r)
-			sig.ECDSASigS = fromBig(s)
-		}
-	default:
-		err = errors.UnsupportedError("public key algorithm: " + strconv.Itoa(int(sig.PubKeyAlgo)))
-	}
-
-	return
-}
-
-// unwrapECDSASig parses the two integer components of an ASN.1-encoded ECDSA
-// signature.
-func unwrapECDSASig(b []byte) (r, s *big.Int, err error) {
-	var ecsdaSig struct {
-		R, S *big.Int
-	}
-	_, err = asn1.Unmarshal(b, &ecsdaSig)
-	if err != nil {
-		return
-	}
-	return ecsdaSig.R, ecsdaSig.S, nil
-}
-
-// SignUserId computes a signature from priv, asserting that pub is a valid
-// key for the identity id.  On success, the signature is stored in sig. Call
-// Serialize to write it out.
-// If config is nil, sensible defaults will be used.
-func (sig *Signature) SignUserId(id string, pub *PublicKey, priv *PrivateKey, config *Config) error {
-	h, err := userIdSignatureHash(id, pub, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return sig.Sign(h, priv, config)
-}
-
-// SignKey computes a signature from priv, asserting that pub is a subkey. On
-// success, the signature is stored in sig. Call Serialize to write it out.
-// If config is nil, sensible defaults will be used.
-func (sig *Signature) SignKey(pub *PublicKey, priv *PrivateKey, config *Config) error {
-	h, err := keySignatureHash(&priv.PublicKey, pub, sig.Hash)
-	if err != nil {
-		return err
-	}
-	return sig.Sign(h, priv, config)
-}
-
-// Serialize marshals sig to w. Sign, SignUserId or SignKey must have been
-// called first.
-func (sig *Signature) Serialize(w io.Writer) (err error) {
-	if len(sig.outSubpackets) == 0 {
-		sig.outSubpackets = sig.rawSubpackets
-	}
-	if sig.RSASignature.bytes == nil && sig.DSASigR.bytes == nil && sig.ECDSASigR.bytes == nil {
-		return errors.InvalidArgumentError("Signature: need to call Sign, SignUserId or SignKey before Serialize")
-	}
-
-	sigLength := 0
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		sigLength = 2 + len(sig.RSASignature.bytes)
-	case PubKeyAlgoDSA:
-		sigLength = 2 + len(sig.DSASigR.bytes)
-		sigLength += 2 + len(sig.DSASigS.bytes)
-	case PubKeyAlgoECDSA:
-		sigLength = 2 + len(sig.ECDSASigR.bytes)
-		sigLength += 2 + len(sig.ECDSASigS.bytes)
-	default:
-		panic("impossible")
-	}
-
-	unhashedSubpacketsLen := subpacketsLength(sig.outSubpackets, false)
-	length := len(sig.HashSuffix) - 6 /* trailer not included */ +
-		2 /* length of unhashed subpackets */ + unhashedSubpacketsLen +
-		2 /* hash tag */ + sigLength
-	err = serializeHeader(w, packetTypeSignature, length)
-	if err != nil {
-		return
-	}
-
-	_, err = w.Write(sig.HashSuffix[:len(sig.HashSuffix)-6])
-	if err != nil {
-		return
-	}
-
-	unhashedSubpackets := make([]byte, 2+unhashedSubpacketsLen)
-	unhashedSubpackets[0] = byte(unhashedSubpacketsLen >> 8)
-	unhashedSubpackets[1] = byte(unhashedSubpacketsLen)
-	serializeSubpackets(unhashedSubpackets[2:], sig.outSubpackets, false)
-
-	_, err = w.Write(unhashedSubpackets)
-	if err != nil {
-		return
-	}
-	_, err = w.Write(sig.HashTag[:])
-	if err != nil {
-		return
-	}
-
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		err = writeMPIs(w, sig.RSASignature)
-	case PubKeyAlgoDSA:
-		err = writeMPIs(w, sig.DSASigR, sig.DSASigS)
-	case PubKeyAlgoECDSA:
-		err = writeMPIs(w, sig.ECDSASigR, sig.ECDSASigS)
-	default:
-		panic("impossible")
-	}
-	return
-}
-
-// outputSubpacket represents a subpacket to be marshaled.
-type outputSubpacket struct {
-	hashed        bool // true if this subpacket is in the hashed area.
-	subpacketType signatureSubpacketType
-	isCritical    bool
-	contents      []byte
-}
-
-func (sig *Signature) buildSubpackets() (subpackets []outputSubpacket) {
-	creationTime := make([]byte, 4)
-	binary.BigEndian.PutUint32(creationTime, uint32(sig.CreationTime.Unix()))
-	subpackets = append(subpackets, outputSubpacket{true, creationTimeSubpacket, false, creationTime})
-
-	if sig.IssuerKeyId != nil {
-		keyId := make([]byte, 8)
-		binary.BigEndian.PutUint64(keyId, *sig.IssuerKeyId)
-		subpackets = append(subpackets, outputSubpacket{true, issuerSubpacket, false, keyId})
-	}
-
-	if sig.SigLifetimeSecs != nil && *sig.SigLifetimeSecs != 0 {
-		sigLifetime := make([]byte, 4)
-		binary.BigEndian.PutUint32(sigLifetime, *sig.SigLifetimeSecs)
-		subpackets = append(subpackets, outputSubpacket{true, signatureExpirationSubpacket, true, sigLifetime})
-	}
-
-	// Key flags may only appear in self-signatures or certification signatures.
-
-	if sig.FlagsValid {
-		var flags byte
-		if sig.FlagCertify {
-			flags |= KeyFlagCertify
-		}
-		if sig.FlagSign {
-			flags |= KeyFlagSign
-		}
-		if sig.FlagEncryptCommunications {
-			flags |= KeyFlagEncryptCommunications
-		}
-		if sig.FlagEncryptStorage {
-			flags |= KeyFlagEncryptStorage
-		}
-		subpackets = append(subpackets, outputSubpacket{true, keyFlagsSubpacket, false, []byte{flags}})
-	}
-
-	// The following subpackets may only appear in self-signatures
-
-	if sig.KeyLifetimeSecs != nil && *sig.KeyLifetimeSecs != 0 {
-		keyLifetime := make([]byte, 4)
-		binary.BigEndian.PutUint32(keyLifetime, *sig.KeyLifetimeSecs)
-		subpackets = append(subpackets, outputSubpacket{true, keyExpirationSubpacket, true, keyLifetime})
-	}
-
-	if sig.IsPrimaryId != nil && *sig.IsPrimaryId {
-		subpackets = append(subpackets, outputSubpacket{true, primaryUserIdSubpacket, false, []byte{1}})
-	}
-
-	if len(sig.PreferredSymmetric) > 0 {
-		subpackets = append(subpackets, outputSubpacket{true, prefSymmetricAlgosSubpacket, false, sig.PreferredSymmetric})
-	}
-
-	if len(sig.PreferredHash) > 0 {
-		subpackets = append(subpackets, outputSubpacket{true, prefHashAlgosSubpacket, false, sig.PreferredHash})
-	}
-
-	if len(sig.PreferredCompression) > 0 {
-		subpackets = append(subpackets, outputSubpacket{true, prefCompressionSubpacket, false, sig.PreferredCompression})
-	}
-
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/signature_v3.go b/vendor/golang.org/x/crypto/openpgp/packet/signature_v3.go
deleted file mode 100644
index 6edff88934..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/signature_v3.go
+++ /dev/null
@@ -1,146 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto"
-	"encoding/binary"
-	"fmt"
-	"io"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/s2k"
-)
-
-// SignatureV3 represents older version 3 signatures. These signatures are less secure
-// than version 4 and should not be used to create new signatures. They are included
-// here for backwards compatibility to read and validate with older key material.
-// See RFC 4880, section 5.2.2.
-type SignatureV3 struct {
-	SigType      SignatureType
-	CreationTime time.Time
-	IssuerKeyId  uint64
-	PubKeyAlgo   PublicKeyAlgorithm
-	Hash         crypto.Hash
-	HashTag      [2]byte
-
-	RSASignature     parsedMPI
-	DSASigR, DSASigS parsedMPI
-}
-
-func (sig *SignatureV3) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.2.2
-	var buf [8]byte
-	if _, err = readFull(r, buf[:1]); err != nil {
-		return
-	}
-	if buf[0] < 2 || buf[0] > 3 {
-		err = errors.UnsupportedError("signature packet version " + strconv.Itoa(int(buf[0])))
-		return
-	}
-	if _, err = readFull(r, buf[:1]); err != nil {
-		return
-	}
-	if buf[0] != 5 {
-		err = errors.UnsupportedError(
-			"invalid hashed material length " + strconv.Itoa(int(buf[0])))
-		return
-	}
-
-	// Read hashed material: signature type + creation time
-	if _, err = readFull(r, buf[:5]); err != nil {
-		return
-	}
-	sig.SigType = SignatureType(buf[0])
-	t := binary.BigEndian.Uint32(buf[1:5])
-	sig.CreationTime = time.Unix(int64(t), 0)
-
-	// Eight-octet Key ID of signer.
-	if _, err = readFull(r, buf[:8]); err != nil {
-		return
-	}
-	sig.IssuerKeyId = binary.BigEndian.Uint64(buf[:])
-
-	// Public-key and hash algorithm
-	if _, err = readFull(r, buf[:2]); err != nil {
-		return
-	}
-	sig.PubKeyAlgo = PublicKeyAlgorithm(buf[0])
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly, PubKeyAlgoDSA:
-	default:
-		err = errors.UnsupportedError("public key algorithm " + strconv.Itoa(int(sig.PubKeyAlgo)))
-		return
-	}
-	var ok bool
-	if sig.Hash, ok = s2k.HashIdToHash(buf[1]); !ok {
-		return errors.UnsupportedError("hash function " + strconv.Itoa(int(buf[2])))
-	}
-
-	// Two-octet field holding left 16 bits of signed hash value.
-	if _, err = readFull(r, sig.HashTag[:2]); err != nil {
-		return
-	}
-
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		sig.RSASignature.bytes, sig.RSASignature.bitLength, err = readMPI(r)
-	case PubKeyAlgoDSA:
-		if sig.DSASigR.bytes, sig.DSASigR.bitLength, err = readMPI(r); err != nil {
-			return
-		}
-		sig.DSASigS.bytes, sig.DSASigS.bitLength, err = readMPI(r)
-	default:
-		panic("unreachable")
-	}
-	return
-}
-
-// Serialize marshals sig to w. Sign, SignUserId or SignKey must have been
-// called first.
-func (sig *SignatureV3) Serialize(w io.Writer) (err error) {
-	buf := make([]byte, 8)
-
-	// Write the sig type and creation time
-	buf[0] = byte(sig.SigType)
-	binary.BigEndian.PutUint32(buf[1:5], uint32(sig.CreationTime.Unix()))
-	if _, err = w.Write(buf[:5]); err != nil {
-		return
-	}
-
-	// Write the issuer long key ID
-	binary.BigEndian.PutUint64(buf[:8], sig.IssuerKeyId)
-	if _, err = w.Write(buf[:8]); err != nil {
-		return
-	}
-
-	// Write public key algorithm, hash ID, and hash value
-	buf[0] = byte(sig.PubKeyAlgo)
-	hashId, ok := s2k.HashToHashId(sig.Hash)
-	if !ok {
-		return errors.UnsupportedError(fmt.Sprintf("hash function %v", sig.Hash))
-	}
-	buf[1] = hashId
-	copy(buf[2:4], sig.HashTag[:])
-	if _, err = w.Write(buf[:4]); err != nil {
-		return
-	}
-
-	if sig.RSASignature.bytes == nil && sig.DSASigR.bytes == nil {
-		return errors.InvalidArgumentError("Signature: need to call Sign, SignUserId or SignKey before Serialize")
-	}
-
-	switch sig.PubKeyAlgo {
-	case PubKeyAlgoRSA, PubKeyAlgoRSASignOnly:
-		err = writeMPIs(w, sig.RSASignature)
-	case PubKeyAlgoDSA:
-		err = writeMPIs(w, sig.DSASigR, sig.DSASigS)
-	default:
-		panic("impossible")
-	}
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/symmetric_key_encrypted.go b/vendor/golang.org/x/crypto/openpgp/packet/symmetric_key_encrypted.go
deleted file mode 100644
index 744c2d2c42..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/symmetric_key_encrypted.go
+++ /dev/null
@@ -1,155 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"crypto/cipher"
-	"io"
-	"strconv"
-
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/s2k"
-)
-
-// This is the largest session key that we'll support. Since no 512-bit cipher
-// has even been seriously used, this is comfortably large.
-const maxSessionKeySizeInBytes = 64
-
-// SymmetricKeyEncrypted represents a passphrase protected session key. See RFC
-// 4880, section 5.3.
-type SymmetricKeyEncrypted struct {
-	CipherFunc   CipherFunction
-	s2k          func(out, in []byte)
-	encryptedKey []byte
-}
-
-const symmetricKeyEncryptedVersion = 4
-
-func (ske *SymmetricKeyEncrypted) parse(r io.Reader) error {
-	// RFC 4880, section 5.3.
-	var buf [2]byte
-	if _, err := readFull(r, buf[:]); err != nil {
-		return err
-	}
-	if buf[0] != symmetricKeyEncryptedVersion {
-		return errors.UnsupportedError("SymmetricKeyEncrypted version")
-	}
-	ske.CipherFunc = CipherFunction(buf[1])
-
-	if ske.CipherFunc.KeySize() == 0 {
-		return errors.UnsupportedError("unknown cipher: " + strconv.Itoa(int(buf[1])))
-	}
-
-	var err error
-	ske.s2k, err = s2k.Parse(r)
-	if err != nil {
-		return err
-	}
-
-	encryptedKey := make([]byte, maxSessionKeySizeInBytes)
-	// The session key may follow. We just have to try and read to find
-	// out. If it exists then we limit it to maxSessionKeySizeInBytes.
-	n, err := readFull(r, encryptedKey)
-	if err != nil && err != io.ErrUnexpectedEOF {
-		return err
-	}
-
-	if n != 0 {
-		if n == maxSessionKeySizeInBytes {
-			return errors.UnsupportedError("oversized encrypted session key")
-		}
-		ske.encryptedKey = encryptedKey[:n]
-	}
-
-	return nil
-}
-
-// Decrypt attempts to decrypt an encrypted session key and returns the key and
-// the cipher to use when decrypting a subsequent Symmetrically Encrypted Data
-// packet.
-func (ske *SymmetricKeyEncrypted) Decrypt(passphrase []byte) ([]byte, CipherFunction, error) {
-	key := make([]byte, ske.CipherFunc.KeySize())
-	ske.s2k(key, passphrase)
-
-	if len(ske.encryptedKey) == 0 {
-		return key, ske.CipherFunc, nil
-	}
-
-	// the IV is all zeros
-	iv := make([]byte, ske.CipherFunc.blockSize())
-	c := cipher.NewCFBDecrypter(ske.CipherFunc.new(key), iv)
-	plaintextKey := make([]byte, len(ske.encryptedKey))
-	c.XORKeyStream(plaintextKey, ske.encryptedKey)
-	cipherFunc := CipherFunction(plaintextKey[0])
-	if cipherFunc.blockSize() == 0 {
-		return nil, ske.CipherFunc, errors.UnsupportedError("unknown cipher: " + strconv.Itoa(int(cipherFunc)))
-	}
-	plaintextKey = plaintextKey[1:]
-	if l, cipherKeySize := len(plaintextKey), cipherFunc.KeySize(); l != cipherFunc.KeySize() {
-		return nil, cipherFunc, errors.StructuralError("length of decrypted key (" + strconv.Itoa(l) + ") " +
-			"not equal to cipher keysize (" + strconv.Itoa(cipherKeySize) + ")")
-	}
-	return plaintextKey, cipherFunc, nil
-}
-
-// SerializeSymmetricKeyEncrypted serializes a symmetric key packet to w. The
-// packet contains a random session key, encrypted by a key derived from the
-// given passphrase. The session key is returned and must be passed to
-// SerializeSymmetricallyEncrypted.
-// If config is nil, sensible defaults will be used.
-func SerializeSymmetricKeyEncrypted(w io.Writer, passphrase []byte, config *Config) (key []byte, err error) {
-	cipherFunc := config.Cipher()
-	keySize := cipherFunc.KeySize()
-	if keySize == 0 {
-		return nil, errors.UnsupportedError("unknown cipher: " + strconv.Itoa(int(cipherFunc)))
-	}
-
-	s2kBuf := new(bytes.Buffer)
-	keyEncryptingKey := make([]byte, keySize)
-	// s2k.Serialize salts and stretches the passphrase, and writes the
-	// resulting key to keyEncryptingKey and the s2k descriptor to s2kBuf.
-	err = s2k.Serialize(s2kBuf, keyEncryptingKey, config.Random(), passphrase, &s2k.Config{Hash: config.Hash(), S2KCount: config.PasswordHashIterations()})
-	if err != nil {
-		return
-	}
-	s2kBytes := s2kBuf.Bytes()
-
-	packetLength := 2 /* header */ + len(s2kBytes) + 1 /* cipher type */ + keySize
-	err = serializeHeader(w, packetTypeSymmetricKeyEncrypted, packetLength)
-	if err != nil {
-		return
-	}
-
-	var buf [2]byte
-	buf[0] = symmetricKeyEncryptedVersion
-	buf[1] = byte(cipherFunc)
-	_, err = w.Write(buf[:])
-	if err != nil {
-		return
-	}
-	_, err = w.Write(s2kBytes)
-	if err != nil {
-		return
-	}
-
-	sessionKey := make([]byte, keySize)
-	_, err = io.ReadFull(config.Random(), sessionKey)
-	if err != nil {
-		return
-	}
-	iv := make([]byte, cipherFunc.blockSize())
-	c := cipher.NewCFBEncrypter(cipherFunc.new(keyEncryptingKey), iv)
-	encryptedCipherAndKey := make([]byte, keySize+1)
-	c.XORKeyStream(encryptedCipherAndKey, buf[1:])
-	c.XORKeyStream(encryptedCipherAndKey[1:], sessionKey)
-	_, err = w.Write(encryptedCipherAndKey)
-	if err != nil {
-		return
-	}
-
-	key = sessionKey
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/symmetrically_encrypted.go b/vendor/golang.org/x/crypto/openpgp/packet/symmetrically_encrypted.go
deleted file mode 100644
index 6126030eb9..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/symmetrically_encrypted.go
+++ /dev/null
@@ -1,290 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"crypto/cipher"
-	"crypto/sha1"
-	"crypto/subtle"
-	"golang.org/x/crypto/openpgp/errors"
-	"hash"
-	"io"
-	"strconv"
-)
-
-// SymmetricallyEncrypted represents a symmetrically encrypted byte string. The
-// encrypted contents will consist of more OpenPGP packets. See RFC 4880,
-// sections 5.7 and 5.13.
-type SymmetricallyEncrypted struct {
-	MDC      bool // true iff this is a type 18 packet and thus has an embedded MAC.
-	contents io.Reader
-	prefix   []byte
-}
-
-const symmetricallyEncryptedVersion = 1
-
-func (se *SymmetricallyEncrypted) parse(r io.Reader) error {
-	if se.MDC {
-		// See RFC 4880, section 5.13.
-		var buf [1]byte
-		_, err := readFull(r, buf[:])
-		if err != nil {
-			return err
-		}
-		if buf[0] != symmetricallyEncryptedVersion {
-			return errors.UnsupportedError("unknown SymmetricallyEncrypted version")
-		}
-	}
-	se.contents = r
-	return nil
-}
-
-// Decrypt returns a ReadCloser, from which the decrypted contents of the
-// packet can be read. An incorrect key can, with high probability, be detected
-// immediately and this will result in a KeyIncorrect error being returned.
-func (se *SymmetricallyEncrypted) Decrypt(c CipherFunction, key []byte) (io.ReadCloser, error) {
-	keySize := c.KeySize()
-	if keySize == 0 {
-		return nil, errors.UnsupportedError("unknown cipher: " + strconv.Itoa(int(c)))
-	}
-	if len(key) != keySize {
-		return nil, errors.InvalidArgumentError("SymmetricallyEncrypted: incorrect key length")
-	}
-
-	if se.prefix == nil {
-		se.prefix = make([]byte, c.blockSize()+2)
-		_, err := readFull(se.contents, se.prefix)
-		if err != nil {
-			return nil, err
-		}
-	} else if len(se.prefix) != c.blockSize()+2 {
-		return nil, errors.InvalidArgumentError("can't try ciphers with different block lengths")
-	}
-
-	ocfbResync := OCFBResync
-	if se.MDC {
-		// MDC packets use a different form of OCFB mode.
-		ocfbResync = OCFBNoResync
-	}
-
-	s := NewOCFBDecrypter(c.new(key), se.prefix, ocfbResync)
-	if s == nil {
-		return nil, errors.ErrKeyIncorrect
-	}
-
-	plaintext := cipher.StreamReader{S: s, R: se.contents}
-
-	if se.MDC {
-		// MDC packets have an embedded hash that we need to check.
-		h := sha1.New()
-		h.Write(se.prefix)
-		return &seMDCReader{in: plaintext, h: h}, nil
-	}
-
-	// Otherwise, we just need to wrap plaintext so that it's a valid ReadCloser.
-	return seReader{plaintext}, nil
-}
-
-// seReader wraps an io.Reader with a no-op Close method.
-type seReader struct {
-	in io.Reader
-}
-
-func (ser seReader) Read(buf []byte) (int, error) {
-	return ser.in.Read(buf)
-}
-
-func (ser seReader) Close() error {
-	return nil
-}
-
-const mdcTrailerSize = 1 /* tag byte */ + 1 /* length byte */ + sha1.Size
-
-// An seMDCReader wraps an io.Reader, maintains a running hash and keeps hold
-// of the most recent 22 bytes (mdcTrailerSize). Upon EOF, those bytes form an
-// MDC packet containing a hash of the previous contents which is checked
-// against the running hash. See RFC 4880, section 5.13.
-type seMDCReader struct {
-	in          io.Reader
-	h           hash.Hash
-	trailer     [mdcTrailerSize]byte
-	scratch     [mdcTrailerSize]byte
-	trailerUsed int
-	error       bool
-	eof         bool
-}
-
-func (ser *seMDCReader) Read(buf []byte) (n int, err error) {
-	if ser.error {
-		err = io.ErrUnexpectedEOF
-		return
-	}
-	if ser.eof {
-		err = io.EOF
-		return
-	}
-
-	// If we haven't yet filled the trailer buffer then we must do that
-	// first.
-	for ser.trailerUsed < mdcTrailerSize {
-		n, err = ser.in.Read(ser.trailer[ser.trailerUsed:])
-		ser.trailerUsed += n
-		if err == io.EOF {
-			if ser.trailerUsed != mdcTrailerSize {
-				n = 0
-				err = io.ErrUnexpectedEOF
-				ser.error = true
-				return
-			}
-			ser.eof = true
-			n = 0
-			return
-		}
-
-		if err != nil {
-			n = 0
-			return
-		}
-	}
-
-	// If it's a short read then we read into a temporary buffer and shift
-	// the data into the caller's buffer.
-	if len(buf) <= mdcTrailerSize {
-		n, err = readFull(ser.in, ser.scratch[:len(buf)])
-		copy(buf, ser.trailer[:n])
-		ser.h.Write(buf[:n])
-		copy(ser.trailer[:], ser.trailer[n:])
-		copy(ser.trailer[mdcTrailerSize-n:], ser.scratch[:])
-		if n < len(buf) {
-			ser.eof = true
-			err = io.EOF
-		}
-		return
-	}
-
-	n, err = ser.in.Read(buf[mdcTrailerSize:])
-	copy(buf, ser.trailer[:])
-	ser.h.Write(buf[:n])
-	copy(ser.trailer[:], buf[n:])
-
-	if err == io.EOF {
-		ser.eof = true
-	}
-	return
-}
-
-// This is a new-format packet tag byte for a type 19 (MDC) packet.
-const mdcPacketTagByte = byte(0x80) | 0x40 | 19
-
-func (ser *seMDCReader) Close() error {
-	if ser.error {
-		return errors.SignatureError("error during reading")
-	}
-
-	for !ser.eof {
-		// We haven't seen EOF so we need to read to the end
-		var buf [1024]byte
-		_, err := ser.Read(buf[:])
-		if err == io.EOF {
-			break
-		}
-		if err != nil {
-			return errors.SignatureError("error during reading")
-		}
-	}
-
-	if ser.trailer[0] != mdcPacketTagByte || ser.trailer[1] != sha1.Size {
-		return errors.SignatureError("MDC packet not found")
-	}
-	ser.h.Write(ser.trailer[:2])
-
-	final := ser.h.Sum(nil)
-	if subtle.ConstantTimeCompare(final, ser.trailer[2:]) != 1 {
-		return errors.SignatureError("hash mismatch")
-	}
-	return nil
-}
-
-// An seMDCWriter writes through to an io.WriteCloser while maintains a running
-// hash of the data written. On close, it emits an MDC packet containing the
-// running hash.
-type seMDCWriter struct {
-	w io.WriteCloser
-	h hash.Hash
-}
-
-func (w *seMDCWriter) Write(buf []byte) (n int, err error) {
-	w.h.Write(buf)
-	return w.w.Write(buf)
-}
-
-func (w *seMDCWriter) Close() (err error) {
-	var buf [mdcTrailerSize]byte
-
-	buf[0] = mdcPacketTagByte
-	buf[1] = sha1.Size
-	w.h.Write(buf[:2])
-	digest := w.h.Sum(nil)
-	copy(buf[2:], digest)
-
-	_, err = w.w.Write(buf[:])
-	if err != nil {
-		return
-	}
-	return w.w.Close()
-}
-
-// noOpCloser is like an ioutil.NopCloser, but for an io.Writer.
-type noOpCloser struct {
-	w io.Writer
-}
-
-func (c noOpCloser) Write(data []byte) (n int, err error) {
-	return c.w.Write(data)
-}
-
-func (c noOpCloser) Close() error {
-	return nil
-}
-
-// SerializeSymmetricallyEncrypted serializes a symmetrically encrypted packet
-// to w and returns a WriteCloser to which the to-be-encrypted packets can be
-// written.
-// If config is nil, sensible defaults will be used.
-func SerializeSymmetricallyEncrypted(w io.Writer, c CipherFunction, key []byte, config *Config) (contents io.WriteCloser, err error) {
-	if c.KeySize() != len(key) {
-		return nil, errors.InvalidArgumentError("SymmetricallyEncrypted.Serialize: bad key length")
-	}
-	writeCloser := noOpCloser{w}
-	ciphertext, err := serializeStreamHeader(writeCloser, packetTypeSymmetricallyEncryptedMDC)
-	if err != nil {
-		return
-	}
-
-	_, err = ciphertext.Write([]byte{symmetricallyEncryptedVersion})
-	if err != nil {
-		return
-	}
-
-	block := c.new(key)
-	blockSize := block.BlockSize()
-	iv := make([]byte, blockSize)
-	_, err = config.Random().Read(iv)
-	if err != nil {
-		return
-	}
-	s, prefix := NewOCFBEncrypter(block, iv, OCFBNoResync)
-	_, err = ciphertext.Write(prefix)
-	if err != nil {
-		return
-	}
-	plaintext := cipher.StreamWriter{S: s, W: ciphertext}
-
-	h := sha1.New()
-	h.Write(iv)
-	h.Write(iv[blockSize-2:])
-	contents = &seMDCWriter{w: plaintext, h: h}
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/userattribute.go b/vendor/golang.org/x/crypto/openpgp/packet/userattribute.go
deleted file mode 100644
index 96a2b382a1..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/userattribute.go
+++ /dev/null
@@ -1,91 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"bytes"
-	"image"
-	"image/jpeg"
-	"io"
-	"io/ioutil"
-)
-
-const UserAttrImageSubpacket = 1
-
-// UserAttribute is capable of storing other types of data about a user
-// beyond name, email and a text comment. In practice, user attributes are typically used
-// to store a signed thumbnail photo JPEG image of the user.
-// See RFC 4880, section 5.12.
-type UserAttribute struct {
-	Contents []*OpaqueSubpacket
-}
-
-// NewUserAttributePhoto creates a user attribute packet
-// containing the given images.
-func NewUserAttributePhoto(photos ...image.Image) (uat *UserAttribute, err error) {
-	uat = new(UserAttribute)
-	for _, photo := range photos {
-		var buf bytes.Buffer
-		// RFC 4880, Section 5.12.1.
-		data := []byte{
-			0x10, 0x00, // Little-endian image header length (16 bytes)
-			0x01,       // Image header version 1
-			0x01,       // JPEG
-			0, 0, 0, 0, // 12 reserved octets, must be all zero.
-			0, 0, 0, 0,
-			0, 0, 0, 0}
-		if _, err = buf.Write(data); err != nil {
-			return
-		}
-		if err = jpeg.Encode(&buf, photo, nil); err != nil {
-			return
-		}
-		uat.Contents = append(uat.Contents, &OpaqueSubpacket{
-			SubType:  UserAttrImageSubpacket,
-			Contents: buf.Bytes()})
-	}
-	return
-}
-
-// NewUserAttribute creates a new user attribute packet containing the given subpackets.
-func NewUserAttribute(contents ...*OpaqueSubpacket) *UserAttribute {
-	return &UserAttribute{Contents: contents}
-}
-
-func (uat *UserAttribute) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.13
-	b, err := ioutil.ReadAll(r)
-	if err != nil {
-		return
-	}
-	uat.Contents, err = OpaqueSubpackets(b)
-	return
-}
-
-// Serialize marshals the user attribute to w in the form of an OpenPGP packet, including
-// header.
-func (uat *UserAttribute) Serialize(w io.Writer) (err error) {
-	var buf bytes.Buffer
-	for _, sp := range uat.Contents {
-		sp.Serialize(&buf)
-	}
-	if err = serializeHeader(w, packetTypeUserAttribute, buf.Len()); err != nil {
-		return err
-	}
-	_, err = w.Write(buf.Bytes())
-	return
-}
-
-// ImageData returns zero or more byte slices, each containing
-// JPEG File Interchange Format (JFIF), for each photo in the
-// the user attribute packet.
-func (uat *UserAttribute) ImageData() (imageData [][]byte) {
-	for _, sp := range uat.Contents {
-		if sp.SubType == UserAttrImageSubpacket && len(sp.Contents) > 16 {
-			imageData = append(imageData, sp.Contents[16:])
-		}
-	}
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/packet/userid.go b/vendor/golang.org/x/crypto/openpgp/packet/userid.go
deleted file mode 100644
index d6bea7d4ac..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/packet/userid.go
+++ /dev/null
@@ -1,160 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package packet
-
-import (
-	"io"
-	"io/ioutil"
-	"strings"
-)
-
-// UserId contains text that is intended to represent the name and email
-// address of the key holder. See RFC 4880, section 5.11. By convention, this
-// takes the form "Full Name (Comment) <email@example.com>"
-type UserId struct {
-	Id string // By convention, this takes the form "Full Name (Comment) <email@example.com>" which is split out in the fields below.
-
-	Name, Comment, Email string
-}
-
-func hasInvalidCharacters(s string) bool {
-	for _, c := range s {
-		switch c {
-		case '(', ')', '<', '>', 0:
-			return true
-		}
-	}
-	return false
-}
-
-// NewUserId returns a UserId or nil if any of the arguments contain invalid
-// characters. The invalid characters are '\x00', '(', ')', '<' and '>'
-func NewUserId(name, comment, email string) *UserId {
-	// RFC 4880 doesn't deal with the structure of userid strings; the
-	// name, comment and email form is just a convention. However, there's
-	// no convention about escaping the metacharacters and GPG just refuses
-	// to create user ids where, say, the name contains a '('. We mirror
-	// this behaviour.
-
-	if hasInvalidCharacters(name) || hasInvalidCharacters(comment) || hasInvalidCharacters(email) {
-		return nil
-	}
-
-	uid := new(UserId)
-	uid.Name, uid.Comment, uid.Email = name, comment, email
-	uid.Id = name
-	if len(comment) > 0 {
-		if len(uid.Id) > 0 {
-			uid.Id += " "
-		}
-		uid.Id += "("
-		uid.Id += comment
-		uid.Id += ")"
-	}
-	if len(email) > 0 {
-		if len(uid.Id) > 0 {
-			uid.Id += " "
-		}
-		uid.Id += "<"
-		uid.Id += email
-		uid.Id += ">"
-	}
-	return uid
-}
-
-func (uid *UserId) parse(r io.Reader) (err error) {
-	// RFC 4880, section 5.11
-	b, err := ioutil.ReadAll(r)
-	if err != nil {
-		return
-	}
-	uid.Id = string(b)
-	uid.Name, uid.Comment, uid.Email = parseUserId(uid.Id)
-	return
-}
-
-// Serialize marshals uid to w in the form of an OpenPGP packet, including
-// header.
-func (uid *UserId) Serialize(w io.Writer) error {
-	err := serializeHeader(w, packetTypeUserId, len(uid.Id))
-	if err != nil {
-		return err
-	}
-	_, err = w.Write([]byte(uid.Id))
-	return err
-}
-
-// parseUserId extracts the name, comment and email from a user id string that
-// is formatted as "Full Name (Comment) <email@example.com>".
-func parseUserId(id string) (name, comment, email string) {
-	var n, c, e struct {
-		start, end int
-	}
-	var state int
-
-	for offset, rune := range id {
-		switch state {
-		case 0:
-			// Entering name
-			n.start = offset
-			state = 1
-			fallthrough
-		case 1:
-			// In name
-			if rune == '(' {
-				state = 2
-				n.end = offset
-			} else if rune == '<' {
-				state = 5
-				n.end = offset
-			}
-		case 2:
-			// Entering comment
-			c.start = offset
-			state = 3
-			fallthrough
-		case 3:
-			// In comment
-			if rune == ')' {
-				state = 4
-				c.end = offset
-			}
-		case 4:
-			// Between comment and email
-			if rune == '<' {
-				state = 5
-			}
-		case 5:
-			// Entering email
-			e.start = offset
-			state = 6
-			fallthrough
-		case 6:
-			// In email
-			if rune == '>' {
-				state = 7
-				e.end = offset
-			}
-		default:
-			// After email
-		}
-	}
-	switch state {
-	case 1:
-		// ended in the name
-		n.end = len(id)
-	case 3:
-		// ended in comment
-		c.end = len(id)
-	case 6:
-		// ended in email
-		e.end = len(id)
-	}
-
-	name = strings.TrimSpace(id[n.start:n.end])
-	comment = strings.TrimSpace(id[c.start:c.end])
-	email = strings.TrimSpace(id[e.start:e.end])
-	return
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/read.go b/vendor/golang.org/x/crypto/openpgp/read.go
deleted file mode 100644
index 6ec664f44a..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/read.go
+++ /dev/null
@@ -1,442 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package openpgp implements high level operations on OpenPGP messages.
-package openpgp // import "golang.org/x/crypto/openpgp"
-
-import (
-	"crypto"
-	_ "crypto/sha256"
-	"hash"
-	"io"
-	"strconv"
-
-	"golang.org/x/crypto/openpgp/armor"
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/packet"
-)
-
-// SignatureType is the armor type for a PGP signature.
-var SignatureType = "PGP SIGNATURE"
-
-// readArmored reads an armored block with the given type.
-func readArmored(r io.Reader, expectedType string) (body io.Reader, err error) {
-	block, err := armor.Decode(r)
-	if err != nil {
-		return
-	}
-
-	if block.Type != expectedType {
-		return nil, errors.InvalidArgumentError("expected '" + expectedType + "', got: " + block.Type)
-	}
-
-	return block.Body, nil
-}
-
-// MessageDetails contains the result of parsing an OpenPGP encrypted and/or
-// signed message.
-type MessageDetails struct {
-	IsEncrypted              bool                // true if the message was encrypted.
-	EncryptedToKeyIds        []uint64            // the list of recipient key ids.
-	IsSymmetricallyEncrypted bool                // true if a passphrase could have decrypted the message.
-	DecryptedWith            Key                 // the private key used to decrypt the message, if any.
-	IsSigned                 bool                // true if the message is signed.
-	SignedByKeyId            uint64              // the key id of the signer, if any.
-	SignedBy                 *Key                // the key of the signer, if available.
-	LiteralData              *packet.LiteralData // the metadata of the contents
-	UnverifiedBody           io.Reader           // the contents of the message.
-
-	// If IsSigned is true and SignedBy is non-zero then the signature will
-	// be verified as UnverifiedBody is read. The signature cannot be
-	// checked until the whole of UnverifiedBody is read so UnverifiedBody
-	// must be consumed until EOF before the data can be trusted. Even if a
-	// message isn't signed (or the signer is unknown) the data may contain
-	// an authentication code that is only checked once UnverifiedBody has
-	// been consumed. Once EOF has been seen, the following fields are
-	// valid. (An authentication code failure is reported as a
-	// SignatureError error when reading from UnverifiedBody.)
-	SignatureError error               // nil if the signature is good.
-	Signature      *packet.Signature   // the signature packet itself, if v4 (default)
-	SignatureV3    *packet.SignatureV3 // the signature packet if it is a v2 or v3 signature
-
-	decrypted io.ReadCloser
-}
-
-// A PromptFunction is used as a callback by functions that may need to decrypt
-// a private key, or prompt for a passphrase. It is called with a list of
-// acceptable, encrypted private keys and a boolean that indicates whether a
-// passphrase is usable. It should either decrypt a private key or return a
-// passphrase to try. If the decrypted private key or given passphrase isn't
-// correct, the function will be called again, forever. Any error returned will
-// be passed up.
-type PromptFunction func(keys []Key, symmetric bool) ([]byte, error)
-
-// A keyEnvelopePair is used to store a private key with the envelope that
-// contains a symmetric key, encrypted with that key.
-type keyEnvelopePair struct {
-	key          Key
-	encryptedKey *packet.EncryptedKey
-}
-
-// ReadMessage parses an OpenPGP message that may be signed and/or encrypted.
-// The given KeyRing should contain both public keys (for signature
-// verification) and, possibly encrypted, private keys for decrypting.
-// If config is nil, sensible defaults will be used.
-func ReadMessage(r io.Reader, keyring KeyRing, prompt PromptFunction, config *packet.Config) (md *MessageDetails, err error) {
-	var p packet.Packet
-
-	var symKeys []*packet.SymmetricKeyEncrypted
-	var pubKeys []keyEnvelopePair
-	var se *packet.SymmetricallyEncrypted
-
-	packets := packet.NewReader(r)
-	md = new(MessageDetails)
-	md.IsEncrypted = true
-
-	// The message, if encrypted, starts with a number of packets
-	// containing an encrypted decryption key. The decryption key is either
-	// encrypted to a public key, or with a passphrase. This loop
-	// collects these packets.
-ParsePackets:
-	for {
-		p, err = packets.Next()
-		if err != nil {
-			return nil, err
-		}
-		switch p := p.(type) {
-		case *packet.SymmetricKeyEncrypted:
-			// This packet contains the decryption key encrypted with a passphrase.
-			md.IsSymmetricallyEncrypted = true
-			symKeys = append(symKeys, p)
-		case *packet.EncryptedKey:
-			// This packet contains the decryption key encrypted to a public key.
-			md.EncryptedToKeyIds = append(md.EncryptedToKeyIds, p.KeyId)
-			switch p.Algo {
-			case packet.PubKeyAlgoRSA, packet.PubKeyAlgoRSAEncryptOnly, packet.PubKeyAlgoElGamal:
-				break
-			default:
-				continue
-			}
-			var keys []Key
-			if p.KeyId == 0 {
-				keys = keyring.DecryptionKeys()
-			} else {
-				keys = keyring.KeysById(p.KeyId)
-			}
-			for _, k := range keys {
-				pubKeys = append(pubKeys, keyEnvelopePair{k, p})
-			}
-		case *packet.SymmetricallyEncrypted:
-			se = p
-			break ParsePackets
-		case *packet.Compressed, *packet.LiteralData, *packet.OnePassSignature:
-			// This message isn't encrypted.
-			if len(symKeys) != 0 || len(pubKeys) != 0 {
-				return nil, errors.StructuralError("key material not followed by encrypted message")
-			}
-			packets.Unread(p)
-			return readSignedMessage(packets, nil, keyring)
-		}
-	}
-
-	var candidates []Key
-	var decrypted io.ReadCloser
-
-	// Now that we have the list of encrypted keys we need to decrypt at
-	// least one of them or, if we cannot, we need to call the prompt
-	// function so that it can decrypt a key or give us a passphrase.
-FindKey:
-	for {
-		// See if any of the keys already have a private key available
-		candidates = candidates[:0]
-		candidateFingerprints := make(map[string]bool)
-
-		for _, pk := range pubKeys {
-			if pk.key.PrivateKey == nil {
-				continue
-			}
-			if !pk.key.PrivateKey.Encrypted {
-				if len(pk.encryptedKey.Key) == 0 {
-					pk.encryptedKey.Decrypt(pk.key.PrivateKey, config)
-				}
-				if len(pk.encryptedKey.Key) == 0 {
-					continue
-				}
-				decrypted, err = se.Decrypt(pk.encryptedKey.CipherFunc, pk.encryptedKey.Key)
-				if err != nil && err != errors.ErrKeyIncorrect {
-					return nil, err
-				}
-				if decrypted != nil {
-					md.DecryptedWith = pk.key
-					break FindKey
-				}
-			} else {
-				fpr := string(pk.key.PublicKey.Fingerprint[:])
-				if v := candidateFingerprints[fpr]; v {
-					continue
-				}
-				candidates = append(candidates, pk.key)
-				candidateFingerprints[fpr] = true
-			}
-		}
-
-		if len(candidates) == 0 && len(symKeys) == 0 {
-			return nil, errors.ErrKeyIncorrect
-		}
-
-		if prompt == nil {
-			return nil, errors.ErrKeyIncorrect
-		}
-
-		passphrase, err := prompt(candidates, len(symKeys) != 0)
-		if err != nil {
-			return nil, err
-		}
-
-		// Try the symmetric passphrase first
-		if len(symKeys) != 0 && passphrase != nil {
-			for _, s := range symKeys {
-				key, cipherFunc, err := s.Decrypt(passphrase)
-				if err == nil {
-					decrypted, err = se.Decrypt(cipherFunc, key)
-					if err != nil && err != errors.ErrKeyIncorrect {
-						return nil, err
-					}
-					if decrypted != nil {
-						break FindKey
-					}
-				}
-
-			}
-		}
-	}
-
-	md.decrypted = decrypted
-	if err := packets.Push(decrypted); err != nil {
-		return nil, err
-	}
-	return readSignedMessage(packets, md, keyring)
-}
-
-// readSignedMessage reads a possibly signed message if mdin is non-zero then
-// that structure is updated and returned. Otherwise a fresh MessageDetails is
-// used.
-func readSignedMessage(packets *packet.Reader, mdin *MessageDetails, keyring KeyRing) (md *MessageDetails, err error) {
-	if mdin == nil {
-		mdin = new(MessageDetails)
-	}
-	md = mdin
-
-	var p packet.Packet
-	var h hash.Hash
-	var wrappedHash hash.Hash
-FindLiteralData:
-	for {
-		p, err = packets.Next()
-		if err != nil {
-			return nil, err
-		}
-		switch p := p.(type) {
-		case *packet.Compressed:
-			if err := packets.Push(p.Body); err != nil {
-				return nil, err
-			}
-		case *packet.OnePassSignature:
-			if !p.IsLast {
-				return nil, errors.UnsupportedError("nested signatures")
-			}
-
-			h, wrappedHash, err = hashForSignature(p.Hash, p.SigType)
-			if err != nil {
-				md = nil
-				return
-			}
-
-			md.IsSigned = true
-			md.SignedByKeyId = p.KeyId
-			keys := keyring.KeysByIdUsage(p.KeyId, packet.KeyFlagSign)
-			if len(keys) > 0 {
-				md.SignedBy = &keys[0]
-			}
-		case *packet.LiteralData:
-			md.LiteralData = p
-			break FindLiteralData
-		}
-	}
-
-	if md.SignedBy != nil {
-		md.UnverifiedBody = &signatureCheckReader{packets, h, wrappedHash, md}
-	} else if md.decrypted != nil {
-		md.UnverifiedBody = checkReader{md}
-	} else {
-		md.UnverifiedBody = md.LiteralData.Body
-	}
-
-	return md, nil
-}
-
-// hashForSignature returns a pair of hashes that can be used to verify a
-// signature. The signature may specify that the contents of the signed message
-// should be preprocessed (i.e. to normalize line endings). Thus this function
-// returns two hashes. The second should be used to hash the message itself and
-// performs any needed preprocessing.
-func hashForSignature(hashId crypto.Hash, sigType packet.SignatureType) (hash.Hash, hash.Hash, error) {
-	if !hashId.Available() {
-		return nil, nil, errors.UnsupportedError("hash not available: " + strconv.Itoa(int(hashId)))
-	}
-	h := hashId.New()
-
-	switch sigType {
-	case packet.SigTypeBinary:
-		return h, h, nil
-	case packet.SigTypeText:
-		return h, NewCanonicalTextHash(h), nil
-	}
-
-	return nil, nil, errors.UnsupportedError("unsupported signature type: " + strconv.Itoa(int(sigType)))
-}
-
-// checkReader wraps an io.Reader from a LiteralData packet. When it sees EOF
-// it closes the ReadCloser from any SymmetricallyEncrypted packet to trigger
-// MDC checks.
-type checkReader struct {
-	md *MessageDetails
-}
-
-func (cr checkReader) Read(buf []byte) (n int, err error) {
-	n, err = cr.md.LiteralData.Body.Read(buf)
-	if err == io.EOF {
-		mdcErr := cr.md.decrypted.Close()
-		if mdcErr != nil {
-			err = mdcErr
-		}
-	}
-	return
-}
-
-// signatureCheckReader wraps an io.Reader from a LiteralData packet and hashes
-// the data as it is read. When it sees an EOF from the underlying io.Reader
-// it parses and checks a trailing Signature packet and triggers any MDC checks.
-type signatureCheckReader struct {
-	packets        *packet.Reader
-	h, wrappedHash hash.Hash
-	md             *MessageDetails
-}
-
-func (scr *signatureCheckReader) Read(buf []byte) (n int, err error) {
-	n, err = scr.md.LiteralData.Body.Read(buf)
-	scr.wrappedHash.Write(buf[:n])
-	if err == io.EOF {
-		var p packet.Packet
-		p, scr.md.SignatureError = scr.packets.Next()
-		if scr.md.SignatureError != nil {
-			return
-		}
-
-		var ok bool
-		if scr.md.Signature, ok = p.(*packet.Signature); ok {
-			scr.md.SignatureError = scr.md.SignedBy.PublicKey.VerifySignature(scr.h, scr.md.Signature)
-		} else if scr.md.SignatureV3, ok = p.(*packet.SignatureV3); ok {
-			scr.md.SignatureError = scr.md.SignedBy.PublicKey.VerifySignatureV3(scr.h, scr.md.SignatureV3)
-		} else {
-			scr.md.SignatureError = errors.StructuralError("LiteralData not followed by Signature")
-			return
-		}
-
-		// The SymmetricallyEncrypted packet, if any, might have an
-		// unsigned hash of its own. In order to check this we need to
-		// close that Reader.
-		if scr.md.decrypted != nil {
-			mdcErr := scr.md.decrypted.Close()
-			if mdcErr != nil {
-				err = mdcErr
-			}
-		}
-	}
-	return
-}
-
-// CheckDetachedSignature takes a signed file and a detached signature and
-// returns the signer if the signature is valid. If the signer isn't known,
-// ErrUnknownIssuer is returned.
-func CheckDetachedSignature(keyring KeyRing, signed, signature io.Reader) (signer *Entity, err error) {
-	var issuerKeyId uint64
-	var hashFunc crypto.Hash
-	var sigType packet.SignatureType
-	var keys []Key
-	var p packet.Packet
-
-	packets := packet.NewReader(signature)
-	for {
-		p, err = packets.Next()
-		if err == io.EOF {
-			return nil, errors.ErrUnknownIssuer
-		}
-		if err != nil {
-			return nil, err
-		}
-
-		switch sig := p.(type) {
-		case *packet.Signature:
-			if sig.IssuerKeyId == nil {
-				return nil, errors.StructuralError("signature doesn't have an issuer")
-			}
-			issuerKeyId = *sig.IssuerKeyId
-			hashFunc = sig.Hash
-			sigType = sig.SigType
-		case *packet.SignatureV3:
-			issuerKeyId = sig.IssuerKeyId
-			hashFunc = sig.Hash
-			sigType = sig.SigType
-		default:
-			return nil, errors.StructuralError("non signature packet found")
-		}
-
-		keys = keyring.KeysByIdUsage(issuerKeyId, packet.KeyFlagSign)
-		if len(keys) > 0 {
-			break
-		}
-	}
-
-	if len(keys) == 0 {
-		panic("unreachable")
-	}
-
-	h, wrappedHash, err := hashForSignature(hashFunc, sigType)
-	if err != nil {
-		return nil, err
-	}
-
-	if _, err := io.Copy(wrappedHash, signed); err != nil && err != io.EOF {
-		return nil, err
-	}
-
-	for _, key := range keys {
-		switch sig := p.(type) {
-		case *packet.Signature:
-			err = key.PublicKey.VerifySignature(h, sig)
-		case *packet.SignatureV3:
-			err = key.PublicKey.VerifySignatureV3(h, sig)
-		default:
-			panic("unreachable")
-		}
-
-		if err == nil {
-			return key.Entity, nil
-		}
-	}
-
-	return nil, err
-}
-
-// CheckArmoredDetachedSignature performs the same actions as
-// CheckDetachedSignature but expects the signature to be armored.
-func CheckArmoredDetachedSignature(keyring KeyRing, signed, signature io.Reader) (signer *Entity, err error) {
-	body, err := readArmored(signature, SignatureType)
-	if err != nil {
-		return
-	}
-
-	return CheckDetachedSignature(keyring, signed, body)
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/s2k/s2k.go b/vendor/golang.org/x/crypto/openpgp/s2k/s2k.go
deleted file mode 100644
index 4b9a44ca26..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/s2k/s2k.go
+++ /dev/null
@@ -1,273 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package s2k implements the various OpenPGP string-to-key transforms as
-// specified in RFC 4800 section 3.7.1.
-package s2k // import "golang.org/x/crypto/openpgp/s2k"
-
-import (
-	"crypto"
-	"hash"
-	"io"
-	"strconv"
-
-	"golang.org/x/crypto/openpgp/errors"
-)
-
-// Config collects configuration parameters for s2k key-stretching
-// transformatioms. A nil *Config is valid and results in all default
-// values. Currently, Config is used only by the Serialize function in
-// this package.
-type Config struct {
-	// Hash is the default hash function to be used. If
-	// nil, SHA1 is used.
-	Hash crypto.Hash
-	// S2KCount is only used for symmetric encryption. It
-	// determines the strength of the passphrase stretching when
-	// the said passphrase is hashed to produce a key. S2KCount
-	// should be between 1024 and 65011712, inclusive. If Config
-	// is nil or S2KCount is 0, the value 65536 used. Not all
-	// values in the above range can be represented. S2KCount will
-	// be rounded up to the next representable value if it cannot
-	// be encoded exactly. When set, it is strongly encrouraged to
-	// use a value that is at least 65536. See RFC 4880 Section
-	// 3.7.1.3.
-	S2KCount int
-}
-
-func (c *Config) hash() crypto.Hash {
-	if c == nil || uint(c.Hash) == 0 {
-		// SHA1 is the historical default in this package.
-		return crypto.SHA1
-	}
-
-	return c.Hash
-}
-
-func (c *Config) encodedCount() uint8 {
-	if c == nil || c.S2KCount == 0 {
-		return 96 // The common case. Correspoding to 65536
-	}
-
-	i := c.S2KCount
-	switch {
-	// Behave like GPG. Should we make 65536 the lowest value used?
-	case i < 1024:
-		i = 1024
-	case i > 65011712:
-		i = 65011712
-	}
-
-	return encodeCount(i)
-}
-
-// encodeCount converts an iterative "count" in the range 1024 to
-// 65011712, inclusive, to an encoded count. The return value is the
-// octet that is actually stored in the GPG file. encodeCount panics
-// if i is not in the above range (encodedCount above takes care to
-// pass i in the correct range). See RFC 4880 Section 3.7.7.1.
-func encodeCount(i int) uint8 {
-	if i < 1024 || i > 65011712 {
-		panic("count arg i outside the required range")
-	}
-
-	for encoded := 0; encoded < 256; encoded++ {
-		count := decodeCount(uint8(encoded))
-		if count >= i {
-			return uint8(encoded)
-		}
-	}
-
-	return 255
-}
-
-// decodeCount returns the s2k mode 3 iterative "count" corresponding to
-// the encoded octet c.
-func decodeCount(c uint8) int {
-	return (16 + int(c&15)) << (uint32(c>>4) + 6)
-}
-
-// Simple writes to out the result of computing the Simple S2K function (RFC
-// 4880, section 3.7.1.1) using the given hash and input passphrase.
-func Simple(out []byte, h hash.Hash, in []byte) {
-	Salted(out, h, in, nil)
-}
-
-var zero [1]byte
-
-// Salted writes to out the result of computing the Salted S2K function (RFC
-// 4880, section 3.7.1.2) using the given hash, input passphrase and salt.
-func Salted(out []byte, h hash.Hash, in []byte, salt []byte) {
-	done := 0
-	var digest []byte
-
-	for i := 0; done < len(out); i++ {
-		h.Reset()
-		for j := 0; j < i; j++ {
-			h.Write(zero[:])
-		}
-		h.Write(salt)
-		h.Write(in)
-		digest = h.Sum(digest[:0])
-		n := copy(out[done:], digest)
-		done += n
-	}
-}
-
-// Iterated writes to out the result of computing the Iterated and Salted S2K
-// function (RFC 4880, section 3.7.1.3) using the given hash, input passphrase,
-// salt and iteration count.
-func Iterated(out []byte, h hash.Hash, in []byte, salt []byte, count int) {
-	combined := make([]byte, len(in)+len(salt))
-	copy(combined, salt)
-	copy(combined[len(salt):], in)
-
-	if count < len(combined) {
-		count = len(combined)
-	}
-
-	done := 0
-	var digest []byte
-	for i := 0; done < len(out); i++ {
-		h.Reset()
-		for j := 0; j < i; j++ {
-			h.Write(zero[:])
-		}
-		written := 0
-		for written < count {
-			if written+len(combined) > count {
-				todo := count - written
-				h.Write(combined[:todo])
-				written = count
-			} else {
-				h.Write(combined)
-				written += len(combined)
-			}
-		}
-		digest = h.Sum(digest[:0])
-		n := copy(out[done:], digest)
-		done += n
-	}
-}
-
-// Parse reads a binary specification for a string-to-key transformation from r
-// and returns a function which performs that transform.
-func Parse(r io.Reader) (f func(out, in []byte), err error) {
-	var buf [9]byte
-
-	_, err = io.ReadFull(r, buf[:2])
-	if err != nil {
-		return
-	}
-
-	hash, ok := HashIdToHash(buf[1])
-	if !ok {
-		return nil, errors.UnsupportedError("hash for S2K function: " + strconv.Itoa(int(buf[1])))
-	}
-	if !hash.Available() {
-		return nil, errors.UnsupportedError("hash not available: " + strconv.Itoa(int(hash)))
-	}
-	h := hash.New()
-
-	switch buf[0] {
-	case 0:
-		f := func(out, in []byte) {
-			Simple(out, h, in)
-		}
-		return f, nil
-	case 1:
-		_, err = io.ReadFull(r, buf[:8])
-		if err != nil {
-			return
-		}
-		f := func(out, in []byte) {
-			Salted(out, h, in, buf[:8])
-		}
-		return f, nil
-	case 3:
-		_, err = io.ReadFull(r, buf[:9])
-		if err != nil {
-			return
-		}
-		count := decodeCount(buf[8])
-		f := func(out, in []byte) {
-			Iterated(out, h, in, buf[:8], count)
-		}
-		return f, nil
-	}
-
-	return nil, errors.UnsupportedError("S2K function")
-}
-
-// Serialize salts and stretches the given passphrase and writes the
-// resulting key into key. It also serializes an S2K descriptor to
-// w. The key stretching can be configured with c, which may be
-// nil. In that case, sensible defaults will be used.
-func Serialize(w io.Writer, key []byte, rand io.Reader, passphrase []byte, c *Config) error {
-	var buf [11]byte
-	buf[0] = 3 /* iterated and salted */
-	buf[1], _ = HashToHashId(c.hash())
-	salt := buf[2:10]
-	if _, err := io.ReadFull(rand, salt); err != nil {
-		return err
-	}
-	encodedCount := c.encodedCount()
-	count := decodeCount(encodedCount)
-	buf[10] = encodedCount
-	if _, err := w.Write(buf[:]); err != nil {
-		return err
-	}
-
-	Iterated(key, c.hash().New(), passphrase, salt, count)
-	return nil
-}
-
-// hashToHashIdMapping contains pairs relating OpenPGP's hash identifier with
-// Go's crypto.Hash type. See RFC 4880, section 9.4.
-var hashToHashIdMapping = []struct {
-	id   byte
-	hash crypto.Hash
-	name string
-}{
-	{1, crypto.MD5, "MD5"},
-	{2, crypto.SHA1, "SHA1"},
-	{3, crypto.RIPEMD160, "RIPEMD160"},
-	{8, crypto.SHA256, "SHA256"},
-	{9, crypto.SHA384, "SHA384"},
-	{10, crypto.SHA512, "SHA512"},
-	{11, crypto.SHA224, "SHA224"},
-}
-
-// HashIdToHash returns a crypto.Hash which corresponds to the given OpenPGP
-// hash id.
-func HashIdToHash(id byte) (h crypto.Hash, ok bool) {
-	for _, m := range hashToHashIdMapping {
-		if m.id == id {
-			return m.hash, true
-		}
-	}
-	return 0, false
-}
-
-// HashIdToString returns the name of the hash function corresponding to the
-// given OpenPGP hash id.
-func HashIdToString(id byte) (name string, ok bool) {
-	for _, m := range hashToHashIdMapping {
-		if m.id == id {
-			return m.name, true
-		}
-	}
-
-	return "", false
-}
-
-// HashIdToHash returns an OpenPGP hash id which corresponds the given Hash.
-func HashToHashId(h crypto.Hash) (id byte, ok bool) {
-	for _, m := range hashToHashIdMapping {
-		if m.hash == h {
-			return m.id, true
-		}
-	}
-	return 0, false
-}
diff --git a/vendor/golang.org/x/crypto/openpgp/write.go b/vendor/golang.org/x/crypto/openpgp/write.go
deleted file mode 100644
index 65a304cc86..0000000000
--- a/vendor/golang.org/x/crypto/openpgp/write.go
+++ /dev/null
@@ -1,378 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package openpgp
-
-import (
-	"crypto"
-	"hash"
-	"io"
-	"strconv"
-	"time"
-
-	"golang.org/x/crypto/openpgp/armor"
-	"golang.org/x/crypto/openpgp/errors"
-	"golang.org/x/crypto/openpgp/packet"
-	"golang.org/x/crypto/openpgp/s2k"
-)
-
-// DetachSign signs message with the private key from signer (which must
-// already have been decrypted) and writes the signature to w.
-// If config is nil, sensible defaults will be used.
-func DetachSign(w io.Writer, signer *Entity, message io.Reader, config *packet.Config) error {
-	return detachSign(w, signer, message, packet.SigTypeBinary, config)
-}
-
-// ArmoredDetachSign signs message with the private key from signer (which
-// must already have been decrypted) and writes an armored signature to w.
-// If config is nil, sensible defaults will be used.
-func ArmoredDetachSign(w io.Writer, signer *Entity, message io.Reader, config *packet.Config) (err error) {
-	return armoredDetachSign(w, signer, message, packet.SigTypeBinary, config)
-}
-
-// DetachSignText signs message (after canonicalising the line endings) with
-// the private key from signer (which must already have been decrypted) and
-// writes the signature to w.
-// If config is nil, sensible defaults will be used.
-func DetachSignText(w io.Writer, signer *Entity, message io.Reader, config *packet.Config) error {
-	return detachSign(w, signer, message, packet.SigTypeText, config)
-}
-
-// ArmoredDetachSignText signs message (after canonicalising the line endings)
-// with the private key from signer (which must already have been decrypted)
-// and writes an armored signature to w.
-// If config is nil, sensible defaults will be used.
-func ArmoredDetachSignText(w io.Writer, signer *Entity, message io.Reader, config *packet.Config) error {
-	return armoredDetachSign(w, signer, message, packet.SigTypeText, config)
-}
-
-func armoredDetachSign(w io.Writer, signer *Entity, message io.Reader, sigType packet.SignatureType, config *packet.Config) (err error) {
-	out, err := armor.Encode(w, SignatureType, nil)
-	if err != nil {
-		return
-	}
-	err = detachSign(out, signer, message, sigType, config)
-	if err != nil {
-		return
-	}
-	return out.Close()
-}
-
-func detachSign(w io.Writer, signer *Entity, message io.Reader, sigType packet.SignatureType, config *packet.Config) (err error) {
-	if signer.PrivateKey == nil {
-		return errors.InvalidArgumentError("signing key doesn't have a private key")
-	}
-	if signer.PrivateKey.Encrypted {
-		return errors.InvalidArgumentError("signing key is encrypted")
-	}
-
-	sig := new(packet.Signature)
-	sig.SigType = sigType
-	sig.PubKeyAlgo = signer.PrivateKey.PubKeyAlgo
-	sig.Hash = config.Hash()
-	sig.CreationTime = config.Now()
-	sig.IssuerKeyId = &signer.PrivateKey.KeyId
-
-	h, wrappedHash, err := hashForSignature(sig.Hash, sig.SigType)
-	if err != nil {
-		return
-	}
-	io.Copy(wrappedHash, message)
-
-	err = sig.Sign(h, signer.PrivateKey, config)
-	if err != nil {
-		return
-	}
-
-	return sig.Serialize(w)
-}
-
-// FileHints contains metadata about encrypted files. This metadata is, itself,
-// encrypted.
-type FileHints struct {
-	// IsBinary can be set to hint that the contents are binary data.
-	IsBinary bool
-	// FileName hints at the name of the file that should be written. It's
-	// truncated to 255 bytes if longer. It may be empty to suggest that the
-	// file should not be written to disk. It may be equal to "_CONSOLE" to
-	// suggest the data should not be written to disk.
-	FileName string
-	// ModTime contains the modification time of the file, or the zero time if not applicable.
-	ModTime time.Time
-}
-
-// SymmetricallyEncrypt acts like gpg -c: it encrypts a file with a passphrase.
-// The resulting WriteCloser must be closed after the contents of the file have
-// been written.
-// If config is nil, sensible defaults will be used.
-func SymmetricallyEncrypt(ciphertext io.Writer, passphrase []byte, hints *FileHints, config *packet.Config) (plaintext io.WriteCloser, err error) {
-	if hints == nil {
-		hints = &FileHints{}
-	}
-
-	key, err := packet.SerializeSymmetricKeyEncrypted(ciphertext, passphrase, config)
-	if err != nil {
-		return
-	}
-	w, err := packet.SerializeSymmetricallyEncrypted(ciphertext, config.Cipher(), key, config)
-	if err != nil {
-		return
-	}
-
-	literaldata := w
-	if algo := config.Compression(); algo != packet.CompressionNone {
-		var compConfig *packet.CompressionConfig
-		if config != nil {
-			compConfig = config.CompressionConfig
-		}
-		literaldata, err = packet.SerializeCompressed(w, algo, compConfig)
-		if err != nil {
-			return
-		}
-	}
-
-	var epochSeconds uint32
-	if !hints.ModTime.IsZero() {
-		epochSeconds = uint32(hints.ModTime.Unix())
-	}
-	return packet.SerializeLiteral(literaldata, hints.IsBinary, hints.FileName, epochSeconds)
-}
-
-// intersectPreferences mutates and returns a prefix of a that contains only
-// the values in the intersection of a and b. The order of a is preserved.
-func intersectPreferences(a []uint8, b []uint8) (intersection []uint8) {
-	var j int
-	for _, v := range a {
-		for _, v2 := range b {
-			if v == v2 {
-				a[j] = v
-				j++
-				break
-			}
-		}
-	}
-
-	return a[:j]
-}
-
-func hashToHashId(h crypto.Hash) uint8 {
-	v, ok := s2k.HashToHashId(h)
-	if !ok {
-		panic("tried to convert unknown hash")
-	}
-	return v
-}
-
-// Encrypt encrypts a message to a number of recipients and, optionally, signs
-// it. hints contains optional information, that is also encrypted, that aids
-// the recipients in processing the message. The resulting WriteCloser must
-// be closed after the contents of the file have been written.
-// If config is nil, sensible defaults will be used.
-func Encrypt(ciphertext io.Writer, to []*Entity, signed *Entity, hints *FileHints, config *packet.Config) (plaintext io.WriteCloser, err error) {
-	var signer *packet.PrivateKey
-	if signed != nil {
-		signKey, ok := signed.signingKey(config.Now())
-		if !ok {
-			return nil, errors.InvalidArgumentError("no valid signing keys")
-		}
-		signer = signKey.PrivateKey
-		if signer == nil {
-			return nil, errors.InvalidArgumentError("no private key in signing key")
-		}
-		if signer.Encrypted {
-			return nil, errors.InvalidArgumentError("signing key must be decrypted")
-		}
-	}
-
-	// These are the possible ciphers that we'll use for the message.
-	candidateCiphers := []uint8{
-		uint8(packet.CipherAES128),
-		uint8(packet.CipherAES256),
-		uint8(packet.CipherCAST5),
-	}
-	// These are the possible hash functions that we'll use for the signature.
-	candidateHashes := []uint8{
-		hashToHashId(crypto.SHA256),
-		hashToHashId(crypto.SHA512),
-		hashToHashId(crypto.SHA1),
-		hashToHashId(crypto.RIPEMD160),
-	}
-	// In the event that a recipient doesn't specify any supported ciphers
-	// or hash functions, these are the ones that we assume that every
-	// implementation supports.
-	defaultCiphers := candidateCiphers[len(candidateCiphers)-1:]
-	defaultHashes := candidateHashes[len(candidateHashes)-1:]
-
-	encryptKeys := make([]Key, len(to))
-	for i := range to {
-		var ok bool
-		encryptKeys[i], ok = to[i].encryptionKey(config.Now())
-		if !ok {
-			return nil, errors.InvalidArgumentError("cannot encrypt a message to key id " + strconv.FormatUint(to[i].PrimaryKey.KeyId, 16) + " because it has no encryption keys")
-		}
-
-		sig := to[i].primaryIdentity().SelfSignature
-
-		preferredSymmetric := sig.PreferredSymmetric
-		if len(preferredSymmetric) == 0 {
-			preferredSymmetric = defaultCiphers
-		}
-		preferredHashes := sig.PreferredHash
-		if len(preferredHashes) == 0 {
-			preferredHashes = defaultHashes
-		}
-		candidateCiphers = intersectPreferences(candidateCiphers, preferredSymmetric)
-		candidateHashes = intersectPreferences(candidateHashes, preferredHashes)
-	}
-
-	if len(candidateCiphers) == 0 || len(candidateHashes) == 0 {
-		return nil, errors.InvalidArgumentError("cannot encrypt because recipient set shares no common algorithms")
-	}
-
-	cipher := packet.CipherFunction(candidateCiphers[0])
-	// If the cipher specified by config is a candidate, we'll use that.
-	configuredCipher := config.Cipher()
-	for _, c := range candidateCiphers {
-		cipherFunc := packet.CipherFunction(c)
-		if cipherFunc == configuredCipher {
-			cipher = cipherFunc
-			break
-		}
-	}
-
-	var hash crypto.Hash
-	for _, hashId := range candidateHashes {
-		if h, ok := s2k.HashIdToHash(hashId); ok && h.Available() {
-			hash = h
-			break
-		}
-	}
-
-	// If the hash specified by config is a candidate, we'll use that.
-	if configuredHash := config.Hash(); configuredHash.Available() {
-		for _, hashId := range candidateHashes {
-			if h, ok := s2k.HashIdToHash(hashId); ok && h == configuredHash {
-				hash = h
-				break
-			}
-		}
-	}
-
-	if hash == 0 {
-		hashId := candidateHashes[0]
-		name, ok := s2k.HashIdToString(hashId)
-		if !ok {
-			name = "#" + strconv.Itoa(int(hashId))
-		}
-		return nil, errors.InvalidArgumentError("cannot encrypt because no candidate hash functions are compiled in. (Wanted " + name + " in this case.)")
-	}
-
-	symKey := make([]byte, cipher.KeySize())
-	if _, err := io.ReadFull(config.Random(), symKey); err != nil {
-		return nil, err
-	}
-
-	for _, key := range encryptKeys {
-		if err := packet.SerializeEncryptedKey(ciphertext, key.PublicKey, cipher, symKey, config); err != nil {
-			return nil, err
-		}
-	}
-
-	encryptedData, err := packet.SerializeSymmetricallyEncrypted(ciphertext, cipher, symKey, config)
-	if err != nil {
-		return
-	}
-
-	if signer != nil {
-		ops := &packet.OnePassSignature{
-			SigType:    packet.SigTypeBinary,
-			Hash:       hash,
-			PubKeyAlgo: signer.PubKeyAlgo,
-			KeyId:      signer.KeyId,
-			IsLast:     true,
-		}
-		if err := ops.Serialize(encryptedData); err != nil {
-			return nil, err
-		}
-	}
-
-	if hints == nil {
-		hints = &FileHints{}
-	}
-
-	w := encryptedData
-	if signer != nil {
-		// If we need to write a signature packet after the literal
-		// data then we need to stop literalData from closing
-		// encryptedData.
-		w = noOpCloser{encryptedData}
-
-	}
-	var epochSeconds uint32
-	if !hints.ModTime.IsZero() {
-		epochSeconds = uint32(hints.ModTime.Unix())
-	}
-	literalData, err := packet.SerializeLiteral(w, hints.IsBinary, hints.FileName, epochSeconds)
-	if err != nil {
-		return nil, err
-	}
-
-	if signer != nil {
-		return signatureWriter{encryptedData, literalData, hash, hash.New(), signer, config}, nil
-	}
-	return literalData, nil
-}
-
-// signatureWriter hashes the contents of a message while passing it along to
-// literalData. When closed, it closes literalData, writes a signature packet
-// to encryptedData and then also closes encryptedData.
-type signatureWriter struct {
-	encryptedData io.WriteCloser
-	literalData   io.WriteCloser
-	hashType      crypto.Hash
-	h             hash.Hash
-	signer        *packet.PrivateKey
-	config        *packet.Config
-}
-
-func (s signatureWriter) Write(data []byte) (int, error) {
-	s.h.Write(data)
-	return s.literalData.Write(data)
-}
-
-func (s signatureWriter) Close() error {
-	sig := &packet.Signature{
-		SigType:      packet.SigTypeBinary,
-		PubKeyAlgo:   s.signer.PubKeyAlgo,
-		Hash:         s.hashType,
-		CreationTime: s.config.Now(),
-		IssuerKeyId:  &s.signer.KeyId,
-	}
-
-	if err := sig.Sign(s.h, s.signer, s.config); err != nil {
-		return err
-	}
-	if err := s.literalData.Close(); err != nil {
-		return err
-	}
-	if err := sig.Serialize(s.encryptedData); err != nil {
-		return err
-	}
-	return s.encryptedData.Close()
-}
-
-// noOpCloser is like an ioutil.NopCloser, but for an io.Writer.
-// TODO: we have two of these in OpenPGP packages alone. This probably needs
-// to be promoted somewhere more common.
-type noOpCloser struct {
-	w io.Writer
-}
-
-func (c noOpCloser) Write(data []byte) (n int, err error) {
-	return c.w.Write(data)
-}
-
-func (c noOpCloser) Close() error {
-	return nil
-}
diff --git a/vendor/golang.org/x/net/internal/socks/client.go b/vendor/golang.org/x/net/internal/socks/client.go
deleted file mode 100644
index 3d6f516a59..0000000000
--- a/vendor/golang.org/x/net/internal/socks/client.go
+++ /dev/null
@@ -1,168 +0,0 @@
-// Copyright 2018 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package socks
-
-import (
-	"context"
-	"errors"
-	"io"
-	"net"
-	"strconv"
-	"time"
-)
-
-var (
-	noDeadline   = time.Time{}
-	aLongTimeAgo = time.Unix(1, 0)
-)
-
-func (d *Dialer) connect(ctx context.Context, c net.Conn, address string) (_ net.Addr, ctxErr error) {
-	host, port, err := splitHostPort(address)
-	if err != nil {
-		return nil, err
-	}
-	if deadline, ok := ctx.Deadline(); ok && !deadline.IsZero() {
-		c.SetDeadline(deadline)
-		defer c.SetDeadline(noDeadline)
-	}
-	if ctx != context.Background() {
-		errCh := make(chan error, 1)
-		done := make(chan struct{})
-		defer func() {
-			close(done)
-			if ctxErr == nil {
-				ctxErr = <-errCh
-			}
-		}()
-		go func() {
-			select {
-			case <-ctx.Done():
-				c.SetDeadline(aLongTimeAgo)
-				errCh <- ctx.Err()
-			case <-done:
-				errCh <- nil
-			}
-		}()
-	}
-
-	b := make([]byte, 0, 6+len(host)) // the size here is just an estimate
-	b = append(b, Version5)
-	if len(d.AuthMethods) == 0 || d.Authenticate == nil {
-		b = append(b, 1, byte(AuthMethodNotRequired))
-	} else {
-		ams := d.AuthMethods
-		if len(ams) > 255 {
-			return nil, errors.New("too many authentication methods")
-		}
-		b = append(b, byte(len(ams)))
-		for _, am := range ams {
-			b = append(b, byte(am))
-		}
-	}
-	if _, ctxErr = c.Write(b); ctxErr != nil {
-		return
-	}
-
-	if _, ctxErr = io.ReadFull(c, b[:2]); ctxErr != nil {
-		return
-	}
-	if b[0] != Version5 {
-		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
-	}
-	am := AuthMethod(b[1])
-	if am == AuthMethodNoAcceptableMethods {
-		return nil, errors.New("no acceptable authentication methods")
-	}
-	if d.Authenticate != nil {
-		if ctxErr = d.Authenticate(ctx, c, am); ctxErr != nil {
-			return
-		}
-	}
-
-	b = b[:0]
-	b = append(b, Version5, byte(d.cmd), 0)
-	if ip := net.ParseIP(host); ip != nil {
-		if ip4 := ip.To4(); ip4 != nil {
-			b = append(b, AddrTypeIPv4)
-			b = append(b, ip4...)
-		} else if ip6 := ip.To16(); ip6 != nil {
-			b = append(b, AddrTypeIPv6)
-			b = append(b, ip6...)
-		} else {
-			return nil, errors.New("unknown address type")
-		}
-	} else {
-		if len(host) > 255 {
-			return nil, errors.New("FQDN too long")
-		}
-		b = append(b, AddrTypeFQDN)
-		b = append(b, byte(len(host)))
-		b = append(b, host...)
-	}
-	b = append(b, byte(port>>8), byte(port))
-	if _, ctxErr = c.Write(b); ctxErr != nil {
-		return
-	}
-
-	if _, ctxErr = io.ReadFull(c, b[:4]); ctxErr != nil {
-		return
-	}
-	if b[0] != Version5 {
-		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
-	}
-	if cmdErr := Reply(b[1]); cmdErr != StatusSucceeded {
-		return nil, errors.New("unknown error " + cmdErr.String())
-	}
-	if b[2] != 0 {
-		return nil, errors.New("non-zero reserved field")
-	}
-	l := 2
-	var a Addr
-	switch b[3] {
-	case AddrTypeIPv4:
-		l += net.IPv4len
-		a.IP = make(net.IP, net.IPv4len)
-	case AddrTypeIPv6:
-		l += net.IPv6len
-		a.IP = make(net.IP, net.IPv6len)
-	case AddrTypeFQDN:
-		if _, err := io.ReadFull(c, b[:1]); err != nil {
-			return nil, err
-		}
-		l += int(b[0])
-	default:
-		return nil, errors.New("unknown address type " + strconv.Itoa(int(b[3])))
-	}
-	if cap(b) < l {
-		b = make([]byte, l)
-	} else {
-		b = b[:l]
-	}
-	if _, ctxErr = io.ReadFull(c, b); ctxErr != nil {
-		return
-	}
-	if a.IP != nil {
-		copy(a.IP, b)
-	} else {
-		a.Name = string(b[:len(b)-2])
-	}
-	a.Port = int(b[len(b)-2])<<8 | int(b[len(b)-1])
-	return &a, nil
-}
-
-func splitHostPort(address string) (string, int, error) {
-	host, port, err := net.SplitHostPort(address)
-	if err != nil {
-		return "", 0, err
-	}
-	portnum, err := strconv.Atoi(port)
-	if err != nil {
-		return "", 0, err
-	}
-	if 1 > portnum || portnum > 0xffff {
-		return "", 0, errors.New("port number out of range " + port)
-	}
-	return host, portnum, nil
-}
diff --git a/vendor/golang.org/x/net/internal/socks/socks.go b/vendor/golang.org/x/net/internal/socks/socks.go
deleted file mode 100644
index 9158595366..0000000000
--- a/vendor/golang.org/x/net/internal/socks/socks.go
+++ /dev/null
@@ -1,265 +0,0 @@
-// Copyright 2018 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package socks provides a SOCKS version 5 client implementation.
-//
-// SOCKS protocol version 5 is defined in RFC 1928.
-// Username/Password authentication for SOCKS version 5 is defined in
-// RFC 1929.
-package socks
-
-import (
-	"context"
-	"errors"
-	"io"
-	"net"
-	"strconv"
-)
-
-// A Command represents a SOCKS command.
-type Command int
-
-func (cmd Command) String() string {
-	switch cmd {
-	case CmdConnect:
-		return "socks connect"
-	case cmdBind:
-		return "socks bind"
-	default:
-		return "socks " + strconv.Itoa(int(cmd))
-	}
-}
-
-// An AuthMethod represents a SOCKS authentication method.
-type AuthMethod int
-
-// A Reply represents a SOCKS command reply code.
-type Reply int
-
-func (code Reply) String() string {
-	switch code {
-	case StatusSucceeded:
-		return "succeeded"
-	case 0x01:
-		return "general SOCKS server failure"
-	case 0x02:
-		return "connection not allowed by ruleset"
-	case 0x03:
-		return "network unreachable"
-	case 0x04:
-		return "host unreachable"
-	case 0x05:
-		return "connection refused"
-	case 0x06:
-		return "TTL expired"
-	case 0x07:
-		return "command not supported"
-	case 0x08:
-		return "address type not supported"
-	default:
-		return "unknown code: " + strconv.Itoa(int(code))
-	}
-}
-
-// Wire protocol constants.
-const (
-	Version5 = 0x05
-
-	AddrTypeIPv4 = 0x01
-	AddrTypeFQDN = 0x03
-	AddrTypeIPv6 = 0x04
-
-	CmdConnect Command = 0x01 // establishes an active-open forward proxy connection
-	cmdBind    Command = 0x02 // establishes a passive-open forward proxy connection
-
-	AuthMethodNotRequired         AuthMethod = 0x00 // no authentication required
-	AuthMethodUsernamePassword    AuthMethod = 0x02 // use username/password
-	AuthMethodNoAcceptableMethods AuthMethod = 0xff // no acceptable authetication methods
-
-	StatusSucceeded Reply = 0x00
-)
-
-// An Addr represents a SOCKS-specific address.
-// Either Name or IP is used exclusively.
-type Addr struct {
-	Name string // fully-qualified domain name
-	IP   net.IP
-	Port int
-}
-
-func (a *Addr) Network() string { return "socks" }
-
-func (a *Addr) String() string {
-	if a == nil {
-		return "<nil>"
-	}
-	port := strconv.Itoa(a.Port)
-	if a.IP == nil {
-		return net.JoinHostPort(a.Name, port)
-	}
-	return net.JoinHostPort(a.IP.String(), port)
-}
-
-// A Conn represents a forward proxy connection.
-type Conn struct {
-	net.Conn
-
-	boundAddr net.Addr
-}
-
-// BoundAddr returns the address assigned by the proxy server for
-// connecting to the command target address from the proxy server.
-func (c *Conn) BoundAddr() net.Addr {
-	if c == nil {
-		return nil
-	}
-	return c.boundAddr
-}
-
-// A Dialer holds SOCKS-specific options.
-type Dialer struct {
-	cmd          Command // either CmdConnect or cmdBind
-	proxyNetwork string  // network between a proxy server and a client
-	proxyAddress string  // proxy server address
-
-	// ProxyDial specifies the optional dial function for
-	// establishing the transport connection.
-	ProxyDial func(context.Context, string, string) (net.Conn, error)
-
-	// AuthMethods specifies the list of request authention
-	// methods.
-	// If empty, SOCKS client requests only AuthMethodNotRequired.
-	AuthMethods []AuthMethod
-
-	// Authenticate specifies the optional authentication
-	// function. It must be non-nil when AuthMethods is not empty.
-	// It must return an error when the authentication is failed.
-	Authenticate func(context.Context, io.ReadWriter, AuthMethod) error
-}
-
-// DialContext connects to the provided address on the provided
-// network.
-//
-// The returned error value may be a net.OpError. When the Op field of
-// net.OpError contains "socks", the Source field contains a proxy
-// server address and the Addr field contains a command target
-// address.
-//
-// See func Dial of the net package of standard library for a
-// description of the network and address parameters.
-func (d *Dialer) DialContext(ctx context.Context, network, address string) (net.Conn, error) {
-	switch network {
-	case "tcp", "tcp6", "tcp4":
-	default:
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("network not implemented")}
-	}
-	switch d.cmd {
-	case CmdConnect, cmdBind:
-	default:
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("command not implemented")}
-	}
-	if ctx == nil {
-		ctx = context.Background()
-	}
-	var err error
-	var c net.Conn
-	if d.ProxyDial != nil {
-		c, err = d.ProxyDial(ctx, d.proxyNetwork, d.proxyAddress)
-	} else {
-		var dd net.Dialer
-		c, err = dd.DialContext(ctx, d.proxyNetwork, d.proxyAddress)
-	}
-	if err != nil {
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	a, err := d.connect(ctx, c, address)
-	if err != nil {
-		c.Close()
-		proxy, dst, _ := d.pathAddrs(address)
-		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
-	}
-	return &Conn{Conn: c, boundAddr: a}, nil
-}
-
-// Dial connects to the provided address on the provided network.
-//
-// Deprecated: Use DialContext instead.
-func (d *Dialer) Dial(network, address string) (net.Conn, error) {
-	return d.DialContext(context.Background(), network, address)
-}
-
-func (d *Dialer) pathAddrs(address string) (proxy, dst net.Addr, err error) {
-	for i, s := range []string{d.proxyAddress, address} {
-		host, port, err := splitHostPort(s)
-		if err != nil {
-			return nil, nil, err
-		}
-		a := &Addr{Port: port}
-		a.IP = net.ParseIP(host)
-		if a.IP == nil {
-			a.Name = host
-		}
-		if i == 0 {
-			proxy = a
-		} else {
-			dst = a
-		}
-	}
-	return
-}
-
-// NewDialer returns a new Dialer that dials through the provided
-// proxy server's network and address.
-func NewDialer(network, address string) *Dialer {
-	return &Dialer{proxyNetwork: network, proxyAddress: address, cmd: CmdConnect}
-}
-
-const (
-	authUsernamePasswordVersion = 0x01
-	authStatusSucceeded         = 0x00
-)
-
-// UsernamePassword are the credentials for the username/password
-// authentication method.
-type UsernamePassword struct {
-	Username string
-	Password string
-}
-
-// Authenticate authenticates a pair of username and password with the
-// proxy server.
-func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter, auth AuthMethod) error {
-	switch auth {
-	case AuthMethodNotRequired:
-		return nil
-	case AuthMethodUsernamePassword:
-		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) == 0 || len(up.Password) > 255 {
-			return errors.New("invalid username/password")
-		}
-		b := []byte{authUsernamePasswordVersion}
-		b = append(b, byte(len(up.Username)))
-		b = append(b, up.Username...)
-		b = append(b, byte(len(up.Password)))
-		b = append(b, up.Password...)
-		// TODO(mikio): handle IO deadlines and cancelation if
-		// necessary
-		if _, err := rw.Write(b); err != nil {
-			return err
-		}
-		if _, err := io.ReadFull(rw, b[:2]); err != nil {
-			return err
-		}
-		if b[0] != authUsernamePasswordVersion {
-			return errors.New("invalid username/password version")
-		}
-		if b[1] != authStatusSucceeded {
-			return errors.New("username/password authentication failed")
-		}
-		return nil
-	}
-	return errors.New("unsupported authentication method " + strconv.Itoa(int(auth)))
-}
diff --git a/vendor/golang.org/x/net/proxy/direct.go b/vendor/golang.org/x/net/proxy/direct.go
deleted file mode 100644
index 4c5ad88b1e..0000000000
--- a/vendor/golang.org/x/net/proxy/direct.go
+++ /dev/null
@@ -1,18 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"net"
-)
-
-type direct struct{}
-
-// Direct is a direct proxy: one that makes network connections directly.
-var Direct = direct{}
-
-func (direct) Dial(network, addr string) (net.Conn, error) {
-	return net.Dial(network, addr)
-}
diff --git a/vendor/golang.org/x/net/proxy/per_host.go b/vendor/golang.org/x/net/proxy/per_host.go
deleted file mode 100644
index 0689bb6a70..0000000000
--- a/vendor/golang.org/x/net/proxy/per_host.go
+++ /dev/null
@@ -1,140 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"net"
-	"strings"
-)
-
-// A PerHost directs connections to a default Dialer unless the host name
-// requested matches one of a number of exceptions.
-type PerHost struct {
-	def, bypass Dialer
-
-	bypassNetworks []*net.IPNet
-	bypassIPs      []net.IP
-	bypassZones    []string
-	bypassHosts    []string
-}
-
-// NewPerHost returns a PerHost Dialer that directs connections to either
-// defaultDialer or bypass, depending on whether the connection matches one of
-// the configured rules.
-func NewPerHost(defaultDialer, bypass Dialer) *PerHost {
-	return &PerHost{
-		def:    defaultDialer,
-		bypass: bypass,
-	}
-}
-
-// Dial connects to the address addr on the given network through either
-// defaultDialer or bypass.
-func (p *PerHost) Dial(network, addr string) (c net.Conn, err error) {
-	host, _, err := net.SplitHostPort(addr)
-	if err != nil {
-		return nil, err
-	}
-
-	return p.dialerForRequest(host).Dial(network, addr)
-}
-
-func (p *PerHost) dialerForRequest(host string) Dialer {
-	if ip := net.ParseIP(host); ip != nil {
-		for _, net := range p.bypassNetworks {
-			if net.Contains(ip) {
-				return p.bypass
-			}
-		}
-		for _, bypassIP := range p.bypassIPs {
-			if bypassIP.Equal(ip) {
-				return p.bypass
-			}
-		}
-		return p.def
-	}
-
-	for _, zone := range p.bypassZones {
-		if strings.HasSuffix(host, zone) {
-			return p.bypass
-		}
-		if host == zone[1:] {
-			// For a zone ".example.com", we match "example.com"
-			// too.
-			return p.bypass
-		}
-	}
-	for _, bypassHost := range p.bypassHosts {
-		if bypassHost == host {
-			return p.bypass
-		}
-	}
-	return p.def
-}
-
-// AddFromString parses a string that contains comma-separated values
-// specifying hosts that should use the bypass proxy. Each value is either an
-// IP address, a CIDR range, a zone (*.example.com) or a host name
-// (localhost). A best effort is made to parse the string and errors are
-// ignored.
-func (p *PerHost) AddFromString(s string) {
-	hosts := strings.Split(s, ",")
-	for _, host := range hosts {
-		host = strings.TrimSpace(host)
-		if len(host) == 0 {
-			continue
-		}
-		if strings.Contains(host, "/") {
-			// We assume that it's a CIDR address like 127.0.0.0/8
-			if _, net, err := net.ParseCIDR(host); err == nil {
-				p.AddNetwork(net)
-			}
-			continue
-		}
-		if ip := net.ParseIP(host); ip != nil {
-			p.AddIP(ip)
-			continue
-		}
-		if strings.HasPrefix(host, "*.") {
-			p.AddZone(host[1:])
-			continue
-		}
-		p.AddHost(host)
-	}
-}
-
-// AddIP specifies an IP address that will use the bypass proxy. Note that
-// this will only take effect if a literal IP address is dialed. A connection
-// to a named host will never match an IP.
-func (p *PerHost) AddIP(ip net.IP) {
-	p.bypassIPs = append(p.bypassIPs, ip)
-}
-
-// AddNetwork specifies an IP range that will use the bypass proxy. Note that
-// this will only take effect if a literal IP address is dialed. A connection
-// to a named host will never match.
-func (p *PerHost) AddNetwork(net *net.IPNet) {
-	p.bypassNetworks = append(p.bypassNetworks, net)
-}
-
-// AddZone specifies a DNS suffix that will use the bypass proxy. A zone of
-// "example.com" matches "example.com" and all of its subdomains.
-func (p *PerHost) AddZone(zone string) {
-	if strings.HasSuffix(zone, ".") {
-		zone = zone[:len(zone)-1]
-	}
-	if !strings.HasPrefix(zone, ".") {
-		zone = "." + zone
-	}
-	p.bypassZones = append(p.bypassZones, zone)
-}
-
-// AddHost specifies a host name that will use the bypass proxy.
-func (p *PerHost) AddHost(host string) {
-	if strings.HasSuffix(host, ".") {
-		host = host[:len(host)-1]
-	}
-	p.bypassHosts = append(p.bypassHosts, host)
-}
diff --git a/vendor/golang.org/x/net/proxy/proxy.go b/vendor/golang.org/x/net/proxy/proxy.go
deleted file mode 100644
index 553ead7cf0..0000000000
--- a/vendor/golang.org/x/net/proxy/proxy.go
+++ /dev/null
@@ -1,134 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package proxy provides support for a variety of protocols to proxy network
-// data.
-package proxy // import "golang.org/x/net/proxy"
-
-import (
-	"errors"
-	"net"
-	"net/url"
-	"os"
-	"sync"
-)
-
-// A Dialer is a means to establish a connection.
-type Dialer interface {
-	// Dial connects to the given address via the proxy.
-	Dial(network, addr string) (c net.Conn, err error)
-}
-
-// Auth contains authentication parameters that specific Dialers may require.
-type Auth struct {
-	User, Password string
-}
-
-// FromEnvironment returns the dialer specified by the proxy related variables in
-// the environment.
-func FromEnvironment() Dialer {
-	allProxy := allProxyEnv.Get()
-	if len(allProxy) == 0 {
-		return Direct
-	}
-
-	proxyURL, err := url.Parse(allProxy)
-	if err != nil {
-		return Direct
-	}
-	proxy, err := FromURL(proxyURL, Direct)
-	if err != nil {
-		return Direct
-	}
-
-	noProxy := noProxyEnv.Get()
-	if len(noProxy) == 0 {
-		return proxy
-	}
-
-	perHost := NewPerHost(proxy, Direct)
-	perHost.AddFromString(noProxy)
-	return perHost
-}
-
-// proxySchemes is a map from URL schemes to a function that creates a Dialer
-// from a URL with such a scheme.
-var proxySchemes map[string]func(*url.URL, Dialer) (Dialer, error)
-
-// RegisterDialerType takes a URL scheme and a function to generate Dialers from
-// a URL with that scheme and a forwarding Dialer. Registered schemes are used
-// by FromURL.
-func RegisterDialerType(scheme string, f func(*url.URL, Dialer) (Dialer, error)) {
-	if proxySchemes == nil {
-		proxySchemes = make(map[string]func(*url.URL, Dialer) (Dialer, error))
-	}
-	proxySchemes[scheme] = f
-}
-
-// FromURL returns a Dialer given a URL specification and an underlying
-// Dialer for it to make network requests.
-func FromURL(u *url.URL, forward Dialer) (Dialer, error) {
-	var auth *Auth
-	if u.User != nil {
-		auth = new(Auth)
-		auth.User = u.User.Username()
-		if p, ok := u.User.Password(); ok {
-			auth.Password = p
-		}
-	}
-
-	switch u.Scheme {
-	case "socks5":
-		return SOCKS5("tcp", u.Host, auth, forward)
-	}
-
-	// If the scheme doesn't match any of the built-in schemes, see if it
-	// was registered by another package.
-	if proxySchemes != nil {
-		if f, ok := proxySchemes[u.Scheme]; ok {
-			return f(u, forward)
-		}
-	}
-
-	return nil, errors.New("proxy: unknown scheme: " + u.Scheme)
-}
-
-var (
-	allProxyEnv = &envOnce{
-		names: []string{"ALL_PROXY", "all_proxy"},
-	}
-	noProxyEnv = &envOnce{
-		names: []string{"NO_PROXY", "no_proxy"},
-	}
-)
-
-// envOnce looks up an environment variable (optionally by multiple
-// names) once. It mitigates expensive lookups on some platforms
-// (e.g. Windows).
-// (Borrowed from net/http/transport.go)
-type envOnce struct {
-	names []string
-	once  sync.Once
-	val   string
-}
-
-func (e *envOnce) Get() string {
-	e.once.Do(e.init)
-	return e.val
-}
-
-func (e *envOnce) init() {
-	for _, n := range e.names {
-		e.val = os.Getenv(n)
-		if e.val != "" {
-			return
-		}
-	}
-}
-
-// reset is used by tests
-func (e *envOnce) reset() {
-	e.once = sync.Once{}
-	e.val = ""
-}
diff --git a/vendor/golang.org/x/net/proxy/socks5.go b/vendor/golang.org/x/net/proxy/socks5.go
deleted file mode 100644
index 56345ec8b6..0000000000
--- a/vendor/golang.org/x/net/proxy/socks5.go
+++ /dev/null
@@ -1,36 +0,0 @@
-// Copyright 2011 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-package proxy
-
-import (
-	"context"
-	"net"
-
-	"golang.org/x/net/internal/socks"
-)
-
-// SOCKS5 returns a Dialer that makes SOCKSv5 connections to the given
-// address with an optional username and password.
-// See RFC 1928 and RFC 1929.
-func SOCKS5(network, address string, auth *Auth, forward Dialer) (Dialer, error) {
-	d := socks.NewDialer(network, address)
-	if forward != nil {
-		d.ProxyDial = func(_ context.Context, network string, address string) (net.Conn, error) {
-			return forward.Dial(network, address)
-		}
-	}
-	if auth != nil {
-		up := socks.UsernamePassword{
-			Username: auth.User,
-			Password: auth.Password,
-		}
-		d.AuthMethods = []socks.AuthMethod{
-			socks.AuthMethodNotRequired,
-			socks.AuthMethodUsernamePassword,
-		}
-		d.Authenticate = up.Authenticate
-	}
-	return d, nil
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/LICENSE b/vendor/gopkg.in/cheggaaa/pb.v1/LICENSE
deleted file mode 100644
index 5119703339..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/LICENSE
+++ /dev/null
@@ -1,12 +0,0 @@
-Copyright (c) 2012-2015, Sergey Cherepanov
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
-
-* Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
-
-* Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
-
-* Neither the name of the author nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
\ No newline at end of file
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/format.go b/vendor/gopkg.in/cheggaaa/pb.v1/format.go
deleted file mode 100644
index 0723561c2e..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/format.go
+++ /dev/null
@@ -1,118 +0,0 @@
-package pb
-
-import (
-	"fmt"
-	"time"
-)
-
-type Units int
-
-const (
-	// U_NO are default units, they represent a simple value and are not formatted at all.
-	U_NO Units = iota
-	// U_BYTES units are formatted in a human readable way (B, KiB, MiB, ...)
-	U_BYTES
-	// U_BYTES_DEC units are like U_BYTES, but base 10 (B, KB, MB, ...)
-	U_BYTES_DEC
-	// U_DURATION units are formatted in a human readable way (3h14m15s)
-	U_DURATION
-)
-
-const (
-	KiB = 1024
-	MiB = 1048576
-	GiB = 1073741824
-	TiB = 1099511627776
-
-	KB = 1e3
-	MB = 1e6
-	GB = 1e9
-	TB = 1e12
-)
-
-func Format(i int64) *formatter {
-	return &formatter{n: i}
-}
-
-type formatter struct {
-	n      int64
-	unit   Units
-	width  int
-	perSec bool
-}
-
-func (f *formatter) To(unit Units) *formatter {
-	f.unit = unit
-	return f
-}
-
-func (f *formatter) Width(width int) *formatter {
-	f.width = width
-	return f
-}
-
-func (f *formatter) PerSec() *formatter {
-	f.perSec = true
-	return f
-}
-
-func (f *formatter) String() (out string) {
-	switch f.unit {
-	case U_BYTES:
-		out = formatBytes(f.n)
-	case U_BYTES_DEC:
-		out = formatBytesDec(f.n)
-	case U_DURATION:
-		out = formatDuration(f.n)
-	default:
-		out = fmt.Sprintf(fmt.Sprintf("%%%dd", f.width), f.n)
-	}
-	if f.perSec {
-		out += "/s"
-	}
-	return
-}
-
-// Convert bytes to human readable string. Like 2 MiB, 64.2 KiB, 52 B
-func formatBytes(i int64) (result string) {
-	switch {
-	case i >= TiB:
-		result = fmt.Sprintf("%.02f TiB", float64(i)/TiB)
-	case i >= GiB:
-		result = fmt.Sprintf("%.02f GiB", float64(i)/GiB)
-	case i >= MiB:
-		result = fmt.Sprintf("%.02f MiB", float64(i)/MiB)
-	case i >= KiB:
-		result = fmt.Sprintf("%.02f KiB", float64(i)/KiB)
-	default:
-		result = fmt.Sprintf("%d B", i)
-	}
-	return
-}
-
-// Convert bytes to base-10 human readable string. Like 2 MB, 64.2 KB, 52 B
-func formatBytesDec(i int64) (result string) {
-	switch {
-	case i >= TB:
-		result = fmt.Sprintf("%.02f TB", float64(i)/TB)
-	case i >= GB:
-		result = fmt.Sprintf("%.02f GB", float64(i)/GB)
-	case i >= MB:
-		result = fmt.Sprintf("%.02f MB", float64(i)/MB)
-	case i >= KB:
-		result = fmt.Sprintf("%.02f KB", float64(i)/KB)
-	default:
-		result = fmt.Sprintf("%d B", i)
-	}
-	return
-}
-
-func formatDuration(n int64) (result string) {
-	d := time.Duration(n)
-	if d > time.Hour*24 {
-		result = fmt.Sprintf("%dd", d/24/time.Hour)
-		d -= (d / time.Hour / 24) * (time.Hour * 24)
-	}
-	result = fmt.Sprintf("%s%v", result, d)
-	return
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pb.go b/vendor/gopkg.in/cheggaaa/pb.v1/pb.go
deleted file mode 100644
index eddc807b1b..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pb.go
+++ /dev/null
@@ -1,475 +0,0 @@
-// Simple console progress bars
-package pb
-
-import (
-	"fmt"
-	"io"
-	"math"
-	"strings"
-	"sync"
-	"sync/atomic"
-	"time"
-	"unicode/utf8"
-)
-
-// Current version
-const Version = "1.0.22"
-
-const (
-	// Default refresh rate - 200ms
-	DEFAULT_REFRESH_RATE = time.Millisecond * 200
-	FORMAT               = "[=>-]"
-)
-
-// DEPRECATED
-// variables for backward compatibility, from now do not work
-// use pb.Format and pb.SetRefreshRate
-var (
-	DefaultRefreshRate                         = DEFAULT_REFRESH_RATE
-	BarStart, BarEnd, Empty, Current, CurrentN string
-)
-
-// Create new progress bar object
-func New(total int) *ProgressBar {
-	return New64(int64(total))
-}
-
-// Create new progress bar object using int64 as total
-func New64(total int64) *ProgressBar {
-	pb := &ProgressBar{
-		Total:           total,
-		RefreshRate:     DEFAULT_REFRESH_RATE,
-		ShowPercent:     true,
-		ShowCounters:    true,
-		ShowBar:         true,
-		ShowTimeLeft:    true,
-		ShowElapsedTime: false,
-		ShowFinalTime:   true,
-		Units:           U_NO,
-		ManualUpdate:    false,
-		finish:          make(chan struct{}),
-	}
-	return pb.Format(FORMAT)
-}
-
-// Create new object and start
-func StartNew(total int) *ProgressBar {
-	return New(total).Start()
-}
-
-// Callback for custom output
-// For example:
-// bar.Callback = func(s string) {
-//     mySuperPrint(s)
-// }
-//
-type Callback func(out string)
-
-type ProgressBar struct {
-	current  int64 // current must be first member of struct (https://code.google.com/p/go/issues/detail?id=5278)
-	previous int64
-
-	Total                            int64
-	RefreshRate                      time.Duration
-	ShowPercent, ShowCounters        bool
-	ShowSpeed, ShowTimeLeft, ShowBar bool
-	ShowFinalTime, ShowElapsedTime   bool
-	Output                           io.Writer
-	Callback                         Callback
-	NotPrint                         bool
-	Units                            Units
-	Width                            int
-	ForceWidth                       bool
-	ManualUpdate                     bool
-	AutoStat                         bool
-
-	// Default width for the time box.
-	UnitsWidth   int
-	TimeBoxWidth int
-
-	finishOnce sync.Once //Guards isFinish
-	finish     chan struct{}
-	isFinish   bool
-
-	startTime  time.Time
-	startValue int64
-
-	changeTime time.Time
-
-	prefix, postfix string
-
-	mu        sync.Mutex
-	lastPrint string
-
-	BarStart string
-	BarEnd   string
-	Empty    string
-	Current  string
-	CurrentN string
-
-	AlwaysUpdate bool
-}
-
-// Start print
-func (pb *ProgressBar) Start() *ProgressBar {
-	pb.startTime = time.Now()
-	pb.startValue = atomic.LoadInt64(&pb.current)
-	if pb.Total == 0 {
-		pb.ShowTimeLeft = false
-		pb.ShowPercent = false
-		pb.AutoStat = false
-	}
-	if !pb.ManualUpdate {
-		pb.Update() // Initial printing of the bar before running the bar refresher.
-		go pb.refresher()
-	}
-	return pb
-}
-
-// Increment current value
-func (pb *ProgressBar) Increment() int {
-	return pb.Add(1)
-}
-
-// Get current value
-func (pb *ProgressBar) Get() int64 {
-	c := atomic.LoadInt64(&pb.current)
-	return c
-}
-
-// Set current value
-func (pb *ProgressBar) Set(current int) *ProgressBar {
-	return pb.Set64(int64(current))
-}
-
-// Set64 sets the current value as int64
-func (pb *ProgressBar) Set64(current int64) *ProgressBar {
-	atomic.StoreInt64(&pb.current, current)
-	return pb
-}
-
-// Add to current value
-func (pb *ProgressBar) Add(add int) int {
-	return int(pb.Add64(int64(add)))
-}
-
-func (pb *ProgressBar) Add64(add int64) int64 {
-	return atomic.AddInt64(&pb.current, add)
-}
-
-// Set prefix string
-func (pb *ProgressBar) Prefix(prefix string) *ProgressBar {
-	pb.prefix = prefix
-	return pb
-}
-
-// Set postfix string
-func (pb *ProgressBar) Postfix(postfix string) *ProgressBar {
-	pb.postfix = postfix
-	return pb
-}
-
-// Set custom format for bar
-// Example: bar.Format("[=>_]")
-// Example: bar.Format("[\x00=\x00>\x00-\x00]") // \x00 is the delimiter
-func (pb *ProgressBar) Format(format string) *ProgressBar {
-	var formatEntries []string
-	if utf8.RuneCountInString(format) == 5 {
-		formatEntries = strings.Split(format, "")
-	} else {
-		formatEntries = strings.Split(format, "\x00")
-	}
-	if len(formatEntries) == 5 {
-		pb.BarStart = formatEntries[0]
-		pb.BarEnd = formatEntries[4]
-		pb.Empty = formatEntries[3]
-		pb.Current = formatEntries[1]
-		pb.CurrentN = formatEntries[2]
-	}
-	return pb
-}
-
-// Set bar refresh rate
-func (pb *ProgressBar) SetRefreshRate(rate time.Duration) *ProgressBar {
-	pb.RefreshRate = rate
-	return pb
-}
-
-// Set units
-// bar.SetUnits(U_NO) - by default
-// bar.SetUnits(U_BYTES) - for Mb, Kb, etc
-func (pb *ProgressBar) SetUnits(units Units) *ProgressBar {
-	pb.Units = units
-	return pb
-}
-
-// Set max width, if width is bigger than terminal width, will be ignored
-func (pb *ProgressBar) SetMaxWidth(width int) *ProgressBar {
-	pb.Width = width
-	pb.ForceWidth = false
-	return pb
-}
-
-// Set bar width
-func (pb *ProgressBar) SetWidth(width int) *ProgressBar {
-	pb.Width = width
-	pb.ForceWidth = true
-	return pb
-}
-
-// End print
-func (pb *ProgressBar) Finish() {
-	//Protect multiple calls
-	pb.finishOnce.Do(func() {
-		close(pb.finish)
-		pb.write(atomic.LoadInt64(&pb.current))
-		pb.mu.Lock()
-		defer pb.mu.Unlock()
-		switch {
-		case pb.Output != nil:
-			fmt.Fprintln(pb.Output)
-		case !pb.NotPrint:
-			fmt.Println()
-		}
-		pb.isFinish = true
-	})
-}
-
-// IsFinished return boolean
-func (pb *ProgressBar) IsFinished() bool {
-	pb.mu.Lock()
-	defer pb.mu.Unlock()
-	return pb.isFinish
-}
-
-// End print and write string 'str'
-func (pb *ProgressBar) FinishPrint(str string) {
-	pb.Finish()
-	if pb.Output != nil {
-		fmt.Fprintln(pb.Output, str)
-	} else {
-		fmt.Println(str)
-	}
-}
-
-// implement io.Writer
-func (pb *ProgressBar) Write(p []byte) (n int, err error) {
-	n = len(p)
-	pb.Add(n)
-	return
-}
-
-// implement io.Reader
-func (pb *ProgressBar) Read(p []byte) (n int, err error) {
-	n = len(p)
-	pb.Add(n)
-	return
-}
-
-// Create new proxy reader over bar
-// Takes io.Reader or io.ReadCloser
-func (pb *ProgressBar) NewProxyReader(r io.Reader) *Reader {
-	return &Reader{r, pb}
-}
-
-func (pb *ProgressBar) write(current int64) {
-	width := pb.GetWidth()
-
-	var percentBox, countersBox, timeLeftBox, timeSpentBox, speedBox, barBox, end, out string
-
-	// percents
-	if pb.ShowPercent {
-		var percent float64
-		if pb.Total > 0 {
-			percent = float64(current) / (float64(pb.Total) / float64(100))
-		} else {
-			percent = float64(current) / float64(100)
-		}
-		percentBox = fmt.Sprintf(" %6.02f%%", percent)
-	}
-
-	// counters
-	if pb.ShowCounters {
-		current := Format(current).To(pb.Units).Width(pb.UnitsWidth)
-		if pb.Total > 0 {
-			total := Format(pb.Total).To(pb.Units).Width(pb.UnitsWidth)
-			countersBox = fmt.Sprintf(" %s / %s ", current, total)
-		} else {
-			countersBox = fmt.Sprintf(" %s / ? ", current)
-		}
-	}
-
-	// time left
-	pb.mu.Lock()
-	currentFromStart := current - pb.startValue
-	fromStart := time.Now().Sub(pb.startTime)
-	lastChangeTime := pb.changeTime
-	fromChange := lastChangeTime.Sub(pb.startTime)
-	pb.mu.Unlock()
-
-	if pb.ShowElapsedTime {
-		timeSpentBox = fmt.Sprintf(" %s ", (fromStart/time.Second)*time.Second)
-	}
-
-	select {
-	case <-pb.finish:
-		if pb.ShowFinalTime {
-			var left time.Duration
-			left = (fromStart / time.Second) * time.Second
-			timeLeftBox = fmt.Sprintf(" %s", left.String())
-		}
-	default:
-		if pb.ShowTimeLeft && currentFromStart > 0 {
-			perEntry := fromChange / time.Duration(currentFromStart)
-			var left time.Duration
-			if pb.Total > 0 {
-				left = time.Duration(pb.Total-currentFromStart) * perEntry
-				left -= time.Since(lastChangeTime)
-				left = (left / time.Second) * time.Second
-			} else {
-				left = time.Duration(currentFromStart) * perEntry
-				left = (left / time.Second) * time.Second
-			}
-			if left > 0 {
-				timeLeft := Format(int64(left)).To(U_DURATION).String()
-				timeLeftBox = fmt.Sprintf(" %s", timeLeft)
-			}
-		}
-	}
-
-	if len(timeLeftBox) < pb.TimeBoxWidth {
-		timeLeftBox = fmt.Sprintf("%s%s", strings.Repeat(" ", pb.TimeBoxWidth-len(timeLeftBox)), timeLeftBox)
-	}
-
-	// speed
-	if pb.ShowSpeed && currentFromStart > 0 {
-		fromStart := time.Now().Sub(pb.startTime)
-		speed := float64(currentFromStart) / (float64(fromStart) / float64(time.Second))
-		speedBox = " " + Format(int64(speed)).To(pb.Units).Width(pb.UnitsWidth).PerSec().String()
-	}
-
-	barWidth := escapeAwareRuneCountInString(countersBox + pb.BarStart + pb.BarEnd + percentBox + timeSpentBox + timeLeftBox + speedBox + pb.prefix + pb.postfix)
-	// bar
-	if pb.ShowBar {
-		size := width - barWidth
-		if size > 0 {
-			if pb.Total > 0 {
-				curSize := int(math.Ceil((float64(current) / float64(pb.Total)) * float64(size)))
-				emptySize := size - curSize
-				barBox = pb.BarStart
-				if emptySize < 0 {
-					emptySize = 0
-				}
-				if curSize > size {
-					curSize = size
-				}
-
-				cursorLen := escapeAwareRuneCountInString(pb.Current)
-				if emptySize <= 0 {
-					barBox += strings.Repeat(pb.Current, curSize/cursorLen)
-				} else if curSize > 0 {
-					cursorEndLen := escapeAwareRuneCountInString(pb.CurrentN)
-					cursorRepetitions := (curSize - cursorEndLen) / cursorLen
-					barBox += strings.Repeat(pb.Current, cursorRepetitions)
-					barBox += pb.CurrentN
-				}
-
-				emptyLen := escapeAwareRuneCountInString(pb.Empty)
-				barBox += strings.Repeat(pb.Empty, emptySize/emptyLen)
-				barBox += pb.BarEnd
-			} else {
-				pos := size - int(current)%int(size)
-				barBox = pb.BarStart
-				if pos-1 > 0 {
-					barBox += strings.Repeat(pb.Empty, pos-1)
-				}
-				barBox += pb.Current
-				if size-pos-1 > 0 {
-					barBox += strings.Repeat(pb.Empty, size-pos-1)
-				}
-				barBox += pb.BarEnd
-			}
-		}
-	}
-
-	// check len
-	out = pb.prefix + timeSpentBox + countersBox + barBox + percentBox + speedBox + timeLeftBox + pb.postfix
-	if cl := escapeAwareRuneCountInString(out); cl < width {
-		end = strings.Repeat(" ", width-cl)
-	}
-
-	// and print!
-	pb.mu.Lock()
-	pb.lastPrint = out + end
-	isFinish := pb.isFinish
-	pb.mu.Unlock()
-	switch {
-	case isFinish:
-		return
-	case pb.Output != nil:
-		fmt.Fprint(pb.Output, "\r"+out+end)
-	case pb.Callback != nil:
-		pb.Callback(out + end)
-	case !pb.NotPrint:
-		fmt.Print("\r" + out + end)
-	}
-}
-
-// GetTerminalWidth - returns terminal width for all platforms.
-func GetTerminalWidth() (int, error) {
-	return terminalWidth()
-}
-
-func (pb *ProgressBar) GetWidth() int {
-	if pb.ForceWidth {
-		return pb.Width
-	}
-
-	width := pb.Width
-	termWidth, _ := terminalWidth()
-	if width == 0 || termWidth <= width {
-		width = termWidth
-	}
-
-	return width
-}
-
-// Write the current state of the progressbar
-func (pb *ProgressBar) Update() {
-	c := atomic.LoadInt64(&pb.current)
-	p := atomic.LoadInt64(&pb.previous)
-	if p != c {
-		pb.mu.Lock()
-		pb.changeTime = time.Now()
-		pb.mu.Unlock()
-		atomic.StoreInt64(&pb.previous, c)
-	}
-	pb.write(c)
-	if pb.AutoStat {
-		if c == 0 {
-			pb.startTime = time.Now()
-			pb.startValue = 0
-		} else if c >= pb.Total && pb.isFinish != true {
-			pb.Finish()
-		}
-	}
-}
-
-// String return the last bar print
-func (pb *ProgressBar) String() string {
-	pb.mu.Lock()
-	defer pb.mu.Unlock()
-	return pb.lastPrint
-}
-
-// Internal loop for refreshing the progressbar
-func (pb *ProgressBar) refresher() {
-	for {
-		select {
-		case <-pb.finish:
-			return
-		case <-time.After(pb.RefreshRate):
-			pb.Update()
-		}
-	}
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pb_appengine.go b/vendor/gopkg.in/cheggaaa/pb.v1/pb_appengine.go
deleted file mode 100644
index d85dbc3b2b..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pb_appengine.go
+++ /dev/null
@@ -1,11 +0,0 @@
-// +build appengine
-
-package pb
-
-import "errors"
-
-// terminalWidth returns width of the terminal, which is not supported
-// and should always failed on appengine classic which is a sandboxed PaaS.
-func terminalWidth() (int, error) {
-	return 0, errors.New("Not supported")
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pb_win.go b/vendor/gopkg.in/cheggaaa/pb.v1/pb_win.go
deleted file mode 100644
index 2c67e19471..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pb_win.go
+++ /dev/null
@@ -1,141 +0,0 @@
-// +build windows
-
-package pb
-
-import (
-	"errors"
-	"fmt"
-	"os"
-	"sync"
-	"syscall"
-	"unsafe"
-)
-
-var tty = os.Stdin
-
-var (
-	kernel32 = syscall.NewLazyDLL("kernel32.dll")
-
-	// GetConsoleScreenBufferInfo retrieves information about the
-	// specified console screen buffer.
-	// http://msdn.microsoft.com/en-us/library/windows/desktop/ms683171(v=vs.85).aspx
-	procGetConsoleScreenBufferInfo = kernel32.NewProc("GetConsoleScreenBufferInfo")
-
-	// GetConsoleMode retrieves the current input mode of a console's
-	// input buffer or the current output mode of a console screen buffer.
-	// https://msdn.microsoft.com/en-us/library/windows/desktop/ms683167(v=vs.85).aspx
-	getConsoleMode = kernel32.NewProc("GetConsoleMode")
-
-	// SetConsoleMode sets the input mode of a console's input buffer
-	// or the output mode of a console screen buffer.
-	// https://msdn.microsoft.com/en-us/library/windows/desktop/ms686033(v=vs.85).aspx
-	setConsoleMode = kernel32.NewProc("SetConsoleMode")
-
-	// SetConsoleCursorPosition sets the cursor position in the
-	// specified console screen buffer.
-	// https://msdn.microsoft.com/en-us/library/windows/desktop/ms686025(v=vs.85).aspx
-	setConsoleCursorPosition = kernel32.NewProc("SetConsoleCursorPosition")
-)
-
-type (
-	// Defines the coordinates of the upper left and lower right corners
-	// of a rectangle.
-	// See
-	// http://msdn.microsoft.com/en-us/library/windows/desktop/ms686311(v=vs.85).aspx
-	smallRect struct {
-		Left, Top, Right, Bottom int16
-	}
-
-	// Defines the coordinates of a character cell in a console screen
-	// buffer. The origin of the coordinate system (0,0) is at the top, left cell
-	// of the buffer.
-	// See
-	// http://msdn.microsoft.com/en-us/library/windows/desktop/ms682119(v=vs.85).aspx
-	coordinates struct {
-		X, Y int16
-	}
-
-	word int16
-
-	// Contains information about a console screen buffer.
-	// http://msdn.microsoft.com/en-us/library/windows/desktop/ms682093(v=vs.85).aspx
-	consoleScreenBufferInfo struct {
-		dwSize              coordinates
-		dwCursorPosition    coordinates
-		wAttributes         word
-		srWindow            smallRect
-		dwMaximumWindowSize coordinates
-	}
-)
-
-// terminalWidth returns width of the terminal.
-func terminalWidth() (width int, err error) {
-	var info consoleScreenBufferInfo
-	_, _, e := syscall.Syscall(procGetConsoleScreenBufferInfo.Addr(), 2, uintptr(syscall.Stdout), uintptr(unsafe.Pointer(&info)), 0)
-	if e != 0 {
-		return 0, error(e)
-	}
-	return int(info.dwSize.X) - 1, nil
-}
-
-func getCursorPos() (pos coordinates, err error) {
-	var info consoleScreenBufferInfo
-	_, _, e := syscall.Syscall(procGetConsoleScreenBufferInfo.Addr(), 2, uintptr(syscall.Stdout), uintptr(unsafe.Pointer(&info)), 0)
-	if e != 0 {
-		return info.dwCursorPosition, error(e)
-	}
-	return info.dwCursorPosition, nil
-}
-
-func setCursorPos(pos coordinates) error {
-	_, _, e := syscall.Syscall(setConsoleCursorPosition.Addr(), 2, uintptr(syscall.Stdout), uintptr(uint32(uint16(pos.Y))<<16|uint32(uint16(pos.X))), 0)
-	if e != 0 {
-		return error(e)
-	}
-	return nil
-}
-
-var ErrPoolWasStarted = errors.New("Bar pool was started")
-
-var echoLocked bool
-var echoLockMutex sync.Mutex
-
-var oldState word
-
-func lockEcho() (shutdownCh chan struct{}, err error) {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-	if echoLocked {
-		err = ErrPoolWasStarted
-		return
-	}
-	echoLocked = true
-
-	if _, _, e := syscall.Syscall(getConsoleMode.Addr(), 2, uintptr(syscall.Stdout), uintptr(unsafe.Pointer(&oldState)), 0); e != 0 {
-		err = fmt.Errorf("Can't get terminal settings: %v", e)
-		return
-	}
-
-	newState := oldState
-	const ENABLE_ECHO_INPUT = 0x0004
-	const ENABLE_LINE_INPUT = 0x0002
-	newState = newState & (^(ENABLE_LINE_INPUT | ENABLE_ECHO_INPUT))
-	if _, _, e := syscall.Syscall(setConsoleMode.Addr(), 2, uintptr(syscall.Stdout), uintptr(newState), 0); e != 0 {
-		err = fmt.Errorf("Can't set terminal settings: %v", e)
-		return
-	}
-	return
-}
-
-func unlockEcho() (err error) {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-	if !echoLocked {
-		return
-	}
-	echoLocked = false
-	if _, _, e := syscall.Syscall(setConsoleMode.Addr(), 2, uintptr(syscall.Stdout), uintptr(oldState), 0); e != 0 {
-		err = fmt.Errorf("Can't set terminal settings")
-	}
-	return
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pb_x.go b/vendor/gopkg.in/cheggaaa/pb.v1/pb_x.go
deleted file mode 100644
index 8e05770ceb..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pb_x.go
+++ /dev/null
@@ -1,108 +0,0 @@
-// +build linux darwin freebsd netbsd openbsd solaris dragonfly
-// +build !appengine
-
-package pb
-
-import (
-	"errors"
-	"fmt"
-	"os"
-	"os/signal"
-	"sync"
-	"syscall"
-
-	"golang.org/x/sys/unix"
-)
-
-var ErrPoolWasStarted = errors.New("Bar pool was started")
-
-var (
-	echoLockMutex    sync.Mutex
-	origTermStatePtr *unix.Termios
-	tty              *os.File
-)
-
-func init() {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-
-	var err error
-	tty, err = os.Open("/dev/tty")
-	if err != nil {
-		tty = os.Stdin
-	}
-}
-
-// terminalWidth returns width of the terminal.
-func terminalWidth() (int, error) {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-
-	fd := int(tty.Fd())
-
-	ws, err := unix.IoctlGetWinsize(fd, unix.TIOCGWINSZ)
-	if err != nil {
-		return 0, err
-	}
-
-	return int(ws.Col), nil
-}
-
-func lockEcho() (shutdownCh chan struct{}, err error) {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-	if origTermStatePtr != nil {
-		return shutdownCh, ErrPoolWasStarted
-	}
-
-	fd := int(tty.Fd())
-
-	origTermStatePtr, err = unix.IoctlGetTermios(fd, ioctlReadTermios)
-	if err != nil {
-		return nil, fmt.Errorf("Can't get terminal settings: %v", err)
-	}
-
-	oldTermios := *origTermStatePtr
-	newTermios := oldTermios
-	newTermios.Lflag &^= syscall.ECHO
-	newTermios.Lflag |= syscall.ICANON | syscall.ISIG
-	newTermios.Iflag |= syscall.ICRNL
-	if err := unix.IoctlSetTermios(fd, ioctlWriteTermios, &newTermios); err != nil {
-		return nil, fmt.Errorf("Can't set terminal settings: %v", err)
-	}
-
-	shutdownCh = make(chan struct{})
-	go catchTerminate(shutdownCh)
-	return
-}
-
-func unlockEcho() error {
-	echoLockMutex.Lock()
-	defer echoLockMutex.Unlock()
-	if origTermStatePtr == nil {
-		return nil
-	}
-
-	fd := int(tty.Fd())
-
-	if err := unix.IoctlSetTermios(fd, ioctlWriteTermios, origTermStatePtr); err != nil {
-		return fmt.Errorf("Can't set terminal settings: %v", err)
-	}
-
-	origTermStatePtr = nil
-
-	return nil
-}
-
-// listen exit signals and restore terminal state
-func catchTerminate(shutdownCh chan struct{}) {
-	sig := make(chan os.Signal, 1)
-	signal.Notify(sig, os.Interrupt, syscall.SIGQUIT, syscall.SIGTERM, syscall.SIGKILL)
-	defer signal.Stop(sig)
-	select {
-	case <-shutdownCh:
-		unlockEcho()
-	case <-sig:
-		unlockEcho()
-	}
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pool.go b/vendor/gopkg.in/cheggaaa/pb.v1/pool.go
deleted file mode 100644
index f44baa01fc..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pool.go
+++ /dev/null
@@ -1,102 +0,0 @@
-// +build linux darwin freebsd netbsd openbsd solaris dragonfly windows
-
-package pb
-
-import (
-	"io"
-	"sync"
-	"time"
-)
-
-// Create and start new pool with given bars
-// You need call pool.Stop() after work
-func StartPool(pbs ...*ProgressBar) (pool *Pool, err error) {
-	pool = new(Pool)
-	if err = pool.Start(); err != nil {
-		return
-	}
-	pool.Add(pbs...)
-	return
-}
-
-// NewPool initialises a pool with progress bars, but
-// doesn't start it. You need to call Start manually
-func NewPool(pbs ...*ProgressBar) (pool *Pool) {
-	pool = new(Pool)
-	pool.Add(pbs...)
-	return
-}
-
-type Pool struct {
-	Output        io.Writer
-	RefreshRate   time.Duration
-	bars          []*ProgressBar
-	lastBarsCount int
-	shutdownCh    chan struct{}
-	workerCh      chan struct{}
-	m             sync.Mutex
-	finishOnce    sync.Once
-}
-
-// Add progress bars.
-func (p *Pool) Add(pbs ...*ProgressBar) {
-	p.m.Lock()
-	defer p.m.Unlock()
-	for _, bar := range pbs {
-		bar.ManualUpdate = true
-		bar.NotPrint = true
-		bar.Start()
-		p.bars = append(p.bars, bar)
-	}
-}
-
-func (p *Pool) Start() (err error) {
-	p.RefreshRate = DefaultRefreshRate
-	p.shutdownCh, err = lockEcho()
-	if err != nil {
-		return
-	}
-	p.workerCh = make(chan struct{})
-	go p.writer()
-	return
-}
-
-func (p *Pool) writer() {
-	var first = true
-	defer func() {
-		if first == false {
-			p.print(false)
-		} else {
-			p.print(true)
-			p.print(false)
-		}
-		close(p.workerCh)
-	}()
-
-	for {
-		select {
-		case <-time.After(p.RefreshRate):
-			if p.print(first) {
-				p.print(false)
-				return
-			}
-			first = false
-		case <-p.shutdownCh:
-			return
-		}
-	}
-}
-
-// Restore terminal state and close pool
-func (p *Pool) Stop() error {
-	p.finishOnce.Do(func() {
-		close(p.shutdownCh)
-	})
-
-	// Wait for the worker to complete
-	select {
-	case <-p.workerCh:
-	}
-
-	return unlockEcho()
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pool_win.go b/vendor/gopkg.in/cheggaaa/pb.v1/pool_win.go
deleted file mode 100644
index 63598d378a..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pool_win.go
+++ /dev/null
@@ -1,45 +0,0 @@
-// +build windows
-
-package pb
-
-import (
-	"fmt"
-	"log"
-)
-
-func (p *Pool) print(first bool) bool {
-	p.m.Lock()
-	defer p.m.Unlock()
-	var out string
-	if !first {
-		coords, err := getCursorPos()
-		if err != nil {
-			log.Panic(err)
-		}
-		coords.Y -= int16(p.lastBarsCount)
-		if coords.Y < 0 {
-			coords.Y = 0
-		}
-		coords.X = 0
-
-		err = setCursorPos(coords)
-		if err != nil {
-			log.Panic(err)
-		}
-	}
-	isFinished := true
-	for _, bar := range p.bars {
-		if !bar.IsFinished() {
-			isFinished = false
-		}
-		bar.Update()
-		out += fmt.Sprintf("\r%s\n", bar.String())
-	}
-	if p.Output != nil {
-		fmt.Fprint(p.Output, out)
-	} else {
-		fmt.Print(out)
-	}
-	p.lastBarsCount = len(p.bars)
-	return isFinished
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/pool_x.go b/vendor/gopkg.in/cheggaaa/pb.v1/pool_x.go
deleted file mode 100644
index a8ae14d2f6..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/pool_x.go
+++ /dev/null
@@ -1,29 +0,0 @@
-// +build linux darwin freebsd netbsd openbsd solaris dragonfly
-
-package pb
-
-import "fmt"
-
-func (p *Pool) print(first bool) bool {
-	p.m.Lock()
-	defer p.m.Unlock()
-	var out string
-	if !first {
-		out = fmt.Sprintf("\033[%dA", p.lastBarsCount)
-	}
-	isFinished := true
-	for _, bar := range p.bars {
-		if !bar.IsFinished() {
-			isFinished = false
-		}
-		bar.Update()
-		out += fmt.Sprintf("\r%s\n", bar.String())
-	}
-	if p.Output != nil {
-		fmt.Fprint(p.Output, out)
-	} else {
-		fmt.Print(out)
-	}
-	p.lastBarsCount = len(p.bars)
-	return isFinished
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/reader.go b/vendor/gopkg.in/cheggaaa/pb.v1/reader.go
deleted file mode 100644
index 9f3148b546..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/reader.go
+++ /dev/null
@@ -1,25 +0,0 @@
-package pb
-
-import (
-	"io"
-)
-
-// It's proxy reader, implement io.Reader
-type Reader struct {
-	io.Reader
-	bar *ProgressBar
-}
-
-func (r *Reader) Read(p []byte) (n int, err error) {
-	n, err = r.Reader.Read(p)
-	r.bar.Add(n)
-	return
-}
-
-// Close the reader when it implements io.Closer
-func (r *Reader) Close() (err error) {
-	if closer, ok := r.Reader.(io.Closer); ok {
-		return closer.Close()
-	}
-	return
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/runecount.go b/vendor/gopkg.in/cheggaaa/pb.v1/runecount.go
deleted file mode 100644
index c617c55ec3..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/runecount.go
+++ /dev/null
@@ -1,17 +0,0 @@
-package pb
-
-import (
-	"github.com/mattn/go-runewidth"
-	"regexp"
-)
-
-// Finds the control character sequences (like colors)
-var ctrlFinder = regexp.MustCompile("\x1b\x5b[0-9]+\x6d")
-
-func escapeAwareRuneCountInString(s string) int {
-	n := runewidth.StringWidth(s)
-	for _, sm := range ctrlFinder.FindAllString(s, -1) {
-		n -= runewidth.StringWidth(sm)
-	}
-	return n
-}
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/termios_bsd.go b/vendor/gopkg.in/cheggaaa/pb.v1/termios_bsd.go
deleted file mode 100644
index 517ea8ed72..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/termios_bsd.go
+++ /dev/null
@@ -1,9 +0,0 @@
-// +build darwin freebsd netbsd openbsd dragonfly
-// +build !appengine
-
-package pb
-
-import "syscall"
-
-const ioctlReadTermios = syscall.TIOCGETA
-const ioctlWriteTermios = syscall.TIOCSETA
diff --git a/vendor/gopkg.in/cheggaaa/pb.v1/termios_sysv.go b/vendor/gopkg.in/cheggaaa/pb.v1/termios_sysv.go
deleted file mode 100644
index b10f61859c..0000000000
--- a/vendor/gopkg.in/cheggaaa/pb.v1/termios_sysv.go
+++ /dev/null
@@ -1,13 +0,0 @@
-// Copyright 2013 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// +build linux solaris
-// +build !appengine
-
-package pb
-
-import "golang.org/x/sys/unix"
-
-const ioctlReadTermios = unix.TCGETS
-const ioctlWriteTermios = unix.TCSETS
diff --git a/vendor/k8s.io/client-go/LICENSE b/vendor/k8s.io/client-go/LICENSE
deleted file mode 100644
index d645695673..0000000000
--- a/vendor/k8s.io/client-go/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/k8s.io/client-go/util/homedir/homedir.go b/vendor/k8s.io/client-go/util/homedir/homedir.go
deleted file mode 100644
index 816db57f59..0000000000
--- a/vendor/k8s.io/client-go/util/homedir/homedir.go
+++ /dev/null
@@ -1,47 +0,0 @@
-/*
-Copyright 2016 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package homedir
-
-import (
-	"os"
-	"runtime"
-)
-
-// HomeDir returns the home directory for the current user
-func HomeDir() string {
-	if runtime.GOOS == "windows" {
-
-		// First prefer the HOME environmental variable
-		if home := os.Getenv("HOME"); len(home) > 0 {
-			if _, err := os.Stat(home); err == nil {
-				return home
-			}
-		}
-		if homeDrive, homePath := os.Getenv("HOMEDRIVE"), os.Getenv("HOMEPATH"); len(homeDrive) > 0 && len(homePath) > 0 {
-			homeDir := homeDrive + homePath
-			if _, err := os.Stat(homeDir); err == nil {
-				return homeDir
-			}
-		}
-		if userProfile := os.Getenv("USERPROFILE"); len(userProfile) > 0 {
-			if _, err := os.Stat(userProfile); err == nil {
-				return userProfile
-			}
-		}
-	}
-	return os.Getenv("HOME")
-}

From 1c44571bbdeda6afccee5b19cae32191084ad156 Mon Sep 17 00:00:00 2001
From: Carlos Garcia <37964430+ggcarlosr@users.noreply.github.com>
Date: Wed, 25 Apr 2018 23:50:39 -0400
Subject: [PATCH 23/69] Create Logo (#147)

---
 Logo | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 Logo

diff --git a/Logo b/Logo
new file mode 100644
index 0000000000..8b13789179
--- /dev/null
+++ b/Logo
@@ -0,0 +1 @@
+

From ebdf0eafc3718544a3e4b3a0ee13d8243491108c Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 26 Apr 2018 09:59:43 -0700
Subject: [PATCH 24/69] Build kaniko with docker

---
 deploy/Dockerfile            |  8 ++++----
 deploy/Dockerfile_debug      | 10 +++++-----
 deploy/executor-release.yaml | 19 ++++++++++---------
 3 files changed, 19 insertions(+), 18 deletions(-)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 5d811327ec..0323d5d347 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -15,10 +15,10 @@
 # Builds the static Go image to execute in a Kubernetes job
 
 FROM scratch
-ADD out/executor /kaniko/executor
-ADD files/ca-certificates.crt /kaniko/ssl/certs/
-ADD files/docker-credential-gcr /usr/local/bin/
-ADD files/config.json /root/.docker/
+COPY out/executor /kaniko/executor
+COPY files/ca-certificates.crt /kaniko/ssl/certs/
+COPY files/docker-credential-gcr /usr/local/bin/
+COPY files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV USER /root
diff --git a/deploy/Dockerfile_debug b/deploy/Dockerfile_debug
index a7af94fe5e..29ecbeef99 100644
--- a/deploy/Dockerfile_debug
+++ b/deploy/Dockerfile_debug
@@ -15,11 +15,11 @@
 # Builds the executor from debian
 
 FROM gcr.io/google-appengine/debian9:latest
-ADD out/executor /kaniko/executor
-ADD files/ca-certificates.crt /kaniko/ssl/certs/
-ADD files/docker-credential-gcr /usr/local/bin/
-ADD files/config.json /root/.docker/
+COPY out/executor /kaniko/executor
+COPY files/ca-certificates.crt /kaniko/ssl/certs/
+COPY files/docker-credential-gcr /usr/local/bin/
+COPY files/config.json /root/.docker/
+RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
-RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENTRYPOINT ["/kaniko/executor"]
diff --git a/deploy/executor-release.yaml b/deploy/executor-release.yaml
index db3d5c5def..6344ebdff6 100644
--- a/deploy/executor-release.yaml
+++ b/deploy/executor-release.yaml
@@ -18,13 +18,14 @@ steps:
       path: "/usr/bin"
     dir: go/src/github.com/GoogleContainerTools/kaniko
     env: ["GOPATH=/workspace/go/"]
-  # Then, build kaniko with kaniko
-  - name: "gcr.io/kaniko-project/executor:latest"
-    args: ["--dockerfile=/workspace/deploy/Dockerfile",
-           "--context=/workspace/go/src/github.com/GoogleContainerTools/kaniko/",
-           "--destination=gcr.io/kaniko-project/executor:${COMMIT_SHA}"]
+  # First, build kaniko
+  - name: "gcr.io/cloud-builders/docker"
+    args: ["build", "-f", "deploy/Dockerfile",
+           "-t", "gcr.io/kaniko-project/executor:${COMMIT_SHA}", "."]
+    dir: go/src/github.com/GoogleContainerTools/kaniko  
   # Then, build kaniko:debug
-  - name: "gcr.io/kaniko-project/executor:latest"
-    args: ["--dockerfile=/workspace/deploy/Dockerfile_debug",
-           "--context=/workspace/go/src/github.com/GoogleContainerTools/kaniko/",
-           "--destination=gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}"]
+  - name: "gcr.io/cloud-builders/docker"
+    args: ["build", "-f", "deploy/Dockerfile_debug",
+           "-t", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}", "."] 
+    dir: go/src/github.com/GoogleContainerTools/kaniko
+images: ["gcr.io/kaniko-project/executor:${COMMIT_SHA}", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}"]

From 842fc2f8d74e33ba0e091002757938432d43b51b Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 26 Apr 2018 14:00:25 -0700
Subject: [PATCH 25/69] move kaniko logo into directory

Move kaniko logo into directory
---
 Logo                            |   1 -
 logo/Kaniko-Logo-Monochrome.png | Bin 0 -> 9206 bytes
 logo/Kaniko-Logo.png            | Bin 0 -> 20081 bytes
 logo/README.md                  |   1 +
 4 files changed, 1 insertion(+), 1 deletion(-)
 delete mode 100644 Logo
 create mode 100644 logo/Kaniko-Logo-Monochrome.png
 create mode 100644 logo/Kaniko-Logo.png
 create mode 100644 logo/README.md

diff --git a/Logo b/Logo
deleted file mode 100644
index 8b13789179..0000000000
--- a/Logo
+++ /dev/null
@@ -1 +0,0 @@
-
diff --git a/logo/Kaniko-Logo-Monochrome.png b/logo/Kaniko-Logo-Monochrome.png
new file mode 100644
index 0000000000000000000000000000000000000000..b6ca283741449d69f5aeae435aaa2b4d38f50934
GIT binary patch
literal 9206
zcmdUV_dnJD`#%z*P=vCRh(lJ0tc+}4);S0V*?S#(M6$9SdsLFmLFTcGLdZDwG0HKI
zz4!Og`}<dX&M)V7d!FZcJg;+&`*pwW*NM{Be0hufJ~;sa!7UYK1swu{YitArghXUS
z;7Zi$LtgN9&r=cRsq13x>22<AMIiUu#lnhB#mU^pO2^9lwXa)`)pG&@j&v0TIX#~#
zJXXt=*6#Ah&aoxChwy;Pl>8rod2<ftu`sTYL;;=$SU(0*&IxA21Va*y*BP>u%*o$E
z`YN!u<%nWV!nmzFG(vA$lVo^455HHy=y6+NB;rP{x_?&od7#+SeGwJBXW)7;=FAJ0
z{q!z6uf%U{@4R@~&i<dR|Hogl9Eksj2?%Nr4-d6uF7|(aly`7&s5EN}I@-kU?h17g
zQKP8;%gM>XVzFN+?=dnOo0uG|U9%C&xHvmnj|;p!Kf&W6T+D|{C2dz1Tg7@M1qD_k
zX8JsL8)r#KNu8R_EUG37)Y3xT>xpDNZ&6VN3#bTXM7V8-jZIBuKF=2ai&FFO@Q}`P
zS)58n|0*?Z|AxLRa31x5;QZ=&R%WIStF(~N3tbjb(^xe%wH=@4MAiZ8n)34U4E1;J
z*9dt(9dtE%EH{ZNo5;SI`1FeZiDN_X)#d4_#C40VgY|I?)cT|LPn>%SJ6=deW)9vY
z^m%0UODv&tG-YH03?eEhSXEbdNEny+2l?V~fm&bt9T^`brRv!mNoK_A*4DU5bg^D9
zj`0oq3pV9JD9rq?<NFn2NYqPSUfwmK`b)iQ_QjP-&k{nyi%#0ef^2+k@5XdFiuSE~
zC(}02N;30&c^?~FOiIed#pUZkEt=F^(Rv@(et3xJr6w*DNX|OP^`(7TqHgEc!Rs84
z*2KyTzCYn5$GK0AN^Z2r#j!})<F=o)ohJzq6Y_q|%*x7>4(wG&P^m1)`0Ymql_^zV
zqM~jbEYS16n#U4Nl;-Du>s^Ra2>svfsi~=T6;Y%|!l~J0y&qdwSM3gJB_t%88XA=E
zb(-qs5)eB0fBW|B{ms+2*<@|~zDGzs9;EssuOF$Z1+A^pz0{gBb+kmX?NboC7{O93
zbkP&ld|U^iq&(c;*M8?3`r4bEkPYs1i1nUxtG-w&t!({7T~{q6E-ob0DUEhjF3_oR
zKR!F!dMr<kdNIM-9x5xn|2JMnhb#+rj|oCcE-x>i!p@`vp(|%<MWJNxg@)V}T^`7>
z^!q|({B6J1(dkAJDQUs;!8{qQd!5gySf#(ZABT}raf9PJzm%572ycj$y=g=uJ31~e
zgAktY^6BX5`*78p6E8ltAKW0KBcyOX-U_}_V;}uzl$e-}mFe@}A9$e^E0pI;SuWgC
zz^q85V&KZo-ygIukX;=eH8z7f?_4|Zc>Lnx=gE9OfBy_B0wTJ3lHz<ro90yTB=tw~
z=ABR7TQYiKNfj%m*9j?HZ~P6bExSn>7Z)d#b!*e6Y@|?YtHEBr@s;MoJD+)}Q3Pqq
zwQ7%wfDPQ7&jbWy?{x;cQ*2?;_4W1M&d$!d!%0^uSGsp##>R}sqU^nw3b)&>YX4FU
z)5iH+8}FT;FV-z&V0sH(oXVPjpWE2jETg@*(jBhr4TW8=kByDRkd$%Lha)@W=$s-d
zA^iOAazwQ&9pvdIXoUXN`NFq|_Q1=Yo}M*#@!>^{hj$XCkOm~AY6W*<>aK<4fis}k
zMvubN<t#B5rAF@2urQ=*ICBnRNXYf`3T<vZt`=*d44>yLlb_(O)C6R(5UJ`($AiJ~
z3X>SeXCRCz37LJkhE#%o_vhX$!9p)CF8(t$odb3QuQvYw4=SbtF*7r-rjd7_f@d3k
zWd;Yev)ZF8ySuwbd1bEW0LL~qKBKd}4xGImv9~<P7`%eVs~3(W@{u0Q!y8{&zqBD>
zgA)cbFf*4|1m49J+yfprZE$_lA@}ckTd5uo=3@6<L<9#~Bn<dMr3k-DLO=|er^5J7
zZftD)mpfg-!URF8;#Y3|?{e*4_10_)<D@%ENPJ>s<l8(O0W~UQPM-(4*6c_^>h+`A
zR+502HcRT;V@yZKz`y`E73IL-;5rE@MfeL_glB4s@A0<z$v2z4z&Zdo8o_6aJv1kC
z&`MK%vv-l!)MC*^Xte+It~m<}B&h^;={=Y$6@1cXCVGJZo;Ga@>bFvAe?g$Gsd+yv
zY<D7ZcTEF$E=u8r8@xcLxWei7?*`XD-=p$h#v?pEzyIAiy<H<3oTge}QPqG#ZGWSZ
zc`NNwTVEf1f=hD`AAR!4{v@Rj7k=w#YtCk#A$BG#sQ}U3US}Zf&Zv5A>tt^^o>gW^
zRbGnq#Y5^jHI@W-7e-bc7LwRt4l#hpSr?{CXO(VMFh?gR4d}b1U!gvgJ<wDwe)<p-
z`lRefCpqk;iHnT5y%QwzE^j!;23-yP>)-xnOfAOWQc8s~-oIi&V3u_v`ZP?+hY5*N
zZ64|<qi2ra?$Qb##J-?IA#SF5<>tIW_vsX;oSup5bon1QJ1+V^Jw8r!G5?!9Sehj0
z|LNO()MDm%&eMa>znEi`gK9jy{6~eP$Y8A;$he)I&v$V~xb<%#oKDhSFK!uF{-^o1
zYk(o|N14*@_c&GnP?L=1qEaU_&DLZvgVRC>$z!MY1_MuB0x(mAguG3Jr4lI2?CdOj
zgQhpc%E}d$sePd}Q0;*6)0fWkeikCS%e+pt+B;WL8PV<0=nyYOl=|vTliT(bWf0mu
z*Q28)=nK`{1hD4v!W0waqPz1Tg;0%I@}U$lu1<&cgNcEG0X|UGP$r92(yd#Kr2@cc
zGCRDH8a2w{b|{*+=qbrOvmT-7T_Hw|`ow}NS?zV4<_{oLlM?4{WTy@bTU+v{{-zM-
z`y$ACnnn7EqBq<k%BNjtZeC}3!iP#i0^6(CKX~p9Fs)B+m-asyKY2P7r~ncRYx%!n
zZHa5BM4=rmxo0Mj|0rSZMi@(bc83LViBbp?tcTeEsmf{jMxpTs=m!tb7U+f97XKzI
z#g|G-=WXBfo}1)K2bP?LYBI309`&$=r>JZQcTa~VS-5$SJ(XCb?X$z^Ct;lU%7RJS
z^lNs_7daBE$Y8DyP44jy^$!ldd~Q;lb{A=}fAwi2NDUg)2U8OM=0hy)xBn9yLe+k4
z5OIftwy;*GIQzNpa4JqBa5|FH@-_-y)6=8EVbT*=i$Z<qqx*O}rfXD^=wN@J_|wK_
zy{8rE*g-3(6MW5JN&Ldtn1PGT`+$(DD#0~wkcPe{)hY!#b$FHeJ$51?fb)niyq5KH
zf9v9Xn(V6u#C;Cd^sly7${f&WdFgak3CH(RbeMSa>4FivG2ZH!Q7>r4t062FaqB`$
zOY1BkQdXL!O4>br(HXtAE-+ST?B}IFA=zWn@@22iCGP~av3X_ut?@4Z{p=AZNc&2u
zP;qPEAC)(6t&`BFf!7(Kj?lKImDUjFz3W7&M}(z_jbs?a`ob!eni!&z(R2!p+r6>~
z45GNT*(N>)&xK9S*9*B>gc^M&N}a(rjoAN1d#yp~Tl|zzB*hC_w1oGeJV-x3zxO+k
zU`^k{?|{R2;n=8Tj33#EuPyawAudW(3m&8;oXh3HaPE!y`Ii59S{@?yN&Nfwo?c$Q
z`r1vtP^FBY-;M!6tG#MVQ86~oI%s?aFx$g+86BCPmj}(h&d604V_fe%dD%i9{$iuc
z`malB?>5K`mf5Heq`W>-u-dbn$%atZ-~Om`6n~t@{Tc1*AP)nU?Op#hG5Z3Bv$L~u
z??{QEDBO31tPbQPAm~Tq$?i4xk4DYoj!%+T_Tk0#yr`XWiuEJ-h7)W#tjDZ}>Sz4q
z@a?{HnSXh_kAf#-h22A0P@~34*Z+7i^6HldynOt+#%$zIU9ILXyBab0<7ma8iQaC7
zx+A#aLwGTl!IUJ#L2&bDj}Cs2BLdcp$5|$Wq9iWM*&4K;3#(!Z^O)my1!c7-LftRP
zt6>vkEMz>%JbB2;=-9mEfPT|oT`khwVkb>b*hfV(%{Lo%#|=Uk%H&+2n~_6)103Y1
zu`zWdw`lEQu^vB90y(G<mzx|iq=$S~cbps=<I)mmyq0>f9NVOh4;&4bh8LT~)m_wT
zcpV{QjfqPlAVfRSB4jWY;xdh+LXRhFq+;;?fq}J>dD)wkssW<~yo{0wp1v0Abs<4y
zFoYtLNydca!jpYMwfgw#jlY*`^gd2z+;Z5&?o<t82+`P*^-Cx0L+{9Z#uyS2c=3Ac
zhf(pSA+6~MX)m0k8hvIgVc#s}Lu@fS{Fza+=FC)6_Odo<V+Aa9*qDka^)I1=l~uu^
z3f#@!De_vXpI!DEQTb(|GKMlxQgN%e1=G|Of>WsC9*B#b6#Gu7hIOqDY)#Y?3Sva+
z5=&2`ljYjUP1~nv%il+L=jhXfF`zsfM?PBB=6ooc$?>;Su8J#dQQWAnzn`V|q+v3B
zuk$`?w1y`KW~c5Jof9NxSpUgA<>igZ7=bmAVJ<E%#>U3AaS2A&2!z39@Ss@P0ax)8
z+AIl13MvwuB#U&w1fIPqXX<`cYpXM&YQ*RHW^$DC@?f6#pYdL1BmOiE=1%92lBbtv
zTX%U$)bv-sue;j}WDEL7&OAc!Ih|HX{wIiDuMEE6O{0^7C9ZcQDbyAx+PuFZu~Pz1
z_d|JJ-0PUi>vLQXZ&`}9=x&MNu-H_W6_n)a?(WFcK7_A6dftQF(oPYR44I#TXHQbm
zeaQ9qL&5cn^_u(+*0}Nl9+X#1In5Td2Av%`iDp?HWl4Pg?I}eF8au`Bas0}Pz`>rd
zuy9;ZE(W7-8K2Yb<?Zcn{0^yV1&6mc&RxxST+@|#a`aU4JEpO6WcBMG+B^xb-Y89u
zXS&v;)Q&U5C9MwQ6&a@|KF>AVU;IS&;f98W0Nw4a5l-vF7?A5UD(5eD$1*CEo*v>S
zITQ;e$7<IG>ALCO#GW0sU2W{Y%*@XA6ycb1Mj*z9cJ3>#oS*LvHpbN3yST8jvO<}-
zV|6So4W^kT5x?;4mX?;AwBrCE`dRKwI(d-6*tzskiKSChQ>Uk=_N8G<OV-6~4~<lC
zot~vi$|@zoMIwKRL{x3-(gr^MP%mc<J|7x-Z;S5ekSn~pQ6sz}wT0PZFD7A?^7~wR
zD|=ee|LXF>dfj)tE;h~j+sq6TJqwuBdU4evNB;i)M;p^z8^;=rC3g8&&+-P_0?!Wr
z_rtmkA*GI@jFFs5{XDef{O7#Z!rAp6O<3Rgi~SL;4)Ppn5gD1vhDuy!njc1nk15SN
zPAm)0ah7sIBL=f&aqqe%bG|K~lPQH%HEH${%uv^{*mSV712Zed+~uo^jWr&6Uv1NH
zVaX50dwYX2S*N~(5gHdtQyI~`sz#_E@vPqaVYRijAO>7oxebQS*68H^AZ8-EW-%e5
zT>!miK_^x}x&t9}XNS`+T6xkM!N~gI)%_evZ~HmEZT3c^#o=9Z+~wtke~sDqS~r>)
zEjH%LRuge$2i>Z=NDrE6hm7)~wA9oYh(ryxCoyMPvwgQ%r}&|F^^UfnsmH%j`U|~V
z#JhKhfcAg`40KmJe%GHV$YXCwBhUNcPfPzFYJD{B9O-KT7a+7!QEcwZO#+Ym;U&=c
z0#wP=^t6|75ny8@T;uq@Trfkfw%hD<#^Bd=i6Mh}l>>mBPM$F&q)rayzg(@{<+_0e
z)8D1K04jXYpL=L#Cg5n(q)RvW_3Q89lbY6Mhn`OFXDu?&c|<p0qn(GZ&=FLuo12@O
zjvpKYH+OM;Acfv<y+vm6@{-t^W(KQkY4J)NEH5pcPx1>%dT#cFb7>Wki9RQT5vET5
z9vf5A(nl$eoE&aU7wbiTBI8W6Vaocm&@7V2z`|nCjML>o4&+LyeTaAr8KH*L(9nQz
zw7D*H{`?s!S=sxIU#IIOVy8u$B+Ur$_Pq_8m}8@S_mNf6I~%L3ZccAwaJ^)(?dy%p
z^z`(=flW<Kh>a<)?RmLQ18sE;jsM6#E>7J%A_&)%5vZ$zGOcueKWrDA?RXJ*^S0lY
z0VAg_iz<mSXT1-@kDM1N&1Qdp735w29z_EX1~3iBkiS|$aQKBFonhDib2JycH669_
zhNi4v{{}2k*XA93!^~;z_iU{L^k5JOC9GMZ4PbsocN|y6&_7A~8W1_TxnPM1mTi!C
z7U}wa2$)Z%thQyOKs$MOCvYktj}Mgr4OdH;LU7UDFwao82B1=?m4~o-vr0DXm9Dnf
z;=RRE@B>NkQssKOX5n4Kli>oj6c#er5C&){>W^wB%NEP$g3iiekfps7J)YX9jw+PN
z(M!o%(yJRAd})2OIW12cCU0rq0@}d%4Z`KG_4V=b@w}nCJ;_`g4W2Y)u;U`1=Rvq$
zWJX4Y{Y27f!6E7A-t_czTL*{amy*mzbqThd3kU0!ZDY*R5)$`&H9imy_T(Jwuj+Qa
z8OEFAS%@Kc>N?YAAE2f@`e?7K6(#7|;4&v2W%%BqNM-0A#iFv8qdi4i$=KK!01eeU
zDD3%pv&H5rrW9%z$4U$lQ7B3Gl#mh@uBon08eDcbYD$8!2|9pa-=T~&B-io7xV_zK
zJ<}9B%<Q-Bca|mjAYHsp+c!f`9{!5|<!Xn-?1T5I;Ba0>)q<o^Y0QQu=YyNKZmCE!
zFfla;oCs|(irTunS0CPWeyn5}V6aoViA9fNFn6nW1?hC3(rM1L_}6!tR5U_{8bHu^
z9@U9CsmD0FxY#U!5&i>h{15Od_=wnB>R(eORQd&G_Rj^SSq}<c@w)`}DDS2^`-?w&
znB1es;Ue3Uyc+YQHQ_TiJ%glphrEG33J|UE%Gzs3f(i_Fe0+S9j)&uB!N_GlugG2o
zk>@_!Y`mT0-V2@KPG&+9!I#aO^s2MBRveG?csSF314sr2InOjCsy|YJlJVPZ>>nNJ
zQnJB2a>r)Bq}Mh#L!26b<{&KSV4R<y&zeP2n!Ca8dvtoRPRK*tXtaCMyjYTvaj)?$
zL#Mp0a$mByzg&B0zn~gR1}4)Afk6Co@gweRqXHc}IQ+u^Rgn$atkK<Sr22kqtihch
zIQv8@^@<nAKlP=gq%@v^L0__mV{c=+9>cPGaB$Gt+N$uNW9sw2PY<AMBG%~jpp$ar
z`tx%vXMh@Unr#<E>aDR*hREzNnEFvQ2Z+Dju@+UZax<XTP%(+iLJdZ`mnvhM&0qgQ
zK+l6L>(DZ7{yfN}?ec**Srn*UL2WW3Iy`;+56%aAFK@<Hltm8q@*q`XT`uoePj0$%
z{`&PxfGu(bej84Wn*S&7fN)n&A+3J(M&l{o0kdMSP{_$m09ThMV@Ze6T@RR{ksto`
z8M{O_ID1jQxQZSC!tUUT%1Uo9FGbge?KMoPbsDSQAVRBfL^|V&ebwI1?lDWe2M1eb
zfHdD7V#wQ%oKOf|sXR0=FtDYiCGkFgz#%?kQoigLqRn^j(JJ{iQ=i3~kn2Bs!T{ja
zV{(yEQBfQ(<51cLfoqeSI#apO_0PO-)vdxl`Sv(^1H;QwQ|Y28Fyk|+X=#Aa8}lH!
zGbBc9ur1|ddneCV$=TJQ!;kcSy?<>80e2_u?Cea%egc}9dUpv&WDQogn6_r>wvfBN
zT9!as-{ZB?*FujYbl=%BWl72Rz-)$BdWD2i6$t6_&KWGP9J?q3-A6&&lCI;6mj|k%
zQ$W;5ZEo6_E}$RC`0jr1-FoJ^@;jDMtReNo$n>;vOFS4zKyjNNiv85sIo|nu8gug+
zF=QgS3h0RsjmljFI_d5?7<W4!fkf-7($&><a&mGGngW#`gMJF;86ZFbplf2f^(MZc
z)V|Pvq<e-$Ma}xm7Wbtg=)%v;j1?E9B%na1_GjmKcv#0PH{mtJw@e2ztuu&7vu|lq
zdPlM7XxbWJ80gdZDm7v<SIU3!nL<-2t8#%}R>jS0*RDl#>V;MtbCbc?EEQw?>d+5!
z0TvEKFflRdJsAfI^6=PL-GMoYPkKci)?c;dZ7&w>{a7Ek(y$viARh*V%jpXctIYsq
zlOz2Coo7DV@V{qdg#1N;IA30q!fMtrEkZ(yp<Y;RrC^?vf9er=eSzt;REByJst)9<
zj;Gl@m$odEB^K8dJvq?4DzAhAdmZPC!5PI10ln+$4uOLh{%7yhCUB4DlNhh1U-yRZ
zb|zN5KXO^Snpj&avFIZf^G}g$C%WXy(HwU+^x0ih8S|a%?R7i?j(jPTWl@lqn0R~m
z?zy$CZBfSo?IM>U9R)FjSXMNvd`xm!;<@`GnN>9sS&PkK%mM<Mh@>>PieOrw+lvJ;
zpy`7;aGqUQS>Zlg22~8zP*>NRdu?iJy1B7Ypf38~Ac7twp2vzVAg;VbtTr@q^$iV0
zFvD>eUCi(`LW)g0JG(~zBj;KtF5j4N#ySuht%r9gV>LWIJ=0HpPtMCc!(AB|7_@)c
z!2g$|bw1Bc(NVKN`%m9)jRGYI?oBsoF{u}jnjbu?8VIHILP6+&m|!fCQ-S!ZjKcsS
z?(LDrx#+ZsMOATL@bNY~*X`SFthfp{kNoR-+Ui_D>qBIwrxy+U1a=z?N{|ck)?lSr
zv)}>LGw~V-m#?z&DIwSKWd#KV2qgr6+KAW0+jQ{cdS`6)PI9_QSBjvStBkYpkl{Xl
zQdpCikYd8{L1IzP<OgH1XEUIB$NTSp%()ft>-X=3KS7?Gm}KURK(Xtf;9v5ml@9!@
z8#bpgFtA3Cr}7aPziM!ma~u8s{VkW+U(ijY?4D(vp4e&vBRkvx%GbKksy>2y+R+?1
zdOtR<H2C8d{PhTIS6=bBzWGep)hmR+z6TqPFF~_-^kW2O?G+a><oE?}MNVS*KWqLK
zzfsf=d?w}SDp`VB8vkl)S9L3gf0*R?=q&x_QFex^SJPu4GJN>2R=C>h)_2#vLB}H!
zKw#a*s11_bPtVTolJeBW)#WN{W{WRaFQnf}1X~MYNV{B=!l%PJPrs2rY#{4Rjs(c)
z9_@8%0Mcd37h@%w$Ry=A+MgsS2{VJx-GGJEeEIUFB-qr%q=3f3A>UAHS}LpGi0P4l
zBn9RogEjZpQ@Ir1T1e_79Q0G1bya$xSrYq;b~nJ7YWv84N7W)h0BT+CG{{~mGSWk5
z63>k{2Txyo2j3Y3Qg45q)GPG80(P6jyPZEP@QUrBr4=S<17qKzs9KEJTtL30K#rzy
zHr(NGW5Du9T%!TR`O;Vx$<=4^j|5v&od7P5eVovCvEgD(6@^cwB8D`S04InNpYP>e
zeO4DWG&N;mX2vi(xP_Kaj(-`*e)iX>YX9KC&8eMc^GOV6tX562<`i_ZS<M!4Up~cq
z3&hW<)?^bj#e{Ma5)#k#&p-aUfjsLs2=944ob%?!4V-#=C=~QBz;=JJSh*RN0obd#
z%BD!>2lRU~(GRQ)aupsdEY0Mw>9jqV{VF(ZV$y7F6C~o)e6r%sO*-R!h&N12>pER6
z%=^V+v6VYw{8UVA+5K6~%Zp{1D|R?L1D!qbk#WPG9;FDD_m7hNA%Lc);C-N}TT@Mb
zeOpHJ&>=HNk78nWX{g|Q3R<X<k(2Y3aTSmC@GAw2o|>48)IJ<Hl`b`k=+S>14Ra5W
zs#RgLaUiFXdp=iSAzHT;OZ@j&5<P5mhmA$Ea26rU?v2@hHf^1p^np+AsqKU$)Me0^
znYD)NL9FA2B!8>4lQSsg2PkLCfgMdg(^`$tG*%UDxI>nam*@S7_+h<@pJfCSaZ`Uj
zOYL~ewG_=lr$JbTy3+W-$q$)Jpe59Rxp?h5tNY&duk!#qp!Hd-&wW0Kt4{S(P*5Bm
zS^_!y2_Ik8;oSht($Fp1HKonPypety0ijfrBTMPL|IM&qi$lM&{6zlkwvtfB>lD|Q
zpcdDyn^nV$e9U`)!jdBJnej-~0w8JjW`%7tVuK9ay+<pmX2iYBQeKy(Jux$S#h^v`
zgf3=ngY)vBGFb84K1!iI8ZU7n{e#;)>}gqF4Hkp>wD^(!iK(*xxT<HWwz#CEq_FU}
zpKRxoOGA7yU@oUU3ZJ>OPP;0%cXC3OSel#5RV@}P@LED|c!3rli$DD|L=Jlsw7~zJ
zfzvSoB!6_1eu*Nl+PJd+QT<#{GHKZ4ETnh@S7a7^p)Z(5=Njv02*Fw#0Q2g0?P#Lj
zia^0gu(*^o^+B_;?i_g@B9gEeQ9y$7Vcd0A)q5?JLAA|ERT;goU|y3qW)Y0OtFykU
z3R_cEL>smi^DTP=6@RKjXLOgMeu=O6H|}a{Yb&k9ENJ+!w69{1lkaQy)qiPO9@c{?
zd{!1EviPQcsgp0P97ide(U?G<#wdKt)6YglCOd^N$kf>xvtRP<pwF%M=DD9eX3_jc
zZqQ!serw$tJ#AWujt^06caIaf>DlvWKVHCv7hx9loqFN)wCNAdLtH~MI{SX_#}0=H
zTrJj14SMZ%BJf>JzGvl8??z=7$JULLB0c<Va#&}$MrON;TZ&(ufASii+uYddcj;pV
zEv<NmTP${QCD1O9<N)O+;Rp0611NNI;Mc!Jq(X)v;89>-A~=nW@M;QRG1UmwDoP_7
z<BP$Jk1y}VCWG2sly^5*;D<+j{K$TAR)I>(CVR%566SEX>9z(f4aeuEQP7-!TL}vY
zXhY~4@66M<%dMq$4aXj{$^^~SYYCpfZ3c63Ns+egcK~^@)_@H5JWimIdsf8jc`&s(
zUTFq2733GzHO~_u4CcNvGqZ`LzGSEW?94piC|YW}{ZobuSx6<E8u0K0uHF*u*`72K
zyf*q+D7Ai7Rg>`OBhmpTHEohh9E}`{mB3C{-MFFuGLA{GI|a~-ZYzST^qd?FU(8b}
zsq#|7#h`tyHusV4pKPnqAqO&jeSM^qOz^Vbr3P`dt=UA;o#X(ZT(C_Ar6cI3rbk>{
zQtHrGqTA(_ZI?zvRbWK)a!~nsk*-=0AXEyIeiy(ne3x)NzO*JkKkV7o=3ImhekP(0
z1)9Ny^9QDh>FM=dvYfZO8mrMNo7;>BYI=aPta0YQd-rY;ap)?mbZK`&@aqdF+$q>=
zbGlyZK2CkrwdqWb+%P)x?6=atqC8X(R##U)KN$>0I5qrc@cXbuepzTr*Vk+Rba+DC
zbv}eE=eo|-PZ<pdQptpfSdo5QPgQkw=h~X6a~GQ;&-L|b&cLwRq_ev5azD4_0BM&U
zGpz!hxY;MWed}esL-VSC$`%JyH-n_<^`kQqv%Xsh7Q0}Jr*W)0Wq+@;y#TUuW|>p9
zU5loebjSueUBx~{S63#D1_f3)&Bk8-@20%^l{XXpe|$`hpGn`{h%_LWXX&xm*)ysf
z<19UC?4u!z*5k1nPk+D2bD|$@70v$dPZD@lBeQ@VMJN>doW%uD+{Fadg6f6_ZoXqu
zDi&0=47?HsLEtB<;%>P^>%M*!aaRMY^gr)_ZWMkmffz#2YWaT1)7#tSqEyUfwmInH
z6imNwdD?LXzYFt%nl{W@{Ey<qum2zaKgmDypPaW5Tq6ikxBq)kGEn*Nii)D9Ld6Ss
G=>G#h=B-o!

literal 0
HcmV?d00001

diff --git a/logo/Kaniko-Logo.png b/logo/Kaniko-Logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..1a37917bf8a0b14e47f67208f709a74c8d69dd14
GIT binary patch
literal 20081
zcmeIa^;=b4)HQsNR-~2Y&?OBD(gM;YAT1q&NK2PAC=JpeErKE-B9bCX2}p@_r*t>(
zJl@ZHegDDt!}mSwzAio97wogw+H=i0<``q`NDVdl>sKkSA`pn{iVCut2m}TP0)eK3
za|Qkn-R9pw_zT@tT2UJZ2WM<XeH#8r;dWooP0P{R&BM&a3Sr~m_|%Ha)xyQf%E9%q
zquVBWlLY)GLQ(dfwrA$rgqNF<zCZH7@D%Iy+Yg&`2y+wMz&}Dk_IEm1>WY25<ur+D
zMkEqunSLh-yU+en;v5l4h&5M^G?(9re8)&*D@NI^Qchi|7=#h&H>J3CiccEYqWOkn
zFhTMycJ$(vE1zp7efC#R@9xU$-d+u#dj0(Eq0iyul=`fD9WLA}0ugwqc&zsC6XFcB
zli=T{X`KK4fcW1<fLQo{brB*mH!<Klo7L007x(v{l@8fe8_?i~8@&5%SAFl^y_uOA
zP4<nrD-k3Rox&Z<%Wp>Piz4GPGpUJ*TR4!LBO@ae6clFUynK9ooSZMsq!4|)8QsCb
z!MnS=K0ZF>=T{0fDQIZ2;^T>^sJc{@!o$NG8XA`Ty>xV5sTEtK5(Gx%o*@DgRn*kD
zxw-pgaq#hP`XA4@*X2m~eW|Q$;dtHmn3Ijo^u~25!Gps?QBhG=7M5{`LtGQ<nlT$|
z)L>v>P*PHYKkKvp%*>bt1YFjdWT&P^?4VC4eW=7mNMT`PQ~ajYEcsYeB*)!$P7~;;
z|LD>A-hg^rTbufOabxd}6cc|%EpkNQujzpYp7`CZU*zyTj(X75<Y}d}b7h(L>Q0@m
zRE>;JOmy>_K6pU%=@DAJrMvs5#>UANx9t5;?v&E}{BPzJNy*7xjC_b`@=gM?KWhwK
z1nr|*l@sb^rM@=kHpN%zPdJH<l^M$8e_dtx`X#T|scxb-TijKcy6lRatnB>aVr3K-
z9sbzZ*!Anzm)?lS;9bAIvVZdPr%ISU8iGf|e{0n#T;=R;+DWfv_`-AD>F3?Dzq8}3
zZ7i1$Bkp7~or@>zND@91p0fQqRx#nuoYM8=$rEN`+|ob<!?a5+t(d22%^3UK$4{Ta
zLPO1LiJFIJXt~rgb@<Q9JC<+@Hgob02&uZLDNe+9yckx_b1EX$rc)j3ICyvnu3j}K
zCzQfirdsy;Z1ldTN9{xy(ae*C^wslG+E|EtK1F}<v{4JK+}WVLy@}alpreJ=xA;nV
zoA1~|X=!N#1Ip6Jh*`LY$CRUumd?)3US4Sr1rgJb`eJH3el;<~mM2W$HVUArQFA8#
zh*darBqUpZk8bK<Y8p86=~lJDqlXW_b5I68=H%j9-`o_y6TWlj2QMYUiC_Ucd>p_3
zqSSILfOTUxrvW`j@Zd5oEaOiEGaD?Vea)kXy1GvUDZ|jvTA#Z({VKhA^X4Bc3`9)s
z*>u#{y>tl{t;@7cu|U?+SjBI3tzUO;(q(3htryw1>?Z8(?S+J3==334L%fd7D)dxX
zNXAkT&CE$iqm`p)m0J{3iiq+%qY49Ut<Ty$Xr)e0Pltzx_3vN9!-M;@f{3+r_wevz
zU_m%xEnu_$xJXht$DC3OL~u^AqF)AWGM!Bv9Js5i6O=wCjx2!K%+>gC6^D+6JLN^=
z)J7>jK7MK&2BPQn*;eDafB&iak=hlEx$nsMWNcs7nI<D{vazSS$H&JH9y}<^LyLGh
zWVbJ;mxM$}Twe%JseM$i+r-FCHRToP^jUE!Kt0p=SRt&2lAPT1^Ew9;Q^D)kf$#*j
z<GUL8C&>Rs|My$nXSYWlFNoq2rZy<@?`$5awIES}l-ObS<Vm4s{fjI0@tP$`9hN`8
zL6TVHLkko*n%-lnc~O5P<jaZ{BzO=&G`lE@d)Wfd9iFn26E8e>^M&ZJK{iQ*FJ&iz
zqrn&DpS{O05ycdRh!9wUYhw<&kUI4B^-+`1la<973v{U!gH-ZV1u;zwzmk5T+$ey^
zjq=4VMH-Ecj;^k+TisAC(bmz`Rc2zNL!0EjbLZ95=H=zbJT&ZR2nSd%$~Fo8vxH41
zsW%Me+gZ<%&b3DBITBW%*Wc#lG0@SWX72pr#S06cGse4j)65_eX*&tZ^&O?Z-SQMK
zd>&%1MB{OCazgG<_r+<Z<@*aV{rl*I;?Z)6@$p|d()%9E9-~eF)$sT1_GX--2-LVg
zMX$+BAM&~4vhyzl$+xGv2Jb$7`H~J_BN?BP(q>mTxX_hSu?aga7jBMPBwQ%+bYu83
zuvde}wblrg18R-RuE2y!wK*W(&O&rb-@SWR7@G(qE=~%GjW`P3`S!%U?YIYlp-7~V
z_kK4kq-lA5ed5m_(;Hm3Zr$SMj)8A$N=Qvj&B;+Gq37m)Ur-S8Py*4+n1nR8n3@+w
zCoEVNl`Xnh%>5hJq%GTH$-lq9UlC=^OCI&&1<Y?tCWXi3{oA)9Qw2Q``G1GYEyivH
z3cr4qH7tB^1mDYkaXRI_{D)cT<$H_R^-s4-v<(amUl`{glKKY*(9zK|($n4D-PMkX
zqvf=Wj55>HSBF{=fyzgM`;_BDVY;??3VYp-;&YX|Nm1<(RnJ!XnP1*TH)UX9S@fAY
zoosDwZEkM<{rfkr2?ZfxTv}RMa&l-VQp$3R^?Gyeya}@=?41ZC#JriAS(49hv}xfI
z?eu@+OH)(RhYuerDqxeA>6CUYXqFC9M*lG7ZT<e8B3iCd025Izb&S@0BQlBUJa|rh
z&EXwKfqV6dDo^09Q>_tX+p<rOIu>?r>Auf&tPw$EsuT|t{u|p_I0&b!IVA|A$S;a+
zQ+5<1qP(jv{C{z;(Ta<UXJq`OluUZ{YIWZmo*Il&WHatl>d4b&!`_#dX;Z49>KD~>
zu?OxRKUi6!Tz-AahOIO>HPy>uU~kX)&9)nUMM}dTAs^JQ_!SxOH*KYf!99RO(hZmC
z<o7n~7oQXIm~ZIP5d$lhpVyV%=?o7J^5SB`FUfy6z8Xlfa!C^JueH9pwx*(@vXvUc
z2CMq;!Gqi(J9wP%Qv{F<CX26nt^D$G<as4QE|8`IkEtxLu&9WInYkhg3w0&<dQX#1
zNd}jRKE}ijK?#W-3z6A5H<27Mua>uY11oN@4l2@U01%W>Kbj`3-tWJAM6$k4<4}`P
z?j~DOT)Z@YY*ow}ukhZeHczu8RTjQGFy-|bVyp7w6icULm`!(257hRZ)R-fCdwbq-
z_vFMxk{dT5p~DT-V=Q0?3b9{jTCa(rtwq%qZrTAN<fn=EFXb$t)Fx`c4{aGh{-|gF
zn?q7Kv)tF-j#DZwJ>3V@cvYSwu>-!BA+h7X?;Vzgt$7<Ql4$`+BQ7E=yu7-)$VaoS
zZ)j)%yZ_A_HYTPJ*eD2uCl{=aapGaP>_Io~;-^pU8QnQ7T;6E|E4~M76s0m}@$vC@
z@811y>bR(>%j+>mo*pgtwX|GW#H$<{8v1TGmMoq7rlcfZfk`C~wM74Z?zybm)yt%_
zGnd~pPJ%);TN&}~W$)fy$H%XX(lIusB_(bBH}OmaOq{IXGPX6<WA9B(jiZfCc$=GS
z*!ri^kdTnUL2Z^?xXtNz@YNrRqFMEuT=yc@wXf2JxVgJmj=C52J%0Q4ZE6T~M1cdS
z;2vGLlp;mT4sa8ujzvnE-A=xOLtk22DkCFPmiJ!`{1>DDF36jF_5?z#FaO{GziQ;C
zg$To(lW?|#U#H#JLpeD)Uth6*%kHEE%l@bD5nal~@^ato?CkDRua}CvuZXCqezNQH
z=g*m$ng3g$l@4fUq&S&0HFqwFz7JndD%1HpP~3aetzZdR4KQC?NP<$~vuDq)h6X7L
z@>Ptj-+b|X#z~kOzj(mQ({tISR+}SPo8uuHsY|U<i8fT1#sN}+-heBmL*9G4x@@HU
zX(}b!oeMjGfrwga<TxUPaMq=k^X7{Q2aj5#I~m;zE;O{XotFHyM%*b~;sLke3MJY*
zS?u+Ao92j@mKWtrc|E(a4mEYTGb<Mt5=|75xc^m8z_%*W$J{kzfJz%08yhPsD(e1?
zrY6Ulv8fa3G?kl2uJrWuL_|bb!Dw1qJ#8~iW##4N@874ZuvCrM-^rlCZ|mUcTX6%l
z?A;&%I8;PL1d2?CHrmlMC#MgeK7E3VR#jEi)YR0~J*m)B+s%EgS#ssd6){KsuV25y
z9bg4N4-T2ZfYsK+;bI=SZ0pO<&YnCz_Cjriu(9{jGBP}mzO*tW@xVH`y1HJwc8!XP
z%CVu}kE?i~7Io(hetR!9OYjH?VxyvzR8$84?yn`>c$bxx1$h)OLUM9))u*CAQ>bAA
zK}bPCAA*5}_2b8nqJjchSy@k3eZ-_5=PN+-@S_mh6B84=m=&nmbzAb&i05mTw0uJi
z5@KQibmYv}Yyx-C1JgN@w9g_GnkGA{K7Je=8|!kEWBBGYmaM`8^($HFeB;m9>gwvz
z(b4#LrqIoWHTTmN)R4BZu~AS^(A3m)ad9y<rQ3C!|4WVE1{L7XpFgXs9Hpu71bB?=
zJ-25=znUs2qlQ+Ac3BYmmU%!xfWN;#6dE(LuT<|CpWYceLk(XK4-ZpQQ@A&Cb8|~e
zrd>x2#~`@F7+E=`%Y?@k;<3;?{QZlp8fC-?+5c3UkU*T@*Uprr{$XrgOG~RaM^e&%
zskc;xC9%U2ZW&5qS8p%b1sAN{F{^rZ=EYyhv#oEg+B(?S*s!JG=01$r+xV@sKXr73
z=X!W>u(+^bWn*(~H=>=ue=B(RT`iF`w{g9mv2o8GWW2LTmdEC#cq6};16J_N?{|jd
zmp9*)mBI5;S66pE;QLZnCn|^<1;c*@1Ox^K211W(82OKg(0_GY$`Jbv?8f4U&&_<3
z*C|b&dMR6!AFRJS3$?zijFTldq}Q$*W+xeNaW<~&BM8mWIBFPKTFw_Lr<hw<)b`FK
ziG}N^U+x<k8rpD3;u8?SG_bL-;6rcrMB2#uK~GN)#35|)q$E=O#<{dV_McoYrFV8R
z)(q1#GSWE9*h!<_zUAO9Z+XN$3=itpFG3q3C1a~Q8F0zdlM{Y^{>sYALA%=~X-DXg
zSxJclLJKbE^5uK8Z@(`u--X;?_WpgPopG5q#}hld)DYs&5KT+HIfwiES&P)QHLx1v
zbsjtt5{-Fz($wJvu&C;i+}6-!6&6}KI`)>bH*}g;zzY5R`BVGh!x@fFb%+mhH@75-
z7+Hpr($YDXWKU=3it6fTPoBJ}+Vl*99yB{UJ2y8M!UNh>$?=k|>u_gFH*^%EF3*-9
z=;|KM&ojlYM8tlZdHndXX*Gt4zJAHT3fx;I?3%?z>lfc!JQ$|<g@kH8e$>{`pbLuK
z)!MMHFnAXo9Su*(SZ#?3{`&j(ukL%J$f&4UzU$M?qoW2-p4>{*xPSkCX1B$}$jHjt
z8epN>#j&jH35U()WpWxC0BnFh=R|3UpjtU`-?J^)VU<03CbS(HiAybH^B#6H6a&RK
zFUWXUSXl*dnf2glt*@`o&CU6;?s(&e=jZ2JI5=#q4wXuX-<=m+XzT3koNJ2>{pIZg
z-S1?B58RNVipsnw+14vq2KiXpyIE={8f4r??Y+Ilv96R5!Zb8AD*Xq<RU^Ka7v~>8
ze%#q{p~f-ms@arA+ma!XvD+Yemb%o}-``(l6MbgQBmsL6P|}K<NMDZLBLjnz?bra$
zKcjQ)@YSq2zVPs2t(Fddb1}fpL9E}9UZ0t96M@AMf8>47*N9u!&rdvYN+|eib2t9O
zx(Q<wlc~{Bj(NDk^71n33bnNz9t?S~X{TRm=gxQPGEE09^#KYG#wPHa6(0;2rjGd`
zXMF=&!Q{_|@esOGbsoLC-n5Xm>O3}MqNBI7+V6T5B{Z!}L3)tzIrvHSPTKbK#Kw;w
zayt8BI7;&JZ96;se$>fI`x|weF1&QUPoJ){N*+fdgp9IGeSA)<dL>9M&S{WA)l7j^
z8W;)bJdqLuyN_*bmP*TMod$mWC`W;ptSqkCtU74<YimcA9PI0ixO;DVdwYva)n>LG
z92`73jII9k3IF<a=bT>l>W?3n-M&B<*+_zhqAGxiSea8`N&uvZfr;4{E;0fO9E>e-
zoV#-O#pk*@Lk*2)4{r0oA%Z|Ht!2e-abnFiua8Yl0f!sC&<`G|D)~ZF!cUF|Slyaf
zDG>JhK(V^t`-82m@mQPNstFe569LRyqrrqgHBwPhV)UEfEJKQt^gBsXd;>`j-(lcq
zPtRmiz!ce&SVqY55C*<B^jJ`O)Z}gHst*<a49nv{HfcKB;XXVUydMkw_dle6>-TPu
zL(OSNA}a|Ai7%@(;KJ`@hXVE9C*uPpi7A#ntqwH-`$M|Y%k6kc@N|$8zU}jp3(!2d
zy0|RQWdihDn~~wO*WTFNbhNdd5xtfZ4$qo2Nlx?h1}@jO*v=qrnLGAZ=ciAfmid3c
z#KZ)guOf~63nuuzZ@IRlq+_XQp<dfxMO__|{ciG4{q>EFPc=2WS(v}<VE^(@h(TZb
z_HC3zPX~1QlvGrAsVq01LYndO^YgWt83QC$AI%bG<fkOvIQcDj^qbGCSFfPTd}Y#x
zw$o;vu@>6*r57)-$`_o3fi0o?c#oM?v@xK=lK-}#;8seP*UOhLIRVIKVP={@+nyND
zZ&!Vi<uSQ^K)n6?w~n7*!><!Qjn%a^(zfe#jevlK<0Ufc2UPGzvgM(onfPuq+YvYd
z>Vb~Wf><e6WAOKHB_?8)z7T6Ov)t0s7n_`Vm3o}&*<#zdqWQ4r?_@+1x_El(nV4)k
z2_N+=|Aa~Td0%UkG&C|=TUp7CWlUBoe^hsqoLm99igEMB!o~S%-uUL>+DKJ(_3g&0
zt%vYjCpl+1YJV%Zne+xsjE<hnzTko7J62UH^Y-!4KevZ{efRN9%L~8|ZL!GHU&$xz
zTwGkozbU+X8&hCbfDb*mmjD!X6<82Ey_^x1f?i!)o769p1oqa+iFXBU0t$1|iW6H|
zeMf@~>ln9psJPx6p}FbxvA+K7c*z9ECMmVu{^`@}czC?HH^|7A^4E>j^I`wEPCfDk
zwB)<I2~^b+c;JxFH)VSqot!kvnv~5K+(b}eWZ9w)1fR7vi(h6U;OLXRmwh#(Q&Wyl
zpDsWYg+LVD(8OdvBGKH*iO`<$GPkx~oD_HFMqZOuR=$>)_0_KW3v}ZWF}%^SvAx~h
z+gYJCf7acRCv-w-DvgupKOAbR-X1@vQdLz2RJG>}NawDwgTtK+zc<X^Y9ZG{|FV-6
zx=CcCtQ5FA&>9!jByRUX8Ha+B5_l1^DR;6NNa~Oi&57SuR_;{qPRlmiRe!3k_ByQt
zkcEYb30X5*4%(}Ems;qkgsA}#12+m>CX7i@X%TVphWh%o_3QL15MjK>cgX{|+1M0H
zv^hwxhDw`Njby47582($=(eu%diHEcS$;P>EUdDs>NaJxP!PHyM7V{8#h&v=gZ1hs
z!<PIMes4%T!+tusaw@STVq##hkzVaJd^NWIX>6T4<w-z5PR4%2;^HDSL-<%fUf^~T
z1X{E_Q8*5uPgm$=Oz9dL9sOa4L0kW7$j<8acT_O&@x?2$p`mz}%9YuNfQ5nE0nP?W
ztK&JwGm$Jv@<2fVjABWQ^x}ucc(dV<cK5^2zCl{zNG5LXjh4`B@GHe-uY`nzfU|`b
z<IjdV@Sco}j49lY%*jdW&7M6=?wG(X(e~b7eVC;tk6g8cIZcYbdZ$xrVQ&5pHn!|}
zpX2WD0#4c3fTaEdYQxS>Ws0=}WE22kuac5H89(a*n@kr%$Pk}c7NAyni5c(fr`~Q?
zE#a-*RA2wo(Kv5-a<XUstq3pghmRitJMijr-qhiWjAbK@0@mZ>N5T9)&lBAa%gXkD
z1F!=WUYKb`1z%WxD<ljZ9UTTnMtw|D(okvW5#!U+ynegO0FH+NU=g4jq*T1#otT)I
z#igYe)vB4o)YQ};?2HT_Jox$*nF7sxf5u;C;JBcBf)10Pe<!J_;%aEiZcSo(x)KgR
z@U-k~K<H+ZjXTG?OYkG+k9-cXU}J?~SjAN~F@3!+uMXK%%v(E_MR)QOR9;Kb=YWAq
zN{F^cJpuwGzbX5ssl3X_$Vf~C;Qn})94`#2v~mh}bxn<c{qw1T0oT93xpew4q#5E1
z3JQ!GebW}N+~-IJu))g2<mTZ~CGrW?1%3WZ4xBv`CGV0;?dspZX=UD4R#wgfujb&k
z?CTztXuqwmuix8q>#Qkz{rWY02Gm(wTf4F05canQPzqqUyu6@?QhhSVX#Q%_+!vI!
zdybK38Q+&--4?Cyu;$KSKpib9iBx=3UoVy;%<CipSr0FxU+(_>hYugF0I!1fOym&^
z7ndEV18Hj?jg5@PM@K~l(qA^OxP5^-`r+h8a@PW^CBy}a<m0ciu(ZTj2sf>+uIAGZ
ziH(Suw)Q*P+KOA3-GV3FmBIrOhYlJuu_81JzP@Me?Fu$Ftfjm35R7p1liB$Ul*_)D
z{+x7agF}g30q)v9)U>n`Uj4uR{0SKiMn6A4S8<;OdMPOA%878$ZD68TF>L((FMKu|
z+CCfzC&a~VeZ@w8i27-%szL{dTH<7xadE-f+<Z2gN+|VbX?9lDeM3pJ^wd;xTH2ym
z5<<eQ9??yOLL;M{2G8xFA@<wJO3%(u_5p5(RksmE$|l6eZ}-U~L&L)baG_KFrL?i9
z;U8#{V5`uxnP3>qly|UP3tV2##a<!+$cz3RMo2Cy8*vcCU%rSqdN|LJm7d$edID%T
znB)#<FuuGv-4rO1`q9?*-TB(|?DrSL<tB$ezLU^1K{Sq5KiL~jf=pp%_FPe^`4<3T
z3kya+>NFMi_0iisCm9t6Z?9jydb0J60J_0cS)atfz(7%t4TvP($UA&|UsbDkh=7r}
zU|qzoy)9cA5Z>Nc%R){`d2+VPlZuoN7P574u->`z2#N?bwF*-H15gCw=%3hurEvYQ
zZum}Ts@^N{LV9U>S_*@#71SkolEw`S)MR8Sz-=P2gRh1Bu&xsKJ&Nndu!M-z(<ArG
z9MCf`;LqsZbA}|bK2}pZ($18u1T`fM&+OyB7H`k_46T!3ixtrJB6rEfOAOzE>>>L*
z0o&hG-o1M|`+01Yq^PJU^=0pimoI;IbU<yj1iZa>@9Nd7V$mkTgyiIUT3Ry5@ELt~
z<JPt|U2ScrUk_IM3zdNwNV*4rgLhOx81Pskt9t4<eph$*!kS|aufd5%=}?Ws#O!O)
zE$4-W1r;5G)EYL@TS>@i<VWZEot*fLV5XDBK39htAL!SLCC_0-p>2a_(Gw0f{msTD
z+Qzjm_xG;LtdODQ<>d)WP?3<4$p_qmbQ-V7Uk_^8duV+YQ?xjeU!|mI`9p9+t?T4q
zemyuaARsBJjs&@Eac7}x&snX*uDa*vPYtYX6&73^9Mkwd3P7UJuLOUUqOf`Tv|D-L
zzAOk85m_QZq-VIb;&R*<BJuvND8gZPx3}rBy?u+CY7CG#e6|ew(AS>JleYb|7O*<B
zsWmdz()#8XucNIkJHoI#J>5)Yas4h`N>{mY!&?nD;nNt%pdB3@N%tUurZS-?LHPmn
zu`&nc@%PY>v+MXc^fNJylAgxK#%^wciM~BbCEEPQk$uCa7r>K6q=;nBUr5vn-0SyG
zglHmm5vHD)5YO@5DLJ&RY{@{;ifIf1GcA}p;h3Q>{W0l8MKe<5;y99{E>wbIX)oD0
zIP#jpy><2yyS7EY<>3EcFMvNA29#g`T)9&?#Tsn&!@JX}%Qb^gvimMs25@k3J32e_
z@LDVvlu%oa9J44cNRob29cqia?`v#&OK<NJdC8MH$k&;B)7fL|4h{}QmzE%*!fsR1
zBo^-6ktxvzW}rf8u?$*dHtc&Rvlpci5fN)^_8U#*Uri$-BXc7^G&c5dPzWQ#zilt~
zF|w$}0dIGAqhrRUcKOm2@R^sRg`S?C!ibo~)2Go7|C$j&J~d~cj~`ZC7vGu0Q9M;;
zIQ=c!4%$eH$)w+2ME8-Na5yNTEFO9dgILCackbMIY@D5*-Z{tQ87h6xYjKE-CjvUq
zW06={ugM>F)p`5KCScN2?S<>zR)Cfv_RACil$Xny2|2QU!un8<^eW~84Mxq_dj72%
zBj{T5UgNXcHmN#XkGplKI9NA7hP<?{s%^a3w#o79v2^FmjQwuDvawMVn+Svg5~+@q
zKLYk=a*|dR17Bo4`=v{8=7dAB*hxzTke!f%8ykI$jHs=uBhPikD5<F}`ximg`SjsK
zoJ5a)-=?s6zjS&e2%(*l%xg{Fx3JK)&^#IA<0Eb{9S<w4VauMR3tcN68XX%uJUe!^
zubzE`0)DEPuy#77Lr5J-wy|PzJS<>*IMQ};f$zt|D`2MwsfNc!w<mlK--0K;!xBh3
zK?`hHE1+%Kd6|U^fd-3-!9Nl9Zn%I>yS}XH!SD9~_yNqkbjdB$=15FPc$|)NI@`(B
z_TdDrQ9)W-N#QFpag#It7J<Uqq47KMGMy*DG7tnD)j-4jM%=UJ!v|h*@ouK1A-na}
zRdZsc={rI~w#M9Xw;4JoNRuQnxbMr#hJ=OfWS}poXLK|R3*UP2eFtLVq?bKZdK=2b
zR^?Rxy1SMGm9mo3Y^CC`;e+2Z)>Ua8>vxF0tzsYHmqdl=#xIXCZPdx0{*ZYEg&;Us
z1}fX~n_GlXk)hO@HAC?o930%*ath<ajBr`Han2^f0+0qUWzV?_l0(w-uJZ+PXG|fR
z<mdkiKiAD`R@9NQE(@JE8gGhuxVuApXUp)*BgXm`2L}gGor|h}Ect=);8Rhwgncqy
z@=bC68S$<}<d=J-tleIJ#>c72$ul!ETV29m<Kf|bnE1N6@_IjO(^r060Gj|G|FJRc
z&6__sNGOwR=-Hm|_Po*Nptq;#v#S=Yn*a%Q!lCB#Wm!m3b#-#b_!#hqw7pNYHg0RO
zkzT3KA|)Xa5E1d-NO82ce|;tlIi8S7l@zy}-fW1eK7Dzrzvuh9I}aBZG!8Q#Qh2@Q
zUabOl1Zrhj{>e28)#F@kj%OkhV@*A$f|SuZrQ(O(k4#pyQsUz1;@&YrZeQY-G~x!(
zm`y<QY5N)UzGaJa+oIgTE=v!!wUeYSd}Ch3#1yeh`nuV1*udm@6>c!GC6ezd>S5xR
zvfL|P9k#8|gGwteC)dZ*Pw>p$-T1T9z0#qbtcaRlZZTvE>oaD&<UNo40VRGm;zl!0
zuV(_ly-C`5lbD#FkI#7{1%Q7Na-26!1$vP^XFMz!Rn_Z$)RakwsYjHq{`{TQ*X*st
zC^`wIBl{IzrbN)klDkCm#V!k&jD1<H7VDy6WXuPi>W|Gr&6>N9yuAF=r(9E!p32aW
z*J6h|OFlcrzzR0AwO#Qoe^xgE04(TjkukUj*yS(yWRG(ub=~WZMKZb%wq|5b(4#n#
zS0_BC7M$y2u@}m(Z;DeHD;E#g3Z}c3OP_Xja+$yqq$tkIQYqt=zcg-i%|3O7Dh#y<
zq|BplSkmoBN1k?eZ+SN}`{oM0nuIiN65M=oe|kY4TJX*M^jHmAi6Sv)jAE1nM9fP%
zfT72AT#St^LQzMMO)}ogk?4X&E`NJGfCvNxRvm|9;EU8$ZRupCap?K4$Cu#J%Q7%u
z6{inj+mpQ^r%f+=Lptdz>JRv&G)N>%a=+ke=Vm>0$G7jof1yJvo{GxKUGhl3kQz_=
zfyaV^JjH8ozM;{|UvGrSmSRb~o7J=1kZIk8%+%D?B}+_<`u_bpRNp;kHsI9KO{k!;
z`*T+f!2hgq?E+CJf$)RDx`G2*o~aSg3Anp^xj1`&_LzZu)dAY(uU{Gt4%}0b%~TIw
zA(t8x7GJ*ZB#4yF8?x*5v!PiCuYp$cV1K`_4cI%<_EXx0{%}Ga$H|Z#>Oshzov}jq
zj?u2nx`_<GveD5IdZnWReV6bsS}|y0S&(Q6oiw$qr->GRxXlo35smgd%Tf#9kxBh&
z?J6UK?w1)CM>s?6lg}y1=BVy@!|Dmii8D7t*bchqf{0+bszd4>p-<~iGJK$&YiSz5
zl?F`+O3M33bw4~9w!D*;7%(ofUk|K!N*<jOr$1pyLQcARdLE&o!tBp~L`ZyBsLQ#W
zSFlw3#5Hzh#+fORnRpF<zpqnz?lmmMOFvkPeo;{^tE#K__V!*gqY|u-syrh+lK=cV
z{iWCIGr}U9-fUoh9$>{Q73!87-_Ulo?4-hAFg_<d@*!&i`bP5O^B<W;7HSUJ-QFKQ
ziPbrb8jtaomzCjMrn2K`!E<aw25@F#$vTBp@&z^vnO*&0OVDlivUxb&cNoOw!9idx
z`ujC=_fPWc+i&*p_mr}^${aginYqx#mdw?BGD|!#M~q9~y6&E#QuICa_<JF!Avb&p
zTUOTB*7gn$$w*1JvT%;b&}c>S*d;NH*N)!+4ff9t!_LkQ6?4z|Paa%(N1V~wk$Qm)
zq9MLp_D)^Xg-u#|yMLp?TVBG*5JKq!4hEY~&RPudkn3SAE|7$OtEjBxmlTo|6_TGq
z(wyBhF)?v*sWdKM5+&MVyfQ8lG(>Q3WNHe8r{eOzpa;Q&Pb+A>xv=>%qKlx+AEhQ{
zKCXJ<`|Nn#gk|{L_m@2R1KNy>+^dXVJoA*9(glQylDZb4#=)>!u!8Om6e%sO0oa_t
z>WN*-HxmeF^#DA}5OUmsITE40LSFrTEYFpDX4<vlCIM*sLKgC4ga7##-b3~W7d<#$
zb|gBI_3{x-ozp(lr>zz0oUV>%L8)T}C%cZ~RibKF5+dfc1I9ongq{}0>FFsX0TPl#
z;Sc!b)ldor1Y7~K0W}&x-`prJI1C_oY~5X1?8TVWJ7E3&{Id8XmOj^-vMNkx(`BMV
zf(scq*byL5iX4!`8);2d$Mb59lgF!--G23GP$Y{R*aaaW52$%AE_NUT+1Ruh-bJr@
zEO#3@JUR;0*{z>rA#@Vbf4?Zdaby+EQad~5<&%(*;OCb{7K7@bk<W#;Ji~=`H20BE
z3!Cqm@3{s8Gg=4J$IKAj#1D4FslF}B*Rf>G%<h5q^sk06LOJ+jxiSFH10=bolhs=%
z8u0Z%rKRxXm=Dk)ZlgKS5P6jHnV9jX0l-?Gv$VD@DlQ&qLn9<jLeh~tkd4r=*3DU-
z@Ic}skpUXU^9EFnlb1pbY=VLx-@dIZD1dZn=XrFzxX9vxi_Yj$TmSyOTKO<E>Okc7
zV?$w8P*fzEmck-LqS0pFFugzTXn$wyTR6drV-%nXu%z)R;!0^iTGpW9Oc+7NjUWl7
zBSbP~C+M7!iR~T{D*LO$9Lb%~8^eHjzqoi_TPu_!jW)y1&3*8(6#QQ%Mn(mfKizAM
zfFi4LoU)FmX;#G0^Pir_YJ!djl!q0nJ9gEhPln&;reZt*c-YwdMXu;FO6BrKyshH=
zL*hfe$Xc1C^4c02Xy+&>Z0}^`NCxon^9RxBw~&#LxDIwm(9zNH@RZlpozACZ{@B^s
znV+|G*-<n+LM+d$5*qjS^;LZMAVnd|lK7~}|50G{bwq0ODa#RQaVV$%y;1*AU*db&
z4eE>jXX!HQA<O$Gm6iP_N1>Zbi;J^(g>mf3ouKN?_09tnryTG5{Ts}KX`r18M}yMy
z{5jf*@QoWcfPUO_MugxlU>~sz(}RIXFd)a5^1jF=y}lz$`QF8VT{ScF_ohANCOr^?
znl}WcaM*cx0&E|DRAITr!(&4{ZeGEwuYd+u1<oie4C_SL;N2Z&=1>XzK+~BYyhp;P
zchZhxEoUW({a6&we3*`PO-7RnbxI+2_yq)jDFj}S4@*Iqn3&l36zq~zR7hm+Jfat%
z8pMEt0*)VBMdgV7s~k~b;jN$YRnTwLjLkUl+6K9KdMY3>q^1Fwfp4;NzGlL_VsC%{
z1}W*U@GFFns_AYnE`h@@A$N*VF(9YlVo}-8=QgFPqN20AyN<d#=u&Jyn6}m4>F7Ru
z*swC?-Sc{2I11$Qii+)E0*PibBLZMe_|rhkh5?|p=F=w)Dg<xe_;`IoLpO)PzjVc4
zn)L=D9lV3y`n^IP>~1eFeTdI#70<5|d#xWe4X(I>bVEV00^Sh-=DrI!A#t6ZO3`w=
zMFCXg<f$ns!vg~{m(jn6huePq09|BR=J*Y8o6!A3$^HKQequ++C{;5R`ES|~!s3CE
zKYt<){OEMpB&A-Cb5|Z=>YoLLkS1mZDCRj(U#39Ax!K_H<ez@{%+WEnocdfJ77<vO
z4wJ-`6d?%-wW<09!hQgDadEG8N>^l#3F{^#pc}k>8*)?NJr{(8jhB~~uP=4DlvI+_
z9<^-u;5|x*c=;jA>Y2g-@MUc^Z2B3YBH`2dY|+4qlCtvDiIq!j=1@IXM)&WLkq(fT
z!HpFFCDP<_-$V$s%kJ*n1H{$?D010zdI$zss<UQq5-%fp+J}kN#cesSx)wr1F_Hd9
zS*V^!b5{m>5RRcI*7A)UK)XsvWOoPwy9j)k6|vF>*m`SgYsESK-k{*6rBS%)BetID
zlvX!1WNmUH{-8)Vi-yQS6Z-BZDbC%toI8}!9vkCe@zQ1^^(|bK1O^#6R#1h3Ls5BE
zJnrD3to%YRRvc*kzP>)>#a1{0tr%zzOQJLgQ)}q4fpdThlcO$dy|LMzLSeb(5xHx4
zYjkC0W$JuG9ynp&g#`j&V8HIyyO#i@Ajr@xQ+^f}D9RAToK8raWT1nrjR;U%ULh<5
zZi&-6s2!w|%ejwnxl_!CJMI0wF_JXo<eq<jcUM+wW@2q){nMX(V(9mPUxjL-;sUN7
z&`IEWU!lu|i^CdlocLKGE`HkI0YP~?3lpKtCfRJV9+OyHqd0IFxo?>95T*+nz9=9y
z-vwqJxD*hEOP;w#+>+f7_6NWR04u8^z3uSi$zKoxsVFFj{>Jblg!_kwYajwWZX$l7
zZu8Ei#ZHwy|7GG_FGchZ0trt^M#kXsf>y}K^FRhI`5%W~BLmhi)skOAf;%Xl2S}tG
z{}Xm@d9d|$EkFp)ie5ulLpq+SdY4$V8UNda<-n19ao)wt%If~3iDXy%n?Wh<mX$!v
zlq9WA6xG*f4i$ZV_3CEM#{IF$$;n^8ra=o*!$5ql0>mI9(g}A4jSq_S=HC^Xx4COs
zcyZ(kWD7(Q4RpM^nzL~!De_He(K8f#;41w3^&U&E@FK{AR8(LAKwZi6*W{$XlT$NX
z2@kGxR2$5^GcU4oY14Y%{mwb~>(<4ohn{NAmb!OCwjy<y%`YEs@6?}KO9@>I-e*VK
z;K!PZL?9&X?|>J8YDyo$3*L}vVIi*z$M(d(tzX>tk~B+v4=4VDrYBZ}8L~p*7XEF<
z^;<po2aAh}j(V;jjs*Gmp7YVsT>-tyxZ)($_o0f)lwG{Go}R{|NB6w~(b)LJf+av%
z5E5!*BE<&GBzyNGMsq+?N{WEKf}@>XOCQhHv(K-tc+zxHduhv9`#YW0f~XB(hAmmC
zG2u$f9-jA;C#C9my9RoCTea1c2;ujyU(?;XRSFDsV^&8`5B`t9z;X!fEi7&-+jA@a
zqq?>n=<NJ2&qYPDV#*8X*x1-uSwWQtQ_aPNKTB?Xn_cxCLBS)pQf`D~N_Ms}P&7C|
zti86q=U>p&G-b)(*M>HIEj{W=X0vLTe~R8>`+_8+X6O<-NDNCo>pq7Y(AfDW?izvy
zlAf7q>Ed2rUd{uC)S($q$HyRU6%9wrGC&th87)^j)VbgiR_g0sM^miR?D+j30ZA<m
z2_-8%J&%)C%tC51;L<NrRyvCgL4Z;^y9Z4OyBJDNaN`3SmWg0L!B^IK1ccQ(*2n$h
z%R#ZrBLIcX(7?c9vR)C{Nd>GN3kyp<+0<jfAFZt+p`l=&1iju)cT5>{)(8H90aveG
zs{@5*TP7IX^q_U^_DXuxO$f#h|Nbo}FAv&Bi7Uo5wBUhSdR|hL4k!hkp?x<*F5hdj
z!SIdL5%^Qd$;gCIyrdnJTM+7iP1(!+<06vP-Q7JIK}|#y4?IC?>YE|E1|lQ^haQ@}
z#qNx9+5;T$$|x)6JLXM5Cxk@CHkohT7d}OE68Wn-zx~jBOxU|c>$xc#y$MJi<URK!
z#l$R$qjDjUH8hBaq3C|#`aK$Vvks>MByZiirptwx%pbCI9RHlFSz>(Z2z1zO%Iga?
zkO#=ouSi^7z-}&i>Yms(921Li53_}_!8j)?tD9-?;-c}FNC!0Pp9Z?~^YR)`CpH^T
zH|k(Ac;BuxmnJDK0Lu^FuE{-2U>`e3^E)~ek#=<WPT+HF*0(2!W8EYiTkIowBjpK}
z5~mjIvov5t>>V8iaKD57iM+IS4Io}o(c;1S*bx`zbf7jzgZsLHf<k+TiTn2KcUZs^
z$Kmnumwa^7uJD{Q`wr;5ykAiJyV@?7NCgE2c>+o1)$>{acVUI;8xtuBFi$G8z_a>;
zDghD^7!{j4n1~f0J(^(u8x<9G^@OGXAS-OGq<aWqXa=X(RA>seWoAFpis$w{hRC?r
zltR|S0sRfwtQFsY%c=ZRnn*)*^mP`l>yYZRL_NT2vm%4mYztOch@b487yI6R{{9l@
zLNwIWt>lDTT(GNqtoHeAkIN%YGtx%DD7V?@ljWbsmHAL#e`LGyl^`^lYwn_n8iJ|X
z_e8QbVDjYgxXo!WpDJ1fuwn_3<0VZEFSvl*qUpYai86)<?iw5=?Oi0!sY9d=4L$lw
z%@#v}hoxil3m7FZRHcQ82-S><-@U6yA<K~rG;?mv4TKHg3bFj|Uid$>NF`4P=yk!%
z^*R>48RZQkmAedic^N*Z&cwt7<j!t#%oGQlJ$aT9;OUt<^%M`9rJFB8`4!-4gU2k<
z7cngetZvU?3s_j7{XW3}XXN4G;mRDs3HmWa*2WaW3y)YyAl$yLT8m{SNavb9!<txk
z->r)_gCh|9L4A*52U{iJA)H==#ps=m78Y0|AxW$3pl#iO8*&?0>p$qS^f)_m1?UM*
ze_yNloCJ{d^7GR|0CXX#s4R$AsX>!uV<f$Cqe27^9YGC>1Hh#{XJ|CQXa_grNhOho
zcryZ(u&s5wJB$LQvf9z8ox7Bwii;I=Om#zcey76~P!)7_b!`~{Kch}Q93v1yuwJR-
zQnt3Xcg4gCV$r8jjsm?uv`kr->)Wh?l-)z6&pzXJGw1iECMSPqO6s=$yS8RYys82)
zk<HN2%Gx^b7%h<JZCRNmKUT=$1qH$}^a&$E&iW!u<)U~_9lVF6WG0KZXf7ewx4)ej
z03f;`-Fi2*+d4f(nJHnQml}b%*Y|fHWY9fl$os(0f|-PP!=w2wlq%EWQ=yKY_H9-$
z5<1;&XZ~dK3vB3cG$QeF@yDtvncW>|GwqMjw;n-`1tljBZ`Nybwk!Z^Au1Z2zNci{
ztus!)>Zx6u)lhy$nk6*bW5<ZUh8Z?*OG};Zw-*9WSSb?R2;L;;TYjB8=-uvUzHoh;
z+gO$m5)wVO8pf8_YR_K(jP}2kg*wS(YF8SLcX_eRnxtf<`i$9R<%ksuX5E)B%f(Ka
zv{uJNw6r}OB#7zzfT#Wu?eE`nJNyWQ%edCJ__8F`n(fd1GlEiGpjY<!pGBtr`RuA*
z5ah~BiRx8Uq`|BQqb7icF{v=7@3CbvE@G>&tPJe2npp6R;Iftpy&Y^km7(LsFZhN2
zqXrO99I#i8ZqJ_l9@DYyuxc>w)s^#q^X5&&5XD|(WMp9>GfVDd)Xo4m>Tm=LqM7WS
zj?XcF@F!+C#Rb$Mh(~f>@!bnMJNge6!-ir>VClE6>=Jry%eUpk-Aa0R1FuNwD?2;s
zRThhSF#`jG&m;6wRYQ93bmj)|rKn+#fGc)+PEbfl>tM(KR%d8>a4@<~8n1j>25gDs
z$RpJCVsZoaHOb1}q@v8vjs4p)kaEhbd%@)a)Ga^mGye1;0^dQjh%k`4%gPEQzgbu4
z)r(_=xMb<KmLiu$T(7`}nVhMN-<a}VsZD6HuQupb7P%;a0uQqUE8xV$BbX(SI|F6@
zIPNRKRambP=ET(0nORw?NE=U2Pf%ARdNP*XMAG|^N#}R!qxglAkgOnOPT#&o(9yEg
zmZO1<VZ!}$=@yM->lWUZZ!^<7cqey1aC}V7U&|txu7UCh4tw_C|4e6_Pm#$=g_O~Y
z<2*GZ_Cb#jBOqKKK4A~w%wzo(dkYc2eBRb-D|#Vo&>0G0ikdRs(rYk;f=7i9ci(_G
zGGvjk*tC2nbbJI$s$DM{Z3KvPO3J+0U6!PpW83#T4N)w7o%iWc`ueo0Pom|TdaNY<
z1B@ing6-rOq$WqQig&vwocHp6rf{<xi{tAnWKcsjE}bv%m*53_9Xl{FvEHzrpR@oC
z7gnhX`RK$%wZXe3|GVzSS$JSiPZ7UFH=mNYkkxkc1yeW#b1pm^$grRRz-gzn5O1#Z
z9XJbgbvG$A?$8|_$K?Kf%yV+W@Ndu<{$$G0g?yZz!o$N;)fqzHS;iK?k_Voz=B_nE
z%lRq4zZA8fgheU4DviuNu^P(Dd+qNC;O=vzZ#+~h)=K@0H+kxec7*;;#}I%O5)^iS
zZ|`)8o>CxNY>gZ1>p7c8mXhYOL7~#KVn8|7>mB!EBcJUbk^I=Yrl_dsTR0c~QjW3o
z>#kaHRbgSM;v3xuv|2=qp^dtA8;GM|@XmHB`^EyYc6^DJ`?DM9+Oo0_N@2L*1^@h6
zf#i8d01rxOoA!(G+nK#Q`z;U^7^IDUQ|fc86aGm{OHhh6u9kZ((R66zck{1{w-8F%
zd~|zAikmMAtEv(emD(_|urv>nasb&S<B>qeEBK-V>@dQ@sb&(h(D?<DkOZjN7tN`Y
zx6BedT?vt~?|ltMQ_uWd602kSkD?JFgyjcU(YKILZB#}hn!xS)?AiXhiHBU0Pc-EA
zhS8z9GN`wYjU5CjF-0R3=>QHmwNxBxUgONW+N~yQgQo_lxe=f!IJ21souTXs@__sM
zra_7!&-!ibEg6t(_Rf>)1+kbI7=jiT?qoc*vx|DjpJacBYJp1E(^I(AvK5dJLKm8O
z>J6Fz1`eZgoq+>^=K}1vZdp_>J#}(&a&=8qe8UKx!QujbxP`m>tB3r1kf7LN9j`PK
z6>91m7$_lapl~`lftCk>=bS_Y#vP3QI!8#LI}-Tk>N23MBAmWA-nYJ7H0)ij!VoPn
zC__Egtb1VY|4F3}u1PKKk=U4+N~JL9f8r2SqlhCo-^9e?HwLZ9AKFgXc==)%6%7qs
zA$6?ob$)PZmLP48=$IJm<XF9#e(XS*xl5iY3Isa{!Dp#rU{{r{y??|Er`cSF{B3O&
z>9Bus-RwejGWv)JRa6w$URkt|Vj{*p=eh(J++<rZ2vGwnR7@eVa&rB>wnXAdaM<TB
zN807Q;iYTE=J^u(C+zkwHCU2g*})hyJ8Q1f2cYK9oyvl7X;qvRkoyvF3qeoJrIAG=
zd=8e0fBq4me(X<G`*^z6*4Mq}R3=uQ+S_Yz`w_0yi_pLqM6RRt?@c(K_g3_JsEK{O
z5`lnog8e27J|Gr>PX|EWy_`R@vkYUm({>kl;qZ<lKEfQ1*L<^l`v}^dZtMKmIUtgh
zn>Yn{d7Fm`-RdST<~vAEc3ENno5shqL&ci@eHLp%c@JkiQGp2@3S~X72?z*)|E>v`
zSdj%#&od5W&&K+C!};I(x#{WGxw+5FH}UDbQ6~Y(<G@}FlVV{fk_PAtW=}|dM(^PP
zpZn1|Xh`^-xcT^G@GGdO;8~%|NIr+CH{=#gJGs`Fh#;n<OwZ2lVM;2FXD-d=;!oqG
zr+>~L0Z3$P8jYv!4IHZg7Soo+9j)0Ayf4Ltg?(+n9h&{gj_Jr)g*JYo&f~5>0YDQo
zew9~4ZBfgp!*vuHRqyDet1cHZ0$x?5eY?Kobi88)84IkP6rVD|Mwmxn&Y$+VTq;w|
z#?Q~xclA2FV_*&SUVsLnuynL$&{dT_8erwn0o7S1cM%FBEUdqcFQXew%?sAoTU{?B
zF50o_W%K(?mxkC;UwL<E&z!Jo{hs;7v1pc9;IQ^tx>BLJFm^+JesHBpXFNdmWTpE^
z8)xTj@Mq#3y660~u7aB<u;@Yi4Dus<<?>u=_u@YulD14F!_m<(V5ft1l9t-d$!V)9
z=ltcv*hWaaf&-GwXQ}ma->g6LM+}U|HeO)kUSJ&q?EYaV_U?b67kK{oMs)7sfJ5VA
zK2aU;QmU*dimnD_{>O0I1H`4<|FjXpz*B>EEP+qY1okPq!0xBF)t>?tuu(|s4Q4*c
z^A&adhr(b~L$$qZ0fEZMa$J=KI7s**4Mic-Vb!19j+E5|TiYt$3E;L;KY3vJ%Qo`B
zm+OBpVgr1N@n{5en9yHHo~{Y#r0^h|yn$inPkRaXzw!^N!~%E9$qB6*%CQW5#Kp$u
zg#)-ihw%BN+kvx%bpnh|k<AM&`tQerWqFaPqndn++gWHhe<qnmW~=J%QiG&#RXsTE
zUI*YW_2=>L6*u5N_MFAQbq;>`SpU8J++6yw`w?9W;JP~Mi}fEI8VX%mMAYM4z1oR#
z#8-hg@U6bPl2X)HQ&Zwj3;3;(DjUhO83MR>+py}f^#g!Oy^@z_(DB;Ty;BBP$KoPC
z9-H?^n)I3ImM3s9Gvw(uHy=Ma4dx!49s!qQYUVfy-@e<k_jPn``n>^f9JsS|u2<vG
zgAf83A66gk5<m{*cfnjxh=CICQ4UZ+2y;tH2DrE+G}_t&p#ruDKN);jXKn30Z~}A+
z^Hk_@0s{yGC_zwjfX0I1DDDd$Vc<?-q=1a`>J>S6E_F&qM%R3E_NCPE%<Uh_vNX?e
z3AW^J?K7Qvz+qw>df7rv;Jt6(zRed2{ZVpis=`z}i?Fb;xcE72WtB=1^J)X&q+x&y
z4-Of+xj{gF=zHw@*O(`x8$|^J87wK;1pbvfw-CZYz2tE`O=k)GG2m~2HwC<ZU!=|s
zq#!r9gTH^a#2_568R&b%94bvjNC<u^wv?_|7M8oz_#l443C^ab-h1dK!CwOlW2>a$
zeu>!?kC^#SSbdk!qzlblXDLz@)YXwRG*&JTpVq+H?y+*CT4^Ml>3eKv*Qxxj6in*?
zV_@LWYnBLtc3V2M>LwB@P5=M+ZlS=z`5{L~f_yOq2Fkkt<h=jkAarjqUFfM+wBEjd
ze*q^O*4BG`VAinwFpST+S>qI#z|ynV=6H6!$KO+{Uy?4QJ6?w{x7B1u6#WQmOkf$L
zAeB2efh7+M7gmR(?r;VH+A^?Ig76;}9uChO3>M&gg~|<ViG~jX$H>-}J@KAg*^j`-
z)uX`Wod{on=LN)LhsVuE?1gY43KxYvF36Pk_~&OlWFCVF7D^)PnnVjg@-)HU7zk&r
z|7rC=;RWBPAGNdsgz)FKEg)_jHV7jLIth5Xj#J3j5ascwK6(@+uTgc$^;fs`E*#+T
z15byhq2a9{{}?hJ<9Sg`L_DAri%Q40H8m+0bamhpfCA5(s38q5(n+r+8v8mCq!ERW
zz7vt+#WT3C=iu)!pIj2f^}L>}^nFVQgoNIW4Q@Ybz-)$wU3M1aJkY>%+`6?AJBQxf
zk@^x14q}%XID^-gO2`3lHaOp9IFgO)+*Qkmce5hO;j#O91xUG(p^m!CP^d&*W^OV~
zM??ScSfrnJ>7O2*8WI&9&BeiCP8{U}B-H!&Jp-@9HjNOnAc_g3HK2^tE6VrOiw96T
z5jWYx@_ZmUSgxu1Ut0)2WWQc8>lmrs;XzA>L9BT~CQH@pLAfOd$g3C56`^2va!yX~
z{M#TO=%BNs@B#Z^b3gh*N=hn=EPnTHeR?_&l`aJZ_rN8YS0V*F9Z0X^o|YPTpMb0a
zAN#p7^%XRimDmsKN=NX#G_|z!?>~9^)av%~Td*6?%y>G00!aH%72v8c_~Rf3m*?QD
z6}$)FM3@%95vXf7zuGqfJ^@2482G(D(=95s@Fe5~#9nPJw>o!ZI!EqiVPszYCa?@z
z1)OY9ktULcCH7l>ZwO7Wm)CKh4D><c5z*1AYHCHX0&t=V&@8fzk&|<+Crh-^2TO$k
z<^Qp?v4JHgpSDYtA-kk!Kc!;WKki5Ns4y^N2B^3M<ZOyffBb_#zP!09l+mpstytI(
z=S{&qD-gMeI@`~al`0RXPSYT6S(LArc}Mt=NB;m9C@9*MSKA@}Tz3~$!>-Nw!y48Q
z`^OtO(m#JJwW6+V2KGzE)2EHQfmLRnSQ9I5pFV!%#a)Qc$uZH@Wu1>61Tg{Zs3}TK
z`$Q;|EI=6@rq~n(tn1{Y@rkfJM3ltQH2TzN6A&Kz;EOfGAdz8{6t>}{+jLJHoT4M%
zi@GU}Tf1eFXo$|ViZzwioTkV`9LDHFcJn42!O^?V7{bKL8gMidUUrq~6OaNhFXOl3
zsJHJpSXo*EBk`+kWpfiwC*{Su0#9_4jLf9TKWm6qcN2UGfCs?cp1rw2K?1UxuLeeZ
z%Voy+GK({EMlj;>eIw@K?D)zimQ{sDt>>;$5fP@J2Pgac;SfhV2PJ*0DQ`V^Z-I*-
z?olADHt<^?trl80gtLuG%-)DAPO=Q~+B!Oo-i*^_;5n+Y=^b|vN-T>3Hp=(%bgH+f
zr>OUra$bJE<jHbAz{i>Twx}?v%fwSm8QKzXY~EJkza-0xo)e`qm8DVB3<$0tyT3{s
z|3Rs-3e5lly6k-_uu~%&W^^G6h5cYBjg`C*mdL(z=-J-h1_8$da+vxN<+dskov?Cx
z+LT4U@IPXAWv(7d1ypXov+Xu#=aw&5`&ZmRmqV>Y-(xst=1jct+bn=6Np0sMZvLE}
zPm=YCdiw!lgo5$6mCI-O%$tpg!8P$Ekz#>w7!^!8`fR|u*BTdogNtu_Eywzqiv{2u
zuptAeQ^}*@BgaE=s^Ig2Gg&}Mk4+Z?6WQ6-1%|uHlVnhU>^+<j%^d*xi;IilFbllX
zq^1Vm<>F&OkYHTi<UEH`52vT6&(6eltzHS>;^X%K3k$meNlO6jJU#h|N?z~0C@#WN
z9~fvTR2`PUguB$jNyp9cS{dZ(LzGLRq5{Yd&>!K?$)lU)nkCx6K>@(I8agXz5<7=P
zQ18A(s|~o6u%fP;n1midSGSF+RQEm@tmNf0x)=XDGyqCRq2nI(@=SolSXr@`x@zfX
zYC16x&#Uw}lOB=5TRYgxRWZA)t47w{b^3rgu5U>EV}A!ubNWKG!pTSFsTNaSa0M3@
z6lAVQZrt@xn3Uj~brOCoCkl9pUnLB;^HSdU{JfwRyBsX6-kNZsfwP9k)duuaJjEvG
zThohV@R}NKPEI&E1u?|$yXluK%YX}fI$&KDmDb-H+|ULf2;YH;94IC*!M}UQ#j<$-
z{UR<nU^_Zm?7v_l%;CT_Yz18?YPz~YfGXWKp(x7b^8vL3gPU9JXre|I#B)U85pYy+
zEzmCEg+f&$^))pfo%gxmaR2aMV54D4fjHmuZm7}1M0kRCAKE0KGN<4$8VsoGKtkwE
zx+v+CXk%euU|bkMlc}edTF%q{0)cu%R)A%No)~gct$1L@36AmfwmpYayP&L98|3#v
zP09R?KzxN$<WRl=SS+}}8Rp(ZI7Y*f%#p0rTSw7E(eeZ}UDSwqEyMQj1B#vh|G|gm
z%PD`FYp99h?bKv{e_x3c80ioHA~}aYSWe&-1}b~-_J-7DSPb4iSZmWfB)rx@RuWz^
d@c)$`WNJ_sFPG3@;Xy5f;(ayQ_tK_8{|B3^`#Jys

literal 0
HcmV?d00001

diff --git a/logo/README.md b/logo/README.md
new file mode 100644
index 0000000000..2a6907c3e5
--- /dev/null
+++ b/logo/README.md
@@ -0,0 +1 @@
+Thank you @ggcarlosr for this awesome logo!
\ No newline at end of file

From 904575d0cbd476321571671b88cec2ee06c3ab60 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 26 Apr 2018 15:40:41 -0700
Subject: [PATCH 26/69] support multi stage builds

---
 cmd/executor/cmd/root.go                      |  23 ++-
 .../dockerfiles/Dockerfile_test_multistage    |   9 +
 .../dockerfiles/config_test_multistage.json   |  12 ++
 integration_tests/integration_test_yaml.go    |  18 +-
 pkg/commands/copy.go                          |  13 ++
 pkg/commands/env.go                           |   6 +
 pkg/dockerfile/dockerfile.go                  |  96 +++++++++-
 pkg/dockerfile/dockerfile_test.go             |  96 ++++++++++
 pkg/executor/executor.go                      | 181 +++++++++++-------
 pkg/util/command_util.go                      |   2 +-
 pkg/util/fs_util.go                           |  35 +++-
 pkg/util/fs_util_test.go                      |   3 -
 12 files changed, 402 insertions(+), 92 deletions(-)
 create mode 100644 integration_tests/dockerfiles/Dockerfile_test_multistage
 create mode 100644 integration_tests/dockerfiles/config_test_multistage.json
 create mode 100644 pkg/dockerfile/dockerfile_test.go

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 6a4fd546ef..adeed0e580 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -32,14 +32,13 @@ import (
 )
 
 var (
-	dockerfilePath              string
-	destination                 string
-	srcContext                  string
-	snapshotMode                string
-	bucket                      string
-	dockerInsecureSkipTLSVerify bool
-	logLevel                    string
-	force                       bool
+	dockerfilePath string
+	destination    string
+	srcContext     string
+	snapshotMode   string
+	bucket         string
+	logLevel       string
+	force          bool
 )
 
 func init() {
@@ -48,7 +47,6 @@ func init() {
 	RootCmd.PersistentFlags().StringVarP(&bucket, "bucket", "b", "", "Name of the GCS bucket from which to access build context as tarball.")
 	RootCmd.PersistentFlags().StringVarP(&destination, "destination", "d", "", "Registry the final image should be pushed to (ex: gcr.io/test/example:latest)")
 	RootCmd.PersistentFlags().StringVarP(&snapshotMode, "snapshotMode", "", "full", "Set this flag to change the file attributes inspected during snapshotting")
-	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")
 	RootCmd.PersistentFlags().BoolVarP(&force, "force", "", false, "Force building outside of a container")
 }
@@ -76,7 +74,12 @@ var RootCmd = &cobra.Command{
 			logrus.Error(err)
 			os.Exit(1)
 		}
-		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
+		ref, image, err := executor.DoBuild(dockerfilePath, srcContext, snapshotMode)
+		if err != nil {
+			logrus.Error(err)
+			os.Exit(1)
+		}
+		if err := executor.DoPush(ref, image, destination); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
diff --git a/integration_tests/dockerfiles/Dockerfile_test_multistage b/integration_tests/dockerfiles/Dockerfile_test_multistage
new file mode 100644
index 0000000000..18fa2d2c15
--- /dev/null
+++ b/integration_tests/dockerfiles/Dockerfile_test_multistage
@@ -0,0 +1,9 @@
+FROM gcr.io/distroless/base:latest
+COPY . .
+
+FROM scratch as second
+ENV foopath context/foo
+COPY --from=0 $foopath context/b* /foo/
+
+FROM gcr.io/distroless/base:latest
+COPY --from=second /foo /foo2
diff --git a/integration_tests/dockerfiles/config_test_multistage.json b/integration_tests/dockerfiles/config_test_multistage.json
new file mode 100644
index 0000000000..9aa0494cb8
--- /dev/null
+++ b/integration_tests/dockerfiles/config_test_multistage.json
@@ -0,0 +1,12 @@
+[
+  {
+    "Image1": "gcr.io/kaniko-test/docker-test-multistage:latest",
+    "Image2": "gcr.io/kaniko-test/kaniko-test-multistage:latest",
+    "DiffType": "File",
+    "Diff": {
+      "Adds": null,
+      "Dels": null,
+      "Mods": null
+    }
+  }
+]
\ No newline at end of file
diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index 7c1d646070..a9f09e3a4d 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -115,14 +115,6 @@ var fileTests = []struct {
 		kanikoContext:  buildcontextPath,
 		repo:           "test-add",
 	},
-	{
-		description:    "test mv add",
-		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_mv_add",
-		configPath:     "/workspace/integration_tests/dockerfiles/config_test_mv_add.json",
-		dockerContext:  buildcontextPath,
-		kanikoContext:  buildcontextPath,
-		repo:           "test-mv-add",
-	},
 	{
 		description:    "test registry",
 		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_registry",
@@ -147,6 +139,14 @@ var fileTests = []struct {
 		kanikoContext:  buildcontextPath,
 		repo:           "test-scratch",
 	},
+	{
+		description:    "test multistage",
+		dockerfilePath: "/workspace/integration_tests/dockerfiles/Dockerfile_test_multistage",
+		configPath:     "/workspace/integration_tests/dockerfiles/config_test_multistage.json",
+		dockerContext:  buildcontextPath,
+		kanikoContext:  buildcontextPath,
+		repo:           "test-multistage",
+	},
 }
 
 var structureTests = []struct {
@@ -288,7 +288,7 @@ func main() {
 		}
 		compareOutputs := step{
 			Name: ubuntuImage,
-			Args: []string{"cmp", "-b", test.configPath, containerDiffOutputFile},
+			Args: []string{"cmp", test.configPath, containerDiffOutputFile},
 		}
 
 		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, containerDiff, catContainerDiffOutput, compareOutputs)
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 91e60d82da..2610799b99 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"os"
 	"path/filepath"
 	"strings"
@@ -40,6 +41,10 @@ func (c *CopyCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Infof("cmd: copy %s", srcs)
 	logrus.Infof("dest: %s", dest)
 
+	// Resolve from
+	if c.cmd.From != "" {
+		c.buildcontext = filepath.Join(constants.BuildContextDir, c.cmd.From)
+	}
 	// First, resolve any environment replacement
 	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.cmd.SourcesAndDest, config.Env, true)
 	if err != nil {
@@ -58,11 +63,19 @@ func (c *CopyCommand) ExecuteCommand(config *v1.Config) error {
 		if err != nil {
 			return err
 		}
+		cwd := config.WorkingDir
+		if cwd == "" {
+			cwd = constants.RootDir
+		}
 		destPath, err := util.DestinationFilepath(src, dest, config.WorkingDir)
 		if err != nil {
 			return err
 		}
 		if fi.IsDir() {
+			if !filepath.IsAbs(dest) {
+				// we need to add '/' to the end to indicate the destination is a directory
+				dest = filepath.Join(cwd, dest) + "/"
+			}
 			if err := util.CopyDir(fullPath, dest); err != nil {
 				return err
 			}
diff --git a/pkg/commands/env.go b/pkg/commands/env.go
index 4e576a3f89..1cb8e974a7 100644
--- a/pkg/commands/env.go
+++ b/pkg/commands/env.go
@@ -29,6 +29,12 @@ type EnvCommand struct {
 	cmd *instructions.EnvCommand
 }
 
+func NewEnvCommand(cmd *instructions.EnvCommand) EnvCommand {
+	return EnvCommand{
+		cmd: cmd,
+	}
+}
+
 func (e *EnvCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: ENV")
 	newEnvs := e.cmd.Env
diff --git a/pkg/dockerfile/dockerfile.go b/pkg/dockerfile/dockerfile.go
index f755a547e8..c3eb8ed95d 100644
--- a/pkg/dockerfile/dockerfile.go
+++ b/pkg/dockerfile/dockerfile.go
@@ -18,10 +18,20 @@ package dockerfile
 
 import (
 	"bytes"
-	"strings"
-
+	"github.com/GoogleContainerTools/kaniko/pkg/commands"
+	"github.com/GoogleContainerTools/kaniko/pkg/constants"
+	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/builder/dockerfile/parser"
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/empty"
+	"github.com/google/go-containerregistry/v1/remote"
+	"net/http"
+	"path/filepath"
+	"strconv"
+	"strings"
 )
 
 // Parse parses the contents of a Dockerfile and returns a list of commands
@@ -37,6 +47,25 @@ func Parse(b []byte) ([]instructions.Stage, error) {
 	return stages, err
 }
 
+// ResolveStages resolves any calls to previous stages with names to indices
+// Ex. --from=second_stage should be --from=1 for easier processing later on
+func ResolveStages(stages []instructions.Stage) {
+	nameToIndex := make(map[string]string)
+	for i, stage := range stages {
+		index := strconv.Itoa(i)
+		nameToIndex[stage.Name] = index
+		nameToIndex[index] = index
+		for _, cmd := range stage.Commands {
+			switch c := cmd.(type) {
+			case *instructions.CopyCommand:
+				if c.From != "" {
+					c.From = nameToIndex[c.From]
+				}
+			}
+		}
+	}
+}
+
 // ParseCommands parses an array of commands into an array of instructions.Command; used for onbuild
 func ParseCommands(cmdArray []string) ([]instructions.Command, error) {
 	var cmds []instructions.Command
@@ -54,3 +83,66 @@ func ParseCommands(cmdArray []string) ([]instructions.Command, error) {
 	}
 	return cmds, nil
 }
+
+// Dependencies returns a list of files in this stage that will be needed in later stages
+func Dependencies(index int, stages []instructions.Stage) ([]string, error) {
+	var dependencies []string
+	for stageIndex, stage := range stages {
+		if stageIndex <= index {
+			continue
+		}
+		var sourceImage v1.Image
+		if stage.BaseName == constants.NoBaseImage {
+			sourceImage = empty.Image
+		} else {
+			// Initialize source image
+			ref, err := name.ParseReference(stage.BaseName, name.WeakValidation)
+			if err != nil {
+				return nil, err
+
+			}
+			auth, err := authn.DefaultKeychain.Resolve(ref.Context().Registry)
+			if err != nil {
+				return nil, err
+			}
+			sourceImage, err = remote.Image(ref, auth, http.DefaultTransport)
+			if err != nil {
+				return nil, err
+			}
+		}
+		imageConfig, err := sourceImage.ConfigFile()
+		if err != nil {
+			return nil, err
+		}
+		for _, cmd := range stage.Commands {
+			switch c := cmd.(type) {
+			case *instructions.EnvCommand:
+				envCommand := commands.NewEnvCommand(c)
+				if err := envCommand.ExecuteCommand(&imageConfig.Config); err != nil {
+					return nil, err
+				}
+			case *instructions.CopyCommand:
+				if c.From != strconv.Itoa(index) {
+					continue
+				}
+				// First, resolve any environment replacement
+				resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.SourcesAndDest, imageConfig.Config.Env, true)
+				if err != nil {
+					return nil, err
+				}
+				// Resolve wildcards and get a list of resolved sources
+				srcs, err := util.ResolveSources(resolvedEnvs, constants.RootDir)
+				if err != nil {
+					return nil, err
+				}
+				for index, src := range srcs {
+					if !filepath.IsAbs(src) {
+						srcs[index] = filepath.Join(constants.RootDir, src)
+					}
+				}
+				dependencies = append(dependencies, srcs...)
+			}
+		}
+	}
+	return dependencies, nil
+}
diff --git a/pkg/dockerfile/dockerfile_test.go b/pkg/dockerfile/dockerfile_test.go
new file mode 100644
index 0000000000..4c4c7e39c6
--- /dev/null
+++ b/pkg/dockerfile/dockerfile_test.go
@@ -0,0 +1,96 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package dockerfile
+
+import (
+	"fmt"
+	"github.com/GoogleContainerTools/kaniko/testutil"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"strconv"
+	"testing"
+)
+
+var dockerfile = `
+FROM scratch
+RUN echo hi > /hi
+
+FROM scratch AS second
+COPY --from=0 /hi /hi2
+
+FROM scratch
+COPY --from=second /hi2 /hi3
+`
+
+func Test_ResolveStages(t *testing.T) {
+	stages, err := Parse([]byte(dockerfile))
+	if err != nil {
+		t.Fatal(err)
+	}
+	ResolveStages(stages)
+	for index, stage := range stages {
+		if index == 0 {
+			continue
+		}
+		copyCmd := stage.Commands[0].(*instructions.CopyCommand)
+		expectedStage := strconv.Itoa(index - 1)
+		if copyCmd.From != expectedStage {
+			t.Fatalf("unexpected copy command: %s resolved to stage %s, expected %s", copyCmd.String(), copyCmd.From, expectedStage)
+		}
+	}
+}
+
+func Test_Dependencies(t *testing.T) {
+	testDir, err := ioutil.TempDir("", "")
+	if err != nil {
+		t.Fatal(err)
+	}
+	helloPath := filepath.Join(testDir, "hello")
+	if err := os.Mkdir(helloPath, 0755); err != nil {
+		t.Fatal(err)
+	}
+
+	dockerfile := fmt.Sprintf(`
+	FROM scratch
+	COPY %s %s
+	
+	FROM scratch AS second
+	ENV hienv %s
+	COPY a b
+	COPY --from=0 /$hienv %s /hi2/
+	`, helloPath, helloPath, helloPath, testDir)
+
+	stages, err := Parse([]byte(dockerfile))
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	expectedDependencies := [][]string{
+		{
+			helloPath,
+			testDir,
+		},
+		nil,
+	}
+
+	for index := range stages {
+		actualDeps, err := Dependencies(index, stages)
+		testutil.CheckErrorAndDeepEqual(t, false, err, expectedDependencies[index], actualDeps)
+	}
+}
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index d3b2039b13..8f3976da53 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -19,10 +19,13 @@ package executor
 import (
 	"bytes"
 	"fmt"
+	"github.com/GoogleContainerTools/kaniko/pkg/snapshot"
 	"io"
 	"io/ioutil"
 	"net/http"
 	"os"
+	"path/filepath"
+	"strconv"
 
 	"github.com/google/go-containerregistry/v1/empty"
 
@@ -37,98 +40,88 @@ import (
 	"github.com/GoogleContainerTools/kaniko/pkg/commands"
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
-	"github.com/GoogleContainerTools/kaniko/pkg/image"
-	"github.com/GoogleContainerTools/kaniko/pkg/snapshot"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
 )
 
-func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool) error {
+func DoBuild(dockerfilePath, srcContext, snapshotMode string) (name.Reference, v1.Image, error) {
 	// Parse dockerfile and unpack base image to root
 	d, err := ioutil.ReadFile(dockerfilePath)
 	if err != nil {
-		return err
+		return nil, nil, err
 	}
 
 	stages, err := dockerfile.Parse(d)
 	if err != nil {
-		return err
-	}
-	baseImage := stages[0].BaseName
-
-	// Unpack file system to root
-	var sourceImage v1.Image
-	var ref name.Reference
-	logrus.Infof("Unpacking filesystem of %s...", baseImage)
-	if baseImage == constants.NoBaseImage {
-		logrus.Info("No base image, nothing to extract")
-		sourceImage = empty.Image
-	} else {
-		// Initialize source image
-		ref, err = name.ParseReference(baseImage, name.WeakValidation)
-		if err != nil {
-			return err
-		}
-		auth, err := authn.DefaultKeychain.Resolve(ref.Context().Registry)
-		if err != nil {
-			return err
-		}
-		sourceImage, err = remote.Image(ref, auth, http.DefaultTransport)
-		if err != nil {
-			return err
-		}
-	}
-	if err := util.GetFSFromImage(sourceImage); err != nil {
-		return err
+		return nil, nil, err
 	}
+	dockerfile.ResolveStages(stages)
 
 	hasher, err := getHasher(snapshotMode)
 	if err != nil {
-		return err
+		return nil, nil, err
 	}
-	l := snapshot.NewLayeredMap(hasher)
-	snapshotter := snapshot.NewSnapshotter(l, constants.RootDir)
-
-	// Take initial snapshot
-	if err := snapshotter.Init(); err != nil {
-		return err
-	}
-
-	destRef, err := name.ParseReference(destination, name.WeakValidation)
-	if err != nil {
-		return err
-	}
-	// Set environment variables within the image
-	if err := image.SetEnvVariables(sourceImage); err != nil {
-		return err
-	}
-
-	imageConfig, err := sourceImage.ConfigFile()
-	if err != nil {
-		return err
-	}
-	// Currently only supports single stage builds
-	for _, stage := range stages {
+	for index, stage := range stages {
+		baseImage := stage.BaseName
+		finalStage := index == len(stages)-1
+		// Unpack file system to root
+		logrus.Infof("Unpacking filesystem of %s...", baseImage)
+		var sourceImage v1.Image
+		var ref name.Reference
+		if baseImage == constants.NoBaseImage {
+			logrus.Info("No base image, nothing to extract")
+			sourceImage = empty.Image
+		} else {
+			// Initialize source image
+			ref, err = name.ParseReference(baseImage, name.WeakValidation)
+			if err != nil {
+				return nil, nil, err
+			}
+			auth, err := authn.DefaultKeychain.Resolve(ref.Context().Registry)
+			if err != nil {
+				return nil, nil, err
+			}
+			sourceImage, err = remote.Image(ref, auth, http.DefaultTransport)
+			if err != nil {
+				return nil, nil, err
+			}
+		}
+		if err := util.GetFSFromImage(sourceImage); err != nil {
+			return nil, nil, err
+		}
+		l := snapshot.NewLayeredMap(hasher)
+		snapshotter := snapshot.NewSnapshotter(l, constants.RootDir)
+		// Take initial snapshot
+		if err := snapshotter.Init(); err != nil {
+			return nil, nil, err
+		}
+		imageConfig, err := sourceImage.ConfigFile()
+		if err != nil {
+			return nil, nil, err
+		}
 		if err := resolveOnBuild(&stage, &imageConfig.Config); err != nil {
-			return err
+			return nil, nil, err
 		}
 		for _, cmd := range stage.Commands {
 			dockerCommand, err := commands.GetCommand(cmd, srcContext)
 			if err != nil {
-				return err
+				return nil, nil, err
 			}
 			if dockerCommand == nil {
 				continue
 			}
 			if err := dockerCommand.ExecuteCommand(&imageConfig.Config); err != nil {
-				return err
+				return nil, nil, err
+			}
+			if !finalStage {
+				continue
 			}
 			// Now, we get the files to snapshot from this command and take the snapshot
 			snapshotFiles := dockerCommand.FilesToSnapshot()
 			contents, err := snapshotter.TakeSnapshot(snapshotFiles)
 			if err != nil {
-				return err
+				return nil, nil, err
 			}
 			util.MoveVolumeWhitelistToWhitelist()
 			if contents == nil {
@@ -141,7 +134,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 			}
 			layer, err := tarball.LayerFromOpener(opener)
 			if err != nil {
-				return err
+				return nil, nil, err
 			}
 			sourceImage, err = mutate.Append(sourceImage,
 				mutate.Addendum{
@@ -152,15 +145,36 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 				},
 			)
 			if err != nil {
-				return err
+				return nil, nil, err
 			}
 		}
+		if finalStage {
+			return ref, sourceImage, nil
+		}
+		if err := saveStageDependencies(index, stages); err != nil {
+			return nil, nil, err
+		}
+		// Delete the filesystem
+		if err := util.DeleteFilesystem(); err != nil {
+			return nil, nil, err
+		}
 	}
+	return nil, nil, nil
+}
+
+func DoPush(ref name.Reference, image v1.Image, destination string) error {
 	// Push the image
 	if err := setDefaultEnv(); err != nil {
 		return err
 	}
-
+	imageConfig, err := image.ConfigFile()
+	if err != nil {
+		return err
+	}
+	destRef, err := name.ParseReference(destination, name.WeakValidation)
+	if err != nil {
+		return err
+	}
 	wo := remote.WriteOptions{}
 	if ref != nil {
 		wo.MountPaths = []name.Repository{ref.Context()}
@@ -169,12 +183,47 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 	if err != nil {
 		return err
 	}
-	sourceImage, err = mutate.Config(sourceImage, imageConfig.Config)
+	image, err = mutate.Config(image, imageConfig.Config)
 	if err != nil {
 		return err
 	}
-
-	return remote.Write(destRef, sourceImage, pushAuth, http.DefaultTransport, wo)
+	return remote.Write(destRef, image, pushAuth, http.DefaultTransport, wo)
+}
+func saveStageDependencies(index int, stages []instructions.Stage) error {
+	// First, get the files in this stage later stages will need
+	dependencies, err := dockerfile.Dependencies(index, stages)
+	logrus.Infof("saving dependencies %s", dependencies)
+	if err != nil {
+		return err
+	}
+	// Then, create the directory they will exist in
+	i := strconv.Itoa(index)
+	dependencyDir := filepath.Join(constants.BuildContextDir, i)
+	if err := os.MkdirAll(dependencyDir, 0755); err != nil {
+		return err
+	}
+	// Now, copy over dependencies to this dir
+	for _, d := range dependencies {
+		fi, err := os.Lstat(d)
+		if err != nil {
+			return err
+		}
+		dest := filepath.Join(dependencyDir, d)
+		if fi.IsDir() {
+			if err := util.CopyDir(d, dest); err != nil {
+				return err
+			}
+		} else if fi.Mode()&os.ModeSymlink != 0 {
+			if err := util.CopySymlink(d, dest); err != nil {
+				return err
+			}
+		} else {
+			if err := util.CopyFile(d, dest); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
 }
 
 func getHasher(snapshotMode string) (func(string) (string, error), error) {
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index 20efd19a37..c8788a4941 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -178,7 +178,7 @@ func IsSrcsValid(srcsAndDest instructions.SourcesAndDest, resolvedSources []stri
 	}
 
 	if len(resolvedSources) == 1 {
-		fi, err := os.Stat(filepath.Join(root, resolvedSources[0]))
+		fi, err := os.Lstat(filepath.Join(root, resolvedSources[0]))
 		if err != nil {
 			return err
 		}
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index d639740dfe..a103e8bfbd 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -104,6 +104,33 @@ func GetFSFromImage(img v1.Image) error {
 	return nil
 }
 
+// DeleteFilesystem deletes the extracted image file system
+func DeleteFilesystem() error {
+	logrus.Info("Deleting filesystem...")
+	err := filepath.Walk(constants.RootDir, func(path string, info os.FileInfo, err error) error {
+		if PathInWhitelist(path, constants.RootDir) || ChildDirInWhitelist(path, constants.RootDir) {
+			logrus.Debugf("Not deleting %s, as it's whitelisted", path)
+			return nil
+		}
+		if path == constants.RootDir {
+			return nil
+		}
+		return os.RemoveAll(path)
+	})
+	return err
+}
+
+// ChildDirInWhitelist returns true if there is a child file or directory of the path in the whitelist
+func ChildDirInWhitelist(path, directory string) bool {
+	for _, d := range whitelist {
+		dirPath := filepath.Join(directory, d)
+		if HasFilepathPrefix(dirPath, path) {
+			return true
+		}
+	}
+	return false
+}
+
 func unTar(r io.Reader, dest string) error {
 	tr := tar.NewReader(r)
 	for {
@@ -269,6 +296,9 @@ func RelativeFiles(fp string, root string) ([]string, error) {
 		if err != nil {
 			return err
 		}
+		if PathInWhitelist(path, root) {
+			return nil
+		}
 		relPath, err := filepath.Rel(root, path)
 		if err != nil {
 			return err
@@ -284,6 +314,9 @@ func Files(root string) ([]string, error) {
 	var files []string
 	logrus.Debugf("Getting files and contents at root %s", root)
 	err := filepath.Walk(root, func(path string, info os.FileInfo, err error) error {
+		if PathInWhitelist(path, root) {
+			return nil
+		}
 		files = append(files, path)
 		return err
 	})
@@ -368,7 +401,7 @@ func CopyDir(src, dest string) error {
 	}
 	for _, file := range files {
 		fullPath := filepath.Join(src, file)
-		fi, err := os.Stat(fullPath)
+		fi, err := os.Lstat(fullPath)
 		if err != nil {
 			return err
 		}
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 0334d8c56c..62e9b6091f 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -103,16 +103,13 @@ var tests = []struct {
 		files: map[string]string{
 			"/workspace/foo/a": "baz1",
 			"/workspace/foo/b": "baz2",
-			"/kaniko/file":     "file",
 		},
 		directory: "",
 		expectedFiles: []string{
 			"workspace/foo/a",
 			"workspace/foo/b",
-			"kaniko/file",
 			"workspace",
 			"workspace/foo",
-			"kaniko",
 			".",
 		},
 	},

From 3705de22983692a0fa0c8b6012b219d8f52dfb1b Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 27 Apr 2018 14:34:32 -0700
Subject: [PATCH 27/69] Switch to multi-stage dockerfile for building kaniko

---
 deploy/Dockerfile            |  8 +++++++-
 deploy/executor-release.yaml | 27 +--------------------------
 2 files changed, 8 insertions(+), 27 deletions(-)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 0323d5d347..83c5627c4f 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -14,8 +14,14 @@
 
 # Builds the static Go image to execute in a Kubernetes job
 
+FROM golang
+WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
+RUN apt-get update && apt-get install -y make
+COPY . .
+RUN make -B
+
 FROM scratch
-COPY out/executor /kaniko/executor
+COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
 COPY files/docker-credential-gcr /usr/local/bin/
 COPY files/config.json /root/.docker/
diff --git a/deploy/executor-release.yaml b/deploy/executor-release.yaml
index 6344ebdff6..b2a2d2e69d 100644
--- a/deploy/executor-release.yaml
+++ b/deploy/executor-release.yaml
@@ -1,31 +1,6 @@
 steps:
-  # First, install make
-  - name: "gcr.io/google-appengine/debian9"
-    args: ["sh", "-c", "apt-get update && apt-get install -y make"]
-    volumes:
-    - name: "make"
-      path: "/usr/bin"
-  - name: "gcr.io/google-appengine/debian9"
-    args: ["sh", "-c", "cp -r . /kaniko/ && mkdir -p /workspace/go/src/github.com/GoogleContainerTools/ && cp -r /kaniko/ /workspace/go/src/github.com/GoogleContainerTools/"]
-    volumes:
-    - name: "make"
-      path: "/usr/bin"
-  # Then, build the binary
-  - name: "gcr.io/google-appengine/golang"
-    args: ["sh", "-c", "make"]
-    volumes:
-    - name: "make"
-      path: "/usr/bin"
-    dir: go/src/github.com/GoogleContainerTools/kaniko
-    env: ["GOPATH=/workspace/go/"]
   # First, build kaniko
   - name: "gcr.io/cloud-builders/docker"
     args: ["build", "-f", "deploy/Dockerfile",
            "-t", "gcr.io/kaniko-project/executor:${COMMIT_SHA}", "."]
-    dir: go/src/github.com/GoogleContainerTools/kaniko  
-  # Then, build kaniko:debug
-  - name: "gcr.io/cloud-builders/docker"
-    args: ["build", "-f", "deploy/Dockerfile_debug",
-           "-t", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}", "."] 
-    dir: go/src/github.com/GoogleContainerTools/kaniko
-images: ["gcr.io/kaniko-project/executor:${COMMIT_SHA}", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}"]
+images: ["gcr.io/kaniko-project/executor:${COMMIT_SHA}"]

From b9435943ec689dbaf73df263698483e36e586be3 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 27 Apr 2018 14:58:25 -0700
Subject: [PATCH 28/69] clean up makefile

---
 Makefile          | 6 ++----
 deploy/Dockerfile | 5 ++---
 test.sh           | 2 +-
 3 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/Makefile b/Makefile
index d913360edd..a00b2d386a 100644
--- a/Makefile
+++ b/Makefile
@@ -34,13 +34,11 @@ GO_LDFLAGS += -X $(VERSION_PACKAGE).version=$(VERSION)
 GO_LDFLAGS += -w -s # Drop debugging symbols.
 GO_LDFLAGS += '
 
-GO_BUILD_TAGS := "containers_image_ostree_stub containers_image_openpgp exclude_graphdriver_devicemapper exclude_graphdriver_btrfs exclude_graphdriver_overlay"
-
 EXECUTOR_PACKAGE = $(REPOPATH)/cmd/executor
 KANIKO_PROJECT = $(REPOPATH)/kaniko
 
 out/executor: $(GO_FILES)
-	GOARCH=$(GOARCH) GOOS=linux CGO_ENABLED=0 go build -ldflags $(GO_LDFLAGS) -tags $(GO_BUILD_TAGS) -o $@ $(EXECUTOR_PACKAGE)
+	GOARCH=$(GOARCH) GOOS=linux CGO_ENABLED=0 go build -ldflags $(GO_LDFLAGS) -o $@ $(EXECUTOR_PACKAGE)
 
 .PHONY: test
 test: out/executor
@@ -51,5 +49,5 @@ integration-test:
 	@ ./integration-test.sh
 
 .PHONY: images
-images: out/executor
+images:
 	docker build -t $(REGISTRY)/executor:latest -f deploy/Dockerfile .
diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 83c5627c4f..227a184c74 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -14,11 +14,10 @@
 
 # Builds the static Go image to execute in a Kubernetes job
 
-FROM golang
+FROM golang:1.10
 WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
-RUN apt-get update && apt-get install -y make
 COPY . .
-RUN make -B
+RUN make
 
 FROM scratch
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
diff --git a/test.sh b/test.sh
index 1ca29155d2..d797d9f7a2 100755
--- a/test.sh
+++ b/test.sh
@@ -21,7 +21,7 @@ GREEN='\033[0;32m'
 RESET='\033[0m'
 
 echo "Running go tests..."
-go test -cover -v -tags "containers_image_ostree_stub containers_image_openpgp exclude_graphdriver_devicemapper exclude_graphdriver_btrfs" -timeout 60s `go list ./... | grep -v vendor` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
+go test -cover -v -timeout 60s `go list ./... | grep -v vendor` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
 GO_TEST_EXIT_CODE=${PIPESTATUS[0]}
 if [[ $GO_TEST_EXIT_CODE -ne 0 ]]; then
     exit $GO_TEST_EXIT_CODE

From e9c1e1d518db81bf6d327618c76056e7c5146a41 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 27 Apr 2018 16:20:11 -0700
Subject: [PATCH 29/69] Integration test for base image specifying sha

---
 integration_tests/dockerfiles/Dockerfile_test_workdir | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/integration_tests/dockerfiles/Dockerfile_test_workdir b/integration_tests/dockerfiles/Dockerfile_test_workdir
index 6c89e4c11e..beb508d2bf 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_workdir
+++ b/integration_tests/dockerfiles/Dockerfile_test_workdir
@@ -1,4 +1,4 @@
-FROM gcr.io/google-appengine/debian9:latest
+FROM gcr.io/google-appengine/debian9@sha256:6b3aa04751aa2ac3b0c7be4ee71148b66d693ad212ce6d3244bd2a2a147f314a
 COPY context/foo foo
 WORKDIR /test
 # Test that this will be appended on to the previous command, to create /test/workdir

From bccc664b19d00475c8eedb4cd00299bd59fc0521 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 15:02:33 +0200
Subject: [PATCH 30/69] added shell command input to commands prepending shell

---
 pkg/commands/cmd.go        | 9 +++++++--
 pkg/commands/entrypoint.go | 9 +++++++--
 pkg/commands/run.go        | 9 +++++++--
 3 files changed, 21 insertions(+), 6 deletions(-)

diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 9d53bd98e7..79f13770e3 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -35,8 +35,13 @@ func (c *CmdCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if c.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(c.cmd.CmdLine, " "))
 	} else {
 		newCommand = c.cmd.CmdLine
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index a753dc5ee0..7310c2faf5 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -34,8 +34,13 @@ func (e *EntrypointCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if e.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(e.cmd.CmdLine, " "))
 	} else {
 		newCommand = e.cmd.CmdLine
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index 849f012d75..7eb545f196 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -36,8 +36,13 @@ func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if r.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(r.cmd.CmdLine, " "))
 	} else {
 		newCommand = r.cmd.CmdLine

From ae47a03023fc263a56367009f800712b77f7fe94 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 15:12:04 +0200
Subject: [PATCH 31/69] Added shell command and test

---
 pkg/commands/shell.go      | 54 +++++++++++++++++++++++++++++++++++++
 pkg/commands/shell_test.go | 55 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 109 insertions(+)
 create mode 100644 pkg/commands/shell.go
 create mode 100644 pkg/commands/shell_test.go

diff --git a/pkg/commands/shell.go b/pkg/commands/shell.go
new file mode 100644
index 0000000000..89a4539141
--- /dev/null
+++ b/pkg/commands/shell.go
@@ -0,0 +1,54 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package commands
+
+import (
+	"strings"
+
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
+)
+
+type ShellCommand struct {
+	cmd *instructions.ShellCommand
+}
+
+// ExecuteCommand handles command processing similar to CMD and RUN,
+func (s *ShellCommand) ExecuteCommand(config *v1.Config) error {
+	logrus.Info("cmd: SHELL")
+	var newShell []string
+
+	newShell = s.cmd.Shell
+
+	logrus.Infof("Replacing Shell in config with %v", newShell)
+	config.Shell = newShell
+	return nil
+}
+
+// FilesToSnapshot returns an empty array since this is a metadata command
+func (s *ShellCommand) FilesToSnapshot() []string {
+	return []string{}
+}
+
+// CreatedBy returns some information about the command for the image config history
+func (s *ShellCommand) CreatedBy() string {
+	entrypoint := []string{"SHELL"}
+	cmdLine := strings.Join(s.cmd.Shell, " ")
+
+	return strings.Join(append(entrypoint, cmdLine), " ")
+}
diff --git a/pkg/commands/shell_test.go b/pkg/commands/shell_test.go
new file mode 100644
index 0000000000..524138aabf
--- /dev/null
+++ b/pkg/commands/shell_test.go
@@ -0,0 +1,55 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+package commands
+
+import (
+	"testing"
+
+	"github.com/GoogleContainerTools/kaniko/testutil"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+)
+
+var shellTests = []struct {
+	cmdLine       []string
+	expectedShell []string
+}{
+	{
+		cmdLine:       []string{"/bin/bash", "-c"},
+		expectedShell: []string{"/bin/bash", "-c"},
+	},
+	{
+		cmdLine:       []string{"/bin/bash"},
+		expectedShell: []string{"/bin/bash"},
+	},
+}
+
+func TestShellExecuteCmd(t *testing.T) {
+
+	cfg := &v1.Config{
+		Shell: nil,
+	}
+
+	for _, test := range shellTests {
+		cmd := ShellCommand{
+			&instructions.ShellCommand{
+				Shell: test.cmdLine,
+			},
+		}
+		err := cmd.ExecuteCommand(cfg)
+		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedShell, cfg.Shell)
+	}
+}

From d73f8c031fad403bf9990785cbab8db661f8dd64 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 17:30:18 +0200
Subject: [PATCH 32/69] added stopsignal implementation

---
 pkg/commands/commands.go   |  2 ++
 pkg/commands/stopsignal.go | 58 ++++++++++++++++++++++++++++++++++++++
 2 files changed, 60 insertions(+)
 create mode 100644 pkg/commands/stopsignal.go

diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index 96a5bed02f..0d8e6cafab 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -61,6 +61,8 @@ func GetCommand(cmd instructions.Command, buildcontext string) (DockerCommand, e
 		return &OnBuildCommand{cmd: c}, nil
 	case *instructions.VolumeCommand:
 		return &VolumeCommand{cmd: c}, nil
+	case *instructions.StopSignalCommand:
+		return &StopSignalCommand{cmd: c}, nil
 	case *instructions.MaintainerCommand:
 		logrus.Warnf("%s is deprecated, skipping", cmd.Name())
 		return nil, nil
diff --git a/pkg/commands/stopsignal.go b/pkg/commands/stopsignal.go
new file mode 100644
index 0000000000..d9122da743
--- /dev/null
+++ b/pkg/commands/stopsignal.go
@@ -0,0 +1,58 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package commands
+
+import (
+	"strings"
+
+	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
+)
+
+type StopSignalCommand struct {
+	cmd *instructions.StopSignalCommand
+}
+
+// ExecuteCommand handles command processing similar to CMD and RUN,
+func (s *StopSignalCommand) ExecuteCommand(config *v1.Config) error {
+	logrus.Info("cmd: STOPSIGNAL")
+
+	// resolve possible environment variables
+	resolvedEnvs, err := util.ResolveEnvironmentReplacementList([]string{s.cmd.Signal}, config.Env, true)
+	if err != nil {
+		return err
+	}
+	signal := resolvedEnvs[len(resolvedEnvs)-1]
+
+	logrus.Infof("Replacing StopSignal in config with %v", signal)
+	config.StopSignal = signal
+	return nil
+}
+
+// FilesToSnapshot returns an empty array since this is a metadata command
+func (s *StopSignalCommand) FilesToSnapshot() []string {
+	return []string{}
+}
+
+// CreatedBy returns some information about the command for the image config history
+func (s *StopSignalCommand) CreatedBy() string {
+	entrypoint := []string{"STOPSIGNAL"}
+
+	return strings.Join(append(entrypoint, s.cmd.Signal), " ")
+}

From fd8d4b6170738879533e36e3dd50a9c3eb2fd67d Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 17:41:40 +0200
Subject: [PATCH 33/69] added test for stopsignal command implementation

---
 pkg/commands/stopsignal_test.go | 60 +++++++++++++++++++++++++++++++++
 1 file changed, 60 insertions(+)
 create mode 100644 pkg/commands/stopsignal_test.go

diff --git a/pkg/commands/stopsignal_test.go b/pkg/commands/stopsignal_test.go
new file mode 100644
index 0000000000..c6e717f761
--- /dev/null
+++ b/pkg/commands/stopsignal_test.go
@@ -0,0 +1,60 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+package commands
+
+import (
+	"testing"
+
+	"github.com/GoogleContainerTools/kaniko/testutil"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+)
+
+var stopsignalTests = []struct {
+	signal         string
+	expectedSignal string
+}{
+	{
+		signal:         "SIGKILL",
+		expectedSignal: "SIGKILL",
+	},
+	{
+		signal:         "${STOPSIG}",
+		expectedSignal: "SIGKILL",
+	},
+	{
+		signal:         "1",
+		expectedSignal: "1",
+	},
+}
+
+func TestStopsignalExecuteCmd(t *testing.T) {
+
+	cfg := &v1.Config{
+		StopSignal: "",
+		Env:        []string{"STOPSIG=SIGKILL"},
+	}
+
+	for _, test := range stopsignalTests {
+		cmd := StopSignalCommand{
+			&instructions.StopSignalCommand{
+				Signal: test.signal,
+			},
+		}
+		err := cmd.ExecuteCommand(cfg)
+		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedSignal, cfg.StopSignal)
+	}
+}

From 35b5f4b34adae2df3d1e1dbfc7a21fac329c66b9 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 17:43:34 +0200
Subject: [PATCH 34/69] Revert "Added shell command and test"

This reverts commit ae47a03023fc263a56367009f800712b77f7fe94.
---
 pkg/commands/shell.go      | 54 -------------------------------------
 pkg/commands/shell_test.go | 55 --------------------------------------
 2 files changed, 109 deletions(-)
 delete mode 100644 pkg/commands/shell.go
 delete mode 100644 pkg/commands/shell_test.go

diff --git a/pkg/commands/shell.go b/pkg/commands/shell.go
deleted file mode 100644
index 89a4539141..0000000000
--- a/pkg/commands/shell.go
+++ /dev/null
@@ -1,54 +0,0 @@
-/*
-Copyright 2018 Google LLC
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package commands
-
-import (
-	"strings"
-
-	"github.com/docker/docker/builder/dockerfile/instructions"
-	"github.com/google/go-containerregistry/v1"
-	"github.com/sirupsen/logrus"
-)
-
-type ShellCommand struct {
-	cmd *instructions.ShellCommand
-}
-
-// ExecuteCommand handles command processing similar to CMD and RUN,
-func (s *ShellCommand) ExecuteCommand(config *v1.Config) error {
-	logrus.Info("cmd: SHELL")
-	var newShell []string
-
-	newShell = s.cmd.Shell
-
-	logrus.Infof("Replacing Shell in config with %v", newShell)
-	config.Shell = newShell
-	return nil
-}
-
-// FilesToSnapshot returns an empty array since this is a metadata command
-func (s *ShellCommand) FilesToSnapshot() []string {
-	return []string{}
-}
-
-// CreatedBy returns some information about the command for the image config history
-func (s *ShellCommand) CreatedBy() string {
-	entrypoint := []string{"SHELL"}
-	cmdLine := strings.Join(s.cmd.Shell, " ")
-
-	return strings.Join(append(entrypoint, cmdLine), " ")
-}
diff --git a/pkg/commands/shell_test.go b/pkg/commands/shell_test.go
deleted file mode 100644
index 524138aabf..0000000000
--- a/pkg/commands/shell_test.go
+++ /dev/null
@@ -1,55 +0,0 @@
-/*
-Copyright 2018 Google LLC
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-package commands
-
-import (
-	"testing"
-
-	"github.com/GoogleContainerTools/kaniko/testutil"
-	"github.com/docker/docker/builder/dockerfile/instructions"
-	"github.com/google/go-containerregistry/v1"
-)
-
-var shellTests = []struct {
-	cmdLine       []string
-	expectedShell []string
-}{
-	{
-		cmdLine:       []string{"/bin/bash", "-c"},
-		expectedShell: []string{"/bin/bash", "-c"},
-	},
-	{
-		cmdLine:       []string{"/bin/bash"},
-		expectedShell: []string{"/bin/bash"},
-	},
-}
-
-func TestShellExecuteCmd(t *testing.T) {
-
-	cfg := &v1.Config{
-		Shell: nil,
-	}
-
-	for _, test := range shellTests {
-		cmd := ShellCommand{
-			&instructions.ShellCommand{
-				Shell: test.cmdLine,
-			},
-		}
-		err := cmd.ExecuteCommand(cfg)
-		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedShell, cfg.Shell)
-	}
-}

From 281c69c6c618c20536aa689c0972900a57310a1f Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Sat, 28 Apr 2018 17:43:42 +0200
Subject: [PATCH 35/69] Revert "added shell command input to commands
 prepending shell"

This reverts commit bccc664b19d00475c8eedb4cd00299bd59fc0521.
---
 pkg/commands/cmd.go        | 9 ++-------
 pkg/commands/entrypoint.go | 9 ++-------
 pkg/commands/run.go        | 9 ++-------
 3 files changed, 6 insertions(+), 21 deletions(-)

diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 79f13770e3..9d53bd98e7 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -35,13 +35,8 @@ func (c *CmdCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if c.cmd.PrependShell {
 		// This is the default shell on Linux
-		var shell []string
-		if len(config.Shell) > 0 {
-			shell = config.Shell
-		} else {
-			shell = append(shell, "/bin/sh", "-c")
-		}
-
+		// TODO: Support shell command here
+		shell := []string{"/bin/sh", "-c"}
 		newCommand = append(shell, strings.Join(c.cmd.CmdLine, " "))
 	} else {
 		newCommand = c.cmd.CmdLine
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index 7310c2faf5..a753dc5ee0 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -34,13 +34,8 @@ func (e *EntrypointCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if e.cmd.PrependShell {
 		// This is the default shell on Linux
-		var shell []string
-		if len(config.Shell) > 0 {
-			shell = config.Shell
-		} else {
-			shell = append(shell, "/bin/sh", "-c")
-		}
-
+		// TODO: Support shell command here
+		shell := []string{"/bin/sh", "-c"}
 		newCommand = append(shell, strings.Join(e.cmd.CmdLine, " "))
 	} else {
 		newCommand = e.cmd.CmdLine
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index 7eb545f196..849f012d75 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -36,13 +36,8 @@ func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if r.cmd.PrependShell {
 		// This is the default shell on Linux
-		var shell []string
-		if len(config.Shell) > 0 {
-			shell = config.Shell
-		} else {
-			shell = append(shell, "/bin/sh", "-c")
-		}
-
+		// TODO: Support shell command here
+		shell := []string{"/bin/sh", "-c"}
 		newCommand = append(shell, strings.Join(r.cmd.CmdLine, " "))
 	} else {
 		newCommand = r.cmd.CmdLine

From 5af3645a837675e1479467c4d688b2b56ddf583a Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Mon, 30 Apr 2018 19:59:10 +0200
Subject: [PATCH 36/69] added shell command (#158)

* added shell command input to commands prepending shell

* Added shell command and test
---
 pkg/commands/cmd.go        |  9 +++++--
 pkg/commands/entrypoint.go |  9 +++++--
 pkg/commands/run.go        |  9 +++++--
 pkg/commands/shell.go      | 54 +++++++++++++++++++++++++++++++++++++
 pkg/commands/shell_test.go | 55 ++++++++++++++++++++++++++++++++++++++
 5 files changed, 130 insertions(+), 6 deletions(-)
 create mode 100644 pkg/commands/shell.go
 create mode 100644 pkg/commands/shell_test.go

diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 9d53bd98e7..79f13770e3 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -35,8 +35,13 @@ func (c *CmdCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if c.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(c.cmd.CmdLine, " "))
 	} else {
 		newCommand = c.cmd.CmdLine
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index a753dc5ee0..7310c2faf5 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -34,8 +34,13 @@ func (e *EntrypointCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if e.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(e.cmd.CmdLine, " "))
 	} else {
 		newCommand = e.cmd.CmdLine
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index 849f012d75..7eb545f196 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -36,8 +36,13 @@ func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
 	var newCommand []string
 	if r.cmd.PrependShell {
 		// This is the default shell on Linux
-		// TODO: Support shell command here
-		shell := []string{"/bin/sh", "-c"}
+		var shell []string
+		if len(config.Shell) > 0 {
+			shell = config.Shell
+		} else {
+			shell = append(shell, "/bin/sh", "-c")
+		}
+
 		newCommand = append(shell, strings.Join(r.cmd.CmdLine, " "))
 	} else {
 		newCommand = r.cmd.CmdLine
diff --git a/pkg/commands/shell.go b/pkg/commands/shell.go
new file mode 100644
index 0000000000..89a4539141
--- /dev/null
+++ b/pkg/commands/shell.go
@@ -0,0 +1,54 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package commands
+
+import (
+	"strings"
+
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
+)
+
+type ShellCommand struct {
+	cmd *instructions.ShellCommand
+}
+
+// ExecuteCommand handles command processing similar to CMD and RUN,
+func (s *ShellCommand) ExecuteCommand(config *v1.Config) error {
+	logrus.Info("cmd: SHELL")
+	var newShell []string
+
+	newShell = s.cmd.Shell
+
+	logrus.Infof("Replacing Shell in config with %v", newShell)
+	config.Shell = newShell
+	return nil
+}
+
+// FilesToSnapshot returns an empty array since this is a metadata command
+func (s *ShellCommand) FilesToSnapshot() []string {
+	return []string{}
+}
+
+// CreatedBy returns some information about the command for the image config history
+func (s *ShellCommand) CreatedBy() string {
+	entrypoint := []string{"SHELL"}
+	cmdLine := strings.Join(s.cmd.Shell, " ")
+
+	return strings.Join(append(entrypoint, cmdLine), " ")
+}
diff --git a/pkg/commands/shell_test.go b/pkg/commands/shell_test.go
new file mode 100644
index 0000000000..524138aabf
--- /dev/null
+++ b/pkg/commands/shell_test.go
@@ -0,0 +1,55 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+package commands
+
+import (
+	"testing"
+
+	"github.com/GoogleContainerTools/kaniko/testutil"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+)
+
+var shellTests = []struct {
+	cmdLine       []string
+	expectedShell []string
+}{
+	{
+		cmdLine:       []string{"/bin/bash", "-c"},
+		expectedShell: []string{"/bin/bash", "-c"},
+	},
+	{
+		cmdLine:       []string{"/bin/bash"},
+		expectedShell: []string{"/bin/bash"},
+	},
+}
+
+func TestShellExecuteCmd(t *testing.T) {
+
+	cfg := &v1.Config{
+		Shell: nil,
+	}
+
+	for _, test := range shellTests {
+		cmd := ShellCommand{
+			&instructions.ShellCommand{
+				Shell: test.cmdLine,
+			},
+		}
+		err := cmd.ExecuteCommand(cfg)
+		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedShell, cfg.Shell)
+	}
+}

From 6ff3c588af57ef9fcab4a3e9325c8d8c5d9e22a8 Mon Sep 17 00:00:00 2001
From: priyawadhwa <priyawadhwa@google.com>
Date: Mon, 30 Apr 2018 15:59:04 -0700
Subject: [PATCH 37/69] Update readme (#160)

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index 9e7fa25346..54a086d400 100644
--- a/README.md
+++ b/README.md
@@ -34,7 +34,6 @@ After each command, we append a layer of changed files to the base image (if the
 
 The majority of Dockerfile commands can be executed with kaniko, but we're still working on supporting the following commands:
 
-* SHELL
 * HEALTHCHECK
 * STOPSIGNAL
 * ARG

From a1acbe8aa82fae7541ce29759cb94f989b9a57f4 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 30 Apr 2018 22:37:45 -0400
Subject: [PATCH 38/69] Fixed ResolveStages

---
 pkg/dockerfile/dockerfile.go | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/pkg/dockerfile/dockerfile.go b/pkg/dockerfile/dockerfile.go
index c3eb8ed95d..dd2f0311cc 100644
--- a/pkg/dockerfile/dockerfile.go
+++ b/pkg/dockerfile/dockerfile.go
@@ -53,13 +53,16 @@ func ResolveStages(stages []instructions.Stage) {
 	nameToIndex := make(map[string]string)
 	for i, stage := range stages {
 		index := strconv.Itoa(i)
-		nameToIndex[stage.Name] = index
-		nameToIndex[index] = index
+		if stage.Name != index {
+			nameToIndex[stage.Name] = index
+		}
 		for _, cmd := range stage.Commands {
 			switch c := cmd.(type) {
 			case *instructions.CopyCommand:
 				if c.From != "" {
-					c.From = nameToIndex[c.From]
+					if val, ok := nameToIndex[c.From]; ok {
+						c.From = val
+					}
 				}
 			}
 		}

From b5e68f4b7bbfe49230bd84084f743b63e5766ba5 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Tue, 1 May 2018 12:12:36 +0200
Subject: [PATCH 39/69] added signal validation

---
 Gopkg.lock                                    |   3 +-
 pkg/commands/stopsignal.go                    |  15 ++-
 .../docker/docker/pkg/signal/signal.go        |  54 +++++++++
 .../docker/docker/pkg/signal/signal_darwin.go |  41 +++++++
 .../docker/pkg/signal/signal_freebsd.go       |  43 ++++++++
 .../docker/docker/pkg/signal/signal_linux.go  |  81 ++++++++++++++
 .../docker/docker/pkg/signal/signal_unix.go   |  21 ++++
 .../docker/pkg/signal/signal_unsupported.go   |  10 ++
 .../docker/pkg/signal/signal_windows.go       |  26 +++++
 .../docker/docker/pkg/signal/trap.go          | 104 ++++++++++++++++++
 10 files changed, 393 insertions(+), 5 deletions(-)
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_darwin.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_freebsd.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/signal_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/signal/trap.go

diff --git a/Gopkg.lock b/Gopkg.lock
index 7a899bbe10..6c182e1d40 100644
--- a/Gopkg.lock
+++ b/Gopkg.lock
@@ -45,6 +45,7 @@
     "pkg/longpath",
     "pkg/mount",
     "pkg/pools",
+    "pkg/signal",
     "pkg/system"
   ]
   revision = "b1a1234c60cf87048814aa37da523b03a7b0d344"
@@ -332,6 +333,6 @@
 [solve-meta]
   analyzer-name = "dep"
   analyzer-version = 1
-  inputs-digest = "9ed51a63daab2be9e4864e4d97d90ccc0f540d076f891b80f01bd3f161c9ef7a"
+  inputs-digest = "18d970ab8a3487013ef13e0aed686929d30bcebc1b9adaa329e9db414189fcf6"
   solver-name = "gps-cdcl"
   solver-version = 1
diff --git a/pkg/commands/stopsignal.go b/pkg/commands/stopsignal.go
index d9122da743..85d70e6b46 100644
--- a/pkg/commands/stopsignal.go
+++ b/pkg/commands/stopsignal.go
@@ -21,6 +21,7 @@ import (
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/docker/docker/pkg/signal"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
 )
@@ -34,14 +35,20 @@ func (s *StopSignalCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Info("cmd: STOPSIGNAL")
 
 	// resolve possible environment variables
-	resolvedEnvs, err := util.ResolveEnvironmentReplacementList([]string{s.cmd.Signal}, config.Env, true)
+	resolvedEnvs, err := util.ResolveEnvironmentReplacementList([]string{s.cmd.Signal}, config.Env, false)
 	if err != nil {
 		return err
 	}
-	signal := resolvedEnvs[len(resolvedEnvs)-1]
+	stopsignal := resolvedEnvs[len(resolvedEnvs)-1]
 
-	logrus.Infof("Replacing StopSignal in config with %v", signal)
-	config.StopSignal = signal
+	// validate stopsignal
+	_, err = signal.ParseSignal(stopsignal)
+	if err != nil {
+		return err
+	}
+
+	logrus.Infof("Replacing StopSignal in config with %v", stopsignal)
+	config.StopSignal = stopsignal
 	return nil
 }
 
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal.go b/vendor/github.com/docker/docker/pkg/signal/signal.go
new file mode 100644
index 0000000000..6a663091a1
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal.go
@@ -0,0 +1,54 @@
+// Package signal provides helper functions for dealing with signals across
+// various operating systems.
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"fmt"
+	"os"
+	"os/signal"
+	"strconv"
+	"strings"
+	"syscall"
+)
+
+// CatchAll catches all signals and relays them to the specified channel.
+func CatchAll(sigc chan os.Signal) {
+	handledSigs := []os.Signal{}
+	for _, s := range SignalMap {
+		handledSigs = append(handledSigs, s)
+	}
+	signal.Notify(sigc, handledSigs...)
+}
+
+// StopCatch stops catching the signals and closes the specified channel.
+func StopCatch(sigc chan os.Signal) {
+	signal.Stop(sigc)
+	close(sigc)
+}
+
+// ParseSignal translates a string to a valid syscall signal.
+// It returns an error if the signal map doesn't include the given signal.
+func ParseSignal(rawSignal string) (syscall.Signal, error) {
+	s, err := strconv.Atoi(rawSignal)
+	if err == nil {
+		if s == 0 {
+			return -1, fmt.Errorf("Invalid signal: %s", rawSignal)
+		}
+		return syscall.Signal(s), nil
+	}
+	signal, ok := SignalMap[strings.TrimPrefix(strings.ToUpper(rawSignal), "SIG")]
+	if !ok {
+		return -1, fmt.Errorf("Invalid signal: %s", rawSignal)
+	}
+	return signal, nil
+}
+
+// ValidSignalForPlatform returns true if a signal is valid on the platform
+func ValidSignalForPlatform(sig syscall.Signal) bool {
+	for _, v := range SignalMap {
+		if v == sig {
+			return true
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_darwin.go b/vendor/github.com/docker/docker/pkg/signal/signal_darwin.go
new file mode 100644
index 0000000000..ee5501e3d9
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_darwin.go
@@ -0,0 +1,41 @@
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+)
+
+// SignalMap is a map of Darwin signals.
+var SignalMap = map[string]syscall.Signal{
+	"ABRT":   syscall.SIGABRT,
+	"ALRM":   syscall.SIGALRM,
+	"BUG":    syscall.SIGBUS,
+	"CHLD":   syscall.SIGCHLD,
+	"CONT":   syscall.SIGCONT,
+	"EMT":    syscall.SIGEMT,
+	"FPE":    syscall.SIGFPE,
+	"HUP":    syscall.SIGHUP,
+	"ILL":    syscall.SIGILL,
+	"INFO":   syscall.SIGINFO,
+	"INT":    syscall.SIGINT,
+	"IO":     syscall.SIGIO,
+	"IOT":    syscall.SIGIOT,
+	"KILL":   syscall.SIGKILL,
+	"PIPE":   syscall.SIGPIPE,
+	"PROF":   syscall.SIGPROF,
+	"QUIT":   syscall.SIGQUIT,
+	"SEGV":   syscall.SIGSEGV,
+	"STOP":   syscall.SIGSTOP,
+	"SYS":    syscall.SIGSYS,
+	"TERM":   syscall.SIGTERM,
+	"TRAP":   syscall.SIGTRAP,
+	"TSTP":   syscall.SIGTSTP,
+	"TTIN":   syscall.SIGTTIN,
+	"TTOU":   syscall.SIGTTOU,
+	"URG":    syscall.SIGURG,
+	"USR1":   syscall.SIGUSR1,
+	"USR2":   syscall.SIGUSR2,
+	"VTALRM": syscall.SIGVTALRM,
+	"WINCH":  syscall.SIGWINCH,
+	"XCPU":   syscall.SIGXCPU,
+	"XFSZ":   syscall.SIGXFSZ,
+}
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_freebsd.go b/vendor/github.com/docker/docker/pkg/signal/signal_freebsd.go
new file mode 100644
index 0000000000..764f90e264
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_freebsd.go
@@ -0,0 +1,43 @@
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+)
+
+// SignalMap is a map of FreeBSD signals.
+var SignalMap = map[string]syscall.Signal{
+	"ABRT":   syscall.SIGABRT,
+	"ALRM":   syscall.SIGALRM,
+	"BUF":    syscall.SIGBUS,
+	"CHLD":   syscall.SIGCHLD,
+	"CONT":   syscall.SIGCONT,
+	"EMT":    syscall.SIGEMT,
+	"FPE":    syscall.SIGFPE,
+	"HUP":    syscall.SIGHUP,
+	"ILL":    syscall.SIGILL,
+	"INFO":   syscall.SIGINFO,
+	"INT":    syscall.SIGINT,
+	"IO":     syscall.SIGIO,
+	"IOT":    syscall.SIGIOT,
+	"KILL":   syscall.SIGKILL,
+	"LWP":    syscall.SIGLWP,
+	"PIPE":   syscall.SIGPIPE,
+	"PROF":   syscall.SIGPROF,
+	"QUIT":   syscall.SIGQUIT,
+	"SEGV":   syscall.SIGSEGV,
+	"STOP":   syscall.SIGSTOP,
+	"SYS":    syscall.SIGSYS,
+	"TERM":   syscall.SIGTERM,
+	"THR":    syscall.SIGTHR,
+	"TRAP":   syscall.SIGTRAP,
+	"TSTP":   syscall.SIGTSTP,
+	"TTIN":   syscall.SIGTTIN,
+	"TTOU":   syscall.SIGTTOU,
+	"URG":    syscall.SIGURG,
+	"USR1":   syscall.SIGUSR1,
+	"USR2":   syscall.SIGUSR2,
+	"VTALRM": syscall.SIGVTALRM,
+	"WINCH":  syscall.SIGWINCH,
+	"XCPU":   syscall.SIGXCPU,
+	"XFSZ":   syscall.SIGXFSZ,
+}
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_linux.go b/vendor/github.com/docker/docker/pkg/signal/signal_linux.go
new file mode 100644
index 0000000000..caed97c963
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_linux.go
@@ -0,0 +1,81 @@
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+
+	"golang.org/x/sys/unix"
+)
+
+const (
+	sigrtmin = 34
+	sigrtmax = 64
+)
+
+// SignalMap is a map of Linux signals.
+var SignalMap = map[string]syscall.Signal{
+	"ABRT":     unix.SIGABRT,
+	"ALRM":     unix.SIGALRM,
+	"BUS":      unix.SIGBUS,
+	"CHLD":     unix.SIGCHLD,
+	"CLD":      unix.SIGCLD,
+	"CONT":     unix.SIGCONT,
+	"FPE":      unix.SIGFPE,
+	"HUP":      unix.SIGHUP,
+	"ILL":      unix.SIGILL,
+	"INT":      unix.SIGINT,
+	"IO":       unix.SIGIO,
+	"IOT":      unix.SIGIOT,
+	"KILL":     unix.SIGKILL,
+	"PIPE":     unix.SIGPIPE,
+	"POLL":     unix.SIGPOLL,
+	"PROF":     unix.SIGPROF,
+	"PWR":      unix.SIGPWR,
+	"QUIT":     unix.SIGQUIT,
+	"SEGV":     unix.SIGSEGV,
+	"STKFLT":   unix.SIGSTKFLT,
+	"STOP":     unix.SIGSTOP,
+	"SYS":      unix.SIGSYS,
+	"TERM":     unix.SIGTERM,
+	"TRAP":     unix.SIGTRAP,
+	"TSTP":     unix.SIGTSTP,
+	"TTIN":     unix.SIGTTIN,
+	"TTOU":     unix.SIGTTOU,
+	"URG":      unix.SIGURG,
+	"USR1":     unix.SIGUSR1,
+	"USR2":     unix.SIGUSR2,
+	"VTALRM":   unix.SIGVTALRM,
+	"WINCH":    unix.SIGWINCH,
+	"XCPU":     unix.SIGXCPU,
+	"XFSZ":     unix.SIGXFSZ,
+	"RTMIN":    sigrtmin,
+	"RTMIN+1":  sigrtmin + 1,
+	"RTMIN+2":  sigrtmin + 2,
+	"RTMIN+3":  sigrtmin + 3,
+	"RTMIN+4":  sigrtmin + 4,
+	"RTMIN+5":  sigrtmin + 5,
+	"RTMIN+6":  sigrtmin + 6,
+	"RTMIN+7":  sigrtmin + 7,
+	"RTMIN+8":  sigrtmin + 8,
+	"RTMIN+9":  sigrtmin + 9,
+	"RTMIN+10": sigrtmin + 10,
+	"RTMIN+11": sigrtmin + 11,
+	"RTMIN+12": sigrtmin + 12,
+	"RTMIN+13": sigrtmin + 13,
+	"RTMIN+14": sigrtmin + 14,
+	"RTMIN+15": sigrtmin + 15,
+	"RTMAX-14": sigrtmax - 14,
+	"RTMAX-13": sigrtmax - 13,
+	"RTMAX-12": sigrtmax - 12,
+	"RTMAX-11": sigrtmax - 11,
+	"RTMAX-10": sigrtmax - 10,
+	"RTMAX-9":  sigrtmax - 9,
+	"RTMAX-8":  sigrtmax - 8,
+	"RTMAX-7":  sigrtmax - 7,
+	"RTMAX-6":  sigrtmax - 6,
+	"RTMAX-5":  sigrtmax - 5,
+	"RTMAX-4":  sigrtmax - 4,
+	"RTMAX-3":  sigrtmax - 3,
+	"RTMAX-2":  sigrtmax - 2,
+	"RTMAX-1":  sigrtmax - 1,
+	"RTMAX":    sigrtmax,
+}
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_unix.go b/vendor/github.com/docker/docker/pkg/signal/signal_unix.go
new file mode 100644
index 0000000000..a2aa4248fa
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_unix.go
@@ -0,0 +1,21 @@
+// +build !windows
+
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+)
+
+// Signals used in cli/command (no windows equivalent, use
+// invalid signals so they don't get handled)
+
+const (
+	// SIGCHLD is a signal sent to a process when a child process terminates, is interrupted, or resumes after being interrupted.
+	SIGCHLD = syscall.SIGCHLD
+	// SIGWINCH is a signal sent to a process when its controlling terminal changes its size
+	SIGWINCH = syscall.SIGWINCH
+	// SIGPIPE is a signal sent to a process when a pipe is written to before the other end is open for reading
+	SIGPIPE = syscall.SIGPIPE
+	// DefaultStopSignal is the syscall signal used to stop a container in unix systems.
+	DefaultStopSignal = "SIGTERM"
+)
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_unsupported.go b/vendor/github.com/docker/docker/pkg/signal/signal_unsupported.go
new file mode 100644
index 0000000000..1fd25a83c6
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_unsupported.go
@@ -0,0 +1,10 @@
+// +build !linux,!darwin,!freebsd,!windows
+
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+)
+
+// SignalMap is an empty map of signals for unsupported platform.
+var SignalMap = map[string]syscall.Signal{}
diff --git a/vendor/github.com/docker/docker/pkg/signal/signal_windows.go b/vendor/github.com/docker/docker/pkg/signal/signal_windows.go
new file mode 100644
index 0000000000..65752f24aa
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/signal_windows.go
@@ -0,0 +1,26 @@
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"syscall"
+)
+
+// Signals used in cli/command (no windows equivalent, use
+// invalid signals so they don't get handled)
+const (
+	SIGCHLD  = syscall.Signal(0xff)
+	SIGWINCH = syscall.Signal(0xff)
+	SIGPIPE  = syscall.Signal(0xff)
+	// DefaultStopSignal is the syscall signal used to stop a container in windows systems.
+	DefaultStopSignal = "15"
+)
+
+// SignalMap is a map of "supported" signals. As per the comment in GOLang's
+// ztypes_windows.go: "More invented values for signals". Windows doesn't
+// really support signals in any way, shape or form that Unix does.
+//
+// We have these so that docker kill can be used to gracefully (TERM) and
+// forcibly (KILL) terminate a container on Windows.
+var SignalMap = map[string]syscall.Signal{
+	"KILL": syscall.SIGKILL,
+	"TERM": syscall.SIGTERM,
+}
diff --git a/vendor/github.com/docker/docker/pkg/signal/trap.go b/vendor/github.com/docker/docker/pkg/signal/trap.go
new file mode 100644
index 0000000000..2a6e69fb50
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/signal/trap.go
@@ -0,0 +1,104 @@
+package signal // import "github.com/docker/docker/pkg/signal"
+
+import (
+	"fmt"
+	"os"
+	gosignal "os/signal"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"sync/atomic"
+	"syscall"
+	"time"
+
+	"github.com/pkg/errors"
+)
+
+// Trap sets up a simplified signal "trap", appropriate for common
+// behavior expected from a vanilla unix command-line tool in general
+// (and the Docker engine in particular).
+//
+// * If SIGINT or SIGTERM are received, `cleanup` is called, then the process is terminated.
+// * If SIGINT or SIGTERM are received 3 times before cleanup is complete, then cleanup is
+//   skipped and the process is terminated immediately (allows force quit of stuck daemon)
+// * A SIGQUIT always causes an exit without cleanup, with a goroutine dump preceding exit.
+// * Ignore SIGPIPE events. These are generated by systemd when journald is restarted while
+//   the docker daemon is not restarted and also running under systemd.
+//   Fixes https://github.com/docker/docker/issues/19728
+//
+func Trap(cleanup func(), logger interface {
+	Info(args ...interface{})
+}) {
+	c := make(chan os.Signal, 1)
+	// we will handle INT, TERM, QUIT, SIGPIPE here
+	signals := []os.Signal{os.Interrupt, syscall.SIGTERM, syscall.SIGQUIT, syscall.SIGPIPE}
+	gosignal.Notify(c, signals...)
+	go func() {
+		interruptCount := uint32(0)
+		for sig := range c {
+			if sig == syscall.SIGPIPE {
+				continue
+			}
+
+			go func(sig os.Signal) {
+				logger.Info(fmt.Sprintf("Processing signal '%v'", sig))
+				switch sig {
+				case os.Interrupt, syscall.SIGTERM:
+					if atomic.LoadUint32(&interruptCount) < 3 {
+						// Initiate the cleanup only once
+						if atomic.AddUint32(&interruptCount, 1) == 1 {
+							// Call the provided cleanup handler
+							cleanup()
+							os.Exit(0)
+						} else {
+							return
+						}
+					} else {
+						// 3 SIGTERM/INT signals received; force exit without cleanup
+						logger.Info("Forcing docker daemon shutdown without cleanup; 3 interrupts received")
+					}
+				case syscall.SIGQUIT:
+					DumpStacks("")
+					logger.Info("Forcing docker daemon shutdown without cleanup on SIGQUIT")
+				}
+				//for the SIGINT/TERM, and SIGQUIT non-clean shutdown case, exit with 128 + signal #
+				os.Exit(128 + int(sig.(syscall.Signal)))
+			}(sig)
+		}
+	}()
+}
+
+const stacksLogNameTemplate = "goroutine-stacks-%s.log"
+
+// DumpStacks appends the runtime stack into file in dir and returns full path
+// to that file.
+func DumpStacks(dir string) (string, error) {
+	var (
+		buf       []byte
+		stackSize int
+	)
+	bufferLen := 16384
+	for stackSize == len(buf) {
+		buf = make([]byte, bufferLen)
+		stackSize = runtime.Stack(buf, true)
+		bufferLen *= 2
+	}
+	buf = buf[:stackSize]
+	var f *os.File
+	if dir != "" {
+		path := filepath.Join(dir, fmt.Sprintf(stacksLogNameTemplate, strings.Replace(time.Now().Format(time.RFC3339), ":", "", -1)))
+		var err error
+		f, err = os.OpenFile(path, os.O_CREATE|os.O_WRONLY, 0666)
+		if err != nil {
+			return "", errors.Wrap(err, "failed to open file to write the goroutine stacks")
+		}
+		defer f.Close()
+		defer f.Sync()
+	} else {
+		f = os.Stderr
+	}
+	if _, err := f.Write(buf); err != nil {
+		return "", errors.Wrap(err, "failed to write goroutine stacks")
+	}
+	return f.Name(), nil
+}

From d63bc6da4b4794547ca838ea96f618718cbd78bd Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Tue, 1 May 2018 12:29:57 +0200
Subject: [PATCH 40/69] set fixed index for resolvedEnv slice on environment
 replacement - will always be len 1

---
 pkg/commands/stopsignal.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/commands/stopsignal.go b/pkg/commands/stopsignal.go
index 85d70e6b46..65fb7d42fd 100644
--- a/pkg/commands/stopsignal.go
+++ b/pkg/commands/stopsignal.go
@@ -39,7 +39,7 @@ func (s *StopSignalCommand) ExecuteCommand(config *v1.Config) error {
 	if err != nil {
 		return err
 	}
-	stopsignal := resolvedEnvs[len(resolvedEnvs)-1]
+	stopsignal := resolvedEnvs[0]
 
 	// validate stopsignal
 	_, err = signal.ParseSignal(stopsignal)

From 36933a23d7e8b00e39966582f04eebd411435311 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Tue, 1 May 2018 13:33:28 -0400
Subject: [PATCH 41/69] Update to new structure tests

---
 integration_tests/integration_test_yaml.go | 29 ++++++----------------
 1 file changed, 8 insertions(+), 21 deletions(-)

diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index 98b871717f..d79ccc8764 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -26,6 +26,7 @@ const (
 	executorImage           = "executor-image"
 	dockerImage             = "gcr.io/cloud-builders/docker"
 	ubuntuImage             = "ubuntu"
+	structureTestImage      = "gcr.io/gcp-runtimes/container-structure-test"
 	testRepo                = "gcr.io/kaniko-test/"
 	dockerPrefix            = "docker-"
 	kanikoPrefix            = "kaniko-"
@@ -205,15 +206,6 @@ func main() {
 		Name: ubuntuImage,
 		Args: []string{"chmod", "+x", "container-diff-linux-amd64"},
 	}
-	structureTestsStep := step{
-		Name: "gcr.io/cloud-builders/gsutil",
-		Args: []string{"cp", "gs://container-structure-test/latest/container-structure-test", "."},
-	}
-	structureTestPermissions := step{
-		Name: ubuntuImage,
-		Args: []string{"chmod", "+x", "container-structure-test"},
-	}
-
 	GCSBucketTarBuildContext := step{
 		Name: ubuntuImage,
 		Args: []string{"tar", "-C", "/workspace/integration_tests/", "-zcvf", "/workspace/context.tar.gz", "."},
@@ -239,7 +231,7 @@ func main() {
 		Args: []string{"push", onbuildBaseImage},
 	}
 	y := testyaml{
-		Steps: []step{containerDiffStep, containerDiffPermissions, structureTestsStep, structureTestPermissions, GCSBucketTarBuildContext, uploadTarBuildContext, buildExecutorImage,
+		Steps: []step{containerDiffStep, containerDiffPermissions, GCSBucketTarBuildContext, uploadTarBuildContext, buildExecutorImage,
 			buildOnbuildImage, pushOnbuildBase},
 		Timeout: "1200s",
 	}
@@ -315,20 +307,15 @@ func main() {
 			Args: []string{"pull", kanikoImage},
 		}
 		// Run structure tests on the kaniko and docker image
-		args := "container-structure-test -image " + kanikoImage + " " + test.structureTestYamlPath
-		structureTest := step{
-			Name: ubuntuImage,
-			Args: []string{"sh", "-c", args},
-			Env:  []string{"PATH=/workspace:/bin"},
+		kanikoStructureTest := step{
+			Name: structureTestImage,
+			Args: []string{"test", "--image", kanikoImage, "--config", test.structureTestYamlPath},
 		}
-		args = "container-structure-test -image " + dockerImageTag + " " + test.structureTestYamlPath
 		dockerStructureTest := step{
-			Name: ubuntuImage,
-			Args: []string{"sh", "-c", args},
-			Env:  []string{"PATH=/workspace:/bin"},
+			Name: structureTestImage,
+			Args: []string{"test", "--image", dockerImageTag, "--config", test.structureTestYamlPath},
 		}
-
-		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, structureTest, dockerStructureTest)
+		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, kanikoStructureTest, dockerStructureTest)
 	}
 
 	d, _ := yaml.Marshal(&y)

From ac8a110593667d89a6c1db5f26ddde5c17bb8ebd Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Tue, 1 May 2018 13:34:19 -0400
Subject: [PATCH 42/69] Update integration tests to use new cst

---
 integration_tests/integration_test_yaml.go | 29 ++++++----------------
 1 file changed, 8 insertions(+), 21 deletions(-)

diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index 7c1d646070..d5f7dc2a21 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -26,6 +26,7 @@ const (
 	executorImage           = "executor-image"
 	dockerImage             = "gcr.io/cloud-builders/docker"
 	ubuntuImage             = "ubuntu"
+	structureTestImage      = "gcr.io/gcp-runtimes/container-structure-test"
 	testRepo                = "gcr.io/kaniko-test/"
 	dockerPrefix            = "docker-"
 	kanikoPrefix            = "kaniko-"
@@ -205,15 +206,6 @@ func main() {
 		Name: ubuntuImage,
 		Args: []string{"chmod", "+x", "container-diff-linux-amd64"},
 	}
-	structureTestsStep := step{
-		Name: "gcr.io/cloud-builders/gsutil",
-		Args: []string{"cp", "gs://container-structure-test/latest/container-structure-test", "."},
-	}
-	structureTestPermissions := step{
-		Name: ubuntuImage,
-		Args: []string{"chmod", "+x", "container-structure-test"},
-	}
-
 	GCSBucketTarBuildContext := step{
 		Name: ubuntuImage,
 		Args: []string{"tar", "-C", "/workspace/integration_tests/", "-zcvf", "/workspace/context.tar.gz", "."},
@@ -239,7 +231,7 @@ func main() {
 		Args: []string{"push", onbuildBaseImage},
 	}
 	y := testyaml{
-		Steps: []step{containerDiffStep, containerDiffPermissions, structureTestsStep, structureTestPermissions, GCSBucketTarBuildContext, uploadTarBuildContext, buildExecutorImage,
+		Steps: []step{containerDiffStep, containerDiffPermissions, GCSBucketTarBuildContext, uploadTarBuildContext, buildExecutorImage,
 			buildOnbuildImage, pushOnbuildBase},
 		Timeout: "1200s",
 	}
@@ -315,20 +307,15 @@ func main() {
 			Args: []string{"pull", kanikoImage},
 		}
 		// Run structure tests on the kaniko and docker image
-		args := "container-structure-test -image " + kanikoImage + " " + test.structureTestYamlPath
-		structureTest := step{
-			Name: ubuntuImage,
-			Args: []string{"sh", "-c", args},
-			Env:  []string{"PATH=/workspace:/bin"},
+		kanikoStructureTest := step{
+			Name: structureTestImage,
+			Args: []string{"test", "--image", kanikoImage, "--config", test.structureTestYamlPath},
 		}
-		args = "container-structure-test -image " + dockerImageTag + " " + test.structureTestYamlPath
 		dockerStructureTest := step{
-			Name: ubuntuImage,
-			Args: []string{"sh", "-c", args},
-			Env:  []string{"PATH=/workspace:/bin"},
+			Name: structureTestImage,
+			Args: []string{"test", "--image", dockerImageTag, "--config", test.structureTestYamlPath},
 		}
-
-		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, structureTest, dockerStructureTest)
+		y.Steps = append(y.Steps, dockerBuild, kaniko, pullKanikoImage, kanikoStructureTest, dockerStructureTest)
 	}
 
 	d, _ := yaml.Marshal(&y)

From e23003aff3f6f82aba82c57e8849999534c4d273 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Wed, 2 May 2018 08:16:38 +0200
Subject: [PATCH 43/69] Removed stopsignal from README as missing command

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index 54a086d400..a2c5b24f1b 100644
--- a/README.md
+++ b/README.md
@@ -35,7 +35,6 @@ After each command, we append a layer of changed files to the base image (if the
 The majority of Dockerfile commands can be executed with kaniko, but we're still working on supporting the following commands:
 
 * HEALTHCHECK
-* STOPSIGNAL
 * ARG
 
 Multi-Stage Dockerfiles are also unsupported currently, but will be ready soon.

From 1fca51e6be139e2e95ba7937387ec7734d8cef99 Mon Sep 17 00:00:00 2001
From: priyawadhwa <priyawadhwa@google.com>
Date: Wed, 2 May 2018 03:36:12 -0400
Subject: [PATCH 44/69] Update CreatedBy field in config history (#163)

---
 pkg/executor/executor.go | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index d3b2039b13..4fbef060ef 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -147,7 +147,8 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 				mutate.Addendum{
 					Layer: layer,
 					History: v1.History{
-						Author: constants.Author,
+						Author:    constants.Author,
+						CreatedBy: dockerCommand.CreatedBy(),
 					},
 				},
 			)

From c2516b4dcf5ffc2d7bc8b2ad4a0acc2789589234 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 2 May 2018 13:53:28 -0400
Subject: [PATCH 45/69] Use official version of docker-credential-gcr

---
 deploy/Dockerfile           |   5 ++++-
 files/docker-credential-gcr | Bin 5095875 -> 0 bytes
 2 files changed, 4 insertions(+), 1 deletion(-)
 delete mode 100755 files/docker-credential-gcr

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 227a184c74..1b93031bd4 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -18,11 +18,14 @@ FROM golang:1.10
 WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
 COPY . .
 RUN make
+WORKDIR /usr/local/bin
+ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz .
+RUN tar -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
 
 FROM scratch
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
+COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
-COPY files/docker-credential-gcr /usr/local/bin/
 COPY files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
diff --git a/files/docker-credential-gcr b/files/docker-credential-gcr
deleted file mode 100755
index cff5a9be1769a971ed92d62200c6aa4ad8e3f4fd..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 5095875
zcmeFa33yf2)i-`KT(~Il1O*8Sda0>~N^RnpDCi9Y+`$_NgBq1;R9+h^wowv9r5e09
zkmKQ4Yi%8BE!DPCU#-?5;G7U7Oe#ZFz*ccS*Nci1qb1+(xAr-AA_4oh|M%<nf6DWa
zbIu;uUVBY@?X~y4aZGq@c2<_p`<LxI-N&!|i^oV($j!JlS;QCemHK+&??JvCJbk`g
z{P)U*+&Ax8?bh?2zI@#vll}VD{ToVqzBRW{zP)E^J@)6jRp<L|ou=!#&r3f#LcYCc
zYCXd0YZ|S~H$~E);T-v%^<x(*7tV?AH%yayy7Yek2HX-&19Jb%_nrL~PZaR#B@+IJ
zFT^YVCt%JG>6YB_yfxFsn@;u6<9_*k#du@=Y%e8&UtMqeOL<<7JcDUpKHpXN)|kx5
zxbS#MxIQD9eWm^@#YbxYO&4A**-dW!+@n%U`+ULlPv0nfr`B(oqwBZK(ft?oNw1KJ
z_i#r2M{m~kAH7-EPp_@}N=-W_qkfxPzs;?G|EKOmxRrvbmGRyi{|SErhY30zEhUHk
zF)=gp9hASxKL_JAwSH*WT*(X#8!OL8?@N~DTQL38SAcKgB+>tBUEjA_*H@ph_2j=`
z@>Sl3;BRXE+UHs%z4kdJ&w>mz1|>E5=VH93kI>Cqqx+vVR6|B8`~v^k7yl7%{<|Fi
z6R=B){xj>dN_jbJO?qznXi_Tt=k-4r_zwpDgMt5G;6E7n4+j2&f&XCOKN$G`AqJ)?
ztM9jWbai#9(=N_8<{k!nSVguJDRX*ZP}%%rRTP%0<~Ad`8N=sSv9bcHc|}91GFPg|
z&aQ@!lodvqvXw^jy;3Gz7*b}qFrXrB0cGYEI<H~Tqb#--Sz6TLoN|7S+Y&NWXGNh{
z@qEb#BwbGLem<YkT2WXKZENi7lzFA&bJ#taMg<Lst<ZkoLT9G5Pe7A-?Ds;XJ3G%~
zZ(irh_AkHe7$3pH>vQu;@QU`F_19(lj02JMU^4foiQFe8*Ew#W-xpi4r>kqV_b+xJ
zM(lmy$&LiLd?KY_t1|vv<uh)tC=7N;scy?-RQYE6R-=84FRLAhE6`<GLE2;fyfHqe
zrnE09u{aPWE$ctTOFl>Bwvjf!Ge_?|x5a`9)N*mhN#LT$dF)(0-34qdltiF2>`=ci
z{(#%(|EPT~@SI6KwZCG(KifW+*v{uziW3`q!GC#b`xywaM`7|%Eet9LVeticAt?h1
z`OdvPw3(cMbbO4>Xdd7Q_gEp_pzg!Ny>mtn%{#6Afs)^`m$decxnE<X-SqK=k?%9k
zU11#8-q_2q7NU@GTw7!I^;e;Ku4Z>DRBW{bG1Jzqh4^dU%6D^B``i6WR+(!{Hnqol
zm#jBew#V{IHkvIgV&@*9@lmo|JvH<X=lt-uKWg-;l6JNDg-d_>%oU$b@+sqy<-}GB
zwRA&WxtyITXLmn4YH^}v!9Dv*X}&#^81Fd*9Qk3ABQx-`r+fT-uJLo3i=aQE6yE=B
zFhp_a96#k>gQ4pV28Q1EFqDR$nKhuDAZ2|4WqkqJr6{Upqh<k6zGMC!+JQL`=eeW+
z$QKAta)ooHn<pZtltQ8aB0kvR<f7O3Z5j0X&H5_?tX_ZM#<c#1xOsc^cYD8X`ZMNU
z3cAG@t2su+F)FrPqcxZj<-{wi61|*<!5^ZU*XcB)wQ}IL_Fx0}S8K3zvaD4gOKJ^e
zWp}M%i}`6(DojvEY$#x(x<d)S17~T(y}wq3*3(+4D6D0-sc9y(-<^NT6-g&5C!jiW
z#Z{~90muFLI85dgz)7i27a3<w1Y*!RK2O(zKni1SkpW3ZNpJgmcNS?PuoI%`iB69i
z^@Kn+5&_OVGpIJ50r?=ZCQMEmeHn8v+Bg1xFZlm|8TW%9?g96YUAYh3w;tFd?yVR1
z!hPwo?r|TyT5x~YLBM^~W$<NCcv(sF0rmoB$!HaomT$E7DP68GsRhREVolJVVE!UE
ze^H;y%F+u+zSfBOR-cSa=p)H@RVL`KkIE?G=7UqFfJv;wRN2PHLxdl!aRF7<ZrtA1
zLSv<*Exw)lP0CY!@g*NG0mx|M_IBe}ZA05zK)fkqOO&TLm-2WCP^kA@!D~O1%eK8v
zs`*u59Jk7=XdJi1xP1vbT{3iSYPV7!-Gl<{%j>k7Uj^tn(E#4NZ6S?6W}e-R?p79z
zT4H<(7}7c)?*{{E4f!QRR48eODU(8&%njDfcOu97wapyg;LPg_VfYK8C*5B7=KZbd
zsXsA=rlP+NaJJa!=x^ZvLVt%qRCxV8aA5c2Gv*HJLEbdCHCzG2LdZ|V+GSnCl}2l5
z;KE?TvE&8_RW1f7SQA2>UF8Ge^{G<aD+<!wcTsR*eO5|MwC{Yrum?%;;G9%RF*sdH
z&+px%q`0_!FG+FGlI|tNwkt(a{P+M!ij}UU5b{W;4`c3-p7Hl%&9(nmarmbPdcfgj
zP5Z#1>eV9-hqUd5!<B8_<M6TRg2Q9`0Ef#GI85VbW9~$azhKg)GFtPd->ZDl6-E>d
zgM{<y+|NJj&vV_+`|!EUAI4XfmG}GKDqr)8#&e*I55D|+P{#hpe>B#IufF>0N&VGJ
ze|74w>id;e+gwpMp*d0ed~pVxlMRXDS!c=~IZao2vhI66$0_ln>5&)fqz9Sws!sZm
zPWla#mLMs97eKfiunEVoo1oVXUz|Uk&2Ic>vP5Kg7Qi0CSIa*#nR2{NIU$)+q*I0^
zQ;v`n4_s$aZ{Ykk!8rsb?3d}#B{1foP_VETSUejh;9U2ap1&g6H9<8`_%I)Kn5d3@
z)GyX1?WyVYA%=^&itnd26+|-obz6hJ+S`Ek;BnjgXsd<?pR^MJF^nz98@%Le8>)0G
z4PI}wnlHV-Xdh<TbSxV&-eOh?>DuAKY7OtrZu^RjVbB%KAX<`TrAtf}lYlOC>{NW(
z)g|H-GOmW57h_DN9hvfAil*m!f>1{g>M)rb{s>Z}M`)Eh`Neo*z1e2;gT2T<ihpWA
zD??rb>!CxSt)g%i-$KfY7B-<gKlt8)cf3~Pb-sR`g4bL1YYkp+*RNA4p^I6omT$lc
zglbi;ALPaKkql*+afIrO7T$>p{HM%l;Q~G}ygCf8zJn>uWhv(HUrMfqk#my-F@Sd$
z#C*KEAoj<r3t|CYT@VL5FOAah1YM)r?arK^0f_S+0FV7NAx6CEPRIYu224MOJRS22
z++%Y6(-sQu;e50Gp;t9>g{XiJ*ipnqh;KpSC|__iEQc_$dSq!a)*>$M5=8?}r$FtM
za1>#iq5Vn#pq2n&GVuo-KV0L?AAdjta-h-bzv(UrxVDBcn}lN2#0{EpNlxY+Kqiq|
z;QZwbzYnE@C^H<-;g}d=nQ&rJy0o?fg4Oj@*kLqEa{HSU$X8`+XFwTs(^Z%xMq}ug
zy7dCD^~jDx8}I72ic6Il(4CwDUF`e7gy_Dq_8Bb{se6+<CL`xBdNRPMu5}<ZFIWhX
z8U!?@>?wuAX|`4K4RhPS&}qp6zR#9k_BE*X(*<QRsMyi2+b^9!Fc-V-;9MBd7X(?H
zYohL#_)20Fz8_5^T}{Pc@UEs({8d&<h>uSE@%h|Eq%-&{N_0%rvL@PA5T>$D#PSb<
z5tIh|(^*&`faL?*gGJ~ro5Qlc$Q-uY<ux^DM>eN?Fp8-ZdbIs_52o@4)li|(pXwYf
z_6o2%wmc<^CZKbmWF`0|oj#L8L?_iS_==TfwxJr9B}Q{EK!XylzuT%T?jlI3NfR-9
zch{j<G)I}MlzB7Xm2GWC6H$!)EZ|K(*mN{2io8F!AfQCqv$?FEUbvNPveg-0OqRP6
z{}l)z%<)!Z{;>q|kkPPR<5hrk@kQK$eXyeEbP?+*xq|t8=CT-sJ>4&-f0k$^R7_|V
zYiJtMpt<*Z9yA_vIbSuPqV2C}NkK0I=bXVeWc!?R8?#9Oz>Uw@UCPP;CDu-9mBgRy
z7o3MOm;#J#I!tAZy*_OUYKbSK)hr@PVFBf{IFgplVG1C~yZsVcHyCnc5BSFu5hU5)
z2oA!K_SVmoOvCxW!JipOsH~?*s$qMMP;A*3#!t^<vYGpOIk3?DhB5ak`JPHdHBceW
zhW2xdgVLNQw`(605X>ITIl5U=ra4D?qZ|Pa=!yfP2GkNvkf-x2m^c8hd4qsQWrXoq
zCMmrcBfKBUu>Q}?q8K=nRZ?1cL<Y-N&X!ghp-rU)@FQ1zp;DNKC!JFQTs52t*He&w
zDytg*Lu9UkglmVBugMAggdTm)6F?vP_1)@h{62|-^ATA(s{_px#24M_bfl+R{_}qi
z0S;UU*GU_`K|WvX3<#E6onNGt4x{rr_D7Yza>6mXp5T-;O%#LrrxpgCD?7N?GF#gr
z7*qq~k6nX#b7j9^8<L|YjDgq1#(|`)yr!Si*fr+817~7v2mUzcOcY!Dg}>+eVmBip
z!S0##_iF$S`U5hCV+Du*Xcle`YNKnCl!zJXn&Try;7wWm$javfu&Ya>y+AJ(n0-{K
zCDN+7?S_NW#aE&k>t}4jKEKPni!YH~S&fGntu1W;0rLePTPXj{T>w7Tn>YY0k)?qS
zXZP0_!&p~Zd;SvAcMjn(+aaDCZ-ioh<9@AAuhbLnD|sW{OLcXG%@wL_{ZA$;>%<Mp
zdcFyrg{`?%m6gnS<(d=1W$hv3w$4zrt8oZQ&?-?@t5`Y6hPM37xUC%kJ_hp0&*~^y
z5&yiTE53$bzK)W0aJ<~EtO2u+I}<{3jd9ae099E-8svL}5xH1@M~_9mby6cAW~Umq
zMzuS6s%*oIG0@Y?M8}*WC94Zm+3Utl-@%8`T0O06Wz()KW8UGC*F^ADS*H;>5Z@Xe
z4Tm#r0%u(8>0$~K&){+GU1upMh4yNIy6qP-M$ZQPV=}9;Au(I-RI9Qjjo7yEY#Xfq
ztC7_3u{Fm*BXA3(X4?LjRznJrX-P;SzKKay%C{g{8pICq@!C!bt7M~lzj+i3;w<8L
zP?>+wD&(PpbGfN;mfHu~`v5fVj;`TcCZj_nzmk$Ha0WqBMPkAMNnl-+6d)lXM0B};
zR}0{druf9hC*bw!dvAho^p&>0aN#qWA9B%LE5M9O0%JtyxmilGj!9-UURKg3GBsYQ
zaRyOUq~WxHyD1bD09*tZ)IDr=2ruje0-eNgmsAdcN0l`d6|*)eb1hAcSs>2Y4-@Bl
zp|bBc5BoAcNUrIHwZwldJE_+Uc28jwdo9~!%zczvY1k%ZJ)v#Tve%5cw<FDHtsfZL
zwk%{sFA%+T(kTnbquY$=DEYntXg`^PY!;Xb%-UXMZdPSG4SOY84qJU+uCji{PO7ZC
z$goxB(yFp0#=PJ0y=+6daa+fj=o^g}q7<1HrO31>a?RLecEiF-YtBLu6(Ihwxu$B^
zlC$i--=fZ}9M)E8=K`TZmO!nuhXsM7TF^;d#~8?vXHosmZ(99@%<8cVz^7qzS@>B0
z1>ZT-7dAU9!S-P*ukjdsSpzP^qY9=~<QmkRVC60u1Ham|@}?cxMsy7Zqs-eiO3fXr
z{nMPV<<CVk5FLJjJ=CQlALamgxs`ThAZ+Iz24QAI=A&i>gg7LexwCw|Q(3n0>fYtX
z)0=%)_lxYznc=su&5FOIx|TzZEei{Q0R_c)DFi-BqP|Kiw}fQo+yZ&*@>Sz8ocv-a
zAh3-KmE{rv)YL5Vl`!&(;`c(u88y`QsQ<}VxxRR35~I|WrGU;`?1s3`g(aVN_6o|4
z#1;w^A~<6z4G&S89z)-Y_L8lYbd_w2JqzA}eh+dMg^g#iXI9qi;_whbvW_x8k4=**
z-Yh%A#%a+hL=SlrBE3Vq@ehVvLnYJh^it*$)xNox8rDwMs#RIAZ~4UFt5w$Ld@7Z-
zm2ec7Yy)a@Rb&}l^luuGC_&i1><l~_uQ6IrRb5LE05Y?einQ;DZ#16%&^Kef7y&Q|
z`V$Qp%@m68zA%!N)fauk!pqv3oQxx7GAJm5<Zeg^7nA}R5B=lKn1q|oaVO#OFEI(P
zto<}@5e=mv?ND+P0P;Q&zfxe#4UsV;Tk45|I-;PC9nDIJwB17Cw5aZJc^&-!S0-xy
z7wt*@Z$sKPDAuTnm&n^kHtp<ZG}B{OvVwA=32(yk;bBXZH7i86kC4gnQ5?2<hs!#y
z{vO|zb%x5?qsn&AET}YhR1VvrhV2f6#g}p{+9`o_Wxf@EmxwDS#|RMGY^4k|M}Qm}
zXz(RyqL-*s42&2=A8s8HnVipfG}(O9&Ot_Vo{U?8G-P)^R9do4S<mWW96%FMbu9}I
zTdB%k{>h7B>{eD;fpFQXtB<X+eBrE4jAmv*mDyf3tUWxeBV4xf8tl_};3K`#+(7VQ
z?9o!JO^#u<W&@A|=rAmFO+!36kde^cnn*E_Q0hQH7c?G04vHeSHl_`e1fzJ)gfw2+
z^EI3EAS17oN(YIQWS;H!ADpuI>5I8@9=TA=&eD%_e6jn%WZ<Y&`a*nEg{H64RFx@!
zS7H|WsX4oN`of50qnOcp-higv0b|}K!9ABESeVTJ6Tc$6h8mHZ`DXi{{{3iBP3{_1
z)?v)Mm1*W01X8S5&;JIqd?RV9>~mw@Ovxd?pq1u1Ovdu0R-TX?c+&pQ&vFj)c50(O
zEARUj+^_bmeE5>bDKnJsa$LX5%<2Mbz!^F>*u1WBurd`;E-On0Rms{jp==>K%;iqo
z;eG;#4WCxL#UB@|Zzg~=TFVD6Y-)fY9EHipjBp{Jgs8>aza&JfZq^VfySf%o^-*SZ
ze(b+U&k$4Q8s`G(WO-~7lWhOj>xZLHh~mj>F=7yczy^6Cl0&QnCD=0iYpX&dVF0?c
z{1>q=l!PR@7DI=Igt6UMnG+#em&dk}G|*%0Fbw7swHO_0bepf0tW(>!k$ir@GPZx_
zABzMEyk38i7cutRDWn!8eOj49NCPo$=d!78*7!f9WF5_{vn0!TZ!4AsztJ?7v{t&a
ze?e=&C`KOQtOR6y{Di20b?VSxLXy|sy-a#Nq8D=KY-wU4h{RbGi4YpDvyID;JU>Zw
zzPLrBD;iI;st1D{P81^vFMX9&0~gX84SCo$n~4Pm%=`6?1C~V#7ott+d6t^9v<dI9
zO9y;^E-;QLig^oiAu88V4HPR|K?j8?7oY{K$5~4QV5z}a_cg;m2_jV(DDsc(&wS1^
zplkj+ohu%=?qaxXt#Q+Iq^CfA6l<V;(8;PNzzE$z2Tpb!iojdQIpJEal1ZzfVgQeK
zN>YS1av@htTCfHj*&?(W#1fW+YF;8{pC_QJgD9zVUGatGFAD{H){xjdsZ~Qht(O|E
zt}$zBqS@9-E07<yZ=%N_Y~S312EulAKFrGI0W57wj_SOLIsC_kr91&Qa5S5e6zoaE
zM=5)TiuO|0jOwsGxms+~8_;frHRMw1rM4h!|0sV9K{-_fNPU4a$AbJvS0_*g3LfJl
znG)%=$@`!;kXgZ@{0aioKIf!sw4*7ctQG=JX3`O#$0Fa#`wH{UseE4G6@Q|DY_)I{
zK&uh8@M7hymV%8lRA*CSeAYN3{>Ia-yg%vOqgCgq8mSMib_QLa?ae5R3DR$Z-hhje
zHm3+tneo4HJjJwbKt&>efJ~qB(18RTz{Y<ox&*~{GJf%9kE*QDV6s6aO2>|t*_utW
ztsMo|pdbas$smSGb9dPMu+m(n%&pEMWQ5I6!+3p2USD^9C(pNHe}KTSPWqskQ(Ob&
zUy3<t9Dpe-(Bm1ci2K-$B763P&9^Ge7tz&!N%arIrsJINwm1n-Wp0m6@rrgjXGqp7
zl_tU^oa1#lycNmY1{U5x)6fJbY6f%iq>&Atxf7c$`7l}Z_J#8?Vj*FCppkdw?R8=?
z<h&*yJBYYY>}b}p6l897&{$Mc0CBrY<tPx5D{_@J-?drjd%yWLl85KcN3||YiPVNM
zxwet)RV29RLNSkP2f(y)xi({t?Yxc8Yug&8+<bR65ymQx(<~(Gj)foj$`((R_{u!m
z9R_;swr!_Nc1AD?7u;BQH<ejb3qyz>IvTnaCg7P%?oa51Q_lBvf<4|9{8d#cf**c0
z#Jge(R@BA&H7Qw#GwT$cmB2>tM}b1y?@RX3c%Ik8vC@NVwn2E={wXDzb@NH{1rVNO
z-JpCG2?rd2C?S+ny;6D=Cwn`5kO<v6|08Ik7h#)=8p^PD4kWK<>_JfzSuhst8rUM>
z`JbXsIw~QL3P>@KEQfWi=iC-h;cvQ$;&3s!9r}Je<!nfqS}s^{xI@VVm8n%+4IKcS
zROdv*l_k}hb9Of9)M6p2U0y8B$2(~>prepeh&WL2s^rHXpoJOadnuy((0YPYC^7*j
z_CEoR<v$&;!6Z0X+5lk&k?M<m5ByGH5d>STMjWH$#s(qP`ECrz+5nF9baooPX2Ru~
zzF#M}(l)CHPe0cSl7Oj#FoAZRYKMrVkcTr^s2LxCUgJgz!T$_vB?U3}H~{DxfaU`9
zPr-x9LoX6iM0nah>;@hb(C`2-PSk<v@bujmJjUF4l(5~zV^RcHG0(LXLYy<_qW{(a
z)VPL17pSo_G#G!e42vJ8?4K>hYc!iw2XN$z2&~~8gFvgHE}=j+fZUlZCPnlSR3Ye~
zRT43@ILLB>xC`-uMOz@6Weq57BGo=6RJ*P*Pj$}WEC0n?Ko(Cj-f=c5;+ZZk={03S
zw}LXw<?*M9MNA_>fz%{80RhE^aJ2lLHwxJeAcexIUmj$;)HF1vNqME{ViLNL0`d3R
zP%vJQHr^s{ydZjvMl9kQWlzNXV94(ukQ{QuwN~EQ=n?CHAVxUVqw~xmmq?jzhujQ!
zmKYfFwFD5|A^uDDYxKCG3iP<2)Qa;C6eSvdO~6CSgjsf?JC#N8<CN9HX(LjKVFvJ>
z|5!})wip~I{#Y9vkPmH*FOlFC7XA#S^;&%ALDaGRZ~VGQSGE0Hr+7lL7u31P+UJtF
zOA@(`62W)z`(T}^874T06PTS&>fs;sh6&XK4`Kohx$6r844{JIkoANCo=N_LCfce_
zE61YoMs0-aW&J~1h1u>Cn&(coMFv>rn&JzQz}>QGw2Q3)eXhsc(Wb`!Z>CKxYS1|a
zHK@bblCVkx%yv*a+ISpxxUv<f0{rw!faP39Xg-cvUjMrITo~s_!=BwD`0<TLR*Ig7
zdtm|7A*rE*NzSg~cb;FL+64AiMAt(&!^7h0dTm@se4uOkUV%%e2w~UIs!(#iEIjE|
zfzo#oGG{6A)IsV9VeNs=21Cy$!W@UcoZ2JG#C`~p<WfLmtr6tq_0xtVw;w*)4+fXs
z59TYmDp1Z4>@Fi^pR0mCvo$YytAeFsHM%%5fu7FfszAZuAF_cHXg@7mgfPTsvb<~M
zo9>$7NhwlagLOd*pbXn8pEkSRFTF>T2$m1~S{2mM0aMGR0a`h$v^<&>w$2J+SrDos
zAzTHiiDf|;9fj@Mf-3uRy)5`H(!-{Lcd8t0JQ_H6(Ffk@ouzFHy)2-Mgv)|~$z{P2
zS7<I(;OX>b!O^lTc=I~FEFkK^>MX*4%C-0#P>sXoWLH~59%bn_8Y@!Q2A!j7qy~jr
zK4gMNHv|*woi^hadSWx@l~R;zgT4qA<$EpOeGD6Yk~Q~UCq$uJn1hi(a>p)p1u>Ay
zmB2CtPAbUf(IWozN&s7P%bkajAuE9m&VBOwx^uUbeJl1jtb__H?~Q8{OM%ic5WlHw
z0Z5e5q1er0;G<Ej1=!hn(h$}H%boFVn`7NJFVaO}=~u!f<MOUkB&9m_vfyy}cm?hB
zleaZ6@5AOBvA;mjIeQSisLb8m!Gq&tt9<Q1f!NICx?lnD?Yt^kTo<g8w>7cjSi;V`
z2LgrDHH*f$NG`-SHK7Uxj0i}AwLlVFdwdp?q2@e$oE}wg8eO*BoBcg1bawxa^x`%N
zT@cKuip+G5P5_o_`8oYxf#zQ7<n5rg))qgZkNpWd1R}0nUk9CZ4Ff1{=gyI=e7-j~
z;$1u=M)MEx>cY^YRN)#z<WXDWY5OY+K3gA7vCU;g@NMzwC$0QXPD-`%>0`>U@(V8m
zCt^{u>${i<SCNX9|AweSr{PT~yNf(4KdG>i`by$CeucTov|+`HJ`d^y0x8akg`1gZ
zGMb;2F9=~+OhZ1ONhx=2kQsL{!?SCwED}JFjFns(1i3VLL8|<tOM^i_pwRI=Ue2l8
zk_K2v3=z;yFlA}b2hpQoUfNQj_yZv69lc=5h|AF`4+^$W168RQ>6&&HeThJXqeKLh
zLlsV>DqNy+ARsXY41FD!F%vPOsnk(3&_)AyYp4~`hSTDDU||66LnSf~>*Clm!qZ}p
zo`;qa+Kxun>26B}1imzWv-9v@F^vi}yctZJznQR+GS?rFG1`351El!^>?PcXt8spm
zJ7ht`fkO5ruv&qR;`gQ6GoX)|r|)eZCECYmFnDR-*|tr$T9AHZ!TID3wEB<-JD&sv
zq}A5Y$6NGtP*UWBfZX%0Za((E-9wXU1=7ZE%!PSP`o%mBcjG~@*rR72OdNfHnb!Gm
z5?l?gexsqj!t#%3Ak|)9Fb1M!l<FK^z>bwU2p%Yb!Du}{5PhRz5Z1IMZO>DGZ8iS<
zcpYAh+dGhPKW!6C54wvW+ym5gH$zg*SCqNI`Ki2aM`APH;*VQHUYfz~t_ncS1%$h^
zU?iKA)|cwC&IK%K5(gR-uVv@4O_=&T5M?U*R$Kn7>y_`@ThHh+5IeN{$BZ;@`1Z&J
zy|R6cM=U11NZz884~T5dYVm)B4<5JqYUCOg>Me!h8&M@E@wIB?W_%&yIo_VuTLwKC
zbNyOg)X-#x`yYSeen(+Rh$sL%@0hEU?`aojh@U3D-m&}xkV<n`2YA5)6veFET5}}u
zj#;|p*D?Vx6W6kB;6WilzpyE1CC<W<YU)tUU&At1Li6~CJT(@`2f;%{i8Dx%Dz)-q
zZMIh=FKD5jc`#PFkA^p}YqYS5h42w_M#1wbqqrCd)=}iunBy8OL2j*eft@!Q^AS52
zf1E=$VtU?8;Y^J<5Mz+Y!Qu^nfSh9oxyU&H&1ND8aX|OKjuFrXQTEjAEH!7h153)V
z?<ZU%<vk*FY$F=ZK558ej(6%ZG(Th*-VwKG<K)SlJuG?6b;>`8J7U{6P~+oo`;IeI
z`v*B{=rU#Jo`67|8xW<T#e-&F)&5QnDLUUdfhLFL?=Rp`1=tk<2y%Z85(F*dKt~!a
z`pBm;cf}u5UH*?=8|#bz&B+-qi>&#_@{uH>B){4fg^peyiQ9F~7Hv&Dq+N+vA8{SP
z`KrNFzi{G8+G0)o#vDOjU6rrQ6ARtY^MJA&xb|=8cEat&8W*s#cBt)dsrIfjDiK@4
z0T11UVBCHM9C&efnCy$oPG-m%c?4s*q$@9kdrEtO%34D!V*%jc{`Sv=cFWfMq|BS4
zv49k7@dCIe>}r&l$~qkkHko%kv)oyoOV4sF$dt}GY=r-mHAj<I8-llB+Xx!wEG2eC
z@>Qo60v5n_{?~RKEf}fCq0f~kbKjg1GYBxQe<mPJ_CJKUnZ>PwgBb+h#8lgVi<EVJ
zwYHmV<${{@mIcVk@?srox$BR1@oXdZ>p&fUdQ!6+!ytft0)w3H*bRBL%)^QwoQ4&U
z%qX|(ea?o#M6zq*bvAMI{1@8;ZgS2VCUo?Kemsnj_t@f;HG7ht#D4h=>ZP+BMp<-+
zhSD+aLhhyhqAMVT0Sg2~USG+>+W6;pBM&oO1Z8w%f4+gVL_CmrBRJDc9gJ|g<qhwk
z%|Y=LLkrFppL2DSUJDhO{?~t~d`|Wp{his26GNnUtil!K8SoDzEoAt|{J!~s-^%;U
z!h=h>*EvYQR#dVs-WxF(`J5R<7TLdNh6P=9RY2A}s%*~<Zy}N<_cVm$jBNai5I9Yo
zQZh-9LNX*42Sy9N;T&RnDc?Eei(IG;OeF5#I8-Br#uLR7#3dF}P*A8Mlz@yNkaErG
zvh}i3ZQrQccb=h!E*FzUWi4mBb?mvG=7sj+xC{#t@=~1j$8es3*{R=7F@_H%W(&>`
z68Q6a;B9q=giS_*Xc?2lryVV<1(LOhIhAYfIa`F)%!hD97M~C?@&x5kCBRq%)?gT{
zXzcqGx4^(l%ihN<TiEh|Q5(Hh3dwG$(Y#m+JX@%rC!KB4^^}PJ&K7s|l}Nh1a5+n2
zk+g<SIf7UXlDNIlanrZz^dcPu6fF#}8<fxI(+w9_7>x8Ja|8~`hf7H~sDLj{>uN2g
zf<$@|8NAqSrBr}+M>=OI5zxVC^%^J-UpmlLIELT`twZp@{{!;yCXTTI)o6IWy8+_`
zoWO=f)H2f-%5bz-Ckb|fuJ(pG`yYeZs&O$So1iqj6S(o06sGzqNHe5289)#eHRp5k
zDp?y)6!YdtXTU2OVbw&KBK#U*(ZcQ!=A671r1x8jou289_VFd)-4N*j>XLtwApYg=
z8V2o3F$f|!2t89=;!Ol+(E0UC8ZL~L-cjU&FS&INM$wT^&Vy@UL$`PuH4`4T6-cxy
zvL~2YCdnU!_tXqoiOQH{*j{6P#6=ZlAmBiIGynihh;V3W=zNQCJeq6|5`MX6wpwrx
zm`xMxL*nNnvpp(<juy7@Ndu4@&6dhX<6-dHx{XDcC3g+QNFdEPv_-aKi;40`umW_!
z+m8V6smdzH9QQBOS1<rdz33*$7`S#%I0qtRhss6MCv6?q<BH(~obO`O!KsrXE`W2E
z5^nH_zr2$G=^6qvYf$fNz|e_vVJcuj0tS(3G=I<=1FI+ukGyiqVUHX0M#9lLa(?!=
zuQleuU*;RR`^Ni@Gv>_zD~^1zSJxp%^LR3;owxPtqXFve8bOG1Xy&aeUWZ2OAS3z(
zK$Gf?*!=MO0>>aWXpPbQ7bN2VdX^Ct4IoIwv^fTZC1(*>atH09hS+enB8(Nyj9*RC
z#5lnn6h1y@V0d3R+j*8$yC}69hUIfMGXv;t!-t1BjVq%1c%u66=rVRI!1|mf!z|}Y
zd;@a4A^~*w@E8=@z(QA`5Y$Ah2r|57YT*gaD5R1IPG~{70W9|@%Z-*X>PdM99s6Rh
zB1Mqoq0Ymp9NQgv(WuieGnxf1JMXz8fWlOi>kF)Ob3l2+m3rcuA7D4OKQBvA-Z&oj
z1!UoWWv<aYA6Z{;IHmX-E*#<9S)T1fo+O;#CIget5nmYcNo-6x69f1Z1!FfstWY1G
zyCVKL23q2rhg1%<#At0J8lA-~+rhHupsY74Jy-_l3W#2^H=3AYPS>x__@yxqUV7ii
z<Lr{TM)RLIH+Ek0kc@FhneNfHHK<{NuG;(vd&K#d{(9Uc%E~gD?`9%Mss)vt2Vul<
z*7+ge4#M_|)1TlzfW-&7$rp!BeUDhO&h>8bTfO3&#-jN9NR7>s=)KgbZ1l#E1WmI?
z>=NdzKYhugM)Oj(WamAWn=zz&nC=dV)79`_njf3rU_Z7$s|)N_wx)3`2(X+NIP@`^
z+mM9`gF9LXwANV-+d~MH3Au&xS}S=0=T;Kov4s42#tq=UrE}Zj&j=}0I6p^4ne_^H
z)-jQ<fMA_n$cWjf;K4>Jr==p$d5MW>tYXecXWSZNo<)gq+w0?=Gv>8nY$LPFAAZJY
z{*@m72?wVQpQj5nCNY_nx>oZ$?A7)M2J6W@RwnZ$CPK8;Ih#-COp3JzU`KIuRRnf3
zJf3<Q*TQxTIg3#a#X{;*O`k=a!J}BR6(zlXg+AjE>Do(6jH;faI;O4H>ID2>^y>kB
za^YBwf##ul0P_yh11KUf<{=H>D`%(%O9>H1A=90oA|>{%1oZ2{UdKDTMr!stUK!78
z`0F^*OIdas9Hbts8vdyC?4>2(XE5r>C#H67Hs-z0sW|wW#jk>T^i<RhN*jvN{7a^%
zFxL-s)#gb=m+dbt(8H;KLW6=qxNaFUFeoVhdkPnzwo?J9$z}ZD069;{r6{?a=>Hw^
zW2XRonJ5kWBAWX3P9Lf2ZHiqn8l`8lbf3(@%C3iimIT&iw`z{}<)&A+7|mZ20y{5a
zWDIg8)7?QDi=eE2j)aj54*LAl#(wZl{9FdPzVTY*LAva^YVvlYc_Klu{o4=H2+-1H
z1QQ`$no!>fkI>`hhfM4<gufN3u}WN9=t`H%Fwm2oAX1G*6@@1oi}b|aNPfGSWrv`w
zOOPykqVwfxy6lO{ctIDwgbjb6g}2J#z*IS;BSLgaf(C-XiLypPx%PEU5Lg{aJqvq8
zTg6Tb`r_OzbjQH=JLR3z_aG_teH4k!Lch)hEQ})vo!`~-Or;E8j?cM?<(^}?YL>fy
z8BEd};AizL!EV++Awnoy&~Kv&m}DVH5M@53ja-;y+SrX2>U1#uOIx)42{IHT3WNsp
zEa1HVg-*v{#R_ySEG@)c_ZwZmMa~slwB?93Q=2h=0Q<ES@H7ST0yfROuVE@6;5?h>
zdGZ)a&o*KUn2NI>^KO+F2)lWFK_uI-<qAP}uI~z~%E+D^#G-oj>R8JCFcys{zHCm{
zaYdjjBtwPv${z6@qZxQZOSE7S<BxSg2zy^@`zF=C3(M5?%I<pvXG*KDl%WiB7Q|DB
zavyPLD+xB?Pzb&DlEliHg<~-DO5_Ej)C)?TU12QBEx4?F&W>Tn8O?`E35>6c1Ykd_
ziNZeViD=pa@(!%PxfTn9REVH32#d7NP<XheqJ?d&4&kstp3%b1d=6V#nKHDsDr+N0
zwgXwL;$zpSB8y&pb1j%$p?Ks8a-$(AL7;po;8NH*`}vf0Nsz5-0(J!w!q8^B#<HDC
z+c#W~E&wuYcA*#-z0PH_*mvF<2qrwx*&vT3DE`auNnOt!$Dx5~L3=R#o$J~(C|G&Q
zTGwmy^W)f<vY`q@K;ohje`+&_uo<9JPqe%23Xz_J&e3k0vcSNy%Om@HrA_CQOaRZ7
zux<}kB?2J5jsoDu7gBJQ(%3}Z*hhzYaMrnS{wcRRI5lsj!+ApwO>g_IAo8b6AQN^$
zA0}l&%K9u?=+KB2d2k<j0xnk}3HTWKgglTZ?#5u>{71XApC{5V*HRqF!6bX&X=<T_
z5^CX#^ZEqMI6)P`NwE35gwV8?g{_k8x!gwU%D!=Pir?hNA8WGbJV^&u-XZ6~SqC97
zlH_YdX5;T-0FOpo8nkcM?i+8_!x@Dj2I9Cyn&mv`F7=BTB+|s1kVPOKc)=KC^BGcF
z<`-fi=Z)6kD@IMe;gf43K80`4tMInzk{zcUy@5J)ZzI?nT&*Dvk}ai-E`XSSaj+!V
z{)x;Y?|+&^z(UrBLR}+IcRdV|<FWigz(q&Wqw<_zxLBU|6t)pwY(R5JEz!c|Or{^1
zPxz7XfFBv`ju-xO=U7@nGHdf6aMEo}%#5%;rlh%TX1<=68BliMEL2@AlmIMo`eG8V
zu>ZcWMb5tV0@Hc^1rT%@RvQU|PSP{|7ni|*0S=oE&j9=_;9fF6cJdA(E!J=tbXXL@
zeanka#EF4<!wdLc{2Jon@Z8qUkyReuf_!R{Rh^RoM?6X(()*u|{)^aukp1J2|LdhG
zdRu&RhkZmdK{^UUMBs!0j>yrmEGh}$flK62ufKTZ7{HrX!bdkHoJSD|9lIVnJ%NqY
zt7Sog#S507`SkOo!Dr0H{Sfpgr@)9SLSmEUijd}enQ8g&Iu{%!I58e+Cv%j_{>Ie8
z;@FeGAcBbk3?{PA%GZwq2`xG>T(Z3Ksqz6^uf26k=|`2U+TM0#<<oZ^vgwz3_aAi(
zQkIm<?!$Pi@bGZS2T1r_wJ$re^4Ztd&D`<uEw4n7@@4sR`RHT3b>gw%lI=+NTD5l`
zS^50Ww~d^3{gPMSK+2x-7Yd}vh|{V{c2pUUEUQFEc(%j!y;(&%fWMtVBQk}?PRUkP
zvLlTBDf-D@;QU8+<{CHEg1Yb)Fy<bv-w>6zPUi+^9))x5zdi>zAb{4$yY=fX99F#p
zuVIV>d$jgskocSMoDSNm?C_u+$~r=oY*5d52tZ|QuXP-$7JCRlN{2cjTRojp1Sc@t
zj#SU27wIk01<a5dS!th$Z*F&n$Su1b+K|7T@eJ*;Ak#rcilhoOkc`YtE_?^8k~RD9
zJgv9*t#0+Nu}f642Ddr3zl}a{1#ik2WS-SiDPw5Ym)Dpp)!LY{PdpI2Ohna`!w^|O
zEE%nR4?;@;v}Cj%fVcc_(q@*J*TN{!IAEYsG6f7%8lZT~cWQa%4nD;wO~HXP?-?-4
z=UB=!zQF&~6iwd&j0e<>U7y^W2!M<Yw-@hoY%ZoT1HeMJGk_8R!Sk^a9_)mvTy6~J
zoi1HVpM6)V69WHqXENQ1&cN@|A1+$x)3hu9>dV3XgWc<$FDSMi4}#dOXXJY4XZT)j
zZf*adUq#8Xa&t$?_V!PDm+Yx9JImXh{PL2m6=p<kc^>zf>`JeHr)g(!&>KTHb*(J7
z2bVT)YCOPLqz>q6zsytzbfmnd2&28_&x>0A)KW%b%YlC&Y3dL?1BrcJ5fvw*_z;_M
zy~rZOW!TqY3kFB*e~1KHyY*wx*OW^0^Ko{=K|650OV~Q1irX<f-GF;5CLx#r0a^#L
zekTPkNMd3U&sklJEH=lJRh!B7Zb(O1uK}><_X6!9_JMtwkiPS`$%sD4vI!^&+yqGh
z$Y2Y8e<i(C;#;l~83!*p@98`~Y>&>WEL(nKy|T~3Uir9ymG{?)1Y*RS*i{<kDxSV?
zBD!`84Uk!oCx`5a_O=E*iDC#V8lX&r#&wf);N8{(W_K#yfd+anaoph~eDXjy#DKXr
z{s^rQ1?@9_PZ5%7y(Z5KL+LOmH0Z4TNt#_Mg5H`<Yx&%KYrqK_f<u+r8$0=O`_VGN
zjU0z?mcEVtKR_4pKO8MxI7<-Z#R7FW=3Im^<b766K0~A~#tM^YpbKn$Y%S5OPj~(V
z%>Zbe7KVTQ+VAL=W}zj^|Cm&VR)+q@rsEXuJ&gm3#c{DVHe2RO&SoulPG&PK5`RmO
z8ha4A2%<Rx>9N7m9iwgxetrz|!8&OQT0aXnnBz1Sj+~Clk8MM;^T}ou*g|inM+M3R
zU3>_KO_(DQGKj5W(GwP-=n;6^2ffREZIDLODP-i2f5c4p{OZrqCfGB1`#ReWSaR*U
zb*J#?o#avTwf1-Vm3(f#S+c(UquwQ(%rDwM$uD`$d{me-_XM*X2Ux?9_7M5`5cvfi
z&Yi6Q&AqQJL;p(*O~w_1I)u$YoCu>Sh(^tVr{eoxAV5ahgL|9j_r(E?Y(#@cb_9%D
zHiDd=LF+!X{#~^;4jplUvIjqo>tl>N5ERt-dds*zIC~1x=WPiXn0v<uKC4@3r(t$N
z%7lO7VVDAzf8Kaf8dsD6zJQ!mjTo+c5DsYOEXa>_jeck{%@+_f{?}%@q?U&hUAUjp
zt&dvQg2Fh__W7)i*a&htcbY&WV1oE!I18Lk1WzJLRx+HY@j*^p?mWu3+e+Sul~GlZ
z$26dp8*abgc5;Z25%OXSgo1U*U<fydz?Cs{#$Z6V_y?m=E_W;U@PGP4q24vIX?&)f
zNnY!oNnVNL*AF~_2|pMG_Okc<6oct|kQfc-7u#*JK5&l(JcQZ6r3is-?byJ05+6jT
z!Zqkv7+nAg=Dh>fAyz$Tt%3NLxSA6Sm33;D91#TO;UmWpcQDgRbE5>tsr8T#<AI1(
zYAEc;2HXO<=!Pk<R&cWhykt4!@~aT%_g%yzj0==+YY!OFBiQlK4iwp42^|y7DK}b2
zly<!mYU;`{B0ESh?M~^4+!;Bzc^;vJN5-CG8loK{y8=c8k--?m-~&oGG{$A=ZM0rk
zjm9<^tv5`B6?9+#mm)PFgavw^Qz|!UO$CLS46+ouI-qMUw_5TU=)jjFIWFLU=ZQFi
z_-(AJfGP~OdJ;)3$R3p4cNMNWnaq;K=;{F6OVog4WRUudivS7h-CD}JEykh?ry!b(
zM&p6B|Am2zOV-6sBHh^jJ85xd*4r5KF?Ve|wuzKr`>*b%6mH2FN8bS?KK+D4fe`1T
zA>s>&JO&zhbKmmHnA?9J^s+?A0>POurCafypqHhR@&6&ckXA@Dne<Y`j(en+Z02Ur
z%aT-j`QyJCy$tl|1+IfSn2V`I^I?xf!?Woihf8T%l4w{N?3=8-F}95q1Ik&WDW|lj
zqPBmu$|RrvK3vGB;!%(f@1IIncbV(U?ZkOx3v7t#kkHV1A@U1O%R}Di+k`azJnoWA
zb*hK~pQVYITE_CFi<p}Ih?r_m#H5nU@Dvdv;dVkYZ&lhO3Zl42sC95b*Q%!7kT7y9
zN(RNOPNkT~zd6M~o<PEIx#Ef$j3yywj_-PHZ!uGv5Hr<rn^hrV_912vQWEY*F@rlc
zK`iVJeL~@h{YuP7mMX0OmdD@emUc=ZaCmDdB}E;^CH}g4c>(cwwRgtiF7fb=>wT4V
zhT>-@#CS?2k)-_rN9+#mY@F#wXLGi+uut=$!X`d#_vyKlNHDlGGbv;OtOV~D{Ya@q
zQ=3LKPZTa-emdO%BbWv49t8aaBCB#+aDKr$4^|lhMtMMC5aeELIN~xYyOvanGPwy9
z8qFCC>NsS)U3f@E>4t{Wcs<vfkbjLEK~Wc0SDCNE?XVv2GbiEYs|ohtH!ICItL%!y
z0#$bSa9q#zMV0wc*nB&_kc*5WUeOSe%NjUUHM$XK54>D9vC^J;cwkKQJu0Zfsc{u)
z0K>!CIRLN61#cB{kdQ(_r6eWXW_7!E#6cy^^0q)2oQLa&<U%EM$n{e-ueA!r`g7)8
zuPVswT$o#zq>@_^v>Nw9R+1>OE`dh#dSD3rwvJpQir?Y#Mc&=raz1`gA~YG4c(@2K
zcjv%zXLQa|PP7o>yK(@+#2^3zWQ3?(Z)h;zoC{$Tdr-x$1c=xxIR}fqH^$jh4}rQo
zoMHNTM8T{vAm2$ON$Y$G$7}u`RTq9xqN@YwoYY4}aM#W)c}T1@S67&8%b&x9`YPAI
zU%B?<33kJkz6tj9Cw<|vxR{&`GlXU^Ndcz}9w?V{6Eu@))?C;{y<=UCuCbbY7EOC7
zcLmT}DhCG(5M`YvPL3&AF{Y$#Ov#E^DF$aOI{$#CoyJW6QwBhbyls@rO1pghJC{|I
ztv4c<qfAxvd-`ffmv*KVLIjSV2v2o0tVyuP_{o?$kjmI%W#$%=xG+)PzA(Ka2f)O2
zDFh_Y0#V_5Y<b^;=T;|4aGj)y(;8dK#+*-0j%zl~^YkV{uzVdd8tYOXTEnW)-DVS_
z5;vst2qH4$IH)EPNCV{jx7$X2qK%ECq>b-L8y?Z>eLtbiu!TWZnr#Af>@Xm~Ifo77
z_L%;9B^w3-<U7B`mE|l8|0C=jZ_}@JY&96LkPNsKbeX~#v8OOV5JSluAct5$f5d)8
z8bW)JzTPGVS|cGaHQ%{DNev#XC>+a^Y7JcNdN|~5T39ST4RW{qUzY1730JR2Bv5YR
zmJA>=A&n%4kQj#8UhdSd<0@9qPW*M~^f$gtaUKuAbUQ;}ph;A0+g@4OUe?CiB1k|C
z!uEf1D0dNo4JWs+sPUiRM<-%+h$ir4bW%P`ytEH24gC$1*gL;Lc<V%e|4tZ8>+d`9
zp0NMqzC>_zZK_-jrOD+6_*Bw`GRoH_g>m<4oy!K7yFU{a!=-S>q8VI6yi5h3&Rj>v
z#H#38hJ_SX19zhamJcPN(jAQ-Nqn=>dOeo|dmtZ1b3I^Sim?YUCJJ3MP1-NxXaPAz
zZsJZ6-cZIHEJ#dT7#z+QSr{k^M^FI3Qdk`X<2SKdt<gGhViaznw=iRz+){dU-aSJ*
zru2<C2nZx}6DPCWE%JUI)csYH$W1|bxwm3L{3aV!mF8z~3!M;%u4_1xZk4;)(2B<6
zRi`vEdReYMsamISsM?#8Xcop3d3$#YW0*OW5gb&32PBU{ns5@9gWNS`D02jUFHsyE
z=$Q<t;{T0_gjTs=;I@t?Bgz|J1uUI;3z}K>3dm?A(&1YxhCYyj&BG-jTL_Mb)I#Ji
zk?BB7tS|G;S7LX7cVrsvh7t(%gA!{Xh5HZB5XM>)J6;OQ%3D@oRE1`OGpQ`z#sOq@
zQ$(bLr7#t-jj&LY0|p1&`B^3lZNedHVWFSwmGy#TIW@n>=-w4~ai)Fy0(l_q2oL)$
zhKB+7L_zuB92X9zc`>o146I^t|IbKB19&9h5G<g=s1a6bpvg7^T4HhmNODx4ik8vi
za0KlsT{wtX5**1!_-K%&&Cy7h8G^0BJ4l-vYN36K!uF^l@s2(w<a;$xak6~ZxZh~*
zhq^f+sF$>M0<+A~_`bRb*=Ol&(8Jh(<oD6}rH~9s=aluR_>LFT>0~ZW`i|izHuqGN
z&}ZD64>*+Jo!X<lQ!=KkWg`aTN>z|}dV|tPh1J9sE6gU{<j(dF`<0jMgcEv9$@22{
zSZ_Yeo$a6Iqj6JuFSm2caBt<2xSA4<gFXpQL)XhZ#bnL^hQ{?#>z$^ZAvI{58oE_Q
zHurA9HA@!Gvg4{H02NS?C4tE1oDn$<0okA28UWD_hQ0%o$=Nfv#((Ynbv0<=Gti{7
zj&Gf$PTRljXGa5vjE}jAHAJFor{~wFQSL)~B%Gc&mraH7BcW^f>(@9fXo+_DyVR7h
zLH%b=bKOxlpgGIGSlWPb1l@t(#v*-*=abD0WHXQ{pqk~*8ElC8@pqgP2;L?kf3Sp8
zh)-P4>bhAEl^$P?{Q~*UwfCW9A>OD1lJXx))3wjX?#n)Z*0sPdDll4S1VD;#80~`L
zOl?`KESyn-hX_XISlFEt@H`hpdJ!yNm~0^OADk7oeq2*!g~SJ47rPDmro3w@j;fb8
zeGQ>~HNT_TD0z(<ll8$Eb9;H@gWh3t!<jI|kB9x;u(rHucUHry^2mq1Vf?@b-;Eu)
zondn&>WrT_!Ja)3Ml?JWIIV{(bd8FZX@%bl10>kp+T^~0wmKGneOHa+0*Wd?RYv~a
zWklZxpP`k>@J1~O7|pNg&vVWhLm|!Wg-R>m8Vzp^6l&O{6)V5?r!iu*P8dgz8ho0Y
zaTTpPic>3s2`7YxlSXDG6a~-%rAl#HO5?m9odU{A^Cf);A?PK<3iVu?Hto)C=)=`%
z^GRe(<bi}|oD+&-PeelRK)5Vi>xx|rl0(XOF4;;-;cgiE2||N6o}2-N!i}F?PIU`S
z7*eb_Rts{o1{_mHqIPHAz9;~H>cz4zFabgjgHYy#YGqA;^r7Wf*4}WCmG?!dsHtO=
zd1et6=J&eVTFyL+B|yz*)~LOf2RljDvz#mB=G<4}tDKAFZ3i8#`o76(Nq9YudtYgj
zxLO*+#Z+L(fF-G=d5<?x75f_pkaw8|20#)$SSfMX%0wCQT2{h_<{W_%;2gAuoPy%m
zDGETEW47_Tbmr@^Lqs1fcUCQj2K_|J#$Qb!1pw7Jk0J|uCGkI20yGi`Ne)nfN<7=)
zDzApodeJ!hEKCr#)ww&mJ`RCZHK;8-w1d;3=O3%jzP|Fv+gZ4KwLva2*&hw*S$mKH
z&E{vZ$3z@}FB3Cd6Dvhp*o?(~iD#9$GsfU&tg>cK!J_E+9aYw$V@lquf;#I@;1OB|
zD&X3+K6U{Lf}KNExX9%oQ0%#t<csDNLO_$@n*)>l0UyZv!8rW6qR*I8goiTfGi?2!
z05?HTFYJTA(+a^~O9KtFD$H0pS58=zy;s?_x@zcZ!11Fg;Li6a*eCWckM;u7_wQeh
z4acTkIWt1Yh=p^098{fcn2WB;u6FXAUNcp$e}`}lTy|z<7S~ws;jU;by>Xdd>_n8s
zt@&}R!<Sc?U&TAiyIzV%yslDPj6Y=MjX0T8e=f!Mp%Mv$bx!(17UoYUVl6=v&I@>A
z$I13zIWfg;b~J|MGz7%n&igfF?VUZ_+p=;@i&-&Ru@;kcpj!Wqc(I!pv2c~k{H3^G
zAQWl;n$9$cnh#YL{O>1Mn)peoN4DdfudfMqWn?f*&)KsBGSHZ}fhFzny%8Xgqvq_K
zgHIze0wuzBo?SfJHwsjS<?_zaM&xLndhYR~edWfYzLos3fT)cM@VpvPTxN@5FUJmJ
z$-2tzTPbh~@Ea&01yUF3<NRngN`QPt@*$6I^Rl%K<4ESE#-a<RsIC<Nbd}0#R|uWJ
zRwusbJkPNPEIE+|awE10vEf*u-2-4)FI>l&^dgY`KDLqG1^~+3A=hmw`<5F?>@XED
zw4DHO#)TNx$>k}-nh{1yw8R~f93Vk8Ul5>{ea1+o&$KthzNPC(q|JHTw;88!b+`e*
zhQ^Nd0}VNU{uEdF9_Xz6L>?XbG5lAU;A0?U+yzxqpUQgbJJ1^4`9pE8uxkm7b>JO4
z7q`3(ymz}Hw#m3-3AN9kQJ`fCy*#{U5xzd7wWd!N1K1&7xZP#Kd|4pu4oReNT@aCv
zKL|v_we<mWd*p+!L)$vD8ge2pQ@w`z;7_>lm@!$)D_TN*LM`<H>!dSIAo0%<6ZJ^+
zNGVr@ODPI?DX(`;*kzp|xl9aKINCS@i2Vx)%@SCh4WTgO)$MBoq?YFXXaM$Q{CMRP
zyOQD7%H&B@Z7Hoo2DTEKf5vpZmZ5iND26DlLLRFkUcL556y$}yAdZ8S38x)sBIG(Z
zH#nztfGoDq`hXmjWAgqT=ey?A_pYTmbvf%}Bnfj08Uq{2h>QhxisN_65{>56R)k9u
zZ8dQ)9&g@xiwU^qXBwtoEUB%|YBz}|wHb&EVlQ$QNg}RzSmQh-uUlg;gCw{Zi>wG>
z4HgUG6Ar5qJRmM2TT&J!hhqHBm|PJTZ{7)NdJ5C%EzeWzGodH(nP#j%pivp{0g8ZI
zF2G;BkXyp(Y=)s?u1%Q8_Bqfu4WQ_uuhB@$cP0?^7(p>~DLh&0($_9H;|WRwx`hZl
z7C#(y;v2eF#_x2B3GD?yL;~6jdvcBT_qvx3a}7X$??OIp{S*-kWiF?`7*xpt@_8o<
zA-J(k3ePBD;PYa<OY}z=8hklEpb=Jva}I(%L~6bOdZi;^MCZbMH9spCeyUvmE>zCY
z@~+jeFLR8W9)YF0&pyNUw8A<%l+aNvb<sQFoJ;e=CQ_@godLCu3un<}UG)Te+7^8N
zuCNJ^p!-Wjtznx3U9^C+X!3?)_+ejcP`05)eKr2fnpBnbRaMs4vJY-=hI~fiiCJT!
z+Zub9V<n#zUsv9=2l5^ZY-Y`xI3^0q^bs*;e**M@+z1SA`^A}E0;9qv{m0(m`2$QP
zT^064*<)G;XCdRQ%E<0)BQgu^RkpwDCsd{5tnlD^iGPdU0xsoeT{O$wKF(@j`Ukx$
zT23s%#)zVyF>1I)W`P+`8vH$QEdyvU=&)JFLNuNl$650S6A>)4<2VJ=`@}-TR*Vgs
zCF9v@W!JLtCZ7Bt{$^EIW$j_gtnt<pQq#o_67{#a(|ozoTpxQLJY(*G-=Na$<PE#y
zfZ(vX!`vSKLnY1{dmU>F(4-4=8c4f8fDz^-Lx(&{GFoS2Vq8+9{SC`VlTsK=17n<+
zg?Lf1GeOpFulPxc9nN2#XRljvrEVYOpyOg<ZB|OJ)6wg_H~w?IK8&$ev@{fcdz@7<
zxQ??8X+Kzdb)7$Ng75&hf)_Z4CQ6L!tQcGmtYZpU-d2HeCZO_0$l0k@cExfeM+M2<
zp`?K*NkfH)1&|M53BxY0iM<Y~M9_}r*m1}k+C614G{Rd9iSC~-Y)kLnwhkOZeGdR~
z2FSne+NI%aHhqjT?%#^vJ!zwPd^G%AsdLo>Oacv~)Lh}~jWrga_5;QM9Gx2kkZwGx
zLr{gtLS-fQ_Ztpl9tvt;J@~Y&2Re#jQ<TE=Laaf1E)W3#%OjiNJ@>`|@L>zN)#Ych
zyu4TtBvNI58moe7B60+>Vkm6uzJ<7Yui-FS*0mt_T6n524<PUD0B$jfAx<BT$-u(w
z#=gKY{1_o#q7Sowbg&XXQIt<ZRAlFzr4*&uQE@3lyTg|tE&c|~w$K#lD!34FL)B=U
z&31pV-Y(xEIB;&hNzX<b%6rI5<$_S$4%@#IK}<O~0h?bKLmg$|mT=A$kcIkwwJQ6+
zMEu=}c4ROZ$orDA04cGZFnYUQj?KWsx#NABOi+B$CsPz(9*Q~Pzl$~X{?DLF+HlY-
z!+zR;GO(XuqzzBKzX^A3@xB`q7i7&@l0^{<mVl{=AMf}TYnU5IN(HzL1KwcssvvH_
zK<=9j--3k#U)!Q_Q{Xgsd4k<P0A~YM8M%S-uI0EBBj@UuRoSw}Gpqq8en*Us0w~4N
zxVfwVt)deI17T@&s5NAOWXlTiaKsS?n2ldO2t+n-Z{e9eKpWB5KmF=y*eCD7n7EBE
z&k{5UweJHt&emHoX#Vn5xB64`{g!MQKTI3i!B9X&RL7-&L^1d<va8r=4zmnzPNuJ1
zw#bYqVm^?TtwuHhu$f1K6(>d!BN>M%$9pw@hobpSeCPt#z($k;%`4pkr5kW}JM-ZP
zR@MnvOGrcCGFq>lj362)St)q!B!uRmsaY(l%UpAqSEl(AuT1G4qxo$4m^7dX_U^pz
z%Etxz_b~kOu@0E^t}=O@u}#~V(EO4hcD-bh(s126@W=cwB;P{XVxr%x(s+L2lO-B~
zy1o!jZji7(or2;%=ba6%I3-&Eo5XE|=K^g16^EuQ=j3M)f4|G6;GYFjviMVb&drkL
z{QO<F#0}LcC5l+0PM5gKE79-NloEw3G1hDTiFGLq!V^l)v0m1u)RP4Ln3eBkjc-q>
zmCvlNcDm5K)|!%a5VJOUS-DrIfWb3M&I>vVW^~YbH(Smfc6^djpIqP^fSn|s%_`={
zcl$`Gzqh5764>5D04}i}r0{imp_nri!Dvq39I5c5Kc`d>K`>hScK&LEC$>XwcDJ6I
zIT5lTjThWahLrh5pNcb@?+kszonS6>f-q7LPl)~R<V@qzvyYuC&|&<p1P7+cpP9Aj
z4=V)*(}VYd>;~OKn+Ov^jDyv&To*gp>GzgLP)GweR+b9sp-+@bKz02!<SI56L3qBi
zWj?yUInjN(z2D<~94;Vk%jk#WEqRaqdwUPgZEQK^J`Tu}ndfDU$M(;E!Hq}FnNGOa
zA{v7n;Sfx6j`;UDQt4#N2i_p@8A=(*QS9z#8So#C{_=@GEDQMu?H4HE&uNZnSmBCa
zn&07kV4?C-VnKu8-gn;NefNAHVA^~cb0d%?=o3^&JfKgEgmXss#mUTb;~l>vGRKW~
z<c<g|C5D{NhT)JOpDZDT?fAi~U4a=VScAA|D*K`_27hceT+nY5DOiD5PJ;JhE$pjo
z(1?o-eHn@_uxKK}{HEmZVCa7~K)@CeEHqrw^Z;bc<1muDtCiS8MJ!YeypLSr+v0|x
zpVz%eAGQGI2SPhDE+IACvdD{tN)5M!1fLXud%NLi9XJO^crLExhYzTK4u6|5hYpeD
zvGLGKup;7LAZ!e7PTQZ`4Y;<y|F=>^$WRJ|*<Xo1A8<3+n9k#j`S~U1pojUXV4gca
zrFu$qJSuNb)AM6A&qXIPNBC&~gnhbmRQiqQ2+?s0)8TQ+ekSTZjQoJ_x)a5!=sT_I
zzsGD<X3o|*!+U_)_Fo*#oU#>P$dp~uf+?%QlqH1`-ZJKoYQLxXD@&O_t>9h$BICLI
zb)(GPIePBE{NOL_O5lbvx+TD3AGj=rt?vvLQ{6EO?qcnM#eRpGt3LMMg2fQaoLd@&
zL$$Sk>AqO(x3noU<cRJ6^AVZzHRyAhugB(MzP`Vo`MPT#^L1v*e4VDJNb_4|V!n)K
zMDJ*RyC8MWPWwmZ>>p#f-(ceI7}f*%k|_R{S+0lK+l%GiE$RVgMB$|Vp7~Hp$#b^K
z6n+}T6!JHZlPs6PZ~0u?M7GpXpVd;I)l#3$5`Bg<>X@1UJg`Re33~dy_<d%0@^X?)
zvUVE7^wBpEAT};&*e`Nw?Q$w4tdk&2+w#R59pRP@Zn=ZH_I?2Mi^eyjSzyfrp#A<r
zH!I8=Xjc7$f%q}QhT}=NU{QD#xh$36*LHmOC$A0cN4OQa8c=Y@S|VKQvB*UbJ#7sh
zVnh+RE24oG0)PX=w+bK}bOb+N3c|SI7$SM^jH@t+7q|*=N3zTvNdcBY*oqERmThSK
zAWC;w?g0q*Y1kCDdWErcZ$cIRUTKuajmKF1##jYo$~HAVgW$12Un7jH;Oj9~pD~ti
zOj&#5A5^3(z;h(8$A3kT>$@eyd!$XlL7K9jwI5|&-<`7lj;pM(o6Tv|k?!N{{=K8w
zkS2pm-LU1|7)5$0)G@KAnAU|~`(6T6V6_*~w;x>>;F6#C4VQH`zKQs#0~sInD(ws`
z^iK7V5-xkCVFV`{+varXAV^3yGo9hTP0pzVLSain_Eg2oCXFE0D<0)sCT6$Pn_cWo
z^fbE+^n|t4ZwH(-+*ClHY}cL`@D9}2{u{sD?ers>@9$tDM!55*c#>TkkE}t52lPNr
zoX$ZYs$o5}IvcX4{li=xD8@4*Pq=f7us~(PGzPT?oWt?UcJvMvfUF)%b`7L3g!UWI
z^n<i2x}j<RqJm7xf8-Vs8;hGDHrB&kw6}h)-iN&4ZlEVGwxr4nA1ZnBf@^kflL_pa
zDlc9oNp&YL#O3lokQdb%@?y=s2~^^WAQ1*YBcRxayil0nG<ku$1L!9Z8!sU@#vYZ#
zv0DJ6ObV8s<VW#0l^+}a&E-e&zU0S&%uJ6{j<s{LQ{~6+m|*?W@?*<A$vOTP$dA2e
zd!KTogod*1KV|4X$pP}@V^^Lm-=93$8vs!gL($9H;J$nLX7c43Y%qKB<-zXd%QxeJ
zQTql5QE2@$<;^1>io8*?A#Z-(t-SG3ru1;Wa2c2<VUy^)C4`&ZGll8v+nNlO39S>P
zW~qkW?C!t@V{2o71>qtLq!Kqd%&3iKBV49G)H{Ek3*j3dAWWbNQFb_zv2L6_<>r8O
za0R@?H5Fx>8n6wvF8-p?I(8ELz{}}%KMS#7MGJALVH4VnY~I~68tdRN&8_KBj1m0A
zG%p9Yr<@A?#6#Z=enj!(cd4z(+&DFw4<`><hro_Pl(D<3PrY1;<B&TOdy$oE<M5|n
zfP*6UhvBT|-hKl{j#Ext=Q}UB9wcw%6S2Hsm9c?46!C;J&?olb9uk&Bh_GurysmO4
z=gSF$*hL_8W6|XF;{_5kvi`%%%684L7~*q$3e&?6&L3_@tmNpH+-&@=JP-nuVKdz9
zr@C_R^D?oQ$O~fJLGRHT$ajuFBn~6kU<=B8F%khwIfX+G@%u3Jl68nMDgZ2akI$z)
zQN)rk6m#{EnS}eL4<_=Y1u4P6E%~_(XjoX9VmP|d^;6H|mi{jf25W&j0*GppzM)DO
z^579otWEe9hhN~#a0+0DGOs%RH?Za07gJo15>&tZJ(4-HuGlN<VJ|CMQUomxsBQlr
zKP<*8JY~)!AV5Tf6kQAc=ssRJXCM5rB9%XWiw}+n+U{S%ADhV^Z>8|Z#rxrpl>rbo
zcNS|vnVLbCW-^E(gOKUIF@wMkbQxqwHw^Okf0RM){i`<bg05)T4}-|%rliOJA%mQ_
z9|j@LctSnFBCGahk=@Vs%pwas7CF>qk(+yDk@v6};L>-3MTVjlO{feODLaQOGQ-#p
zi*R3^p)bNBU;QSPMJ`>E$s)f;gp#m`+AHg3FYDst5-jq|_dFJvzfoAkKNBpn8E*ZI
z^(}uEtS9}!y|0A+So$yKk9Wu)2)aq=k8b%RY`)^@k8jK$UHjk<=%MU11(M{CGZOrP
zRqAM0gOF)JBNb-*H&r3CH~vE$vKD9%iH%Lsu~V>VyhiJgk}lbz+)IU&ONev%`pr0@
zwq!;Nwa7%5Nh)y34YUX^3qfplc}w3@!{*vbd-l3Ov^V0w-t9|z#BMx-!C>7Z$d6hD
z7Zk3IJqb#5W*|~Bj$`}n{IN`W5E4q}si(T<ppve5R2T^8kt5FdkYE4nk%@kTy|GLt
z;*Uyn!$e<BA`=}aKx;iCcaT8O@OBsK836w4R2F&+mMz6WwM2vlU&v&kOR(Q6EacxS
z>r5}}h+`8hbm`k33st@*EVSfmu+VeKoiXh*%HXGMnxDG$7d?x-1V7!*g3veh-Rhfe
zy%<n=kTm$Iw;oI~6T})@OFr%Dq!FxdY>;67{-=&9UE6RlZL@dayK4L!qwma}@mDKB
zEm&hC&Ih*DKsYBZ!GAZtplnM6%#2N8I9wjqcl5yWO8A_1H6YA^i)?_U7zmZG%>E!7
zoYr#YVPoC3nfd#V6wy#@vq<O|FU~VE9=aHOhA=HoCX_B(lHcGE66I%z_29vn#7&-+
z{J^+ztB)PcqCY_nz@CV~>I1NQFW|vYJh{3aEPt@a^4QJ+EZ{9hr6)Aw_ft84vdj5&
z$Rg&62UnlPtHemJ-7>)*J`D!sL*cS_wDDM<G#+nyRdc>KNBhx@+g;Ab;e!;;$FWPz
z&PL>A6d+Gmv;a#bZ8)=fdUr-;>Y3GbMr1m561KV~MFIX!N`i`(zNNSn1lMa}n%fZe
zn+2`u-meN@R1@JaC*W*pdq7SMxUwOPvS6{9z?5_DU0OCI!~zdy-uI*)Z$WZy^^8I;
z+{E9|TE}Ca;t;}_vpUhR?XlxTXEII{^A7C6qLVE)u|r?M)-}_CLMZ{7aT~yq7F_`s
zLn#xdJpVGD^5GzWOk$xOD)M2LCm)Il{57t8sHPQq8=@tJj6^>8p2?ICqp<Q2`SAYJ
znOVnpS$mF7$cM>)^W?*@bs`_`!%sBCKGv(W9{tICNLCs5|B(K<KYE|gq4p<ppDrOQ
z{v;W~65ZOS7+&Vyq)N(&?j4^)m*Yo2v5Y|g@E%eCInG#g9*=f*s2tqK^cSX5kSxPC
zEQQH4NT|T%R99FBjVW8+_zq?}mxnhSHc$pY5X|N}<UI2A=z-<i+L{_J#%C!a&h&}7
z!ezOo7<@LOtVRWB$+AUSvN#ZiRbDYxd8HlhuI?*b%h?rKXmtv=zOiLJ>HC^Eia3di
zVx%Dcu(EPwDL^)KijyT=`Js!&cx}D18wwx?dI_qplZ5&JM8T0lknX}oXv^)ATlz;J
zl$CTBls;px2|anBVkz?U;!INc`gNCzezRBB+mhv6Hyw2Hz87Php+Ej#qz`N(dh|iL
zjsVVs;M4!#p%0a$kK-@cAARH}OZ<!I<7FHH-WPq`of`ckYu&%T>e9!Jdu6ptmUI3O
z_dy@Csor}yA1=pK-Tf$>MNi6);j9D(ukF^>z?JlS%a6MK%8&NM(eSH9Jav0C+=x^m
z)2`1AwIEzGb`(o?wN=Va7cL@;F!Zbnzw<;N#w;EndK<!{Z&pR=%Z;y#P~q-JsLDbC
zfLT?xv0(%)5yU|9a2H)RgRyJwnHu0y${~yteD56$mpE5B(iM+dd4J0i9fxgj#*1`9
z0O<(?Y7`{Z#DUwEG&P)<Y^VFf-EF9qdAM8eq;YM?$WLxpOa&Nrv_S8EKu0MPQfz(=
zHpzY?Mi62W_b}{oHY5;?fYDRNL*VVGlo{09FDguTe_QMo${ieoxn5+|ve=*Gn|cx!
zm}t^kHtzBQ9Yf7>M8q{1QG#c)Yh3A74MB@vO~l=}k7r7+)7QJy`SxB}M@g3R><<9(
z4?O9$SA2pDcJKI-|2yX+@(Jq&z*$lqr^Hj(6@{Di`H0=L#pi5UKw2;#(nlX`{dCVN
z)bM;n`XLDg+v!o(u<>(b*qU01ce**ekY23icBq`wcuoj3t#CMjH>~{tU6~upp90;(
zq$ITubkElrH_=7gbAMqQrYqKWV%H)TcuhE`8hn7nD*Jrc=~D~qDkDpZ<g6f?twx79
zL>qkujnaUmzpylh&_OWZ669Yt38izZvfh;~XZr&Hgw(=;xB#cI*RtG!S@G9#Vgm;u
zI#>nW6jiiLD?FP0U`rAT7^Umb$BXD=Br1<7`FM=on2m!A0}+h;F%I<N&_fgIR<^$n
zZ!dHvP96-et>o1ZQQ`^_^TTVRJo_-bRz=>1nOYcNT3xwyfEmDPc%G6N4$<Utjt;VZ
z4o7Cloiws@Yvt$d`NT(^1S6Sz!B>4^N?OmEq_S{cP15v~x$6#$$y`NFgvRo2^9PbB
zixlNeNG{4G6!0*CsWgjm&+&l=UDH>Nd*UR(@S1U*6~k*WEIls9nc*bBZ~)a-#QX$2
z$<~2DAT;)+aOHRms1kJ4&r(>VV8~$;iz$Z7bF}$J>r||ijQckrSpP+j^309oYsfoI
zeES-S+t>N%OXz1j7JHC1r>f>I-hNFK;LIftisO*fN8oO4duGFvZ;cPRH?cAlULh2I
zIfN6|h!PDvXXyfr8KLl$J_(P(qP1OJ@i&Y`<FQ0s2}W41a&U$%f&~WTwz9|VkRduv
zlR23#8@Z!Mn~L}?r21K)dW4E2dI0zKf$}$nb80~OSR7R07U(c;T&L8*JBVMOERG$3
zA#|;Z-G<e=b9bvN)8@@h5qA>vI^ktzInE`J6YqArzw&P-&q9Rr8^|*_D*m_R*_->2
zXZ)>^e^#EUOnG)Z8coWxNV+@=B;?umk<q<8I~5J=N1i>=lRVqrgFM>_`lEP*eC{>g
znoTkHVed0r3QrGPmlZ=CPAkNEXlYYpKY;Y@^LL)<gOt_3LNwl*HoUINI=%|)m!4$a
zigEjrdElvksm$XMD3QaJhy(G2uk*el3|i2LY}5zc8HLrIfSmjLe?UMgS3q_roWHSX
z`^o>J7=0JgW#3{{L5$A$r^RUf>Te`Q%is$6SBg>aoGV6u4*3Z&dN{@CWE_DO_ef|?
zrWg&Z5Hb4O??XII*J3nbab>J;|E=Wd)~WlEryI0=c%7D~3&G{I4;SzW`;bppzSYt`
ztT%9Owuy;&>d-lTR!!OZ{4CAI#QE7ad_b9XbAI+6%G4gt&mNSNsonR<^Ru<xo}aBv
zoS&_))OP~%q$V$g@lMVbCS)t($YL`@wzffh)x%a?nva9C`qXR~8Awe#HT#-AHG7f>
zS1iKhq$15e5Yx265IVUY#$qRIzxyFv;Tp8B!vWb5h-q900~Ds>m+Y<m9fbEG*eGnz
z?qACjw$)+tEr^@`Fl`Y-7kv#l<0l4)OB%!dVP3u6drZrT2lAu73N~AS=U&6+d4URR
z$Y)<b(DHK0pR$@+!qciO2p?g>ri9ztxqJ-y$F(WzT$|FhA|v=QXPS;QOE`T9`%?&*
z#4ZEwKPzC?ELO!~1aW2S`8HqX*~uCn>TA;w>!Yo3djlac`RPjY6`rNt69EOv>2|B4
ze=S$M=*~NDTE4&)qU^62nJCd&(Z3E&5?*}4$^;1g>y=;l3MIOQhL$1BT0Mdc&@edy
z6=n!$OL@4nI(8RiX}70L3!$Ur${jID-SeZyZCLIC1w1~g$KOL&ASxd4P3<rCC4}VO
zCo~6gwSslc#kfWAj~p6*WM0JSevW4@AZq3;C8uT{&pfJ=!gT+~GvkWb%^XO|OzPvA
zP3WS><C)C#j%QL3RN24hD0o<%R&(qQ%GH-+11VQ`|F<hwo$E8@>Z2VZS1W5sB(7Y|
zkf+$zr9Y^i@yT_JPX^t}O-FE(Th*l!n|un(xWTq?>-6WD;O29|hDNInFGNuBq5K6R
zg35pN#)7q$)^}hj<~c4RyY#OWfI#I|R2{ragWg&ARZ12XGE&72N(Hm^FLdU*B|xqW
zF-8eABeCTC{d$&&;uI-Cm*#_sHsC=Su;Rh*K<=W<=93AV9J*q}GVaB&^7?K)6T)~_
zJ_3#!S*u0|qR7USDzfsnd@A`t<d0^4HS(qTAYMwXywy6t82Jc!r02-QZ)jsf^CJo*
z{73@&Q_eYz_}q|8sdg%mf?b996K<Ir=Xf{eCS?uyWz84?nZqTELdv|$+Gq?ucli3<
zFi-7(A1!mCw`6cku7|l`TaaJgjtzWC#b53Z?+2xpz)I1b8O#9pSBTT$LLA-Vec~To
zyw{zyH{NgmWZ!si(D^;$eTvTC8}AnY840|<c?0my;}C92wX+&2>3DzIO~Ia%r*=K^
zg^%mKIN&satosW%2>;jTaAvSt#Z-Vcg_t~2<}{69XYMpL9I0_``|tHy`THQ9T^c)G
z3{H>NaIH@J+c{X`29=2=E-!x<PO|gjx!9r-3MemSU2I$67D@k<kBPqt+_=K+JOT@D
zI`SZy0HVP*sWNdl<jpSO;0wd}n*531J@x>a?gA8wJq!UUEjbH+LLA{YL$HgY$;J7F
zB)uMAh`ME7oCtZ_xnhwkf4-HLJjF}?_2v|@g!_4X&LG6GVb%QDWX#Q#8RnjMelWm`
zhCpQb7H;9iwr{}+7v}#T(%uC=%If(4Pk@!6#0^R`SW<(<8Wc6Cv_w%i$mLl~6mJ#O
zDy@pBXb}=biyGVnvR&6&tMyXb+InxbT5S=$H31A4Zvm_z)Eip+EUOk#xoOG&{h9M@
zc9Wp}{$77xnth(<+~&;8nKNh3oH^d0mnez(v#>fjF5k=lk`IK)t4@wyS5%Wwh@;y5
zG4)0<1HUb!aJ2H%x_?wdqB8DB<1a<?mUNMS780pTyz@}WS<sjYh>*ZpWv^vZ4=>sO
zbOIsGEENugB*XwD^0mh*X%|7-DOR_3dRB24%1J#4amdaRnKPv16irdSUvr2G*eOb;
zJPoKaj5gjX0@e^nu=vlv6z1J*%>cuAfh=K^?a|*AqlCaxSf<431wd4XqiW&QGl5rZ
zV=(=3yyzG@gO4d)HVnls>YL*k3Iuun?avzxjyN3}q~OF3eOthRaT-zZ1r#Ek9&dj&
z5iL3z$B9AiE}?WG(bb^9Dn5u&l5<`vYUquT{H3C3WpiyIq`*aBJ}x3B6)fQpXwJVZ
z{*$8z2l}zaSeg5gX5Fs(adur|VsN^F1%eRMpyj~LPJk5%EBP%tr^%i_8w+ejPVc2?
zT6uJH{{5y^1~F-{`#`)P4ml<#Zy3&v+f%D-+$!)+@(ij8EZ<X|6&_d5<Z^~lICipC
zC97G>#$KXSM1xKfUt(ZCsy3Vf9MPO^4X#*)hXR=kwaM<*Mv3$G?A1B{7JNSf>}#uq
zQ!R~`i+s5f`?npFD0R`6q;O?h?Ve(!$*GabE<ON!C!74^f0Eta2y)3+ty86wuwQpH
z%=U4|R`P9w>*-i{!9H6T=hux?YZY8+l4(s5l3Z)m%=VH6;=dw)CHvT!9Th|ph0?F8
z`YfhK=NE`m^$}Ddl*R>JFB3AQCc{xJh&h!mN|a9Z$K^>6mze~dw{S3cHZ;lv8Op?z
zH`0r`$O{ax8ef&~gp-#++3Li2bjQ;p)s<_*F@?;Lcr2@i4V+#@-m1jt9lZ>!IGlBH
zu1Ydl=mj=sC`|NU3Ed6((>>*V<kJlPGK5y2KI6EC!zz_(-5~tne4}dWts@kDdq*ad
zr3>|UTblTf+*5^t^3*JeX70`<K2=`=0TF{DwZo<lhk`_bVV^2MC;C)L79aq*%m6WV
zfjp^$gMx<UWf5jIumQ4Q7-z)R%Lu(RTS~BA%_zkrGQgzb&``K@)nkmaAS!3DGn9;1
z71<g$Q+Ma;{NsOba_D>R=XdVs&KjiB?$5{AZ4RCN)svyf2f-ZOUZlQ+CV!4R6fSSK
z9!O$>vjC->G)r?bN)cESy}mT|^NCyHNM(E#jD4dpRF_Q94CGaAo3l*k>?&7Ycd&*&
zX#?B5#8XAaPs)+_b%8xo1SghPk-QJQAAr`&T%<F;=;n@dDd_Sat){R0^AyO)tbBCw
z!c<@EqY2W_(Pi}q3QSb*8ntbriqy3daZ81`g`o&zowX^$SR?{}z<m+rm~1(Y4szJ2
zHU2D89c9cycm6I=+#Wwn_?+X0YB^y)3lgCXAX}{)|4?s4SDf(+1gD};KPOrw&z3$t
zOP^tsQ^B+<j-QG?eUD3*UUz~%!)d3MdCSJ3+aN;=uXD*#>k9c=p|5f@o94y0b8-(g
zj$O}!I^2oQ>G)y{>wi|Of$>`UsZQT3{0;7VYIeY!5q||=QttdG!{e}222(&&ka}Fh
zBN;mD;J{HwBg>zU2Mroa-pLd^mkhg|&lI0w9JHdNI${p3U<e@}z2q>CO@nBsJAjfv
z`q6nwOog(S7U5zK;ClZL|Mu~8@jlw=#1FHsq<)G|qgLvNt|nTjIhg#NlHn8bL`jgu
zTu%(kK@KrMMBH2C|K%8$&7d&80(4tmsp=S^RQ$aGBXv!dJG;VjDe%A-)5JFVBY473
z7fgYCd<p$rN-AgtWMh=kVqfKp>1In}kT9njqz)y5KF>e21A4JX_~|}V;sxnNek=+`
z=61oy#k*-gQ4qA=?|-$<(xqGLkCtX|r`8jFX!}{ex7uzrs&}Tx?)op~DbxRt{zw0%
z<O^w?`rioxc>=ipd)@mVp4X@fy3@ea!~lprzYz#)9Edw}(1S$Av86`9VSxyhm*0kW
z8UHKlC_$Ld?db>nYp(*Z&;9qu!7AtHvPyS+h3CnXwp(~RaCWX%CSS`ly9amMx4MIi
z&|wzBF%hv<ln4zL*v$f)0Hxcx0G7G5c{-4P>JJg*x@}efcc$-EzzS`?alGaEv#t5g
z;|--=gUpL-%m+iR!2h#mZ~E{JL+;mOfo4_*9y`NxHSkb&8VtjDL*AQO1$7u-NCVnr
z*H<FT34(VH5MFWtEAJq*aO^2>k^eAa)>Y+(zk~))6E#+ySDhacRMUZ~Gd#QDe}EFV
zpqVBPApY{VSf4bdASo3hchqJl31DL|12OT43}VeD!crnH?sV~VvmYDNo&RTD(VdsF
z?FaGv1;HNQ0D+CcECheD1#t!f(;NaAUhvyTg9Z8i8Efy3zb)KCxAB+@6E4UBTCPH^
z-7Q*l>l|#8fhphL-(WKLNE7%u!?F4;8;;zmgSKpfWJmgs{)bn9tpE6@3f^<R3Eo?F
zJ05f4wL1}n!^Qvpzk)l}OeHzs7P-|Vy*(RNJ+&xNc>6!QgZ&5pNC)<vCjs^u4(v|+
z_Vx0PIrdyzwb~kG73ad?H(1S>E|}ATX~$+_O~8y5H{<xhjovn2?zT{{O_RgB{%4~A
z@_))Z-Hy<G%zDxZGVn&Uj5l~0aDioEa(3uB&7l*#BXZ&WnnHBE0eqw2j3-K|Dn=Fs
z+5labxJVX1etV$kwGMI;pg>Zg3=<}r+LrauJ2_jL+6a9v=QEmGB+%5>xa2@niv*fl
zOZwYRN4w~9IFRc%Thw&9e-^JYyZs%lV8^#|b*sZ3Fx~3@D$uF>d$U7pcjN2U-SR7T
z>gL)DbLkHho#+ptCo+sXbdRn~kng|myG4NPt930If~y?Z%ar??&;ExIpg&C<+l61-
z9lTv+w$Y!sIi?ilsBU@w4?Ca${{KnZpWr_6HKcw0mjP+h*xZySm$du8`HiIAzRr@r
zj<oShJCXKUUNfZq_5r!1oxollYV(Q{LCyyOX}jRZ!a;SDmqyRCg&!v09Q@?_$NxJ^
zrP}{N<gX#t*L?O55|}^iBrM^;PVmmE+nqkZAQOTkVmYuZzT>IL|I`esY>3HTd;ePD
z6m5i=u}q7~64;FS8WS-x5e9P_H%ohe$W$TJqEUaF$Mk#t{1X6ehJn@@o(qAeO!`1(
zy%9PuGKRu5&*|o#+KVL4OXZt0(HG8JUZh=5eiWwr1DjrCs1iiw*?l=-y&#Q~SY|!q
z_o4Ol{9s&mYCk+rYtXJZF)P<;Sa26}`!2HPCA%R${)RVqV|#n=Jg?6xJ5I7=Uo&}E
zzFGHOwTX-w=EaXDJ|v;=|I#lKzO9uzGHO$~xX~KhX;nxmKmSQCPD+NtMLEXJp^P`b
z{8@LS5)?uHt$)U{eSBh$9Xh0J`9U`7B-?%XR8rf|qB+^58o2UM)pR+3j>~p`bxyWE
z%J!6+AsghNwu^c5H$TOn4fs7!??vb36zHo0`#fx;<4+@@?SmbH&(JSTj+1#*)#kPA
z1Wy|w+yTPNfbeZxuw47Lp~1}BMbwp-wXt@g&-IQzU}72=MrYKuKz)NN<)ameUtl2B
zed{+J%WwPQxV@Wqso27szo&u|DH435v~|_Eyx5od;hS~dW1-XA=x%B~uZrrKIEq8<
zbpr{iKCF3j_%C}x!DYIy_kB^&9l_U8oeGwHtnl*u#izmMAPm-&Xr?N-fV(hh)~j4H
z=kZ}1(hQ{kbG_yM?|<qlWM=DDA%M^M+afJD)g?T%<NXKAGH(k|9*P)T?fz@^85#--
z%g#(WkN`H9k(})Z+sS#IK0x5Hzt15s`dXep>_H>&%3~q$#Tf!;(Qo#hKMHxVk6^)R
zFc|bH8rCcpD4U<plvW$t-lMjPBAJVvyo%UdQ4CnTibULqw_?swb^C@FG&NHdyMIJT
zjTF62)LwyG#7esayJ27JECuuYXX#`5Q2?%eEC*m#FnNBxO~oV~`m3Cz{grgFo27SE
z(w9oQ-Z4ve>Cb&+?ktn+z^S@at}d}2$OYyILwH8gAh!DZhhb|0gyVA^$SqFm>Fg-M
zCH-}-j1e{yFFW!*_Wc}CMNR)u^7$9LS{B})lgiQ}&%ft>Bg$}fBtl2J!2eGNKhusR
zGW00#gng~XWthKP*%F2SJ{DoiCphYcMfJbBlW|}IfYn2~*jO6Hx1#mNVqso5C=q+R
zh0$mtbXBy*l!UtPxRG2`p(WWE1}>J&dDei8nYB--*B!e_ey>vz%J<|5$7L<_rrlO2
zpylOjayo8tXzz2A@yHQ$ymyv@orQO{v(^zHj>rXo+cpG$@wQ6!*M-jr`b&=8cQx{V
z?dmz#Syz8;b?>gL15Qy_(ZpQf$6%t&ATr$eCcya(IIS{H1`Ep(FMqixQIf`XveFyU
zA~~8UuFOKeH<yiwUe||QHza+sq(T}6+uNDVJ4ci!<`|@(jt~|EX<bb~WUr!iZU>P^
zB>EAzcz^#>3?mtkn1q*yZ@Ln^s{{+%#%7NVFfV*NS+bLVE`<-m3ZDL5mu~MyA1TYu
z|5@_MLeC_^-cVmJF?YMj2e_CaWsnpj@c@$}0sWn*DcY|oYO=LuW-!7;k6fR_MC?H3
z`R6+W{kGvS(QfpS@VuX?rB3=>7nn4DYO9$8$e8CJ!Tl-$C=MnRWx+Hh2c`ovnfq}L
zNq`;*pb=rM%-Io>q1P|Z0o1}5|LtBI=BEhINm*{s)#pIJ@BH&NGMRCH<4(aIf7H3&
zCEaiM>CoOUjmn!6+g=oIB*sFX|LdFbvAU<rxb!B%66&Lsqd2xPaFmxE{(EfK@q1of
z$BfJ&C4AjZnzNoUyzwP8KkY_fz#v|C9?9VwAJsl$(&MNt(qsfL(D@Lv=BM`-_j#s0
z8RN#b-w^)!Kt!8R<FT(??mZ*qH4EH6ZAQ(7d1ZNJ4f-JTq3aDkM00JC|H?UhgVtKr
z)IMln*q-&GjsnSB+^snqb!(3IEOnFtXP%e8#*3GJcgk3*EIrbG-tdMj_J*v|-9Pcd
zV_Zt9`}sCM=EBxg_#J&o6n=FvKigVVcers1LJodvK3%mzXnFcelu36f^9P_`WVwWm
zC+*4kCq)IhdtnU>J8L1(G+9+80wT>_Dw;9B!MXnFGV~`@yLddQJ6V&%KVGC$w$lc0
zmMq`w&%guTOI(r1ril&lXESI>bNaV-@MNx8LKx$ZhMpp{A#1q2DfufQ1i3t!QZG;S
z5~UyJp9IG&X>Z?`pZD|fHn*d)Ts_509&>>Ach%`oxXY{DJaca^d1pI#$Yhkto$Q4b
zGBX0bq<sHO?0<WbdgsU$ZqNpi<e3Y9tOMT`-!<Dp`bkN)_?v0;!R4uMqhqMnh)6$C
z6;ANqLI(l!Z=RJiK<wy3uO}qSEHjhogG`tHrzoWQL{UEdQlH+|CpZ4e{JHw_vc4<?
zlsxOAa$c(Mf6e49gLY^0g;vXs&1sdBj(PsgkGm!&SQ8a0_!0&E1rE${>v9TwM+H8<
zN8^~f-p`G}d9;#NTay1JnhEJkugEFNUR$1jkhK-Ma5=+IV2*m!GJb1*PDayhb_k4P
z90Ye?os()J?{e47ZLXOgc5CKY^%cLMWkE9=@W%t5ns;(4I#}@Bs*J)VT<^c=fcei6
zIk`-GnI>Q!a*Y*s1Lo~t2k01-d-~JV=_Q$@Z(p2KrwPM{Ey=H{Kp1|7X4s*;bzR?v
z=ba=u)5RYKn^Xf`Y>HS2n_EWcheaKdfH5?Y?a*1rdC8x_;YGT8i^0G!7(g)KtC?l)
zEVta-ydiIUNiN-f0hVsRflQ=_=RK~6OvQIv#Y5gyh5Jf6OeU4&X)tumylZd(MbGu9
zu?Zc?)~>7u5qG8Mza#9ksP>1RtukiuYqAOrMjhY^UT>)oM3t+qE>pG<-Xl&#9VxlO
z;F+A;AS+?94zd~7ozoFh>6bLDDztq(!X&nrxW&*C?~mM3_T-rw%i3N${VWHGL~pp^
zuwX1t@DjhU5|wRrHVZT3&D96ZY=<<>Rqq(ghT7D-8qtZn42P9V!t-N>kXispj;z3I
z#T)XDm%O0e`+F9vUtWDIB^)Z(dvkYEB7Y{Q_pA*sq|SN=o2ZY^Rj!<7)AJ>moqAvr
zni-NeI`6-6hWdg)NlmtX00P%}Cqqa1IlN|$MI-OBiT59e!)v<F48a~OH*LK$((xDL
ze;RWcGT9RqILD{iV{&-GDnOP^C>-Pd0T5xvlIk|VU;*L9@j2KKY!4O)o^tNZ7=e}(
zZhT6Gp01i4etJ2?4L6PxJ@IpsTc}A|HKQk3h?ZcWh~zG$q|UX6X<9HH(A-W(w^+aV
zgWR~RQ-iGQg$i!fs9YD0wYrz77WE)Gsl@BqlOPC_+m}p<PXd(Byu>wR+;ugpV$Of6
z6VsbGkR~4UVCo4=a7K7?3XHp-SgOQ70{sf8ugDeGd((!0)*nIZ)1wFP7k;|gpsIby
zaz@7F5MVFmJdB*`ONnKxA)7xH)!#qERXw<y`1{!%flT?$bvbqIr@DUPlAuD#6gse<
zfAhW8>hj!^a3(|l_DC1_UU%~J-qAUA8hi<IX5o8`Z2od0SNKo4swanYtU1F3#3o`{
zU`5>b2K$)<sZtNYSl#SVS$*yg7-YUipYxVAQ>U>6LOb1zNn?ADaKl+DfwFP0(llJx
zVERcE@BbpZ6sv1bl{3r3mb9Xl6S>i1;WilWq466edo)V!g;YV;vhFUos9d0^ERw>L
zUYsbtjD~ex%EdIp2<aafWX?h9_;s^2#APoL61~JPr;C%(yyEUj#+todv5Zw<LPh(H
zdCJ9Nvmq~WqfZTT(YVMe7&U<wj&UtiZVopb&DUj?hax$Om+4r4btp*GPqzA=3%bpP
zF+XPl$H{-3Mdqjq-wqq<6a#_+35MJpjaGi7Wbjn^-PJQ1=l^yO4tg|z%_q<mxYWHU
z9D9(b>I8>5x3x+k2sdIp&WpxcdPigLZLdl89~O=6EV}xV>cqsN8myG(pPcMFpgPXw
zcI}Ze2Q;O!Kqu~2zmqfD<4@`VE00Vew=|Q7$c$N22##LTS-L8YKr*2waT+(1KDWN=
zxd=IG!lVDmS&>LMxdNrUCh?;RLiP--NnACert*t$OkujYCTU=PblcJs$&QPjvQ>VL
zM>Y?rm9m%Z&m++#&Cr~$Qylk_l`fUk;7Azz0KrD2D|S<g#8*n=xkL{1dKQc5&|*Y!
zdyX*l=@Lr0`53B^S^gbZWD}voUx0}q^LzAMY&T(9y(q7L9a1-Oiy`Qo_V}HKpq+-G
zxy|Gu@Cpd3GFwq1)N8S;>=LUi^hNzB4TS3lcYs*g5{{Yo6)jCp6d_}i&r{2gl{l{Q
zX)3vE2Qir&y9Rxh9zDVvvR=AE+)^~%96`&3jty0@|H<Q?iO^4<SL3zS!<rkK>q=E!
zL=I@XBUzx0qDisP0akku&hq$BqF;Z~H4L(65}`s@YcE!753?c}C6Dn$@zMGL`d>Du
zZv{=6G2~UWn`O<G8t^l71w))E21qooXL<x>iv0Nup`5bJ8P1TJ1kZN`cn&xIi`l!w
zF2~^`P3D1ZF15mD_CWpaz_Dv7kTtv%`9JjXITP18b0DSw60m|rM3EoEbd~x7!AMt+
zd<6?d<&L_mS^bE+u&%rF;EokFatrje$jv%Uhl+t3+*p_EudE+vVMkgJd4?gI6fFK$
zvgGB`H93$a*u~CA7dodPb+MX^zrl9H2e$Jce<QttD_PU=>cj-bFhVX&4uy6*z;c>8
zRS@#u-zHFj0ilAuQ$3+xi4>S-s#as{2srse4rEK}QI5MrlPBj#*KA^0#%0SJY6h*Z
zi8FlTKjM_^)2B_YYF|8MO#HOT(L{7A$HrfY_KcRKE~Oa3uYSxAQiq|LS67I{>50Vo
zDiz27Jp9autjKTR$zsvIw<|T1XQUY3jYu(;5!|$UO7AGw??yA%@BW)1S)DB2d(o&o
zt{>~WC+FE#A-cGN_wSZc`ua0UdAk1@It+O)jdFp+s`tp&Hm1)i%bihl=2PI5#F=g7
zHTW$fiQcbzK0<yZ(Z8axuaHEC06<ORG9*#$!8}}xDB2Z{_2cWQ$!P~8ie7Z0Xqie?
z{x{t40uLsNYG)vZz}`LPRIA(91?cG)D~?-%NTQ&?Vgx5_qziS-f?_ZKN__MK%4j5f
z6M2k`N2DLoxRK~8@bk9@6jsavZf*NNlDQfUGm2^kozsraAJhzbza|cH;+Kie=RoHr
z(D@wbJYIBuHOg7KRA0(L=MX>D?p9$a)*FiL03G4j5k|)1e=c_v>z9h!cpOdicBP-)
z-027=O4vc$*jxn*)4gPN#LW&baL3@9oKN>?e&<r&L;LU~vzmgJ>B575{UC=wkAYtS
z0ESGD8+a!>B?vcV=C(ux)i7w|e+~l|`y=%xKC3R6V`}Dh5mAE%(}KU@QMJNbYQ07n
zchxQAmo1E!^vXhd5%TYAgscDOI#aS9azFRFpS$dbqE}s(qs-aj_>`pblT>y}PEweT
z`bTGyF6)z{(H*6v5=-*`0&-F#VUllHj~)QhSdXG&Ow+1If4~r`dsAK+DNIT?n#mqN
zgBHIqFgVq+@!2fWmC660<z1X(0(H&*VVY9O(Dx!^L4pLlWrEcuVxp)pMJ((3ajX<_
z^0trvRbfV5WrCWdO3M**X2-|OtZA*DF4-roBwhh6)X9`+YsbEWHH_3sxr!F~$%B+R
zctzByLovdZ0n^xARo-kgn-c+c59^ln4@>f|#L#4ONe2p<ma^-uS;u#_#j0fxSYQKP
zkhzuZ!p}8OZONb&F+i086qlQYsXqN!N8NhpTtC3)?p>)8a1P^J#5CS$$}l!9*oyL>
zJCG`$$yV8^zVN))gv?I%V_}lr!yWmxmrA+1$vg-VDD>k1ZpIii6XQc@>}u4NM6Y!)
z#MM`^7<*Gg!KOLa!#6(5>0u<>LvJC{!r3F3!t7GQ_?GmduffwTUsp>qbnx0k97C~#
zoXiCFn{cCzrWN0YNd0N2JN}NPuOLh|cX%7FGR|;($<h@3`5S`CpSe09j&l?CXHad|
z`{BlRriXum@un?oO`}i1kQsLD)XEo?V)G6v?Wel$?+$M_dWT+~1?ENZ@6eP84wPj%
zHN9Ngnce^hPYlHb%Kzjq!XloR*E@XkNJhF8zTR1mNN9t)jPHrN<VO|1OV9B)S~m6@
zwk7`dur)24dJkJ4|E%ScqG4~u|Dr6(zTckv9+>XgE)Sk9Uii?KDPH(`4A#W2OdZK_
z?*qN$q<rxWinx$t=ev%PYXa*LT}CQ3p(V{W<=Yr+Q4SCn$1i(zRNj_wQLoqdQ~g>&
z`0UlHdi9p@#I`Nr^OmDlDC3-qf;N|I2~TPvYhmxY3d&7dPR3QdhnCs<d2QsI5<a4B
z))AU^&R(I)$Wv6j|18VD(v=_D+};c};R;X{<2KT8(c*L)x1?~xbH3N-vutY<n+eXY
zrGUbwXY}BXV*a|Hh!5SE%VO8;F)`tw^LYv>)_lz>)&i371SR@Y&S1Mnr>+1DA%~RI
zlQHfDJwf`w&O%Nq(l_L`GRI+(D-Uq<p?#k$HgS#t{sZ4)jL5c>3tvfip0ueh@L8i;
zqc<rH=`g_-T?gtdc^W$^Sbt8}%iJA#Wm4d@d=i&|gczYVft`(5+R3iE+hZhB*XfKo
zIm1Y6Wml3fcee=>96oBef_MC9<}MkblN?O9WyJBv-d8)UU1t@yxwCL5>l~U|#ylRL
zcd+U(^EusSlGIKR2w{H<a2)pof0>7ut2*?$VZF*>A1BZR-ZRYP*vXFBms@ZPfH_#l
zb0(vFbYi}s9>Xru==jgA1Nm)LvF*0P`&Bb_xh3#e=MCTpQM`237%hKf(~zkvS)5o2
zP<SBP<(iYTByn>DC))f<&KCpykChQ33T~r%f&ZFPc&$h;Cc}?ZH5vSpcbv3EL<4>L
zcG7CB*_LqQjp}1EG(3~{qqjL$Kiy00Wkhs=>fTIQP-k3wGP%C{maEYd)Nq@Klq}ue
z#u3M>Bp(B?ShNYd1tT-q<u#{Ei-g&fxn(6ocRrM(v0xR=^XE1M(`|L`ZK#rK{*+A8
zP4DNFV%e1EpPWgmZ^%hHKuHyr<S*K%XI^SBi=VFY6#i}|AN<Yen8sjX4nPqJ&H0Nh
zj0u;ep@j-#n}#!B2JuPVwfbJB^)`FEg})q+DpR?9Ca3#UMU3k>S>-m`*S49Pc)n{K
zITEEm(+`(!4_R)iQf1rB6TL*QC8}qs=`WS9&Ulsue7!)be0ApIL?pauWPaU4Ui_HB
z{^%tvs_!xKR`O`aY5W^5w+U`tKRT%U9_S#Q$x+te*zOB#4<l80!QA~cpqgus?a0%8
z4gIx#Elz1l%#{V8vH6DQG^9aa=#-B#qDf<1crs2c(^Evu0o!C`(Z=FH7PZz3l>cX&
ziSX^<aFW&irT+*K?dU^H!g_?BcwEE`H_C;A*L&@?cAA3-+!qAYJyfg>>R5sq6F(Kq
z`;p)~;y|^=?1tmQI_s!b@UE14OR+NTKfp|!0P7iaFOq)HwdFGARs&LKP$N2H=J0C{
zz=z~4M@s7u{h?+l2K0wGa-nzstp3!U%j4_zSUXnrBQ&#p!GvRCEz_5OYvm94MSzbx
z5_fo9<JJWJ5BobJl&4?L$v}N&8NkYow*FrSASV*WUpe?y%NX>%{kOK%*Is6tZGaP~
zP3s5>7yxUBe+-8_0Qn#Xy$zNCnW`cv88jO3iYZFQKSi=OIpfk-f}>?OEmf-}xX`~l
zumX=rDV8?eouiNcZ+*{tBvKan{U|P^1p3~MpsI_$7oJxF=XPVck&hY6HGHIzoP(io
zqs?Z}W+Do8!HjWkLBDOi%sa7-y)#BxcLr7ad&Cf^PWIwfIeJ%}zp^?GvzYM+Ypr@)
z<Uh(vMQwm@$4Cwfs(GTa7WvQM_W<S}e$@D;8|JOpZZJ-r6NCpF#Z(1L_&1b*{1+@3
ztC2S44oK6Vj^llhQm=Nla>BkS6}r+RXMln%s4S#P;Rdd-!Bxv)#ej(~M(*wZaDCkm
zT(@G|3uYdoN?|*3lnqiz8>7)%qs6}&8hvfHd3^&crT=ENrvL1I9&$hTW&s2~Iy;TN
z1K$KCGdTv))^Q=aIbQ@vo0XmU9nlvmc;N-5(LaIS4Q_6jEbpZ7<1OI@#l!S@b=~&`
z*;LnoOpJ(*J`Auvn5fJgsaDf51$m{Dk#8#d7<)Rd55Li5KiSq@*zRacJ|4o6l4t7)
zN;;#7ULb<G9lO);dI7)S)<154aXp<%*=1i?#qXq>`X@YRz`}gqlG+AoJB_dKyv@qj
z{k&{OM9gq~!I)dGjFqddKNn?>(C=NM*SO6&K}GLrm>oke?x;^!ggFK2Rqy-_oC7fo
z$f$CQY6Z+p`IYH=y|~7O^boR}NC7tiTBhsC7~Bw4mW!Zry_hwLJQe;2CPGbMcWuU>
zS_Gee=J>obf2(08AtxWHKCc4^u#Kj6Gd}OR><h&L`RTYlvlj4Qv<)&U%U!#RYj@M0
z^*B>f5KxyeH8)d-WypLl@cVQEB0Ci9sSADoA_RAuV%5Ni26~}6?6AUys<FfYONG#T
zE`4wupYJTwj{02lM3R4kyqvfz45fXgw{5jIXr))VW=5`5g6LqXsYJzwtO_r9LR<2R
zKV4)jz-|UPP&SIAf2V$)OZ=z5C$fvFfno$3`qn0V;HDUV+1?Q7D4SK44KDCJ2{0zr
zf&Ju^-?yI@5OFWkH9pDN-Q>IVS37+e=dseS2{-gn9(I=IhfOx<cFV-{h!=it>)#_n
zS9tWc^sypri5G_#F=HDG`&ZfgVzZy8>?<<aU(-;gw}fq=cWm56beea3gynNHhY4nI
z#Cjq$CBm(ECzwW)Bab57!pv#aiAY3lRM9oQv)-<#8MM4Qu8(IPmG5m^EMs+D2!QKY
z)X)t!zH{s0wal>UfZYVJn!lF@>Jai>FflWgrJHvL2f1^rONKuGQI1}2+uC=|HnnwF
zAym1k^YkEoW)KX`u}^4SEfIu8J#kuzH>3?sr|u}+wDA*b@q2nbt0uT%9ABkya^~;6
z=3R`3)(wU+mBqArfBLlZr?8uR0Aa$X*u8Mx8oz!=#2Ww?w#kd@vE8O{htGKuH{k^*
zU(%&SFzXfn`~;XDFNhl_8c9p%+dKXVo_oLJIMNftoAeW3rY^`>TDfi}3y8k0oQF;6
zDk}ep3xt=>1F*~Z8|3)0TvHT0p+AXGk(zUoOw(j#%M6b87xyqAR?R$04!Fb(I9{1#
zh6!m2(!N|JMi5+ws7D)nW~f#MsyG^+2raej5*r89+w$||V{*u7J`q*%VD%|Z@!y|s
z*(!$TWHUqb0YNt7e*Za_?T9`(+2~WA|5=l(t;lM--DNv9HydUI{NKpt_jVvn{ZmdQ
z2PyT0S;kpw_k^<+8)tRFpSHVUF*rt(1o%S^gxW@mJmyQam_-?)b2^oo0cN%yn4IeM
z%Rfz2niTZ!YbLEkX_M-!TtD+~vTory(6Wgz%)@W3R4d2F^i#Pd99!FyDiX)6<<y1(
zGGAZ9J<#FUBQloog>~rIi$?aSJMNpoi3c}K?{@x7gjV0DjotrWl}M3@NCu4Xi*Snf
z_mXEke*cji+?$u%Q6d@Ab)pgQ^+xhuU|#g7Fie3L)$ho6ccl2s<#C=2T~?D*g>7g2
zXC8$P%`GHJiKM-yUibzGhI0f)k}`UutL2fsa%u^Y&3}Yi1jq;j<YWM$vHU}GvYB=N
z#vognWg8r1J2)pBN@JdXZjg;32bcdBlLEDUIJj%JV}fiImhA^II&u{rGyZvk5@04H
zwYX*+R`*xTu{zGYC8rL2oH(x}7%Z=vy45w+bB~;CHd0mu*```km%D5S=Vr5!@&~f{
zZ@IQA!a0@T6_RNt(1WN6J;=XhA%+F*Yx>`H#onHpQ*3}htWl*+q^2e@ys8uP>iJq-
zxdh`#<JQzzlqB{U$6i!bzdfIoHJ^^=6E``T<h{%r@@4pGr0sg<-DATGPMPAZ*<=#9
z-5azM3G5A#=ozLF5`PCPFp_GWNh;m51&Fh~mj58G{@pYF++a2AW!OImc$=g84f)bb
z{9vkd3mk^jP@0Bn1~gX>T0-dGvFCAbDR<SJatYI<L9ih@XdPRbZC*Zrtf}U@POTmZ
zuBEFuKSqjV>?o0n*7_mfh?r!dw%n~X+4}wGuQCDj;UxPxbr0mwwe0a`WjexVvV;$&
zKmCE)(<OSKz!Eu=qq@)b`fT<dao#!g$OzU*>EF5q<z$HrjH8W*13)L3yhMGo5P}ha
zgD(YW)>k8Qh<Q@EIDF$5N=bxPJUT`hxPj8%?GQU*a@ed}=2gCST}^eO*Y+A`e<Ft4
z)qYLl7Kys*%GERf8BNsRNt-tEytte#6>AI8P*gpHwSbhcEs|X5Bdl$gP8J;}x%Oli
z_`0^FuV>oQ9G_|H;s4Rrye@5JT2(ln^c}-ia6s%Jn|d<|fV1g)61<>eiK#NjZ?yNF
z;h3}Z9KYr0u{a5Z-seYG)ym_Gc^c7ONuJFB6ixI;_gG!qhijZmqLn*l7F4r^UuU&F
zQ*S-lG4mt#_b;l)&F6jSld*7P*G@dsMh+=k97pArzvLaam>nAfiEi~mk*Q7;e;<&d
zEq<tG$l{vhsCF+#3_Ath`Wr>*Sg&YuJQV#j9J`wjgt9HchaldvCLMm}{k)l#CnpE)
z+0dgp@jI(I@vUh5ThV1F$>s`O+{f4wrdN9;+noRqt=v#s6x-f&X0P_<^u5vc<#795
za(}8|xD8eCz7e+lfINDV9emhzDE3eomU&aGiXO=A3*?fCVyYYsD$-A6xxfL9QNHri
znJHW!ilW@d+fub=Q&sqxjd?Rq;97vaYLbJ$C9oeC*foiLY7&D7*Tm1ttBGG+P@OO|
zan%JE2H0bD;vvCZQ~7!p?%z1Lf2BJG1b4aMj%488$zTD(@(#FlVNNIDBLVP~PX8$j
zykGVMjbg_68My}Oa`5T@gY5`Y)fmqajpq>>&pO<hl@m-`j^-exp@&-{G4?V4vI1!F
z_mH;wEPR!>hKPkvI(Dd)LN^C-kiQ+=_4bn7tpj`TX(A3q;TYltGefu$`GWsTB)<x`
zmPM*#6qk7wU>DrOOID3YFEcGz9MZ5P+)zpeTYm^I<!HwH+r~h3vi|_Zf}en=U)>E2
zdsHX>kRbshJepZSRwr)NXGa5jBx8mKeOJAU;NtMZ=?u3F#+!zM9Cq+&MvERXg*7Ow
zTlXefbT|jNL6BZ}N^<Z3f$+x+2%Wg#>mdj?UYpbM-v7@nr;al@!9Ixrk{ZgZ1B_uw
zoVSHGyhYy_cUaqcyOZ)LeMd5NKa)rW>g;r+Z@BR&knUFgk#OT(P$;~h@H=-Q$1xn$
z^NLU`8@8H5wp`D)m~zt@BwJ=)kXfLe9$qkj<Ks56?X+<j%#9nf*0*r;RD8jD2&t3p
z%!`5)nLUY}f|V&5a0Hhvh5@LId;`;Wu1dS185l<p)xlGo(S84Ku-sD$p&po=kQC@%
z{<msPTk*OLfl+~G1N%D*ONELS_=h^Ztj~}f-N6<D{YdbuU3CXNnv*&hboepi1TxqJ
zOGy9=5Xg8zH-IYef1+1JwLlT{Z=7j>J)V0TsEy4>q`c6Tu7Lf*DK($%m(w)nGvWsY
z1<I}UyRWf&ANgKRHuyi!KP|{M-LlOjn}0K|IsP>ckW+J4Bi5xSE)C?zK}&P$8lt*x
zw<Od8Bu3Ug9iF$3hH5wei-?z~DszrBX0JMJs!&iQRbbu=RENgmoF|r5Rq)Enq$&a*
zqrOx*@m+<uu5$YDafJ>$u$=8WuzJoUl@)bKqLkWuMB8(97a+4R>&QNZ@w)C{DQ3Ju
zbsh1vU<a-FoWojG_l0C=u#(gnI}-p>6QnnYMeZPKaW)T=^+^IY89MEf96Z?;-W5}Y
zLVu6{vct8Cp~x<UAi^kI_Z>Z!8F%2tA7;G7-rw9bfYH=T8^V=~XMBVfV#XwN6-19h
zGMo}#aNOwR*!*aGg)Rktrih+Zt=SmcQ8s2k^O!+xRomLC25leR)H9llauRKsCg!U6
z=4kR5l!DD(%O^denv{op#-hEN&AiH0Gaf@KWdCL1JE%K+FNM3nhdiMZkivsFTATMA
zwqe-T^ub<YHaGh8Iu7w(ojeJ5sFBB2CkyX=V3cP4k(FNlu4=??<x4Z(&=S+O4wgt`
z)YWGZOxFYR8+tM!(1TUM43j*geNbC?K{Ix<NmN5(k(a+&<Y2!tzB&Cx(1kAi*o(zN
z*Y&a-P-8m_!VM!?Zb=3)oz65uOvC^fJ6ziPYw8Qy)Wv#h`A;Z1WP3C@8;wRmmUk9$
zjQ|UAmI`*!Bm(kGUaJ#5g^j6%unouXeB#5&1?Ke`+ff;w--hxVjc*w<Y{QsgAEXbd
zNnTz+1>cLtiNybAbj^pdc2&oB)C_2^8MLdW&*xryYfU^|1Cm~cQm9ouPfhk^8dF^}
zsjG&olFQIXs^cv+@qb0veBjJwTWbb=Ueo6zu-`}Z#<oXhtsf(yy#<I+VYo@U5=`^7
zAsT;ibbK9m)DBxcrE1$|d`nqDU`AXH+MRD;bj`c2RvF>YQfdY*9k!Yk1?;E6+n}K0
zbmAyZo7(1h6est_du%Gfx1r?|)W5Ca27;7Agk9XSa1BYi5zPF~HRW&#K{WPZI6C)L
zQ#E2=_6pBWlJ4R|RIZzKz072+qLSWM-nKVQE$|#r-hd6>Ah*0)f^6yK^;s7k1fJ48
zxxoJF<3=}q-%F0_Ma-1;^q#E<hFG)4RW)^fI&5_`d2SDmT-NOwUXUMq_vJo|n~1)i
zolx3{8Ci`d*E(8HKdP!)e5$(YE3f^vMc|RzTE9w{bKOpK8NNH*A<#7R1e9&&!ezTa
zE2?*Od=sR_les!>Ut;fuy~52DtxjImD_Z$>I97nHY{D)0<6hN7#k~Lw70etTUeF_o
z;grh^GN^Bl4q8^z=f89&Uv<X*1-4#MMbYFeuFSd`k@a@?Ml;67H&@5E)x<wB+Yumc
zx2ovOr|G5A{C`008mBq6Zv|&HeZCkEyGSa{9KrxSN<IT($nC5+w^k3@8twB%G&uvI
z!*InHYIABPT^^qt-3J-+MjAUUkW&c0`LrhfVFxS1$X~&V<CDkqsZL(Mon1m06^z!z
zKd&Z+-V>A{drkbK^t;vZtx>~M>ibl!Gc}D`Lpk>78EyFxx%Fx!yx{w>51$&{XKO^n
zrRT9Pdt6<#&<q0cZDWRQO|8&2M~mO1I(g|Xi@)K;w^f6XYN<i-&r%Ia7f-%L?NNe%
z$NgyhADVo&g52ul)OLoz7hX@ty+D~dmJ&dj8pJO{#fXbNx+V1)o?bP{t03SfJ!_KJ
zlc~i9d&|Fj)(qLfNIxZ6`@MDzT`N@`UtJU5%+ROTxEbprZ}N1ckx&zVk2DHY$5$}M
zQg_RhEO8Rj6>l=mCVKIagPoR?YxXEJZNf{A?Pc1Af0$<AEGr|EG}#;&UeNm)_960Y
zt{AXk(E2`YO+<XluzYyI9?T1|<?PV!|LoDq_davVfUSc*+qP!Vnl<n0W%Z!8KI?J|
zWs5WS9rg2^xo;3P_*ebNX+$^`@4<EBl8r@z5d|=#5&74lHBmS|A*Zk%2)kcO2_-s|
zASM`1y*KgQUptLIi(S#ml{rNZSGzkV+nn2Dy#0I`wVwt8GN<0b={Y;q*;AMK;#3n=
zolP7;eCTa0QX|5RII93zumhOcV`E+3@To8_sd%{rV24VB3P`z(hxiD2!FgVMJ?0^%
z3#~!p+axKY@pYP(SuW4}Jrzx1`GUtc9G)MZhiy&={EwRJwZHTN&F7_AIlt-6eW{-3
zrt^-efbj^H4&%J!&HYjzXY9qGET8daYMp@MF&taQlk#$oRt}7O;ixdx4y>s6+Lxp`
zCe<39yIh4iiZ!qTn5c3IT0?a1_Dq#umd{w1nr>C90_^=k=Jq9K=W0#wFKa-d@~aYN
zEmfi=;PE+iY)E~(qYl(L%SzCDz}il&pHo<-nQ~wo26qG-fQ*A+dpYj(b(BbP6o@L(
zl;XDt?c`BIVlmx>%35DBv-9P%#7Jn?!j*MLKvLW1Gvk%nxrcBfg$bqEQv<<1o&TqU
zoUZ50LN<A&o=2MC5x>CJRyjarmYk*rbb;<W2A%Ed$fq3I>mVnmc*im5Q$IrL`P0W5
zt6u7Ue(ZkEbw6jipBncw*8QC5eoDrvoR%2n{?JQoK>f5OXH*;}?3@AF1XsCw=hw0R
zXWZ>sl9SCgMTQ31U`w){LN@<WbbbF!SMT`T)r!@d_@OnP46V#vKOCYar(2TWXA48`
zHiVf5T$k}?Zin5@i%$%w)!TldGE7VG7In~z_jOThU>kZ+{MGNr!7MB${2%{A;u2<X
zmWp!oqRfkg=ihGpphbM;O6~;Zt+iK=-{S!>Yq}Fh#zyeTgpSI|W7{VsYQ>+bH)<{u
zGa<dGD!icop7lF_U$-x1CkwEt5{3~L*<9n03|)L-4qh!b(naSPZMk7r>w$Uh=RfYp
z$00WLzE%geJ}>a%LxcUpK>IJ3peT_Q1p(SNY(<nvh^QJZ+qIIJahilgUEk47Js55Z
zo0euOX+h6NQCKcTft2dx>Fr!&SrcE5sOZJfCDK-y60vMCtk*uasqa2kI<|OM`T<nB
za1A$S#@@RD<Em_3y~8&`%)IEf#Wzr4xbZfjL>oW4{a}YpvahBrJdI#sx7Y?$vKQJU
z+vIP`RK#hA^xmvY1h)ee-@z4Ee=HiXNT$m%b~&wNo0sf0x1(fFl{^rWcBd|>p07;h
zYJVw;rIV`unSM$$FdBAxkEkTlGPLKJm(ZI-I&_kcYX*H()92l8D0{6YzO+;QpzJbG
zHU>TW-Dt~4;Oql%_Oip-i^AEMri+SY?kr%*wkv&eO`H>48+%8$wP+<XYp9UO6}wJ<
z=BU}5HGP)XB>V0OSWNKD{a&0^(Av~<5FULxy{QAax>RWlYr@{u$<umQ$5YgFU`?EJ
zrSIPmjlWV&J6PQ81RKi!+ckYYbwv80_l#GEp*eIE{IpZSS91%ZntfT*=k07ku7dm2
ztu3}dXPb5!pW{i40|+(oC21Js-2&DP2Z6t6?8Sm;`^uWiS7xO6Lts_%)(m+CgD$z*
zlyLBI@`|i%oHhOnoUj<-X$?<{v;>LT;Rz6#pDr8SbO4%rK{VF99R?<2!OV|ph5+)4
z8tIGgMsY5!221oogv#i~P}8sJv!uqf*Dv#HThkzFJ&1x-FFDqy-c1m%8P$Dd4VqYN
zd#{-r()ZOgZk;u*nrrUN`q)7y0Ddpp?pzK)Gkl_57roQWDal^LY_-Lj=~JWLYpGq*
z0^@Dze^XcL2XyAt<lsJ>yQ{qVa)8$Y?Pcr4iyf7L`t3D+{OV+17HIE*9TsTjj-`Wq
z(Rj;3!%h5kDW#t>g)Mg>1J-PGuzXxSXcJwD4q}CYvbZtzp79TBM0lzNE{fC5RB9ey
zp&d&GquqYcu9s*hHg@#u6>VQE`u!_)9C>Soq#V(=K$#l&4z%^GiNAyl=pBu}UOi-W
zG`>2z%~t8*hQ(y!UJr~6+cmm74pdeTT2F&s2G$L{NBguzll}WZ%$nqQ!1+}Aa{35h
z>Br)gm1Z=P8)9y%>C-l*sn_6W`>PsQI#1cYlw~Z`x>~#?Il?fp0d_c5^r<rBP=%Or
z&`PaKb855$p00g9gRCsw#<Hu$HVI09YARHt$E-3oAt2S`o>+7Dp|eu8+;)?$S{oZ)
zFmNB^tz=Y-(N5<Jjq8I^Y3B|5tgA^5RJTt_R`0_QQonnoM_IpP8^gvIRFR>o>pRTe
zSqK>-;9m?v?ToDVU^U@lk;6q#a3L6HeSi13FvCL70zhp9yU~2u1ZG*8+9ayuHL{s?
z2Zja<bA@<GEdn$CizjHF>ONn`X$^ZynYIj^3na5$c^{cfP#6CG7*lXERAK%cyuUWs
zO`ObV($tcLy9$((b8f>QcaybjTK$-?lf@@JGKQoxmzOK(=-eIiXlTxd{_`)jw<o0T
zVYcIxgJ}Rvv{=xVmM!rg=kA4XicdXjWH(snG&>J(v`N#23@(|l1b^7qGNq&X2~?l{
zv$U4%zb^VqcYhW#WVTSUXTmWvHedzA2|*W5W=`(DC1fVfTU8!@dgf#=@l)Kfc7+=s
z)mQKZdWRqJFi5H7YKqpAE);e^V#`LhNDBYf8$>2=>NkNkogws0No~5srgd}eY2l|m
zD&+n>PHGG><eAn&wJXsjR5#HYP=zRj&XhHFhN8#kC@$vg^rtfd{qDoQIZ5V$a7!lX
z%iOaNX2Y(tB>%U^nYz;(yzbtgr8_^dfya(6>jiPZbvV(Y^x4Hs#8gR^mOdnetgn5`
zaa7B@Afxo*J%o&go(>ss3y3Q4Z)6r#U*Wsb4<DqMYGNVXQl9=DJ3UG&5BDR+f0p1E
z{QH~vDLjwUXyX4!cFRol;6UpYw57c83o8)P9OC|u)`-c_kr$h#5=)rQkecofbeUCx
zUxYWJ75CyW-;IA{2WmlRub+-Je}8SACkj6<9-9Z#4@^x|jTi!SlqfA)V-YA%%$%64
z+Ev+FSDd`6otUXJCkA0}!;P$v^OSr|d*!a$R*Xkzj>3!%<P`Xsc9TTpW;h0@VO8!w
zx+#+;m~Q?P3ms5pnBxx~!IxhPe8k4!OhUtUW8kVX9NVVa%6GFCIo4Tc(AS~*@YCyu
ztkV|LLR$e%Lf5+r#{4YY@DLy5Pf__sxZ&4IypX2Ynk7(e%cu%P<FSh6Dr<IdwzQL>
zXYsdI1}qh!cdikx>ZY<+|5I}m8rNENVLtl-71pcRyS6bc%oq4e-f$8J{>NKU{*N~M
z;8=kdAoR45Pnmr(+Btfz78c;(XE3y3ApHmbgfS8jAR>K}-(zI(?Cw(Pgy9E2R2dk9
zbxT(ak56UNRQph<uAFeDi)@hZU-JOF<;~WNP2)sMD3h%~#IGIl4K$bJ=%D#);OFnN
z$FjC&d%8K?ST9<|IoR>cBd$fyde=7?B_=njg$5H4F7ZDPWwLhfMy!L0)QyX&R9mLs
za$vtEGaGz9fkr_@2Ce?9+<tB(PC0v}?nX+E0z<aO&+z9|lttkL67h)#kRuWnb!u|U
z!`(1<;{C3mA=Cf#b(aBAFaC9rp6bd}q3d1|-6JW88O%+Aso%)t7O$$n`qq~&_@5A3
zF*Qpclc7~7<;cGh`sLqpib=P-zHdKIe$Rfs^*%*fJA7uk%on?akIwU_`o|1NSN$6v
zbP!jxMlNJzc$2vZC*1J3;cx<gPh^xa{_oI-mW_xMd@tLiCw>-wdc~0CoMb|<2fXC3
zHsWO_GZ5I{rDaGd2Ydg&?`JTUB%Dm#i30F0Q7{)WP+NZu%Wdm~M22ouv8t9cUmyL5
z8;7_)gI$fts*3bn|0cr%=qk%~4;w6W{iwzewDUa>q}V1lsdm8+2f}uPAC}wRh3sK8
z4kNiWaxqgW3vq%Kv(W_DLef{XkSKhiXl&kmZz8s`2pp8@yY)Lj@jz~d7o%2cOeorD
zA{3{P^=^LEL<yZK%%B!T#<9`QAj<A4^pX?6n6?CktiNu|AX0?<fe6X@!#rx{T>yYo
zc$hI!M5B5BMQ@l%FM_n{1ZJ+l2<R}Wqw4N7dJFnlKxJAx_Us%69jHeBbFwf_QjhUD
zNwzWhx+VEnybCdAXNUnsy3k{9M~_JEd{?dcE?N*@nLFdXO?ynV$DeOA9&MKH!^!UO
z(|u1i^5B^VCNvD$_hW)^r{!5hF)2FV_+;^WyO^X6p-fV;fA-7E_n&)Nc&$cbAxQF%
zRRv6FLQ1v~O$|w$s(Z4nF}GfAB&x8JLxF}hjBQQ+lr8Y$*+2?Lha!J8$GkhpG9fFX
zb|<wK9&L=f3YQ3MH^;sM%Kni-Sr>dY2!>AQ3(#i(qHy3WrW2dRlD%xmM0DsfY6w7|
zi`Htk3C>R7i_;%n7uJ%h00r{=;RA@+gx(h0zNz*vvF)GNJ_<{E)Hn^4#yHcbSK}r3
z>fgrI4yg-R*<@AM-Ho??j=so4S+8&biU=taghF9%qA@pMPnPb<R_R435dASmO+|W?
zV2_%HL)bun?b=<2%rcch(kcoMmd*a^-E>tkTYyHKb&PK#939m|TB8w3_a{NAMrIL*
zI<Iu3VIYprfhUudGLtD%#P3CHS@77O$Ep05@H>s)f&S=DAX%_s)kMo~I0lXWX5FrK
zg~1MXB`WM*H~;LnK;CL2F~rP8P7q5t01B|ZMJQ%@2Z`(=-y$&13<AIUiwW4Id;wA<
zq;!T81+kD`#dhpfySpfr{^h5cWp?|9oDqARSm4%kFvGq=DlnidvA@Cz&9og|t?-At
zQn&svr&Osjou^WF<dizj&UG@3obx}(8X+jbheHgs7d09}&Rh(_WZ~=}Ul)GIy`c-g
zt1=3;5EzqSk>LhgA+d*ha2`izwA&7waU5MC50w0+P?9`z-*!SMSPp2uua|rxFRu(m
zAH~p4?BE0b6K!B}?4zyjL=5Jf4_G;aA;TdYo!4(wEsbl!jnC^rJ&~d-VT*c`=U-xB
z12RLUV`Qlf<uUJ`lPr(fcY!heYb_#5)cG>2Pb0BY{(XZ`1V&y^sNCwE-2|3XB$937
zT?Vm62)UJUIIJ>kb!t!Jn8m0ZZ^Lm2>(joSLqzS_`G+_=fAf0S@~0We;|6voddxa+
zH@bzFY;xg)-*Xg@Aw0h=pa*9ykVYLdkoJbr0fw|069_l9DR2mYr`P!r+E3ryS)kA$
zSem9)mi|Ee3hO)%$a-<ork;+I93HdZ4?>2jX?LhMQ)}n`M5!KTnntBmU!m$Fnd%vq
z8h@Hu@{Zzvy%w2CQBNiQs5P$s3dGKcC4THpfd75h`3;{?@o$$lJa3U|B@G^29-eof
z9y;1~tU#wM)9!};9d>;}$Iyp2koIl0Lp6ulpr5Gf)p-Y;btzM=-{*B?(wpS1!+ii&
z?nu~dJwiOg?g2O&xY=spEzko2vzT$<b;e9NqD|$?oVflvpr~y^Yd#ZEr$+o^*TIE<
z%Wz>QdWGlhaQMs>nKU%j`oY6QgUml9pP3X<KN(Sfz92#9Ncv<Z94AyAQ9BFOD{!L9
z0X?>(Z@A$e!(}k%TrIqDOtWLU`MTP7N4IyjJEb5%jMd&(Jpu)=2tu=CZX2U^B023O
zLlbjjDpvrM|C3RH{&nSHIYZjaDrZ`fe;sNVLw;>jPCAk@&%YmoP6uZEALxz9DQkxU
zOTZE)*{%z+0Ub)ukuKX!8*;Mkq1voGn6R<wH=S;^J^6Z0wjRo+^8RHGq`NN40ZBXG
z{_m@T-rSpe7R7oq&yxHD-+(nXv2e<a=5G4rAlhNPAsS?KVoaAMLJwT7wR^a6lQ5kO
zT{}&x5WTtTE>R=&%$zZD`>*Ybsvp~Nak$Y`%|zj?_MJt+9|0~C7&{m&R#B=^6~X%c
zIHqMGv&4&s&Q-BQVSoL^SsI4M+f%3~KP;K&{6t3;>L#JK4L~m&bhz}{fjkcXF)2+0
z_mdxvJY%l=o+i14uLNE7wxzs$Jm7YsiE?4ljuTzH!&|k}KjbA$>!BG>q+olsz3!(1
zL020UzhaNYZ|KJ^J1Tt1z7#IyCvh6Gap%S1*kXEUesG(^Et8P6{cj~c{i>2g>CIPw
zI^3ym6$+SCV1x5kxp_!W<%!a1<WOb=Xzi*I+;zXI3~%WZg$)MjXuk8r@Eg5~S;?(Z
zR+Y7ep1*V)*NP-VA72&_qrr&LVJTE`zZtJac`v92|0!OoaX3^Z{)4=@Fjyn}yLoo!
z>2Ep26zI79Q2Bq3&S5cIQJ-+4<ygChB8!cWI?0z=*LIn1lA-DhfG6Ey=CfV^j#R0E
zlsl)|;|Z;yPk72}4f*<k;*+lxwl#Sq3;SAmEYkPg>39UHm}JaMOfbS4{(p`61fZ^9
zvd%I$Po3dAt22Cw!bLQRpcsHXCt3I?FScKSsjgr6ww8t!bvF6B88D+-CPUkYAK~Eh
zZ(dEz@PGQtR)fylt=&%Th384XAyjd_=+BUvtsynrUFvMYRB|g>d<aO9*5iNsS2m<B
zxdsF*3!TT0{xQ1huA*XRw@ws}(12V~2UmoKlchEE=Sv(nyh8`PIPxc1IB=(ght^gZ
zErAtCNq@bS!R2}WzUMjt23rA%JB^e){$I1laQ=!5;}z&piY4*Rf=c~CP*ChMStTgO
zfyUGu$P4&-X#DN@Fn)Y_oRHX=M7hfRko0y9FGk6Kc}DFUihhaqR%>^-Z!V9<nmKy`
zQ&ub3-&SDbw8Z9$8tLOtP(pg%MD@gZ8gr0?RJK!2+rKKd@xZG3o&Cd&^R3jGn@6yP
zJ~~la0?&-mu$!ds@qI=oibG<f<h305IB#>=7#(ps)Y8r=u=v3GAgfJl=*LrpO4>jc
z8TNV&HWFxkH5xEW^k<;|1>T~qq2XkPVKr3gHOS&td*bnkn#uE8${5luBM3iG2G(0N
ze&n;zQkHobp@-B9%+%a@-G8UX>N`B`X;0gD%Ht{ZTPdBa;-+(jn+*z`LIGn8iRnLQ
z4IMgE&Cz_B>A0|p#T5c&&_m~<IuT5?lCuJ*5kR@c)O3eGxGwh>x~!g{^DG;u;{^yc
z{p;;hTbli>#noJ0cO~!D@wU`518QwFj_XjHKheIfOWnp-2(n+e@t^c;bfWO*unuQ-
zgmG>Zh7ze?X9~8c;DJ_fd8(1G)p7XNsZwTnAtHa?{bD#%-04JT(B<K`MpjG+GgYLD
zU}{1($V((y{Km!LL<8!TTUAA9k68>TBT>AHOodzPcu$5Nw`@#hV{cP730g8ylj>wj
zvrU1?#HvnJSX0Z{rA&=-=EnaP<_Jey1q?bin19oU<RqE5+#Z(XA9;|8&pTg*u4|kL
zGAl3eqq^7KSMzdjIA!if?}9|#SF=vPN%xxwT?kG!8-HJt1#c>Bt`ZR8hM!VO2SSK}
zSHA-q{1?pvoK&C)g&Y2%myQ4y4TCpZ-Sm8#+M?%J>8N8Ei)DFVSu*3XVPE@@iAaG_
zUjB2ZQ(1VyIs0#2QqQe7*33TUbsZaFFSiZeZa|UsmyBR#jlF+h{g?ZO8y^V?j@#^v
zGm&18nzC(4UVXUn4LZYX#T2>IH4-<JLNoeDwzhJlcPv%B;291^?$^*e{PYHM!oyz>
zP?_)J_YAIADi<g;;*m$m@%^{9P;dY*i>zS&Dt7mto^jON4;2eC{PgK;UhK@@VtX5F
z!}GtAm>IIuOFnHky=;5i<3HR)y_Q`kdV{uk`8$Sf<sf5eb)pxp9IXf+uXucNPMCPY
zE27(0RS$YC+LIlVH|B7VhO<?E(+;LO1=VvQm-V|42=%*MkS0UFx?e*rh{&7_h{!w3
zYLXiq{&-h0QD-WyalJXNw_Syr?PJ5>dj0Zlb;1d^1n+J7rILs39U8A&No$FKk>)Oa
zm+wm!jo@!;BLgqIVCMd@4-bsg@7k~SQvUX@<L26#5%a=*Lc=w~WC%VRV8|6*M)$qR
znS;ui&9TO2Sj3UmOE{vWeqt54ATX(4Ll6W@>X-IQ9VcEUz*H?_t1{~w2-D)gY5hqM
zGr#i9aHCuqF{bN#llqluVDA7z*LgadzBF5B?W37`QU_B01?%(QG?bH}HGgm<xKp)(
zEnmN2^WNayzQ?KX?iJm!m+5axv9I;A*-8~o`7v@w<Hq()lZBt$IVvxW4iRrQ@YmT`
zJi<8lG-NDCEEZqQanI9cv;3UFB=U=T)x*cWJX=5c4l;gW-3z`OWPC5-`@KPaOk}?>
zdK32Tmaeq^U+;cz+&!^FOJII=Nd|q8d$z<O<ks=%4C0k(ZAT_c@6e2jkC`UP$L_8q
zdC@@v4p}<e*=l&A&oT=qi?9BV)DxYzCu4<-7@FHgm>~Ddm-R5VuvvA22NCqWz;8ar
z#Aj-tgBIGH5&!~>cF@^u$<=~8U=u+*q$3m10$DJlCyVD@{(ppa#V6gNm6k)J5&zm&
z2kitQ%k$#F^4{OapcVA~LsJ}5zY)wEJ2G_v^PS87k6<434Pe6Y(LB{7Wd)p1*aw{Z
zCj_uh7VHzVu>Zg;>c$Z1i!-oy0qfjkE?7g1gxUw71t=W4><i&cRwhxnNUgoQ)M09b
zT8m`q>YL%7GX2_AWuOOCsmLptq}%_NlXQ%dp3Ee@WV{rVGJDt^E=i~#`gP#XpPvhU
zc~|gn@N>a8cZxv)_z{5*@iT-Tk^yAG?Kv=-^X=Z2<Ud4M`qVxcFFN~=X6Jq);WB_H
zBP4L8Xut7Jo7)TT+&+eJP<)sDXo_Y>!gQn(pp`B;xGeJ^_{lpoaMDBytd$C<Ffc8t
zLIq?=6khd(sw@4mez2OwTC7N4d3lB#bf|}GZy?{>Iw$&nYbLR%Ud1YR&TI=WxaOir
zeS3agD|g~d#j&yK$5m~9)z;?r+6r&T7O%0rwkFsN-Nv@iG8V}d8r3u?iNL&Bo&`U?
zKK;H+{Q5rni<#fq?%9A3uz5ncWnUJj7XNmF<Zd_nVMHMe)a%cz*Av;i+MqCph(Lw@
zF7SFX1I0aUYerZE5;|2;TC;XMUV+xwn;DUb?7N?9knlDAdSYU^4$e(R^(w=Sfp%8c
zLEIv*Cp*OP31x{16fGIDKCWMVr6v6@*^$$N>GKndRJ#d3qG7kM@e;DH!hL1w$EY73
zlz5gvi_lGQRX~68{Oy5T09~<hR#mpFs@$^R$$k+lWdFetW?`y*GKXPpP`!eo$S<h0
z)a!EX+@{8!$Sqo+d>xK=sb4bjc3oeG=RG5Yb}~6H3$55P#!R(}kX$oR5s>?Z8h@rm
zOX%i-qolmfxg2##QIeY#Re6%-Io~2IKfp7gl$XyMM)J^RR=k%}(x0Mk{zbH1$RDen
zq@@Wlc*Zb5<mMJv$n3ymtM~dW*M>|BnpD2GD&_U*h$2k{=jQZ{{x010QbTfW2wnI|
zi$wZYp0$r5wstO&tOx`ULpRTV<6~zAH40!p*xr*+r%(5rGI!@srquOe@!F$)=akyx
zvNGhwS9@sx5T}{y!Ts4d-y6vZ*Gyw*#0Z!KX)7*L)1AHmC(1`Ak6$I=t8;<xN}pL*
zb%TA{rw3<Y7cTv0UUjg;dn|WhE-@7rg&7CQ>Y;h~&K74nVC)8+CI|an|J>Ey8XAA2
zEucG~`cn%~&FX-v3qCnd-*tQ@L$lw7j#TZ38@0e4bT;>H5*R|v+_>Vp5XQpxb^wXQ
z3-=(&yKoiG7W;XtHhBy8T6^F0<M&*9pSNuzuIC{Pcta1c(B7f`P2<FPRJw^Ng6`~V
zjj)OyKhL~OsCv#mkYFfH<&MN;s3jhNQ{NzPe)R)gDwSV%0bR*>5*9vSd72hFRNcWF
zf;=9&S)Y@k8-f~myk)zaSI|Qsw*nh=vCI6F^H8Z;dPwGRK{@|H5MjH;{(1OErk-|V
zPZF;SKCh5&*=bAET<KU9hq?8jUsVzRmocXl&e!-W-FpDzPod??RgSgYP5C?oA<GF<
zUR3<gdBR&!>HQ@dxD(fG37>D@`wp;yxhg#GuRZeeG|o6mQ2Z*nsePG#E-amT7C+&~
z*DIuXmNXnv-1fdvCm$F4;?FSKCW?<IYvbzc_QLA*HXlS`#KT%1scx#Oo4Z(dC!r_L
z>`kfXRVoywlz<Jwt3R=SCcJu4@ltyxEIW{4%FsD=3+mn$F4{;R2-kideJLuPL%$F(
z>%;S2ffadrZx$z_maBx$t!GM+ePtr_yED}uap4aoF1+y2FN)R|S}tosqId;A9BnA_
z6347-*dyF;o`;Ub=_-N*&B2KcR(ppg@MoE*75oimT8y|ocld4s&_p6sDK$7zILD0R
zwxdy8HeU>A!Kq4@UI{Lkf69pHfc$5dpK>0B`!N;xucB|jHy`8%YwEAD`2~)iWTb94
z2)-C@8TV|>kz7~;h<`>#O*5P?^YIVRcyV*Z=P!26`uiYjc}Ld2yR7Zc=46FC^88sr
z*0PSQx4Eo?-p<KtTGq)yRueA%b#5v;KetAcQiI869V&7i8cc`$3sAZJ@!%kJFC&EH
z(#ML8ylcYq2l2&t1)8PCS@L-+9pCCwT>WEySfBcyS$cHnohc&Cm+WYmxFVIp_@jDn
zr{2^)Wc6QqPV$Y<8jUZ%oCwW0UF5wkwD8_}LS^9}W5&dL$<R;Wj`_c(C5GOw^|^7w
zoZ4XO<5Gd5!kej97Yf9h?XCfv5YJyOC|jgn6nKaA^p3|_H;?M|qfLy))i)frNH_^9
zVoq~64up%~a!QB$oeW={znF)UIQ<k~mHvmcyv#iVZwKXCH3yocrph@72VW^wRQPy*
z2bM!uBJ>V2-o@r+MQ(`ly*`VxC74T>J9KoFPYu#+yV}Fq3pkvEJo5M&OL`)7<Y^jb
z&5SetFDjgE&7ThnLO-NsS*mVo&&nzFkeQ0VwoVO2GkKo3JZ{*Nic!x$errz<%s80N
zUrvRA7t=Fd+*dt3k0zMWGVyp1!%vmAZk{Skv)Plm7s9)+`1T3Fp`eXtZvZKWuA?3k
zCx=@-6W3FF@$d0a<@X|ib{;~fX!wDohKs%=^V_4tMfB~w#ry*QB!Y$&z0Ui)WD6Bo
zC6ksy5D|@eA`v<h(IZ&?AZa^VAL)U*q!;{ucp-)le~GuFPo_?WPB14~bH^$^z@ByW
zSE6)3d)6h$!sTVu89w_1b%gf&T_hdTww25L>)3!tpuCmN8K$<DyC0`Y$q6(eWJD_i
zk8HD_%gKhNFVDY@Y;*|=78R56x?z^_pl%t@4C+Isk!_Z%@7vw79iFLAy(i=0uD-Ro
z^1&MJ71W1jO}6j4`qp&I_7?7t2A|l6jBjB<q$4+V%lKE9F?3HqF$%0hfr(-r^botw
z!>OlKvC_5m^KMmKm1#?4BI8xAt;@S*^n$iF7pW~}9qY2TKhqVzrDPQu%B-8Gx~9)x
znv+f1o4*z5Xx*Ib>f4GUPdBfBIVa<u%J@nqqvtZd;xZ0go|CbUGTxubIKgGSpN#%H
zaEreZozB`SA|+!M)YjMBrS+6V0JS>(`x64uW!Y}x2dR4GDJ4t&Fv9g2nb~tx_2t>A
zc;f2R;oVa+*Q_9=)7aLjD0JZUru6Lw2*3Z+i0unH+<*gV)p>m`#4?*lMwk>h-zM*S
zs!jU~-;B#oPKZ2)QNv+;(YX!fZm<K?iTXBrZ0~Z^BwilJX*fN>0%S)hocxqT^tWsj
zw?ygjRG)aVOqrh<%-{GkdL}|l%ZL3&4{NQ8Zy&a;<&)mSc8!iNt7`F!s)lVI9ludI
z3BWQcIk30sTLd1#8h(?EkjXRH%_=?O3TY_A57f_vIP`N(rCAXZ{ohEO)7OmdQ%vPL
zJ%aGB-3O=!26vX8i~W^QzQa~GV9u|yOc^Uf;_hba-UdQ35;duEO<gYzH?D1s>2tof
z>?FIH#CBBEEo`(0UVa_LzxKi3qfcg0-$lQjh^Ruph27;7#b#<rBJ|(!CK?;ecL9=d
z{e+ijnkeN<Yy52>$4fR%=UwMi?7<RVS3)9Mq?g8Kduf`jQo*;|*Z>YU{KgUr8{~zc
zj6~kVk@>&8CW^o0FH?F<UUoJGtAJ+(<Y$>YZ3L0{<kya7ee)1~cc*#fjm=j%$DwlL
z$>+A6Iks_$x2%3LFz6pK7p)U4NLY(8FIi+0GNS-$8CEqBBrOPC>)9a-^B%V~8v<U)
ziE#qUaj?pE7ze&AVslq>Rn-I(1r*+vx*k8B;Sc6Wj7@%rh5Bf2<8Dwp+ruLC7qS&*
zCijeTp@~zqms68BLDgK1=hR%m?jT&A8YyO>-4U)cS(wmj(`$B<;`ZJRH~8Isf{wPE
zOvL8+6)A>pi|*{6ZsZ$D<2#ZfyDyH^JMqCBtH<{M&cDR$-+tax$b<w!s6!fbTVL6z
z>2#lqzv<%ubBV&&P62b6-7vSI;D@!cgX5;5x5c=&CCkcY?u$z{h$HWsDyAczK~KZ9
z1lQQTOyLUsmI^caXIB25zY=^e58u(u*^!cL{eI+0;6E9xe?9zrNdM||KFahgW-(7R
z49`2mbODxB{R-ckjVvm>ZyckGd)bcA$V(J{#7B*ToANB9DObAtsx-EzK%V#}lc8xp
zY2K-FO?ck3FoZP6mslhHX3tT1iPC3Td+VUYMWje4j+vPbT~fngA2k#&zT8?rIA~o`
z5IJ_GTEB1wLhdEmZ#pk3-?K$!vhThY!t#9^C!1x&KnECp(~rR9g2I|H3>HT5Q=}#e
zUm9zDYizQ&g9X)!+I{GI=oMK9pxg*37hxC`esDD{LsyiG&Fx(2Qf4~1e(2SF%Ux=A
ziy>>!>TlRnl{E1=y(kztOL9k!QZG}Xc;UJF!B0j%^NZ3y<9Q;JfCjw(cyJ+I1$Cs(
zg|Plxj9v{p`*NHH7*WIGucnIavCVVQj#7IBuN)(NSmPj3I#}>uIQ$=D_-XmDzqjg>
zT<op&wteW9<m(lVbp9nO6yKS;fM2xI^^SZp?&%-vq*bXSEsIY4vQFB>mw-QE2Iglu
znFYemawZDTrDaSkM=4wQP-7Xdz_{EL=iBW0{57!5%2@^BqLry@sDdR-`ZN9c1dPF>
zj+%+k3l|7Orq>ppBhP&VVi|-u!Jf@ypmfvK!Y{rO{=)B=wiEp@M~RW;#eWA?#e|q)
zJ0F)2u)p}VoNTrvT^M95vux`T<YYT#Sx&aSRNF6tY;NWHl*@M8dpX&x(aVBt$ZAM@
zlgsv}H96U=(UZu=xWX7k*U5O&cdglml{p#vs@VgA`rvZ1jif&R?1T9;%JsUz_F;k<
zz-$563@|J1K7U49ywz0$$_gp7pHG3`JKGG&kg<AY&(G@0r<{a-m}v+rrnTHJG#$it
z=7)d2Nunol*LGmm27cpu-g7ThuH(+=re;zxe`3^*nDUU`qdoN2#pe09g#|Qw&3h+8
zLr-!OJ_kKGh{w0EfBQ65PA_BI+v{G2JPT!$5kmfSR1eLPf9)v!$tYJ^XCYNO-0-rA
zHrZX!+!~+cZ6QGCHHGdl!;S<9`_ugsg&U9;7A@hYnLLgmlZDA%7}8|o8R?q)7Z;Ff
zJ?jNkJEgFKH~)_u{b4-^6!FltG!PHX=5Hc&rT!L1_+GjE`aR->=Ud~U%V&zcLpSMd
zS?DT$^v{zF;Pc0|_-jr5cQ6AnA`19eVI|#jHP3YatN@;S=or|U7nUs->^%QRiY7z9
zEezft<J~VQ#c3<Fo~m6lc*0Dlj(%20-D&>z4>RqBUQwoa=vB)b`nP-A&W~oXdpQB%
zn737Ilni~x(rI?=G1>|2un{lIqrzZc)*sIc?)~`LBl``=lC(rvXvMjPiMy%9=z|e=
z&#G~G^Yas-9{gJHiobxHfOz|j7QciWZq0sbhjEsL#>^aJ2F7KflY=M!LAEdbPk$7Y
zrQ$~-s#x6@LbpM80J=8@nBW)>Py4RfmnS!nXFejN==))zwbbkN3@z7BJk+9}pr+sO
zoZ5ou1fR2jCUpstTH(}gYqp~;!h(3uAKl&~FLgQ@{Y@NyNVOsi{RzAH_Gg}AJBYtF
zmj@l$%}ZU)llB-?$v8bHLyKmpX)ygy_%VxVfgvuh+tZL_(J>N*OHY(&uI<echmW<c
zl69MdqJ^8M)9pm@d-`FP{$&f>M=!e!J?f566gFA8>s0P<`kW~It+G;;9odY?I+ZB=
zLl4=QSB8J5;z{zc2KvIbL`o8cb-;;V06CfZEyv~LaKQb@>g)_~m~V-~eX{`XLV$Gu
ze4+!mA{SsuI5PC88<QwpdxAP@0P6%Oz<n$WGXNhbKZS?|w-L;r<mbTrYs<=s5CGqt
z0sOhEx&mHHHV61+JpDghc2|au!DYNRK8!rRj*|&F+FLjM^HRx^PU|0t-8MZS_TLX@
z7b*0`@xfr|N9IK6GEx(TXY!X#-^Tw+03<?x`w2xP?e?}jM_8VrE>G+;@>owK!CqDY
zdxKM9t->v^trjr&PZfp!%Zn5n)J1)Vs}H7im6K7G&kT>&P!Zqq-O-O^;d+|JPg>r~
z`_rIt>GzO~y!Q^`-TU8t5Ha+ZLjWUa^tzlzsgjCAH}c8g0;YLEo$bwu!pnHBY^fux
zLg=+Ct(SF&B|_DFO%#q-+VYwEXL{El?@J92w_L)Hc#|ci-}m?3*dgRLQ;Kn%541Ux
z91Hzr^_tC)ZB%_9Jn1DDZstYH#0Gu=?8`rDx^B`}aP!)+wp2ThuJ+n9khsS^AWza>
zG?8yk$VZNp<naf8U*$tzs0SLy{f{&Z9nbV&@Aq#q69@9fN!W{M!LA_ckfS}m?157<
zbzBV${$F2%yRI<`hVIQ&`gfH2+}@}50v(2cRK7&de}FA@EfOWml3D#AiF=x`cO08a
z^D5AQu<I@tv&0`AY^&*{`?X$8I!?W64eh~io=Gi`Q*9p;q0#)B^j?Y$%9?KqO=PG_
zdOwi;RK+KVdXAkx2*v1xe<jCbZQ4gFdpWep)l9tjO@n6x7gm8~b35o2`V5}*l8Zzc
zkLw=pB!|YsVA=y`Cp{v%%~fi)TD-%W)IppoTj!!@aYuvvEAj5KN^TlluT-=E?-|Ku
z^c&t3>f#P;0`d~G^kwx=kie1;rn%C9Sokn6VwzuJS_3b=-Z7@pS3o)Rdd)ic2C8zV
z8<b!$Z!b5wkJ39nmpfZBbbOHc-rUR&+Y7F3`V})RQ)b|Cy~*4-kp+=Fo<(?7H#FlF
z_^*#MV?*Hxr`K%6tSCFV5F4PCte8aZfqfC>jgKkAGDDyxgf6HwwW~2r0+OR)a2rJ(
z?@s&_Ub~M2u^CcM_3QpE&IF7L<+8<nr_&e*?0`(w&IL=Xo~4)TOT6?V`x$<gelBg!
zTY2|!3MQB=y#EXhl*JyCIC4ea--Lvkk4H!7?hD06rH83Ra`;V_Z(u74bCr-Rz4lyX
z?$4qxbcqsshVrb9&?LQG7;3#-pcJps&tb(&^`m<|AasOk|0*W!S^9wc`LnU?@TV>B
z@P}Pqf&$1{Eq{%dzl5yE>TA68X#FIHAA_>%4f&L%+EF8@iKt&*&*6ti19lz~nPudw
zZs($3Xw8qwwk-75bDUzx8uz`+*h^Vai{|{4(vqP(YXQ3d{bB?_=q`Otgtm~)xM4s8
z+{wNx@A^l9*D^^*pq}_|BFgzVqh}zo;`bt)M?Z&>^1JITr6QB^6H*ePMGR+#(#?nB
z46Hd~(at0JofH~EyAV9^YUM_uW@}Hjr4`|RH<=%+-*-O^mCzM};IPmF;XucD7F;^*
z@zC?%pXY7UDxZtRw8ldMsS0(%>{}&z(YAW#p^ODWo<FHr)8Ks=0Bjg3Q$h}0%=ipm
z3vuyR#quQi7<VvL)uYu_b4u}^--!`zpCj<7rEHmG$}N=ee^_j*vd#DAtjerW8Gtp!
zG}aBv_kGK9zWCdmoEl#KIYCa<XI-I`4SgGTBb5sBf7i9xcSx{tw2(@)K5w>Ws&S4a
z|Mj`~4WQ3TSrZ;1aM?G%6zu+g#Jvl6RmJuHod8F|B|TAzMuie=szJO2g-WbwA^~?K
zXuL<X8Wkz6)}kaxE7F7n$Z>lVtZngHwAyO5EnW&rtrDOFuvNf2-tfMU#|z#-u#)%l
zU9(TJ6V(6j{r%tPdGo;8v-hl-S+i!%nl)?I%+LTYkW_#0mfB@AL6o2EQ^Xk8IKOj0
z_ml87j7^8H0l*mC{-QL=Yr=*=^vTeep}%X0p{&2tT*3X!K1Iqxk-ylHKY2@0p4D4!
zPEwvBI+Pdq{<k^G7pm2aIF<~=M4jNxJyn%3MjX(EY%$fgY=A)I#>(lG)KTFYOz%Cf
zIz{Eoz)SSsB7w@Qkx{EzclZg9>Y!QKCu48l5}`YYW(D^`;NTrA-1ZA-7tEI$EKhMM
zezr7{!t4USP>P2X3(2dM34bBUYj_pur-%rkSEkAehE_WND95pa;q?N&_Kckxeyw$1
zPYYi&8BA3MQ;9<<zlU<X<hOPbNLuR{eNXl<2m`uA*gAzCt>eZ=wT`@cUF$IK37R=Y
zT;Rnj&)Ah@G*#Fy#_sWLt@C60LU2b2(jY83P^#$*mPF?1g&ggpf6Xc*1*O)S3SS(2
zu)8(ODK|%mOl7lz0m||uvUK~knGMx#l!DuAZL`EB+k2N}uk1^*f+!}UNNTkdn+s#F
zNf?98B1)iR<V<!Q!}_$JpKY%<*!`tQ{v8H<OX#*f@>6?#$h_5qAGq?9_eIcVtVe!O
zeutRIcwEfb+ba3+O%Z4l6^Dh;3x!Vx`UD4k^)AraA@uwx^gsu_I4Xu>!sKbJLc*ja
z3jLv^F~-To5ln2I@U9Sgk)RU{Ezh`ogBv4|hVzv`221ixdpLfQR{85M2@c>rxF50y
zw<z>GekjKKwA^KOU{Q~V+7+r9|Kk}|sD3uCS_5aS43@<$^R=dlha-j2{`CTi9!Sw{
z^PBIKK=xg=tU~QQVH<t=+>e-X4<H0~mp+Rc{WC@Vc&mLFjEoJ=(T5j5w+a1SM=+s3
zjc_=j{{cY~-Wxr{7t=~su#F`j{3z$&MA~~li>lY%{U!b?`gZeQjn$qkJ~Tm^TV-K-
zEGuuUEUsYlz*TIo9=Ji*jy~uX!M4`FV<Oe8p&br=vBZ~J2a$5ucB7GK{sqc6B#|aw
z!Ojb<23HUv^*Q!a0{T<WFYFK$1?jn(MU*g)Wh4Kx8>!VuQrn~<GGC}D`oc{X0yJYL
z3&v@Q`-&QrA(I6?JHhGn)vTQ{$(sEI5%TNy2OV=bGBCMJLP;jX3Pv^v{NKmLbhAxV
zC1aZw7h5fY4KqL<M9D^4y6sA^2>_|d>yzQi%O(KI>wUO2qOgi!wVkRzIkY!s!B4ip
zn?Ugo7nKvou}d{}#`%tN!GF#*f*r6UTw=<|SAg<8vlvUWV2mut0|^$03T;bfu}})~
z3TcKg<IXkA<a}#I6cr9_VJFNHAlgYL|FV+yxehV;kk=t86W{T3Q-{dX5pTXg6w>e(
zjA47M=WCn{57$mKYTap>+8M34qSj{Rd$zChM-~(221z^rO$<^-4JXx+obVJ8vRYX(
z(r64#no^Dr^yR<pY4d+d*8KnH5G#0+jj^s!IU>soJuDn&cP)BprjR45CiAbP^T@2w
z<6++Q;p*-mZa>dZ?7<{Ie-2@6%=1nKm~)~euKn2Nb7=)l;_f8}&YT0r&p*>aHc1Lv
z)<RB~3yL*rni(gV=Q#>jKs-MW+PbxG{{hjJn*$Qd6lmI+jT7&ZUoR&k9k7>K-ww|D
z(5|W8)hdpKz_mYy#0<O07m;yvL+UxE)r`?PliAQR$82`dW!Dd)^7Uf$#7ZNGes0tn
ztQigg!T1-b0?GU{05g~r$LUa`uoSo2?IoBOUh@;u)mdcN(;8Q)<E=!_Eqa`ux~DT3
zK8&kPaGgFpf{BfW9zhcy?fJH%tA_W2%lev>NJsBCGI6#r)P_6>k6>Lm)<*T9TuKZs
z0}PsvFsK`x$bV}|WV|q_@eb-}gSu3sL!v)Fb*}Kge;k1~pY(fan|MEv9fdRG(ZRp_
z7?Kyh8G%Fp&k8<ew4rq8U$mDieey1)|HnbO(zh^j1pQR{R+sBV(d%OOQ?7?t>GY4a
zm0^#U{(FF;_OPhnUanS1ZS64Yb@p6aUwK(lr;9xgzCG0DPuHD5oF6;zAQ?w!^4|)S
z8lZ8-u003i$H(eHZLzt8^%pF_1;_7Il!#5?3*BME*<pA19PZ`4QJ;IpX1hm|do=5z
zKC>R6)v+pGDf9pyvdGN)HD804-cc)vJY4*i^_1A0jg(3@%CkZog7bQAE(zrXQK2H?
z2Ad8TcBdX8B!IGp{TvT|KX#?0)bjXskXQ&7W)PmwyC1uqS3^QN`s&#0ywZ_k6Hid>
za?j?`G3Kqi>JobGdd9rugXZY58-t(W#Tn=)c>Z*pJhs-4=Hm<@>)tbGaW?N}#Xs1h
zDDEDa^AhEG{>=^c&d~4#@7(&hHND|6AhXizf&*9z1(lDObkiCyoJD8#W3RinW$x|Q
zv?6g2@rG^T*#pe-XFk8q))-v>3HG^<V4V$?j-FF}7GB<aA`pTl6m16pchHc=&kEv)
z^I6W{q`H|@HYQ(7K!1L0Dj{edJd7JwY8+szV>9`bof<|scwi}s?{mHVtDi@>wM1D@
z`U*j+qv(eGEE08?qAD{{zl?gSX+RDR%|xy8BdJCyYEO#_?ppx+_wF<ycH@6c54-UH
z$ODZl=5QP#>=pazViB2YWuJ~_75nA#u~|LZVs$+9hkcvShCn+ylD!(R{M^L5U(s49
zrv3;By2zU$Fu4uP<aX*AZV2E!HWmkdMpSktYT;>e6<#hQ^S?+*)H{C*aTr7@tw~O(
zqytW^B6oTmIkeZOg9Sf>P1%bRjJgzBa(oVFu-1PV-1KLtk<XCSX=x?L&%7|lVJd8i
zy#u~4Q7>kq7E|HQM5|*@5g|rf9s+c9F7ybt%V%SfOg~Nr|9l}L{A|g0?w4Wfjyx^W
zPD7ziaIr-Nz2?(STJG;O^>)+WOkQ0rf_CwLp}a4?FIK08&O22I#}<vFZhr0p9`sOF
zk_K*=+}5;`q$F-@nyOBuplPc!H<QDXOb-8q8Z_ATXS&uUvy0hoK|dN;qk}G9(RY!=
zdDH|aUI*6nnog{{@YnQXz?ISVV7sot&utfHt*z$<Ta!bv!9Nh9#5U<>gXHMAy%QJA
zd6-4Ww}KC^<#At>Bwh07d<)0F2sPn^Kbnk{Yetf-R2zIG#XT=nhi!c<w^&l8^}M63
zC*&nm=Z?rs&dBrgYlYrM&KzkglXl3-A`H@B;;5K@+Rq(hxX0%_Day6QTF66xWdDmy
z_6;I`<bD0gQZdqJ>Wmw_`hLJcwZ&fY^5P2Chz`&Z8LR_(ZO57NncjrI2ZzOQJq(4;
zrBGc8lXyP8g8BdqUWa18XuaD?rCc{-zlscVr<^1*-e7TF@=<%HlUQHL>1c9d-(UJE
z5Zf#`@yYW>hfFI%_{WF=I4-BmgQSr9J=)i&S|zqFPV!Bs<-1nsM*lZNf-d{900=cP
zh9tbBI&AepE3oV-+26*~`UzqJi^s#wMzbExa>q(u?Zz|gP@JYb`gEl1My?n}m+I(l
z!MuYh)$tIu8Ct7+KRs=%^8rLH`;stATz%VH+t-w?soOU!Dq?8Aq^QtV{h-Q5fQ>2(
zpi26gj*?8`52B>>4Z-AVAVRkIyi5J3UrOC^H_?_icu%TprxxljK*_=NqHx+F9`|>a
zu8AIIL%Dw&6cGi5&?cze7D|b!JtI-LD`W*@Eh>1`2M?_xb##en2lLQ&vC5uI^U1ZG
zjXpTF5zNz(BE{+5U?*+~@tWHEUS8RGGLtR`+4e40-JV>zaDC;5*Q<s;<&{1;Z3cI>
zm6Wv{eT0V!URByw&;Hk^rk%aI;=ApKa(CKJ-A}fY`*cg6yXpbKALS*FFKOv@gos_}
z4c#K^KgZ&>e!&?ITfFQSq@s+HX`N|HnI<q^N7oO2%b8V7$ggvc7JGaxzg^<`JDTn#
znilDY;-+wW(r*`L#hadoR^Eodd*tZXPD=jn(mk4-y*h_mS0P$^-LDWUH0XY^X;bZg
zbe>M79Z_g6<*Zfjm^AG*k+RxYfk2H=MzDmox;!CIt5eP3DmsQRC{`?bncVw{nCj+c
z9JJ9Oj1ZV*up65{0L9X|JU;gp`_ANebykT>f#N!Y+8JZlcG}=Nl76EZ{##Kc*FrMI
zz9h{9P_w&(u5pOXBF|wKiQTXPs7_3Sp08MwT#|s}uIT9gUHLygm;LMN|Foxk^=J>W
zcQgJ%5rZb)7e3_hj{a3X5|>TUT!6uj=a=fnd;X~f_$5qZm*A%K>(k?2@>GTjL3oKT
z)9Z;Y)CHZTE2e!%*G}m(zUyD4In`*SN;Po4KdrsW)*v(CyJT$NSHk{$*-F<o<mw#u
z;=3ccooMG-NPYEQpl4f|NnsJF8mk8-R~OKmBd*~$71B8V1M&_@n1guYwbnOxAO2-x
z+wfOg)4hj(n%LR;QQq*^66QCa9B_;_7$>v`xeBxr9K%eYz)NIv>pdibSL|fwx-<Nf
zi`lbWx@me9+m!)7h5zh`#_78jOt>|8h0gcDrE5h!Q#WHoW`kY=$@dzDob>(OKHe1L
zBj-`5EzEf`8N22C5qUC%>IR>GVxq>}^Y;0#s2Mvt>e+@d8v8wFGKZ@Q`=po6><;@&
zM7c2~be|B6egW7IdoW)+V<*YWm9ML685FQiqSM}y?7>}VJ(T&``;pA{QJMc%DI|h+
zWH!r{nHSwqVW`~|g1Iu=I5;kN1BEyEkIVO==;g%wE8kwO!uSpD8KH%p+n4&-IDPh9
zIDJs3ru?<?2V<)Eop#K~e21)UHm@wC1!*}BT;=rYEZ5L<HSKk;JC>6z-FEc4!Tu@5
zeq}Mdk0xZ?!Qcjcast+1v(jt3ecTSWryt5Bj*(gV!3_6Y7_vzH$=nH?L!sj6!tiOF
zjed}`i9wX9Tkc^5xWe^|7u7>@hv?1E?V$%J{Uu`d9ll}1^s0iDUK@3#<i9#}!nZ}V
z+T5}T32_q13jVmoNO<fVNVu+3SU|!q<7IeKXqWkRNWUD33%vB!)}78V2!)am=W!7N
z)O-#J;rB_uW!6(ZLCvjo-|_re#65pG(&OXw8ZnD?gTOAbgnwWR4L8)rP4}ccXkJ8(
zJ3b|2ckUmliFJ&ZnX)hv)i+ZU-Lc#S|LN1evF&w;0<zBMqTJHeQuVF`y{Clwe(BV7
zro(6Fq+d6Awt8AWPqNU2*^`PIlY?JV;)OJuR0mKET|qI&q;;k#f_LzIvnv6*({rtA
z)a5*F(bF6$n{QH_2m_Cmg+f9i8DW_hG;<J>K;dK!*MLAQq>V73C4iT`mQezD`S7y!
z+6KBpuV=SJeY^zh8!4koY1GN9cS(b6y@ama#DUyukm^i>xKBa*Y^u30sXEk~?)AOX
z)pyta2d*49@7M5zL;O-_=0n6LN_F-{FE4QtVWMFyUdHeOw{2B;9AQq9L_?<<6A`#8
z>ltxQAeRjN)v|o$9E!f_l&Drnhe^LiSGe}mhydFU<bs<&Fa{c-svO&;DpsjUUYGm8
z7kyKGbaI?3RFJ8U!}UaPWow}7HG{fX#g6BtAX2aYZCxhYk%jOJEt6wf=Tq-nU8Xcr
z7hT~^4gA<%dxr+GM#;hpV|{r?c-+j4+!j@1H!8Fw_5csrdYOL1X|Z9&h#54WW=^=^
zUG<CFj}B*+x*q#bi=c-+*kFkUok$*DBS&E~iD~_iEl#h_;>_QXNAfwnnoOTNFwFE#
zgC|e6cy%tsDANsOy3l1h-({Np^_jlMtUfJ2l<fp?YCaS5!>a^24|87`L}np#VsrMg
z%09_=Y#{vVkMFk<#I|>vd;H!#7P-gmdNeKXk%)~aw9=1_`de3v$rRqbWJPPCpA~C|
zI;{bHDt3XA`LR7+iRbW^zGnDZOxF9+5*E-kn@mLq5v9MBl+kYdm5`>?W&O&JwH_~5
zyvO;)A#wJHYK~;=q5RN>upbTW$A<GNyUazbd+%elKbx7XT|9)3v`y3VhwD+g=Bfi>
z=@s!M3uItmuGWv>Dht-HcL!%R?bxmU^tA4MJTX(s=@k+unKi4<tn0x_d2-ZB?gmZc
z{rru3u-4Et+8C#QYe!M_Pe{%b`;BT?#28z!7Fbgwy9(n=ZWKZ-=M=GMaK8}JJqmjS
z!#=h8u9_9;xQx14!6~7-QY@Jn^m0m(-xLAEpC&697J?xH0Q=Dn%k7z~BVZbaEj@x_
zfF|+4eSf>b9U5IE?k~8PW&XidwI{c_1wa4XpdO4a4(AGLNeH!vpelh1KKqQH*HCJp
z>KA*4ZP$JrRK=PTU22Uh{cb7i$cJsv14<2qZUsRh$-!};Vc7JA<+VqYE~uAT!BLbA
z6e3skbx>EfM(S%8t^q&=Cx!U1QY&Z^Bzr55xq+2G_$ma+#4ajUH-0^qrhs2(NWYq@
z`NUMZK-t)_SxJvIzx-neWg{l?M=P*`RsW+EfLliXP=QxjM3w|;YVUD*PU%ze*^k2i
zbiLB;@p*sadudy|=}$b#^ycruR+2~8+B>4QEJxg=@vuarUo~e*OxEC6=J~ytM=x#w
zu*z>R3FS8|6gL8k@EuW9Ih32lk(yco5||<im_~D~QemJ=-90E+<|S*)rM-l~vRI>R
zb%-v5%go=XJ4|J0oWar%+wZ2*%abScDE%TnPZE^MG~J<`{oL307v>oG6ZX!<?3Fo`
zcd#L?9x*C{d4Dj!U;U%XZ?wMQC+;@P8KApj9?k&88AIC~=8s#C3o)k#2Zwq>6!Rx$
z{wAeuslzwojZ{xyPJ8{2k)jWdapM2`e1hDoh9JMjiY~~0tR?8l$w7yiIFNw?wS%h(
zll>E3>+9%7Hp_`16vT!&8hSeR3A@>n)PE3mO`LaCL|Mm&Wj!K+$ljBeomLl|_Y3&#
zPCh2bzyep~(EPKLA|^!DW~$_gJw#V=26X+&aFaI^c|ZU~TxSuzcK9u#VAJ+q^~_pZ
z7U?TyOvZ!UImeME;XWmEud9)<%?t(=MYU08n1Xzl9f2;iZU#ujh5h!Pb&JtmJ9ws7
zkz<*h;0LfwDosa89>3EP{rz@6Y~n+3@qg5nsO4A7BE8HeMTKu$FMGsl%_^c4j&A*{
zS-5wx*NHQ$We;iHyoY$Q#7hpOGt{9EW<SR@WYbQdN&0)qW>D${nWP(LZ}3XDOh3pQ
z%7L45O{#<QsW!=IUgQ1XG^SSK=t4NUc;#bCo8H*@As8Se&x1EiE9(5|hA&Qb-SJJv
zf}=!q$;+dSw>H~5UD40Ib$13UJb9m1J=<a{h|wS9dN7k{(`Y49$5roNq*z&l)};p<
z=9clepUb;SMg@QN!-Am43cmhjrx&vxpUE!$Lzf-aXFGn#CR%4$tiAiOKEi2v{Q<7f
zM66Vi$=Lpx94ZZ=45_fj7AQs-2D5IL@wt<1M1ERorrJrwq|~>9bypDj7yM*I>_)%A
zl08lDPmw&Wl{~GbyA+hUuK6y+^<#hjBdb<SxFc&g`Ooo<<s25vk>X&2Jl6E|x(bmZ
z)c;EyQE2zFPL(U3#19OZfg3p1lmqElvwtVPWaQobkIyP=-WqTIz=-*vX<}%!T&H0c
zGfgv+O(t0>$n}%!k8*^i%UkzD`@oDUxi^<gIKztzrnBqQT%nhP-am!&c%%f!oA0z1
zHS?Xj`wJ&tbdUa+KixcKs>zq&xbM1lt;S-CKpIr^WI3D=3L_i3atzt<)XajQ5uI4I
z2O)BIw>k6bux$?6z^GCt-Wioj(J0(EC*y1B&icJlJxvs<A(~cASs660Q+K8F931@i
zJ+e;5R$dk9(xz?v6K#buknOPh<}D1R_o9>Yg>i~6PwGpGFTpb|he>~o<d6scLBH2S
zdC_x7WUgDJs4bgKUL@*apjF5gF;F-Dks#`-KZ*j>&np2kV;;l0y)NFY9m$@5LWy$}
zWBuj2w~QAO=nOVs&C!m3Hu10uOCCCEE$;dAwH)Pb<Cq^ifsO-L&Wi0#kC9953tl5?
zMRwLz-<2P;`Vr6EkN;!-%yul#hJPrY;s3robf7s~XH8&^5Ko>?o?(U@t8-TDNn(}Z
zdatJ|kEO4K3nf0$X~W6U7Xu<!jw9vXE<QrfgUj-7=1Nwy+FY%wYa#j(vd(G|>dE}4
zPL;gR7=y(;EXSN9RSAEbH!dgA5v#>GJNd94e*Shk1Isy=vwcM$^rzv3?fxxB3wB81
zC*QK1@3@f<2r8jLC&f~0;i@1%Cgge*X^X~R`5+ZC&ibV-aEFdytxsryJ2>hI*N@85
zx49*up|=X_^=x&vnf+0Kg?PgJR=w0fI5l(newf=d%Pm8{4Dnt~{e#japd46dC^&o?
zZ1tCrtvUpJl)nn%bJ^e`{$c>SL?S>xbgr7_Z1nzqv}p1Xkw|NK<HcQVjTwshvAH=W
zR&ncU6xsBr(mgs?HMW(R91Z)_U(^J>iXNdlC<ghjAy{o)XsthJC1KpTn(tD+2pu|Z
z*q6OW_!RCQK@kbgGM9Kox~(JHMeOGuVd!;i9l2RtoXq|BF7>~by8)r5nZ=-Q^4J*V
zB_v<Nb%mT@Fqef04fG*;IPM%Zy>aGZIMZSI5&U|Qy>N7b>=AP+R|40CSU5i`_HwS{
z_~k}Vucy&Si-rjcnadLt`46KB6fvK!`w7dZOES8iHLLtQKG-_y?R@d`6TJF^<_U`P
zOC*FX7pBT*2N&Jvn7zjQ^W3>Ba-oyNl}<5qgV(dg+e0Y3N8|Pube36rgM<2mdLC<`
z4Fb_$XG?OfTOaE$%!w0f{q*%(&MIU1HaHIl&U6z~Vmu8)FE06WiBd+|;5!Uhsg>eT
zd<5^r!|D*Zd|to@Ry&6%{16NZu?NzNIqwh!3dlb`77?Q6y!3+)P3XFr(phPPx@SQI
zDi_3pJO_nBglIm(L5+SW0%bF$_n<F>@KrIcO9Af6cS(7Ges*`IpAtP3$YxL8OQh(>
zKwC(MEed|}mX%)}HHzCUGxN!rsux=M54r)N=Pp?O)Im8clRyP`zr)Y3U9P*`AHmnO
z%5|GmdT=URA5+JKT4hIf?mAvfzl6RF^In2JNMGhB_WqIZkm#`z-+tx+Z)M)UcQSH2
z8GD9z=L8sAtEgmbUFVm_-Iu%dP#%LvC=X@a#CaaU`b%lRD{1gfbh_fhaT@A4UG1aE
zSWPCs!@$XpjqW8u5^t6xWTeyPmI}<zKS~ejl<UNo$wB+`j-!+8x3Rqx$39AZ0>u~D
zN7T<gEtJ;S+;jL#Uc!RZyl-EPP|IgkV0wR5rjtbeYkKIsA1`TYrXz&YIFqsa4Tx$N
zA7M9aj<Q}6T2GU)>%(Zu|Je;{G|fLT-Px67I{M@wy%kDM1b^IW&aR`Fes<VjSsqR<
zGc-BSk;=GY6Q87pnXrr<o+<tws6>9z#KGwtbeWn@KZ0QW-AP5}pYm5nZ+f3b1b6_k
z8rx$27*M!gv2bWvR8k#I_r}#ne2eRhK-JVYl!W^$3*Fut&haBEJzCW)=pynPO+lBy
z^rYa)cuAGz+na~KxUEgubX)19J-$JtRR3$ARKQ<gV=hJo&J4UGl#ZV7G8I?+K~Qb>
zPDl(fR5&JYaxHAPBwuYPBy;1$p#LWZ?M7fY^V$5*NARVGmckRU6k)Y?8EDKJ5|V%;
z%+87($WZ30naq6?kuPbeeRF?P3Q^;L;g0dcK{gq?OZl4bZ0sh2>H83e=JLVQ<AlLx
zD^fvsqM(S*@HDq0^NtZaxcXw6awJV@y{NN2lbotA$@#-_#_356Ik=3^R|6*Qa~l_v
z;gk8Rj3KBjt00hutAFw8l=k?t*ZaqtV3zQ`@%8qPH1q8dpLZodc9_Ey0-eQTlWbnh
z7pa&Kit{ECdAzCv&f>|Sc-9frorYw4g`m*itE;VpV%?%)xIG2hiUGHX0k;H$aE$i+
zpAnUN=?Mf`>$WyeRuwT7xW?_F#4&o2^3y`Np1A4L4eS7<oJ>IaG!QV7V^>%WE^Ysn
zmke`6M2}KbS#Z||DOHXzYQZRo>!r#onDtaA*y;w6j~*J5wQ-fGEvxC(t(uvbTEOaz
z7+f5#>>bJ=6ugC<FH>M@o7zo$Gpn{U|I~WELixI>sUk8?p8S=L1(~aZo0_)o7N3K&
zEje^6y!(4H=06b`AZ*F@o@X>bfM<L3G}8jr?^=s;tN?M&LET>{)ERB31h?a1K&t%{
zkqpfyx`y#6Qx~ho75cz7n9CxNy_NrM1}O&+)porb!g8W>AREGz-mfS+Cp5+`e3PUP
zzNYjJg^I5t85b(!XP;J`IuM6FBZvnt8#+H}iKH^b<J}Q|%nj+ko*IEP#NSo~C^^LU
zc8H&3$|KC8CN{*C9;itn;;$jQf*p9r1aCVOa-x=E>7~KIu87xmLHsb6>fq?Hj;1-B
zVd!+SYY=mYZ~A$6#1HO*__<J$hWRb3m0F+^ais_G+7R(SisI!${9uQ|vr$)8L*c@W
zqImE=9Gkl0%Z@R<Q!peeiUPNP<%-=Xwefw&N%y%8UkIc5)ZaRVJ+;7;XPy+A%w;nS
zdj8?qv+7vHVBNs(g1g4;w#vBaB<NjmX%6HMySnCbbTg^*>VSp8gd6ElV3LQ@Ufi_3
zy}rlrwIms#3ojN~xf4fu!*KJX(0Tu{565{7Ez^(k{Ns>P%j?P!SveRneUAE5ffp{v
z@`gI0(VLt=IkRb1-8vV(Qm3@KHLg;XaUyCiYEagqIC4u$aTmOUGleDOXTW0wJBqsd
zIS9~eb^eV?nt@I}f=SgitX^a>bx&fqx9sSbIl(?`EhI6RU<%Gu%+57aT12Lq#J>dx
z1PT5|3!^x2T~~+$S21+OVLnI+hZaK)|9Ro?o0~JKL1L<RVIQ*#M~OU?MwIQ5_7Ym%
z==N-1%8Rs1#}<rlCS<tvP7M(paJ?&jhIgSMTPs?i*m7d6GYf)bO|ba|s*;TD^{4LK
z-}?>Y{t;?i8Ywt(vjP5Vas)6YBE9-L5zxBU!15f}O;PvZfdX3^f|;}se2wu-@Oynv
z#`@2U<l9dP=7tH}Ea+}J9$;^r9|42doYxFkaFeUW=I0`@`zdw<3KDX?3%5myl)b<a
z3A#v-8Mi<orhpxNp-jwD4X=9=`CjnX=M9tH=10n6;6mPRc7*6&!++{~GWJ|l)P6?^
z?hF%D8|B6!%mG_k8_73YU{{4;lutVhmds!FB0qOIL}I2mhk{FeK6sf<`)!r(54)-b
zzMV5xKWF&-cNe+%0T__FgEI!Xrnz@g1aaexRjLt?jx)Bpaq8r^BVgYZy0?a4-RU+*
z-;=RVei2DvoN-B*z;VX4P8zQ{F9K$qF&40(!PR1Q^d3~>jHUnnb|Srd?f;20PN95O
zk%C*FH9S90Mi4NDSS7+x|LzsL&k^jBYa<D);eH(^fZOEm!d|xoEq;h2+->JZz>P5`
zh2U@~V7mbp+zw9!*EodUk4~E{|CLYJ_;gM!+VYRLf6e%0^Pl5;fp!;r7E}HH+qL;5
z-W(^A@hoZ;YFJJy3S)ZB$q3tXXz*<-3-}msUW25JFMG3RyveL&$&u?<V8Kl;vvbYq
za*(jDs0?TFEeDR(ZGRu|0ABxljMW7*7n!KFqZDSMvl5m5u4p<cEKo64BC9=RGO83z
z+nt+Z45zVj-Pn%|%FW1AmCU`G?6-_%V#0Nfvk8yYn*48texiR-g^A6>-q18fD@52g
zksPpZeA(tKERFIfclOHqJv+V|XzHg@vjGK{3>oHZoHdx4_WB*;Y$`+wHiO2Oz0u?H
zJ#cdqb)Z>?sZWH{83$Z7btxyAST^bBRb5CaezltK9j&>@tczKxceg5QzAV-(kp;1!
z%8&IsU~JX|4Wm!PH<=8Zf5S_apKTHHgPFjhrmoDKb2=|$hcCB?0!1ikZ$ZOnHd+O1
z>EJ?!Cg--B#_j9T2;<kRR;7}IUWQjR{eya#1(`neh|iv5^%YKX3=KV2g*^3s6{GjB
z&Qdc%^q26_Zd@(?AYr%@A08=Ig$m8-Y*R-wur0(;kns`n5^cje(CL3DsxWm4GXv#g
zF)4F45yAkQJ&#rob~2gk%!gI$iPo47bC=NJsYIz?+O%YSYEOHT{JKL$MQJ|#baEy2
zR0DNzrER&IfM5HBM0H+e<BqS?rcKNEJ;|?Flb5=V{GfSiUMAlI5Bs0xtNk|O-e7f!
zn#6TJam+6GWIBkQ%j9tb=SkQN#aF3?nZR`}&}$ltr6UJDen?iT8f)3`t*J^L-s2EP
zf4}0xv3v;r@HZ-<S<_n&Mr7086du&HDJuB*Y(&j1ovLuR`S}meXI}mWoQ1rhg|&W|
z<Og|k%V$pB{F%sZ@}^2mM1R?aTY!^2blie;uDA`B$D@MR_>zUo!K0b2ck_)HTuUV%
z3#|#4etOlf#7^|qL0ilb0qt6h?)m%JvIzzk!dK?uoED#hSmjC%`+l!-f<w>r2bJM^
z;g3Fs-_kFq4gUuT;QY}C@s25aus^!U#q6!7L4U{zo`1!$Sze0mNibYF_^g-KQ6@1^
zXiLmqBGd*0JEM(yP}7e7HIs#z{D!TrZ?Q;1L`OeTWmwTptVwMZKR}7RG`kdFi;sq>
zF1q(YWN|ctlc_tTNF53;RmtPIIdu$N`GvT0+7W<%nP+EU41dWj_$i~wF#6Z#p@S}h
zg?|ZI;kOS*SV3YgnD8%Sh37aH*jTT-ee+ULyXpO@YX2!}fAp}}W`8U)OuB=g`?7@*
ztixG-zon>wOzrq_J1iX&VC#E0pgO0Ss${Rd%bT&V4A>j-y_=Ujqb&Ud{VLt3vVA#6
z%r>pgsciZpC!T!QGI=%L#2AXCd4tX<+bA~!7tJ^^Ip8}J{5>XM=UQ7;y8en)mAE-S
zF6S6e!&Nn`Q&E)|P*mj<_c|82OHXvI+ezS2(7aegE@T2zf4C?|U8n@aujr@-@zou;
z1HzrUAdosqERsOj@@a<1K<mwvi^EJB4ipMtsX|F&N(gtu^HL(F9u?fm5S_lxW#kU=
z{Uo)@xI(0DS~YcLFcBw@R6XCi^+#rfo8A1BTQxO5T_iGLEL*52^HY2JvE#0$b^QD>
z_P8aSTXLut^SaS{@v#y!ax1>$Ltpcf=fRGnOXrP+wz&uKn2=ae$(?eQII!4t&g1=~
zTdVxzr`RZi$;q01imFlzM{1EMKKEWeSNSIuR3*<Vs49IjJ_r3bi(&qx3(9p(>zpZy
zCj~qd9-acFW>oQ_iDgxCuCht@u54Vc069&W(6iqJ=@$|XRnTxT&k6pJ33J}6n>m3F
zNpJW{y`lch;cHn%{Fk+U75%_`q=I|C51up*tO}lLPA6p^a<rhaW@u2LIbGJ=U|ck{
z3NYbgS2MwR@cl`NiuVgD+tD0s(K3AlOUv^;|5sBgd;ZWHy3K2BcLewqu#YIHMz5}9
zpHF4e8$H>R(w7}h+={$mEOJloKCDO}qT1ulWdzEbcA$Bwn~dc~d+61#GO?~A(OUj=
ziXBurb^Xd28+*l@UIHlvv!>n8{;4A;_<hg=>h7v4U30~v%F+$fZk~{MqH^fR6G}H+
zK3_ao0}>UPOLMDCXqo#A+!-7;{@Z&35)HD!<#d9ObPW{m`JJSzDNn2s!Kzb(JNiMV
z0mHgN%{O!fHKRxrc7^MydivT9a|8-bm82xjTaupH+X>QRL$+>QwTRR!F|BAI<_5F&
zu?&)uZcr_~%u8%f&9ZJ38aFIAyl#|R*DQ3g^r?Ubv$49^0D1Z~5vgcKt|OP5RID|K
zVC`vi$hvT4it#SG9?_~gb<xK~LMYIy2qUp<wK>5fmAg<~Lcb9Cf*mJZQ+LbC<bHH`
zFT<}&s{DED$sUo}%nC|phMMyhAZQ9r$W$g9G8^>EB#lDqjv%EUTbCMVZnjWCgBh6w
zXCDaJlZ@i$5XXxC+v$ejUHlAE`_rDg_-EYd<{OdmUpbX{_w*+J_?({-jSs_6vQm|5
z*q=}>L5hfYii;_GR&w2V)4RPZ@x4oIFJDHBXO%zwMrHEo;ks>NJnzlD%NY=cSLi*E
zfbma74(`a|YB+!;qrLc&W5}|)Y~x2w+jGY5v%F$RTiMpO?6UZ8+RB<y0+=k)21@dK
zLRQGrZ!~Q$+^2oWjx9NRWpb>)G`?i7jqj1iJ}(W~v~@*x{5LC9>X}xmsj0hb`D6@E
z`lz{InuICTy%=@o^^j2mSOb#K4~`oGA>WBNZBg-wicJMx`*C?zdiviuEUk$z`EGmb
z#<a@YI^@%>EAuEXeQomO?8H-v4doB#k*xgb&BAkI`H=NnDspy%iEVJ{)HzgrM8j?s
zB0zbvGP`_ZU_{tBcF6kjt;_R7go?!4)TeN?pWE;KaV%ua;>O|eC6%0mdYn<WKh)h&
ze=sHN9bYp30=qlApE@rsSxaZ*lFIQkn7T@bvJ(l7_bQVE`ZV{To%;77r@B7ryMwWJ
zSr0jeSp_QQtc{T#G>D1?7d@rMGj4?EdSmGUtodgVFf(W$6M`|-1Z*?55x`D9DFP;z
z3HA=b90xz*z@|mPXhZysC?*)@Q2O&JkxbxH!-isP9%y|5jVq9tr^JybM}QezGpGv~
zV{HM%;(P^Q>7Sjm>(veJjL>B4@#t*c4C|l&L-Zl*`O(u<h6>9~78UeF^9pvZvhsiO
zqloKNg@C><ignPh4HgeBXyZrvTCm2Ynjby2%e1+VL>W>!axNeh81y(XQaK~%nh?y9
z^QR81C<<oeydALMWmneOQ400?CURb<2u@Row#+w?^Fm<1ft+V;ieNlg<oF|#F(c=m
z(bMj~rzqc|f})cUVaIlx%%DMalh^%XVAvG(S45x9Ym~-xO;H2+>2~kgKc|MMP+9t}
z>nqOFyYAW5eY=S#yrHe6>M={HMt*vgfLh~C_Xr5l?7<^XiqWcr!7G)I*|eoEqCHAv
z=LE+)l3!jGsi(Efp^AtYM1%jJ_(IX92@yz9H0WiJXff7v{s>qwJS<Ji0P$uHibXVg
z7pTNCR%xtqs9~UoGb4D8GLJ?ntics4tQ7x(NGTY&S--+4r3w^SDP<0sCw>$G>m#r$
zLNJHSJ`QZfr4g`PfmMfKj_)pCV}&mLNd&CFz=nokj*G`Tu=92)v<G0pXkiY5)l_v-
zOI6X{&1)~;H@<{TIfEu%P(jql@p|A;bj?99b&zbeLa#X|QfQ6}eF&uG<c5e`Zk2tS
z?gr&^$44NoTU-rf@Gs?~a*>}?;!DaV9nA?onrYfXu|$QMv4xzyBr8R<0V4@+^S!*L
z73=_87jHUSFpWFp2X^^DFFCbAI}w@MFK$qx(oZh$Z4=itti;Wbnk)ZT5gF!4_GiBW
zE=yHdy&qn#VqzynQ8gxcZLL!5%71P8o{R;Rk-C9SR`Ay_L9vlwy%VKPQ8oqLtYBUU
z=GuEGEfhQ?94M-|W5tMr5sHIBd=BoWk%C_vKu8n1LZMX5VkWWgNg4b6al`1DXcere
zffN;-N!s*-!FmU@JlYxP&z!d>3=X#f$kWcsYJSQ2D%LWo!WZ^8F6o?Il0K@W+lWoW
zGY-4d1Zk43Z}g%*d(n0_)9=5RXk8OjDI@AxBMK>iz9ns-PWe3E%FmyHNNvVg6BN2a
zH%5md=}p1$0-kL-UBVD-7=HSg%Xn%gV`POg-Va#XYMj@-t$HXT!ww)5-0qs|&FImv
zX771HBgdXyi)+4B5;gds60!M0$LUpeKN^iMJs>ppOn6OdVqF}K@gNJvn`cvpu<8_h
z_0i5f6!ihwwk0PUk=r>)db=DYCAU4M!rX>r2QVevgHL6AYT1LV6ZXIp<B?Y>d#!88
zjQT~13t6;Ery<I~eIw)M!J_O{52;!<b9O%<6V=yu2=(s!f3~zEA|N)RG52K)qrpaf
z&SeVpY^&ci7F)O0z02-k8KCOepCG)Erq!DI*LsPgJN5q7(dcB>Bg`tMI!o=BPFrh7
zR3%1q04s|EP$(3a(T5~iVi~<2UNb(E0pXm_MD5t`Uoqv~E(HT^Y22b<>V#0QGxiLA
zz8{2oS!&%>m~6(%VCV5Px7@}%DAbKU8ytP8jm+P$fX9u`l!e<!Z2R=FMy3+T^tOe&
zx#nLTlBv@*-(;8SM%Bj@h_i!>e`r*3+~PRFpIGR%zKM<Slqo3S(?@fGpj_Ra$E37v
zo0q^ymzlwe5M%=tgCnS_V?t_QX2K*jjoK^m^B9%dRBbn_3VN&Bdl0#cKJaz*o%r%N
zHFvB}q`sfmtM31s`d-O41Df;yy1s9Qvq-4_f2{A`<G#MW(?`Jjd1_l+C;8DyR~PQA
zU_I9cECiZ6>FQ54B7mTp<OjKCEN-w%zP3NvX4@|QkAChi=(Qa(Kx-ELlso=uU(wAt
zzf%u!!tQ-^f|*|7u25+ue&V9TjLmX_hSRvIJQ=$uOn`sYuYN2kh?tRDo+qV3j)-=|
zW}yvWgV3AP{n}#*(gah{k%F_Omib}T-bu%TiG1Z4uk7Hm{oRnSW4uz7Q=UO=1|C^{
zY%5o};7@V%>e!KnVlr0PiO5!4YX25QZa{fX&nDOOf5Ymopt`A_sedL%zskoTTkfT4
zjeb9_AasXy%WnOV^LQk$YSm^nYO|V701i*pwuK&bTz4}&i|YIN#|dYg*=M7vh)%k^
z6A5IqQWk#>BpMU=o_>Blp>&VLCyD1ayvGH<?dveu>)^?zJyl?G!1W-x;R5V}$>!%9
zn5veWi@TQRa?0D+j-^$T?@^*<yrn$en#VDl(mJKH#Ftc0V(Uy@yuvT5DKFg;pR+sY
zq_6j@YbuiCc2;oE$lT-^7;aiC63a<^|H(D+8*D0m3Dl|d%L`53$)HE;=41uB30b;X
zo)$Szp#<yq8K?VGxMIdR-LuJoOPr439Sd1sKQ{}(HD~Rw2CK(Zvx~8$$&Pr%dW)4y
z{9OZo*W#LLBYf<297PpIp61?V_v=_k%THKX!uO=5B2MhW^^vi7FiaRsU+$3dI!<lA
z;hzS2aa6ngjzGtEfLcFh9XWH*^Z72xOA8~p+xT4&CK+Yj<|qfY<ctVdU*-HUBRmX2
zd(-Olua7ZGg6%QUwP{nZ*8mvwR9)zHC8<|nJdA4h@dz1Z<c_Ihv*zvPwJoPX+EdpP
zGd8iNyfuYo;fCj@zz>+=*OfQ-IKdyV4$DB}W^F4!!SA)=gtlHQz$Gj7Aqo%+DJ4w}
z;!N{%oTAJ+$&OGjYB{ZFa0MhU3_kn2A^W?(L~6CKYPBE8s__SB6!W7VHAp`?A+TzF
zj0Q!8;2tVJz(KutdL%!i(i08}BMwj>G8Yf}Jj_p6{!gBaz+2M}yN~kw1*hF$kAIfY
zQ)@z7pd?~vcVvBj`bqTFi27vyY9a^C@F15Jh`ZPd22(4<4pqGhkG<HJtj5S_n;APy
zFoE*YH+PKI-O7v4g%>0rB4u_WgnaOC67^XX+rz&p0F+RUUFEu={$f8j@8=9^s0}6l
z#G2A4>P||Q?@XT6z9oMDL^|Y3H0bXmLI$S46ZCH2-UosX__!L*8cVAoGdkITu%jL;
zY&ySphS<;eYJ{)|-mGBbpN*myQ}xsVa7Op>1>!vH);mt_L$;0YqwhjNPXE?3>7Hg}
zb*JL$nEgdW>A9FEgvjh4n^@vMXoT2WznA}@5n^k7e~wPk#Bk2@Iq=P(p4>NsV!`nG
zP|<p2vt-t!vX+@e!^#@kS;goBP=!AZ2{yicEYtltU!ciXK%WuuC8M9;IF{{)m?Hb_
zCIZYVtV+gCCBH3|@m4gSQ}9%OY(9B5_r{nv?t%*L^*o@;KVyoPMToz?mPYbIFTpDR
zHi4%5R3%=kOgvqc_+)|{495Xd9$z{phn25*a~*}_dp&$(<+e{e|BUL&#45xH2do{O
zSKh2;oVO>$|Mo^@)7zL{pR7ux%C*xPbK|>|e{kN|=CA5vmHwXTTP9>bQ<Zoz-EV@w
zUlsLk0LV&{S~NDkbXv}YQY@TwCEk`y>szk<mQRoE^HoL5!FkSaBQdGSqdIo_8~f2W
z$fbIw_DoilzA<fDm49wQRrV%IJ&VL&X4my$D#4jGyEEHjtzv3;5BUr)frYz2eG=b1
z5hX9E8?PoHV^rpjHX$D<Cu8UctwD^c@+n<RIYT0Ts-0YysRui5D-&O)mN?<2bzNlK
z1Rj3uh36O-7)mCJ?EW~EUB^MIaZshI+-&SPiLl~5#otYscrlj6BQxv|O|zfZ9^QGv
z_9y>D*05Q-+DU9?{V%?Rqvv^#FX>a(yuEH>e91NT-mtx){x~I8gLf3p`yvB&t5X8n
zLqJgs(${Qwy~V|+8!f2(IRXPKmN0_{xz>66v~$5{3j0&naK>JN*E8;qe)(DI&JvV%
zG)V}RiS8nKPB5fa3H1pFy9RRkHqxh#R0b3$v{XS+##ONXYCB`cV|o+(=vYA^*t8q-
zfW*4>sjaQ_lV^HlWlg3D=IHzct<bF}_3AMfWj`i9jW4~jmYcALwoQgd4xU_5x;#Gb
z_vipERYeEskd2{}6Ju(<1bZN_Jvhu>RbfcK#xlYKfuT|hSZ(Dc<Og1ZMm&X6|4Vfv
zkP4BTul<`<aC6W2Qg+G4m+q|c%coSu|JGL3v#ErcXjQ@<jAQUfIh<DRhTtPlaFjxp
zh9xEh0RzjkS|tY0u**f<I#fE#Qe!j+%EsbJ412@Skm7R+slI<!4Ku<KY%4WAN%A=H
z^gMK;rKeGOdi&hVNFHBON9DJ!rs-ZG|IEa{nJa`I+v+v#920N)x0Ukfmc?ki@ueHR
z>>bDy_oi;6@pJTC(#D%^7G&#Ymf-W>=iF6~&G*%qtv!Y!)2`!7n(cNNI<^g0907qt
zy=Jeql9)GO|2orEuYmr%cT028X2U6z&5f(p@Vb)J2h#K<k&WNEuS`*Ky;zx}D2x{(
zzuGP*cv@J4=Yi?P<oQcKcGT1ArL#DAtg!(o{h4QmrL^gSl2x524rnfFP;`64-KOog
zEV74$tCke))x?zv00!f&XM#qiwwg*n5bTqO(uW>EOdJSrH!ruHE%BvQY6Z4~{18c!
zX>aw6)Y<mI@h)CB<4oh}cs)|D$n+K==8t2ByBXUtWBpC$yyzmj^e~CF)ML2*1@HRM
zqF=Dt9)5X^C{z<{KobG?hUt-!)D|1QKz9=9hGkTwy&p8l52A)UQ+}S5mgR@mt6<9m
z23C7fB*Q!r;!l79Rbu$A11fm?ul%fc2;8<M0)L?3d;dZB3d`!rQs)k3wogx?O9lg7
znwO(`u$3_;L}iK<a*;#jp)rxH)scdMAy{>M>2ibop@W>)7=g?e<R>!yET!-a<n9h~
z>MnV%2_fn6F3)%GCw&i9@q>GfB%ek%p%g0jqC2cf4slH~E^Lxx9QX%y5oD}ME>aQE
zCTXS!8gF9Mz-dkLLm)ew<VOzdKNm(aG;$39tfNVe6uzhYg`d$5fzeS%V2nPTr+>RO
zNiuf#y^*XioN-^4MFpRXMDa>;)k#FV+(p0S$a(3Pg_?h&ukxcQ=XDq12^wB5zgygw
zYK2W|!&*cvGW{(INsre?F*rI;qN7-%gDb5$d2r+pN$U+=tvkH0Z4x@muxNQc;sD!2
z-A}N)3=srLv6HW<d)QLNa_w90G5;M$RDN&E1B0!y&emPivHx=Q47$h6lQP#-i~YDe
z@vIfv_y#IcBZj^x@s?-D$e=mu0Pt0$1NVHx-B}vlfquaqzMbFBa*thso%Z@X5$4T>
z)-@Z`w*}Q#<NtEz+SEBV6pBDis|r^JH;#a?4<Q^x*iLoa{C9un=n4B=!ju$xR-0T>
zb!(Z#mKTCGg7M@$c1*VFm@Wie+HDJ-y&Y=^EP%oYF!cdWu9CRP&Mr~52^_)x$<{0Z
z)!Mo)l|^@w7%W|P`7-nFEPb*59B;#$IGTcVdwuL5YCKugiZQ{lO#~-5jbUZ94EB}-
z-h$pDS<t+<T1k@@m2N(MGBlWUo5zh8L@^1$aZcC#!m*KDVw>MoE=bwnn2ua{^_0~p
zxA8)Qbx)4Ob9eHVXe0T&<MO-&KDSqY;i}{{YYtN6vBgg)Q!PZt09sa*Y+6-g^Y}6j
zcg(?dPfg@Um*~ZSCJ(>QC%Fk0@u2Un;^kN)j_qJ64>GSw-yXbvIPIqM9itthTl+C-
zR(~i^`!O`?$7+r)b4`Qd$i7hRN3%@3oB%}(!0T}jzp_wH5Kpj-sI!`<F?oI%m!Xbx
z!e{NtLQy*liPJ{Ht1G_1m9g$^RRSTbHm6a_1h4AmQQd--Z2N3{(@4S5j{giEoD+8V
z*6Si2z5twpDYq&r$X5MOn7Y(&Wwf&0`E~ku>IxNQ38bz$!7R-?e27Xlp+R;q8X0CE
zu$19OZC}L=O3@_SVO5wS{YKC@oVo1pzpcFZ+?T$VzECtr3u{`mpg5=-I_Wz8)3K)s
z(A1VJ{&hy*u%d1(Izyf}`YRGn`=z7+TzXC`z8d9uI!n%v{b{vaWU`%)hodZV`tSc1
z%Q9O3`xhMA{T2#a+)L2EK44G^X4otbZI7le^b+W{M5lktiox}k#;#4ZIG@u3Q@@1d
z!GLCKgR4qt18w-skf9rYt#b0AOf(-Qn$z1gTx+_b?V2L7r_*{h3!G#hLRaSM;q58A
z=t6yFoY36B+E@s$CK*6iVDGR_vq7Izrck3+s}UtOJFN1L%ea}=EvrhNP*C2SUFqCT
z<MY0+qTt42O^F9jNVe##nMyX6Rc?E60yC{`FIKj0KX$^9H76!3dK6Tau83cIz1j-i
zEp(pgGU10C(ei@H=ezD$Y+{P8Txg1#Tu`b&jP=oZ=nae$$ao>ikty_Pc`j~y$!q<R
z6Tdgfhq9zHIbwI6_pGr7<l;*}&Q%%B5wWSXpn$lgmNqM?!fk9axHDZ>>)*2~()y!d
z*)na2UAiu8{U@(b>w9YXH!=Ez)O6%aHJbjXCQ`ECj@j12H@n9Thtkl4y9tx-{VP6q
zy=vKId{xsx7RT>5C|V4S!|cA$infE#;dVGaWOY22h8mA2tI;<*cwfS&q7`7XZDz(M
zC(B!mf9b_^+WiGVX43Q%@cVrs)7U5aN>2I?$(|Ar0h7*r0NsGMMF!gx_hz&Qhcy}r
z79K*~_jF9&jlchYsc+7=)b~-FDM;Bcx_?`JUuT)LYkiMxu=?J8@Hf`?pCVfq8LAu@
zMAg0$PS&>ZIr9W3Hapnx5l9=KL~}K|<A8|<(YF(#jBaiqFbF64Fr6FySw&WO)=3$o
zutn-v0*l<-mhn&T@J-LiY0Ei}oYQw&Fh<Z^VS^`zQMs?P&zU~6NJZ>29u|i6yV4Go
zmOCAW$CIrZO*?wc;*bSuI@?ADV?K?UiEKZ%Uu&c{cF5wPpzVn_%j&E*c8q|g9<Ygl
z`#P<rZd@X(@|^Soodac%qbhLhsDy48ew<$ZwYZmo@A7T~!j(~TvnU(v!QLcB)q4+O
zRJ$i5&j086J6*G*k{3m%5CfF|1HZBS$A3%y@wtKIayS3e*z%8Aa*}oB7sT4aO#Mug
z#Ole?2;i#Rv;na?_olsT<c3Wy#K)O~%$PK9@sbO&;4k^8G-PF6ag-!6j5`hA+$TAo
zq-~tzFA`z*GiA$Wj2L}%;DY2a(j2jyUhG6L&E}S45wKhPIAb_NoLC(ZRHo1<Yvw-1
zZg2o0M!mGqOU6bBT`|E+@7to_(c!!6PLg2(E^318n}Iy}L#H?v+I*gvEnC7oey2SA
zSYYo$054qK%=1(RV6Tp(Z%D{<Zb%ptDeky~thfhvjaf5{ezcfWM`rSShh;t`rPouX
zi<KuRBVMV{I<p(_W^T!(`YJkY*BWQ=r(YW@ltGx(mw<P0TX%jw?(6tjg<KRCQi#FG
z1b#Ah(?=mS<PZ?)Et?L6q3_NV(Y3#PWBzy9=*VE-ng8LL{1aXC|K+#je-`-De>KdY
z`|uNc|HBZ=Kj0^nA)y<!+<-MKEZK&-;^+`%<7j5Y3VN#81zr1ReC~Tvsk@wCOqnw>
zWgZqOGd^d3*xJq3lDVG)!h9`TcNM-!Sm#>Fn1?wSu9rT8Q$G`^|5#R16aD-l3Nw&j
z;O8$P=nq<?gq!NQ8R%MjzsBCD9mY(!@67%99dK3ez@H4>_c5!QBu;qcJl<~O%|yhp
zNAot{%?;E|=wc-(BcoO>L)fv9)4Ds?Jq{{Wwok{Kxi~@n<E9Tnik@uk;+V4jfK1Ky
z13FW)c0k!<bE4>8m>Nr-ooxGH$7pE1x1;Dzhy~vO0sH_2#=s!!CPV0V(;^cVGvyrk
z2QzjIu>NtvB8T?42$c1TYzO6L$3;K|$KJxvK`z&eqXr^dMm>MNdJ!dSht9xY_KlYB
zKD(5D&mC4eVu_CP@828Lz+Fn$X}OTamHtPdg4Ub)xzFYLK|=&vEB#HJV<{ay%j(|C
z!QFg$1kUO{%;oEt`$SjzZDS))R`*!6^kS7hMx`I>a{c)(rC(&F2Rpxq1ldlH$#n1T
z{o!|Fqb}=-!PQtKJ>QM3B{qg9(8hNh%hs-Az3ffih8<GR6K8?34wUEVeCMYfFIJ!r
zpYtN5)F!tiyGs)o7&6oI;JnkFq%Sd2F9`KXfXvE~SzioZm~P^)T*z0sVf>r$pX=}^
zi;np@=U2ZMa{TY#F}c4`?}+?zPH>%1Sbubk7eg?DuUb%p%F)FZ_xCU^`0u+>VF~E(
zH%HnA;H+SK($Kwrf6)C=H*~wx`|m2c3%$wG%M|v}+dEmViajhtc->%P4$Z{Wg9gqK
z?#Qk}`h2nGEqfE)j2MW0M{uP1Hy?NOaAPggR0imbNuN0c+<luCrTy4zDG|sTEB6Tt
zqo3_zHFcw-4bJi3n1peq1rH9PdfKAc(G(WwGG27(C!X4)Ofp?ZbD2+yeqbj|#$cRm
zDM6dSOIb>*=Pw+k2Qup#=Q<?)Fgbur-Mcd$x=A6#zV<|kHuY@DLNx+*IV+~bF&lH=
zWbXMJq(`Fa2Y*5tRMFv>p)pxU78y34-(saZ+nLlNLd?S5SAV`C$|j40qz_SnI)?Gm
zC*s$xR7)mCFv(^uEpy6rUNG|%$Ko0oRar7}b)0Xd_zPXdl?xlwSkZ(kRfz_N!ovod
zSnSH&s0%JLXjn}0tZb-s#Uu`abGbDbWa*0>s>~o%gMz$9gF+b$!sSrb_cF&{v(I9^
z=m8airHFRJPDgmYXqP)L6Jb+#qp1XEO*4L8VGkJUyMK*v{9vjb^!5#6(O_8O+w_z8
zT$^rn9pjnD7wcZO1+^ntitE90j{+s+>*pT|>vKlu6h3&#8>jM+(eZpHC)U1=ig2MB
zggCvEU;UBE{4nU}r<PhK3;CebIwgTxocfe%->9#v8yE2_6xNRjQBXijs(${xF7*q1
z0ENvwl*yev^_u_JMmeA^u*gJ0k@4Ld10HRSU+}9xP|4~*<y@CpPKe4Fm&>9jg~|eb
zUEP=$qEf)qsG-0bX0U#Kp-WxJ2T&>IAyi)NVWsLTg_rPXYb@h8EZhr&e*WuAj1JX&
zP&&-ps=^VjaD83fSi`UAa5qmYTmjb<e{iW6^MS%2=AlduaE0qDg)isP*0`SEu<#ec
zpr1d<CEv^krF-2vY@=RRHwOHw)Ga)%R0T9o@$(OH$-dwNrDpxWrEVfM#px@L9KN<S
z7VsOES{MfX{15+bRW1(G9pg&X>*~f5ezP6DrM8XK?)28py^tW;OnWGg0Afgi=IlKC
z<iZ7+uvEO!4M5C9_%6r;xVZ=TC_sj_E<+YsZ^_o`YIDz)8?tK%=tHf2P|gbJPvI$<
zFc4EaAQZ|#%*ceTY>jp^7gDxoW&8O%AF}%DRsFdHZF3w<Ztrc4)qJ*$h{En3U?gv>
zG0?^m@|7%LSTL_Ujy9CK+o?_mr^*R*Sy07;9+!F)$-o(>qj~ibuMs*zA?|8_Vw}ZK
zlH?d10`KF1^E!ZcbHGo9z^$5{uvEoskgl+N9txwT5Jm3K>Z_IWgp0o+jPK);{zyp|
zyQp7;QHwP*U_LnOkgVW0F1^R0u2(y#Q$win4yr;K{G2FNE{!Hap|vg%p)&}je$Ch5
z(R~RWNGKfkx{P<z&t@!->K+if&`UVoiP@gUo^)R)YrB6xf|gO6*+3y5@I;F>3gX)t
z34(HpPG8q`xb3b_{6o2P)hEcaM1zk;v0*L6YG`d`^7H%LFJ`G)*Y35i^R{jDhHTK5
zO$K4d6AQ&I3~kd+VGq<5=Yo%Y@aG#h@f~lR29NBVO2HKtswhir9XBi_V;`=i2q_l9
zY24u;ZVGjkj!^LBC3NC`!K9zr<45~I-r|T>(S^S8xjzt7HoYIwC;Z$>?x%sY16jC#
z%ZRw2t~Qm^l-9O5AU*kuouxbDbKWB|c^Q7E%M)MV<TkA)ydb)MAA@Nx-C4I%JIJR*
zhfG}8^$iVG_H!*Ioq$`S8j8`?HS8$Yu%EEFs_)WghzU00SE+Y&2X`x-wYc+W-Rs40
z&jhXxCkd!f?Nj1quMxFS1>~?wPYgbI$z@`naK2bGZFl0#5wC_@qf+^hN=c$PlU+%A
zDb-Brh)F$Vz6*L3K-$016T5IwH~KDc^eyYU{!pFn<M2zChZ6596d6_`7`IIThI`wM
zP?Dj^<{U{(VV0wMsESlbx`ytm)~k#zb@zzWq1l~p9;8dQNPZegy@Vq$DXU2NvATMg
zGCt=iT9b=R)~2~81Jl1Q8`d=o>jeun*`dx7+*M~g{H{7R-gLKk0~A>31Vi*T&r3F!
zM9@Tc8)_E@<OOp(ilUaRO{`IE$#Bi(*LTBMI0o;AtyHM|3xiP`g($ddMSBk=?UKbN
zRRRts;deH<*+hl}8Da!)|HQh(tL}09UNqe))^y$4Yd2{SUF;VCWOm<hz$t5+c%#i(
zrLo@XPSIr{gD!Z{@m87NqVovxo*vGgn|^<06(6(Um6pUc0LV&ot%oYCm8b4;>-;AP
zg8bl3m6R|qMlGuL%)N~*6dXhRJ3S(iZRIv}MnADG3jB!<{&<7eY32=<SzB2ljb??E
ziC)HYjy00`NBv7>$X75B5kLgVtDeNn?sPx5?a$1b*4E>mnLA1dudUx-FqTj71Eafu
zNkK=-*iC|0>R9xDo>AkW#mb!~>R02qt}y*~6<_8rD1=z^s%u=p+~=8`;4pu~hFarX
z2?|Xevp0t+SC>u7p4?VeOOxUSSKZ=W5W2z1u@Yk78}vH9LEe<rWs|c2JO}lp?8ge7
zt9T0a`~?pyZ>Aic=G+N;)w<)!tYV(&wa1QTAq#8!6t8Fg_Az5YJ^vFu+GC&Uq1`pf
z{H&Lp{hyU2E&^@b(LnLjG##hI-mtst2^r*NCl<X5Q}?UGI`zggA*i~=h~|R2_+x9m
zrtM><)sp)i_mty*GvEZw08?03ufze<+weNO4ie83v1CNQvX-fn<4fyK?J+qq^&BYC
zFT2J2G5%Gj_L`jV&b0-j;E<nk5Y3<9v*1(C4Y3AGP1ox)lhq+;n1)1T_JPRF3KFxd
zuk6p(h14ri+lB;PxBl{kDBflK(2Nn%@;PH1w+RI`cQe#v?8eV@w1?OWdYBX|R0#PG
z?`u+B%LvGg3Kd1?6Bw?!a-QNwg~n}|=m)!_zL3Ti7TBL!RdfMYFEAtbE`l++ewC=z
zWfz4or0pWlLk987U~u}OmmtR*%25W|f<yM8(%PS%5$e(Ua(>fFSKkuJ^J2}v>8xND
zN`UL0%?wdw=@`ulfaR>q=LMKD45^N;Rd)*9%p|R>STu87y}IlIs8=>hUwBTjXNIkN
za*9Wyr9n}C?sOJ-jQLvM$kpO*B6pH~5wTRO+n#d>S-)h65xz}a<`|6Z2VWFY&uIPf
z;=0GYoBUJ#%0fZ0j{UaD@!6b#rt;&-Ymit}J$!BA0tp%xmyFi|tINqD6+bL!FbbFk
z#)x2o@60`fy|uPCsbPE1_?$sXYL~K}2C3L1K6^_jVheGznIY|C-m@A@1w-__gb2`9
zHkAh->C(E#2YcAC8=Xd$&K<rr-FtkZ*BY-K=cwnVF~&b4g^PQ&q;PTe%XceFw_pBB
z>S7bS8jd&-OLXMuti(PLcgS*xYed~!Asy_X-B&V8iyb3k&S+#~t>(F20!8D_a66rd
zpvGTkG6{K8=p|Y5>B%TNt<ZXgs^L0}4rm$roR^qdXu{1ZXpIkxFfl8e8sEL4h58z2
zx0RKs?tCV9u3omI-s)(oVb^x(q}y6);r8i7KIW=E*Hyi;ovL#s1O%;2oU`VOuJJfJ
z$D1y+IH=b(DdayPS=9%}8em3+Fr0#MQHyuc>M@gg7&H6hr>dRdQ#Cl^ZL*UI!FjeA
zjwk>O#h9i}jgmB!xYkX))>)8=!B$St$By>5$3%D2KTe)uZ8LN|8{Zb{b6fcg)t?!N
z%jgZM80vPi7X>ln6(=C#bAF>Z<6{B12GIa~EKrg&d8m!0UkC7*N+6-+OnlCX%7&`c
zSiv2G+}C|d#-2SqB3I4EJp30XS0|otk5k>F%00%~L*r!h=!@@CP_Tn~nxsDIzDSPy
zE9y0i3UXW?m*pb64(=wfyY%nrT5l?p?81z!AF5Ui-^O%6xo5O7)m$Uer}G@mLeWcY
z3lJT+<MpMOZ&=TY&mE`E(QW-y-g8aMdwWfrzd%)FV3u?mot2e`=X7u2A5l<k51-mF
zphi^lOnuo&FQa~QZnoM&P-IXR!ef-f!jZhm^*cP+4?f<ZZT+t7YdV<apa~myegD7g
zX4b`I1{`*EM;A*xk=9{CPkHS)zD-3heHBkkI=KIUo82vQv%8Nk-<0|u74WYvq_5BO
zYUlw7tgB56>4{8BxL`&ha6N{d5e$>!wx9??G1r+wqDzn`O}aD3^$c@IL?W_GBO7&m
z4pgHjX!_&FPX7m81$q?+Z~lttWGsk!;ub6CzKBv0o-vIP<6vwcfUP??!fVF8Zz6dF
zR%~D~2exM42v{HG_9$S%Hp&vRB<Mu8qiNMYe-kQ<d8)*y6t|0la%*a<RFl$kt%Kar
z7k0jt51FCZo?ZF*M0gFnJI3N<?7sJ%azXpsAgI1e2!4T*1oT7%!{Jts4|1ePbPS7!
zQfB&=Xo1o482^7QBJW}k7==WpVIVo9Py*>cm)j0qvGOWX3uX3X%Vm~N$2tG?p0S4>
zQ3J*Pq6g?%BbW%=g#*;%J3xX}oY^JB3t@%gmBB?l8P9cpa};03^D&aRUG+0csnO{k
z4cpl;aTnume5qGE8GhMIZuxW8*htKDuepa`Q{z7%el7hpK4-CgcU(HGgJGq5)uMW7
zyxcD1vR^~Z(2iBl+;{mRi1UHq+$d5>()Y}56J#QHIS)4y*w9*ch=F9ZiT}d!^lein
zuIcNv>Hcm!3HCBKNmJ|O-<Bw!D$Z|yfFvCQ1ND^YK&NL8oA3JTd%51W6&e!bb7u<F
zcQzS+v31hqFB#Tei#I)PQRh7Oh1onj-og#|=qZO;9Q`|S8GZaR=2~1Jp5W<Eo56EN
ze92`O#g|-pQJ-yPEx))(W4t%?6Ye5)!r);i3_giBou+&+e~eOFlSBXK4YqM-1FamN
zeV=4qvc-vIRa%CUAx%!S!EKYkT^dV=g`GRxWYQgG7I&sI_U12;>D-emry0@3Jzy#c
zCU#7YU<{7xL>^Y1CTaAQ{)jD{%MfqY_-7mU8rrG+V&1eH&&&SOOOSy-afa9PT<SfM
zdQYU@vo7lMT3O34srQYp!jGuJI6@XyCM(#qTKYn~$!_?;eUO?D;7oyWg`ve`_ASai
z+1N1@0h1FPGW-97I#b<_`Pt=zy~fr~x@x3*ai+?+q^OLp#Hx->->Ui|A2QtLA=%Qe
zn3*G4fkvCq0440M!{y4BB)!&mP<g9%3lpierYX)&J~1;&s@bHnEGnsAbOtXa7`(uy
zRL>_<+O$T@oYH0&jcZruLBCWl-Ws@qWsWx3S#MQGJ>14aog8=tV}8){EaLhF|3x|B
z@wq*WNw}LWp-yZ=0(-{AamA)9!&L>r6KEv}{J;M)BFSwU_{nUwb||%jJN1TE(>nr&
zY{?3q2*C<Omf&ZN2KH)U1gyWnls?XGlD#r}L{_@-=(>F(ko4-T;Fn>B#g^eM4s1b>
z2pAR53Qi5d+^|&-STO%eey()&X}>#?;Co8&z|Tb)>ab;XBx<OlewT^5Z<nZ<78T_8
zVlY~S14cLb`W-dGt~wRBs>$x0^rou2m3YH&ah1IoN8Gv3QzC+HhA|~mndTMxpoxd(
zFBl{Ik&oYmd~DpARS3p&@k1b|bB@4hFst3$_PjUbOK-^YNUG_V>C90xb>K4aRG46T
zOb4lqac4&QxtBahRyzDK_X36RL~BI~CaP!H>ZPe!+c9UVp%D`{)yrslQa;Kk9BjYs
zQ{s7ZY-EMzasK}!c#rk*6cb@LZg->CFh?&Mtz*ol<WcUH;CS<PO2Y(+TryRrd6Si1
z4Hb3Rb%Ik@Io8-_h)+*{33@@q8O#U2tb5XHeK)s?8GTiD8)vW1x^Y}qW#e{7!1-iy
z5*@dF0!LC;ZreCv$ok45J0_H_n7&YbB5%S_7OLLNtx7y!IdoH)YC5NaYG1JFB}h%}
z=qzB28}z`qEIU>+cTYkb!sxYr1UYAL{;Gt6wAMd!%d5x<IGKCd=!K!!^<*V2vx7b>
z6FWG~0{H4q?L+jg23MnZI8VPd8)C};J)@I!qvz*60B?GKis)G@oxT=;&|XPv*1%{b
z?TvwD%8uSpJ$aWSa?RGut|Do4X28{nvN)SN@#Z%dH7F6$Xe;h0SB*lQ_GT=^%T+_F
znQ=FlZa!McX5Otj(`ua~7#lkkV<gh9Kh#8f$qP1__!Ye<407oHkOVr^8{CnrY^XyS
z#~!E-_HH0D0Q<SWqMslNuQkVg6o7dbiM{;T&&}9afu8K=o^4^X`Q;yPVN=HjooZoR
z4uZ9HB*G9D6)~)7bN=B~DC~B1#Bwiza4Vc?fUEN&^23zgHUNdH$0DF}vU>ZM2HM;|
z0-B>dZwW!mIzX2>&;xQJpo|?^!DS(+mKI&E*E!G;10$d&UB`u>xMzf*lN{(*`*jE1
zuOn9|%@(dT9Z80}Bn7=9Np=$=0rd{PCn_NbY8fS`;QIhi2iHxrT8_((q%g`YA%&yd
z8f(jUT-JwwHH=25qrmAoa4zS^iKIZH8HR}8>*V*a!I3;|0&;<{xRnx9`)bf^+KI;d
zVYk`tF80a#ua!4tbc;OkEfRS{Jq*>CjY9QD%gZ{!*`(~7;zWi*fOtP4r`seF8o16W
zaN8<#a!wjy1h5Ye?~{H^Os>?03Q&%=(;z;A+RKex*FPPp+99ICJO(aN0SOG7-NURN
zetb2`kJb*gAy}D#?V&er9oz-1Gz0?~a!WhXkKQX%Xg?Kd>5cRPTjjt`-X%9n57;Qn
z?N-2oVpt*A(^clpVUc{%GO~gbrkDouCi;6y>P<#+xo0=|^<PpTzq*YFv=1Z`5m|BI
z1p>12ek1`*0UPVt4y(bGZ8xa4{IX>u-%A`v5@ug&*p3#G=X%Puqe&{#(-L{Xb5o6W
z^P)$?3=#5QiTkLnBk|vO3*J*jJLq(aK0P0PauiPJ)2i^3Yr^UJlnt*2@4J%jJE%LE
zzV~Az)1zNPCOpG3Wa>tro&RV09G9UF7A!}fl8`=ZO|p$GJROO8pj`5;D~YndmO>Aq
z_rP5>(eq=zFABXR?(CpYlDA;ZWl;+KQlI`FesUE0u|C}qesUB#O`l%lQ?SmJwB^_c
zg$Agk?8!!<n|44U9QPcBR5UGYW@U5A%8~tr{T!^!!7QJtFJo~YjB-Ftxs`+dtPr~x
z#Z!G<XU29CcGrE?!_%pbZF}A5A9v#`?4YGY##h)*avq)D&o4fBEDQSFs`6u`On6|^
zqY^k0j-45CZj3umN=GJ%t&6<`J#O|RPETNv5~n9MPo;rOaX_nQM%B0FoFXpVz2A+M
zxc<wa8XUyU9zvqfi_M2jnqPBQ3i1WDi49%IAhtU0ufs+-^|HP{v(dg~qqf)8=?u(%
z^)Kt(k+M-APeYMH`<QI|*Ju*@5){f<fhIq;Q<`pO;S-eICE>}5?TH)Z1;AB=^?P<+
zdd>M^WqGfn9%J>XF%wm01vZo8fd88uVK`B~NxRAXL600HvNM%Tz!bc%J&<>Q<T5=H
zZ5}3K9V=V<!ZiG>d#%PWP{(RJ*5%UYr}f6C;dDzizX96m(+A=4TJ>+G>_mcOY)pNG
z69<VCuei`SanX2t^!WmYd?qwZbvCo@-}y|<-}L_1^UD`Qg*g0D)yXfnhx}5|nb9}!
z%PC7E{DS?qgJ1G612`7ZR3m};y!SsGixfB(QA_7(akDzgB6W^MKCXY?vBW3!Z%V@}
z^n6Ypi15NhT$BD+yx^D=hDL+yY`zRb^!#6Ei}FxIt8`_GJBvkInBq>y6c2r$cYowv
zdi)QVV(K?C#Tkl8#x_KkNejgk7o2b0;8)t?Gc@tkN8PQJyXYe|PM#n@WN$#8@Dtl|
zf{;Wcob(9omW)+r-p}K@Qc)4Xr2#mZyV_z<j{mjHwJ^4zzS(~68P_ryNzTZVU0|~~
ziWaXiLC=XVHXPLQR^aCzVt`mfk~PHwzBUA&LNqOJy0?dXGPPf`lLUnYbnI}M#7)us
zSnJjDp{|e9-)C5VFLTBdkR=UOslb&v!ZmVeVBl@H1LF|B@TuuYH?D`2%{`m5nJvS)
zUa~23NT)+0sJg|GpoH2VUZs0grBYFX>5x*XMIZw%2(G)y94a;@#&K{${c(}<DQs5>
z7N0X(w!kGV%Y_8nq2+#^kz}bMdU1JEpSm{o%Keqb8B-ZH)*VZ&vHpO!6v%To00D1U
z?ALlEVvp+K$8NPp6^$p|B==gqa`CFckn2vSb|N959rmZh^B!kzQt*`EFqTE}($mY-
zV1Ikrl5&?I*{rfA$hD7aQUl=9VCtvvpx>1TJH?90r-dTeF7|6$qn8~ymK_`%ZW_><
zOWlQH1Vl~j#0<iJ;ru7w|9X5_>1PR0>D%;3#M<=mV|Uv_3YS&-M!n)Un8~9Ll~#QV
zVHw=)J3_(YPr#omH8Q%8G{$cD-@GgS$=G5m9dgDUb~Tyz!G}cp5B12MYca6&95o(f
zEujDO5Z}{4s6~$NGa_oswhq4Ua%Dj>HaU7eh^a-V{m8_?2Om=fFH(hW_?M}_?V|6F
z!XDojdwkt2GxKSHrH_CP7D#aO#Pm7A?r}aRV=Kmq*3@>$->ofv%DXY(0!0jqO|<w}
zlOBF-l07;Y@N~U$!GOV#$5o;jEs&YfNHt`rloj8fO0TLbBA``eG!MhV^k<C|1;NMr
zLfvHS@JwC{IHQC2>&J%pJVF3`X6uoN-K&QmyT%?J_*|t|{2C1gd_JH~sf*R~lCgzR
zBVry6AAEGS5xE85fYcx0_+9zq`LEH}V!@v)C|Y!EYGs>EiVc}sj_)ZJ=fqzaW8l+l
zvf0v3?sMgV?R2?0{goM{hmW=SG8wy08Hx0Nd{AU_?^<|x!CH(#)8P7Vz$L=v)=Wg0
zTQ$MpN4AQB^zw60QD(^C=0hwo7DCJ`cs^~ylgK50kvelLx#YC1JAp3E!@i&XFNOt7
zuXORvcPkH2Ma<@IzeiZ2-zIZERFE@3lCfv(BdGgoB{-ixZ|0UuIut9b=sN9o?ovcA
z401Qi4<f8n)0rwOS(THQZdQ@S6gewXWFj_ALCz=4l(%14o{8vc@mfZalSM7@oXXoh
zQtj!zhp)909kg%~QlcrXZlA2`o0noEDd<C~l<g#?4uzDq^=?&}+Wo~EMjyYnc28t#
zm#Gb<El>SOd9q-YsbI5}hPQfZjFm>CrjAsoTb_wsv+K)#4|4n`Lbx->X`?Z$<<Om9
zOx>x7WNi1Mh>E$pSbM-(#@eIH?ePQmILtkY-DANAuzmlo;=QYUoX&2=ul1J>p2bk2
zR?kr#Xt7IRwI&Wd363Vy^fEU${~CFFyGYS>zkM>+@~4p6zh7+KV4>b&&V%8EIt#C@
zkI7$ueP(L<nen3^yVO#~PSV4V)ws8_+}m;PZ43{345Pi?jdu$yhSq%w-#Ou)1MYd)
zpkliblm2^f1&h9^<4o#ylecRf{xG{_9Qqb@kFEcs!*{HRfqavhC-)!v2n(5B!A^#(
zppok|MYBRw0x23SE$SC2vsiZs&1CF~Fl}(C5M(#0($maG-hx^NbWSkmJC6P~tg^?^
z4Xejy(w*@)*C`9qzb093bS-8uB?ep1Ft)fZO+AsikpZ$>eIF2hyNoXw8@aL?;Y8PC
z;&zc2TO8J-Fj8ewCUa-rER@l)f;Vi1S%~_%mp1a1^q5`cWOkmtnh@83A>(SoX^mcF
zFiB3_={0?seZ_8gf0U&cP_f6)j<EfHs@Nb`u_f#qP7PPZy3}WS_1E#UM#iS?+4Ues
zp~;FhCdwjAO-X%+M@lkl!h@$939Be6ebYDa`}8xuxx5~A)MI<kZ!NW<q<g8OU8&Ed
zDD{S~>0i3Bl`?C@pVi_|BxLTC`QlGT2J;z)yi-N{8CdLJN)Pt@5v?-4<7mQ-sIBkx
zW%N2yOCzluG%);A=9e>HX5v#s9?e`8I1|^$>@V$(x;Oh)Wv_I%)$LX}{Dtw!fy>=n
zKi<5Duitl{Qy(4t(`D=mtlYMlWuo1^pKKh=V)%qaYvs`Om5pEMCEg?#AKeC6CO`gB
z98$cRS!K9hbFbJ+Rw#6aTA3f-kvhS(YW1%WC}h4}|BRQcE@|#j<yRM1Hti_<e>gi6
z_^7J$?<bIvsKkjvG%D1nQG=oe>jD*OP_%=hqEd@%sViEnC<&lNO-KS6uY;i0;?`o_
zm%6qJVl@HE<_1_5LBYKz9T(~bh?@8Nd(NGiI|18&-+Vrqd+%AF^K9oi&)MQrKPw~;
zMI{nRT{Fn)5IeCn?09WJnwyNMa+^r5!ALb0J~UT8kD)VlYN@JKo3-zc&3{1IK1$Yv
zr3;TG6^p`HoN%Rc88vd&nUWg~bgflNq69E-iruVGY0@hvw6X(`ksm-lBnvV<(L^2L
zIL!nvDSJ&5ACh^0{+Fgq7PARM;WeQ#$EjX?jm8;Qfi}8wn%`t<(-K9?WHSe`^L=2l
z`!XdR#me`>I?9fv2=`9BlF9ZO-iVlO5-GdZVbsKan@c&C*YrOK>y``qmI?WEE3|Gu
zM)=``RymXOmqU*<*@g{e(q!lVUTQ&_Y%a&H2eA*YkwQRCFbLckjqq2BgL5CzL-vXe
zZ%psaq35?Ngk3`Cm9nztZTHeoObQqJ$BFi!_+6te7t?q}CtJchK0+}pj(GVI7PNI=
zMvDA{8c->#2Y>w#2?-nl###E=)s}rOyb25tL?~V!_v2wf(dWYkEUNv80ap#clD~05
z@qB%O@yJ&$&OI_fP~@~lr}4=6a{#AQvWvxJKe1j{2~qS_jSpzA@!uyMQ_#^m=b;B5
ze9(@KZEOF@Me38b>a#c*yPwE~v3vLxir?dDIoltM_Hypl578Yh85qt>MDE`hf6`|4
z-<~O@EA_LvAi+1Q8+95-Lnf*vzk;2CXJPC|#1^Jky8Tq$Et%@_^>KWPdO+%|QkyH(
z=87Qp?r)DNfHh#cl23yn1?^&_P<k0@?T7O~geo>9K%$-?0`t3l_g^pRntZhnukXbm
zVkv8Bplq>Ts}fz+C(A`UthAaBaBLk-Dc786{WJfIhLl!N5uNgo(yGi$b>^kNy?Fje
z6yp{ZQ(kDAAT#iEgFk?`da2Wi{N?bQYQkRu?1v9#9aW1YzTxAsCioAt43E!L<~fNw
z^?uPRl&lj<*10p{68KAit*BD-VOnpN@Ja#amBB4Dqr8GRckN|<VSa@Y)X)XLd8HTu
z)YaVQt%4ea8m;r4N}@#SrgY|04H!m-iIk?qZHz(@wr9ISMZ?-vh2ePvX7D#vCdd<%
z97qjl@PWo|*KP<2Waj}6Y;5cDOvtWUE3o^oS9HbpZ+jOSjVP|LZ9#hSQLTw#1426}
z^qq?JHrQeRO13)lef&Z#$7`z8;3vVP@<fBV2`91t7Ced{r6(A-bV>4$cvn~nG2E~~
zh@bDSXNxI|TUy?OaJq96y5;C){*4=ioBZ_{*sE8BlJ(g=lF5F2dVba5MTnltK;L-O
zP|&lZ?T0boH%5&pM$wEY?k{b_E;DOB{<+wXGBxdGq#FY<8ntHjbz0MYl2|Pd-tp&k
zf)$3X!jirwHk<Z>7<~#GXb9`{is|&2(8!c4m@R=`?2t!t_`5vlqzl|1`AIKxBdI+-
z#WOiVddmdR!95OJ!5^jE0g6mARj~Z(UjbY0Ea%|K3SbE4iroe$*R_4L{g8eOIYqkP
z`nFHI_4|HEa?#*6S30=gx+7CX%)q>kanw=UEpba?{YEasUB9y5isW3CFeKTiA}|K7
zxn30(W~W*Vpd3C@O_jJi^X1L6!^6h5k~gsnIl_5~)FeCpAR>70Z5s-n-z3#a`)Miu
zf1NP@Z+*do#%o|zQd#puQu*a25vhc<B}WNsVwMN-JP6;|(vnKQoaZ{P5{M7S4^)*h
zyV%^7n@i=FUwM|R7WdZ(K|thw6NVNiIt<io#Lu%42)+qVMniI+%lMGJAH(-8nK7Yi
zSRmvvNCKp6qs1MWR{N_MD})quQH5UIny}SX?J-E<cKfl(Tlv}_l()Ico-c2KqzZML
z(%C1B<bslS>Wty8J{!_yt`InxyA;G8!4u++<l46Px9_(pxxU|;wsg0CUnIY8`>eFz
z+ElNfYIo^M9aOP7dl`c!jX^cP8IcQHj01`CMFLa1z+ET9<TWgk_H)(3LG1SbPy1t!
zmkTKGz8IwZeziyB`s1C^sS%S_7;j;NzsC|puyF-5{svlTtn&&6y;z6t%m$v)-RR+J
zcMR4J1z)i-vOZ#4fqMxaFXb3*_3fswRP3eIkz^+5$ArnoS~7Q<CA)XCWR~CX0`w}j
z!r0$+^W|Q)S%yzf2ZlZZj>M=u{Psbz6~H7_F<D(#T8$t5hK8kLkGArlY3M~Wq^&<Q
z;MM<G5yUdiv7sZf^qbXP3f$0>sN^4~@bf%xVNEsF{yI<<+rKu%_bcFA+HWLUb(FET
z8>5;#0|!p&1&g#@*EVeEfKYoW1@r>9@&Z{@ZuxLSQ_+S9HVx?;gg?skNPo~{bL6T>
zGDG_EFqudCIOe2)b^pzhDZl%Wy4vwMceod5a{J9$FAgFRy-#f)u}c2@A?+U*w*SCC
zcH%b%T3LQ`g}yzPeGviFR#aAnfF=@2n0A#1wB^l6GHXv^m~6NuyXzO$p0hSfru?o<
zb%7!{nIiu=#>ijF_)z4x;Z2R_akLH98uNsFkC`CypqJdGZ$kcKPo%up!~?Co`9fLo
zl_URv%fsd`qxm8~npX#eHmm}Z%p(4P{bu&S0`Y3Teqs;AWnqD9@AyyneEbB%z<!@c
z5M}sW32I!AEU>~rGi>PUeTI!uhO*^Z_bJ1B#JaQe<3OH!Rf!FQd5s;Gf$jZ2_{N47
z#7&^eRt`pNRlVl;C%BB0qQ2K8e7xxaH9OT*Iacn4KI;;LX6}q8pJLWg!^ijUNNDom
z%2|5StNQ08?qy#ABlK(iBJmKb8;(4P*|vsnrjw`+J`0mIEKu(G?xy3(8^n4mkr42u
z$**vN+$oQHPa)rlxK3$Pv9l*fyd${C3fyi(tbduklD4tqYcqRp{Ag%bl^bhN;dR$*
zJZU^u(qiv)u-Ur>mtKVrve&Xia7IF_Aks35ixWxq1>G%-fNmQv(j3CmFN&EeU?w(D
z91INU$x(d5KjSZ^epq#k9P|1KV%=3|P*P$KIm8Am#l0IaZV%XqhZA&fK}Vh7<ekq%
z!pv8f2k;3}p?AFI-rUgr3=2;%cag65>E)8_T5|s%#HS^9>XC6lYE@a+lHd543w=xl
zZKLRxnMFLhmJFV1*?ywOqIv~}@pg+t*OCF<j#jY;>9MF@fnogpKL74Meit9FK>aZb
za4@@)yMImlQ@1ZI*j`osWw9>DNOb)%+mb)uO2r=h0=@(bRVM9<Vn6ewg;}GolQ4pv
z>V#Pg$$9e47bXgq;ljE+(wPgNrLOWgN=wBqj^3NxiyGW<BLqlB6J4SnBo(WEBO<eE
zfU69XRU2iFk-GU6Z0UwkE*xtLaNTzJC_+0qBW7EIm&HHpSBizI1acRxp-lC}gkHKi
z*q0n@@a+DJ2<zLDlADl@9N15J)qTb5ox#2&Oy<G9UW((vVf_4#ax-8Lh=QHd2jbr=
zJM-@lI5wr>G<&7X9=sUezzPn3Ou<w(+J^1+D^9F$i-R)l@6T{6i8oxL#C1%RwH1^C
zJL$Pgm-E_w8EKliZidzvKfm`6q+0j$Wl(9)e1L#9v&N{Vn$^Peei%&GH&H#li)K}6
z2geF*JWcXqoYH@PDo45wdR0At20{f1pJ)pN&i!uXck+H5X(iMx&Z~#h5SCFv6O7U_
zeFt8cA8VP#3;U||9VztxoHE<SDE`?mHUq|@$rGhR#!82bl`&qQsb00J`sr4EFw?4M
zje8sZtA<SlWR6e$nTo)o87-&e$Pi}hK1=EQXym5RLQ}kXg=~kgbdvdn6l~8zmtP%|
zY~m&8x7z#081+q}umPLmsX=5L7BsCC2tyIQ_f*etP5t8GEy~`g>W*COwV7#9gjW7a
zXtHOvO2nAD<ceTaJlt2Hx#RToL~t4fzK%PgYa%tUM-zKNKjJ2>#fjv<2hX8;Zqj-;
z{#4H%gPWG4KQm4Eq4L@X!Bp#p6vqcMZGO(zZH2X*rAyuN(0bes3tH-F&GB6mTnT2c
zTY{_oEAXeBHHrlp+)Vx|z<`X(dY(g*O^b~#smls=0?roTX@5dRuv5b*bv>Cx81W(0
zGR0quzL%><Dcmpbl<&0pLY>OoMKcLzCBw@*-XloF9gSQo3r*vsVXXglx}7~0)}??@
zTt2EHxT(#+O0v@HZ<CZ!Hnm@kPb(HrT9zxyow=6@<A;^@IKh7%_Cg`&pO_6A<=4{j
z__uTJRreS;^p1#B$y*m3Q=rQv`g*UaD_Tx(HLp{D8J{8vrVP}TrpMrSeqt*d)o0Vp
zYpl~Synqr3pxk`J5N@#MPP!?}VC;@zfUymI2YVE6u|_l1Ly+cR3hOQvE&9tRxUi<2
zPNt@U{?VL(w!E`uEd5$5x%4O6Qa-qv@jG8W8NIG3_qyT%nwdCPJqV=|X2W(Hun7D{
zj!U2o-!(_n+}@Py&N*BtCF+T5BT@S(>Sq?^-gyNL$Wb;?4VZ`T_>|`bVJ8~{Wd~!I
zYe7=8HNa!TH~ox+CcUzl=*K789PEu#D^jsBlRd7*6f|49@FFWDt0+0a@}>yDeFX5$
z8Atp_w?v}$Rn%`YQIAINN!n9Uqb$m8e3@oytR*Fw*S_(`&^Ex!`o{rEWEU@-%Pp7!
z5-E_M*NDXIxz@@P`{9j>RlY{udT}#Vr0-Vw%A#{VKu_%;(;XnAj-8{!WLRyyoV(pZ
zR`6m6obw5vP`8foiF_5LKN5+{(ST%84(QGfqvjP?b(@2b7Nj3h^6rUXdMjUqPjc8k
z8IO2g`{GkJDoOtM0syNr^t*@X43P0=O*N@?s<|2%it&eaFK}-b!$|%Vg1VopePQ<6
zoikZ$x#>g<4?_HKz)IK>>?^he``?6${#1@IWJ~yg0=aa=BV!vwh8^?Xxy%n)p}}=*
z9j@a=D9@SB5eDyspP$M++-(1`_T`46k1)c#r%w0Gz^Z3s{N_(JaFJXG3ETw}={>ZL
zQBM3D6%(|~Qfufp^`K*uNW_~tm!3E+ebg5NZN7A6MdPN+<IT_LGs%v;#!VCA&9~ZD
zORMq+1d?IeudM@}X<-B2j5o{A7L<H*o^3K}{;^_HC3hVl`va(yE19SvXy)~m3K|)d
zyi8ia9i{4xHIg->NLWGaXj)utjlF`s+F9mIq$C1j3TOl)AXXdae;4ZX5U}f#1hdcw
zl2t_5a)fvV{2?w+h4?co2|ta>q;EDWx&{%_VWnXeps2uYwH16$M;{IQJVw|8g$a@g
zB=hX~U^k)23~Y)`Uz<sBc{W9hrH}xUY<RowhIF-G!WxCVX{mfFcFF$xqb~?c;CX9P
zr^%78zX(e1IM*ZhO9}&%Cy=ZYau1&tBDeQtq&4KOhL}pfCFJ(%BCAjxV&I7@!cL>Y
zproJGRd*5feA-v_cqR(dVf%R)mZnr;%l&)>CEuN+I%hw|2Wn=YM6zD5o}?|aEkjGa
z9^&Fzg|vAO>T=^*iJ5*=CQy}c|5a4zMiEN;)7QCEwNkSti=AI6_DCPwUZCKHP3@E#
zZ#s=my8R4(vLOQ$(w`r9Cwo#80VFhzAJBHqu3^J%8dUPKsEx8Z+SiBk*x)1+)o$0X
zq;jyI2UBv+G0lZ<cJl=>I0Oj&MKa!Qh0!pMalD=do0c@aCd=KsT0wvRl@-Ls1d(D<
z&2V1|K(!wc7EnzACu9qFUnxB^x2L@B_l)aqT@0@7$(#_`NxzuQo9{29oJ3B)c#-=$
z@cJc@(J$8^%-9Zv-gcm?H282#Rfv)~S-hmx%VHvt^m38o`WvL$sH{}IY=z#kiE_eo
zNi>mJ&REAMq0%sjb#Cj!hTIvm^hn)e4>mZNWCJ;p{nm9J@-0cW_k$^!0c?`p7roY5
zvda~QWb3k~R71V$Qqh;euG|qa$|zOl8;~P;yWMCi4u($mYQ?2ZpZY=ud*BYV65jl!
zmB0Z@LP3_+*0m4gh@W0!=&+!(D9F-@V`AmeOFFPn3tY)TW~biEv|;=9>R39_`=0_n
z-@Zg!RS=p}sRE;M0~-H9h4NLCpt(|N8R8YX*QEZ5^2GBwCe)3~OP!%&p}Q}d+RS#5
zqZYr9^~&s>nQpp(a^N4VWUqg9R$(*_Jx^TLs8r_ktAixywNug$*h{=g>z{1}th@8?
zAmLjfA@bMRpfZcKd*y5(q(N9wxFjCmCVo>J_L09*7^lsiXK+v*o{E-Xa6s0ovQqQ#
zJN_t&2TIwB@^{Ua`aoU2f4b$jhS5OyjTYJlU^6gBn=4b98nvXbeF4hvz7XcT^5avq
z^MyK~$QY!ZIxuSB5siUQs?xBL&bh9LkBN!kAg*C8j5occmT?$G^H;p|Ykf{FRU;4L
zxY0$rc8b{?HonM$8iBXqZ1`%YeWcz2)7*b7etk)P6;T^5D5tkl*H*EszN%t;xrKOv
zG*zXgB#d$xolUruU!Y>I3HP%KX<pjmPYo`omhOIB1QSe8FT}j4+ba>+AtYCIGg72K
zP(v^x8(JwJX2FPTO}|25x;?Q-O%MoqTcuL5I}eQ*-@B5;eSbhW#&{;Wk+`R#-nS?>
zX+BKy`y7*Ofj_dytq@GKtBvD2MpQyXwY0GISeXh%ID!rk&f-t45_WgC8_R3i*9san
zTI~XUKw*S`41H=zj-|E~lw6*ko@3xn{IJ&Z1B!nPsD~e_#acBv{Z0Q#&wA(-uLWzY
z=Y`D^I!d8gXNhS4+i;DQbeLCYyvC=E@gFGKk)~*y&QJj7#TiHA5Ei7~+`9G|uj1j!
zd@WJnSe0p(nAZ}j=_J*(+}dn@gBh)QN0U!mYk{3KdA#Xn1urr#*u3g^=c+R*r@$Q?
zt=c*ckBJvUOh^Iw^=~;#uNwL5pR@F+nfqSpZ6p1Gg%vAofo%wDq7OO?z|wodo;R^_
zc?U^6B%n6Bh_kIWQN>DTtb0j>MNMO~q%#}_kB&s`sk&<{%Du^~V0%%>qIvWmzs2<r
zsgj>HVS+Ka*hi39SECo01e)2oNQH&&Nf||v;f$nR^Qo!W)?e@CrQJP0jx|u*x{&~o
z@$3Gd>R;6O-|8=LKmNh`lV4@(Kf>3)l6kTJss5k+xB3fcznM|F;asHs+4`Tq+_(RS
z>W@#cZY#e(6{e9tk^lM0UhGiPjL|iyX@stt;TemEI4eTn{O6ZqCriV+hyLXA7|-@+
zW~M^3_ZO{LrktsROSLHVisD3aAVPH+<T?c<^i7Y;Irc<blg*MM<|N*c`!$Uj>xUSG
zKihXE+tM$)dinwzi00HwXM5pk)tWax2lxW+;d1jiKY*qdCu1AS24nPI)mJf?Ywnh8
z%vy_?)JwQ{pU?=uWjPPPdb%l?Ens2C(<36VyF}p6c!H><C-Vj8wi-@X4<PuXgZWwR
zGcAlR8aAz8j86u(z4LE0uk-z)`TRScwncR(N=-s(q^Z)20%8>f_3Fr~penE=OpOPz
zE;NpYk)jCQXi+sZ29l7+)AG^p3`gbbR}#VKA)^S~Rs!uZR7F0%$Dj4z;0a<u&uq2c
zW`VGss_h@G7JE5c?e)(hNT~?5qyDB;Q)P|T8rpij@1*V<KCWS$tC`OJdZzp{C@Thp
z#&4J=)#>N)r*5iD5RE2m+Kq3sc>svzLEIlQrxnyB=i8iU`%K<D+6J^;H8F868%VyX
z=R4k5qN*~tsl3-EsJ*>^^VhX+tY5fu1%}<w=Vf%RU#PjN+Wx5t6NsCOqUsBpZy#tB
z={Zm{;;1<W9>N5k_fl8Hf**)gg-OykeQoml^rC(p>DgMaY{0hGo|Yg=E|Izuv72l$
zlUI;Itg1%_#ijLBi^<;86>%H`<&{%G70kYE<A!hR&Qiwo-zCS@q{GEvGt6QVplPZc
zF02J1_8JxlnP8%Qt-2-_3@ciHos+nU+Zq2}cAyXw`#idhYiH8Cnf-}4H`cI2ICs4G
zP)qpB=<<^iCA^e`LPAb@?jWhVzaKw0`qB?Ai-_D#%CvMZtNmR3J?(2y(s}IiA`FTE
zj6s=TZ20pb)mm^l3S3^rWx?X~q_+epPW6ujY29^taVeOpP@s!#^xD9WQ4_OYJo)t7
zW*s<tNMe1voq)TMeP-YE3eP{UM*S5mz4dUNUUcpYp(_uoMHHt*GeZDiBy7<=WCb}>
zh$>fQ*-EExh*s*`MSCb`3{p*dkQJcKKo4K)hUZZ#*8Jkp1`MGr62l9V%uAG@hv!Ji
zRLQ10sDvzr6UrJ^*`MZvuCOO|&ph3wVD?s}z*V4MiKowO0Oj;kbUngqKuM$`>k-N^
z5aLr7D7fL{stO)RX@#ChseewYte7Kx?AIf(#I-`^JZO;uC!t}E9Bzr4!e%l&wIdSe
z&f{oNLMNQpZwZ}GkK~%h_X`VG)hzoo`9;%eyui#zBf;I`Po3GlBK--2?OtZe!|v5&
z6E9o!4GRR-{N%Fqhp@V$3JW%mcHeDl%=R@nF>hDCK8#QK1Gym4D3OS{JN*DRY@MCH
zMM9R9N)STTYeHP={=z7QsJGv&v?$0M+kF>}YQ&yUbu_92lGq7{jLS-j!pL%=Cmy3A
zLzqpnLU|jlw^9+a!d>~br#vAClh~9n`iFXDJ^>v>1*<;>0CFCjVUUq92y3o_*ouim
zw5@Zs9+XkzlKUB`KbjtqL<T3^A3`rDIBGI|-&)_}9r!_Hnp?HGDWp_oIYIx6PrBwW
zk)#6EouRJtW~x;B#tmQ9?a6(l2EZR@M*tY4v<E8f#XffXC6SW0R_vX-8|{Ab6tp`!
zG*2V+OF?$oSk|BXoVwxE;qaq4HK8Y*s%OwtIg*Fw->$11#ap@y@8>RKU(Ryw^$dD0
zXM9livBFvtsiHOrmn_PTKTOPpgHnex#n2^#KHmJII46h|y>JwdlCPHXAb85(6^!2S
z?5}2A{Hf8Cofz@d*97DX2ojW-Ezi&%iV_$2K|OEf?z2by(5FHi<z47^TQa&*8Zt){
z{pnIg_Sez#v{b?DlPsXvafh37z`bzhvByxfWHZ&1UG6<SZ~$81j{nSnD`&7WTdV+=
z#oj%R<Uwqe9)xept#M0vSDD!=au_P&e3?fDW{7pxwE_c-nEy?CSe~-kg5XcqNM&A9
zpz>hy8e?+faSCydviT99)G1ce$b-SFJI;qy(@E0u{7Tg8Rg+PFl0J$HDOs-&m8%zb
zn7%sa?ey(VM!>N0<~|Ag>3$5a&vW|I)~|i6lJe|V#%VhxG=RlSD0XK}R{JE|jjgti
zU0Y$|jgJ@r=Ire?Pb;CWNTkMcx7o|_#_JR%K47!dJf_z+ZB@5*B6-L#Xqdi_&z<Y;
z9GYB*mA)wU!No(w0W>W3ZumMRDESw(IvTTs3)~NRj^JU*h2f6vL67n|RL5PebG2`E
zA!c#<UHQM;Hqae9ZZ}+<SiZrOhI$P@mF14bi~tWu`NzXgfR6PUX^h%;TF<gKxIm3*
zUNFUvo5o#=K~ZHgHXtFMQh1~03ooFQ^a5eD6Fv`+_;m6=#Wq}oDr4WY9(Z)lkspoA
zNtRxHir58@hx`p<YtUA#pi=kM`yTIv!vPS0PFRt=jSR6%=c>1IxAl&N23y8myF7hA
z?EmXUCfH}{A;C@=U7~_LgRP22T38b&#**<DP#l#RG^}5vW`m`jbeg{|S9Rj!O7U@{
zLdpIgA*}WgURV}|(9MR$p~&O@vCHF7gl+krLG$oAeiv{FM*1RLeJfonePklwqmg}8
z?!CvL!Lt1HmyjMX<tl`JrRuBdk(Wh}LKR@GVE;wQwL>ALru=AVF?`mCNnssETymL3
zTv<)nb{zLrEqaG8$E{cjn*L0zmR#mGvQ$#jEHAiU0z&(h8m46b^5HqO6F(hrDf@o=
zfH{&y7A8TJWCG(V%U@fmZGTarZti7;1=-bY%unYnSfowWkV$RpFH{?YpfwObl!aY<
z=B{K@uZpe!Z5)Tu@bPrxgophRi7EdK?YGggLMKYm*yt_{?XLjorCz3#noJXEc1b&M
zZd+by@{aXU^7|cRLHMOIXhT~uQ!+UW#2s7mY5%<~0p>=@$zk~LIWkcF9;2Wq+fDJ(
zs$avoeS76BMRBoY^Ig2KO6<%b$7o5}`D)^5YX5WG+bm-R*=Uf8;If}pOLYvYD*BX}
zDnnQziHS_k3Q@y6mPS12`+ycDZdf23VXc<E{qA1mWpga=ZQHA^n=0#-1bcB}BIpjd
zK7iA7gTnN6oRF2Cnq>xFpckS$1~GvlwT(*{uF_9`h=wc!7eJVeF3<rG`Om@i>;t|F
zt&TtQ&aUI4rnE*d$c98RQ_z2E;5aKtfXEQfg809|7a}kMUoVQK{t7x;Ht2=%qr`8%
zB51T#kBHr51GK4(JHl;`dGZpUk`!+9`lFnrpgLJSz->dkY!ldlozxm#$!YbcN~#Vz
z(A;}AV}uxM{fFlOa9ixQw%R>M#Lhfd94X03#irlw-%H)izcR<xH4h`-r~e1}*8a$d
zzCrEweA?7*Ob^tg743GCs06WfPg&f*^`H$!GzJ2~00!0#xV+Gc+frwCHAtua#r9+7
z*Y^)!=HK<m*2m^B)%Tc>dwk3F?cwXY?V<mvzMj6!SYCa0cm?hIt8bqko44-?KWg9a
zf2;2UU*>CiWZSpMe50{eAJ?|!`i}JV&3*8HYTpoF<{^3Y{leE*;p2ASa(ychNa%Om
z|5o3Ze=(eWs7JPa|1{rgY?+T+uE*y1Jjd6!`how@zCNA!GZj1LhKMjS2IBsYo(A`g
zDyOYe|B@5F$krU~b$icrVA$)F2Mp%{-aXGiKuQ34V@-<uxql>GP_omJbh&i5bO95~
z>0Ym(%QgQk+K%OAs67mYM6rsI;pZl-$m_Dmi7hv;xN&1~-Hw6!>}@oe#%iwOG#j^C
ztJ9xbC^rgvaiU|F!D7}&se3@3_d}NMov;f(R28sN#O9z`^Lt?gDeC#$hdqQ8bixx~
zMuv4|idt$>83o!&fBjfvtUMQxR5|k$6c^rbjDg+5jMjI$EE-ZI|0~@n_w+Sxh)wz@
zk?bsQh1~I}Kf;z|RZio^SiI5JJt|NmuxG0I!9OV5h6CyR#|Cge;dIc{&6dG7eA7U9
zyzw>}q^aJo9j-gQdSXv~bCkcBCy_d2)*!n9?9^b=b$zv3w(Z?6%^g>5ogC4<Z~Fwm
z8t_KE`CdwCzgRFf%)3Tx+4iq)RLuyD!VmL>Z{XatT;X;PY3h)p!osP1B$cOc<rbBK
z3V<2#>bM>R9z`H9^dedNZ+-b4yQx|46}%&i^xnfK*ffv?(!n~{p?xd8(7Dvmi?Qe^
zm58&`yQuvQ6rPTYsPMx?-pbv{__`tBvC-p((fkGOib^8jQWPnE_uF>2WWRbKLT8(^
zJvmHPYRPJSvICxqB(qWeeql1IrnKWp=0>vu-<{&CpYd@d1Cqvm?Cn9_w(d!W7CavI
zkFtB|X&yt(<nfdFyCeGEScv{2DEXv-E-qDe^=UG`G;*M0!yKvP{^OrY)&}b;S=I)`
zZW_j*1B7`)mID(S32=w9ay0GSAMfFj@9&0rN6B8noC}>v!kPShqve!lCUPqKOmLb3
zXt>wXM&@vDyzvfFa%%%!?rqC>#fnQET*FZrUyM4Qp1OP(TMI83QgD3G)OtVBgvFZ~
zyRaad6db1U#Ylp#KI8b*@D5H-k2h*g^~7LU+Xfv6Qf>)`1!qzi2VxlS9haKawqZ!n
z`{_X%GO}#zS&BVw(U7(cJgwN#Drl-EAUO2ni&0vxhx=o7t$)+`t(43S2EA)3B9XeH
zimOwq5~<6pnpf9x!|>p$pyYJLh+WV-(1K{sJMw>l*wAm4T<_j}32eUSR_U=A&bu>^
zlEEYb`f3@U<d(+tRvOH*>`x59gjf_@sR<cNVQwRP`(Uv-es!3NQ8>nOT~cM4gW*gK
zxilc8oEl@gmS{O@VucPWDQ>r;DpN-yBCe=?7$V{x(TQ{0y2JdV+8!BA=AVoY%ml^>
zRSymmsqh*213XNzr#NW^qK`5Szm0j7I4}X#u2qyHEp#OqPn>IWdQ+e0J)_6&;vLS(
zZ37Qk#r6akzYO&|17HabSs4ajq(*!(QYW?~j;G^kDyM)&0H)<tMP8@Y6bB`LJ)Cp%
zQ#DoUb6z2mYs=W7>DO#S<1d6`@z@Z`N*!A`bik5p4odI>PQMt%J$Gauni{wa689XM
z)Ml%&*$oSXjrlIdN>o->q+;DqmBbZskc_%HV|`;zek$Cf9MmiBfJH=d>+v8*jmW_$
zV8oiyLD{xcg>3E)4cCn1pg1-lCo;(8D8}R$iRAa~zcMv9sWRcNdx45q(qF(D^}HvN
zZ}2vrw_(Xeyp6H2#qB$phKyZxt>?MXLg-j=%tY}CpYYqLSwv>)0=QA)mEi&o2%+3C
z!V>N53q-}{x1Ti~UeO*ZE}95RI+a82_U?+)JXBs>``WDUNgS51-!`{TUf(;?75|9B
z-09s-Uw#4b*eCxj|2f-4^6#SjyZHQ1`uzEwbFQ@DB*Y%^*R2fQ#k|4k$eqZh%Zb)e
zP_T<M%oJ<i>9G6d<wJtlpaIf6t#xN579DAd(xeuJa>$;<NSQQ$T{l3AL~7doK|Lt+
zfElC-U=<`u3O%%>irqlG#kmg7rIyg@1&QPa4r78-Aoy<yf%NH{8#fhmG*0UD>ZY!9
z%^(PRVOK!V_A^a;pxFGXW|*`paW3mN<dpN3Q)TMdYOzPLyOy06rUu2YaIV%+?qd9x
z?PjwbZYTQ1r@SImHGT}Ije*JNGDc^nPg1b~UHsU**xkouqm;efR!mzba?hh~$0V%j
z5<|95Utwu}YGf%CsAc7_+z>RTMlkl5oS{KupWVE-37@_ZJ_gFJ7sr))JW7*m%}Evh
zflD|Fo7S^Kd$}ShT>T>%Myljd6jk)8mtz^91PT$`pBh<NKo*VglgFZ5MjnR9E@8D*
z^2kygKz?B@c&c%qveYX5F~$A-{tz+~d=;lE`+FECo~@&DLbXt#f?49Ffh&z{|H8!W
z$nr$8du7M6d}tGb7DXRB^^+X51Pa=7fBpl|K6q$8wCsZbLxQ%(pq=hE*ziIGYg{mP
z{&eT^zFm?TIy>-nGkJ|qSta)GH0Bi(>*_k`UX9<~N-P|JzUcml>4P)6z;z&y?k77)
zx_l<Eq$Be+PKKiHvlqkpg7{P1Z^Ow?E=5tU9J|SNwQLzf#?|^dmduXSfuI+-+f>Kv
z#HQz|V0SpI?2hrN7v3644c~G8fl}X3tQ}M3rrl1{Ie;qX(93BEB**#5ntEKx^pi6w
zK$A7o^`xKFGnbrGwiCgvt%@7)LcIB1Y|7wP86wgmciERCQeXS>C8DAbZk6SNff8>%
zq=*bRXjV|`c%RkCijl-<qBA22uIp^7tmm5@Ta~l)1c_tyaew%Mhw7w?oXhHpilFSe
zgVp`Sn^|oF(AF~yCds7AQO^h=*xeWOv&EP_(mVQi<KtBC6A2a@jiO9c<z-$~o<%X-
zD}Q9s(K_R7G9~CXF1pwXOu5?F;Dt527osM2q}E}nlgp(lk3dyckdXFxl}Y^9KPEmn
zwo36k3`-8JGHp2)`@{w!C_jAtu3ig2KOCCG9()B&cp0Bus>9obycw`kjE~8HK&0`p
zFFdkHwa--PfFv_AK^1KIqOC}CMP@F`{T*zJDNz!_32(zSq>MLTK+1kAIIy;y%)K({
zrJ6{J*+yu&o4{_5EOjh1BNGO=cI4XWRfz%f<IQU+DCk`RD5CDC*8Z9h4{S2yFDUu!
zAmP}boc$N2NRrt$U}0UDf~3moM3TOI#Mj!JnLA!?I8x4m|LR`K?mo~cxJ^*<2P@EX
z2^#F=P$><jFc<?(yC2s8?B2Axwj$_#xurd_9LskrI;;xaIRd%eHmm?mzoL$@c_lC{
zvfF+HZ~GE~XlXv0=lhWU>3bCb_VJXjbgw9wVRnDPML4R91s-m;1&f4_*xO3KkwfD<
zwq-Gpd&T{Zh<4N_*#K4z=6se8cQs<*=ND5Y&mE9kG>qib_+-O$zI50Jxob#{Pr%!Y
zvT00I8x}}%89YL1*H;yNYYNaD1`RgShW-@SP%1V_#p*YCo5KC^X7O2Uz~3Wk1TR{F
zdy0z8U9jM*NR+7RZnG%20Ods1pWhXUH=UTqso?f55hj}|XOTm#)w>sBSkkS;-{l%9
zz->ouZlf>ip6JOL_#_HkwXf<lAOEjEb*`#jRn1lG4_0-Fsw!7ici}#B)AY8rFYjmX
zM9Q;~Y_-b!wUuYqj4pz2*<ekuX|4Ko_RcWH{e4^2nwin$1qoNvK9Op#vieBj4p5~#
z`}#gv7pc!y-V8_CFnYN{WpM=OX6>7$!d6>NKZMHELfY3~Rm}(G?h#+q!7C$G87e=7
z^6_mOCrkf|2dfv=+bT9SC>7i7Uy<}X3iW@r^lr^I7JuoTk$9tWOrX{LN6<e1JD}Y`
z0j^4*_3)q_^?sx%^FJNyt9t);k`RQ#kJ~c8;%ZZ3rQXL+hm@UYLgHKP67vcc?{6LY
zqd4a_pc|G!HDGDozZTY1Fn1zzOulKEPSS9B^92NrAvMMxKe726LgDCglXQRr8<`@_
z!jrf7GY3toWW_a74wy2&8h8TDra>|-z;KcT`nDka_ukkgD#&ACpGNl0Qc14E)%-2N
z`Tls5V{c%G90yv(M0W$N_7~@8aJ}*A(5Qx}SphW)+>or*V&a));J$>r2^8wiA#1LE
z%u@s{ACnWcyUn6{y+Jqbua!>A=qIgoi|D6}ag)KFo_XzyPw7h`fDERD14uysV6tat
z8?brLR2JKJcNJ=(B6g+x0R!H=9343p8ozw`f%sZM@bDT2$fJOXuB&FGfWt*fIOzTb
z#|ns)9?Kb4D0dz3GT1ru-Uv_9YV?=vD*%Bt$i5gYMY8@;U1!NUN_{e~s_*p4emNsj
z8WN8E7$yUDO1si0duOv`kCV)O>_NKZ@kk-)5AG8Kx6t|78xWJHc@L4=37_(1flmM$
zBhKR|m%t;i?1qo<plMh*Txsp{6d7)M3vRU&CFswm60&HrzJy2<tp;hrplsLu=+jek
zqzW1KpT=5!z3R`_h2h)zWS_7j<9xq9BvzyE!MYD(J^ErTv|e4lkV6^W<W^es-GQoE
zur_k;Ul99*(mBs>P5MK6(@}Hb=?6FxxprjZrY?1CACle@P;?9hZm`VORP3bac|+Dk
zjRwQ+E@I(J>>&1+FYTgt%+dmPIPbX{eH)ER+RsUG+rApXyy?!JRon<wmf`dDbjrLN
z6lun<GDAx3VpI39FXfJlBg6IsRPU?m3bs=zmY9Xw9qzN~5c4NFVs0)UH&F-l94&f|
z5<N$WEyo5eA{q8vQ!lX5xN&fN@=>Jhx1!%_BP|Pp!MoX344~ak9;omC5NTSmfchyw
zsleePl3q+@6}!C!?5~tdwb2Wj6#)Y!G9pRgHHl!R+*gvw{_aUxoT*sV?;>^3+5)%A
zY=I#%mSBWQzBBylrq0Qp43pJZvY-28W2Q%v87Z#|lX<~Dz$d$DS|phf^L&!IS>%BI
zeSZ;@9R1H4+JhdO{;`n99+ag(Z^MN6Q}um#m(Bk$&-hcVw6%)7-m!;?J?&cZw2Y|S
zNA4vsa&`5vU}`I2a-5A!1V<zWtdBSEMrJnu#INfh#?2D(QnA+OBG4h@tlt1^*F^{e
zy%W`7SupiPsh@~U=NtCbiMSCvcLA)}o|UW@Xsx}JV(0A@%9f7y%ovfE5zo%G!j8p^
zJoX`b74z%`m+uI-8eRr5WES_2Lf%HtciSZj3)1gX*xTeY#D9Ad!*KlCneUJJPCqR;
zX(THVv|Q?Ut@2Ckv-L9J>vC-2g|Tb*<TTtwlJV(7d%)9YnSp#%bzmI@=)0byojTfW
z?21Q^^U&ZeCoxvZW3A>Dy9u=aD?WylQ%#yelZ)G27rQt({>;0D@f+r~AE;24fx8Mx
zK`Pem_6Yus?SDr9MooRK-hZLWT^&i=<C+#ln8tB#&cQ>OTX?h>RT+#}Prq~K`r`IG
zF{|AR%;unn4^C14i3EgtIP=Kzn>bAvlh3#|dpg2^<+WR}k&R<SgXvPO`%SkY^om@l
z3HFM*br~+zk>JzK2u0nl3QYY$+hsw+bogbjj?X$e;J8eFRODE!qPl;p5*-~1Jkj&=
zz7vn-^|$UDf`VB8J*0T!%?tTr((W`flR)0bQul?p9yBR4NyZJT&h7o2XcapVs;iA$
z!@D?<<W|@XTDNwX&ZKJFur-J1Z=K+-*ksv0mQJ<{=}2D#7hUyB&e_>c5lsAn{RwPD
zytM$*CDyOj@$CGzZ8{>c`zq2-IMUlsecJq}tIwju`n8F+4x+ie7DvOd!dJ9d?|M6%
zJNfVSpTd9cPPH}L>$}Nojc~sWAlygP<0+PhA3L9#URs6=y0$crm>u;Z7`Gou=cP_6
zY?-bXEYIy5Ee5k%`5M{M>7|(aPj;tyNwnU*CwS);^SkaF1mK6xryd4vusLLOQh#w?
z{n?s3e9gN5#ukfs0~K0TWU71PM1=MOH(fRTA;XzlXm5N<czz;kKWcx~z(Vn+FARU?
z^^-$OiV3qCHIAFW>0*u?cuGFglDEhjfMbO#`UlUrOKPvyqNk}(D2{@-<eejcUr(%G
z#j1aZ_-dk%&Hw6A2E2at390}hP$x2qp0@#j>U<1)Kw%YhNWOe87&ZyUp~3@}P8i14
zVyiPt_eApZ^q<3$d>>a6w#B+6#Kcvd=9OZ`Jj@u1?!>o^WfJ}|m^rKee178ie$X$%
zKhWgcDG}uZPMB{u8z93fF5Lo==46QkPIL0Qh4PkfR^FBQ<=yt5%KLdfd~)Je(4FiF
zpi8ce0BT+B?s)~1WbAd3Bq(t9+wz-U?e<Zfzq2;v!5^P;xm0kTzWF>}3RN$NAAqvy
zM{NAs{q$S9`1AP4R)QDDn|H9_?)v@33WAo#r@jU16j|5(%58Wqk59c%42B00ho^t3
z&<kpBm;Ee3vrLxwwO#n7%Gi*14&Zrq8*$6V$CPY;yV1Go^F+Mwa!ot5oY}n>yB)A~
z3EFqw=kYTEsWf(+Wjt*$9YeQCE3~JzSIe-<T`8g00oq%+=lS~~Em!Gmn#%ok&K<6z
z+1tKx*VsYZym6Pdw-heT?Qq$O9WIUYs<9*XO3Z#KBzj_fT1R5HebbfL_)|+ST5>Bu
zx3zcw^%9nZyxwOiQyWyt?Eu}M(z5bCFQkrBz&`Tz?_z=i9L1PyhLBRdxSpX8-1GGK
z?XAUX&--f+0F$3BM#*<$Wd=C0W}auk2P__!Rxm-QDY&e}2QQzH?zcqWhw!ZgZRA^K
zDER`qEf-cVXB9-EP~q`Xn!MOgys`0c9jx<elx>Z>=3D2V5jB$By;%~opR$4sFSLKB
z9-857bA%BohyFXSG<S0|qIwyL^ZUQ?wfX$-zQ^A{d1p38$^-WWZZFECy@<!>@$FII
zdr_8sSNZQU56C`Ek&N&w<2QcYKHpGmwl{Faf@U0D5(Ll52hM;E-v9nDGXBs!HI&s9
zBz6q@d*IDP>Y8_?tU;<y&Od>LwRUoT;4ikAeJ*JsQ0f@w+gaYwdi7Q6m{|-nH_L8P
zyzhr+%iWMz{!cBH>9di;1I`<FCKIEu*1^4oHg4Ev+#H2X7))Wehl~w-tB>D(A+C&r
zxt0foiaih-1$PRW!NZmH0yms!=4!t59M^57>Cx$L*kfZO==d`1fphqfzvF~_`gmo}
zjv6KcAwsLHgDhI1+XD>|^c&s$?3=oX^()g$-88C7-=0;jKY;&F4d5-W6ZkLqfBBIN
z{{4D_Ifnmj5*<rGa8ZIAojA8=50Rkpoj8*bMU3m?PZf1Vbj}-hdCL$~PUAPF<6dFK
z6sG5f^Tz#R;gIgTGRHlbyMXu{%;zrEQ03Od`ZskA8^3KEp}=A&P!v+YCJ)s??zUlb
z3b<WfH>~&YkM90aHyIkN1E2Z$@3db)_@_Gq_1rCQsQ0#pJCy8O*e@`CBJ{&R&_pZj
zS)=^J)!UZqZKUt|!Dtl-&&>K@BwHnf>a9YFEX>|;@`Ni7s=Ntm+@?<Z$4sV(8EUY&
z67${N4K(OdFJoJ#x9tykNTkkNa;{3vA^^th4ChBWK0X!u)is^@tArYq10xNr9O1P<
z<z~rbUn-eLUb#=U%Vx=*Cz<;uJgOcWj3UQ`h_0YnRrB3T^)#!0q*;0N%C0Y_o{Y`v
z_Vuv0T-_OVMsfxeh^3;g`r@LR&64dKCIjIld&|Rq_-4tJ-~H5J&)PD(3EKa#zBoQb
zJwEs!C3r`QM@G6UzqD(R_fg-yPX*l)w-4I_BlfrRGMas1ylBwP%7sQdz{ps{X44<Q
zH&ak&_G+{39Za&*Cy1T;F7B69*@-+lmbr3jps62R6~TxpYthf@m+?8#riAuKjmS^S
z(N!on^{dh=dXXm*f2Ya{#4<sFSk<t^0=5s{u^Qjz(Xrg!`vnER3vyhqFulj-)%W-X
zH4G@l$a3Js#Zf3x<RrART?;-4)d5w_7dlMrX1*8gvtc8FoG+YzWvzO6QlwP|;zi-?
zPr{l&IsH{mu{%lOso3S4W#}JfKmav1>$6xH-O0Xh{7W>sVQp)YyCKwWcZzsqkbwoP
z9m{1=7Po*tTqt-4njeQtjIQlk!|kSh&d<)mOOc@0TB7!$il|dWfg;j+`-mS2w_l9r
z7F`8jJpr+z{in(ENcH=9TM`hEaDsqFLnR%-zcpUUYT<@IHfJ@xUQ?j`#S3F=caYm6
zRdUQ)x$E#=luYWhm!+eg-Lg3^l9iX5F`B~IA)%hNLGOvw<aa2$39_-zCTSlYG4cYW
zN-j7CM*^OcX1oRkZsK?jKkqSHJqKvh*y#*{LDOM&fDX5l!EJbK<g0*SkFODMqTqqA
z`gJFdQKehK9$G6P8T+iqF$L~&U2&X>{q~_sQir@t0o)gmWJ^Qr+_Gax4l8MtZ>PH?
zOD^1Vh@47qY;R7bvk{#AD*#jwJ)%|xvA6dKzZ?DcYnktn{`(V-B)9aE8~5m7%d}E~
zc_3VHg%(1@K6~4Q#PQJ5kk~&}nt1J_8^05q9EN;Np=Wq1c9ek>Z~hYv;PcS%^G0DL
zh&}4dx!=kOVok&{6U4z=X=DR_cVB}~;lIDu9uIOb$yLlApQ&_9>fQ=s$6Ag$xy1}c
zd;dlAF^lwGkp9}--C!^kt2W1?)IAEITt0uGtgx>t8eHK1Mn&m4(_P&v&#(#9wzh>2
z>TXS2>~6ms)}0B9Pj@GEN)ubzM}!SYwU>(f=|}3TsrcN55vjImvOP0VGv`F2%t2k8
ziTd?hkto}l^2vu`fgeWQ+BW;RA`><D<w!1@{d?M?-0&-bJwVzc9cp$WEDX!*k2>F{
z8KRf=oWDB5!*j0?X|i3$$5&uU{P2C6yNb>7#*f^`gV1KBTx%MZf;yH4Z{3e8+WNX@
zpry%0rgkZD$V3u}6?Ejiz>Rys#O1~6kOjLA(hS8*d`duCNHSX#MtJ8CX7_5&3e(b_
zz3vgtDA;-ibwV&kc~5;+7-RILM$QLBFez@Dj)HSDJ~93KVbod8^k{*b&Dsa|1+nc%
zs53|nI)aMaIe!W}Q>xpxH9{h$UK!tgU{>9qCz6PRrn4jhS#%coj?}sG6FX{^XEOH$
zT1SZYCR~Q3dGw1<ImzQYVo&4}*i@1CyPRa#`(4`#B*886Loz>8+r42^7u?(a;-H}S
z=cOo|)HB>;XDdWrB9#<A9pSAC3wkg235un{k<|*VBe50N$;m#9X@x}cmd8{{@4GGW
zocsA;K?m#MY_6g~-|BN}S|*o=<<RX-uHZe(BEhu+I(1q{@>ad*K;#}c(^|=j_YMly
zl<F1;aCKM)S5xo@=a|$gb1P=SsW-Y8cx3NLta8ul)9ztnfppZ-Z&dotdq$;h6G)_W
zYn}S9@uxv9+BgP_7jp3vd-lyxC(yte&tbgLCMhA_FcV-jHF+f6Y=weGDX7XFMEQc5
z(E_Jhxf>yOdPZctsqvN07lr`ZJV|~0#GXBemKq~d5?xnVjhPHKbzPiDqM*O3^#}>g
z(nD3aKVLX+a_R?|#S9h}gDn%vnT`+StVpDuEYL#|%>8dbai)d{TB4eY#rlV0Ic9)7
zr&`k(%&=U+Epl)qmZx=%WNK&eYY<y=7|GRbZOwO3HeoyUb*#NijV;wWpI4|ik?cKN
zsh~DrM9;9=gIj#5kE_&SsiRm*z3v(gn;FM!#^Z_#4(X%PQUh19@|B(6MXTD!NSf#W
z0h*p8c?D+)K%O_Kl1k9#SZ5%OYZcX)a@)q?&i~04S5nj78&z>owx9$}!QmQ-WTU~A
z<lK{aqHe-k@3*Y5<Y>4%mWtDB(Gu;43P+eAE8U@lv8aqW)4uk$%pW3|iv7*fK)?lt
zN1MfIu@=kreB2P>zj4_LuZW4(_cfY(EvQ|(0ms8q_9Vpi1VAlky9^z-R4!If*kYt0
z`BXOb0>Dg<%VR1;i{>K<%L<`dQ3K8iOP$`4yu~DuyLGoHiQsLlSa}qzJQ{Dh7K@*9
zhnl!JodnhEFWHxOT6F?bUqTYx;b93|5qL;MMR2B70@oa#NF4`FePdJIR|SWh)E$%?
zO$V;>XWJ*gNhDukO&8;K_dZJ}L2dh65-VmtMB=rFZ%$&(egJQUo814ukoetgjl_8D
zJc<1RGSLqQVK`+b0$)VUItO57`zY1T<lNyAJ7Hfi?{-{cdgalD_ULa9uh9|ku@dmn
z67bQ&%|vWg2!fPdiIj1mYcXf?HJ@VIl65hP@aI5>OJ2MBn1sdnGocfH69gwOh@hc=
zI+&qO(gsbee1RKIs_wA$MS6=$ykx<)P6x&=!IR>WVJSm`pFL&jrg;ZALuWR>obEa-
z`O&Z-5IYVFZnVU~ZOS@yd0Ja#rlqL&c(~|z<`f#gCEtm`dCNDjd1g6`y8o5ih*3YO
zJA;ig%Z*VfOxceYqb?-*u;gu_2-F_Xv=v7*{ERG#)YYXrreW)0$qP!`uQ0)0I4t>&
zTcyR2$#v})5Hu|LZu{9hIkW+mY$Zl#HvCZxfQr^2jtyErmRQ1^k8>uW2$0Y&{SUTQ
z6%*0nW&KDXtoH^KmaSyedTeK9WF1&0|MqN7kl2huS9#23bd{mTbk(wJF0muwlBOJk
zlB=wmfoo_8io;K)uKE8HLga5W@;8?CRFvahy#=oPEAXxApAmxEte#`S#_PGO4%wm*
zjLPb{w~9>&keN`=EtFR)iEr!G_Jf3Uq++DIK$X2OF+7tublrE@c7kKLJC1<%*ANW%
z_<ZC3pV$Myp7?1*O!kwQe1^qs=Jco0wRgQ0^^Z){tX`2^8V$HPnW#^?MxrVd^@mK<
z6PrafW}^D+70I=?a*fVJow-@A<1H#<jPaaZOb$8rixWW+!$AgY+0Fl2ww9AW_2--K
zH~I6fk=m^}|9aEV)c6}v`rr4PoYp0h-`f13&wtdG^7lpEKuTHjs2hG_XYReXaX+u`
zzI6bv8n;eeZXgt>i02}W<+YPR62y+1$nM~vWEc+wilJ6`<dPNiJ=+S^F?cgXC2f{}
zSD(Mv7V|&1rTqB~m=N{S*($FG%zGVzornMUl-(u6oBKQiI~-kI?1x6q*dbjJ|0GJ`
z_G$@r>@`N-wDNU(l)a%x>NF0VdG(r86U;3$XFk`$1}+ZD9*CL9aCL>;Kgphp$$y7p
zld;#kNUOx&&_kuK>8H{&PEju~yW9-cUu0|QoqJc3>fmrH*O2RHT3Jx%7WCU(aFb;}
zrJA6u$^*cDkyvj6!riNbw&&eFt7V%*CAh5iiVh@g`1u>}@$WW<MDvi@PW&66vd-g=
zW{pt~%TG>OLGk{JV!z*?Lv{8+igtL3vqn-$el~Cpp&Mt~QA2#Wc#`;TE~6K6lg?q)
z>C;n4uwo~?EZ_C^Iyjf=a2EOqF@$J=Mt!{ql#Cq=3SGw>N;vizbW8Jm-s<sLxnCR0
z$gGRGzF;HveSuwvi+iA?(&is<+i8etL%BiRRH)L+rMOE4mY0B|CluP*G@3u`sWWk3
zrCN;)U*IXq{o^XYAR|seOsD4v4NCq}#Kkuo3$H$NVeA3;r*L8H4n5$T=XMwQ<s}Wu
z9<+Bng1A5SS8Y{v(eqFm4Q+Nkl2Ehb@1$83g+Bzy$Y-<dizmHIX$5tN96iRK_{P@N
z9#zoIYCnj&2xJft`^k6>KV!>?6L)2u9M3C&+sKJ_PqL&n{VsJ>+8LY#ZyXR&C8m#m
z`I_m04Hv-<Uzj^DU!TRN+(y;NQ-%0}n)wN0x9mq_Ip;=?{Yq}+!P)(hV=`!RPj@gD
z5q19amB>KZSn!O0+QE=LGiRy=_%=v*`Sp>67zYLJAQHMud@*0mio~)Ow7}i{4+DLW
zKu^H#p*rXc|6<S2Fl1&uMUJ0CSESs4$153kf$b|YLj5UyO)K1|ZzfT7{qA+=C=Img
zkB{*kp`{}>m3X%lIT9^l;1-2nwB&c^9rDX$O9koOAf`d+I4Uh;vZ0c&V1{D0p2z57
zn?)AFC)L6h*FT*tiVHeer?j08U~iZ=RwiKbr1GF-|3WlNQ1<C|0&Mnha>5eVu*gEM
zNWg1~peWDfmyUw_Q?bQ;!e*Vgzcz}+CVY2vLFOXnDol!M9AvQ`C42j}U;8sTUKSu#
zzO|`2H7XkhEoQjEh--$vwfkwAJAs9~>DiiM=VLG*j0oE6%xnN5O+eH#mc%eW-3Bkj
zt0zS~ODpunOSxX$(O+?+)0M&`$D~BBAZ3?(fqQy|5qtQB5PMe=Wr)qQlm5S0mT%tq
zShP2>X$bA*NIF#sr6AOFUdfud&G+=`j>ZDuYk1ezZ*45{TfJp9!#a>}P7xWh4RBAP
zTvQTrD}Q!U18GA${9%SCSNt$WZb9d`YySkzV@*|ZWO1%c>}vmZcs74ygGz>n64gOc
zuaI<$!!Sg>Kjh--&{GeF0?%1n3_PkGZm4zL=Yz<dpg;~Wpu8%Wt`=MO63m=w(5jc2
zhPeaAe>yWFUK)<OzrOD|k;Whn7wRh&8~B?@GASiDElgHn$y(pFWE-LzC(I$L{9vn`
zt;i~_g(Z9LuDAHH`iZIX6aiAs)S2$#<G@V!DYgz3Py2nOVuP<NthmYwT!dSPWVc@u
zNoMeUstC&W@Kt#Dj@}GD<tJ6I5I(mS(7Fn~u>KGK8Y$R3vU@Evj(qMsI1*oajw5qu
zmp!QSjq}Z!fqRFtxM!8bY|uAH)3F@R?|{Wu4{6+3arNP|E5K|}vL^{StatI%dxI5@
zRgHDY<V^M<Cnvh1XDg)s{TeqGcD&BmXCcqoZg0W0h4YQC-VC0H_X^>;aUa3+=Z%8r
zA%3ZOnBY0e;GwSKpyYZIduYmPEgxHsH>n*!)6ohO7WZjuUZUx`iufN9kSuJA)6W6d
zV{Y2Hz;#hXU3Zq>^I?Br+@ij=_NGd{sT9O$%Xjx?ovmb&>#YtYvZo|~j=ty>ObHmb
zag+*6H74{(!gm!OaXo#XTh6K(lv@7*%i^iKDJ2o~UcWO%2ZuO4xIn4V#5(9jpNvC6
zYmDt;*5G+7c)+GQj#6O-Wbd(ph(jN!d#=sHBnO>EP-E<Dez_@Vb?v3e#!^8M47!f8
zhXt{e9s}COoyfRbwG3_|av;8rxxUUp=lOK!`*iWiy+B%8_eX9rOOw`2hG0Um*Whmc
zUyUQ5wFl{DJ`&+so3Xg;B};LuPuLYlWBb+l%5-ym8VE6YJe={uk6V8<UU+Pro~U-s
z=(v+^Q(q^O2?TRq$5s1UFSICDDl~L-T$9OK!1vTbH{*J_KZ+{pik{7sQ9>DRA`zK@
zZ#CM_GLk#~S3o^7!a#ZQ#(Xw<8hC5e-}jfjqEpa@r&_#P?;4-F7ac^h&6epx{1F4@
z)$PG@8~osjb@9h<oKADOmSbT})7Lr+ETeBNo{J})JL@&mH1|eFbr{11u4#?eG+tpI
zsxPJqE{o8>#x7?OA&8703*NR=Z;kDo>M);bgr!;~MO263?nY5L?afW6Vp-DP1TzFS
zx*gqlOHQ{xfrSJN=iCq}y;PvSscHejgBo}sMvaanGu`<_n9S?W4^~@gz3zx4Gu^KI
z6qeDQ57VQ#MJ#G@RzER0-Cmlf+jsErJrUh^WAF_KEB3lQP4j6+>xGeu4Za=n;2YxM
zyXf{vGJ{X~fuc0j?cD|6K7uc-zxB9?RZO?a{OnSblgpXhrQ)0SkHnkRe2XB;;_o;Q
zU&W=7ijCBl`-(lO%RG4hj`pCIYM4*uNiF|~yA~?DIx5d2HL52{YE(^x)Qhl>0Chri
zcZQ+zQ&pP<b(ROB?t%!YhRQ`@GEeG_zSHe@TO^sGQu!$?(~Y+=4tH-sMQ8OB!<IB-
zMaEQlq~6EFw<v1k8+<2(6{GJ_A_X44*UpbrZ1C-q2j6KPzN@2~?F~NV2a28{sdpEA
z0|j4L|5qnRNU1Y!-Pwzc)a%bgt30u33*+JENtLhvsGus9=xE&7b;5zkwvqzcfg<UP
zBB}6-q#~n8xWotp5W;1;LAM)z7w9x?L!^Pb3yxzTyb3lnv;(&|J}Qy&Lb(c`%5RgH
zuhyLno4BFA)S=PUz=qxWMb^5V)w<06mNaIhlp~%|eyDRa8&bN*8|PSGS&~Y~hR0x}
zKh;sJV|eFWVjbL(q_e;JbUV^@wD#0APqH2je`x%v84G|<cd;Bun07s-S@=y)5L*52
zUVH)KL+ctS7L#SeHdkG(LB*)xR`Coy?C1e&>XyjgNYA_|xh^5^{|jRKQACabtB)&T
zcxzI;`4K*3pqHx=jT?&UwhiVeL1RZ@?RmJtYmc`{ANLddEhtU&r0Qj(!w%d5Fo`b2
z*G|3ZYuzF0cS<uUQ!NV+&TPEh9Ogd9vts3>X12g?={r??1%$e6u4gMZ>NJlXgIT$e
zQj!RIJ7Ku-`!03e7B&c1lq4E7E*Qz!tL%-R3G3J*;H-vxV|X7TGT?%-Nmnj_?;0)K
zRxnsK?RGaHgkrZ%_xNOHl{$2c5q_tR_LKQRiR9L=$ERGWk>uw7v4!>cS7b<W<ox!2
zR@i1|Y{rXAEoUmaiTU6wMRV~7cRdr-xTz>U^$rWeTxVxsylGp$n0<~n>m)gH&a<4g
z<9TiMufMjbz=lnl<gGhf!`z?QK+8?PDMzVlQA+DU%#CxwrHX+i+kXk++*Ewd?wm~O
zn8@MJ*Ek^)mYOaf6$e5mHF%@XFVIxDATM@1e~VZ!VOz>ddwNiMV`iVNflF#lw#YzY
zW%3zjuJ>AWxG+u*n%aIea4f7>;|dqnx9X9Zw@yEs8uy)U{+jxLmB1;-9OlsQf;0th
z-Q6uHny`L<rfIa?PoP;Rn08Ym+^fQ}fc3Q+1J%Gl;nkQxhFq(84}R=jY$Q~p3e&Be
zkzKnJ$N9vYuBY^dO+`QwZ_<v(^wya~cjp*|Qu=Rkyjbnde$iCZcG0~F6jtDxWfuuL
zgY__PC3PPa(Q~HA&kmD$eLvmzu#2O64^5FPKZRvFnvrxLZrsb#cdDP5{@IQuI$o@H
z&%I#qoz0Q{0>u1)2H%G=Hk8re`@J_k#{4pp%;0-2Oy=QR=ew=4&EQjh3d`6$vr)kA
zRjlhw{ioP!l(2rYy}xQRRXpufRI%0rW<3}=wA=bQnaIc|^~<nFMH_>L&28Mcl|PQw
zoBRzM3uzl?G|^H~-a9XN>+U}K6576&n(>`>qkU62{;ga!#8+ggTbjsu1Ik@Jh7bCz
zx+Q`Z!`^)&R2F-ud9odFb|jf$uRcu1h!=)^!govmirSw>UFD~+j74@OLuvOr2<z)7
zrXow-s2Nf2-dSSs)lZF7Z18mpE3UAL=XkPBJ1dgR;Cn|Al<(o&!NYghX7DLLsWN87
zs#gH*D;O(N{|SpC1)G0rr&goxV<VvMeu!0;x}E$}<FACarJ`-IXv<G*$ip?ps_u(7
z^JeG$W<?rg2VMjv2Y+%jW7*m35H{RHdrK41j23-U%DqpAUC`SnOHr!mMh;1^#<~Ys
zt(jisb`W%zptd5=b%w8QGx!E(N^Vrisn|^qh47Aht24Zd>TPxxh=P*lkE7t0ai6&$
z)n5)eW^A_;XrH(VrvTdJ23n3$O&<P=76ztK!r4gSY$OT70Z_zW7QbGT4Kg|CF=H!x
zG9FLDg3s?LpT?W+=z?VI`m!O}6=c`&&H%KuLEtElpL$pZc#CSfcjdv@oiuPu?ES4(
zn7R5&Ua@z4ZFG}cB|30{Zb)$cW9s+Tu3pQ7aoyF&Uz$i_zYMl(E7lE(KYmpA%$V|p
z_)~{G^U;t3#+P;7JC5qr7+Vjl9qA|40b*ihI{PV)XC_6|jM27AnQGPbpb(S_GpX9w
zz;58=BLCVx8XRU@aJ!181%*NfzQ-ToVTAcg{@r6p!5k7I>t&zt&i>?Wh_721#4aW&
zZRH&Hk{gLhByqFsvXeP@dNB`jeJc$OVnax!SrHw+OZjcKE4Snc9y0wHCwDj8to4Tt
zf}yLpU2@>^;F|7@9bNHhr+UxauW!L~2ar9@<(FZ)^wJ>qqkkSv$#p&KgsN#)yy$K>
zx0toX#C{DFevWiT;kSFz*`;ESWWHb0w~Q{iY--X^&+Vf^QimM5Q{RI0AKj0x(N}D$
zwJp@ovotwXw~IeQO*X-sq&S}xO<J2gk{A88$Aqw?X6xw9-Coa1;z>AbL1$&KjYYY;
zI8CPgfbTkqoBUlF_O0RY1bKx-itIAZPW(U6^M8%_-}^Ii1wbg6AyM67{$uWc_z>i=
zj$t`vx}uL|WE54hC~YUG`S<NZYChaUBC(L9LCG?op-HDzEs8zIm;OZa*U#~iQ7q1{
zSQI;U2akoIWCU-j<QVeM{7bA{c=Ss{Jc;G_-YMOUDFGx)+v0W-?_FpIu>~V(h+OKp
z#5ks_rbhK8f+tt%k(z4{-ITf?g*SD>gXbf19=x;5JehW4jR&@&We37ySH>|Z_@a_-
z7<+6%u}y%mEDsY}t80>^WL^zmu{K$G{7tF7U1Y#EEn&j~`V?fIRNa_4l84hb!qd^@
zjGxg;2^{>#+{IwOI+1FT$E=4a72D(S$mmj#x%%+blJfK{cQ?Dngpu-e;1+XAsl9u7
zjeQF=`U9We@oJ1+3qIR#qc2IewO`DGBRUG)D>Hlt23bJ)N!73=<dgtBQxK`#mM%9U
z;_Qp>bpmX7Uycn?rWIl)Kbe<fCeG-AtTtke*Bz8O3ykGRE12@pd`&@x0AyDaOJs^A
zVx`(N+%T`8i0~waL@^VbexgcRCSeyj(I}@4p)z;lEx>GJ1+Z3*Ojn5MJMnuDvDFWO
zsHv8%H5b>sT-bsFR13=q8*)0MK*bAJ45HQ#j%A4O%IzLsBqMLC?9v^<E?fSuvF{)`
zTgA|wau*$QFSke-S<Lzq9aI!|lR>Wt>_JTg4aST@eEG$SvD)dT7u735f9V$%*^yp)
zck?wye1=OKSWlBVcM*L{uachO4kd*zAyu}Dpzs2k*mFTdo0zfmEK`Dz@#n)J<1%QS
zhp+KR=l9plb=~%^=Jsm0<#mdG?P09*<p$pxZx}3$jV7|tJ;&%Oz1FQij&ArKvkUUd
zXFY}2KU-!Q8gDd6mF!3xM3|;)L7{W3`gC{QmczZ~GULqyL|Z1WOF|akJ?;l8EK@1z
z{rOS0P4e2|O2nk64#csOzHzL$pzM$jQ24=2#cBbmC&kVZ-zwG&PoUWMyNAVIT*@ke
z^C6L|W~zpmC7GDVwxhz1*t>kY55`#BpEGd>lS^D$1@a<u*`7!-o$4Ykb9b<TF~<~k
zR>{=qiVezccpnf`v-@K{FelKHRw6rWl$>cH$ygUc+E1}w#MX%JP%DFKP}(3^=DPCP
zey~L|4PYtOjUxr;ftD#$*NejaXlKvm<2c)-{m)+d2X4kT&3`qvIr}2e(1#HSXqdNc
zh@b~b3=OOJc5naM;_l7F?Vq7ZQ$Zq@ojAD<<WR!K=u#Y;h5wPS=INopKF^d)lz+<O
zQ%oWJu>Iz{u3VmAC?f7>Q)QCDT@2V{_@v6Z8i@Fy{?%PQ*av*d2Kf>O4NAUVb96z+
zl4Qxtga#$W@A;1KIx#PDI-0c-4=a06QdXcx*;e-8C?1RzCUF+BAoZ$Uuu(ow3|L$H
zSyQ*cHdQfX>eN|#ARuepN8?pe?CEWg-XchWUTm%XDf8ZzuHR~$Q@1E-#?E_7P$!I7
zm~5jHL6?qYjj;oP0YVakgKSO^tKgd^%G%nCl9k*&EaCw3aIu^0J)fD%Pw!xH2g$2w
z#xeHJ3f@kJ=yj%7vW93~Fjr9F5v#k{Y|^9qwdNb7EUm?xfwHK4OLOFP6&R(7B<`j!
z?L0DSFn5Q{%_=gdZ<P51VMy`by}lRY3&B{x9(nZ&)#<-c6G_|8hihqw*^P^UD~MIo
zNYQLBlkr&cdo5onxsnIXfDH3wD(;vFbnjenn;_Q~1jZR0dk*^*n)OXxZX0pH9`Bf~
zcsfSf3&iM;L~qF$6+q|0CNNgU*pg4<|G3&2ogbQ<sX=v=%sAzOu_(wp-P&5KV{8bB
zxfjfQJT%lE8T0W3QZ&hY92`Q{{=G@+puLn8tc-R&D6;)xWCoz$d^Do=)nB^5KQ8$t
z>h=0a6f`Mt4`!l%|4}3gWEHsUEy|VGpc=+`FGEhYY&><hu#`6j%_YbQUsGWxzV?@?
zk3w?JGyI~2#L~bwrdx>bQ??dSjwc%Lc(P;&FO6Kzt|`kzCe14lE;s%oX73EOnz!YI
zlz-&n+<8ZXo+DtPywU1r_5vPTwFfPsjTVd#t8+B>vXZfn!!BQAJoQFRLzFWpG5Ga8
zR}ris*eYyKW3gb34Fh)OmpQRiYg{DuV*^w8IG9-hINg-H*ZM*4>)(bYS8I(-i^9_^
zq(#6MyM0(_$@+230br_-Zonczo#Sd9iY?a@m5%?$&0_b2n4=<7F7Ku3=Ai5_l}op0
z9`|I)Y{8g{{W}(dIuX?C`*6<>Zt<R8hZF}T-@Rp>(rg;1E_iQ~JX1|A3KKlu8?u18
z1=PTqZ_0d#H?<OpferpUT>Fs{-X~QOx~o_c?DdT0r5VMXM_zWL)pUjKg+SK~MvsRU
zbt1UIkdAVwVL@dr3t#>}%<OO%P3jy`O%<#7^k3YIEM-J1*{lJW{u`f+%FSc10YZiP
zKZE~^)mixKN_-K?V!y#Fles?3yf3X5y{RYRer<t^+n0L*9%x8k>_!mWK0#rms!1f#
zIEAA;Y*p<#jK}@yNKzc1v%Ebc=QAr9|JNI4u*G?O&0gb8Ye2pkZP&=QrhIrrT#;(g
zCP$cKq#iKDO@)oIHDm&a77K%o@EVpqy^^+0-Nv9=&CzG>RF)N~pbD{_x|#Et$jM0x
ztD0-D-n}W$ZC3W3no&?MJe10=Z`50&)TNHl{CqeJp)_-StDeN{t$<pt6Tw>SZem&A
zY_SiW+r+NsWMHABgtU>}PzY9Vs%ig8dNj9=-^WBigSsx1K@p|y&MWPdK-$XrWW2XK
z(Ct>=B+Z!B3OV(q^)}-`Z<TZb$l`~yFH<G+Ue`hes@RuOdm_s{C4cS|iUlL3Ebrsd
zb3ohWPViL#U)6j&5V6oKxe)tENgJ3w3v4H*cF~|=xhtgz4z-w518lW4RY2vz6Q9y1
zO6ASBgqvC2kC_D!NlHxy#j6zOt~x>l&QZK%;FL-*s%gYj$%Z>M$fGA?Jsl*{BPe-a
zfh<EwCTdV|nD=e(@XnQbHKPEJ^h6C#V6)WloX8Vh$(dyKY^W!NpO7kC*f5_DMl0xc
zsfGg4)6;UXmT$$L5K|#_pcW}d3B0NVSSX-|{fAwG-qV#L^-L?_>bUQ<0<P6($7Jo=
zW>@xT@X<uEixbIf^$t(JLp&`>PS=ZB)HsM@g|JK_-qyoBN#TkxWUK_=to2QxgOk7Q
zY&|2^2o(n67}uI82sbDzG_eGuBR2aVzy<>#9wjqh<DDI(kh=zQYX)VpYa9&~M~Gon
zimT-lGu-A)-5Wn8ZV$L`Gy1*=%+MDbXpD;HCnr^*1&gX`X;m^|c8(;(V^$hp`w=tE
zIT@Q&M+N#;1TFQJN31&YTR7vCY32kdbc}4QrNtew_g|$UG?PZpP&2g!zCkY;=ZL$C
z2?t*wZHICtw+jzyyKx>E-Ly%?3HnABg1V0f(NwJ;3?+=lLEka3DUB=b*NQ(W4%hu$
z#jqAS-qav)5QjQ$q^_*ssPCgh-P9pJCWUTh5g8x<>EQTHtw&>D?u6u@HVckTm7UC^
zW0`pd(hrEOs{{r!!yMSgAgl)>q3rIP@!Z#~w{&9$RiCXm+EA5VZIz}|l-kvo`t2XH
zrM3^J8J*<O6lk7~5GD`_8QYRF;3#&#4=4O+bc=?Xo|#BxUo`(_AwFp&%2j}CX-_)z
zYOsOX1HQ|H85*9@BmOA<RFck}{jC}ig7v>rYEIqIdH+K^shDj!b1#T}$S1bOuV~mj
z#Tb!8+NNTU5+o@qxtA9@j{Ef8S|?lUI;B=Q=N5WftHLX^*kmF=d#o{&V23W4TrUxF
z_Er(!(Y`|Y&+fC)<2#4L3v-R_x2$jDQ`lZ4{!fTSYQ!QnfV0zbffH|<qekL8s^S?r
zUM4njt?B%DlT3Sa+|Zc7{AmcR7$Ig`*+3y`FLujWQh_GgvA6FKtgv!+Uk>6`Wa_X&
zRI*4MrLhGj@8IF^S=7OJaSe5Xmx!Ne#!1LVDt2oo<qS)i)d{IseI{l-p6)DwX0n-T
zq4bv~tA~r7nn`(l=Q2h|7bNXWd)>e8G2}M>1mr%FkKE4v$M_MQ#SaNy3h$YkWYD=i
z9y|OWIxp^3!wd}s;aV+H;0iUk$cj|%%@tF1`eskk9Q)e%U;`QR>!j$GO&)jdQl0k|
zyMs@6_ZcEx?2=5>m*0Qa(SE;j=S&ftrS;NA`ZJz<-XK!%hLitwvadmqEvAf;q0;O6
zhVQWklxk6|jR4D@DtW@vV!I@%O4KM$&t4dNh)~EMdzdF&v?%t+T#ouoj$bGT?XYjC
z_C|+&kIH=i{@d?5()Dg#e@LP;Otaj+nZB?0{9Yk`-^_)I57CC0GSvqvVKBoFH~8M3
zZ<Ih!9&$+k(@=sAP9N%ae#o2aj0qCeIS-<~I45NkISd2-Qw7>5_Ws6@EGsv8gjfOU
zX57t}8FgOCq&U^kE0s?v$Vo$6Lhvc+3n4ar=F|*D(2p!?(2LbX7B)QcrFNZQJ!H-o
z+WqHhr<IJuCg%$kyM><9RP6WBg#g=8sQd6w5&~#4^SsC)Hm<0pnW!tTj6|6;^ihj)
ziNm1Nxt>n&Z)S*JQ@yZW_|-A1*}qQwT`V&sufGO{`!|G$y#5=H$o}wPyr~;yi4Va{
zNy?JQ_(8dsL0Ic$lVx>;H^#>ED+c>zrl5~PijbUwv_F<5CK=kFpmGD>m87Ptf1%KL
zv%H9MXx7k4?BC*3cah@9LiCAq4!KidSYg<A+VbI`1_db^&b<lo)vXpw2S23ZiK?)o
z&0I_WNwGEbu{u(vab~FfeSWgJ#T&fh@TKGRS&L}ST@R8F&CD#~Lwsju5%1$YoJEW`
zFM%+Wdy3KvoK+w-Q{j%8A;A?shn<T&>5NEIQnB*QH0JDCA+wx$PJ|<jS?<V0JrzAN
z(3V_G&P2Tzy(h@#>o2q@S8xb?v^sx;)`?%%dVYzRK!!|f*kxn0c-EZKGhZL2*`?mu
z1e`!pT;P72r-g%(BbL&$<8Sz_N`|_|QAc3Fjm5j8Tb}L3{NGI7kmO{XjR+n(n~xb2
z%`fM}ZkorEyC$~P5mEN4G_ewX2OkAx!@fO=Q#y|2SC<*SN0=E;utf9UEW!G(l;9J7
z3s+&G^wwCZ>^(l`5)CyU-z9G4H;?CAd_t5p`{MOFzG$FY+gdx!S{qI|2eEw#HTTc%
zyky)zLo+#-ZSY*{Z9K~C$iz(9hyup_13K^}m@Abj!d(pHoOji{Q1Rw_fRBBt<fRw+
zO%UtDTTu4JV#dKsnJwUK=h(|%8nd#4PAabIH`anS1&SjRo#D7I6LWyY$WkVqr{7!~
zr)3ONfW9)5xN!5t)AAEDZ(%JA-DN@S06q;rd+{RtFx5bt+xM4NO~rPy)Id0%qSGG;
zcmYx94$Ut&3@>m$$_vNo+6&<`thMiueZ!H}(QifjG8ob9hIZ~KL3^m)uXuAC`ymEJ
zyh&;1@&EYa^KAhePe1p?QJw9N?7c-E+7=e}<;;!To4cNx(syKa^JewMr`#%L{sDiU
zI>5k=`ZDPlVSInXJ5q21md2Zh=o@v-Fv8CuNU7dLY-S+Qa54$dawJeEh_w*u1{c89
z*+`^ui`^h4kCyNxr&DZZuUKK-VC$-bq^WXf<JKRat!cAPF?3`tIFYXIddTOmDTrYd
z!T_uLMojSmRO0$R0);LlHrLU~{1y4CvJ3xNCY4<cUhd}HZDm~)RhFeH>zzM~E<%8$
z;0ArAVi)$0=u}%KH787l(j!^=AxpMrbZ?b)#>!7&nPpN>J_w*M-^-8HPfSI285cch
zc2ifm+u6f6=U0)64ZfPNVv|1i`NLN6qQfG|48EQ7;5*L4H+D=UnZc+0K#^Hy)<f_e
zAo#-imqc$yFw1=Stzkd2<BO5Pb{Fanu_*WQ0f@@bP*jYM^W-HyWg&^-UobodBFP7p
zqZ=fHfs^kjiF^YC+B6aEO{vrjZwIv2oum;E9XVY(jEi3AaErw&H-<b_uCbCIt&%Ft
zZN{3BYv7mcxBl5zBD5fA#F+(=8z)5?WWD2gw}frIBf5;<<{pMxlzVS~+S;4?|C79G
zkuU9qVw>5+K}q>K^@#DNr@|IzZJ^rT-crlnwRQ1lW<Ypz;8J(rFrkP>!s?8{OS%y)
zW#~R#=cTkX+vCh8$~5Yuyhx+&MswfzG}QEGe-1VVeCe@~HAh>lICwkGrf04mOT~h_
zBlzhBxNgYI5I_HqwYPz@dd&a-XR5=XaV8oD4F`jX)=su)D5jeD3=<(MVYQ-Vh15(!
zYR1e|XFnYZOKz6j>~5A__vC(tG=-&N3A^O}bDXSVSBY)@&)56<d}hu}S>Nyf`<usO
z&gbU3dtdLn>wUei_jP>^%{E8OdgyCO!SnsVkHU5T8-7mG;JJ1DxXwwA)iuvlGb)UZ
zvePygO;n_l)z-R&yw#rzGzK%-p%$|1%Cv+1HF8KTAZ*SZm;2%f2JUuuoQ6$~;%esN
z7k;utY181x)8w(g%u9~pzN*YGyan9(NqwTUd}ZxP@yGJFZ)PoPdChJpxk<8q2`!kT
z^*qefy@Q`LIma@lV)$*JEBeag)NcIybCy}V5N{=C1!VrpYDe(LcLXYmNJq8UQg`eW
zx!YFQ2h)R%sCL`r)!v<O4WVsVQF=E?#L)+lW4>_TA%6sbta0Zz&)tFQ>(?%{hVLs`
zpld3+nw9Jh2kt1FoLf>yuJlVd-21QEupSar@G;*KJ}Tl;!0RAforB9)#vAV;ryo1w
z3)vs>CSOll0`T(}e*oKYK7=mpDsKpgu7Hi{AcMH)yN~HfN~_pE;Zd`Ok@)So!ECL<
zQwiU=Y_2VC!y%;_yH}P}((Yi5W51%;>G`TJ>Au{yw6Wv?N>eQCSpAZPJmOh*eXC9`
zPk)cIu_{%OTg{0sY><ej?jlD=r$z3Y5)j&dP@cBrgSt<?-||tf{@-zS)q5?OZTo+n
z+}!eILI3xYPbf>O=V5;F_8+R319z~?ke*y{_BQqcHa;MmTvnA_2?oDzYKu31vmNy<
zv*!)TRbKg~c*Ea$rITsO{N6X<s2Bu53W^_$&Z_|FmG*(Y2vzADY10;!?W`zzR!4UG
z)`{No-NU!zDZP@)gnjMPI2^|z7JK8IcH_MEX(W8f=RghWgL~IXg~Zm{b4U^l**#!y
z^lAPZypN_eE4a65O)AzD74P{^6>l#WZ`wO1ZaDv0`Rn41$C*(QI~vUgE#pn!!cczf
zIUfD|XZRIcyvMu97;oHN1vtO3y?zJYNIk2<-;+56t(<oeXal(qXIwQ1{G2hG7D(5g
ztNb8%8ftSzT75?HPW{5EO^(#1%0CLLLdB>N4o3%QqS$D-b|{uTv$Wpk(ogUj01KB<
zmo?~4L7S#FVEId)(QKw>h6bewh?+?r+x|71!69ci2H80v3Khd_27Vr84|CjX#=Vm#
zE8h4MOURE&MJwaZJp1`Gc=U^>^Q&#S8|kCLB~Qw)4MDNN=HD~pF2B_7^>Lh3;VXe~
z07E?dxuz{mbVGEBTPeE0Sx|E<(txTqAuoRZSCml8xAGJeA1$EWaO>HLvFq{P8&X&O
zQizFNU=4uHuQHA^j3GfFL4!8qUsbcW!(~Lg;^`CtmpimAr=7V?R5*vv_w-+$-XF_C
z%%v*qd_q4~^0YaE_aZjd?xq%+5&p$zbPG4W`XaFnMt|XoN~K7(s0s}Pq2~09eRb>I
znq7m#ZFcXpM3j@cSMvIjIh0`?=jJH#;yQ32f2?@uQ@GaNtzm_-_%ORAl*_18{P+Pt
z;qPJ5y4&iN5dGviY8j2EkqK%8;VWR9b3%bxh#hH9$59oWvpe5`vb(9UasDpqmh#+a
zq}YoTzp#pz9D~Q<VvQH@S|6Zwy&DUTZ!sLBfDW>xV|jH`^y+(Li#bt_O_Cf|32X!<
zcJQG={RObZAG_8OD&F)0kG7n2E|JvM3Gw-;;G45FsKExQ{3)M0%+teBCQkJXL-4_P
zy_ZxS8<>Le?YUi1v?~~ukEHlw?n4Dr5*5EU-ATc)USKV$=5cU}&Fie4Ylk{Kk3z^6
zi`tU(A>z)cK-W_%a<tp=u~_+H3-uu;+ro@~Y&@|{biLiLd`}(YID;Axz4{BourCa!
z3KxDdoE-+-gY*O!Hxb=MiOT#zMZ3DG85FVkR#eTIRAX2Phq8!C)BUo<LkIHpC~1c&
zcBbn$DqQhisr)xS7CFGk=|&C<0{fAka{h}I0@VGjP-huQ|CxvyJe=duY-XqVb*6P0
zkR><*rz^s*(LsQZ#g;v02xs0IW&III+Vf?j{g9cU{b{tsHXzj0U;29{+V1Wv?nrvF
z{lx>^bynfUF?uJplh*gR{o-#vLZ=Q~%kRpM`mX0JzN?;52gA10dr(1#s5!vX+o)ES
zs)G^dDph8UMwF9O5X6tkX2pk0AoX%9n5liyF!Ps3J6Mr?KZcg5vUalXIm1{n75hZi
z2<-%~e4HgdylBt*(by~w83%_vWJTbR@=sMn=eDXZXB)fz2qYn-bLN^6wuKEwcwC3L
z9Ei7Ch!m5g-vNQa;%Yhkp{=YvA-uEF4zu1W0z}~BSSiR2;wX;Ht3l~ILjDgFJ5I$?
zu}5Can$he_)4^mvoY73kK260YJEulTPi23XbZ?a!93}lMdxC9K$h|EoIFQf>B9w<u
zvCCk0DReJ)be9|V!dyRzX;>HkQhe5vlAKOU%zo?=>}QP{*N}#_+Tq?O++>CFi_ZUo
zoS~DuW~?9k&m%TW?&8Nb*xgil0hg_TDZp_Y>?NQ<<is-$Za7;=bR1msp4FMdK&q^m
zE$vzV>tpcjo^-5l_8hsxytehU8@A|Qryh08h)?M<BOU|n2&<bB7uRxb&@kRKHD7AM
z$<BisoWLfJ%$HER`{P;EHo7$?LuwDZFDq#;zzNQ`q@bH%ADIpNR{U`nffDF5Nb`Hv
zV)X;gDoj%3B4d8|`GYn;JcLM-3{zRnVjxgE=LVNw?xu*WP}JEt#hgYJ)V>bjKhaXK
z=-K-NCxjIQ=rGI{pF=`pch22Aotw7Unaalm3~#`(kjH#j&bp|nRhx-+&13Uv+JBOv
zTm+?h&8K^?0aN7?XmCNHKMaol$W+7(Q3QovM;{T;y*tP%mA{fan6jFv#$M#!Ja)i-
ziOLH0jUns>nY{!{K@@!fFR=h{`6sUB0zTtJx3yGoDJ2P+;Ir>SXoCerMR&ok`#_i4
z$gj|apDLtOJDqQm#ZTGmkFtFPjJ%=pS(;VVsF!A%hS3P|Chd*R>}cKSZzd!~{QO@S
zfT2&70-;M4-+VGMmNjvK`fKkO_2Z44-<1>WHBO{9#TIY6$67_Bj*o6$6wblGC7dhE
zWvmDad|75(?EwV&ud!_J#+!7)t00@Bn2fvrDKt(bR-=Ivuy|#-P6Rp+-v}#nb1$nh
z^JMS|8(#&9Ugl+PPzG9R?}%9jy}}Wp-B8uqO;?Cq&}F(>peQjt%<jZxS=RMQMNiH6
z&2h85`2Bo0EVJJQ?+)q9qDs7JM>6|`3;zze`Mhb4it>4P9u47%_Z-i6g-l8xoaF>R
z9W8p9$3mQ&%HRC1iZW(3y|1DM1u5x2z%HC=d%sL-x66Br9;XV|KZ?&M83mhOcTTwK
z>`pa?Rm!}@9Wnz5!HQ=bYRd#|hd|%Mijb-=OLLeb_Dz2J&&C5yEK17s+m^RMW4I-^
zH2oHDgBLTds?zlBdfX-mA48fLhte-6F^f@a27melGJ~<7J)Nb)_7P@&-x#X5yN=6B
zDp1mIqNGGkR?@CYy4aF}yxownyWkrXUMKmQdJwXO2{{qF23?mYAQI|)Pzb32uGEHx
zJXo;cg`lN~)r{vldH=f97oYXKc>f3d!JwQSYWaV<&tY$hvI?zg(4AQza=3`35l?5Y
z02m{?EosC)9Lr*cPHH|DF=b(cNojpE1sj?B;2_qmszv>Z{paUNgQRY<3!cAtaI*{^
z1S?_AVsvhp$FDC?R-iOIII#3hnfBTma}|D7;19g<0XQr5gzD7xy&KhJYrP)zXHXF#
ze2L4YT4{J9IdrQ(oh*T+AY1v?d%;F??Z7NdbTFm#z!6V5<}i4~FS)^-&vA|oFu9D-
zClNwH<pke@*33hM@ZUw0CW^ogioTJ1kCO^90qD9-)r$ZHEtk**Z&KbIX0m0JO`k7r
zesdQ%W^e8~^GkfzuV@7N0?b4-0z88(%YA3(;6y7#9ER~Ouz2lsm2f+{UijqyiLQJP
z_N`Evy#BURCPaQ_4{&`}lg<F=ZDoK%vi?JHI3`*6FK*gm->5d?HKI!QWOY2a>|4hm
zVX#3ezgdOC0r3&;Gmmvh5xD!I;|2Eq4fUjAE04(%OOsgdI!98h3`A|ywU+I*;;d}8
z?z4B8&FqWdWCbDPxj!i@o2~n(JT!>befF3K{SKYWkF`%qqJ3Se^YH@p*hSR1_ZILi
z5=1I!@Qrow{d5cX>ceafzK3a-+E$;~6+V@xvS{7xifaJv22AN7Z2y}>vP$$64=<i6
zWfz>-8z!8NM$A?@9hg`AGlOHc{z9Ir7nwXE{h?tN94?)TyoXxsf{PK54}yQ~jCefM
zMSpFjzVH9owZ6}70B*0(clF)9)%p(K0>1lPeF|OdRqGZ%g9W`bV`{JQe2h>wDW0Sn
zAL!KI_^cYqYbW_5LpWnVb0suJ!d6;ekvhOT0<+5={MTcSrh_mXOHK0@_Wu)FOj|$W
zj}=xg!skVB#bc6hzi`icEGgbZRB+^atSN}xI1Aoz4huj3>U+t@vWi?-EK#5ZE6Qk+
zD(0-wrL|5M{mGaBy0OGeHE8tH-_p7kUHsx>Ts0_^NeM+#FA;#P6{Sk$n$Xqa$m=$8
z=NIp4`Q70VWXC_Frq(GNf80Lc?#Q}UolGrWr1z-@G$*Z2S&&|JY7W+$1#au;e+ns&
z{<u{>{l$A(UcdOVKVoXUD>u%9Ny^>y?u>pwq%XC;z_&_cFaCK%j=to&nn>V!?iI_u
zClx8P{+8A);Wrmzxi7kV{uBnMXPbH1xQ&;(w5)NP{@-}XOL;k^j4>&7n<aJc&$p=U
zR;cqIR#dr0oZSQis;8*6K@qq5^L&km9VfGD91CvSMG2AwO$&qDnUadpLd`}3Bw=M%
zJ6bf3Dpnqiv}i{-Zxwra7)H)GTtkPx>~Ruz)ydZ2Si8Q)n+i)?o&E;{h0A@gdjn?D
zQ`=weW-nDmJS<RVY5Ii0f6Cp+^s)(Q;WnUIEV;e&^2~N`*K~fX@2bM1AO6Ae5)qm{
zi#M*sDco^pLhs;iOdn+I_UuE&%qDs{<<yb&^q;8cV7uA;{LAJ4W%l+nTm3xf3R6Z)
z;wYnwoekARA4L;(Mp3sbK@+v?EeWj^V~j%WTNC6+t<8NQXuE^??8fZsbe??H;Mz&J
z3p8}Q9i#|_?aE(Tr#S{jS|s&IS%nk$@u7WCp+w-(9tcj{V(-E<(+^LHZ)A_S10LRZ
zNJy3Gtz}Q2gTq$F8|I14Qu&Jru`+Ixag^}biczF0f^qrXm=eX_zEdhP-lW)QzSFYO
zc{4Vt>afDHt<0xPBAto0f~@{YeUkJ00ngI9RvzgR)?1fo(2%=ZhgOh-%FVu0;l^A|
z>vCov+tbg#ZiUS?iz5_?!5iu{GtOpx&K12V)V??Ol=j7l5l83-1WI<a|G_$tc?3rK
z`=l`Y1)Z~NZZG>O(0SsPJ-xp$pNicXHBkNoC0Zzvep{`iV#Sw))%W~?%-1XPZ3Ys@
z5fJ}#l>$Q3SMt-9e;|(BIT&XUGaLoIlqhHYy4e6#Vgox5;INMK(x#r(dAtI!>92<N
z)_CHn{Md-sL|u!#KRZfEuaqSg4PUlgvnSbDt)XAsc;Gd-eifky%Y!TFUdGRYxKsP_
zS<6J&PX4hD5im^^dc+_QjQRdwRXd!x^fdu@D-iL;;USB~3}XAdC&l2z_MO<%g8ORr
zfn5(=Xe0XYwxNAk$E1jbQ;g##3gDY#)dF-p?3qIq-8nMq^NXZt5s9{6`n8)LBK#D&
z?-zQaX-;36w*xw354a(#zjSV#=rcz2$vWHz(n$0|`Hti|6!R=r->RHA!JtEGnd%w-
zIl1CIrwGQ{e8*J}k4w7QI+gUMapm4g`g+6ID2!=l6x>JK7Y4<9RqBkP;=4CV2WT%e
zC-hOXo!n!}rdk`nwP=D~Ky`r;Z#ySZXq{+g=M;_P<N^Y`#Fpx9*!+|Wpe2Xt(STG7
z_0RxzwW`G?upL)SPu4TTfd(gC5Q@qNdZwmv)(i|zDGBcR@(8;YI*I-m7=9c9113L{
z=W+;<yNzGf4H~77H9~db$EhcFmIt_J?eC0xdIw*ZVyU|G(<0UnX8tPohdsD=V)kT~
z1y_Ka%uVeaK?9}Y2h=J*9n9XD9}HI@f*>kBM*oG>az~g9iDm60KL`v0(%nJB@ut5T
zVTJD2ItiEln1t`AZY-~j+ZKl40M0WAF(v{qePXBXs51YwKK`}+ARW6{-wn>*TbZOH
zZ9J(rQT2zmD_3m)^FzwCZqr_$fhI#swH|;{o+JpeK!$4_xARhHXmAl+jZt0SMRjQj
zu0>m)LP?>^VZHIj7T2p2ZdI>p`nu}fW&{E!ir9u5Z=9`mQ?Yv^_PH~vxHB-uOizek
zO^cXrfBfEvqq5*{aL3r=(rzZRMGSQsm9zWPDS|2UzMm9U5oHG1CY@nrUuOrnS?7fq
zj77ku_am8<bE1??EW~Y^7~(eB3kbEGsql|BgF9{R7hbb`cuqZ%&^9yPxKds3aNiM5
zTC<NowkO9{*6wb~GKzs7>-40H@?p;;d^Jx4EX*TZ>(Ab{ni_VGvH8o;!m=;%PE=U0
zosXBtxG;Xtw~}m84H=E=juA?;0dR|WD<O&I+=-59g(FU&{-dhOd{3?_PBgQnitKkG
zAU^<C7g&B&-a3p4BG6H2^NqK%-loP@$UlE<MHX{q(XocZS@K`I$)t+Or;KXDQCkH{
zxt*`+yT+|!3?n8+LIw&C6reccJsfTGGS5T+w^P)!^_8bYfllKi2wuH39Auwcrja<7
z(`p21-@34l^l0w3mU~-lZfZ7dDfj#&^5dQ#N>!<-s@^X-_lg!gSuGHOdhKI0NElt*
zkO-C&MsfFOWB=h)F}pqxpp5?lMTM`YzRYdGmGm%OYMR#duuK2K{lou7C5D5HXG6Pq
z(v5Px7yTa{OV_;^LV9_tA@M0a)A#oMA3R4${3G{SNGyss{s}<*`~&DZh`fT1S4P#n
zY%~#>5s~4Z(_Y3Nng;7-?_l;z%s{$*CM6TGO7Qwhr*jxmqtN_$9OJEd8R%?EP?ox~
zQYS0*b|b;<G;ZeCZ4nfO%N;q3!cT_^i>>vGfm(meraoSx?yjmi*h}54*Wz_P0r?x<
z!?7=tEEibu)7-Shp5-^ai)p69JC)SUa_8T`eP%^)V>hV0mHoq0$9Cpjh#yU!3?t2I
z%w(k95;AF%Y;-3vn8A;_%~rXJf`iSli456b9~#ZfqXA?|BQpAspV)P0hbr|U6ncl5
zx>fm_I{tqQUv@}pIDpg{^nkkHxd_V6a}OsZ!DYDsIy(el3wU4tWe9J#t-{+m|I*kE
zH|SieH}Bta>DYk-uWSc6OJf(3@yGffpEXZ?=rp8&!bP8ipSwJ3O{f$w0V<l7UunwR
z6H?0<w>joOT3*E3<#WWr>AI)>720*AB}6;OV`g16i`>194EDa$C<%p&V6e8#ErACn
z>?A30)&;mIUckIV)Gc#00m#3%Rt*B#uYyY>%_!aJ0PTth8U{~;Mp=^}Ywl)26LqMI
ze=t7l@EG{1U+Zu?QBjBdWU=vF7aOBhsZa6a%Zh5V6ZQy*SO9KQW4CSiXk-0%tGC4r
zOD$3s+8>2E-7m`w(a1Q?MuacI_$C*3@;z1q*?6G-Q51HbUCznnsFScRnP>gH@yj_F
zAz=n?UruGga`fjK0F=CD1(uDM;>-k^8KY)wt!ohA1w#n<7cm&V%&wP5sNQ<Z=Y=av
z4BGR+@0sJor39eLZR9R~%+pK0g^?Uu!D<6j3|NB}6c$Ni4J{iv8qV`?btv+G=K0ge
zSI+r*G%~5e&#$;~1hq{YC2t~2Rx~hXln2}kfs8$Y3F%9J2kuJk&JGB*h`(lKKzZ%!
z7k>|%<L?_|Ij+@34n;*~apHn|JI@s_?*Ch|mcK6lXL0p)iusE-65dT4#d}_FN%5w`
zc(zD&&O$7(8=dC)oT>kvol}pBHOrB!mCQV8meYi1M|d2ECv=5)#-F!Z7h=p0c%ner
zQiZ)#4SvGyJ^SL`Jj>V6(o5SPtw>mMv>5m|;vTQ9PMNSY&Yf?T#--M_9K4Lg1kCKn
z9vVNEN5za>g?_A?-PP)JyxME&VRP+~f(op9Wug75+aLW5(=@MsNgV*Z5WK=rm3hkZ
zuQDXU0f-HAv%*uH5Yu14wX?85<6&S`7~bA6mtJh{i{f4mxzXD@-P@gAUgqiPdAxBY
zW+}~m5BK%`;7q<rJJ?>ea2qt+t7Ylc@@N2sqK-^~2_X^zNC9hMT?PMUa|cNHkfw1}
zSx9?3BA7@t(>Hc2zrY1Uo{$riM*3}Y^oJpA=q3au7{VESN-Yp)+bc;y9%@KLMSl1o
zfYOV+WL7NJ0f$6yDaDYD#EDBnhn%83sGvv{sJ2A#S-8_~lpPYR`bN2<GkcWe<k8A8
z;S3i5%v~k^Q)%b!7yrd>cl=i&ID%Guo~orH{jA1JHbG@C6}$Z(1RvN2<@2^k>Ki3}
zxjt*9<}lg|c63P$bFFo2c_D>O^*x4VW$dktpAbLClFp1xtT5gK^wIF!b$xN2<ge5I
z5y2gPXT$W|!zQ8VKs*;%D1BFY_1_99@g`ePPFZZIRE{PW{`__MLh8K50Ktl_p8Ueq
zh=QUO2C1rKy}hj8NK#vK(yk2~E8=qtEOojDj@X+|g~s8T&$tn=G_y@xY&CEFIV#A9
zqvCU469SfVfVG<R=eV{e(iXebT>B5|qL$|hoa6!n&JKU99l|nzUpT|svB(_0(`#Vr
zbgldeyw6<C>4|4r24=#`g6H><K&-Hnc&u=FcHw``S0C9Nn#|vu_vzz}GD8YG%3l?h
zcMHktr`wwH>+rofklCX5WZ3m?&#LPaVeJNvG7W~4E&ZYiBa+7eM*PHIA;YQ7MzMG=
zCXE#)6zN|nS1Pv9zTyb4YS6Zi;J!v1aK(8W;R^Xr;fgNvffpS=ATwIEV6ZJsr@>tZ
z)>AJDm45zUfr*RZ3cv8%dF?0%11Dp&?nPo-oe?UwkM27bhy8g*gk*^GXDCY{aBlQd
zBu#{wWx*(UK$0sm^$_BfCxjLVu{tOZU;hp;p3!T-ILt4c+zAW_QM`~uBNyeb?<oIm
z!Vz+;6P{mN3Q{}&X(3!HEM#NHzYKI7*~%Be(Lu!{tUb04gWvv9!NpHHCLNT1LzwrA
z4{*6^-_am>fM5L9HNwzU#*OdRo*BwOgOdSHy3@P|+fMF12p+B$nNr1nl0lcDcF=H|
z!!!7st_w~kB1#Gk!R+S6>>SMGu!77J!R~Y~b63#t4Mg4(c-lqZZo1H0yKXw0xO8mH
z;*bU3f5LUFNYXc!w~h~F4avpPMfflSoD2q6w=;y7`cWC&^tf6J`QgtLb^MV3A@4JD
zAl=)R!DR4A0zD;z7eP9c!AG+TPjZDNgTLdweYcbH^E=9KCMHqk4;JYiH)X<CatqP-
zGb}UQ&|pNJ2!0zBj57dqr=QybowARihbBb`OF@=ps!`sS50}>*@76^0l(o%PcEEhg
zvC5qY>!vI1XZoyV!l)^${_qE_u^WQv@Pf+<AdujcaOUED?S?x7(K^fXR=yWKJNw%}
zM^b0-<XNT^PR4@Y;(O7%(>(^ge)zZhl>}>qBA<tbC3!Cd`>4Q*PW&|Wzvcf5DE~M4
zpZ{OxzqU*MRAUKI_HAy<-i5N(>(?$YEBC&Vd1jHjt4(DZOUCgk-m9^MV>9hq$CdSp
z-@uO;FnN^EB5p-lTb+4a{Kk^Ss!Ms^ve^Riczwwty~B0fa3SxAok~sTD@JH)7-gLp
zWnIuyZ0BFd|E(p>YU*K)j;u9b{esH+4>v;_kLSjR?Rf@!tJw1P2YZ-0$x?1oIbSEi
z$bzr8B)>uuEeXBEp4~~u=W-vNf!eSsaU};74p>PYwg2>ZjL$wsprc=K*>9?dr~0WV
znr57=8D~1Re29Yr%PH8SM1VIM(2Tm)T&uCEbmth)pJ$N!V_EN*Jc%>BD&h?vxcXk9
zK281<zRsdCPKD5nQ_V$sO3-Oq9@^|}SgpKe;XKpUNjxP6dz|K&-8RQu^Puwku_K!+
zxG-~3L!1*m>qKFJbNqMK6v`17ugdKwN@C`gSd;}e3|X!>!h3#iW(Buef+Ey*vSZ=+
zc$A1K^0238qw;GjqI^%PR2)JZCt0PKt@aqc_In_qOip<x+sIARSTPZ^;JDgp4s5lY
zGwNme%$7G8=uTuM)k|Wl(h*}SvsqI%HN~cOgMg4!K^?)AUH+4;OtkVMjzmC1_O4&D
zfW}_%ua#jXBgm8Z0=GCExc@Xt$Y?B?W{=_P5N^He1b2G43UeOQP9-@{80J8Xu$}%J
zI`K(Cl*Z#o{j1p~!dVAxtafa#sKI6FlQk$t-M~f+$)uh_caxU~1cTVCqm$H#+JgmD
zx7-Yl2V`;wyPhf@u=!{xf1wm*uCeJlZvLxgg|i7`3D`Jz2sA_y{hY896?DRyJ~hm4
zhz}*$g*Y5#DPguUd+3bepa|q(R^379E|=}yQ}-_!FfPLU?>zpZP!Rxm9Z>@b=8m(Z
zU}}!$6dX<{ZiXQeR~`>DRQei2d$-8?_)Kpv#a&!@@T+1G*?%@0(!2;16(xj}YYYEF
zbSy>BZ`6U5vLq5{YVFU@{{}Udc_z5nAnXJX@OXl!Lhw}hv1v_$$9)E<g5n%r$cO(5
zoF}4;`_qpX+dz)?6Vl4O@PsrwFfv-nOgI7oXu^CH=JknP7%ufnyChVNQv#6Rh+U+c
zU|Da@`nm#!1JX|8OMKQWW!z%E0!ATluioJ>D0AvW37wxm1YDpHY^|isaN^8qlHPGi
zHJ@;Qba?+Z_rt>bzcR%yqmIY|*JD-<!9FYtTBv>}e0IP~50|;Y=kV<Tx_+(9KQDQo
z+tQPAS3h>kRW`!R-NepiM5CEZXz!~tJc6DIV#U&R_#TkonY;>KIY8<ct?cKYc0bG@
zO+QveWjv05$4f5t`Yt0*e6`oTxI!6{#pQMxc%UwRY|34jajqQ{<u#hh!F%1>n%O#>
zdPJIt_%QOY1>4hQJfEQ15N{ai;Nd);KHs4QYtABY%F_t4RCAF@aOnZC&AxPhz<z81
zMGZ}bFCH7G3N?ylXva%V@iI3AH`&R7>Vme=a(Jj;S)zUL>bkm-o@9z@I_t~WV-JMB
z(31&SQqDX|RVTf?@Pq~|qdcAX#UHl?+}3f+InttHYH<!PywrjsE>eLl%9dQ9w+x3p
zs#2qJ8S!FQ9_OX{oP;Q?9!Cao;_CAfx=Br6J;oncL|s)J&fM}LO8xqR6{OH{z8^Ar
z^%#6J&R=pD(UWMu%)R33NnUEsJZ+gq$puNy*9Y;N?hsP*Gj>t50AKcL_!7UQm+G<7
z23mRtKImew%SYcUhBF&0+L1mf?Hn{V4LZacT#^16*h0%5iRiS&etRF(eRvH{EB~pF
z`7PgEGdgu?Tk>H&z)atG{v%%p-1Dj6)5z;3pEb5j4LOb{eG_GammGMMQv87xy3o@_
z1lbKxGN)7zIfxrg(;f~q?QZ%;*6olTm9xF79OVtG`q#Zy)xUM2D$L}8Y3{A6HQcnt
zK2%a`gR0XXHQTnw)KhNHInj4{bj=@l(M$w|r&q*MsRohMu!aK6)5*fY9TuV7SW>52
zQgf7nG3*EUqY|+T`9q9xjw(&gF~(S)+1BIKUgil{FR^&4UiG2J#(6Ct<mm>!yfsf;
zV3v%vPw`;yFhY8qm+Dy|!=X-DS}R`~$JK5eQ$a}8u)Ecen*I_T_E^38CYCzmr7_HR
z6}h%L7`2mFYMIS;7}wC#aMKPtTaeMK&g!i2xR43;x6fB%voJv~*8fEMFv?ly!H@bw
zaKM(93)D-}oArd;F>0nB6dwHI<8L>r9i_|oZ~16JykXxM3aJ{`sNZL^m%O#4j#7MW
zs(N~*zBUzaoW+>mRr;-m<?qEC<-AOvWA=f~<EAPCmwA{xk3wSb$<A58r`)D~^|qMf
zL1iMVwe&WY`{|NJJb1}RN*3C60Otv-Lo~r#NzXKG9DFSH;1%di;^fTvLq9Ehr{MLo
z?h#imuOT?d=AYTSvtZN;lEtWnhjG&uD_3s+5o_MUM?<*0q;YJ7NpNIZ>{xX-mH+i3
zDuJ2kckDCnGk*|G3>Ju_;Tz2e_dGnD;p7x#IVc~NMK=+0S$S?wm)hHL5;ub+|98K$
zvmcs11`ALj3^BvhT|nKPLlNSQkCVwuzV1)XD_<H<>CE=lVLFf{CpD^#FGqB1V+G@k
zl4;1r++|jL;E`01nE#YZ_4wzj%GbsD4w)*xr0iIKa4U-5k$Q8@3s`ZLUh-*MbZ9+B
z@#VBNxFoo1?{@PG4+!JlABB6o=3aE5XZ{>sHN=wqLi2ECCv{?ls4}#ISwR7dAF%B-
z9t$FTSZjR6)%7$z)P|nWhb-L9O$f~Dl4&}MHvcc`2Yh90(ozcFJN74O=PR7mWc4?e
zxQ>T|b^Q`4$rm*4VXq9Y;DJh63TeGc{nlUjsPWD{7H)s5a8~@?E$Zj0_^dZb^8D_2
z=_-^1F|>>Vk}(}wisf7;hOO-#0Tp%XT=+iN_eiGCpFlP{!-kRZoy*Z+DqX%v8X<Nk
z4TYnqH-4o?m)UY3z`k_?fw+*Uz@mGI-g6yK6UZmKJ{6^{<y%fvc1lNO<t;OR7FB3R
zOC}3{>M9%)6*^TFW)0x?>U`r=Y}_CAH3(JOEPYw{!Lf^k2b%}lj&2!<D3(!@8eA#i
zl7e5n>Sp0@;8VJ!hV-_&28UAy@`qCe=8+WFVJ-ZW1z!*~smezoZAq)Z_H@UZxc6fx
zOgH0}Z5fT>!bR*164GVjn$(a{R=_0%uM;_G2USa$F{{!~e8V`4N;-TXf?C5v@W7#F
z@ZaMuI~`_Ex7ZWCKRur1l#fH}U=&VaCJ2|g{FB|~-6;PXgR}Bm=yby6f8s+LyqhDp
zWN3B>xAtS4f-MXp<fX!VXDStW2S?BzS+iIBwf^f@F^E_kKI}Gss<E4G_zk^W?+t*-
zz6_3`#msNbuI<!be3tFC{DF{Z99noz-KchxT{N=pVr=iid-S}GJu5QWpNvpnULmvK
zXO;f2o+B_I4^SM$>$n3|9veb|J;~t}t;0<}WqC)Nh~9_vHSEK_dJTCQCo|oc{vg=}
z{;{|K>247Jx$)t;o>`bRN*sC?2_OsBL4d}bVcCv;-<g`GlYufPh=<ugG1-QmY1y9r
zPgXX`a1i{$)du&HZF_19_8Y@bfouM~?9~}N2<{lRd)ng9s_et(jOP6;DR^-WG_OPM
zyWoF&Y2Ajku=hlUVrcGVQMm*EAiB{ub@(?q3mmtF+4i6XW)6c%Ar~Y7jl`tBT05C1
zj-Yw3_I!UbpP9_9{Uz(37uLWd%WDT?ekg#YL)$@@tQfV{VHF@k!-y^tb{s*1uwlt4
zi&6m5tXj5(>v9RndRgXA5M2a=FOP*USwITT9BnvW+SV1vjY2*Y172`^s3XPlkF&Cw
zXW+~*8(c%SxXZR^i)>b&+8klWuo8g4ez75|Hjem${$Xu{thN@%CZBDQEl>irp@V4j
zW|!^dEwWj8vN<;S=rlNFGXs90Pz##BuriBFjZG5AhHNswUsjTxjS#b>;I{W*6U@#I
zCqpNG*+M_0Vtp2(P6cN7I~BscH;;^tMY+q8u|n>fme17E#y2wjl<Ug7q)*$u;F#3f
zDs=$OZe2g5u*5pM6i_thO|ezrrg3hVJ2iYfkw-svKTmj1XR|Sdr<56<`B&?5Q2vbu
z#!G!${Nicc_I=wQSf}fHX1&)CIFb{eJ6N8}RP04+F@XEsVO|g-SIwQ`7mmN4s{G>7
zx|FYor<_65o4DkgZAsl9cvB5!;rpJLvyV(3A#=9oB1WF1>g4@TELyYi-P*snPsu0W
ztN*Bt{oko8+8Wxr#b>d1Qy(g?y@t<ZWPU@z2f~8eTEWbVyh?>_gs&dr)wM1cht6j1
zav5)x3?%5y2B5IsY^FCJER!$?^R@Ii$m}8O5X(_6XEz?pH`c`juB~${iPJ25x8_B+
zfd#n??va>o&FGCCM;7d?WZ^Jw+G3R|;m3-tU`KRbKF?8f-gexF(RuO4J5(|2ax%2A
ztP$<#DC<A*sv&kSzimnxNAs)6EbDHIQzqZEe#<M>U>>OaKT|BSqVM27eUce^?Kxo4
zFmK0QD)zyUEV(g}`s>l5NWH&B(nFS%rB1snvLBWGQS$wOJgAE*yXV!cb`Dk2xh@Gs
zScZP(3v97{F9~US;6g`Jv~Qg;BO0(YIOhaY0&_-Y)nxmjd`1$nfKx8dxFO}Rue++M
zbI3-n=#$}1QY;Hk<i~dv|9t<ficN()Kf+J}h^5lO3<|w96a?>JbpY>fTR@WQnke$d
zHyd;Icd#tU*40uF!Rk}PEni{Ayb$P5vw+T1#{0?W`WEJV53p%_yAQK+;vwPt@2<*%
zsO?A9zvfZ=-0Q&oQ})-w_f(M&E7iZ?inmdbKX3QLcG8dWS$~th>Kb1L1pk&PC<XZU
zThXqu?J;<RUM`m7oha#-w@HH@fEXi+S5H?>t+AX#Dst*>Sdg<g=O_J{_2DxNc9Ww9
ziS56<Kf$Cg^GU#+82+$iSMyYj!wv<^Y6eR<2T;e8ir>(nToI1bl?q29NByRP19Ebv
z#-7v#s+DL&9fFI%kKK#D0ETPcMj7%wW`LD)c-*PR10#5Q(G|Wo&7)E;C3Uf^9Ogdn
z^UmT|H{TR?yXkjg(%7N>D}bfNYuR{|*Ag7%<u3D9ZnVK$t6Qmq)Pfvin@IlrDEuA;
z-pX%5-wk1#0-X7{q?vfOsPZ|tgr4eOMeR=D2Bp&)JB=ItEfyBEd_c!RBCd+Uv#mIN
zPOBe!XLxJR;TO(%dl-n`Nwck{%TUU6U_UFw!b@<SoGDO2G%5A-`&|gi^c@u{IZyfs
z&(wSoP7|lOe+Mx}{=aHeVu~(|X*r;OGe*&3;^qij+L5#TCaRWr<1tDCS|%PYq4sKx
zrQwG}X##uXC9maM(3A#?D}^Q8K%SS2$GHaCE?+<WLV+^KAM)NL>TH`a+8f{Io!?e5
zES{s2LMy6sTjhworUiZ!TE>Yz#z1>zZ;sy%uO@KONSv5TDP1;}S{bAArRg~ow3^a0
zR7EQG%YQp!Te~8ZGX-I-qTo>?8C2CE`G~?gtvUgl{MsB9R52qJ^2?(){im%pb_I|6
z1Mw4;l0Ejs#zuL+ecYNK7Cr9<J6IFxRT#W{+x-F~&9*Eg{mEWTvKLqC#ZA0mc$sx8
z$`qo72dXe*AnMZ3pM7uz^m{3OdrNwfWn^ARAx<Kpkc2EXG&g;Op5%^Mrtd)AXfc5g
z?##AUJGSYSB9~V&pIQYG<~ZcnP(CR-F!{!Bl*zocpuI2siOvAOl9UXLz!FWnXD3Mn
zM|zUg(UN}ud%75V^9IbW{Dr?Bp#wV`YxOQ-=yV=A{n#UxV@8-`;1)S>O&$`z`VCal
z$`8|jm1bI;v-ljou7{tjiN~M;e?xjl?m8_`be=!PXPqH2=^B4rN2^|vp1pr#Cu0g8
zVLUJF??YO@cpqJ4Q4txzGZvL*9ax5xmBo@8o3M!lr&AotOFp?dwvT@~JF4EV*)hq!
zbU3rZOO73sxm)vvQZ!y~;VrnF8CtYXHw^pmw?ftL`ORGhpU-;N_)FuVf?VrcOlD#A
z3SvEH>?EorG=qfPMd@Q~ULSkl{IEawFMvzKL$6<FZ#J3n1u*aEzbf3c*vw`azBCo9
z{gus)tF^~3$)tb8ZI0qa;aZl?&Zbj2!CY<ePQ^w>P26{bV`dO#{cACZ($5&vQBluu
z3gm|Kf9@w^4glN{LPeRol%1~8A3F(%d04!ufrf;>B7brMgS4hsa%>_(UupVm<L<Gg
zUi}LW7aBUszn+0Of1Ms-i6>P+o0^>%`=Z_Or$dL=Ystd$tXWbwHw&*gxYkO8vH|Vm
zr44$81AVw{ea?VWYR<f3EvGp~R{cKZyb!gcVHLq%1noV|7+i#U@cl~IQ2WY5Hbgb7
zpCkUs|By@nRrnjDFSGKQjsYwE89ntmS)iB-(BBx)gToc2nE<_^mW}({eVxJO_pAfC
z4WFEUs8V_`w0^vFb_n({2KKX}Qs&h;#LL-dTRO)7RAtE`w?6l%Tc49Ps`WW@U8LMK
zIK%b_hr<R?->MFy8gSLe=INgAKVM6Kl8DO#Y#R2)$9i3-XLo+GH$MMKOP*_PW4~~X
zJ+XF9V}9|g_H=9Lr5$*bVe^sjyuKlGlzPyR`IgCfRD;1-ZM2#HR+fciGvD#DgB<hB
zbrrA<$k4s`-2soib=7-&4EHvq-3YX4CuvKG+Qm2<sI2+>tjf$kvWqGkA8R`|r0&r!
z<D)@VMw=mj!2xgbra40v9P~WSsyt*(R?h9{Yw$vtbB?e)zS$7=rOUjsTb6CwOPOy7
zGcQzTq4rVcyFl8oE~{EC7zGo<oH!L-&Rbla`(@Ahp>IwwEX?^pl=BjD1`}l^KGs;W
zhPPTQxK|5ue*VZ=qT$?<I$opl4z<VY%_|JY?k!PZ(cl*xP~?ir0qyd-OdjW5rZmB|
zQ5wd6$Ma`YRQj{DG*^j?aP;=oT9d0psrFHbbUln}AwCmz<3G1XEfaM(${Rn+B3wg`
z@{dO&5kf(-|8rakZl8ny3p^?K?1Mf;AAqO_{+flT?&J-Ii-hpU7{h0+!)Hmh%ge~r
zC(Jg@vK?7vwH1DrRh!ZM-@<Y>-Fv&7r+%50(+Ko(m{R~-ou3nj0)+c+0pT5%(|os3
z{B>91$=Oo@qvPddqaS@xn<Zj#^4{pG>@;n#yvK))x6}MeY7OQ<^I!_G5a|I@kFBj}
zz_#=?+z0<)0U;<-`pKkwhA$Q=&JLE4(52PAX*K9)*<!_w@C)bf0n`{f#`zsoUT_VC
z=;|jgXCVci$O#?;{lR*rszCbB%6zuV{EwHiGQ$cvK~kC3etIf!idWoLmzXz&iSQqd
z$%tk#{A$Da_&F|=Iy^jd{JcDI6pUgrGX4Rrlxg{Fo=S{gyw(aj^-?|Ff{1j2`lM=i
zrc5;qdR{eQyJV}Tl4f1~1sm<rEzDKMA6wX)N-O7_Q?e@$iwf;wV#zK+s=_d^XEp|m
z9Ul>SLFjo#z)u;eLDb4uvii<kC?`mfja-RHV?5(BKD#0-qp81h!ul$#z8hS&{j-&T
z@$HZ>+a$|&vCCGKt*nf1cCl<(%Sa<!&Wo}I!F<1K#d-*W(4snZUuXAPiG0;D=0UG#
zfot>GN5f)91BwM7<1hdNYgcv6>4!Pn72K09=gK#;a^}%u@XIh~JG0MoIS<Yja_in<
z<dliE>l|8s$?@F|?_||ys-RbxYZv9Z+vUpHB3DM3fke*ZT1=BcDS3mPk8+4HzVz!x
ziRqA}vphEF2tQGr-~wBu!j?Z$A3nrP`3XmgFE9*Z1i^d>StYpnZ_&$iFWDWfFPOx}
z?EZP(XI7dwD)THjeB!Kd)JmjezNQZ}e#htS*9+b7w!BiViR;4yb{}*|d!(d}9Bfc=
z*mg@=!LlJno1ZVs!jLiXmqIWEZ^!taZgl?Z+gUjcmoJhNBo!r_jqyHpTKbKpS^0o6
zC-_}hW3#~6f}Lh6H5Hq%Jgb<A$pkAV%S*hp0R2U_GgoJ2GboM<vkkIrmq^V`hfKk*
z)Iq=-C+pVFFP(`p^9%dxQoe%V7{4cGtag6gv_^12q=O-n-Gj|>vfqgXa#YgWbjtLq
zqmrFp-s-5d0<d=fMM$2#ArH^LNouGC>|T2IL;I_K$!aQ6@Y%1U^!0PMOy~TY->7)F
zqCP%9&mJSyS2)xPJJshGe`Zh4+zP%r!m!kwEghyKb`ue^$F@Pz@$Af4n}ttvbbTpA
zle1km_jGh!`fgTEleibdob8<QFIVSjA7$k<g>p-nb0OU~v^*(k`WqAqnt?bnIMSzX
z;LUAIv9A06yWP6(x;{9Zxm})@>}T=YnBM!F>1~Ur?mNDz*v`C?zc+t-ZrWl!`3(*T
z)GtakDA2o{Mlyd4?e`A*+4jfpF4^j|9_Yt<QHA^^AJYRr|EbfRizLlc^7-WJ4d1ra
z#BSQ~Z6-#HZ~s-e7x?7D)%PoPHG^RVUX!bD<_QDp>T9{ye_O}zjMx*p^ktdiq1mdw
zb_cvgw{WXJdN!9^H}CY_=A&fcWxQ%zo*5zwiyXgJj_4@+{4?w+I>reuwjF((M@@&2
zggzWnBZ)|`Ao85*wK<L3nUQ?kKL4IvoqX92G0{xlb6`Z9H-g&T%=x&PMYyy+SlB)Z
z?}WdpmxDWOICc(bEw8{@G@{p1Uo;6m9N>Q^0~GWm6#D=#rg%20HF6WV@#?tOna-Mi
zxy=ORTy;T~alJ3q2FrhHu$?W~E<|^>!=@X7kjKc6Y3k3Df$I4S6q@BfVButM)_%ls
zVLKq~d~lg>H5YJZS!P344W0TIpY;z>r;~p{C+6ZLBd%RZqPS+e9<#tCHgdg1m4R<M
z`ntaCJYO%|VM6aY^e~8AB8rq|oO{OV@aG%EHwnn(dwpN8|4vrU<i1|Ar+NJHP*DYP
zF$AZFm@Q(a|6IpJwIcr5o2ZeMij7MhojbeU^*x%$c4Q1ehU8|B1$(>z8n<ajV@Ll}
zjU{7n+qfwvJFetsE=5~wikZ-rDW+XvpCW+b#dJQS*=d)+@x+*FmjJViN{XOrD!BA*
zS($cX5pQZ##l)JG@t&E<j>-4EmXE+?O`oFFS-IsePuZ)nTWUaex~I^;uhc!S{=0gb
zoBT$)g2Jgjx%fVA7Wxd$@x~qo>$l1iZ_x5Rp0bt?h>E|yWRT!aj_z5+DcXe{Cl~l<
zyaE^7IR@n|Q%cw&=nAh=ul&)k6g76^3-a#m<Ynoncntx2i;o*5wkZFaCUfe_9kYbt
z+4cj}FD9e@@HRc7j0`c%x*pbR#bsTm8$81cNYgS>{x#hA`SbbBUB=$R*lZO_#Y%Ni
zBli=e#)pkOdV!FH=&xTQsxZ<Nd*oC6LE%x{Wd0E5r1j1@gT=i~fF5+0KiP$5-uAL2
z&6Xg}>Sq}@Hp3zxVXR2Lx&&;POU-dTjD4`c#2MAW_%HBf6d1pUadCne<m@AYv$-CZ
z&ClYGAwsvlZ9F_VH@O1BKG;s!8iH{6g1V}pOVN_9lve^Y>R|fp_mN0<@U!WAyjPOv
zPCBcaIQA^@>-&20y_K21?<rREYAV+Elm@V!drBnT^z&B|;5`2{j>O5W8NwGh>F`aG
z^oscPOSS%bk7T`+kLTbzk3Y6t48b_odl}GbpNw_DsW=>QW{dsoTZsy_N<b6VXyy;f
zuFk2yE_?mvI-aMp)(ceq-%T^FqUiAxv+uABU6yF<UYY7qFe3g~^YMOTi%?ma>N$w#
z<;N#`yiAz%y2*bh$1Y&EGX7wFJ9@Qz?5g}6eUGXc)X`}04Q{CPgBl0A;PW*B*J=Dz
zA2{FF6d5yIFE!6(7X3xfu!zAz2_ss8TJz?NMx&iZy%Z_}ucy%Wl2q@!wwH_*42WCb
zQw2I}t<-;3;P(9%=~y;I3UbO}vu`j(2WN~Dyl#XOqhvpV#!&!jXbf|tV(0If#qLF<
z29x?4yKkq?A`~{T(BF<Aq_#RW8lKeSjjw>D5G?z1%EC`a{szn6mYtzf`u~Iax-zpy
z9zFmyU56_<d2oE=$G$mfgs?c{Q$O|@w|;&v?BnkFaemuc%9qV}wG(JjCzGh1MH|73
z`(Sd7)tfa!cWI`Jet@}6kt|&$=8j}Gl1*J{wBtO%_^j?uKF7$WV7Y@IIO9Bt#JD7`
z+@S>`qwV$2^h}+c+n%Us!DmQ<%__xUl_fob7M{tFN2lXWGR4H2<8ZrUr*Nj5Kc<ND
zV+lOFEEk{t%wAsVG!{I^6d+8M$v(fyEMySEY(g*gEHU+~X#y07cg0_*5Qe*8aJ{Ry
zR4|r_!;zaaG^aSZ$S=HYG{&Rtsvb^B)@)X17HEgC7Yz6WqZBVO5UIg5HVtyDPB$zW
z^Fq)>L`8ay1cP-gD(#uso-f6{t}n+W-=@Z|1cvx(tNQpvdU#q9pDpk&;qEd({mM&z
zC&^>#bBL{Ye$K9z=h+dEkm@?Iz*#7-!Mws<LLH<>5y2RkKM9GZZi2fL3#e)LhD~iX
zjDlmq+X~flT3FBfM5ib?Y4*?})>RW;YFMt<vc~q&%pO{h`5>%I7vKjok%2GVvcKIw
zjV3M`<t5*u_&!=_ZprM^_nnpxyR~fU=8a$F<$lGshurC-0Ax_#)|St@wY2g6eJ|IX
z{6${(OG<(7D9^sFx1Mk7rKTU!%`1Ox#x^<tpzq6G>S!JrGwEymcQ8gcSAd%n9Z$i<
zJ4zvBLHmD#w_AMfZ;T7Kgt-c2*T7P#!To`|mdzUdR}I~;F1e~YRlRGsk>xEjj;~HO
zSM^;{-S-6+;ZrsJyH%%p?CSOXTICYesh<5$NLA+cs48!s!B^u)@7m4lyTa?M4)%{a
zTAJNaYRfDRWjE}5P@lg=Z?}-oLuEj15pRH9H%C3wtmzMoX2=*F3LSQ=XI}HMds)Eb
zXtoZLjnB6A?IdPF6!Hs0=LLK`&@@efyo5iOXOLv8T3m4=TyYvSzeMJHV^Vc$@jie<
z-jZZg1IIkz7|BSolRl`(m%Yy*SCx+h^m$XvLIr%!Gv0Wl72fD2-=yF-<n=Er^>W`*
z4b9YWY-;+p;B7<v>X)RD%D;*?#8jfS$Lpj573bXag+^3Im6uddoVA^I;<Hx^=DsZF
zzFC!A?`?R`YuU`2IeSm{e$z|!KC;?Bu~fj%x`%uxq(&EXt4{Vl%)^R^&$@<J)gWyF
z4OAybA0`nf^-?psd5Y4y>U<@azZRdZC^X6E80jPYfQ)TbsmnHd8?c<)*pc~Jfpx?!
z*i@Il8ozq8)u=cD0@*d+U#LD%Fs}-`SPs&Hphw!7ACn~DV?;cMcJ_K?dSYa)HqGm`
zA=#5z?*Dqqj$UdCD0+4BhiPq}wSB;<mJJ3nYx}olw#DFB=C!fx|NfP`R{K3RSNq47
zj!adTcdII2PBA`rN_J*bREZ9#L20H2@8EU6oFTdub9kNC^3Q#|wxwRnr~42*u-#^<
zn8|sOiG@)mbsm3mO=2?pfjL(xI&{WMT~%j2WbCS*&N*@)K#cSzv?<=SDlWo-buVN<
zp<IeRFDPcgIXg8t!+^}LoP6Uv6~wBLXPQ1ZKbs8=!MoI;!IJq|tvg?}2}r~CLYYW^
zuZdOklDdL{oN+>TpgF|QGI4h#K`nSRV6^hG^IO|4MJkhgGGIEkE~cvGO4EQuk~28D
z(R3*%IFPo}cN+j%-3so?lk^9-x=U<3d%D^^&32b{?sA#CoaC}x;GQb&iP5rf$1JnT
zLV|ZoSX~bhz?=Rv*y*HCJB|NSPu==(mgi~8l>_7Fc-s+O?FO4X``&%c`>?==iOEc+
zqv6U+)z>Mj5L<mY^#3>*NaLC7Xt`5+@mcGXuhS8`biv!v4fw(B*U4jNWXV6`0!_k%
zS1B>okNC6YX!akhDYI;C?MK<khmoL3V5)fc?y9X1f>+%3YwGX^uCvRK4|I_cA>J>Q
zNE81b2G=q6ncV{e=nkp0&|z)vpqp%S*U7Z(5AWt64Y!%oCUb{i(KI^cED?-Av6Po4
zl&&rK>9$6R(ubkM*T{j!Uq9CW*b%@1*s>@7C-^DN5Aiee+7A4DcmDrR{A|i?$Io-B
zgZNXs47tN<?2Mnk@_8KL;(v&r+pKOrb98F6wqS?&nRDq6;3tkB1R2PCC<{Mb=DSFm
z*y{J6|A0Z;34c=|RQ6mGN+go`BaXrPE^Gkn7;^inHxNHIe9Z8iWKZYp34Z>a!j~oj
za06#<v$bPCQY~lj-8*pdo54Bkbjw`31-<g6t~!1H3NBfY<LJeT`0}GeT66zQcwZ1)
zio4FiAqd4f44C<S&l5#s2XgUaZ&U#;>&x?v+Y4j7WVYEI%g)cQp`!9-S6&Pc4Z!_=
z*{PHpkE^`TN}WZ}lX*LVBM)Pq!)$N-N*&36kqgZX(3W2;m;xEad01rZ$!+<l2LiEM
zo<DFLZC0mx?8XKQyd{Ho%gpzZ8}&(n4a7ud8ik-iAgDqJs!_ek6~W&XE_t??eN}fO
z<`EC@;!VfwTk`keTi}acv6&bUANn~U7A_dUd5O<sDr0qabcg_ocj;{zv4=;r?MuTD
zZu~MyU!KW+uwTvAFuGxafQ)VA;>WJ?97b<-7=4|W5k^tm;B$J2&%Opoe5-&6vwazF
z!R*bd+|Tz_`PMLdToz`xq3uqXO@^5L-D<FPSvVJINA6*&8syGYDv_*hL2Wlf?t6dX
z#XarF-4egY$XMwl1Gv2hz%K`?*R8R=xz(R-{7>*;b2|<6y-d5un-Da*Rs22Om*v#-
zoSs`_0ne&qv3|n*&+CgM&Y>84Mfn>x9vE*LV->_+a4(n&D%cTxJ=Fe!i1Zw9F+aG~
zxYOAKvFnv;z}P$HmrZYz-jR(q@l<!@$X($+p`uYrF_`vwMk+c^6_u~3J<nT=1!<p9
zPz$^{g4CZV^@;WbcKX{m7Rh~VefD~)i$@^9&-UKDxkb_gQPN+wNcwG*blnz7mq$r^
zWv|HE`p{WX(u9>+%RB}~Wt4Pd_R_em0QHTMrf-q7W0dsEEt0<8HSE{XTO_Tvq~MbK
zU^ay_!)EP&o%C&d*2S8iblP8p-P2EaX9)OOV?Zf4U+KndqY5RFr9@Y6asO9OJ??N8
z(L8iKZ}W0qy7>q%MGYDs3xX3^g+yH!4Jj|9!luul8w#^u{kQ$!(DPe7Qz{`&GIsK?
z!xB%*Y{8QWLmPwMpi-kt5)GTW#hWe)ivV`cVtiXUPbwOqBX`pw?YVozo3;;gBY|y;
z_46d6*XDBD*TG+<EdWe3Y}_1g(pfu;_kHm1Y<HIN(6VNGcSC<F)WL92%nKIrt+&u*
zjW?Yl{-urz0Z%?O8-3(Px=n|5Vo*A4T#{9+v3q+lau2c)lD~n62(`NA^0#;$0ITNx
z*5wg=#M{A0<UDffVZXuai53hW_E*Z(@ZkVGoZqEFVZiXbE)mw%7H{g?UKb_$wAV#S
zyuB_Sy73_6SX(FCzKR!c$8Y}cyC0l0A%1X6?KW|L36#+F4zA=ZRnD)Kvy|WbU*#U0
z6F+!aZMQ4V54Ods#nqLQhk1S6bw+}`A$qDkB=DEz(zhNZEZ3N5dyH7@DNDs}-jpR%
ze0L`&SQmNX*JisW?YPCiMM>u_$tq>by-!9-<F-h;JxV%!i=@UVskAw(!tDjd`BBpI
zPi7_A0{rn&()ageC5dl?pG8T3-y*3fN_u*Wr2nvQ-n7~Af6A&*(hz(YCH-`Zq}C{@
zV2h;tqNMfrbggiHl(cG#q^VKT!&@Ys9wlA(d{%{q`3g%4-u@$csV1D*bm$|*Y@=H|
zI~cLWY2s#__m$MqJ1^y~#GDVsz~D`5Y<_qLZ>$MV4Y7Hi1>9V}>U%SMizJN&S~|24
zdD)Kgy4aaWi0FBte1?W3i%SE3FR)oXv{|BB3YI<KL_DFQsSUjA-%RvBO35U9oMau7
zG<0QBC6gDPaFq`H@@~~8gAIu&vf3`su5Io)2#H`b6)<~$X$2ipf)i-=ZhFA|mVDXU
z@V13=?!8ito~I234I6iiH=Rj^o_~n<+=b^}IBD|56VCU_H`nftcc6ar#B(SAl9P8I
zpWJgo{pOl;<Be^?BFd;t6DOtv=Cv3&@F})X$ZuQC-azh0u+X<{RYP-8Ra;9{`TBTj
z2^w=G?%$Dq(MW$>K~?$lwQJ-7si;n#Q!>p3jz#^&3xm@CoOR}CLjO}~#xnH}7l|Op
zcZ>T%e&TkRwMT*AGpfwYQg-|_a&yVgK|6WD=bZV)YZgGNOM0{0f=$BJCDZV3^YVXO
zwVjFYB}HbPq&Xp^fmK>$l_q0*Z$2ug11xvERXddFW)Pv49ibYHCyh{-Ua=*SYUpZe
zFrUGF+q~Et({IQ<!NE$;c9n^>uVwS8gOGtV7(fGlZ1VR<<s@Ts569?XQL;{r)-RD<
zybxTsakJ)LbKRxsZe;2KoD?1MWb1cQ_l)llU28q84=}yeSjCb@JoS?5BebI2HWRYZ
z<^FQp=+dWQS?&(8UDRqS|I6==3Qw1ED?wzNW!Y-q&b&iC-8qh5Xo)}GYeM~|Urwx@
z5P$5%Zgra`)^594V{_(@YOHogzgPXHi!Q$CT%xv{GuL%=^xeMzL_}Yaq7OmL*mXO!
ztm)RUteYKmtV6nT(x)RT?oN|))tXtPUu!<|I}Vpte;PK%YMJx{ky;!-`Il2_cLt&!
zb(_ws-F~t3P<kg<e4E;0WtnpRMZc=8h(CT}58$7Or2JEqZrI3~-|S;+vn-cQsd4A2
zh1t%%Fy2%ya5Mm<pAQRg<b>K)P`~&j*`ZW=cTy^*uE!HcpnglK%tSpwmGs5NW4aqi
z<-r4YLeztJ*KWPN@`^AeQObKl3q>xPp06J-pMH=xex3LFr#gVo+pW#pdoy0x=^uH0
zzp{vUOGxb2w)f`TuK{y>GbZ=+-PEeSn^3b&E0sB8jD~08v<wrvB?}OkM8}F;2Y;cj
z!+83;oW5R74PE2uG1<TJm<&nh{#w~|y1GA#E|Aq6gVG9wb1hThRPi%?opU1?T`$Ll
zCb@tzPUU9}RC!JsX;xN$Zg^w|e(q~k*f0L2iHSt7?bXPY-0*3hm;0)sUzzmTQRQz*
zt0s3v7*9-uZkeD?ZG|uZm}_>9O=SFe8?8C}`k|LRHP1_)P~hkP8xhccubEbxsU(8w
z*a+m@@BN!?qGLxJyjPW67ai=B+0IPDud9=v%H&Jg<cHqZsSW96IkW}oNWahX)u{=&
zBmH~Txsl~d;@4<bO{G8Za+)5Q8oYjl7Tk5Z!pLO5^*EQ6S0In{A6{oQ++vWIzd3U_
zGx5`_lV`l2SDl>renF*Qd?<BPr~17=qUqh*?W&Ul-cQ>&l>Dwb`DIn|h3e$G;DzP6
zxYbvC$@lGCRZ2?TKVq?u)P>5Xuk&a~0|BFfJa2se_3nM?2>Kg89jH13W@S()(h!pf
zD$W(*raK*k>ehgnnuH<`5dcl4+iZ}~sKB5UHW6Z_n&E??Lha$pm{yJN97Ud!?gP_$
z$<5WtwyNaP>SPdXW5BQDbgT4-k|~;>CP2nibCS^l1Ny!&itp)?g=#Yu+h@H4U85VI
zGiIw(Me1H6XgWuW4I1Wwt4zQRs!omD3g~tcLO95whFt9tRjWBc$XZ94FB0HC0XX4t
zjX(go0oQ8yK?D@58wCN`Sdn0Ci|nTG3Z;i3lfiCS%xT=VbaO?}QxALbpxvjq?{8pC
z2sW&@v0~h9q#ePFEPc`;&pKZO560Sr#tIy<`k|ktBBweHGV+4|3~^cuvT9xf6^gLW
zIj*_~b#MK9um82a;>sVW?~&jAzpd|_t<@Kwbq)eUpHbEmF(&A9S#UEUfvBzVr-W+j
z@4|H|_Cm#ekVKYA{wO6Gm%tGfx+@6I;doA=i!X39hxN5zbPrHe8tA-M-k0*=314O4
zYtRdR?7PwUFPSOZ*YW<zgZAb2QyZE==6|d=YJ)rl!Gwg<hDD9r`mxIf$`K}a2qT4;
z<nXfm{S7!P_;6HE6e<WN?jOPhsQr?8?Ejh|VNuaw&5Pi;CFuJJhtI|KrB=`HSwhW2
zab})FH9_1`w(CgQg_M&>X^joymx|ibA4tAZLk3&3%YwP8a}6){4PRWL7mo%X-vaN=
z>^zo<4Lk8)e3mhGCwd6fG3fs*_s4G7XHJjZwZg@+T1$}UHEhnivL{<_uH1I=r|H=y
zGpjZBa;(X+D<=s72?p|l8RMQTutc^U23Ncpjk{zl)!~W0)*57zmam&qEv;1H;haiJ
ziD4@`^8WVkS!Nn^R3?;BqW?D*6^NBb{6jl+gIU-R7-uuxCAgWsGxw3)b?Wa_eGezm
zA#Wr`!7$O63L8Vuh=3*5b7*N>b5rwln;ARFgEd!QLzn2RgH`?)?r^#%ZUXgx3(lwc
z_V3|zYCk^9d~}`sjpip25)-buWuU&KVIyY|D<otHy?D-j>&-GMPro+u)EwCfcz?cB
zR%&cp@+RF7d>|`qPBT>?8TNUh_gKOc%0k~=63^^eXF6t0U?yM}Ehq3){Rn=+n$$v8
zsXR%m-u&ULFk|LD`d^xT-p?L15xm*M+^rXbfb{kb@uAM^(*GV#{<CO6&j;xMD;*Fi
z*Ltevy1l%HPd7^EmvItW?Wtmx(h12OC$t{T=<nyJ`y)B283iDI&mw^Ssh2z&6JeEm
zo#*+#AgRa6q%a{kn&)<<dDin#=F4D=E*L2cIYBi+1$60=%~=x#JIP|oE>3LA3<1B#
zML@Q^JF>Fbytg{chJpr97r}KwGR{wpt2dGD*s!gC_d2(K<pNOk{*TJ%Qm_lpGN6la
z=u0d)SOv4VTm13eCMbeHLpUKW6OyNO^T3(r+cg))A7?qBHyHg8jGob}NDCbn6Ldze
zQos0*Wy0X}UJ1;RBjDs-i3zQhy~;T1pm=VWR74WNqMGuN&dAixIC>Wp@?o>g=fRG;
zV7;~{rea@r&styIUCi->^TnTZBRwwe#2j7aGd}CnAMdXQ@-F=)*n*e;t<Tn5zxXdd
zMU}q`OSSiz!J>EpZ<T>TxTe=2()mVON5`E%v6l_Lq3jq6c50Ru*r2R~f*22(e*~NH
z{xbo~#>evP&6kFcdvZ-!hTQ-@{?nBMy2#5lKZcJfr-ZopZ@u@6A3eB(;=AJ;>6M`3
z9HV-7hM|ale8Kt%b>UNZy>izqLKc%dSjPy2mQDT^z(<FK>;kW>t<E}DuAA_zpwZI#
zE3TX%R%8M=V7QD^;!-wGInzrGm`WT)4@rG#m0weqr_IUBiQlMM5~^A`by7!<@siR<
zW1K!hxK*j@v%0LfB&0we)@+yiUj;TithgS)*|GS8_E>yY7%$pM-Xv344eEque(||3
zR!>6`>+21_RhNN)8To+YJWhOUXwaLmLjnu+T63gz=yWqNsAR_e)v2LvRpl$DoKzWq
zyz;osL`F?H=7dy_imH}1Jx2PKgYv4&m)4}(dp!Cy*W*(4&bm#Hb<UXTw*|!xDh8K+
zX8oPyE^l8)x6xnL?N0QXI<2d2(FpF>4MIypwH=r_f?N-ruaH(bfM<4JzEtxWJ*fH6
z(Iqw1k>ufsBplCx>Qx+O8TNX_SsV@F^7-V;d>B*;sEa$(LPJIed@1&Q$<{eyXhD3|
z0)6<se(eeyknStN=mx{#mFdiCp5u>u=){5v(4^^jvfJ`Oqd5T~9~7O-7o}V_-4|uu
zONHuPLe(<&QCjF<ywwVM%n246od>>KiX<@=oP7;PsPz9P&L<5@mA$pm1+rMKX&3}g
z+xz(A(+CxM8eFJpcQ5p6s-ky_=u-KiPw<nI$)9jcvX944&v7G@D`AaMMAxmna@sl7
zes9~QKhi&`Y=nQaARXb~S)xnwPJ2rJV`$4qy+-uUj7WYmqW|BAwq&*)(f^|n$+bgU
zz9<;c{~sfge^U05e4J}U^7Rq9Ye&ZK|EQ{EZKA6D`*_2Sg*iFL#2@c7uB!ao_*L2n
zoBoatYLF~bA1f%TK91t5ziPr%HIveN!1M?dn_D7#q5Yvwxp=7(nvf|`6Ec+;(f{ML
zHX%(Io*Xb<Az5aJGR`yAn_FTf!&%qJ<o6?+KAurMlFb`!RRoY#wS0Nh390FW+p1Q!
zjVymF-f%Qv4oCK`pygMqB#{Gnb3&?T713ioj`yo~$QxOnp0fSO@;4@5lkOGfp2TCk
z;rpFK7)CPpmz~kxK9!vZ>epU5(9jc*5%lx}J%5Wgyu;H8sficnRJD9U3lk4wqVFb&
zBa@$|+2PI9aJnYxZtL2})VXcx|G4fBCQP5Cs^m8#ldWNkE>|^0Mpdo+tSWVBZgu&m
z@zh<E7@0Z-DAvSNF=4O#&3MC4Xq)a%zk=X4dcP-+UTW}6ujR8I)VvpcT@i1{bKp+D
zf{05peY=z39Xzv&Oe2-4y1Xsk@DTM^1BVK%AP2P$9!|eeOO$!GYnhSg>7A>=(WsHY
zag`RP($|tnofu`HUCGmg5y^g2s`!qtkZD~NhilA+jMI-btj{E$kU4%t{PBNRsZ$fI
zu>n)77y^#>YkrnDk|4-gRlFt35s1U!@gw@XkIUoTNwdw8X*`-=?uEtF?Ioin08I|%
zF2Rq$8m4>;rNNkQ0ks9|%bY>_>I7`LOvPYFr#ciWxGtW0Gv@k(X6FdrKX6t;1U+!{
ztf-a?1$m4&G?FC!hl2y>_z9^#Fxy8xoS(+OyJR7ipOEUeuh=3F%AMfX^nphnF~<X4
zpWdfv!cflPh|eC|T{zRHN6w;CLmRiLN*(Rl7<bh}ZVJS}L0rpVIlhpMH3qhQb!7H_
z)a;+whbWz+I^1ct?Bcp58US<1UV^<kgiWU<;r3;)9g}8|U|!H@Fsoq=FoWDU6*-86
zR5k8UT`fn2CVjk4=yjc7GEDzvqw2DFFn5Fk<8v-Ei&Zt<m)h}Axpby>w3-uIRLwNb
zAeGHJ(=_xNdmAeD`XwuP<a|r(6G11MJqkkBc2qnkIQU-0A(5PUz5_W`iO^zThI6ID
zE9ZqExl=(HHoF1RyMWXknLiCK?ZLotNfD>|e@$d|f#KT>8Gk5MX<k}`E9MZY65wmp
zTOHTQma8Ne#p<(XPjjp?k}!XCymB@^odu~;I|}PGr*d?rfLy=e41C(?8+j)&JAz-Z
z3AGcl(yxkIFw#7O;>4({y$#5M;KHc_GGY^#Ej<9vlJ1@-obeZqj0<>_YF`vy7jwn8
z@e(IxNI;ZZRV}21o|RqZ7Q6u>?I8@p)zJsxv*QqUeTSLp6b{xfvCeAZh=VY360U$=
z&S{AtuCY|fvF6h$2d*C6muukvoZv6_Ihmkj#9x)U5VIL#YRg#`Tcz*DDJLQ8R#U7?
z_u3usR8}XKr~iRR&STGAa%GxD%eJBZj6TR;)98F6u~SFWJq*m){n^6zkw9z5s*C?G
ze`hkMAvK121Qtv;sa~;+f~c|00P>NNg;uoBp7F=o<`BPslh^$+ri$jL6=UJG4W6j!
z#8{<{v8bYhu}Y~0?FA73Z}@5(wlsIf)>HuxkBosf`U`nv9FO9WN#V7QD?G9bSMh{$
zx08ZrWpC$^^X#F6M^uNbtB6OYg_(^<tYQ-DXj?opCrkv1J>ij10j;sro*g`50CeV&
zn{N~8vN_>q*1l!9H_c%AsKdbY=MPdNsR!+%L+uW=(3&V(`jOBLye|B*lO`8lHK9|f
zq1`nwIDN>#(ECI=${84#jjyGN6PS5dG4qbJEed~P?;^DP7d4AzR!-B{G)YqY0R1`6
zuk4+tC7IPc1mE`(WeCT>(UG&aTl9D+)cwuY`@E$UdAWY!M+xlE)U-q=P9utaPj%!%
zN>nE+674z(xh<0#HZ6rZXsh&NceonHjL`T}tP)^NKu~gw>{CJ4xNW7Me<?Xf2!US+
zVaaXdkDsw;(FE-ZXj1I{P=GBy+0|B{7`V51Nz(;f5UDYP8oO8dV=6|byb9^vsg-`=
zelB-Wb?Wqj5e#6%*xAGYFub5DSy54)(zK(|p&!T@BHV!HC=epva9)-CS9S8u^e@ng
zRXY1&b#Mi$r#ksQ8%TmlcKcdz9#;-SE`DGyLs`+t)F{pJcLKyB12I`KNbRy7o@Bpu
zFv!ZirP_WHR<R$~aLq<JcHxoa^j=^RJP;`5ac6iq&NX6qxUVxFJj25%@W64D@78$W
zp*RF7!UL?{j)zee108nj?)%%jb(7t`7R=|GUO~_O;y3qf?-@1M7H0L#qi3Tm2GVuz
zbSrJ08x>aMsiN67u&8t8JgRdXi^KUlO6wV-H{_3CSIg0=EkDVP>6Iv29J0drX5uZG
zET$Xn751&$t`dA|?>9<SG=r0LIq8is@ty|v6K?+HmS4oaFR_r#Y1n$LKb#Rmf-Gl*
zdzb&)xpKxyGbq+WYv0-)WurwYe9C^wo|2_(joD$@L~4l$3UQayN%D|kGog@JK9dC0
zQH_*zY0&#iS64G{TI;0R^ym3=1f*YhN-?4e<lo4EY^`gD+@EL4CHZ;=>-;27A~<yE
zuslAuvM(h#o;^{W8a9RiVwiDQ!m4Z?Hb&RXYaEIXHSYbh2;a)x9o(_&B=eYG_-P;4
z+!WWG+R&d=@;a{gTvmClOQD~6Et*5kMKH}{tc7Q5uAv>8>mV?ALaGGK^)Z_3zLJGh
zbV6!CKbfohNqe=`JW}mnQ8tppGh-(tr|(y)!Fifa;%d5zyi#i8WaBR5!ShcxwZ1_2
zDIyjI{!Ac$Q+pEU-FdtORz6E|TY<1@y9ONOTS|BYil}6@F-W);*pOoa2x?{#dYSq2
z3I6E)@&NZ7z#ZD~JyI!sHMFtY$kf@aZB9YkT!E5d7vXUQ)u{^#Mly|WTrXH~XGkku
zvxk;?Cy;nrk+jl*RmtO-O<YoBqv3D{?r#lW5lmG{wo!eR#=nX7*;JkU46`EGbZ;oB
z>w+)s_DcZ##O^r%imP?FI{6lrX8!Ew?{1A=#NM;o6RTQ}Hl;bVku|{l97{Qy?}yj+
z9+{jx3e*(|breirLYo37`B{}jZ(Y#fTA;1V>}~}e&HT->2!L~<hV^=(I(#{6+qdnm
zb?M9K>^FQ^wsojguf{9={jMTyWNNZEqUqz>-c`wCJ)Kk-HUE`q1iHMTD!D|x?qQ9p
zrA>cQ|JTsL%-^bPky!obW!UcxncLJt6=%|mF7Qw7P(Q!7wf1ZEHJ|<sjrSVnrRSPX
z3Oh+Hw_DX;1~=MOJrpV?kV{t$0*=_sbGA<G_d;TihuC-S)|uG!u@kY=J4SspvhHhb
zGOnx(iX0dKw4>d%1>11VB5V3}^c&xQw-&ZW+5Ii$?23@G71@;KpvTUXz2_bwl)YiW
z?RM9NvcKV_lc8+NE-Ct9$}S=e$_|Ps%OU0+lr5rpW9Epm2U??|Y{KrkP<Dr?d3d3n
zvV)*3fm=q|!>zSntFIAd2c?<Yc65@eUtFX<ei=Mt*NC!n$tB7*DmU`DgPh6zSEUal
zN>@7iJXwl?B;xU5*drTr`98EitkZm8p(u_;FAQPYYihxWFvs3@orNj>Afe>CFu64N
zN1B#+qee8*JTE<Rz1}=+#tDG;1mJX|Ev-f21JCpN-^5&MAp8#31CO671alzworj|z
z2T5R~NVkA%L<pDDgqnRk3QmHnSyPbp*lv^Cd@Zz|IK7k2(1Y=_<0@*cEVqDRR(Io%
z%a^qI%I&@KHz&WB-T|Gd@`fXdE~M)afze37uO>CUZHBgXT4_$^9qhsoz5b!BwK3cy
zIRW+n>jl-x5<V!W@XQ}X{15f=tN@IqVq*sG=V-_`Br-qY7Agh}>^@gK9tIGXCU=?P
zE|<E?BzHOAUCwrw)7@pXyNq;~quu2wcNyd^{oUn2y8y<h>@`AL5P9D@*r!d0y2GJJ
zC;zqLI|g)K3sFBAHG7m`sN`WMz<{7LC)gI_J8QY3l=?D{$s3;S5C31(XCI*ISpHaj
z#Shi@)2;dcflu+Ir5rz$7u<@$(BZ`oQmX1H2ijKP`=NLi)mNtatk2Aza)O<W&Dxh}
z2B_kPy7qT};49GDCk_GqfIkLs=I4)6hrl8xL0^yl=5k6e*%DtTZ>@jw-JpyT78B<*
z14L10_hK14tFslXQ8;OmqboVIjDaq*JV>gs8$%p)Oeg<m^r7o~UzMLMdJj^CTcdY;
z*0bV_hP5cViMTDn!8jW15uVp8=Tov-brIXvG|iYuzBeK05$GnY=dn}0>12|EJ6U+P
z-q6(w=`u3D)ILFMtth1;zM3^i7miWqoSqlF#m5Y-m~!RJ-C}G+_cnas<-X*te1|g+
zw)M_m^_}u5Tv|qTs5IH^%$Y|2Fwz!27{|iJD4xBL=l-im%bh|9WbDKOy>FhHuf)a)
z%A7nI3J@*AIY{iJlcz5gyXsXUa#DlyWPf`Zj=zXa(i;G$+q~lIMV!Q9QD$C}!*;J7
z>{iGqn}4*G9i0pBj4m1V6iw*huHD^SS%&9t;h%Q&yr`bQTAnZ$Vy0T$rX@ZqAZnST
zU*|A82vWv(ijYxOw&Ko{(u){d(W!`b(Qab%1Qf_&f3~m=#yL$JrrSgJjzT+SfzY_8
z%sFK<&mxDS?W_iZ88OF@<6!giSZ9~|=!@GC4~TrA)WCk}8{ARy939;rOEQYy;tmVp
z40au&fR13&Jn=KGLU0JlY|*rak6vDhp%a|ko~ZY&!{y%xq;N2FC6sv}nHho)<{}mj
zAxp(h_%=)Zn|5p=6cE)s_ENOtepnS-(H948O+M+k>Bk^J_p-#X7Zqim3*|1lbdtaL
zEasV#mr;@zPx9iavry}$4ki$9cQE!3aJ3jQRk-<O@!){%ISnf{czb^)GlR<Q3*@a&
z7~5*W$iykt!!|ErVL-LK!yPA9_<1-@8vkM4uz&)mZ2(8wW~C-?&<G|KU4gSmyl>{q
zj!!!DLkmc`v$DCmtB-JX%Vl0exIYJ3z*c7%cg35orzr)*jpLhA9Aiv#ViVfQ2|fzL
ze>_-;{XJ9&7y#>A5puBshyz)G1RWrO$vkIInZ>#!vR&`Sc2h#O`~Nt56Zk5N>yJBu
zM52=3U_s+T4K>=}QiEbm6!iw9eF8y)QX97#w-y!qM@Rq_G$9FaeYlF%y0o^^s%^El
zRcmpn|C)%hhzp2yFN^(a=X$AYD~n6s@9)fWlY0a7?fdfikmtGc%$zxMwmCC%W~L(D
zt_&W#-&@N?bze#E8~2^8%aRX^gZPE-!H;Q?Z-h7*OGSpFa0uh%Jr&KQBewSThrhgs
zP?Y2^)!)1w#Yba*WAiRkchxUm2FhzT?V;k6H2LS3QG;Y-8M9|Z6ig+ADAu_~dYxb@
zKrw2GpbUp6HYCn(7LhnWrl@0JeK@vAyEXQx4~I-hbWcdEu4AJ};`RE(o1Evt#XQ*9
z34~GASFhyE87>~FUOAn`oS-!Q0)I==E5w&79nAL;)aAJO;t?REx?eC+8dw7l6G2s-
zSeghb!s2|s2g!zbX6{UR=ULvycv$@R!CaafHk2~IW-Vy2FAb$(@k;-tq%JvC2by#q
z;J?rqR>2wg?HLaH6<Ih~D6T1sZSdMIfYiZ5{`35-&ugO3Veu7~I*UB9&fk#AG$DbL
zXZzF!aA9VvK?As}gG2)}TrV{@hQ(v}Owz%1%j0p%<ngpYCQm;-xIEsV^gcbWPrQi7
z{O}!epx3+m?YY_A&66ReyMt%?CE_)AH@LfiL__*E%{|T4m+Q5xMObc&6<ZMn3wG=K
z1yNERn&rO3kJL!Ljn|t(E2EOfM%nyA%T^+M7+?$J*ZELSAVlKD)NL|;3BJ8*-(GXO
z^nJ7I0`zUY`|zh~!;7h}lO48l49YCXvXWE8h8+m{9O$G$&Cw7aI)2qs^u1+>rtE^{
z@j!&JfNFP-fqE6f{FJw7704<HeI@Dt4U1RrhDb1X3W!|*5v1?+NV*?Hd2a8smSJ6G
z_@InfZP=!;fZ9Zxe$^yC?tXVj?Wk8yN<39F>cj5$2i1;Rc2Z(>P4{~xHKRVRP28x=
zCvp)@`^tQz75-Bxnxx^~Z0?PYOR~RB8ow_H5(E7qlJwY8q%er9{c%pE38z+7e=_4+
ztiP28)vxKIkuyu!Umxp~J(3xuXQxv?7ky6uZ{P1ElT_*7^$Cl}oKU>wU9hj7d5GEk
zz)efF7)PPda`Eo_mb!)9+8-n%=T5gICfPLQd9wZ3?2fmmc#LMJzSO!wvT*B@2LRH#
z`)k%`h93o7;6mp%XDZy7745B)0qdi%*`pg}S8~rgz{JoqU0I~t7j<Hgg4YvUIK(DA
zqFz^BGd26Mc}CSL%as(&5SDSGO*0b|ujyo)U4r(fO4F<PTasoO*E$wr{?!rDi*Qke
zrr=j&jz+zyD+lY7Ox<Yj!g+AcmY&kK5e1$I6Bxs!Cks-VdZYZb5=CAe)l8pr73QL+
zd7tpws&GbC_2%hxRD)T1VJPPc=~L2=_5J=6)ur#{0G-kaFt`v9a80)#YKpB(EDcW~
zyzUy9{cNmLLrd&mkx5BQu>52*31M-J6uYuAIgOrnoPs-#U|uv%c1BBM%k(tMJho){
zSnsHU4gHu7G{YHT_`zul@N>p((p62GPT>t5=IsJYd(oZ6Gu=hPM7>-W7T-QdwO)g*
zY$*m8GfNhlM4rRQle!RD3XhsbHm1qQQd1;EqBsv#GDx|OBNyS~#p9F@6Io;AJ~|v%
zl{f`GInvh>XMzG<iFKCR=aaGId;2eNVXRs5e*v7pRfyk(tuEfSOGd%Co7+B3rO^Lb
zDnYQ}STpi6$clrF3O$oms5L4C3lM~r&8LOMzw)IUC@q6sO-Y3CdvrPr?aMT!4)&xD
zQWs*syjA`hF`Q7-?a4D$PqG`#Tl(p+cv1wBa=Sr9v+3#kp-q}832EntZleMoXF?_S
zs^08|Ig+2%k3*E)r8kZ^>2XW+=68~O=<d~zKbgrT*3I452@WCa#K>!o4D-=sIJJvr
z&~SVjX}FEDo9v}mK-_ZffJmLjq|$c!x*u}9z5jq(*r9xJ+y)pp6-l1OWO5vxspC1Z
zv>xkKpFE$fK8KAj)LPj;W1aJj!JIIMQLIm#$!znRuygn!e4mg!JuW2;$WoUW9}kBQ
zBULHBuciWYkj!5em}pvNt+c@>GCNY0`4v(yxj<H@K70+yoU~<`ALLVAqK3?WHV{5l
zdKV-nqLnW-pM|NQ9q4%V(w47>!*4R63Yi{<Bu>FAZP(E*nADL!hJ%~Pj<<A`H_~qa
zC>-A8i!fpvSHgucWc`u|%XGIH`;GzO@Dr@=tBP2XQl=vA<|fnY%EVoa0AKB%<A)ZT
zE)m<GRDh=XXLOhEvgh|l-%IuVPJRE}B!R*ox*MX8zOQC875%ZHJcAF>W~#+xuS<L(
z-=WE}ueUyXg*(mi{DW-n+xEJe3CPqLg3ggNzsvGg38u<(pZwL&H(d$}%QK^y?d0b(
zF?~D#Q}P2*8@&ABa@L3VmbjlLKO9!bf`f6flzI2v21-CKi8DJJ>ufd&spDpo;*SSJ
zi?E}-U}23VSPfWQoMrBF=6hXonz3JF^SZ=X*#88neX<g#78#Y{_gH3nZN$jSN}S9$
zkZNurssBk<eqca%Br9M1XggVX-ehI8FOnrIFDYxEtbEn#?k_99Q>KipEapeAtlY#8
zlNA$`F4rD?+!sNy!z4Gmsg|@p^{I&f%Lwb;xjrcplT+>2X1qFA%PXRQnM>WD$<Ee1
zTid9xZyWTj*^9^82eZV3h{8Pg@>&y*%O``C>l2UX9)($$EBqM^$?2l)RLsoibvyZa
z+RG0!5mOk2Gk(R~)N-CTYzgp)G;XI4cE38rj{+OQpnwj%apbdj@(cfm!tT%PJqtn~
zK=5Q<){sY?&M_uBNDihGoEq`q@G~nx5gd#2zO2oogNV)F!f(Ifo*p8y5=ctN64Jw?
zE&*zN^28GP6gR3Q%l1NzjRmLh31y!dB*r4|(Wnr08gZ@Y#UN8=xg;}9qCoWWGQ6BT
zchrY|5(DR@tHp{|%H?u%{-t!0p<Nf1f-@$cn-WIik~5K^(JdA`&mGwLWlwsAyM{>&
zt>R+}mb)u7qrrB{CL|&p{>L5~hhG7DyMkUxBs-isy4ig@%K0rBnQ_;uf5FkQ{srog
z*pvD|jQ7su-j;hyYKf9EjdXuBmSiw>7csAu+MgVKthTp){^37GzwP#mSA|7kLjiGy
z9ZU5+Vttvh{<kAN>#M9!g6w8U!eML0JdFikYMB|0Uc;jKL4h!&B(xk72~A0QFa0*+
z*&Nl1_k2Ul<AA>Ob--08R}v1p8o0ouQ}+WlwtFPB!tvD`MBUZthsB->*i#vO*mk{<
z-F<A&)qV)po5zj67{W*+Jz@IM1EBwr9u)3JkDpdV^pGl)h-M?nLy+_Q2HMWfXIjCw
zZFX?s*>Z7R<Xmrpu;H{S?&W@$+p)<dzZVf#$Of@7onMHWR}-7U^l7J<kQh&KMGLU*
z1ff<o6UCUJ>?81mc}>b7y(5)QOoAs@E~USh5~X|T#WZFqq+F4d#8D`{CM@3FYMv$E
z7h~C2n!XK_=k6g(`g)56S>bNu2P4|l6a*7oU;n%okE2Us9hBJdS5dyHQNCL8^&z{P
z2~ZynnMQnUgzQVtyt&&igkzH;j`ic0g1EQu@5<N(SeAWKlzZn@^f+1gVk|3+qnxsC
zF#8$%aQo&u%T_r(%e?NYZ0|5v#ObExW%^M>E_c8i{Q1gjmVfjwv+`SSeG)DK!?Sf4
zfVv!tUM<YQe@4Ic1@{8GR%JY8tFS^-GV2Ss0H^=@LbA4ewcnhuCp*E|obUj+X+OTX
z;>qaA1nQ$o*FOB@#EOmq9lR$NSytxh+;gv33+}i)s|B{P>=QPJi7-t;0^R+wnq2uh
zfA$q6w}T4I)(GY-H_O93V>_64Mlfd?%o@Rb3ktgBDzGD%w?!};UAc$3>vk~5M=%==
z=0E=ixCMeaeP=MeV?j^mR^w736icV{Z~JD60d1$VqwTi~=4ip(e<v{OCd**O-L)Rz
zW!nM#RRl0@00RO1J9Km}sK5>yUN=<$C%bQYfVJBJ{7wXriotO6Tfq8}0M6MNKuGTQ
z*1I>DIiS@KUe>?W`3AG2+zSU_7YppM0(;O-z$O+)3@YV5QUkkqJFxfBS`o9<P^}lt
ze?Uj~k_zmo?G<W!i95mr{MV)Z@jNpEh$#fg&)x*qEdtoKGk}$9yV&m5;U&@bUvCGq
z&|qd3<^g-Rz@8wm2k#6l(y_3-Rbc0Pu={TZ_V=__ZB#D9c7nh<sOi?K%#NCmjIcK5
zj`T2Jx}<;e&oY>qRh-XdhHe$WxjO?G2v2E}Th9f&G{18@n7c%HdVQn$_XuoUU=P_D
z*aqR*;6e|xYCD(@(NyuBd;pvzfFD3g_l64WsNszQ7`S6R!1pKjZ}|BUK-vSqfdcq*
z0Zi-+Af}7u43{E8fL7nV9l(+ZV3`4YNY-tF09Ne;V03F(J+pT|-Wkj%KufJgh(Ypu
zg1Hq6y8lyw9ke>(tu}t8tMM@Fw!?FB1QR(1=5B&{k6<p^A<Wn#3A6YxeX*GS9`OS-
z|BLVUr{@p@+ZUeb9*~V2FUa588RRESkR!;8JmlxMgZv06s<Eoya6UtjKZ308EtTn|
z12;q@gNly)*dwivTV7wreak~$upQ)c`$PU*=IK^Jo@<b!Zm;cW(RHai_iQ@g73>Ph
zbig_NZ*1OI<j?h+AFb7_WOjFXqxGnvH+J}<mudcD-=MvFi_Ypw5Rae99VBkIHYbbA
z=V;OvQDHT><S+6%VDV!`YGhIi&EeqP^is*aHle7{K-V0ExKImxWtquD`FzNyt<5nX
zUEBr$#H&d2Y_>ldT=kJrSeXwH<|{uv-Pg5dWd~1d8rfMut%{to?DFNLxr5JwWN5x8
zSwDJpC^EKv(=3e-r)qpSl?<79fGB1MWSbPglW{U8M`88t+xCrh{Jl`81JuOYSMtIo
z1-y+E%;ezHI1cD5e;u0_4qg>|eB;1a`%jdEEetYBu_b?bhDW@kr+Jt5jhow77HAE=
zDY)=jDAChgY$fJurIDZVo*Ka7P>!HvfWbh`4dax+-u3nsB#IUkhxGEW?;{1Fgj#ut
zZZ3tve*}Sqz$J%W`H6h-+PR$a5xZ+eZ0>Yr<|GdV6vXCE;1_QLV(rxtSjMakmCNVK
z!$-QPsi87R{$vHO+65m)ktWu0p_0<VVQ0Rt5l*b*HAbTCTOr7gc;Q?p-tr8Cf;xog
zleL`O7EbCekwn0>+U_E?v(fGLyflipAc5n^3-%EKaYv~0n)4!mCPz6yOd%UOfhl=b
zh2N6jgy*(FSVFHjM=P21Q3KbEo=pX8D{%KdX9mQ5H_L$7pxOK<D)e?~n)=CP;UU{)
zyBA>+UU4Dl-c)~*EObA}f@UuE+$dX>WxHD{{UlzryHC|qJi`7)W;kFn^!gqnZ@-6v
zU)P_gnNt)9VY6P0dH#;g%1Vfy65QLX0Cu?`HUhC%Y{TL&e$P2@VZ1W7q*X&VU9Ipi
zPi_c8G;ZjiEYg)X{SfXd-&C8Yd#8TQllh7jrL4{$QoM%8A;q_nR=r~OzV5mb!dME*
zZCc>x8l>XJPi1^MYpFXA6lnV?7iYD-NVv^Yx6{p63L0tu${3&b`1txfSIv9+H}D6m
z(cv2>LQZpPaIKgr6B>k(<!D_DL=DwV3~a)K1hQtzVjtW|8=+m{`m{!jvFokB=p(U@
z>FFb6^PU=S4)Mc=wv9c6qPK4y(0puI_;Ul$%;{R0fx<bTFxdgBsTEid&5^iE-=l#S
zKT88YgzoN5-iR$XN%R$gs=MbOzA-R4j)=B)SsP@@paNFO=F^KZFHjhmLpHGH)0ts-
z>W6$ytmt+F>{4|13D@$e+si)wpj^fFQ3v-Ou;?#Tej`ED?9|hm#LxVAgdgq~9^zNe
z%i^95l~y3Dk@YaybyB*4YV7+INwqQ2?=E_hJl<VIv!klLZA<N@@X}r>5jnm;*qfNB
zMCzwn3GB_0Nu8OKDj|){jggkxpFfFPkPj0OZ{`y7ilhy2xd|F$Mdp=6zk3C!)hquz
zTN=u66kC8D;P3<2O*h(yM8-0wrYo=`IsEh&$L2kT1<XqwZwVS}dS>QypO~gHiG}Qq
zpN*qPKjAE8#;mU*H}cmumj1eb?CT#Lr_)QFM?`C;V~?Kbb>DqSGng03iQh{WE?nYg
z0Nf`Ny=oSrnndu8244E9=br0}?C<~qfI*sqjia-xw23WRpspk?L&172hNAc)SIap!
zu?|8>%ziLq!6pbDl-|AtGd@m~wznC2OAe0Ht$h6j`nvs|WmV?&*yDdMn6?(u5V%3_
zEbT71#|vl?%0$%cu+jg*<Rl874Uz@VCeQ5A-lzG$Fv<xs8=(|>GpdVAHI4{Evf&=E
zPD@1cSJ-Ko9QLQ@$L4trLAr|WMixETztOj)|AwAC{9!EyX94J`%X|0Da%!{Kli}n3
zB#Lq0(O+b$0`|d|1>u;Zi9{-|V8>Aqo`A&qorEX+62Nxx->_O$_=Ri$2~6b;Kazy7
zU@2YYF4G5bP??tBVoQ!X_#d_O>Yq06$A^K_2Dfi5Zq`?A8MUeF)WJSqfzQ|STG~l8
zD&blc^RbyXc<}bSo(CON+R>Go$zxgJizMc!&f?v@O{-(O!%yUIicsQDFOQ~Ii$Bwk
zqocj=11Oyw+7|ACm-n`q0zYiBlIG{Rvwx9kV{t1v(_KQsAI;>hwJLHXGDjX`^PUt5
zbNtOnq)P4VZMcG|ZHY(yhs<het{Hc4UYD;hqKwZK*E~92<6sFEnD`}Vp<60+gCxuA
z9RnVXkB#A5<lM}vD+r9mEWT3-4A#%e-m0}OZ_2MJbHQ>=RGn^jyEdSDGRkUbPWxu)
zK3Ym?^$zlu0IOI9Z)GEW<bC-=p8eup=JPDgUxB+%b@!f1HJSTpnb-1G>HhM?fC`fS
z8BuL&jJ=_)r0Xev6Epk(4{?lF>(}HAWj20Ey-Hja+bo3+SJ1>dPsC>R(Uab=<0-jc
zlxh?eD}m<M{Fx3Ck8r)@L``f6l6P2LI*_;elUVyqD<(3^3mFnruZ_)p!??n|*KAU1
ze_lTTIn_V{YL*8@ZsITwVe4JA{nRShRjivD4GNeL=p(e&AHvh<DTyaN&3rT*Fzt)(
z{csxQ-A*ja<UGw-3F?`IAGLynG65!&rX9lxU}k<lTyB~2@l>Zl!6><H=~QbdtFgrJ
z@V_BQ5JO`)^PXhywSm4-h3!z01@-0MFef-Xjl6gS6|7CjEHqN8glj{;Np}_N_%ZqE
z*^GS{6ka|1)KBoEi_gYBv8L2rgrDJIz-#vk^YY^8HwYq(_i@vF2|}4r5vU`lmJquH
zgEbQ3nyuDLzzg^@mw_6!s+KU4wYH}vdQ1Cc%6$bBXtnz20ro2|Acy{C1W^8peh10S
zWRiUGTNZN8lb29GYS`BVBg#VE6&!)f=3Nzx0Js6PX&J!WuAFF=g~K+6OYTn`@3jMo
zIE$w3A-2*|JDexO%m058afjc8kt-Cp3CaIbC_In7l;lcAYGamvrStdHeucrM4&+ZS
z5x$@&H6j%3nnQ$(85p?-*k2i~f}scKTl;K0sZlFa*BR_S{cn;n=n~$@&g4kQ+PCi8
za!|&1j$9u^Y1KIrtXv5Q5(s3{TwHPUHVs(&XX*Dl(+Tu3$>Oo*Xq3{v37OMMU6Mb2
z(h6>vU{F}_zw}g5?0g5OqM685gbN%kXx}=B&C1~dbLQ~ETae)e=E=2f%`4&7-@Ri?
z7Ic$Q?g;C~_`5_Pq|~vy65b@e73nwIw-&`Ze=dsjg36C|v@1cb{S4Q9XOuT=wQA+Y
zEVIvg`;*?11+<{}>}UMA6v?aggHvQrQ|HOT#d!xpaZE9!v&14dA>Xf-ndV`X_$Wuv
z9rZi&@vi?lgM)Ur7Z1B-rG4w}u}%x6i_oNV<ZAky2Jg|^;N}zEVW6EJ;||JTpMIP6
z<TrDTBCT4Me%ZZshj{_X!U{X0nfkHFMRpI@jSt%=5r`3p(UgXixqD#;t@)qqGw1Dy
zzSYY-jmp#xH|-f5{^BnFZ1Dy5oRBq8Kwk6Q;XA3}+rB{Yb~XGkr-l;M@LL8F?iOF*
z;rjkHJpae2c~^YZ`?=P<gH`!M_Q{P8=)J#>f_Mqd?XYQkncDIzBwX+26itE4KgN&3
zZ*3d(()=OHFl=sqo{J+@?pXc#7Js6$Rw4D}xly;7r(^)%;ZP4(qO7~?&o2DI&LP@)
z?y6Srh)2Euu|HJ{GU}7-U&Q9^DZ81oUQM-C?OT{xVwlPOtu?W^&+tO@fVz62`Ua#|
zCf;S`OT56{d@I!~Dg5nQIF0oAt&~B4`N~43O_aqohvw&pTF#EjyRXp<@OJco?w7(l
zS@`GGa+T$$B@6ezPeg}qxW&l49%12bBvNmcYzW_q+}>0zcPCo3?tKHDuX%JjwYxTb
zol(CGcl>CE7r3NPnQ>o}8X*hWTg>hH6H&}fI~m3@(~~<Q%CSE)%Ap+um_nC|?J1%u
zFgnj|HhZa58w*tcDZR|IAh-OqTyb&NKW?hgH8D#LZAkp5rJnbu8Ly!fQ0I$5St2=7
z_1-`(_pFDp=(Q{uW%`=`ptb8KC($n107K|M<MZWXR#WA6_#BvxPvG%6t2hfEQ<0vh
zz~>l`&;9YNuhqimiU$mz-Tpt|^Fxo%;)blY8GU|CO$e2@9FL;X&}Y!iS-JL9jsGKj
z?(;Bq=O!n!m$FxO=;_8k7(Q3kX45B^LDqGyjJ5!oA`Yhdj4K{<KaBSGc-@l%D3hM_
zM3U7xbg1dqdbQE+cde2D`SCCr<2J5kry6>xuHiPlC5t=Wk;o1vz6wWnXq*Ay5l=Dz
z9J-db;B9@|uRYvX;a_dER7Tp4>}zBmD>J6kNN88?E-ae%u3irnW@<e7iFdlm2pA{P
zRpCFfEu#@_>n)46sR3#Vovjp`w+6kHy4#4bQU0vDVoQeK^BSgr2#l%HE~1b+%#USo
zMEP?x=H-|%O@z=nXb9|Qo?EVM-%{Li8B!VT>tM`C*3&ArM6g#7KHjC)F+;t3Y{`%I
zhBRE1{>>e?HiI#hp`rwNxDT&E4`1uovVK3I4>Q$@YPHbTeqa0jbnAXBk;!7G?iWS~
zGvi_7JXWi)RcMQBk(KTv{JuXzSfR5Y^7bpA$&K;z0;F<yB{1yoH|CVf;E-E?Z~4L}
ze!`@zaj+M{FLnfh^3*g1hG5XjRGp1`VKx%l&=YiT<9^xqxTI>*0R3QQf7^iRW5RQ8
zF6Br~n_*bHVOOpjqFiFXMbr<E`d3^LRZMsIbj4D4`^{NI%(X|H9Nc$Zvnx}(uLfWc
z9*X6Cx@f6;J`PJ)Wg5>jr+jRl1#Ra{Igue6>zfp38km`h%6Q5_vR>o$dUSRq9TV*@
z^COLJwTGW5Kv3C{4|9_f8v(kX-^7WSj^nV5N<X4x?noobD;kN?ZR$(b=wagItl!i$
zacbZ1Xf!!-7AIQ(iD4jvE%MNjW`0X=@?QZoDjB7<J>^G|x{W(ZN=#%V7Oz~^x|gw`
zPn|OjU>Mq<7#8NcHIiIs#I?p{O63!V_k$BKiOfaOW%Q%(W>F(YWcujqXP#S?LuP`x
zAx>QFGOL!<Fpr%ZwqA9=a_Dg5<nZr3ZZ-`i95nstoy*&du-WA8NwsS2KQ_NQVsns0
z!xLj}N#DUF*nuzmNicSllA2DCG}I@x{B!eD>Y`hIX`fP;q3FFz0+Rhy<eKZfl0}mG
z0fLKX;QV9a@la(`KL-I~R7!s;q(2oo#E30fAU3d-?|5W~p?yQ6rXv~<j79`xZ)5;w
zHcaLT2OFmH6!&HYiMCde2<}BLPDX_@b6pZ*`F>J6L@V2_Pnm;)*iLG%B)RzYnv)D9
zNp=<3F@J*Gvf3{_DA8(&H(xubVK-{%!>ylu&@)Irpz9PcgCy*|9roy}^b9OGDexIj
zuB?4)Q><Nv;&J}dh~YPpLE9t~&vvJ<Fk7+6hYL{hsN?v;l<D<DnI&D3SW{ybr)KSj
z*j+EO1WM`jz}m!X;p}-u^~w5qMM|Eln6{e4w%T2n*CdwKvIVgw_Fy%)IxpAiClPuh
zfJuKi%I<_5%8#rY^tw51{cn#VB;0z}JrMI>VV#`s-_^-h8wPaHZ@yB?rs&?g@mdBM
z6dk)>xPVXMiaUG&qqXGlhxwhpPa~*%(kJW;cuu+z*jFkXvVH>ooImvUWcKoN`tch~
zT<<*=IlU;7(|-I}FM{XjuY7uJ&Jc8S#Pq3vANRhN^9ojLQ&E*-Di<zPA@+97xACnG
zr3|Xq%|4s6l4qX5nRr;GXgva4OY+@gF+WB%<qEunVGtVh7MH>`N_@PE1=j3qRY77c
zhaPSIBuKoG?f{LuJ}NgN^6KtAj90l+r!cT(4w?|0zORq>eyy~x?%rc)e*r9%2J~xx
z7lRqv-z52Llzf7VZZ)I*S`yvDWTuvwTZK?^G`qc@@KZQk)qcY&K5B!?th%->dA!FK
z{#Mx&uPGjvo7g|2r%WGTpB#K-UH8@jb;<okLA`63Sov)BdeQNQDVF^+D9w69wdN(-
zdh)1>%isNvEsTq}z}`gvyMyR=2L^51+Q22&{<g{{kNW5HC*Xb#JpvdfG9&5}AAOO;
zM~0pe{6&Im#H`*NkKMYwF7f(=#8Y*NwROx6E&Lw2Q30-CR59+HpI^_5ww+b!;8WIb
zYxeq0Yphe_zkV!zw>X=nEEXL25-Pp2`ARm_p5W~UJr<S>K}haL-=d2kkRRk}G<Hs_
zUpF1#K|pIhX=#L8*`Q{iA61;hJ?#-4qPIwui^%$6Q)T?X!giD|wlCsXyDq0rVD(@f
zR+BzkZ&i9LaX)2)hrvxhAT%ocOs){aYMSpWDdqf%>?Sqr6kL4-4(Y9zksoRur*Mu3
zBiX&j>Ylsp2foUN)G^RMNZxv_79@4bLff{jU>$284rAfoAO4ojJ#GIdahq5Q_fp59
zvJ}oMBe{CpbnNlA)JUJ!vp;EVZ|7~mP2E#T?c11tN{b?iZJY;#oJ5jjPIp_6Bx&a5
zL2@Qi^gds|^ip)a<ScpIuU83=(Z_Qk2vT&VPn>3WjGifp>E199+2KBifpt$vrZ{_-
z(~IBsGWAJaH$6LX*uCOrx26WkM|`{Ar`=!rcJJjuKk`;~eFJ>rfT+Io^_29D{!)$p
zGIf<v@e$wXcdgMsAgP|aiei62oL|T2yuleqb{=P@;Wqc{8_tOpqD=d88vlVv;~U?e
zPa~4U?|b%yys@z*WAHV5X#M3rwfVUd@@hCh`D(L+aq^8#ouF%_*4ieLEp>^%j(VwX
z^S?PHvL<%xGktB>nZgL`HoFFDLoHj7Zh-sRpwesF>Jl%jEGHelU6*)<T`Ch2X|7^x
zTkh%g0rcwe^m<)%P7a^{W)6x=ed-#xW+<i_MUCX0B3fPbXR*0Dyby4nVE-_J9i=3;
z%VNyrd!^<x#=}(koi(W|dw-chOI@PhVP-nrFSBzf$?O?)bOWAOZx)3kp#(J6hePf_
zDU*ep(!FN;{JS$|`&MSM@S_$lu*dEG@gx5T{iDM_=GX%Re|I08U3=l2>fx*yje$Ra
zRdVb*UgiPX`OT^OO!WNlBPLUq7a(Bpe|hZy)At}*laCi#Fq`eyY37hJna|&*%$ZEQ
z*gz}Fz0d4dY$;o&qzEgwOR&c2U{{ueXa379jbG{R*T2Z4p?`_1e_;xjKbkBEVoO%w
z))d6rZJf`s=HU9&hg6^3k8>xmy@BG{w8JM~0Fs68oJMGjOq`4sR$6Hv{auW}c)4GX
zkee#^RqJi?q&R54>HG9xou4aj*uXv<e!R>N9a|7Qo(Cm@wQslTvb#5f5pS@=e=@Dw
zkF2FS6^4x!;Z$tp5o}qgFsBsj%#3&|GvaTmQWE7SBr=n5&EN7UkgoF%STJANJi!9+
zf(nk4Z|dp(ej;eHk9>*AP+~$wly+UH&d;)b5a*5-MAFkQ1)S6KYg+v8WR|C6bIgZj
z9Dv_vhjg<%n&<Y&d^-HBtWtK*^yZ&MZo?7T!Bw`j`j&lih4V}_e|Q9vC7bJ==k5K6
z?|S~yVtFv|msS)uT?Df{d7jnrE@9z}^OZ9E2YPg;ifwUbn2Lr4t71!ni(0pGxM51H
zg0wjOb_z(W;|5EiTZ9KJ8gYt*NSU12^Zi6aQ#fqlas|4zT=0E4qUYFo6tN{My<lCh
zqF%5rc^|=oeZ9P@I5HzH(J4WiUuuwmMcjncH*d@c*SK#ecg8`BYI!|q|Eys8k^Y9C
z;z6n*Ih3AVj-MQ}i;a2K78cJ^M`L~5gG3Ub_4nC>DtcCC@nwWqcAhOJxCK7rN0ktN
zVK(vm(Z4h{?*%n8*MChGmaY))_}i!c>vK+PL#}J3byW*UI!9fxbXa<ibd?5L!t{rE
zY_Ao#EG0oc+Mz=z)H3pFUf{UAIEru|jkq5kSY7S^_9skNc9@Ex=f;WYIs>U7s_EvU
zM!8y43!Iyan(Rl0vhK!qqtAOx<)(%~Fq64#dqR8jyu1aHx47gjuEsR@IvZn4xY%|Z
zX5}U0K6eG7S7_wI5~~-~8Qa}aV)dGpNglOnneZQ7?hg1Q!e5eGl|B)onEK*FseK|~
zqfY#C+n}JNpz%>}L^hZac_|pN+P6|$`FOQ*5&)ys%m+j`G^Frqs}N3{26KeGS&}l9
zZJ;L^;3;I2FAE1`C=|y^1WVoj%ry$FsDMI$_kz)nK96~Ms1$wt5S%KDGF6`NvE(5=
zJ_xxO%c>Y%Zf!cq+EiQ445QJ=tdWIrtiw}pd6AQ}hX^tK)4TA}zn-o!1=CrKrw~Ec
zOIC~e(?<bvFT1J9TeUl^X!?&}a?LZ5w0y^?of*)(TiUE)AAEy`DL|*!+~kZ`;Qtr$
zmD>Nq`C-IKtd4d5nQV}DDl>MS{Jc>=hb7Eh#5&(WhK|c?l^;5YS9brsnJ(yAy2jZR
z;xqrv!B{k@tx2Lr*b@g?Jh+9nY76^WwBhlmqc(i>p})rc8`7%+I}FkEN-Rwl-(=Z{
zj=B`0dp@H-vmn*fAb*8?1u#GtGDl8@39S$^4rc;qmA7FUT6^tz*eedVGl9fGa$3Tp
zId3~sr-!{Jjbz{%y)p*7QR<3B)oYAdP)?(Y+>_?kC<Wrs{XAg+ki4ns-*O>dv5HhF
zw;Q&l*G$;VXL0Svn79PZ`Rs#?p0sb-C)QqUILg^59-%DBN%=)U=MM{C7cr#($bgRp
zneu0U<jV)5Eukv$QWIqen?GJAm_8olz(TZ477k_wOYbG_sl78+n}XLE9TUN19j2lY
zbRuJU#~<diH8N@ri=TOl;>p_l9^G}cc}*~4g-+FuS_xWzdQ;#v%X#D}emrI;PGDaw
zoJPv9BW8iv=2Nq*w{@MrxW$C{*=y{v)E;E~{ViD;_krhbmSyDA|NcDdldZv=oB6bH
zdDf>9DmB)FUsaBdyo<hi9qFh4AA9|1lK%VgJQ*^vT^iWqnb<g#0s2VRPOfHY;<H%i
zViik{*(YFJKUW9ug-4x@{Ax$^|B1nEpLu;5pdX3XIeD{?TNKx%^#M<6=Ev~`&E@<1
z@XXu1;=C!vdDJUTPjd~eZR?H{=h1(95da%+Sob$0^b1`Mkt{qblWmkqT4sRjSI`lv
zKgDB9mdSsOwJ*;IU--m8GnIbuGyM=9??;-q`p2La{x!VWXOlCq&|cF&7x$4iJGI6}
z*87#KF-2}}q|ueVHgU2@*O2}t4$YjikyR{xSoqUM-neH@kM8$yZJvs?R|v1LU~Ozk
z!$qyzaBcnq1H<CC{$dkt1c?+6)1}6!ljKZde&FjFF@N)G#450i#^^+vql*lsb{+r9
zQb^gCKg#FOmrFNg><bDxy}^6_#W$NvB0Y>W%0#-zJ$DG|kt}Sn(kS|K@FIm|QJt`n
zmAKtBAwze!?P|%hHza7Q&?<B9;HgMYK@K3x?`B<bk0?eWZb?rQZ|Y7Z$sL17NsZ5B
z>x+4zSFq%UKlBrW?{4zdBn$7`E@NOBfw6IRmQvV?=3ySjk`X8chNUN`zu^3|qrE;L
zX|l8U3r*^1XK@MuN1%m!B&QAP{&N5B_lM`d(!Pw>fx(5JGFXRO@!0%-iHjHFeA}^!
zwr-~-J4PUl$`FJ%m$&j_adXo!dRN(zLvda6J9UEe>_??Q;07n%619MwbiD<2$&<JZ
zsVmm5_*z{>%t78$WTzR0xq<c7F4nG~-;-iX$_wfe&j;-r2i3f^siyt^@@rZ@&u{7C
zMDzD*Itt3ihXwEH1eU!qqceu$WH4BpKA0o0pX}1^=})<YwR-8y8+9k?LQt5#FE<<4
z<$w9%gxG_l%WGmcFFUCN<yMS)`hogndDW?j^7m5bN$h%iB;8zWcDO9dhG<ztyBfG3
zOGnmZc6Z7#`sj2K!+b<35@bMFm?UzK5>Ox+|9uwszDD!i`n$Xo;jVbIUt#*-mMcA3
zIPIXU0`fTA@1p{sh1fOuY=@R-WrN@BpNz73=^V+*je8n_b${@PoOXX!0Yl{7MJ9@|
zEA27MKdv|s|NH*l$d>;0mbHdxzx2TxOzwEUw5=;-<`H_gPHVq?tfNP=8I~}*L3mgx
zJFfK!j6n65v5x2UrTU|0yP?n9r)UlqSwwh!@L2~Yo0D~zO{AUb{!m_o(~sIIRqF2i
zuDL-KT))~fU{n{HI~r#=+Q2=rDma9TT^JY7zd({6a*hrMnFS-?z>6!1b;e0#vEr4h
z53|LJIWQmyIYsN?@-Ao`gvWDV*GztEMt9qE&LiOPru=O|f~1Lb?k~+ahj2#CSn8jy
zVp(i&R#OAtb>P6*qHvFBKTY54NsU>MAlbLS1S7_jX=aVam7?g&I_%VZRwHtE=t%%)
zd2x!SZJ<OiS=@0@L|Oby!6VSw&a}M#ccM7-nTmB74M`SWMeEt}lbj~fAZ!r6$n~5V
zl}5Hpwwv|I5Y`hYb)+d%^uw8j#gJr$c#0;AdTFvVw5gx{JZEI1y%JV<w4W4Hve911
zJg3m^&|GQ;?VumpvPB}dDi1D<q?0Mm9NEw?2BAtupQ!{X?TdOuY;B%TBgo7G0RmX&
zu4Wzz0{049>Mk^BXWZIZx>yu(G4hjDzq{d75a!d=;6iJ5lZ;G>jLc-AgD!A(jH{zN
z!+KnMQI?k5AqrFJjtsR6yF?qe*!N7|%(fq_hvd0$M_pNyWxLX68<_3KvHdU4l||X;
zUA*~f^yaHb>GZMHSqSW|0v|9XBmAoj?hy5%$-?pbXJtbS^V|xuxq-eFpJa#nNVVND
zObO5*17-&ly8IMRAxL5CN`2&s?kNh-ihE~Aw|79U!0kf}hm37@bfM<AT}^~-|K^QU
zda`ir$ys<?hh7pDpf`iMM-X^NwgbMFmCb}XC3=EB^^<LPvblo@VRJ(~B3EPwTUm>P
z(9H4`#7O|~pwU@@RP{piHUPS{`ig))N(x>RtyBbd7>CwW<wpC$w;Yg#jq&>I2pf;|
z7ar+Hvqi!}+D7Lf{fdyj0uH%zJlsRGofbp-rtAI#o0fsMNRT7Q@Qhgn2{Izh>XB>3
zxuL;J&d<Wx1o_uU4y8v2ks!b7`?ZTlWM#C*T@$%!UXUN~*>=x9UBtS-??&1BbNU1?
zq4$3)3$6+BK~VvS3k!qW4bQpzWo0u#?h%=e@vS)cl&r5tp(_&qfkJnW_Y{H@gjn}F
z6Obn($fr>`b0+RA1rQ|*9~zeh-{iMVyo5~sTXl)&@yPL61q`8vr~qQ4G4jY2*1Gq6
z>(1UcE4#_@h$uUv1`(E$&3zAPaCIJ`d$((FtDn=~dpLf@!wh!hQ3yc>06~Ld3<!!a
z?z0o4deuy}V-tU0{rYs2o!t@nuQLJKz*=K%Gd=Rk=5J7HvXz27+Z7<hMx&fy^3vQL
zXxZaM{9}a-FrQK;|CoqV{Q;p0wTLmsle492(RyN~-b&o6HqV#}bc_E?g6k?EUKy1)
z6Vt)&Ae%%F_a=f~Z8(!QyrDL5AgZPknP5*g6j`pKVCT6YN<*3DDvNU6o`JQf4^~;a
zT@I@c9&=Cb3uX7A-}Sy)AAS85z}8zBwl?{|D5_r#?__FtE4zjlvnlBL)dvrHp|8v!
z4T1<kkoZJ&IDo|iBz0C<?2#EPCw$4`@=R`{cwu@WfdVs`rdgMUH}sZE`;S-bEWDg}
zEmar~!Ua{xoVkrU3y&MzM9=_NtC8`z78^$LyAeurnK69QZtUcVd_ywp*7*S<Q23DM
zBtrF8wm(G^A8*Jtp%P?ofd(u9YdOzP+|W3iEJ~>I|JORpvg&ME@9Q)OWvbJ<quy{z
z-37>CI*_-i-J|)d4J%DD<7nBL@Hntu;$9!`my=6VljTxH<1g%I2AW$=BxLF#n-J}j
z?_@_gCpbj+E$=IT2p3)LOW-l;nT($5H1s<Rri#FwFUuEH2oSzGu3*Q#<{M_bNprwC
zW)31xl`-m~XoAqO)44-LWb89oMasjV(}zspy#~o^H%QSwl%jp;uB=tNF6X~_Qqc`w
zz0TAf-ai}pnp`#c(SklzYnUThFFL23*=~GbYFE7ZVrxLukc5=C@9=~ow;6|7rIAUw
zN-W7F80<3=Xcbufl#auq5;tX>klGobQ=)ZIqt|xTEYAL#49d(nm5E5^aaKP&ll8Tm
zeX|&n#`MD)W|oSK3;jKuNHc?otZz{|$TtNE_+p_INKjk1kNEQ&uNo}?p`l7}4D7%K
z*1l*L7GZ9P&ki<ztKt4eEX`*iUOFM~TDp|3nKFNJ*OGl+a9lY8=*E38*LbGP3PcKs
z=BtyZdhsSvJQ6St4}m@GF3lpViFsl+6u-}?rXh)fI{NdGHaB|qB(tt~bI<e^vJ7J3
ziqzL6?#aRvkIm|-Y-VzhtsC&^lQmhNm~78;oBYgsCmSJBU5E)%qUBvip50oz&0DJt
zFJ*hbIpU4#r)Iwg);m4#5gKjj)whoZLz=ct3)CF+tyNF-O;0p5Ga(sNV!&wkS`MQx
zscYNfH}3sJWuxIqec09o7WMpGttYc<ott(eo-MXy(K93vM%Ot9R|hx<@XdDJW01Up
zP`f9}H}E}6-B$Ff8`UnaQIAhCd#}uTXDr{FUaEIaI!C7?b!ywXj`2;)p>%PT;ZO2t
zjt<#-hGAG;NSL$4k(0_fs$PC4w)cxYygCVa1^Q^*e;6V2lt-%0+9E}+&~DDT7n{|g
zujKtpYf(;>+?XsHBHD`#R2`(VwT_M@mib1jfz{Bjgb727irVx=qWPG-F>vIUEdGK=
z<rsO25|sHA9|+1UPTgyeeY!8FG6f}>a#J6{VPhSvgk6!ZW&v1g0Ad{wIB!|2!13tP
zBZ2~izS`fwP-hDF)glZ%cJEP3?{`R+rQ}K3U8X#LJtT{&)<A*p1M%x@5MslUo@|&t
zx^vCOARP9yDFpX%$m0C>)j`1JR>LDhGYNyoYEnOtz1C9{^>Kb}(S2CP3ByXo`>-04
z4Whlv3&>ln`p8h2hO|8`g~3orF^r?cCg&TGlGjaTRbLn`?!~F$*I#JQ(UHF)_N=P~
zSIe_*S*sY5pSnWYNSZGI74qKY+7!IVOe=j?X5Ex^Wg85#j4PecYxctqB7Zo#IJQ|G
z$gH^b<~MNSZ<9jhn7#}e>H)ce{O$$91~4-XO<87Um_GcQP|P5VJWF@0!itlHw`30u
zMJxA$W$P$!<%gQ>F84VPDaisTin_ZafOLptJK1O3?YOLLHU^jzWt(i-_V?M2*&{2P
zB*&c*Woxo*Tat#}!0oaf9%XB^Y-@bBRoSDXVnHj4vNc$?`+T-%hV-v=qp*P{vn*S?
z&vyNG*&dIw1(xj`pY0#RvY^=j^(M=PN01@iSl`%ZV_7+kbeHhK-QB6mBVET6t4Li-
zmlFQOQCz!d4zmvCCtCzfzlYoJA4#^u(*|3_=58d}(I8wBjSzL%<zE@&Yo27EuQQ$q
zdhhG_Y#2#IuA^Mpc%M}l#*r&HIs02w2vJJps>ojIilLj$_&>U<kVzIFTy`*50i^P2
zjAXe>saOT|)J1N}alX7co&fPh89>E*XD$!<TIw09bt4F~P@nkQECP)Hm<vSXu&`~i
zwv2$&WQOu&-22e1jPy}?Zhtbmvpkris<OV?bjXcY+4vSe;=!y>Usu5ynNR<mnDxoV
z_GjCtaKR$-VOz@GRqa;$XWz`qX|?}?iJ)E<3eN^5BnywO%*ts3Ig=02v|MYS<SS)9
zg?zJ$v+|i_oJu}-o$BkA3@G5$(S3{)L8<k3WR)TeGtcd9cw}_@&z@M5vw>q<^W4X(
z6}YYZFf?u?r#lombbI+Ge)EPb(8E>c6q|{s)(@}9`n0z`9qB*Oe^z=Q4N)+!kEwJn
zZEYnFOESpiZ0@IyBuxfus;-OGQhPnrom`KARM`(*_KK7!^0%=*ynqnki)7_4#mY^Q
zm79i@^LN2IhtC8~-#I%AC$n;~sELLLl$Ic4<|UW^@?;sddsZ3h&ExzHk;PUXVa*)o
zL;!t9HucOxJsf58HsuVT?K^vCK{ErIv}{>KKGf%YZ?~+R#_J0sfZqBP`fMwY&dO#6
zbWD`Z+u3!@V1VA%!CBc1y<t%{Z)YFz*`C@i+xx19#x|J%Eb`f|8<hpk<aK$J&D+^a
ze7275pe>HFd76y%*(Pk4?aC;dH=z6aY`@CxQOtmzX4$d~XucAXg^BG*SHTB&VXK;w
z3DE9c7E_Y9ePVxP6D0xqAxV=sV3#sp7Jk3G?Z+f13y;4uiw<RyjZ<fs1wpbOl{h1s
zSTXzoe<%q)FD<{>&gXTLt~F%e$c`v57+0&kkUVZAA3oo*m2F3)NtTTPidBRp4)k=I
zxK9>RGQjTOC}+maaj$!rbF#ZjT--dD7v+2)1M?3)=jiNpJu_vm=mRwQO(th239bY^
zbDv$~Kgk}-F=Ev#>TUv2GxGHtjIzB$>$jkErn|9E=zODP@m#T@8Lmw2<q8&|)a}N~
zEZq2TNmj$l)tv6;$ewp*uPj&?=CACNJ7HHwQSW`6J^#dLr|<lz*t~kxwf%fsWbU8M
z9EP?_%P2ou@P|(O=`F?#m@{>BT8kREjxaRl6ku&dY)D=jhujY@UI14%kPVKt%byR2
z{rs1Tl8oJ8N85*sDuh8ey!KA5HNL@=ok3k|W9K!&n)is&S4hXSiOgZK82Cxhw)8^`
z24S0As=8`=B|OkHi9dHILM#DQg_Pe(aOL~*J2R7V|Mgq4aIft1Zq3M_GCd;sfVM1d
z*y78P_Q^d*2v_P>Jl$x@uOGcbPjBqa6r5M4UHDVD<>#~=oZaE8EFNwKcW-Fg?$RKv
zj6E`oz~P>jP14g!tvh1CS?QLrxDSfFE-`+LS3q2OBjXRsjpR7{5dlZX-H<O7QKV_C
z<gj;^60KnqUThbtN)zJmW3cBOsJx}N{BIH4Pbgz@zX4MAAP5Tvq%P2;1*7^5()&Ee
z)LOFekI#`&jkxq#YXnWSvx1^X4P%L-IgS<1#E%~+G$sAa0osrT-2bpdxN27S;?I5b
zQ-i*jf$$`O2jRHl|L%^^-Di#wqO1?y!+f>@%+}WOhqg4NpQpNE8SJJ&Vu?Vb?NV{W
zcY$4veeBYH-x4tg0QRSF`eeVn<9=Bn9adsH2dZUebo=<5tYsqY*cv9W+a#ZDo6JHa
z?)Q^TN&k%2jAzNXEEdBs1m4IH^`~7*x(;m%leg_%B|*<pBz(>YMl?mbf+jtl+dAv3
zm&X>`cBGzV<Yf9Sz1A*)>Nd&xlATNUnMOr(bOfMx-mHXbHsmeS3&DEbTu>Y~A44B7
zhF~Ndl0FZmxqKE)8e^Mh>%&vYa)N@e=GRfQzWRlD>_^Ku&MelUNJa5aE=-a87M*So
z%H=Zof`xI-ilLlLDr;vsH03(^Q9bf})b8|&J}f0!Ly$^+c_a7g<XdRAqE1J$hh$B#
znTt@joj@3?c5qB)yB72Kz+hsjUcoF>A<s#~tFL}>&ROC$J?d;Yi|XSX;aW`yOC}J_
zARnr#zWTLm(4TX({IZ|FFj?s(ZntlVuX2ol8R)9ldAiXe6#|)UBD#3z;iwymoO_1H
z3-}ncJuMcCNz*4=<aJoP4+I;$kA?xh<BArj`;{2=X^OEoAx@vA3EA?TO8uS`6OX9V
z>sQ82`>t${`|J#R{L3Cl_N2}%OJq*!y+5=ZV+SJI=k^O1$(`SyaR%aEC2_BmxWlff
zUq*XGOt}fnE|$na(~E6tb-UVW8k(DgU=_**Np1GIcLIDFfqChhr6Ya%q5FH!{O{_M
ze{S`eqkeldTijP4@*2$<ppTX4W7Sf3x~jafUw!BNclF6-wEE0<9NDkF%v@_`s;jrk
z4QvKUU!SoA{+Zj}|FZtVO#OOs_uA05kG`3>lW3}?ugOjSZ}rFK-6Y64@%WJi!mx_h
z^fF*v4-qjiV~AobyY^dRX7m}}GR0!LVL@jSh=lL)OWYbZW5^(u!GH>u05ImrND(#a
z^a-}`HT+e!mJTO<zfP6|W+t<{hdIGi18SB-uh_g!kMDLe37+Q(RG``4Yb$4-sld_1
z(!Z1`KUg+M>Ct@64}m@c$z8gt&r64pb`znl8iR^zNgLB-gL1@*&HG%oC-CXNy4@z3
z`V16?-vh({z~9(B)AF4CM5;l{dH%pR0i~+}=gW-noTH|*NuT|*M_hdyI5XqA=9-h#
z4lER8q!10#d;_g2ag$kv6Iedl>82LuXsggR$ki$gEv<qL+PU*=dWkjn<H#n{+^D6r
z86u?@7*gpsTv-oMin<vttBL*iF<oXp=e}R9#A$yad#z-b32&cMs~VcvusE>o%T^dN
zr;u|6ICYa2fU=wwt)YQ?iJQ>vc>vM%(IBXB`VTsFq>+<EVjVAvr;sdm!!x`=wya6>
zK?jQzm$M7kwp2ir#$HkydE%mH)u>NL^`r;YCI&wm^ehjmUzu}(_R%#F#W=XKrfsVs
zSsV~DT>av-*Hikbo};2(#P`V3Wx2&&x~oPG6A}W(QkWdH=`vJGpt+}q22NF*u}*iC
z8%(%@!0I~S1oF4W7@`Om3S_tf2~#J)0(Zbf6T5}}(fI|enM#k)#}7>M7VlsDOiW=h
z!_dCpSC#Zn6mSg5gm#Kcb;4<KX8kD~+7=|wDIa4jk)~$MUWs04cB#82V$Wn93_(+A
zG$A>*axdLua$+%A;rZ-))NgqY2bv{o2CAwecUWXQOFT7<T9Bkka4Nixnl!?s22WKK
zb=Ih!lZZt{X=gJ70-Sig7LZm2o7v*J^@REn-9i3GB4NFPz)Y6txNCt?>YnQYALu!m
zdx(fwh^!|2Lkpm=X+~5#b}Xus=@)NG<u~A6`Gvic!u=k%_}2;58|Lg@$F7Zey8kDA
zXkGPdGs`k#+<L~krt|d9ts(_e<UE$TmrphJJ?|gOSQJmyz`or6C^qjAmB~3DPgpj{
z4qtAk3qNj5!Ls?Mw)jIKGzIObzi@e7^_J$sC%-^(gG8^aB2rMU)O9`SX#v-yT-7UP
zqL~&=ZVQzr3R95bc3t(w@}sJ7#|k5IRft8Dl=ly%pdKn<TYcS@Q><+tZKF|#=9-J#
z_RY9_hkXrqpw;>%%BUO2*ty*9V#JH;E^PD>d1Gj_JV_)X&|8E4z{lQR<UC<?RSrgd
z`eNr1a@4Bmoz<U2{a+xQ8fm*pPn>||R&Bu1A#1^LexJWBKP3Y;DW}+^ytR!_vG&c%
zkQ`Qcy>?6w=2V8Q>`{K(C$7GM#772?6PifO;Qsw#{Dn*dp*N&fms-81g>8D)K)Jq|
z24=b~8TjOWXcJa+BrzKF32r4rX3+_bWx%AL2$Bo@ZsioamA7sMq3Hp5{_W>|c<Ka~
zVTVRI+C5ej$}6Ki)!o|I-JLoSQj+HPDQ~oW%36DN^Xp9jTKyxn1*#KRWZgzTdf(vb
z4bRje;Zs)i`Ww)@3A7CLAb1S8s)x!~#O5ETV%-}UWvW>bFFw)Nh!+p(J=u_Z=7QE0
zIlkk{g=*u_eFzhV7ir5myjBc)Wa#O#7x03}(OhABSff@i>=6;w3AcP*7+{%<A##2+
z%>dP#vU^yGFDe3kN8c7CM)z^%@NZ-~YH>z8%ocg3^d2=JrVI~$)`zf|GW^!0M>che
zF<_Br%2Q&>Q_-0Pi#${O5d+^4Q$8MNOi9~=fxxHP0b#{Z!7aYPa#SO;JG)=(x1v@~
z|E{(-1_=i8-FV;n#WYS=^Ar&VH6nf2UK^j0zsO>AuAK2*WkYQ>P#4iXFzfEDxO{-y
zBl#sq<jznaGETm`jAX`$?o(WWZ|&uu(v~WkpK)3G$=^EP9so{}=I9S7$iBup{=l~=
zlpv#fvE+OefSK$M9Zd++?DBxUse@{(mbK6wy}~S19Wg+eq3E*&jMY_l%^5c8CC)kH
zJdDU3RbWzeJ)a~=t;QO|I<@t8Lv?Vk1tptYnXJjEV_oA`UHVVd(-%oZ(~wKyZ6N!M
zR3^z?`fo^}4LL@Foc7O{1TXuw-FPM<7`ZX)k!Y8A!hmI|v%x4I%Ak{mevPr8L6qJa
zxBQC%`z@a0Dpg|SWIBXQ7^K*eA+6gEV`r8~*|S17fNy>+=-zTd(7qv`?P_*N@~Ai2
zq_vBtG!lfLt(|iLCp?taCcnM9rgh7%Gf%2}^mhMm?|M$HA(U|RlDfo4!J2pDu_Zm@
zlCw|c0Nu^gyQIXWRHFe#86)ri_>-8#BbtW<>aO*#Rp;UCLE^w*GxIFX<)s3Wza0=e
z76S5KtNaBWE7O1OUrl0#<fnv#cn=b{a*@agX7tSE&-uCiqlgK+3QSL6lsqVcIL$C|
zFq1sb3u*Z3mOc0sUr=9O+t>L~Yh2Bu5lou(^@-y#o9RR^7OKJ&xI82Jk5fU<36#X%
zO)rft*{`VMO)hCfcuR~HC4#!t-E^{yhvvg7q)cT}rm|jy-Q8-r!A1mVgWOulk|csR
z^ExDRy@>6Q9wPx?D)0oz*q_34pUIleI226W8|Ru8oBlEF>h9-n&`su)2O%`j(-X9f
zo+D(F1-za6mffKO^LQ_L1TPc)!%_1K$`I;sQ8|ATi}apY)xB}ZsMk6Bh@-Ctjarj<
zqdQ$PYE|MkWl0w7qbhpm0tK~?-{_I^{`$o-q-~pS6U~_qG_N`7pJwSg$~W*S#u4uy
zMo;x@`dz|P3W+s|W+8B0CD3xkAF$^gHU*aET=PthX!k)=W*<am&W+Je(MdWs*?bsS
zG+CWvQ)aZH!H*lRF>*4BRbp$6A7k{cW9$M=Z1_c}Ul-LAcr#wZ3*jr2iu7#X7Hc_5
z(LjG5bAC(n|NP+MA2PAuasUxgZQCxMc7Ah9Y3z}SgTK#@i&~0fOX|MTy7l;2#~2eR
zKRXy(BFHB{3N*kjEN|75DW4Vg+nm{jwgfL}qZJD+I%Giy>Z}40iQAqQ#fe@~0Ro-w
z>`Fgm0hBY9i}p9F{SE4@W(DCuLb!rPbgaaW0wp^-&rU+lBz?ea-LuhvgiUbRQI#SF
zn$VQRh88Caus^kf04w&<?NT2W51C(^H=%k3o7=i-7o5l<E<L~m0M&=5H*u$Q?E3YT
z)2eSEWTvJMmY3&#YQ1g*wEe^;)3Qc2f|X(*Xu34uXhNFw(zVYA%TH_qN?sjDPQ>QY
zGeG{XFLO+A5hl1U8GK2<Ht;0KI<!v5%wUIK2$*F}e4P47^LZJbCy#peXNN(ZUY39L
zYo6tjK%+m@UafjE(QTb8gQTZ??9T0pui4s_>2}6<sm&Oknq_g0G3~2tcy49C8lI`_
zj;OLIULs;K`*XzN?W%F#8EZ!3l=tZyuf#v;Rq#H2wDG{fnwsB!zGj&~+5m%bdSWOx
zpz!bWWL8D%<dt|5I%r;pPtb1{X-<75XmHwN1(yTxr3T*PVQ4jNSw6#1eiMF2CxLVk
z2w45p3<MoHQfTZxDjC*LY9hIaMo0dzm~tDCIm~%!p8J#~B?(>y2$0bRW^y<aClUuz
zC(M#p$Aw0hapLrNVthjoo=Dd5V8p;fpy(lN=GMJd=AmhmS@T6<agjA`lA3l^6%j2A
zSjOU!j0K%>fFQ_ULu<362&Ta?q5}{}nB-S++=ZRdCs8v=_SH{6xpN5IO#d+~zPnT8
z>#Ji(uzYNl3NIf!2~F=wui|3f!<G5{fa}2zRJ^B7B?*#a(X^VP)a%v{7S`Uxx(~ao
z+0U1$Lxh2@SgZXR!Rl9u5Ghi1^go_XpnrN<SU6m0aL+Ihpz(Mzo@iU`?i`r@Ju3<B
zcbxi?eouGZ-^E*ycvY7H-^Od|8`ST<WHga_EPD>UPo9z;<+FsaE%~&16L0np6L0nq
z6R&4v;!E|4NyquMXI1nJc*@4f)Z<C%9L7&1qzXh06*$T^1sRKbpq&(_RnI>4Y(|{?
z%JRgr`mm;y8}Cc%I0Pv+_g$dW^`L$=r9scL$YEJ+SXkTvJtB9u{q1;NvS5g=Hm-r>
z(1x4{)t&jONB9QGhx^x8&|6>B%C@J~Xw1oa*Mzg1ek`n+1dxRjtX&hU*fMcp7el(d
z5=PJC)iREP3eOoZIBXtJgcmkCoIRibhq;oqMWmKU)``rhp&n?2EiOqt+&!ffgwti>
zGz*xsaV?TZ-FbVCshUjKy{E;^zUPcYIW8A1fNl`Zlw1})92+3+aiug#T_y(?jzy|$
z%1D|(UWLMCv;uKc)*^7I<U@(OE5ZmanNuHCnHVRniigE_&9%+-W6`ZRg+?dFHt;w!
zF?LcPbu|X)W97Y&+@qgMT37T{==x_C@651Jdlf{2KthSxFsI}FMI1xLLXErB*5px7
z-j+k3ptpi-`rJ`&xzU>{xdOR1zQe~|_7ZEMxhm=loT@OAdAG$=3aSxyZMFA_kiqY3
zXZKz^Zf74|j+%FC4&pcLq=b9_STp<I9b=CMa7vw>ZT<WCV~f19z9uPb+aza8{+P7{
zWwj@gGL`hql{mAcvJ3Q^=WQy0n`P}YNl9wi3w!HYI`l~bqkiB7D$qGcY*865_l-PQ
ztBFw_<W93%SgS_K7*^dTxuQ5%Rc4OBX&+`hY%(>eOo<m?3eJ*txXRuf_7SE1jS44^
z8k9@E28?S)FFfu(NJkrf<wWYA>}Her|7i51K|i|mqkqQ_1zMx@*YxD~qUiSq`z^me
z8PE;N6j#3<yJ4dxH_KI1%&u>*K6Y=|g=0Q;2@6}UMO(UB<|y(3qhsyplb9Q1n{8)`
zzfn$(RwsMvZR}<2>Z5Xcu27POgSXjXe#G@dc1m9$c;s2*DLSFn_VkB5I3>IAcW-=y
z21~ItgimH7fTZx#R{I&F#)y44dpS@eQx{s#HSB+^G(9<9g0;0s42Esionj_j@o&Xc
z)|-R~eXW$vNM&Os4>I+Nb$yXLuU`HEd1x?8&C$Q8OYsfLZG#*C4oa{~Z<p2AUupgI
zxE+m`h|`e>pSHUvPm$VJCMHz~dywoMJbmzg44!`1>s#fHcg(-)kZR?g-<m9(_43z^
zsP5FKJqe90$Vl<Jhfc`TPPIgrc%#h-xA78Na^s^sI$mmdM`)lg4RlUAm7uadd1Aii
z=5Hugf#m4~pAm$V9J4MQcElWuE9%?;foRaW@Ww^tVF$uuV%G&WNZxJ_l9FOcLlCxk
zX}{5w?vNW>t*9+9ps)EHlmwTk+LnOuWfF4*GAvv^+obi<AaR{R4Ci*KWO&_edK_|{
zR|mNyh?09OI$@~Pv=r^7*kZvcz7{w^^6}pY&y@tsC+6x^q7lb8PyL@<klkr%dQ%V*
z<1UBg^TGVQUJgD#KHvx5Q)-BbU*Q9Hc{)qWsM_30Tq5<NW$vcmcyof}MLs3Hh`Q0l
zcT2)y|GrwpYuPhM46-|amj%R@kTI}WCO1#DzDuYTJgCB|vHbT`Q2p$jZwKLiuf~@A
zaRF%SmOBRzXUq<Ze<g4$Th0y=`zs7gykpPhIpOdmA7IxSf_M&Q;&a^t3TfVN4WjVV
z1dd)Ja$VhD-}nqYnSvI#+hMZZ=;niDcAxLACa)l<C&3cYYi?8Y`!@IXQPv5(=^wRk
zqXy^oszI;J=ITSdpFSiD>#2mnG$ixP(-edlLL*wekao3f%u<QBHlh;u^@7hG|F`=7
z#x50Z+a&E(f3rm(>2K_b@$_m;1tsCGh<kbaR!%@#R46?-tAHCDIy?M(q26ct_gz}K
zAhGi@|6@?=XPh?sJ$}HUGPDH;>C7JH+XmJXQB=JymRyZm)?r$^-z}&Q2k$u{*?<;3
z8*4v+G7~s{xclvbQ^N8+CRA^n!46>KGULoWi|VRZvgA=f;ry-R!by9;MoO(Gp&rj;
zmIc`;ie|Dzt|>?kKBlgk1E~+Cy2tQ{Y38uEHjJdzW=w7_ZzZk1m&px;rK|Vw1kfdA
z4PYOQviLQdj<fpJSo>tv2M?Migat(!|4!xvnOOTolGRBq2B_+{rNc%sYgP~zU>O)D
zxaU~SM|K9S&YD&_iURHvrj?YJegYl+@i~NcZXl*c_;`SH0(_=rFyB3++{wa<^=b@X
za1(SqaGtwA0)uh_<`jXsJp$9pcgqZz3J>NQa=Vp$cMpRXYo1qTH=s!s_Tt{?N<8k1
z{+3lKGL+|z&cXflvw>H>1KgW@rMs%qNviY&0i=%1@-F0E5xe1ixYav(!_Mu{4i91^
zF}BQ323l^y(`5%ag|n-Wfz7e@hg1mCm<&t~k_E?FQ_UZpMGWnK=Idnfb*^29b_syA
zU&l;muV@@)Aedy0jIS3GE!-+!>bEF1JARngUm2UHXt?@tH>O%*o!Z{S2R0saA>lhx
zxbD9f1mWPX*6HipN(dKBwa21adPt1fE&X*(lF4i{Q(_DHQ|pqtKP4laa=EyGE%_)}
z>cjkcJc!l267Eay^F*{csdvugGudVQ6#-Q?W%sVx6MohX7w0t<?{jfhWEELqmH3H1
zEl+pxTXAd?Lgtg+X!*8G`&7+(31O*|jgzF2C2q{;vKx#Am}=<MI#H$#X-FB_oVKTB
zikKK%&}1a=tKk^9$@bG^FmufzXYpx@%dkh+)KR)w#3-N)Kg&J`!p?2D^Q`R^2v=1K
z)S*ww!qc)92;-CIE{n<taz<NdoXRxt$^G<n{><|={(W1PCLkes?ti~+M*rQz?Xlh-
zRCCqgS?X>FbKUGS{%<D7pC)DHumIj^KF3czsGI#G=^yj#5nD30K$vk{@VG+Rv^W-e
z7jc8tqtoa(iFkBpH&{bgWuMOS4WT;sOuy+xjdTYRbLys^CUODKlJ-#2xlvNwl6naF
zbK|0<Dofg=q@$yxN=tfONzEj=^L*XQwqwjKHkt1Ze-qs~i*12B>aXM<YCgS8Qb`Y@
zKOl$Y0^b%%2EU5b{z~<KrS!~YOWj*<Y&W0Y7hgW(65s(qD+j<U6NE}lLY-hhoBr)x
z61qMc++bHBYLTld@|974H0Yu2<{%43JHck=0NXe?lj2SnB5hgyuiA4N^+QU{98rIj
z>i5KcCpx~)><f*G{0?QnlH>IGdAJ|4!$4^j!lW#?P$8|LNS~o08T_6sQbbc<YhH)C
zvr)M|>h_+eQT(r8=X$!$G>+{O)lbb#^MbuvJ^gKg&R&BNoE(28Ht!7aVaID8?ncvg
z@knFPx1>+e2_CRC6Hwp%-ryiP^hX?rIv^O>5ClZ{v#*9_?jrUnwQnu)mvplBv|9l&
zH*zJysb$q4O)ChJr}QLVG~2&ape=@&@ZsvurWK?cdsar@7WaMIE2v&Sqo8x;%(sax
z#EJlFR#9Rl2Z>Fe<c|@p-;K^>>-3ZDERpTU8?}jUg$1+lcSsHHXm5?{XS|bsAQAyM
z(>pxbaEMuf*X@B7_}!c=9X|lX-1R3~jz@gP2mIq+|JVbIoMHoA4*Rm`pR6r^&HHn<
zk9o)U_G0k6s7MTWMD7V4mh}@F+T3mlH`@%0j(81{-{ai#&r0STY1dQyy&#;ucTx40
zmVX4{7!E7h*0L_F-Fq-y#|9wEcrVs7y0leB`2qdbe($ds<S0s+bI<C-lkt<jQh(v<
z32acGe+8fGnXYdoe|@;GZ7IWnv3b~fBEl-_vFz$sCyZQOKl0VO#OJ~0^+9(Jkyo$Q
z=f9ZVTL%W}dtKr=Er<JK>#cTlqfw{#R(G?^F)&Ds$@E1R(RD*H(-e$JefcCwcbPks
zQKtH*KpGX-BuJH9zDmuE|B5Q4Z9w!p+gO2}-mVVJ(~u~HK6T)7-tfjU)FHgxmg{cU
zd*apZw}*_{mRLV(E!R7YdL!{!_Xj1TUQIlvEL1otIrLaN3Ap<`3<;;owV#3)=g$Tn
zT|z6nKp}BXNl~J{WH6Xa+6nc;!bdOD5D<SHheHQns5@61Ci7b@oh<8siSS*f+F<lb
zVB?U9N7Yht6}fuVPfevVDYGJj=X>^OhKL^6?Lzbe0$nvXOQ6ev;SQsB6!1j`P{0KR
zP(^MJeM%O-{@1KN6G6yxTch4%Y5+Fwr@m|bER~gw0}b-rOO~x8nh+%C6+Y(^uV&@6
zF8nu9&g?Fnrppq64wS&2x&zdYzc8LZkJWjcjR-o-Ks$c4ToOf1;%Ci&0DegdypSEQ
z>6pfh$m)!ik!%}(F|!;u;&qm|QWok=Rn%uwx|#D!A|agWx&tG~kJn}4Z~MZW8g?Pv
zHiGQqJJBy)RyHF@x3bY7Pqz!n=Dvh4E+x3VxDvuB#x;p6Mi9gff&LmEsW>k+irviM
z1YRK_bUm|kHD!{}V8O=?h<d@egaRd@?};s8vPq-Bp_uw~Gc!UP0LMG^=bDE;k!;>A
zEZqGP32XE8|4={!fE55s-9_~If69k*m3>f^xlTtPZ)SD%LH0P)Kc2D&3#;P)RCglo
z72<gLge(!Z!k3EPy<{DHDir-S65@X33+(<`79VUM^UC9_nhS^kPMyo?7unrymc3U0
zKY2&~43roY#*3J49H}r_Bzv#*-Vw=o1EM!bL-~xKqcsfJP)T2ntnRArx)7mDce%?B
zG;Cg8gZnYJUw=Jg`cCQ}OM9#OU=HC<IeNks)5k;y54p~D{V|FQqo5C?sQ=5t(QPO<
zRO&z_)r?T=z<)41u>&6unw%yk&_Ip;Aw(l0M?{47n{fth^}6X3!-5BdV_gQvjepB^
z-)z>(rt5mC#$NLm#6EpOeFL;QudfO2aF6h9t3mj5k8q!XxB0{=vI9GaPg4iGpKN+i
zinf=SI>8^Tj%MA^6|=vks<ezcG0_Z}7SPqXLv)fj%3c|980`!v?uW(!1TXME1Hl$A
zAduO;%V}wzTI$5wxAwFghHSt5yl?9)&DFM2tD4KJ%z*x><pKU{!%_}FZGIs#6K6r_
zX_d^A&v_!c@_zcXaPakt&bbuAjbUuf9y;0IxBANjmflwcE@OE0_9jya7>)g}F>-f(
z-GpZ_(f6sDeO^!wKW3Z_FAzkzygB}~M5jRnh4zuXH4i%99SSI=Rfw`>GGdW=#!y4_
zsiH~bKi|ks(ew>D+T2f{V)G<H-~e~0z-(}667Z>EFf>~Xpo@utcX?z^OVzs=c^Ivg
z;oMi`yAhvyCf=(~pk)a3GwlGOCYUsNsS#h$gM>O(3+z{yeS5S&r?gjsN>pE?_(^-1
zJk;Fsg{Lu}%UrJ;M`!}9c<;+BJ61xC?g~1?h+Kki>Z6YPOm&izYW+v33hO_WL9DSP
z&u~lKpwvU6jDaORucT6v05>MMaD`;r1xh@fM0Y&6=u0Ywwz;zB;kDw;vS^;e@7TN!
ziER$gDc;!GHD?brYbro!L56`M5%#f+9U*TMFi|f1maLsyprur=Su_R$LRajI4WMkz
z(z<N))N>_dWX4A=vStfM^K;;O9`$A6x&!<6gvYl`^5Ms@z^Ve@ugVm}`I=>agm6U&
zqRBJMLHcjOg%cU4PP&Of{@U2%e;+V?O6>8C1E!HSuD}{Iv|9%N7BKNFX3=mz2o|49
z+y!yt^XJ*82iT_J1mstHD~v<OiW$q`gL{wy!cKBilKu%Z{^{G@!d0|W^EOdC`|;zK
zUjFHxrl3j4f2AM?8u87uyB%o~vl2s?%O~Q5iCMgbj&D*(S9tmWAzfcb>>t+!ep|pe
z&kZBbrc3QTRb*uMmu$NHgb2*NDZ`rm<78j+-sYFA4i+P@rGxpjanQ7L`#=$Q!_WfJ
zs2f;Rrz6p@#RG?MLF&l$L1Jq(oCrp&XY7eHCq2<Qa^|c0@Gc^Iq@GN<sZH(d=+kF}
znhiFZ+>KKRk7+djWo6_wxy2M<?4WfO4ss(mgyc^YSzBQ{mDjxIquLWlpp_&KVkm~4
zpD8{mDlV+!sg1H&l5RftE(1sCnece@+}p#=U|!}QFZ;*2{;_N&T(tckC=b{kij46e
z9Fcsi(WsS)RUEpwOY#afDRs-#A4)uIQ7yZ$YZ6=A|8Z^NqqYCo^|P8!yIWh{tOf51
zYzm<fz-ZSsyPxi-y0?@685dF=W=SJrWTS-oDmuGnbC$Pk?+|4C8{xzP8eiG|)S&Kd
z1G%luD``GBnj~h%(ip6sbF)0PGHBr%Mq7(hE3nh^cO;)P4x)aH;S@MT{ni<P4hHOE
z%8Ru{;9s)T{YoJ07StU1o^g0C{vsHvO!<3km<8v#nSrh(gQh!Ifc_levK>8Q^CVNi
zM1-aQ37m4zj%Usj-y;uiuzdr!LvG-L+Tz`ovk+zX2u9&Vm7F1t-Y5N%0?h-T&M>om
zfL}tBOtRgFSv$pM<?30eT&lTU7b`!o9H}_FPq%k~@9(9O+xa_9cx6NZt(@}}zi$E%
z*9HlVoUGeXEQnS?EuIW>az!NpG!^y9Q&{9-^?j3YN}j=(V`61pa?FR}ut7~)?Td9n
zJjV0|A7ZsBra-nUAnq(vFZd>9(@r4Mmb>UB)lhJW+YD1@d(>7Aehh|iVB7b25?|eN
z6weaktSw~A`#a0xCAJ=;>$Zywox<@4A40z%nw`1q%bxVwW$`_LkMk)_Mg5d5&;66(
zfNE__-?uD2gk}WD16^8+QC8{K`Ol$y`va(Z1f&tZaRj(+OgS|~ThwJkU<%ek5tn7I
zBh2zkXm~Ua(MZ@>RXFV3?}<Pydl7Jl=)6$JK}FW|#Orpfr!AbiE2uEN(Y^5u^|I*b
zEq0DP$L9UT^Rr6w*JrQenX@r2*Jtpd5*k&R@Iu9BIpNwd7oG)f(<;P!7(&d){nvf2
zyWj(8l`)j8iTBi3cVD|+u@>zo0g^So7g%L|fonxuR<iQZd@P&TSncCeZCJc3jiWj1
zww%PQRObe<BT;}iI*o;oah3I2@*_x^ETf4KJq1Mk2d%I8i>#8f*KGk#_qn>+0T6bQ
z$8rEtieh7{*dq~}znCBOiLsT`-{NuqkoF1p93u}ieCQB<a38a5?Yf?=35OO6q$xdz
z?QzN>BNM2#AEIfa=XzOG!GMaT&L30=;nLR=Uby<7a7LT>+%moCAl`nYbHhu`r2T3y
zd)(<CxB177{;_Q-Wf|n{kiT|EX#1wA;xDUU`U5tzI`YF|zdT1v-B%VN5kA6P8t0eI
z2yZ+{^F-l^;4RNt7nIYUrXVDW7)fmm!m}X<;}sK(M;3U&XcUD+jV99^PZt0{0`+R)
zfS%P#o26{-?RmaXrD24M^KvDUM1WzLRlYy9m1tFX<T3@++;FA|qjv6u(+LD5B`tm?
zr*S9Gr`H_EHriPG5K0n8xa{m&gslEmM2I=C2aVG)MePxOSTRA)$VPxo2=nWf$4!wl
z-`L#|YnM_0qzxc-$=PcJq~-j&<+W=f0m2wj*L=lV5Ms-M!Kc?26X;w7|9Vo()jfwb
z$O7gLjS#ttM2-?!jZ#p_bDN_{wM^4#Q~EE&Odu0a&?Z7A(zm12^@LE|&+qy~m+ir=
zAKAr?t3Azwg4=`5U#1J$#=@1ytd(<->Br-eLs{xMy~Gpp3Umb=%tRuGT7b){f2P&1
z0R!$yJT+7(cYZqOtYtNOU<R>o$-*c0RPTzJ6V@eKqCzxFhw7ImGV@%!ru-yJCIQ1b
zJu_#?3cC59OL!0k092;%1;{z<z3(D##DwEWGH72`Glac29}?Gz8(dSSoIwYN9MqHn
zoSHE==SKn(NL(a0v`6-MZ~C@$N3eXE(OY{0-8}Y1rl#v{6OG{%iWdL)p@00qKUQ~<
z>&>0T-`RNnAyuB!9~01AX_zyjZ{sVA;s*+k65kyUyZT9W#|7AKWcn)|o(!Cg0;{&f
zXaCh*CWxV@1%6ff5F2B#zCd3-?0758Hchqniin2vlrljYd$ezj&wf$0At{+|S}dpp
zC{Qy=?$ak}*(lo2eWujG)csgpSsI^nvLbQJZy5g4U&i7ZHxDdPAj~@4(18H09f-z#
z+WeyCH(3QKW;F!~y0V08RpzjS*sa}PE7G6p8|jL{9rpDz;A8dbYj+bOraZX9g@ctE
za;KfT*ygYJ-ja@39J6gZK4<RyS8U!}YDbO>s?G*$QHs+UYhPl`w1|rWrYEPCqzBa{
z>JaB{FuLZn`eaQ{9UHmoy4~>;lC?$pF@W%^=~tZ+4qiGToLExN-ugr2zn)Kjv#K^6
zc0as4iLP@O)}>daAF4|{B`rJINy}DqRTWte55l3Vl$};K?-35Wk|LCVN#KxB&zEs?
zV-!noaz%TX%;o#XwjuWG6aP5pFK}j%IOG5I>wh1T4cU477wR)Q3f(j9CtjNNr|Q_`
z)xB{*eX<TGYE3Np6qJg!e~0`WN3)8h_|r=2lV?H<f&w`Gm2aGe!MBT6apcTJ<s}oU
zUydc|b+|6LZlFQ<t3fD?Ae4FtmlV`h|23BUy?uL|zo`7GGNuEeEVYILP`z=^)hwFL
z8LO<uvT@<yw4&hbM6GejF-z%<k3>M|jazmdml(V>^(`n;rwFMP?%8*N!D-9~C<)$O
zLFuI`#AF`iFW&YY$iK2>$hbto()t7<)l2?GluU1`Pi&l!_?vCBu1~C)ka#|IDUhPq
z^X%0!oXP8i#LE*Bt5UMm(d!o&C-?0VV_Doks{P{#|2V`y%Kc-wf6QYXpBhEcTzT$4
zzHryDm8n<xrLWQW;$+J2XnfIceBzGZN%>uNQvN%+w#)tS)2#Y2)<t+BL!HZ{{y*fs
zd3;pW8ULR^0zrur6f|1USfj?JG+1n*qD&yvi3Y``8m+Cdf}*90kN{f5#7Q9IbzE9(
z)w*k~wc4t+f_nm#&84VSL9OCaykoSYRt2~G-k;~(JGqkpe*5e9_t%e?=FUC$oaa3I
zdCq=7;oir|Yza-|l`8q6aVqn(@rZl*&BLI3l__u!{gu*CC&ks}QJ)Tfx$$Vu&Z5n<
zF^w{EP=&rE+2F?Kj^Ok5oW*+%zuEKi0xiz5N|qB{HBU~Id(9k_z4-Rs@Y}>DzNroB
z3AOlVmVH$tP>W0XjTc%@Z)viAT5QiT-HBB3@yeDi{?}2e45#}A8=&QD%~O?i<LTeZ
zxI$(J6eTd+E!*$4BCZGhVAlf0ZKXT%ZAFtFhAlpHvUC3F!YNii#J+N2w*HO;{V)DO
z`wjXG2P?q%mzK5oS9+ui541N5jyJ?3Y@K0Wia2g7%WVJE2O**+N<<I&J)}r0`R*La
zZ@T0+-T%yjgMxCYi##zKJ%=ry2p1WtsZw@adL3FaQW4=K8&A}wr&=)ZixO@TFD;<C
zXMQ%>H8PeivI1Ne`wyn}#An*c4i^okwiBeO{!2^;n2mJ!{iKRhiC~ZhN969eMzcO`
zVhK^<rFY?)G)$@~s`SkKc+*#XXB9pMwxph4QkB}+v7sNE$Sy5!BB^S?2i%J8bIwI9
z`Lqf$A``D}yL5D^5b3HascPEPH`c<Akh~F}C?ctsItU~7EA+Ew{y@DYG%0q4)iD^v
zZ7E?8-23Z;*gs*XkpxS`xb=KRc5Y4609R4?qAJl2WgM;piFQ{?a?{Az<#NqRsaFfz
zPkZCq^2s?eg@pGsK}asiWpgkbu_k?t-4}8S5qP$bfjN|jWZ6Zj{Q&PW-}RBKXQGl>
z>h=fg%+JvYhY~eq8*+aKeLF_q0D&8bc6Gz^dZ2=yJ(o&z@}c-U^Jj_l{rS5D@+I!2
zw#=Ot^Ep|udLTnL8JKG`19-+BxVi$;G*767<5c2*S89UV2BfA7Yodol4}&;=rW^mi
zZaZ_;SGmVm1PGb^qN`|o==UDtZ_fBI8C-Wqh$7uoyI3dhr(3pL>`)Dw8(qcP+CGnk
z#4GhgY$@p-5m|ntB~rRx%M%y;RmtfgeeE_@;(hDtxXz!cyZU`Pe-5#hiLKK`sGCwS
z29u6-<bn7#Nx!Jf_FmZdj?L0*zI918^^m1Ph*#RtPfmh_nkg3`TWR2E)CG!6*U)QW
zaNBrSy3Ca>L&knP(jZoT5DGHO)R^(F2mh?=oa5gj{7Y1JHERwDg{YLrYt~p5+-lfU
zGv-uV1{*38h2{vMtFqfO=__$=;gBO}f56`V$DFJmgimO41sG~x;`18i$SLgi7ski(
zy$8Ot&P3LD7`3zbvLd)us;R8Qa*+0}6w>LFyHeNa2WN9P?!>YF?I2I1L5C+^qDu>e
ztZS~p;^&41cs|MQ&CYxL*86D@lfC&BjHkqfLpTRj*rdx#<q8_8uA9NE5DC=}J-Vu$
zp~F2`qR~3iSSsbjCsb%#?+Q}H=HmGVi6IS6R)Z@;X4$o<LuTvY71sw}TNW!f<(LRg
z6(3=F?357(R@Dd+xsNLmME@tuS|mJ_C-A+M=68vk1KW-zpD<8}V|mLUxy~y2PU$VY
zWfG~~G}nJYxk#bB(?rmgCnfl$&tY`wy#2re>LM1v{k4aKJjML;P=U^ubnuU6CSiKh
z=}z=T{&G91O_qUnv1M(E-Fgkl7h2&#ws)5jJA|-WXSutk_ptG>#o}M)I#k?0rJr=3
zto2_+=DXNYo97SWJ`l{|PWph|<0&W<s(fH{d|cz2m}V!VZ_g!HH?=J+vNolIjUpU6
zmU;=^H34tN_8fF02RY-#&V7TQGj|DdE2jVfIjIrzWrbGxqxJ}5jV;*Y^OAe7@z<%Q
zT{r2Qxh2Gt_38BfY=uLKU-gmpET~(FY|KyNCCCXe^=`DvHE-74Xuwa=Dq7w$e-@xA
zS)tLC1FRZi08CzD+pW=AF2E#vxkWQ>z)lrdh_vOv+GE78Q5rTX^KHRX0MR@s;On~7
zVRS$!iihy;4k`nP#iefCv5t+CsX7BpzB)z_rkAz!<8o#3J+{DnxJQ%DA!`F`y@Ib8
z{@7GzC#}6U_kB?x*SbPB34_q;vP231wR*w~Q`=APaGWxd{B;3=aawOa&yn`JVPoD#
zilZ*yz2xI%WUoAt5;(Rw;7G+G4FCHDCi(B&gWBy7c;RjZ=%s&f9admytFtszuPjp<
zf8cTF?ndaR7si?Ig6h$KpLrtVt)DYI+Q5BX=ASwJU^?qLK5TrSAM~`J=6sFxoU#^<
zX8KAjoP8jid)SeSq8#XS6x>HS+=B!^*4I#<V-JUOw|mq27TDBly)FbK+i@YzQB<0K
zCfh3<=hf7UqkK0VorcmRwT^f2pK-Xi^ziqw`IwjN0of@hJ|7)Jt2BO%{xK7_grjQT
z*d#q<oNiU)9E@{Qmz3momF)I4gHH{8&B@O=eKub+Rg483oqtfuXMD=WF&OEP9EejL
zxS6BH`^rTAbL_XL?Wrz7k#h*JA#?6+YToRs*ZLP5U-4Jxi-~xor$6oKkuKUb_*C6D
zGS{^;nER9MlmF%2XpJAynq2;CJ;W&SCK%gSyGm)<ay)R}70Wqj&AbJshSwGMK;4ZN
zS`vlI^uure$hC^FRVSJ@Q}?#lL)iMJE!7W}VGtItWRh#Ws-{*UQ)tMz)_)twd?y!~
z|J(&KJ=ZtI=07aJTZ{jq@r&Gzf|#@gF%qteW`vYfDUnFo1v4PnuNy&FV-0Dr*s0XN
zp2N%o4KyP)AX#evi^#(Ti2g9h$|w{HJwmR0f4UX<(uEu!SF`F^+TSp?p3=7DyZ!@^
z?<yRilK7`U%-8-A&bDp2{zIrAS2PVCVSAFEjThTUxa!PhPLtpRxB~sDT<TW|@Sj7#
z!84b>p6Bs~`YRU4L+S=}%VS&A^$BVZ$Xa?Qwf8)aw>Ld*l+(1a7d`jb{^l$_=LzDr
z>6rq*O2scXR+3c=I)*ZXHE3%K0aIHUV+PDreq(u)e&w5bHC6Ca>??tN45XwB-|rvs
z3Z<0wj~ZeQ`E6Rj&Q{}S4nJe_7dU%}*yPvX(69$18CEmF=rDQ1c%rXMNV!K=Q$l%c
zZ}JFTN3IH7_<mp?o%j1yV3|23qT52a2fiH+U#xE$6{BPEufunCH@=O79RG}Kak$2@
zl2}A|<R5k&5K=1}Z>to4<pxmWff1e3SCXAaq@!vbZB0>ezq%dW56I4|kjKL4EfKb~
z=CPej9w*)brQbA4bLgAZTi*`Y2J_;<MFD~R<OB6<^sP7i1G@?9rO)f%%dyX!fB$vx
zWAk5f^1&9n`#aS*%N3@}eC*ZVk&Y))ZEN*N7Y`f07jKLJ{3Dp`DUym!vOt=4wD|5r
z<i!TMxJ;;*gnCtKP0~NzYOJ#E-4?af9`w}_nzdyTC=+yaNKAUUP9j&J|9sc6AaK7o
z5G7;=L{&6LejKF_7T9#X=&zH0*7elSb`eSk8KjK#F5?X08>5omHFeTC=Du6!D;p@r
zd4{WcAmoaxl}_{$58Q(knDpj)6-+XO6`c54ywmsPwOcxFQs0S8lOTG(Zec@oT**$0
zttp_kGX3y<yNXi;B(<5@bHd@Y$q6cN0Ry!=Ok9JqPYz&X@|FUI%K_Z^yF}^=Njne`
zjA(P9)Id6)XI2TmJLG_+VF~fg71AicW{yNE{$-oE(QSMG)7uc!Pb~_{k<S+FE7n~F
zwB<Ud_3z~BKTyBMzH~l)r2UJ?zFXi<*P)IhhETy!e{-vzl3VpYs(K6O)BjiX?YNEl
zKF;Kj`oOJQuJ62D`qY&lbw^WUWpe#RZ7zN{rE-(R$T$>oslPC%0;qRAQiNvX_qo)c
zNoIrHdAolAsAOhkO)f{CvH9z%1Dw95JqUb=i{QK~rG4yVYdlH}3Dmhcs?Pf=o~V<$
zDRy^GV@vw{xbL_Ywk6HEdYy%dUT34nQP4gl7yeci`&8g}-r!f<0t@;&7Ua;s1$`d6
z4I!5V=mzb@GdF*oKF8)i+KazJeUgS<c3`;W>4R}HqgP(oXGD89Vv%vIu7KrQ%VBrl
z5j7k4L&kSIfh(N=Y!Q+3jB0vqAPPB%Yr~8*)0kYL<a)3D-;N5!@4N}->D)^fP<Eqf
z^ZWl_^apnD#uGAgH9NgQ$VsJW){y)E+8-zubro6adc;e%{yh@gMfAP!xiee`S3&xo
z-5BR`Hgry|zqjUJj<Z3;eC3Vk&)2Mf$8X6#@e1AXKw<mQRLwYSV>SJfAANS9wNGl4
zznOza#4K|0NCbGeMmb8<8G?+uh^Sm(TWym*e+wJC*I#x6j2s(bq*Iqj{F!cHKne!f
z`Dq`ca~#Q30b)8LL;Ojk!)M`%Z+(;G;9!PyVM*Qr_DXz4E|>gZkzRD{L)sl~q?Ov_
zD*R|9B%}))+7t-6-I=_8*`?6F#cgf_M7t}Edve>L!qWeArC)em2xx90UHG9D)i@Qh
zolcb$;&_0t#KW#cLAxta#?-|q!&jC_#<GMrc)LWJrCnT4?(N7R^OY(A@JVDH7Gx#X
zvB^J|wJywhj%5wbHA)XT*K#j(2WWsfp$R-tnd>YqEOxHpG-Ud-;(<mC(?hQNQVh@x
z2o;rtIF*JaCVWRYx&3A29v)QW8^;%xuQztNij)=>+daVV3d=X-HDgt9aW?o_a)6)Q
zQ&{Xp)s`M|&uikDE#4e5IKVF<{Nf>giLk`o2MIr#$n=nhf}Ds!vqO$!MPbIblrcTz
z`Bw!xI7~7<<mmu0^PM2JCPI(W!qUHXh@EJqHH@1ca(YnRR3TO$);BdQG1m}l2~KVu
zGBKz~(X@0+;k7Gsot>~378~L!8Xj<<l8Sb-qFR?qMfiJ1*r>3?%Z{+QdzTwwO`;$@
zWbZE|)?iYX`Ybu%cpF*5(yb%JzhF~py6~K@oH;BuC_%Dm_CnjM8Y=e>tkS|2uZWw$
zxo_#hHmfu|_bogQPIhsr9de^cocx8;RjC(Pb@MVA`%?e6Oz~$nu%)JFdxCYXan9j6
zF|GOCdxTtyJIoEq;7N-xiFaschbXNdciOL!bKI!T!bbm%zwyaV4h!#Xh*xwDRAWJq
zUsa(3nmFPXFhE=6&oMNNV@{P9tQTOrvLMFkZ>GHL=DJC#{8O`2uR>^oj91#oT=q(R
zqNy!Pc<$s5X7Ib7Q}o3()s3y9-w5Cmc5>2TR*zqoC>k`z`?qU%O&UfiC=3hyLYb&Q
zF_gzpnYSCqCrui`ePP!*tWXd>qy1Jd`P}9!VHj7jGQW|5U%iIyWbU0pnMyh0^vRW-
zclE+Aq;izsT+E8Zbm6(t8yIcs_>P_3B5hhm@IQhv68~Q@{;Y8YUcDzW?rJ+}`@13e
zoA3dd?IVM$IpY)Qmh$P$JUbP*eJJ=hzgwba0u``jx3mv>TF8S~=)=%ID<7pS$n>(0
z86l8BCRqY=dWQ>!H{^}sXrWfY4&{9^c4c>+Y2ibqa*lpZGihwd^B!oIC|QZx^5Qob
z(mnXE?;pkjuW^-}qujI~3d3Q#v6cnY!pXrKb<|5K<!fk%W38u=s>5p3|Kn(0QpQ@!
z_~}|4+p@R49BKOm?@`}N6>*HrVt)75;oX-CZ%&ip#Fut*)M9x$!m!r!v>mS2`&HZ?
z*OkYqZlVqZSX{~q3r@&6y`r;F%h6bq`&PsD6B$Y>s!4v?)zB#)p&^!d+uZW1+SG03
zbq4rS(@mWfFo}2OrxLa3t16w?`d;H;4xmxxdQT)B5~z8QAlV=FXb;_uwVbBIDZyNH
z%4dj1(W;J`XzjMu!X<o>tzu54%6c_fb%-LG&h~1v8t)OqOx%{BCyZF719F6X=DPr7
zQ5~cr+xrIT<!nwt;G`YCP8|L3hBu7#S5OWSs4}tEmrKOJy8_O=*RYr5(>ibmrQYud
zZQkt8F1-q&O-waBh1`*6vDT(^bxia|mRF}ftMv~3&Vf4Z`O{cyX8~VWJ$>05{HRUO
zV$t0vvE)cfvnKS@O;pf0z?{xLe6OK=t+)3E6_(&WlO!=~aZ9Hz#P#HTaqzw-csCK?
zjP$O5%DX=JCVI64Rqy&|CkMhT{i_-M9}a3@48n1@I`vX*>Jt@CkfE0S1L+%w2-<A{
z26tJ_6PWB9JOP?o&gHA5*#<0e@d~Sx`|#|^$`t8Rlf5_zvFA44c6|9*u~P_56qLX1
zq&n_5gPZ8htDLB7pY9-WqBj;Eg5io9kBuANu!9d^jW~PNTHj+l#-^Ed8=t8{>XGs}
z0F)8_5-EzxkQ*b~C&)XtIQF44R&#pxCS95AQ;3yumvtVfm2ta@72;UU=;gBp)}#;L
zsB+39wkLQhgYzNnRk5p<$6C*gv3x!D0ET0lP|s_qEOsR`Wps*f1J28IaX1+!dNa_)
zy8>POIM%wWC7#V;<9C&>q(o){*;TAaRmw?xj4H@~NisTzE&ZAlT*|%BzO*=h6^`~?
zYSCYfcWjYtdy{1Com`?OVk5u(W&O>0zjbF%U);%xOOa@?qilFLTsLn1{^&6eHh<p{
z<P>c4^z|<1>|aG-qSJZ)Z-Shv*>ZkY&A~G)hw&c~9#m((){9qU9<)641&r0qKcih%
zgARR!62rcq!~V(ZA~p3_P2UP?veLr-6^B#jFC#e(r@lS0zlF(Q=zOqO&UFF-idpRE
zkkj8u*nh?927PkK#w#SK*28E#Goxh~^y2qMR2P;hkCaL=fTQ%<Cef*p$g`#V5IGgO
zs<l-c#;GnPJeC51t9$~XYxVT1%trLW)Ryupw%(qA=ZSHRuT33Tj)B3q2I6=E0A^@g
zOle%pe~29pY$Nbak98dhEfz%+SjHT%ls6SPwO9r|aH-}O?0aC-fuoeR`{d6YM%Y%9
z`XuvRo@yA@kSO`B6tGk|kqWyy#Rg)KBLB3<!p4EDrsf1VIC|}INN$cXMq4C~lq4RW
z(Rfb7SwEjLTt}|8K8>JR@6`O+ndeSFE!O%tudzjwbbr7(XR*RfuMbSxq3N^JITDta
zhcJ#j7&1<6Mm<c8J+y%}iXZe7>_=P!3R*%@zW%ZfK8SERt%=^C+R-o0iecTjtO+v5
zYgLZ5jdeO_Er%Yr2lW-AHIKLo3ab^cm5KhF0Io<4;ue;V5(DtCsvwbKZ6kO&rm%5E
z0~(~~`6HJ)=GY0`tp}j83fExFrkM1>0a<8}nF+5}EtW<Fs*N=t)v?yMAy?oXa}TRo
z95RwyV;c|j<`p$}iHVJS#um+kfnDdE)wpx)fq6T`o4QVK9JrV!jmG!j>&>29%A53x
z!xVyk3u_QWzFuU~`t34Ew6_m5TUvH$#OfpmKg|b!Wl(mbl_jj>$u5dRTR?X3%Ftc0
z9@ABk^)GqEhQ1f1UM*~F<Awtu)7m6}9q;tju7Y#Wq3vc)5MwMWar2G-(|ruDxlz0*
zljnad(3Jsb;UgxiT;@!y+5fdGSA1oJ9&yKiROL4D)t~9I4C@8@T4i}&SthwGYrF^)
z<H~HZh=ERmj+r+B-r31X`pWjjUd7^kKq;ziWdXi!x?IxFR0*)!10qb#SWm(BfCayx
zHhn9zZ<8v$Yqb}YIODPt?aMFQRVlh@K5Fz!vDR+|CDyA1W@@s4HEZqtQs)!lyw!&8
z34lM96&4_TVmd;n`P|D{MXLG@3QFS-2V-(h?3Hs$kTdIZ3tY}`^vZcikke2X%$K-O
z+Mfan{`x%e1EKmS2qRdfgD&Oj#w9<Z4;pmNFpxWp?r!fV#}x*WTl0FZ$=9X|D4K+&
zWxnA2I`zkrpY@5Q*~HqFIbZ##fS;XjWf>SYV`D)O@}EjY7zJbV{4+#t$SCkMHtdIK
zK;LJyeSWJ-@<Gzg>_=6hnP-k=zm+O-N{msOq@+_sY4*D|a)krv)+KD%2hUSR)p`DQ
zxMf&H&oFdc&S%NZWPT=nz@!$FQ-(Sfi1?aXRuvVf)_asrLDlXZpFhw>m(UM~1wB%j
z;jmyMvHu!(D@iP6QuOI^mw3oa?OI`fuP)vAO(!agzp_}vkwC(*?QfSy*oIrq^S>?8
zpG`skUtdw0W&drFETEp}4^&ye3h~fyIb!6u{_Wz5oqH8~o(~{e8=6`n4ZmL^CHq`8
z0k8+<+Eq`FeQT6A8s%yptXasGzs_;4p>L5_&^Psw7Sj$^orhYV<Kkv1RbH`p95x0i
zHswB}Yg;yRj$@+h@0p+Qq>amuB@gCT*py`s*Jm0$Ckf7FqfSXeTNMdKFEyLjUT98>
zV<jPhr4;{aa_A&Clznn}d_v1x4HNl7+`Fv0ZF2dp{=`x>w@8q&4EA?pVVUcsfB-KN
zhY{%<HJ;-ljd;)wXD;OAoe3k}V#}M(8En18REM2#&owsK5nzwaJnPKqr=4@w>FRSY
zT*3`&+gW3t8BRgU3~J~<;@QledP$+*=^<x4E@@lr0~vnR?}eLM-6%E@M6wlRUg7+n
zMD~>ft$&&G*3w-lb2KI$hW8A{#4fu8IwyK#$|sKgYF3d#g!7E64Z3r@+}cH_@US`C
zx}Wf{c%*Kvwz>+Odao1HKQPY8naG}Vy^`yqZrdBlx5e3ri=&gd!_myyT88uA_=8E#
zAEXz$VPyDO=6~{Fw@+}61)l(x99zh>xvO=Jn{M$a$mev4Aq=Llem_*&8Lwp~GsvUF
zlWKLD3&QxnN?^)X1$8%gqMBuYu9N=80LMy=grFttg0I5yKjPxy(VJpv)<n@MFPw76
zH?agaYE+vpJ}0xk1=n{-{U0i_JRB^|+tJ?8oods!mD`t=g7S%+pP2u0c%R8MRhK&D
zY3{&75WQun4lzEVP8x!BCG2^d*<?8C;F^_0szWC$2E4NHGqaGjJfQl}??E+P{Di-M
zfLekbqnFooJ)K#gt^vd;%B_k$^fs5isMF~nX6pEvNQVP23SO@(uQRsjOb4%$Ro-1M
z1mltoQ$lnY=LxY0Rm!m03W2VZZyLBYLIZSew#7C0Ac+gkZ>9T_saHPw@+;w${$&mf
z3a%$X1vl!M#sS;Aj(3=>4cM&Ps&3PQ>TJW-j2vZjv}`svNE~8C=qZa0S-o_I^IuST
z1z@%$&Nk8mYCCNmmK%|<PU7CGnktQoWc#KXZs5|OxXYrkhASXeIo24GH2nE@I;TOi
zLKCim;1mCAB)fG@$jR|2)T>F^S%eZr=6TpF;Z|w?*>ns4T&4sAGqDFA=T04t_Gf%%
zB0ty;55^USAuWi}#E6{O+1k~(BR4kepewvvr_(%}=M+Ir0YRou_8W5i<L(Km17f{F
z3c`Vv#t0^5EUz2O@C!b*27ceYHBo{0N6JOtB%^<TMMeP#eW6B!V4*{?i@09AB@!3V
zoaXue3BrwRX!<MKb$|F~{_Lu%fFe%WvSPZVsc>*TYfxIShH0DB@R_ClK{mpd<%S>_
zqtw(wiSbw-LSXH7tJF)GKLwGT(rDXm<du=D%zI|o!<tHM@T+k<x4)tf%f}cJJ2^M?
zT~<_)TAQ2tf=iv1o7(PD@7cvh8yiN}j$W(LzzHocHw1OuKn_N=8g>L^71=cQwy-_3
zfMjlPYtmQRfTt&n=*paIz})a^)C={AB@aVYf&sjd4ue>$?G%G2W$>cbtE<G3hD^2r
zzW*Q<m;T#!e%fg0^ZcmsW{y%Xbgi_(n^T$a9@qC;??w%N^QOV?V1r>0&|^$@C=1Q8
z`~uD{9HOSTE!Uy3XN8umC%zXg<TSuC*;svoJ?;#o1XfBZg+smFU^x1mb$eGBP55`j
zsIgONyd0`*u4ki=>C5V>n$$;(yJjX3TLeG9-~IF3-9O9uDeProvi+*eI!foJtcaw@
z)wnHoS(07v%U|}9+0Pj(BZgq3dYxZ5ZO<CQC7)vhdw;^8lK=EH1ZR6T%LE(m5qYrD
zE#-mZjK{HfK19#_UbFJx&gJg)ujh!DZaJ;uQp(mNL@L8yPvYp}3;<^iW8F!ucVxWQ
z8$T-ZEbBZbraHv=G9YD^^mxCI_l|$}$u!z}5I5<QiRlGtI?~)gsD{ww_Y&U4SL?xN
zjePpIeQ5kyc2$HwHdplo><~rS@zKxl5p*@a{hLV6?E&TA9OTS$GX9z6yrL<Rvrsu_
z2RSzy2Dtj2$?4w<yZ!5g2h};}gEEGrq1w9R#w7hs+}H>P??(p+iUfC$o)|pla2@fB
z2nJBg_=ixVnk)tjUC!Umi{!LE{1ZV=V;cU||BN+()PDO#k(@@=%|T9Cfqb;ThMfM(
zD4xIEVf@$fi1*%0czpS`78nBVkgf>0Vfyrjee$<oV@nVV+~do?+uJAZ@xFWb_5jF1
z_eX#*1C-}qAHqLrVdRqu_TunU<?IMnqgCq6@YDK4<kJEAR2zQ!`HaY?@9EPB`{b|w
z1^RjLo56(k<b>CK9)4{8b@Dtt*6&o8Px2B26Q@6;CZb-=@Oyw$M4Q*tu(OV+)p>c?
z*&MA-4;JZ=R$&bxev2NxTGaeM$Tg^wK^lwLHw|v!{QFJ2Gz<g=N#tM64X7zX!F2I8
zb}Y2w3K_6p$Sk~KL9UHxct$|9<*i}&V4u$<?Lr^DuJP0aXMcGm9dGnaoW8pA9sx~o
zRs{i8e&;^~s7#m;S*nU5k1Z9;t$U^_Zn-8~MdS6VqD<v0GbdsAv@JW!{?*L#1%hba
z{mMHWK{UVBS^*J^7MJ;-{@YaW=%_Pe{5{X#UAhSXP*5ab2nkX@Y2q;`p+Dw*D>~+`
zh&q(0=*)kaW(~Xm=^aixyruO@j3or~(fi4*HNQK@Jm6h!@Fg8S=h_nZ$js&ezaw|B
z3PEj!VVADfUOli=EK^bj4*F55AO7ufqj=3xWY)jfiK}9RF16__JtvW@r-e<-rH+zT
zr5gk<yYk^L^oCWZ4y;k2qNc2q3%J{LbrT~w*0d!zmBrHBE=bPnmKhXHLiVwQ``wiK
z=nrG*4?rP1meAV8rP|G(x&9WnK|;;Y7YTda@B)+K4V*xP2-<4P_u&@Y<R0T_%vUjl
z&{0j&z70RMLGb-vP@8Q_L`0<Yro{g?QzMcZ8q8>{l6B~enuvX68~Y64y4?V+U}Pg(
zug>9-;O&$zJ2}gL=3Nu@Jx@eLZF{>meeATv49LG$Zuel+!Y?E4l2bHRrPv=*Dn{KQ
zJZQ|P>)E_)4i668>6T3*?S4zB{?BPsv)u0Rk9xwCYSC<z>OO+H9_tBX^A!!DM@?cd
zvSUq|{(ysPqwGHFtWEjvUmqF-wxAwCBL@npK=U#|u-zAU3JnLy1WmaRy>s1+Pn{tJ
zL%kLdo(H2i4Ucu#=9Zvyd1%8Q#7lt4h-&40<X>*)&Tpl|6<n4+V3<Tr{?txm^dF+5
z<<=rzZUIEFuth~D8BYFev3v>K_U~3vt1H}5$OTjLO##zKxN#mvr$8V(%JZ||N3f_9
z7G=VMQ>x7)G92r#eaG;rYlsLQJ<apG6a-OQT_WY&0|q1a@U{z%V!aAH9TZ5YfS*U(
z?0+uc4r3%OZ#TMQ_F#W9$^QFjoc|KPGE?L!fF1XbbjYlm89@f2=lL@N*yh;m#0u3h
zP<8x<GAza63b@aJ<IibCeU_T~MAlDg|L4Tq_2a?|k{oSuqfJR*uON+I#{Wnc`7#iZ
z1_djaV^q|6ec<`rBd7iPU+OcOch9Zw#)fUwmnPIxn_%lh?Es7Bck9jF+*MwuC;nDX
z=JJ;hsJ3+gePvA;Pm?}tPY8YH1H3Ec*cgu5lTpU$j7#Yxl`G@Q!f)1s?Z}hs(@5~z
z)SYANGQIcY=DxAk105hNl9C$A)_d~JFBO(e)o=WR^_l5%*te9-PP&SpnqwJkRu-eN
zWlCz0u))g7RHKDu2<sFSw*Sjcr?n289<+w?D9ahUc{6Ki!6!F>dO#Jz^%pbUDvxAb
zXkI3!EcM?c`XB_F8{Kx#4s6Ev)$C31(Wr+6#i1<~Va~uXR1?IDL)R1~tZVCNCs(mz
zjn?0<eJMcQ4saLhRsmkejU_m~WS&5eZ7_Gim19(?ZP>Y2LSS)Vn(5U@%eDC?WndkU
z+tp)|3QuTARE~Hy0Fk!9hpkPk@HHWSGNWa90kbkXeBA&346NsO&U$+J-^bw)HdL?b
zS#!%D6u!W%2t!ase70s;A%a_JCY~U<3KO6HB#5SVK8tMd10xIe=d-TX+_1SPjX|Z&
zp(-@N4smD_KELMZSKKgGRlERC65-b*{VGXF<a<x&BiTt0+Xf+=WIvIA(s>Z5o}w%^
z$6jOeFBQ-n`m$BEw$D0S=z@V_L$+!I!Zwc-g+GjH<(aBHm`%_YlnJ}aK%+-VqZ8tf
zKXz@P48l^TB;OKXIewWng?B+n=EMNm-uRv+3*OrPlLR-u*aYUY^G0YMrCtWi-jZwD
zRTc9HG0sq&&Ui1|7-0>&5xvw(`}9o1zr5m)R~!aHaR#+)`JNUIZA1ZM547vP?8~1w
zy%g8giC%19YRk`3-*mJ-AqGhRO+^g;!k{TOrYP8sH6EsI?2)w#FEQnQOt5Z2Q|`yO
zH4B<@KSt{nbV4^XFPcJFB`n2L@p)7t6*k`KA+vw3c0+SZYP-QB&mVAs+s(rqOsvII
zNzh^s!KR`Mj~TIwBUY;Qd*1hzjE)s09txKMFi+mNN9=)k(U__kJB>Lx_G_Jqf@2H$
z#o3Gh=Kpv2e}fp1*ZG<QBHGi%M_K1kkq5Yx$Ts|^(qf?L1~_zHOv$@?2?3?GSV0V|
z6$2Gb+<K$al`^H38Uu%G9qdD6PHSv9_sl8hXh+ddud3+KDKk!MXxuTjsA}LDhfbN?
z$XI*T4r2~$u<55snaS9=YBXJQV&B4RL@7EleK-w|3D+)vk8@DQ3qsdm4PFoXxxndT
zT>gQD*!lxk*<vT{POT1`iUF~twNS~;{L<~u46t^*Uch3CF@LWDv$;FqVh8S!{JbF6
z+Q%BHd+q^1t=Du153Lq#`6vA5JEG>^fQIri&C^xJS|5<=d2KgYHdImGRcFi?%d@)|
zEBv=!H}`*2OC-#&ZtnI$gjJD1i2k7&%XZw)BH6$v&woo{3Z$WdPS4Ano<B*t-~Wv-
zH5)oO_R#u)v5OxSF1$);`4^t9p9wY^t~V6h8^7h(Ib5Ea7O6zTKmJ7m_K?1!a-%TO
z_)`A>mwEkdk<6_1%kz&_<}_bB|K#^`neIP3lF88iR)BV?(DqNIm7@*(^_)mHQ`3He
zRRxgDQMev|(R$0bS2W)1uR33aJ^rrB_YLLS!}?H8Z4-$Dnr|YHIvR`PhaWxm+OFCf
z-K+NLJBg0ZzM1Iwe5@`e;@C*SHm(8fN`B7yXI1<du_{w*@64Eg#krCh&KxE<w4bby
z?n*uJxVVFX?Sfb`FQSkBkjKqi&ife(dRA0Hd+6uwQl=dLP6pS0dBp`wdpW#m<j3Km
zTjkx5P$mRud&=5{h}Ia67GRbDa8oC1uwIrHrVIDT*RBB=J%6~)@F-ld=Q!S_G+yyv
z>^JMwv)2PJiKSDfz1;810#YEo+Q1#cbG4}WaK?X|R9Wrlr47$idr8?-RdQ3mhGn&0
zvVvlC9owmHB1c#cqL)|vQrCD^-g1rF{_f)+^Xy}+b)8C@x00Vk%{c={z0g=SidhcK
zKCw%uNtzw6BHUVp>woVxsbCN*`vYtO+kB;VmC}Q-W4A}IYZ#Op5cX*}bQ{eid?@vQ
z%zkM>1`ezcunMC+^A3Xc$ASTDJn)pr(9w56-#>%k&A(Y+vsgXHJZ|UxaN(Pd(8lc@
zkv335^5;F0yQqNVFJKcqV_3gE^Daq2q1X9I%|GF*32=%DFl?N~xVV4wKSAO^OvB$L
zz$9*YGdiqm8{vWC7bCu&BSSLJqphYm8T!6m&e^7=()Ue8mk*8V@)qKi_oXn&cWEQ0
zDg4nNI5M435I%DFw^XxTd2|o){rb_$l+<&vmg_C?iP(Hw9Lu%G%}eqSdLsQ`o)!#@
z{w$W9p)BcN<=Nw!JRAd;Qpe^Wr+14cbl31Gy`^51gDsOE#vd}dqpK~ZqN=g^C484_
zuJC8PV!}M@#)z}AF~@5dNfOqS$5ak^%d)MAx~@XWd`6JXJgz_3Wy?fIYMETl^N$R&
z)f=?;-ZW^ZPKi_sMtOdDkZr1ETkf(oMYEZ|{E}+?Q4aG#r;5}d4xO%FaiKj&zc2wg
zcnHuBj7p&=(da1sD)C>~AQB~=<g&V@H5@$XOTki~$-L_`kJ-y}ncvy-#mszra>2+G
z)?7Q8F&dev=7WFD87KxL0$Yk-3nh*o=c^Z17UOmpp1jEVQcxd8=A$eg*Pl89k^O`#
zs57QWyrQ7?B9Q>UMZ!{wIocQ!V;t<l5}7O~w<kOfqU1bcjteETpa-Q8=4Iv;r{T+z
z%cd`-jzmz07EPS?lF26iU_>@H-qa>(z(%JK`_q{Ee?tWRJt|=A-3kh~h{vujf94dp
z^eX(aFeUq^+l$-&+ZP?b;yvP(AnwY?Hx~sXWk^`p6k!3EU#mh=^F)g7)SY?*t2&HM
zd!b@2$J%#3y?>r;+xjHpEc^l*Lm>Vc>l`Jf%Z?;zjDMMEUH3A7mXX6Bt8D4Q$A22(
z5U}xo%6D@BL>1fM)~WsuuD}zMBLysyIG6&e2mT|L7v;2OsG1)KFiP#nPz9ShCSLvf
zLU{v_s_%|HjNESoG(kz=wo614)M=@lEuq(WYAtKGOyOO$Cy?}y(;^reNx#wuFmyuy
ztJ<C><n2EUAUliMA0d$G!egRSP9@@o;wS%C%D37KXN_H9<DYjr8o+wm91X~kf6x2w
zyuv}7$8+=Ftl`vi=Tcf7ulS<@YP0EJAiWAvTBI%lYe8tFrzxi6G%$b$ePGuGZ<i6!
z5I+c*=K#~W$bajn^bUHT2lZFw>@mMl*rqDgshZDMukgZ6hSSLa+u3lEm|9oOYLvm1
zkp(mv6;VT8>XejUhH54F9}?nE{~CqufxinXw}yY3Dt8k8UbhnXcmCBvt(_n!GaMz!
znwI^@;csmIFNIz2^U!FX3==8iB}|)1@Td`Quh`&(yeIs|#Sjp1SM=admh@>D&YHIT
z8DkP%g!8MzyDXEhb8P=gr;C{6sBWPIY3d(l1?B(PA%DVYAb*UISIzX05`#bK$d9#X
ze2<r1lCSU4w0ZFCA2e;=adt%$E9rLS7d@zCyYq%i`GwB_Y5jur`qi{~C)W5S+nvwX
zhe_dwoo54Jh<&Zg77Ow<ZQi9J*0g!o#+$oKM4%vJDS6&f$LAdW&SD%gdcG*)x~^2}
z3L|$aSI9XHMkaNG(ByjbZ%L2wjxCfwB`iO4@0{}GTPn}_407-}@ihFLF5O)%Cx{HE
zGPAYsaCe#WFD(>d5aPQD@7k3R#U$AbKjGcC#(sY=^A%memcNeE+hYqB2>@C$M^w~7
zMZInQtn@d_$kT=Qy|3NbYH$k|?INNPq$-yz{3*`|XG^NHUDj4x&LR4iCE;s`ScCcB
zW;mc#;fcTYIdd#^zmE7Mi%hy`bp$e8)p{c?lbUyrx>u$K^86PRA&?X8fc0}+wmH$I
z?&hfetXAwDSKChC8k?7qfeZ0TbXkob&>QEJ9pi`8*&pL_4>&7=n{~ZT52}n?m4&X#
z>!MK;0b8CwCdh`ef!V9_sOJ-M`jZ70jH$WFNd<1;+PgR#lw?!sDCbebIlx1tSz)9L
z&-z{@Fdwe!e!NP~L9PhAm|*kgK5H!dVqpY-<L#|rOhsAVj(5?(#mPv<9R%_Mkw#8O
z=unq!`6-cX*1{bZWOIamOuOb^@els|!XfbQ&5;6o3hsR?&5s@VV_d;L*)TiTzHpE4
zmMJ!1cv62r1INl)<cM1O=D!#8g>YUL7=|r^|DRK^xBGh7TWtO}z!jJ{fiPYN)KuAv
zTl-{-YKDBef3Cg6THHu|)@I(qew@v$o4J<ex?z^$kwn6~<etE4h(3#_|3?-wu-q)-
zFKfcnRxt#I%{g;ZVs?6mo1L0C{iQ@c>)hOVP`dB#4uhq`QW3ffT}5WjE7s*t)%be4
zaL;$M2D#7RZiAd^)sKu;FJAdGY*b!cgZx%as`^K>XaPVwMK{Qqvdlu9VpM2|JG)Te
zs``jf%@8LB@eD#k-QQ<y0C?|5m#dp0?j!X$&DD0vei1{&__Bsr88O5P|1T_>09H;H
z!3^;w;R15b_UF1PcRDkInHl0=f^4Qg{twCKZ+wP7FAFZksX5mWGyjme<?@>~Z#t4y
z4gYk$nl*-kv4sTar$4}9`c!m!(YRO%3Q;budBI4EMc3Py$@R}6=?^a3aVJGcGLu^`
zS^?-tx|nSKFp*T`5P0;HNC7jsv41n~z#84}^mH8M_Q`+rB&=~IMioXC|D`>qw`Px%
z0lWo!?Cb22hI$&tfQ@4j3gy$qGxv2im~!5cu)d#lX0CMY)|wgEpq;>}yN$8IRSoBJ
z%F<dB%9ZQ&;2`gLbwp<MBR=Wmi1y_y)4#Bqdt7GKdIg(U3%9AL_VnktaDK*{6Z1PJ
zj$S>RZQIqGN^0}DRKA@!oB<&AB>l#WP`Zy1CTIpHsUNjoa1*C5P4um*=Y|Eeq|AR^
zi}cfl*ZNsAys@O)4C~Dd?|w4k1<VXPRSKFTX1MZ6(~Dn3_m7wYy-&+QRw`~!q_D5c
zaj?|5!;d3^HZxpKMgetZIMrpF+8W7bW_Y7oqL*B4efRl4GQ$I1?#<EugPGxRL6y!7
zKX%RLrKd-#G&4Lf$mVqRX|nleJ<Xrv1s9Bao8jLiOIQ^Zz$!b2K|U8JQB|+c75<eB
z;J}UQ%OZ6e+ZIEAlx=kmx!=r<WHh@oev;E6H^OCm`G=8gW_QL<vN=+>6Aiz6ia%F4
z1j;{(6fnD6(Gl3);L4tMcb9$gC!B!Ytq+Wcc(~}3jy{B|+2Hd*w2;VnU{S~GMY^Md
z--AmAJQG_)EWRX>J|({|o&J0V@Q=vX1mzKZTDW?Nt55RCKcFMFh||RtB0u?LFbP&7
zUejr9Z-^(@q^L3p%50+=7H{;^NQFh*eGQzV!_uWLaf|*UdmnG9?3<;m{0R`K=vL1G
z>gfjPFmG~VyCCviC6abUjK;Ro$K-RWOZu2TEq!ca76uIJc%$fH$Bd!74tOcHh|AAv
zx8s^B>nTb;Ss4CX$HU-L)#J$hm*d}J^WQSZ5xsv?m@$sm-r%HCkj2otHDzE}!P%=@
zVBr~{v0GMFXP~Qa0i)eb@$aJQ^4&Vt7sVFA!2v5{i`oIvSG_G{^6b1*5N4l3gwKf|
zYGl;3qz4zZ^x=pb<TzA81!xWBcai^&9ej*n47$5qO>dMc5-SME%&extL_?PC7`OTV
zI1YYj3^tb?k@?s(XI~JOx%CVya4W3)St%Esawlvg((Z}CbUub6c}aPrq`cAZcaaeP
zIjaU(oeU9rZVa9_qUjYLv)5SH%|1@Ry~6XqIo1t~wHPp!C<CaTl>$yBYwUT^#z;jM
z&vO+e(wDl=EOk&Z#a|!0_)82R9&=z#bNva|W&LpRGn<+6(zsDO<D7Pgw|5fk<Isy|
zWAj%ijoINQa8Gz65?xOuK7H9HPm*sIsjEbF*66Uy2ocX=HGG$9S97yG#%Qi)1`0mp
zKFh|=S~VII)5kGn7Xl0lBY1*+i}YA8W>r1n)`XLDjlrNNM;jGOw*kGDn(7bthF($Y
z-L8O>(^6usas4>`<=VbCsD%u7XjFMemY@XKUh!!`IBM+h_gbFifbJdOKV7Bewsnm7
zBy*UIGR@@l=%-_s|3(<Gbi|rox)p@awFIQ;F-xkw!n5CDqJx0;XNlC%CEj=)iBD~X
zAAJ-ygO`>!S$Xu)A7=f+xh|9k%;D6jPEhLb60fifNB{zrmY}NsnUxB+f_MMVTI~3M
zQc`RETX^ZbT*MGK47+XZ-k>-%Sj}QMfFl;i)TDnni#2U1LzPv^GMF3H#Jfe{j%J%d
zv%NVW|3J`&SJROy@i#3CSXJxM1#zOYd&m>sBC)?Vy+99LoOh(Qnx($dBvkq|#Wnz#
zuI&Ifi3Q#m^d%JRe3?Tns^#Q+*(Q5M%oB(*xh&33C}_803-k>M?qO&#7G??^HV*zA
zZg>|hAXj`{e?ks#$o2LZc7q=28A$Qf*yTT#@up8^A<VFOmOkbgZ`fTvJm=<}J<YNU
z7*um->Toon(d0E--BdW0cuOct5ri_Deu$_>ZBYfM)TSV?w@&jN>1*^ERh^XZ2Ck8z
z+(R+*?_2Q+Sh%#f$C+3UBWPP+lfKS<4$lbLcnZ7z3d&)jR#`|giw(bma#5kmq^DSZ
zZ~z>rl=$02Xs~iP)-qOFPC1vCm6Qf2;DC3faez{Q7;@_d>GR-n$aPwA?6cxJs@&4w
zE1dGSR5#YTFhIlrrTS|wtv-?diK!Y43?T<6xY5Z=HyfHb2Cv{+xXfnxjfuYZI!n9X
z2=eBYaG(P=b?A*7g@fB0+eA4{>~J6PlC1c39ErH^c4`R-x->m7A>rgt)6&i<0oh_#
zrXYA};zby)wP&|Oa{8Lti?+ZYPH8QyZ6}Yvr@c6mG6X?bWw6#KUD)`q!1_%9V!Rt3
zHFI3NqquHuyjnJ#A8pi-4-3ZSc|(S7fRWEO?#A(J&yb*zMz@2#jVf(A4n8d6i+{^3
z?Ekfd7qmvr%hWh69q}^fFRjYNH3!(^lRy0?8*x}y3#7qpH&)Zv-TtRr%14P6wtjCM
z$KBB0B}{|w3bZnKqA!yyJ!qHUS)ILK8Z2xcvdddeSL9FY?US}JrrAqnFD$Y1-@;~t
zC9Sd6N}^AxVF=dRuLxMpFQbC(Z-!tO24GD!uXF94xvKZB4|G9iRRjP-KwK)+@~2{H
z|D;{Gspbt<)||IXa>E|+Q6I)yFXRKqvwXYl`10Y26k*C=?7&|6@=&TSpt!WWRM>dz
z5;bB5m-}tmtW+gA>88d~uArYv4zdP(YhEUHvdF2$fuI&?Yl%PV?5s&Pu=YFT14z6Y
zKt`=wg6+m3vzgv$&wi!eJ5-f!cV4FvY}w*d{1A(WrxRUGoYyk{HWJ1Ri7ogo9hNaW
z#^&Eg+%aaSSnD6;`+{m?ixONv?}&>nI{Bb8IAf|+OR4!#NkZirqo0Vio~ncgrVoyP
zvYb)t!+Cowq5AWexAY?>k3Db!pH}ecn|ylQeR{E_e{2z_Jl!9JO0~3GGzLY+MXdp#
zTlpPr(W;whn}9><DPPEKoX;pN)htmV>`;ZdulmAcx!-iT-I+anpmPg#M|cG*tevP$
z(O^KGQ$z&n7h$V`3v9e>Yhucd$^Vc#9&{vh(5qNfcTn@2T|{@WMJ!EQv@w6JqE}*_
z1$T+@`)y35IZAaSSN^>mMoJwU`X=^#HIe^8?17U9f3g&|d<wH3b}*l7=^I-#<DljZ
z4(74I{4D=N#qvyVFE~ap@pAF7`AF>dnd|nY7r9zqO?>)lqT}tpiH@(vCieU^k^gyk
z%pl$Vz2u;$CepLb0mrk=0xk!?6YOCfz5K#sX_`OKHvZ%~79lBUz*!f3<l0#rZZ7{;
zGIAF3?}n}MFG#22T=jo=6ttVueb9d0j(2|CelaH2^_cy-pI=*pJ7zFPGAXhM?L<>v
zh}i#TaMj4y7_4q+PYo^iKl;Eq;Sw>WP0IV<8Ex_mXI<KX(`~d~0wxEp!8<vw8{S)Q
z!v-WiRl;V>JtK``sN(?!VM$CZeS%7P(*ZY!>$N{(rGxgar$@fVk%sKCJ7ScUHzbFW
zs4a4NW<`$#Tjw-3gPkp=La*R8HIj+cNc@FuwhLU^Mv;uQ)eB!0_lB;<h2o}%(&U6U
z6~d@XqNRK*6&!dXuHR+5`vaIw0ZgiMCsPTw6(Ml&o3mNrxMjs7x1J!(k>z@o&AP<B
zr)0SsYxz!)#ZZ=SK0GTs+@e8(5UVuw&DlzaX0t{sU8TyX)UszQy@zGqfnLX2ZnrEp
z|LnH(d9@t{)|vxIoHeDp-Ve11OxmqTl%>b7)&jvIvEgbf0vpcG76FhIfsfA8a=g?}
zSqBqh)5=`IRxM&{mhv^}y)1KU`Ex8SR8cb{sf&<@5a(Uhn%&8OUg#Zm9ns$An!%oK
zpc`l$j~+B?UJZeeNm3zf)MfuL1lsxMF@qYW(t5QXX}#vqf)YT<+8qY7u3=ks>vowV
z@B>?{EAvS}K<DG#SZbwN7Ct4nNcx|{lK2GXH$vRv@d$<Zgq1Az+6r4}1OGK<m)L?^
z(3UYfHy#}U0s>h!Z4LF|Ap%<g|6hW8jRTWRlv@EernE5(b9!mhm|bJ7`{ep**pOwR
zbB*trlM5X9X>3qeSX{F0h%0p92W7Lv7x~uz(t$6j&suvA2Oj$BXFEA<QvKJUcW2>g
zwlX?+I~)3S&@~;EdnuNjFM`uUX-*%p@Q{U*`0Ata)k|W@pYl<@daZE9Elii2ZL*j9
z-BEmA0c)=CZztLoadX>&kHWvf7MqM-=*rM~8z65a!|yovy@E2dXUZnmdTQV|bG_VZ
zmXU>irNwRT2%RV+NJ7Uuz5|yP!f#lLkvGWFS(t?You$*GvHQ=mkY2KqJt46)ORj%|
zUFTt<)q*uJ%<<MuRyM3KAn3kqnSh|ipGtjmiTUy;Sz;Q->$3wD5>nd%I~E3vs$Rn3
zMIFp^5^-$J*Zp5k?`0KRgFj|B&cJ2(JJX2Ff=s;%Ym%ps&^~K)h$=U@lI7e4GrfFk
z^g|CMox1h)tab7Bakdd6<D{%WR#H|BGZ;IDO;?@tNMbxS2gbcw7zl`!X)7BEH^Y&u
zuy1n;)7znrw4TFI?bbN(HR-*Wu{9?7mt1MR+@yQVb&p2(ILAF+bdNReaguu+d!J38
zeEzq{?1lEf`R6|jKrPrvuHVDV^J>P0{l5^T`Zu^TRgXo=3{#os?=U3JIh0uU8seVp
zC^M7qsQ!U$&)|QYU72`aDsxRY!RFWkTimxFW|LiFw5OIg#^zrjDd3K{e|+Tj>3MMu
zfh?POtj+QbW0lGF`RQYtnm!vlyM!(+H-9HzA3Nab<X0D6v@7Fe6<>Bym{p5Nn|6e%
zlU%ZjRkMJny-#jxdR`fzOJ+{iIeGJzu;&HP7c`MJcJ}?Ms89N&rl!xw&i;LJL#$)N
zz~mcaJKpFw;6qioy7{v%I+yb<O<$5%(bd(wS#O}uxB|+g%53JO8-?_|5&##)k|%2D
zA^BO~*ku#>6|FS3;1ElhyM3SP^x;iaO`FEX766<~wcGb~xWpFhLPByw|Beki8a@LD
zypVi*Y{%RE27D#FK1g4g$MRyZ>x#i+E$+sd3ZH^p;<w5x|2vnPM6a_)R-8{p<%u{e
zlAA7?%?cLDl+O74eNAXM?>6qrg!jB6#DM>YiaWDMyWFfTi_QOl&#8`%P5qK9+i}Ab
z>jV19RZVS2xbieO(ehm-d9!NKMkT7s<mNuH`M(Q*3{0+E9{@?M?AR=gaFCMg$0k=c
zwT<gzDA6i)gG{$|%Wc-}hjsyZ)@>o|zO#NH<aSK1+!%p7FbmgV9s&=O`&un5vg@wJ
z-@poU?x}jsJ=VI%Gxq3at^Jyu$T^Q;ycX-_m=L^O&JABMi@|Q1Lhc~-W|k%LKV&2Q
zCtTawr>ng>wrKpQGpa|o&z#85_K81hA9YlEV4td%{2zEc;C$m=@s>{-`s=ppyw0a<
zyoQpZqrB=qCAIr4PxL(xgFUaL^9?fgX}q__o6BXUea|oIyqz+!mR2?SIuCm;KfEEQ
zJUgBU;H0ud`n=NGbX9$Ax@M}DvsNhEimEay(6dxe8w#$f2hnG1QqOh{sOeh9Y-Vk0
zea*vYb63|`;ss71P99F#n$$8K;a2M%*q<Z6VlDp`9Iv`Rs8p43P<p?M&f;%DW1r3k
zc@{SAUG05q%`=*rc#q@DQ&nY&)SAv4YEo>4ea%1fr;0@0@9b2;#tO3jF338NtnhJ7
zW;*p-?oa*EL2h5^bxLpk^5d_%&TZVjhPhYLs$Cjx?py;_7XenU40}0XwW$^UyQjIT
zeSpy3o!fXPweK4#FjWOU#6YRNHuZP^;jlo$gR463;2%hd7YvLSZ8Vj8Z27B8oocBU
z^I}JDFNaN4-i}q?$pxvC>Ub1A^JaQxLCs<?;-47I$c;|wu3_Y+V?!Sft*QBRZB56f
zv9)_HuSpjiRLe;I0=vdMbxfi*RWr#uc+MKh`22YOORb+YLSR)qxuhWBWF}K25?s(K
zboN6ZPa;-7X_R;Hcvq;x28G_}V^e5*zC;Z>0)#DORTaytPRU=MPeT{D2fw`@ZOr%&
z>T$idn>VANIz7HmjdsXfyt`25)IUcBml?+vY%ikIlepdam_*G(bQt+3W*;-D+8eU$
z?+)igdR$TdM-v!gKG_go+DF4?3)Jw}GVHM6asAkjIh>O!C+^n)y`#KgZLVxZ&8O>X
zI@b58>DWAW;+`vyNEh_sUJEH#g{gpF0-~AkQ>))kDBtQ0JBpIz;j+OhQuul%f<+BR
zwEJ(K%4;33l2hwAeq;$xq&A_Ym;%`zAzLE#DZlRHmn(XQ{rWp;H`vz~GY{Izfsk*T
zQs!MgaF2J~<4yON<{r-<Ozk%@j@84z43yY%?yyrMJ&FYh+RF3_B(T_hD$8l|S$l9y
zpEEvPlAjlAeTa1Ln1LQw9W&t(XTqX3T`*|$=MB4Zbv&$o2G^gEI5Z(otHW)t3g*ia
zUR_yB->Q~8Z}6Z*KAX{qu?`vM;<UJ}s@J?EO}_fGgA5b-V#-lV=dH>wI3@lk%w`8s
zmb+J;-f);NGsh|>)L_K2U~dgG5(Ok8s0do-SaJzXiK+XWf7eJD^&-*<{Bk$H($(eb
z-DJVZ@@>uU-lUSLyWB`eI(X7ux`XuC1H0;=oG)p=n5<lIpmK(tAJ==MzoA(uQm?T5
zC!L}KmrEYrus_u>MNOZ(F5w+~Ex+j|7bTL*%WBd;U~X@1EbY!mp2tC{{c63VN~^sS
z23LDO;i%Np*t~XDd;$~1EjOt0)ROAdnwr!LBc84L^gmUp7blK>JC?kVFNb@RAI+=w
z&Z?U*`rR3@cCO9`rL$5?l!V>0le(G^rdo4faT_4*+^#zPQzjFaPDs5&9hJ4-`4!B|
zdMDLYr{1XA@0E$8-(`Fb$m6}CzpqNYl6)e6LhAXd<m&wD(a$x+H~{jkyqS+sK64PP
zujW+5F;p-LncB3L9apZ}N~>8_FjN>I_n?E5cAdbkH4=ISXS=eO*>-?9ZhM+hLaI|W
z{5wgTq2_2{eR?&z6tDKEsTxJBt|dz%Gc!;RcpJ<jsHFS$6Z;m3vU%A}NQU`~VS6OH
z#j!oVIS%M<K2>|=oK9j=V%m?Ysey%p)l^L{m>D%K06-oby^25@ej=JjR@<p>43gDC
zYe_X^mco1Jwb*!T^nSA&Ssbi)UIn#{OpJalcJXXb&d4A|dp$$na1ACT(ud<&Ljr~4
z=(QJ~=FJ;i>-_+AISN(Txz_s$3Y68DhIytfD|5AF=4sN1N#Iy59MK9<hvd){+XVsX
zrc0U9Eix~cnf@y+=Bu7}k3Y5A+Y0w~lY8551SZ&mhm#5B*xyEHfA@>p=67W`vcEPx
zu|IpFF*fp;+_Y!oxzeAT^p)j2GjxoDPPt&Vd1C?<W8y*!SL#?e>}H!4P^JdDp-I1i
zk);GCPZC|bbn*QYqyqHg{f7vu5pzi*9Tb2oMgBkVt?Hc`63xqm8=8~*?jKzVW&6XX
zz`5kmr}I+S8Q*g)lGX{%+FS08hE?MT>~zG)<kL$0!_E@&)3B5z%aZ(ylEzN|+q6cv
zyE?l0C-^<@3-`w1!H+2MPA>Ik4D~K3tM<l~C%B_V!!`VYa#blsMF$3>0~jakko;f&
zT=fRMIWnSZ)4(sOYvET9r}nMf7tWTF=>6A;p#E%4{!<2c8r)5?63m|`SdVmbE2<Bo
z=ct}-m!pSmQKgVkCNeMw1Q$>upIYLtW&RQ5$%2n@xVuKm-$C_V7p+fJGDpxB$1$^N
zF4?3x&8}c`NKg62<~!ZXl_5AuSYou;S?aI7#d_W+M7MztMx=h%AKjuz@-b#{^PQIM
z_%kA%ZQFUiHpphW>0dxLf5`9nlXt5X7#_VDrCe~oca7;q<+o73BXiU*VqfBCyr=&4
z<Y$zR;%=$`^7k|YomIgnY3e%f?B-yu{_WR8{@fz)LWDX)_L8d&*}Xuvv!e%oy~|hi
zDu0A4|E3V>S^fa(hq==vQvE^ym^e?i*BQe%e&9%<snr&qd_j1;n-u$%OV769-INRO
z-UGfC-nV-22mE3WNNozr+b~4`>2Yq8P+%UX3gV+V80O+9`@lRU9q7dr96aV_iLQ=C
zf7FX~_96Ifr<4!yx7$v2n8KQaGusXv%)j@i!W{d^t*_U4Pd)WV_6RY~lbJF8Hs-2x
z))=^wz#K19b=x@aDK`IKsCRFknW>3B@9H(mKuFG^Cd2AG$LDdBEX!oC-dX1Sa>E|W
zoAisQ#zmGz{=0*s9M%ZrD+B<Kox;)-_D-!K9(%}se=u_yzn?ydbnno|d2nz-V!w5X
zj!ZGTsb+Fi$iTm=^Z@nT=yJ>~tW9-vUcq57O<<&i_hS##Om3ntzM-?f|F;XJ^sGcX
zJQi6oOhd?ioU6<pIG-yo^Hq0X8c02d|J(9EFvIzu62I;S^Akg&`>%FWRTur<`5)(4
zM(8bF_)JB_LWz9Y{~2U+Zt63+o~u}D<2O0D8=^bTwW8Huw9rVnr{e4UPjCCarWdfY
z9k9Oeqo;kx=3h&7ThIqJ(PrXL#htdfxA)oF28D|c*TN$_?$PhM)imzw2a}Bc`{s_z
z)9RYSb^J&iP<V?Tslq4p@Cxs;2eu>4O%-3S*L2|-A;jz7b1o$?*gx$H2Wp}oI7fc7
zM1K$eWa~7A+<hY@9C<DCPNxH^C;e<uO};xy_FgG_Cs2&q-wf=Zrrp+k)_|`eEn8HF
zi}u~zL7BgL1j2G*w$88#+jXe=_~VEs;CeWZ<d-Jc7x#gz8AetvJ-dMqHPKOJ_}7oW
zF6M{5)^Q?WO>X`}$&Z7W1}@-_$_8yG=WC3AcwAl^6Y#&)?ikz?&YPZK;4c^nWLvO*
zG<bC0y$ydjrYC=c0MGy1u?}h}k}jN1D{K1Dwb?m?faO;R{GW2b_h_H+TRHMe7rwH<
z*|UGEZ4AtcuUfFac7LeJ&*3uj${buK@4bccvH3UP&A<UsDu#lGgdL8D@T>U!_Y}ky
z=e=K*=N13yamFfE#V)U+2q*TWhy48E@p%ij^NOeN)aY#MP`=m>fwtoFAH#JrBJd?r
z50ZXL5(e;%e+wr1`RuR0=<*7u0X4ZP|02_zK<nq!gOrD+Au-vBf8teNbomFp_C?oX
zMY2TKA3j9Y`Cj2WJSpui-&jobd2NMXJxbNY@4;&)uYvqsy(eGs1?RH@<n92-?;McE
zQ9+4E9e}dn^-cp&c)IZdymtd{J9dYI`hLZ?&Q~<xw6MMNZzNo-giBn4jS-@W=a829
z0#B^b=Y<`1=z-s|5Rxu>CG;-ZvW~Job~&jh{WD0-Tty-O&b=^}385p;)&D(nWyh`7
z`Tm{SmVy}u%-o(JsdH6U37r*qgMc&Cj)n8?%Y$#}d0nZ8^dtFIe&bHD2Y%HKFS)UV
z?!)+!SLwmny7x2#IBaIzv!$=DBRq)>2PUEs?Hd!ZdoQWO44{t#yZUirRcZcG{SEg;
zhX~~0ADjP2s)UA~J_!GtZGXz7EeYEw!QeJBq%Z96y~5dFnLKS<y$n!m`|<@Y-R2C^
zc6rc0W7MXokdppAOB`cMV-K_$eJCjN9&*4}y%lKXT(0iz+?kZ;NC9|i$ZCFc6+Wp9
zxDms~Uw)cy;gM6Jr&yI((X<#a`iIe6tDLmtLlWsLl?;<K4BV{WowuWR=Ls^-pTxo`
z{O-Jx>ISQn%;L9iyEdi5$QJJXDCqyEBf#B~7mE{S3u>wSU6wnMSK`)2v9Wz~enXk&
zIvPiIJ11j9u|WL+P@RA2@nwj<T&^$IfKB?}Jw121n}Zm(C(1Y~R7Ql_L!SM6$&(D>
z*$cL+1ix}DPNu1y3N_u_`V>FBtJMKcevW-G@&}iREO%*nxiK!Qa1!4OiL05}#og4C
zZDvB5Bzo|q@839S%g(*AcFM8yLGjFK5w695ZCRj2NbnxM>>^Z(AAC?l!He(Ug-uPv
zkk}>G^J-Iy6du*2yPK(}0n_5+bm7^2_YXRPuk4-qCkx+4@yY*S4|w%TgjceG9DZ?*
zMQ`70VOJ3H`ro=+V$T}$4S?KM|8`65p}~`?!YRiETJjRVFJr<O=qL-<gZ6N&z;CNP
zJZKB}ng&jIS$KB4><G^9FiG6Gc#HNw>p0+5s_m&z+fxy?J!SCxxWg1S1?FoaOBeq}
z1MP<WkYXn}L_wcCXw`#W!1=21H$jCt{Ep3kKqAaJ&m%`a={yy+)t2uO>L;{SaK=oX
zRFGOuQJhqG?*?b8dN1-1DFc&q;cbTsUB>_@Qp1%le*5VV-zkGbO-oOL<ABw{2YWE1
z8^7=ycue&%+QAK-=LFYbN2v;WAq&JuHo5Cyxm$*zPTz{gg1z<Whg;w$@~8iX&zr$&
zop6jpm<mbktR&vnP(H}Nwg1*Rx-V6CUS%BZ!B1PAoO8ZqD8o_m%&rGfLDvcf>V!7e
z<|Moy!6R`KJp2K#JC8^B*;X(A;Sp{2Ek5}zF|YVIJ%SG_s*2!I_SLIFQHJcO41KpF
zYmsGbG8il3Wy%Vt%e6Nzku2QxsquLP9Dlw~J2CJqe4^QL62mTFhK`diVS<TAsS5k2
z?&Nr4`TYDhTx=dk9-PIQF1%u~Foc4)PsMNk$<L$nl6g7T;B)x(_4fYgeyTBR?|<T=
z?rqsSsPycwXZx}u&Gb-Ii5%;_``+zp%(LS!wW{IH&^mkir~eo556Ff8E*-_K!#^1O
zOJx6Ud?m*g!;=og;1dpaYzYGE?+NL@Zb=^(h|b<T!H!E4r-%L7Hr6O0zN02Z8o5D|
z_n#RGl3vhaQ0ZxU;~L0sN3w0FY;8d{FelqXzoskuH`d7b_Xut`Yd_c(bvUJm!RF{g
zY`(Utg70+kV5)rJ)X;t=h1L^C$LGHym&5GWKmREmWH}K51dR~#`K&OO{JEgmvbu(K
z%uH0TV_Lm-U0vdtf7guO7)y_|&j;W9GC;hR7pxgeKjNM`+F~%@*{IinWz>3;Dr(bp
z6>QjxwY~<iT#D^7u83FgN(Mpqj$c>DWW~Cv6Vvti6Gy*t(f$+J;>sM%x_WQe`M^1n
zy?>hgJTg_V#D)<4oyNnBD!8GUntC<zcvVdZqzj9l+SBYvvjj|Ypst!KDAi`WGXIa9
z5hj_?IMk|#YEw5Vr)d&Y`qio4kp8miXB+nc>Z^5*FX@Btd#Or;ESiI-ILUA=^Ft7@
zi4Q+H4jp=~Ce>b>TI0{+r8e~%Gp5t*S9@l#GNucQ#WP8{;8kb*Q!)POOZ^GctRuSv
ze!{M=%o<P+`R?!JTPgWggl!y`%N;@FxGJ{bKXCNHO8!{Tqg&sah@q1<J=45-6Qd`y
zFG?gk`ZG+_m#@v_j3xiB{OKXb-gOw$h64u?=#3AGq=yXq6N!rk9+61Va(aau9uxXB
z{<QQZ`TpgMS1>Mdk31@23~q2o@un=1Dw5v1_EYR3Wu<>w6&!jy(cE#7W{*2E{lQ=}
zb<aG4+K+$KYUezq&Esc|CgIk*UCo^>#JzcCpvc02iyOqo=8i4`i$wG5dFz>bI!#H*
zj>=3CKm0GwHb#Ez9*^w|KOc;G&>sAp>G+Ai?jECrmxPpb=~7EO`_`t`YS>*?5m(;y
z$YW9253q{b52Uvr)YUxWbD(7GvSvtOCry{u1|*Bgd$f1T>P<(c=dRvV?d^U4pS3pR
zt;VB|Tv5Gx6Is#x+7H-b%R+*6dP`M*P)`%xun)7-2hS&WB0Z;qr3wRTQ*{-YMrZ>S
ze^?xXrrOKP7BF((Dq7Z$<XU3IKU!=nJHX{2A~f!|YXgn@aGh%wOQ@iD@1O!HH@<S%
z^DmOiyZ<@aa&5ZBo&>80BvR8c6!Ty%5r{P*#Q4ijhs)4mHl?RF`t!yLj}=zJKaZEr
zzxywpWfD2vJx+0tz3Cs=M!_6;%sLX^g|2Am#l~Nl0J9L&fBqupN!3B(oC1`~g_xl8
zn>!-@v<&?Hl}%RTY1GkqW7d+~kKFpc*P}i!9Iw*YblBeEMN0gUOc8ch>rY|6r1LL;
z%z?-0n$!=>h<)0kBQX#zj(U)7etDhS=}5DVcM4c}gVoN3$x9N+^)XIa+-@d+H<!$;
z;oz~h>Vc)5&)e&FlI<tj>+<d?L0aJ=HN%Q7O7z3m`ipL}^FKV(xX|ey$AhrlIJZrH
zi~x5iSG-_jH^iaQ%YUdP&ws}Tz_KC5=iEus`Ct}m4nOR?v7$uk!0hr%LPrKuSj6Iy
zmSjz&|J&Wa>gwF+-!Cw|#-qNo75Rj+ac*eTT{*H@Men_HQGihnKC$_~7RPehbBP>N
zDfNzEEtWbm4=n&%x^QJWqE<GF{Q4EDCTz`<uF*evk4QE}lm0_Nwi0QOe+t?BPmzrO
zhJ$<e^^pR&u{?j*c_yeGK|7<xm|0%xM-TkhJNzU1Mf+aj;j+NJ%sUnum{ReYu24RC
z0Kap-ku&8-k!sO}Jb%XkPwWjm@4w8lHIziMsdMXhS`ZRaop#w~?H|duy|OI}vN@{H
zaM_BYr*_$h!1ZFsT8Glw=)k@OLNS|#@QVnZGJPE<a_G15>0JHXJ9_wu%~!0R>--Hs
zdW}!_9^cCISGP;7S$#f0<+{hWa_W!Ge@%SNv2Tm7yu@@9fX+3L0NkLt*guUm1!&W-
z3nC1&xsG3nMQD>_|G^B0knQCiBH4`n(}HZ~kNh26wx(z{TADn6LXgd||Lsc++Qe8-
zXuFfmKgpr=lV}_|P(ZHug>f#0ld=tiThPB<)CT7CccH(G(9$VjcpfMWaI<@i%v5S@
zpGHI%w6P-BKUtnMT^Rpu1Ua*VW)YX=$X?LkpCe5n$x&aTq#p%Ij?ynZ19oe11eoz{
zWB{zfwEG2@EfLLTd@ByJfh0!oXP0eAl)VORgKFN>A--dEq%M?&`KSwwZ^!Ha-=2&H
z8@=s!i~NI0j(_}^G)f8tyXvN^8HcsTzpO@8`n$2n0{-P)8$rYPS0$;#EXSEQF9GG@
z5;aMV3u~10jUdVC-J>J{?DT;VU`FwO#0p9}&i~qFD~e__{yi0BbNoBkWqUrF&7j>*
zHvjdDt*&RsMd~vCm7Z_>8^mbhw)wXO`~T<b5ok==W6yJ({R6F+{r8^VyEy8E%#&T>
z%J21mR(@Qs@<+JxZ(>qC>yOR%z%aM{3HxVA*!3qBeZqAG9Y=G^dh7u=q)^(H&nyHd
zy%#=s6BB~%4Xk6=C>-(7z|J!N{#pQA0+Bd+bWEjJH`M#(frR|5ep|0qJ5-(LUwSst
zGTyGtVmAMJNVYY`vUUB-@prQ{{)ak+{b}dxH0<gQ4NPG(-}o5-L+HZ;=s~}FEYP<(
z{x>d{7hVv4(Uz48_MiV54vRaY<XKY;e=9=IlJF8uN9P?5`=0n$<-&LP+j=9IjBU|I
z22mci2BB2opS-;)&4T}h!2clx--AEnw*X(kg!n-);QyQ9+Ne~vNWiYD;rBreIsA{!
z|HD@GMGHra|4+NHzQ{|Ia7b`z*Qylf>*&kPe~*Ue-GIFstkslc5-$15I=S@pBu&1g
zbe;z#&$N>AB<VJ-H&S*u&xF!H!($ya8m9~^Y(bJ#tMga>(F4#XElAF?s|UZ>KGS1v
z#`!*5FQxh63-El$f?k8_vwov31f%l_TR~3Cr&cvM0lC=;|0NjRd39K0H<?;b^nazk
zlXB}jdmHuj_Ak4?AMsBI$pZIpF#ohvV0x?%ip{^$$$P47u3j;CeW<f;O_}j1p76fQ
zu5`z$)@NtciB)wP=%|qRBrSIZjl>dk204~U>b-?aiS9gC9wFG31}GcAug5)1UF!eo
zM~3U{{>W7emY?MO<gkmxZ38SXEn@XOlS5v-f(4$endTNu&DNFdsoA=cJo`Jw{vKwF
z)^g+%n}2|`tM_;>C#$#Q(@#CNgeoS{>HZOG(%CN17ynm1qF_R*qlyj_Ta)@U=uV?K
zc{12II471?wPy;dSk}_ekH38yUym(n7}4(xj!I(ghVTO(7=uQMXK-**8K;~L-5jn4
z{}$skPO<Sg^~@*rg0HV|$+5Y_f0uc1O(W@8g6H)Ot|aKluWHzhu5~%Hn>&gG#!yb;
zGMtO>#?LhFuhA0fwxOrm)eKJSL@d^}GHxPjOahLY9>n?YG4YsL9EmY{@N<LHA7mZ&
zp=mId{dRobnEY9hZgXRQf95F??efCg`Iw*3WFr4IUL?x=1&4p$^<k_8i~BG(sPOgc
zG#F8M>|ggnnV>se*mZ^$74X>~_8S)_;Bg91bNN=^pUwC8Y`%{f)D(%zH-dcrTX6*M
z0j+B#NxNT9(x3xA@A4mcjv4EH4<uap<*EGnxdMl&_kGp1yzt9w$LBFW9QOSEi^YmB
zBdjnNaK-=6|0TRJNT{K_D5Jm&d)3~Kk1(-)6UnzWN@$2c!$avqZ(hlmPx`v@sqEBC
zq)sLM)Y3$1k3{OsB2$OhEve<nO?j~vO~N*Re)yDg8XI?S{_L!Crqnd<+`RdmhAGn;
zcUWF{#x*F=^1{>guq6(ZD}0o<PnUo}LF}r+<Mq;^`DI>?a4$5Eyc`m|l<4K#!Ap}~
z_6T0``tY)S_)^46LHJU_%ZFF9VB@R)bK{F~QF%K3E-!Y=r}C`=@&aE!U0UW|R@#f!
zB=F@?_u^2xmzSnP|H$9`#u5i3e@$|IKV7#2foVSEEiYW42V<c3-45HB17dV|GZ$F>
zjJboZHB8POyFx=~`OJe8bFoPWepZ!sej7%&KUtOMFCCYcH<>`m7D?<Sx91i9o)3vb
z_0rHkRe&cUHC;RaK$B^0-7S0R!p%>RD@Eg1Rr!T~;0a&Z>Tek$_JqJ>hPO}ps>^@o
zXl!Mg3@u$a@y7?|O*%WzAJ*rquDUw^2ls#3Mb#frf&TAaKKx|lr`Zph0!;OWZ2$=0
zRhICM!#!;WN`oCr9{Y~RE18(}XO)Q+&<o-##+L<82C?m31JRKAqoS@i!{(XxV{Um7
zPAi<lABs0-Lx0-Ncc>ecNW~M0)YPfuh)nHy-{HU?2945%PqE;uYdxrp3{W{^)FiuB
zWo*}rb$ox%zDJ0P{B-p7sJ{+>eH@#q*Th;{4BMUf-7uF+mfCr(9o^0fO4ifuK;wsy
z55AixW1{gysy>2imN6$Yx5`eL^pNN8Lky{%5~){0>>@O)P6H1eAs+y@B0h>LS+=ih
zV#ap8ZTR+N#N@<iM>;P23W$BGFWWCCMN=ONQY~H@j~vb9$BXF!(^4}LoEoqnK*ua*
zOf2gUAn2T_iPQ;`65cn!Ead;`qx=;aA};i&uf`dLVpg0_YHA@bb3!)e%cu|4{rO2+
zx-!Nv%Vvv>I;pa2J+E<l)iGDRHg9gCjHSF9rpQb!MY}vLkKBi)>{bw_@WWEHQp4rJ
z?k(j6+6I>b#+LG*Y)V;>qSLrso_LTl9UtOSK*&lB2cSy<Axn9;JEf0Hxs#wb$W!1_
zrV`KxDMc=2AGi{vl(>|)x>L$r$}MylgFJDUQco8&NNI8@yEDWPq~zrrKCeVl`dG@f
z4Bv!#3M{1#CWI+Pma;Sb?l7gqQvMN1DYKMcG9DS`iCfAf#%M`N7p`CwuWP-tr<}o5
zTm))`g)4%`0n%;ouYG6B-4Mm+C*f`?<ZjC3Zg43lm1&tmjcvF?b?^mme{`EgN?lAX
z*(q9c+3?2~JX38VwIPxJS|a~dRzCY${~77Goeqjx2{o69Z1f?GcPCPNsh5Zq1dcVV
zpE?vfQhz+B{(5SenytUi)sJnk%Sm6Te_Brc+C$qNhWc+Z$>r+DyKJd`tZtL`6V1Ai
zy+mzTfc6rhczKC*@C>+drcPkHi4Wm+D#sId#F5Zi7~CcLNHiDw`|c93D2t9Z6a(nZ
z%T(!7|N9{7PH0R&;sAl}rDE3tB;3ufbW6GIYz$Ghr5d0tQx(egjG|n|2T-oi_Ymb$
zUL4Bdk#dn-pllZkM^U~GF($kKdh;?>y3}95W~a<gC2vqRKv|S?@fE#Ud~qORu^frv
zt7i_rBnV&2XKJ^wyp)#!U(5bTd0BTZ;cJ;ATKKN!HifS~fG>}w{);Sl?8aALwt}w;
zXYs|W8NPaozk252OM>vVd?CKP1o&EZ@a@hed@XYX-!UP+`T)K>miqhV;HxiN!FN*>
zUp%AXtEceQGY4N1gs<fb@#Q7J*Rq3ecP`;;nIrgK8tij3=-|uurT%OV*X-u6ifjR2
z@4S*k^H*AX8f&>imVrWBsK!S0LpR~<%n&uFW>n}YD)h{uf&@`v`9dmq38=8_P|=-B
zR9NN+70bcGv_v1Eg2z(-Ubva54YgWdvQ%_8sNMR#ZF;^L(o+T;X}zAJN6#F3NDw`i
zFQkW;fF8>ZJ>9uPk7bU~^9celdh`K$cr3O13A*Xgm;ZsDaUnf%;D{bQMUS32^pGHW
zEMG_uF9AK49eTQRi5|-wp=Y0v9({lw9!vc}oQc*=kG}j5^jsX$(*zvRqo?T6Glw1$
zM33bQ>ER`y$Ff6DcP`OmnIrU^AVZZ`(g*0_vDB|(i)lAK`tm=}(<eW$ADRK9M^DkC
zXAV6ih#t!q(!)zYk7b9R?p&hBGDql{k0^{DeSjVwOa1dWJ*}G_efeML=@Zh^C!mL?
z(Ze&Bo<5Eq<;&93CrgjAi=J#Qqeqz|^gN*5zLF2wjGjKwb2E3PM(E+o|3XheNKZjP
z4^N|qXD&SjjvnR9(o>M7N7+SBHkZ+(%n^DvAPPqhA0(dw=y^uhpJx3VN&gc)MIk*!
z0X;m89-g`M6ghg7FH28RmL6pnJ=t7Fk1|K-**QxOA4E?P^yKH#!<YX>KAbG1K(L4g
z$Jq~0qlafMJtdAF<;&7jlBGx4MNc-D(WA@}dVYXvIr;EG^e|HEkN7Z0K79FK=qU^7
zDGTV~Y4q^SrKil%qkLI<%Cht*yXeX0GJ2FbLeDHj;ppLm=qZDq(>RJWqHlcpU+9U4
z^uz;tcp5!CbLojYdXz6qPdrPHvWuQ<E~7`8BlO&kC>%X}5Iu3|xsn5aBJ}X(f1&69
zVei}Ho2b(Mo3??1trHZqAeU6Dwu;&+tgV8iP-KFsz{)Bj3MyOCML|egRtqhpg~m88
zD(kB2?cLQ~U9Y=pt@oydwtyl~<?3nyg^A&g3k8JyzRz=JlFTH9D*Jo?dil_tnKRFv
z^W4sJp7Wf`RO<9pYV;swdXO6FsTA}OT$rB9Fg*lL^n{_99s-V{XC0pkOZE*9h@MK&
z<KJVT2Tx9go&<~5erPu>)r6GkL29HY!NUCy!G-Bbu;~2{ffGGpD5i&iqv+`prUws*
zo&-yyx^K6E9y~cEdJ=VdFfYgS;A=EmYN97m&;z&#J&9p@5Hn|bbSOa&fTQU76;w;;
z8$#?%Phz8*VWKDT)aXgp=}Fe;N!I8|Hp?ej&;z&#J;`Bu0M7L2P=X!+N6}LZ)zaum
z7W5=Hs^fMU<&%7B^rYzYq-gXY?#J>;G1HSG=mA`Wo|G^>0B3r1C_xW^qv&}8qR{9`
z5%i=qs`GImYm_}mz*Jn+z+D?MbauRum>>cXP-Vnzm=1&vwbZ0<HbD>IBJ|k8^w>0d
zbSOa&fTQSXf+#e4Fesz;gYypli4#?$>A@*Xr$Ucimycbe$F9+1H_OK^=mA`W9($M`
zfU|sbC_xW^qv$!vXX7%r?1COU#y>bvHJTp#snO%m>2YZEI5c`3W_lcg9>7KDafIms
zIMbs;33>n=Mb8BhdK`it2gW}pdK~fS!JI_OfyExxQgWE1#8IJQ5idj#4;oLaEtEUk
zW#4oJ!8`*qt+KBV&k{^^X;T9(UutHNS9W0ML1qdr@|?|%39#x|gFkIrkxw35ggI8L
znu^ta(RI+Ih*rLLYq&5c=CRzfi+qk8r!NOhVu+YM$UpAB&FPzo0Nru-Z}3E&htc=c
z=*b1dCovIA6K51h^i`zD*_cPBnPWOIZ6oFc5D&zIvK0AZta8J<TG8GgF)@>ly_4Ge
zSf!go*o)O&;g@M;oCYcyta1JYsA^$&&(Q=r%i)$Bd`uo+Zr2vvAQl^Z2@$f@;F@VW
z6y{94#d$IkA4T>l+)uY}*8_<t66YcBHVA(*WI-Q$KvdE$XSd1O_?W{_w4?xr2#3;_
zY(Emhx_8`Z0KiP2P1qq@u;Lp9c&VUyc@d;(TbA#NsM-hvo_NS3iSUe05GS`18)?eP
zgEMy`p$<)7Ff)V_1REL=kJLD<0irT(3MGF^N?9VNL$0<{qL))SbVWJM>sh5Y)L@eI
z#$G8`_HV^`m8)eU4re5>z93L7E7+447zp-6qo6&<!Wb+T0z`TM!Tl(R1JXRquM|s5
z{mBQUne_?9(u|g3X^-{A`6F<h_jNrj;GUJ~#<q*Y_EP$FNDDti5!$qev~Y|C6DVsE
zkpqRsfhqO2;#c-c?turS8S-A)f}Qc!D_<Rm!ZxQ;$@t6rdU^EEy6%mDb)~ck;O?&x
za9%=cOK>$~P%N!WB#4w?J>F02qhYojSvLGlO4*BSfbQ8y;A`n;bNs74ttjh^M$oth
ze*oW;_E{y-xu@5cBJKAzry7Q$EYxAg-!!VsozjNia;~xs?*;I;AAd)w!tdy37yTTh
zpHS!X_H0KPd+_%?5Ii>u!5LeCC@Pt;4}XUNkamuS@Oc`-7mM`#D@1z9)gm1{LZm~l
z<J3S<JiHDRN;4AZN4C-LSUder$f4h<DfN_0PgzX~aR3RipitUVPe04)XD$6~rl0TV
zXBYh(q@PgnNHC+Gf0y&`TK?V4zu)oiF8)2pzyBNXdzPZAJ)hIhI{NvRej4a!CH?q;
zH*^jx*YqS-3`^z-y?I8Y{azI5`LBuel6OQp_#=@HUCL>v#88-0NgQ^iET&|9$_tcC
zN_mTtQ<Vkp+z509kv~f$(D?-XK{r@6NHf49DuRAV{?zd3cQYWSIPf!VEPiHA!OxtT
z{Djnkng{)oVxWP@)=IJ@A)Hizg_r*ug8x}mlPYvdQKAek+gshJUUhClA~iPajj-W-
zajSkYl`qy&9~<>HtxtnJ*WQ;U6ky@^dg<@=)i2JAUjVG_@|Om})c0%n8<K7t<X33V
zj<ke23)Dn2ljsY|(Obc3kf_r{&w)-eFdSf5u4T6v5HiA_j#Yfzg{B8EmrCF`*20Lt
z=V*$w-~fr$bJQU%z*mQ`Hs!QZ^kHu76{M^ekp;Erf<Fm=H<D6Krk`Rve%RKQ=HRL#
zr&x0P@dvBzhGBFcLLbtAKN!o+ON*uTt8t_!yqjkH1s!x&H`bv%(}d74)iZ18vg0$l
z;7`KejduJ@wl6#8-m>g__Ycdy+Wh0PW9!$M-w%b{OP95mQ4vT`N=oTDvJXU`4M?mB
zZpI&$N93<@Z{uowuKsX4#t&#mmb8THO>kc+E2;kmi3#$djgHFW?Pc%{e}%VvZUDFL
z#_{ExHH@;#@oMWHIs1^@x`PS`%ZL0+2q~TBjP2w?X6fsp@{dbZyy`F?n>AOvBv&I`
z5wQFt)QGELrDs$QeZ~!TOI5E^&rB=!k#8%#4J>7zgOlil*Zbwc#4)Vq^EAPAX~wD0
zsx9~>?yxYmIVX4quI#w715ph^mOk1b=hi=z+W)H50n(r9WhHqe+AWS=wlEf@r^&u9
zvQMJ3{iV^q!Y=KjeXg$HPK*0NS!$7`<#MiHmOfrCx2o7Nh5$$8{n1M5GL38Q>!bKK
z+UM><e3M(ZN3m|SuN>uqb*(#OX_YK}A?F@)pN*owAW+YCD!N2R4JgaG%jp}F&)4HX
z7N~mxqa2?hQgtu9h-cT5PL8n|*(Fu)!K5rbC1o9BH$QFGo{|EOAq9?NwN(8)P3US$
z3wApo7`RinA~%3ltRX1rS@;`(zhctZ8FpxE12nZBq6&pd&Rh1Cn-sT6-1apWHS3Jv
zM^N0rcoazKRa*KJTvV-<l2$?SusWYyR_GU6ywiKcrA&f~4TAs-t(o*O8XjXwEYj8B
z^8#d9%<%LL@cYRd^c=BC9yedLCzhR8jE~#G0X;iZ?7Ol!f45XcXOBR=5M^3FD;T&&
z049}PQ|!Cdq5~fn!0yv^z&(Lp04(;ES&H$A&Z?5AGQJEPfvRH@Vse>XtLvEWN~&p0
z6x6N&9|!Jf?^-sL(6Pwb4Zca%pYR3&M{3#^ptE><?!2F<qSUA&)(0LH6{VD6A(^1+
zu<W~1rn<KABb};g0#GU&q1Oe2YlY3gTl_+#zCGI4LEU+1FR1b9sDfGp14Kc#vRvp@
z5i@chuFi&n!9`iWA2Y+$n5C*aqh9+aph7_4$bhoRdi{8*(7KlkiSvF0ovi^{eF2b3
zd3#aG22^q&T*+}RRuK7qz#}TLmt{j`1#Vk#b@sAd?u}5^1B4nZ>s`7Gw*|-P*Z{21
z+QzTNdE>Om8`LBw<+Y(Xw4ul!wIX}!01eP~XESZN3z6jxPN^LF!VI#3)!2877T2B%
zRRkKcQerDU)U;QUs*3S|*?`riXYX@1`!Qji;LJvUbJguqsw*E`5nPrp<orXk;L%@o
z`}HBpD|=eT$xyQ83s?4fr}t`uy?zKS$%URYE0Bef^k$*;pRnh6juZX?6hOEr{JdC}
z?yE1Brf7c{fuY;6m5-<O;+~^+X^}$QRSNs>4fX=Ml4eoXNFS{&IUnSs8*iSqUG_HP
zVM_GF6lXKm#eyHyyI6oN4no5A?0~FXD+Xx2@y6*<Z@5?GZ<@Wr>9z4_tUpPeY}Xp^
z#@4O=A8e@5{Te;396IzqW^FM_XY^q_`nN6JI(JTsE=1g%y&2~Zp!aa)e_O8NECJ)A
z(^y~vK?t-Jr8AyKPy-%Cd<t?<V5-mo%K0nlta8nLv6Iu17f>*f3NIutyrl0J^7}q#
z^HMMx;SG)LEn&8w9nJOwQr%jo1)U@_zVtiUvrTeeA`9)oDlTVp1GPhE>k((`)@YHq
zGS+JE7J2O~iQKRxE~}yU&~WkIR;T9&OSEM47r}W*l>Rk#T%9W-wy5_ihx(?o#4hew
zVkCqJaU`{Q-{Hr7Rg~xm2EqZ&1Au}ZsDR>v4@k=d!FrvRFNsKiQlhs6k@CvysJzAM
zriNpo#bF>!Ay!hsSkpE~R`5foXHRqCb|#`>13B(h<hwVg$oKkcz!mx4U5uqKMM|ly
z$SW?de)mb_IK9{Ib@?tU^4{0(?n6h2<HQ4$A=5X8sp$DjsT!<R#d32IB_cf&`-J#x
zBaUq0R4s}j<<S`(4myrQrjs~u(EC){uY#3y>dpk(7=S`V97a=C;kS`4W>IxH6ne^|
zBh?*ruDML-nvZq)s1S6oQ=$(=k$QBMdW^E+&yK$w9JcNFzpN8*B1)B5ha_7U@>an!
zYNP*m_kW!DKP~v*Y!Bx4sEr@UE@Bi$U*LI}JyaZRxbRQnDp^|iM{$K=>=Il_RocBx
zT1X%CK-jaMouP#f2{??Id~`McC>e2_S|V<+WC}NL<F|6?Q@`aQF!`njq>8Ti8-?Lq
z#VCy0Dn?;&Rx!#!KV#`<3jNH)&mt<0(#2Z(f|kCerS)1$T@S&vY3W|1^86qnAkS|W
z$x%vXF9>u+_qgmBD42f~P>HjzU3R>pEB;1dga<6>XA0h}<RY3y!gS4Ehi8QY;2z_*
zo_}B9-%9kXjkxM6dykWgC3|*Y!sEDXIk4>5j;{Da(fD!DPe(;dZ?tn+9h6?vwWe@D
zsIjrw+qKwRIN*4rw=0sL&|h|?KXjP`+TkZMV+#lD)i0UHKp9WWxe?BT7=FH*e@_e>
zPfCRYD*4UD{QCm`zQw=s$_;xK;zH9$THVi~FVaZbQUv{iMs5;U(8zDZ6*O`uuB0k0
zq6Lj)S(9tNkiN=|_n?hfJqW>T+GrOyBz|e(J@`Fn?R6*nUl~aN%RgRv73l&-0n)<m
z7*|#f-E#*Xm-O)N?biMZ?E`an!Q9+|7r|*d5IqSFSJwmbOMLu|?A<3@Hp=;jOFtA_
z2k?QeFp%uogILY(6afDO#h|ziCj7pYv%d+P2`zl6%R{dIA&AyRq6Oy3v#h=@kZ7^5
z%R|>ELe@275*vM85Z3w$@^+ED5zir!Q&@+BT_k!Ji=Jai@HfGDYF#c?0?xeN2LE+@
ze+YKQr10}G$gCL8nlZ@)dZQhXx8>kxYJW&@#`ONH@$2RS%8dow1kj4f0IitHN;G`{
zKr7r_Y<Y*p7CTVhePi)cIt4%TW>O@*u)m11_ZLz2{vyiWUqsn~2S5lBB!mf)4pF%a
z#aGNg@fBq#zM_JPhx$|TU<(xw!m0R*Ndu^O#vKVEkA$#CLg;HI1UOQlj`<j2PFyM$
zRzh9y`iw^wYZp(vpj|xomUi*CdhOzk)!IdEn|ARDDKl^;39^JD430~cFp$9Z4_b8<
ze|kX_Rq?!5UB%z)wVXG#>MGuA({euDiwn|yY9UIkNIvC;qR?0{a4)Uq$F{_5d|ZB`
zwBR*@BeRM9m7Yd=S4r)U=o6T8cO`!AUo1D*S5iJ%Kv+WL{hl~Iqu?#4_h?aeD_uM5
z>37^}SN3MQxS7~J<MzE6kY3=Ttv4{G94Nltj*A-|__=M0Y-w6{3}*UR#TeMqiko0d
zD<&hi8Q^7K$d*Rga&)PGUd6dE#o*oVfKA2h#rS!Us;?Nqa=wl#uDF4vd<)fDaVKO9
z5`gA(s2>p!g)yO}<4V`jh&r(iR-+O07iBlNvRhr2btr6r)^|wh3+uryB$co!@kpBA
zM6A-f2qJ3-k+lP4&DXje?u5$TMc+WQ*#&LH=?X%$f>~Qpz_c-<72}vTMzrE~(B^Fi
zJ(uFI)CTK>be^3kxi-h8+|&k%(9QJ@`n_?i6T?Wlx@`*m7SD9$(oQHKUfkx&{szL*
zBwzNRMj;+ui|%U1_4W9<@df<cRw>WlEr_ZZ)keaqCt<xn!os6H^hkTT%pWDLED$r(
zhMzfvUWFrver3X|V(eJ@oj^EMOqoe7k_rJ=9S9#0a}hQ=AtE~nksXA{4nkx{3?gr9
z?A27K^SE#a7TAmcLsXwe;n}(!grb#QFCK@AIKijLO{g2f&puBI9_P2X|HHV{hH+?5
zK0aQu%0n$!KUZq4LlX>PxEnns#pR>hLiuJe8&w$TPf=jH*gqWu85IPe@@QO4^`~<%
zAhzHraQa?qdSpK@@7AP{_4|(DQo^BqvNt)iP6c|0w(=;RN&bZBX2=5mb$Z(hcvp1Y
z>C`|l9TT-yqmDo%E3c&>2I=?Bz%iwcqCgsBnR|GCp@0|9uZejcrjKIm>2(*F0V4bo
z0OyF}K$7sBW$*WqB_Tfgiu|MX0Kul-5=1WW)tNi6MHgq<(3&2f^|o7Zw1Ed}gEE+M
zSs9c`Yf-R71+`=4%TDGB;ubd89Rw+wF>QsyeAZq4uAyDufMmeC*Af#A@EW~851&;N
zHGD4o6s(51j=|^d`h*ovUmaP#V!-MqBUV6PL(KG+h8rbDeiwoodmXlvM%48*<Gyhd
z|0x_}uS??>paVDs(x7hyjX4hv<M8H9>yo<)z^84*fAG)yHD1b#Rw!<Nc*{m_i7?P_
zz(XB==dGpz66zaE`i))8^n>V<gKiOVno6;!>6uv+0JBrD3GD!aq@AgdEQG08pPvn*
zgtb$6Mj<Xcg}AaPu9QP40WT^IS29*6jn(uE=bhdS5^w+jKJR9Iwpd)>8BsbsnTYdH
zatOrbtI2~Pv9M=2&YZ3%k>dJSIFWiLU0mYwRXXsz2%s6h8u~aq4&6K(hyItK4wsVF
z9|i@rT!~sjZ2=qZJfU++4syHa&tSNeeiJ8*NZ4B-{qwYvZ}8#}e$o2<Z8&>ZNxP4~
z-C#ZRTY8_Rjt*a9X?>m~?m>LSppg9g7LtLWj|gVgVQX_l6MD&qR?|1Fv6L+f`4A)4
zw4u+!E#>7<UWf8W!8s^$5EY(Bg%1H;Gk}+-46?T`H@!>_Co<R3NaL*s)A0o*wAVar
z{!EI>)WN=XsE^jeQ{&YhZQM{sMBhO{I_jjOAfrqgKZovce?YAPnxwHWt8N9uGMhAX
zqS{+?1D+-za7_ulgg3ESp42a^E)RL2j7$^RR$}vynCwh&U*_~2PH<;yX4Z-05}Zn1
z4WQLK@Kb~{BBr{uqa)O|4WUp$=*v%M;EC3c1^4TS===%GAGCQyt)e^Yke^x9z%YM6
zKQu_fAiB9Z(FTQRu79qh5~vvg9OuLu5vWV&H^R9Qehd5l89xRKH2Y5I)_tXC+8X(u
zPSD^!NZdmlsgQ(?#Zec~fw_b*xg;u9_c}EifS)%vB_dB2a|(4bKi4n>sklw3OXW=N
z9>Ta2Wv~NL`^zsgs~;UUO1%r{;dj+%ri<P2LfO@{Pq1tJ!zdOR%bSMsqS=pfazueH
zI(%L~_X)B{P}hczz;-~bX!Zw768!k+ajF)qr!!;u5YX4dKwvSqIw2%AlMq>8re{WM
z{is%3K?zK7LRj$4Bm7+r8;*I!A<8v|VhJDgzx6<cUn2DR4m=6t^wih%t$83GY*3&5
z7^9jwuzNa7ei1*q5I-7@oA?1yMDrt=fSwHlnfTEYh!8)Bf)t-v0pRO{)2=e4_vB>h
zy@|=ixUu1sOPuA1L!Flp<>`(1a4x>396X?-Z_<xW%9BNv7)DK#C;GE!{8I@3e;?C{
zG~qw~qj>V9?{S*+$t2H+SQ0mDV!=sQ7YIT69GY_ZoayxK6(%}Li$M8qb<>Baxr6U<
zJ{ViSNuO2U-vmW)2uO{Uap=M6kO_!Eond_D@uN}2uw=zg9k8SThy|uc=@tpepkLZb
z-54IhJ)i}_K#7)2`)1?%YB_(E`|jN3`1ZzRJOy9I;xQex@*t*|_qi|NM}6TK*k#{!
z*b1Pjh>2T*HtOQgm~HAK8;R#GYQxl2sJdWX?(*O}Cb;5QIQ|}*dMjoZ16fft8t5zS
zr2cW!Sa4M5qo#kR_QU#jYZ%C+e_y`eLHjuqECK&;q@&If(Q337W58Eh_yUytq&mYo
z%QkS;5d+Q!<+=PtlVU-6bj3Q$_zb7Z8x@NSzdu~KiB=T@!N3T?bQAtRb%4LHDA1)o
z6u7BgMPRIBST0BzwITz0Fac^c3+V%_Ru8aR%>@6lu(S}WMaQ+zfqJcSU&)UyK`~IA
zi8*vKAE_Ve7@Zg9wMqTZV1HoW7=ARw3%5o+ZM{(iacEue?@+<NlE+3{Av9Ipwk`&a
zkLJ%^9+(JLAh`jF`q_Kn%?`NT@#Oon^l^W?LAD;hNgr88pND}=GAaZfaqW3#6yHlo
zIl*rn%&J>Avq?9|*L<E0W^B+_@`9I;xxzBho?!PRGGaYjg|4B)R*!%g1crJD2oAQV
zeQ5dTWB{V1qdr~>gdgSp2atFX-w{fZLpVA9$k4f$%lKM{Z_q~HkPZ3AOZsE%v=MEp
zd;^r{cnKD%x;NsTNgF`M0ryH;b;<`b(%Mr4{_)QnjqhW$fWPW}hYT`M9;Mt!GaB<3
zV-tIHb@XFyrsQa;7aEJ1@87_1nkiSGWDfB$Rt9fEt#}v8bXAmfi?QGJ)NW$zcf3B1
z>FNJvxQ~;nD(PLayEqE5k_jVW;>Jri#nPqzl1UFtlxi0fRZ{I!l;mwH!4Z{<*N7ZS
z@;13+-5{$V5MGZmUtCgmW(S?*_}GH0(GWkwUkm=0s!zTHGS7=^PaYBU!F17LM7ZRz
z3^X3|l9NgOCHaKvsOO{PkY(&cFE&4mGJ}%wS+p5c4?L%r3EhTKp{hOf5zHUn2DZP^
zg<{gLE8(fflSiaK%?bCX`=qKZAdk$LRJEFgLH#P7IyW2YJO|pmMjYiLKo$rP7{D9w
zH`^`@;TpG-4dF0!yFl{>l#gTPXndZ(F^**PE<p6Zr?1uYA-DmO_)_)`(oG(Q7wX<M
zQ6>*%qG<>J2-Ene39cm;j=y08n^*`w34_b=CNj8B$AKmrp+5RAF!nWEX{M7C6Mw6O
zK0pD&Lp0K0T_2$M`WS(`>o*P<+wVBoP`wX4!`OH|ev`jR`=Hc&!v&b^>v#VIvXgZ!
zh+u5O_n8jxHS~uiC2WFe>AY_yNgihHTlWwWYn&m5G8%{ym7aQBXafsI*0EZb=4XQE
z90?*n>xq|W&=T>psFV8(B>9}$m*^N3p~HZGXZtHFv1<5!1FvKHt1JTQ7X~u%bIDtx
zzcSWe9NU(1G}iIpWVlp|!Ab4J<h*#guE6QiIE4$1Q;f!0UxYbDR!BXIYOf+G8tRu8
z^6JVM`x;N**oVAkpMeKTl)iCqK%;84w-G2t@mO<z+^d&lV$|>6gureL3rvRk8^&vw
zNBZ}bB^fw0+c(h$*NA$07#8SGY)=ms?9nyYK!53oIQ$oFjcg(?6X!5foJt+u5ytPo
z0p`X%|GU(5J~|Pj6^kpuWg0ef`FDJ-$;>$9Rwq*N9h{HeN&lb1fa-!hI>)(V@%U}B
zH)gPPYZ%BRmM>oy`pfc=g^r>rle=4T9<&tSnV*=FC***9^0?v-qK*9TB>t>>4ZBVF
zL+7LMuSb+XeKrha!oR16zp?%s<H$d%{l)2D;<h=i`Y$WPZBG5$Yv9(BnD*9Ld((&H
zwRV?@-o8e93km4;Fp!DfOu`^0{xc_*UR@vA*#JLDA4UBuG<r@H2m(&jNLZUa^|;fl
z5F@u(F9Cs|C9k4c(;g4KA!?~X9zVw(u};6S)4-$X@gWm3ka*-Z0(txnBO~nuG&Kxl
zV&vw380?V=-{<jeEKlL1fG2!BI5&_vkp^;tZVzaQZVwk48yPj{@~~pb3K|weDfE#5
zO<YXnc?@Oj0-rz^_?X(8C?H4W7waSQdU(*l>lphnVF1|JFAQX2<C0h6>Eqq8yn`Rc
zyaNxxyOkyA0!PEROn`BT(;TteT4<m$92Xkb7?U$w!d&An@JvErzOnx+og7<#4i^Ix
ziH1SG_sYiw*)VD%3@iA~YENy2d$S9E(0OAb``MRKt1n9D4f<1B60iP<FAZL3v8m_)
z6fn6iVqT-hn4ojF@c+W2`m|=^LPRS#0Ht;XRvcf7_6IyWVNeHRM1w!=z>q#N8n%rl
z!lFL-b=4O5TBpeh&GF%Y4;+wuUT}SwLL+^@2Yt}y>0l<tHXuiw4?CU8m8sluqBlpZ
zJ~<Oj2{Wd>Mt_-=Kr?-!>!ryqG5Ury>}tOk#RoaEgfzhIu_UGmG=4!~n!bzsbQ|HP
zp7(dqcptQ$FqH|@hX~W^Fs9<dh;JwRBaY`@uIe(^6eHbeR$73%nid8!DMl4Oi~5W0
zv#5XBN$fL)=7AF$1-MO7d)(+A4I{UAsoq2y)E{30yG~}GJL@koerN2^`C}s8i>gk|
zUlR1|*qi*Ni>Ubc{t}klk~($D-*o^|y&lJA5ckrBx+&wJ%=-B1@<+up%`hnA<jAwL
zjL$rNXeo>}v0pv1SbxvNm-}CY2wbKv(x9L5zJDi#%YtP+q<Y9MG5)7FhIND{wM8t%
z0h0mqhCqnZ!BLPQ4_t*ChfFy#=UnhWCgqH!oUzD(E9aN~T%X~uF$A^Hz3j%{5BS@z
z{_C$mzsQ8X$=-I--zHO_uKiBuy@^jwRCH?k!{zVyYrHY(&kuj;P=9`&{&$4Gmnt}=
z@q*C*4)DL|)bZzG+^@HF!2jj{6NNu175Z!Lve6RQ-HAJkrrBMCK6ln1c9A|bY}N5$
zJ&$fvtni4{!T%2fnUtm{Asyon&yKYP==PbSXn$DL|7oNxUCC_;eb-pc&6_w@kI$nk
z8a*LA2sQQ2=%Ig5y)U4lxV47zi}=C*`M=N)6B?RrikUoPekfre6F-uH#4qNDsQ;5V
z{6Nr--Cj&(X!8~5sYhpp2ZQnW@%!gH<i{kVeDrucd^Dn);_?2i$s#6i*(A&_`D}kj
zkd15{6q4XLByTBSL7qYs0%`&(4nAUZ2#oS@o9hq45h8C&DZodC+bweoHB3^0$rfNj
zi=>pkJ!G0&K|C>!)~d4`xdbS2Y#5`dj}XCkBt%wJ&@F#6$j%Ea)M?LwA+v>o81Ru6
zRzb;)I0;SkQZEmq&XsX<NT%lS$hQU^iHX;+j@)eoijLQ)_cABR2{h@?(r1C=WPxKe
z2Tl0WiWJ~$H^sN5_t;?MNbmKbY4=H(gHOa9d?MXk7aica3OA7AM7WwOHTOR+5~~h7
zILdJ0+o+ddd8!D(e}%TT27jO9Z@Jow(47Kw4fu7|p7Q`}_%}K)O{{qTnJ9Z`EWeZS
zA1?n6OlR}52~&SGk&2J+&ve#)iuljJb^JB^37Kj>2`dZ-4sQ(unTY)I&++WV|DW+2
zV{!v#zL_0jB1OG{5HOG5Oy8f-?L&CJu2R?r!+hO6*fMQ44vDezb=#gseUF;_m-~%v
z52|Ib2Z?hFbbElBg)M;9(QSc}x>6W}Q9waA2A`h97~BFp0;S=GX4J3Fj9<|r$VQ+Q
ziSa9JM6}p>{93$O*A0`{|NRuW(DC?{_-}68vSy25q<Q?Tw@7{22|5It#3p2X&d5x5
zRI>(KcdK_&&1U{jH1nUz$qNn?T=%zOmk!O(S~f5eqW+k^VCX^^rE*Lm7<+^LPol!b
z2L4J5pA_~Bv|wc^jbXEZ98P(mJ|N_my)81AHg{?S18~qTdO@WxnwSv2151HnqA+2h
ze(+OR_-@Sf^5h$aws^$?9`K4)S8woTh5JdUhMYj=E(;w)4t<4B=6*ulst#bx6H!qH
z*nod$;u}HLq#q`;U<U`(Yd3bFA0Pkeg!=J-QC=Fg!uD(Nog1Y05Z`%kLJHY_3ifnI
zu%~<HgFTGj1(;lqG8T~0QuSP*7PvRua8AYl<i2$H2Av12yD{@W+?VzX1DP7qk|)5Z
zc<awHBi)@LdakX;`rlcvFd~lq`y;nM5*eG0sPzgX{(I{c=zB7;I)dgF<InK?{wM1U
zGBB@Kcpisfg%O4$*3o)}GIKFv4qqSHN7gH_q?JeQX9G)p;2#-m<d}=eiH1{q7_ph}
z&*R6@#+Q{h@Rd%KNoS@kfd;RH{pzTFOABYl<sVFZ%ov9GcN|mD+)k?Mr7Bu=OWf*k
zeME~?-Hz5TJ+z;Gjq4;@rD|TqYg{YQDpmafu(@li)=E|LaV7f}GxK~;agx8O<Q`;Y
z5hHw0ae}NH5N4<(-XZl;N)d;W#0O*7UFbZdIJs4@6N*CN4m&DS2k7Jln_&WI@#d%a
z`%qREhXt%WDlQRURPEd~VI=@_fx8l3_LaLfFa&l337s<)d5DZmWT-8VK`ylQ0CI`g
z+s?*MkF4xm{4`E^7YpS^+!T>nail2(jedpukAa!!C2+3vQ^pG5bDS4!(p4yeFMU7j
z=fpdQx9V!D*+0}9t;@6!T<sSIGU@V?M}_?}*5AqbD2{gw#~ik%yKz<xa6cLjagtVt
z2M44cj9h|V0_LNVfzN+8-g)j?oj)ehpIQvkPd(l<924VAziE7M6&2sX_~7LJVPvd$
z#~K~~nEp*|dO$pbZ(v-(_3<B2dB^_YopEftHZ{iU8;0>rvG3RL2xwg-7LtaCd5*~V
zSf<{9X9TdU(Wd5OLR@tAyr@UbCmiToXY|jgU!BzNR8rkLR-5QIIYR6x4-EsE81c>{
zKq4l-)XDYPqJGR!Yx?cx_1W-`Y4IYB>V3`*Cw$basOB0$y_x<_##?!Oc*hqy{U*{j
zDyZO;^jC~OF(VyMe;=UYJJ8=w$`9uqC8&Q{rQ@&ZuW7#o%WrNN$VB9i566?=y|MZm
zuWuFgV}@IoUoLkVJ{jkAAsptL*b}~OZ!A#3`V@V6N|b)1kJ^pDAJiE@BJhC0Wi{&a
z$=kDfPMO|RH8z;knBCOU&vjmz*s#k7HgwpYrG>mkFV6f){5i`jI$Gj|`AZs{!9?Q%
zAFM8&OY65_r-NS!KPx<e>B8i-c>?oQ^;)3GtCN3Od*}XS)@M2oG)9^FGuD@)Fp!B+
zOCO4-FZXm#Uqt<wkk<9(Qq~u-gh{k_tYc~^Ig|Gj8|{5qS%wn^l}7#OWP4$IGYf74
zRhv#GhV~c5D2gRPEeZpf>G#H=Us|ZGXU#IMUxWcOjQQ@ub^+gn6f}yPqvCrdGH!s)
zM9{tx6HXnh4n({GZilBHDLJ{+yW{gM3F^6+)MkDnV6;5g06s0nU%lD~n0Bz9wKL=6
zm9tOWo_K6{!3v$1CN@1=bE5WCIxALRVD;ndP1)x@k5|FMh}bauudl5#84*+4v0)0_
z+;%=xy91>_iEd<!`g5{)8tRK#|Nf6}V&iG2$Bri-Uj$B=;yKd7mtncV0~pom&_Tpk
zav(Fr)UYdAR)$lI{q(tWaLNNJ9#66RzALa8eg%{XbNcvZ!WY<b`9+E=e^m(w;-L~Q
zT0Gr1Q~UA(t;g+-nRdOMal9pq6rKu%#)BMaU11}-*9LbD0xV+_$nQXNSei%ima!af
z5x45<h2Y%PI_E@>Yvf-i?DL=hV~V$!%uW{dW$T(d(5E7x(6N0kjpI*4pTMrjS|n}7
z1@B8Kap>zO<1VcMW^lap*gCf~#;y(%)p|?Q*SNn^4c?q|{lG7X-~Bl@en;m>#m4V0
z2L>_myH|vM<rw039J7UfVGd^~l{L3a_WEUx9x|U0w!;=wXvmNpIsa(MXlRLzR4xbZ
z>Cuv_ac9Gg4cC{6p_k&a2`MUtIk?cx5;Mz(*=kMwN*0|Ypf{rmOuWjVU`G9#V6+!{
zygMBKOcw1kI{tau3{oZITv%fHDnc9-(kgS>)T{pJ0rws=`H#}Vnv?L))1EkYg5VzN
z<|fL#8Uz-W(~*zKu>FO3VBCh13}%*#op}U8iBC3lI%cbN_Pl%&_KXFNfm;mhG4=ny
ziO-*GstY}fh{!jPfgoH`)cfKvC!>6gnK|nhfH{BU22VXEbOHQ~?BB_ln~umu@@o8~
z;xuCHD@lCtd(aZurK5Z2CjOS5OrAKa!yL~Jvi&g1GbvV{nS^qzJU<um%rn?qj%R0S
z@oZ0flBE2Jz_?8SgYje{qoj&6JRwnh-zU!rsZJqg!R8|Bjg9NzD@04y*QP#-DQ4a9
zVjhnNjtEpB&MoY&&)wUWzpi8eGJ4{=Xa0U##Xa5vLAiRv2UvmAoFQzo!Y44wSI>u1
zoE27zQ*JMte;3<c;_!EAWnBKAyuBoyT6-Dte3+>vCu=Wu;CSNpax(pkV^2Q3Cze0S
zvHJI7#V_Pf@~QEs?{l5!PXciKuk+{6cgOO_8q1%mdB2c9)>GrpPnb>ati5fUdoup~
z5`S^xu2_GuAl6^J6P3sMi;tePKPs4ed)QwT?ji=@LssQ~TLK$2X%+S3t8lVJAvuw*
z74ZAMppJ>pa|pYQSlX(#V!l~t)bl6lnBFS~qkbKtfbc2XpIh#V)t@f0`csH1<Jk9;
z+n+9{ravEHI$CGT$?VSy51veaeu4eDx;U0U-D3HZiMoFgf4ZF-f1bg#b!YigiBQjp
z?N2A;cf3FCFCP+PcsjrsqwS4q!tp!yU&M&O#v#}<q*@2In2k=(Gwj#VJr<)rcQU@f
z=XIPB#s}UK#TVf5Mb8(cped`nKIj1HslNx(zcijI>c{N3CW%Nqm0dTuq)vFG@lSA2
zf0%=s<Hu8_g`T+cZ5Up}%va7K@=gzv$2?FTtt9*9)g~HwM8&b7?eFVs(BPhof$L4>
zePV{Ii-F4~xF^hT-^IW&`|mTu?TvxsSkbj+I0Rfwba0HfzZuRJ16N4+9jr6ZJKsNn
z;iA=JEWxb`!@)vF4_8K(q3KM)(9oct(!w0<M>mcENa5k`YF;}eg-R%9#PZqw$FPn_
z)gJ<f+<MH6R?i7v4c4!!`VfXFE5}#E%!FH<=X;ti5v;2I4^m%^O21FjFXe4QD*GN{
zminILgt9+k&~^r;U&?!tL2H<+zNa~%QzN{{mTGHKP_<P1G$mLUQP5FP^&!DTo*NaH
z+T19!GD#;j*eoj#3AqrcQX{T4wy=2CW8yhFa0F6=J_OYk;m?Cz&**#TK!_5N@Fol5
z3=I|Xkbf)k1>2Pxp`cWerr9C`Er5i;%6d1~2E!GgMUwi9PZCRLkfy&VGPD=DHROa}
z92fOsrTImXp}ok>?a<?z*aN5IMYY`xWqKQv!7zFTed_G|Xb)7Wo?C0s>F8yYOe;5}
zWAExfCWUqbhgf?zvvayE>eq?FLaRZ7iyTg+L9d9ZVhUok9S7K)XbNH{)}02>xb!s#
zMt*d%KPn)8oY4`fUQ`k8kBsGaa=j#%e>rC1*}fa&<LX6Jd<XMMzXd-LpqY*-f5aN`
zV;%C@c~CP<K|KCzI>?LW9iYk>&yGs*SwB5(L_&3a3BGc~{$W?Z5B%X`z>~7$=oEA$
zREh`3+%brH4ZQ2%M)mKrkcgc|l#e3All3;z>8Jxn4fIP3A4eMpjwpRPkf8Nu`pzhI
zD;`l{SavKexE(jZ0<9=H6PF3<Qt{M=R@PJcU`roaNqa4AM1u5~Mf#u(+p5x@58vV2
zU}=wp@4DfxDtwoUyP4s;GjVr!_^v1JCWY_L#+@^K*Bf`a;k$FB$NV*E*>t~v*Mlqv
z5`Cq|>N8qutf|Nb9hvw9)$H!Xz$`E@r?JMBiLa_8XLcoO4&nzesdz03C2vmEDY2qt
zsdjwkfQ%J2y&5U|gErW(v=71%M9=HtJ5XSKn(sJ-AgTi6?CRT8MRF$Ix6D2RzllK4
z>qn(_K4%<Z=zS67)URfuS&TLJH>D#XE4VcSdDom&Yu#fVkubzkiU1?BJXnlT(p6p2
z^b_`@HCfl<nMF-S8BNwET;sd$8jxCs(t|It%S94~3{$1Q081O@yL*zpVDh`KIHryd
za+NHr@iYawsfNSrV(izbSo;A_tllAe$zKU~jAV*!#P{3&*@1cb3ZdQLUt`KIK>2pk
zRji1o9~7yT5A^5`3>USjkKe9M@u9hLyGaLwaNNj)RPrlKJN+PrhF7JV@P%B&(Yi=J
zA{d!ze{H##&ul>(K~5bhJq(>~ztjWBlYvb~P6EDJdTD*h4-cqRd5XNIO<tqYH=0^d
zM6ax7E@Dk7?Q2TA90l%|ZuaBU!_Q#v05#7qe}F6elPcwm74nBvVnRaOFu5Bx7tlH(
ze_)V2e@h5DDl1hfi9eycf*^Q}-ltUNuLP1U_%>kRHk4z=E)IQzKnWq&D3EKA7M_kA
zoxZMILb@R9zynZ816dSu>^H87$=W0>r1L7Ntea34NL#IuMm;Fbqi!J*5!+m0AmbT}
zg~*tHbk)&NsC+IiLO2R{UM3j1qEtd@*1NehusOYvZqJR}0+@I(_bPD1G8k9%eC;w=
z$oH9z8Xv7xBI4_V<ZcZlj1|OojWF4}fnFL68iLDZ{}02kqhlB`JH1h|;TWC3FlM8z
z*JeTGYGUm+G$QSNll^=Q95CuUN{3Pc8a7@Myw-FRx?@Xw7}&C^^?TqPIn*NERKH)A
zE~@9!SxrTJoW(2(IU<;BeHw3q5UsFus4Tq+MVlaKi+WpqVmi#nI8b8pFYYthkM}IG
z_T!-jVLzV6GmBadDZ$V*cO60Me-SSIxU8|x!&BUR$Tzca(`3CHzY!w?gSJsUo$$cO
zO7Go2`z+vt*ut$3_qPZ?NY4t;{EL2rlmgNzavh4Ge-(1Z2B~T)*a}qxUvN(I2I&ul
zbWeUB{_U-xtVb?J7Ky%5e^uh!)y2|y(qXH0DT(36)v`Z0X#O^8VDp2=p*6%+>7tbc
za-@;?-OymgO+NuY9=bD$AO43QPQd-mt;pjtyP-@-17A$d+O%J~4WIDK+J@)&N_Eyw
zq`Oeg;39tS=Klb0@VKb!TcfV;7uVYf{`{!??5OLZ;(9mA`JRv+Ebbdn5B?^!A^jTp
z=YQP5O0xxdxSxauHHl!-dNKSYXipEcRh$-!g-+lVxQ2i26{LQ2&$kJC+3N7|<8(f5
zxC0{N0ILfB;9+tHxY<j!J*3)AvNHJX^lP9Xefw7)-79%Y@YwrJeGmix&G-(6Rr1j1
z*Sv>3+q=qZwz(AR$i|@wBQXR>w_r(j-z3kDu5y06^e`_Or3(1_Gg9sEEsnfzXZL~i
z%{mq$B|uXnoWosPLEhn6Tktj0M5(HY@-bf|EtCNw)!v*~sEnvAsB9l5@%Lr`mE^u1
z5J}QP`rM;bTacv4m6eBwm7bsi&(^N~t!H?44D;_u?RLboZJ2*smu{OpZNs`z7YXkP
z7$rwz<k>3ux2Ez7UAnEu3*EkjCno@*a1qoyCd#vQfPZTj6w&Pn43&75&Or-P-SMkZ
zZKJ<!fWLi!RJ+34aA<W#%lxgxxo!>Nk_`Mal!PiGb*O7UB)g!l6v<MNe9TF7d+n@#
zJbu>C(U0@}Lldr*YEzR6q}oa8mX7tKFz*Z253IEX@<fh-K1bfs|B`-mP{E1y!_F9W
zLO%qcSwA|gGg?2yt7iS^;MEiAhbYOwKQJ^>l2JeY^*-yzt0H+(B+qgZr5~pLvk0Zb
zq(sdRl2M_f8l)-<JyYZmZEp4SqZ{}Y4tV1!q4`HDQMvRmovkb@V}FvX*UnAMT`MaS
zj?*EBEAj2&^0VapM#=LH!PO4x?b%+B24CskO5em%79khl`3=${J}HwM1A3aVayCv{
z{6;>sS@s_tCTFzreoBNYvR9Kygyo|Z9_>d$AvS%$$4)_rEZKr}BDAz4f0O$h@Mwar
zeNzPY^c5Z`V*(AxrjV--&lQV4WbY>4dkGXKkan2fFcb!?!36zH^{qPQc)mz37s;Qe
zqRV|E+=-g_oiF$uJ>CN)4(9hRDqZJyH;vzU27c2Z=EVHwBg{?wp8J5t>%Y<KAk@zM
zY?2Rckp1mo^J+MYvKK=H-mvsOTn-?GNn4CWh`n}=y$+qdvd-SII(x$dEt%LmHZqa|
zdxIWSDHCr^;K+%T1k{+fq9k?vd(7K^*K)E>B*QR29Qa3=x1`q5{UMOf^0Zf!T_`ZG
zUM?-XP-CO5#zF`fJFB7Oca-G|XwPBva{GXU*Y9ud;%TWT%561?o-M;X%PVU}i}wx9
zdT1zQODJ{KF*lf5p2O(wUeXFl^|Z8Ug?L;1hr5JJLT}}1sjL~E$S4_%j8c=36$;Hi
zOqiAa4HY1HQAaST^jbph3{T76sB%-o<qFL8!u9MVuEk*U)P?UdTPs8|M<n-i5@jpQ
z{1yHN2*p|m+1pAjy^-3m(gunpPcnForrv|v`D`nWIt_jcYjIFkhF)l+zGl#sc(SjA
zpDZiz?uGN=Qc}-y=KJSy-aiZK)nqs!^-fPaJd`(3sB=vlzKZbj2SXD^Nwqyw@Kcy#
zaVZlmPO>f4fWYaUlX_T2=C#gF`-GLzvOn-!c&a1wHq63@(T^v(ce#||iO&4`*}n#C
zVfVxWPd$4frCs@j;OBr!ayJ7iiJ;DBsH8B|8v^R@<f3JTdwjL<9p>Ork^D*|mx&~c
z6T!%6{rtuJ+j06S@o(Du%)jv|7BDb5B`*IOWB9k}zt2B=gn!9zGyjhLi<5&Q*&`B_
zllc4-R*CG{3Q0*Njq^~WhSO@RJgTYPHu7?n!T(ItJsg}&+6rCqev1#wxs>EHotO*y
z1KCnX{hnm#Xh`;ipmA-;k=N{i#{H^}-JS6gxx+&w!LgN+=RH7>#@Q?daAb-{=53k<
z5B6wc36{V#1g1gnWaWWG%rOh)lxoWp6Ftq9j>^!mvWozi<X$f;6O*vsb@uHr?1@R9
zhRVt#!%F>_aK<S}dVuIu?y!JS4>P^+PiF2@B6&<CK9N*$Vzi&6pFe}Y<5GVyf7jLi
z@AKDg;O{TKi{h{2E#_~&NG=!2#Ujb%B$mJEP+hPiSnNGTbggh(Y`F)?mNv=xO>>7p
z->xWBMtzEbQtz@PPcxkjK6^NnF8T72ij3^Ty~~neo$Q5q&F&S@lpF(HIT8Gf&(z1>
zBy3IoNV%9li|dcb^bFX-1?f?F#3?OWi-uNt<YK96Bwt)2RnY*I9#xA4WN_5jOH+Ea
z+#(M35|KLU;?(`<w<&&aM;xOcjhUCfLt|sanPgxp7T$`^pY#wODf|&!Aa+TPpJH{~
zLq+PrKc3EfK2l`K>lDffmj=Z3Kyyd=vNwWmodI3yE7cK^vIV-o{(0#3_+2!*JX^XK
zp%#q;C9m_zPtiDJ#p3X3<OPAl6L0@4mfdY&8RIZLQY3I_0g;tQt}iKyLd4pCVl?I~
zyI)1#lByoZOC-M@9U)VB<Zh{IH(seca-aL9z=Ooe4uqplzZovwU4Yg64s(BLD{ijL
zAskp0?f43l^oWBM6Cp#Xwom2Ji>2x_kU_J#3AqPzLz-K%Qc}nflRP8vkeW{)w5Ur<
zvK&>Rl3uc}&W=K5Z(SA={&rVzxzXyPv8_g9>sEFL-peUDNA|tNuT&qz0qvejdM_kg
zgT?xz`Ns)j?zytKkUW0iR9KUoBZn&K34?Q-n2L1oZK}*gt|hp`QFTzN8U|n>Cso;T
zK|3OpR~dhb-N1S31Lx_tQuQI?gfiO#s~{;~GXRa@(9@i0K{o?tyhsq9#zd}-%c){8
z5n~yGazZ(?-1yBeyD!46xtB>EnuXChl{2e9kjyVjm*<CU7lNt{_@LUS?42p)b5<jE
zE4_J0PI`;@AbUlEy?mz|nMijAg9OdeyC-09NeL#?8sP>vQE*ZF-s=Iurs2pj76t~4
zl&V6|rr;8t<>8tGpCjK0UwQPBk{(U0Jr>rEz`vnqxtjy)kQhPLl7Fx%zfUB0iDZgM
zZWhU}IWg;JIt|?(sn<-UjZGzl@E9^afLs!CH<M0|%&i}pyL@Es+L5`NN9KM<D%!xF
z^9wARW}%`3dlXb2yR>8wsc3gr$|7%L@Jkm)R3a1r;Dj115H75lnwbj<E{||?q*4NP
zJ>IQs9LmTkk?@JKlJ3sXN=-$bo+D?@J?}bYkQX9c<x~dUU!;t-I79VC-W5*oKEd+4
zz;b%KK>Fjdk==H>ysL`5Yl53tJD&kDterKuVARV<?L1bXt~veC&YS6>G7H+-Bq=oZ
zl05&W-`eu-ns)9139_d_*G>!`s1K1mZ!*{r3?4!`(gM<9(okv9)3_2^N(>_{od-zL
zQZTE%Q(Ed&Qm??fC6^T86K<KV>@|X+;A)nEnGr?BvWLx`;(DimbVY9nD|#{*EqnJ1
zt{;NpcCsAO|7RI|W8fkxBfkL}5}4W95-N{eQX;WhiuQ0jwTHE65r~(BXqadRw-e|h
zi!PvHIrNiDKT*1-j`};d7KcdkMRK`FF6KnD=BD)((!wjqT$s)Xg#$px2GEmg93yau
z+tOk-Ec1{2iuB?S8!2!8ky;QcJ^TS~AfYTVMMrMJA)c;FQ7_8@7<>kHViC3Q(+w5Q
zg;lSeH=3docG=hO<GUSz9Q+0)`J2kSen8))48AV=daes%sE59V{SREEs2eY%Qu#fK
zw`XgmijwrA=VlWYzJ60h!M`yTEO{<xvQYg0l;C*V^va`yXMK(@J75h0g}vwt3FH9o
zmmYo^6!X1zy_~%tXTPSfp2)4+WzS(pQSW+JMw1*`#jvlCxB$U2m0PzGgxvd}oUva{
zx&bAw$Xza8_Fe77*)`t71^g94XX_SG*4m<sHATwJp`wgN`C`1_yCnsm*Dm0B2xn`X
z0Q#;dqs<v=ab;j5#bH$9%2?~{)+*JqWrZ_$CSK7>lzZ1ZGyFx}R=O}+p5Ul)i%44@
zB5e*t+R71g^PR>U4``teM5mTtN)(Wk=&paRxJw~^gDW^#4aXU*`2@U6&=?^14#^qE
zVPHz`rCmGdTbo?I5jGexS2kT?B<3$*emDg`z_Fr?h9YHn$d%tzjui-~EYJ*1!c;Mp
z4R&+cD73nXb|iogUVrXE0ocH8YejG;ee5qMh<!A)z6No!EJBzB#5(fsB?56o2mmH$
zw+Mw%##?xS6Lb(#4xCT53VGjP%Uzy(FmR`y6Bw*t5d!>d6mrzB|H@5m<XH5N7*b%Q
z8a@A$cJG@*nSDUHL2gxr{5Q+h8>H$<q(^8_57U}9ZJx71cfeEOz@<%ig(l(lus(A?
zRz)5Fhaf$NGo?lB)O*^`num`PrM>!F2Wsl|3?<5hAIP!r^he1k=-~!n2bb_>f8ALq
zfQtV3WiicK+LL|qEH)+KuAd+d2#A(4`U>XtqVQpqU~KOBL==-sb7f+7l}m_NXdrnO
zh&^le6?i*Eyxolwgf#P4&wc<kq~gWf;=UXoB@9H&m3UXno~;(rlWwau4q}Wkp+4{~
zM5DX3Cfd}C{=yPFPb7Ug37bPhyb`D@uXiZFn{@eceB-A21DI`&$nOAH_}WWm`BD5*
zlb=mmBqqn(yU)7_HLbi8-0}7Lh!SPOL6%={RDptA3pN}e;n7Dos9YDy#cGVwo(E_=
zMf45Ct6Efn0Ip<!ma=bA?rc%+R7!Nw0VZ_;6&WeOAiC}lU3V7UCF1Q%DbYknFV8;!
z(Zzc?k{6AUj%8FOCeab|>JO0UJ`kddSCBg61s2^jk=)KnM09)=89ysknX9QmUR_|5
z7WTF#po7}^7JI|5Wxh<QqNTp7%sS48z3@GpS<lz7f9lM=Jdi?vMa?puR-(Rwu_vbW
z5C3&2ru(Jp66!S29nXYhP+)oH9B7@aRP2?#(=+$d8l1iAK^zt*`|ibKz_C$6C89!J
zO}Rv?5z%b*x&2}UN_ACnY&`suVzs;qU8KRbI;x$DWV|p1fPL8)!yv8oR%Ny@?n^RP
zbNX=R21<Pzo%5Fx`7rZj%@ynZUgx7Y81?Ln^_6zbqf$u6eAXMk8;*r`QZ+5@!TPQJ
zx6_Cd-@VegGbY`ab~#{V<t7`xusfcf2$II2lS&(P+<|JXG9}(Ic3)Z-0h<L_bljt0
zg$W1rR!XlRmahZ~*x@=Xd)KQzEWDJxUj%WEc{}cD*PA9Fb*A>{SztdID5;Zap=dF^
zt60y|$(eXj3^|Lo33A>Q<eV3eoI3%dku%#!j&<=dA}4J=B}~qh0+z_RlE{J3p|2YI
z6>B<3k|7Ntg^xOr0#o}e7Dp1bAIDO=Ks*Xy;{?%n-xLshAM(UEjyhD@qfjB%4eH@A
z0>|_a0-~82Qms4lTplW12WPTsvs87jh5H?{AroLjrh$AnO}`D&qC{|@Y&Gz-;Dlp2
zp>@H_LjCNj44;5nL>6i3F=}JbQoM-vqgZdzz*1DpMG0WrDQM|f6z4iq(^5}Xj9A~=
zV$f38<TzUTFks?qsr8kkEY_zfVX;mTum&w1E3|YZ78gZp>G$^wxy8}a71|@x()VwJ
z(B4Oe&{DL#Jo0cIVC$7&>#vw+$VfqkO|3i}3c<R<)DU<3;$+(1#6K)t67#y5SCS-u
z6(GkWtZ&dgQa#o+Q%m13O^oQ}3E<R4qkv%pW^JR#14^|0Jo}f}&zxY4{d`r}&-b4b
z_OrAT_Oq7w*-86(8}_p4wz`T|HbjiBV%_qRZa=#o(Ao$us)zj?NcNMOY-bH9spdaz
znrf=&$EaqnZw;#X&q;AqbKf@|sb*T2!=#$lu9UE9E)%fvRP!HL!W3{s4CrVq;OxMF
zUZy=F)$9+H)c(lO4d_-$Bd2#PIoG0k>JKynx|KtrrvBjE2svg0I;Ne-Npn!b<Q)7r
zlOAnA;q+<jSFG#(oi?D8u-l;n16m*+=?3%?Agx}4yptHv4|qSMHb{+YKu2o^^uC{G
zKyQcBK%K8$?TURCVFUV;$$(y^fu*SRnF&S%`m@!P`uXmsYjQ0(FGfx8``VzU-8r&s
zlIv)|bYMa6I>>UJKncsWzkoHUsn*XY)f?6HuUPunftuE6k4R0+Zidv#XqhDU^Cz*O
z^U(QWXrWn9%w%+6L9c}c4J+IUEMsS2R3}2Afu(FcqwOco^OF|-4|yEM{R6P*GFH{u
zORg2h-HUD$c@E*)4dLSipd{RVb8lcf06WfOB6LRdZ51$KN@V^dUMar<Hp~ZjV-yoX
z2V&Pth+bl&E#_DR|0_TN-Dv#Lr*9C>b6+x~^LM^Xw0K|3e1W|vErlQQ7TxpK7JQ=F
zi+w%Rp{Yr8C^!5R^l;FIcfVjtji&3-vC-#s@vUq49HBLYY6_u>eIVuFhcbB2VX^~Z
zPx@;zU(^%$mS~mI7Yxs!5k5GBfCklp4t6~JY+U8g)f}?wiy8BWGoPe1{AC-R=j6cK
zXp16Ur1M_IC$18owE@;N8;Bw(3MzZy|5A#6_617kFD0Hds-s|j0~Cpf<{!&{4zbR&
z6Ed3)95Eh1(4;D}l3s?~)zc?ZX<@R%sP)R7N*xBGTZ~*9!;>JvTD$u45dEV&&;$pe
z2vX^oDy7%4Cu#dk&rEgv0KKszsv}b!U<~b{d2oYh@?TJy$actH+DG$UH_b|%6Mhj7
zr-^q)Y41GD@6hrr8VtCIxik{U!eh-s{D!h;A{#PHTU<-xWB*@3kX^t;4g3BW1b9En
ztl<)gEuN(lFf?hGHJ2YSY9%J@$waI(<j+*6Y5C7kQB%~Lamxn_Gdb#Lx~1r=`qnkL
z`W=fUJW7m=4?82D`zCZCpX=Pw@}d1+)G9Ukq+H#hd~W@dCZBiubs(S3>*C6%Fh!Hk
zgW(q=^7*^=P6zU-!Q*)H*^3!dA)jIa@iXPq29q35J}p|lCZG3l8zrBA&@IcyHuR+O
z@plDhP4Q@I?G%V^K~tq@-2}|H9mgV}bEQR_;9klIEkFsO^Az2zJ}6aBMeZjKl9A_V
zcd7bJ0{Zmnr}$rQj=SzN#9a}gb!O~yD))mrL@;S$XnC*;!lIaNp>O0WA7C7fd77Rn
zBbAAm)j8TtTJ$PB*@C>ylIJtDcxV1$$+Hs`x}-N(0<g8nvZ5$|#Vo5ce}CzFXl<ok
zG-<wmj;;pHqf%%B*k|4JrBHxB6T(W`4Mm#kNC8)FZtnv?6XzX*Qfh8K>&D#<@FQ&n
zCEV&33qX=8PTWC*gT}y8P_tI7v+GFs9FjoTg1Qqu3d{r3WGvDm*&@7aXp=j!e3J72
zfFkN#=$kjwddl0x81;FpM%KDMF=Qnf$tuUYnibK=+S(eQtVBW9fn7RT?+d{AWIglV
z3CX%dL*GnRuPCy%TnDm}qsVGW*2oI=jv;FxkRi{Q=D{GXm+-EUtkWW7-5xEitBD?8
z+Q2YbTh}uEL>5dVq=nvS8cId6)+V;39SZ9vth*$k;0%3(uxLFd<u67Nrx8_`(gMxN
z5Ec~oc_?o0vTnF~B`_QwEiSNnMax<qxC~i%?Xx6}_M}+abAWLa?XQeB(=G{;C`4qS
zeb`Q>J%<w3)a`3JrhUb`CzR+dcf_ZCgqBaVOTbLM92rbIP3BEwr;ivKQGCx)8<q}y
zN-W1eTVN~J+0tt0s=*vhYsQuua4zKZuEtpL&;gf%!~ebQSXk!rei3+=fIY_@_@o(K
zDQSOp5;w4f1!ClutqGsp8_`v`GwtfV81hrIjFxuV2DZ!Gj}{u5CXlHvCyxSFPnK%0
zz>Is2RDBuy7)LD9BNK5Y)jmj5xpSmyUZU(dl2m>PrhJdf-b3=CZ)E@RVX|j?qHOu5
z&IT%FFFM^LvX?iqjSaNGZv?;ATQs4ces+w)U%lEO^mk;l(E9*DGf&Y%PaFON3Eet^
z5*GTtFFF?bS6I7p0_#*f1$f3$`0KTN5_%tCrVd303mq((AXV*xGeAtk7GmWANU~i%
z^sVd<fh9Yz3wO}fbt&M9%iA3I4uBkQXMg0Iz?a&K!DT49eiYFRw>=_Sc4=tL2%imJ
zz$A!vzvjssM0@OCL{}WqD%Lv^G^Rh*D~9P!s|-vZ#t5(rrWwzd01$`i)~{4zdRh}D
z%=B^r7}v^7VdOfrGW%fV<1u}smQPH7=~^(o1sTkA^*JvG>@OUQjB^pRj`5EZD6Zt$
z2|sf>I&1jHQ>Zn};q~@gId~0T>5DdApbTX!kZ7gJT>lZs4bwlC6}bm#Dsvb)zQlVB
z3UnWvhw)Xy&7@YRK66MkI6G+<d<35IBp)9Om#Vf<i%@z^_$P#f^{dsx$W!o5M#ouZ
zcloR{cQ_I-M=4d+5M1-96w(%7uk6nuoV6wBRC^T;C(SsUMjvxz?@j5xUa5E}E0b*i
zxQs}f3Db^6cVbL}*8#4LOW+N^K=&|6Q{W9x6W;K*G;v7psk3e+_OA~%fX!bQfX%lf
z11oLd-%lWwf+kSpmdUq%zTJV6LA`oiw%F&JPQltS6mJ7_m;kImvDP`LN^EN2DP>tq
zDa*ar(w+mn?x6VbF#32v2AP(s9{3e@EZ<+2S+&-kBp<>DwI1dXmNt&&K~{ta#p*ql
z30yGRsXrr1v6*+)T`PrR|DDlDO9oxWvBhTq&=mVVsu}!aXJ_a4AkdfgZ%SCP|0)1U
zu?OqUj)Uf`^zol!t$dRjUzHdJ#$h)*KBr9*TK=h_FP*6#xJBf9!2VkuVE<NR@F7#o
zkib4z2%R;vyH>3YtfCCX>ibEfzM)49^?OzrsPBSejnuCKKs@Sqf5+5+O9@l|k^nSO
zA8LuBe!&}^pgv8b(oFq-CPt{AJPg!-hm0`w7}P=u0|7*`XbH=JxQ&!2@&h+ew2L|&
zG}^$m9Qv|OJF2nhd0PyNK3gtW^jD!E+paOQ=v4q{EV?I3LDE{c5sR!}Qo<}+AOML)
zxx&ASYJ`gQ&euD^p50gtNhZ)ZQk|);)AAQV;0~auE<;A(MtBP{xd7O|`SQ6yg9iGF
zwRaYc0jX^c_?|vJp{C>j7+-gUc{J`vmKIvc<eA1lSd6R9A)g_6hEt1%6SnY6ZrbC?
zFTkS9OQh<al;K@P4b*=amU0U$<r=ss*o{itMtRX&P?AH<W0ani7^Ey8qa=@$^AAbN
z_uw^FaHZxKc>KJ^vUDTRZaAz->G0`MQi6rVnB{^NAtlWVcIJeo1gk_L0xJMCDH)uC
zOSVEhKI^5Fu#~=TW<Zis*bBxW9HgM%eU(H+!7tdnX;GdVCK54oIBtRvj@b*&*Yc@<
zdh;>}Ckq+eKhX-rB<G<GbUx+;%_E!=Rjy+Fyj>$YIhN>Lpc>`=jz`f(*WV^+iE)1&
zTZrhiTuPYe9Zek*z49L?Bzn?K@rf?f@`>mVE(Ot7AVVV>E5x^vckgY&`kKH2y5s>f
zsVeIz{2E(#;yEtTiTUbCbl%hrp(~_l6Z$v1tn|B#aKo9S<FE{<q_5mukizOP_-xRF
zb+~Y{2491^WiJ{WZQm2Jn`D&T7lemm?L|mFf+iz-_Xg4VtmKn5f-kENRI(4TZ6NUf
z1_mP>$}!FNb3A9AXfM!^=@b{BA7Bk#sp0i&$~deqdQz-5+YEo1pcPl|?sJpmY|`;>
z=4Jp}cy{PdQ|QO0uEeVFFy(flJe}Nc6#2GT5{IS12e_$elY2QtD=gxNqMDHOhbySp
zq}^_`oVY0w`x<F4TR*xPZoyIWZ!;vEb7fv4cDf`=3yx5M`OVUzeRQG7@ZMKO8Zx~1
zHEdT9odA}IrmFuTI8d4nV4N{P!A}G#I4U7$uONi;<ZKk7?c3Z)Ib&(_CJgs9mv0e~
z;+)@3iL{7UH9%IfE5Bi$n;M5hREN`e#8I->k}rblWKsu*tQ1;MDMcW$!emh@;i88!
zfeK6j1u{{LjaZtlwq)z^F}!1^yqWZrgAfzo`b=rW7%RAlZP9*cUsVzoISbTUiIs@1
zJhGP5lS7+c-RZ-fO?_=r6lP!o7ArkT?+_kM$%&U@Z4Fkxu9Ox%NVyO?qC{W~wzP_|
zQN{t;(n^`&%0iNh%l8OXT||_P!aL6ShXpEE;if3tU!*K<gH}2ZZKD71NsBU8yDUwv
z{N?io(nu4m>kEB?r0CA3vVUP<oh48YSHbCB9z;|4B5(nE4WgJAt4oVMBSQ1{NslaK
zirwIOgksul`vG;?D3Fw#6$zxuq#+jzorfd4sFL0V3<TsaD~;J*3MGItw98&-el}E#
zm7mIfPJ0h3PZ2dsOQ08dHQrVHwR$v|(HBzlCbt%*f`Z+sh8i6Sk&Fvg$A#3ax!i&?
zMAAnjXNu&Ra(-qNcgMxuA(2#y<o6=kngs)pW;Ossm5s2Y@1b>VO74LLhqMy8{6|8|
z-iXc<syC1i1Y+1=SJ^8TvuZY>digw@&V+@Y^N)~VXP<{jc1x)8XpVaw8g0pGax-rx
z0BN8N1$pS3PTxOBXvg-~8wtwzJq{Wq(#u-^!pP>~^beb?+@FJSOJDc|BM?bggW5_F
zr)!YwKG$p<4|KNR6c!x1H0UvT&2~9^A7Ys4vz7*@6U{kt^L)aY{^78cU|J16bsOR=
z+`=s=?}wSD^x1i`?@?CT+DXYN8lAIRgBh|<z<TGi;&@Xt)z8?CosMSdp<~F8J;35Q
zD3Zw+LImBRpAj2uil_e%wJOg}H1z3c^02=t#B`_+It<LQZw|sh&9>0;aF8_QQzz|J
zpcNM01LUfJ2Z&O%VqYjPq;*#Bm8$8a5`8y8{(-rt<BS_3W!8IvOX*29He?(C`N8fe
zuNJ!lY0s<oxZJwOS>5gq%0Avf;!>^)xw6r`BKt|?)*Y^lW;yf)1$WPODaAS0)&Sd3
zqch|mqxAjrb&7l9YL{5|?8<MQo3B-jrSPZ@6!c7T0_)b@Snli0II5Y2S+xN#2?GV-
z;0`Q$rQPz?2TSvb!q(kR?|xbx90s3jn|-6~Y04R1Gbjb|W=pWCsCsp2S8d}77WfC>
zb$LZIM%z?5CWrQw0^#8Jk!Ietg6g=@X_?;Rfv%8{I^y>%xgjDMERst_@~875$KjB4
z?EW|O?KB#Oyr8I)GSj2Bz73M|(Lc_<8av=FCkf`#4!3PE{@8)`Sfp)WDN&v!+*0T+
z@=Sewj@E8;4KnG^aiKpjniP+Q{y=rDi?4Q|h_v~fP=A6w&7RK*Qc3=`?Ca|%dyTH>
z6H<(DSMd@7pmPL8{AGzkI`EWq5xtRJjFr)!k=?S<d*S_WSu{{~(#v21tO@s?C|z{-
z%8<*kxEtpcXO2Z1PNjw3-qkMew=VBm$ho{ix7!}t&O=W06;3$OSo3UH)9u94_i!tB
zde=G+aVvKzeIIkK*;bUj(WOidIfbUr?IC$qLdGZu8%taRLcxb<qeOL+hj%CO@j;A3
zGqx<C&6lEsh$>z7u9NlBlTmt`E8Fi<Mxk`>?dPV>#z%7eIb3iZOpyC+t>EB4WS@sQ
zYC#hfS3~K(943)(`JvClwu51W73rI)E~Gdj6jhs2AV%_<T=n%**2=$$<av>#lyT;x
z;_k?~P|ok+l(LGL^n>S`jb{cz6n5Re1NtL{0#`4uxG*?^y0R?p*2oGE0T)#tySwDc
zD)Le?POx-`hg9G@N1EHG-pvrx(EvP4(;Le#3}Ov=OfktvMXyW64AF~OS}uyAm<W0#
z6(8~r1>aG#h@vZm*)-8Z3#nl*p_Eh~^c}5^aI3DL3r|(Yfk*<4Y{Rj9dhYi!3u1OT
zwpClOQ=#N8S(yp9W?jiGQthLp76{FtOwFHH*J~z1P=vzgUB*Lnt;f5R&#>?`tUlOa
zk^b0FwYFqw<lT$$F23HgHmIT^>G6hOo2t55URy*mIs??fpu~|^X;ExnU=P!#87$C-
z{vnDsuhuD{H@b$09lF6&zqNy(&+4XwQ&eE+-)WtE`EQ9~;AFVa@zgtFQy2G%*&6pS
zQtoM~Jd!_qN2sBur-eRCuT`yg^G%jqt%pTpMh`2xN&RWq#;NOPhpn0!A7CN8GSA_j
z(jS(h7~0Si?902blp%j6LrO;;ti}ku-l_DRLyb6p#oWwrpSOQ5_V}@DGHXTP8O8%4
zK<-}vSiTQ!7QG@29k{5uC$hF(Cx6Y{?b!T<`GDhtvD`%YJ#=J!Nj^Rus_6*Mb!bE|
z11^wVj&gx6$KoVQ2uQsQeW=GOnhn9{VC@c4Inv|x!CgEsgvimzb&sfZ7AwVPoJ2%q
z()TK|t1<cxbBx~Yf3z_SG#$rtD&vMx2ZXLj-+D7QL(X0&``}xkBi|>t{-C)DyzvE%
zXM8^1fVIC`R>t@-T5@{#hJA_Uu8dX4Za}tSs<)^&Z?UOvK_nCVd$0kg4p=0F_tq>g
z%4l)s?=9&fuh|X9QtV_|>&iw<R&2%LjatsuZ2}i;#o1P*+=-nmTg&gcP8pvR$~`DH
zyHL?OY*EHa?EG_P96&j)jIF$7XN9ZVCY=0j!+xEC7?&Btv72$M8@4!5_k}Ki*0@AW
z14c?aP`JLs$c1wftM`|jjcF-t`@xPzY(T?k%7s&Oeh+yey9jT5r!MJ-Ry&zpfQYbg
zMdk-O%L6uy=~w{R!%?1@PO~N1hh*;q*dB$cD@V;Nz>Q9U@<@LWqp>fT>3(gW3s~#Q
zSdEY}eqH%3?)zoh29#Yd`x42?rISN$g8rPwT#<DSZgypCcIIz%XTz=nTP(_io9jZC
zokt;l2RBk0cOqvj<xFUF;`}rB8XQxYC@Z58ah-e|uQ_q74Xk@2a3LhT*xEN-c;U6f
zfi|xhg7-|$3I6ekwJ1@hoUvLCEl2sn>Gkt+!7z`AKPmhPr?E_W)jt4EqjP`2E+6t!
zn~<s>p*;UKw5ic;<N*4EIr5=KdRCGm`?tdk`}dMV=--_uA8OL`x4|I#+XeiPX!vC0
z|0LkAiH1k8z>mlPl|M{}hoWwmL(64vj_gG%!q^{l(E)aA#E^~L9U@Rar!-6tA46#e
z!y$8<DAevfNNr7ea}_iQNh|)2>a<!Y=7ymOw(+g;Zt@<LEt{~~p~>l2?Ji5hhp3_w
zSsH-s1<%ONCjlpq-$A$u3{3Wc_T|Dp06_QuXr1Kk<dTiYqdJN&QAuM-MWF@VBXXUT
zIi+SIWXlUe-sas^7);Q7r+@cQIPWh)+2=~|M`xmhuxp|`a|MI?k0xPcb<^B$$&%Ws
zrDZ{a2n!*D=7>C@GbQC7vR=yMT@*+09PKH2zD5R4=j-~;&;+NiFSa&qlst6!g6zW<
znh*fq!Hv_G+z!sQ5Vl?{&3a$+K;U?^-$cY@iA}S@%TSUXm_7cg>KYU>o?O;OoYa{_
z1{t)a3de$F3Z;d`=e7XjIf%z?!gZJjTUIYfK<VHTdeXwM+vBNErb<)7lReAjj26n7
zCi})gH5=egV|p2O7iaRXtGJi;&|TaE`M_(m*is+8)ejaSvPX}%H)8T=ovhp#lF!4=
z!=rL`Gdi8QDY6CZX((p_V0fSlz$_16E?$N8-V}V4ne{LR{6r-r(4I0IpArFk_(Mn-
zKlXa_y`i*@Hj$)G-w#QJwi9I(5;L-=SD1W72Knsuwcix*fNMC@^dESto-v&}u+v16
zERtit<ILi8Sj%yMGRNoll0KT&ce=<vk3$bO@lsNh-)-(I*L68-!j$>evnH@N9^}K*
z{70;EHco<kTGK!1X>h2lEICu$A4!740z2tBa+Bm)K-JJ-N9p(B0@94~#uTTwo;1Uy
zxUO+HJ%^Xh?IPm~eZiHuZktEfq2Q-H)*0>V*$6Hrp;fb4N0^M6LuzqMb7P_L^u@I#
z*-FiXr_DI(N9qGvWx*BBX;k;z!`zr~Hn?#BaIlJ|_RAfCq5TrGK{iy>uc;^mMc$d`
zFbLyCPSmY|I;T)sC2hleqw-U}9i2`J<U9l|fQD^k)yV#%39unRyULBY<Y|B8B6>oV
zY1jvS#`~_*bPm7<*09$JYtN`1<naojfvToNv{OBHw~#+RXcg!ILv5zFghrg6om0qO
z8RE^Nb682{4Af#m8`H}d5ioJ$y~9GOr}5n@nr<>*rm^bKR^@JFX(=M|joca}_kwrU
z9xd>0D5BA1n=_*wJ8E%qfp9Q_I8C4)Q#lyoZAF*ZQ&O%)<yduAx`VdH&Y=M2BmF1~
zE<kn*gLodry-Vpg3cFOt_>vn(VmhO$6nRdXq1%wVw&2iSZ$p9fW_@;}7QV{kBV6k2
zP{?4<LS<Ht3u|@ruB~zBp|{@Z@~YKqOD`($ep&D_1+j{xH+MSyyUr`}?i~5MUEK?_
ze{d<&LQc;y`>e)57gQvSD?~Wc>0KI3E2tUL)v1hxePEm0Zl8Oh)4R---A1p7F~7?<
z3*S1s3g<qR56pAr@13<WP)kM@VTd-?+u`X&=!(3*wvSO<scjf4OOKob09rdUg8=Ec
z)au{jO5<C9iv5hNnQGN`89QO`LiNtja+h~qk#`dcm^V)2Ymv7V+%5PBFT+Lr&YAI3
zQU2Dl3<T#8dD@QP4*8oI$6dZVfZ|22{I*$t4g3h$Cb1j=st}2d4o@fhMt)DmQMnt!
zUz4=pI+?I^@_6hjt?Z%x4<QM+3{}pY$?L2`%V{jL96D8QCw~~9Zsne50jk27rhDa)
z9QU`pi(5|Ds%DET!m_c*2u1{^L%*RMEc;Djk2#JWNJguLk_Fy_mO=+en`cTr3a~N4
zVXG;~iY;GVUd(N#ffK}ty?1DnDvI@u1!6KQMO`8W`_Bs4Cqy#iE`GB{e{)Ra&8gux
zCyF;)&p?yB&m0amw@-@Lo5ve$pQ)`IRy#lkaqJTgyyQLBpwdC@Z_O4uU2_qQ+wc{u
zKHB|)#dHtjy=E(3DJ><@Koa;^E<^(d$B`b=<OA~rKhc+t*_hc6LN>iI-gF}(xP0zK
zVJC8J=|moAI?_q6<dDOTP7!O%pe(SG2tlxn>09jn+1YfkMyS3fxqEOEL9t2+DAP;o
z@ZT~suNKK5P9Tk=Q^L}4%-5ySrG#Md^xu)EXM~?><Ne!V00Ykmvmf?{P4<6195nD7
zhApz52MR+c1<;b+JLs|RW*A4bMwxHk$*d%*eb>NCkg6}_yc<F5CaF3NH&X3wHjI%A
zYz2APGrt=a)TOOoDe|SzI@@a6B<=Lg!7F&5PMpILxMOX3cprx|@)V|wR1d$81uAuC
z<35;1fme#Z%ZR^Yq2Jn4e6|y3I!A)<2%K#d!S^8uzVDE;vC0_1_vXM4WXP4V0X|Y<
zQsx{4NxP1$NzUaXBG%1CaHTv4#~>!dX$hsn2_$gegRlvwxfJwPbWEZRL-FGn&_Bt2
z!VNG6H`s&8viCt~%m@l%%*((*15lkSWMvKx5?L>KiUEp9O%B#r<hZ{A2nG|)BkW8Z
z7*sQY8Y5{YtIiat&a_7Qx~D2@+ug`|pu{C&`Hzo3IXe%Z;Kg|e8^bOg#+oojzygoG
zFf6`jGAmIgonj%w^kOQCUb&iPB3gHdZVBgEzze*ZAA8|7dTGLohDp>(tD6pq&JIOB
zENTt`!6jO$edsh=Z=dL1FJ>M9A@c(7J~|1fbxTo(-|0PySbh->waDH~UHeRz@4TYy
zEjYKQ;A3h*!PA_frDK%ouj6>i@135X&=tOc{G$A?O1BeU4w{I=r%<s*Yh>=OU@vEA
z88u*hMibdZ-X9S#^<ug9_mbjAX+_@cMcF%x(95CUBA0#x%5o_~&%{30F}|rg+DBG@
zCsk3G;N43d=8sO_uTzSA-JSVgNuKABt&GhXQPVRUz39^HCh8)#(-eT^xGVpg*;Ulp
zIlbr$7y-*(T-&AE5w?Pw;aM)~A9#uv5Az6f8y(w`j-IC|W2wtK6*dRMxh!;}391`4
zQCE>uBXoeQhfskc?;YtbOIviw99;-@ae6n?e2dceQ_NKeKf{&L==41R{Ld}&-IMOj
zKPGwTWJXze5JU_a=nMf>CApG5<j}eez?eC8c{gL=w}HrcBaAX~T6n&bG1iCp^a2mB
z@H)uJQYriyA8SZ6Fb1|pZ|#B0(f@>R&X2xHkG?rg@1`&vDfMumn{wJ}<o`$8`M_6Q
z)&GCfU75(dQ$eQ!PMtaYlVFmYf)1Q|r!&#CrlQU=Btx6H0VT*_8*sZ^p~AAlqRg~1
zQ&Xh0+ywcjDS!NfnhKfrxn93X`b`0o{hqJ)IiLGy8)WtU@p!P${roxSywCgpd7t+=
zrw_>pj%YOfc&NMlue+4E%U<r%eWiV}&0Ve<fc_hRlbKO|{6N{k=LEr${C9Nf5_aG&
zW}hFA&bA0IFUrNL*lJwX^guKKJCBU%UVHXDc58+iED868*n0e<q7&;1i8*!N$l~A6
zqBHiaPn=tJ9?`kF>J5`urrJb~!VhAFwkdG+swo$0148ZVRfCWML>u#yf}~QroK&xz
z`i3bKyq*@M><ol>A5_Pbs_4?fQNvsMnOk>8nTjKozIc9R`FFuvR~S-Ww@XiZ`?{d(
zvEE5;i$+~-+smT2EHiG3w2b#w2nM#ejJ%%G;EHE@CtH{l*r*NxutjZ+wv-LhGU?4o
z2F$7nF_eBy)34#d0SJU{WAa#PM31UWQUZDjqG=Gqr)5Fa-Yy@3iY(6WyfvjY&J(mq
z(m1f%u>7~mg-M-;n-pBkENH5LUp?%fZJ5xj|BbPDk#WaFH3$hjyskUb!tS_sU5~Ok
zt8~hXwDs#$14#-Y>{l$7$!VNlu|%)qiz@E6&qBz9JNE`&?E;g9H`!jX6#;Wg{2Czw
zOZ*lJY4Lk1Y!k7hzta3_J!j2gv|}3!av%ch`go)T<`befcM`C;dLoNkvGN#qSeSwT
z)0*>QP`NRXkzkXbx{gjZE+Z<r{=E2;bsJOeF{*5fwlp%$UAOTKXHj0RJN%Wp<mDtq
zyi$L-MnPjNd$4Zfo97+=W*xDGy7;s8hrd)`ohC^aK+fxUJ=z}Shc=-=Tb0Z#CNBXa
zvqXR=2NQ8zTw$n5JXmqJo>jj$b!sf}XvJ;rCOWs8j>X~+W|Bk4=|v%_@lwJe`vvEn
zB4gHWJ7o*)>+}`(RyX%D4!XZhU~s?L?mZ%Btq^`ufmsHt(fed%!X;iDR8)_QO=Lc0
z0B{bJP(J355)P%SFgh}>XjLm%RjVcJEe2cASRM&DZ{E)Z&5|Ww1t+P$Lh|szg?jKj
z56<gIu`FsYfkGz2o@cS&3Hx~fN9*=4MBCdVQqn^rSF&cG)ewJ^iw2@%yjL)Krut(J
zF>EJ+F_qF@(ZKsCYq}@;>ol(NCOUQPczH~8ac3>Oesgqw0~V}x`-EtF%zm65oqL@9
zI5XN&#1AI#3khmOqqk^Ibwsyqb9bwCJ;auz3nHjyCt&T4%G{Kykum|wCKl6C7Rd(<
zG<m37HRHB5xR>;FTUQF2$IYv+Xb3*dQY<H>2-!p_k46cVQ5&_e$r{=Pbwj3#j{>Mi
zJx~f+aAT~eJS9=IjHb#380Xz;@By&HMeeHLujU0SI6?C<HDB|wn-3YC6mtcq^iNdS
z#x<6lZ_lLJL>;A}H*%F)({E8K{JoiH`iDyy=&JTN>6+MAc15hsUG2O@_Bw_#vA5E5
z{I=Rf377M<>TlYXfjI<GNvsm`SJoNLil_0Fbo<Tt{jgVR036!7{p^<g;hL6+n?#Af
zm`Y*k>$q;=+PeKq(e`KU$2Bc)@m>1)5#6bc@&)L7G5w++Wn2sgx{t*NAlGIGj7OB#
z2ky&*58rg|YK``WK-6T%vD}rK^nf1Ip$91LR8^p4HP?CbE7sX9OlQ|eZFO?Zya#R7
zuos7N8Wk|Z)i@~9z0jCTh;kM8gs|Uy=YZ{jR#CE3ADa>5#x+dfAovPP;Dx<%#mu!s
zScq#-IJL2L`<X3ch4m&iPi_O7?va7$r8x)dak2@>gA1KWC)uf4jJKHzep=*Ue%e(-
zn2}$dRG5AULNqTymbLEQH*)MEOAMo>nct!8w_3Mf)4YPEY8h3xJK@z=s#(H;!Dk&d
zH?oidbtXR;CGE;o>W!F5Wvha3>sR7GlPR>;ZB`Kj8>v_OO}s`ocl#S$JFnYzE7}^M
z3Jj#$yCvf!j!v_9`vG5Vw$FOl4K%$21J>oY14E{X8wUn1jT8#3Y&kCSh+yjB!6z8;
z=C@k)aTQAa-lRWlO1-I&W!ttIt>1RWA1k|{adbgyFXrfjGcWc5gvH}B;f239h2e#}
zt~QskybvekCWeDK4)oQr#DJryfr&eKO~HQKuj_}{ar}|3y2S6P2z13Cu`2@73SaAA
zEa{ezD=?M6>sITr5@YSU6&hQy+5C!fvtA%A7`sVdAdsePLE@r{O8s<GW`ytOSG1~$
zIAQWBuPFGnCc2;7=1SMqfTXM2VynHPRAq^uF786D&y3Dr4+W!37gdz;ymbdQZ3+)s
zcVN?Oy<Sf3ILD;_38dF(Mj%;T{)_fPuR!G5L{T8FVOYg*<M-VHC!O3|Mh?IAjmyq~
zP5gImhafn`-#ftPS8TI;$5I9Agn2ulO3B=&V5A9W(kldTe#OB&<#*PY3a%VudetXA
z;*q*>l2{=CL2U@Oc-EgN)^C(%Z4&EOSu^bwHFjN8;le_m*0WZK1(pke9dF57wM9!*
zM3eb=5}nNW2jBZs7K@g3)Vc%f@C{j!9TS@OZQXHAwBv`auJi*YJL&-$S=R9!!UX5%
z)})OD^0^5mZZMlm-|o1FUZV*-S4n9FZ|NJ)h3%npB&78wrr(Hem&C-yF=U6^Jz;SC
zy@)C57`LJ5Pm-cHK#c6&t5f@_|ETQ}L8phQZp>rIZK-#;k@9{@%6qVc!3vV-fQ2X~
zzbv(mFVNrrEB*aQdS!6oM?1SyqmkGgY3?;2^e4eL>uo1UlNg)faPbE}OsugPI*vj#
z`t#K&Btzy(1evF+=*e&AS$ZvZo4r8GsjolgMqDY6&e^|=NB5^t`l-PAB}^F`6CNiw
zAN>peSzPiW+&efau!<LD+@o!}XW%!DJw96by&Nz*+#zn^9w6QyBE9++)5NI%)hfjt
z@cad0_4t!GFm7mYCIS4&Z*j0Kda2LOBfSBq_Mg$@T~_F&=q=yTkN=C_zsl|kPWPSL
zEv6pV*16L<e}Y_mI^U$uBZl6sb)64=L+>l*b{<zC#p-Dy5NoC@G;2G7vp67nixR}^
zhmk?VYKnxxA6jE))gAS`fH>+QAVP~#5BcbWdP76_<&OvF3~)ea)kcGC*S`dsxeGRX
z0s$LSm)ce1$kdl5#UWcIFCfJQ+wLeZbEF)hdEBfl+V`k=wfmx#AMC*yi=88#hn!^O
zu5+`)H<dR%WUABre6z;EY)%W%@U2o57%rc(iWu@9p&W!jrDu;qTfL85jhfJ0GU}RW
zdmO<_#nc5P*H!;tAh(M&dbf#A=(3}ygEv_2lM#ysaRy>B-*?`PB!u){ViDADM+@}J
zYJog^zFAI#+4G+|J+MR!h&{i}#+v?0ukO>mCLhn$caW#kIF)n+lKE{I44IbcS@p)7
z!5sq6O}Iki*g3Lw=Y6@e9<i%W>|H<XNoL)zuH&G~<Xa3NZJfgw`X`TJBENfk44*mD
zBL)l5C@`deT%fYtR*k@o#le7ejt&mMVkt_43$H=hN1+J`D+oqCm-l^`rscvMWL~UQ
zZ>{^R*O@a&(AuWczPs`zEy(L&XI8W~;J1=q>crjrJ$Qp@DRz%HV1mn@(OU^xh}L6C
zbzJROH0etOw?6B@6eJwJY%~yxQTR+XlI`|Ap;)sr$*ZK>AV(~GFh&nthN4S&(LR!l
zm&lY3pMIB5l<C;N9w1spIvo%64?0z!Tx8hh@WR3SlTaRQU(Qn-<egcyJlcLQcLFFn
zdltVQqaK0~&Hc0m{{`(Yw;XH104Lv&iv$Sg1H55q_Y5{`h4_xROYRq+{g+={U^vOI
zV@z^dVJ$~&y6yi{Y)#l*Poqq(*F+buN?pZ015d#tpeIM!W`K#F52K5gr;gXVmn|$4
zc6!Vs!|6{d!W+ZcV|KgJR8)Sul1R*XC<HG>+n+P*&4|@fZMvT{`y5O3EQX6f-}9CV
z<bM(zQfJQj0q!#WAIS5`eadrf#Wp9*_o~KOZ#z|VPem(zkaMo9?DE}Q+evpAug{>j
zsn_HMgqQswA1+$(9ziAPGZ~1LMaAr3jZ4jMOO$xZULqHIfUqyK7w<>s98Z<er5q`)
zBMe@RF8B-|&Km$?=2vX?g>N}gg_ED-1Der%<jSJqHpI2+EeCdIG`Un>nHIw?xF0^Y
z=wiD6%A!*3SFT`u_0u!2aKwA<=0JlehG}wGIokY8DSKE6@2=P>CzDdbI_1IbBzH;L
zQ1Z4;(v&=Dw;_O#u}MZ?T>9H4qBsi+-azQ1OP!^unRgPs!TC~ewDjOXkCpdZbbcdq
zsL6YzBR+WP569~hU}|uAy{|<VoUAvjYZt<)h>7SO{iDg*`Yw6?9ylg5Kee)`YIxh@
z!{=SZ5)Is*tyTwP0J|=(D3B<_L#?`>wL%nLPM+1OT6I~0Q0sCSzmkF}4}QV<dOf?`
z)`ejeXbOf=35)sKc3d4z{!H}>7UtMkDyI~t_}04LhEuM#5+W5Ve3zGd)(_jj@pGiJ
zY^fi{Zu&3IJP5$Y%o|vh{2UiLP#^D1oh;EY!a$;lL{bMEs6`c8rwDcOLG31qK}$FC
zOt4!oX;hh*fp-y5?r95T*VQfC=Y>0(M)!Z=j=K2zx(|Z-!nO7B)pcFlN!Z%4SN*WH
zb(tw+gFjFU4dg(&POL@mtv&P0YrYR^$8@CzocWbC{p;czYlp2pKRMtB^p0d4_3p4U
zljo4!JK!`U&uN8Ym^Ykv(P^M+Yw7|tf-*vy7~7w%o~frNp5dJidfuz2gXn25XCp=$
zAr*w36r2<5#gXYY8GFYz%@rhy4|;BF9>r~{M5f4?eA&|86qj6uvM$OiTy|FKdX&^3
zw1OaYq0|)~gc@O4aEsM{Qpiyj=(hUBQ4M|6-`yp#Q0bKI>J4Lca-$hR(-PG?qjQUm
z|C?F2nyfz%gn8A|O<r<lmzVm&RiqbBy@Ef{xi5&_!+<H`u+V@*pO|<nW}Ezs+4R!j
zA~UjH%^<+B5S)xw^U5sMr8G2%HBrc#hQf%C=~H1SG+G`^dPumGns9s>wxIH^87h(0
zw633J?7lNK*4ohiX33Ic@~dz5!DWF^9+X)1J@k=Oao7%Zq+Z@3h~G_JYqdHoGq8dW
zO8!{WC+sd%df$V6@WBm*3Ky`qrKi^ARQ}uHqT5+&CK>s<RVfelK|i=N{>`$O;J&!8
zsvX>hh&7f$myJ#uTY3AEx{sH^Z^oKg8|5x{{tdG>oaZ_IX~v%YQ=ZJO?3oMdDwz5U
zeFl}SEyZl;;u3KTp4);k_HwbeXL}wW3X}@0(?@u>3v2+H9D`|E7hRwk`;|re4A0O)
znQE7cBi&k_=mO=htSs8|lPtaHUo&sir$|eyXRSPme91>uB{E=D7p~GW$oW6!ndCus
zuAar?Nv%ZGgJpJg=2S1*K0;8)k{MN9pFE4BI@jI&V`+Bs>8GO|P$!tV$i~w`^`by0
z50MHYi_$*j!O{mD*M^Fe$<_L#CXg+@n&qt~Mg7lCoetZYZ<D^oUFJ&a0>IJ;YpY$u
z!9@?_<CI;=nFfuFu0f+9i=c6QSlJsI!=dzBh~3n0<W<F2raRC+AB<Mtq<yS5V?C=)
zeS7KtUVT$Kbtr;$=AC)7tYef;7s<f#ed>l+OXT)M=PLO_0LECE$^xC~NGoYPb365&
ze%x&D9m_~HF3}5?<Y#>gkRH4|1i0x53df>m{yTVmA>YeqfrXUr%@$q{I)13$I^%OJ
zE{4sXzj?DL8<VBRPl)Usl}FTU$MGYBE%){AxL7f4yaAsjzB*NJnq2ej<n!&SKKVl5
z%+{yLcdD5dVlkuI8r{A*@s+9H3a`l_<E=);+4HnRmf%vFCueK6p|q+ufpo%|VsSP&
z^O((8C5O4x7kC*Qb((31Tij(Xp+(#7tylc&G?|pPx0@8;#OU%z<8@(P8o@GHA$=?N
z4gjB9C5_;MLS%;_!l(nfWP?N477x#B5olw>yK?QeF+s^Z1%<))idCC*Hm@7KBWV~M
z&pcr0`buh8?vCFQas<<hg5%hO<R;FS7GOgOnBcXUSMg+J(THQSb`8e&5=5icdUUZ)
zks4MQ9HQnS7K+JFfYr!VH1@`%N|}gTJ9Q-vGLh7XCdO9HFj&aM$;hpzgp8)hozor}
z|6$s_Vl<^%xMs{ro|e_89V|kzo>QmWtULaJ-{IV+jU^)|<u@Rt(kHJF4(h7`$I0N+
z)scG4F<iP@kc#1&;ZGn1+<b0Z^Q%7OLh9cUJ~h}hf~P#D+_=0I^rZIUO>j&AbKQy1
zSe!I#e{8>!7lg$=^2gh@T^((^$55;=CC9O}T*~xIf2J3-C}90&_Unly2V4+q>%_4q
zLv^mc9WA0yooN%aEOqmzhj$^UU*2aJx@EPxMkhTMp`PEV!SB{#GY#f9i!bG$IG!vB
zA~u%uT4<cFW`0GhTFq7iO`FmW1XZV+aE&0>AVtnpUVykq|CJrxSO2k=^Vixt5Rv??
zH4`G@irpf@RumW_qH`ChoMx-@kukpie};@$Qar0Uo<fOALGX?Sk+7=i=G|lE=VJJ#
z^iP6APch^Sd=uon1ApX2&wJ>fDQAG2O6i_*>7H^YFYzL`^PqG_aE~#cg?CJwOJpH(
zji^$NXtIaH&)?YDoxaPr(*yse!Ft8#;p`<sov5%zR!Z!cd_cd@rlw`!NV0X^yIpgo
z=|E46Mfw<GAb--IG0V!)Mmo4OSyl}-WA*Z>s5ZYrG>3`L{fvrZM4QyT##plGl$a2a
zjNDS3p=PmZn&56$YY0_*8k*%=wc~g3=1rq+It2x2%Eb6pnm1-DOE!*_Uclp^$Mf`M
zR(k^g(lH)GbT4Z+)DqUsQgT!@>>rw7qLfNwYLvWo9=mD=Ql&=$wxC!y=24nqa8)CC
zJ$S7!Xp<$PDJYxCOF)qG)pB2*@)S#b-Jo#fv+bCJg~WN-ek|@TvtNfJbpmG|NA}>C
zzlaLE<QLOgKi4P!9-GWn5zi(!>GyxmCL>k6FE+Vmubyl&YvBI@o80rMkHIE$@B076
zCZW&pCFAA)oIBEUg4rXD8*Xx!<}Gl8W(f1RAy+@)p{#T9z!F8=I9$u5<Q}IVlKu*J
zZ_@MRrAnS>i|)szGjTeu<Y}0c->5}JtSWH^Raa?<=+ea%o4G3Ktim*{_ix#%Ns+CN
zzaSFJ#_&bD-@N)!mlKsCqIY$4b_b8-53^(&&7TS1XuawOZ<5d-QTXXA8?M$~M=bDA
zXmZvLna*h25Vga)WEORPx@ed-`K~W6q_r{8wmt0CMHN@F3CBU~7PQ@!_zMHS`sDdL
z8BYx;W=3yJbT-Enbf=!ufKWiZX~D>_fqV5>dzdCiKey*F1;uMm_6>a7YO1fe@~nBa
zBn3;u&i+8`JZq<G>MK?@wv%-vC-WMZF5$^oQiyj7N6YnXa*Wb6cvZrym9+z|I9?&y
zEkYw9*>ZiN*K_}B>Lkn}TB}nt+q%X`$&F*O<1sB<WZ_x3U)Uyj(*lA>75)W!+1x<I
zP=2V2!p$^Mii~y!pqdqGuPwS#%Gzt?{aHRDpJ|DzLH!20qR_CLJ`l-GOgGzj<C7i=
z1TX=~yY(>#m~k;*lkddr$;ffTy`xFZ29s+r>kpz!gML4C9$cuVy_}4b?(I~~inP$8
zJG9mC)2W8TP0TpgUAwQbMA~nrc=+nv-dSUeAA@)P<m9|kI=WobPU@uo`R;7xry>K^
zEqZFnUA?-uIu*mJw?l#T?nuhE9Y?YJLl7lLKk{8A+75U@f$}+XR39rn9~;Au^dMHV
zjJl%EW!$ofJ?jkEnwnAI<YToL0;>+%c2-2&4x}PD79JmT&74XF0!}(nj61nA^`Yvs
zkKVGH&xTJ+#_|!&J;L$TdV7HwND2gFS85h&!pY&jKrrA6#EaOhMbV$1e7Z&>?Tb{3
zY+%5Mzo6~2SupZAi=tP>h8a{hezhLXt!LqLhl6ND9b}k%U;6U`=f-mwT>;9Vhj|P4
zpD6CXabzsn3>Ykk5g4m&GA0}Yr(PnK75sX*skFP@WrVvN<1R<K%Rk*^kh|>bF8$o4
zz+JYVV70vKE@`{Kc@G@xIWHMGs6Nbe`u*wl?Wg~Q_FPZAt7m@vX5pdjZFqi?Bt?JV
z`bK1?M(kxl<<#lgy>0z=31cbvuRGqGm@rp9IC+WVvvToSnIi3#CUIHbr_u(A2rtds
zVUVYcIi<@pGgn*jWqz=hthVA>ejF2gPGIq6?wBuRephK2DhT#@DW`3kH8-nXgC2FJ
zZN<3dLDkFjeoyE4_wXO~mJ-byPlv;(UgPJv(smk7X>Mc*05YYqr@oeLkP5nuYx+Qz
z0%iB{t~-2teIW}^NM7`V69QwmtTYwn3;OvH6mP+pS=(BvBbwCK0&ZIn1!ZFh14~3V
zASQhA5mC5k#}g(qWA-3e7M=S!ZtTZNfLI%Sc+hb#9$he@Ha?K$T^H<0&1GXc(?!^h
zm+O;9ok)^3%RL4UX8A^Rf%I7IyzvL`QO5+W!O*rj%Il&cqKGs1KWkpm0b0~HN1Fhq
zo(8OXKUh;1^Vx9SsF3SWwPe?Zsz<z19vt=~r{~Z=J>w$IpgKf`$dmD5J^>zz)uRc8
z3jm(gkF0Rc8SDm5YjVvop3z;C;o#UUQN8Dfy_&2~j<dnBqm!dUNW-vcYn1kBfhPA=
zlZ;Y`*^6(Jk<aBe>EwW}`ru==HR%H)bT#CNUA07&)|_e8{6I{tL`2KT2j`@u43WkB
z3CJJ@J~Vh)%!7oPXwVvNf7oQ7ouWIZ??rd)ykLMv)Y+LL7H6!2TUs1^h<8v6c}fKn
z;+YS<TEZ+*qG#nP9R`khSMYe|Cy<4G6hk$;h#|QTa5b(s6Nn`Gs7!L?fMFuuE<&B}
zEbc`-AL<k@gb<{^MO<!0rRv#TnB*sYROW+nsx5_I*&Pfy*7W0n?h<_gMIlX{buxSC
ziwhAo^abXAlFYsSfIC=3@t2Fht0HZGrF!9vbi?L~Nm3Jh!+MlW^r1}&1O_+~QmmkH
zX%5Y6E3QMXAb4%X_52tb{Et<o*c;S=<jh4_?nm{LGmi>uXG%`9xR7;PM$Lfo8kAoQ
z=fuDpx#;K+?;7LruvBd9hmBKzAiPU!1E|-z+Lu&aOW&4UR=_@2v%0$vD=mo5sX-E%
zVFiJo<`<MW#cFnxfVuhzSe04zwslXw8ld{rCd4fG&T}CCoBZl&pT;WLs_kt$Hi<5R
z?<R~+El7bI+AFmC6x&pxE2Mi-h3!ufglO9_9_N!E`s8+AC^UL8D=22|XjOsvw-)Q8
zy`u{%i6XV_=of8Yz=)x3M=^O$*aN+4zubP5N9R9>yv@RL()U|5MPhx2!_{JD5S_e~
z`DGs<u6{2%_XB(BRlXjav=0qGJbJ-K6mxvke!rtz1?m09%quEmBa?sD#<3ANBOh9%
z)M{?qQLg<JK6oLv_Y3|g_ITIEZD?oKKC+f~(6xJ*V^T!8?Sq?_iUpKVc!t=3z;NWJ
zM>!=a4F<g}yxJ^!D-u5Ud-?Ou&5Bn~W1>tIgc3iomO-;%p|Ot&(IB4@y|H6U)VYkT
zKj>r~h9fMvVj2u5^}_kL9smu!TdhRM@8S{9csp+s<EeSryAs`#hgGSa)bHVnSvy!n
zTri^_S)a4Hm6DpLDw7TQXn#%*!}f&srBEHT@3q0uUbt*99|-LOL3<}?XMdItg?R;*
z4p;YBQx>9qRfzWW8+Ww*IYj$=1%~#4`+Kxoz=(0eyo*3xGID&yZqQyzZ*!;nJ=!H^
zG0lX7d#cMp`y3kcXg8#mJbk39A7BxiR&^G#htixu>d(KMi_{QVUP#nLW9qd$EGpx`
zPflnAwXbv>+-wc#!Oh4ESbTn+VUev|rtLW<zOM7FqUcgmB1$%QA1$YS;C>42Ps9IZ
z<Eyg^$H1y*;HG0AHqG3RJOT|q8N$Vv+tv*lqKSssH1JmPk0X4?oc_qBNoWRa(|25l
zLiMEhe0Qg&b-|dcCjCQCfP1VW88=fz<|bwW{R{f22)++dWHhMtTu8_I(XkZUe8cti
z5~@MxTjdIvdF;4GOqph~1&+x!V$<lJS7Gppo(8F(^+LZ7z*VoGO6JjGk9s!D-mjmb
z{^Dm0^?NE%KvW^l*l&5NNwZ20vLO#0F8oOe`@%?J$QU>(`m8)yc&qSedf2>`9LU(+
zC?iy2hh4#QI~o&K`2Ev;z_Zz=>kU&wj`}$86c{`PiUIW>z%$Unb8KJmjLU)N*7A>m
zpQc5-!B5+ceWJIVh-kF!7!Ym$9<1B8qa@m~$xr+{eY88&orjG9b@Tq%2kP!rDuO5F
zTZerNP@nj=K>e>!_aqh$c>edPKHwRY1J9)&2cD6;gU5nn&if7(_wEpNtOM-wz5tsp
zbbCZ~4gDC1TKuj58c}l?Re`AIp6mlrZ?jY=glELZfoH((;E4~c2p&0*)-c4yY;!pv
zR2ZMJJu5QELt|wGR9WIq=21#ApEfMbBoVpzx?FK{$+KoUIb_z5kAc7O-^|EFzVGIM
zNq<8y_sfBKxV$c<;pf7C%lqBkUa!WB`2OHbADjOaOXAVRc&sR_*7#UBR!fcwyaNKg
z%Yri|f@v&eIX1c|I`;@02KlLwB)g?z2`6UF*h^D6^EotOFGc6RC!0oYN2{s_ImV5J
z7$j_IvR>_*cY-DlcKlPT?_KCu(Z3}sLc<evbGO}uL-%ktC+qu|vmH5lurN!HGS!$9
zmNiC7DcWP9!z{j!Pr`4I?_!Ds$)1=xLzagcylR2yStGqbxin!9R~GFx-i^dI%{*$}
zKyo|$xH<%w4)>rwZk(%j&`pO5R%}{NgDJ~<#R9?T!DC?HEN=*==g#zeOyfymH6hmf
zGL6wbs`EoKK@)PjOm5IN#71V*-KE7{u6LJf+@;Z7E^(I&-Q`?&sdbmp?(*q1j4yu7
zwln$Tiz)1*@b++xEh;s(F#n>;5l$glxz3u<C_O@{2>TZVkG<`9kYTdosl1PgaTp-0
zaGSQIdulb4o8RB%_;HrV)+^rD5VqN9ZF+8#TLIrOvh#7XY5L`+zzw2fI6vGU4(<nS
z@C{&xyc<pwdR+mKJ|K29K-vPD-1!rm|NlROPczcMm-HC>_u!kms&DwFOagawaFWI=
z`U85PfCSCr_L4GwflhG8k49lm6dZiCC^!^+Z4I>u6olT2qwo>3T`xrIm^9E-1ubiq
z2L%G-CYUix&K~^ppTi^k0MG63{2TBzk%_-sc%pM&bNp2)91$tdAMoI?&ylfgn~LwK
z#J(l^ke<_hP2a}Bp;Tb-_T^}5<2)b9<%kaa&{loUnv(2EcUmdJQeGuT6P~>Jz|q}1
z3kq6pr&~2BCN-?d{?UpQG#|~dYDT1O+ukkvwry){-n(tvOg6s*u|2--;})$K))h1z
zY%1Z)Pk@FZPnN4=;d));-<>#F@JNsTS80GZ=ViTv>{zJ%6zQv}+Ssyx>xV~2+pp(M
zE0clkU($~qt<km}n4ebS2ptdc1B=69md*T%E@f^m*~IoZ`G;5jy>-VIqH`a@QE1(9
za&+!vSew=z)b|zpK?`5t2WRuPe%LQM_b`655!W8k`LBXi#!zjKuVV{to%PW5=RH~8
z-1gxfGwQWUqiq22Fdec_+sbuqJNr#}g~JEFJ++2jl(ch!v18OA)~*kyF2{+Crbe)a
zA?7sL)m~ygt)Xo*C-$r+s6pA8pBS+QwvRCms~0~|o(*e#;!R^t6^Y2fuI2v!R?CUV
zpQjkW8@YUZfD@5lx?+p}onjEQ6nxqc>BA9gQmmlDd_@{vRTum_Rf+g>A29M=%m&Kg
zk4Apjp`1DmY5t+yjd+>e*7g?d-Ylx!n}q?(qe<IuS@hF^PDGW9_Bk^dTQ{a{``%N>
zj#);b0v2GlJPBw|v>0-ha{1WEp{^fMS7hn{e*N6lm%f+Zk7b^&@lS8#FcCIOOfQU8
zZ;Q@-LO#<l<{~}}6VMOe1|ziYnAWm){9W+%9wFUXj7>`mW)6tI`&$8;dQD;8L}ai7
zwB+9blwxl*TmPQt^0E8Zx}&9~|1$Z1sqX-c!0T_jpr__?%hr#r_7vfKPOxb_{NeA$
z^Eo{j!IRb<SFtyTd(7}zj}NiOUx;?xku6c|UUf5yZrw3?%K0=q^{Cbz&03M&5^XP`
zkyLZ`b0SHqX`OvOMITLzwg<dVouB=PD4#z1rF}FZ1BIe}JYHmvug^SI!W55ZI0&L0
zdu1ysaj%pc3KoBKqhWC&myeA_<Un$5y1~}hWpd8iHgobGNHbyA(umJ@D&HYj*yR@U
zzBqX0^L?5Fd7r$u+6&DttP4*-J$${hsyY%(t`VR0)j}e&cCvNq5iTFQQ^803n+ce3
zfL-2kcMa}ti@Q6AM9S0~j1$djXYB*SjLj}T<RC~-e#jC!VT(U?P2S^UkKU(m+lGE#
z0{h6>y_+vE8pIpf`EYr(?HNU7*#Eb?rs~~j#~6Lp_F-Xk_I>)5Y`{E(QJ751Lfh*g
zov@9otaV3Yw0$3x`@D-P&caeO@7=oN=x9f$jE&)*;1!fB?H^3Hrf_2jVs~7l_lyVx
zkC|*>Yqj5)Zhb#KsL%P{4vG$Ot8z97NY>Zvh$V|^GLyT>+TtCt_1i=#rgtOPM*ZN0
zl9G{vpkcN~0e%vqT;#<8_H#Yn-B0f)*T7DnR-6ydV4RM+zvT;3IaG}6>b+2yVxmQ=
zG(gZmm+TToT_-V+rU|xmsIOqTzvekyq)I*p$!wVL_oE#FDoHiXvraR^GP;#t(d1LQ
z$FviqBh8%8r;+hK^D-?qSja2l?5?R%Ao;U03ak%rKgU^zQ<`chTXHHFpB1r8wc$mt
zwyWPwC*c`{#hW}{PM_*Q*64l1kzUw63&`3?Z@S`cN@Onsf4OmA^@c=tx?AsnX5eEz
zqQ~QGExU4KEbs`^#*ES;hE$>k$u>3)PP|0AAu}L89&Yj|7+5SEwd!kX1Qjn$ZPZv%
zsL(3JxrO=`I}cU-)9g@~<}yR!cQ~IqGshv|!VzbPSVMK{$EZq^a}aV|Nr(_%vl|EI
z4}JTQq2Y&>79y3)Zqx%20^3e1%_D|i-$2lKojTEj7@5QvG#-7o#^9yk9l!dqT(wt<
zq>i*M&B!-kRPI^fu7pe>;<FIi(%^MPg<xM3%<rP7jh9E^^vwZ6G1_cX-n)?2pzXpu
z&Fbk@y}qT!`OF-05f%->cF94z0~=4gWt9PvD#~j;Of_w<XchjzL?_qXRh5VgyRHUI
zmmI<+j~0GmEOqori$rAWBrCXu%fC}FSMfDkerX23cS`Ov_+YHkQ}LAqpGDJz-?yKl
z?~{=q_3xp|RPH_@psnj8<C9?ej9$78Uwkk8x%&8;klopxFPgkn<(O``o2z`f!^X63
zD{20EeX@=vOI<Vfs?{dQI9JTCxa0`<kSWU{hZqoq=JT1;Ew}r~n$Megt+$AX=6k|W
zO14quT;SNi%}wbAoY0uMNIEQ&8I#Zbf6raEST55ODz;9#uv^;q;5;zjN|BGpHt$|r
zBer>+%fCbYMC7-w;4l8|f~~IL4gX%j;P8FSi8#bv?&xoK10KeESe4xqN*b0ig&zzT
z!yD{BupBR7MwEfsAvIM`x4eVpEiYWIzXf^cJ4PS&HnY^(%=kuz3Jk)T!(l=9^D{_G
ze1X#}beM_Gj_-Qwbgj}|zoTAzu2yflvGT0w!vn@l7{fl>{bI?BPAp8rlyKO)=|^N(
zu#3mJ?Nx&}_ZIMSco_Vm0ePN0t^&{raY!4Q$?n;F)xT)|6K5p`%*tu}3E%kddo=##
zOyjhl^|x$19z{#`%Fl+K=D|**ZTxv@GPb#G`xR40C+A%WGxKxmkkP*qw<VqNj@}A8
z<z&VCO{M#MXwia9{`_do8b{k~RY0QTTTh-22U|w`pj+&>f<K8N-_Y;G$W!f+j`T^4
zKH7dy*J|X*vHaE~I-abYViPfD(<kt#EZA3;&ulPg*6FU(2lWY_k_+25@3iAz|6#gJ
zgY1Wk&OpS4iV4*#CzE%$mdVn!>~PE%y!`A0P7}CK)lZDYrSs|m&WtnU1RSi;1lXV~
zn5S_=2t|#cIM@c6^L(5-7kkmR>#co!B{7%xJSGt1xwSL>G;*6*>(JB~OAMN8zfC(0
zIm3RB#~n$GJi&fz`Z_WCQ2Wg~2yk_!{q|@Q(k!<nn3xM+<;TNPmpA~IqcKs`=8*)B
zR%dYZW8No<z72*RoJHVikAfMt>wQy*DVSSs448@;rjp+&V0&EeI!*w0Wx)kzA>}}U
zS;AbqL)(o^%c699qilnxcRuF@7w=`-<TLJaw!750%g-M`#XL*nlGh&c0+bl1+?X_U
zts32psLZ?u>daUzW*v0BU4~q#OFY-KIJTUsnNP<MC8xR)qjce@zM(gs0Bem=k0-EB
zYf&fOca7xB#jlAK{0&7`LnGm%ARe*4yn8=jpNEJF?99I&@NaSO<7+AQr1)cWX=K#d
zV+%$VPGN(_Fd)^^FWAT?J<)wuMuzgTFo>K9#L38{za347;B~pX`%_mi{xsJWbeME-
zJaW_3H5~AM<~cg+yyfaxyks&DC_0Or$4t?ERrK(lMaNmu{;nu>m7L9km663~jV)lx
zJA{p#<`Yz9e08wkC4%`JgFSj*|KMgl_*U@O`#{AWhKjuYPnitu%GLKW^_@|YG_d*u
z@WYKGgCG20yV1rv#Iyr@3dJ@1qS5xu{C90#)Fo-syVrjhmg5$|Q}t~t%9jV13YeCV
zE_v`o=e*gA9)gMD+ISxj>^M@k$Y%q6&U9|q2w}t;jXq|ppiYoTjN`K#x!zRDCM3;u
zdfj|F+wWJh9e6oseQ>QQXKV51(h(VED!1UT>zIuu(3rsmcWyT)xh%a2HhVS}9~J7;
zX5O|vy_2`1u>%mu(zkLH?l*gUcUkZ6Qs>h9;KE;n2ljy54S()>{hGBYJlpu{M66aY
zd8<P>jN(Pa^(si+yQ}qUQ^xicd$ww600wZJU264z>yPR%RwR@_U;Q^!{oSE}<<axw
z!oQ!`|ABXQ0spZ78h)#P14lFW1^?P#?Hc|od*jDpMf%8TY>jV=1^>H$3*k56Y17$b
zp)h>zwj5zF_2rRwo*GYt$m5!izX^S{pMd=>lj0ColeECv=fLq7^00xcjyZX<FV=>X
z8D}6^`J~5%W9?ui%OKP30wcfui}Twb(J94HmFARf_&`t$k0l4sb}AjY37-D0`e`1V
zK44jW+qQkCTVyS_*PmB&w_2|yJ%CP;aH}j5S7sdaUbM7mA%6yZGy2J{mOXBI6D40(
zAfL6YFg$wC%Kr!OKAwg5G^0yCya)A$_pV>=7T$wql(D6I(K`MNSU<r5{KhT-&WHDs
zzVXX)ccCvi5Tr@tB?l6#lF}89FE#HZALh~1|EQO_IDYRJ!2Hd8dPe6glA6r3*QmC=
zg@3FcxzTOgM$fo9rqvV>mp_AT)~qU)7{yG%Yb~b$&(n}=`qQLe*Xqc)`n9OpXIc&y
z#AyG)IU5HBjm%>EA#TfJ@ZnC|afVyB=7YG~pcZf~lw?%R{`v3mWxKNU;K|ST#@F(n
z8@~GD$Is6g1)FnH_DP#S1m~i%Fr1?et9P~xJtxuJS$s}nI>OE^L#*aK8GVi4r?jT(
z)#k1~c;LV9&-az<)T2Mez5Dat-Mj2h@&B*>MCT+Of93d7Lg?^zJf0YuldXVHHFsXt
zB^kq&kO9@>znt#k8pAo(3Dzq{R}Hj-xe|58R^5c@B@>t=t^;MGf^|7%O!Fn`>;rup
zdPhO}E*R@`p}UbU4^vJ<764)rDhU4vcBY9OSZ)2gHQUz7XJi6hK2~7r(>6|!4{o9I
z^gUT_?WsTiMg1oTTY2^WPfcF^pZpi~Uk&_u{+q&voFc)=Th;5E4^(gmxL+L6xiuEO
z|KR8%&ZcfQx7PV$u>=FSuI9htj#j*1UZ5WG^S1|vtFcaSF^0Rz|4h$uz06a-Jj(KO
zvX=7zY_rNgDTvNt80ua89v3Q3`YU5;C4Kpgd{F|hL2)~p00)oL$4j(|s|~-aqh0Ya
zrg>uG^>I>1d^+Uzr;oIdaL0HHpK(fLVsFBm>`&(tpJ0q>nP7i7t&tr0#>qzj%Sld!
z#*$iZ1?!atm%rzYwp_XLSb|la%{SXbB0rFLt>JGTz(8h2eGLtFwH!a9bHo}J;1Nx<
zz?_d#%?lSo`fhSm1-)FZlgrez_@>{%_66zHKEkA;48%IQzySGW6tewfJ8S;F4%4b%
z!j~~$(*ZsVW*%{veBKjr+8$eoLut!NF+H9fa`hjDxEG@x{q%Y%=ME?KpI4ucxQSWB
zaVix1{QUaUA=VT|NZOuUiX|WYZf~r8(y%5oFr0c%P#E3;PQKk;gVd%y<+a7%eJ`6C
z!e=Shkd2wz{9dMuh&85<yz3zb5pESEY;Yv}{@-(faczSyX_#CX&R~p{1A}H&I7xg>
z>H`ajNEOMak`YZU=aIepiJ4mWE~a<mY)7`>yLX^d_TXg?{=d!f|3{kkn)P;Ibi1cw
zv##*JyGC|wazWnU@3VJ6Uvq!v`(p}<6D5a^8q3$yib;CuSZwoW^D9cFGj$v>;oz;*
z=Jzxgj*=G?w=)>DBjF@HEbaaf={cX0Zjuy4j8orYawVX!wrEI>zW7P8!_H{OVb+9g
zO218TW}@WbB3r)!baK#7P7*W73sI_ea<Pl1OTz>Qg+q_56h%93RVWSO3SeX3`%8hz
z&D}O-Ui6ZC?O-d&`9$$(*moLof9G1yzDHWE{i91SEJp565K-W9zvr@_CJ-AFNuyQ2
z=o<O|RLIH3M{e^wEiNeyE)B;WIl#9+X+UcnC9VHg!Q^vXt3@&}YIF-f_=I6Gr>_qY
z43J=NRz0&;h!s!<Sumvlbnn2-&UP5GG>rB9e!Rgge)kgrJTDFUnbu;yuDxF(@>aEl
z7TA~Epy`*o%=88~!OXSrX}wn?A$gZr(^>M~ZTEib?!=`uZS)=Tz==W`!J1^4ovC5(
zap5Q@2U{K5nqT-iK`WOOCC%+>tG^GsI#2h>$a~LuF?egH6N7PXkZ%D?X8EOi<9j3`
z`_Mf$5-lbp%I$9+M|UM7&+ZFDh&I2p;;al5HHRl6FIO2lz9@8{A^HiFo>+Zhgu3Ri
zYTy}G?>9x_vAW1rV^|$dHK`${C(tUvFePX1>u(!^L%2<UPvMtRy=e64wl)ReOQcN*
z7?g{PZ=(368A;5FJiW^GB9`=_Pq9^S_eBmPr4j+?AyyNFss%MfolECz?@oQ!K(L$z
zF}0p+%e2&uC?->1FI&LSsjnv0FfDbLJ<2O{DX@rmr6S(B_CB9)*>v|63(#Fssz`dH
z7-VAV4n1Ni66lqB3JxGg6C|V>cpgmQe1Oyz9Mv5Ez~bxeB7U!Yx8Zh{=b*+jYfwsS
zn?I|*I0*m&;7vULMTVB)VB$z&!WTN$6>51BXPe>~$4|F5z$mxaPLH?2v$q4`mC!2J
zdCT)>fOpDSeZY!;DDV=I`)g^>h@%()9V-a_@Es2%F%r~L#tEH3Yw4e=sjR=G`dNto
zHUyreL<aq#TjgQ>7K#%)>`kSrtCWtEEe{S+UCTnSv-KrwE9N=-^Roy@p7pj9_<J1p
zV}G0!IGyADFF#M_T`*2s?bskAvXLD-Fd}DCPt<QJA|f=(pqlvl41QdM0Z&LVzZdP;
zPmLz_7eCmp3^4m<5gU``%$MH{Jvro(PkO~-@rWdcwdgx;N`t3UxwhQgv1rEyUb#92
z0+&zJTFD$kVlR3bl71BHZAiwi@P_0ybUMe(dqeVR^{*xu_;m*SVh{XczYELA#m5Wy
zj3epi_sx*(*9Y+JN0=Q7<(8G##>6a^h<41k7W^wUUFN^V&bRyXjbN-GWsqukEp;Hr
zsZwm$Adtsl1W(S|yTOdFNZt}3VWQeADpeyleA{j(CrN@%p4VPcWiLEW%vvE<G5Zvf
zuG3(1qOG#4{k=yuJnQ_i<Z)R|YGrs{8eH?X$mlicIiJefC$v|;RIzDD`W?K6r<Gy@
zd~<Wdrth<+vRt#w?iV>znPZ>!x2BzavNGtV(qR5y``{p@L#pSWmWn&bx}N3Ig}!T!
zOTEjPjC}SPZ=cTjTIi;MbR4Mpo=(MyL0>&_EVc<>Z9}x<UJquus*fW|$;j|xZ=?EI
z72ZZwB_bzNj@f|8BF#i^qk3ZYQ^#g8YakkCOVT-*-8#amIZV}5`D(0r595dpc7&I`
z4sLuLwLwBIEe6-<_cuZ=3mUl1xCsVF94R}(#Lj#Q=b>Y_<SWQ-9oUt%TT9e&slj0D
zdAqh-jWN}^b0&6crU=g6Zdm?(L#9|>j4oHB62~4!x3z(`#6NWLVEKs}Z_+V*1|&iP
za&qb=44E0h!+IORw3)760L=F?Ck}1_0C5bPebiSBbM4|kmusq_$%-#>!i9@D9E$Hk
zq@Y0B!Zl1vgo9B(r<eK#FM{(h;;AYbO8+mb&&^)8h@0}_b?PXl1sySH_-Qq=m(li5
z=_?HwBKnbxeD^8OySGdUc^Ayo#NzPmBPV2e_EAH##s*?oP+gvmsD48`*2s)6ZjxrV
z__QE+bwSn$Uz!8S&qf<0&BtgA|NB^C4B+i;`pF20@om%sf~#^OeqMo((>rB^Uj+%n
zDLmB-v{GXH0y=1$`7WmpO;hWG;5+0{YOw(P5lel_^viz<Lhzegq0IHLYDgJ(?LnWv
z2!nmB@kqqV-2w9DOh^&QZQw|1hV)KJuoioLbiRB*xl-(N1fL1Lba6OXaNd6<qupQs
zUSj4(yOpMLgZbw;ik68wFqL_JSP6$H47t7!zQel1L}cCZS^W@;t*R+gBV5bv3bx(4
z5ozl35uL#We^B-u=uC4gbodeu);jv&r;9*GcQ170_%rw)_c{OLV9DdGx7Vq)_&v^c
z;D3ZRWRsq&mq{=qu6+@%_3RMq6%KmRg@b;gZ*syx<6(>B$XgzjHOKpyF2)zj*@7a4
za;UidN_)ytTah=8k~T%;ZE%zE*G_vyc)I&IL;`e{X^e5Ol?l&w5tQUr03GL}ZI-9D
zRi4_`V5B(C&PR*H!@8-W+#5zq8kHg$%y=oiZw%y2RQti(eyBWAOFY^a8!Bv^D*?0w
z50e`t9C*zIgq$z%nY5ACSUxBc!3?JE<OTDqQK~e9R&Sc$tq2W>MpNcqJ@c0w>+!&`
z#vL}ok@ZNCI&Ji?3eJ8MV!IP_JlSTg5H)cTrb{qa2S@1(wz$)Y9QdQ%1X7gc4q4$z
z(FP#KrN-H#{3?P=zeUj}EO>%Q<;l~OulM0^qwCW9sMEtW0~}uuWm|C9pk=6*2+ti=
zT?4*^@KX~R71g{3iQ=FJnAr^iaN7S_#fQ~hB1lzq5o8bF1&_0zhwbZ_C-8ajMdz#+
zYv;+kn-hy!d~a*?{{1Y-$^mKmFzE-g!xIM+Hhe$+fz~$cSs!1gT$6Hb7rwtX&mmq5
zNkLoLnD~oruSb-d-L7!jnCS1e>=B*)Gk(^_pB&S+rtpL1xY-5GMPry=tZ9G0xqtL`
zuNU0N?V2J^a%qmLL}9e;7!_{Y@=;y<@%W~#wbA?c9ur;Eb!PjTmVSwYZAq4^h)vn4
z?mV&LOZ;HhF@r3Yyrjs6{=B$#kDzkUN9MKeC-+GwG+VZgB!*aX^ml*WWAdT#jc1P7
z5MQZ<L~NNZ3xX;ho?^?oZiYe!z<mQhcpN{rp!qzc@$Y4vE*w&DC{KegeMr;_4nKf{
zz6MZ!VAr-i+c<K&Y}r4ID`{$Lw9828l-4p5=DX8xa?S-qmV466gHIi=$T?hLQaEgN
zY;?`oXhHNxohgO-f`PoQx7P+7^*IO!@Uj-h84OsL_5$na9Uq!VR9a`P1YQ6>I7HLd
z?E70^YiV+DYCg;kl~R|8>FHds-v%;9ywp;Gq*f@iTKcG=ELB2D`5XHadp;3=XaC>|
zs<4u7PbeXrgF(S;kMgOzktbRx<J6qO$t&WIgFXV+kHputttC2$K*E{_xcL9i#90OD
zA7yoXu<90Ae}5Cn9{m1$K84@QrTI{W{P`^i111I`5Tt+d5)SIwQgGvS@Zlae7NzSF
zhr~B^eYj`G%grbKoYek;mgAGLZEb7zp#A=^AU%794fo)#q6&nwxFEQRb_Gf}Ba!))
z^HpJRao$&m%0TF~`oNxSG<3V@1#EPAV2Tyk-9b7@-?SZApZ5C|*FUtVd=L6(gsReD
zGC8hT`<R)8NPU6>>2EoIU>c2y)g_ZvjuEE%>c0yXta0$x>mPRG+)uEtn2(1Jr3-@x
zDX4C`=}x_)KGguxL=S2zwVEOqT20_4SmJ78`oZR6_vl`iUb-;2Hm|0I!KFR!&&j(F
z((q+!uU++D2TMWUM)kiz{l|w^>{S}!2EF6X8LrRz;Q(ez&KVA<EbRXFjcs3Ndpg;~
z3crG%KJ7SHRq3c()!eqC5euTy$ru*QqEJ}3@0o{em11r!f2X0G1qZ}LI246FTG+kt
z5*EzkLv?K_5;r%Yocbq*Y^{(hJH3A~=NccPil+fv|6=_b7mGuz6JTl1X3?AA#)la5
z{6zsQ9EV6tm-CQCSbAix6oRc7BI_S65KDS_#p?KND{5l#&z2_!eVtZ2Hnc=z@iQ<-
zBok~(jW>~)jw4#4R#K94U?iG<o`I-ne#-%R3WTxZ5o?&`N<CwGqRT<|+=CW91HcTX
zf)NQQSI<|u2C0X9Uf}2lXmZ$~AC3baTui<Hu^$#0#o%lChVoEkMKz9E1;3G$IOOL?
z3XQ<{a<t=b;=xrl&fDMol%pYDT4(bpfsb3&**s7j0D?6G1GJ$NDXX9OY^g#>uf`HE
zYb@ckak26=g-uWO;juVWze77wI3#<jqf1!lGW`oAu-w?9b-!J&L+$26An3qDz#G(I
zb&7+Xf>c8%>%BZ0jPMySW*ixZhEvofzNZ?<oI1s5rHY_yS^Aeaz73phk=mE%!Dk3`
zvZM3EaUS5NfcYNyu6FpQ_mjj&`a{*=A%olkVW%=^ep0vt0o)Y_-{B6^f1o~wR=~Z;
zGd(Btbvn%ISdx{3RdTgfKPZY{Z&PpMOA&xga)q1w#l9E&U^@e~4>mCm+4bjs9wTg^
zU7svEXiPgBVAUQ}DMMaUucoSPGmd&FPF<DAPk(A{?vFaZ8H982$poRK`hy!UU_n%@
z>#rdFq*H}!cxn8pFpW}B5G=}v&_9p$)g8i7&u6egqoAEAeuyFG<CbfhH2r4q(aVO=
z=l^7vE9Ze%5<PM_IuE~7E<+bV=1KG$+?EEPT<ftYy2cWk?md{S&>Ihob#3k!E8L_;
z>5;xyY%~^!v5v{mJO5>{WiGP0AXk|9o!5SJ&JgF{O%x1`f}v4f<}|7-2-dFwm}KO_
z!w?tYbqlTu_haoo*BC@TpO!HY;a`EF(4`%B!8hc?WP8(;?M-y{b>b?%XAK(bynd(-
z_%#y2{QF%z3o;1#$&wH6^<zTrOM~mqb*c*5m~^tI?Pq;u4I&F7;5om^kn?*2Fpi9T
z-xQmxQL@_QE@s)@`>M2%%aaDb>~h+|;2&=|^VJBRC!)j$wJY|J7}8>wkrTMoC(qDX
zIPC9|{4C5m=u*8(j(RmQC<cbmm<((Nyqe-1DBL5|=IUTG8IX+HQ&BxiMhc(zK_ytv
zxUSSV+dR^s-FFmf`;7%*yFojNJ0u1LL#_V7WZS-?Km^$j?1>-tt10yrtABJC?}ACR
zNf<24K6I`uuX787;=KEy`bA^j6W!$p9q{nVaQM=be{AU6_BObm1Xkf6P+Kz2fT|a#
z4jN^@2~)5x_;_$#XZsdTC4Gn`J1z!zvP&@P$LVcD$B-Jasz@#}_^lsWT$>oQW60Qo
zGZk@s*!ZM&s3~i9!yH=1VPr!~>yzV$mY#>fIUCj;>c{-GL(5f1ZKC86E54>>U%i#f
zQIMKuBw=H@*T5V4Fh;_q?KJ#a>T-KUkU~@_Go?_EK0vVytf<2pYgJHj@ZIK|z#qL-
zL<uvE#F`ReUQT{8;88LqZBrND!OqHcanwZc5-E`N@lEyd7wj~;#E^r55Q~0UY?T~H
zMB!}fp%i8H>KR`l1&gT9kPlB41CD%K7Y-_IyG@@a2d}J6L^cf;hB{j+L7g<J$rj86
z91K_Sb?Kd2Zlq<jYWntAoF%ZYahe_v&oyv5*)bu#8m1iZr*euT?Pq+^hte!k5t&ZA
ziIVGS2~0D9i+s`G5y9J5G;rwO=nHuee56drAb9_Ir~lgEowXU>kt)j5KU44y^YW26
zr{%BC#|>V8Pwh`aGTM}RG?1#&kM}HpRFCp#k#hPUeC{ykWc$J|uq$Eu3Dbo6?T^YY
zpBd+s;p>kn?e6U8oNm6HtA~ui0fw7{SP7o~YtX7{@3m?(fAZ^}k+0vE!3uN=&E@J}
z-O)MYQ*GP2TeMX5j>B@i`@_|Xn*aH*JHN=lZi={!CT{_fXf(*>#ukSOu0M~ak;j^U
zm0l6N#%2MjYq`yU*8~4o<@aAYMEPK%|9k9wvJ5CX1+T+La-r_E*<(Rxb4mPhbz)%Q
zy3paxAju#K-YqgDT?P#4cm{wx{6yz`kGg=NQu?D@`lDQJ)|k>W9BKGpgDehYu~0$H
zj2Kz7!<+-)iQ#&FR3x+uY$i-E$fc9o{Ng6o(@uXT7ROHR|E_SaX4=^J1cdJ#l!Nec
zst=waQl2TCUKIR@7*9&ekTc-t<1aeLrn~aSi^5^0aM%^I0U?PYRE_$Vn!vBvhznEB
z8Z$D~y7trVEG#$cdaE1-H(v^_<NfBVv5Gfe#ya5kd3vy6=9xSkqcpebcRAH(6<U<>
z>=9TE28A&=a)2j)IT#oC$tJUTl^yT5yrdrY9BOuKNdJ=mcacoPz;rb+CYu=sCHp?(
zq@SM~-#G@TWz!F4SQg!fM_ZrHyuCB?_QOB>w;Qr=r)J*1VsC@bF$a?Bk|UHy|0yTr
z%ZG3WZtx-%>H_cGfuamqhbJhZqVywKa^%++oulv$byA7C4L_NqP>EF`&+daR8=+r`
z4Q7=fTgxZ<%XW69%8BBi9!s9fR~+WLNy&qL@Xn3^%+tn_XF0(iN)nWSEOnW3Eol7S
z=#3@M0j=w35lx$n{O*q#tS$Ikh|?#wn1Vd*X7Ey-%V2r<iO%_k>kpPF^buLFbISqQ
z^*T-suwLiLXI10MNE0s$gD*`*)h8o2|He;@v~a9qBJ%44ape$<Vnp@`*4Mm720?Hw
zo_U}R4p&A_qAcN)jC+|J{d>NEMS`Q0nE7mQ%M9SXWH<1(I(T#BS?Gf8-OvahhSo)0
zv&6x@e{k-ZQHiexgyV;=xaZ(mV%*kMnt5l1D`_UUAyXJOMP-Dd9R$;X@{1129{Bua
zpYT=Lc*f*2acOZZabhgNdb6F)<F%Nkg&lYZ<FM($Im5}iWffuWvMi@f80(N!%DM#g
zz~}k8Zk7wuvwxt(@Om+$A}MMpeUF<}SMCuwDGfH>pg3;+H?xBw>Pl4(!c{{t>ZPp{
z9P=}E?pwL)>8W1t4`m0k9C_*WexH9){^hsx%J;zMUUHxF;=^#=#F<CHG@^KIjzd1q
z_4AQx=T{&)bk=6~Nz&!~PjZ<-44$M0fc$E7qDMVpE;I!wr7;~npQ!4Z^vyJp-jB-t
zFhVU;6Zp|DYSP$Y%h#Ro#-Ji?8LAcL!b_t@@ukVS;?jBxyaOsUs`mlZN~7B@n+_&_
z9a6oLH`oL3J@D1$@C9sHf7vp4=etA`2F3F$_=c%m&Zu}bjrV7HD3<`zgB7hXQ*7At
zI-G+uZMt@z9y|PbZ42L2U--0q)#BK&b=Ftsy#hH{0)HEQCu|qjW(0~dL{He2kxxLM
zZ=CMK_G@SCj{zcvRsHysSt&~ltX@0)6B^)Z+Y0#rTB~mUCz%pUbPoZ%AK0<sX5x2|
zCyuI-o7xOcw-VY&KjCLdw0<`}7%3O9iOA3NnGxsN>$B4sgK&4B)tkh~=j;Mp>7_z{
zl|1YkQ7o3elk&IN>yib!aC(Yh(?4Z!IQaZ-*cteOr=Bv!`@}Se)d;cj=wtIS(0vkY
zi|v3>jEx*8HwsXIHl&&f$nO1Tfi7_;pHv3LX0tNU0^qI@M6Cu{h-;5YAdBIUj9VU@
zD3Gqp5p|Q=Jout>wyKVv^42iH4J3mFpZ7ky2n>%AkbATgmG9GQZJ=%ZWVy9AXUF^%
z@Wo>BfrzVLwp`49k+oZ8s$~1<Qd!WUcIi4o;Drz-Qhsgqi_M>!5mA_o;iw6uI4ZNf
zNk%Xekq3^1NQpte;iAQbL^b^!C=8hSObK=fZ1B($4OLd#LWZCWW0rc)Nmd>{rc4JH
zJ!A<oIeNkRo?cD*ML!KP4ePK!<#Z^VgslwD^4){KEG^0~vTKStUJqKQ0G9^aIr=pZ
zzUZ7=l*`oiHn3#kE6K>}uZ8+CY{CEyIYZXq){{s`Q$9up-?ooQ%4XRjbEkzBcou{$
zJqwcG+jr4RT+vB#K@j*>^%!l_VTZsooho0G^k|Er)|AFZ7w|<i8L{}#w!#?^KQ{7g
ztI7S}pr<quYm!EW+!9rpk-Sh-xaVxFaAfvd-+ZRb^GdXHiltdn_q8&y9=bzhlRnmd
zHUd!bz3vx8$>Dn0pl(-+@5YIFiPmnIIm7WY9^C@e$mqjs=;n*fcsq;ywoGASahQZG
z!n7&KLzBqq0Ox|hse7xeL?Af%+N^SNvlGmM#=FwL5F`eKwO>P8Y}hAl<MRz6hzj5;
z(aBcpKA7nz-81nrbE6%RSa0hr-Eh|}-=mw)HhmW>+^CsgTobtv)$7=$EZcberBr|T
z5RJH~9H0{=9lG!|qNiLxGL<B?`8#52M?X={+pwp?axk#U8OL&=uS_k%dX7%1qba;h
z{E+%5V|n-MUHb(|QmgnCON^z=q6)sT9>b45bJF!OG^BiFVIk29PPyAY?{O$0%D@xE
zDz#}A?-GC`Ls?#R1~E(!Ru|GYd$@_KE?B?PRR7w^NbSXBN%f^)HTvwKU%@ggiJt6O
zbMp<tP6Iab<}YYkA<;lbFQil2PRm8{5MK4MQA`OJ53cCmAUXl0?>NM@nS&ckb(B?{
z3;3Vtb!Waa6JIZeip&}cEfXb^bwP7Y1VoUW(X|=n8En0Qo*kR7k0@X5%AexPm%H-P
zEmShR#{#Dw`fHWRf4+{LPVW-u({m0EW~WlyLQESQjm1Oe=^^B)eBv#%O!ceLj#DY$
zLOvO*=(T2p^;hvLVf@dRCQ6RzZ?Pl}*Xx)5MX=)g3^49s9>rB62hA_Pp_I*lX=xXT
zh6kF3*^me5g%QZCuiP5Sp&TU3i6N&A0cY$8*RHS_(9YDuVfJuS%So{~mVz&7p=7Wg
zf{)VRoC#TBXG^(}m!_mK>2#{liCAhdpF&OrkeiPab*WWS9$G!TBPlDfq$xEh<h>)H
zcHaXttq%H`suE8J&weS}D*lh<xUjalqx0r|PS-59CesUZfxgCyo4v>ukG4Oc#szUK
z5sf82Pc0jwb1cO$IcU<~W!Lvh47sCNj=>GZxOx*=a5BChw{ek3ls&mVads)QFYK9T
zQP*x<zw?Xhbf{YV{8B=WUs7p*xLw;82FOMGDgt?sWo3GL7%6H}#E-j!H*SNxZ)m=S
zomnyR$w+#yu?4}?Jl4ji@n_O=)ajTy>C2r*x!;OcQ;(R2iQI6g@Ln=m7o5FTz2l$I
z?9e^G2fBmT9yf`f=q~HYZc7cOt{ijS(?7TQ!2J2)WaPG{(A=8P*+@Z1-+W>ibb_4Y
z1bVqx$hZNvloOF0a+wvD%PW$L!}JFBmiL5hE6=cZrGCNQOg{x3m*L4JBUk*<wH!QT
zsiw-PHFk@iZ9ihM_}Qhze?cY4N6Z8UOF)v5JKq$UL-)d+!67%R0aNEDrN;#qkc*k#
z82s)!(DDzE-IqT6qmzGnGYLo)pCkV8$33#~hjNRi5r4R2xr;yinwN#aNbQ@PjQn%n
z(SU)JDW0RvH-qDLKyly%0fvf_mk(B8d62q5YFxeAi$|X3A;r%~<`gH-yCC=<vZwQk
z&$r^wM_loLn#GOGbj80uDW|xSae{k&aWsjk=g1Hhk9=3fnYFT`XyYZNuJ~VX%_+XG
zihs3d@lRUu247s~yb)D7+!fziofBR>R>g<+EdE%TT0htq-_sR;fQR&b)BQQE4^;8L
zZ*zUm0Kd+Pzf|OazmIQdeYq>%(X03aJ&Vt>;y<wBwo}VASM;s7a#|jumZ$bC`u;%z
zywMd!8JGMI4^~EgQ_yp#mgjh`_|Y4rQ`$}~1Jwo(p49^m3LAZZf3RE$m$s#Ta`dl#
zsbA~aR#=nop7hUtpl3?K<JmR-*<3w4$31J~SujNpc1Ud`N6*%SFX_QAcn~~!Ex!)T
zXn{O?H|1aNe-V7xu=~(du@LtBFT=PNQjb26@U-b{?el1TH~U|-;CtlAnm8S8$XvUe
z4NXfY{9Z6GG-skx=kf}NeOFN_yvnR=5?pts%#4LTtZM2^FAE<2GB}xRjzbn7IUAK>
zyYa1GZaGx|;Rtn-_?(EO20_Y1$xFH*-^1xRq?P`5oj%TQezxW(v`PG!#fP!#Q(M>@
z?a1`fPzPt*v;6NLsE%Iw-whI1rWX~kU`j1ky>a^I@am_2S#~#O``bRB+23}pOkY*3
za7QdYup%~$xlxO;HB0eoD0_~YpdaPBZDjgjBDGG!8*1Zx0Cl9150slck<Y^C!J<da
zlq4sDDP@Z80{-o)Ja10l(U9$Gr*bqY8Gc9UK_xhh&bdn;3lh$j^f;RYlx>>X*Z#I0
zw!46RPRS|F?%Rj^__l}*Dg1YPPC3)QbNRG2>O!W<;+E6G&-zU{$UgIVw>jSh)sI+L
zPjr`K-KD}V=%w`1asWW3GavARj0~DRcz>-G`RX-b=dI9`^spynp!)rNzogWvUGMMP
zX=w2WqcDyz#m2ZwzWIpvwZ-E)erZU!+OBTJZu)SNKhZ4AX4J<w)Wr#(y;mQ9wJ!co
zw#7RyzWTiQ7M*EjMMK97PqL{VZ*7xWR0`Om8m{9l-SSKQ;ImG>fu}Lc=8lT{;u<*F
z@D!Ic*yjSi0QZD4vHw~xvA@c~umnd|N9Pt<P3F&8H7ab*pN%%<`qhndHB3~Y#@Mjc
z;%b`N*cW3@gRyOLnJq49j}+Hv`xuNSIjt=S<$MP*Qqm+usbfNvLzwfAQqM|J0z-rJ
z0{%icQj?-E-$vbf&;yn2*7Gt?$rx!}ip}cKffahvw*7$U?D;a=2DP5wth?kn|HBMO
z)<>kAyqn}n2ao919*wKCLpup?ZnMslwc+|(?7CmrV*9a=`eX|UST?x!;Mo}KWA*QU
zrT5vtzokDrsqHgi^d~>r{9u@0;#Hwkk-V_rx-ZIw^E;*bLn12$X}RL9#uwFppJ}*U
zC|2m&TtvZs#fd>*{Adg*3Pt@$^dNa?a6g@hDsHLkUaNWkrn=;1=#`uva9mwoe0x0!
z-MGN&O^Or`2(it!ZG?3<1&<}=4!@B8jex_sTU^mfjYQ+7{H7c>M4cf928YvW79O$D
z5UdbfFid?RElSN|Dw@%P{`3~nU-XHo0@ay1QDd3-suY=D=1`$x{lIxxm%_W7`AGFN
zNeTkH3771K>x(_sc)!iRH+*sL@;dT2WEPh1(|5ezY~TN1R!&yUsn(-)wj3sSW2q^m
zSHFNl`Wh*7p}Owr@7p?xJbyp<2DUp9Y5#Bx{U1;vw{Vnm%znFf4UZz<I)n@2Q-kfh
zncu7!xkvpGN5AHBTExPqjcMIBx+Nt_Vh~Bi5bH4@h+JD3jwVX3QH@UK%sfqpBX8Q`
z27;AjhEJo3Bh_4D&_KIrH|FXmqiugMM7oT@Rker6=O{>wT(<+5lcNq{-ghJne~6xn
zml=F6XNbnp7!b5ZnTFMm&uCP`<J_ox#E9<H>7b8vkWnOIrq=@I@`4PQoy8%TC@9!c
zjyu2T5spN#)~}E+*E70WoKB#FHJ-~1H<F`gSQV>-SH1y39){<FjSm`yMqR}N%tlC|
z9{#``refZv+DWv>_+z*a8oPB=z<JYlIvqEA6njD*x9rhg8y#22Oso6dhPU`HgKe+y
zHW^uO_s9^FM#3PEez+p6Vc^3qk<A8#$;d<9ZXy->KhRIuFcogtln{bf@FMTx(bt^k
zhfTMD4;!pR+vgi0O2*06O$@p~7Y;*hdrXg|Q4%&2Q%It$G-DUO+>FyX0=j?ehof8G
z(F1Hk_IQxP89o=;8j5l9ZEU4j;lg0-V=iTFI1WVB@;o#x4365}%i_G33xjQc*iB6@
z=e-OD{Km-GawTM}fs8%q_nM>MG|{g~^m9RfKQPUmvPnkn{~$xjo0o@l7`5JLb<{TZ
zE*SMEyB}otd9?fU<6)VGhaBxLRO5-rmIJ|evgE{j%b^?QS7T8yZ$vB&4m~m)#KXSu
zu%(O+xl?5lBY&m~a@&B->Tgoiy-FIq`UAJ8eSKoj`oy`#WS>RbAEZjo^Cl;7!^|pW
zZj&okTuf3MNo+$#(zi45p!XtzU7UU>CPScnFjk-hYvx))n1UdSr757Qi5UR`&EqvH
z=d6ZE!VSMt2YN*k+_~Bp`EH>6C7E=iO2Ft2rLR~6_5dYM^>QB?HEmdvx)`CaBRAX5
zRz)$l8d}2em5a$Q3<7*#NplmNHEsFAU{l_G@U_dKeUTU8Ed7(2^>NqBANUvR<0QdY
zh|LCo370oJU;z0Fw;DmjbhFKW2EDws;WN74?$_d*{cHDY*=?ZHZp#k5-fqvVHU~HD
zeqpPHaOT_URuP~f=rZ<^=LTlxsYP%$F<Oe<in2?9j9GN)qKZ~sOZ`31mvGN^Mje?&
zsy0WCb#;r=FCgia$&)|xmD<+VQeVLxm$(PkkYU4@0G8t5)`RrcdN1vpD>%$_9EywZ
z?JYRtcwZf_Sj|-G?R7G1w>#}s7$_H(QGN8%AhDN*Z3LuD5)yoMx_foEJ`s>R8{7j2
zWV>5d4=^>VL?0#c7rznsov7}1XkiqSz<gR2eu|T!V!ev+{5Glz9=Jr=!y)F~!xS46
z;<g~f$;eM;$UvzR$;kT`y5FV2Kch^X?GwClDLmPPf0e_J?G={zX<K$38l~k~Z@V@4
z_c(_o>8}7e%>!v#6tNJTU}c*15u6>ZzJ_{4%QQ=aGj38}{IJrzsRrxa1(>ZNQ+`|y
ztP))tH^}S1W2n<R<>D%sdQpY@{!)bZ!b;};P36P~Z^yByNBLKOFyrw0MA43Vwl*)Z
z2dgG;PSq2as*AtKJwu#yTKH(n&d#$vvnp;hKqkX@9MLhYL~u@qEZlsBo8Wt&cZhbM
z#cEjKG&nlDMBmL?v)>plVnMM=mFRMe?<i7fF|_%HExC`vnx+Ig?k83!%iD1`KZ1iB
za_gUG{wrTC_>{g%!~lyTBZv-i16bTta1&h`I~d#9@pOOteTaTv?|xV6_ZM=0e}lt+
zD2%n|MH1E(G_epGB@FYHxCL+D*h@F_90Skyp6fz`iGh%=Y$1;-deBLH@(NUFyT@So
zxu2`7-WW~(MvQ=;ZuKRKUKEyY*E2E43I0bZ`p;Ok%v<Ghy&lfPf?)dB1dq87j_tr(
zbF12%DEN~es|dy2R-2bs<9j}`hxtPLJGfL}jI!?m<0F3fhD(FRyiIQwe#V9PX^sel
zSe4<YRbz7q+vxno#SRR*I{!Hv$hrriqk>Io(#FKe6>5wD=WSf!(q|ZsPJgwI^kow0
zY$Uv~1<!^-4r50dHDjm4Rfs3(Gc*o2<PT3(JyPGOFUL=vEtji1F@4ONMkn)>aA;Lg
zdQuQPZbj9YedU3P#fzR{X<H5zeU}8fWmbi_PAx#U(6OO1o=l0H({~x`u2AYahIpyZ
zBx$pcAIllr6S}M3-g1UaxpmVZ&x4mw3WELn=xQ^Iw;bhDg{J9z6%JFT`9n-?oZ|42
zi>YXP4SF_H#UC`j1a%P3pe@dD!FMQ}8mMn^ZYE~GY39fux6w>#FxfW%Dw=wuqHX7%
z(;r7h2TK;OfB^hHRKGRP6kS?l=?Y8KFdYiF8tL@+<$N#wFz1UVxb5CHhcoituIPhP
z{Ri4}LM(BgYM@J}`kJi9P#Bi!p$P+R+Lzpv1wU`$aUM^FIKEwbWl-CfDCqkQ#X=0<
z(5oDx$?|bephgvDI4wC%9cXxG6NFGzmI@XTecy}R567fKc3<ZJt25L$zHU}07?fd^
z#Z>L;J|e7JPlB%Ip8d>&_dZ)W)}!vTjLV!8BTO8ws$Fm)PcFZ-`?@bu-4u618v2nY
z=Dp<f5MLD<W*oD<S%6w;JN13l1QO8+Ihqs{hXg8<xvdOpeJu>TGKwOHILo!%j2f=b
z7R;gScW-o<Dwn2XI)8PGkyQpT)$L2l#P{Zj%d;itd#i8(gHyv*QN?ML$*3o%(2ny3
zhD)!1Kf^pnsuh&_YLx)aak_#FyB9xa#4tVC!J3tGJ_|Kt7VJ}1VaS?K*m5;L=dQ`$
zf%HtxEwN^rWc-`ixA(qQ?panJZGVFw(WN((+s%A#5@QH-c|CotUWRJnvR?4yaoIW6
zwDW6S2-<YumvgHq>!XSs3S7P|rz<;j1A-toJqV+&Ss{JuhMwrj1LqN|%XK_eDIt~f
zeHcGdCH!G|%o`>F{tz)5`mq`Uk?X9%TuNNktEoOI@l9KP=#|8&YCoeBph5<Z2lT2<
z4wLy4RO@}QSZvl79i9=J#l*rM1<{TpRe3V<=etIM4L@As93_9dNifrgJAEHEhka0o
z?4@bPP{Rp}<pniGAyAdU-<ljYvr^S(7jNgd@C>sx<o5SmyNL~_%NH>)xh|IEhd3`V
zkor=Pr5CA9{{`jBf^A=QQ2Yy)@1G0B2Hnv0zQy)uzD5&xs?GSSIVxizHGrOr)G^Zp
z&X#H$XRnT~Qy;)tF<1NHM7*vSxWwYKlKFWpo1{*&6UTZm!E=c99KF<yy2`gyc{Tmx
ze{*WG)tFQ}52ngUsw{nm!|v~+ww(ShvE`h#n%c-lbX#+4vu@JFR&_VSIqH3Iv9G%a
zLLsA5O>0`tWeTgf#nNM@q5E<Wa)i1OYV8m)`wJRB@;XrMg)g?}cKU7IK;?{!Env*d
z0(aPRZy}EGAZB?v4~p6E<sfsB2dRl_bYKh@Tpm9joVB8ud#2>p5Om8K35AH3K`Ivz
z!-1h7_yuetB38+`(6~cM>SZlIN@5zRD;CF8ijiz!zz=g}gN5o0B@L-8@Fu8qrIi}A
zbiEDkTSnV-o!9?hOYrKShndp(FbCKD$ij0I>=KLH!1>G9X9v!|KO-DCFE6lx^C(x~
z&T|<*cXAkacKmGfv-0$q-^_`}3g8;+kn64xgabV;*Rf~Yi=UpH)3-_)LpJu%u5m+N
zx(*PkUt+l|E1cSPe8R1_ZxE^*6?Jm)%-uE<eCN}ycE-^P;z^T!3$&;ZgF^hsANji)
zZR8*{<Y8Y}4ECt&0il~LB|DqB*UMb{I&PvD?X2{QSZ--s(<71T)r~%$1*>m2B6YdT
zG3S7KB~A65KSeFcfLZ)Py9N`#C>J^6_c;HV_=TKINlv9bhspTuTxT=op3&&L(_GO{
z<N__S;illjTh<SdR*~}00H?}odve74sV~_t5e6R-s{2tgBj+WC;IW{`ro6Ni#-<n8
z$bcQ|mLBdJ;&qrWES<_H1mKiW8E4n*Z~BjTZgq&0kRB%$#!-AUDN_@aW>UkQ_eYxE
z#=VXO6`B32HfRBq_NxN^d4dfX?=~21ZZ(`$4ma%%lSOUX%}wN~q_s^+vz-pmaQn_M
z2sz&ck5Ed~&VW5TCO5@i+D}h~as3Fcv;FjKHwMeF^#MTb3<j^_66=r%(;bhx=vejk
z=zQi(P?#qXJtC7KIOYh4OCNs$s&WN*D;3~{d~9lA$&NfiN_$0%gM=4EzE_|ao!H=7
zgs+34XS%u(VPO|3Ef>Yc74jHTH0X+oF*cjELfq#j8vG|cUWtxPBJ#9s3y;>i7I+>O
z@+PRS%GKkEVzX9Z(GVjrr}|2G6;^^`)hFEdU5}4<K+C?~2M;k2N-bpcmDP92+KOdP
z*rcWrw$;|aJr$k0B5Za=z}DGwz*;xd0qL=q4Ebju;mSdeoqIIk$$^!=Ckn+KTp{$7
z<I&B$Os^Hh=Jjx5TLr;YXSfJqm55OjqvQJ6l?Ni7%Iw5Ac7$seKCn5bP>e&#k42Zd
z90$hd?SE0r^bG<~VKVZII@hqPH=>4@o!Q5f$avYZ-t07Lq-#6FPR*YY5$;nfaLh7Y
zp&MmE&|_nD7rqVWf&H+bQh|N#F*|F85YFBUVd+^`T8hk=lkYd{ds^wU9DN+;`*`PB
zxqU36RPbzVuRf*@l6s{&SM8!cs|^yhaLV&UR@{_w9>4hWATEYF@QYI(_xM1fzta09
zf;x<QUTh*|anF`R&7<%N1X-G=5B<ps(WUcRxt(X`HC%l)fc;<;;{iop8z8Z#HuKvo
zYwHAA){Rbv?^b1W&M4EPa%Xw>XkleVxNr(;6%H1h8GI*AHySU$7ZW~r$;(5>IdnT-
zE~eq&Ry*gzJ4H28txE(?;?jx4qML|#Pm`#ZDjbDK*zy3+?tzT}0VBg<(RP=?5^CCA
z^(m(-pFY%e#ju3aVYxikmC8Q4!WcxND6zck{9avI>rY|vVwvsAIJ$x^{d!|=SEf@<
zJnYH|HX6<8it~zviqr=pBs{%4ItBZVh56zc=7R;Z{Ad2zSH({GYod~oZRO>V3n0KE
z(L79y=@I_0Un5%v=y|1j3}K{=ctPisqzolu#KZU1k*a)D!`b2WB=ulvNN!>Sj~|MN
z5N^2JyU0AYfjD;K4=$ET*Q?^-d!COB`DLoOTn1~nsv(`>y=dD5R8yOXl)gkt4G_fY
zlA~T!I{B$}aYE|ygKv^(qVT5irStPch3_2%6#H!g28WS!2X>?gCSOY?!{eNZcjNhq
zArHOC{Bd&ByG+5J$N=J9Rioa)cJnJ*?Z(YCc@Z?(&D7<#&p4b4wSC5_;Gjk3u$8*Y
z*O>QCHG79Gj~-K4mD;zjOjokbKQt={+6W$H-QA#qO4ASYqVHV-bvJct0B8n=Ye8^=
z)hR0z8U}ph4J{WaHzCHF=9*YZ0ph8*kk)&}QjcPW(qQXoz4Po^F1A3SnroKv%8%-1
zz@PquP{}(5(?FW@*n_K12QQ-_TqgM@k6)7vi8KCeTGKMK-YygS#_w?fV@zx*_nso1
z0*fI}D_8vkgNg|OV7s5{A%E{SRf7=4R8JySW4trf9)=Mfm(xeXHr!lI4fdN_oHH#k
zY0pdv7Y8pNtg5_%Eq7v}8O?uSD%I3B4}&wdu5^`k!!&2RbK?x3<1D(H8Q&oY$bk3U
zn0=vAn~I@QV`VsVt14%DX^C&d_X|mq!^p02A{w|y+LW~Sj)i!0>0OnPG$@a2_*bYa
zs5e=~q3n1!9#yu^8qym0Q|$XOe6N+ri@h;?)KFWWAl>bJOMB>81Iw|^XFZi}R^epi
zlIMM{#==KHGGy-5^Ejx<<9du_L2&!u`2_5OSZQ5}dWU`8?q~A7dktt-OUH&8+AHP#
z=X?{tQWJ26JXHM??FtP0p(7Yp<bpc#Ud2?HRq+}tPZ(2Fp5h9M83bo=5D(I~sV?`(
zcs_La9f=)fJc%8-j7PkAhu#n<#IyC!&t&rkOBT+_Yo?2vz*;u*7<x6PjoTe3QzoX*
zj5^$m3vPYY;jK}4o0w5z8oU+B`+ypEtIlNP$!9&PX8%q_!Y<Lv5!J5Soxa;5Rjd70
zx1g0f=kcW)eP$NI<B}%J)ubUBE;c(cO>-fgR-6Ifb5*Wx`-A~_`$!?3g40MCEsnOo
zr4NY~DYBvgx?7+H)b=1#cerL#rh0ruv)Pj{>=In%CDS<u>EqQo>og=(+>y`mmNK88
znD@EHHW(_#^T|OCm&;FjToDMJ2w2qoP*0X}P-R&vWU)r;RS%X*M*4LUu1S^zw;ofF
zI$D|r$XX3G-uF#L{_+@~7@(m$4AO&p|2JoGL0Rh08u%H~MA+ZkUD!v*^IkbN^aTf4
zT&6~ok*PV2*&}$UI2dD%)ys8+TT}DUPFi2<wz&GsKoQ6bCSQokn2utySW~6aW4S{2
z|EPNt_$Z3>eLM*n2uJJziAIHG(5OL0!wMP{m!LsAIFYER5nYVOVpLSb1W-8=CV`Bh
z1zlW^WfjjwMHgKRsHh1bhbOomc&wo7(PPj>StSWb{?GGP^-RwZ5_J9U@1M^Hs=KGV
z>b>i&x8AC9MpfWnLW%^3X;<JjT`P2hGK5+=$i&7~Akb#Q3XzyEr4w1e)&<Hch2+rW
zs8%&UfM>#1quyPp#(jXa{de^k5yQ@ozuN{3R{BLv!;?bOIV)m$M*o28i*ap_%thb0
z9qwS1zkv1PL_V+$edz?Kyv6^(gkq5tT$Hf?P2(fzyx1EV$ceF$VYIe16|4p?WZQGK
z%Ly~%tgNGPsNoAB5Q)t{s`K4aI-WV34sc(Bdrt(YOcaxDJO<wH_)WY&!XO(3%gR_;
z<3r_i1)+=fQ@fZ7A{J2dKa&b)%zBXZpfAj;JwAv-VwyS|vjjwIQfgIaWBHA#<Aak@
z@jPu3rW7W1mS>&utTUeVm~;-FrB!vt;+Wv1G(7Q68j2@9_@qa0QV*l<A}`F2cXFSa
zu^3{&rzJG8zKlKMR`Kc{SH(lBSg49SRdJgt=9~bMd@mkf3_U6oJ@UvuWMA_?7}6{}
zb)wVRyzj}^KnIiOfoG4$qoa~L@j(&pC1zfXZKMaA7Tz_3u+@wQ@^?`jQAbc1xfDc1
zL}4NwFSwg)@>bjS5P%oA|BZ!kF>R5=5AQ%U3jUUKg~27t>cZcmozo^In<fPkLSKe|
z22$Jd<XNiPxfejEMZ235k5*U-kkDy5`t)i(6bDR8FSBhkQ6KE%#Cw>rNx68mR%LA7
z%Qr30ku6#H0cgL}+u6`UcWC3+C3!(Pi9o{ju`(7uLpv%S5cI(wc(?+=$9Ke^sP4)-
zVPDwavr_Rwh!h|C<RQO2UQ-xwheZ<tSz-nm^pFN9(cn*H{|JEEN7@&O)+stbD982;
zP;lfawWImY_rTv7SV;w7|CIh<wGZ$B2~-JY5{7wAj(Xr09F=}nGFqgQRjN7Yqd`9+
zUwb{fd33o;g_frQY@LO~p_((M`H;tDSd+ygaN?l4zoCliP=_@Uz2HjigoGog?;&?y
zMNplHh|`~}RQ<fQEcTO!!k=gc*>C89H*A)4G{gf`RdVqFiO<geG+baG<jR(p$6Pzf
zs2<GcRz|~8uoijJ)g06s)xY6O%9#u_B^%YNfjI8huqa67Ru)g=(pX-VwG!p{KvSo(
z^YA~GQN2snLX;`e{L>OH9y@kHUqK1d!i~IlOWm4ydA|M4?M!{u3R1a-`U3Jg4!Ww6
z_tI&h5~&k<3X82&N4G`InQz~psJ1o%Ygiry*yB-vjoGKFCP!CwWmHvN6IAsa=@dd@
za+`!hPb%gBLjy&sRr3>(O3QI+B;>PD57f&zSX`+orynxaT2i1@jxx2i4b`&`gHfeL
zG$~n7Gv;km%@%>um`3s%bI;@z-av-hDr3$)q6D(R0&Tz52a|bvF%9AnNCMem%vlGd
zoh&wa@O$}4rL{>OxM`(gBW!>Lo-g9tN_pYO*q4d$JCFGay<M6&UQOf`>=P>lOkyH^
zgc=<)BlYmDP_fcmtSHIXE><FujibCdF9GE(&xlGN;3FW;EJwtOl>q__8GUx2A82wI
zh^f^phs5p_5wxkaDU|HczxN^tmM8PsC_!z$)vZBK+?D{iHe??7E19a&GIiZA`FPMT
z`S?FpJlON?PZB(B%d&*oG*=_@K!T6$VY9^P7@~?}k44X20GBNsGKu&XR({q-)p@U?
z5LIpy%a6`m4fJ#gxvZyLq6-jDAG}|Wd)ZA48O4YC2W<2Y!1Bm<^m<u;|F_L#teE@^
zDa2SViB$>opNzSE(MEo4ash9wccDps%d@oRC=B&C;N**ugFYHL=ySg{u<zfG!qUTU
zjOttP%1FLnzrAqiR%6bAgb~V7%;gDiwL}-_uz>Xy0EmCuHqz0fcR~MigyBu*bp@{d
zT0a?D;BWrm!=iJ3*?4)oG4Dw{gd+bLYb>^4jm4%{)EbM^{JQ`12YYP6xN!>xEzPpu
z?G6)tmiU#CiNb$hq`J8R7>U`RK+Z$w0Tmh{EDhx#95xA_xaZvS)h1gqJTff>qUyGr
z4p3eS?3v7U0ZrPkJhe3&6bVZ%F2>e7Slz+tEQ}9zT`EPCp&JQ&vpt`E>vz;ht&Fe^
z&`rO^qaE3+gd3pMD8>HASVo9l1;k2k1UdMp$+{Vreu#%HrIX^J#iVi#rDrwR)u|w`
zb$7wgdSl+fsK;+zw!JX;Wx>vm3mSG0F9>|@EwuXdC<tyS46Z5+{%7Q%ZxHJVbz_Tq
zF)ghqo8m0pR+PGRw#trkF-zT=J$j}HyQzv1M?=`#-j4(FuIE#(g`3&te2N;k7|YL2
zwZ?8A&!c4K$W~XiXT!X5+q?q!{=2-!EFWtLtlG{ES9gABHna>k1D|;z{Mf&HJ9fAG
z2<p)Xy5V<ku;=gpo|%l8_ga5&2YQuMW9|k>N4~L~nvrT)6%_kH^<k~>TZeap+XBt_
zV>LD7bEEnQzG5uzkAK?=0<Y{Y9QseSL>3PUQvBA9STVGA=J|-Ad&cJnv-;sbf4>xe
za6&&Xww~^niG8s9aS74)tCV=}4>9SNhE+z!Y@SpVIz}`NyIDKyiEcVquP55lh=l<%
zEL8mpYtA}d2_dvnR1-pu1%mkHimZIJ$)QmhwA4!PG=}m{_mnxvN=DId`SG*Q{_@*s
z8TC^}nI()`MKUS2q6AYxD>O<;ok%Sx!abY9Xa!BJcU)DqK^1JnBFGE>v=~u*sP`+R
zbmm;6r^c`eyD<;b{Se-9y9=@8d*??54Z9$`|4J>ihIKEriXh{k;g=?n;~lVEkmC?m
ztcegWLe&&vkyMx(Du!;Itx||<Sn7#5YwR{k*_0Epw#6-BX?m+1YZ96X@6Q<cG7a(r
z3BxMiwV^*@<|eSp9v^5)o^pK5_dO<+Va)oUsBe3yZ~wz@$8vrsF@a!F?tD`9xdJiv
z@eQck`UD8r8*ULTT&0Q^RIyAIPpab4BcYl%zz2z)Uy?kU==}#_mzZON1*JPT)7`Lx
z(kR9=v{nctI++m}qYgh3l%^Acu_Ik++;Nm9X0KD0GZBTaa`;So4TzI7u9eD<(Upr+
z1+y9dnjJa<z~}3LMWp|f`LTETdDQ%vuo_`lW^v^a;*u5p@KPg!7dPbKw5mQirga(w
zWfLL@-6mo0=~d>6H+1*RHTpY0#rDmeu&(_MbJLgRfbU>ze3Mo;mZBT=-H7uY8gM*(
zYEFa-=2otWkF1REzuvU+@d7Y`nlT`T|1#}&G&vw*oYTjzr6d-dv+xAh?O521rB1i1
zV#ndYnumIXU57;Rnq3Nike2#~_ypW%4$RR=F}Bv0H5ynPJOZmvdscl^zMY&Z#WzYL
z=u2Ck0Z%C5s$gA~=a~w1D@r12&9D(HNW)~GvLMkjj*o|EJHjq7kU}RXo4Ssn7s?^`
z&<|z+Lg{>!A6-n`K^{(Ww4BclTYe-_a3#b8Wf(ulS5vk23VacOg0D3`VZV_DD%sF{
zhe}cMF?l9rBhMAPL6xQ%Bn%>FV392=&~Pi#jqXL(i*hy-9(*5+Kqg~bG4#}0tU%eY
z_=1$hAepE@iL%1sAMG^=Z-SWv2_L7$62o_1OsoyMwGb~8Jb+CJ!WAF}c!U^braks>
zG>N;2BndSIGCfnb{4h*5-We}1lP91(R5t;&Lss%A#ZG&|AZZWP2|09tClhUz;)%~*
zbg*g}Ty-;fqV@*03k4eFA#P=^wsQbRh%>zo@+hPEGXwCT;jrww;1MVU9?(|9Q_3sw
zh;mDacr}$*+4eFWn1Jk|^CBBTK*y<@tDQuhz!R1s`?f;?;Z<%3qv1Qh<NTp!Wg@3L
z$?n=WmO(%<dMfn*wA;9VWch{dLHxq=@ezTDYwywiiQD6O1}=F33S4EDM7p95=n0&*
zVI*)uM%Xjmm};$u!WUzzv8*#ZhGD_u`7xN~o|%sbhyk!-&NE=sXe<pG@~y2&NmKme
z*X8v{fn759!=~?e-q4&@WA2Bm8q>h)E(C+eq@~r2Ny9-z4KV4c)4s)C+SuJ4B14XN
zfsWQ)pX>(22jNsJn7gANrMaUpS)P|~QP<g#O%!9{IS26c=|*^d<AMik%m7b6?CcaY
z2Rl&p0908DDz89=9d$KS$e`FeRChiSfohN&Dlja~3?2i{;2&rOv!%9^3N%kJ<}rVx
zJk6*(xMEjc`DFkVy)yDW($Mc^_F~e<(ATCLM&00p(W_0E6bdcE`>=5{asmyVjJl#;
z6)kz?o!92|O2P(#fqF0D&4lRsGzGKGTC^HileYRf2zpZE>q_Wx2~zt|fG(a7AJ#;~
z_3WF~HDp77nCOeet}py?U)VQIqAArjMDqhUQ$Sj0P8myv^hBI6ZG6xKAIJiqvE20H
zHVcc`dexXmpxD30JknuIZ!jiXF(xgBF__QVJ7ab~6k*KLn>3~oad}<fqs)2%l9>V^
z_Nz5hgQiyi>m4PVJ=~3H{G#lEF?$;a1Mz(ru?;k*7;~<K*M%z_^Y>>|#%JZ%fbIu;
zt9Ott{7Fqf!Z$EeD6r^u!RQnmT7j~-lbQS>c8`Ro06n_cn_6>m&onOU#K;JQu{=-R
zt1wgsCB6^TPY{0d{OdvWY6-6IpQ^4)UA-mZS7&OVR_s<lLC^hJNM<}c1qbA%RJ~oE
zx^_fLp5wLzS|&`#@%CjsQ?Q7s{F|yyW@U@_NU&$lMj%bmjCf&iB%l?tYKuCLx9rOg
zarvJxjk06Q8ELhio1Y!Q-4%~8g9bqLM=+e0u$RZ)c1<H;J^umXb~CE}rO50xs%ELH
zo>(Huk%#4}Jm+wL1&4X_t|<JLpA9kanwRr%j-oV-Y$2&dSgmz-x0<3}D7x1a?XNk|
zvq#Ov-rkA>6iq9A!aXFVGrJYf0kpeetDapciD|bdnniPHy(p#j?9^aUYHb0uBMsFK
zX}{WMDs{D8b+vn!A!M)w&rWkBDGid;L*YT&XL+jb-n%5(ovs&$X*Z%4p`9G5sK1Cl
zpetIe;$;)a|H^Hf!2l)~ZDeUV<+Q9kPzk3UZ>L|eoqo=C`!u8jbM6CXYVbt9j<DKR
z`CRpJc@!tm#g92U5Zh~4>-ioy8=SNeuaME`m*gWlrT_<Df!m`1thP$AQzBg7!B8wh
zDYks*ti91I&k<5g5?NlTX6!ID6=W*c5H}>VROy73xmoq{y-sV#=yoaZVgFG%U^wAG
zh0}U@s^3PaP==3sQVHq)H`2F6r36MqDFTmzV?jbV>?;ofQ?Si4m=eX0MT#E}D}HQc
z<KTzz1^iIuG-!AnKmLxSTg{JQ4nGuy6hGjTXnw%^5UM)4Qy5>`X_`6UOH_XJYXAUG
zh6S1@8gpbO8@1$-Q>YJAS|n>K#lJ|*DKK=I-iyRZJDRH~0#0#&%eaEfJAzY!Uga8M
zEu0e0A>u7O!29+1f$u9GIMOmVLvc#pMqE>I%vqt}Y>F4=R1+%EoKhT`tKnFX7!J#G
z$dx`cOEP+L5Z@I-+DE7`!2Jh;k0-fCOELW1toZqFLSDITu^_M{YY|KEQ<boz@%;SP
zsbPK|<M4B-e6IMJ6XxeJO20hEkqofaO23f2bF@ZN$mJ4zMJU~R<r)Ho!Ke%p!O}N$
zI)rp3@P)$jk*Gn{6j2?;n1wngF1kj$>Hv_2(<0jLI7LL>5pS4$S%SV;hz(TGM~Y}M
ztcxoE;|!qeIl^=qu!IE`uauG&6P0sZ>kKRHmJIYZHHq8jex`Y}YdRMJO^9f-t+@8-
z{(@SV^+(HTxUer-qD)mb6Gnw6B{eb~9d3L&8?SX5M;VR(KDY06+J_&LWN&$*z4m|V
zz1Q}y1O9+}0wO4|>u^W40ptbfqUkTz!)uSAwZjk2mWO4?O{vEwh9DJo11*L##3}-M
zm(U^r$X!B<A(zf``#OLVx~a|ap)q?l@k_ABE9R-o4uuN7A^j}5WO;7C-su9-fDaAh
z)Uq&-Akmp-5E9*ekkSmu4?`rEYl#Nd`|}24h;!2@H-cmlVO3SxtM&)1zjwn*Hb(K!
zm_1*?8$-i91h*8teKowrfH!oVg100>5D_I3iW=x6yd-duP~IM)As3y7zoYZQ(L)L3
zh&(IEMLk@V+G&KGr<}*b`?P{LPUcUk#t%lo;?LNAoSUv$8F>qagL!?h2|<2J8uQS8
zZw9fXqHCj)15MFL{BprT?)W9rN>EogetDXq{Kp*C$>0Y;vzWwCc{vRE#6N3jywyIj
z7ZBo(jIXQl0LYtK-faaskR+r5dAS>GW_cI6$2n7hrc&qTQ`}tX+`NOE?#|6R++1fY
zsBe6UT#fvZ{!EeT9#g-(`~B;$yM`w6QH(siNTd_k6l8JCT`0db`3x(X%pc51NahDa
zip<&+N67qrA2*qis01>Lw8OKqKTdbK=@3hiCLJtkhs->&quPGW3tG2vKKjqK*B9&$
z7(rO!y-#_65P(ve>WPGLYD5a`Q2?MVd;K%}i!SbDO#mU$ROv6IeVLSWq|koVXuJIz
z;_YRgb6OS*h;!xwP^8>rfq!pmKt!muc?2n-#V}59`V?XG2MOM_PX;)l$zd}TC2y1e
z+wlCZf4lHJv0oeTz=Hj3e`m+gef4(^SAhOff9IdvhhJ149D_mo+5XOgbdaT8e~0HW
zK~9`_F?uVB52DOXr5*zk2#e|k#H>U4oxDJH5fVGh<Q3!xJ%(**0n%0#eFR>S)m!2T
zY0W}^#Q5>{9)PjU^O#Vn9uLaCkZq3#OXB_2<B_hb#~))R3L>uYU~QEit%*C~43Wg6
zbJh&deBm|alCviSFeStgeu-?50r$!tq<Nl8?Sk4dPZcNrlo`u0Co&!@mxeL*kK?g4
z^b8z&L=7=8l<>*(1$w8!*ufzkP1P<ma}ACK<X{sFVETdRGg^eA;<d(momRAyts2^U
z1NIHwL4Kas8R>1}{0ZHEKnNz#$KijVONEe>XTCU*_b5w~2EYI!4@yFy7%R%1O^|gS
z9(q_45`al30`JI|&{yOOc3At@VvNy@o(AyIdSyeNa_qs;#0QbZ^#M`u7T}yF>{=v0
zwAp`L9WDQCs1$9>R@NO6e0ttg6#JFmC~eVl4=@Gvsq9Czw5I@&#)>F=Y0O?gVB_<#
z(cyP1?{3tkkGX#YcBCyI=@1FZs-0kf2O`<iF!@Qavndjg1{w?y2vn7nPIf8)LCqV{
zyDNs}W-zPwJjeO7JoXjp+V!eErYp!cI&9{{A`%7v&+UJ&)Z--q8YH6}D=Q(B2{HX2
zj^}Hm|21Y;Q-dnERgjDj(Ww+s5Z#dmS}rH~6Lhm*`j;}VqClEj%y`ZaMbsXE2;xM}
zoh9=zDyWg_HQ|M^sKCh_gss5!V*QFwG>|h^ld=_Oa>*H52BS)5<H5EfOk|`?`9nE!
z3es=cpWar+G!~HJrBaVh26Lhe;NVo`GgRO=gd*rYA-_p-LV=(qIz;Szs~DGz^c!fX
z@d-55y&T}Cf8R?Q+JU0+PCPxJd>Ni@Q%}D^5t>HP05c#55FR<(kQodFiGSRZA!^L+
z2FpII3j}6dj5TrF6TsP|;tx+NrYWi}$*N%8mM%d`QQ)9r-6H-*k+(a2mY8+9(X4Ya
ztg(3Rww}ViWntb-Wv+}cw!3DmvKgAO_&M6_!2gf1^PwZ+*!iFaPO-DJ`~=W*Nl&5j
zlPti_dU+)hG}_2}1eYpUR<0ol!W^xvr5Z+Y^sIVvRGa`|D>=G2%u%0et3L`H&EjzM
zVD<D66f(4RarA1@{ULdO8Icrf1gps1dVs(`a(BIybHfpo3f^ld?NdEq@W5CGN7(~o
z_6a0x)c))=PEZ-LQ(N&g`^2q^m(W1^r9cqNiV%JMMB2}Xwm``9XcCI3hFyeP;vZ{P
zDdR^S6cE9;Ona72FviS2Qq<?LDvWxkoX6Elo(wP9l70XSutkZUvvz3$6e_@DmQYVF
zRI4c%VMMNyzE||w#bP)z8()wS8E!la4XOAqC~(4Qpy`0}=kWAT>gip4ien9_|G+-4
zF~F2z)wniM&>_{h{aGi__sMqX+h5TaqB;Rog|VCHwog!8M}6q8fOMyj3@$RI5e}z+
zb*!X#JKDjC2>dgL@l#Sn;HUk%hqZx7O5iUm&jCqS??(b;EMo!6E|OQAb%4%Nf5I8S
zUeu29`jbR1qeT7k7nSkS;(&&W8lQ4RJ!6Qpl70dTEcDc(o^hOdn!~5Fc--x)p{WpY
z`>qs_a+Q!WMm|>)yeOZSRO-a1Y*Co4Ex6atIaEDX5>+XmLZU|FEbdy*>U3fJ8Wtc)
zvFdQa&OC8$`HZr(WKNtc-Lz6oA8A>_tTsmXl%*n7<=H4`x3w&dQcut1(>sae`o`Pr
zXR+OA$Ol|w@cUBX2Sn%qiN6N?OpPCa)CyF>E3~PFA=A$9uW<E|+dvrH{v*E<G}v2R
z%;QSZ-{>LSev<`$f?~6?hUut~CLFIz=`ZFNXGgHllg8~^UWhemxsA&lKBpI|`p-hq
zc%Q@P^fS~`lTT{~z0KnaD(z>IKmwkV8TL(h5krstl)eCQreT2|MZ|d`O~h?ND_{$C
zpn`%<9|#iSI59RSa*yA<ggn#k?~5amqY#K>fJ90mp6M<mdWZ!Sq9Tb@To7k+phMX8
zz#&vMvQN#RQV30`bDob?h+LOKWJxROhof*Q#BbEoethau2uuk2?}E+WpUQD_>rbsA
zF0m21#n9_bLK~+azvI)ee(*{p$r}!D+COMFG@+{8-HjAUzlQ}VSwf^?s$x~8vMNG@
zTqP`LJ=cb+9ImQ70)<Oe`l+WrJ`JnNt$ToP1~5;A?+_&)0Eu=O@=>hhgRB6W5N-M%
zb3Rc06>O9CuCO2qdzSrEc$?4uO7f8yT7ej)uu^<2c2+E|7#6R~4rki`=&N2*6pQJu
z#&;EpUCE-|?y5kNN0sbox*f10if)na>YFsF_*)dN?&>S`)aFy^uJQ=J$?nSOD<i2@
zy1P35Cy<p}-3nR5|Ha7DzUd#x3Bt9de-9w5hH&{JCMuEs{Z^34IE+Py_0KaaB71p?
z>2KHVP5&P5B7}Sdg-ieLQ%~>b(`fyB{g00Rwd~r9{_PvRAZL4_*9|&lt{r-%2+SEf
zI`0d;-jyU$C3Biy4?ep$dX=&I+VpZ1E_z+3o?g$V(ezq)heNMdaV}t+_KLe#!(PE0
zx$V0so>+7xQQEf=RfMiadHMDzo%QG<)1O!?UQ=fMl5%WSkp2%35y*Il1%85Mn4480
z?`hi(dlqfepPm^fQ!|#4Ms9yTxAEz4=U1efI2%RdpTnKsDE0JAKCPC{PjW8pXPQBm
zZ(<cNM*kAq^X`Njnj~gPr~(3#DhLqBl%hT4AoWH<d%iwZc)5WEJ}YU%o<BV!g1@#)
zGyWcBmm;pud8*3uQMl~+X!W#+Ps8^7`6l4qmObB0%%XEnfhQp3{2@%UM`JGd3g&q+
zn4b&+kTwZ1f3uTd{uT>V2{~h+2b|aOEIgyrw|sgW=2g$Mf%!$M%8OCBFh5T{J)cj*
znAc;^sZe*PCsQUjir<srdq&M41LIO)tUX%E<5&D0sj>7C4U-r^*0~n_Vzkltc-Wjr
z`%{VPAD^)PFC<}wwmPQ%-9PT7eq(lGdHt>CTHEqkjXh}F<XUEmaP1%#0H>r4c}<=c
z$F(<?w!yVWlBLQ=QMkBvzk0fePs3d628`R3*Wt?lfFMl(T<||ih{Z%R2-AuSSQ+{s
zU3jPxZsD-&@iP1mjF-P6T_A#>i)@lWA$K_$#gzEYns#|o6>Evr^#UD@OX!JwoFs_;
zlSSAWhzy)dAT_1%VwK##EXkd!SI`<i_is@YjCdlKtBS8c;qpX&ubz(M)5yTN$USh5
zcp|EC`!O6K7<yP6!YF+(W+xsGrD>W(tN>&pdOS2ZdWx>C@z9H{zk}Rmyu<=EfN^^r
z58ZcDM8p(B>}#GPfug&F$av@!RsZi$xW+>#s;9Yp8XgZlxC3NpZ#*O$%Lldr&Izzy
zkhfBI{6Inm*_t>?_T2I$<3*tq9N|dtAQCc|spnO5DW@vr>3C@Fkiq;tLbOU2kg2;x
ziWg)pl5(yJ*TEu{LbfJ`Lk5>i&Z&|u#Wy?WNs=xcL4s(zLk20*N_r<0E{|jPPi#B=
zClqdv!@lBsQ17kS-ZXAJ*)e^+;EkWJug<)i5|2dsdQVTct&15s9Ha0X$f8|+HKs(w
zQS0l+`Xpp!YFvS?zwZ{pEkohb*C*A}r}(s^`r5p`ZGDw9wG+h;rI*qMQ3hGqy9A7M
z53(Yj9qb_o>=V7}72n<m49&ZUSw;(s@PNSy(?zU}8uw7a^U%e=Qyw9mVwL^C<MEmt
zj$ozVs9GsQ5fR7qYt_^1_;i+X?j(Zs?!Q5!tq{i;d)9&YpA*v-WtJI6SC=3z4|*GI
z>`H`CRA!}w=&-}{7ta`qdhICl>K38iG8UkoQsQ>we`OKsX=T3rvArqt5NRd-1QZeK
zWgMrT=J2U&_+a1lEvT0;{<oP@vlssmDNZ6)3Mk5#Fqf;dgld`gA^WK}68eWvHIo?W
ze`68p4&wa7yKao2ul4SV#YErf;u|BL@yV*nVJKXl#t`-N1U?OW8jHRG+I#a4joIzt
ze^mSUr|%8_CWSwXz2QG89{<0#g}<tD7z#K3>gfr58o_^CyZHA~{#H!?=cr7vTN6Zo
zu=%#g!&IUJ<#FP9!YC&;qT}ZxGd?o0gl}haG?jzzlk6+85`@puCB{!p+`Ln0b_<KJ
z0>$@&9IaWN-`^0SoLD*RFaBs)aR8OeVkfJLQ&6}p_O2hLx!oul=c#aVjXk~*l-tDK
zFUH<@68NVPw8g>1R{nw<XsUzDLM(J35n{n#(0(WA6Y(5eB+AE_v`rFSpkOX$0TL-&
zHCNdhC|AS@C5cX&7)PQmkF-IePks<$Y(e27(Ps7Z13nFt=(MjvBJMX485{8`hF*#N
zP2{r+av~vOf<;2apVDS!8MY87{-Dp^;_rn5TE<x{A_~@K{QX!-NmWi$p76)s^$=;%
zmcRMNe@KvwH&M9!&2{SOdOi*No4*Z#Ano~^njSzrL3{@2iqOc&e6XgGP)2AJ>CXl9
zOnZJ;MI&W;tM~zD_|7Rm9Fr%<3ykT5S%5N-K^>ogfH-j(HA*>1@?I5Daurd&d@#!T
zycC|2d2xpb$V(_V@v5g}maC^L`1B5?L$&sy_J5Tg$G1<93XEeYGYRQ&n1V5j#op=B
z_1cKSXnMT&KpXUU@_V7jQz%^Y_^W!lm`}s>==D_x=y4J4OQQS@(Q(ew4CEWgGg3BM
z!Yz7M5uR8ne_26F;YJMhKp~ssz3EvTNSQN>L-Vs(J`i2g-Fi03SVB7G*w16c%v+b=
zlPGWFweLuYjFl{4lj^0;*eUb`c^iMeCPHnf1&8;gi^Aqf5~nzhiR5jZsv0^Tg)47k
zn0h)8h2(9h+0RJ`4q>wAlIaMZaxi0CUw{cUE~^z|uZ~jo9R!LS50dz;nwk}Y9Z3v&
zFVZ(+{g2@dOcwM_6B}f76I&T;O>99p+r@$$`%Hx7NbZDv<GAf2ZkMnCk(Wx#&Q3{@
z5u)lFM_e7DY>}eue)oqd8`U?afAeov?D+&m#PFworJio)(|LpHnSfjaa(btMoV0ZI
z?>+}PpL3Bj*8U%)=n13FZb{-fh{3>a365gz#I}K4+J&ePoWzBQbgaJUUJ?Xz$e3dv
zj1gjtd?p%XA1%0K^kETpE8_ifr|<N0`pdJYG(tixoUi>QOv12mMn*M{d`miJ{0W82
zFTYEkrr*t{Zoj<sGm!69H~C`e_XepE=bsBG(n}!BC&=dsf5S8NlQDx&nk00}4^q$^
z%mP#|p?tz{#0G6sT)5{d@p)@ulo^aT<&S<twA25J!sV1MQcoY?)38(8oj4y54%)`(
z-{yAkJzT7x9)*bH0DMYLI8uL0%3e_aje@8j3w#E#Oc<~3a%F_=8ufSn+y?4TY!lR%
zpm3r7h<f@cpN3KQehSq0J|1~a;qRlqWKv(Sn8#Bxc|_8%<jLL0qf7*We5=d5*gH<(
z`q8zXQ}JW6U40p}G3UddTJ2koQQMP9zycKNjddvL_ub8KrRRPWwVtbPk_EweW-wz0
z9@rNSAZn>uwdtez%ZBnyyt)k|skNRj%10z&d5P1kX`S*8p4;yu8M5(H-2G1K-Dt1n
zgF5@Ttw8XoFmLG(+PmK7Ms(8{t1VNxO}>J4tAJ)w!Mb`?G_at!rWqddlw_RRHQ7go
z^1MUjWa&|ZY|n#k$iDEsU0B%<_GL57o5L4!S%aO&AK0kt&%PzTeQxHI%^l8ixWgIx
zwYZk^oR&=ijT-~OrrKNH)h&Z|3^1eRB58Roe~?!99o0kHMl}(ZF$l)Aw^!7prNpR7
zOEFkUORD~LYlRLD-`Zl|h>H!+h%uUly@*$)5K__4CyhjQpOyNf^nda>uywwO>|+Bo
z1ol5FKb0)X#$d4wIX6jWkon)Qx<ZO+)Z-lT2+VYZ)$Vy<Gq<F<_n(+yx!bh3Bi+!G
zk>nXXtnqJQ35m2Hwb6uX_bRsQWxK^}m#dn3Ijfp7&Dvws-Vk^mUfuL1Zo;dZKEO?Q
zb<^v(39oK?88@<Gsm{LU076Odyadl8c;VHM?(tLt_=bex%Tn-lZv#GQ>ub9;BdV<i
zwzV=$3b}~TgX=#}13#c;6EF;eE%LEBkQqY-TqwgxCVLTpO|l>Ct1Kj}hs?Y1{Q%bd
z*#~_L2K-ew6J7tMZPrh{1XE>-&g*6Ut1$0v)Ip@G>dP>|0RT9rS*%=+QCHy2ZNO?V
ztTxM|1gMq=)i-`?|M?@d9t<NHX+Hry4`#K(Z)~Nnxof}LJBnx@lW6ZJsE_pOxcpwR
zp<VesTN<`MgjMf|{O$w4xE+iA{UL4e>nb*wm|v&H^Gk~X2&W{2@*ws1!hF2&E1D^G
zH&(ycAz*|bgdbBJZOB`cJfMqDvVR+fUm^s723Ua}=<FDDArPFmvD3pZ#Rz592Y_Oh
zTff-;g$dfn-Xn|;<QmHl9zXPhGVh=mDZ@$YVt>-G+7=g3j&SP+rsjnNjj!ALv%%Y=
z{kzFrUz}LK9DME9RyRcgp*h%(%^Qv8bwu-sgWKTcUpAxFHrF>Bvlrs)co<+s1?L<b
zaD|KCnzd8Y%%Qu=3I}b#sXM0`%SU0Kjbd+G<me?32I^5d%$PtZlQ5UA$pO_|Zw3d0
zUDR>e7wt353v-<|46E32bnT6|+aJFVm*NccB3fYhV_FsZ02CqP^zd^>o}zx=V#fU*
zEpKC^amNsc4nZRp?Q;OaRkm2QlVc`t7QPZz`{Y&Rhorsnoz{9&*5*!oov65sk9{a0
zZ=4_1o-zAYMQ^AI*IdJ<W`hziHhx;z5y`5q>BY_(U&tM*yx0pS42G$jhHWZqQ^B45
zT<~Lad4IO)<DnPK<Odxg_V&F$Xew9Lmp_UH-ewXlVm54X&T8Je)`8nI-UD?nj8HdL
zA27$`md}pR=a7b2`d}l$X>Z0-ClxI>-VxKDF}tQ6`k<~~MxAMx9M`=_`Qmn{Q}QmT
zbCH`mG4M|Q8T8rpay)&y#M9^VcYY>)y8JTwT#Q-sj?yO&Fz%H;#_YN{e(EtQwA@ov
zfl&#ZtF9FHKvQe^#oWYF^dJ9GCGg{^Sm?gIxSt$wGuo^j0afUVWRG$g4JoO{9=Sd-
z(e%p2aET`iLz$Y@x~cI!Y>vC3@ijE~)l3e9Xkwr#zQ#W(t>!nDXaBDK#j1Gi4YS2>
zyzC#qZeTR`WBA_=eiPYTNAP?9g7)ys?ht-m_JZH>X%2p&YQb;T+rJdQ`CJ&^5&U+Z
z-yVMGX}Ei4JN!G64Yt9*bGtbBbyfI1xG52SFlexo@a-)8Lti2eWTvwR7f+kmg~=&w
zAL_-Haf6L{bqvP^cI6oJwlby?*fr3oK8GO&Yit+n^EnL%0Dfr9Ih~V$LtiuIoPvwm
z!6}t{2IicYg99;_m!+hRuiTT9Q;u!u%2GP#RqV+zsx~u<VU6vI3XHicdBaLtI4j0V
zzT*XIF<(Y4C*|avlw%IvsVYcQ6^vFDcnHBU@^PK>@sqfSKp?HAs*gUUE?Q$d^P>Us
z(ap|BH@H4Jsk}!7?6S%DqLaY+G2&G6)hW(bgK=RjADjXN2j&>nFW?0tnS$m{G^&^I
zed-yxs%Ey3;+<p;h}u2&HR)VsG$DPR_PS#}#A?!?_aRb#f8K}4-|y&$VJ?NPibt8Q
za0gKi>^jz{-pKc@vB})IaI_KlE2hCn(_~>`^`rbXxP|-N%HD=vBQOJR<QsLVokrwt
zFSEg^8Anox0+)oJ2kJMDsA%ds#fZpL2%CMhqROG=MKAS7odv<o=73$;!rN<h{iFbA
zk<2*=pSzd<_aetX00YKXx%+QJ^YDWH>;1{~d_%MrUW(@2OFq=s_!KKQs)}Gf5i+L!
zRNqe6t+6Q-zu#c1XrTC}5xCNY;Gjv=j}s=l0UgiX#;6o0;>Ez)xAKg-ABCQ8X+X^W
zubEa4gvIuBHUixVwbl2^ykStFK0Dk9(2s-Z0JPXKEex%TB)fN^rNFM=8uRk0U4dPL
zjB1(a&@hh;!+am&*A7#LAUHwr0-TGBmiBHm6F*1VCFuvd5)Rm8244%K`Kp<`QPUge
zOhquT#-@^_eML8aNJE>1XB#fW4E#1H=Y%rZm%tZML|H-D;TEFNl2xP~Lo2ZB`107M
zyOSzEv+4AG`Zlnu(3tlzKMCv_VpRP}U5zrTGnMsJX00=CXnvc!Xwq%Rg*I!WE;XvZ
zfZRG}?K-3SJrUzcF#g|78*C2!-k9^8eE6m@XDKdfhow}uj=J=^^6~?X<<n^VTQ8l&
zrR&pZ{9A7-D=~v_CKTZ6*0SHA-^mQDzQ1DEK~pez`pzYt<FNZ@jC{$mngk*p%`RE9
zjcvWdnrrrd(@fs3B`MnGzS(#yXjKTDsdbLwKhL4i2F?Uhxax7CDO7m9QGE<vAc8Rb
zt)Ng}A@9xTXPT!CGKaPpbAs~WTgIFUT;$iLri`d;D!l%>E6RIeH~oAN3HO)YWK=y)
z+6LbOd2mc$Snxl<`4~8>v%aj<sOymyXt=+k`JgEmqthuow;UU0`cqOWn#YuZUd=9g
z9orN~FQoNCAGh$mom<R?*5PLVU6I~L25*UbABqT%&B*0x1TM{sCbXo648TDhj)^q;
zzhx#jB_#A)p;KTPfocdN*jT<A`zYmOjd|}Y*)A%d<XBit9%u`@7V~3{wJI!g+tzM4
z`&Rh5kW*;U*zC_5JF4Yljq1O1ufZsv$Y7<Emd>~kQ#5vOKG8=aHQFb7nKx9*)pWX8
z$@4O!MV|<@B=m`7R}^ck%O{%Ye9Y;v2n24Q=yTC#w@-AM^U+DJkD`5|o3v_7LqHiY
zc5}W+#)Vdku{qRv?F&T_{mvia7@jGD`7_)iEK2DplcKpR(}o@6ZuEy(8`RMj!;A`z
zk9Ui(9HOK31a@6wRDaF)bw?Z#ZEinK!vpWA^|w(}KJGsh$D1Jx&C^aWhwd@vydfe5
z8?*)&1;HkBz)l{k<5+^71=vfwynF4i+{#wzGF7)epI=3jKsK-07uuC+@0T5C$9yOl
z;fY3d3Dq+W=MX62sPnZ^IG?-&?^9P^Cb6P{?%i>9Rv%(t8OAYlP?fV>25~2CAMMjK
zW%Js%4wPcODjHOAl=|&3RrFCshAQ?`MHf{hsiIkZ_q{3_Rq?qhu2sc*s<=cI(d~^=
z5C5);C8`*riepuAmnwX!2&!V1DsE9lnH1Q+E@pfvfe0CW`(&q~K|j*@UTY3rJAJ58
zH|%(x&;C35-@nbzU03!+;4R;Xz<M99%X>g5FQrG@dh_Hr5NXOu3e%5w2*WwltT}*W
zR1wUWcwrXhFKYd<ioq2%c9Bpp!jBj@<Mg+UhV>-bUV9+|AcGhx#IbQ(reU{hw8a2x
zw(@>4<SkWU57|Px3<F^Nm}#e?A7b3chp6EJ92jFnPH$OiXKhSpm#UachO3GEJ=+|x
zo+pZ6g0G<o{b>V#DK(Sv&`EYws{tkI6WQV+579^y+Z}ld%Q2#_O+SkT#ErS$h_1>8
zS<V`I*#gd4FYe?@Mz%FlRoTlLFxr0^hQ<j5>oP)5E4<&zn^cC%Z4zq?F3GAO-7H-q
zpJy@evB1SD<9pauSaMA`CaYbRwTM6Bti5@i<VOY1+EnjAx+}oo3jFRUOzHDjG?Uc0
zzuy{@b;W5l{+>9WxSl7m1Y5A0vD+k^k9u=!0Um`9WGTRp`aqUILyq6-eMiBj&-@q%
z1X_DfS`pfhZQ>i=8rTILcNoo>Jfy`B^sYFy#-9R{F{+Wkz+uUQGt$^?ZE9u?c7OL{
zEP<V;h>RZzG)q|yZJ2(Q-#QZ~IDI!`GruTCde4TQKGfSoPo*$6&*(BvPC`V^UQ(^n
z3!oC5a^-f<eyaea;kRI19?#qpf<b6Zry<#f!VG@EL1thzHr>Oa2?fE8&N){7-v>#j
z{6UT^>?2r7!eSW`6_YXM1Spn&*cF5?jV_qiuKP~yqBxauwgQ+??uvO+uWyQYvtDjA
zXT!V8Ok?J7#=pG8lGzcQqd?UPOM>RJ*H(qG<bKu=3WXBSdH`NH4-JlB$WLLlJoiXV
zh{5Bv`D~GJa;)X9u`E)fLpN*!54t&-%}UHdPxF{0N6x?|sZf(N^k@8NzuHTT?zyV)
ztK!+0ApTzb9Fcd-XNA{$nI`5N@;KiB{*Y44yOvxN@U6(G>siq<&{(kAsI~}yE7Uiv
z(}AtY(C3<qvxb{N;K&G_-Q_ApaUa<(#u1aI8_JG`LSJ!%DD-(OpbjOdPY6;<I>TlV
z0?~bJSGth~XE>&FJ5dl&bBPWPmqy;JXgS)bl6`tGBA_uE^ik+~F%nF2(+|esf&I*j
zAOW+|qAWlRJ*HEGqSt!?$_oTaTolWN=Hm(s>603J`>hesE`Qbqr`P0nhp!HgeiP_7
z<9O35!Yz^-)|)RyPE>l|-1#L>RPtM?P~NTV@B^(~Cp{P1MZpF~MUnzdU1xZt0i#Z3
z5Mo!ew2=6{sE@gZkMVuWgt9kxH3D^VHzw->o?Fmbu`8$SePN<s)J4|{z$*Z=60Buv
ziw)YUO?(Ksow_#FI2MuiuEv~8q`n@VD6A&NvQsX?f5seBs+-27urdlvkA9+l<T@GX
zwTEFT2}KAm=)_UnK)iG^B5v|{qjWNok+@I;=9!T0gFH}>BFC~ZF9=}x?9p<%uxOl|
zALyV(5Me_vplzuDE+NL1pn3hA${+_Y1p;KWBL7rDMUFa*(6qP}vQxD~G1M;E?8FUK
zIk-8!n1h~^k{E{}!3$kWM^~;G3ABBNXzFA8N%5d6y1xK19S==S*x#Seu|%T$U)5QG
zZdy2%k*STGjOv9=JN?EZL0smtLzaC<f>L%LRtTINd#yXthOdX?NQ~j;&Q+jft5LO4
z_%8Y9BsS_5!-KuxtY@e)J3oA3AgW{KMX&{DfcOt~_bE=Itu*}R^m>wu$HNMf?3pu_
z8HF)!FgMw9_SoHzEIVPuB@=_@&d*Hr01aRF;VEQSy`A*xy(cr`)nNBEpLf3`Z)^;|
z@ee9Ju%VO$_H;64^&xx^A2b5<Y}B37xZ((&aOn9IB@PBm$*Z|J1+U`l!+F5+WsF7{
zFwM_8BfsX<PUd4mfNE}h0@o_Y4nZW-@r)?;KKohv;vggX0x{nNf#!SYYGdBhsBmp+
zw`0}E;#SGL0u2;CR?MI+v9C{13({fnlTa2a=41-n3zjR=X%j2;P)E3gS>6XQ6Ip#4
z!GZ!(IcGi_?zSW!%2|Hq^f58%*CnPk<m0a7A}8V_+C!M78+>^>>l1Q^9YSgkO)-+6
zL!GIHF(h*kCXn`wA4xW?(C`+dDsV|GU+6Zf3ji;LG>s8BXcq_vM9NDE630V?nOw7v
zi-Cs~TT`LUtb;unUG(D6Z&2?GTn`!Yv%|cnyXfB?%b|D{0$XkL4_1EGR<$4Bu~df2
zZHokeCCXsKKU6M&_9`s18w_)vVXebky4xz|^kpgkn`+<;SW#JY9L3M);T@b{i*9|f
z)CqFqdZ}EOk%P;0(!L0t%un)+agZXL`d%+D3P&M<wq!R0<vgNnlBlu(6fc2Z5oZQw
zz&=Y0gd;^&YAZV|1=-BEYc*1pYZl=a#|(Jh=;A{qV1uL7B9eC9%@hR5%^+ZkkBSnZ
z!yyFrkU9`|Dd-;QZ!P>z2A@0ve#ma0kd(=DJThY`OOTYM9va-uOHgeQe}Z|gXGusv
zfc0`suL_1qnJRc!cF8TQg|-d$dcJ%|cLdn27wniEilsms<wgkVxTezMEXyjDZ&qe)
zM@d(;31z{$23mx|;H&D8;KJY+g~4zAIO%&cer>#zut{4%oI3nHS;t!F5aN7LBvKdR
zDB{|Og=dAqpZxf}0__(B;rlPl+KN}{gxf5`j`GT^BB^3w)*`%$NT*R%g83&uPN=Qn
z57;TU0zdFDT*?p66Rnq0ec%U<>~HCymzcp}S@e<9>|T0rPalP1D!C`5VN+yarVMAP
zoFEdnf#klQpJRrOG!{4kpMq0?A@0VX`2yO@V=X`=SIU)H6@(KsC?WJ#3EncE--;te
zQ*g!Oj296;R9r8mI`*Rwds13;m>|Qe@Ng<|RRDKt#qv?XNu5U?yNYBa?+SwN7VP{S
zJ%tyYK*ia~Nj%_pz&qv&&$Jy^e|F&}vtZ{o9EaPjF!&V@{q+y{jK@P?^|lu)Qws*X
zZ>|W|sK0`p|Mn-h_;HRZgTD<e9{+%rg5dk+HE$0yajZ1RN-|QIDo~RAiri3Y(zsq8
zDqKbw%m0D%nbLr^G4C(E@Kt3C<MGD4$2dD0Xz6FnD}c?%RfbV@o`+YfzQ!F~uM>F(
zT8NO6>i<B+1%X`$7}XEps?hp9#$zAN>~`wf)Z@m6=E8(QF$bsm02%EgdM6%q>!pdt
zpp3(n1E*3wBVG;;WcO<?rvf!ng%sO$qhLCOm1xDWM$y0z%Rm-We8~ceKWQOHI|9^$
zfD@DiR|gtZXR51Aqlza`;Mu`O)rq)@5Z>JRwLiF>l@Vuu^7kY@#V7}D6g2Ds&%USp
zS-*$TFR;!-zxtsu@5Pj)B+_6Yq2Zf_1E7aXq>h4}|Kv%&MbruY<Z3IpsbJ@~XoK}C
zCV$VSviTM)D!R5|prQ=XIJBjwgocvrw`Hqw9rHk6#gGXIH5IPIK}NMq=2<rbvbT(R
zOHkL^)csGwPkqbK5A4Y_sz<T@z@7ukuEzg;%C5lw{mRDS|AU!4tVAlz^$su~n(zg|
zU6}XfbfD&Cs7$6S_w>_eG+7q_v{z?dwKnzSlU&3A$%Q<S@}1wBAPSE5)pRjIb4Y#x
zC0}~{K1#Th6A~uN3*Um1Fdp!Hc%&G~5;}(5g?jjiv*o!v*{5YwoF8T~gT5d%_A$0^
zDW_}-F(W=i5&CTPd5F?ODj8L|QfrHv8Ue+GW7pJU^J(^Q16FD7B?hy%fayS}0S5O%
zrQ&2PP{#*Zo^44{u*x7^V4Vh7-zrN0EBy=oImID_ZAl66Z;UD|uhyVrO$)F3A+>{7
z!S_R0>H&+tOd(-;%EQe@sjnhYu{0Z{z8G7gS>0WS)wgZ6y*O(s&82h$F5M*w!@9c^
zzE7c54&(C4%)_WyM~Ag3_%8Y~>E@Jrh3@ABAhgD-I9%7-FR}G01J&-iF@g1&m;iiT
z-Cl%0AsX8BjG}mGvsoBy4Bf~XKHT38<)!hc8Ua|(vicn5bhI#{#vIPz%f%6yc+Kg0
zA-n9&M_H-IDIcRs`2xy)qHi%~3&**R+U~pkj8<Rv^)^YV-3UMKx8gqZl*ITw=kIBQ
zzO?Q`Cn>2E4TMdK2TDk=7qY6x5(!9@aeoJrEj_T)VLIfFv)_(wb!@m}zj-oR*nV^7
zInI8=XcxQelQP!9AEiRoFR(7%HSE=1ANn=<A7ihzxx3~^SdD3DX~0f)m@q}O8sQO6
z*tmTnXSlGtgoT1}6CI4Fuk_S=p|7KO(M%6*!c?Ej2HdbaA(NF27&9?WiT2e7EX=Ba
zuqWbjlo?=X!Z8E;iy44}rPM$4du=S!D62Rhc2`1(+4K7B2d|HV*l#6Pd#P?O^lJ-p
zt@#%~^ZnMOtp$NS$;Rxd=&j*xQM!yOS+A>Hud;N<TM1z`76^}{kiMNjos-cxJN!Ts
z;suw>PF7XQg|&)0Q8&en9s1#vTj<YM5P44Q4#k@YBn-$8{u=><t8lL5u+I546FOr>
zT(pd|<4Z-0g&D-eBcd2CUo7-jPTfK1lh`!IFH?p7>BCz{{~j`06sSP>G#ToP^QR=|
z;OoNXp^Pqz#tfZ?)Pi<ct1QbCntXUo6ix7Zp0tLHM`wfrA}EUNFy`C`nWEW}_7O~+
z(}$Z{X#*-JJ@V`17Bk4uiMUk^MfAohk61EA;k<7&Ys-FK_dN-xqjMnKL_x*VxmgP?
zsGtZZfJtv(Msq;B`soA`P6sE1a7zVOU5i5)$5gjcH$dHbHi0JZW{LXO%RPn#at~h1
zJ%;)yIjEHP;B(Sx2lL=_7F1%t_txPBmv0s}7BuYgiXV^RL4VR{KE5;-q}X}dI_1$i
zIsR9)<o$e-hK~OZ_*AwqZN<3lAchGmTbSu$R9}Gq3#>nJs6|QL^tHL-iu0!a^`4cD
z|76sz;p<);h@I3GqpN>JhHC{o8~w>20vUSUUjKj(fle1A@TC_uH++@~bFv-#Rst2S
zX6Wt3I04GofL}4->4YwN${Es6{|!%|bVng_HzDgR=-t&R`N6N90g16ZKkKaVrv_7x
zJGExaaV|wv+7udx#iQ*1o5)EhlnGSO@{d2ZVaO;4A6y+)AliS+W6Cz0kv?B4*{k_t
zbBPS^MtQEySYJ9Yl`YJ@GpYuV#(|b@hIOD&TaS6F@BwYIPmNNf$AZN8W#GbY3%@7X
zN6OIt*Xp(o=0M2utim4F2}YdC=sa>&obh+Ms|rBqj8dpxKXatXLx%mquR}YeOLD7E
z3^5LtgD`$AVx)6iQQ5+jOrvUu>UvV;hVwK3H7$82J**|KVz*4ulF`=Sqv<|uMMI)7
zLq9R*+y&~wfj8#d#4o~TSh<&Bf0nKeO^Vl^i!~bm2X^?&ZA$NI$b9HsF=4hmGj=4D
zA>}|^dS#5>ZIsO}BYG#5>_vhWN{BU)-jQVCanBnGB#1-4uot*_3wTTu`>S|?uQj6f
zDErSqU1S-wec`X#yr0ciw)BAL8uLQR%yZW-W8T~3QDsY4-c+5gZkVHFR6S2FR<_7%
z)ivm15!IXCsQ_6XE4sh`(8N=^z5h_bPP@SB0mHPafSDf+&7C>ZdCi6^%mJ^`M4*p#
z>uiMB*L?D85_=p61yL=l;0AduQwZDs$>zn+k1+hd)~9Y^j~&xIX%QB+Yo+-}%m3X0
zM+uv+Y+<a*sG6ZT%6x01N>akK6jaxtlQdU6@woa!^wgh>UcIH0Ke$x~P))1%Iq0-g
z5Eez)x7@P=K~3m&6h|d!6h>^p$E548h1eWB9%2ox06yTeeS#RsB-x*R^lL)=?pLTi
zieUcW6>dqm{8w%Md^TU%!c=18wgpP-y&?%|>W2BfM)efPNI_tC53E80NicH9>WmMk
z93i8hp2%j0Bi484y_iNlJ=o_s*Qh1*<CjElLDqK4h2{CvHwo>$@)d5nG|JA$jGgGg
zN-cXa^v?LYji7WP94iO*Lj?A-m}d^y4F~qnaJ)l+Z3XZb+x7zR`jYklmRf#3z{Lcn
zvV}>RMs+q$GHi<nGd&8AE%zkg!K5z~N?R35z4nIE50|uulGO6^QHtlmO4wWSpt}Qm
zm<O8`z?U}eg$McV0xY%se1L@qQ3}d|waZkmdLQKd)hybxbm1#oxT3|VlI1v+Ellq#
zpBZa47`_Ud*?|Jouho6|2vi$10nd``r{4QDY4QL)`Kado61*e!()@A1YV(Jpd4xY1
z4MPCLJ#=#%XvftIZ3Lk@`067vR&yraQ?ro!o0e=3K@f%!5HIJ9Gr4Pzk8!H0k%5yA
z%Q(R)3c3@92|W);W2f#yj|lZvW-%$AmM%@og;_NFoatXG{=k|QD3E!(Qic^sQaj0y
zSVj&WvO*hW;n4L{uH;;8jk+=B<nmY4xLHc|Rsp_LqeGeVVaUAydJZ+BkPx8NG+%58
zJhbFfa$6@FVaQ&B+R>Gq`IWW`0EZChn9?*3f=MbUsn0&*qTL_>V!yKAQB0%G7S*~+
zhjMC6pl}Uk(E^8qN@~K}A8ZYA4Xa%mYT?E~m#Si{D$Z4fUlk)&@un?ro~Z8X)!hJf
zcc>~3QAO`Nksz@JzHe0aiF-Y{g(G=6QjvU#)1{Z*wnzwoEDfQJF42K5=6$V+Jpys+
z!S98^W~NzNgd{M;`k^ak5CLzi@6&f2flG1-I^@MixD(%;nM8Q5a{T$+{`>9hA)Kla
zqA9{Z_;U;jrb%;52$b->wKA(-sv3qiPAQZ&Fs<ckgX0@Cgf?iZ&^84u$sQfmhKYcC
z5yD!!5rW5ffi!{)-IZC3B8}L$6Oj%z^7VW-A|~`I55c`L#6$;J(IOhTm`Q~yv%(A_
zBgYyNkVY6{jZjN4fyfba7bexxh|UMgBe0nS-x@Oa9Bv&qA!|F6ZMWM$AuXK;FVo8r
zDguUVL6lkhxFKQqqhODFQ~y}RAB*&lNi1<+s(&<jGf^HQ%}7e59<y|^!yrrokW6S1
zn>5lA7n!`UADv4Y5iKYY(n1hG)wQf(32Pw|hrA%%!df`Og@c^6WL+?y4C#<$T{tg_
zA$eekNrvD;ST7K8Za56Q=dL=|&RizKj!1{JrDV$PD)ohF-wyEhy|+X2?sW3Lh&6Y3
znu#?M>2Ku^2eKI(S)d^w+QB`M65Rj*IW#|z96$>)Ac%}y>A<Ru6)jz-yo~9D<e66>
z9~WCveN=V~Dw-+v^{t4i4;6sIQk4iHgm1M`_qNiH1gX}17axqt%F$_Mxp@7;<iP5U
z6}!4lna@wLF2Jb!2*tUomO%ZUsEq9tS%DE(4NVX6hhihou<<~%l}AK6>nsDGCd+3?
zZr(5hczP>Zd}Y|}icS%5@TraGBKcjCUw$sdC2EftHUQ4*%rsH&oW{<~T)=u(n5)|)
zdRCW%mEJyNNmRdGcDzw{a$fGv@}mWwH)G(jMxmF82J(Z(rN}hzbsCwMzCR1F3koAD
z<=)WJhg9=yBxq~8=b*J2U5&cq*>*W-$8;L-)c%TgR|Est3h;umNGT)$6C28YAgX4w
zhY<Sl8EkGDQ}FOr=pgA*Jb_aMtTGlZup~7rpJ|E{pmho?2WZXblE`oN7q>xZ=cB0@
zdM~1c#+?UIDyRU8iArg3HI-Lh$8k|yto7VCUu}Hp1O0B**V%Tlh`l?x6*QoE1acs&
zvw5&yi~!SfH$OnXAkZK}xmYTg0E-sDv9WeGfj<r8fV@TEw-99s_ivrBy){xSm9Mfy
z67QG~*hF!%2spI5o;UCUlmnw38uZyr*Wo-}CdxsrBL~%w9JFC%@YNA7;C)P3>@E!c
zbL5~O3)Zaz1PCENtdfpUAuXnp<;AiB@3Z7cf+dHcjo52&fy{pSgR2XJ>qiDRjSPNR
z82ndZa9d&UhXO3#26ama-+H`G0*gJ@)l)LSgt_6P?8TmfRGCBuq*8WvrI3)GSBb#1
zQZ2_pgaDalOQbVk<TnRD=GTnLy2P2%$glBdjT3<sxjpU$CAU5{i{5k$3<nq|QVHI#
z6ewh^<6GFi%a}782S@pbt~2IL#|32qQleg>9sq8Ixtq1B%W?V#renH#7W-RFwDO6M
z*nw4xNRk2TUB;;Ydb(Lch2+fy4q&n;1$H$;ziChh0AaEQBm`C;l*6jHfilk++U~<0
zz>)?)t~^r2Sl&=j*(7sS^QL2twjj{d-<UVvD_2Oo8;uSF&oYea#U6gXQ1y+>7N0u|
zqf%qJF}||-yfH@gvAnArjRoYV8P)x91A}t21sw^j{fVhkJ3o<Zslb<=%;Y^JC?%hc
zGTDZ?sWDmO@c+eNQ0>Dq=j4ZaBdcziVj(_QDoCzW!U6}Tgtbr*iL^+LQ!B7@gha?y
z-D*_dtEp0TCDMuD96wc*g%7d)<sYu*hHvzTKz&h=;2CMPp4$%N)~-f%5x)bNY7AiT
zQnV&GI<q$YD!gP`7kKGAGWg41sY_;XG=#<x-O<^#>BH5VKEBx?h|E=!#lg`&`HEi$
zN9We2XQ(%Gurbqg{vsFzN25<a!^DS4wdp$!l~(ic#_4#P$EP~=H<yj$=xq}v|A6Q#
zUFb$tWfcirE3=AO!YyfHi<N6=H(=MBkZFab1%vACk$;Du6@07l$?!uGhEUi?sh>hO
z&^|k#@K?%`-9!J%jh>=@B}MFSpOI=qUx?AK5_;Mn;9=-7J^>5UP>CP<zL<bnp7hb0
zL2F7AGU%KBia`(Yb<imxgVy6Ehd~$X7ZWq+KJ}(BNRF~Xl|&0n@e#U3&e!T07&SqC
z0Y(|sZ;;lSOlI&5w*$6*w%Y*%Dda^#QXB$&Ma*eKd_eoc$JFb}L#DrGU#=Gl=24m9
z1}sp(1Yuu2U-^jO&3OndpK1n2<+UvbFM8Z^fO(~aa<JYWiFI?0D<}>Q+mFW+NqUIl
zs_;A$KXLDc4~2(Xi1?xKyk)8S^$s`Bzre%L`SLynJs1n5+2;%-QP5Y(riE27R;nA+
z-6c2CN#iR68r+*%G>{S|NoNi2$!njmDB7~nWX{L)b}bA=h@AxIy2R3eA0>P!EkG=@
zrFJFj&dZ_O#cKE6G?bo-^IKv_n82Xy^fIY)-yuQ;>nT18GSvxFv)zz|TCsaXL7@I?
zSZyRoAB4y=kNY&Lf8@p?%=(#2AkcW15fx2i%V+ql)6ugxU`C3wPX$<`ILaE_#jHK$
z#W}wV+h>ryeQ<-#VcLO)3evq;>Ck!H=OWOIjNoS}ir95%It*Ul>Ri$?nv3i}&=Zgq
z?ZXkvNZc!6=s4m=br}vr71u-Su_+9?uTB-sCzTP3))W61P@KxGX{^!7rgcdwI!>h2
zyE@L!=s5jWdg&}0h=r1pM03dwitbM)<rBVu>MxM#gkczMVv>FQE2tIf1!o3>6}nV5
z#fXa|y5S?74aUot@C++!uGuimOx~o54;&3M>UweYXmusOYfICDt103F26#m<+T~RN
zcBtuyREPDgKQdLZz_vUMLz|EsNm1(=bHebX(0J)|7U&f!=<S3WaI(Tw7`TR1z(l?#
zg{A_q*$Avcomc^2nHu-ue^&DsCOjz`st-f!Xu<-`NM0U6k0Q|A7yGu6K5&jikXH`*
zUx-jE*NKS;jr++Aeq!$Y$YdT-;9u~&cKI#OfQloMAVr6wC<uNC&m1!5555<AOd)}#
z2Pcyff#!pa>N81;z@Dyx&NqYq7wF^w9k*Uy`9Fc;aipIDiq5bOM)hRUM=Pn{Is>~$
ztVJ5)cM%V_D-^X5v-#KwF1W)Ve6ujPNd}-GD$?4YP;zsiQT>>bmM%ix+m8QVkav@8
z?ji;U%dF4v0GH+{T)F_4&~Zv4`WRK5n}S4m1mur?`@aDBH&Gy;wF}G33U+=_z>V|*
zpLz<c!9yYCr%gWsYnwKO$`!F8)k!q1>}{%kgbfJ=c>90e%Up)!RCLTf>_|h^YH0Ri
zHwo-}BIKMq=zl@Zw<PV;SsAH4GLB)rcH<GW_PXE536F_=?279tyPzMP3E32=<S<-t
zBcP`6MnE#m6ZZ)tzTo=>*t8<}TDyIMW9uW%gih~8?5TvEkLtg5@E0B53IQeB`3f~L
zB{Q%mW%}g*doE8y+eV#H(R^(AELe@?isl?+Ryj1MqIsw>X96y;i7vJaz@Y}sU8na~
ztDkpF&olzP50y?ce`qqCvz$qt@&C}t?{Oke9A%UHT8F!O_{+9=c-t&eJ+X^Lf9oH|
zqMeRg#X<T1F^kSa?hJwtYOUV_=mTz&Q5aRPf}_qa)#r2lOs(g-JLGVfOQgssViD}^
zN|V-$6Us29)oBI4$X5}ZJkAYb&{T$9H+4=uM=ou7F>Q)xyjXU`8^3`GptYVGZWrJ$
zlOp3>7Ht84`ttv0fM14$%|fe&8-ZX;FRT~1LorG6oU1k{CaFB<r|HYrdLCmSv^M=-
zDKcs$EZPQ>#?|o)MDQd0X>SD8CU2Z5(a+=28^{^~>`%@U*zc1fV;+mPc=X`2|F6K_
zldy-)LuE5(1W3ku>d}HEyO_yEiA=aPk>;`c<eOeXTn{7YQ_N{}2+{d(Y?I6d!L<>i
z+yUti>sSy=hd$9OE^`1`Xe@GEX?Z02jb4PkVPhp!Uh?hcJ&y1pZX|<p-gt~*Acf6J
z3R8^P=ip`M*Xmq!=0GG>deBiv{V#e@3u&P+_ko6u71&;8P8nS!vV<cKAcFZ|QE4^$
z_gi_pv2|5sxSdL&WhV*GC5<sp3^OF|oH&YrJ+2b-N5x5ho(8<eRL{!hG(cfge@l6&
z{?WMY3tSj={VI0BUHL$SWE>E4jVLh5g{8E8bl+6jtRkQh;rmGPH4^v_NP)fSB}~gx
z?#7iTlDmT7nl|FUzew&rlVu>Wa%Tp2g$9Fb5Gs|Yi`5z&_oRqW{cz;}La1_e`fFtT
zdaW289Yd07$_8h%xWHB{-&mj`RmmIasA(Yzw2YiK!>n92fnlIHZx@pbYZD2RPTTR4
z3UR@deV~8nM&_DUuG)y!8!H^`uCAs7@7OHl@OYE#r<uT#$V}lpC}Y-aNXkppB#29T
zLUCzl&Y&F!ayzSr(Tws7;%wHV%ma<FSrQ2cVoWzP=Dh=g!BXMS5ZzyLtIdMS`W^D1
zDcP8Ft1M1)yt&F|*@ez!t{=l{rZ(s>Ow$2jJksH!n-ZzbFQWq|@7kxsebS{w>yVxi
zh#<xsd3QgwaZ8(s^)P0;8GOu*|9!+d#^6_&1e%D!;OTc^p3Vnm;J8ZqJ=tw2UO()A
zVJHkjZJh=0{msa9Ke85@jpf6!WA=!`^6Rj#Yu30C49JB8x+8)uBN?yzrBiJTP;wqu
zM^R^e-r9;riweurx&ImifcaUMGzJk+ed^HR++bE_`S47Fcc7z6+?~WUddJ{a;mvqs
zwcQ!1B(hjheT4%}#8>G^0C*ictG4NQ>9zltbUX>bfQ}Qdji=-I{_%7STT^u6YKlM7
z37;>k2@-U|fhL%g3NYzqniPZt^To7oL>J#Ki6f+K$F#Ekc#|SqZ-^s!HZv^)Eh*Cu
zR=Fg{miIL3ZcGlW-H61JuEy+p<@;!3!zeSy{P0%y0nok7NHBUXK?IZ)(xC1OxV)J3
zh&Zwl$nTPz%c}4?<GX1JFugvX6(Brc%zHqZE6+LGFKGeHky(8&97e3Z^dapDzSTqS
zCff?GV;YMs5O-+-c8V>uOMrM~Xr}{D5_qEt5qg~c5>o@J&ZTz?AQXCPm(J&55|g->
z?<(w@GQ9^+d{HS@ledu~TZJN^023{kLFBb>mxbdAgc4}U>+n?sO>Q^cyC*0ay~Xq%
zCe;#z0&H{;M1W+AKlrLY_z&&?3*d-D2xnEc(vPja6qBf&SRBWR#ZkB+O{7Z*H1{y9
zgZU)T(1T2FBB+6uWW(bAc9@N=$<dS0!$&2Ygf8u*CZW&b>!>#2B=l)`$<$c_lAn$j
z!;{eK&d5finAPvA-jWGuj;%4X@8d75R-$Z@9k4S+>XJ$4YW=H(*mQ;f_D@1xo77v(
z5GWuP4|2-rjJ-?_FZyZ#-soVG0BSq|HQI;#QKolsTDv<JfY8`U>Zj0EG8l>^7ua{G
z8Q~+{&&e{GFMd`3s*=cbj=-~c7?PklbU=L4z^)Xd`oiwi2Bd)%V)7C*mkhW!*uN`G
zUXQz!f`+Xrg~8Vf2Q(CNdcGfCb}hIIZqzHRvHfU63zplxjqQ7`C=7m#RoL80tLlwz
zNl7b!M^Y6g#%|*cHs8Wx(RyPZj-D3<p!wpwS#^keQvrje<OYu3GO7zb>dAUO;ndnw
za9;hvENB1{BAIrLNjN{J<Eqr=aWeIfn+kq_8>AjN7KzD@wVpv&Ga7+7mObZm*3JD8
zVNXoD`gzo`^@Ii!dmE)hwJcGIdftGoAhED;>u|kAW0e;GnVUW}8$$ie6%{j|ejhr3
zod+<ZUX_(Y*DXkc<%C+1tH)_{K?fLk&6kq8URQ%4XRDcv(=dRE?LCj}!K6{qvY}|z
zpNj{md)`2EC*!tP<cX@3CqP#2Is<-!Q8zZFV%Hd>YLc|8cMG-B-@JmF*CWe*<#b2$
zkcCm>;3bqoo=*Cgt$9ggaev+3M4^BI8TIQ`Ja#~8z-Zj4OE<n9kW|AQT*oIcQOAS2
zj#s31XNDL^BN;^+GBKXgIrQsBWa2Go=LjFm+KfNoW7E3H%k9T*mc~aQcieNV)4Ipi
z`eE-6fGNs2M2f!qqcCfSq_PO+)D)-H6m_k^W{8odC}eCZS2fkLN1DoJQw+kH!4cUe
zSD5mz!VI3BXFd<E@NXvWARcD}Q-FgHW-o*e)MhMKRTQxb)#r^sg1BevY6#fS2BUf*
zYT~}=AdfWgDr5wr^C|W>ZD74+$D5nDZ$Urvxrp3g8*VLn&UcmQ9b1R<v8u+ANPQ2{
zQj$71D_7XQAS+L^pP5TKiA6G&;xd)ihsL39`#xqyp318Qy!rv*A^TQdNoHhl9YvY4
zV3*?|3{>b?yb*p_!Z&4uDQg6#NmoZk(wHVim(Sh`x@tE)!jGu1SJiV9ywF%te<j4B
zLf%*oj+k=CvR-IuntgT_nB(Y@l|E|~sk^>B<yWPwP!yC^6i5D{P!w5A9i%LH$0|ZQ
zk<;=^tQ8Vcq(z#m%_B&NICHg+p#2hPJU?9F*v>N(1G5!KOHzcCRkDSpX<-S8+|v+h
z<L+?x#zPf%)eCXP^)*Dc+BL4vM@%TRhhE_~XDU)bWBqUqRS;*P>Q-<RMfH`emih$^
zmBlL3;Y5V2Z+(=IDd0M;zBaK%_3~XreN{D@DEL{urdIi|<Jm_}LJN$li4+g)A2&|>
zR{zR#S@;Tp!*Nn+;Zs|bg+G#?0R(Eb8Ki~3`pbT}LJsExsKKc7^s;GCk;++fhIFo~
z$6_{TeKYDnXT3>d>C}Phgp4|0QyP!6@YtLd@LnhuUfu}aL<{eCT0cy+e!?cUo_;tA
z*!Ux*=-W>oBFW7R?pHG|t>*l$HK)VEqpv3<>+*6?uv8X4JyV*Rn#~?f9ZEGZ+vM)@
z{DXxz^UUX9^Y{k~k5x;~dJ=pvy8(VjZTh=Sgm!8Xt5|}s%wQ2LeEOaj|NkH!*xWj}
z(Oy+Ulf6DP5@>S2>)>|#Z~D={X~pSoZm}2QQK-yq)o<mKZ1<C?eDXHUH0N@{!XpC_
z&Y!NB9zLVhsQw#f8bg<hfmdo4I$z&V>O;fub3#j`w*ZC~``AQ<5S>d^aHINIrj(2O
zwtg5G@{8>u4z)=)0w2&ISf1*CoSanK`)-^)!KfpiH{f}Gt^e-b`Pe_=@>QXcNM1pD
zL|Wm1O@&u&m=9F^!Osc@yk1!SInH^<2Ctz5_(pIe9N<Cqp|0x2UyBU-#ygpqeM!~Z
zWjMpLxkq_7?(5wU+9Wvx>l=3vLyn{xHv^E157YX*|0#|>L(U~0AsN-fepEUrx`z)F
zj+G9?OU_tn096DpW=eO0jOumHSn0bT<SiL1HIm%USjm;BTO({hMs>z&dHa$a`aI&#
z0W6bsM<wcJ^a*g3L}wQ>H|*?j#~~{DYF~e$TIL0BTsZ5_!M$AS???{r&=2YAIm4{B
zb8s7~RSxbJS_*<{{|!$<qeUMgqp5rGklD8$_j7(iirLfjudir@AieD?Sx=BpEYB1D
zHN!4DIU&Pp|DzaIr1_ALVdL?V!>~jt@QV~1vTM_asW*jb4SWjLmI@nG3VfJh>AlpO
z;S_kqEO!e0_8rnH2e=(bfnT-RP4@Ov;7_d*y2hly3m=YDKk0zCW(7%3Ozf`u*TgCC
zjRD23s1*43@K93V?bn}_6|k?U;w4oa`IJ0ds_qU_cfC~6T@|US_~}AawE4Bjve+xk
z+8&2vdKBwmd49=TBz0h$k4q|X?ic@qA<Ds!6>B-F<;Ny$?0*BVDC4y~D_c%0Jr^T0
zZfH~4Quqg6pM+~;dC&2cEo$&~c1lGH9`6P}os)k9EuE(yXbxR9y_XT-qBg{XdIna%
zjFT8AZ$)sW)66l9_)U?e___El33EW;CZ;}d^ynJjYQ9s}_ODRRTv#~y3Ol2^zDg}0
zBG}A+3qKomBRUNmQ?Baa<PlqOy<eMr$^`{uMwD%7yb}$2%6XVasxkY|>eJL=SkiJ6
zX~*W!uf~3kZ#o-QL-9uF9ML{_|Kj>j#=9gehWPk0rctRa0Wd=F(8E+qwudTWiDEzX
zgb2c4Rk27FU5ml<-uR5`5o7o*ix{HLyCPUvSH_(iX|!=7%1@Cg18m;Ny@9Ph*n}Bx
zRK0*Va7bh~ERz~u(LAuMYeh2>fbUS>?T%YVXa-3D7*AVv_CiZOB871?S5j5KU2d``
z8P42Y98vQD9N6;xiE9a2NiODr_c+HY(ER<huh`ej{FL8g+fj7?lDHjyCBau6dSrj}
zxRCH2^y;CvG|@;n{TD;OF;s-WHgwz*fC2Oc{W(O40iD@{_#42>mGgdZ*6^2t#TZ0n
z7(JZDv}$O8F^Bm~rgbW;v}=f|7Kf(lA?BTTf$JhLs1QWsQb^EivUv*6@whRM=>Vv9
z^^Zv9#gS><cx0NDT48S5Y7YHm8saY)UFl_y#pFOK={1og%?3$xu(pT8FC_lfvU{Th
zkXneT;;xOi_gY=8r!kEaH0d9+KwU+sN)6drIT{B9`ECg8%N`TLH!hZ9%z2>yym<P9
z*zl5%!SZqZa|nX-#0P!k#Fh<<2R0aWgT2-aOc1mp+oGCyysSCc155K}=0k@6oX4|`
zt&7KD&!vy1uR;Xv3<YzphS`VD9GJ5Sb1q>9t<iK~O&S&`d(zbx`z8JYTFTE{UkrV9
z%JB>u_;~b6g2RT<43_L^(&mO+vPTM4fI-{%e{Xm_pDY=Wq)yC}DEoOhG0&TCouSU7
z&ae8Y{L6wB4jKGI*Uso7Yd9M>;>6cFP@{E}HElGg(K=oKupE`9Z$PEr8y7;w_B1|<
z;Qf?A%ro?T&x1E`AYDQ{pb%VZ?oi6E{wukPrX%`eRb}N#zr*t?-bDBm>r?Zn3Be_5
zKE%=``b}{z7$gnwJ-7tyW?jc<ozKT|Jk)#68E1jdph2%<zA%~L!;>HgI0(KA-$S^+
z>U6|oYp{-RP;2Naw#fwBP1E;>)O5$3(y?V-_2kl&FJxKdAQ*SNV9e>q3Y7F>3qXpM
zp1S}woM^0`M6x{I?|t|kDqNfKVl(3lbQ?hzSbaajp$(gwB-XT*)j+LF6RqTwHn@@#
z6z9w+?8^yxRX9QDX*%{qrJA8-jDL{ND1S3~zE5CJYgrfb9&_iOMh^l`SiJ$0Q9^4o
zZz&yR<8SZLA6d_)LD$><h=-86?@i;VdgFo(EZ+q0)j=2E8{=N30O08{^^APsi@AR!
z*%+c@75drJyvE{j=5a}E&2b79yFhP&_<kmuzzOH4n43yL0xPWJi=FvYCk+Rg5QqV>
z-9r*P*;9f-Kz<CZA5)(=a$QNbKqX5UyR5nwcSc=zWYii}hs!UU2K_jwm3p!Eu>mqG
zR*x2W+<Fxkq7K>+>LQ(~KH<mmlrB-$PdWDo5*rYSz_S&&LRu1W<FjWKI?g_P_4)EH
zAw)FO#}BNGO^@}*cfGUh>>QWpEN{wC=j;$Y=knjNTKOc{g{v})@iqTojsLbzxuhim
z!AiX!g;tBoHPjXuA@#NW%uN^$yyV){;oc|q0h?uh7dA`TywDri<S1-9IoOOn&V`M<
zDcA(;2sZLb95$b>?HD%v+Wvg1U=!RJx{Jf>$W|3=9^VJ7J~=atRX$cYJ18{?c{6er
zYX;3ZHjENq6MX*uRRkY-KMtRs9mI!U+r1S&5j<Xz%})>qX7A|59?y^!$~8=b53E1o
zdWB|Wg{NB-VOb-hm}kGQ(JbPyQAS9>)TAh;DdwI2SB>dk28J=!Zwj(&zl<O&pTr@X
z^-9N>$FJ=pr^JY&`LUa6IBREbiZx(Vm}ym6i{xFcSYCzA)JHWoZyn>pM&1-`n!bo&
zBcH@!bN-r+VZ*QO3nvqsyeiBRZ{SMK2oG}?yU}XLUYt|lLTj-bt!#zX1CMC5nvQm%
zC2tB^{at9uCvj-aT-`CW__aN&Txl5gnIbUae<GgEYxE`vV{@NTtn`#4+v$fg{ycpr
z{m^MyURYJJh<XbI7-jwK&{cWHoonfum9V2`-Jwb*eh0(WIQQWJNug``EJDg}9^D60
zb}?O~tRTdWW+y39p8v2W<&#IbNGWd$Dc}27L_*|~I8qK?)iF}?Yx~49l5#|#UK}lB
z_K;>bZW%oVHz#H!VnPRieTvUM`3x5>ce`=n6e7BjTOZQ6d^*5|i@YhgbaUY%pTyx(
z+R!mv__ck_jl=~T>|g}8g}pTUBXLNp)RtkGYs)2MPX80;Va9+*$ip`9Joof4p5pgw
zmEKN_t&B$=)JX2m4kO9e1jFplBHWVq<1n0E-!TmNwH=%!g74~T_ky0Bhx!1bo#NN5
z#c8OI@kYC#$c@EwJY0Z>w)ZbGbh&4t6nB^y!KCB4cDPj$@qZC-nS2S{d3b{p&<kMf
zm`1IEXH!4pIJ>v(7)9Tal9J3LN~d>o`*@HY4&QLd!W!>t`-@sqms%SAJRLwZ*18~w
zZhtJ=ha57W9PPu$lCMpS#W$4s%s@TdRZN^@&)kiP6LeKIl6Alr18XvQeBFL`sks$g
z-nfD+;JoHRD(rB_8EATbRC~tk3`$O5TQ1woVVn5Rv;HPs3wlEKA4&EBW9S;|_z1i{
zj-i5>=6{L)8lD3#Qp!pnIOR~ZieJ_o(cD_=*|Q}Nwg7WG@KCE&S{Olwya*X(JB|<e
zj&(scf(zqNL*R)cQNw5q-qZ60j?p=_>2>OzT)cA>WDwwT+Z5{zMUTyLEFwt-C`@tz
z0kSo@7(_Rl!T0R}6IEakelYJjs<%9S(2Q-!FPjmKZJbXuvhAO)hmc$Xzumt4bX>g|
zH{gw--vd;axOfBH0mZW`Su02drXjb+O)B7zvm4I_0`#Eim7W7E9IhUy=mYN>sE&f8
zODBY6{brha=|HevFxBA#%d`KTVb<5wIjsMU8pGc;61Z^M-96ru_~NY!emDOGVk>?1
z6x4_5@6q-_eSjmLipvk3;7}m4iJpicfdP`HMJW)Wt13lO4P?}d<BjpP!;;4T$b0O&
zz=Zp6_9gLkuYFz<Uhi&yn-4%Q6hO6(MA3Wl@rm?<)IB^*-CC&;GU}*>eGe*aT%M>t
zWA<wbe~9D+3KahXra1)C{#3S!(83LcOfM?a!u{1@G>ZHMjDfu{v8&Af|D+gm60rOa
zcz4NSiZP_XO22SCIb%YM|NXJNLoq&%pMvZr{)y_C5Ct%}$1Tb%3mNl>1@vAv@j{*t
z;urQs*HW6-H?F5wV0rS<j(vuHc8C4sX&_*xi-6Jey9o625!Xm8nGi1jgW|Q%={pn+
zfS}#yv|T`z9|RcX1zp7PK+B&^b(nWI7UzO_gV1*4JeO_bWpw*9(S9D=hwSq|w4($E
z7eyjC;(dcDNw7VcEbXKEDa8S2^oTQu=CCi{Ean>osDvU}N<eb~Xr9E+ignngB=Xp{
zP6d5R+oaEB?ZXF1i$!J$JemcV_LM>KAmWEoLN<|*O?83L4InhuIAn^Z&k>3E6ND^|
z9L^RTHrQ*idqLxxIQkm11InJq(72Ql0vy+yl=K|p3P~KbgY48}k#5Ma{f<8h1=?%r
z8w5!ZzK9<cHy+6y(J|gHF>&-sWLZ)F5Badjw0i8%y|0j8jsU=ItAsg1B~}1B6sx#s
zu#c7^Jc9a=goATb`%qjz^bd{sP{#~x-9&m1T{U@jXc4Q!0DUZk&vP&R6A<QNpW~mb
zJ0lIjprl$)@B?vA4##VAis=D$!PS43E1L**;2iJ>JMhzGc*#z^8Wcs}AWjZ<-wKP8
zmZFLOA93#jURP1||0lEu0yLaJ8wpq-g%(moOrc036jCg(1E&yf8W1JQtw6y7NeS3O
zN|Ki2>A?U+KvAlq@+t}_lyXrMioJkB3olYA_v=1}O97=fr2o%%&FphaT2SBr^Xv08
z`|Q1E&#YPZS+iy)_hhhA1TTJ$u?Y8>XU@i$2KcNcYaLT%a#xCyvd+^%>OL<E?4e=C
z?;QLI-rOjg%lho;dl%(vp(Cg%%Jblc2c@jf4v2mFr+shi8f^VoUiQJ(1e+BarGfs(
z^7cQh7NJHhElM)%zClfsKV5i0cI#A?CV1T!?iM_d%OP8-bp%D-I#3%OuHX##cXkU(
zKM3kqUcSvjbqI@9x2UZ$m__#Z#zQ^4^^e4F>Fs}QTyOtN0<nf~``M$hRc!H4UQ5Z<
z{qw{M6;27%FO{jOi{Db>c4dsD>682S!Jz$%clFuxMNuFBnCs(e+=HS%#=EYhxK_=t
zcr)mGmwv7Z>etT9>!&|hyfqQ9pTvq+gTDUVg7k=8qkKHhHR)?y!D$2GZbzj@ZpohQ
zZ6ks)`FL3xzqz;nZt!xa;f3=3Z0sU&aVdS&+rLm-0M`IUg6ZV%@U@Ku<=^DMCx`A}
zdouucHyiGRR2a$pi^2He>Ot|<ditm52hIgA<Oinrig{pOuW<+6Wo^4>gQo^(gC7mT
z2J>=kP@qravxmcZ=u|ZERCE?L2V)=+PY0yNuiG|0yI1|gk|elBa|`IP#Aqlt%q<5c
z?cIu0*bmcIU$pdLd7PbVN5tp+!b(J8%kn=4(mHZ+sMzg1n-1R61X^w*Pb4orX()}z
z_@f4KK4Ndw>pMAAe5a^eNw`bBa|aqkqB>RDu9#AX8bm|2VC<$WBGYpypO3qRn09Ie
z)SOg?zLC`#P&AzTJ=0I!2ce&qqo0cKr72<X)g*ic!dD=C$$qpB!%?_EVRM|q?Sdq_
zw`8=S@ch#}P{YN$ex~XMOFhkH(rNB8eL&?+s(5uP>e=RJrZo|nZmkPa?F~Wwi&x++
zwFk@-&D=9c9Z{j-7ZL9JN|rsdGhMjC@AhgMnn|~Zo4lW*T+oDvv04ahP|5ppNqkHD
z@0T3iqjxQtvyqc<>X$%_QrW#qDZ-B(jlOC89J4kbKQHb6N%(o{)8gl!HyD26T|N3D
zA4exfI66AQ5j)Hs0Tb*Rq^5(a_p~t-kxVdau~fg~^TGn;MNvx8yAXfF_HccuG7DnU
z9uAXP3ikhyO)(ZS`+@tr%U-ZB6JA$4j2<A2?pzN>?};#4fY0e)ht~q}T7!74LCgf}
z;bZaxhBDUjURDLO@>Qkbshq^3w?@wzX~bHUL%{Q0tp<7#EDCR_!>Ffo#(`gj?Kl3L
z?U#hlZ5y?3ts;ZIt^L*3PYUag&sLr{ZPcibh<N_^LcOTV_OU^~D#G*q^h%Y@AVnvE
z2W!as&mRA+DZcF4-@%#;t0A^wM8L*0hx)^Z0)P6qoHflvWzRFEaC+!AL=riD8h=C|
zELFozfzBBoYex(>OR-dgz?wzjHx7h$W1(UehXweH&prye(?8H3=~wSAHE1@nNqwAV
z&S!|@>EoC-MIP@w4+RHJPrF#}yKGVBgplguoohiFZ@zKCxF;Ui)ey*P_Bkt61Bw|;
zp_t)lr(Ua7fG&VBv}pJjm7-NxLw=;zYR$R9zO+Rbk<Tl|?7k$N6S^#2&s4y>Z05z@
zLR7~)C-C*+Nkb3)JO+cxETJ_TC#5I8Wa;A%Me*5DjL9YqGh&trpbGt|3Kx%eYTTfz
z-jo{0#{V#w&~RA1<l@i9?>%6P132`ANw=@xFX4J%7ye}4Lym-+^Y3SNuEemDd7fve
z|82+bX^3doq*VuRfg4mrM#7;wi$4%hW^w-<CWJ%os<CY)VV4YN5gr3Q!!6746EmB}
zny`~X6?Tw3+6J6%f>Pl}R<GO*M7PenN%7grmL*#kqYSA#S8}&_(y&9%&u?mlJA3id
zH+9WmO-(;6NKd4hwbd72peCl|0V;KqLx<?*R*2;>M#fIM26VWDEzFm?G}XNOhZKk)
z+wwD9!`-ejV|&{iyZppme&8-c+`Et5-9O#so&Axwo6rGSc|*8hq<wsTg%E2h&&CUG
zBjKgC2Xy}q!Nw)5s>4xCB%hd=>`kB%>Ytu@Y@-ywUwwUz$tQv}xaNOn->{L_Hm-Oz
zG4_SSiO`HP51k*w6JUoEFfMNFTwL35RqIY0`+vzklKnr`MDg{#{m)rx0#_RulU=;a
z;z>Jg#J{sJRV$L20?<xnVk95w55qfWTfhIuE*^s7{#a=9bm!U9DWrI1f90ffW9<=F
zC5C{>wHhR8L$-$y%jx?B>5F-|B)><?9ShQ<Vf5(b#MosFoi2K?|8vq2wK<SrX1Ef+
zufFf%&sc+tCsl03dOX_yR2Xxhe%vjHv&iR1k-n=JPZh>!7yjk=Q+_!A3kxSn<G|4w
z<&j9W_N^aj`gjG}SXn_DFEeU}erSNFy$@Xa?5y>A8K2u{A~3Nu{oRr;p80Sv>rL)^
zgVUD<TR-l@ost^UeK2bHGnR5mKzUTOn4xu|7hI7gJ#q^;b>_)I{i4f{8)Silsejax
zDslr5bSc8AAQ=5I3riEGJQH{aW-L%DKIF_0Jx0|telBF!^e>?)a{MQ5q!V;1^F<9k
zl1tgsZ6CP;@o}*CuOe5#&|HMyFH2Pq;u8SM6sew3MFZB>3j``A%dG!HGG_$l%gBnk
zqK;nz?vWWg<om%5<{AVG!LI&w4E7FK_3w&7-VGQU$Gh6Z6TtSVhR38ITJiiL5pvwF
zq1!Y^UBczcwWtWju4Dm|aZbT_X)Foik9eQA&P-qEQr?SbCR?XL2qdczmaxXk&4d41
zyumbvV#YB15N1-eww9%n-LpW;fbvn?4^FVkrZ|*SS$lD1m$EN_udH?Ce~f4VrgOQW
zj;9+s0yMqnHu3~<&BA;xB9UC3xeERYf4(oAHXj{az+cmkg0~vvtGM`Mcu353)%Y6K
zYVN1!e`>~!2*2hd%P0zYqOiV;FouWGMF0H4`p+t={{_-of|UGO5dvg^J0%7t34rmV
z$+<E7qA|-uGCw9umKVJ@IH2vtpQr6E2~a`%@!4Mxb9KJeu0Ar#)gLB;ZP36JnM*~O
zH@ZU<PUiDRc!u_Oq5oCtrpZ&axQ7mFMj5I@aChFQwsf!xqUGMn@!lOHvQ`mpu!?eR
zT2Xm;QR6qNaqDvFvjzl7OY{A+mO#%mW647|Cx0p}yN4A~j0>FzXoi%!@N?cFH|`Du
zE(D(E7YId5IoMgjS`a=uA8uEs;C1^RQj(d9l!uq@1FziewNe2-r(X&#>x9c%;j&f;
zqINevF`fZX&odR_UD^-Bp>XJE2|zPJjk544YuRMbo9}9MAEf%o=oIyMniv2rpjJAW
zy9!_Z98g^Ve5NL|e*mZ~>kll<4iMlkB13MJu<-8G%X@sV^X;$8blQ2<+bad_oF{t3
z9OtaM>q}d(G@oF^qrr+yuyENa+m)=JrPAc;y{vEg{=OXnFZ2&HW^5|_#2En#_Rm>%
zJF%c(?4!ZLYgTma{)Mepon`gED(b9wmX8?654(nD?vYSo=oTJ$%Y~n5`CzBBgEdhh
zn&|s`8KJ>#g0b&wV0z9I=L;xG-#_u1ciw-1{t^b=MwxY0mR5JVUbC%F-^Yh)+mgO_
z4hc#h3reZy<1K=|H@09u3APy^MUuk|R5b5^){Gj+RjXmJ#yrtMt?cpIIChy<ns+?`
ziM$6C@A`x2)w$uI_|;wd#R?rPSaAQ=qq-^%D;w1ntogh07!?y-CmTOhXi6Vd%IJV)
zJTKWNv0vPB5UY76^$eYSdM^h~%z)UfSXJ8z5~Y$DyM)QhQgHxWoS&FUCNi~LM=hzL
zJ&DtML2>`0Rw({V#&)o^YVc8O%(>@Bt%e0fbx^obi0oTmmKgg`M0lcbWB(>MZXUHh
zmf4;Xpn$bQTd8ceVyd%fSFQah04{uShB<UA?c!LnKwjdrZ_(EUb4=mRjA^9<vnud`
zj!Ry;B`C#7<aCMtQNfx;0I;zY>8kv2Z^9f-ytRUE%{7<Uik{M?9#!&a5D`Bam5MD^
zd4;^?CKX4$Eu+E52l74(lQl@zB$`wYir`N=_yfs&Lw-!6*vC3`P+y8ZwwMvm4>AdM
z_75R>+i3@rRrFM~wAd8AMfm+3QDo&%9{qQPFYX1Tr+7#Q#rMw6U!s<1{H->q&)FR8
zfEk`h<zs-t^*Yhp)YOEEy-G?hx`eUgf(}2OQodE*bc$FY75h@JO{Xw!ik%hP3trpG
zr)QW#XRIlOu74D``o}KsW4><5RdFgj8iG<_G&O`bHetQ)=kBz2KW7aimsu4WevRQ*
zIH_Orj(!}E!qkK_Gg$bV@$WrHfyG0&+1<GyNumLuH0o+@DPM)Kiak?yH%P9b!QMyq
z1TIM(4b|<ThK`=*(2;LHTtiokvqmr`)>9p$!Uyt6)MJl?`FaFPwxG3%#DeZ-!kM!*
zd2V)5wv30sVzw1n!gH)^mZ&92fE{n78Evpsznj^3$=A}bxmxzvd@Y$(a)W-%ym)3A
z9*kq2f&9Kf;13ed)UulH|Fyos(ppt?LEF@+@vb}cD2jd<Z_%#`&vW!Jd~T28NQduw
zI(F%GLOzTsYJZlB!ri{_aNppNU^0Pe1ShQ;dCZVov}2IGq%2i=_a7QyuuE9Z+xFQY
zc^Z`#g~Fr2<r+DJ$(7;$$7r5>dH>&hK+0^ZF9e!fG8UYiIT{3oc_We{eb6YIvZ?c?
zY|P;uJJ?Uc^&_1&UL;&6&-B7|=a2!y_56cb;i}&vU${C9(aw$Hr-W<V51nwC1En>S
zdJO9|!+I^sX<1W>a2>?{1}0ovv<)U)#`AB!>4Xcl;e45CVo&pB=!XcJj$OZGfT&cT
zKTuSVjt;>=ZmW|L2eOwA=j%lvhVebX_7C!~JwX5VsjfnPjJOS~wq(IHwVBU%XN+=u
zhpI5WuTH=sD2>?8U3q-B6AgsFyv}t59`lhXSkBC_1u=~8;x5<i;0GGO{jn9yJHvNh
zrBb<Rq{Vj#Qm`NK9fS1c;UA9%`Ok%W?M^>;H@&SEa9r1E7<bWyK`vM@AWlHRGJGF=
zwWl%JHtfSKVkOM}LAuj!(}{YRt8&F2GLpT*MHR!VLL*r%KCD3zy{AaZ3N>$Zt?2)=
z>3|~s4wU3yG+yvdvmB#s^%_^)NSi)|t(jKE(=W=ub94V2@dl%F)CKpNe))Aex?m%&
z*7_mA*k^<EDJ<ag_!|2Hv!KTZ=@W0*7Efmw$C{|Fyefz%;$ATZc+qN!su=kh`_4{e
z=ZG8c-jidH{*nP>t4wGzi(YL3w&w5JVn|^ayr4w-uu>gdbsJ=xJhm^waC+Wn+yL7L
zVP4XJEnADZ#D6!x^JA-s-m&BB_WtWe!t3}`=^yH&<oh~HVB=%CkY%IX?{^Zohd8ee
zAu*vReG!njF;6461Wg;$CvJZ*2st=Dcai~+4cN;k2O;2eeN0>Yt0seC2m5X;hZO?A
zMgqix0zkA60G=2O0JbIr6^&y*@Br-K0k}<d<wbZs0FCrdjRS`RV7LQ-V@Lqt^g;k4
zme7gm0)Wv$gaO=TkAYjwoHmaAhe!(sp2VwLUlpG_%m9e0a3pXT7}}WpAcuhwo+XB`
z|5I@PpDx(Ge3C>mJ#=Ra#)ORzZu|7lrcK!9>7TJRYU7&M7<p{f2tM67sB!F5lh653
zL!m_S?~N<oP9$GyWGnSGuTu<6KSl4(XdL_W<a6HEu;=LXi3gNSPX4R0?_GAN`na+0
z%`GO6{TCHztdl5xpJE!vBuf7tbZ*3fw^;}@MMEO}`5#<&P|4w`sedS$eEQqRq{r{w
z=y{vOfWH1i670s?w}GL|t6MaVeQ~nJF{Se9*yl0%QUVj$z*_&tHSZ=$*IQb~`Yk0>
z9ym&O{f>5R?4m8InzZ%RjXbg8g)I{PE_X+#C+&lOfuoe3RJ)O&Qpa(nC6mutrS<ZY
z;lHEPBZem!)RZn~W1<81e4S4^bVH4SsoXHO6?LM4O}(Nl<%nxgzq{H(byAGr=AwW-
zPv*WMGSojAPcPJuvE-h|cHIq?g(_<D&V6&fbC0IN9;=-x3Rc)x>GC1p;ge|l9eGt6
zycO<hwD+J>%T^g}HAmqB9`Lo*u6BT(+j*mV1s!H<sa^d6)hP5RLJ%z<!$P7`%fc;8
z7a9s$M+ccbQ14lAWkz+FD9Sc`RvO8nO64|S?&Qw|nSbyrL4fLFJ?UFp=Hh!cC<mqn
zO~0Yh=JjUwqX1NAXr^s363I7^qs&f<LnYtW?w@i)GmjG+N+e$(qMx}`VIsY9GM(Aq
zUi}UIlX+e_jC$qtP38vfHSlE}&qV$78ZooMRs?*24$qJ@%_k&uIh~z3f&1|F3pDb>
znBIP__bSq{6{#rA^xn&DTv+>A%-#>lwa<E+1MIsE=L=$RLKWOoJiZz`==e%3?mo!I
zssr7#;EY9cFNl&xdGJZODAFeKi8dH-xu_W{W&?s@l(%(wD=t2M^Iy7cgsQ@~Y(rr$
z2>1_!&p*2mp=ty?#ra?Wm<|C%DF90=ut07As|tVcZ`J67bJTdE(3V{bOwY{2buEWK
zhh5yJTKVxJ-~k84aun~{!8Fc_NSt!vR4lR2E0e8#O~StB*)`8FLAv#<J~NyfA2H>l
zUe*M&Ht1PAeU}QR$A4C~q3cO*l1moqjjZy(m5@~3)vPaab{9WF!2$dTn?%7MQ2feO
z5rr|j-iD6amAx;lp6ue}%o6D?=zFD_JtckY96eUQJl=UPr5n>trP4s`na8$ioi~dS
z<QFhowIx|voOO~&KH7+u(a8yIZ<ENdW3b{K9SPL=YAGuE&|vEq8drpzzeHNwbf(sp
z24mk#)b~wi8%=($bldgfB(*X3_P4f0M6eKil2vzZ>|9++ph!BpR#YP%u}|Jq8AR!S
zwQZZA{=JKT#euH<59-goDEv$dYKCsPU3I!wwO&S#iB9>|q#OGEYErEW@=oLF&k%>(
znLe?vX67<J=c}WWOZ83crZv$Q#FlhyoMsY|&t|kiXmW|P!X;=N6wf}=QP8wXF+K`t
zd+f0HJQMT#+~s$6Dexz!PsNwylc}&7@zM&X2FV>dgxsP1o-&2rieqiVdcE&-%NFL`
z(SRyOho)mQzOxrU6)@R?4Nt6s{>OO!k5;}e{4nfglGXCwHl=T-<I@a;hlaw#O?%sz
zM@f~wYIH=ce0m31*h2mNzs;+hp9TGm&;EuaXA^C_Y&djnRN3M5a;g6!PER#A$(8Q9
z$8M%IXslbqwB;4$iBv<NBWmZK;mV<6rq!ApEf%|{hS*C>D@m?~OB(N^C;E3q|CTt2
zW)a>`V02k%eR*BvF!jB2XrlCmV8zFY(#1jj;&`Wg1bg|$&>%H_*PwpQjK0aqm6MZC
zVjcPyXw%G2c{FUvIrK1M*+ZC8TN>{?ML_kv6bn+rAZ}{~sGCv20g#g_sv1)xpu7->
zcB|8jWrM9zfZ3Z8Ja5h+R&=Zuy+aGxqQ9%NTVla;H1%k_^IsCqzE{=MaGDyfriRnh
ziNnEVGiYf5ExnhI4^l&lo0Vo%LV^Bu=w*{y%m*O5HoKpxfG<<^wn6FyD*sy41)F@r
zC|_kZgkzv3x%oASV3|`z;dE@j5&1)9+*b>rHmG^BE&>#re)11sWWchm7l9RCakdFq
zySrTIF3%2!%h>?PS=A!`^YNPjGAHD|M~j+<D3eoYOTj&+;qfNTyI)R+v`J=jReZtm
zVEx&6=dFArm%Hzk7^vQ+icO>#etu<RKM96kVfgpNjM0?4_|n2MZLf&v&?FKaN6v-{
zc9-G96A0TqGIKX6aaZpa)Z6x^Y+?R4goSE^rMzkeJ_^5fmf`3`clpB(ASXY5BaHz)
zS$F}1&^!md^>JPo+b=vcb34wFFJse%x1dTz=_38jC60PAFT(H1PQIr}r;#e6KQz#8
z%v&no%9?|!?bc=Sd0wC6>CZbUu0o0{48hL1H$()fgZE=I-2FH}#05_#*Y~ykSy+Kz
zTjdd(i9dL>+{_LkhIZUewBbFq*)7o8Mmmt3<HN^Mb#BH009(8xa$+gO_EAj6Oy-K<
zM$j9UAMN3LgDCoGDheynU%o4{w<}m3iK1A?oUWl@V0&Alh6H1SDs<I@kczM@2W%_y
zW(8ajb+KDeOn^X`?R<C|ui58y02+T`Y|)%U<L?a}9*r}E!lB^Op|P=kozN&3kS^jR
zfy+b^>ynQ~DX5C@f-h_mjX_jhAsU;2A2j+P@F4K#1;qVZV`$gA@JFW`_kQ19Hpb!J
z??$3+99Y1A(=Wlc(2J?`0^SR<k=Jyr{c}#|xQr#{Kxsu93iN{|A1bRxIo(z33f3s>
zT3b%Ra4DNOs7#$m4Y4#d0_D?01sBc=&lF@t#tY}q<Fi+)p#ql@GzKY_X?zv_AS~Ot
ze(20gE&8WjAV2;k;mu`jrv*zGKcWqftSTMXJ8l{2S3_s+tUF+;vNw}PkE93QCyFm9
zjW0Nk|0iz|U(h(D@1?4~S1PuCsPEOXt)JZb89=Q<c1OZBzB~tDPg45jEkWl)>~aJs
z=@WFVNbNEM2y$DHpp1rYk9$_mEXG12EhV-kSh$rwem9)99i85mPUo5Y0(!(}|B7$u
zf1PNOn-fMpKxDL)7MkWrZJ&jvS)HXAK;!pY0)U?|t_tt;bg0qi)yDNA1|k>D0vCO*
zpeA&KBQ%b=@Do1|e_T$F>hpV)>ra|3*CntAX}_1-<MeCRTOCqY$=ls|s%dxiq1+bJ
zWQeU5>9S?WlBoIqK6-zfzn{Vt0hq=G!baui`Zde*+};_T>xRbD=MaU6vs;VRkhcoh
zf1TwRwoj%cTY#N-$~kAnyVt_Y`4y`{g$Avf&h-_<<tXtfDz1okAE=TGN=bklcJO|!
zWe4vc?;h<xR=`k|$cF2xZ~@NwXEgvrb4mr_fXp4CazXmbrJxJ;-g4&GMWprsEZf*7
zi9x=Tak&igFvyKjZhMf($iaV7WTbq8F7*9Qp-VNPU>2%F1Soo~W1c9p9`4{4HR)3t
z*fKpp?^&nmytRdnH)JrzN$)_u^e5q9+!HF%V9m{Qi^*x$-FMk`E0Cgz*M{$2yUz7Z
zd3<M^d?=ni6>aoMO^Q&$q{Z-9AP{{|(7|=Zt#fA-6;J<xWnG)CkIkmWeW()E)`h#t
z6Bp)g_V@GbtZlkb>$(t~H+-{i>Tcf^zn_aDR~yNJ{p2Qf-ig>E=zDXB&Ug^yvKk_S
zA}%6AWBuBA`hriWP8HorMVqbUwX#ouX(Ph{H7`z#npaH7fpx2aH5u1Bec~t7bojVs
zhmU)Loq%pO@jbk26?>(jz~#nINf0_)t4?D;rzK$15_+k4+Ku)wnk2p3ZFPbSpsm=T
zST8}5(VT~j56fSE)-9)%pp=Ct{56{J<<=BxwKQUb<P49%?TW#!VhEm}Okhhjl%dnT
z3Rn>wR`1@iV8+d(JJclN=a>QU8%Jcy#4kAA<S*WpR8gR^qD&jw$mV9hy?<f|%66_l
zr~PinOVG)x(~<1ya=!M;(HIZ$)l2>J%vL&X*|-li5{su51<8M^?Mu2W$vWLSq>8=w
zuisLwSw(cvTA{TXAy>yZrg!C6md7{S)SE>BSW}`-e8Dmy&t|df-;1ZacqT<NUsupz
z6eNR^@P^-RWYkizW|@E}T^pdog0YXupTd-pt`@$y)_K6y-e-&wxgr!!V$_yCcz7!I
z;Vm}Jxpj~nHav5XMor13;WfC0euMYeg!@em?yF0I8e}p`tpjDRuBk#b7+<jUA9-A2
zOP-awEQT~3Ze%{rqmOMf`ZgXKbiT>fDa;Og5+>hsUoN##dhEgb41nM0@}B^pfJq{K
zL>7Pu7!fdcZeVF+DU0<SpU6-o*Et|oD!7}99q53l`8R>c8Urs_Q_kN5j19vDmtd`D
zlN<?3jc!{UrI5(bh;CUZ1jG@n5sCD-aH&*=LvE3}=0x&Ui{sm-im218^a&DGXB0uA
zUSv0oLWz3Uvyv4xi5e>1ZjB{}4N>b&3<l$!PgpeF9UQ~1c>AGkmS{O+1IgzzFKW1I
z1`!9w*wcdg^)pW<R7deddeV@srPxYn{|G#+9nee@<JY6?@L&_TU3<hkr>b5GZX?Yn
zJw?IMJ0ITl8s#!O<L^YzGv#*UYU`INzVBXRfnVwJZ?FJgUg5r+_V0d4<g>e5I!JS*
z%4`|0o4!|ua#)A^*AXPgZ@+lb_GKk!Et#}EW<<)g!tifNqoP*2@~fqzdBGs=m{-?A
zYb6kak_Kk5Z7dM*qnh(<Z*HI^O=ZWsf1@hUH!DRi+ee*|D?e&Q_!eAec3_@p<xi^-
zl&4zxdA{kd!b=aj(|EvgkAZVqS!$O!Ul7*n9%-dnRAz6s3U{<Ub<iHPxLPejMC$|t
z%x0pjLmPF-Z~Y7L^q+WZ^Q~_TO{9kH*N6-AJ%wo}6S+;)KiPIsBH7rGi+OPuG}b?>
zO>57@oo@tn$D~H=kl+}N_<~jq3y-Txq)x6#;74>GOo>UU%5#4xG+f$5-dK#F*x_W9
zpqDOe%3K0NG{UoNT>c@+mkFYwXXugQBHQsT!Le)u^~-0LO(rf%M#RP(ICdbVD0C+s
z_ol(rSCQJ1zzR3v)k^ZT^*gpZx+X4pCDeo$^GZ|d#D2ByrmciPr&$3}Ej->8$V}AR
z^Z^&2BcUIU&}T;)$UBx(DMueJmJYCVeoHx00NPTHmYbkw*l?W|p3MB%>7hIBHc6PT
z%fBHBleHt`R>Z$1*FO`Vvj$$CJoeE9ilc=NO;+^V`$TJ=ZR}fr=;Tq49Gf0FLIs*t
zAo)t>Dz>vq)IS}c^Ee+X(mCf({Ae6&N>jBoj$L0=OXH~ZlS{2?SIN@M+7EptH%66Q
z^+}Z^Mm?P<HH)E2GE=Dm#S@=%1|KSHGv`G8P|U=2MoYiPLL2WgdJ8k^X>VXu3FuVZ
zekCf>YOr-<_3y{$>}XYS{FQTcHM`&{o}#bTtg>m3QBSg*Ww!*Z<m+OyPgSQ)-<f-e
z&v`?Inb(-}H~kn3*LqK!Nmzg^sEgd75j&}Xb#9gtv{i-8(h$|1^AoG0PmC)Z`>EW4
zwUk=_9YB;`o%yp)#!SUJerN1*p)UUhyD(T^odr96oc(rilP|CygZ&E2SFK~d$%Pg0
zedZ|bW1os`>l*#&u79)9^vOg9yz6h#0zVX86E!-ts8J-pB%{;e!<UY;;LS7c@`SrQ
z>Mjqv%OBij&*QD+Ztha$F5A1yHtsUST|ROj{L@|DahEsUWwY)5>!XdCFOYGb7pu_E
z-1y%1_qjpzEQ}$Ug;##x)o1BtI`~MFVRP&T^-}2n^)c5(Cg6T5$%oCUVP&({?R(id
z)8busgBJqAZMYQ5I7Pcm36hc1(Z*VNJ;#Oi(Zp&uMMyNU){TtewhmPRUpj9gH*_#Z
zG&R)+qjEtIg?255LMG?>F?=coM+m7J@T@r?u(>5mfko4W&#!Zek5Cr|G4nOlb&$jm
zQH$9~`v4&Q2UXz=UsHns=PS+cVx?*n2CbIs+b-_uP^m27?m#{Hs6~KNZF6R&X>atl
zZXV?(ENe3EDE$Z$CU}rf!W{k5U8BncuEl5ecJY~Z(II)eJ543+uHMef*Q-3~(^z4l
zk&W?<edg@1?2g%p@SDs-2&#M<X@+W;eKir&F=F(_<=GNM8lxQ!DxcaY><forzanNh
zo9CO+a1HzJ+L3>muDooWEAC>D=s$y?PQ+>mf3?>6r-2YCN(%D~8WoUCSB^Z<Z$x+T
zvw5z~G?$!r%XK!aI95i}zRcz(7h{7!==&GC^hrYsn!A^#dcwb)ydETYjLv#k2)5vg
zsteyGUs2}?xa1JJUnbDgu_fQwiyp|i{tcv*Kea8<B3@j5bY9NoXH;1D(U0)rKW5!<
zKW3(z)zZ1nBl4r%W<$WuZX4g^NYAMtqaw%c9Q?g89O9|RL=MwCFIrm>ePVO>bwOW8
zA2QEDYQzST8Sj6n%IdK3!#v0WYu~2v<~nvxSKfHMr@^}`vo!F$Zu<dNU7I6=eZM&}
zoHuPSG92DKI2lx3IE8dd$N<oWD(S9tiXan#<XP*Qj*e{^@3u&0=h|)JSFY1~pmgw|
zc(6pBNuTmzWK}y~WuN?YTg1}`yRSRf4vSyeXCE|^hIY|El)|S}wazz&nc_<iQNdLN
z^eW<4UZaB0YoXBD*}K~8SJrG0`W9Rd5v<aAEB^GUboqB0#S+qsmieJ!^OOf2!lAxD
zOAuB-+~&G{wb3~>QZ6qU+45PzJUa<2q6ZQ0_N$!GOyNK7al&lu(EW8r3hvl4SIInI
zvm2QAZyjs|M4TqZd3U@1)US@Gt6*=}?a%0YP66N8baW}lHf|*N!waxGo9+ea?|jJc
z_QTw;7OZXrtB+BPuR1qy{I_-hPo%#bCen>z<C<qU%7&zhm#Z2LNjFoFU=<}t#;+V>
zB^zI(R3d%CYrf>jMvj|^r>9s+CJZ+08o%-%K$S=z_e$fMXA|kKy&@m7vGbK(8+Ei~
zdc2i<f|AwoD;HVGlV56Fvnr83oqcvTQ1aF4#?Fr@Sz;w2>W01JS6*u+zxlVuHP0o|
z=l!j*?;}dSws&LazaZvc8B88N?zPG3bN1!IzVR!C*T(w4;t$$q=RDE4=K03HfAPud
z`!<$7g(G@w`o!V;YRE8WZxtE)WMb@!Mpjy}`3opWj9Q^ZNwDUPux2Cva`%O19=d#F
z47CK+6(X2#R}$6|$y?nz3ha(X2J)B7#Mto56uaMtffZ@j_6((@FkMA>-H6=O)&Y9I
zlnONf(>D<W8k?)mhz&G2R^6FZHW2VJW+|BMR4Qu#V!xf1uV6-6)j1GM!KjC(V9<;6
z|0x3?(~Lf>l}9CrI(&&b-CX5w8p502cjD0`@#wL#30wiX+n_S(%Ccj;K057x^YoFG
zG<|ecI;W59lg;U)Rp$++kM1GsZ7{Q->cW+~m_B0v!o$6~M}Av^^l`gNYz?1g8~IZa
zerKWU4f5?G#4>Ny>P=`}^TNK?Zt{g4O3Dc4g#9)Z!2_udxB6Y4uovt8o|=5pe1h(u
zygE<!*9yHrS1af`)LOdo=7h)f2T$bT+Fly2N6yXR+P>c$uD^ZmV7P9?6CMoLsxF*5
zGSdBqE>j<SF~sz`e+bU0*ZpPjEAPY;5sMo#)5opV#9z93tshO4A@PX6_7Tzk`!}1Y
zX>8VQ+n9E)-8p{c*{UIZ+#Bvoc1o~u$j<J|wEyx{h^^1&NOX~9qj=|fG}I`4PIzlh
zm8<8K+|(o6@%Xt7vbhPWnt0T2h<Drg9apPBhFyI1@rtYr$Gdj2*18<qbgo5n-i{z;
zyW83Knv_guFNx0UuwXBb#30e#C16no3Gb7b``d?kYXp|&i^6c2W3%vyd-7P}CA}-Q
zN^q^;oEqdUx3A@(6vi7|&cNMHWwHMoelrc9x+}7wNJQd}eAazNmE^R_Q)B)O*1h&^
z2QS<@iJ=F;Vm0Tw;AFb;wMNgk2QAO?t%@1bo}J7wZJn5Yb4+{x*@H3dykiGvT2&X`
zOZKI6SemSMKTC?1TWMJ1yj(r!{w05ZC-->)qn>d5p!K^ke*E5{+h_JRc5nmP_`M@`
z&YWQ?JMV#I48xu+)ScQU^A~0x4^NFAkzvdEjfcnY9XUL+j`;l%e7r;E&+gZ-Z8F#B
zS8C`snQ!ppu=u?PZ;{!XUwKqoSDsHL<`=CeJ=Rn2T;}Wk&s4bLPWR&{Tk#HGyh!)|
z=q*RoK-#iKWuPmDAfc($%6Q<3de&okL~VCOy>?EHsP^UNi2C}OgAw&llLsfNstaG)
zQAACBDf7CbLpi3c-Xk9!pP+A_|9h5cqdm7g-&U!!>B@bM^j+-yYqpENq_OVpvva+)
zPd3-fjb{wj%V!dU_fpk`A1UV%U;Azg7Liqxsa41ch1JaK)W}0J@7e-?_db5_u>CXl
z*aH_`g3qRK+Y`19(nuJeXanCecPVw3^$qs$19y4LU0!#W7u@A(cUkT(%iQH5cX_~F
z?sk{oxXUlzVrZ@P_{H%Mi(?OnhfLFqeSGfcj0C}Yi-*_^GhvE{EY8k{5fAy8;l>){
zV)RLBeA%pzTQ57~n{C75_a@4Qo;7P->o;4^4U&p6$l=$hUkb`%3@!Rq6*l`7xC9mC
z3PdpmL_y2XjMw4*4z-buF>Eq8lB&#HO9*Up4F;(#+&G>VEC%eCSkg3Enm(xEEk4fW
zRo1X~y%;FpsQX+rh8|7HeAWUfjFfe=oyMd4A8KUWrytDAF#4cIE}miWsN*rA$}_Ph
zrb?*!<3=iK2D_YmvVUhG0)OflkVfjI&dwswg4h%r0Kk~@^|8h)JBnUl6#d{gP(Z)S
z6H76V#n#$bDc2XQ6yG@q(IzjWF;w`xDNW6lfEm!Ecm)=$Rt+mfvUReaO(D+J$^o!M
zi7X*oFFqHfPG)xVfK|f~*!mZ=M*oq_mxY!T3z;@-(e|z@U#myy1Ma3+|8wT(THjqT
z#(|VGpsgAP%1oa0oGP+dmi#ebV7<*UHL^T&uHoJdFe96xIw4UzrvP;Ddy%q>yC2lk
zoT55<&wNF-gI>z-)>Uk2{)fM*4#&Td^#;VjU<W%ZH#}XLJj|=8mzHK#)Fe6RWPHVj
zU1|CWR2t*k2|9ODtNt+%IKRbfB;6_qqiX@+`YxPKT4(>m7S5u8{weCV(5`;vPX0&X
zf)K8|23qFHd+I{gU4Hxmt5@P(I<PKCca5H=>)6%7gsV8<B|f`Rx3k{5u|oCVKDtNO
zw7Yu5-l<1K)q1(=UtAeLdIsj^>zZ_gyv=??$Z*@AJIcYkUbs0yfEl!##QEU48G@8i
z6UgXD>}8M2!m|!>VI)f@PtO=V<v#7+Hm>)B;MdBRBeQHvF+byVYG{y~GsPM_5wydu
zXc$;L-75b^{H>r<i3;$eN<YF%4;8Fr8bEvwRNq@INZ>B2VbVaKNC$Ctlb#a{?7l`n
zW_?^zGQT8#b-S^5)N@pneSkNkD=O<MT@{1ms(%r8>M`quri%993qshJ^aXtVR7_+F
z(t;o!zjSdqpY?>FJHlBjBhIXcMJt=(Fv>88qDcX%$zHp%oXf66?6~%XZy!F$*X+2(
z%lMoxoBrq;-R?h~W>@8ng3|^TunZSETcjlelJhS)NBKF1r23EJb7J;2uM+fJPaD%i
zkzVx=r6@untr`JtUByfuJtXD7SA1j5;eT6m#kg<DTp`CU9sBZu(bzH~wy6o?N6NgR
zAq@m~{q+VWv`tOSkop=}x$lb<s;wdE37?%b2ue0VH1O*18Bya$gM1v;)tl-c_c}tz
z`2>;bHw#dt|BsRsbiM_{P6Zz*fBwYocy)|p4A`}d0wv)BRtYJwpjzyTW&({$VjnJ)
zqXv&AipOb}uTeBeGIByOq3vVUA5DON%eS^m<u<zT27Fm;RiVxcaD7FJ8mG{x>abu*
z?B<^yQi3KZNtGWn6YaH(4T{sTufHasVl#Lr1=U1$ax)WY6VB6vbnFmbhmVt9+5d7E
zA6B{#_tXB|$?_wu%rwlygh~2IXIHDUtHT{h<_}Wm7gSk(<I6r@BVAr@#f{R4MEDK-
z-2Nxy_wIbwtPLk|xT!2{e8DMObZq!C>qNQ9OfZp*opd6yl`8*=E>1<5u8uW+n1@;d
zQh;s>MDix(076YmRO?50tQ`G(^u)V0Ijs(kpJA9e*LCo$p9l%o!PE6K*TFBMxvhgs
zVu$l4W@ugWoh({!c*D>-MqlNlb%fOzYv*;?K1^t3w0gx$S;YKfzM9D*=5V~@{vU>a
zd<B-fNqRr}SHy4AG(;}gPmUAkw{LGKIk<E>27M}G-pNj}ZCiyus}mD1j(u=RLrH0P
zCddtI&-i#_xM~&2(&^aqmT!%4i$}E)bh!Jsomj)3#$@H+y#5dnwXO9v-u=34OEPvM
z5BWSbO19U3j_oN4U%jB{^TX`(zg#9%#k;R}pC8~p|GKR(@t>n=O2S)<KOb(Nr~T)L
zyU(}eVR$Lyw;;vGFh(6%-Fj9vune<%ShTX^C6NRXGmdcbcY#yN)xnYyW07?1$qs!*
zE%dg|Q6gP=(!fu@llQ5%bEWe)4)*EPm-AbtU`g08@YAmk_UZV6pT-7$y8B?C_Pm(i
zs`d4e^K*UG-m3uo<`skVb=nL0pOy;X@8x}Jt07q*JJ_e=2Yz~D_S5@HnvYa2GuVY1
zvGcMO*cv2Rk#zZc&#P^*StPXK@VpA<FRVSn2#y2Bj@g`I81Mc(5K5MzRqXNE#)RKH
zA&&`d1D0=0bxdf^3N|J7JYxyYUG;T5Wl)tb*8l@|Woq8%yQ%-X6@Pw#eO~52ztVmF
zO&*4??dF*f_Q65%GgZz=s$c9u<mas1jIPa@-LWciLiq~+vwZgc60zG5QPa}N*!etI
z96PkNp=67kG^2J;;(1tG=Jd#f7q5}>SQ_re19u2`dcp?(Y+F6sRa!JX;g{W%6VAea
zZpG7OW{D^CQ8Ii@5AMRaQEa{*JgEoYbPv9*2M_7N_B;q{UO+2d%z7G>Qh`32emuIU
zTG|o|qd%#Wal=-%9i~P#bJM!FtwkiYZr(4PDmKbsQ>_1@COV7p1!u8@<94)TSMGoQ
zqmBJH26&A%LH$8(cL&Km`tOL;VNv_1(SD8EuU7ljY8JHS3w8LlrEAOvSi`lpdMc|c
zV7>|&k#NDTPG(>k8#}44PHh<dc>%M@^R42uyTuZNz<}Ar$kRK<ewdZiWh_Vgxb=(U
zmUS&_-G?<nKywNUsGe#2Y<xij%hisms$0rZc~%%U2qUg_((>Qo|KFW*v+1^0jA(L$
z&P*~tLfut6{kMgk&q1VbK=&-F>_;KJzC0MLhOew}3MWhqmV`guWfM5riI)0*>6<C6
z|FD7eBd?PAEM>CwKeXN*{Zv)h>F|CGRR3*JFAD4b^!)blk3W&$`bHSP9i{d@9lvGQ
z%M|duSl#m+%!fJ%-~4kP&(#or$7hpU2O`2pi{DXK^zM%0chncXyRPtEXJ13s=7pDJ
z-_b<ANL}zOOtFdeG8VtMN?LUQ|5Alk5yPYwI=GnM2eFnr-le=5@o>Crl&NFZwxv$s
z|HTw-ho4u(yIzKOT#@CH4O_W*LJdWb&h~06(vvM>8Z~t^?VSK4PvhEN8`MA6+Gv7u
zXplNO;1wd#%(bBbfoZK6S0p7_6q!K@&s*!+s(&T2^S|!x3^-8cCY)?<z3k8&{p-Je
z+_L^_g5-DzWaTu*88fh4=4gbAV{x?8UQy{aYw{%0)tXt4vZeF~(z(flsax44400;M
zWrLLdABu&&E1}lc_!Tif*Fye316sioQ{g!D9awexmNOGXcl7PSS;{qdp3AzJ-`d4V
zM3p=qn9lrWdDZBf8nj*QqVSIGO(N=mqkpzEaGf;pPo;r>G?=`{XBz<v{Lu)eHo>GJ
zV(TfJhUw$%><KUdSbn$)#bG(TCo*CM*eMDmO%n#&bCxmuSA{`5`)M%uO*48kXcVAl
z0d(fl0qU?2pZ_)dKh92E{)g~SaPTkw+kXiEwUV)-_^<IqZrkH#(cmmc1I9*CPEF;O
z?~f^QTp6ikp&1J(?nuWP*XXr$8?W6u%a$jd`vQk2uv5H*G6^UH2l;iD=f{m6A3jBY
zj`Q^3xT}N63ox<SBXdq6O$zzDxlk7=kcxNSzmJ2AwfjyZm98{}OWS4PcY393<#NGq
zRZ0XQ3uXqZIs{_Yl!j*jQUA3?@)VzK(ZT|mLTPO6Bt*NLQrFC8+s#F7pQtKN)h+?!
zX%6vVnJ&nfREKq6**3~hXDf5zQiNS2-se8>>WKAmx4G5xS$Wf~Efx0S*ZaSc|NjO*
z>@FaUosXYKHM>)UpVEQ&nMB)z;OD1~zw&er_+fJa@d#(yvtdZ*+R~ZR^Z?W-M!l0F
zZXo4ylGQl~>gl#gLPWJgi}^4!K+B)s&!VMu4^fUU<P;f(oo6&Gz97IeI;E=anbxa6
z0dupT1alLGx&NA<J|(_J(4z1q*y%O=7cH0VTwgkq-hc;8*$ZuZ#TPV}#TQ&y)=>9B
z+s@o<&CS-jDd&crfiK*qq3(s&Khwji60PB{D$PFw?7!~M*Zwe2KFS86{}Y4K|C8mT
z?7x$b2Ulkq;S=R!{)&O}fu_3eEvKp6U{bzo9s)rqTO;HQYVmy`ep}H$Xuzo&!0C_i
zd20Lk{jZc<^f@x`%Glg@?ZzugT0hUk#p)n_*G}<y53#4jDypq9Q6_DUJz#WOBJJaD
z0di8c4}Yd(&(yh~R#|xLcndTxT~5C)c5+_;Pki>!LHskDKrxu&S85j^?W5ND2)gPa
zz<WsG#k+oM&!rF_U@H}F*sEjIlX(#T!PI5{?xv;K$QgCTC~dowoQAIm2y}Ir-l$~@
zHGW#kT=(*}$NR@dpA554R-G7qa-W(hQOK=ysW4|>+LJ2+zFZ1Y>I_G2bfa6tk-G&)
z)w^YJ^ydR39DQzo!_lqm50-hc&^HoQ3-C4l{K4tx(ZZI@=~LDgQtsto)~oBl5K~;G
ziY3;>=M@qzwQClrhAdFu-_L-G3n*<#l;f`gc;d4Yj(&CGDO%@`Ms9&T=)Zs()0<s1
zd|cVWEx3OGRF`P6lt(yDV~t!Mc+vvpDAN8RIte9JAHV<2l8a^p-Amd|*XoU}mjs<l
zp#Ks_{{>XWNhxfuB%0SZ#OE#1=1mVz?q1r8FUr!Y{f`&jOl_+X>;~*kOIoy6-Ty<V
z!`@PGFhgdxZ%?F$9@N;qy7kMGIq1(0=<A=aB8DqhB-fW=wiQ7@XZXk5kYD`;WSPA|
z7L@+tE?J~*`^AXT6UPauysgT;eg1&x?H=|vy!o%7{DvGK6yf_LT7(Cxg>M&=5WZ`L
z?;q$DovX>iw_tRr7S2nA+g@-BR^wgTv^<N?+1#-IRIp}wFlucg9jpzyUu<QkM)vw!
zyE+lSYwL+9g2T}Sf8<5mE{(HZ7E@{4EiqM{XDS!yuzW_N!7ayWx&zz6mQY#93a|&x
zJodn&_i$rtKbytg^W!7@45>AioIzU5CeM4D-d-#pFjN-`1kwLM6N_$lowh@z9IA;-
z?8^=UyE7AUM7sh><wxpbJ|W&!ZJvHh#m2i52XN_s&gRMFI%YLs_}Zhu_3Z*tF`+4-
z-}EyJX(uphJbc56M0xlWK~e1jJK@hyGhK}m6I?)u0Tu&v5?AuT7`X09_*H=E?;fQ6
znVW1MW-luZclAIpd*hH)lZT{Hml%?E*98!O!=~UPI6!0Em8js7MN&Roe|iKYX*zrp
z`egbMp8(%GdGOhEfa`D$UAtf&``-w^LPPzxs+B_gZ@&K};jRP$MTEioKi&0TmreBF
zm8jq{c>kCESN$&u-^qh-@cxsWt^U){ApMWee%$Gg2I-GF>1+PPrhK!39uZYc#||G8
zO>ytfvTxzFiNHjKv0~|3ZHFDXgPPYnm!VhN1jm%=*sNnDtE$GBL&2b9I$ey-xECdF
zIR=*Tp_V)S!Ow8I{B1rB%S$xb88QE#tVPq;(jP&P)OH;@sjgZ4?`jCoSqfH1c&;j>
z_ayiU;HTok($_N8T%{Q?qS1!FGGM4+dYXg0Pw>4XoDGhoO7($Whh;R-{|m>nh4ll$
zAoVln*;`mYJ==eyu$Qg#?j_XuyJG%qqdu@P6>I=+wctg5tiBz5&jVHBT?#O!B3NG`
zdxh_TQA=E`4c*GZM=-p;<7i@`8ax_Zqk6)<048&hVX&}&3E-&}JW)Kx8lzRl%w-pW
zrKp(-`sczg0Ig6*K{L_#Z!vxTaZdIJ%I9X=yQHAKMc7DnYcuUNeNubz*?$nFH;Hqd
zTz&Lz%ASFMKmECQSrN1)N0yD^yHxD)Z)onOO($1>_KZC#rjx6`G{KoHu&h{3j#}y1
zho^IL^-=GF1=gY#(C+#*PPU3@XIcDo5~kf0?auo%wA(YQQ~zW7z52=cETO6YGy2)C
zx|^q8&%>Y4UVQeOj(+f)#v;fJnnpZ9Na!35-P;Zlht_yAf7&$D;4QioXmCG_NyR3+
z631{M`-_C^Ha0Ab{qnDtsBoJugM627fn81EnaobZ3x~Wt#+b+Ch0Tyk!nq_-IuK!i
z@Q)<nh0DIgpS#@$|Jotz`n><S$n`1P%UqvXi=gyJIoHqxsgT~^gqItH3$NS31#IXz
zt;w{6+HTe_LsW}?xe2_Cpo{i*MCss2N{FYZ#58fS*R~rTf+)$X5dWXGFKrUqunq_}
z)Bbn<e`;UaCES-k!q8^g-_W<|{>Nv(?8ZZ2ILenX=7@5KEzB!&Xt5;N#Uk0RR0_#|
z>pG{<;AH>^hsU((n=4DiYbh*!MI6I*`8L5qq+S26P(2VR0d1lh8}zH)sb7B8k>yyl
z4R^e29|6fevHqavg6)Hq`evC@ZXaP%8|L*fr?-V$l7Po6>z%}2c3Kv(@sawW9Ejg|
z>={>85Q(kQgLL`Ik#Z_174EyE^5)tu5sq7MEJ(HMZQB<KdwZ%$<_o%zN@igh(zG;_
z(i5)SO)`_s=}9_%hCMMtL5k!wHNy@21Aee>V;;hL!XFiU+7qS=?gut?e!+X@H*B#A
zgU1FTj144KA%EeTKOu=*m?RePe>UC<Z23040ZlTrZHjtbmnxZX);UwpY-82{GB0k}
zmu>TG#N4_cBZ0JbQyj(!R+hWLLYw*8-(=W)ALjuqZummv5jEvm8r95{X_LU*T)Z_t
zdyY^y(8lK=34d)sRF3SG3bcU-aZG`j+GZmw<HP^}TP?;Y6Ol1hniyVkScO=WpbfZS
zI6m*oE{tN_4U_5<z6%7kcMpE@N5DOmkFv^zA4T}JBW?zTH;FpE<?ZYk$_-!Y@`f+x
zo@*@jHC=!cf)+Fn6E?dNja-!atIm3QgfUMF<cW6nvMmj=ysr)u$o)dss@4&MR&59}
z+@uc!9n^3=ySY0gfVZmtW#O%Vp!4yf&JXPWLj&mLjgO(!L6;$qUUgSEn&9i&Too^Q
zmXpfEc8a9(#^ENFhw7s`u~g*pYfxAcW@fmNfYs;eM`wbb@X(P?FdYGV!Y>ru=TOlT
zRu;So7d%LBN2#|(^qnbZwQ#--S92P@cFC#Qq7NvM1CUtFCJ(wp3CKHA7L9Gz;R?9U
z5>}83`g&E=*<bJAQg@%15~O5{zU%s}ziT2WzwcFIWuv?)P?X&pUfIFi))LC@D|uh+
zqxg%Rh|TL3ogPzC(r|f90Ylh~NBxX8%;mPRPZJ`;v^Q+i?59mtDN1IF!eCY5N{(Dr
zc@wHyl_S@LP1he47TkGvsl$M9m-q|S<gzb{cmG7aB#XXt?Y8mmxpo67kzyiVP0UrG
zXE(NfJHFr;*S93dd(xJPWR(m0yQ>+3kkQW`5iyPKh@D!RzS$F}WqZQJ&W_}$H1hBS
zG${Mp=V5)6LHQwPOU7b{a_P6(6OO}UJ^oUZXaCRr^+*1Cz4k4$SLjs^(Gu!1kI4&-
zC@$2sD^IzD9`%GPb}DE(D&+;By(hf0pg>PJzu-QvT5%Cp##MV+L8<Vw_rscJWm6Q3
z`15whpVOq@r^w%&qWtL_flvRu>6x#eB%a^NRdl2=5Pp$gMUuy@w#SSsP{6HsR7TwT
zuejsZw>`JD7xQOJkc2;v@Cqr9KW(o%t6LLK6w=DW4nYJ~fq@+#>;~6Ex#Y66#(hFl
zH8&;UxZ52YqN9BnwN@MfKk4WtIJH^q1#7}Oav9=X@2Qg1g|Oy?)>YN8=9+l7MI4wa
z>iihiv^_}psHJO5r9rn(X7^w_(NWD$l(N>4HAs$Uyli{bcr7MBA>Q@*eE#eu6_|8q
zp<WWwq?`Hvrdc<)=?3O8DnRXp-1mfY@jzsArog}2y_nOXJpbMW|IR+c`1cYn{Xfw<
zBJt;Y{ol?0%*+6W+}#BQcP)1JzRsHDe2nB;H$yx)e~AAaWNxd{p78z8<U`gIzEW_%
z2{s$p!Cx1A7AEe6oe#{ibFsetmeLRl&r1VdafbeRem35KT&O4b_*ZWgnU{EX#)lXv
zP{7CU?hx_u0p*U5?}$nk^D*>;kKcLM)t$%3$MFSovO_o?OMEzmjfVH>LK*I7HTgYV
z*-wc@0%+U#)pj;US|F27!+uMbTDiMNckm?8eoj;L066Q&<UlZ3h%pvAuZgyj7`0fO
zIZYey+bp-XYLbj7i9h_~&j-=WoMdvHiKoPZV>03I_MrZQc-KjKD#iUpdwp41A{{$*
zWwq@w+HJY<gyK6lA{TCb8sUPjtrRbxGMRnQCZmU^N*Nz&mQ4dcEvhl8O~v;4mU%O~
z=mIMliC}h#Lr?h25ssCbVe%GRec@z%o-gNi3h4>2C@N<uGpCLYki>~z5)U37?&ST6
zEK#(Uic+qlL`0hCSJ%_k?CS^U8gRh<;IJWchy-Fl(UYU1c3h4^Dr|wym*)QD-8$FX
zRX-;C&ENC!fS9|UM?Lxtu8hRn_nfxtGUwSB&t~363QXYp-;*>&Og<2OQwl2S37ZS<
zH~;NE1!cp(Ze>IF#lJ@iXA!(EmOt}X3fETvn);-FUjCepvuqUPZ|{tg5!AL6xdvW8
zH~z8$1@iapcqD)KZ0+Rlyr^Wc`~@a|7kJsuk~-d99(`d63`yA$qp}$h^AF5|*eQEB
zFIn@U6?`4^K~hws^{9>oXE3yF{-u+m231ujSA)ZR$gN24a>!HF2<ekbuqBYPe%rQs
z>Gq(DWMNy_;~W_dYd*rWCnJl?aQek=IheZ=;ybF{N3@ENDLNY_5tI1<))RJY@0g_t
zF=4HU#9sPTALL;k`WKelY@PcQl<f&e7Tj+hp4Aok@PyZpzMT0>PIWUH7%(3Cfs|R1
z{x0&D<%tOQx<;JjH2F)f58$NjO<S6(FW{tI$|FuX4~~|n{j}!`6mp@*>@@k^`CMw|
zyL)Q%MZ`&Ad@G;_?X_YAn8c^Y!P%M;R;*RJ7!JYs%eV0RCZ(F;l>>HoQoQm)yn7LE
z8f_8hwyn*SZQX%<N-~ySXxrL7KD+fQbN=887acH{EOLMfm1iQ$9pA$B%2OqHO%1XH
zsJ&Cs(?bN_ltk)S`7f=9#1|atIdbIau$>K`)Gd=x^}THv@P6xw>Jkgz8B6OdB0AlW
z`4&JWl70Od%2|pJMGsWb1H{Bw9e6VD2ushHPM91)b0FWbT>;4Qkn{T-ae|oKNy1z&
z3DXNc><P~*xF3MLTt&qq_4$Gi!^eIL3peJoaFIW4CbBSQ3Di@ds1renB$z}yq4_Fa
z$-}GDeD71x7jXPqr3dNqGq;KO^?{*|Ul(ReX8qxWyhg9ba2dTGYjK0HpD_uqn)7)R
zN}tqvoYz&?E*Jkj*)}oKRdq&Kwxz1-VsGfnAUvl@#TOiw^Jz~DT?g`1mC^;Zidu`7
zfdyj2oIT;|!yF}D(6uLgs^DG(F&yQ8^1Ff};R(M1^;cv1Ol@TU6yaa8QyBj-2D8YB
zBu{9+>7^pHw@nvfcv*n*_sb%b2SbGNHq^U$S#J7JHwcj8T4i@T)Oz{g8T5r1J>fgs
zx^71Sg%=9$Rfv)dq<g}L3*Llh-cE0;!DT`JY(BZBFcwFGiq}`2y;at~dVipsrwWZ&
z*8o2|LAE8;4?3UvMW=tE-PF-78V|PQy9Zua%|)U65Epcw`*IOF<J}K?&1lqDh^EYO
z@f}-5DE()t<6@l-DNG_28r9jjY~JV&inAkhxqoAt>V0{hS95M87T5v}@=oO>H<ZNF
zwf0!H+*F~)T(DFH)mZ7O@Ts2+?&yXpA+O3iy3KN)q4n10=l1EX9Nyclm|_$Y&iiXM
zVzPu1E<VvZ&PrJFY~;=kaO2*<T@m_Qu*^E88;vVJ0^Lj3vjmKSbM4-aWyPwM<V1af
z83_O({0ktMTiV}Q@Zxb^WR}Q1Oix&(-%7F8@@<!i!spG_+000u-!If<7E{_v9Ll4f
za6%!Vn{_L<FDM)S?tfs}-{kAYLG1fbH$KbfuT*8nuUstF_(_B-D=903EZKl8h6P-(
zFM%+CUB&6LBgwkp)_B)N;@Q*@8jU>ms751L^RL)54qsZkCrjUr$tp(`G!yMfQ6>Sb
zlkJN5PhKAsf;cR3R%3(&*eriHYKeC*H<lVY+U1x0c#31I9HlN&b<HOJ9F@G_f1)Te
zlH#_(pnL70ItuG|sJ?Wp?BOwx)cI<XIGHnLMv6gT73bmUhN@ZbZf~;e#AB22b`@w)
zfe!y^pqs0>$&*|eyZQD$TfyKk{p_~`VPZo%;PiW7uzx}kB=9uQ&JdJnhT5}*9X;x1
zJ4BD=1`!h6QYiBqv1<2+t-FYPMz`-9V4~Y+;$4A%4foq?>1n+xCv@UpeI|N^uF$LP
zI80Knq8`af?l74BNHZPlylY^$@Y^=mt?m!|uLn*`DbQ6bOW?MaWr*0J{1(mIi<{ak
z%EPW-AT2Ly1XcL2K;Oq_uM%Jd=lytl*5YXmnwLET1fbW<k8>lwtIr%W6xg&~?TmL^
zgs}Cab+T!;5(SdvY#J;h^~uLj(kk^6tW{yt4;{B7fe9o7ZQY_GQ+mQJV@|&j79;tv
zC;Sj6Mf%R&=a+o0;7vI5=b%B`%tlx!>VF{7Ey!nJ{q%Rglv_VtO^Y>JKYjWJrpj19
zJ(ZWG;Xn6e>2&qO{5kI-Cb-TzkYCsQ*j7?+b<m#B8gZ1OsRmKu%5g=jP<K2|t5EwU
zxRtDT3Yp3BZFq>J-e8M={pUOA^P7r4U)rS4ue8tG&fwEO@qkaCZOm(V4}JQL;!l5L
zpC0Kxt>V*Ld9XNkL%m;M>bi@1pQ|caQu-J2EBiUse8SiKg9r5BS{|I@AN-03wlPdt
zaVx)|VHVjSy$IhwP+trES2!WiDCAf}TErJ+;bEp#J=>uG{a^>?@LMdS1dKz>70h1?
z<eWg_>QA3UCsO50b%7eqG#<Iha8~3!ijmwW;W0m>2aS2`@?XHeyO!qD9q+aMC-Cp+
z;4k~s@L&DYO~X%?*`02)<qKsbXT9Z2&FyaE%(TBUJ-kvh(t_3FFk6jS!Y4EyEC2lb
zF(vmy6WAge#aI|wh9}zS4UP{Vk$$A#HL?x8R+qPZIAOL^g&!2wX7{{FAMn(z${HH)
zgobapVR#YldR8<GY8rvhYuK$82AI~*euLgTq%Q%*3@(H8X{AAOiPGPb>-8iE*ncp+
zjZ8K6c8cI}vgX+a2J-v(u`(rf3_Y%#@H3^X_{ey)Hi~fnjRumIt5C0*pb8Z9XKxw9
zcBKlXz+JY*g!C01C+jpk?8gpvkZ2Ajc;Yz~_}U`}p(3)ODu+n=@wM>_NWkc7dv096
z4ufF?)c{BMGZrfQ)XUZ#h3{s4-=gZ(Nq6c3PueZw^?QA5@6*RIU8%W<`e(2BswihD
z>3eyo0#GvLkO4n*Mp;?vfZb3F-5<8ukwiWAs<o`lCiV&PuFPB}N-K8h{EBcsS(NCE
z{^!v}Lx1Mdz*MV4x-Ee+PA~@uaSjhX)1jzFpw$X2W{?FR9m!0Q;fvsdbfI;@f_8qR
zWa~6<)*5JY-FC=)(P8&pZWq~<XY5%IFXu5EM=fhRR}(nBD#X#j4T5l?|H9gU0;}yl
zItc1!e+JaugV)ISFIi<DUjF+awad9jOX(bN9+&=KM=kZ=6uysn$edqnk#qVnJ!y34
z<ntTS9BkWUK(JktuE?id>E3+ZOFkPLMBA>J5@&xOxg&7FZ7Rm#;(I6Y{{Ay`w`37G
zg+w>Im+9Ca-`*8^dt*ZhZX|ZU{8k=as-4t=GS%3BNn$M1H6I7=Oo+s&#}lQ9+`*$K
z>->voO{-WGR+h?!=iy%B0^v1ZlzBJdmm3L@n;a*Czz(&Yy1Y6VGDE&5KO*TKOYJLz
z<OcHuR9lPW^D33s3B%9oN7SLbiV~?KsyJX{=AP7A!OF8l>X_<8>MK=thR27fghtN4
zm|Y7xGNBa2k|V0A2^g~YWm!P#D`*xJ&E+t?WFOBHX*C_j<jXhx1SPN<_oAFc?haLx
z{4(JTQiF`4Qo8BAd@o7q6l3n}bfU*<6#UH`<C)$OuQxvTM+TI*9uwK1IZ5j}biUKt
zakF8rW<;Tvhu$$<YF~P`VPh$7iP@Gv8HhbAAGS-hf!xiTu1(mss%Ucgpj84~=5)cG
zj{SBNIe5$>bw8t$5UXA2n#P-XxA?Ts)OYgILdm|ylUX?4IYPF=B3(ZH_i~^)a?=d-
zu@$NE8z>N@zgmUtS{e|w9$7`D8+W9+Vw6aENQ;_Gb2CLZy#`O0@5zIM_e5vZkZ6iR
z!`%*_Ae)k@$^IK?=+)niDGB>{kU7f)2nkr;->nm6?m(a^aL@5N>kVi5_RG}0JSIw2
zKC{1|zZBxZLm1NwgXGB#d^7Q_eBrAAVOSB{*DT!gGznm~mLR3C<rA9$bq3*B`0+H5
za~aix818n={F8iln@e3D4ma?ZW?r#JE5jk&_b0=t@5qe}&-?*>>EKmP|FHgl`l*Gn
zEg_;#-BRNXX1>A=e|Ao~f1V9ey;|p<BQa*iCSiVI07N{Su(bLnK)5>c#ND;9{V&me
zwPHh1mp|b#UvibA>=b-a#F08{OrMCeu&pZFsqI3pRqb~c)EA#^TLgB#H7zgyK*S{)
z1TLG9*T$+K$uSU?nZ;uoYT|!0y&%~RM}r#^db7cbZbnW4aDZ|_l#Xq6gE+Rp4@k$(
z^bg7H0!io?inIzTI1pjw4Nk*03tKJn06MII7jJsyCfvgZZ-h{L!E_#N1^t^&&TjEp
ztuRVJzZ$C9`Do)$s%cangN9r{%=+W6upnD0zK%?ww3@XmZWDz-*z`lHRCGRu3YYc2
z9PSSw{j-Yw;qM9RqV?wHiV$r}HG#o={L)#_*}#9<3Aos(31D)PBfO?#`+Pqin+|c(
zt*GGI@U3|cadn<0%^#4E19|`>G%X5~H-NGeJ<2{6zJQYfYP$0A`2+BE`$_*HzJ>rr
zF}|iVeVxzWk}vut`4Vf1N}<xC%&#M}gHC4I`}g0czPk$X|7q&`;U?-k-PNa-8PoT+
zHWMJ7wQl9FlJ~al2r9aEkS2d9-aStghF}$~m(5!DzvtcD-!`1rhr8FDd~B}{pS5n-
ztM~p(ugcH0SAA`Ji$WEx(Aef0MPq(dV}mBb8{!K+hbgNUDe<d>y*W~c(c_~)L_%*=
zm>?o=Zs85`dK9?Ieq(PkXXhki5PcG#eJ!7Zb3RmT8l6HlhH8iNI#pN}uJJ<__&^S-
z&4juM*5~hqBbc-p=_W0<XdAu|e3le$QG+?{J`$^1zoK<0sTZ#VNtBf;W(eA<7yPaW
zul?>Clf0__zVMBCu&6@1h4jp>H~Iv4kM!_@M`23SeQ9-6x+}fQSPyf1klLO};qt*@
zhU6#M2lVa;SF+SCUf#;O*#9`)`r{Gm)^h9CpNvsW?WJPB(F^O=1IegcKW4>yFaI9|
zp#Gl%$ovJ>B{;t8uA{SquQ$33+CXku2x!Bf*s#~VAwB(Kw-l;O%|JDqWdNgQh}exL
zT|V(ge)l{>b-H}}nOX}V0;bFFd0(LrkQ4Sl?CPmjJ%I$uO_q>94p=(huD~D_=!^L5
zA2|ML5{!Xhqy~#uiGNIUE7-N<PtHs=8;U5<qQ(GL{vN-elg(y$L1_0~ij+P|ARLXJ
zQ>j|lQ>3aPJ1)e3G2b6g%*F&cRrlj->BFYu71N9CsTzQ_a8oMdt~ui%P%H-)K=T#O
zVbon@Pd8oPJ+V)$@BM2A)~EGm05m{0!vh%I3R*9bW-!d&11X5{lyuRm@J7`<=z6nb
ziuj8f5qT&3R*lgpFdBu&5fIO|S*>S~U0crNcxGR<baOt#6!6P*t;Z_v4_T$1y`WeO
zk&gXkM=>oFIQ>Y+m%fKIWXh;Pt@(cS_R!iU*MFt6@tiSkylCEe(hqmj{)!W+9S)`8
z31J5fHex(LBSvNcI^b^o^CJe0EEK&Llj(Y!zdBFa?EnQ2cJNp}wTe?E9UwtB)eOc8
zvx_t=oA1grWPNbFb>n3XTrW1B58ymWQmO&W;hUjB_T*FxLOIc>WIP_ZA{OZr7?PRy
zMtNY?Nfc=dMZ+49Y1r~0$++y&k%G$yHfT@X(16Rjp^D9|tAFzHo8*u+kw38JrCsUK
zc$Bs|b!Mt;l&7t#e_$IL$m^tS#8X};J+<1vf~%c+GDo6I)b2{PXH4eLg|=D&AhZ{9
z8M#^QZ$MuZXV7pt9pM*`C%ob-POqSJ#P&2z`wEf>dmF6+(<}0S(y_ZHdDU5Cn?=rm
z-<BL%h9EJ-I%zLA#FC{&J@ygHvmsUl;jvYz@^O@5lvTlCf(0jqXQxi#?9}R1`F5^I
z4Mo^l%Gy4%Mx0b8t7vt{j@ky#0f)9iY{wLi_FxTCo*knoO#V=7T6i`|ml|r_W2b<+
zA(+FX<zw>74lkvTWdI)5DMzzG*iOo~RW$79e&gE;wJcyfOB)bHjfYqHR9S={Lk(8#
zs~ZJAgq?3!&!%2{s4a86rNcQX5dI&~$j<<f2^hVPda1cQ&{B=KwIOa!_A)39#)#$P
zww6oP*Y*{WB}OaQ*D;XgiMB7&vv+$$65CHai%i&Svsh%W6TS*-7N93czeKO4V~?Iu
zO+8N8T+!uzSA^XYZ6Br!=7PEV81`jVSfT#XetL+bnPUB+FJ529e)xS&HI~oSB`YRj
znq2}^%CuOu+HKHV7*?NmY7?>bDWJPCYB1McdeZ2%F5b1D)X}WBOrM~?Iz#~UmtDc3
z(--(SFQP9PKG4V+$-d5)uHZ+@n!YP29`E`#?>g6B5$`&UAO7L>Y{lZ_#NND1!GbqW
z@IY7#@4YlT%#{0(9g0-m{R0t2qZJL!%dC9lfrjtRaYGSgGBLUaHfrfye?@CMKh9Y5
zkU@3*BJ%uCXSbNG;@1L88wiR*=h4{ScXQUm>iwc@(^(8d(If8^5NcLYW?L0Gy`bs-
z+t8Ww)h<a5>0n7OqOmcvJAas&AI>GdV1+>2eHKzuQqs0P%y_}gV@eiEH`vq-GxWWg
zFHy2DQ%2LL@`1XI)RQoHQ~M^cv)di{*eNf>&XcqAu_GyCM7ur~?|u^JHQx1WmG<#S
z#qs`Nv1G5!+Eudk@?Z&bYfi|*N#iIFqoF&cqazYgZM!27zoz-|c;z+MIKUjn+~g}H
z5)x}c=r`s#gu0PA%AzEUd4x8p`XKWKprOK3IUlJkGXogVy4-9i%N)xMSp6Bw09@(B
z`6MRi7qx>zm#!RhTRw`08H%F8O?YQ_K8iB;OTnaLC3E$O&p1Q1&gUa(3+d1fT|KXa
zKe-BFCebD*%m`UdzHC3ovt?oji+_}{#W-XbuJ;mwNe3cD8tMxHNVAlp0+@dRJ#0<h
zeJxkm?_dBxIAcG5c(nWO!L#$+^cH>GuEB({YZC38K5_KHISJC&VdGhjpPbyNDfA^-
zxwBL?T!)YHL~FSXLae?yj2F|f>kjeO?Wk;vG}aI#%eWkz49ZgF)2bVQtz8C;u&;UN
zO8V&<-9gQHK8}<V%&7GYF4)%+zJ8~hx`6Gy+lRLwd-1zIX!*CZ)Jtzs@wTw2Lud>w
z|7~RH+N3CE0n0##ji<`r*iDdF!19aY+9nHF=6PIHe%KIaC!N}R(1-VPkgd%HBb&m*
z4Zg?wAK=41Xf7PjgZ^|8k|wg8&W}#Q-w$<IZZ`6ciG92=bFgGA9|)|SYdx}d+1B$*
zrDIQTn+Gaq)4s%JR-n}sa~7B3_Os!~8AS;?Mf`Z3<HtN3V{{RQKvSIpM8=ofsvLA|
zp}*^1sHQo1wCT(|Dty+cFmqR<0()`Aer+2RYDa<aBf)1_Ckvz}T>6^ZN}|RL5(PRa
z8op1iW&esG9oQPg>L7_6U(O;`0m2=s1|?%EKONgMv!~Tq7T&x{c@6RIQ;-J(nXn1W
zJ7;&@r^_dg22*f!gEltp9%6;e9B$2)=RoYYKQ;>*PV089nNHI%zV++M#IiyB8NZ~{
z49!Uc(;$9G>&{uuq(>jJM^(<m5@r~4Ami~=`JTE&989^#3d%*O?g<wZJO?A!KTmVQ
z@mr@4!0}GIWO4j0+iqVt?%Gg@<1>nDJdmQ{)xQyrExeQ2Anr@WI=^U;w(5eZK{DXj
zo^W)*_dVf=f_obL;5iTBQTY(!>LZJnjLbrK{=X!Pg7B5~g%CdUN&(IgK#GQMDN}Jp
zcv2_4+XU|x@ay!(LB@0JcVbp4UEVu4F96|@TM=G%H?Ef3bp?LT4(2|%l7@Z~?GFgC
z0^T+t2(oD)qRMSbmunyYXr=Ry){Ajwy>*)|_($_~#Xqtu{?VPfPce*2HBn`Lz||Ow
zQK$0R(g&<KR8pKhs-fvFRGuBx;AV{3fg0t%pT<N$rBO!el&T<g5zuLr#FJ*8R0pZ!
zF{GAmVYWAlO+*H3=xD$JKABqj<~%1e!I+OK{RqouIJ-w(W|jRM7QRuhKE=+>*LBvz
z>hYrRJ{E#xUW0q&L+0>f_U#y_PjFPGGK5U)58^uwSt6m1cO0WgBBQKJzhn^(SDUyD
zav~Vxbf_V2z*ID|rl8T{O2Ogv0EjR!vqLa!6d5ZF0a{gOYM1uU!^`!L#=9oE`<m$f
zEvwzKNyX{u*mehcBi7xLCuYu|{B9>PalHE%`iN5uI<rP)T985wOoYIVb=Vh%YO^Wp
zhiaU~b)?Z55^0Ebo_ke;@;p#oK>ssDOUHgMrASApp@?LR(dMg7c(nx$sr=EkIos15
zE+g?$qqF;i<T{>*_xbzpQtRngB15++GxG%V)EG~hyPS%BZXc(LD#DxEe1wo)MTVoK
zcG^!GpmJv}nHNkc2%mt~ka=9U$y_CSW-B={uM#Y+k~`>JLuRa+<(CnuL8>>%;LV$z
zlYP>^oYx(tUSxZks{H*pK~sJ!m&}tWfbgg*=*{(!87tzqMULOv#c$KZZ_vj17shhe
z7|Ur*FdS!x9VNwaIo2|!GrQ@S&PVjXSyi}VxQHO8Gk&8h<lgko^jk^LLBHy>er3FC
zo#V7aJ}2N0I8+y;6frmz8d7zG$N-8wY=XjAo~IRI4Pywyp22*JRaO4`y{V(VFWz;G
zyFWd;|A#OLM7TD#|FZ0Ax^mKZaWbQW2fm)i$?{WEvG6mFlmACwrpsS}M|`lM!|Ezx
z=KCnV31<GWdo_TW-&mK&%=1+#?ugTm4|;tl(sVxDUd+rNkr$cI%y0R7F>}3`d6g0;
zn~a&Avao(bx5|^p3d=&^l8XvBI(Fn2M27N!OXhFJ(Ps0-pO!6cOyDu7nvTuZG&8Rz
z*jmG9@pfi6&(;kYJ3pCcQ}nhavn4OaeK>AaW|(Jk^<MwP<PHOoI?rMtRr%Py2H>B#
zWLm`JXL62Frn=bP#b>8gQ{nn3G&wp$xUkWg4G|QCli><K?^St~IHX$QSEC3Oj5rdG
zQ(5D4<8SPZi7LgUPmRC5b1vYovQGFABD$y<^0h1qANUTCeuZAU2ttuO+O7fx`Gi2(
zoa`I35iXA3|MHF($I45}?B{3n6IIL85&9`fc5IEl0T}cr1AXh&USEyeKnmcPq3Tx|
zbY|29Jm*)9^Q!#*Qw9jYo5P&|n8%kcpLs=Al}kyZzZX-$v;3(Zh+|EO*El8q3-?}p
zZ+OR)9;rs(`Ox_^Et*A!BcjB`0*zf8?s%(X^1l{555kS4H;VbMr>gLBnEf3dWX=G&
z-eGCURT&<38Sm0?nM1t)TY&%RI&Y&vx{$mr{Q>!ii{ll#8kv7^r@>>DuAwIGRIq>z
z%uXewyA&tL_AC6urFc!7Ja6OEwtpD3R{INJittPSPWux!-#&qgP4wS9TLlJx?Uz6o
z<3)UGGQ^J-FjW<n`Z<px#7vP0O%r0;^AK}uJJk7hRxGkKDx?oGG%!EF(+7aOEE}a@
zKMzq=r~{~Vi;zmHX&=H&a)fdD0pV!cAFx08^#8EEvp>1LyD#}aZ10z!+}@<Y+KbO#
zFXLDcPg&RjKXH8FikEHk18MMd`B_VMEeVq76+<z9D#8;EDs+0yLilvp7U@hhDmpVt
zVZ)l2nXyq7RU$!k*mHtYOGXxiEzdz9h&)xqV%)hjo)%v?wZh$;Lj`kQz|4e<%A<it
zSk~r1i^v`6VmHD!)!@B*1TzYpm@go$nU2-%<5l4uBuiw&BxqfHf#<d>@C82C?Nwpq
zdP^HFq>R^w=L>8w;j|%)DVO#}_g>oY0MDgI)_AbYYNTUNy(h)!q0Dn=BWTy+xcXpE
zbGTNC`l!JN3)EwK_>zC#MW3$hLOnjNluh{p;Q`AmZED{(9%LflP(oKAZ}HjY+6^Le
zjP0jHV-dIMkx{`^U6gTC!c5^O%jQ9M6<ATINKJ`+*~An1+n%!bl}~f&PlxTTKrR3L
z{{_6;ej0f9bnx!w;9Yw0|3i3J-T5i-JAI7d_YyAPw`x=HT0UL1?4!$Pb2=4X7)PLs
zjX4751Xy7NskA;u&IJNih2KM#4B8|7!aWX_n*L`M`&YIq@)Z>c=U;?Q+-yGGWOP-n
z+Q)g&A9Q+M#A6LkIq}FWf!i$~nPonSKPn337MRnQotnz|f*OoYesLzJi2v_%`jHx^
zN)hT06*Xy~G1t~&reoWD$p=+u9VcyJKBB-%m#?mN@s#lF>>IQJN+75>Ye~aCrOe#g
z;V(^fsmiWxq%+!U6{8-hMtRj7B%2VXb*1s{f6)b7tZ-FRW2*A26js5ftYbET%MJ;0
zQ`zM`-u*isKR_KNSDiZgKtoSDw(G@GRFMOt5jroc!U<V!hKh}X9z9&fc<98Jm3%V7
z53|zcubq-hMyXxCC+`w`{tbT^EJTnq4JjMIY_Ld?_X8Oo|JGqEnO*-^8$}2SHD41o
zw|HVu%F0X*VUEvR<folUn+~f<>SXDIZ4?F?c>9oBK+n<AK-wH`Bt??U)yzs8I{*RQ
z0&@`*;jz;YyuAxtz5@DAKM{Vya_mD~pa0ZpQA;)?B&jc5e&@B-3?Y}ckuh!V9hP!!
zb(=XB{9$^bp^;oeMt^+U`Ec2y@Y^FdZ0uhhuKYG^_5DHl$@Up5$S<VoY5$IY4^s>S
zRAU^Ub~q)N#nxbD(1a932vHUO;^;hwA1Tx@28QYSyYK_$8f1!L(b(iM-qbyOOrEK8
z0i5@?a;EN9eUvV*yU?3D^PXhqmQ%pnx$|V_0L|Gs*g<ygPWN7RZhxVWR`L1~{C1-g
zbHsmlR<6Uq@>_&Jz5sMK6^?Wp!W~H1l$HBqft70x*WcitbD&df-ZZRSh6kCGq*{{B
za|bT(8Mf$`(+rZ2aJ%dfj_2*(1RFG2D8g+npt=JhCMx6~omW*oh(07&utcqglhrf2
z4!<Zu2kKE@CS;M;BZOR1ZKK)ucH=TgiSQ~`S@h2yl%M{#Y5ml7quvRKg}-%bw@g4V
z4Mr^Se7#Fm9<violHcC7ot3p{n$&i>a{L}X9`fr%9%Hz8$jX>wjHT*ax;&m^j3yV>
zW1&^@t5vDWJ1EF1rV8n*t5n!Rdvf!VU#(76_PEzIID01vNqhx=q+=`5*cuSl2vyYp
zv*fuvW#or;72(T2a{9Jf#hO)tebACq0LCdV>LhyA9xlILobq)4&00^Dd@<~G_jY6x
z%^oS{xt(X3amGAC1mplJ*oYsXuX0S4Xr!3Qb>A$EnGE06h&X~v=6BLZ;2K>@C7GZ3
z+oo|ezt*X<bnJL@@dSA~cEn=!Sgub_d0l%Rkd#M!=cr%gpG`j-{%a8bA<Ozha{>CB
zr5;HsiD=NKUkHJPg-v>;yRY<IQLVR_QX|VGYzXD16%Ws10Mp+I5QY5z-?V?x?;Tfu
zs`k6j9jyKMYzy`c;-89SbSp5rg$J@STDYmwGX#M6$BD-9#xfS@G3`|F(Y0iy>LU|f
z*@bvlIUnKex*4r&=T;*-&*nlY@SzZyu3WpDmz{4n=E=_g$J(2~S5ai&;|b)A0f{dN
zNKnwAL4%401tkhY(4ZX+5)~apRNNTcW>6Er1xZW-JRgmypt$3LGAgdD3X-rHa0@Uh
zxCY!h1{D`}k^ecjs{2(XjXK}|kB_F`?XEs`>(s4Vx0deaqu}w#Bh6IX(Nig16Kw~&
z(y88t1lp;}R0^tBIaR>Zsa~wE2U97qd1*9HeXUHWh%E=LA=vqDPJU;5?_d`sy{J8v
zlIP9Q=Q))kUi2xPkf{{4VAnQUnIX}d^n@s9eG7=XEuz``*)=`mtr`KOd~L{<{Y1yl
zR`bs&J3H+}e5LD8j5gJK0Lv__3NaPb2Zx!g4}Z}T`HO+C=4;|MpnmV@<hU2@#d>43
zJRdnk=M|^!%`5%=_~N=CMMjX~5Hm$d9RsdAdOCYoamjPScCi!f0FcWtwj%E&lM0zo
ztMsRVz`rshr8_%n@fU6MtF@#IyruXS)e`_PhlSHO>Pd@K?*y~Zuw2=}P*p6!NDglu
z!Mos{tjG&H%QKu<tE|1Xvikus*!#LlklYW9nx3KQj%Wg9Ju|^w6Cc5bVIb{0>8N4y
z8HRzY&f$%{eP!9_VM&^H?sY-b077Ws4<Ugz@GDqvC^rn;O*?Hf4VWfAMx~&MW9MX~
zdo?eJk-xb~897wti;;o?B|-u>(hSMHukTi7{&wODDfZsg=kEsYyldg_7vY3_R<<c8
zUi#}YNPcjk9PU+z-B;s=lY$|0(*V+S;5JZMc;_o^5bt?XCV2o>BW}JXI<I5P(%r`w
ze+dJFEyBtwSKZ!+m(J9eO1|Tl=W?q@AMbR<y~~{K>z(QyeVxwLj+-JoQQ!&q_>LcT
z%6n968@~32DGlovh`yWT(5Ss7ai++c@6qK(pD+C#Y!?AqDw>3Pe9QlVxlX(a_?&Z%
zxDp{{RWaPGtnXJ$$b>gs7p=S>cPN)}q+WYLORbztJk$UT7dg0*+AC=m{%|D7gg?An
z^vg_9Oz9D&3r2V5radBeu_uO(>GoZx2Y0cR(w@g~0;Lp)QbhG$51NcWhmx<l2ll@!
z|Eb4ti%)N2(BJ(=gDx3^{2v_=7_&pGji<efi!f$B$=8?VgN>glyR=k@Yi~QrtfTd6
zMKGx&lPiWoI}n@%lR8JZ%7R~odR>sOcOXtQa4P2-<_Q|T8FhFM!@jG{+j5RkTjHfE
z-U1z@6^)Lg05{Un2YXGxB8!G=CSE(uU_uQD>UIZA9DjAdM4n<|87`VkAcuW3anKik
znTaB=12%cG%OVr=uL2XPH~}VnbMkg{R^{v^tb9ia>lxICEPeb1zVls*1`BhozX?aL
z*A-~OU#g8}R{N0o-poWi@BRKF-^-!=d8%^3v9u>725k2v4)L^ic7c;s*n${~l<_>O
zQ%`ufeMaJhcQLn%dfsw;dc5iU@{wqZ>C6wqP5klBxt1kCeyAe2e4a1o7ih-w?&XXD
zZG9Wx|Kc^__n)zk`%kv>C#CFJv8+wz(qB?<CDBS$f5QzYNP(y4whn_ruQkyJOO*SV
zpATZOv++(cqQGp(t29FR0dE~_j3T;sM5p9BlT#YmfwiJ($)K0h9AHMz+g}ewWHU9%
z!9Sayzo5?>SP}};=NEKm{|9|Oz3dP4iH_$o9ymg&u1EP$=P0Cf;))B9LN1=wyT3t$
z#O&Pf5<4?B9=UXf>Rg|fs00hF14l^j8NYiv8+QBwaVdEJ`09sFy(!;W@XmQd9-eXh
zf_yyL>uj%gV(&TCJNsf2Xh)~(YR7HWrXW`9T(g#`ovt6^O+8Wf3?jRed8)u2lmTiY
ztuMzG=_|4EWMHPVFlqZeqq$|*NygT~f!Xo2x3^2X&*2V%ZQ@<d%!!{_Bny`C0P%rE
zWgC;WBqc$qyriVjc<3%E9eZ}qNkiIZOmJpV^!2)yH}4-mGXv-Hl7e&l`{zm%=UVvZ
z(s_<{kck$Oy$q<CKy3+x%oJQ{n5FV7nZbNYdFFncDTM|{;y4Ux(|Cnx<ul6aA_m5Y
z?BrDqI5ERdmC96{aK_0h^e2^kG=jG$^8)u7>#ZdJnjo%9?G57_$9}4RgM&Z3c;<Xu
zs>ig<UT@(g`1O^JAS`>0j;~Vo0XwkAbc}Xym8yx{nx>z)Y2Ak&nhi)sd}uMLY$E8%
zhrko!DFViU-u`<2SKAWDJ{zGq4GmVvu@6SRZFD^MX746WzhSE~IUUcPcUc$QtM`U-
z8xLQqf~`Cp@24$6TJ!<juzDE`R+@4q?FRc%)FsAr{@3mFng=^0H}chb71<5@qm|%n
zFAaM#*%z$Pgzu?TGKVemFGb(587Cy3)6Aeza3@(F7-8IiQbQ{phj?hK>?&#w;6^g)
zp{}4C*HO_hT39bwSRNkpj0`?NhWG_I=<Dd@B-qGTK1rqY)?W-Aj!*-hM)ez0_3N;H
z^VE39jm+9#*J$5URgH?C7}8@)9q@%l<iruZObVl-y)5zcdPvLXGolq=n$-#`h>UEl
ztM%JcnpA7sUsbir`xxA`+b#*J6@Hds`Y*o(b%`?gVLE=mYFMG`)b*f3>7mpj7K1i7
z(&i&op(9zLW5{D3c*G|I%<*WB*SjL9&>e~Jr^w6F=UqU3J`@$(1}Ex=vZ*B;X4Cl%
zZxSEia3fn=sVYSU>M_y?U1cK^s(8l_0p<`rG7afJqT@sBYex%RUw7yJ<@#EFrRrv+
z8SbOLs-n8SP8M9fJzEW{uKL-kudPk$>vSa0Z7;OGj!@V4SzlLv@R#aq61IKn258k+
zu|CiG8Vu#UD{<m4)Yqpwq`vygj%*3{|De9c4gRzGdYo+_WKInG&W3Ry6+>7PV;Y!+
zw5!CU7jC<QFJvR28|Cl<Efo@D5x9m-Z=L=QFveXRu#3CE)xm~`Ao#Hw9MK|MZb&k3
z;XhD{d{}amcqKYsc34~M1H>7OL1MH*W*DGZ4`ksxpk52G$u6m3|A~bidpPdtsG2pH
zzi4?A6kO^ocvso<JJS7cbgI8=?vz)<GxWIES@Vs9kGq!dZhO=6`U%vzd`H`x@%VCe
z&cwo$9>Mau>uh$mZ{VI&{AKLWxdtN+BtXI7r8p;nKN;RM{b6NcC)4(ddN$vUEFMID
zS;;8H2;moQL0$Gvd`?EK$Ew4$3&BwxTBhYcM>TrB*84j(M^%Dt<sDI{@}?eLMZKt9
z9y>#a^`v42uNT0ZK40rrWZ{(`d({@@78qP&i?YK*>;-w<h2yHD9!(bEQWOuB4r3BG
zQaGPwLllRirFMW?-jkmI47!P#Wzu!SlBTNk*d8XIA>hRLzu6^VRM<=MLV9d%z-Sww
zY4hhCiA(6WysgixZTj-*F6@8q1ufWzY+)a=#hYA;Rw;X*eH>__HoB1<nzQT=!;cL9
z@G93S<#K3Vq8!}1uUth!IqCIbe3Rp%QNO)TAKo7=-zYK`k)rd4w%%L1yJg8g^`!|*
zc*)<NA<YSOu9st(_ciC+J4Y(A$R)ST4JI_Vnk!nTc%Q$<A&2I_Y&oj~9Y{^XR6d8(
ztKnCpE~a>|ge0EgJsfh@y6x7G1YWyYVvUa>635$R_8SCiTq_ZqWslME+gN#F^C^ye
zrIcSytHx%U*cMI#mG5X3b=Aagy9GCO!L($@W@WoeLD$&+jyn>c@2T1-PKw_T=_k*^
z^jlZQMaK?R{W@2{md4~`aMl*zjL3|ZbF=oup}ifxCawV=)!E%JosA17FUF6hTbg1k
zRtEX^HnsbWkA0y7DrSu{rFb&8-LcT6;ZFLP%4PsvncvFk=D7WmyRU-kdr<^9ik&T@
z?)}8VTUapm=UkOm{S3#w5vo`3fQwjy+mqIPi{zR8sq+qO^n}iD;jI}cMYNnxPD~t{
z;xx=s@{^EP=BGH_@Kz$IokvaKy0q?moR6o|y(1gzE_Ry-Wp08p4P`_deQscMu0Pt8
zl9PvwOkjCG7B#lKQprMZ5Q2voff$94QPtG%g)i_9ct+~~0X&WiGnk?dF?IO)To?tv
zDWRRLI)K+y?h`I$^GlCTOHz+P1ZlLl;$yd}URXf=tOOIub-b%*Ul{s+wZ9^LS&*Jp
z%&dHT5X9F3<z*@g=%krbW+Qb}dTi9e{A;&E727aF7!f#Q+JwEMJQJ03lvn?kZQdc=
zy`Y}_hI7Oq4>(wSuzk~2*qST82>^rX=sc#2t7nP1*?=|7s*{hP&}L~w++;2ZNe^o<
z6Y~SfY*g9a`jIM@!b1xPdyhnN)IVk$cZx!4Jn^f9Gs+7Vu{5b(bxRekNeISOpps*|
zS9M>tvO?zw2c(`(t_Ys-mLiocXGvic{#zmSqvUSn?(_9z+4$p)09!5eyyh`r!~4Ck
zkKiBd8!%={JcAxjyARh9uW{xO?<4e~F{VX)?51sfJ3C1}4Pb=JDvj3?TR0hkeTZJ?
zLLhrPxpnbLzZlxL`45VlCD2LK7XvF)Vc}fOBwojXu<HF1A#tMq`97_S8qM#xk;6-j
zeovm|edr_AwZQsx*8;-j-AM8k#X)M;RqA9gJ7qnQ^VB&g#XW|-$@4HjsQGGiPVBuo
zUxN49e)whIq~6J+S|+-5ywCQ&r`bkVMi$^=vNsd6nO^OgzwPzTz5%bY{csi<bL(21
zn{*wt!#kN|3$yO7(^0)%^G|4|uzISUjyK6(k;M7E&EKFJ;TQ)|kyzvcoW$*w6-KFB
z^Y-N*H@f|NxqY_2Jw@GqhPu7=WaD-Qa9*XpU4jMJK;*xB`(U;3U%VaD=dVZynf4Y=
zBKNP|#<!o*`1TcY`|<jA_2fp{0(E<7liT-eeES)4`<Aa&?(*<rEG?I}$J0*P$wTB+
z9%5;QOqsTlDZx@L+hQ!zS7kJ9rJ*OEZ1W!5pjZlu*+(*(pfegPx2NUcq*o5l>cmk)
zs17(wMw%+LOY1CIp0Bg)rLs(6ma%qea_wY&jh@7bbxPv3cqI8Nw73{uLga?asTrJt
zghqU8pLZYL3LTH^VH)I^LDuKuJc@YB&vN?-Gf(kvZ!fdo{_Xqo_Ca#{n~B>?uEDKm
zs9S%0I=FQWCa@DZ%dH*c)^g+4PPldVPaxsa`n`KsM!v4=n}q#cYyq6>!n=w;$3;#m
z{f?cG4I6OcGkxNFp1>Ha&vJd@Q|^`gJBQ6~pB;O6*Ltsp=NcI6x_#ckId48sys1vS
zCW&gir+99ZI`?lTx|b*LnrPm2oKAEH&v~pVygyl=yO!tpyb;bFq|aT*bEm0urxC0_
zPy8&?FMX1Eq6beri4)#KXW<uL{KxLFu|KF_l{A?@MaZBG1^pJS1>Hq@4r}Gj`1VAj
z#=z%Xq(pEb-NE5K)itq2IHBr1Cx$_UZ53k!0G!WD)PeVF0kphK58^~q^~ds;(eW$(
zH+?5#shsP!8CbU+M{ks)o~y(*Kp1~7Cw?>jzb(hf{i(Qj_f-|E^o#Bc#T@r+l!GLc
zSK){9aOq;<-F@%|3<${rCm7iIdhO*3J6e?`vce0mg5QV(r+Up<;6s}f*edU+BGgSL
zeRT$XHQ+A7RL3XkOCYjbm>o}oPToBG<H1k@6(bQT?<&WBQLp)(*k7~1H_3rPKg6&i
z+sQq(WS$c{0&k5={7d9-?c`JWc4Zm3;i)(yo)kn>8Hmc9__2D=-os_ghZ&?Z1MG`9
zqM;@XU-~0i$81zanMhUkhf;8~_SOl8X<<jmx#<bBd%p2C@a3E2-S#z()qRunehJLA
z5mDEomy_*oqI7}}(f4F}z$WblMx@^R0;7Uu-3<SFDr`#44AZWn6}2?n;AKcRqbhF$
zKS(kK7gUlvRTA{`MVSD>@wQAS_r2l*UM}wI#Lq@P=L3H*j(9RScWJSDFQaL$Qg)gv
z_bz&W@2xjgHLS;r=l<)&dc#a*Ub`4qM`G!nA4`TZVk=O-VH%9{o<`}Mrs?Dp1o)gY
zr(GJQJ~$-xF1R_b^%)=*-@vp2e2d>vH#N5Rrnc}#&c1Eoar;_%HEcn<Ag_53|Gq}`
zeQSTHRpK{9OP}cYZ$kYI_z$n|CY1?l`SL5jzRk)+{hp6{9*iSK6@Q^JZ#?CXD)Xr;
z|5|0<)-;_|rgu|5c-YgZdhGsU)agxaA5DsFRR+p_56($D@7_v9IHE7x)we)K4bN(q
zVDUZbw5Iszf(VNYR8H)R1pn15v~Raxw&*=~I^bvd9>>PVaJ2DSq1InEMfiOk2l?LG
z3SWQ3FYM3K17ng7F_npC2Z<ULGK*T=8H^uM0ExH`c5*kAbcXfdVS4<+<IWg)#?OK)
zsEJOkLP;`~p`mWa|G%gb*!o}i=k4R+ZoZvE?QBbJZ*R~(8nuB@r$O7P%+bm(I$oAR
zn{XCx|E6)n?$1ZT2IGhV{srTndh#C`_e!ivH}O<nRX<oPzlGvgc2oWTQhek6^H_s3
zhBc^a-G@k3i#;qw2TC(Uk(50ooQouyMSFNONYuz4+EUlcY+Xb6{vIG<HY)yxTg>AJ
z<CP1rre4x{Jb>h?^N8_Ae#0t01blBO8H2tC?`OcTYhhpXGw?BQms})oNu|?);NXTF
z+<>lRLv(6&X!s*@7ii!vUcD*}k?oIe&N~6CeG*$Wyn{YtDgJ*GW?O~-7vcW}s#lOz
zQ-(w-l3MpQ$P{If&coZ?7sPA}+>T{`jrWg${p>z_k@>ic@~YbM9W6L1loP!lCHLbT
z45*S%XIS1Ui|Ts6VW3DY)6uq&t)I-RK(<Zyk6dB5uOPqChezjCVH)9w&8Gk@C3)5`
zl`{h$9}+o#WafP5K5}l!oG1DwYn3-TzLeEy#X|`l@-Qhk?iknEUcNJBbQB+e%E1FK
ze(tzdyqV_=jrvpqt@y(}GkAEvVIwqbcc#Hj9Y(=n+>H1;s)TQBhmueRu>^uU7yrZX
z5l!wqFnYI&Rp8R1^RcG{^^L7}Rd8ZsFU4v|UUYu%n}+A^zUlP*==}Vfnhnp-T{ilQ
z=={Q)QifwQXvu*x6{{*lhmBo#565`7f-_XH_1)JF-~Q8Z%;it5YS^I5q|@0F(6h3K
z!y=;N)gz7cv9Y(iZ)<3dPe3Ae8hZz3cCawRuS3dCjrzWY$<@x9orP{n_k!H@H{U$a
zZIyRMbbi~jhWE=|I=U5p4n2zsuOF3;zqL2bciiIc$px_;4YN-}3C`MQ3G%zvq6o!@
zn96@{tLu%sN9H}JPm#loBKd}(kD+{z8zbEZqDzzN3rKam_p2bfcYZwo)fCeFWxVj!
z)P0gnjz82KZ~sX#{Hd*^Ed}{vbZpRyt+szaYt_yF5?bSf?n*r)KJ>1XGvcl8>X*A=
zbR<9blTp$9+_z0y`<3qsHHrMLZ}-QGzB<w#`fdMNDf^kNp4UxLdB)ws=wTvRj5cat
zDJp(Pr++;<M~tbmRp=uAm5~~}`$+i1pQ4kOgD1R}AG@C4kCw~0)9qaloqzjnzk%$m
zyneYm#+?Tfi%xh_5~hrDy8i5}spF#i_K&eA2y1(_PV#yu2JeZbK^a40hzPTSW6JQJ
z!q}XRFB9zmj+mO1;~6?VMu1uf3h_~h{o)<^<*pyg=I%(-*2&=Cls`r|pRN$AF&_|u
zDB3nW>)kt9I66cfDo#Ng{~~a^0cW=JAvwr!NAqa;dX^Fnpch;>9I4Dbe%^gATiV-B
z?iW#)<G})ailgi90<6tc@5a8U2DG-foi)1)-Bza-fYb7sNHfrF8ygT?S5UpF**WpH
zt@%-qlylrc52o~srZ?k+bZS1bNa>fmc3jJR<dd48`|%wxnzgrMQ_Ah9CJ(?0P~5?i
zL`uA{ES0Y;Oi#Mw(EP4z%QyY*l-DJ<SbCb9av(S^N_a<X^tDeQQ{yuFG`!o1<@4RC
z_v<9G)hHesH3amaALJw}YzH(jvPA{ssKeCAYen#|*q<YZcC&floB%IpaO{=oJqXsx
ztFIAaOMJA<`?(kTg(;T3jym724&GJ1W8An7uJd^L&JLrSmsiyR1$y{;`%5-Bo9giu
zsJMlXuo+3b7&Cf6*Z5z}Z;8$?(*|RHXi`a%U#%)w<NP}8Gr#Ego~k{9nd`w3I8BGb
znSEHN(Ft2=a#z+kWjjmpD>`X4<#^hS1Ici^D|irRkM+R!xPJ-$KK~CL)B0%nJYc|r
z3aaax!PloW>z7+K7H<P9?4I1Pun<ly_EW<v_|);(1Eb{<J63<wEIPl{3Axq9y<?bY
zc~=!N6%8RXx2E_2lp9Tzx|c7{ScXRFovKsVSI|?P(9Aw{b5Bg1KKdmBiuozD4im?c
zyb*Uv%e`D3hN#1`lhA-)L}o$Ll^<4pM#tw30cF<vS}@;#;5&)={=rau7{6cllo<TV
z$ggi>z8{)hx#lp?3*Uvtk(x#38TsLu<SiKIN5W7W%_!~LUdqa`cG~V3xzCTD-A+gJ
z-~=t#D{y}XZN(eBjQ8J;FH7tfk9_i;niQXK5i6Iz5N~ITN9G75MK^7IEmeWTgI_38
z^A~QXUKTDQnItdC#4XpjnKtfK25xB>?xqt>eFb;cQbXTkH15K|mcGXtxY=R2lbYfd
znYioTRXm($<8D5g)G8io-w)y8q^7t#sttW_)3^=)u=H(}o4_3thI_*aCJ$0?Gfdng
zG;W2B`<uZ-W*F{W7OwE?n7D7lIJsER$;N%bz^!>NgohqYako?%Jlw2t=Ur&=Fx0>u
z8HW3LcasOvce;sth{hdg<F++$Gs18uHpR^|ahIVTk_YbsOW);&Jyg9L!ovwoalIu5
z57%kjG8?zTz#S2WdufizgV@6q6Ss}VJ=n&*%D_zz!>zDzh2LH#?i;HW53dcfcxY?j
zE_f$|hvS;!*1c))aHYmAv~f3|lxP>j!f@9gZ}K4ePBd}%*SKGwZ|S?-z)cOq-Fuvg
zEBxk|xUa2JJltX9-frN&{B{Tr$2Qe>{bGZMi#2Y08#mv;9UO-Hp{1|zP-@~f*SIgA
zXYufB&ji0oVYsDDakEX_=W7%X1vc&=L*H4eLwI<iTN8e37a2U9uW>h>Yw3Hefm;-Y
z`>};9Jd81McfY0dz0Jn`)Zk&qst|oEn&M`fxKC-^wl?l019wIk?r}|VYu+$;I9ub+
zF0y#&ZQwd#xa*HK`4t{Unz+BLR6Lwv<NnqoVGmnsLU_2dDQ<>|`>@9SVxXn(3kL4=
zFx+FC;#R$G@Nl}u9b@BOW#Hz8;eL2b6COsGxD6{553Oz7d;`~eD};wlN1M3fAJR?S
z`!w!z=U6<X7`RiyaF1@P?}CK}52tF}({0?ZPE6EWuQ1&ITKbAT3^Q@RT&{TdbbzJr
zR0FqeWe5*<G{sFdapM}d#Kz4xa3_Z0W;exsd4a*hi5m9+8~48kZcZ5Pv0a<g+h7y-
zlVysBXA3PJCK<TvSA_5|$-)(WlT6%ljhkoV_BL=!!*EY(iaTq*!NV~ccf;A1zMD@-
z*h6+0Ze6y?gXmji;;vh&c(~lc<@h2NX}<>GZlrcOdC)@=7ZHDANYdqIswhKjS!_yM
zehl>~<oKc8bh$4vBw1!P{RoE+E9MzRbhIjOon;mA7J*cucz=OZLy|myNb+~fgi?rm
zgNeJPS`~4ajoa10{eD@Zssr4q@~$C&2-S|b?M&S18h2-brSFEL6IC)T47a7#)pDDi
zw|K6>L!QRH*T#(*xP8KKkL+nywXBm}ZQ^=Wiicxt+*||q>!l$))L0=M9_LT;(oEbb
z8h5#4@lfA2!GjxydxtfY6n*E;F?i^uaWAoPA2e`#hT&dq*@M{GB_?j&62-%|GcA1!
z4BXGELwJ~RvdM1?@(?j`Cu-cgZQPyN2_7oLaF<w3U-X^*n!!Vk#?7{I|6|~G3&U-1
zg`iSz7nr!~-&8zQpJDNEk%9X`RR|AHoYaJeJ+B)2mTKG~Hg0PJcWfB$C~GJw_At}L
z&DOZT^tbe_J}SX)moVH{EqjpmHo(NKU95PRWaHjw;J&*ggoih+kWTpB`ijBB7>(P-
z#_eq2mW1JsvWAkv!=ol{rpA3U-{N7-kqI6;h2ai8%B(lBv;HP-%_7CaKWyBXfxF_(
z5FT!nU5LJ)lzpJzzijX@QsZtp-O@MLz`Y?1_it9akb0YD;$~>vn2lTCCBZ|xFx&+f
zn>-xIcHGCrt$IW8aJY^89|L#s;t(E&T3xN^`}Io(4<j`08>d-3Tx8&09fo`D5vIP<
zzquxEy2c%3<F+tx)535MviyVCSx*yp!Rv~L@B3N$R%a#nox3Q6har}o2@jvWXz(yh
z<Bqp+Z!~Z(3BzsM6t~jEP1U%E*|=Q|+(;Pi$5wk2zuwKneR-kcVL_h7!-gXgJj{M0
zgohf-e#Jk0Fx%i^u*N;t#*G=c7lh%Cviy$J+gKAfN#lOk*V4DZz}@qDh`vWQ)whd@
zJ8OaBq1?vZd3b_{nPIq>SaFH$;e7W6gNGuG+tJ2dXy6VA!<}r!lfpxZiMwOI(swQ%
zuQR5&uQ719E)3yep}d~O_h)VCA3B-1Gc@iwHf{$4_t7xi|62Ad_ORl4g9k_Be%r^=
zcU9*Ezx~5-CtE{F;o$}ocgsA*L#d5hX5fCmAcTi=n&P%Iai?qC4mNIg19w^&?l^1e
zT<l@-a|RE28u!)S77rUU6Fl?@!_Bh%r1+hyO<ZrT;^Ax?_Z|cH>-ix(bU)Jczfx~$
zChioC`_-wIzWoebHw^c?!%ST1kLUi!;Gvhs9c$zMbXbCio?*C;S?yTt;Sv+KZjR#N
zARG4y1NXCeAv~PZ6gOhxPSm(BonrBDu7O(_hI`N<CJ)%YgZ+K83?6bcu4CgS8@S!V
za1ZWm;)*?7VB)TSP4TcX*V6ZuLlgXdFgJvU<Fia$v4=g+8v2%M+*@tj%MIMIVYnkR
zO<d7;riq)aaogCqtqt5RVYr7j#T{Vc*1oEEc%hfY!>UdR9^Rc3!o!7@KNCCK`i#ND
z7>(QC#(mJhEeXRt$}xH1+NbxZiJPf$KR?;hx4^*d6oz|{H4cz|zQ2iE^NQkOw2iy7
zV}gejuZ8gNywzXGJi+%f4IV~n+;kiFKL+j%VYoB!x~#+!?m^^Xnu(jCasP9Y#luAg
zZo4qtXS$fUQg3}s+^Uxq52x9<tqt78uZHljw3CS|_WSkI1`i`N?k7DheX9>i@OyO_
z?kAT0N_%rn+;ojwY~$W&;HHJ)K4Z0G;i0FAyWl0oLz<1-*}$FqN(c`ZHpTtyDT9Y$
z8uuBz0l|n%)*PJR;gT@iTda6T`prrcH&x^IwQ<V~+(;Pi^&QN5lYXe1iTm=4iih<l
zTKaZ3aA&_9!ovc~uZul=@T9@RV2yjDjk^)?gunEDK^X2Zt3Q@@Jl4cb(zq>c+y@QZ
zJuijmJEN`1gY-jPOx#(s6%S9HVDV63;LZ%gZJlA_3cv3@Ven9-aeLdiJ2MhI3<$%$
z^k5TL_$@JUcf6qV{h+(0?<)rG))zx~7~bB*6@5FIxHB~Fziiyg4cte=aL=&%V`*<I
zW*9s;8h1Y%x3z)WKMZ%9<sSt11`~J7^NNQVITjDq?GyZdKRbknBQ1N7ad$ftce=*S
zwQ-*?aHoagzG~Tn)Z6064Ic6|?%Lxmea|&;`-I^RYl?fdiR(S5c(~5SZDHVk{Xz&2
z&scG)@SA4hPSLn2HtxcM68yShxX&GK+L^TDxsMq<^wPMG9%u1zje*-U47bW^7t&u`
zV&c~QNAYlyjoZP%{p|S=9-3S6j`-h*i91o_zTeH#cU8Lt50zoK?VIX5`%#039F04|
z#=XVB?G}dXTJx!Cj2|vAao5jMJS5w=xd!eB&xP<X!kT}Ohcxy)V(43{aUVL?;-S86
zf`_qTxZhdxFrx2F6E|Dqo@nDfXyA4U!`<)irkzPVIl#oNeOB@C&M}t01qSZB{|Vut
z#UK+`<_WewZ16Bf<6dp!?rf9bp(G4<Uev@Dzw@Yxo2hYsKibmw6$7_Z815BKar>LN
zHP0v>9<XsQH*i<X3gMyQP*Y!N$KO9>@Gw&2=GeHc4cr^Ta1To}aiu?=X5waO+*MsI
z9;y#a@Y^m7_r-%uT=5TmOx&uOiiay~+#3zt#m|QDa7k0#uOBpc7@=|TiC#1A>uTU$
z9fmvAimQcR*ThZNxKnN1jja<rq=n(Gv&I4Y(?9eyaTh$Tc<5&1-ecg-eI|s5W>&q4
z{eCvx;9;1?U3rwnLq7xek}%wM`<wM9_E2f!rfS^FY}^(GZX^u1@&FT8#lI%*%TFmD
zb{uKxyD&Y$@9dc&Je<%J_k#xv9tLaNdu-fm4BQLCa8I)OdFhYGnz%_C_h=ipgMqu}
z=@5M@tnr2T-!3NZtS1!@%eq)RtcoUhm>Gs!Z^aMNZ@zoK!9$V8#p@Bxc5#b=J0J}A
zygp{VwWj@+n7BKhQ2K7ovT(Z^xLcnJ;o<bA`gSsLXK38XHtvQ45<EN_hWjro-jVjU
zVw%B&qj8V2abpH<|1jK(dpF_X1`~J748=p$5f%@*2JZJyhVane^6OG>?M&S18uua_
zw>~Yw!?ZBm!>o2J?QQW?gNHng`}5(Jz7HC>eZp|xX=(BxxL2FF-s6ggxQ$z2;C}r?
z2oDdXo4C?nq?x!=G;WrS+t0vt!*EAf^8^w{&Ardyp_j&8+}Yycr&bAmdxqhTvc_-H
zUtD71);*?pxX{LZ#lZb+MhFiJt#%>y8!>SwYTO?)Eq%)j+{!TAJKC81ia(ouufao(
z#+_*6b~kXlh2hS&<{!j<FEDY}KdN}>Y~v;yxF0+o!o%m*x@j~CerL};hQ6g57i(6g
zKU=kbqTa@a;V!rASH^`iP26mad%lf(i-FrE4ELM;On#+Z3@~wPA5lDPKGf2;yMg=e
zV<9|rZD-<&oo$_B@GwT>R@%55TPAoY3Bx_r8V^amJ!;}+YTQF@+$Rj&PGPvewKDaU
zcHG~@t$A4SFu#+<!?_0Tibq3uc)ls__jemSjMTVAHg2+kdqWuRkfylPOxz5OTaR~A
z8S{v*v`FyVE)4g;jwTP%j{BInRSzj1?zC|)H*gm}62ij*%dZQ+Ur#o87@=_wv2nW_
zxL1eaUS;_m@sqBJo33%^9AfdXF*U(MS{QD$slGi;+yxIR9tPOB_ZYZy9}eN+*aJ;|
zrCogH8axcsxZfOX>D$l1y(A2`*y@jkhe{JSRpXAcaevw`!9yerchuiZeZ}u|GjU&@
zu6W3>ai1`7XFn9e!}1m;uGqr|lMEgPYur~lSUj9-;9d}hJKh>!sQA~!P13k$*|^CD
z?w$uj^ev8<`U($SOx#%yC?3Adu=IW9ZwY>9hT(p0wPVruU3njueiW}r<KAxLUT)wH
z2*aJ+6t~30-EqItx1EjK+Q8j9J%op<WRnN!FFKjHGc@jt?JXXvBMBZJ4a2>mDej89
z40~`i?wL03jRtQ2Fx;ihO?{=_ZZL7TOjA76VF}IflbsFR?;i-^VN_Gxb|&t0jeCoY
zyCEgP!?ZBmtfsh&V+Id-8uvgOH)i1W3B!GIPnNM>DC6#{O<ZrP;^BELQ5rnt8n|EI
zAHqX(%Ri|2*TkKoar155`sN89+%VkFE&m|xV(vtPhh7@@Gfb@+`aWpj_6)-vVzpz@
z_YxDg?morCC>yuH!2N7m2oEPU)i+||PSm(j8#md&tqjAxVV7BNGOsavg26+M#+}v1
z;$dO41i#(FaL=~ZFQlKpz{FjDui~MfjeDbk`@z%@9wzKC^=&5c?|4JsQjPmDwpJST
z*44lr8-^RT_Ls;!?MxFlTjO3~;mWH3B9mr-418fqaP^}K7?v83D%^S+Rn(6v;DtVE
zt#|iEb5V~fe19LynRry;%p**fA|d|4rYeu#qo}LFtb<X+BLz}Ds_>9Nsz(*@?gGC3
z&FyrL6*5Z~zEs}VrMrUu8uxM=_YMR1v@qO(JIyMQrhl!8`~4K9?=G-v=zE-j``x{X
zst)v>ZgsU1iXUj=PSd#e*|<OKBDIQ#d&6)?rkeapi1fO=(o6HuN8=uA<E}JtPYJ_~
zr<l0nQm!y@zrI`XumV+T@bIC5yXl?~9@bhzDABj2iR)_IOKsfA2JT&9xUt{NdXui}
z)pDaL_0+iA53uz8yMcQ`7;gI>CJ$)eN!}0>_p`~0hbcDh4?7d}_VJVu9#)=W;>wao
zGZVK`<94-iA2V?848uLjTAC17_1v8X58X8GQp`#k^)|}DJvt0`rWJ}ydppm>{lHZ`
zTx{d6G;r769m2y=XPZ1AUP<zHl^Obu)wsVROH*H?-fj)U-E&qG+$T-kE*jUhaZNir
zJPg;~8Y!;zEED(LNs5OfZCumNR!<J$Vg9|QzL@_?@_sHgcqq}hOHic-52l^n6oz}J
zwPc65BFTHm#O<VU2iv%&ogEy8+s|6Ul_}%XOxzW5#luf<b%ws@81}H#4dLNgYYPpG
zKgs)UoWa8l8uu<6_xBx%_I7O;?itq7kMu+Lnz-#W?h!Wbiw5q2VYtPX{}sP}iix}U
zF2%zlxH^M}OAXxDCx!4Z)0$ckeK*}<@Nl)py}-sj(!jkU4EIWF$wT<P%fwC7xIe(<
z8~T2@J;86wFx+#jsXXzMCz!Z%V~U3fHtu@{?yK<-9xfbiwhPR6BzYf?HF&s0<7V2p
zlMUP<VYt^=Q@g^$ohEKX<1R$hYw+-Q1GiZi?g}e@kdXOk6L<DR#lv|v?ho4%{62SA
z2oG(nkPdMh-tT$4!NUa_w*g(Bq3?SJ?s;Lji>>%f+VQO>?w$!s-wGRdl!3b|7NT#}
z&t`utL*K(q+?g7;lZ`vvz<n|d_c^P*N&mL`HiL%&8h0MDG<X<q;GPwRd!W_NOMiTm
ziMw^Y;$fhTYwG*+#1I~)SW8vH@4+VSqZ-#ksA=eXsG;veVYs=L{}p>!daJ=he~nva
z<9@g`VP~g>;a+FOXTtBbChqr@iiZ{!uDm=qQZN<oZGWdHwZOmuQ7c~Bl{QCmRD*-s
z31lcSI9UCiX(Y)s>OHp@g(%gTxfseB<XmGEVyr-_!2w>1rv?Y#TDUT<nrY%@YuqDk
z+ztkAmoVIEO>qa9xV06EoF&N8(0A3Z3DVykpD>a@-@Z+8w~jG*7^89dIV1!376Z2=
z4EMVFCj35X;$~{xpFq8V+ttAB6oxy^!WDk|o47UQiicY)T-rk{()L~$$+IUWj0CR@
zOB?+Q8B#{_e5Gw97i=*LA(8$1(FQpe>&*7Re2hXIE0AjBG*}>&k!1TuGWUBES3Fdy
ziQ8P`-f!c6`g5W(lLB16sTlfWWZG`0OhWKQo_t@JjBv6|+~@BkIVD{Zy7Fadu}JfK
z`XsH4oHR~<+Cjb7OcHt7ZSa*0x6j5Y7@A|?o$a;9iH5c6;{Nz8FFRG@ZwEsB4X;&G
z;`b17>tp)X9Pd+Jzb&}_F2&S9e3Rl6{4N9XalDr(o)U;ND6Zp28szFd6t54&J0T*g
z({)z8yc>DF0UvHq$*-U|CJ@i3*g6pNDL%)KH41i5il+zSkrY40s}j}K_7qD3F_q#0
zfw;3Z#Ao>(L4o>?VqPGALUF@(|LQvwZwkc46!#Cr7b!ly%}@L|#Xf;Jh2n=>{i|gZ
z{~d@oQA`cQD=9vqzjNStgD9R7i2W(9`^ASkiQ@HvcofA*AZAc}On=|p@mf$kIS_ZH
zL#+MDhiagBO(1?su~{I#OYz|?e&RPN_6Wq6D8Bone{}}M;emJ$#l1iHSMQ`aJrHlE
z*gX)hf(YyAHd)zlo_9X4-}}9PcRt0#0<kB>1)Ke=M^ZdD5ZhDyuED>WO0hf;cSa$0
z48-p!&i&3${0YT#0`VP+-{P|>%2*atEDgjLDRv0N$0@$*`H81cJUbA}D1P;=fAuDc
zV*~L@iU$SaAc`-2<0tM<(Fw$pC~o}Pzj_qKTLUqJVw*s0LGgvJ{KUHsfY?6}8z_GM
zrGNEPilYPZU5e>}_$I~wZ1NMoMDeshoI&xEjsDepC>96eofOjo@n(w8)cJ|8qS!YO
zFQB;o3;*gF6mJZ~lPR_g#B7RBeeNgjK(TiqwxsyMXa3dQX%PPvh?^<y7l@xxobjoj
z_&tibfw+X?+E4teFH^iO5TBr!5{UOweDq^KaXH140<oCl`y2eLS5q7jh!;{!4#YDl
zKD6FX+>7Fgf!LMeJ0JO152ko^Ans4`_YeK6zqNw+Kp=ikF((i|r?~0^Kk@q%uL#5{
zio5^oUwwt*)IfZaVz)rNkK#)G*+|E$pm<pzmQdWW)`uES@t#2Z2gRcU(V@6(jh{G|
z;?O`mn&Q@4|LP$WCkJ9Hibn<Fp8X+Kz3(Uff#OAh_yxtE-}A55Qj7;;HN~tze3jzj
zcm2dqQM@n^r&9d!9sg=2#fgD9iel$L{3pfN-}Vy^rg(lJ7Es*0+P``V#mYcDhT@@t
z*pcG=Res_$iba9=drOG*HU8BfDc%`~brcT?#5EM>yyYieN^w9SzDDtzmHySIDUJ)o
zX%sU8aXiIWR``iWQ#>mWM^OB7xqtN{inj;iSrpp^;;9s0T;?Y}mg1R#*ok7@Qvd1!
z6mJQ{y)7Uf7>HXaK40x8-bgV&5Z6-ttjfQ-jN+(3oI^1hh%+h9TH+_ZpJKm2oIvs8
zH~p()DBc{1*HCN~h(jpOT<j-4o8sRCu{Xt!7Wr4ZQ5+eFhf-`2h*649zTqcMqIhZ`
z{*(&wzpwjOH&MJH5Z6)sTOcl{`1nFU@mz|%0`VD&YZmxdAE0<`AWo#%JP>c8_{e-e
z@wF6t2I9pO-<#)OEu{F*K<q;?DG-mN_~2YW@nIBC2*h-Vh$$9Us+gk4+q)mG-#5ok
zzJ+3DAa10%@HPMHT8ifd;xdX2uliT#P^<{VnG`z(;{6ooz2YaHKyhFoj-lwi>|ecx
zVp$*#p?Gj0o=x$!m;A)NDHaA|H;P}s=wCgQ;vIn)rPw|YlPJDC+fV${-yjwQ;wFll
zUhuE3qj*~&E~nTw5a&{y{k)&}8H#5F;sX@Fc+S5%k>Z#@yoF-xK)jaXbN}%ZUrh1z
zKrE#A=`8<hABrV`cpSw80`V}4&pzuXPN$d`h{+T;JmX*eIRfz}h~D5&cO!n7DX*GN
zykFX_$jaM`#HaR4kB)ztOQB_(^EhISy^tjz5p?wtALAU%^LU%>wCZTZ7+E!)nl)0+
ztt~mi!K?kJRrRWNfH)B+qf;?V)AyDwCnVmAKPk&$dU*@<)T|=;Eg!PNOR2pH8*vGP
zl}vt9bc+l)`K1bcfYcKKA7YjpFm)1tM81^G$C*=|_#CB0tQa7t1t562H$DR}Ro$Gs
zI$AlKtDu~Cff@oYV^z%1q<f#%Zc|@Dsi=xpR5G0|ZuIrK)M)uNa%Pfb6McOn&I}Z+
zrFc{QVNQ9~W_h{(_zSpP7pry3H{s;2w$TaIoF6LR)jC>P3eCH(ZD`GR@8hc@=i-|m
znorEu46})OL=z)lU7>c5EvG_UYnHontD`Po!A%H7CnlOu&;*^JN9sym*o{(VcyBCH
z5SV<Z$eN<L#ejQKR-Fig$okZ*^&&i?iS7v4IhyEV61_+heS21VA@mtm2=X$#%K~hu
zm&w<AV>aUvg%u;lBPtVBS&yjf1JyVafxP8i=@nUHq=seEY*H3U6Rwb?m*?zJA4bSS
z9aYZx9iM<yh6WyNGt=imv3(vj(I#5)D5sBDI~8CR_nIa-NpmP)UIX*^Tth~Z7p+p<
zfv$vILgg^KoT}-fQKL$vbwGQKv|@>mq?ihfv$#X|s)?#NO|%ZT*zexa7TfTaT?W$*
z#I`f5)%RiW^~7k!cqy}KHx;_fct3o?CTVpZip>vEWZ=^l1DS_veVjnTciN?%$P)xr
z%0k>T$G?Z4c^dd9&H$e?7Zh5rg=p~RUEw3L)=#6SvaEie+OMALQ*9W$R9amUujud2
zH#K<6vpk~9hPU^4V+656+clN;KToWwlV(NAdBrf~3T4RrWH_dXz0zIUj`vmJAS2-=
z8=IteE^J7urJ|}NV_!{x8YIZYm+OUSt*5FkR&gYORXpbpn$1Dc@pF_bYagwcK&<jz
z9io*>eq(i*+BPx1WpAl!fE&k4K=E~{14#V{$2|+pldlD(GwY;{X@p(3CRkICwoq3v
z>QvVW+LYzd;OnMpU-wr%+6d**E(x#&6B=U@|F3y8dTDrEXeDmYGK9t+ZPX6KqkZ*%
z@o0Zc{*jCK*@7)UWm@^qaOPrOss-0XE1#74cGG2;HVG%Ex*9k+Z!0oX9Tn<iqO>#9
zZR|7C#ld|jklcq4=~cG=>lwdLV`N<V*E22-?nB0MA2P0Bzk`oqwP1HU*m3(M(|8B(
z+tN+r^nTL4p>)=R#lACW-<I3@W79rBo8SM_&U&yi?N{e0reM%)E->xPziQgzGR3t2
zyt96It6|#zm(F@$-e_MQZ(rx(soF&=FQE7O<HoXc;s4%PR`~Y>jpe_xnD&<%OU>(s
z&HfLKWlC_L*;r2h>lu$*VPyP2G?p`i`^?7j>R)fAAL?c<E?botu_?mhPBg(<He2^>
zw40$>V;uK<36UjL?$W4xBC~-{9mBXwlE%?2eb0YxDt&z&5#kr6J24$(B6?LlX%F<)
zi*%rKdsb>88Y8_Hn*>se&z2|@pJwxFHNSbhFp^f22z>VC!5Ak?D1k8u3b05Ayx4xo
ztQZ(Dt8A}0z((sE>F`5tr_niJP*suJ#7peU&n6n|Q06vA=T^+7yhw-Fw<EW|>D<JR
zz|(=8LVSD@1XhVKh@ZV0#4`T1{!y_leuTxU0|<piWt@UW!A?LtOfPzvJZ2#I>*0W8
zuZ9Cdk-ZuV{4YIc@1G3!vIGNzeKr3-aU)H}2!Dcuf;Adb{IOGMyHs(3m;g~A`1)(+
z<b7K0-<N1=LA2LIX}fRPXGlE%IUh7=H{#6`V?cyYVG+|lL*lCi@&A8Fe8Z1_7838v
zqjGHJ{p-I*!4~{=mQPCDSIyCy+!|ZwV6tHRrEHDh>1D#fpUl#*iOAgQ!{_KIh*J<t
z;GWn3GI{?DxlhkyOc!CQ2AwJ&(qh{XaAcAxnNG^e)|uz<==S{la&87tK1_`(=)>F!
zxnF#k_enc$20#;v&P(D*X@cbBt6!0|L(3|simW6eqYaBjP%~A_Gnfu?y5t<WN^(|X
z9hEc35bh*}hd4Lg`{@v!^GbYh4Av^63mp~K|L{Z5G@Dv&3=={XLVEqZ2!5T|()u@%
z-Un&;VPB2WA6eH={2udKrK>QnbqszPpHREXiMQ&4=o%BF6<M<gF7sRC*ol;FUeChC
zUdXDILh2(O8fCiTvzQKL*&-)a;S;;~N}L*^C&?v!PuX%pEpuXuA&<%75M>~}LksC%
z-^Kn=eMys)-qKH)mH0m2Lx5EdA;zfS3>IEQ8xdW!|5VtRAM(oe?U~Hip?{a*2V6QD
z2Aw;`RP0XW#yMG~QoS;lb34DufQcM0{k=c~Oz98;U<`Z#F~W&)zDzr5l&hFucB7Gh
z{H}kO+<>&h_<?ASNJ$aO)R-dzF^m?1#B_%H#8gxjzZLyQRkXDlHSkEo<WUUvEoCM+
zh32p*t4faJYWcarEsl#n-nT#RhT+_R%PJ{tm=NA+AMDy2PsxHfm3Kh{kfExplqXbm
zaU_ag>Aa3IvpVo=B!6Y{7Yfao*VUsM2szx?(hCSl-b>#lyjQ4sXiKV}hmOiyvl8Yy
z6u%5}ZT!9Nel)VO%}T-Rp)tw`b5LwxO0q??TxB##@igz;_7ewTk|xH<nMbl_Kr1yh
z3Psbs<KJPyHI-dx<k5LZ%~{G8OIbP;k%5HU^Mgs*NlxxB(aLdRytF(ZjKs(LPCxR<
zqzW|Qv{UdynMVvPf`e3KmgK!Xj(LzH+%OC`JeP4e(&0;rW%4daX%sZ7SZX}&#Y_95
zqQ;~m{Hauqh?Al*2lh2dRe1HzmXJ{$g;c@Gj;Gx!_u%u_?wAbT_Ylj7<jR3LsIN)7
z+)gHSfZZ2mt527YOsC00n4`v);z{S|IEih+o{RLNz-C!c{n~*-fK_PA@|i5J8|IYP
zwBh+GQHFI?w!9R-;StcGXbT+q157ja1?3sI<_!}WNot(fhWa8pDW(Q(UVph%Q~#^D
zLrk5zkvscwgO+&R$hL=$kl*RvBiL{k-5-~~Y;!11p(fl&uj5g9OzHh_lzeIOpUYus
zPl}}({xCmligJdpanotp<}J{P&d}o#ll^jpt~=zsYAI4l0^Q~##f?-A>_*0fZ#(51
zG2^|neYA2-glPW6m_OI6Czh!vT#_Q(tC_8!GQ{QH!W+wXBu6WX_zMcu849eI-(p0Q
zbj7jnxnPwKp`1{jLzCNEOEyJAZbeJFi$=XBTKPDDqw}2hP8<e-8Rc!&rP0b9Hns9y
zsnLoUY+jWkBU<r=WLTj_8qnK2SYBaC4Ny8UIyY_n-?fcDD(`iaN=n<f2Y|Hlnu~oa
zFS(u8smeejmmu6pkEhL4Nzn9)GAmb=<S-e62i&g=TJnj}peu9_t?Q?3IjhY#Gv4C0
z*i19~C@{O7*mDLOYw!~>d+#fCvVM%7NEMypD3fkHaeO=()IgCuoD`SWsqP<{P^e>;
zH~$IM(}UEs-MgfeEK9cEQgf(wJgs&}P;Pjmpj8TSD$EEi#0=_}ua#cMVkqT67&?nQ
zskEs&49kO-`TQtQr)3vv<qkHKdv9l;T%NC-qm(<bk#e(;E3W*Ra!lqu`<-HR9qgr9
zbixq&NPP7=S^-1muV&H8RcLL7>QGb9XT^(<h4kdePCF8}Q|0-YirS&_B1mOGNxP|%
zm`Rb+USkNmH(g}2yWp=CfXTdX>iq&F*cBB^38GaT;lxG7DxPyYT`@?jxKQ5Fs8pPt
zsQnSXih?03zCYMjQIP(eV<z)X4^%AQl@hIZ7U!gOR{mS&nggSN+7cltT8C+!Yna^a
zbevCX#L&4#!YGC*oe3ZcAKFM^f%$WVnasP_3+0rfdrc?;DIxS_rCjUtG@&CNOEjlN
zJD|9#b99la;~S}zEBlAdrojBUa!lrJ{nl5`jr`P!9rr%`h#Oh`N0(v6Q$+j7FH5OC
z{NZ!@)sLypTW6;3hl}yZM;FST-d5;~TGz1G+OL7XBlzuIM@?XL0uwtEABm25#~&t8
zj6zerQ#!NHqWi`r_mo7Zmps+)^q$2A)#(1-l*NqqcUl1y9e!$bUh1~$W+g2dm83(X
zq-6`yMB(yVrB-iDeI1S-zuTs_SQDMU3WE*D9h%(Sar2W?xEg`r#yzW9MRIiB{un|b
zeT(Yo{A#+H^kt2{A08cF0VsTrIV17CYl&XzFQG`L5Oj^WShg4Jb3QO}{d)9F<@m}p
zT_>WMbCWBY;cv5wX0Iz{+qSOWl=_BJwqu7DA4lh}b=<<15gL3p^?`HtF}#XJ;Nmjm
zWCoM?o#^jRy&UWMzbk!vHU8##WmU0aEhW&<A-ejOx#K!QivwB$CWk|fg99#y!>54-
z*u$*|S)%jvvktDtg86(5Lt4~C=T`xuIfDd{u=b8oAiG%vmD3UGz~9iTyKPe|n#EI6
zQLc`xe9+eszf-;EI_-kNfPKweCTJ`^NbsORW^{gD^6=^^I8{wLnAZarhv$lnVxSYe
z%Nz0rnEDz@3R4Mw-2AK^DjrI04yDRAPo!?K7qUuuL_8!%SnhPnefI8!5#4<`g9dbM
zvv`i*uIEWLnk;HgKcB~`y~!2qAz)>Z=)5^H<}ZJ*S>D9rtiCYuqg&~~O{T#ZfqL!7
zsUqv5NNfd|@go5foi{YA@5F-<WF<$(4<;_+d{HU(xl_G6b>fg@Tx+I3#V!PZCQvab
zYjEDgn_yyt_c+@>LDIfX`IpU|<aLgF%N{3pdvx-LEQE{?{pLxdl|f!R#uO;KloJEv
z$wH1)9JIrzcujNy=5&*suB$nOC~~^K?LZ%$Pv^H;Cxacg_x{`*GJX<L7R0KY>K&;Q
zQ#!Eg995D(F~0*^-Wk6;+t=d)l&fpzB=2y_m;PRuyYvoNtcpNqh>}oDO?TYRI04o%
zIOt3<+$?39vgOoqSwXCpk<ah-hqD>R*7-G1e>+UT`>d4&$RDah-!zeGlvJ$_ugk%C
zD<unXsKv<rg<U`ssiAwx<Vi3ygGZc2BY^pN%jX(Zn8OS3;_PSKNN%bhsq2Ads&~dn
z)dQrHCuv4Zoa!CdQG8*LciLy?GjFc8Gw;rlcOnkPop3syqw|J;5KkdvDh^!S$m0DH
zc@L99c&q;%p7*PV2pPvLKy&#JeXepWiS{D?L<KyX^XN}{ad6rT-+Hfl2hW7W(_WE-
zSjW<_N8EgeQ@tt0iKlSqOKWMaMJx$AMc!4uJP)<hHp_cs4K}f%LQ|<c9vbm!Z?|Y6
zy8?O;79GntkOI0dnA4c<#^B!1Eu}mc&qsMq3LK?Xo>9lyzMOhw((t?$9WZ$SrH~^U
zW#DxW09eB!)8*QDDA#5HT#q^hHyE1ocHrTd1E^GQY=(AjEDN|}qVnaL%e*=Bfc$DB
z|2^vej(64nW4yK+k3~Yy;k4aWjrjKg)CvbyYV_20^jUC42aY}(e_I#RWgS@D5}Tx?
zIixScuRIo8e!)ShUpw2N-!8A}<;zv5NPXp?(Zpyc*9ZG&6DfDLFGh#DvqQ-vxIefn
zxK68qdP(TSjek~sMaREDvnt;V4X;N{q0Ug-sF=8uEsYLU=N-%;IZpch5l5|w{wTxj
zk20AKf7qtsCVNHao!55T(q_dlvmMDd^>+5wF!~7mU9yvm6Y|~>wi*~iHjE($?SdU7
zE*R&$`%=Z6C(VI5pB$L;J5nDKXOgr=_7ffNsq%rH>w$*y0g}#>bDb~ZT2Oh_zk|vH
zMju3|>N<2~G9$?J<;#np5s0YPM5H!usmrgXlk!_?7iNju;hg9gpMP0de8M?NRU-h1
zWHwJYCpnqwb-OOyIkjsqj?s;5Zsy;EPf+;N9@`HRZbrTaZg%@Uy{dHKCps^$9aREB
zzI;$4xjpyusU(KAyrcO|Tu9gt;)hxlKQyTL;bkfK3#!j_{bS_g>#;o-{9)|;((!a@
zvUkc~bKojQcB?(I2Qiz(!h8@}aVEbLVbRlY1Sb_xDkCAfN><-T2t}gvos{966nh0i
z_p0uQZe>E#A2+V<{z=2(oc<~$hI<bBn_~70mtsOsLZzvC)5Wr=dlf?)gd-z3bY*%h
zvtl-1<=!?6z^UE=yZyE>FKJeC$;|FmR5XKkVw};OlOiZ6T3#ydhw?Is2e<C^9A)@x
zX&jl|Kk?_~xC(qb`b&2-^t&Aj?0t)yDPyZKP3FXQ^BlGd?T)%z2&z<+AsnZkp%;8Z
zan{KA8LjZUFn&%77<S?Z!65VFm!=|l9v4SdIeKT&PQ5d*6N?O_BjTS0KUOZ<%KW8+
zQX_Oigfp%iLz^*Z4k=(QKh~o;C&6RI%_-*Ln2KW|j;-o@GuCiB{n(5QaN}b!N0`N^
zDX5grwvnM)LpR|8i_Od(O#)7W!8WB~4bxQ4k}0SgCQ&PEV~Uh}st)_6s@TJglrHI{
z2zUJ?j3FKxp_&j_W`_zgkT>0u8yR@5Z;FwuZvH?kurO%qb!xLmh!IoF!5msg=8;<)
zt;AXZDioSx#XVjCTs`@Tb;BA_PfuXQwc(d7XM2#Hzl_URw4(as!P5f7uu1jHF<-)A
za&m12tXM{6oEBZ99=F7_e-%>kpI#l1JQ`!Wk+E-5y`?4Crq~b0L)}`Cu`1ljB~7K8
zp3Q4~J8f0mmK*utE4mdj5WhkuSYvJF5$;s5wlKK%Z@K2Bz63w>3z`BvMZzB-J{omB
z`jTw=TCmMOtmMGO?rd9}t9#CpHf$ulSU$S_OgPzW<zyf6TNt&G06|}j=jAmz<(0k&
zJ#I_%1$0~qecXzy9Ga!9e?5$WI)*q!;GRPqhex<5bzCI71VOapT1zV{HZa!4(h5w3
zBM+k_CD%A)4;O|BB%Q;W4g|##5m#z<NCgC|G+$r~x>}`CnK|y9#z_|WNl;CqSJ`r^
zt7xh88!U|)m8^G!V{kF)NzP_-qsW8&ftWKsv~?@A`m5r_ty9njhs9eV1obzo!I80%
z^xx(?0JZq!QC;-w9o0B<l1zptx^{o}Z-t&D#{!|0uR`yy^cO!BPo#$JS8_Tg$jJ|y
z_-=-Uj=sMR$LRc`oZ%=+<=wafAMQr}R?evp)0OVUj07F&=8?*gO6!J!aj&6!QL>Y}
zE_!zgZg;9TVpgMP<YxAbJz&1Kr>5q|BR%`~P3n(cqp}Ktw6O^$6<n%a0Qu2*1#SCD
zRCh1ZETMw=(fI{A!~3&?8G&=%_x5KG16N&$Cbk|4`eO^v-wO6FEsTB1rSge5Rgk+Y
z>e5*ZjCWj9=w6vzko(_pxlZ+$DbOdQ(7iqb`t+QcPkpwP>{l2YnvvSD2yVVG_G3Y8
zWnpZ+*Xx7bdkbS*uyoS!R3RGibf6UiegTf?MeEB*PAlC$QPax77RIhZxbcqWC!2<%
z9BiR`Ioy`N*Fk9siZ<N{irDW2bRZ22RS08|EHTh#mi2wnjH2^yX`8q0E%X(G&@Br)
zbb+;0NpGDXTPO67t?pO0aW59dhWFdPbniH<b0K|q^bV2kqPJP8vI=|fzm2X@Y7}*=
zHqJ-q-Hc3EB2)J7Z|W*J9hp@3E34C)R5O!8T<^XO*}&k@fiKdvQ^ne;DvYh6@r)_R
z-4b<ILgRDdt==lc1XMxp(s6mTm_oPHx{=u+xns-xc$d`E`zE2HTBi1|{E9VH*fO<Y
zffL&)HMG1iR^#2jjx|*0#NKasybv@9U9gE6q{HoWW+`h3{h)YP+AUpIMj^yZ?`SEn
z?2(l&5NjfZZV_roKP-U0a|AnVRTUZ=RU_EwBT%nn>d&NSL&l}dF!1wOsu-F|KgAdc
zx2W2IrQkPhlPt)EDOy06F-i9k60=KGAu*T=fp|kUcERU(73bjgxWwxI(jXLPS2Ihn
zkbyWt%%t$>wp+FfJrjBn?^b!WBQ^57OynsOIj~_A<|-=X4f+}VVPtYYO!?wmI%W?4
zN$*-E;G(nS<F-5I-+EC?y<K9G-co|~P@Vq_9?^l$!jUf`N;qjK&TEbRE4WtK)Oc^M
zft!x)Xt>)+{=DLEFzB;$`bX!l>7QJKL)8Fy*$G_$F`#Sh0Qat>q%C_3wr}8n)jRtZ
zRBviNp!1ru+};Ni##YwfjQ;)2UdX=wEUt_szhALmbp9<lfcz*w`Tgkpz4Q|kxY$<M
z^`rXF5!o)0)X(Bqq1!gvuc8^UTvZr*e*l7l3FsBo^=sHasx?+}=(Q4!Yy37`-%YOT
z>UMiB9!pE?;rj})L<z=*!V+g(Z?rr=7=tg>)>4m=3pB6B)bRY(^}``76czjPH0lmb
z`tu|FD9VkTCs{Fs*m1E;S8v?4gR|Bj%Yp5G8!ZCu-;G?@#vi)$R<jgypFvm7mo!-Y
zcO6Gu(trP(V}Y{GQn%>8rLNI`^QZ%)>8xsWyjAK{qpo}xY0_Oe4a4ZlqZMbuc~CL$
zur0_BMy>`J+nCNDU~GWUeO33hG-AK?jAYAWyXyW)_iYWG`C!nP0(US7ltmCdwur5y
z1@azLeqKspF2)+?0?o;NJ6b+PvX*@+dXR#SBHrp?dIRc7FCy(@s_YK}yE4}gkGKth
zR?#uvjMhjR%zk?YWLBuq!{LnNyc9DBP^y#{_g2-*(<Q7?B$Os1enP^*R#-~+AG%1B
z@elxzZ^IG-C>2#8Bw)BF)f>Yu-w%Y8dk6xd58*leK!{bvK&VlY*K`tWs7VJspi@_P
z*>cuDLTXhE25h<z^`*2FUHj<Uz8OsW3NpRiMidtyCZrK15MNr+3=OXS5F4qtjnw{6
zkb=<9jwEk;UzeKZ51kds;-xXZB@IG$Up`w0;xK#GB!YZ&t%6`>U<A8J$F5Dn$P%3{
z!NwewG(pFCI>|&uaASVG1>2<Ic76(N@_P6qb3!1|KF#^ioJR9UD$GwQ9w*JJW^<xh
z6%UCg(MZ_L(0!oMz22a%{?+*<9r*zykKL1#m^YH<z|$B~sF|duXS}nYM5*>M9~vG1
zFk3{^IZVGimx;#ydr8oS*q^#ZdmEZNdskzs|MmkAiQjx)bY92SrMr(S`Oew96emWX
z;&iQbu<1|Fe09bOTne`Nu=_{&CZilR4XX8pFAgR~AKogJk);mq6VTp4=kM2vRUf0y
zh3**bUe7TI|A6GogsVFc!>)K9Shps1;f^2J5_sm{(tOYSWQt5G9fBMi9`v&_##bEg
z4gSOY+LRm&S9HSg|0I<<F7k{{L(8LD<y-~C{8u8|twFZOsBE8}fo$(J$8%zDC$O#j
zVHrnXg^9e@B}b#AIULa(f{1zha25)ojN&}dfip%8-yr>g(aP6Z^Ts{P{_LK1l1DE;
zkNf^C{Xw=)SN>W0_ICOc|2VxHS^Gm!i66D{EAg{tQi&Hn4zqcMGlL0xL5)mTo$GHb
zdf8@=2XwA=Ji7XbKq?8G^B+A*Dt^=Ny5s5$|2lnjqIcbblnIl=vvQ@pRr|di@|%6c
zSLrwl^Gs)zj0v2cN*p-uhu-ypW%r`e#n*#fN2B!D2I;l>Wy@JA8ry5%2lQkF^t_oY
z^ql+{=-EViY<?yxemc_V$~G(IUr<9|@WYZa(9AUW$qwab3^wZe(FfVI_?bZ%%@64%
zA#jiI&03JIIztN?-s|#6HYc<YicI9q=rJ$|_Md+U$h+j7M6Qw!>8UG|Qcv>7u*9gy
zqk~&?@yeF7)a38x%>jSw_w&u`jwIo4J7#U_mp0}Pxp9;t@!RdpuWa)$Da8va{0D`D
zDTBgN9Qlu`O~mh}Cf2hiQJ4`-5v;nv#K<XOSW5m2$gs`yr?)hQW_u)W^VuGwg>)~s
z6Hdc4;Ybq%X9k#we)KnO_R)Ddl+uAS<1jG}ltzrEDbdwIi_uAO3rX+^VBIKt3#xOn
zz6HIu$CQYQgub%nWR+D^`(02)SO3kgqECL8{$tR?sG`fHiUMEGABI1u$jT1t>w4x;
zwplWOODGc6^btgpIiF|}*R;MWvDw!*dFp4?m)~+q6^be~em8O}{d^2vU#xejFK=Et
z2@vn0srREMW#|EE7wMMAsA&wtTV~1n@g%!Nx}N;~vB7<vgBGik;ubL%RH;}B>PJeE
zu!bMBg`$4eQ&H59&{npbEV6!b>Vx{}8S(4q)ICx^a~?$f{QHmUNBX~)sP-TAe{D)`
z1l3%fEFL10Y<hC7Bv+P4WWEd`N`EJwvc~Va)?Y?tI9-IsAkm2GqB+@B)9^J`={QG?
z)rh5#F-P67Kn8*hPkWO$Q+X8a0xu}qb18n&hW#c*+b|tP>!D+oguO9-xaJSb(yrtf
zvq$c()ojv>Yc<`-``-py^a!;0c(-VAKD1~kGwhxD|8cz3TH>WVvXX5DF8@sA^J#Ox
zv^S}I8XowAc<GPx>#(o<wto|p>-HeOW-7ni{_pv<DQScFOlsXO--JYd9fSPtRm1uH
z{~*8U_y_;oJ}>s|GvBw*6JqPiHpy(>_GNp=m9*|&)tGWM36Yl*onMn&%iUGE)uUTE
zU27UXRF?R<SNxr}#J9f=xEk5aubU5diVY0BAC`EQ5j~s!PukZHf2x19l56I=40tC1
zgng95ZgJO{EpGVGKWT9?>B91^*X3O{y1UbLz2n};Stn=v$NaB)S6|F4H+MR(bCNeS
zOjENn#VDS)&6Dz8R<B8!_f<g3b;&*{)jK57Dbqm8R^Rhj?K3+5Tg3<305`2*Oab?h
z&qZ<WSASkE?r0XRxKsUVUUC?G!L#?PNueUH@eG!YD~PzUl|#0?V8mDR;y$*#EPIr9
z`U~mYTS-GeKa43!?}~e@*(zKp;)TI%nHt=U^n2LM8w(=v!^Y)z9^Ch3ulrOG!B?l6
z9b_Xu%IVq5H#_7bk9_3mAzLO^8nT9|ez4YvsLGc3{UFzAE33w~q(XTh!;y`UMOd`U
z!=t;su*f*}D-H)U;%%3ydE-`D-lLz|gJT)e1e*b29}YGHR;Q8()QmslPjMKD9HC~5
ziZ5lYfhkP##tW-ca2XM%EKVbjn4bsxgX1t<s=0_J;`fz01`+@SM6)!fst7WITIa-2
zt9O2=RVA`$G?KM92B;<IZe+RL$qDGHT*XZ!=VH<dlj2x82+9FhBs0*QA%~&>!L!fx
zr!q7lNPTx2c;&sQt6``so<mvG;vn`nB<c&}n^`LOT+K?u!*60wcsPqkR~@xFSbJBY
zTGI-w!lqk4kg4OH+<S15bns3d6&!&zpbV~*4|DdSO7-I#D8mRR_A#HRblXVk!Kmhu
zsOFEO<uZyzv9L7vq0|NWd-Y?xs_~GtvCn2?Vp2~c8Tq5986^<m8uciW6jSqf65uFs
z#7SQM%ZYhB3@D~b^n%i=xj$cP=s`kZI~=1Wapu~e$17#o6Vc8ARhkwf#%+|OL7P72
z@f<K9^LWBN9v%ePGJRemrN46C%lt|lR%{CDzO8PjiTY-L&iM#b3R`@_SLs5*TZpN!
zA>fxxjz~c>yrWn)lsl8A2dm=@o0wkUJG{2YG-N)a73XiuHv{o{xFh6=_RPD1Gpzm~
z*1OCAjcui-gffeN<WlW~_jsl0oKS10@{?%ACAf%r2}~(fJGmRi;=$Io$)&q8M@36_
zol@Mgbl2g<k<wk`O6uex`Wzzhty-`v_XrBP8=~d^#E<B_9?5y7zn>DVY$c~*cZ^4)
z^NN#s{_tq!uPk;~wBE$VRcwxJoACycB{BbHcqDG@q0#cza$oN@d8K;~FWw)2hn8%@
z)rQab$ecTyFp@Spp^m@1e(uD!JKM26_xHX|=g*zw57pE-9wj{xt1C|ICz|#x-PhJ{
zWD7<^K%EU`_<1`j4l8&L`9s5pC9}@d&euC<CoC8X+L8+C1-fAtX$Ok3Um($bGv8PJ
z3|eO)>zgk+s9amzNgBNxH^2s`KxNcEtFC<cU@W)Wj!&n6_4+Bi)J<ZC_iU8IUFz_Q
zI&5}foFAd#=uX74&*=DXSQX`)VT;$Jl&}{^d!TG~mLo(JbR;8{AF4ANT#tpmA7cB2
z6PhGrYLpCqJ?KKB?r`Sdw#@@W>#&ZoEn0E5oayuP`Sj`-U$eL|J@k+FSQl;0puch(
z-SHi8$KW(Ne-zyD%2d_`f!Md)PI_f=m0Ohno*sSu8{{-c)(@li{>>rQypz;=EjLE8
zVl!B=XjUnzk9hHY?c-P@TxG#J1o)mVsr^UB+2i9f?#i!Dch-0uhD)#GMkXJicE5RD
zu2-9U;QFPjgQ|L25~I@vfJ2#ON}$UBjq1~T`QimREOR#656gTb%8UsVvkS^0D*kX@
z1=q&-Hc{Ud4wlQz^{>%z-N>b%1aZ}gJB~t$X?EBAD0Z<a4oldRumoig341{QRHyo<
zPgp@%+@i`DYzrH%KB71^IM09Vqv$7_+C~Pp<@$XTnW|8|l&p}tX*<tV-ML2$(6j|d
zyyWK}?5pHlJg<mDW1eSqfy>0Bgh<c)g9$n+U|8kOz$*1P9Pj!96l(xajz`^ZB)LC5
zqM!edcU(#Xo_w2hS6uw^H9>9@c}Jj)-q;nNqD%yO$!qUZ5r7_4j5%Jt7>D$7A8biV
zq)W+Oc}#s<W`mRp*@1J>uX@1h^xide9AZW3PP{b8rB<CT-_fDup~Ss-$`UzEkuoWY
zB#=U9(oo^Vb&X+72?>^Q5K~=W0Xy;5$6yJ~RflENKlTpMie!FlK0X};6Udb1z!$RA
zjzV?R-inhboa5?+B>YEf$iwfZ*3fdUwg#l;Tm}C{@j!Vg5x_&XWTGZ<czz1b^Eg8v
zUuHVoTZJS4F{c`yv)8nq#ZFu?I#(s7X%WI(b-(}M`6Cb)5QQt&u6ns0wml-G7{k3Z
zRrQzP`v`>~j`2Z3`3k&GWsX$f0QW*TTs7TX2+BEw(l1t35PQ2I_Nf#5B~c~5v;MF!
z_FVykEq=L(n`USSg|VmAY&P5-`#$c`Suf}DRskIG3`Q1~sHUm~viNCmM*dd0v(O4A
zW##dv_`$rd7k|1vC$;0VTRpIdjrmrA#4}uMHR;|Hd$)lQcrSSqMe)&`a~c<zGK@}C
z2)22s_vX~^QJ$oS;G+9-VPJwQrZrXN3s0Kv-P2lcY?Sv+z!F3`2BB&XNB6aSRt7oh
zsVVR$g+-OuvC!a=8Z;cs4L&n)1{;^~+-yN?eL?J}!q{3YP{rOOvkF*m3?ZizFcd3{
z7v&Yk2lpz>T^lV=CdqEw^9IJV)*1FWpz^EY%mL`tnis;44MS$w!*Eqr^6-Au%h8KJ
zt#^y*4V>tUs;Cz@Um(XxSvf2cDk~eui9@sQD2%InXd{Fh$bP3EJDzCycNpCbj1O9u
z+CMsPNc(=}UmjLazWbnPg@f}nfJ~$>j2(*|s#mdrPtB4Cp5x8-*0N&Kxp8+5b`?;#
z1FvDg2RSCGX>lZ_UR;8wUgVQ{)vsVpArXPucf1#!cTsy}>y+>APy+jo)V9&j^#Oq;
zU<U}>K<wdF?$Nfv{pIj|cW+}OWMdRCy`7onm%$TmT7_V>(i=AbD7lIq#G?KN*SC_8
z7^$(J!q0h<dR$rpf7~TiDR(tDHQ@05?xVE|;?kkhginDcdmP}oC!~W$TGq?V0d%HQ
zFL+EckSD)spn9u(y7v{Hk6?KOOm_5YXOAbP?mn66L8oAV&KZK)V;Og?km3Qjfks)y
z-`IG32irb5FQ~4IoE0nFFa508p#AWK^}jmxO*+TzxZgSMRr{slx$$HD`Zz1rYQM8$
zL-)g@8K_R4C66%b!WbUR`n|pdhcev3^#x}!kuB-;-bYAT82i@2p1bAvDVwg}=VrV|
z^yItm?Df`TH`48{Ot8Qx(>GSIAn_?TcVUMYXDXZm&Q#z%RP+Wpg@`+`!;71oedpr$
zY8n>I>>wkW8K0H<-^Dd_TDY1)26t7@(X|k=vHHIb^9<Qot@5m|6s)ux1Pf;6?@^c5
z%h3=*mrQT6pvYXpAgZr#ZjgasWJ`L&%EU~4D@)ks_pK7P3G+&-e;BuV^WUcRr)1S1
zqJW+?fK)@#&MpD;bR(dkUM0P@l_pK}aPEF`BWD`;si<hSL2&_z=J4xIqd`h@cnb-&
zGr(#v??Um_4XVCpu#Sl29rY_cfv~1JWXIK;HrOK@;nBw!bxR+K?zEJA;Gg!F6PePt
z2)4eK$Wpbw+USG_1!t13Z{3s-meG%?)<@S8w7%i5sn(|&smhBcDy<QXSY_tJAp9Y`
z+BQ3`KOZ!3Z^1j|Fg6gS7G=$Vo=&WH%>w8IE&s$ZzJTXI(KWWNp`D^@WE3oJFEIk}
zdf<@*QU;?+%u;DZ;Pprj%SMIk|HXjKO{;#3c&4o)YS)JPH8!CU32<m#K98WbezADz
zNPceyy?*VePzgHrl+(d7&nei+&icV1Zw54g3Oe>GTb>Dd8T+hRIM41Z30xGy0eaVb
zp=uu%CBw>6UZJ9UYuVOux=|O3a?Jn;duO;N)w|KdRS_A9rT5bgg*~3+2u+B~A{_^Q
zvD3KzNE~D9F?=qJtuAD5{d@fqY_;l-_u&qJ4=apqbYefVO-v+k>^*wB%2juCCl5U3
z4`b-g2aC=s!YYWZ0et`NpY-qkRsDP*=1)|7G^WElV4VzY_EU!`Yem|52g2Jdy!MhK
zoU0t;{Zk`Z7ZTrIjh+_qE%$SAh?B}AhB!Rx_P|0j>SQm?e+;k~>*8{wWx=DL(~Sz$
zWfKUkr{V|x0EZGeb3BYPP6v!^&1;M4iGdtVB6O%r>KDDYD!;`_ZW(uP1`UPreu!)e
z5ZNq?md^!Fp__8?z<As0D1u_DH2{+ahYoOuAgWPsEJIXt9)p^taQ&)LvG-!qLa@&s
zvmkd_$zA@IaPAhL!HcMeDLCd$oRc*{WOk?Mi>Nyr4K{-#R(KGr>2ySR2&yEH*QJm_
z*%F-w>y(f83Kr54n^E2jo`>E1O%Hs86X~>kJ3wCE6?pYr;KXLo9DFA>i$Y?muiXm?
zz9k)sA+eOMA<h9bx@FVzLA#oc!pYR1)Op!*n!vKW3d~E$Y!zypZJz&F<Ll*UZ7w-=
zmd+kYYa}6)w!06lhLz05L(ic|)S(+RWK!`Su4-UHus0UljDtcm<Dk%zbE43hx&*8U
zj87A;RC)wxnkS6;FTV^tiWeB?B;9!+P+<KUWXY|Gtmf)l(CA1O8=c7&d=pPMIqzG0
z_igpF(ayYP?@MdE?l!c>QNgY~7FH%&4unVju^*jcA!lXK+b>h=yFcies>bsZoKGEz
zxvET>LWbk=k2r8Q?OEdF)|4E_6FE){v)6+}L+0hCP1M=+Vm7c~-dT=^e3=lv^MAH;
zPqHM9bUIi4PWP4_FPny6xE1P;hT&?h41W^Lmn>1vWCpW@GnvjKoQWLK4A>6i&ar%I
zqdil)X%F=1gOun=+;+!G<`S2qGx28Qb9Ss^>6S9tnaHDu3#A?uloW4;{yvTN`7U2*
zgT4TOKaV!otY8#UHZaUc@J0RDA2`ZavzpnwFjABu1>W_C;0CY=ZlyC(ZUm1ls_EBd
zV{gX1+6E_nM~;*GQAq>nTYVx6BTQbl&1aG!KCZp^i#mbqi;?}nPt^n{rn1;oy6q<O
zI^PJDj{;(r2<_x$Y7CPT_VnBZo@xJW9j3F~w6R0j2m7-t{%lLajf_E>iz+jb1`A13
z2CLw243Lo_VgNNdkGGrG8ZSt}13vP~SH6U*wd0P2soa7zLDTu@S>Mmddjc4Aku=gI
zeFW+YpC!ml@_H>+jTl_Q@{YzAeUK0}qjHP&%YLihu_zUMV`RnqM<rp9e<t0i*hNvg
zRNEk&0%z*kdZ{!7#2NhI-HN}!gE9Dc>G8<c^uD0umK>~Q-Q;6Av3@z=^pq1=A7Tsd
z|4RCO<3fEL`g2epG>0W0tNIXY<GsKC#QMO>4cW(wSU^~KeJJg{L%A6<jvK!&|Nm&a
z68Na9s~<1}0SPl~5*2jR2yty(0Z|MRWx${T6#`m~wZ({7qa=U`8cYI=!&9tO5v`)O
z?g~{uz&!!VrXq^U;)ZDTjX{f20de8`|Ic0Cn<WXfmY?Rmd3QVeJ@?*o?<LLADE(2A
zDCB;3`A%GYC2oG;5vg}c<>bceR0To5TlFPJ;7TLX04gi2oWRphnSFv+9If^VLaPL0
zCvb;N8>rI=pVIS6n|6$(xy!~w&kwa`%Gw}L7h<3z^q^A&o%B`j+}R=nC)AvN;0e1q
z{nKaZWEZXG`Pcho{T}C<a(+FWXtTI#8mz(Lc96>%%1qE}1pUnXU-hoem6w5GZ_+=6
z>_XdCGWw*D*_0$g+NiJ>Lvv^`LJ+G0zip#=3B0Kp4%rU$FH+18xnC-JIDzB;L3KiX
zPT+_wX1=)3MjCE>3VEsDe`-<>mQ;6kCFm9O?4lu<XCDQB9Kqfw{<kpA$^NP@jdy+J
z1wQO(9Vig)6imnoc9;?AB;J1#nrSF92nr)*8f20mh^(OaY0mdO*HGcpqeNnyK;AM-
zh2t!qCvA}K>!}Lh+0(-_2|rm^NXy@f%Yj>ajoXPn+-Tf|bDz#4|G_y(L&O31bUboG
z=hV&zdevY9dJhBoHA^k%w`?{nnz&v-|8^WeFY-Va7O_E?rh*(aS`owxJ7ZiI1hR%O
zN8GT}Fj7A~e4UzH26`+1`CZJw!G9L#16>~HM%d-?DGu_>dY;A_(_awMYL*1(Z+P){
zorAUN_HoP{qK~XOj#b0fMI_hIuI3J(+7fi0C%gj{?8cRlNJQpjRXzr@!=j2K6T7Y;
z(&xLN(}8_$tQ<Nq5v$zWgVhJJVrXfEBTE`zPLmeL+I?b8&ucFkZ%nsuSF)tRKJN#s
z-;`-6bF!z}4HwJYF2cn=XR@h6x(K~t45YRjS?kcS7bc-5HR;%Akc4Pf%mHTeP=LV*
zv(>0;(NHXaEy?0<nLvPpsh;=gf@;~zjN(9m3IujAJYg*@Ff1vA4G5nO3n(ip6|m5C
zSVN|wz{RMLWsC>`n1_sBP==u|Q2X{pLmgB%gVn(>VWmd72(b%SXNuv)Z{<*8X!@!x
zf{LXGuamffVgz;(RUHs=iU5nfKZHQB5o0FwL^DHxA1-Gx$RlpMh}zU;lss|Z+_}#i
zu%wTNG}pElS{ixKK^}U~u%EQs2!IXs&}S(F0DdQ4yZ8iBu(@2-1IUVs=%sRXtI#F-
zNp$XFQVLokt=m>Z{ONC%AN;Mdn<v`psb@AZbq1;3Xt>yx6II}6X(S43Ep(Q#+0VCG
z76xk<lhpu{05ssp2ANot9}Dm!ej>=ODT(&9(ppM_!3$ncjfhF8aiBkTyIDDPPj5G?
z5~_%aMkI_3Xb*|RCZqRpE(430fWC5KL~S%<?%<+{nQ~x+(n&Q~DT)omV)^+6MSa!;
zt7ShOFe>1fROx0#Zb|=G<~F5Sr{}tdFZS`dfKBAlb*w&)dTs=qyRF%H?2@*bs4h3w
z4r=hcVhN^#q)*wX@BUL8e6)|@SJ4FmvWa9;tA|0TXjn5!guu^HCIo#dnkO0c^cF_o
zi%Btnp(@bP?tMN{%q@w(CMqgUCOwo2dQcpAhp~2V^z%K#SPB4WtWdesph5x|l`Lse
zC6BR1{3<z4t0YnLt7J(!l?*nglCAaCgIL0(J4lrb3Q1B_ax*F8CnZ1lmBVEQK+5mL
zOMXNC^Qn?$REcs@#GS1#Ftklp^raxcZ(3`}T%vWTOzDs~su-rYFJNI@lQ~%18iZ(g
zi^Q%%i?J-}8_>Qebrec+ufFclNY7dV=9eCR@PebvIhp3E2JZ1v(i=L-;IYPZ(!UF^
z2A*kS`5Lp1jpcXCUK9V|a`hOc9v7&`%U8o`XpN1pDgD3rb1K9#<xCCo8RlxG-eA{j
zl~GlUPll06_S6mV1jjIql65MWw;)DP1z_x0jBl#-nHyr>@IBPR{f3Ig9?E!qIu~jb
zKiGY9rLU#u8fLRP*dSA#`}G*0(;GxKZjI;92tGGbEED4=(Ofw?!~p~wy&DZb5DVd2
zIGK4F3p-cMU`a?Fvy>>u5^s<z0PP-BY7Uvl;-yqEL+L+Hv56WNAEO&R%7?P+1&-24
zY_7^GaV;n3?pengM5JNs>V;Ypg<2X0qzWBaMabPY!wPZ*?1gH34&@V6_qB}{WjrZ;
z+8rvxB?P~l4QBw_VLIiv>1x!RGQOf36O19%<SPorq8Xy#2=VlAgpOwBl93tikyHxJ
zNK9WDBDzDa0)NV2Pg42g6y`2a&St#|Mi5Pdv$>KOIqIpsESf%AXoZWXYnz#s7fF?%
zir~UxI+JFV6ai|rN3mvS)E+FE27}Y~<FD%7ICT043_I|4P_X7->aA07`c;S=#<vc^
znm@D0sovc&SR?adyv(qcfmGPqaAI)L$P-7i>Q~eUgv5@_mk&?jgSmJT;ehJm$qfWh
zc^EKaZ>?3*EKUXV2{*E-v+^}YASXGU<&IyYGUm|kSFsMT1|r4t5?~}Z^9w|c3viGR
zIDBrQE-{fjG3HG~m%D{%RUzJC_aoRD@+ptY(ZiH++J;0lpb0;98Tr7Wg51i5Sp#(|
z7X-natPLw!>Bj^{xKT{ny=@fOhY8S1g9*fmm~4`&HQIs<^^$Hv0w$gI7896BVkpj~
zh?d4se^0@@vF}t2_h&mVSG{Y$V9h&1ITi0f!n+^YbO2nMK(Zw^3A}{Osn_>h5V&OO
zlYvTfQ0G<pVr%GQQ^Mf(*ZIVrK*VO}R<UZ46Y<wD!6Al(#6-}DPb`+>hy@Xg_|@#V
z{H-@=upxb3>rzjGD7s5+KA?xzrA3OU0i*HOu?TF1vW9cZjj>Ef{KOkZiGT)tA?-Vm
zJGa{;z)-ReByMGaZyL#u^~K<Z#QT8c6<AF3k(igIO*@1p#~Jk%%o7fqouSMQ_7~nD
zo=kB8;`9p`Xj^*`lVZgxnq524SR}$2aumjpYLQ6Ri0aiCa)HRyP{bYT#Rz}q#YpsL
zu9M83H~X0Uem+-ye_46A7#r6v!c>$51|Vh=5<uVTx3}0X38zys-N;T%MXQ&<B;t@m
zc>d<1F_CM<AB6gxD`kAK>Q4(zy1}bZcY9$Nfz`6}v0AnySRF-TQ7rRg-7U-kq(k7F
zVX>?ji)Cu13X5epvA92uEG_~w=P^qxb0aCiUL+wqKO|<Kg)dwpRZn%I2G`i;$@jlX
z2Q;M5hF~on3r1g*)1NP+<tipcFuut}1Q29ht*xCg)kmL!C=-ckuLHjAh1f^|%9LZe
zV<{%^&Zx`da>-;GdM@wFU>-FE7b>@S#)UB8-FEtP<zql)^cahGr?HnPrs}cs)eust
zyy*21w*}OU_cRM&B$|6aSe@%5uo>?4f3=poP^~3^=Q{iiO`sjA{bWqSot*0y+T4JF
zxA-tt#%IJqD%_7!WvNk-Z2*s-(?mDam@#hV`>$Z^VR*N_W+~95>04>@0r!0~eM9u^
zjd@s%OWP6P{^ZKDWWNbqZS=_fF^N_um;W$(3Ll%aoZFV~B|bLaKI1b5kt*81s8rWD
zrNzn^33i#czH05cM`fr$l84~_&gKJDkZseiu#fS&H@ed(n%KR4x!rGj8>7*_%9NY&
ztc<gM_`5uQcPU)m?m8^NxV!%Ngu>j#%HN$!Yd&?WI3w_P>&Qp=yL`Goz4U`j1VPs@
z)S*J>5WO&s3pzWV@ulv1VOaQ}=(ZsU`c<oklCJN8!E|OR4Jb`LH!MVoP*HKRAuEEP
zUN$JYW)NqRq&2l1Gz7-p;U0`3(e*=)`i_Q`mU0mG{|&1D>P#E)fuqge{_#Ag^GQSc
zd=;!-2uqIBIeA!}3HrY;w~7D&^oavvnRiC6s4Hr*Svv85K59f!L@e44c*(@I4q3ww
zu-G`9AcA}66izU6TvJ;&857$wScCnIw-k>>U#`gZB2G~!7yxDO<DbFmF<L^5zjHkj
z%$gTyl$Iiq=n5QaJ_u)_Dx&xa3)F<BfG<MxUp%DGH$exd(j!3h8R-(#)^4EtoI%%2
zctO^`c_aaCfF->lSL9wI<fH=tUn}oi{rMTo)6^%f64$W1qeNh8oTCeNIej+W41TCi
zK6c7$|LzCuPhW|H{;*>OQ4&(m$t&fMUVVxezq#ksf|${jLL980Oy9tT2aX$_SG_&h
z2mzEK2k)x_1H<l?aAHIihaLh40BWcvi5H;iLC)YDMkSRF5?YH?`3aaJl#xE~PdUE`
zCy5rt4vh3!KJEr~ex;nkPb4&@sEh$I^8_iy#G+X4cE(JRGDD*8osHOpGwC~_^k#gb
z1K`Tj%=v0<o4RZzJ}-6qJtL~yOFi<{<DOAa<U+kv`1^=2zDQ<uB);g-{lN;v&$CB|
z3d__kRG3fgo0ReuK6VM79Bj?!Kr@!z?f-g$MO`W<b6sb)4xXK<BUNYG-}3+-O`J?i
z!T*q1ap&Ytk?LPEgSQpPp!Jum;BB4MTPS$j7g;D#{YyA_+Y9QgAb8tMzD@n53Y7(K
zS7YJ8!Iy`H*Y2=BYV{nRN2K?Q%tH^KM5lt!!?R|;nvB9&;HvNXsk1D9!U9WC42~8s
z7>8mLAtQDHD2mAmE&!=xhB-s3LhfgvBCK^YUL&J_Y(S{q<z&x=>XnO{7pd1Qybk9p
zo+Ie`ILM`p0*b5i=(%PN4-oRZ1#9rQ^Od466B7=u9ut!w$DtWCC^7h2N}aDmIR?%`
z=VuBzi*O#A)4;E>1B!5PaglT6nK<EkNS`gi+D#-Jd^(IfpO*&UVB++~cW&-a7f4kF
z8K+{Do#z}|j}tZrd`l|rsBCjyv|D|=EsRqC=q{Y#$OAUl!wW2ou8`ZtD8f_}_<4m;
zy>{<u)q}RdXO!+s0(+@)*UHr#GU3j+7pRp!y3rsgds!5OAV;AfYw-gY*%0u$@{qg?
zedrqPBv9Cegy6#alyrU&tc?fwJCHSB!WYic^gqj^Klq7oInbXk?()qN0})0<4}`P;
z-;5(mVymsK4L2iuF>-_LgG2T4oEb2e>NSMdq3SgYufzC?=LIxDV0*FGEV(Vs3fs@u
z&61znnBoit+vzA^>muwS++Nxa08oci5EB%s5gjVx48`a8SQKkp6dML+cOTZB%-$HR
zT`fy~tOW|mYKxrn!0e4=w%Ibk5j*6etjNjTSr|KR_`k^PuPfUiKy#;T_(52A|L8x8
zqHEo+ZYHx`6-`ZB#{Tm$R10n&vd(Z@Mo?I!W34)jd+Nb7uqKR~_(&Kx1h`Nk2~rEz
zMA9OLkE|RBP3;CQ4`Odv{mY5L+us9ANhoUc^8TGOqWwWD>`DN$Mn{L{k1mY%KaoQV
zF;MSRwCg{0Wk%JWJ@Or-E5h>j`p_9r1N2Ewm)}1^gN4yZ#JL1%fI8%E#=d%S_6VMG
zQ`k*CuW;=+03|^7+I#^7=a0=)v-==FYr@JB4<d)dAm^hyfltpu0RZf>yts6I)=e41
zrphB2!O=R+k|Z637lr2sK(o|T^20dRP4|=)kAu|X4(4F0Mz(R#Oh{4uE(89v+`#j@
zKx=Kd5qyh}JTc|tAQ47K{m&(coN)qc<TsQO*JQvXkcAg7J`!2jH-GxXu034(;INlW
z!bkMX*$+t>5-s~Te<RU2CUDqmvqN>Cd|JiigoS9lA2P4z9euNz)8(W7BpL#yK9Lc>
zx{__8zSn9qATYye5KZ0N&5uev`m83k#1U$@meighN%!e4ovtH5QPir`H)(Qdcmc3F
z`=CT>Nl{C!^>B34P;0?IReZkN`XtkppvVTc>SV9G9gk=hB%_dbXlX%=K$_fLf}5B+
znZY4}0PY+Xq_hcjm+F{zcpuu;gRZF6l_VNSvJRN+vt-Imng%#;2GCToQdmN2K_p5V
zSc$nV?n%r7iiqT;4T72o7TmnUZUx|rFQlajU??ei4W54rT~Lw2gcX_f191v~F{mHT
zaKF4uxq*2iYa8c!0c8Z!3n&w6Bm)C2)&!%AK^zq@C#C^rmfJ1OR~Y(39v4GDKpXl2
zLKYfYE?)Z#{YRTrM;reH(^n*H8JVz>d7SLEZ4UDorcA;|eJKg1d(t_f%VqJ;F>wJw
z>vnM%WuRf}@{P>U{U|_<@yRO73nO)w1qoTg%ra7C*-@giI0;!o%yO#Aa)D`ROhOiF
zalDhtvduI!Fd+-On)o(^rBi6d@nYDDEO0tQ_i!qu8W#u3(dR@pk6ehg16wW(K~SP|
zm<HSAg?jO}PJA@pAY>u_9ma`D*2Sa-{!we<+-}^@i*uvoA%4}SU8d5o|LOr676_OV
zc=F|*c%?nM{5d+aMbscC@cbL>X;cMyJ=A;1U6aYmxvKzK?(k&^*ep*<79@Xnzip$J
zZR2M(<ZbmZn?j~Hy-Y1_rVT37(DUI(zYI0DgJHZR_|xU=ti+%G2z+6@zDV>_$_<7;
zorT}ppPokwViIqGe%9&dT0CQc<1feseY20j0}3$@-)79r{VN{ika*?hH24$Hk~u&}
zodVwmUsUWv5k}nTtm#p5+o;+&_8PjcjQ)!Y@VB8S$I)ejxRWLNK2GE2C0n`yYGnZ}
z2TOAn50hYUFso_n#B+$X+r+?pmq6jzh1)JiN|7_7rJVBo75Wf)c@sW1&h70!vM4tL
zU2(U5^gy?v41L354ua5+Kz%-cN*S*#_PBLy(jdAhk{{Uvzl^%dp5$RkWdGxgl*wWd
zQ1rVPJ#G(9|BWQ;gUR@zP{OG62ly|=!9{@&08MaVm-h)&G&4Bk!eC3bC%EtoOG4Cf
z4mE~W9h5+07vj!85OWssg)alukS4#IP)rAnC^3v{`Wo@Rm;`4_zB)yHP?G%sO9AbW
zy8~N3ST~A#d)b&del>>ow1G2NA6)BQd^&+sj9enWR4TnNekkn}Yc6xFbhEQM(($Um
zcvg8|UZ_Qc44uU)(S@*TISUo_zxNld97tF7Q;*rf>$zK=cfFuPa=ny9MIK=fDkVI!
zYunP3v|O$`2t&)xkT<gr!%xcd5=c22l4_|)&P7`MkVMF*^(=}IQfQ$Oh#xNFX5%MW
zLT<g!AbOuhRG8u+N&>D3B_pb6Mma$JsvS*0E;`a9t^(p9<V;gP-~|CO`AtEGM=awX
zU2h%-HsFp@WfHK!YMOHUp>7=aP#`%I!OG)LVF*7cx;y?No)PE#790cIz7ATqJhR_X
zSS-d>Q8-j;F+RK)LH^*Pk`tq!O#Mt947OqqPWhLJ#5x|rO-vwVO1C+m!Ru&i>!7vV
z*2bMYxBme@mS?udn5f}A3V|okDO~6|S&4HghTbw$CG|oiN{A?Uqi-C<bc_<NOVB)Y
z88;k~!?Lb_`bq|+-Np#_BCMhe0dmvX%gD=bffTGrmrfC}BApN6Toop)WNc+BMa<Qu
zvlDf;Ggx5w<(D(8;CL!K?GUgqzMZ&(B*JM=@m`+07xHp<`@NQz2FIJs;SkLUj4~}K
ziNQcbOAI64&p^#uSSlE&X5ub|WHJv$QUaOHAQg@I#Q5v5AeiinZ=@w5TW`aeXJG39
zu(j^y!OJrbIm+IWr<#OCk|y0l2NDk*=Mko76cz><r$BdP*o1`77++-He-Eic(<ahx
zV5gA_yHm3jRRA_d`w9yNOakKgc=nXh4e{&wME@`Kp#N9(KpO=hTFkK9Crv$iT13g2
zs3nLI9|E1f>5q`$mXP2H2U3iu9|cf@i_TbdHckEM?c>LZUEmnZ34Ag~GdEqcOWHL?
zdJtTbzP#byNc8piMrvdWIRKq!&h2WkLC)A)5uE-kNq^L?i1UCtckTmo#by1MICt)o
zh|}#f#yx@(WvJuD-pC#wAo?9RD-k$jNvJMi_ecOo6Yr<3);(pDVL;-ab2qO#`VT6P
zecTv9Y>NLA&Z0W%ZZ+QA8|TWDVTF2JqaLHx<1+OqQIDbOF<3nYoC9y@7kHI^Zz#zh
z^3Lbjqe5cTCNm6E#n9*{gql0_ya;QAr~IAyVE|?87vk+Y1Q&Xd)io0M0$o+oIa9f;
zPM7jMxJNQdU$FZhhKBJ<m3N-k*)Tcb{&Ii15q|BYEGkG~+h7(#ch&kx<IAHFu~;4`
z!J4y>o8atN5)RgK7#$1kTmmN}qw*-MX=C1?BnxreA<icjIp<*JWo_{Go9Kiv06bb8
zTAq0laKnA+$Qa9y?yUc2KTH}2tJ`Ak6K7SORQ+Y^LD7}bANs!l(aq?;?$iEl-Y%Tc
z?xZ~#oC!tI*_vLXI`3Eti=TtKUy2|lxafL#fIEV<KfniJoGTp&5eLY3IZoYiSR8JN
z>cBexNaMJR1s7hA`|UDw(QIVr#yx8af(v&<4qG$GX$MzGFOfp*U`)A2K1gPM^{CL9
zC<dRka8wUERq?e2=C2It6u9gJlxPAL&h`jvagFTEF|YwK42##G?MU^fts^bI4KAFd
zZ_CLADz6banE%0PZpV2UK7zehXd)d_HUiF%^&o#<jQXJHYHZPs&qH0Dvm_19jdjK}
zj9QIGke|>%!LjG{;KC0gxQEthcL*z*f!x$QO@ed42qMTzinJ|qnMIL6a;K62mTxSV
zB&3UhYc|o4fn7bpHeLN7Tvj)8gqTR(v=iubxSDEn#~iMOb9q4*2%3RywWS`kT)tCq
zV;yj#6}->ltXK!$q&p6SL2MF$?2Sa6D?UsIePdmQf53&7iDB+B`wg>1OTv^hrG9d0
z$7a?B1fmB9YyN`nn2P3pGZPjD)*WQ=d>Ocm+Ar0TDp{B6tZ15Kbj%?pRM##8f9u}_
zh_wg+Ia`Y^W{>%Uq^A6Zk-b%c$}Wd~5k}!nZ+1Hc(Bu2hWO5-oM$Xt$iQIpjsd~0j
zwqByTEP$OjjS-%vu*nl6(D7Dp8e=o+z%&Nxe&b=z5x_=#7WUZ)8Rt3K*RJOT5@v*!
z+e9b(Mcn1YiKFaqHwux#o7rl8#2FQ09R5)>hTtO`!OiWUB@WWjMv-*Q2L}8t%)sy7
z@;k6Z_RrMlqlIv^6+b(tJSU&+GRE3#)iMTovQk$h@`s9~1S+nQhB4En)5YQ;eKUVk
zJ*4J9hoUfka*(cJ0*SNSC%-obL7)VMm=qQf;9wWbn)Gi{jBLJ7K|r(YR@h=Hdl8rA
zxEhN2fgfnb(GEb9I@k_>NbUF$au+_7urU)mo9Cf1{?nuD$M7@AU?By=j_rVfgU88~
z+!#oVeIt^@U6j~e!}q8q+P#0&L_?#J4X90&>@Vk5$rEdliABnMMI<XNA+vzlGvtY-
zY&@y*bEGI3NyY<`0(s8PjmY!9++sYr)K|jaoYdu0pQxZ$JvReYx3~;o@<f*9So?I(
zl3(A(>*?U2751qjse__QtUb-ELutj5E}M(}ng`2{1RpOhI9;id(lo%G;ojO;sZs$M
z-8;U3-io*|Zrzn68y5H2a_t9l9L%OTPO-#9c1hRj*Q;ifbR|7h`aAKziGQ-brZsH)
zFkTe3>FgG7<FRT8W*Vmd8?6mFYU2=fWbdGzoA@7&>*ccjki*tto&HdLyHg9q+o{`~
z)^k>`#k!jPf{S*<ad7*dmwE%__-A-yzn4M6I|27L<MzqePgX5tjf!6D>n#;}c|<Qi
z660<f;G}fof}B{Fqu=j`y|_53H#z`vv_@~`l63H#xWzlNJvilT&wXMv_ME=IV@Xx8
zW*r<Z^s(`ik&fpHtKz?5PKfU|k{188`0m0_im$}$I)Pr_Qhc%WAjd1mTGA@8M8vsX
z#FyE9;`<?D;?3SQ$%gF3lKo|MZUuazq#}>|ibz(VQo<r&SE)SjlWAFsZ@IMgpNcOB
z3u=z=!RyQ%;fQ}B1bu(E>UMEO<LYs}JZMg77=UM>+!p8|1(@but&O&pZY*q&j<7rb
z%I3lbo8mMuH#B>a?OxP7fy*FJfnYULtx!9GWw&Y>fw5CbfWck!oiTP04j4HNo4fFS
zJ%8xfVu6;AnTgCflInKo3y=B3M&}PDzW)YJc~oyLBR5MU4*!7SRREsR;1r_T!;!`8
zF`Pb?owWpc=km=t>l+>|J-&7PexS1l?8D{&>=#GJJ(0(h);H{j@XP9_QJ;2Macq~k
ztjI%mwE+L03zzlnn-7%*8F5$9sli>1<)AbU{kZ<I_#0@81GEw_<=&W4rpX{RY&*yz
z%EV#HO?y=IPl7UW>=mUZZGJ~I30EmYlQ5V8h!~`-5TF~XIC)j#j=cifvn3T++HC?n
zfd2K(gFRp&Q^vQ>ims`T17vKv>I8`4Tkl`}MeFEW(Qo@N26^CGZ!T=JWJc${Bos+q
zy{v30=WK}AQo~6*wAFagNIddOQ+Q=5yl_@4Ed-471`ZNO(w`HY=KKyg;o6+tohvdM
zYX4_k%0XXexb%Ir2`+8;xhZT;d%JlqEx+8yB{K?wNF{J7czYM>7}xnktUONfFavB|
zddqNY1dOO~>&w>t6GlRXZC0N(qw{{T(4HkxGw3=D{D%0Hz)PGMDsl!wAU525w(RYT
zmSC`T8U=zGLTEw>1Wx$<8ld1z;kKy)v2;ea)AnS<zmj=^3Xz3HGYs`;PB^JYLC2&X
zWnu15O;PWsw}g6H7T(f>{Y$MZ%q$gI&_Z{fZOF{0_=N6+CL6j_HPl%N9rOs-=0W-6
zGdT?;Vs{vu`W(}F{b>jzph~`+&4@7_yE!N&oV4J4go#lVTWpu{vwJZ+Y19-kb9*#K
zC|dx%n!GT+R3<A%H6Y}Bzu>f)%v`<uK<w0(-6)tB+!LS2EINF;7;BwaZAV~n#K}ZV
zbP)oDV}(mWPuf!$RX_owibHF~WVL|i(C)sE9-cs;6mR;}E-SKQ&L2V7{iKBwbkx{B
z-RHaO?{AP(;*~<XM@6MuIb1ysR*%l=k*yxB)Z^MyV4=sLEpJZ4Ti=0w9zPMbIfu3x
zqkH}VNMX8@)jwoa_QNglT_3BeJe6PbaZpn0aqxCzG7UYC%=fZLHSg|{&q?2$Kyi)f
za{})@XgZIJ=Lq!go(#~gh1htY$y)+^!D%0oIn`Tx6UKbPs6y-oOpuRrEIaDMl@%m)
zaqz`YTL-ISD1x`F>+|?ALQdo<R~$d(t%To7X(IChes7pajDH4nw&R~dj?iSS39N%8
zp$^Uy3_VokC}3hv!y~rMaR_%50c<0UHQb?ovf+kWnBGXWrNc+_3>_}GTj=n{NuUEa
zJ!(26;eQM*O!Zbs5kf(Ue;H{#5#q-^&y^T{bM0RE0Y0LOvQwc>VDuQ}>neu<w?x5K
z1v-!PJHYMn(T(OS-vQz#NNZ_?BQN8Akf{u0DhHY1p8PaPNiIM@!#KSF^uZtLCas@s
zotD6stJ1)5{Yicp(36Q@10KsRgurvXRI(cGVmzPWzOO+nA&8}P7ptUHGKlV!6G2Yy
z!!}}-K+o|vB+3$r1=EapscV%VlqI5&GeQxBJ7+6;%BPF$CjbELrs{&+5uXq_feSBI
zfEUn1i;%WnvisQyfQ%>E8OYQ#0lwh0zp_yE)_n3ikNnOfzk5fjHy^6FgTQ^U1$kge
zK3D=-b#uh}(x=2vC^4i~M8WBD-l<{G784r*IV+YP4XOkD1G8d*6IR2N*ReXPQ?xaW
z3_E~Th_B=u1Zp7cLSWFt^lLGGg;CFP@0~4j+nMN`nSzdQ{aF0JlN*s=5Vm9F@ls%0
zIfX=066T&K#+^;cGK<Vlk;+b&no~3;eM8hjjR`c9m|VHa!=%_^Qta*-2~1WD451my
ze$_*MMBcem5cxocmuM1<g{D|{JAVL~Y20l!kQACw$(+EHj3bduYY1NF(;IjDAD5^{
z5?exXbpq$yY%G8YIB_rdQi+`O5+F5^1_W+j1=jPw0e$ED1UbEZ*h2bF-C9KiAu?Eh
z;U9D;qPn2+5sJ#e+QaA|ytp|lSS^`B^NARP^L?qiUiup?K#*xAK*b<?_Q{&;%i5=s
zecOukWS>!zK=w8d`pJIrpM>ncmnKum{zCsI$$qxJOGc6XAVBY~KBiH!zcnR=>>vI!
zJ=vGtAz;0!y#we8h~P=X;c39K=FSOR`-{?ipER750#+FrTn=gI?E?!R=@6XV2w2A{
zupT)M($Ip^kYq2aK>^qc$dA7dXK$S~u1M6GlI1RcR#|PJRfJA&XMHKkRrGuz%;Eq5
zrk|pWw}MFZDhyz#bPy5My~D-Y1hA({Of*>L1bWOh-Pp`oLbm_`WcYOgeB=A3flWjm
zN|ObF#C{6x3FYCCY(y3V5Ywvr_haGT%}+F!$@t$#1X9lbL01AW*+y5kF~_taw0JS*
zqXo1t%^~kuT={@ntKJoP3Sctn;|X0rrDB4q&k1q@Wj7iz3v|E75N4bj^=~}}gc<1B
z$prcYr|lK|8#oK37zAGK#yl>62`|&bAJ{keADd+1zh;hs|GC?QvBx$Fzf+jIK?Mgf
z_!~y(F%hPxa_8~s=qF539e#U@VK{DRJu}dOjunI7>IinZ{rYjvW`fYT2WJyVohAHw
z0%v0oU)*$^@fenewxGwRg<C1LU}6pdHpj|0x<WcKaO&=P(^_E9hup^khLw<Y;2Pq~
zV})xo@dbJH=|E8s_0Q6X4vvJ5V8mQlpF?c{g)c-&OdD@zgYb%6d79NAjpx*5L|?g*
zE>?pDV%4V@n7BdmQrheKEt#>x4p{)AD0WE)o|6)ZwZn!Gb690(b-2jiv6$>fJj!;R
zz$7hg?g?#t9%~tA-0K9gcDaC<0UB9ud!Q8yM3(de#efQWd(m_lodooeM*3vAw@H(N
zv<3zgD^sD;=yOqSrTfG%sAaup8w0KMoGN-xa7lVfkamH<BCfO!Hw3=yIdjJOZDki^
zb6fXNCL9vMqZj~6Ic*Vovp~CvMm90{<Hs!bz|HARc#D~oSd`f?!ITNS`DY`~pT$I;
zx85k3tYr^G`YLet68ep=`k_CJ&<{E?5qiC32q$$0Y2XAR79Qib5{+S>C^WQ`MbX~~
zdZ!7XKKed#+CD+J_&Ps?Lf=Po6T3(g6{455oWLXF4aH0nAzbirdP2{+RTKJJTP$$l
zY(wZtlIm{n0mHWj-D#o$_w1ijnCmM0v4+|^b*owtdrB=Q!hXym^<pEjp$r=!p4VDG
zPd-M_S5Zl0#bIiu(3vwPSO=|=3|OwlJQqCZQ?m0&j+0e)pvD?zPLFkj-J^AvpRa@u
zx>G<K1Yt8A+4YIhXE3Og+0c@h6E5E&Z-fJ&e2!nBA>DG_^>ewL!)X<$PZr`zmQw<F
z^cD{lr=k<e;KE^DqwCDnXYJWYs%ahTGWS(#>wOxj0a;wbJe0+vt?7YJWSzy4>bhOD
zeA8D6x&l@fU;<#urvmt5Km`b;-rd}5k5ryLaDe_3?xS$&=c);V^$-#tsdcErU3Q`p
z86YG*ex}GUu~Au|>2CfUqNy1*bs71GsQ|UxJ>p!_X_pXKDgbFv65%|E5a~cdfj^j4
zb%%&I5AfqRppRsZQlYyuB8wSNM(@qQj}YxkP8JacAHr@2JrbBG+vnVl=Rx2$$p8Y;
zEWsDIv>q4Ou{2zHJc)YtD>7{bhL}*q*70W~ulnu2I|QZg!x!f6irgLx_QUE3plKbS
zf@JqeW*o<&B#aOl`ZJO)E@^VfdYStF{s`m>acJSZoI8&o_vss~?JIL|N5oIUGrd1A
zQOqghzX(^!I0UTTh2u{iXLZ%PI#%Fj^IcslVL#}$iI1W^6K`-xgF7fM4B)`i41_1E
zq0@?iS)31u1&(`JT=;g#wq0fhS~pya_b>78))&FhU(VWl3$D@(O%$;XxzB#Bv_eGA
zEgYz91rig1FvZ<JS-&MUM_3OvKb}oGlCB(T=1&uo{WwnXkG~6wlVqO#kn!b4p~Y5|
zr$2_lk5EI6m#cRLE6PElP$l|Tcyr$cLj_s*ga12Vq62>mm6xj>Ir0y<AJkKm>+Kdk
za?y^)0>8Xy$@R>&v@5L}PD7E0@b3QUT#yT!>e146w3LZIS=)o7R;kwTR+rKu@<I;=
zvenP;^kaT%tzbU?Fks%+a~@Oie}smiDS7D}ta(+*%K?>RIYBn=GJ*(sq32Z5i)NsA
zBsL5OM2+f7l`AF#OAxnG%BxJ;Y>Z4@RVCI(Pnl`if+`lHUbVo-0&s|R602``NYnv{
zy?&%7=PemNa&{DQ&VND38AP^QE)jCZ|Bt|8cMyKM1%rXU%!r^$kwNz_*D0an)J$ci
z#w2+P47ufa%^_T45(`T^&^j`8broyJSsQZVMI^FwX(>Kb9QINek4T$MN_HXLC8Pwb
zq`?VWp*G{_%T+jar!JvUkZ>BO!MMERF|+HR{LH+nT9~=zP+)V07GtgbDe|1B_?aTl
zR{wGO$SnjGt>wwAb*upF<HQ+`udjZcNlxdB@ntP+=gDg$Q$L-DDuWAe>{|UL*!hFL
zk*$IQoV5@>hFfxWnn$&@SnDGIaMyYft5_>{yNzpwv0*{Oa{LX03|d_pjtD~!U|k+U
z@SL?Sod8HI@YW)$E(cz&)P<HN8}IHF5!DwN1^8^1pJu1rqFs!3e>9#+;INs-#po)j
z?yN&V(U%e_nq(hdBSF%P50x>^uJ{A&L;K1DNlw~_3{lYn-{?+b88BGBEZ636`Uy5v
zVHsa&u{@_#VR;O&JPq&elz}h`*hQy|LWZ>h{w9!Ui16|4ej?;gRraqt(9G3VAPK+r
zbc@p9XXT|s<yCB5%ZiZ`M&dzi;qrvALb6G-AD0N%mx5pwCyGJ@7nZ{!&_;?`nEI*M
zfi|yKe*r<lm5y9XvQh#Kc}u#ZKM1lAO~{{V?pSH=LP9YNZJvlWKaT8|W12gDaTu)z
z7Y-H!gyyhwzWP%%vNDpbY>zfDN+6+x>(EqA<?u93J&c-Y+gfZewI8cyIbvPnOBjbE
z)A{V8rmhmVQMBDdV^za@MzT8`7FLqI^2Zd({{DH(^FLhbN%ly*yV0`~CA-aSex_c0
zvzF`=ueOpsA!;Q143pZ~OC4lW4>hSf#@Mn4+te14>P|Ws;_{yHFp}g&t{_b#FVqJS
zbsU>DVKS)Ovf?uQ-A{QJ`H|qOAcb@r)+`{t^iWNpM|b-Oq#TQPpR)vda;PHE6ez_5
zcz4SRp%m9@=B3nIy(_cgG_)P4=#IawD(`A6Bb6$0MM`=39DFU^ccW$#X8Jj@YKo}Y
zSqFh`Zzfuk6#IM|#Vd8bja_MunrX$v0Zv$)4Ivy0wXWvsm=jojh^EvOxn@Y44^Cgk
z0#7{aQL5Gxr3dit_8X8ellofB4|fLz_pJv4?u(3*kihTp7XVgtoM!Eelq`ru;a}ke
zdZyj^VqrbDKIXJ=C9VXiP*qNJtG-Z%7iP80JrE5x+^u`Cg!Y2d7O4IUb&o|$@W){2
zSelbGInogo<(Ac~s%U4Xr7!2l7dN*F-twGiu8iu$3t6f?-p-X*YcM)%f1ASx_hC#l
zux{z;Wx5X5NO=NaMkYIDqE*ha6UmGMFoSn&i!HG(LrQuyp_OYsQ~pMn<bbDZXC}M~
zo$N!8BHJ)p<cuT00$dy&A~VJt;!H?cj#;`7RrR6I=0q&I-Mn}Qj(p%mcGEI4a;Hz5
zIDr`pOj}@OWQz>%TQ{&HeIM`cLH!eC<ld-XM!ue;t<AF0)?yr3Ypl&%lIljfLV`|G
zlApv+xhgn~z0m!OHW{6R(;0$;#cYJ@>~1mPOgNftu0LAbP1X4+cayqNpmoDI7f|Ac
z&mnsSpqjNUJbu5Kf==MNgEhhOcK8UU`s9n|TY_yUQA)*m>o@T3#?OTO;-c4LEb?PJ
z$+YuHe~hFmZfkg);t|p=`Oq1DN<MspScz^2fL7~0E1^VCo6m5{{R0z~KIBs$y!AY&
zhZ@g;eql7-F*yAh(ocqWGu2zi$}?HFxV?OV-rAv8FPyWW8jiy8db|(Om&C-OmlHVe
zAWfoxgr{n|qb&4^&j^X=d>@2;gB;*KAxsSHkDu<+en9jdeh?`1jq1f@lJ@hfcXg>a
zT?lsw{^nHPuE5la=g%qNr~jT7zY(AK@!L3~5&TdsER+nN{x;3etDO^sSLL070yiL9
zZ#%`FOUP=v^)odY1xrbtmPxc>IMc*VAH=YU6Z#D+X-+HB^Awo=m`9>v8i>9IY!I!0
zll|{2Nn+XoR2V*hS@4pNXNJ4@C`IK6jY5GMkzrPA9y4LS`7wFwowW$V2v%28sxXtG
zQp7r&uz6S^Oqs~knKX|d3Kd2$?D@#h6<{mxN6&GQb*0h`xMOM+xoKE~HD9oClN*;}
zvGxV>P49ujsA=btQhW*4(1O1h<|{73jD9TR$91^>neiDA-ZJ7}BHmpjico^Lb?~9K
z)4&~xgkN^C6W&ks9hLZQwycXq*Aw@ExfmWI8f5xPJ|UfUSyLvp^xeZquakWDrRKv;
zYUk1fAZ&Fp^6;MyTdl)uVwH{}dVCtB$_;gdd_8GAEhS{0{e-R4_c_a5WR2YC3@)<K
zNYpQCUyA%|{!-LHbjf8XeH+|<HE0D%L023_5?pv)*Mb=pxxJ(+1nUZyIFCX(47vM#
zs5T_`qOAh0dq>*TlOfPk)rkgc4@RxrOvxEguv|%(77+K&8YLF6j(Qf`$)3NT?)Xq&
z0V_jWoEjSOo(drglkMo1sVGP&C2MmyVN3bMhyk-DW=0%#>_OcEmitQ(6s1d|kdbGO
zRj~!mk)Q&9$wzfb&I$x;Bq|SWmg!AR6(iX$YUQDovTqM3t*LFwL!yNnLxr&}Js$6e
zld(=maP}n|v(CnRU;9DPb{hvpD>i1uODG#y_jtAsF9-c365ZxLir097e3$uB2y-S5
zBp}S7fSzF_1V)}GDjo!7AVJs5X$KOEo3qYLOPGx`(F@mvVqIoG)(`#Z>1&Fd!Znxz
zt~^+)MQ0ppZH{l7ye2FDA_P%l=%HV3P(U;{4^Y9~pL)YPK#2CAm=ExYjVZ-k^n?pN
z!kUFAtwgXnYen*(Qntg~0tIH4N21`=z-l5Z)3f*#Ukw$&PNZ@?+@F3YruX~ypwKp~
z@q79p^L2k`y(#`Prugf4UOZePdJf|{(Khx*)(mQ&_M+MF{g){$KxKA~UZNAYqElG3
z$UW#A0;jt=<vtC3)OrIimML$5?$a}PcR%Qr;67ba<?l$IxlXX@No-C8zmxip@n@vs
zf__1(@_~Tg?FO|Y-NSH5p&|)TyKiN~6M5R#J0;a0oVJ-XNaKI$`HRZIuvD10fclLN
z9$!Dc9o_?<j_#Q;I{2@ZeE&arKYr!-?))`h{i+Y%$-~qk3dZ5WkeY$k?JId6d_<_O
z{WCz!>B&GxP2HEb`lx#_po<0Kf3wsryV;}eC3ttIoC@j!eOL|Yr+>c5Pu}y(g}f`<
zfxP<(d6VaNH#C92Q~V1YxXcN1aS?iA+<*G%evox;9D{Iz+Up|gwnUsrooprhp&)W#
zUF5JO2yT?Oooi_U*X_o{8U4~o((OMA@9Yj5?_~`>yvf;E;M>1iyodXo^1*b<YY}<r
z$2*XK_lRo+@3s2_@BJ0tMhKGhWlfX#{{Z|069%!N#__MN1O6MpU4#F+uSkWau<jbt
zSg-lYhqW56{`j!P`T)7=P7Ouc;@!O+L7jfAgH!z6zWk4Z^`^GKx{JX&318Vj-}rns
zq>=tIPJ>s0p}RU(p1=lsN1{+VyoidyI<Ob&@SajV^f-xrF)FCMRE8*h8ZG?pyQVNq
z(|+PgBv#@C`iwa;qXxPX$j3`^8&2Sz_L_*%xQ~cx9bw@^mWVfwP%486@4&TqcLyUP
zw4s+bJn05f0q3q5Ggt4ziTLgCyWs(atcv_ha<#)+*Y3E{PyNrv3iU5(1L{xreBvbf
zZ&mVE!tqKm$M51ED62npBS~V`&tQ#18x)PO$RcY~2<`YA%YzSPH0J2_=+2q-aJmP^
zlO%)S6&K_ZdE*tUeUh>SC>{g+WB0y8RD}hsFv1b#_1NNpPz0>gWncRs$hfL9n@gjx
zWyKibmn?PLAO^JIU(8>s0FaJYoD(Rud+YWcdm7fBP$wH0+@dVdV`n4u7(b{H`|eh1
z)IDntmpsEg{(a?S$?!gJ2D}*4eYu~t22>9w+qXJJZ?KG}*jvAXIJ+Hm8%nr24v}c4
z)mp6cBFwaPwBi9sOOmFKW;#=dN3sFl^CfFBUP7_#<K_tkJ1TKfWb{Vn1@0^Pfch(l
zX3cOrfAB+vnLoIFjL1|LP>Ua-G&)J1n!@jd^$PSP{Jzqfr|@gnJbnR=lp!4H@Eh_#
z)A)UaFiXMjuNPVTj<Wd8ze@1SYt<-zA2q?hp%4brwYOG}VCAvsgkht;!&)E{uuj+k
zD-QS+;V1km$n^STXnUx#n<^o>u{L3IcfgX<yR<p%oXgs3OLM415o*^b2cX3QMfY1v
zGw}~z=R6kg?&jkY&2{MnzrlF6Opre&0OVU4bDb=|OPj)93#!3CyOK^wGX4n&x3BDw
zgm42KZiVG7Z8VmBKKI#Ej-+FO(SNa6KB%XA=-~aC(>=Qpnn?PEv{{@q-jC%QR|=MA
zX9CMGuuPKQRvc-k@xQ2g*J(jj_z9GpJ-;4|Ygs8<CB$e!<-`tXwc@0Dd%~j<XS8U5
zixT)-mPYQ9&wR*r7UZJ$S>&dxiJFFCC~_lbX}SZshC;NMS&2;urqa>T77a7;F~DPn
z&BthqcqI_T=T?=D_ZiT|f6MR4Xh<}o(odqtM+=D#-w!1E$g`Bm<6Z720q!ZWsF5gW
zb@n>d0*HZ*+S;;T^fe`Un7W1W;!<><)f3utf4^rsforQ_Ry*%4H`b?vg6r0nfQy(3
zKuP?&2t!)HR7U$+O8Z*sA94yHGP$GfOYsdxPnLU8yrTl$Bjf`|K>oR(Ih214P&w9O
z#0UqrktnB-FVTZx^m0QJ=6>irdUHQ7!={t;(qj~m1Q9!e#5hdVr{-`N(h{s5Pl-e?
ztWv}$nVCC}b@CLv);e{8zyZRK)f6V!FtmEgO7a728R7$Ml^vb6%o%Zh9bnHL?eClu
z!49McTk5q_R%)h5B5}$Hva|+0kr{z<)i>juQPn7*smcHrGFdVFbtNu2H0&xT%0VWG
zuV@<HO8A!J9zBj4L(W!nyQ8DpX^>?j6s2D%u84L&R3r2czg^u-BkuVrRg>!RS}1|r
zDFb46TjJyoBrr+-4sXJKoS<2gU_aUfr%xvts&}<+%7$d6*pTX7ZIVsEo6wx1%rIyQ
zLD)~i4Rzn3ywLnP*08i4qWXr5P~;aHmSuS`ECT^X+w?YM|4QvMfVlbAhE(rrhimS^
z8%VPLes+>=`LWz@TZX9Vg5|&L-V?8<ZAqZt_^TSTC*SMql+d)cC+zOrXWmdOMe{tT
zS2l+XzFV*qaG?R>De5T&0NUH#)RQiNI{+XwOigS*IBl`AA1F5#Xu^Kv6FbPD7mrmN
z0*~RCVrRuz=2qDAau^kv5#j#Bk_gVRnHiGw$q-eZ6VsBv`m7J${sV;svK*$>0Mrb1
za{||QS2oWb^pWWjP<1H@TM{{HC6QxWA@$BnY;OYb7?Btol^;9hg1h<wmV>d>{yG=p
zvG|a=KaRh~@l2oqQIOp?6+IS*LAV-h!IxRr$<Vg!yD5NxXCl=qA8OT`*G+xkE<i|U
z!;)C`u0MmKtCX|>T-1kF)!Ip(8)K%gAvj$t5oJ?Bw+y#a4u^GzRK&M|$4JWw*3M%i
z_y)?<1!r~^yTzCrL`lz-UKc>4EY2~<DTKHGo4K7pKjZ0~@}Z9=$j0?NME#-nm;(Iq
z;}TSL6s|tGEGyPM0(gOb+u9E*dua3vh+i4Q%wQO`QSqVc{sWPc4LCuPQ=?9xb&D_v
z0wsF&1JmpZ6aCRJ+bYr2ex8F>iFfyA9dDVVU5`E2_+@|SW$af`ecrjYcl-LPo<jO8
z_au|r)=PcOrgkx@TL;^+ci7aOmr9Ra{v)*Nm_!qmpkKjhZIpe2K#v8rA>W{-5Jt)O
z&iX?^_+X84^RUJP;))D{!dzeVFNa1TD8+hx6|_<rK|skCa@F!K=?MWwHC4OF(x`Wt
z9X=z%)9$}|eizRN;v6Hq1*(|P1(a0#ubyg2T65k5$@#63?AGs8v(CNQLID%YnOoSZ
zfpY?jWW>oNl$#i2wGeWZ?4G$B1Y-!PnT<)Y=W`UjV0Ok*rT7N~iO9V37E~rn+0~0#
zZT&9nr^7tE@1!r@6f+dy@z$sfxH%P-#R`{XDk5PLIXFO>FZR9{)KL;RKab=R0;!kX
z@H0%hxl_+ExzP+5Le=LU1J%0hF~}4Mn44|5^UpFRob2tdHBvv~=Ou|+0o-8v65DqI
zyM8_tpg|qxZ}6#u3hDds4yz9JCwuDfe|UGx5y<J=j`!^tzcviGL~FxA5i8NRUtzT2
zNR#^0K%4qDW-|#~mfKoV-Kt$+-?<6wOSb1cjxn7-uNQF9FYH1O{1Ewv9ynMtRlQ|N
ztZf_BBjZFoX}5q((O$h1`0OW5l(~oiX7?izVu~m$W(iTa)cUIIeQm8)R-M3n{B%ng
z=BYeL$TGIM5G#M}U<3M{l+Wm#EBXP>{VNW`-*&-T@$VbS+{EY9nvprAZPvM0`MLC$
zQDRvR*a=EMn9^Sdr-_!Qi~(eR|4>Sk+L?AeU(s`j+iPY>K%57D)HEFazK@3N*<*p~
z+pS=&814zyOL%v?h7$y9PMII%uSROYsz2L`&N-JG(Ro8s-LrQ9p?tV1o_)le@HVwS
zVG@OA>Q?1(Kc#$qM?Z~Qi-|4KJM7Obq;7DgOL^6zn`VWDD{(h8d~Z*}N4Kaen!1ej
z!+x4&KV=|oHO5eaFEr4i@?wACI7`d1KkcHh!ke$-6ARFL-XWb~8T^(N+2=^QEZ>+_
zW^p;XJhWZeT(w9I_XO3+P6!Fz)624OgSyQ4US;e}D_Wp-RnQF5Ub#nYS9TaiOQzst
ziA+xdI)T20h70nY>Kl2A+@{E(04zMHhl&vYT_VEv_`kuM-)pr_;E!Hk?G6CIpLv3o
zUb6y!1Wk}rsN)4(ltWiKRJ6xmocql~p7}di)1PlqnAOvk(ny+1er%jZnab8l73dnQ
zX{p|DTj{f))CuqKmVnFgHsiwFfl|@8OH@T_*aLG}aDg$uSR)i^0>0=T)ml8S8W_k*
zB&J*FE(hWCqx6AmB2BSTAQBEqiou=beyr*}vYVn*MPp)RwF*QC*1SkkRPO<T_wWrX
zhAZ(binYc~eJFf0jw3Bn=gm%}4^)g}(KFZ#NN<isCl^44Dwd~_C4)-%1^{%dKn~wf
zfvj!``(+(MyHojY)u)QDy*Z-Yz=|O3!WF%u$nyaS*pOJuA+f=@UgfR$6*62ftMv*7
zX3;R{l}SJ!a_^9(waN4-3^^4g2StD2xlSw=@1*N{OzKeeDZLb&On3n6>o4_Hus%cD
zq>3Za?S>OF2xP-`x?=ZtI<!lqI15Vh&ki(Gm<xc8WVK^9pgTjdQ{C)r0Zv|_yoZTm
zo_nL-jwE85j9L6^cyln6<9BF7dEDDRL&-K`fl;^G&gKe%pmqFZHj48J@Y8KznB$WI
zjTw<cH2+qtL{l4!wA0AJ*>Vk88BN<-R1j|qU=Td9zj|a6G%C=@de)^V8-M&K0r(%^
zYk()OO#%4vsI~0RhLmML9?(95clQiH+YqLlmFfQIrQi9Dd-jE5+>u_c)9+14|M~(k
zA)~j!gw%60nrA;`J^B?&eRZ1qv}Y*m!5JyA&?tr2jH^W<*+X;Wa;E%(HgW!CW+(o_
zMz7mtAqD5}KOTk*fWS3xDP4fNYacitzF>p{6|`V%wUwQV7NUdV0e@4;DO5lbz`oL4
zZWIz~b6G%Ph5S&h353k*kC*|9uBybjI5O5lOZNU~G-i4d0i~D~qdb)xa#|{5Kln9a
zc=LHn-B)rz|Cd+>9LX3<t53ag0u}!_T;6ft_FuW<37;<SXDoZ*)KR8?9Xm|-z5~3}
zESq|sNj=g_-89ma%{Qs7z0{{{YDY<RW8Z+aJ*?B0z~AvBz*}JKAG;SMQj<uBK;sPe
zL{b{WfV8m}f&tF+`QI3clzPKqw+mWrxHEOWN5ZA{MV`6@YiH|*(XnR#_IdJsWhL4Y
z*PDztu{CbpB}#_G1ptIa^a}08-@wxoRB#Ehr8!$nBuhBwLktvWg$hpKxG^3}A6#l!
zI`ARQ(%VkAEFD*3*m6&?=v2qALHM67;q{Oyf&Rg1^=vfBAEc?{T;;7u!=(kcK74vc
z%{vtnBhl>Xc#U<rrxw!tP9@?~#7PX?fUhEfB6=~1A`VbKp2Moty*;p_`4mwQL!y|B
zbBWD6bvVZ06Wro@G^=CP?&dBK?!U=<!~LXDJ|HqXntGE~7!M$T+wHj(s2+}<BxO9f
zL*a)u{o}#jG9DDG8=D~=E2Ig6XZgeJ@X^)S<A5`lD@UNO_`|cHuGoS;n<}p$24M;x
zm`pnpg#mf^bz?xlcS#g;p!HWr!6lB=L<oRZG0|dmCB(@LBN3no{+IdqUvK$8&+z{=
z%m3=(mjCA|{x^UqUpK@5Hx+%LNfbPcm&3#;U+8lu)12%vf2YXTS3+{M$h(VH8(e`x
zGlCA%xHw0Og~gy1@GXZFjF6?p5^9+&_NQLyq5VXiLA&??jrQGrEZR?9WYB(Sh@gG&
zS3vs!kp+spC+|*S?n*UY=%D;j<##@%95+Wl;W4o9R3Yzoz+GfdNl%5&K^>ofyo^5K
zEcxLrEx7U<T;rsO`}q{L(j3ACQL;y~Oi$<)zYu0d)W!m8SD!i+o8L^OB9uo~vA1ed
zFM*mkVeLM3JT08G1*~G~GGee4YV&vcA*y{EB;{pMpt9UcFy`d7UVtN5(^2rzCnGQv
z@6T)i&fhixN!H<4V{74|h{3_eM45a-%`=!9WzF8Q26zc4iF*=oe#cvizmOvBkQx=3
zXz-+NxmA6P9AI<cHMEbCE{#Xq#<B~h_JhDp%0kx&DKWn7S?D<pb~WmL68O<VAVh@n
zloDm26RBd#yZ3g05qZU{f@q{&Zy?<iD9~$n*<%!Obva4=M(w0}gfQ%v@c{>ozsF*M
zzCMj7HeoC#^W|Q<8gzh6(D{!6tpuN|i1fVuO!dk^e<CZiy2Xp3&V+LVi$q~*0pVtO
zm(ijbT5^2|?(0fP5%(4L%I%N!Q>DWo0D30wZ8)Azp^wGx%o9{5>BGuNDsXzH9;+#t
z6<+?{=94UDUJ&po*!1Yt0EZc~E{}Dl^T-HO=zTau;E;We20xDgl{1|K*c&cTdDQ@x
zacmUl2$iqcE&Dui0IM!6BAAacqZ62Lim?wS3C72r`WHn;F<8J4<U@5??p1@taBTS}
z49A=FLH+-JA2Iiria&ZLHK?(8bY(QY6vVWE06`@*W~I^yj%PRKN&e?VpfL~>6r!i+
z?s;FEOr>|K7J|E)ItyB1MFE4+e@N-ZbQGLb^c8Q^BL+xd1{dN`>3iD11Cb2zdCd_a
zW(cN*3#QtO;C8ZCd`(LYQi7*hoaXhLA4s9WS0)Z9g)eodfXRe~w1qxJR;?4Hu+?vT
zQdpv;kdqalr=pjgOi}boa?p)9I$fUovl1lC_JIaR3V?JKMGgT*3E$B3b*Z^bWz1v7
z{O-&MiG!bl4&ELAsggMOY<kAGjH%_2wf#>rvL^ikIh1p+5;UMMXoG`di!%m_pxy8p
z1nsX-yu|)V<SRRXc2nZ(3cTZa+6Si}%!v(Ws03FAr*{&Y?wiMUMj_?Lw!vwiQBa&w
z+wlv#XkO#5>fM+Qd4O+Z8KoZ<Je1)+g3}$e^$ONr#dP-dUaJRGT%$Sw@pgz~Ci-;U
zuV9W7xdCHAR~=`Dl_e+eyR(i&GlleXty6<Ir8Hkb@CfLQMr}s)Hf{$*aI<DEods)G
zNd{>r(p7a)2UNh)QhrKlpIPMNGrb}v5p(w1>@mkB{nf85@&*i2120g++*AmN!%Qn6
ziQMCw&K_o~iiB58v?NqV_VtdhqP0dGV*gY^0PKP|fMxoDY0{m*Nol`!N&7XJ?(0w$
zeTpL}Q-x!Eff0=H7;Zo)Y8%)QIDzjAQekxh>(hRHJI&YXdWhQ(Ehb3MVV72vNM?>N
zM5}=6$H4g9Nc9rr#P+V~*Qu6|NmCoPqNn}(uQOAjB$n|brLLjhvgQf-37A(ek*~q&
zEmV8=rm3U)2h7OTiJ<vtCiHoo^CT3YgSCiR0dkoivZ4ft!iv*q$zN$c{wEfcpDg`R
zKlRI&R_581&cY;SpyC+(%}S_bh?=GOq+crDke{@efTyl_3kjG2zZQZCWP4~bEX`oD
zQqO$BCIXXA$))!WlWJDt1g=So$z`cu-E%*Nwd8rcs#i|xj~9~oY2v@U2^G;}pK_z)
z2lU^+qFpL731*-JB&OwrBFYU9)P)l=1Lv6y#fEp|b?_V@urV*vW{KGmf}R6?(^xn(
z)yu-z4!gT$CD!s$c62n<fQjkdnU!tiH-0{gpIMbp$<GLWKjdEj5fD2LCcy7*_{J;J
zAI$v^@#~TXzs$-rBzO-8DM&CQ1|R#1U{>Ypriu<34X?S+d<YzPWwON~i9gS$g&(S6
zC%oX(dD0K#tN3%#%c=aysw^^%EBNJCZyTCv&?#oGQ<9!vr3w5B`Oz`8F?92J_uUVG
z8N3h=v$XQ}hQbd`jzvd@@iTfmnd_w2W*1PVZ&O;YJx_=TIu6|d)Bgy$|9HXV0PMXf
zl*qwO2zm3AQw*^cH$n<<E~1p-D5z3Swc^EPr5~zFprCs21P~zqX2TN)_DAl~Mxlhq
zHy~*iF@O+9Bs{?Va1-$E>fxQl&y8vEok*Rc16RdlV36g`{+B^WDOf7X?<_Vs{&SRx
ze7QvBxC7qtAwPp~7~~a(X^|J3<stvcMj+qhc|LoO|2GD^M)6-{a{MazAMtD8zo9w&
z<+Pvbtx(#rkSxeMB$TU760D?_<6j7i5TM(k@Io`N!h)9)%54^fBjmPz#h?!2Kw6C|
zpsF&-!Aikb%r3b5>%&3AREj*-l+Of+oY}WvhEfEk8b=6VLZr&=OjOSF<k%RfBzgXI
z@agr*-s98v2bFgp@hM!tSNJ?l+BeRh=}6uS{)~WXiaCUJp*f0X=6)9m9$QDk!*fZ)
zr9bT2cdX(Qz#jK%^zHFeEu)h7v#x1;i0)qCGaagyj88C>o%b7V#KY#hq0L}7edoSn
z_g(OkdR6HQ0FnQyU~e1l!xcPOhTP*;z6Y#BcuT@p=71XKAE)H^0^dh%Z({U|+Ylqc
zqp=qehpMG#;Vt`&B#@~fGLO9rWKL2nOu}a^0B%AapV&Km)_;(qU$u3UFWL*Fp5C#q
zoKvBrEh2BnG4rZhsQ)flQr9pC_+ChS7q0`pT)2i&Ny7K>rtz)bOMIVCBd?7zZq@hu
ziX#xYk%;{39UyX=LPQ(LBzzVtd|<`tAsGKg&t(T|{^Z98U4fW+W$)pgSbP8Fe2q^S
zTF5C8m=O3Suqr(1kLUf-@54uB^Z5q*&e@`;HEuBcdd?Eo$oLs%o?B0w+kPDAjU{>^
zqIXOJddd8Hy=naZws-jTT4?0cOgzz0x@+||d*I7K2Iqi?m0&99r$u@0e~9u(qTKy$
zpq%4FIf<XY4!#37q{VmhyK0tf-|&6n->R~GWwGFU+}ft`{iJFB(l}dt+PM7oeAovf
zI&PW6){(GE%7wplSBlms8tCp_I!rLW8J<6~-Pb@q8`wKBXYjsz)LWoIrsjDPzqcs-
zOQ^ra)ZbzybJ}0y5~#&L!gisyN`K*qS^d3oodQpg!t}jC-3YY1P-88e7XpEsj1P};
zJ&Zk$&;T`x?knZ?4;b>?J2eS_y>=a;B4%FO%p&XM0%&?MT)h&wdU1rz?s0pp0SQ`=
z1WEY+I{g3gK_7dX=6|=f{}KPc^);~1{D1R*&i}WY;s0H4`ZWJP<o|c7jsJ}QZ#2Sx
zJwJpY1E-cD|By?@zj^ZyPz`VX0iwq}%vsl;8i}r^1Q+PTb1Dv#gL5d$&=8Ke+pMO7
zlzVg5xM^xL({m!|*xcDqnh6Yi(t3l2sA7<74*4Hi$Q)>pO-=n&jmuda&4wGMyTe`w
zPR-2^-6^yBTa)@{KxM-kpldd)K_J`xgb%U;LLemI3s9p<;|<ymqotO2U--KbPN348
zsbQvqQG)+m@$s;e1TCGMyJsB<EC;>R-a+Go?2;2$V~O{-SJ)-qG0fN-m(QX>_WT}8
zP*DO)%FI!bCuv)iZgykpDp>|L3-dl_paDm+pe6T??TiUhjXBwO&gv<VJaRq(TI2)<
zK{XTrWMZ~C34^yB_t{%_>=EZ(@;ZS(o#VwQw3=sP6rQ??F$(UVSAlt4txd8=a!`1R
ze-HMl=1X+*dW9<FW<P6J6)H*zIvB&O+EvPO+kKRvnqWzY0#s_w&h4p>A(DN3dc@pj
zgSD(6lO8mGfICD`tp<gGD&V%T22#O6`{9qOmi#uJun55@(HcAvVGUo{E#hoD>V@8U
z4qTJNcX#AU&~6!MN0&5#e&dhDSR#kIjP+#s6PVf6EWZW*eiArJpxwKVk%hJpDr$ID
zJGSZk+wp^w>I0yRg|F<aK*k$ZnAlLYIw$fFueA$oYe%Wp9$JCc<|V>A7WJd=I~Jil
z_#Yv(IAB%y6T<l(;|Agc;Egy$Xk!uD&B48r<4%cn>08<_V{k09{ye8$J)*1-KAgF6
zaP;K*NDMVpFUwl$u0pURLUDP}(W`iE_@}$*Ai=k4IS5C`-iLAmJoY}5#$lQessAi9
z63g5ld&BleAmQozTi`AkRKGcMP^@#-kXTU`f`N+;%qom!$1dxaF~sSNQ<+v(9t~S_
z;NWOQi>z3earh4Svj;~rvAtTuUKCyLwk6D8^BUXeTKDIF;TZeqhKAMd_5%fnm;V7A
zeD|>=5|FlHFbGI#>$7^?5s_H8wcNy(6X~;NT$f0!-8PtxweUK&*(Tk&Qn4XPll2`M
z>o&_)*D=;^LA2ehXtxDkUFRj##X6g;?}*@{ZpF63F2P0Z%11}r6_1W~EBET$okPU;
z3ckZ|gJj6o*D1KLUH*)Ap&8xsz1p5is4Yo<g41>?e-K(e){f^4QAa_uhoP$~2a$Ov
zDfU2Cb397{C>_*iTd?|GmZmXe7nsj(4Bdg~TmfhfQ$UX~IRA%;b29EisDRSrPsm+7
zU-dXBq0Ah<>wX4J($)p%qqk+x*aDZy>;5I=Rwb6BZW^1^TiK*bB?nQd=H513`_;*s
zgC&^VQRZMqPZ6!lmqN6*YP(|SouD7%&j&jJ+*q^(`vO|<W^`(;?0jER5juefGZoM#
zgwbT4Y^PIbSu^NHx9nDn=?&}Lua`jB?=_9#>9yw+=I&DQXg{+PpSo2ht)oxnR*}k%
zddAMm0?LK>AEWQ=={M;}OQ%cc&P0^-cEr!-k*l-1{Ui<N(bfuO!;Jd6meo7mmn`Up
z4sT<y_Ig?0hhgJBg<&{e4Gpk`q9W%U-fkPbeVagV`nOQ;r!MZ70o4xHuI4vP@z3Hj
zn)xmHRK^=g%LxYVjR;J&v`1Zv^6hU>oDcD5sR9e-N)T^x62XaLtl{W=D_QQWNhY_z
zk0KB>N`n({rVw-0^OZ{75rAF7w~#yM5ZrU&1nOsy;X2~QLaKvaVw$c~myyh}jfa@H
zlNlwM51UC*#Rw_zQa^U<wqJw%5<h+S>LJtV=gK@Z*AplfxWl*wsQdf*KnIqnIKGq%
zEKc_e@Zp3VC#;G@zl-0)PtkTz5S}{V1iJ1d^9cHz72+-|uLBgHqO0`D2iE^m@8^Q9
z0yg*52aONsWVaQvlT4@)tT)}2dmSom?tZQh$jt<q4=xP!9o{eF^cLf#>r-N0+1lNH
z0F`KYpgR&<xTn0hdyl)e{ZD(`8_&X@9noL*xE(J15#kqUkpnhh|6&K?2%MelysP`*
z!0(m9HuqqRS;;%dXA!&cE^VhHf1kH2^JCd(j+D4~a6Rzh=+iTn2Nqn^FQcVT+nh6&
z;k&yc4$MAPwFlas;rU@V-DUi++)5#AHVK>M>k>WvOY|hvJvKPhRzy;$2@~ahJ%`X5
zl17}#AakF-l^Y|`BO2bNT6^`8U&BC4@L?>lgZ%)Cayt&Um6A1x3^-csB{*1kv?2rS
zi;SYh^%VD-<*Kos?AGtXKD7Pa!LI??Icz$QO+U}3y<6A*)ArxRkuij-iT3-e_E*2U
z_wAP@$`Tt;))7d;WD`?{VYQ;>ZQ1j^CkXkG>UxMaRfJwAGa*Pf!+phO!grtDbx$T#
zx1j$;6ItrEoKWnbJ{v0!3oeRe1{aOW9E~3#?1F~<#)gmCG~7AdC%+T_Z?_iNqhErj
zruf!VQ3!m)R(aepr+1-(ug7X%tou&#h|GaQ(zg;$*%1w^ZRIKQF)Eops-3}#P-y2w
zwN)Nm;gxo<jzTjr6=zxh8$Ww{O5xtKL*(S}S3r?j1SOxKJVj6*O_I<5ru}!GHj10n
z{(-9fhhF~Qwtx6DjkJHy_X_{LX#e-1KLpa73sCfztqj~0fb){&sDgC#|6QGFAHpog
zwt(D;kP~^(*!-n#P(d>1B~W4-If3JH`c~qql_MJdqJ_efH;M0%?K}zgH;vA?y&h4j
zBFdVN*gq{B9P1pMoCeS+H%z<v@q}{K^}yY)VqvP-sGp1;qKsd~-iD2j7x`=_QAmRS
zd^P`&;4?|j2-iZq!-JHYF%ic^><rfYfCf)kRfEkX5^E%f3h^TK>+%02Xwddx&0{u;
z+UhhIU0O*PUMZfFV0?e9xRf<ifM<jAkpy9Xy>bA4KqYV^H-12e1_O_h0^V6TyB>MF
zL7l*-!4Yo#5=-F2lV@vU$#?_)e;4mtlqXvOD+KO_+^gq9x)zE*WxD)^D$G0HAU*@B
z$*tt**x`R+%{eKnEQ=xcu{Jk702B$ize|&Q3mgS^<O`ttZ0)Be(0lx4$@U|~zPkJW
zHHqht6+h3j$n(*=8{zp!iy^u(EvqT~9$%TReWNjq8s>Q*vA&T$-&XVxE|Kz(+H=9%
z^psb^DkLPehhUl8PeRn$u-F|4sN&a)B#OPS$?&=fppy|lprsk~`qQy`Co4<wMK)RW
z7b)dO@0YH;bVE}A@MhA_!SuT#n!kOo{He{P_xNwq;o|7_VRdqVc*MDREe+i^IwITL
zCom?7#IDKkgBPztDO#y;YW_)S@?$ozJR`n8R;_*V;jhrrdpZ_Jb)K~8y*j5&_vrP$
z&EPLDfwu9ZyV$~L!=G;3pWtOllb#bF(alzoCOs5y-92r(2j6I$!C&4>U)W4~t3yl!
z>B|pKo38Q8iSM+@3HXCP;f(m)ex`1+z+b;gpLAx^>8By=S~D-Td?+KnDIq=4J`G4`
zAEIj52LI2vb|=#YZ9!*A=-}-q_B$h=hYfmEgOFJNS*i8wYOSY9*HP+kiB)=uX-^!n
zyStx5^^X}0{q*tpw;cN>RSti;m9Hy*G06$^^~xWB+5FV<UV5u$(swkI{zWtC@Bg>y
zp1n(NPevgsH^rXh!-_RxPmWHLU)htFaKN%*2A*l@-79GGq)q=aeY!{QY1U}@%PV`b
z$)*tuf4b#&&kkPukgpu}2|h$O`wZ<Fi0VxtOs|d!<?~GWe6#>V?Jxf`B5G60clFs*
zv>!I*^HR&dlBWD}wTzk(4_dQoDNY(Sh0itV>#HIN@oPOhYbs1bznu7&2YC2%yr%nK
zOW(V@rcL+wx5H-e*YBmDgOCRWLHhK&no0j6ZMudpCqDf^Q+<MbD0_NzADfsYKPtT~
z0&EO*66H&!uWl+G_I6BPfB8gvxEKE5#X5dcj~%M(VKDvvU<St7?(l7m*y1;zY04iA
zPSf$}DgM9M{Dd)oJ_N@7BbKW5KBJ0D$ts-H#OpIKRKSoupF{Qm_;MnCoQNN3=3A@l
z06#hu=PYgbY3~Jxj;8L0H{iyv#Q)3O_5eRIK0UpBypI#6Q{~6X=Y(A*If4J4{Pp<3
zWJq8C0nMbh+TC>d9nF;g;=fJz`n&Y@ehdaHDQ2kv-Js75`u)w*(&UG@!+(4|;1}lv
zdRlr9Y-98I>1oq<rcd|yaTkKPQ~3!1pif`fH0DTKe=o03Vx3LdM-Et02s5yqY5onC
zZ_3_hrz_txJE44-#+HOmWAEQY_-u0f*4`i5-qxe20eqXmXG;3|st7{-X0M;M^`+W#
z_@`c%nwGwg`ubB}d5?dsY=`MD@1+lKCjF6S(s!gyxAy*SUw`X^Puc6!PVy7g51&du
z=;Wr;H#L<G`J8l$zx+Pi`>X%0rl}gU_vEBI`m09l{YQ`es`maStcm{*?7iS{xT)J`
z?+*d^dt>jv_%@xrwf1HDcP2T(K6vtX>UNXC&wnqyM>FXM{JZJ$t(r;S(M<i#rhENe
zdV4<!p|i<mC0>kfun~JdI8A<K??13Z5iuEldRcmpu)~c6dfW8Yc6uZs-J|y-HiN%@
zW$$;}Gy>pHxAhP7`Xtubl)e8g0&G(VGXje#+90xgQ}&(#x+&#*wN5A>hKe?3?>|Do
zYjSyO?|);bfiyJD+j}Q{eblgw`0ZXlYbs1bznpk$Uw`SdmzKVZ(x-d;JHU3B{`$T2
z(aoeUY$m;x?NI&oYxr{FkJ{t}`B3(J@Nt$oN%Eu8k3PQX^skyqhrPe`H~#YbZ0~RU
zrfGZ6b0ysIpEqLfzkcXfwfDEx|4;0_;Bca;+h^~O2l#tq?{_q$v$s}0??zOJ(O;kZ
zdh&M;&QVes{PN?apV~}%k8heTe?T+ot^V6|+o92Zr<otV6#=x#W+h&VQjOUAQEBok
zd*5J(B0?}fy)3=2w8M=AeY5FZo10%-XfychSN6VbLWko|xAl+kvXF;O+52k{g_}Z{
zD>JOhvV2qa{<w7I2O?D6$Q#OsX>1$u@4sH1+P<~-XL{=zy1Hil`@f{GuZkeVAMpBN
zTc1xKH2reoU48v!YI-QXB7M52FFkCB>F1A^KE9ds<;|oYU^`TQ{TBX3HaS85lszBS
z(=rD{@RwKVr{y)BzPqV(*!#Ih`OELKy^py~+xsvW=}!B&5qtmheZQ)`zaJ~z{{#PC
za5&4<?X&m&0RG<C`&M71v$t0NAGOH|{PpB-_?PL*d+FyilYT0W-cTCkmmjZuk7m*j
z_;1r~ht`O_pNml86th;2QjOUAF=_HEd;g;yiU`7fd@a2v*x^P3y={8W=H}Oy+YJ8t
zmAyYGp~LZ~+xoBcvXBQ&+50JoKTaXc1Uo&~?0n7{>B^7z(TIbTr+7DJ?|)vF+P<~-
z=l^8uvG%zce4b8UUll=!&-eOaTVJX@&x!Z+^_QvXq4@gr>7KlwYCB9nf4uZ*&7{BI
zOnML7q5A9B{LhK6u*nJXr|kKd!~FKxUtXmTKD_DlwnsFP4txJZLi#@2`+K)EZSOO1
z{+D~#hDPjt_T9g#y?^Ha{wMZca2RIl_SyUM?%F$hf52v=7=Hd){a<906Zr4R-{?=%
zmG{zzH<Nx20(Y9S_op_K-s8Vbw;fs|_WlXP!KRqCDwJx(-cL%CU)lTp?NFp~dq3Sy
zuO-mi@}rj>jwGae^nTxF@bgpI`=b*&9Dlm4e}b2Vbv9-19Yoir5N5iaerwj=4@p=4
z%I}RhG;8m()0DUN{<0mm9&4YQ!RHmk#U|r}`jowY&FhD4eW~_5C*I4~U#6yq;$Nmu
z_xN{??J)iP@zU>VCjE<M(oeM=s=t0~@7LSp1o=|-eA2;9*z0gce3Ta)1S0wCSLF|~
zu|1?=QabGYiwWubZ111chd4Dhe_w!(+kNDnM(lm}JAPGr|LXkziM<yberM|T+51ap
z?VY{vvB@ZgpZ-?=SJ>nP{&?~?{)2Soz4Xz|q!0hF>GJ0^lYZ)dn{GR_M(q8Ih}}&#
z1MyiX)rh^nHBEkH?+>;^5iuEQ>3z4IUQ3|2<;Orf97#y`=>3Jw;ICiV`_t^)TC%>`
z`lowYSZ7oA{x1lwO(D$PUZ2MDP0i>0HeLA%|1#pxtiA7^ro6TH*W&s;p|ba<Iegwk
zXlyb**51G6^~0t{KYgve9O&yW)7kr->C-*_4YwVpzkV<Mk!I3&G?RXg?NI&oTll}U
z$qDkM?Dee)K}!DeDt(L>oCG4JrXOu%k4VF$blCgVji!6}kAKfF)?ePrZ`b!tazg!H
z`Q<i)zr2^eu$lBn)|&>>m%po-^lAT5y2WpToi0hh&!+eEY)pFimfH;ebY&k7iW}UL
z`D5$9(#t}cHDw>BU=)(9Pw@#~*(O-NDf@6ny7D7@_7Ua7=)xNv|0DP{xqWLN&bMZg
zsLH?Q@Oe6YeN_Y@KHsyOw!T#T$N1l8-%`^t{!gFo$>*uou=)AtrB7=n{rzUrdssu~
zuV3>Y<A0l+Ab(o_y<ij&!Czjb54N!)q)}>mTQ687HJ#)Cg!Dvza4+}Ebq2HCXIC1Z
z5Bra}UoIypknfas8Lne9B?VPyPKRTN{c?%zPi#D%S~esiP!RGOQtkiE`ht~>?1QeZ
z1575`TYi{`?+gN0Zfa;);#N$9r+2Mv=^$C{KR<mv`8aj0Q9ysX)$jE-Ie|Z3`Dt&b
zEAOR`Zzg^8J584#-c0&A|82Tw-_x((tzM97HsbS8su6#0ZkqfM_wtPRF&`ULg(qq0
z{ivM|Nuamo#|S%}k&y1udxy>7uV2~o!Jqj7@Tc4Q@Ak5=&Zg}7(->tW+tc`?pW7x_
zzA1ZtO}g^a|CvxeOk+wyr-{!yE=_rB&u_NVHlF-9gU?5ZXidh)`g@;v{j8}l4gIkH
z#n&IEv*)dS{hcq}<KJkT!C$|ZzOb3}R<=V-Uw(MnbZgId+T;ZJQucbT7i<C|`0H2c
zlWeRAX_T6NnimX`nhtxusnK)~|7ouq0rA&w<+tY>COM&ful)NqgTK6&zPy?Ag>RY$
z(wBdvne@B<+jP&KrngrIJ(ViP@ogy8h`svi$<+MHUfsCSph|Wo(9_a;ryXvmPk;0y
zTSt0&onwunKV8|Yxi+oQ_P_M9kcUm#tDm1pMKr$i6A!*-?A0sj%CEQ61<j66r=%%w
z?bTbJ-4|k$-p$~1T>AQ|Xfor!@$9&*&u4F}zWeQUYI-O>!e@_t>7KqUv>E*T^U~9=
z7klZ$t)Wg|{*kol7XE>rUG|q(_UJ1c%aANTDt)yVtU!AE@KfoxCItN@rNdqwoe;#A
z=>Ijpe?({y0<+u`Urq8qy^Y200avRud`jHQ=S*&DK63noRR0sZL9m5b?;Xc}kYcqX
ze-t*5Z>&5Mo47GC$}QvERy+*nKCMi%NhHeSTV$g(4vKOgzm7Y&p?28gT_=0I*Sg=|
z2=}ub?q?!BN)q8Yp)LYnyLZE}L@OtP<F9zOT7IO(hKMx56GHACP1Jdm2{@Az*;9wh
zI}V<_hMUKIo6OxBG}!Q`B>y`&Z3ZZdHuJqR2>>E4jgV7s`nO<RQ%ZOwv9v8$CSDQ(
zeNIMmI9{MAmWe&rg}p(X4V8zn&2W)GCfnEHxw}8z<9Y3mL0}@-0&LDJ;7^>*Wq!Jw
zCxIvzC;H@x^w~>!LC9f-+w$ckdBMJSz46E$J*E+P`7J<bV*mLc68S@t<34sJFTsTe
z^%e<<fHnpA#;cfzfii0wlMp$0g&X$={xLy9-1RpAidr#AY{KkUiwE5wQ|9OV>7RU+
zlAb`n;Iv`tyace+JCBv8E#icw+m2)!B)>EgJE#Vy-kekv8vrye4&f*`oXfQF<_U$t
zg~QsPjmtPkFXnctA=pztokuDlF*to2U!t3ej#?Vo`9Y-q$1?{VwqdZ-t<?#88d}ZB
z>>Js$BGTur$=^p}rxoEg+M?))P%L{*2RU#jI}+_hIVi?479}{BZJYZC#)WQO97dfD
zb9fnbK973pjkAjmUd?lxpkPksNVTIE2_ZN040Qr1fERXzsVPuXeF#`VBz6P7w~6%G
zeN$iRW<(vcAS~c%2p38}K~j(cJaP=e%`qsdLE(zrNc@*yuo50!-%#g)>K^yTPM(p|
zV<IH?4x}fJZ-dkB;9Xhi?rWps;eM+uoDPu<3zI_*)XJs6>Oiv+Wp?y|vrf0R1iBc<
zP(Y|~%Ea~w6+EqC`q8W(Cr1ID$v6qi$qWi@?CDb+|Kj+lkX!LM`*k^blxM3&2Z9<<
zKVFI)3k(c_4Rw_`z)p_S!ll6eOV;?&eRm!h@})X(#0lKBQZqpvK0)gPAaV#}*uCL&
zvZ8{gG4RYF6bCXzJgCGRp9@UlXF$(==XvGws<t^G3Y!3IzKiGGU7dfFtYWN4t7C8+
zMsQ(qTi%A=ol>ie9f06jUNP9}*z>9~=k$~00`nrAq*fGbThwPoaQf|NMP5EZQHoWB
z0#-iA$viL;g<vHTj|a&0!nO|L0s8ai??mFY4GQrfDTa9F)L_=d?g&j}x#NB!zA1E_
z`~c|shLT7p&~JsJD**!IU>gV@=!!!U+{18ngB8p?f~g21hF%b-SR2d%X>lA=&k$L_
z!TQ{7KPr-|VxXFwi53C18W*!`Ma<-?T9Gi3wZ_FP`%xdIN|PwHIa??Nc~_K@!|>#X
zTX{be2wpItrKC84lb1IkVO>v4max(^5_T4lcW15?1+7(&o77`M1zH;hhNSd|HUDFM
z?Y_7Ax(stwB#nq%vcBHku33G}{fl2;zgX4;HCOdcrsh8DtNZ7UsVa&KtoBYt578>x
zvIyQ)QJ=SrisD77C`5vKKox~9q*c+`fA!HTSw*khf3H+@?XI*cy76AWir%}_sHoUh
zQBj`GBPx1RFRCb9HtOkrqN2D%*k|hgCn`GTVIQTERrHLujjHH7bCXo`jwMY9RmG_k
zDzX346X@d?VW0e+fT(DEnW*R%_4q(N-YrLKmx+p+p_x1r{F(7r!5<6Lmr>{4(aX-q
zg~!KHbMiz|oWQp0&G~#7Dymc6T5DUZFHZAib}Iat1L!H-O|Y5`Z@U8kP{Y);{d@J+
za>7u?qi)LB^u&l0$*XAr`ESE6N-oTd72_zw-I>ALe&B_f&ZsuHhp;es`~TDSCg4?7
zSO0$yq7euuD%3b2QKN=BMTJ*z3=-f3E)pE0QpK6pp{NO96$!lw;Wl2eYSmV39cz7S
zTdRmT2cZER5v!usibM5WLlvhIppxI`yY@MENCNbI-~a!4Am`k3_St*wHSe|8-usXI
zda9Ckp4A_3;f%f&4IP|)u0qXEm)7&ppN%3b%5$5iR<T*_&J}a7?bG3Ryim3HvtDdz
z8%w<C$2*Fy+&h*W*HM+&=*K_xV#$FI-Lr4r2yfvrM~@%A_{x`3OQ=!>V#xtFg>R1H
zjTgU{7g3FEeMhub?$}YT$`fyM!s~VYs*-1P#D*`q@{`n66s$^4<k$0F{2YE**#mjB
z*&dAwA8kI>TUgU??xfNqTPym(!wBr)H~qwVfBoP6#hZ`!_kPpwVf%L$R1ID!!Nzd2
zDkNy(uoRIHUyu`$=Z@$nd&v~V(y91_=Cauq;o2t?Lq9BW4Cfgx(w>iUkz4Bacc|xE
ztbq;S%pR(Eh{@EmvM>+`3*&cisJItj5jnlBl|>!ww>RHV-uSMUoG;WbYX$cm{@^cF
zxXB$?ZT42R4t}L7u`b=ISNtAyatM80ZWiA<2H3^H>fTb0@&wc>ps^3wYhJv<ng-g|
z$^x2B)@)`|W-q=Ek9o4WB<xNW{8fpS*0WS0{fKXxHLLft6wXUc0>;^!IynB8ClDbo
zHI^sINAp+;FnhC}PwyLc#r7JdY=@P_8s(+-a$mz@e63v%Q$#2`qVi<E0<+`9)OFwS
z1KihOp>KLN5`P=%Y8*4`FlR~7d{T+H&QT}$BsGYSGpzokwbUni<|qE{o@_uigNs^B
zC7k0fHSRLeUB<f0NOw8LUG8_6L)_)IOSfd-*U~CF!<W254*qDjuPNFQZj@dDca2=}
z`Oh=T>FKY3Tb-!(lUJ2BZ0{|+roe==Lq@#$nqt4_HOTa`o(Lb3d@oNIRf4|f^oOC+
z$Q?&%``hDq&Pb|cJRbIrs=Hx5B$AbwTovC?;LRJxPwuw!8vhA3k>9r6suFDM{6UXc
z@`vS>b1yxzqw2M_vBU?l#QPj>y4{uiV##wl#t(n}%GIe4t@25wGhz(E;xFr0@?uQT
zrKM95{a7Jmw7+`s$9O(Bc4UW1_mGbAssz&g@9~WvdpBq^-dN(b@q<4cKYZnNUKQa|
z1mo2!-%MT2M|9cgqY;8k&^CTX=c<Ok<i$_oz0}K)iu#UnuVJ~KhhKZ~L-ew>lD5F(
zWq$H>Dt*C=Z^z@-$|E}trs96BBT)`KZF&m?pnys_^k7fKXQiK5=C5DvFK$Owtn_=V
zbHlvBwl#C8Dt_^mQx%+*87r+0RYe7=!e8PoJh=~z_D?rDhw9bnfo%!i74mM^^t<!J
zcO|JGiO&-oQ|EDQSQSfrnyTcEJ{Q#;TNU3_<jpx*bW#sTc?(Ceq1>y8FpoyfrJH(=
z`0{9f9;xS>>A4*V;wmHaF|78V+=21bU0fYXhpS@9zPls)4jHm9UfVNG_X6*yJL}Vs
z_OGXmTjCpf*PWz~i$vg9VvV184L+$%d<LuZ_I~<40;W%@5=;F>FNdadMB)v9{RjTy
z&tTof<+0?Do2p*>BsTa<@zkQ!y^hvJUgKS24)oQG7*a5`D)H~Oesg2TbyO|>CuS!V
zL!*P9EBCERybQN`F)6ik^ht7h2b|Hj&-me=T=_~W#-s6x4^yWA3R2OJ{ji1_?VHEp
zHrYUD&(h%JFC0aOcBQCfiLgUU?a{g`(A{7psu)TZRCO#*J&elW&A2|J8dlVOuDe3r
zeVn?D7o!eqNzDtdO<d=mf_<S?#S&h9B2r<t0ifalPaov`78I8Tv}kQpW*jA~@1zV;
zds7SiyQ6eL<2R_%jMS&{d1p%GuvMuic@^}1+BDfOp0djg?$YEg_3m=DyIkomm$=IX
z?(ze7In7-rxQp*DBkV#q3LX!;!MV1t?2p0KcypH*t;OpvMis7S51x?pIsTJ3$4<45
zudR?i1S9$*^GIZ3N9jbffz1^q>`mFzPkbrkQ-kfAdAVW2TR5c8?9KHE{>=US<P|;q
zj^*rOI`d6ROutkXd$JIXN2F@wODnMAHmh&G8Iq16DbS;$V9sFqq_xgm7{VD&t1ThC
z?E%4r&6f}9M)>IpRj6%E@Y^S?v%k5B&hC!bhMnb-)8A>6a$}vUcbK2RKS7It1B*Op
z{AoZj8w5}qe)AT7kV}#157_4T3+(5<REc!_vV`W_ZpgH)yPWpDIg@ZHyNL%~UwRi<
zG~>`)B^cZPP7iRFHCXo+p1EVgyI#X5W}?ny7t$qO@@@S{{M~=;BhK2O&mG<kck&4K
zKLPf~@LU!C>TADFx8h&>i$B@UPuA{*uCt>{2_5MR6RKT_l5h;fy6gJ!Xl!p}$ZJ@K
z#*Q^_H@=xu7pnPRQN+75sS<FWws-SOTL96i$Z0e(K6xGkxra&@@f1y2S2TY3Qg7Y>
z%8qR9wNv?+xwSj>AjrJ)n7Kpt9y9may<wY{s>C;b0{yw#Oa2^XC=^%I&Pj9x|9P4o
zaR&Ph7jiQ`c}i)I@pz!~K18oj<=!QfJP(LI_8OM*$U*WC+7l!h2rRtWxFQ3D*YGJI
z#=x;~9b@D9`0x0N+J^KPl~_Nb<?~*A{jc%E|L(<S^J0v*uy$zP2%PKj!{7Jfm-7gx
zwkla$x*e~sJ(en3iK0S@SmJ`xn##GgrDG~FYoig-3m<bLYJnZSjsiRIeBcjuqed8?
z@r#9c{Nz+3ur~Y;c_U;6NyJnQto$_K_^d6~5gLsUPbbtmV3m$e-6XTY_X@9BH=hKL
zvF4|3FMYZ=WQV9OJH{&}88hes{GkOofD=lzh?Kfe63i>>0(dMr8Nk#09QGkPBGq7r
z<z!T*#L|E}W^pj5&XU+Qt{9*AYwAn^PD_&kWZzssA`A-Hl3@Gp0I6nfVapgaC^DFv
z9APf?AZCj8Q}2b>H*{6d`eK6CL`w^I+jMLmhm9N)OL&qTtkF&!)WB5Gy6XxgH<%tm
zT-lMn!J!L-_6RNs7*4K<C6))Xn^70f7^2k+`P9cfx)p5ieZbbSoy#F1mf?t~lQ~$P
zilOTKN+>^%=T(E(iOA??;C<>-b-!CCq>0oTj2s83_=&ImL~H6EenG|)q;hI|`SB&&
zW!^RO&f%*wdW5`md*f)Y?R}1CNexofXhN}V>Pt*mFkykIdEZ?|xXV%Qa)i6gpNt70
z*DNvtIr`W3FV6D)9e*UG{}rS*7`U6PyCTgz7SnWIIE{)0sKl7@3fp7>OpHgcCrydi
z&i4!k()?EDk0$4iJ<{!mO%$ZzFweu_$TVx}VQLzH8M+%5+_51CfcfVDz|S%^D5wA4
zoK_ShFi?v|)|q%kLO2MIXL4pRI^0rrZrOUZLE@+^A)w(A$_QWs8lM3{L^H}7dU^}5
z>{HS3uiCTx1hyUI6$p7Ye_N>=sx>l~1gmd#<6-a^lY148)#;F&0&@s0Ccv>5!9$<8
z?nPmMZB+f<FI?5sYLhp)RY!(fUPN&)k*eG7)rlRlv6=In`#KXJe0iITEff)3U>or$
z+#X^{NJwpmviFlXOui79%pW!>JA4GLG2t1kg1HP<OGLghp{HEsf_=}D<7u<kF*zD(
zH1G_}aAd>8R5mJtM}7dO4@5&|h~3rSxLF{?*HYi5ur2g9-u3-s6;Ya&zvw&S076wo
z1BZxAEE8hNnEONUje?l-3<ZI=IOx04MGs4u8m^pf6s+(Qpv*{_fm*^NvIlJ+JE+MR
zT{>(@@b8CBguk5x@YP_i6Mw$p;H65rc#%I^-349(I1>TXTX;sFhIeaEO#{s5odCWg
z<Ot(kV>W=EB#MdIayjDo5Z1_B4YAO*(uKEl=3uH%R~osss=he*>?7Fh!Jwyl%zk*e
z<jV37VWZ!<^LVaAa&Qt?t1pR%N>}Qd46m@^8h%F(`gSVX?88hUn<cBW>1P}WDT+i2
z&c1CZ4eW;VZi_J&?fhUo#MdT=^Gh{{E61=r=ru8lSwYxgl2IRu_weStLNp1q!!B3!
zsNZz3*Eod-^8Axy;on<A=*}#JECc1V&AHV+*sFfifpvY+8qmvYI7r`EbywKiv#IVn
zs;lxE?&WZf`b{T#4Zq?h)G`e-xyOzP-uR~TyoO2qj&B;{H6F!H6tp9t+EJJP6i?{G
z0_Q-}v8nX`WS$WNC_O#zIiZ9xVJsOdJ$ck&t42JfATOhvj%CgWCtL*3XQnWz(*-bR
zrN@n^|Mwwv1tS*e<F>!@YgBC?{$5y{?{~b|#<=F%(ixR=D@!N(gWFF`%164-oGXot
z2X9aqY4HYv85@XujvxNF=~wc{Yx*&e#xzQbLA=|kd0evpPR7Y;F$$i+N04YujZmxk
zz28w*E+A^59q`mF$f@V4#_4!6t~xn&H}Wu5A}y7r=9cpiW%b&BcXc)hS31{j!CrDU
z*#2IDD#RwE{p{<I&{4ZNP&ts~;^BNaJXk;~MWPYz-1X+I;vm#{sqIlPt-ZD<-25Va
zk-U(K@a}b&`pFqRh^AckkspyGIba_H7m;KNvOq<PLX)Do(R{$w01`;eK8t5n2fwCd
zP!}P|fnX4})mJ6=MB&XhRO!Tqrak4@>t-3y<#3Y4qI#8vPQ0eo2mZ{dL+BHp5esG<
zeddRvaFwj0*Dw{I+go^5Kl^dC`$0I7H;3?pg9~sVU-53(+kPCOq2Qe1*1owK8b&8v
z&ECSJV$GuqV$J<x&8HQOPu4IRdfl5h1>UUESx|}51taGkL)S+ZN1<rxy5Ot#q==pR
zuv35<Y>4K#t7ApPq=X%XFzW-Sp)u%_X2Vyg-32CE;Ly}OgV}VDwApK#D`wJ-O`Rs5
zHe(ut+gf<RgdJ4EG#W=IM^XcH3qGAItTlvnJ?-GIS@p;kD=Xp8U*KoA)a{{?s?1N2
zm=LPL*-NDz?HDb+3WnC>_HZIoIM9H}?&2{_zV?BL$xYQmGn;D=6O{z7?ja_(5D&>r
zYG;wYf|T|(Xt3T{|B*WrCbkweJUmQE1uajak*0JbSZ#~@OP3%?N{9Fnjff9n&5TR(
zbg91gl>{?j#pm>MRo%YUKgTr;hBb5}u(!O5<SRa$k{X1m55~`;pPc?A+m&l(;zr(1
z=n)rfgfYB@hgZ~ZKG19Yi3T(J8imaXh+&j9zNUxYW2I<Q;3r2oBFPLC2M2doYjVJ?
zzZF)ykwta*>fO__Xr`l+2nvf*Q7v{wNmzI;l=xYFQ3r>h3sPU$z(U_92OO}a<|O*P
zGtK=EMgNxgri;CXXK<k7o2GdU3%EJ#-BgPl>cm%eKqN?dJ9U_1df5+3cz|Wn3|DpQ
z3H@XuM)w#|-+p3UZ*DF6Qj5pc1wFz0@9M*FOuB~tTi`mEW~zZeW=q|(q7ibL*xdGL
z>-Ht7mzWyHh<Xk4xM}Tipr0Vg@3quin=!t=RD0B=zQs`we))j8So^rk9`4fME;HR_
zdw1#ht(9zdmvc|XL%Eb1vK`7!{@I(ff<K8ex>Tcb{=nHYj;*IJ-t~Lwr88EHh|eex
z3sv~dS0Hllx9!l{Yj@1ul2~#~FU6S7j3q~sRkrRrl8S7KC4a<yPE<qAW<tr5iX=}Z
zL20p=3hy*j@U>Vbw4GWHn^Ywj#fr9DExAYG9vvFlw5Om#+<nzs;}71fv1&9ExjCA&
z!$~MW-BOZvX|Xui=ZnbGrAwR)xm@iqb4SkG^D0PNQ!T+IF@c~!uQm$`>@4tVOp=A5
z_|hqML}N{Gi}Ei&3qhTTPTkEAll%#GZvCtQe)38*_Z0<md+nmpWcXz=|KNKgoJ8rQ
zh7*@<P_%0|n#G`!TDkHwQ!6_Q7*2RjEHPXqHniOw>|nsK9?Ho7Lw7lEBIMV^VmA4+
z{L}37qDn;nV$q*J`32`64c-``bo|9RjYaAws${_B^EeNWv-QSYw5<LSkOtb4K4XpM
z!oQ}D<$gv5ffN*9MTNht!ngO!Dyr-X4WP9ei0d%AQ<Rwbj-SxrOo}g=f6|=j5W|9A
zcGlkA)pQ`%$;0l%zjq6SoSXrH$}nt1fopw4v98Snh8TQTm!Oz0=52|davi2?^MLQU
zw`G3vjB-jGZsYe6{LKINxegcHUU7pv3=lccAbOuALQd47!&-vbWO*VP+)Y=$=kwfL
zuAAF~w<gdN<wk`0)_C|e-a?L$Qbo9##Y@sO62HMs{$$=)ZQ(r!$F=V}>sbDl)DG4?
z#|-K-1`#px4||(iYt>Rob=$W%%Ehv+R-|IQz2UP1GoOv?^4Wy8Zz*yx({Azh^15fD
zk56<ThgFTug<YNKM4x^V*7(}V;;$O<SB+|#;*ufln9n_Nku}n4F8A?5IFHL~nj_li
z#%43{#VaHv%-Z(q=O+}{2%|L+LO$CM@fGxpI<m6)_(o30F`t^#!8wUi)ABfM`0e}>
zBXi`o2)6jr$%d!uV8L`Kw@L)4fb`RT6N#<)s!%QTI%FTu*hOM%4oB#)(m#ENdPAAf
zxfENrb_B28ZQ}XDc$k6p+fFY3_xOr3M<aZZJ?ijPD|}sR_zJT}bMZACpJR*o>ifwS
z@Kp~{LVP(VDi>c3)3Wh3`qvS@Y$DF^rRg^)T@no5+4&PVXkk8S_xQT|F2mQaVq3x2
z7h;th{t9-tFr$3bF!(Y<R4m92+@Q}gft%vAt52~K{kUC~@}n&1cL{fJ3;<S8&WP$v
zp;<xm*dn_oa$`XHmv*ewCnaj1E=n6wm#^35V%Tc21Qf!BKh!`~G5qVh)G8mM6{6W9
zW7!7hTB2zje+G$hAcPGLjDb4wkDM{^fyK(?gXgdO5*?N-oVaX%x+R5cDkdElwf^yp
z4u*^Z7EDS^WjB=8t5OP-2iMW6-dVpY)Fp$~7y=*NTE}NM1Ol+j{|;7<1>lpNBJTw6
zUmUzh=A~4He(-}cEdZKDKRRRdiz$#RRsyF}bY~O+<wiC#jC5BPocTkCN5F&V8t&8-
z=}m!Y3$b9azpPg&4d(@)`_AH)<Pxh~J*yBcgX;~NkVN%@mhMBxX#6a&<D3;8d|gE+
z_v&P=y6D5lR6~4iR)19=J*2<f(7}*4bWkH=p3%XOHgr&~(-R>P%Jh?7Y7|2M7$6V$
z<2`%j8QA%Qb)c_=j~a%_t!d6b>_Zdn!FojJc0jNFx<xDzQP_?3WYb)qtYGlpS0dT3
z2fL_$(qm~;WjCGZ8OHnQhuBs6KKPjho3rR?bONwUAeDY*$zw3(YKP`2|7WSI79qio
z_%tnbPlVBL&=TqXP|zITh9Y>E5j!n)yZH2fYw<qwr+(jszQNDPg7cfR`d{O?5xRk<
z9DWWipYfmb?%|`i#k(u5Wuw2?2(p6;bFd={2gi<~SHrTXx@~$s`E95EY?Gcd{{N+C
z$^Z&Q)Km~Xtrl^&M$eI>w@uG!Q;}6)yo?i|Kh60KYfYEtKQF=Qo6)7T7s@N-4doT`
zN?spK%d3eh90}*ira=6u;>{TnxeC;Xza)5Q6ktuy5Tp}5l&#fSznj{Czv#7T4U>5)
z4&i}3z!Suo$X1aODU7mEE?)QJ9}XgowSVnC88r}zVi-b8>v7csGGqi%qVz#LZF&_G
z7(B|h_8JQpyZKWUr6Ev8(YAZkGT-tAH+&yzIYUHIuq#_y>V+wE0Gw1>mbw%i1i!8X
z8*C1jQ95+Kz)u{+<P87$B<v2OxMY(FtRg~GP|R8B9c@}a7fbeiZbZCgB@^Q<<C4et
zmSV}UZ{`W)CtP&}<MUqIji_%gzw&VY4xfIIpM1RH1do9I=K6-c@}@mwQ#w?wc=Irb
zZk?j>_|gIk6qi@bW$>yl(b?!Z!_V?9d=s2;oBWzkjdr4MKgB9L&F6)7Rhfo|Z|C#_
z978W_pfp}!@*0gfy?K9<ubsS#ap%+m2It2s>{kyEG6=eNRyv9@1v^*eBE7!d%JvQY
z7wR_MWbDZboaB%`&I@PiT#IkWjcEFiFYKmDaN%<j`WBs&{Rdg2MrIIJ6#Ru18X^}8
z+2Y(|sNOh2KKkwN$}oA24FZ72lg&?`Ko3u+-81Rki?hDRd;~q4K+lTknPxlV$|Ft=
zedlKRnnOZSM4XC5qhjZ4KC^>Ul4a^mxww8<2!V#wgVgY<Iv7er>bCj8vzK7&zA+er
zN4QVb!G)>`-Ze8V;wSSjwkBa_y3EJ0zxqv+3PO&hNtg2xxwkc;Bt*jj1-7eGOQaT9
z|CX*R*PEp3l3?@pTLXXcI|e?hoB*GI`}4%vB4;-B6_LT<^B>Wlk6e$NCxFa}`F`^`
zAofUq_&d|b^2cks1*}&#=l`&BUj@DjFVr>Bt6$~ZSifEbH0j?t#6!M$o3@k);a2vA
z*k@&5vzl1z99!@X@$>zgBJV#lT9VfVZAyXztxM7$F1)W#Ad6!R%i0WncZ)gxce~54
zDxkv~gy=f?8_7xzqdj^AiJbE_X*7GS^FAMPe4cdIa3X$&GM;4(TALo_FA;G=2AM5`
z{O0M5I=}Lo+VZJIH>0Vp(tAArq~rF@y9iXk_rk(-u<-e6VZm#BL}e2&`7xygneU=X
zv3l^EwGt`UlHV*I_uye9v<4m~roX#BOOnSzg{{4Mz?2h;DNtgGVwac<nHw9*Eut_(
zQ*I5T^(t9dzWo8nN5aWzuhI^p`KCurP9v{7BdRqz1Djkgi{{@i<)E<sxduAJL$NF?
zaQZ_R^n>7++!O`7U*SZR&%>UC>*FwSlGe}O0tZNIrD_BKEDfXT9BK9Dy#z|KB=%Ua
zK~E=?WZDt#(2~W|C>i{AKh+f(Y%RFuAL>ooZ1^j)_VttFK$<VLHn_E3B&2vq>Dfy~
zcr-!&%6SprWkks|fyDCBp52I2)IlkOoz<^Zb%Yo)($qF5_&o`iZJ(oOuC&^>pl43q
zR_zPkwA$e%shSiUD0BqXs`^XAVNl6^>M^MVD1ibDtt>&0{0%p_Zi!${+l0Xfb?a~2
zsapge!g&vU?CfsD5Ee(RB`p6P8i5t)iN&eMHEYm3ffMTCWpi1(DhDE?D2M&9M`(ro
z2^DCC=E6!{5`9q)mD$SStv4hV(xXSFhFTxi1y?C|v&?=dOiPE<mxIH;NL4z1lllx*
zLy`3*TQ#5+^l`|DsUJ!kH;*YtX39EoZ6)C~VG=I0;b13g20PgpGD3<;Nl!sR?HPl%
z2Rv;CZ3q%4e8ck!z@`nFxjUNj`sT8&OUcr|Iw^V5ShZUznMERD+NMcDqz{JCxAIU*
zGN#N#r9`44Z={SX=N%u&1i>=RWh95bdHq&w;1hY<;QV62x~eYX&5PuDEw~`Vo4?~e
zb-Y<Zv)MNM7F#9re_#!7!4g(j!^C((bEuCY!xT9q&NWZ-W|J5tIkaE89}%KuG++<K
zjlS$?Hxh%Uj4jWW;Of_{9|RPUF^u7I&8J+iM6*xMr#Efnt_6SNE`?W#oMo})t<90<
zn3QHqi&x2FU2W~k$CG2K#yhcPD=~uL>!ca2weIo{clo=!yfvIgPoPw%c)+yN@%8B4
zrT8q2FN)ybgW~PAbq9!(OE}dw-csQwdX>trE+f`j5WKuxY_9V0rNv9)?bB-iDuB?d
zeM_Ytg1<3+)b?I*AuYDujK$3HFQ?Vg9yMM{UucgGK@vrc=f+BpR7QNw-0BzxiXw6u
zWtG8Ffq1T{2%fV*GGT@zE>&6-xG`?rN!)nBOV0hbwO;<*5ivpO@@|6F!|481@K0xW
zyg6UUvgPD60n#b)_Vc}YJ0Xkl_8M<qlKSKAr`As4SM8qaF7Soj{iluPFU7TslZ~YQ
zRAkU*-E*=O^}uH96t#wTCtc!_yRv%m>leY^pSD;{@X9jY&x^O8R|}oa_Zqd~+?GpM
zywlN<I(utH46~qs30-te2-h1w>H^pHz?I^#<&Jp!kG*;K7(y<nJz2jR*}H1XFjxZx
zof@d^+Q9uU(7>bHtf_aWn!ew)rn6Mj52-2Mens6#QOoyd!}>*e)A#C(DvUxw@WR`C
zFwC0HrtB^RFH(D3J=5xD*q3l>H4_yVXo;6@j*H|&Z~Y9R1tlCU8Yh0(1(#2*pyK7S
zfC=<g`b&7bs7LTJ`ZV=>URoP%zmB)h@EQ|lF8?R2wR6{IN2=M0)D)~3ia2}|I<z_R
z>CHJ$PF2qSEdW>@Zy)2$d(Wsos&0gEI*k0j_+pa-(!c=iD~}wo0*7w7aVP`AoM;i8
zS<dGK#}ddg#H1XxF}n67>Z}|7KdTD<>j?Iss<ub%LqC$ji#a2-?Ki^Zu#EKO!W9yz
z2#|^|0;CLVFRTVJ=NNBaG;3F6%WJrhUrGOt_y+RR6mo03G2YJ1{)tv-THR0o<CZRt
zTH?!&V6s~J7M2P|4}k=%r0lZ4$8Js^O_q*y@k_i?4V(qny!W6^(tk>8`<nhNN<oP!
z-olCF=AKeICYl0fV-n`XH5Km7)1)<P)9_s<;=3M=@rZ`xultKP9?y!c<NY4*_^)l0
zHZ^5iB%~VZraF>}kinZF2Tp0Nz!9cZ%0gsuu$7(R%7#%?UKI!T+9#S2(?BHYGuB}w
z!gz<pJfryIHSG^@-s3}$IGkZlVhGL<V<OwdrQjuV=LRsskzN`zcg#33PdGh>5xtGv
z$F`51PX~OA`G%g-5P2YGK^1$VOV~DyQ*dOvEVqrl&4TI^>jaML6x+2EQQg^UKqN8t
z0CKHrzy`|;D+#_`-;M3J**>}Mr@v^1e|IzduWD*M3eQ8I)HR~`$7ccZhsIr_`E8UF
zs;Rvocz|_3soh`^W4i6UIr~xs<LWi+&Q05@;Cpk-xO<1gHZOqKFnH6|o+U)^Zshk0
zZ=SX(kp&xvVsvI~SQ>!+a~2+TVsHIK(oMW0F$%tU4Zv*ot}K!3t|XYf>H?<(okB2k
z{n$!APsZD?@){mAxTe*eVa<j*cK>YE+NJU7G;TBVTP-zFmSBIAS(GTdD1!AI4Y37q
z-#EVuxZ4A6iaqrIlNy4zrD^|2;ozKd=%qy`-O(#qS^BVxA3TDABz~|`$|CVl>2h6@
z?g}GmxDCm?dAE_;Du<-uzwG7$ud%lR4-{EV5r;Uh;Vnh*n%yQW1t$J(hMQp-<CbuS
zd$I~?hPzx%!|OHayu|b*cY~z>WrhO5>~r0agPNYUCM{b9l=86#<`b7A1q{qTmkvV}
z{LcDA1i~fpviRR?*vH-}0yG^hH5x6o+MD-)fl1D8;vBTpVb`#l>p%_9O%k15d@PKy
zS7<}BsKN*g+6vT`g0Qb!qcE(ukTlH3mg^RVO|gb-0?~+F*<@<^NZV;@f6z#rW#Hz6
zP(Y&+dmhem9J1}mz8N}a8D05T9lv%>T`9&%w8j!EgF!W5AhFJ@g@8i~*1DJ@x;p>0
zS<yJzhX1vS%ApCJ0$K2NJ5f0dr?N!R!xE_o?sR{`;Yb?68n@J>CK%_A0cR-4X4V>$
zEIoY5tUXDs17%}CS?`&OMi}4BUMe<HT=E11NAUs!$JDiqvW;c-0~`SXB-vvbF_P)v
z0S&FD(olpN%aG%<@98M8Z|LS{*F|F$8za$8RT*~k<*&9;??JBK@2TFX-%31NoZ2Yg
z<eAfG<r7Q=CgV(Eg^G=RJ-ymC4Vp>hh(O^k<t|X@>6+-Z6M@2=dWm%`L^j~XzZl@V
z_z5_#6H-_tHOVyq#FK>>(QUWf4%w*J245QV{rgLG$Yv~T1g1|IhNVfAI@hS<X3T@l
zr;0%qrwU~JAik=9a%P0DOvvHdhz@sJ^_I3l3?-6fHApkJl$rpmxzvdoXg4b|r5WX7
z%kLt;ciwMJb~KDvbZVEgSXs-k-mj2qcR>yfJ>-#wgQvoOoh|jIF&l5nOdB8YoYQO=
zQf;8;6pGq+V)dGrbQ?BVtTf6)CLZ6o;<}rqQ)28-7h^>yp~b4<8)xlYrBvy}i~`n1
z_9#hRW&%XW8D#w7+DJxV9!Unw12WvIyBpVSgL%GKVzfm$81oo(WU8+b*D9tRrnf2z
z4X7484=y<cjv`XoC8)PkR#5K;si!QEkzW|X7YdE#R-{9C>%Q0qd=ngexgosUgMdUx
zh4AwKbWOwx=3->xD~hDuw5{5|eBOHR!V5~kQ(9}D>`apyXp@m>_=Dl1!Qq4{$cMw<
zhAVzA3V*NDmESG8Ci5Q~6GD~@KQX`L)eoX=4Z$axL(Y+gOijl)ekm57VM&d|p@Y*N
zd%8k091s^DEVN<#b}UDWdBJ_V5j`4h`6rIuaNLs?*nw|RjB5m!8cS<Qe$dqQ;hGY;
zm=CjnF|EW(Txn}H;@~iR5sZ;Ve%n^or5g+1iQ8RU=HIvlEe>|xI4ntP!n$WUw;)Sy
zeoQnZHJf^IWNLq84%=nKKWxx8-MoeWeRC7KHkYU7cFyfaGMX*@&(U`E{tj)>OnOa}
z7Vbc9DEJZDiWbw}JsV)KTdy(ybDq1*b(h%(;N2WV03_qxbc*+QbEYWTA748|;~B!3
z`a>(X8*vx=@il{p_I%C+a1XEPGty=Ca<09E)zCjT+I?idg5&oL`3^R?i&yat7tERv
z-%wLWPDwPd3Fi{zHssN({z320^^sbRFP*U@zTv#uReV?bvf8Sr60x-yE!bP@_uhza
zm^$m=_=X?XKEz$!JK{K%Vw4q&f7OG57EBGUg|%SNKl$R`_=ag-<6Z`Rx@@)9nYZ**
z?PlpGf?X1rn-6odrEhujPS8tImi@#C6!%^j;_R-6i6KUtG{Wdo@V5iAL=OsXG0rTY
zZR^6MhE}z*Cz;upi{*xCHfFJbc&(d_nUa}}k>JsIQE)wGUoyt$PnTMqxwA2oo<%9)
z^z}5y&IDL<PBPz&_{@BJO}EKNX?w|WG^eSp#(mw?7P>65+q<ZuRbJ!SDl6Nq3@AM~
zSPxu{J<~N>rlD&5igq<YFk(M>1&<dV$(2d7zPJUIJFyNYs(!&UuKKvpqUz;OMUa|5
zg*`YS^rv<jY@;lksPF2e7v)45MvVGtCu&WqTYKQJq;cW#)@T&i#xZESBY2neOD0`#
zMP5@ProxiW5ix%<ncr+JhMHDy;J36la=Eo=j!2k90bR^%bi_$<t_;=5bw+5M>->|?
z#4+LfUe?_5;8eAJyA_s46SnPbt?jP@^>!<5Ypg0(nG&ogWm0a?*X9P<n9-7r1Zgt=
z!P>|NFwJ8&)*K>P!RxJ+?D-^LYHD&?z+HFY=hV@vJ(+)ISe^5B=!vsB@+(S$W39R_
zer|?D^PkExsxRW_`-u&y3vdR4!|4PudsYmwm)3|1sR>$p9{zGFQ+^fNEic&dkEqFC
zVamGI5t~?_pSqT}@eMP)hEupn{ZwWzS>1--W2|4GU-9<cy@t)9YIo4}%9+}2_&~^w
zv{;Zo%@p$HI=ifQmvwtXR8sM?6>_Ke-glDsTz#C(sKMa#=JiHGG?fejeea!VRNbB|
zL71{dT@_q5L}1F&QvvRQvF{R7^zruZc@0;ansChMEu5zues%?E93`-tCqU}cE$RGp
zClbjCT1UKWj88Elc4MmS+Rfbg>!x6sJO9?y!Q=Vg8{`yBA5C?;x${S!fYP+}D^oCo
zBqgC{m6i?8e_4=+I?jcxa58tbbOmik+~1nurkN(1ho;KVH_iF~;F1`!U1g$jyD)&I
zWQ8$dQ*JQ2YipDGiEcqI!3{VR<8wE~bgV*>HVa+CfHbm7t!{loSC?Ot(P?)dyB8}x
zU1&yzecw-1SEa^D43qgIuh@#Ox&J@5p}86tnOHbaHuN=_jNXeROgveJ!u^$wN!k>0
zj;pPHRG=<jnHs4}v)M?9jSW?%B>3~kYSc!*Hpgm)Q6ERj=}yx}tAj;Kb(~~BtZrF?
zWd4;_w-jSHb7ZGl-4@&nH5AqAyQuEJn<|oXV2T_q5zJ;Idc_yX81ot~*84R1Ejy!Y
zs*0Rvi2m%}ZUp+Iu3b}AsvZ}krBhX$-=R&Y*Ng#smZ}26Tqe(*KaQwW8+l=L4_6zP
zI;j6h2+N+2raz}-A?#xCA8fqBbimhk3Hb{wMeJ1&oH5%9ta9aE90+nhLFYKHEu$Zj
zm8I=29@Q*gX7*a=h&@zVPp=h^(v_nV?&4x>D(B2wI9J&alHudc17hiTb2aYrz>fwf
z6<C9TwEK4Bdv06uGI1^C7#o24#<3>+&f^KASdG;ZGM5P--$3lEgx@%NUgM73&;nnx
zX@29ob$dk+-589xR>~`cclJ_&&k#vTPoNa%Gk;}&ft2PTbW`x%-?{^-VS&16B;xz>
zun8L(n@6ez^6Dio`J=wT|3x9Z{4OKEyF^ta2i!8fl$t<6@cfnQJ5Z>jMVazUW^uwL
zyhRS5X?^*})L0zsh3&pEn1a9Exnnm5Cw23bPPQ4|9Ro~FYZ`DMZ>}HRRr`RCde)3<
znH<$cCTo?FV<J@lm+sy_E$Z&;uv^sKVNrK!U~AnyG^Ord{gdvxdww@h#TpHtBe|)6
z@h854X!07nA#(nf-C%NG(R(+6!B*d5o#epQT_Wa;+`8cFcd|IaELVy2!kv6AtW=AL
zHU9_H6#lGEsG+@J(Nsgt@uEa^gqoU8sEGz)&5sHv7hc^RP9}8oR833~u#^7}zz%q?
zHlkx62keOgcCrDRENoi5zw3%dM{bOUyO803&=(HnJ67HpJUF8}*l+Ik>CA4P2F1If
zvQBm?E2FP0-+jW4NLiPB)q2Su>IJSJTiiTw(Vw+8@Fykg!rHi_J|I@%l-rpM=1&+#
zX)O9pl!_%!D2pY>mN)*3ooEVBZ>P6-JDpHw`Elp+8;3#NjkljtH&%#-Xci09_^7d^
zwwxrnKJSB@&Pj4JqKS&&=|9WPTndSlK6+RS@w(UI?Nhymg);t)D{3!iWzX!*uOIjP
z!(P*asMOh;pWeN1wb!JrE@yAvH0z#2+!EB;oBy(X$1YxDzWkEpvHeG5NZ2p3u?_gV
zg-3f0FLL8PV7Hm%&?6?Qz$-4_ib=bkUPC=4{6v2@2lX}Md|5+wr>QlkFHEtd%dVVM
zN;E{3!}Qbdt0$2z5xN;sv2$py(wE**1W0J(HY);j4;^m1Rqcm!$8xAET(RQd0{mSI
z;6Z}aMDsKHmuh`{0k!lEhQ7z^(|G(GALQA(2-nw?$HUp1-@opVVP4}Ba1%@BuO6}|
zOLv!hjq~-pc_i`5KC$ML3%rI?c@QGF@hd68<j`?D;@}HU`wFqmS5bH*!OcEiqwU|v
ztibmLbGT;%AlvXPw`<Fomq|IL%FtQ`hAGzR>!XSoDp0=)^t>qO^Y6`(7g9GcM3j&@
z!^T>g0q`|%P|=nUvMc<A=wNP<R2Kz@N!W`x4}im_a>(JhzwpUFnmaPiPn=L9$TP$!
z2sRVF35i};vX#bDJBk8nw)LCoR<P6YxHErvRs<L!&nR!i6Z)ItY(P|I8btu7?iL%0
zlKGqVa04i}Rgq-}1Z<O&Qj$YhjdIqa%4(?0Q7CnW-Cn=leph=<GSIU(pL4=-7kQ0$
za*qU@bWtb)aegBKwP(-XY=s+(rNfg$|LmIt)E)P=S2VI0f1v4i3i|@<*WQ^cU_(&K
zU5hcK+pw#G$^?0E@*05rnBv~)E8t0O(gH(z3z_caD;I96B;0hzyOevHa*i{n89NFN
z8|u&Ad`R-JId!`M?|B!7@Cs{wGZL#zXp#c%IQ~|zv0e|8$9{K~6{@?80=2PFFEox3
z)XAYG<6Vair7u0bMz^nk^~LqTB~F!4lkgwx^micJ$9mAxwo>40jO?NW6zCtUd4~c$
zBGB9Bx#rsD<rGz2{e#C;^i5Q<>t%)Y^4MVPO0VfUld0`S{NX9D=`Pxyz4@|Jc7N1s
zyq<e{)aDdb9Vr7vBMbP`r*`!0%~rhe$5cqamY?bRbwKkGUgKGMCRopBmMFw@4};+_
z!Eh3<jRo8Os#1=IS@f%?RZ5oxH>>xhln&{aaE-Qcz3Hv7&lpK2To97vVZkbrG;=e1
z^8qc}zf^Y(!2i)8d$o?Fi=%5t&faW2Zsf>nfj#kj2X?8zzE95##W?mE?wCpTN{X{7
zLYUvOBHptZCURXnO~qIN?9khGi)*Rv7FT0PG)IX8Rg_RgNQo+=#DYm3YuH}gfZuug
zqBp$8+3Hd9*n`ir9@eqp>e031XK%KGjqB0<bfD;5*8xVASD{*t_8R}L7ZIbFz5<uU
zLDT!Rxte!|d1C>sRnB542irU)ygW=fSL6oQUK`g}>fcyvD4$;wqWmEM^d1N065rXI
z@9Ou}7j=Z>j(y6263QPxy0&um=8adJyq<u8gLp6d`jxu<I9<qVEKfrl;@lx~M?vxZ
z2--Hox%YSm<qp=5-l9~mG^`HQ-gB8^uCk|9>^*|~j`7EXZaHo?C=Grbt|P(_MgyEI
zlV~bmRuVQY#@LlirKiD*#D_APHPpd!Fjxq5f>Za&{MasCqE0v8k^P-AF#$ES<)^<&
zT>3+%hhpq}ooHnv0Oe!G60dT17I$njnkqx}M+Q9@Z4Z~EJ}2odc+kV$x`jK95HtQ(
zlF1`9up1(tcmV7)d+l=BNKzJBbY+NWSNy<s{U+FQ!^8V?qlrX&Ks5Kc{q*4J(v^C!
zY)mmI$ZH<>z2C`0n{FOjqe?6rQ=&ISZ-zAwY=6Ms;+c&pmk)Qa)xms|>PVc!aB@NE
z8oQs)R^%(gHDxT!c$Z2DvJLQ>j@#AlcJZ1f_OZL2yvBBBMYY4vIvN7+>!`u<ELQMb
zc@~Y2SOE=T;V0R!qTmN4LCVS&YwoOF5E`Xfd#wFZ7+ts#&MK8bgltx&{&wq0W?@sj
zoqf-LVFTH4iYeZ{tJhE&J`t|GC)cn)_Z?Q}^<hWhGBD{n%7D_1=>E+{;0~Z<Vf8u4
zk};#Pn&3TlRTSs}-qqRguCyOEfW5`G3}maCIR@x_mq`Fh9D?O=Fd-*cq=3`pl-nV`
zFAj8Gwt!$*8-}GzoHkH#!`na7c%!Q2*0gJNZm-^!(4f}r@%3(hI`+%D{t6SW@C7I~
zkRg~hIFt|X@PCK9EC|z8hLm=^E?7(k4On9}DJQUJp8~jhVck_Pcw?>eM*G-_6}Y7n
z;RIQEQ293zKIHJ(OU3x4`)-vq=l&}qO-{KSRFb(8;x)5Bs4!L%d{pQ-ZJ2NhVih+t
z4V%X4xtyY@o|dUZiAofwIOmjS*_2~?(^@coWO_6F!Turkxfmc_N9u;~bD=B>#VFoM
z7!r(uCzi5nV{W!Eo;N_xm5Y+7Q3?u~2dO5bV0P=-{0hZf>(Q)w@Ei87&$O-{(9!u$
zH(2N>>Z@E_jUtRNU`LoY9h00$`=BOJU|k)5SRg2i0e-Rj9As<>oZvC`GY}*oBm9o@
zIoy#QQey{*6RAmfLCA#&@WF6TOCR5wg`GN?7OORpSCZN&Br;PV*DZnYNP9?55EfzE
z<|XcbHImDSy3je)infVYuX`;3Yk4wSTgSXadjwnCjlnOD!1pFkCIYE*Vu-SX(oy0c
zbYa|NerXyyi>5|qNx+r_J8TQOi|*+rJe&+V$WOFHhgSJX)^}4>QiD<yuJ#9C*+$<B
zvTN6(!qhEz@WI`#_8fxd2vcZgz;aQrfV|z1pe7t!oF{c8we>i_x4@;mWKESGrLd-^
zO7lv%VL!Sxa99j&S`9CBGhuqxQJOFf^9a%;9Rs^Wi3ZA*+wX1=NbK_kM)i85$}FoT
z+aTO;lBbEv?8Gl`o~^>oB!7`F=QMW?X12uY=6wYFaiF!(gCwQ3OOE8_I4e}V4gjT>
zx=P+Vp(D`(UX+~|C6(kTy)8i#9P?$C;8_(CyuYX}30|2AUMLt@)5@{t9h4Y$tj#Ld
z>}9jcg+uc#k*_bz7ESv;^BZGStoIHn4o$`fY6;FzR_3b`Qfx_}me{RvjjqZ3LOGN$
zZa6?Uv8WZ}Di>_si(*_2=D{3V*X=oH_E2AgKdU7qdTMfx(&!?gD2=p)&P<(QL%RIr
z>5<@cBbHOG{VtQ4#=)jEUj219VtIQo<xnS<Ll3puhoF)&VrjmNdbjhoYQMtO&Xk%`
z0#n-hFDO*iEFsL+`CF99qR%s-4t6wmR88%!(Rm~&UDpAU`^P#!(y}!3vTK2xdD%tR
zt}`#M-bw#g)RFtgGN4Yjn)#Q>hnUh#QyoAZ)ptED!n&#IjJnb+%*GXt>JZ$fV#2R*
z6O4DFZk!rYTaq07>tI;yP?0oZEu><u8pA9VOV*S5_nex;YGxm<jdWzAHJX_Q55I=x
z>}wh~s;61b=`9PAS{m3W@?}$pTP_ko@gw=Aq@;#J^mq>*Gqxb@roG2>oC;+N7`N4i
zk(w-V4-UfbNj+@?t1jh&=bq!`Z}gHa95`gGKwiV?%6)0PJzo-WI!V4`dy#b;W7YR~
zO{3=X+-_34i=z9Ths=&jl<w@#aAopzK=1itVz2QP6fgO=E}RHmoCDrBqc3dU#U%o9
zI*O?bE!H=8WT&Gfp3Z;m>^Fn7j32_#VVLP&NjX0%!XGHQ1!4MEE$+ooSXcTI|Abha
zJQeJ9wx_Z+ed%-zu4M2>jv11$_-ZBILW^OVwEP(E?-Gk}gi-QwseTyscg8c}2ey$=
zxT$jURD22tE<2~n9$7a)+zpqT*>KWDYRrUcJ9y(hnj{69B+ZGWLJx{HUkpJ$^qP9`
z+-@e4kw*s2!C!RjlXuaW#6f*HQWvCOT*SKDX}>x)Z<Hp_TYx9#7M_PH5~eZRp2alk
zNxOPz-dUt$<)!`cOV@wLyx7EWdnD~vh);RL(av>hIw_Jza{x^Xr`?AiwQj?GSn*5K
zg6TZT#quCNkhVJK`zU}mc0i4>h~y-GaBPAdU=|B?f_4*LBa|oedxkJ*(^b%bPS8fi
zVW#RQe^EB~1+oM-=Nu6zq#)vHgo8uYskVr(LR}F9SE817EmdpUSXn%hs+EOm_F|G7
z2~6@l_Tv59tewZh*D-9G&KfC6&2mUOPXT>1RUk<Tv;YW_+;+>O08spj(#p>7&X|h(
zZZ{+y7pBs72W|wWo$j?b&9)(%rfl-La4;BsHd5cIk4=|5r!-oS5H}2L!~C6zVgl(m
zR7ZsG#{6BebQ^tId7JeqH)-Ma;D=?v_<1*(6xkN|2dTGML<R_bwg$rIOSS>R`0hdY
zgjC74&$Wc$Z%UdhW3VDt6VWB*YjjQK-#8(nsF~*sMbUJ@RWu!Lpsk@`Bx10ReGRLv
zmdL?sHr~r(H7Pr>nz0yr6=IZfVj78_5=tBU{BK<4%<A=lC>~qAzQ+J=P)P<EF0*W+
z-*pXpInIOF%Fqyb0G3`DeJWRZ<1e5puJRwOdpWMM^%xNlHoA{b1oQuq_Bp)9dxd8j
z>|XuM8q6di_G1RaxSg(%de6qFq(PWWT_Ssz%>PKiceQOX5s6>c5T|wVHuz*ebt>BI
zf&3cjsJ8mx+5H@=Mh<V3hcd_|K7OT@5M((m*hQ*(VSZm!HQKp{E{VQ<NO|njE0gfF
z_!inQZ-~!3dqe0ywe^V{l1^;6W4dQ1gys#I4=itJZHs!ANwf*SPP1X?)Sa5`4F#p}
ze9Ro~&_!k>F+(jE8Dr$%7K?CsZ8%hxaS4ZuKcU5N0spmPe0>VN?Ngd{w2WNu&<~m>
zJ(SDkN4)JUxM{=^i<U5D>otCyWi4eamCEwC@kxaI^nNvNONtJbOyG(>@f}EKznaH%
z?dpnF-fYOnNFSM+xlYiK|FbW6m});FqnI`~w~UKW(2WZ^{W&2WKSY?v@d&>P%|=@L
z{vbqpMl7}%{P{&kdf4@UlljA;pvnBdijb{P*3+`zRpyU5@IR6H?Qe22uOPd+TP;3O
z)^6^)AP7PVa2+j68a8h-Y4}=~Faa28h(>~s{@f%Ef_SO5N(m<ecfvjp<bC@Q5hOhl
z>^U|fNX7?Aj|4w?#t{TsSim#<8kJ!xFB%g>1QGbbhh%3eDfUQFDQj3zuRbCR1x^;4
ztD<(hk%h~xUBn<1h=x-88VuRjTM`F50t?_wR!l6+z?ftsXK1!{H13A?gtY~T2J*NM
z!M{J1|4*JfF8;1w(^|cYZ~UIu_`K#V<Ptvhwfd7|QEposaTggt%+2I#(uiNv8ue<`
z01z3z-J&|bjE!rh0<xu;g)mx35N{{W|6c}QJJJ2`gx0jK*JiadaH>cLn7|sPFK1OV
z-GHv2S}>xu*RcJaBF`WNKWb}8`IMCcT~%sy+{yLfAmSG1k|*;Qg^O!KkNH}e3Rp=_
zWl3<yQ`;~V8*ebi9UOXU!_-4CD#x-a0hQYQ#H*4Kja+QGYcOLFnw_onKuCi&uiGX8
z+U1tp9K;JM9&g``#S7fE{RLVVdky21n-br+o7Z?acizG=)yms@)`obBY@JS$1Sdpm
z_17wIUYVYUyG()I9*R%>Hl)V3Ni1L&skEHgVCJ6$e(ub|f5^z$V-Sr!4*!R$3RggB
z6=^P4M%<|Qm1{qTrE5QlSQ=E@d&Q|9=?S2UQ_a^+DE8qHxS^*#%PfU(F)L2Ekj0VW
zdX1?lty!4)6(g=uiR`#leo{pD8Yjr5O6&m2Cny{3P%~Elk)%8d<%K!Mn5N+?suiem
zJu^m+=A&T7hSC~wRZ{vb`E==I{b0e)IzP#u;1_5~zxgtgCVK@2tUTtk;YMS}$P8~e
zjQXuesxaysHmUZsDax&cQTyYah+13s4gcQk>_lV8UQ)CsCpp`JDL$`In{D2ARH|0a
zL2~Fml~S|{hUJXi#dn<lvS=Gpd4XEaY~A<kpeHA{Y3n}cpa$RUfoZAjr0Q=pzP`S+
z%&?t**GQ-8L%on20g68^2(lwU_BFV-ueYS?Z#Q`ly|AAVfr_N{FZ4QfH4hX5Jx$O(
zAUt4*I=O$nbD=WFHf{L+xiB<*=@6)K6ws_O5`?uy25^9yAXF>6t$qL8IA8Qophl~`
zi%RSqZxZKjIziabRC<OU=|O*;wY!z^>|YZ`515(Y<O|Y=0<7)U;F8^;%i2gbQ;#Sp
z2a(Ja+6K*7hG?g^H?wDQcAJ@6Dm|afZyynvWOD^FGdY?odH1nxaLQ2*GB+w^CdXX;
z+k@9hYSdgw;jgTA<%C)7mQi*}6lj>at=j)K*ZO^kaeen1O((u2mJ22A@LlR$Mu5So
zYMq3d935BB-Xz&7qtl!TB$UUH<~$R2Hh*+JclI`BzXbKpDcpW*13{xRRR#yhHQJ`I
zf7v8quPcva%(@(E`7J2()FchoBAJ|AOs8Lxx+^g~5qfL*Ubl;RllfjnMCfjOudg1>
z9fyRqfL8lDjh4s<bZD`S(y^T^@41O&?$l#ijg^b`x5+#d+Dn9A)ODy#b0&M~Lg=Cu
z2RlAZJ%e?$Tzq3+ujysk1Y1G5A9q#jTL#e?ukl@VQU2Km_0274A($GC*P^{xqTT!1
zkL4=aZS;XtqM=0hSnVem<Z`z4$m|pp(kb$SsrVV&CfiYSjBGGYdhDLM<fAOItoR<v
z=nOrHLI%m9jmL=+QqDF8jf6sj?UG>1BN90qgIXLmj21wNY-^Fyq%F^cH(R2aJE|KL
z4XGJKFr@x5(Pl<<AAR9Qb?@uS)|+fDkUgZnypg`xMuUS=4}2(yR|mZX{;%vuG>Ax#
z>YhC|Vkql|Iozg8HI%;l&*^T|ZfjIWkY4H`nE88Xf3P){Bf8%{8-_U~=BC@wq}s79
z!#I6|yhr$WofeWMPuPr?*K68D?ly3jPfoG?`CP^<|2nM?GL@QowuH7!)%}C}RrN1a
zb#4{^WS%WlDcw}jBfE<8RK-cEBEGSo*JMH!-&k13g0P&f{_LgA9k%HZq7v$HIMh=9
zG6|2Fii?BY9;4z7q;GbrXvDTEs({I}D_XgLiXK))@r_;`heYPUwQ5-iR|(LWAm=~_
z^|I0ubE{^5A;EZRR~TnTl@?p2sEC|OA+TjUy5y1i9C%BDyHshORk~gu%J~k?+C^b+
zrG@Fy8a?uP<PO|Tn@Qz&+R$P>`wWmZwx1PwKXr+ohgF$kfZbF_CJGiD1<Au@RdoX*
zt7DU-luPApwE}csV71|O1b1h6$2{0bFP>1$y1Ut7O1~D=B*vEbXiLBfb!0)X9~;(1
ziOpSsxaMv3qH{=Wd2l?7>)RHjVLgRn!5zog>Zx1YCFw46++~)#%y5@0+~r5^a=yDv
za+g!x<wSQG<1Q8MGTdDb4>ok9lH@98FQ?DSzq9oYN?2#TLq+Z$ij!qI2o19T%^(VR
z@dFHri~YrGdMVQ7`^{{I(_Fb7%d!W2b_hC&-GFa--fR36jv<ewZulZTzyjXtb{^ko
zJC6@yb;2sY1LuLmwb3P0MdTUERdo9*a)w#knz^Tx9;(r7xswJMGWa10FrmyF-OPi0
z(T{&Hh}<Fc&gNdzPG<8s^v;I-X&hU{=uW%cQBAAd6c+o2d+zj)d_g>};NEZsj#XbR
z-kpoD-BGKT4&Cv!Ha?+-wsm5G(05e%t6mJDctTxkyT?*hQ#)f54qL@8wARc%{0hb%
zWdwfo6VR{xryTTm#{c$0Y^Oc>wfH06-qX8&xnUDZJZVjG2I%uX2g@h5^A_6??Nq<%
z2X$@2<}e@a>|oWR2g5y&i-TX^EylzZ5JJjCx^ngzWcM?cWic;UySMginM`%iN}K;w
zmQFzxPlbk;GAkKp1AjY+Pb+n@-!r$Eey^(97G>(8!YKlvb3N&XwooAW=|4c&dz}$>
zf#2MBKPH&T6Frv<%#8vyXFoD^uUZ|dfnR62Eg7vN;;yMcF~fS}b_(<vWXJ!cI>g1`
zuy_5Yv+7>-n+b!q#vkTI4}b7->9X+T!M&H;!Gj9R6Gsh>v(ZqP3~1}!N*Y$xda%&7
ztZ~uOo#CsmJxm}CYpwq?)zOeGvH&T%tI;uSV0kKRZk!*2CB)~v7u<$rS0MQINMowA
zKL$ssY#epMPrc)(8p$&uDg9y0H`y|Nn5gx$_6Of2=;W%5;u~$EaQKIW4dkR`LjJE@
zEB}PxoXUp#g9EBYRKZVg6mMDOW6%RW2#B1(=~cEN-#@JXLl?F0!+cTxqg-&odNMlg
z$wmr9!)<fEORNd4ZXG19s)p-oSPQW_*sc)e$?DdamJtex$)V4&@Meo%+&#aO`(qBA
zxpMjhw(t$c)FomeYJI3L-qjHMAw5RzRGfd2RV*rZ<5yK##pY63#rj0-<0^gvY6PwS
zW#oCzT^4-^mCkom`u~tVH?8SHpF^(MGJQV0A(uWoZizk<2^T@1aa<z$pb8@Ty!aDy
zQM=OTygps%Gw6t|&}X{`{uBE2rPi+WX+3-^e(!_7RmEGS&;CP=K7-t)_=E1~ldLSg
z%O#^fz>EyZ=xdDWA99(zNq4mcd<|j7@zXXwXl;_-$a6c9?<e^q7&v_8%$>aW>6+T%
zJdU0t>f86L`&8UE#n(QXV?D{<N-w!Y*?`IE6%E^W*_NQAMW;TiDlb_`c`yETk@WtM
zo*b3Buh;ZUKMr`U-&|6+ee0O<J=*@Nr@D{zXj@*H9Q_;G+|6tH8Ko48EC8^WLX28o
zO;NU(xtlwnn-Hs<JE5BI?8i8MOlTc5&I-qWLW>f<$^POGu>7}#S?QB{7x>M6d#gW4
zvBfWr(b}a~cu*WX*eb@8MpIN&du?FziQu@n5c!wO*~eOywF7{4?-?SStxeLG=)5TG
z-I`j62mx~#_BsaX%(RDf6JRBZb(IBg+OS+<U50!&s#=*PS@a4t?F3co8hhJIUQ#Gr
z{!$bOQ*yk8$MmbH@A$sg(66uhJ0wRBC~SP%uUwb1>}aM(V`}D3z?M{&5>l=0gMHn>
z^@aMw)vSt6(Ut?@YcKgLtr<Y|#`A$f)L93}oafTFXhi*nL%fDjEGkuac5Q*c2`iy|
zawH>iFa9Vr9f9#Gn!Tx>5543ni0eGA9-x<{y75i>d5sSk9?oHwLKz@MvE*4giFsCW
zjO1eF;t)&UZ9hj1w>v^I|LjAZoQ1I?D4TUq@Q8aQXI)}uj;z|A=B{a|idA(7S|9}|
zqCQ7G<WLVgE!cI)$Qtaq16t%YZ=q3NeSX!Tb_^?XZO7nn{%zgNE%U0G^;@B9E}Pco
zuxYKPNf`Eup4%@KJwsNpJ?gT+jVK#|omvea(nQ-G;r9i>{u}lER=$ZypPH|4U9$zj
z1ZB$oN1t72pQ(YtZ~BQZ)91my$!XxBYpmh>A+;Mja65>FSYSTnl&!UpdfP&%Hj9A8
zp3Y2*GGD!>frQrVW)d<GYcAZlPF7*Smt4jt`WKB)#EP)m(d_4AwIa3G_zp21n@_my
zVd$nry^o~P5N;_Pc>&2)rsB@2Xz1BR#Who1@~RzUY@Q@0)e$^<szTkgAS1N@`!<0w
z@P00UvD^5>q}?!1Z1$-wLI)lqFj&F!CT+x+&($`-^%AbZ<UoYmeIfhui2cDY`s?5I
z7jI&hVszQwZ%ZlU=|zvX*&uWWMi51jy6w<R3yK9d>iW_aV@RDAJU?6ka9DbCQ}zR`
z0(z3*e3IZYS&7F{fn_DGWp)DJYQN7`TM}I9b}<YqsaGVy<zI1?lHi#5`VOg9W};S!
zud>z*FZmg~Oh3_Za+_*v9&p2Z7E~JeGp?gR%BZ=McI%Zv%5K!lP8Kxd+58<NZt~KC
zM|x^hzB;vwIX}^g^#!H%YB8CA{()UZKb<o%`ZtPIGK2`{iG>=JTZ=x0)=uMwRifzX
z?YYzVc22AiW}_K!xRRF=E&U#^DW9()LM&Oh&t3cHRW;9+l8hxd4Q8d78qSu^rwvmx
z%@!kOXPgBt`!(yRiwe~u#<>LL8N&?JQ;`w~7U|kGaiAxThE%{@y-r&vJXxOA>zVCA
z`|=gw5)uh$y|K!)TO{t0++Eu{_4Qe2xYR_Qf>Us;#9d{7XSLue>xaZcEM*&p+wMF+
zeNM`tTTF(S`=LZNIdsL~$g5Ia*g*7{nLkY|J#^<blyV>Sz)dXK0{7s*d*ETk!~|h~
zg4^|EaL5+*A)wXb{oC~;nLoxLkbB%s9Q*q~5V8e{1nLoEj!Y2S(QSUI)eCP3->H*P
zZ=()t8O0i(9l2%RS-EUQz`<-%>T8=-a->mOn|+$hUtAV(DD#c7`%!|TVz~Fs7ZeQR
z();0d%b`XFpfK8mR2MS}D&@4PsniKJr_*_zM9v1eENKlL!`VyM@QpUe-P_=k^I-F#
zMkkXX(Ww{k2{#}pJAu-$W4ZR{|2R!2vf<evce^|+<2RDr_6{~!9R6CWL~D|epc`p0
zEdubv6i9U60TFT{A4wR(N79^9(;Xp+Ooj!)l(dRQ3tD|4X(Cau)xw(EyN1S7%tg|2
zbmUq{%w+zd=|+t+bEo!prcrat(^Gq{ov;?#tye!nBBbi&!bx)E<Qa7>sX@pr5vQ6x
zp-W{!>I?C128*F%l|{{URGeDEic=i2v@_OS-B2dC?xfZIpE;7t&^TWFXbe_oN3!-u
z-8qpv*?>7G7!&m#Wixs1gerW;eaw-J+=tE{RO*v&>HD%Vlj&ey>zJw@T6b@|*@X*6
z6U2cc<7;dfSwH8c!x6#8Hlc58U@*HgnUKcJzF93X@G$rYek#n-K@eA7eBzx{jj0m!
zVe*VV8HZx}2y-UBC&S!a_^Y+%Ox((4e4=l`_{1p%DDlvlD4cRBtiPfzA4j6?F7ezB
z-)-p7RvsCKb1a`$1q(|fZqKMhn+K7o{qpwCj8_k~gceD;%)Vp9P|KcT@Vn&vR3+Ld
z?e|^%jac%3h~7IiA-6^JYN!B}55|D7!^?`9p1=NW#@aQlW5)Jq9djbkb;53o<uVy|
z`(|Oc(y;ro9Eaw@m7g1SU*-~F7k41SZtqJn*qtlvKDY^qzQ)wOZD|uJlr(m0_T370
zkG`#Y>{>vp6KYS-M(urHIn+v!QwQ^dQRsnnJ2KYnk?K#v5I+yDD~u44>fs)hdyR*3
z=PjH*HvX?36?3PbnEI5AN72YC`dFz(GW#D>tp<}#Hc^S9n5=B3!Rs{Qh=O_Re5N1S
zDSmvi|6xke7awG=U3ie+wszr0ITMNdO6yesjVrTXmF#<jFZrTw6qM$fpWDv)5ZU~M
zD4W68r_P5+{15`zJad@oqr^kws%Qv|94!yEvK#%TJ~Tb#{EeV}gErXB{i5xqv}MHC
zxyu@>wOz@6wRc24i)AtF$y#VI^B1xN*$WNqQz|!$(5`wAkac!deQB)<LL&pI^#$s3
zY9-PVys)puR+hNS)9&(^yZq5zj&zrDclo8e+~h8MxJ!R`ndvUuyGzGDR&~3(oa-K*
z=`J6+hp|^-<|9eD48!c5;%y7X6|>jYt3QN9XDB2(!-6=KrBf8PcSEMbR<&`oPv{IL
zaCATj4v@K?wks3VCT{JvRb0U|m?V5MK~MbCN+N+BEs8aa5$eok;uM19A!-_4@rgh%
zr)1>20{@MzM*ZgDa;2*M#tyHc!(g+sKR~#Q<rH&^|HgCN;y%AHw^-F?+~NWz2#UR1
zT9`$lQ3W}bG<Fo?rbN2KxeA`q8jo>IF3?80?@RzboSl1FN2McORx3f}90pWp;<+AI
zl4^&bI1{H2ax5fZf%sZ^oD7>~l}m!7Ztm8TG2LpO%r7r8PX^zE)EQ2KVIPTBSv3b~
z+YLb(`-8N7jPr*Jm?{B2E`nL{-x>bwrS<f6NpR)MQ1)N|%9%jvMBm>F$?>&QL|o{>
zA2$~>qwOH)Ohht}rd}T=T}8B-h<X(krn;q6ty(ndW!=!#3K0!jF{K3E7zNxQ{oprq
zfF6Tpt$k8hWjsRwg;hKjLRnaaMKuK_ZL@_jUkD@&pTGTHkxWLqBP*_w`gu19)hT_3
z&2bkRHotE{l@LmdgfG{M4eD1&%h8<*u|Z90I%o`*e+z!uGJ-l%>=|I)MUqiVIm@GT
z25owM8?gXkFurt(PM$n%V8j6CO`2nu&Yc>*Re0~Xz~D_Unpv!s2)7191k>lioi9Sv
zVOd1Y&@)+Cy4uBGPjEu}JEOxxrFZE{{MD`q>BIJ1LK=<7K<Y&hm|=eKP@za<o^L45
zNjzXbY4Vj$K^(hL8kH18p8Gx}jDgmPfz|~FM=uj<BOK*AT@day!4Kpp+CV}v&&Pb%
zY>8tWXi=6PKM{^8&yGeoN!gPm7>%ZA95zWq_OR*t%kqMo3Gz9@qTg4m%XHV23%}Qd
zzs>OQJFwp&ie@hr=9UD9y#THif65l148EC9n|1}VgPdMUcj!8Q@{ifq?P(d@{GhgW
z6okvh6dXZ?&G{|onISubV)GwW_RbEP_N(9>h|J$-#Qr8W^hT-;b}E9Mip5TsQ#v@D
z9pTzu3GP?{RNBSLL6rlKH%D_(z=ZC-RD{tV$tr8VG;w(Z2bM3X<G}Lf!UbGte6lsp
z%@n(VFo+FvXKLQ3`D!-R@XKKQ3I<R!Thc;MMX&pZC(f2YEo4JXj$mmQP_N+^>QnR3
z6V=%8uWJWV@nj7};1lir*{KPB4x<Dr$4EU%sssA+n0gC$QYB)U;P_|1u`GgO#wE;D
zVhLJDmlGQ1b6_|~Fq8|13iinA`p|^izVbUpmw5}X8(z_X{Wup~#y9l#8s&(qK0Dwg
zIAS??{&gqnzhoyY0TkK0$I``$I!`1l67raGEY=36{M2oaB}Sl5^s$XhyUbTZu3n|V
zVKfHR1=K)SEMrAuH})Vzj0X0s6)NAZ{l0o;A2|C8%8G*1AUlr_;!_lEdTtq{l?$iC
z{6t^SsbO_<{_|G}oj@6^dpeEII-KKZMA&vGT@o_j->9mfbQ$P4lxNw(z<o~trkxM(
zA-I=HW9Sbs0RVl|DQo;Fh_`pt_M`D(s=5RQD_g=Z4si?%0^gN_uetDi1Jl%}V66qi
z6xy@x`QVqFui4fV!jap4CGD4}ee$ODhcC)9Jj<JiXUkeE$`O=`GPWOMOG&j3K*a!5
zvLqO$27c=r$gTez>Ia#ZQk?qBMf)<*UJW6)n0MVl9kt8&z9ih>7Trwa^goDQ)BO=1
zm4nSyd*&}R-JFHvoc6srroeJxNaio!E7UoI?vHeigJMhp(~@VK(!o9%h&!~oyWpeG
zQQ>L$llk`^<J1puDh$Q`&V#xDKkp~q1K-5vRbHPU58zYda(Sc^{I-B72mTQMHG;*I
zkf<@$2V+x>OWC@&Kp0Nue=taUpbCjQ>|q<WUg(g`MxQ5%dn^29BZ`e0aJv#V{JClN
zsZ*9a7=Rnnf`xR{NGK+&(kV9vKgTf^7nH*VoE^&gPa15y|HfcO&Wm8TrF642>?RCR
zB!<8c@rM?Q(F;BDW=?^H*S&ERjSl#d%VF<oGI9xdJ~NMR9`Z}vnqH`{UQCsFj}Ixm
zX!yD-ck>>vE!~d0>2IMvO3-SmG`_TGiGEVgfA%v6-_z(ywtWJ;k_6H?2H@pU7R1-}
zzy$^=k+BJmSpow-nPI@3`n)-Bh!oxEuV%LL#f6?X+eqb?uuXh;Fp??qbU+Ux7o)4#
zPz+FrZR7=g#%==ZrV*kP8xoOv)b2*NYoK>TAHi4wK1iv7gw@`{suIYXMZl~ANdbV(
zEAbw$-rHMPv+qTT>XNxN`ylYe9r`L{y2+Vuf|1Wd)qc6m3mQ80f0br7a{Oh%KDF5|
zZCr8fb%__&zn1Vz;~Qtq+TZ3AfqsUjRO{)fwHf+U^kp)AnX+W|#*Q8G@@DO@h)6_U
z+sfom^VnhKSUsD*qra>LaG(Z-801ih#`D^Kub)NwDg3p~kBZ&wi?p_^6Ohn-SWJy#
z3S<$d&OMpq1IR>KMnm-*>%E`;j2o91RcPBLCB9}Gd5t%cR~0dv9^cr@YkH3|ZooxH
z%I)-zm2xnkY48!jb>ksxNT!!2CrNlV_449wH#Np%b1U~!!?kyy*()xS30quy2*jTO
z>~MiYjolNdo~vi+d8Y_RvU8}^Q>0-tW^B`?kr^AjFm1-XhP{DLyZB0``3NN-&|s7P
zrMfA1RuBM+jQa{XeoWY+wAtJeeNy2{YVz$xK_vWvmJ-m?d=)lgGpMoE&&lil?XQ2o
ziX~s`-}e`H9PjVF9)I-c5}QYB7N#_hCi|PbS|!uPUd4AER8%#5<#jkjLom(q6De2}
zJoKeJYbig86c7*ddl266iy`MhA%9VDhRRe#tfe0yCt@z^c{Gn7VKJtlxYewTN@0}B
z{nQm0W^ds&%x>p@aM`fD6PU~2VMJm>{8MH%H+sp(cs-&e)r;wJ@&h~az4-IO$ZMZ6
zvc95tm?qs%8Qw!*dCGaeZdWFm&)R9kuua}if5NAuhP~tcR88=5JMV@i#xvLK9A8#X
zzQFNb(`md){lT8DO1!y#RpR7QRO5_@FHBRU`J!`=w$4SJO9$ueY(}bWC%b&?F5}(9
z(a$3MJ27q1S>Bt~+Z-J#6qY!7KNA}f+cmVk_ud)V-eqG7{)^9=^H-i`rguMzz45T~
z_mlZY58WRgm(qpk=5?gq{D&zNjQbP?{FdpFP)lX2=R2PPQ2Az&hVG=F8pU)u`KVzf
zQ)E^N-{fEODn==Rra1g?r+ACR4VbS1iw_`y38rr>RV9Fklav3_n**(Q$YR(G$2^Eh
zQ7{W<MmhipnL`po$uqyi>4C&9%>!OJRcXQ36fl7{&QFXhP~n=nBahPcjJYF+w~oXM
zTQ<@MU0Cmt72&m7*Vd84IBR5N8TUY-ur69N%5+^G>`Q(qM{_6he^gWAI<)tE=badY
zh(keh;fdD%i~^$L2(_sZzhGH~j5l$b!dJ&Z3#S!&Hy7@0g@2;Lec7BDfqdP(nP3r_
zl{zA5v5-(5JjhQ1j%|<oiAWtWfApnB{PI-K{4q%B6MX#?lsX&!jwt1>o#^$1I+x?K
z%5h<=R#zu@LF~j5fA+>alogYtk$<C^6Bum3k53VLuNHcb;HCT|IZC&`>`2V*Klf8o
zny6+3yY3LtJaTl&BY%&CNF5s+JyH+L8mMFjI;&RdGCi_B?K5d6Ejx?~2cG)Kw&PiS
z?9{)12%;|ero)T@KOlxpa~czP4LXq}-d?Cv+j`dx6&R!+`A2~WRz>yFf|s%DqpnDM
z?@amNeN8X`j!W{SSa2DWR%Vqnb7i%(-C!4061-}Y0qOFUrPu^{9@aqNX^Yf=WI+uG
z#lasjfT~VxZGQ8x)G>6Ik4jS~i-*#U2R)wz7n`?5Z*>!VApFr7N!1Ti)Uk<IZEhqa
z0uUO7z2Jd81yXRzMQSY?PW_gsJwI$XRR($YR1aWen7nrf*+9H%XsLTN^T8Y7+Wm^o
z%4n{j0W%w?I73;Z&XnMll;L4T4Jm%u))egj1f4rfgziLN3!voq^W=gsHMLIM%SxW*
zGtV}-bo#5ywwk$zpPbr*z)1D*O?Bkvgd^6_>E<W6!B!g`_*E2)y=H@QbTEbrL;;y;
z8{eu$2BB4Ytm-NWW-J0)k*BNww!-1x_?khESb-WHKTc#`gddI{e@;P~2dnZ2poHs?
zz%r=VpVAPD+uL&Oe+lEP!LIY<w3_SgSkfwon(-Ep%~2v$$kzqIoC`qf>-wnyF{$%e
zpPPVXeXb9K0T8_H1LqQFcy8X~baZ#u(NN9g&}Z6JTavvCnIEBf^|kK5w$#U>tUhW$
zR_)!H1)Rf9guGgZywbKuf(;9Ssy2iw7oH1pb)C=yx#`~<%s_<j)I#a#@m|!L(Kon|
z`R7}3;9uu)!K>`$H&>zBq=tpoj@`_*&j5h7Io;^nY5o@Qp%$Ssb?DC5oeSawPls-9
z3F9POrbu@L{nf@jUB(B8%5>(858Nb)dA3NyIhsnShqtl>Vjux@czee1uj~GrIU^+U
z+d4_ZF*71*zztCh)oKnaWgP)znk0<UjT!#=Ee<aaJmDhbX6lRej6bs246cDiHe=nZ
z+1iy9Fg=|4q<dH<DJv(z4f2P66?F{L4;N7dd%+{N3ed15(N7DoFgjHr1?4bZ*g@l?
z$u<NERxE&D7KEBJhhMxoPih2`<IjWyqPm}lNvpKQubUxM`W-@BZ2%+-uYJ^Mb+;so
z>gZVEd(XOuU;tKQw3Qbe0RWQ2awSm?QM179svfpBV$RXtykSr{-d^rCl-SK-UW4XQ
z<L#rp#&w3E@GDw*{}I=UGbn00xGZER42n}0hKSIsi5le7g<U^AJnK`_S_T|4@!HuY
z6VL0C#(FT4Jwn><Om~7hr*^IL@3_3`wCvkM*=5VRmeoq_u&mcO0`azZYFZ_^KBV<u
z=4Vz9*+$)KT-*suZ~VCnmUNy%*i@EE?TV#)x_;U>>(d-8-TMQ>(tWy^po6NSU?8N;
z#nK^N>s&<MP`c-r(et+7#@jFQ8l)fN?X_OR!NP{lE9r!d;PXGj+JhlnsGYm$3(MB+
zp1<LSY6CP`c)-)yJS=vFoQd#Z77y#Z27ShE>9a<~+fS|g{-W<u_zA_Qaqz2qXb{pR
zXyWk7H?^-VB1}e+#T1^~x=)^t!a1*QCksxvr&s=or%%P(f6P<4o9^k$&+znqcC@UW
z*Y<R<ffEK&{kzlu-kh)WO^&}H#MZ!m)5Lxiexg@t#?s2hSG#fX5P}{NOT6KVcJgEj
ztf2Z=9O<=SuRl4(SE4%0MEA)mFhz<y^f;ncgOfsavSk=_azdI9#?!$J$jQQ=vAV>G
zA1b9t7!NA6z+Cgk!6$zLCG3>h#ee$3;e$?Iin75U@l|Jy&=9a^nYG}4J<7&E{`qF1
zV(P^Umie;8e|-&`X|(7^d_#r5+bVzWmC@b$RsN2z`LDOLsET<ChEUdTY@nuf_*o%q
zag5s1uY#bS74>Q!1B`4qOoFm(GqL;N>{aJ%0-G1S^LzId(#FUoBU_n{4C5FvjR`B<
z^y=Gx1R3(5Bov+W{XXc@E!pT~;rxfPaZJ&?pf9@}M>J`0E6PKc1QEHkYx%X57i7b%
z+sVQU|Bzj!>F6iIF@$vV!C74XX=n{$5F#f+Pjy<|b@JD+oqerh(M$ZGiYZ*27hFOH
z+9I*X6B11X?aA*Do(EK_!laK)kCzB0*%2OA>tR~2xOReD{{RXXcf(HwE<QO`{4_=U
zGzA-7PYv<*^Ep>8G;1@|`Cwu=CUCz_rq@D@{lc%%M|80uAU<m^U<jZQkxSHf7*!!Z
zP%)XT4V8{>I+gTw5iqI-68!tWv+*mEIW%0r&`oqJ(a@*1(?`3n&HjkZ_40ymY>Ox4
zm(U&!)A}T-2K|xm<f3T8wxVcr(E)*->Ix(#_V_9x+%<lpuX7hO+C_LSu23@rIpjs)
zm#aJ+tqC}4tiaiHCv~M=E;5dkdiJ{i`iBhGG6LA*@BO?JK%TAicU<hhzL71H>vm3O
zo}zoEAcIqvL~06dIq-Yga>Z7>hD2aBX*6~PSHb1BlumsDyiT$P4j}4FwyRP&1*$k<
zB4;plu)U^3sUt%DWuHN)qaV!1d4^C=!6j)zDW;b?i9gvSj^%u5A~Xl;rWtQq?I0ER
z9pxs6lxwwc^H-M4kghHGr!iYNl}xxuMC03H_D132V5MSndcjRW@DO%Eui(y1#LuBO
znEKyH$-6iNY3tiX-<U+?oL83y8+n<MBQJYfPFV;=u&>1ux{;UNL$z(rHqav_Spw29
z1=O+}$7_%ydDy$5P^DQonkkvfh&N!HLF?TAh=qT0=~h_yZsV*d(w@b_@fO&1wI6TC
zh8PRK{+Sqgn~ZzS#B9dhcT0@>*!^2J5{_|qu`Nip$hfuIV*^}Pq>jyI+`zWNMi{VJ
z#x?MSw~#E>)V<<T(^#ggq^B}0lq|g9x81Y*OAt9^_qyTPAI$kQ`vcQSlYt2e(z+=_
ztG_z+{Z8WX;r-bkW(4cJtd^eOD5>uG`=!ucb;sW~J^+6onC)G5;qT$j9t@K`2<NP6
zr@~)W5zdri`;&#S9AuaTFJ<H%+0{lrlmjfEl|M75OIH3C8>vSgT(a<su0^iMu5v7h
zP?w`BcMH8)XD(&)f)SbWb$`t+d-HvrF&YfWl&xhVCsXg@r?Sghy~=+NyOvw;**R#?
zWLxk|rfe<CAT#xzo&$rS;OCUhE;71n)0bzei<)k>otR<Y3Nx$DfH}P%j?ROc`#O8E
zzIh+rc(D+3R#(W@6J3dj*)S*M&j|C!cP+mxyS(OTT(|xMQ2%gmmYiFM0M*=vE)F-K
zK6`IAaSVyE?55|!+u0bsuWR`|v&+|{%iH9cP9=6xPOxeotvr?ptJ{U3QYai7bjE6M
z=zR#-f9DvGjK7+!EDc<~-3=0t*=t=W<RO<GpA4^<le?r8o#4EFcXo%R3xcy4ryFeu
zFdZ-N!WHjJJ`fG7_lSPzc+rhaz{kohJ0X-~tbB6d^Hx2seA?#>{>=b4P5Q@8=t79x
z@Chr$!Odt#>efO?@Ko$4ZHx#Af4@5-Cm>V^QAX1liefo9`<DiZ&_SdI=WD8*)r4Bi
zlmos^cd7dkeAfL*+3=-6h=4sF&wExxD4_roA>Yo)pD+?yX(uN<hII0ePGp^(N`?Lr
ztvgR4+W*~#ledH!kWuzyn4#DlQf&585t0~q4&`<?&~qjS?q(rKgxbav%_?Pm(wtv4
z-Xac1=>l3o50D4He-{@@NxL}>G#Bn+r3du2(vcSs%v5P@SkbBUKVqtTz$d!6x;1$`
zL8bSgbWnFUoLh}JWcbzg|F}Y|8edx@dr+<MLAB5|#ZREuq1sfdOaqpw;2`j{2NmxX
z<o2$2+@nHlY|~Vtn&?rvzN3OHry6Prnm?btG29r+Hd=xiLc&;1+sO=l{xooZW*lE&
zTTL-$VoBZpa^?YIYH?+A{?CVNc56nFt??XStZP}QGa$bW<bm1s9mWk#e#gODZt2Jo
zlvnAq!Q{}gc=c_6@dl>ompg#}A9wE_XZLjd|IbK<2^nWXQiEVZ=mf2aOU)3Rkno;3
zVQ9*fl&ShK+O$GuVrUW>Gn3@>IH;;>8x?J}+ETr!YD-PfWI{zQBq1(QE$`!~Ybyzw
z`8{82@AtV(CZV72@B91Xmj`psd0+Nk_qF!gYwum!Ye?I`_mt@_WI|{yt!YuGY(@8~
z*2&22P6p@dSobwhg|^zT83yNNRjH$1tFuYCN=~AkqRY_YvO)+W)e3+8OrN7i06j!+
zAJ&(LYdJm2w$Q5NPNYNPO{eYUVe^hH;aDm^HShQ%Ake%a=M(r)s3ja>_m)~Cft{=a
zIq$cJe(LSFXR;+@y)v0vRfgqXaOi8JEE{jg9<t(M_W__WR$>XPEJs5NH3b(c!&U1%
zdhzVi@Zayer%BK^+{ddwKpHQ%K&78No-F=!zTPZ(Y?3@Si7W=H#L?KBu9)Zt=`M$B
zd8c&6r~R;_F#m<TN+T_Y`&aQQYAn3a!b{(Dc#)DRxqF;P;KdwlPzZ13>VzdES{*EY
zpGD8Foe-2h8?2-tU&BxS;IoxdNm2}RGp5>z2ML*Hhd$mU@k~y=)V7g}OLh8I8J<`0
z9($C<dE1S=jq+x@7%es-2hEQ#k#AS$g4Y1I!)tDZ$hX4mg3-=a@!+wJ-f_{J8D9Ny
zpfY1XKEu&_#121{omM=pfpM7#nI7@1#R(b^bFoH~0bw75@*KUF>#?Y@@Lw-EnnEc?
zrSCE9<dzbXoTHh0Xg`|PFD$!x49k2ey9LrwR`RmebCp<pEcX`qgYr^_%<pV;Bah1P
z78@IQ$*mUGYI4paC!fZ#u)-EqDyKz{HQ8%(t%fSm&cl+q6xH&j6HR$=!hIG(<U0$9
z+)tjr<?Jg`q4^u=3og<0$J>8*B*DHxl9yLUlM4I0gRtF$Ht&o3wE{ZK2+lb*z1kgY
zw=s6T<{BtPDwT;`GI+23vt{}AFMG<h2+DDx*Aygi;d=*mHQu>tYOL!{knG&Ff16Qr
zIweN*peRWpfO#kj0Scp}=e}FuQLELW$#D48dS^2LPppIHG^6c(s6}8~OKnV+iv~o6
zPA!Z8GUNd{%K<H}lw0Hx-U#@*j-TL(?4NSagttH{{Q@BfH;L-S%#N~r>9RMndn2gW
z(p)ntR|A<@qpQP}=NEupD-aQOt3Lm1b!x;BN7y<G_Dekpv;R12hFynr-jw;S+00p^
zo5BZF5BXx}re<gS!C*pmxILMlqz`|8av^6ks~jI_X+nK(8w*J!0l9E14tR#N;uwgL
zk4UH6!poeK+y)V?HQ}5t`}b?oQ|XUfw(^PLU!j$k+jhyVqkQ;3-yJv}nD6XCt>m@;
zeE9g4k%Us8VdJ$g^^odPdU;4}zP7)z8b{5SJu2k^USz;*o8+6fUB24Ca>d2|ahDFN
zw$1Q{^b+>QQE7Hh16r5f<dW?}Ru?!l&skoGCVK*vg#UoXycM@_abI2-pMM<~9|Fd*
zD|X@AGV7GX+S9>pc5zp}{md?AE|U-~UCdvtp!yOYG_+qHg+-u{>tw%ebfWfLCpH5#
zP(RN~nsWWH%cW~oSeN9%4i|q19!)K<Ed%7o&vpDl6BHgq@msS96@GIAGgIJvHrC;c
zss)3O7bfo3j<hO6Z5g#89I4TDqd10yVx-Qf>|$fH&%-;#EmyL?jV*1P^E)s;MY77o
zL|IoDX<Dlkws=X~#Zw2=H2RjNEj!FK4XYqc%dcijK4U8_v`8ihr}Us_FFA;FgEvk$
zr5Fq0G-)5hK@xds-&11n!it=<w}_Ha#H1kx;z)OewycuHo9Y2f72%*bEqV&wjNS~7
zyBQuVDBwZfzNfoJ*GXWG9nU^`*HeGQkS`EBl6ScS2GahMfkUINM>&>s#l_d}!(*6E
zhIh^Oii|Cz6D0!$V`Vt_tN}{tV%_H<?F#+vEehSQz+`u9e)Gl0&X3J+VxyUk&1bx_
zWxv?`)kE~Xee?Rt*!<H8kUBQ6p0=bU)?LSUeD{v6aF4AIyZ6;^-!XdyF_q}vYTK9L
zc=HTBwV0!QxGq=)Uaad2`Xv?shXWWv3U|i~=7@<GP_&Rc`GNB&ZX`mGVMkQ2bq6m{
z*jsD(Dr}6rO?b!**N*X{QJksP8#Q{8MlqH*`R$>jV<m>h<}IThj$9>-sIvqY$2E7?
z*np&{?GwHi?R<$Zddo|^HNVMzeEid)4>fQ+W1$74XyTG=Z}?q5a{{O`eqaD4q64Vi
zan?Z+xFEZAo3sAmr6egu!y3I*D|D;11Xh&=3M+%uy^ap}G{i-#!kpq6StQ4hu_mnl
z#un^X_HuO}7u($X61SWD`|>xqKHfJ6PpB0Bwyl7F);CaSPLNJZ0DzL-ebpUU<@_s{
zg?oR?z2}yFCP28pcUD)B^1|QoXu!)hdUniqa#Lq0$y0$YBB9{-cJ{{CPlU%jN5AdO
zD|H#q7L}-sn7PzNrOw;Q4G4dudUZJEdZ*i9V!CbeB@Y{EBUps@{FTt*D6|{d;TVnE
zObEKXRBjv4P2c(N0DXd~bLZpbmiqzvi|alHpgRgsg_(um7s}j$Ot6S{MkELr>4+0E
zQyvpDL<**xZi>**i~SvL+`=*)HJ+aSF4gR%v3UzbiO!z4p-X9OeyDqr*u0kh`{rU2
z#8KDizzTSJt>2`ag2ii{Vnp;0cd=Q<E-#dh$PPX)4ZtU9_z_Z^`JE;3@@f{|{d6%6
z!n+tm7ZN4h#U__U37QF<%%FW$61XC=EcCh{-@q`PZd>Vg<i|x!NLr&t6of1gd92r}
z@Mf}*Zu}?Moc?VSRR(WTz~2brN0s9f(YsV|3PWr^-W)^xUf^eoEX54D@Z0}ehP-dX
zkdK5iJp6j#8!h;Xdw%Vv|838WHYWV&p4&y4pIcTjFA9ayzZM}-ID_;TT08GGA_l=>
z7(@_L6&^&=JJX~Vi*ebvA1)tdf}UJksM*7dP0-436h%RZW4RNNLKAdoFF^D+mdNV{
zZ;LE)z*ZHYYr%b-`{4;biGjlVH<G0pEeCSxpffaGh`a3lh_<TL*1P#Zvs;x-Q=g%!
zKXS7qvw>+R7a3$;vag$358F4^{Y4Yf5gWha!--S8mbLI1>)ObhJ|O9ST=Q1xiu7O~
zQmo{jptdKw@77(g{*_%VU~+-=NLQTpeNkIVrZfbR3kp(k&Uf6!g0xTj8Yd2x_PLxQ
zogxGAWer3MS#U{zo6_qwBBH%@S50@}pQ+%9@;c}As1-r{ZfsadW@q|wWLNc<$lk-P
z!j1-H;VhpQF&5ez(EZOa&e8q%m|jQ1%>DND)$INU#^!IP>5k275Bc!{vF^XAoAihy
z!o6Hb=eX@+$<|9dHrpHBrz$8(S5#CO{o5Mzv>&TG(0<*=0r%GDMLf9<cxP__ZVYe@
z_3W>O_ll2bXfF4|!Q}ZPO6GRs=LW`5Tjs~hGk-uP91%VPK^-1erO>f?kDcy6ND=CY
zEknKFomnJ!JMgPx^FPno<D6J`R?wtJOlk5@I>Gbg`I?WNyAP!b2lBjO?JaI&YA+Ja
z-E;@?gleZiZ2EIk;uy|(u7EsxV?k-=ZRqQ$^BYlT(YD(O&xa_v2nb{LfP0!9a8hO8
z+TRurVM1b=9~jGe!^3{d=;WLHaCDO3IfQHxhI(7D?cVZcq?c)e98>KLn0idE*}F{e
zhJAVQRk8V>BB<`ze9#_EUy03E4BWB#j_X!j66>~fe0szifAd0Un_=T_rQWSj+1}`0
zq8f>GMfomH2n(oum+nC2xgP;<HTT1+LU{EC;HF?x0hMpz>NdC)ZuUD$A;V@%d_ZY#
z!a|Rx1qFt?I!GzJh8NbR?c=OtPX~>P__0T3SCf$y;cY7KEaive#~|Z}P|uXu*OhNo
zd@a`ff?!LJxF({NB}+W5VqIO_?bvM8?!H;EQo7=nzl*Ai+gRTmN#!ivfnGOk8_zs{
zZy^nCy2c?D=a4i;-@wY1$H;bZbupju!I_DKk&cQB6(vsJ76~sR-QpcC<7I?=C@(ss
zk1<RIf96>GdgnpUd@nZtABNU>e@WfU$>ELw<1g|mX`3KK!qU>Q+1}{>?%Rg^`u}ml
z(vU~~YTbcdE!zOkFgJbNH?NO84xASvXAZ&pr5^Wx9P&L=C~o!!^0qe(IfN(Wu*_&3
zb;srrOD<Yu)@j2|9>E`=1qwc$TbyEgv-{m={jqH?<lvA0@j9cUI-{prFX`C)>3`k$
z2IFQb8IXbD7dkRb%9Ej8cOXOa_Q+5PhT$H040!w^z@LizI6AOuEt(D8mfv0TtpWUQ
z=K8JtZpo7ce)oMbslZ-_?=0(g;q52-U1&7tl83_lZd?eQOrYbug_^vROZbSA%+2)S
zn4lz@B(}Y<%l;<XXt92cdNmJ5Qd+cV%(c?2R#GQ2;XPuoEz7iV@=bm)!>EbDxDE5Q
z{3tixsgWJAIm}No1^boSV^P+Xt%rz}E`rF7oHVZa(}U`x-{_chgvI-4bh)H}wl#cV
zU^3zWwWkqVcn16DN$IFVZN)iMoS{3ZvNQR}-YC4S2~32V$j%KrI<ZCx$_WZ5fG!M*
z&VM*sy%o>@rlTZb$3NdQO3{}_Z!E7l0>XUdd2&~pqqU{~Zc%^Rr}ap4klZu1Pj+vc
z{w!z5T=pzF0~DfU8U=pg?7K+oaR`BiW{7T_OyaXwDH+CSeAr0?q`X?^fZ`s9iKY*?
zk<w6t0czCd1NT%}iEf+a{&ahuL=y#5t*keIv7GZv1I(6l?kWMGofFG5UqEH;SNOMI
zKrT(&n?z}`r%JVTFD~%(1(;z<c;`QCGIP{5yddYe9r_;Z=u2O@dMjerW(3%+|5wTp
zg0~p>q&8%=pvkV!`zpHd&~@+iX~SHFEp98WAbYx=t`;p2z41_Zn9J0VBBJr~nQB84
zqsOYkNq&DyHks_v70iV)On$GmYMUNcR-k^xte+aTth20Vo#js1M*A6nd^qtBQSN`|
z)_Sc`J5pC;$g-u8sn1xQdl>j{wM7#WU}Zc^?@sztU*8SkaT_F4QSHwS;irmzhs)Wu
zG@}zBawIL1*O|v7t7zUda3j~vpR$EZt3ei6j%bcn`=%>i{qra;N-4n?8tKtawoVGa
zM*G>ja*gxlquT#)q;G%q`T6#L`r0<y-*x-#N8|XSJ!xQnjbSkCHK%VdRB;K}-NVqg
z51x^}t!O*i*!=nOwmRMBjbW(~SF^c@U+;^qv86VcR)J|XQ)}zOVLy|u{RwG+7|&)Y
zutkcYN_qI|-%Nm;uZG&^BIE@GDWXU2d>Fc$1~s91H3vDLKK!_naiud^0IQ3gED&wm
zDLm<EwYj8hEH_KT1D|-mFKit4L0@=o?SJ~h_a5BR7cMU0=Twexf^9!PR00k>64=o|
z82;Awk49RA9y~7F?cifsGrw>T3$rc^k`+U^z^gqa1+VU-SKIr)x^#?Q{i1u7wkrP2
zg(YP-?|xhfGaC`mLHf9#a6Mp0;8&=e%)Y>dJN$*Gb>YVF_&HE$+vmf~q_DVf?QW1#
z{fp272XtO$QwpGzUwFYo|1xW0VP`GdqXSrE=Jn7NJ#<{|AtX1Rhc&!+HUM4IPhOdK
z;H80J(B^bDzqyz8h#EI`846uFR{I+kG|EB|U=Wa<J$!N8aBv*Oytero7K5jQa)UHI
ziO&cn<`<|3vZur@LtH&(Zw`k5YG#TTtA6sN=yo7@i)a=e{S`+llZ9H%NI7#K8I-~5
zd^a}#Qoq}xr&*nUJ{UdJkDeFK0?6}=WnXI058fLFgclWrCZLOZ*(*q0&Uez@AGD4a
zom-D)P9}9uW&Pu=TT|Q!Ei}?Z86X`#_f_YyDzi_Mvu9@y?Q>>RYS@7Ayvuag6PRA<
zF?(xxCo7-_T+jS*<<Ux6SFzhy5&ayOp_3EZDiQha+(Z57HyRkWlE<0tTl2O~HW&iQ
z7faqH>aKsLpnW(qfM~*4Dn5FE$=;S;*)K1o2HXu%3)zRmo34T;D$*#hW%`Q2IOusr
zsu5ayf|lEg&7Ne^wcKybHsEiAmscWpUBwGE1r6lx`!@Ytdu7yx|6LvZCYpI^AB+z4
zC}*am6{ePL&;=?3*gvxD(OVp_F2}`;9&;z@vTJ(_ua59ndu%DIOeRFFVg?epXzrV8
zE?sfWeg}cJx&ikbJbC%X?`&|Bm-i@0>3Dq+4QTT67Ja6p&$4H`s=17)u55}tAPu^7
z8&5`rskK5U{b>|9&321lZljSHWo(vNAUsw0F2D#xqSDJL8p~-*59Xr?O|%gTyG^vn
z>%1ke^H%sQ23fmJr1ts7FgyZhRP?ABUaAR_1nljoRI5ZR_r{(64U;;;As(psbg82W
z_C%qPt+q^;Rek6q&^OPHFicmxOi91(8L}7sseNXiVOByx1<Icu@i!F#Mq@|<cY}vO
zzSrRL<m-5J5kGOqR<l<f&ZZ7ir6sHuO0LZQ0g%4lDe^{+AZ@N)s(;c24wh;S_>5$p
zTA4$T^6<x3An%72MoK2W{q5I}T>RNAx)j#aS@nqq_{nGoJlm1A>k>VW?m>Fz#drb{
z3jfDnX9p>)kqQQs+!YmTqq-MG^WYJl^AA@Egl)8)BH1U3wNfI3)x4ysFJdV1d6BYR
zjR!(-u5R<A(bc_6S@HB`jxUOk1C!$L)?RP4=oK*O5y4#ds(KWHoz%rC^sNgo#F3`T
z&Wpjj)X>osFS3`qIp?4{+oicv>{4&|#%+=+u4ldqQT44oD!fNT$ot4V&_V>Drns{6
z^c)0|;_(d%nG^C=$<-Q(IdrfTg!I)yEnU{RJPPT5*0wP^Fd~9Ee7X&G#%=g1+@VdS
zHs(8vuRCgAc!I&xQ;n4!@Av$=byv4H2z970?u`i6KhkztkX+t+e#iS?xcs)iw4I4i
z?Ko057PqmOb7SlM9q+&M;g|oxa4cQ%DSKma+ei-ClhFV+Ex@amh%&dUuceP@Q@)by
z^So<^GG-s-TlSAspur&j2pzig!2-Z&QlrV`wg-CNzF2+neYAv6fP2$m7MdIv$r^*C
zq|49zvVWf^ek5J32nLYkC9B3HtK?-TS&%r85VcjQ4elWWPnp!I{Z79nT(iJM2$d(|
z8@j6%6;84)8kCo;TH|E+^5g%~{y~V5Ya%?c6_zNa>J-cWEy8am^+|=>{b78ERw<$c
zph4G4Qm4VpPWJ2z|1|@D`S4cp#jhNF5XRj25R~HmG2iiT4s)o-E@0_KDv_5d!=TzR
z6FxH=DBlx*cMsZiG%FfuNtmmV!t@<`8+c-Vx!4@;Jy(iy)KDo3QWt4TTziaZB|MdL
z(v(LD^+fG>HW}7{i)G@WNfA9_^R9LHz!OE;HePW1X+r)YTLFN8`{|boz^%-We}A$j
zQkFxPY5dzpW<}bY3iw}h%{F{bjE>(BW>>lqWwi}NZV1;G{SId_|C2d8&&7W5E^zQ7
zkkc?RzzfYJmKNWYNbLsGVY&C>uqo;oTHa`BF$7t(tWZPPDSN~@WK1SSKhh|^ga>@m
z8JHT8*<`L+V%Z`d1;F0;NVwuMVBO|;jK=-?k~2ucZ)bgp$rL$*u3hvT)@Tv^=Oqeu
zLiu}N6y^Q;1Q}`>=?Bcp`)RmjP?H+5&(6q2y1iCsQ_ZovK53e4gcFpBrrVK4yz!}a
zbDxS4jJ%F|bqFq+!<P=w#iUAB(N}qO=oqB0-XLmwzdqaKie04ABUbil%d99_h9`td
z@`RV5nK@9??Z7{aQr%O76eWV}_JUe_E1i!fDpfXfzvxduVWP(IM-Y$}QO!+H6f}r{
zdzN5Oevzs;M6fSwyMS`7Y8rrmaL``63}KDk=hBZPJm_N^D@6Rx;E-8rhbODJZ_|N*
z0y3tq;acWZvpsCL^)(_`l#KIH8LxklAMBKrSuQugI3VnqpNG??|Ewt0EmH}Pu%}lj
zh7zKguX*R;VExMmv9}+5>9Xa2_UfN5o3TnDA-Ul*t1KIE=A}qq`aj#WcaZOX7caiZ
z_zU^7K!<p-M^s9?Pg9gGSJ%X5j><&ppV+s;KDCMAO@8K3p@&8Q)lvzrTeg*gBrO4d
zhB1Par%|ta^=nde={K&Uap|u9#fU9$@SltPr|Ce{DM6X(Ic|I%_w(~6(Q+WAzYtFX
zq<h_rN?txMpo-q@Y(C=G-`S6MS>V(=`QMn#9d>divs{dgD@XUC>6;o$aty$gFkWX9
z<lFj0)D{%jV1S$vm!O9BorvhDU+yS%yRuQrv(RhrTXuJRV~&Q1u)aG~U?8UG=Jy;k
zkuNA2Zq$4fkGM|U<E|4u&JEWl0ZcgZgb#UCJ_HP||E2okS6l)wtwO~rzBuz3E{-@;
zAIP)sV}^tvT{iXYeYlEJ{Wg)0o#(TzGDx!D-V0@BKFU!js!t)4kDU+N{U9EQ>ffTX
zcAUK25LW$FCfy5G$D_Rf6-ChT@K`D`^AYrKokcc~eW`q4_U)->ooC?}Xy!djVnyUx
zRz2)8tNWVe63*TXc6Evh>9UTuJZkGs&7(FgLT%7CP&;+E?V)zu<J&>4`P;>)rOURw
z=|T8h0SHNQFGk(DgLBknS}39}UvNUQJ@7Al{h$w#)wA@ZJ(0e$PKqW!KZNvroj<;A
zMfmbfsK1rbyRk|<T*(z&fA;Ph!g-Gk0JfK-@Mn7SJPZdkyL)Ceupx2CA%bb4p2V!}
zb0Q%iX8Lj!M7g5eoTOSPbFJ40jkHh{C#o#r2ulzB&=Lk#*0JFOC*mu_D|JXCIgJQE
zVUthZvS6sKK=N8&Zs|{5#VW`=-4Ona5Tn1ig%iFEQhnIzqUbNT-+O>MQZ1T_$4$O$
ztRS4_ifRh;3H{=YPfFN2UvHOHm>v*sOc&sDg+wZ9vxzp91(G?W$;z<(*hoh${K&t6
zE|Vu-r5NSRC`O6f5L|zn)dX!N6kqfhpt2ROjZiKDja|8~6KgE5c_xj%=m0BNwxm<0
z4yvYoL{lCfQQiOPW<A}))4%_VYtaIsD&fLw)}IT6Fy$@~(wA_reZ@J8<}7NBHXq1u
z*D#%MsQr;}aSJSX0Jm1if`0UTMNJp&AEc%gKLfoF3k)w|2%4B<8OWbd+#t^r;K%(&
zL*9DS1WBT!o7Xt&A)8P~yj|CCv~kfhx?dbz>%Cp8rEOt}<*Z`{3UNdoK$c|501!*#
z^si*2vaIdJsOF7_cohK#dnz7(OQt**D%{0HZRQ-}*YGzNLyrISBS-)E+s5x(<)q^>
z?p?MQ9V|0KU>Cj5l?27QUK1hH`~34$Sg+Jc7!aKE3X!N>>p9lg-Lk_zaAFZIIXSY3
z(6rW!(Yt-)Xh3O_Shw@GW`~5IvrLt#iYMJORk(w*bQvHN4;X`j>Qu!&?tTsTQE1~9
zk!iZ(=nC0Xn_-m1L3kJK`?N|^c+d^bRIT<`f^fLMa=X7$7w+J$WTrvPv8yz{w>#eu
z-#`2=7ZlA|=KN@R_$Wpp#^Q;x@8|C}=I;K)?uPqa1WU9BN?t<y$>#$iT+x0a5{mYS
z@BMVQPHG$I4|1yXJvd87piv`kcZvvRITFHY8wMGPr0MChzIzLlP)mPux;u~(etR#c
zgf${F42)71(Q@)>khzmBX~J>;1Bwh?A{6`K_iKkAElgA5PJh6!4w#WLhN<M|;+lcL
z`y&W({%_z}E4ejnES%tQQqHgT<Jf9hl}6#&Bu3W&MlIeyiluoBBFLre@cG<auTHD5
zUbS7ww<8Du#f|v;w-#P}AxIr=NEP8T^F(-6BV4M53q;ngzqv@L?4h9y?o$;#`Y=TT
z%Bt}5sAyg$!!Lgc^}aKbh<y9l#9kLatAv2~`F_!k`1x1HEdPmd@6m5d(D~9$>7o$`
zV3hA5jy1QJIs*bP^loqD=ssInX3qe=A8qBM&!N|&BX&lQaU6nb+&Y)e__PhF!Z(+3
z;sJ2NB5XgB0WGjfKK!l>-=vDO=swIUy#Hk3{cz=zIzNFvG>ra)s+!x*m!CC!J02DK
zwl1KDFDB05rC3kQ)@ilTkO3wF3i5<QbS525s8r9OABFUmnY*1O#;FV7t@gBV9LUpO
z=kt67e_!0$_`5+LdHyD?f;6%@;WxfGFn>Qr`?0SmlCG%KN51_r#qA&bzi)p(2Y+=j
z{L54ZoU@tXW6j%yKQ_<uyhS>|eDCq^joW&@_p`ru^S#yFEDirc8EaU%h*{qCq^iQR
z<`A)@%P#t6flaD}wc!*0ln{C!RK+asv>}?Ry>Ih4I~I7AvA^PcF7o<@oA!oIL@H;;
zHQ@Rt4@nZrHP*VxJ^Agy_T+uhlb^CDFU~*N_64SYuXaz}aHDI_1fTay!hM;2OO@66
z#}yRs!{Y&uhr3gYxuopGe~;@oWqgR*A|du$#3K6)Q^x!I3qRC_?{cBkU-%{$Y>JU<
z>2mkhY+W0L<q2OtpKo(=a=Nv>kUX7-Jwh4twv|<R6xN(364seX<=`cmRj5>8L!GYJ
zzDETyAQIQOKnt*PW;HwyAXxN_v0(o4*tR=^<N?_qMWEPcvHqMtFgz4;=HRJyX5J!C
z8_@qZc0PRKJOE1N0Q#u_VprY#KlN0u@J@C`hD&_R{DhKD_e|ma$ZloMrUb?}@!#U(
zT^6<{E>hya{wsX`^M#MVrx>39+x-5T!1*uuJsy6erPDCC_(R0X$=_H}8LJF6j6T&t
zPX5gO;G*<&r%G-<m`ayF6Gy8hVt)}wd-D7&#{X3Mqp@jNcKSoKU4O@_KN^kt!!1Sf
z&L#N<!~s3AEWh6C)Uiz+>iIVHT%(@<q@M39?(c$u<(cDyOrA-v(>jcgmNwb%e%du%
z{kBIT)Pm^L_9%1--#-^H7UV?w#{%QF907{q(Ro<|==*0Qcu+2j2yN!hOCw#IJ1l|`
zB5obhxmYT^L;%gt0rVpQ^n(bXJUpGR!^=Y%0`kA-!(oEMDw8O_FI)bgth>TC^srj<
z>OqQUJ0C57By78h;EeED>w=;EQuV>?N8x<I0PXLWYkyZ9eHF>4sJ#P=+gq#lR{bBe
z_w=`l;2Wqt+22bB<_D=dlMmxX9HzMQTfKp}$ybVRgDZ<fDCUdrG=k;CWcBCaN=J?>
zB!v&i-cm>}!E<?k{qWOY5(|_6^6-OGlr;7pmXN%lb|yT(q3B-cV#H)9BTsB;cv9{j
zKkKBxUX6|cuuNMt0?5k;@Wkf%@iz*YkC|;~@5Z%+|1>oNB|TQh$8_BQ&Z?1#bzNiF
zYn1R=lxhZ_OeEAVZ*8y=niGQ5sp$J>u`x}25&_n)7@(RaNt9}X2{f=Wd^_O>1le_z
z(mdr*n}x}ieuS&-ZbC-I00gq^x5qBaep5qT3uD~^!0cqTQuLfV_2cj+=&=3q_soy*
zj~~mPv<MiC3d2N<$y}pTPD<`R8!6eIe=Oq9%oC880qnQwF|<v{sA`N9*$!x>!B^gT
zAE*9)A*nR$o!8^7?S<sCp}%}O`)wO1(v^hN#;y7OxK^o7n}l_9f!IBA7Cqmtp3Qnc
zD1ErUzdkVIUpQWK1+sNIt5#-d@rJ<~fY$1iY7-S=$MD>fr32~}IjB<gYv-mxvp7`5
zlsOmWPf+(a_UkWKzgb|T5w#&|k0BR(R?yaLP+9EywhFwdmE}R|NV=OfI?idtb^IDk
zw6&ydl=_7DM>-+aX~31?p_9B2lbN~`BN$**Bkt=bHZl4cF8Ul2xy|`P)6ZumKE?Ij
zpxtcb0BDo7^6=~yw}jI;5eOTE#yc7Sv^qDd&e0ll+vA84e7N|A|9DFS<fwT<BXi6N
zU*dWlM7>q24F7$6v`Ca^Yt(&sjX#jp9z)*Un|1EZD6&%%JZ=EtWWpy#$;(VbMmyOG
zEBwI}C@>_lO~wAe@K*r?_yf;0KqRIBPD^nHr5US5<QE8&Wg@PFtKO&5rK~r&HU>#X
z);9WX(ldzYRG4O9)i0iNlwd=straR;4DIyi$(v6V+*)1l))pVh@LcJ%D){;hHH5rO
zf|&xwn&mjvo%K3xJf8iraI6Ez_#@#TKMRg3MK_hZFes|uKhWiq1K}4JesML~oc)wO
z8Y9FE9q4Q+B}2>~f#wjS%f-RU4dgiiNbIeDHkMv&l<V1n&BA9v1lx+hnrs4lZFW}r
zw!o!naXLNja81j?Jv_e7+-|bNwO4zTW8KQS38^?pab%y#loJID+N@>mJY+|!wVq0?
zNvoP|J#_~&%jy!nDxe|-EHD9fGBuEyYOVX9umdDA>~mDmV>pBT+%tdP{&*`kPb&wJ
z7Z9F?TtH8R!*=VDu8irGT~R(5{@Q>bzZF<|$_{;O29}-RPy+(MmAbS_+k}fr6z^9V
zm+gEBwOwn?@dZ?@96%Yf?p3pYpZ&5EA`z2ZT14n0cgYcihD8vyLT7_b^SCB{<n;&g
zsOu`nStPPLykB!QyhL=+#25A2y?*vL#U5q~REco%84&9w5v!lPjdk>)Nm)wh1IwJh
z=SzN!G?j)T;jc3&ZK4<9&!6`Io0P`1=~7cWAwKX+Z3U&~QGcefCYUDJyy`WU{vwUd
zbzygTZrgCR+R+%iKy?We;RSENK*XGdgexh(m6>jW<*+s=w$plMHy#c*o(?&GW3pF7
z&;IA*;!BQmt_u)=<qVn^RnkXRIT=Elkjinjre?m1ZJZYY^JTopN{-%He-JaPVP?%E
z;g$40!1=i3`8K(H<PqAMrQ>zW+LMo*E6q>)PqJ`}^qWMR1+3}erNPSAMC^9$k~L<r
z$isxq=9<{`?`uk!2NmUsRzd1s9}1iND<(BbOn)8y!5ivNb@)A#M&C_3D9sL&P=Kb)
zqrXfafs-%HB(}}R+o^M^9iLFE%6xAqMPzu~nOAYKG|0Sbh{%R})7zrAn<<o=%?V@C
z{FAKELWeZcSnk;$VNz&;Y!0WzZMoJYzO|?ywHHgj#9UX77CN-8sLk|rC}0+?Re(op
zOU25_N&H-b-mC_($Gx*B6d+xrzRH6>4z<)>{`5oMy$UV$g$MYP8D>)Jm-=xGW#{{4
zv4xMs($}ETcJ8OziFYv-^cCs2SdiIl1d}$Hn$p;GH5RZIYc?7EX!$AF$&f%TZd-2u
zUQfSmVb}UILDuLZCu%Q<oM^Yv*d%OEENa}aEudd9wmFI!JMwL?U^FKtMHCCRK{4Qv
z12lAnB(mC=8ERyUWJAWmFX85H!~(E37DNNT;g-HOVz~_hge=nTDtCgESFMgmrE#ik
zP@SDzYI0++cne!gzHxj|x`nSe-*;y1lzcYh7A8he$ZQruVK%~9&H^!Y7MB$thiL}S
z7HFF=iOt2*uFx($!z2<Iq^n5eBJtjN^Dfh3bLfuP8Xq0j`8G%DE>qignV48uX-JzN
z&e0xVZ8!Vvwj1fIj&b*{5Tn9AD7RUyw3w1P*Bc5mFFs_$2#F7f=k%cOG5r7oa|8>$
z>4|(nU9=A@XKVB=Rxi^ti6Z8@AP{x27W3Yye@iU^nq>!6kq0&f&3r*c4UxDdhhzDo
zm&}5g<y&ss%`VOyr^spX=0Oq~oc}mPpUPXlAaSyX>>5H_p4Ulv^=myU=8??sdRJE)
zB-aFEo)yG2Fr59F2-Cub?Kj{}K>8fhSaiwC=3flPaNw_s<yO8DjM?Zw>C?6xkqw5%
z?ZQiLATxr>h_Jc=x5lc;D7QL5{JllCWLxo+TFkN*(@;VWdV?e<Xm}BV505C~>fAIm
zcHLk#qiJfZ*au4>$pt;Oz*9UkEffynCu~YZ6RmwTY7?%Ctmz2_wgJrYV9Yaepwo3)
z@0hhg{pQ)nihQ+VD8^jgE8no<cod^bZB>U=CN>rT;QMTuyY8Y@xmW#K24I3!8rk_*
zpC<?q=q-9SZrcJBVB%G%5R<7^$~6shq`=Hn;yT->Dm{M3?Cye*c=SXwTeK+)T)%Gi
z`GT{~fg|6;uX0Q@Th->J+Tzl!yjfE;WT+G5<u3eiro|5c`&P1fVxIT|fPAH&5B0I+
z`zIqM|3G)Q9>2_NMK<VZniN5QXcsDKzFQGM5<_YuF9;Hi8WY~u0GjNW@kzk}yf2J;
zi${$Yo8?dkot)$zwg{pbFcFB<WjSe}9fOsdWEZ-7uKsth@+Ffct=YLSC>U>9exqiq
z*w;-^dKes7#UZ2lbSyE>DHoN!JW=@#>mS)dtlSEr;{L9NJ}9|H{LrUHz|w{gukW34
zZb6b^B<mU{>;O>|RMan@ffIRUFi(DhOT#~5QYe&=LdGN#hwxn{_SGH}N<BduHpUi~
z2)r6-RQpKy)GbyNdK^$@S{$ji=3i{yLb0PLlPk)@J(77VXIvF5ehDaS6g+qrfZGKz
z9Jh<chqWAbJ>#4PQZ$oNQwEivmKusdoU%)KYQ)c<A6If(diWqVjy*V$9J<S-Wa}VG
z3BSc<>Ov|eB?k`*Qir-cb0WDmJosx6@}GFo1haDc@B>4VeJtGFAuwwK2xwmhgT6mM
zTYw!QnkFUE9{_`mB8pMkq>gV*x`v3BeJyh!P7#|7!JJx!>-!3Fs?e94lErX$FLQnr
z|F4sPvj6%`Td()u^#4Y<RsZL1qyKN2OA=C+MQ9zc|I@%9Jf^`e@JH>WW?ui0yS)A(
zbI84nqMVi~8zkYpJX1%#+Nmj*UDeA%PwIi>rPlcah&&A;rqB5O+BFLWq*b%1HXf7*
zwGnhK0Ow{^xF6f9ISA6@*>qR-nIqGecxK5}_In9A3}0gh1nVU0*$4`a4wwAX3RFuu
zeKu#~ZGM>^Acy>8daxBNHLC}bcfE7&<<ckkG7EOE6HI{8JA0ClfKU%Box;~ToY>g+
zbXd^<XsJ)3C304W2N)$S2ddOG0kSC6NwOroe>^h$TbH`HFo^6CBIw6&f6!QC+v7JI
zw-H1vQV)P;PPNo;!-9AJ71wdYZdF?DIRVTLp=n!T447~WBeOCqAJVR|mJ7q?AU+Y3
z5;S%Tjaj6))(>Qqr!hy|BPzwS-_ZvRV97{i^M-3D%5PwTA;)z6smw=F1aYJ}1QIV#
z$Kmxc$eKkI*DsXz*jVVW!klIIBZl<~Ho^r#?i)2|9W%KymbT9Ebb<PEkjwxh^Oxg>
z1uNfFAk?luWVH&gTN7btl}DgMgNou6nfSqFkWCkiVh{>7>cSDwvjJ-qBs%m26J)`I
z_g?*%tx!v2Kv#yO0vHrL9J}sbDH7v_F)uVEdj#KfMH%g<r4u{!B|xt(d$0mh$NPn@
z=0@R;Y;Su4a1l+!GLni`q_%#^>@Nv0q<tvvFe4tc<f2-}+6`ltsp)cKP7yhB;kz-L
zmoOKZSr#T~X{V=1ZRQePa?vIFvS#)W%?e%n9kHnX?b&6C`X#d(8tOOAE(_{koCW{4
zX0KzIRNZmI$ZDx`5dmFNf@>|dPxY3CL3A`Y%Lj_+x?Zdf?=(}HCsMN!$s&Z}HVOlA
zOa<yIM@PTa;RN9jkrP?^mHif3p}KF-;>P4gW7rBUn45r3htD2|b{_}`1KCU4M{6q|
zg&DF)({!1yq$XD?4PgecH`aBX$-FoTyK3f)lhwlH;`%XWjc$mSTpNsGY(;qL2`3|T
z9=1|4SZf@_Qe;U(Z1>&t@R)B0LWr1qTN4%qsGTv3Gn{R0RvQSM0|5e)qLq0FEHu&U
z&%LgPb8hRwaS%uQk48QvZ~rX6e}^#LDu!$flt=oSFhTDmEHrJBA{wFV9Ez@Mm=iG&
z4ADFd5Xk5sY&0`a)8mOH3g3*g+~1{^SfkRmNH5|zNmjeI)J**|E{zX09&^hHebD*t
zv0!q1J`nK;^}|Oy?QR{DG-dbqC^%f;tBeW2gTW4}l`}WulK47rT)}<)yRr07jXX-?
zzcp*TbOU53ATFh5Wg!U+Ngqk%Wn;ir*CzBirq9f`uw=Ds#0@n7J&hs?1FWg^RMJcm
zExwSexAc$EI8P~;s^@uhGc(gmgZ)H105x-gU5mO2dyj!sFZcI%#&277yshyhjt$@l
z<y<l<9wc7~7Jon}oIL^P29cltK>2yi2tvB1AgM4zqyqhNT}Ksi{`gDuFATAUG{=`Z
ziAalHAV0sJ{5+#9>9^5vF#glC1m*NBp$G9xKHUU9pOp8LLvX`Zxwj(t?^?VlfmL$Q
zy6S#!_CitL52Suw4_RI>&;^N5Klypx=>wcCjOpqkKp=@U5A30Qo<Zy~ruRTHh@Rw?
zfu3}kco*#zJa3VX#~<Q)_4=r8TP<VfpRx>Dz6nU^&cGX>5qbc2%ie?w>mbU;JW=xW
zNay0CtII%c+wsvN!~J9Aw@?0G<+sl<K`PE~%cPp!D9UeZaE|@h&qT_JQ<O!^^QsNM
zW~1Z;3EE`_y5;Yj6>1UN(EY`;Suq<mju1L#Zrxg|wYH5Mc7xAh8-YyBonke4HIJG*
zywAcRS&RDx92y`^As+sWiBmzM8rk!XSS)l87w4&uHCy1)Ou?APgU%1i;<1HGVvwtU
zqWVY~OJq67SXziq<NDdCW~WOZEm4gE2iS27D&>C)bNf-sE|o{2_4j&x+o|az4W-D_
zZ;P&uOF#mbL<n+AaKRA*9W&MHM+ltO*6HWZ7&QtQ>3x!+S3pd!aa{hG8E5>uPkt@#
z!$Q7!e4=z|u(%IT@c|j<cQR~ojuk5C*r*!;?jq$#D5D&+ZMABw=Q&s*NytwODEi3H
z3mELKnaJ7n%PPB@KEDKF3R&?W?dEK@-x3?-Z6}ZXfVZ@?1W$mH)N!xGWgA4zXO4fD
z%N#2uqF2#3wIOsP+GqrnGl9gu<cejq$x4`7WL~vs)9a48plBHI-{*?ASe~;m%q<L2
z(FJf+ga_Sf2h0^excvtHi(D~#0^|k8dX93%%akkr*WuXd^Z6D9as$Udp^JYS<-ahI
z`eO_-sZy)|ck;zc{(qA%X6Y<!5ZyX+`QoG`(&vj?6(5~Uh-k5l&lfjH`s+-T(*arH
zyf`aNDhL!>|15U6CkupL;|@7}s%^R5WDW6!utyG^<|^ees=^cOl!6Gja6>IJ@d4Uc
zAQKk`QGSDXZ{|c|VH!Bps!&;pFm{QpL>LmJxYS9ZDI3o{HqR|Y7|y-Y@Y+kaP_|#r
zcQT^>q3{Yi%HCnU6u18|>zk{DQBf)y3ReOE_04;$?f=*7n-O&s)-v$9q8$%IF4=bb
zVf4KH`sNFvAMH$2RH;9{j+b)@#YL9oFf_yxYXQMff&>e{d?1F=kOSo!>&e+bSP75n
zD2MHn#Mif|iZ-kgAoEnJM{4ZYwjZig@7AsKyMU7s90#Zmt0&&g0iozS$F;H6x|*$2
zv#jkqAiKPXf3bPrlV}fwW31bxKEji+pu-cw5@bC*<E&uu-v$S%kvkJH?98oJaIIew
z<;^FI<<iixUUY3tfcp|Z!ato>oHuVQ&YLgnu)KNO#YUMepF+YL<SRUJV%?SkNgj~-
zB3GeNKYX-XW1-A@O2xX}9IG^m1(scD^Dz`kGytbYb@h+WXbTp<3`T>Q6l&eQoILyP
zN@G+vFjHW8_J&lVvV3xCD7u)~i-h`#=*Z;s@Jf>E%Cql9o_z-{AHrpyXU}Vp^6U?*
zA~MRe|BfGcH1h1fm}>}kU1SJX2;mx!u-F#s<}5TGJ;0BBi}3w;^{HrIzFri0td)K9
z+IQ=r0QLWReJVnNjq}=vXSXDYgCVDV2dL+*>r*As@I-~pXcbAyopZHVHk}FlxxLt=
zBK~=4pxr5=Pi)@vP9AEc!`0H^YP|pjY<(piki(p>XO_m5UBdL!c_aUGR95}!*!-Jy
zPcy`8f{oAGxs{_<2c^t>ni{+_2g|RNx2Z{zNXCK~E>(s{uvDa=FXc%}R|ZM?g&d91
zjvQh|HHNT;>Dx8g->?DFjJ3AL?LvJp;B5qe5;cogu#rLZeE7FHCOGR4Mq;$@fHN4y
z!Y}KP!_1?cLfTi(-hal)vHOPaqJRvT766_H2?BYu4=}H+F<{p6p#=p7NVNc|$vqXm
zHd}DG-nY_6OHKBxp;rE*5UB2DSD(Y&(3zcnuZEuu(c<V?h{4iR%Ey9!s%*`}THn@o
zAdj86t2Ut6iEra?Kag*hqGGXTUZ}aX4-bWBQ23c$YlDWM(qjkQIoZE`43tv|Lj=1%
z`^nD`7f)?hetu*e(xj^|+L!D+9_w7f_1Jw!?iHWAW$uhaY`hAo<FWge0Cb(08>jVX
zbC#e$6qs5k+Kmp_eVlyq?l}h&KGw5YXMds~O8S|jW4Fwplp`0<skD|Ae|UTgTg}nD
zEcUdqwS*6#r~?R-wYYuZZF5_Vd4R$lXPK;BS_8#&`d*%5{pe-WJ_GPub7I}gW{b~X
z?(lqGyi)<6kEicc*&97MK2NnBZpG)%-?mLYAI(GIB@|o2XQ`G)aR6rD`$<4Qy&to;
z=J!sH-w<FLehzyPmku{Z4d?8JDbcLG#l#j-&G$H6G>fCp!6UKx_i|ltqq!R6<l;Gs
z$1njH$Q3!8vQjn$!ebm1FI@2pw|xRaZHZtj9=3_IXRkg<z82ohf#o30NBy&{We~S@
zPc_@3W~Qr|_B<?T^3>JF^2vNat904mnSL#2y6noE9evBg*f)&L3$C({j)NfCb4A?l
zrysVyr%JS{6s`DE_WC>fqLh@Uzg!k^7tGP0Q_53iv4@Pkwiy{_WG587Qq<$qSzo3C
zz&X-T(TsW?m0vy`zIz}a9sTw5aHW(wUkB@H8Z7G%FSRq99dvHcasp0*dP`}T&doc-
zx_@H{84Xm~_aoI*PI9C)c6}9B$FBO5bdiF(&Lul=LUHmP?a`iAI1%f-Q?KCxEaI8M
za)i$JOW9x{eO9R+>byp`3-7fK9=j@gA6rIqU`gZ?NCnKLF)^kxTw1|5;DmG&P_}f%
zS>KXQumQ&1gGDvDz;wm<hr|~`iggc0TSK(%Er~!nu{2~V7N|wY)r`dHI9N+Y1!0py
zEP{*Yy4J_K-qthevMG;`q%rt%YSe>@HWmzJN^Nn_u~~WZS#PUx=HJfPqM&GccIbrI
zeLGB8Fqjd~Sz9O{n$=+VrnIqAM2>N)p&?wNxM<$xx&c*U_nlx5o~z#whB%5RQp0zj
z+}(4<FESJCed$HI><c$~V{q@FJmS3%dc<FRpcwI{?IPY3o<G?mPRoxx<`F(8*D}OL
zaXgADlhvp`{n;&S8s;v8#I?T?y~Ng=WeRjywc=b=7p7+UYLM=}*t~Y#O@AF+cMIyD
zjCI;cPEM`W>f%><X~NN9J@n|@k$Y$+Y?A<d=73GcW+*#2uD)wz$g$>R_?><yr!L{y
z#1eM>c;-){!nh?wl|zE$@Fkg(6sT|*!1M$PY8kF{+3;_ALVjh3JRu)?z!UOjYr^(m
zH3@3mE+HGkPtdYSkTZDNCNVNjKtPy7swI4heRL(O)xs%`z}|3!m*Q7B!zGg9KSeO?
z)(?jGc43HzH=de<0gcU^L)s^t(`J_G3imPHeO%%`E^r^`+6Mx#|7AG~_tS5R4ro>Q
zscviFC!?U;uh{~r*q+QhtN&O?jyf9oXsNiuKDZ2DNt@~$7CRc+ay#LO0eNjQT0_Q8
zRRev7{<1f16<^G}ivDP(*w^IxLlkV9#rN0j`r}%Qz8N&r^{qM&19D_DOXgq95MDca
zt|Xex!Xj(o{8RYDYH0A){vNTPKYw4P?fv#&@q3(T95r6I0jNDtDS7Jhsvvz8jvljf
zhUNO5(VIwJ{-B1wo(4+mMl+s@r4QjQ@#oMT^{ewbT2VAwGO=!D>sp>_yG+;TUuvzN
zSra6Ok4~sk{xKgDHH_*_l=c`$Jx!t%o@^?n)^dn29GIdMti`NR`2s_LP%8^$JX>JV
zbd0B!_A#4<k&1OsG8;7u8zmRf{iL)#bq<i&%tP6Z8~jE-|JmZIm&yeU#wA*odPd*?
zOYgJ(7TKX_^qYR!?df5B0y?ksIIL6aIL|kpD$D*}+Wz%gL7|jAXa3f*nzN2Yo>hs|
zN!0>x-f7Ip#P0iyY6w)JaANGf)*TzETZ?rbskxf;xOY+&KcpdTCS+57NCglLeTSB4
z?X$FYugL`#e%Dh-9G5mWFcj*16TVDJk6V@+aUpLfNbgH%8u}iaoLt?o@!5vO@1M}n
z`M1(U=^9LBcS?c<3XPMJ!<Pk1Ppam3NvdLuUQM5>U5KV|wMtj{tg%m6Y14%XC|N1)
zSehE*ZHI5FGN=tNAkpQH*<@_c#6D1$owAuyjVJkbG2gW23l@au@|{u@+oniYg0O)r
z8J#61n>kKDbm#~cBL0Hs;?e(cT;vSaUMUdV91n98vGw(&Ml{_gmRwmyMct>l1EePL
zC)T9)InLdxVN;2r+^S(sM`kU6hEGu=nSDEaLLW~e(y{s15+(=}Y<}62=Y7u)ei-#k
zw{<ElqHVfAu{zkeE?B(jgkThxG(lCmF162-zY`!=RcXUeI|VDrF8JJSXUnOY)KR~(
z+h4Cqq))8T4u}#BnnKp7$*F%kHh%{TWKOM49o5aF-S4%{Lb|x^BMH`B%wK1M50e0e
zf}aQoA`2hDlyY71iP^r7$3MO6U=bg`huO_^Dv1v}?pA%|*Nrz@63M0Et^B4e$8tX5
z4Z1m!o6s*4@){~whn1-fz|L3XyO!C|f|C2W;EO=-G?83e2?D(?*0}@dOiGPhf=z1u
zs(by+S{o8BkH%M>FO>$Ro9*c(=-Z^!aLPI)r6vaq<#Sa?T!GyA83IHks{fG(Hz|F9
z6n*9nU=^$5uzLM^&+1k0J66Li?ZV5RXmGAv-kyZonpmgKI!cXr{kLNAxVMqDPhvI*
z$)f$;sJ?P2HYi+icxT2K=`fA!!V9R>l+S)5NKRreupiNo)c;xuLBu@COS&wGKso`C
zQe{`FOT@1o8Alk9KZe?;vAH2A4Ik}CHURpubTxv^QRA1)3uL|nNyO{LDsH?hf+hS7
zKQmtw{OB`8IbEr_HWnvE1U{Y6_xaxl3zqukdf!Q37YV84DX=DIzx@N@x$0$oIOVJ6
z=qJ06likNX?&D7Pal89C*nJ$}KCX2iBizTFJ%KT^sbIj{&p&2lq5Jtq+^#lQS<EJB
zOySHGs90MW(jd8(a`}m4mrWeIYI5=sil&nr6UkSUNWMIgYOZXke=2s}RWykdyS-;8
zcKtKfCCOkCG}dj$gLc2yI+2I#5~=C6llgH$?7l$=d}(7Mb!E^{zqIv}iTVw(&VZL1
zQiGQSeajn?{|Yuz%CUvz?5`l~?*{2BO0%5_Hc^nHOfZsIWS?%<c)|j|5pa&UbXQGx
zRg=5_-nuMN|H|xRCXW64#IC=$K45oBUu~%WS8To}krQKHX-K~3drORZMV+xEa54}i
zw`3|zT5UvZD}yQjkeURlifdLGRqX^aQJ<7=h|9p>5=V|skWMR4Brhave(^J#`ykDQ
zQbV<3LW{tfDm6-#kY8F+;x<r`UNcXtK{PF%qiN<uz(|l@Or&V{Z{uzCRzvcG%<Z^^
z{8OCE-51XOiiy#V?&H!u5Qq1RCS3CJknS2?Bfnzj+3zPa+VOgmS<|~lH|jGTeU{Dt
zyB{R~`MoH7K<b<I5H7cc&#~*Xdtk<fk3Dh8gi5Bh`<4XtFU<O9L%N9>=GC+Jign&6
z{!%(i(mIhEx+lhD&vHs-*HQjL_<8T>z`A_Ea!iUa-_q##t#G6aEW4P|!EkWx8mSyq
zVo)3&#Dk#kk)Y!P8w<XyjC)*yYYpWaST8eU4ba=5{2R0PjomkEWIW#0r=tSegZP43
zRgKvf;|p4=8vB-HsSWNL9XAYvz>Ox-BObbbBs$@3ZFt$U1+ftvwyeiO_fnFO#loY%
z{!;eQg-5oIBYA2q;pJo#7nQ?P3BTiMsR=v6TFkY?t6EazotEZ8#*l_Jd(A*C9BS)B
z<dr)q^Fm)8jMo|$RC#dV48VQZEfu)e^JvzNn8U$4;%7?<R4?z$9vCDSj&3*XJd-;f
z74Hcvd&6bNBQ;IPT=-CnNz?uAW7G()Ycf5bP3xCmiOt&;?qFX~j%gY%>kqQsf(rox
zMIq^t!(8Z^!l$&84Ei88e;$fxU#z?ZwE_d>jMA#I8a!GpFm8yPc$g$c(KWa|i>Arc
z=ojzkn9iwpV}N_wD27#hOUi~%qE#0$m~ZfI0b@b1tn(xEWcU<SnOSy;RNTq_%KziX
zV$x;DeZZ;`<kjJo&xr4u{BjCx_~|`EP^z2xw5a#?#YVl?c86?FqiIIAy#85z+y58z
z`n;*oHt2QeUE847T$tkNWv-wfy?#ugW}aRb>9ooutQv@34eLH0y%t|&^!np&+o6|D
z@)g&|vez@9Vu{R7OG@~L04i@WXE&F(fH!V0mPk#lAkP9O8xmWgq+cfB$}6j7tZT&5
zS~Z23S(?%U>0IGrOrV|vuk#wwkG})#FOV*4KU8Lf+}5RUN9L3+2)-)z{gUW7)NR%1
zuu8bT+5d8lGdBjA;Q@HEc~XGn*~otL&&A7F_gs-9X{Fgs#+7tg_jLzy$y7)tC87|`
z7;eg2Uf_v{T0uh1Da9*=HH{mMH01HL4wrBQv|ja8qG1%&%KWFH2c4=!z>v&UU8m|l
z!&fT#)^C4-^n}qXob##I*t_F(%VZ_*a-lcQ$3pOQ*};3eOp)TK9>dId9PJ%Ro+sS6
z+-;%)L6p&eY1(<9>mnOIL<t30H@0W&dfR+|BSU<`8oBTmjT+a{ZlZog?D~5!g0ZgK
z_?y7C-p}R9sV`L$N5s0X(nX%>?9{+0^<&$U6Q6hJU<Rbq4r!d6nh{K{f1|C8F<ABv
ze$`D*eZ6*a{l8<KlX&Cw)S+)q?*3=%OKM~OSOX0?O<<Zdq*QR@LM|*{0te7A=HWzg
zRWyhl_3)|bBZqtSf*lJ~UQuneAD#=fiX1RWNVXPrKP*Gsy(}KPX-U_rw$l@+Z*xO>
zVyVK_x%6koDu=qqHNq-M5M)VvBaa8r2lknz3K}3W@e7siD(Ig-71Bt$ObD8Ap`%Z6
znFmCq9ot`}6_?2^!NwOUIb(?UzJ>-X1Vt&;CpLhzam!5(v}Cjn3Gwtw2vet`2&L<k
zxb1#WuhL(OWYBd0K=iJr_!c;kg|Tz($*8>o`S9&Ms~En)sFMKYCaC=BZBa%0D}omx
zaZf{XSrH+1jKe*6My0JbSeMuOUCsU8`zbHZ9gj-N(T-@d{+s-B*Sd|*`#opp@nnvJ
z;z&)zoy>#u6p3dxlc-<Q+8Ud`Qr&WvZNr#%@^X_HwMH?5BekvfjkGzMVIPRZ9}~Dl
z^05Rd{NyHva2(ID2mtgiuctn*h2Hk+I?XQ9XS(d{8)c1f7wLTJt2`XLMApzx5>{qT
zR08$xX7dR@aUZw2j~e$e%6)ueD7Hl-*n#}(&(&eko>3B+TI-xI1ZfzPaF0rXjl<B-
zD(vvhV-@f+zwty?Ffq5w`44xPr##((DDx_xpFEw6_p3ivkau=DvIIS4%FQOvl8!|4
z-_Qx!@pB&W@WP`AVv<j?qbSc;g`eYR_U`b{yMRl5p+m|06YS+%&R*JC86B_RU_`yk
znGNiv%m)?@tM;(W+?wp!iYD7-<WT*=AXn(1!xM>k#48P{%;c-KM7qPYKc9^@{onfs
z><G85F3b`)s-H)D%{bR@ip`&Bmdx_Lx=#SmydWVxQT!E+jXAM4N!UDQsenOGKggMa
zrMV)}(v3mVB@FZsa!SH2{1m6$8HJb{>x*@LOI8iK6C1KG2^qlo56Sc(;trl?WAlIM
zZBgKW*7_-6qR*wd<WR5jkc+^Jq^ym)5@aIhKduWP+HSutmbJ&8wA)y(Aw6_A$%BcD
zz^e=g5dh`Mr&<MBARpc~1*z#!)9m91S6E?AyCU3qUq+QPgAGJ;>@KT`N{l|&M^In~
z74vR47k2Jo+ba`xYP5(Yi#VrttZytN{kj&l&7DtxrOSHH8L({|aELh7;ZK%t#G<fD
zz^xRc?YU6HQJTv%>nV(loG!eAh=g`}jcUbCk;ipAuK1xY)PPCQ5crf4WS6P=E(O~P
ziu(00bpoH81x0&M`j&}k)Vowul&B29Lm&~w9+CzKWHEq`U7)>>_^QG~cXE*l1hUDE
z=y0R_UK~=BpyN?#4@WIl{NnRI<SHP%Spvm`0AC#@pHSeX>Fg-phaQRsp-hXNizQ|(
zGF+l+>?naaaJS)_bIq(h={|bh$71*K$DObNWf;GK?AcQiosQS%T4&QB1Vb$Tl$Gt4
z50ac+@IjJkw-IsGUj_`4YP>Ku3E4(=)FaPxSS|sSIzC8UT`q~MrC?m2bt)VOeP|#f
z!KMuuHl)re;9Ifz2U~+vWgBH+eb}JWjFU0}9DSq=A|ZxP@r+_Uuit)zO;EUL(h%vt
z-!zUDDANBuy#Cka^#6Bur9l6GtPAv9>)=bB0~eR%RX^X?Ca=sEdDz&2iLuoZB`-VR
zS0%n<5iLw;7li^n&}cD@pKTyZivV&aETB86^%CTab|RsX!YGF3EQ;x}l6$oDSH{ff
zoULm|_vkl%qa7)o%XcUoopg1rg``sL9&Qvr<lu6{97re&LcdU2Goi+?WaRV*Lhxht
zLHWpZI;Q7*a<wIAil90=Uv}j;BJb|?vphV@&hE{*_G<}X!c|SC1CP6pM+YPIv3|(~
zG$8N)Y`k0{?iS5KdXLA<x3W7u(osy!Td{Pf!HEy<+DUTTM5sQrgg-0!f8;R}>mF}i
zLGaf)T-T3bU3skYXS^|C!O+s|?@fSY{waHM!%MkRV{v6TX0S|*N2XfLhMp#H<{RnJ
z`jb7aqhgRgj)__+H0+At=j_mb9Mz&nri-(2#!>8?C(s2BH_Y}%H^TkTHu|LoLAW(h
zdZ9nPN~Dba^1a@199J@zu}=CSQ8Zog<0;+@Iy^Oa{^n9Q;H*;j&BC}^z{RClHC`8@
zMbvH|qOpA$*_)FW4Bxe(Z*c>wlJ*$iWmBb^v>Q&oc=P3d%baZ*YQ`hlQ7RgfaKM4n
zqMQXr(9B>bQBLyHM&?3oYI4dM>ozUoz5xo15oE10QfmcsplO)vej~9U-{=gZW=xrB
zy3Xpr=(<jcF=s#(ENQ}ntCiu1BjxSAJ+oIe;ro5HRXEWbjAG)+H=wFZ8ISsPS6u3(
z62BRjXtXo*%)Fps6iT<q;PLaYku`w*(KPRJx1N^JNKg8Vj2YY9L-&i5nWJeitoWP>
z#Z32csrzUtMMPe9y46pg%=&NRd?G&}#mqT^tRDN`*goa}`j$)>vXu1h?9p9H{0|;`
zdU|mDv{a&pT|EZ(FyA{q_U)e5b(7LlcJ9lrB*7Z%`mPCC*$HR*Km^T#u#98FL;vE0
z41t;;<60<W2*VV411bga8f!HzKZI#{;@d=WLjuPlxF*Ahv^Fl&unjttjPKe(gCj`|
zLN|I4`u+Op>1khO1b*aer>Ca9R?aL0rI}1N&D$HeCM?*WY1D?~qmh$PAy(-MCf%|(
zO5U5K`p5-lKT)5FUDr*+0<0xLj<Z%y&1d|lfzCh2IytFz7FR-ITau1hoJd_by0Kx*
zqh#<KHa^#|_`?$#Mm?&5XUnPS!G}sz5ZYFefT+<qT909bScFwW@~O<fVRl3E3AbiF
z%7Ep<X31<-IBH8oT1VArp3286bUhst(~f(I?)as0xjW&X&opuR<Y(=px^Gio=1;{o
zx}QA#!P%R3<$v)7_NT06NIp1m%It#^Cs&H_j^f;QMUhxiNdVev85|u`B3h%uFv5Zp
z7Wq0u4~`JaM-Gfc(ig)_g{5<05N1aLB29(=!%I(34?pwt)W{W+nO9}HRACIw#yLzk
z)}=GLV)HjiL{$+oW}O!7M-$19Fmj?$5r8EIl|d38%9y$cQm5w@B*eOZPnQB2*rI|r
zmD(D6eYBsN^+F{aexW=_jeNn3jBi`9eq=t9QTSk@1YOkRAk8r_$~?l^qO{h2TPWtp
z5MdvouBtcQYs~!B8ymA5u=`gAWE7m{1;MZX+RhX2WcFit%2=lLYq9y3hau+>jCnCg
zzMmV@eV};Ij3l#Z&W57uM!FRO+yWwFGH6+RwN4>TF>pQ}%E{u`RT|m8m3=x_!<r*7
zjA>S!8HrO1hl~EJLqW)JQVeE7us7k#-xcK-eykv5a-&K1$?oHX4-xQ#iv+x%eD9&r
zZn3>gm(`pUjjtkSWwC;M=;R)!gVhqDCNT>`r}3*K+^h(PaD~g1ZQuaV^Vj=qLmoBC
zP%9SPMCO61@w253;5pa0M*_k|-QTGy*JV?Z?^N?WHR5bu2-3Gz@<ZveQhQJ1u;h1i
zjcQM<?}W9LLEpnc$NM&a_GZ8?w@k8)paOi)21<Qxo4JiV@<@W|r25sfUa>@iV2-QI
z5H+kwB!^=s$pZBzu+XYTyaUkOG*eG({>!LT1N$_MAzv1iW+X=S1f{)`spvmsY!B-;
z5rg@HDM<ZZc$}V|Qrg!rW)&MDUVeM#`_{l)S+W_RDkTYI+Az9)C@v-DygX*TWjv6p
zD3Gu*t2e1AkT<D}TAfqNc0+^RsX_>nZzmYS=mAGgZH27!u!HpFl;dtGja?IyVW6Kn
zb={QfS~T!WET}LFO07s5Ay-&uRoMtS$f-((IxvC+?~_>Z9qV+Z*3KLde(ov&;<hs#
zj`hV@r@|3j>(JvT)GccrqgHSUNf9WK`lgX9J%RlV#;i!xKRM$|4avdpXAYBE>OtE(
zTB#IMhn)UML6fMd?Vi*U{(XNO6@?kewV8h+@RpZyrZZe-w|XODW^R(A+?y~(x!Zkw
zVzT|Z&HXBOze+cwJ%5b`u6{}cWkJ>swFP}S-8X9nametvNm*u#m&`tdg0R^Kai*MY
z8B@P>MosL#amOZD0o^d>E#@s}R8e#{c!vpfOIxWKkr<?Cw^PSYe8K=xm;L*zjAk>m
z{~`XBUa_)FL}$+n`W|oS>m^>9Rjti4I=dXvhwrDY%C4fXk);#so^4&HC*q0J4WfG@
zb&I$#xqjV@GfqzpMls%<5x}Y8`<<4WvZ8Ww{ljxA6Q!#sCwsXwd*o#H`uxG<<ipu)
zkUoiAh`9|9wCtExP61Yg#_6XTSp)lU1ng&j208zV7*4~8;9s#Mmir)Dh52YW<G%3K
zn_UzF@(J89wj&)4i*d>o_n*8~tbfO!3S#|0uhpojxRe6hh4hnBw4oK`YsrpaV!sr%
zSKWDXc>=lO4QRvwa5Ag!6D%i5yMiwj7sIP&84sX4lAxO8UiiD~`Yj4+v25Nx=7jYQ
zebpIP2AK`;bpwgfK|?aJXL&<<+@2FsBQCujJ2&RBhP*0{vfL%rXDcUCk#t%^a`>Ld
z{im;_r0wX2r4#ln$9iKP>v)a3mAHuq-W!F98op=d5HTWMb{D_H-u<K-4`=qUYa?#q
zT4oo%kH?Bp7xXi3Pe`uF{sh68!+N`wGtO;b-@8f4S>@%aeb!$$P9=%uRM;IbDS2eM
znBJ~He=dD1)LNiV)UpxLZ6f&Mzqi8AS(odwD_KGoyZ*E0u6wO|Fg&KggyIPIvCw^d
z``_r=1}QEyH#V2!AlGBluv?d`Cr?VH_qbuDAK1!(hi8SB$Ni(O+t!D%dsb1!GiR6B
zA2*cDcr$j-W7*eaxnTK7w=bbr->vkC?07(@m|fS~WqrBcc2;k1BW<&G0*lLE&K~ix
zI<2Ntgg4TGQv;zJb>DwH`>Key)&4(C;1cWlwh<N)5qNRH!_26{CVgJ1Z9J4;61T$a
zEjgr}n5GoWfDm}kW;4UY4O}YM`;8J`?7Fh_C)A2{vg>4{TG^3Ku~%uY`eU58V&?T(
zR=Y^YdAeCVu7$^SHinM}NvWuLFrtHS!nYz7)qtkx@$mjrjN`w47ao6zDCCI2mm+&G
za|*OTzorRG{h@u_jq8XW6^2AzA|y&&86H<07UALcf^3T2Y9i^Yzw78Yd$a4cxIgB0
z3(wzBlXUO;qhtExN}NyD6Dm^T7v<GGK^nY$AJ9&llt1+jef+Q=KCyZKaP|#mOvCtq
zQ(SGZUp@T2(e7!5jFl%D@fl!sy@!Q}UH`n94*Xw`9P0A)VI2M7?Mj}s-2;igG>J%1
zOmLH)L&h75Fc!~#B9T73Z{j7(q#nu+)lDpYh9$5;{aTiD)^EIgL*``q2CdOZMfG@8
zwEH4;SN~3I{(*u@8?&uxz!*k3%{7VAB@M(9UC&4;`ySJ<`LXfR4uT|0K`?Jh+`#a}
zbvvH8t8zl=@<e**UZhE4oyyB7X;MBRcF)QQW7cqh$O8%1dCb2}J<B2^mq^;WVB>n*
z^=Q;;W+|!+dk}^U5@2IR6SMCYAF*M}f#5uv`_&TKIwOcF31+>?=#lxXxg<a2onDZM
zQu2>`XusIf86E2|fsQzU1<Ov;bc+zUu<WH+zT1NeyRCJ6$aOgZcn-B3mYP7Ilt(P+
zWMk%!GKd58?+}IGd_lHz7+;j{x^;JZ5jL2Jd%y>33+Q9_m9XSJQWYoHO@>l<l8O`n
z4+<B9$2EJT0Oat!lT3rJb|3BT<0bd;W%sfAO|*MUzi4SIeV8C-7uCC{yW{49P3#&~
z%A0qKbzj3*ty)k>XSARa>^!qei1Q8|ALxbIdk5+1r5$X*fIp<Z%^Mvm$vAdIKcReN
z`1n;BuK4w)J~W1~+Ttdkduz02$&o_C=13k~Bgd7jD=C?AVvsh8fGuC@al||5T^C-U
z*N&(#OIGlWgB?+;`$3alP*UC3*Ri>8zsi!CzZ#$?AxUF}oEPK5=Z8D9YFuiT5IM-g
z3*Ug;xAiloMfMaM6}tJ=2B~z%>o$T-y1LdN?LQgR-w!R#AeHGkMih7ILg(i4*!9)0
zYwW6w_Rwso?{PV3jX5;lmNJ))?|6SM-)C2o$C^;Trj1pUH;wM$N|5p$bUdnl8FYc0
zXk@8@aN@5v^-VxySyExcifHKWJLgVZ1B^wy3bWYdVV0)oT*uj)75mpeHv1Ci;{0<M
zoZUON%;k;QBPh}@#hi>&a2Akfv&H)XLsG9(8f86v57IzhNo`kafNFGz&@Y4_d#~yN
zdT7~+M=@rinCM~LGbw1_n_p>p*|g0L=ZZgH-do)KDoaNsd)#c)W7Fjv-jZ{8D_rcK
zU?llJg2`Ax2aD){As#aVgy;{?{uEj;EcrrDwk&qv`qb2gjj<oSJLBbT(SG~T7bBjj
zFw?Ycbi>!ONZz+`MdnaZW~}m|1>+&&DV6R(Qiel<c$q?|k%Uk)#=xUp;&p4<UK1a1
z@4VN^ct;A+Z|E@m1Q#|H`Rmxc$0VZt&V%wv3b|Cxa!ZxkHAd*#MZdUw?Q&TiGBOsb
zrYja4v(<Q^?Vf_X25v;NA%GajHq_+A%--)Kee2S(W8ahPG)shAvY$?jdAT9^y!T!W
zqn;yZ-oGJz8N-U6MAE`|6KS<EIT^YEAL2>HlmdeK7yNFA$#LXg(G%HbB*Uz?5CWR2
z@VbM9pEQOs+}EQKErB0-Glc@0gkB_M5$syQRmYa3vCes1YQR~ur?zHs7;{WHTw{*I
zQzJgSM(d2IbeNnTtu3qf5XQ|6Ar5b-e=aspCue8k)*{w1oI~v=BZ=(GqEM|KWl+Pq
zr9F(mk44*Mx2S*2+0<PbKzxrLSW&Sn1Bl}Udown3*TC=jPR5dyveo)9hhZap_~a~=
zU)zDr^Fs^09DYEJVzwu02v2EwAS;y8Za_r+m5x@2kBMm2*OS>|LyIVy0{9j^RBrSQ
zTi$l#4g@kv)=HHeG*K=&pJn#YU=s9%{`px913L$9xOkj7%}MU#x9(${`?$k>{2)Y^
z_Kb8%3RNWUGv^@djWQ1u@#+s0z&AUW10B7XfQxtXCNS<iOTne*ksOpOycf@`pD;}+
z9H<tTM$FYy(I76u85CU6W4Ps2;M0yTrt4e7r}dNnC-6mjAC4FZJOe&T59ZfTde|-y
zY#+6L@^j8!)QN^zT>XIv5R&1&2AF?Fa3R22)E9|VifY(|A&(O?FH59HEV}V%dAXs(
zCMO?n*toJ`)Z2;DC&?Zr*q5{Z;aN}2{a|jabG}4BU3TPWqNyOO^-)F5s9!jnVq%4x
z@ivjpTj{({rqQxv={lOw#MAMKbj6{r&%vb=32xaNnbj(oePtxbqosccw6V@B-SZ=l
z2e^@YPV8FWMk)OHrP*iLdN?+J3U^sekr=bIA^D-tVK<E0)KE&!X;rNA)7+k%e7b>U
z)u$yd99E8*8a5$y;J@aKE1B5+_qHQWOAa13ndDAx#psAwr^;ZoKy*j>{9zL*z<haf
z`g5f$p|Pz`$%bO&!Y>k}CdeZ&QMzvS@v-^$@m6BYBMlsi;X?X`QB0zZWX&mHXv0ni
zLt<EY>Zmrl7bMJN?K3H<ntBU>Eg>wEfk^tXr>4%<h5z1FhUl&AT1d9}hNDX|tK_zl
zLtTskKmOjJZAuhEeVLxb^lC93Uid^cVr$AIn~-ZgytU4BcE@`AxZeF*;6C1VA6L1L
zm;a9VU00~OrXzX%O?Qnh5m2@sWr9YJ)VW9;3BhcsLOS{+NWg*=L;?3eNn7LLs^5Y%
zmhI2g!UIYD1Z8%VDS}ap^4iK+y`Y>gL#SqpcQk8q105w4v7H9H<*%k&&xSEMfCW^v
zS?-vtHlO6<xLEo_dP!I^41Y2qN&L(-<SlwxyTU4PDOX|C?L4L*R7tg7?NrLP!JLY%
zu7Bq0gY=elX=hkkzKp^(yd~yq)(+)FWNzL3h=oHmSD<e0^)Oo1iR_sYIFbYQ!@g6R
zBu@<1Xs~LR{H~ipmMv!0J{KFsVbsfYo&8<}AdQ>bAysS-dC>Im{g9_5^K<cuXPUCl
zDo%C&*M#TRJ92R<OC>U|@SskAJzrE!pF+vrTe0hR)(>qskQ{z2uO4e&CCCvyT~T%T
zR`EvJPosDPD9kp1o2HH+gLtQjzy*AYm!hLa_2mtnJ(ZK$N3?-WR;N!+RZeCLjmdKP
zFM>n^Dc|{P_%eA6>DuQSHm+}A@8HR!o^2?7pUQ<;=WlfnLq=*3#UE0R()V4Zqbd#^
zBE{eFwB+z1*@X?s&57ij%pRl3;q{bnYHFIg&Q5uWMS={kai@J!#G_9FeG_Mjd-$mm
zwBDUuwW&A=F|dV-cHkvS817=2=W0w;;Ud9BG^_?s$Y*|O%Dl<W3<!5V%5-st`<V6;
zYWJP|Ftb44CXDWJ%67JfwjHncfUuO!;(C<L#rIvVdRRM?T>rM<SKRo7zSw3ZH|d+D
z1fxpk)d2|$@uipcFx$H)#CZ5kZQ=3diBhJEFyl*Sg}Hg>blE}1ar`t&2?aFV*!_+I
zZ%{3yVY@G7W<Bw|@5@5uJhCD_?yAe&`NNcTydhD8meUoV+-dlsI?6y>RxdoB;7G%U
zb-Kk`YCr4SxuH_AqP14q%e*7KPtQ(D(A@%Sgn<!nEwb-uxD<f%h=;kxY;c3<sR@gT
z*s(+n2ta$CnPR?L^uuIO`VBQ>^`chVN&V@=vH8CfU4gtsGdZp!-x|~b9alEizzh)T
zJC_!iG|Md(Sfx^Np*y+sZwcfr)YtlO&eaLnD-f8tGYmHHU1A0Xs$MwEFtGH7&r_H7
z%0^JFNz}Qwfuy@`Hfye49`i^p|3seC*9Dh;U@?9|xoj;LXh`;E9^!Ly@-LYyiH>sR
zP!LgI8VE8d?fM4cqCiVY*K?jPQ2iQV{+7LR?dVPV1U(bfjz@d=iCJHs*;(p98@+a4
zE6?a*`>*+k)LQP}V&|qEVqHH}Tb%YA>)zEu<EV8S*HW1#gmXH8x7V<2rdn785;Hbp
za^+(_dPcAX*akJmGrSb76Hp)xyTQ+9Of3CI%oRSj-eKP?KHv=eIswob5c?d~5nS}A
z-B2v6Eno0a@O1h02r@m>{Q}22^&S5x5{9K?&G5WmYagBN<MrpTKl7vN{K9xWoy)gu
zDuWyY=Ud2Wan6AR14@}<A&KeB^#b&3k{(Hb7$*;Mxr|ua?I_W%d<J_r&l=sHJQ7*=
zg;sLPG*=EnN7gTH{V|Q;8q0q2DIbkSy`;~;J>_iC{6z!UqN(csUJn$$<PZ-O8mkxy
z&A#q-8CGZy?R+@y^)4^;+^r0MUtzOhbsBr0#XBy)cm0c&LKo?Ab=G3%LzabftFsqq
zSUA2^sB~;rQZLqZ8gFQ}Z@pA?>0+0DQ4mqOS<2}MxH&fe%W7uKlbUgk*5ud&2A7`I
zAW@qZ*cM3$oo>kdsRe90X{e~u83Jp98^YN$^-D2mW_1NJW7GvE>o(|QYCt1~*!Ygk
zbGaHz|40uK)Qd|Kk_4mu+2jZ@f0~{%8T5phy<e>JHlt1vDfCQBMoG!;p4t0KZd%l&
z1A&YuJ@p33%`Uqo7S}&J`$~r_oV3Sa+x(-|GTeugg-B?kF~0@cV?imABxaO7%X!TC
z0O@qNY^MBx51`{Zd%*#swmdX84&&i*$lk$+c-dP?LdpUFiNx?96j;3~!H8w?1r6ja
zkT(l5X(JG*M3L*}oFwxg$_7Tu$XOxoYPd3NBs>8WvV$g5dMk>d^j4<N!iYz*_vdMC
zA%&XrF&?o=_=oQ+#<MVtOkjqSzNrUdP1|O1DQ92uVJV(F{Px-+4FXOx+DKH7;Kk(L
zpiiIt6dt-Si5uvC=jN-g-q|J>Gy7nT$rJBXQo<Fao|#&%r2kMteypQU*RL4rH6imh
zVGz%vDLf00OENF|E0wx}PLyPx(7@VhPG+&bL*ePN*`_;S-DEqB;Pvv`o%rJS(zk-7
zLKt`$K7FZ^0XS!KgeC*DV=~}GE%RkH&u!FO5uH}E*lZCGali{w^<vJoJ}!Ned?rfq
za6}(&Pd@kxLrmzVv=$3pZ*gC1Z8wsF-X)XqOph+J1<cv@NxS(Z&+6|Mq<b^>uqOuP
zpX;?pgx7RW6NV<Mcsm?)h?)Hl54MkgyN@~U<5l;u!F^ofK32Jp$JgK>UV$qvWpZIq
zupe}6UcF>$tNGr*$YvAXQHJ;PxPW1{bLAdg>sxnnyW_pwx#S_P?HRlI5p5zkVy9y@
z$W;WG%VkZY=bW<QC~X*Ro+TPVYg0Pg7BpRP^(VI)m`wX#kzm6~SUyz)6PL8uiT&t~
zafyrBds)(AVmf$e{M^lZUNLxlXHPYov0eUL_O!g-nA1_ozOnTSPZc#k0C)p|9PT*A
zxNzyy&{l)BTso>aUlyCEnF{DztHJbEbI9iOMJcc{D^qEks)m8Q3-VKK)8L<RGF;z#
z#qkOZbDLh-PC&|?mG%mkMwzK5r4HOIvqfCGoVybC)ELx%cnYYe_#|3CdHAb?x2`xp
z6*t90m4MR2Yu$Nxn{x1y1)d>rnXT`gF-v&GH9tmTYQ{({9sr5+9h^XnwT@&!2-FyM
z%cE_0sPxwUxHv5Wjq>pCUnx-d8Y>D=H|imKr|Z(be>Z&glZNG&+{a&6gRBZoJd29(
zojHA*yg_>f6udDHpz+5j3wtf9v}jVc$f%Kf;+}p_7*}MU@;n$Pc&^wMJPrQ^Jd%~t
zaHJS!vSKoj?`ZWZ3IJ~JFOQ2Hf5A;NcWM4a5n!!|h@0!3J<V}LT9%LdX7hAA6;`uG
z*IK-1vKD1vbkam~U2mHm^--hOTZD2n^I2r~*56cM_p-m#R7(rwz(_<dgjIlUn;OEi
zB7Vi@eRn|lWaUB6oQosDyJEUW!1PN31RujAzFJrj1>>rdFc6tRL%>5ctWgWq_#fd@
zu1TY&x|MA|())$7S~xH3l7Qhw2b#>CzY@SF<(UioUJa{a!>oN9ePMz~pNz@Pm(5y8
z!CY_h?eXSv$FF{A!jLC}G#QHIxF0kquf#%+7<#lbdUW|R_+D4?i2jyRO4N@&w%Vlg
z^%n8BS^NcXMfc<q+J*_e>9PBU&3%7v?3%-6`PrX!=15HT;L+hpzfx_i#WH4|RoEu&
zgF*zLfE<n$mjJ6$Glga${3PK*>elnqh?Z32vBD>=@=uVR)0V$iOmhY6;qrT;PSX{;
z4Fe!;Z@Rff6EyAR)M4A^lud!(-gK^*kC-$wNtfH+v?;ujx<~@g>~pkyYt(XULCayK
zwJh{OC164E&HcInRkwrcfL%=I{NsEV$3$HWE9hdxR$UzNUv}}^O}>k8&nJ<h(cY`{
z<8POf|Jq`I5=Z{q_7r{)-G;GVVx23{jYei5Tb~z$vEklwg%8<K+s4Aug~;ZGYqdic
zKdbd-)j&;#t;+%O{31~|3;TZ+UaemfTwqxQ?|gRT`UrR*ed1%lJCmujZTRYlHptkX
zhexUWdwg(XQE0X7ggMAUpPQiH?DxF$+1j3cUjxOh){j}NP8_&M+*S!znI2<obEhuY
zR&Y=OS&qWyD4!F}owMo%9bp$sC-PF`s6bNjPn0Ors6|jSei*6_#Brq`FSVhcuYJ&X
zce0Jxd@?Crv34IHr$sQ*y1~p=O0j!-HEf?NNI96@JS2ZA!yn!dg<A9&7i3UO5{rdF
z#t6{~f3*V2men^|7)}g)iyGn$p9FmUKe9D)thPAAParmN>Rzcv5sq?-40I6u|HIt7
zfLB#q{r?GYBqH$y3mU0tXrm@x+Tb+^NP?&*Hq>}&iD+wj(^zSXkRVpnz)679!%@7{
zYHO9+R;{(www8K(D-p^?tb+Dcyi`%E-N#@>eN`?h|Ic^L>~l*%+V}lG&o7U%&)$3X
z%$jwZHEY(ap`0~jZM4XcU=iB&qLG~`sk@~EK|+(pHH+ua_mk*xm)5|Pxb(_OeuO^2
z#?jA2=f8}#(@?#YHS~->kbE0xN!F6~GN{$(;K*;}7%c2b1uJKUYX$O=FO<<#&3;%S
z)0Ms>^b<UzE#fUK>?u-p{&|$jw$3Eb77&fms#oRgslr+^jwtSK9R2F$-&J}vFgVs(
zC@xvr@7a8zLN?I5uu5THo=2NmQmKxYlywb2d2Ywqs9gCRolDl-j?L&NxgDGA`T}RO
zCbpo2(|e;5vH*jwUxU9-Mwezi&W!-8*v9$b2+Q{Bm5>nVqSTa1V1kHK{dTN+Q)ZgD
zi7jOUumb`%;v|{BzqPx0Qlh)zgY^w$&TJfM`>SVZpY`a~ms{cia3o!bzglgU1y^qC
z14ng+qm@*gnMFWK*h!)U)(|1ZLhQ9F<Zs8?VH8fGOp@D#)eF$R@J^fmu1eo(6V+W5
z=nzj%rk!+zfCP`T2CY>lZSLw?Z*$U6CY&}&FVS4`Py3m<a*w<G%3W@Cm!G)Hb?%Z{
zh1!hqO{l>N^!u^m;=KLBVlfn;S-o=cz)mfsQ5SbSrJXJcgjp{75vkd!X{7Loy+X0*
zk{Zo0qwz^RX5#R^CFXo0oDo=J&Q+ooWTTPjl07=MP<j=VVS$_g&>a7f?HPG)^y6(^
zY(GuuSR16@yey2Jgo*gbtjhS7`q>A>w@kTWc)YuUqMfJ1z!+E4P=`|ygg9ZCkhdy9
zvXW_6eJKA<NzY)oCiuF)qpMY;SG64lPgIUxJNqA_*J>y>Bv=F};L2NHlirM|6x6J5
zdLB=_n|M6&Z2D|k21sH(WiZR)dh4sXHY<hkOyR|_-7WdvG8Tm7d`J!5mw7R}9ck39
z$u?QDhA%&ki{Yi9t|_d%naVHzy1713NB(q^b%MRAQBJmynp*K*m2RUqe9%@lYAKO{
z)3VrdB4v&?iPV_aJWKYh55^BSzN>YYQ7hoByBN|#-qN*zzupjo^x`jMk6wUy_(ols
zyf!}&*|-iSY-3O3c5Q1V0QuD76E9e*0A!p5L&uzmwn(62pW$>_3qV$uO_<6DATtKO
zCwXUin^*_!mWrkn6qK!E@TX2JMgeo=E}?(#MB|6?Jr#e7wYmE0wGFA$itAbK?$Smh
zSIT0Gag7yCN<7+7y-q8iA3WR8y@hS6>l%s)mDtw)!-+sp<+jB`{~C)?1pRc^#y|NO
zH@=#Y@b;XbUt33}yP|ySM82uA?eXdH@RXPlrq3f%L*mKwXZ4QBOkvRR=yxt=rG27j
z#7z5Q$+BQ-PWvNymx*=G!MWN$%oe1qditCrOu=#G#stguvCCoZ?vL(n|K+d*zV<9j
za7fw0bH^4jalp+Ox%2F?MdPWC2))S7{62u+J@4#<e|{&!r64{}idI(6H|(9_-S;<p
zN9-hH>(A)4=vB8$vn7X(r4@N!uR6;#-IluOm3!M8Rtcj^hU?I8#!OZql}~vr^(;82
z^7G=#8pnADh)rvh+KQwfZDLsEw-QNaNus9duz=KW#XRv3s8?>_I<o*21~Iz6_PJ=+
zFy1z%h7vl*aJq&<4T_6@L{Oj$Yqhm3be3*zEJi^}!fi;9{5{A5b!JG=n!DPrvrG;e
z{$bQu>Z~FDT;FlA)H!?Tra%7f=#_Pzd%z1zrWUqay*9T!auAC>i+SkPiXKc8vz6)B
zEd44EjztIPR@Nnvmtcg3Cl=#Q@P;d@7SmhXb%<i?07x3<i_BBLrJubD)BRYinvo?;
z1Roo@rLmZ8tPGCA0JJCz4k4yZjccRC>`@kPNMw%(PsA}gWGN(t=SYyACmq)}M14Pn
zq6ll~0HtzJ0TCP)MiHUou+Y0FJN+=oOvieExC1ycvv+Js(~(A!;I}Vjn4xX&uxFs#
z<nxm#0KaFV_o-AGSdJbjToU}{^$^KB1Tnvv;K-p){@vw|pR&9C-Q7M*Q3FR{74;eq
z%u(EHjt1oTH};4wDLo%??OfeH#_^c=03y^m4Dc(KLymrHoNBC44^W(;<5a!E@s;T+
zjOV&aHR|dq*jOr4UhrM;wTFSa@cby0Pf09sn2$%E0Nb5X0wc~G9$li9#j?@eNCJm#
zT?Yv$71wUdJN6PXoK_>{TnXh$+>+j9<()-|N0+7vvtFGXups*Lwb5%d{FW_ako%z5
z_&M_=ny-?tphCW&3Mz8|BtVQhLpN%;mIbdp?vN4gCaTTfP4xPIF^m00@A|brD$_kw
z^{Z#}K2P%dM$;9M6};m-$)>H_gZcA6+#Y<L!&!n6u=a|`uX#l@R@ndYKhs*D`=ib+
z?2nCXB9Byx*#c|sc-P27M<v_wZlurmR-;i_8GINVwA~dl8rF&S6`-DNQ$JNllQ{#*
zH)DD0C6-FJ0H=aMDLu{F8}1@azF!g>{c+o|qgHpWZX<=c(wC9NX!Nt~Xg{S8I;C7g
z&2^$(PV*4)U;Ixrx*#?a3U^zu`FTmLEeKj$G}Lo@@XkZ9+gH$&InWl!%gj&4m*J#D
zIN9st5GNjS5Y{6un0b4MRJbJv;NUv|v15GAJg+Z$<=_g0j0YKD=X4OrIcavt-x_aJ
z<}_q7=ms_E^w*#BdaP$X`1)J$`h$Sc*_%Hvp?$=5s>U1r<In4yD*2Vuxa~BfT)}yr
zO_B{@ky_waIq`m>ssJ@rqI8X3w20$cHPTEI3;CTekN(fQI>hq~KyvBq@s`GP;N}l>
z;AU4IwF>AJoo9}gUiys)W6YG)Ut}hvs`PJHIsb~onI_@St!W>rJWX0XBo=W2JMZQ3
z1H@dtCLOtt6(7~Uhl*RG^B%UK@&b1^^_<jp9}cd~or;%Ziu3s&hxrm#o?Nm!OhW!=
zL>1$yYd&{`);+dnBt=P;&?wz{YI(AB3<YAT$vOt}iw2-lIC9|Fh2OCQ$Ij6uaViHA
z?BxnpQE(Xf9IKS)ELHm9F$Zdg&rurxHD`P#_%RlzGC97a0y!BT=lbVA2jUX}Be;kM
z>FH)TfR}U`zuHc2C&5~Xr89A)>9zV>X8k>nxv0i?p|`6a@9b$?wDa#gO~0*I`nqSW
z?@6dgQo}C$lRB<=Bb17WQ53xWY&gDmExm%217a~MPM>Pkgm)LJl};tb;pKqKCbdtr
zx|2iZY(4YzFP#|e{JH~ZK>J?yY<l~*h&%DmqFrC%m!7xT^JBP6pQ4ur=3{NMsWj3~
zJ|v)4v6Jc>&uE_#U2@uhj;++Kqe!g8r|sp}rp{<T*1e>W2mH%u*JggHz<CsicD=z}
zrjRz;q}ThBJ%3YWJ->6U-)WavB8#LyK9Gwft^Ws)t?vs-11#Z=p)7rzNF?}kYpPt5
zTa%%CZl5(3r=RoQlvw&FASPJzC%EEzvn3>YY6D)^gkm2U=TksvfeB9J5u0)%Mk6a8
z<Z%Red;VD<uT0>}wC)oA<&6(Bzfq`f<OV>J)T-$c&ak8cD#n)t-_-FV*nO_^6rxz<
z6E*FE7$Z-6cr9Zy?~H=kvIJ!}-vf}}{y5sNkiILIzGIxRMJE^)VSZ$-YX)J&o{)wx
zC5BQ|$@ub$Wx*|~`8Q$L?3!Qyf7HKfVnRG5yVSpZcig{T_Kb~()<5C1WRUQA|KmBH
z*D`gqR(Q-AO@bwVq@#V<GyhTlE|~T2^>4Hq@0)(R)W2sR`^5e|eeeHa{}LDfd;L30
zjsGwDw`I*I_V4{a^xZ$LpTpXRd2`#?ZMNoLIy>fPjY{+5oO9(IUEr5y5j)Du@D`Jn
z2Z#Kfx?c^hRTDpR`T_$E^8_}NSztOMBP03paSrXnY*P^}<gZ2*BF0YsoAkMpe-rz6
zrfu2&PPB|BRSdcJrbXR5(IMp2HHD$s8{&x>OPYhANFZIAX}S;j)OmFU?NeP@5mgST
zM0J&%Z~6xfYn~scf6lr+kG}K|n9YBgX?fo7X}OQ{>Q1A*8ud3D+fo<y*D5Iq)_irF
zNk6^ROc?D(SG8fnX*aN9p#<UVEBLgUx-rwqeEjZAzg_cv*U(P%+rw<Q-l2YD8n)QQ
z>wiVAl{p(XpiC66zh2jrzp}&-=w1$_3YEi}WxOczF@_)y{*&M35AAL_08Y~^*{Ex%
zH4M<{IxVBmf(c`(D>ev+el`6;B6_u&PU5O38nif%H<$%AYgM5z_L)3CWx*|b{Lgmm
z-@P@3oF%*m-`UeGs5g5Dk2apl$PM#0?H)^>1}k&XDvwUYx<HnQaT{A><ojS3&zVKq
zjY%e#?>1N_m)#l?gNu4@#O)gl#`5mDN*vqj2yFwkdQHC|xqO5HHV#M`b?|U%cFbR=
zCcq2=6x`SrE|hS~@FOV&Ge}EzA<%qfJuLsT7bzBBS%#0wmh)g6f`SMP{aCN)!M4lV
z{R&>2tnib7gQ(qMKa2@;IAU1pbeIbr(t@Ep`0qm;p5R4DC}Ww%Yw%~!_)>DjtQaON
z&bk&B5g%upD61C(9#6|n8kAz=rO%W25OKW87{tfP<M&XauUOJE%ADmJc)g5FlrLZ{
z1%K;j4vxRN%Q5WrPS4?aM!&$d{><`x1(VPJZO9v_lqulmGtw`drzA87qhysq7*v$k
zCm<ZWvSIIV5vD4Z902k{ZN!nqiATbOyeZBU;#1HeLa>?eap@gDqgn7<pq)Xdk;+|y
z2YLd}&%7b_e-6*)-|PUM=sa6c>SGURGDh#~<bP}%5Mml$67$mSS`+7XkuOzxT-$-L
zjyV=gBVX;-*uwm%C78T>N4xejTAO*rIZ1}KM40{;TACX0hHwyj<Rc@DVHZ89S%Y|!
z=DkSVcC9O6O0oj}J$kw4UjQ*GmIa@g>R8s7v274}Ey{b{_9X<qJ*s6U2s#z+i0iPB
z_?F`Kqtw%u=#ny~i)}CRD8dW_zmkl6P5<f!jQv*Iip&C)|5D#@4vj7%s$eb)&R>&p
zBeoAzXIpy~6gJ5h#+LfDM))iVDwg)bL;788bmg7wPA`zPKH@G&t7Egm0U(dxqVp=u
zXTNcpWS~_t(5m`pIS)%yIZ25KSY1Xsy=dwc#E<y3eOXd$VS|5a2JYq$^qOR7Pe)VB
z^g6y86|Sh!QS}|0TiRb`Ehx-zzbRJzu};<tGtPV*D}LNU7+Hkx;wyRTn-o&el35jY
z^u#}*$K@(eVTqA4iR?x`5=#vjB4mIX_MrsdwT*;ko61UsGr+Qs)Zm8t!|3{ObCM5;
zfV8cURuLY}A!oNAbDyRxj2jQ$t=ZB|l^wc8F)grbSOxnhb)T&QxM|i54%)<7#e+te
zuxWt8w8W^!gmS#R+3NF%GJi5QZxPU>H3#!4DA73X<&iI?qVw;eg>jRv9RK-f*Uf4y
zReC}#Vntc4GP<}f_h|_8*MCbEu#-_T<BA{p%@yt6<dY_SQcxQDtA~f)N$Gu6TJ3Q(
zVk&a0m0p`yHz5QneZ}u6-2+#NS6#E|wcOgrJ+`#j+%tdN<m*S=aq*YOJ@#>Iar+6h
zUzP)Mv{ONwR;2xYT081k!M3*jH`yxhD{-wIa38H*rs`Fp^|@!wxC?%i-q0SCe#xmd
z4_M8Q0d~Q!`CLK&<HmmB`Hj)8812%a;cxWXw#U=Q>VYuX^Y`G*58sos>2-Jcp1Z8S
z10h=Gro4IbGqaxY1J;`gV<J2J6WMP#jY40D>E)DR0XfH_fQ==!-?tzqm5$3pdMTCn
z{3;aBg7Kh=`uS`sI*a;CaQh6HB!3U1fyNK<TnW{bEenoPHIEdGC((IhrB?Ive`0ZU
z2s3h`qTBG@#hTa@)-22B)EG)vV;k*7j{Uv3UT|w_&CUdyV^?r>2@#OG;PA6Q1`1!J
zz|wj40t+icsd|&c`hO9CQ>E8^_P`>Nizj2vv_<e7!3rtWNLxrH(G7m~&_Wy%3R>1h
zYQ)3u%i<x?=+j?yy4pkpgl2q&AeqnI5Zr9|1@My|%>}$v&4B(Ey{=GS<ngn<)aXZW
z!IY1;dnPFTlF*wP_WEZIEV6w$!3(!R``hW1r%*oqFU+?ev@VDO#r#=d!+*??KC;hI
z2O1{nnAz;!dBMn&0gGSL1R%=CY)_acSSv8Wr8gT+6DYGGdxlx~kq1w7-j({Kz^2jK
z6~-NS(yXoLc$>AIqjp;Tfpa08cW2?$ERPa~(*ihWc{oF=3)BPiK()GqQN&&LEDnCm
z7VGqvLa?*&raCKUiHB|f{J|06p0lw;?8+3uEWeb$!d}ih8>>**U4@kik4P#LFfrlW
zkUI<FRlnx8oCixg#Wk~eLlvU6j=4#erpE~b(XL-=?8A~5JDAV)I)9ks<nrXO<rIpg
z&MkvcyUw<P*AXDBf|Ehabq=D$<cj35AG?xODp}@BIv6KcX<7k8m?b~C7W?0otx?&>
zY_?<3z>{lKWtpn?hhU5QM~;)t!feHuhHjPzH-9#hc6y;JpE|8du}LmLE9WC)kkOzH
zO4b;Yio7sZl}JE3eMe0<h4@gV4Wk^IDmn)yBae**IZNHKK&{3eo(gl8i#Rr?Zw<bz
zD9nFIc&7zF-uNzu++N3bvE<-Nz9n~Ervom5m53!W)l`*c9!z*X&8K03o|gd?Ekp;N
zGX@G_47X8*V0PNxSW^*xe>daPJ5ml(t^NoK&{PuKH6>qD_~LBPa?{SpjK51c@R|Hu
zoYn)C!!n_&qn}RI=|?b#(7ad@CKr=c<q!%@cDgiK8>c>!7Mm2q@1!p>8V=jDL26{g
zE&HQJzG{!MJ=0L0Wk?sz=6kk*SJ5GU=WnXMBqZXW-gaFL9zUzFclt!z&umhbillr=
zA;lUpr2NQ#h9FD-P<)ep<~QZ0B46E@gOp)<2U1+sAyVL0hZOw?-utqUV)y_vmNy}r
zt#?*%3<fRfJJJVg3YAUd+iAiZl)JYqKBS-5oF=z`WGwjLQTtp47FhvI3Wvbp1$(tB
zl-u-4_TEBHWedUeb&{7Bb#jqF#$1zm<}tijk5WgUw@C;+3f}Q)hmq5gU|Mq_cC9!y
z-J#Fm0d%ND$?HYr%SCXi+3doFI7<qkDEQu4j&*>>D@#7D%UF=9$ct}<Je*agB|$Jb
z9}b!{GOq1!bKZu<DAapd=+!uo)u(pe$nIjcc<=oR26j#x!l$!h1vxhkSEvKsxEUI~
z2tN8!KJ(ks+!Q!}I-JjbTU);cxH?%67sry97|+K1U=F%$+%bHCZ8xmjQkwWsW`*#S
zMcDCP*3cB#5=|cKhOx!|CMNVbdQ64Paof4@M9+d)a>NZMO6rcT{xni|J~}5j;1)3T
zTz2p-#MjKD!4>i#E6Ukdh5$6ulWnZQ**2EY!ZL_%<^;o@o?zw8sJ}l7{W<uD7c}K^
z<5~9}bZgGW%_2wQuF6fiGM?F$A*aZ6|7mqBpw`Bc7vbH!q(;%vo#*mhBVL!r<em-M
z$G`AU9uT@Tq`qV8;nA)U?v7wMyB)x-73=&Zp8ESFnMw*Xe=N_*;@nWZloURhaNVU}
zOby^H30nCrYmemnsVu4Q`0#L!kK~qL<48%%FValM5`eXx4B@BMB}Y7P44OTYIlPQ*
z#8lDMtdfb-YLxEbK9L3yAmcexSGNkPeU6R9Wv41AIKgdN8>eaGl;Vc!=gF|-6PPrP
ze4ag`?u=;7@SuDf<2jttVz!|UtUlQWwA8q=V>FhHg^y6(Dh%mxaRm$ZbMjK5MSV0h
z5i2C07s?U0Cj1KnqFuHz6NLrqvig(UZ_u1=t>2nDt)04YG>IJIxEIak6FDFTBPC1A
zxUA@`ED>I%Ps*%VXJxsrNl(o=%SB{d0xW{=u4GajTUy&}>5i@}^kzq=*$!R@)fqEH
zUg^oozB5kfRj~04*B9i_t7<C_&&RAoSzsC5XN>&}fbp3msO&QW6E1Wgh?7G_q#v?!
zih{pd46}C=*6ecUGKfnL)mRQRraa6G)KtMp*Z!VJBU?pt2iTx2*o%=^1~CL_lv+8n
zvO<>1KQWO+r<0Xu=K`~rCdz<gs;(!UhGRXUrj|??y8;c87g5#O<-Q4{{!#t}EW?((
zQPIwC3r(T&SFM`!uN7*zp;mWzs&1f9n9I_;23Aol^k=!PAf9B4s8j><Vt>6yjigEs
zcta#)#+33+sP{qj>4hZJ=R(>I_E{uIXDPo_kcouBJEs+Xrq)c`=?a_PV`aJed#AIp
zApCvE#&E`0j>_eXk@^tMaBzg20q#xpR_RCZ2fz2GR^<9OIKwk!65~7tD=-X@x3I3l
zv1KZ9&Jkh^MzExx;4s?QI0_WO69=iwY|5AAdHNA%d45hkbwkrY&!5Gf3MPMra_372
z%N{`|KQ5ALa0mvxBCGV{QRuFuS*1g=f*z|#pJgVgPyd2d+Qrvlf%I5=Y4Cb0$bsBx
zR+a~5li@V7Uy!Bc20b!b9@JDwODhfwY*v{Zl>@ErADBxka*G<R+y^18ps=Hregp&k
z{wy;|YqL_^=~dLizEu=+3^(vhfymR@x-)@cn=LutmkpKNvoZO_5>x(DYDt%mluxOf
zn2bDF0}6f0=J=~D91Ph1L^JXe69}kYMXadpvP_S+O59)&9McUkUX~tUvKac`>JeS0
zZEK|zEXmk=C?nn2QH*yO6Kn1(?tuqe%;@n_D;F<I4;?}SY9{B*Ya;AW8*OH2dTR{X
z=3_ro<i@04`Y$8(W&Wl~#mc#n)Hjq!Z`?x@p2SOeA*o;MuN(ALDpLJ=Nb+zpDycv6
zi-jcD=Mvvl?z4AZ3qONQ_DWL!;iSUP)S5n9uWOFfTkG5}HXOi<{(X+rSJvlpQl$!}
zm`YiNAt&Wa{eQhD(*OJ8K}e@m>Bt*2bztgcW03jW!qqV}V=qFj(Eub>DBz%tDd8gP
zidVuV-1JF~X}l0QI#inZ-#@bWv<gh}?rJQ=r#@4QvvkeDr&YtfGj`EA{(TNUZ;a&P
zGn7nMVTe!0D<_%y5q#%={u6vQCY~b=r1DjyH|vb-1W7a225%EPNiM|njXctE+f4x2
z2){OS^&HwFm{XA-y_!XZN;xI;vo92)!is~6R+XXaIbGf3DUmTWB|ha@$9)iXm9KJ?
z(A;<bldcw8m**TN_2M?i#9xtm*_#!@gJX&M%owy2?H~MA@sdy9C&<#p@N%dNck<0H
z6bW8`-Q2)0UBmogI3zVwzrfzN`PQ34Nxl!*hR^zP9DrJrPMn6WH5G&{J?y)O(pzkO
z`G2m}rzU#zRav97Qi#X|zXGwQBlW0UUzd?9^d(J7n)Cr$znNgm=i5FPi*GCDScmww
ze(g*3`gBD%D}Qf;)=-QgU#R)e1iYr_W*JT>JhOpA_p{+i<1uc=3Uf#sNI`oh+A=ZJ
z&puCo&v3HlYH;#?W=@qi|D1UdxTw{9iW!amNk+yxQ+k|Th8?d9i)Yj8nXZjKh8x+8
znrUR#bi@S3YrXkUj{umVN2<tRj%HWD>7zF$yk_u>5j-;)u^o-_;i&^25ONq68viH9
ztvLF)B5aM)*Q?D5%IPDK&u)~Av+72HxPn$vkun|yGai7m(!mRhxZJq|`p+DhU;nV%
zt{x3dZQkgs3x1*sR%a^6gD*O7jpLsR;mpUFr6RGX4*(>lBip~{B)G&ghql@u3g~_}
zKM6rJ-?6Rs!V-5NKNiC>{nj8YHNi{|WvXEPr38*sMu2}-W$Lhu0A;QY7W8ZZSD?g+
zU(?PM_>J|+`=yDLjVd_Der_RB(Y>q+PO&Ge(sJeozqtx(lxL`sJ3lsgdBgP=t3XQx
z@W?cHq~<6X!B!#av<eaJypvL%Gh0|f*sOVda>N#0uvg~U3K)FREO_B)w_I_}i^Cn(
zesz+=njxfI4Ai26t?CP<oh{0@Qg-Y<&s*jA#KnTK6F%M^On%*QVz|f=*&n_F>vs>r
z^KgRjaP%w2oHt(yI<{nl1un?aKQ*!P2Inj|FallXYz%~(#9fsebj4X<R}*MPTd&YM
z^p5dW)?ug7i#`nd(cjhep_RdJPt5On=<)HJTvL&&7D>&60%n9IG)qHa8F3I#%R?<+
zp&!BE6G8_N_-gVDXDbR}yavtQ{<0eij88#3lX6i7jFVJVb9vO&>gZMf!1i!NfK$O8
z^YW{HsAriZTrwkQhhZS{{iGX^va{Hr;s-9!rN)C{<TO~+mJ}5&$2>m_JJu?Y;h5=F
zYS`*)RV!0bJ*=|jOn%frvhBg|9?lui>M}r4=QLL*zl__;1S36c#6h+&krR9~O@P%n
zuEf|j6FxZwaHrQg-xt0OJ_chye9`H6)Vm`l8^>yx9(O7~Zw`)V5`%b36Ru`N1J})J
zy{7{$st_jb)62P(LT0$Ca4ItEc_$gMR9G532Xjv-<Q09U8dtf`>g}_Pzx|qbDtYU3
zk0MGm?nDVtOq9IS-smTkhn7)=4Mf)>IC7e7P~~%$i`lh2_>WPNoDuB<k(^4XfUBnh
zNjh-&fh-4eZq37#^Sm$1+!HtQ%jaB|f`=v)_QDnO3ENT;E&m#%fK=kdJDf@P&GEzQ
z9LHBVVurlAb2jLjAF_et01n<-MQBxe46^URUz`K}>(6@dKdLVT-xc#N=Tzir7Up|_
z@5=NI{@LUI1MpYO%LU&}fWwZ%<{6><fvJzs9+db5N&7Uj5^$cTf#Iip;Vd=mlKD;s
zvyv?as*>2$1b2Bz>V$nWolJ|w((+sdzg>Vnz2CdOZA{JTQyX9QMQP>RW9*_jet+9V
zH7IN3v=0o9d`TL5MWlk4#lbIkr}nx}vzO`%$FY~{^_3rO4~8`J?8B$oRW<ohetqUP
z;vrL!;E5c93>5}$9F`wnTe|+p<BF1{b4QwuK{#FH2_9&i8?Q_0C|$Z%&%8jfjuxdh
z*ts;Nlgdo%KK%h31|oITAT*RS-yRW5l$IQRTv708Uag3HdxY)q${1~_aXp7oD+Ba{
ziphL7mKryOMuXqzt~0ppc^i(RLf@mg!%@z71pa0o2<}i&Q#CT`9~*rzL~eUYlBp+g
z1sfbpf|#Da^o4)F{#=n`&!8%xtyG2AjU~aw)5GmgJgY+WnNl=05}aN5j=E%mBE7-G
z?RnqDyV12Ccfn^f-%%9C35}RwIKcL`{%rhmY%hL^0WY5`K)Fog7utIUzsG1pa_7s?
zTYJ!=ooo3;sq$Fz4E~=%(OK+ATNmwIlqoXTihQApA{Fdn<A1X4j((@D!FI8Y=WE)j
zqy96vo=ueCqkZkul229Y6`fxe9M4+1rUvD1pO(Xn$*00s*Ivp_sc>H#bpm|P56O&m
zwJmjNiObcp`4>6+-(0!$7tp=LR!)=(HW$13aT%_HNBbzf6&?z@yFlz+dEAt1--w@@
z^JS61GzebXLrMne5X&7e3>U9A29c%-&Ndp$_YEP+6(Pnt2;q~wtjh{;Fp<W4t|@3Q
zI&Xn+o)<$+JTK9?4An7m&#JD=7`VD!+qT2-oHEFJ6wML;O1y3@cLPY{vZ8&Yjqnb4
z#G}}PLvYw7!ZDCBCA)(dy;zZeB2H&{jdF;QTr6`NEbatBXM@p<_1_ELTOGW$l9zDK
zq$NU@@zHGB=E#2p#AuVF9n2o8*6MC;mH*(`7#R<Aio0_Ai4jONgJFO?waLFa*Qs?_
z&n61Mr&3LV(aoYzXf>ve^$PXVWHw>ub@2CROmRFNrziF5iKqfNh{vHYKb4i`Y~IPU
zZ%w{_==w*=sQ`sep*zwC^zUe+%8L4yqS<G<DC)C#c@c**ze6C{6?L)VP3rO}Tmdww
zFXPMEOvL9HZ*?V9jNw>UuIq}r79)cz5>y$`bnS{Khr7Wu6}k5{Suau|KX7yV{_4^f
z^N9oeu77>h@4Hzr-dH;Mf_xfU@=Trz%#-QMIy607B$%8JjjcS{Lw&M?`eZ>pnS$p+
zuNO&Pq;T<OPS=QDCC^MlYClv8nRBbSi6zc0F*k?SP@a<3N-7ZLT)sZmR$^!B8T6>Y
zbrf6ohK?Bpi}>P!Liv&YoA)}ZgA_^R90(H}D1dTr&KtOVlH+sJGzv`o8+#*!i>46A
zjvHk;qgP0G^i+&PQ|EupT2;iBt=3G1b>n1sX-upk72yM5SASO!wb@wB!B(Vw(4ip>
zsR4Dd1jEWpaGM&TBjR1mg>uyn`lL`VWfio4WAY2-I$v=9$D%g`tWr}ojnz*yR>S`<
z#=1Wy<Hy@yNO5xM=*^dZNhm;?G%B=7-$^f)_`Xz0#+wubq(&J#PA*GEp5ND&9ZL0x
z4+o}q17f=grrimPe1L*u?%Q)41Ngz!Hh`Dw!a_&8e8xTBYlv^Ii(b{Ca;cLmI<+EO
zck#4FHM8>MvO3^SmbR;v)$N?^F;HUG!b5r<qAS>qmU=j_IuD6>1ee-zUBTqPnG`nJ
z#dS`cy!2IjJlefI!d(t^m&y)cKNYWdj_%RVJpMI*4Gg2P64?a#LJMgf#)u$bIviYg
zvvpBVDA34&J$miM#JxDtbnb%So~Hy4ayRgajNCQ863X3P4%*}u0JZ~vO?2Md!b^ca
z4VavOOC6HDKCwn(#eM>|D?A>(>UMpS8hnH@n9rBzK+X(XlVGp-g{G<q%}>?=GN)0_
zRRKOPkbzGzyk9=rv}P<Z09(bF!K6WB;0lhj(=+rKBH>*V%_3k0{9c95eY^*gpAW@#
zfy-XZfUR$83{;EvhoY-(w?okNq>=7&ce(g-aPp3gq<QrDe-<B0*l&@+M>g7HNBCHY
z#V+aIF+SSY89u)2F6UpiBYao}_V~tD@obBDwnbn}6Mtan^v7K;1rRe*Xu>Bw8pN!5
z&%M)(dz1T08_ic@ERnQU{65Q#KF~3nuIZ5&hhHF;a2=XN|G-LqK?}2V`_pP3fso#%
zg9y*+=)#raG4vQsNslR~jMC2$3cteG^HTIr8$goIFM0IyRVb6uo7xVw)$1`*K1{*Q
zj$yJbYf@`eZn-2I@Zwz`b%L$gdTT%?ORrOP8kU1cF3MUedkf4afmtUo;as5WN$Dw7
zxb;>)O|=#wWDAT<QqW{%LM1gOOOMnArH7(K=?x5)Jz>J0Q4wxF72IWygI`_>1(`^1
zFW_hEN1l(^3zJzN&Gfb?v~W_9d!F*kFTo1<f=SRMbjz<F8%_tEhyuHbD5MRp9q()%
z=;Mh|rMIwx_YpQP3eJ7*J@_!ReHI0$=G_OIz7NncgmZLe0sJS4VG723Fq@~Jq;005
zDV~uf)Ai&PhjSoH9|na0YxTW{Q^K);JQvaV>y7MYp32c8>yPw&B-jcKzQ@scN2&%G
zQ*z}Pvr%rLyhXPfksJQh2EozmulSZ24?eiOJXVZ5mkY@+kL67}TcfckH>H)X4Qh8C
zB%%+SrwdqYRa4W{)T|sx-3xP%ne=43kcvcBdn%<OQ(g#1fU>`vkSG3Xm${dK?Vp;`
z+cCa<e&UM!F{&yL-)=l$Rbe){a8Dt-@3R+wHFpd+$c+I=*`qU#*Zinv!Qe8F_*!)*
z^mfBk(ixDrC?Ls7R%KQ7JS5fK^ZVc{j~VPM+~wg}bRj=KaRI-a?)arv@H_h+k&C%w
zA{M?YDoZA11Ut2K7WA~^p5t2wL>HQ~FLegzK9HcQ$aK|dB^F=RN&LLU-f1XKj*6u&
zrO>wM{J*J6%WGvEq+?V#J36s0Tw)vfTzCwGdTOh+P}Zg7@AhZWR(L(3npFWQ{6{}^
z@l1lk0Ip#8^RozPfw02hSz80eh*VdtE}MQU8NZufs>|Y2lC_isd&q9$TdiA$PJcK)
z6w=`AHHPss-DQ%yoOCgWzgoOgfN!}^KFNOY@;UmQE56yMT$)lu+kD!<0;)W){D7Z~
z9P(L-Na?3_5&SABF+m+`#ep99qNAU_xLv9M3C<T^u!{-v)a9p3u*#*3;S-oJBi6we
z+0~)vh_PG^Dy4}Yzq_8id;n6wV1ZNGGqa)1H=1~^=U2f2j~edEXM(M#oTPyqsCbxP
z5VJASyE-@$h<U&vnDsNxC5~-)EOiD83{B-~WkDk;l_oD$(rvhduj6*AYhSal$e_;{
zUiRR^gt*-F2l6X>GW;^wd$j=TWsgSZxjY_)d!TFG<U<D+fdzCc@^Iy?!Z$n5;v4u8
zT{8B_x{mD~Gd>^VNIYQ(u#4-WOIAV*eED!<4u7Em!#TU@RSwef6X~~O#m|a0MK3UG
z3||)fXprTNq-{U60MHajL7?Q6@&%`~SR3>(&k}MzfxbB`@@9o0=|wKUR!0wviDLGH
znwrE!%~>#mf2=f8PHKact8$cP0sr5kisBm?eKcVX=i3BE#)z(ixXGsSSoF`UQH8Sy
zT4qY4Z^+<KC^OGaMMnO0KZwUPZI;C(%6-HP_7qx3Mt(WiW=#h&Apfq*Euf|%Wj#*Q
zS7|tcWpnCUNTHzOr_6Gm2@*5tgB(qL(ElepgTL({ulHg9)t3*nY^Jf0FY{sl)?*&_
zhb$P+!+w&%p57w^`%mYDu%G$H4q=}~q2QZ08SH<Z4(!@N77kf?_{XJNu=hq9P$G>C
z8%g0{TRAbo^P7KQD;r@=wtSRaRq$#Vl;i~(79GH1;jHKnc`y|n5$F8#-~=G)nNz6$
z{^;}{ZB3<R=&vfKx$$PMRIERLeIb}|o-x}vKLFpjj0a9D_<D5y1**h&8jaIxTP~l@
z3?QT^BpGU~cxx<yTUKr;GeR^=nl>;;Ost{yThxA?Dw`$PW5CY#Sy*1H#i+LM(KwyN
z9*rjei<e`$FsEzO0pEkOBa6N()0jnd<OkLfq12ATV<B<=Z}bVBK>hNG^~NCMSF2z|
z8mvAvnZT(~WmT#yxFi~4Iv>p3L*1kEz9o2j1HRKH8Q{u;=dO1;937a4g<#Hd6Y1}}
z%ZzDo*5`60+i_Sve|@_*f1%6NLn!Am#~Pj;j|e-C{TwFx;5=TS&@)VT<&T_yxu)lj
z!7JZ`!8-EVkIvJvt~-HY_P2>X(SbvF2fiWeq1hagFNOhxBbiXl2BzX|u>_87d_qpi
z!aahbMJR$i`9N&}fpWRlfX<xW!M^_r#w{}(9s{iD(<GJ!@ZRm<t(81D`%CS>kdnzp
zVaGe3kQkev3S=Cp<qTaFMZxh*AN2vceDn6U6Wk{px`M+}Yr%p)6S%@=Wb;Yrm@WBn
zoM^y%HW3W%8L?0cK!qx|RWjhLs9@S7)|m^wOJ|N!XZS1VPmk*l9greGzH0@ZBQpJ=
z7rsCA!uJQHX8QBpOn(TKUMOi(mzv-nCwuA^xf<OGGY9#c7tOrB_<YqzXN*<6wePu%
zXDIuS*4aa#mdQzIWDb>toN-_1ABrt4<N9A^ZT4L6E(?PTyA28dv(zqM`3|^HqUS#K
zZQuJHGx*q<&JCXOE-l#KOcTpN2Ui#Z9qvMg3@!!$;W@8tuUU~-%y&)&<UaO0nm_#6
zUi5>F$!#V(8}5Nc2XGFYCrRpR@ku-kcQGVGo$%<u%f{MNK!mAE90flMUX~QeLb1-`
z$28Yz<rta8dR60Sml;5WZ=|yiZ%3|L7sYNYMy<1)pf4(V7Kwv1DUN-gPkPv>b@zpI
zeURteKJ-^~-hcP%zhG;U@8e4I4cO7FaslJbi!WAb$6m;4bV*yuc9&;-_IVC`)Xc0{
z0)0;*Iu6GNhemP+AyKm`Az3%isy~+oM2h5@b7?rgtoGSxmo}sqAj#Z_97Fx5zB=9g
zXY2GS?(&Ck)Av2|`YsH3tNH)g^J>O!beVR7Ya3i70%$bL)8_jcNo|KJrtpr>tJ!#i
zM!4@_gqtRq4PO<USM#VZ;m@l%d84<^_Rln$D!qoF)0m>u8v3#9{coICvzjPPR=(}L
zn(u@)FOP-YNtL#`nniWEML~407w0!IjmLD{he9DEEzbLePXzXy7Mz#U#GtT=ujMrH
zLw1q^d`=Vbf3u1HVH3dxt#DGG=he)-toPW9dKZ6t3$i5W$#vDoOgK!RxPig!BN;;w
zxjeYV@A)XuYhc4L6$b8SY|ban2eNPH@%T4mIr&^?ezP}xfZ*V3azYBEj7_qCQ;`E6
za}K`p;6U%9Er5j1nfWFkQ$}+IF~I1V*Qb8@r3ScO`N<h%W!=KcRO5FMpwTcUIE5P>
z)3aM+f@7YaF&FGuRiRL;BlRPb^+Uzk>!#u)IAH_c=8kCm1}tTE=Pk9f5;9H}J1b$G
z&SwVt7Hx_HqYx;%WN#f671tmhUGijXI|rI>4G$`b|Fbw&{4wFt^*E+GwPkuDNy1aV
zS9^SXn9|tSX(+GN8bhpp&gKqYT~-y}T0i@<@vT#?*gyVAg+A$2G#f$Aa^w~XYfbQS
z^D;iKNf3Fq?eN?~7vA)D;HQRcH}#<CFn{R6XB|^H%&A#0#+fd3MmfLh(yJL1dpDyB
zdb%ejR@NuhCbrs|vB2kK+oRCZETd~~SQebPjZ@2H>ro#x_nfA~7;J>7epF|k2-gk#
zB*ps&&oy*!<;W3^PdKM?RzvEjJ&dHvjDM8DBuplr!uaG#Yx+J7*h0BcKm!95$Qve>
zZ_NWhwv9in!BtniTIUM569pPau2!=xjra!oVxLKgb@k++PpnOwGi&tvSjwT_vQUQv
z2(G@*#)}`gOZ=P2((%0(=<?(#I&X~QXXIe2w5t9gZofm6O-QW5l>)Q+{GmZM3=ZW(
zP*DzkNs+AX(F3^Oo#om0DGtY-=udI@K&LpoG<`!_(@D@c78b76`3s!`ZEE;IZ1juK
z)N4SIbAZDUC+YwP4w3m-Z{s=x7hC0s=-qGES8r-aU8DmX+E=&|jXHJa1WJfE>Lej(
z2iQy0o26rD*Z~nPQE&3;@EfY%RzVmD*J6eavTemu6*{a&EUz$)s^Bj_@N)*jG^(j|
zEO>x}vv@E!xEE*M*QKkG8Z{r&Fkq$#qSK7%v{({-J)s0eGEbSw%rbAi=>(dc7)uO=
z$yot3CeKpJCN*th^lSiTRWLFK#>&26bhHwWPfX7jN0XdhaOf`!M=*Mc@zo=Lw9BFH
z?p}8{;_GnP9XVX4E`mMqh)4VR9wOkU7hmwa&hfy7HbnC>qAwnq9hl|wfS&j47F)MD
zdiRqk$IJJKKCq!^##_<5AMJSq%vV5<%KZ2b!tD<GXiSkmUt;bDV>0JU%;fhco-c6~
zGjjAda;q^Ies2*LMOV|!$J=WiF_Bi>Fx`LxtD>Ffa~Hkp3-)Z-5E`;rgV#)Wbi_oL
zetC_Ocgh3<K!++<gu!4cUvN(4c<GEfPB}RdkN@FnqfUnzjF<kKr4d6Pa57GVi~|o_
zsH}h`)t|Pa@%w<q_*%+x+R2(z)z`9b`V5%<i>duM-hMr2R#Aw9N}}`QRvPAOtY%qe
zn;#Q6VF^uloKu}<;EMARZ#dp2BR4rlg%VZ4Q-ryh0j2<vr`0DY-Q=fmxPo?eF2z2c
z_dzD-QoLozT4?>$QaS4@p?lPp-KW_(WN1^?(19ZqNVkfpCunt#7YC-7CvK{OyXHD?
zh=m!TnHmwe@aT%g2DNA&*U}^0t|y_?`KR>CL^Qv!q`ujZ7Y?X7$ZO1ashA)@;qu@l
zqQ``v3b<<acq#YhFQx`$;TF-e{8C7KjSx*n*YqeamVE%a1MqDqlA17;?Xk=aLYY<O
zA%Sx-H+@csITTcW@1131%IDv$b)h!_YozuHYTZE(+`#N~oyZTdO<zI+I$;h1Q+PJA
zhl7=9Ujx=Xi@MV?)SmvN%yv$6zeH`PNI)iQMB|@^3)(dxI#iQ@2+o(w)X2NTPUSZn
zymyZ&&wshg#qP4fU7kG$9eO6=$Few8Ev;!ahWwJFyJrv5)DT~-!r5_rsr_7y=*#<D
zl*<bJIj;!j-tjK30oFUPh*I*^vW!sS1VO7cP2d>-v=G8LYG-(`xWtl0c*@k%vDDBb
zHR9K?oO5}Dn9Z<O8%uySGzdZq%LV^Rg*;WbzC@WmmzAFF`8_cK2bI|J#lgDJ{U&u^
zU2j&kEh1+HGOY6-?l!z$e>NyArUN9$FI<1h_6!i+63^&$mwjdi2`Yx}p_71E%vpfW
z>%IPzjNClX;JAg$4%eFQ{H;K6vxQ#%G=KgH@-`LbWxO#C#yOlpx7Hf2&>^dP-Rmc<
z7aXUlrC(C`96e7)u77t-5i5pT4*C12a7m%~$sH~!+()5c2;rd|^Szz(b^2Px2);H2
zq!pfjQeYnrWjFz)NUs*OfWJx%SDVK_zcu2pKR*m=*0~UlcjABL9RvRnwsv-CxOT>X
z_sQ#K?<&~FZww##uEoiq))b~-Mw;aC+_wshYyiuwo53!1D%<y>ndkP%@`zFRk6d81
zI>0rKi`fspZgOk~$GP>k;K93$<0{Vrc~797L&E!O0seHJ82IZ&f2A|%T78-5KK%Ed
z?ibbO&|OOu@ZZ}Rx{o<4r2Fn`cS!fWDHQC>5D4A1itE|Tvo^F71I7t+4Zhh7{HID{
z^8X6pk2?A@B2ERH(4S#T!+tLRS_rX7jyidJwykQn3VpuSX==5OR%6Se^Y0Trs#({}
zl6H+qs}VAre1phKtXz~y8{k4m1lN3}<aFf#PICgu!G`4n(^=@rb64OzH=A3bCv=|6
z=;zuZiYVGw3aM4BFin-s%EH6)`iK2R|HwyNz*#DC*KNby)F%}g@_@s0N${r!jOI1J
zwoCP7Q1>@a`aFEioL)d{@}s@#k50b!n2@@3psFB9bje#r=Y!R`3X9=%A-pVzI!0v%
z0&j=Zvtq$0LNI&&JNWUJ0jE8rWIjBTfrt90f<b7<Kh`u$uD`_nty)SjP}*(dN;wo_
zOJ*{1>&Mz-T6(Q6U~hm+T;M0S!Cm(o4i2Qzo@-$p8bH?{=GXgo?YyK}zfv8J@BUZk
zB}M0Tik}MBL;(Ua!ycU61kuT-jM;hF7cr5C%-Pn#2bT>ec@W$}@N@e=(Cf;j9QvSQ
z3ExvOO<C~web6wP0y<u^YN@iPTc3fZ@Ux)pOsH^fNQJCS<<TQLZ<B);`fCV-CKXI*
zo=uM_8e2RwfB(?CcM3@>A`kMiIEeg{Z9+x+vvuhCR~b^tV4l0}Y#(Y3rgLzdNQxwC
zG)_d;eK;Bwa`v0XS{JatXB7|l^s^^RlQ2%B@Jf!+r^gn4dYgS(;Xc*Ypr7&}=y*q4
zgAM^84u1-VV0Hp^s9v@PEhenewg#Q+A6%sesbKRN;6{mqK}!KXd^|xuKGH!S_;}Tr
zW<_KTFN=fsUIQOx|J=Mi_{lXSDNaR}?48r8YIW-C8w&98@<+nQ7d9F`Kv3y=9;}Fb
zp9=H)vy|uR&)V65|6(v&;O`)wz~@8DfnOwG)q;@iuE#}eh@p($%2y>eEEgMgY#S8q
z)KX{1w$f;)mdScH(1)@SeqZ+aM}*F0DZiB+b!g#ns!UW<g>DR#VOYoGU_K+g+AU{B
zS+ZhcN!@nYHFLHoq-*wD`U2&Fe~t+`hprtpe8D+2oG3`x)tcFxBrA2f<c$34XBicE
z`F)`Zbn|_HOlIFUW!_%zyaCbE!PHLjp=I`?=Z=S|Ncn!g-`}%Lk!AolN)MLEO)p=+
z;dhhdWmE790p3~-U^=5b6Y(vjZByb~2DN>OV@p8B6_Y}2$G6s9HVAZ=jb76>yywlt
z0-;gUkZHQYz-}m{Pk&mR>G55E3VZy>y%Ip)-k5!RdFJge>}@dOG<ux7A3a|m3h~--
zUacwbeZRib{lz{=$BM~Gu*NpmtlO$UnbcsCD`<@ny@a+ghZE#=UV_q-7M!zZ|5$u!
z|Au%sfp~ZUy2TDU58zO$))A@w8aZIQVf6FS_`W=8=zgV)r|0x5Zs>lsWYX?WHKv;S
zHLy>Ej1DAY>(nP_mi3#o`*V{LPc?MEu~$R<mGO8HhEixtH2wsIPFgT@&q++{Cna8J
z=<XTZ5Pww#_G7oi)@b~83Y@s$oKeM;=r<|xYD4$N-5TQmP>IS4D{;A%_~xj7lmKk^
zaeuv<`#IEP+VZDqzsNFkhTHZFEfd%Bo%KguQ0fVnyVLb<O*B4)_e}Eo6|=>vq;dDP
z^u_jD1$)Kf8^)6fZU8P1x}cfQgarfkY|yqW4xH>x501rO9$!!B8FtF%X#4>R)Gufp
z#ip%o#qDG3lO|?bhd;O>)zD8aoA?|nGjUWuYUy8}bR0B#^Nerl!~U@(<6c~mYRZuD
zHf8$7y5HC>1}fDI8v-`ZXi~|3Ih8+3<^8FA#^>u7OdQp}=YdB2y2pZ%Y;9q+!Kt^}
zU>kFndUrX_U5<2@!`$USciG=v_HmaociG)t`nk)tpJfN%-un2<U>6o{(fAblgIOU-
zUM<;)Z`~g4avR9c)V%nqSobUaW2p%d>5y3Lfh>QMhwseiNIAk7s|_@<?ydbaeN06r
z-Qp$9%@H-k9=BJxH`r++lYFnS&=ZP-U<7WBCA3p9oLQ<x#6&J<`3dz4fNYifrpgYe
zrW^9L=j|4j;mUU<PDS&Jq0%M^)D`q^%-_ovx|_U56?NgAwboSXgnq8mf6jLLUv&CY
z{bI;-rr-3r`;~s_{*X6#rx8_=Dx5JCjE9#y|0I2xO4rbL)8w|X4%tB<`^HiiVYA`r
z8=#UH$gKqS;_P}ddgWSkPv(0J(fETWE|@sFDz?48##H{Y%SMn!vnCeb-v2VGhyla(
zbNX}X5B2$IZ1j!#QN3QSNb|c?ztq4<ZsB?NFDW$3R}ft|US&abo%E{QsOBisjsiKY
z*%DbRG_@e3N+irM%N{%<q{yK0t4Q78N4fogzRZoWvZ&S`*XT!ZyRF`ZtEcjfkO?l?
zU<}Zr=3QM>m0MSs!Wo@vvjx8hlo*sOJ?S490VHv}NP0OzPMhQ)>FKWHbiZ;!4HYp$
z$lnlp)LECY9zoi=p3ldsUv#fQ6M0L*rG#Z#Bv3I@PICHPLt<4d!J@(nQquH~F4SV4
z24%VwO<k%RKFtgYb{4wE1<sq#9~W3VY^Y`uzpjxzcd5Eskck$ZZ?Qwn3z}sNz}Ox@
zp<8?rld#k_Xpd(iG->-lxP*s-Ra#M~369Ss>AOG6*J&p&#gD|gH;)&46Vw4$$L4Gm
z%{YHSU7_P0hBQ&9*;A*@fl{ItT$&6=WfH96>CMjLawv1xE22#M8Cj~dQ&}V3LGEf5
zJqrbh-gq}UPf;`JL#**L)!pkV7YhP*x7=Y@pN0X+oracHvUrkZ2ivA&)cq3FgYXAL
zi}W4TLzGNO-GbTukdvj1ua`w}S}-Hp+<$sHz0_(ur6!gdz>c&|YsKca**vjf1Ga>^
zYjDf}j&!FM)1lmAn&`VqMy}BRS-^^;-cSERpL;JVHPH8)eBZBg$s99%4+h+1L&<mC
z<ve#e*Ik<3<>jAPkyBy-_AT#@EVS2e6uNuwPl*v0#9WbNKXM-eN3N^R&HZ_$-Ak9h
z5KA@Hq6t#XRh^hL2*&(zs#M&H4*_mH%Io<ZajS%xcTP1dw0#uP?6#Y^sV14Qp=t|5
z)oq57bv8=HA7PY2DA&fa8e99YP}+@;Mq=ID8Kkx_NNtgX8e1>c*U1xLXKk-%hYXB|
zHnY{Y#yoab(m}Cvl^7LmqaiENFB#eJ5(`DC@0T#e9vVw98x1uJBmR>xo#q%*3Cm<>
zW@<X)39iUZv4=B)r_jH*7*mF0RWOE1@N77d;YjL_Gc>6D^v6cC>)qw5lOUarm)ybp
zb7rseRW)uW{8Vrd9S#mV*M-lOsV_K?22}EtUJSeOpDwG0Q?;MbL#SLX<x>&7J|P^#
z4FkLY1C3IjQ^8qW@x<?*2yEX4<}7Ubl^y@^O>B1gil*;I<#RTgzD?X!*<k><D|B}N
zAr$xMIYMDRC058Z{Ak^F71vSkv#hv%MI$7Se>@<X`fG%DY$)y=z>jErcUtJ|hm7}c
zOr227DEI{4;Ko69^&MNbw+*pR;xAHi;)2GbDtngTy&TjYiEV$p=hyr!ZF^6nTrFPA
z?Guwf5W7v}RQRrwVH-Xzj?Q}?wZgA{Z6)bd{A}31v;mz`9*xJTQ^|^%_zh|cnEkcA
z%9}=%ihz!G9<8w<{^hXLL?G_Ek1>gSnZ=qyYRY!mzR~#M>IE7~fVBk%(<|!U!g>np
zsMv?8$kc)ArGKEUp?kw#{A#Q`u%Y|q!IO4hWj6<Lv)iQIyRFQ@dP)@RL6Z{Q4c$SB
zep5PK1|BLgbw9=!e=SpCBe-A8-6TfNdGqMJVk%@YoVWngUNaHAbUxX3DHDy#1Nm`5
zEOo-i;+Z<^z}J>*ng!!Q^*TK)2~N*F&lvW*&gBV0t*@m{sk!xB^(Pg-!LFSyFMZN8
z$(-flnPqD6pw1`TuWW=Y^IroMQjAth>dQ!-Ptgn3T`fMleL*dBw|}%t0ltQt1H<k%
zuoEmg@2Aw7?e7Hf&|LNSL{_Hvun!L6XZs-hL}VUXBWX{aK-&_yROIz#+3q8N>i!uY
z<>Veg+3c+Qp9uJX_Rl#Oa)9m^ou`%89H9FF+(AX@5eQ{i&Z2Il<f_bo);~?adrSsi
zGc|C)2S5L?5MC#L%C~{0tV&<P;DotieP${VdFPRApRrlg=W~12A$ApkdXxMU`i!<|
zp^;QhBQ36xt=kF#{ZAV~o1`z*i~_8*(pW`KW38^Sly3|IYK&kgV94mJJ3HrKwSf5_
z`Ez#`XVY8@hZb~ahb?>p!jxTK(jtx3PFTIHt7_I<G?7Y`o@fnYH>NC7PXzz{)_gqv
zhYcs^+W5SAdwVjLx}2OaBq2BhYa=6~IfCv@B9qbr>HIVLrpUCM)i8t_f<@QbV7RZl
z?By<dxXS={`RE!e^1i#g<t~A{oHm{jYAP0R?g*7PK5cU2(=6ni@yYm|@yW25@>g%H
zIafhkR><d68dZ6RkewRJV(C+{b+0fb#^QKm98ae3n`v}p)S_N<<Nf=Gn~qUd9jXAf
zs&EEByoHb|$U0@o?3o@j_$^i;h=>^$+JXdi1YO7H4A2$gOE@$P?{HsQ_3leq*ysTG
zw@uRvd8BB_+NDWMub|6dv6VmzWsm`mf!?f)Dqm6*n5*qxH%J4#4bo`grTP&4ohO6P
z){r=7xp0c1?y=RK#!ejCkbVjE8T|fgBi*mZL8bFDHclRWmOA=e$mj@tTvK<srlF6s
z6a48XO65L~ayo>aoulvfV4<y$slCYnWCe+BtwbxW)S`QQb4hgJV>ZIMQApz>L1*^-
zFVNTG&EE7w;09`FsD5Ws;%`2zuwmpojdW2uZBp?Y77Ns^vY<uXZcO~5vcs<4YDZxh
zv-pXD2rx@DZ^@1dLn{@p>2d}&Ccf#YxtU6AaV@(?VvQ7gpvtwG&?bAbQ*E+$5#5(%
zP|J{ID^IiVFzzM}Yl+3XVIV(|@r;yyUV|7ITBT+*c2o5|_S*-As562SzVSW_Zs0RN
zzH$TSg=rndz0_<l1DFjOE$V7*5cs6gb%F)H5|6`NO=8Dc3JxNJ?><UT<Sb^)cq3N&
zH~|Q66-nYio_1PG``V^m2w)5_XZcdVgvTB-QVT!p4ek}p*kjdC;0<AC^fQc<lM<_l
z31qnEevJ`%MRb0#ANM!#%}$BjO{giA2p{BXaiKRMr3KUtRG@6j4udy2>y_@e=AzgW
z8I*b=U*`~p!<cQ{VKfH8tj-W>WRC6xb+(Aieve=(Fys-rRc>S<mN_fFWauGCM2baR
z)BpJYoyd%1B65G9$r{qirhv$h`y7#5I4FLXxuRxG5Sa)uy0t!*csG5LQTQfL;f0>U
zoqbYRNO6?q@FdNcR81)0q<%~(H*Vu-XnK(GiHnBJ6)_=YgOF4Gt}+{CVi9CQNthe8
z{|Hr!D$s-g8o}-vTJWSo%Cbr<wpqn_T_b*|4R-Unt$TOgLt*`ocGhB=iIW{i@4UaU
z#J#)3`LK2RL+}`KetLlSBB&Al`BB%Tr$B0g!xx$oKFD1TaF_C0RPqdbbPSyN>mMMc
z6W;R6ATIk3l&&F0lEsPsb#u09$%X@C_*Z$Gqw|#8B)Vie(V}g;)sd0eUeDp*?pKF*
zzdm$#9fXP{tGo@-B~zGZWNK+^>V9?4-QSf<Vdl)}l2iJ__QiGMR72artQG9OUVv2C
z`%|N<bW@%v#spSQwZohvUw6R!Z{G#K{DI-+W_S6KyDV~-gk8K*u~YoKFGkG8Pb@^x
z^?G9nk|xR^C>CN!D`BzjSC5NzzkXCKgCr~Jk(8<G^RDRUVh&f)c^A4G!51jc)VLMA
zQCpR(Z9sIMyfmPEfT287+h45MtDkYTMWXW*F#>#%{Mw{jsBJ%2+iuZ$FY|!fcFV1;
z?OeLBx2tJjbl#t=$SDJjjxk5b&$H@N7R!>7Vz$fB(=+yeMbQ745pG&wjPOHuxzb(c
zyGw_=T;eX%-Q_}e`KDcb{9k4%iij`#N@aK+>onM{+h8u(?f|oK04pn-Nl1hbhQUmQ
zC?E%IcW}IRJ$7%#cG71mkhN%Y?4{01EnGU2X)RR4WHL6wq;1hHCX=oNC`?{$3-XNX
z{?(l2D!HtEV9;pHy&`fXMT&#{H(;opwSu+z%DMQFQjsf<%UPDMgP_5K6iG(@@))i$
zB(MxStZTelOO#%)o@Mt`<R`s8Szw=BllzJEDW4p#Pm+<(+odFy7|euaHnuMtX_~DI
z#3ZqjvdOI+-|;oKa?A`P##=hSJvfKd(#gm%R`)_n5+aDYT=grTvFg{`#aB;_m=0EZ
zw&pMPQFA}5`Gqy=XjpUm{s4Um)vbv1TV-Jf`3NPL;%qgBWAF^3LVMQpV1j=zL1ChD
zpz-V^|Lk*mwoQX#YTP0I*>F9(muEr85&Y7Yku3Rh{B6pgc{=K-LKrF+hRRu<AuR3r
z_6cGrOQLv)d2<OEy0?c$jLo1LsIZ~T?0<cy(4k<?g(QU9BN#-hJvWFBRk6`y+V71e
zKHGD527)aAsr?gZze?>_sQn5xzz8YRQdPsc&f9n*)CxW`!_7aLi^yk`RQb4KKyMsH
zgSYz@^6Q__yMAA7rX@UzWmf-$CKo+ij?*i*`r}mn9bpIZ>W|Jd^|zxwXxIZ$CBgXz
z<V>AwV!8QfZ4s<Qf-%7-n1u>LZt65TIuuv993=-8RshocJF5Vrv?wUfuOOb2z1FqD
zoFjOFtX;xxFD#x>1GDT8dxbr9*Mk1qWVVm~n%`d@f#h(qks~6tZ19P8%KmcsY+cSW
zW!Rg-x;VRGZRdRQ6nZ-ax)Uy%oK-=%aoY^bUVB0GPp4Ex|I}P{-sm;$&7>DOgu&vF
z+GnHJb(3}P1Y1l{=JV0d_L0*zz7)K}M5zf}LmrY-KlthwJ&k)FW5s6`;WEGDx-^#1
znu940O_qbooIJNR8jx$#tzd@adS7#wDH6lPSUxggV5%Jap^uMj-FNHfK<pnwDJ;O}
zgVIv@@oT9_>>?izbMBrwaX_#HL8CNi3=%VC2WU;Q_(8ZP-x#B1!JQvbB@_m$S}Bn_
zt5+-BVP><+r*nFBNBL9Pt9sl@w-#FJ3sG~FxWjTthu3xfCSCbUmJXp{EcGL)UagfH
z>#v-zTm4Z~)Yc#SUsqUB8ObU-mn-jet3Q5fN~*tP>4UE525zwUPvV_^>dz2NM_L>a
z`PHgl<lBUlnI4u4CDZg`R(7>PQ#nlwyGJbz1`)1FYO|huav#1&{2~w27a1Y5h5zoK
zD?~+2#DX;nuiOav)CBFwABOJns~RH?=WSI;Ttp^I-_*p)#cpt2A<WL%xWW2#mz$I@
zxC&jGkO&ukbu8NXhPy#d$fT1@2)hz>w_eIq@f)fYr_a%IEFDf}bem2LyyBuXgK<?(
zfy_r}wguj7bDkX)P^F2&0;|{0I+IiC$p2rfS?L}A`8{?G-84Q&e`YbrR`)`|Dp66i
zXt{m_haFTHMj-~$tlYYS0b$*qvwQ=OF<fGGw(w4Rbbz-6oQ2&E5kzO$<p9Tn1twii
z5}-*%c9AM_Y^N5fLdX;ri9vDb9QV+z8rnn9L3f#Q27{{|yfG&qxMX$)Z*cgb(7U`(
zdRzX5uRD2e(wK&$U;n^G&2$aW%M_;3Sz&TE_Xa~tm`tw(AJg8^P7@UO0p-<Q&jCa}
z+lo0)<X_29Vpzk^bC>1zvr0|7YpTNuj#asRr{$vH&VyZ#YgJX9u+<`5wu-A`jHu+#
z`L`e#Gd&jqWvo}7<*HK<ynS#l2&z6Af>dPlMee&6@m8x<n*lJmtr{{g_vw|7Wt3bl
z@r^M2RJsNJTl{R+7(NvS^`J#Sp>b|1vSqGpRG21s_zI<gjCMV5B$7r+$QH>uvr2-)
z#u9D{ekz1LSXJz(MaB&WI12t!{pUTO+M;x4WrxQIOrR%ZroJ2pd*@s7?3<Niqy4aJ
zFV{8zHc)@NBvkseP!m(ef**BDoz5yjLDr~Uco%-+e8^i=iSsSRVBJMDwJ3OYzRN<{
z0x{X<#<YNjYlD8LOXaQVS*i8Gp14#3s-O{?OAyqw?vN`DB9S2<*;XpjkVm@?GvP$b
zaw1IXw2IDt$zc(L=#mN@G<B0Ym>M?0(0Cf+SYOK%bV7Yh*W|GEO9lQVP2__7Hcy-M
zbVYqL|5pM2U@#mm0_qp=Xg0$yz=M&3`v*FdPKzZMI3?2IWHh9v3(;B>Y?znZaa4bl
z=**rU!i2Xe#a6LmHNQ$<76nW4N(Pe;=FRVMgM|C9)UF_awvak!`jn&JWxs;rji64$
z0lbDp8TjHETLBLhkyh4CMb_~nSpBvXwYmo>;Uh(Tg862()goe;DEa~Bp@Znc53)8H
z4ML*BFmCvtO4vSxCwrqYESiCneC_1kr}QAz1i>@;gM8Ki&XJ9F-lo??k<DAh53&u6
zt%-Kk*e6<}d?XBLif<ri0PgRt{bqkTx}>CI%jen&qmLDLY^j-kV#k)z7uS&xlQrE(
z!wsDAm;3QS&pvkKR(`&MwJJtd!BVTJW_pD0XFj94qYLi=E%x|Z(Jsr-mO2G6GTTDq
zFT;1_-xk1S2JnEAv4^&^1UG@kyYrykq#E1C3j{)@asacQ-~=QD1rW+QwhDx;0-<Yl
zjIp}HHq(RDI02nZ|0@t<e>e8<w(DXz07=xcv}4PO(av)u5Q%j?%i~L*7+Z2NX=D39
z+s?2Mz4CUHm%~JK?oaqFY&>BpC-d9RzeCleCsI29X>jl?b2?PmCCe-N_03pr{){tV
zADC?_ya&I+fTn;Pzrx4jR~|VD4AzNjxrIfg>U!@5S&X7#!nbcFEczqgY+ifOc^#^w
zk2aGFOoXY^c0E*q^%_)_AhAJ7iilr80#gSkdq|K;FEMDqxvC)<x%43^mj|R6h_l%}
zmiU2w_WVk7=;$OMyCs<QS;YGr(5w(2(RuyE^m!ts;WasDt+jaddR;VVFSC1X1c3=V
zb+jI-m*;%^_ln_<M7uimGIjLZH=>OROzW}@l?vf*|4uA1xh6U6nFj^qxm75@FR=3m
zyk8wyg>yFOl9*hVEd7I(nOuvGXKmwTI>;irE!1TAFqYVYRU3>ZkW>ck-`&CXLABjK
zqb^$jtSAO487VyfK1?G;>F=2qztI|20O{d&PnUXD24DUR7<w7T%HbDe!moGE5R!Jj
z-sx>Ohz5<c_m8}pN1LdUH*>-4%JUmjb+hCoFJ}jz;v&Nx--QV=&5<6Q^bRe;dLTeX
zH&kzyo@|okSEm&Mdg#{}-Hb-55;PWd37-tuH*jrC*5jIA-<YUp)5STJ=XY$ow4E9l
zp;GmHKcEsRD!I%brx%XXot2BN3bXaY06!bf!+@j0waWbZzGC%pI03Y1m31#jjInK+
zX6)Rm7y^1n$E;AcC$rMyp-M2h%>-*{1ys3ERLTAo$k&ysy}*ZKBa4M$LJm!lFRPpJ
zb%Kue^qXBRde-KWgDV%vl1>iFnO^Y0s<sD&cZRdjx8tUs9QXGdataG{KGNh;G0E&}
zNt{;Rvn=@841;=*px#k_vQj)1z&lGiXqt2oIPf@<;k8nn#)A%Z%S{JpDZ^6pSIWFg
z&EoUf#!0y;s|z_vWy*pN-%?Fxf@hYQG$lRKTJn}%lFY-^tmT{qqny>;`Fz_*nJ38+
z2i#|dONGS6P7dI_=}TlR)>mZt$fl)^nLdO2Lpv114k$`lmUUvV@mk?)ozK&3L6Q3q
z*1cVut>Z5mT#aisOW&Gq3}Z_RDm(7qYpdYvLQwQNrz1`(dO9$jE}VtwwBlrFYI8KW
zxJ5Heqfpjn)U^C+3m)cu`seU$1`7$4IwpL{?$9(KYp1b(8P+m($R9*!&dh0>!N0r7
z?-<IVMuO13Gj{WF?eJxp-Z-(6dH8)Z55-Aw3-ZmaA@Y?~^5B+!RTn-japMX5#<usY
z`A-`A&R&cySN|tpp742e@R^eCOQxBeyy7m;?+0q1Mk6>GFOcuyVuwEbZFxuy6g~s_
zJW{U@k@`JDYQ0`D=zB8oGTfQVc~6S8Ohqn!^wWkOtk}rAe}LyfRh^{20-RRae9%>p
zj0|0A2#x6CrVAqd^&A@3vt%a?9X$lR{V-D?_|{iw7`RN2FfU%(b^uui=4`$9ob4N;
zT^DF*N)4;HkboGnRdt=Ed(%iXnFCmG^QS?c5=CVcWC8w8i5UK-N#9^E>K~YAkuZee
z7|z<d7MMrL^PA`Hp268=<HUM(795yaf2Qn`HS8v0&bMV~wDa?()VAy$?W)i(lM3TC
z&7{uW;tt5g#0lq!o6us>C60%6Cgao6YA6coe>67dWm|k93K`NzJ1@0&6V;+bLORT$
zorz~~ZvUKF+Mi8x^e*Y<7b;#?;pVRBQ!}GF%*sJIx$tES?4?&6BdYkuGIJOnS>MZo
z)MnS4unM9$(*JGJp7|;RVz%Lni}EJTsbS|0ag*H~7W&k4p<`OWDTK3%B=qJc&cRjJ
zSHucg5c_CskZ;U`m>RaFG;A!R0B(D>kH*@W7dWEWp*-Gku-JGdJkrre8?%D6l;`@3
za$@)@t`e74#AO<0tT!T<nctxjN^I^c*!hP$?bqD>^Ql({l|s^?5^d@}*smANJKUAE
z=ODswl;;b@din4!WY4_843lE)auK6K^Utc_{XIY0p1vDhor8o-9~_hp10n?+=}~|K
z(HYJeREP)CxJ;m#ejTA-q>jHsZPgV>%GD4~p(^+s*t2gH(<{VX@`j~Ulm3x6oIHQ_
zLHsx03#Cn5q)+Kq#yzuxYU@-j_FAo=Y7qvS9cUSM$otzr3_)vuDC82tdxr||Eo!D#
z05_*sdsR#YPF$(Z<}xZl#pI{WKp5(SuJhsPu+pC2<PR>_c~@<?@h!M?zkD|6xKGTN
z$Z`U@bW*6~NT*f8YD}U#y}tn#da~dXjN}FOrFBwD{C9zHXJ(yE`oLW}VxKvU+4HC1
zb9<w2Z*-9!h2vFfV&wwo?>>4DAeysrvsHhWbEu~L740j<=Fqdy2k;n%u5(d5LXrY+
z%B>XB6PxP>m9_=UW;F((Vcf@r!5#95%d9&dSBp&q_Ql*#<jg$=#J%3J{g7Avn`7~R
zqP({ciFU2m5a<&x;uq_$aRHLqIFW%gW4~PHqn0$(mP9+R*2iGd3dZZp8MT-WB;-m%
z*932|JzS(PM8`Mp6YbP?06mdj2yx&*^f*{#FT^O1e4L|dTXk4%>Knbj4&%pc2`CIA
zW7ts_%7d5QcU4q)vdYs0YF)R`1OieeDGsrNChJ@dfim5m=i`-HeZDWczon!t#=irj
zojUMSDxgE4=h3(H^*_s681{@VG~pTxTHlgBa37=>+Sjr@!J|WqxN}Dx3x54kFSOXE
z)hwDJYLShayM*RL_sy55ovGF6!J%5EyH3-|GlHI9Wqr38S#6Egysqbpd_wQ2M~+lS
zd9{#BDyb0D9!@5FlcuV{l{Lw0zOdc6(%Z-H?f}HpX=c~6pMvfJvwi8qLaZ)4UL!5u
z2(m|KIk*kk^pZShxda^JaF@`$e4jithh4MrMarjbq<f#+e^}Llu0bmlWt*_(aeDsH
zHKv52YqD7hxq$5)`zJBpNk&>NyR^ELC;Id=Ycn76Hro#W+eV_?2J&KIb2DWg@@4^Q
zFPpuKI9s~4;LGU3rCuLrNxH+1kr7iqr1Ic`(y()Ldwsn_sM|J%ZNqQVc2PFRXFm#K
zk;cn`yl%6QOJ2WKsLcVFMef7gMj^=Ey=y{0Z&=732;NeCOnoMJHu|A0970gM`HXU}
zSNLtP*hStF#~$)#T*8fmR-qF#O`;gcTg)H|Uh*bah16Rp?^U_-UL&<O%QSh8q=tOU
z=%rYAr{LwZB67$nc!Fbs`r+!-uJDjLWz8ee)abUjNxZ2s-1r_$h`{)_nyH00P2Zsb
zGrpba$(|ZX<J%d1IDiRFeH2>77EmR3hYfX@1({jQ(qE6E)UdPf*dJ1{F7@P_vYBV2
z#8;kN!n6wC>-O7}OC|K#m+rZjmh7TJuS2QA3!bM;EH$|tO>&NU>&%st>4q0FWrj<f
zN|R{2ROwwj^-53fo8P3}P~isHItEyZ1(PipsXz~fOa5Ua!H{E}pHvG#Glq;T3W|7O
z3qS=pXw8hY*iP(@_Y=gBlc1ouEB%PgbF!)-Sll2+)EEjk!Z&7YhC#>S1|Po|pNjl`
zuQ16-SVShm;J@U|L>Pxd3x4?lAzi2&GJC6NSM;HQVNPHyrQlHJh<)kol8hDB=?yRI
zNT)Zv#2aOMIT)Z#mN&9eml`(yHqRSNdV2B3tG~$Ojd!9M-f$cs-guZYxxC@HW{147
zXl@>FT>a0!cw>xl%uaYijRfx<mF11efEN6N2c9>wv$q>4n&H!U$bHWSu3h(58-v|G
zND<G?q@kCLRMsQ<7%s2#V~aNu&Hf6$^g0fdr-H`^0mZK{!}{=Nq&h20#DQb#%cApM
zWu+ezdzS2+#9fusbj8HBEBxDG&ou+V%D3O4d1*JEnQpL~jEUX-FZIj(zVb!Da#d0<
zO`0$^OY&o8S+D#wZAt2H9j?Z2sw}Z;?)A3(LzQNHv6DIe`T?1k^!UdpqCf7-2l0=G
zMLYksxBc2T+O=Vr+k-<s+;o5Q<lXBmo79&H%l49@MCGM~04PFbm1sh%OU1tzKG~{g
zn~YB93<2A1L!ig(Ar-NN?Atb(oSNSv%ZtMag;cVWBd?O3ewIr97eR1p)m6ygsBcn3
ziAHDo*@+kU$JUZ>U2b9JPZS9EsbuoZVxg=U`nMI+=)_{AMe0_fh0f&>%w=%MXaOh(
zhbi*xI6)o9ZGT2n;TopG!$d>_gz{=8z1|d2_MuRbUZ#gys(KAqn;_cEQ^MfCwxF@{
ze1h!igf!Q$>9wNECf@77^oNXa+O{A<YFB^=*mG(l?5x$8l14$UohaqOS8a;uBXYL$
zF%ASBD$O1Tw3Id%)0Asky>rdErj)EGHQHcv-!~?QlC682pNZ|=ewB8^tOdV~0J_1h
zos~5JsogUbcFhGS`1+>IoE+9Nx`bOEyJH8o@Ih=`5&uTJUh*$hiN+6ssETu@BnO&}
zWJED_yR%t9b?yutlA3enCIiv94)$`ji~B&Y`r^0{69I-W)hug$kxgYf{g;Bvb=dI>
zH||TR;$g3S$c7D;_k`^VVVjL64qfRp{J50uUT!tCSr(i$IDa(hqkG}<uJ`zqnNTmR
zbXP_N-KQe=_0NgtK29A=g=I7ZGGWxb-GUtiPEoMmL#}0b+LQ__2Uc^Q_FGA)w4ze9
z6;Jwbn)p`{=7i#MFwjjd9v!@jryG+ef!1ThsH$pGVopFq6O)mPZXUx%`TI9;ccS#u
z!+WwtEAczs3$sowIi2WKme+}HB-E7qfIafjRNz~oS#=V;yFUD2Jyj=5xBOJ2*aKo+
zb3xE7tJAub2qO>+J^VgFzB(q!X_d^?T8|c1R_P&bh{b%?$Z)$r&td!yd+uvM5JAno
z8Ptdc7VtqseCzJf&hM4lFE*`5_$9~k-v+BvY`5ENsDzQ!1N^+CBx~RuhkH7gd;197
z?Y}!i?)G)jt^@R$%j7|tIyrLyw8a2%=(8S}y$kaLk#P5_pL(L!BtckG0~EpL*{Q;a
z4y)Uh?&?Y!fKTVJ(;4(6mO|F8OyBJE*ZX&Yoo2nHfy^6f@y(1kH>paVIJ(h^jA!Gn
zSKOc{hfXBg`3)7+d2e0Ht0vOfCoAWO)cQ*f8+4P%eZP?#2lWTS%SsCv(0hK09rc$S
z_R>$R=mu`IIK9*r)vf+i`(nF7MP7*=9J%FwLIR98;05E2KB4~?f}<hZL;p)PpoO)r
zv&DqrCuU*$08FVrbzT4jciZQkE;Q3lM)H<{b=nS>9@9t)l!ooA8u35PKaVlEVf3cx
z{IB@ISj-ozW{=*zl}q)LQU8M%EnCS*P7oe?ta@>WfPx7ds#l4z@1vXzE7Edh!A-<=
z*huHt29Cc&6~R|%N;aVCW9dC<fqQr(wmuB@&ZqBY&!j~nnrZlj-Yn@Q<6{Oo4ysUt
zv=JKI*Zx_RY6JjCQCsgZ$lWk2&6I9qm5Zpd`wziL8;{cE_iyyu%(4*K)_Un{zc$C$
z>$;ern2dby1zZQW+Z4^)YIBy$gfl0~F2H`pZUy>jk>I2Y;Q|hzFEWgI&~LDtMK^@S
zo>UJ@V3G1@*Qe}VXpeMO))~Wx)6ve#n7<d+g_9=T6HU8+IE`88K2i6A6Yq1=7*jBy
z5H7RlANeVSe-2qIGA~VUh>iv_+<@v}{Y7ADj11oPp1B%Pg7L##zIZPMhpaos1E<IR
zI9p<0%G#r8V4w~)!Iz=-!l2Skt8b!K*g$=;*cto{2Uz;q(A#YV=mQe!;87ooJDp1;
z>`UD&T$^L>6ro3q(}l*onP(*NYZ=kb!K#jScY(q`WizIr@>(?6QAlCOlp%U={*)_D
zmociW87W_wc7v!EO3?;;Lt?xf)H$&<)ZObR<!u@tLP>7RLm?Qg!4Y3u96bLi*BNU~
zbf#lgKWJot%r#nCUJ$}W3jl!(5X9}#rj%pT1;&|-Vh+n;oO=oJCLiNmX4j$3QQ}Lt
zn0lVSGD_oN@H4fTdI%df#la1o2$$<XWN^rb?;A=%OQ%o$DR$D>DjcZ`VpVCyviv~J
zx}};8h>eT^HMkcUXM_%dkaY_=<)39CS;F4ac-W3Kfgp606@=w)J4?1g!M1i9U*>hE
zo13R1f18vQyD|epEP3-E`WCx+(Om(+s_7+m-{0GP3&H#}uvSZG#B3#=b?Hx1k&~|1
z#2-)0e?9L2fbY?osxYJu6Sjex@`tEpZU;jybQCZF)!=FrfMtVUY<5%%TYbpY##WVN
z=?&Mp9V&CJ^gz|(REB&Am-5p45Ka+V9Va;-!e;y6WayVO^rs@R>GC6pT`feY;Ta90
z1qwOWo1`j(WkfkD>hAX7etxAd*1Rw5E7k7`CobNS!-=zmEaNMXF)Pa+z1i@_zw~0m
z53FNuvD$daNLk2+E#}oWf$&1u2OGMvL2P(6j%w*FW5XY+1)<ZoRIV0Mk<tlSHnc~g
zZ?Mnr`ewuJe%b*6JOC&vS^i>*P*QiG{onPf4Tdnq4=<+MG<2pStFHCjH{LJf_r-nJ
z59o{g4C{{jd}5o5p!)qCv)+hncEWl^y!<y=@2}s>W4*`!wkxa`BRbQu-tmgl%ws*r
z#tiqtt+^5e#$`b<2hZqyH#(VN;AOtWxW@F`LO&?_ftEp$wL+)x-zc!Q(!aq!bw6xT
zbf5l7Lj%MoN5GP$=kIRTPpe%<T%e01xl|vM7yt`rG#akZ|87Y39w%DI-J;fuf~keA
ze_o4}Stin$r5b~4O^UNde|opDU@|iKR>4!+tV<SQFF&be_q-XJpV?t>PSZ$eP%(pF
zOh09vF92aS@8p{P3E9vMkjz}7<!NPAppXBHTE|dpFj*m#53|mMK^>f;n=#x-18-?e
zJkpq0lYV+r7U|I?3yJ}#b2Z+^#3MG3CZSFGMtz^rOr4d@8vMb#8z#ZO-G|FZkbrwX
zTdUEl)QGyF5_T-D)V=O&`O|_azjeZHCJHSsthD0j|62Pj@>)!ihcXgkaP(1CSVr8(
zQ)v!H3OG+cg3Z6qA92F@b)Jvl=j*aPP7gJ&+jHqX-gFOl!LmAGTezTwE`sNBT_7dW
zPYlXuGVhWL?FRxc9I%6Z{mhn+GFlA5ssi@V4z0D{W=t`!_s$-h!k9URgDm)Yk88hG
zG_dlpy{m&%q?~NGZq(97Qokm)DPb({B)I9cmdZ1b+}#HxSy4dI2X8*9R!sD1Q~+1>
z+*}}?r`=-GIYF0<QV5=U!lP1MVbYvo6+p4UjV@~{kiJrUpD*v*Z?+mY>5{E+4mGAP
zHZC5E&d)44-Je;9gJ;&NIim=Sv`ROrVL{3-E1dh3Sj{gv5o*Db)53*$%L)UxRnVj@
zIay7%qqUVXxyuSxZNixZrVjI$oJM~;Z&~3uj|eN7ar*ybt$Mu^BSDP>HxtY$O|2!T
zsaq?Gf|Q~=ziQl?hl4+6;^@FZQ!Wmg?PgKN?)OtR$Dkc<IL=P^oSi%<I{z<XS*WrL
zl2HA8#&N3r5}nR*4|#1ih1x4J5S$}FeXd{aFd)T=d|)t2kp@4t)g^Bto1Kps?b;kI
zUpzYTEW0fVnw)ly63S@Fp=N<$14eWWXQv5<m5g|_%yc3K2qvh*Zof%<sd?In>-5v{
zpbbJoVK_nSGT(U~@<57|nGF{IA8l^~XVtX-kI$r|DUChRFrj-72GjL4Atnu`L_4NT
zbQxDPx*mp-QD<sUoXkwqaoPz*mk^hGJzjbECghq?^yH!9l0xZntz&X^iDt@e{_po^
zt-a4a4>RKa{=Jxe_TKB^vpx^+^;v6u_F687aD#Yq6H<fmWqRd3I%<^nku@pG`(7kL
zdCzG{qr6Wc%`Z^iDOV>b@6@+_#_1{VQSa`F@_ybcuDs9gfby=vgLKMU^tlVAnC1I<
z4eE-uEy_|13c^zJjst6*K+_!ugTuIA-zjyplAuIJHAQ^XQ|c#f(D~4lfol;Y>=dXo
z{zbx)j1)D`5Ls&7o$Z&aj4nm4`Cj~uPp&B21EmWhMy{*gO_A%4h6K4z_|cQAh8~Vn
z-bWh0Ts2&^3rde(nIPB4R{417$@M&uc2ax&BNtYpy5_~@`q2-NYYPswF>;+LJE3r<
ztwfC8NXe_=o7K8r{Z_Aa+QNPpgLEguKp~i25-Fw^^SNs@p=(xhtrH4Ra+*7s2>gDe
z@r%{DBP2S0*+99x_RWsASPSN8-38GrY~S~6*7WxYd$n837~gH%4*x{uV-E%uNQkNN
zLy#^*y)OJR1EO*}HDK@bEhr8J;B=G~1d(!l=7DA*8ubQz)3j}J1wL$=e2E>wq#-sz
z$Jd1J7Hn_G`DC2`>4Sab#3>aBGNB|v77D*W`eZZbWE|Wm^)X7qYw_u|db>p0{pMD*
zI|m?`)ZX)$dfL`7n~f&du*rZo9iRnAkkDO+d5R_@P2G)9^Yu4T+7E~4r4Nqz&66!{
z-&r{_9w3Ng*`)3yW_1F8K7zs_FP*@*XKCqFXy!6iKvHGD_Pl;$Yi>Ka$4ob7^5@ms
zP0V5;W!_NP$^NfcNAk3QCRBJ9r!=S>l{hw=!f0d83DnhbU{-w-56gm}O7vb9<MGrO
znJ5Ct(iS#@4C5x=ks(3j<SyVNCoo_PTi{L@Ezwh9kVlO@ZCMyeF!Rx3%U%*}yscjC
zsjcY=^&EaR-$s8s){5ES@2nmev7p3j@?Ev&JzAfoetcLn13jb+z}$cVJ=<ysT1bKt
zYKB}jU#L8|amVWTaw>3Uram^#c8q3ashmfCO)cu;uc2#mFtnzP#r4gp%g^I@TjC8)
zJOZ>~f2h51i9DTO!K-7gAS}##uDJ~py_=a|BMC7L$$M~D$#bZwJjVjNxt}ff8ky(G
zZ?KC^U0`l<)a~Eu-X_R$3M3!Z#9gl>L<jNIFfjx9EJWMqFuxO++QpTHZ<bQsYs6t3
z1(eHdEGdguRL>GwpA>_8sTcQoy4cTJd_x?pV4y0u45AB%I51Q_#NiK>`;hM93aJ1E
zbnmOAM*n1pYFtLJHC)9OTSy@*17s$?6;8;7Zcy`X6#4aHzGfbQhvQW#dkWTw9awd^
zb^Jhl+^jw~=vP7-ia1IDHC$S8<2!KXEHs>7xYoaS7^vqmVK9InAXn3HP<Yp2R^2mb
z664h$M>U+Xyadb&@4CvWKMX%~Y@d_;a4ZN8if)>4FqEQ6Mx*gtQ%uOjjiwl$nY!PE
zOD2iiNExGpRnrW@3|#JZ#2_2sIwUI^xGt=F;^|^bZXBA7541?x728N;P~vO~TMJhM
zg@`3#d=Th$ndzJKbm2iu(?}_f5xO`vCr87?Q>>toDsUT~#3lmL!@I^;_i)*?FW4l9
z35Iutth(2MBa1oEK_uLf|HhkF@PNJZ3hE<D3X5c2&ogdM>&<)3;12ESR4+&qY5*?J
z)a`c{Y^n7=d)iD{!=AR`3ZjnfOnXB2=NQL`^EztCgUP_dY%EFf3c6i;l43lTW93nb
z4b1u>jXmiy(%aLU_a{#oh~Q)}OauX0IjX7&1JDt|K@+}-#;zcDna<;;AP(ZBgtg3<
zbu{%`7K_Y$SdfOo?^3R0HYq|n6B-{pPdK8c=UOAByS@>!u>dy?tb#RocI}4%kK|#E
z;v0d^8B&rgug{nDNT0>kjW*(@Rg%pMlhk9exz}xi0`9qb9Q?KG-0z8cG(vt<k2NC4
z?0q}M)kA0!^(dIH)gunK%qG4yuRisVVtnecUWyG||9u+u&}F1okH7qB57guHztfNn
zr-6o59J#Is+hYe(XF!J5DOyu@&sj3Xk;@AkC1O_(qKM{Kx%|z!P{wcMfzzdsNRHvS
z#!YOUaTQKsN90_%6#zN`YiN8@e>Kq6T7)%n$Pr(=)ye0IphC>Nc2{Ss?r`F7?Jk5S
z9Lo|>a#*f7?Z?#M%6K;JOCul_iy9ygU4c4J!nM!^FrT0tWZG`m83wZ{%h{UggEHb>
zr>+xPsz%+HEK6piEM<`8lcf~nlckKc;8*@9jVyH;>1Da$-aY6#>t9O+<-yUcfzw*A
zx_sP3OGfxO5y9?^6F#uX2)9QJw}!Br+|bB>Bv6s(cGTTRbCOWSz0oKNggqLWS814D
zmBjQKKhwFvZ;sj^gU~%?dWB(nm1g=oyL+KN2+?utB-6i|myEB>CUo)YW4aXMV|tA)
z_PA|nn6Ar6&-5$r*#oBMECIew2P-|b(;QfjU^P0+!9=x#jz~A)<aW8qbm6zW&W2H6
zmk;5tZkXVEs)ju{9D67Gvd@EPWK!oH#e36v4`9nht&NwTrt=<kVM6D9>8l|5eY&+N
zJ@%F?-D59;+xW$143pR5LGx`4pG<0B(Ha*bL1;CSpOURjMdtmjMU9~S(a6ae{N6#_
z{~cK1)eI5)1J(cv=bNx=Ml#G7+|ct=xY1xD6C8=NWS8N)lNciQ1)T(9s4L(CVMprX
zjm{3is^MR_6(;~dToO}jj3l<dmLiEmCwr3kU{e}NWa9lVki<H7h_BtK_g{u2hRT<h
z-uTM+PUT(VlK2B^RzvWh`L;wUKrV<!B|kc&5N+$B3Dq#}cktyy3`gaHNg7FGJ#Z6l
zJ=Ut@Mu@ddYr?Hvt?7Du60C<1d*SIm%atawNlXfB)6%z^l?%A28fOueh4&sQ8fU-S
z;wr?R^qD0nm^fR;3Y_c>J8ANCsjwcvx;cZcw$Dk%S!N^7+Pp%_VoRV`it!8qle1E6
zV8GTClSjagl))ir>JVkZU3<`HKJyaT>Ra~K4v6ufG{;!F$1bR^dSZib*;}!n1eXff
zi(=*ik<-$1zK>Hg@kQp&?l^xCp#nG%3jrWFxoP@#c7V<V1c2<u?$UBdVeL-L5cBvu
zze_ZT763N5E>VlQ*F>3#alCiC%PbMI>8Mkzh_j0-$D8Ne6R`%tTZ*+%_@BL3t1DJS
z-idY6Q|^6tvRIi-oN!)!VwGZiVl9$l16O>VB37t^l#w3E@1MN~V*T*{U@}XvD+Vb@
zk1N8F-J4uR_u)y9<Qrr^He~SR(U*OAqL*&gPVn&LoH(*;{N}LiIlTAdiB|A-hh?{w
zB_R9$Y(nb}G{KMTEJJ1O6~~h`n}H`gIuTD2+d9)=sQ7l2{(fFtMf%a)zIE{Z`mYIP
z6IZCUu_@A#(B)#TXy8Dm0OIGU$KL(U`(QktzI2a~o3x3kpfs5@s$m^L_07i=fcuWv
zZ?+oDQd^$W%h@>`l5dk^@#5ByW3=71hCFlcT0@Z5r1vQ(q_Sdu=|}3X_CzGN^kkRL
zPS#&Z4h1OE*&f*B)6Wu`wiAy=Pq+BH%h?0{JoyC(_Yk&;6bZLEhnX0zb?1E$Gx!lS
zqb^`NF+Neu?RJ%ifBG}3ef|wbwO20EJb;s3r`IA}Ky<Q$TY}&kwSn}xF;7~OGDIZk
zi6mcmKXGPriCNa*<mO+mho!8no+y)>W_&Iyo3rrZ7nsQCVF@Nu@jSTrp@c>Fx?C}l
zFWaywC>Aaksg3y69AVSuQF<63X*@s&1+dnBhD_QdxGB(5HDZ-7eu!@2o^hV3q$;Yq
zdYe5ujz8~E(hUp#7fJWW`X}`y&+nf4L9Ft6Bk4^qwlC?E0VI1S>6L5Sm-K7bwIk_A
z@!}Uqy87G%Nl#h`NpF<^m1Ifp`mZbL|KOLF^y9x!(pNA4)smK~MADDE2T9wc(V2i#
zJ9utl7ot+_&Yo61maHJ7v{NKs%W@*cr*YW?4PhUxbs?C(Z`7_s5s2kiJqvz(BB2Q8
z<1Qdpi?rI`-}(Ch&okkq<k`zymEqdQ_LPiu?K$A@tamfE(_#KJ&gk02=Tkb&1!KJq
zv)2Y{n+%2G9cCEse}RsS7@D9X=l=~nS;07>ln(QwT}DUH4?OfSI?T85KzEqi*mi<2
z7%dExZs7nk;uD#`{WG6LY2@g5fJ0P78L&UD;7(lur8tp9p?sa4b@>G&j!5-KE?>10
zl)#^KXWh^fyC+T&w9MuRKx-hfI_8el6|Y~=OZ*o*b#;gx$BZ@d{PV*0v18}PJ;e^^
zo%XR~+BNN9M<rhT0=?)zBtb7ueHwbPkl%u)=*8>suXHc*fB4lL!IBqNYErDhFRcVK
zI{pnGZrr}dJp@)Lbv3fYmZxT*qlxV+U#t48J(^v06Wp(8?hU+1AIzy)wev}|$7YbC
zsI5D&6OYXu)iK?ExzKEJA7H9sG>V@y7E*tpTkh$ym<8sSD4X$`W5%BFY^iOFanG}=
zye+{3+)%8x72n*SPZy-NHLtqD8#h6NwKh`c^Hjvh7~m!2BI%hpHJ@Mt?Ly23;%J5m
zgo~SuKfO!_4*Ec=E-cMI85sB7Z>Th?i(MX}<Yrbz`|i0{dr-9HA3?M=X;$Wks}fc2
zXJ%y(+lewbY?KJ><xfCFr)^DAIhLVHcf_Hn5;dy<c+jEm9)c_{eBU)w0}plrJjf6=
zC6<ai`qY<GT+zU%H}uc&PT|2`sq$2-h3#}N;YMw1KbK?Ln_@VOr~3%}<{6IHxnIX<
z{X<3S4|i%47Iz~<3KHQOz0#|`y~m+Ki6+!sA%#>9Di@Vad`8}c%?(!V^tRW0Q>cEJ
zMablOGa6h%rNuhl%Ib2ak{bH2uo|xBz#0arl|-+?`5ZcTC=O#_Dj`*9(C`f1RKw8^
z#^!v@x_p)wx3%4Wg&;%by^z|Za12rRlGx@wws!TWwXX1diW>9{GFMz_6!na!QWSOE
z6`rE@f8SHoc%NB{_rCxedk;!b)ZegubGXAm3O4?Edt6apUk63K3lDx)QNMZBZ7WyL
z*HXCdU;-T8EW(!A6{CCX!^r#D=1rbDccoS@z=fa(KIEc~!K`gwoxp}(@p*jx3I(b!
zrs?hprAZHLhE=N641=UNsGlgqe4{cQ_vBPpr~)K47^?C@BUI%Y6Fit6me39joa~tY
z3>fRMXI=M4BlV$Aq)2_z7*FbFu1zEL3-SIJNd2gi1gRH12B|;DPiRx5{>*oAsjplE
zsn5rQ=G&}A@p;8D20Pq|sWNl#4#hR%#3!aI%=<Xc+U-xTe^>JiEcZitJE0LJ9OHA|
zkzTeF81t|A0AFY#@~A0ctrrlzU=ZdEnH=TYyh3C_(uaE~2KU;wFz={~UHXx40>BN8
z&}C3}Q|BFbPThm0hJJt6m=mVn1Dr(vF%7dB_pzJI#8uT^q>TPz_H`4)6}XHSU>N!t
zLh-kcV7YEF;vul_1X|&jlAb;^&H=wX^Ok<*Nqc9SAn3T99>?>fdEiZNyE+W!1!;rA
zoOYJh7l2`u$3kIT_PQ@94|uGO|D(gLw<Ovr93du0(U0@$lZO=JlgDByHgMvHY2=~H
zNH33TF{?#GL=PkWPuf9PE;t#Beu1;o@CEt!>T%<&`ZYv&v+aj7d@FpOy{v{xB=Iqc
zhW^UxL?*e&^Sn%LndzJV1$p`}0rGtNPrbrd_W*(iV{P*N`<W=!4NVgFFYXHh2ICO`
zfH8y^uOSlz27l2Ceslp>@Kxtt636%7Wr(eMd_%kOi)T~0+Bri4rlL1Z&U%!}PifV1
z)8t2J1Kc!uJpS%&)#JluD8gX$_>s=}Y9E#;i6K4=g%VJiwt#b_0!OZLZC^%SH2m5r
ziHbIuk#-URISyV$?XnWt23Xg@({Wh`zSGR!^~Zyuj<OY}1YV}5zL7Kdaf&)h3(xDR
z@wD9Rr+FbFY0K^R5Ln;@_TAs@%K|6<&S13ab(FCBuBBl015iRYR8+24*a`8X7Aa5M
ze;h~6w3y{PPJogZe{FDGHt;Y=9u_pi;T6w{e8B@Sg14ZsoJ_T4t%-u*_cEU3hQmyB
z(`CEJsUjQW#HB``Hoingxjj8(`JT)dGaS|7A*C|yhUp9jY}t1I|5$gd6VY??OZd?u
zFObBSO`AL0k)B<mxuY%_kbx+$E?L}w;BFysR2Qg4yp}k%3m*1S8-mbVu)AZxMB;}f
zuYhaTbrex<S6;vchzMSSy6XWL+DGE%Q5QA0<a{!{Nd+-WyDje2;y8p{aL?{ioU$ER
zuP$$f0LQR8lvl~c&<ccmU9yA1=?PFbC!C==ngW`s-3`?`ozj{@z>=7q5cE~}MaF??
zmCRZZ`#6QP@>m6GQx`X(-Vea)#P~-!&*^!sFIDmVqgA(VG!&wiG*jl^ap%eW4*&pH
z<_O!EEf&r_8BQ`*Q-i%VgmlQtWCU+B)S)J$8+;5obMAr%=HVEx=uLTc+k1BZ7OUX^
z7KG#V8nXEV5-7C$AWSuWLh(}D>4}pj!L&Z$EC+H(l%v8hL@rT-QPMq`C_vBxF>zys
zOAU4uLiAk`d!k9lh9du_@WI_0Qml&PGkFmL<C{^KRDej~+;2t`4Yaguvz~3X8y2-K
z61l09hiR}0GIP1jGmc&;r;8?M98Koa3OVD*tuxNvT@U)$8|nv2(N|X+*$RC?kMY-v
zhK}Y1jWg}vb{{nK98V44!-S<><Deq7+_)LFRj3UL9^7=VwJ0s9OY4zX+9NFOtAvU@
z9k|dV5-lmB9Lr+QCnSw#uewHPe3h3tjio4+%{Q6GCuN$eGfhv-bRbE27#ggc{R9iA
z{~apbmnt2{KWA`$iw@@fnrbs`>kKwN^0a0Gf_cNd2QX;gN~<Vj=vUEOVB_QrWNC~!
z6~%TwuXV+i7<!W|A&lN?xLh>&L#siYMug1wK{WkGUNrq0=r6*Qezd0ZJTGfe=e>#%
zKGh0!EJpOy0A8=E?vKvr@6El?1RXG5jBuVt9ei<Ar3t=pXQxc#rY&Qem*PC1eQF!m
z6nC{6o?@Hb5to)ih~P2>^D_T=RrdmMbAcX7+uiXOY+=+I&5=9`4eHEMJ>Z73(bYk^
z$@5qPNL;`xf_uZf8bVkcw4ciE@}2C~ba3AKZ}W8N<zf-d&(eBINFC%N7|99FK=^9W
zq#JnAc|oP>BzXn?m<a%B$9f35!aPw98Z!mS^y$wA6wnGx-6GC$IH>~a5rCY)z5BS`
z?qEJ-7x}1n8Y|ijhPgre={e5Q%2*oII?g<h{@PU}J^Syxuv`sPL+;f^P)2f!VpX8J
zczh@u60Yk4gNO~lAG2C1>`h{;I?xg;2<yv@ufiC%BLsx_uC*6_)0C_DGfU238dZI<
zKGv$bx{SL}Ve9|4rlu{OORPnoWp3a`6jM*c7I0aeoQZ2n!n?ap+U!hx2tNXo1J1-J
zn%6lKUw7|THZKDT1VM4zQnWX?)VmXR#AlDvzeK4GwOb+1aqQ*!2ULMoPy_sca*!$b
zRl#35>N=#C&{XV<bq19}ON=U45Z7b3PbL88sXi|!&JYY{=L+evoHI~P4L>?40Rq}f
z)v#B<t8x&psZIDEU~v9sjUNYbZ|!MY7m#+~hll|9p+#Z7q=0{F%{(m&DS#AQ^pTUv
z4zud}@EK1g!=`?<D{(`{A|@KI_T{VEotf5cPx2Rrd5c*^+bYh#%FmS3%%FFVGmTS*
zlfa;?eSg#@g7b%*7ct#s)s{;Y#ru|o+eTS+_v0CU0Yzr&UqS1(kp2~(7_i&kYJT1B
z^SvF}WbfE$H|;vZKJ<G#bG03TQ`hG^V_dYFFL978qyp~4>T#$^Mn?7C(38y2(KIwj
z@+A0+h82bZ)Mc>Rgbwh49Lg2)=8`a`=jxv3WU>?ZT{mNF$hVMft8Lnw@-nuu&(sv(
zl+s5zFKQm)1geHnXcF^4e|TOC&fA@JHcN*-6cLnWu-piB%<xZ_Pska7uR#o9@zB_E
zR#8E}vxw~jy)BmWD%=TbWeHhcRO$?BDeeE3<!tBFH{RE-G&NR`2vDMn<9GBF*;&@2
z?iq;29EB}UFm5k}$2PQotL2Qrja54xdC$fKd`2dcjIkQ(kpsVunmiJJ53BAa2Tc6|
zi3ZQ;-q)^e>;%!t;k--~`rP)Pv!KHoR-lBp^v+IDEu*c|mMy^JrO0%A=xO{N75WSQ
zj;VfK%Ksh>e5-R`?3bj=&xFkIdi>-;_<NNhV!2M#-A(ifu!)JR`pFbA55jstC+X%U
zd08i!U`m**UuV0o@6)eC=Jg2ux~u#8X8pR_sy{$<$gDo}!M63@iFt=Mm1g1|y@Tff
zQnqb7F<^(*Vy<!KYV@MiJ?QEP=oiADop~7rZEe$bWzb@3d&_&G0}Qp{O$Zgra}pIs
zEV0j8u6MYnc;Rf)CE5@(aYPxbU1Q)Jy{VdEszq%l;an3GWz}-N<+O}X@N?!V@^dqO
zI>+E=)92j+8ToB(U7MU~85x-wVqI39s4Pl=0#ci>PhCSFYMLl!ADC#|WLL{x4G?T;
zCfs70E)Yb#K$tERHcy?*voOW_Y8$(g3qk2=V754NDOK&E@vhp&uuoLmVj4WN`G}dz
z$){gM%o8}5lEi=pmgt;>p<ahHFmY9EqDx3@12p0nYWy!u4uu9}HiM=31<3qd{|Zmc
z69vBuUYZzUTO;jIZ=>ZZ${y(Dy+eH*C}G%aB5!3cK0z9^yu$9Y!p0T}JJ#DxEdXdF
zUZMdlv&D`8(>!TY_e#rrMeiwdOJWCbi1W)pgaD_<x7>Cg^Q-cy4Cryr>CDBVIE34i
zeI0ThHBWp-C{qYIiQjW!2Q(n~1sp;5Uw=y}iw}eCc7#5k>qLpmMANSO!h>y%&jzez
z|K5=tkL&EQD`1S+&k4R{|Ie(3RZ^n+os`*n7Ym$g@Z6v!v@sDafitn^xs$j-a&{<<
zrW~RypX=UQe|6JtIsHH6d|_m5EQ6)>|FC%*|1_J2&79T!Wg<|s0^;~J=u3{i+^8=T
z^kuBRZ0{^7ztNX}>B}a4S+6f^^<|a5EY+7|boL|k<!}1of%<NNzU%rNe5hpzR-+Gf
zg`F_}^bz@!IN#?4*3Z?Sa;oc1bRD{S&SX%TVF*wH_Wt+<zYxy$Rd6ZuGBOoA1`ju6
zjuQT|%z(%_+Q<Rj!Y8l&*GwK|vwMi+b(5Wm<4oxvaNtE30bO{dxYYFU;SZWAKU7r?
zl67pL@j|PZvnHNM<>_|!ScrCaN1x>Sj%nKeBo#Yx{tem^Mh&{Pu4@9lR!xL8-5{=P
z!Avmh97UMq)DL%K%NH||fsjlNai+lu4E?;fl%|4r=vf9~Cz`0)S((I6G8W#6xYDi#
zONTJijNPPiGk`;~LYmU!LNVZ4HQ%VEP@+YJF9Iq^H2z=&jU&IK<q$+k4t=nO$CxV_
zy)xI(fW*^dH|B=b>3#UjC`X%>J6}etV0!*D30!-Vgg^?~FD0ZW*xJqDehz0okMlC9
zvpR`+oc=e6v_ItFi8Mi<C*7Q+%V@Z5N7-Qf|8qx|S7vi%g8eeIEGLf?vvZ~>f@;o_
zzQH$4A$2-hJ^T!a8`qJ(O}a8IeH2VdP>UP|2fcxl6F8#>X(FnUre2^)b^Ccr4g@95
z^}?eB{#euh!B*97g~@P|3FEs;DhG@Q{3(m`$lcKdFKD~stH?o%fOb0V<zmRup<qtC
zC&4ec!OzY<q5xvqTmcZD3A_$sj_&OzgTi+V7=ae(x~0WM<VT76=?Tqu+u)6BoUTLS
z&XuXdp9c5$P2zqE-pSeEiRY6#fyxSw_Az<#dazY298D&|Vcqh0(APB+^z~m`J;YvK
zk_GB8K~qBQ$at%yLP#y3X6IqR8pK3r;J(=gJ^My|=I&1uL60eVhW+b4=irJX>7|!_
z&%=vHJ%wfri8mujey_0lg!79HNMf?n49|Th$-mUuJxRVglPAenkEgUt*jD}kkQ3Kp
zulW|hMA|{(8Uz4W6+#fWg4iK94$;dnL=W=E2>duyalZ(chS}<yuKLLH0&t^n>1_3B
z!o9lXNwls{ymd+PnS`O!R_N3?Xc=@9v~V6MzFeuv7VFDW&u0rH9E~EIUrvt)*7PkJ
z-wRkKbd7&B2i(IJ_q7@hlQdYlYKRDTTQWms7~J4{kCx7pEQAKx0$o8gDdFr%cQ*y{
zC`X+*%jIHyBV}RB`Q5Cr!))WGn9YxBw`GE#P;)PfQ-+UBb_OO52Qdgp#gu)+^<W(v
z02XLoKuF?pk%EVB|H*8gVO_NHD(ko=d`@WH-*{-#4EEXaa@)&)!@>?*P}|aT@??<F
zqxzI~NqF$CpDV(uf6D7d)3l-YorWDryub!vp$IBJAhZnJhzU2QSA!d|Q7BFw`8f0{
zll?-1y-b>#Xe&ncWL?~ip+gJZ&QX_B`T!=NlZaMx7}i1#<B^z)=p-_rW1tO`yT))a
zjlrDVJPt}r^;dWN6=YrOSNA0Pz|Z9K&u!}aP!b5)0x0kUB)C?nx<8{i3_YfYz!YM{
zCkgQY65f_k+L{IcQfr1r0pC;g!(Tud=P?ubWlet!)(o1;X)o|y_y;Yo;9eSaL-~%|
zusea1M{C5?gn^PuZ3O$mb7lrjojEi!^jm=F;E`B};b!hfu@ul)MH*pe%gPCwXH^>?
z>8E-hXksoPdmm;*Gu0OV8|bs}1<gmNkp&CRP<I}I%7MST4gNmoWpJ|R!auROtn<m~
zdRYfEbUAd{ifR11EVK;Lhm^~5^uQS#Pt^64_Y=9YJn%9$nhXz7A;it259sv1`U27@
zv6yJPnvtcsP{4@IBBm^?TS+ctpU#AsTdNPSSZJM}3&QA#R!-q(7O*ELQ}sdGXy9-X
z4ni?mf)6o}7KDmgme|OnK49bJDZ6s^vj{)$Y)8+hxEd~X#l@Z+sZcys#R)ufJ}LLS
zoZ*>XDe^dhJWSYQ*IjkayRse?`7EYr$vB=61(v82@tA8S*qWDQsKa>=&lrSY4s->V
z12uQQkNrjGi@ksaAv=Nwi+VeOj16vQxacBwhML(V8DGGD?7q8C-l-EGg$AF_C8dOa
zN&0*(r)1KcR~)r#uwwkxaPTGCdp$1@UzXqi$%N_A1)_yxmj$anTV{5MyHT@6w3mjh
z#f)6b0ao3ooGL_?5@tC`=3gX>)OEkEYv#|^^`)3u$908pG_0xTpr23P!)n-~d$#VA
zClESA7h*wLHng5}GT>A;vz~MSxV-zn+TFB$-Gvj_oc8HmKc!21MVhCzE!kMWscqRe
zbOQeNsJ@3hOX|YZ1>A%U&jrBz^+y9OXH!1ZcwZ+L*pTKa#n4cv+uAc!iP~~QXd#}~
z|0aFcsaE40?DX}f()eC}J87N3%w4J6zzLh7^HF=A(162*IFp*L?Ok|!Qo6P~fstwW
znTC5`!oN;iLOiW>DCkGj$|H0a0+f?MrtBNP{ai7HA9xYp6!rj7@EZo#3hL(4UgHJ2
z{tr<qL)BvXk1z88bLZ_OGu*DJPhmT>Ie}Z!a4lYeNAZE_DE^(M_+X*fGu}jsZ#G0F
zDVwHvtqB_-#dBNz6i;qPC&cJtN3u{S@T6o(&`R~-Lja{4QLcwc33xQ=G++_1WgN60
zeJjv}MhsQ~1D(L#4+llf^;i#xlc7Gt!X1?!0T9cImZ~#QeDgD2+5C}EzBT=9qCxG}
z3f6%k0snaO8LrC<q<T$yHCa4G)d0L2BXs(a7uP4a7*6hrx$GpkO6$2HKVY;%>M;;7
zb0K;B{@`RO_nbVos11|w#uK0qk3+U-m*~APrA@kOmsMakTzYY864F*N8-IWr@wwc=
z9u!RN|ETL);$0b4H^|&Je2c6wdwd)#^ZHcRdBE#3>F>9mjBZnhag1grbYbl0MYU{v
z<omXM&*K1(<>L~(&*P6uI|2oEvd8vhT$k7IQhc}(8$c{^JHAtwv*TOQj5&Sj3T;(j
zp3GxgDz$tW+sWYteDR>VcZ{}(0#;P$1#Ot5P=y%}rKrOD05Bip;_ONk-X{>AG1zK+
z=xZifa}4mrYdA8sh8q%UQ0wMHmmf&(V3YJsVu(`a&t_24BFp#$7MPAbw&Vq!?GMIl
zaTZY2kiHRTC6y8CBNGJ)8n;)xVOD+A=x>FqF_4z=(u?>jN6on{Ns0HmJ4K0eF45{D
z@(#+B24tQTXld2$@awIaz(O6+6si-<E8blHG&o-9=8~M>KkU=qa<92?v2)LvYP2`=
zW}o(!i}oIOlBd06m<c+qwHK9Bd-v7vsl5Obt=(viZ)V=fezHe`0!Q&NTkM3m0^90F
z#Dr3T5t=0mT&AuzPv*Mdp>-Ir8O&50Mkgrm7Evv2sX7_-cg6e^{oVf%t-qRqDs&&T
zizm7#pjir@aaRT48IXY!J-{<4h|6Rjo;@r2;KBt##EtQjsVkydZ8%9GzH?F(qOH7r
zg^=D7N-X0;GwTan+gN=f2Ma)~G?OKD`G2Cxb4)O@AGt>QYZ=)E{VAmWK%nADa={$K
z3Q?!97zrEUs+Ix6+46$wwD&_kb*k{x35cJ&>n5X4&)4|W35J5f&!)bfI$<VArkNAe
z>2>{{>QwAgC;3L4V3>QEMO_k}l8iItn>TS)*%a`mDE4pagNuZ}c|)rfwxkl(Dp%dj
zlZdNY+JaNW)pJ@Bj<NBvJcDC3o~B)PUy7zZ(MxNZX0_@z51RIvt7&oka=iGn2~@K7
z<Il7eQy%e2cPIjO$r5=G&Gx=l%R|ttgscOG$)W_OIKeO|Fc=u;Tt8@|>sQskV$cjq
zr29XlHfRQ|Afw-!nxwq_qAAKd=)(4u7v#bQ(kL&)?4Dgs{bjA7JBO5Fexok`IW$r9
zcg_ja->37#Y;$tBSRvCFaR_Boi=hcF_Gv9%z)ZSH?s-mZRmpsx7FUu)@QT4_PHw*%
zqs3dReOe5ZhZgrb-qYe6n5n`AMO02uY&}liQ;W~w`!YNhP}KG#iafV_f+A0n1AIAw
ziu8qAkp<XXMEw2hT9FqUMXpe1nkR_N)PUrv<m!8arnQ{27eDTR1F4dU+*3Eqg<_6#
z71Q8gTt6iq>r-+r!Dpn_RB(VP+6OlPt=3wDb{efI*IJWP=_y(0JR3<pUo-m>p^;vV
zN8<#9Z<xZhi>94UUq0Y})?w<LgYiMZCf{Q?NgvK*lilJ1AX*(BFAi(F@yc}}0TdED
z9lekmI|p3Y8^1IIlG@*erct{Uf*(h{;2#uK1ztNg9s<JZGAS;Y4!i}}WS9&SJM(n`
zIcjc=RyA-2%;J<0(qSSW0xB^-g514B75`1I&lh=`fLR=EB6S<9fzNW}A#KI&S;*@=
zm5(DJXfV{VI^*M30P8DdI;4u#>Xz?w5ZH&+cM+WUo1B1TqvC145(Hxks3YJ6DVpom
zz`MaIhV%Hl%>SSGb>)3~%CBdC9ly5kw}<@NnD_JidI@RB!bE=cxT`~c0spt@_(AzN
zdfHYE4^L}%&M{XQw}yGB4e);<l|>XC>a|#Ii2p|-_(ktqjlbFI>%%i-{(X7`lR%51
z!Wr_VcsXO*FUKR?X?3_-G!V)U@?FTJHtjv#jS|69Y?#$R5eisw6~M7PWWe#gDuN^9
z>5*GgGb9J|C4C5h=VkE|&gJaeK)7xMf&kq%oQF&-4o96wv)_^&JQN*aVv@u4rG@}G
zO$;q9$I0H<g~%!6Aw(~!VzZh40uZUKvMy6NQGS(e-SURLc8k6CYy2F)%DQMBn6kEd
zZ!6kKsxZTW+MOj<{X#Ga*>WFH!n(EA^qF|_>Xj&U#;E*@><Cah#cK8E_jr#LQ!Eq-
z8)24(YI(h8A56zgz}krF%)cnS3)`_BEs%mJ{h7V^%PIfK?!VMRtRyGzMrHjZiGC!{
zo$~+6tIy1<|Au!RYt_pZ?@sw{d9~EM+8y3ih*s!ah#f(J56i1iR$Ix8P}Xi@LnB@T
z8%8E@RI^ehThQmKPb_U0CN27GqlnX%Q9pquacO8kc_kMHvYsLV2%6Y~iqvFxBN^FI
zLpZ6F3GNto|HXuDY_z#vWUl9#E7u|U{tR3xowlz;I;*VOF?7UgcLu8qzq9_Z@_W47
z|6hk^K)hDN5WM1pZt?(WPsW2+uLAM0zTU5+m>(uY-%7vB<rDw+tYN%TpT5L?_r2I;
zbdzio)mW{Nhb?%H^M&}7d{@uQ(~n|DASo0Lx<3~aHP-ES;BV|=JfvyX>lUoA?rn^r
zcWhHrKHtt|*J^$F%mHLDT+D;mIKDcA^H*rRxQA1_)3$1Zds<@x@Is^yYF2<6VmWPX
zjr^vypt0-ahIn!I-3k6&H22CP%)4QEr0y}%8vUs?;X-!5Pbk#gI#~L8b2KP=lN{BA
zwKJk1ELJ=zS5b`dJAsN%dTGKO_Z7-e*ACVm7F12#RuE2|RO>d9<tSJ`ht>qCH3gj1
z$L9nat1q)1Msvx)hr}RP4mB`O4T<^!$^cv5TQsE6aEAu*Iex>t%u{C{4wgaFg@x0W
zk+U*J0zAn~%}Dlw@w{fTK7>Xukt1W-d%C7x61#$GyJtLeW+(6rLelhc>cOQtfztVh
zL61j>UC^OtnrPtJlR0Zj8JsrF+h+~36D9X6M7y#JB+@|~=CZW(9RS@kBSERaHfC<B
zR=1$3^x1Ooi3C<<4a6Aji_fDCrjtnWW+5CZh0l;NkR#sDAgzwBFtI$dDKRJaunp86
zFvjtDS?ZWUiQ3~1&P}kA6S)6C&a6VI2;aYzqTDppEj-ObL&X*2m)sfZrjq3EeH;0n
zHG3jaZ*GE7?;~PBz}N}~?a?z*y>EvB+c0d`faCTn{<M6cnBY%S#nECA2nB*Ri>*q0
zI1SaA5O<-EXHw6F4tx>SGV!_4$AhBybgi#si53!Faf39}`&TDwo(Z}vNn=mqm2(uv
zAD83Dp(<C@-kTUcGJ<CFW18go;1|fc#P~im0?lN54K2`MF7b+jJY%95g1jv>h(OoF
z$?ddB4>{Gvm0IM;Cr$~5WYZ7zhGh6MkV7alPX*3$yp>(wb~r>RUIX=T@6R-&OjMs9
zWfiJ#5vj<Ts5jN`XP`laXi!{!PMvh|8iL>Kgmz8aS`LljCm&_J0)piVGpNM99*?n)
zyjk6Yz#y7O1=Dc}8>Cbq8m{lgzvD?p^P#0+LCsL73}>K&Jwu&xj4F@>VZCmy{;MtL
zFxHAuZW+4t{PT!)=uJD(b`<&SOu$OzlKgF=uH)ccV!X0VO<#mYMXy7>CYft$NIFBZ
zy_lTk0$-LYk{qG9X6Dz(Z_!ZfBr7*?92g2t#N<hU?0a|$dn2z9VO}YS400Rf0(EB|
z8_$VLG_8nk0AL(L6>8Oav7OTYib{xE2q%F9pUo(!4hJxNk1Kts^Keu57H;}(gyV%#
zrDnEEp)?5fhmj&aM3TvGkc-LhJoSg(BqN@U5;|3F2Qs-p%cg2cjX+;^agaR@f{s74
zYL~OvXwUDMf-)BELZ?)zdjvf=qc4SD<$RW>&899t!s;bN<Dj<pb&K6&vUNe)AwNcq
z6++Oo*dYQhgdI<BA4H$X%(5uFOyJ#28le9H$IM5)iH)184m7YU>N#y0wRWlM^s#sz
zW9y;mIN~;C{OkDjeRaqBF5EIoqMHMfRoNhNi)%2@1e;RNV_Ql{Y7V7?8P(oToj|kp
zCNDWvS~S${zLBro%LiR2NFg7lt$TleEe9co<g0V8@CG3=DLzDS0fx^#RIlsJJ;AK{
zuPH1L06}34BJg@qkUs!L7ZpTv&q6xe8J)+k!WT$d8Pi_`f~VwH;0w3|DN+o6&aH%%
z!Z<~Z@rqxAIQudO=qh6KAc@SlN#2moB)@<D7n@|GFH4-;bBq>pE&vm0+WO+w*a&r{
z73R<Y(G-kS)FlUKp%joEz)4s(^-E3sgb+m_mO$Mya7Sz#t0P1Eud!<1Kv~h;-iHjx
zIL9e&!q=Q#&xst;6#G)l7Qxi()pLk|1bW8S@sSf)_Y(z+(2ys_xOk1jj^>h6K<p0=
z_7M9}Qc@v^4QLX)fh*?MRd3R3xUQlZf$}@~g$wZ!z^P7_=i3nf5j)oqgy)s&H#)sY
zKGqp;RCnz6Nq_q`XgyA)ZV%rt4uH<~@x2{T1nwA3$WiZOO4c*g)tH5IF~{F8+>)jH
zg*_;5>GiJ5?lTIr(BkBtb+sOn8yAIr+;?ZW5yQw(MivAqY1ko`5TLC!eK+zWxiAFV
zoKFy^_dC?7%3~h{HD@1Wa!MwA^8<4%#n{rBk7kxehXeXA%qork#zyB<`&+gVDppBl
zt187Oij63*)EB_b@=Klk`-ewLx8w|t9=oR3fQ;eJNn4;$TZTJRwq%`E|BY2&fU<{2
z4%sq1GIC2+Y2>7Qm6c2G(OW|!vg8<^VS<gWBd6U(GMN1km5#qzz2*n<R`FMk8aCba
zdZ22LGlAxdnOS#oi^rI`jqgXhS_`a~lvLZ^AlWSEVg<vUkLMzWp+RPVcjQSb&H!U|
z#$AKdlfYiL;pEQ#kxq%XnsLKF;8TWN_0?@tqn^+%$uhA4J#JD%%)>}2%<fd&lt%F1
z8g)E=##TxRI3h=y?+yX=K+Sm6;vqP_XWvc+={}a9lq!=$I}m0+ODC}M*7&eZ7m6NJ
z{qYpdAM}ti?s7*XPJElL9Cb^d-EDmvnW82ZplSH}T{4EQH%F#HUI{~F2aXHIS~Z?X
zcm0$IKe0zURh@-xI9S-v8xC<XL#laE@7jg0qq3wriI<x~s|dk6*-MsCTo+ALt%ML*
z$lkw*-&ASI6$39N+9Sk146sUSXJ~5SAkWv7kIDzCozV6nX`Dy4IyL~8=-LK$jD!^e
zQ=M7Da6ZL|N0Q-aJqV<L^f|igC=^;fZ*ChAO}sgi49TT=@aCjh&Wrg;SzdFqU_Nfv
zP1Fvb6zKgNqkh~Asy8~#tEp-uUUA4)Mmmh|;1-~v3|L=&YY_57Q5;X{C5J!n-kp+9
z%~~VqyJHIU^fr8Wm9pMi$68XxM-YTL@|2v5xL*gr>Zp3rl${HcPJxxa8s{4$HFCQv
z>;_G6FO;hZFh7klXb1)z**!iu7>z>Yr@}gYG;mlhj9Ml;;SvPlxQ=G(0`5ue1g_l9
zwCL=Xm^FQL``NSaKx2p+U-c9`$O0aSxde4*C*bOip-dkaRM$SHEq;>}uP(uD^8<|H
za!-Mk=5)jl38;GNNX!XDd(Y=ZE37zO{(!3b&na<4d&rhp3Dl^OH$z0!2zMZBuJQ4Z
zjAwUtqE>7Tiz1K1a0EjR_-QUM>tTavwpcezeSsteE$X>H`g+JIEGQvgd_Ed-j!zin
zs9wW~;d*Tv8VISPJL6(9><Z$b8wR@tk7ZHYUH8}@Un`TNCH86Z#jV57Z0%_FUcbf8
zmXQ+N)V8)+_1_73P1rC9+gFwa?8Q$#ssGvh*8XeT8M!K8H|^{sAH(<A0Pfws+Q6em
za<**p=|9u;Rzfnj|AvxDS;-;o<)l5xUnTriz+XlDRj8iEG_%`yDjb_%si70Upx$B;
zrSxmT7nO}+l|Q+jvh9+=LMW+e%fe_dBA{&yBi~4BZ49kFsFS^Rr)=zr&q$lLbc%Ij
z&l?TA-J8@Cx}5A4mvbjV7|QD=egP`Ky@#m0#5l{Q4xp|AYM+DjMcdf#*?H0IcXg^D
z3<I;$UKbi<$#Ax__uV@`g9~gDD!}dmze>C|f+Zq*nBAL4Yw4n!$K6F3xyNLqCXVd2
zrl|cM(RTG`&zsE9Ph!_dlRSkYSDirpO+gTu0BLJ*tYre*)NwVil9+G0Cwcxu{E-wq
zgK)IuAZTfo`7S9(Jy7A<1it-=4$ikdjNN`?3PEQWf_y8b@`)X?=^AL$(gu`-y2OQ&
z?gm3hI;WNHtj;xhY}$#zM=m0%vdL&280*J?B>R6!<29-q2f@JjOGtDX#t=5m5q177
zSj$deT<6z0g)@fQEcKee0_g_vMbL;T?-6LBYZoBgAR2HisF@4Og)S&VF$l_QzGYhI
z!%-$QfuMY|I6ctN^O;pg<_Rblx}aP^7L;J^)W#ez^am4B>K}-F#Mnl!I~S?97zp`5
zdreL5S=R5|1-&ti2vUdhD0i53?w3KBQMC7ma;d7Jjc17u#5T5l=nWwBcCj2v%kkaW
zZ%T&Tw|Eg1qTj@l3nZf#Gh6>x4e`H!PlpHl+NN%(hIo%jg7_r)$`_?6=LuKD$1s<u
zS9Z}Vpi4GbO%kd+rAB)QhgqXNryD}V@vzg3v`rQXPmv+41Tx856v3<TBApM&E^R9$
z4uWeTvVmjo2%WJIIp*e}GZseaa2>@NV@;SRa-A{4zu5|{$nM`X^=Oh>!V$%+aRLHj
z9PU)iW&uwmh{=K!+K4Lk%S+W#c{vW2R?BmW^Fv@JkE`sszm&zhly7d(VQKfIL`zRA
z3s{Mkx$epPZ)=1TO9(=dC#*7-F!Ta<0tAjpUNmrHciH@PG)oC;OL*&RV+p+_Em6(M
z{!asJj_!$#41P<1c5;f6C<03;Km!Y1OUP5J5tiv$LQpNiZSw=_h>2)^4p^9^KO4aR
zRDZ6_Rh4p2Rlr%Q$^)0QkAI<5{M)VpIgWp(WEVfk0+bBXQ~xZ}%2Z+yQfwZ2WHidQ
zG16p8G+f3r7#;jPLLN5(&F<<)$fWlFdU^kIRg%0rx$?evM54SS-BRRzp)2oWC9RhC
zwCP6P<;bwd^4^F*NuRvm#x3OC?}qg9eq77Dko^ICX#Rl+%B@#6XH7hp-~d(c!E1?V
zHhzHdrelZfg!86vs&M-zS#e1Ew9OPXBI{R|)%?7wszM_M_@$RJ9>ETj)ZZZ6lgIYp
zPoU)j&JmzrdG9>-L0!9ooo*il|Av7N)s<{_fgD)Fg$x|Vi;S;-Wz6s%WMl%G;kETf
zEKOO7V##sM5IkeWwfw$UcSt#E@Sl8QDNz07_C1zas0wh?JX_s)J(_n+V)K&y6N!mW
zvp&Ok`K4%k-<8b>mzN%$vxWVeEaw5T1bsU~8V>0;ZC4n#Q^#U|FktX8lwctmTJ=d#
zI3$a1IOUUj<>aU}*s90$Xw^@m&|@Ot;n?GM$-^u}Cd_po{_D8-!!Uf-a@05ux>L(-
zSK(5`4ON}ncSjqHSetW<dkir>d`35YQg(IIc(COM7par%Rff*B{&+7=Uzlk&G`fa>
zQPq6B9Wjo(obV_s9cqM(ONg3n$RiHCEUJ+um}i?!zV+W`IZyJ3MpwN8QyT5Od}w5)
zIW6IU>PJ{!5lb#1Dgq?Eb#C;MQlko8=mBLl&V3X|kKL~y`H-8)7dw~8CoJMx3~a7|
zGkHa^Q@|{4g|Gkw@t>I;5*r5lD!^`pk70sg0bX)~NZw$of)jaUuuh>0t^-G3&>W5P
z(;1vULob${n2F@mwzfzqPwT}dM_)B}_592nnZRfsWk-jWQNhG}035rYa=;$6k8V35
z+Tjw-Qds6TTIM!2|9;qn%#D~CI}A59sb+DRa+$9uo%*kzdMnEd3sE!8?*5ttCdwhr
z(UZ{p5QYA-9>c<!{fIoy;x}EPT#hYd(ghmAHpB*!qj;zr#6EqdnQYRt4uW)$NelsF
zK-HOMv+y~3$|h=fGi@1JwN$Mc3%>GmWuH$G=dX;vL-dc+?3c%F6C$gOM&(ss0*4$>
ziH@CWD}DugTdPX<i9w<$EJ&6^1_h&mlRFcNZsNC|2iTEw^4t&XDfAMk1wG>xsu7`+
z&0nN1dd`T1qMh8m+?`N$^;FElqw$p`Mj-{P9yDNHnt`R+!g@W5@LJ(qjPC_;0Pu7X
zSZx!&8Eg$$4HrsUG!46oMCdBH{<At9E9Vpy+6=qk;(s?VRgJn$hh_<0z^n9{eCA$z
z(&Tp#1IZ?*tMNHw|4B7|ZE8eiaVDRGptrT1OpPna<UwhetS)19U)j+?C{t^YbSfMQ
z3Cjd-&32t?M5ViIhIinpG>sKi#w$9E6_G84#D;SID&nt-xMWofaf{6xf#M4n_k!7j
zdrsiX_c&w+6V<D4%M{*8*FZO~_m&Mk4NcNdS@=l(o;yB%I85F2t;`X#W8*-8^P-)w
zlwj4)kOhUo^g^+!U@banFKj9qwrYDp=S!?byX|RhR0eEmh=iq1VBoHPvWs5PS@_x+
zdlxn~KZ7HVOY>`RZ`FSUO(}J9=OfWTYf<s3C3S7p8@Y~tA_oE|SPlEII*?FdN6^9a
zSz%)rW_M4mCfn(Z&w*+9@UamOAJaYAiN)QlhW$`7_D-$a0%CAq_dKp-ED9p;vZL1o
z!8;nAH#s^T`7wzy<c1=o%r3%(->RS3_;qJ%(K^`)auQ;^u+eKbI6=@gQ<xf#uN#oh
z()lvne6?FF$#iPkOuZyi2z+#gqhFMdzPU`}1gxF?K-r4eZNM0>5>63~QeS+dM|IK&
zJ{qsq;!*RWq;yM?(}mO%OgF1IJ5*eJShY-Ic!i8oGyUl)of9!s%Tm>N9Ao%j@u<){
zvA?I%Gt!@r^h{6#ndflifmq*c?UxZdj@iKIBH6|1LvQ=sH*9QLN}+PBsQ$1U4g=sv
zn<J8!=>00O9bqeWlPC0^RuIg{2pxS|A71h~-~{hF_f6p4`z_!d46P_O7*+t)z+Ql6
z>JgLs8>XIYH9TN|Oqy@^dEbtF=53?7L6lkuL!VB{a#Yn<KAuByUP(|KtVm|4VUi@U
z_w}MUU2s9ACyD$K>39Sxgwk|MRGMB}b+ND`dKB0Q(XRvhupQ8WTQG}7*#cQcqPhLo
zumx0U=0XbquG||d&eb(cSZQajF?PWg{Ow<fEm$_zulm@YGDAg8lJwL}-Jz-3h8Rf1
zBThYG@-R=~WFtFF!fwF)EB3j==bchNHeQqtjUMK4{`#pUhpB^`NzypXN!4Pj2Q_7}
zz*j(D#_P+~`m*gMc^A`{^Yz1x`tAdLIqeF-ULJ^Z0WS&fiXbKQ$KcmEpewu*fmrj|
zqbBI~uYGt|BX~Dj@a_kLcV$!!>_+S29lvo*z&ma}3F{s4V?XW*+PzBx-swqHfxK@u
z<UN6O9^|bj<P9L?ontjr3*;@y4^zzCN&O0WK(<C;E`8n`ih$T1o9w1G@cTVGa}&`o
zORy0Jq`ls!{;8pGKu1uB@&pRQSNQb-m1U@#zo2{q#p6VykHv*hIKT&mD>SP0aJ5<r
zQ)g-j?X2_tFxKRAp>Spr6zWX-N~RE$!9Zb+@EXkQ{DW4!s}1x>dJ1fm`WX96Pzk+9
z<JDVuq@mDzI7&U2oGzpuWV!?>^rfHXPfsWuAW(QM9;ZT~FW*pqJ`IH@GmnA7SGEHR
z4=_+z;tgK<AV%XoZ-Y|3;hnK*0U&m3zuh6wm`9Tj(yZ(RXzT%fN`*%7QbVK1%f;Vo
zXe^2K($I*nyd;8_!x%v0c~-+FfkqvCAUiz1D-YaR#6Ae{*kSMZ%x>BZ&HIqUm8#Or
zw*<fiNMY>M#XNNk*04O`05hj2XqaGTFMLS_4O@4OXxRI>fSO_#Gl!#MU}jFDc717p
z1hxn+7|iq<_|bP-Sxz;W2`<yw0%oFV`$$XX8>8A_HSDByp%{pe42SC+-<ox)X&N5V
zbJe>Knx>7wq_4keldtj{kAUgvruFH`EHq@^ZNPNU<V)k_VT=<dVccUc-Yu=>L`IdJ
zxy#Ta8^wYi47gO&CLcW-%l?k=AA+m?nqK|(1p&~<pO;Gyeb-H2?$!@y>dO!Ma*Mu9
z)|btfal9kT!Y;ff&sV%hk`vccFo5N_l>ay;<bV&u72COWGeOu44Ua@zt_%&`z3rh<
zkQ!yHy*kW1sjADg18wvlGA-cSGFn18N8*5Wz?klCIDUEv@x<gPymM-<l<CHm7*aS^
zMI9a?Ei>IQs<+G%yA;jF=UdXJun_PYGq+2H2l4&|<7uVG)2C9yrft<j(x>$(7~^S~
zV8GyWF*$*OC%MASeroq(`mv25&@8`355a05CqA7}rz{FLXggClB=E=_;gabb(utu#
zjVNm<%i@GsH2Z)bPt6#H5{En8J7Mjv;+$xAl-Rw~Ic|YqAr{Gf1!lMfqJ0JDL^^k3
z0u16A%O9_HL)7JtY0k7|Y$Z-aAs{({%NB5@kurd_=!uY{hhQqr2@H1MpnTK|;I_dq
zkzbDLf;7!fshowPmp6_AzaIralEF|WaNrpD>G+?tQ7N!TD4P0L)U4SCS)-rmRD=Yb
zpf#YmZ(H-;cH8n&>>=8J`P8A9!P#Z^e|KWl(8z!6u|Fb;cjO639Xg@J?!RN|ArnUo
zjh?h~X#Z`Y)ugJ(nhyb?zS?D3OJPXFC3D9@db0$O!OSaC(yMcxl~$aoFU9)OPcCSW
zPhT(%flXJ<6bz&OuuhLLFyobLc!kRFD#o%zqBeYz_+h%1gw<n6i_8%bZ^#hn_2c-R
zYGO-G4$gnfka}>mFjDe<wz+TNJxl1y>#b{i6^=34)higr%6vmz{t9?L7ET0PZ>|bg
zW?!F`lKpVEb_dD%8g|HRYAlM2cFxD`2P{Qzem>6>$TP!O!D3w5$`a&sTWP0OvKFzj
zf+DDdNm&VtP<wloJjxO;T50u|sSkuhp%r+<e~V#;$bzvX%n*z~_?`2j{z3<BVq0Sy
zv*Fo+UoA*Fw6+m?q+^SQwxRb%AMq}CxWfA^Brc7tERDRu)Z0*QDW_&@kX=5WpusaR
z2+8aSdRe)jBgNX0B|45<2aXqsM0DVI34h0paTsFY^>kWYz9d6y3+W(&+9J8Wn4gs8
zAU6wkllj(c+wUN>N$8-L?x5FUR@iTjDtq)hR3Ov+_%1Efn=KQP(P|+XcvS<^WANH&
z<0a{foMVb4B0Eo-BHzl$G;@or8wKeC=SzXjSb}&_2c5OSsQ_cQQItVp)6D!lA$N`m
zE}L%-#s(WnIXBmq>!L;xXEBy(*@!Gcu9QGYtlfu6>r9ps^v~E~KpHM%70e^9VWu2b
z+rsMHDa{P{tv(s7bk!PV<%ml=Gryck>Ki$!@eu6_`}GOyIC3QsLO$xNBJ1|&L?bd6
zG80}FNcr7?paPMB+b#~GK2pLjVL)Mq`uHuqTrE%-#7t*q^$~Jf#j(}x*CV?s(!XK3
z>g-Edo8WJq4l4wz2C140$z$}a=rY~OR`KPq#kO$YOslJrIH8VngZQ$@s(Y4jfksFY
zG(zTF!8x79+_S~xu+w|-1Dv-)No^RgigQcV*m95;lv8H{4-HK@9!+qHqzq_BCClPL
z5x-;QAa=dbhhY)=%PhO;pL=N~K3G&9k%&wW+N3acA1~+V2ci=oPUr6~9}MP+6c8yX
zHP6ov%KiL&CHD)Z2S)?6X5~P_R^4#o4S1lF;1paT$J~Rlx+qL|yJVs*N;H&?rPFV~
zr9m_!WCRUM&rsn}z$)-K$XVB?x&V<HXVm3?Xw*oUjFs`ZZ_JpJ&waYBy6-`zRlk|U
zqNSp$s73S_6lkd!L4s0E2|8<1EtF`LTX{7paa9i7%}_sHVkp6E*r~F|2jW)YybIXN
zwcpY5*mF=8*1F(?l+t9A!&8r$`RkFB0Rbd_2IwWc;k6b7=r#8uG0>l5?(<A>dFEbo
z8pdtzMFL1)fP3((5Ep(qLcZa)ucU%*lI#day&N(F=t+&wvcE+HI?+`f^aCwaMn34W
zAO&JU6<fZUH*q|E&Ez0I*{85A<p$m4@KNXDOn&)$#|}2Y87N;NNP@8|D{ZH9w`lLn
zww{`ST_x-P#uO+<s*7~)1|oY1kx5ma<5uYe4*%NVIci-j94ckI{NNjY(15QUg_Dl`
zVrRWZv7;VMrs)#h!*1?mZzXQ&$gFv^uu741C~E;5UzNzN#%Zp+lS+eS2{Rb3-v52;
z4hc5nCmJYFHy)0!(=#*L`|@Tsz8ZU*nyMl_GtuxYX?Rj~BYf4R#no52MZXhxXRhmz
z5@(z`-3BVRx~mvY=j*V%CnU{D01k3Y6d$Mr0K^iZDm{>>B=hy0lm{{vk#cDgbc}M1
z9ZL*%vM-l%Jm_|%$GVP0U9pR#m+W_{SDiqgyQHqG`}6=-7hjg-d>?>RS2ssj*Mvbk
zm%wONvBNRMWmGde9c)0s==)eJ$CHq%h8(jYCBnx=E8_89wJp6uK`N<>B*sXrMH)|H
z&-u#%6(vTgT?4au@8mx56*UjQ3!3Qouq7fhNl!>qd(Zc29!jbtDNgqFk`o+*#C1-Q
z(tLA<FMW_vk9av}>TGni(3zX&p)hU<&Stn|6=|~eYmY2RFJxVRzgM^zMCeGC>*`Y#
zi3DYN(k2YUF_XC=HfBcxbEPXlB3-%5TntC3OK>hTU?%)WlgYyGRKNUaMDmIo2X$g<
z%9|-kiiSeCcjjJ0AtYh$H5At6+veWwbjr-VrV18m?sfS-(36Vd5Vmuw0lg!z3z!Fb
zResQ`Nd&zWCI_h%hDrDqTv@gmAFSW;SN?!z2p54SrB3I)21m0)U!9t97KWy$&_QMe
zrIF5v=$(=$nv+z?AKgkK7?Es<T`!Yo^Ya@;p=auE0SPCfRe_K1)HcugPqBHSUu^!t
zBF1%?9FUsi0C6m-`C+&w4@h3PCh#z{+(U_&0GC7+?N1|>z$6b7q}iGUG3=y(_djcY
zj*Tr6TC*p2Ta4N>Vu$kl5N-y#t#4zjCvSef2-&$5E~qc9Uewltcb6o!I>rzNfc2Nv
zv3D`-?AwSqzjBU0U2{ZjuG=$@j0Bss+k>xY<bL)%iV{9#+d8U-USt0QsjTGt`bPfL
zNin3rBb-SseP={xbmIh=v6of1x4es+o3I-)p%%q{!ZwO5PE(@WBt^4&<C=?!A%m`c
zUGr>a(51}Ox`>z5!`RU80FoE2w7Gr6f1p9s$Jx@R7xQxjJz$)?)~~!}3<qYSy%?Bj
z6~OqIiD91{$r1h~69#IOoO)soQ3OUs!$m25R}wXJxmxdW${U6yLdw?v=!OZRgT>`i
zy+(GH9OgZ0nju%z%&QYP;vzoA5J+z8^w<^m1^V^$bKRBTI#UAVqbl~&QA{F!^k*bd
zoB~shn8eLL@N;@oB25D&_FdO^V~lJq1)~aa9qLTP%4D3oo5=?>QZsSB>|8-ZE|5Gr
z*n*!KufRPAxGZD1bI9KO+H8iTc~n|nijayjR5+~vKc`-A)%E~P4I8_$^1NuMHvr+q
z{0j7H=Q*Q}h8g4g9^8~-E;J5T=iaE{ie$=LSS_;*>%Y1>$WPPwbu;Fn*pcjy1#uJH
zgo9YzQ5Wf>Csg0WUueO4w#;Cdw2~NBE-zCsY~dEcFsuG^WMcEV5@K*{FTt@jc;KV=
zeuSfIs9(>+&(NWON17knYvOzY`BBQRRxd(ktF|-8El>=ymWm-nfsH~aG=M5P6u3Bc
zT_uxIBEzCRd+_@{k~7o^(Q{mqpF~QIA%!*aRVjNP<Q1vOy_TMQ{~jwci2Jx9qD-!H
z@@-z7z|}L85SKNJC#8-#Q6sM8Kx-uj#Kn?g2oHth)Vn~k{|x9Z&2ATT$%@z&EX(LG
z*-AFj&I?E)^kN3DJge$4zUcq1)i9qw&_!pV_u)TsDF?q(yXYB+o)x+E!6`)Ep>-&f
z+_n#W*LJ!iLd5m_MBOCt2Pg@%(=~9^5Ok~X=|saMT{ed(VN!uMkRr-@o{X25<S&pb
zuu7hLW2{n>l|yhHl+%v>J}TvE{T+<`pEjK;j(w@qeXp|+Le!VK%eoSDS1OI$+9pJ!
zlLxUg=zc;0x3TRYvP7<P@{4$N0+-zG>Vkn9X@o#cu&>qy$pH~b4v2^)#T3_SoZg2>
z_Mg#(m-gvc7bJQM6>K*A6k9<>w3XPctO!C81wlImfzb{@WIV5=THtw=TxaIj@ahEq
zh)uf$LOF<#SA<w6Q$wsQNnp0fonU!$w?<Vd6cUw6T&;v@&XWmO^sHv$^>JPShBEOx
zZ5ii*m#V5i$xL$VJh^<QFU|V$g}w|s3v=a<$I`8LJA?Bd*OSYmNba<)8Zn+WGn(cK
z{ci!6_>am-2uP#<2*efrhn~nx0VX`Aw^80`+Gb{rjwpd;pr2d59MIZ^pw!x?N}R1%
ziuq6;viUL+mqs(`lEDKUm^C!g3TH1L^YP!6;v@06n$;Ln<GNcV^wAxkbI2V}b-piE
z2|j<nbsQpz;ESDwY03+S)vufi(El)2BPbu}Dtn6<N5ixc!@ixnDNxUt+7K$vHsbWR
z3J@#OSi|eIWn>(dI6fQ}Sruc?feNOK7>16ac01k-!|45-D8r9*6<A~0M-Z31^i}X+
zVg=|=jR;HyLvfPqt>+HI4hPfkk@_)#<r2;FCA4sS1rGa}0<oq#OWNp`VoGrO-J00+
z&WQ!3G#$bk8hJxL*iz%}5oNqmUoO*^<%6Jww*eQD);B6BfB^$@pe*bVrfm%hOP<!#
zdsyGd!@W%TbBiG-@Y@|l+?ECFSNH*EER-!llKk%PF%)3+U^2LU_ybRgOmcdUU60Wx
z<^k)cunH)s06sYPxG-_1`P$Y5#d6kBrW`RbA_;Jlqpo(maUjDm;V<C;G;TGar_kIo
zp^VV?LTLlQO%=-CcEotlgiMIu<)<ojPYXP7MIGv1M4zhygr5H++JyR53|k_aMpr^c
zzvFYv5u>fxu^6xFFGPN}6>kSa?NN9ohS|4$#D?O8ltP0(<udPhFz*oW$N{*_DFK!w
zkPXexP!HVhwhW{o5&$kM9;aIPU&a{=cd`#+Jp?ker`%%}v+*WJ-Ht&sCg=f!`dMdu
z&nFX0<^d-|A7E<ms!^^yI1INJ10Usk?HfRCh%0$r$s3z$K2M4_%b!l*o)1X_`OS5E
zEwCjf(G<{d_FZh&6motr7ZHb`1`fp{+}^O)$CyWI<nHE!S$LONncx6!)ZZ8t=>`G2
ziZVlp#5{rs)_fZ41orc2DAh~Mu)+8?#5wAXJAE`j%A|quTin+qckX)7u&%nA4XCgq
z2ST|AZKwRvCMWRHKiE793M8U^oFY2>C=}-ejxnj!3k!81EOKM~PtuSU)nM>%Zc2D#
z%Z;(9Y0GF}vZH8)dZQ9yq74}3eGbFKkaDF=8wHkrPckIh0m>Eo6Q4SPH}BO02sQsV
z?9iay7y~rMPUc&5S5m*%*Qc+w@46UvAx7rx3aLT@#IaBW?#71Tg?jjOF#i)@Y?iF=
zqE#|JVTBtbpEd8rRe}C*Of5kWXb&8H9iG^y_Nz^UoguFe47c=})J1Q|v;l9<t?u$F
znw!!54sI?8ec${h8d7(U{*W%X6tiK!EvfqvcI5>Ab+7vrH@)WhZocr|kQzUJN&NO(
zWN*Uv7kaw{SS1CENq|ZozTU{Mk0Yx}86+EmMEM!P<sz9W`8K+y&Rwt}o>g}S9^tMV
z4y6rG9C=nzQ|Q2fwVOAc<&>duJ9|w&VPNg&o6ag)QGJlzwsI)8Ei>m8*M6R9XRfuK
z3)-6R#(H!Obiw!ag#VVhR5%#1GWY^QzVs9I1C@3J_#hK=c%GyFvCbDs#DK2j!#gjq
z8o1#>c;~s*qfh(Yp*SKOQ?W!LESNPc!W#sZv0JVhifd%)&>icCHnp5F^iVtm!kz1M
zhdQ(IuuGWT8$%=OnY}RfDLnHes!>_>0jJ#xc7*09y-K<b?;LB@jfVk;cTNnw)BJhT
zYq0ee9>M140dLW}x*Sq{W=ofKSTWSEH)zp<Hh+`j3k1sxv9QlWlw=+jgU7x<QZ3(t
zCxZZ@Ma76nes|&+iuHuSMax594tCCa2qNt@`5<U21<I%Ifs7Ie>KGkHfHaVCYp+S4
zBtGXIh&8Da->J4)q<jzQElo>rflKcIS`kTh3H&UvvJMHE<Pma(op3(vKRGg~^?#2;
znZr8Jk2+;}_R-xm#5=ivyp`jEp84w3gNQIw^0T6W>)$6*TlFJle3QL!4h_??mk-H<
zwqa~Gq=46G_7J4Q?oWl>DJq9)mk%kF6bLaZe``ol##=+OusDW~p)8w=EGQj47v_nf
zfmqN+QXENaIq%RzkbV$)T0>^+O;b4ozh+8w4x=*bVn{wP+)`}S*D*aJF$Y==+r_yU
zNhcI`ghHj$=(CzizGI_oHgM=_JM(*OVhm0Ptmy#E-@T&4vXGVFpMA)HAgJKr$O|_=
z@Kq)WtRDnuj%KgKg(i81FUImZ)DL>SaC0e4ZNdkw$hSb}yVK3*##r`Eo9Ri(B;J6X
z$t~N?2=Cfr)z{OHaH<gZv&3+0x8+=ghow#lPP%WgYB%x*(yj3hx({3R?+9~uTebWW
z98s*Hj83)x+KmqZ9=Gb{qjAl@c`P0Fl*~VWtlerk{+w$EhJQMO@ax5i{2N^C=O1Q_
zGSo*np&opgJy7^}r(Ebb0G?|=(*7U`0r>A)wcS7l#qI_ZYBtV8JUi7E{*eu*o1HlB
z%IOF~WWu5uBrA%o;rJ#8ZdzAsri6Lbw(JwSk`IxGenS5hQ@YX*i%mq=X*Jv>oj^*v
z5z&woV^|Y!JoHu;h2Y+(Z(bs4D7g7aT?zC`YJz@u&sXotu#t`g>A23&p*vlWGWBe$
zp=%-q#)DxXV?0zFYu@~dD)T$-YV~m`7zGN(f&%eYjgtmktw3NDK0HICg@613z~^vy
zUwmc8Tky^<gcn^9_w6v&rK<R{lU-z-?8hmJ6}wd?akK*JC)eQ#tnqZK4&Mv$*O68o
zH|C8E64zu!4AI(fQCi5*NK@ZNwR$u>S?mbBnTuCWVASkGGt^6X7JCd2u>Ys@1qbNM
zLlL>l(sy_2yW91pR$sR2%a{F7LIz4m!oS<urUd`Ma6^BF-c1!R(HsGTVEv*ZV*B_7
z5wa^j2n_Dq$WIpO!D?RWq!k(_U^bQ7_5OB|F04?#U}XOebzAQ1>P{z_7o)fI`ivxc
z`|J^3mteT@!i@&6Z|~{h_3Q6wyk18%bh0z<Xa}$FMLHL+XEAMic#Vzw@R1(Fj@zJ5
zg4(N6ar-lZ2e?y4F4!|l^G_xtVcCad!Y)s-+lD}q4zwf1`PxinUngUx)!jKUAQ|lD
zIW!ZiZkC_`iXq%rv+&xM0Cry2zp||QZ;Z`AXl{iZ)hxtgmUc?<B~}AByevM(s=I~P
zQ$uGLUs8Q2$%09A&nLd9fdKx+$O5IuC`Tel6B7iHAWmKEdr^LW32lOF#>~(`X9d+(
zJo4oMmJ2?_YhCTn!!g)wQlNFtcfb<+um$o4M$Y+BJsRd5CFFpHPr;sB7BS3YU+jET
zR(z>de>d{s6Ru;h(Bbh1LIe$m=#~#jB=R63(nE^`lIELH9lR`3p-BpnBt#(!eN#YE
zo5VSbI11E_Fn<vPWAY(ch)8xSFTUBTyNM)DwdyW~4a8>o>t*6opgURW33MpFR!tEg
z;n)hchc?jm5=i_7Tx-J_Ngnsy^W(6ih9>fFtVzgy6u;c3^W-Tp6IH99XrLfO5WV^g
zA58>)0of;>NdvMAg;xmu;MD_J1Kje`d+0~Y2mYYZatwG1v^*{fw2a_c>?k}?-xlK6
zD+wdEBs}R4{RaLOa9S$J?`gF9)OCqw-?b880f#NXBu@7Gx3>cp*CL$@7EPqyfJNM|
zYu=Z3gJ5KY%!qR04%>sQm^z#cfvVsOZh}Dy5cvA*eX3t2FYS28BzQs;24jNg(F)Kh
z7w4;+iC3NgVA4O6$;{*cf#Su)d!y4X*8Dx5QxHzz-3a*G2hU{bL)~#aemw~-_2AkU
zA1vd~MS@9b`Fp|&&EMOY#L1qBqSHFh-H^`ZuN;@P$NaUh>W8uudF%&TAAbW=UImI~
zS$8-TA@DS`H}9(-GYrhJBf3k3f^^eI|Iv-=R$a#gg{%ZDq?8%oA!3mUG>%`fvz5<T
zS!F(Ht7JxeO1Oe~VYl@4bo6l8*np8LYT<$1K>m70@f(7Se*z!849VSD$Z|U6mGS@+
za46L*%3$t8JpQ<llc@fGOEMKvb~-~X8VSz+e^0hdCyB3Sprs<-crp_0w-9?B1~<|x
zcg2NTxt}M3If4I7hjN$VnViO;o<9b^j>W6Ea^n}90Z*FKtfE=a3kY3*OTmOm_;Rqu
zmmu*40Kh*epa2EnY&C$30&&(NJBz`#D}_)Ln5<|R1M3uXB!y%R?a#&*A`Dm>XLj#!
z0#o)idxzY;58WOTySyX|=dWTI+PI7sSA80+?XbTFK|UHGkzpgsY#s{j<lgcK*Azxz
z!{RweYdbd<ViIs~J2J2k`+fBNJtpKL{A}3?Z23ztLj~~wVBGw&kOEiUPYS6^^C*#E
zHSB0Gd4&%_lKA%+3r*M`g*{(kad7fJ)#JD*gO0qqtoYJuL_V=85#zgjDN&O2p<rC-
z8Oius?r)Ni3Mc)6<TR;3d=Udj;~9&)R(Fy5__>|?vlibZ&S{F>2&+`Jze7t-$FBr+
zN!Evf+J8k~ISzOMeJEqUUKwr;PTt?D-wEs%kBb4b8*meDg{O8T05aTqtksZ-_J&&z
z<JooCor-<bzuypv_J%~3))7CuP!v_<3rW}Cq~hgY@KW7y0pzy{CHV??CSJhp9TjjL
z3n-KVoDuJZcV<nF6LC$vj9IlE5OD)us;%df2r|8bicW_H^!;XG5X4guAV2RnAYb7m
zagj|>!=u-laBHED{%@K*26XGF?r&~G-BnUId0Kyp0IA{P<5GxK|1{a=1U^Sv*;r>t
z(2kx5w+_2>JELJ96A%IV)~$!z&Y(<8m*?5bJFkUk(BXsS&^JHJf#x>WOlDngBE`jj
zg|jL8m?xh^spr1=K`az#00)4M6%=(8`Eo%pn!7)VT32n^ku#AAgF|#8P0h99K&Zcr
z02i@+VxS+}H4k?&?pPdd9d9*E2PNUwt9(pa(daShI@7kaT2jWs&SlZilJQpke&T-`
zCe_9Zsp+VYOIXO>rjU@2ib3%LF6yX&Q(3^9Wtxhct@@ebUm7a@`#PKAiR#E{doC)l
zMT<&g=IIkV-V%uFpVxIDs=c>%B&tdhm0naOYS(#2R5yjuu5WNBq7tQXAx7J2xV3Aw
ziKY7qK5Mu&+r9lpZh<w8u`T$i4m=X2JR*K=5?+45MyAC}%c|#K-^I-F#Z#*XYc!0?
zDFoDSd=memRU6TadcQ?r#6{G*ahDb=6A<+}=G|jN?IzU3u7m0VRL$LJ-U+V$9>3J9
zH8RJMe*~Ir;Xxw2CgbZS-Tp%2YXR{UeJAF_h_7G(SLqDCR!{Mew1`Oh=xd&h+<2=8
zVqBdPvo1jIflcZ#AA^_bsNvL3wzJ3wVt4&J=mW9eA*Y&kfM$n)m`zAF1;PGoSNi&q
zPx_aknLg=rbHH$`NPjRn(kmaV=xkV#B>#u${U`1JH-)$&I2N>{qw{#QQE4>$g(cG9
zlhCH%Ez)32LIc-|F<}UQN@f5?o3VtTmY;kluyrc<@Y`YF!wSq$=9gf`G&p&%RsSzo
zmtk?JUo?A|u7w@c8^~cgsHCRj<zp;vO)1%0>YUj&6w}?c@1iIy&3xQ~c!lblQNgLz
zr^9SM7QKvSfA^{<u~U3SgXBbs9mJxmrD(Q}`xCIsx$k_xv~nn|%{|jgYbZDFsQ&>;
zK*TYI2;9M?x-L${BU9q-Loc65L_J=rZRfImC}V1Mh-V%&d<pd`MNh(^B6c6jtnMGp
zK3JD{C`g>4OBA_KVK`Up(;>vIvDEum>c(jHmRE!y-I4Jkow0c(exJ)Ulb8mF)W(}X
zVYa{d+(J!#zJI&T?_|~g6G^1`km_Vz6{Wi5=6I_S-IYk+LwKono?}{lY4zCT#vZ2&
zVq@>u1$m9lN-pds7WNDaLt}q<*=y{zI-@l9GNy?zO+sVWkM=hf&CF2S_e<Yck4I))
zoTFB?lM>AE@R}1%xc30N4YLop7n}W_GZ9yY1jYV6Q7#t+VZnp&JZZczX>_9PiX|2Y
zL*0wJhO)5XP3Pin)#CTtu4irF1Q-k?(!MWvdEZ!ndvn>|&S*vRGWF?i!JDWLLzD1>
z<B?<<1V4?}DOg#v*t5KEZj6f`Srf&-1~1hvo8k|*j?%7x6mUwsfX+8{P{3C#;1yFq
zaH8x(=SSRsj`X*)2itiF{t}qeB5opuYRzvT2J9~D?^BZaaU^@a1UxnU$r!8QK@=Bm
zJ>F`VCO`Zfy6`2BLq~VSp?%rFkB4Xu9Upo<xl7q`t-paH$N_+=bPWWDt-70~s~CgD
z2K;D#4qn{kp6~^&x-s%%yj91^_2zlu)(QCHPo9OWy0hd*b@enG;|dYbJ&Qd0FRAH3
zK&RuS>Lv86+j@hWuO)IbNx!Y>kAPKa`00#T6W-ZXk12$J+&BU2CU-!<|KX*YcQzU5
zjCd%#Gcak1Gvak#UrgrZwSV{X@-PshzTG!HFV&($&=$toB>NY8O8@Ww&tqV>j_Chp
z66jx#AjqGm|H;=<=s&(a`hPt5f24oziyr-hK%(1kgK3E-egx^y+avnFUXnup_1W$4
z|K$Ib{(rpS(f?$12lP95smcfM3IBhWO8>Ln+o6BbLGAGW{q*|p4QfUC^Wwz!3w1zz
z9$u>Z&(y@n2jx=62hV#9Xr0(W8K2;#x=6}MHkkSZbVdJ>q5h8Pn{?o#>U*KVDf=@|
znhIM761#I>#Lhy$tryVs?h_|<c%0NCSJ%9$t-d7nX@qKO*Bg^Pdj3Eah*qXf<EU@*
zK-IN0WA9%QzBe*!DvjaR<8*f=1kQNQ<K?FlJYJ>}*oc>EA0aT@dZn*`A@Ks<?x=ug
zS-`4+Y+<<dEZrT%o7rQ#p8OSW+&8DCve-=S&V*JbweK$7zU1+cUk0Ksk1h0?_}vX&
z6K&*9wD*7Dr792#lhvi~>L75!ox?d2In^B);-poV3l9XvJY_VQ-upDY>2+q(xJ0&Y
zd)6bmI!<(|T*^uG#FBQ{`U*a-B9X~#<p@2gEcM_4pnIrap%VB#>DIKmbhJ+uisLjt
zT;(x3sUEm+b$F>>KSR@eY_cklyXk0F|IGz~l|BL!=(DEpsXom8o5$MkuJ_1HqYrqg
z@`TJ}eR%PHzdp#E-mU!pBaL&W&L-KZ`Y>r^GCwi*>)2~BR-P<=a5CQ#<{~~f-+(3y
zR;}*|w%(&5A&EaYQ74^$0)NTpzScbBF{i#G=2Vh7yH2AFlbN$>fuA|p<|#vs!4zUz
z=JWx%v5`imdrEJ$kKPqed-T3Dz5`({#7lK<T6+7Z()&DyqiN~AasOXIuYpV5|HbKb
zuIqr_D!f$pBP=qNzvn)b!rxBq(YtcLUqSEXKK@od<?%Pr5xr_0=xrX5j@~hk`soc)
zAI>)`>A*r+!gc44RIgt{?>Ha5i=Xu99R`xxb?ypD?|`)Qe)s1TdLJ>9MJe=N)8kk0
zccPEptT?@M$96z(4PL6~scHF}O7C}_+R@*abAAQAe*G<f!sG8d*LFbfLcCNP`=_IK
z!XqjC9n>DZU4IR|etdZRagW})9no7udXG*^?~(+t7d*R*L+5m0f3fu|`0Ll-mcM%R
zetJy@{B6Wbb#qZV{(f_xpT9!y7D9hIdY{<$f27xr)B9Rw2lOt$OSSrxbo8E<O798n
z(c7BsqnBPx9v5BB5_MAlaS4S~yS0WsdKKr(tK9fmdggchg^b4M#!Te|vNZAh(sKq%
zoPltkV~vodk1gkVLKYXqE3uaRot%z@fa$K^@Iw=>L<7jMM&CIfnNeQ$I6DaNaU+R2
zz+eHDvZBsk<@^;y!UOlw2@BYoLR5)_@en7t!sc{CBrj1<cH_sD0+|w_iIpRK(~=d<
zZhB1A<^oyUGcl%7E`48wwU6A|T6gLDPe_L_Y%YBtWJhi+l<nzIr@M4rg|&bh1lzP=
zSxy~tGQ{<%%H`z=@aT)HAj2-Wi~R#rA?mvB_%*{fDU!s0bN&%p8eb0vlZubB>Nw$A
ze3(_Ygw1tI^Gi9wXDw<Z7qisJ9NkJRPnKeBJJMNy8?W9Tq(8ec&z%w2lVNA3b=!+9
zrT;3c;VJ&`WRTm~H3%8tD|50oM_60iwA=TUuzb6*f|a6{QJh!fR|T#d)Z1B_4hVs9
z$4DmfgBtmkpI`3AO85%-s?bkBe!kbcMZE57ckWy-im9VV>-C>~z(__5dLy~C{#!lE
zuH6b!$HAe8J_{d$)}j$bb?d6lCkBxbCDGg${wx6wSk=gcpbtTe0~Txpk6lUo%zSHL
z5kj??yLMULQgzBn5-5WA^?0ueaNGO|?!LWPe|3bPC*45xp=5SmCj?LI27)j1dE#m4
zopc6hg<0V12?zgU_AQ4?0r-B9#6^c7M5H=b)OCokHfTr9hZgG56G6jQDjT&lKjq^|
zl74-}P9t$YQ<z4H9i6d2EO+)iUihitT}%lzQajD0hHy?!!>u1<x*q0xoEd6cJ6R2H
z^A~f-UJocX@Bd@(UErfC&i?TPvao^RSuNIJK^KggcufRrqF6T=^ehG%mDY$>)7DyA
zX^D^^Dwn{9kabx_OBJuBR$E(brD~~GTeAehO(lTJRS2MPmPH9*A%K$q_xsG8v%9$<
zYJYFv|L60f**TXvGtWHp+~%2QW=I2WPGqaqhmS}V41)@d0_fv#obPmU?{F-&8ICQ?
zW?qDH{aE`rGY1#N;bGZ@IE*hiEVnoZ>@_N1uT1dwUpFkA)-BX8<!N@=J=xr0Do-jO
z0!kd>L!X1Br)T03|AqRk{Vg;8gNw<S_YfZ9J#YCBmnlxx7gW|3JZIL0>OF7y4_SpL
za2e`1O=WfKQbX!JZ~4zuZ8KBBE7Hnhu&a_oBnw_a)PTpV*EXy8N1%kP3v>ZNj|pDG
z<H4>+Q|~$*74w0x3Zxq314Sn&G8Yt?UysS6?v*=qCO2x2tw-qi>^zWM1xOCp)x5r3
zT~Fk7H(Xo4<kd285xKa1p@+H~)#vbSs5T$9n_X+!U6jI@OLg_P4}HqtNr8?PFbH*Y
z_d)F;*H7j_w$@c%fNWF8c=1VhHaMFL8u94tDT+BzBc*Y?8Q5eTxvjN`(~M#7$qpK-
z;N%Ka=PN7oCgHFXyQ47~Z348~(EoeDAn3oG@&HPSKS26KkXiUqAKF&kHFWVGe?w|{
zjkhxnV3wSpgfHG+MoI8jJ~fw2D@DS8xE!r7Ll>8;56kt3L;2y7X}p!Ji~(twHj%dt
z(@Z92=&wX5R{E@tzKRQM<C>N058ne>BXMl9GFUJCfMCKJQ!XMX<N7pTaluL>JP02V
zhq+j(l9q3_PMggKp$7#@9lfkivZ6x+k%LBcGb;x9cya5hxEsIjit!95tgI4Tm>~ff
zrLbjY@WHuALMQ*~DZ$D-+(15FW(KG6(#af@%vgP2h2r^-TPe^gV94QYrs%KHAlCAF
ztK|Z8?_#!bq8XYku%bn#8O+F%pzx%HDLpFWKq#*)1K>Bggc9^ulnOKvL+4H-67A4N
z9WyCaJ5@3xzN4nXzH~7xF}M>d0n^kX>O@I|bSW~2kEJN}(mG~Aoe0ZpU<w&X)hN|=
zmA+$yj#(Tk^cIKwILQ23PcgUR_^ALSG0^Njt`7F+?3ELi{5j3eO2g*isf}DzRhFj?
zMl24wUYMWH-BK!`-4){do%&=P@f$18w-KL&YI_}TJ5-0y2dc4@6N|i14<PS#Jt`n)
zd8}!N_DbA14#BC!2Bku5LUsT-23qL6dy)cPrF(qQa*-4A4G$hi_+Y5it11>F5CQSl
zN{DsNVWP&0(*TP>SVAXz1f)iWG!cp@PR@lqp+LfIN$f+2uf+_${0C-8Aw6#V0d(#w
zd@!C<si)o`-2aWPcyNNup(d!mw*JH`0YO{-7nqe~gK>Mm$nntZe0CugsRotk3z=Rt
z3Joho!{!UYAvR{_Zt3W?X3jn{XRp1yRW?w;qRO?#{V&RUMD%kl0nzTJr1e<eqXnTb
z%z~ML#@NG>9n~zUVio*{&`?!#7&V8>g>1{XwSLYjbK0R4Vsw_`uLKBL)|D(P1gf8i
zZl92e{0S>?`!B~HFR*3-5D8E%?c-dx+5!|`k;ecR>P8^485)lZ%IdDCm<9W=pFSZA
zUJq!r;S4Ts!*URJrRc4V*J+yw?RJ~1cADXt1X`)Se=WA-r~rhIm4akAca55XYgIEY
z?)8`jd#9k;!c8P*Y8%<}t|ts1#iFDgm~F_;vVw&;S8DU4qK3Z7M_|K3j~QG_Ia(Hd
zTga6wbok2p$vNPYZP@TQ_P7~59QEU^6&Wdn^$(T2tdbX0@@xvIZJtD;iBtd{vG&Ja
z>z$A2{S&K>cq<KA(2bSbJ0RG+sr6My5H>2$V!Nu2AZ}D$Z>~Cm(17~b`^;sJ%-Y(A
z*#AWD$1WT4cD^6`JViCY17mng5#R%J?ttK2t@E_jUQY(&5CP^lM@#$!HZl4bI~nnF
zbRMYY33Z$qZajc2Go^N9Rv&8=T#rN=$b;R*@!;Jo9FNN5=PdQGPO4F64JvR10?Nc%
zWEgl{vc!=kD=rRQ4f(nPVex+KAQeAuC3Wv`u2M>qtT#Y%--Q_I)kbxd5cbtD^?Yu8
z4jt>uWZK{>Lz#FUx&iciS3b&xWWK@2O|x=I<@sh%4~y77(7cS4NaGaH)^C@ohM8;_
zGy@v;Zx)X|IOa);Kx+tiZ2W*`<l)pfY}<~eyg_gTd~TMV2)^vRQI5>lflq89NYcga
zAie8cHv6EAHRdwUXzrYGDz^iXDuY8jp?-ZH0TFM+fz>z|4Gi_Cmngu|kg)64>rcm}
zwkFGY<+0AaGhv^FR|RevgQ-3B&Cm-<8|#hk*$2Y6IE))7tle@p2R4ndx#Vm47<^qP
zg|zt&2rMB2O9}Nv+4P&)5MOj*KLO7g@WH;;kn84$p}o*LH>|-k98?C0N>Mm+(%=$W
zG^NqAg(uZ&NkY?zutxin7|xo!!4y*7L$(XH6k}23WBlR^L7k(UV(;IP+!SkliSYSq
zm8|&eKx?$d(Iai_#|`Z44#!W=$(uu6jp`jlMBq@jij#EAkQujC*>RR+1-pPlp@+FN
zS`Din#fMdgFRkoDUh<i(q644`n4hs!u@}{gcGkETc>mSrZz;V0X=8#lPES_IwRVnU
zjn~ffBAZy_UTuv(I!;;R&{2~hB^|pOg^ogQ%a2e?WsM^T<!C$yTeAUGP^p8?_3%ZF
z_8!Oc!RKKl-M%s4=#=Od>1{Rm6lI${x~Ts^w`aqKg!T-O_H>W8Cqo>KNu!Hpdg$Fj
zdp5&uX5Ec=Nw!C{G7OA(d#ra3qw~`Nm}5e;>HoJ;Kl&f28-wn{_#qSfX9OeBYCh+h
z&vEF~d!ViMPrlg*%*9ijt8_X-zr2;%Z=xGhcnlm4n|X}touP-hnnv;og__!yK(g+V
zJJu*sWcsF_A!I&d&JwJ!fF}Ur8{RZTMu<3uT%w49;sk3+@lkFw0lA%v4wrZ^!L?nB
zHEy_&{l-IR@;8yQt-g`<TK`n-g=`u_+nGP;&U_Oc&-#2yu7yv&{~#q12m0{nWU`^w
z(-+&rT5JMTF-&DISbEp(*hm3^^UHZS%*`x{q47djuxOy3^&TN&p?rhoL&WI8t{vSb
z5ES7vAuWEZu~<qhs$5nV)xIMwXx~|#wNKmz?av#Rorqf5b~LgSM{i(T1n4HJBa%A-
z%GOB5pdNQ_cnt45&<+Pr4YF~7PiM(wA_~mLT0djvi!4Z?!kGCqZ`gikH$Jo<S@X?Q
zq}(hFTd>Tiq+tv!1MS>+C`g9_bq0{+CKMj)b4*BU3%jy6iNQxC=SmULZ!3CGn~9hh
zi<QXw7myyB!|iHfb3iT=(daS2Enl~}wf=IA(99nW0;ewto3!DNdbT6^d{EdeC8QVY
zuRr`Wky1gyJy??uHJR}5NT*T_hFv>P(Y!z9@B5@V*%+c+ix(HzCo%wHv|npJ&=A|6
zw?O%oy+jJwP;A8>p<e4B-~j3#H!4I&4spkV)&vAx#-_8~D21e~DavgXkCGNHK7bZ_
zfv-006aRMd`I2Z~nY3?JS%>XYe#@lxb+_C16hLNop?$^-9(AKY3io<;D6D2|+Hwn<
zfewO6FwR}^L-@YW{p3{8pG|dSIV=Bfs^MreEi!xofVzZSP50}D*HvO?s$p&ktfykV
z3sIj@+02Zkzm9rS{>7izlO!xqR|Q!Tb)apy1DdTte^zyfn8_5Rk?O3zHxge8>|{)K
zkvG=8{{|+p&c7r1GNGcaE*%01Hq1kU27iHOE}x*R8HgR!EYPU#0(`pnL0n>j%V-<I
zhxqK|EN|s3v&>Hc(s(5jlKOW7<267Llp#vi4MDBL024c*VBvTSXnH>cj#@=5uL8d5
zA1G)T?}J-m0q!DrR21>b$b?`4Q5>wmn6|niq=7Af#au_cnsO+QBdtEXTIlZ2`vKZ9
z;x)wfZFAlqamMwB9CCwzxH(e63L`KAQrN`ivu0>;SGbM3x@lyU`wNyCfq{6%ZT^Ob
zZccR%4`rneFIZPm1nR*quc6*u{h_|8{!mdWWD3mWgm$pQFGKV}Vml`4c9epR%fQBB
z$P!&>zF3IpDWR#s*uC~PJ>0auhdFC4r;KVfe5IHGgg#(46+hGpp^C0R@4m`11d63%
zN%Y9Bx%sOqPN)^jaSRlLs!~w|`YlNw5XjLAcwCk9%4<!2Sgp0s#(IW{ls>u)bV!?q
z;2XdL$cZ*ntQG5utE7|M`_M^0RwSK7KSs@GFl|6X*`y&aX~=6Va6K{e(v-oe6GYm1
z0dsbJWq0dWCd+DYO~K1l>w8ZgZMB*ZEo&Va_j#*zRo-V9f5r~9S~vSzTCJI{A8xgt
zo^i0%`T;h}x1Jk_eEY}a#V@PD9%0w>8@(xJ5NLq%bq@q1TOUnPy(A(5UD)g0CpeGr
z&V4WhF|H{hm_gSPJjCavJ1A1XZDUt~$-}PEw`HpPTPLWKSwL7KQL%4z(B7{almg=w
zh5UmhyDC^RgxLF}x?rzAtCCN1D?yGzx8I<wOt+PuTx!r&DkWT`OArzd_PR!uFxb+t
zt!Wh4-uj7#t-kU&VEg28!nQ7`U^_{{wiOQn(6$eC$#<)gFZ!`A`De#d@+(sE6kYN&
zz&Tp|2UYUYJGJ^coh5^iU>)?@FDQqL+~@Wpcj)9H{B|`Ye9+Z8M<AMQf46gG{JYoV
z-}(4muO9qvStUe^YbCyGa1EYuX$rPEBEgZi%<$!Z$8+l;gkZ+D;_kP+tLEL~xa&$7
zp##R_L6l30@NDH{>e;P)h9my?Y=wSy4WEry&(`W^m+%?49z(tWo>^z{0hdi%v-W^D
zb~?i+wLY3|0b&8<=|LM(q7UD3RO<slPs00bzSq`VZuIC~c0Su6Ps|VN#AD~pjCQ%3
zc@y8WK5s&K+0py&JXU!&cw)mQeCLgRTgoO3iRDLMbeds<m-JpY!xP>4GpE|b@16H+
zvCW4rp~LqFo$8ayC!ERny8o9>L7kVE8NI8*$(C4Odwh++(F9J@<l@-*|1z#^{v`Q0
z;U{hMeRzl)eIJ4bqx1r&_#7b)QKQv*39qPF)kpvmRVjEZ<txhiAq07j_05|=i{JpQ
z;D5UNKx=G<z?)qEt!?W6`ZX8dmQ?e{klCHDr;+tM(2N8Wx*_*J(DE04mQ?>Q{-^7o
z1Uo7L^B?c}A8!8}7!xJb|BL_W`X}9$RR71(|KaxU#-`AT?LT(?-v|ABNq@?BL7sxC
zLe>+rjrQH^@9sr`!g@5q0}<$WJ=(B-<Gce$=CfMmv9KOywR6aDN&IHi&;yce53y`~
zs`n+9u_<<g4&jLCy%qkvW!Q)53gs}y<U;5sSRUBAxL|pO2WN$8|Akg_K~AVptH>BA
z&8-c}*g9-J_AaL~_yTV$FhbgasbMZQ5GjJ%QElwkR+9x?b&VPah_Gl6|GEz0&$V#|
zUM9}EuT8)iSQ}1avHJm?6??zUJK&#V0$U%#CP}dxa+JaceC&wuwdj?^O!RYGzipcd
zVCYPiYfVxufd~Yt-D}a+_B&Jx%i1;+tfrl4f6rsKzl<hRl0Dmb|E)Eudmuae(5RLe
zi_kUbKTevJBfS^y^1Vj&YiNqf@;t7L1=m2Hmw5BB5A-9rH$&HC;}dvD@L;+;;KnxB
zqtC`8orqD`;RG_l5W$BQU61r8j1<0@Og?b6A(KJq3Ur|&qBrGj8#2KzoDbqJj6ZC4
zLZr&v69?W`Y~l=RQvT=w;1in^e~Xrt5Mc#N=X~pl9pqjGBg!h>fqn?!sxAFZI1YXd
zIXnr{X~VB$op){cb;n0vieG_whhNzfieD2u0(}fV4QZamXtD!-g_wz>I&Gt#e75<O
zlq?+~{JJ3lv8Ww>Lhx%YpzfSslOm^X#4vkf<+)0bsVNm_iym0c#dMRLr*^Wn{HMVQ
z)6)!3!f>YGvPzs|az?D7LwO+j8>~qV;@FPGx0MC=uC%#LSUFLC(!TNtE5CoH&F^hk
za`=bG)E|}Yd9mZZ*;{dz$WnOU*)QNjxE$xS5up&2pC}O`6ipiaXO{#)sS*FG_4n;S
zJeQERlkYE+Mcc`TwmA9eJ4rZ6l8-A^wRzV@J_^2mpJn4qkeVnTtscpR2O<#4w&?rh
zZM*O`c>ZV`T9k_xwb56_9m+c(0wgbvxKX&cNaoZFju_Pk(0nD#J`!1l3A)fI;2YEQ
zp^3ox7Nh!ECySDAoTVS-l^y=$@~t!*{yo%k4+LL=8XN{@D}{XXA-xXrZOt*+3ceca
zbIePNU&UrCDoLkzx5!&9uTULY6#KO;-`Ys4A48`(vQ6a`2Qp-vZ2l%V7TE^Av1YU{
zIf}E|Tdhf3f#^q+Y$H!4;rlrFNq8m`IJBM~kVFFk_}ZL)?)FwE{rq{;vG~cTsb#md
zqhFv~`WwwY6~45}A1e8WzQ;|8cqkbMQn0=fwhH?kkuD)0((BN%8#?MFO^`~>l(yo;
zX^dSmRVRTB8}av+RRUn67|A3Kx#IZhK)zu@m4+JR+exS&YDUIMwp_cjPm)|i6wn#5
zcjD#2<z>eckmx&$ClE<$%=ixTg!D`}=Rx|)1E2}@V!HY{A`+)O1wQ8m4{r+f#a`L!
z(DxnyjXQBd#6mPUN0i)*KzccbCET|MkL;O`PyGdTILa0mJnr2ePIKdIz08T~Y`rpn
zC=Dg0orpuA+)^Y^&h0egMW)+D0x>-H9U)?zZpT?gi4|{0M7%oxC3z~C2n3Y9ema1A
z#j?-fx#dHTHE0>AFYFpFZ`4>7_0os~9<x;*5AxvH_dXYimvG-HM89?KW^^h-A@H>d
zcYuz;R?>VBJR|zYIA<u06Yn3)zfJfBXcOWrK3-IMt&IJS2!*<ep^j#Tm=|kMbf}o`
zMRelpk#h;Jyw;Ryarb9w!m!~g1?$QW0P8)pT+maHH<wjDOrm+vR)$}Tf44!+5^nSv
zZQLaOy=rME{Chbd>U=!?U*g}nM>^);*_)2VzwA%?A3!X}vL7yUM43ht`qh>mj{Wd(
zKO2|mRwxJ-7=Z83>ID#vg|8}dX9qA)-tkxyPRQE!-Jyy+u_4Y5nV!(~o`O}CeL}w8
zp=)|~VoE@U?NYEh<F3sxh7y$s?YKW%qc;LiKUQ)sPVe9&eZJF3Mx1wYz7xcR#Wqj`
zo!Ao>h+b;K0~{D$J2DIV0jW4NJW-xO6%omOALsEAQc4-7bx0XIA}YWRQf(Vcg5s7U
zAOBSyz7S)S9;{Mt^2;MIo|7fbPe|$9@K*-B2&!Q%)c=8T0J0(NI~SU*s%nY&GI8u5
zPEHP+2<tEcCbHmIgFZO+<HAZ8!U$s9aCt#x7PdaZR`qq2E*wu0!*=gnxP#68i~FSF
z=!FX_qReH?IMNMOh400j`Vu4X2>>(}OzM-W-mO*dy71kMeGEvpgSra#Pnlr0!q`<o
zUa_7DH;I{YD4FM>H9T35t;6n16@7~Vec)cyH57rzeG02uF06dh3?7k*c78Bhe?a6)
zUhYsMd1I@A$O<SU#@^wy3usV{H3VB%-$QRVK%9r~>=$v>fK8zG0pCL!(z-eLOzMpr
zQorEyr}XC+*xixvc?I^9(LJkoZjRU7jQKS6Y1f2LUy*K(cBRC$@rqAX<8?qJB0)|w
z0;l6+Ha`=nx&TM{AXLOg{Hsta3v%orNwKIn1p3_*c4#Ez0A!|wso7y+`ZOp|tD-kM
z?pMbF+pwUMW<KR6O0?oGSU2UO1Qw;mxFVgpP;-^TOk^c!&eCX96jeQTQ?d)~pn?63
z!1bsm-at=61EY_M@^h`uZr8>)A6ISkQYA<mAsjWRIHl(~62bAbaiy#y@4SsW;T$?f
z8<$H!nY8g05eE(h7t~Ka6#+b_A@JtH%A`ik;5T8{=Vz-%F}zSk(ptM7OXxVXjFGHp
zgitgZry8aA;MSZ%Ayz9CuOlwmaYp+_Ib&pY+)2l7)B?=Gm=GJ7?%e<(0I^ZjvkMv3
zsBSre4df1EgZ>K4LeEe~S!jtBXiYV$1Hy#*e5x6(Ms>BYl^w0A4o;vrppf$y95Mp^
zP{WlCX>Nxr846o3BCa<oGXnp1#YLP^&4UMsV<k@NDlW8dSSS(2Q#)Dsa0D_3p24?Q
z)(!^xl?07FBQwgr+DTbg*c{3a727Emz;dF=pvt@O>D9)9-dzgw4_Cr$MCc1nxn;@G
zo5jp=4L-~6Kp0L8X!KY)kN#(<az9qCC34>2Hk@~Dw@#^&6Xu95Fd@mau83lNkaQ&^
zEW;(Wc45;=G)~hCR<g<SP%9ZRUxYG{hArH6lgB7V^q<+T$={y)rJAg06^FB;dPgo4
ztTATxl_qN`Rj^^oC926ZlL5NNx&;olP8d;Ih9*aUCEU0swulP1`c>Z9`V_P{<HvXq
zeHuS_9WBslp5#*G0n-3m@_`;iG-9^9dYF)}77z9dO<^)-83e`Hkal8%WRD-W=allk
zG*-uwLKxP`{VQT0m<5}SnN3=Ek-SLyGr8P>r;Szd0hkTZBNCdE$i`x!TisSA$qbMo
zWCq6~_QFi`wJL?Egb`iJ*B<MWchq+nsM7go8;aIhqUp7*4FhtPKIvJXoES<zsgXTW
zM;L*dS0%++xlFq%E+md-rb}ZQV~;VH>Ugbfz-oQSV^xPQpp2}e2p1Ono1(Y%0~Eb!
z{~lSa;nzv+{URBu=*_OymXRxrnbW0bwQwz1KLuDLavgg61n#V8s<6+B*mj3hwF)C$
zNzu^JUL(NJ1(;!o)`S_BB<xL|D;{=voQ61B`tvzosv!z*9SHmD6G;?W8q0hVsl+-H
z4e5|^qEmV7IL$*Gas4c>9g@*UnJTX;M}%Ql^lcR|js+&5F4UP~J^xlR2_2hMtQXFZ
z!R@muxj-e4sKl$1ph`|sNl%respJ<bIWRy<*`tzD^>C}Y+n|yw)x)>c-C~vK`u?u&
z=Bwn7DtTHZkE>*kN<LRfjY{_5r1<E4IEp<!pd~XwIO$<BSOs{A@7~_lUo`?_r(BNT
z?D#N=8&vK9pU|CkuSfwIfXD4N8HzL17*kTE9InApkNsn<TL4h(i8wT0zCOZlvSyDJ
z(KW-6Du(F5Gt|fM*?4`Qyxq1wGziUy%P5RL8J%-v^{hw%a4Ph8un`h<3Ql}1!FIrK
z@ca$$aE6q-wd%-)6^Jh>X{EAXj?nx`CrgH~WZ(jr3$Z2@kFQflAl_AO<}`v-&4cSq
z9JFWlUx=u=6X~Zv4W#+q6^b+=^Wab+X__H`6j<bz*if{GzNGjgJY5<?39gen|Ij+>
z6*`-#k}63OvE2sWMvchscIO|Jm|+v_H!{m)Q<ow5deR9vNNxNStn=x?X71uC4+Rm#
zHrs4#ow1jS%b^2o8C!{!DtfO27Nw>qIiyEhQ`lXQUg$Wh&$48WWEbLX8T&CG2=Uch
zXQ>9gc)Bz%^DU6|z_#OQiQkqJ0y=09bmV!!-D%qTu_~We4h3O_QXQC*P$NkS5NBxN
z8g~6|nd+{DfbZXK=NZxTh6(+ljbIfAcu@Z6gcjVk0x&cDD7ib5{liAh3ZkYR{3dGv
zaW6#3a(6ROC&C&rkKy}-Y_Q~J#(|2Rgr(HXS;xV4WP2J9DzGUJK~ia0{RYOxsy!tj
z;l&0*mMv{3AV)<LnuQkOBYt5G*^|`4(nENW(8%^^w0^N1&E|35cC+LD59zOF)!yv5
zj|lODkKNiq{NVLM0u8Q7c$sQd-irvq+4Tq*ybLFxS~WcpcOG_Kd8QYH1%N?i?o&{-
z_4fCvM;xjQy55+?2)PA6VuW1fZHQre84vL3@{EK}Wry5{+J5?=e0s0?6tvr`77rR+
zv0K`Pqm{Ergq)=yxHYyJF=OA=5B4CCGWL*Fx(rC+X;DB*dwGPe&Sfa{Fft%$3wC7Q
zfxOn(NyXt2sTkJuzG!G(V^R8&;@~?x&@uy$(s-ifxGk|9pRr&`>(YpIIvL0pmma`}
z59o-C80)saWTkfUK=1#B){P;3@CVovbIT-9BMFo`&k4uRt)|fq5aB!>3UAm+I9RZE
z_rm_Gho-N(sy3sWzqJnDoXG|rXLKv<zusT4blfH!Ee^i+fUmK!#O7}i3ZVblQ?$*5
zH8|(nfs^yk6?V^A3Uqa{|CfYcwprg^#7I{z!Lu#V-dXCv8ew+GwqBR?VQpY;WDyfZ
zMNV*vyYDO|jJ(94v>OGnACM)V29@N;_T2Z238VO(C298uzCty${eOgoCPZGRz=V6f
zn5p5wS03xPp@gc1<<SkY@?Y2Q!#4d-e8%%la0>OyzqchA2xg)g#0D=-U=1@o5rO~4
zj3=eHXJu6}4RS76B#4RrBz*-rEhmd)%<NFFKd28g5oY;)J}$+3G+RWViB`+P7t<H&
zHAQ8_L7tW0;^Q)8L}B(&V+^DLSG;3|5L;em9Yu5`_0}f+q}1B2pZr#yC@bGus~$#g
z;21SnAAJ_QVO`XKZttbI#FifI=vD7eoKJeq)iGv5`GjATPQ3G_VK@tShHOHLtrz~T
z0%8fOkKHXuGKq7Kl~rwfobj2LYu2)>S6AQ^A5MG8N((xDaRpp~Zg>S`i0{LW7#0kJ
za3m}nq3EQ06|kpkgrGvzs8FgF^F<_;9oa89<Xf-hk^vueO}N*iBgi1K4n~%<I;DnP
zxAb<{sB4bRMnB6IHrlob_-wa7G3!7(IGcjH>)YxhS?L<sJ(~C}BYw-+?Pv-@ez-Pu
zkl0|#vms|FV_D_<*qx)bqPzL1dGJWg1s#;PTGlZdI<Jr<miNqBFM|NY{)8~i6S^DQ
z2`EBxM)*ML#A5Iq2Q9Hnacr?axW=EeVt8<q|KLV{<OmKgUQrCJmVP%pvR{fnh#d#&
zh6lI%xi!(|;@}=GFA{L!YQ4V?YAX)?&@;SXlQENy)8Pe+jG3}(00c~+iZvl~0c~lq
z_#T4FS6hq`B^kds*xQck2aC&sS_b)h=?+6r%XFWt@xnqRYt^|FxY9*rI}#0|d}h9f
za?B8@2x>cY6B<v)urp_^X-H=IWQZ$P1y;|>$)!MiVo?DpO8amN*55Uj>vFX(*UZ6^
zzk}vM*aAmkd%i>DN)u8Wcv*!{i@^*vzXylm@XAmjx_~Qu*G=hX25I-mEII|*qgXyd
z+ARZbj|Oko$2MEP{-)5>{VJKMk}8$lEeV8r<B1M6E<Veq#*Jsnmy7I7&&M;BIhhuy
zOcyQ$$^IOq-wFRqe65$XnHb+Evfqd1P+}J>tQ;Wi0Ubb6*|UY#BIsr|N(J-**fZjA
zWIJ$Npy2pJ1bVxJ_*$dpYssINjv;@Znfkv<{>*4m#vkR+dVi<#XS3n-`2H-r$D?Xw
z`=h!qCx604SuN&eg&w2kR(jc{?H1QX@C6}VGptj`Iim&A3F48f)+?Yf?b6VRG}<jL
zBin}#X|#Y3I43iW7r|yTXR{f^HW!$=f;;Fzc}SaH99y9qp%(AXEe;pvlJ_TKq(>ia
z9k|M$v)X@fgFkW@(rI;Z=o#hMP2ENp+5P>b7%mNxIYX-bOZO@}VKhZmDNPdkq@q>$
zq48HvZBIK(YKF*={oE!&<v>7XsyGAiYPQKEf!}x5<KswR?cz>7Oqr5vs#AgU`GwEA
z_-vMLPopTA0x7gc&gxsowVxudFgCuwiGc95j+r9A^@a%r8;qF~_yBdH=A8P(leFt8
z!RbgWPKA6{Xes9QA!;3tXgZ*hm@8v5&_-#x?eW5919zjP6TsRMkN^eCyqW%-g~Oo%
zZ0s&fz%CJr>`>Db+~9P3YY$+QmJe5;a)~kVTPH1AWz;+Y*%$pIpR#?A%IjG=v;#Ye
z)baswg7!tQSBA4x7uJoQEl54YOI6?zW9Ike3r!_xny5-;GZu%iD(xDqK7(XZVu)q~
zIs-eEEb#{qn+La;kyc3RmUz##i1OF1LLU}GFc-EqCUhLsM+qbyHoZ`-rpQC-J~kRy
zrC}=2h_Q0B!ZvCZf2$x2P6jLcOyb2MhFp}10!l&Q<tTrmx0psxuoQ43P!*@bhx$$U
z9>z}_D+|O<3?fQ3SPtv3j8B(U_AU<kP=;pEX^Y6WSa>@Lx;$8C#TbgY6?3Q9J;Kkk
zf|pwB@TeFop@UmuFJa|zbR(y7+I(-F;Ss&jS0yK_<OE3|y?@fv5j>B1ZNXEn+yyt<
znSAj~KXEc$qcSae9nxtk=4s-pMy_r%Lm6j6__dmhXW)7cpy4a%n~@*4(Kj#ma3F3u
z-G=yIr%59(0Wclwn{8yd<nd0}<^FSAkxbOq<gBbJpq)MKu}bgOt8PgZnWP9WHYEBU
zbUtqEfB<SnTbS}I-pE{lA{Lm@pgYIe(RP9lnpB(q$TP9C;g?-Ljqt<5ZO6!bIk(L*
z9{4Nry~;~A3?rak_ed|2vfB;bZk?h=P%y<L=w94{)ca^MnraW;*4u+OvEJc#2JI{5
z;tbxN#kvxZ)d@Dm(4hc)f=%>T!DH>4oKRT_Q47l8kVz_oB!a!%@BF=bxR&;4yWv{i
zb@Aca^HR3mX==CzA*M!QU@y}f>XoYUd%$8iDPE1z&`qq8qcB{Q;37ZNYu&X{a5gd`
zbW@GexO<FGS`hB_>II~?HdD0m9<&E<g@_sD;BB!pc)L(Pxi4|>cB*<P+rq=(mcbj*
z)EN~-v6_>(eW|;{0Nwl94De5J2w2~K72KFg!!L>dj2hWrs@?ttr69O`NG%|Nk)`E6
z?o5L%stS%mNokRcEq6NFu!>8AMZ==&+?2E)>yKF6!3L;O1+`!eMhn3{4#vlmLXSXi
ze(Z9_lFZmR>EeX_Fc6vobYn98vepJ)?V!_>UcIGX`Kk|8Ks1Vz9Q!@$m{>oJj|N1>
zPMu5>edY_uP0~UJta}^>Kz!I3Zy4nAbr>^^f^NjVq*Q>=eWdoB75?CQy?LbBe}$O}
zSqnXi@e{QuvWxh~n4(dUGuvRMLa8Y@aD?xQ==l_R7*d?Z{V1JHCP5@7MgiDI0h>lG
zMn77!dWgh2StTc^<SvzztK?@3(3#j6LPTqu{@hFSw^`q<N0YX&0GkVQiY<h}O%<_0
zZ4$$7M;KcV51BrHYGioO^Z{$O<>Al4ljZ({>-~{KFvKGEFmib6`eJzav7cBFo={kL
zYl^WA8$2fWUoDhi4`szD(Urlxf>_nY3FbEyI2_hX7#aAKW4lnPrjWkc-GtWw2}mt5
z&!zsw;4i#VfNw*rw2ZdO3t6{Kw}8}$5tuVnla2#QShpH?YVjwA4_hbp7Wx^M;9h_5
zEyq~dYo@Lz^?)w+5z>5)Sbf&OencbP59t1hu#fH<MJorTRuL3hlko6uFk#1X<^l$2
zxtY3;qf6xhYc^^oqfcWPEn+40_e5m_CDGGJIG_`?(A*m17W(*!N^Vif4X=PA_Q|*|
zi5@2W5VQd19RqrVuL1Nf?hztHdq>ooTExqxSVIUVo@cTFUg9~M_A+`y{3jyz#P(rV
z0w6t=u<>Q+)}W*1lj=8WhH?1NR=;Nd{@D7p<<12CDv)5qKV!z@wDket#Lm=Vpv7a%
z=)qiJSJt^o8d@74vK0l|QKmX41Rn_}PCRTfE;8i;@73gy{Ww=HKnhjNhhanOYLq;z
zP@jlA%_&)WoF2o!ToYG8KckKXg{hCBf&`D6<e*qQqDl~VXe_uf)mU(67h}QQUEzE#
zOv8`gg`aD?;pfKg`1zq5KR-*y&z(K+b9YZ<%Mb;Qi(aCgad85^Gt9`gd`ws5n(3gm
z9oc63`(|XP*Gxa?k2Gca(_8$Jt)AiO5r1TxdwBZt;pyPlo3l)R<imV_<fGi->AU^-
zYIyn%KfW5CevowFLz$Vy>4!-UEZbwIuQ4M{ZZmzInGTDSic%;Gc}uZdtuk}&n+L4D
z3M8b&PEzwH#iwRMV4mtV!&i5~hM^uKOdk?;AE)yo))lhZZN0gwg@c30R%F_WRvv`M
z1(!Rzn(1)C>@`>Iz)cTx)giogndy503SKv5n2{r0&A@hKgE(DhuG)?pWNX1YWLqaS
z23}%~k)|}XrHhvWE3iG)T=fay?~>^c*5TC^W_q)Kl_lpV-et<>CTPRf;ymn<d&px1
z%B6&@m=C(SM<!6;1MRsrRZS8Bj_rWM1{dORzXR?OyaOEj(e3yyTmeZj@B~WS5<m8U
z3LNnm)49cWG#%wLUh_fF+7#LJK#wFKDT!H`73$DKti8YM*NdGI4bjILcHNV%cN19k
z06Bqfs3ljs&qGNe*HKgEZN80c&sBNR72S2|v+)`aZ#kQWgsu!>K+o}U+_DL~#^Eb#
zG%Ac?f72ll9a@@0E`s3Ocy2)+$N?7^V;7|c-K2OGdbH?NVP$j`dFN8eFJFY9do*!W
zLBfNcaQv+fU+YQuxIBXYW2y3g?4pR6w)<5!2L6xv(pH_qbgh#{l0WCDSYZT_&6q2~
z2Q{^`TV6w_wVK9@OKJ9|kT^It9wzx`Wi?9SBi$(NiL7<JL7da9>68r|^7oZ&b`TJ}
znQ43g?17JDc=?Lbj$zmJ_Ec++`yGL%qm076zAZ1Y>+HwjgqQQAAsVINQb4Z<>p>dn
zPh>SQ1L_grEPaD6dP0Z$zznjE7|7#b#YR9jGtJXqC?(?Iog+-4*MwLwAn!=10szh-
z+2M@Pc;lgj;tyoFVaHfgUs3%4dO;`mxsu^{+=GC!bSw@$2##riCX>NR{qQD1`i>TJ
zP5B5=R*QhoQ9Ev=<A8S<f^)Lm=tbHAxz_m_DtQecMoZ_GvX_xhAwZ0kM8uAyt3ccw
zZ5>FnS*3CyxwQic%s`(7Y$7k^csBbZmx%DN5<JQ04Yx$&jgL28ePdc9bm!2DArmp~
zfgAzqsg{EccvHq3*&z=;fceZhZ4qgo#}7~bJQE)R!HQvNuK&C|VcKjWF%OEMF<?ic
zq35L=;MyKeT+fxtIe@HIVPAj~%uiSMU$Fdwj}`hfH=r;StF<cVgx^Pb!YN(hf3fas
z-OqI|0hLUW1dy&dtRaP{GVI~a<`XC#@b+)<xA!=2>*TFf@H~XZr&?$v$%FYy9!zu*
zC%dIlkOxcIp0G{<{5sytJb@+?t}Q-`-$0p5$51cK`iFQ*Z3aP)IwPC7ga~5?S^Fc7
zL<;#$xUgBM>Mh=&tE4l-t{>@WF{{sg2|QgV!1Wp`FTwDi1ruJfS6RMfvKd~$2QWl=
z3p3aZuSlLwPrM<?^NrW)p-Emf+is6Ayp)ejoiMzr_6rzZWdg%bcRRXF*aDbV<<m5^
z(N59~+am=^u=Zvf_)xKmaI%`*VoLz=E1Fd*$Wd=7?f|3Z^M)HJlIwiD5$?c^X?@m{
zDAWw+7;A7?E+v)}=WXV+P;g6pM95JEVJJ=&Ppt(k4-1d%(M(y=j2nN!YGc+cX28YF
z4<P(Gz-W>;kok-G01P;qTv%2N<@g+4#oG<mLbKf-K6KiT7J|lTvI6dGD{Tvh33`gX
zjKYafa7#dOb?3a#L9jh}CBqJ>10#??OKQa^jMyr%7R<G{1fdq8UJICD?TQaD^Pjc~
zOu^Z#tWrs<v&xu4s4PVm2o*9AOfQfcY0v7v7G}ZoL}ne|+oDY9DlT&18lzYS5ynNH
zmp8TgBlKfj<mFnAb43cC2>9R@g6K#&0T5UKCabeb@J0hJ0Jj5F<m4M!RZ@{wXJOaR
zTiS`l8}3MOO+j{P*Hk&>qHvGJA`m}1mO^sAlt+fE)*9B4hfl3@Tp`*|2s)U@{5GwE
z7^`saP!vdzg>z?rR1D2R%3%#r?BoTBxgs_T-FCuvrQ2FZeD!V%xt8(kP_KV{^+K$7
z4vFkuqLMmEAe~S7w?=8$^;x<ty9cC;W%u~Akj}RswjIS7EJAmjmk>_~Y<sx5BrNRM
z9o4D+KwX+YvMa67_<P^+9OxA1t)aU=uoFX{ooU6Pn+r0FkvmjT;4RL3hgpl^84tAh
zCZB^DZ44a@e<Ygb4`O(<eXu`$y&3A)I{y-2xL-38L}HJ7EOss<4g-g~Og>4LYU9M4
z%C2T8pFuf)GlSqe&NTzb0HO=6pS7^jdITKTFA|S+3s@UX!XP>^=ChO}1R*yP0fA@J
zBF;1e_01eY9NdUe%oP|Zcxb76&2aC_%&>`9&Eiw}HA#BGsThc)8Z}2q`H}6|EPPxl
zhI$zBVKjq-RBAR#u2Eg^663%9c-Ymb;baYRc12FF%9&=={7&UeL(WW<(`D4mR5@M9
ziIE=5>}J&5p>lRZPK^6lW_P3JyDDdQ=0Yoc=D>kwa3FS>Z=t9O-`yf}<$)cDr)xE8
zPDO4EUehizxk{ua4YwGR=HpTEMX4B;V(_^Xuh4*Ppl^BH1&=Wpjo>kwut+^Fx~MC@
z!{C&;(TLyMxj`3OGgWRhgYpA~6kX&(ZVY*uyW50cO1a&T6T@GY+Z~5Oiu{4hf-MFm
z!f(14BmclFL5lc;K*?7|5>%fxihPGh2)V)#HgGweHWGuC4RSzC?(ze|1J|phSS3SM
z@*S02qLN&d<fvqTO1`C%-YV&(l5Q$#{kIg|qLRHT8TB+6h|7uE&#xFY89*}V&m{f%
z=mYW*^wAh_qt7`Crmf1!x=p|q@c?Nnes7v{H>*(y5KuuQvV!=bq$ZNAZ)h}(<_Fm{
zV5+N7h6r4$A(}UQAexi4<ScjGUr<VP=i_t)pm6f{%`oRvgIaH}4v$r_MoG#NK|EkC
z<#V?gX4%XUA8J4)dZ`<&Dsh^zjREWk`zoKserH{(&@@mb=lvGgT8lo@{MuIDcwU1^
zoua~Y1BWsuor3+vVBU?#wxGS;;Zdozece@uTPvF4?Emvm6WG74fBlb&|A9Sv@PL2(
zxN0R#4JObPRgUo{Mvu0op}a}FG&p8Un&716c&0pd8{M*1c;^q_*-WXXHG5zO&O`#T
zhljys;fZ2^%$01zkPRKM-h}%WeiLL<mXbf*yC<(%kw1J>Gs&Z*IJk<@kO<bP!ebg3
z6RD%i<JP`C%-0aodogPx^MV*a5hoJ%dAP5J*t`=2bX~UUKF55)h4#9^=44-Hv%7eq
zylz3b(^pf2vJ}#Qbsaj5&;bfHAe<;>22GtR$%DZQs}<CVbp)L%_>(ax6e}?y){=N#
z*dlo1!P|DtK3-V&x!DZ58HK+eLbXw8+Ki1;h0jYtUS*hNXx~!*S86G|B*`rutyxRA
zl%NRh0~=M+1d=~)R7<t(q*_XQ5N}jVg_}uOowT$Hrd0GCcrUDP?i0acJO$>s)D|Tj
z$rB0nYv)rg1FACA+*k=u+@kOh7lwF&$j;BM)a=~gGg9N;V=XPRiA=~Sd<RhgQsH;D
z`0)^YSXtbc7Tt>Yb`0g%L1mC&UCl5(@dHsQdlOGl495&?JCSBRulG04HjSmM2G{@q
z%#8bBp<8x2w@!W%EpK<;xKYCsvmhc8_*a8$vJ3#kx&(IZUYREyB&29BK-D(le0jqL
zl)~ES<a5=f`g7H#`g7H#(ti0|TfiCx@FfZg0G9R^>K7&YMM*-1f+XVR0j^6zJMb0f
zEHG<R<EFq0E`&EWpC~V{g-eyjMwE&K6Fre#xwY4);u+NRJMxTqvum$}>yu{2%T7LT
z?e+W?3VN=SFSGW_G(3ZLp6ulF)L!qxGuRkEa`L%ruk40rFfllbRC_)4=hw6!E`e>a
z!3^IC+X6Ewfo*OYN+k?5s_Biqj8%;6$@kR`{svDzGiq9Z_Tu0Yf5gfysxA5kKtD<o
z2~SnlY^($Q27o^b;JJyl%IjrbfPWO=|JKQy$-HR5Q8b|1$?IWWG~sBs33sS6-OPsu
z9PK{gI=%$>DhjE(iy7pOIwTfQCrDdHaWb9|ilriKFOm+D3gHt~lE-TKSh#hsN_MGa
zyGk~x<UN(Vqmm^msZ+^oDtSpI&#UAal{~4EhgI@`N?INTb8Lrlg+yp$-|hewz#mY~
zW6%lEZ$f9~Dy-L@`_Qb>8ExN8`G(1rMv@}Lmkuz<cJyDty1VWny7GxQAEkp3Y?(|T
zCy4(foYEVBZ?cKvT#6$wtL>3NLH4Am@Ph44r+*D^o@1kc?h*+4(t7LAZbA3Hxxm8b
zamzs&5N+)TR7G(B>nFUA#i+^9>UX6`c6Rtq%mZ&W0w2p;OmiH<)JODkGZpg~hq{6X
zr(8{nhJpt0+&dae0anMlj|lc%>u+7?FIYbLY(JM#(dzwfsBa^E3jv<|@!e3?s^NLt
z{RJDwt&R$=BU`&l+#NJ|#LQ`qb*t^&jq5A1;Ie=i0jzYB6f}<i9;_P?u|C>*0Ka+s
z5MFr*3QV8AUGp}W1uf(Lg^>~Z0OObQ^wKI2Ybh!RzU(JxF%Gnl;{m@L6U><^DU?Lp
zU3Sujo*rUR?dYk@q?`pp(1$bvaaFGP2Uj2-tpcm~F>bt+7K++P0JcQL8?-pC93kLr
z^8y`jU8L;`vjY-1@G$yb&XaH3-@uv#_c+)D)__E~l9VXuIu!e3q4#<(^S4H@)_rnc
zf5EEp-VveRD~4kQ*eN4Iecu_Lx4~Z!8Mh&p?qJdCy^E-8$8XaWexSt0pqs#N-~_Ra
z6@GvyjUT}jx=&*YU}{VWa%@Zqa%@Zqa%?j~kYk$>KFg(Np-r$vNxik>*TBaQ@vN;p
zcuc{UP53Z+#ShjWEj*`#^+#)j8X8>B;AN`y(b?FI+yi|C^Z1;hUUVZG1ln?+i2|(~
z2DDjq^v&;Z)sgQ4nZ3%y(xF~>(BLXXS%~Oh)d97W^}jENPXi%wi~j{*)Mo1f!tE#A
z_P-?hJD&X#ZwlC34WZ*P<V)P&^a|%4x&as*!-4%GZ@sl(4yr%?{Y}vm3|T_=al+N!
zPv>jxm-ue*So<X|khkLL7bZcqv0qy$fV%Vj62-sqwCe9t_O~tnZ{*&I#*7E~3RG8y
z<)0N3)SNw!7yv19t1+rU(ki4m)S#|fs1_8esTSm^sW#UN98$Il@IfU2@nw=xt5^#r
zAruko2)4NF{xfz%!eqj?e}$G5l7_<!_vH>+q+afzbz>qmwBfho*>CBZX$kaz<tPdC
zKmzvAv2LBEH_`;DQpY$HYCZW72qR<@Bhn;#L_{r{*KWTh-~i+yA_oV1&=+-&8(Yg&
z443_uu1wfqu7kbg!q{*wm;v!!C(tODdJ3UT`K!Gz)mw0MEmeKQ`C<<Jt%qhN?8O8K
zP<`w{Ytw_k?A37`Cc!`9Ou&xb9fL9;3*6ReXbwC;S=fpfWWdLPMV@-=5fl<zELbq}
z>RRiJr=b%2V3?X(3)?}@<SHa3m2cF%r0|o=IuJ`MKQ8Mu9ig$MT#c_4zBqG>d1A<B
zwCD!>UF`|EKFbjq@?$e-aA+vB=QD#dGl38s28Zn5#b>9eAqmJ7ts(5;tARWWO8a3R
z9U|-DOO#jBB*A)_rGpcND2Fcp2U_~D_50btS{|{+4^Tms)Q9h|WGLyM(2xhM)X(GX
z4;N+4Rr6OfIdL>?w?$k8Ur;{huuh@kn)y6bt6DTi%~)|t`yze@KZ4AJyxs(8==y*g
z+n9L>2B&tN&&M-EZ+``sXofMvM{6{!_GlmySO#Z5v{?&&wiaN4M?-bioA?%kEgJ;N
zG$jFGlWC@>FUbtsv6CRnu<by{7|{A8+krzAlU-C8ft+Cab%d9+3?oqH0o1^8PL`Ue
zpk#qVfb#&#&<@*S2OLKIh+T&QN%{^N!Xs1V8*;78)W0ehn5o~wfe}0k98ZYHY>AAN
z=*NPeq)s5=5S4*m;_kvs2rS#g$ia1HYBOclQf9_r>j4=}0|eC$U=moJCnb?6a3hT-
zRcHwrZ<*J63AiEr(tVJL@Z%xw;2c7ggSa!!7XTJJ;;fN4l8RFsF|zVZalPh|npCZJ
zMc@k1xOL!74%h98n`$-T6QV2!_+^4HF~+L1M$3&RwrPtjlnK{}4j>4P2Qu$PuYZfU
zFv(yg6egw2p&Fg222>y=aGcFT#cKm-vWfM4{RC?gU(pjR6;O@1QIK;D#?}jn5Jk@_
zYBub8a<iU!5X!)h$GY!YXEH}yi9nv0<Wxn30C5maPv}UF^-}<_4m$|;2BGO4P|znp
z6{omYz_MsZM)sftkT*)9$}JVGr)LLqHqV>wDEJA@L!4bDoP@zEt(H-P-n0Z&dadVj
z2xq5cqxMyjj%24R$--7a9eDvwignjnaQxhc0iD&aNi6hls>F~4^6d7F&V<b!dj_B{
z&|K@zJ<N-@X8i5t&fDwdt@Tz2lI@0ggieyYs#5am&o00}ZMQHU<dtv~<dvjomhfI&
zUI~43%Dt4Ip?^(cMW)<$Q-ZzToG7{G@KN|i%&22~m(%$Lrc>vl(OR6<@zNG&ITFZO
z#u;D{5;<E)qNAOqBU?Cu>qB+LscX3llJup>z~5^b$l`1nsHheSOZv}x=?#&AE0IHF
zplTMwits;TTcwlHpO9pvzcw;Z6-*hp>kJ3@`K-;xkfxw!fk4T?QlS@dp3PBgYE#na
zjw$IDy=+Nn#71qn7-9+y7wUtem~|Fq3YS_gWvfA#9+pOFGoKFtemSwM7+T~`#9^nL
zg?@OA;!-Ge9Ysi!G(>M=hIOwGT*ea7GS!+6B%w52NkU=JS-O2do%I|rL}{t=;A0LP
zJgkBSm|URfMnRMq9wNwOoG4NZgG6i5o65X|1&8_YpA(iUet=yKI4}NW9>x)&UiUM>
zym&dl<v&eS69v04LM4URmey#Bp0<dD4xwo8r-Qx{eo949e(ZN~Mpng|5VJsMb(R#0
zn~A)sLJ_($sU+04@Fz6e982Oh1L6e38-iZXyuYHgX9eXT9k7sF!Vr+bB5~{FOD%Ed
z>l>f-;^in1ltTWBav}`E;oSAM#1&4UHpwhj5*Kon;vAB8Hj99yMRoDH4k1Ep`em}g
zR3tWI3AusFz%!J%H@>DMu1&PHQrHvf6F|elqdyQyyC(LsEooKb$tO=}{gNnY^QGss
zq^*;>DQUlxML0Vp%Xp*>SbB~QDM^yFz4`-|qvEi3U3;O>&~;2YqakP{fdnXG+OC^j
z8LE(8U%e13XM@Q60V?^HB<Q$t@9B;UyB>+!GJkSZ@*bE$dzF*)FzC@~9N5CxMu)2L
zol$c@gfm=22xuk?88si`3F3ws-Hec7L<|R7=rhJsL^gMcY;z+(InV;H>+AC9#;%eD
z{#NeShb-{3w!qK&uwBfZF3d+GnmNz{S8<if(~ZS2gaw}BU&y07yGs_gQS*J31w)LM
zbfd<!i@7^JveT2k7EgN^H5aKoJy;Av2wHj?HPji5u$C+taEPlc8F<^vs5uPvf<|Ey
zxv*Curj-lRVNJE1VAO2I3jlorN>a}ZqvmaSR%jHZ*OBsb#likpJS6F757g86kK)0=
zacC`F>N9wQ!JPQg@8r#p3?924iNZx4IVwsW9woR0hX&US4Q?75{HX9>$d(fOCHzZQ
zg(kg}5wS9hf=2*h%ax(DH}cj+KJnn@=+&V~|4b>$YblJx+}Pjm2o_WM{(5oBRiVMJ
z<7p8`MR?qb``2*q4>TZ@Vp5g|?kvPl9189)3cg<$+)x<YUl{zXFu0iK0ERiEKfIv9
z2-HCjTovm5QekjoB!({ESR6ic+jAGE6o&dfQIxl)Ft`s;_>2Vyio@qGe}T^{{+5!r
zKX^2<$BoCW#o^0ep3ldF-^@D#$gwQ#cduNW0$B2n_`_3Di@7!JNK{e;@su$H%}gtd
z?8*edtFI3Ao>Q22ICxOkAVnAE?F%+UEVr?st}v7~voLRAp|PMolr{}l{_s^@in&Yp
z=TK`9C}~jn?jfO~m)wy(nFIz<ypgvg*qm5k-oc{aW{tXySBLukrYLVq5xg@QD0gG1
z@1uEJ{NY==a;MtqI2)@q`WVVC3N{i*wB?4Ji&KX1Om~D?sB%2`4h<b_kQlcV1-BPQ
zb`$?^;V&b-5YY)m=__&lwz^M0#P$KPgYqIfGSLr_7|wm(h$4HEx6nDC6h=N~0UzM6
zZ_h$RX%wYzM8B_7_qYzOAvD}l=EOpfaAELM-9VIj0$8gk9UZ(-Aq``6Hv;_AF<ZA_
z32)My0bnM89+W`<BD*{&cQyWc_dsF%R`;Z8lRN#WfS1uTeXkHm0F*K$)c2*LycPcN
z1oS6}hBnENP{m7WMR}Xi$><bxa<M#|^pZPo2|5ZGMMv?FU3O4L-cs@rPVvS>)ya5B
zJYdBZTq=dN@U(HB>L_?2xCZbQ*5Z_4;i(uOA*Z{rwp7nj(NsYOJwH{?44}}=!rF53
zA*2p<oL!8boq95%7(F?~?V?Z&wvamHo^W^YFbJryb|SeqeZtS}&(m?+W5P`~1U+!u
zb3!pb>xrw336~M)_{;|hbEwyZ^MZ{E_+Gd@VM0IY5xhMCx5k7M@R^a|SNvp+i07Ru
zX;R60m8@3D3Y9EU$v;)HKqW7#<T;i6Rwa+A<X0-0rIHycnWB=rR8p>zpGl&<7SInc
zXvbju0{sB3Nar+Gz1MsUG0M&>arDDRJZY~V7AtX^s2^UEM{)h|xXPmSL)b1RNk4Go
zRxY4P&=0rCqqu$;uCi$TaD`n=l77fhc@p)*H|0@WKeR&nq9&~$_TsKX{jg4DOVSUE
z<e8%%vW2dn!$UERZ2d4B4;=k4i8r=>7|ok@`oaAL`T<f5LZ}tIdjx{)jl#Sm6#kH>
zd&twRq9=y(;ovMh6QzJHw|YM=y5dc|L9WA86S%b1gqtd2iRcF?hkq9Z*NJ{0j|%($
zy#xKQ@Sz0#03LuqtAl!Y{$V~Ynvs%MA8d)MhdGbg>H#9@C}e8jskZvz8dMS-lqK2$
z%#3^o3PXcl$vavU+=524br9V*KM5_k8QK#<jE$oLd88=seaOm2sIUidIXwLRF2gy;
zwvQU3C@bx%&`4+p3-Xuhq`C<Eg@t+pJ4y;(9UA#-l-XEF0U+v3^jHf;JT+Jggc}6e
z5@R}!VQh^)oTM5CXMJteP!!w);V+UsM@ja2g-s>JA)Emk#2Z07poBf-xv^kBuhScX
z>qKSu?E~cm-3~H9KJ2>h=%$Uf-UGI5)v^WG8`ORJ5$Y8*c5si#&dj8m)0a@K;ngBr
zp+K3`i#};dPzxDQ3(KHCp%$<!yiyA{zm%4@AF2Xc0jgrSXn=~B+)7mlHnmz93AKRb
zlys|8&WKuA8HtKo$S<rVd)sQ^5ZVU$47ET@RMY};LM@n33$#R)T9^p6&;mPD)WUio
z2YN#b8&L}@B2g4$LM_k|6}5m|)Gkm9v_zF!FrgM&s227r%_4#ZYC(Svwa`Mfpg)CL
zXc4twLM^mVEvzC|YfD71KrJj+wL&elP%YpsYAk_TXc4twidyi%pN?(d*1j!jp;0Bv
zRI*SdudC!0mHb&HzgNj`R5Dj3531xol>}5WNhOsk`K3yJs**C5+^CZ4B!ND_u<bm!
zHt`4f59P32tXUXO7-w>PNi!4k4eqOg83BLThjR#)PQFX6#lyJ+jYi-bU~I5wM)zVI
zcQ5nZsdxe-iFWwN{8U;XL(`WRhs`dSTr~pQ$zg~p&F?}(O1<eSZ<g6_x?)Q`e?jxO
zP;>zvvF@~xKU|2qn+;R~5iHx4?lS@p;C*Oh;4|}J1b!xLW_}kQU@yo*xHT{*rS|1I
zl(;XK%z@(b!bqKaXfRR;!BHGO`TEl@=2qfqfT<~SXmCX#`V$Pa49_xPkZnZ^mJSWB
zw|NbZ`+kFF+|YEIa4OqSMywu2(CKc0@Z<;H8zdpF9@K?G^OpL9hs>OnX2C%tun<{b
z+ZRIo;MlzB-vaE>zwk4J+D!Qgib<=ywJ5kyLD%bVrzz-w%O*&H)evnEjj&mJL-%o%
zQxsh72uyAD0klRtQ&Bp0l37ligik*7?w}Mo?W;K4>jx+owZyhL99k`>DASC~TOHj6
z1L~?^?^^C`NS+I?#)IME;@r<<Tlj-~9m)uCyR-Wrz)f-Zx-@^mVIw>pH$zb&89m(Z
zU_XIAqbG(Pcg(_dC}Y;p;CqgM2EeBlhc7Of%~!o29-6mmXmFP{m_G)l$Mi$Vm*>sl
z>+@b5nimDeSK~RqI{(zUd<+pkG;jIvaE6DPZ8~SXVk1%YBvg%B{~cm-{wI$xxp?OT
zOfGNw)x`u7XCDL>rkTN`IEsAo30%*b^FAWUqdicD83J1bxJRvhVV$~MnD-kh$xw+)
zC7V@paG7LjmLzGqD0%*HLOIyaM{^9W^2GJu)|s=_jJlgViCEgSEFcs_e{$J=ZeU6m
zB7JB5_z)TpTw4rx$eZJA*Ezn*m1!=%fIHt=4*pgpJOwz@)Sh9F`+sG=m@`6v2`(On
z=>jI7G7%AKS$Un<hh{KC&kT!ifi6Gm5g0nm=VcB!9mGW?OVb&Hi7arK(eDT+WECp_
zI6h$2tcP^WtauK;-ioK04`^`p_>|5Kx)>#*h@S07E>!b`uvbyO_}R2$5M|o)0(O~J
zv;s}c(oKxF55=uh{%whso3{Hof)acoYaUbhw^iy|ex+WITR1Wy`gb%;n)1c;z@Yi?
zCA}&ijq0l>PQ+J5=hs{Lwl59MDI>gI-33Gnuuy`5{n=6wrdA+ifokXD2b_=PJK|9{
zw%mYEyb5(Pr2~zhmhsbaUX}7{BCkpuB*RH3o;TZ_2TvaTfFai(GdQJc%-|_p6z*tR
z1$)Rjx9c55tgGX*h-LfeARLIM&b{+ue<U=8ssTgueEKMT^hi?qnlSKqE$BfO(62rD
zRslK&F@jXZuL$*GO=ZkL*!5~}wTgME03<!D+`-zTO0{o>bO%ja#D3%2$o@lAN0IV`
z$}lA-u5S7?Z~MW%*63v*0&BxKki)<2pjpS|+-|;B=zkfjYO~*pLOh5RG1MUeg;b3R
zj!8cvse`*P$<JL%u0sPkU&dymk-(SCKGNYx_9QU?%`#&qTbODd&8G)bbrmpaUAmiM
zXAB5~p*(2k-4Vy}_pkSC$6xh(6ft;vQ~d30=k4wC*4lC>ntp1W*&&MJ{2=XJ{srxw
zmDJuJ>-LTUkB>up7&ZR&8~iibNjsszwRKK|KYrJ4@UPz04gPuj?VHZqN_lI2QjP}q
zNo;Vuz2N^Q#sB%RPB6bUk8K10lPk#oOc4$Bvg^_mY-dsZ1nr2hYh#_-48yvpBtaaM
zK^**0Ft5ac(0*8ngZu=J{^uYi4j=@I(4(LLp#{*476(3vgG?z%iG#$CtMtdfwh#^Y
z#+H4?iI{kxED*Y}B><RJ3lxzGJ|z`6J;5g0u6!*JLaupkB?y8vJ0J+qs0wnDBM25F
z-dqU+J$XYOn30R@uk~PwH0VE+k44sj;4yE8*rJ-1@({bUh047W`ui_FfQ&-xi7<P4
zAcVVciuE^)+N~-#J0LBK*q4pX!>$kB)YyMz#J<*$>yz%-zXOosD@;{m?&rHSQOgoQ
zKFJ0-?Aq#4Vx^9tLPnHu-eM_kv{-4B=eqx=Et-d0vfHkIsVZ3om|D+8;XIxjar)nL
z$lz~NE~@|Ha-rxdd%T9FyD74d5LF)TPvAX|(GYw_pI1{fqiqQ6%0;lDV<^}{r4Vd)
zFr$M-=t^8G@k@;2M#*35<|EEdmLMYV>_}Sl(h>TI6OaRu!bS*2Kqj`p70%F@u?9rM
zs0sZ7EcSa9Yz%qw1@iQHmfS8r3USgco=Fu%F6;nYUc*bk1=taLHluFBKmv*mqwI`W
zUCh>{W)RH;2Bb^CC2U)(kl7eCi{XS;Rh<?QSHIy1khdCb0difVew!12`;_x`ki512
zJO-`HPY@t+`62T1g=4g*GTxqI-5%~|hW!tZyFs5MH|WJTHOLcQcN!F0X*X!vO8vGp
z{`O<%?T_WHwdoEt=#qGY+O+47?b-tgI6tL>c+h(3{sz}Wc$sQF`yMpwyw_l)hFzzA
z%M0p3?{Hf8OcZEc-9ov69?}BOb>JI}2hB~BSgx}X5Bf14Smo<^T4h>Rt?LRD+Tgkb
zzscdD4aml@tlu*}bERdlF_*?0L;3?%3rV0ZnRv#upy6>F9ykf=JhvNrFd~a)RGc#I
z96Y_<$lnw(JSLvw0vVX~I3D5?ubnN|zVO)>CH6&`eNnD2YO8<^`+Byz{vcwU*d-oB
z_GRJUY{S1f0sb#~sNt7vgkLTQzg!T0xgh*<LHK!L!!Oqw{w<xuPpN`V08(M50{`_M
z;QvE7(ba(?#&kOW4Nr;3I1!6K`1aB*%Tp~s6fG~8rdlKP<?=4pK>KMIE8l*aX7#h5
zrdb2*r*5me{nTw`*iStc_ga&35ig}LmwPQPzLlq5tI2-qvlinr`ZmDZZ%iq%0b_uL
zz}Ut5iG7)7^{_A97T4EG29Ncr^e)=twF>N~K5Mi6w8}aIPh-E7np3TZ_4B1&ELxQE
zG|j5AFWpw9eTn@(>`Sk8t9|LSM%tHEmfybomh~O`^4r!xT$%w)LwR}{C-%UpCWhyl
zX7uYu^xqKpp<?)3h=VnjRqil6S2pt@sq%KCd|9i}(8R7=gme~DvXSo5IOQU<&i}m*
z^JnieviIF?jQ>0hWv**Q8Ef$Oo{_!OXlO1nP8?`7EFWQ<cn#pFj~~gy`a3JHgTfS<
zB>*KhzXHvH?@va<Hn!(oq-@W-_*<oEFyT|lZ^yTa7p#xDYM0p`t6<}SuFCp=(P7IQ
zDpk(@wl3RmjO~WM9w<G6bQr3Hl;M@vxyp5}e9l#gb5-VCmD^YMRY{ksg6`8iD5c&v
zPkQ)J#<*`gndc{FuER~msm{B`#CJ{V<^zB?wR<8C+O<!Q>a+J38DqQf=K}s*{^61V
zDZIG&rnjJvxR?#AS#CFtU)JI0(gBgw+Y607b<8o7b@AenW?l?6#xA|R$hfqqE=7{1
zCn70dHv+$V*4;i7FV>_W+0)3MRm{EtMUCI!=I;?VpDyQ5Jzs6c)ul!2QjwI`jX2h0
zzKh@|KV=Co7XzTF6vJ)X8`*`fTuyK=PqmvkaRu7S&c)MPJb)vAQ@vb!6RvX;u6+sD
zB?;GM3D@QE>!+%Kn1oyDWv7;>=HV?Pd&hkzA&>NQJWn0+RGgOZUV1zJz6tO7_Jex<
z0tdu-D;v>-2jjM%4y0_{%*%IA$M5*hz_jC<r4#wZo<*ROnNo;RzH|gAd?_A0ARTIq
zZ3J@Gn@j3&prv&529~>xKQZazb*iVE*wdF5MWuUV?1kO?3yrZKfvrE2-u=K$BG|+?
zAMwrms2SuSy}MBeWJ3p!0o@vc_%0xNqz)iJglr&)8}Q&a!~?Cz@YE(_#;q_N5{Vrg
z-?slb(jovtx|bhaq^Z1e8K|5GKy;_8D{#11g<(!RT!q4o=_g<~8OvpJ|Ima7ym*nA
z0SI+aC*2_32VCXug2a1OMh4xgvTD`-Tuu?3wyTPtDhV>egNyHb@pDTqes1^S=a(h;
znNWtGDdlE(0du3#>`DHvl;5@TyG4F?%I_ZeJt)7e_*Kp7P7rVK*sNIIB)Dyo-l=oA
zlAQIfwC1N?X5B6Cw@U9VQayPhG4(dC%eRhT>2I;%pXMfHd{>_M;@@ve_<mRX`)%^Q
z%3UJgtBmSNS^WF$3E#)!-*1=iH%V>f^1aF^-~T~y>onoRgd%pwi}+BA_>e{XVK&iA
zVpVxnDf93!4#-CdrF<MO<s&I&x0Ev9E=A>4rPL*rvLm6CPvWKQkWxOCQb@r9i^{7?
zX-X<(XF@4^;-&1AQa+PXgdo`>mG@ot-2V#^8_j~JO==VnZC;RRk?Fq!)Mj88$-A4-
zB&ioPiLP11pZECl78>j5gJebV|5iJg;R&AT^$-zY^ojxGUid@43BzT4ODdVSTMBZt
zLOWFMj(!K((8{T)ZNy1}e=Up<Q5GggI%M`n%ct#j!w96yi4muCIZ2A>W{IGLS6PKj
zz9Nx|+(JUa9(CL=w;Yn0FQldTz8D_SGNk^<$6frbZxiR2kEqk~YB2>DkST<*jGet2
zNKY*aU7Nv-nMI*8ghnkdG>Gjz>(~_Kn=iz~6hqhYwig;Jir}!Hg+B97J5+_ln0}gv
zH&NcGPiEt)-6vcWrC!hL==BTE>-inMe#3cP*U{^@oY##Vz2-hCs_v$aUhj5ZH+S^<
zGrl&)Du)>^R3t1e=48!NuT-2ro;;IPr=F;@R`KMOtS0s34GEJ56k|)ZwLoIuv_gKV
ztMWH(l;7?08<XGt@_VEmGKqgF$}1T}e}BcIbia%()wYTh_|>4&eK@w%_qCzY{XMo+
zTS{L8Doq<>OUu4CRGN;)mTEigYe1!GZtUDDbmi9u>@!UdbIE#Nwlosb+<ExWANV}O
zn9kh+zETln+^_Uu9X_lW_mw^+yMLt*oAigu_WeKz{sUpd4}=Xr5H|ck*zf~k!w-%S
zQ8cG9%)pfx{d-o(rI%0F$R*im&qlfQ@p8Ldl8pDn<g$#H`{j~kwC4yc(k{4AW*e=;
zsTd`S0f)=$Sag2MT3n7|(fKJ`aQPz^ou9H3mp^CG`6+vFIgUl=ryRuPJuEsur4^TH
zS@?mI7{74C;1_eS_`NO5hhHoJ#xK0(_??7_C}l*N;fJb#A4kH^g%NK{`2V0F?3)E0
zR1PZ*nn=);WP>VG6Ynl9s;9=fv}nbN#9HU#lW%Ra6s_OXfh1)X%*aY{w$*6EaA}dU
z9c8Q`s&j0vWc)xB=9;e{g#{uXb?$EVN9PcEj~AknV?y)<dQEU7q_U|4y&w>k9S20J
z>BoVi@?%2u#X5lyB^cw!M3e70(e$FoLDEcTefNfqDPf<^F!hId%=X3Ir+Vd!k@cd;
z$Ya6v#o9{nRd;-Fl^rj>M2;Q{u1&0v+$VyiQ+zcYA6$xNjssuKDDRl`^`F<HsP3x|
zf`Fl~rh`Fa9r&#XON40uKm823@PGO_SwBZ_!Za?aqi+^}+h|W)u?qXtD=u0=KY;DQ
zfga>%w#MX(I7iyb@NImcOHz)MM7<zx2h6QWF<Q+XXEBKqQx_xNvY%?*bezQ`3KCt6
zkI*D2l;bN&d3WM@bzvn^*gQw7#WO4tOxoV2WF-B;5%UV6y09`StnSMe=E&xx!pfzv
zrY~EVBT#i=XvJ5TcE=D}!?E0_dO%kWDt2|pIM}3rrv&CF2AcROgYh|bG;GhY<uE<R
zPL$TX$kzC|NPPNF>B9&_`H>oTcW8XcGzNbb@~56Zn3l@lw3t5){8>UQ&8<SYVt<L@
zo*<y*?L4XV^CVaLT<JmDBI=Vm<Vkd;&y`Mzzi+~O*6@L3*Mo#Mc0I7Qn6`wNmNM`0
z-*jr3;p;rn2M{tMJv9;dc5qF^Mfmf-46W;ig)2^I9Uffak8DpvboSqRosqKtYGdqe
zr#90u*TyI3$1EnT?me`EH*&5bX_WQ9r#C<oQxS`#9e>jn(H~fE<qtzxLw!tQa^vwC
zVdp&9Xisq-)`IZpJgj00=b@x<9?s@H!Yn0P2TnxNGo6PL1B8^(J#-$Dju{)o=pH%`
zn~)|t4^MnSI}dB;e`)7o->f!Vi=~&&n6epTO0XYBqn>uT`l=V+b}!CTFLK+x7_46S
z+Px@NFG||IxLLg@YxiP|dQsl)#Uuyz+@$d^2iRj}fIU_Q*cf0^#K{1AtPHTn$^d&T
z2G}Tj?5U8s7{*iba&FVs(|pxNg;P@_$A5YNJj&xhkf`z%AhzN^&QUPBlz^9dm3)=o
zB<~^L{#4rrl$V_h%13#>98Ai7=y-H@a~28c7#>Z5NgEo+f+_dQ!K93l&R`<#9>X=t
zw+U9uvB2_uDX_k1EPQhondcauR)K6D<iZyYgh#Pg6lot1VSUkP_~tBf?=c*=0$JU0
zL00zVAQSaY&g-l<DL(!qgW*x6nlFK~W;7RHbPgHiSE9+&o+af;2YlFG;-R9iZXFVg
z*@Tv~+<_~qGcZVI|2GyE?1;;GZj(mhm-SVjiZYb18WJCu;;V+B#ijVF#i6Wx)uViT
zDo$81F)qbdJ*teC;;ROk;*!2<gfmTLFv3&@BTQv5!c+z$Ol2^_R0bnVb%GJJA30i&
zaq3qa2iz7P2S}Vz6QFP$<sF)E|CJabsQa`IjGh0DhBUj8#&9>zY|9{ko8`+OU>cAe
zx2|vK;#k*c9&KkB(ctN%F2Mavk|$sM_d~h<|JDr%An4r<AwlEUrJ^@dWyIo)2C9Ho
zoX<o9zur3MI~Wb%FbuUqk73kqoN<A8cfAuRGDT||?FD>^@1s+l$4&%f()$Zn*`GP@
z<Kqp)w@<hZvHD)FrogT!{0ZHN;Ps7_Ls$y7Kd7rX#|!}$Y^*tG30ENK5N|BUh_7Yh
zcL8pyyJ~{$?K<jm#BR^!#;(}P`m)Mbu&Hb8#g6OO+s?N;j|a;nxo-PL5H0H*O(1wW
z0N{873rF}2AmEr%%e$&>Rm51Jj-04Qyw;z9F6_^p%f%;Nf2en(tT(}zfEa5&u~f^t
z8zI9i!izP<sYo*s1J)M-EAGh`^O(R@+syDdIl%)9PkcOMJHS<9#mJfO4-INY80|i8
zpjL2r++)!f@g`DtdL(i>;vv0q`YH~AJLmw3qOthlQ1=P<vH`fm8VBq?HwL%~;BXp1
zn#Xk~fOKRdnuJAU4yafqXvvQL9fFD@$^}$JrUJ%&;|K5nG>)AWn0>JfcNo@Y?;STU
z*4?_{0j?adN>t)k$q<!1e;LT{cE}0UMM?Cbmd=AlN=YMF$;cm6P{yv{#b`yRxGLur
zVq|51G}+WmId}Nj%TcHr&62EeL)(FGa(N@;Sls0EW}bfIYbeSxQ>?eSZ5Ys10(4>P
z_oJ5r*rXkT|5w4AYV}KocSJjQi6M`sUBu33<TVEC132S0eDOA`ASIMm6WoHm3j*7(
zC=R<CcNAdjjlOf$&KsV<PCV@O`iFdoZ7jB69lLzl@40RKGLYB8l~UL#sWGy!Z{Dil
z^1xPnaPoaS`9a2gh1>wg9oU9vXHNKt&w9_vTV5nf+%ZmPjpyI8y#Q;gu_Z@g-Wn|B
zMgdrY?B9ywGwv(OTc5X*B#d);S0Du1n|G)%_ztp!GVU)59w@|y7KMQwS6m%Rn_n0_
zfW3@xgZ)1KiWixDf$fG~E({)uEa}TFPOt?Cs>JH=#|nc-uuTUV$9<l#g%-C4QSS%`
zcR31th>v?eT?7{P7UnH2%4^8mpSP|kZ!HVT+W-_6Wo7BWEQMctX^1;-S>A!z<=6|u
zU5woX{J~|xLp*70O|0sW&+OA`_U9?UkkG?gi*uHlYqo<|?dR#6i+Ol@1UoHG`WGcf
zHmhhuZv!ZzlGaaSA^FFoVXV2z_T$)NY#D%Fb2SxU)5;aWv|pLw8&ZpLurZH5!`1=e
z=Y-(7N-J28xN7L`i(7hLj8jRQAyLwB0y9?3K$%~2NDd3a8O&>%2;}fSb;bQr3ivSW
zI{V2%!cIzKcv&LW=4A51ih;F>6fhyqMyJ#WZ0mvpq#+E|VawR|4X~p6EjXeXHvnT*
zlNpJfjx(CE>>g11jOphivJIlD6^l>~rA@{m(8XE#2y882z#C35z{VPr)5*};*j;}U
z8P*4eHS4Vp?i0y#)g|ED2!#wm(Xty=V(W>mxn>?Dc@q=k?+Z=rDTVz*uyH|Tm)D%O
ztu>`J<u&}FtFVbBj=A3EHS_QpPCd)R-PTMqZ#@fu^UE;!XZBxe{-YT~DgK%LarnU+
z78tP*iHkyU95fD&&Rc;G2CDze{_D)w-bzvbnf<W^>2iU{>PA>1+mHaN4d$!g!@ob_
zpV_}rF>rs$uoX$f%#$;4J@pCMz$$J+Bd50@6Kdav1cj|itR3LSYmbAAY6&h94X)EZ
zfE#aL99%Sv;35%lzcdDAS3C3xaK+9*S?rpn#@_`UcKh1U|02>_U^nP$3`hw20Y9$%
z8ohdr3&cE{8fD*4>&Zi(3N^yi(5n-(L3}<iX?n2le6zIyM_u8Z7SH4n*yE_=A=yqN
z?UJEk69)uBRxQJZc5Aj*9r6zCv#hB9ibxFGByCSC3PujDFI*EV4AeCh9$Z&g)q?kR
zL;Kfb%eCTy_s2aO>qFW!Nwp<ZvZbWZTu^9!y>(fwQ0Oy*K%u9DoE=N0LwzX6=_H*$
zM1r2E?3D+!y;2^xSAdP>e@bM|e2tDwURWb!CrUCW;L8P(_60**b2ZC?Pq>N|nDPk2
zk%N(GTN=(#4ED~l$`kXMPQGj~W+SUXOMN(lv2Q42wwZp&3}Pj2xYxbU5FC;wddHJ%
zgTo8!O*zR3Y8?is^pC8H>4xo2g!OivM0pUw5kKjmQyg6uI}KYnfk<&I;TmD)=sC<w
zu1sH#4T<myHWAKdT?KB=P#@z2M93H_5NzMXyt!sNUdOVG1?290mW{f7X0SJ+_^*Yr
z#Gb<wSWJgKllxIv<>RdG@wlqUDhUmK*u<W=(+vu!9_&}xTZ_u-tsmD&zuv5p#TTJ_
zbAhiU`t5u_j$apdvLDCCFCJq*jtejR!u>b~6Oe@cIHVWcK)%*r$?#1AZ-HXDRvx?s
zG+_HS4h|so+wm4(mXTt>TiP;%%-5C~tS)VtiOE&PZbw!zxopeKXSM!YSzBr=0&8|2
zV7()mC;qGO8FD@r5y7nztmfP=fX}G8Lh0v3`2<AZd+b9plo-Guz_s*6F0lnp!<rM_
z*2%GiQzYyiNMHpEV!5q@BS7$d?VEZBkyayN%YbYtQjxOFZtQ4su}Gmz>o=PHv(0d=
z>JqT1d=b7D%x~}d68|bZszp}STR%zoQi95Z_LqT(2n#pMK|3SOWOfhlU_-0BOzSLu
z9(L_n#fEcBKp+M1f`IG|2jUI1f)@hK&ro^e-!bVG+X^at=aOd8D*mA8G9@3EY59oi
zoblXleH<K`>x}1|Q4vtJM(_|H6>$Lf>Zi6z({=!tC(;3j9O9sNjN@c)ChlO#O@1Of
z(#+7HfyLn=IJ36JGw#XgMR<d{2GO_!tIS!W`hbJ5j4U7nCK3#4%b!#o>|eA<jTgZ_
z5JpaQ;d?M_+=4Squ_M$<>FGC)NRfKP2yn*zD*89PQMF>+$6D1QfyAL78;MOEwcXaX
zkryP_ic-h_z-izs14#}}BOi+mX+JzIb#Sg|1jEyl_3+e}G(5FVn<hf^6qR^XlCF|2
zD!Jo)P{#p#yOp-~@g5?--S}S9!wS9xG85@xlZYV4MwIb=QXeU5PsA4c=-GXpVe1%u
zR3!DkaYTwt>Z5b;CaI5<j7+2q_7S!zO6a3R%DA{)9~psnND?+7zA})M;q=qP(fNuj
zz&S#Uy`fOsHnL7OP7#^a#&L0ea&>V+9REEtG#FzX<+30F{-z^}xXQu$7g0pURG|o$
zN{&vEyMroeR>_U$f+9ZE6p^eiMuHZ=(C0zao(F~RDyS<+8Js#He$G~9cWao?RfDT9
z-lbZ7*M8n=o&9U<J}}_!gRRzNV7$SVidWb;0L27&;InlO4{_<hUi%XMtq(O%h@=FF
z9r(BQ{#g85_pr9(^KVTU+NQme-fZ9AQB}lYgX>njOSQ(laS#o>9@hyC?9M8ml?Eo^
z)2R8m;xCi()<=2kBSV$obSM0kfU*3!Bn@aTxRZEQ#w#>ZHh!sqtpG!^73cq|kMOmO
zM0q+NGG{Y07>E=JvP5wcO%#cn!O0($@G&x$LZFprA{%rN*peUNN_HQyt0|)@f&quq
z3V39m(uSc?sCgU;xe0}EhpL<<+&T}!G}3y7*?$QS(JhrjA6RM*MuO03>Ufgipsdz4
z3Gn*}3K~r-Uo<GL&}i@ypN-}f8l9%$2fVZ_@dk`1wvz1Bq>r$LlJ|kcFpixuNeF#P
zHb|ShhALviZ&H6uxC8y|V_#rnGyVXr0Ed0yD^(cMy5H>pC}0VIor49aWh<%wkGMC1
zkE%NR$1_=A0>K$dz^G_5nAXrzn<&<#MV)~O-bm1(s8La4r8ZhrgalCm6O%x$!?+dS
z>RZ}k)mLk6?V`9=GuZ(Z5S0Kbo68NM5<p}V^8bFHbMKuc6NvvdpI<(o%$>RSob&9@
zdCvA+dFMRat#0x*8oSQ`GV`LtGjn{+Nn1qsh$)Ezfbk7qaw8hw8+yf8bSG2OEwPzo
z$ZgP7k_|zF%icVtSxV51J<S?6mXm;GryieQu7%^UjSM(w5&Db#U}>iUe+-0P7!VOp
z0V<gn7({hNum-^i7lFZeZy==+CZh%K#-z2Yb`@uM^^1VB)JRmXvP5YHNz`b4QgL9&
z!&2j(5^QIyWmZYNTO2}~1Q3PUVGTj8BG$k_#D_;yP{gaKTx0T99{Uu7F<tiBogDq*
z-85jh(|CS|8t`Vb8EBiCvxF!><0j+<QU)nBvWd97LSDZNh54#;&J+fR+#>A(b7^l{
z@9hDr37LVE*WM%}?s2od-_t$lm${`qAW+H|VLs@Qevkbw)T&eqT$Y1(+F`POrRxD^
z>>waKLSi>U6jL)Qu2dObAOz;P;aj8VOYm;02O6ac-^C-<qzYV&F+QS74m#5z$e?*v
z_1>S<jU1tMHvroF??8_LdL}?`oVB%Mw4kMBpzH}qg?n=K*VDXpV~0f)22^;L{5`X_
zbnFw~VS72?WvS#`@RrU_spLFcC4(sm@2YTjCQ(Hxj)-g%$C$L^92gS@s~v}AU_Ajo
z=`u}p93BuHL6<MwpeW1uErW7a%0<SYyf{L6Wh{esm3fL{WI3p<_!@TL)WVMW1f#Dp
zUYQI-zRLXZXa4vGy{GX6zx|36%E*Ybgg?gc_WgH?E2>tPou}jeGj@8W7=IMo|Ge``
z&;DoQU8?{28=g6gaR=GKK85cQ{m&u*iP!)1K7PLZyk5r7E0-N({JiVC#~nX^GYa%Z
zjGv?YnQP%`sy~EjMUFqvGiu#h)xmCxM0GpCl<&M~j@k+nO)rDF%K>^?9cMYK4l*d5
zw_6!Mtk#>m36oS=NMnn1{f<L^2NP6(h=kn_73d=$o1l+-Nb7FIylxSuOsXWJod1Ks
zxW{<3_+IADMFwttEjGYPg4)9UR)X51{FSr*+&P`P821fzYJmF7CwdG}%Rh=7pmJ1J
zOocOTSIn9m;3AWeH%ByPN`+ir^MHfRRv#9{zd3k;b8Nc!%!v7h1SCT+HWn*aka<&U
zC2s&IjK~d8$aH)y8t?qG?d@awN7up!SUh^Z5VlyxrN-+-NMLm_X544r0M5-p@QRrr
zyum#9u!DIR(09W%PDP&zd*YW;)y0E*FfrO=u!<;=3z>#`;iWav7crpK%7qa=b$Kom
z{J7leMx*%=Yd;Ua)YE?cSGe1fQjTX1W8Q6y-^%bk!hS9U2-ALO`Ea0&i?~`ttl$kW
z`gSeH4@?5Omb;6BX{QzCzv~KW=pBz@d2_}75azZM%JI-2Oh{<JOqy%?v_})_rr{Uz
zcW<imBjY(9BA5DE1N?OZF_Efuw|2h9eb#L0!8h5zRkuJ&t!RFFFab%xkz<xEu^yVj
zKkni68wne6v!D)}9un%2cenng@vbJMf0y<NQp&;0OXUK*IWpOoz?8^Ruqa&6YB0@g
z5LKdEbeNE>7TtD>Y0)iO1+5m-?H1k9Ehfgam|?e=9^Il<&}wm{-C{;`i%BspX4)-|
zjBe2?XtkJSx0o5-VscE2*>;OycqAXKf>w)T>=v`5TTF>*F~@FkOmvG@L94~Fc8fXD
zEe?ojG0$#sY;=oOL94}ac8ht@Ee;H~NR=5E-ORwskQ-Yib|W{Nq*A(qo4(gzC(D&x
z)ZPciqu)Eaq7YMC_&NU^F^O+!3N19eoVsCRYjxpwm`2<C1o)<G_8pmw-^DP|l`z;e
z0|qr~o=88q?ONr55d`=->|*(9rX{>;B&_`z(+5VkKfY)C5{D?$7f76ym-Z8}Fb^WL
zGQh9M<`12M=AX4(Y;^nIVm}A=ZILRtA;!^go*+~vglE7%RdYXw<8m4A-cNYFj(6Dx
zs-qz_fgO#{&2jn@_<E#!tUi!F8?zQezWV;T30h$IXT0RM%^n7~l*s1b=j~4AvD@gc
zF<*K8E#|^fFlFol70Wq|Thy$>_LG5TRdoF0TF4$BIG~^4!T@AiLWJ4h%$X!O;AL_{
zy51!Yr*7p1IQ&oxq&KqT9<2pr=wJ;tfYwZMN}@({nc<sT1ved|l^e#Yn8##kIEVMc
z|A>rvJVZ$akE(b7asnTdWXL{;j^4Q9L=^}jsze9Khv@P+gNyvXH(NZAo8Z1twl*pj
z04^--G>Yd-Keyr}ba0=V9e%WY7R1V@h)R4geKy{CKYYVG!j_f1phx~uVEFa_;Lu{+
zs@nG|lp#T5SA_*d)@B<!#zPQ0jO{Z_p*>e-A)NByJWFUVsqyrgMD1p)@1;&h;pbZT
zqLLqsg#9?=hb}Os`!CW9%W98W#ly7Gu-gf*C1oofI*f`h5h-W>88b$mH%ZdU>6e>W
zaNPvSS!9LW%`Zmk$32H=`jAa;gKRzJBU}P0H~l>yDYPqK>cd~hjh2*q00kYq9b5#@
zds51;F*<!9{}W?s1}OV+BxTBC!}LYWgjxHpMv;SV217$--<7Q8ShHNSrqCR@ugcAR
zRqu0O)#_+|&B26!bo_Re?B{|SQPt3HrnC!Xor)m??~3h48rxt2V=OrlWc-oPG6@YE
zAWrXmHC8@za%12@=Ml0%M^e&fW{Offjr%!*2^;gz*f3jCf7&aK(+hs7|M{I=rXzA_
zuN?j8wa4a6Jqsb7&)Mp8cWr&IQI;iqC5<uk{xSxBFlFf!^Ig-kzg9-!)LykA==c$C
zTywU1!;NEtCOG6e<kO+;WX8In+7ZCI8Ys*92i3-0uan>2@b9pEC4cOXB<||5hKIpo
zDdX2N&4GOb{I21(Oe<Uuyv^}Tup}L83fSb~TJ$-8V>s*8f_Kzw`#<6QF+M{_F)Owk
z>Cc_%TK;<113@W<BPyECDGqZX5VFOzm+|U_Dqx4}0~A2bR8Zl;0HTI(Xd&;*I03Ne
zHfd><HX5T<W{DsDVI;^syjiL_@QOcFUHk!Mt-p(WiS=6kLA>l(Dl^#xc$m!rGddO7
zbwZakRrNCvD+c98bt=J%qi5g4`M^)5xs~#|WG1>F-Kg!y^73KOidPeEt7q{%&9MfY
zT5v82fyk~lSv4Q4d2B~#esWQ3%n%xHPE@4lkiZh?6X=&EJPiHKtk9JN3iX8PU`_E=
zFMf7n&*GZS$2A>TEB|Y)-|;CWp206hJ;wNKuS9G0mf!|{fVmwn$VmQ>O4^LwCy4XG
zkPUoT+R=!I#<^wUm~+%+w7QH^ms8T=IF`d^lzoKt35%1<RC1|8vbk#K7DB}Nuy$U9
z<`rA$48a7#r%Z!*8$FB|2-sP^UxI^{EZ=Ccj6@m(MFmV}FxBPuXQeUWIGAO=UOA|x
zvpJ1#LXg#x{Iz%9$v1a)5f)!X`&U6`shLum8xI`q!ax9-swBe5MjUQ-0THm$PuG}l
zN|o-c#!QXHkOv8>Remg!w5p~p0D_d=r(QXo&YTI<O$^k84}B-J3|<-*Y@F3jw@&Rt
z<OdIDk^+Hh9ffer#@}xeDLnTbF#OS;<6$6f=8u0-@q3w&7@a?!FAn9(4gXAqdJ$g<
z?OD0Pwt-Eau#+EUQJLJa$+4so=7Vwf!92W1hE=LVZQSZ5=6|*r6x1+iPiLbwydT6;
z!JxSgoF^$cxkuI%n?R=m2SxEM1%}2(DDWjx+eTGfP_4W!2LSviYE57vQ@3jcAo~Ma
zvV4InQFn?0TAJJ`4tU+JHh`Z>lkih|WDJ!_b0KlPVoOZ+_3BWaN$Z`caSS@2#?F+E
zVUQZSma9tbfZ~%1E1;OJ2J;_J7ny#jF00)T?GG%`ib3^*J^kW>|Ht;!j*#O&vZsMJ
z^ueCCy?-2gy5UCQ{ngl|5zn5aKb(*70Dbmcx}%wl=VsD^>Zoe?Gc9N_zEZ`rc#nit
z%C)!@`-74&NjF;d4{b#ksZ0fn{p)tnU}Q(<p}MK?48chbO=madoQ0lDD+x|%t3Na_
zchj4dP@>MH;PsBm!`|6f>YGQesy{r?r?>B4=fO#b<*PAA=fzqr`fa?LbE-4Fz|-JM
z-8iuhU;UmIZ)JDhtcKwA*p<0St3K>>RsRkpF>f+5%d^g(x^8^kG-rC}6LnLwPWRT8
zXN|&~mUzxGOkz>LVMA&N=_N_F8P8#ufL~*9*RnbESr+Bu%i)*3$;yu`FUmR{v*fA%
zx}x+SYr!iV*y)fm|MtMNC2+MLf=h|qMV#STh5PBQ>b>wHb<@(vptp4R_!2+2XEl(=
zllSOfg443bc<bh!jA^#J6V(f{oIXz*_A#KupHRYI=RY|S50iWzygI2neb%Cm0B(al
zS)+0{btZN<l9&F<!+EoZ<282JzXuNfoIt1Mqyx{*!P#wIyz34Rz_9UB6)#&YAB*+d
zZWQGUCcv${^v;)rNfM0o!YSF!5zQE{#Td>pfH5mNM*y|7ANxG@d{I`N|AZu}gMI+o
zkfL5y6_~mh{R=jsVLvT~JFaRjMFOL=F?#EMyqyp4{LJt);7!JOLB^Q6^b=$w8hAPT
zZnT_>go%8Mm^%yrteb+CP~cJ)02kZvDlBj@<V#%(DV+fJO@Y2b8uyh_0nv3q+H{iC
zeLBe;I!V!d1S2yMjLdB`{&2lm)MM)Mu)5r@F4gKXPhBe1<u-NsrMi@=%T?-fsk*#A
z80LACy<iabhhm?6wJYosag;TGj`7y-m*vYFQe-d<yfy7S1_7?c&A=TRUMYM34qkvg
zefj8b9F<z=;6U(pAa@OpUWuW!tL70YTIZz;N2km=Ue_XKYLd>H+{jb1XRNEbb9Qv>
z&W$!i4J?t#XiP(>c;~&UW7pLzaIrQTJBHWUZ?$h=l!^dkkBT|X<zlv)VSGc7;INt+
zM_ATztDq!{cxe!ejJIi}=*lpX$GkefWf+a9*xAe*TIU+0;yRJcZR+yNLEz~>q@Ri5
z=e-0MG13D!FZn~yIpix!*<4G?S$O6!4s;<p`R8VQoc}oIfKu*%ngS@##n(#pbrinN
z!PmMJ2dWr1$+n2EejhpOj92(=#s9~~id0}X9aORd1Tq?hiva~cz=>jVOU4E8uR8|7
zdteXxxDkPZguu1QfyvIm<!OOiG2}dop~5g^|I{0O*rcz&<KqjccliS&kXO_XN%-`&
zzT6c)&jw%a+EC+Zeg{g_<DGjc<Acu+fBdfduJ${c{edfzrTA3L8e=za?gpAj?ut-7
z%Hwr)hAO}0JF0vG%HwsFXdYt+A5JRdhJ2n5)Cx7DJT?R4h0bh$@laJhgz`*tDsQFs
z!ANsEd>&vG3N@hoDj%(q<(Cdq<r`5RZ+@2YZl8{p*TTi2Rw#t>ZRizL`5Lz>Uyt(X
zX8H6!(u+57O8a<=U!Uk5X_g<^M|v~O@|k_4H_I#!dG(3jY_oiJAL$)qmLJncdUMS3
zIenyetXY0+AL-3A%jflx-f?F6aebpVJ<EUg)U2`m$mEC9x3)o9Ltmr~Ghn4Wen>-U
zQeCX0FWL@xtU8V#+5B*u^<gc2(S962@}I3p7{lu6X7#kbF$?fmOK8a9w+ypBj0xz2
z13f*#6P+7w6HfqWtRe&m|3;dXVOhYP^?SGlRT*vppja8$o7~GZE5pp7)~w&dN2tp1
z5mU29vYy~BtjjVh!{*>ESigtEP?g~@OgRI0#kXv;F6@u=#&aI3E}VxcWI<h+HpZ+B
zW9$RJM8bl)FfGTd49n~TzeK*GqQbPXW@VUZANVE06$KTh<(ZXXvwh%~2v=|yfsZpQ
z!+`t1Ffk3m9b7{vL+gUb`@}Dit)MPUOExRRvX9HJ-p#rX+!E0W;=-~Bo9+X*M6`mr
zuq?u$`@k)THoi6YLAyk<g1WFQ!jzB8tz(&TANVEqAX+I*i!kLr@JmE1xC_%P4S^~5
zfnQ<|@l3hhm)hp@tf88DRurU$dIU5dy>ZHerW+F>3k|}(2%E<Eqa7nD>YHZ+TZs*G
zR4d}oMA|}(Xh4K<8@|+fpQoLM>It!x*x*OCB92WgC9ajP@ueCZu)tzH9c(2wBvP%2
zhZ6-5vV^e_=H7-8mCs|4xt_IbB{on}t%$Gd-R{2)cSR-QIe>4&Tu}|7N;n+h3Hr|5
z-d)1CVXdf$&?Nkg@D1OFwY@uuZ^PPNy~Vd-t!Ri)CH#$W8+~W(vHZukVXhcqTu1V4
zm@6tGWQp2Dc$9C$++JPFw_&d6NL<(QZJ67;Yxy?J?cKF}8|I3V2wB462-nhE7xiK2
z=PON5+q*~Ut&38X#liOKNP6p`R9$haz59>edMH&H-n4hO(Odtds)`F0yNc^A`oOK;
zokSnF)vIsl1Ghx7ab3c3xpgd0&<B3??g0A0uiovx5B%!Y-21?<-mSb3{OaAf`@pZ>
zZMqNq>fMz4z^~p-xepBM)s*|duij1hc>Hp-`yJc;jt;+LkKb_wyD7b#6uYle-rtSa
z6YB%@>y!0Mocfh%`t6uH<osGS4v(mXT=O$LKN!S<B+pyR`+^3Zih07SopmX=U`e-<
z*PwX~Amt~2Gv%jT@p2ko&B;0>3c2vbQ3*INQ>gDL3f?9YpVbZCLVexj{EsKQCK$~N
zZXZ7V=26J_k?ITFk?afH<@5!7X}-V|ccK1yQSgndWmtb`3f+BsVpHS%yn+Nr)A;!b
zhnhkuM{#$-y#x4Yyjz~R<=LL5&=B=(Vx~OIl!uw}a7R;UxcSg44|C*Ujy&Af6gt&>
zSlTpUh^y7v6q-N#qvR&vdApkNbysWidAsVHLg&mrkcOXlCtXwMyjg3$i|?Jdecr6y
ziFi0`?P)Aq-{hOWD}=kM#f6oaZEb2C?m8-swkJ1*3U+<Nf-TL>yACwJG`l;k`N*vO
zj^^fB>%ZH4q_Y(T>;{{U?85K)yAI;!Q7_0^aPPup(%`ACe><Cx%-)RlF5hLaOmp)G
zy9~5<gzfEfG=DJb1GWbOE{|+a2<pI1tG#+@?>yH>Z13ab=FfI*W^+yW(vId1v$?&F
z=FeuWV{?s7p<hHchu`yeZNN>dxh-sN`!8J0&L&^VuA_Wh-<-1R0KUxH4?d;LT7Mc?
z)Y(l@nj~@NzG-`ks}XgE?Aq51s+))G>SC3zQDw-i52ec2l(1PPlT{i;R=(l8cA`pi
z^KfCrtbM35eAWk2<=>RM7a|Aayi#Sjs|8R_-L(Z(8k=z?l&?_b)LHLKl~1V+W|dN@
zaw>>{28bj~Re%zp3Y0*qPzkIml~UzASCbR+Jwo!8pdsT#%J?)e5wt^`3ae#OzQ9%Q
zg#0>LUI`L1Or#819#lYFs(d}mZ@*lW^cRt$f|L>|C05uZ0x1=;w@8J)3PjaOpzZZl
zAgW3xtMpYMs)|>t^id$HN-3&LUUYPFenZ8u<^$O7VfrH^E`$4N)b}=Rzo!d2v#oTG
z;W?b!=}S7XY1_;_yMpN_H{Ezo*Va?`d;>&x_wDypLQ_4vb34Wd(?|J|E=+FPR<`HM
zV6u}1w@Ja3;(KaY(BavbyJLJXIn$SPud`{}+&!JaaVN6m7Ad(VQQVWKE!P+y9CwB<
z>CUvKZQeZ{!Lb8a=nE;-n&?@dyK8)K?Du_1*Jn0u)AsBLj{F&)e=g6D0x!5XPfPBX
z<AWnl_a$ADC4>aia#?7*6xy3ey2c07JieqWv*QsLLDQJHG|_!VkmHR@4mtD?ITR+z
zACIIac;{LcbVLxR#U&07d`|>%MaLnoG#+u{<Rd7Y9*@EZ;>zL?7eUjExHN%76Enl~
z{DB$}mn3p&86Jkoday>yLjPjKCX8ZPM_7Qr;Yw><GQq1IVKNtS5jI9Ob2s`OTXOgK
zlHOvYvD(P)4r!?zU*xv?l3sp_C8AX^cfH^7dG2ao(jT7X!)QIsZ9!O(`=KxC!RPrf
zTL0)(CVG+P%CR-K(U&CeJB?>w+-j4%+wa(hq+Cghn%Gbr<6<dCn3gsc>uFir!nC~2
z61~x~g%6`?k<L9#(5EaBO;DH=gAb!!MVNw}d>BIkSy39sJ^{Wq7W;^RB1}Xw3q}(W
zjyA%gVH$=Qa>AiVn5Hxqi>8UaniZ#n>C0rnX!=ml3Sz>fX0co>sdj`DrZ=1AqNNq4
zaSR^D35Gzn{z2-ID7W~IXMO4}=p(ez%UTif63Ew^Q};!BNzVtKmeenyq0mp}O9+Ql
zV1j-m_2VdS+3Y!-+6i5SrfMi`M_u59zAyD1mbJPC&k@h=RK(KTps(E2(QF51V21v2
z>IW=rbq$_<o{gzHV1uy0QYmc3Zs3UiPHHm?TfKwlV^3SE0ds^gP8XEPO@tt=$6-eq
z3Ll3BGo-zqLE>?kQORnJb{u&ecGL(EE7Uv=JL*u_jz*8ejm0c$2du~8#xf~v#k9xa
z%Tt1~$>-+daN}7NJ`M|>m-goGiVdER!;E@XYqaC*<FKO%rR@;>INWGcWmS}Z9A><Y
zvN0|KTsPx-(?JwgHB`dKP0rtl5!xEq%NACOb{7aP%^^V8TYSo5@w^2??69*iSgbc^
zv6ByD93o=j*pWrpH8Mm6%``GQdXiyB*excrNQ_(Lm?Z2Eoh%VeAS3YlFl}ip5ltIM
zGhwP2_r_2~-@89C><F`1B$hUN926!go8_WO3KKJi4`Yal9zli4VqhIhmPGSmy8J8>
zO_z+l!h~ro5iKtIt1wwbED%i=M{Qwx7_7(8L)Ltq7^Z4Ei^Ni8kN3h9m9bp3pu)7w
z;6t01=rN-BXY4R^_>!hzdk_ATuEItH{3qRk9R>JLx(ho4?s8*D;i`EG366ARDdi|(
z1x67V5HOZR%<qmDN2>8oL^PQmH=5)CH5^P{pAj#T1Z$haLF6SP<Hg1t;D%$zD|6xo
zj$rV<#Bk(z;n;Wqa>M{RB390eM`Hwa<Kj{mJ;08jvp61|?AlwL5tL4iN2v_ZBS<ZY
zM=Ds>7(wW?c!Y9*A3@>Fcob46ze<dtvphbX_5?u$jdSDC7(v~<xYR{YFofy+4aZUO
zNM%3W><kmTXo(c;IbP*7MVQ{V9+P5m2CHy#tzn8^UW#(Dri>}CuqiW2k7LSR5vI(|
z^gT@3o*@aF@+&OYn<;bmW!RKqg&2ZI&#i<V)EbtJc2G^|XPca17xg}i#JDKT%7p3S
zIhCGt?P>{osE=48+Cwpf4Aaxa0@3s|bFwGwpT1%V+dm0W_DoQioC7QsO-`5)ZV`<k
zBxVjNOcP(^9!parCz!%SrL#y3QJ8%S6U9R=F+{;kb~T5I8p#qdL}3ClOb>TZ$It`5
z?2G6Z$Ff9>bgUV#FgbZF)myJP4i94{$3WMy#sGYMy_!D*ea9LAOqHfF#Re*m75kS+
zIZT*>*kgtL(@>6cs-XB-<DZ!<#<@Jue5`>_xin`^_Z^4kxhQ)aYUiOy%%tIQ=zfSb
zB;q;_;Y(PMao2Gue@sw7^mQD{m!ceFu;UQ@H`N?0@i?TvC<X0!>^Nk<g3`w!_zl(I
zQE#bCz)GZgY@x4V4T;c>L;L$I$T{-k5Z{h+=pS2;L;6Q37Hh-|;ndVpVO4V_{Ek|&
z!Fb@UE*6h=QD#7A&oq6-BGEP-F@Ybp>H{p-n^k|qhtcjyrv4Q_8F7a_mAhwTsKT<a
zt4fcG4^^kam@Mq8GFT#-FmSIq?0-kHKr~s5#=`XEus}3DWDVS%J(V_=MPjM47b?OO
z<*{6JhZ3e`93MuzU0LE#tYP3ErmC1_qp4EiSD3D;ED}wZ#9m>-N?0PAFtDaEOx83O
zh$f3sSD2oeED%i(S@Tsy4_VG4u~gadR+yr>EEi2tn3j2bXw$+NOEHDR5Sd%b_360?
z_c08>f6^2T1Mr_zh+zQ!ldi%rfd60VNA>mkM!n6iZ^cqW$3tJ>(8Ea^_H}o>zfGN2
z2(Op&eI;c$zL3r13z<B=fb$?YH>2q|SA}C6I6qQk9<G`SOESivY~|;`L!=1^m1sH+
zc;GOHI)UY8p;PTbxG%>cGO=chBpyrJ_jPyP*CQXnpHQi9IHa@r^Y`ylIXr6WD}1^2
zIKzQ+%f#6{iH)<VSC=4*TE$4D87tKS7nSlL^pg7Mlpi?7@g@FusH$?JOr2E8!>J-1
zFT*Bk9v*Xh33AofCdkf*jn(VH$)B1hKhy$rG(Rr_Eg9q|63y`g=l7FIVK8M{P9|2O
z!7F3szpzM+2UzprgGu&-zw-fBxsg<esh@rhV4cf|qtmrqn_07>`~vOO_TQ(327WN_
zCmN65pZM|2ocya!*pCzM_?0`jzI*8Kk}~{qYp*`@;KAunU2+I{1~ip!*<0GEz52_~
zQ*WvL>n~rI>a+IVHtwhUE_qs2zxUD;rYtT?`K_w{=MB~0J?Wh-*RXo$TM;Yn(ezFM
zy_uvpgY@DfW$~}fd;t@dTloS&H4Yx(Sac3g1_e{}N_EH-XNcvA$j{D_@~aO)_Tx6h
zXn2?RfH%^Dx9+7#crD(UazM~{1E+`pbNDe~?*9NV9~GD;zr8b|TZ2RkMnX=F@-36!
zY|PXbTT#phQTVzR_MWexj7P4_d<FQ9bIlR?3NrhguORdI`3h18@;IxUV^&!bGOa8L
zJev9cDqq2q1EBuE3R>_V<ts2*6+d6W2?G@Aa1bhA0ek|^jMEVR3;7DRaMy@1w$)n-
z-N28&<ttcphMab*RF}KdWtO`9Y8`w`FZl}U)aI6n=oGNIg@Z0`Zs8z~n_J|Hqnrtd
zK(v69?i)vfRlb6`G}0~_X_v9z5k6l%Q`4ERfDPhkrldB&`8>PmcM?@m*YcXIEdWzf
z@2dHj-~h%=FhOl3;b=@`kii>PA_J%T;ac<vzvxR<76rK0$V3JJW%VAkGUNJWf-^HN
z;4Eh*>w>`=4|ZmoKfL^rBR@=<tD49PCNg;7^zgxJ!605DgPVWDgV&P7K(ZN_q(DPd
zB7+Fx;M<N#oRy`4Yj5l~dLb^8#NC(l9}@TXQGFn8@&Cl0Di=A~#2JIXC%TucE=Sft
z+a9yCV?_4PL4Q`e(zolBzHzOU`nHT$=o_!*3G-L@73Xca0!sG%O|BXY&CJzM%7fN3
zS)>w=czp<0q-!Xx45w?jheC}^*YF8%KtY+Vp;YzDXfPsO!vp3EHY8nxI?2vg;Dk@I
zH)`t)b&~yS&C^xqPcPN*9xr5%v`(^{xC#(vc|`lF^LGM2I(L<t<a+|hCQO`l?a4q-
zb<M6CW}$x-?>e?ln|n!cv300?LLrjQGezqSNN`!mSIOX=LDh#cRbG3Xiooe|oGAD5
zL^)29<32g)*H_`xGeQZRzQv*EvmAH_St8EU<MI7?EY+NK)6T+S=&M2U;mldT?z~mQ
z_A`n@YDJjxg-4kJ>sE-zlweg81={#33GJB3t~nxm1Q>A)wx5WkrX4ltS&hk~M4Kk6
z%LVF^Cl~a(-KSDx*-*-ov#rb$gU*sF)vD|~b*Xq4dRPfPjOsrnA1WN#7_=by&3|!Y
z&$GU_WU;-L6b;WDM%qijs`W{HTzajX_5J<La@Lmzd>_Tvx|C5UXCPw=(n=1;*Kk@%
z9`H4Gz5_(!=0gqEWR)_Qko|?X=7GaiJ2{-ANpK8Cli;=TytjT1Ok6d0oq?O!WXRza
z{bL@l5hsE*{S7nu3yuPhlfutuaUI2vv%>zs<Ya%~a;HCVZJIyu3%5UTYq~#Bk>L-_
zhsXUaFaWth3KD#dR=>W*SJnF1kMAFkm_O7uz^`u$tr(1v1%9nO$?xgN#R;!1IE3$5
z@Aq_Z#Bso{qt?36>O{ZZz_<Ra9D+Cg_&sZL*XOR{Eqz63<p{qgl)EZ-z2mSCuNHGO
z0#aaNGJz)h94&sF<gIFX*njRFc;A@--Dm>cAV9YgXgh&^==T@|+U3`~q0a*Jkl)iN
zKo9yoD-_T}z(9Z=w19r%b2I=_V4{;iojx3P#_{B;=GBMmU-Ii~1?YPw(6s_|1A(p~
z&=35cEd*-#_5FUmQGo98dkzcG-K0z?-Q&mW(@5!V3+Tr_M+lGt6VnJZ&F5(H<BW4v
z)6<(?>L6Rl-jya$FbV8kOQ3B8`o7=OPM}--`Yu1-!AAD(@O$<O&<?-npaQzXukRM1
z9Tw1!e2#iR3QT0amjXAK?Z-jys>W*?uE-}_2(-Zj3MK*Q3IeSs&~<*#8Uk(i>tFcw
zy#jQb-_t2Tw~{iUbemuA5TIKvpqn62KnhGuC(v{-+piz+RW<A$y89}!g+LFPK*1yc
z4H4)80)5Yq>30BKgSXE4^-cl0(eK$VKsQk31n5RlL9lm&1#}|>3P^#883dXEX8ZLn
zUsdR-`!0BdY$4D+CQvX5Ko1gV7lE$zd+G@kioM>iZx^6IWRn2J!>tPFdsIlubgcz+
z0|W|4fr%ptbR?MV$GP~b`VX!f`De0)KzEox!6X3PO`ryWuJL;g5Gbmw_UoGj=t{q5
zodCrfvo<K8IFJq%1ke>0&~^wEkOC7k2{bcor_T+9sQTMZvj{ZHwo}J7)!*rVJIyB0
zY}-!Xtj*2pe>)vRpkr)1ZJeKWdH>sK4uR&_c3OVzo3r}gPRA1HSldpI{{556{<qUS
z0?o7S^qB!4{kH$@bR2<>v+cBe_iy1Q`q@qk^5|%X(zy={?HGhi9l34#hTJuwRReKv
zM^b3TcajRSVBPDIu1#>X>jhrhq(e9V_S1eh>4I@F_+g>22Y%TKzhvU)x2=ESg>Rxi
z>gQg%z#D^KS{(ewDEyqnPqQ6G%kM(2es>fFVxST7b;rRkN8y)7{EBR!^7a#HaAf`5
z_aob4wEm^X!Eda>&rSS_ZTEBgn2sOyyZb4?i(8}YBO?xec?!RD;y2ayRL|9vU)1lO
zs-QRqzmak98>jHgAbusbQ~T&of1B3tPOV^S41Sq$@bfDCMiReiw*T8$cW_Ss`@fPH
z{IcTU=U4b;62DU0|6Mxe{Kxv=|4oa*FFOu?cnvN6a~AQNZu`GmTXLW6fB#n+gWs4q
z_!TMqvWZ`r?f=@&Ncvm<`@iWi_~pdGuUO$XhWO2}{a@?7SH0E${;w<szp-)fo2u~3
zA$~J$|F?JWmX`kae=}n6%Zr0wiNbFz@hi9e--Qo9^FjanznL-kjf;cdG=*Ot@tbS=
zzbQAa#0aRL2VVu{G5C4o;8&{f8%O-++5YdBqerLrzyF&XgP%VRe$y3xUf@?-iCHt-
z1=bFF`HcQ|f%9Te)Z(C6rclI$fL>c8D8e>4SCi*C<;;Hfg2I&;EQ{h`IYVKIl*W2(
zonUEB?tF9Wn92R_3xzQ;SQf{@a;Czvh*<IrlkE|Q4avK#-#wx*CI-u?aj+~`SQZmY
z&Z*meaq8?rzvy?rD2$20vLp_ca}}0TiRBW((wuL4eb6n4Zu)t?Nf;A@<+M0h&Qn;H
z5X;8|OLKzi%oPn){q7@$F)>({_QX<*Od&drh%OaG%}K4=F|#m}*3W}w;Y|#p)8imY
z2c!@!C8Em&QFFrj3FECl_Pfgz-ozkU76(!KAcg33BKnjdYC6tIH=W%7;bZMGfQ&(O
zMjS-xh7_V@M3f6Sb{sh~FbOu*&lBUqn;1lA#zB;xNFh3dh(0ffnv>~IPMHBE=;r~o
z@FoV)@;Hdn87V|(5>YO@*&g&H<B_%f??K6%7)0mBL6rVTAzDsEUlc@5Cz>_j@eljo
ziIO)lh|Y_HDE*N_bS@F)TBIFo)}C|1SN-ot$(v|Ie^*JQdd!&BF5_((G|nTgZ{VjL
zcg|dPi@X0_DcKW)tGLacxY8>Lu0jmatrv7nhdLtk)JgsCP|2Yfbj5l0M3=rvp-Xy*
zZj+#Ex>e_lb5HC4c(fiMW6%{B+7n$`p+cAR5ZyLhZRc8ar-lf>znv>N6oalf(w^wj
z78Sarhv>d7=$bC}r8oXIw*Or$ITVAgxYM5K(jpbQq=)FP5p>O!&VQzj?EjTc;ZO{^
z;#7O0OQTfik{+V_zMyNm+l!uSzqtS1Ejbi}uDI5o=+Y<^x}=BbwhOvu@OsJ0rPuVo
z(<O&u&|QXGahz^FZ`0}ij`R@Sk8rj9?%vzaEbD*2OAf`LD-O0NcWIOg-DUVjbhqGY
zkNv;A@4@o^_q*g!47%cAd!kFDROpf(qWh_!Yx>>WZ+v=g|NGr702za>IM|-((rqbp
zNe|IAaJBtz`rNjf{`b4&Pz<`_V0)rVqg3dU9-_Nb&^7(8GqH7X|NC8XC<a||uszYG
zQ7Uvv57F%sbWOi|sQb-_`ai%Whhoqb2ip@}8l^&)^bp;z1YOhbcFrh%s{j2iITVAg
zIM|-((kK<Wq=)Dp5OhtyyZ_09Z}z|6C5K|rt;el6es>FRi{B+ZME4t9ZNIx`?j7(E
z{X2EQ&4;qXEeSi^uz$^;gk5er{*$oNO~-!{cDw2LPr{Bj9sfz#^`_%L2|M3({3p#H
z>DRFXj>!Ul_M&W`bKSSI9ozEIvh2dEYT~B6MsB<#Bn{dAqBh_Kr=D1^>3HoLALbu&
z)y#4yBm@Qou1gMFjNNt<)9?xlf8b(lwz~qG?XDZyeDwB#_`f6*A6I(uaeXQB|NSWI
z<WUJt4f7M4n;I$--f3#MHQ|G%hF>In+_ZiE#BG`U+>zU~y<*~Ce6N^zI9Ch)DED@3
zfvj%za^Ihm&~v|TzV>L*ISI`R?oAu3w=x~Xj+6MgXRtqM<k-~JP1_4xEy)G?YDvd3
zq#$=+LGJqIBS)L0&;XxjJ#O)P*N6f~yJs`chQ6I#ko&omPh{bL&ssYWH+*`N&+~SH
zV;8cl?LNt$`bB|bZ-L`L^JkqKS>!tf*yrasjQw0q6Yl9UPU2@5keE6)IdyaMzh<pX
z^6Be&bGt%fwG<dY=(xFeM1iN(?^xTsZ`SS;JgoqSv!WZMIB-~v9~*J60B<?*d;}D5
zRC8Bb^O2eB4+$Q7Kv2l<I9T8~gcrdB*n5Mp#fubloa9d`8tZKSZ1#J@_<Q%@)YbyM
z)t4)%Y$Gbo|DOHcP@hK_w0l7Fzjv*}drADB%_e4hM&M9+11tReyo8iBKNyuj<^bhw
zIGR2GXuY8IzR%M{&K#M!rdTjS-lxL_j)OkOL2UaX;7*as-ofBUnjZ{#8aVp!2n}sj
z3~9BI+zYX6=EgDb9=HLKg4|Xj#?reXr(Mn86MkSLrZkY)^z-i}oH`Y_H9viHi(vG2
zf#)M&B8f2%fhU(kOERG)MPoA+XCNV<MG5)GX8KdtH*LSx)rzxWn|WIp;{)H19F;si
zUBC!J5k=Vp1RDL|*Y?S-cPvfWmdMh!ro3O^c|S^1x}Y5qnsUG=TS$pK7=uqRrf6)I
zKXtXKDXqM@g^cm#ibCzRGzEI<!EVx(N>iY{wx(<W4x4RFX(|w9wKU~@YKq^no0<YO
zfwDLbilQhP>^LcD+SqI*0YKg}ICXsiHm&B0MTvlvC_JJ!dqhoq4s2AkxU$<+lU7la
zKV>U5xe?N})x@X2?Ne+q)x=K&ItWd199CA-A-vc<7$O<tPi++?DNy1vtp@Z_lY!#y
z0R^7bjs_37Zt2Ko(GkFeHAU#iAxd<+(vch>1|2cLHoP*Zz|$mL>4GA`k|#q)yrLuC
zSXVM_tTz=BzueUn$CtDaz@B)%q`>vAr6F7XE53xL(@(zSgTDC^%{J5j)R)wJ|3CL7
zMg8PUoWKow(iPX26hKeVgTa@S_VgvC;!7sGn&bEqv8MRG<XYEiOH=+UzGQko`jQX(
z;7iJEL;X*E$+cPksV|w)KfdJC(?v%P#PcOuRZArzL#^s)B~Q5Acg6nh?ubamj7O|c
z1yP38xkPvox_{}!yGH1Y2<T<DB&x7RU^by65GRkwMS5MvBMd{Jl@r1-2;v8}jyqlO
znb@*^*!)SKDn0Pt5eQod0cExWg2XKNjd%m)CE`GAA|Q}wnqdZF2%-arjnCbK5gwQX
z>;?g=5rmi^whb{ujXeOt&Wa$m0R(~)L?Q%%P5&T+;RE9ihE-PZ5FI%n1~6ere1Oox
zgu(7f`peyb0a69V)<iSX5EySGmOwxN7ziuOsNjI#5fd1goxc?sphq_WMw%=sl89!{
z2t^PWK!Q{h0cbu_v|0rKj1))_yMM^W2d;sBtIJ1sZIXcAot-*VN#wKzFr?S-0!1Qv
z)Y_70h6qAY6A5B8icml(+O2wZ^x6ag&BEs%2u7I3?*Or0@$5#%TxQ?CdxT;c?<Fz@
zK*vuSz%fXkK@7WjvdrwO*&m}htE(=sX;2-q=oT8IZb>M$cZ5<c-b*w)c7gB_nMASU
z+yvW4CycNJ{V+!+7$kg-|6MR3jxt>Ly(KS)4-ZHf{W}H(1~@S2xGvdov6Dj&$3z_T
znV9Cd!p#wggCh|9J2(o#zvH@*9F1uCI5Q+|wkOF5;y*IRX=B}~)H#d}`p+8EQ)!+3
zYK<BFZ;d0-R|^@vTjPIdfjQ`VMHc;Nfn(9J3KjijfqDIHf#c8}3YU&)fwtv+9LMrF
z2LBJOZ_($wy1QqUG#|SC4E*2j#>btR__#NRa|6ynoEx|*;j^ZODGC2>YA8(D*VN!k
zID$EVA6-8xp<_QPA7jR$^I0=Hc;tMBaoM9dn0Q;O^&WdG4MFsI$qBvY(vbJTT8FLg
zK<{qM`mhVLCOF{AL)cy|!2BPQs-t5GvLQTU0*G#Ze9!jt)ERCxlp{wynK(n*f8?KL
z;*99z8^--?{@J+ryB1!8fCDh(47$eS>Nr{M$J<nO93sUT=2CS&S28EyxV0Mxh%*Km
zb6?}pR=&@+w%!$dlc5WKp=?OySjb=FTEsb1RtBMx2_VhPT*6jxJT>c))9{$g0REgn
z!g=i<9+6fhcL1^!$XRi|O&70sE!Fb(x+IYu+nmXoIAOmetCCOvyG$G1PVoENwa|eJ
zG*3ILmuQYPJiA`ULZd&?^cUq2w5Bi4dQ9q(+Ulm_#sz2LTs>g(&~yIU*+_9REvp1?
zQ_kr2RvsNv;liPQ9AR$L^xYk&@Z7E*>fEVHvtZ{g<BTu%;7F|Tx6kEr(yyU8OXO|3
zk>|VR{luKb2EQT18IT|NjgJ)V(-XlAa@^0O_tYAExQ(1EdA6K<1`jg`5p0=85#fMx
zZg-)6pfgG9Zq@QP&;KFb9i4W*ukv7K`M>d*TK)w-hm>!{=b-XUh57Zf&zxA7<|yp0
z?|i2)f6bjIk&h)s00XfxF9y^RIcA#j8jY(J727`(Vu~ICG3SO;u!Qw9Sd&#uZpiuE
zg(rZns-2Q10OxZhcL2`ksvH6-tDpP{#5AN{F2h&wQhmVTy04J60!y><sD(P-dX7m%
zuY6~21k5CA@?#!Urh6riaqr)#g$`YyRc~`hN)2+Q8*%}QNJ_SGzUPSKtI1*Fgym^$
zJ>^n@L#e=G)ix5;ELt%HkMLe)z!ngr8#R5iwttfrIt=Z>WM+-R$$|So3%r6zfQIoe
z@o%(WC{~+jk!0>!oK-JBrqU{xn28ja@&E}D@NVLA$WSlmtBU8*{@=)2!_xXVG)+oT
z$XygjdFYQnNhk^oxl1m?@8$)NGm0P}lfF+fBk1!ER`j796$EdQ20=95{E%zW1`?0j
z#l|fg=y#x9z*tg71c&_Qho|6ST9$FbOgo8-%E}NJ^0U$TI9ff|jqE73Zx14b#i|<9
z+#rn(5XZe5lLG3hzy>I{GCE+JVKhIWR5zPXGbu_*i=bcV45Vzx&QE~jsJ(%$>n=8?
zIJwy5+Y(`B=gD?8P&JcyY!TR0*IK-i`-4>0H!H)aouVwNGO05Y7|@ai9OjI*h)tRz
zPQZ9BF@`*rsB9UqEeLF>au|>qthAh_F^@uhLqXT^%5KzDGNU{Esd4j5mOHFI(Cw=E
zE71V5;&!NP7gA2lM}YR{YWW*oi_YO4KviU$(4}RueX!C<KZD-TbY5spijHp6^ak6>
zL8Z+!9}f7t7~DbMi&>SzFH_|V{?L_|nX9oW0S13;JoA0!dM#;@DVC@qP7q7!qI`z2
zb1?<0lm%IIaCdQ5f>2EFWYaW_3|^{4VzmV0Ryc@po7jQF(3=+(x9}swxL+WcUJp$|
zeuU3tN8kPNNhS#<P)fo$C^@j^0ivZzqGq$cPc^GR>oulo4D5Ig84s-AhT~<pHs<1p
zq6d0kQ;x(ES|F7ff@)Lb`;eyJ)5?Z7%jMJ-UaAklh22Ocv>}kYFDh3ch7G+J!O?eU
z-Kz?b2g7tS)!X61HkgE6ggyl-seIVoBO`2lk!0;jxtQ>}+j3VBrNtjf9voBA+1ajl
zQnYwiJ>DGuq6u-oHoB!y@6z^vqJ@sasde#@n24hbPG%%pEQ0nIPj;*=%3tYPoQg&Z
z`BM98X>4)UGSQbM(pMJ2%(&)8bK`nl5v2Z*{7%lIk8%=qaC))n7A&tt>n|Z~*~XKn
zD1}yCuUQ>hh(rylWuU)O(?7I)yk{lNpTIN>^<2vl?-anR*ZvRhfZ?joAj50SK0|y_
zjoD`iI+oxWXP{WUU@V$tc@1_N8$`mA6^p(cO!3m3G!k1ZK4o!MiCmXtmCAK#RvE8c
zT;sK>iTxhB3h7N>H0fEA)h_Vp<SmDR?&!BmsYpYX%4PWPc%fm50?=b+L!ToQU?{s-
z;I7(I)?3ONPTp0V1Fc3D5^Shgfv)xc5*3q{5d+J6&=>td^l6D{5cFki3HZ5<OEK#N
z{Pv!CE~?PpAmam4AKecv`&s#6`kBAsN1&3OHJx6qEd2$OFV*xGZS58b!a~M*S}=Jg
zz9(tHA=5W8#<8P7qCDkd)ki=!(nm;mv()S;CIRGS*?}R?k79RpPX<l#RWe(jfbw`6
zxJ-P5LY|Dn?UbJodGT?0IT_Ifc_><=aK{gLI4c7U1a7=LNjW}9ouMj$sBm_%LL)FG
zTcd&9K#S9TXey=ge<?q_!i>!a{fXdNgeB&RX<F_&r0J`){TsB<K^P!9XUhP03nyT$
z%DJNVH>Q83<d;KCfQ~4k#f+t<9@dz8xY*RgCGqtTB>wlT<Mm|FiLNsWvHu^|VLbA8
zxLY4Hx`cKhgHH0L9iN%L_rHhi3I8QzsU>~Div1OXw@e0y*~UYhBKj||s*litqY8PB
z?cNTFFZj;|NURh*dLc9570(6(P`w<-c7anL{|znVod1=}dB5caJOZO63MQlO%%a&b
z4P78*HlI7%Iz}PKQSOS4x&u&<R^@nMVQ9#bgsJ@at%e9S$_VgV6TeUs-x%~ZBjW{V
z9)|OPStGHmF@Sf@H1G65(5ROwK#tAo2U*5a056RgmK<d(OJXdzm!1Uh!dRK(7K_!2
zTE*%G|0ArvT`uR9@&Zk?SPfTgq@AujTn@(S^DaWiGl7L1=yxNAL;obBIeK`*91gW&
zY^m+vtcAMaxDFJdEYT?pj&v01tsTam|E`RTFV@RgbBnrcP?z`AWtF-#sms6AWx2Y%
zpf1m<%M<GIztxcK<-5&^o9S90?R(HEj8kuLyB1cF((0XFj=zz8lpl~+siv!*wan~U
zIY>Zn;Wmb#9hS(Tx@J<M=s~7Iack?#&tQ?c>?SMODtgE|xh_?q5k}N`7*TsMnnakz
z`Wma2bha7$?*ocImqB$Desit@Zs^g*Soyd1p4c=0){b^Et0m<_JaZV&|L91!aqh+V
z*pt4$+jwWnH{C`?(>F-AwH(jG$+nDY!0deZ?Pz$pfCp`v0lNh+WPAs2fqpIJn~mQE
zNeB*%`^(4zKCNb&)St1PSFP!!x3yOsrx*NE|MNS$NFi`{Xs;ao=(We@Og#%>yU!^J
z>wLv_8qa9>r7`f4xAip+O_3vU_6^q1^i>-Ildy&x*Hq))VuTmp`ytbv$*@j3c^lou
zRY3QC8{M}#-{f|KMiV3X?G68q!tYr5L`x`EGoL8FYsHKn9^k8Uv|x$5&-p~%$ImDF
z>Oa)@Qb7UKOqEZxn2GlOpXC$1Od=g&HXS*GOK$7b^p)aCron<Rt71*5Y{Z;RJq;<3
zlXA5y7GRQ%GjzeLO;*iEMh>>4kBp2--$cy7S`vJeK%Zboob99GnW+#f2^8w7rt)6(
z;%DcJn!cv<ajFrO(#w{^8HOowm1OWCGg>IoTD`@nhjzf+ju#lC=!ZIfCD(Nv|HB(>
z;KS06M%*;cT_^r3M_op%%P4g@<zCo!FZo34)nr)$m85ECJt6APs~|pTUFUJW$Qs1i
zi9thuAtR7YFlf%s8tYKo<%WSW@gY2mIYbCzNRIw^3)@C+P(SAg)~Fw@MV0*GXlFIe
zH59<DG@*;tKnpHRMf@f*RZaD%fq@N~7(8{^YR2#okkux-byz$MO2yx_KjWSWjOxvv
z56;rWi*k@Wf5xG;!o0on!KY8a&9H6qTiE_UshJP+WJWMmJ7xR<ek~&v;1{nE`7jBJ
zqY~I6G^HpjkBlkpOCHP%D39t;8$)%P)S^G~2DK;1DdF%8h^;vvn)69k9?Vfxd*;E^
zkDUOs-9}Pcw<p-?l$^xfhEOgLY>LFY)P81BjF~K#J3*zqtnVBg>d2@oN}iwv$0M8N
zf#ms914T8(oGJ=!LE6g$ZddhFsEHzwVhIyo;!Xf}kRPxEIcPDPTvwFiz$7?IA9T;2
z!Tgx+x@kEG(@U7>(mm^UoyF7|uM3$(WzdPS?=rN2u`k8a*!NtPzeQ%xj(S>A)oM|M
zyVYg3y3CLZI-s*xQQ0Vil*hJs@Rfbh`J1K6%c|_()a6h2K$Ds<mZ1KiLxDEVfL@|Q
zbAp}8j>M#7a|#L<{t6^#K^>FxLuh-xJ3qm-L_CNS9h}?lsMr|(!urVk?Xmsy`KUe4
zF(*|Epv$gqayC{BG%gbTZb|XrnZww511Nn46XnKz<@>sg`3Oaf67>8nDGof3=%2UW
zE&VfHnUfR7Fk_BsBl1@wOJ(5N<iKQS;PN!Sxx40%P#JDC)j#&>?_wW^KQO?j;}zm7
z#s_N>=00`HdY=ccL0^ki?quZg3)K(w=_?%VzT6GtgG&;xc)8W^dGMz56?l%-@Rgwk
zB)8vyB#^nG@xjH8O*1pId>*v6fve<x$BIyBs80_$aA)oK;L@Zo-~Cs}=fOM2LwJt$
z^Hrh75rFPkWx{{KHE*8{AM5I|@PE*<=t3Jl*4ty@51W|ttPOu;Pxy{UCmylkXZD2O
z{#fPBHvFuf@L$;P57_Xtd&2+wHQn7d{4qV@zqx*zZo|*%34hekhkj+lAKMfDukUya
z_?!IC>k0pX33vUU4S!ru_#Wqrg%<n)5#T9pYJvWqZ$AW8lkoHJo%XfQvk_(SD5D^C
zCA0v!Bz?%UR-XcOV5udE-hX=QeVztjj8bEy)CRxfJ)gcY)Q}3LV5!B9DOX?jeV^w&
z;0;}qLfA<RSPh}j3AnP*(xm5Fmv{I)D}g+kN|#b={f>3ODAbq^{ZMFK>;CbFHd@(I
zDh^tgrTY_Yw8r&@R@LWEv|DIRboYi=+u?Oz*m!02hS%rsZ1vc9<@JWwhXc=TwDC&o
z4X;H*KKRPUE3-Ge{+)hxfsNPL-tbE4*#0LQFK2If9e8rrH#S})d&6r(;_bh*@yh89
zultLB5VY`8!j2RpWeZKBhK<iZ)Qz8+@C<YpG<B%p21h#;tLp1J7Ez_(7U(Nz=Y#1-
z8mLdBZus4;c$kN3bX0UQc&o-*hv-pS-e*VfFd5b8rRZT!qz79?nEoAaK81(wxG?{;
z`jbg`I5IBG(n+s>jfdHBVa|NxtvB&-Y+RTv3x1nT9~+O%LuWj(0~OQaf~?Ki^*$bE
z#08mhY8^5UPt1x7GJnncG{~H|Fh6^I)8}|NE-uUi^Zxi<Jaoo|`HL%_ZxTvkILmvl
zqIc>BJmK=F(O>yeAsev24Xuq-Peb)!0=g2)_cz@?nBYrAI}rRz6v;D-Gz`KmCFN&M
zU-D;PDs%(lrxQvyi-cUbrDUDI?APD;QlTMGf>kJzV-{%~j$2CNjaOasi%4A3dgAiP
z+i4F*;*#AHm-%1q>W;)ExhF1budS(##3i#QE|)BL_V!3z#`VNy%jaW`M&gpu6PNS}
zjwd5=8QT+=Cx$vNj>N^?6PNoIT(&<FmoYtYIcLvL{}qXgvnMXEzqkGek+@{_#O2|2
z3p*olF*PM*iinAr9e8*0ZtTpH<3fl~?z;|a3OIJ8Uz@B?cIua>H8MW4Cpb8klaZYn
z>tJ>yJNN6(RODXIbrf>bMSjct^Iglwoy~=;wb(Xy&|AMN+3Q-~T@)Pt>K{%^@ZsT4
zwfqlf=XmSJ;mpqhhp&38>q6{>7>aTAtmU0Uxf+4c(Q8L&#-L`2A(P}19pAYYu3}7E
zy%Ph78JM#{2#JrBXB*5=6!?~z4XSaE5j@9Q=T<;u-9%=3WYL7fAUzEu+Nst+2{d9v
z!Rb(Z!$6jk$M}W;CTHt79<o<n0Zo&zmwZAy9B1L1m)|ms8*f*TQ60-`yf@dLib4#D
z$$_SlMk6>Av2ljXG{uQ$T?_x9=tcb*Km_z=B5(UWDH7EVVl0}8cCs1P&Tb*wT2ijX
zLx*t=R`ZN4U5C4kdlL8ag)ftabG``SIzn#e>1fs1^Nkw218Lz(%G#69O$elHa>}x7
zhNcf`!;O}dG&G1f*aD>m&-)whW5112`Zz-3PmC3}g9g7zLv%cT4P=!`+_5?=A1QAP
zGv|-azQme862=iV#VE`L7(d~vZ7}79ZZ)ug63QT!Yz873pgFVAm;$(+4=T3VpHc8#
z3*S-vgPdk?h%6r|?eAL4)PBeT;1ST9>!5DqS3gpC0c`;%yy478aCqrIiF<mMap%Pr
z?x=?roPi-v4U}ye&e|0fn8lUW@Dd_?$>9rx0z+!lbF7n9K(#RX<(q^EqLdVQL6L@W
zJf?U7)EM{}M5DKLZZ_|f82f&s?)=5L<~DG9gsm|#^xmiFjpR96#4w-8xG_gC@+erE
zzp(-<fvYOMuT|HJYPvNYR)CVgmgBeqvJ7c)S__O9EyhC#hcgV_YgjnD#haZF76@8=
z72p#(pD~u-3M4VI>W;SGIhb&bn$JWdXc?$^@m~mjBxiN6Wz&EnXxsCI)6rt*KVrsv
zu7%aT(hIdN&cIAo`Dt3f2O`r=q@`sjluaC98dm^S8!T#y#bW=>`SyL>a%-WE?_$WF
zsik7!kdn0<F`8$9;8K*1lE<8%#G{u0KcgcNI^qA;8nM*QL35oiQmLcc<NKb#C2|G2
z3`EI4w)d#j9wuD&Xs#dB?{T?@6gPPi_PDMJ;rsAU@%<*(nGF?*_pI2%i3#Y0&D?<m
zr{4Dz1<$qc`!e;ivy?C~8^{m9EDP(?+lNJ;T(x^3i3+@JqZqvAEW9X`>;<IGfPHhx
zGoWlu$J4N?>w!LKFov5`eO{J?k(>Lp>L^}&FGG#JFR%pmQi>Pc4EYy^*lbs0Gw2I6
z0H*NJ%1jFd0SpwvfWbYf5{1I0gazUNU1ZA@UVv68sQ0sQ4dF2<Mn(_?QTUEz2;OM8
z1uF0_$ienSJ>=(FxR|wj$WU`F2Y#}b@@%{!<vT@`tFLY>_M~8r=%}-M1t&SN)O~3F
zSv4yvwy6FJOaiWnw8gPvyc+ptHH7l={*}&u)HyZ%Y*s0j**H#6hDD!7tgi(ACe~5%
zpL13$t|?<&^!?DdVX`=ES}Kg#R;Jf(hBCckF(JCWu|3-R=!A&&pr~k2)HAZhGPbx}
zwHV#r4QMYjqJIJ3vTGE6)$93sA<=XCzG7$|9Sqz+*umhQW$FHnsyIBM1U;5}FgnWs
zT(`)HvBzV;Pl^K{%Gn$IrVYKo|JAYJUm43!=#54HhpIs^(xxBZ5ydc+fl64IfPWCD
zU*Ow9-1kdR{cBJi&F|}bhc~RR@N!y|ohi6)w-Zep?tH=x*xZhR?^-yJ{-|naCCvyf
zX)ayTTu$23Oijx557?x&HBWQaI7Ivid}g8$;)+w()7yXxrF0f$G>w^b4-ZMJ><G;r
z$ao6Xv9?;#d%<r=r3~JFR>~K#3tOzFw&{C}RC5oi^rf&#>FgO1z&gERhn%2Ser05q
zvC>o&O|v#}L2FC+qn_>KM=^i2$q!On)l`Y^h<|Q^>3$UBa0m`-DPR-ow)&hGlVPtU
z;TOJC5(Q}ZI&J?B&B498r)fI&pB=tH8@-XYL)*T~Z=*ldYQJ^`(^)sT5YFLVtfy9_
zymI06%Tu)0hMl;>oy`qe)uHP#_wNdJ5ZaCHZ$3Qi!8bJ53wz<Te#~Y^f1>Zb`Rlg7
zBqWUPy1D*A<XO0R(}hFutG%{<eoBgJ`90U--^Hts9lw2SBJ@QzpbIJ6)3w~qubX&~
zG~jXcg3){RPj22Mc(j{%d@Xo%h4DZGxtpOJ8;6|(u8&=(<sQYBh_&vHVL%i28*sm4
zAig6`>+0w<`3{4CEsc={Vaf_F1ykEo5Wcyw33mP<ttuq13&YYV?NFW+JNam^{fPF7
z|Ehyz=IpZ|q&75@p;aB08y;9~yPNXT`C#ofZS4-K5p)o6t1+u>eE2ehf11sIAD=O?
z_?!}rPc$Y)HYUo5qx^?!VIoy3YJDH$nGX)+ah6`jGl&qeB#-gTldr1r%*%M_Fh0Or
zM~$4%VAxzEfVLRF-b<;Zq&2Eo-ncO{B5u#28Nl1qy9bAtU3N0e9dY|x<0InsY((G)
z+&d5FLCLwFy5b7fg4JS)E;wZG9t1WzoB{d+r|~qP1ybH(S(I_Z8qoTX?>ad^8V(F)
zfTVE80BIoZbAWWgVt6wgY>==%$H>7?hV@Sv|MPR0?pCT$6o2OYIM%<8hjPI?FE@9e
z;TI#mu)qAv4S?`^Z~k&lkNy_z1ulYed4YafWJDa<XbBsQ+uz;;{J=Mk1>ty6M@9^4
z=$1!zJB=R}t79|(LS_c1z~7kr7!6nSv+7W$&0&s9-5B*H7(4#h%Q>7IfL6y07+?gs
z(fqUL2V!u{lQ9Nk$^bU4;|-93yPaD8s`9&XSKu|Ww=0&Ez@BCT>$@|w{N3e0kw?(|
zi$G;bCf}iZifj2r*{<c@?7UF#uh12ZnaBQ>y9O`5q6_C8sEXheumB33&*Hs&PiYuL
zaVrqYVJXS@e$R5U|HQbp6g2lbKQM>=aSW}{-$;1~U!COZBTra-6~R=80NYaUITu?(
zgMN9bUus^#`1ke4>W}B#(Gz|ihjXAaaB}{tipc>jIdF9{zFhzp2j*UlhnM1t@m_vo
zxjQ%JO~i^VG8qFaGhCOGeV9$@Y{$#!-pBtM;~HSpF~`<|DEo0OOjZ7+m^!LaM-f`1
zHw|iznicc!GUMMon0NZ4d=(#8p_kX==hLZUW!IIEA58iB9v*)JA30lslN#_4lpmg|
zmo3r*@fkOrB^U>W9hOiN>LuZ%#0WA<A`;a&!4xb`tUQ$L3f{x6#Pw!~tH86b0^EY-
zXXBNL$xhsS4;$8#XY-uUAnew-6Q+C6b?2Gftbw&_Ym;gl>U7lsIY%3@DP=!UMtLbX
z#(Dpc$+MQf%jL({fma)&B7_)z?L&_fH=dGV4z?=SEMo~P*x~MWgDl1thGpad0vU;#
z@ZiCR_y8j&6&Bh1L>O^^RT(%<l3@JkL<cHKR4#Fo*rXK<Vdt>kg1`cM+iL3<oCL4j
zt>y1`RTlyU?l5<D`zjCQlyBAov!OyilbyfcCwkxnPStd|7QIEB_{Al+Wn)M=xik*e
z#=wXYG@K8@4+Du3Zm3gn*oDwbVdsVJKuY_*Jf2LrnYU(Y`alMgLKL>><#b{rjQNwT
zQbER%vPNNx`J}pjoZWWyfu?zH3kEp-2KY|nF)11m$_XH2=t9`quZd?Fq`dAgCxWmv
z(@Ox18&GgZwzNX?jDL7I!B|eW!m**Ehjq>1vSTj<Z%tO3nhyrZPEU3s(41@n%P|hD
zN5imLjg5HGyJzKLr)Ms!L-2M~Ox$h3qqf_)L@GkIwt_%U^Fy<4A)UoNVB3v}Lk!2*
znXJA{s1y4^r(!JG&;utM2#7A$9J@OfatMn4^kF;NZ}rmE!8E-Ya)n`p<7LkaVieE)
zRW8G>fo*(=P(89Y=`r58ka|?TvyA?vl>VetDFwJSH+Mzurq1;7uH|C~YX}O1<KDtn
zjRk9P3{lhH)%3NRzF%ASC3mb$KB>O2wyR<o`<^2B$NatX2hM8g*iJpD#gU}v@uhQ+
zYGk>#_6tovs;%2qSbLznQwz+^&_-|OF+zQA##<<upso9&$kVEI<K*&+&WxhqbvYN-
zjb!b@?$9N{seehB6fB>*rYL|TYbDO2{7v)Ec2(bjiW6PSvxXJw`+!uDr=`$yWODw7
zS@j(}Vp<fuB4=V<`e3v$DLD4Gn9IiiV9qE6p+$jW=j8mg^G6iwd##Fxabwoo9WGQv
z-{>yP-{4ww7>MzZNeO#3tq7r2=ZTZ?_SPaDI4Bf{YIf7Eh5tuFtR^+jVX%dufU<jX
z@aK-n`5!H)r?SJ7b6zBv()b+h!9LCc^(&$-7wOYs3;%bTHO()58>Ayv0pq>W9T@K1
z1ABh2;>Tjj5F9leYR<-CIvQtNN(yxxV3arwmDYCn;HZsCZl!#OK#gWOgF^9FH<jV-
z=cb-PztkP0>3Pwr$?7suT`o|UJau`Z1RA&0+y`T6UDzL^hdH43pWVmdY1K~UnV!$8
zB&&kv6|P7O(wfjM!B_$(q8u`RHWL$`U%MU%iSr|&`R}@dhbSg+vV_kTJ&j*fTs~Tq
zEaPCA!j>hDk?=Os`7$QirdwVTy(is6F*dBZ9z0E?j^ZuJNoUgV6grHY=0beX2*j58
z2V9GmVbH0KZY>I?xp)N0i}Oz5!%jtxdK_lDbAg;_n!}O+tf?_Mk6qF4(cM6q+(wCs
z3H%e=0V<`IZ!z)Z&>ZD6jDKGqz3O648KPHOMlJ?SE><;>xfsZCSPmG_GOo`AQ?7kh
zX&EsAbZHkOEfSDvct^5v(JfA+Ky9E(GO$MrMZ~RR3_JMXsUxHruoFrKeJVG59%73=
zj%|H)3fnT9LEykvh0oB%jwk4PgDGpCF_B>>1AMJ_DT7vQ)i?ewO~`bqv}1`vG#v8o
z$Y3*o<|Q@gQ&R5jy+PtsDh--5prDV_75NRWMXN=F{FF}-SWn>y?Mg!I2$nCRu2={_
z0l<th?T0v(EuDk(tc*&{)iHD<(i%JCKZ`zbH4b%zsW}~|ne_i(Z}fv9>QMS$PL42q
zjK2;hy6zi?7F{n7ufFWGgqtu5N2sDy^y&<5ccs(NbThPrp+NH(YI0CXtRM<OLlCld
ziqCe!yPrTsf%cuE<+t8>K0aKFWHk~p1y4v%FnN%)taOJq^m}yaidM9Wx+vP=lU_>{
z&vb84yi-4YnzY&mXel&dW*V(0DJtRAWP`it91p8nKFllQB1rhBmojiQwI0VbmVrP}
z2GXK6-$;K}{M8V38K5rR&&bUK>azPX_^WBy=V<vVUc>%M_Uk{*wySqSGiHE3^p7CY
z&lrSG1<00A$4fg0wImPCk)z;y7}{N-1!rOL_>%<&EdmzED#4U3Pg%w%p&As+loqwU
zF@rp?RD{jKV6X(Oz@e4S-%^sWHtIii&Q=Q9#Hbo;YsTrM=6rkHV9^vq&mR>%(2yB`
z4tk(Jj8-vCB-0aWlRfds)B;1bz*XqX+vk6V7$6b32+pZMOg|TtZLTOHo!Id?6Cvy;
zv$5hm)!kj)u;%LqhwIUXn)k{9!Sr!PzKN*Wwtas$?stBU^?)^O+V$&(&Q{~!Pm6@E
zxD>>&kLoesgC3yXwOE%XsYGEU=Q6VHB3h@IXt}BvqMU2_yhJ2Y=+2+L1rICE&}ui$
zxuqpB7t3bA=zwF^6`V&DCF=IUvd5@7CyTUP*YatJm=vqSrxw6yAK42=@MJ-_q*cZE
zgTg*rT^?4KlhtLIT%z@B&V|q|D8UT)Psl>t29sJSS*ZP>lm)Pw0zs^q4}Ah)aL`CM
znW_pI-<yK2{7DEM4Wa;O2;v{21&7cqR|n9O>YtEDhrxjb!*QsQqmS8VapW;rjXbt%
z`RndHSwl#JA{CfswZcr3C&rskiFhuQi>Mf3pkdPuf);qL$UUqv`u9B1j><nFYa(7O
z-PKok?>-+^a`IgxVd98McK_I#&B8BLOqNcZ#v=2?tbo%vJj{U+<RNZ>E&~F>iIhLi
zQW-un<>nA|^Qen6WpIuNMly-3)3_!@K>>$kN(~QTW=`X>e+sE@Ujj{xn}0(5!{dsc
z7<<ZW@ut8f(U>vqmfuR0poiLk%7c!IbbJ|zX_-@aoHU_MOKI^A08-|vj4~401J$|x
zHCO<Iw02I4+z7aJCn8f<Okp9&>Ozf8Xp}<9>})q&ME;^EpAaLDWh~uey)Iij5BDqQ
z|3Dft@f{I`FL)k_s-c|+F!wHqsX_b|g))I?)*#)T2KkfO;v3-LxmKt&VdW^9oJg!}
z2!?hs$e5tWh{1m&L#yhYGigI`vHU<YbIE_#^5OxNI3i#BE0#g*%~&2I6v%3GX!`(v
zAi<yC=vp`dPyM4CgOj>(RyNczK+8Yqx^Dz-;;=guL1Pb9TBx^a)mzcs!|n4lS|t#i
zjJUM+GxV@N*K1pl^s7mtQceY0(_Z4;ja%L!c+s~SsmOj~Zs6qLqzeEJE&8Po$zSDK
zcqf|(%!0Y!jls=$=jc^h{$bamFLAq2KgeMc(#V(x>O<R;G|%25M`Ixne&8GwDblIC
zjO#*Qz|0w09$ldN=ed}j$^cluhNJe2ej}LDCz!nm)<}>K0I$2)I^c&+YYe8wbr^|p
z{7_t&+CCX)&L%+_k}DB~EP51DtN{mR;!06!uGh9ExT>$lPuFXo<6ADiiORT^mki9?
z;Hnvc8?WO(p{^tatGwB2#tbuMVC2Fzc%TI@>DKnI)lP>)fwU;h>ZX~9V&zN<wv*U?
zOkx~{FkoMHY*>MG8AieBY91z!-9^o#04jPB&@!uV&a?a8`FD1QbS)Do0FZb`sD;?S
zw90ssDv7=pxL~G}PK1Z-6O3OWl9INpy6CC>-4N6|SM_&DL?C^G#zWlvtJG5WXgY3S
z99GgX7?5G?VhSc{RMyU|uj4^?huSm2SwuDHS-27{FdnPj?0PiR@e+bYOk4aF7rGI2
z&eO>B?Fp_&LLHB(hY!ocq>4ep_>TMJXL3a<O}L|6ex+2*=dbGBj*c5~qex%f(I^qy
z8hvHQ4tzs@P@G&)g9ImM;#ZO0)-l1n{*2`UX&6W%H+tbZqp*4l#=oJC_hmuQ7MCqJ
z<Ga5XADW>qL*)Y3-2S*32L)5k`zKc+=!dueMaoW7WiMBki!XxZbG^|DXQKO0*FxcV
zkNB)O;Kq1(Kx={*98|sl0aRTvX1W;6GI<LYX%jTpzcxZ1h_T=l0&`(<UL=yB5!n{p
z+CtH2F8?Q5aFW=69_K38ZPTh7k?v^|4ySmvlQwA{E?!}L7Q9bs8kAe6{$zWdguxTh
zSzVD4NV#Sk*JBnq5sLgw)31a2VL+l!%nS^uKH#NqFQ*T)!a7YKtLET<Zi3N`vnvu4
zceZPKyHP(2o&H-^_YqOc7*Pnmt%Z1_`85Zri{j3wBaw_#v^tN%a2x-FszeM%5j|i2
zFAX67Y)hj@yu6VX5WRm9&6Eb5=m#N>b3ldk<YnyeUA0%Cxa<DQ@F_iJP!kE2;nc|m
zSgXB2+uuO;yB>A8u3Ui{p^5>n07Z^AhTQjr?Dz?}7Vbo=qVV)bZ{r7rickSD#E_5n
zbqhe@v&0K|^j4)3$}zkR+yNr(aR~-BH)*Z~*p;$vu=YBd;vcMdo$}>>tyJR8VH=s0
zake;b<cdJs6CmDsTPWUpOz}<<uzC7~%s^80fpaKcPDDVw#c*vUaBYBWciowAP0}32
z+h%OV-boQ}BBc;fi`2idOsH>j{U+4Gb!JNoB8stLjrhalK73e3LteQ#T;1#%5RQht
z$_gic6S0T_lIR0zodwT{b-p=~_DH?5{$l#$2ibCud~T%}`Xi1B&7MKNm4I)d12De#
zwAMz-7v{B2t8RcjZG>&!2`0&gg&F94xwyceK+i;l3@TGTSvhR!S;b+);*1%XzoA^b
zov#|p9v7rjiS$&!A<i-QKCbk2W@P+eZ?-TydhNz3nK+1+soi*rTBL^dAjMU!xDaUf
zT=XFD9}-+Z-gjY^h~tPtuy39@9U_@^#Fo|AnR5!G{-kutOP=J}{$j4CPcn5W=M!6(
zE`x@l?FsnD)4*lWSu;>2cicvWX|Sc*4<!^Y;uz8581%qRJutc@<ACj`^)<$P?6&ND
zhQL7u7q4ca^}8`E>H`&^0DFq8X-iIgF%?)2=Oy!$V-UlU*&jq3BvQ>JNw;h~{J)Ao
zjRY1GMhS&y5_nlgV8|sOn*^??NQL=0J5Gj_j1F$Dbo1LKetf$qQr#lthY)_5noq1}
zJX5uE3w2L_UZtuDnpaHP9Kd~Soq;qBd<zWakv8n@K=9MW8nW1O56H#x%;-HuIKWz%
zG?abBgFz~Xm9;N01v0$~eMBLOs)^hpjKbT{L{XqrID={7X^0OoV_Q-r%$GSfh{s%=
zkYt0|sDM@_rxzAC$TY9f@)sh)X(X_!jI5d&4$hWlEn^iN$|e4qelgVJ3Ls-HU10u)
zNNA%mA+NUS1craT$?Rm_bJhM!DouoJ%~Q5F7G|<!J@2D3*`wWfDejq>kOJ2MfTBzb
zEHE`qNMT4hSUP)a^Uh**8k2dH%q>C@=pdYAo-d`5iu+-ugkY8tGUBs8)N_#%jBp#*
za@Rw^lwDQR7L;f-+J6N#IFF73C_c+d!Iby!w_=Fov&2QI`tt`w%$H@7kzmwPRS6OH
zq6b*pnm+;)WabR5uHpUB8<@t?%;6~UHC8>6v7)Xt1sVd;PjVOKuUO!x{ZV$#LL9s0
z^r_o;c($4(6o#7GRs=F1W809Pz`}|gVRbx(SgKH8(fP7*%cJ6@ZuEi3({R`Ftm+!$
zul&ki!TdPp#ds%&YU5@9>Z+|5Kt)+HDFRIloSnbNweU&Y#WZ2Cc%W<f9r(Xzpf~TR
z>(NBl@+ll2F*v-8U&^mgky7CR1n1_>#PS6Q_A3Un2qtyz;E!SGYNSVkHCqF3*YZgi
z+a{KOYIQ>q&mue(0%_wOiDAr%(uiXEo({E38Tivp6n7Lt;y1NoaE$e?@VLIdGjd#?
zMUsOl-%kklWKd-GSk?QiC4ZQdsl*)D-}9uf`>PAU?mtAi7GZb{zb74w-yGM|V59l{
zTwnQpZ3Ms56o*|kh#wQk<#9?XiRI;x23ZcZ#ngFxmdA>tW<}?!7`8X{&h|@aStLWT
zeSBQD|Mpask3&tT<S4eka8zwhikMDG`zk)$lm94epMO5s&cTYM<zarqpFgJj`9mq-
zYt>HW?ViutBEZZm?5PXCC7?`^Yzwfxa^a8V%XEyvVX~YTW}M(O+HT|Qi_C?YQCo&(
z({&RD($&}gN!FJnwHG=)bhT^*E#r&S3#ao!)o}7Zc$g(-QX+(ch@x{G#?_tF3a$@>
zrx4gw#n>_i?p_WAOF5v<<1_*(Db(+97wS_o0>gbD<{`z+9ZuqNBncA?oa@8#Y3&>M
zL8rBhjDXWp4#h$VaR8X2sD<JK3Ae*&9;`;Gz}6%gj)Fl_?Iu@k4%>r6B6xcEBAjC^
zLP~NB@Le^l*_i@Zr3tJK*CPCWNPaId_kk*x%3e;KAp0}7(PbtylA@t418mPP2*X1K
zZ)D?O*)ld(eJIgYdnWE+way_O2w}+@N9_>`4;-rG9Y-6tp;u~-(3{Xr1d_X5i)Nqz
zNGrGK&`)TYh^eHBm_FU)s^N%$vY*RTPOsnx|D+dI9hVDf1lHhIV1O1hyD*S~?fPEj
zJVsy(C}jv;U?f$$V*Z_CPZ;`9DU1QaL8Xey(CBjNv6ett2w%Z6w-8~;twyCW#dGPx
z@I2Fe{x@JkmS@XvQ_-uMsQ(Cl%{b3^M0jVl&bx&95ylLi_eT#C+XZ{8<bMedq~y7s
zo)>^QU>QoBt-#WXZ;Us)4hi3&Y@C<@^T`AL*-}Smn?X9E$3lN^bXOl7<f^?$IAW>6
zs*VoMKvW+Zgt=*bRY!~Z<#yG2SuU7dm%FLsMcy=33_qX7PYAMHA8=FaMEVuPb8+Q@
zh)3bGB)%M?Xo->Ox2X$y75#6R@Rr7hrys)pibB1iNUt~6V>@LL(huwFJ36Ujk+|SH
z+Y=sxw~B_v@!Q1uZ=Dr3rObN5ntCZ)O5cob^n&nHzy0(gd1^G~!E;}XUc~a;apRLQ
z6hx2lKPI~loZ?#evFJg{(2viC7@$KM1XD_lGOj>|bi0!`wJC?Ec)U^uOBg{8wds_r
zLtbTrvkVHFHi{NRCn4ShV=$Y-ZNRMmjB1GIaDknf8ZBJ8bVh4Wer=V*@gx-Ey33p&
z5U(=M=gwXukfm+G6*b+)ZBmKN{oQ;VH897vrfHi%Tp$^n+M)=o_|ir;s)jM+T(I@!
zaEBPxA9kt!@OgThs-5Ci_2<=&E{t!)TUzd<`aqJa_I7bgYA=B6<)JrK9V)!7;v(1b
zs}d^@-&EnFZ=x$kP?eI9*y0@sF_`I8phfj~!avhZw&5!yae-3RMBt5R@aEeX8&1J?
zznjWm;5I*3ZGe@Q53M}(Ls#u4Iw{<(xY70URgRmg4j0~r5eRMqi6kO%VKfq$7#LW2
z=tut_ac2TwRe9%qqKQTYZ?t03qJ~P_P_+#%ZPHQ=ih8f!C@NE<MNO4zw5YKJO%)-S
z#N@uo0Xn7XwA7~6j=su_wnG&yZ4*EiwX!MVj{CU=D{3nNTk?K?|K~aP-Ylr&%)FD2
za_-rl=f7{ya$@tTt^KD!u}%)~oj9PZgSuZJ#}Dr27h(SUa1HLLnitW@w&s2M2~B{D
zHSh0DYKL%T9vogQ9$$HC5vLfpQ#CJ@*L?&pDGLh5t?^o8E>Aa|^(OTVOKk^J)g#RM
z;rYwtbW6?YUTdbTP92=$8=grzu?LQq8AjV<?Z?{#$1QuA{qfqqwTQ#XV>=~AwUXKj
zn@II50Ar)>Te+DmUs+e0AzGBru}!ow4lB1-Nc3Z%n<oRB6IC{-k&CR3r^cZdO5)oJ
zPEqG{SrpcN*-uSv>a06ZvR*5sDip-jSP;|Q*!L=t4$Y>ofMi~QHQ(gzX4xBRB&?L~
zL_H393H89)!|VpZ7Zj{|B*&{1+clL`1ca2@Y@2?_unh?>cuNkZPHE2!)!rhw((j={
z(`GRaonOc#uOvzG*bm0`rk8MeAd!4>8|8idi3C$S)LHcf=;oW|WP0+`bNC@qZT?ww
z<+J)hkfMjvTgi*Vue4Z{d+Ra0c(j$Rv-)h~g?IDlVD_<%g?-2ithQxK;2Y;j_$NaK
zEg-xJ0@tD0wzU#M$)nGs3d8wZ`o`U|J~CN)4;J&Rh^aQiRNt*$BUT_nrt2hit~eR4
zJsLE=2}5&Cem{Jc3djNVKBi)I)>TEl7OGb-6Z(Qf@nwRgM9LN3Xco)HK7A3aLg)gq
z>LAEyZAO@Y%hv;=4ZVYcDaW~FkfCbi#q9qPN4p9@vE-HT*ZhV}>oHOe+G6;|STG$W
zOtbhwTW^2sq?x<0zY#26W&}Kn6ipH~21GHl#s`in?NgrsOV}h)=Y5Nk`*7+VD+p((
zqwsu{2yXTu3Zo&?L<Kx|+Z`*iWqYiy%eTqs^bz-ztdU<uH;27@hIA9B7^plaP{MuF
z{iO&dXwnH%6c?cN`UQ(J>O20>oOSod3IyoJOOg6wVJ%K{)0u96!^MXPdlDUvOnzj&
z`YB>~W+`mBBI_KH!z_PHpUlV&kiQyLmF6fB$G_~2!dyDrhdqdiiKDP$e(zu3M}d(=
zfrG$UwTLY;<EhMmfH(*;Ba}Z@^JNpB^7xg6o$7$oQoW9;SD8AJ2i}3R_O|$b+*fj>
zvP3PS>Pjs#QvJ~0w3gNvEyAj=g0@y=^~d*G6krQvn+n8%{-N`-cq)Ii#&1lkiquN@
zw5%TYybjP2EE5Omt%RC->9X*z>^|H5t6X}*x6seegha@@lgEWF^9%gZ%ejUS8Et9$
zf*wWO%?So)F_gBzRRsCWz}!VPO=FQs=8F7%k5c(g5Aw3AMX}~yJE_=HU(2|i-)tba
zJM)dMi}O#c<*&RRdvMtMM;*!=-}(!OOH)G+tZ1EaAoULK-;kh9dXWfxvyMp6JRN5*
z7xZLLW=p(21j8<z<wf32S)?>87dS$X6^G;Bmo(IgtSWFrziR1~AWnZDZrJvA<(p;=
zU6Fs_5$tZ4uC$B8_WGzsx4f5W)C5H>_jX3@b}x!O;3}~V+b@na9ZRjNVS8<?$#&Rx
z&KZB}6}L7<*4h9xu?On+U_w*gbcR#v$=)l--s6Rp!NlH5Y6tDNVh1ak*Vwp_=FV)J
z+|^SV`@^e=u2=Tp_*}w`xm3m`yvk(i1M=dR#EX-v9ZLhS1jwb5daQvmd+5U$M)<E!
zNT8ZrY=LgIKS;eK3;L<CmW#O1u>Is%^XF7aiP}N^Y|ykYta~Qg!r0ZZ2i%_J4Lf-C
zczi&^4qp8+xJi{TA6TVGssxIzR+~DtN=L;mfg@t*xmG*c7>3RBjYfm?Ao_v$hg0^^
zqgFvnN)co<F*|GZCSvJ?sA*6k5|GVq`Gb8xV-u!D9)Svqb<C%M+HD*u^`cbbX6`)%
z<$1s_{LoCR#@@fjf_rt9<r{Mt88K+U6weGM5;8#xrY5maJ~(kF_GUypIE4ttBkT}0
zgKXGF^EZ+Rt%hbK%^-}44yR!WG6>@!RECNI9uWU1gjuDMzEHAVzGeo~&bFpcw-fMI
z{HZx8nuTpceL(wBI4G_hA^dg?c(DKndd10NSNN!Xl*dAzET^LHy+nZf9Y*`9``8aG
z{uKOHOHMtLzRm(b)+jDZUu0I%#da)nGpl2CkLa(D^hnOMm+a*VOoFQ2SVlMNIE#8$
z<nQr?)=A73$k?6*o{G_jVfx!1&(>i0o7c<iki5bL$YqmCOt-8u%^ZR7k-zjc6Y?kO
z-GdhCi|t_Qfb@54Z-a&%--|UZCEiq4wr|6Z%VJFviA~e{if<pIP$IgqsKI2?e3Bo2
zGNu77EHVL;0h54*UmE6Q3$gMns`#X`)vz69`cOp-CO{M{MpvMWH!K;e0Z4`6iBDxM
zMtU`GG;9aUU)m30x&5+O^KV^4-M`CPoX8yHk%B9v`S8h{W^U5+fjM8NcOBNhy1N5V
zVh^}9c-*PieP!Iq(}xSa`Z&8&q*mGdg7gI5A9w0>W+`w(Q`p>>7P?;?_r1FH<1U?k
zkb5JT?*#scy(t~e>S7toAI4o)_h>gOTGprAREd|`_w_;H=Rf0!YSBcoL<Oz*WEN_$
z<_?d2`sRXy<LZ6Dgps@3Xk??j7SBYJufn1&eT7!G$G$V<%VSW-oac}pvA_og-lNKT
zs^RpTB+cQa*IVB7&JXQS<<8FfB4N;EZs(*QIq@HCoaf?|={P*%m8}NnLN`iEyb|gh
zHR-V<6TPTFH;vY_05-%dIMaDG2SkIt_sMUiHjeGJtb2z1pp=ynv^nkEN+P5kG?X*R
z?v35W!lLkB&UKUQn19GD2Rdm#QEf3rpz%rl0AsyLRIyaE9^Q|q*05La9{hYRI|1T-
zBzP?0(;|Z`dC4io35HIo{<r@{mWbK-jSbdVa%oR8_J`HX@ly+{ld%bpofafxOvG|E
z`nE&0fd2^%W+MNpUB}vMXd*WE^J<9D2F$$c#2*-BL{HLni!+=qD%3C+;p185427bI
zcfOc`5;pU{>gy_29Cw`^zEz_Gonj?s$PF>x5hgEIr{3>+Hxxwq_kbu{PZATiyC5!a
zl^~rb+F=oj!(t|5c^D-+f^o5K_JI+Gclb9jYrb?0P{rbduyp>WZTQ1q6YPiFYlq_&
z>EN7@$~Fdj!v%xFuD%D!5F~0@SnD2fW~V_96EWTVdom$C(xD4lMihPBhMC=M2T^j&
zW9vCKomjzka<SmjJXxc0$H>#RYmW;JB(LRF4I8b}v3x}=IGP(LQ}P&Vj~!%>Ih{*_
ztl&&)g_LBS#c@Lq9ADNGYtjU%@n(3(mu=@Ob)2gA*iDW6vdN!(=cul*qN#WK+5DP*
z1ixZUm&lc*2+M*~@PIOy7q1nDUd?7Nm-Zoexla_W`?x1ATr=>A-jx%|)=b;mAW2_C
zx5?m)JmGUcJ+LybBDP><`aG^v-Z`6tfd2u@1W&PtM5D^`wc}aAo*v0vv^jkM$MFx9
zawok*F+lSN;}_f6DvJpEqkx|lf?ib^v+ghV67g^YTi5B4xMa3M=DI9>2QJwBynEk*
z=_my>5q6Gr3?_hZC#?SYz$U6`f?1wlQA^<50nm|=NUh<<v+`i6jp?a&w52%<T;(7r
z=)Bw;ZHq916Z6$)QF!_5GSigHH13E_$e|-m&MZcj&^JQ*Q=R^YjTQGLOL$J5+2*7>
zoa_$&UW|#pJa<qao1X`n`pMfeT)U{B0Eood6842=;9NdLL0K-t@DHY87?(Id#IBBW
z597ILV#WB@13<~oT)~dd*(NI&T*xAo4`XxNIT^nqzw|3^LC)4#aD{I3k*G$#|2TIN
zI%%5Fy$?@~U<FSn<4P>Fn02X5_blH&leMZgWl7_?LBXNdI12kgPm_&kj#romokd~{
zqosPXfquywhA*02qt>wULYi^A;3NR;iOsbV6S__|C@~-3I&?&AP8E79J7I>HC`2Qu
z-_W&f&pdpTh=w3m5hglZSJ-<8P>y5dEKn=H^;s7fa?W#^8E3Fo@7jE%VyhUOT<&&L
zDpLSM1Y*I553&hDLhH?sD5CSNI`@MDB2X>mq}^&oo6LZ4mNqioufIBwHcEs2O0QZ|
z=y+<AkK3J@Y@IavR2u%jSNCZ+N=nslao9dc!=eas)gd6&1B;VJpPJr`vOjzT*V4=R
zg(@wS_T&2OxnS6deY@!k{}%@7M({gh3}+%?O_$TEjPzQ1N-C4E{RB|NcrutYf?+(T
z)QR5JiEYm$y0)K?U|~TrZ*`)4$90$TPpsuZSS)XTo8YIQe>cZOfS9LbnUoDH&frH;
zcqj`zvZCd`+JN+7l%iQ<?)^wz(ub*L4dqBfyl)H&;#UnS)%M-b@Q7D3oRdJi#{H`~
zLR}LHwJfzLnl8oaYC)D4_H@dOBlZP7+IVH39*Lr?&fr-3(94+~vwGxMDy<RGJM9>$
zlx)_4);flDMfxs&I?*Y(%J-vp963ck(2x47Lxd88^{170-Zc6COo}49rkiAc{hf!+
znN)Hm{Q1>pC2#p0cJW==#Xk1XuYdlbY|yUPKO2&S40Bf_2!g^OH%sCjg4QWl+fBEE
zlcmb&te;q*(x;6j1=nC0Hpb?@3b9t?@ADPXkiFTa_L#WFM+h^zVnK(|(T^GBt+9Bs
znQIakSr7^GVjauZ+*qs4Zp-9n`GD`t2PA+KDaN6q1WOozg1o7YsiH4LHl`9V%2pPK
zue~HEWKp9r6?d5oDvZdIZ|NyUl7?8Whq7wA?w>@~?m1FXDU<T<O?J#C{|!3NS?o**
zUU2>Q`+$-4zvA@;1HoXSUmq}P(re5xJkj0Ey454CH3C({c%JociI5o~i-w6T!#xLU
zRg20U@6waiAfyyYrLLWJj4GweVi+uLu!5xJT>XH4C~(AgDZczX0Cea*GLn{c*1!@6
zkuDr&@A(T5%AU;YiKmojMlv71!*Ys@2HPV5V_3l%Tg7^?^MUV2T1)lkMpm=pfXknl
zxmoc<T;Sn#3iiJuqO;XAOsA}#Av*u<1+iOR#Q8$2XSmg@phg4Q2xP5xe&NG5)Mk!1
zv!r|_81|5bF$9v>Fh_EeCnLGaNl>FWoNpZv)JSMBOP*SY5$@H<1rg2WtN9KX5avxa
z-Q4k6bn|=I2umxo`f1|{ZB8{CL|@A6fTMqCy_GAfTWg7dt5Zh&5uY=9Ig4ebIXa2x
znsj4pjrSOTsgvsPnSDDDvXwO=rG#uC#u*{|)$;>1$b}aU5ER9BAhLCC5a|h0%(gNu
zX1j(cC)RQ#|2hw10xWiEM9{qdb!!EaA{Q83lQEWTkmp4YPuoZSS|x6TWX2xJU(#Cl
z7b5u!4k&j$M*It}V)=+V%IRZ59`y6u7vL`EzHao%5z7_%2iJ-);z0b8X~isvauvw-
z-|C8mKab5iZ$<uY6y@b1tv6G9Nef825a;4j7vdl>KEx?gdinAEfhJWlX9R%99demC
zbu7J@(3?zVig-hw8${^kxGepp0V~!?9?y|)42G|{RILGXAHGW$g@upN%zXa(*?~>>
zcBY>*OJ(s_!A;f}`rfB8g$V-QtIY-0PF8JlSrMsCZF&sNj@d55QJP7v&+W{u0ifdo
zu_S!_pCt)OnbE@vONi1xL7B&_kw^d7*DpYV>?QxYvZ!zKdN`@Zl(q5zl(i~S);{B5
z!Gvf(k@H=CVFHp`IJ&{a!XHsx38`1zrY7lkj-F(4?k8>>8gCoN>iyojcWm#FoqBT2
zyKyCJnNPEKQS%w~Vm$9X5xK+qnPyd>8hK2KlJfGF`_TruPC0J7a1V_sq_Zb52D-t<
zfa~{XXzRh_R&%&?eCpVP#<xy5h_S6G%!7bVNsD+qTu<UIQ7X>JFX}4uZjvZA2L+$o
z&y9yWu}4XVg!kU_cT>4i>2`HS)x2(F$S3E40rRcJ0dynEvsia3Esp|6TZsC+@ah+t
zo)%0}1A^HM3n~$|ux>-3=5#k9FJFC|wn@!j12)-BQNkR;iV2_D-Sk}SYMWN9!pDQU
zY5VX$F{|1X{F0N9J7uxi4uyF}$!|Q;DS4@g1U3@PjPdp5B8+gS_3A|=6F<ng1&4g&
z5^s$AtGN8yAx{s~L%&NyJW@QXN+=LL!)bZ?;;fb%x@Mu!@`?Sm{7)MPwvLu-4^&YX
zZ&a|r8k3giMzkPXV;MnC82tlljF>%>lV;fgU8+QNV|so1FzdiZiJ6`(iBdc_cF?Y5
zm=w~%0uf{=y{H3vF@pOV7$+5?zHzj}s2xolO24I09d)tGKCE?ev2NC}BBF?7AuaCn
ze!U9^7u#_coC^+V{;p@5e_fO<l%!z%G9I-0DUr8N3>tY*!P4CpzIcgQou}Pltvjra
zVS^O!D`1!skG|)L{qf(^J67Y|yZD|Sc&-)btUQ*uZ!$EZt%(b@cVdwS4L37j$nDMC
zZrpKkZ0@a`H|{tkHup07!QkjfU$|anEf5_=QyKi|a8WB^kuWX^OE!zZ7G`JWC8+j&
zhwLOjZk|D-u?I#pe8_C339@s&#9?fjs~vM$BKiuShF{CD$HOupIK8DqWmT+jEV(gB
z#5W*uzK-k{wIth4rN-py6`C48-fg3w#qx1Q35W)=r`meJu3ilE&-r&<rrJGbZN^49
znz7_cSe6P580(0~?)>X*Ha}I$10+YH2;+HsjAKTD+ifR9bNBvH_I@t${rj<|Wp*nX
zU36;Yx>3*!l=YIIBK-n!Ns>&B8P=nj?V|2Id$Bn4M>nWB9<x`WkAJn+z1olexxGfy
z7*w7K3Qpa}nQ>?RjSFT?;cjvG@G<Ilq0@-y3yBdNss1Pg!*}eh#smqVk8q7CK;}|$
zc%?O#3rRG>`tkVZzS>p+{_P%rdo^Q`;5YayNb;f)M>KlZrpsg<cM11LlK#P?b4Wi3
z$_IQD%Gc+<{3+mWz*tgLK1&%(MwYwZ7CjBmj9N5&c*OMUGZ?Y~g9&r7M5K=-M8bSB
zoUhyqW>Krf{$7O5&jcQ9&md3Sz{`oeO|rE$i6GJIG?ZjM^&#`b)91>v1_ebl(*4kY
zo>luAyywFsP2X6k?xpGKK`p4qbgvaVGNS%*h-8|ZHF$IP)7;qgV?P+Ar=O^&Xbx3S
zaJCvi>fQW4Q@hjm)=VlJ&yf>CPD;{W;w`M@^t~UxRNy{E;RS9?68z3wGR6Eqo)y33
z5O^8a;Af3s!shXgA6B|eKN(gscN7#{eU`imDiutiHNg>%>vS{Z=-DFc$O}jAtl-0{
z=p8@n!Couq>N~NnU*5q?#-Rtfu7KGrieb%(vqp-le)EWHqgY+ze(?eJP*6};>B!_%
z+_nY^e0s_g#ge-cY%C)QI0gL(zqdpa@%kE(#vP|lKS25IPc-dtWheUCn@;gt9;vB;
zAL)NZ_8WIxHtV3^{GT;`m>0YG3cJlnd^>kocDA%}2h*1(+0|=f&DYx1hcBbc?z<M_
zb%vx5<X*VPWb?CE7vfp(VRYD1ar-ChUo9WMMNkje-$C<BV+*=klcP_#ad$1)gdh`H
z(GOG3gTL3nUZrRj0?6<|gc0F;6%v0RKbJ^wN?izK>#emMxw9j)9GOj!PQq_Z7=1#k
zMaR`j*(;bj$4*-bCX05z8vb@qfY%hTEbx8e1B1WO!C#?bLYayQWdb2iH~_5Cu1qBU
zh$}!#q6`(8%W(YQ0LR?|aRD650?d|FCl#*P9T`$}24LN0-QfbJP<Fo=76{mZ-)}h$
z+7=785rU0>3ZDO)lf!V@8&28)OFqRH2iPwOmg>}~3I+9Aqdr&kt3BwcqaXj8<l6h~
z&*O{=p9Fz_m&qWtLZsLO2eU^^vqk)npdL;_p=+SW51A$JX1Li3bhcMcx^0%JEHa9w
zDs`FY2aU%?Nr=U$(9mj+Vt+~aA165WLmU&9N#cSH?L^D%yKc`cw;!YB_F_NqahsUw
z7hR*eTK7>cQszQvv%thQr&$}8F<-NLol7g(y2W-AxgMxb1k%$`R7Qvl5Y4J9iKoPF
zGeLDI^@39zSS%7?S{+*gn2dsc&c-xU{u=Ct77UyMNv>tmpR-?;Yz$V3&{t}qK16^V
zlZnM?A9Bb*m|R&cA%a5jTS>U+MAs8U@Z^9n8FEOte*5!`Hn26I(}v5^TVQ{9swR)}
z!F3y~?+d7S$(q7GfC~6e4d^}}3+P^1K=;c4+PF0@T_IS1b`-E~3G?$&fQ#_ieY7<<
zo;Q8{Ps(f4|D3$;{w>F#UCZl!3qGa1wjTNE<#o$R4y^y*@|s`qaq_y`&vq%Vw;u8T
zPhP*{?aZzf>%5<403AeLyT5GmIw|iH$!k3^5%#r4Hk^Sq{o}OK$KsS)n%hk!ZPI9t
zhxGd$xm`UhouA?J$G*-pync$Ke1$AUS;lV?>qdsN^<OfAc#sUIxglS$#ZXpbDA`k(
z-9}=<?PWDl+jqAS_FbYV$G#dEw)6P?U4CDVK{NY4MFvgY*DR+MnJA1|4MK*lSaz=@
zJp9{(3Wx_&2JPkBGIalz>;&7XVA?xp@(~0KS?mGqmZMtifxXIB#eUK$*WVuv_UI48
zQ^$ZuXLx__UwhNv$H?T^l&t?FX7uyv3&f<4o=@K=Ai&;R0GhKjJ2U^K?R;$g#n}9_
zA<q=;L`@Y(6sWQg7FSJ-R|Ln0C=$T=SXBVOBU0fVsMN?IRfOkU?&yW9@v`DQu`=xr
zdtdw&;qJaQL%6Ty67CBMumvf!bF^Bl_XsP^NBTMVQ0$d(cnK6+8P41Z#h%Hf*kJUs
z$<+Tjdby6XOW8#)K~~vz{s`y=&8|SK7Fju|61rBleVc37GRM76G-Nh-5~@@=5sP9m
zkqjy;WaK6koGJ>MII_WZxL=K<AS!3cl1a6n-qB!$SYn}#61NV{6MT3jk(vlW&%H$}
z{k4gVD{NH;XB84-Gza!nMWNdh;D<bU6i>2s))k4=d4&nWpoBK%L1rtnq$eJ5WwO`<
zpDTNo-B$@$W{!a+<6Dcyx7xhGPTEb9@vP!F2zxe0jj<Oi>y4jg9!5BY$(P+hoLvV~
zPlxAn!mP#g6r$bm;lIPflOrBx`Dgx9Jz<ZkWsj<4k8oe6TnhHS&N7v<XeC&M1a%^h
z1Ch;&rh-fWg1%-dcW4m8s@Q!aj$7ea88x30{rEaRzNV(Je8@Zxq0Ylj_y?ahf@$oB
zWLpu~?Wjg2SQ_<Jz5Z|Qm3iwOCYyGz3O9WShKIYzK8qjFY;yBWs}<DF-Xi(ZenTBP
z2JYzd$ObMck94u3n^Y`4yI+sWCNIS#tZ<N#mAOojdr=;0?*+b|#8Qr?*?KYB!;&2i
z<{m)<?B|-9t_q<rmh8MAn^VXwNo|#z@gr&0xCN446uyn?7XeCDyK~SPk)z>L8|sRt
z>pQp=sCx?$_#-5a!^>(*DA58Bx8_v`R$3A-{ZJ>mMG9egcXpY>h%nz5fkhE|U_aEu
zq(*V(eX-HZF<Gt}JHKt~uA}#TR*#+O;BChL#R(itBnbA(G<FiwE+{Xiw<4>ugA+xf
z3UZv=PV_0diCS<{zQGrc|D!7p7ptB<!Y?rG$2&xIq77B0ThyvcIT1bEKu{BjXMU6E
zg)@&%1}FA1O=23~1fH~^hxuqMrg(qa;qhSdwjMrD8k^4^$+6}gsv)s~;=Qzm?rq`!
zFnlX%x$!yM5yF`R0@kcNn!edkbf51{iMvn{m;lwXs=857_duV}3srP7$`2PKD?_^9
za_L6)3qi_V_>c{ZqvV;jfbo=43iH6E6yauec6P$#IJX!5{DO46`={YgdVpSw*>oRR
zlq6Kha!oHB+iB!R5A(YJmQznRe2k%e_6LSv;c~aTPx#W)%1LLaLCwdrwcPvs$UbIr
zq2aAX+$;O9-?jyd$Oikv|ETZcZIgD{m#;~VXtP)a`4YibjlHT7ok}qp>?|y*hG&k#
zDBd0}-Uf2J*pF5X4X9TDD*Zzw9E`84R*SUI*l%XX_msaF5fdWKRDZC^?KID`(YLG+
zODhr#pMMAQmCM)FSuL)XUWcHN^&k<IDIBki_yt$%Vd-G_^DXbVFAiZpA5kZOhT7^~
z#;G&!VwwkQGyLNRV7^yw&7+?@-s<qD)u|dx(?1RqZEG4$O~5)B8Bjm2YQ+twh8fn}
zDto?UToV4{ml0KXu1qprA(}zQC^*??ZYDU%t%1}F8@FCKyzMa9_GXwT;FGz)53JX$
zaPZUqR7eB-69s=Y0$jv+{b8rdZ~#7get8t+YziNi;qVm_;1e?70qPcf+2FXw^xN2H
zzwHK4{tow#g$R;l5h1*}qYs*V9;w{nI%a9kz|1H%t*fJ1hMy6h8vAsTQObf2!P=;A
zZXc8|1G4|$K=+V-=;r7f{%o!DXOo>jlPQ)zGrt!2BeBaWuA7ODH66;6(%-JJ>lJmZ
z)f?Jx=R?d$U-XuYZqUtWDhTAL*AgKWSfij?agpLSKB7fDJCT^Iim?CA(Vcc}>S!)9
zZ=n)>FH-1*9U?<fz(ypdX{N*pirk7sj8YN2OtM@d0~Hr-5ke#-yuMDbDHJeKgD16u
z-6F;m8Gu6Ef=AlD6tOGBC?S*5)}59g#OByXw*Xdv5m#xo>O1^YqpYuBy4|yO7Wq&N
zz~(%gU_74`0!169_^LtAG<VK|^?oD^|7E0}y<C*XfBES%ZR(o+MBAqEEJ3^Q12s*r
z0B@ZkH8^tx6dh`nhj`K|o7tLkNw}`m!5A0f6D3boS;QmtdA!X6%%O_w$=lKwn$32Q
zgcprOancNS9LH4-UvY;o=@~XCt>AWgqkLB{n=L$--osp?ZD5QxqwUP+eF_g2w!DWZ
z-ekTkYcB%axnB6@_@da&PZk2}>@91J^b1F?(h(7~BgEUPbLpU><TjpVb8ddlc~c{=
zkfF!!vzkYHXPu$@>-BTaO1savs_t{4=}ImTciqjo#a;L72Y)_plRJzDOxn_sp~<FJ
z?q#<2RNVE*9$ZMh#IgduP9)E0QpSSi4`XwF$vuVHn|Vnh>Re@JGwy2+cd-}3iQuaT
z1c=uWEIaY5PdOJ<k{O}x!Y=^?+^rl8?s@vbUo>vPX@(8~6;+)xOSGwlXEIyeLV&rq
z7jPkGnNzjoslt{y-N3CRy>I3n7dk2u&xDS@{k#LeLJ;3(9m+Ct(qSiA@CBT}7grqk
zf(P(xI2ib~`oW(Ezuw)BN4F<Nw+W%E_#H=9bTgj9jpCaMbw6D9rVB4nVHeBNLy7Jv
zpf1%9{(KK*oO0V<%-udoLHY=HFVy3@w^cv*)4d*!@qk(@&%`0D9+H5lpLjr?&awM&
zltI+rq?=LPi;3y9b3ZE^ODL1W&Z<S)XKl{Am{N^Gt<pm&)r2jsl6QwABf?j=I_!!~
zK&&MTO?)@NQe!YIaQn{@Q#P6NCCM$;4aVe)ILgS1yh=4i^#se0=k8A5l_^|Host9+
z09MSz=De=gFhZLRqH%5!ILpS_-V!St{+6{Kl2}ZUqnS>sbmIEU@?ZUGDWw2xbwn2j
z4PJ4O9<gwK7B|L=??b)~vbm3Ncb<V^g>pqM=e*?}DHN2^ZBnVGS!Q*tvc=fB#(tu`
zZ?Y5+iwVb>S3#qdd<P4RYJ_=dW%;U^H_9YCti=bsa&}YCCBzOwv^3LaiqD2{p@vU!
z;5gcEw(#?C@!d6X76S+KjVY~s5zL{Veiq{=maG+0utblBLzs!$y&iDVH<(3rQ?I0g
zW_E&tcaC$3iXbga1o3>C`l9f*-zeUo=%qxZSn&`eH=fQBWe@|`mv5BoYBbHKOnPB`
z`ZG{XJvDGqHmidp5%P_L_xMHYQJ&ZJ$XJ4~=+sNJY=YlUA|-HYRF#+pj<$b}9^Nbl
zHm|PxYU}|BSw+RqjqbGWmlSDJ=dl&y*P7*ye^@AUuDQ<1RKg@Cbni|-JKlB%5PX{k
zPJ!HqYI5o(?zQs0XD+7Bpmg$HliFaT_0`iy##5)5Tnv%Y;dfW5o!QIRa#$Ara5!vu
z*?cRoZq+TsgXbl7?GigswVqRo;$6u`obZo4WOgX$5hvfy{<&5*{za`g3y`ibW-|wW
zRk)MsjTnz~v0d7jzLAk@bzU!tybZ)*$y>)bA#gwir+Fdx@qH2k%2JYqVxO``o-*=?
z*;QTj7{c^E*8EH9a~XqGa8xT@x!-lunCV7VKRDfYb0poUak^m=uqGZD=Z#8`qDRz{
z=-bgZ22|R%C;ft7_v^UE#*;VM1t#Jcjfta;QYO=GKA`e$gmN%8i3#pK?*jmPNciWM
z9ebQmb-F#yTz{R@QH|)GU9>5N%AZ(UvuUfFFInbZyHeNgbw!Dxd>R}+^`?JGnaE~L
zq;KVyg~oN<?6R9vxa1a#pU<zbJx%DdC%=4+xKI2uL~OVC=SSMDf$zQ>VHTRjR{T?M
zWW~GLF(-#YmTt3aGYOebL5I#D7Pc_ZVr0ujL|+q9Wf;ePS&Wh$!}$a&_tII^E^`>H
zUpGAyH(AB0xx#Aw;Lm%}8a;-d>%P8D+I&5f6Z>23!lSX~6I^^%ruXDaEA)fE7``;l
zZyFyF-7C(ySK{vV=vlotB<EhCyC)-K_crSXe`+)2sD%W$Xafq@tiIDfHSfACnF<x`
ztWRuvzcTe~GIrml$}uk_QXlXQ_pL0c8q2Y(G8mUXp5a2G)yh<NGWBXQ^+aXr-9+l~
zWNLe&{IMS#RGE6Ja?G=p!LdUt%isIK-j#eC>5lXgp>DYkv+7h8t``GpC$MM7@zSjt
zSqjrFibP3<X_J9gntu>$K8hEZ{KCGkaohJb(SQrV&~4vc4QV;>e7{AdTMW*ImwB=F
zdhU)lsnaGeH-A;#rw-L}GSNr5RgoRtI}=i!!b#AaFrhUMFD%kVHqJbQvvKk#cfXDp
z2GJvk|3DkptVa--QuV=Y@lJ-P)*|j^s7=HT4C13S*q+0!xaV9<rS~=q3f?1c0^<*O
z+P&xa=%4c;wCcRa1Gxl7zfa(|gg~I`nrSL+I&3oL_}SMSHuk8Lc_20q>JhMUZ@Nc}
zRi-ZpxFeRLo+Dp!k1jUy@hFn!I#-80>blXRdAX0$skI0%T`!a(yVPf^K^{2~Kf#rW
z4%%`*-ncU_Hs@f;0bemsQh=)r&g-pY<MPJKE$?uRo!K_!QSIroCE-3#QW=}@m&)MA
zyu`MbsM1SnH@sFEOvl44GN+%|_F|%OC*LVqpBVLIA~<hnQY{wI;+bue9^EPewSrz^
z!&`~oM-q+ysHi;X?aEPaRqpjlf~|I&&xgAS3d@a8lOV94(5fEm;?=~c4XQUcc5?aj
zwn?kD(od3)!)|yhIqI#%UK`8`GSBO|u^*5wjknX2$G(=nTczK|p1c_c+1G%iL^q#J
z8}Sswq0gq@R;Uydynm#3dr`bEL+!SByY23%-XfnAcRmT3>R!~p+1;|uUg(-#u<K^W
zTeH~~&FLZHG|T*~UB9=Ny=UQ=>OCr2WEh<h12YIqECtX9*G3;NS6Z8F!)~OH5J6Hq
zl1%qYtze(m@XetL3$|*%*LO4_4g)ab;PHPza`@`h+p(L=u^@@m(aF?b(!b+=^c@1l
z^VPt*_=sJS?t;7I&Zo+glVnH}aqM0w`@*WG2v{ZeeE@cQH#oqrmjB{)r#nuMoV1%Z
zQn(4Xypr<>J=krOLhYvCu=$GL&P$d*I{h${r7MwriI|tA#D?z5QQhg^!n>0xFx(>^
zQeHpLzEdG(nQPmI*{m-jM80cxJOj%_g+IWG?q!l?c~;w@-G{_ed}4SL<uokLws-jm
zcR~x$_-@Z*e8Y%<bUK>^5lAv&$F~rBVE<N3G~e||@$sx-zq(%WWWA3kYYG0M%-8$r
z*~=T?5Oo~Vi>=||`&ekFPq`?muz*s=_BkK1m>tNF+!N$zBj||&0pkJ^Xz(g1#Vjai
zAlL_F?rmJq=fDV_CMsL0V0GrqnTi-Y^(fuBd?E8;f}Z_d4pU*8ZuZCJFublDX4MZZ
zhrv?%`Ss?6sDjWOgNm&T>OZP@?r;m={Ay9yuI|Eb?oIT(4tUbn3wZKJ*%GA|f)i={
z@|Y-oC9&cYU->SH*>Gn@i3wR;5(7EZXC|T`$`SU;VbxeP=}EBcRMsaB*z<lS9X@5Q
zRXlPE995z{^_ll(eqTU!svUU+l@GJUji>f=B#Nue8j+~YC%3hB;&UBtR{L{xtZ{E&
zq41y!v~CSnr8aiYlS6FaF|lTzjzPg8B@r<s5Sd_p#T|nN^BsCALzHOhnVSu!o<@58
zyUk!CW#*VZmhQt}A8j?@+uh+-cbMl6DR;Q|7<=RfcUI>PSGvQc?y%-Xg4fd+O3hAi
z$i}ZWUNb~JH*Tp{y_~^6{sAs66pMCmcDbx8A2+jBOv4lt3FDwHCoZs587WYSGDXb{
zbQ`$gLRXo5PB>F$fEXAVIVleRqZ=x7rGeYl{Pg|BI}<t#Ty4B@c|E!)P7~m(S@*7V
z@Z6`f?{=>SqEdsXjHV)pDg;rfLFC@g_FWXdX*vu@RuK*FegQJQia-t=Pq>E`p$|f+
z@_g=i0_b?D#bMMiWex>Dg&6^7Q0Er1uGpQKFc{endAnK>r!*XO9&ID0Wx7@&TOOAh
zRcFUW-kI*J+N-By{xsu-x`m&t(Ra*Xx+ZUK4qtp8Ov;g}48!~J`>&4QHNpp`=^xr;
z@(d%mv8D=>LjjmO7uUX<t&uDS0Kp2>;Gd8zaibtoM06CZU2y0-4B)p7Kg<q?6zjlq
zu)!+enso8^gB;SJnki}<lg;C(6-PY{Bk@*ABqG*Mc<A{9N%qli7qtCFAPsA`!|*@{
z2a=69P&*CJ8$J*u_yCt&kzJnyYa4b+ofX=#r7E<OZS<d66u!$8#qQS}gY~^vH<uZ@
z>AU05PNRXMpGXICnH<mPS10;8ZE&a_Gq`kQplTboZdyh<JXD}I0IKg8RN?Yxk&Jin
zzZuDJKl;hX{Z8I7qZ&&@K9EbfDfR>YAqD)5&`StS%5#0A9z|26-QSz<XbS(NhRAkV
zW?29aATa2$7(60;c9U}?#d;KxvZAyfysf|r#QBI%!8czx#Q0V%%Tq&C2v4KY&M<ri
z+>UWl-v^&-PeONTl6XnD(1QshHicFSZRzyit@>!z$so#%LeYFNy_YNtQ#9Xwm#15w
z_G35yZczK+MwM)X#b_-AxWT$il5_Gik@o~&Xl&x{M@W$pGX)DqH_&?bDPpRAIpfea
ztyK3T3L4}yRLvYWy4NNG*`q-f#?`lseNlVO&&~Rsh~`Hb|6>zG(|}N4fym+)G>xv8
zf3o_<Rn!HjZxqTvq!zl}*8+D$YD>7>*fS+IcV8ZB?5T=1FM>r6$@FKEVSIa2K37#U
z@8AYg8=4q-yoylRr4hk#2X7RUZA3kqLD%GxwP^9p;l9OUgG0;k6pI&WL~kSwWk3Of
zr-?)#BJ&x-xbLCXuph!S5$DMwwL$%o$sf{92r6GwC(2TAkunNQ$>WIdz#r*Z6CUqJ
zoUFRUOY|*Pu&|gH7&kC-d{{O8^JAaWj$q5!gYw1$`2_dD!OUN<@9RO=bvLfqT+w>$
z!QHQ@8%sz1`ob(?>W<PVLfM)eeU7a2PO!1iN?<XmD9|!xzv!+?4$?Jr7CN`UCGLch
zy$tlCF_N(QxE2j#*{bvzJYq8idbSptz|L}nBK8Yo>q#}sMmFsM6e9m47_t$2s)8AC
zMJsxA;94eq+}Tfxd$MCFmq6hRx`dA^Nr=!K@E#$ng^WB3%{3~{FPjvhwugl6ANRJg
zGkUwe-`i(=<lDjUdp8JXb)A737_eaie81e6+v267y*RA9Sa+&s{sh4Neh1t^p5}YH
zxMiZA!G?L0zatA66ck(U$Zt;XnuCSN6^B1o;@IX@ZT50$9^p_FkZPH4MAJw)juJTi
zI+rnpPYt>?W|d#AS~r~GSBK{Y%c>qtALPSv7k*`A(ybIL9ni4Xx;j23F#+N1tYfn;
zzmiJrGG+8mb>Zd<aCVEt$bH&{TzL9X(KvSOfn)e~eChN8IhZ{ep)OU1*dJ>@+TZ;W
z55#z&vFGaP`&l^x-453sG9-N%tZMA3=c?EE()C=`hiAvGX3NeY(T{CL)PCqi>*}()
z7ooRbWSM5FlkX1pa`7%{lX<yZFOTMBRZ`NQ<A=rAJ|zhXQlD2&kvYBRo0{a*<nqR#
zV4sa6IF-6Zf+XSL#DR<SgjI9hQXfRm{D|zB>134k^bs*6-Ko}ZQf>{|5JZc?6qB&V
zo{RbTu!xvGk--LxI;V1!>0>xWFl|wunNDB|=U7H*0GaoUN^)*U$)mZM*JIRrw{k@4
zpFPN@P(fx<-d(K@0Tjt<;L%W|-?)tZ-$zC7L_N@FSexqqnstGL>2Y1HdGcdvH*(G{
zXjiZxKX*}{eJ?490E2|m*?x=i);0}B&}p*{k-+Z#P$592w?MJRo@ucrEyc5mgN;4c
z#+vj=H3T@;w37Sj`J9FOufsuK$!Q-4o%PR_zx~p9x1~Y&66Rpy^$*f9&#pKtZAvYP
z2xs!R3AZCOx>`)-B-Z=|t`pB)r#H>2<%D{1yofV-7PFz}u5EEDQhM$b>!ibaC5*G2
zER4+rtTx4u@U=`Pr$YWGt{NM5iLgbb0d>f{YUWl~F?9H0jpkNYF?2ZnT4r3U<X$&c
zLkf5EnEs?2_uFxiH^)mxcj}zjCbKC|!cR8&MVGeyx^C3E@vRK7M5{Jk171AMr02d%
zDUTT<36+6Xg(I29$w;3{c|TAzlnV&I1&ICzZgG$UOnB-VSa~8$9k5>MPQBZAz9jU5
zN(!|VwWXpU2c4ISadCu-UH>%hi0KE9?SyF)rR?UiAn8<sZOwNachvMf7sJ#c-7n~N
ziFq`!f~G5q)f7#;Nr}2ktHqe<-?-#{koLl+CqUtZ0pViKd^D5CmmNNU(=T6koz}Qc
zfg=|kM1oLzdtM!GV13=^zzHAd2T>c;AZWR$6$4bp|Kog-f(&I?+i;l%3J*bY^f<G7
zVO3LKyCAH=DUR`ZZKoVQYJv6^7O8El5O)W+koPr8p)Ct#ayC$xr7wa6;dOt87#fN1
z$IolYSGE)jcLwzJ53fMn3Pj%*Bm9mEIxkYMWdaPI=;21K!W>D{-S=cwzMsC|2v6yw
zT76Whk1F+1i@X>U>z%xyRHB=O<ch>BBqxL&ve;0j-wF|6B3B@;&rIU_MFUF9gJF}d
zkQZ`fMO0)w-fiwr)<WGtCKX_&WNSPvM}+@mzEb$nXleh|+QQdO<~M({*!<1+pr`qp
z#pZ8p1NfjI`31k8^^SYhJCQ0AgbNP@@V0`rQ>^ZJ1bjVdq>S~R{QBle&V8C0%S_3O
z`s0BSJQ|+N<jU@K7~)x<GvmCtkQURgm=&Hjy@fzS^Wregb$>Opyo|H-mE!#kkHPy(
zO_#-`e*9T2iViY=nDFKzn1s|@(P%^_e}=*qPFl_(*KAqo7n{Wx6P`@^4A)RAn{7*&
z>@@(+M`>^-zYYq9Js~NVlF_0Yb9wU7oGcr`lu*+cEn2=kXp7<8N5S=Alk-R-`{8@J
zlSkN}sV4;mW#{_&-tYY1h-Y3RHRW4=!ZGK}qPF2fFL8sX`>7$ILI6LjPj^8_YI>(?
zVg+nBi-3Uf{jRgcUZF-Q#RblKG(2{_TVYZ{Fgn~@_IYXp`c$J@EMTJ*TAv{I<Mcx(
z6EiN46SoFSQX3Tf_{{_9NPX%J^%&kiyT1aIiH2CAg1c^){PDExiUs1l#@)f~%DJ;-
zS2FCyFBzx=F6OHHf*k&fW?zO#T-dvcU)N`3Z-D$=i&AZ&S9t+!L#g_x5Ln?qSzJ9q
zCdqpd_+Ue2b<R0}q7+|5P`X#GOs+=6bN(c3qU-K|9w6_tMdAT{VyyXu+;`O%-`1VI
z<ErUXr`A=7y+Ct-k4}v?07!qp72e??EYVxVUeIM&GB9|Nug+ev4!Z9O-&_e@E;c#s
zBcIoP6WB(G9z~*uS*j9Jjp=)<jUvQi1Y%*`p@&_YcXxd5VWN5W3*nDwwfnwE@coen
z5xpZ33;qXs+Dt;#)T3njY=y|ut<S_6^JO#0X~z)etm;wx!gmZ6X_c?Ljwi)-XpK>{
ziRCoYxV&&#c=+e6oWJm39kQMF!6$aJ4VMj|ca?DZ!q`s1f<POYZ5@vpW~=8$jC7CS
zY-fDd9*l-?aa}34F5A@o2-5uZm=Cul%_t_C7}=5M|Bvj5Nsi^Z7Cpek?%#*+9%LAt
zzXE2Q92t!){3wL~9@m?cW+)~(nP2FPLEw+5rVGgYP$M%0+dsrVfFXOG+YjQ^$4s;R
zXcLdjZO{c~M3O3+3PI&+QMs0BE;GNIsi36@W$EF5dm7y0%#IWvio*G<3CY?8ALqkg
zTJf_~IH}diR_oh?o7qEoY4=a@nmdR2V1)k3@S_QTccnx$PpV>(4?XllhG)sZ*;g0b
zfSpzs&259|u@?D7)oBc)@@HZ#9l8LxH5ylJFeGfr|FMxuS>ej<w65n&+UU;*$XHA!
z05-WXIUqy?3Cne56K$z1T@kkPX&cFPTxQyF!q0$UI`W*G)F<HA#|6&b0%r^*1Z{Jp
z(O6Nl>%$Y`qc&)$uR)FGF>ita%`pViN=eOVdw7y#RwhzCaV9-<_43ZsB8hP(kNDew
zM>G961Hgu3f960VriefjDS)f-hvq$enKYGeeX5N@p;9lMD+*7va*j8F5XC%Tl+Z<6
zWHW!zQ0&LvVA$xP5ogtE5HAouMd6=YoH}5&q~X!r0Y^9|!s+oCY>Ae!5dqq)9>^U+
zj{4KRyLH@^aQQk)Jca4xcZWUeYf$b*E1u1FC4&s<L?$s-kOE({g{heyi_Eg+fr@aF
zrw)8qQ~)+OgNQnQ-ZcJcFzSRo!%gwOd!W;QcR0r#l1s4$D!X`-mbC|#FT|ZGXfQC9
zGGV6cGXw$VPTi3a7@{X-1nfJ?N?QM@TRdWPEnhW@Pdu9eaKVKIO7ia*fGW8(l-Fs0
zhu$*<&1nBE@4L^tnS!sib}g~;6P6-7u-We9WOnq}eFu8K$KH{2^wInKnlnL{sl4&Q
z6+F}DTVUf?)M#pRy<|9rKk|iH<hmu_6uwTdo7S7R%xJrDJ*P}9ERn$_-oANlmn=$)
zN;BHN%3rAnk7qu0M%zu4kgrZ*DQ&l*c(lDrHmT(r(=kN_V>WtaPcU0(+l%q8ov80d
z%}A+D=55rVU~&w#O2)M`r4A42W=U}|fs5SsoVO7fS*98-q4h=rl^2}^arlIXuS}e`
znZ$w?Y7lAh1HOvh{K6ti$1n8tD8$_=5@toB8C;PzM8-XrkHN5$3I}E3mPWDAQa}}b
zoPtLim^+J|KFce(6Fgs`Lcyhc`WvA91Rt471@5+WUv&*iLBXHD<ip$W$DcQC8u}SK
z6xe|WCTE}hQRdmp+_Rhih_3w%Mb3r~kN1yPa6B>q<*TMM^{=z82G;|AlVu?4Mi*(g
z;!%?DnV)5VVHzWT<2J_2ADzZLr~D22VC~Dg{GE7PzFlS(_fV#gt(rDGXK`vpyv>I+
z*ZK+s3y`{B=dl|He{5#%W8uR64Bubd0X+KIi_c3T8vE{-;iG3s$i1H0Cd$M_?B<NP
zxKeb3?qSl*#bC;$7b>WC>Ig@oEWuaH6(Wsx`>H`6n<shm&rL;%7&hq(J*jo^)O+0v
zValF+cm@uPmln=;@`LD@_M07W_P+aGS+5Rtk2!0akP`?r=%NCFC;1U;In=8j(G1^J
zwB>As=VsL=N_FDWIj0L~9SWBnn;4<XbnXoe52IR=0J=6RaZ(np_=#wsWP!``)Hx#0
zq#Il-1G${p08l@_O4ri4xBTa5`{`U?GJ98(C37%reSV~HeLU(74H<%YsYGO>K{rRP
z^xu>W-4ruP>2`<L+~G=h*!X)ip^J>7zx>2S$$s-WqDd#7@qUmDT4VHFT54e+`U&+4
zW!H+rpRhU|vCfa{b2?cc6bn`vxuWf_N3up|g(Viv&(&>^X>Q<tGRXhBZ7aM`C&)!D
zt5{+!7Td$uxJ6=#G4Cc*kNR&+BuA~%B>w7TUZ)uf!YBYS`|sl$_&me$*;yguGexWL
zUOy6FCIN)ME@Ya<5R7Gc@H7G+8F8!!1lvAATH)$$;qZNp*fZVXI(MjjSoWq*I+{c8
zAQSIT{$%mKjYB|)=6&@%(5!_#lELPGNbB(;p<Q?^*1W|o_(5XkxXul@5NmnDE-&$s
zmLs;L9Z5BH85hOLn7VNNyJ8_9RoGWVsgC!;E27l3>e+#^HWu7sn&(%_qI`{0)CF>1
zt#*l2`~tAH1DG5f#h(f@>RhKdrx{XIY88sJr4-^W6Uv<dlCNVfr?Wy@r-gR18aDi!
zZOiTJXH36f)7Mu83h&lR9U4T5wjw7C3ap)mn({9iy;*lb8O>SZr`RJL0$?k51ORz}
z8zo7^?!%0!%bPM?a=%8>LV@wD-t4ZjbmB48@UajKW|HXcoOyLT1<Eu+KJ_Nn5oE&&
zm<2PwYN$TW*ZfTKf{~0A`f2gJEuo%>V~I8HG=w6S*)9uR)AqI!w)^}-`Gz07OIdEB
zd~Ir5ce{$<-^h>xyRJl4J;LlJKe%rZLX#gC?-$ZXL`*4^FcC2_`q5t~t4u-M5n?4m
z-BDG$bVQ<vDL}0jxTu(uitz1#GUBCX$qU}?^%W#qA!Qh!@9gDIZ;*kr@T5)+Gb1Q{
zCZ;O<&EBSC_qf9y?l5#8UBt&+68RYB2Oky%30GOQAbj%y6!9i={Qdmp-h<jZr{<O&
zV|QLM(p$aY0NALA3W%YAq9^34#>JIf1KK*6iDW^8C<Cn%4SdYXor*BQhE-w&Q%*YT
z>M|aMZ$+%z9=AP%pS_NK`4rWbzkl5Ygp*n$Z?X8cOgQ<T9;mk22?{xR@Yr}t;AOH%
z1CK8W&?h`1*cIrd;XZI6$8bHqml5?5clhJ)Ak;4QFS2~(e}i5Rwf%3>>-)y7jG<pp
zX!QDtJIq<MYkCDuqiZGTHa}=}Avnz5;s%BnI$aF>5lx$j81kLBA+g5UCT#6aCsRYw
zy>>s6Eyi+EB8fHm<D}G|AcyU?Fvw{nCl&q<BH8ZO7Uw3mRd!nijSpG76>syP%w8@C
z$+3pj4L!!?l{N>yv1hkfy9OZS0@n4&1(c};^0F3Nqs~4K=(+3k#kjJYXlvg@s?!|&
zsAV##0+^adLjL?NCPO8$MHUhut+kq5-6{N;&}FWSn-+yap%DhKY*8P2%=h%b)yq{x
za|g|EEbw?^kz~@*!X<7I70ST=U_L1k>D8!%VyX7&1{0&t80sVu8gdSnDLOn9CxM4N
zQ?Y)QuaC8?wIwX(`l1vw+6lq4Z4C3sSMhbTco(0=B0M&o_7i+YtxM9c&`jn%6NmGa
zV;+^mBS$2PRQDo@caF*=xrfWT(<r9(S?ITHuVHE!USkzwCtSw2&ElKk8H_y5LgfPm
zGRDb-inT5+1%^YkL7I>J#<2ggj7%zHe!5=HkB@p+ZyI0nSZ?6gK1pN+wRh>RZsb^l
zgNvYE;Grgh6$&O5paAsLe3M9{B*`|#3x7|R9a+m*^KxdfE#{uF%vcv3kPyQ<bWL9v
z8ds2u5}$54LKmVu2I|!7^D5v&)RD=~VRP53eEPz^3*=DZvl!8LnQ-1?tmHP)qh?9_
z5-(o(CrP&Gnu%7b4E#yL&WV8A>W|eh)oz0|P;{}*R77#p%>vmugjn+wi|zy`t#%46
zFJub!TD}bd#AEI@Ikq9N=!v;3Vre!D?&>+geS#H)2rInq=zGC_;)i%7gtA!>>>}io
zf^1fYh|dU}IGwQ2hzX~{&f=oAJfo9R#pV<B3!V`U=~qR#gNZQe)wqMX=-Rwn76a@>
zApB%6yx1XC60oi2+FmYj)skG<5_NB*%LE_$X|aM>W}25vn^;~GoAZU;1h}ujnH1LL
zu5*8Kv#VblN;D{~Ro$#*tKNgcrUHOP+Yar__W}Uatk5W?kIwf3&ki*{3YOCyW3;u0
zAOXa*IMbKHVHU*9Mgzs7Y^NtP^mLSxVwZ*&nlbjY1Ih+HCMZwxP!18;>Jqtf{ZU0y
z>kekm#7@1ITRj#D@8)7+)OPj0m7hsIhh}^h@I+ezpu~j;n`}2S$rwBFT`gX^Ze@MF
zMdo3;jchjtN+&())}iaC$#4R?k#wp9PMlx}-K(vm{=Vmbth-XE+dUV<o8I6}qa-=L
zs|eStuDA&UEgQ7@p<mO;WzflSGCFZ=u&{TLcQy+7KDdc~(C~WnGd<c$$x-dtxit5l
zxp*a@m_aDI!25UgFBa*F45J{ju0sRgB5teS`f$6`U#<ves$aj;`J?D%_(Jcygv;SZ
zcUa>NtK6Z>9UgXv|8R$e?(l1OxZNFYy_c|Of2cX2{!}jT`pv)avOxW5&ThKx)j1v<
zP-rI2r8YKbLPbHc8PD~+a+%tXYSc3>*v@+<TM}4im|87fe#b&{vMW(*MCBM3h>B`R
zIn<gzy1_r}ePoVUR)oLfW@Lgj6F~`&{1pJ+IPtnF^^D&j9(YmpS^L1XAIhOVpvm~o
zXL~>4&8eUeD*>Sn5CE?<Y@e-;rs91X*{d<E+-dwc#T`z#2fE(Vr(htU3Q5BEP}tRr
zIUoM)Zi>v-&iYGy!)9g$Y1wOh)LOM(v@Dk&K~v8B^c2%3b}>I)Dk%pnz9_7by=kAS
z1@szC_>%pg{C22*Q1pv6MT_FigfeY?&S`~u+pSF3n#4Ju*M;B*B)=PDjeDwVEL4%&
z4rXlZNd_mecObQbw`o%LPo}prNN(!E!dJxRue1*`Ur2Q5KBDlgFi#k7kF_6X(Mhy?
zxlR$|(9xmt6(f@{DDxP!+#q=2x>*~=sh8+NFtQ@P?p1+fsA3C+deRC`%VKjLw^+dq
z8OR`3o2Y3y@!ZR}6>Isdf$SjA+H{#bNg08SlCRv7zOZt(gN6_ROAi-$1y+X0<uZv!
zMYxh`nJ}o9EFp6Wj*X_#VAh8Cx>q!%y(Oi~W2i{1u`u%0e1($nQC6ff^XtYF{j7K7
zP_>4_&CVltNC9%V9Jnv8M>$2LK@iQTC?gaexr=vOdf-nqrN+-ZD9q5?`O#MOm)fWb
z32Rd|eL$bzL00L(>{uRRo1L&)8XvP=9=yR`BdCztRD@qPTkT5~=JQNDdGLNch?d6X
zj6*wF;GGa5o8`x}092ZpFG`5oXrvhhoRMU&gV&tzJ=&&ZHF*X(U#GjytUxxCBwj8G
zKl_s77djmkN3G3lZJ1vC(s}g4T0!I-ysqM;zJ*M>Se~8wkam9~*2jZ~i(kxX{%(N)
z#z;_9OEV<=c04q17LyjFg4Tt^P$xz#PRx~TGE~f0Eb`H!RVJcppmL%=`B`aI!t1}C
z)SW=!NWD_~vp@jjS;~>xLGHr}2e}U`HXGy?MKyT`>%$784QhmW&lMwh)nM;PhLE*Z
zJCUNjXtC)8NlY|rL6$y8mO$OFVt{}>_TsK&Nf0?%vOwR*qIBNDYn6GcqTJTuyupUv
zB5{c%B`YMW)YmSAB$GL_P-a@J<yy-DygZSmbm~=dX9<Ej74;HhaFfm?C&n<M`0DPJ
zsTUJWLty?va@2FWCj*tt<L43wF<%4Ux3YX&?B*-cxb)t1Qpujk)jm{mv=Fakryx2a
zW<!l|Dcs}vNMcP=(MeMPr9mQYwH=%M!sC8xHeir!Fym;k=Bp9F?jKRjd#XFC4N8_X
zTiDLLOtnFxFk9X)<7}+&5CI^(nJwCrrlv1|*Gaxbd8BwAj3d_A7MuG!o{Y6zsuToO
ztCv-%5yu^NGT~^UB}3vGNSNuia4WJ5cyX~E$;yVZ72%>coJi-AiIzQ?=tyLG>Df<D
zreJv2TcSw>BcCPAw>UAp{8ABxEKRnMNL8^0uo+PyigR>M6e4fymX|Y*d8yI?Gi=Sh
zGn2{SG(0ndTKe2+GDyl-pUagUvBq!cinrU9!Q>r1?AkFtHoxm+eNbnTWIIJka*^d#
z={V=n!)zniO*!24l6#TuSzS;N0mTZK-AqY*Br)*ztCk-5;uiZKz=l%sy~yMX|HbbS
z_S+)q_Dtmr3mADhi^;tGaBfcagMrC1L}N&}(Drkfpztq=nSi1dl8;X&$xR-TCigr;
z+>(6#i6Is*p`JB@kOIIE9ix>?kk(-VfBEgOP#uL6_afdn<2bW^47`kekOHn}kwiwV
z<kjSTxk`PT{iflBvmQ4yeGa$zAE~9`o$p(q`g3=<#U19lL#sQ?c8BZTVVXNkb%(#b
zXRrUo9nSp)aqii+?tV%<=X-;G{@c@XiMyEp78E=jO+1C9i$&UXn}w^X7^*8hJNFW4
zgfZF3Vrt?2p>|`rS{-C;?eQv6GSP~S;kRv;sqLWEghJh$Pm$EqWUWLEV!81bN%3uZ
zCUrJj+3&VkJnlX*iCwCepf_-OS}OlAUEnKbC*_IU$dd=a_sbNKsIRC!mE?kzyd7^l
zU`2wdE~&MN)N+8TOudjW3;vhHy4ST6PG$L;SmUqg_w>}Hw+buE|I9cvXUWuiiLN*D
zPfz6^oh*MV)}m=&32wI3@<Yag8V;idDy&sm6!}<Gj2!jYX~EFL;;Esd6JwszeJH8G
zfyXg|N?`!MQ=oCVL^Z6^@S5ucsY#i}!cY~ZOR<~YCmv64Gc?2&O`y;YPdB}wOIZ09
z4cZ$tHhz}-VaCF^=C+{%LG4cU9YG-ma$0P?OIb@nXh?X`^c)CkA_%6{is1EvxWRgw
z@K}%ZPb`b4<iY%`0(gpk`B74u2i>esw~S5U64;jsP1r9bYWsou>^oQ%9=O%SdzL#C
zy2CZ@u;U%O_r5z!UV!NDiBBCc-z%69eed@Lxu@A%T-dVEArbf^uv?_084*?~l$<s@
zq46^o+7LL8VdM7QW?Ut!F%R5-k1#_3;&JjuecbFSbA#W8$a}<7$GY@If?gDU?MdgT
zV7u%ktSylr@3aP@Aj}UyLyHDo&-u)3Egt+cuXzuyIUm+DKeQ*)kZ|!uZiEkmWd#*e
zPn66SkBCzpYESioOL$S>o1QDx{H88w@pk#LSmRxGH`;roZdp$}xSl&t#~L-<Emc&2
zm<%R7-NSSOGRqYeO&`?dGpJ1p|3rKpvvs=IVFyu)wM^0*Ft|npsFs}7C))}xeE(?s
zz;V0wL+1S3?)=6Z6tU|`Xa`n`8X^IORH44tCy}Xl;+7jQ(Y`FyQ%uL#6VO(ny(6%T
zATx13ZfC6sF@V4y(X}8!WEI&Xw~V*G<NArKA8e2f-~JEu^Sc*54&ztXxhFt2W0S$K
zQyAhDE&N5q2E{lic;w|M9u&<pW5rip;0!&IWMs5TT@=4(6E2BC`cNwqM4QYw*<ihC
z+Tz>jodLHW_2I7+NN^gwICjCSzl^wYZ!p-y?{6{n|7*7$-gbv?--Z>)(|~l=|JnHJ
zJc%LuB&ubsaCW|@(|~C8d1DVsztMLu?4<E#->4nTZM3&@=6ag(l8t7r=M>3yt;uhs
zX-H(wOz(SEM>7*5be-|@JmREEgfL|LOyU!`vzIr}Ii722_pQwP+;_9sMqp-LWafK6
z_??V@HjbG<_<5i9QE9L-tYqa5mhbW&SN>(L8M_oEkL;j2_}KWo!Wy$=rkRSEFghcE
zh!$LyBLyjTZUp~uzwST}R0cm5o_UQP#LDZmMlwaiK+g}_HE&_YK_>DuYjWiI<4mO4
zm1weTE}epc?iUA@?D^-5M6$cY^O2Q^l5#(<QY-8vf31ea;Ie5#@v-a*3P!)~!3YZe
zWoI!&K_<elZa1O5`zJ{2InHNg<rRN*zZ=~ChVoH1H#aaAI#tGBtunH^@}AWa|0;h2
zYYW9uqiYoOTA;hYN4-|CaG8XUKP-}4;xZceR}!AG(GkB??FRdsgfzJTn)WTQmLmMg
zATmYR>S;93j*+skE3|!KB$Grd*KhIw_R)&@tlH46O}?En^@;dbaMYjfg*rlOmvKc_
z)@O;_cYXWhfb)nq)ds&O7`yh;j5H{11Mb1F)z1&AL_es?cu}K|w|&YY())YKC{fF1
zET&r@J_%_v{+4F(QBV{ONC@o=GIDO5IF6aS@?=Inigm{&Dx^@MtDpJIsZ6q4A^)yf
zF4NB*+bMN5CZLGMAdI~c5hoxbYPi)1$I=a#(Re};bPq}(+Ou}pCU3^*KhXjX+7G!k
z_r`8+;7TGzvptMkCsQlB=ZG~O#-i-x*8A<;=@UWAh0l2{P|%_#Wk1{k!QIbw8wI0_
zmTD_Lq(5sAnOm%fu~OC`mPO_(J<Zq<&8wCniAKrImPCsxFekcW)WOQoLo`rpPR$E6
zcjz(Fo<5ncRU@*gFLckQz8Eg!i7yCnQWbtlUIsf?E6Y|RR#l5t_2N;3A>wwqQ|9Y<
z<a6#wxZ#!KQ8dUkIFG`eugQQw*hkC}AZ9_qX*-Hd{0hUhe>L-x_z~viPC_Py#98}d
z{?Jsr@ArR#f}WGVMhp3)!*>ckuqX=hiJ<Zp4+{KX`1E60;fb?oR>8-NPm|%LEr$6|
zVp;y!tZ&3x=IC;YubT4lvbJHjkFiax*lDfElWi)IRO9jr^pV{a*M>(ir4y0TcG@H%
zU~}X%USjYfIfbgHCOPvBFD=A1-tk8Fk9lX)*R=dp@L%l~OcvVWJZA5mjlhKEj%YHF
zcr_X=Sow&i0wamxjVEo@_}zi?AlW(sn!fb9_ISqLiWNAFhzIsh!Q&Ggt!U-D$EaIV
zZ<Rc(y|;H01@&m7R#*RVE=&3r`qab@S$+iQqvYA<Gwrz#WShOk>`Q8)t59I_i_sZr
zMU5RP!|IrdCe>8vOyfg`_#vSxyYNA5&R=b8<_3cImtu`~+FfVv3Ep3#2z3TUsCQ$H
z|A#wDnq?;{gGujFgjz}ws?)aR`E4NsM$c(C9$(cDD)JKLJ+ZkLaU<4Ju2zv-XRx%j
z0tBccl*}_$G+CTy#KHX8mwb>DFW&5GJZJl!LT!nCWFU@#nX{G)$>0<q+Zt<p(#D0H
z>1QZwYqoIqupcq1HkkVs&YFhOhV33Jpq>6lsvniDT|_FZMO607CHY?#o7+Jq6>B+D
zjU#zX!muP`kuM^#!bI|@t3}~nD_odh%n0HTxhvMVuPBZQHh+fQsuwHTCNJ%Y$NunK
z-0iy?k4<<n-ngvGhCH)h!)dwFM#)x)8m+v>=C=`eD$7<^qIYim3Zzz<e$DqD#J!N@
z`eswd$eH8=FB)tgVvz9?u@rDIpDQUp)9%P_CQ#v8_`UB5T&q1e!pMkCl*TuH5q2y0
zmm`F=HZ<n2^s^)+Njr?2UO>U4kcXLUyQargd%R&!zs}`EYC|HmBC+ii@#t>APNuf1
zmae5p{zCbCv76t*rY`1j`+Uw*oKX4cJv}&Jk7W6K(|#Z2;DWH_d`S*kBdGLkf=-TV
z{5BndyvNQ7MMM+X0F2QLR8$oZ`8W|>aGDO6W^0$lo+uR}m~k7%wyH7F<pm9%W?C0r
zd^8grTNFozTYhH`%)l3v?}ULmi{_AMvkx1;(?Z0Rdef+zw^9tBXbiuO=f&8?27Kh>
z$2l8jf@nzCtTyK+-3&H|hlSu)XvuD$!g$no1@Z)oA)@6?5t$;<)yfMNTQ;T<N{ONL
zJCVv?jb>xnB05MoBAGy|O)9f&#}N`owkJi`U?^4ta;>AiGujS#3=<P;Dz-b53sLqB
zvBvxC)<~9gKAB9dPoy46rZy$EZA}Je?MxsFjjaaCq%~WS5w<%{q&6nDy;>Q}7`C&r
z{LNV7#rFER57WziZYenssGY_t27gEMgor$ZZe^V^c$h%IR7YeJ3?G!aKt@3s@?w#R
zMA~^NUND5YQzj}%ew6i8gnzuqb!0sQfpJxH^>?47j7O99J-vHZrCaegU}}3%O&^xT
zwBEWjwKhEzEcmeB-=GGhh-RDY<8j+8oFH!Vm(?k)IV*?rJJAmUI)f}EWseaD?62iZ
zvR(hy<pO;~JxZTs5KtP&LMsgVnOG5jQ)muJ(?sbDZAqX}A9P3&vUEtNHu$?1;3S%*
z;q>o1=)BP|U}(StLjwY)I0FpfMzJgo?tOvh5_Z}!jOGBb(Au9Hd+|ISIwzvK+m6)n
z?1;wLa|@mGoV~n+Q^E}>RLp2ddX>r+I(x;>%EBT<=9B$0kO;yykc&pZwViWR_@t2P
zOo&gZ>a9o1CkgcY35YneY-G`i$fA?daHq*fq-x#;C`dGrRp3IlLOsrF4IE{jHginB
zCGN7*##$F1nLA1Z<5?CgN<MJ9f@zD4fJUnvO47&b4K}~NR9Y+%tz@$RhNLb;>DYz+
z`<PS)p0@T>2H$1N_{U?7=W#`|M}^gy!PLiz23{Z<Save|CN}@8hM?GO9C)g@pZ=N7
z{ljdv-TiFTOYX%-^mv@dRgtge$lz7_9NrXqwRU~r{bO`L7<Tv?VXE)8NoazJV2XZ*
zkDun!2B?hCDH=p(oK;F+so^ZeL#m9cYjt5CPg<f2!8u_5EX7Q9987u%%&Wkh!siVJ
z$^rxN%wWngFn<!vm!7PTZuUq{*eM)3V*Rbf^`he?wDx?gvCLYVqSmgUwWn~H*4jc(
z$GWFz?G0L6esa@mvF3Z!TIxd)pn~Vpw{xxux*|H8-HVQ{m)wic(E)cdo6B8B&=?_?
zd;LsHj(nI0Nkn%-iS$=Z&VA%Xx1|PN_I`}};jcGY>ag!KcG%M$=DCa8-Qgy8xWOIj
z+~G=hxYQjka)(v!aF#nf><%Zn!#H>F{e8uqeaRh)-67RPF#aT~{1h+~fTNU0lIZY1
zay<g$S689@qzEI)^3kPQB04_aHgX+Is(U9MTe6IK;Cpa<?4b(SPSDjA&s!@!L0o90
zk=-xk<4d@Sp7|@`9Zw7OzVUzT<~`5}K&Vv?P@^26CS$=d!cDh9ONrmzYKjFXU1=)+
zDhviA34@6v<3U{>!v`1yJwY5WcLc8x4Hy%o@Y>kmpVbUsglkFZGLTlwu2#rq@JY&7
zPLSv`n}-ReA4c03*bKhyNzFnYidB-1&>tao*56~CeNmyqzysy*#_tGVKgNU$S5ZOU
z+17ZXOmwVBMxFx_lholo->|n8K3Oj+*6s0oq?o7lxUmITb(2eR{bD_qf1+6JKzQ$1
zoLh~e8t<apMApXTwQRgQ{K&_o_A<0`HVn#py?^o)C4d&NnTIyzk75@aF7xyLL1JQB
zo81YRdf9gClhTr$y#B;NV+Z#-?L6u~+;^kN|E*8iVTe21?#|wujaa^b8_rGV`pb*0
z-y1Mr^EUOOkT2Xr2HthPL6f#M24kOQHed;j=B~46nHo(>m0;oTnD>*IsFtruL=Xcb
zG&G)pY&E`&WT<eF@?oKoJ|hBSSoZJ)1Cm+<ui5z7nQaZ~Lo+PN2r9>{lEf8@;3eT7
z{4UTFcgfiAKjcV@+4WAlL`3c|up>=~>NZo6qegv0+aM1L&RFf-m(JntiTO@gwoMRo
z6_P^+6BfkA*Ax|Bscm>)k?!_<t;uu=U+?C&{`xW;q4IM=%bzrE9^C-{Druk({~Q*Y
z5{v30rG)P5rcKtb!kpc7KND{|_F3($^Nv{#ctJ?fcEF=zD$7qcyuv3uPlz{mc51yq
zV-IskJLAnu>-NrhI<h#+;5qvNWl#0X8Z@}3#53dfNVm|n`oNTZ!Eg4K(4=6Y`+Qd5
zkBGB<01JaOXU8znfv8<}i~7x+^}3)TV`QuGvuXta+^S{*C8xnP+<79__z!z;k&P_I
zgBefssB$oWnRZMb#w~{U_%4e%Ei;I{43~sMos%u&N@ZK24e&SJWf$9Rr%K`tB7H8{
zt>(S#*8I_$pjX*;aDpMz>3njdH`aWyiXY9rb$hAPx!bH<(KNb9Ju!kmcLo=1^ggQi
zx;=N2+?!KnRS0H%8DYHH(Ad5Lq@wUE_q!^y227nq6O-F-Wr9$`=!7t0I1hPw-f>Xp
zxb=4U)-oMXvna%!jCLIMCnx(>CZ7|16id5uT2Xk;-6{gmYK5+#+H;2#@*^5vZGr%b
zZ*7KRn}%0of7qFDv&j>&2|bz)q4**hoZ6Mxwu$fe<;6F=p()9g2X!V#t>F8iuv(ZZ
z)|!V5DprtfApj$GIC<>bC#(3ur%(9OC_yGq5-@05tyDxRQ^X}o$NXB$F9o@Ux?-PV
z>aYg;HY`)AcZ8Il?7mzGY*uS*GrjJOWa>@_5TL6MeL+YqD;w|NJdyf)W$MqBsg0Ga
z2$C1%ULv(Rk>V?cD3GUA3KP|-u8fiqg_ximG(pHD(5|vJ+bvEOKJ|9KXmqFbxy0vh
zQ8CyJR3=kLMpc_BTFr*ru<D1><dX2omm*eT#>%Ac6++GVC$<>rJ^`C~LVVjYqAEo6
zBs$c6$63<^g8`rwyNe-$ar$v$i9yA~aySZy9m^a=l0^GPA*dmW*_NzgM6G&&Yc+Pn
zGpX5B6#pWKi0C3~N|qW+xyWO!1dJ1PYBpRZ6_+5a%<6JaDyn<<4aFpM9k(ki6%TKC
zUEyS%re@;?lUU(eXGlS*L2ZIis~tV|v}aWE2uLP7xGxeo#2hXPO@)gHAY9T*mBGTx
zd7KE*YCFz%Q@eOr^oyqmGx#l<3RZM<fic?!H{zi%D;8$>i3QGH@nES);555V>|EkC
zdj?5)`C7;7xNJSxPf~D`!^$i^Rdg$S1e)m>$8?E|a1h^_AwP`^QJo9%>^FB7c|C)}
zy3T!ZK3!(Rbbjfgsf{wqP4?>h$rMVoFrz$b5REY%L3K7JQ#eL9u3<`p7CEIsfBGnm
z&*t$xv7jC1N^2GiN;LC+j?$Wmc3k9#g`BX<P*m9UC4OiEEbRQFwC5H-KNYfnO6@UN
zAhq=khJw{;Ph7pjpE5h%>7XG)GW+6bt~s{CDt)Jz18Sw5NT^Eeh(zk;0oo(PGTNi|
zbz<71PCt$Ie2eLg(wS<h5ZW{Kzo0!rNajPhhycPx+9O=jzxUd68z(}v*p4_b9eH@M
zojdIjO*7gv(VrB_E_@2@`S9^isyzZl+9S}UJp$EfPcM73_p|PtOV(u&R_VyO7_4)r
zJpTFS)idg>z<z>icpx6y(<50r<m!3OojGmtwSHM5YbzU$Znd|fx}9GJLZ3r`Q3}@M
z@9VkrzcY~}naZu9htvPvQ31P~8}&{!Gul47%8t}HbVOD+tJ&GhLk_sPc4vUw4vIIv
z%7@;WD%NZx>9B2+9`r_Up26&m-fjM*DA&r-`vPy}tk$!@TRCDA-Lb&Jj3KPX2sVu_
zHMk}yYfv_a)x`c$a`Bg|!V8K7uo5}&s*!E16=6RaUjO^xUudTFQ-bddX?n8NM<Vg`
z7f<CPF=x6%Q+$JAw=8kRDCrP+OSI4831!M#jQW;oE6Ii17F1%X3QZc8SkNHFkQ<g_
zD9n+fi(gW7`K|OJ)>FZe))PrJ9-p4hBtufd{nXcU#y?^9f3B1CLhYH9Qh1yx6d(&&
z155mb0EQ4_?xSuKANs9O)P&e5+3X`Wr@SC_@M$!_G)P(zo_g8hzQThy1-<@C5uu;X
z7i6f!jBm+;5jA(lZoXJbu~KUr(T%7*>W*p$&pB9olt$ls*yolcRE72~Kiph{TfZji
zWmyEm-9O1RO$w=|^|!0$BkrY(wX%#=yjMuyOuMKIp2cVWNTb+Q=03F%%vhRTllOD3
zm{FvM{%i7@fBl{#V~-G~!67`9zJ-g?8)JLBsRX#5a;`B0$0u=K%J|mdS=Lr07Xxnd
zfwtc8Ps=S6UhEFPaff@{;SP5gdJS3fb!=7Sv*bScXosAT<)cHD%go-g*;vBJn~p(r
zblXC(h)q?qt*V-B4R>RnZoKVE&@8yTQF+#|E9@}*`#NB9szd|qd$k?s`yp>Ev{an?
zwML`%(S>&2?xI4-P-N%xEo8JAx%yP@HVU77Vz4sxC~;Ey8Xi%mQlut={O_C|44tB`
zBqi}6ia<v`O2qcKb>Ft+@fz+W+wzy9ugl%FrsZ}GjqszW{6cSVx#&)zl%yz}xj_t7
z{M{!mavk{+Y%2L8PfvOghn)W+n*6+Le*W`nUK-gac=xlN@J7-%=OV1q=4)R(Uu3%J
zU&a7Mp48+$+J8>4a;Ma&C8b7dEigsRQEtqh-61v(FMq}%Q7y8MP`l<EAeeRUe1zZM
z4dYj@K(|4HPf*tC#a$RD0~{mAGZ_F=_*u;FGujpyIrRxr`TH~4?(}56)3S=wQ*~X1
zr>ACg6`h_M*>zgmqUGZIX>CiE*W23*mp9mPk+pIL*B#X+iz&o%TJ;B0j)f`MPffgs
zIw+PQ=hFlyK|W1z;-fTS|K&~@jajxga}*v-61gmKsv~ts&CfSkOfAS4OoadWf=SL5
z&P`U@Ri|Xq$7Zs+{C1q1q>LuJH6E}zvgl<v7bWVG6qNcJ8h79vQK9D#pb#5-eBj(7
z&pAK~?|WLN!`va&LzT>GC5><>GSS&w&N$Sz;CbPKHGW>WAneZ@E+U!X)HKrJ+CI|Z
zI)9|QkE782plUZsm64Y|jIzM$h`Pv6$XnuS6$&fV2Xb`3qy&kO1V|F%YOC?Xq8q=O
zNIh@6b&`K4^Inaw`%sr-jkhquUx^*b<7>l3v75e1fR?_=rW~+Kf^1JC6L{PI&XBqL
zOb;-Gx=aP?=5zF%_a@*~4Cyp@BZJUM|COoN(`6c)2M)ofbk0P8#7RvnkrI4@+rjG?
zBgfsr`-!gZac2f2zjH?0!sn}a?u@oYrqM{cX|!apRI*v7l2ipsk8G;?1Y<D)2(IL%
zSn^sD&haCnajBkRfa*<@tul6?dXm4<o9S0#;NW#Zzk}IFk46*PHsLqwT1UJh6x1sM
z7F9dU{r59FxEwEH$QuO&JE@bUAe^xi)ecU0%Bjp^HQLyjKS1^r5oBb~6>_8Hk%_K1
zdEOaijdgX>hKeI2to3MwV3Xpd&34O;N{j4{FrJmXqVDy<>R2$9nX_V)!g&eURy!`p
zWVjuiSC(&yH4WDkThW*cBJWm73on!zr^O<LUoZw1S)gP^2aIU=vp+{BK8Ho<ymu$C
zs6q`H2Y^)#MghL-#Iwlt>{(P{Pe~SdML=g*BusRI4ftd{x!1d(>YRw)tTggns%{`y
zgEi{sdwQ#_LcwOc{!s$@bDs@j>4=!EIV&_pL)squwQ5KJ=V0#)ipSpd<gqt?Mgkhi
zu?c7-$DbJce_J2<F7sLDt0L^3*krM{o^r5voqZJczj!Q%_l}qz`$#>F_l6wUJG?$l
zJ&lSH_M40YUOkP9{~6xj=huV`#{2&|_P=~I2m6ob{U^iTNr;#HNJNbHk%)X^-v7qe
z`37JgNqkOxBJgEeL~rFHB6WH@GbSpTo7nt{)*GcZRHoQNELzLV4n=Ii%Z3Uolc~;1
zrtLh&(}~{4E1O@NG0tWJysEZ*m>F5JGuy_!Ayrw$Jy)q%%rE&&T}dBr9Vss}k3cLJ
z?sL1NGNvH6(%|-KY9Bq(%;WsgRXSoeH_33#Uamk~-z|On-*%Y<{qvYi3TX{nMCg4q
zl$j^!for0t%>8!meKf)x=X&~H=4OOHTx?my58UDV?(pOk@`g2JM}0=ua_1ih#PFH?
z;lY@|-r@p<g)VR)e{cZ=nX+L=F<eKjJP7^Bm3bwgF(1T@_7dHYo4-&k!s%*z^>_wR
zb~1<(?_D$ALW1sCg7s;!`+8Y{omUyVZz+RP6*IbJsvFEm`A)HtYFl1^t2h-D{B+?i
zNqRzw%PSF4&nu=U0Lx<niWWv#%M3Z$5vJ+rLlOU>*34EPecg<Vry<|<>Yg(HrQs!h
zz@kEZ5g%l?>%jRq$EBC7i<E56BHyi&6Zq?3AxTklIWdQiTU9Vp#xKz{5|UWNGf?n~
zg_^Y@E?%)JoM3KnunIr~ITIU#sW#;0a}Z6l&C>-o{Q;mdPj(5Kg0I_jWM`N;PiZ(1
zZ&Ys&j6*pTHfzEI02YPk&v#>b_8uy1kD;daKFgTcv@JvWXz+lVw)GOtdnH6w<H5K7
zaF3WfZnPv{^j5*cPxHO_i-R-wO+z6YI&8L<DO2PyH*iB;eN*7x_9z7=64Jx4=r)e(
zd!Ei=oAp0f+#y!f+CvCKE_2x`&Iy`ct&mL<`!v!Om+^8)O=3o~8n8Q)*;$UjOX8i_
z_Pi{XergSJwZ_J3!n^;~nV{Ni>}I7MH&a&9=D>9&UP;XTh7JL;9VxFGq`7uYPdP;+
zf7Xc$DSeJAl~d}ABKb_86VUW&1}9}Y8DY(;oXJU!lzKw}&PXZ4Pu7}ZWpEa568UOL
zPfhsvuQRwM6`Z2}_JA8QkXjiI;3%9HV^)Wx_pxr9e7#_3g`O(awYK?>J4P;e+$ci*
zKnz8?AFt&IXC9Yy!j#8_yZ9l>h!yHZTu?8fIw=CFqnJSRBAfyx7k|!BZVRErQwT(r
z+2i*S`Y8o-m@_t^#%jX#cMgg<uoy1EA}5q8N@%u7s(qy4l$t-%;pFk}?IhVMinY6`
z7*1;>CnW+(ruup1TdYx_VHeB$wbLl&JdqlycSOVIfP9>JuX8%=ooL(->jmbhe6+dq
zWh~DS%grLvmnpOQ`bxGh5n63e6dc+p8VfRnYkcxWN};Yrf5!)xx~2EDEMUHa9i|qm
z4d8SSIUk+q3d!&CE6!+}zg%#uf+4uiXlq(7!sIf~3hgpjf*zt{YbEXQtyo43=25*g
z=1rDyUE~nrX~dQZk#>i?N*XQZiR&=04(1KNL(Fqq0w#l6GAAna+OMTv!qi~MEwq>-
z(e--1gv8Ox(}UK<WHl_BNbut7P49A^;UD)!1D8y_f$(cUzsEpvt!wY>rhl^=3)}#e
z$VOAjwrbRrd=GGgKgL?bL3qJm;$7ltMa=ASVY<s|F^@t9EVPj!IY4_SL56*Q70EDM
zsxZi<#lYagsz{sN7`)KSz{GFC=@g5T5(9P+9sxYrjm7oKW_a||vFzes=D=#2Aa)5>
zkvMC4y!g?NA!NSWZ*5^lfE%4~U{HDb?}GJ#jvQD&5nY{X!)w4Zd?HxQ4h$yy|6Q=|
zoq^TpDV-L1A~K;>P8OCJJ<}tp6<JV!8o_5W#nx%W2QRUVAf9?GnOdFx`~PF@ZQ!de
z>;HcS9G%KMGeGAJIudKkyWvfa1U=x?&+yDZDW{UHqN1{zy5Us7;WprOIA}?wrG=)c
zWu;|k<;^Av!&{V8P*YN~&vD)WmfUFU|9ri#>vPW87-`@CkB9DaKA+F^xvuy1zQ5kr
z`?@Z<;Jr_he>D3LZE4gt$R-*ifpLOTmp<$Ra%-}$QrUmyaLMQt<1BB#)(bYeZuTqm
zH*nSe%K0OH{y$NuZ<Gn#L_AzpsCLQ=)lNm2_=#&n=}mLKEEqclFftiQm*dbvyB?nV
zefJR+OU<E|Dx^YNOx6fH+Lf@Qu8dcTb!A&@F1Fss)i@MB@~t3w#S#u{8lAAC4$Y$u
z4<T>*!EoO6C&D2=a&QHLCSvI+c~v3z0G;KUp?z!D+WUyu`q;Gv*c!DnY-Jx;hC+X5
zpP8vLP|GpZkpoo7GluPmXB>dCEPZ%}o0*2%8fi_OCVx{O{>oyAeIjqpO}7()nao`E
zbNRf(yqeBUW?s0z{9TO=2pL02?`)`*>@Sp)pIVu%ce(is`qnUIsH|IQSoL3O__uQN
zQ|qz^+f1bQpTK{EI-ZFgYc+}t@_RC;QKNkQm-fr~;1(0X6%xs1%S3Ja*qhPp9h#bh
zcGdRMC-tzeqmIqlmJRim_F4_m&dky7eLwSqJ4b%C`Ay$uxfo|PL=q}!))+g#zg)R0
z8n<?CQY;l%t)LW2xE5pq&5gpsgtsh^|KeE{xUD!vUF|LxDEnz9-8he{=XW2*E%~_s
z?3C9m2~YlhTtctlj=WgZhl?H%mVnYa=0dXSTT29A_T~+Y@qc)$jqw+|%K~?4b(ick
zhWcYDrJ;WR{Cq^x7)OF@%#>QeB<8_23u{>H)!T(P#qer1gYV)wdnCzAWr5d)uk=(0
zy(>xnoHHz$9=c6CoV^s_XO7!2XZMTtjxQTg)c$nS+v+RbJItS7`R*+S;hT2J2OVYv
zQU0v0cRpK$+2Q=k1~OuIwaqiT-k1<%rVZB35W&lmM@~T!UE&M&*0=PAMj7$K{!A(Y
z8!43p6H;AusRy-AE!CY&{asVSpG%VHSxXjwn>G^R)blDb2p&t4A?)^*t=spl<mj+=
zw+C5CS4>uCb#s|5jJtu-pG}Q;jMY3vs=c%4M$(Eo1H3M^y649fnX}79mz<s&u_{Qx
zU<jIXEyGvRqNI(Pyy7j>+eS$aZbn36W*>q!PUwc&SN}9(c2$zgzP@B1C-}Ihp3%!y
zZ$ow{sgGg$mxkwdcbVfZue;03XTS;HL&4?o-<KbdCjuf($NE)lB${q!Yx_s+5YV1o
z3CBF5JkoJpv;HNhf#0M&BJl=mC11CG2{P;h728=^R!OH0`e1R>u=t<<KIo#isdjZw
zC|r~+e=N@r88jvxa`V?WyY<#(CbzfyXn?;W9VVb!Wp}zyMs`X?homp@Zd#vn(oH?k
zRhA1qZaKi$`6^gB^?M$SuZp)%W2|yN)eX{;YQM@0)v=x@8mnkbv#@5&7d8L1)SewP
zCj708hxIr|PoWfCHN=-KF;64DY&svI1XY1@e>*kYk#<t<FZxi*vUVkto0=OWHHl)1
zPRbYQnJjOJ^ffZqm?qSRdaQAh+~eqL4Hr~<ZR(j?#cmvHMF42$7~s*gi+zlkwrDh9
zHAIsROsCA$NT!h$RqZD+-PZd45%Kmc<FA^`WveH)_U;y6u!y^f@n!gCuDNKYC@GmL
z;^jiuW1@E}lSRu-Wo(VN{{q#gNkkjq<l6O#VlWi4pvHlEU?K{?ji{UWGV?q%+k+y2
znB>0y&G27x)(7M$j9b_AS?y3#4`%ewB6s*A+)8&Y<&jK5qwb+ri(R83Ee?>C^DH*+
zp)zh+77@+jd%Hq6%qFBXh?0<|W3Rri{0K#c_d5BVUewB%vUXM;T{T$E<`=-wK~v%m
z58?;mU;dq=s7nfP>PyXvo=UdqcvnAwKTvUkmmO>EflrZZ+g98>)ecB^6RSJvKNY%u
zFS34%7i0#-1_SmRop2rs>E&C>=o@P>KYfHYZkSDnSDspY005+8U-{>8gV^b$l46-v
z+Gt@{b$6+U*0JNZWTxaV50?+h&X8bdVlyZhK7TQLF05gTyyE8T*kVF`Q|W9%W#DX8
z(bFmryZI#$JMAhip#N9iz@0*Z`B8j$@q8zS72@=AVcK|v@-NK(RwR3@)RA0^J;Vpb
z7vN>4?jy)^c=CZso(l-m*1nv8(fxpUL!8x@o*yY-dX<$Vnqt=|3EsFMO0M*NZMZ^v
zw!-Jw<jBp&mVgZRt#MjZp$&;m87mC|0jd!DVb_ss^Ebk^i&dM2gqsw{n9a(ZM@&*8
ze$2Z`V(09`mQbl&c3RTVpTGbu=(gMf1Fi*LREL*Qxt6jLu$-n4CiZu1FZoUTS{+`0
zp(7oeMnau{DvP{k9yX>Is*9X_{L$n>noku<^Q{-e>u3$l^m8=Rz89D9>o#eo?3WlU
za`S*aCTM)`n5C4iZR;I#`5tY{SH+jTU{gA6%U{*cqbdED6IETM2AL4M+KAlWj0jj5
z3e6s0CQ@+H*eO1F<HJ<5_EPv4%fxG$oTC0#8Z&LoI?-Pk%}4%pvvk)ZP1AO&yS%8w
zyC%b+9Uo$eS71(%cgm13su2Q)cZy3cidpE9pHjn6xHPO!<P;aKz(=DD$?Z;AWl#6G
za|CzoWRFCc>Ei>;!R;KcQkKO+N8UWQyAu;)9q$P%t9P!^QFOwF?6nXlZO(smC>lbz
zHPsr@mWrr3jUE{upQVwC2FvN#zG~An`Kc%75YjwSj2jx=JnwzO6qO&MfMC-oz#xsH
zf9i0R+T@*Smz}`s4U`mde=y_At~2LB>${41Z+^-6`uKu3sDJ#Vc!!92KPHAo{M<>~
z_QCNEPQ<q62j=4)@!h<iR*gloFE49&7SLSwedXK&wz{T&eQc>WPV~<B(PLl5J{0?H
z+l!lrvTiROv~4eqw@(F==4)mz<`@0zIGpSKrBr1HPLBU_ynS!IX=!@H_V~KLSg*9<
zDw9;~pM2(jfzxB%;QAk6j4xvnmu|POYML<iX)Q3nj?7=~4kfNWxH)catsZyqxaV*l
z?%uqs^L4Wpd0+Bi&w7R+FRJ+L-S~S#{AUmLEaTDd#SwP^kVmID7OQynV(<26{6w4t
zG(33wJBUuCcx17xI5mhN`0Si(Wp%M2%BS6%S_8g!Wn@Sc!VvZJqg+42q7SxOjhG4z
z0jY6=-c#ci`#M(oqdXw)l>ph#15)ZFRV`v1io?ObvVq5Cr!dC&v|kNgIG@b;Zq_#$
zZUo9QO#~VJp+8d$W`5LrMZ`$Pq;3TO!@M<eL;*QGN<eXIMje=^X$DkQgVr&0QCLyc
zwmlRq4>z5RU(s4Ho~ViT>-$-Zns&ZlpX)sfh}yP}k1se=g%SDnY94>1{Z2ev+qjp}
z!=meT!=AovhgdPcOeo#Nj=L-tbPL<>doRDA&~`?z`>@n}8Uuo}IyVLJPjzmJ?}bM-
zW1T_{^gaK$6s&HFpVvjH!#YV~FOml@I>;wKKn=Hb4i>qV3bahgmyBGILN~>A`fe^B
zW7f(@+^VwRu3WNhJ!OQzkuDtl#V!*aS@BZ*-k0uAsGRmcQWnKJ+g>hM^UvJk#+8I%
zBO_dw-b*8o^?ad`$5O5n?-Pejv|4(;cFMwO<-N6Q-l-eCvbOSxsBB$o8@5o|rj@d_
z<DR(i(7M!fwWGJywrx8h-u5`dgxXBg7!m+R4LkL~L8lT|7|wwz7v7ouJ+BB6H}6BH
zYSuMU+xsxPU(EhfHcee5ab%OJjkONmVBhy@M{lm%ZCkGDZ{@3=aOWwmY7VsKtd^;~
zIeFo<p}neExs8>~Pp_+8^M>nqZ{28I*b6#qH@~DHLh8|i4rDJuG5MZm>qZl9AeZ^Y
zx{jxt4kIrm*S4~3*v3QMI{aAI_Oy}oe$9o;vybsk>c(iis_ER?OmYl)>MZxao;MR$
z)C}!CT(=7ra2r%Yn0IsMVLlNQZ4fV*z*n-+d5O=8yw2G>>|Qsh!S1c*!nQnr@3~9m
z@6kip5eZ`a`nKOLw^*-k)hl^9QVrMGO@Wcjv5!rBBCBDM#^|sxtd*4isQ{ek3k}W|
zzb@XQ-aD+xq$HO)A~aX{y(rFM!Nik>n*4{~-=%<g%LT+j148xEy{qiTuWluIVR4bK
zztieREqN!=)KfmV_sB(Vax!1cXGKWO%2r#&5+B_-{CKqsl59NTbq(NK51klISD$@a
zggj&27z(*b=*IPXx;*gdQflUqPZt`P;SYxk`lvw=*pk~W1MPAXU5YO|U~udERZTr|
z1~%}Z-Ar{Wzu0<+C{5P(>P<bG-E8)-JG&lF45w?c95Nr#2HVe_AUmPHVhQ964GN!2
zI7}Pm%=t21(Z|4maTS(lQpiYQdWot15$;mrF0<UF_iB5$#a%YK%Nuq9kUOu8%uDQ)
z+sYkG;l01GPmWDsMG|<#ee`#$3kKbz^xt`JI`D4y*2-VOpsclq%I$lq986#iS!OEw
zH4=uqTxtU20U6I+oKUK%f(O|H5wO~o4<pe`L2V;WG<W|bdu!Kf+xf$&HJLf=2dAgc
z4>#0}`^V)v>z)ne^q5iJS`eDdjM3}$Wp(5J9nTyrX;qOGvJv3X7$Gz42V&{fDxRL+
zU7AeK=q^sC4<kHzzK-~wp-t^z3^%kjA#3V8K`T>8sH95#Q?1c&B0TRl=U+QPiIT`|
zh$%)RE;>`gzXnY#yOy1E^VxJwSGfjLg1(MSy2=OZbi8?qLF`mPH1ZbIODU$FthXzP
z1422Tr*R0uF>^_BuC$XSAMvSNQ*fy0=rw{w?uY_J^rNh<a*euOZu!+BShZDc!sTWN
z^`=^s3iKIe6Fzz7CPS>l99-I9ug^!c?ok?B#267j?1UFI$QFGBm!wxlZmC^eZ`E+8
z-5+xHkF+`ZtMSFN)e<S{q!z{(saZ=e+ye{E0#h~`ir@F|+OF4j;rf<ms=9d1zuCCx
z6Ge5Y*K42pAo~+R2tFlQN@cT_J)VX44LmOlAzWkkE><)-om^i!IX!KC@#*QI>$MJ2
zdbL=p3eBw<7>Ca$lA-sUD@-Ul(9t;?(Q0?H+}kaAS#&toFDEbb^D4E1eYV#6MWzbz
zBItw{F^^@EI2p8U{&&Q?>!nEhf2lwFdq(;mi|nD0{R_HIVkfaxTgEQ<;PDPAR094z
z4K<mIs!m?mG>-WUW&qY(qUgG0>J6qc<{YC<wvJ?1Nn-yG1@}DegV#h(gUzo7U2hCY
zW{&wmEgL6PzRS*27v7cqm)em}1RJlc)0A{4#%=CJg5e(PzamkQxc0-p02J3s{Z@rV
zmLpOlOOcdOu<Qjh3U~Pl(0iR|@RhnJl&cACD&>M>E^gej8?M0~y;W?~SO+M3*0OOH
z+lO43%^sz;5QQxQY~Djsm{|UGJ&ltVPTL1`AacyFFRx3z0bc0eoCN;L+~e6eCEh-i
z!omq#+N9QKBH%qjbogcepe}8lmCPL5JmEkEfJf}j0UQ_Jo_*B1&ul$D({m`1h#bt?
z3q_axA5ip?&&dEgNf}Z3{4S7nmygZlQIzl~a;S291hUaab__~9NOjx9ZlvJzmcZ*O
zxLi6cdnbYz1{t$K6WwLM#ddeJySvU^4zUYH?9GKaBli6p%Z;+d;pXe?lR>WR)<t%=
z$z9GJhh_T&aS+F9ee7H4?Az@?f_=Nj@Oirv6OwJ6xOkUDq2Nzaj-6gsK^?D^<Y#sK
znD5vK_Pw#TEO9A!QVKbRCeyE*JM4wr9G;*g<k^@<<7`TkY>GS=yo7+FZjj1&E!^!-
zPKjVjm`4y%aA90@R_@(u%1W25)fMJ5u;)Fb-dF&Ap}j90vt?qhw|XqnSTVh_QL0-D
zn*LyusVv+QKT%nZJ)Sj3UFf7_QhQv(aU2qF8*^Iq6m5|vZ>2!?J-I`f*cCf(<CDIP
za<xH2^6NS}XK@<|^}dJ+Or#m{tEetKByBW3&|MZB2ThOSdEt0BQ#0lsN6$gdU+D&z
zAmvuhXz^vI?$fc4U3HXmSF~-W)UP3sJ!%(U%mWum*iDE0uyq<cL(x}e&&GAn*#&t_
z%qCl1PBh3ce4FMQriwDLslz@^dyFlsZ~nIsP|JNgEoeloeJ2)tN#&UD%#1vOSAR(e
z9@}7OMZE0<dlxywPMX9I9Bpz;3P)no7HNr&t1)t8-_yQsE3_|B<`Wv0j^q2y`jHvG
zjESmk<?QL#{5N?hEt)wq3Q5I$0ej<i5blh(-J=gEycQa43z70|>pf$dHvsJ|N`iHh
z+X|?I!p>_QBPK+)YLU%6aK`~Yt;nt3tYP(LX8cR(*nLlEmLlHq%wSqejbL)D=A|v}
z1f`eCbyFOqhrJYJcmoUHA&gM`%1Kt-Pbdp4d^7RBav|j_=54mDujZw4xsd06oiIcR
z5I$J0^Gj2@Lakd>HN+9<Q`{%O-ymx4AdorJDldrMS6lCovJ`vGv8zMofl;sPe3St+
zt&2g-0qkPhq?z((<5&L5n%%5s>gBMt>Yi=x7N_im%d-qp2LM+Dqecq3-ekV!22W8l
z_C11jkA0qe5cDY%kY2Kz_>{*%_NwN+#MDczz_16in<R}m6NX!uk9PDfT=NBLMomAh
z_o>a<?@DcFVvo)CngQ-%4*c|?!c}S5yhU2U#$Py%>YrgX0?WX`(Vdbz383$rX<Yyc
zUUWul$9uESw88(8B651#8ij7254v7wPs0124pu&>Q9ux{c|OQYKbp|Z^e)<qa${}6
z!gn9TWG;3~_HBF={~^K6$CQclym@%2QmM*ogp5qdhRf8qC}5L`(sHidya~;1%8tRb
zW_oEbKLR(z!4j@Vp3UiNko}6au{vBh9d-0^-Sp360`AZVVRe@LIF0I&;t!iKNU*>2
zMJjTlbd?HYQ|6CGDT`{3&S&9Wo?4n7`Q1k$@YBto3Q}<tS*>aV(DnK#{yTX6REXjM
zO>NI!FRY}x!|b_8#FHwyRwdiE?%q@(Y1^PX49FI{`W3AhkWSstd#Ia>vLY_s)vL9s
zzd)_!C{aL!o;wRG@411GPJU)z>XvYtYmAVEN4@6^3ovTV3}yn&&@;P56EQ@H1&{vu
z=&XU&51epRhuML>-6ifW#qLt%F5h&QuZ)E#FXimMcQgz09crTUuYN66xU=)GBF=M@
zQr7@qkm{G)07YBW9~6mfGa;x;AkU<~X$s}RrfT)=R_htx@>>jL^Cr;X9;<JW!#SO8
z)qU<{tNh%^e_o8{Mh^W%Zf>M$7j~Un)$?<;jU)g?&(-5kj(14U+nlsCXM<>Cd?n6D
zb+|4-mT=IQ*t&~3Aas_T5u=DwG+sk6nM3cmlB*VFb!l_Eo)HU2umd1`ufzflUzDTz
zzIr@U%}57Hu}+s~eV6y0=9bB8P=oS_dY===8_{zUdGQV%hn1PMdi-t|vv(SbKG3#q
zaENx<zMMI2hR{773#W}a6|?z{xfEc<2G*vbXd1LjCz)J5{x2~ZLod};rFyDeh19Ic
z!&9@LmUiJ~AT{28t?(ViYItgWDRzKZ)jXqXfE_+~xC`1)wYhGQ9+7!;(_oZJP+!=+
z)y0-+Kj%V0Yw>`P+>kSMs3yk%Q6_0W2FMAUo4$3Fv*}xwU3C{sKa93+csp(KBZymH
za}y2*F_x@=4f}!-h23_-hv|{Co)<4a)imzERPrHx0f#N3QDY!J<PI#4{DkU-g-XL|
z2j|&(&m4U^8q9j>Q&8F1(~4?&W3IDMzMB?SE2IDB!<NHMgTj@Ya@NYY0B>c*;KP+N
zm-8wQHFaHx5t|2zqNV>`GRJ>4-u_dx>-ffI((jx>ZSQQ_-7SZiFTJ~S(iM`SP#eH$
z;Kq}J8?ZGnTZ9V_L$zu09HllR=#$SkOm?H~O$70LI6T8233xp+)w*@pi@q6O)`=^+
zE1UBRUzw4Qv>!#BbLimsvQ^jxo<Gd<__ASp*~Yeas!-e3Q`nAIzbdgXkN5)|gVEg>
z)cVgH$UdpvPR*DmNUPblho&s|)Is`6#(jAohzt$XdZy%?&tkURM+wL|_}l_ME;X=Z
z7ESmNE%{jml)Z0#AC{&R(qv9S)NuIC%gsc*JJ&AL4+U4x*-*huKtFsP?C@14eBrY4
zC%!D!)Op;X@kO(C*Fhzv^rmci^RD4Z^Hkr8*ynj!6#nto+j_&s`~TG&o_62Ad&61h
zzuy}cJ;$FnpW)B0m+<VUmD_v6-`xK1-c9k+*jL-i2f2x-<DcK&n~vSQ{5W(0j;nmh
z@2QKalI)YmQl>Qa{ao3&mAxciws|V$p7P}`$d&siN7AQbQwz$`p^_UYw<7k-2aX%W
zCKORmSksr{x%`5s&crXk_ny$|A9U)$%{=&`fABjVWHsF$j{FqAI!zd76BUI$ag-pb
zl2DMqE_wi!R@kNOouRX9gQ8V+=>s;@rDtp?u1lZ4p|mdDw4tnS_yHU1hR@hoTsQpu
zjiq(Nn>Lo!r4HCsmzuGuxGr`6rqa4p)26auU$}9_(142O+#R&796I-as5*Vm2d)Hr
zg}qaB`D<cHcwowM5m*-L{|9{gQ~&;gZ-2qJ|Nji1zW<2uiTn}%@`yWm0Iby(JzCrL
zSJG&n;s0j`sq>rH4TQG{X@4=KmDLUz#*q-i3|ru+ZG}TvC~PGRTZQ=gAK<A3o)>}T
zZ~Xt#M}}vAb*;AY(Fj2WApIi;l1w%-*Hbk66yq&pH3O|SJ#;NjzOh*RX2#}<-?hCz
zXzt#`Kx@-AYZ*t}{9tWr#Pj<6@;68;=CEAb$~>WuT!)o9Ra&e1lRMN82m9)O<Evk}
zTwnH#@GTSv@!$9smKP<*y)gTq!J3fMZ=dhqim4j=lW)Z2MLkIv41uegZGMNw7hORs
z>R;{Vze_c?JxwTZD51iq)UV>gr!~(P`^TkyAL9jC>9W3$Q3OwMrq0kHbLP<Gxaa3y
z+q3V04N=B=^ol4Ec;=u7{opSI-HSc5uC;BiZKorHFB;tQRbPAU5a6dDzB>Yr9!1@$
z9io2pdu@-F4<^Jv`_Db2`axObtFzu1q(ltzY@9>5!7DGz267daA7?z(vxlp3qhS^X
znDdTUsGzG>M<4qzYbv(1T(+T1wgK1m>~e-@%@gIIC}h=C8DBPNAt9feAKq?WrMc2j
zNE5Ocr)nu)f7aEc^YC!?2p=7TlD#&_%%*~I$2b2mNFCgBM-Kb~d){Ybf7kAzYPVGF
z?iZx-pAyy*Bt{(v>BD^H|GF=zA+^9}-N!c*t2?-7MbyIov420*@)T=aMr*+Sec74~
zdsxBpk@~0nl#9S`Lioi`&>xTAuQ>-$U91J^bQ6N&)5zBFtKM8j?@DVJnPPD9l)eEA
z-s3j(&lI4ID%~PNRAb8%%fnhA%r<El0E*bc|M=#sgrf8S^#20zQPcU*3iv7_`0CUa
z&;pHMtA#}(2+9mU00}1$NE3@1n~6qKG*GD*Bo#nXwLE;_<KQYIFscQ{Z35$_h*Iv_
zmtMyKPpRM`G^0NrU!N2_AWE=QIJR)`s7%{KrOU(5sii-tr82d|s-J^<9#IQ@>W|Nt
zBBG5zZQz~hk8h({ZA{7cxk|&SdIn}Rnh&H!XfQ$mk&hTL60-QVJT(x}=t#m8POI7@
zF1Aot5Q9cnF3~SXLn20}Mj|3<$2ZRdVoUkxi=Mvl&pHj*Ax3|BJzlVb7(g|8Rp;r&
zqa?Hfs46iFM9m58Xn<gF4bDtb|00|%>w~XZlLv0^GyU3w1tP>0D~;Z@x3F(>zb~h`
zrMc$rRdaXu>)#C81J3^ZI8E(UOD~L%I++^g23cVbNq%}=<{E|~<unXL78{dT<@xdF
zXPb(u5G3<+Y<Z&~x!&WwZ~xB)o(jQJE?$A?PEVbt1~uo|bo37JoO?!rCNb3oH3Se~
zltcZB<zblv<A#F(<4S>1B@Xzt!1!g~_M2#*u1K_LAL6<8zpnNJQI_5%j1B9>au7Sm
zs{Dc%O?yNM(Z;kDDg%xO%5?Jzq!_^5S)0IS3gk+`_PrhCX_oLa0KE)9Kx^G*Y!9(q
zO7@Q014%U1XJLrxist0B$Gih0{FwF_2tUWtKFro%UmRi#q4w!=0s^}BbK2sQs`-z?
zylD#-2p-%s5dGux+a$LG>Wf)w1N7TM^@M4QhDci&;(;sbwjtig1okcUz-x;}(V<20
zl2$c@!Z1aF!mx-IxbO<2c@!jRC{!4&0G(~&NneH0mw#%39rX9t7vlswpjcW}0{)Bu
zg@L^E=9$);_jeBfXM{ezwzy9?yQiOiofQn+9;{H%UZSAAoVKW5=w-w=*RJMn%r$qv
zn)?%7RZYdrI)S(1?C-w!?|$9y`~LFG4)6QmCqCb1wEM&p)IbBG9dF+PNzx@(->FH5
zc*mbaAh3g=2~uKeCunTV6Z(@x^nj>T9~(`}!e1Qk&QdknqbpW5H4tm~MDw2a*oZ$f
z@-tMtV6aolnb<Kml+&r9oO9%(1I1y{vwbpj2^O>f1EqW(4&jr?tbli762?qEy4<Rg
z@Q;6!`#2MOWT{$eA7dplu_4XwwqI4z2Lo0YzP=yqc&DNceegN!Watkj@YFJgjUm!7
z_zsIS>=vZG^G2ZI`9>FL_{Z-QXt-|Nd%Y`S>-fze-WLiNP<_wM#@I%0XY#>s;d(w>
z-?`^ty4g=YO)E~tedTPOUm1-iLYTAR?Xf}n5_Ijh_<|?(oV_d-tk93j=Yq=BI=ZE6
z3+FMiKy&EcI*w`a482Sp<HLE(W0!_6p5|hoNPbWi92%fpxUNi8fNv1aZyk0@Qf20J
zKK|1Tp7sor%0+`uX1Zdna()-DvBE&bLAmKht}TG|a(sa$?ZHh5Oh9Z|VNo2!%I&qO
zjk(Os?LiU2X({_k!qbfQ{92mG0(*v|NqO+I&ydCe+KZ}!B62CXFvBuj48GXT!_MiL
zAa!PSdgPmMWstcnL7_c^)M*Lvkkdg5smz@OVcsP8KdOruOS)uFU106gfwQ<L;7Rgf
zy%<@iODd>Nm;BT!Y)LS2M}<@RRLJ?iuENyI*(D0TFkg3%U59z={-4V%$~EhJU5KVV
z{&g1|<>%9vmeT}kAYAJTO|?Sd<T7~k8N#2&KYjQ!KL59(Xg`}FD*;g!P32t=Fpd}#
z{z%bNM7vy+Lvf!2Sud<`$1$--)trwd)02yn{Md~j)#Us%btluiC(~yTnmLCT>*jtw
z$*lE)YO1Uow>rMyNVS`e&3eGl_H{0`m78?f<>u#WySAN}9Q|yvh$J8d_91DN=<78w
zJp`|j>Cy&Snd^;vCc`8bqKGC{b33Re9UF_V1({0|Co?<V#Pfuni#lfoX@u)i*zAmo
zWM=4oNzMXV@FQO8INt>sm8yJ>eR86+#YS(-9hfFyv<*!JOj93V(k0j5uMQpiGcG;X
zj_nM;K%Qk!np_cf{AYO3(?O@7vN9zP>VjG^N%7%RI%@i}PangD-!!7nbC*l^hMvbt
z*XUnAdQNuqER&6M@lBBp#)qCmco%PfMcqqvlTtvk1Js11Q1j4pD8u5HpXjYN9Wz5u
zE(Bx_L<ugHk5Z)R^FexYg2%}3r3oDYb$5jFpmJ?`)V;sOJiO36I)`tNMX$Vl=R?7z
z5Gx@T@H62=%}THCSu4)1$_0@NN-^wbM7uG2p^UvVEHGru7C{w4kEN+lUyHNjRT9Kj
z(U&Nz2HwauoQ{3=K4ZItE>S^ecz~h+#&FM(;QHDK*8|}D8K&NlpDDt(i@ytonc%w_
zE;C<fDixm1q~Jv3%k;57`Hk4}k^~9%hw?NbC<TQ#X3-eQuSEoGXR<(6=?O5?Uq!Tf
zh(>QOL`$-$V7P!tpF=x&s+<y0C0$ZUgTO;$llnL26BHsptFW<OOt8jK^3*#C72XwJ
zq?|QwqyWmDqur!<e3Pub{3K$rjXovs0Po?VD8zq`(JbBeG?d_vZg)<^P3n8<B>3p*
z*_X{_(2Ys3xjvnt{AJlPzHY!N+6&sB76dC#ngVetBSm}>NIfYM_8MxGpnsBQu9v8c
zmRt%3K0-f(4y*}qdhd9;Nh)3J+`kx4By~Yr+Iy_8wZ++2><6X8t0<e*8Y<({N%Tsn
znCwwOh~`32a4ER3^hAYYKn<c8d6N{(C+-_AWMRJdYjD9V?6GP`76wzaD9%muXM^;a
zxjv?k{gMhA)11_wj*-8-vtB-XJiR0(;53Y0HwcF+CjsjoG(az~fgCHm-~|ywTKZ}I
zsC>4+4?v!YSbN;Yx!-jHE!wDeW_9$aG<^Id=MKQ2xB^feHF3c1L8_jc#^NB&ZE|<A
zCpTX74XAoNR1KhN!ckQe8_>TZA+%=^G`jmwMx$GGL609}R`v+7T|#-W805D;WBMd}
zw^_|K*%44HTsy<`=ftm?(To5N?`*Qif3~-|euO`9kB9FCvG-(Z&(v)0Pd|OzDOBxX
zKg*D7>ypgpurc9TS~dr^;1>L_^x5G1`DTJjUNxW$q*?!(*AcUBGg6~Poqk}gRyoX}
zJPMEm^&<NR2X7<ck!hVYn`m&N3WtAIFvB<8ve~Bcb9IoK8nBT<xmT{VAAKA?@D;;A
zMJZi97);SiIs*eAmOEb*E`dTFtLBUb|1aNd_+PIJniAGFmw?i3Iz&_?N73NkO_5i1
z`QzNpO$3~FlM*v<nlJ|mr;QaDML&Ack%@)J><9G&nnq(gF7RN2s;JtPi7KRFP|tl~
z+~Cd8LO=S^BjNntD(Pbv!|U12NTBmmMS^N0LFSyHLHYt|&$%_w121JFIh&lfhZwvk
zIUM&=e8F4#Au(8^1zcV4;|lA{!+3|CJ(-?L0OslD7=F#{>mzy>(w87jf7So<TXL%Z
z@QAc%{sg@<6A;)B$UH@4MuwuXKV%+W4Vg(qmG6E5m>efy+l~ju__Aa6nYX=_Z{v%8
zpqjL@V1Mfc2W5WDdI1-3GNX6sR|iE~Y;2{q0;a1_-r+01_*XAR6vTT!4^&}fGRKgc
ziS<u^CMh$JnZ9qY4&ZG2gW6j*{RBk#oFGU|o?@mGh6p?br{ux6y%JIzdbDW#fW4BL
zk)OZ!s6mtXJ$z#7g*J9{1>G4rx)VElhEnDQ=6PZleIt14RTihc@wKA{of2O*WB($3
zu|F$Wi{_T`;QZZ-CRYC~enl(aom~B9{ECYu^IDd>_=~EFc;#M$+a7Ff-F9Mp!MQxi
z2K)&hZ7`lc=1X?D&)qF^mxJ8HvJ&Ls7tUk$<E>zdWME%p;N81S242&}jGhDm-k(yz
z8kE^D1zH=%?}53xba_91we^5~Vn&`{$8bK0+J*=L6p!S_4E_R3U?v@O!7q%sOow*o
z=IPf3MZ|B0jR`98oXj#aPE=Ar0wquu&OXX1=yI8vj63GmNrkcV<xY=GtwJi$H8B74
zIw^CJ?G%%`05*`C!4jMeM91F!2jODEtz43s1nV<8XYXG-j%3sKV2&CZEoJS%L=?Q!
zhGJ@1B^MaSw`dTIGxMB+%uq3SzJRHmiB&dexP!`SHE2*)0`>8xmWfn^%llNdl^cS}
zO{C`so5?HOhMYbdWJVmF9(CkRUfy14-ZzrBWa<Uh6eM+&+>_Z;P&~-i-NztXuY2|2
zJ4atLHC06z#ETKNwHF@~&~l)b-qpA#(g-gx`b?&lD;qq!Mf~-x^Ng|n>MoDF%L;dS
zV0Rd6TQn3iJ=TvOPImfhru0{XVw??Pf<{RzHlTR-@Ln5<$)`q4A&0rZN{7O20&^1%
z_&p@ysL1vwK$hmN>R?>0tX9Ulq`kl=axUfym+=NS`y5DOAxrf!+NS}<J`-2{Wi5qF
zZST21$ee`rUK?-w2Al_h59}Skdozo&-!GbbHt)9EyHnh|qqmPQX+FtvWP(a|HChv2
zaESO7iUUMnKQ{uxoBwP2v~Llj9^&!&v@^{G)0t{j21~*2yo57Hj=58EsSKk{+uzP_
z53|@RbV2jEbAn7jFS_DwPugR+5=}O^xApy!=Fd5N%SvfHWMRi%1|YIp8XJu3x)|Wi
zwd@;q@;xXTum|p2C|2F`plBBKyroC=BH|Q1NN9M7tkaw9DPp4~(~XTrxy#<}a=Bd?
z>py!|ZrI=R&2l=dVgKL1WuLrpu3gS7hSz@9ht~$MmnCle0tyw@aPvPVpG4k(tzIe)
zv_?_%@GbMny_N9nC+GEcJqHTd(xSjYIU2Dn$c#$vQO1h{ppPOnQkY@o3YYrD=TSsK
z*@ye9icD<(-SvT*H)<PI&Ck@QZ$CWXr&o%t94gUVhnkPYh~@eCB0D;ZnyPw62?7ru
z)rZU9bPfUN7uXK=oOd?oj35P56~K@~!5h|?A8pc23y3I2QG|D}s_7cFgZ$b=q=MOq
zQ35dvuo1Wn>9avI{$Bdnk4brs+tf5U_dGX5y!hvR-9JG`m9`K>5}dD+T+PmK%aL+=
zyETZ`%wlQ;*p^vO$CgPO@NsGQ+WR?a(4>*rE^2OMv6_3jd7nr{I*i~|SGy3qe$mYL
zX{P5@|I+wYB~Fm<2Cl*jdptt3X&BgzjcmF}W5qMdJOdD)Q)xf_AwWDA!T+F;F66sv
zX|{RnX|UxdgXvpDkAAfoL8!7%ZH1G<o)$Z6Cfq-U+&r7}`}^tVwNe=U=AbNCv!jvz
zrHaZ(yYQ5W1#?rCSnDVIS!>CdGuI$TlQ5vAKHo9=<k5s%-8s8by$cw&5t&g0vqCs)
z5XX5Qfj!*J6&$eSb~qqi(xD67IaEU?)vRxd!{2`0bj2s@?NZL+bJ;zhr&%WVN8|?E
z0L}+H#+!d5Vd!_hy9nr={S5J3sRs)jyWv5+{bUoMDW!}E%NYr>PDT&lSVXZN32i}2
z&W-p*VFh$Nx8uk3GEVn%{uJ|5&9nsu*cy?uv)Q-d8DU*Ney<<ETrI=|;=TmPn_H`*
zH9`6^@<mQ6RUEmJl{MSr3-n<vhI7GV{80LGP`NS}09;v{8D<rMI}LMR$6*jrXk02|
zI<4R+rS#h@(_ZOOfA}dv^+Gcnp^86JxJ^!ey-KJ@B{ZNCSVLhY!lOy@?0JFcMPWR!
zQKB9dEvfjOXgP9UF4;23<Q?t8Laq%jIPSx+_VY&FN$zs|V2J!_B-GKjAAcX={13QE
z?P3q=mD$<~O4QvJb+3`!@FRmt?3j-pfxy(}TsVG%j98;_<`xUx;f)fXH|m<JHy6yG
zLNNbyMqQt;;5@pz%GF6N$J#2yr$3=pz8!C=#b{C{B4DF-d$`mVPG1hoB$=kz{BqFM
zdm_6(oR%5CSM9j&xt|xgA=UUoi*wx3&gq3*8i*<?At#yN&^fI1E){GityaXE87wrr
zA;ss91j||F*s^UUnUd-As)F>~9oSRmaOdoq8lE2c%WLI`URI2j-GvxWanBMTub4od
zrQ)CML3)>D`fEr_XY(xU;g!Nh-yRON9%7j+Mhu5SZP-eN@pIm-&-E}7^$_->PpgGY
zMZmm!5>2N%7E$j=Mu}!yokOT?2O~esb5ie_#z|Y;Wuv>i(fe+1_K%UH(T|_xyQ3e<
z#ZR~c`U61FpxEYxh!!w!%u<U(p@mio+f7=!0f&na!TFjHty(y2zo0ka7O2^fNcFTm
zRE}o~{k~zbV5upP#|i@K@44GIqnJZp4J0H^(U-<1=6OZW!rz@?{VP+Cj&^#mUw>|p
zs@g&S*Bj@sp@iuOm;tEP_$}t(7%A_{Zc#iMfx}`(7BZ|?i`)3byAc8EtQ_@(fSiPY
zoW>-}wq)g#tc068H<{j_1<2wL_9$^%0pPkM*{EbQXB2El3^tyYIR?jP<=i@{KG<6f
zojL|ik%^H84-c(!vOq&l7O)~t7J#!%zs+{yJk8gpV%Zx^61VjHme!N$uM`V{MuVW0
zHv=}#7Qj-|ecSzmoD_PUYqvbtuH;7?iWT!JZKeoS4T%$wcnezqgPsQMMKDv_4>acA
zhUZT;l6}=(&U2Tu{sRFgnU3p6zq91;&U;g!izQpck}Xnkk`2R%V!zr<Qp<kXtSj|W
z_6_wD$g68JEk&l%R^+}QJrVLv3EFyR#53!}9OCA5Jq+B4o=a4qli~}WH}4p4N#8lq
zn^Kl6)SJoCD}o}1Sh#IT<=vavGfyBIl;JZG{qb%mOr?RJOzY>>sHW%7hFZ=PwY@(h
z-oA?g6D?ztufPgkE@)@;!LyQ;u?70MpiAbowIGu%$YgK4U7W_~Ru%{AbMCDeA$E#8
zM6vayhDW!mLgPmhcSzU5nx<CXK|S-m7}kiqGbI_07t<s6Q$^6VGz>Q8ebW<isLiW|
zrV(0&Ey$^b@QS2{r6JT6e%taCZHxkQV?V7BoD7f9UiK^lI=12#S<aG`c2WPxFj)$G
z(u%j*bs*Tyu7k|1Z9A)$@!d9Lm&(0`QVsG2>eZcu!SZ*D@&bk=9%ZzOS+E>usgQ9B
zl{N^<`s}UdCij8HALRj5J7O{&z&-?4Go!YAun&;;8B;xTPr<+l2827>JDXV+>o_}m
zgxR=>yonZv8O|c+GInE?+iGErLOHJ-NF1L0a;AZ39ENo!gMZ(O)Gf++&I9-tvo1$>
zR!H#5C3xj(4OR{i_bDJ{RPW8=t>>E#;2HM`_{Fre2HtR0ISQcymKqW9Q0!TKU}|mX
zJ2@V5HlV8K&t92;w&>e%f?!lID{^u3`XSRkrcvBt=lR~u3NQ48Q?j?a{Z=ym3JSGK
zCBE$JOV}^4qk^I<CZZWK3d3MTwGBkJ*SM<NCRwM}Gweg}T|h4`A$N-)^B$^SLFU2w
zK@VDjbdjRa=4w~6i{-jph-pnwWQh%o5fEYA&wPS|(F+Xb=*4nS!G;m3cLHAzAI3ZW
zE(L_Pxbji`pm>YcO1EvD5nt>j<o26{Nx#ZHUGhV_^~;LW7tO>PHQ>NN5O<Cap}u%~
z1(hY!CAE~T!+~r6w_4V$a<sPef_l0%MM1nPPhrg^ak~a`1L7Uyv;Z?bwZRlviMt`d
zN`A@~o65BB5<biq==+Yx^g@_>xtNMrYQ5lDet?nM%6!tm)3q7-NE_mde@O9UDhdmk
z&wf;;3{bnrPf(A~fga$>!~?_vAbzJw$jH<~qo?8>wFV37oV|rImkDwA!yo#0q9D0)
zrXD@@O0d~hFgM5kJgAfhFu)eo#z%`!P>D>eBJj}~xVcy?T^f%3OKx$jtS<73X3o(L
zUb&12=Sfp=0P5>xL0)0A>{^YL*73tErBvt4y2>t@k;wdSn4CFg*Cgc^-)p4s(}9Ku
zLc!vj((qFi&JZ_97Z|goCMHZ<GD=~@xNR{57veErG(Pf{F*UK8&@VWf2+p_?(G||d
zc4kMRS!}ojlHuOiNjF9!c|lK3B%5m0*izvo>SgM*hIGkdwdGf^+t507+RW^qOjr5y
znjn~7gd>!L`Ez^Y(3JgwZdRVu$lF2L4&A`M-D)DIqz2^MrlaB6AKu`2wj;@hh2XdI
z!fBM>ztIo;J5+Zc@Sn`&!FMeK{x&pVkj{gz7vbl~u*|NvHy->ozL+tKSJUAUDt0w?
zf&KKe<IT=ImHo5zy5v{a2{OO@J3aDhyNy<v)<ez4nVh?xlTghlo|;U@e!Z03nsIBJ
z$_P-}YRMq&^%$p)Kw|W%EQurDd<whX-<8ex{$UaCR_px|&oPrB-cyUL_pIJ*AG2O>
zQ<G-)TwB<6Jq^zxRkP;`takPZ!}W^nSLiz9zS^fkGH>P<>+s0Y!Uow+7jreWJ#orT
z;Z2JdF9{^)3*M9R(D3~&r$um?osRk8kYwdbjy(4x#N_Cee$va_u1FY21ada7TuKqK
zn=VUZ$tp7KjLxeRkU<V{ypr%&D?L(RxMQ_M8@=5q-z&4!WToVvKXD}LRH^jH)pqMw
zV0*?vqEV)2HY79W;>)^?<`~w-+t=|;GJVJgKNDmAHQui9(b!e(c%$vAEp=IilGV~B
z=ca8aS&rD8mrR{xdw-M`XkEY0@o6a6RZTIVn_C`9iN|Qs4jhm^NgKYC7tqLR(HZe8
zuR!zlFeu>Eh0gFN`=c+2F8*j|1W96$rCKEYCj-7?po{*QXCRm}zrTW0IbxuzzGn<{
zsNQy3CnwL8B5Ks`PjZngJfbD#t-Q^?ZT?bTusV4dexTGyPO8^ek!<ex=^yM<ukO-j
zkEhtw*6R4;jZ_1%Ubse(yOU3GMIN$Sw}+N^iutCQ$;{aWG+Wg)4tgc87rh>9BFEv;
zv8%F48j{_yoxQ=wvAlNp_{!^fe0)JYzRKDy6sXpe;iE!tSL<ymhYyAs{qey<k^(KG
z^5HxCf{e#KGNRu0|1L{HKI<$-;HykUnLlciv)QXnfkvA(`)zsBBmeee;Abq@{_8?$
z(-*?SlW+(w&8Zt4f~HgH@Oacxa$M)m)lH$Y-N$s8Mx`hJBaa<ZH}@2_mlC&pd0}4N
zgod5|>PAn)9?~79Zlu&4PmWd}%t?ItwR|gIl*CWb1__=aLAym=CnIF<Es&61Dk0;s
z7yHzt@)eUVDcZRdxpLt*1i>>RqJarlsx#U9VU3-MP<ZnsbD@9cE<d&lp2OP{a`QaH
zr<PkUio>mLkb9vk`>nU}Xg|%~$OHJ>@%cVpffhR-4+Ec@j1VFZIx(Tabe6^?8uC`!
zorOztL$qlcZ!tjAPQkl}lSVkdp&Xqu`#Vlw$~8GoU!rEF1sq?a$>O#HtuBJ1@nuaz
zdK0bNOPY_8KeS-G$R<UTTiqZhMs#ZQzIuy%^$Ps_D(upO%6Fieo_~3un-Cn01!yf9
zM00pIs!|*%TJv*whx!I=iok-j3Oh(y57bIm4_-8%_xwv)c=gm~xfl)l;mgm|xm1Oq
zedL0$R3dv5ln>8L7=`b3my_M)x9)Pwn>&kF*s)=K#!O_9x6I40S9fC~(#Wqic32TR
zhnGd+=YGtx^rdrcU#b<e3s&5h)2ncwOB^Z7L`958$u3Kd9h5E^)FBCrcWg4-7TbC?
za+8VOvcu<VTl#(e93|5wUG47k8{OxRxX)J}QqcOx)cUpl^HQ~r7K+W(=dmmFIezD7
z?emgz-REZ?SMd2reSS{=&o8mhPx7CCAm&SzobNt=YDK~4N9yza`+t6peLmEGew+Ke
z&VBwzJ81)ffZ)Yd`us&s(-0HpfIrkef4I#7Z_$`k$${?kU1k=vK1!co-~aQ+exSb3
z_n#|87vLY@A(%g5eZl9)>GSjYfBtRz{8az>9hBko2KRYySn&Dr`uw2&pTG2dwO(wW
zH_zbHXLvx%Lt_P>vhDDo@U>a}`n}vfef$dbyBR8${Fw(UVlT|~+Yk7`dS=3ns*=>a
zGlruUwf(>a{=q~&_yG^@@DHkZkUhz)(}a8dvjg;OgUokkLbrcbtY_D|XE*t0|N0ou
zCc9^i{@Hpx+bqMDnJ~;hdrZ%6a?dJw7XC#Krnv{Z>cOw{U?>m5(kx>6Ej-dFSim(O
zFVK3{NyIaXgVbS`E|)HO0NKN2>;ncDO=PQ#RIDUJ=hM7zQ-WM(!haSSe!s)pa3T%$
zyb}J3qu6?Gjhf)obu-HOMz(8Qck?)7w&sHvot6_DK!=aq_dC2F_Xy3T2Q{-x-IhI?
zcCpRem+NoQa#@=}J^yf*hog%9wJ-d{_4~x;*$*rsxIM>1ilXo{)RvCD)`~@xwt(7u
zLG8oT5p=bWre`MXuLqF%TjWjl{3HD9Kk3yE`s3?6v<I)8kN9AV_!E2c1h;Wic+yI@
zx~G^eLvGQTQK@3JSHTdyI9>8pHJ@oI1-quS%6W|9vha~AYO{=T3#*rhA^D8*SYHlL
z2a3L{Nc;BxtH6^GJk^4yTDZng(0hL18`;#SIR$iFI-pFb4Z9zKr6>VG1R%y^3K7xf
z5i+DpI!Uu?5N2HXn&Zpf4p+VoGCGU`ecF%D{~q=2fRpNrJx-1!Q$h_D6Qd~Rm~E8o
z^vjLKCW577he$|;uLaZLh*ZgxE2V}%<4QoJ*r_}aC>}qV37_UcxGD~XLT%@miESLr
z2|@SpKw<Vjh6e&@R)ORk*W}^N<n~+qmjWa6-s~3asoTeN>YDLacDUKVz5bc;^xKW4
zN4}o|77cW6v#^Ta$I|AB;i0X=6fE5%xc|r*U!8Si^MzkxVz@b;KCO7(*6+;t?ziLZ
zMSR6Fw+vE%y8vy-IOsf68<crUm9he@m{#djb**?9w1xK{zp+;~<u|e^_;IUMKnZn>
zjWqFu7H4ML7M=SIHE~GbyJ+WSoFCnoAIBS5H(FIxm7_fXMSH6)@_VbfZQ`#A531P+
zfF3jR{0?h=YMeonIjG^K-`t$%CV)|!!qZCG0(h<gnANK<H<Vki>TNQF2X}r&4`5a(
z!$bA=iR=3;k;{zCoJ|>Aua5K0vfxxr7l#v7ZD!GOV{tHVyP{UJ56_P|rn2$ed$T2O
zmy|JIIgEG@{dW7ih8a>Ldp6SeT|@S_#>4dTh)01S0W*H)Soy4k-efZ^B*u?Y{Rj`b
z)kVFKnWUsg80F<m*FzQ$z%oJR^3{^a4U)(W;aKrz`rFhPd5Y?3i^yKBfKRKC!wsGC
zp(?+}5=?Bn%t;OEcRDtjPNBW%xA}xNQNKH0J`$uE>wKFZM=@KQnUQt%;E(DP*%!>V
z#O@vJ`fU%LhR9gr1sWp!;^V>v756;E&Qqp<?KnW~q7_MnLO5FlH1H}?d{wx0;*MN$
zRru-vPsPG(?OUlR9}04#oa;Q3D!(RuRPVF$m^m2DO#z7Qv-c~+LIvx6;{vEaM6U`j
z*h!1_bt_+oy?;kNyx}&Y8pxi+=i45|ZEwPk=Od(0aEcJs;Ka<Pf^1Bt05os|YLrAL
zPtfQB=M;owOuJS|T*)dQ^+1Po$P3LM&k-ABUS<7>qAY5$?V)-Y-54Y(#xP35kWRLT
zuqkuzYT>7pJ-n!vg6!~{dWtD<{T3L3qvADTiF&M=uSg;0^`Wh|+#tm=(0t-Gg34){
zc*i_SF@c47SbT#%$i)8mq|0&(lbr?P1KJ?0<OaqV6mD4SHW_h`L6uc1dWRh^Mz2hX
zO@W8cW~<E?;)`qrC@Z+ys?<_C`G~gLe2U{4wB6<^_HdCf1o4`uf=qJ1BEi(IBY}d<
z)cgscthnmhdScL(oe&hQ<L8i|>+hhA<Yp}ai+5bX2Y)hU3owv5cFNdjoLX}f)oh_K
zozNfR%{N7%Zf+C8ZiQ%XC@wQy))N=v?Ug-kP$Xxek(E(=w7Z~%C?R2~s^vp8Nch{Y
zISXJ!6Pv_4?lZ)T<S5bkW7IXuBi?=>*brZ4oHpft;W$|HI>sjv?AsfR-X8QmG5Xzw
zytTDC3Lsb~%m~=rV-pF~r-c#bMXNshD=z(qdxiccCRian(=VtOCDhsssGo7<4L}Vv
z(TB2F3TXN#WpS%r2P(*B$(Knh`TD&uTX~FrZVr~P)JTfOmlboW(lE~f+3(=ty3o%I
z`MP(Fwc+V+>;grb4v#1r%T6jc92SR{qaoPRX3O6Yig%q~+)p0t^u&JW%d%<!M3$2T
z2<dF1!>I2wf)YKI+G!4)6Olt~U(U^YEmzbvQJXmiis&<TpB&dkn1S@;1uiD4dN62H
z6uwRbsbeCFnG)Q+_bIOgn@H*Q-Wq8=-LtOjVMBLD`f`n`&=wp9i(fhX9x(*oTYbTE
zt5YhAX3$ndi>=O{wc)!}hKo1d<>VJZiH0ft@bQv}*T=_Z{Qk%V`SH8+pBcZeIZE}d
zh~3W1qVV6D&As7O@3XDk3*X_-FOk~t?;IWz-ro41-tfn#@MqIA@Aifh&g1PpTi@#q
zhu;Y&WMb1F^@`=)zvL7Pe0tBQ)3a5xw~l_rcsl&iU$uc;X>;DE|0Mq7%vQWZ&aCbY
zpVgnK1eI3A4gelj%NBV06DcN7e;%2VJx_*jyg=7uk&5io|5=yOcL=BHS8M?+Acs9A
zxxoXGNEU}bUGcVw3E0)*xD5IKDY-_7Uf8>;&%3s+@*p+L6Io7$R8aW*0j{H{1XChv
zNAtwtQ~`E=1lYj#N*l552xB#xyI4$D6{K0#$6uU;aZffiDInkUP1gJYZ9Qz+$n{bt
z2sbv3wO5~Hl*Zb~agR3dn@)^LPaeaxsEr5`!k~joBLe<^!*yl0=dJLh)rw7;88jnA
z<2}D&w^#DAq=_^?!%ReJ_$_9z`<2Unolb^dexB}*>et=A<JI{5`L4f+&G|?SGy$-)
z%Vkq95pkxVxj2c`Z=93EHE+;jAY5e{^ozcmGDEDwt$wel3P(ZE25G&@ZIN@_sz&L5
z0=lr-Pvvmib>{c$fcFc)t4%E!Kph|NxI}ks<8eX07kPfd%U$ax=PNYVGw)5O7;iUa
z8D#tw2dC4TQvwF7AZ)OKd2HJ@IG*{b-HmLyLc^j_m*|3#=%};DQ=xcmY0i$0)kE3Q
zKiJz3v!jLPlO>KAL9AwG>c3^m<Uncp!<E-K<6rhEuUjPml7iAOcKwc?aog6S`1~Vi
zeZ{0ABrrM(_X(vCXD(r>Q}5vT6}uXkY}~M&x><y?y)M;NyLoLbJ2%v}tsh)lwAxZ^
z*Q;fS0%e+{FQ<v1raoCaX(9Q{#Q&&(n<SQ>c!!{Nq>lEB6}8VL9OPI9d4-Q2RBD@|
zv~mujRWYm^pG^xz@4JaJNwzWuIuvtuTAl35wi<w1Q8TWW`l4O=nYuoPGRE`3(CuOH
zSo-d6|56COm8T4ioWHN%-tw6znDJwRl(dZJTPQ0(MVOXUg9Jt%;k@<ET$f`E8f>UF
zGgq0|H)G2V&^JKW$s5yG!boZOiSgW0ds#p;;TB(!HDfIx9+3~hybUc&d_f5<Bf}1>
zKvQn^Ff883)doqtdrsAS)b1w`jBIWMQQ)u#Y0vWW9+D(rI=iwD$sGVO>v^DmzIe#b
zB-Lr$p@V)k?%3h;bgcSv$wf(}E(2H6fAG@35?qZ<8fNV5>m`2Z6D5fB>%ly7CVMZR
zJDlmbhvu4$KFlS17FDu*>FMn0syjWh+r3+*cgOQ6++1O{xS`T6S$Fq}yPSrZ%r47~
zS@QbC{C8XB-S%dq^x;hD!<l0Jh2Tj_P#WZShAYfL+g3D)jv@j@Cl~}HkJLpP#CR4S
zYcZt`zqG0bC=BD8+Vp9EkvKU=-h7fM!HNmy@JO4)wxE{y)mRlqN@(&gFp-k*G$<>t
z!<Zdyon+ta_<{oj7m1*$4Y@>YPOKyE+9wDgn@l!4k#^GTS))^cqMK);n;XeTkL^Fl
znBV|iAfs4I|9tVNhE5)d8M<}Nf4;L1?ll1t3x328+#%Ehv@nky-W`jS+%{W~j{FIi
z>?{~x8JpQ}O9Ij*zj5z=rg!J?D6ILU@y3KTaKjcH-kpr+u9Kc@dlNdIFAbnS@Ppyn
z^TXLHp*?NPqI|;cMjm0!jXFpd4UjAoD&5bbSbFG3ADInkQ5bLBBa~;(*+Zu!VF}>T
zMQ4fn=opwcVm+s}jFJ1WVZ?c8s66MD>qe9ow^oF=8k5_wUBOS-5a!c@8q;N{F;cUn
zlQi6V&=^3z0J{fuEV4Sb1eKcwi69;OWRSVIH|TnsRhi_su8_4*;>IBcvW9mNTSg0!
z3)L;lWgZO3v5nSsKA0@xUa7B2o^5g?$*S<j#s6_xBYFO6gr8f)&u3n0{9L0;#IW$;
zYJ*$!wQ@UulaB4>Y8d=qYe4ha>;qC}ES}3G$Td-*+}^oFFpXNzCHol6s7&MRa(=+h
z@49!d>D?VX3cokTICr?a%w7!xpPFajygtj+5Hqvn#hc_4%zM+gHg&txW*L8t2rU<{
zAAe3ZR|1bm=LujjKO}N6Ab+-P-6Ou}CJ6;xm%y;jG{f2mww(%5><&n0%5aM7?hqZ|
zI>5<$8Q4(o#z|p@YkeF9HjQE+j=h)K$I`OAaQrJ1Zy%lHO*9{ATmci4&5WwnD9^0+
zBsS5O4Y%?zxc9{xR5YR0ABz>{u!G3-AQSsidE~Ykt1=)APrrIcx6Kr`lT9V;?Pkd6
z>v^H55rh0<fXvX{)josMC*q53lNG~`_qDzAbKxLGC7q8RpZ{x<QN%O8Y%ivO@DzW*
z6LM0E?x#WWwI|wew&&<18*i}`d&Jm@y^l=ndgCB1xEZ~=F4I5?)<0@D|1~-K_2lSx
zg55UPWhQa{>e?irv!y|I?;{j$dzY=^U+8_btLGp#Kd9ZjIyw5m%ojIrexd9AgW6s#
z3P!I9bjdM&l(!P)k$TT%z37xVl@!_2dV|eRX)}56+<3FHK?U$<Okd4=NSup5voZTG
zX>*c+QV*JjmqC(r>7RbDc0VKIwAMck{o@@1^Zi>OKWCO{hfnD8zgFJwJm-FuqY&1~
zH#xW5#CMvz+~+Q*xXbSzLzq89smL1jn=gycKTl-tx4)1Lt=t$IJ7wH&?!3jREG>Py
z#%D4IsL1j#<)=xiog_$WzYc~lmbT%)u{)*Vr15*VZJv}^IDT)b`v%PrrJ&SS)n#uJ
z?Y+$`o}R?2cy`SCi_i^2;ym?*MyIbTg*m@Uo)l(V+~6kB=o4<J1`}_e;o^75rvd^D
z5!y9i7k9L(cGR-51Rh3!qGn4!4(T%3#yvlWlq&=?d!Bs|*}cel%Y8r<uB!fT!m$S#
zWj^&NMCgFgj0k=7>1wA>k8|Tqr>bsuiUxgps~|*Ci3=SHqTsq>7iVe?6YQYNY)~(w
z6&X=_ijy$k)U3A`>7zM7i|oZyC_k&Xj^q|)N-sK>GRm!PyPY4C(@iV3B;)t3sO|c@
zqPfwz*U5OziqkSp#YG(UwX2Q%y21&Z?OequbUP<3)|Bp{9O^}@yeeXxfejaPOcDRU
zM6&RiSnK|gg0pBt6AJFzi+5CTHZC0rJd8`pCG`I3ln11DdUjti^fSGj7?Vt`sKptr
zd<p%-h9OTvt#MCY_)7L!!N525wUujacL%8}?HRG)j~+U>mVuY}1IBW}1KZ#M&(`l>
zvLeU~J<5Dy%k{Pe*~Wr0E__$4u9b!p-**SNG>QTQ7|2zcY^`f1NlU24>yFqXK1SqV
ztX4#~RRk^K=Urpg>nCb_@f-=FH4;t1<l0%c?OlyZ#i*u4q`mad>o)VaGM@W<4XwQP
zRxeuHF0(_|H82gI@&nVzi3(EA-gVk%-rjZl8?#?!VcQ8*nYJNCfxT-wPHJrfMfJ}^
zw1uBSt!5b{Vz$Zw^<@k_?;-Iy+LwXtK^zvQI?*P6=!~VkZcM9vFW;?6TEdTQ0p7;8
zn$&}W<?3HWcv!K(ip1H0qAK|=ni@85z)gmE01dDm0D8ir-7r>mPnm^uY+<7*?@M&q
zSuYp)UbYX|%dzieyEUfV+1J<kukRZ0>+qfZOoN2(a)G;i(_OyeE|0B1yWEl+eip>z
zGBsnaa{5IFG2*X@N}5j(bw$6}71Y^i9dZbbZb6Fl%e#K8h`uP)FBKw6m5ViKucGNz
z>@GL%PM?s>3`NO&7BXI5n#`Pql6gA5Xe?!F*#)$%RX@_Rw@S%8S=;rBlnlsOiH7Y(
z$vk;lX7*kvna`qRww_qa^iXYP_BfPGFG?mUCG%u_(J~Z+NZ%+4PKYNUbu>#SJ)?j<
z;?hkocWT5l?!A~$y)HLKmB4XR;cw`8`<N<!Qx^W=i71-m2dyHiSXuu(Uui%RWFlA5
z$&?cYbN*1)Ve(THfj{A41mM6YU8QK0cE1?b988-_QhFh3WbvO&ap9!+E&DRD<Mxge
zY0gs|lZs}+B62~gXqJmn(OMf7ZLzBEaz+oVEfv7%gcgl=`lzX*Zl^F<3A5N{`aG&k
z+c+JFKM+oMPdd;mAI$4~o$)2LqMCEA<3&7_>*#&Hq5_}KSzCAtW&ARG-)J9Lr#N}m
z5{%m%Utnv-0kU3xU@P_7UIv?Tfe5z9Auw?a3+i7MJAg|dlb&_@NBV*r$Ju5jm-v)i
zT=sB0%PB;U`ru$67in+~dL=2*UR6t%-zY}Ft^g9dUoG)$0Z88bD*%%BM~F}Q#f$Pw
z&}7=RX_`PYgWV@uQzM==y=p-@DYaX+_65qf;g3LHC=>ui+pY$aYlx8j*xue%U0EFI
zF545Q=Rgvg<eCrNWn$Zg-jg{kX<~2p#IEq5<Y-nnZea)_qq+9Nwb{E>BWAaWz3yT+
ze#^Ap)w<BTYU^sdKhfB0jd>4AnYcrl+WkqseP6LCKijPlr@ZS&vM1W$Gj@ur`?!x#
zH!DInY2h`iKphD84hTYc?nvkVy32j;vdmphbeC#(xxrmN<t|rup*Wu)Aei@!^(*h6
zS^Vyg>V3cYMyVZnlHWDVAjRR$|1lmyeIy~~xUQxqyqyd8^D||umTCe?jJfjE;tKGV
zj=gubrHY(Lv7cYAEUR5LD?f#IPL+rs^NB05Q>)7<V-Cw~I1q2uPb+3(4SXJ+^#=K0
z><|v`P~*N+_Mx;iTWrs-iioDzOj$|;Z5tQOXEC*}Ll?@KYXbB^?N76fZ6@~TeLdWJ
z6~cXp!F@s=?uCsX4)>ME?G)}>J`aCR0wi$T*ctJ_TeN_>jSWzNrd8GJe20-#lNNTD
zp=bfV8k9m^P%`|(1JL(~$nDM%xgUMMPZiL&T=BU4{sC2vkh!^s3XaI#b;Z!5NiJtI
zj}>#+Q100a-|10S-o-W2o9HU$C!&RN!RQUzX=dCbb4er-9X#$4f3$nJ+eYb3wby1_
z3_R7dE{qK~E?)dGyKKH6*tLwJkRLNOW7a!+{*G+!yf>E$cI>&S<cz<fi`VP9ExwO3
z%XGe^pn%GLs-ZBr5=F?^b+6+sS=Y=o%`a^mA|<w3m1SmE4Q3nfIgHI>Ki$W($0o}K
z^K88z#nQ2Z&N8-^uYbfRjXk_!l(vw)l&hhC6u9Wva-eVbO8VZM17y9K_s~*G>9o+-
zKLMXytYpu-#2pE#(R!XA6OT-wsa4sc(N{PVXx=1Dt%!_90=aIOfwAeKWaV;(El2m-
zwr|(cXPk~+TL{^~O|2CEY+=G19Jv~-%(0<Nq`S?pX15Yxskp|$625$$L@P&uYB8xz
zBI`$4u{w@T33W|5niQ1f&8_xE9pdH=e`BWX9)Dw|Z08kp=PQV&^9Ume0c-6|lWgH#
z9)e>$S0FX=H;5Q<nqf2s>Q=d{^ik0Utpi%m&t&@4DyL1<FCNeh3kCRzBzS$I%dM(V
zu|V~f%Z4meQRu<fl5!Ysy*<%R6!&^)*na0(;jUG0GQoD0w_y}VE9q<J;;pDD-d+^+
zb}N3i;8DGB(%0Be`V9Qls*07gi?!RWlf=mHlPuUEZuVQwfw8WdunHHD8XAbY01W;-
zz^=FXR5-woTr6#!3bO^mNR@t}%$T$clLrcT4MF4`*=Ct^Qmw_8QL!cek_|=r6Zq~F
zz?B>Cmp`0%`fW^d@xHyIw~yYmkfQR^&@=di?92HeC0Eo8>E%=xKjy(sZqeto1=Ir$
zclwA{>e*~o!<<ZP)o?G-<v-cMP}QB8lj!$aK18B#7+VgOKUAWBOFiMuuS%lBpOu)t
z`?0$W+SBe*?rxL2^tj7we?ld`vxB)Vu-BQI==|Ng-FU~iE_M5uR-py`XjhPLY~l5z
z6N^6j(Xhl|zGH~0K@dCb`*To<Y|+})Ga<-KAFdlCnMs_}kMGA9-DsmBcQ|%3b1M2}
zOT29~^(1`&nSDj4#d{~VZo4<$ajHf`sprW`VzDMCM&D!;8g=7djW75ouj<gp3!c-D
z%C&@2>ndNYOTAvZ`Ni6<4^FHb{bF6wW16R%|659EHDDtfl8$3cHAD;6GiR{5yv}=@
z_<(q6;+lWLOXd4MJ#qANHSJ99{mhh`snhAwY_O|zT#!U22#w4b)1oTt-AY5o7)i_{
zEEvV2Y{c%5f7Vc3UsR|9_O8bghG*^X7*XjS@%b?z6drE{kMU*XyTJ52u=q=fg@jzL
zbCVm2UQJ`nprVPOt&8jgoz0Dp&4Zaey9C-XaU(&l*(e&HufW!jE8}fHpkuhgyKg6t
zW?d@@4jnH^_Nj2uEv5vB#$cHV)tu>3AO-&QA9w|R;E$aG_bjp#1zyNBId-a67bVxu
z(dWh($?1<JW0v|iroj7FaF1TmF*?|-e1`%Re4R51I1`}80mZK5AR6tY(Skle6{|@q
zjv`0okee!XA0(<|eTr!$@-3lcM7%!9uvJnrU=){y3X9EKQ9CVag!-k@`Bko84f<6P
zzD25@GS;d{b=}_^`}NizFK^M=)9KjcFWR``cwMjwRtjwq4qW;GSGwe*m45p?tNUeL
zKD2H#cBHsmfQ|7dqHBfs6!_z05~qgL_I48Yn^TRf4jX(jjPy31^di^7oR881u~5#D
z^o%GbY;SkNpHp2W)gPr2<^^5pk6CH&DA2i`AnesI7z$p~1++T!?zHrMuJmuM^oJ7T
zN>{q|Ba{x0FE%Cq(5`kl+}$m6cfWI&Tis<Z_ilH0x!OJa;1B5ePv-S}-d{(*-{Jh<
zV<o!t-Zb_`zjup+(C>Cd2poctkbd)zmP@Vq@wc67`H=ZX6kDTYYJ;jrCc=5w6b$o_
zp(xp81RnkpA4T)NTNHVql(~rKFpf1(={g^W;H(abbeZWS^Bu19Q7E|&h!#?g?hDyy
z%7&JK6vPzORxe%HAWs070zLUERS@pF6)4TczC%Cw*C!<9^+<|H1a*7KmeL4c{7XSB
z*y$w~w^~mf-VgFz1VCsSG(mWA1@BM-^uaGsQf{=11uJ}}f4+SeKwIR-?nJNx^_bAB
z5o_K<q9L*1D0&@5q`dOX#Oj84H=owf)B$#Pt4kcu)D&~mClkDURx|*h!mFrR;FU`u
zwAzg+H*=#RukC;_;ZHpR;1~4|45R7Xy8J-+!Y#9}qcAke(8AEth_ZcBl@;O58%3vR
zY|!q4h}^qReH@WK@O2a~iP9t5eO$u_0C_(kju<@+h}!EsYVR8GGiC{oM)!or4mEN7
z*&RsNZG{tpA|qYr7(*!AXaCJiO*G!LO?^IOys3c54^6I=$;7T+cDjb<0t0*MPjlDS
z-sgbjGm3-EMJy<IFTQBB-m_Iv+ZU|hwCA;;fPJ=KS9JJkj?k3{6U1wt4>Hq^W-izW
z7){?Jmfu|B#FBacKI~EC*rTm;dvK`r(W^ONYF}zxSnD#duGS4q(m9B0X5{mO#BvC=
zlN7KLuDmFkrHVKeUV;44CJTz8_^BlEj$|?79f_lx!f@gv_M+nQ@J!a!3;EUJyS(^>
zl-Iw)fivy67=61NEh9eWTSTK|_{=ql;pVq%(z?8}lm`_v2^1*0ksJ!H3f(w0VBye+
zqYci8o#i)DY@z=q2+u-at1pe}%S_2ogR~T?%BBFL0jJxIM3~xQpMF@k97(bb3{#j)
z9<0$yM`vz_Hanw8aCBN_a6$uH_IQ5I(K;K~*Q>H$mlPaXWKwX=Z;*oFJQyI}r@H#>
zH|w!04%eoc+VIi3nUbQEk$|$MJrHhFAzt5bgDUZ(UvA2yL9B{_=qT63rqd$LXL;)&
zI6TRkl9NXp_+5SjIT-LBdviYMZDWg9wn+Lm0unC2olYIWuUx3he#{8c!w%UZ3CiT`
z=Y;=mKaKnY<nP$zf$ZmdCaC{Y{!T8Ube&^ivXwh7RW+cZ;X}<=U;cKoApXXtqD$Iy
zvsPtc$shBxG~!P)i82NH=Vj^|eg>I{F3#FnpMk}x!SI)*qO+-Z)7dcBMZV?+)XXk<
zE0iqO4MRc235Xjlnk8+Li7okHB%PBdZI!|o;k@q_n5R|&0cFcoz(l4(stpOUE%Y%=
zgMEX>T6EJJCi~C~lRSXPD#3&USf#janceQ(jJ7RkWm~-j51Hcu2d)<wsbOQno36~s
zj`46lOeN=LgBA16%@%(HOn!nyo`e7d9t$V?zzIAqP0(v|A5|*t{2j}Xw!tTy9e!qm
zQyx=<j(XY0a<7nO?{@GNAh!b=ntXS$2RiE(L&aV?!<^ukb@|YWVt2UGcYcJ@Xplpt
zLEidcgH|Yg{x*c|2H8>5H(EGc^5wWFF65y{%c2v{^YUl&3D>DhJLChK_Rf?f4l2hI
z5_z!2v{2^`Fdgr(x7xZ-^@`nFd2GDJ???&5C4Qg=S@K#NofG*LUb!!|kEPs!wK^Pz
zZqTO<4*L)cIw+2X>P~3#<sK`4o!7EUyxHiVh;=@+Z?gnnt#^)eRW!N;xJV~DadS}j
zRhv=oB&}v5cMf{E>_rE4wV+Oj%>Y<2H=s5aa!^Nk^%2xjOw@-%(-G8vqRBzoA7ClM
z*|$L1Q~Bl9Xr6wVnrMB<2m(5cKa4J^+s7;wz>Gia3cA<pUe=<Pz(>6OA=Df*E%UZ+
z9=z$XW+vrEwhV()$Z+a7&__l>zKFMf9JM@e>nZ2F^?JO+rcpB`i>+i=yyF8?x$QQ#
ziFaIJch<<_2gOmDk}+GveP9<f8mE+odwpwXUduIt5TunCdMyrR&g1P=0n;sxp>tl#
z^@sOQsOs2V0MKpsy>mg__ud5&7Yi(7%x-^UjJ(?4l<WJo{-&ak?p1ltk!3`MIMyLC
zE4<-p#{`gGV<U3acb<&W?&ld6<>ncds<~)s1I-&w&>0)_ocmT?x!>aNUAqIuRhOzr
zRMpN>Jw6<Q|7QpcFMiTt2J9KulwTSN^%Ql=I*ChRox>k<Ce_<!gx)60aWnh$jJeAH
zxS7T9y|#i#@h9niI(G1cT%@?>3m+0GzIgv~!)>uxhaEq6(%c8ri4<S<xFW^E&7kaH
zRIpg~DsEUTDIFO0EbMQ%+*^$@E=2L@WC&AbQfind`X5>49MgK<>{PXp8oI;Z7;i>g
zYrMJIzX7{>uB{F?F$b2@q%9J!Mj?Hs*GYGIq<fBHX2~Ia$$#a{KhxHr?0QXv=b-(6
zAY$R?9(NovMI1s$WRd|EHfeIs<_7Cz<f%u%-sOSyE>}Me2~WHc<@rcHc+<zf&a@Zo
ze_P>Hs1Y6&YK(viwJRNU?ui?oy<ti+S|D?`-Ia_w?O2dKa!*~9b*;=I+{jSq+F7<$
zy5yacDW37J4ZBvf+x94^xO!G8!Ydb)YD9YFGbmz?93U8Y^4L|H_Nx{PRcRl{#dq>9
zi3GLMP|`Sw@OaSm&mrc3g@?2LLrj2mjZ}xla-7~M)GLNyN|N|GXrY5#uU*gC6qaUT
zqABI#*?=Pvjt@Yf`seu9bZeB`7ta5=b9)nPE=$T}RE<?3+lafJx!S%p8V_ZkX$#?s
zl}4_s0V}jp9G-ZKs|GZ5UVbHB>~FVvfseHo2>e0Rl#U%W&IEoe#pWMs0?)7O_bI2Y
z$c4Mt$3Z+{qYXhbvCr{Ac*80rn~*-{N}fO_3Nzu2F8gI3kfyIu?;#N&vo9|IglPr<
zxve?}NcWx*AR|5+AV21Vu*?AYkesmr2Pu0+qp=9%uxZqpTMgfIX4Q|P&VY2(!6Hv&
ztwh$S!MF%|hMnv=l_#Fti6*eEE%>mJ?f+T0Ci-R0gvNff4Q<&y*r^gz^TSpH=|bAx
z`OqgH{c^yjOP-x17SJGN(N7$(BttCnzMfn*@7sINV!@3Rf*rf9i(;aZCBBB@a2wmv
z2|O`TynV6_J!4<p>>26aIR*3^#rNr0_R~4~-L`*3ziA^s5+k+nL0G?1jO0gmHh4fW
znJS4mF10y(s`4;3(Ir_{hQd*=kMy$CB<?$9sQD=23t!sAT$~Nio0!?6BV~D-NK-`m
z15%(pXWMy%*=H?PX~_;lmp)JwtSzfM1%#(Zp1>u0Jm1>dvZGARkF2$KC6o2;ARdL`
zb*R-pIJKJhM{PWjl?82kbEfiF8nm8_Ke4rE`01?A&K9zzDqx^`b_hv5f+jglIbnPA
zXV~#4kL|8mNUn45O3Q3nIcFG4MCR;z;oq_;^Xg1JwG63YZAHz(#E?WQ+dQ-%YF2xr
zm;&y!EWM5H_;s-mx>C;#(<mZwBFQLNm;8hnn)bReOO1DI0DqScUo{EU_xedR@&U+M
zDXc)TZ>cHEszBev;1I`t6a;Mhd}Wpmibr4Z5zrWXHe`)v?4k+aDj|wa`8`AuDqF74
zp|qD8J3gZTNM_nB9_DpzqePU_OoNiab{hkU__CJ49)W`mfgKOHr$zp0k$dXOR`;$<
zEUeC6M-k-+H8850xjdZpwhcR9{t1lmU(WZN^%Z!5KAcZ@30|o1ph+pAhi+iwXU7fn
zkFM<|a)EK9nG<s8CRBlh((uBYU2zC%Q7F~d#=e>1*+9{=V2AOM@uQ_A_KBadMyuK=
zl@RhxNQL4|>|-gPc5vGz1zcJcWFmNSNhT0srT_z0A6Y05r^!@h%(hDZ#73MT4JIvm
zDd#7so6<kcU(_!!VmfNW1gGVS!_OC#naybcR)+C2s<Ra+QLj;WE&shL7qS|iqWlBH
z#h!=7f-QU@=c85E{FmX_YoQkV=tM)w9piELxcRJqIA_Rd)7#xh8)vA~s>@9<gBea|
zP(=L-mB$UfMg_><Sl|)a&=MgM8)IH-dTKeIO_^Mz`7Qd2Ezrz98A4(&k9SBb4S%>q
z8+Lqg>~R!<DbU;<z2<2}q2T~g;@BM72r-lKNq9MI3IIU_z{?l!41l(6tRS<zHTGO9
z1Yvp(gpU~rFIEWz4}ONz3?R9I^A&-U(g}B*Pzy8gXM`K=hFgAWV06v*c&PvHV0_6s
z1{mq#z9P6oSP38CjM#MS?7ko*av-cRzi?^-S}z6lQ9SWhk%3{KjZySFt#dHIys-Y3
zzDbknCj_jw8$Z_)WTF`$HIEk=cK*<DF3z7>_W~kjMh&UdrhN?0+aBC**f-e2!_JKc
z`OvN0K$WU;W0cdTu;+GtI=0|Qkeazn2Dw8U-36&L1D7MrzHDkr>=5yHixD|I+5^Ms
z$(^|x)2GqInPm!6Wp1?~#4wT{&qUu{gh;oLgYjIPHGOKq$M>ks=aFS%<sF_tcQ;3T
zVtnWWR}iG6?lVqAOT!_^mw-zInPCZmRIkXt?Gt4)p?-=kGkeYI^s&D@;y6-lum)O^
zFqrm9Mp?63=EI3Wz?l|k1n01e(hpy2EVH=XLv%<EB9n0X*Zx~Ga~2uHQ?v0wBXn&k
zW)}<+V!UP2K@EpdvX)iEI2P5S3dhQFIK!Uy{k>ya#S*FUj>fF48sd&g7=qKH{vlW9
z#_QZ=Q)d&)(y?a`mrE4yxWm{fin3}x8wE%X&BA@tqkc~r8(V4v^Q$PxVu=mw*=ePz
zHkI749=W`u&G+uqrhfQ_;$EA1YClY{8Tq#=Z8+pDV`lavYrRHjwq3N~sATEd?87z^
z?+*WVA3E+Hf3upKo&_@D&gwgr82(9RCgBHyqwE_pY~Tn>qp@)&_Uji%f*$doEKg?g
zP{)4L>c!WxzPMPRy~$a#1_9G38_N#ijs$Yng6!p1Z<iq``!YA$TK+_}{GOo0A?y?`
z=RG7X%Z&5t@Z<K<yu#JtNZpL_H^sVHV$RsTJ}%T9zI(4r6cj^cH`s(%-#WvmUN<BC
zh`TIzmwVmikM45d)zrL|Ee5>x?33TyKBhs=vMsURRjd2vy=l%Y<6|2YViI)4ga(-i
zuG~I`UnOPO_7nsw)#AKpScNW47$@QZd{JBvmzisR<%z{AmM^ZOku{dyo#$>hx%P*3
z8VEI1s0NvyZquEvN`HP;e&dJ8kBeILe4B2;Y~eS4Lf>X$`_1!QdFKTYSJHxmc`DL?
zxk_Jv@_a8of15RLCacVN1ZZ7n#Jw^C;bSsEbg3MrYzkPKSftiJKO_*z)eGN7b*>GL
z`i{?EtVR%r`XGH0mCE1G^o?frYx3-<NfmAoL!z2w5;cnDQE7N;#sNi@wijr;qXeyM
zIGw{0bU8@MbH;gazNe+uQ|c)WKl?q^6HzEIHHexhY%ok;*{2N1BW57WbL%eZH52Bd
zHy8p)ujRv)nA(DR0b>dlO4|XQZy&iG)%t%m+FB~CNT4)0dA%vsr^<jTQ5DEJ1CDcY
zEvxTKMGg58;p)ZuW+xS%=_{0GW6F(wnJsYP4M$075k)r2jNdN+-b;#;I_4-~+{OWD
znR5r%X}<C*^OyXB9Kwy}H=%yOr<=jAP1igR+GU4akK_$6@vMegGUK85W#M!`KBn9M
zA93#jU)Pkrk0))8p3*o$t0`@z8YVT2lp+~QO3Mx@F^aehWf(zekW`pfQ%NdEy0t^m
zp(qA5Ix|J5%5+FC2xf?uDs@R+_mQHCUUbO+dER%ev-deUX;b6-`{zUV*?X_O)_Z^7
z^{!jMXM(mw=oFkxOE`ls{ZZa5?*k(j!T0Pp$j676@Ej5)LQ{2+Dxu4b{S#U<9}I0U
ztx0b|x8Lh&w%==eUiRL@f!ZQ1K&FOt#D1#<MA{LG*<sbX+){Hd{sykCOzw@{nX;T_
z2sYF5E-vd-z+D6<E2C*f+=8JECHZvm=2}7QdYHMS-2y*^>DAo=SJMc)p>HP|E75pG
zM=JqN_oM&F7P53S3Qx@<Wh5R_z+&H%hH*_Y1`Vg)(}p-vWp_T2rWf+AoyXF&1gIoW
z-4HF~%_g#`AT5+uI;~aV$h>o??O=Rom?@UlOo0hi$ZHeYsR&~iW$ADsk^RI5Z4_&A
z5P|bxmXqiXzztzt9C*{4TZtv*gfR@mw;8;Z5Ht-a@Xr`N$v(u*jkE>hW|O)IpBYXV
z2xzw^->G%xkc;K0cr`1dMQ!B|{F#b9{G=|6WkiK6$I<V)26=H77<3h~w`(HPH}FC9
z1Di`7$q0#4+_22=79Jtb?V|V*ry4VW3glAP!VMF{e9}N$l+XP!8fgtLTiJ*a15Kw2
zK(0;C2Q;-@mF@Hd%L=p2evRwTisgf_cVE!9+P7Ah5M_%9V1n3Ov>*GHBdO63Vh0G<
zWVC^^U(i2WX(Jq_irwQ7;gHx@pTY<S69E~(;5behpEU`>1iB*jDV0Q1Y_Ui&1W3+9
zC10q>{9|`elo;epsl1J$zZ?qTY|OlymxM2;nJ-hTePm(J;I^KhU^6~d)HSj#U+6Tg
zcH|CL>pl3ML`$>va=Tt`(aTMGsnJU;ilFHY9Dc~4DJlPTC3UtoA^!zJLZ-oT{D7ro
zqyW*V5h95zv@<_Ib#Ib6Q!yv5>4;Sj=d3ry3y{7j0=-7&I(VYuFWC?s&#r@erPp^$
z=u9ZV<ZStuar0r@(pO>cJ>x@Z7b?d=I7&Y33+6%nA1tSxn~2I@JR!UX+G-5743fm?
z5hyn8mHsG(Re~Do6Bax@I4uWH?bzkw+&O%V)P-h^P~dcY<`q7HupEcp80DFPLPm{e
zC6*6X4mpyykgLR6y|Wv@jw(oE$9#raZ~iWWna<antGm|0o!?8`V|TkcRPOo|&`vfE
zDCC7^_Y(<9l4kS1#E10mm&ivuG#kn8p9oc!$QCR0Mj?k(lP?-Fg%{9*`oup&EKw^E
zyBv>c|0{S!zd|gNSrAKUfUer19|yj}4zAi1W7v7U)v0a5k_HwnTrzPg>})gJVVf=d
zfj`rxHDi3QGHr)ej93f!6goDl4vbOCPBW|_hmj5o!1Qs`%uFeYEN+AmV);-*ws)18
zYn)Hepb(rcOY+ND9T1*FAbi{kh+BcwO&5k6v0CC$apRab@S%w$h!ZE(x`f1{CM{Q?
z$_Yrz)fYo3)%2RP5KT^&-p@f#TUS2_xYVqt<2na4CBlQfxARe%+T~tM1(IIET4g?P
zLvOC?qXdVuLTRL_y`{w|GA%NmAS+O~7t@<ki8VGR?*U+&NV!fnWvZ4<nK-Oy8N7(4
z0jhc>@12F(@uc1|gEO^U`e1P~ij1)Z<OKleNX}SRO4tQ{uuo39#P>JuC*PWAkjor<
z3&=2U0nSQ|T7^oj!H6d!AqTUGTXrAg)UHLE)XWRQF5d7`VGbhL1U{Ek%onU|lHFPq
zoL&Z7<S?iPiU`2CIBGKxU}6N0P-TD%kaC<M>q&{R#etQHvbGj_IG6Om%RKG|hp4_m
z?k92$5*OaB{FFx67Na|`wpgT}6Vp^wjSS%<h^i%BB^AK-6ecnT#6S;+c%d9N`H$^3
zy(>&B1mCW?4N^|jl$|6lIl7DCBhVAsjcWK+uHlyr#GuDEqGY}s=;hF+<asln)-3@L
z46(yxDCRU4cVLz@X>et$1K28ez$VIAEr|vBb~hU2?hJv_TZXQX4a<kNa}CUeCGLr`
zt5?>j=*khb8`80RzzVa$S8?>)l0mERV9kj3S4LpxuHsEAi`!owJ?M?mgFY&8&%nN4
zZx(M_Q8H-7=s{j_PizHtT6@W$xA3UA_QUj&o^O>zUoMG$igC+{e*#P+Wm5>oKxHL^
zAY5-bgT8k*t#Ssfa?m}mI-}Sv#dc6Q-0Ng&_Yi34`|)jHvF+1p`ag+$uwetVTCMbg
z+_5NajHnpwWJBE;y6XV3_Km!BX6>gLYhTxiwg1`-D*~#eu_k7WI;&~sHfzH4!n2VT
z+V0o0Q^VnJ{Wsv-A;hZBC%D9(Lqsb3nl6+{egih^yBOa+h)3S^HzWpY(90CPT(6gF
z^zz@8QsiR2`%>@DtU(CS4K;L#$NJM5C(Liee&k2>@%JOwX@b~~{J2%D_=V6wyiE5#
z`8{?VFWnuRjXyR9fNeYg$BX^(bUf?zAa2jZflS`gW^UFEMTP>5#f-Pzx6(u-t99x5
zwuh*yky-xrK6n$3WQE4!S7f)MZYbV8!a$2&(5SwSBSJaSyi0b{*bAqHoDk+2Vz_4U
z+88Ry)=ca$i9sY+(F6YB_OIDEoXfiN0*#j<zP@!W8gJ}V$4fNJiDFHHn>lsYl#RnY
zrg@)-0*yyZ<GeP8UhAuk&kX@2*vwLffNm)J2h;fYVB@ghnYXOBnBRn7z#Mx-XZB3p
zI1GQ9cSW#qMxDf5qtD-%#`~MbVgA_o-DYC5x8b(|%!|<Y(0Jnq_>E7?Oo=(_#Q75$
z0n8H{e{)a8e1`ZdW`3mcfwu9gVB-a7{Ee?H=KsMjgLx!%<6vc)cTMMwmzl;hOylUX
z67%~-;K1|E=LRr`L&&@~-gt%I_^rKCVh#mK^EP(x6!SIE2d4hzWIpg52A_@By=8d*
zhhXD*VDAB`+X=IsTWmXG3Qq_(h9;WoccyDb^?6$TC+kf0{iXWQ>F-mDGsnn9G88fp
zjwyF1?gVHS?n2z?R3+I(m&4IoB(2lDy=<FQrd{!bBE@TCsJ*x1c7-@X@oha!6`|kd
z9EOq^xhM$wRB||?1;rWqg-MV7_)Ro(m?;MHp60zK#U2e7)6Lp4LoDWo&X)NkfD_P#
z_vI%O!@A2Qd_BAT(abfuJk;u9LWX|dT@pfuUd2OvK3V29na}s*=fjgfpC+I0Z$3X!
zKcB3h@7>|^AA2OVK3qQkY!7Yydo+P#wet1z&oAL*7}NSNw*Fl5=kE_D@N>=Qf6>oh
z$3p;r-`DIin$P?5^P1$(r_1M;%I8%VpyjFh>1XYMPqBePnl~!>(@OdDSNbUemC)sQ
z@It6GVoq}~)4|>0r{TG`@IiDz*W!G-{dhN*ce8N!3*Oy@yI2X6COAKg52AeVU#2?T
z;fL`-H6P5=2gCT_5<WOrAM8C4*y6N^)A+2XK8u)V$M6|Xg{F|@c=@<Rom&Rr3kt5c
z58vNp-sgE)y#0##N4(AV(s?_@++uzwCpUg4qe8Gp-bcK>)Z9AW8@zo_hJ|3Kz2|v*
zs<|!m7V`FaczCb>b@=t7xXz^hGv-fBxDdXxi1RlJIDZ4n&s875&97b~ORS<{Lw7*|
zHd(Ti;u?seTNUV}z;uYiV*H7$Kmn$26fN`ass{BNr19i@$~M}6=-FWVy*q0^bNlV@
z)p`4osb5lolFoNxw-35mH&xzoO@BIm4Q;}qN;C|w6Bg{0G5Pn*ri~rCacFzn9@wce
z9kVjSoaJ<ANzd1?s~`GV6Fm&SMqfb(X60w@NllxuLqL(!Z;dnP1N`W>X4A@^c!NF;
zH(5ehS;LyqeUqLA2v`aN;^Zfr3<6gU{i{-?NFMIS@@{C$Cb}Xho-2L}JoE0zSC3(=
z4r-`IS(LKNBJ4b;U?ZkTr*Ke&v55$_ZR#0WSeCwVSxx0$HQ%>a^@=PkO|Sj1rsn&a
z%AO=s><y{~8qJeN-OxqfDcCvkkhAar_OWrW&8noZ_rbvgTPEH}iUFL6VbDS9Dll~&
zc$d~Cz4?Mnt!v{(O9IX=Mh7PB-6nNOHBuq#Itq1pJ5PW{d<P}$s1K2;J!thi<oBw{
z_`3T<9<ViW{a%y@?9MK!JC7j1xK~KDCn|$pP7R;pCd<3o=)3SDhv*^A0n^{e62HUF
zGR>8j1bKYQV<~vtCyrp8$4~r9d5kU`y0Pd7P;B@|QIgI(xIK&a@eCbau#oAeNSXM%
zgbK_;Q^;as1zjp6#K2yB5R}uo3m*ifs)QJp33SL3exn%brdmcE4*kw&VX3mP<sf26
zw`pafI)+iYb|ZABTA_PTW;2dY5|r+<QV7a_zV%x%f^wO(Vq^qOL04jfDJW~NfuOu=
z1;rS!iyXVYQRbh?%9w=tXRM$?<c0G>WGm}>ZnmoOg7lX7Y&TSUp&4-6>onzKnBs!y
zj*<lVxMgpO8xSu?o~8DqnwqUO7!D^pafI>mKC1DQbkZuzn|Xv9Vh9+dL8Xkd7MLfg
zfQ5>166TR3Hnm{>Wg+KZ7QV>c_%>brS?pnHNcI81bRVsfdV_RDws+t}&Fq0#urMm!
znJ4t64`j0g#@W|8h<L+(7-*~gI=um4sS+4rqulv()o>2bds?BydctBeFq!Q=jYGgl
zMKrmMDugs`&#((ygSz<_x1A7tE8Mzhl|%s@JBnnHeCLLiu2*4^9axHtNY2?{g+)@?
zG_1pasUj&97GbG~?cb?L_A(+_YFeqdU0ZRe4W-6*{W{Q!_}8%a)&U(`X@Ven?=P3$
z@d-$s#;z90Op?d5$;;YxsAn8!GVvc!vK(irVDAEKWZ>Zhyk^<PU`cCtW@+3J*tusl
z#55eKlf*3~u8e8ex;KQPB^*E_FWk`3rB>=pfS%<IJWQo7XxkulrICe)I?>li^?b9h
z)Tn+<BL}@8I|%(96&E!?(lLEW@-QQw0n}-2{f}?xpM_0O4&0+8x^~2hFGdY|epJsk
zJ}houI=b-XNkc}vXJgm2SFX7f*`Rax!u+0pV_TjPD?fre&KcDYAGBfH*Q*z`6%*tN
z<5%sh5YnO+=QWWarKW(a?UycvvDh$&wiM{lw$dB7O!E<Xd38JpPZMOrnSX=W5cLD)
zz+~1el)!LfbJfVW5@umLzwTx$Kj`OC*mU&OYYr`G%-B#;_+sU!I^@%cI%;vKGVhS+
z4BSC)%$@iCQbH4N96yry{{@+rV2|LCF%NqwCq;0+KC~9dAC>EMk80N-OfF@`BR{Yo
z@5x~NLU9?dCR+F~$Gg`o@pEL7o*AnKC%Icv;p$0cBrEa)m9#rYf!j?tM9Bp|uvF{9
zO5M=JajFf-f*_Qn2zW<J{eHdpG&WMkH*MhJM@OpJ-jP>=B^%=`NutLA>~?lI|3r)t
zUHX+Y(Qanne^9b}fr-dlD~L31MTc1F23lpLQ;yOPq{$;`fa>hr8j?H;%ZX&JR4k*)
zfvhcv3j(54n)f%h2PuIR_(&pqEaM(?M0YorM%?rH3lZd^{}@&~(YKsUU*Z59?m@of
zM=0|5A!o=2Qo2-TE*)tq1_wae-nTlkF;@#ynvtn}@v<aZ6n+NRw6=cChL;sbGuHDc
z1x#CWqL|<*SyIF;#GnKlw7YlXhl)%*n#su396D0Q8efQTz}<MO2ykk=aEvsdEMh_%
zBOgCrJtcOHDGXT6P$IsB(3v?LxPkeyiFBL2o~`RWp`Yf26A)0=qTDn<h-C*Q?ao(r
zQ)Jy6jdR8p5uw2MmUJ>>0ML~=FEaXrxR7RVk`8Xs{F3Mi(C^J4Q0!l{=A_;K1UF=%
z9Cg!;zxkyqz*q`Mxp6utt@EAESn5;QYtGdO0se-*9UhNS8UKuPor9kQYQ9|UP?IH<
zm;IdBu=}5t%Uyc8O)t~*Qm>aUFM~26^Y7cYBz<Zlu@myGq)0W#2Wr^35e;O4#pGcU
z4|ieYlA*)o%dMeE-9i?`quM+9XvwENa8N_mi0J0p&n7!PacJq%5gVIos+Qs?XK4Q9
z$p;UGgf8K<USdrjKS!=sLd?t<aMt7ipno}RH;-f;i?XEkv=vHga2XG=bdnFB``o8B
zxJp`|J2-*XqUn&|oY)^|hVX5XsqjcsVSzj}6<!&rus|!^C9%Q)^Jro7yMPZGwE@J@
ztAYW9X|!LUQD_daxMN?%Lc9^|k1sJvjaoG^vJ)qwSGib(<-KwUMC$XU(A%7=lSkjC
zk)5(`HHjLXr&FL^bF~=-7?D<a5AZk&<e3}Dv|SzyBk2ve#O4!#M`_&TR$vwTg|`xS
zjADTvVaZ#=QfCq0Z10S>1Ixtoh+__&Qh}NtZd>&p4Wv7K04f==NWSJ%S@sUeQoC(!
zIRzSZkEIYnEYPI-1PO{UJD655$2)euwu$D<l2+I^Oi4PJQY{`4MrV$oX@}Sn`(;LX
zsk9L+>}z6CH}uLv6J@z}`Wt(*Zw^cl%Vb^0{vYwrY$KF|dpmq4tsp*b*49p{3*`JR
zlV{e95L=KsTWlhJ<nV{LuKyM>f<D%ukeT5HvV&$ioJt;miZjh@fI2f1V47KrXryDx
zataNs1neJ)4Dm%T1D{rq_AtD3!^QQw=O2&%hBIMNG5#o4Dw`-6qs%XbYwQ$h^Kek!
z%?E81h_jvH-NI>Ulg`xQC<?PB5SyWG3puExk+6vgLF_EysY#mPUS=|2h_8hdvq-3G
zAQTc&ilB=qSxU}^2@$4Ke3l)dU?F-MLqRRU(JwqFG)_%`p(DF>hK92Z4Hu+t-VI$L
zJzfAn4Uyy!Y6T^!CL|VVn(ZC1igFuQ4!nS_NHij0{_tO*mJy5id5m)-y>~8x2?$xA
z;QIq#|9Rxe&!zvrv)x#TM1{fy_)ED@*8Ktfm(d#(f&Mf8IO9###Ug$IV$!ezMF=T<
z0kbV1l7rx!YPyXkMMh=&?@DU=Flf5Wzt8}+Tv~(*kf1qi(i=Um3ratOQUPgFe`Tkp
zs;Nz_^sAomm0rK5(zoul9i_i7{+VrrO8;nw&zc0FxYD0dvx7>%Df|Dq(vO)ESNh66
z@wpW66*a&mb{!QZ$r4Orcm`X(S&+3m2v`F&%_vW5-Sxh^079OF9<?vulHd89m38P(
zmr=}0u|OKVx~14zWzyux!v4Ft*R&MX{Mhr_%Xt2LTHTte4=FbV_)WY1*+3GVD#nL-
z`tZCD{Qx9iUH6&<?iq6d<0zKIMp?F(TC+7LGILqmZSn3Kv;kI=dSQ)Fw)fKc)~5pM
z94d@dS7GXg6|~iPUycPCw!}MA9s8H{RHN<EBjWCfa!Ql?K$CtxP2LaE<gy__njD}s
zIZ;NkVZ~rz3{76_7Yt{7nn=nhx##X)^PDu<L)g&PXxXx}+{daRI_@=Zqe!=F&7+Iu
z(VKXbVIOfbd=R(FlsHaqe{FAv$?b4^yPw=1V{iAA+XL)v54qhRe9}QC8xf^q)xh(*
z%&Ozg2dmBtvP$}jN%G5X%=Y;;=`!*P8OE!>3bLm-9ApniN+HLOeb7N<^Rk0>%4bhX
zk=>@K4*YG`@jnmv?+V(QF0#2K;lEDtFJL|_pZPHO1<9amu;5S|Bv=sVnC0E`W8Cai
zT?lLkJf#EAUgdD&Xr{|D@NNv<zwvO4oL3!$V&6Yc-_*mPUWO+bZ<0(B)=Z=$W6QP6
z3wXr9e^A)#eG^8-UW*e$fifWjpfVZ^sNjCQ9_L!GD2^J>;H(hp#7P~m-aGKOAj>9S
zEPQ%Eon~pgeg`MbOj+lVHi*|-c}2V~S6EmLe#~Y)TzR<|6Br`3XYnia@7AL@#HAZj
zK+*S`+IGUkEPBoI=%(6FbD%>xMUj~=6g5=lo>2SQJ~-5SpGaMLNVYm2&2HR8#E7i)
zNKAH!)c$~~k(utz+D2?#S`(@3i{~S1Kb*{yoa)NZvlumW&8VRtx9wEizN{qbks#P7
z{G!~_(OindBe$hGmj<Wy5mZ;=mLsb%jvJk1bSs|n-?X%vw21p0pe|nWak#kW^3nAl
zS3SWhkcQQO0PiT;E4x$PjXg212J5Ta-?dV2UIUD<cW|Ge;4|!iWu0lFMH38bsK{Iq
z-Z0C>BT!Cgm}#~uksiiOGnKZ^%x|5hQ(F;WwzByt%gHJX1O~csZYVm9GH0TF^D0ZB
z{cMd7t%ehXc1rJ{72P(p5WMX|JIz2_*D17f0S^B_+hGe8+Bv)hw0tF_%5Lba0JQR2
zXuEQc|Ci80PHF(rL~zN5*^4F2E{XnGxK`A#Ksg4AbKW!8k#I6{3GRz<<;?6>)ZjA<
z)(`i@eOHtAub^?Qmib<8=(u+*k0e!12DR?~{}N@<B(h==!NeaR{dj|NX+Cewt3mqe
z$+s=Meg`q^9n@8jQ5l7wf7?)iZHttch3FfxGKutP1W{|VR!Znwo>b_Y@W{S0GWOkS
zA9{H$GB$p<E)x9bfZmDPL;{k=+Oy+sBmgAayJMZkv(gWQi;_MW`!DReQ2DW*f1ioJ
zj4XszMJlp5+Eg5U$)A*KH_TkkPEUF4PR;{CUvDh!vJh!Cs^A}p^!HjNQVVZ^7hg#}
z1oV5$Cz8AtBAu9}L_$c(>|^Ifu4_cvj*UZy4K{RviPmRoSGTj8p{u$EVcT*8tWW>D
z@#FIjBR0m54*~9tp|`&jKRy=4KFg*DP(NO$Fa+Ah!ihY}FjH3IB#kY=hkgD-(plUV
zr#1<0=qA+f^_vXWKik{=QOU6FqL&Q4TyZ+wx8qOO35@T!Ff<5v)P+9@j|vwqmIp4J
zmWVD~u7IwB_ff_;b-C5@oA#w?6qQdx3vg17;=(vu?x4Cgk-GQbb{pz)rxHDwwmG=M
zN8N-AbGbt?*0#AVk8|bePm0~E(?>>|vHGky+7el)<(w$?*0MP(U5mhp_N8dP1nXwp
zGwG@Uk7Hot?0bY>b_%uR@-QdfJ5knoAxPu8L?{GZC&apxeR-$`CdYFC1HF2TrT?3C
z)wcJJOut=!^@`MAjbG2PvyQl8njnNT6(V&{;ECh*+6hZwBJQoYS%h+Fbr=NNpHu~#
zTXD}nu=BDRsw7kn`^wnu$KLRjL|%)M?3bBfNl;r2tH+<jXb3Y19|${3uIR4w3ZEey
zo3fmY#K`0Vom!5y9rrcGxH^9{0?d7YNS&}^WWkauY-nzXjMFLWWbq$bTd$1~_A4Z7
zVKS`dRUf>@tJhZgu!~g@*e~sspx~Xsj^M-KkP`OV_T6#r1T8c9QFlFl#rO|y_l(qC
zj$b(QDprhD-`DQ^9IdiWsH<(?J5o2Ah4~L@osw`!rby$+sHP$umSfOh(HYYpP|U_k
zc~yaO`3)7|icgr_N{HEm7i^XkLO#`Yu6)EK7+BOKH#EVBffnJ$u#hUxL~XXY=CM|n
zi8R=u`6x#{;Vuybfuc{4+76@A%)&1!4aW;vQfzp0G2&qq*T!wT+N9OA5}b$W_7w2#
z_=jD2V!a7?Xi%DQsG^iZOD$dm_<#cORI0Cja5|JDDkpmq_+qA6%D{0GK-nNra#9FJ
zG6iIJfiZgVJs>`XA>$qp-Vv+@N?FZ@E7V26bJe9&vrsdMNMe$;yl*o1q7=9n3gG<=
z0cSf(V(S5?<a@A>-;wu}5e8-{Wdx#?hWGq~DqR1RYWQZ}npgew)uS!GmdI<-lH+>*
z3>xmar@+4F!9UwxYoLDy@4_`1vLDCZhXbrB>&n>Yf_*RL751H1NTcH}&RyM|uj0H|
zd%f}^vfBxpBM{PZSX*AJ&9%W?XW=U9AvIGyrsbB)Z?VQRb1UQq2~h9xF%Tyg;~iuz
z{xM=Qg9RWVHN4_j(E61m8#PY8G#V$rsd0FrRZ>hLL$l;f9PS4u85zQQUU5ziPWBll
zlNKNt(iRxrEFWRHqFk|TnparQQeLMlCz+&sG#1$L4-7u?W@T_05e9?#%9wEPRiDA~
zS{Qs`kDwWBtKk~2B7O|PQav%Qs&NL@*@<Ge=@leR7_(<!@lHYhir7{Qj7nLdk@`7I
zT#y%_EUBlM(chhI_9HI}Xf6C*4*eZGABN3g|3|{gaIc}I2wB9h{Rx$cU%SmdxywG8
zfF~nl%``!$)uJ^aC?!~VSod}wfnShYAh<2g<!QUcg>PeG>n~UmX=;=l-Pn_x3f2D$
z&m;(aOkQRV*fb1fW(z?^<D<G2`)h&eL(mRp@c(<`Fx2)+<qf3y49F<|z>doYYu~zo
zVryO<q^}Akb^^g%xJi*}(9~NgD@Bapfn+w3YlQ*k6>t*6RKida<%EnnW79+qLxlj1
z;dYky$cQhoAq48C`#(*LR9D0oQ**M@y_=7tl~uyBd67-rD?N>j;$BZNP7NNlPUQrP
z6U96OKVLooWVUy#S=C)ixqu*WIu7Il*4e~CIaV&vM;N>xX)!Gh1REb2kLNTRqnlE*
zZWkKrP<lK{gG5tO%EXFd_|2Psr0OKd-yvXZ9*h=ix9kzAf0(}@6QUIyRh@tbcDJPB
z+ReL1rjNuE{6ch=!*|goxak|I--Tb+Zpp?BYyRT5oA*sido~+_Awf?QSUd^_A@nTA
zqvVkaKKM2RC8IB5Ld*!+PCZgrf(I1r)hJ5F?uYv#oIY3got%kiG9^H84hlH#FdQ)o
z=eis(p998Hw7!5vvB%a;_4)V#*C$Nj+R{oqppT(Gu@(A~;^-D<$XhfNt*D?liiLz9
z;PmigxTFwPYctzH9prS0+rMuK7!dA8+U)n{H`F5-Fw`=-a2*09>@5rRxrfgSW6)C2
z0QbMO_gfIc;r_4o{(VHaxF2orZ-s3O-rog+;Xc#8&&lHbG-Hcj!D?FM=C<q<xoIB+
z{`iGi&2o}NE$26LS4Cvc`htq}bwGmVSY|s{BA{4ctns!LkebmVq=KaL3XMqZAkat6
zYT&@+&>~eV`HTu8pDCr=ZaS*HYFEM`a|L4+CT8auTl|BCDXLV1@8J<G3}2a!?WShm
z;LB?<_*bRV;LG5sm>Dc~q(w1naxsm47t=^u_jn^~t}$VQX@sv#Bew<`+056{NU!ZR
zf}MvEBX8*zslU4enS!pFWby`%)(Fpf<C^uv9eS(Bpwbg%MCzCGAuW_Zp$>V56cj_~
z&&0^`erREY#_kjdk>~sle88-|%6!^eN;t(>3>?`h_O=t}i}y36JVqHi;DK;NzBSDY
znQ4f1K)Uc)<-2?jzVmyXZqqd!hP;}91J`H_C+7eX145d`)-HqOJvKt2kxu~)KaG7M
zOj@#46lLm}yxXQcdsQbTF-mMffKik?)32B-vSe4@^!dwW6fu}zW(%`24d1dQO!o#H
z8yFzbu8S}klc0EYL+hURMO`WuDV+Kv*Rqo0Xcxk>gUqen(l=7KPfs);#+tJjVZir@
zOwZ6?y&`q5f=qaZJ|GDvZ|g3^FPhA3Tn(<x3gyF%eSo97e7;p(so0tTCBBs6;9rY=
zcKsHT2A_d4VFVsP*p?w~c*@G4{SavW@J`;MY=F~bj|f(w2{rML(y@rOqINz5>0V#%
zlTKfu74M`Uf<Vb0bU#%=G(woBkwK^OgBJk>L4-(Q$nkC)sd6cmKrZtEbZi3TTtXdk
znSn%>chZLxPJX6YL@v1`^084J%SP6AQnp{mvJZaTNm=R!_}#nma{RkzWg-6EJ5rxP
z9Wg_l+#ms6Z?K3UW_txAD8v%tqPIz-9-E8eNr)WsQ6~*zMM9@lzgN_uYRN0qZs~`U
z;V_8>D-SS-2vS2Cz;s{hgeeDnR@_+M#8)N`a-!IgqJ^pxruUSum_S-1WlYCFww{yj
z(`*xP_BUMvSU4nNFev4?$T_gvww^bBx9z$L?fwv?G}=hcN<Np?3$og3Wz`Km^uGF?
z)f83pY7k+-*y9pkY~{6R{LJrzV!Oi{4{%DUmyHb_sDWLwNeuuxJs;lBajAMhGf%XL
zDLard2REWC@TQbhhC!6vw!RDuTL3vuJ>~h|I8K*ykFiZeVvmH5hs7AQDhLS>v6eCb
zSORMhIBQ<MAb-w~Hti?e8nAQzWC!_^lgOX9F}vJub19W0A9pS#p@8KeBt>!^@Lddj
zi^5l`ikv8>k&E?i40(J=vG)!?EZ*U$96(+xN+w=MHKNUHDcE@F$4S8e0HxF}m>#53
zhds#hebmZ{KUhzqLE$Bpl`Uj2sjMuynVsth$VfE`s$B9@34Xc*YKtgi9Fw3SMOc{T
zo%gp*fG8dwfY?GvZ%=eFB?-ac5iAzo`%?X%D}1U+tNaj%2{;r_-Uy(i4sXJQ4L7h_
zcI}x-H?$HT5ENF-NCH4ae6m<%j2VU11j28;)HLqhZ#q!rBu53!VKut4Rl71#&E0d~
ziB(|24_ntr2S&j}I2!3-n>pSmrx}vV<6a~jDj?tCo{~<L=<It{EvHoc81NHGqBx7W
z5d{;Ksv(E0<!BIg#S<sTjPq$cM>vX}yIlK}e@0=%c~4_u@EprDY&dl$Ux+|HbVytv
zBXxx=2C!!cx@OuTw{p3BFhT2*KvHCgiMOWz4hf_5uOLCv_K<Hdq!8b2<r^xw^qtaS
zCuZl$mPrr-;TDU|&MgwwFV1y%bqBmQfCmvkqFqy(j>jwhHo+8HdU)xlD5N=*4{?_e
z#o4(ku&4yTRbc78aH9fC{h$}qv?++0=anC_xjptRl6u9BqZ|sbveJ*rQ9r7#nMF=V
z{l~KCih&AgY-9r8+f1y#gO`4f42Z}T62B-jLn>pKh?`b(gH~p0O#))PDzN~J1Yid9
zy}6%|-y@k+z^qd$MgiS%DKiUY=!G-<PgV+S@h!>$bxWlb;6;tdFAi`Mgk~EnrgYTs
z-_Wr_DoR1eoS|fhsR=T{nsiRArH`>AN?&6~ln~;CAcNj3#a8}+Tpp1Fe}m90Fr5(^
zJy;QiW@1OK-kQ&ftZAyt%@JE?vIz8d=3Z$JBOo#udhAR;w3SaFBG~`?>(nwhsYIa#
z<HX)kuo9r1ZJ_N)I~q%HIfp#OeoZDkOfY4D-kKue9`3EFO2x&J=z+;ev&=U>q{)E%
zdRPA{ZZfJylQ2Sfh?sP3z%FUpraMSDu#dSVsyOpXBouRplwuop#jp!ufXeD7EJwkg
zU|)60aur)p$k2-8<EezzrY1VE;D}EeL|Ab$6R&RO8NKQH=())(@5G;pDX0936`9sR
z0k#$!EwOb+O5e5CQaXIl{{^ML{6Z=1M;D!S%QesWfB>Il2f&d3RiYkfwRq+n_<w=t
zMwv@t^>&*Q)&87Hlz4#uG5aw`BnsIPUO}eqlUdw|ccd6SJ0PszOZFp`HZJ_Y((dB}
z;<Upt!KO`W98y5YtPZnJ#A9re2nYOIi2z&an;;3XDmm!zle_^ApCbV93UlQOr$p-r
z#VeC5$fMTsht|FE81T99fbxn8_*N{nwLIm7pGh$n9>9tWbTD0nHr9vTF50c_(`=(j
zIi;jo>_rpD|11Ww@8|3pcQh9#y=O(??Yw{}j3MwqLfU3$QY>8DO3#*n3Y(Pd5n1>;
zCKdIF+#>tjp-Y*C&K&>HrTpU?+S?4{5qq0_wXeRK_oUz3l-FW0_g@!e7(0F(3;&6k
zL?mQHXkea<@XQj)z}UZBvH!7LF)q!k8!G6<qe@hWv?zt>*3W`4$$NGJy`4v?5Q)<J
zVV~;jj)W^$<*_0IC9FK5j%8AakVLQQ$q6dcAEYR_W$jMkvPkV<M9AzdQNS?#l;1An
z4l6&a;p+9K5ra05aI4#k>R!Zwy!;HIFwglL@)qOZR*=8Ay%|$zi#M$<##;X3+Sc?F
z-QGKuL|;X6zA1)HM<r>H<Fj$`RApnfVIyDdscih@ai5LyTG)90=RuNLHpYhiobr6c
zXQ}1+v3IOI_uM}&&p%_J@prRxW*4-3(GrldQQ|8YD$1Z(Mp&=;q#i;_1kz?!1L9_M
zyD@Yi#b_~+$e1rTi;WLB3ZrW3YGwH}Lm~#9dMr!HVJeL#sG$^7N-0;;82Ezz1_Rp-
zM{7w0=l@$^`!vpHXZ->)a+w7TQPK!9Fw`!v-<1_qw$YUp^5DJQBvye&<y1{HvWOJJ
z`)XCy%tQU?SUwTCd*sug-1(|{zU1Of`T-&G4n)W7(P?zd9@>OLA7xR|R2H>(wUxk|
z2FE2ZQfD3d4C(g-ddKHrS1Rnh_{@7$rJ1<}A>1OvS0vZN9+SuM?)toQZFgN~1I539
zY1Tnm<dX0uXVXmu%^GIrI;;q<Rbt^n&Apg*G+1WtTZP0kbH|!{=~5?cyy|zQk!hQm
zTh5}`{R0fI;7<s!9@mBNPVVb+Yj_1Z4RT$eX!%)|ch52SVE?J-ee)|{2~YR<Ff~sb
zk5Mtsp&0)!=6A!s%2SnGle~e%?MQq|2^Dh29pq2!#*ARr9iEaIQU1XzU3r>X-#lY|
z`AW7YbVHZS^R2JE7K*L?IDujSX%1@wyAqTVJWJVmgA&)!tQ5Xl6uIxk*g?qcbKW3@
zsQ}YHwzkr!btx`IAFhaD1afP$DD*zpzdcL2?$u*>nKLLjTc=2<XtYD9572EtQ$gQO
zhYVn?7F5xz7SpK<9cVZ5&AsXfxNGiJ33TqgMHBNK9KMFshK<xF!9UEvPl!vUrW!F&
zpq=Iv{NxOzQ*v+)*$0}J@`}%tCrAgFmYUI$Ov#$u5+Kxxn8z!5V>k1e3Yt9hE!~-B
z1p$&aUR`Sfvw<lqVnZzgdg!A|e6129h>RSRq*WlC`K(nx8~65Js6}HTA%c81_5I}5
zJoDLl{p|E=-!3c0457~N0OV%#SsF8qZs`5-{%1lEX>INY$*qN19JpoaX9s*t)c}yl
z8is#C&bt<Wx;y3)(T<Me@rO6{JvAB<Z_7Ad5!k^$%1D7>5uX95*j!(`^c8WbT}z-O
z5hrd$IT<TM3Rq@8wK54>_-ds7E&PZrf3LkA(@kdP>Z~d(MS1{Fn8lb2L6@~jf5e00
z#zTfS>0GPW6e(b)Pa!WcaCGBtn7blVR48PalLe)M+g}wcMN#`oXRpMD^Xupfu@GyO
zanx1s;uj`aLpCY=v6px+GtCz3FHEa_LVsZj?Ogn7YoVE+F90@GX2!pq&Qj6lwlCS`
znT5K7)n1L4adkj6kbwh$!)CO$TnG#2&MT@`9f5OKLZ2if)rO6naZNVrH<pc1lE856
zb8C{>I2JYWk8CWH)~4n18Q8e*BR(7T71_8rQMPu_NczUqTBJ^r^pI8cD<-`K2k8M!
zPN}*H*A&ysGIwsV;e)exJbb7;ngKtnlF3W_mQ2_z*TuRE25<<|n1Io0JvB=gJMbNH
z#sE@}<sNmW+yYZh=kCQP_n}_ev{=Pzk*-L634ZXaE~FwlH~HyfjLE-sm!H$*!&lZ=
z-s6n6H`P~GllA7+ex#8b+WR424CJ+#n18%SZ5Blql~&SV(k4Eh<JbGK=>g3$_41XO
z<-6?9e!cQq>iw<M%g|p<g<(zH2X9+!RKsKStEg{ZV{Ee|`ciT99d3co5zfse*hT0J
zGKJ<IYRbNXBxW&#ER|1>>t$m@i%3kzp#jcznfj*kxmv1(K0;_13YeZmaAqN7MB-Qs
zjAVPQ&+|L1v>>vjB&WmmAm|U+8HQYGfg~$dS`=XRM+ufs6mxX7FK%?xwo!F>cVn0u
zF-@eCYe_x@tQgf_BOg9az;Q}s9!n_F7}*u*QU@~h6B@(WC<2{wVNR*(E9C_3crdl!
zd9pmQJMdIC?T}SBZHC=4s$mTK!NU@F5muZtSbsf`DdBM0`Je-}y8#dAQ*Jt$4~Agy
z${*CiA`dgD<@U~oIqwyj9)nQgSNF*D6X786t6QY*Wk4d&>KD*7VCrujbsLErtlL?F
z1OpN`GVdDlKHr!3)k{^6<{EkDt9@0EzPaC*cX=%&z2Y5p)hh3{$4~i8V+05?Y-anA
z(?ybV!4Rxm5tGUl>n@~Y*Jr`^+|Ck1Q;2f3D5IQRR|TtQXGW?6jaa=Uxl96h+lhV?
zd-(@QB#&W0_5||_1~Qp~6COAtv-W$$4#z@1_iUGgBUXN@X%p-!*#2r!-TOF0Ns=Zj
zx%C;&ohWfnz{wEH0@;$2Fy)hzO=QBsJF&j39OP^A$=6t=<XdFO$5$p{vS5x+K6x$V
z`_<b){4DwO+^py;l9ypKB_xcDvSaykmRJ3V>K%Hh$gPpSqGq^J`_D8iC@&$j+vnGp
zFve2KN?~+s!`{dal$GM3EbEBf4_ZKeG9q=qK>hf&Q>4y?AmA4!;c{hB5=_gR6eiIv
z0EU?dA^>pqyaGU^IeY+Rc7Xw~-<3Xq`Vj#fylnu}0ALabBjzgz!K5k-Z&(Bkv7=n;
zWM)DKc#w996YSA_eR%X^!gE{)c$C<)h0Zz^0CfZ{PYGJDkyaPvHpmr6vGD4Ko<EXp
zXqc@<7@U0YW>6d`?g>ok1?dI@uv(2<OXC-2%WYAn>`_@EZ|dcs+xWaG0B)8nO@zHp
z>mQi>CnC~JK?Pe{cy&Y5$N5m{D?;_BH-b=6NMkqtw*&R}Sez^Xvy1@DF#-Ud`vL%I
zh!Z?pnpFwak4W%+6PhJ45(wUot;~}Ipyrum5E={!Gqwl9?U(yJ*N+IoeJg{QcK~4`
zKmgSdM{~FYzc9=3F69TNq#xOlM(qm|0Bn>*AiS92LaSUc%*QJ<211#dU_F{S>Y)VF
zj|uJCmSkuXq~}#kFi0ZU_$N|o%zA+XrrW@kMw#6fJlDSH!=oP)o>R9C&(R&>nfy<M
zN4yCH6rN5Ph;U?k41D8KpMm-jL3sall0+griOG^==$}|G#Xuu=E7y#oxw-Upu<4~}
zj(^aJ&qk<CcL;%bWzsOMclkD5UW-jX+X#&e$paIAd74HqCN~Q4PZhFpfSa)w7RQW;
z+_yBgW}`yZmB_~%e}yaw-aJk&7wFyDdih8nmgwE6eppA=^iqfYieyvq+I3LXad09o
z{;^q_izxxvEVQYzgcL2}$y%}qV9Ae|)tfOPf>GaUEKuZkwafDmr$9u7=wkXARf<Hz
zqA;<V<=xnOb9>v%Nni06vSuss?#Tw6WpFng*SpF7N^{7h+8sMj(Qe`;z}fj2ND@n@
zmD%1hRw~d6qEJ&OFuw(2!agwVm$VKeFJgl(-h6qESVt-thXwSt%gdK}tNQ{8ZUF=&
zE^_St-|ooV`MOx|8(0r4){_uDI?qfkHCIG?>!nr_&~7wGt6VEXknAS|NQjxt<Uk?G
z{tJPZe5aG|ButngAeCrj&>%Nv7@|gQ?3MyLfF=D&nfx@4u(_3J23ax1JD!u?|9F$6
z0$@^qRDqQ0sSAWys>coBv{^bKJZ8qTVSt-M9r5IbAR&8`j~lc)5f+d+M0pi&b^a*R
zp-g{Ktwl8{P(ccmbAH}sY^asrU<%t!iuW|FpGR)JV$Xvcgn4q9jl_cK=xZTBAgV)<
zg{zZk;7n>WCuMROd3=kxe9in|%JLRmWXT}E;-4v&&0?rbile6d6rXu7UMdRO)CY3W
z2B&U?J3&4~zK>+WD`Ed((+=^9V14EsbDfW?Pwr$sxS`Q|(2NDsD&DCFeJ|ZNDEmmv
z+X4}Duq9a!r*=t}Zc7$%|BUPz&in==hdQ-e!&uED4~{NgG`^zp((zYbFs`_8bJfn+
z*nse)w=H8Ss&^?FTOO$&Wy(K&adpMGOMiE1WpUw_s<To4k1Ws5&Kv@c{#^rX?Q7>~
z{NWvMrre<}lQD%l3W(+8b7`Rcc+H|=Xn&VTz4S2}k1l@Zl8djr`05MBU5ahJtM-pP
zbwl{~Q`)b;xN7gn!W(ujs%gIntKr!J0tngoKPKyqYqxf<Iw<ng(I{F~8L7V<&JV@A
zq4@9o;<5mJ1v?BZzMmGq^a81wMGw=Wb5Sch0I^53XwOJ}FL9<v7yq;3>PxSzyx>Am
zaI1V4#%CA%pD`a6tI*GSROL4wJ*EB1sw*xQG%^6&)tAawJNa<2F|JUJ{aU}mN}fC5
z!TDuX<?jpps(Z0eA1wq5v&W9k#n_1ZBYfOYj3A>^dJf%P?beKl>p_Ce!!s$&KsZuA
z62BDbYc7t|AH+MQQDs#oxVs1~q{p6+-WVBzO_U%<M;9-?pn_s>0mR_Hk@{9VHB7m5
ze5C#r-YR3RteS{gZpDM3jG*Je8gYKXSw>C<ZqSftN8}_R6+RE*fW>}5*ajSXR^>a5
z1D)r_UvX*W#aC2RI)xuZ>eu33WZ`+?nyuGG>fgW(faK!A^w^91Dqc9Y$W+qyG^=WR
zlK=Y1w>^maU1Fao2X=|QYx#BK(WJV2+<&=YF?Q9*FuhaTn&G6ccW7E^+P%iLG=E}3
z8P~uc59Do1<%s1I4t!PwqFr5Ph!$JlfoS5-!)*(l=rHuaLsN{g&?Q6=*fcLApBtN@
z7m?H$9b*9#K4VkqWGY(69#^plM{YcW^5h=3IRV{p5M6qMtepXXB=w63$z^Ml0C{4u
zwnKn}5u%d-4zL<(3E+JdAb@xm*ggj*@Wl!6@j$hfN`Nq%?SAmjMu59jI>NCU{O}Dy
zY<GR$J@yzo7IEVxr#2P)b}pN5;|4h9B93Onr2CqCm;X+D%SC$mZ3Hf6F2Y>vV*L0+
z{L8hpMhWpArg>LCjZ8F1f{nME(ZggfpfPkDAM*Zoz3*=ChwA-l_WnPV;l|K6i%j`T
z^?sSX56S%$rTZA#9)F1p@(kBb;PjWulX2!S0?W-A6ZS<+SS0*+z=t&4mGYlc(TEKb
z{Sv6#FA<1F{SpwllqJws-^x<_n~g=PwVV4@HTd6TnQzkBZpvC|t?^PJ3zVR?z>qi&
z-Ik(i*1v$h2#He9>25-8=1ViaSi+B!1{Z6$bdOA<A9dVQe~=?bA0TNHgPfP0^cGl~
z?v*DFZNgY<fS4G86_7hesx!158Y4H<+RG{lTu7Gp;V;eBhi!M_MAqAU>d}6rqzw=v
zmcUG6#XfTvas-5ZgX6o!M?k7}7Ez471gqiK*%_Znq=Y&v<8^LG?@;H(33bxUbP3Li
zc%AoltTR2KPR0pcs&nx_Ebb?Etn(fi1|N6mTi5EG6|Zw+S_j;@Xv41)VP@CryeMAh
z10Cyp6PAf}rqfzG=<x8agHCwO=ZT40vNLScIDBGl6R%?MsiVvEDU1`G`+<-*{10Kt
zfx(~9hn-Sr4>~>#P&T}&#mOgLn$#Pt4fWxhEDBhTR+wP_Cj24U_OXkLY71cLZa9*T
zL;M|l10!nb$Wm1CJj>f~WWW*ggQ|#ck>JtVnxG@YO{9XKE5<WhfX_Wg``}A@68}Ko
zR`9p*W_J-@Se6d(7Nvss*sj3q8XpOG4~fG&OH&8CrGht+o>zgM`OF>QpilgRlNSUy
z93OKuQO_3bCi!xlMlkNwFb0crd<T$&6_sEs3u1L2EGFJ_ok#jRycXezn2C$DcLCE6
zE4@5_nfHe<sK|A!%J&3#B2!mEk^mFBBjXqY;2(vlj0Yg!#FqdokKr$@&_w2_&5DR3
zr||^v9+@W=8uB{#%QFXw4|=@>pjDKlqc@3&tawNZ=jCB-Dy0Phl&<&87t|DeYq*On
zetALsatwZBc?3>hr|~LaUC5EM>Js!|r=AVm+F%5UK<)C<WnT0gQJ))o0C7$iO%V75
z{3o0b+(F-Q01UW`Ea$-+p@CA+xmZar4vCNPo+PIQR^VB{u8+)ex{K(GKVx0B%X5}_
zKkS6P=o$kMB(xuy+C=Il#TV)kEevQ>Iv}z@rIL9iCL0<jG9Y8P8MVupK+sfxqaH@D
zh0WKN5`2_88&&=W0(K6rm8fRO3r=*Cv*~>~_-4=xq-;S+Iv!R6Sx#c3CyuwZ(pO?{
zAMC9Y*~QBSlCi-`X-a2UHpf9vxt*tCanpp!lfMbx)=b3eGSmtcPNK(+N)Mnl4vm5*
zK$S)fWcKby3sOBX0zU*9ta8RtD48P~`sd>WDC~Svf(%CC3zL57V6HDulIIlP+V-N+
z{hEq5wUqS4h9=EUbW3p*Cqr(<1|?TNud<T`eq}H7-YXM~jt>E&3y6_6h+f2=SlQeI
z=m=KzO_RS>43h0}5<c9g8~hzhe6VdX|B2^(fYQBjl-iq#RRyuCCdbR$c5cWx(s7SR
zPI?J!dSu$8Bn=KNLchn&SP!D&sLOVquikSr&jJJHre@AzUWu{rrV+KRlQFbec|~n=
z4TkH|iwj$B_zT%8qEp&15}RGRp=VCleh)jk5N^9ti#nU*-Sg7dpt<adBVvgl4X5^`
z)4!ac(gR5><v?Q%z>5_FpOMj~wm&jC)F1%c<)&s@Ce+j%EcIb`(D*;-+6A;DC=YI3
zZYjwl`*q30rYY+rTNItA*(29nfp!7O%-Q&VkbDY^Bscav6*t^gWd%;hK~R9sDD!rb
zrB0QVa&>^38yMD2VL34ZWmt-hiRO1Rbd0VV+CB;f5=1JX89)bML*y2w(@CwdTr90r
zT=Hpm(Nph>Vd?~7IO{ZP264u>bvnNdHxP|FGf1g;L>6+RNJ2_ck$f32yJZ)&!iji%
zQM*3f76Fx{s5Cv24k5GWBMg<GUf%Q{e?U6GFX7#Q6Z0t1&?;DF3S0KjHEp{_77puI
zyRp5fVOT$>eHrG`PyB+^tRF-mkgQuToV3|hv$+KV+&fH<`6-$E#nwRvNO<P)y8wj7
zJ}2-J4L4@4y6bR6;niVsg*!z%(b6zP?}K~%0Rn9Ub$HQ#Y4;Q62}lsgG8|K#)tEU$
zYPmieNz4gO^w@09Hd<{M+KMYEB+T{fZ#VQqpam%k0K?ud5?cU<MS^La%x^Rq#8Tma
zk+CVuDSFGie;ojOev=bz@t(x5SOEkyvasLAWi^qymCRD0swP4Ko;J(Xtg?4Q-^})L
z)gpxCp2Z2cb{!I|NZ7(W0cN|^$aM@|!?{pxH<VXwHJa|qJvM`E$?{%bPF*(pdxE&K
za?|LJm3^qXL%l8n5n{brF<Hh_sW7h3Ee9VFLcw$$x^o9ng3R0yR&rEbL<y`W9cm06
z#2mPxw!1AI;J^u3*qimwpGX9fd#+TkNlFUDBHp{9ku!~K?kyAALi56u$jp1>V!U{%
z6WzHn^VhQ|o7V?q^H|E}ad9}!u$O@P#WM+@f`+Jsvia?uQcHqt&LAkrpRy}&Wpj@G
z?S?K0v>-*Lg~r4dx-JpkpghW^w-+w4BgL_V{?<dV{yQ&Vg-ZFf?MXR~7_ED$vX}GX
z64cTj<5nZ$(PQ63AmoH%zFaCV??rY+w~U&}JPZ0Y6~K@j_-K%Jf6L`zrat`Z4L<kF
zmHQ_?6(p%qJ`1TRAs{bHrHpfa*w7w(C6K&<CrR?Z-?Q1I^QT4bAi-br9gHFDU<u4H
zcv((YSJ9R^s-ahwOeaI|vw@cI7U2&!7=@pXzUc69PdH#3RA9GgJca{?$d8V`T)c9N
zQ~3T3Pt#90^b_TbeTzVolTTKuq`L@fAPJp?A*+P19lG>u%z$OMjeqhr>~ky74G_Rk
z73(izY+W5=&`asBAr6pwQ7-sgffGI!i5eVj?cMNSP$(Akv4U_?d^WrtwM@ns56rFU
zR>pmD5<SHY)+UZ8>UiOjR-9CzLw*pR?zPQ1>>UU^wOjUyO#56o$mqsB8#pac&<nqb
zOutUvOw6sQZQiFLqpuS^%6L(UbOBVh_b^9!l`7IVlA$??l+3nxQ?`;4ldg5hqrw*^
z@7K_OH{Uv7#Sq?71H?LjK4U?javT;hU~vgK(jP6-AxdZu-WZPD*F=jc!KRIV9N~y*
zHQGYvRJYyAugfUTum=5ey*ud&tYiUU=ES)Ezwn*O$I!Z#As}nWz(yI!CZkET%U&G3
zJuL;R$@YfP_M#|+K`=)9v0n<)kvV`QWeD8b>z0;L3B9F?6HL4J;d2CDYVgIW6p*k2
zN~-h<O%V8xlZ?y2i;5sEDoG0j+1_nZ9lVF(1ABySnT-VPfxwi_!+?FyW@$oE$A~@g
z0`_|lpb9}9;<h?=1d1964vj;A6597jLTI<t2$@(E2(>-zxmzIc4rpfun9yRlu8CC5
z>)7A$2v~>ym&1fR2Nya$&ll58?fW6kNX3S6+g;2876ze7Z1d0*nOe)*LDABN-6$wy
zo%WZVP4D1vQ4CvrnC_s1%&?z{PekU2Qxrh#Ub#wP0IUM(%|)oeXA%%~%%m)BdmaMu
z%?XBsZfNd#G_v%pKWbOFM~U=mDmH^STZ7i1gT4GyN_t?Ka?^zCi3!ZoZm@jm6UI4i
z22MeR9qc{=V8WcP*kFWSrs208LMZ||5^Rb9_HK5fy>q?4m~z?N9*Ss%NdhD>M45oz
z>l2srGbhl|JpLp>;P0D&z=_ZT%iRv}zozhmf#Ya!`A?i1^DH+E4w0#xjFgCn5P2lG
z$cJjdnT1gTEHt4C&f_+~gAQUAplJW3YiIt(4D^&bjYqvt(+}i(Tf4&eYwg!cAkiD*
z3=8So7FY$R@EhcBV4aF!ot$M}>4}2%(;I<xZ-aG`J)T0_*@g3>A}AL;FX|F|hL)Tc
zl_yxbp<h3zE<1;)=b7`OzMtT`>>L%VJOAFnWlKj!YzJu-$06yks9TZ_i~0kwN;)j6
zTplGH7Iiuv1rCckUT))uMI9lx@x!9><Tid-6n9#y*&07AYG>SHK2vvGD4+Sn2mA<~
zeyfk9JPdoknXgD@kxL@TWBEzBL?{Szd?dZT-+@CHiee@4=S_;wcKI{u5<MSk@`Qx*
zp@!V6?7)H?K$**`u+eW-2S~$z3qoq(1F!@V5C_=7Tj60IYP#T$eocn4=NZO!0q4Qr
z0_R;pM_(8DD+&M4yN3Tnl}$b0EiRi0=ezZIJV*>mEKoSF(nrCtZR@<Q62lzsc1HqH
zN@n;q8ln^@ke6fyZBq-vuHS$t+dAKkd56S!6s#QyWW-NYV_+z2L~T?4$cB+ejl{@r
zIych7Am60p9Jllb`VMaC*6ci+d~o&4j6j!c;lb6Ioc*%n_PW)1eQhy)Q+vkM^I|d#
z1~XO;qnkn7Qvo}B?V$`ykXC*D+AH9fM@EMsYhj!<V#@|Xh1fDNrX=bJKnBzvX96dw
z0>%$sfVN(p7{tuG;Hh}-h%QcAhblR3w|Jk963aGTFRQ->)!2PbmY)fycJ$3)GfXoo
zD`0!@9b8|*mc8_+_3X%OCv@Rv=y&briyRkzByt;wI}UPRi)nY><!G$!PjR75lGonK
zpKAJ#3i=QH6Pk6bajkKOfFD_$O5#oW2XQp68TMQPQ@{rzfgX}5wmo1e<j<``VLK}f
zw$}TW4WpubS{o3H-FZ+JPOuVzBX$Yd&-9EmM8wt_!W|RY0=){LR}JA{?19!HqU<)f
zp+8LX1sZP{733wT2*YBnRHJv(j?^Eo*BiDTJbEoLc1WS`Dd|@>A{G6xx;xDqzTjt~
zUj_&2|1aowWMc>Vd4CC-n6A<9+b_FBze6}#AnE*XD<%|soZTRNm+YNgzzi|-G8S6l
zcN<jtw;U3w9Z#up8)i}+Fp02+-@0daV;Xr;f(eN^?#w-<7!3$EjifDs9SM|r-P!cH
zlm0R-j5RiKLxT+_X=~K#I740~pkh97FwOLv*(z95UF??TH}r<PJtMziOaW{g6-5k(
z<oPU~Mp0~ED2IwNhjl=B^SrxBA=FkBR}@$TJH^!OAYnRsMv|MP{c+HS+T|5E<4$^M
zOoF?iXOA|LN$^BD7`VZRiN|NRXZ8~+pm}T#%1KM+p4E+N3Ef<rTZ78kX)lGPj_u8`
z!fn9DX0Se_|9WY9yM&hyes01~?w5+_v8mAE1R6Xue0wyQ^?285&^DdH%2?n{|GZ|R
zI&B=1g@-x%@X>J{H0t<=RHL#<Wh_wElp8BCJk<VsQgRj6NqOqs(FW~$93%G0@yA#y
zK&Rs`aWNHh4FwTbN3-oMc*5$_@W?OH(k5I(3`z+R&^qo>Maz+gdHQh0<vv>If6&m5
z|8p{06l(q%wC3O^(-exHpPtYm67o-bBKT3E;%Nmn%X@%x@^K6OFkKNS!cTEM#RLKs
z1zk^)Pp}#m<OZm3Msl)02lZ={{Wn~%Ilq1gW{zO~_G&?Po^Ctqnk#gBvpiSpmPUSA
zZs@=Ux$&?$3*O>t=0m46WnZF4x2JT+k-J;+Bh1+P1bc@gwVX|<3b`3I&g-qnsAF{-
z>R5=I;vr46KI;h~b{LxeX&66{yK3cw+NH2&M~hJ#b9B1no(8-6qHi&!ofs@8hsFb;
zS!X5{mQ`)8TG5i|isHC^Egtd`CK5-ce~*<9TrAj(_DjH{8p46atrV+b_t^Y~jDf}O
zi2R0;1JSeY5@ioGloibbc}-?*ET<kz?d~-x(E1AW>8mvUUJhg!vN;KNc#BkpEREk%
z8b2pAUP4%j0y1}z>9aVc8<v$gDvkFkc29-J*atK|1HimOLh)>;I3<gtE1XSjfN2kb
z37*J!0O#qrm)jKM(vd}|v;@;7U~ET6-z{FU^_Y?&?>KI6M9UwJj($`;<c*Wu-go21
z8M1OT4rrM^9b<^aE{6IVdLIE61B@fmi{0M<3^cN`c$0Uco6(J}(gh+VR04^yjYE>y
zs;YHKI#Nb#b(t1}h?!Pb7Y|v9Rv~<7brsKYoBkxD8Su4<G=PgNVglJIc8|+HmKjp_
zcw9&JP2#cLN>HNWIx{TDz<Be&?4jx;TC_p`02?T_Ghh#KtqO$?oeR*8BY!R%hD|8a
zB+VE&yTaEe52I8NrWZ20pUtj<bZ20{bXNaNGpK1)d&=_FD9R-3nMcsYAjxVzH(o!n
zyKu;3^fC!U&DuDiXuHKHs$E86hJG+Od&?T6U^HZwGr%Si+8-m+$MSJ~6FESjN4$`c
z^~;ERET0Z}JCP6)*MJTpThf6#xm!@a82o_Kq!u{+axth?;)_{vT+ASe#XBfzqaj8^
zRyc)QBGdcA`iZcOXy}~}Da#+xFeX2J^yO=gDjBi{xl~BqYS<^Vz*X-MUVyZ_iaegH
zoZ%(OOhM<o8Hv{3W?3gL=$Il=j9HK>=+gF&lM87#Ml@uEX+}mgj11$9-#WwJ1%|(i
zQ}Y+1S-}O}qFV^X#F@FF3lGz{!i;rDa$1sNl?bawJ(@Vy!2xx*0$~;FLhvYc!6CCQ
znTSDY(*~6PJU4bOUUCiT9O8<>f@-+tb;A-`tz<AKt+Ge@+T0YaI%w6<3qf7A&r5Fn
zz^Z9C2uDeyHW@n$t_~UE*wf6>yP@k$lZ+;sP%hB<)24~=m{d)3aK||P`X+u(j8u?K
zo3Rr(<mN`>&jSKJxlfXC9~2v?5PfEM0oxWtOCL!=jO|0zb~{?t`9~mEkyWnPgNVL(
z`~b$f3^n1Wj3}IG;Q>9ua*TqR48{oi*MLKYr6mU87#BpL3{26_Io?%nO?T`w4l<(R
z86XHnK*SsknufkSM7d9%hh+waG{h!zyw@M@&`^n6+AZKC4AI%NGynrQmRx5mv5gpL
zBx_3<45=uZz|GB^Anh`9Khuo+$47M#2xjZ}-l+-gQ`C*jn?Y-|UPH9BRT~sGvtVg#
z1N#&}w1Fi$01*0as71Vzh;ulJvPa#^@m4=X#Ql*VC>tj6h}cVYkP_05@-CR(C96GU
zM9X4o#@F4<Y0{8l+KP{uW<Z0|X%bAy(o2#WjI-2Ysynk#c7$>8r9iSQ_9%w=yq7;f
zH2IJ3Oky!9Kl5)knH0~Dv_Ud#hlw3A45ir@1nt@QB+VOhBj^XpqSJ;!RETgDmT5Ao
zE?jc$HB`B3T77IJV#a3%y-bRgJLwz9?iy4<*9enHijff%5T=z9LUj|7NyWA-ZUBtw
z+{QofJ~~8FVDG*UZ2S6YR3BfrE;k!GrSqR2!9;0<(B%>r%rm>Ynk%R%y8%WugqEEE
zZ3tZ>A25VI?&H8}M;TTJA#&LHa2Rtp_PM$NlLRoKvaSRxvT*-^y`Qf8@Ev0Br(iNa
z-v7qlZ^le{+;_A02g^N3A#Gzbjn;jTi^EY^e`P}$Jc`tX<d<2%a2@-5HF&~5*wgO2
zuy<9b=Tn(i<_xGSWn>F@f;iQzL%LbvJA?Tc(?`)wGV07e8q;(ijYdPVDa%Po*(<~+
z9jX+F89#x3SzgPM0LfYuxN+CnULMvd^N~PsM*;-milr(z1Y8Y7&3v?D5Ip<$O_*>2
z8OG9tLM$5j@{>bRMdnw$fI^C67a9pYq#r)KgCDvwA~{nhj>!7`ov=$0c!>4;zhWE(
z*_%VOWUqyLl)rmK>NE|wdC#iJEU^s|PinO!R%rxlDZ1W2WH(U;h<J{^3GBDVhDlgc
zIfbs!$d(<a?~flOHV^d{slsqJub7`+?Xz27v0s109YKNHAx><Q8sn3|vDD}xX9NA8
zQ)B)6iPW&o=lxvFz_Ou8{jM}>2~siBD4uu{D&C!OI)L4qsb$tyF+YGsxc%cj3HLO=
z7X&}1`2%wTZsV*b(NIh;$E;=P7MTc*n=HxHcfg_b2ad4OIuec;lARu0&V_In=cZB4
zFg~!J;{)rxJu$)F9$}NkSLi>*j~E&Yc=-oWI(CAZHJQo;v&L70^wphb`BEmY#i$Iu
zH7I2}Xx0>~_~}B5lbtG#DXoC9n<NvAM~f38>C}|O4-r+skud`+#6Tcc04zw9S$yad
zB^{IREm7u6#uhQXT>BhwqwzC)pli+51}0TJ1k;=`!Em`ymp&852kp(&CE`3mvF-<&
z9C)l6C0o-Md*aqeshaFB?q;YXfr#n7Sjm~iZ#2E3*<wt5-MttySV|Cm;G9VWKN@{6
z(CRTW$sH{1&DM}EL1d>Hku`aEb#;W7T?ofL>QMIH*Rx56Vcz~vsb=Mqex5+WoE=cf
zBmKm@0n;40vD?>OQ_3`mtt8AF<;GFD?W>5SaHEMZf&tB9jtxV6MpR=ayJf_BDS~}V
z1T9N9H}v^i+@6H>F<b)u)4b<LDZn|@JOFA<!6a^Dgw~{MjW9W%5c{nS3$!N4@Iw$z
zu%uA)M(~&BfKidi&jPK`uc$3U!S)toFA?G@aT^H2$-pw=h{l_RkedBshrf1b6vlz2
z&XP|v*okCzqBxo{^kjF;uHli514^$vJZ%(~(iav-ONPp{?z*k)UY*$#!A=3{Ot<4s
zWRE$f6Qj-E<3D1%py(zpiba?qgg}@fSIkQmyh4+%@-<tF(0@EKBdFOs<UghvZ^{Tf
zK?tE0qB+vf1{=L67FZSnJe4e&@L=|Ou&ST}Xl3pkkeCvT-ZXe+HtUUI&5jsQ5x6{2
zf9#DY>fAx#dSF_=6}U2^`D1ytGQ=M9n;ish%yAalM1kw|tO}g&P}D)-mUZ)6+cANY
z3VngQ-c;nBgw_8k1rAgU##`HsJls&4tPnGwxuGSaC=19%flu2C3FCxn4DB?D6L+DR
z-k9buY$O<|dx5>+uGyn_2k5~kl)zACqmLjo?2#`HIYdc`*c)LOwN=94!o~V!HoV5<
zofko{(_+UP2)0ji@9c-{=VFRg?yT{Vv6k%kjIcln>``J=$}=jpURCNZSNJNWMW|9^
z+@GpaZm3LZjPq&Bab4q60s}h4Fe_IjqFv-TQM=9!szo*JWOegN&=w;f`LNWqO-1Hf
zDi%B#Lnhb&bX3I#u)kOPjBTI3{#kw~U9U|-&3J!);-~bXuqMiHirS+y13om&;=&e4
z$_z2MGDM)Mv5r1;jubJOANtS%(w<GQbp>>$FS5PCMqZ5vg4jS<gJMH}SR^6=t3dR8
zW&SHIbK@0h-VNbSlo_UNkwA(a=Xj;}cpmXkz<Ut$p!e9lyo2{hN5B22dXH-`88hxZ
zW(kon|3a>aL<FzUG4UZqjE~4Giu$ED|5Q;=kl0{%7cW$DY!CpNq<M4Zs|fuR794=N
z`ND#&GMtmbf$z9Ioqwq+rkG)zqEhq|^t3aqy(i~beGzF_GX*s<oT1sHeQZ+B>?fc=
z99>(4oO!L`r*bAP*^Qy46Rgc2yEI_)G3O-7=68xp_{juR+&*v3g}>#2h3myU^vd;a
zZ)R;Y@oI_K&qr7V7qEj~&Ii0tu>eln^T?7o;8lI-s7gsS#48T2u@-YsR_e4sP!zqR
zjS(=TlWw2CHo;sGlVgdAT_atL)tldUi?}yZmC?1TKr{S9s4@6p?RAwC0`to3P&}x_
zcO>$fCeZt5U66;|%~6IPgm7TLT(_51%Epco-6GSkf_a#<tJ8=jgtc4qBJKs89s&Yy
zCM=MpG_hLK^Z*LT^Cdn!T7>ZYVJhKaLKh;LEnA*mF7;Sj*w|-IB_)Q0|5ekr2!Db(
zxvL9=f8MBmobbc`jQwXx_)iFQ;|RRKoObSf1>ysjEWu^AIni;N9v;d_gU{Vi)x|z;
zT9mk*QX8aovg~y&M(Wcoj(z@f+rqxEt;-7ZBGPWu4l#V_^Y>X;MFn~}Qr}&$=OTP8
zV8jl7$l1@ONYrl4t~yiwQ#^~YcD3r5p`ln5FcNNTM|I2}U~Q#T<NMWer3l2ETe^yi
zvou#IXW&X1C|x$i4c%LQD|-b}BjXj|H(#j#$BmShkaI06Bo+R5_<d3BbF~%K+J9|}
zSrcPu8}qY%rzYN5{9}Htx7&%Jy}o-(ZaqsbK3Ck(u0L>?gh9^o>#^g<F2Q#j{%haO
z?eK0@{M|J3ju8_{kM+~>cNOx^>-i#5`olaOz(~mF=X2mt)-#V`4t>fxiRYs8a%Fc+
z*IdDba*7$_w%akw)Nz>tMflYsd|E0Ab;y7OE^=VO+03|0dUi<`0>*_nE(sOXt*P9b
z0xH{mVg~81cFUm1)bG(z=3-(g)>H{ihBL8kK9h;s@SuzjXx|}2(%+Xs1+g<5UrF#V
zjeRbz0ACAn49f30*Qe8uA%%jPRPwl~B!@l-2$H0<3fC=EL57myd1N7SzuY!`5Vt=6
z5dmEt<|k~Fzz#G}peuLAd^;S=_j`GaQ8IbFMjr1Gsb3|TE({MfjL993l6bTaAJwlx
zI+8!S25`$u)+~Vf4P=G_K20(aSZNOX=q^CK!`bY*A}!)x!}zCtsac@5r+dwPMKwS6
zi`?{YWWVepj2F5Hz$tM65-Ik`?{#aTERd$I8!BGJE$p})Zx#rF<#-WDM^>c%N|>re
zkQLDZ%xunl_B`$?j(Fg^2h|dz%cpbi$aEC|uq8nNaHBkwE(|s(XMOGh-N)LG!G~Zf
zyaa#;nA32}NUc(OF(;nEnJciIk=@v5!MTT{mK$=o7ybfC7o40!4XB^Uo5tf|gt!w*
zpa+G7hj1A=!xEI?VIo%(Tbw1rS+ue!m8x(RAA-@JvaQCRVzQ-K%tt}*7!rf$_>sk5
zRBDK#jErHnDedWaEKtk$zI{QBVF9ryQY=6!4cIYoZ(O>Bi*9JA^L=-xMJU+wZ%A-=
zPzJ^S*l=TL!8yeL`Ya4gVj<XxSuiY1PEl(&hiJmZ&c)UE#QA)Lp(KabDa%W7;kp2C
z;5tlhUrrv@7-Xu+JZ%Py?1(R(WTPl*<C*|q4<ZZV&=hD(zPHsJVgRNY#0v;aksv%x
z2M^JnM0jo}Gd@5!%@pBi&Qp^VaWGMY#v*<qwg&j;*#>c}GiTg}h5bZ6_gqRQmX)1z
ze?T&45mGnvk&{Uo2VyfxzOELrk)CFpsHHhhBNlQuf|LQt0bzu6z}KX1rOGH09vx`|
zXI(9wQIZ7J8LFl?3yH9GQ+~Slt~oR}i9C6RJo$39i|j*Rp6knn7NK0snwTsX3e>TX
zi`i#&kc&r0@336#gc+KU3t&J|@HWNR_gor#2mZ+W95=C>@#`5-2FKvY@C<C_&=s*3
z{5BG&LWs@|$%nzVMMB1TNfNk}Lii`Cy(KoBH6i3~MYa3`SC9UsM&qk_YhLZ8uWpmx
z9K4NdgA<bGpzDI9NeK%E7E-|i{mJgDB9wg}E8&cg7f%THM{|v#QDujxLDh}|O#eKL
zF!c!5?S>vYTxqQ6F7B*}$@tcL)B|yw>`J$t#i+;jM}jPAvD+T<=xvz)Zr7SpY4Rvx
zvD+7zW)fKJ_P*T47rVVCxADbpO>!Gw?DjZrvAXRqxHwU$JKZUDI?L-bWkWl}845@Z
zha5DJ>M#w>xW>-s2Z;14V$JgD>KH3lm&#2>;XSgec3zatvJXqy&Z2_^2Ve7N>o1{f
z45P<iX2R$J5+(RyG@}f_31DF#yv?upk!%n8|M6|La#0v_1;*xBe_kO(>j4)3z{`q1
zseF07HLniVSBD<$tDd};SmQqvRKC<Q1!Vy7mNFl~dMf!s?P*YM{-NRfquTIh-kMjx
z)K||8_Zybi((ss{+;Bpyf?-5aNHQ8P)G;%@9kVon_Bbyq16?(H@RSDm(@d~$h6mix
zJMGNNgBP@g+_I6%81E49DR0DE=J1Di@>P1^R6fmV9ud#7Gy(m>_)TBLXQ0vJNBM-%
zSJd#6s(va5L}<i{hrYbn=1dNJJl?H{)LnyFL?nv_GK^$9rPmwxC(w&51Y!ASgd&XF
z2vV`x=9*`&1-L@A$Be;oa_k|VC-EdC8H3UCssf#a#paO7_@MC*w2{bA5+W%EGA$A^
zVbZT$7bJi3a^REoECTJ_ELY5i=atdYO!+qS=@{cZ2i&F91w3XE4Zf0wpsCUjItZ)r
zQDh;;)A+GvKT#*gO;{umx<m(<p<C2YiO68>ztn0ZxxNai1$k+?!e{b|_35Wu?qdi`
zUNJJbCxQFyrOsiy(Gw9F-2WRtGI&CsA~FEITKP55AlUq(MQWRAPESK$Med;tyt<+5
z;|)U)<Q2s(x3h+`8#D8?;T-HUgjnp@98_}H@q`{EBulp+i+Q(y2%qqxcMC2tN76Oe
zqr<>8L#~L;6~1@ISi;!ZCxoxAQW*z~h4i**1alNT9kLVyl^g~p$a{yL+q!$LoC6yg
ze^bAi7y)vsvLGOWWQ-Mb&!ur$V2n#8jLW8f*-8{R<7&LG5_@#;HOLKdEQwkQvzO&v
z5pQ0;q!0>c*&K#m<+t?%{36>s>C26h*2t-As=|?b+JTIn%eC}w=-$%;Y{7m~L-h84
zBT+wto%n<tQ3xX74gI%bZKGJxh6FD={&toyU1_n1umaLe7q<(!StJyvBSs80Uv3~z
zz|)DMJL0>*dP#f+Emx3}h6?K1_qxY2qce_5JLCht69A+g+z4p6$@1QuZ7b<2U!Gj&
z^94Cxlbx{qx$i6C&yS}j@MoW&g+GtpXZe5#t{2l7e}b4oJS6L-<W2$y=iO6W#wUVP
zk@s_m%jfZdHjpj{gL*9@#ePo}n+J9d*(j6N?}Cfk?Y01q@)*fMYN%bX7ZNyeL`)j*
z*c-q5BhwonC&~AboJCQBMZ&10l)Z6>@)$I3G<F*QbQ)i8Env)JqJ@D(n(hKuHBVID
zftLm2gB=O4qEswRu$>jNiMhxnnzZxZ4UfP3=J$N(O?wg+_a-E|%?j^}9DAM!_Vb>A
zMbg2&PMt;)f+*m}SRtgqNK17Z5yE3|l%Wj>g&@al@lnL0<)pcEnX5^>8kWa|s0R6N
z94K1L%}D?I1mL+A9-sp}?#SFZnhe}PM=)hwtJE-0Q?p10u9lkYd>M^i)=L>WhzFln
zX@G^bo?RS;Ss@H~b4b8ynsE&~VPNn(O}r0Gy7%~ODh2F0<CD2kaXdb`e61g!%#l~x
z{w&)*Ndvq=DaW12;C?}J6?vu#Z_DRs2gM<1CCvTAr|{ITs62u(V;CUu&&WrXKseJ(
zMVM`-NEv!eS>B40NOqVm3=C`y9$>Frpo_g&SFj~ST$vwrqtsAR$jvva0%O`U<O9j^
zlz@!@D37G7AbGShY>nz`6<)#Q8_t@!Fedv7C<r{;ggDe`q>CGf1tLYfF(~Cop+pqC
zweukw>o5T+z8L|2`0@(*Xj1ve;|Rl)bxj02I!{eF<b$R>vM{u0)ZuAIrBBFWK8TNy
z4`Rt>RXx1F@5DU#3!#}PlI{%}x~1KF_qcD`y}tE7wtE+TwW-~k^doNP{^z@PZ{^op
z(3{H01*B=-@sIw{-WbX$MgRt$g&A2+M^4R&X3iTk%&K>3WH)M!8_K>}qfG}OmkQy$
zs*4lD7f6rzP<NP>TGR_7hu%GF7`o#N9d^ef^?Pa~ui+u;E$T@YA_sKl^mr7DeIJa9
z7SaFzc~2?9mJ77yf5JwPAE1Y{U|ZfJx#e4><)ci?4HD^O)@#cTf70938)^&FNl@cn
zKQsyUe5v946BPDCw1&ZW2(DbR6Fze@?~#fig>L4pXAQ-QtY)pNKDn-M%Sea6nYva`
zUZR<w;i17chsHG@ydhzJagOPy0qq>EFyo@sX!lQU=oM*blxgU6ZRlA%WCIm!z_eH$
zL2rlFj92PCuVN<L(C<&Mhi8kdlRCA(OAWx?ha^$$*8;%u<CSVns2G?YL;!H6`*h_v
zejb`*>3&vn4c?ig)s0d^)m8ZV13bVdGiIBF&o4L`$PKkdl}ujW<QmS98j7@rfv90L
z9=s45ckJP5SQeA0M~*xEVAhY!)^n>6)vv~bE6szy@j*QvTwxyEg9oug8SuNqFE!7i
ze0DE~e%#@G%(E&!8>G*^K0|B2fX|l53a;Tlm}jH;>~ekfw0Ty@XYVn&<_;fls(!m4
zpIwA!UgJFcS{UCo-nS?8e;2|3<#VD;p5yYL#<P%QUsE-P3d2plDv$Cvkp{*_cQnr2
zaFm*H34cZEim1~t=&Y%hdyP;21fB0)yf8p$n@Ycc-Mo&hdccVeZo8+0|06ut0Up#c
zjw_+~kAY_#;c*DhsZL`U`CDY}GIAj);BudTbYs}T(176v4-g<2Vz6_(-(r~^KL%<t
zyG;xdS26*}0svXG%zNi!0rGc`flgNnrzWB;z<D#_tPdLF1bh5b;XU$eN}+|9yPgE#
z{i`f~+a|mRD7;T%-?SZqH{oCa<@5d|jhu;th#f@LZSla+1I-Bm&wfPOkaJn2NDC?Q
zN&-a^<>}hg{KFArhJU9(o?wabA0|OG7J*9)SlOWj&$4K`(7N#&h_oae6Ka@vEZ;jx
zPA!ddufIU(J@hE3Q4!?cG{SmQz<;K|e{dZC-6=eD&~R`T`6VAFAdfSp2e-ZI<C~(s
z!{YVjV%KJh9MtJ0x?%`q@Z^Q5|NV-JaeiV8*j;pR+u{WBb{&55PswNDPfx5p8Gg#|
zmEafr<T%8#(6@Z6Zx;}cBI?`m$}gSV5T*Xdd*dkLbjmPq`8~7_th07`!7{IEtti=#
zkAO|r88#JBq;4n9GklzV`Vu~D=Mg+xkzm1G0Spina5IfSrAL&I=ItK)LR1|BL{+a{
z0($h4a8C>E%R*mxwh(AlL;!ODAhv<J2#~ei7>u{res#z8(JTW>X@m9q?Z2?W&bO$_
z8rp<W!a)6m9QFqLLh9GVL+*eJYY^aCo;NkLE%n}b7?c_hO8KObUy1ZVr(zv+XdF}r
z{DYjSUKg-Ah+b1=jvOnAkg0NxT5ACS){v!Zxx@XM4}>!pp}n>TsOdRm%d=$5(`YfV
zy>pZ4q3y}i$$Ykl9RXm@$RHbl@mCSC26R?pygdb)IPuR^7+N0!47U)5e8PaO=?Awx
zv`zfaP7TkAY)arcq;vmuHM=_~2l^3KUld+?Unue$LNg-{%{)T$ND@8%@AT&)fiA8;
zhbc_Y{&~mr=YOHkhQ~Ug&!g`NeGUOE|Nqga_q+uA(nn#s_rb2yCx!hE`h$-4^znCz
zcib7KvZohA9#h0qr&G=(o*J(5s5&C{3vZIugQZI;l{wx)e^N9}K=msD!F%cfkRD;C
z38?O;XwFteNz~WllJz5QKjZ32>%$3<-U@iqxIP3-msiZz9x-~DSpTsd>$mpNwiK^_
zLzA&?iI&m({C-qF*Q$A9{VC2HN@f4UV*lgti*0ssSdIi2?2K%juDFROrf-1K8{go)
z6MqMa2k|}?fOR-;C;`66)W4$Tjx>NHg@@qQV2yh@g>OgdZ)CB?6Y=nDfPfL8#%csq
zUso0neF?L1j=?K<EuO(rhAZZ^6uwf~(S=Axn7#)-82P9>AdQ^f*R~qFM84r55n*;Y
zz}!&pFnP-`7_tO#0888LII-l9-XG=wtHa}tB>|raWr?_OH69#o+kq6uZ0zov!IW3N
zlfK%C!p2j6y}NHAX&JnsB{_$vc5}ChukvM(m>Foc?balJ5}C^WB-#w<43NQ`97ay=
zh;$4zcbiluyDzhCq3F3;Am1=FH<7zdj4Z%i2Kp5*R1IRAIZ6mbl-%ne%RBIPLnh>d
z=VFS613uXP32(7l)ZThy?*nPhiIYY|@_(k!))e#!b)?V7_x?osg#I`B{QK6f)29e9
zCew#pmzcur6z|guxrkQHSG~cc!jyG$$ZO=QBxmUA6)dPmra@=Y;Jr<diCmzDY7w+X
z42H_bwk@w}Hcm1Tfuot^aD!wbFbA2+As^vI*!$Q0Kk!VoGRbC)jW@vb9BPMTL5xxR
z{KVS(25ZlY*T!bFB*fj@aJN)lAXOIys&-8FDY<G|LiRAcvgZQ8t34yIiPax^hZYJp
z&$t#cp5?tTi!bfWJoKpelv;z*v};t%4Yvo&fbu2;^DFf3n-gpU<b?K+YJDHn=j<9f
zuI`o;nF-A?%$u@&4)9p!9XuNXfpb3sL8{Mx#Ltnb!j;4r-VJTO+2m!W|3Py^K%J;H
zo{9!nRE@>aA^-!+%U-J7Ux*LNNlw^1?=}T2n*{>qh2O*2>i0e6Xp*Yu+un>U><RPQ
z(;QsU7SnSMK1_Oit3Gb@#@-Edj_geTAusDyo^zPlo3d^OXh3;ZSv6NHOzh_JsFb(B
zafN3LGEhH84d%CFYOn)>hZPYw^J95~nU{ZvzX47~oHn4MuUsGtq`fK2+59rdc6rB4
z9VJP$%<6+XhWThSHsme(XMl=%w1QGaDJrzdzB0!xVfW5BNkW<BrTr=J9qe=F!4~Kj
z%(N_^qf$QyRq-Qm)<{*Bw?u@NjKvFZD+xw^$uGQ~_i8f`M)Qd5%~Q#r$V%MMKN<`n
zOOjg_iA!qvgkZ~%Guv`c)f?N4H~k)Mxq#_<Av>Ul%B7}#(y=K2A9r5^9#wI@pFmcU
z3hqWxgQ9LEY7jpX1q~H-!Jv0_qd}=gMNO-<u|-K0mD(VQ37FeuQLDd-mA0wcmR720
z6@jA78iW9TB%t!8642^hgBn03fF=L;Ju~<2-OVOY+CDzdpNH(+xp(G#&6zW2zH?9y
zM3Z8N;K@4dF(}h3Nu&AQ+P}{!r*7xhR4OrsX#QB0|Ac`&3KI34o+0S37Wtxd!dOQj
z&*+z1)0}h=7z&)<^)gNr1SfyQI^wC6PjC+OQ8tLch{i!d*kIhcfslb0g{9Ye8gu{v
znUm9^y|g<7Wv$V;0Y?hUo)NKSZJ&%|?S2%3`N}pLaeEP|%i~22s)}vk88bCoi)8$N
zp4wZCCPVfZM?5dh(4~Lr-A*;qs{|thek~tSlM3A*+sH~}z*PI=K<6W*srDs{^}tRd
zpvKy56uQMcT!4HgCtQ$D_ANt9>-b@0tGDh@`EWH%FE1gyCntm@rlH8i@IA1Sj;-Fv
zJ>Ca?4kma$8%_XdU`7mgm4-&H@y@yiA3{_vqzswV^~ty%F}ejO%F)A%HgnER7r3A_
zM+1|d-7`n$ggvuPSEJ@%(<0#uAsHqvV8Anp<=tU&9!3QP3Ci1qa;(c=B00(ckKSk^
z<qK`fPe39~xiWUR4M!-?z=vKa@24rRq|gMVrd&ZG<!_&+C~qLHB+5ywLwTj9Tna;W
z6iAM1Ky@XkpOOig=h!lzk8dF!8p(Sfg64M8IG-#-vgM(X?|NrFBQcy>NGPJlRc@J=
zV6O&cUQWsdrKVg#A>~I2<#%EvI#J#v)S+4x7gl}<_4bw;xH*hNIqK!TR_L0g)N`CZ
zv_x$$)PSw>SKt#q1vcc43r;4t2=)5hhluC0_Xh%+RverHnZZhl^^#@INp6!_uVtNQ
zU7nJpE)eK~um_xJ6dKqS;o&`z#9l=O<q^iGqd6pDq7yb@%U?znz8oo_9I-E1X))p5
zEVR9#CO{*ezrAPE#?jr#C7_L-%LLFy*FB$P`FXY(tWaH^($ATCj$7*~=2+S6%lUs2
zJ|akB69r>y?0tryO=_A=+c47h4U7?K`z?(UXlvB8<+Icyo+DG!)_7G)+LWA<YCmWr
zFw#c!JS&YzVn+zZ*4X`G4j<7%N3V~2OIG68D(oNR<2hnE9?3IA5wPZt6pq~BtvgCS
z+z!>g2daGmOv)uNDObRxV3j;EQN5K(*+I27sN-{yJ2dhG+oWLe7E{vx^WeK+^h1~w
zb_;J?s?^({db>>u0l;uTz0Voevq>Sbj*6EG<@;$;q?*$hIwl2&n9?H77Rq4^_hC|A
zXi}61l1&N$D9US2?%AY}Sch_D?sWxlnG|T^?Jz4-d?5_}*d}E*Bx#J?WSf-TlxUf~
zz#}wrt!+|X&?aSgo*Zx)H{-isRg{+{o0MvY^5sKGd3TdSLLI7AasB%yMHsMa$AHDk
zr0muvMJ*7b3i-)r#PiKMyV^o=jL1dWr2Jt#tA-rL$`Ru5WL0gIBoj>vPw^u#Rt@52
z)ktYlL?>**CNJv6q!cOI${pGgOiGr}*3G0S{p@a12#mB5J!zxe>Sj_{(`*B8ty}1r
zlpWfnptPm*aO{bqZRuKDZfL`e$ferc-FgL0F~(tN>0tB39&676G}xM$U<F{&2$Zx*
zg~uusB8$mES?2l}y*%7q>VtB?Z?DVC;RF8JYfBI{BI>(p95_uP#`pY)<G|bJTwz-d
z)7u>dX-w#Z*ZmT`Tdbw;1HeSm$p`$?NYXSCeitMt$4b6aULjkd)iYhlI*^t6pBmYb
z3R#PdY+WL<HX;E>{B9!?i3u`573jj@b#A2PQiwevec~bEaK4RnVItB-jg;SQq~#8W
zV7HSjNqcLBU7VKniu6>4^g$cx>_nup;trhhyNy%;Do)|l5xO94s<)BaUCm%tTG}Eh
zqv^SLR6eXB8FVMIc6XPzZbPPAeOqahFeQ<MYNC!{O}3C=_y3%+i#gBOXkjy|1-RWw
z6SCg>g-Es3hF+Eky<DKz<?*}CpdwNFis;w~NO}st1SBIY-9;EZyoNd!*kFqi!3G5E
zOnvSLyFD}Wr2ez}M88+*CcWx&++Zsc7)a2h!z5ju)>u`62v%jGT-Y<a?g3%fXVaCF
zNS9yeLS1CYx&^(da4V4*01@1iri<N*WV)2HQ7k`~blvGvS!}vqo29BR;Hc`$2mG_E
zucoWR#zVT~S&9L5Sx0=<wKHtGY(1;O4pt7)fCi?j-36sOm%Cc+1c#{v5c@))<d9C5
z9OX9CgBYbC+U%%QaGucG0$@VxIzHf^rnQYoP$&4^mSMR(Yg(1c(B$0U)Cmw*$}}i2
zAriDm`^iq*zk2DkJ;+S-Q*K5g>H1W$*Nk<Z((f_wwwHd7_wTByM}OJvUdb>feXC8m
z%0u~tDgco;3LC1sMlx}iDsBc8x6QHH;rl6ndk>r~Jiup_P-cB$T@Oh_1Y#HeZ{JC7
z*GZI#jw`&#&8EqkC<ay+J*a3yLE$oaZ{6?tVBe4({waK^pTUP34Zjtu#z-oz#(tm<
zdKbhMR`$AB^m8jh*d;UTMyViruZuYfDuO0H7~KrNl}f(=-hlyIP(i^8O5H81Csy%W
zYyC>LUBs1Awz?~<gyIsUVvuMi)ha<M46Y<`L4Gq`C8-qYyOP9<V|~gbj=EoiwUi{V
z8xjSQbbNB3N|Ia@DvMpmH){)Ji3~srWTWhf7(JLOs+q{|<7o<@lT>P;*qvdT+Qd%)
z)hS>}PMIdBTatLYJEEr~hRBIfUQN(15QZ8{IV3=}`fH|Cq4ePGI=P@)<Pn3S1q@vs
zX;C??2G)_!!hzd?-Xe4_hGB8^36)PuKi)?Qamw(UwgWew4xD{S_Pih+UpXsV#>lv~
z8DN!Bu^nFpgpM!K(zz6e_i)`meUKPzTEfqOmV@EKv41)r>+;-v=Nv`L-EY{mBsjW$
zp{2W{E8vq19r~vPMp}s8add|X#@5)c7?Kgu5h_oe>WhkIAflR2T}E~@m1Fg1MMX{Y
zt6@G2B^IzHm?B`%d`pOdM21Plk~CiW9=2<$@zT}YxCug)x+hQJoIF)m2CxyEjigC%
z?r`AT(kq-TRSFI@GPdVy!tvFuj^AAUCSIwVtCu<-y=b@WYp><b;pr<B$&X2rqj01K
zZoY297)e*`gpRH*wbvKNi~xAH8~9&w*o*@HB%Z9V?}HMg<0)}HiFd{vR=T7$kQ@PI
ztBGy|I-c}89(5nUYe<7(kLkkO;d*)wAhL$#Sl1F_Qh}i(hg{vqaJ`?fAe_QQ{&FIO
z)pgd}jUwe2#pg(FGVJ{nk-EGx4i?FICOf(7v1V&NWX&lOKf{O$;l`yQYB%qh{KQ@i
z-{GGDIQ*_yhEmEin|c}ys|vT<lf)cqT|Lu7aSE8GTNfq@%LZg^gsOcBu{G??@E!gU
zSsO!B)c~p1QUe5;*Nv>2>3T#qo@O-SIi^yNOuta>j7%%gMGhZ;A%u%%{zkNt{Mg>p
z@3ecx=}Gaeeu5X^qY?N;Qq6q8Kg|<O4f$wfsQKst*`}X4!YhUbD239^i4yNI(oi@b
z*|2{^uPuz#6tXzsr)tbKf&mf~z-;2gxYGkaLZYC#O*|!zN)?1gzUiG66o*eAsVA*E
zY-_w#Z+lL)>II|(3dzxJS(idz>2EozJ#QCp&7Mu5uLQwpM+uUZ!gAWyy_oKm1R@Ce
zra-d++B`*l1g369QkPdP;-iWUy4NM8a!eW+x3N$$qp<1vghG`GWJfc%h@BG6grkB2
zYXC$ku(^D|KV4w+@n}TU<%$GL?#rcO#}^Zh(2PJW?3o<ad{s!z_x!7?{n(y$vGZ=l
z0P3xtg*0J~;j%-WCO7w-??E==5zp1PY8~#lE`eR$>M5z#ITh1q)oXmHld}BZE*8Xm
z)+(*wm98SO=dV~Qd$dkgI>i11O^hPeTNh??!{Sm{-8JXcZW%|rG7ezI9&76#Ym|f_
zb{jTz2zk=1#lP$JO_c$uEzwBJ9cu4Ky|$^nLhO*3>4aLf{O1a!2xtn)s-_OG>{Y1}
z^b?ZERzx>hD7-Xlh>(RYu;73uAWt_))*ISlO^Gw+U?Y-<t^*)KtHyl*u2loe)NEUt
zJTrQyhFd|iTPh?-uLd?>M^L_ccmmD7*!!BLH2;{^uz@DG?4@@qu}o>7k<_N&iiSir
zv^TOz=@G&q8bWytJD8Fkg9^M-K(6OxMvp*NOjcx6##X^$OQHnB9U90};?4EMOPvFx
zq&tuT2gr%tKi&*qP?0%7<_z@t)o{TcWVv6<C7=D^t--v;p5-ySXxrfs;I19i)siOL
zQ<Pyxdj{z1^PJ&Y8F3V^wb(ZK^cCo=(t2}nG7u{kxXrOYGwe}N4R`#jD|UN#53JPj
zz%Im-HRv8tjN3(IRfx+!D9)=_&H)EW;2f|KrgPB25Y7QZn9UXhY8-$M_-Bs;;L(WK
zw``z(pvKa9NVANessa>`hn9Cfv(c$o$Ort>AR6(A&kynyKT`nw=fzH@2837&QHcmO
z8(-N-^B-zQgtO=oeaTBion{+r!?zGzsj?DWI?(ztXQHV0lq{VYTpl(WEh6L#D}xig
z&?p3JcV~Jde_%coVp(y0DDNsd-j2V6Qbo<iOpTgT{~f$cX7m$EK0Uhvo_uzd`9bZ6
z)zy2d@2rmR;Dk4)=gX)YXeO7ao(-?!;ox%xrzOMy`Dr`yiJ`!n+NLlR5kr6&4DW);
zc~`}Tu-<h=ZKiM?+0>($uiR#Dtam~G%&|BW=p?D3Ju|WRy#yv;CB%eb5>&htSPK?B
z`fk(*tVh2a+OrJRM6C#o>krrC{}{fp!S(LYeg1&2Qdlyyk~rQ;`Mflo(*M=1Grox%
zD^lbL0>qGS{SXNFp@4iB>2{0jE#T<}urS_evMvW9?bUJok>b1-rN39fAVYttWz=6b
z@6=z0TG6OFR4OVM3z&KcI)N>Iz(H3l2|z)qjT>e7jz}q1@?X=%DZ-g=vzlO?Ky4cz
z!lBkq!~1fp5&iHWgm$;Y@D}6dw$M?yJ(mR-@$6ZyEka~;Ke-A{T2B1<thVpcDsUbG
zQOHepN$Iu-B`*>*c)sZeg|IfA?Z=Bg$Q9$b!MBRnZc&u@L1vwgbD1BCw#(sIlhv--
zX7bAp22`>|o<*_QWTBLl7Fvb>;#uuZ8F0Vn2tuL~a@oa<%@R|4aJ>s~Ir+KEYR*Lc
z^1LJg_$^Ua?**f=b4$`&aSLBxdY2_bR|ZG!_SXI$`7iJ;80E{|8>l}MN5ZCiXUq^<
zMGv6N-USz=*LIAlzaSlEfrTb!LF@ybbzw>&Ms#n(q<*niF4`udfG~5c$=Ydz5Rn4!
z%fw}|Ue`@Om(o>v`2jkHed4hOX_Fk)D57dqlK=pQ9!L+3h5%y^V(oKS6&oc1?t2j3
z@e@*h>`H-T=hg$AB1DXGv@r)FfML)0%Q~P(RIS68N`7J8V*{=%(M&aokE%(XM%ARM
zV~@2xsHwpsy(RhPC}0@XQ*iW}0(_U=T@swa6|u`u{j8ehvI*)Q72KhM_wGRT=j6Fw
z5FW38vYzmlEWU2*r7BQ~P`4mf!;GJ^5Dw(Sd2e6J`T$R>w$Z5%0p9DXHoL)^I39fC
z*{Xg()Lcjm+2nKFdd3l2XCT86hdZzgd0AQp6HOsxt4MqPC@j`NSWVnrg521}((1jx
zl_J7jVkpQWUWL8$1G$AZ7fl0;Hhmk9iJT=Je*hynSl@|8pLU~K#G8?4y`#NoL1DPy
z-+kM@VBdQ_iBxcJ6S%CuC>!d#s(*-3=NW-5w9VE;c0iYwqug8Cm*6Kh0hZo6XPK1R
za234#n#4}L9i=u7dYC+(@q3!C6lW}mEga95F@6UP%gZUGs4gN=P@Xd^Qz^6x7l}1Q
z4fZa`sos;}o&J#&k2H|1b}2za1!!m@1FFh(U+%DRcIO6#21OZ%#pW;&_bH=8V}{ij
z_pcGyav%Vzb>sqgU#}WF*TJx!k7HM{v}!V1l=Kd*M7DjiZblD{()9BKtnvVljdo6H
z0$Rl$wB$xXq)Z2{o@=Jn)p&B76VdQqIvL)<x*qEr-60W7Fd|ey7PqJ$O^J1}?wyGR
zI-ZVAHOiX*+)fS~KI|sL5fxesNQ!7X2b>Oa!I-*)DIjMQmqI7aE!XA?SukDYwEbNz
z_UXfbL@7YAs)^OsGNpeG+I<uDUr1q9HHpIBse-+)O6*6IpuS_o=eWtR$Ft~f42AB(
z)SrT)KPAuVz(9<3bP;}VBVL--DvF42wM#RbtRaBW9!=K&2BrTH%|xo7{CGMaRJ-M^
z2QIahVR@j)1DN3fOZwrAg~*fwt{o0AGgS6=ZWxC1V0u12bU5C4Ub;^A&@XiWm{d<s
z^GxoAra@zOb~2@nha8-)hy9UvQ76xR5+LgOg*{gg5z5ccc6WtnpBE4&*r0cm*t99o
zn|lHMl61p720?>|&VvY=4n<^2CK<U-z+)3B)|X7sq(7Vlf8sCPq?g;I`$+m#3ci)C
z;Lmo!_Yr;vQ=4?1JacULXC}d)CnxgRqDh3mQ#x;+dJVtG1wV)IYZZK)YT_AX!(S6h
zl+V`sp6P#7!Oz$5*LmXd;h|#3fObD_^UK6{V|gIIn&Luz#6~6TorUGKuKX30>wP|j
z@D!U&mm87u8R@4ZXE5?>`T{ta-~>ial}Hp+kE}d8&C13*91-w@4_J_-50gC0hPYxP
zo-Ppe-!J_wnx*yktxIefIQsidMmPP9PIC13G~$kUc3z{EV3q?wDcM00w-A3ru{-*E
zIeMSa-*&Ik--n5)yZ+9xL7$lf+UN!J&f5vv^B_S(e~SckYW*E$!(Vf;&ATG~r3C#I
zjUnlxzmF>T1seXkzVY%;*5CK8)}py13I00?`g@-(8i9Ydg5Pq8qJN4DezN{n+3*ib
zf`3mh^ski;wx?3V&vC(b>u)K(Q-8C>FuL{kR}b6zI}=Zi{!U}W*5BJ1vGw<djKuZ#
z-dmx+<M0mp`{@9szhjt0^mpzpcuJ+ecZFcTb6oqQBc6%rki9CgtXH+NS@&;bPsB5Y
zkRt;Y4dzKB^Z;Q=(Z)@L7hcP)(gEOU|E+dRQ~9SU@O_i!;Cn1;<2zE}%Tf4(gL=T%
zQt|KOn;FM9)WP?s4Z`32{=(n-oF4F%?+c%IMjE@miDw2xJo&%S_TV2E*>%FP2U|&x
zZqKAKj0||<CyqUM^F&hQ`Q%Ei^!GXdR1tl7yW1WV+e$C(*_cUU55fRZ*N;wxKRn=G
zV57l4g&Jt~1L&DH=pjj<zt;=sPi_-?P(aYi$b=6cq8Q2Ket<@4&(K|ucuuk5H(hA+
zu1G(l+)X;124%{mzTU6kx18XD-_$jNg7Oi*j3b*EppAH5|DG1jjY;so(+m8Q6#Pmz
z{2LYg9K!#Y)Zn~qz@KQt@0$dF%MCr#zx-B_kIxOiuY!-0x9^+^*lf=_@=&_42W><b
z_H1TU&ir629PzAY9Ky1!ljVC<eV1yN@V!}m|GoO|Qx1+R|6KVVw>Qn!i4VXc+#?NR
zvo(m3Y#r&($WywN?3#th*@#$Q@#zgTf!u2v@pM(d-fYG@*qf7u%w}sflSs$4=!bav
zQ1ww0{Y9RqlTUl&r>}<}&o|$oSd~UR_Oes|*P=c~JRL`}B8ubo+7QYDa<MKsR_T%S
z^kBQ#ZGka@Yfpf+JgZ{iO|T0ylmVjR!$ZZuWs|&!(}VG<YBgRZU7DJ$s&79}_0c0L
zlpzib>TuArl0Sa_z*ChmGxh=O6>sbYoIex=g-<9V^=XP!1b)inC%1zhSt1=wATT1+
z&_SAL-;eqzN`Ob*5>bFZr34vJf^cTSBKCL&*X(_Q3Lj5IF=5Dyy$p7^Tq$#`e{tbs
zWBZ}uP+j>?R`lh-ZMoV1K6dtNJ2R`So}gIck<s~Ry~|7g9I6yTtSHpn`YgF_BH_C=
zgg1CNvaz#NOHBir))38uk{!QW9k|Q`#P-$HP0a(<{_yy^z{u9g?HG`vABY;GORQ!o
z3$RJQN7pm)z4gQopq2kpUR=D5a_K`|o{yD4=I7VZK-O%n6prTUqj6QJN4+@j&LK?B
z?=a*@4?~XdFl6tI;cOjpu7`0B>N0HB@7GDl?mCKE&Jg365L4vnaIQ|dP^UDQ5*rZf
z^c15~wKk+?foEEaPNbymu_yJ_a=t#!uVGB<^Nl^p^*SPjjTnOS)|q&Oo|1e#2_TYg
zYjlS^6V2rs4H>b&b~;~&Yc!JHM&rY0jphyHg8x^6H-dvq3zUf7s!Ud>o`&i*N9Jg5
zxmgDhOR!>#3?n3#qmKEEC~CP49}z_ykD-jnzC7%zuy)BEF?DL}jTIHLnkx{b;uI4l
z2bo4652#`IsNzPmd!8oE=1g_cH1vzqWAu+&f?)xaJ>!a59&tl?PUl_qv7_*VjS9Gx
z9Gh)%C2Ut$`<8`BoYuZky~ZjTc^%sXYb#%3@6ZSXsFecfwfGkMK7RHO=nx0!AUs*K
zZ$M4xo7|s4-PH3>7ZGFX`6sRXEg+pL+NQ$?b=V*wOcqtNoGIq(FOB*OjHnvsV2T3%
z1So$3l;Vdy6{(6Qe=!7a@s;51uN1b@^HzL?3YAihOhr_Z3bwCOl2CupI&d%ux}b1q
z{ZSxAf3V$9l*cN^IUk9DWV&8!1prYihWU{wK`W*RMHugA2(9QK9rkq1Dc3{Rk3#C*
z{9#Zm2XcwMxtn=wwz7h7$|RE^njnT+<WzXd&bBYqSjKIu5Vs%Hd45rrCD{@|y&d~O
zm?AMqU8onS|BQMM>WIPqS}%m5N?O<AtGnV7o1{X;t(Rw{O02jFjTXFuss&%6YAtqf
zJSYfQYY~~PBWTod%C3$CtWw-XLBirF6>}^YpmZv3Jr3735{hW9z))NGSVSV<nxzzX
zlVwgo5#6MV$kiSc=gn7*!O_fJvsLNOJcS;GLo%dr+{T;i#fzmU;kyN>1VS^^qX64P
zu3CUJ%M_d6F=^<7&C$2VXaO2JjR=qxgc$;s_h>x1OBT=d0y|NF7afCi2?8t=7&F!W
z3J8$AL&qtSCd;@M0&G$OjLT2vBi?4Z+O1{uZ{Ww^M@!5{B?JqoQiciUF;Y>ks`YMh
z1gdDiC-bA@7#;o#<roz<7OpT?wjUFoP=_>?=~?UHh2}LDq!ouV?k^tNl!dLt9pcWs
zZ#G9`zN}_58nrUBqKsvzSRck(V~DgyKlNp`nk%ER%&e7+WvEym##%qkYRzrl*@B^L
z=vW1P%u@K6Wlh%jYrwM?hCJ>{$P>jTu4yJm_;PUJ>*00jb!l~djL7iW;ZeWtd!9M!
zF{7&qH{fMf{j=$H2nX(|8bEbK4geTk(Rurf4v(6hz886i?lp(od8ZzQk(lALG2pZP
zhcf5)Ap)$-zx@p!4`UCyp7&Rd-?~XmDxb$y`MAdbz(5gB!Wn>`-SP~UGp^%`Vri7O
z>NA!SDkz5gLEDJBK6UA#NJeLIxc{$<!vmiy@jkn<q%YRJ_3t#gmKn8sGp8N`AdykW
z8ns>C+gsXC)_hORDEzv8lWtY}%hXGzbr>}a^3`Jrb@OE8`Li;JnHK`sJS5S-G$s87
zz0jXuxVrs&BxK~8X&2X}hlfAJqPXMkFp9<d>`u&T+&M_7K8#e~Q5FhkbcWJ#f%)*x
z_GZ_IB7O))hF8j$XK-a1=0`HY+Q#;$l2|Juk#W}k{Isz4gbE&4K?WH;&c&!^xSM`}
zwWCSKz-A+I%&fNy0D1T-qwg6YqgfSHX4R%exUVj)9gfoY<~AcdxY>xd`;5L=pfCaP
zE-rM-tSTpzah;&r>#f}*B#v)JH((c{TP2EoLs6IbHZpFHO1O$&0CpY0dSBXz>Gu8_
z@;apYhN*79Kc<Ez0|BH4f$;BTac?^uv<WS!8N*wQ=;wotzGq@BMoVTLob|yiM$Ly{
z-)jzjNXxPcXH)x(VWk1X^m$(@4Mex}?>nx)Ij%oe0R#+G+rHy`CJrS)qM9v|HJi`T
zPY3IG-*Fk{xD1}S7qyD|j?R>g|8~_F@)s$E!74ah0?3?oFcUI9p3)g#pAjBhA8jAp
z_b77$o(I-zL<8%UsQXo|3mb#Yl{K3MKOSK~28VNot}%0>v14ILR>8=uk8VCLy6ZU7
zU)tYXRl7NT=t{G+Kh`st8x+&&>rEpwY-BLZsM!Lc`TF`y9vKwZ_efn{KCq}JsR^?o
zXp)p!o~L?V5fy5GLHPx$v1EfZ8$cPdxuNZK9aoIr1m9G!e@dr;|9HlEn}i9S)7{m|
z1{<J;7z~rP+vT&dyGa=0by=5U5FjC`wA8NjaLnTAbFAyR>fQ}nwe0r1I{S%xQYPsc
z<iR>U`4?)@%qq&oPl;pqSq;fayJMfa?<CixBoJ5?1>hl(=O1%T8F=0g0=tkD9b)lB
z(W7zY=}zeyf(>)RTKe{$s+B1-*rG@x>K$$sK;t~cFqLOw6AwSjEwWn`MW@mQGvXP#
zlOrqWK#rlvIk@VL1aczwSuWyayK&@L!TqFVGtxmiLQ9}GS{4!@Xu(nh*t^anNsG;@
zO}Wi)l3ZTyRC0ksL%BFqCkUm?MTnoERcagbI?+Vx^68oozar%H?u6(q4M|j-y+2f}
zMj~4r1-()6XF`KG3S8oFsTP<7{j4lt0EEOVV~+I<Rx#QN3ES?<)t%Wf8cn`JbC6O<
zrGJp6oxvq|H>P4>B7$z|<I>!mGD)IkaD&{2)q^(irTc(Aov<OJQbqjtL43GQ?>43)
z*o0|68r4Q*Wp7KwAcA$DELPOEx@IX&cat@s6wQ7PDp3#q&8R-GTD4pKbc4~H^9NMq
zqj5r`T7ZVrr07^U=u-In&@AgOH8jykgjNjNw;yfThQv0EEm-EzRx?vKSf%{|=>#->
z=9=j4<IHze`;@-H99SO)^xBWphi*6Vpqj+KRqrh73p&0n+}IA0wixYXS9^aWay9(B
z`rPe?xn5kJ&udoVYlry!xyt9yRX)Fp^<k{_)7)0oV26F-vW%=X2bX1<AHadi`oP=~
z{X8>k2V)s3)`zjy_N))0A0HRpdtA7ze@#=G4=6S<!=BORx@ddm=&W_cX4B}Xl~J74
zB(M7DSFIM_L_a((y63o^YocAp?OdDtLDt^fH_dHIs=hEChMLW3xR*lv3_j&C427rQ
z3mXF&4#WyihB+ulhJ)#B=AfVAZ?fi<K*9bLAN5S|C(6-hQ~t!&nb5PEt$wN-#vfz_
zGW-dKy2DmZ7XhO;_MkL<iAG41A-jPL8+15dhwQ5IJ^R@V+w}Vm9dgWp@7eihSgylL
z9R_sB9xT86by%RoY7OT>gmhjS@SgwZyhxWnab*46DcX5K)h!iHF}ZRHZpK1w$wY-k
zZyBD9e88%;GvXhH>)~|tRl<+xtXzeNK_#MuTMc9WgB`R`_DH=0NqZS89S7^bE9u<(
zk!I!v1gRt)&!K)jVr2u*vBqv!=C6U=vCad2nLAT?icCJ8DNSfpnG}1yVA?1*h1n||
zRVKs1q|6#_ofDAg;95`X^ldK6lyEhYRFvJ7B2#%UNG{art8Gru3Mo+t5`7sP?4Zwj
z8k-A^h?*Rrq^y&_OnPxO?%HCBvnLgPWTt|-%7||6)4Iicq<=YaL@vQ{H*}IVfni*F
z8aMS8rltkHBm;b>;c5`tNCJ*<k|Y5awblBo_)jWtw?Z!0r2Ad@lvp*FX$}f3D-;xV
zQma^#<-E897iE!4v=gIhccpu$-vY~6+lhxO@PIEx9GyOo&!N2Gm=vySf!Rjq_{i{_
zM+l|$LnHEnR5^3-uk0=v-l=LRqJ2v%ShZdDD3(Tf)&!T^1k-J3(2*SLZlN9{#Dt;+
zC=2r_y~VuY%UzG++Jwrd^q2MMm+o{{v5;cdK9m{+9Y=}#>xmNezDTqTSR)!C(%DmG
z)+B;-C9*zeNxEJ*g<YMRvEKp!T#B6V%(`lk!>c$HxKHb5Gn7$|J<~j|H?wLBxl^oz
z#DIpR+$(Dd?;EqfTeoTa`3}`H)!rd#^5JwUnNl1dYTBKoN(K&Z56eYn=tF8y)}eq6
zT8{*+X`rEXGrev;x#k0<xcSaiP;rvQ8B`R6U<rQjCY{n(BA_b3S}D9N;4F7KD=bQH
z3&buszm`f8it{uR1&%!IVMF3mgc8LcaiJN@%}!@=^D$r8+$Y%2Fs6^ic09{obwa8-
zZJJq;it~npJfCIiR5ozJa*US)>&9-W>eS`WWYK|ju1@8sC16zua}b*Y>&R}Y>;}vY
zYa8k^2e;X1V{Ddfxy(w%dA0?@+5t8dQaY-Ls3u5eyW)iU`9;+~IF#1;)afJ)AaZ!@
zHS~GGQ;|d#x+6~`Vx5HMD|R1T=%n$CfHR(P5^1m58jxb2r*^);|0qJd7yp9_M!$gV
zKf?wcD*prH%XC)?=ovKP3;)qG;FxC8ocoYUdsxF(M3e))5Iv1#?@D1sy9e9Sjfib&
zSYD~qT`uYB@~VlBc8+QiPwH;x8zl+G_pR%A_ZxuwQ|2gFqbjpwQgaXIbhx>)b#pp)
zxL~~4Rd4_4z_5l%ZBw#I0o1V%cL1mniKnx+vktjlICdJep^mY_DY{wr|G?bP6*VBG
zn2pQDB}|{S!AeYOnYyw%d2J(LgZEhn$(496@G6PZW-LgCIU+Sohui7N88VOo)^Jdw
z<;G^21k(*0sTIUp!{P<UYN`bsLmmxMj?(tIHOA1wagy59qdaM?IzLGSW!(+fu4V+D
z32k#Vpu5T#&4^361SI6Fa1iPfgz8FS<t8X@cOm~CG67bu4GDm8>Qumm&m!*u!-Pw<
zRu>2Ta=u97J#P7vv}BrQ)X8TH0$@q<7jkX`ERKe2-6n{%J*Zhq^U!3i55Std0K39I
za~KvY+IC#D^Ed;>M<!i-7=k|nlP-P2!ym(}N#V}i<%K(4vo0U0l|ZV;?dlH|=Pgv7
zp>xE5ZWTL$&QK%dZon8Z)Pt)He1ySKhDH?w<H`_0MWnMt^=Ly%)_fVJ2&+?7K;N--
zeU@kZ8sF0D(wApECJ$-LGdTE>X3q}2hpXv1FU%u;N)2<M?&w2im=%*<Vj<cI8s<N8
zun%S3!0fs}s^wXfQ8tp$-NZbhC9gS`h`nbW5}6Dz*gVxK5gebwEsQOQa7SbTPe>v0
zqylpuYHJg>X9leK+B;!d8*76+>yjwNUcFt$PVAUl&s~$31Xh1euX@mm+&9s`#Wu_k
z{(M#uyP?1-GD@aCJRYfNcMsL6+8k`UHfK6XzTg5iXhdl!!ix)1OWz1%ORBRM6nxWd
zDCS;_OM)QId*4hV!UU1MU3BD*se{?YLnbG2#&N~CrsI;a=tE#6Nb5+=QmRaoRdgN{
z^vQ1PD`38y_U>GzV);PL{<fbXRE(i+?*dezQvRq`jOtYl@F~=cJzsp`Kk4~Om@sUA
z0aoVP*Qc`*v9zplm^6W~GSMlx^BOF-t2sq4rOY|TS*ls5w(3R(+$0~-E#5QO{s_g$
z5m>g>(G?fs5Pt0a?Gaa7sgOfGtRZ5a?3OMP_r~GWk^w36Lq1ZPQJ`t=)&|8B=UBOz
zKcbEDi!LUb7Pp1Uv37!Ust4VRgv7|In>IxQo3@oq9C4Xi@U7?}8zE^WU0#EN$xnsy
zDW1{tql0Bo;s(|diRi#~xnV-89_Q13O4V9(4wMWh!8;>|%AO_97oyH{cNTO$r*H+P
zUC#(bg6Y_s+=%{e-_dK@P#^tc2dy5P+hUllqt{sRcyZRUkcngLF!8r5<Bn6Y<@R2`
z5&3x+4tu@hLe`hQUHH=X&Sx;?moa&+VQy-Fax4}-A$+_Bh8$CQli_@!9Ew<b0^}U>
zEyfgpGe7;?S^JouexD`OZBMg|r(2tgxyn{NRu&rggkTe_B*sK@pi61i$EebR9&H3h
zdAKSF5`kE-!_Yj)FtHOC`iATT#9VMk)2#VoabREBv>*qza3L3LC39V$VVG$7kOSFh
zTODLS)7j_^BXJ_KOOe{aMoaEs8{?u87<D#KOKcbRr<!OYx$V`#c5tuR&{A~ECcM23
z&9NoY9oxVZ*+h`P=`~wUifn@IW>>aSbF>Ul1~5R0ZR7`!gdQIRCX(A@SwF&QW0Zd>
z$G;6Df*)-jPoZUma4@+N&a4mRT@=p53JyG6$Oj)D#_}PjcC$BJni1WCSyeW6Su5+u
z=M`h76)QoI<^p-@kEb#6G!RdtF)xcCfIvY!U!Dl^Jb6+u`zOLYH*EA*Fh|J~VV)yT
zg!x@83Pdmxfr42iPkeW_JSmt16Jef(@m&RTggg=EaCsukGcoFm;0y!`W}!S0W`R5@
zn1d5xo{lkM1@km{BFt06fx%I0AR4q&&<xyjqHYGVkF+g46&;3Et~pXO4OoeV5m!_c
zK3I<iR85rXUCz;GwN=tO?Q9h8P^WNF#BqO1%J(;H2b1?pbe8G;5)T|<Q?T6G|M!+`
z1CafH(uhU|-2Gi=zr?#6um}eG|4z^>T<QQ27Cd#AxEJkTYBPZqN7(;&9+^1zVSsS<
zOI!+U+%KW_|8c*>1RL~@!)@9W=#3Zm4Em*WWj{a>L8los3*p0eyeW*xehIbzPxecE
zlc!04I0^oj=eXeqY|?!s{VD~2-Fg@NhZTI;FG0=6o&$K}o;f!BGn3%I-3$DkqlEq`
zZun;^__AN3R>8*vm1mR<f6c%|`F#1^p6P#7!OwBSU-O2@hx;Y4|4;Tybgo0`V!uQh
zjRKUc02YM%|C+5UvC5MB|C+53*ITOnf6dnUjP#?^g)e6?!u?ZLKA#Hkq&730U4+dH
z1Mv>a$o`Kgkl4c{&%<h2KN*gv3-P4eS6CdFa9Hkc`w8mud`PCc5SzJ(4eQ6*ti!*P
zGi~ADG1Og%d_KabE7GB%Lpe$izKNU^2;0CN_S4G&4#%wEF|rx5#u|4fmpKofL&$#`
ztYnYORA&{AjC$*4;G3*T4r6~Q06fshmHg(a!mkU#KiU>HVYttCy?54c<;#*h@l(uE
zy1BvO_-cY<9JY1P;2Lya6q)c)87T)1^ruutxPdxO9(X>xB9|#78wQ?d4FfLk0`;M`
zBi&9C(MbW6nT_y(zH3n;;UHu#EiL@k$3`k^!wuWsNH|mBmgE@Sp=$<NV1TEMjYbC>
zjSlPW>y!gbiTjuWp*X1!730!y!JcKZxuRk7$pgwc#~LbIAC{=jQe?z6e>@h+9mvzZ
zuU%`9uH3>5b@Yw{X%s;^c;HeJzTf`L%j)r2pEm(dqJW=^?9Tx{Sic&ZmbMV4GOZmq
z2sbX}&iD8}`{-tmk&9h9b^RUu%9)WKU!9zPPL0iB;g$2r&!2qc&=kucnHwodwsL`#
zSt@|C4@Rzi-pFd9)qvux<a`PIzfs=%Kj&G7wNX&D9(u*!=&tjP=oV0go%m5X3m|Hp
z&%4}lL`zpQPy4~BI3ObPbIgpQt)PyTLren|6X;v8{LTK*LOD)^PEU8%KL(OzU}U(;
zMJB;J_@mPcIr4Rywe}*L6OyA*&v+gdAa*kGLoqwp5JBsFR0hO5bzIzZ#M6Wttu%;d
z>bUgaAV|q)CKtVwqKLkGk&`+p+>xa2fIvX06y0=ByK7DP1yU8L>+GU4Y-0g}d_}Ha
zcaONR3HGH6j=0nf#O?H|qgtm%4-SY{vWu#kW?g*Yf50yJpt_`D_orjNP2Qv-zKvDp
zfW(8M?2Who8~tta7GSykviN_*+aiEJFriVW{G{z`X!?PH*oWMY5!$M-pCmG(rXj)b
z&%mm8j;UbC^rr`idmL;g7TB)gFGpOXyU#arF_=G7TXO0-tX~m-0@g#Aelf!6@TfIN
z{;9XnjF%l4ZpZrkU1|;Bco&2+D!W#|ta}%5h43ivj1%BG#nNdB(Xh^kpdp3Ff0rPI
zYOI5ok);FGdI8%*jsD$vjsbfR*lEBTgbLS|ATW~Y=Sw`u0;qj7wbrjkkPpwpgS4Z4
z@^=y(RU0(jJO?Bma)`wG>zT^;KnsJd6MX>*qg@pYu?-9Xw;$#s6xXbP5BR5Dvmz!7
zd(L>14vjk03?8{kZ<uI0V0XofL8)SV>@<ZbCw3wx&I%i2>$!f+Tot=ULTND{kxNd%
z%+0qCgjoa#agrjVGpHFp%lml;3a5%K|710a;dhXPb!LocRK#|C#jRwSxC{~-(V{5z
zuGj;3rH);kjwkD;sj^)9Iu%^0g3E@&H{Ol)70Nf}Z$kg>uF2@zp+%mEwi|93#%Snv
z;3l85jj#;FaP>A^JC3SgY^tAOj@rSk10&y^daw~5g_EC_-QJEx<M8#>wg6^>=;0JZ
z+u)T_PQ$QpUf{MrZCzF+L@vw+S$BYmWO}?aK0tARrZUo0N}5V>rXkkQqkxN?qT+aE
z1g}-0$jVS^1B-{*DOyJAbtK1nv{3p-Wv{bjg+e)PNtH1?R}Aodq>GbI>(sMIaJda0
zu8)A%o6WS8@DA%M*+~KSrReFDVMN;V)hf60h&ZL#DT!^vaO~|Lti>mRdynEisXV+h
z9wE(%d$7Zv1_3IJflJM}b%vYbf%-kfM0)(7C%*}bS8{}|MIRl+TIBhjfTE|)d+sSH
z7M6lZ8cRSUqfm+jP*w)1zRadNl|DtVUykCC{c^{9zz6oriI+A{ZOBCbDid+3ZT6Nd
z8ZMa<OY9DueYtJ5mS~qIp|_CZe5Utnru6DK3M|;^&?BNI(^>e4sL6CFfrWF)gkdxw
ztg;8E8wXRN4vy;*)bJ5KZD$W&((Z`sNV_9G;#U}Fp-%Qfjp3%IR7ZrGG9AgcKG*B<
zEvSJSi2z-^`}E-N7zbbM!ygKU>wPg%#PtIltF#tr7O+xgrk*}RnS!)<X9?TErMPk4
z7UtzxIqXFT7S8t*0Z8slde_v5gxqussSi2UE0WuDQ6aT_K#>H84`mRsXRa`Knvhwc
z=6n`j$9q-kHG5Owr-;x4R>7IT6ZXUq0{R9C4qwFp&=qOP&=qOjpsUx3&{v-U=$MM3
ztBn6?#zOq0L8D={>r_VzUpYO%cMGA)@*zNxK(|>WqH3ZiV#mQyk{W!#osCfGdL-`N
z$^HIiajl*!U=y@@jPqI9F79xdDVnF(5mT-rHzHO7w0o=e>wI}|$fd17;v)NVfDcxu
zp;#gfO3MtELb+3u?Bogwpc$l=8X$#ee->oc?#mQ3@~i}e9paK+%#1Uo|AWl#=@eX@
zuFTkpn^n+pjrr+i$&*j|s5mtA(@f`GhV!nEero-cAF*$TY+$~geMV62rpOZNG^W!3
z7N%KAn5;L%hd?<QVNfDtFH%iss#Qa9MrZ=zjL<SRS<mFcsxERZFL$-iuqMsQm~JKQ
zHCw5#9IR4~o(i=wE#PQ-fCfl4iqsU_Kq(c4(QDQs5Odg~BVvH0R|(POTeor(K%`2x
zfhG;nJQ=dJS4Nd!bWsze`YK1v#-|M8M@O;@bV_RhnGU<f(kA$|y@FVTshXwavB`SW
z53y`V4Rp7U0H*i*P7o3Hw%^y@LS4+ku%4QS4lM$aN2iX6JZK-NO8M4xvS$HD$9AvH
z4_^|OM+K{qeX|d|i4*l+3K&&!1d}bQ)F82_6J^&y+`L%rdMAU}W2M2#xif`U+T+tC
zx96o{Vln4RaQI^kB66HUvbj`vyO~S%I?-G{c`A#{GeLnaQJ~Kg(Ds22$<P&D-Jq-2
ziO|OqI?U}{umWKx8Dmife5E!d7~@7Jg(9eC7P1w?l}i7{%UJ<BrF9nbCFozK6!A<w
zo|Lp<`p9FUf4EE_S^ws$`uGc0@|vxx*347m0&s3vrKCREoA?w1>=o7X6T;a-hZ?p~
z=A8oQ-r`DKig0Ho*O8z$#~V&@H-1G5+!n5Tg-6q&VB1ZET|Z?&)B19#f}ql*tRjxR
zPsqtOiR`d`q#EV<$*_Hr=G2sKq}lZ%72rcP;9e-U0oO+TBri#FnL@SQB-%`=0o)f)
z-Y3<m#bK>FMdj>;tR8Ycgq+%b+lNEIUeS_c%)r)h7ObCy<H6}Z+wxChP*meuIrhbE
z__}3Rq;`{!WFIWqJ%@is_Z#Nz{!F`vw4;hF+Hr>*JgBbs8F{X*cQZ+j40tn(U|<k`
zm<$FLH#L~{AvPG4rhvh*%@)DIOB0ig)`C?HjVNnilXc5csIBAGaaP=~592VAL)G##
z3cVX1>K&gDI4h{_c3AuP9Py4CJ6kxXU&+4i6!dkEs_Tm$?w3aHTi8dwBbeJ5%36-@
z?{>9wzJFC4yIJMvW>vUXt0lBoa3<+PN`L5+gGumK<?qZ>i^^d#lykWxuNsW7g^5#n
zG?wJrD}qYJRzdubNSSV$;9xwWm#fM&!W_NKmDU#vqbemC7LIYP*c3##RxIDzdjgBa
z?%Mz&)yu94z8p|N910)x12_~yj@hHnQ7&L*WyT8{;bbmBL)TB^z!J2X8X@NBt?N!A
zNX$4%#$H)~k54ghEG<c|Ntbm2N#8$6Qr}Sj{W8s9Wof1x1bQ;l1NnA8nU1`WS1mxm
zG({Jm1rib~S$Fo2L@?VRkh(ETdaNt+_8U?Xvx5&f=awM{igPY=LaQ2uqhta5_;&vV
z+#o=@30TD9-G3c`fExu;Hvy9#>#O5=(pCFKv_i&ymRXXdp9cu~6ne*WzpB4c25o{g
zSq9Rs?Y|5f1xPm;2;~Rwe*r@VikxmTAU)Q$+_(&;9GDEA0SL-qiW>6vDj6vEIavmo
zWNQCqpeXMq1EIX%{;MivpvdVa1JYxC=8wyu^uT2B7l5D)^w#6!AcOt00g3uV^I9QR
zQqBm9oA4qoYo!V2&Ful}V3+2W9S|m~^EgGZOjMj(4LMXjcR-LhE@MkK$sme!Z*XZ?
z`2k_DLYmfcJ*je_(%lE8FS_)g;=m|<LZ50?p(yqJ2b8v<NZ1Z0$y9XzU>BwER`#oD
zP1H22Qy(8ysVL3-4=8O+O{rL_?@Q4g2!U4#fd`WFm;=uFAxCfzNSuE@(44G34XFhv
z&7EH~>OjPB#DS7zy~iWS4nz!OraCn<;v8LZz$FtrP?FSnY6rv&GAU!s?jj;|Z|N(*
z7%P98k$`ot$XWaGHB0H<WB<zl^hdtLe&59THaG{eU|ISD^Wb!&KhPpzG5Wv|{Q(tv
z?tWfP7h0!%_E}fhQ}IVEwZnK~CU*p1#hm7VN1o##&k{vtWW)(e6J~ucA7zhCEwRri
zOd8F5rzoCcE{iR30%n2pSq)|wCYp2f{FP8RjLHsRIWk%s&fDIlhdt^Mw}&~{k5%1T
z%#H5sL!v{R(yP-W`Px08O%qu1AchK%{q}1$#Qf+;B$6gp_Kk3Eu69?ys=pE%aSC+_
zT^R@oEUD4+6hi_0Y>m@flF?sG_Eqfc3V7<C^7ByZeGuTVBk(|=jJ+5U852xBd~(WB
z3TmckMlxNALUN$W>)xQgE2Cj*?xQ=mnIb}abl-t0uN?`e9ygh)0UI{CNIzGe-MxEj
zf#{=W(=+x0*mA6==+6~rP-{%~a(91Uqh?nc^u&9AJpt52(>R;RHEXzYNUvGL)nU1-
zjP!LpyzbtM7AeB1nYLCDD?vfmd{#iPQd{I4p%Zum9Al_Pby1A&;UcFOIQwO8YhPr9
zIqbp;CS^`G+=^xEqn;6oR|M5nwLdF$<#3~7EHau~$^+iWLt4bL8pJ7ED5%1cP@zoh
z96_DAn1cts)8Xh>0)BTrRUU->Sxx`!It>>{Pat%Rq%@1Hm(mbnzWCg8{|d8$^|gOE
z12$|9_XZz)oy^&1WZ}i>dQ)F~`ZsaDLZ8>&+?VB-^1N<LNiS}IH8WXgp3A<k*Bo1~
z-NO_9>(n|ol){Xugn<{76$jS`JUI`#gH2;t7D1B3C`(;CL<?w+giUAMkGe$5k}nUf
zA9@$8qAEpW{dmHj`IgK9u_o3mOQ$e!uT}1wM(!T(f{jMj4qPH<w6+`A24|!rqOVS*
zPiFm@RaBE^M6mMNOgTUg&Bn@1H7Av04MdCXWLh2wfQK|=5q|Uxq+wv?bSdcQTC8Rs
zOQ9<2DoqXyC0gg4Gqv%?82LJY5MUT4Yr``~)h!3CTDB_dL>3>!ujpkwh%h!9c|y22
zt)4HTWwQ~AoX>e$<eXBtL7X@g!fxgsWNdPt4${S{(szxWt2z3D>FY&Gx|@vLwFWK?
z%i6_KXpJe+ZsVnF)uaJ13#?0NPHfTIB-q-k%h$G3_G>-m89%>G>AbBKqVuecm3CpE
zzaPhmPM_X=S!R{yDeOun+@Z*xZKM>pGjQ!I=n_h^WY@k_;@Vv&cq1<e`EqL%ucoWn
z-G~==VDZ<x5XV96z2#72d81zgzHqdRDqIro-x9<mr@1Y-2GZDkekgKHdT`{PJMImJ
z$Kw#jogW0v*YVX@vn7a=RvW3HwR;1`ps$VGcY~3Eh290LV<TxJyCJ$`xEl#)QUwXN
zm8}Sxt3&3>SUU5e`gejL45U(nnymR{Qq}*gf+tjPum=_Y2tB%*G`?BMX)f_+CU^;F
zs}EA=6lEqu_%kYm4}!Y5s1djd8+RB_Q?cg)V|T?qzaZ|F7!+Ef-uqpjEmEHNIo<VH
zm0`mC`j*o*aM+L>5XduMv93T|6HH}6TU}mF##u;=g&(972~8~hpo3v6ozg{ACIX5N
zS=ygfJJ41@64m079$|n4;^+y+91Vl)_69?w<qVxB(ov>iP$s>>Ada5s7^q=Xh`1mP
zEt@2<y@A~r{KPeOA~el@QnEklWOLzc*vS<3ghH5RC*w4`sgRP1Bxq%JGLd7-l5*zJ
z5+p-wXcu6rmhvr*UOOE87Xja;0V|&Wi-3>OfSY?SrW4tKfU)}Ci>V7<0Fz~U;_^>X
zOzU(qrN{pUH`Xhh20jo0TXj08<>El$Ptc%qHE9(t4pdc1NOpuy)=PQxUQapaqBO}K
zv9uLU`CQXEa(y6-?n^~au>tp9lSUM(l5Fl>4u|Mu|9(k+DYLWsidOUA(SgM}XFmKB
zgE=9l6eW2FjXOSBu4E~6F{G3I+Z^mm&`m>B3HG8Q2WDh`tO3`%7)!-JTQBf$xNKo6
z{-u$F0nP-uwY&RzXDnt0_#A$|!Nya%&`MQPmXgyX+5_f|G`RGm<slk7kNz9n6}r&T
zm<P^u&}^nNUAr8!sBrV%3SrAn?Z@XES$pZewBk$&c)_?QHo?`a#Sz#G_Y$`D#$p}P
z;M<GGv`=kUBi-?WEfULSFN;Vd4tI`5El`9B-DRB6mEK<D=ZdW5M(z$HYfqA6KY??@
z^y+sE04Z>Uo23y+?s!9XAXEk(aBC|2UDg=N6B!J5hD36~nUb_Uf?$8vK5JajQ?)+h
za`%a#hYp|%ZwkOhn0`5w)v)fR&OtX6m6~arNG<Z@K@|J*{_sG@xs>uXtiuEqhkzi)
zN+T=E5JN9~Q`?#0ov~5m$alRHl$vMj4z_#;lyl?(=j=N1Kykiyz&XQ`lVXY(P-f}C
z?qW5#<45SYqeh~~p{qY`Z?1ij?IYYARr_%gJ!&mhJFG#aY(tOZBJ?;~ytNNVs;WKc
zb*wkme1eU9=x$(?r4!waMk9B*5y?1@8DbN-Ksg1Pi@KpvIA8_Lj@XIJbwFkF8#ZqT
zl=H>|&N=jebAF*akiAr=9<=vGol_MP?8<*)23y;>`xM2+OPG@lVwq9f1cSKI$Zaxk
z@^0-G*lF40ghjNqAHq%}A~&p$hf(}M+qmA1B0$<k@l@);|I#Rq;)r|i2vUof&5Uh~
zdoYSqlu^8ehNyR)a|q~RFd{w(ni5qpjbbs3qH6ziKN*XHA?_w?Xi&Q0$E)CI71VvT
ztt&PSrzE<@-V)~*c;EA7SpJl0n5V#rIwjA$z%$_&Bhp5t-xa@c<j#K9k1rwkWuEi#
zE#0cRe@B<KcE!KCtnGL0=vw9(ino1?Fd)?OR_Fmh+y1x<XABFO(p+&PT!n5kmRMn>
z(Ltf`rJ14dmA+8;`kbJ*Ip|#x^sWqgSB1>uLgrPtdE_!*$h;`Wy<#e!pJOydJBq#c
z-jr8*^H}c}pW&zSqcr^9_0Juny_1&i@J>4GX78qDjJ%G>y*|X=V(e{Xn{=W7=F#3w
zEsVd%_@xDmuV?%t#;*)8zJ>9vj9*{Mcsl?U;_qiZz8mf5Z?J&B;{yD>nyEH^$)9gP
z%EqPqd7VFR^XI*ry<aTD-&;uVMGJq{^Jfcx0D4+K{9We5&sBc>+)#j@9|iC;sZ<L=
z_zzKjL3P7eC_KQp^w_lE@>d~f3>F<T2C-21bR&E><O~6Zr{$CkwSt4T1qZDx8MLQl
z`qw4i;@3jn;y3ZviswxsvmZnaabE>--;f|~+@BFIFKlzVFf+LG<DePEun;0XM$%zA
zR;LBA>oI&`j=aESIDGMTD0~-4(5dvxwK`QvI<6K$s`RBQ@jFQDb0ECNmpH(vq_C?b
zeML$3>XPh@CD|X9WPfI4uL#zzMSVNS*x42|8-p0k0#%5Vq;CsmYg+iuC+~Iyvo!|3
z%aM0q8QIZb_S%rSH)J-Jn9GCFHovj+gsc*XG5UqSBt2S^y*rq#DQ*dw%_Zhr!RTft
z`Y2>4T3M34Cz#!+$ZrjqEhXk!40tlpKb%BsO0qkH*|=_p0$E*B_;tu!S7L4oMn7b_
zN1b%*O0su3)FV?{Np>uly)u}+BUt-xT8X)|#C#(Jc_3@8)fGB=z<6e@-H;YK`j~O@
z_(58Ucg#}!y%F+`L9vcWU99o)l=>427ebU$rVwQ-MJYvSQ%pJbUdSbdpCw4K=@MH&
zT8hE!w}Z9sq?HslhQdFEJ_xpSjezPvj3w#2MMkzV@jVfjq~o|Ms!5OP6U=@mSlfcJ
zX;&eg@6ezMX{k<BQn&&%K+O~lT3O;WbjPJ=NL1Ch3ja&d_F6EzC0N@E8eBT?_ls>g
zpg6w?X4{EM3Ri;$^r{pMF20l;y5mwb*tnD`#cAkNG&BaYTZ52Pf_|Ot(C}VK_P?O4
zPNI)X%=Qv<8TGn$EA;8q3?{8z2YnilE{{+x@0gFFNA37qhQGH$=1C!Q63oO!FcX()
zGZELPBzs;`_)&shJRP*<5!VaR9ap*C@1%*B8}-I5*BhNQak;Ww-Sz5xCrzC1klBrA
zACoDb2jFo(`ISliDz0zEkPvM87hU+d>udb%-g|Sg_qGl^ReqfYBj1R>75H0?zm53&
z2!Eg9Vn`nh^^URLNnh~ipGdy<3xfC<&C1#Mn<h=mMbflfCQZv#(zM)wj?eOPv=j%}
zyr7?ZX9R6YAN*a+Hs*4+G1st-`2pLQAG3{NFAIwn{(b(ym%nGeP6A((fOFE_z&UA}
zaCMPzby+E!&8y1!dqbsBv%DHm$mB=-*&1gzNm!6rs>XFGWc&vH-o@W0WJV$2X9a&&
z^JgQZ;GKRg=FPxyvLu9myS@9b+D91s=P!h|VVnW$Gj7KdTTb10pfY<VsCOmlyHtIS
z+ec5({?yGxdd{*x*_KNi+yAkpWji?5=H}Nw)!ev9o~7QUu<D+l+n;Qb9fRhnus_*0
z(6;UWTbm7Tj&Qhny;5@%ZyY?0>RpPq$n#hGlTC7*n_t_XY|Cx868~H44{nTNyKMGO
z(%i(G8P9h0F4+O25^l0T*(ArgdENfht-Xnx)zGjLB1neTWR?V;2P7EqAoJ2!*^dS#
z-kxwQ2)hIRzjQiLNKcNj3+d|HbRoISL5X@7HwPu=&S3Uxy1petw+CxCp`q^xncGWn
zGbX*)=%;X7_s|gv4s8k!qR$E(=Q}vQx>e(FRnnMx7q6s(V~xTAzcY?wTO3Cx9i8CN
z#^4~jyuh(>w9UsuHV#+SnQr5-YrEipw?sZV+&H$!aqOZa6C4^14#M2?I^ek5!EvgM
z!==!<HV#`gwblwMI7LLY&5deD9M$e%?HZtZH8^Muob%rN?$9vL{E1ZV0nbTr`12AR
z^EU*++I@Q8hPl`1TIHRN^Afre`m=?NC{Xmvf`h&Z4*JTVJ7TU0nd?i;wh}WItbMgB
zbl5RB2Z-eDw9sLv-iSwzpP=)$27l|(fosEGOan!splRVij>!TF?)=2CeQhWO3hWc7
z*--_EW=QJ<h0VMwZkX>#9O-e0EM0I>PxV^BU=adeOK$r$pkY{uueB0@m9}_WC&>^8
z&~CZg1gJZ=N^P*E#L5~1)usM+$g~7#95><s+AX&wK;5|oC|(2TRt41Vff~>?^L<=^
z$*$Qq=RwTT&-_OE`e3%DyKp?(2NlbF18c^ZXsu2ZOm7Zm#|+hD6u~!!%-3|c@_C&I
z-AW_79bHesYO;!k%r|tmGNKcO(pMSm`Ds(oYAk;Z?oe7VdqXgLRY~^JlI%AObfywj
z<Wo5C$6Npi!P@s|eFFqm`#$Y0RAdZPWDHbfjHrm{#D^Ht4Uz)r$43eJ5Zw7sM<3pm
z^2hhMl%XH^j<H}C1}1F~nCM5NMDcn#<A%A`DE!)Br@gTx8^5SjT?YQ68!P(P2HliJ
zC8*eKSRCZ=3iX2upc{`@8Z=&^r0{C3k-gl=em9|nt~qx<N@#>m)N2X(bfR8MsC|?|
z*JBBN5X^onl)XHZjoB`AcWImV1kG=P=2yX5DWTs3f-a%o5*SJdrSdNRHldV0!Qbai
z?)7n4ILuWyvR)>SlX5j%)nwK@b#Xn`%g9nS3_Z%ZDHyfS=VTWKE&~!`GakYa78I3B
z9IJm3!vF4zzf0(iUqNsDTJ!)W-H0B*q@R?+DbC2l50*pX7rXfIi`g#x-js(F(<bI2
z$)t4r1(^U7T=<pi*|C)g<DkVR4q!ouU@L-9c$_~Jz8WXce;>R4ZYeUBH*v`tmghZk
z4urA1k;;t`tXYT|=;#ey6B@L>WKdhlAee`BP%f-#Lceo)h*OA7UB+PpCNLlS`-cs<
znwi+*dB=W$zqdl(vCHxIrZIhW&|AC#f2&{^F(gv_1{dU20~Mzf>xmM3Lm!k-EdvXo
zFBb^G;V?pB3@3)d6Z6WfR?I?h$(x^y06@NkPs!0AA#<J_{lSsA@({X96?9xGIj}j!
znt}rwLgC?ge2)Q-DjqL188d)Bz6Zd72FRJfkolBsb|gS<og_d|QpH_nI97of%dC@h
z#x@~Yot(mq9THcovUrrgP)aorK$=pl+A2ca+Jeg|Ls)iD%}me<%7Kf`C<iV_;EF!$
zWhMfNX+qi@Sx!kzT!2OrxiU>gA4y_9Nh~0VMb>bgv0P`YknkzJ&vTw^NV2A3Jt(0!
z=tOgMqWKce%Uj40d;}z%BU7cJuoe*bpn$CJY9Q5;31<sP_>^2aM-pdC<`*=OC2GDE
ze3s%p`4k}UU?mzUY1BZPHINnw=jE+q2*&)$e9qAs({#p6oiR~B15x%9@-Vi2QyvCj
zC+6jd-~}cGk5B|JAq0=mD%Nm?bts#`#7Vk=8d8$(8VZH(mzeKjOfY1A5;8vz)_#tL
z;N0&Pv07|OGmai{wmhz*nc0rNJwfl7Z}9gOW!yjn(3QCoK9whB02wbNH8<l>36d=0
zf$W;`k|a|+lp)1qjb<X2CKQMDW3GgNBq1Onbkn!blI_6h6vSE%=+w{(!L~$groj6t
z#Co(QElnrN)QMOCvZ{uO{zynHULj?U><gzfTQq6w5OT_<4T&KGi@{8>Sg>sBP&z!!
z6jtz{0O4VdK)}OOd2IlJhj~&7Z}#4{1An_PD1iY7jOAe1N5+6EyEv9{R|kJOImEFS
zUpMXIQ~x~vVly^_39z&XZi1;rFcG#E0S@y;zKzTI!wG|pYx%=bjg6o1=L-xsZG4kI
z@ABsZ{(Q`z&-wE;l6(>6&r1HR;m>>g`6quq7b=N`!&i!;5Ue>~V78xuvY32A-6FGi
zIyLhBW94DQBX|IueGvB+30cdZP5k+UKSK3R($F(;XjCBFX$ISvQa^sm*aVda@KaIB
z70WC*{^OcdX#{JQvTba#W^TZ|*Gs5Odd>-TCb)b#Q&SbQJ}AlhxFqXyv<=IHwcEQw
zXC8C#2srg;p4uNlN!EsvtSu#3pYpTzr{m|}VGgf_tN*1vK1sF5^VzP#=FDY?_E<vb
z)k4OhSS=FbJOYGJmj70}J82wbGU;l_WYYH`lS#LfLNHESjAwPZ5FXU(Z9F`c*8myd
zK_8ui2Cy1Li6y`Xu>=z8`b$fIxb->?3*5J%d_kbI&e90bQqTynItq{<VRKVTYkDa^
zpq@&NhY4YgXFaWyP_-H<+vX9PtOiM_tr#+j6+?m0iluBy-@_)JeYS!xF%ihB*3j!E
z?B2u(**zJm<24YfC(R@EQ<_o<(Uc;zu9N*F*p<YWu*!`>Hw>19Fjx}W?NN7^0$ay~
zQom5xlaJE7wWplQ+0MCrm=|yt5JeEsfDH+geU%rq%dtdU4wicX(y`o&5L(A+AZ;3m
zrGa!v2)~7iuHj;jAxZ=W)Y2A($PIN!<OU~zK5htVDRLX36(=CVL~|)2$deGBf+WV}
zM#Q8oJUt1)3?PEJ!xo+flCOajXdp!b<OK~xIkx1HK**y2;eCgq!Wu}022!bkOwmBf
zg_0f`wF@<nY9@lNq*l1`-F#GPasz5wk2UWzT$9N}N)A1+(9A?A>oko$Q^I7Y5ALO~
z0wt3W?xloqFExvP=7W6l5q8ss8#R)EMq+3rr4lONZvPydt50_voGaxqwSyz7fua}H
zpcAR7rD|Byal59t8uAjQf{-M$)L67EHLIM7AeTl;7^TuIVWJoDZ#g(#ja8}k616rF
zSbZ964zYe$C#t4k@R7Pe(jJshyNj>k7C@5Lrb)9jX&n-(9swE#b;brB)M?asP+9OW
zM;sSCJSF9hhk1IZlxi8+%2tCO{zJ3DzaE-nw0HGn0CiVRRY&!j%XrPw`3Rb<U8~U~
zzo46Bc4Em0Y&6x4ji!X`#0rDThJl>_sIeq5ZJ<15<I$<hwSfsxuBjZ?6#X~R&h0Ym
zkNI2-)unX5|9*<2oeSkLg?5^{7lvMPJ!mix(!(<Fel}@J(Hl+Ke0q5!)qZsfPKZ-=
zd=FHKKP(cd41~-nhG9;@s-w!XP&j38ra=hpp}{{9R}=2Dl^w@K(BW!AqS2F3Ih)dv
zLwx_ZyJ(mr^I~~SA#*gY)kFY`Ac$ZQD08+bl==P@?guA3h&IY&3Pk%+xPJByF(?9e
zpS{DP{p0fcapc$cfZRRmWMxA;c-3Bc2n%W}Lgr0*l_4A$HO1=W#gR~(gubJUGw&VB
z(G?kI-h)ROUD>$|^%7mkVvJN_t&q1EBUQzphjKegyz@4s<L5*EY)ub(=e?Fre177~
zC%yvW!yHZu1xn#^jK;N^sp#E5>0BW6O1C#4kEx5Mk!6nh*32?T*dif%w0yr09kKp_
z>no|&jgnXcfoT>XcuyeK$@(hNHYPHCA+roiCdv_3<hUiyN?uMqsGuHHQV*tBpW_m}
zeb$>nK#<ZL%-7d(D$J!QhcXmHIZB}dBX7zef+(~m+UTOwgtFB=9o1oq_jkBHFqC|@
z^woac8+Yd@t`aCPOe_GG<pNlnh;c5SD2gYaWu3;;$FbD09%~j2Fy=REalEwE@j4a<
z{?>?a&}ig2cP=)}A?+`^)&}x15&utsA3#|}BK!#}{MQp143xqzYa<0ec7_8#KbG?e
zi)>`cIL-&KCZ7qNM>L<)`XIfSOWH%&ekt{@c4?r=8VB-XRUDoKg}6cIoI7We!iN(m
zOr-BB&<9`>0T%QDwxaJMVk$CBMW0AT=mW`=4=zm+T0oy1I#$f(ogr)|2QB#!RY8;W
z+A4_ZVG>eALY^fdf9Wot8<NY%DV7lNhx87`0u;KnrN26vPp}r?f)@~uO%tFf)4FiM
zR-wqpXuwru=aP=FO9Bb}duL3iIwhSyF06}2h@^poo2`Y04`SPtX4ExK4k{sqjUt?$
zk5NRdA2!0*AaXghW7T9|VI$PXMT=o#{|Tw({s5o#unnqx9S-Jt+j@8<O7D7<o{LyK
z#_6ryTFH{aI(Yu*lDe2gOu;_>$s>(0AcNRQC5}?9A{ysTpfh)EgLrO5#X*U(=S;3q
zSlF+<w6e*n@B0~6$THIu7S=o#)}J&Par}|uyiPTE@JnW|*{YiUc?w!YhnlV`w#E-K
z9Y}+^_ek38PMb7+S|}t0?)1e9h*VnZZ&KB9O1(a$0M);mplg<rgeI%G59znYt$+kW
zqW{_-8F`L(`W<{>4vGCli8g_sHpR~>0k*Y)fvKBQ@FUHt;>SDvIer9La~bkLg$LwC
zk9;-mjPo^L0BgP$>PRJ_HR{L|MwCfcrDJ{hL)I~Prc8mcJ&`4fu0?X#_xEZdYnC?P
zb(8gvbP<Hn3_%>G1tA1e5a($@oTUVjs(d??JpM!+HCq+Rd5Q$cLy;mD!aF^}G@ws}
zgfgDgOBuiLbzBxCl(j(0SZI?n_Ead70zu5otClo%Y77Q59wIUnx)4yalyo&&Ytn?*
z3CqFj*_u}&hP?hj^LkAJuVgu){MRXdHxggXRz=Ocyaq<WuY`8_NBI)`&S%K-|DC+(
zx%{z^+&<6JE^^_yk@?7TyvSLD0a_KUT|4dThm{Ig<3&KaPC-V(s_rCkR>%@^G|@Fn
z$xD;<Y}Zy+jG|?bQC}@1VSqA1BPSK(!~_{7$j4Ihd5N%VwknkKlqy0#EC+3eywiUp
z5nXMe57QidpedqFikqXSzKqL830>=h&}PfVmKyv$&3m=rP%~gOV~vc1_hxyo394C2
zI-9J&?G@ffy$0S-(!4h?A$h-C^UgCzbVbks?P;dIEFu$karo0>>mea0QNnjN3<ZEG
z`vr^m5PN-?D=~6)OYdhgX3Xb9Y~JX^^l|ySb~f17{&+&;jUAJ-HHkS!*xtJE>c7Y^
zt+<a?{B2tCw_N&8f9P_wb$*sa4qFjqR_*;5!sSIMlTQ}7s@+HX%C_|{52&gsZEF#m
zjT|%^e)t=L(Av<1CU!RQ<`eG=#QUrxuQ)$)zvioCzIJOlX(%HNWsU|Z3rkI4^^!J*
zcXlXR(DX^Uu&Ut6$NExDScrfPZ6^`&Ga{OaNIoM<ZRuDb(xCHz5BtO$G}6|Ia}<vT
zJ(^PLmQqFA_K?onrR7c5b>E0qef%o4Dp$0s3ItQ7P>xcaMkcCM0{?g6OpdMaYbJsi
z@D7TU{BNZE1C&1qaCkNxo<WiD%p-fqu(hl~(F<;IYCGRSqTCvX(t&G)TPUr+?NRzq
zO7GT`23SB3vw&vV1(ZOacg8O$pQQVZ6^&C#V<~C;fs00=CzGE*fTpoRXyiL7HPEO_
zE#Er!_lj<CE)Jeuh`LUL`T(fMExcdt7V7Vfg8Hj9^`#=`JGGo|RdP<C|E?;~o<sTi
zC|{qkJR|QQauo6OKgvFO=f{8A)5Q;%0pW*(oe$&m2W-^khb@Eb97XyA&ivqqR_DWU
z`~aeTAUdbXYH0+u+Rw1%OXeY;`WEJ`-F48N_ZW-T{nit`?l*tO-o#8}QNMSp&N_MM
zuYX{exNmjQk?&U)T$6tFLx}l|MI*01WaqlAryq`3j<Kll;Kr^Wop>g;J>m?WMcId!
zRos8^3$qZ*Hx~Wrfn7HZIITZ!wl@llMNeI}`;}vi7jfFFQ6xu|RW|}X79Z_8<j%>)
zq9;nm4{AR9+?j&^-M8N}Z+>j^9Y_oO_s!`#<C&Ls^M+I4f9rRrmkoU9H^d11b4%X-
z`7Oh4^&$rRW6Y%)cTD>5Zp47U`K)7pJa_tUumg|yfB(yOANuRZhh`&I6#F>~tag`|
zm`~X`?3+h&3y&Afuig}De)5Lz{SK*sdE9eXO!~>fhld~r%rAc$xO&jtMZZD}m_O{A
zHFwK-`HTVcFGtR};)G+be+4mM{>#GYr+o8R`Y^<R`H53rt9kF#mkvR!D3(sli!xU%
z+3}-~vwkc%&-v5Jy6MmS=<oOroWnXF*?aqr+eRS<oZHSi=7#Tnb=e;f1J2g_KK|>p
z%MTfc7;qjp@w{O(D?E=Q2An^6dGwyA*Vi707;ye9_uj(>z0r0pVnwkCmb}<y&oEIx
zCqO^_F8ho7d&lQUg}2W9t#j}=>(TORYK-WpnUQC`$a$8C=a~u&YM`FwQ>}b_LQQfE
za_K9u#7@mtRO}1?dsk@ufBQ`e{8AN&e}uw+TCez9UjFy-Pq6WynF_zuIN_g@Ea3k~
zz4Ctm_}{zS=6_BK{>69*{|f(Uz2a|K(w%=@|D`mszxW`uu(h3sOg;*~-aEe|JxjmT
zP4+PZ&J%WhqQ2VwPS*&BysPHd6y@ukacLi#8Tb9<Bmj+Uy>gOxw-OJu($V@xK;kXD
zvp!0vZ7U1l82Fl9gzvq74_~3L8ZaV1t>$S==1%@b_u^8(ZAK)NiRNUjch(b<48vy9
z`vkUf>LvU=EDf;!`Wan4MS<W#HyLXZNr6N)uDW9h1Z@J^(v{x(?-7uzjG@@jH5skQ
zP^_Gb<KE7f<wp8;o6?!$z;lV!=4xZ)F7N$kN`9_qLZgW0k!O^E9JIXb|MDahyhrt^
zLQ{GUt}-Tts8a0ik8Jkd{~6flAyPxJXMY0GH*x=PbPxF6fDOdeOkQN9w?J_Bp39Cu
zJeh0alACG}JTMNn`};s<J-Jm$LYh7_n>9)t^mibxDf&doYNAGsHqfG!HZ5Yb{W-&I
z!B`4u2Z;d!R|hvqV(3T?AFSK66eDG@9gTRwe<aQydy>oW%-yjoCB!~Qk<5C2ERVf}
zm(~%7$QE3$3NlrYu7cf*(5n3(>c1#l+@3@*T|xsZ>j|#qaV#}kIp@PJ^c02>9b)8;
zJ{bQQktKNz2-QhgEwqFkY^gh}!~PlX6Q~&@6q4@d$cTo@=*scUCprfRQ9d5*)cbvj
zWHJN<e-u)7;D@X@{0dTsy6Bz$K53$lDD=XZL$;+nPoRM>Mz-F4H&;Q(%oPq7xc@dn
zhyI{|=crXZ>FcCiBHA-k<x&8s*55uQ!a9`<4&_`zgyNKncc~))gvAyT(ZZ@(N*Us4
z!eh2%@laIgkWB%qB4i?VpT~iKRKNA|RNknF;c6D9IJLqG^rSQvl!mwSkZx=a-UpkU
zHro$2X``&yF^u&evAHL6KiGV?YM*R+yRqrt2b;g7-1l9YezN&bQJ?>yGzabvn_v8#
zY)U~&k!r<^mu6g51N&g^8Bo0+%mv6Cu4??x%JA%d`%#96?t?k&p)4^%zfeJ~3aV6a
z=Zi2x)mS;1V1K4K_Gc(-X6mU~ZCP_r+Fo2ql&`}g9U9aE$W_hWs&)}otB9tm8q#su
zkYBVZ8-hDk`K21|%`|wnmEPL#NV6M#kjIJG&F2GBi(s@PYUYlmf%?ma$FbSxVOCkS
zCb&Pea7Ftmatj>JbFGcm%TcgR#v1Hi*riTE?5M9BNW@0uVw}md4)1-pzv<A<_90>q
zp4m-=kI5Z$Z(;4BlRoS;{?q><GI07R-suH+v53x(2oHTzo^D*qpK|_G7Orm3Dy|O=
zyeJqcO=puGd6S63gK@%R3$9uR1G@v>+H!yinmEh0y{LY|zyMmwbfb0;J_PU~WUdNE
zW9SG^&I<t68R?<O#eIU{)mwX%lP|x1!WlTW@EQPQzTLp0^7)yiFS2B)EbH+_p~^v)
z3}o@BEIe~mW$`hK2U!kMS=eZ(ESbo15VG`>EcYD`wQ9eM3P7b10$p0rXN%GTBb+!3
zC8zVoR<Vt(iTbFSjxyXmO|=p|E5ZmY_>65wBWoRfkko>KDj1-GgH+Jvk#C(U*rtL{
zC4h7MT)H|%8;@5Wsr=+jYsuk~WrPB7nhH*O9<}LtxU}y637XLyr#=beHCv^nM0?JH
zWP8p~*Qa_u@`^7V&eh>Ugq*CahjjUmVti1-Y3}xZ$opD~NLq$0syA+r<DeyP!jd8b
zG!c$S4}+eSgpC@64)siZMFgu8hm7@?9IGAI|GM*8D`7PpmjDf};}VS2)tMBM8zypp
zA7p<=L5l!tmQo%~mNg&ZYeGSH>)%a<@10K+etI>2oJjKS*b!-%EW$28XKE`xzr;Zw
zY0&Wzm^rf3KLA4D0Q%to;zry3%(VbQYHzkKBVj*AA*#Lsf8+L2#^0t<ny!&WP<SRN
zOg=N^EYXu?o+I!r-CFmnJzdtr)A4ic`8fN0f#=7U2vazb)l;q>kH_Pcc&zvQvv>s7
zUt@*JGS50Z#?My4EZ1iIy>I>bSx|{N9icK#AIiFey-e{Zcbo@0F$Ezu6eIr(p??x$
zqPl@`xM{LZhiC9cxAZe2qmJN=xOguk_hN*eFi>{0kvJ3{i@y@AX#XA-v|oqy>_7B}
z!na}#!<|^dFtx}q|A`X~3~#exj!iQbAOB4L+S#Z7VhlC~ad%KU_6Th@qRoed%q>QA
z#i2%Fv%FY2G?W`N3SX6-KP^m_+re+?owDa+jS+ooaL9Z$gfqOOD~}JE(GaffEW`#Q
zoDhRdEAaNDP;L})zQz7W9FLLS#GOby5=4l}G#0<{!!L$BRDAYNv15rln$oea2_}`q
z;Ffkx3|^3!%|Z-zCV`lDL%Eg^(-AVUE&(KvnB5_qgCxZ43gxb_iP;U>6fwJ8#C(8V
zaNH)vvq*#(pRxG#b4s?pwWsmLVESv^ewB_*b~pu@#H@CR!3z?zUWmb#JxP|^Cd61F
zb7zRhG?AF?q1-)+m~A2kC7JCZbC)7!n~RwDv5yN#K}?P!CdXL3WTRR0hm9}Ba0&}{
zqXpBkuMRRLF}PJ#ONK%QF_1eX-Ymqt9m-uN#I%LXFG40rATghYa9*BBCKk$t7!)y|
zhH#{x6cY;CDW><Z>5NCegfH|fV*JM9q8E)F*S>n?NR%KBjtHh>=OAQCVqSHKp^!lg
z<PKsQg_t#=+!i5bo$P`D2_$AqD7Re^vpIy$wkBpv$c!msP|yxB8=)}VS{S}CUlEgU
zEFRS2S+Fg8+tnz+kl7hb$4)fJl*H_Ih@p@{4AhTlgqYQ#+-4!BCB$7BAc4ee2<3jL
zh*>ZCt|YTTRRJh43fduN0~CgvC&L#OC}IkX#gAV$=-H?4JO7s`LG1bsreotKWJ+SN
zX;v2#g$!aKcM#Jd#I%NT8-*BDHdH{6Kw>~5`r@oj_zp2BV!$7(0Ej_BJH)Jq!f^Xv
z_`)JZOp&oTr{>lT?_59lX_O#$VWxvq$dtr<>JURAgBZvi#9#*>6u2dn+bP5#7j|@k
z1QN3{l#5DEVpfP46frBMPLLQBv_lMP?o#em3||;f!~~4RWBT-ca`s>P;nTNfXADJ*
zVJv=SQsvn6Yikev7VS)_BBs<>JoEXFE`4QsVcxfBXUY^YWyazyFLb@rG`0WtzC}Az
zu81i&7EdyNzJ2m_uiXAE+L;PPOog%dxnCV|&fe!fsQwo1Or;{G(pWs=(B&um>7e%>
z{}%1c6h+JwWAP&=-tyMuZI7eP`nK%M*h-#!8ErmHI+ZKVRj2b`mkBdwz*-iz7_FFs
zLQ6^iX+@^dcdQ}iYK_tNx-?!oVotB7ySRAu#oK-xz2$N2r2e+7)YvI0S@HGEN~yz2
zrea0<5sN=O;j*F`7rpYuw`b#&Oj8w1PS4zwIo$XZH`1e8{Ng(^!^?gX^?rLsa=PlC
zrBE|}&)k$d+~g>3WcYUR59iFg`}N=Vhspo8yt(Nj)>LJa-!nHA4mX(CV5Mo0N^@tQ
zVOLK&C3fn!XQrpCQSlUIQ_wRvl@2%gikrE@P3=d2yzMV_lP~`E?7R|ds<J8SnVTsN
zHwB8D`NGZHdq%(f-k;}B`1Tr#=_1xt+yr{$Mp+Izl(f*8fTFT36oy{BBD;1&{jR&d
zy~bv`NH!HiXjFP=Z<O({844(d8ik>!H{JaC<>Stq{p~e5O0uaKLetU{Lt;N{hK&D5
z-n)QDRbB1l3CZ9fgc*>OprC_BjrT-BgMtnc<OC)pC~8!!QBb2riI7OFAPJdZ#^DsK
zsA#dGwH527XelD14G^wcK}4WpC5qKE1~q_6KuiAbyY@aaCt(t8`~ALr&-3TeoHOU_
zv-i5Mwb#BWgw_i}-gB3nb;sJQMIGpPgtGAvf_G^PAu%B~LInz;&4SP+{lA~T{?w$!
z9q4<6vhfgtgJ}z)g#_M4s8AuaLlFA3``2%-n{mxwJJ9_IW#b_PAJY~>Vn}R+Fe*-?
zP%j9rnzLxg{;u`tj(1c-qFN{$4<Wdjwh$6SVk3mv3Pi{fgie0;=!Zr;`0V=~=!Ar_
z@eqQiX$v7S(KbRQ3ZX_pXwuB2`Z41-cJ4qwB$SPV&=VDeuuYt5<*jx_<qD@JK3iUL
zXZNFTJ?*q!9q5XLxbbkRX&0yU4xAMFB6|tQ`5ViBIA_ac)knX2Y6m(bp>I62=C+I0
zW+z%g0YS?xXq~d*lyTYpk2|{q-ICBZ9$NF;MQeu>Euny*CBwMOzdXI}+8^#XGp_@k
zlh8LFS_|7ntKNy0P(aX<@wnx?{`~M0$E0Lm(Sa^X=o=5MMeU+xIni3kAA*)ogz%&B
ze+rMCa`ep|=%|Fg@z7e_E?SLFw1fhJR)(Op=#{C1UqAYG1m(ygcSsJtTId@Ot!3?^
z)#OA=C?IHYR)DemvzNXcarTB)l^y7`gue06s%;l7u{7EdKOqzlw6X=Qiw4f@Rek1U
z3{rGdzD{Oc#LII%vA$ij#M0Pk2?Yc#zo0cCX>Z^u>#t9Dpx+Yu#^cuJcF__`W1}S$
z5VQ<ID>3uZ6{BuBwj;Y!Lf?33?PwP*u{1VXLIFXmK+t;d(WcEM;ZYcM?Wob!YN2mD
zwCdYMODv6zmQX;@DipLb-yGZdcVi}El(NGzdqUrMXerOsR_rd8#zsphAZQf{T4|Sm
zy{(V+>vucQZwY<lp`|=iTWE<Tx6u*`2wKI0miM`vuT1a!*tQPzTSDJ>XerOs7FuFy
zY_x;|f>w#3b-M4atE&fg|E2@|me4mIS_y=(&CZrz-m1>l6G8z&t6b1p_U`NFmMpy8
z+kt*d=o=3$ce`jAPPBvqf>wo~wSM!KWj|Z_OrH+)TSDJ>XnEU3tH6ntP(aYC5wxy&
ze&`tY#0!q^!2XudHy&DP?V?raL`x_jXw4P09&7m3uE10Sz2gq^TSDJ>X!+VjtH_C#
zP(aX{FK8_?e)I8PRxBRSfqqNq8xO6FcF`(!q9qg%v=$0l<FDPY=Fi>wcHm5<YN2mD
zv@+X8tHg<xP(aXHBxt?$z|h?z|F~mx2l_3cZ#=ZJ+eNF~iIz}6&{`~LP1!wuYW~Ir
z*L9%Z68gqN%ik_q6;8B-0)o~uLF;$RUfH&P(%How=(mKv@z65bMXSb%mQX;@sui?;
zc;)NsznVFxv;+N?&^I1h1?{3W*NK);K+sw*Xce8)d)TD$zc24Vza{jIhgM;`Xw7$`
zB@_^}HVaylpKpAsSNZy22l_3cZ#=Y$+C^)j6D^^DptVEL+B0avvF=XmW_O_968gqN
ztGHdX7CF%p3J6;Df>y@y<4-!&{N~&a>~9Hu<Dpg3E?SG7XbA-bElbdfyfO2mhKU8w
zbfDi7`o=@6yj`@GInfdd2wIJTR_Z-#Uper*gKu`A-xB)9L#v`)v}&Db2?YeLCPC|r
zD<<#WSAG{pRXZ$CDD;hoR!zHTt#_g&6cDr$xRzr1f*Viy;+>06-PnPCOXwR9t-0-@
zwb_Z5P(aXf3tC65s_nmS*({`JI%@4iwa_;nTJzgQYljmpp@5(zTkS4CzM=ka+opf;
zMF;vVp>I627PgC4y%Q~=fS|>lgN^0o@80><jQr`}cA(!9`o=?RQM+haPPBvqf|gIv
zT0W`w<Uiiph++N?n}{Lwjfd9acF}5dq9qg%v@!&(Kg?hM^qT48kM2OfCG?Gl*0Ofd
zYI33_6cDsB1+AA-4!)T@|B@aZ=(mKv@zAPm7cH?gcKTB&AZTR^TE~s(d(6PDcOBP(
zeoN>Z53Tj>q9vBbMoTClX!!-L;Pm8^zMZ-=qXYex&^I1ho7+W8ERBtpP(aW!1g(eC
z*ZJ>#e&e|v=(mKv@zC1QE?Qz~Y_x;|f>wc`wc^bUsYk#0+rb^^w}ig&&{CeMt)T_6
zG&Wj70YR%!&<dn@7u4O_Z&(NVEun8bw3KIR3oWrUHd;afL90m6T6*clZ@sy7O`rq)
zme4mITFNuEg_c+v8!e%Lpj9kroqpfVKP)(HMhC8qtQPvlLrZz4w$KtwW1}S$5VT4J
ztv!dfUHJT@w{GY_za{jIhgJe1Y<ql5-rD0^v@U{HxuDg%aKy;jeR3vtoZr$b$dj;w
z9E-yPNmxZ5!v9HFNgl%gNmxxD!v9HFQ69qoNmx}L!v9HFSsudwNz=0fA*?X3TwB2r
z^oy3r3U$xS&`K<J$MW<VqKRE?aanDdC0HA8)y7uvW3fK=2;kn~*iZl){BVncupF$%
zZKw3ocTe!?6jJRF_ZYzjQ=N_Q&#_0sXe@QdYU%J*Sn56+OWm)+Qum){ueonhO6O1e
zVQKtXGp3!Ju;%cjQ|ne;pYSnmCi&`CU6~NU-Bf?ws=S1~xSLT_w`zF8L2j0n!JR~W
z*y$-@%|Esd$Co&3v2OS9&TEtEc2D=Lb+7r?*1EdgS9X3Izso#tyVra<<=w<J|D3Y-
zk~RNq_+ZT&Q{Fww2(7Cd|9#^Zr}6K;o`EFnZ`5T|UT714*Pob|^=)3(c6rx5xBqth
z<bC6*c@T*HyYjL=lVW{Q2KTw4y4?P6=Oum}=<<19;{LqECLST2_&u9-ulaV$-t0Bs
zHf*e0dGpsh*8KD94S;SX;OtzVu;yPoU7vo^FM+Uc?*X{BbjEV$x?$fpTBq@EBjDm*
zEnRlubWlFntpM93FS`>eJlub3UjKDC0MzKej)1Wk0NaH7ywHca{Xet;+ZRYYh%<_F
z6AytDTaE!>`_2MA{=R0&*Q@zt2%jX`PwG})zqKA9Z3Rd|h{$PyBy4g)#P{|zx~$6!
zt;+?8(A+14D!0FoZf|#->lq-41h##rqKt;>6F>!!w&wP)vq9P$Nc<j0Gv_8A1OQtJ
z(l<_!wi2Xo93V~Ky18!m^_@Ox#M);9(je^H-_rn@(gGxtkmh4WCgJdY@NXCPNDBxT
z^Rm_v;=N$x*MJ5aB=G0Q3bMEJ`hN%(1`<K3LlELM?{6LM)53Lq=XD}n>nL1n>UQUK
z{+kHb-{K3GPz+22jAUYRdZ5d8Y^uQDidtC$e<Oec(?q!T0jAY~{^Xk!>zgY)%nfbL
z>%Y||SR*70@|By|^drJ$iE!OtPvN@0^Hy891ba{oNRw*V!6eXSQ!aD?4@By7vqb*(
z+rkBr?~lD8HX0<K2v<D-qXy)K>hf%<4<zn|WI?_R;p9&ct}C}%5U%$-8;WCJoMt3p
zGkSut55lz_XEEl2RUnt*Wq%R0ecf{tvGU)h*j@;ih&+ptg}I@(b8T7$sE7w4U)at9
z!u39d>szOAy-(r#wzY6w+3AZ$L+M~d$OKtW!hR?L3cPSt>!6TnZ}+_Zn+)tSK(@hR
z2!o-ITDT4o0V*RP`!KJ6od{PWgw6o}{<d|vUklfjo$Exn>L^@mX${^H;d&>&aCNxl
zY82r*{UZw3m7U+Wh3o%}<;vUI2;tiHzh=3%QMkTy3fDFY*LSUjE3ebO|0T<{X6x`G
z5iX;04ZS@L)*6wqHI%V+GzyzU#x}*5u?{z2O(J7!cT&dkI&ZUO?Ej1b8@{y(GPeDH
z&46vEj2&>w*mla;fz~oMywjoo9Rp@mVRNWNPxU?6F-+ny#Ep)4Oovi-fF+TV@^g-W
ziY`Yat?^U@WOOhvnDu?_XiP#Y#9J!5LhRKdz)~TR9Vtn~BQZxKj520;ey>9i+G~jl
z_MeL2ifs&|QMMy1JV2O)*hxo9*c66QoDP-{<Papd0{q?EQ-T@6VlS}RgiuO1^2v!h
z7TSkKY)|<K8sWBJa2*o(AS}|c4?-k1VuwF1gBipqIwX+T1;LSSgsxDBFNl9MCLi~;
zgCA++ZN@ng^D*Yp!Aw)@c*dw&<JaMc9i&LKp`u(zP(r*UQrQOv30|NB@sfxJEh0Q&
z%pzWw@e9$igA^53*wKbW4Ju#-gAh|RX|(FmhPaMK&`yK^45|lODmoFg>KK1Ww1HSe
z(9!`10tNCDVuru_z#yR=@6iahvJ%>jXBeU5iM>F?j<HBPL>-JbBzQn*q2dRI8Kj*K
zA?W#0r5zB!&uh@N{})k1BNR0q0w9J!oyz}50|<!&7%NBwjJQD>K|p}eNn(P-lRiUF
z=WAQFUgBoYNiZ>;jU@D=Lij&vwATosKb3SDI(z6-C0*q+Lg-f|p<flk|4Hauh46pU
z&(YcYIr?erEmf|g4=^smc~Lkp1&4L6X~KT8?8a5$ye73r8+Ukf2eG+X$}78mCY#%#
zAp}15md~;M(PaO&GuS(>+EdIfVG+B8MXaFQ2yt^@dpCW3QbLK|Th87?54Ez)T*8DV
zeEczA|H!b0x$qcu$^OJZ0EcyQV_5^I(U)d%L%+o+%71$Qzh$^JaQdCh%*S@PoB12a
z6#=>8)oh@ETlHaUWY@BDi5a)2l!pM%O6{$7+s5X70q$jsm)zISN_pw9Y>26!0}6mC
zd!fo6&aKX6&}Un6H(mwCl2%|?LvBQWdYRg)PY52PCxFrC|NKCrR<?2ekA3D4k9blC
zY8#<$>CKx-E64^h3L6=QnR@Ok#{f&7@q{f^4qjrcj11vM*DDWlH&2x0wuSiPwYr?l
zU0%84G`>b}UI;)+3AX6LgYXN~p*MQ_-&&!yZ2wEch9V#tIB5O$^L<hkVB?mhIGo{3
zvWmpuKkhCpe8Eo2JNTQs;qj^u3}Pja5^lR~x_ag-E?LiA65R=%QWf3W7<Ybt;pH=f
zcWKsHxBVah`1rF3=cSa(=8qL<g#YZlB5_LyL8@F$2{S;c#c@^Pl;@Jp1Ei$Plh>)*
zAg2Kc5??E_p;7DU@#-a>Q(8pGQ|^d<`{%;wYefJ;3FI^d@S~VN;*r7XeFLQA6WQWA
zCLf}2Bb2`RohcaZa4si)k#2y|mW8k%ITsuxz^gf?8H(eXy^ok<f7Gf2LV}$2O@`-<
z_1LZudkwx(Ypg@22e!tOvmUz91Dm>1Dog|W@n``u1Bv{RMA^Xk7aKjl68_;=A-1RX
z-2WJ>1&s>8z%hB6f!2^#3>0PoIIVsFk>ZBW(yWQM+6=_A0%Ilio<-#u+<Luw!wj7D
zKq5wM7Jp{O=r2q=x>D7U*|5b3y&Jg`2xZkqvT(8f`tnyif5=dmm#+tv7dUh=&i<4y
z5}&F)0B$02;vXE<!4Suqe3fd4r}AXVrncF59NnQ78`2XrN|f+L)Qxg8@*4G>s0^r^
za$10N>XvTR4sJy!h?cgU8N36XL~1DL-$dzTQ=|Zfu5h)ra~!aWov9U*A2XO<LgvbT
zmd9g%Q<xYp#R>bVx_LGA6=pbtzi~)fxB&m>0*zkj&Di^1fblyeVld={648{54a|M_
zxt94r0^szQ7ioN`FWM?WUwp02jE^k$lfR(FJhihbEKQmKr8XM($-P(_Y~L>;!YX~%
zfZeSuji<URHVC%*J^>WNN+F9$dN)6U$jsA7U5i%xrdxG4D=wf656l}&)wGe+&oo4`
zO)?7jY3INK*>0U6xA9S?fXsXyaLLy2<GUqt_BS{G$EUL6{a{U0v<GXBT&CM0K=^`i
zgN90<ef*t?J(hi*nb*)ahJYl$5sHiC`~G=I8*(WM_|Vcgcq|-XRQ(t3hz}|+B7@+d
z=sqdSY!b?PUFcXmCbLkd*NcbNQ`ahnNy~z622oNKDE3GtY9DxU1a#@3lFvH%NrDm+
zBpCd9HWW@h<GOPN4rTbpQAZY}FO+wsbV2IKUL#x%#;KD)1L2`4G&p@|Yr}?fBC1zn
zqwTB>JTf9!!acWvLQ&R+$aE&L(Y{zGm|062n5`NDFpd0eroOZZd1nx%NnS5d))??4
zkZtC`IXn1z00IS^^vxnjI=ih%PpYXp{!_RBKfGDqLfWh|^cLEg<QGUs;|0rG{Rklf
zB(+i!I|R#ho<2;@rW8(r345{G{=<P(lm?MS`h>fab%=spe0hijxf=x5eFW2y;7^O)
zoRhU|c}bCS*^*cqgqhiJ6Gh){5e<rxXB#0~{(bzWP*4+z03t=yBCqw*IHfg(;#f%k
z>7bOR|7>nGje3;=KsrGeCI8eyfafPwl@cvb;sDVB;5tfzX85db2U$rDB|(RVW{P`+
zHjqzVU>itOt!&g7083q?HsCWrO&j}&w#|@6@iEFC00{fwLL$>+j6$ZM1*YW+)3LgS
zmM=9Kp4D+dfhI%Qcp*VqZ-P)n#^bZu681#y<{rX$0?1~k8$y9#dI7H>)iU8pP<EW=
z?^^x4NZxCETv<mmz1p+X9o$gb#aM@N8tex?=QTV`XsA(-yXnV~$zX!Ki4<#gR7jm9
zk7lFW>aB_FjeJDt5TOw;{v(Cf^9o=ENGL}kfdMz-0cC_;mo`J8!zt(S;;aextbzYn
zTYI&%!r^T6cN7lk?D@1=siqq$j|<v=_?`9Ga}p)|`bs#`H=xa`W2FB&{Ao^ljXsZ%
z=D2c?7!f#AWn0u$2b?qy9&AotPhx=22_z{GA=ME)RS=XGaR^_NDXNHbQD}}OikpoT
z3%?kH!}efHPD6uPTW~ug4SWA*lFAIFrQymt!hzj)qYe+>?DSOcfc?+fiQD_$j+r6t
zpsic9K%;2ww07#$MnjZsww6{Jy;B_DPp>70Zo(_&g6b#(Wl4hCyGt-*_nzoAAa_a`
zU^K0xzI7M@@i%5l)d*TdhEsO0M_U#384vd<fMMo2$r%)NpR$lRy6*w{h47_lLz6@q
z4BN4KNsbC3;cV^PNEX&Ewq)ex%1pqP*qv2}IjQA`VjF*bwKA(xm8OtzEml>twm4E%
zjeHrmsu8Tpba^i$%GBH#rNoBWl=52F_lS$~GeUja-OW>O5Vg$JZCY!zAqOPdVu>({
z>cg{uCXDFe?G=;=m>!ZZv_}p5g=0#LA(Y`<{1#hY$`A=&QfQ(~bJV1;W2r2mut%Gt
z40=_Fd?`ANa=H`BFBCX!4jKFkwzfb?{~z&Eq`wSJiAI!77yFBYeSuAhkW7hNOh&!d
zzAF_U)q4;_F$X$k-KzU)6o1218s(XHgif`kYo4WDV3}hk80J}<VBC3@dV^c|auv;X
zWH|mTr@}@q!W}sq<w=$(k!H0-rP?C2bj;<X28hO91teNAs8_nR?^-2)i%Gk%;pa=m
zpld;=%RzdZH-WH@)4*m4t*0?;gZB-9YEYim&1SO2Y(7_Yv#xRMF7spD74r^tNv*<K
z+p{4G*<zqIREpp=G6*gSMBEGr#aHa$4gP5>S&v(ipYMf<ppJNX#Z22h(!meBOEEJo
zaxq+lXX&xQouu(<p>c1Vu<*LjI0bi}r9GSsSbNB3zzW=1FXY3@pNhL9>^u6~cjuz-
z2hvOgcIf+ojOgk?M&RfHl3&2iVakN>s&M3@W{quD|8yS@mB2R*o2+4IsNt#B=O1*Y
zqP9Mx;p9&T@C1aTS+5WEW~?qd$~y1&^h#@8N8x3n_5MJde&E}EsM+fJ8vfjkGbyd7
zev3cdetWptI`!jy&DPA5{zW75))3tbzv*l{cnZO!u;)M$S)(rdp*ifT{(Jz022l}^
zn_z@ee!mai+;p8^&R&5o-krtA?Nlg%7Lq4&U3B2wgs^KkzQ?DaRm!<|u+~+ydjQW`
zun{oKA;;pm5n69;oC-pGga<>}1|Gb|2fwyX91TwV0}|4Pza>9@{Csw6)L{GQb&4EP
zT@Xyok672{lsT#p;AIji3a0f$9$;zbeD+xs%@+J3f1w*t1exk`tP#f9!r@=KdFJ{B
zSsP#&&N9LyL9Rj^gZuZgzW4$4f&Cn`(lf8sk?c5*;w$|Bg^K*eib7|tMVI36Q3U<?
zPTE344bNKp0-)FR5cqcJH3hKxow=fG&>7rWb_*+l*aA@Ih-kc-&Jn+eyF%UpVjRcD
zJ9!HoXYLcSpb`NY<bS5Nx6GY^hANM2T|>Z1Y29$<nZYAo=kkbGMb%jRWb+f1OoV}e
zexXhUUw(|J0-ukt01xR@>;AVl1`7bB)d4FDXch|zO9u2NbG7xiQRF89$tEDr5|F2z
z1ZxS;*w(yN@Z=Dl%ox1@sGQ!X;StC*Jd8imYP3;M%4-<};t>LY^ZYI<dxb!}7}wqm
zMf)x6jcPxO?Sly5mCyquv-#jA+JMKlK-SKYXzV#Q=3`@P*jQ~0<Cgf|hW4^a|4h;!
z7^?QJVS7*uw3nN$+SF9X6D=tsA0jCL*oFo$if>{}p&S%zt>XE=!w6R;;qnu%CkWU4
zBhG`VQu<{OCO=^U6bh!h2~$Cg26&+*RbWDUT4qI3Arg|(q0Hj0oNqH?Z~{|$G&}G^
z7%pxURP+N{ocH^1E@Ze!%P<n17nM~2;7ECEb!%zQ@BU?ceY=CO8*CE@Fm&Rvm$o#Q
zL?IU_@ix|x_ZcBO2+H8+V7xtgqI<G2wfn>X$UKFZG#0fBk;cIo?|Ijf|JMUv)Y)49
z@(3>(FZ_&8=_p_TSZg0}l2lt%`|<%&gGqQq`<^2_&$I^*&jSaW=rzE5w61u6Dd7Rn
zka|R004$ER5_oLwD{`3hjUxcWd;%fb*WP*HcVB|`A<k4LwC}asKZorD8jiV$eA`TM
zNBxKL|JL<v?0GgO+P97vuX1AClK!`&J&0jz{kxX!f$V;u8ld24OYDwH4nWiL4RCE}
z0HM}CNRrMlK|ZtsuDT4MRS+~$zy$>D(U$V?6VBTX`vI5OSlzzBg!V-HVv-A~uwzrv
z!Ff8)6*aU07IFfAJ5Q$r|Ckzf2h9J@dD}lBK6qZvoRj`1^{Hy5=otB^QlD-{Ii2rs
zBR-fu97Jp<K6v!U;)82JuX824Iq02IL*j#rC5seBls@RKG6oBvT_NHF6)aHfAWLlr
z3kVoKlO&}b%X_V<7akcfJYucP0WkxuELcl<?2vfjG{W^i6))tHULuqJsD(9@bcSp%
z1^TuXFFY}f{Eb?y|2|&G&9LEtod3jlA&o%%55)@@ydgcJxQoRCOwoAZ`AgB*|G{|S
z7{c{G6EEb#WGR^_jPjsJ$%O5RArk*pym0eS$nd`(FYtUm$SFf-_?v9o-;~h)8<f%l
zKpull<oZW#ZOAsSV6zSx=F%*|CCukF7Bc+F52$%Q9|c}QhFSCql@5p1(mwq3ctPkZ
z@D^+Bv!RM<A0i*!bI{TH34rJSQM_;j=Y>jkyin|j7aqR^K>WXq7Yv8?oyEp}dc1H)
z{CJ`0$aq1hF7!VlzKqHTOr^vNI{oR0f_2C+=VHjmFSUF~)bI%9<H5G%!!zqa<^K%I
zbc^`iQ(YmlCo#Muh7f56oUzEk>x>*AEV0M|@aj~iiso&Jf{D}7{6e+?JQhh?(P)0%
z5a4mS#)Hwkr+PAfA);@2I;Ar{HiM4yNB@GcWu*9vnXU=FpvD_ab<L{99;sPdBCjGT
zk8_N8vZ0&@KWM+l?8U*ksNSjJ%pA|s<P(NgHdO#dj~Pad0drJh4g!#I0S)@ls-}}X
zbI!#p-1$7!UDzy>_<Qk<WVVp*DmTn)IvImj&*-r(`GIkGfhrzIj@%<?4lE6F03Jh^
z;&h;AUWPbn%+&d;-kmtI%TNq<MpMr$M7oCO*oQTkcr`A7T&&O%Cl%tB=A+?3w2L!#
zSI_8@6H0y{(nYnG++KUnCdO+o@u#)-SirohId{+po_VVyE;I&`oahNQBT*z|s+KMf
zh=bRksfUASoG{cZe81}ZM9-}4d}J1`ksllJBQiwQaj_@(x+*@-6MUI3(uoOT(S^X0
zgVGgpou`IXF#gOGDcmPgoz~9|H#X;hKsdLPkp%LT3t3o`h+^6(zjY-}x<-1UEyL6U
z@S(n~Ib=OPL=C%xITEFaXtO(D57wi#de$x>D}aE4>){mUQx%)>7#4t?7Gwak)zH2y
zmy*FE>y~WQ2HXq!7Xjq?oA7C#ISi|^RL(!woC5wVkW+0b1tk!{07M4*x{-SV>%?_n
z&^C{`T%>%7^q~VFpwtz{#6&g!A<ryya|GRwDsn^L1VSItIyBPbHCjctsdIPPE(eSG
zkr!8fkS14q-bD11v-Br<)t`FiBuU%zG)1KQsWbbiP%6OivQ#L_An9%<kV`irI|?fK
zNTp(u0lJ}QrJ1SUeZZrOd!-xUen}rOODW&kN@T5Drn(3AP&^0F6F3<E2VsDo)dkHf
z)|qXUho7y6#sQehYU_ChXqKs1!<?=1^&zAy?ewgqEb%hIO4|Ef3}9%f23T_CW@>eX
zp6tgDQC!5pYn}bCujL~xOW<Ex*3QT{o<Ix+QWhw)3L2dxwT`WJOnJnI(tYFDPW6V;
zp8QOt43CQ=Jw#)YA;Ll*bOEhBYrofE3WQOawK=3iVB0Cp(^D>5W*N=YY3EaBX`z4+
zSI^>?tq9hlflld-43RNxJ(DG7?o8MEflBbxSP4ga5-f87KV?(|1TrG4_-S*kE$GIe
z9Uk*{C>Jn?HRqmIn~UF7f0oA8I8DBp?6<WcKRk9NR$f9S^25n1F)A?QsI2cI4H%A~
z4p{uk#@-3kfFprwI*&k!ITpzDm{3&vRBd*<qJ<6fWX2R32=SRKjMQ$)J{9_=2V@xg
zt@GjgPQie`a@w(Y&df=lug0(U9*t@$_Xx;vZuJBm&P}cm52`Z;+F<&ah6r~-hZ6^r
zuS_H125t73PxJF|A57D6=V8X@r_`uI4kaN9P>Hpy?;6}j)#{8~b8=!}(Aw!MX-W%h
z8yg6BrQ=(MX5b0MRMg@=7sv62-f@_Ufj8TxLKi0Hgbk)*zFe22^FzlcogAOgBIku4
zqr&8cpIR@M=P1j0=F9TSyf-m#(AS<h7j)sXUnJ&*o@3#Bv+r;6%`-pD2@kyCodF5M
ztG~mnBR8$#3(|ak=*$mCnbST5;Ck*-%(~5-V1umeeIWdd_|t%S)<bZZd4u+NswbeX
zyzohR;p^O<>TPfi0az^J6@VuuUb$7x$)4&Jc#{{t7(Y6Bs{bTE?sMap%TxW7`sGyx
zA7T|yNPi$SA-y;+e0N%I)#0N&bGV=vcP`JInNsQDq_RPIp~q_RBPZN1__qNGx#nwR
z!f=cbbju4p#rw!`)MkXRSy8>!<L5vo)EGGzkEEjN3^p8kY_Y0hsH$R-qYB<fI>oAZ
z2U9Lt#n;d~RMFW}{Vhu5g|qU)_dve3<#IeXv?<rjM}+b2j1j!a4duFXSAL$H9~yVD
zJDjrf?Ewj+%w88)Zz%KRhte-LaFB3lU*rjDGH<cI61&>eTjS9bj;BU#4Ic(VXQl_}
zy#p9(Mgz1qFeg5%`$30&6q|rP*b43Oul9yh??7wSTgpZmp`&OdDgbRXYN^2w4yD3>
z&X!N8nFRq1h{8sI^kDK!Gmn8BV`U`{t%g!W&V<3VHeiNk!^?T$y9{6rEg;r~f^{x5
z20fzI=odK9|M0E2=>L`zWt`|wKqEhjzNaY;`U^DrR}_X*??h`rKVXE08UGRfl`Zi<
zgAOA+Exp{TyADKn0W#3VGlzRw;11&Nf*}K8N<f$*MVMkm82n;a(Hsf;v3JG@-asyj
zF>yILFEp+<<YM*40npmMy(t%Yp>&MUid^87coGIneheOQUT=*;!$xScLoQ^T4Ze#K
zqUGYd@7g0wNjUXNw5ACIllboo#>3*TH)6@H5{wvOp1+oa0TIgc!mo+EQ9vG~uqjfM
zw~&#MN<~5}85NUJX19yOsV{F37@b-&6$9M{j@+h5ik1vPYa%Aw+tCv1+jgk&5Frbv
z=BUOfDdqnOL4q?{O3KMmNqPJlEh$Gw<s$>~;ZyPfhQVB51k+X=kq>P*e5A<e(6|dB
zAHQ2aAYruG_d?3Y=urBFT0U;(R5+)6oPp+?@*y24u^SHg*!E336uBZJoH`J#Y571G
z_TQI}vipP_klEJq5iZo^=o%%5ALPhZ<j7Ryz(v~;Cpoem<e0ZEE;+8^>{TZ@`l7iX
zCC9q`?UBPDPCW&!X>!2I{`=&(WqMoWn0B=$M-NZ+V@U1ig<oC>frReRbqY})q%#$|
zgw&mbG`9MPpN$F2-D~4gC!1pjPU;-K>L*a=xqa<W=OIEHPIaL{5GdaWRSAs$0gW!5
z){;giMm4AqP&T|U^mVk9Fmwg~Mt)69OxIT_YH~;bAq(OcdomI`NXO{u#)a%5i1mSY
zi`u#){az#uRZ>MtQ12trdMD87qRY${&?CgSnDyA+_UN$#;DuAatrL2{yH~Bp14hT~
zw4EDz3!86<rr6L%F64StxSA5{8cgJDc*8)rR?n&`>nvPWTd$mf!1&8=?7&#(v|7Z+
zO)5VA9R3OMu@C|AaRqBZd@NV=hZZsV#^e`2J4ZDVl4A~&gybNo{=Gy0p09t`%Wqvt
zWgY9r>><pXlK1FRf$Ft#uctY#mmf09wm^F0oHtz|wXBd{Iy+%7gB*DT7c#6Z-H>0x
zY=q1pX8+$vVK7~XyDEOOB>@{zI^r(!JLzl16;z>T1fre*M<LlULC9oa_9&WMh$b8Q
zlmErJW(jt5K}IhZJpqJT=vPT`BLL^3TL=tV?J?g1c7bqr?D)cIF`lY9g3CB|0ZJJs
z_5BTHq>#}uaULC-u*1#pnmCURP2AxfX%60j_<PqXiNDJxF-Rk&MurCO2ms0w>4yQq
zA@{H!4Dy*w1>lX_8u_tfLJ*9xOl%wnaSG+Umxjdmd%m!17Agh@kH#18`64HfSeTgP
zy8;r@Q`AT?#_EnI4ZorV6TTuxLOjV+bZcfnLRTmOF#BGIs&;|2V|RJODW{@(!|b&S
zzUNFpw@X$w;3KYf*ujs{VXWtG;4D&Q3xq^;*8Iz9Wi~ae2ZDo-W@du&Vau9uP&7>P
zd!^8@3%(*Rx#Sbv!6rK#%r{Gr&(WM!T(Z%K<N-zNylK*1T#x~r4<MR6QXjB>h>^Uk
zADWFm5>&!V&45a{d4)>I6_BOLbFx8#s}-7DOVSzYIr?WW(0+#Rkja2e5EA}tkut#q
zKz;#bkS~!~Q&rE?Ii1;hKCzwiah;isbWJ#=pIlPA^MZ-h8A5EGe*v+x@!RUbm>Iwt
zLiyQhc>-D}kl)B239Lxafvbw$N5H=arbXaKSCsHGeV8C^%~LrYR4>~`0f7oZ1cTyI
zZLk#r^YjdF*Y_6)0zb$l^<TW8(v}F!QwS93JdR%@pb+`D5I7@>fJ)o3$KD!&BF%wf
zjX+8J2rNHe5O`fKsVjJC3xPQdM?s?h0)gAd+8k&b0rq?;Li05O3)@HFHHCn}BUSKd
z3xRhSJ^ptHJO`7aM5t{97HI?)YXp|HkHGwa!hy%+lKMC=Z6T2I-y>krI#GwwhSGr}
zMJQ7vkgXB$w~xT10|bHja!GxRm$ncH$a1UyN`y}R2?!V(fdY*{VfzStcb*_{KrX3G
zytIWtn2}gJBD8}oVR&OsW)h_sE6eQ%=L;-I-Q!9(lz;;CBqcBh$he)xv_u8&bE{S&
ztv^pz;4lLxgH)^d1xsSQ3ckx@*3yVT`-|l|PYrRQwi@}pM6cgL=+58aB;r%gTXTwJ
z>?|o3&C!R(XrVwWQVhlEu$ilqmXIrJ^~qKCC#LJsr<E7CUP}BDlasCGYH~8%>1+vg
zxSsK2np<EcwT5~aCK5=fR4R`p;1cahQBp87uN9YF1XvK7%os`13yNm1%aJDD?8XbY
zqnyoN-sFT+e!<4g!JCJ}d3P~F-8M&_k$l!FMhJ&7sS&-S$b)=jx}NN0J7<K<_+A1K
z#!d)-#W{2E?eWi?;jebi7*PYa%K43kRFBKMMs?C58-p3cv?D}@Y$aVeqg#CzIaY!e
zxD|>C=#(Z`xD^o_?V7Qa48pQnyV&{C+=BF4EkGh!7=Ph&3erOTK8=FLk*c;G;ciUc
zZr2C^aA^+JlCoUXm4+++lY5_iA9fv^CAxE*TvGe;f{!xz5zxw%t9F3-h~C@Moyf;<
z?;6oX{0OSEStBYs1w{Frh%VOee*&V1FhTss5S8YB9MLi72%?wECG`qk+Cub}{p}$7
zIl=(z)8i4h<)hD|<2L&;!3cLd88#B)8B8zcRpPfNNcYM;WC7zhVF}_lxk4kz4kKj8
zZ%`{m{-}C?gDKvmg7ptssbw!{v&RZ_@DtKQN}>VQ)AhuGYJh%%kEkkg+o7Fqy|Ru#
zt+tLKLKg#I8xwVP;FDwTm(icl#@{akgY!_3T439Nu`5m@H%H2t76Rf+p>uk_5DsIk
zCP|>C$fQU=Ms`0yXZ9{=9Ws{As8wT6Y|zQb!9WK}6c}b{i(=J|V(3M41~qcS=<{G)
z5#1ft@1poF(k+8BdWj88hK~ZfOx|F>5i94#e_;)P>dghu1zE6;W(VE^hn9P2=;x64
zmd~wKeL>JSV5nLUG)7O^U*c4*5^pgl)w9&~`<G+uQPj*3tVj9XWVIgUe!NVy9{vTE
zozy>%MJZjMIM8f$-unaAqYV0nM)8ktXrsuXNpu@%UDLg|CRk72?3iYmfo%isld`th
zn5nO%t6@Mdze&TM1z4~09KT^Ncijj#7>~s#>zA<i=Bd7hrp|PI+=m|>g}Za?rXg|Y
z!-@e-t;ulK>1Le=79CM%sjl-I+CJ0u>u8-jSJ*b*QRm<z>-?RwPE-OoeY(y$s?N8g
zb>1JZ&P69V;S}8SkF4|UKP%i%S9KOd>pU-Bo!1>%=l9P#a7W4jaF**j*HEuaSGCL^
zAU$`z9tZc-BkO$DS*PMrx~{WG)p<#p&7*L<I@h0g1nyTj>s0jI{EEW;dq557eig0r
zf_Qb_dt{x>e{kTA89u;$ny&K^Rp<97*l_M%ZsX4N7EpSag_OW4e9d_QluwbR=bd$8
zWE6E~NS$S;0>(GbQT4%cpc2;~-r!oPoR{=kDWzN}_9%*3PhkcmmPyS-8CseQYc8im
zZpQ1I0hKiqzarzsvb!GYjR$w}!C@7N?D`oV6!F1h>On0A)UA9z7@!`U!cQ*dgH0Sd
zL+XSN&f<gH)q~%%j=p^0QV(kQper9Ngm1O(O2gd>I3K4$X<<+9o&Z~tNy`c4<{v$u
ze=PBl?STek?z3A~c7{PnI2=(@MoiY^4_f*QPJzK&7*W<##nnAGjKMtTu9npsbeTmP
zEXxd@<{Y&rG*B^kOvJlU|2LcLZEOFN=z<ftD2givwPC+uuVI+b2pEqgUa=VSbIb`B
zXE;~)MHto4?by8`<xO=A1G7xCg)}6c?P}{c1%g95aERm!H&>`uIZN#xKEN!syKrso
z|HNJ&&#GF?A(fDac^*h)39!Vvb8Y}(x@H=^g~Zl1-%;vy;xE%Mkq#Fb#%u*jFvNQM
z<l{uF-PXS*e$`CV`XpcA8!!`0f;lY|PFdGK(j;|7pBsvUC;>+Y#jqOYs}f+oxP58O
zUU1C{L0GQr4P%m!EQ{MQb+~aFqU&wOfe(z8hb}Stuj0N{sI1614I6pMdQ+sC=UV=<
zuh2N>%~oOmvbk1fi{I9}w@F58V=5@S#`b$LdEol9J3%`@Jdtq${{TaPO$;$wtCU=v
z73_^QlX`>aI(~sa2TI((BrGeJqf4G3yd{JZL`8yD=*Ft6xUA@6!a}A-Ri*_zo>_M*
zegcSzj4JR)^Rt-zEJtm!kASLHU{t^s39!~nkHh5xMjwd{K$$M)E*)PH3;^Z_kJET>
zx^_+>k0AwCpI;~*zs48%*l&cA)2-c0RaM{$?Hj7X44^Hg6PG23r%AbDF84-(M&LER
zpl?NOUh6vAiuTA<%)+3M%q7!9L7-F(TAyp(F-5V|0KE#35XTA_v|(@j;*z$9@ULf1
zImjr$$QDm?t#ey`3UU>rN_#&hG>G0Xelze?Z6&t&z<T-^@a7I%PHYCn_+#dz?@+<>
zKGEMji=?&}(iifI;90H+=N8Lz@&%nWxhIv6c}&q0q|~hO32W|TWuP2bj!yu!8+bKa
zy(Zbk@y<}+fNt4jgilyW;me?)!8XZebfp|3VH_G7oNjG>MtxsM>ou6&ty+M>f4Wb!
z9=D{$4qm~pBL1kC9~za)I${VW5CA|?Oenw)at~1Wg@w8{8MHF{oh@@<ZKf(hlkoBy
zdD!`^-|YA53GCmaLuu;8<8Ev0MrD*Vc}NS9Dbt>uOxc>W;(*8&z|o7r0UIC+sy$2a
z13;<u;~Fl7T`PpzB8Hy+2RP%=!K&;50oeobwq=7?t)B7sN4$G{%UGK1%>W5(H4{bE
z)P;w1J^2!K3aCTYd`dZ|wW5m%ieBTYXK6>gaDVq}pvbK>ewv{n%d~fHR0X2%efoVy
z%l9#P7ymMq(plAFe@D}mb`ra)uo3yyY7;JD8r)*)#kcoN;I44hCuylJ%-YZZ3nG?E
zY`CAIQ*MN>g>}lrIw%Yvae0c&%>j!!euX#MaE1n?H_J9CD9LDBqz-$$Q*%nOnotu1
z;=tv&rfbHD3NYL*xebt@fZaI7r+y~Eb@f?+Qm79L9#&$1LI5WsR71YlvWkb$BfTyS
zE~W_fh`UJA-pMPeId$9XY>?4PvWrWuK>J{A8Kw%M_J-fLs9Fo8XhO>h@jYngT9v~9
zlW>-=l8~T>2l6(tl|gF7pN9!_3;&OrcATlxXOq5a>FHCBFX9^@K|7P+!?(Ec^2SPf
z&mR8+@II0n^p=e|^1&a>g-W^cS%ljg%8plkt1F5XfkAxQoTwYNzPJG5_>px*cR)Yd
z>FPuPTfx6y!Cy#!hYqy-5nBZ58dFYRK%oFcZW_zrLKX*&&?vo*>H5;8wn(wk-%<1j
z&>DPjqI5dgee6>3Xwa&%yZ8+_&1L!_cEMR`*p<ZBLiV9aQ5Kfwuo_4mhn+)5hf{9;
z!vGkrU%G++F`BKH;%mZNg<bdLk=2N)mRP*s;;G*VL7#yIKnBgN6(tgs3`_xa8o}FE
z^w^~6fv+Y~qWLGxhPZ*iI7%!=PoEJY5RH|)lZ|k<BvhY-GTf)nUgCzI+G_&|t~tCM
z6>!ewplwrbB_t?IjavB`YDhjFrH@A;tZxm)ylt!ol1l_aM3uzi*J)PsnT&jCtGI6p
zl-#obnnj=)kXiLN2(Hg{1+KlcB(%Wy?qbL;r0Yyryff30X_)YoWE#2{VLYm;b93X1
z3vW`1h7ov|X#KFXso5IwTkLOf`5WIfTm5z-+pr9K*;-XYu@A=KYjAhkY2P%jb)}&=
zRy62(tU3VEFw?od!_l(cFA-zFO<+ooQ)rP;+D?KIc3oBu^^;uzEZMxM4D;bnYFMM~
zZw$YmSbx+`$Lg>7N%b>+EotRnbpL8Rq4yIH0~6CJ6?~v1kaq=2;Jq^Z23J905tWDM
zkVW;3wSjvvnW??Z{$XO2rX3AtP6acGzAOoPi0J=Hqu+8p@!dbZo|Jn}sI_?jiiQw!
z25Z2;RVkm$)wIPLKx#h#NhN#`!xEM*cZl8Jy8y%=Ur!o`KPQqn!v7wc>wwPY`abT$
z5##z+qP?jVzNM{fvF69Eiu{1RK>9c~j)E;Ht+53<f~~EBt*`~6(s`PfUO@{G(=*Er
zgr{hp$TGe;1nvRyBqopI&jU=6Rqa7l6G1)L7yNM<*~(vtSAgSAu&zo~j-wnqL5mqc
z%dkl>%5UGTTs{bnj=PDK546k6*eBovl*7}M^Pi?K>jtsYz$z5&?W8bK#j4UvtnD=v
zvVP(-BG$}h_J)C8p&z|MSizF)0Ft%2gVxU|<it-Sgw2i2!S97rHZ2s7bUw*T@FZ3!
z7dU&}qu|72<;9T~U5MI+ZZJD_C1SMw)<sz`3|OZx`oR#|bS=A3(?exx$sOQ@*-Nl=
z*3P$`!#5PtY-O55S73L`A%tj4St_PM!qvbstmVX*(Ei9UvIqXO$l92R26v;GF^hDE
zeEnw*Hw`bCGIf@6)7DG&n{dkRCyA@4`aCd*JON@NKG=}<Qa_o7tHEoy-!c@1v&!a*
zu|s?lx)i{`hSTe_h;_;=Cl@u-Di_*JvwKS7LNH@N>VRlk?>t0Ek$epv6?TmwM92-u
zYh_gs`7qf)L3wDZ-2})6W!6>)3Kfg!ef*(n7b_H-f0l`kY6hD%T^HVDcT{U#iuA2{
ziX1ov+2(11b?Z4$2<A+z>v@+z+N+tierpt-7@;O1VT3EdsC0!^aP%IGG~V}HP%hjp
z9dm)YYg7z(<V5MxPNQ8~Z*}GO#4^$qkFAL=H1KG=`7)w!3(2jP@iSCH1%aJZw-yu;
zI&(xIJOC;qgAG%?;em}$48V$r5oug;a1kpC-H>L4@_pfyZFpmtS7%Tly33mp8Ab@*
zK2t~JB~V;)q2Cn6g%YQB&i`#(M(b&Q6m@I(<Jth=JCIw9ZUKY{QAgI!hUx5ff_dFO
zph#tdPj)xk&ukNnTnVr$huSbDhv43iCmDF+;}e5VSO!~ZeaAtQLeG=f+#c2fsVEeO
z39*JBquTcwW+B*1p#qgq1;ZW$L9>4;`h*mhpm|Ce(Ts)ZTnAv?cosRmDY9Fbd<cgM
zD0Q?9dC`b6kr(mKT9gDH4#Qn*dnxe=2s;tT!d3!f!~>eLtM5{j&2&=s;wNm%YD~N$
zXT&MZ+B;w2lqn!jDODi*Ah#K-t#rW9GCrYy9}d}pQH2Xq@zK!vN5)6TUZdipbi7Nn
zUI^}E@Pm6t@UyNHD*wH>=obFq?t4*xYy1cuq1K$ZcVC0ZyI_KBAs1*cdS)=YtFgtq
zs+Hg`*vNO%u@GCc9DxG~m&WH11kzDZ&H_}CiQuCErvJ2n&ogT|ZNL#QW(&=+QLf6r
zVFp6@B4g0@(qh?9<L5?r6vVFp|CgZ1y$I3{l%6cFj`J)X1&8DJWyjx7gE}MvC_dRb
z=RiY?jkl2PYj_Pk+P|oB=(Mu1*IM`O5#_`mTcZ<!;%QD4Ti|#1MBoNGGsuE`Ws*$D
zd^L5NE_=VJ$V*F*O;>0@fr73F$LjC}^phMD2S&={4kci8trJK+5L}0FwF!XcUMDop
z_yF<yVwK-|hCxE*p3VF^gjtxpn)(WZT`#rj^!A|jp6aVu-b|_dBWEhua0&n~)!EJx
zKMRNnq#yuW4J;rlV}Y&NFIT=pHV6ZrP12?ej$%rqb*J-taGhZ)z6YTsP(traO-f~&
zr{P@ArNAUo1h2ztdL<642_)iAPGToMFUhT{%`lo(Pt6GJ4TLrZu&ha=BePWHEDIPm
zKkZWqPc1~~u#f<mmm#QGp~q?A(WB$wPoGU^fVoeoM@j<Cau%(S&z9&<qU9$?%Zo*`
zBRM-R0vkaS2o-T(1@<zda4ffe>*HBUj3Mt>TLexM;HvGk{N{k`jPSJd;+kF;)C4X_
ztjW0mimzv4vC#7@1cVCtw2@$iyETG-jS!S^jZkJXEZS&Z8;z<IBbKz!d=z#va+S2~
z`qMBS!F2wJI?kaHO;95=Lhda#7#iUXyH0vkMGLZ)9fKp1nG1QyQ-e;8HxS$WjBrZR
zBjVlC=-vJ*5L0AA`M}>ERLO@h*wf7N{o#}~>XS_L&nNSZAR5Ytpio*u`31azrsWrg
zQyx=g5xAC}O=T$pfRIDiQww$W4L-_kowS^}MlJP~byNoAf12PlWcf2bvl31f2h-qu
zu4rui^AzQKrqN9~zbdvi>R0FR705+GSbxDo$p=`^7f7f18My$eUj%e8YPx*45I`E<
zyNjgI*FQ8iM=p#7AFchDXVzT|%&S`E@5+~?p&n&3%9XViZB1CIwAIIFATS*+w9OyY
zHpHg=c0Nrl$A+*yKeTxcdKF?H=!X@9-xb*y_})_lHY)kIW41jt1&c?~yC=`hp>XW%
z(7=RXwI$#*dsR@vp?an7abo#<m;~MpF+HjeP@X~zigwOJGYE)I!50C@4?s2e0R(6)
z=5vRpW`qa6iZTeCd@QFV@M_@1%%bT!{)aw*3&=AVhT+mFFfzeExKjcJ0#y-pir*M8
z2@W4&Zg4)!Vz3I2A707D-j(`6cuWzJFX)=|yJ0qP#wJeV%Z90x&15J+Po=P^GCL2b
zR&B>;`DQQZF(!kI3YEU+9)(%w$gd>=>QU&|KrVZZ3iW!AP+C7=C)vnb62V~A>}G3r
zIt6Qe!zc8N2@Q{AZGk@uV#j;g#wB!EqMXgv%~I?@q_fB$mT#`NE|*7*5pIG&ETL>V
z_{I;YhP~=o9Lf=yPt*0uLVF?__1tvrds0cG*Rnp{(;PVo)mmTWiCkWN2y!`DGUYA&
zooCkDq*>J-v^|j`z&~i6gA|_N<9ruR*_eWaTsZZ0x%7L17l@m-QH+$qaaaOLQP3a2
z6~H(kU1`;KRTeWF`!8Nbt2wA9kUoM13XKqA7Tgr6dhBn!)(d)-1ovz#p}D;bH+S)7
z1a4qU2x1k+qHxMbNy04<n!5<4{nVOx5UBPBm390=bij1xwBdnQx9)%MR{97qCITqn
zUr0=fWqCE1P}5OiGE&tNl*>1}Rg4bzdW&ltGDn)FZ-MF(Pe+yNBuv()QU$O&JHXE;
zq?hLn+Ult)lh4n5Cf^*;kjMHa$b(*Q<%EYk{va1oG<&MQh6d$_do|>Tdc8HuENyUO
z6*Jn1>1-YC8>-J`l_#Qxk!G(3Oo=R%8lWA&q}GC#nIl8J8b+Gakm^S`4_S&rSgET3
zf-or8WD0Vd@!2SIfZqrw?}xkI57@`<_o7R`Us`%uUiX?12={$25S~aYKzk6Hh=QTg
z{ob7LS=;7P!3VrIy!uNu6EqO&yB`ZdP&PF7J(NgUf)bdr>8V~ysgl&dP)N-+K3UVx
zV{|-Ar)74+W-NisMEvaq&_483oh>iMdHG_TmoLur=G2^-nNu?^GZFuH%Bksv2LW%Q
zzh;^jo^~h%IJW?~2~Sl6TEbVEomewJO-7w>d#c`(=iR(`g75HmthZB5H&n@%YsRw9
zWG|~j1FVulQB_xj^_d5(Cw%Y=Lm^(dp*2{iX_@#P2w4#?_1biGkLVr3#e<uY)@9&#
zm8^MzV2MPDTtw~>BO-AZ1`cIC7HW9gQZ-P>NM3y0$NreCg?_O#1yia4L(<bCU$E<&
zI8v1TP_A6|tIHmBx$--xMFL92^dHda@zW9pu9fYNpUSilZ*&eE^WNw3GjqUijPT%n
z0B9f7taKmzgqq)%J7|Na%8epe{2GElZN!^#8&Rg)M)U=;1K}cc9N+U)eFU2yFweX$
zKU}&8LWRI6KRj)ZJ3l;NPcBX{s(O|0;VTMAkz%Yg&&>-D-kKL4yOpw)j<uE(w&J@9
zT=re$3!s}37_{3{bq_wv8}zZK>Nb8KE<(WJN0f#)W9&CWc>|Xe>@7FVp5S-TDS7ff
zZUQ*&qynNc%(Jxb=`dg2GKOaVz3gYhJxkMjLTCnihi8B8seTA0@x1gHJnzQm>3IIO
zCpcbeP{Zi7eHoobc$Q8$z0>gQkIT|f48n>pN_*nL0Z(;5l*XIVUNCg>BG9u_PWF0F
za1Z1k0OXvWh|+<ciF|nfU#S!`pTggv5bB=Ut35NP@zMQ1$6u~xqHE*|t|F$$N}_{k
zAa1!48jPj)w22~HFP@kPi$Md9<TMW&VCMo)T8+>mESk&bAqFYh(u0-S(tE929MzP)
z#we;LT3q*jP@Im1R+#U_d*cUefPg4oo<TUCWmxCC34~T37%Dpf)=irCGYUd|0k{I(
zp+0*=oBbIZK4^-BsR$jc&v?9&)Q4x7l(cfj@gB1~bha&w^>dlcxsa&n!T0~amCvJN
zsz*fI7UEWTxR{%ux=dG>yVYfqx)iI+jp}l(x~$#{i*#qJ*=o-IujK32koK+O6IX_d
z5lKpxTvAWu1yYmAPy)VA4Ma|OgwYVh6=n`^7^L@jQ6)YkViD;`W9bZxlW$wjSPGl=
z|827>BhuwFLhf+Np%8mN<!*$585F4u<h$WlQ!ag&EkGir^5j3Vdt!$nx=WH_-Epi6
z4>wuwH3Hw`V}XeyK2ZRvasQZo7W~CqI&w}504N^zBZYAkrCj-OGM$1K=A>&En3kNb
zfIb-`BZIrL^9`r>?v&eeQR-5-x~^SdjmCC$j}G_k3TM~VjsLrZQ&WNDXtP&W<jT*1
z@9v7ItE>Cc8dMlgIaq@Te?wWy$Pg+GpQ#1{ah$3(w-3@-UjkQp!Yce=AiT!9XP8LD
zCtm~MvsxqE3P0&i9+7h?B$^mFffJVvTvyfuL+SV=1GNIMp%DDTMvP=I>>P|41_dl%
zmTk;XxQONnb-X*JfE>cmD#;`nFIHlp0%oMJg)#W93<`>Qt(}>UN-|(7C_%+~AXO)B
z9=%jBoU1MezXGD%tc)yeg<qYL-$I69=&kV&U?>v6aZ{{>=l-EB+63U4<Y+b~c$J-p
z{FAo~{VJK}!wRZ6z>WBSNVFsR?A0ptcUxbMA!Ks83W9Wdo)*X<GUjJ32EP46^jqm&
zP&@wods{nDT2q#p-`_}$RxcuXLThdwf$z>E^p!LIF+V0Y-5=(f_{nsCb^tinKgiEO
z{!9Ys_beUS1;IXcdF~-P?OA$_yJlSa*}^G|nwQXbfrpZq$Dl8>Mir=mel5-VBcy=+
z1s~=cgh}meyJN+tXV)lK#`|+{FB>Gr^cGW*=(+gs7Ti<6=s9e?wo<+X88{<Mt8Z(5
zPoW2HIsXF?7>eJLP!Z21Js^tg6PVCSP&hflgDy>x#G7iop0Kz5<^Dd=FUw>%8wf^|
z7hC56VCGiKMwOnyZrrRbf&uuBgEuM;9mZH#RTDPi<L(0>bYfL~?O@$DhFB(oT2+`U
zKu}z<pEZH>3zSZVx+#N4CPJ!-!)p#4PA1TVB=K%&0^mn-7fpD;PAH^ZJ3^WC3xXS@
zY~)H%v(36wj<q!dsLWfbzMvRd$6O*h*iBu^8o(DWhi;{RFDiaO1ekS&{z0)s<Y71<
zmLRX@2aJU915{-R2_t+&5_t#og@;LGB_Bw>SL_I<`a#Q>i-SgMk%US^B(1S+R3sy+
z&}~?zw>;I#y?yWY{OTogsp^p1Gm}$rUPJto@H+pnaz91AU^r4W*~pr@jb`i?bI>@j
z%UIcr4bnePG!hRR%^QqnY+tj*o}^p#2_A1Yn$cU`6u{%^4fkCF-_V^)7iWb~F@7LY
zeYf<*Wo)J)$!K0bbaQ0r<}dKDY~M&TCjsW1p&7WQ%$^D+qdyI9tO<&!{lL)?FF`$k
z*Dg*n!jLmYM6n{3`VgAqS%I)2@*I;CxkH4Luc*uO5peQ+JXadF*0tw8jH5&+#kJt?
z-G1m=8hMM}s{C=SsD!r;fxD*bp3Cfk%Bk0JY{ymcMV43@@RfzDa6pVT7|k{O(bnc8
z?AbdA%v<WS^+%k$g38WgWk5&F8H^EAB1RhK%nSj%*y15L6`wAH*q~HOXB4g(nuxc@
z>$hh+-dYj9h330H!ksua$lRO{D08Ok_D)=)0F0O*Lq;XRD!hN6%x&{Qt1dt!QYs~&
zn9&lQN2}SU64v7g6jwDWUYn3O*IF>bIY%4S?@DZ4{f4~Q$7M*+y9|5`J?@05bW3Qg
zF2D`;$aVeP=lHZIA?v<^>f`E-4}uBdl)qL;=;Wgmc-i?^qu&KSeEi2$$H!iN{4yrb
z;o}c1_3=#gaYppx#iV73-ruzpWyE)f4M>;21ma!hN2NtQ9F=-l>BLzI8BU2R^#cFP
zTHqgc{Q_03^(Q4_3P1=Xgvh(CQwzQk0(*hzb7*cvtU2g|A1V%Z&~jLLv67x@4&|V9
zAJ&+VC_`yX5#EORppg-Lhacnk<6jVOdoM!MwPBborzb!KFx2gexKLoO)rd$rW;9_P
zlFE+vyqa{&kny*cb@wbC)@kr099a`tj&40p)cv!%ynqXeb}I8o(Oad+J?b4(fY!**
zpkS%E6QOUZPZvYhGpJAC5dT1h;gXZn_3RtBbryMmrxYv(M%i*K7mLae;#dEKHoXwj
zCZ|53v>wmOhZMIpo&~4dh&K3--9#qi5v--*oYh3noIhdx4$da@EG<aHIX;;9sP=W8
zYpu;8rCJRR;Mi@?(%f9Q!fiC}FgaY>f@6QGzCWt$_;8=f?{B<w!sN1Eo>#9)zNPZ}
zNw<}CLHW)V2Pc$bs%S8JMrl1^uw?^|(L2t%1+&)_8LFC^OHbl09Ebvau9Y1ZnszEY
z*-CX*SoS9e>Hrz5F{%z7Rd!;yN9CbOB{$z$mgaeN3_w0~)0DCl4YDVAkMwcvb6w{t
z@T(3bdS(~$jd^V|^DXzk#hpS<`@p%L<2@ts??%<(L{G32O3J`&KlZ6DB5sbscN;zT
z&*pa^xIAo&I#9t;5$5yR%ZD{e<039A4GBit4Mb#~>S=i7K+i`#DndHaOCF(LmHI$M
zFI0e-+)Ul~IqQP$kh)x~>xG}IFx4mA#JAZpqfWaTRHP1c2n~ROqGMo<3q)1fQ=Nw@
z$SV|6V+g0?fu}kVe|4CO^!?7P@3NZdY*VnQCWa_$1EJ5bT^+kp*#VA?tVX(s?%q#N
z4_lCvZsgDsBSbyFW^DREVua*ej{vB(5HJVKG49;Z_lBuPEM?1GNMtl8`z7YFtE{mu
z4~*Lzw0y%+zJm3`o0aEQ9m0NWeVEA#mnG!>^^SXrCrv56^TxbEhs$~l_q<x>zGZ0T
z;X7{j1UVjr(yp?;!%-3sZ@F#a&1D|sm&%fdRvez9LP(TILJ54Bzz-+fsY-NGCFY=6
zlt`X_Ue*>I=619?LGNu?tyZdV*3csrle<4cQ1<Lrf}*A-AW?|*rx*~|1FIk^y(@+Q
zKvi~X(=SjQK<tDp>V$NE3`e!cHuzd@gkYG}lCUM|6{yld=2@`3B(v4$6(x=t^wJAi
z2;y8JR}OzwHMz=epsER7uJkM&lU#9VN?AZ~Bsc&B;UBhEEjwF4iUFeby&B4`mu&b$
z?-8Mak;O2$flw`RD#pe^RZU4{{XMVtfD(hWz0pV~Hqu=hQQw^3@F+jMprNr9P5+LN
z_ef*chIz5BgG!Tp@MYM}RAZ}@SlbHQv{^-n1fxZtm!hfTKBlMDQ=<^;NVtqx2iV^h
zGm`dh!t6=Ify#h6)gaAU@pe@A%b=<@Sy~ZJXe6xWD4gQ2VtQmMl25G&u;b!*1ZZJ`
z{}QK2j8BmtP$}fLmu-j;-6WAdTY)sTa=&Rfx?|VDB)ZCagpV2`f&i~GB6;wX(i6FM
zhb{^MT*6!{5T_x#1QZP=PLER}xU*~|+lW?1@t<oo!~Y-2*%pX>7_W$i2+EI2md7gr
z!aE$)qd#7xG;R@^TP*d!plfZUPG&1dT{L6^gKSj?=~}&&ho(%Lcq3hF0sYiuajgZN
zA>yUuP{vi(GwiNBIPtbS%gR7kfAZk+7%3Fhz8M^c6fG#fC0>b^c>d|fi_DH!gc@PG
z`tGz16pX#s>V(04c3jhJp^0q8`cjPa{!Nyd8X0h6#Ta}l5$6Tr$9$~e4(G#BHv3c1
z3dIeCB>qCs(i41;FVSnB-a3}pb5R^RU`Eo6?P$)8ZJrStB;z!5us(cV<>8xdyK{o4
zTGA;fR5lI+Vt_Xn0Yp=BS(k94$np^Z%l+{hX+i9p+bN-BcUZg<0^6?%+cC<Xwt@{p
zg9+zV2MJrk5CVS$Yz-I2A%KQWiOPm{N+^|hHeQLAq7sZ(qy-6XYNv#1#viYQsV8Vj
zNQ56W9W;_@=m2<mZ@MxrusZ<9XGsSj#g>yuckJge*ZO?Wku<Poo-N(xd)1}%14Q+6
zTJN6djK3wHe1XW>9^@_Te54NTW9yRvQ1!=@e7I6}C?$kDd85jUAWCDG0B!)?Zk0P<
zei>$IAY{olOj&7*F*)89@tGmDP!||CpJAO12Tx-To+EC?5rV7&G1dL{aFCCWG7T!A
zI1+dRsW)4#JM+or@am(fSbmHt7;hN|{%)*1h-Jy^)whZ3RijJ`qbdFQW_F|s&`VK^
zgU|%f!|M#)PP~HF31<n3)6}KM-$CLRqL~TR%W2Vn^33X{=!@znqH6S^pyrZ+WNXY|
zlNN|<iyNGgEqCFtevR!N>?k>C;)x^=;3Nv{n`7h#p{7A(GJs4by64gAC9g&AYr3pc
z*$=jZ@Sm~zhw60o4R1QWae#EgmrjtlQ-XCv^qb1~-yC-`+pz=mRDSc8{f!KhTOV!*
z(Rk>G?i9A5*WIJh-;7Ty2QsCfC_Air0SIRjtXu3xS`x#$6RkBYh~NJd`Tv*VPYL-`
zO#T!TF~p6eVsx01RKc|H8Z@P(Si}(LWUOqs1dF^bF%HPV#-89jRu|fDy!)B4@~ab!
zzgEn6d3y@KLPn00o$lcK%H8PuUm_=>1hE3(1U|#m%DGZI<{WW(rILRPelwT75O0`l
zD`J#XkQdsRyE1YK25>IPJ+Km0VW9dQl*kLcoBQr3xhuaoA&|J;;5Z#qzqyqkvo%b$
z@O$R1^9P&ZSkW<EgjXB~UMyGpWP74t#g!K!h^I)V@Dd#-Xm_bTf7-h3(fyJQ$%HKS
zR^+lNrHRzAfCft;q}#%8g_B-?t<fSZ%LoGmShbyn*^7XfDb7Nm6yaVv|3z&(Bl96_
z5}}hZQI248Y2-G%u|~ZQf&9!)f3(iu-$3S6wV0m=`6$uz%&LC?=vf=sNhG;oMI{-`
zY_3R=oDF7oJg`=Fv*<Gw-z`}z4(f10>J%0)<a02eRua$A2Ioy<c69hUp+5d_R~;||
zHj05YYoShC8GxQOWU>Z`EiEqSx=?s)9}r|84n7f<xQc6K@quB4Xon;gq@lnaaG;q$
z<!H~IjAE^opj(Eaqy=bW<Z3cT%7K?kHCUO=cd5^2I-#8T)P6uI>k?$`D(re>Ejh5^
zJ#ZkXO+pKM;F<NUqCcRr{S$#K|4;Q(ZEV}NeipO2R{D7=pOH?A;52Rkp@<+LlnOv>
z@dAEIJG%_)pdd<iAd>slb0Xb(LIQH0!Q-SpY@qQT0-fg4qm0Ll0|y&i#(^DKTZ|zI
z^9D|xKE<f~UT((grWBXZlI9ZZm2im*wN771x<+S30uESEoA9&Kl@!bqjThf;E1>QE
zUS~@<&M>qZM@NNSyLYmKm$H=?#5+`4{?nf>#BI!O#B^7C(toF29CY&pm`+89xb8PX
zha=?_htp3HC;R7jAr)Um_0qQCG5Iia()Iq&ex{Jx-v3#_OcL6<pyQ7Vt?uxkq#e_j
z9&;DMHVUv9M+C?o^EyfQHzj$@YH|%Bw5R%Z-k~a1t9tCWm3XT8jc2J+vf!4o3rHj}
zY#>Q3-jSB;apgZv%gwlD@2-N^=#Ij&V3Hzky5?RUo3kJscUv!pRk}+g&#Nnvb{zGy
zZK)h>?}*n3vkfQ2U}yG5WgG^0f)`M&S)jLFfH_5`BhL2(kJUOa(hq;>`f^MRM0x18
zj{ctlQKfMJicM`vnwL&3`-S~LL0CGz><R^8i6=-qBH&-BUY1QLJ3adHR`nA7BVx&%
zPU-j(;GB==>Uc45z2RegpWLvMwKOcVn`(H;zB590Flwfb+~kar81-9WOmk4`h!ck-
zaHnWQYQ;uJWh*IiJ|OS}F)El)I++K)D}f?RWq00Ij>FIRK~<Bx>}MSIew`0*oqXdR
z%-IH?RPT`Bn?#K4_a!%u{{`PyUxTMe3A@qNzPZ#BEJ1N~P>gP+;SY9uPGp|n>_kQq
zaBpIiKZ?u^PTeTOyxkbcAS0y1t-wk~Z=PsOAZfp$=b$cC*Ws;xj<O%(dE{k&V8evr
z-za&KBN0K&HeWG{A8J8y0kV%1$QZ?Q#Ai9GoTsZ4^=2m{QE4}HdbjAbO1FAmJr>!2
z>a^@z$n|X)n!W#TECQ?RH%|LIEq*p8w?w-dZy9E{WBC*wRl{oi`X#%I1Sf%kKseLj
z7Ef@MC?vZ_gWfG28uORRchcNOtvo6dE6<gk>C;thKDrz@dKrk`f<Z1#zNo#yYd?R~
zN=?e>v}17EG$He}3DGM-TH7fAkS*IkQcY+~Y@#V+a&4!I@4@{yNpfvWQ~??jzJv(y
zSR@@WF?KRt3-e;eq(G=(y)nx<3#Cn9)t)j$yDfXCbHa+nVo0npCy1jNsV>9bg1`AK
zwp+G6jk-GgO)x#1=1=zLT;GE>dk+`%atRg}_!_3ZLW~RLxpFy0axWp@Jbe&=#1Qk;
zR=o(a($E?9C0hMuuV)>`AqHd^hj<AS4z_rzeQXfCE@5p*ka(&Odii9YY?~WC7b*GM
zZk&jWt~|v7RV>HJtQCA93ix~2r|?CU&0=4wAEmRybJ7{kMeSwjscwc&#0u@DhM2BX
z-_*N!ys0;LM5u^3PY@g74!b_TNi8i|%;EsDM&8KUAyl28hV?%vfd#QL=sQtL*?TXI
z@MhI!ZJ__H?#maLuIlCIXh7kLMAeD>#n=o<A);B<gAeAj7{3cq)UiHDuf(y^1WM`o
zro3=1WeU^wh6w~RZBI;>G{TvCaFUBy6CCJbT=AdWvv19NEpxTFr?d9+T3JWNqnm^Y
zC_w?&nzs*@64TulBaH{=e6^QjV+&bVn2Umu#Adf{A-~30RP(#Est6<*KEf0Q4@yam
z6Au)pT1#PjvjJ47gF1W!sAsD^U(M8`my<b|tJq)fK8XR85$=AdFzgzAqhgGrP|AT3
z?4E-!*lV2)3TsYB8O541*=;#PnjK*W7dCB35B>w8oBX6H;u<NrLXLqrk~U5DQmmjr
zYE8xjPo9$SENZwDfLJ$j#;0ug2O=(H)gfpMjHuW81IDD;S3>6qW*BxNvWvz7EFw7k
zr`bY|#Xy<;<De|Vx7O#Fd&!l@GsXX)_kvoiEu4^<t6Z3P-HURU*<LqyP?IOPU%9fQ
z%lczEt9nO|i+3DbzZc%Nncnto7K1)zYS6NIHC?L>+qebwD+s9dk4oA%Ng_iY(D&7i
z;H<4>Sosodh_0Uvb)m{e3>%VDSl~56sUSJX6uX8*m+dQVaJD)%Aq3|H<`)WRVv=U-
zjl?-|MfLNgC!uIU+mOMYf2K8dxbi=KLR&!N1PjGv9Ofe-Wxb&k{!ne$Om--?*qeXb
zC#5Wj&z|rKt?A9lWy=lxDh7DrODda1)fe%}d;(nET>2YUUPJZ=XK>O0bgTlu*mNzf
z;e2o9!8fN~==D^O<!f``SyzGTgARMD2jREmQcx3kgmhNr!G`PK-R`Mgg8P8!8itZ&
zbM<5Vt<}#HJX1;r&O8hGlwP>U^qR-6WSs|Lfsv<+mE?f<@T?8Pv$hP++BrPy(?IAM
ziTF9}%aDU-C@#hoOI6Zu9iH`NZs?=oS<MZ%(uDYkUsWv(g4%;EVBVgHmd-&-Y=EC}
zhj><lVK98pqgdAC7kX`h(5l?f;oQ&xRz%tW?ehturW<g(6+d$at?`)mB3l*+>5Ydq
z@dDV~F9Yp!QAIf^DZr>5<SkYg9wp|cQSLEE7DCj#McFTKW3D{bCMk`05C^$(4>5<$
zlifdnqV5aB>{aiR0r;TWP&2Cii#~~Ie{ho&(UT9@e|{DZFg>91kYe;~zBl{jj3rYr
zg>JI0lHhu(D+vgobmPjwnp?Rrka;mmF#1?H?-Eq2zylr-b1`W~TJYRDBh<Gy7Akce
z$E8eTd%L;8JPx4A>Fti>O5}na3$|Me_Ry4Uml<l%@_xHGSwT5|sR-r_)Puv9$*7V=
zv$AWrj&mAR3r--DxhW*2dHjn5P7PnbiC6SXh{zGjsMUH2bHHd9-AKLlX<6RvH<U%?
zkYrtvOo`wse9UnHBPc~i_&!XJz0A$iegK-<GlhvIsChJ}gt_BZFhRA%B;OG&ZAZs6
zvK&MZl7jkc*;9ojD7Oh{Q#Eot3~J>erD<<5<S+;RorMRzgZw0a16IYV$26;&0A`d`
zoRuo1;0`lXg$g{tGR+x?oSm#109K_IT}xKsw87z+Ck=B3Rw2!o7g`^gFE$wr+hsL;
zAq;EyC%84~A8m8XCXV&Mtd`tD=pQis!mTK%Hn-knci0?w02j6OFPWBmD8@7&@r`|E
z_M5G~Si>)lVR)(EgLhyW4=xrZqUN{9JI*%bbQ$rU>kpHH5H0ZThz5^S4UT1lPdiwc
z#OHBYcpVmHR31_$@LMv;Onsz)EW|#7JNY}xLiBh<+aNnJ7On#5l=1RB(*O&V#m>X&
zp-~p*Vm?1sC?17lPM;{`x`PQvfrUHEydy(7M}dX!<lzX1_c6Sj8)^!KKDRP3M-%I4
zg@rHdjKf0e8WawZHHF+~tqZnfA^I)>07Jl|paQGfd~&bfLAeY(7dQ&sk#Xb;Ik~HM
zjFYFf{(7eR`gQg7H@L`g=ytJI3>D+ujxx4j=mF%JZH6Av?$N5<VXEC}Y}a(~^$b3b
z%U5I{wF29!#9~p+oq*SjmJ(#?Fv#=N=za+e@2E$4R48*`ceYj!6<1GZa|(djZy5?k
zj*=3o6LF76zn9Cvk5~mJ;r~a0ZvQ{&KsWmd22EV$91V1DzN$r_+kHr!KzAt0{Ck0}
z=X?MU?@=pqy&``265BmM2f85yuXdnYJs5#*IcHch(3RCwSdIXOxTf6BMN3$-5>6@M
zExqdIs8^jY`tA($qh9rLA4iK83P@Pe(VizZQ@?ys(=2&`O*0aowPVG8*mc&Gif#``
zd%91ddI;j!rH9}~At&L)%VX0B9fL0-C<x7$;mUt7tlI|sn}lPPRsm*<D#8IqdQa<O
zJc&#K<rt)}9WKIj2AA#h&KPfP1~>sw);hUYqKcegQ0*uwW%DRNsSOfoS}VX0JSdM<
z(23yb^gury*D>f~jgkI1$73kBV@`-9;}(%xHNJ@)#^5|#-GLX<YW_EITD>-Yt5q#q
zU4oy8CTTBO9pcHz^Qd08I)N>jt~qS==hCX0RS=++3T=tg>Zc>);+oR3)r;|yUbbGE
zL?HWVWFT8zhTjR1Iv(c&|Bb35Z_0g&$!g7kYjFWQ&3w~@H?f{mWUL&G;tJd<YxIWj
z(pERl?k6B=1y&!?qeKWZ7tbSSe+@7|mtrZTANJwHwkn>dH8_6%&@x_wlpXVxq<&)g
z9vL5A2)r@=SH$rrq^S5O?DAeuTx8@2{V6lWeFLRklvO(Ql2DP+Aw5(Dja5OW>QLDd
z2rrdsjbaOMkABve%|OCn$Etume5Hc6zUq7eyIJxLfvLhebgO0=;O7Q*NLj_;H=X&a
zdF;Bx&sS*`ssS}UJ#53QQ&`BZ1TVs;)<1ux2AL3(5YI4TMJP-GIS_)Y0&5E8UKYKq
z(0xj*dtp?99s>u+*q5}P_=LQ3Vw=fMT!wr+yJepl4XEdF#@W%=YImHS?^}-J1-rWO
z45Tk&Taa-97-A$ygs&~&N|@??=pd2uRC8K>>K-OmVX08Rr+>jngR@A?fp3n6MdU0n
zh6Tz5!;lk8GxhNcdm=X4?5W<!VJWV1_?zyMsLFKZv6c<C99$rUCTAGoU-}r38>}Bv
zz(61>TF9I%Q<ERkI2Xsq{5NqCRX{O(tq&gspqXS#xn>I_3(ME#2gcj1lN%Ht$_aG|
zrLLG#S7dkRJ;AV)jU5@+$fiu!g6nz%b6A-_KWsY`IAOvOcGZI_%*S2APtBCouM$+r
zHkC+aOa!hV<#ZxYCB1Cu^D&=egbx*Ap~xeuR0gRhU4V5XGWZ51GF6FERU(@uD%G28
zDFJE-s3C4UG+LDc7s_(T`zDseZbA;32TsLjQ-8JS!@<zE&b4OtQj@Iwggu(^YeHvF
z=lxijwcsP=vtEquB9v8Y-LD>s=W;%uq@NFzfYMPF`DcyMZ@*>l(sTuv_DQgY;F<Ka
zs3kQ5{etugxh@eaje^fzr#61EeDk<R;<b68uxKgdH~|%tB}YkD%NBMFRrFB@vS9-p
zShhx5wnl5@Zs39$(J>*qrYJn{Xx3-mQ^@%%&oe^{sZ#QGm&{I~Pz6FmOLD@lT>&Xt
zJe*D5A!UPF0*4lRmR`yZ$#Gb2kyMuIdA0K`LojmJ&9n5fPJ=OUw-wbO6O7sRlvJY1
zNVHzAs@q33`PEG*M&qv(lx9dd$XNGBI@%KV>wYb)EcG^<3gx$cBYKuYE2|S(g-Y_7
zW#?8PP~q*x5Qssm?9E9wGT*GNU3iKgY4sUdl$RR90>02IX^EPT+qu?=p7BIyo<6oK
zs1n@Z&LTD!PNY6z2*90ay|a#4Ha%vAH3<-AWu9{V+6qAPp8K4IQade)&cxO=f)qZq
zA1M;?+Nc5)KYlpH9q<xJCVCbMu#fkM11w-r6lN+zn?V?G)xm5<Vas5y4MrUXN4qdT
zNoqtEQIa(mi6rkUh_h6MA4;O>G_hY%cQxxV%}N6njPH>efk|T@%*X0s!npYxIw|0t
z-ds#uQR#!QcA7iOy%S1f>fElV)_0f<iOnS=0X{TcQx7U5rf7=KgvbEOYpwVV&04G4
z8`zf#_cLC}N{AG)j|1K<Bp%qG<r}ShzniP=Vc4}Jmui4**#Vst3uDRM<!&m)!-D+@
z*svXL1QyS{IxXC95z3>xd%dt}1YE3>_<Bf7e1MtS@8({h9><T&)IkQC5&vqYo;(0f
z2lqaac?)N=0AL{*r`gQm$P)W0n~*Prefk_T7h%V6_Yb+-g+3XU>~EGIx)>Ly{Z+k<
zaF;DiY(7V-S)i8ugzRz7$In-7p=p)Bq7=X}>d9qrEooGeT3~LkaU=V!OFPTl)*Feg
zC1jx-;D;MLq=cmL$71~k5@3&MLMBj=k1x#BJzXg^NPSqB{)uvIx2k4cL^3fKd#?3r
z_c$UBXw#%6doTow%sSC%A)m`Q&O9B;^umx0d*A>=lJzozhgg8)6VEum(o$ZeaexfO
zCPWE#^I6))P62>wt>7h!iZE3{mD#22lZwlvdZa9()FZaZE}>p3>t8P=RLRI`2Z-^S
zlsFhiL7^tb<`@FT6`B+hv0+k?79~Jn-8(5d+s{*-O3Q+31U=B2go?b1E)XX3%x6ys
zHDwCwGM}eJI!7+!UldL>iu`DAx>~aT3YZ<74fXbm(A5#>W9VVm35Mf5#9G=98E<`8
zP4TIfx?j*om8z>YZag^CgZR~_-HseZ1C<Ll(cqh|s$Cig&S3_@aK7|%dv{a-Q~>Jo
zG2)g%Vu%oPSx+XB$T(d|RpI|f>nh%P%~1vV2Pyr^X<5+WoHv{108Qax@o}6H4KgE(
zEeJ5RhcHFmBPe=yI1L8JCOy^1u`Rr<S8ri)?HoId5^)Q0Wx;H9ly}I;45!?tzV;a=
zb^taD{m3Ot*!eJ`GL~#oH9>S?OVm9~sVvto@YALu$}BY4d8#E{@K2MJaz&Evz?H8p
zzQaF0Yt+{SR!A9?iYZu#Z{?l@yzgAwHi+85h!wMCSO-i9kIFN}VL&HE>Wvbp==pUZ
zQx3kMw#X1UzDPs6PMyN}@y}D#0i{5K1Bt+~Uvax9ik$V~c-3(M9d)<Ni(0&_#Z39D
zhsJ||{v}a0e}-<pgfl#$d^Icx)V-*j|1@RN@RL-?V4LO&IqusLNIkes2U6xd{R)8!
z<*ou%;7VD=d2l_Dl{C>yV<mu<q?7gtk>~0So*o<u{lzh@O9jyH`~R5x_V}oZv;PEG
z2$yApkQ$NLMWY5UG^p4_K@teEfuO-_yhlZhiW(u&h#-kcH0yFCR;>EgYP4!;y-}rt
ziZ&61fYt(5M6HUK)>(s!cZAmbzTfAWbM}&OvG4oGFCXRXIcLtyGtYgVd1gk<!6NHP
z5TmG;xJfa`C4FG>_hs~xtVnVABU{7D5-d-azG~mdWq0FicBVzHORY-qyu&kS48%LM
z{t0ViGGpKwoy&(VY!C+u#E`mBXRED~tQ2xE8N_SM<LqJUWECIa75qaugbmr;gcNzP
z*di-d^(Ep=2oXWoMHi}Cq6Ti59RErXjk;1y5VVhu#Je~ZA)G=W$fvx5$f7a;Y!1lM
zY;H|c)wvun!0)HZL9%SDOOyhli4xFFmwvHX(G<<Gy0V4k(3+xTfe@eQ=IN>yFapqQ
z2JNEZ?nUdMUnGi_^^slas!5QpO+S9dh2+PP4QeO}Vv1@BnJZj0&SaoO;ri_NpLa&-
z{xq9eeY)bM*__+W)8#3@`(RLXo_sZ?oA+#DJJ4z_K#nKJQ&xJ-$#VZbp)51w<p#5w
zP|jvFZlY&lBEpWns2xpEO0-Acf=kwHHo~7^%qW>|G4#Q$B2Cd_=whodTwJKSg$(hH
zvBiSCQ8mrrMY*8I`ne%0vI45lJW`V)O`lrN%!MN^_X{jf9or3TFn)h~1ik79uPT;v
z6led6vYXWS%}GPubz8R!xgN8Or&r5Bxd52@r~ubdt>m^${@REn<Bo%9>xF6SSA*<x
zG05*+gYV?{1Kk?;OBM;T)A`#1P70d?UdrjVEs;iT$O*C{6-5fgEVT$euqTgBT62t)
z!b&2ufw&dcj~kQSxhZ6s(cHI|8*zjE=r<iKmd-t!m{~K6>^JnbNO$-lcC{4Dhq#or
z(j*)pT96uZ(p=T<!qce03IVhuAaEC<O18N>t<9}jM!-2ic*HbspvMv)j4D%eC_@Z}
zgBG(pKt&}LZUqkv+)Myq;FXIc1Oz@n`*d^BqyUJU#P-c-oDgkiaFB5zop3u2Q!cH*
z0Ekux%hB4f0g%hp8{&1k>5%B2nN5!fz{44^34wV!KEfe@2a|6XvlVP|fs9CXilbk1
z^b=l>^W~#Pel}QVZGqSz%S+^;X43%Ihtecku5J~1Pqd&AIIPA>;fAr&_z`*yfNdJQ
zAVZM_WSEDKQEdenty|kJNRVW89nB{wtb=!m!b)&&sjj1chdOUI|AM#B9dx$OfrcxI
zLECR4VN{%;kg3>7s{W94_O9-#b9_tO6FJx1)FsyS&G8!R;_f`~B;I_;i**U{B86pG
z%2=)$R_!Q@k)9;KsXSqj=f%4IsBaPLs=g6Vb5LPioNIx;MVza83f|_)+lc?$laE6G
zeBbdRk*?`lj*+gxvR^iK1j3QK`y(KqN<)NOWGj4*BuCD$d=MX%ddogs9RF~YK8((a
zef%f;sF05w-^ag0eCoG&W;Zd`As%($a>0r3nn^ZP*d$3#cD_zSg?~Oy(dQ=}9RJ;@
zOG1U#qlt_M`pyRWF2L|OjItr;x^xQUI#!LTC%lD(jn6@eU?l5OEs?_#I>Md=vAEZo
z+zWCeSrfGcj$GjyScE>Lo(sT^?jhb66hyLquB8xYs>T6R)_dXR<ATh>p+M%7A~@Sa
zNVf@#K(wMJ^XqlQ>-!zp#v$$%8!<Q7S9gZ6<pXw%y+ZHpq_R9JvyTo{#6}(jVvFQi
zo6UoEbp=-myZRzwzOWfhQMA%Lr!|t1S`6mEBz?ojL~<mf?hgnU@jlFZ*SUo-$j44b
z+eFd}iG-WycVTy5zS3)~(#t&14ZBYRy%5gGcq@<ex*(kaHQnHc^qK~G6@p%81|$Au
zQbLbMd6|%hNiSE`os2QfomxV|yN%K}SNEL^nz?>5L%dgLNiu#BX(pYCg?MQh!K{s$
z8sb&CUt#6`ez-+l)JXh%E-N$7wyV&@LcDCJg|F_@SJBI2QWCL`j*v$?z!j!O9=#d;
zo^Gn+d$a}gosMVG6@1_slSsxVzXye=M$PGq)KGFCxWSkrp17F7KHrJBL<{+q+f$2+
z=n+X(4VXmDz^eKsR^_{C3f@HgvvG-jM{Z88YJ;%&21JCSZSbtji2DHQbc7Y?rNsOb
znIG$y2K3f#tpzgZ*4Km(NUpKEb_pKRDQV?PG}0v3P%ff2XPh!bpu^}mW7cS}i`otw
zfdLPy{Rhj??l~DJ4&O&uxA6|n&u~cIBIeI}<=ELr4RoY5$g0Xc5r;--_zzsM$n5mG
zA0=Vz79ZS>x*z-g=7XL%cb7wCXY4JU0LXtI@n76C?7WzuH;NCJj}$?1?johAwycb<
zgN$D@Y3`*@fS13O^TaoSfo702$DG$gx2(@)PYP%qF+|V$B{H?BD2X9jBT<+(Mn=JG
zw-{^XmBXxSl#72p-fGli=XR0Mi-ATWX0%G^iT8ODdbiXD>7-Gjg!+F;lv{)J72k?R
z<-R*|dQqmnhDAaas(dWY&&eXAEmEE``sFcF3r*8?lu05D6+k{?A*oh<202}+r75TR
zG*EF&0-5;d5S33Yzd|s8{V(7JaAjx>#$mOn3Erxhu|r>0iG1F(SZtH+n*sVtkHCwG
zGQtSv%T@A~th})my=NbFs$>rOEhKXto<&#TfrYRY)i#@|WKa+fjY3c?S2YTfozX8G
zPEL9+&^Vv|Kb&9!1-qWVsk$2JTxH-OAeoL5*k}(Nq@mpBS8L*JA_t9T0@fZlDEchm
z!|4OJ5Wf-TfnePH@9X0@XI}sp@r^iIIp=xhoG-ss&cPgHrKgl5)9|~nLKXb>qeysF
z@YnMrvXA4d8)v!m?)Wy;-oK1b$esDx#^T@XhCA<(>eXHP4iF}B=Nx@4+_{3UAz1({
znLAI_V&u*n61dax=j}t}(Rhs1LS#zheu|%;%$ZZ9u<HxBoO#LiE}RL&?;br;X&PTr
z4t=^ShhDC)^gzHw4n5hvk~PoD>SOGqoywtC{|`7c2hXAs8-;P%pEoz^+hf1M+kSj-
z0v>QL-IVBjFoDhAIE;yWq6MQ<gmpD7Q(1TH_z`4XD8b`EBUcHMb>9@$h5GoZ%5RHI
zRN3)zfvf!9mQ_BxSANkSVR*>8bw6s}VLsr+y!!z;gc0JkKnSnmg_tSdS`qt6aH@z^
zU{FKqCyLlC<o)bX#LlpADz51)TU@UsMPLF-shL^?T5d6{Io$NJ;+BA<5j7}yb~-)J
z%kcy2QDL}-$$Sfy1-=t1L33o%(gj&{PRMcD60l?Vl*48m-|(-Q{KlZ_`&(rc<%@2V
zX^<t~c468g%%!0|=p{QJ5V;YPx+j*0!rr#<GV+$d$nl}@+ntEk@FNHvJ_6X$spvGe
z8=QeA%#U}1_ujIuf&?{U{(@7KZ8V;-UmD=7+p0Z!%(|cU3T(A1whCbPUwdi@x?+Q;
zc#IpyM87{vBbqQsGA_1558@4z%YlZI=p1k`Fch|4PoSb6rao@LHJT0OTwLFlUflW8
zR7~?aQ*b{ua$(xk$cPeW^!0~kA;tLfs&|P*oNR*tIde%vJXD~P=Q2Rss0YequUb@C
z9GQqr(`<Kt<-oGgJ~OaEVb!U`70@IT&DL4aIZR};;X4-~PH~pI+08f`0c|;>zd8g-
z``FGTj8KSnFd7n{k|8{M`~p#<K?B!4Cbc{+1GkvxfeV?rVxW|#xe=V2z_Q}>z_LYR
zXJ;^xS7Q<c)Hw@@v0T)V|Mh&~-X=nd-LeT~1v1Rww9QRRD~kBG9l<j^TB|b|RYHga
zPZ3)Pg|W7Mn<g`JffTf=x%LIB!}g9XV9y;(NK-}-T=&VkOt6VnWN&N{U^3z<oJ)A%
zHxV#E=)xVn6ukkSecXkD0LxSc7>EGtz}4~1JQz}puVk53<6Q6qyHQY#Wu5#{S&V}Z
zi+S*&#j!WIz)N^bmQG9xAr|U)_6s;mpdSfkK}lqM0o^>1ZgQTk`-pP8&8cL)Nh}rd
zom)U}Thctw;?Hp0u#F)$fCi-50gaO}?^rtqJ8hP0rvXSgOkf)Jt36ze=-ULv8w5#$
zjc}7BYo3Ebu5WjTEhw;uG2M)hmh+h$<26c424Vb8p_Wo_bW+gzJ?l|00QY?hKfn~o
zHeC4!67Jids?klSSz)7oR)XtRQLr_z=%&iBYIDu=Y7_5Iu!${vb%wr*o+JFJ6f}i+
zC|itkO(3C(#oshTu>=l~k>_?k>daOGyq%8_x@zXtg~st6ING`=KUBJ?T{9_-+tfyU
zha9GueT$zs{y+THb5CN3?SV3ThuF;{q~w2r*cbc$H;B!AZkLGt&$IGM5$pKYzX}H-
zif7RvG41&L$5^C%e03M33_>^PvwfjRDZ#fkohycv&vIf&`2)*=!&-Rl!fh+HB#}}P
z&u#qODqliKxJOy9)ssf0#_=F|Zwm_WkK`4KJH9)x#PO%|;AcpcWB@GOl?ONKtLQ|<
z%z3W>RWCBLvY#-e?^k0yNnXgGdywR(kFt_{>s2mhW0L&Lp?e|8x1-SBG2EqE^1ooX
zseS$%EdGAkE*WltzDktj>+sM@G9u@W@2+!(0Dqi@aeN(r)Zgi5gB;*(o^w$6W!Hy5
z@-6h^5%>!K1A(wL3?S#XS3`G7m>t9MQQvXD^3|dI)$_*SB%Y(Ox@h*vSSZ))s3Pa&
zzZBN~u-|n(>(>M)Iw8I3RaoB|EXrF`wGPwDxnNq<U60f3c?TO4cNcqSp4##mk5cFY
z569;RQ`wKjvYV8^LT>5c?i~<<TiO<=KR|2&Ofz-?Nb9WKF*4A|xbdis&yVB<`^$Fp
z4|Tr8nBsdy2rJSjc@%Hhg+YM&e(3^E@Hjv9MO2m2vC-|ywH<}E+b^j4C+^pyP~Yo-
z((_ZpKXxp^^CPSGuiZHkyEE#e-*OH;)*%!aS$!M}99p~c$f^Uez2&(1*bn}@s=lM%
z!DcL1fbA2%*xenfs2-SDKq}mdgR?jp62oa62&83tl=+V4wD*bKF7c&L(OaNA#Nbi^
zgG&W5mul2TQvD^t7PrgCxlDu5o$3xGLICeC1?nG`rxxW6x3Vs$6a;3XYyR8wPgvb6
zb)-8trGAt*G&diG)yD+vGGhVXheawGk0=1QgmC7@=&Sy*4;cBF_!M0@2Jm4x=P|96
zHSlBbEqoZx6iV~(EIJzKCJ_)h@YS6D9=mT|ycN9v1MuNZ2*&(piMNf1rwV)k6z<~$
ze3Y~Dnot-+`wf>72cR)My+?%QIHE-&gRCPfE~O`}!wzwrb0v^=CJQ>ghu&dN;FU>w
z3|nEILJEGE@JX(>4UrA8M?qo&l#tN~5=lDXgV<N{R9rE%d^Gm2LhIM&5Fu&&2tJ-n
z>&dJjz7gyKH@clgpz(L45sCm)zCpRxHia&u29;S`FGU`w-Q2>%;8++P1K>a=95&`>
zYdds)U%N66C1s+=z2fkKSu)KO-=Kv!DcNvztWZOCEugWMsEL4q^yMHuHqU}h;!FN<
z`cvM*ixZb)7o}_fv}-BH*XKj(K#=hK3fES^H5rP^BfiLRnhI<v<oHUyqy_Gi(75CK
zv~w7qy0x!JhQaY=;4|~hpRg0&%jUd)2%nwN1U`EJu4-~TH`9j>CC77VqNQg9@rp|=
zN=0}{IZ45o%1A2E86v4G0PG#Z^*9=H>!oqj!|Qd}oiVK`tqFqYOzy#Nu#Dk{9)Vk4
zMn1~(U^tBM-wNDvi&QAdN#tTDgrWmLWeN6()6C%ZJo-1*<&WodFhiv>gUc4_WDszQ
zh^H$D;5^DF1Dyw;b%1^E=6E?EHbf5a!_-Z2<v>J0xSu;h-Sh@ORX&U%!2eYWO)Eim
zj}I2!<Zzz3I?_>m6f}JY>Ph8!1O`G0U@9np;CL(zz=<tav3{oP+&rDXP^yBP8@0WZ
zMlH86%@!`@-7UunFoGqrx|4Oez=351iExN4iU1RaM!&)!iUELdUY7GW^;X0RfSS4^
ztUNBiB#xp5ER3chkIM-Nx>WAUV@0w&o^W}bJjzG}owUWR^oU44bDbxW)mNkGf4ye~
zWUMr8rxJ&VfLwln2*`0LHeLL75fF|+_=l%!|E&Vj!dna_#CwI1#-hqt<b^NI`X?YG
z(8>amPAypJmrs*EImLzP57Xm>b{HCo_%>yEFtzOTgf<SQ(R%^Y418(EC``~d-q+AK
z+7&l}JiaTCzB2UrjW;YCtKy}oycCLKU${{y7+uG}Swh{e`)>0G68gN?1)Yr3rF}*x
zsJ1CW!tXK0X9`1Zu?G=tBlx<EV1=SPndsyAw*A9WebU8o7*@4dHO#~C=&jvh`1Kuo
zrut6ox@z8jj8r!h-W1I^MlUaKlDm<5cc@;1_0XEHAmZm)=Xig`!61}DKgn19D<e>K
zTbo6E9@CWqj$SQGk^4EEX}8zSxXMrmpYYEXGpxb!`9@gT8*`B>dr<jHP>!i+OvFHW
zItAP46l^mAunm*-a7^D&yyRvQ<9kyfBQ^Dh3oSMS%Y09MJ1k{Jc+x)9q3vu+0uB4_
zPviy~zoq`;_)OmP2`tkLDtrJtZkOMKDLBW9{{;Lz`#a*>I8-aClS;5`Q-ED+vt2w$
zA6=r5vL8l@jNUGT60gL&w#2B`kfRAm9mor@kyK|g6uVfQ@u?g>2Aq4ua1?2jPGub{
zEE=+FSvmK}rihp!Wy~CkC4ps{4^PruB2j@sRtoEYOabXT)hA*>^1I4&F~pUjtG9Yk
zTzX3`<2mXH(5<oVK|*@ViC`!q_)XF0kZq}$PK=ENQ46w<YIY?A?5_Kv0dtKSz(gQj
zK0cRz=2FdmLmVyF%)&xr>atP_R*3z9h;ac04a^Z@CETbodI{t-z`|lM1wb>2DrY?W
zSV*tA2eLq5KNLG-9SsR-xhk76E%7|r6rdA$VeK$^eK|wu>scT0AUqD_Y~ekSug_P9
z+6=bQ-7+rp2RL8Y6z^QIBinYli|%N?KNv;F0jx!>blb4dHpSFt>;z4LMcN>9)ET5F
zaY|DMm_YemPqk7UnOm3yil$1mhc<i=YK#6n^jvI1-wg^u=;GGUWouK`{m=2C)b<dT
z+zcJt(etSXc!MU(N5Pz^oX!XX2scsg6tIQ(vx@mp*j>mC<k7tr48rRhjYU&~(7(n3
zRMf!W7W6YtGc=ojyvvxr)i8CdsBjQ^qsIgmszKJr&O?rZL-kVCJp7)23$h6C`>1$D
zL#&9F0b#b`^Jdf3ZJorcaAigTtAP}yn<r++(iG4=|08@8@!f?>2hIVO;RnFzSSTKW
z{rnn2B%fa$_c^m1J~<3;uzm&?Jw?o`LARO%{#u1j?TCs;Z=kjXcJCH$stj6ZgUpAP
zfJxVufju`x-vb6QP4PEeIJu>)xGix*;QR2h*@WREcR?xC9C6P-ink(6lS7-$ncaNR
zYzn)13ROOIleKEsoEvA=_Cv)H-+dWk)h3`=U)ghAd>OA{$M>JF)v9UxNJ18Zz4=Zz
z5IerrTVURHJ`D5rEGm5IKs6yQLn;S43#>whkeI*Bz(Mh|Vc=M%6;+!T@O88oo|uE?
z;@7~0TveLE=^<~uMp5>1HGY$*@$0tIvT<{~R$gKJ<O-rt%VSH<5O+iDgQCw7uiFA`
zw^P}HFDh^hIAm45W-JN(4rx=-FtmCRWMk$;rw}7}j(KfWJh>?RJ|qU;={JS>n*;Ty
z(+oteNee~tCprU|Jl3$7b%fhTZT$XgoPd}ARiJ*MJSobaDI5MoiuOgj!n8y7rL>9m
zjhvN7&MIK-s<6};C<oCPU|MMlK<8v4SkLvT$z|K{SQ0@vxwBnv;Nll?1|tQ%o>7F-
zd1g6+UF=eb!e2(=FBRvT2f)iRB*aXS79UFI=0y_xhsY||Lu9384l@?n<*n3ofK`B}
zLZ{Y;I*@@6eEq;OP1Bu$CpqTakG1VQww)_FORWoLR7yFo6O#E7%%)ZC&rYz}sW_xz
zDz^OUS6u%Cl4v9`A2N|fZ~<95t|hoK1(|L_P_9euV(xow&gmju_W;$^${y6MBD<_a
zF9)NSjYDM^9#UiF*PBYQTq(S9e5Ykuhv@LL;-turIwHQZebn>#4J&s1Pa&(rCKr+f
zlEaX749aLyVf9(WmZI?jAWO~@y)Gv*dJu|~IFo{n-!U6-sYU2@!BBVyhE;>V8kQ2h
zT+}i)rCEd3g%lbh-84N2mnQsuQZ^u4FjvZ}_qo~fo#@5BOgK49p0#Pn6nGS$1>Dy{
zU?a4`adSqlA45%yvddWp`BB4&4W#a6mATjeFtvOs4&8}^6eAKb0TtylU7D>Z!P4xE
z;V9&$b$rZE!BL79?q+BmIOU}aaw1t@r3(gwoa}0m;%<~+QV?A`db6szm>L%2Vcj-S
z{{_cxm89q#&*&lDt@>DyY|}QVIW#Zz=5OE(qo$&-9zP1cY}T*wKKdC)3HEu%r<x7w
zdLnc^ma*w2fNXVPZfeILKoO5Z|7w9UJCmHm1PqWv%(PJG6}*y6j+df+gzwa6Fi-Q7
zS7>r@0$8N5pd`O_o}b#H24{ms!+^!wWf23I3$j1|0&wzG1l+Z8OS@(LQ5&P3RJ4=V
z$<X7VSLE{8wP^M(Jhx+xIDOlYT}l9Dys=nSZmx*hV|HDVd-dH?q1itih@}xG8IeKv
z;rz7YbPN_G4S;5NtU6&%N4}#^sD5>Ns1u2<D>P*~e`mnijt@&By-Ok|rQy)4K*Jlj
zr@FqI6@#$QHP-uHFHe@r7-u4mtt+hCQM~`)se#5jScQ{yG93M>`6~mB)wrJ;el^gL
z*8_*x*X?-!iiKC=WCYxlIR49|R9m327w!X%%(dj+dM&IR^9QT#NSA#}=QEBr`NOQw
zXWumaq5%<<)*${xH*@G8l(Vlv!V8T{-B`aPJ#ZU0A$w73L5G&GHn?W&52URM7SjKF
za0iIH8L#+fX}*O&LFa9_vPJ#UdKu8{Wz>r-L^WS79+$mAsEiv?5o-vcEL<;-)zB10
ze7E^2W4&rioB=C2(|(@ox?ma}@#ncK5!+vCjgL28di-~GL<OBirRow7s63!I_i4#`
z)5p+MJ16U*`bf9vU~)G4yqq6Eu{6uoMm8Pa#2Ly#Tvv}aUH=J~Hn++NeC~+Het~LP
zQ?!O0>SXnn&(&^97lBM*6rWpr$#B4MA(xC}Bwo$|iy#Nw6#YWr+Z3ISYa!FVQlekd
zm2>=)(V6IJ_+1z&45G>+>W@`q3K+$%O!53LU4}<lvADtxuyr)tk*uEL!jAstX1dCo
z1Gix_9aQD2Ek-m1bl6ps0_RBWcK!ANft$0yp5U&c@Vd4rYSJ|`O;ZM7Sn3blydCv~
zH?)14-gGJs65Kv8aP#|og0g8%QwHKmAaFBM{Zg7v4Uoa;9`G+tsgS|crrLEj;3-iy
z;HgsA@DiRRo?3%y2#z3Ln5oxFY;1T`e`as2Ri0vV2|T67+~cXU9@r&Mt?MZ~RgX&&
zPyK}o8a&lX0KikVa^-3n$M?;}E<;haz)*xhIKt$MUu=tmDm4VY72kH$ft8+@5BI=I
zn~o)scfm^Ag_TxD55W~m$8M=q3t%A{D|$dBg<p+cC%693aEqsp;1b;iEzE9|3ZxBo
z$D2iVF|<{-b*rd@SDJ=ZqQ2+p<yyU5t(VP}(CJ63PLJtxncq2_btjy;YKGo|W<k|l
zDz5?Ak&Ns6QYqAccZ+ivqy1RW8bYiX?qMTt%r7U!hQ9Cx?QlFd6rKQQVoEULJ65W=
zAqOgDYAAea4hVAbgK>HkP^6eI=XP{PeEnGzY@Hi&u7`Joy71A!P#6bvA~+btbVv>c
zoa@aU_h6i{mA}ILg=G1;kSE8tQM@k<9$is1Z((oZi0|n%tyimK|FE(-6y<gmbUOiP
zyBUX?r0dZUe9Xk6c5@gXVnaZBg~quWs9X+0x*@qFd`2OYUFS0pPdl7TvMDOi)=h#y
z`2E0e7?3*d9D_OO1D;RimcZ=C<EW334w>_~o|SuVq0A6Ep?QS@y7Lw0;6YcKb6(cy
zNj?gj`zC6P32Kja0OVw$0-_b_kP7ellz}_mK!4Ch7$q}x3_oyVE?gs58bl&y4&7Az
zn5)}k0ClWMDxt#<6$SiZ-c^&(H;;^~#Hqn4xF9FJ>|c@FK-&VK9#wO4EgZu7jD7pS
zUBvr~?fY^(Mw7082Nc<nfOav{@1CiQDo_vkjgCQYe9q0iu?`UuELe`r4q+QhY%+Lr
zEfE!YMsW{%6VxCfhdQQ~6$h90<*;14bdHTmaR*~Z#6%Ve*~EUwLuQ9Ys4mT1wLcpX
zGb760s{k0|C<`r_IUQeu&9i&U$onXk28eDLt`NUPyMp!`P_Wrt@hZpK@ga9mp-etA
z3x5sHe+~P;bS*O;eN#7{R05tLK1JD?(GRJN@T=UMf{&wj;kMcIN&ddsd;@ndq1k5h
zLGmLre<rHffpxd8G{le3p<k|@2HgTcW>PZw4;s!vb{aT_Y!7(Imucp%h2ApFssJYS
znH0g|^{axCBLSScx28YZ?6}8kFhTyVJsRzy&Y9>f+LJB^z4oXOKtk+~cr$lV;QM+W
z!T#(OsBu{re^>Nl9ckX>j4%unTaj$(NV>&rjOQRp*d{r>lj#7*#`p=la946HNQOY`
zdK&Sqm;smIW#ZXk2nKe%jK0%5n+Yt{<8U?e#EYWU_XUK}iy)-&_yzj5s573U&Ug!9
z4L_!Sv16|gq9yVi2nUy`yG1?0&0h(IER9`Gml{RoHALyQyZJ!-7pQNOw>q}*GD;S`
z<R+j@#OvxbL{}P*$1h%A>`6$dB7k!ADSf2*JFJ*+AfMF`l*I&#Tb)5ND!r@-2(H4*
z$xGZQz*I8M=>8Q%CUp&v$staP`Rfezu2738S8=x8Jz1<1#ie`B=%b&dy*b7v9I$N+
zGZ?Ng`(cAW1r1^Xc3}`5wj4lmXrBLdV8L6^r6q_16=R#Vg>$KeB|Q~t8~!PhP@OSI
zPtBOtgANY5e;kY3fnrH`2>PMDEs2~34Jo^x6=xy`2cw-fjCR&g6=8h$egN4T{Bn3n
z<TC7-jNm%JJlUB$GPSs_lgU2wU!#^Sqwm$s9sqM8dI+MWY`~wX!`Q<X0?+(ms5ux-
z^T;LI#RAY&ynpFoE_)aX<$pOJeYF$$*cumD>5~@8x+#_6h+ch=B0d2u-A8c39g-@%
zz5z?+E}Wt8R~XzD!^?M-nV^r#Dmp~$i-s-4cyGF$Hue3EN9pO-N>?~p?qoR2NG0fF
zkY2k;J^+58GQ`Nxaj!U%y@4$v)ua=i<6gi4x>N|*N~1@z;ry@XLdR>?UkR@5(w^PY
z3-O@4d0)4x1(%h@#1Hlg&gCA#CxuH=fQai;j!Bv9jNz6^eNPGxL6UTP$CI)V`g-G+
zj%@Bg4p7#HX9&9;zLBPYnLa*f5j0DWPznHM8~4f!b+$>YD*>k+H`^TtC<W$;X5y*c
zMR@cniT}`mI$0ORH^)Y_Ik9VIV%O%#z-$~Sa+y1N42LxFBt_q%Q`v~)d$2<tG?RZ~
zT#QHMk=el)bso(`k>ja1RAl=wYSRk1IiMhxDWd$n-u<0~ZTC~NdLdMB8;iE0DF5s@
zL}=CJD;01AFs`S^zjt4mi=Gu-`pPBHrO$W)js*J=xcTpB8v4GJHY7wFf`5G5zt_|f
zOcnV09|amitC95}h#<0g>pk6+2WRex{(#vjNNZS&)15*7a;unFQ~jz^L^k9*nD+xi
zsu58YY3I(@IT<OxrkbPKhMJSe0_#vd0yNbZt4Yb>>s+WB_}>>PbLA<0Q5wzCse~ob
zX3gKHquT*7A)f8zk68bmhHN<;L*hGkQ-jxSO$P;OQe<=nlcK}F293=yL!|Lc76b=y
z6cP%nkzpuD94d3;^?XZ53w_L_YK5n^_Qs<r_UJxJB@S;a)yw$`RF~%JRuKvy?q1vM
z&Yo3&i4E^08_n(;0hOr()?=VRmf9#-6^Z3WgR1}lZWLN76x=Ad^lv3XeYvdkB$WU&
zv<tmtDmuEDjo4WUK)Vd@dTpEwz_@cUnFskFPpROLK52M_572M()S*fwv?*-jMZTI)
zq~icL*o}1}Ib4!aS?rvhinA85wgEemQ&CiuAavzS6STQnlXGqWr$t(ku)DjirZ=B&
z;dAFiSSUN$ji@m=dmA}>oB4*y%kHovCGmyGH%hn4mv$qM*e7l7C*T%U1>oeo=g<lO
z#5h~63lI*&%GgmYswv5Dn?IU}Zov)aU1?x?L$40sc{G3<)0=t~I={ChB62{tJOW<b
zN=FrJqE^68MmrfZ|3u`ffspz@Gc^!Yd{)^`5>(T*2UPBX2Lw%A4|kqL>x^D5#;GBR
z9~aq8*<4aL*kQNLQvs$bNQf>>YJCszweUA=VJ&;@@;OKkf-SIPd0Q!1r`yVKkQL5e
z<6eN+MQ<%eHXEb8pqowFg}~1Qb-Ux_x5%9j`yH9IZWr@m?kqS(H5OJ&Gp|>(J2YA%
zs!$)5vY!i5gyE_jOk$Ezi=6@x7Sd7N*{U;P!lSS7t4azGB%zAx$NCdk>*FxYL>VX}
zOR|!X%@GX`fQtx4XU=#xp>eQ(kS}V;N3h+T4GRNc0F`ET;5dyqK&324f5mJCwt(iG
ze^!^Y@FyZ!YNFi1nmbkNx`?7hY$5ax%~}4&O@+(W<q|Sw{hoUg3vZpe{b&hqjUuL4
zCLz2<DB>h<&TT4r(T9c0Eq9}PFg&M0Wjns2X-V-aX;$n_xR~~sWzqK#L8(RU(X&~V
zlht27)OeN34iz9jWYtzc4#}o2+C{udwuNy0FEmlk#wwya#P=8jDu~2ElbUhop-FUC
z+lfV-!2=DNTm$r#^JW|S4`FHLwQf~AE-OvJ`QYQ@QEi+>it)3Izt*yR{Z??+Ows}W
zm^oGPjfyGOX+rUVOn-!c$sVF+A!}eUPYA(2o_7jlgVo)@vskBCH9;aQ$6UbHQ5UR0
z{6?c?^qZwyEi3?WUM$zx?nTSxeyMgBMp%y;HYcBl4i8N*!m<83aDGTavA_HFC!V&p
zisU?&u>T+tzKzdme;X$BlV4C2`S|6Y4XhjNP<<-fTib*$w@8f?e&}}j4fZg<{#$G?
z*wB%NDji>sp>%an((&DRtGXO9kHqx)44`5?k1b>#dW(@OUxwUUdOQBl_hTIcvdusF
z+VMTHAkH+R^%V2(3U5b4Wf>UFQoP`{b)~5(n3i+=HIMQu)bix<<b0AGELA}0K|o<G
zA+x5dh(@7QX!kh6TeD4hBFOJrP&w(D$zzmt_g{Jd6k8&Tc9`U}>+4R$*qXCHd^A3=
ztZ4daGr$@r0jdMPf%#&)H1pDzEpKb|P9Q@munqQBAehQ*7;?xB#SrjqmYZ|w94)oI
z5R>Ja>bco@n7Kz|n6`&Xf`gbx_#9v5vY~(pt(q6l=DtK~lS-U&SU9(T3)K6uqfj=t
z1s}7e&2n8Kb9U@>Gb;t4O>$i%zEKIvQ{ixM$KDjz|GP(E!8c$}Y|)Riq&f;qFkmE3
zraG5mVWXBR48J@zyb|YyyI>TD-zpAo3vp5DCgLK<9$S#4O6N7Wk1l%M)vfFr1b2n_
zavU#X5$qzF<u7WQnT`1Iz3LcZv1AG>gwC(Um48;}H{q5#|89F-%wp)OK@nwXm}Nc#
zUDC{DRb)Y}gbWhm8@NDVKU|mEZI?Z-X$f-KU9YJ|Dqf)Hi7^~LTfWJ7<k=yp99{|=
z5anxD?yI~DYJ>L>M#;`$sN_q61k^}RFgr4aH(Ko?sg^OCsjiZz;(<}LsDUI@l5**2
zG<t=o|Cm?C9&I5sWE56v<c3-gTko8qLyWjcO8x0H33l2wg3&(r6PBDrnhBg8iX6xV
zb^xH+B+(1Sb7GBD6Eq9vyz62|X*G`G`{a*gpPEQ<kl*MYx12j4#d7U{5Q#deOw=*#
z4!AHL6_`I<jv|<emzVlMRL=ZFXDir0)KV^2>%S$^;1@WXp87**0B>~&5;Y}{M=YTX
z2UcX)k|Oy#0=LliP(U(SAs^fTT|gJ$7CG|^k(hFZ6Y}_a#NR^BfH1;BJ&UoA!uRio
z+B(ODhW}8K+7@F024xTj^<P#@(@xh%#vBZZ0(ZIQ_9EpF<ejuuk7rke6Cp3;M9T*f
zJ*t910jbz>ad>@k7)RMAk>)&ljd)1bz&r-V)@Y)fyZ|R`sV43?zV}1wWDwEPOVUu4
zmCU99IYF~y|1ab``y7T`@`ygzKf1Bt4uBy5X^qiMR1giH>24&Pt6xavqERkgH$~)@
zVC8!WR=!)UF*Q5`(X)dGe?kB0<3M96yw|DWkreYS{My?DPmLLMK`wg5#kf>aR1`UK
zZ&ex0F;yAOauCmpBGa==ix3Jsji-wo&47X9U;P>kOa7OE#<hZ<&8$q6KPne`g05`D
zZM^z0BGbr|DM($J@%hnE#23q!Q|Iw1h@`@HD#C6y+UMFD3t%X0w>XgCoauQQDP+|(
zhn6W)59}GQT%gjRyNxW+><Y9%eM{cJ4tua3a`R60sqE->fee$H^!(8WU83P`_1d7j
zMWQkGkt&X>L9DKnO^4u_EoT+(_M=d#tdf7W7;C0Vm92?@E&a^JQiJR}Ne3^X8nmcb
zp}zt3D^SvIohXO2P;-EtGRaB7=z*dwT!&nHZ5MIkAhl2I_Ghfm+%=D3vCT}Iv51e}
zOqCGc%)=W}qDPVsc{E}xPPp{rra1iXlJNJ%VT4+ZISXHx$jM&OyXezKe21pOP0>a3
z+58FNj5`}ikOq#2WLUq-$(Z;(w_(R@&ak5?v~#IqUGy?IHgPM1W0>&*IAonX>AEbP
zS1j;siXaN<f?Hh>uekEgIU)sU+(=CRdFXe1y<gR|OrZk#i*!%Mer&H7C4(tPN+lN~
z-%nTx5%#l$L&|Lp_#{Rum(|f{^P4aEHaUbd|L5dEWmUvuuqP+tx`<9=7q73PbFsZP
zxllR)oRN3PbuL$GLou#YjO>vsP5L7e!RvbpfacjiN%5<q?8WLlmk&gHbz4P3!jIWJ
z1bYQOw<$V-df$&nW&*Na+2-_7ah~OJ6bP*;paMuiiuG5%!{k>ul!vDUqy|a4g;%O^
zY6kgDbZtFCqk7<M8|A^?DzIlCN{QG=K~z^H>+$JKU><#+Tzm`Vvcg7Iu(mdQL3$+X
zhbVXnNpE*b6@AP-egeP&oiJrYgCPPmCfhOTo)huCjBi5D4VlmuXJWz~BIXWmrc_}6
zZ+%+{e*=om4QWikC`%I)o6WaRYKHH6wpq7|sFd9Yse(-A97JnhXQXBzfBnw%!6iCf
zya65HdlS>Xzdz<~4)YSIN0GQm&Y6t`0)Rqu^H(}g4LC(9ASOV|5|o(ROpb*ju?bDl
z7_nmR9MP%p86&lTFXCTg*!$;c1~{!eoE3!YdCT6)l|-)`p)+yPDjGzTt|ORG;-s!6
znEihc2VIRDZ|om<CUwm5Rj-aYsH$C90R}V8guytT#DGY2_v?40&V88Xx136(nUJ7t
zStzm}ao#SFA$Pd`$KHVjFZ6}1H`HP0x$6CRH1_OEE}SJN{`SI&zZX|vo|_TM`XBoQ
z8oviKvdGnyRhI=CnS6lbcv<Y~s{)O0^Y)n=dKc7o&JHxbin~xJj*#CRYTG_8RKF#i
zYX+RjkW>lva5kzHvr(|q2-$om>Qv&I8k0v70NC+d#v5{J6>AA{{m$M2=Ll3hs<WU0
z2i7j9#;V_$7Qmpud-$!E>>F?%!Y?UVJ(izV9}+pBZs)A4t1he_7Fc#Zz}{JPi5`7I
zW?nrZlp3uN-J~R5J)t;NlPK$V_6^)rN+LKDu!g-Y)~UXsRE#(1jZzrr|H2hUjFsp4
z2p%ZoGR%Ym(z;ciF?a<+Rp_3H;bS=Joq0k0s24;@F*joJIq(d!2fBVqeg$$AGtqqs
zH!*S35_||Sw<my^mH_5vq{*s4$ANiSt1R+}L7UgLO?xn`KzseU@zACb+Vz+=-YaNN
zBehA)oBArW*hVrAsl5}RJ<Nl)v31_TSR@q#F}E8KAEAjww%LtuE)M{xj`bnM?wzN`
z!wZha{@QyB??S2b$9~u=gj|iYgI~Pr!YePCeaWnAxubMrJDvuXO-P$D_L5nF#^+cD
z0vNbW0;8b0=t?e9uiw!#;Pew;xe$^%EmL`iQv5VFvr(czY019x?3_rh9F>aQL!h~I
zbmjQ|UaY-|t+h4d*Rle)vDoRVI0Kjt1A_cCs`;<Y9}g+SKm<p_%PGKf2d5z_J~-k}
z{TO;5+v_5bI5^h9D33=4c}l{qW?>Z#dONq*oy$>jgK84TcjEupIEy;;P;3+kK#UQG
z8Ii6N5jj-0Ael^XxJKv9^hie2M`(Cs^+8<w4M;J@v=w7yuba>kfwFOl82}JEkk;v;
z2BJ}l*6i4qlmDrv4@?(v2~#NEt0E<;fky935Fin$^Fv*b`Wcc76OoFqpqZT6Nk~0D
z<V>+h{iqkvGn7aj8u35&p&+#{kUG?EHY}(tnk}e|ULaO15u4lZcCksj1eC^O^PPcv
zz~*smv0H2+EFyW}g3S^%Y+jt@VpE<~azi%DLaPg){Vw1GkJmdsf|feR1<tB+00`S?
ziu?*zkVFPe5N?PQRCo!e!b`aS1J_FkH1?wI4o}G()rws%5VVQFmB5kN&Q|QR<_5sA
zN7sfx{ntzffhj8$%R#qKvLTd?QzJ--D2@z3s`lC&&zkB?>zoREQqKgF6A|?2+gXV1
zNU94;BBusRBIjh5AfuxGK~{))p{e1Lo)`-H(*PDG+%uUi+P647pr`B&0!BCYT?0qs
ze3HnWE~TEA0TocuF;V#?E~@c(5eKir=1dI%50(-aWgadNP!ay7U`J;N@!QQW+055s
z0+|95Ml>Cg0}k@Neo{P3iq`5^0nQOwZfv~~P4ElYaXu=i+odYQwn<ALJ(ws3P$>69
z??7WKF^_Q!-$jPj?VNt~l@|sYAHdVVva@LwFM}~pmqHwS!$t&d`vzqbg|2`ztAX2E
z_ySm`6|XNvbj?fHX>8;x(5;4aD?k*e^%e3p1~F$I;(EV;s(`8};;(;S1f`IG;)^tP
zMfB#H!XRLQgIt)yYb4_=lti*-CYT)ac!inKXK@UV`I?!MPx3$>ELH(7YRm_Cf)tUC
zKgWp2&=lDfm>pTvg?QV>lZS<P2$I-TO@$(QI%@{{s;`XntNUT*)mL9peQ{vfWT5MZ
z>dI=+mn)k(5g1uyz3IvF3}+Fn4TUF{N3wqR9-*F78v6b%Y!ERnRQ~}qiCuK#^ctv>
zlH*IGTQQh1hp;mra#-UDU-V*{4L}gRo?K(;7nL3F!e2%YCifslBPe4mO?_?uiZVL<
z8IQ}wcONf2n+w}lMf~Xi3B|4wy*r7{Z`A<|Z)^jao6SWJb#=*&W7z_*Ll8pUj0HFf
zi1_~eE~;)NeJ~b4;>}`u@1<8k+k9z?dAZGu$0hm?468U)YaxYgPy`DlzdKW){$4Jl
zx68$|7=ZpdSdCNI1R|Qy_4qVkWTRgY9#Dz19zRT(5QM6M0y+TSBo9-xX%16T^sP5c
zSt2!0fIzy#l#_nf6(<x6mNeH~iGIm2<x>9o9TmuV_$6`6X0uN>-<rqok|E|JdbwXO
zIeHncm!W#8pMaWf#Naq?@+u*pLgugJRLi9ETr--Ah|L~uh#|r;Bm-|89m#3U5D6$(
z%zA3>T+L;wVQ4-Pg(nt(Qb;hxe0{+AkWV^WsjhDsOokYNaNjzYv4^*_bSb@k3|Vdz
zm!E2!Um;_qM`!I1Bdaf^VhC|ef>bL1@7GW<U|e>>fnIc@h{?JPZCw72u+j($HNHU7
z&s@X-F$q#hb-*7r@&nUeP*ylERtlPr;M{>4p57MGr(=SpTLoQ2|JxHhtBM%3Rr#2T
zMGG2{LUYV+u`Qs{UA!_^+$j|OyI%fU2&$DqHeISs54r0}g<cY}sNY(^`9@%Z|FD}#
z)OP$|{#>zQeZH(8#}RCL1883MSCLqmgi4s~8yVX9I-|BYg)-21I&d<IOUD~iy<d-`
zGkjKkp8T6Wsud}rP*ZHRepLY$-1z26n;6dsvg=#>*~Wd}CODiJE4pY2(!QZ_u$MHB
z96QH%tXEA5Xy$OaD;dtox_)weAG)c=?Ss3c-_`@HF9e=qO-M7*n$8n|Tx{&FrvB8I
z$S+H(30|7kv}3PpT1F-7_{x%Ml6?i(yKjZDT$tcxBqPb|-NmTMEExyp=-BOibYBn;
z^U>Y%$25NefB63*tyA}rKiE2$sOUr@oS`8+%%KBe>D5msL%=M%VTY@-T<lZ!>Rb15
z*<p%xeY7oBo5YI=>~N@8jS?~4Mg0}y<Jkez9m&;r2s;NvH1kgY!rqRPrdMAjqk_BO
z_OBEXOOmfY?FN5?1|;HdzQ|V+{(4DAcZ<KDC}Km0CE^tJkzH_nf0;sLFwRE$rFBI{
z0!{}fRO5t@{YQ)J_(Nlr;#v(nvSggPly^leyuS;OQU^p<!MH4eop(naD`Ml4YVzou
zGa;VN-LQ*CXNs7)YYgaol+an|%XKT3!b$WM<KL}(gsH^Dt}!z6Pe>Wn6SB{%yVHBV
zel8A_(St5gE*GY7i9#HJQeOz$Qt>7Ul}Dlb%<IRa4<~_ZUCpo8J@n_FY+x_?lM&aS
z%Xg{Gf6+IwS2=F4Ue1qaHN-2}tNr%eE0j8CzxX;GZ2E2au53&^-*uz>Jia4V%+tpK
zKR+hOGBLCV{Om2gzeUhucl6G{#<(G2ktBLQo!1R!I<3R7J9>YV|KHGiZ~Jrb9{Mw}
z&o26NZ~~>N4M4+R>_vYD|5yF_wZy)<vsa1ocsdfIEqwxw{qT|cDu3{NmH*Oz`OnW1
z@c_40mFrC>#M8AK4djU~{g-FFYE&hbxGM1-QLe6q@1`10k<nnGrkP1K!Gl%h+HgDp
za%<WP<$7RJO+{`^Cl|)ov^!78`Y)R^TqJ4l3f!9R*z4ZWe?jkF>*dx&F>-MBja3GR
ziWnu?(&g4NbrB;^GxX4Euk)%^0HI?PX&IyAyQ+FC>p}~4muipd+$1ik>;!4X9}5BH
zT7v|Iya#<VPyL57`sbze&*AAJ&SDo*!oE~Uk4+=CIC1&8fro%FtYsHKln0hg%bdZ$
z(;&QHI@bw6-QY$=otd2B21D=$Nc3OdlWzuKN+9DV=`TkubO{n|Ia6P;11XLy&|Y$)
z=mE+%0mK&lnSo`eWuGttyX(tD!EB6+_jhhgoss{;ER6VZR6Mp`$&vMzKrWmRCWm;V
zB?&x&eC8jcyn&Go-j*Ytf$uON3@kf0`-IfD5Y@mLWh?)RVVY!Cj}JzBP{UuybW1Kq
z#;CFqU=exstID{-F8LP0)Lpzakz-KH49`yNfnE}y*bDpl24X8Ny&4A!y*O4vV!4ix
zc5PGNNsVXu`c}`T&N(hw!+^>!+lO6v(^EJ1p;VuJ;_Gxm2>+=smm>6!7o#LM+mjsH
zRMhmsAh#x!oC96S`CROPt8R9uxM-76)9j?0JQ+++P&eJUsh$e_BWg0Q90mHFvA6Ww
zTYH#+xRIq_xBlF>=`J3U?ECoKcq)PLw1=aQ(T7SU895~lYVR{W*^i&>&%MS5>bLGu
ze_-8oQhy}epaLTjZMXM;jzCrb(lgUpGk%2R2iCWrY<uiT<OEjF)JEN0S4b-)yqC*Y
zzJjCTv7kdm-_b{RhXp7Zmsg{gP^@?40udSbC3-Z;AO9yX+SPw8Wgw~He!g?pc>b9;
z04o%W7Z=I5+f%t0)F5sm-jE`NPDAL$IkyLN1hb&AK62p(_8n@iY!uRNT04#@Xc{w^
z>jQY)N&CFa;{4V?{WyGEh|SWmhwN9g-itE1qS(1UwYambn7KHA3+1nwHys<056H*9
z;v=i4A&;(P#F|ijXTiLYp~lXtePjbILcrQlH3NFchQyAOwP;@SnGKtC|Ckkq*L2(_
z_52ZEtnM`!{l_+rprKohD8AiRL*j!MxS>ma`|LUVRfc`NB>=aJiaae&C4w@Hd5t?#
zi5oXpkt%EU>@-Dgw2pF5igdha9=S<^SoiDYZoS;Dms|Dn^+>S6kICjVZhe=;w<^^i
zgq7sh(y*W943{<m8?tOZjBx3D9f;|yE<t(~=Kg9z`P*?qFTM)YABlfCX<0cDR6_b&
zY3kJQE5&smwBqaH?^p5?Xjsadx*z1G@h0Bn@0eGHXd?)R37`^e4GOC?9@5i;3vhA3
z$^7)<y02Njxb35~seNDRsIw_&&3MM}cMGnd@?u<s%H^<H*b+Out>cBgD!EsMc!o*?
zwZmkmC=*LSw+9w-JFjAHaeO3TXP#{>9+WW1It&j;NT`u27*W{kP|Q>dk>Mgt9kHSK
z`?rcQw=i}1hA9q~0VBGaSu$chzYKx}#vHCJpbPm>Ws14#Fj{vx=edNTM-V_TUP9rr
zjsvE!qUV4&_NrS5`BoQb-h<<R<uEh|>>n1(L2;L=EQ-gn2!Ud`IQ&%ya=O-c@C0Wj
zpzWS0=0Ed=QD@Z3<qN$lI|8gZTUj$nKb=iXCa$k{e4*K@I?Z4D$GKub6*|mBIsQY=
zW(fqSe;Z$d$+cULXJQ`S)O&9n|D^jMpJ7aDJ+X@O4K-=Z3VIm`XO%&jdKdc=F3l7*
z77CZagR0ZQkk-l^VC`DPf4D52KcK$3D~3?17&jc%KsE}f)isibV$kwUsmN~rIbQ+(
zl+~%CZ7S$;36^uf%egDDK#C>6Nr+>6?wG!l8F!c!^WbTmKEs}3@I1|(a<e%)hi(RP
zHCVr?m51%pspw&}4euQW%!fT=4-2t3_;0_);(uJfUEu$bGK>GL_!7kb%;PNndwOpi
z|8<zm6#S1|`4jM;s)hf5!T*7$#^FChZj$hyA`j#7fBuL);Qwmne^7oV#~SjFuc^l6
z|1@{{1#>KLGbW``OGJF1v~das2Zr)%$Cr616-gib8dzz+Y?Lp_lwhd>(50$Dlg`Z*
z-W$jN#Y2`Zzea_Wi;z<)r$#?)WdrPtv=rg;Ff&*<sfx`QJ$5e-g~{$@KWHl!#mJ~v
zHogWx?wAFw*Bn9!>GZ%ulIdeJ_+TB#<g(Trs=7R#U+O2F!xo6#FK`k%AcHzFx<pSs
z7g1v-?~ZAhPkPVtet~Jgt>gm(5_6s0v`42<I<S8GVC;H$F`h-=f+(1^hvHY26^bNz
z*r4<%OB!FIZ_o^q4kugrW9#<^n1Krq4$xN;Mqq~v7OCTzTu>`0u#0<WUui0G%zqGP
zA+~b4Ry>dUYZkCYC6ezKM{wB)D`oD0>J&SqO*c1vq~4?GL6Beoyhp2b006xTfC2y{
z-D8mj0EyLvMghPo2Q#+|04)L>G>o>I)Kfqr41l*ZOCvVSkga<NpCn8Rc#<yd_)1$`
zoRC@ylB63zW6{m1wJiZ8HwzPUASNnVE(8D*&$KTv_IKkV3Nq$#qiYGTQ(|LOLcW{V
z=FNja@qL8iN%THJ{ULljlU}X-<1?>Phao|9oG(uQRe+DLx}QA+=B+ni3GW`rVQH^6
z($bziQQFsaLH!+;_ND9q&R77GfqbFBGG<W8+-SzR&%j9ybM8Fjo^?zXfK-`F?^9L)
zQA%JnQrmfzHAO&eUoM~N>2XyA7H6GKHH$I;-N-qVWGCyz5o9=~x45pU+5dxGuvv_L
z;ItV1gtFRWv2jW}Qa{Hmw3JnDr`asP9(PsPanslEjApR65IyWYsY@5n%{l-RFn2<j
z0EsfIYA}z?BpT$E>o;7OiW~h#r~I32iVA`k_7lgyzcggm`vOg9$j!pmkGeKwT^()4
z?P)?`;XQ4_%sB|m^|0%BC-GN{@>c=*D|tTo0f}6=V(j=w9;ixEgG=~uR})2yjQj@#
z{y&P*p7qcmU|qEiCl$ej6ne)uRqRUqT#H~v$lP^~d7pXl)i|NS%2ba3hUxMB8ocX%
zxf5XRbKROC447l~CcvI7V@+<*WKh?dyikXo0J|}%CahD?z~z4u0+-C~P3oFgla0|H
zlT;G~RBL)$@|Ikfkea{Cnrw{r(+3lK2dUJWexDQHyWNF^0#Ie3Ps<I7HF@*iqa~=~
z!j!ffn4SmUn&m-o@PuUl+$nPR6WD@)#IE)e!2aUtc4y>4DXzAJc3jU!acB&8p`Vu4
z_F;c)vYpxY?HS?H9)V}h8r<+sRlmA*wJ4-drtQ<Pv1%X`Uyr(V9OK)kgW{e-Aneoh
zxTgTkKJ5|rv=#?-q9y7SO~9I#L(N$LAc9mdqOT&?KrCfF<@I?SXHt`3r`^&Ld_}EY
z5-BcYYGJ4Zr%`iTrAqidqCQ#_?p`y(mA$bzH<X5dO8a5o#@FC~l~A9;%}HC2&_92q
z^M`r*BQDjY?4bH4R3JK=%4mt)FhLXQtd=)U*28yGJ)$BnxtcrzV8C~@rhrC+V<?_t
ze*aanSHXn=IM28*b!MsL7mN8u-j5@PbfP9a&bU#Ufpu|)700sQhQY03b7)&&!wsmo
z!g>+NerG~(EgI%ZUG#^lK0677>P9YI+KfW{vl?{^enQ=D<D*a{aW?=LT9_qdLjzib
z9sup_EDC7Lm}E+bMBhh_0Y8=W2S$#uwhJt$u!<*!MZ5A{6&(+|q!TW*g*A=2gCK?L
zgjL`2U&0EPKw-ruT5+&exUiCo5G4bgkpcZf^c%o$xcLdNp39`e{|i{lU07w~Uk|V4
zF03v8dsvq+dGLP&tLIkbw_kTDQ!16D?m-?{qDCMgG6q-6NZ^%3M*4}gG|ycvv5Ken
zhZ5v5;0e=FapPs^!**R?R*(iL>b8nz2|uPlI_}liufNrYsXNt^0+(9X#_|7kQOtpC
zm(B>k+Rexy)iQXX*iZ!HM7+puVc_y?py5HP7swuznpPiJ2G-IOD`tfIf!sX;%gTDp
z_<m(dZQ#ySc$Yn9v_<;|maRpuYXFl*F!7UdD6<yng(A2g<lgtt`+eN|RJ|W;?`u<R
zm0A_%wnDvBJvmv$FL9`8ol5ikd#d+xsPBRlZ0TaFba4uF-h|wU?`KbQ{CPu=gW4Bh
z`H-fHqHecB2uKo5aFKpVe-&~>{fZh=%(=U*z5vySBEDr$N%f-TTksW|Db{B4;+nAv
z*72`7Ho2K^-`!m=%Fs-C#8;}#l+u_`^x4cCKIu(qTr<ew)83SKY34TD3{WJ4Vmo|m
zMP)!qC6Z=qBL3)~q&F1|V$GE5CseS>W|ZP`9LxlE9H7oJR&zmR%I8pnEWiPCczq~>
zJ$NItgGe8pS3@R(*3G!)SL97G1_dw(F(aUiDn?+buBL<<1Bfeh5wa>)z-#X3rXX<&
z02{4i1P(#nf|gS#s3OpHt0+1vF;lP~!7SyXGwczO1fjb2fn~FLb4`zPjvdhmCKV#O
ztTD*}^V?O?Vy}SXOoNl|;s9b}=r-hv18>bwUSP3v4Xk`&9!!1#)+}J7$FJs(DR!>G
z*y);rVpyIj;bGXZ>gpv&r%d5t<Om1$n-V@PEiHPy1mF;nSZ`91TZ$#f(HwasBT{!@
zXyXBn@5*CzgfH87=(+{slHNtoH2))x$#MxTxYLp^jI-S{zIc);*40OV-SEa%juN#%
zCw2iS4ukq^7Y3#kkD|vB5}>sOH|C-O1WeZMh8V+jLI>yCqUy!?B$+7NKnzUZ#1W&M
zY`wR{s7p{`yCp_Bh*1V&lupGggCzz6rr~SKxGy7!ks8VR@ChMCs!NR21Y%SnmouIi
zkex2X*m9Ih42*tB5ja;KF?znUJ7SbaGA=^<mKfm4WMZ@zYgD$f3o)n}%p1s@+%qvS
z_&E{w&0Q0pD9Ip3KOsh`m5k6&A;veKt7HVJFJM%J*AO6L@Zb~D9<8>@brz-|#$%1l
z<O-J<#}+#z#;i&uMz7S!=+hr}iSZpJ<6Mszo6V<VVOU3sOt>Kg8HL-Zl;b;V)NaTy
z_pRNLp(c{?&SOG`Lm?B;f^Sn`ngBO8vJ?u~Ceg_XJ!#u&8FMPY>UeEe;$WYPa}lqz
z%rN%mHb!zF@d4f(Xm5J(<_ShT@a9`)Odf}uT{U1P3`U9jkfyR5e`CG+8=X4-5;)**
zh-kv!kSpYm%2X26n-^H;0<4^7eic;;r<1}6yxOp=lX1k)IL>5rmV*-*5ZuX_g7z6{
zujzaZpPsKdO`Brg3}~ztN{8zXz#42b6gfKw(@BAavycdbn*zBxqles-$;~lj&B)o<
z(d3=LZGCv-f<X|i9rQgefe(U!7K0p&n{N|V)nVhiKM9z2K{5%<k3)Kl(tw{qnfy$u
z!#@%?^MCv^HQ{E;YwCq%682yy45NWB)68tsEqYu*7W_a1hqS_Y1l<?tf}m$CxEK(W
zf@dTeE|{`wjU%%wa5OPI?;U{!$68Tnl}=z28(v`=g`9P(NM)S&>ju%|(6rg6%qg1E
zQO>+(SNXxJL5hK<Wl||^DtyisxzTycU1RFG42!AZf9)Pq#h>g7Q`!JI323X8)`<Oh
zWL-0`3$nr%XbeDifh_3L8?e?8$jTLDy&YYK=tQ?j={-X0SEOK}e~Ni_Kzxdn$2)Fd
zQi6z#l(&6|0cCf*vv`QbNZ{4(G4jiQ?Fu7Q?kZd09e7sB=(xz=1s!uNxNyOCfewh>
z4G5fiyz_SSH(Yzx9gj5HbQ(nmqfzFM{gcqK(85?wL4aMfle&(tvWfZw0^$rf1^;6^
z4+_fUf9|TY&GDT@MaiA59?+$;js*sz(Oq;lh|XfaDRj2X(*6PD+L|E)p)TL=GCYeL
zpGkhh71S|_`}aZ`%W%wB5Bhw^;<XHu5Ihbn8#*KZl|ZAcn3B}H0<;a4hSQ)MzmTqB
zie}V19mD7s!6QBqDx?Yvrg6GG#SK(p2pUy5PqB2Q5@Ns|+Y0u<KcV!J$SGLkeRi-U
z|Mfuqt5P3!d6K={M&jR+Y`AeUH`nW&;z-F#ESep%602Z)P7Ew7>bZ}UJFJku)0v`}
z6AF*9;RD4p-P@DrYnD<FbIb>#X!a3-W$?pi<hNI2pjMPUlDCK976%;xnV4Cw0Gu<S
z)HsXATl6IUHtFrIZ_SW$88y!v0J7BBxing`=@2QdZ^b@_cK?5jx@Hn<{0Fosz+4*S
zyHpe_)HR1f;5h)3nQBfb(S1OIL@>HsME%Q96`;%o(0MCOf3&!({r>|uKS(?$oM+;Z
zDi=fEvWWlDhd6qgQ;vm}Gx@H7%R%`AEltLv!-&4;qC<cxlk(#$VHUqm)2(7ux*gv~
zUvsLJKBMFN{!-oKB-6Y*hB45YFf{c%r-a{|C^9BHUXZ?<clrBvb7Fs>tq@p>!<SR!
z?q72#)YvZeud#u&O!6_ZF}MO3<APrd7=?=sk8pQ_@Bj>r7T9g_AjG^$XIVja1X+p%
zC&+GNQ6U6lF*noTVYN=y<RhW|z_X1D<XJj4Nx=3Y(;01uH4y>@OIaHzC}QtYaPDNK
zU=HiX5>|{+w{xV8PmM?kCsN&W-rQr+@koG_n(Q17-1Sxwng(kjttkz^7i#Ok@vR??
z3w^&57{vLl4KkGfdY9+7p2zofAEE3x_#ul{HXzlfjRR+_i+!A!(|{6&z)w604Tw-)
zLp5JJz88<z`Se)4q2y<35`bf!5kger?mU(P%Dt$>A+b`N+Cl^Bya}_@(Qy_j?SQ->
z@v%j^is31gdXT@Jtfwv^Qy~s(nl8|tbJo!hbP*}6hl;n!m!xA{HK<c|;)O#`hgchj
z_Cf7ATKl<P?Q_yT@9dCzw@6i(_ndUD5;0xrLL$B<Ze7M3eY@c_b{ov4!EV5a$}ERj
zE&wpXW{rO#57zJO6}Uw<N@UK}0QXVD^&k*C3{~rU*>Oz~H3s?$fA*y~W6Z_w)uVaX
zOPoY7GAI%O($H~jHX|?XW_>W;s+qQ)k>fkFzwU!)PWpsx%mr7knUn^ON3O*UEzGs3
zJ{xpCdLP;|*~F`sy_7}U=iogy@yY}|IJMEOdQv7<y5o}<>Tz)3S<<oXOi$pTP|KK&
z$lK&@T$|9{w+10Yp$!i@9_0Hitli47nX{d{ijrv{B%lc0Ek>3ma}o$rLS4X~Gp)iR
zgGgvLqh@r|`TCugR}IE~G`Gn<0yq0mN%R){6Ng4uu{4`6F6pKQ*I$6}*8ueW`&r!W
z^RGDEL3IFk<L)Q!0*$rokK?~5%i>S+6u9F302HvuD`LmhqnMN#2MwC2xrxkRwH*Ro
zO50Pq1uhQDtjx^(g<|<})UzMjH|OAiF4;$o;&TIcEd&tlTNM>dQc>2^GAEDl&Z!AB
z>`eHk0Ico`W8Cg>jI4=nQ!AG7F7-|Rx~jR*+7}Mg-=pGt+l7U%nBE-?plm1<sO2Em
zLLF>w-|?yBEaOniD)5QFj&CBqn{es4mmDOZly)?WuCkw>Mu6n=Q{q0y;mE#qf8yu<
z=W&UiO%C>Ih>pW;JkY?LV9=!z?iI7H96oY!*G@E>=5C$}Y@UH2uT#;PKmXwM4Ld}_
zA&j2SVK;Q!7Lvh@Hd|u^VKK7{sl(hU1KR0`|8LK-OBw6slC^;s&;_DOEey>=?VHQ`
z9RFh%xCd(WJDb|K+86yRhV#wlor}75Wz;*-#dyh3TdRQcbtwE}v=)!zvDAgM&D~T5
zy;hYamY60uRYuk{!LtGl^SEtD!fWpE#gwc19lZh#=iAr8K*PI`f3J?my+W6}dyVXo
z(Ptd;lNeoy6jJ>Jgq8!x-~18C#nInn^qT(qJCV^{d0t@U`KAlIA~qDZ!*$eh9BUCy
zUHrYr48rIwd=v5Aj*Bw7fKpCIk9~dx0g}%zi~F3XfPe6We7+GEkI}UTVRVm)A~^DH
z7hccJ!fZvfw(9j%CH6JhF8vzbGspbv$t`w!y*O5hY2YinDF_~*Hf$13!w3$k@$}sC
zU&r<y!VEvF1_%3Y>SY!4^;_Z;vl_KW?nzM0XZQCMbER6fMihuw%-UG8Vt#*acZ&I0
zxGTw>qc!x*A1gDjBQ=udkBa&2eo)LWF<0_>Dw@W%(f#dpB**=@?_;l9IPk^!hzAZy
ziT)kG&A&Up=!`D2n?ZINf1IB*7I1t={6}Z!sLgUkhYH@QV}{#3AbId17{?5<L`}1d
z&8QBzyCCM@n;X%3#{!Of+`okJ56<YMB<^{=30nZ>#lE{qeCC?*af6{;8vYz~{m}-x
zsIOP|V`}%IqreK-l&c}TR=B|pal5+?&BV~D9!tE~Q2`!<9Hv1af3b(<j&tPn8td}V
zd5id(?h=>h45-16QasKmP|mmlFD++4Pssoc&JKQ{{vY5%zcPpCRFix$lB1OQ2w9h;
z_utXDgIdi-Jm`4D9RDK-xY`>*CgBffr4fHMart@B>Flh#<j>vh*N$@3gAhczJ6>|6
z{PKi2T!Ml&+zqT&5vyZQho2V8e^asgOAo6pXo$NVsx@;RX?IH@ckal`HUpM{U?wX7
z%cZm^6`WBhN0+}zvH0%zN1QaKq5g<3^VfoJ6!XuPkO^E&4tmAE+<B*m??Z`Z)UEi2
zGLj{StY0uc?RsGT#AM8unad7Q%&!9&gHgXJ!-I}{P20bL`2`;4m4lP;|G(ki;r8&!
zAbaESZ%5t#3I9IS$rv4^^f&Ls;S-}a;In;^$G@w)@b9B|xjX*tU(-GR9)uiHmwzkC
zzx&_;`1gjLyW`)n%D-TP*m@fz$GXgGWgQyEjzv@j#CRH#<!%>B!-5+fx*$4Y3gy&Q
ziKy6U6rwCyky_&S6>{=g=!aIB@U=OU@IaK4?a&p0igM@&E~XL25~gF!8|RPwXz_de
z+j02CKpOb1xWmKmzCAqsVEJ_lUdH3s@~cGBIU;)W+V1dMW>zAN(#3CED)9Rh9ss}l
z?*M)u@wha`pN^NG_5{78y4{|4V^#V|AyosS(t%qB93Vwj4Pf9G<Z_!lPFFO1P1$e!
z&Tif7_>P)S#BL5WuHy?Nk+sORiXuOkCjnZg*YTzO$KtMYvx_^_ielV8>F{3(^57TA
zESQWYwI&XT{CI1zH;#^nk_!Uw_-0k3{kWVeYW*z&f;}(-{zNP9>sGbn0-A0Qc_x?j
znDPS^#ZOU>RG4YF?Wo0?ILwoFJZ!JOB`XwAiPcbvRT2pCQX;yTyc{l2o~pM<nW#97
zDk{;prRtD4V<#U-3p)n8eM|3Ulp<j^#HF0j5kxwS61L-9l!^<sIX5CB*opJbwx-aL
z#7jAr9pr|>Xb3l8pipVV|8+AlQv<FJG-5eV3T2^*-3`Mn^9&#q!kiA+9&`|trA>gt
zd>-G+j1>f63BPeW6-N1Wn1f5eD_%+=7r(gIj~ndxFbU6iUn`Yr;LW`Cz7E*a*{q1G
z0D`u~IAL%j#lzTm?*I%Ui4gFkJNWID&EG2Jf;+7CWOp*XPM|ha?e-+Dw)H!_+9Uy=
zRY@8`Vm<PG92D^pA^_sX*_iJEHbA?G6q-e!605GCp_zTwW8EU1PeO_YI!GWB{W;mL
zT^1dWS{u!TESrhnL8^1%z{TWQ;`e8%z61lz1mO`g26us1Lm(8%SxJb}%)TeEqn5-X
z#)vdxMJpkZGhKMoMz9*ct3F0P=67V<bTj8r{TSa-rJ{E=#AYpvLm}E7#bCQjX}iH&
zXgc=wn8dGbWPr7xdJ+aZvV6@*F)7CBOms+KMQt)ZC}NfHJ<UyD>CCn;c>$kw1BZ1^
zYvLe_;lr-7kP}u@&4c3-`US4a@pM~WG)k=h?HgeIR!^7G;>YmsG-RjKd64smp5s2i
zbz3V*j__l8wuYluQ~b(TR=~jD<tzb2qW5m{{Se^GrtU?uvVY7)4dSSbPM6<HZPa?~
zTThKbj;-%Qx%gklg^CopFdz%FF>=h+fBs4$8r(sx;b#OX;#<jb5&u%Ta6T9tIW#<!
z#&_<Bk_3ZHnI%wMWRn~sw}4PW(aTVOkv-i_*73PHrB!73rP(bc7-Qo7Fjg{i$54f{
z#s;CKxgzd?gx;WsH0a2fyG&5C?T@jRR9Td~_@qRr8|*OvP&(gYLWt|-g$W^aU`*Y5
zJWnu=60f6#JQwUrSz_TM#(;t9G$|)uCSyTp5;G|22bq%nAZ+L};;q;#@KK2v)2wsZ
z>U-!A)uw)HLrCWB*Ih_~piJy&iIaY2i5J<RXDoTbq3gTCq%R0=3ON>&rtl#GvViV5
z`<*K01#*DNbAU93nO;08#5ol+PHz6QzNf~iCC>BT4mdx6IoTVerDAp#Y^3^gfj#YM
zSU))I{lIHXPlj|t++q<RlVT+bd@s(@Y3Pm%Em<Jl48#tv1Ubmt5R0LNJ$wfmv4BVg
zINE3xHe!wp!!m~W###w!cv!Z%<4YA^sS0M&R>jyP$p)U231Ew5-ldxhHuI$h#X?~)
z6+nSX6ZLErb-KA6tNInKV7YXuPV^Klp_5T^+hDX05&%r<77HCZN1|k!0W-<3>>-!q
zA(ai=Bf}C3b{Fz!6*6+Ed}xvDro&5qwYB2msx*AeQ;mH$gn2Ftg1D&?M_QqW(uA>&
zAE_b^fnh%uSYW6KfJgzGT_!5Z*!fKJ;5>DP0GVswCZVuv_a>!Bd;zq@rW&NzE}UH0
zczRq*8t}F)g`_LeQf!%9rtw|T1q~22?2(K0+zU4e4ew1tg9Sv;AbKBp+mX?8o9K3o
z=?_P+aRI->9<eFXCQ{I`zsG_Y2KEN7-_G4568fP<#2bM+4*}7?h^XnkxhE5WlE>{6
z!eVaWldDAb>;S<TJ>djSN*x1P74{XMLA(ekKy%1aGOx@IF$@Cc&65dvJ-wOiAAN_C
zXhATCuz_m(geW&d_~ZvhWgtHyFV5)oW8Ee_Yly}nVQlj0rxO#o&SjHiPyIYPopph6
zOQUBYyvvr=2_tv84wwjvwK<gM(DK;f9O#=__`F)C98Uq{hQj`99;0RP&B7((d+cUq
zG1<s5oN)=?q5BmmcNq)#BP;+P^Y=n*SGW6%q@c^@e!sm{n)`d(+ZKKl_8)3*7wc^h
zw-NtQQZWzsYOu$D`T|l;{B2)<`5k8>9$ZCkv$nTxRVA>F9YM#w^C%(KD$H#^gA4xx
zo<3}!=8!fuc#3D2*=JM}X1YE*&pspErWDUKDb5*tE?*#VZ494%DwIxYI^r*okH;3`
z!eJ85qg{hjCKz@OL(Ksuwyx?7hCJPrVwT%8Tu-rF#5Y9h@cZPFF_0I2EILpXhC7!a
z#?c+Hiaxhi8^v-=!xM3?0e5OZ-R%tVf|v!gc8!J7;D5tLp=XtiL@>Zh;xc3$CIMvs
z;kZQnmo$(|s`mw79Vo3PA<G%tACJxFLqMMo1*YhqIL;76xlBbBMm9Ew_VW;hQ==ok
zC;xzsVE5+(skj?k=fmp3v4{?34M`k<B<gqd?Z2_A#e8;xq-Ff;Q#g9V@gUy6E6TR{
zgfpqh>$a+V*~BwAcjVT9?()!1gvO6G5ji4E(Dml+G7N7VUr)IQ^l*XGSlscIp5&hO
zvZ+94thbWQ?vW)dzPA@krveS@$tBXU>Lb|*8{?mC8%|qFv#Bc9AToi%h?cN|`@LaJ
zl16A{DM97Gqpq64ZHSl`3*XEFN=U{(h2=Qxl5g74B-vLAi8&LIv}QS^g<e08$QPz0
zGddYB-RxT8jLzQ^H*S4uh@Z9xTL!t(8%zX!j&llNf|!To6J6~_W$ejp6+odQsRYn@
zs<kl&Gjkr-9-$wx;bf4Fl(I)TY#5$F)+zESmtDlPFFhbQ3N3;jt|t*E40Qt_2~HyR
zVfNcZo8;PLrH5!@HVD)JHxeDvL0_|ZYf@LzjB1S@0j1GwR&?{yoN2(0v!LMP#~U)<
z%Ox+=Z>@-rkNFnw#F!zH@dsYexe&Idc?ZV~xF^)K$zrS30vIy(3(^XoMJ*}CuYUmN
zwP5Og8>bFm$36cmr#5b=dX<O*!Px^028&`@bDmeHgATY%X8y;XS!AM@bQ={F5YJd2
zfGX|G@!V{z5@evr8~=H=Ilf!}nLPe8ha^?Z?@@bR^hz=U;5rDjABpdzCxo_!cC}Xe
z7z@&E4u!w$_`sxn0(3qNbSIAAin5z@@b;y~!?yG5@MD@G0{Px1wc(IBV9UnCKA+A|
zg+3BC_k`L1o5}73Xy36a%nhj4l)T^#{$K$@5$bNsiI66sDfE2G;^lp??gGjV#^3CG
znjhFE+#T*BW#CIe@m%*H6!_Fugy5<Wx!`xi<LKq*n42GotHi0vp-kmMkmQUb3VA8Q
zKr)tsw1$Ea|I0V36@OTqR<ZBgTyKGTrX1a!C~p?o!H|7{4q%MpThm~@I&@95q=C8=
zlk$s>PV9e<s#%kGfzI_{6G$1o)=$XG;b{oM`g&g%a|_iMPN-<vNLDmFv7$V$qT98i
zJOpo1cX`K93M)kXR4}5X$4n5nNdSO!O9Kc@IuqnO(OsevR#+Em6Qye#qbb|W$4EPu
z(@PzkaT0Qt+9KZjRqp#pA$oQ$hbQ#ZKo2_nPt<F_yak}ZLlaO#dVy#hfINSV=Xuks
z#CAO~;^UThaQy$OW<7Ko7-9t0)6E^{>69~a83T>7d^`R-FI+_eq0em8LZ&q?@@lMN
zja8_z?Q-?C!50)&iM~EQm+l`=P?Q}u`a~ZPR|hv{ydR#=uSAJ`KVCJQNKD--3X-hw
z`8kVl??ZY@`|u{6H&zLl6v`bc4w56$Z;ndP*gyooLOdDorRW{dfz9UbZmVzOrxoUT
z<To-}cCr+`vYVpK=FD!Mny)^DR`?9QvrgpLf2Tu4y?o5T&D>fM`ZkvwkwcEi5vwbv
zl8nPa{2Ror<2&$vHTYguTVN1<l?c6a$JfigHIH5(?!Y(qv2=nvFzrOw9axhmDHK=Z
zyREZb$?*MPKLMt!y-hdHIm$iQ%tBngbXd%^hP72gRkxsl(q>auNb;})_1HYgehts0
z`DNmtW*8Nwcf5-HuY{89K&aX5m+;U$_W|(s2IwdlOTw4z^i{tV+%ppf0r<)#I?8|{
zp>(Mr>^();m%mL$7@aBN>`dmWIKK6^fVu8`!C9-^C*Uk=qKmUTeknMs#&>zO9?o8{
zpGX&>>+rEvf0Vs(<yQ8r&yfPmWw20LvpEPZ8IhI?q~!_H@Hrd}psG~F+e~{&J0+O=
zW?VvXx6{afNqAxAZUOezxY&!g?+(TTv;q=OT!Wc8xSVC8p&qkGE88o?XCGpaX@o?q
z3H^~)$#xCWOaB|HC`U~O=Vt!K@=#1Q4A|-D)Ay^7?5s=pFDmzv#HWd9&(u)t1C2NH
zJI8;<_q5P5%ZeH}?{X&!*m;-9F<;2bcc>uTa8+w?<sXRh(K(oofrC^lU0R{1M8i2R
z<$c{M_B3${hG3d^(<t44>-as{;k(Qf^C})hXN$F@*GIh}>af?J6bE9|(0!bOK^$Oe
z3P-H`mWl>t3-k!{QJo!r?Awupb(AIHO|q9Fj_|t@g-Rk&%?&bbQQ{P&VGG2Nqvy$B
zW4Ds<>Nvyj3Dg-4168{LsQj)~y1GIWaA7M%AI5CSQu_(g-5atoT1}ZzSic=7(Hodn
z{!9-vuE$T-NH>y)if_i1TkYNaq;x^Tr8?ojC6MJbA!Wqs5|+nxvHh+b=)`wb{;3z2
z_nMmj4{IX8W34DbMm8@!r5FRU=x~$V^GFM{&RV3*Nur^vz)wJf8fMS(t)t=v0?2tV
zwjtP98XIH-FWk!S0sV4Zi!lFrEtsWkOK-%5dP->Q7QP35l4`8+YP29+T+oZiU}sA5
zTdM%6_7tb47l${>InLJGtcV^iX69ZEy~7u*WM2>vB@5b-lCWMEmJ^#@!dV7JhaKOX
zI^E5P?i6fqgM|{}WyY<cq_8ZyS}Nu~dNO&@$tses;FBTV#ctE2f;B0Ws5g_`7c}ob
z;Q7lEMv~KGh&W&{`nq($oiVaGmN=yAeJiFPJ|8Eh8E69WziJiJu;9}_SJw6<<=b{t
zB}!_G0Jl3y%`f|jlFBO0(Y~0ZevO@3%z=0itps++$0T922{E{m@Wztx+UP0L*{_g@
z5uGGI-Ao+2*9g`Ryl4CU>2q=Y=59C<-@fP*`PKG2+s%`8XE>>$zMh@f@8&)ByYS4P
z*l$*8j_(!g_iu)w--qFW^xFhSN^l|kHdOu)m^2#9BzxH(^4?9p6JpVU=RQaY{OYB^
zGaK<Mb#|{%{kk6b)l+`;!mnQPi{%E$FJUy;T;H=d+U>ZOJWI^cal0714S;1uR~Ce@
z*#VdsKF#DjWbQyqR&c1eG8pQFPepeSCw(K-NDVXr%W|fq;q<voD6MmPKuhgR)l-^_
z>$mr+z7$WfA3|Z>&Xk^2D|k)oS+$hcem$!mgP!df>Rf}c*Sr?&fjTUIBDS&lyd*q6
zrzCtzE)>Jbvq+;kK`4c4oG>^!80GqREXyvzhIJqI;IY%K(Tn&9%CUNh*H|i)<`g_;
zL%+oDaroVFJAvz2HJq1TfyTq-GbDQ6bPvchF_MaQ(`4V@VyC9FB>&C8Euw}Xn0Yjf
zA=fRXP6eV6kfVytG;`i`BP2i?RFK3&#^a2z+piJm(*b-Ia0$nPs74`-OjsXL8GT5&
zyWI>yZxDHcLaGHgbSyN}%v^DVFv)bioVOXgvROv{>X0V!%eVYEalMw~YZ?)^>LQ&b
z;2Na!hq>}zHy9$oqiZmWHV6VRv;N${(81_Oc*%e3Mp$=oEooXse=(r)Y+ovRDy;hL
z1FpTAzEYW>p=t5}Jn~<AIv<_YG#N&9`@m}pcz1Tw<bk*gTzfe0&S{#A4K!#SP<;jK
z0?HYi0vg;M3Sa4{H(wkkxG;M8Kre6WWx|`l%;&(S;>G<p2|s^S{GfVzZsLDBzKWbU
z{9uMp@xvcx>TeS8BdBRyd+h~*XE1PV;_P1PwNrRg*i?q}iywMido1t9H<k6kUC(QW
z^KL>@Sx@!{CZvSUAqSJ_nR<?9sKP&3F9Y=A)5}$x(5ZZIs@t7p{U8g1yX*%K*4ZAc
z8W0*=i#`Mz|HUqWz9CM-E_i`=`E7xP+*%mU+vSI{_X9xDHaW?-&5Y#^cx~GSW@rHk
zf6=@Z{7*8cXOfe_F;xgEsW6A~-=8-T=QXCy8XU_1TcDnEJga*hhm-wQZ|`^?k7i$s
zrR0da6h4b?brx=n0#9iZ_uDve_=dvoHxxAuIIbkzHtM^Mrxj1Yn9CJ2!4>s9#>;h{
z?NAFcwHL3<Q#ryskLqQ}8^G+7UDzcVzk;kT_yr;9=?gLK$h3^$Ld3K7zZIjF$mn5m
z8Joom<2IC+Ahkx0SqsTy7$39nRfCs9ji%t3viMGb|7{EISb`#f7U(TReAj<Mne@+*
zOU4bn;0;=!`T-O<=2EwXj)%?Re@90T@mMHH9-b!;?0x^tRN5l|1H!X4#MFm@sjjUI
zJd-kJe#k*T0*g?<qsJb)a@)V8D+}e4(acLySMJ3j$AYXx9GQ;~5o%6-9lhhQ$Q6*J
z{>j?h#PKFTDsbs15}8J2C1ROwt^_&QzaaaEIsdi)kGMC1uc|oz{}bS9MB)u<G%je=
zXoE`)0-7LdP?j5w8ke7@u5qcxN;N{FsRaopf!toMrL9|At#sGcw)U%E+%+s^aVstr
zchR=?++M1vts=DK_x?OH=PpT5+x}m_KQGO>=bSk+&pi7)^UO@^-gNS6_E9hFT(@E3
zI(4zpchSkON~5E&KP*?GYGI-;dSmA3Iai8lg?EE02lIEI1Lo5`%>Cf~wWCLMj(+-7
zc#S{v;AM07-m5RN9p>-C?r^%P^zWp?iCYE*DhvKW9{i$?Pqwt}9$j2Zk9#L}4Ehz_
z`D<{&{zif)o~1kELlUSGm=viP^PH?Z$Dc2qy#vO5B({A6IThsvS}0py=#De%FK;Ai
zh#xD}|8nVP2q9~LGZF2w`C>5Lx`$LijH1qSmz2PA<!FaW8;PT|kWY<&HCz=mP@FJm
za2{a#8MM}iRWmzv#D=r5r0rMy*j_(=!pLugxDbO+#bypDSj*$T>#?csuqpGBq*!?Y
z48~b`MS{E6fSp}K?6~uv2H+<u{B&&YYkhA3g8K2t$KuZc^4cu^i*~Oz=9O0J`~-A;
z*>26MW=yM`vf;cgiFPeB)W{LR7<AvFJ9Bf)MkOPs?c<Fi_eBnSwKonlhUkAf-YTm-
zi}5BXh)rSZxoxNR>|CU?2x?xQT|O<kcxQH<c|Y1Y29TVmx6dneHLGX5oZ4GJg1z=k
zd>$95$3V*{5$Mp)lguzJ|E-$L(0hcvvq3NPMoa$vZE2X&f7oTz8@f1kEcIo|@)xAe
zh3a@8b%jCRNq;w+#?tf=qAHyOgKh-oZiQrf_K^HHo;3{sp~WF>dkTasx2HMNtQMqt
zm%T&vRFyi**Fr<OoocuGHIZMz#(hlCE_eo3TA$<lN#|wxBiU8a0H3+|(D^PtRAtz`
z+f5`V{gpv-t)443xdr}K@V(j!$_bFQCpxU81T$&DSw1ZZNt8-7Nt|lqeqWFA-tWvX
zxQfO+7h7pdiFNqF*|E;0_(GdXW*?+vk<Q0x5p_Cj<P?soE34<c2s_T==kD?3;e|YJ
zeUc3et~;WRjkQK^s*ArL8~p~SOkB4|eSB%14myZ$jwvp))T(7;>$T}0aOef+@Yctl
zNWboW#@K29IsWL|&MiZt-z*h`E0=;IBFr8<MgL&}6ZNYyEC#zpSqv^N9P`oRU*N(i
z9QDciimTFRh<n&sc-Z!rEa@!*S)|tqYvv3yBnW1)v5I4vWXljuag|FZDkU9N3Qrj3
zLxjUYF>wOQWlKpksm&G?`6s*VMRq!)T{Z?9606xV=c-GNTRE(7!UWd(mdxI(j<Y0c
zmPI?KLxp-Wz;vj>^%v2v)LEj751;#S3Xyxc9c96DPvm)Tgg_dM#$7&l&vVDz<zgD0
zm3oRl)zT`m840V%JegqJx8Ajb!0DNVDzx3WfZb{rg@%UIIAOp0qwB77dmn9@v(s@L
z_Ax;{ihoG3Ew!HtfX*fb^!yQ!{Qz*Ad)>Qm0025dW9tA&qD?_Hq!TB`m!=cM>r%g$
zq{W%gd4=}vtkOZGq038yeBeEei-uK*Spf0bRc>yQ*eGv7TtV=Sl@8C4TXD0`!ZYu0
z<ue=%X^>z~JOH5-qM6<?<(th-c16#kEGcsvew9<UNzI|CeTD}j?8_o9lwF=%78~Zv
zE>br#WlzQBCyV;lOj#>NXzu|POO8Kgo+2Qb2;XBHwG)aWeA%5Ptt5Qitf6eLuieE9
z{kD@*n|is<zg(m%_Z#hAV<T<~j5Qbd#n@dg8_qL!ESa0FAiQs@Px(=%AHkQF{hN$_
z^iv`t>Qjvpl~$}7{Yk&_Wg@t8PgBIr?(*y^^s)AT4}H&keQfjbud14S|C9am^NyH&
zcAZnY(7PmfeSw3$+%XThvLO~)qLt`$UwXUAJ*Q77)ImQQXdNR(dbFa@&;DgfeCed#
zU>MdFRW)iNv2e`pu%VMW-;T=uG8$Vsvu<+FunG0aX;Qf}{x>}#R29;Ju#RyZIzIUM
ziaaQI0Z}v%!^?91Y;f@&hKi?Gf`cMtHpD^J9%;XlFVlCNvFXSGzMSa_&55<`=!b3?
zQ9bUoX{UOP`ZFfTth!LLJIj705q`)4Fbx96{4n=vFbycu-3CHl`_Xw1i=>_FV}hYp
zFx09lQWvm&ZY|u#VXfQ9eQLW(D5vTi2;fseaI0lLWgrOIkar+WZsl5!FApMAt90Va
z+ZG|WJ&Z6LR|$&F<uP2<tu$!6Gg+5uqgutv)er%T(%0@+*b^cB@TWOpPtErvBIW1X
zWNa&g`eRt}<7Z^R|H);E;-S1`Muy`k+Kv<s!1c5ePljd*Pdjx;rM+^r4|D34-2p;p
z%)^{r1w$Rdx$mI@n15N!hfiu1S3M8XJt1TH`ip}9{hi~ee-lH&SAPe8RidN^<*(?x
zs|KO37?oaD)40rTLv$qTgo=lr2Xa=o?GjrlCBbelKEC9-HKsTC_Ph9jXZEK590Kn+
zB|~N1HjAuf!F;b_po*st^tQ3UFnj@2Yw*)uKpr2Ih<J2bQ*I2F#~MHo1jad&AoLaI
z8c@tBZtGFiB8hM?1qDEq{tK90X++05Z255x(cM(sL8^i?t|9uluVkj-JkfXHr6+nt
zhUipy#!;fNWq;{Rs!WqPYn(*gIe&B1eVR`Ss64oW2kAS4wacK&45Lavc^iCuf|x61
zMEfQsjbPbPh#T-BehA?w!&;*ZfZD-a#`gz@u~;0m!l6a|z5CL=*2=pd6}8Lw0$uPO
z%H*U$8-+riB6H7s_x>O~>#mO^S?xC7qXljlIk{0@k?tD9JE&+LzNrAu1?75%aO2zs
zmxhg`@9-u20Zcg?j+CDJq5*uKUB;iU3t)x-w^G+0VO^P%oCg3L4}qm|4=BGpkbd+E
z&k0c99S^L(s|*&WJXQp-oKQ51x-y_Po&lWnPqw#T3qK|#lLK3@WC>ic_3??>!`tOP
zb*^ucK4wx-e+*9Rk||3$CV<o~ykHOC3zfg-b1L{+hcvYA;=*QO{+_DoT;613{}vme
zbnARH<2oWCJ*QV3!6x~IJ?B)6k1oDyNNrDR#n|ZLuMMs3!7KNIM?PBQ@fWI?(<tuc
zQl~L;(lUn#`4|hz1!h}QDf|^5IQ$&}3QiY$jpqkpmdO=k`EiCZ96!!fxQM7LpqB!V
zoiEX4+cx4Rn_ksus{1WzTE+w&(n|&|L1Y7WTnO%AA-HZI1cVcCOB}c(GvFpw5lvRd
zz-JD)yLxaB2PRyG$ra=Hfu}IJ;xK-2jNIgkG5nb3z6IQyKyur*Bq4rR{xQG`G*znK
z2DoFEFvn9?@-V*xDp9juf<~$H_;k{Pnq^2e%c+-*Wn#(ImHsXvq?`EvmK^$fc`_!1
z{;KqKzXNhu>BHGdFBWLNQdm886Zb%TgC6HW9M1X~XWi(tQpH>yxs~74oBA<h>tOR^
zaPid4C>v%)S0BtCe*6!sB3Cc~Bi#7&Oo|cS>RiTF5ld%-#Bn2QJGS(-{xu!pB)(_g
zsr_h0N83MYyFO~Grd%c#HfrXPR<!G**1t)qDR>FM)ZV$ghztkI%LwlVybsool;0Iv
z!`$(|{H<2Nt(0t)OSVjCu>?+Cz!WCn^_Ul9;(e@Pb*Xb>U)!DnCI+?4lWwpdsNr(J
zBB;ivF?GLMJL>5Ul^(tfRy_*Jlyd=CdG_Gy8NdSo1N^_eF(|8g-O#B)4L3S}`!k)v
z+x?dKMuu_+2%SNTgr5cz1dZki2lEG~nfb}fKcZK)u>?%l!2hi6iH|@Pnm??`t#kb9
zSKlC-$x<P@Z2wdnx+iAx?(5+CY`oFFVQpv1khMVtp$ym>R9mAP(=rfm7KvK~uk)lc
zX!m-^(9tCH%SCC<DcIRp(zdfz{^MBZ%D=;T{J&yE`liocMgP7MmdU2my^_+L=;y91
zc=llseH-GI<;H&WkIviC;d?NBA6#IPs^AEyf&}$2o8b#27YS)_93&9Fsx|&;iN(hu
zgK}8FBa_Zfl~`mVxX<s->*<6F>goW8G9}gIoV3B0inCA+oI6WFN)E8*Ow~FLR6V?|
zX3fltk>C;A*44Z;^DKVtybbeFT=y)Pvd{BVs$Xt>fsKcy_^2_oHvS1Ahkj3T%1CA)
zHmko=SApE%kR5E;bn`=??pdJ@L3nhD69jio5i1)Dd~95J&B{}9az)^Rd$uL;-1WB#
zn)uyLp(Xtlq%5-Mc#8#Sv5d|t7b+?pM!^ESu836kN39V#%Lf6+5swNEpIXB(_#WzU
zV(IIiyIf70GJvU_z4FYhFfyK(Q3hgXL`WgA2bHY{9!$@;xR!1y>l71Tde4JerSvN^
zG6ytfZ9?7vm41Rej>AHSkSj3@zi3rDeU>eD@_M>F>&l1uBfd1eL}|uTMfa=Ia>39-
z<!~!^#*(=6!J&)Ys0H>jtr=!Mh4GkycxnFho}FZ?z6ISNJ+q(*BfH&h6PI~i4O94F
z6Fqm9w|^I=EdG=(O#k11rwhTq?uRjZGS)Ab|IB}zHNbxZZR5b2KPiF!pI*_D9xXnL
z^-SJ#9Kr6w*l4!Yc|P{>E3qY;j*0E_gru-JmSn47!fx__k`^W*6VHyj6#>j?y5R@Z
z8(q9x$L24#wa5B$E8+axSRpCEmWgf|T4FgC4Fs>kqrzT^Xy(pv;~=9wVn_8+*&Oz#
z0zM_7&HEDanEI*o6J4;uuW4YXRI)Pt8E@myr>^!|^Hb_jlA%Icq3?zFS&z?HUx8nD
zdd1;5sAH5Ua0DJIgZ%Mpx7FMW$_~hi<U#3&OW1hiT1U@*N)ryXP|>J=uGRo!{J(Tz
z#^r|V^)>vBXdyAekmR%^7{(G3p{W`IjEK&=*)UyS!2p%AJw9<`mcTqLOx(CscVoiD
zjZ<}3<r6oM<q&UD<r(G<6(g%nJ_nkD=ys+Zi`=EqT{acj!;9SAIsXfTUYcdltbR29
z+?BySJ_qnjhs^ju{E75zlat?(kIt`tEsRURbTF^CL5)HKC<YhN#V+NHO-{QHKsjf!
z<w@l00Bd$cH*tAZd2d8p;$H8-f!h<J-G6m=Cl$KeSGlcEp0MS__!IsZ<GRkbhSV26
zW8ZdtgV$P>gK3gMYtkgz{${BZIB%+pzYGpZYK+Bglw+V8lnrjAGFH_i4pqwF6<lUE
z6)J}u;}{H}HG-2N^8ne1c0Hm=priT_kmxt>(Qi6mYm0(z;x5|xFm<cjsutgMd)!<O
zFMmp^07<SAl<Y3PCE9r<1$Ah~l8snrL~~NlurYSz0>?jhp1{kgJ(G7Ja`|j@{^6=K
zIdzEXh8J^mgLa6yn5wbHI~g7=;@-KXFxs`FT1=j#4a}nR-UYP!<m8<Sk)WLlJ2rvw
zHzmxpTde}gn{}5wX^S@W`uOD-=SFi*PhoxG5={rSA_mLMc~RPn#PeVk*Hl*0($AGC
z^F5(4*+A5FO3&nxSc}v8*lTjuzEWnRnb_VO?YuzfO3o-@Fg0v9a4_Q!sgv}GHb*as
zB_~DGMU&iV=BwCPVHO8WY@G3KszR{)z`sIli_{QgMo7Jh5zTcY8>}}m-8^77;^|Hu
z--wAu*V#X>xfXGw(x3UMdiQlxTmN|-|3&lv#iy`;{0TCI)XnPDtD2kqZ)*F%_$9T;
zdrELlZ!~$6=OY~SPew$$PcTNhiVRC8>ApEccc{?XSbR@6PzYYijSsU#h1F0$6eUcv
zUSqs`3KPB3?Z^wF@?o^I$)tzjK+n#5Q?NKXZ<=xUX@zKzNySWeMmxvzWOC2sBS|dV
zxI=W_-mbt971+TF6#D|quWpP+=UMPAdEC(G;<~6#GU<E=SbOS^9Lfv<BUUh0>%=4e
zajHl?{x2~1|IeogcU7vz#tlv#rLL8~_g?@L|2-MUvG~jN(ymKl@eQeWRU^_S*^-xQ
zLdBHSo!r-lB8kxEOJg0bjGI+X9bx`%S49UO#NzUCb7CgJ!w2ycUMQ1ZFPHAD6j$J`
zcmw3Ldg?BwJ%TNTX8S&NmksXnr6Kn4ZFl#oyS(5oPrJ(scX`}h9&nd^evRpT3SRw`
z@!Dg8d64-M5Z{oK&@;y+tbDPxwqx^zw!g;W^1kp@h~AbI1kJhfKo`xFnpQG*O%51C
zrdqTZb0FcT!MAN$v*E;t%u8f|o4k`}<EYG6_(M&A8s`6C4#QW$gkRCk{ZVe#&8&aG
z_{pC)XS=v;<-9p))l0pOZvHS4%&PV5(BNp&%|s{*M=eNL7KAUP4Pj0&YrrIQ%@fi2
zN1Gk6aZZ@gvcT8vu@&55(Tpy?A-j)Ljb7y(U^LywFIh(BK4?1+7S_u#3rji0KmdZh
zd>B12=|S29ZolCUjzo(b3HDL549d_weuNmIdH}zL?y*e!B7Mtx5IZ(h6eBB$ZQGyK
z<78yo9X{9ox<t<WgQD??$S)^r{vq0ZlNBv~!6w9Qjln8CvAL)Dl=0ILXJon(PCxlI
z(a7*RKF~kObKrie^}8zEgwzJTLhv@~nz-B9Mt}BM&cuboRIrS^N6k!qpBjz<sNjE;
z2zjxL9^fueMx;=n^BRY0X5yPW>q#7O6}f{OU(kEuDO3f*S0+ADF4ja+J?3Nzpi8q1
zLy=^<MV=hr+ECA&N`xRd^c7cWl`54!5d_szGCg)<&YB<KCP$6AU07%CzUUhv)-#%9
z8m)vHMmxRif1IPj9afLe0dOm_8lV9}s32MV<jO?xrelp5+F<=ls>JEJX=VDoNS_1S
z8mmSMiJO=F4SmYrA<ugqMwd^chgt~6N_3#dt!hVo5B5>+=2?dI1vz^KgnKwTU9zW%
z2y;5Q>e3fSi^hC}d6>*uGV+7lJfr@hCq&uGX*O+?hzz0MIgEPH3XPikG3pzW{u@Ru
z*!MqS)ZIx34H@<3-@&NcDL+(<8eI9$^#pr^<~w;X7PEv#qmzw47vy41v|t&cKX|;z
z#zU`*cKPc8VCqJRK-Z7-PP^h;<P+ZZ{*0KsBpAES@hW^F{zWCg?q_j#Dl?hSwVtl=
zMWv*mDifiQ1+b3+@@GGFKxX4A!CODc4@G1w0=hefF=(*JQj=;heeRz@)nB-}n$+QD
z1`dE7eiEGUbC9zQ*m71atM3&LKbO7(<a9cajfXQ2OP}55TiU{ieSbCWSZ#s4av$&3
zU|ACe!gKJKXMGMIlO)w@+m#A_|1+jTley+JCthdxm-hz@&4QsxFf>W2XuncX;8eXO
z^o+-N(-Q4tF+>lfgTQ&a1HjJ<IlOXXngY<ug149eR&C`fT`3Ax$+5tPeXi|t>TIo%
zz%CTJl98Vr?s(Hld%jnr%{TAySZ$*J%@D$U=q22J6dqzYu&|B!O~J@;z!(j*c-RSk
znNeMLjx5SZB_dZJ?PReK2bGEIr;Vd+{b)-pF%mv&h$W7trt`}ZrN>h?mOQ^igEVtb
zFdSCsSa5kNO6|<@MCtynP^AjlqSW{_Fv9-blc=x`^q*XnC@!!<XI7*6{twv?P_ka&
zo?M$K{_{~L_+YJ#O=4^$HZ7(fwJJm-n~4<`?8R2AKbH5In*`AiG?JJp3I4tI4UVr3
zV*dV)SbP&ni9xm9uT5QUy3QW$?;nlTqh#c%pCR`nd6wF!>al+!oBrieAQ{;*+ELML
z2X<}C9<WO|N)&U6c<c#z59%-&^AqZu&aYes&6AJlyv=f9^5Z4mu6P!G-h7-K7QMkc
zJ&OPioYap4B3y;;>Gs_5NVNNX5f<eD=Ecofwk^_)@uakjZX9!&aV1M4I7o-}fcQ#@
zo?#z4iM1hZ*Eg+NS#4*2$;Gt2Wi4$#IsWmnLXX%FI~)VAzm9nx{N43AJSYv4h<tFQ
z<3R;|;lcGG5Bj)ve>Pl3@sJH)QQwUX#bK~v9UO8p+hqK}3Y}SrKzEyZH8yly1_RD<
zuf>2@imzmvjSKZTTzI~FFD^VnIG~$wVKOp*5Bf#<TDb})sSy1E1Hzw>fKKvJfn3&X
z3LbsZvF1blSoWv>`SqS<Z*uo;wW{OV>+R86OI{CI^a`G(UWP>#s(K@}&}0F&Uz0l5
zG4fH<Ji<?(I{@KxCpd&F2^@rf9iGoU{iQ#`Po;Q>@N_Q1PiZuyOYVygu|f{v_qsyJ
zeW>0f^xL}<!ud6NW1=IpCyVbnK<pyKzf+SDe_ljB-XysK^$4QSt$#c&*j?p68}rG?
zVk!tGJ>hWwU=HrR>vMp6mAb|>f+>xi{G+3@N}|9Xtu^aL^T%USgY~PSz$)<mkbp{k
z+Xp~$pnPTj94M2K{j4v3_>f@}bi|>28Wb<0y1=;>rY8F7hr#pb8n9liQ*a&TesavI
zKfHjIFUiuOqiB{y<nHT4Ubzd=t|ETU{p6v$p1+lyy^_TRR)oa{Zb2G;NNbn~hzx}T
zIF^dD{sO<atB}1aqy>uT{GZNtn?VF$e<buvcvCK^C{gJuKxq1w&y8DqT@Le=h<Gcf
zS@=8=`R5U0!nU*ZVYSbYD|f>C7Oxnk$T3D`DXUpK!zUw`9V&#HG-~=b3uvyWRRyP#
z4k|0~w7#tlj^j4{LkVettt#yr5=$Oy-Kj*iCX4S~C}2la1PA5<YhyTob!PHp2kd@c
zA8O;q*S@$FV5BmGXOsx}vSW?eFiCL851{W>^XIOfgYE|l(}h0$p^{qB788u3)`U3z
z5vQRrZ-VO;!#jbrD%hz#FMwWp*g8f2$5SC;s9@0Ys=_VE39AT_w*#NjLqZ$XkN-^B
z4U#WJ6W8VXu8Ed1V1<ya&Tv>)T4HgGkDK$*Y@fU)^`l%w36>tB&X_|d%?iiH<UTcs
z)a_EV9h6covh%q7!gG4>a*fO|Q!?sT3J5RmP4K{NbV`<;PW9{0eiDuWIT1G7)n(gg
zCS$~ymqa^lw{&>4mMNp6zKMrNyX`2_MC9z>Xo9Es9J`dBs|z$J6V!BH(vTc=<_&)2
z_{`TsL7<}`U>X#)A*sfU?~gN4U_>ql-whVAMyHgcUa3#&^%;tIk=WZy!{&O&fZ$1C
ze|k;YgYtKs?^930rljBxYN$Loire(h;M?V=xH*{MNCOF>P89F?;T{F?qK91E;#pf8
z5R7=whCFTG2Zg<Ga29{b$?Umgo1c6rFM00zg+`yd9etAiiuYm;1^eN}<#~i-T4|At
z_BYQX%vlF{!Hc&!-lgkO3-AIA;p4THnj}9(_>Bp_jY4-*;<}Q#ebRl=?sI{rp8fmE
z_AIC)=-OS&J?j~wT?b10^_lkD5uyyCfI`3BN&ss;OcpdWCAU@dT3^C=lRt!=F}3mD
z+~w-(vbtm~iqVbwy9y?01Oq%M$KsV|NI9ZQ&bvR9LBMTLXN>FHQI5wg@XGO_uZ29Z
za+;r943*=XhZ#qlB}{b~MCOx2YB@Jcc<Y$~JeiOvY9N$=uqHhMLz`0-X2CY%32Sae
z1%ty$7!_A=OrnE7sNhNZN0Xd>)Uxfap-dH<D$(dDS^S-Z*N?+<;my~NhZ?+oSU^K9
z<k5!V1w!IG&)(Gmm4y-Tx@jzQ5y-ZSKTn1{yCV}r-?Z~=KBpJx@S3G_{@$A&*0Fh5
ztAB<Ww`o*M;aL_Ny+&Jkn0^|~{1vAtZeecw#TXNMHOsC$P~>pYASh81+$2+O2m+Rd
z7%@JAM9sE$fldnmFF+qem%{Z&f<E|1D{~7{i*et%N!=%hzUfw8r!m{1vK**iPILMN
zicOaTtUuHYfr_GwPpRcF^6r0$uF$L99BNzttF6g^66BM8@byf#29TDhWTixbLI10*
z2go7npaT8VsL`oLpHqh_@I!V!qRAaqpDJi_R)Sy6`el_uD$`n~dStqG@*-Fzj;hvY
zwIQ=-0%Ry-6Z)K%BKJ;)_Y=iG(IpSMaLnO{z`5TX>b@!e+}{L$z8TcZ-ObZSJ|Ab5
z(?_Ov;yxz?edIt56_Aus=zU6RGizoHA#N`m*{U)^5#@!!3(L0{!+?o;5z%WTXrUQb
z4Ra4rt6JICeIZ1T-oO1Nb3eJPCE9(uSb(NhiAI`>vaNY(Zjlj9Bne0IX1guLiU1or
zV()3v?aEaru-R+HGeI6y4cjx~A280NkYqg>S#*nw%rxjtql7cqT%qRWEdh9o0B4By
z91a(spob!7f3y>ylbv)}n>Ov6{za4uvQUImW-E}}CBsB{*HD=s{Jx|XQHF-lFbRn!
z+JiSp)<k%qyNc_d47QcWfUnd2fbSx6k2Q{&p-bME3;dTp%Gv+R&MiaR_Riw@c506<
zK4D15C*z`B2`Lp7*flKBR_tCL9__lqG>#vpdj&2vCFLg`Hz`U+F4#rbhfk7D$V?`K
zub(V+Eu(Gn_-_L2Vh(v9eL8-E&EJ93cgaKzviz=i+W*0KsmzI|B_ofVTnNx|E|QU!
zgP|qA<uqSxzttIYJkTz|lF0j{;z!Ql4RJK&JQGKoPn+qROsjoXd-XZ(738${_k+}S
zUVEpw_5$AYYj4-Bv=^Osywji6gZRWvHr{#cnh9FzpDg{(elq8bcZyBk@E)UGPe9PQ
zpQO)ycCE%crT2tI?leZENb6;DKdC?XkiIsK3@sjMua~r)B=W{==|cnj8v4e$E_i%I
zuBW}KH?;EIy~1xp^roEe#8n09dkCPFaBeIiGW2@h=kZVd+zlR1lMUZ$4bwhH4YKLM
zufGK|DTh2`v9k09@O93g)ASYo+#+EK{dudd=ucg>WvA1cO1WM(<|E>1b@2^MXp={i
zK2Tdnbx^FXb6H7!@&fkodAUx}i;r2;8E5mhb#?LA>*LE#j0Y-t4<+lhvFC6#C>2(Z
z^hv8|l8l)$GgWL2+H-ovRL!J0^TraQ%y1yV%1ikfi7$aw+b<86vk?YLwU?S=iNpF{
zRGJsam*Q3=Xo)?ysOZc>&0{py*Q}Uxru4A2u;h<yV}`P1De>;H<gDE}CZPEA(K;qz
zb=y8tj_5?5N-3KP<OvH|fjIR~Q0o$c+JomFe6J5z;$@e}A35!Ar)Pyf*AEM4qwO^<
zSSH`3Jh<ZjC?szt9*Goa)vV$rrACVZ41SG>Y?4O#X;Z6lYY#KlV6v+|IhEcJj61Pr
z)tpPE&<wgI@6a3Oc<bXkGpd|bMQ=*yRjN17wH+GvrpgSU!G%EszsuNW@5J~LwLH~O
zlq#3jWQ{jKwFm!rKn~=Z^lDVg*M6DpnYCzMF#VxtjPTSw&eu8JO*UXK>(w)?SAB94
zA%2KrU9tJP)Jf*6-sg;^w>olcUNWX|hCrD*f!+IawlNIGqjQ%p;_<Rz)eUg@eokfP
z@%KHBzmHL9bnf~!6c&H4(iQ&J)$#W_d$W|hA~wF+OWkj&>+G!*8XM|ZAs>rBX$#($
zu)bYs&jw8mnJN~Zp}!yy?IK33)tCV1O7uyvXO;_v)hFv1Cp_YF7@m=K+aT|7Lr_b$
zyxXSGm*jKI^dl7=f+=~QkC$c2m*kWel1>zZzpb*OlheRhbA8#Nr`eWXe8jaRw%=$U
z_>-7w-R6J{x72fb4T<V&R?ivloQEarhSkT15j~kTMCWH5d4Qdt!BUd=IYWy40`8ZB
z7ZyW<rN%PstRNm}L<666msmwEk0Qk;r@V1|B1Dx3(@)Kp0C_pKSD^);RTVHby5z;r
z>fzr>h!-yFw3*lweQU(bmD+xHo#29)kVHCxKeee{^o*SwyWcfjME09tUP*;rYLU;p
zQ;!?;5h_PhW69FBv;A1^T|1UT_y#tZKnJ4jzP}5z&bNB?ft%%2Fphy7OF=hQU@P5H
z(BmbxZn3pr4cg`QGsI=EY-m-IjI0<Y*QCoINbrcAFe}f>Sb6SpaW(;fjp2~bRT<Qh
ztEo}n&jnp`Fh;4H?j)T1{HBSw`32rLT4Ubbt2Bd}UwLqGf{*XWAN$CtWaUl%$?=25
zvmDNC>?UPxc*N-r=CT8oAR~vOS7x+1&x{5id;_OsQGWfWeR}<@8EY*Wqpg3MbL@CL
zuhs2yT4kA3`ne#khHmi|GOxYpyz5;)E26FNC=y%iDNUX9tI@inneqw2kgJ>!syopI
zGc8qBB@obg<5Uftk2VAk(Z#!WY(6{Mb%6Ae@>UA$HDW>$%XFC#oPLjZ*&!#IJQIVd
z!{PNgb;y*Vw#j7M5S{;sT0;F)NxrI0s$!$r3H5`_pm>A(qVT1dp@LC|AU-?T@SEH=
zPBOBiyIscw*IBB1G+9|sh8djutkT;CZBS-)k<YBU&JBK&Q`hVZ1UcKc_GYUpGJI$;
zh*^310lXTUsQOHTXm0fuPT1<w?PTQCYbAsXWG=Il2_%ForxopnC?p~`?_+_K7QDRo
z-t*HOMlFfo*Ldm0&t`cfx8X|cCbup*89BYsNnD2n5X01?E52bZ!8T=0Z46}%xewO<
z)(P4}i0T~L3s&$Ty@0!4ea!>8{L-ALj|1}k@(hq;1_1d2FFzB=-xT~CKpvI@<dSy*
za-R^$q7cZvbAjC5Fj=1k@`%6p$K;`(2gu?74v<N)Jt|9>T*<j}!7Ltt$+(0A&Ec5s
z2vW?%Voua9k~iu1w?!nLh<4p=tgN9k2ZtU-B&sla{f|x9)<oxjPd}0^H1lyNAtY+b
z%rw*&uCRrzHgEi4>Q>a9=2kne&?n-1EJ{(~L{go9Dt1Ulp1H=8_s?I>A+N*Sj(caw
z`>zlBW9}b&eGc-j@zcv4YV5Ok@H7da$6S*3f@67LJUBW8vNjjUU5&h71rA335|sIG
z^arxx^8k6!zXRm2f1L$#SK141=Yav)b+yOj_b<-Dqyuu*s0@&Azuq6nU-I%Z1!dm9
z+(iB7!sK>2K+d4OU?c2iK)%`Lf&A#A93a_h0F|>}7Rc+@_6KsC&jaLJ|NJ+AyjUXO
z$-N`(1*e5TP6&ZKB^OAC$?NvaVDi@2`U80ZFFzBL6aO6`AHO>bWF_qdzve-DL9pvu
zn`9_)m+jnTh`Vfl(cX2r%WQXf=X$)43zRzB&pun$V}48oLB_N=`)uaWl*azSg_lW)
zozl3jPU2jR@xA6`Rv0K@^qQ%$(JW}nS~`|VF>;9&vg`?e(T1zCSXc`kUV$kn#}u$M
zSEV?l)AGBkaVI7?kjDyS4R10-Z~M^?e(m*yPtzp-0*6_D01=nb!QYZmdJ}?U$wCX^
zk1m)eoe(ZfOGeht5j7P<CJ<=*Ao+UKUuvWxS$0wxI$Xg@6|6#Y8cy2vx>~+yhn{d#
z8|*vBjo@OY`7&`bMl?3)0|9QjEdzxETrh+UmeAmV9<ppAnqFIjcrw`rtAa__xdws5
z5FTc2_ir$GsRPswJTIoJBBs%#O;I%}H*4;Cx2@XU&R=H8Cv@ZGYJ7E%bu=@s8ZB0}
zy_CA#8KBzvJ^7;|$|vW_cj??nr1ui@ViwpAMbZ05UNU!+BEG+i2#YtmEzOlC^Gkbh
zo9%V3kV&fx!9xTevd6!8&8w1Mo-b9RNN_UJw~c~%wux7h7$bfxdz3s;Cb7J>NCUmY
ztYX(bTN;CDZDSW#TA&u;X*k2_mjDwPx3^paxQKI6sCxXtcAx3)YUw!Zt{((eiNK5O
zTP3qWWgB91{`L?}9Fhe)!~iw&`j>I$5Dzx!+JUZ(h((zAp{cPh+uGgc1n3L@S+uvu
z|Mp{zh1_Z&V{$Nex#)#+#jKSBCYUXzkFO$}mYI79*@C`lKpDKU!VM$J#Wo;9@q7{C
z997LQO5-m5^DRm^qRbg<bfrq&uxx=J5Ovvr$eaLobWzfmAogP<(P<4fdQQ&7H+Uo3
z`4{=_%tSS+-o>-V_SJUujf-}#q($h#v31A4x?2G!rgC4OJg$!g&e6`h`Gz3K*uIX<
zOf281qRCMQQcj4Lk^y~)v4o!v`M8b=FgNCja)b1ExvmPf@!NDXI#~q=)#8YlMhUg*
zWxMs3n1Eg3Lc1bac4f|1*8z0c?84XGuRacl1*yX=^5nXjUN68LEd6y=Vern%{xmUo
zsss=7xlD?zP=iosooeQvr%s@sP{&XV6RzW4tfc3P2yU?JZT@|@PuU1Ja+08x!27{B
zZHoS7yOchm3pgzkI?ILF%3#F<E}@hyfOS-r1H%Yzr@ImkgX!#yn^#hW3KRh812nCF
z9@1X@1X7K?Y4h$e7CyM$E~P)y1@QHaz*k|BVU@0|^uEFgf7r5s%F*0t<}%O&e$d%c
z(ZSS7xzRN7cy(gbZ+DhrXsPUewT)$?;S5$|Wh~iVrT9;;s>q4|{KAWT-;&fG7Iq7j
zujRUGES8Mi{#6eds6=gqb0jch@V0r6{u@NCU0^gT(B0*BRg|{jcg$GI^hB56;!wPt
z;TE$<79&&q=Wd*3F*2+wr5|!`hEv+MXK_%BWkJoJ4B}+{^JH)g{aK7`3Z;=RgM&%R
z6m3yex=%gCbgNDsNu92FSCqbHkep)I4ALn>IyN!Aw3l8&&pT;Y^fcp<j2vpt5Zwk*
z?iJk*>c&f>`)-mX?iAs_3p1c(fK-A`v}-BwM!SE*-|$5UX|!8%?4V`7tA(XY>Poa*
z2GJF2y(ro}L3h?AjMgDyfvnML+u5DH;$rs<fKpRb3sh@XgQBhUQt+DJWd;Jtfr4J>
zAx&W-+2x8Z+nB6-wIM2;pw@bfJT6(_xkRxbIJd!?uv#85vM9HO6$j1~TR>T|jaedW
z5PZqcaOScM=7+ptZ@N8gRdbKv0JIjjvE_eAi>-ZzW;V#Nhr0IHpO7HcZlOodY?tTU
z#NwgWN|x5P%PEuLlISzoEC{;DH4qaq@83Iz<GozhQf+o*X4XZqEi+xB9~2)p`wU~@
zWAhoL?c%lrL%Mer2?pEt=pZ8IiIH<RwO-T$i*MjARmLB^Omp<$#$jPC>E~NdbJkrV
z<3EAV9`&W$cGR=Bi&f2C{#ms9DMru!Ic2}4>L1jA+Ea(Agpf`-m^k}uxtOpC?Q3tz
z!32qMIi26hcsTQ5Sn3RW5c)@11aEUqZncKs{kC51a1I&`+e!Ttd<7q^wn52z?$UTQ
z{%0r4<?`a6$;lPBI_Gl%4d8qRCIfdn8;0|_PWQO%=5#}7c^;<YOYkZ=kEKN{<kbeE
zB*~Jc+)cG<zAHI?&aFEUFnoi(4D8wNEL|r7>Mklobx&(kACXg4&HI92k+;G)5*kw=
zu;sFWjj9`KsIg3PRC>ioKEv(MXC)y-`Vp+D39Sy_*Ji#qsV`&Ox01N*?D&zoXs-jU
zg;BLlvADuDIA>;&gEE$gsAqn!gG*ElV47A;8ZiexW9@A{k5)`7mY2;!+av652i>u%
zc3-=T7Rr+)PBH$WG4gCPp6r7^R^?x%Mp-agN7dLUO({0~YLwmWP`~=?Zy>6bGMABN
zHyTpO>oG%`q>`_nw4)v9cuX|2w8?=qyW$FUB||f`5Q*M4w_bcgo7@g8A77VQ^C-I@
z`NaA@ErMF2Cwv%-UEW)*Vi4uVVT-Jshy&nw<X};4j@Dy-lqj$ioOPKy7mDHH<Y6rt
ziVMQv8NYQ2>e&0j=nryL+*VUzoiqn!$Sw+=xhOo9OF(Tl^(3GO2_b0<%-w=6g()|K
z5<b|W(B^#>20wUiJ;?X0J$Jb{e%ZpHXOO4bfnuF>1M6aTGj^_dLrM1H;d7&16Wyz5
z_gMW%loq!NdoXjt#wT44lG+i4sU2O(^b6FKz7Kx*%1t{Jq<<Nlw!%cT-d(1+%hB%g
z^BD;2sWy4hZ~XlzGRXKFX_$`oP3jL+sU)1}(m-t!0||~Ie|-~CaMSsMbkMGPeMwmc
z!5g=Ub}ti+xNS%j&HZHhWiwl&-EtD5_ty@)<ft!S;g=&&faIaxwpqcAZ^#x8t6(!d
z8yPo=endB$sYOt9E-zaa^u3-b^r|Y?x2@RQTK<>yjfZnokaIHfl>fO{rU~KcUoCmN
zRbnu{-?^giS<R9aX_ic0M%YT*>H1YGSRHtS*5lxa<-&pJv_4}k57MDQA=ek*PCu3R
z4fDhy61LWh;KJob@F!cK?E!GEi?j5jujP}>UEcu~MB;Xl7_|_tx)g(jV^;G;vYA;h
zf?sHbB10gv$A*>15`NVOUJBEtZiS}26edu^DQmP{u+VrJG-|6Byp=GO8L{T~LW4<T
zJ#KFGH?$fiikXg<13;at?6r;g{D?!X^_T~ibv<iUR9q)+puMd3-k_Ua|E4k6^-9OA
zEn=f)@j{cdq%&Af$fX!J>H`ST&iQ{G{9YEEcO}T)dOnFikNW~eNd`ZUI|G!3Q*1+#
zuzS)#e=?zpoLOOmsV2LWo}x?tK@`e-jlhdTLX^JOXJ5SCu`u+Kv7^eaMOG>#xU3)R
zOO7tJFM}_h<Xm-V5GJ4TQ-#<=j%h4f?a=p0Qt_pYb13CooX7$WYV1zC*zE?DrbqUb
zN1-376j<Nxb^`@}0=TUicS~}6^`&|f;sY82OP1Uv!NNOS@5)Wu1t)sTvv0EW*z+}X
zBZKryC*}mFOQ<#xnYWF_eXk|Vf8iZ+6D+T|$xTOJ#!DafJz5PeGDtGh(blD8<hXZS
z53L(aM#y`S>c3N^!voE;(_%h;^C)?n3RB+;j)ET$0lu3D>Fd=@uRa8!#@nD@<V@`>
z6V$nJIOl_zi{n{eykTxmB63iNoQ~o>?NVB-3-oW7J*#zm59y-a7of11XYDzs;+W{-
z8HL(%^yui~YuS5rR>e{5;Bo9wcJ`>4XtY6Xvg_#aR8^lSJ(7#t(q|{Ch$ZDYK^EJ<
zNBJ!!K^<#4q%@DAf>!-FnjdZYaTGtU){lw&xaI-jK9-b($&Y(YcM!EfG+St|A~#fu
zwH?vd`S(V2CyE+&ANh@trTMlA0`C5tn3rVpt4<i4d7I)|TdP@G=EEHm_gHfcq_6ka
zJ=UXZSOo%s)&==YY+rp2CRRVi#9;yoKa3PWAw2}#CBX}~eH!o1JIC|x?Z*$`-6w`-
zcz5w_{dxCSy!>q5o&U%Ggm(*X%<}F;S`IcSZSi`);{9zYcMz-q#VSHYsa;`R&C#cJ
z5D&x9y++V*5CW%*!^Ny9`B7baOT~?Ev&&JJ=%O*N9OiPl&XvKwKa=rC&C50qHB%C%
zxGnHP<CH^cvkj|41^=lk<izi1xG5X%r9my}OqTYY<;k#1T@D%C{MK<pGGy56k^W>j
zfR~?5hJv^M6Ea-;?JOC7@-Sq$j0frKgXfyDMY9P~<V~<#9LqZ&`W9)ay!jO`@yBSQ
zKPCokLEr2aO<K4ZRwZ;+UvZ2COm-33H{&7}KIMA=!UwFr;)D6)RduE;U%CjM=JtcB
zC+l70<ZT(R#YK?FPl`oh6+)v>Jr%mT_*E91@t40^)wr3qlw1cLvsE55O9I07%X3>A
zk-z;V7oiJgOv|CsC|XTK?kF%CO-D<#|20D+#t2G#xSp4uMuZDZtxdClLp$FJ+6&e>
z@^t7nXS&%>^JH~9-v)nL=&14-AC91{;CUXT7pi0ZH`{mLKOn@UzK3iCWe=O@Hu6#k
zSkHr80%qw4o;JGi^bDDTx$B)ey1T;QV?1qF42k(pifAN%D5c;1E$MCKPdYXe-{?M%
zrw?dY401lcM92w!f>0Zm_HH9`Nkf)KMu=RYU!h)=1;73C03t=Zo>q;#Zt;9|rueE!
z&EKgvou9y3FN;$UF$R~~liC;}>*W>cRY~xnk4LbCL)>K>7r<Q<4>gEJfW}=xy?POO
ze^|&}ejdPhiw`_+ndU7EHvMT3uxreE3ncWCL8|R$%(inr#u=W)qEkW^LpQZ6y~gc1
zbHtXzY%32<3joM%-9qQK*@?jHj0GkjM6;kuM#?TyS<orJz8okZRp@ef|JJ~v2>X9t
zm^UMcC}8K0hnE-s>o6L=R);AZp;<BoS?{4P{iBgvUU!`QfNpVYdv(QE>CkoVaxv1f
zVBZ^H*cFt1y$kl;nY)w%q~Z%zW%TqObiYqSoTb*lybl^*kCM)}sM=4^)Y%Z(H@HhF
z_7yT@`t{aW+r;oLjGMKM3|aI1i^~d9P5QuUJHyvTaP9EcS5wn+YkDiJCCeho(!Gqe
z!%(6H&}zDz-m*}l1<*o?N&Vhij?9A#z(CM`zscuS7lD%LHfqjFXjVRLe+_@WU!w+B
z4H{fEpzE40HWzL5wvr*VUovvQc8b|Z`-#`3eVQB-I6VX>1gD8M+@kUPZW`4JEY~V}
z3n$xzfjJmqG$#x$-{+hu#wj>F%Nv&k4_*k|r_&KZ-4EV_q#HWdHw)e-!P_MElcvyM
zp*t`jB7cbjd4eR+MDd^W6A|oNBj8E|HC@zL5s(;5ly1L`R@~!uzdb1w77F6zDHn8y
z%}!9}TD|(f<$_v+rj^%k5+~cSAd>}(cr%la=0ykQmQ3g$xP0Xm$J}C4scB<!df!Cv
zwR6bEm|ytkDhno%xhWU?SL#4xaF7x?+r{YUDA$@-FhR?`da7O$W?-xkx$>QnG(n2p
zHrc*~vaRkN3h+b-piv08Egdp$0_a6RXcF!_px<7s4EQY2{`=qtrD8rJ7%*D0n?`Xz
z5bEG_;UE49o0A^l#-USObVw;>_^MJgf|dM4C=ePKg}Nvl^M}LzaHQ`C`5C~1uQq|L
z2avi@0<!#+WNad-w|s+FwxeCPG^2}3F~3LGq`v~-I^B!GK2{$XkI5Tw4AyCmLC9dR
zRk-1k1jX1sS^D##p2w~`CWpsBk%;h%jgH5@VO592SO$2^o*FnZ{@oPvY-TCPFWH;S
z7%$K*RNBZ@|DgTMm%OtkiP3mZR}`Ujja|Pena^yhGI+YjF&inzt{=g}JV{;Y`OP&O
z@>{`g9lt?C(+a0+$j(T~_y<DQYNX_DPM7hFod34x$E%Od!2`vnVQ1vdk;s{deD`DH
z%BcdueQjJB_HhGns+(bd_1kl0!C-y#wFDo`hc_3i(p7w7L9}G)(>uxr%TGv_rv3qr
zoqK;<#Tu0%tlsymAS+i7%P8~cTP4KGpNMvMDQy5+n*<_m>`!TF3*9ljNJj2^*%|jB
zag@4hs?)~;lEvHZt~?R4FMj=z$g1oM7MA+llwNCDL%=*pmyOIqdQ28lMkQ8Wk-$7i
z$Np(Y2k8$~uOcZu`T@u$ZOP&ftP*I6Ay+V<Ah_o>4x(m#$aEiFSu-&NJy~3l(#HVB
z*u?{wD1A>=B-`-|8p{->)&{;Zt`4LI1l_N=i8sO{w|RbUtW1pmU-xA>yYF@X$iBL-
z!ZBA%IS$?>!;!DJ_^ef$+Ll<#g?r{Sx2m&T{dhoxm%pu@pJG-?24fH`1S7<ZiRLQL
zIM(4T<CM^)XqZ$&a#59aF*8T81lF-RisS<S%A>7=D&*F|cLl)@m;Md(b@>v~etw*X
z7AW%WWl8Y;<pWEpC(;#g;R2t~B7vgjGTsyfm-hQ6xMUTT7*mO`hl}l%B-=gGV?o^$
ziq@%O`V-joKA$9$=~pM}I!v1Kj2!K9Tj0Te66J5}Lun$r`VeDs)QcA($Tcq$BUeLO
zB{u`sI2DDLp&2er@J;*|v9Z-{+hLf(S7;B{pfVN*N!D#qIJ(#^dm!{;Mqz_*dZVsr
z6KHOZg`ZHcF6BUG#o#f07F~RwTa>|?>!UTMR}vRVD25f{qjtT|w53wIOl{z14yq#2
z3m2-hY|(U!#xdEAJ#;ilRND}ctiOr~0{eS@R~oO^0JfOyWCozgNKw7>$Nhjrm>Iv9
z^Nh;`*FE|m;b-^oPBe3f9>O~r_4En)R7ph{=ZiNcOs*NNEC-iO7IV<AX8o!PUYP1+
zw^7wmr`z`^bs~y<%txdOtWGt^_+@mArUHoJ8D>Ib206PbIy`ViLVr6$s|gq49V$!v
zVx#@2?-e4eHBUynY%{XNsNL;7_usKEy_*Lmn4miiu6hoaA5$e_=$}{JjwTB{ExHD$
z1>oGtCz+tB&!6<Nr94p$P7IOeLhRo6yn1Ng(7Q!^o9=WxDs(1FufD*AA4`Hio%mOa
z)|4@!vlo8j3wo1?{J}1nKBSH?LzuZ&?H$xA>b0kK*GrQCS9?!^w3x^}FTeK4mSMa}
z6u)PeOl`I^RDP9ri%2<D{;nwmcx<-HwjJ|7x>O$}Bl|?uyz~&J+z4x6d2dFJSnzAp
zr@4JN$bI{V_hbw49A8_zp)d7gOP^U0Ruuf41Ws~#G^wJBQ^(u;rFt(83g+AUHzgT7
zlD!F9?a>;RwWL1qi79J%p1PbHP8~YiKa=qbVw6q&%QnFcA$Qu;`9so^2}ql|i6VU4
zrjmvuv*VH77GU|Td%xc<&Hj(<0C~w7)L2MbK+bp~Il1Ca=lne)<jh_Fk_Z{U+lBdX
z{sbRrd?KOh92!mOI8hY(uG~Fmg1uTyfIQc0P%c*p%9B_uB(0;S^zME+;*3g;O^GF#
zV5*O=<^%`U*JjrwE{i7n3=CU|*ec20Mp9@joSce*2s2+%IvG9wu#FJE3QL6oqIpf`
z+nZuZzsE+l@C}*5DilgM_4ZhQE!Q<u^95nyWaQXsUW+Be5gh0aW({|Gro{E0j@L>H
zRmEyvnaQsEYuFjY7U#z5;=@L=lJ$|l9mc7=vqlzaIqUGcc>Tzt)E|w>R|O5%L8TY%
zW<kFUK@@_Bg#T((nY&!XS{Ceer;T*ypU#K-^5KB-;$8Zxb3Ogcj&H-khvO-6r-)V*
z%$=$hpsSpUGMtKT+fnE!+t`2JuM9hp+ot%~%DrRN@mcWV$}p_5ZoN6K?Km*AXG#;9
z6Ym<36W_~w@5I-LREBVEgNHi2mFo2mhWqYQ&U0U+TReB8JwqBdJRUee+-<h=*&pEB
z2<-+%JV<wmw5ruBSgS2t3;k?zTrC@AEX^Z^B=lcMXxA_7jMoj^lxIOU<?6$3ppN`i
zCX4kIoS(@8B({UiSd-F`V|hIcr@TV8&HxoWekydFV00X0yf!&Jzh^ty;jNtClZ@PG
z$yg9qe(eq*AP5d|(0Lw}vu%@6bgBgtQY1VlBM<#r`MZ1*+zD4{uy=(GC;V78c#e(7
z70(ALeza4R9;Hr$G!*5%yq4UvQA}8dz<<}ysskKVOC5k{qLX4at%KSxIJ8~<mx|Ne
zg6#1NTDv#O8n@-A@~H$@?_sVVP{Kn{#-=+QoN=`o9-*JQp_~aJdr&1#!Gx<teNBkp
zXk_eNE}!`r|5=q_XlF!(UgZM}mg*^kjZfMj-ADV0(jR~1EKgBz*&1gmwKTWu9U+g;
z348W#2{+vCTxTG*Ynh=jMCTHYkzkGj7isrQT3_-w2%@zZ9Ko$(P4X&|zcBf?yr0l<
z1TH>qFyOrINshYrJ%NU2lo(%RptT~38Q6p6zs~^KmV~-pRvfNK6u<lr^~9{mf{G5o
z&yDd$gMO6-J+J$StDvf4)RVG>2@Xl%NR!F>g4Tqj(N?t~={l=gdU5iAI!v)qM|Em{
zy0|dd_ct#0#`J^Vm1SWtV$i1_{d!>8;9Ea7<@b$~5t=`QVZMuFIrAr1e+At~2c|0{
z#{NVe`3pKI4jz(`_}wAHU%G^WpAk`S_yHosGFQHX=yGewft}2%nbi=r=zg=(3*7!?
z!4Tj`cVyeo+Sizq*TL*7%1L$##?6?V^RIP-5{{kSD3!BL6cWz0DBxU^3cN=nn}Btx
zMFy{KHrfjVIb4|S^_UwIc|BGlyFec+eS*^DjOy}-rID(GgxLP=&>H(;vjU~R606lb
z(Rwu!G3HG7`yj7j%dE}?ev!8y2llgACQQOD-+yw3lc<v5(&MtuC%7&?Q#B_dja<?{
z5&@dTiH+%-b3Z@O3nb@#<$TVpQ}L~v?DOw(Ni|8vGc}~9n8<6b2_tKbP3nIfj!jH{
z7>5OSZI9Q45<|XQ+bOd8EWamd@4;a_0BD*mfbq9K%cR-zks}2o^&+jw;_(|~!xmT`
zybMt}xbbMJ6q*L0g$!>rX>cN`nT)20AtocIobB6<4Q#h<EA9U4z5lG;KeUDIVl~>~
zA$sNZa4-&?vnGc@AG^jeXbcWV**Ye43~7YTawN3OawPJT<;Zf~gd7PIcKM;XW=(3o
zqaa5sCIjtQE3C$ZoQBk8#4&^KpMbdE9Ey96KWp*)w*-0Kd};6s=LD*O4!v@$7Y2?|
zV!`EKb|DqOgQ#ri#wKT7^R28@nosnHU(K?ZqReVdKFZcrZUPldc*j-P;33a=gw`d7
z+s+}n&&T${iL`#n`REltZz)UM0^2?S-xQ=S;a70W@!((xzXtewmy5YN*TaU>#oqb@
z>e{1=i{#J!jv9g|njAhH7)G%$N-2Dt&AF)hMmD)EVvYK~3mw_6gOP04A#~OqGNj1!
zl9ljC`RRIBtC17JDwWf0A4qA^6xSjv-wz2O>j8W27lVM5W@ZUm2;4fZ>#(<;>w5f+
zab4IufC;0hsJ`Hkw1cBELmYtdvouu_)J0ZFxNS+e$72YG4{l`O2#V{VgmUBu`fJ9I
z3sha_`dZPWTJ)efbZvBT0m|iE{igTo%cpsv!N<o?3q`<Ly;Qc@p>PxuQo#o{fvp-G
z)h-L(;so8`;0w2yG9yE>ZDIO`;G7r$pJ}XPAYYtoFQfCO%f58x&o4>J6=pk9?~=vW
zes^R+EDkfszodISJG~aArE&gwBf<e8fFk2K2xDGN51-sKVmN2o+ObQm)W$BB$zO?6
z3Dv|jh-e|BY1rP%Xqu`;fH(B;l09b%>)6Wlo1?f{F>LsRIvz}kFP+pI4CA=0-umRI
zn@Jg;#+MwxLAefKnc6dKxc2Fp#HNhA8L?AcP49IbV#J2YJ@q=Fc+^9;3Vwx@@Kf}r
zL~`r5{kh#bV2eULy4m)p7Wd2m73>~b>H>gL%UNF~vNWW20jui5G^JTFnK-H;w<XKH
zvX)FNg0TZzvJEHtH>CPhJs4tFDcbyDYZ?24KE*0S_NPj1Pot_3FLKnnTei|OXb~*i
zUZm;Qv)CX#6Ag&x(PpFVby*i*oti7B)JL28;VpP*avsewdQK3t{MckOd*1xnOPJI>
z44#?-KVFlapz6nu=Qw`E|Clb6>W|5c__4-(A&b+x(+~bGmLfhGcZwSeZBDLN;iv_#
z!pnkp@B;=2l;+yx^!&&;6DigAD6COE@5|A7ne!I(CK<W)uYQ8yHx)T!V9ix0BCoyf
zX0vv&qQzsU`Ejru#{N5$-$U7OhjLr?s<E&N9ZT8pWP*e%RH^xe?@QVSJDK1TD`Y1V
ze1!ri8OtWr*5oI+SM<#72~V%4#puM$NAVOWRxLNB!zvC(<c~NL1(5~}xxq?s*H`5$
zXpalGW$$<W{Womei8q6|-LG|vS>o)b_GWOkf3%mlH5nN-l~MYIJoBLs=;eLF{WpX@
z;b}D)pAdU2{zLLm7EG(9CL7bQgiTX5`bqpiJ<vaD-)*&v9~h@4BQtJyw`LJCeIfw7
zTJA*saX>MDtNa)J6#iT9*$tj?{P%PJ;IsMffT@oE%0&URx~-LYjwN7Npbqr{i|C}t
zo7D{5LKGyc7kA3DNJfSSo*VbsH-{S|)RKst^s3{=f2z)8aqQE$abL=Y-1wluFbFsP
z>lG_x+&I@2s<d-5PHDEYGU8{lW&TT6$hfhgA2&YgUWpqmcHp=XqSB{Nm|uMTp*;#x
zABo!8JOJ_B_{$y7z2JFne}DfI&vT`AzcwXD$v+z6A5}Y^s~69``xU7DFH>fDEc4Ea
zJeHaE{jIQ!Hr)z#n?xlqc$Vp>uO1T%<c~S6bJADe@6RvIS$+v#sC67sB#ux514ng3
z>RLx?$nQp(Spx#)OWyI6|3diy%AfwSqx^@C@`=eAJ%n;V#pIrlQc2m6^7m|w@<UxA
zDBm_~P#yI4ORB}FenLp~GE(=@K`Y%WQN2tOTy8o@1dptL0D|vmRNELPe#lXqe3>IS
zYiB><c`(l3-{q-WVfSn8pmzUgq<=KY5&YKUAo#zOWVwxdQ20AhRX9yXzWQDF8-)_0
z7LA~ZgJ8lje4-GA`9}g56Vuyzuq=xg_10Zt><^xZp{8paRV6M2fs<us;<)1omGsNb
zBmC6wTll{D)4%V>UmrOBLTsk1ANm7;4d$QyzCVB6<{osh|DUsn!0IhxlYW^+q<zJF
zUbyxHvxugVDy=>{x024`7t2f}Ba8m%`R)EuIs8U&15NX%7ahMv)Mm2y<fAkE*5FJU
zm_8M4a3&}6JV4oy-<F2_wsKlIKMNA2-*azG#hClNa$2R{xZ`+0xgC~*nz_mf8pDw^
z=!_n)is8<1uf%W_LQu6aTrzUqVn_BCB`f3034fja_rt0VR$k(m?`h9`_xt<XO)I_0
zu99PVgCE($weCnbXXd`?A06r#?)anNz_0Tx^>^6GGY2%!v<e?C4FO6<-n!ZS&VdV_
z94nsu*+eRNUn=MS6+cY=+Gq2_!nZs>{CtlA{P4mHdHit9#82UeJ1M($e)xua``P?(
zffXE-AEvrj1Nh;J`$F`8DnHzRaXvr%+~4Q%!?*2W9zV?Sk32t2I1+xioM&6-hjV*F
zfRd4yZ`>+B+&tm`H9y>U&1dsN$D5uXZrN=BKP-PPj~@=5@G1OoD`mIN57)Z4pUn@a
zSiwR0;c)kA06(1fKOy=*l^=dihNe8=P(R$_@ALTKdV8414_Ep}o*xdZfgjH1+1B~t
z#K%H_l96Y>y;XjgSG^T}xWoCcsC&heuosO|hs~znbxL+7oud(Bz!@mYN3uiY5{+1b
z77PJf^2{+i(nv^{&0{WgH)OhTv$t+C<3iaMg#j=X6Au@C6-6RSP)<Vy!T*fQ87G=e
z!HUUt;r-$~o>fH>O?51Bc6ls5u0n|m7S@rK3LBsx7DS_Ve(|wQ)Tj;YQ+aS|zxpkT
zFF)DWUyA|a=4^_S67_lOPnIUft1Fu72)iP%E7fRKaH4M%!0WLkyuh?*n2D12@w*Uu
z9%s<AVq7kIKw?4gow2#-Nxg>JcWE`LG3FgvkBI}s6300Vt@)f7N|rWSYhe%6T22oV
z)~*aZcmhXoM=ENKTZU3A=6|pr3>(;kNrTj+b0=VjJ>hhR9EF!PHpwC=SUn!*ojkZd
z{g#Rja>h_12B@`+V@uP&MJkk?beHvOX&dL!#L9RH8<t*iq>={x44?>85<K}~{&E7)
z(zUwH?YatkOsBt{I-DqRJd83dTwlzF63Ixp)i#X5YDmgpHnrJYf#^@GMCJ&z4N{v<
z#DVSBsBjUr#g{6wSzrlC!OC%9V9<E(=ji`EpVI$#YX<iJga5eyi>$W%{!`ok2mK$r
zwf-j@{hRvhuP_TuYD=3P+s?6a?L%HoM%s^cJm;1*6&ZJkMu>7b#9Tbay{?p4+eUK1
zhAJn5uz>_^5Md5R3DQOcax3xP#an@w0mPg<T?^1|jAzj)Eey$O40;2Y8YX3XGhxzz
z-XtR*RQ2zJShHGPWdA$sjaPsT>6_^DO{U7EqXrSfV-KTi+Epj)nq4(fU$89usQ-PQ
zKYI0r{bJo&_`lA&5cSDXqeN&z)tCi9Y)n^c*q8ibt`^h>jp|a9u;atp-y6d`YflJ~
z<-Fy?SC$KJ9(>VxRcJq8gt*gb9D4|@)rQ9B|1hBJJX_G8VU<iDiuX4sR<aNJO2~6A
z2wp!V4_@TI5mQ!<DZ_Mr#Hl505Md`Mm@?I@M_8TVf>vZL4?NT%Cu?GYzx#@-Glm5j
zV1i1BAlJYSyB(;Yg<oH1vFC4Br!AyelwYTSO`YwADqkP#AZSw8`X7;7Sp{d@i%kIO
zLKi6>wN(VVOTfFok5#eaZ@A4C*$YaHN&kcL{qS$ewfXp`!CFvh`~a~vSfdSk>qhFo
zlzxw+bdolVqxGOD<y085Z&V635}!5eGoG6r#x)4edB9EWLlQrAQl%p8*{G+Fv}N!b
z)Er886=D>RW#OlNpD(x1*5~sz+q6-gG3c2T+rSN3AKS({m$0GqQl0pbTy2imZc4qq
zQ)QD^6=}BBg<djw0PmcOlW7~n_+qF9T)4rL+8)dlRv{|xu!;vyYFm&g>^7ofYQaUr
zrZ6eB@0eG+@cHWL|B5b`7#~aIr=3Z^REp0Ul(?rjWxb#NW8wL>(d4cOncG2dN}^=a
z+)XpvE@Jnt&6JxGy}x1DB|Q4_Og2lf2a6lFnbfg~TT7Qsjz0<=_4qb|zVFFc&GQOc
zyF=2|mdz@5Zr-MCpGk?bxtnKvxwWlrmr2q48;4!O-4$)ab)Z3k9f39Avzj+sw`HHS
zz3CX|0bs;46aLlpS`cr$WQgZX`6C>asSn|Kb*XLqltj^_xu3LMalzGXqv=FUo%rN}
z%i8v2CaRVWY@E)9Gs*GyF~WOXrY3bX&CuF!eGTbHR8M+w>+xKR+Nw`Xl+-<Z#g(m>
zT-kQT#V6K0-@4SE?|fpSpzgue8DG2L(hDxT;>4OIt-nY=n0=7`RraGa=b2#jv~35+
zkl>4|Q~CifMJ}v%;*9T%5SXU=kWNZ2aNK+6d_hx6RRT$ma=NUEu4?Ti9kV>Nt-iJI
zQ&m|eVInD?NrDd!LW~~GOw>!5_?ML@n;$K9`WQQ)pa}XH3y$!ELDL85X($CarWlHX
zD}L)np<ePKl2+Wbep$?jTx$l0ar1sYMX`iL4t-oClJdGJQGC>L4J|ESgDhvWmCCN7
z$%VnUzM&+eOmIfKc%pKGhe)neN(PZg+<w$|nSe`1CVV4IA8Mbge7Ux9Jbe9UUR&`g
zA|h=y!S|)aH*;WKGYf;=^X`L(4+L$>l^PUZXA570?FS<%bjb4aZr1i2Y@4iJl&h~G
z%}={yaa#e8a|ywmrJ5<zHW|5NUyr#LNgU2#4kCcLq090y2StQAFO#4xv&)J<wXZSg
zI4uWrwW1MpmZz4Cj1OCyo@q%$AaZ#2{pyG;9S>RrHy@3F35-}`Z+=;2SWYX34G6xx
zV@^ja)zKz4qD@3jTq>xqErLAgTQ;0!V#Sn5KESJj7f8KKzZD!c8tnIEus?ubyM^Y?
z^?;PiugyGl={*8D8M)?h^+AzSjD~f@Y#NBn<z^umC}poG27k(4?YUE4M>6w4epWTZ
zp22r2f%H5C(D6z5H&4E<9u2JJg0)Pt1=+=wgsy=jIQ1dPlAd-hFJBfMM}6rf{pIs1
zC!d(h>FSyOpoTl>t{Y`(jZ-5Ur=@62UwUY)Z)L1zZ8WJFd(G${iDDeymU6jPL{zFh
z4``ri)-2-;*<Ne2zyy>p3obn%^s2x~g9uJ1%nOu+V?`}xBmPEg^z*8x%1sT9UK{)P
z&DfGYj#1pCCylYfP1<elhIs-vJ`t5~Gycl)n(`&54f#|Iri9a1tW#lD1#7ZxrS=Gt
zPKhFOmW(MOPT+M^3v)Bgb9EwzxfE-m35BN4<?Re2Ii%6P3|bpNFL^5;+6gAn#VzG5
zpJ|Q6x}Tf#1zVwmI?tau@5yqiuPq;2VVY`Cv%j!q`4&cA--VUO%F8aW4Pnzi3NE_V
zvL(+s0JhOqAD&_I_$4~;UPtdH(HmzY6E70Oyu}b*V?Ef&D-)7RqTT1|6Ockj&36Vv
ztaht;dDhsNzWSvi0KA4#5MCuQl!=xtV)u6X*a3{fn2(n5sy3EDaE|)+52Z>)H5uyB
zoM7}u?BiEsOEyE_Cu4=Lh?)?oRrR%2lm|=icAg%hCT%YR4tApp?z0B8Feot-&}UJ<
z_~L`;e58~XP6M*ipFXQ8{wG@5SG_dlf1@m3O4;mT9Q^~h^epm%Uh=yn_@CV~6V$ES
zizAy?99LeLX4`dsiqys$q55*4mrk+I0X&$Q{k+XAO@rW$+1LKKAnI}Xi}VzH5mxF6
zWiP~6u%O+@+Fb!zs~~GXdLHKJ*(iE8h@P}!TE{6O(@jOeuD{4JtK~u+qf_z?UN8hX
zKfJR|$t8S-eU^t)pdWBpVL{LwxYc+NVzPSR#T7!BpD3e~9Ch5&vMubxeeF;m98N@j
z^N51NZNO|Q-8OZqW(Eg}n8DVffdplkRxApqa!|d~idHaLq$!+m*NS#=(4ff*|CHNf
zp<4P~8~lx1w)z3|7V86;ZO;q^GIa!p?*}^NyY<(HHocXXUnqQnMu$)1>Y`xVr8)S7
z=j5iq72?O%32MAujr)X{4t^?wVWFP!FJq$c;uq;YM>s?Z_y8O?l*i(%Q?p(BVN@G6
zNh*0;<p@aEAhzYUoee2k`6@rK3Z^YmX{h!&AmF{BzasK*hGx?VYOvG3py-XPA{ktt
znCi`o-*IADd`Wr-#~Y|}+$>hffFiW;n%T#zE0qEajKLJq#XA@FNX{t$U_|ohQKOW8
zQSkmWr^6LVnZ*)JxjB8k>7UxK^bb@?laS{EdclSJ0Pwl}4Q4-iImyM#A?S2@Bl<(V
zkX7^*wx|>}5LyX?>^7gO!2lw#+ya9nS$s;1BnH*dN0+5N_``l!e|EwG{k*W0snSM=
z5D`sFD&Jrq<Mc?&nd|j^|9yS@S$XE|^)>mcq-N1WG$1qvQgYtPdQ3fsSv>#%yv{$w
z{sj+B&7v*3z&3BEXM8QIT=VSg>CyR<q&4Et$3}B@1ZNY!5?itfrOWzi>7nE>a1GDc
zD4||wjc-qJvczIb-m;VX8tdY%!;9*Y6Ne|pKm7m_{!!aVRzD3_{$4COvoN(kL<lab
zLlW21imQjJL4jx9mh@WJme@D<z4ekpskdP~4nds#wdj1YSl#FiEF-J?_@%lf8;_~q
zXNA6L;WV6B&B~b<){#oG<S)Zunwp}-s3U=>J~^U>UB?eaAZj=jo8vRqTr*B=FB#1E
zv|&~%EYyTKZ`KimtojS?B84)&imBlA%Ak0rso$Gt*rm^1dferGclqmH@ZC*5yq&L4
zuD+;WybQ2oj@Qh1h-s3M{r1is%vmI7syC`8B$dJyERczn!9>ksd>=5o3;@#ey?lyE
zU|={z2Vy=ipN*iz6SF5q7mq8c?buQ^<1qf#Tyt<Nx##ygSFAw-KjP<kvALU}TEVO}
zQeS2IDf?Sa_^pzC6i5oOI8zz;Gs94>AO0o63XA)~g*mZ0fwVPvzASi>*RA0+g6*!U
zjB&&zkbE2~{4fM$tpTEDGIbX$OI~*eA4IO<KyLp*@|?Yfr=RRx@i@K8KBr51ey;%E
zd9aG4VFm@dpT6+%tXk;{#x?q5H0<u3-K5n(aXg^7VB{%EOv)ql;*zCL>@LE}CzUBh
zh`7W36(!4q&fP*E*rbAI=s(jFAz`iZgMH<WruwvhvEZ^jVZed$EE|6hm89p#<7kd}
zD0z?%scIk_$2A<?R6oG@q#(V0PyL<@caOugKFc0a!)L&LOJff_9WoiZ<KwqtOa3~P
zuouRE+_z)Tz7re$K6~ZvJY#vvvg<isede`#-BUkoTox&@^*X98??g4W2}U?gfttsM
zcM?p=tULwWav`QkMU3rzc$DOd-ExDPhF_$@y$=3(g^BEI?lNT$aHLIw`_b1@X!7j6
zAO0v{yaiM|sNjkOkfyb)1UuWF9v(}c+&4MiThDPkU~<8|DueP^^45?^@!sbHP*y%=
zx7Cy4ODFHMYD)LBoYO~%`s4|Po$I3Y$<oJSWd)NMKMkp?d4Eo%XV~uPU(4G;HE?pC
zGK|p*A71YLF=HTJl$bB92vB+O;+rxu^1k4^Dgi|rb1XcU)sEkzy2-vTv{+Az>6`g+
z96##fFZ->eLc7s#(E?cX?mE?D5tK$ON2=!8IR^<1%`1itg(E`480yvRfX08F9Ce8G
zVoyvIUzu4K8R?22CX@%;TUX>fxvppg=nvRzN#7DI*bTx>%eo;dRb=|jh8ku|rR0{e
zM1S@U(Zv(XYOB|_y%+0Sk^ZZV8~W>`&h<sH_`!sm`JcKNIL8?Ecn_{bRjr1mvvwfm
zeCDnwsqJg4Uu>f)i!Sp`=klUu!My2Wu28=@!6yprl<m^lrP0NEj!e#!PTK97bmy}2
zo;^pV|7egPjQ!d-1_!+*EFGln><LeuZx!lvr@mD>VWPYDx?SvC#`3nWS`f7B)wVS>
z7=KBx_F{(;HiTZrw$6)NOZsTHylr3QDi&xH2OCON3h@xFUMkG@gL2!oZENMyFLE<H
zyjjgnac%U*73s%2HdDk}OfTrzObPe9qhoV%^u}eDpBG$nd5DgD`xl*eizH)^e95@;
zw`v6s<dk;^OO$A~XTRX3qnrm*&ZZxI+E2Qk*Bph#jyd8E3O1-SjZQ7Vtd&ruiqW{A
zL1@q~s#XzxQMHCdnQ}q3fg6n371mN5+-o(v^wSR(kIRn-QKNY>)CeGHmapSQy$=<l
zH(0bYgbZ98wD`0<DiW~Pzv00~vb_YD_0R7?f)7bISyoP@;!Pn9foY6!7|;ACbVm)~
zL9w+s!j!2`AT-;N(yGtEs*H_ZrIJ<shSV>+&kOBZrg5@M@i+<uNHAOar_50yt%**C
zY7;vj#)9FkU4J%Hxj-*d2dM-HR;aFpB(X4IvL*W@c=$5Y%lEm<uS%i8r^MrI>w<yn
zYeKk;4~jAnmISvGkJc^7vLOa)CVi}+ZH$f9`N<h)ml#tkoKg5eEDnK2Ge{95O3eme
zvO1)oTpg+nEq{YsQ)vSz!-z4hsB2%M)x^E!!R|-qQTHYzrfjZA`)5zgD!~L}>hq8}
zf_1oH0zPcmA{?vd?4f5>{<P8tRWt8Eh?cUwYvK^d0bpYl#YNqg^qFdyntn`;G&=%8
z8|OEwRv>T$?vF@;H=w3LD)C8=@L*VN@XDn|;OE`tshuG37qa?0Prk1H`as=KE3B)R
zvrd!G0W;&g*Y~5|8o^f`D_mpnLp9?8dSkXlAx1eh3TBmKP8+kb&p8V32GtI<F#>IR
zKlvY2KUV@y8|VnF1gCJL>KT2kkY7D<?BwLM$0v1c-0hm7oh!>@HP6gER?*SJrX*uL
z{$#gnhE3}1EuUPyvh@jAg!odZe|3jx_1ZZ9U9j&Z!ebU+#E=8O->3$$TiqYvA?;lx
zvf|nm6)>DI?^8d5J6?2S(@G(#!Lc{Y6I0KSUpMOItUz`XdNXZ;Z-sat#_?pu+3>?g
zo2ZaRNeqnTpWwrA9=2O#ccQX%(11l^yAn0XfjMqJJ5GMDn3S`fmkC3q^b>SP<0a&@
z@>RROZ;_xfRG)~Vr9qASn(J#;M(1x!Da}g?7JG2I9*9SEs=1!lB}a^j#YfPQaI73k
zYOp`cLWuU=@TjOEy~R}A6!VHLnVfLVJyf87K05LMKQ)3}r7JK1o8Rs%akm>*`X%nJ
zK`US?v-B{vK}Sl0rfo72#Wp79XqHnuL6>2Z>eQs_2CL!5o+h?#=VT9v1E7DKvUkbI
z;}>|+d$f4X(5e&7r4K-0dGNhI{H;$|WE#+X8hy$yw6-DJoJV0?<W2n;$qkAwHi<4Q
zk-UThU2inA{AuHjh>NeZXuQ;{@e+R``<kEbInpL8&u9w+XuySddh=0*54DX3tk_d#
zg*$|g_%pH5FUv8~<_TAbGrFI<Zr51yc>JCBqn$~fu%F40zK%~0Zd)Epj@Vs~=U=IU
z9H2Y;nL76I`S^|4k}X6yo*^($bt0B}Ud%olSB0N*6jA#4mUNFAm_ORSL$_q+U7O^6
zg>mWUV}%5MojVH$*sKQJ9lUsm+j5=Vm6(Sz5`xX@Oeer)6`N=AB4+-aObUT929U%v
zVx8;Eziu*phG3c}$@$m}+b_YBESbAmn3!D|OU@|l+<b7`A9-`l*Tp1`bNpEisNiO-
zu2#?51PlnzScc$FYu@ccz{(^|<pRVc8=<3U`WM-{yf2@r%X6JIlzA9@bb)cid+yTi
zE^oQZSKQ_KVz}jve%vx(zD)~3QMuLP7Y360V@T5QOY$t%ATThpW79#=?w#~N?(ouF
z%oVQU+;Mswla8tFsjoOl8Z12|zJ>IHXmTy6)39J}pO6?$+K#Y&%TU>CCUtJy?wYU6
z)iAGi=Gm8jG`#TR&XsFwKAsWj?CZPw@dq#seWbk{(z?S@DsnZOibxIAwhpzSKR85X
zHv*%;?j)(OYjygMR&>U86y@t<($DkE)x=>iXygVeP~fByl82uW+&efH7r9Jb$_E+$
zd&o6Q<T}TZ3nb7pkxLXjI5m;lId$$_E*+Z=Y1?Zsyx4((?r0oP76(tM=aJ_;Fmj*|
z%11!5v$M8ZBA%7+to<3|@?$Ju9QT?i8D1j`4$-LGOM5ZB4Pt+BeocuJbbP7qWzrKc
za0l-Rm=tkAQS90rPPs=ebX(MPs~jp)<y2{K@Sg`vQl-oDN(`rj8lpAOX%kx7$Yp<P
zQN|7|BfIjvFb9x=jcVqRb0)@9s5!b|gJ(PqI->I@8VF{MFeUI9^C|1|I@I|Id(^Z;
ziL4k|AcyHPnrI@JkLtA$o+<#S;EcQqZ1|~d3C5`o4I~cI55TWd=4)~kchOE;Pz^gY
z*`Tyz%c0TkVJg<QM1|(h7tlb*=s9xBFLrb!NQ{5&H?lshm|+EbO)um|d>IY^Vzd4L
zY%7k_<?;OdQEl~pjVf+o(Gy<J62XNt3tZh|rp`|aTbTit&qjP$8qev9*6oX8i4hz=
z5Z27x|C@ITt`LibxA>MsEi?e-6>Z?A!P-cFJGkOh6_I3E9HRKKyL<(S(xKKd2@LSi
z0q_3S>Q`Ct)0_1n=B{hoM5OXZHVwrob*d%4tz|*lP4K9aBKI<EPbMcu$9pUcnwtmi
zMzb(Db<n312YDK-J;&5zle?^Tm!(BC^{Y?Km$~{nbRj*EFKw~LWaOWVm>z@iq3V(^
zhthG&wS(?wqb@ZHRj|HKJtzxK_@P)ygG~@?`o2m<jN~9gvVbD;q2#>;<7J@3TlZY~
zH~YSggds0p24FoM%;Zu#Ueu~+x9uiRgYD7o`%RF-S!0BYQPj11mK=X$C*SC(xF+tS
z-D5oW()oJ09_b9OztQ;!&0P)wRB4cx1np<LH)u!SB|4{xFg9TvA@#`Em+j+bmM|^3
zeu3I~zHK{&g2%B_CQ<QForKXZZ}Yl)V@Wr~AH9SAWMW`o3+}XWpR5e)!-xAcns2`2
zxQqbrv?A%SMC6e>jMvV9+mG2riqIxKQ937cRPr6XWUjM}xlUUh+rV5Wov`|~I=1h6
z7E7KZZp>XB+YszZf~F=pU!d_+DT_+B;X(Rmx$B~H?6l8Q$mxP2y#=Y8C9XM3sRw>y
zHYtq!nU;JqrlrFASDTv3_p*NlwiR9QK?GiTy}yCa+6&{C$7Cw{?N?G-vaP&sbCF@}
z&^e#Gx&Rys(TH@IDq(8;u)Y^nJS4X)q86u2q3&qcShbKit_buMRFVx(0%rHF_DtvG
zog3|*B$iD^#{R$wQt*}QB|N2xZSsH!dBS}5(6KT}@<EPDNll|Tu3Rw2q;|YohpoGw
zHnxsDeY<bvVrvDRB7NTV6R-vh=NEa#Im6C8m_<)voNaiSh;;HLbLCgUI7g4@&p4N;
zTE{qt3l&H?jN>Pj;TNsJSSl%mx1Cvjq+*fUgo{I;a3jlXGpSp@!(kOiJ<Nx{-yV*-
zj|b_b>PE<hRbUp23WN8SIXz>TXVEhKT&7yVM3azE3m%6?93Jg67kfxXuHM#n^s9f&
zk&x}Jqu;wN)6rvX=F23c)=9{0Ugma`W(IWh<vE|bqfNnU2WLC_{9bhQNgiZ6>SpD=
zAQ<9u5QYx=!BTby)mmW~&Z_`oa9SP=!__Qp!=#AIc8PX<4?zHzv$ydbZ+$zb<Bq~V
z{C=k6=M2wK7}X-x(8bH#jyu(mPvLdfeeRAo1b-wwGo<j}wxi?E@qmtZznVJC7^d{u
zik%8l2bi|`6g&jOhal(shjy!<e4iz@&-dSPa%&;9`2EhSb6mkac@`Y?I%tB)uuvNF
z$rb!qW#K5LUV1+;dR}Ph{&lAF1DC20-ywxKfnRvl)q<ixLD)oq+@~(936&xp63lqp
z6$+V`QQuFk7PMSlk?L{fp77<UN3w01gz7^Fg%<|rG`XbF(7|v0W9%qxn0Z|U|K0&!
zyD&IBuaq2Y|M{rA7Yl>py!)Jje?LFBonZgd&4ak10Nlsnzd`IV{`fi<4?1cXfXrRL
zNWF{S?G!-LU-6w+*>k69*Vu1Uu{Tz{WH*XTOw|Urpf^;p3Unz!=zb|uXoLN7-@Cf}
z_pUO&k1l5Kb1Lg$fEj#cB;QaMzJ}ow5=T`{GO}p2-|+0rHzgdVYNbizcnHbZ!HP0j
zm7SXkqc<W~Z2j2vv^gA`hOz}mPwWsG1_uI1M8+Gcb>C~fh&3dNYj2edwHsH>)_1&>
z!J+{gu_5mQx3iu!nWci@u5MHb*^{TNsQT%`RC12suyBtkIhZgOC~{f<x+zx-fR3`S
zvpF#MF2PsSSvps%{#OG`>q%<7Mdh3H0?~$tmu+FED&)I}5A{!Pnxwxi%*+iRbh-WI
zh%lLMn!9`v1#O;#I^3sTce#)Hl@lJj|3`JxpfP(c?1*6T)EmK=Iu*1cdIBLswbs+s
zM2CHCqnQx!;e!B<JqiI2zxl6WAJQ6y1tQU|qft?*i=>1H?MAR2c156<hdRX}yj>k@
z)(eO5Q_0=wkMQO!+&-jdn;ib92>0BSS}bGmf0_Fd@TiKc?F48DNW1}wL<9+n8WbhC
z1_22Q(qNPzDgjZ0Iv5o+LIM#H60<;TuOcGj4k9WlGlLtr8w6Rz1w;j8RB){}s0hlc
z<bU5&b#LEZvgk1L{X7rp?pjZstxlafRmJ#n?Z#8X5R{4ax7>roBma`Eb*>wX6-a*N
zk8Uy!BW$!g!uZ3nN<x^PA=Ie_)84vp?dsi&J7aQ`I_~$MYJ!hp`@xCVfOuhHS2zf#
z@31u36JKyD{x&K|#a~}RB4l}Tj#kl0%kX3HaL<pkygzz}eqfbc*xPOIIBD-N{B2yg
z2u*DBw)eC5$7i7*h(suOqq@XZhLQdW^S<Y79~h$c_dP|&z$z<m4!tSiY83J<#3giI
z**waxBe39~b41IC9tjLj*G@kWS_$s)fW}&n*oaMtrHI%{<r$(0j4PMC>uM`w<2u?@
zW<&6zXcyT<b5#p;P`VoMv%b|1kciR6We9q~wII;Z&x@v;C7N!<IS6)wC{7pP9ADmu
zB>F7Xb6;s|E`g)Nz+_?0-Y|Npz|qT<(1vd*Z>pNiig6`yn1GSP5alH5+Ze~_KzseQ
z2*OV;3JVPj-ng85Jk*W@ADeQdAiOoe20a_9&F^z%OhzS3^S}){=Bx$GrK(Xs;wrph
zRTkd4*v_($;syM49{+Sk#W3bdyia-04-P&A6|~crOCMrii?R;UPJImv=wRUCA#Xd-
zn;M_c{09L8SK=1N;9hD<XRK&mb@BH2Cn;zrpV-D6F$M{?2zm?&l=+dQa$e+g9>NvB
z&y`#mld~j&)u-OT{fxn3qRVG#Dj|ww56ebU3p^xL1Y^a__w=WB|DfdqJW8g935Oey
zH227hmqB6x4e18W-RqGZQqwsGLtsd{JNs{xk??Fc8DB&-jf{ZlhW>Plpbv96dxf_P
z8_64k3%QXiLI(2y@@32r?{(GGBT4F~?>q}Em|Rtb@Lz~<qF(iLYy;Dn*}bxT9ruwI
zAnD<sdR7<EVpu<(d$+r~*s;4UipjDHwYj=D4w+_kaVn`(EMvmT%Jv1u=|zRc&Fis|
z9dbwLx~jaRUS05c#Zq*q3Xp)+1tyxhkgVSL4HJzY)~2Jwukm~CbG9murOGVb1}+@~
zYslsw-~%W$GCMYbtYXNJAeP=n(SJmgP*4<_hkSad4*5Vis@8BlJ((@Q0xXxC0Rzc-
zyYxitc1sG1hJ>C0kG0Tym%<8Q0O*Z*g3o@mWoawfzQR3*Qe!^$P)e@@AFzc|S7W9B
z(|(sys7gvrMy8?E2^=Uigplc*d`+eq($nikzY;&C;jgNpiu%5Trp`*z7hR}Nk)ZdV
z@`Zm^d><h&1??ywx^YK&yN!oY;08XTgp>p_XSx<R3>vZ{hZvygU)k-^l#nB>;WA=t
zI8#YyqMans;Lz!6CSWw`T;RgW+zi$WkJ*I7OrRe7IzpJNvTmYjXp5uiY+&Q_U4||n
zf8?QymZ11MUAip#)ujunk}lr_!s(K2=#q6)gXxm31|w3FYjV=%0(7CyMgr&p3D>AM
zsxmaxT65I+9gw6qq1YTr(w`CXv_7UhVTlB$or^rkRmtA!%hzqdv!pC)C+>e7147hy
z`Ca@C#-{*T<>TcS)ar1sJ<c;z?d_r3GbOa}$qq7ZdeJ+hp?7v5bdfsqF|9N8Ibt%D
z=FG0&#^g*beU3pBlM~dsP4#hR$KMVLXYTpN<xGJqL@taIO2hLifmZX)wnlMg3-P-c
z&ZJZM++Pi6o`vTJxOE}ELCu-hR=S*d_>M@<9E41-#(*Lbjq&^#&6yf?p*ufgXbiu4
z31OBFXTI<YICDM{$e9s7^3YI4pkUbP%_W)5=C(I`bJzu!^BP6sAJ)WmH27=6NMRcM
z59&1A7eCwh&NA?}fyMwMJ_5eH=^VaQ{v6A}y${)QPtngr@Vh=m?<jt_4GR0iG5Pj<
zIwpP3%14KV@*xo`S3-3SO9~{nVzVFNaUnbnD|Z#f;Y6A&&eW4B82t}eezqutV)Gr}
zh)pG@$w!AS@*zzPLsM6xsTI?tDFhNUtA0V{vGzg<pulMr+n08q9vI^<Fn!2^l*Ul{
zrXOm8=L#b@^NZ2JAv7ED3O)=;7gu~RAKz5rPmum3e2b9x3`$juctt!}UkHPME(WZ)
ztnx1em1b#7H<Y*`_$7&x6u)pK9H;IyN;Q?59&vDpZ|GhnW)AT!_6dN^lxROaBgkZc
z`)7YK{CxfU4mDQ}NWeQPuvPwEA^dzH)J?$WdP1Q#sA(r5)9`aLA;!c3euf2t{ln{y
zjH@mW+Z@SI`wrKv`)^>nH(FCcBp{$#;~A3=N7uy+Dybd5(9xG?Ek@J;Js;0tSrpuk
zi9)6R2&6uXZyuEzf!}RxCknq{NYf8-CRl_?;lbj0X6Y3Ri<sd_me^Q4X}iH<=l7zp
zIHcUgV*e(QSUe4xwP5jqyck$~5rLRg0L0?%#=zp^NT~j&YPk(K*&V{k!NJEFMj`%b
ze02EP;G@l&D17uSbMbLHMqn&p!&RM;SqnZYuZ@9^`E5e@_`VVFaW4{pkKcc&6CaEv
ziNPOc3o}g4nxiN=F~{Y^^nQ9@(-^6CayJ@%J>G>f#g1V}?sCa7dEp!bDdEPc?c4vO
z!O)J?Q5fo2>SE|Hj42#LjgVOjhOQkQ14FkXeA3~VcjAGen~?wveHH|UFpFy`0z_SY
z;FLv;Ppty=U&sADbG810X5q#a?0*cCrakSIE14&c`0!LZR01QRX^_(opdRnUxt(4>
zbmgbELJ4tP$`<zs=q~tp-z0qk=O7EKsHFFF6|5Zm;6y$V$h9q+%jMcGiIX=(n|cpz
zrn`q&&`S<e64;+#56$*{{GA@AzK}<hr}dqVx5OMmzYY4-0Ha#2u7+>uf#z=MXa{~#
zw6MmD2`dah$Hp)lc@Fd!t<e<#1sA;l9YA3|#uvaO10l`<eu_G-p^f8Jl4=ga^bQ{)
zd-o9%C@2kq+Vedqe6FT&m_C?rId~t)8UreTcEBmoh5%%Mhsz}J_!6&e!<=hje=$RL
zn^Q4!q#<IBhJ?_P6XV};VXy@5Ab1zJV@oWhrlR9&+oPSM;uHFFDHn0x3Dko8k%Lm1
zi>t-p{?|8pZzW5SEI=VBBC9*h4g8j*`kFf@z!rv?(urIw)8QwRgF_%(CQ%I-JDhtj
zY=j=4S!G#l)AkL$(_EH${R)p9CIFL||E5w7t#a|n+KFHMMwH8XJtyk&<{MDfxh(U2
z;fMi1BMfoxCGzL#LTR+hCEz^PCGwr5kldGf4dzr~$_&i8xKFpK&Z3&>PNHE{189_<
zd?geRMxRcM<dad0_+ncz;Q(3uAWJrgx5w{pEoZ9hEv*--%;mZx%<mcI8s|asdxME{
zkn7{mG)bLl3)#L8xHLKjX~7_vO!J0FTjF>30Lem}Hk*T*MHt&<vlvX~Ov0WK93&<c
zu8&_E?8C26JNbZ^RQddR8pRxj?YpjzHju+d1ONP2a8;_qz6Fy%if>`;=81<xe8U6?
zM8x}351(h$@A%~o*%@^k@I8K;=w4aW1M4t3on7_^Qix5XxiEw=&^M*dc@}l#q0p)y
zsj_dt`nN~%`)_2n@cmaIAG!S_=6SjO?}ppehGg9%7>S$>riM(Q#!x9BkWlH_zPl<7
z6F;%c84Zj$?Z)_MvSwmA^kOGIAzI$-<qLoMLpMS{iLwq8>+>vN;*|qZNtHnIbe${Q
zE9aG0dTxXs0+HyO3yVEHka(pO6b`=9;owxw!Tod=IT#y>+{Xe38(#uB`I?cM@HsTX
zbBScVqZ`J&Y3d&cf#jt2j$z(M%<uc8+?NPF?Ovs(OJW!Y7n-EwH3#1x1P6~oS`Z#t
zvh?5X*WHU|&NgsiWDXb}NY8?KMi!+T>4RSSy9Z$KC+~q!<G%ub{!}-AS`~6<csP#&
zIT=Fjg^~Pmi^Csy2@{;d*#rC`>axtaEF9=2%fP;$W?18nr5@JcOcC%cnWR}m{G#x3
zee3EsC>^RU4{HQa)?tmeQ5$sgu*O)OE36T9S-6)q`boj?%YaifYjn|BWDO{K;ciiG
zLq=%iW|AcUkt=szeTI1X7MdlT%Yg4Nzr!vAE|kQu%Yd&kN#-)(;5T523z6o%3^>!%
ztL@8#nMKNH0=@q}OMmyk1<GGa%HOgDlxL(OH4_Jv5c{@zQCwm3vsLk5yI;Pby|!Ib
z$uh9DpiLZ>k;x+iW6CTyEHmsa56jRX4EV~5!dT|#FI|?&j$)Y{l&zg*&eFNDSq7TK
zy<fhS6bxq>z{>e>*F^R(%w-uUY+;$Bax_&i71njX{Iv+9q!w{lW|;XM#xmzfVi?PG
zGf9SJe!%r!>PVz{Stg$>lZgq!&z;xAYaD=V-*XxIdr_zaH=D^a=Y0W|iMU_h?&q8*
zDuI`&w(~^TELcFP6tBVgEC`RpT%=e_T8%E*SAdKEhQg|{77uAuyf5D>KTk|76Ei_W
z=@2HsMgmkFmXu)nwoiYVv7eQv!QyicP>|~(tuU_CiAn53>^|BZn47>&2-lF60g8!n
z1}d^ewl9}g+Z{UJ$Tml6)0e7q{q2U?et6x(Y<lWyJ3%v>+@516=0P;Y{<>3-wUYPJ
z>?{-(NMeYRtoqHk!5|_1l=!|bmBv#4B%a)<O9ER4W72v?7s-J7DWGs*1{w@CC<Z5a
z?GBw!UhBnyV}Rf_Sl%zAJ^sUBp1g#kE9+dvpD@5y@e><Z;x%>;9_<O4VR`CnglCcm
zUkaPya?~1~9-JgblBt48?FEy5jyK)e$y4{4TwY=fc+U75oLPdj;7YI;&RcvGoQf}W
z7ZPgYwijq4p|pL&ON^f{`!!NVwi6AP85{@KaI?5{Pm{vdfmUR){L`$mC!MrIP1+ea
zI?FWd^erMj$PL0Jc89~o_bKOu85ivApaFwi&VU79DkgWF)>*yxY7}?u9k03LTuz5}
z;-If$aK|So0|g=6A@0kV-0?46O1R@KcI<Emv<Ku^)`Vn{X}TO(#40amIj})C*nmp&
z1~FWkAOPH~$shv>s{B5JO`$<6Nkk%4(jahCFKKELx#>)QB_`T%M!I~cmyu@0WF)nq
zF-%SbP~(yoz@Z+%Pr231<s`6684|%>=JIlv^Yq5A8f|iaAye4CW?R877qOYeWS5U{
zaVFlb!vM4@3AVxyHE$Di)a8sp@&1dLzdk2TBHp{^Vj64A{<4?R=c30(6&{IT;CnB{
zNEr+)ECB@NS!G9{cFEpXpI(1|Ax@Ab&X6M5>W~mbj5V*IwK2p*%VtB%=3sflMXc>_
zNz2Dy7BA1^l4<Sao9^Rs1Y2HBcj;Y=Bt3nDCMhhPiZVA$A-AK<RWExu4N8vOki^e`
zZ`#e|xWa2mOjw9wL__s8ho%q$r{YUmATbxkz;vmOA(IIfK^ML>xJB7<XjXC{cj*G7
zLamE;W+e>OuinPb>ia~=1mz$J)Nfi@BfpJ1@X%NW*35R|KW-!R2$q<?!~;EdB?!IV
zomibO(03!ZWN>AJ&osG(Z~zU(JB&RW1s#j4UWDR(9iYymN9v&sV1uUkrnw-D{u8Fg
zUh5RVri2lMH+1P=DBag&>S0{;`7!lCmK+<K;|MuM)I1+KkRk-;iCLaa&|w{FLjCb6
zpv!|2ba*rjKC40$QTX`?bdkp{rpP8XeIU3{k#8{sic-bt1Z9w>nG8jNCCEBR0V0SC
zN?56&bE-P!S`Dwv9hnq)KfP4htXdROan6Q~xzYop*8%;8v5OcUBTCTCQE431sd`Wm
z<2g~wTRMF@SP=3Lfb@%fCwmCEJ%hW2rM&%@?3)R{O+rntGpuq^cmdyL#m)4@<?@mI
z4nHuuBtq@TNQVKplFJaHboNUQm!TJw830U4xdBN5->4gf&#quMsYXhGj3H=d7_d16
zp!G%iFi6T7C~737qY;v26<SDuFK*pn^k$W<-=BK%0IuV~bomK8OjS?dC$1Q?eO&|k
zNUeGtK`sHG-4(5%|Afl;S49foW9SOZse&{K*!}!tpz>vxd!yFta_3I?86UwX*q7Xi
zmH{8vTp(|bAWBU#UdmMFrZCtUssT}_WgitB!LqqTWgfXjl$Jip1IVAhfCC0INe3t+
zxJ2`^t}`yo6xDOSW-DnPC}i^}f>y;5COf+B`Je;qF}yAw_7C@mSQU*lzo3^f;1ckQ
zANyvxw?IweYCM=f(yfL`;1-wwyn!j7-#|;@Xs*=USQSwzCfY2Mm;mK@$wky9G@&hY
z<DL4C`c%DyuQ>zgKIH_R6Ts$d+lMZ`(S52<KLVb%k_|%g1bf@WYahWa(Awj*#on$Y
zlI}Ejh6_VD(Qp(V#2;1>Fc2Lo_Vn+?poWt02aIi~bqY>G@i_ik6y<s53@XJ;PzcH!
zLX1z`NtF2e`nJd=;~_DJOs$5E(mavNL4&I>d1A_*$BNE+;7`Ff;6H(HWHfwB@anf_
z5}W5}W&6wl)Ei7uOo&VOH?r(U$(O)Z5pOS8#bjKLjME!ap#5vi3pnmxH&Cw?FulOH
zqNX`ST5vpvFUphNTkaW#7!>;n+t(tv?K7s@zF!AYQ5fevkHxhn1Ta-+pmVGISAq~2
z0qM9X69jBZS?%$uRsJE<E5EeLUy}kuAq$tmV~(ARhb7@Mm>s=ScD6=o6e^Rn)|m0G
zwr0JJBM{}6K{jFg72w9LGKud;2{d?T=Pgpy3Gpe@;j6IC?`OIjSnimZ7|dbS8plvf
zx+P=O>xRNB;=uatfU9^%Yutq&EFcWHYNc{tP%kFF<Y3~0;v2(dIbdEQL5vPP@r#qJ
za-9@c58~)^@EvSz%M=@uA30AZ9`h*una%mAd=45VGXSZ4xi341ItR0EP9CP&d?2yl
zW}tdMUD`youyc<u3Ma`FB6r$;R-j*YL2XCnNi;`bIP_F=URxU|!Z+9$JSxkHB$Wy)
z&0k5&LKd^!ib}wvy=0m6>KCxjkt_QgS}pS@V00VDoCjW6@FS-`DrnpH`VXKjz9*@9
zrMN8u5rx<pv3=#9A`iGlrb-c&_W>}*lik2r7``SH!d?P&+(3aYP9=6Q26O-dAN{em
zS;1mv!r|6TK?kaV3=)h&kV#m8P*yILjT+d3dz8x>C~6Fg%upe<;e7x!PNs=)czOe#
zRKf$T#Xo>2&4K6n_Z=Hr;DJVhcBj%p=PBqMcUVtFyVd`2Os@$3fPUSh&%?;FzGRyS
zYURSt#T<)mJ|VzlK4O5fE9@_*$B(&^AybiAk0OUA>@+!eW#*$rrc|04czU!}MU^%m
zbJfUY9JMOl4k~`6MjN<`Q!BJ8m~u7V5J9mbRM~p6**eHrNK<3n-(bTq4hSm)9Q>Cl
z5xWMj$68?*6Q+{o9I+e^DN^4c(6V}6*y;~jpo-<7=R^ZS`iuG7)Ki__1JxF4Hga(s
zMn9{f{{3wZm1Cx)M(l5A9~-g1J$MLZ@z3pVANirdQtM|OTXCfmSJLMiu@D(oaw<F&
z?n+AHN{&V*Y(gHsjf^XqHXz3S_Pk%UMaYPVZ{Y(__aFiL+xy-Hn%w>E2>h7)Wpl~n
zIppyiA+~v<6KIjm6TuH%<(dgf-mY2wU{C+c?_D(Fp}E~&?kD$D;mSGOT7t{4m+out
z?}97b*88vfDDGX9>+&f$Z-?JHVZ{zBDKT)&k#Re$E0$WrRx@qQ4l8FBzI0tj@r4BO
zH2j8Rh<N&C!E~wOC|SbZZQuKYNrAOSc|zv=TIy}z3-22|Kl5}Ho;O@2c+Lf$*I;RH
z@SI84SRnCLWEwnUzNGfh@n}b%hpvRxJv)ecZQ?o>q`XSosWJa90K9>&gSJShewg<N
z!$N<Jh4TCq;4plOIgUYM%&?Qy*GES%+gBHQn5}*HDig$1<ZgCD&p6<S`-L{9?R)k;
zgNJzwqVVwHD3{-sZE^9Cq4DrMGQIqkEqIVPrnddTZ?}hyI$NEBfKHB&{8ot8R3{{W
z-|koiesk}aMdrU(u`8-6jQ_tDPcbx3YpYatg&6=iC1SzPwZ>CaJ)^4>9h7*AvUl__
zJ@FK8EpK={#i{)r_=WMEh=$tZDH<8*6F63w*mcEIeA=&pjU%e@T@J$-R<YwL7OVh;
z|C{j?1K@`f8#W@Iq8mD{JDy@<BdCe!czhF2aS?O9JIwO5Bqb9lgkXtXacAdZ>Kgn2
zQk^(QO6Wc2plGVAnqZsoibDj5+(09?2k|Dewe2gTuMR);gsuICoXHkQ+Yg(&v&LZE
zS}O7Ix}vdJb*0)1bIVP58`=`;icS^VH}iVBh+!x_J>Mhv)G`6zr<YUkt@3yp^>*S(
zD_!Bwj|$*;24$VyDhWU024`ddN4YMP#sH2A8PWhKYnYsU(cnO6JGzN;rI2h`T>@nS
z%SiM!Hxc^lEZP%CQ$JGKKxjEI6w2{e?uRQfw>RQjd81c^=6M-$kJLQ4{d%t-Z*ea$
zzvq~Ujr-;IhTsii*h|Dlxk;ke2)OFH0{ZG^qy_h|d9XRj#(!Q4*uE>cDgqUSYVZpm
zrGJV^1@)_mhfS+R@awC4mZ80R?i<_BrF7{w@Y)zyQ<!goE-h<@MI`{<%c4$L`&<AA
zoOHdIvjU!%9K)8dJ|k#W`7b0axIxb|9=3&ca8~_>p*3@fdgT7qW$y83=uN>s=){?r
z+Y@(7v*NR%dI7h?HHgLCSmC47=ZJS+e0l|7MB8_0p5eh`=XrRLmP5dI(Pf$kQ#B7}
zIXr0OjU48E1pXKlci8YVj$PQ09F}XgL{kHa2S&)8mBx(-SszIpk>)Zm;Fmg^TUj@e
zufSz`D+>%pE__SplMC^zmpGBYg|_c|Zf2u=CRd``es)fay{>Ii5I-N1izijQoA0@*
zL$zkjSHse?mCvMO5*3#H4PlvJ;o#s9i+&|Z8-i^;EcyYXH#dPr<=)`n43Pz}{aU$5
z3y?lC+93SJxlst;I$R@M?y9j9H_QA4UwthIe;&mhgjahJ?uIP@;kFbSCJ5KJNK@_|
z^+ut;L6;!TCo)GXJfPi9OcINVh(AvkBI0SYyw#3!1=K?jiEjQwa&8YTZZGpEjIb(x
z#=tz@QAY#nF$8i_Exh8vy%t?np|gS$1>Hh{@h0i)5Cw82X+u!1RJ481EQgZFLRxSY
z@UB<>GqKK(fbuLDN7NAlrR}ReLjMd07CNFEs;aSXp*iK*Gz!_{cE8T6^m=e8)+F$^
z>0vL_3}~BAXp2=ugY0j2U_s!Red+z}!fUMZpP?Dt{q3)en%Kxn)Yda8e$X3hO+s0b
z$YY1~w5&0eKs0DD*}ikGF|0NGQ4eeB`J`f)W-W2I+lkjznfb)I?SLE7SD_5-N!fDz
zmYo?uX>A%MKNuX<Qx_ACdR&UhR6IBh8#d|q9T!MU(M7ZvuN;uURGf0Cya8@n#NYEn
z#CiLr(xVn<!%kaR82>P!R%dF;DE<UHZRaNzmE<@qDv550voOb{2;3wqz2UM__bS!b
zB$l~})EPypi%t)oFPyXoGm<$=UxgOcAttxE7VER$0#oh&4qWhoh&B9A6_n~ghe4w-
z4*T@;uO^hIIsO?cZ7AjxdZC15AW<qwl%`rG68;FKjmQIeBg?TwT>H^OaXB_<ci1Wp
zcL_l-*QMf=*Hwn-*E}3W^m{JRM88NY@PapE5PdAlI7DwLoaQXzHPK<Mkm%>>VnXzl
zL_c_=n4j1;grXQAkWrg-&;>zyt6U18ps=zia>qKOO4)g_OZ+~ZQ)ftXTBmHmcm4wt
zv^>2bOyD6R+fnBsxRU(vyodDK%cxG&S-~44sb9>Bi6&S35<SgUG52Q#Npcq8>mh*c
z=r_O{n~@fL%HfTX%z@ds1;veNBJ3N<wr=b};WdmsXhAi_G>JVx8e$K2@sO`q@ITdp
z|JnJ(h-}DnCWpUS>xx}g*|Soj_sdeEfW`%55y4V(0Zzy+N^YA=uEC!1$qz<x&1FM1
z*IX!VC7%6y46Zp7WgM>I!JbG}!Fd~8lcb9Y*Q_7}n4<HAWgyM>n*_i|#`)$VX;K(x
zx@5^B97d?^Th)^zhShI}d}s;ks{+C<q9&G-*(8xDh1t?tc$C5xw90>IaLFlNrZPv0
zBS@qgeT~J76Qz)+b}}CFrf{agcB<Npbn--6c$SW(QE!;s?=;73e-#|_G+W{^pzgc6
z*93?13nLcNSj6bu;AR@A+h0b(z~0biaHRj$s%Ut;!q*g}y5kkLNRj^_Ug50*s&??z
zrJp#yR>w$9;Q}ZX2Jx*|n0STf<$6Y*SX((DA&G>+jz2#Gz75&r!FuBr7NHo}Fe+Z*
zWk1O)d)+3AE@r$!r>$B^yiYFjtJe5gZ@j`Amz#KnU(E%O0=>9~0KJ}UkI>N97O&8*
zHs}CFhPo5MmtpY=)r-Ld|BHBq9XNHW<>^nvD_lV6{%_(HZa<ImA`X07{#XNHL3&W)
z6^dTMp#EF&3Ma0Tc!f6dk(|sAD05>pXc_4+>@pLtaMvtHKVzUMGXTp&YCNp10>0-i
z5GiR$yg~(v8cFGh%8*0fcoPf^T^%c4p$Q^7IfI&bh2K60TQXi@GOpk9SHf$t^ImQu
zY&`^`2DKg)uduwC#4DWiB2XDSUIF&Axo^Ix5rn^%`{rR8%%yJ7n@Thk7Vsye8>lc>
zn&Ss7RA<Ep{HThTG%u&>RUvo-s~)<3aJrW(<$@vF>j->fLc%IJFe#~|hOu2%`B#|G
zvf!UiKQeA0J=gExH!k_M%KG6;NsUBzwT9vMJPOE0Unis&oT4xOtP<d6X`3Ih18e2C
zv4Jqd&^m$b%E=GUfnnzc&xaxKOYi!Y#r5SeCIE$<y2NoeQJG>ptU0!Q4cX~<0k**j
z#{R<nDZ`CEy=tbzD^dD%+WEpMV>rFY<mw&<azntt1`Gka93>5-97B{A6J9b5*bd@F
zbcs^|d#{O+6CTT|_cm+3`GB?AmwFW`)ie6OjPG$l><NOcaQ%B(Q@?#4#tMU60>Q4y
zF^ct}dpyGkSFBZoWEi2%Do``mA2`EbIT7}D6o6x7LZ!ujCP7#SBGNw=7wnD<{0Q>)
z1{HV?96B1)t=^Ift?y(%SWc`&pZ9`O5-YY$?uhH?Oeb1cZ>#rB*9^+3u-bd|9oW>c
zB6dkO7aYf>X)$5Kzfh=2=)QF)#6+AqI7r?Go==`0gvJ2-i~C5zHN+Z}`$9R%0;y^0
zTq6SMq#79C1eO#_PYxSI_vHKfa<E+>@ne33LFd#lraIR34s^aNb)D=6*HOuffOWb@
zLio1b{ncI&DCh&tsS7&`$XHLyC%8&v2r7siCRQZIE6QMQ9I<GWfukl;ptPoq(gp$8
z*zpf>vkFClosizp@heb9q4*V4?)4lkU`iggLv;Mg-_O=l5123JPV4SgW>4pXyQm}+
z{1B>GJFQjd%B&Jru~#UFVt$70v`*Sc<|QqvkjH<NekqTIhA5bbdTPl(f!%q)u6uq1
zZ)HeWfy^TCCAzOxQEn0t-cZn5AE7h|gbqq!{Qu)-@Om$ZjzPDkmKV1^995ZY$eLA!
zU4W!zFN272)xU=5EAsT;^!JxoM4{}Wo2^Jtw>E$O$7hoz90qb$NVU80HQRZ;&2?-J
z#Ps*iyT~lnU%4|v!v%cb^`~ZY{r$cFWfoncZzCM7ucEBu_p8<4f1fT?x4%DM3dQvI
zU!t?<nyKC2pMPv@fB&ja^c>*$`(HM{=NNzg0{I>0@4wF^8GnDTe`1|fg0y=4{Wo^k
zR1{&iechVspNl9YP*CCi{>Pq0d;e{J|74!1JDC3dTMyM-E$S-MRpt%y_x~&lXOF-C
zsBFW7r{Ce>L5g+2ch$L?2aUgfq{D;8(unl;pNirR8`kRYKU4~7_wzgwCEVZt^EqN|
zXh$JbDUA?JRkEQ(AJK<8UpojP*}14sfB){Ifn*fR{L}valMrA^vo_M-pKQ_{f4@)v
z_WJvGAm-9v>H7PHMZaJiW?laNe_Ut~zI=KV!hh+j5pMkb)&FokEycpW5pw@FiaQ9e
z)!+Y!6spVLf2%G*oJacmQ%|P&5b>AlLPR_rFyA*~22daF@6YeVWM}@Y%isSb8c@%z
z)3}e}@1L!+y#D@DlZ2@jXqQdFd`WWs{jV;Bk{F4!y8ZowPVzu$`wo+_n4?b65qew5
z@%P{M6q>8g-#-RsX&wIljier&c~<!uEC`c>lQa(%72bFqUM;v0F8)_JJJLri?z7VU
zC_G3!|1Zi-zk#z$YOc9%)EKK=UI)QcQ*6p_;V18sdz(fQoPSC(jCY)|rfreIsN6kL
zvc@W-P0EL?s`y#ivNONad|*(ntTwQm;Gz=d4P_rBrHzVT>G;97WHOK>$DFunh}B}Y
ztX$N(C$trmPf^U(<|vj{UCAX9oh5C}(l^3_O+>Loc-bhxENdoK-U$@t;>U$cc=bHs
z>pN5|({uO{)<v1=;?CGz5L>^)7(!$Z9um_QqjP#;089jPUn4M6vzAc|31w9Ur_e4G
zLK^bX6I;vyndnlYo=tVH>EFF7I19};v<73Sx1*-MrZRA@Kp<2MgP>Dw?ZIofIoP6}
z4!5uaKAwQ^<fesZk)Os~H@=`S-C8oG$>@@rzuj1Ptji<@AP$Z79IgtkWPSI!Vc)X%
zwIK|b7Ysa1OJEBLQ^gL4YV(-;^qUD`22)@e#LXc)dGsHxQ5dVCHxN-OrZ5e)BIuNa
zfG^lfmUU-yz|*DGW?}TTeFKivA}s6y-*HS%GPTv9_hB!;$w9<{n}Yj^snR_Oh3y#>
z@ft<&+Hs@C^39GGuhP~J7Ha2vi$a8xnG*S<uD*dKlC32}5^xOlZv`mKX)@?%;V6%~
z?^u{Z{z|M#Y_E&D&lMakWedoF3GJ1OJL{GU!*;>GP=D(CdC*GZWEV2Rp8kUPiV^c_
zCyq}AL<|hqx0*qkt#Y~iKo&^0@7~#FjdH^68ptGP0U&q7RSr%FBo6Kg%B(IN&O=u#
z2c(F5Gx01W!bO06!ouS)H@q>QTrnUCUyDyA66leGlE@6j)rK}<aN`4ttEblJnP822
z1mCJ37wH#I-WcGj6rs2;V_b1^(T4irF$^AOsba=!*D?N%^^E^MXZ$6#kN>Q&@h1SL
zK;l_Q^o)PgqR{wdTcPgpKZD}xDTH{^3c>jCt-kTk{cGcA>`PtrpXH3dxc2e)2phj#
zu9kQf5<TM|{c>phVvW~5{xeZrJ+;~$KfcvB{yBAwe=bM@{)b0&3<S*PAIMuO1U|lC
z5dJnQI2M0>g_napUtgm2m!8|4gLgR3w_KLGNn-FaV4PDQX-y7xvp;#vTU#7c-t755
zB^d?at4z>hkf8q6NSvT)90Bj)!;)EaCudo+j*gJ$KrQ3J0(~TgaKH%`Eu2E4aq~om
zE4Lq^e+un`XA04dqtM#EG3_-lP{otOW9jwC)R74PtY*Zo)rvX-e?)Rk?$}2GdX6J}
zgx~f(kgc0cW#2F$fU=NNAYwf8IiZ(qE9S63BFqK+<0yLPR9YzF3F9%>!(!$DEuDoq
z+!5-zIob~j_>4yj5b%r^+<<8~Z-Y13&|6>%Jh?;8d9bflemFa~dtb-dqsIZOJQ2UG
za?T3=z<Bs7b`^GGoKD1|AIhEDhlXtxKSAXpcw~z4UC!#}aZ<~rkpyFi@fYrBP!@MQ
zSHd}dDQ8Y#M=Yys!V5fcF>fayc@O0dQ{nTIwcMcr-d%;tB&U#Y!|6i8i{!AYUKSxh
zV<}RN;H9$hd{MjjlII#=fM|d41duDFa#>KFfj~?uoOP-zLo%O%1;Hb^`rHgJK~iN8
zgV25OO}lm6zY+9&k;tplA9{tL*YSt8mtTD~Rx&wv0v<2`{ZYJSjYm*>Y|_Vxh++N%
zi_JDG3o!?5-%Y#P2|Z>o7xXZWM_`dyO;Sr<{mHqkso*74->}-~whM3dhzYs{p5det
zt7H6Wz;P9>OrS3ujy-pWL6(`~Q6y$%wj>U<jcogllz1WP7zk9F`gaslLeh+>2u_j#
zfRiF2U!@*j4nmZ}tR3eUv-WC!z(Od-82OJzMlH1izMl|k11Ig5{Af@eHUB}-mkw{2
zvieH|eUmkPi=yKl{gv9|s$mlRIIdXoIfQ`bu!E(-ELTT_L^zGP5ZBNi4i}gIen>0U
zOsYmd6|0)ILo<p<4k$yHH_QzLrII9g$5G5l$k~mz(7(Fi6bOd#uO3Tcf^2e<Wf2-P
zD+>{6uui^?0%ReTiU82+4MZRd@*k0|g@2YS{JMs^`T-!2F+kx648z}qvm@pr#IM|K
zSaDgA7I$v#v^|m7aa{GGX+|Bm9}q3{_E2B@WBPL61gN;$)Bc&Ywg2d!ZhzZd2L8sL
z_G^Xz>_6RpR|h|jPYmH__X)M&=ZnApS^RYU+Bjg&^|ZgCw)Us|>Goavem$W9@E`T(
z+wWuGFZHxPtTy=Hoc*Wq6EO5W#?$`p<7>hH6@R+@F;4r-3PbqWP+R*4?yD1itKtp{
zX^i<tl#^F;i@t_hl2xXxz_?rHJYA3ZQ?>|<^^igBk;xgq*eC(5<&2lW^%{g8y));q
zF9f{7;U4qoy^tlOr8x3;m^@n*YxH=+>{nmf>~07M^~d97)XS~KzFsGs5(k&WNh-fN
z-tfXr-g9}iDzq{5WkNqRfcq@B)u@k{>zbtMTwOSKwx@7!7QUW^pFnQ)I%_c-K328W
zW#cdOls%qh&t}<MSoR6EBSCuqaFVCcDJ*mZ3th}Y#j5u#ASA_ukcjavM+MLixaJvE
z7=u8)Y-(#IcJ|5I#Pf5ihJwUo!TFlAEhYhcGrOlrw7gQ(l^Ue-V?7|H5~PY&#04iC
z;t5|;*+_!Ak?FXDbQY%^gF%^bE-@9-oC=@_EA&RXn%)9`#<MS=Hv<z$<}!8hy%=am
z&p?gR4jZq$w+h>53;@AcF`7ZJKqi4LX*|MLb}?bgv=*n7E?Zl?zxjltalHgg_zfqD
z{g){AAM2Ik@n?1O>ky8gi53kdH-Xg{oQ7s2Xj9VTaVZ#}G*u3r2`FoMZ`JPC*}P{Y
z*VEMgp3y4OERYEjXiuiU(z$rwkj91~glU%J+|F@sS8LyZy%`t_Q%-<tsd=>+4bgQ(
zuZwzN4@tr0772l-^}Gv9*{ns9)S`W1MP$D8=FjlvtC<H#AQ~oEEFI1jU|~mpAo7hK
zXI{ru57k?(L)4x307G~Q!kN}X^s~!4;~Ib(9pb&3c2UVTaXeKn)UF%be98+>gEC1N
z*eW=458ll72gaq4)LDUZ68c$-@5FVqadG|25bk?}n8bH>PU9y~$+4%)cUdI>KXk8x
z|K#*HmNqKwhd*RwnWQn;$?Q3UxoH@|hW1kx<O8eP+JVlqoLg8>1gel;I9I#r7nH5V
zWdhT5ZN=eH*LzSu-fx@G%n&gfgYPsk9UIR`PBALD^!$1kiRCE)SaaAj3?8n0@D1<L
z?2ay!Ernd7zb1SUYDc~Ldx)-uU~_}@lI0}EGNE%<(j6vZRlyc8D)25>i;zok<|r^O
z9fU{&AyR{7AT)@+`z{c@wGcf-Z{D{$8oCJxru=AmmDMnw*OvCp@<9+D7!S-}CId{R
zssJ0~tUdgp5O69qBmq{gD}<PO;&J8j@Vg<(WmFlV{zLL8OQ>4p(e_O`9@Z|K54~r(
zat9S4_0>t=R@ZPN*(XfqxUlv55(NM%1ripxmNrVBS?01je~7fRdHz@n3d;bjC1tYH
zFd8{{FATUdC=s6LMQ9o;1@s=k(U66q=he!U<j(u0Y2H%?q!lsvrC3s&`-L2zfG(K@
z?w!kg0JTNR0d(6e%M#SChl6-mJL$)2fE6zBGt|Cq(W&Y_8yrv!4hZ32;uB_KHUJOg
zkq2_g1E4bQs|pMP(s%(54^tJ2u!6LK@ku2IzMOJ$hBb}*IVA_yk68f+!{f}i6F<5k
z32ui?R(U0VgC()`b1y*WsXH)~RuBFjJFU_LbXxhr(qPK;mL1U*Fh2qXGP3Le@dJBo
zv`V*PXQ*=L(w~wtrx#eb?O_nBqZCUt8VDa>>B}s!X=!!B^pR&a($z0Q0dVn@#=Oa+
zbOs7c&pN!Zzcj81M13yckZU7yF}36^GovVfh?un#i=Hu%SMfI?$FnRzLi57gq|IKZ
zLYSc02BqS9kraQA4O55GzcQ^eI?3wsp*8JDe331qfn9zXxO>yUrF;7f?DWg|b`v}v
z2fB$;fRap72V|a*)i>H_h*CVxl_!WvWxxagqyoWIH^otX`1&8=neRISMl~DOhgyf+
z=t}aag?4oGhC0`8T#N(d^`PbOP|1NGN3<Pbl`j*@_0Ad2@#FrJo|vh~&Y;`^AtIjk
z2;k(IQIXtjTR;?*?61Mcl-AL`(~hwx9}y3Pr2t_`Sv^)x-IT=(t+u1VzSG--84~#D
zJzuAvl*(ejDT*z%rmaMYfn8SlyL{;1{iT0tO&@=!y}%DxVoEx(i-`uaho~Gu=5wN_
zL&)?SWVXa$vnrQWukn}GG%f7JZJ!wcw|^j^Z^_<kZW=qPFtNY2#NT8zeqMKDL5@nO
zfyCIp<Kz)xqw6~m&E3QXa+dvCd1yJN?rDWwH8LK52B3i$xB%UuC&;~%$T{F3>_Lj^
zJPqR*3H^iFDv9ioBD0^W$<cZyo$nZAkU^kM!QW7@(-Sb4mUoArExMzU11JAF^CzqP
zJ$m8n#O8Uz&V|<*A$$qR))J9Idpug31j?KPH`IZtr~7;Cw@RmBsFfd#UK&j3JG~`<
zCBT%X6u*6IyuZhX<FA4o9)|a0;~E7Q!KD=qfG}D0eY~M8E?9-`)UlsebK?2uzvZK?
z{xw(sdO&~7)E@!;QKmm`(;w$ehq@ZV4WI~pwO#8g=uf&fps(^n`pRfjs;u>7WS}}P
zq_Qd!AfyiC>o?4MUwNrv{I7)ZUl#|IRep@r#=b9i2!-LfrFx`D1lX3!3hD@|&i)Mp
zwn{Sql(qP@L$mCDhl&Qf`*Wm|xFBBv_*V0~op{qG^cP~{0%(MhS<XHp^bWX$L5<GT
zl1Ew0!G3FXv-766Y&5W@3bJt9aan=Epx`jD(@_`1FT0?}8mshQ7~24Aam#klj^ow`
z`4W{saJD~wzrXS*cSjTOfaB<924+&!DHXbBbSiTs$1C30fvIARC&L;CsTW}=qB@OV
zXfq-itG_oH=*4w0apM)6xG#2|iyHj`P5YMY(ZbfxT5=wRZI1}sL;FS8UTNylX(DWI
zH=*5Qrah`nd>7;c+5|Npx$5UXs%z9|Xdp)S7+9{EOfVv-Y0L&dJ|v4uLxxTbybzBi
zQlQc}Y81ptVr#L9l*TNGm&jpbPH$JXx!_Pg?pEUagKL9dLZd`?sl~4FdWhWYYeeL%
z^1DfR7`W5%SqT1t42j4=oH%oQI`sr>vs$G`lf&%skgiXy(q#OwmbB?Odg<E<qbpm9
zoR!AxQC+c5kayZ)9^}b{P~I5msX}fvn0f}_Nggeq?IEAe)IEkg4gZ`2z8sx1;9KQX
z40;Gnpf%hfjFKVbpemTYW0rj`cz&%_Isgevze|Df->+wU-=$lU`ZmYv2&3m1kCD;^
zJsU0kE}>uZ6{yr$Djg!}7x!%3e20v@Nw5;&MGwN6vG)Nl0C>ebgYTIhe49zzD#u|Q
z&=|&mOx&1cv_`{JZ6@x!Pzy7YHLaZ0p@}oeB?G%`AGmwtz@>ZoWOZ8Mx0@U;CML6!
zRDYcNAlpDBp#ee@_hzjRDI`FZBMY86n8)rk1$YyXnS)P5qMErubYnn&{Hi~0(;pM`
z$4&YpqZHb3r+(xyLLX)%px@~ICNbe;X36I(AvJINE0b`mS-f@k_00%qUksvEgkmrz
zurt3wfE-z*9c}wAF7a*%f^KnYYH`^8A<$O&T7@)iPZeU7@8AJo-e79NkW2R>@Mo=@
z3f8+&fp#VPugjlsnz_Nv_T4!Olr<bE+qq{6z<Lf2#6cHinWa+>HUui*Il_gA6ZuiP
zH_5W+lMXg*0%{Of<Ee6-%K-VZtW{{?notS4l#*D7>pFf>N4}^P1Q4g6SaAYELXD+N
z)x%DAH7AD6$PVjB*<*puvB1Jya){>iY^SYK4<RbEdh09fD|iw30B{2*kKt#a1?-Xh
z3ApN$W-~CpWljVxS_|fkJz~I<FlW6n1nrJdsNpZvJAzB6)G~q#+Q|sek`?Sh=qgvK
z;4@%9Udrjx1*9$8Oo)dhmF&|Cf<;hbCHso@ZcehM`N13|`}E>K2m5t+=}HRh8Xc|W
z#1s`41R9f0YQxoRoU0p37q6YAafEG7#E>-UjE=xW;w%tziFY(Yv!|*Vx79L=X-9-c
zF`mi*qd1167)==zC<~9m-sGGs2-UlVxYSNBzY5W7yqxdy2L>mEI_FwZW=`Ap%9C0Q
zbo>~jf>eTmBaQq3rf|ieCWT^92yi)*M)QNZ>uE5<H`;tE)kZsgGa5wMhc4N-r=Z(W
z2uij)JSWfshi3u5E)D^4W4Q*pWZ(DIM;~jIw_>i{;oNwGaeW!HcI|R}jf2yr3!z(i
z8`9NIE__5VVU^20Rt6h#s|w$z9GGC0<Dp^TQ8eHHVKkf%aA*@UEa;`&<V8oSF>k3u
zobsS_p4P4SmaUm~`K`6k^0l`0%hZ4clqtCZL6GRL+$6Cy8l%lHM9rqbmiVd@mkSQo
zZBM+>nzl&zRWFGi(AevrWw0mL;hPvZtE{P%lv?GVVWI-&HgB}ZLst0~vZ=wGRsK41
zt;NmZ(!QxyRvKOGWhEGqaq5jpwV>g}!|O*wCW1Mux7OO-Qlr2%=Q6rWU07Rp{dISE
zfYGYHo8t4$lW4nK&tyl5E`WRlhT{K`oFT#Dya~;rF!)3ZjM{cfEd%;Gx&8s&#7?(r
zf=zV^CVq^PeOJ5_m`y3}aKuQV6<-7Ja``+gA4>KuIBwH}QtE}vbg2QMQr6<e!O2oe
zub&dQUvDR`9wD+&2wPBV1*`lgl(Lq@2QS2@mey*4s`^#^VLLb71iNFJR!g3Mu4#sY
z%(c(72=bfcr9RYWoO-LM7Gy1MBgn$-l@@M*2=?4VSzM(Cqo3-ZXuD`}!u<%(@wg&q
zfyUkRb(f*M?rz@qCo@lNnFKJO#p}Yxmmlt*6aNq`CHRNZx!y|SdMk~3IzzN}-+S?7
zl#Zi;u|UsZCFWdAzF-EL?Cb6eidIjhTExAut9d~zHv$6fco+;XnzFf4zRXnFB9Qpe
zVGQ?}lmLa<1~=`4vqU*ydQg)NVDm<envc;2)w_iH60o2^9kPee@gnWKevmR;vTZG4
zhx2+BKW*~~qh=$2%L{eR3+#B!dL6qHy#~8+a%Vnu#4*EyrGI}r5bgN){eo{A4#jB5
z^#`xtLSIckdMUVe;Y7eW%k}fF|0*os3BvUjS>!FEp8t;PAp!+I@0s-bTIF*71w+`*
zA+R6BXMD|A5#oF6bmH5Lvt&7kkIO5y9}{N|1uS3tZs{0&VxoK`A2=DmT*HRVq^Nz1
ze?c?J%O=sZk{hBOl<`47bMq}&&hvh|$U2xpyvJVXgjEPzf4~;J5<~;rHNOP}><4j<
z!EYZ!3r6`Pg`YBHaR-!UVkw0V$w;Mp8(VfdmrwSW#7ODhM*7NMYe}Qgy|2UbDGxH)
z_AS2N?E0RRqjzOtX*lOR7`lTg8%^@{S>CwlZv|;vT{yy6t~1yM@W?eC3gDuL<52*S
zNhv6FEG$1P@_a8!5S-)Y4Q-s}iYL!p+cF2CoeWF*P~C@b)$?Qka#NNI@ReA)TZ_+W
z)C;#{FoZ66A=mO4C}P&iegOo99jztpM$>Ax%E`&r;t`FC_v8MIWR%to(jBP_@j019
zX_19cBaW@X)z!g7QFItae3*S;FfH&Bjt?HZ&PWpNb2YUO%7D;(M!`6&Lx@QWBp!;A
zKuoGZOe(tC+>Cqc^&qAKF`t4MYPDPNqk1-n5=`fqDjn+<7o1JhI#VCd!&u_f`3Nzf
znBahE)l`8G3<Bnmx4Z~$CR<_&a1hg91Ls*~a)C8XZ(FX8CMT7DLv#vqc})@JM<W+_
zdlEk|n18l6c>DH}aJ+$qxbdX<2s5J`SdX(DytS<dZ=W6-g}1NG*{=K9Gh)E!@)H^}
zjG-<>q@}^zTGban1aDYRFmjx0EB(|9qvwM@YDJ6~76SinF6fKbV0001&-b)ukgn78
zEiJfq*(^_1qjQ$kH?{0!bBhJ85NYlSBaIj{ix4f~k_H?TO$%D0PC9%HE{(2=p!*qx
zQFI?#Z{y!%vNmms)*$hlvqQ&9v3<kjjv(q->T$f%CfX4C2EHNH{pPUQ7-?dw=70~L
zTm}<?3e`3SY=U~>M6Fq5oJsylGw<U44O!+FjEB;*0Fh^|4cC8YYNMXNrs(-=fq=76
zQy%lzT>cK6lSVz8EpA$XlmmZcDlM>FI3>Y%yak8eTj<ApnR~Pck2_FRtZ(-|p(S_?
zo2{Y!wB8dp(4Pbys6Jn<_tU<WzLHlIa1s!6os*ig|HN-O1S5&xa%JA&H^EP;8+C%|
zLe@jZy_U)2D8<q+CRp}YM8%-hs<Zv|u-+)cN!(i<6gx#YkNk0h#xgn<uelzb8^-2n
zGBjHy9Z5J$nV0}G)RuMdo?(KV%dC>+#P6~h>fIQr>YbZGu3RvS$G#}*oK3du**6LA
zk|eN+ZF(Pjq2AjDiDZwP8)yK4`h!}M8{xtZ_?{`>xs=5ZE|X<dsoIXvoC?%s(ZZq=
zxRRnp&IFN@R5F5Yh+#n~im?P&;a}4`g3feXP6xA0r;c=zQaIO?a+Z4E)t04upasts
z=ZXOZ8*9_nnf8hWcyBu{D0d({IuaB|q9RO*4{y>E<c!P2iNYNPOI>h*2VSRLYWiHo
zJ~7%nf0y<2Bg>e&eCn^<?ca^7n-5?=Xa~~;q47Jaae`ZX^xPT3X(cYNHP&Qj1q`mf
z9Hv1PnG~$03D&xbTgurK&LT6)+g9Ll^beH7&p>>osz(q2#=)k-{sO)hVbw$$Wz#h^
zZMHN+0dU6ef*~tn$_Ls@Q7dl@#{<I{hy+4T44h}+sWKRVP*a$?tfl{X_eMWllKxI>
zId&Oj{C0mOKn0c{_l7}!y)=5LXdf-Ts6_!qA+qL2`RXZ&*5ZuJ;+o5>vRN>o<XBh#
z?s&po5aB^h7RE$Yz929n=>q$zqzkye@;zA>ainqh<UgZn67Z9nhO-a*Vm5cWna(*Z
z37=UAIc0tpxHc7^1GyI^jBfirJft<sQPbRM_T{--0cOu5Tq)}3pu3`gZ_XY9?;1#p
z=L2xh)7?#^lZW*=KsU(U_%Q93mHh&~o0^@1t4><3>CcdXe*kXo4HC$#$|h@I_OC&s
zFB)iF+yAad$O2<QcSolELROSbJW2qDst1xZ`_e-NyaQmmLT=nofEn0=%G5XX6Y~39
z{T;^D=B8pKpq4qpSlKLi3@2mrTU`&44Ym?zgYSdyv>mIDGTIt=QN-$0ShnIZqB4}O
z?9=B+@zcQ74xeaM4P>UOuTCLT;^7-ITROQq!*6F}$9fgf&lZCJ;A{!HZO0GpTo$q4
z{H)6P5*wjX7Y7lI+ztcq2U>PUaQUeOTJ&Bea1_RV=FA=AB#N@oSN_1tw}Y?9IA7Oi
zI$`-u6=~B=RKG>Nwngyd9FZ{BcaTHE<n(g&8v?&L4kM>>gCJK-w|@iX=6GhXAquVD
z8Z>i?Jp|)h@8A6yZiVmTFZ~J(^`h=Geh0(aX<&;^v5N!|nuL=nblerNV4<^DuYSR(
zaaMhE;b`i(>8xLaRhT)4iRg!E=M$nXUr??H)W9yET~N7x;O@@`0)(ti>zTfV>G7Xw
z3|6ijSh;p!<?5`;&$23^5q@z*IyjjA3P<(WzAueuQX4aPY+G1X4?$pbSP*DZ7w2h}
zltwHslCoyWnh6)klglZHIJEJ{AkMcOFov0_z1&@z2*=8iQK=~hZ|?m{pIOKjF?_vq
z4nHy3rt!06IcG{)jk1QCjj+jTUPs?sI>H)%mfO+F0SWC;Cg5AzSo-OXVp}%Q{^R+c
zt_|tN_WcVLR62WE<6;QBspkkzWf+cM1c%?UMJ!b6b;Jog%OV!ttGcho?U&2o&@t*w
zh88&_+jq+{t+mwJfex}Th9nuoAC25GJRouZ97EpL2A~SXP(h7B+-3EeIsj0wz99zY
z3;JWB{&+%vJgPtbu0OWtL6e+Vo4?2I2XBWMH_u^V1><H0xuSBRW?~pO!pssKWR5t%
z0J&={%YtR^M`3GmyW;(woRi&V>%3+SA70qKS>9eK{W{(czOGsQ8rXrWk;b=;213q!
z+hFi6zXyYd2?k$_cQH6~fx`vIZP6Ii?5CgbAhQXGCCdppZ*v)i3hD%?25<q?7v?_=
zC{^TK0)RP+B0YU%=K<Pukl7#m4xIgat2v09BY%iifkfLrd#Qo+n*kn3HNUnBLE3bk
z1L@>18wBYmYXNC7Vly?QekxL;)L*G*Lk+DMj?VEd%rxqQ3$+45d872H;(nmWQI$gj
zNk!TiA23m7cPw>s(X<mgna4A5MSKTsz;qfWjzTd+WgVzH*OuA;H%D<mi>Fc#=P@@w
zRL`gxF_XHi!V}-F3A2h2$*|%#vJ%A5Ooc2bU2vMe-*f>vq&bX?B2ugvFq0avX;6{7
zL^(-*dmJ{=znD7NZ;!y#m4i*VJ8HUP^lfJP?e^<1C-r5OT;OpXCir!jw7EhGdG_=g
zb*y8-2t!3P(&01px?fMEkQ6isaMhdHKh#t&2VeYlk5j<0AH@LB`&30IdQgU$_F}ps
z5ZM8bQ&J%Lvjg4Za6^A9>NgW{uqSvDRvIdwQIpkF_heF>VOv9mZ|G9}y{dXeB>xrt
z(fV(Y?vqd=Y=tSB1I+Bi<%iZY;@^co17f%hpp1bQwDAW4_^<5i9@i^=f;eci;lIjR
zR@h9HzQ)d0_#Q%Lyed5Hw;HvjG5)N1>z5ie`|uq#>bWa^s!_jx_j8RpzHEDq8h1M~
z#>VfhQF*(OwsRDMdhv|#SV{(%nhsPL{&A|s1Rd=Q$J>X002SCaE`;d&D}7b(VD*W4
z?Qfnc;#k;F=vH~yROzm(Jff?NtMF7wWH0kWRjxBte#8`sUMA@($>L%#fHh~8n?qI3
zFjbz`Rfg#*n+iO=NR_igRT`Trf74Y?(^WQ)^HfP-FNcJxto>aNzmu-gN>^!mt*46Y
z+H5RvhyRGF@;PtGuk`)2TrjphYAjELs$6fXJfN$r(N)r-#xgEc<xErM5?y5hs;FZY
z(zFG>AP9b#!uS5hod=l0_^mAvj4n?7E++eAm`IotF;`$-5AMe>VSw*S0?arub~VSx
zc`;j>K$8%Azqat`mVx4mQ!jekA+7_y$4ooex@0>|WYBCUA$B{kyD*<dw=>+d(@(c^
zzhHvxRQ<{!MZv>SsLtMYNR@!Em1(D%_j1|3k)xe)6}jyYRW5#nmH(~u3c-V))sQga
zNACB6Y8j>5ff_?)-?`1;vd3t58rUdD#D{pW@QL#&&$3BceCR3@q}jM5k~G3bqnxhG
zngx6pn@;y*M;pzb^d>z*M8ZQ-StB7cL==oMPIdIQ(Au=HK)0~-4X1_Sv0D&weEz)|
zK4Dn9R}cIW-NGww3vFY!(2_7b<Za<D(?TQN!c@0~PksrJ(lZLIyW`YwZwpzbg?~Y7
zVD$an7VeGR0(b`RDS2CHVOkieTR6mRVMy#2I<bXMzVqN=)gFz9=DLM-uREBuVz(dy
za<8|A3e&=3pa`S*yW7J1+Z{ZJIq!&Sd%`fp+d@Cn!bQ4;%S{VlE1=K!K@(xZ_uuxY
zrX$!!;x=tD$%+We<ixC&>9|8;*KUjmihbuHfTz;e2Z;ddmugRS31j=9I-+_9slLQi
ze_U5j($z2j)>Hi`_I`I{^`8!5??tBiP+fg164Co5%RJQu`0U8)UrO~Jrg~#t{Ucrd
zVjrmjxu5_Z!`@p(R$nC5_wCYSe*rfzVC;`0QGNF$SI%3I<Cm2)gk5qIA8Ci&Rg(L*
zCwH*UorYYPXRr-$KC4_u`4~*Ys7L_1e`}4gRr+?}Bj77$&rl?PKtK2^lh+{;wYMND
zNu3_E_TP2w`=$0druMVC_IS5;BefgnO0<T7rp7{F_uWI+K1*shF|~*5+R3^$&=jX$
ziCOzHU3;X|Uh$iTyqT_jrmkJX+7HEq{Bm9U3aLHa)P4yQEXGZ^1Z${$dCb~<bnQ&3
zJ;>C)TGu|(sa*qo7qfOJUHfRM-O|)<rECAu3iRAFpTZ4Rfj)+hB{6NkS0CHSyDldu
z(sKk}l3Qog=`y`=<*`zHY~a@&`yA1gEjZelcJi|5s{2GK>#EeTsJbLp)vqq|_9~Ow
zTb`;^ji@>~R@G;stCo4H!b)J(zOkx4DfXW;R**MN4fIq!3kd<=%AK10i|H4I%E<sr
z4~+vR|M_?blj&-%=T{o=x^{0kUhkKg)9Fiey`FD0a!%J^zUl!pT~Ba!@~RP0$eCx9
zd@84^V-18p17Vt;EH4xYj8dT88Jd+#1z0mH6WXIApgkhG%Wl%8hBjG4yKPU13(%?N
zf(OFrA$G;DqRe&GFF;(-<GEN>=jVC{DmZ$@Q}sOE>x5WUdq(#<#Zxs~SM3?A>J?#Z
zE7r)lo~rZ?0N}V-RnwxYCU~k!0JiOWXLk%V?HK7DtMvN*w`3@drhjXI?}%0P_2{ZI
zJym&P2>=g{RW&D!u0ot)o~k$MUfaZ~dV6%Q?LAe$*1c}p6=STshI_{<y>9&`G*-@c
z0Qk{ZRaXr2Ru#qYq^IiPy6V+#RXNc@OTtdva|Nq%PM{_eZo0u!wXLq|cgIS{v)IFS
z;!x?;sVcpuOI3K!DRD3StaZY8x=%qdkvM#!0pEb%u^@T=VlIxUWqogL>(0^L`5K`y
z(kL_hjd<gNl`&_@_Mxu>44Hs$m}$E)+pbJZ($>whw|lCKz1uCa`lF3mJ;hXCM7FI=
zya$QsefiU#>O`8_&c`vly?2!An|{(GyIfaqt*d8r@z@t#S^c@l>T4UZ_Xkb&7P|T}
zB+?gyU!r}u$c$5kr!uI=9XMv}RN$$m1+9g|INB+`i%dKJWW~zloy^0#yWXXw7~CgB
zg7LI~ahOyuybA5jB?!>}(~{7TLI1CSM}0VoW>4@(P=|&CyfZiep7_8%P_N(Bf7GbK
zH~dkv!q?-6?r}J#M27@@57@Gvh!TtpxpE2|A|E5+Z1#YJ3z;wr3H@axYgKO~1o2WO
zTn)WniPwd?FpZb~AnhfSmdv!-I&G^-i)R|2jYPRb)4`9oA#J;CQ-I~v7x;<X4SV&r
zc)EI@`6X`toBa7J1OM#a^Gu-(wScLaI(1uf0<~7nV%k^m#iHcPCasuhGjv*+NgKno
zvvpd!Ny}l{wp~*9^#t8sKc+pX(^i?Zbf)=r+Q%lXJ=1pmCUrBCG=dVCHeaW;H)+34
zM%p-?ww+V&*GxE9Cw$0+kC?FYS83@kCM;#b<2qq16BaRHs7}aY!W<?vmIU7+i&Em$
zT}S`|rtZ=B%v86r#Jrts)VK9tC^3c!=jw!2Ot_2*+j(IQy!=cU#Dqt5!fYn=V8S4s
za2pfSn6Ud7sd5by+A?9jPB@<lO_?x6C!E5B-)=?1f$dVI;3D{Dzd-^ZeP_3Z)UVdF
z#CToe=1WoHZ6+M56E4063C}U%rJtpZYnd>Y2_tpF;cWD7CN!3W-a}u26ii_PLc`eA
zDNGp4gv)h8D<+I&!Vx-Q`}0URp9!D*C{;dW!dXnXM<@J~30;_QfljcQkivxKI$;bG
znla&>ZPLd1OxVR3%Mv80kwfrpWwq;7q!LMBG@)5Krcu2ZCu4f>MuZH7xgX!FyZoDp
zb(J^GCIweoZZU6rZvM1Zb>}}-XMS36Wj*;z4y&vEwBS?8G4nYIhU4eL7H&a<ChvHn
z%Rh>M_1f|2j{m7c-D2MM-27{k>dv25XFkSPPyXLq*VTSna9W#~`O)J&8L!aQKHli^
zQ|jb5cl^^rY!(wg1M1<gYwOI%`0B}@SPy?)8=JqP$9rhPpTo};b@H2wpKC*G785_m
z*TY`}>da3IURzK8uzL7wK#0G>_Ae%!kG+dj?p+`Rmwy7o5eB-suqQ{6Cfh`~PA4!B
zo=|vAOo+F*ETFz*t%r>m)+@yotm@`07!z|C{hj9T(X$Y@Cm&P2_%HPbkQ&fmeEt26
z$M`ZiKDZ6|$BYlL1^wU*<~G<s43lG&upRng@C~~;T=e2wF28w3pGvz6HRL7xe%uIS
z$S=wi5fA37pX<(t$}bQbig9{C#SEe%AcFaq@Bvge03W{$su%y)0UvM%i~;e04{W7r
zdJiW)GDGwRqAsSh+~6bI#fM-f8Xw>WU`no;VXLLQeduaJQ$lXYBnloO3hwvbU&8xS
z8VC<S`;XySKk(qe<39-SoZAq18o<BV2c3VP_8)Bi^>7RXjBC_b`lCDg{a@;jr332i
zuL1anHaN)oqYL2rztA7gomVeD8Yr&^Lw_7YX#PLaANTe@c<>wy{n5A~@HBvb55E4m
zu3v-s7nf~sgEAOH=NJD-=r^L-E?v(ZdZv^vPg<rXo(tT+6J!3Yt^VxyxxwPrKeLwl
zR>fU()`Z1xI52QZ#H7Y$8opts7w3<O;7?&%5z|uD4}0`x4io_+05Ma6{dpw<BH=KH
zmUS*>ABex1E}u>erU~Rh1l3%o16b{@QFojJ^j!k;A;x$w1+1xFdrka!a1lw@^k%Eg
zCuuKbk~URJmjb^gszANv<^gg*>6&hf(P#B6b{J-#SQQd%RJtvVeWsE|sT?_~>a+b4
ztjW8v13mpcekmB(eKij3_CYQXG!*|Y0~8D|ezzd0JD>RiQrJZ4@-&=TY;R&6Xl$v@
zqs*1e)f;hN%g6r8UdWYwu>#~amE0^^sM0%PM62&pam3X54yFWMk?{YWxQ&88-CwD3
zmLWR;>Zz_CoWV320-Uwc(5XOV9`Ntv-4vczx)cq2BRFJ>{@vSk<Cp})5TN?@1^8Lv
z;77tQm*&KPpQfuYT04IrAKxb>_<QWO%HF|nNdv3wMPVx54VD9><>PY_?oau$ph!q`
zBaXj-k~!ene0)xV!M?xXbjdmqH;Lj(ml5e1n+lJ#7H4+177yy4u}VMF=Aj>`^b`L7
z;IBLlm;&eNklvA3l8%N_=>lZ+)7@8BKM_&xwCHj{++t9Jhjm8cL*r4Ru7&<FN*|75
z>W@Ca;VSqXHT5I-cfvKGJ!mopHamD1qt*7VT%(!6bD_O7C-Z7?$S9aXkAxg~(aoMs
zS`eMYL$04JtdHHQpNnvU_YhSCAgU{9>SoZ?okvsm5d%<!Jl(GO5qe<^ngdM0sD`PK
ztes7mM$`_|2NT0!0t;YF?xnN<F^3@LQgZT0k9-Eu6%pc02%UeK>a8JOaW>F4ig*Ul
zIE>M=umnH{Z$XNK$XM|INBEqH>+?89uwxdz=P~d(XQJRU4bU|ZpLRp!n|^>K*%3K=
zsw0b{Fzq4WS|iL-NF4M>gcmAZ3d!|KHFpHmuTz|sBBc6;-azf8E+Ql7Ul|)-Ye|BL
z3Qte=*i?8GWUvv>PG)Q>I8LMzkJ0d+N?gQ)09AQ0F+vpmHm-^l=Cz@k2`>jN<5_)K
zv`8+5NG?!s^#ZIoJLMsI7`zj%tY3HDaD15V^v*W|f^40wxUCj!^#%lHWvm%4tbePb
zA~wEcsT!&O4iuazxH<`!(<NC;MkI~yv8J%SwIs8(wPaB1(X}8>>oC&S)i(E!h(_2`
zYGzL$>+&#U0pu`v8-lN%$JLE5M5-XZe{wDON(2yf;VV!ZzTEjbL*BB`^K~!ct1x<M
zw$H}|NR?h%g)h*G<Rt;@w&Bh+{hpQ_Im>|+ow{0bLW&=U7OUr}%g+MR!rlXc25|h}
z3=)qEzI*tATKVsyNP9=?%5$hka1^bo-~^+$)oCA_m`-XJkp$@da3iPhc+oEJ_5cd+
zcimJkQd|Ga)p}v{v?`vi1)oF;I@0!opeL1d`(lzqH)PU~fSxn@MZFy^DE1Hl=+!;k
za8!?kH&D71J$QAG^it#&iqJhjX8_x0g|TSFc>X{qv1Hm~Pw)!T4_QnupU#0{fh%+L
zwKif-z??(E99;rB3HAjNW-X=FQ7)-|OiDOZ8yJVrqEuQPSt6L{giMPV_Mkn;V6(Ie
zUkuZwqCu4~%w;-A>nd#<3YBRaJP4yU(&Cs2^>!Cb3BELs56*P>;Pj@}oCzF#=UNP5
z_?hr0_-(MB&0sjx#&7HLh2KV?!v^x(e>A_&`>EdfwU35q)fs@OVfIRc>}TQszNFL_
zn84jRp8W53d0d^-DNOO%LvliSPj(K=D_xrBvc0;)&5PjncnqUH`}ufCRW!eYzhqrU
z8Krnpy$Sq}UTiq6tja3;Oqf}(cCv9`!f#Bi@%V8o{JI}lWiwEOtZkKvVHY?*2jy~M
zRO9p3-0&q)KBn+IEQ|1YS)RYgvKS&DOCnkHP@^tAfs73u=`4w;2t?n~JbhepBbG#9
z`+FjmPHTpGCNn61Sc|e|BAN70NCtI=dhRsf^L1A;V$R3U5GVDnL5FqpkQ1i2cRkfJ
zGS8zT=NuhTFQg(>X?R}g(##NxT<hjVsQfQZ#gKYnaJA|8>9z1j%=N8Rb_$AXdUs;Q
z08eRhojV?%MbLx$tg@{xORN?Cp)$;dG8~W3TcHd$#NZmxAshem(@`WH3%Srj`g}0m
z&`c;<{Lci>eHM#rIE#o90voG9S_Ic{AuYM&nz52wE7uh0sT21#Mwb(=0k8A}Iz5Xy
zwt6i#xm^{knJUPeCQ+JqT|{tXj~Jz&MlqFs3aE8iI0J_3=Z5${+K2Iw*B(`Gxp@(M
zvbZ}m;{UDxBiotdV){QMH-c;`4p7(W|CrDKd_8+)?fAOe&5OWSMf(3WzJ9&1E_{6|
zxsmu<+pRu)-2&YPy%M=!IEKp7PkVESUYkpV7{nW4TFI@hVw@VaHm4DuXW;CTLZM4l
zCv^=wx`vEwX5?^5Zng`b$rCf-R04M+WeZDkNP5r0J7}4fyP7LfAD3=}ncEdtsNlcx
zA#^01NrdxIv90|9<drT@Sf=_*Cu|z#ThGD`Z2BX%7?Q6))!uK{66iYH<Nn^c(Q_|U
zI&Ei8KEQ@Xnk+5m-J}^2m<#ul9dR<4?J0wY5WH;voapwQxm`A>jTI^Fzm4r;nNGv~
zkm}Ww(EI|^eBJms#>Fr0&d?9dq=az1b#xd`aJ$4Y)gOexYgK$g_K3!`Rlb55FeO1f
zSQAgluU5P{k~6kg*rl?zTl#eqYjMG0&3R4mVaRN97_R9(j5h+L4(zdd{PhEuZf(*R
zy0}&I{y37_D&c}a`&Rv?U)(NXdRDvUfy95j(>?A2yG<)xFx4%qvVFVrruS=+aL)9C
z7Rb8?c}PzjRM`Ya7Y*lRRc=semjXjS;x3J>%8lws{6Oen^*gFnu^gZL;cvpf<GX@?
z5vL&hOD40*yUI*)OppgIqVY@mjRh`1Fm4*d7l!FiukUh+=S=c(e=TpAUg1WT<&rbe
zu?Vb7@h6!R=&9<cUVjLU(?Da9F|!$co`&(m69MBS1EXw9&nA)Xae%{T7`-Ok8qHsZ
zf5X;(um$4OS7RLh1u<y*LOh+d-+707lq_KKxRlfhZe9f6cOtZ7Jh&s6VenZM3pGEb
z5r-lFJp8v{4fscJqC5l3Ic=PB^)>?ObOskCgc+ye3{C}-!OpyAdrd4e1Hz;|^1QmC
z0NdAL#wpDV*MoAY<Qn}8vI3Oq`)Hi1tP?P(Ged)l7*AR3@%Tk&gyCHLN;lq6JI+69
zQ!CCzQ>Tz<C%FwoAb)-rz<Ff|PKQMz;C($Nyp9es>kHKu^C*#(gx9mCl5v3&nvVLW
z-VAL&-YO)i-6aFPNZv24!WX00WC%ZCyI4~q(j~K2aza!PmyGEi-$9RA>h&~?^Z3v>
z!^SsZ9QZ$#yye6PMejGQ`3WMAAz?TSjR{-U4L;060{G0m%eqtDJYXIuU>_1jbOIqN
zbRY_Y$EtWgCcYzNQZ@S-cTQ-0TV;2$3IIeOekhjg9A_DaAGhX&iGe@gU7vBS)_`rR
zvDl@K5(9VJYOv%Q0-%4{wlc8bI|wjM^*kQK<z9y7Fy=b`F%w^=AK49lH1-da3ByMN
z^piS2*+T=WC8I~tjp`PjSGp9mZV5Sd=4IKxY5~)MP=W2j=jD>)0C_$7>D`$00xCp5
zK@2?mS8F_*Q{X1=zSS?G&8b1D*5aI0y*V|g6E>(iWh{;95f3?bWz9^bb(6?ph#m;z
zayF;hW7txTE~Np{<z#b8-E}O6e1uD^NPT>8<LNq~v;Sp0%yXUV?XLmx1ZiR!LE~rZ
z*#h5k_ze{Oi}7?v0IvUwc$mkIsTUvr!+4m(2+jXT@i3)FA3S*c<P8{eRGbdy2)_vD
z$b6@xPhp~Pl7S-1<!qS8X~UR!J3BQ1o(Ax5_Ce?0;ef1x{F@ay-)egpyVRU`#b%(1
z*1&+=EvZ1sqwY?}tF(1rats;s89tv3jNN|^(?9JQ+K8AW^zFqUmx<<sw3}tEnZ~bX
z=a0FazroI5j-0<5)SpaB_4c>3V*~oT4dctCJrf=eoX_$3F*M*f3yKRonD269k<nh}
z@<lMI2LXm5Q6Zh7K03t5xr@_WmK0j*4+f0E>oI*0EwaY1AX-X1H2DkkK+g@J$NHlh
zfS<b8W55lOgxTBNC<yW!OeOJ~U@96pks(kane79Z{?vM`LGWcBH2CIp_;0`m93CY6
z)wKVU@YTovVEz9p{}bMW#s6T#EQZfCP#>*7vH|?xAbsTFa0r0We;L$&fW}?MTz$~`
zi>d#j`rFyA0plx(t^cky`cG(2C1`9mk#Eej#(K-+H_zz9l%GUK%Db^fQHIoB4nPZz
z_o_WSiE&Kz9aMV<OW#G|<7*u9t9Smn7WhC-8WCRq(=g%##PsMp%x}gz$#L-^n2E**
ztP^002SY-d?h-;%O0_R;r#T$|gVEz}5Ig{^ZtL2a4Geu^!Shba!GlNi*?)+i(;Eg)
zgZNkGZ=upb;@|t*Hk5xG5HGc6v&UaTSD=V@Xw5Btt=T!Xtho~bO6~DK4cYHu|Bf$8
z{Ml*pR5wh!z`#@|Mhd#sQDj&~|AhPL&~5boSVQ8SHh)(4c)4Mso*Y)ocssCTeR4`0
zN#Xk9`bc{<+CRnqo$=x+R&7T^GH9_eN(JF|46cLH8<gh9GpZ6?7cqXi64cCOfKnXZ
ze*^Z{HgEEbpFXe<y;Zk3$2S8R_4KKZV_z}wJsIQ0@+ZvK>#u}25UL7#4E{k?jsBeR
z4&->zF884M9=jeheq4lc$Mo?UhqaF7oq^qRk8?}SXahO8!R!5q)Zg{{%hj5V9(>Rr
z1$;QYasy3#PO~p@_yGf>kYLcpF{Sn$P{!d1q(K)F8Knp)SHBzv@apkLH7H(GJp~vY
z93mPQ{#t|-3jQ(>SD4BW%|05dBfvx#5xdy7-x$kjPN>Bnh@q)I*x>dc6l}Ft^(54_
z#EUjWo^RdY!Dj@2efWn5RbKvD(fTj*R{;GvxcLwHD;@jS9(1U5Kvg$?H9+2O__TI>
zy!Cr6_*mTPFXQ7@^mmZ(k&0b)FFsNMRh{^-DjF1@rG|at!AZExsb}{)I1y3vh9#=I
z!}Gi`H?oDo2S3ygLmXL+kjGI;06!~SU4+|vRz-7$(bTKc+5&!qV|~U!WKv5YV{5RP
z5el&RpkS&*8zP|IkK}Af=y-fGu;!P7+P7CSMSWs>1z*heiVQD+-Dgdd$nBMzCC7M^
z(Ti-az^DJHR%qf)W*pbR=yLju0~L!@L!1ncv8ZkqF!otk08IFN(*XT?!}?ljEi{u$
zh0e%!XcnzsAKdFOL<BwWITX;<qhDW&>F<Y!B5aNt02mED3x{^E!mgOBNq`W&0Kpfd
zTpKV`eTU6wkK~X&;NgMF=9I|EF~szoV+04!J9UDSiTf84F}jl@xHWQqYk>Z#UgyDo
zgg)-G$Aen0K0X7T|Hb)!Kl(Gc3}NxF&G&P$;q1Ypn%fd6sdK(Ri0kE3(OJFgwFdPE
zsyiznp?wmKYq5^RS}^{}WrsANzXq*0fb4_2UQPpO|MT_o3oROej|Qzz!Px)t`t(>r
z^Z(I$`M%}{4<7$Pz>lwC@HB{jvkx}^<|Q<ge;XJdCYQ(EKG2!7BIc#N%|M&~C_YTu
zpNH*i(S8x}VGpu-H$IG0i?cr;{8#zUZeWvMo`&7m6tpU$^26uz`u2OM$1xE$aKC4J
zQ$Tvq_Itn<vZE8*znaUbH812QP~+KoefvFm_1b!3qsXzfnFAbp8yf|B+^hkmP$rGf
zv2LLVrufDOaBh#BzZuUGxqdcBUjps0s=F}YZxR^M1m7|d0gh;?n6`(FNGdTbyvL&i
zoGY+Zt!L2pu((@=|I5_~KvGLQ%Y+8(N2Y)U66(_!&h0R;g}FZ}3w<EOxFN9sEh42%
z!0GBH0H|U2(=<qb0K$Vj{}I3j`HP2#)3bXO$DdJs5@&pbEVaRe&(pDX8w6w0$v_85
zyOlK1=(dL_r}%5C_%!U~_n9g7f$=6h-WUvYPvm;#ac$qipyeT8o+$>64`Fku{+gwT
zi)3TB-OL0uh7iEO5xfTgQ{t3_tUyzQ{}=WraH)7P3-Cz59Aa|SvDi%)#(^yiZw~Ag
z9%3Y7Go6!+iAcdo#t}HlxT(NKe6K%_M1_fo7l8Q_@0B<|)whj+!c17R;rb>gHom%Q
zd@bG5MB^)dqhG)yx=#E!8ePpNe-MeT0(4kC^F6Kq1ijrqs&3-9hsOI$_cgx_=GS`v
z(y!3|X}FrQR||iS1BFK+khM{QwRm!igv^Wsg%*D{N6>1E=9w8g3YJR*GY6Iu?>xQ%
z9UG>92j@rW*RcGK<D>G!@L^S$_`Q76GmrFyO5@EA^1N|2B#ElmdEOYwAgFmbMPelj
zxVm6WH7E(a!u1@k4h4_IX$1kvOTs;i18NRO0=W&V4?fz4xN+YTCNYDFnRI*cu(qFJ
zNZIO=8vS^24p9kRTh_T)3Yc3YKxnAa<@w9h?{Oe>t?_%;f!;uUXn#XIX2u<8C%@HP
zKT}265(sgUYX6oFRm9L`Ws8eW%c{%~Q9l_>hg;xbZjG3=<l2Plt!g{~!A^D<exvVq
zis(Nfs{e=I{EPkXtobpz|4A5sCdcpW_d`sCwL#=;8MO+W@w0I!%77j6*~ulD-nf1~
zrld&-G^MIbe%JI7G(j7<C+~qFqh_xHK*6z*3(7G3SQU4(+0t!*Wegw#{{hF+7PJGt
zfbzhu`u_A<U~G4m7e+jL;(-w?_CZHx)8!2oOXq#ss-*!O8i^_jnRz69K1u5bOJy%p
zPago_7aPEZyte<X;=M;qY^p`l_Rqnu2|H~6+Ty*<C;TAN&bO$n^5Nj^UR|wee67sR
z{<3&qyi=)H=Ym~!_GiWWnojtsS2t_gMgY_6IBOaY*!Jpdm1{@V-bPaa#NK$m*S)t<
z;fcMv6}EVp@&cPIWm&JDh0Www_4Zy}ov+{a>I0vB^%q)E^y=fs>q05kEWBS;y4Qym
zGQ(Qv=2Y9>tB>>b+g@i$3#ibvpe6n`D}3Iod;n${PmoqWY-fLhAz2ke@ypI$?;Tz@
ztE@LtWuouZd*Tsx_6jMQhQwaIt+G^R@*uRGy;L%A<zY>)D+{W6O(}Ri*hex@qls1V
z9{fMO@T}x=eqL^s@kCy5HU0pyCRW)a{P`;W#M%!TRWHAb=_LM-bAVRzSPJQv%Bcp-
z%-J%;%urw84qhV>V(Y-~kh4l-?RxDi;9cqW&${qI(vod*cTDBN&O9XPxAiAx=*p$t
zKjJ%93z*zvqh+temX}rfBY<MpnRrC&OtK_6RNswbE$-Dc%Wl$?FDUx)<mRzfc`<Ht
z@Y_X=aJJa8*Fbk>+5Y%}IJsOp2hHGYL{`)I{`QcyeT(-sx2B!I(kNMaJ2ElfG;P$+
zz7l!+kvEQ&1M@pC0yG0le+LieAVt?}g>U^UKf#ZL@!hlR?8aF=)>_lfKqCYBBG^gN
z)si+%NB1q+ckC%vc^Nnr@SSdzPr^5})}+wixA+hAauR;){(eJ0eV2aQq<`~jz>F60
z-q`0pwz$cf_A$QnvzD}Ei+j;x*~=_lyg#+DC9R9ns>Z>$LHT~u5v>Y|miK_v2s~Lu
zDMfI3VHXk<h6k|62g$JCW$<iJ>5Q~`5eq^UQpKR9Jl>8$g)x<{twHxVPjn@yXJ680
zIE)cY2ojR)yaQNf-t4@y^IBF97*dxkC*_xEOq>nQ7WVFE51!Mvc&~3_b0GieATCX+
zLDE}p((2&1Na~MQx<2QpJp`rq`6edzx37Des0&u<WYjRpt0kEy2l=J%8|XAH_#l3g
zQShD`=5aHu-BUut%IBaH)W<LW#bE&+K=y}kqSfEN`Dw66|H>V~O}N1t8Gy}XtTq`{
z%s?4Dg!q#F8vF*I{p@Se$nQR@qFDbzP5v5(U;Zw*8)=jC;$NqY{`l>X{Kiv!ugGX3
zO#$0?ggZLNO5gx@zVMd^I2^F;_f5okgfD|D!Cn3B;ec<y&zhDCYBKdXq=LRD7PfUb
z3f$h*n)No!>0n1>X5l?OEmE8oJ_Th^ym;Ip$iJZSz2NV7$UAd-ug>xgtGa*hpW$HL
zaP>=?)gkxtEa^<hDqq9XT4kv<twa(GlV_6~_@XA6y!mY*ZotG#WUYAqFCuH8=wwmu
zoroKppGqkE$SV5>`a)N4`jfOgt=sDFf;SY!-e)BG6R&CeAx!y(%c?){x}dOs_bNOr
zJdm2QDO$Bk=i={q*5WozAqmih^D(Lm@LC~tQt53v?_#RI5u)NIUWv>`l9}sdHtKI*
zh0NcZPwdba2g>?4|2NK#S*8DvwRZuJvby&F2{Ia$bfN`~Ry1m?@gBTXs3<{ECOT-e
zwnjybJ)SnF)tbr#V?_xjflP;2ZKXY0^_0`vYOSqz#Cy0Df?5T&isA(?)pv{+ya7sU
z{-5vK`<<Cgf_nV_cpmc3`|jJ?Yp>g0d+ohzmEKiVTGzL*4q4NiA)Arug`4y1PrXm^
z*9g_#m-j9{di3kP57CgL7c!mpr`})i*QiCAPFvnPQ!ITExB=RIS`J9G_if&?gEgnU
z0Y@$!R$8g{pqm}YWC=I>gnfGdY42C@eoWU0gNuCc!{T`}o8dFd)nb#v>pv>6%PMv1
znnbAV=Wd=}diCg2k+jO)q)1j*<hm~^5|-E52DmNVW2k#<OxVYd+~W-Q@q6xZf_toT
zX)E31+aF_Y-Mzsp^nUi?w8`jm6mm4z6v<=GBcJ(EYosf}cIz1jTCZ~Y9J)rnTSQlG
zR`|q6=<eubszL0B_^fY8RnC07O?A<1t4z{XQ`+3EsEO_r6b2XardLU|m}VDYn)ODD
zjT!|^hNSFRH&=mBOHk?G>SF#)5vc~_gYb7B=eRy~loZ&v##Oe|XdEn0`-aV1;?g+@
zsXnZeCZgYIo>>}mN_}^`WqtnM*K#GTj0$8YdzRcX(FsqkhrHp*y^r=h84UZ5Lm_~d
zhhJY1aU`!8JhF+L6(YlkZq<%nJ$ha5W_BI%1HS7U<H4D#6~=DR?5$oGVt3I+HeU{}
zK(|%KJ7o*&QeyS0uKm-^Tej8F5$!kgdFim4eG+|3d;dJKD_M2u#IE58M1lpv*&pRl
z6YuziFvfV-3#Ks=cI`h@oAj`G>9C=DB!Y$#rp{G|rq|bYzdNipK7U;@h^?;NehB+O
z4`$W#(Rlj-6sYY=m6wotX#1OSrBD?qU-KzL6G8K4T&$pKYlY_q$sY}H)TO8owzFRV
zkt09EDguOZb#O^@yJWvzQ$3+;#16^ebnX^?-&LLF7URJyPNrW<rhBs2N`rfRWncRo
zUcY^9F|W@Ps$gJK0+_6=T%6p-H=2xMv!koSBUxLJDXcx(Sa+;@9OxeVxJQ+H1n<MF
zJt(-y0Pe@H@mZe;g7&u?#XJpS9+0Fd7T1V%JgPMBK}ZkxaUo(~tiB=PR4P^83P*aP
zUrqq4>{#70LR5;`lB7R$3LnmrMmW%Bu*PUy0I!q5(#Qoexh>UJr!;XvozdKuy3u<+
zoDm^mPKuGYzbhw&0z84qIVorZ(r5KF{Kq>E*JA`-t;O*A-D%Bvn8Nedf}OV*vIskc
z^8@z##%DE)a@*eq*mLC>(I5J3v*=13MsU|6T}B`1+?M$Kowf<4{<gO5vmK_r8BBfH
ze!LV+UBQnnFZ?Dv-LfLuA}1(og_DGC<Ao4abNiBt#cdn+N&Ta3<9?|XZ5#JbJ=(VM
z+wo32)QQqRL>l}n;V&fq&J!{Lv}nI<Qt9@L2=~8r>0+6d1Ic!KLNn<tqUO{{EuUZd
zflLV-3EfAVYn7xKlnCEdSmPsxLZNnyy0_Pg1U#^QRbt_W@rhj*C4ymGU2Ece3eca@
zUDSc7$xZg~3p0eP-ep*(x?w4zSAV|b;5x=oY76KmOPBa4U?ZIh&Y$_%Xo~~myW?|o
z9F$G~Y2f_N?-`AlRc7G;Ms6jH>m%{mGFBui&|=ag^t&ms*Gl<K*FTq7_z4K%R`cOs
zS7)1*Y83BWoKdY8PLUv?0^3ez72tS%G*>}Sq67>Z$4u#8-jt`56eMTF(&TYxH0)Xl
z|2)Bjzzyzk{X63K0*cP#FPK=h!OeG1a!ONjU-x~t=^6MZg2%L^m=kg7)Sqw~j6AT{
zF`T>X34$Mj*P*f`JXJE!xPo2)tfCjd2O3qPnQlYg9)nE@)k|V2MazeTM=+IE(F&ES
zQ~^#&<KD>o#CCk*d`V6hNb8NdAy}a=s=`bOyHa@1wf*FVRYQ|ClJ5<P^zp5kvU55|
z)5%MlRlBrHB7ID=X<1z|C?FX=p+AUyI`8Xz;85T9A1&Z8$)`+gXKK+6i}xDJ%6irc
zBWV2yQ72Sn%0BH-OQ)1$T3@IXht3nq)gKx;p)ynUtjkhO7TYS-nn+K==jCKQRZ~7T
z^@n0ruN%_Nw3ZRrrsSDRG<XQr4T&^oV_<JUdSMMwn2GcgOf~Y~-Ef8@T~hW!Sr|bq
z4&Y%4-^}N(YtiRXpHWw&jrz9~KCM{FM>W#G^aYtcH)s_ni2eDu9-Y5?WB@v!Xm{w8
z_T@IQi{A6-6!D~m%fFJr<1!`uHS)O-k(ayl&qd_kCiDJJh<uY6$6`c6+Tj!KyWav7
zTaE?_?^irz9cT@AeGA^3Q=n_5Rr362`s4_aUi;g0?_3FF{bA_pji%`z#OisYB-~9|
zNi5=xj@N}OvcY5$D?zO8e>{e3mk+@3d6zj1|Bu7)_NFt<Or<GdI7tSN;s10T=P^w6
zBGr9ex-h(-pc&&x6>Lx=C1a1C<5UWKIUV{&rPQLx68&j&OgNWVNuhK}0d3OpaJv6K
zhpH}m2YmimL6xVAOeIacz-!9a8{QX!=08LtE{|X2+gc~z#*_lt%(orm-QqU6A>T~i
zA>ZZ+aP(w(eEu9Wy*Ll8^Ah<0gV>9|9|>|{{*RUkmo{0G%z=-s7{1<k=S1c879S^8
zv~AqGr6IAbR?|^#pZ&B=7;PN`#`cG(hrS`ACbAE{5uJM`TOc4{X9H^H62S_}76QV`
ze}aYoB$QI8mMl-CnTLod!tbwlLT-$P3DM^LpOq4F@B~+GCxN%AF5Oz1IlKiRI{V_C
z?Q;I5Ya~WHkK?y!2I51~)!BhC2UEEm3V$ef+R=#3YGXVnm1bi5sv;y_i4}%&Fj=%_
z7@xBSkx0xM{uR6z4_PwCLQkQw&?8V=6D2)~_KhX+j*BUw=(%|3mMWVbPUEubg4kQH
z3rVO1$@B{0(W#cte4ndxeWv&Rta1Q6vnewwGehXUw6SwFhdfH1q`%jwst~o(9~!Wr
zp6{cdl%Hdkd0D<!YNCHjz2LWx2R$_DGW?Za_U*D41!Mcd&zML?y1M<9q3R6u5dpr}
zpnwkvkM@Aq3X}#x4*|@nYNKZwIfl;`;IxZh6R2O)RwmYcDP18ez14kvWMMe`;MUmS
zP9{cBqwyZ~)TNs%>(cc#nUP(Ts|%W|nKX84fv_&kLD?Gdc5BYheA;+%tGH6<LUwpU
zxxmSZ7|yTRS6WD9s(&I`qf;R7)_XC%ir&5qUH7Xqa&bH`c%4#R>l5ikOxeS;h~PxQ
zWe+fMupya#qD~2G!(&L`q@V1+5Ce7TwX(;+TXS|N%gFEqWoup)NvW%vvM|y^!e*Ap
z<z@z}e#%@g{5EAbqnh~qxlR~7nJO==(ywG}cFB&8Kpw^AS(q+=u2Do#cJXV4P0ITj
z{+ngy!J6#7E0HlOOhF;XBZrqvH!_yhuqU=jxpeXuh>NgRQJBvZ0Db|iw0fMMARM^3
zKpVIT!dWze;5(db?;U0ngnq+~|L-(sbhuI9#0UkkJ1873QUK(`jv0jJVB{{ZsQ)s%
zBQ6g2+a<EPA-F~xq=fh$0<ZTxH0qygR17a;zSz2*qhbteBeXnyIuiR5^>5>0zJDhz
zD(K(-AUhMAadEDHyWKZf|6V%vOZD%c_tL*t6>#}5(rtRWm|pI~9qh-v+JKM9Op+_y
zvSjcv&t7cB5c4a-PAZ4OvnSc7ydZq#W#OVw5Qg{d8sP%5+p>>v*tB#)13o2*^58TC
z@KdbvNN%Mc7o@GY<FlW9Ds5p?aI$5u&}&+Z5xdkkfeesm_jK05<;{XAqTEs@P1%!k
zHKZ4f?#>=<HS~m!66u)z7!P<q(kXIW7E6j`dRZOH4bGiIad}OCq#7cx$@Y2)VwK<a
zLwjL&!O(7LLwmzTxuISAfpD}%zxIRJW({9zXz!$OxP_uM9}b%jwyD#9xySe2<McI{
z7k@;2JD)&5`(l-|FXl)y%zXPM0Mq<wo}Snj_Qbvr+ZwJh8XO}z_SpQT0qn8!J0F>q
zQR&o#W~OgRhiR1n<XGvkE90}jt`_%VV*XTO{qu>1pEB=UsSMUs3G-1=5YGDW-zp6a
zn8K_Si7>8WEvbVBpV(ki;IG@82T{v<H|j$=a(QY-L<d}FRK3iE&-T`|8S>P5v)|P;
zvR{8A0~T5E^%n<p_Uzt|jM50uh<A*X?(J7tYD$ej2+zDw%mvOIc<((Cjqe>g)TY(`
zf)X<ez(J#-J}3A=9OM0}D`zxrSOGtpA4+4MY@B0klZ2sw>B`&yN@f{M(jivW1Fw8e
zRZm*M$aM#w(w84!70rJhjEI^ZB%F2i_%vr-{agi&|1_IaK{L*8CD|M2XsW2*N##o?
zRpOwG#ItumqpW+Z8nb;mY>m?!o2%@*r_h;8M7V|axvMyQpNL4A=>IDew}!9snmu0%
z74_Xs5&iQOT0`l%RaP-1vxX$`{5(CQ2EJmk!HFU_0EeyloB^;S2SG%e;4u3S+wvEF
z0Cs(#U;xlQGH)lhm{^%4Qg?;o_|qyVjwN41qDTKWd@a{kP(LKg%@AM;Lq&7%(cR%a
zgiH!^uWFFm$QAxU;hcAWRm=skk%xFuc<%iX(90&3>Q3uS?3$FpjO>r~j?ZbiZqoFx
zaD;-`J104*=mzS6!3Qdc{hoTl_X%UfE-4r`NrPypSLEv+l$;8R6@q|baBX)C-gdvy
zE|8buLA00Sb>mql$+DwSnc?00o9O<ld))XuGW#SHRN;I(m{_&K$?H?$T;#PAWw$tQ
zJMvm=paJXFQ&XDY1tg#ym)vRhEal|47k_3+BJ_rY^IvpChz#=Px&eo8ad~Q=FX+BC
zJ9CMkfeGh&1Yb88zxK;I0GeQA&$9!B>|<|48b!+FH$WRH6YHjw$x$Zf<#muo!EZl6
ztt=2mq*fxPh}6rw%zSh5|EDIxRS%%K+R-8}smVcLty@(Ht6{NxWMtV0R;LjPY6?^n
z(ifQ=5ypUl*zbknfq+yrZ<4;dT9Vy_Eu&O#4&DQ;PV>ad+qYMdCpK!Rq{nFyt$$1M
zfHCg7UhUc{(yeF_&5uosm;yA->B-6()}(k*&V!D#&QGhNRx}4zD~6QQeJg|Lsv^=F
zD1Q6VOTp?17NK7~L7jQGc(Z=dh!2IX6sD^sGi$=DpDtWH(FCtY1OYV+A_NNC>__<>
z1GK{?vksIIg;^sW&HmVyha&0j)gj{x0XwDb+rL`S2C?_|h!##G%_$RRV<3SFw#B*?
zDrwp2+&ow8d5fdORAxv@ceHO&9+l#&IVkkQR-MASIUib$P8jsV!54Hai0yZPm-8JK
zw&a&{6ug;<-To7k^W*5s_S@%|bNpxov27*~F5COzjtSv*$o7$nHto()URpDOvdf+l
zOZJ<)OlHO1pN#G(IQuSQH9Tf76Sw2tV~l%@c8|Tej6B<E!grv*^LVkvfS6X4F93jl
zEWUotpXoQ-4<c9No$qQaD3nN~Pp!=y^2_t2oi7^Gxz3+PoIY_(B0a(x!p2XuJtTbe
zWyiJ11s@>Xz=~b!2w&5Q^_h_gR}<D?%Qr+CfHxsp*=m&M(M8BwQuye<!6b^_ve66c
zfS4-W=0o8Q@*pODe^>po3H87*Bs21#=NhnTVyncm2?>4ey$;i1x~jX%*f9HF=Dk=E
zHt{Vx+Fs1%Eeg*;5#IL{slUPku?b3keq#RRaf9L;37SAkb0Y-qg&*-!%O(vv^+`z!
z@$BVopYEMH#D=8*Xk7V{L!B2z2naBvLCXOHY3{bt+3NK|xeHm!C);o^!l4${yy5@>
zATME&r}hhY0I;6ACEg=pXoGjW-yB~ka`9668V(YQRF}JNpqZuo=UQHOG>}530&97A
zF)QHFsPshbfedaZ7^FktlqbRNjS+SW?Fqy0YWe{^SId82nZSQv$$kn}fx9){wBHjC
zY_*oEO}28f@lHeAHtu`jscjppE}Yo5ao5z7{7U^j3W>CC7Va<R5N$shA0w)$>HQsZ
zpV}e9c_ohZYF3E%NL?OGeV$e2&8Kzt&Trdz_=Oe0)TO)=>ibi0!k2i5u9E4!rfp+w
zyyFb}Mu@J0q}w(UqpRK97UZP5nQBILhi9y$`&>GnTM;j!ufMzg*Q)=lJ?M{d0xGcM
zcS;j~#^-O-_9^Sum+3=akJl_Y4cNY>#Js44c#mG57`yV4<3UpC%#Ceizhp<EXWAF9
zXy3TywATTy!8-2wFD-Txeb~UBbk#e3rs`?3Qcxf?@QL>>R59z5D^^rXQEK?(74&$!
zT#t+Td#G%s{_*ZXY(vQi<R*&*Pu%Ks2@q+87C_()w~0nG%X?&OWKM(-PGthlhs)gu
z=Y2lQz1SqQ;~>4Le?i%vj~7a1Y^)*SDJMEZiQ3sCF4N`-zVkwt+4P|g7wdyy>Xk<c
zY#2<84m==y(F`l8$C1kzp78HOtO}`rZCsc8{9h6tHjma7nfpw|idq-%Z~;T|R9mIu
zsb%#Z9xg~?1wGzTZ6$4$dRP@0E*&5K{=0dYn*g&hKXd}BHjy4)6<!)uL|<C1A0h&Q
zUyD_hqFi+Bv`*J0C>l@KuLXBx-0bz7oL<pd{BxeJN)vlMujc4^s;VL!^Y{LNH-$o#
z#SHckEMSI!GAWyjFzbEEwGT4YlikDTPR{qF8Nq=yRcMD|60=_OT(Op+gVIG(Zy>Hb
zyy}FH`?9-1XY{Gbx~kRG>}UMZxLHoxEB|&l79A`QDwve?T{>FWA}R{g`uB!q$(aZM
z6*wR)Ei8~4p|UpcPzP%z+3{+EZ$M-Ow&c+P1h($@kNbL;<ua+?2ZXPD$Mrj^3sT9x
zsDNMCtRc&dxBl01{mOL~E#M5<le{jkR0kM63kK+ik~UgZn+@3`tqKU@3~&7!tl?Qc
zgS`o;+A!&XYRLZEticl@6gaEfy}%s2+{sJ!G55vTt8;E)@@&1}g8aKZW#T(hfqCAY
ztU)qh`h9<f@BOgz?Qro)(I>jskR3r~;VzYCCRMn{Hjg1$Zh;-0C$ZR{h(4Ki2C{|G
zJeL7Rmezz1*%|Pn2Jhse=b|8*Na$C2IL`A&9;?*?-z#Q{HA<ShO;6z!k78T|h0PbN
zM>9WO<L1ZfC46SSJx^8R&vfRqe@1f^W=5K^vK1ozRPVNl^isUniS&nfJrZdqil1r{
z)M48kn9^QpHBEFdH_MCAWnUt;2}af|7Y#;B1#t9`@Ru(X&Rlmh>8Ngt@{iXWF~b&<
zGeIv3!pX<bJR%G=CrTaxjFyoybFD#u7AP*R()kAGR<-d(_ywVPcz)PZ2#+b{3pRHH
z3{5dRong{4g6AH+Mey9LmrcP#ADiTwWgvZP;U|xYb6^tzZH&QSYB{j;$rQZi{f~%0
zjyrP!i*ofE*ko%o-1iWln4M;_V+HR1-WSy)Ff9P7nkFG4e$Xsz6VCd7)udL+6m=Oj
zNkfw5LF|SN&dVl{Z35!x*5Ybx#!0Z4@K6!%IMFFhI?W}I!HKA9kf2+a7sao5!UjiE
za}d`c;Oi6I5Ta!|x{}(uG;_#r&Xy@XZfn{7F4mMKyhQq7Zg+|8{6$c(7NVLf!X<WM
z*K}t&(9k59%<S7q<(b%_Gyx&)txrI*MSuJkQ`dVYT;wvn6<f2H%|Z-7_<KcOI*VRr
zL2$_Tx7T#^V0ha^i|J(vdBCX*j}D}wL<AH@ZcE6EzTCoQLpC%SE*d92G5Sej)c@B6
zFrSF?wKfyk&rG7tt?D)`dfy#xS>x!LOXl%;arm=un2?(49_KCt%s2BwDsTS;9aY*V
z;6%h#vV&&6-6#!&h>)G12>cU#H0fOupicR4;QMh1|MJJ2h2;GK(1+#DY?BB^9lxD$
zf^C7;C<QuRG?O|s;}mwK2%y2S2@~{gWk8QqD_3J8c%W(nUzl(wf*EThMb}D-t_{b2
zAO(6JfQ%|zC$gjgHWXR27z7ZVE2)T;@^DAH=P&QCL4ZPfy}Ktsfa*`AQ4IgsUHvG|
zBsc)?I+qU<szX}=IKK&E`bIK1l06PRGsels(9L&k^MTT2eQ0NKI#muN<H|FK^qdK~
zt!vpFK+Ai(wDA3d_ZXFng?->P0otRAgHfYKdW4Cs4OyzNLRD9WLp<6bBAE<yV@xub
z0Dnc4V0E!@B>nvZtG%OYttzIAs*D<?W141u)Hk|YoUFvGVuX_>y>iCP(qkkW3zxb~
zo=Vj8KH;PrJS`GOa;>r!`f2`IzWf>`1r1~qqlw`8QJ?eo8P|{f;F9kPI2bWnXyED*
zhAxrJY?cJKw+TLgRXdY0zbEf=V#Q?afXgS*MFB3$;hW*M$2obPt3E1|-9@MX(9odK
zwKHDaGJ=Mz1pDZMmz7F$ZT6hwa%Uz03hbVMoKbu$lopKo?+*u~I{Hwq%oXAG;|oO~
zIIp#9VWZGHUr!p8F;q=9GT~K^_rq&2*Xz_myux|^vrvjmawX@VI<?zzQ;ojUdwHzk
zrUk&7-`SYG!X%7mQj`zzc9HEZ@mwJs%<feGa<(_l)4c7yFj0anE(+O;5Dn|9Z0`pa
zMy%}G?WnSlYT9p=%s@DqESb4PqGd51*k<W=L++J1-ut9?rCEWZjNx6|nH2lWA{Zr+
z7hnDD8y^q$9Vfi56z~YIE<F)m_Kb)a;njJz*&N>42SLqKMopXcQ-bk``WM6w>UK!Z
zdjrFRpLf;^s1+;F*-Bvp-hD*-Fh;Xeu)B8);)%*_J4y;kFm`b~kbp^YYgRI|4O_EH
zTDD>%#*XY=+duU*??YR5K3Z37PnfxJ|NYsA(Yfx@2NQjda~Q$2yR+v5RFdr+bz?Wq
zI4rU7jbW41$(qv1!SI@inLS!g8$IOc&evPEoSYs}!$yVP&P4h%i=SDNB>Z6W-gn@P
zHALFr%93HEjcxVX%mJ5qr+*N;joabWZAll%JSFl~m>C5s!>eY!&9(<KQ%z${m$1>i
z+q&=TfP9;!)*7Y28??cK9Vawm$Lz5%VZmeV|04s+wEUE<N)wskTUoeR=T%UIxf1q|
zcg_~E1jl0leiFZ8tX}AF-Li=_r67>trx7)oQ8Q0Pj53WKN^;$@VKquA2zWx)Gjy#F
z4d9P0Uv@)R<5<I1f-a-1;(cHPy<hf`nv^S}*ozS{Lr}J})hq(h6o~xbE~nrB@j%3b
zh3pq;2C;!rV=fR77V7E!ohqmm88s!+SdT&Mz6Txj`8L99Uy^^zT=~jO^-ccD%MG?Z
zxfmzo_E{8S`sFM)?kdh=)z=0cS2a`_-rq4`Tp1|Fl>yAoQU&cBhqi1Nzh}!I%=~2k
z{o@_~sc%@LzwpmAPtUm$F$4MrW8K7e8`%R|zGk6bAa-T;7iLFAzIHTH#Dc&D*NuGe
z0d-!I1q4?J!Qo4fMso&v;5^5U?YZ!boRH$<)ixBW19T$XqflTCPQ?DCRE9NvlcOVq
z?DtU%VRBoOGymAe9!I#hL*1k1A%st+K=?4z%G*!oFPx>e2kePsOw~Pc3JsTrr>y8F
z+u;yRI#Q$5(RykyO2TxI)x+%0MgFV&7^_J5$*q@~imA5&Fxx509$xk!(4Ik`HZdPG
zcpD_?iv3+Ztv)FB<?E!kQdNx|n=3{LgmON3CRX}AnalW(#K(Cv?0tlcnPJc*aN`%#
z<h)0j=plBKE_dT}73xT&&nnG~>i(`{;A^cOtnO1OvO0B^h(F}|Eoze>qB=SW0@ZKd
z(eiLJ#V3(ot@KK@K&^$!F+BTCmxJ%7vCjql?KppENB*yttN8)mSGQcj4}4#kbH4}o
znX+o&N(84=;yk~EIDkqUk!6!iz+}p{a;ep%9!qMqPp#E6Q}*`BR#wr#+mkxRQbAjj
z2GX}*5J_;}KgFp}^uACSUeMq_{;BZeQSPHVcPMjetpH~y%c=O5R<}$BxwLR(BZwtN
z_J;<<g%%^bk0e=o5(9E79=FvkyO9kUeHw!Qtk%q^aV~4K1nD~fOID@A5=T~(12Ma!
z%TcWy#^CH-$c!51zJmB8E0tn1v-G4&jX`*d$Gp*|aTlbcDGs9qh~zjVmxIw`h%K_m
z**`UA|0ur|uLyTw@2N(bwq(kXw^nr+D_OSi!hddJq|@uetzU-?obkI6{TFV0&B?~G
zG6K`~DfFL)<v;zye_D!g3wwCUo@vuBqhkm-dxBnr*!3-rRm2(e5tSMK{Dy2_c7xnQ
zL++Ej;8y_$_LCRW4j(8hKob7KOf7iwBp)t#$92!}QJa?t;cxF{{`r@J+6Ty^b2a*d
z?DxwgD)7;ko3%5-@+d5NIRr3zHCy^F;108fj@2o)GBrRs+%<;{06j?aM;Z|6WTPrA
zyW>3rwCqvyod%>o=Kb~VidKQ&03SBOhYd!&*WzH16BdY?snKT3vOS`Pf>HD5t9mW-
zM@Ft_1bCSCgwNlthRmiG6+tLX*~4ul<s2bjy-^Fnu2zdAiWD|7XGnPbvr?w2SjALJ
zLiAN{$3JKQ!a1);xF-?u)ZH?Cfm9LB<55;0Ar%W<quPcQ4rj2k7xK%GO8@bm#8?3K
zxzI8*R|winDY^AIRF>w{qteh!1Cq)GP=&CL+_w&@jMjw0KitE}|DHC!O8qx!z(2qK
zqX(@&KI^-Vo`6SANBRKhX0rghVNV^9m-^e`_g|DckkZAi9q$NDxOn>!1}-jeMmV~E
z0Xurg>Xb+DA1aP%cF80=Jel)%WTu%sl9{$J3b)W=lSzn@6+#?ipOoqmpzTY>*p>?c
zEHl_7N(6jRcFtWQG7YlGLt`8sz*4tg9Vc_|Y;^|#Br3t^;PeusY{i;TSz#+`!Zpt?
zh_GL37;b6C#VhXdyn8%#H-vL}o^S@EpZKiPzdZh5UEL4=E?{MF{9|m5x86s_mNCcK
z??=WK1IPk;dpFA4^*uh@HVZ49CbwB)*B*zD5{APNZ?ZCnc!!e0QK!}QcMLG`_F0&V
z8f{_GUI4q*R>L_lOkciDZ!6U2hkxLg@bpp}jFa7C@?DHVSHURs<FELvM~n;$&peRh
zL}Z|);OmtN^>Mh(PDA|y=h=YI=HPZV2|vSbVLcybk8t~ETTWZrzVWabRqd=1KM+iP
zq5ZS1rrp)Pn2#mXZh?ggkI!r0SUY2Q`^LjlSMe)#dGDI`jc281w{N^Oby@GzCf<y2
z!FzeQ_q1r8)T_)|1Ie}ms#^FXXCt0@C*9ql&_?Xn-)TC(ur!h0m$}HkRq^?;Ok(tq
zaV68XOl0`f&c)p=TZG3N{Vt9DgtU@y_?aK~h4&ovQD1oAW&9ac@?Kxq`q4*yOJm2A
z4gvXs;cIsw!HUi={4)2sUVD9XMm1=!#-Cj7`Y*eBM*p<-g_Vi)aAzolug#0ffhE+$
zxe`oEDi?>R0f+@B7{~SNe|**(ZoI4e%WR6{%FZC4ZPTgTe}{2;d%Qy~2MZ|dxXehw
zYuOA-tC@@Oct4)1Gx0S(kvR@Q@|{X_AW!bTAVj5nba(%wT?+<Qk^3j!7`n)Y-c|S(
z81`{=&6Kdrj&|0ybFvBmfy`ZLT$Jzhf%)9w?kC+29{ycG`UCMX?et>(<qYWK#HZNQ
z-Km2dW)P%sx@a=o`t||^I=C`RyhX>h4p-g=MO>jfh*<tStmV(TgXoX_#^bBBzt0!9
z-;=fWPyFKczr^|W8-Ekg8T5&YETqqu`==GsXI|-i`+Zk|;R@c(>HOPoWq`imeEa(b
zrB{@6j$R=RPp^-snv59FBo+F^8qCq@`>8!F=^NZ%TN$5!T;-UaLGQ426l$ig9Laru
zFQ7ph)r|x9a^nCSlx45y@;y5+pUrE+$Nx$f_u8a9iqG2D>Axa=tTA!}-)1M3h8JG5
z=`lFHI1L#QO(vxHOTl0`|Gj7o{2<bx&lK)hTmg+nX`fwP)Nmr7_G)ojLoO{p_=gua
z+?dN0{%`*Z+7~wGrCVn%4e3@$G}HeAM(@dUbw7TJ&-$LG-h<ktk$fwlmw3kzvOD?q
zo(3Xw95ho8?dZz(i*Xr08}GQ41efK1EQ{`?LCz6~+&RmYLE!1qi)Nm>^nx<S<jNf4
zve1L?&~P))R-&vPk9T~WldP|sWIe8)ED5skY{fJn%MH0Kzvh=hRpRr%(=djHoiIMG
zi6V^@;n~{QUl_NN)Qm9ZS=+pcyN4vvOx#Ksk6@|Y!psI0#_Jv#$Ov}7Jj@Uj3FJox
z=Cupxxpbq(rZN4*{B?umeuLp9_scxof}@OBKrIh{GDvQP5|Ue{CXd+z3ymG5(7rDB
z9+tZwFK<0a?$u0=!=ZnM@&bN&OV&N|^cUpf^>=pu`r9<H`0H=dGsws5n~|?`X%MCI
zC_ReLia;_s>Ti<!3YXt16^YWPDg8-~^)0!iVrhr1+mPt%ivsa=Os*SEd`;WmzQLv{
z)ZcvxNBBm27g!Kctd-6&q(S`kpI4!eS(o3-Rm|-1q1y^7UIH+h+OeYI*8KI`EYfHR
z!pDhASfe|cSo?5*G)4@)T%)q4RNr_+^%i8$m_wMbGu9Ro!Bh@<TNj^GC*~geQoMb>
zeq@r*ZAio)<QS7THs`rKv1}pa)t87*d@d0r4=PElU#QTg)TVJpx2mxqo9F<udGb2w
zZ7EOFXX$)^>Lx)`07k6CN0K8~^|HdJRD_4z;Sf{l3|;E0CoQUv<@2PbP2P5sby2Mv
z%fs_-bmb!D*dOVbf?`scf_L5GGEz=ZMS<DI8LFtNup&gwCM)`}Rg^<D{h$@YcFqr#
zW4HL7zE^^wrl8UaowIEY4C%x~ngwb{BN8Rgd0aRx<`CyqS$R19kE$|izSPl$DJ8>>
zEUe{!F3iGV?820Amaj1UgXM`nQJ-;)VQR;}I-o`TiNNs-=hGH*46@>Rm^nVblp}P8
zd*aEyiFfN>WcHBki~PdJ&k_oWi$q!3i}<9IU4~@O=hvoKF+P9G!Wye`HSWl-F!||Q
zvJLP4Bf_K`*Lz-mnE(1W)ZSlzF-w_yn9Wj%8jfryrYXPwmnvEsn?_<uc=s6QCFK`?
zA|KwL_ffDtR00*2?o5T@o(HkN3j~5ibHK#b9e)4;`sL&0_ilmq%HH9_(%9bA#gry$
zB@rC{55BXM6aMN6Y}uE>&;9_|b>Jc=1N*^0P4@#bN}7-1OA&MJ3F0F^KR;@XniByD
zHmnv87KJx|O+WUO(VrO8lZsQip3>3ePOpV?y$gV)_<lef(uM60)-*sQtZC}2C<%4m
zfSRpjs#2eCEF7WQe^=y>iqC2vFg|Jn)<8HQfeDZQE|L}Lg+Ker)X=W2I+nLsM+|c3
z>`J7?!G;tDNR20Gyga-eW#m!O@>s6(t_+kYzg}X@^YOV0d;ceFxq*Su>7f1a&-_l3
zvETVD-bGNYW3GUc!_E_#6M%MmJ0)U{j_r)k-zq-;q>}Wb?XT?8_Q@^;Ts!%SZ=3yK
zL%ViZx2P@N>5d3{q<!Jg1tc>tr<5l$XHnCkI@m5)%(v0Y6<_zLv|5LSk<%PjA<d=F
zD$kV78wb5DZ@Dy)-d@=Gp+>q1USZRMPQ^Kex^`jW$Vmm=@NT?Ai<aP_*>G3O?3Pnm
zv^Y;jc}-3z&y1W*mAUX)PNG`H2+-OV1flfaAHGZkWA8_*!sy6Vfp3i!<Rv802w{{d
zuqeDVxSNu7Y$&~Ar?PgJol-tA6ANLB+`i>U5+xrT4cBa~UT_p`oZ=JG-Kw*hIwz*P
zdqWtn3UmxfuV{aD#!WMf0t!Lk-02J7cAYi^P7ID5%EEbfa_r*itebBb8oz8i`VLj>
z-gR=-ZiAiT@xCNybzP9)d=Jgb5WhrR@yWCdKaj`>)Altp9G}U`^u(3A0Q#(&`Dq)U
zE;vPGwOepp-@;cmOF#A0TO6Ud!@ACAQUv}dt9EaHWkxV!hxSE7$3A~SJeYuNfPPr&
z>_c)Eq4odaD>CfkwQ(oIg4pxhYMYRB;E<TPwl4bEMCb+o3kxWSHYbbpqlh0&Ll^jb
z)B#8>Pj0LRV$6SVN&V<<v%ykh6`V$dXz;U=g|C%zwDquUCT@wJ^;6~A0`k1z_1-42
zZ$-L-K37AW`#Rr|-k>x8hCP1a@rkj|TzF(+uMZr}GG?OLYsMDP?E8se*wzp&>&Ou8
zS{;2b4T=h@FhhIa4M%-seVyeVGu)$f9zFj$xd!(4BgS-q{&@C~LG;IetaJL~UJ^^f
z@4okGU$~+Y57(oqPx`{`UjCpjJo~}5Fh=Z-jXP*{;6J9zwdpOG@K;qI6lxUPjZ%CG
zSgi3o(lR%XF)fos%bdaoErUphhId@Op)V7gL#nh=saHh9CP@)h0aSlQ^!71M5e;7s
zUS2{oZLPY{OdEUnaC3OhZ^6lXNYH-NP)HBx9DiQ=`x0-1pO-GvWS(#+`O{`%&@J~T
zGQYSQvpJEu=1M(~a98Y1vWUgR-QVa_K2R9>?_*{-N|?i_Ig?js_a2-?n>Ez+{mnE)
zUHbjH^doiY#dYZya_wTc*?fVRH`&(7^t;edJoqNnCo>~HOlBI&lbNQ9$z$J&x9=wS
z@Iny%(oxkWs9CUUP!vqU$HSac)p}fJ7?-iYJ{r96ybf|fyzqc50X$q|6)iSTg)^t|
z^#V-0=~@q1A8)^3eah^#QA_6a`rN3qN!!Sqbz7G#it#i!K<Q&YoUxaV8dbU?Wq@J$
zvr*-BS|fg09+cMXdYg3l^|L0Jz2|k$>~vnGO>#-1m8(OTCyLj3?fY65n~s13{2Dch
zymRq7&FTz12{^r-!o_V?$paQ5mh^#_$@C3oyeEmmlT=7X+y9wKU8(&37<JR*nNu4R
znV&YPWe-Cz>awxh0GYRR!x0s^5I8V~>W>J=4`B8^M5N3DSA`607A33-O*duduH60$
zs`$OCU~Z-E=%1fk+5C~uJ?`s}_%?nfQq+@h&3h(1o^y{QuY*J0`2u-qOXmIT2cf&(
z*x`QKbB;F`{QyZ^knmwuT5=3Voi!#xk^1-kcDeq!2_QoU1~Gg%dGza|1>A``TiE>9
zQe9&ox#U;~ZiOefOF0qjnDWHfjZ;q&HPqB)hOJ7Zo$-WOA(arcIkm=t9;v?|fEx>J
z1-%0Bx!7Vd9g1GVMeiDR_PG|ctjh_Gy#7F5`1reVZa!~R!hBwQnF#Xnck}cvd9ls}
zL=><SiAtT2FU_knM>-c5X33mbNfd+8x5%xWU|0ShM?~Dp_!YY=Cwmlxp)`B2f^jcp
zMxJ>PvJ{trnRyZ4rbn>Y{2QIUpUB){TNpC;b?J>c^A#>u`AEj<*aTN6gEodnxPz`m
zlzve<eEMp)yj`g@c*!gYTcdR+DI*<>mYI!@YW-F;%vKG8B#ezL9P6T>_-lnA*sjf<
zA|BcRA_8#|>4P8Dyz*)#X|8YJ1!W_x2~cR9&Bt>6s#S7D*z-*_wu#vH!wxicgH0L9
zL;`V&!qa?G_%P9zy|1X!1_InCtdSTx81A$s`zT&Rc&ZG~IaB!Abb$L#vLanURxc!#
z^SEvOZ-?7z^_x*hVsg-CvxKAT_>Qh9@zIAwsEwKrZzgg`JOZu2Muu7i9ODUjK7NHe
z2t4Ykq1K-ZE!6hpQ9IVTtAoSuKUghr6#!K>D>4#&0#y1{5&mS4&%x{~HHKNlUDTd!
zESSg8Wv?-5=e~zc3qkAa5nA7RDMG6$A?ugKg`u_Vj0iPgrA7!I<GRR@WOp~5E{a5J
zSWdmz*^y4kZcd|uyA>UBL+JK2N*)=ZI{KC#tPF3Q(!UjptB4K?`c7qL<mT$ylUz)n
zK8kY80G0~lFr}l+>@>utD6Tb}(@oz{*F_W+#EyEyD>3xhzp$8qt28{`&Gwi58X5CD
z3$)A27n|?fhJ>Pc7LQ#J(kh+C{)pak+pkoxU8!qI)p+^xF1HJv(_W>h(eiMIVa@@<
zK#9_*qS^^t$*AXy(ZF<TDOUq*o!Ua8X?*W*6PY9G794f-NhjAGQ+HHy?6Q_O<M&)z
z`h%H$6Hab<AwGZFR&38bx`lljxW=`s(w+G8Eq=E=sFAMMcqT-~wa_UI*3+`CGDKXH
zVvLRd7M<m3*_$6+*QUY%31d*$z{!?r<Qah`S6<rWKP*13UtSAb$-aVo9lb7l0Y$8E
zSG0KwQwzc0xHwGw3iP)-5nqIVTlVj_hfU3@3rO6N@jEr9IpjjR;gnMyDbYLiAVMxB
zv?h9b`RG1vr(TBrbjeA{%&?7<Gl|4xHiu8n)DkhhZ0h%t!A>)dPoMl;>GA1_&y^n^
z40~>3X5_5>6z=?F%jU<Yhd<Z*a9#RSJ8^6=Cyj+W5~Z0;uj07C-aiV{AX(BAq&7&o
z`K@vvy=mI)jJb5R0#rn1a8ZA6i7^1}Z@0=v(<~nie_}mTe0=1?Q=O<`v@F6SGRGu`
z=QzCw0Hu0y%23Q4l$CBKGzlFPs|@Qd{?rB!A~OY|p@sCWxKnCW{^t(;0L{P;5puxg
z6`R`^#9QR^UWNX0KJm-9GR3A9J?}67Z9eT?v(U99<I{eSPkYj(L5e<2QSiP_b07z?
z1ODzdeT7ReaB>d-3@pEM0MA9H?5%x}4M2UqS=-F{nF43Zp5`ktmF29lR4DZ@OFfHs
zPAUjS9&)~BOHdB(5~0S^|IVir2qK`CmVks9&0{MQ=_9K%vFTRtu@xY!^J$w?{ERH5
z!W`i1s7hgQmJX@Ol+}C4erNd*#>yrG{-|n0>#W->+g?`XrKJM%Jj;3v{nUcf=?NFq
zzu2y2RK$mE63HASyKAyQkm)%ZM@iqMhbJ>fVvikL$;C`VCv&!V`*GAhF;n))-a5T=
zdUyHJ_;$9aOQ*WadvB>rck8sgGw&DecK2Qfl@0Bc;$act)SpJkUN)(8G!0~8v#5g!
z;GtxzyHMUsI~`BDQUCb*PfjvPVA;>pD<_BDq$kwh42QRB+r_pN3*RF^vG;Gx**8BL
zdl0|vGB}~nqURo_<9^!0u!OPqaFsIFjF$!nH`h01Y3EvG(%_nk_O#@hq7cJHH=bPY
zs^HBP^yayh%Yhc2uAs>P;S-*yU#IZP!eE~WC-9y~FUyXyPaMUiJ*nY7_H}LcPH9x<
ztE#Y1J=vN16vXb$dPJ5t4?yJMd*u*0dfH%!yl#sxK;)+_Ao7n2#Qa;4Cwmb}(D}v}
z@T({>olBfCFtI+Dc+9}W?Q@A`{Gxx)g}#3^=NI&E55_MOJEJ<+zuS%+tbY$|{ssNJ
zh+^SVq8fYuHu#9UV^j->3vXT%jf)Jox2Q5%2Krd$J}!@|N%R~uhDM3N((sssAXls)
z<VED?m!Yh1^s6Sq_jZrn-DA$>5Y3^{=`=<Dj2^eSaa#%XnQt!;ILuGPvzni{XY5Dc
z^g`~H^BhpfqG*B6?@3HM0grN~0x#fK_!kNI8~^<^OYj1|sl^HSgcI<RE9aO1kE)d*
zSNH{o9;j-k|237)l<jo={xI&yQT7<MvmQ=!XwLxFLv{H4DAn$(3KBTTnfmGMV~hN@
zVB-2_YzuT)u5Ot<+kOJ|L^wwf%IpEOjz#K7?)psS06H5Le{*OsvN0o4l9j@+mVeuN
zuE7Jc%JBJgB(oXXRu!#L0yBn@2fQIlMV!n!H=<OkZ*WKR-LZ#}>bKP*u)4b}{6bX_
z8!^n$X=sf-;I=VhRobA<T%xfgpqP^3j`N{auB|95S*Ej=qLn|lrt4*n)lyuVtXEp!
zqiC20Mn1PvCk$lD&b!uz<0tkQb-o@&!*SeBpPF4&qf;**m->jtMw*T`x~z?QdM$U5
z;;R`(+&YJ>Y!h}4t_queTtIkjmOZj2M0j?bg;AZnI5aPkd-`}4&e;?nU*Jft)+XBD
z28_|&k#&xOZ(<$|P1J#Bvo+0aV}%jae<~HwHi6Qt7Q(3cvV`%?u0p~XE6^c=3ISFb
zE}UIJ7_{yQL+XFK*F9mJ_oD*B09`t>@tWQ9gwZ^JFgBKaIl^cTONi|>!bp594*&9m
z;pcDJ`%ygolvZ?fs91!Zj5E{;5IE*YH+~R|;WSdi-c^b6y+&w40>VC}#|TS7lt(I-
zueRMuKirXH&y06Rjxicw&BL(D(A(iQrqZ3YMk)PSqF>fIKC9mZTtxrjiD^XVV|meO
zCUHM|cp9Fees|*pv2nYOc3lZ#e|lBDk~rUUqt;Jj&HEi-A1b9B%CS5u7Kd+lF$gzD
z)^?$MW_~yABI>V{t<7wLKjEd;rJUK38BvuP^>bQeAIqVM^vJk1P}X`Ne)F;m^nG~?
z`*LIF^FeL82v3~fXYwH|QN(G;+p2v97i$zN!gmOI)Y{j*;dcPcZtTj#reFE~GekOL
z$*GW^I2EE{k_u6{xKxOq9_1Phc^ZfCDST#y;=(kwbHf$>t>D8NbuuXXU?)-K@T%~?
zei-ophFcqnnb@x@!E$gysZ7k3UUfK0h!yLjRqRNE*uKA#NQx9o*&g=lq;J#B-o_Ty
zNf(EGZ)?Ru3<_Ck{hy0usonQLkc&;+v!kk%cfa=``iStBN1uDgc9SdHC^FDu5mSH7
z>R1(Yt^uUor+Ih(T~5&IBBgHNkPt!=MPWQ_vDWTtO(R82KmX~!49FS*Y2pZal0yW4
z7%(qSHOj$ZQk6y0GT}pFJo{q}7MQrrT8QjZsX*0w&U<SkFQbkZa}^*R_%%-js6_>{
zd#DyK0E}h(`%A(pc0_UP`m2O?bAgnl?YB1-f{{aSC_wvg>I}Pj2cUfw)1d;w5i&$T
zf`0?g9NOJS+HpI%uT&n6I#BO9!5|uf_GRXzYOS*)B_MP=C%iF{{zQjv1Y6tO%U_S@
zaPO+<HwN^k$!~M-F;Jobxu$SH7zV97Fd$eDt2Gv0RWUI6vC!5^^+jr0WN?!`rCT)?
ztKR817Onz~MHKep1gAgkAD0GekE?rkR>xPUqTqV~ptBD8a6^$S)?RA?`7c^KIPUQO
zoRHhFuT6-@LS(fVCPj;I(Vip7z;#;ck<OuKr6YqwsxQ-MYLz7t&gw(8G+a%1!c3>(
z#t4jBM=mJpaM@2B2?M4S0vM~zVT@3MiB%`KD-T%2YBPvEW}I?ogepSrjWl}YFzwXe
zjU4PU1omoi{EbI>MEM^TI2VO==@3s`)#7OczX`0FOC-NAn>t*xa^iF@zjXI6Qw9@V
z)#{(FF0gtT*qTA>H@<KTkv+nIGp~Vn7T%4cPcVek6;8QD0{IEOuhDyw_iPn8!aFYG
z*Lg+isZc&otXklN^Vf)D!@hR|cuQ3`^+-6oXY5B0d;7lR`vqo}Q6z|TN>yf7LA;$_
z1f3g?pltTqui0-58#Hv-^<R;(#qgT%rt?ne2m0WubzYm!btbv}ZNxIQ@39XPAPa&9
zGh2!py+I}eedhO72Msu?QGpREz=&RLz<7H#i2Zl7EL|**{m+iN1jMdwoH<%E$@~;!
zHU%+5P30nHV5h)ee(rpqm8!K%wNlVYl@n|7_hIf-)n`Y}h-s+8B!ee9gIQes<ZKs)
zX3a7Wae{%>m*8!aH(mk<vGjlX<Mi4Z3!t?|)1{e_H}4=_hr2assMOkxTUGX+|Fl*P
zqvNF-4C*$6S}dBGN?%W>;HC1w#OI7xyIPoah@bMI;vYXuEPPY(kE;{Q79*7u|M+1d
zm~sSHPsVOt88<v8f}^&u>+cqZ+?_G8LNA+{tkR$IaP~yU=b$z3F^+C*oXX)2M<IWY
ztKc-4_~r7L$~83WM~oe=mhF!2c(P?uU0+WU-}&TV0{)((DsT(kS%F(<{i-@{-K%30
zTe4)S{6m}(Gqtq$W=ZyWROH=6hyKaAiGB&pt5<oe^T4wrvtik!(n>OCVrNk&ZX(_P
z@%~5|XXYkaOPc=i^`Uk0yhrEWJm6G4;-Oo~Gne%6khAD63Wtks!hCudZ-0_tBHaf5
zOZ-{F2dY~qK0sIvx<r^Tpy<v5-IX_#Af5Q-x2QrR6=={_QNkzLZXp(N)W-3o;F7BR
z#D@B0lJKoTzrb{Uov?33jxDM)BY(C%^b$$VfL%7h)Cyd~`?$4<<Dm2FOqY5ID0M0c
z*sZ7UV)(|5k~-@ZAF-OBy^q#$S4R@+;M^tMhpj^k099-k-e-AVHp9m8On9SxTA}c!
zA32}X(a-u(x$caDQE|7HEZ;6SD$g_wHY(L0f2mQqhQi^#0{3CY=&5IXi+dNgxDya(
zVyEO=e1C)VS1}#T|L9A#co&7k`v}FP#pp1~jJU9HmK-iWLm0L(LwIG6LU?=J-zJ<x
zF`6xHw#4yT`20b_khk#}t-QsyK-q)XF=K@!KU><<zD0Rd3Oy_}W<klOlERw~EIgoD
z-lQDKV^<jg(2AM0MTFp%U?Q8q$PXV!&hN4B!Gc640gaY_(|V(R(xuAq)mA4IFe+@d
z)~^URGrc|Z9~v9{9+#gUQ3D;WchlSZMi@C9CLA;m9GY)@_$7u$MZ;Ycg1IpK`4i?A
z`?`A!caN5fQJyQ<NS~k2*m~MI5|M+P*WA8gv-lNns)OwtN@g@MHAqd=&(tmq$hHrQ
zhNJ{QL$eOA)?{l86TDhUi&>4rQj{!*b-(19GYXTB=$}k1U(3mPjK?1Ph0E+Pev)N2
zkC9DUy#KH={K170?x8y~#+n2{bH9dnom$xNp~VfyW-$BQFsxtmZ5I?a?}`l4{F~EU
z^VK4I8-JQl7BxSqy|DQS#m#RX?=X6A->^mMOaR%EGZp0M&QV`%%2kEHd~Z{@IPHsp
z$=7*LKm2}YQ+00s#dUHNRl2Z)llpZq{HPTIoPlucKfUg6zxneiPmyBT^!b!diXabA
z35GK1jIjNYe|s^aX>6D1I%j`%m71Z|rgQymmiw;ER0yQi&t4g>$n;K0;jr9KDvAmn
z6lVWK%@N9|vrRoyvN)E^vIzc}5(Ri=7RZ4p>azpRECwP4S@5aV=3lM?9hHPQa_Vnv
zl9R<a7|IrlFaL>6mmV;KOn?xuCRbks1M0Ta#SsOuS6Un|y7>sb9ul5vu;iQd_0T-=
zXw+jNxLSz*L9WIi_LG@~#C4>)NOvNEO@E@vn?&9Esr~6a+Ve5TO_~s@SE~Yl0%1Wb
z`)*#?$}Y;}Oi@LZ2C=;?W>V8B1WV24ML=L7<bkLSPqJ=K#Neh=$kHzj#E$zH0%1~o
zlU)U<cAwn=CH)ir(DxsRY@YW8O;fuW#c2%gIj1uhW5!q7(cQAEI%FxCu4W_HwpKkX
zpdx#kxIdpkE4+!!m22$L7Mkr<I9&kJe@q=f3!~<055M_Mz-aFc;khmFp-#m0d|0Fp
zmWeUi--a^Jh2R4H0faV<gxKo8m7JR){KBBkTw}1yRJYaA%r910u4`85!PzjEuT$|1
zUY3(esYQ};jI?NNYM7=IW*ab!3b;3JVnF>|1k$gkUlra|NCeR)fN+m}`x^~bRE}}(
z$g#x<Z!VZbqgcY&)NBRuh<;S+M>uD%LeFZRR7bvZtf(Z?_4}z1;8Y0u%5YtCF#{OE
z!_M=R5pCFnHf&~UJ<~}jMt<AhxTzLmLzZpC%)!WOXK2`>mbU2M(j05aJHC)1xxvWZ
zCHfFLpUdh_!g~$GAa)3FTV#GXb1Fl<6G??4w`ja?Rcrmve?m?)P;aW$j3HocOr$qy
z5&indg;+8L8H_ydr>;YJnIx=L3x74?J|1-u@5oLd)l_u?q;Wn|5F2mRMkYk0s$FvU
zrwi!U!H7uptEfLe0e$qRwIE(2A|}!Aa3!w{9Wey4hZp<#9^_C8CWeH6`IZ~lN)1wl
zrm)q~+#){zAYyuUi+6r#Ea*LEoX*F*Vf{;qg`bU2w7<bg_aF8$k!N~fPAI0K9XbV`
z!pUG#-{kbdf;rygU_^yg*)bYgR2(v>fL8f7CEh7pmXIUvQGEr-j^s#*&Du6@-7+H)
zu)$;OGc$JV+KD;qB=$4pZfm!B<BHxkyj@3Y)xS%l8;n}DNZpi;uE`ZGl#ARTWu$I+
zzx6nh5bE(5YXLIgV1HG_+*1|lAit*GpSNus9`9%c`|L6V(9-xUIa-6MAMo<i_^dOf
zy0EyV*7VO?{>C1BmbBA9HiJpG7_0c0gs)PFHn(o!mPq27$38V<+uE*!OE~T@k$x$e
ze$<XjuI)-yO_cUz`SFky3x$V+2jW5T(sv%BkuSo7Ki@DuU$v0Pk%mITf79;pR2P3M
zQ<w2~SBDXP&4_nMc?V~5@4^=GS@L@ZXMWJOaT~T;+wT|KHjatUI@W&wp6emvvyR~R
zSHjq2`~!!4rIHiu7US9$_6AunjmbwCy$*Lo&Jjc`#rjp|1#x7hgf<NsYRo7plsP3`
zR*g^c!kj>ZaF7_@JW4on;~N?p@flusUV-GS%o#w`Z6p%OH{R!|t%!Mf7wLGiv7qJu
zA7t~Dke2ha?^4?}uB0w#<yzPciS;ih7WTpUZ^HQ;Cbl-Is1)IopufwnfQ94p536nK
zgP)&Pe{f9=EY;3M9vy8Yo1f?gnE>!O1!40`e;JvkwO!Mzj!uFI&(%X8{v59U=YfMz
zvo?kaH18~l&sT*W!`VH*Dj7};CasvzwqeT)OSvXDt7Fyp@>{;_FzsD_J#4>T2M4>R
zUgGcWsa5=~N<GQnJyMVH_nRs1GU?kh)y?0%Q}^+ApVVFa-7oc5{vMFJiNA-Ze#hVO
zsq6TAX6o1cJu7u3e;ZRj=kLX-4*pJ$cl?aj`E^OWquKqsG~S`J-}uJKl~ed-X3Pq3
z9lz)B#~1G~<OhVO9TT5FRyn>RH{q=0T+?Oo_SaPH{OP6ET<T8GT&6&6R$<Esvf0EO
za2~FzDOJZf3pg@JWSLZ(Wis>=cMy^S2|E7+(DMRFQo7!cCDms?kO%#%$j`4-C|vN6
zc^GbYj~#!EI&Q(WU}i>M9|yVp0MAQdZu)+9$N0{4vi(6EUmGXT3vNP^+ZrNkhyI9W
z=V}x>@rPe-H<(1SBeK3C`NRf>^8LeWFLkF_u@=lRWSxIuj3nl<6m=54f&|AtKjXxl
zVP(hC-sOZ(I#r6NY8+?KZ?_pfnsr)gxy$?B4=!c%=DO^6MN&vgxJcayuji5)yoekx
z7R1iJ*IO49YE!e$|1RUtO?p@c3dbE#AP=$c3Ie(tZ8<vO?}nYH8g!jsr{n|q=)u&I
zI<(zh?1@^L^SN@|xA&EotdzEDNMb8AN{P3rhJ~*ULmlo?nhb{TGBGpi@SzH%UET6c
zY`k5PW4q(CcTx4}g-I>lZos1%bvgSZEJ+Sbv_pllZF<7ne`$fX7(2axGnwb~EXuZ(
z-v7sfsP}VR%g*><6-|bYH$INoU%j6$BMaM5;O31FjS@C!6!K4pC9CGq31b9zVOHnr
zOIc++Qu7LKxIx^qsLxLI-;%42qk{t-A~z{Me?;j7w}11JadmwQC$ukmc|!ZAXH0uR
z^dFfd1wKmDOg9BV^DR!=`g3~S>B1aiqn?(B-Fv^&HxZZ#^R#6EuOE4VIW@hvQDSAX
zL4B;%zJaFR%M$I2I1^ef^h-`jWPZl1e<-UJDPrlB2ibrTXcJm$U^kpuy8lNwrK;5}
zsScT0TA^FO)AtLy@87TgWA)*l_nQEybdMc=hyWPor<8gAH~-=|QPY6=q;b61l&R!A
zgHMKOF!Jeh+{7X8)D3r<nmZ0I-r)|AiI%^L%7^cN=$1&~B5%7_Y6PGy0tFO}rDI`o
zj6Sv}^_|h(%))o(*e!>y0tzUc!bOu&wdXxNc?m8~4*&al52Q{yvST5{#zwzs$$Qp3
z#31G2OCA2y7|}<qal2j170D0ff>`pwK#kGt7>?TJZqHGHpD34xJCAbH;0iT{SV_8x
zt|rY}9iy2UFl%m8qn=aDn`3+`a+$Y$qi`Awofub$jvW0&$7AFtwwuBVz`NnqG^3y=
z72!`~LO*;iV5=3TSlQ)+M-knwooK~BYA1Z)9Ej`2yx%ZSUv$Uc&wZxcdS7rqceGrg
zRn!xukHA%}*U$=VFanHC{=V~|6cFIG%>@LglVH?^TKU4`b3#$KKh=EpN~?8IVy~Wp
z8QHF=2HCzP3+;?^^GmwZk+wHEYa@9w<HBh*@n9ta%%v*)+P=;Cvwj7~VqqZr6|OIZ
z$QoPvnF5io>SaXM=PFp_Y2Bd}_ruq(LVN=YgJQElGfNOQp1^Qc#%{YKPhgE^rGyXe
zSWIBeN|1nW{%!$*eajP=rRK3`eimRF5{}rRh`@UIN?)QwVWQxlTdL;idvvFC8UlvJ
zO2ZrODsb<1?k2TMXBra9zz-wrQqh~_oH3hTy8R3B6QEmjl}dFV3S?pr*9(YTSO`S8
zO795Ad3xqxfQ5rtveA(SoQyaLN6aiZ;R%+V!VQNVrXim~X8+9n%8oPh01$(+n3Wgm
z;XZ|53<+1X^{)duu#*A=xs99K7*vx;ONihg3ip3D!UDa3=@ptu(_`3Dtz#S>$=(d7
zz`Y*1(Zv$ieO||=o|Wqu$~io&5U6^SQ`w{zHNmobrGJO@`;a|YuZ%?a*DL!IS)}@%
zu<-KrN+CCh9eG<sZPC0EK@}$bKH*5Bc?Wr9;{~zD|D%BHZ1pI}3+2Hm?>F0h70L^b
zy32IjIQKZD5i!&zGrQm62y#{DkJhW;V2_snGIf*N*7WivM<&_VmE<D7<k%;sp3Sip
z!^RK>F#L$4kqvw~ftL~AK6=+hM~_*V(lI7A&SzqqeD}?rlu%RR8Ffq|Q}A_Q-f+h|
z1$gB1>nAV${n&FQMK*mu_6m)U?5QJ7+C?lSMw{a~3NjA2{m7|XFyLv?l<Wi;%_|~|
zPm!{SF+RV7OD^J_Bb3Vg)7t1`<KRn)^{W#LH!_2MjT!VRZK0>Q5A0&pRTy{Hcw=-a
z((pH^c@d+d5UG)BMZ3G@T!~Ub+~(+BDS5BPbBOhp`qJ^BRSXRiI<}L>sFC|6%Jri*
z!L1rO@}~UaOPUiI?%}(rR2LAopJ_ePMm@Adqbz9kn68arGv1UP;JbWC&A~7#_F>rh
ztDM$o`6Ub~!4mnx)(8@W%uRaw^T>P_H^|ZPV}oY-yjmh`Oa3+K#n8-4vnL+O?MH5j
z_|8mCG2OFv4PAs%b+a|+?coxNngWj7S3n2S08~2|yY2J!B6hQ`t2*m9LN*+v|4}R-
z@fM$%Y>BAOn;G<_Tg9kG;=@altMw^}ZTNH4qsS;xr-u4YF~*|LNP<MO#31(S0R#F~
zXuAwFlIpj0U8_-z)zPTRhqcDTHdxob#L$L6xYdNs6Q?6(j?FL5^z&~c=5CW(Ic!3C
zeAdaOqMf&Gr6qk!RS#^F2>cUVjWLoH$97cJ+HYZ``6uoWl1hzTy+@0=-i?6G{XD|k
zLK@w0{LvI(uwga&s5S`9-3&W(8&w?Y1FUt$WW4GeQNXFdQp6T>Dn8_`DUlWsYQron
zbXC3dd3pHyL<fs;F+8_09=s_)^M!1ERI4JnLaL)8-0E;w(&SF1(}8IzNV;gO7?w_m
z>gF4Ks>zwLE|W=}`<_VCON3B`{l>a*w5-}ihguk7doOd}zGsU}1|40}c?<p4bi!@A
zCAdU*fV_;K!OI5!ew&Db_aWAdCoSGf{rf!9BSNM~oM7>r{Bwb-2x7bZDI#ni%_k&=
zdu`L-CL=J)w>Zxg3vY^w<>|RJ{GhzJm|7Fyx9JJuv8G@<|I(<JZdc(I>t!M^lA25G
zrfvn)Y^5V1fU0n-YWfj=>uZHVK-0^5a_gTa^sB7o+^R8pl2*$ToER(#OPgc)!NB#a
z6#YWWG-%m1%Hj6gx~}9|J7GAbn4ZYi9#u1QiTHy>xFcczXbB5?vgNl9yO^pNqz07(
zq(+_*NKN_%lQ-+h#Hs)!%Wfcb3>Xv#5<MRjqz?1)S=S(m8UtTld+bM!b}PRuk6vrU
zj&v1t><`||gdM$%7<6I$iUS#x(cQKeu@`rVrk;I^Y_FtRsqIRlU-=5RiZP~$Tg4UV
zMz~eh?zeIr1@dZ*Tc5UW<yd@E+&X1!)E`R1va(n;o}y&Ot*3c@Hc3z^`uIW~?eIKG
z4U76#=6KXs&lImySLcdHb=nxK6W{QBW@9pdJn}5uWfYocVd<JY3rp)2@NXN5zFz4#
z@vq7MAojyQL<|@O$%=1(T2@T8Dwb0pL98ZM%<I?E@bCd;tO=-bt;z<m`fUr8Shao2
zAMWV%v(Yh}E4el#ymqT%)?C47{VQb61$u`Mx_Mf8gh7wK(X#T>^3Z?eS<|u`A58yR
zaVI~YH7CHDBdT0PClu#dvz+16ze12U=pB%TkQRYdDxwD@<p-qmpU#71*$t%Z033cE
zNTR0k*&Z1oG**)X1gu(P9p*YwS|#tL0Oe_*+QHEKR33&3D<QW2&;Jt)s{KmJ>Ypes
zYPnVQk=Dkupye)o4q`toXxVaF?|X+Ai~Y|NOx(AO2{L<qE@&W;k%T9Rcyp#E6(tB$
zF)q%twQQN+y5$5DDtJS-ZW*^g5R;V4stfHlm!~B4E}6GXh5Q}fGMq1)rCv~V$maG>
z%2Mz4e!#b_QV;dw#`t8b)Sr9*8ckmc*7wl>Lvr@dJ!LdC^X)bWLHn;P5C!{3Pd^-E
zfJQ8t5OTm_m$GKMDiMWRI=G@%HDK1v(|2|~oXvs&P8Rm*pKK}kovp-_M>Y^x-pE<i
z%><V>F_~i#I8mR>)F;f5Emv@*+_u$;^ufqAGbg4aGk<rH^Yzt84mGgxM^M~mb?N|y
zdaOv!{*O2rPpzZaxkli!LyW@-E?D^Pc+Tt{pIE;XVMaW`CtFij`m@B!Hxmor+of(n
z+l<?v1>_;gl4S~e?|f3}Gv6TZ_|A2;@wrQDJGeUc1}o*g=|Gu~2(Haz=C%a}+JbH#
z$xNF7Rj*)Aq69Rl0ajUA)<5jU@PcjKt{wW9`kAP*o+A2}s}q?qMwOCQ%Twf0D2Iu^
zSdr%y%V`ulcB^6$VxWO3!6xnAs^`olZ9HuEiXYommVD(3dtBY42jJ2JJdNrt`oWxj
zbb}v;07Om{SB~fjA1crFDc)HP2J>T9TQ4q%Ex2;UX7q?DmFp`03ALkBIp!{kcW%3t
zAiT~~6*r1qyQMzd<%#KA%Gh<Xrn9oZndi<EQaYZouobRg>UhlkDv5XAtzU}0p#EfL
z_8174_2HJU@w?vt9;zz~;~gF3^f{85D{4sO2)*9T>iQN<=5)}C6EZuo5_C>gb6ww(
zWSZw>7JOcHMQg2*U#oKY!L9_FWM-DC&`Pr;zLp@KvCpZh*2%$7qM5SqIO<x3a($+&
z^XxqW+|{DHSG%kh%#0)mYO|Lcs=9ej9{Zx(2$&@5Ob76B)~BWnERry49J+*6Vw7>d
zLdlWO<zgv?og`^q)lLqM{c3RO=&;}|DD#BOh@PZOpE|ZHT=4_G=pZ};8S(+--wH=M
z46lv$l9?MFj$8+h9{r9T*)B-K=ZScBQj<<VU$)pa$Fzk^YEu)STAIak!y0Ntey=>z
zMerw(bkZ%Z&%Lo?`EA*$DRjjiyS~6U-_E{8bM44Dr!u2i)jA}+W@zCwR@}K(-}xtX
zYrLeh{saMOYj{G#K*P*k-)LF+0eHyY^XzNcZIFJpc`?9_eK97)DaGtd6Xkr@KZPu9
z@XZe4TPfc>ib_>9h+Y0zzD3JvEtdKg^V5OP7Z|@zh}<*t#YW;m5ir-aW_3kU5{|o#
z_sPKzaoVwsb#idwK+-aMCt`C*-myTQ<c)3^{zkU~OU|39GfCguRQK3-<H0(8K(@B(
zphdM<Crw)?nyJe~W_TY9t!9pk14K>qm-SPGnsiU4bWe5o-0DyACl1KtEM^mgb-{`B
z!BH_gjf%VBrBo64bz|4YgEtHl$Fhs*q|#(&M<+eTE{R{E`=``uV-$!YI2t56)S%eI
zb@WD|IGMRsC{CiF+ekf{_3{#dN3K$<2UFjkbIhjlL%o8m4E5sid2Uc{#|<wIEha9@
z4o$9d#UA?2Al%^c49*Riz5;hbjVS&$TGPKmZn#<ykT#E};|4cb7gs1h0DrJNPn(wA
zX!G37{!hw`CRRkv!wn03v)w!kxS_|j*jCV@<+K(*9e|?G<v$cs%g*unvl|&HiB)&N
z_iWvbtk=JQh+Jxl0EpR5q@W6?Z<*i}WTt{MqREvtGYES(7j&q>cc_sk^+fF5<T`X~
zPacJq(>k=5@6eZIZ%}w;L5r>Y_LSA8Rtl4Y*x>~&DyO5edrJOKg9Zw-3ouPbKbgIW
zIG9LjXB+Lso1W=mRpG5QLMHP8mYw&J<q_Eq(iin|Wit=Yv*kPxl>HD}Tvmu)5~}29
zUcXf6#OX@u7nBSxwGLJ`?^LFs?4Fs*JI8rUBmg8md9PIugOuj?cX`9urucU`cZ=y+
zv+u+zLEht15w;vlNr0q1*-_XbUl#s@1V8-wxgwcCsfm<8WUEuALU5B-$y2)l{5V$Y
za}b-kG*2y-)2L-*pN?9P;R>YX>a}Zm6Y3|3{pPoR<J|lHFh^GCCY6q%xlC;5mus|v
zax|@NJ3$leE%=pwQ0+!NdSGz1#?Fjdw&w-sYd0ZQ-_RDwH)j`SU;7xWKsV91hiGm{
z_Eo-yKi^5G17KlmR2kagRoRIwwIDnX=Ajsv4di74kmM|^t@$JjH4lQl29Lc)o-Dmb
z*lTjwJL+$F>{(93-h-bx?0rdI3u4z<H69s3?Cuw83^#+R`mpV4^Kxe=GR5RP?4tN>
z=&dF<zuOFH$Na8du%bQ^2D5*H0RvbIZ(7d(rP;9f=ah+K2Y$eIYT&P{V5Nt%1sAg_
zcgabK%)!qmGSeuruBDf=Nyfd)feo3m{qz8Tq7nV`6lUN<IxDPwl#8B-HiKj45`o3U
zV~(4M2!?YYPjRP}hrzX(p&}8?sS@&S?hzjNz8HC;3k<0d<elp+BBG<phJ+QjD_n>K
z%&t;F*;yCKk2Ks_zoz@c;iXZ$7~|C_8n0CK4bIMtC=8u`wW?s7?&TxZ2nxE3?j?-H
zSw&+Niw(_k#2?3o5P_wb|9Iyrg;H3=nGPq?xw@C>i#M~0@m+)n;XN9Ht7R2){0Dem
zs!N!HL)C0%+y~4=g=deVs1M<Te=M-z-&a*Z>>>-xMzS^UCb2tRX3hg9?=rFLSBnAT
zop%+sYFzl*KF-G$VO(>v3UV==h$%rCuGyk6x=gqlBi6PaESprWXJ+JKYT?P23F_lK
z73Z3QzHUJvnh>8y#L&aLrw^lxVtR0UgjGlQYhogaL?ax?V=C-Wl;qJ^KfVS*5yw4I
z;h)t!6Tt&cWCt@=XamFAM8KbLkMlG_=aC#qWLGR~JK^oV%&;mzv@3ieV;Nui7d0#J
z^-ZLy;%e1YoL*eQpjMHR9p&QJ2)m2~Cc40#F`~3u$)<#J5Hp$NFn*#ndlKAquvjd-
zDTZR**Km5*;0&d`Ldz|bKm-lRUJd9l@ujk&o825QB0M8`mqRkNO`XJF-6Z9EB`*rL
zYn?oH;UyQ#Tx~u!GwccHpOH6iPcBsU^T^ciH9NQBwhBC0{kpDWw80fMge<{yr?CZ^
z28vi*n{95ANYhN4d)w4v_{i=8jb=rFXeCK@hQ-;W%(DbJqGk<GPaC)CQxIEdCl9-U
zbGZfk>h;AE+OkW}xnh4mqQC+MI-?txXV9?@(;pREz(XJt{S!|#*oe(_vrPteE#ILB
zV2%`#KMW{{t$ir3QbNljfPb{1AHbWU4KQLY5rm^>F>?i@PD+X4*~P+ecUkQ@Q-wJQ
zULHhY_|9fxdE2!kdNoOgY|9?0&<(}uIyspAw!J@^eU0-(^2`FRkyu9fWHhNvt%xJ}
zyI$Q!V0ja$!Zgo`D!r)=eS!A)YQ@5H?-IZO3i?}xD0XVuIXfDs>_wdE=ZUCWD9Xg9
zylHyw3_U1fU!j#ArE>m*nKF*VT#`m?!Mgt!BbJG+dc)dYuE$sG?t|kHo2&Bf=>GoT
zwK;p?e)D<0EyG{-LYGNX|3n0L>s`m&ND(o_S6e=YHXMGv@M+##N8933GaC&bkkS}Q
zA|q#HUX4O(*9dtC8>%C=cXS`VgSzx5lhcoIZN=pD3)yX`U4Ddl<a6$W4kvkOx!cM{
z73S+gfj{8q&UjL-0>{yEafy57G;6f)H&iv)lQS&riNk{D<guT{gP1;eucG>S6Ys}n
zMsSfz<U*TMiI|C8Xs4i$MEz<{*-c8&o=FngQ#%rmu3Z<7QWso8)HxkqX_s+)=r7}t
zSWp$+_8g>tn)O>fxH}AfsL}fAC714(u=Y8yC72E|%UhxjPR_L8#TfTVUFMjI$(d>8
zb=qpNL~d2Y?oBj@!;npI4#n~@yd|ngL(~`orBq~a2@?_#cu%HF3e!pZVqTPUQF2$k
z=?DS+rT{_g$lWcM%KH<}`y<M?)8Qsk^rBW31~KqW37Qu|?GqafkRV=+9QRpop5WRH
zI&Z@@OK?F`K58!*HN<K{;<?gBmoh6E5!aoR=3{R7%|oxrfx0EfeNFg^9s3_G@5`ae
zc{J_qr9w#5#<)e9QDdLP0$LsKe9wTn&Kn6kapH-O9%r9{)l7PF?9v%TxIN%VCfMn8
zaQZTuZBA92O7p_Rarn!eXY<<18g>>eZ`lpnd)c-Uyq}bXbe+Q!eMkUl_7A34**Wz@
zoh?X*r+;6&3a}+!?p+Qx|Fx?#^VEcqsT0UpuKCr8aQ(l9)BH998QIz;2|8>97*UYx
z`|Nv_Jwn9K-bpf*0!jGl*|OPIWn-QxM0>~#WI?gaSao$oDo~wz;YcPT0XK@WpAi@o
zzs^Zp1V**y-D4;)+U9X$Gx_Hnd(U<30C>hG8OJ8s9jtyg|4;f(4Y6;Y;%JVRqDEZ(
zg~Ft`6<51Esw+t=)l?Sonxs~j2GY}RolN>NW%yj7awx~l<b=uz9)C`V<b{gb6`VEp
zyerqPSU4wCme-}9tV^%1OMj$sak%}Qe##4J{R8)gMVQCh;a1sT8fHq=F@y-t%yAq0
z2@#uZc_EVIsh&$r2|{^gg_%gW2;~wkuNDdyzR@LO*!f{bf+P(5d7T$7>?_rhMs@hD
z*CLAPCtM6vZ4~BwKGzXLJhl3EaD7<S&Or)01WU_v!eyQ%$vy!D8#S|2-ukQ4-jRRE
z4i+ZQ5IKmNRffT}YT>~OUwwl;y&p&-MW_gd?IHxv({IWM(UTD&v)u=WY5TCFFpXHA
zy^VhOG0^&niq!4(Ng_CS21}TmY46bb=js-IGCsNM<H?d|q(2dh#wC)<!69Wki`@^l
z8E>UhU>QP2!jU#L%;QKPsN04?@NMwZpL+U{{iDegKRIALuT*9_Qm#&NPU)z;NU`!x
zq)eAcVfZ9hD#IH->4irzB(=8(o#0D@2G>-6>S49}rcD~tTC`Is`=ZDth<&T`b9KU@
z8*(~9ksq{3-;<hOc!jV^JqSj<*P&{@vO-u<srhwYCN`NuI0qFeRJt~#5UL+@3c(S{
zb#6gAjY2T%8-g%mLAe&vd{QBy0vr@|TL!I7OkU>*zh3xvm`iHq)eCd_R~t?ABrVOn
z+F)awlHui7R)WKSwODkoTUcE48YEUG+}ehQjrHhzMfaxMqk!;9rkSp`;nz)aCp>C%
z{r%NlYeiQQvX#P=fNM4yUr$PF2*&h>e<?kDkO)mC_E81B-NNS(x*Pu9QWj^QWyIN;
z9l!ij^6NVGA-V@@NJ~t|V~!DX^pIW5vBI8FbO)xOVGYwsPmG@~J=uB20|4hbvy%YC
z4kw`_bJYjbVqmwDQ~xA@u2x}azsa6+UGN%>Dv!pZP0t|q@7wcJHkTE=hWETBREjM{
zfH~a{x=k*4zH?_*vPqNg3024UTAo?$y-lW{Po`fpWg2eiFu&hS_xPE6Om&ZQ-QyoM
z*!f(iSA0HI857un`^Svsh%1TDSs>z#cHlgx7i^6FJ8*ggpP{Uz$8EwnfqdHf74JCQ
ziXX``#)|mttE{-E9s1HHRBB(&oGmQdX=HmUKKnl{+cSy1@BuuV+k=C1k-ORwCC|Gf
z8|H!sx59pzA^Lli{UAQuZlJ^4v@JowB1>=<?R3&aE^8cS)?N^Ma6irC3#aVi!;{=z
z)=GV^mz+R6ns|y70A@arJAo&YGZ;C|s*%${4l;ll61Mtks-2`^jK?UBxASiTh?;9v
zX#*GaVY1ZsZjoqT%7#VUs87WMC+v>kz6(65t6R$J7=@Ot*uoH>(DupRsiz5^kGE?d
zW?h<#rrB$nIhg?Y%uYK@9=oE&4q|}$Qy47pvc$VT3vlUVzb}qh63%rM2z0JN<cI8?
z;#^IQc4y5%%=s^vdl4=N=F!o7y3qz>RGWFu-q+z435M7YCt357wQ#fRq9+*}RD^pQ
zsLAf93hYbz8P<Asw)$4MSTPy=L2S!>y>L(XUeb3fM}mHE>?Ew*$Mhl=pU*>Sg=fw*
zPFdz2-R^O(d)(n3f8GyHc_tSleoi7Yd=J){hzmcPxbS^NZS8M2$bDEZ_aSHH3Y8}6
zgFX!~IBn!Gk)bm;s#EdcVSViDp1JYgB)fZP+ZR9FzHx^Oml~6Fwkty*cZxchn~Q{_
z_j9i3N=Jy)oA<aczGS=j{DXH4E`6Ad^*dbH+rG4t!#Q?jUvzZtjjKoG4Y5^(9s5Ln
z?MVAIixg3Y>PY*N2CO8DF_oUleFJZ&sqY$9s$n>(FsyzLzbI?uA|wN@$vU0g!7Nj{
zzd&q|t>iVFvM=bohmrIVXL)?mV}G8k-L^Ax@bhFLm^H$W4$PbLH%Tj`%__cd1997@
zr^h@0sBb|%{J$vPem5^{ODW}akTc?)86`=;T=r|1iD~Rpkwj^KmHja2CX1N2^Rd-O
zI3~R2lHyHZmGa$pjM3PG01%fH51%Zy@mp;&ciP!!#(J6ibsQQ_i{8<Z2CWM&Ld?T)
zQJ6rp#<W&wE2sm$B|6}eGo^f?uxP4aSMnw^lNd?SN8~UQpH~QCY+!kjcl+VLqcDZk
zZ11EBg*wgi^_;n+hsR=b74bv=q`_{|laXwd+PclZ)azw|Ubx@o=DZHG%rsXTe)yU<
zgVhs2^J<b}Ypsr=Mj1zqnstE@Tw}lGAi7o-0L{}Czji}qW}Er>B(xXKk850MR!Zd{
zjRW<quy(ra#4buSCNfv9Vw`bk@0RyDyQ8Zc+!my$j54!mb%C%4qP;5e$5uy34of^_
zXlXbok9>e_GDgt%F#@(C`~xCF09GPkFZ%-I&jW7#6N;TMjBu0R!?4Du&(jn8_D}gC
zup%}D&9Ay4hye5<OAN)PhQOn&St>SjrTI70%)TWn!foZUrEgJf5v>(;R|7=L72$k5
zhQ7Nk<{eeV*<E1x&+EHpVvl5XGf%|Cy}jXK(@i8Vx!4~2Rm&d<BvF8BKY8KLFML5r
z+0^-ku@4S4ujp&`aQmMj3AF4&qVmzQi!V7h5lq*(bF@@$5$Lh+MT<Z-QNr(7ka(+4
z)S?Hc4zFmrLx`%>_*dt+2DBT)z;0I?fJ^4_pv%zj_a+ovc#jnIv-XI`ii(7LvVf8u
z3O0+*-<ozFx~EcrF_+UHpir>DrHTR`HhoXgX!urb|F-;znPVi?{e=w+*9>FzbLP*4
zsFO>uABN#UGX-S!K$I{1?Kgo#XTC(EQ3wz6yUlHux>YNnGvAh(F6ZzD^*-=V_*6!b
z2Hd8HDCknlSEy0&qwn-B8?`cfjNDESF_yrh!^{)Ilji5cusXN5I%At#K1s_=*$0R0
zuU%5x%YtYmcBWQ8(9!NjSB@d!Wd0=rjoJ`zk^zCclD9u4EIK()39X61o$OFR48M!g
zb6uP3yOwk9IgS$SFq50$%WO2VKw~%#mI4J7dMD|fx;x*y4juBNv27J`*|Y%)F|^KH
zA}pH>*LVGseD9YQ#BTh)KZ5<zVJ^_d6gOHrntjd9P3-G!Ff`@O>6M^t+1#%cpg$}f
z9-Y6grQ$!BE{*LT^Jk*(SlC9hc!Gw0;k3#%w;6!9FVMq`2o$Uo7hcSf|NASoBCAk?
z9R6<W!dC3MSx`V-i3HKy^+a<wBqCuY!3}E5j$q8Wy=lBXM%C)!sK)S$cO#sBTrNtS
z>ol3fZ4zz1u|^uB(T3&$jcs$FHMXriMtxn6qQ-8$GdGB-t2BV1qm=siuPah*Mbm8i
zWQMJ=a+I4hMDuIph!@1xxA2^NRq>9Ao*t+!LI$@t<_j2|#YP`2_{t8n$H;^90I^`#
z+#O<}^N-CTBi^CQ$ps^w?UG?&G1i^W+1EVK`9>VZhdU&cIV5~-5G34uM-B<`|BtzM
zfvc)Y`^P~!i6w1JDYC3nSz%?tn1y8pigr$OPGM!)#bPEinyD}Yvx@=(%AVs%D=TZP
z=rZNJHIq%|*kuY76w?YXrKTyB);^+vSza>X_x(O=?Q`>>*#CY1jUPE{ueI0pxvytk
zcKOx9r>c=^)riw5cS>sejV#F!NY_iydntn`NDmEfWC<(QBhihd8|6<(YWs~$R*jUY
zM#^I}()ea@B!$Q521--|d$Mq$%)zKhzk}U^u0=7Zes^@NcN~W7W3X#aYB$%rL{$g+
zfC>)igH`K<Xg?3@t0B=YPa%CP^PS%lQwQ8%?Q)s04tyRZM*(8lqslq3ulM@%h`RyH
zCAj223}i(JOz$LVr&;FQAXtrxHPX2pn8EE=nW?HAsH(h3subxdRX&U=F9=mxR76ba
z>NtxB51@x)Q7b;_D)l5CDM89nQe7mUeD_AMhlM>jujl4XjOs4fKV`gxn@LECPJ&q#
zodo!WC0X8+0rpv;=}_2utH8VEu;Kk$KY{m52`+hpftnaRY{UEb&}i%{WP<>TiNbtU
z<(;a^KS`C5@Lv4SAb^YtQ9dD<$E<RIs`3I=<%Kb-yf3`UGJ#sKmod@UN$N`KEI~?w
zR2hjzXQ;};Q>|m(rhZ8fx=kci<WZ>Php;N9E0cqGw(gmCh%(lOw+@x#tObY4k=YwW
zu@n9Ya9|Yw@ni`24_&<rMh<K~SUL{tETTLqzyL#V*;WsX9ej@!R!^3)dhm*$u)m*5
zHj5+9h5n#GgyBeiluk;4UHCAd0Dlp!+p*g53on3peYM=hB$Jh-Ss%Y1M10{ia#bcx
zloIq3KA}nk;w2ghF3A%kg>U#zzZF(cZ>_;6V$?k29U*}*ysm0^M@oR1iL&0SoqDTb
zUwrc!1DJsIrYyLq6FmbzDr#i6l}6>5oH+cJhO=~F(`2@;F`LTdxJ41|MZx<8<c{?3
zaF75$MyhK8a2<=6=w%`p!GHkg!}qO>oQ!EVAI|GLZa6aR4C(o70mTF%A*UhxO0^hg
z-PjPZT?mx}JF>uPdupsMCjfMV1$3x>K?bX*l;e1FQAgMiBgQxWwpg;9Yp`OY06Vmp
zef@D54`gx^04gp9Tavg;a1Y1;+`|QdQwD2mqEZZSTR2*G_QIarsT#_W?T?Guer1cA
zk6IFx>|vnnLa|&p$MHGtOB13mlpv*ufpo_<TdiZRR6c@qbO(b7cIS)Z0jwgM&La9_
zOsP`x7RD5T3;se$Wvz(iTDG@ykzvfQl+F8C-un^24Mq$3M)vXJ%@;(gud<PS$KHk`
zjd#Ct7-cW2)L9H<t={M8yhz6J<3h!}V~M#5?5_60L96D$ex4yE<-<Z4{R2*quaxYC
zE9{ZkEa4-NkVZ_TllVb}LFCX<3+i0!BdJNdd|hk~ZAN(cKtpfOqJx32{Ep#sxyLxF
zS0Wc(=^zvcjFDMk#;39i2c5xTrSy}a_XP~XP)N1^!(~C^lV60RowJM<jNg$N*7$1d
z;g4$EN=*d@hbW~Pg+G~QM9D{mzbYAaiDbZVg-f&8EJjZyAhRnm4V3(1qsg4D5zLH0
z#@OpzGS?5?^#FwENgcAKTP7z&sL!P>B75hjy);juO?hbL9*1#UY*V6Qkf`x&X5$Ck
zuU#Tz(QHyeHi5{8N259u_YCk%t^XOxkxBzA6I(N|FoDYs!zQi!hU!TzI2@qBd=D9r
zt1u$hXJNS@S^=iAeF;TRxqYd4=v4HG+lNoKmhE#CmE$QHPrZ$b@fZ(c%yE)Y!7n(5
zYl5*D`GiH`(qE-mImZGPZDEE`EO}u}IaTrJ1P%qX$sfR8!$ZppN)H8(8U+tb^lJnj
z$7^`t+gwrbXu=+O+4Fl)c+>@RohaHd(ajH-Jmv9q#slDi4^c4*@Zcw@@TB1Z*-3bG
zSMVThI7u7e9_UaiOhse%LXtWm3m{dY*P=ibkZ9a9C;w@`8pVRn2$~}}2w!VgPe8MV
z(2Sy|jmQsr0?pqAH3InMYs!bC=mqT3Weij=Leypwt>^Ry1N@G?x9RnKe^A*Su{_fG
zOG^X1kQ+n}A|n~GnF+oYN9#FZYVcZi3>8YbSobIl`6yBi+PtWM#j)pO>|+;MKli}c
zxv5AfC^UY5d7pHoDi@WX=Z10Kf#d`im5ZTYhd#%Lr-@9SD*?9T;w?YAiA%<kwA&EZ
zPGfTgori_IUmA|1L}YTC*!dUkMVtbasJ4>7ueX5C)9$XIqwzMKh5HWc0R;CzELU;~
zn2sH;7tow;szifcvmOnI|Bbg@m(S#$ys}mtV$N1iJ&m$-KKUFMERg|R$N*c4%AS(s
zgchz_JRvKw>k>I~aeHE!fm=YVuXgVe{3ntktB4QK0W^oc3r8fq+AKvjO5|DxohOWd
zWM=CnZ<!e2@|TrFx2gr-eS{@~27{It^4mA;*!RSwvo%OkdTQtsW6jtlSN=6mn}B>o
zN#)ZyUyXY3>ABL@lA{~WGb#-6KV5R#boieJZZax<L;=EY7HTjmc0d@=jDg7A*BQ<#
zL_HXus8he=`(}L>>GmCpfMx8W>e0aoGP-V14%lud&*Te4Ds?0oUemKnjz<4Hw%2Og
zp1lG@8IFs?$&yQqy0IU0mp#j}=$>i>)#2<6Z#g0;@sZJrmBnMg8%2N89b4YQj!`x*
zxjc~{X7D-o{vEq2)FG+kyOM=?NNRK?6*eF)UBgCAX+~2tPS7CA4?S3kI3$&SksOlZ
zrv>>LbhiF6YL?a~O(w9@*h7JlN!@7gV;1#Db&4!Np&-ScVp*Nu+h?yg;Y&Au$G`5>
zL+Bbl1g8w)g3u81U*Xa)hw#GG4h`W#6tMm_kVDWyP{!<w9IG)uxqM||H`kJd;Q6+|
zsrY#pFo+AJ;t6Yo;V-8`P^y;`@r0i2&evVPvN;U;eWmLU%?U#P`Zadfzn#*duAhMd
z*49jcJ_uRiO6?kUMfG2FGWb(3*bm^&cK{qlh}gh3qGJ~>ZGEfZygvn5!!-^hO4j&<
z+r?tCMyC*Kh;iz7^xvjoaK-mwtg!$vAP01aHD){<!5S-mQmg^4(7G?2HE=x3W)0Oy
zd#rKe9lB$0ZVyAw071^iSAxh{(`F;bUC|-ryn+Ij_reabhQO%fta1Mz)$$mw?hw{^
zYK$Jj_uImTaFPt+gwPNMKWPtPN_mHd&>aP=zg+Nt$r>AO*In-)-t{x3>v?|*LVsSp
z-SuT<9qM`+3Rs^Gh-3{|&auQ8&D9WV^x}b6um;qINMT$t!$OdSu?m;A4!dLMa_j|Q
z9{+&t_mVX>8Wn$+hSWYT+bc%x$PdC)oFXshsSR~yi+76Fohn2SW|Gl7D*+%VaD;uK
zcJh>}#MB3h)K(G{sEUEKq%DySbHNR7Ds=>QduS$-Wj#JhaZfIX>7rIX*f9S$+P7MU
zgfVQ^p_?28v=l;9(IBwOc;dFh5(_rV4{x0d(UP>2K~Ry!mT$7dFE9eaI-9a0E^r=J
zi1lMvth}SPmsM?l>p*ST)UuV^CV`|05dJ@#Bv`0Dzda?i&a71;P^7O|L<fbv&vCA5
z{bXtV;Fz+$xLH=ZhjfM6dL@9SCq6nrhjzYBUb6i;r((P@{W<7vl`?Mo@$#e6ZH>rD
z<901W7`GCFz*-phRf;L@n^7XMkrQ0Lxk}-axon?~IDD-9r)--By+B6oXBexDHSVyK
zI%ca=J7xQDF?J@+OUx0C@@HwDiS0F3=EZjVE-~oxV1dA#;Cg{CE01^=uJZRje?L8H
zC-$+HeHW&Fl+mP3ev_7&2PMH+P!{x);E6Wbh09pjW;bhOv)zAWg7&d(vU$oTE4&v#
zPWXeCYd1-I+Tc111M@j5t3<91LbkM3BG<Ixv4`V^Q8h`4xJ2RH_x0+p26$<0BXZI9
z+O`rRZW}gUs$HyVEa*6w1G7L?7>)uwj4SI$eLO};&MEtixW|zYTEJGp|J4$LP}TTD
zUr>i>CR?|-l!_-zmSI#|3un^rEE0$6mphnNNDcO^3`Q>Fe#fjc^#`M``qqX$RK999
z(U<hV^Ki+?2cuy;`bVb1k#!wyf@+pF=}^|2`Aj+zb*&~2gZYytm2r_+&1pE4I1EX{
zQh)~|Xf128fu_Fn!HTW7&cjp+8$c-`8GlLQn;0)){BeobH$9C3TzIQS<|A9e^sD+B
z@O#e%k@-wx3}l`#u|vqb1!b+1(I$`y|L-lj!QSBwI?*qm<BCv&zx*{uga7kzhZ?L#
zS?izYvcYib1NSMiv-eX(LNF|=fz!`1f$Vpj`Be(g0vEt7n{9*xISuGO@h99(>IC-)
z(*ncv7iwlZ>%s^tuc;|Ev+X1IW6v#_?Ws{3T;I#4G0kjg0<IID4dQ2WT?}wN^iYSu
zH3wy_V(i^i%+?}faY590=#|LL<3w_XBxYeuoYVMw=RHH}gv_~K?`4B3v*)n(z32)I
zxtiy=UZlZr8!ZVur?NJuwRvlV?gSfx<zVA36`6w>7dJ(dcomcZQaumsh4hT2$XiTE
z-F>r$RITjo(va#SklOLrAf#@3GX|uFKiDBios6>92yDwFq@b$=D7bL=M$8OxO6_j2
zsLTwFNA99w;~S2?>UZad-sP%yV0is*AL`NN&gVOvuU@Igvga$S&FA<Xx*yRX2FD5V
z+w6dOoG+!jWXOiE?$$)kQB8SqIX+px`xzF^hV;2A8N0i0!-t)deMw(Qs(tFLlgocS
zMbia%3DM&iay#*3pP_#L(4uEAq>XjS*_1k;HhthS@lB*pt$q?;)AXpsH(9+^JU~Au
z&M8<)hzGI}G3Fl=KE?boIK|{?$*7m_1z)~-;LFLumlNb=*Yc&D*4Chnw!mjtB$OK=
z1Iu^@2lwmTs9`*_F--C)&Z>DjNH2d}7=vC;nb0A6IRj;_)A1>uC_yw$3!?Iv`Y%in
zk@XHHv&a>iU&o4hAeI63T+l4>IYxJfndnRMN|16T1I2vwAAtkYtjDlvj(ZX@>B25+
zavMIGyitRvXj7P=n<FHDNI@505W(S{z6%p{SyZ$x;qV^9;UMIv!5tinsy@WwqscYo
zaN`k6T9$iNgxx2N)cyNxV;K5=hg?2Kr&&StU2erd-yg?!2z^JPtThJPD#7l4hu7xG
z(bAyZSt@bL8uKbV#QBn@JcYLT^+R#gEEs)QtYqy0CYqL@wdb$b!`t;`*zlB*bsC$f
zE~1h3^wJo^D=X^I@J6AmHI)rk8}lQ0#Rv9Lyi$rMG}GPgO@4T96t6t-WUx0=K8(?u
zp9(wFn=4S(+KXM2?eL1dQ!r9#qi;pmX-F;K5C*B!g%I{W5$xNUb7S=FhK}{E=?(O4
zl=RJ7{L8ksz?=BcL)dzOKL;10$mRFjNzv_mPY&NVctUS3JVm<7c?$RsoEvVYYrO&%
z1wq-aUuCRsjby9WzENxij?!Ktuobw;C2R!^x=z>%Eg17%xP*&qhalIoy~&07_6!_g
zBDXI&o6zBuMbFHWRr)NkxFTkF1Kw8h0QyT*c$Ae5yR?#J^>@j*ix2ED11-bC&UM0m
zPs1nlP&AKnAeUw~?)O<~Ji@C9D46mnykIpj9rn*m4YKdQP|XU+@>K<9w22`T98PPh
z?}-pVrC%#Zr3E3C>4M7vfGeaZT3>{X9<o<~CJ&k)$!?($GB?)ed}F2G+CjlBn8*$5
zh0W`$0eqd*MbXH}IUlDC$BCjl1bA?YK+P8B^{FP<qQIwhfn<q#1>ih*jVApS>%vH1
zIbT~J6Vm7XV4al;!_%GjDqd7g;(o9gO(NUM8qoXQr-2vo85DZ}YBeFcgVy}L;D;SN
z^fTHOao#6^_>5d%*0hC2?Wv5A3X*3r4gY9)S0N-B&Se7rF-<y*w0e~!X<`mywIp3-
z;x-dpZRJA$|8)sTiB2MaXz4kVkrL$Pn=D3H86zm77a0%{iiD{On)hk1J%~X2H$Ymf
z71>g){d&{C#yH^ADD~;n99U(8ON?vRGxq>On;=Ld-4)AOE2;)-^V5>Nr-}>G6Ys|9
zq-1;><|y2aT-bztH_o_4_<V2U{paAf<o;A77j==3(KLO`l)|0CJk^EYF=yddP1_Le
zx&LVVwiK@7bK%EL__%57FNJmZZ7syvr`EPYe^V{X#w#aD2!H<aK0GL?MA}l`A6B|8
zS=jS+Wsbl_B4&x-vF3EO!f9Q(Cdi+miGVB`f<;^`jHRk9sYHMC3ARl*#5AeTArOIS
zVx0eo{c40vBgXlUX)Oqu#(6RSVQKdf9ZqNH@=sF}WO6B<rCthEj5s;nGKMQZb1F`q
z$T5sYmcgX!0npE>xtgyY_&kiSl;`%9>B3hz$hPWVqEcwMRH5`@>BLC(2QORiR;-pM
zLw-NF7hT|1T1#-!(=i=&Se>w=v}u70U{}4QytSPKR0D``Y?O}4=zeOIm9D#wLo-G>
zKiM2vSc3<2io)f62oMsj6n??li5ZAKf)e^v$Xw>3_V`6?X9Z2xJ`XD)9HMXwGfZJl
zB<xWoiU_fmD>cL}|11n*XCQ~qQTRv@VtM~K2*j4()gg$Th&rr>lN7`p_dl!~{$w>9
zrrGOvOdi7VcEb9fpZ=Ez6WML~)T>67%fxp%L4OoG!LdQvR!dwTOe5h41l6jo7VwzN
z>-9b#=lIYf&=Xu2h7~xH`v7tOx~Gqe2lTT-w@Huglj(s(NcSLX8ZYm~$+ItbsWX&I
zxg7KGm<wE7b28`VBFOO#xCDLo_!nd$HWX{v6~A=i+gXfz%&G|z%qWq(DcvRStg(_8
z^FO-lJmwt6J!Z)q1TJ&IT*>R$GL0}<P$hW*mm<kq$+*j$CAaLEm5qq`lHOHW8xY}y
zJQF!x=3GW;nam)tn7*APj$sH(;)M_fxSg!&GC|B@%P1(?FxSw;@VQ6_K%^0h>4YL6
z1pys|BH)QNY2NdjM-b){gk$CYV~_bWZv`nqKX^w5`@?uDnsuAg^UzJV`Fy^Nq{Wwx
zn>?N$sYj9~S*9}THb0z!z-vyOB{>&M&JQbfPF@7)Hvi42*L<p4g6Hcc=WLa8fzHVT
z^<Hy2qh9lk776~nM{<r+IW3*DOme=;C@i1CiwV0bq=gF*5T{5Eyb?Hr=<*3p7y;oD
z#F$?$x3*+gPR(R>x+Y_OTxGee!Dy+f>WVDuF&nK)Zil=d@&otUSPwChC00v|bq^z5
zC4%YwChHc&F|7|Q=Zqj$ho`9yqvNqU${Wti7AsY1sSmu5IXJFrVyg}$dCY1#ckBj6
z%}s6-m%&@sHf)AOA3f%pz=e_>*NP%xt+fg-*aafmW9|-Ymt%1XhSq$%3^<WO&`|I}
zhE)uLt`3aAkJV)dl<_gRi!6M<FhpbvwYiw^Q%(aMVZsxfCX88z(03|yocV?A|7)-X
z9eOfLU~g{*g=Kg>#0#!<NSa_m_JKu`S*dw4EK1OME(ji0rFp#*nbLeo*C3N}!59_G
zPG!bh!55Wd1>Z9iG-oM2a(yO>WciYusz^HPepnR&?^IIx;B=x(f?1+{&0As7UNzE}
zw7rt8+$tQ~Pl{ac;z`*?z=+!~C7975!K}3m%v)gxT{YI1^e<I3kF9Mug>SCULy@_Z
z2fi6{38hbc)WD~{)gYp?5V9DyG>m14IqS+v(I&W)7J)QtmX%0*zDfi>#}H}mp$U}Q
zdD7f96NqntvVUxr%ls~Ee_jSu0XGg=v+GHjG~*$IRK2CbJ9beV+f;xlL4XfQR5E7r
zG~Lbi=7G#lR2_hSunwgpAh?7Qo>7QE35quB)h((321C0aQa_o}ER}l)*ax>cqY8m9
z<({dOKntkg>7grf^4%=a_Z;Uy#M!2zq~Yl>22pgb6z#8yE<gmXyi694lj0?k<aa!F
zZ!!jg-Yor?L@D!1m~b4PKdDGwcI#uk9{y5jBiP=fig2D*sc#DXnCC0NC>;7zk}hH+
z!82#)eiqxObJ59Y6?W7(=;1GhY2}<DP18-X<nlyiN8K_-tb$9BZQb9MRRC*_T8RIU
z`k&Ft9GF9}gHGoPk7-84>=IELP_t3ks==1XrVoQO;;U3-Jfo3S`7||CoeSECBY)B*
z134Z}VF3n#6(UaSy47l2E+RCG2vy$b3$W)v_W!)sn{{gNihZC_?ebSvvpo>M)%f;4
zAfjB~3nq5Ho*(!t7YNxQ(|bCT!g=K$>FkUa)n`kBd76-)6J9f)<fS6Mlv69n${&#N
zNDRlaN9H4n4=a;dy>CXM1he9#vFGZ^s^*goQv928DZW-0uf-KvD9$LDI!kim3K-QJ
z>U<o>KN6n?#|}{lY}}<=Z}{()GWHZ|roK3>7Z1fZutooku*2S$FEzMv4GX@diCvT}
zE<b*({}J(hHyYEKQD~MF!o7qN;u2QrcCg6(x`^91i#u1nzREok%-{xAuU{ql{}}Hb
zxZIeYeFD?2i1(VZ?brL~m6=!iyY;{)<+qmc;x~Be*Yu(Q0Jou;E6r{_uJAwH10BW(
zLL%F3!v=V@*LAkMVwpL}!X1dxWo+^_Dte``OTFA&#H~n@$c@<Cy3b)$wDshx8?nKa
z8-8~n=Jwsl4X!<m>8~dOP-XiJWBQLI?XrDG8|8O()@kK`Kr=GS!wn|b4vpAQ-jY=a
z^;?d;es>`RG@Qr}XrxLoBaMN77Goa&ZMYflb=_MvFd9efwRhm^;-Ma#?)928Sb+<d
z<$2A*b%|c{u64;dzLbTNDXRvp8;TW!u3mG{y1;(=%*{m}bB{Fwn?`vV-Bu*=`w7(`
z6yCu`Swu4|lkfpb(-DF{pWH|`OX$Nr_Yj%b@1Va;G#bpd?w|JUQeZYHFgZhQD}~27
z9AC-+bO!wx>N3kXF#9SWx4BksP-CmO1w~rN_}DrwMdXcrV8432C3};Y14q)BK^At*
zntlu<##`v$u7zC5g6#CyhsjQnfGAkc>VWKO3GK_%BG&!=N%y^GOA?3!r`59|wgjOw
zTO>$8dZlK?8P&Lr_XxSxc^yuocQyRa%G(>EK?Y+Z`H_&N6Z_%98(h(JlHB%Klf3{H
z#kp5CB7c_m_@&-c>OEZ-HNB_aVo(FuPQ=dIMXs7X_&SqyiO1iwv%BW!&R%nsyXNc8
zxE0gWca@j7;mjl(_=oIu?_PU3zWa+k-}N4|CVOQ7KElMI$5-P!z}d!p^a~%rHEUpt
z$zhO?YEx%6qTp;J2;WQ1Ce>h`oTb&kSxao232Gn>gYY@7FA1uFu`$)a{98Jt2KrMC
zyqhd)AY6}dORgvocz9wfke?E?2V>geFapREgkvdR!Vm!nK|sP&6Do3sDtRm`!rR#6
zlQ04hs?HL;e?`o~8Tu!Zq-p?L*5yL@#E>oID<PGek5`iVlP)Z#tbT6-A}HAxOu)xz
z+O}a1rU2MKqM`dw1F%>F=#S7}E3sa$3xmFzny;G_gnswuVkzOwQ5}N*YJBL&8pIYq
zq)#TO#W5K;DD=6}zx)A$m=dv~8;x+k<E0u+FF)(eL;!TT+6LB9mW;bP0wbl%6-KhC
z)CD8TQ@&DT<R+V@vlo}-0lpBOYU3upiQRo@<qRHG^7`Bmkd^s-^v~c99o(gsZOrV{
z9x{N5Ebc{xKlKtlpuRF7Z3m?b16(&Th=NnqB7Ot}alYuL4xwO6El}`I(t#*|Q%M*A
zj_OzpK<?GFu7sR@{VeTb5!u{h<J?NwY5Pyh^`*n&0O76~SiJcM@q*y?JkH-UIe&-u
z1E&l*e~00vY$EtP8Uao?EGz^$zJ7xrrt4$wTEvD{Y&R+>IpH5+9IlT&63mFhXrQZ(
zmAq9gk{8C%iIR5~<8XZ>%g`63N?ym-hsaC|5)m6pqx(x>z++Z24%bJT1eNIsd`Taw
ztWHEY>#0IcxIP#KD;MR#P-2(K&AE7Hm-w86XK518nRu2e@qCV~riBPa8B8|O;SOJr
zo9HM5Tk@a~K8v6Mn~MN0u?oQqF;S_e*l!<2{ahco7V1t<v0p?Ir`TMPkSX?eZnKUv
zX;WTUoML}UgTma8`81XMSXL55PjjGxv;MMuCmYk>AqaS2sr(rAbh1%#E%%lB9j|R7
z(?OLEt_hQ*C7QZAq)IC<h~V3$^<k0}%xfFte-?NH+qC}(Jk<#HTL4zo#FekBSgoZs
zvlwfu<~4f$ze;YXx!HY4A1*&nH{ruxd=A;C^C8D<qffFS`$)<DzMN*KofuW5EUXCS
z2Qe!}cr1hN6*fr|g@SCZgwx~>SA3rWmSVNb?H?D<&9#2|a=kd23%!+#-g^C5f<hNZ
z;@NHf;E6agbB%75!it$$D3L=%fn*7>50_zRY|gME%;GNFdxTNJdun+7;~ezNgC07G
zGW#|(48_Sx&`6quGeh457LT+{3awi<(v;Ja9B_eyMP?*QFpD2~arx(};6X@N>^h)>
z&*>WYY4M+3{6rqukeO<}PQaPW9@sl~$pkX%pdMhKfgafCtXx3HjtEWJs8*mQ%-M0;
z<{U`iWzsComU`=jMBxeANb|JYNV$s$vSe0<_5E}8S*_3{QD%qOKJB#9Up|<j%E9_l
zrrj@w>RHgy94Px!MS!Be(nRn&&qnsH3#meTE3J6+uSss&t;aiC8rWLhmJ?7Y%~*Iw
zUrR643T5qo!gTrtDC=`L*p2EUPOKkOTQDPp3C_Qa=#WAgfx=dPmje~b!7VBe1OQPr
zi%^y6vHxMtw-1<Gz0^&ynN_Y`C^F-gPfcaP=q);vwS<Gi1_Lgl1B$ayf1nYc>WLT~
zh<6Uf63`k`M3(Jy8s(Rh(8~6mW|Y56wl3Rux>4~cYw|nNHfRx6{C=1S%jZ~tM%x%v
zqHMOlOg74|Q1`nC5q3na5@E19uq;3khS5QC^<dLfLbEh;sYaqj7;bu>tvtSEi^Qo!
zDdP5L!En^%kJ~IM+s<M&7`~D+5Cqa^Z2Usn3?V92b)`Iu3|z}cGdP){o?q|*sS-;}
z@&zwWI6sm6+8O41G>hH#J)J2+t~8y2-&Dah@i>rI+*2-4Fdt<Ox0$e3PVKT2vrrM)
zEsh=YJ5K7Z*o`N!wINOCl6*YSs;N2{yRi?xl-`BHZn(s~jP1*$uUaTCtjB?SG@G$i
z>zM>l^XJ55qvUy1WVG+;T$INtaTf!>sRA{c8}(?I!{zUJ6R|-Ey3Ly##AYXG8A<l_
zo_3$inj5g40DA(}BB$Ftu^}*!f(XP+cw5J!4}mk0LRjcI^0-eqf#e)H1}xrw{$Q}+
z2(bSTO~WjK|D}w*w_%~i8OYQykcsb;odJW5(Y$4Il+9xhHRa915y$q|qULUWiLv<b
z(lHdD<C$?mQS;=xv8E4ub2}tzZa`scf2RXQjXiy6hnxM5J^gg=K3x#TuQN2iDn1QO
z-h_Wc1dr8JOx{Kejo{bos$-iR-(tix{R&7vssYa2ZU7a47d1thPtOwYKUyVddGKDU
zuy<x4f|BRD%u+sf0QQOBV+OY^9spShR(U)_4|40j!=$}J!EtCpOZy@3#6rRNt2%^&
zBT(3SkS#{d;0`YB(YpbkYmw=Z-f8FaNR5JO3H6);Od%*SgL4bGgMfmS=R}}j)d#Ur
zFoktdb{-{_ss%3Dq~lLHZ#h{gST9g(J^a@&#&J^eV#Z-RmwZkt0kbTPs@t)mfQWi8
z6%mT$=ZI_baYl(+H5Q0ZF)Dc-VydzzCtl~l)>@CRs|Q<sJ-)xPPLJ;;mh%i;Yn1it
zN`Z1>)>Y=U8xpTFb2h-a=C~bg{oX%l17;vaM_grg+tBn+7mrBSTl?B@(X83h^jv!s
zqNevvO<+uHpk0paft$(Oe#hAJG>I&c-C25udA@MzkM{&gWL(S{<~809k;nk<6Tcpf
z9v+E!1S@d7t6On=j@94v16Y&lBuJUhKrJiK9)tu;vtGPCcvVi(Ib>QvLxY4-Qzy9}
zomN6%HK(Y4$G0mrIsRu}m_(=)is_&RU(`2(9CO}R<d_xZJQyRBK}-&tgsG>g<7nLU
z9We<Zz2w<5kaw7sQx4JA;pgA~1i5UVe;1R0vkb`<^nzb*X8{#2;H$EIM-;sfuJrc^
zh+qTpEhx82Linnsq9Aub)8pLNIbRDNdP|UUG=nHS^co$+gHg`!>xNGX*6KDIbQ|^3
zMsVLT5SePZSCR#TlY%({s2K|+m^D{mF;^1(4@FE0))Zf(6z>el#M`>foa3>bJ?$<s
z>Y(ExPEWz4;CNQPK+}gByt0Y{JgBUV|Ch026BFX5RpG|}Toej3{&P>Yjel`@P%J4}
z(D?5^D@>5Uj*IkCb2Pq`>3<dtOyi#eq8^ndfP`cMj^F7Kmvkc<mg`=F#(x6(r;L9=
z6G|xb;ncH$lp835VD&jhGz!{=Nsw|OgDAA!_QxRF)D^SR<_bb2Y*N<|{NX!+;rOc;
z#LcLdU{(VI|6GarABe!;rs7Lo{u?l<n<YhRz9RmPO!W26|C8YFNZ3eSfxjaIqbR@B
zB<+`<1y2D^fjJ9}K#`uefx-Xgv{4lV3TA9rPA94=pF9|<*kfPH<~s#dG#uIY15t&q
zNvsVF(neD%uxI@NU2FOrrymQIhcf;wEpA874b#X2fLfoUg4L_}*IRnyWw=Y!@7R2K
zhs5o89v-l;yE0nb+Ebi%9D4XZ^_^--LoK=ZLvyiYtMXm;H*#JTZTkg|#)OP3I4u|t
z0A8r8)63*oJ!QqP)JFs0$31Z{fbRhT`%>=97l8Kzz%4B-ID3OO!*{y4P!ZLkz@?i(
z6qp;c1J)L7pX5GNOdug}^?nwa<Z(kRWw5;%jPENzi@uHgP>+Fhe%MAOy{MBmevKrY
zZ%NbGdq%!Tqm`vvmR@p45PO4tvFxcchII&g4ivV|V%HDPo(d-wOc2y$Ha4cMWxHVj
z?B9ejMU=AXqaCA}AX#foM_EFtn8jgC6tk|UHZrma<_MGSk}NHOV<eTEfb@%N)C=wg
zdhbh?z`Hf_Zmo4;=-pk>?@kE4>n-nU*b|4O)(09lz~<cpN3(I1wL=9revD3yKzh{u
zG~xGaj-_`ipDWAwapZT^+r>Y8orEsNsO;&LQ+SxEL%Nobti`pBh)jnOp&5GAMG<=6
zGcRoB4&{F>w~9mEzs~ZwIU0NDvDpL>GD-ao?hE3cbtWdM#0SN&;%-j9;N;HQU7`8~
z1<b7nK->)0fPeNJSq_gg4rjT#r-$Rn<^0fcuLrngR49!qWH*MrL(D!z0KE}eJfe~I
za#`D#0obwc*F^WL)#j*v)McgHs@Z_~x>CJ<6=qc1)1W5Y_)0g2{|flPsVx12#a&^s
z6nzz+N^xx1CK>=)D2nnvB}~*FS%sCL;WL4nfuEU$ppa|;rOO4sQZD^UQJH@q%uJvQ
z*04MQ_|g1<8A?0=bXo=?f?0umU%tLkhZA+?O|w#O3aV10{0yiBY%`{vf$`|km)2Gz
z&U?C;jxI)~TTgxju=224^!|7`?+~#+o)F}c3O87MC3RifCqMjq7%wo9-@_=u!^117
z_Z0|5Dhf;-Q;yf_5lF*J(%j>v5i}>j1K<HX$9Yds#(_e4>kv;DkyKp@L`b6YgVC3x
z?^oPf9C@*n?26Y61!`6M-4&q4jG{;Bf@x7-yckQI<OePUFm<;lkks{N`8$>ZTq_B#
zXn3t>SIV{lk#`aK^5d8_2cjH6!yV=IM#XGq0ej>{+#Q{jirXs+QUMm<!{DfatwnI-
zU=OLwcd2}K+k{w929}t8Bna9PJkXzJE%}4mE1k|(gq*W*N#X=DX$f0{sW0@05xB73
zKNpwQ+jl$o9T&9{7lcB~Ll)$kOPZokg8wV{ZneC#?ykqk69E<bm_TShzR0@;Y%a!q
z!v3Vkk3%y9>x(9G?77%qh?yz|i(Rw$R7274*>gaIo{Fx5>yR}`!^tYdiA>oJ&Wvfq
z4)1}?CvQTy%JQClBc$>c61RTGsQvcfdg#G{j8KN}vV-q-KgfYwGnQa*XNL_AgNz#A
zTWWlu*}Jer3;g28vEW#ujkJpKflh>_c`65lnzDWiggu6t<r?@!(Piv7D3@GL2%{&-
z)}6RbhJ`RHOfHT2ke8L$0vLFS@$q;E@Rkm|Wdd)uBNY3`f3b&_DcyIOBoT$TF~N5y
zs-eBT7(?TAX;I^;J`i7ihiek<3qW6RyDaFnlvxzc?7gEHSMQhNNz{cz-%c(m>bp@u
zmV~fv^;+G=90uObM@b4l*w6dy!QJ#gG*OztcbCaKYi%6{cbdXmXncMwM1n<?O2{}8
zgDBlL3!;K5L0n^g9byX$MSH!B^NQr)eFna(F&KL*xY}BU$!sTMdO7VmxfWv|>qA=M
z3EJdSo+MpyX)W8sHMI$SP&c3jqenVGBq1_aN0J#?pd+c)JByUH>SV7tzaTEs*e#_*
z%9TeJ@l2NSr)2gdus~COta?c`0KYZ(VG2|=u5zhEh9>qhs8Ggcv39>~*VmBm?ORX#
z0*B`RCFQAx(2Yjj4V2O+R-ldqV*Y1F5*!L|y}fqnLR}hqi$(xwIgiAdZ}&*Z1ihm^
zQdEn`EFDQEcdk&j3d|2k_C#r4g9G(|SL|ypc-9FK85iC_{Mjqea)QcnQE%R<MumYF
zjk*O0Ap4^%;8yGNI}{6oc_~j|K$V|O+QDE2qa+Uk7J5@i=T~BOQ;j_jL4_sk3Yv4W
z6_J~!W?<_Mef9+d(-suQdoyx^-*6VlD4#7@o~Cz%&eOLK&DOWtLD~ypI8J_1%^_Ui
zg|SiulxH13p~Hm1$&8KKaqBc;JPnaTfpAE|SP)kFe7p2b!O|ET$cc(jBpnbU1V#CQ
z=XMF>gDv5NAx12+D*$T35YVFLgA>N_CmfnE{&Tw`jIqST1TKY@AM*<d1LwUo4q_69
z-%-{}&)>eNBDnPYO*uQe+$i%m9(x?FPW<9&T&9|{sd{n0B<qhRIKRV*0@nDgGTnr0
z%_v{P*=pIoE=I)!&imnZ6S;y-pEycewlCSJ2uMw~@S%97kj1=0$sFpSp+Ed0I0ZuN
zBQlyYtAtFk#v#L1j!oL4(g?((ODebb<IGf>iTx=F6L{y0l1W)olrrg-*rX?7$d*Zs
zY|t;qgly8g@HI_(CrNotdTXU;LPYjX;Gj&BDYuqMd;dq5ZoJ<n++Rt0(>@C)J*X5Q
zC?t7ACRH)fCOsJ!A|jI-^_wi<dVXpc>B%^dOJq`m&Nb2+eA@w}hkKh2O?v2&!d1Ci
z6M&B-PZNN`ce$K>(F!Y$ul$ZD^pY|q#YjOHCB+-#BLSukGE!b8s$$2^4ztY9W7kn$
zs>FC=U4HH@j5N*<!A6IvIg8&9)11}p4iGJxbB2JGqz~KAI<BErOE4h>&X+whXn;;i
zDNzKi>91@MAtn}MQo(9c5;ny@S!4qyj9o-GDpC&8p%o?qGo&;$>&Rf~UrC1>-w&rl
zxCey}t7VK@1gZg31o|B#*VEsi$xsG}2+8owW5dYMR-i(LHsy}A-pf0H43oK&>QE98
zWT-k+u6)agt3H*>giVv5Q_<1*qiDeZJs_XtAo-QtXG2-RNo}1W`K7617le~vI){()
zQe`{j_sPA7Lw?q#cVSrmPsAN=5%#65S<88>m#~Ni`%;9V`MNr30Q)kF{q$V{VT)UI
zeB)pYUG1bRHy7z{Trq7-zW@Y+CtR^M6mpztL0fXH6xNlL*0OF)0Q3j_!Z;(yuN3Kd
zECeD)bNY-MZ1Gg<_IJWKqlAzGNWmGLv=HvX7A5%fIOkYtG%;!=6P$Yza$OPY822W7
z;3mOG42v&!aWj~CZz4BCu`<--;qin)J$y-LUIYEMlp73eS4cvS038!{g7x+{fNW2u
z_#F>))yNlljqbv*fStpA22ShdV%uaw8|f}62?$eMhs$1>*W;VS?_Di^+wQ!|L^*2B
zy@6X%vo#!TG&O}=-(ip{*N~!^LND_LY?xJB7cU5F&`Dxzl(v*nsmWG&#qanqF+{d1
z7p3OXv5IVgZ83ePY1>rWG=4|kpfIV4V=+RuHv7ern#UDHldaGO`ZggZjp*AsV$(>w
zBhUV~J#s+a#m-~+G6%Ko(octKKLZKm19lt~S0$mn%^(9?^+6yF#o20Y41|M)F;?b6
zWhaq9PVyxkF<c1bXqS&u0yE*HK;nKSX7a6Pz5;3NrIF=#+|tD+jY7_r?G-OY8rc)=
z{zj07^hZdeDmRQY;GBoUcy9m(U7K|Q+5l;&*0sh$1YIl_)uz!bqR8)9dqfD$ahgyP
zt*`HimQIo#NJ(WLzhja&49!kL$sdw#vCy1;w?Z?>T&pdGW_w$Cq$q%_fb};QZQ%*l
z-(s=;v;-*In_yI|7R>a5;K928V6g6$ID1r6e3i#PEZ)Pz<^G=Ifs|F??P;0=JgaaX
zH2*4D|5|0Uuwt8pRe{^231uNzKWqY?hBL*UB>Npl-$Sd9@<e=?g<ORJQ*kNAX+8Q-
zOnl8^F9lyMR|>wc?F+1o>$&87h?Z%A%Zay1XtU`XUJhfF^9pE}31z(QQ!Yw_^9VM;
zRnNBlDc$6HKDr_>g-p(ncEoYU-rV;uyEo`z9*d@v+Osg9u0NWlJ3i}p@)JZcO?OnE
zg^R}$eU9I=lhsA%F)2^qpLCA0+!eOokIj_KZhf#3{r@=lU3R;x5I|v~sa+vn^_Jab
z^w!C-Q>!Oht|iKx5rN~RjKo!M*dek;XjLwXxgrfJ2xkP>8`J+OR54BOx1&%8bzp;t
zrjBzIb!206Yo1r=U?=DRKDnMd1GkC&*<kJd5~#n95x-;KO0}2~6Xnl65Z2?6^j3xd
zrT2c1p!`?@68#>jkq$oP7hSAJ&`{I2YNVhjYojZup?FUa3IsAp2C)IzuB5wO;~uaQ
zMzj42Y96kcznXCJJJxp!G5=gmLW$OvKSeXYWC!!tt72b27{>g(?8fD{4I-+X1KrmB
z?>syiPro4O6?Y+NdXFTccE^6xn+heNu{X%5Y_|^U#mQKRY+NS~aaf7BVaA$)TTRkM
zz9rSf6EYw|zn*@fJBik^JEI|^3^HxBp_i<YHA^*MiwTTmDw&x!APj7_YE%{2V1t>Y
zy#0Kze!1gtz-A@A3ChjH?Z5~6uYn(D&|f(1STs_)Ee~zbUpSH>>^TXwzmWDAu6;8<
z;-@6AwutXW;G^wcb0LnfdCd)8bBovfr0Fa-J}Y6aaN!~ibD!JX?J{vez!I;y$7`<f
znqPR$eO~iBulb`F>9A|Yq9JcZn^A7!geJFsWT6%AdgmmO%iT7zNM;`M<v!I2DS#J9
z{B^w_VV*u>I8XZnmBHizoU0`NY-K@X%`FWL@}EX=ItPkmZo8LcpgR@MxX|TtA>n*x
zFd^ZAbe1Iz>f37maHL{R@lc(LQ=}w$m52FNr6RFhepJV&Wb5_tLfd<wBQQWOA2iu0
zUuVR{4Vr3{|KTWvrLZ>~2&WW|rMX7fFXsA|O;vir#XU#pHa`ztC80V<Nt1gH;@ssf
z0EKN#K=SGn0j%$30T|C}lE-;gvl?OGG7>}>gAo*Ll;EL(EoTl00T~S4-l^8l|F9Vh
z;I>eU7BXT1Q8kiFo{-H0Bxy*XRFT%Tn8$H!QiKr38yF<a{au{>#d3=EsnU23ULy8L
zf$kEE$v4x_H7atM#&4z{_&IcVWT>01nL~n-)F|%;aB^52yURZuaK*N9J`eoDnEnzU
z&@bUoY?7f968$PnO!N)7^m5S<i50teUT~i7`}tx}q)DZRhX`D%;Wj^W<0Q65GJ#w#
z9Z;AJ{6oBNH8!BEyVl5loF+d+b^3lz&j~r3{>5q(BV0D$VCB?0>b^*o#P21^kk#-5
z$5WpK(V(VkE+3%{bW%%ePRZl&{Eqj3(QSghbD1O>dGY9IAt>3w&oa^QJC40GOwMsr
z2l+$gAyFKt9(vvuA?LuNB|tL&>Hbs_=SZGqCxdfkYZlVxhNUgg`Rc>c8kmORHA*<G
zkHrwYFp^<uZ5{&5Jn{ddz`J6nBMVxl1#Q!-b}-w3nh*k1i2~H)`$B+Hh7wJeXK#xJ
zlw=2>Dpj$U{}~3TOVB6*rSilERMQ`RYe4z1mTTId!8yPvt<2_tY@^i45rJe-f=21a
zS8d`1Humrxgn-zkBVm`OCuqBL>R$*oZI{AkqFwsd5Za|iMTL~I{pVdYb&yzO9|uDI
zqZ%irFl|m)8YzWo)nRF*6sE1!X`uSWrzne85zPCs2?n&mAy`XSLFX1mnQ2Z|3Xzj4
z;Y=k_1uOsr8~^}`HFr)JG-jYGLc_@^d8%+)(Ei;-mW>dma_kQsP#Gx_w82Yx3Q+#f
ztMs7JP_|jk`r+-J!3)PKW=OZR%Zg&Q$nGx*dw%zlpCM+iW7@&RY`;sx#H_(yqa##3
zwwR^*5i$FUjIUg|j6}@N(+)F8TFjauZ5y(IVl8Razz!{GamRq$T<JE~d)m=)?Mm7q
z;^h-b%f_ruD?^fY@$QhM%@SP1khCw{ZKF?!7z<cINlOR>j@6P@4F#|k@Pyoivk=$h
zTg6v?$5nQ-kO7iggzXKtM#~V%4l<deid{Q7Oop5*z=v$)JCqMm07=1#)Hv(aQNOhe
zQNnhf7Pf?t61ECfQS@wGh#R?SH}PuZif5#dP5Kc294J^p7zkoz0pc30)qI8XDL;io
zv*Z@AcDf}RtdbpItyjhNm&5?8$`c!`xi|mTU_H2K-hS~xMDvgrZE6M#TZCD)XwHK?
zd7?EL)C8Bow(>C1oTo%{>ZOsQSxTG#N22-c6FVlF*$M01Pi)Z)0uhmn!BxuOqD3=A
zG|`SbH;jtYXsY5<iN@qn^n3e9{=&<1cCUBU?7Iy2a3r|mSK&OtFCW6U4X6}yh9}!}
zW~+50+`m#HZ@8I7jORkk1Ri@WZ2C~8NbG|r^&;vMWr`TZvQ&k+!N%Sa;eyxdUxNT;
ztmJrE6mO)vrs!YHlwD3L4|K$ZyUeB{E53Mv>*S4!BXssehWx4piq2v0v>jZ<XWGG~
ze1K({&W!#+pXB%)m!Te>kolv_Opt@IE?rrgRJPk~HXQDhBWUo_2G%z3J3HVCDO(O#
z$X{utIi&-RQ}vxS!9D@dn1@7KyS?*Cwb&y@{Rjt)$lzQU__`WBSlRWY_x=+QRtj3<
z`TXx?7sL|gCp@kF*njCV_XJ*HIuaGsptVFjicg}vk4r}YZ5YLfXmQh^I^MTBByOaf
zh?^ldMvEKC4so+q6)Tt!CT{u(hH%*`-?byfzq<an7B^*kokhoj6I$@eR{Y(V{9!Ws
z9SF!AM(uIcplMWNJl6_=W)_DipxJYMG-xC{Kx3(5t>Kb5U4usDi7km2U-w&s<}fGK
ze|t_zU#Cn{I6`o98mT=Oyr(DCS)VC8P%pfYyGu1G=E_|8PKl`%9ovYzf@udg;_|h6
zm31*&UdXIe%ZLT+5M{)((ldBHh!;IqMhAly+|ik0!Hp)*HZrdX3yw!_4sV)#C|fQt
zm7jhM9p$lxVcRB87d;Mbf8_Te+fDizOKxnr&DM4Y*lrxSJ{x53r-DM{fFWWqSXljt
zXu6IQ=sKR<9-?c>Ds){nBATuxJLo!56}#k~FqS`?@Pgr|^2Da=@2~l-=~|W`1J&Aa
zBaUgfxl>7{Z7T>O(MYg5gUb}-`ya&YSpKw)2mm%tpsdY~e3%_4?b2pPk!-iqGs1jj
zcDyhk((I7Z|5s+mydE7hJJ<>9-`ub%GeUfqa%32e#S;QEoMKXu5a)rZSO4Z%oh|Mb
zPCYA0nsB(v3=!vjWEKsJrV8nFu+EVX&Lj!d8Av*Ct0g|KPrZb%_i2#uWtmmmN&rdG
zZWn9c_W|xrzV;b_?5aS>ajhNL5GCDC$9+85=lX|aW6DRQkg{!%jCWzC?8lEW-?93<
z^teIs<FR1E#IoA7MMYh#RV}P{v12}7##?_oZg-oNJab!{_1?L=+N@U+@RL!1pL0&e
zi`{+kv+$hn+pO*DceYunz4o?Qj|cE`bitlB>-gXAYqMUSh@ZAzc-!kl<a0cNXw~mq
z+N@<S|BUt4p+B}+FPz`nW^MQuKWDDn(PoYNcXOMyzXWaM??l>L)A97&GW;wJphO>Q
zdz&?VFBZ1^j=u~JBazcU8P;Na=7PMW-KVDGi6Q6WRNEWBQxrcJd0b{vB@$8mgtD;W
z{Pv19HM;m1DLz(;7mY^IQL1S5BVk2(bBX1NE_##{9iWPW&67GIVX@=ZbJOE+>6Q&}
zm;aKjgV7rt{d#vH47rU+*sBx%&V<L1uvRC`LP7xk**2?n7M_lWtz|D)MD9l)e>HIJ
zB(8CKfIq$)ocvJ4V8VvqcPKoIo6sS8teLngKL|1C91$Y2C5Yw9YMqO$_?6$0(*A-r
zn`ZIgN}6ln#YOX6=4nlD{C{r0=e>t)zjTGPf8=4be`_SIbAag_F0F%14pJ@sQk+<)
zuKP|PAl3o4)7K=sOxuGrWwLsQBrfy@(PmA23c&CMM;~<_VEp~D+Q-L4uritH^7V2J
zT*sTYI8(t@qljFF2xu0UYx=H62uI<-wS~zU)i}x!)~f0kU4*o3t-#ycWOkq0v=-Mz
zt;S!2wdF|=22dKkpI?@Iqt0IlO<;e3D32VqY*7BH#Mm=@^p71W+uPZgE@xB9_Qqp-
z4;FnPKpZ`=hW^f_!cU^zd5Q(#$ppz{EkdFAqN9;()kDa|1@@-3i2V-NPrrkuoVccs
zkfT!}b8H4Dy~FQaH_Z>JzNCI~)xM3UtECyNp>W(zYsF)>>Z1)3c!)x-Y_FpjM87wo
zusbR}|9MoJjZ%SI_%f(clM;n*?Rwd)tj(x;ABe1%2M18&5!kNecl5%?sNcDqHFi_U
zT?&WdWmlu3Ph<-QzP1x0u<IgQI4-h<8cvo%ohyqN^fi%1H#{0K=qV^_<$ofKu>;~c
z(2aG0H*q%OVx!_5#>~?KeGn=l4e5ijZJ?iXu<(XIEf-|d0`~^smQKGT?==nq3RWCn
zx$K7zdCO`O7g;}j%qH1TGKIhr3W0@eAyhx~&G-)TUn1(ZUi>VI|Ij^~|BfhbhyV6J
zeo+1!b7=kp%i&Ci?`lx`NK!iZa9J#t<0L{@4x5au@&AfoIcq$-QGVd~N27fRoVy?@
zA%D|sIA2Ralu0-b3Lf%0;ESMxdjWUIC-TTiL}ZbmTx72_U?F{xRj^zTzvnTuK8480
zBr;wkGM-iFj>1RB^}*)xs&#;bY!XW!>{uqPKgiZQs1I(6#)r~JzgL18@aQk_;LZXY
z^{<^2))C=+5!_+o(8^aG+3_ekGM!*ZCm3EM7+wj{<00w&A=z7C)BC9r^zM)*4n^<A
zlya7eu&>n64%9h9^Z$fO4dNJEae3_qS75pH^;nSRDc+!uFnA3VGGww;aCfi*p^uPa
z+B^fo;8w^aO$T-mf`{0HQ`+foq>j2(@d$L3Z!8F60(fLo;TaiA@ind!MLGDcfTpT9
zW=1J0sG{#fM+reg$=0?C5Y2oKsahOPP=rkja9QL$>v!z&sOTO?^mqK-fGyB}7vKSY
zO1JqbkCkPSpN0ncNtjuK%;sB>X4ajWv799BG^V*o-??Ngb&SqBcBzo|^V88K-YZDN
zXOXC$BvCzT0~29n|8Uef+_r8H_t33z*1sAea9>svBKi=1{lQF8_)S39nkFw--(NE3
z12b5xGUoTnTvvok2EjnwRcxaqbrCSJTY4SY-|Ns{h?bCjNV8DWD&!V8-|{_Ri(Y|N
zgjrM&e23m;5`NlL9P<czH<JxUv}a5ar_}*4LQz^8AT3<7>hj%(=ZjqfcNDsX#2}&R
zcD)9FHz5lI<-m_(NoabDIeq4`owfS)2nnsIQ0RcZ<oWVeQz2SMvrSJ}bNxW~?;|NN
zs{ambGQqx|60!}zHi2X~fsRfN%$Ep=jrQdxpa*%rk%`zyakFo1H~3FR`X(gfIPSGM
zzO0@(=wxmVhLnTc9$(gph`V^-;|x?W)YmHq#d3!F{+N)1yD74U`u>!dgO&yj^<CX9
z2Nh>#o1bKxYq+xrdvD*peZts3Ahl2S2ltG2_Rm3E&g>6=*YA%H<e<G|R6TY<;qA^p
z<DnbyHyTuu2VNPgDhX7865VA>I(d*eKL>u`KH2e~49(b?U9%`TCw^1L-kO?j!IVUu
z(j^B=%g*fhHA6Fg$*!qQ9va`6ld-U7A#&=ZL?)rh1W8AJh^y@QwL>%NvTN#)Kai8L
ztY#7N>m(Urs-2GfclE)`pN3{^&8}I9jx=N}u2~#PK}RH|OLqL{Lo<G0o}uw8axy-W
zKIkO$K_ztocoMVYHx13$r-rpQW05qjQ&8Jl^z}rhqQ;h?8MPc$PW*Qnt<tJaK|V=A
zo{ur0)SL{fraBn_O^9EZu|fd#v7{xcco!n057FQxERu=EZrNr-wpm9=k0uoJP&^Tp
zoye<%^W9}_J&kF1!B!)pdon|x?9wGfF{?SBL{dp2sk|t=ra5tF<%99eb3P);h;*_e
zsfcuD#EH_1ET9vSn4pU}_%dA=JHn2znBX=U#cUEvLt>&X)|ENabg?7t2#X!XNH-KC
zt+B7?AhDY+mc*Cm=we6P5f(FY;&)_MUXcuHtO+FIse6vOBfI8%jAq<1HGx#5^Z?c7
z#jn6qPxB*{DaBk-vo$%p^6Fz%mgA7+=J<8Ul4@r;-p<lXWjO&^MoL>J+F5$rSx!<}
zPDYk%<M*N#r=8^#JIkpm%W24xn-gDyJbmmur`vhXP<hTo9#2mEQshaq^YpdzoTc)d
zjXbXS`s~WV=a@A$76v}JpIKiMz?iN$x5mP-2cHL`$N^#EG2PCSVdwds%F`ctvU1`Z
zk>`9n&j35m1uD;l$TKJ>-a?*CJI_En&qXTF#mJM1F7=cy4YIRcVrRQlWrG-|tShZ8
z0SPX$$|@l&H~t)LV1(qQKc`QFI$S-9eyh@L%IosFUOiKxc($N)_|Zf4<wHJ=<PXHX
z+B{?=V>^nDH=u2<z%@#!wmk-Sqrpoqo^~G&N8)|pANa|sOh|XNEq0Z)W=({z>*4eB
zT?0Qi$`(QJ;hPi*CuL{saSi-r+}gmKNXgjsAysozDqiKBpPCcD#Dh@)AA?v2SPs=B
zJp6UgJ72cA+J!BfyEnROS}${zeVgTq--+2^mNEHe)Pt{$RC8w``{FLEuJ&T9#qPCk
ze9*vM)|hpL|9o7lmyHV6;@E+QpQXS?Q2l*yy`ht*d8$#G8^UE|Wj|*<{6Of;i5jO1
zeN<Z8PmM;c%~iq{DM($IDLb)wZG@jIeUL*~Y{HMV2A%`^N)iP*`|EKb$P(fiy8`@X
zHLfk3R1nr0aRSMP)<TCIldX^7ZDh(?whvUPiq(x~M3t(rsS7ZZLCg$XJh7KCf6z%p
z(S1&Ve41e8^Kl!Rpzk%ol-ABgg^R4et`mP}!WR<wRcu!Uh_Mt-^+<bTJm%)1SuQ-C
zH=iJ$&aN)sIcg#cN9We{%F%fl-o;z*XZ+Z<*wG))@XqN>)>Ejy>2C+xPsWrv9Aw0O
z9-5*v38zfkmdevuk<&6<fd#vbWg3WFR-HZYXWT0Q1NHM<q4=j@?!(egOy&!k{PF;Z
zs~NeSoW=+1rT2aU*lAPaw3y3}O>jsxW&#Cw!M-iSr5;v8IiPg$LF}9H-UIDdn$?ps
z*iG0;xK%?<P-ISs9<jw-Wmc;R(_Pww43oaWx)luuXQBc=*sHP#0V7P`o)1rs$A?RS
z^AbI$^?u~1)Hu&+r%y-V&8YTfEcIrrgjP&8CjS+q@pL}I)8k59HNFx99FL<TYu&pW
zW#8cndH%{3U*jrUi7(fE={4Ti>W=>mU;AJdm5kMPulX(B;0AIef8~y^b9evTi{G-(
z)jeKIz2;VT+1H&tW)rq4{Nj#Z>+QY+&Bb|**MI8duKB)`H{Q}o?y_cl5C>f=<B1{c
z$u7LqwS;0N&c$wT_r$lljF;E(cvE7|U+!u1WHh<jK5@5wT4bSKclV{N*S%y3ktc@~
zaJRh&7wnZ;`&?z~+uUVebaoqqtMRvvH;p^powJhNJ@~~n9DcbqQGM+c_CM*O8|u&r
zK|0a#2zk6m$>VD&oJzORl;Gy|5{7;qf^n6k+0zZ50b)k5a07F^Ta9sE#;1WRjH&AE
zkTP0@Bp`8S@g=P-ik~VS0g0%q%$0`?k-7SflXR0tQBf@^G9Ogpl5fB~JZ@u45~R2o
zY1Dah8L@O^BqJ?4l4sq4jU}Yae8p!V+X=GnC>iwS%@DD&IRWyegz2TVga<#y)pdov
z80q-nhg6J+v+<r=C?)W=sUi4wM)2*f%_5BoO2J@%3HsV1=Rf|OK9+(%sRZy>;KGd&
zY##8J5aXz4yo~UFSi`?jQgEngS{J6g+YpY4fs)AvIJ^g8@D@zi@D@x6a)BcV9xaj)
z31OmvEn&dv;cyRO!iKkCqDAKwOzhDS!Gu~#<bfvd5vVT;6VL%A%nfx-kP|b42`ru^
zb1cA&+Qv3ppVghGugcdT!sQw$h70!`Q~P7d1m7oQfDNduh5z(&nW}7>uB1G6C2;9}
z8boMwi;eEnztQOa<&)ssn&8_m^42OT2D(p(KzEe>=@qVjtYq{pq*Ml@bW=l!KgA!j
zky#>rhT1V~{qarAFhPnC@5W?a-v%^6KP2?wsI46JmNP!5@or;R+yr-b&-6Isv3SHz
z7<Ws?QgA_^vY)%$C(C@wfmrG3b24k_!WufM8d&;7<FRTwX-+<+1}%0&io<wp;VB>C
zArY@mX{dB`N99y4sv>I(h|HJJ2N~k;Gw|C9*-RF8Hcf@^;m5G7S4;xb9JUq;2asz4
zr#kmw9!tJWcA4?61)PU)QsFYQLCjEnzGQQFGUwRCd*Y5Lb9kyRx0^ZqL@ZO7!=1j|
zp62jAzT8xEcp7Kc+2<_DPRHQTRizmd#tozvbNYIjH=GY9OB{Eq@5Ti42CP@?={C;5
z(H%1zK3QAwKes~o`Y9F6kU;4%`!|F?@OP!+?;)MhVCgo+60a+{1pX$!zy|sJm~?*5
zv;1sW#hOy9_@+CyV(PG3hYbkHh~y_21;8zK`r2o762R#;af?YYO;NbADyHd^Jsubq
zybq7n2t%Mu7P-uSZ9D|RY{hB=R~gfUX|YLV>O^#m%qdKXo9?FG&IFjCjqDD%vqVC5
zhrFxrB3yxK@9jHf5iMX7o|wM4pb?sY$2*fleU53muxpv@67s^l5JRI}j_@!gi?4I_
zYmqx6bwuP&o{r!?jGNhQTS1holN5-n-rDC6LdVM{uq32E(E{mDY*G3j^|5AnQDpc@
zw)R|Ruem@}QTC8LoixK|NJOORYz5wd>n6b-nyEDtrLisDh&;G<lC6RNpw%6P4!~Q4
zE2Ofj6rU4B<$;HYJ9AmnYb+rsGKu)`O6{ry)QBkINl+u=)bMdKlBOeRjHK&`h<Y3T
znS7I_-()f3(h&i@jRyg}jRz6=HXicueF6fA$MyiFvE;UV0wiDRv9BZw9a#<sKlYmn
zzn!T9=Yx<Gf5m1vo7oVC@f%PKDWX^|g^iYOQ$v4Up#m&NiU-TxW+;~XJj8Mf09>*h
zl`X@yI#ftda0_EOW_JnXHT!@}lgWPyJYvXC(_~7PJ6)fI7O?nTE!4IG0oqRd5Eofb
zFyPNg#an$KY2adGnp_Y+u*I0#U$VWgu!b+)O+A4L*h;cTI%DtH#ugLC`)+ibJM5|G
zDH~ldKf$tb0`>F3k87!CtE40-QC(y1*T>;NmNBLj?4rUk+@p#w!44n_8;KrTWYhHJ
zQsO|LrjOph+hQG)OxVK+D6i(>FWoqH!@@`Js5=`f+n2PM0W^0dy2*c99?p<nqlARm
zZ_5y@N_2u%iDjsN+mP#~7fgn~3WfR-Te1PfY8e-f!tkYD#06mFWxTgVuw;#D0vxUo
znDkRUrGjpWVkz1B`r<IDFc+N<N`*NR(NaN>45=`ZOpwS{OeGc4<T)r6PWwBhf^N{J
z7Mn=m(U79(yQ+Mi=!(D=?jwVAkWo9OLM0tSm7|Ds!Ilo0x>=D9Svukj=X8+{x%y2y
z-zX}eNsfp>#1_o?I-5v`u{x5=Y!h@uq(h00<XO|`K!<e5=U6KRP+FnD2@jFMD=mSU
zN+~c;pW@J;Rs{g7Bt14oSS?FMdIVJPwF=f3L5T3~10_Vl<VQ}Q8A^D3r-X+{BJ*`6
zhao&D3N&>H!C+8MHc!*se=p1Ur}dE?5hM%@CsjIUPmL|oqb^URQOYck0V@Jk(gl73
zjE2dqgtL7oBb?RAgJ^TaoOW`WJorPit#k{XI8i8qTJ%Fm#n$i1>=gBTI;98o`wo#S
zS~gG~trNL&Gnc{0-w+%1=mRc;<*>0A+?F_8U+#;0GH!;eI!xy;6P>S4$|~KD`>^GL
z%Af&&PAMW32Ngy`aAj$5VQt*L&)3r@-FlZ_hQR%3by^Pt>_Uuwm*J|}i;sZ@2D$v6
zL`D*14=uQ~1RbS_6$tom#5)``sA)pRn|m>Wj5u}RzxnuNIo+!C@F|&!fx!u)&P9S<
zO9z=;i7;C=J8+%x$ad+e?VBTqO$!Qst<*>VO(}KN6IO-Ax2Y3oIrYW<U0!3_cTvzx
zT1(m5z)r{G@qK-`7+m2QxWt$`n572pH6FQJ+EpCAmbt-pXb%fJ){if<Jvv{gT?W<|
zQypTZEp+v*SIyyo0Fb2*U7W)2vUV}1tYeKfMD0G937FUph94BR9^IfWoJXhqw%gTr
zaZsbQxG;Gzru;=J(2zEJcGd)5$=>;G;|e_nk)WqklIU(~h{&lNE4lj^olx`&|GvPg
zFKZ^OXfUAp-CwwBe!k3gN&^uqqmOTZb2WLA<DF!I1zHKVC~!e*)`pi99!S9yBze+b
znvsZzv;xpvjEJ;?Qn8q`w3ghD6Re*Ge9Gbq9K{g#S1i<Y2&%w{Xb)Ng6yZ3DkFlg4
zkdP*v3B;^0;J~$$t_ZnmDIshFE-3TQ)18fATqOsuWyQ+m4qPwi0TwmAxqyzIKm~-E
zl~5<L&R;9RE)^83z*50iD)>SLt5mRjEX3jNklQ{&9#$!Ncn4*4>9$4!2J%o~4|&K?
zqq~H!FrG9**CxQeEC!V42?=WRCX57^k<vwi#>2(6C)x17uZ5^oNBO6yhT65~i$UQz
zLpLUpOoZ=)y4*~@VL4mqp>^Ph<yXHDEMJ9O6uxtHJw$kz@a1c%<Zy(q^a;d}ZXNZV
zkjZNM(26bC{KFx5K)*FxA%(8(&IqIs?!rPTArb|<``TpfpyqqzD(ue)a(xR~Rrouw
zP9cW_U#V5p{}8fDgehg!bt24_Ve2v}JErN`mB5A*kOfsrcAy)!pc=zc?FlO3B?>Am
zSc+WQDx!vUYn2$1OE>GfLvkrWI&=uR#IwV!O@;vuQtTThm$+T}U~<Wn3PkJl?97_>
z2)4EB$X|Fw3zuTzK(Dx+%$P<o=7F_6mB%}H28-<PqSgI7CSW{}5ruuSc*RCFUqRB8
zFeF5yWn0Luc3K-i4zzk<M0sc{&r}`hi>>{IsI%|q{F1z0FgoQ2vUoMCjsF2w@{Qb7
zN$dCxC(L4BQWXPO$5em(r<rdgnGXHRmoOyAgilLr8<7)&3`Qoo!Mb=htm4<8%t^9P
z<{_sk+<H2bnx*5Fa3=<z>VlNaBPTgoB3)YIpa2F%`k1O)$#O}B?Y`A&8U?c`UZt0a
z0FFuu>)uPRA$B8r>vzojk1b|{G+&w?G_b?PtdkrB^KrI<?7%N3-9TtGV0cOvggn7u
z9@2aLvq~o@lF({Ck2MIHfviW;#SVd62n`HkU|oUl#kOA6gza>n298#ScHl*bVkLzi
zh7?|q%#0UN9v6Nng7|I~?D{}rx2l+>V#8JJ3Ka}d!Jt1w9^W5J9*aNlWsWLhzYM0c
zkH^K>uYXz%n_TQD!pnHe@!3ypR?D&2Ro_G;`5jY-h3!=5O`O(?{A2}&olHtib(xNg
zlekCT*O`0di+W?HdKwa}vtf=ccASh_Be$y`g_qo}eiU|{Hm$P?|AcW|W_$HQ6Lu`%
zcr(^}GdANRtw}}&CAP=c-Q&B#;jU>)buXzUZM%F!u>iBgz58o?(${U`<A#Xu{sv1m
zSc6&Y?!E>IiTDgKGsI&p7YirmN=e)OjXQpctoayk)OzFBxVvMGXRFuT={0|Gmu<%9
z;`h7Dw*2BX7h?%$36^jyEa7bRcHikPTOH?(|JmDp5ufk_@A~AY*}Kl&Jw0x~BGYOt
zGP$wD699mI<L=3}ICL@2D1QT8#OjhaW0yCh%@e=WYrOn@qPu1b)|eh>^JeUKwJmkG
zEiJNwqXf(U#=W<fs)Q)Q><!3>p#SE67pS0go9INC93qEcawvJU#Z^}4bd_ysqya%$
zL{aXdOoI5#lW?}S?UXm7<dS>$pBINaGxwarYUN84#*`m$7I~*p;BYsm#_h~D3PvXL
zcdT>gP@}+=J_f&mF-GwyCw_|3$K)8r{t^J&y`+X0`HnGK7a^^=9zU6JNkdV`m~5kU
z#~7n|Ba#ZfL2TTQ-NqQ>R`tYV^M<Gb=f^J4g$0h+1uinyCyX&JGIk}RGZz_4QCmc#
z4c{MTqaVgD5Zx%+2{oDk^1;d<FoV_|y;+0NN}#NFq)ViDC{l_?Vf|Kld#vMWo|f*5
z10syc<FJ-620-4todpY6ut1<$AkYM;T9aIB<Xt^peS^PNf_??xq@1hXtU&5ELUjpW
zeZg0~d+-&KzUI$%rnm5CA75Uw>vMTo?9D~Actjq5M~&t0e~3fZk{Vcy5E?s}RFoA3
z*9q)vI5Kw<nY%*B+!$5hj@Si4aAkqzXsemS%8W}nRu}jg<nkSo3VsZ>uv*CF+o%GL
z*ag_aY9SXE_>3(OI+=03=WW9nhLT=Dd={JdDcHnk(!}>sC0=Z&1l#yb+W4N;5L(3(
zvsm{Q{51a}?Ol?iOYdgd_h_nMKg#Xy#zxT|I@TOrBqMf_E>h%pRm3QmnC0!<-K!-q
z2~+XJX5ozO38?fU1A(Gg{I)4(sa8RVb(n8uH_5(U1#R8_H$)+H0=jx25%q66Od>ip
zc7gVZXvJ35LWhZ{I(C8fiKu`D4vUCJwNoNC5kaAAB^^y0KLu3Fhe1wX$1ZXpIsFQI
zK<G}y;%52Xt|$n>A?Qxg=SmfTa!G}42~f(0zZ7O-7-|1+&|(mrzsBbAf|B7+`PrEM
z9n4P%2S>UEBtSmni%|?yoD3mePd`p2P?)#g&Y!!TOvkU$3gK?FPNcqU9V)*f?OR0>
zw~8cg6-nGGl9;SBF>5E}%B5iY<|R9g;x3F$N@jEuqPHeX+{yTE#P4@Xocg)>Q#=-5
zmCl4KvzTEiGF&CqU75@HSBT${EAR6d--~#0p2Wwpf)%Xb`ms!Sgo=TARv^z)j7TbH
zH%tv6^$kWOwTh`IU&HcK8I$C>I(Z$FpJz;xt99~MOn#LyNp8@|0Vcn}m?Ssq<Q+`@
zH)E3A!eoe1Zx++1GwSlsr;>H~Ka`-fi9w*0`|T>$7xu-+9I}il*Kx;%ZSwpnQ6kkS
zY)ttFE=mkkcc+O9mph7jdML9=Y~A15O7xnadCiTu?9yGfb)Q>yKyB#kH3ol%zm53&
z&eM5BvZu$WR98l|Yso@%KhD$tSWo|361`o&a2YuZEA90iZ8nzH(wbaEi|_g^F)co$
zAchI@+9xD_*dqs;AT#(1q|?NoU7&}8pJQ8xXQDk2QOB*rV`CQx=>nRQ;RZ$BX4OJa
z7i>m*%KlUa#pb92^I{hW=>irAHz;mnfe2l&CD?>AD7HnF7~W2akS;)p1N3=20u{z@
zqy~>Ph3mdKObE}5U7&pk-=+(67{XV_F3>)N<5}RaAl&?Q>=Mxs7Bv;rT<t+PN>_>9
z-yePspw)3YTY@U+t-_QPhM?##`9nfz-OeAH?yZaYvj#lTddWS@R0lV4x)6^tkfKBR
z6E<Dg+6;Nc@6JqKMwwRDl<etztf$8<GUcY|I|DU0FGnGRyF6X~;@^G(4q>nyf8U{J
z1wWJfS0eTqV-^Nqut?pHgxj;rtDsA9&99qZ3-<SG#bsMEBv<^#F_#<bM<=zQbn)$3
zW4y+sEgoNy3(@AU7;DU_r0H_shIm)o5?9-@qOJc$Q~1DAY$3;x9Z8L(i`dh;dza!J
zM(54N#$A_*6({;s9s`oE?A-I{D|_60wDPL_)|$ozmyR3f*g)UmQ~Gh66p43uO8<x0
z1tLU>E$%||lE_B)Z#>LKx5X|H-Ka<ayU_%}MA>*OXt_)GRskVK#XdyH=!00Fn&8uv
z0~335$(`e1PBe)rChS-XcI;xaBM4v-{x*{ScQjE`)(6_)1i(Ymwl7&<0j<OWu?h>G
zC_#g)I3;%p-hn_y<l<!w{-D(gXz>?(#P><*`n@;LCZMlc{<}yg2H9N90Yemam~769
zT_6I35xRce2Gv4`HBo)+0&GD!51{K~5avaOnq=!4H73uIv^rc@+u@OB#V*kPNSoIm
z=14cjE)YG^NN(WZm2$L4n&2L|)R_DzbYGA^j?w&aB3l4$_EceL3KTZ)@#c|yN65V6
z42t`EgmK0@`8+8d)X}`0Kh&GeRGH0dsNL{)M>2kjnXmZzbTC{NSPXx~S%C?PpHgOj
z!S)Me!c`y>tb%84hU(q62rp4~6dCFx{IP|CJ>;lW>{7}`odNT(m>l<ke(%Mmn{}{d
ztH7!*B_iC$RZCrEU$uZ0|Lb}1-|H0JbeJ+<iCv(5${e8!beIQoVi$;@%m{mX=UR;6
zu&lwa+9|;{lml;DNBLY_YP7et8x0<_NZud8whl+i<-{(~K7@DDzl#<+4B@Y17ib^C
zkFvmFLAbb`644Moq<kSBv=7OKu#!11fX#z4=Tt5-mhPJiCNw7Z=LEg;ljKNGkLTtf
z_^+6zqkq-ti!u3ecC7Q0>@51X0KtDn|3J5n{Lg@B$m~27ri@f!NOs3|TzSWe7#Cqa
z>R`frHRU*$AeuS#5wF#8kmCiE`o))vG`}^SvVTk#fA5jH#^>>Q(pZ*_p$*{064#aX
zSHVf;Ds3tORN?ed!G{b2dH6O7WVxe!HOCm+5V!s#?_xMNK2dLIvPG}2yv0}OVa)ZF
zC)LaL)>oo+1a;B@t1QQ`$KfL6P^&EQu?vJmNc1Yp+*PWDpa?nCD$Db+3xq^S^eW4h
zED#|=4z<cMsGSla5pu9qmW?Y_dxzl`UlzN_0dDb-YWQziT8T+D8&(`9)hvr$pna-&
zP#5Sh)!Z4oK>Jja$^wT)HAl2lqGMDur{S=v=84!v4xpOQ3eK-tauAvmWf^o%(dhWK
z%PO3W*~)YBLs(uBr^A2aoKfZ%JSR-`v{XFItw}X1OnFDSm0M4rs}dsg6s-8z+RC1+
zhv_WQU$K{2sCx7g3m=`-Lc2vF>4g=p!^q-`UUA_vi%~EPTB+ccT>L2Yb>&zrU_-Ao
zW8GfOWVm{ApzcC}DO6VopPQk=`Be<j_#-qKP`m+u^rR~#x(@ZIRhZDaOK_z{t*t;4
zR--7EKO`t^Vt|1Z)bfX(NjT-vfHx~}5qykwd+x7mEpXiQacW%c;E6YmP3CW&vvwhV
z)9b!$J^d8CvCWw&bFs+-kt|qU#*{CQj*F|CSX|`9&+S=t`-}g^rnIlWwq|1M;<_)J
z8*9HF6?gg|R8rTwb#rZYQuB|sHMe8iKy6LZxX*jmB{lDi%$jjP)-ICuc*!~>$=H=p
zJEXU<IkEPeQJA1c7GAx)!|g0RAZv6x-NM>Y`#sJCZPx8?b@XG|q*jc)cPmEzWvh(5
z_M4<(Ydh6#S>IdU?=Kz|$E4~WwL?Y?`>{uGCy4O{cratB2kt&k$lW&r8!y(>4t{*s
z58TjIyKvvGRrao~5s9@6U)#0N8~=Ij;FoqS@^;_kE^CN$8*i+}wys~fmrHK$<Ru&x
zyg|5bfAbN5?|5fjYjKylNmx#_r`R&x#<rDCv}Pa1LK&&09~{_q`wJ}mwcu}0-Nb?-
zXKnVxf=~GKIe#`H?e;7_ZR1ZZe}1XkUm%boUH$zd)bV9&(hCfKYE5~X;r7<vk22g}
ze0v^#WHSuHC#pbL2%jZ^MT1T#ptfd2YoNBq+xkOo&Cu3;E?>LgBu&=+)ckSX_U6y)
zwlr@N`kakMYrigvOL|-$?v6|Oi#*&O*Si!Cs4gZ7NYZsFt%15rS{K$iTK6gP&K}VG
zacy?L=7!qr)0;Pi&;&O5Pa_6UTjL1QKTGUp!VXaKfN?8&)}r*MO!xr_{l=|CLciuU
zOxTHp)3I+#Y6Wzqu3w{HVgW2BR9=CrTA=c*JOC;)<pEIf;lb1S+M}`7c=OSzoYO?Z
z;vgu91*Qn#Xif|P2MGYq@gd+K0l-0m4ICr@I7k4<ZQ!(rwpuMk1{g~rOZpir@q0RU
z&}e=il45L6tQ~R*runr)9N0ReCCxWQ*lbq&&E42AQ~S;B#(E`tq9`v6-LVL*f4v6j
zS@Hmoo+1wbX(}Fm4LYL%9}Bufm6NDSlj*15ogM*ijD*5C1aBn#3SvAM%Bc>bKow1M
z?V^hsq!+y2LW|wy0f0-C2LP^ZF(gJ5Cx*}v3mg%H|6d}uUxPX!M5q}MB7Q-L_yr-_
ziYGQ9Ce)G;@e4x4F9<OK&d5fp<ce>wu0{nltqvghthHY`!;f1BJj}4J^^!t{qPPaM
zdYyIsT1PnRPRG7QfDd{srS<MCh_azskYy98)*ys`YE?pbd#e({TUtd3+Yp3rgDu0i
zVIfeyjdn$Edk798>sJBswxnTuI@RL0rAO_eQNwCGQQvOvQRisB6nbr#lZq{?u6Og8
zJZQGdpy4ieQpIKA=Z?JEZw3sjLy4kcKcS8R!?vJ~BK)GH*k&j!HW|vlQVrn^qJ5>2
zVQcZ!5{8qC|6QfRSF0Je7Qfnv5P)e>fZ6k#0p^>2!xm#`cMog9(E1Jg7DKyxSfdOr
z4xQrAoD4CvEQT0b9zzUG-eYL;ep2zP@*YFu``T|#AGQQF-ahPYjucO)5BshMC~?@|
z7+0WUJp>&?f{r0U$B>|7NYJV9Re4X)Ar1>xzD|J+Jg_?8;9(HBpC3}=+VSWO;{Pi_
zQ^u6Hv5^)AX&j0fQ$Fr0krIhKpM*kVdY~B?Dz&ga#5UPRljGcl-~yN~Oci6L7O~aP
z8hc|Juf@#XG2^xHfUH`&02Z)wVWZIW5INSDSz$X+r+rM5*tP)b1~e~=%zDxRSy3zX
zp=6CvW?~pCxuMKsrL-c9@i%HZJf4>i$lC6BZeZ4qjpxb(vPO?5C=;W`qh+6L!nhu5
zPmpzsA?Ln_kcZ`$J)rfY+U(w~jkVb+trjr-b!|;i>!%^R{E2GxG1@K{uJ0sV--*&-
zJM8tMVIPO=^;<sy!IkZE8j~+3b(S?b!?t1^MCbkAh&xZ`>tJ-<A~x6m?~Thm0aFCb
z4lqL~cEXe_SWGth5!|yGT(pHLpy`PPA0s7zluwxQgSr_HE9P~33+j!@&wzQka{gNa
zvhIQAGwL2JKGR;Wul;7?u<GvYALhh?5nqzJq9w<V@bDrvTykLQvJt5qWh=+M0ptE9
zrX0EOgAViEIR|8Im+!t}mpaCGpC6DlobNb!;-skdYZzBPX2q;V&0`>)?CD5dzvfjk
z&kANO`G4%a34B!5`97WyMxqjL5F$ZE2OVuFT7zri(oPiRj!q=*5vfK?5i6EdgG2>M
zOagPg3}8jU)>i6LskIg>0xn;h5M*-$v<kQdak*otpr`>+_&?8k&YdMQg9F-1Kfga8
z&AIp7v%Kfs&pGcolT;L~(m9u+3ED}y+Ho?ioa}f_rQGWTeYNA+jPdq)Qqi<{`wNR^
zhPOW^6-|q`3s^KWyqQTwJL4^?1(j!*5^o9Kpy<U(*dGIr_6<D)P`=sT3jNp)A8<4L
zzK-Wl*!~K<zBi~P*HcTjFDg3?MNqsCiZ5#U`Sy=wB1^rg9<D>_=)%T@(q^ZHjdTi>
zKF23etk<2j6pHoev%Z94z3!|PJtOyvmpc0B51$5v<44009X}eL=QpFn&Cm;QIrAp-
z%QvIf#UfmA=(Fb5PFw8%Wk-_>sfmX9mjp929vYfdG@gez1HklCCZ5`2UlivneDhSs
z{d|^Gv~xe;s%SrId-b9CkSG40ET;|uHYBqInHGGp{l#>yGHv7axG1#UyL0o<{yIaZ
zs9>+hHKy(PJ6FK3y&-JuX;~nw;DAT;8WW!M$`V*4x}J0?%fY!jPnG`~rPi3%AKGYX
z5M@^%spC^iq^s7=i1yk?qBn2~l8bRYgFP?Pk$3-PzB0p?fv@71OY=B}%skF6Nku_#
zOy<>cX@bW&e?D5xj9VW~Dw@DWY7tiPY@Ak#)8m01Er~-qnJs2Eq+^nbrXAAz^D-XN
znxvwghZI$}ordH(os52ZjnPlw9HZ%M3Jn;mKW=hcW7>+*pds)BMaI-7@LIwtmj5zK
z@zhG>*Lt;j!jnJ}Bzi2<*yKMp<$rtoM|6~5pq|H65wqvlFsYN3Ys{x#!_+R#9Qmb<
zC&I{I?0x>Ujc57c5L{e^x!p;a*ImLH_FzBWE~!e~n%DdFktNuOg7|vgn+u@arR1oH
zFDk>#EGFlCU4&9mVIRd>5cc6r;eid4R#Ge)Cuji95~%^O_Py8tfEMV+L1iW~Uq8{g
zXj+kZoJBL!0)I{_8ZR;l{^DgUnwj5IkyI3|em8&dht}Rn+AjEy&h*ertZE$~Ue}i;
z6-`UJFCWjCbnQt+(~@o$i)Kc;yON4_CS6pAX6&+3t2Q#eOSI}&eEOfzs{Q8xZP2Ry
zm|}^w57U@-m8I2~ij`H>R12!gx8}O#*P?S*%WmP<J+U=)$n(!{ycO%S8!yL#?8aNE
zTMxzm6R2CS@Z-+}S-pH))-Jw5?Gw&=Th=bVVeLQC-$4t{&0>1Q#y>VQ^=y2ujp_CY
z_tmNNpR<_WI^n)%mHx90Dc$u{ONU&VqY_O#Tes~C=yGfe9`JXdz}4luxh?qH$Iu2e
z`|V7j*>7WtZNZzFe#^EXPOksZMpvAkZ`tRN9mgMIJhBehPaZJkE|drCXBZqR^ggvT
z1vA~wqPqtFz3wN*PL==H7nd@|-F|=5xbw&ZaQF42%mMB;<6)O^rxk8&`%CLeF3qaF
zSgq!EzTNnr+*a(oS0+64;a@c#-j)a8;Wc>x9$vshCU_{%IWHgA2>dXsiSSYxJMw>`
zalXe*@r)Vi`A0MYpOpt7@CkVU0w2LcCJ0P`|NCU5PL_1Hwgq?KhaR?eH70+E1sBeD
zjizBb{tMG#S<7Cx2@5MmqXnJ+L#s|6IE&6%UYHH^!@9OIg>`*~DK;>lVA{#bey0sg
z&U5y>-NSVD7Yi&CX@LJzTX&qRDf=!7Vyp2MIp`By-SyO=xVmcie04)?n)`{?oCn|F
zd%T}$<y^U+=z1@k)%O$K)JFp5Jb(Ff>eK4ctBF#cTi-ktL7%D5t*_=M1jeNd?S4jm
zOc&a%XOpO&9MSCupoqGQ9ew+@i0)%jS4bb5`_4nEhm2!$UrJpeeQfSHR@kN3++U@s
zky&hRcU^lIBD%Les6gygB`G%ddyeQ%N%C^SvMVG%HFbsbByWFU7fHT0b%pdKw^(79
zNIo`Ajm${iN7wE|znxu`v{&jXsY(7l22}IvuO67FGEDif`++8$qB&5d1^Y8aIPwvD
ztBjOk%E=eOBwqo8s{uaz6WdO@N$i!s@7RHm;l1$x<v1BRTAiRgw-}MaNkPX+$0t!f
zWw>&3obe?*YcrasawZJsshkN{RO5!QI(Q0+XKol#%%eK$SfyN3_68RE{l>%*y+u_g
z1B!6wHXum_HuH)QTtR~l9%kcwaIch6p*76;C&Qt!Zs*6wfnQ=%m$V=%gwe)`NyQiT
zw@L+r)FH!|SfoOgo8{#b1cUHAP|Yl2H1&C))s}oqaUSS7^(EDLpa=LVoza-6KBhAo
zDOJb*gm70>M|SE8=~c&^`&17ZTZ{WrS4giq&SiyNQXQwJsgarLc;}C*zg<urFQl%L
zq&k8*y@NfkkbR-=*>HRhH(T-2kCaUG(jRt_iJnbeAw3gat1D#8L_<?oNY6xjv%)Sh
zQOCWhYounP*cl!65`SsmRNc-lu+zBIRg&0gcj6nr@8dx3Eo*VC{XOtv44u0(M!CKQ
zfK7EUQ>9sb;dh`V%xbGj3!Y(0v-%H}k<zTjT{f^gm#jgJ@ABy%>VDkRmd2<indAS~
z8KC;bw0khulElscrMA=08M|nw*{ay-75ZU*n|}D`COn9Jrk!5Wf@{`jqj|5Wdx&W2
z4ZMmCYy1r6JOf?pVzl8m?jN1!jbza0iKq{Io%ifavP0_oQoOebYv8_=J&mKm!11?{
zoy0-Fv`2O32E1MW1sv1s)oo-SbgFP<>IyNPi3+K%BZ=>H;f!7E^zqacI(I7Wbo6GB
zJq`1`N^<JIxmQnZSEFtz$-D7xa*?{5QMuq3RYZns*YHyLnA$b`zX^)Pa9v}{RfRw3
z?-y0=X^6mZ<8N=8dza#djIRKBAaw<DL-a!C1SUUUSBNtCw_UkcmbyZW-!i<0XAj5x
z$<ucc^Zip-NRRo|cd8yT#{81h6*^;HBt3dbmS~(r;TK`cafR)6Jb>#wd$V;|@NAXF
z40fEAcCSB$Eg7BWN+6zE-N;j`8)csO3g)CqM{r?4{BdR{@(HGd5LC~^-x7q>BK`3#
z_=bsPI+0$kzssFKsb+qE(FJ~9y@zvN^BsyWGM4$jr>>Bm^DfsFGUmMU)D;pqFX7ss
zucu)Q36p_uyJqv_G&R`AcfR&#52yIcT&#{?L-@99_x~?-h4d63r7L7i@yk+INKf&7
zSYekazGX`48l5Trt@?~AuJbiSqT_lpIE4<y@ATr|5$qB=uCGc93RD`?b*V2UaMd0s
zG(WHYj>?bKztasm(2$)jMT0)A6Md@g)KNF=L}up5EWuM8PQCGx>YCuj8;PKl*92d~
zPk{YfuL;gVf4juZ8z-l%ke-|Ws4Ha5&EeD)(sT2vtguVm{Npq=I&*W^*c2fBegDgL
zeogQn?UV?EprrYkj&SM<=`nn&u8=W?2c)i$9>Z&I-&G7RO;e*YhDBdQZ(@ONfG>o<
ziNC0@Y-iU5Z<qDs?Rj6SwBQq_(9hp;P4M6w)R5lgHNk692fk0|Yl2&6U@nb&WaECA
zC%Rzy!>{V_SAiOq<jW89F!tZLZ4LEG{FSK*HyDoy7`MJO!nk2gE}vfBgRb_45_=K<
ze+06nzS_7if~{pmg9{+BtBns|gxe#q))B5b1iw3k|C(_zJARF53x190qukr~3JhF=
z)sh`BFJmG>Ydn5Q?MxH<IJnN9S6>b`M)NM@GULq`_gvJN+3)^uUzH!UdIzm5a{1HA
zUIsttEAjQsIAs$NBb4%HoNoByE^1Aj)k{{m{Aj?KcmrY-;sYTWzn*Y43NFoIUi{T4
za)%BAAMa>Fgo^|^BKomWy|_p4`_`!UyJmsO-1|^;>_IFLDL%Tml@($!<VhEg#Fw3)
zR5mf5DgH##wJaNpB2T)%B);qwNo5n`>*CKH_GH;uFmlp0DDh>xC6$d2)5GZj2`mF%
z{?-O`$-OY@!WV>h{k0MO$c-(yFJw_mLBj1SZzq<$FR3j0aW5Nr8~v#EldmR9KGmf!
z8<DF;)JaEu@rb%+gqMn>rsKAT%;~r>scd>WKESdW(s4#o+4OWghh;OQ<Ij@HW=_ZT
zSp3bDj&CHDO-n}v-^n2$o@m0kJas=u?9`llS4WhN>H-<miqcVC7<Dx!3OIx5`MMrp
zBAo4WrU+--z!c$Z?=$^A!r6Fe=Y1U1$vdkJXDxYj=lQqaJmMiX4_zX^-N{fc=gz4F
z2$wzKIt(wOz<Jrz)!wuRd~kh+AF*aPR`CvpIw~F9;V_FSZqZ-}`q(P`k$rpQJj^dU
z3tekwP2396#uP1P0VK9awTt?b<U4MKknd<$zN1}!=OPc2`gTde^O)$XD9-rhSsm^*
z6s^C+Wfaj}g!Ax2E;3%Z+zNyCqd!~(g3eeUz|XHz>BDtQIS8bQ5f12@K?YE?3^|Cl
z9XUW=vQXZbxCknrU*x5uulj=G#>5GS6NJ&8Em$OuHwsW3yL@R@4cmZ`7{wI!VK`Gn
z#}AXXQ=ETtjYMj#@(`<KXdUiJDw|%bl(TGxTBR(hY<jKo#jR*JL#+}?Dx0}h3A1j7
z)}cPBY+9}2UNEK3Nq&#k;qCF6({W`|+4OX5V%ZGocvDi@^mII$WizB>zofF6)A9Ln
znbYy9q_S!0_&r#Mj6>AB04zBtvK8yiay7#yd4Lb|5gv9qME(1^>Z@U6KGY&E+{udY
z$7y-|r#IpGj>muQycumk!P!iq;2M}h!QH}ir^kQP50J*K%%(!|PR_KXJYms@ZUy`7
zU$B3@JOKOG;33@&FPTs!cIj12Hz&F0Nq%*bL;OSB3pnK_jg=;Oz_E#O@&K&dfQMkt
zCAgvHivRysz}S71al}q_D`4MRjnH250EF%<4?t)aJnT+HO(rY|Lg7-tEA*X!6aMG!
z1l((^M%y=7OBU(;Tpob7c06=OL5v9hPuvNJjf$p!>-zx5jR86^|EOV#`Nt@xn12js
z`hCnlTpbpte|Ms5)9K9^g?5MK<wB}G@;DC!Z4(4-%MWuuVw$tO|LL<tY+vS7-|-qi
zb^jmcR&odN)ZgMBz#o#!;;q{c!s2kd5Zcb!DE`J~qnBZdN+ihy^hErKX>>Mv4Pxvf
zTd_V#=WJ0~{7s0y-$4Eo?=#!kO^9PyJT_n4*)`t3N-C<S8R`av`1Qd<Su{4w*x5~p
zy^@ORNyhHog!oW(#^d>2Qqi>I8N#BOjb~6&(az(E9s^BtDGjy!Zrp@uj|Pmpd=uhD
z<Nt?to8s<klocR-ZQ=jZx&w2f?{r_|^Ko}3{*Z`dym;b$jdkzKeL|h|+n`Zo^Un7*
z{sg(i#JAknIEj@r({|&Mil)^L16edP?QmpL(Rl6962BMn=Cx=wwxY7L`x;jy6-BGx
z?fxB^YI6cD*Afh22btk*P*Tyfc-#7`jPdqKQqi<{dw@kV!`sZHqMh*;)zukaenai;
z-q*PL8i11deT~<k__yBI_@K1;UGHoB8b50bDe|1i*0^eoKe#SD?mn)!MiTbXFDB@O
zGqDf8B+&6*z<NGly)MxR9qaky7Vhs_oS7T2npq%wvDvT+rB|U)ZlGg5e%68+-~CKU
zB4f@Yl$kN+Uz3W)G3K5$O83%{=ynwr_~JKp7haw5nCB-IO&D`*QRjybEaBC|+;2@-
ziIo_=o836%Y;`^K(e)#MfIQxI-<Q|hzrB4~y4|kG5=<?~=jXD@H=~a}i>c;!xug_K
zuWu@Ss2RRD8av{>U!n{aEY~vq20w9vYbW<4{t!!<z!7r@X=YOJP*Tx2j!3);btsEw
zX4Zxz6-BG=b>@2#?p)d0*+rL$(stqSjBy)CDw-Cz+kcTUZZ{_tO~CCQD#L1jJ@pJn
zr1}vz@^&D^n;YtXy$UG7g4P2}V+&ZZ3)kZBv|NoF(su8DHO#f^ILX$(E~z46)9R1+
zKU4Z+KLX`$ge30risf8X=7#>DR8*79yb`sbNv1Ky)<=k`)+ng<)t)37$y#M7q0LOI
z3`r`Qmh-!^Xl7bvYgOl>ah#ucWBFq&nwiu0KvGe(>N?AN5=9bq)$U!ie)km_)6h;T
znwExs7R`)?CnOb3OT&*Z&zOeqCKXMf;U29MGo49@mRyU=z2tntl{)OG>E}QawB&fE
zSoR;oG^Q<6-%<IIx(m1^dhz@2Do^Uk|HS2#P|958bnl|X`Y_(og&jqP{97sIn}%WR
zu2SC3%PGIO3~fL~|C=dP^ao6_JN-7(o$XHVNtz<6yED0_vH>HL4e*=g0Xvhwkq2zC
zjpU%A@hRKXrvJ@rDiiSeU%p#gJibhDclA(>yUXPPxVuOmfV&_bb{ThC!~V}*Q~9$?
zH6Bis2jJmoc>o@Kc*q0~KlrALyTAE;-nE)BBOOwy5m+D(Kwx)y00MLHkO=}4;Qu}u
zsneR*?p;%f!}@EnQ>|>5Tnvxj|GgL^gY9Zz3fuJ*Q*2p3&a{&a`yOt9lwXU(&%-g0
z_UkUZZ`q6BP%JZWLz%xNcPqnPC-~*NyfgAu-N5{x`2Dza_Uyav+HyvtjHe{(hR1LF
zMYqU4AL0hc`7gEah;(_3H$d8he7Sbe*WI|^8sy8jhWUC~L0_SDq3__<7y0igOq#Nc
z>=pQ$i`?!iS3b!flMR@*zsO|$))!;<NuF|LzA^D+LfEjO(6mPR^35>+pn})5bLF<u
zk7P>b`6zpToUQ5VbDn$jqaC`%pbt%&g?8S@zdQyWLai6Kn>O9g@&LCOpU}uSwq)1^
zOQc9;ZquqULrtrjY1QVMR&HaqUGO*ga%rv^uFl8TgG{RopK9~X9fJkp64NG34T}m}
zO>3)Zz3UA4vK@DtbePsc(^~5EmA4h9^-BATPQJW+g;J)q*tAwSJHF6mmpY%z;}+9;
zqkWQTwQvx{&byMiG;%(U6xn(G1eS{2re$M#nHC1@&o!6$i-_Pz2iCYuYl-tWsqu#M
z5YqN_&VDa~P=CR<D8du)d*c<rEyghlcmQsJ4D?Dw5=SK_D4FXVL<%4uh$r3}T2Q{b
zkJLi%$YwmWb3mTLJLojX=O<3Qz)4Z76Mg}3*wNl!>`dQBNstsUfWG#H0Kq<xzoOAp
z&tkTT%%Qo+7*mZG05p`pu`%Wfya4pdLest;>CJ^^>9(392QF(|R&%g$mVI`SS-RAi
z-W*B*ZeVl!C#H2U#)5I0R*f&;`RPAD++oZE11n4rg!Tmkm$lEu|8wyFqt3I-fzgvd
z4?U(`#i!t`kT`p9Ul(T@u|S?itaH}W9||AmcgE*w=zeGT<j;*H;}fJ5DHFy=AEcYW
z@Q%}t@ecA8Ha6D;^q7fDKM)}3ABvarfzTB-`2#zlPxwTkZWvIP^Bhr!rrK8nv9CFI
zE(4-2k0B~0zD@?LUh-cd`A@J8_9FiYBMQ)i$cX^h`4fWZ$y$YAEpMxHEIMePlZgLQ
zzrDS%r%&;ZAv|nxG>_`VT5Ma279WdaRy@Yq4-fLynWvONDRn0x^&4dBVLj^GLY#+n
z3e<{3n&EN2V&jr#4sH_%x5>%<9MW!IhcPtzaz&~@-V33o!qs5ExjuDa5~{`3sqfHr
z!Wa4~8oQ8k6{wnJT(ZpQ5%g8^&qy;o%val(!{=I~$7ElK04-_s%|yz7rVZA**Efrg
z;b(obB}?}g1Mh%nSNHmsqDW&7+u)OQh;~=tneDeBed<vBd4`ud4g4}vkHm!TFEr+L
zHB74)L~6|{2S-tJ&+M~oP`{-OZP^gL-UAo=jd@>E(sG^YM-Uhwi{y6x%qSJm9Bfbt
z9J%-jQZHfP#=II|ZyX!Vy<vaTe%4nAfEv4@dGGaB`z@I8K7;EXvtSU$L3N`}`)kxy
z6;R<Ut<YNItBgbIkEw};6oY)Vrajr0k0wnk+YH|XRX^8PCj*L7ZX30#6xUR)Uqqy|
zIzK%yvcuTdd3Z5+eH9iYJMqgV#V<#)@%jzZq|rwedB86u6F9`^fpPOs5eGgCnT@~<
zb&#tLL|(o4;QVBZme+>1Ex;)7J;--bL)(OgrGC7g#DY~Q=QcZ%&DJuvL~`-wXI2F<
zU!??Xvf>BP^;1zQ_6aaR@~9g@13+^jB<9~(PhbgrfRs|JIQ!sAuUI8fG;Ym&=emCQ
zh+&ZxrHbm9_3kHDY>kfkMZ`|4^YiC{$pvu+i(HX!=Nj`Xx|%KTdCk3-8}rP)8rF3)
zTh<kud#|LPg7oaeT>PR>jxnzipVoWKz1QF|7ms=7-Y?+m-l$NZa`!=QUzNKra*t5C
z-5b{b3?Gih2h$pwiz?mG;9h7Y57}K*q5bf<kE&{*>i#M>AGrsr+#bk1Oy%y6+#jpl
zo(=1=@!?o}Fs-xm(RNRBWdu$4LYZ!=cmW;_Rr~;y?X7ZqBll31TZr5rsoXvdDB80A
z7<>S%U<0!cf6fRE9*FF&s?b4r?5?UFjH<m<ZeQdcta1-Qu1|9Phk}XBmbRnJy_cHS
z>E4)^7Sn&?kL^#@*RTQP9|b)HwN^|5ne@jLr$CiK^Fgsih3C1?ToneYlLwsHhmrDp
zgP8h5+3LB)$qki7pYuayUEKV_P+5-q><yK5b)SnuWghprI8?S5c>$z&FQ?(XEdy6b
z2AIceaXg{2ZY;>>ybwG%{ag?#+uMEa8!Fq!eLf;owy*nqbf~O58wU2@+pFQdW;Tor
z>Z%r}OQ<Z*ecmTjwx9dFf2hoGpAQU`!BtV^4-1v`aG!r1DuXst`NxLJda@I*x$?b+
z_qGpQ7&;H{baY#sZlSVX?z0gpD{!BChsq9cpAQX{^>&|s6e<%#%DTsd%KEU~A^_jD
z;k`|47#Y+xEl$@^*@5nJ_fXkE?sKnD8T=+y=HO6SU-#J;Dm%n|J}OjpC@m)(!bK&m
z&YxQ#wkxRsWBd|s^fl8f6_fdt2PCiG&`g<!$y~q`Do|2b89(0nPt;+f&%~?IqtRE%
zVl;X34T=l)ZV>DpYK(MipjfpoUZ;!Ks^X2lIy|r)(Y&a%i68Kfd0TWUmRK7)_uC5n
ztqmzVn}wABSdZ3|=>nwuMq|W(%=2nMiUkn#8~1Id{x+N6fEy0kwCL)<u*x&N?d!bi
zD{IQv@MK+*Ux#%5Dhjw%a;eqX94e^FRNVG--8Oaix`R~PM4c)sMp6{~blnTfJ*CUV
z!=UOAh8JM?sqSl&dke!<D>HFpQWJ1ZL_;_>>XYnQ?T6ET_)Xv<+LMgu8unoG(~f4d
zVT)(n8!SWGrR);z66&0!E+^|cgt{QHSNIv7d)<79>a|eyx{vCW?oWzdr|YKK@$Cnq
zNPKgkfU3rh??tn5!!1cDDZ{;4cU+=6?xi|TKnaQJHkt4A>D-|-b6jFaP|lr4*h6<z
zoG`*!-#)_GJkc889Kcc4IKroK#5Hb&MF}MZw3$2vYg3^JL621<ER3>YJjaHo>!yj?
zV^Vais<Gp;#E!km9UrPY_NtDDr$MdTWWMuUVW*J_{HqU67@?Wm(L9vk2+f2MCehGE
zTE25p%8o{}nRrA?_m`&3JtJlA(J6C#GZ$Xi(kRMZ-k=dihf2ITC3+S&wbLsjMRET{
zGm=(k$um&zhhbeV!M|<vRdD_!`u#dqtKU#89X#qQVha5(DSYq}zT0DqO#2cz3`0tS
z_F#X|9%7o-Cd7ILtQX3yMdj8@W{#&<Zyp;fD3GM@ev%x~O_HOtkeE4RE6kirD$SfB
zRl%IWBZE0Zs?7m|D}n<qsSFOdqAEDx>XE?#qpMBpc=)H{8wP#(K_Id)$hiS^PEima
zii4Q2lmxBeK3ugjiY^Qpv|~8_aB&8XCEr)JF{_x-X^B}S0c&BvdNsb3KVU5iSpSO8
zG6UA)fb|Bmid93|3j;l*R<UloB#^x*&_imuS$;Px4p5rcE<BPoO%tJUJp`%}zN6aW
zKo7LcX}T`scgw`(nSt!)0P9@{eR}P}o~(=Z<MUMe0S(!O=t`GET><TBkQx8FWtql<
zpXQnUUdOdHEqQ@{D+1X|@%SnpSCwZk$KwZhe62kDEj)JM@%8fTPXgDz($ma-*|a`|
zhk9Hvy9M<F)>8Gdl8so))XTa+zm-@sQ!k&I{IZ-c=C#Y%0y^Q;v4XU$BrU5*%aNpI
zwQ0lhb@)JWMLN7G%1K-yDHqMjcL^8GDRk);&GE*_mP>@?y2zopsD|@nWOK6$V<gFS
zN#b=$Lgy1Lp_)s!e78)YTLvo6&GW`cROpfe?Ym@So{$aY6hqN>)MP{6o=3LYpr!n=
zprscm@J_!hXie9%!!Lu@!l1PbvQ`d?<(#m0Pl|iNK9c0+APMGpzTTfn-WN#B0pJF6
zz=fFE4*)j=2ap@^1lgbKQ>u2lp4?9M&5^E@+eQ$Y@eYlI$^VQxd7K(T60|1?O!m~7
z%uLcwH%jjXV<qWZEy)qrNOJU5NX(r1vsf`_#%xKZO1C+a7T_(IGqstS118Pl+W;vN
z9B`i$8St<a8Sr;00{E4=hx^7VfOj?P0A+2GPWCyHuiPS{aEs*M>&t?s4O$P%0#gv4
zcD`udxl+%(c5zP=ZHT?24spe0x@wO6gU|G0$*aXKU&3&(H)IthXGL{mtW;Dt#<HTi
zF_sn8jg4xMY~JPYSXQyi;IXWz#*Ae_qbae{2y+!!3|!(*Mi6Vy%|aJS12+nmSt_bs
zr>iX8UR1#*W=D0bB9HFIZL>}HjBXT+F#-T=CDE}gw50^PQPD(U#jWU)2JpER-7K`_
zR&=w_)_*_|Xypwx9?V{;l{eIQFngU=-caMg>`z_g-ET#r{)X{|F{J(m`@zYl{)X|L
ztCmDHhr0ZhALCGAWX+)>6u?YwjJ}%$%RWpUm6_BN1{QLScPuMv17cZGBM{4qS^+g#
zq<x8@o$^LP=f=?PW<kfhw0E<hx?TR1EX_|*>(D52t9o#$n5D%KJ-E%eS?IxSPO@}!
zQA09aHRtvcgF08*<T%_WRgR3qWil7}0NQ0THw&i41yAT9C~@n#Q~`8uJvR$Yx%J#E
zG_|KO=Vw8yrQCV}?m#)*xSWDecWU%J3rR4i?`@JCaf>8J*T}aT_>wtf=Nz&#p8UZa
zvNMcQ5sgxDZ~&dm0dz74(8;vM!VpfX1M>teu{frsERHo}COOKQF-wxEv!#eK4wf<w
zmNE|Z;99feYRr0-tAjUsBoEi2g3IY{UP$tkpX%mKlRV|9x_Ru{b$J9hw>?cYl_%Xu
zlbU<tvZYncl**urgYvKpN{i$q)<w&z3B@%tBu|xP8?N}q=L>Y2rDjMWVeE%hpNiGo
zd^knYr^{~&tE#+e=Rd%7-^ru>7KX6JTfnGh5j&dZDo^M!8`&<|<Fe;SwxWDo_5#UP
z#E;8vmTWasnZy>+pET^!U-G0sY1pNIEL$3O=`Y!erfk`z=_J-g%c==Yf5}s2*@jzo
zMqEDIa8=3-DWvGB`qcE-`J}%puk_6fz9`37=kICs7l#o#fk=Z+ka1g+IGmuRptt9%
z!O?lc6s6<ps8x)O4we)%m8+u$Q4zP}M=n0~`_)ln=w?Jsp_>skgl<OE3~J8!kxL8x
zjy4n61n{}$#Vrvvf66Tu@?9M@ewr`PuA-TKXS>QuxfxNj=W+*TvsXurUVJ8ui{cAG
zq}hSCbyI>$Aj-9%g3zd?leegmn<UJ`%8FSPj-%#Hy+%!&dffxfS_T|8S1pl?_eC5G
z=j2-17d<;8%@mUj$9yZg76DT<9Fwrb_exhGag~^Dxl?ZaKGL0V>-TEc_NW=6H0csB
zmR0HUM=Yz#C2K5eq)V*nzB<T|J14GoL2OjpuY@|*UWg@;g)S7E#7dzHMf~ZiqVVo;
z>_O-uCuUd2z@DbtL^p1mZWg*xZ7Ng)WW}uN6>Ye_(#%*JaU4j5>KejxfX1z&-_eBh
z`TZ{3d?&|$Ed2h#aQlbA>&M!kbqRcawXtG$9ML-mjuy7&T%J?AEcmd!i~f+^60laV
zhUmwRBR<d{hzKt4=>3?EBVLStKn<KC#U_*>@rWm)9~PR|uEK)S>t+tu58$~~(ub>}
z4~OMMt|nPnW3+}~k!f%hAjT5YC0Jn^J5tS`Nu>uB99l&1H6|VpswD@_9)l}bcosoO
z$f34(r9_qCz+5>|IaF1yq^O)`$x(KCaHZR_%M2<<TGkw-a-?O=gepf`);x%%RN?6d
z6{1`yt75GyZX7H*s&&QCDo3@h*z=Mqw=Ge#x~*8Qz^_?%@W@yXx;@EJJ;dbWLD^|@
z$Ec96+R<=T$J&V#5=9}mn#hIQlB%b(R8xDLv|yEUF!*l>)G*e#h5z(wdi^3UvbQ?N
zJ%}~=Upvu2G#$2t&G|xZzUOmuK3|78Vw%DQ;9^<UzE~|NiYsv?%)b(#i`DX>Qt?;9
zJSvs6m)X%T?inBSvNt}kvT`N)0>42qCSSa!g?LCTYM%wK1Pv&Z^My?-a?4x3s|w`}
zw!GEkTKL6WK!tU`66RC^au$|P(U7i+7dE8m%}-b6N2_uTl~rMwRn?2#95ki@DU`-^
zb-Y{&$4T`}24huKP~K2Yck4wpx1jJ3P@qeyS5#C*)hlXBAJ4f9=z8INlU_CdEVgR?
zd2H4EORSn>rTuNJv~Lb(Z!@p`SI<E93M`JAEgxe69jo9g`4s54DVU8T_3~o&`!tyS
z8DdJ+mru>?wN!s7X7<}eeTNnT{V>5rgw&8+Fcy5s!G&NfFL&`(0IP5iIVRV%Ynb;*
zw%PIeh@kOn{*-U^jzRcwL;T{>=u7xh!&iIpXKXQlb7U}o^>9c9{#;RoKclPh=bv?1
z^230mr%uBIf8Apx|GddRAMnpcG&%ZHJZ)UTKWq8teg63bA2x2npEuv&pLhA^BmQBH
zH#=|z{>Fv;vz&ik<)1hChd(a1kw2ri@eBU>28A~+=AW1K??e%5TyTs(0yQoz#v`Gg
zK&U4W>Ip8?69j4rg3<Um2|HIn%aDBRToq#H%4;rgX-bJ`_;~-olGYpyHDG-nXxRX)
zFBamwrd}3ebu3`Ls9sviv)i!W#g{<8=JM=y<?2hIUrYJ5@AnL5e;8<J&mQ|^U<vQj
z%nFo#R&E5>BL=hFI1>rBT+Un{EX8jJFp;-F$6LXEZRP#m3-*8A?7z_L-xBEG9O&O-
zS|^zn;0C#&PeAS=agjYrVZ_nfhU6ZJ*kiG@d&#Q82*|s#qxu~p-x{zGU#H(8_3BCo
z{qDs@4<@(8D9@;!-5ThD(s<+SaRkKW`9Kfc0O4jpV3wHN5EF?%5=AgAXbJRyt*2PC
zg8oh+=6C1_^<BhTY6O@ATdy@6$|U6IG71u{=g^M^B`TW%<H4m6xlbXR%dvO$X?b=F
z9^b;_=JM=U@%RZIzbMcCAZR?e4UZk=*&XJ!ufmhSt`#<_D4WYspXig9wUAIPp26&o
z(V`a5VD?uKN>@C^7r{Olgx3I(5@Zt`7>lQo_^SiJ5m51!RPl)7!ykqKRw4Lrh#Ag%
z_h<ua1PJi8^TwTiG#;@{&QQW3e9CvGwX3LNga?_3Z{wDcoz=Li=4^9GS06YHTeby{
z-`@-MxNnNMn|u#5VH03duy^WA{oTiigXF%bjkPU)7|9QCjtEV|qRLi*#+cX4nW{5w
z{st)y!9n+Not*eod?$$gjO)Y<d(QnmKeHRaKx>!fH0hp8*pxq2&(2|gfI)mIE_6^B
zJOO_<mL|pr6WXE>AibM`N*EXnCQ*hl$>`8qG~BrLUIYg}o=A@yFG!As18}e!XbX#d
zv;ugl;8VVH$4y^ICkQ^td-8cwN`hka+yy-qt6-{2+0zVd&lBJ`CVoL&HEcj9qkM=Z
z;UCqN>Qj1>KEWaE^XO~cJ~1#aX<iG0Un(%7dnsBaMcEFhNm}EnnonNmCu=_!kc)|z
zB1G8MbT#b&5H#6WM@X<+6k-bCO8~qdMjwD=(C|h7QVkce;bOC?nGNGS0~%Bf>rKLF
z!_FDM2YEl~Ox{F#>;`_0_)hrQZ_R%QKPSAltN1zmci)1a@E~8C3fAb`1thEAFpHG4
z9#y-qVU-&5)!b{uX<0c&)49|(VNd9_9w-Pgx#A}Gcn!Ft*nBGc@H4Nr{`%5JMp{3$
z{jH~G-gx1$`8ZmWyTqTrY2B(;3Fq@yg5N**I1f!wGfh^JbHXF|lkY75xl$_NJH}_g
zPZha00i7GiT*0uvDl^=7`{|euB5uPp?O_zrVM?~Z>=F)eAvhQzZ!-BPU1?02C?lk3
z=!ql129Ghc=zScdAfuaP^lHYe*5apm*jzMl)q~>z67?PSEIy9?q9GtrL?hQZ{QS7%
z8yK`3p`|w^5kfPQz1J_Ag#>c3JaRoe24M5#PYV<_uf#7B5ClNf8AQM<g8*z$NqP>8
zmqO?3YQ?ZX6eSW0(vSAh;2=mKu;51zm2uD_6FoR%&f67eo!4i8nOYL#ImQ0m!M++c
z0BfVzmHhG4Zc-!SU_|evR4Yzd66hr^=pZFGP{N)+92-M4G70+A6$*6G&4r3wC|ygX
z<A>5QTb&;fTpp5o@kKFPxoB6sw@&s`^go)Q#|zleB13HDC=pM*1d2$B9TH>%qKKVi
zsRo?xa$4^e{hz*lu*Mc8U!@eA`VFEPAzyWX#)N!H3S!bDMu@*F2{<KTguj+Dh;g@i
zfm^5R<pno<$vIJ2QB_s&RuEpO<$HDT#4ze|eZ~V~fuY^2V;^uVgJba$@}lnShgMY{
z0L)Tm;ByJtY=wUD^JTSufvo9$Z4|5Ei=)3(@@12LsUqkKceUirYD)4*Q->x{K4hyB
z3SPDxAs=<DS-*&AYJDmfe<NQ(y*oqi0x=(Q75#A2?tTP*CR|P(I10a)D*TFk0l&m2
z@hd4HnuT|TUm2X>_h42D$MD<CI^yPlmGYg}ae#w^VbwVNf;VDV6#UMSdK$k<M0bu~
z7mI@5HmMDfjmM(k*TtgXcZ)72_*Gb=`qTJzO|CY<z%uYXjQFl0zV${r&ilv?E%2|x
z8z-x{4&Yw}<!OA?FCrQ>{?`)!Ywra9n_T>-=XdCX?;=k(pd0v8(mo(ame+7po*ERr
z$tbi}bxb?S6QxOLqt*YwH`@(k-ng8u13UboafMyY9j#{RtK$nAvy6Gi_c6n_bTu1x
zbie+sh?i}P2Kas?N}ZjeWdg<T)e<#~6u(zXlvuBOeQg|t7%+Ts^b06{ua>A`F^Y4U
zJSI^nA&iHR3B~cx%E-^esk<I$!ow@>dgj38XN4}@3qL&694K8qzQ<X{yzbq~!To`T
zuex9VW;@iJ3K;q}sdO&?z~T9(OH|T)2RP$0mot=uno2$&Q1l{WkzN92C;243n)w~{
zqLgM#FMlGvyx&zqV^k4(wGk#zMd;;H1ri#g3MBMiiMC=fp_h`-IC|||LJ<zj5eK!p
z32IE7IdD~bkHN;g;axz#w+4rX=YxI=1EpV$XYRp0%EMQIeqWP*CA%x-&Xn~+&q*rT
zG!^tbB^^D*-d{v?C(Ji#GplGP`2c-G{{>It73Di`_epS1pqvVotA?q={zl`MM6b;w
z)Gd*Z1=TQjY{KdFrgC^eQ2I4)#e7T+jHbUxQ3h5BX~LcZuFeOU;E}%cYu6)1H9uU>
zd^>OJkL192A<ju($<|QI1Qc3dHf-%a{tRXDWDr!JF+=cDGYmo4bMc9ELtJ|+u9ZH+
zX1g=pr)WXj=jpTBrgPi^)U=ki-|fz1fFalxoR9mAI5#agzkoj1`RY@l!3|S@{3(gZ
zhe*ZbN$@{j;U6Q5pYLI=y~S%ZdiXKyx#lCzC4r3Q>xc}l-z^!O>jikW=if&jlSK?J
zBL>5sZHLfP>xQQbJ%w2VmknGc_<ew10c;U5QH-yzkJR|RPMQ=N%V*;E9<+%A^~CRG
z#4r3b;+F?eiCn-+Z$l%uDh|2T{}kkwo<QV^Qj>zQ39y<&D$G6=Jq5pJp2F<CHCJ(t
z*ggyZ9*coE&G-;0R$le+Z!{8~8Rc>Wx`5|HMin05Y!{wSJ`v-5@Lc<jfjjUUoZ-A*
z5ghVcWD}?%6)fP;Ie(MT>4nMYWJHus3G}(~M92pE=;Tid1N(u@?!Fx>Oq<vPEYKoR
zXYxig+CG;WG@(6X;yGAD?BrjgK6DOtsWAA2HXF9|GMctwF1Mga=qFBGkcAl%YX?9B
z*CUHIP{NN@@&1DNm|X4!b7Cki$RNd*Vq?-=P8HF4v{5+eeHVP)9|WYwiD6+~2Y4<P
z2vT)7UFm-jF(`Xw6d37@mswJaIzsoWr#%f@vW?r0P3{_+ceYev-=rl3Kv)S4sJ^2O
zc#PXVrg$X6?l#cSnxh85M$iv%-uw+m6KyCC>A=}^U$gW?WNC{<zLr6(&|jj1h^tym
zbk`~oU{@##ko2B08t7aHB$Js9=fJShby8ery7%gZ7M^3a{U~?5<}FZ0@kWfaBk2l4
zAq#2gt0HW^b5Cpqv@AGk8)+%y;;8`{RE(f5HzanV2LxmafZzlmLIaq{MbUc2nIpo>
z0f_~GVsYmeleNj!k&TcfHT7FS#*1WOrs^E_w#e&2D(R(?JPXo06Ni?Sx6(=8ZUmR7
zkYCUkOHrI&L3^Z`4$cihg8#8=?STeq+Z&#;y`KO+kZ%;&4)ayOL=NTM7y=)7M776H
z4U6(yokQ5lv+h`v^vjLELVNy1TVlrA^OHywQEsSI+#m`=@u~}b0*S;6kf?i^iMT6)
z&Tl6HmbwJ}_AULR+3&Ic{ZsV+%TDwTdydM}mabuhYd6Aq-3q!uD01z*#|{-!$17KW
zcP>w1af^DQD5lJ{o$@*Z=O{b%t}|mIhTbG(NF0A^djYjBEN{8uCS5>eqW0n}Hkis@
z%%qM>;h)KkC^G+cb#fJEIZzQX-2*O)>1GIUOgCewsjJR{uxa*iPgZCpI7fd;TUDkk
zO3%cUsq{)`n2n~YDr%!zbs4We>(bOgd96FZOM3Rz^yZkus7xKH;~omtG2KyjjzslS
z`-%>PP|(YziWEBs=W(@E$6^6J$u|80nCbRJ3Fqf~3DIY^+s?E`D4%npu7mIce3#Or
zmH&e^C{Mw`U@+Ppy<C;(58QZm62Fd{t*<(I^%t677yG;981uoKBd`h^&bw>?TNh`I
zYqT*Q>H=umXC?Aua{C9n?cWgBes)~@+kTv;{rel(zA;~x)C5nkDwx;h$lUvd@jo->
zA3t<N>EbaPu|4(0)T6RYyWmSC(IT&o$9eeU*BJAEI-+#Rm<_aAMXfaRbZ@YP8huKw
z->_bw*SD9DI%(FodEbUw^<qk*G8Ntk>#!pzRrVzww0Id_lyV+eu@y4|8d9tkLp4U1
zi5ET&vFGI=s83$T5<@=LLEUbc&2CgSZsgD_YshA=D!Voc1lGl7BHLXzc7nHohkDD>
zX0kppCT3xW4m@HK9>2RDTiAo@OQ=s@1WzSc4-1F5l}27Q!{W5VA$IaUS6g%y_<X8-
z7S8GJb8>dLU+mCG{RQkktxBFn>}OWW^DwAII2=XvNt~lt4SYR-TX>k09Cf8)(+a2`
zXdFn7_>Dd7g7XigZoLJUZW&ES@(vN}92CF=qo726!G&8!(^fjf);XwW7MXU1H^{q*
ztP8xzE3)(UQzbDKF`Ax5$)I%xZv5KP2QAwbn8@5x%r8@=jSC<QW{F*}mS4lSl(6-y
zRO^sf({C3vt1o_jIYE7aK%3yxKdUb$zvQYf$TlnNg30Pj1;4yWkJUPdL#?z6u2)|w
z`Q<V7r4nDN0oh25q6(vc<~XO?&NEfXD#H33l*A~iOgmIZKCmllP0Qw^o#$2MYFX|?
zY4L(ulnb$(WlLg*rm<+j7lj<;GkjtHUkIUWz8dpFWU!DeY-Wc<bKBEqBQI#z%|c>Y
zck&HQ@|&Ia7u6O&vFE$dR?uqTE81FsBxLh1UU=DC$mU-&Jm+aio{=ObEpr~z(qe}k
z7O<zaF|qDsVi%mI`r;?T-CM!US7Ux?6Os{@%>-|ssW&D-f-J(=)3(Ul99d$vY_&4;
z1mEnu_j(ITSc1b)YYKPr6_9f#5wc~))DEcyQ(F={q?Svkc?Fa^nb-w)tG4(Fx58Zl
zRH;%_dzM|rqA&ztRC^@L=Z#S1DKBs(<faX;X*Ia=1HNz_S{fd&^WnqLr5|89!Fh{M
zf2NOt`{G`~3o;|;aL%hPn0r>TRz%*Gxob<%YIgpjOI<Emat+<xy3`Ih%DSxvUFsQ?
z#fsHBt4^|{;?H%(Gh$h1>#PG}StseN2yX{caQSrBv$3omI%}$A$$+;1Sq<nal|>-h
zb=C>7imN4SMPv&ugw)MHud`l2mQyqyI&!@nPmi;oum{a*zu;xc3N9ZZZ(u!=%xZ>p
zidDF!iUr8FxH1l!Mt{QTcVx+ywsRMo0BN`$HRf$D-?Ns><ydqVF@j})x{X?fMSoSi
zj*H`91Y3Avl@UG}En$_mdj<C4KYj`ffliIa5yCR+iY;uj8;!O!U$1m>%rH5lwo)y-
zn~WjFYSYMNrd=oe1iwdM(|l;%saSA*FJXVpf>73q`_R;Ec12xXEo~=`-nr}{FyLy_
z`iN)rWR$T1u75-g(76#iG&GK08b|nRQ4~C(OTZ+YzKvVJ=%&wQGznN@F|B8Pvt*ny
zU5!?{)ve^Bc}X3|iT|*7Rmb7*(ay`4AuZ5D!X-KGwG<&{MFvtz&;+}1rZZgfP|1m5
zS>G!NlH;bRrd2h+WO0rW=F;NIWWpMU7a!;kc=_OL&i*%Ar;!Cm;1VFk5s{N9boym+
z9eD~@8YQCCwEO=0@S{Pmf-8`;+i{(S@1VNGJ#WBM%<Gl@j(Zezm^pA+<R!?RbHdFS
zPClLz{5fNyh3fDJib;YZ`U5bUuK9QEyO%zIb9jfc@34JQ`wm1z?R&1vPxMY{wNdS0
zpA*#8pxb00E4H{r;Xqymby*Rnqs6Vx)SCe1P#`_#u_eHJ<As0~?J~#)u%a88S@|ht
zHOFvbYAsarZ$Jij#k6@_qpXLBqb?A*5jtS88E+S4wJ&uF(QW(Ps?Ws!E=$>8Xcn=i
zY#>H0Opf*HK6ImjNm&<3=*l?~7vGsSJSlkkfC@uzU*-I%7Tr#b4K<a&)<ox_VS|Xs
zNRD|VYuCcem(aOrJe%J+d7}<EPF~!7zDtq$rZIJ?Xd-S_RZ2$VIm~F-mTffp<WnU$
z@=c?$x4e{jv5o;+aq$_Xa!&ixXTr6pF189wN6<}(SZiv&wYM3r*kP6~G#XZ;t}$;|
z?vA=`KdHg7UcIsiFwYZwV4hLXGvClc0{(Em_)>+Id3k$g5yQ%0V#h)XIlM~K;wmg#
zArK(cZ^ozyFSU4xVp+}&Qx#<BK-Nmx4DjzKioqgSwZudLU^7M|e7W2cW^xcxpvo+L
z!3e)bGJ-uS<PNkYgAUAP%Vzl00|(ij^~Nz-XL2cghUA_0aScH@^*|-)WG?iJDOult
z$p<cmQq~2wtM5{<VPND4Km=3_1*Fsu;l8;BQ9;%e8Gzw;KKLRTAB{hw`oWS`2oUI-
zuBH(f2n?3a7gfX5v;sL50Kj?wK3c}rk)Mmo5*E=HbAmG_Do=i=E$#H9S_McAL)cUJ
z3daLYJ^CV7Q)5E`Hz;94;okkYp)lqo!1;JrwV8lRus9<AL+-W>y-`_joj}3QWOi(X
zVb9H|=6Eo?_UDB!?Jn*jIgkqib2Sk?^adA?kqgp*Yb67buHtg2?s%i6U=NW6o%+zl
z+h;{9z5r*!xnrp;5Z<nm%{9<Xmm@z>U}O3sJjl0H`42}?l<GH#-vIwX^aK0{NulbS
zWrQKJiiqude9$I<ECKl4&<b~}!;P-cL&5hpHiE)cEbQnPC<k`|6gzBj<l=O377K+v
z1AeQ_DkpWdl$cz{JW9>EL}^0!U1DfNg*_d2xOHSNkBXsJQXOd@$QAbhL0}8ij83M;
zy`*oqU2;8Sr4VRR29giX!lF+_)o7t{LrgJ7h#HiSQ-6aS_=P-?WiLOJP`)7hys#$R
z_td@Nw$Sk0xlTDg&FsWh*tYA61lQ1TsADRNi6`h8nV_->JOKsn$|c&>%kz+4uA7Go
z*5<N@UOuPa`^q9#5Mx`U8_`|*a6YWKP`rK-89~Lix#bc+IWw*YZ~X(z+IfAr61pGI
zjH05EKb~>>uy?4(u;(u?P@YJPu>y%_&XM#I@*bC@;2%uz*-O9$KhQ*Mq=Df{K6Kgs
z+xY&%(fEnkihn7jo#Q8*gWEpGwY^<^jm<{mB`jxqBC8<5cHW0f&|f9{!=9Tw2{-5c
z>{hJagbOMbl8xXeakT`E<ArqHdV)(=2((vIGq3#!f?u!!iJf;bM$JjsYb2lLS;B92
z-U>+yT9|}~?nRwGX$(v7;Vq%GXx{6)25ryprSSfNm2GERy|T`>YO=bTR^KM(T6q(Z
z*m;}4JM2Xy)AC#?H9WVC2k?pu@_sGPSiHvOJ6!aIw0_}r9Ep7}!oY4QGM@gh>-8U+
z_6f&J<<pKpg3b>>awgsSz>bzc=~iyh&+lapGUgvN;>^;uHBYvG6bui+s@Xw-(oZMs
zZ-&Qao7M>t-_cnk%B+KH+wUS*nj>I7&H~-{Zpi~cU46V5BiF><W4>(I$aPiDqZ*kp
z(*x!%_%oWa3-UR>Rbvpd?`cAY$bd1QjaskZT#spMR<DlSOe+#T?Fy7~Zodbdf{6P^
zeRUkD4#2|KGJYL}uaVbf=14;tKH=JCLU+9KACz2y%3xx6gwB2foye?sZm1GDmzBe(
zZH8~_9KzNP6PGye{uN}ag8P`Dh2d-qF3=#~@W_J@73Zo}QO}o+MwJsqcBq+S`dIeE
z?<2?!8>%Qn5MKNdtq9kGA)-(sWKiG{N<`~gy!e?tlG#$AT2UW+;B^!@$R7DOz?K0G
z(3@JHz2{T<3{ofZmw1g4MG?}ysH)Yu=hqm)AYh#Ev+F`GpXQQ0`O(GB*71f~4}E#e
z#>K#0b}Rp8wI+=B#?w>!t7uC0f4l_V-Jb$b;2X|IfLsjUb&H*S08aaC!oq*M(mtBX
zp#4X#OW%GK;0HoS0V>c6m=j{S@QbE5$p?a*3dLPOQzf4YW4(Jd%Eej*=`*vj2Hre+
z6nnp2jV*b6JMSNS5pOkitN%ww?SB8}_t5`QJL}(=_#<k~M4O|Oav6|#UKQ@U9x3yV
zSIPa>d0xBVnXWKM;Y*9S{Pu|CmK7mnrxwMlQKHx`xJQ*JF~h&9h58wT-$W=emy}hZ
zFqG0Q_=?<%ku#DxNUPPCE7g}`<kZTSaG9Sp7V)F~aQ=xHb}i57)3t5*HHCrA&a2ab
z=oj&@oDY97E&h&z^M823Zze>>iEAxckLawy$TH@6MlFQC3Fkfdu~Iulc%E5+3*fVt
zDrt#!<E;A?<n~!8s~9(RmKW}yf-eb~*l+N&_bFaJPV2D@-ru+%W9a}9r#BpgHJ)65
zcxZNLSgybBs~t7(#s=hcdyc9Os{iGul<LQ0Ptl9C{%c+mMR-2IX|F?vun9-OKfwR!
zt`Kn<*~Vn$gPNGGwHOU806?@0=4|;G^JeIOv;U{&X<R26e+x}P$I6zihtgsl35$hO
zeJ$G$9c0Y&om^(U-EVVQzt0B^T;K6(zcqub_Mr88(0Vse+A_Xp!1^rM|K)(SE!h8+
zVCj<U7qwqt%xmQpm(Vjs*3y=BUHdJyT3Xt=Fj?8wZ)x+EZa9hrIR~%}i*j*Pta$-}
zh}=T@K+P7B@X&O{09coCwmvK4{Y;XWehN4G3Rz3;mpqOa#Mf`&+7DfrDyCtbLetms
zU7|SiWi6*+8{$8<?1RjPmTio3TtO6BFPj}}%$BV`GaJ@<<k;3^6&!0%mpg><+Yz{#
z^7P_zP80V<?SbGey+qZ}x(%O-g7(?oa?Z_H?2S2G<5+fqi3rINgxAP*C*CesA@F&O
zOAUOcWrzN!dB^>lMIXt}B!ItVwu8wnU9XT#^?7l#28lJeg(-xFt;M+J>QQhH3ZK0+
z!9{cxpr^6RyMiW9#)&qh8irK}KnA|~9Po&6Cl1CTq$pU859PLrv0^Z{!|`Jr;w*kF
zU1m&v2^qM+E7*UT*&jESzt9pnGzegb=5qTNx#ji%vU|TZ2uRE^CYAyhC<M&rmW9f5
z0`@s5aX7@Ft1<Bad@BnL^K}h`yY~@C?i+|Y*>=+Bcqk87`O6x+`f!ZU?7tdEh|P}G
zX3LhJnf+Fq*(=KJQv&ua@Njp4oX??nu(aKn^rSqjG$uXDmVkZw>Ori*ZbC}mogC*6
z&Gpe)2-yDOfL#q!<1Z{%dn)Dj%n-hm+jFK#MWGEa9AuabF9h`pr=oG0%@p$?2)7JM
z4(1CRZs=s3nr*;jAPAKAhgJppzZA4K20Gpjw0!fkK);u8<WD@DK>y|Hib~X}r6Z*X
z#jXi!8&ja35Rp+=%exN!!LGFzV<CA-aVP@1CLjby$gaUJv6z1^Ulb0&7|z0b8BwVy
zZH5=rNyA*eXxN%vbJSwEM`#2i#2l0l_=mh{c*H`gmaO_k6gV8}n=H7j+qz@S5&|ng
zT5977uWhJnT59Jh@0RU9;U32XmQ%p%jVvvt5C=j<nz4w(G(0HV!?EQ$efMX!1{y`3
zaah*Zuwu<ePmLRzQCz{TVMe7ym|2$HJHJPqWqbXu3>V7y^+Q!u2wM?ZCU69o0!~uo
zJDYuRf(+EdVWA+e;v5QeERllK<@lm$pI*YHj_5jvmQM)5<QrKYg1UluC|zMp>dU1?
z{94VVJU-wIFV6GgH`6=Tnk`>JEEbxGAEs2BI7Lc5C5O2{cnUPOHT{j<$`+7g%j8H!
zFnmEpS!0)A_%eT4V@}Y%%pbHatB8~3e8{p$@ojg5vx(KEgajj)Bk9~|;8i|4ppGM?
z)N$lA-aKi_NEJ|J#{4t0%8YsCT}D`EREEwON(2_OfNbAR*JyELQUs-{pXD4XFMr)C
zYLBA{opV{}jA5}B5cLKM5DX;@kj8w#fVN#AsTp1LK-^GX|NIADiugj<DZJ2_bdup^
z`l&!oHmt_MP)9Uena7fNsFDYKRs>Z<)Kd#+@LCdnBp0o!xoCAY5w}1(nXVz#DjayI
z70Ai{llAV=h5Le!;r%*C8XSfWUc_g?3AloT)#{tzlQfYNV-k^(^inGjoz(gqKTdQ<
zKEV8H7e%7sNoC7AiG;FwqL`evekn!beA+hP#V_NZuFs#G4kMNz5`@v1e_r8;`mYes
za@#LOkQRz}`nf!}vTMN%<N?Rb8@BJL>1N(zc5H9=z-%y<dDX5dHVWP>QY$>DXEx7m
zCpT$rGW(~<KRbMUjv2o2fNZn$jd7D*BgBRGDbqPjjcc>C)tGdQi1=hZ?(@KibCm>x
z^Ptjc+o4{Ba}|nC_3e<GYg`>EW2Q=YhfPCHTzx^+@M^qj&<*n@i0SH_74SZrBZQf3
zW(vTH1VF}+a^gj0rc4Q5ktcIoZm|GL1&(X76oE_-Xlqu^m=R=SX&Uxq{E-7!4SbW0
zvlHtbGOIw(s{j-vky|^sE^r=P*5yV+p1`2Kz-#TXLj?)lx)<AFRQ=j#=(Dsx$~JRZ
zSnP&77;%o`;>a8vCx)?u4n|{?du>59h>@$%76B2(iQj31NKh0a|KiewwQyi_WI7}Q
z_x<9Bi`;Tiw<)sdOMX*+2K)&i2^506#Vt(qByx?Oq;YgYJh2BwKIOGVp7;Vw925Q_
zo^Gv5vQ_fc<C3{qCBszaMJjntC4*JsS4pWPuu{|h7M(qO(8}ozE$HuCq`6+IY~JOV
z)652P+&N9mzn1kB26JGFF_LqdD$Z%DNY)TJg^r;b${;!}!fFj$wa9ICMGii7|CMI{
zSE*g<P%TJ~KUN4P>#%e<z~Wd*@~nGIgRA(y21fMderl-@6w}@?q=Tig%~NZZZZ;;h
zp-m3VRLZ))uvQ&2`@d^;ylb}XfKhxmi0akB>{ravO~#ZzN|hj25xT=~l8t6|_9;98
z(o05%3YBCS@cA(6{~G+#8)jrT@9>9C9cb=YY?dw_-_0z2=lb^cOF8eVrfHnUmhn=-
zmznaSO#$9#Nw+SCx@w;b9{9LG3KP8zi$-FfXR&OHI@|v)#JYNpBvmR|rjqlAfpq1a
zrlWD|H{nKK3E5iaN3Z4rvic3mhCQkT7xN<#U<|oJSd#Idh>GGq<6$fxuJq$az98q7
z^7&R=ZgN&`(B4n^+c%*|5bRuqkLBT^o^n!lIP38j;p{oHF{Ge9jl&Mwvxp7)&Y0$0
zNQF|vNeV>~Hna$p#F%PVnx+@oF;_YWT3XvQIfMP)4TO&`WfK+U{a4F%?`*1ybw;8k
z_f$AY0s|tNQV0`8bIh9-&51G8p;q+J8$?qL_y%Y{eKR(87_d(`P`JgJi5Wc^MX(l@
za49MURSCa2XkQPxKbaighIRwsxk+cT3UqA=kQMB|IM~0{?0C~`+4i$wzg9DQ8}*^U
zQo0@dNym;Iq5;tn;#`7H^PO`iD;8C7>v^PAKa1d_v~ZDCPt4n%{WrtWh68wl>_xjx
z)sqk`tDvm_w1{o6;q`M$JcDH$7Gg^LhHEw&-osS*Gt>T!H)vy}r|C<h@c}epG?ojP
z&uZ`9{lydayxd%I>*x=PISG3XKU@0;lx{WGUD1d8P<pScp&3}ftQG4b^u;iDX#^iW
zD9~O2eu_<9KoyzhxTJ})60(c*eAgws8l{RXY}ksqXeGT^ne@wiG;}r?oS%`&>FBZe
z9IEU}sD!$(Do&qI#2Fe1(q+Rbx&|pQsD-C~5oHPztK($Co~L`p<_5+1CTf>jQxG9@
zgEtD*2AsPa4!gu4pC_fXnwO9p^ZAa7Y7qF5QP`L^>HK<(6HBkSC?{dw0d)pGlp@(H
zl)B%*$VrSwG6lzz)#^z9rKxx}T;>VjCv}Y5Mxq`LhZ>Wvz(X*6&bD%Ed7xuW0IMSb
ztd0b-x6%MK{ae6Mj2H|DFp0=6dz#{0_6+|D?;pSx!0<5p2|Q1^*qj6K!Z%ekb_-&)
zudETOqRbz($}j~v9qQ&V00UodF-l?T(94JOtAl))JDgWJC{#9-MyF*9eiiJp(0MWs
zPzduEQyr)SK!5=R0EftK34hX~hzdwbl*IY>kgk+|eQbigV@2ez^Z`H*at5bJ)O?XX
z)Ujbt<0CQmH;(F>{mHP-x&t)T#h3}7lf^wm0obQds6SaBe?JfE5fp~@B8BmJ1xJF;
z*(p&!#V>B7CO2-gm~@Y1H0lN_Aw=$y2P97Wao{xS8r2uP6u4iFs!23Wy&+RelPxJf
zvW<Bu{K!qrrym(zdXP0J4JXE1=sZq`4&a*ve<{mDzWvmK&GI7l-#xGc!jQd{cB&zP
z=K5wyG0xNC7N#f+L7;}~QN+c$;a>ZehcDd6L%QZVUlTnTlad(-wyWXhs$qt2^_Zpa
z8j~*9<#Hvh_L}{_qJ!^FqrZ~nKf00qp$uj5M_h3ChZSVwQty|GOANUaaD}<>qA-k!
zEM(M$#)Pu107xK#h6bdN5r=C|0$8sblbU77E)C&IVwo0;wR%|+S43rFxlO<V>cx<b
zBSqcI6Es-TiULbdCGi4JM*E;Ni--utJdtX(O}f<72jrw|#7D;$(3NO3Z9%3}%{a>D
zt@vVfM21S*5}AY4x%gpmP==^vfl3}%$s;OxKqdF8<Svy=QOP7pAVu%oAN5$zc*^xy
zBlD#3t5n&`RC1w8$}a#&xnQ)E{_BmGrdW?x>%cTJrOPMumbcR7_~{{wq~XeagZx-C
z=HbFn_}MTp6xQ+S4HmV(;;j9%fb;74SU0*O&fgM$`6HHY*ib=#*`&X0vTmj7lO51c
z!7mnv=dvKy!S;D73+fTu11r}df7})zVa)@s9}I>TxpfvF;QGOkED$p43<JaxHi{nL
zt=Ol)!MzpX#v*44&TTK8?jR_rEXNZDqqJ;h4$ikdAAL+$K}FL*K=E6M1iWEU1*X*S
z!<@0VV60fKT-^R(?31(dJmCK8P7dgB)4h*F@R3daNp+@-HWx8lCKOlrS>nQS5&np<
z9@R$Nf<1TmAJdemFzxC>S$B>J#tUY+J3_T68FZBR2V$Xpd}SvEZAI)AEo(0gH@te`
z#E-=VX!O~HIPZ+_D|4G#Dt5Ful7_UJ<Hl(~Tw$d*phoU2$9eKWVUovG@^A$(^`2m=
z6MlZD_yycI3Xp(bz-B_EI9-9kmcBlAl-d6?Y6Djlyo?baN09xvxZ>6TnH3`zk`j}G
z2`C8XARG{J+e87D;)QfLk&PM^dN5!gcHMxV<i^yx{U6R34+#993<2N)Ai@=|&ipQO
zsfG>E(4){W;1{d|%jbdnZ!)>!GSu!n$@vLn=yVM5dM~23aOq%~X)Zb4i@}5NqQ+oG
z;J(vm$Z|>;+Kr)rjDicc+Q6T5-iQcFwcGarV<{IwSdMy6pU+$W6J=e&0Ev};%rTtl
zjv)d6H=YOHM1`aD_8G*AKkB~vBY+#e38WC4b_RxW14c5Y2jIp?&jJ6SMg#V*oS!R*
zurleKPmn%vo;erEJ?Ze(UCBcydY6FJ!G2tA<h4{SM2oP21^4rIEe|p<K`)A*hc}Q}
z$lrgh(p1?De@8XlT0T5`{9nUHUp6L5z&K<dw^Me*1(h&tpPKzQYmW>!iSkC!(q*@v
zLE9?rk%#h~w<aj|VWVhGKwLidWYLyDG*Cgih^LAe3*kqa+7~bnM8*fwH1^T?-JgWD
z?o`R-a!}`um=Z~(&sCjthZ`go_VhnrMTjal4_>=q4B&8q7F`1-7(?fqfKr@A{7}pf
zRZ6C#;_U1L2--s~!D9V~;WQKVGJjrs06M^tF_O>15iF)*l^XM~>WKGKaoYYZ1isPC
z&c?ej?>rO!T~lx5weRbe3i3AUJL>3Qh3}CBUe7Fo&uRDXd$NAL%6C^HdYCqSe=!DR
z$Z)|W=hE3kNZNC`@h+v7dYK&Q$|NReP)GzhRbufuNdhvw;=lh|@27+Wfoh%v=W^ou
z0uJCnV;*AqF&2N__5;T3UAL{yXf${$8J6^ni3?B$PhE_OkFoUpo3lr>EWtrzPP6V(
z-!P-H<=fdgBU)N=IpZK|u(f>p$!Fp><$EF|>g<wW`23O)gGyg9np*ZllOUYm#2TWB
zMyKwB_4Uv&-zg|<G`4b=*T(Puo-M+FKU|y)dj^*)=i7O#o5F{PiI?QoW#EI!5Qz^A
z-j69Dme$2gLg<~d=*)nVz5IwtE~d?=a_bh=2(KAd@q}<)#a*+yqm_h{vXl!dGN-%N
zT?zu6|5^{z3NBd1Jy1P-)4JWIaGl^iu33WY^j^o%1fe6K<4i#|fnR`nBuG+8?$prU
zWOY9E#-u*vzW&%L!Jhmkv*R7JWjhwXJ~hL*(Ww5bEI;x2JQgB={-E!avbwDWM&oQQ
zOaQ<szsCcYb2#3>lG}<fE8#yWHR)6E51x7%jXroQlGpS&=PeCibupTLiYEZMZ#Jhh
z?}4>(pU}Q_V3DStL>}aUSc7KGyY)S4)>?1C{_RNi6aF0&P9$GO2`CkBz`9Mo*a87!
z36Mcp_(QM8lzG5z5R8uqf!uwZO&o97W8JT*--f+&QV}}ApW6ow+Ie~C5MI_5i0U|g
z4mCzDo@$%nTE=Km1Q6`L>(>#qr#W|niTaUg-KM5-*snnrr!dV-G4B`Q$Gv@cZFPn*
zt`a`^5&*L5?+DC32N|ZdrG17zM|Fz4ze@{IjK|1futaqbnx;zB4_)Xx1r@t}qAyT9
zBz^?EK*r8H2XGNV`?L3O-pG;eC_Y<42N~xQ^NLV}Omd1bZxupf*L;R68?x5|&m!WB
z6=tCtT{=L6oX|oP;JOU9YTYR)C}?XV3Z4-ZfMpw`VuPT;<vN_Z=ubjEDMf3&rY*;Z
z%<vPW8ZeD@xe6~15AoHsb!Bz>4brnSRBC+f`x~+G#8(y`+n;u}Rs(G}i#H~R!XkLb
z=g0ubBH}N&8i-#d*;^v(ptNH=@}gF7!hwK@3IkRQ;^_`vfV1<~zZ)C;vM~mbqUhfe
z*+DB{N!PztUAH@N$g~TJHuJD@-~LDf)^8Oqr=z)mW~WtSjDYn!HW##Bm0z!y<?_|e
zq0-!nb|(h!!AbA}RC-8Jcr~$(i-UI+qTwxD!|Q5@$Pj@W>+(yTc?g=sDUSBGSVvFD
z?UHJlnz!MlMa=Sd;t_+6T*O2>`cU>p1VQD}(bD!d*K(AVd|Go&tk=^r?e)TM?X^1A
z>l+AR#4y|2ppUZ0+@aOam{1^m`!uMd#_WK7`%F9p2HY;O&P~g1jf3eg`DE1$Fwy+>
zw_)NfYJbHlXGCGrO`EVi&iK{J(14!w&>`53B4*)&!xup!vGvtd3>#?714PP=Fkx&E
zGnMOfNdhwsXY`2!Gc{+#ot?ZF@sYwAE(TmiYkwJP{s0&*XaNRz%mMqBmEhD9w(rl*
z$3e(oz&_h=+EyVY9mk<g4TNtawmD8Nxrxhypc!}{&XJ3FKt`K6my@+li98Iy)#Z@k
z&Ov&s+Z9;4a*8>XZG!O>3F~|8TcpM=E9}2AAaV`H*4t?M1mubv+n9lN-dk^q+=eg^
zXtO@BK74dxhx}qM@Jskn&M(-`M=sp^IKQCllE6i2$a6D#h-%rCf_pdpG;XLZb-uY)
zlZQ6fHP4Z2w~&jpZvu4F93J4TgR2w|fr~l2pc}gc+Uuy%!?$?3{xqBF$eu_&9Sl!l
zf*H<vI9d+v{YSo<)|4V7cEPf>1o%0s7ZibIoTxO-&egedIzXpo#Ba7XJ15{Jh=nX`
zwew>=r2B|eLez-B9kue;m}B?7OnT$wOTlQmFbb$J%{Qr8n1IZ9DcI0l=K~l^ntqWh
zAl~Jb+hhoR_mW2Ac;$9A1Z<heNU<czw3BhyG`I<YmK2c{&S*RZVd_Dc;VSwPOJuV!
z1YL57Dj7M98^Vac|2OOcVs;wU0te?va5+c9{JuU*Iq)$L)!DpVp9mwji_cfoxJvJ$
z6SnXjUL-jB32T6M?ob0edJSpwl+fnQF-H*vBTcJbjSe>*vt}CCManw&UIQw<rfvgc
zFgM-KTzKY_R8#D%{YipZP1tKq5pJq3yP$Lfh9^$%)hB!?{wgAzYI@?J#%O-AJyl2|
zU1_BORyD^}8~Fl8scu_AjmKZIdCa~e>UU)28@Cm4ciwW{x<2&s5q7o!h~+<7qfn6p
zu=S%3Vo<)`>q4n!lsE?eo8d-TWTq|Cnp4lS>;thQiFwIa9wYoXOUf9yLm<F^MI#Jh
zVs~tq`pn2z4I4N|MYN;eUpz;53#twMh{^*_a9(mt^vZlOpqlT(zY}8RM3q(38>CYl
z17_x3Zoir`^fYI0vV`Fx=>X?*nNP^>@gSe6Q8Zid;HhkKS5fgvSj;&>pEuOH6t0+*
z#c=1SI&;2>JHAyUdG5(?N)_jjz=Q14a%fpj&gM-**J9GOi1b>4Z2r^0ti~f3`<YF=
z$~%zPhWA}2(na(uKqR*@GB}CEMoFX+MWpBO^Yku}lnjtaGxg!qPKG3jNNxYxEh1ey
zB9TZ8dYcBgMqm;0RF`6BIj3XxX3QVtJ9Pv&=cgJ;wHycF4=MN$3A>aF`hH4*%XO~(
zEP=y-P}U(r>zD#3>`N(<u;=Z`ssZPCT}>-Q6qhbgeVXcOa7o<ZmQpqW+Nh>og2V7B
zg7d-I|I^L{&q7Q5r^k{jaJgF%jcOkXjpidi1;K|xhwLxg&T&%dE^;`->6c(|?1O_f
zk&@u-gb1r(e%SNU(=mdxh~oB#KTp7!olYt@zPeikA32-^e<miCfOEEVu1xV+&c)mt
zhe$XIK`w?i;T1qHb0}--D@!rkC!f?V{VpTxB={mk7Q17^RYVey#fFKjkqTL}WJ^V<
zFcwkBx_NVE$Xd8+w~%$pFFGL$++Ri3#__Czm+x`ypsZJe@tpP!WlM^vSG=@#uqtWn
zU}e+}9wERb*g<rXu^p^(re6gxVF$5DZE<@n!46gtj7r$SaJ^U4+1ZSr*0Mc+TM489
z&|Eo@9OZ+MTHk4j9J7Je&vg=(I!B`$Qi|--{tmmM?^fX)fn^nN#&dV*rHld{As|Z`
zXMl`$-s$KHE-BoHyf06u>_UFDp^N$k;evbrPJz(gfkEh^-T^$fj1c04t|ZCSnud+8
zoUzE@n#Pn<4=@@JZr`!vR5;Jili4%`?pkL*e2WdLB1Z-lnWhKj?;W>3LzQFaUAH1S
zs4I_8JE$d(#SQ9YRN0L|Jy8`K)R)I$Q1>H42IbO&hC@+fhPeESN)X0y-jOl{+=?+?
z@8Jtw4wE4~@=A0Fhp$zOGb!lOHGT+VQDrxVu<44}5EiV#lE=HqP(uJCfqkx6w;zZP
zhQjl4KOxpBQKk4<A7fwVu-j$b{jZiJ531x3D%tBqEU{!qu+I})|Car`o5=17_lHq1
zDzO;bbS6K6^(z+F9}hxjhw4uddf&k}UQwcWyFk1waUi1hBp--#&gaUbE!!1Xn&<je
zCD#wvlC8p?&)4cDv3(2Tm<FC9n5N`qwInuEism&|xJzR1&Ly9iey(p;8uOMx!@T$|
z7sFQC1v#iBOJb|WT!1pBfDW&E1%?4=!v%*a3a!Sw-S=NF35DA5f+@#AkQ_d8C{;x2
zNbYC&u?2)5ml%o=O5VjJ^R;rkaIWwtB|VWLpi-&iZHZha>s7&|7ET>*G(N$#niw*>
zL>@ziGx~Ut<yUxecPBcXH!~(aKolh0=OV_Kejiaw<_&R#RJdM}#JTo<b&4HtU=D1k
zz%3!d*UzB%fp?s1z$j2>rzqk;C`fX@tU<gZ5ist=l8uUgSuxG&b*F;?jDjcFfSX;W
zIb9RporjLYNc=!RC;mE>l9uv*N)XW!&tVy+6mUOlv-~KE9xBiSe@F^5DNN$WtT%BX
z7a0#b23cLQjPL>u*AC^fW!z}SgbVN?WDi_MMP6;zFD&O?8G=3RnOmgzoJ~v^+*XMP
zqj4f%5%+=NaRUu>$L0~^62qRMhbwia*Ep~v<8*@wC6bCT|EVI{#3?Q@8Dm9y+jn?H
zG=^rI);;oA|CNKB30~9qdn?Z2VQ9B{7RU%eg4)<HQ;ZxS%y>wHfUW=>1s?qXR?I=1
zo8kEhFwBF?E1L&3hvJN8k!c|yWd#A03dQP7MdT7PX4uoxl-w#AiG1St;#>8yRZjMB
z;dWx2{*I+)2Rh(hTfY`FTqaCSL_|I#hg&Nm9}B0uW|l<(3tWQ8mHd!QXaKgf&h?5t
zr_G>*lS^NnE_y6D5RCOO*iwr~C;obobZkhBU&dS%H@a;BV=(AWPQZd)NFX?hby-Nm
z2V<*O!hYvuN&bR-B*AbU-&DY9={94M=pQ~@A>1;Kv_Md*8Sc8DX~E6HurOgJvSp%q
zhuD4*O++I@rKmoIg!Sye_FTRUnyq=vKvu;hzh3nYSD#S9v73fed)v}E#Gwk}fQVs<
z>R>Hr`K8cD%gGCV;BIog#vLF79Gs*|Yy^hqbw+;?0fB0`A;{xvs9sHi_@jux{<0ZF
zc4efOOyfZ+ZaD=ixbuv$aT4vWE8!)dFCl?-7<XXZb3ABY`*Ovsh)$jmk<EVDwA2&l
zC3=i9FifFl@jW^~=NAn^?_tM)-o0Zgu@k-N@g~|Ug-Sa_1VbMvoX-@*h81<W@%jhp
z96{a;g|%xjsvCiSca4B}!*CEUClQxk4hLhRQowL3qQhCNha)6vU|04D_7afv%P|AY
zB@OJ9{}wlp`Gk)v*>n~8V<gAw7n7o>VJ*gC=5H>cJ=xSQzk^cA%38ly#fm%TPk@un
z3MVmqga^65H*_v%BWZqb2-A-RY!?4CV>RQEE)nUGU_U@_*pF>*LrlREU?z7_N3#{o
z0?bK1tA`8bPNX^E(%gZKG$%&WC73U<-8s^}UVwna&B8m*bR5f_ORV|H=l)=fj<_96
z<g=JbhC%QOV&4#_vPH=#*3hT?l<qU+Ln;HKpq<M=>Q_*V`Oi5JQmi-O>`=oD5CX?t
zn|2tD2jLMvjY6TQ8U!0Rm`jS>tS1}N=1Dw}bEe)PhCXHMIGHzP4QNOlfN&zt@W8+k
zRc3ftKDL&@I!^T(g(~nn7z%;|PMi2NKsDy6%alXd+E<Kk%)hi`1UwDTGuZ$L0ZyoZ
zaHH+mX1@&;tanDVwC9Gdz)C5jwee*ew%xD97k_9hmIU1pZtT3DNmPI<N8<Q90?czm
zm*+^tAzEzMj{W#Uq!NDL24$*nAnDf8=nbK^4Dv<n?^eYAehv_DF^Ms$ov<`4-WISB
zcciwH8$R>|vln9r8K{yy`5{1SFkH`D@)5oZz;cZ#$01LhFC;dpFcI-h+cf3pU}vRf
zRIGsxQ32K%m-&h@={M}M|5k=ws$gN9-r!M2kuwC&O?icU0L?;H5}r^BmS(tEw+=?7
z_7$p#c@eLTyYuh79HmGsz^ap&Yl;Z7Kc>kJIhVMAWn;Vq-{k8^UJ(F_gBw;F6MqU5
z6!{xj0$C>6k75-Kb_H)P#rrg80~~IyGuQE}d$)@9LZm<RYrt9)c>!X~80d2FOSzp@
zjt$peNVqFyiRK0R8@g3p{xbFP=pB8uxZF+pBdzGpLAWLb2tm8xt5ru~L%`FHq&<u!
z?#Q8Z_8=FPSb`V#$etq3Qn=ua_vtBs1`7A2Y}b!dcpYP~@(SZYw@Zm3yy7ynJVk;e
za4Q7baQzXei2GXFp<gE|k8Fx`87>$w-t8;8L@+aws;{FU#UKl`u`Bvw!J{3!x+l_A
z^<Eg)d;9aQ$e-G)rauFbNxe9QIL$dOl!9;=oiLm8(6frM@(BX>^=ht!5*#uc-b(56
zF=O<8-ZT>3())S8{Vc8u^hyHT=;dyhMa4ExPD<4~1{fIv#+l~amFhcsf(LN+tFcMp
zAzmU={JFP*!+o8+abi{XQpt{6<SnF<dX?O)k{eVqN+tjL5lqfBNXKw9A>MO6N0=D@
z3JX(*T>jGt6%T=okzii@#EkReU5cggmM}dTgg7E$H)r{HnVyUi)}o|S7x5Qvp%|%+
zS&vWEd;(sz6Xtc+$*!3@;UvO~D5rG*jB={{7G?LQIfEt=;iDkR4G4ps<{Y2!?)>XW
zj6VygkBuMpcC`u?`;ar+`VF(C;YXF03hUH0fZ>qZnZ`^-wxsQ8GsT{~DrRubEYTzj
zWIwgxtFA_PA{&cdHe3t^3nm)_MdR-NouQ45a9|-qm}>6S=vInIDWK?rJXFvuHd()j
zV7j-JxjJhpKLIx@n06}4@a0Kg)1`owjs+QE=iQk24zh8=(#V#;poy=rRLlB&V_uEX
z#ccU7*W7zEzQ9U7DFuT@j=47$nmBji^er0!O234g&@T6-iZO>cnK%{N6*DzK(14kO
zuF_XsluQ#`*fWa+C2z)~q*!mZi_ylVfy-)UC!j<L7yX7*<4h>(-kF;kC5!7efnKDK
zqNM`0{|h(;7f;C2wZ@cNX`XRpK?1gB(<LhX%$Rf^AFOFoI{~ZVUIuM+H`T)qW8$x+
zB%^*|5HOGFZq#k<j@!@BKckA|8Z=I8o&Y)|1j`~`!k!05^+XSdKzJs{T~7(;y&_8<
zA~f_u!v&X*;cNkl9rLhUjL7vi!BjfJ&Fh>T;iN%}QIYz9YtbgX#F0Vd;CsnNA(RhF
zi4?+c(fUriNLl|XQ~&$~bSJHv+qU$A>Jpwqj~I}s9Z7`0)%=vr!DEU0DPUn&<f5eB
zuZvyZpTxGV<XK8$_HiD^xh~fzV3~v~yWEP_ljeNTgFI#TUG@yuf)<d^;GrFhn=JU4
zz#h{@O{Wts7*pr?AZBHVQuqA6SQFydE-^yvg;m?g^)%gK&sQ%|UxQLT;tG85HxxJz
z1?q50t??yLrf%!L>LecMUo)N+xOTaZ^X9+Pj7qQzqbC=Z+kH1b-Dy-JNC~5I<s&uI
zV>0hte$M|#+?&8hRh@s_1QHDjPE=4-XoE%tS8!>;YE4*VMkW%})`%#nBGPKx0EvPk
zCMJQ5!v$2TxU|yNf2G<5l|SH8O#lOEtKf=D1@}9~1+|q$f%p4+&b^bFuxR`K-_M(m
za^~K9*5^Fu+0Qw_s2aX<wgZ23PTQy|L9f)^k|Mmkv0nxmevpx2!~<lw&SmJdHOO#i
zMurnK>``Q>*%FD&kdjujrEArgnl1ZP_omVlLr}fnp{><xRpuyH>0d?%R>Y^$84&M8
zSU5=lV@|nF6X?__ax0tlyVj~VA4@p!@~W2x1!sPXf~)SQ;35hVA$d(%&6a|yV-zdd
zaD|)D)TUr$#p$}dt}m*w8rPWr?;yi>Gcrt4hA~#@L8@;sk;JaPDO-Z<8+SO*4d&ji
zL;gheey+ZC4+k;v&t+t|Or4A<12JgV%KR0eOqrkmAx}w(wJcwEU|xMujevyjXbvd=
z$-P390kPV%O%(_^{@Rya^8v?U393w*m3nz=#;HuYir5s{Zi0=`Ufv&$7e}W?(VC&w
zN?3z9IB$CxQRPRWe)zR7WjP=b^Nd66<i<T@sW3bAwX<H$*S<^4-Zka-XGB5kXZ?*6
zO&prylDA!QrAuCP$v?h>9I$zJ`;Q{iqaun~=Ml=`*T``67xc+M4BZ)@yt$v$AMXw&
zkw@R|5V`Rm{PHGtOsv@$dGJAdJ$D%=!@ndgpg=GJCw8EA_n<nasr1HBO!|G5Q@f|C
zMkW^;2~8=r7$K9DWD1gAequU9o2eKgj4W0>GkxG`mMpfkHf-dFK_hmvg*B3FTnBN)
z&|>y-Z=NNJU!BPuMixh-VotL9VuJJOGmi~ls08DQiug`eaQQS2KP(%-+RQ;#_??Ev
zY}Z&?#bKPLmK1A1qIrZQnp$Kw8myiEW+UtxvKx`3>I1}Q`bm*2j&`!`hI7=_<f*Cu
zH4Dv&kVfk*(!VB1@{i37vf(_Q=lK1Qk|h(CBNJAb$&D4W%D?a|umu&T(J3x-HflIt
zujfzHGVPhUnPUALf#QNk^Jq=VWR18o92_TPBrtHSR|KJend;8m+OM{uT7K!$wm@j9
z4K(o0LjP+c|Jgz=g3l<88+bgth9dQQ5iRP*{_&!4>~(JJVN`pzJr4O7xxd}m{feOs
zoD(b;71gL8-jA7=^hrc@Z^KKcGB~dbo9yiR^kIDe{4w=8b)ZI;u@Z<DI_4<_4Rt+C
zNjr1k9RGi>&1ycQBuDt&KM}&>b$#nj(U+j(Uf1WJlILetNO9))6Lwoix)f9Hrg~^r
z-Z`A7zq|I+1TKvxowM@J@wZIbZP{er*UN3x+mwW)GF{V?Stb37Lm@VILAu-ALGAr@
zW`W2$Q`2aSnJmoE3=N2V;jpSOE$dhyYJ(l`%l`G(kUtRU8alE{g?+^=TLL~K^-l`1
zxe2E&=rdC99E6JX-y|I1&KuhtGJA<(M6{cP!9GS!KA+*J2~Szn<Y(81)MVo?O|!!w
zMWZdnQ6NHh4?V<n!`MtHES}vb*|q;eqVv~sg-`XV(ZnE@_Mkoz4-e-D4`<Vmln05V
zbNs5wZW1`?fMY?UI|h}tuJi911Ol&`<6n^dkyb@l#`?40b&#^A5uJ=hVq%!%ADLZ3
zyI|_O3a5jzW&U|8>*akkAz;>nEmCYM;_k}u^3}=*&Dwt~*$)4Ue3-g;_4V1pVrz*#
z>2v(YuF2{+hjafKpW=HZ^c+iQ*wgpkaXk%Gos5BBmt8(x;^Cmg&SQ&Zmq-S9<HXCU
z6l2Nt|D`RtUzj__RJ5*_E(_M1!8<p*l8g?0cy;E0{N%wP^={Ae?dJF={OBs_f%*rg
zHyPv#nP-g<jXsteviw{cCr{vsXk>etMEvglG{57ierE9GY!QXRaQa$o7+c)1Yg@$9
zYeS6v;m;kD{T{XSZ%XwHR!kqYUXI(ZQ7^nZERhp(nRWI-r>lM$X?RG_3Fjz3*socg
zHHqMLVC2X!7C0r?>6wJF-)y7aByo;W+gxffSMQ_8^3*Sl%mx4xm8-D^odhz+A5-n7
z!WlWzkli`s_p&o4ACv|ZO+MlVvLn*)l066Kp6KL;vwN5Yxl{mvwGWV1*N@XeOZ%>h
zZCV%O2*=Xi&78<1@6vc36EW*1gMF1^ex&CmkPI<C<{NYOe>BXgj;w3lB@Cy_*u^?I
zkfUsH8aKSyK%V3j1?`<1_}bJnqn=&SRNpb#ee<71I22+$Z@e1y7An#FylUX#CXIx<
z^JHa>>d_xn)@Us7QrMY}8E0!NW{N;8;o&Szy0+XX3^#x@58u`6KDyo~v5HMhV<WQ_
zQLh!=C-o9q${hdINm;XyoD-l+^<QkCXR<R*P5WJBac4rntM3$GOzQDRu55=c+)dPO
ziVX{ZPO8Fa6Cn!g{QJ+4OKB6`@$b=3x&H7p-D<DbD02as;~YWs3+Wr-a?=?MHP-V*
zCLYc4d$;R%UbM-0*+3<2#o8m?he*zumbKT~JwM&<`O&Or|Dr2QC_n!|$i{Qoyijbh
z%^qj*D}yz^?e?ETuAHFlB<$@B3gqmWSX1|O4pO$s;1QFu*MUquMKd1Iz`YW<nSA@q
zfL~PWXhYP=wAED@xfAAfh3yDEDe7{5SQq3pFOVI~4J&DPa5ikqDlZfD0e{2I=Bfs4
zlvRaaRBhOu{z^6e&(t??jKz;JB{fAeokaGEK?8Lco}$@QnD1smH}6<>HOai|AG4|Z
zg%Wx|H?ng0@9ht`=YtRJ;QNId-&Oocv6|df{7LH#4jeYBjQEqwszaihVul6u88$F#
zNvjG~5Z1;G_PS=B5_(x|Tz-y!Yo$Z0J}~%xcn94o>EIvxde$ldM$n?0R65!9(?6P~
zs2W+R2cjwJXUmOJObFFj(>lkWdK!%OW8~kg>iw4rfQRk_ZwHSf#7?r~rDT#aU^0m^
zcsrShPM~4EIn4osr%ais>yN7h3@O=fjB~)42Jva_Y=u@|;R=BgQ2?TQ49m^=({Lu4
z0v)U2Fi|Vn**x~+F}f8-fklh^AZ2u)5ZE{V^l6(7p$QW~RM*<RvOsW|oG-oYFIquh
z4qbG6)WHoGz2O%GYk-J{V1H~FWVBZ>uEOkb<xQIuPI7KAt~0HA=_|tJXRps3nwnq4
z_i#uH+;5XbS2IOc<SW~ElSXgmmkvriJb*!{2B*WN#lz}J68=J2k+a)07@DpFs>!^6
z-e)2icS~u>tt>928G*4MYbjWLOiRTazvveZ-HJiCsOf_JAfo3CaBQlq^%=G}M^W?c
zNxf)2WwZ9k^}<ALsHhdu?c*1cJ9W8HW;$>SLsGNBI&B+BOnq8i&Eya2m-?P9Z<T)g
z`;<PK$2tD(h#{gGL1&!$IKXcrhg#|v1g9<3b7F1kOz<{P3(DvCquLcV`wkw{Ieu~0
z7xdq(XRzqRi$kMOUhX6(w&we%O%Q?R>;7$DUzUajis$=1?W_N*u5`W$YgF6%!GE&Q
z`A>||)_%0c0QV<nTE%~|O3!G18%XsR_1tmQ3?=H_ut6f?Mu~_U{ikdiehxU@4uQ61
z*TYuO71ud5<0*65<*ly_(ev`l+_GCQ^n{lcx(0#!&aGY0t~H@+W4s78q|v&ZoYSP<
z!WD{*Rt4x>|0ZuEOQHkDfl-BIE>K%Us3;*b=w@+|(Q+y~0vgzZ4|SjA@HBv8qf`t|
z);M34<36%vp2KzprBFq=s;D5(QkQ3e%d=1kpT~<DR4UJ8@-(_UHI|f5mJ`%|qZ8XF
zL<_4txT2JxgNpQtP2`!ca^z7PjIf*?f`f(5g%ZLy=wmQlQBMI!ZIg8l6jt}+&hgj$
zOlTZTbnObwKXHDIYe}i?m}p)~zi1^0^Z*w$Fzu5TUNi;2TN|T!|K|5M=d_T_Iez&r
z+V#KK2MoOg0WCw>-dVorCMvrteH$JQZ)!t4Mhw0GWU@m%p0W^c+%H1J`>4Vp-o1tl
zQ~@lF;3=je#GI8Had0&&0_jEkc2iShSOD{!US;KBVu;c7Bx<Wqzd#I{_E-FK8?ZJ9
zsS#~)C?U%n|LmVSViIV|9JO&-pu*PRcNaY|6;^w$h=2cGT7~`i{ZNJNQR`MaH4;@b
z$KO1@U5(4g>K{%>C@L)5AubK-FU+jJuhn1LR{!WVVf{;Mvg@DMzW)AX^_QI#)c@14
z{w6=8|0i4hAOAMp|CRp=>o0Ft|A6-O-%VEkQmcQCe`wZMfB0yVPZ#BbKF{rhJ{j^U
z^lqu6cSq(kowXmW(yS)_WOy8f-ZkkN3Z`|y4A&@u4@6iJnr2yKrdSMhbUac3*WdO3
zvb77RHx}ruT(9bfoIT8?clB2KTC~C)Rh^@?J9h9q?Nz{j?oR@+|M7ziu=L_{GVkU2
z29`6(_Jf-oSXf}|_@+PJo_d3(AXwPJ>1<lMP5NBBLPOD2b=$dm$sb6FX6uvDTDT4<
zJo`MkeuL|I8BX3KosgMC%!W|lpB$`hI1A0qFH~jxD9{go*)z`XSSSRplt|J;^k%*?
z!7N!)7DN}^>YkhgO?#|H9|=J+P12upk+KTs>A8KPk^)sCG9q2hf%;A(!O4d@*cy6t
zvpy0U+|Zb(T)pl%P_pu=zq90wTa`d77b=&9e}eQ;#ES9i=Va`XeMiXSCwuz)p{zyw
znnK<CGi01j^6<KLvaMg_IyB4`S={xRix2M5m@jow*>zP4T~az(X|nqX_n0O-Ub^cB
z^S|oe7KJz`M)uJUI-x6B_Hy|OmG2MA$5`j9Ca!cDx6;l8%|T@dl-b11q9)1iYks5J
zA8F)41uqH;8n6;K>$RGIwA{QP_ziKnS%64(pX<ub=Rsw=TG=o_uU4;_?MS#=?Wp$x
z$S~%0qqE0c+eBtJ>{{WK8~G`&e)UE5|6X!;qSm_R-CV<48NAWPUyt0=v87ga9UGsU
z;8CE@L;y9YBARffjKm!S$dc^!&tKb+`|v=~hC!}cJw_9VaL*>4G6B-aMgjWd3w;DG
zyyq1^67ptv&;9*YJDlyItTrKq;a+F1_l7<WuSj<NskM1snS|Aq9o5oc;P|+4(*8}Y
z=f!p`D;>D(`sfJm92**0a>Tfjf&Z%hkdt#R>oKmR_UlfaChc3Ayr@q}<k5FJPJBL|
z99$7k4lj=<&nqkSF3jOr-W$#+^-6Ns+Fd?waN?A+bwLZ=snAi6-d_z=&eOq#Q-g>A
zt1VC<Sl5XpL%H{?&eq#FP+OOgO+DW&P&;kWg8FQSzfRUH^uHSnmys$S4dfV*G2Dt|
z_i1-SSDvpv!G;LB32>1ms+m1fLZVn=b&Q=9EK*zH6{$fc@4Aovr^i7_xM3osiTQTX
z6>zJcsu@ah?R#<(?OxYM#DGcCDR6YWFq-HB4Uqgf`X<ML>6i<dtA<Xv<rN$*->K6?
zwmx(p%<%C_9A`<d<CP@t*eqxzZWazEyFYlB;mStdF{WccKm8OwtRpo6J0Otl2%~?r
z#zCkX_Yx*TLqLH#1ZT}HqOh=O=G7v+ijNQpv||V%l9WKE@{io%5UZaa%T<&i2Qf@u
z_iHW^X&1h}6_R!!3c3x;Pv&jC(`Y;46wVANvvW3aFAp5G8`P2A5%-|9f6=jw<q075
z==}m%*9S;a6QK2e313nt!vg*9>(^sQ`~LCzHA-G+$}gmT|1iDTXa-Ct&iS47=6AuH
z`O35D7~Y)E8~<bdI+S0r#5x@bo!BHpl`a7RH)}=(9PO12;jq)T_FOk=akSfR+Z9K<
zZ1T6_Xcto0zk*)C(Y(C<!WJ*jY_W_!C-ZK(Bh5ow4w87+9?YLz^Q~G;P}u)>U$y98
z(t+VWlHqR7lqc$o%CuPQys{-?Rka_PnHG`42pA%TrJ%cr9md6Ctf0k;O0FMG{+5z*
zUX~OKC;jtjM9YvRCZuC2<1L2J9%wu;T|=2{lN@1mvx(*%xqe$(jFZS~q_F5`ve)!^
zS}IHPc_Fg;n7Bd0X*%jf@=l*@(d0uLNFs}Gd4xoJ!5YbD7Y8)FUPTDh8eSvOT2PUN
z^m6Vc=TNJ%<OF&Gi$2C4AoU!O$IU)k1X<QEXpS5ED2AyG3yF|0+&WU#m~asIWeX(`
zM>TX7*eF|gP<u19RY5%wD|CD=CA1f*P~zA;u?ye@?HXBz<+&V*tdkuU|7OIi;v+;m
zcOw5p59J=nRn_l43P31vchIRxOvaa02asX9NXa<6k67F3o>WvguZyAh12;!*JVXtV
zwM%5l;?I?n9R_(%m>^Z6W0gOLjR=76h@CJ1Mxg`qp(at$Lw;d(m-oMZJ*DGZ7Z^|S
zUm3@>)Nat5#Lb$KA<4YI-)2Nk6wP{5PmS?JLeJp;2_rJZwF12pt<n$wz-6Jh79vm|
zvE)ifKcGJkf-%9WzHWeQeTwja8x9aza1&Hk?9Nd?!0_{902NJg5@Yf@N}JSXwB7Ve
zI4*<A_iO6g(e_A#jJu+4HKh8J652?*vlf4IAE$<<dytk94c~$&7N&c=q(=!9Q7<%Y
zBek7xkPg-hOU1S<i{@h4#bGehl|Wg;Gb6E#sNll_7Ex?t3l?YX3awcTO1ehER-OgZ
zi8TO6X3y|X+&dw|ZtG*}jnx48kM6RjJ#v|&D)+!;p4^<lWtb1+GO`YP-MjrLU@=#|
z9@1K1!`z6)+&<SxUtmQux2CfXg<XAoH(f<N_4hdvQuhx8?4RB%hSGf$NvZ=3C5p%5
z<01&)EAW&!4;%DwH4nJn4suDvCHW*n5-U@y;WYi9Pu*z@$JV7=Y7}@+?_?<p-#}=-
zOuf3xx6AD<$83I)njpTU-6w1OpU^xGmDE6cHFuA*knCP}tBF1ZteVMxlQ2<IoVv;J
zt?@kj2Wl`=bh6Nttsm}474a+EpW)RPRi^2CPCoco`;myPR7Me2sf?DgghYAeZU{vJ
zoq`Q1^tX@DdzPr?5{wECLeq*+sEYhb2L;Q^C?Spv|Ip_hCtz&`n+zH*Gqp1mAK(^W
z26+mVC*T$=cDW)W4c(R7>w0M)Fb0jZ;Vb!Q6Kj&ER^D;~w8!-}CUY|cd=(#KI*M62
z`|+U75B^csV8-f-H2ljLQ7}~HnJAF7jZG~tY@g>7tQHCvx5X6nQ(Wx|G7>?4Lnsr;
zEGKoy!BMoI!Hi3=&Zl0G6STs*n{O1QiV;Ir78nrIHpsscAuqF5GB0s6Boqo@m3boz
z6<9Qn%%Xcsj9-O!wBdO4reL1u<fH7$E)6Qv?KL;lzaFVSpK|pbjewMlPo8>|n((Gn
z2!h9}%9SM*)IhT(OgzBJJ4X*e?44dL8l`cBn1W?rgFA6TyIiw^TtbkRn$6I-95K5a
z#O$6o9Lt!1k$qG;ja-_5S?%*2f11l<6Cg4fX*fH`qc(6PnB~rNHG>yeD};1Hu#+o>
z6!p*#fB#cmU44Xfg@$S}sfKgdQX|8msx;Z;TUB|&>FuhlCKx3H&u6uFxmKSjbOLXj
z?A=&W-cl0H2?)C}31oj;m9;ChSRot%D*%1^*vS8{zX!~TcK)mSL!1zjoT-(XJ)?hZ
zKcg2NwNsuevuE_%ga5Aqb`)wx`xth}T$MEi`?ff8#Of6*6qY@fk;lzClO3!#q4m=5
zx9g(fDuP-4PY`bYNv@u@?$vLH(WK>p{}$xmh!X!Vr}P`@$8U98FPM+K=?do4Lgc0&
zwxC7rF4Km^d?-y87qb~H((p$fQnkwJ<vq9R04O;YW>ZtWwheg&{wZ%tEC?n6N-Bbv
zIzz>vezq|FYiNBFGy+jA^k0NCO+Q@-(<4u4oFVDMA@6l<=`Cp{PzCg@hVDv8hEayq
zL3aFEbt)=HJje$j|E9IfhTt{+Ku%17ow1EK)mQro6KfDjwrexeH<sUX{r-s0krZCb
zR0lKkL5qKgX(?v!$D;e?;fB=Yg~gF2+}4DCbzo%4!=`kIhwP(b4X-~TwL?nAT~5i+
z{!~*k*t1e6>MG@|{`D%(aZ{vj-ER$QE}ZEsf8^iNZbq1?wOX8yN2IPP(528H208t~
zZ@5qB0*KwJhT;zp_=`cZ?{AQV3X;hre2QA|%w4R>;gz_AsU1S94*ux-vVz2^sKO~b
z$*Yi_>)6Z1?J;zxLrd{#j!v5)Fa2@gYgc#SayivyNA)INXx#`TQeVoVv3?`)zLQ^V
zKA|@MrNR4abtWqwLZhO+aJ%V+73iwv+CmTD%f_*A0EQ3`1;#W||Fx@hu+aGl2@L{+
zHwB;|h-vZ7QS}L;nlLzBsVEQNBBbu)zxx>Y<mFu-3rrv{J{OARm_SaTSTZk%D$z@h
zBwPK{&IH17dRI7KO0kS(Q8|%=018f%A(KD#5Tx-}XezQ~A1u|QjJ0WE+H!*8KPFe|
z3Zzs2@lOHK2W=o~gO7*sFFD%m69*SEklK%mC95F64p55xsx)Ap>ku{~>_6~>RKkaz
z!y^$avfhcfm3$Hq{a>!4e&B5c+Mvez4aLwM-%%TRulJA`x-Qc2ww|?{d~VTrs{mhu
zrFYxuOb8~*kerBQ!LcA`SZ+k<>uU72zR245h_7G~TTq@laLGs~RauV|3oG`NhfhT%
ztQCvM=>GDVBAlUUBc0BF=OL$S^$|N60RCzAt#&DdPE@C><?13ji>quB85RY1-CWm$
zeeA6#=w2Lc8;pTB+^Ga7465ViLN?B)i@IWpyz_3PfjF%?ZQ^k&9!(BIMvFv~7qr<(
z%&6+$RJgrusTQhZaO&07LqzSZ2AZ%gvrn+DkHL_()NSwdXNM&7uAP2@ObLo-$bB|d
zDx^7BF`$E`+yKnY8ZILpU?WB8Q5xX+G5*&}HN~8hW<VjniB>Hq;Lo!3v>8%=x-wJ6
z)mm_xHT0#>e<Rq<W?-LZl}gK@A0mb*y2qZS6~)Bg`1f!{(Y$>$UH5?oTU95iQ&!&8
z-R@(ZZLiD_{PCi4rHF!t=(Q_^_vrYpgx}*J)|efBps|Yea?h3d_=X~AH~j6;KnvP1
z(V;gK1L?)UBN2$cmRZMTD+X{;9{g?`$r(+GHN(uv>UYX`F<E83uKjAYPYATV@0nm|
z$-Fn}rAds)7qvNrhSf=n$6#3ew33WlHWi(yp+B9(fc~QsJy^ShVywyV?vG?@r3Pu9
z+^Ueh@7!{Aw2!P<$Oh`Lo^A6B&o&xiK=9p$%5$+jo4v3`?IzEitYYeiJaFoOhFeI=
zO2F{eq}m-WuDO1saKGFDoV#3Rnf1!t!yxAh3CrxT0{`U^@{WgJ!=49q1=Y0PBg@qE
zGqKDot7<lt8)B}NV4acT;!S0aQ0ZLv()!`AA(;Y<fB*kDPkg0{xpB$33Edj6;MmDp
z(1KhnamPYN9ZQ&(E17pvolYu#WC8CqSz~(Wn|b0)PRr4AGFEJ+Na?sIAFK|}bnt*K
zO`jG_uj@IK@|OA3W#+aExbA{Ga%#V-*>BB>k%o_S`-OLEhbzDrZmDW0<T;i|NTySb
z1ArlqDxK_l*NxUKaVinN*6#XNtH-!d?eEJR4ntf--k=^VVHsl8#ov$_yd2O?B)U1$
zz&;~p^wmhi&-DW!JE9-Wk1UQ=N(bc-G@JUUfS>4D<a>24<2-wT3iJ2jjv^}u;S)V<
zPwcN$%!0bgkmQQ##@zv#Id42x$jW5bmuj^PuB*@xF1AJnS6BmGg8ow`uCB{2o@Oxz
zT2A(*8A3ZglF@Cl$0)bR+KMchM&!@wAj?1kM|Z$tP1-b!>9zP^AV9_is)%b&8~$n+
zgM>BXinkUxT$L0!=_@N?mEI<Gu;xU1b($S;a`XXu2c-!hVy^JO_KoGje*pbk-&K=?
z$=qO}Vj`yt4&>q8pEqgF<H=hzpQS>gh@ly$y@~6}N}~GRso$#Adc-%t9CkW%c=Zzm
z2bhv~{Qj<wA*uKO&=gX-5KBTRgX!xF$nE9bvVXwHm+6_i+W<g?X1Sijl{xCG|Cdqk
zjGuQ`ruC7A8+aE>Q2GPK3&J$Z$l5rw=t%}bWtR`gFl0lVogrI4{Ieej8FSbd#4kp^
zAM2^5<9@;&2iu;39wc@yc=Yf`Ab#s$2{oc4^Cowt;xw!s^J*iCcL%VZ#8@A3aJF@$
zX`FtCmYl>LVV$X4NQ`8}*=VQ`a=)mc%ES?EFT5Ne!#}{+C3?c;`B+W_sC+B5C^%k~
z^C|U=Yo=ZkD`L9T&|xqw4979hNhGDdPzN(ZQQdI6Ia=9fF7zv+4wYQlwgX;R+Vy|z
ztg_kM98;r~j~kNw$A3j*&^n;kp{a3XP)^e&qD{y>6*H9C4SGY30ZpK%SPg@P99c4n
zIwo`1QAxjeG6n!*h4JLM{2o;Z+u#n!U<Z9ver&|>Q<%G{ATOgcP*}%!=wNU%A{7D+
zQCwZ74*Do|F~GlXpayOlj?RSv_!a7j^(=9#18Gt-n(R9DdJ&e#q+@G77F+#wX8TGG
zXAI%un^+u8PNBaX+Gc&X;_+lq8H-IFcYTOj?;#xO4B*5u;{S-9AL<dc*dklap@-m#
zX0Bdpj~>*$$o?hclifd<s!m}(e7?FcG#y5ewM}|yC$(TL7*Fsfb+o==3{=yA2vQJC
zhv9R=sU>B8>0i|kWCi=`FusSC2oaVsi{`b7Yh7wH#kJmskB0ON+CP3n+9MI%XiMon
zYJZL(>2;raItxC5xc0)b3~_C<)gsr#*Vna)YgWX>wQ-}qow%kF{!hC|T=Op_Nex5O
zG4DBJ(jQ<E;5P86bYqY@rN!}a?L4<#=TVQ#7M0=Fj^J(~0hQR1Pd)74`!N9FqY+aU
zh`-=>8j1)kgT>p(#LKyND@JS0fNwZ7vuJ}-ZFvFu;l-g^wofw8=%2M)95cU#M*wy5
z7%_9U`RRPArARAKDuiD8Bbl>I;!A)d)LAH+F<$Sy3D~C}FRIk<wiwQ3gu_dii7c60
zB;R8+d55q*p0v=Scrsx&B^FGjhBaBrMh)M!NUT;^x8x**C75G&)mH>nW1b%`b@^w0
z;yg!YB>5OpTN-TErN;R@%dKE-GKPivE)nTS^$b+$V*qnzD0QXSdK}QEWMy$QISoqi
zJ=6Q%w7d-1(nanlW$0sto@vAZy%+#dkKTD*r;HIYAqILgT{gy@?;mlOn?!^F;}0Tm
zA|9$_yj5;)33?GcurPwIiI?c1F!)la2RDd-vpN(&+E)>BIZdcsO_hlpMa2skSCy<G
zP&EVb%p#poCt|-@01$-k6sSBnwLuE;sq|J}P^k!q@XDV$2;gVtIM#BcWfvNwuc0`#
z8<*0`C5}4vQwL21s6R=rFkt8urkT4|nE2koI<ly!pHezj8FWlmkTU<x`yIJ)xk3U~
z?{ZUm*J{`qJ7&n!c<M%yR75K}XebV{?7E@q|DvJB`l2TU-*(GtjV2*jR_n5H|4In0
zQ=Xh?gKRf|i;<blbBnc*5LVCUUVHFkvN(s;1no;NrFPZz4636eHFU(UJjX30aVGUj
zOI9mb3uhc?Vk;TdzN=&ybv>0b11`vCP={OyBX^pG@;|y+u&?2qlFOCa^(@qGIqQm{
zf3H4>^>fGIE)xH%_mLdYA$7Uh+^LO!EpTsb{UI0RDikcBzDuolL=y!#;#LO%;(EsT
zwOI^?#Ug{^B{U&?c4dUdJKGfVZ_TzTqHl|a?iQcgV`Y@S23=bfbg9fztVgy*3prWO
zVA~qk#j`%o=psH_>!QoE>n>h?i|ZoNf)SQ)T1ekC1ZUSO*YtYbqsL1)7G7}<6BvgS
zDz?;rzT?HLcky6WexYf^&mbnYbSThWOp)nJOlCy!R#n^p-uzWTV|j2q)LeZ_e8Dw!
z`NfTu9o@-LlkFvz1}iW#IMd#R<~EjdPRoT~hbIHpy^|ZwA<TH<*9spLw#1Xekn=|L
zh!1R;2CM0bh#Ja8{sD&lVd$XCuW$unzAq3bMieBwzcI<&^ap7@xh`<L1h)I;)DQnH
z!a!`I>zjXRE{hYjBgojgj!XAilLV<08fF;ix^_KIpc5}B%LLt*zuC1;@h2`FZ0QK-
zbid*}yMZtpbete;H!fD|TL`*|fKHb#UT80&-Zq+<MNO8np6N^DC_q=94Z0T~JG%rO
zW|b_^y|S<95DQ2Z2A~c>=Nc2}eml`X_Z>k*O-2)dZk52Ra@?++dQvA3I1nm>|J_b$
z5bC*gjX+4eX-Fz|M_@MH>lXiiLSR_<8~!ZW5GJ-{spG{q_iibUgx#`JIN3j%C@<s=
zyFSV8YbQu5p4`JM6B>D<64?rFtu?A@Dt{($WH84uKX3#!o#PzKVeDH>pCv*QJ2A&L
zB}gLf{R=g?OeLs()n|g+H>_FUn%L<7J;y+rI?t@BOc`*Mj5FUl-DZ-g3<lv`Vt@EO
z4S0EH?&Sbvb8Ryi$RrDb2Zj(<CH?k>@vf_VL;-->o_mP;y%aEZNL{m0!$C&B=Z1Cw
z{LX0(fKGFgJc9^jJ(UR6bhxqyq6VZ>q6R9<FEuG{7TYMVe^~%V^0hbARQF=tKEjZw
z%^3oOvT7%_`qOU%X+%it6!N<O157f(S>|8xJHZ9<-@w);hPYC@W`K0*QG?DY)`f2(
z;9=!KSK4)9AOFSQ{uf<HYA+<+Q@6dYBaaSgS2?uHv=Iz-{%Lpans)UjSfHgN8&E{M
zx?1GGu4&hYrndxSKcrpH2FlC^%?gOL%F?+-HS}eVv}+X^GRgj=cC_oTy&dhc3ZY%f
zAJQ(@m}u8~KR4QSh!8<d8tvjN9^y4#N&QWicsR19Z~pl0Tq^7+zn)uP64`20(S=s@
zi`2!O!sBLhgq7X%!tf8K!ql&IcSb-QQgiGf8?W~9cicl3FK^!Q0Ui7F;ZVn2IV_*x
z1e|<5H4vR3?&WQJTtbA-6qzynTd22Q-rp(UC%1j5gX*-GeR+z*wi)TG3b5#qs@5@K
zh=qF+(fv5ZQwNZ<_A3+UFn#x0HBbWG3z7O&+%O?4u!zpFet$+2h(!yuoWS97OZnM2
zpBAIZngvQg2g?9zE>s3DZ{oWd@=;WIJZ|f-HMwi~XlUX;l8?MoyOkAmNDUAXrCZ~z
zTiR@mijKWFmV8hhizOeCZdsai`%W;(!5^@+Ng&52A$y?cCn5-Rv!m0=`iUG#<*Du(
z8un9cg$A(oMfo-WeE!y4_T(Sqcl?d(jLX$VR4lhvtz^=6#u|aH54DK{h!};yKgM75
zYggNUNTU3!zG8mw`oI;gp=y5=Z|pGc=R)a7Z-?01S5hy$r&#^ZQWLC*Iklq6Inp%D
zh-ycFC5ef3ms}@fKnf+>05GkPQ`n*KSU>F;|KwRPPqr;w?QC3u$yw%2cu7E@0JZ<>
z<`3-xgnk?v*#_ikL7y`z^)ddR?`9-k-dV>4E9%z^Ggj2e^fH<E^iR_(>WsgIE9%tf
zw^~tMDBuqyo|6@|6N&Ec+CF=$3_ebGw}Bhdkb5^wcb}gK_`<Mn!*ua*J3`crJEgyg
zL;JIiu+57zTvFqbDK44lk}F*@)+HCa<i{=<;gYCJN?dZ9OHOvlaV|O1CEsz$!7eFq
z$&}|nu@&og5&znDANv%si(TKxE<hXTTyVe~kz~cc+9BzcJt9k{phMe6*|^&_8|TCo
zW?Hu4c=A%fDm(F&{GP<`i}*c_!smc{XR*A8$O?5j=vF0rE0UWu436VQa+6URi|kk#
zcG&q8$2?XXCtp;!Sr&&fl#3Qr_>D(7DaZ9v=h=ii55r?-ab{Y#7Zo*WrQoh8uxGRu
zdw$$}rZRGg0Ev)@9_fD2`IfrtG~<|d@+lWj-fOyjJaMlXwBt|-8*$=KW-W@d<Z7%O
z$F#+<6jiE(1bgM&Kq|iEE2YLV>&e}L3;b?pmE!y6;CmnYeqldzC%n%}j??`C>IPeh
z`dNzA&r-P%Lj6oI1CC<_$E%9^z#{t5Y^P}AH4)BmN(C%=HRy-2X)IdB0#Bngs=yv+
z3Dzt-@7m*mbxqbq*uOepE-F2!S7tBAStbu$b}NNyrP3-kBD2UTgvpWp)JoLKqS^7g
zz<x6lJ=n}Snh)C#zR+#xdhh^UgDeLRHd3NA_SvzvtphTYi%mej%axBYGtAKHSjI4k
zO5;OhNhQNPg-$FA!p}iVJ#?_ztHgK~1<oFEr{qc5H&`I`TJ?dTMqUTV#|^r|ugQEj
zMrA2RR?<?>uD2|y@5FY*Q3J*eP24F+a>upiB-v};*b|gTRcW_R3y8tJ*m~qTT~(0m
zUQHHmf1jr;IDT)kEH~+qJDb;#)aR5$mYh9cTuI_4UvCqS_5+oYT~D`yj}G7g%hd2#
z;vxMkP25y$pL@B_QTO@q(!`DW8AurmsYo1B&9F&%KFRVpm($Ms7X+HK7dQH|^y?wx
zX6wbx*ko`WuOtMHl`N3>DxO#$ORPZp^DpH?Jh6fE8dFD_oKV7Q-vdTlaKJLnGN_%N
zUW0dNzmgCj5DGsQSjyfF+aUFSh;IR^r8`06ea&~KyN!h|)+JVldO}FiP&?VE|LW8>
zi*;Sr`m+DZYAE!jwnJfTH0%8LS`mSE=PeD9`Pm6{?0>n$#lnr`-G#;YwvdHZR~Phe
z!oFXopfc{ZSW&F~FW_+{nI@B|n3W(U4m!%B#QkCX(j0d3g8Cm2m!~-FeyxuX`0>B~
z_pN_S%1-A&JuAH=`#e?_+IWCWbB9D0PdvA{p7_V_oBA?|_^mIik77fbs4S<h9@bK~
zhF`2!Wlx7oG|V&QMTc&%=@ylg<4YIcs+_oK8qPDhO!kEd`P`dvV-4>q+z;sTc+Pq8
z<ZVs%YPx8<-KlXOX5i9>=VeWsbvVBj22{Vldl{KM4~(96OgwRG0aYZsAM+ELDIUw`
zK}*TWH+6b!sq4YNG^XA@<ak`r{2+WVbv62!cvv5j-QTHDHP=m69f#8b`?MxU6GUtr
zib34=OyI$;|BMQSyFl#b`IKY*gP~PLWo%A6i`A;Yx{EE(g*|vR=+MZL!^RC6xIEJE
ziW*Cff}L_oBZ?+F&F1J;;*NPF$?lg~`{~W*zp-z%>RZqhg`j(*qR#kzn@Vw0^?Z_K
z_oJ-v6RHq{z$IK!ZFMItCWY}=Xfqz0A<8JR&<frrU?;nNJVv8_Vu1>-uKo@M^%Le(
z83u<=7E-zsU;ST#XRUAh<CXl*|B0eO#~4{SC5Xbj<Q5YrH+?q{C(rpqhB)~HwU~Du
zEh7CNkJNd2i;0tJjZWmfb%tb0+45nOHDqpUnXd!L?0-UZWh-)a*xn~MTYEFY_TK!T
zjP|}~?d{vv-j|PNwKrjp?X4!WKh4^+4jK(r=i0zgp;*s#PzC?T`sEpYa4w%d{&}uz
zAAKhP#o)}YImx>6k~Ao;e=w_SFQ2|AP?V9`f9Df{f>n~*NK`3lWY$akklICmiHLoE
zj=|>2umj8P&45jRgUzQGr#tY;AG12}qdj(@nauvB)&X0ZWmyeh=o<dKS1|HeX2bog
z;j7ykKKI_NhTr(Xo<@Eonf=tqh6MO222hz}ZbOg{ygJ)y0ovG)X!6#N`7Dfre4fu$
z#9rOMc|inr(tePEI~Od&5M^LxmE@zGX$9!!0!vI#cH~x~1=-N(twvcj=|f=;<>N;m
z{qRS(wkcmkj~b<bFs8Q3zX#`I1%@HZ{b$<*J>4^aQ}5qrOb{EjSS;s^PEXL^=4Zia
z(P?{v(;PDU%^$hN5+X$NENgF6*xrNYR+n6e^@NQ-wD;yk>GrN%k=5RiJ+}8lGW#R5
z+S|t;>Dv47uwZ;8neDk1@Qb$g{^Cx64T-^v1NSt(S~B}@0qWN0{Ii#__PVpNz=G1-
z__2o-UBt=at$!;fRQpl6NHbD@nNlxEk@6~xWHY_tb=}TJ)6M_5O4AlPP3+<WFr<&N
zi&6A6KNzO)f8VKmfoT>bl4%y9)f_?%FT=TTBmLx){V)TqjWj%>XPMUO&CC~R=&cv&
zZaCkQFSPP1E!tqCez!#%oDbo3ZqY1zLULZC<qQ3yk{KXZp?6147)`dfC{SI}p_sWr
zeg2LUoMLA6P_Rbzp;S3$5{Tb*%L^qKui_g!WcqMXQ(-A~q4>ZxRa4WTN+WrErXk&X
zhXhD)`uq$eKaM(*c|X0-kWMDM`))O)<JXJd*Zc?KApF1yWx<TquFyp4fSs!;;IB)8
z2$<~dF4~|DQ)+>w?pzzGr6^W-=cH^QIspi1f?Lb}<6nMZ6US*!n>ob!2f~<ObQWoq
zL~bcpbY>Nx4A1+)SV4W%Aj_7j_b)%(L9Wse$*H59FER~t4dyew1S0w^wi`4rTg~;K
zK`va(j1zp@jWE&N`ZxMf2>L852)vMW&ADpXHSa%Am*Ish6y_-$Ju-a(jka{?Ce2k-
z#lawj&P!&H1V&B{a7Ta0tT~@txFK<q;ZIE8c7}(sh0v(4IaY;evf+jCfzQdan02e!
zQo|qoK-LZ>W~G5=QMEeH;*A$D&ClcEmYvw%hMvXWTgZWV7WKi;_tW-eJ<GGW1<xY$
zyUxl5o;{$s#-78CO&b!1Yg;~Kodw`_UD0flyUB9fA`P8{^5Q&lj$69`&+sEeI<_?0
zY_^}0<(fk_a~abM&E=e#zst<w_gz=!_uAhKP6xT<hQC3|PQ%~7+x;~<2D82Vj!8zS
z%6+kO=$Az0vy{sPOGbt7{*Q0V7$THOTnzGLfrJgY%I)P164)fEexQM9V+ckZ<Y{}t
zS#@cZDpg~)>w{V=zYEfPc|ZOA{swQq;%=>N^W4d^Uq(Y58cFOWs5*lGhZQ9Arv6Ba
zJ<`y{s^w&Wcu~|M!V(u)zZl9WY*dGhON`<2v^yP2J*0s}lQ%XhNnFz>ni$hB*{eTQ
zMZIeZrDNZ3Uxv}DiPO=f6RwjF&bJR^iYdm?Rol<EA_KU`=1TfAfP4#-A!(uIoa?Ts
zrS@_<ToLtdQt4!`RjyPSrSO~$gM~k;4}nBj*(MQ26I(fv#gD!x{6$P%<DbD#PP(y^
zTKs<Yetl~qcrJ9$sbMBVukj0bcK5@wylKTkmZUv`%#!K$@wZPm48PqEF+7k&KyOJv
zkTvGjgbX3}hT(43nFDiATKHL(2%EN!x~QL>GweJ@|FuWy<>kn_JM-IhTFAz4J4=D&
z3NV}HKe?Dv`0ae219G=P5LAd@kZvZ`B3-B=&UC5O9a-Fc)&3laHMi&<WdNB4iEdFZ
zd?8fcIb`K>DIyLP6%V3N)6=A+rW>#r`tua(_aMwS=u^JBN1voND(z!^ar}6Ieh2)x
zSijr&@e0u^+v5=&LumHYC^vRlm(OR(FriRQoyY}SwW=6Nnjg2TuPUg|j~wZ^ibH=$
zh`|VwV)eQJK67zcf9joaFC1cBQ=v$0fsMf#RK>S7MvG>C#tH>HKAd1{tnALiT%!Vl
zdh05f>#S%9J@tRGUIgdN1?omtD6_oy?@9?^0{RK}%->Tk;1>p!I>^p7_dI8TO#7a?
zy3~3kUxo;_n5%#BhiU$}#)<~G#I<caB0{ZgeM$`9J|exX+f^powf4NO(>ez(-MS`t
zsI|h9@voS=YaV(6s1fi`tH7d64v?@$lT9`WY?`yw-FImLI-|0qOb}CCl!?Z!8BkRU
z&|zK6MFx4az-4~|VvGRpDhvT1iVO}b1*WE;!F=jTO=8K({ra%Fv`$~}kLGKX$Q#*`
zLhW_Cc3l4$`rp#gB!#w7o+hS{Ate}@L`qmi6MOVW+vviX9=LrPbWE`{25WXk_(?<V
zxq*n*hMx;<RBd>whT?QUqZH<7Y^k`Z*qd4(P|WcL-smq_yuN<2XdNL51bH(a>UP+P
zkm+k-F6UMt$*{3#IOup$g*h+GtQPnzg?z@Zs_1G5V((@7DHaZc$nZn0HfsP-bg-U<
z>maa3-F=QYOxhZ?h)!|Yj0VwY)~Kl0CPex>%H7x&s-}>u9?HVY%Jr({f}pD#(056m
zNOhu)g01M`PRs9duO0oXc2^40P%2_Ui~vZj3Tu>N7M`y(SXj>Xd&8R_?jUT*&Y+WO
zw1)!zdHE*E#9cDfB|mh@eT!fj&zp*trJoh1^|OvT;H37W3Txp{K?FvSGWp}Ji$;zr
z?dM2%+J%MvzwE!GB(XU-W9sGW3o$5mIk|*APStzsvX&05@AFVxy`e;;1wm576=ETr
zFsTHQN{NfW7<BdVnBvB%MVDy(oE-=>vu~9^6Bg0MFDCU9_F{Eh$c(U|3CPUnnbUKg
zu)aB5jeA5(QMOT8y~(x@)ioWga8|ObCU7lbMa21p@JRv25ihz#{;YXC#hL95mfmar
z7<r}U*t0uzB|h-eh*!%C8P3$6JWlIKW684$Vz};N$%A6aG2>&&Ybs;O8!Dpaz#A<Z
z3!01c_Yk#ZBttk?`_9+W7K}*!34uOjJq37^8DX&AYHYB<9M!JS)Gd$IE$_j3UvW0c
zc@d+N8dRW|l_oFaO5bBklamVK$!p6MUfysBrAl=Vbpb!HB~@Kgn!HbAj@5mgQ$13C
zI8At|jBcessI0W%<En$@Nn2p!bb#p39b~3M%>AYg0@$%dV}{nhTh+BR`B&G_woX;I
zN9&eX#Joz5jD0rZwHWPNR8&I~(mH&l1pRL&h1M#JvyJ($+~Ao1kYv~SXKQCKBE|Qt
zf>)$!t4v1jJHp&H!Dc-Bobj<Y2PP2C_MxECBaA1WI1b7=R{TNaX#aOJjw}ZMUA$@a
zISyH<E6qIigj(&9DwePVC54))X$Hi$z{#cRe2D)r6p@-Tf67$R7Kf-}GybZl6=EdW
z6AYPeWlTK{X>f2CbdrM>z~m-nfNr@h8qhQ4ZQK5G#5FPjXq_R|74)^*0{5^XDr1{(
zHE8%=_rLz-K+E1o+2tbR$vlUUZGZir9mj(Q1;>@bbAt^LUiXomWs^X&Sui`aNic{C
zX|Bn<7o%pBF#Ua@)oRBV3jg&7l{o3>U0W#1$pRU*^&l{*w14WW=mAeS>`Tpti}CY(
zAtLl=2aiJ&FQz7oxp{eqp5>^I1A-SYGzL)MufHRc9_^Zrgd`+&hpX<Hp#d>lHp^*e
ztom<U$C1S&duWSIj>eJ<eN_`+f5h91Uyhg4d5r@^>c+sfQ(-OC2R`Fy1yr^i6|gK&
z0WY9sV$Hfv83t%sCAQf@+p1+GO^hhi4=NwQ-331;OVk_F1E0ib!O&Vt3^Rf%Or_Rh
zqv4`tVQ3LtQBJa?cGCt!)ao@l#jH2lShDF==;>?@8}VnpV!B)FulyVN<=h*|?q@xA
zEN%80X342h68uzE-zl!&QMDh=Q5`Ih*q(Y*%cpMn*X&rmI@OB!^;M^dM{<AsHW7`q
zMP;vO&gbOX#=)JfPxv!)jBPf!WZIu;^Hq*UNgDv#_$B9ST>VpY|3Z-yc1r0V@O1#b
z#To~a$>=%L>>8C~ErO^N(;m1J3vnkx*#VltxL-68Zay=R0WDJ=vr711{0WS$ZGWE1
zDFR~MN9F26nfg%Hze!-9oVt%b#Oj(je0yb_7vnJ$MZ6?0OOplI2lL|t->hCQ;ffFu
zYfe(3u~X5u>Sr9&>A{r|$E&x9Th^aI*<n%{XcbEyb3z~O3oo`-T4y>KFyC_w2<RS~
zd{OomM~s*_^|fwA`Emqe`bUR@S_iJV{%8#zh*)EX2(@Wv0+>o${ke%Af{;4Sn4l~l
z4NX^{pav_Xp~^)IURk@@O~UNMCjB4m_&^tp-}?YF`&SSoJ+tmd*8E1Mvs+v6W&Y#|
z2EO!0`aC9+S!Oa3R3eM_ui1K0q+z2*?3Ho2&az0Ij;!H$w45C^UtP?7RQjY12sgI6
zOxwBkG`i`vX!F)Hqq>?fhxkVAk!8SrL<IE%+i>0|3q(&v%R{BwKV<1=M&2=IH%*(Y
zdFi90lV>PsK~IKHDwFU3<?F2hC&0zWDZ(;dkfRI<4TBQcd0^BVNq?W76bt%#Le+aJ
z3PKSXB(OREx5*fKoqnUr`n1jt0yEFFDFGI(pZKqCGYAjbZpjZ^vckPQ{(itdF9Ymt
z@b-oj&2h$xe-|*2+K&vJi9ZGGK1d-x#=<q<+FvVMFtjVKUDTc=LP*@&x1*i*=c$q;
zIJhFRcwP<QkumOI%Q`&gF~m&Zwb1aT;Y+sId81Fx)5TcHg%W0vhwR;?j_zGk#=Gz2
z@Gi1=;TqoIpw}+og&Xue=L?tF`j}Y(nG3-PWyTG)P~sKsSv@@V(PPrCbSA!V+Cb=0
zN1dKR^m0o<Y)4bf8+}MlY~beWd&UtTwb8x)A#EV9-LivLBeVa9ht?NdpY90y#Ca3V
zZWg_XM+r!?x_4EhJ(E%I`~yKUvx5*^1(toeg^1V$8mc!aQx9K%mE+fiLYf|uaIj@_
znFBY8c4*;%cA4m><4&UQ#)8~-nhW)zV`RGBgp&y3swc1~WHWn0)&u><3p+{h5RBLu
z4Mp6X8=3wjAI3F*!p@rsxxw2!?poz7Z}M0>M@4S*G<9Gn%hB9}3W&R|Fj}|0Fyfui
zMc-yRb;2v*N>PT>raRsX!xvL=$m3LpVyks}Kh;Wq#K;<lABF9<7!$$KgnEGc+mDXi
zm`?^#o+ws=$c(K(G3FJ&8r`%m%C&LPx(!E1bJk@vCp(Gci>&7AnyK)7dXB?s#zIX5
z>%T9DtW?RKxQV;#Gni8E&lLBf{=~g5{W%90;hdvACaUG;t$Pn??6#l1v>i<x^4=k~
z_U$2!=kEudi<arj(EhKtb{^JPbx5aD?_!Qzf8qL*&x$N5y0A3y&)C{`O1()PW2gjm
z2U2us;{9<Y%^&3tYaF|8$5QXIPO*V6PF#`tOyEpLSxj$1r8`=;U)H<6PsjSMDord4
zZq1AJUNzk7k`qssS6Uw*uxWsjh2pd3q=}IXYwVd*>J8cvmaE&46U$i@_s)i>mlNPu
zF}{=odS;E;N9vNSU?yiPz&|AsfcPIbb;Bxy^Wys%(L2TZ#F}-&dbBS=Qfb24drjIt
z<DG(%1EY|sZPw@7#LtSD{wbTg^t!S%(aary`9m6WwRZ`uewHso8si;vqTYGgw7R3o
z3(eaji<i_eF2(26-w{?ghhi-qPj+=o)x)5iDxPv9H(tS$Nh7E$n_g$*8K|QTW3K^U
zc0JwW=+Ntt*>|FQM;6~RkIFgA><a7XyMP5X$kn?>4})@86kPK;{V{v8Z>+CB*i$Ec
zV^Q5~Pr2Hp)j4wGRGy;VC7Yx$rF+oX^<Wb{a8&R0$gFp1+L|4#@?o<lT4gx|N4uQX
z`hlu*?K^RAaK|(Z2L=1THUgC)jc0dqeR-WHos!=CRes~BT;8#~n=HqmJbHztKBHF%
zWrE9A+L}*i;>j8692D`0A&uuke48MQ+lk|D6XU{Zi6@?o4{W-=h-jZKgKZG!)5y@o
z(_ndu3Eqd6bFO(L^?lw_dlS_vGIW+%hJ+Ib^C3OvPI?%Wvu~Kw#{5CP7Utlbod&#;
z4{ZZ}h$oHIyM%M$Gsc$Z#`aZECu3Xc##X4_F|-}ff{c+N9DE+#v6_K#PT2Jk&SHXC
zH>|#9Z7N0!V2Zd9hp;x(S!CBewoWvpEA^})Z33gxLwZLKgK}V5E~gD?B`<e3jra0R
zql$ZHeciTtbI<X*bc}l=zgDQrbY1)sO9-p;2Q~KW7&FRrF)z<*9IZ9<W2QH~EbHFx
z7)Rc*>0Pps&I1B<I%|5DGriE*aG@~0LWu40#53vXJ<A5S5!c4f)B6H%S)l>XjnuzK
z{g(Y<KD2a1FVHH#M-PL<$+VJgvM10zIm7s~nU{aTOD3gp5Iie<&B`j{btBBu8_eWN
z>Q8e6rgsfJ<+T|pZ?~$FOJs5s6`l1DGe(5=YB8xQS$@uk((QOYlhV1?OrVo^_X_e#
zv@euSX3uOghpRS-%m!1EOZurPtU0sn24x|@T*{^qphgdaa)_Imv^{hE)NR=-a-$C3
zZ<C_unw?9!rKl0qYpYgpdQw=WFT}mr)_C%ENigx`J!)F^rAC|1q5a=&oh0j+FtpVB
z5hVDkqRFuxPr*e*b_W<MX$g=j&IPQH`E}%tc|9X>Gz)GF8M`-JEs*LNrS&6V2C~Dc
zp?JcNCDxXr)WHQd=mlYa-p%|dP5ulM*GYCV&~>Z^g>oa>I>)tk)7L1s%^&|@85^s>
zcxT=i(s*pCHyM7lKGwYB%vjwA@T>KlVz&eH-n5hAXu2{3VGFv7nH#!RGbaJri_+gv
zpIIB3z71hFwHe!6EU}GS*+F54Y;W?aG_fJp{53>r>`4L1Z00St&yzaEylBT5yH%UF
z<TrLXNv}BRc(!CajB-UbpjqT?>4cIeOukkRgL4kx30`wKPm<XXlyLNdF~}Gf6eN4i
z`aY`u>(wVqG+9Mm+Kz>))IkUXGz>=>zC+nS;;vnxC5p=GiuhYsqKK|$IdeBkiVc^z
zR-aBCE8_;oktgJY7se@MG>vh$>S0jM5v-sMYSmWTHR>Z#H?ZBtLBa4x^Uk~(XMNpn
zRlz8=s(9^ImDQ76B4lAzO&hCWH0dFcwW9v~T-J(mrBs7f)CXFLT2WP6QJjtXMYtS#
zx5#Xx`eI%;^r<&f_u6?7Pq*G~qnn#Kx*9h+k&QX(fsJmgMpxIA*M5XU+eXO#(>AJ+
zi==1dltrXkjH)Wc787o#7-V$_WHtEasO!h{ULS{u!nS=u2Kc+aSdq~kJGFg*YCWJ4
zgZ^4Y()N+kf^$g%DNV#^fM7gX)#frJEwE^EwvCK60;Q7E!wU?HK->T6-A+qDT5j6Z
zHljQ&+a{IHStS&l%vE4W84AJz;61nmd0IurY)R7F@ej>b7`PHn)2G5tO%tKusxEt`
zHfGEe9Sy`pX6%tKg_19{-lgfg+a5ko4I?d0Jd?VE&GSzbQd?@3?E(Kh_0i|b{%Zf%
zQ+}|!*{zDX!K%1>m#e}b{i$iW?|ov)n=X09C2L$V&}CWXo{n`-i`>(nU2>3nd5?RV
z=aQRUa+6EyTr$-q)h_vkORjK9g-b4U$+<2W?vkLrGu+enTymmI`naUGOAd9(fiCId
zl027e|Ja7P$t4?Il5)x0E_vN0FS_I(E@^Q|(B4w_^q@=bcggQva<@x@_GY=K87`@D
z$rP7Nbjg)28S9dZT@ti6!aYS@QsR=+ToSZ*oO}9}OTOchgI!YKlFly4Ztq_o86<-C
z-gi&yU9!$4YhCiROO{)Lu6>gq>e_j~+<p+tQHGjdeQnk4cL(N?)F&BMsVw`*DrX<*
zq9gQbKU%8AfPG}4QZGnZb8GZmx8<0~%>H(c-Q#W*8Yh@*?A0-Y+Wuk&k%lh|$RFsx
z(ZqLAzH`Slw{X3{H3ZZS>r-gePeg#breE^ZIECWgutEf%z2q?Zg9;~x6-E|MI?5FB
z*;9FgsCaao6BB3tl80E`W|ZhM`Vt$sCNg7~I+eHv9eW}tz+Mx@QM0L^D!l+93Jbz^
z^rH8Vj(WK#oA2gO*T8_7D0VJo<9(as5`WeN=CfGuHD`O>q-1oA%zP1J#GuHMo}I=u
zFNajgAaQ22x%EsLX4ZZs;brYR60ZBcNoR8+^)tyI^DacceKj&uXYz>+uF;5@mP&=;
zIW~!TLt;V&^S4hhe|m=d%MY;RB1Zu+k;oVav4h5io|W?uICQPr0SuB24R)>CzSh!U
zEb(S#3tEA|scFRETnr5OzE)j7UQA-`hPb4GfuBX{zNR1#DCs<Ws)yw8GOkuDN4+0C
zs3SVg^88YuT=xRs#tlpKED1B%+r_*chGJC0MQxals^_)TNkY!Sjz>?p1?IEJj3jw5
zN0?e{@>z2z^!HwMHcZL@H?u!Bk&?*bZUu2~P>$>(Gxz2VQ;msp5H*x)x(2GM#Cer5
z85tAjO&*f$-sMDt!uU+vr<c3WP&s}d!yLgjkMTMLc*d7h*HTvlJc#D5o1>J!c;A*%
z=0EXtY}2c;<}GKI_HHiqaywJ;!zZX>JIKx|yHu5}w3F;qu%%8sk3<l5F4MXV{G#L(
zO2)mrBuZGxuCAn>^%vQ{ZZioP%PiyXH}Yf|SIhRWvQE$XBcsG$G9GOiACOFJ85><j
zJ?pQfPI8=y==DF+r@HN+?#cXOk6D+_<C>fE;g#q=YuliN#<Wa2ucoMBqf7~DpKEZ!
z7@H|I#5fc|&`MoPYw^C^>V{P|-ghn1T6EK^$dhNrdOsb{c|Mx>42_bvk|k%|C6Ph;
z&de$NiY(p-_4(W!&}kW6Y1t;RAlkM%JE4)ryb0UnSDq;+A2R7av4NjoJv()TfTt#7
z1D}q}u&2<Mh`hmiLC=v0(ZhfK7Pn|vFY<LGGdBq+i5u1XWZpZ+$>A4ic${HyLAnz|
z?$kH@I60A-zt($i62|K{BQq8WihaMxP)>Tk8O{03(6N3PIr}&1yvrk1hStVwb*@oW
zEc+QpSm9^nzo?A$U0s@36(Co<_v*L=mv|1F<N^;j1?N*xj&OrE%8mMjDL~YQQwqX$
zuS2@~$v9HCJvTCQKYr=Na;8?>khD;n@=K*XCti+idJU@{8phkXXM4E^#Jy=>mkwMR
znYj$xgFNf%s8kKek?ANnKE~B;=^B|aA6<=Kd65~V3~U_p*sw1@O0|3zf+7qbyxKr<
zNMe@*)Ho{<LjH0FUPW`3m3q<bv4NESHCa<1A<E;bQ89oOu$9^sOL-)|s|z;byi4ae
zr$j*hq7MenqHq#Zvr&4u)2NXogj|%pi%&iVd;1<QcUS-J-m~jAHTb_MC+Jiki_LG^
z;fiXQK8<M@g#F|I9lJZXxzSFsRORn8=>Dr)Khf{k_$}RVod5vbE2w3kNd5nS=lt3?
zQa@YJW(KO)ItX9EGq+uC=z#hx_^YMQn7mls4m7h5_>}?wGM4bukp_bLK;OJGS^{AJ
z%wcIpn^Ul=wb8X(v__n)?O*t#3@f~G7x+xbU5qvn(PY9ZqO*0nu8B!*ZWF~h&yl!~
zXwJsu88iE`tad~iYHV<~Zd3w}S3q!3<E^&-J6em_L)&u-u0!doZImNg_ZD`TRU%ID
z#OnCKmDitQM&E7u)M6%|FZdNtCRHtmgKj1P-MJ(VwiF-u%ESe!=am&8S4&Z3QOzTZ
zcpS00zkNg-SesH;p;PV-5q9_9R{G2jsm!2XODi_dxVP||tl?rKJ^}BpZ-wwqgLmtB
z8O$3xBqv82yvZh&OWeAOB-wRDALB7g^$vRFV7=_Cw$+5{Z-D+BM|nv!QRi~HN-$>t
z<&|GW2X5gc2~$%ch;mUB_<J==@o^L|HOk__o@;&GpS=`S`^nvnd3Wy}QeGKiVx3HL
zhKVxLr7=+mhGfzX?P9#Z;@=nR9L~!6{e-2^#d7cf0c2IAK^IDhh-2u;>#*Db)BMIp
z+5JDCn*mJ2RUjJT>a7b5n8}3(%#KGJFz4%C8!+2ZCrKgD-(|pa8t`<PB{N|>6u~Y>
zSQ4@p4NlvHKX2nxZ8qVT;|NnAE0&3?WY9C4$))@POVz7*@-Ed4vK|hyt^irrfUG6T
z3bL*uRL<|Xgvq#ZcR=6Wd+5XgP-90s3fy*BH$ms{&XDzf$heyz5%lx~#k_!2bR}a9
zD_ax;u;buv9X7W{qXJJFz-b-@hiK2B;vi<F%xmH%#7AiTCf<|<P2<)ot`|oo45qW$
zpEIC{{rNL<IgS-J?07nc6?3+tY80(mA<Jd4!w6_*jVenseAbxq6zFpg|E-&Z8-bZ7
z*(hl!nw(?C%H+HOdh#Z+fP#2}LKyoES4KTfm`lvFOwDiOo1D6TezMofBB9Rd`)joo
z3k@pb5?H~?(!NiZVwrLrwY2wIMOUd$r8#S{dv%T{a`#WI6jw?hL^k;+{4eV+u`0F5
zUSV$x?IB?I+plGj3X@ydS|pB8=s#8F@EjC3dz5UlZFsK1B)j*fmu#>(9K3a7RsD>=
zQ7~eiNn}`;I@CPpTynu%|2G6?w!XYOToNjt!R<P``@XyPhJy{gL1HI)=D-lEp**jp
zKE)iehf+sW4-0mfn@mxJIf`xC8|Y~~@vu+A`3FZZNG^eAkVX!v^iH$2Y>6k<`_Dcs
z_&(R_kE`8Mb#nD_G<-wEN%c(YYpGxEsr}k5IWVf95q%@4UHx6OXWeMDg@YS<GCz#U
zBh_GT&yZ?BSxGgRYFAgE6Hg?~pqY5Mhvubg;&5Tl!}&bWb3%1*)z3f^Qm<aMlNDjX
zn_`-yHU8cVBaShak*wPtxc-mdvk<aHum7_Co$4XPDxUb1ORYIL`^1Mdu2)i5nhlKi
zAGr4iyY~crq>c_ham<8@e2uI}5q)|Giy3b|<W1_={Ps8K*O~nKPy6csK_x%k_@9>~
z%!}Um<0#K`rC#Bzy4^KySy%c$2(k{>v39J+RiKrBl)YS@>ad6M{)E@fMzi%bOTKW)
zX!r6x_w=SqhPjt(+|z28EOW_YE-7+Zdb#8vmqc8W?~)vs1nt$ia#LNB-QFwH0pIhS
z@s@eMgjZi=)_L3i^JD2awI68#$Yf;e0h5uX06|6o3!%ygshKS0g;<El;<ED;dw7XG
zD}u1RLV@0`#2^fkqDlx?OFU;K^m^*YQLoz%?6RuJ;>t<|yAXx4oY)spw~R+g0OmN)
zu}T-t=Q-+CorGr>N5j%4JrW1gJzBd%f^EdJQ&_#KAF4V6GYHJCsUedH!>s>Bz~)d8
z-3?z5PmZBWD|^ItG>`DkKeS`%z~-r~F={4=2km8aQMq_gnV41u+bD^P!B2V>6-2#L
zeiQZL`}L7rG+so0GCbf-LLN+1^Ge`7X8o4EXJyP$|3XoJgz+#g<{3uQl7odraWPA5
zXuF7uxm_RH$HiR7%OEaBlhGCza}ghQj*IyrZ`<Nx`dW<{aWQm^JLl_m5Es*suhwP;
zQB+}E42~-&dCpuc$uq=&thkuJ3oI}-5&B)m#oS8<31}`Z<~E)%TkSb6rk6GMcz|%j
zig6hb7b8cN>_u_42xsiuEI&b18g<|0nM(b-us?W9be_irMB*XRb)_6)+lM$wx^;4|
zO~Ctvu@e{5DF?CUf^(f?=7r!Lu`XrX+GGW^?@lAUqJ84tPq#@{Dle4-^)w`ABHSa>
zZ=;k>qMBTqcvG$wqFMHj)oo*%tNB8t&HgzATYiNZAT*ZMZRl8<vjI8vD>Z(eB8%(a
zkvypm52R2@ONSs%q{yC%El>nE^nTVB2&&#SZ_OXtSQfa)KBhZE+0zum5muVEfyL_H
z$}N>v*37Qp5fxHh=P_k01xd$aB?)Q~m3p{X^q{pE+pz*DOJo`l>$|Kp@lqf%#e1*O
z>02AfQtIXICDbksVJ>M4iPKG<&S0`u5*tbrA0k~xy!TZoc|>XQ%KTXEHVaIf^)&BF
zp3rX__mMV$ex=^EnSRyMoRy^mKZ(rfz*jBL0a}CoB#LcNK~i<uOdzs{h+E6YtU*Pg
za!r;g9WqqK0)4sGEzo|rV?l4T$4Yj?Q^?M?`oN_lPoeF)K(_PiB&vYSS>Z*~pF}WB
z{lwIOr(2&YO?;9%1$m7b9Z{*>5og+{PUAbX8E6$p+EcNG=irKs@L1}dz3cg+BJ-@Z
z)%7YWKwDia?5P;fskwFk!s8z65?!@T48OqHZGEe9^#$<`V}kmEfQOiSw1|iKf}%w{
z9LHO<sglOxPWb<V_c#x`DtBWsw&_7T#XQ7wnuO|Z;#{G4@^(WI+yJv)L2}eQZcrl$
zO_kXKMN9WZ)(DX*Y|dnA5rkVc3{e9i#V%qVtUil*Xj08uvgZpcw8nHSXxamPx*ins
zV9wd2RjqecCm9|x-Ou^FAEHPP3!eHyo%YVkN#_cJmR{sNxfEix7jcU=G#7{<f5B!O
zVxS2HffL1z6In_#tdGgrOD%`l9~9RM2G6%QxKh7!gHw?j^}>s8Y18-imX2(7%NR)%
zz2%s+Mfy^qh%m^#Ju+(?B5^d)1pphfl5OGsg^t2&G9b596m(7i-m3fp@Z7++x^wuP
zYm^WZcKaBFH-`{jOyM+yf2W5*IR`ihdpzL;+Bqid=X_`jkt*j&agTQ5`osXfr&|`m
zcR4z5M&Q(5>7cNXf!t$Y2p!tVVUr<vY*ON!ZU$TGm2gCY+og*<V8g5u9<{{S9}u{j
zdT$JObK&U+-<@wfL`a1GIC_P`N$ypRZ0jd{-q1@%Ks?DfA;O@t$n+}Si86^?2^Th4
zsy0Q?v;Z`*B5dm4kj7Ctaqpb%fwdVj-Z7T5Htzjod+ES86k(!iv~>dE_TTx7n?|d<
zt_hP~;2)pf1&WmVoC-@5?+}>5`{H(CAGdc$NejY0eCv~ieVA4Xw=nIR?n-Ty+F?>*
z?FtEt2wU|g0QjB$U|}Bt`EQ*kar+i5r39&@dSlFsCtiprmZc`}6V{Y^m3WEL#H;Z{
ziXfNN7L>Rr3u!qu0sS?a*pm7cnjaEdYP>0nFQ@h*?f<&8uVtov&2(FY>6Po<-Mj3a
z|Ig=47$4`7F)k^0$w-%+?UKPRIo&0vy5u)5Ioc(KE;+;{2e@Qkm*l!++q0SNed?Zk
zm%QbY*Ie>~OM>>Ea!*gVBxrA;d-|hGvfG>MUV1K>?vfi^GT9{)T=FxQT;`I|F8Ps5
zg7%iUr(%}`?VaSFj&(_qOM1EFAeTfeK@NTySC{BEKc872`mEpjr@>;>wJ0AAsEO^*
z9~e>;_^X@cuKG6q>XVfb3~MqRRpe5pzk2Nf!s1B7W=Xp&)K!-28~oLGQz+A4y}(4}
zOn<d}0%?Es1RgNY;jhk<14aJoudPIuzj~Nex@&)RPuGC+S3jb<1AldBo@nz|<86Bx
z$raaamrjVU&H3YoBu12B(HPySW8;`}TZWzI9F@Z=qTVIj+QROL#LPVqw|Ue4<~A=k
zKlud7&MSwN1C$Oe!z%Gc&Zyxh+3v7xV<ua+lU%mRmd)aoC^e%=kNlDQO3QuUQl6~9
zd-<w&hMx5YdG8ddU&>1Y|F+>W#KUw8Pmv|v4jk8vx3GP*D~`+MCK|}=QKoXN=>^mz
zLOI`3=Spim7)X`&eJY;#B(~|FvF2?!cm3gB&%H!$>$f8t8e5+E2EQUptT9CW!OoQi
z9Yw<WM;j?6JoS`)O(a$r!W@$<&7<$!`-<8duWh+C^k7`wR&2D>VE+8dt3FXyssn%_
zo`Y49>ElFRAEe{EGb~W3AX5JtTuT*IKV3S|kIeWL1)QDtk9@$Wo4fBgTz<QXgvFIw
ziBqU0(qP<MwyujQBOMe%K3XQ$;K(O0@8h|_LS#1(Eof?xArL`2_$U3q$-L;JI|m`$
zTBE#)WFtwk>x_tuc9Dj6Meud5BJu-bei&tm>e1RW+V}HV-;Jedg(lv+1v@a-Fr4q&
z1XBNV6*do}Hc3U6^jFY`^IM0Z8SHGr1kXkze4*w_Fq8J@k(t`ZXqzdn(8MH%qt9Cp
zF~h5erQW4%T6p7zp{1CA<B7Y}`4L{XbB8CY*5;2$3|U(+B-v}(ekXJo?w!7ND4gwp
z;fXG5brtCJp_;9Ige>?QN8AI?^38`An5k`NQ!q|1@19#7G-ag5QjHoA98NVB6Ytxn
zIe6~c#A|@;{zLkJiT5Z6MAMb3Fh&E;ay%)r9tJ>7okYJx+U7G9f5~s?*K@nWr`^3*
zU27;FO{`Z7m9lLw;5jtnx0(Ef+h}n$d`u01N2eS9Aq}VY`!5`+hSSfX0D#kwEw06A
z!)fQJz{h4A;=HrAW;h-R<YoO5AU;#dLu7I8UgX{ul}8SRN#ZqT)|R#c7;e{D6ZNz8
zIqgX>Y1T~egbw<*PjpjL7@&F>I&f1Hg_2ztbP;;X0e7RwRvX-2`48aMA;UrG@AYdY
zY{~8>=KtzF<l~6yzM?)|T8uR3q^`vmxV!4Pw6E%9*dcQPt6;%Ec1j>(ghL~V#S>q&
z4%WgRpB_J2RApLs2-s{J5;-cY9YP6~J?<1op3THIoi>=g@0EI`NOc)xHm4MtpyeGW
zM{LI`E$Z3D{I*3WEhK6&*IHqd!|Al;rVK2%tC-GJl}_u??Ae~9WLX7P#_>D*gD#Jn
zKd8JS8ajjI21@o?ybmUQnJ2!%8ALEgrYGp1ZJwZ_yAZDtWuM-KCum($Ky*bWEK*-&
zIq(EM_PsrjiSxM3@=*E)jrcA!qFmZq+0H(oqXOcf)$HGSC%Cp-A5bj8r9@A~2x%RI
zKL-?$kK}xQYM$z)92g#)1Ow5V={h<WiK5%SJ2B>*n3wyVm{(2&&1=<zq6yn*6HP2p
zCz9RAc9xUGHX+gZ1EYx<^LXDfV<G?Mq~1ZEx5Ks8`>lj5vgNw<-QA(-|MB~r|4$tw
zI6#{5X&j_MA?d^u&!zS=jRofj9uR%oI!_*u=Tc9Y=ED0|-21oPdwE8t@@aR&4m=i%
z$SoD>CA6JAW?ktgf~+wqMyO+}m;%4bUM^2<|JUxz`%f-234N(c9(2k5E;-pHce~_B
zm&|g>442fnWQt2B{sP|7i{`R+OlQTXZglaf-<L_G_9N3&aW*v4U&W_dO8<pOEOVrL
z-Gb0VCisTg5_pn2O~0&AYT%o#Tx2{2aiW>?OO{7-kdI!#yI>-bmpAOmP#wuVS7v!A
zMZ6y>tu0Ud&Hhm*xkXtl2Eo^EV2xHRB%;tf%%WM-<w$Jlgp^1m==3V}z>DW#6w<DX
zg2v$($%xCFem)=K;r7763V$TTUWdFl4#!YLaM$!A6(v}&d22!Ac^EOav$L(Uy;F2W
ze&cXV8QU=xePVPmu-!0}@iM_zG@iFt)EfaCd^*$Glk+M%$(GQ{TFRBDl215u<-#7=
zI4+JS$3n_H#-v|SXU+}HWU<6cVMt2vW#;&g<q!uLGz<)22{as5ZjSSKVnaOfA!Cmd
z7YKXy?q`<56JkV2j-m6ViTByBQZS^kH#{1cMeN<bVwi7+G)}+*u5G_xP|!Bgh*Ay^
z3&8RLAJFtvO1@%i!B5!gFmYRK6Snm21iroBDVFmrn{Bq04*X!+iSdL^v%E?Y*;wZC
zLwK+F7)J&)VW0`E9$RIZtx+cvU$_1}mY9$qOHAQ3iwAOz`5zlg9HN~L^U0z8OQLED
znH2pJ1u<l-T_GIBFT^V5ctCu;>-@uhrG@!iD~7PJbZ~qqQuwY)`xicGtL*J3EP34}
zFS_I(E@^SelP+26k_TOKze|4ak}g-W%I-t<2v%9!`r^Ea$n@ugR$1pg2qKlxs=XsK
zuh&P-Y-s+O>;k>#bpj+TGDVy?i6F6eWN~?J^E(B&>GGQ2&+q&NKlbYUrgzESL_{_m
zXss**Co}f!?d^8p2vM<!vN=x<x9`ULz8dfQdMxoqpq|Eizm5nur0<)t9f%<BG<<pW
zg;Lw5mSF1cQ9_HP6*(o%@8%Ef{06_vI}YvqPKma$419GWF{IC2{pZv>pcOQ+hPk1?
z;mHj<zX@dexWh684IQB1<*l9(O7&(ulX3r`6C6E&0$8l6#dw)!HN23(WKKA#>L`A9
z9VeVb8gz66+}bkt)1r!sa14;}Sj^(<iE+HN?<zu0+U$t2-k-6h(QJiyLKJLf-1h)#
zVvzf|<&w)&N%LC*!MT9oZ9wp}TQeV0fVXD@jI||o%{X|_vTytcZx!f0V+B75@-B=g
zFX|EZ#^JVlFSh9omLhBCUDnQvTCsJvE0@=;xRl7;5s9i7(3Gxv0Zr-nc{!#jy)d-l
z<LbzWM9~X)MI+O{htSbF2CqI#-#_veF|{?V?*&kXUWRb@JM%5I(J2izw2?6<hE2YI
zGZ`L0&)9j2{L>$|Rq@ngmYm?8mbj-v_jJg3ig%;9P`(|$->9i*hwpaWM-<i}XSHJ=
zTwp`5bTFihpI-N)9uW$3!(NqjLull<3^eGYnJqNsq&vl1I&j#6ZU}W}?AQe-+1G=<
zrJ;v@+wgkOr|e}w-mvq6f_u0X)Tr(-=FwdV`txWa>t4$pV(MTSNN1~f7y|^mS<YMu
z_xz6IB}evl2&ua)?EnWeYDl<FPncbMMUVWlIU;3{w>8*RTc1O&Z=EH{6~1G~24$7<
z4}a9A=rEUbb4gd1Ts@8{`Uxn|etv$d;n#hHRD2x3=6|=o@H>PwsE?yT-PHTnt1owa
zIPqO03NaaI$XFP~K}O0Ymmh6Eo^{C1lXRq8Zq&=&mw_L^Hj^Hlc-0Twq@lVM`HXCn
zf8}iH_<9cpgztf24}T<I7=G(qf63)^U#I5ngkQ%xdRnIQU7}G>|4_Ev#X^8$991Za
z@GuAxSsd-5u;B&^gX5%a@azd~#TK5`5whPVe%#kLLnnZYgm|`Cc$RaJU_cX`USSA#
z2XCX^wA@%?bF_I!L2=_0B#*6d(kXn1Csw+H2}+PWwjz04%uBK$dTd4Xh^odCZSdcU
z&~dVA;xLKk?bKq2W*~JOY%jM{HD_x~*^8Web2dkSw&0ez3qV^+a5rD&=Fl@z_kMmf
z=h>)t?PgAB<cJ@gHNA4$<x%6#W-pQZE`FOs*#VmQVhz=hx13oABAhVX>(FgB^F5;p
zg2aM=!SRv^DuuF9CbEo)<iAz^J)UN4T`Lmx=GNOF<=cz8G9VmdzZ(2Lmwx1JeGKC>
z4do}hxAHTwe<N`jtd;V};$c1by%Z}$he!2K>T2m!uDvwIr`z*SUE=7GOOAF)p-T>N
z$pJ3e*Cn|w`T1pF($aud?SfvJ3+3Cahup6Pl}N+CH4!G8+M39V%zTMA?54^sZoH<4
z9lJBEPx924zB=B_*odtScdN+CVTB}QyrxHS&Gww?AG4tHr(R7#__;XD@V#I)`9nHC
ztKWN<bpEWwn~*>7v+AMX>SnDq)|}FQ$?lV>yluVZXRNov?DYmR`d=k?UT^JIpTwz^
zm~~K={y}c3Ip;GQ?Q+=~{j+^vp3337UvMeFeLz&E?JtWTTzv(!29&)@eBS=aJN@B6
z6_7y`<A*bd>WAO^s9jO}t9!O|;EXV%*cJ(-=w=Y3ABZ?$x!?1D4KW&i!YJ$LhR8t=
zolq0?IPWMjx5M(bzUfz1|02`>OMZ3rL%ZZxV~*U_2qM!RzrvaQ|1-ZDfn=~-es%bk
z|CC?NPY7AQEx(%hu+7w!E*a~Ri(S$(W;gum6=BG?S)XG!yY)F&1=`kU?$pUFv7D$|
zV}m=!nm6RfJGZdL26u{e-Y9;C(||>m#ncX_vj2#w-PZVxi_DhKFUSYPQkQD^ti6Om
z%Nd-Bq3!VVEHQ(+k9OvF+49t88#VHj*ZuXsrdb>zaA^&D#o-P$3q_7iltL0iO?;D*
zc6hO4afK`$m{zmuW6iO4rN1G56cZD{)drlzoZj=v7XO!{-sG&S4Umwst~U6mcsfIe
z-9YtqG^E<6MoCBuzih*}V!JU{QGPTFyOENVCjWtiRP3KHqaDU=aS{@xOt{J_<#%|{
zFmB62OD??_aQ`}+TJ1y+eyf3h8+`lMzlCq#EFb-yeE$(D4JS5q*YZ(+zBu{l_R$Qb
zy?g|{+u-auuS!Vba!Z>;uB%h(1u6C%Q>~NP2y~XInjnxnp=?^-BNhY3G$3W=&G>Ub
zv^}Jn#4<ZZtJ(hnBsRYz4|&n%4S5#sqkSfQx%q%2>!RL;xLGV*OW_bh3NuI}NN6FL
zMEx8^!z~>K!wnJT53pX0mg!*m;TV<J4P4Mz9t1x*YfNxFnZ$WiuIbOSKEgx8Geb`x
z|EJ@2E#b5qko<qhB};R3NMn~Cn55YO6rNLq1LLdEre4a`38l$P3rh#S6`Aofl>ryQ
z)&GaNcY%+py88YJWHbtK;w3g!v7yE`Xthwm2CMBLC=*RIc&QO>O>Zf+S_3AEikO%L
zGEN53Ql(UFTHB{oQL$3+-XIk49xqkYs;E`Z7;MqDf;aeoe{1hEnF&E@-{=2+-h7lj
z=bU|Ad)@ZhYp*Rw8cY$*2G7u2Bs>>j`o4COfIny`UnvG{$0&lWQ{12{;;A^{gE&+n
z*2GB(0%tv<+L#Szb<4-Kjn%IJRunAibVL)^85tuNx&Az<0?xOpM!@#L2uD0%?k%@i
zb?)TPdMO9qeAF>)PgMc^xdV|<9wey#T7Z#5{%L4z0Y=Qk;sT7A-2_jQJ8j5*y9O(a
zp%OPA^4dI2R3!L$D;P_Fk%wKNN6av;xDQ)PHQi*B5huHN@ZDRCEFX5sDwkBd<XD${
z!zC3i8SRpVr-S^FP^Ig~FI$;4=r=B%gDKHJjJ{6XhdFdZhr1}Y%2(cX5<`1qVo`9X
zok1!zIt5h*OLD@{r^c|7_vj=Iovks{49=2en_NI9LX+ZFr#);L0Wv%k%sA6A(%NuW
z#ZS0g%J^0iOh3&b3(VQuJm~S!rO8O*9kGy$4R;uc+>=KBQ^t)^Z1{%mt0OjYM&!77
z;y8NsVcyKqHX?1{QS^AW3|2Ho(dW1)4yGDIb&9XlqnQo*9<#nmz3*;eVwVh1EIXed
z7hFTmw0tjv&YNvk|9u)S>UhyNKhQ_u_)`b!9{kC$0eiDi0Q|{PD5A@-CD-1(N+xQp
z;gU5qtnz9{zlWA8_i^)RSIq3=QZsiZEWk@Mdu64CYn>A1*z@~XtV)Qr)pm(hK-BV7
z)ntOaXzi1V+_osg*RtKk7wnrg6M#Kj4n9a7s|mzqYTO^K!Ys3c!YFDL_%nS7%?=8q
zs8!%ay!7tkZg{qsWI=ek<u;>0r!#U&lCidfgEhdX;DHukfhbj4+rg_QV2(JxT;XBo
z-XMOND{#+|hT-?E<H<=ZS-T1BBBQ!^$lt6$=&;=&7CV5$wx}A1Z9KD=omOIw&<9bj
zDtTJWSdH$FB!Hp!c9sjb<K8-nP86CU@~qxc-4}7tJge727hABSV3j*dM!5ry>6ogx
zaFv`*txi1MccvOI>>lN<PP|H3s7uSZBDQS2wJYgxOyYGsZ#Lj#U8+Wj3-@mkD{KDQ
zuk*v0y!Y}urlY|1>(6|^3!7+$$5Cq-i9qgq)p=pJYQ?bY=o|5Pd(Y6$d^14E80>4d
z=YL)44E8flOyy%HkPZUhHAV`ZqQTs2*z9&W`#i6uq<UMub$vg2=xp`jz?@l2F4V9k
zZ0T~oQIC%4z{|ys^J1&t7HFofRgHUR)+mXt8C52Z%rejBZBQcx!Z;lWVIh@f?}7T6
z*4BMx;xSzTCL_RwSmle~hB-dibTIKnWLIBA4tcdW#=g|a1sJ-KY|AQ9GRuH<!Q4yX
z7>_ac9Li7EL;l=6m7W5xX1gUlTRZfb$~tqUM8C>{rN1*ia+FIBcgdGsQtpxwF4@N=
zd%9$pOPXA=<$tV}O)lB!lC(=+b;<E3!>PWRxihMdUzz>B5pQr<RkMx%9Gx-IKR9+6
z^J02!u6?MMF3Tm^@=ULjE&Hi>M#y{d@-Frc*ixP|=MR=S|0SM>?D9|4Yoa5x-|I54
zGbQ;F`k~>RW1;HMI*T#fYD$a`&mdTOGrw0l$@AQ-S0zsnIKGn(hrFVZirjOf=Xqob
z^^Lt9zbh4^Fn$N04LzhMlw)uom5dBwNEqBp(WlyXqk{xVAwOU7YB6A7(w_UaI6Djs
z$u+F3Z{VRfNbne{f-n#sE~yMlYX7Z@03xen<XRCCIwYqpGg}!WaG(wys>Tq_(g7Xj
zGzsR!Ci<zW!5o_o=NHa-7PcWiP#n<uO)K&SMcdyO(}hVzm%kGy_(G>V#N&ARS|1$n
z!UiM9&vx*te<B@S&W@9fMV7Sb#SUr!tZ$DZgxc{jpcYRSKAJYDRmdp$eQRYx1yGB*
z@rR(p_eYfE5AyHTcaVQ=pP2{8tjFZ7#nxt=gZzh@A^b5Lh^z_{kjRD@vY`SuyS?F(
z4{$1a&GcK-zjv8%{CgA*8eP7VIkqXVUB+fh<?pES=<;p_!|t^0UFh8b#QR?{^tyPe
z@Zw(yAWUx`D1NwC4k%2zGLK-6?ZtQ>ZE3xS(gPKo8izHBj*Np)z@y?VC=wXagb<>v
z=<c!FK5EnIaO4x%zXAbuMvY?7JPhlMuZh)=nTkV{pDEsJ+}Q2_Yb4I~PIid;?{<Lf
z5*2Fw5Qr%L1K@H_iQ9=$x^fF)UN#bxKH4c4>nbAhD`qcYaO*<Hx9>W~x7u3o_142)
zPF0V*-X3}L5M1HPdKB$s<U3iuI3wOUE;WWYI-GJoKCxF%`de^f%&2yz6Ey1yj-H_{
z9`<+Fq{s73L>)6JC8z>FiH209^Bjks;`gjN*gVT}iF<s{EJbFNAOiA*D0*^TviMMX
zhpC=rzG53?0}QYOL=#-*8JC%oa5~bvs8h-mEVvM^-#s8t8t^4DFP?H73<I4s(moz$
zhgK(1As|Q}j0DlT;vpo+fHe*HGAN*U`WmFofS-5#CE?|?+D&|zzHfV#@jX4%;y<hn
zuDXC`)A-T<2Q7Hn5S*&AFDh)o@m(gemR9lNJYHlQhqkp}o+x@6aKEh}p1FFH%d>^>
zQlE`9Q<DcfwYU)_(`~qEANE(*d&!U+RQ!sf9O5>*mcI2Ub*>&1bvo8v)_^T>a#!uP
zSrTf);i~;oa&K?dZp$pgI|AoUcIsy#`JusS``Bt;HhXu%a!iT6b-T6u@H*DfSVHvL
zDY@rR;BFssc=Q8~s77aRfKk}auryQ)A&vUF6%J|(a;PZofCMR3Ozb!rrJf*888w`$
z{)stfOJ(vRZf+gVQhv)Uzbj~hfsM2vJ<|!fn5d&Jw0S{evU%P6no-<;uq${(qlh76
zW!1WeUBM5<7Y;VQVBA2KFF3>uQ4{79E^7$#ZZJ&x;Cf5`>5>gDdEF&1x#U@w^tfc)
zaiHFOzrgON59t)m4%x?^e${C}$EZM`J$9#P=YhPDO*S;ij>jZBewU5B8Zr^fEQ{>%
z$mI5oV(46@s^dl(@GI)(VG3f5^gj#SU}1MR`7HS6+x&2mHecfxG35?ZOgXy;lUO-f
z`b1VZW8C3q{v^8WE7*sL^R$e}Xx!G?s!+yRQF8~g!LpB*B*gM+`U=xnUX_?MDp~l>
zD-uJem7*tWue0CY3qE$iWz%7d{q{O@cU7tqE2|Pu;G&&wU@mjN<vvMmDhUpuMj4QA
z*IK*uI-A)<ocTJ17h)Ct=Ic&3U+81!Xicnts0ZerYyLaIW+`4O)W=v=e9h0r3T!`q
zS8u0~TgGL>24)3vC|^AYeN{%huUcKY2PAbqLf7wZVrsCXeDbisrOxec&hS>e_n0ud
zI+s1M=<HW`a>l=c4)${u3VpUYA48lm*F%Vt{m+J7Aoch9Y<auJIl7RV_MYet@x1+g
z`$-o$3Pl=jYn9$-eIJF=obB7!d7UN4zMQd2FKEc2(9FI)r82Y$S;lSaG&p;q&D!@|
za;8g8b;$`XndFis$1<^!fmt%3-~8H{+8wc1Pkh<Y<9z~dA3g3$U^Y?9r_p26Ib<pD
zWHMnFBa;>Hi6FwQ6AUu)2l(qtB8qH(fL*ipCkOBcIODueqmhB=;6O@=4#q(>LB}z`
z=`{zZ9Qa&N1+OX*?iUI7`6n{-Lnq{df0p^{oRWn-*ReH?0;)TH*p?i{D#ErUE9?g|
zSH#SftPDzNr}u`e$>67v<qqvPqVd#;Ut4^KhqY#D*-&cKu((WmWjqz8k)5CBk?x?f
zwfS>(wuKUpwdKWIR=5*(Xy7T^N<n!Je!Gk-#OQmBu2T~RFlo`L%X&2UjT-#MV7*{w
z*R1wc8dDu$`LMF!Xf2+&tr5k+uL3zZiH1E$T}4yZ>BH46n^8FOwCWlr%_C(L$$o$F
zXOu~{ObR<64Aaar8S=mCGFa_Y%qsE<4Vp4F(PhnA1}Ng+SbOLDm+H`NJ3~&Hy&868
z3k98^8Kz<KqeMS~-%WHim8*4Jgjj5uG|xbf9`3o9)KzT`lgEyPw%gj>=ULtS1T`@t
z4-Qpcpf|Rqul3%OUvrI=ssi1sf^{S;9IMS+9gF8#-Zp=Yte?%6RhnePw|~zXMG8zj
z+5dZ|KRMa<-+j+O`t0$ppM8*Sy9wI(^bY(Vb}-X{aV7mb(0-jpoXN0x%r+U$Fpy;C
zJq_S@VBWuRgsUhsCDC@BtIbS{&1v51W<%P{)CTd`Htj1|QKp02&i%1R_iL!BI&37K
z0J)a!?vTsSUmL6Lx=@i!`ZY6ueHw88U;jSeW9Puw8$@ET;35`6ef&3-&F}Uo0)X4$
zcb<s+rPWI`6AAdyt0fMmHn~tO3Wx-kV=fC7sWw%3!jE?w6d(6+w7uCP*Y+gGp1BUk
z8((8(YDR$^aH{!OnZWx{Id36Ot>(_!v8#i0m1$+%xJImyoX*uf7F}M+Og`DTXLR|(
zjdZGB?mwR)126B%!=}<WEV}$^;afdR=*ZnecvX*$qxB_t(&z_AKUtrMS15|et~{@f
z9RV9Fe5q;=H@K$#-`JXr-1aQO(z8|;D2$IiK(WS$bg(utnHOP4=_GyOzW0SD@{?C@
z7M#>2U11YX79W4SU9oqhC0xLkyuXVaRms^h6cTPHeWDJ?Ze3Y9?x|=h#&2CPbVmI#
z<DPCx-wmEp#|?K{vaFi~TNJT-2okg@ni@)OwB!7*VQy=B%fbbXc)nwDDK{I^&Xfjj
zf}J}0J%5YrOVO0>1d1*@@+(~L*VId<qUiG4iu%Nq5;V&ruk@Ow_-m=!6Fb+BV8mc)
zm!1chg6iFVX^2x~@x<w@Unk4|=^5!57nMpnt>1+z64S`y4a#<7@f7;Choo2AE&6Vi
zO)KYw!YFs+tRw&i6zU`zgDJYQh6b0dau;!;7fP~9jzq1zlYVZz3+=eQAb%bLf@^ef
z%D!4WzT>A3rzRJzKKdj+2skbPZt`*yHI$iqsFevV=?m8~@Z|8{{Y3-1yPF5qJ4ksF
zm+O)0spSqy45EEX@Dr_5Y(*>KEBEExWOSJwx8&xbNz6rzTbZYV7PF2}$5u~Z{YuL9
z&9SQFv6ypCm>N$WTUSMZ>nZ{_C&wOQEniYAGFd5OwGKUr`sP=u@euonGo+VSuH0fW
zlnTAcvm`nEt*3>=OP!vQx?dyGAbxDM&DNtPqWxppjJXUgx-8*u#TdgQHHrLcv8cu3
zRf(2nWl#LPgCse8o@!2AG(*+hZYJl+GvY~CrJRS8F=5m}C%^-=RzYDxiDPPm<sZI|
z_u)kOxrF_ca#3lTOo(6|)-?`lfD+U*{JYhvXFsoG$dVSEM?I!9=(brZV<S*E-hU+3
zCqz`S|49&tsZMI;9{)9DFwtdKiLS&6s`W{LT)jeo411!j&J1@;POAk^Yv@#+2E)n?
z>!sWeth;oJ`Eda{b>ZA7vy@b)#xu`hbt*)CRO9lAdg3yhs|Jq9Uphg?!aB}4?=?YZ
zO4Lzy*(O(ToZXDJ`DOL|0G8$!Y-9o$gS<*N%28b1+0oY=hkziIHZ8xI5r)DgWbD#%
zqnQQ&8u##}hewx>nNr`fWzaX9-p-*@ING*6G`c)iQcpO~12Cfr;lulq2iBT~m9ac1
z_-0TRL0Y6D_g$??WJ>n>Y<MT_nn?wtsU;a1|0GMG?xt~Mi|(&Wa(50};LUHAC`^La
zy?}O%mbcN-2&^!CuR*~g{2qJF|H0;%=G2Gspex_{FfQ!FyppUwR9GMGdm__^iw^7G
zhteJELyUq!S*8!-2F|yB3aDXjTql7wK0u7Ht(Kj6Q9_9@0g9W++-9)FBZ??4opg3q
zK|R!E2Zp-sSI;kNrV#U8D)QUPE{zDVy}Pj-e%tc?u|GWKk*47Yy<Kh?ijZF0w0qd-
z>e%P=()VaLkX~eiuqOD{5GV8-K&4XQiZ#I?w)UucI?wXLtJytj9d+8JK9q7QvU-bx
zU9-C&2{Tf8QsD)-s(`m8!Ycg`*B%u7=<R<Pm5);8<r$m^6?KqeKxBY8XSfA^^5_y#
zwd<lmfWR|Apn12RFAD<2J1>m_fd{f7Fd{EK4Rt9COs`%iFs;bWbU<FZO2*}Fz;yUv
z2d1gU1L-zB2|JJjqxBjoBXMb)k17|r=j|*QeL;DEk;^kMjE>px-@&LSxJ0g<$J%W?
zot}q<{zUyJzYeeB4EPyyw>lQmB+rfm4m=&fo@(c6S<rXUudnheo;*4RdN$bE<YcT)
z5`vkM2Nsiu6)zKa39<-I>ey;RgCgcHg^3A9$F*xt_@`gj8CqDXqqp->Am*xr6O)nP
zQOT+M#pREI!5k4!T;nvUr5?NIN@XDahs#&M12)55$flpY*K4=u6r4eOf2v={>DS6&
zg1kdN)>&3|2}LC7jrNcWwDREKL1alqR;4`S+jp-lrgJ3al94#=ddBycvHh9O%{T85
z<GYT6!ELxu!uXgHHx;30S8ktbf@`;K`L8FEYoeF@RjO?9uSn7{JGIM(*v4Qqt>c!I
z-rZh>O!r{g()c^W@$Z>6{;_WSk7UOG>#}Xef71?)|3?%IZo}`gcO_R2eax|1LR4`s
z>(WB>=)F$l0?+iXc}aw%r6k(5PdtwoP`bgMdV)r|Y#w3{uII-F)3$8UUT1W77hWpl
zjuN76+MWhg#ZXh6M)fwUUj|+u5sHF<E^e0QV>1IK=Qoek@I3E3+TQufscInJcW&_C
z&~^Q|CoUM4c*2$q>0&|&B_8VCh?bX56HHd3N9Zr-lc1VTWZ0KhTXq?`Ohgc0Jh^Kq
zH5d=lNlK7(#hcZ0Ft#`>8m{QlXITTGGehB_E64~K20=#xgXk%vVenpb7f-pE)ySxL
zYQE2kdJ{~$v3F}Sa_~cj9G_KF^VDv*kVuS=rDw`uhvwwS*<}cRKSg#lr#GdiC<iSq
zQc*_UWmWVih}j?I5`^W-;%u(;z?`j*+`?FAxwY>alv8^)_8@b|o+)ww#D+o)ZGrXA
zBxp#zFvH;EZWRqR<qY#>KqmO<;=r<RwK!E5o|vquq0RJfhy~0m(ElPA71%U40p^qH
z2_E}0RPi7|d^1MXKKp_B-~2`zbL)l%nK7rzjETgv5b9_!lVdEr?qXc1*6rU_M!0${
zR8Vq-r<Z6{yuk819h*`=UvH2wzktL#{bqSFM@LxkDP)g-j(pv`(ru0`T3Hyv$~Cu;
zb0(^>HlC3Gg6Ze_$gh~Pneatj2c3ggZl@yhmfGqeS-fJ67E0QqOI=bfG`E9ki3#Pp
z<=Pzmsijtmcy#%w`f=|@+dpUMd@|KfuVIm0n^}}U8%@1K*YRA)pT$4%!K~xgHvKK0
z98WJGyZS%6X`O-iE2l=H&(V9gjF$QrUA{{_eJoezY+XMSC8PMLK3$(m41}?A4YQV&
zNemvvL!!gL*R7o$B2u9F9o!gUG0?aNh}6tCb1$8W@w{QBe**wChXcQ%p8O^%=<Z#n
zf9}|kGCPtd*z`@%>>4wI%Izo>SvJdINNC(Or6A~fH(+wj=pZLsH)``923yiEJLOp8
z${Iy5w8ge_@(-bjZ}?5q3^r%)$E7BgbvWbyAS^`~!#1m;#A1srDC7S|tJpI$tR}47
zOXA7V(dGMMJ7NCqO#x0mL`^xKDVR`El{gNUkfRZqKlrm$kc%s{RKC^__~;5DF>^Pb
ziYAwHgt?+)o)}zo`LT>`GSUSmSTAe|u5gHoMDbqjDJ}X^F35e>4#K`?2>Z`PrTF(M
z;j-^*YVs(tzGf<y@oK$cZRlolI<5s5Rm4-y#VM<@$Bd1hJE(22&BFK@$>G0Lt*MI|
zG>W;ZWzF~oDy60I2n>2Ut3~|SA(y>4WUjvY8!=_(NwD5o^qYRUb{;6#<(4b6A;7#t
zXQEDQ09wxxXkPM2q%1C48cg<U6QCDbhaR-fWu^?8n8N?lOCeUwM=xAfE6}5cQu7q1
z;UsGMd6&v0t`f^n7T>Z`Bfd-A86zTR9$NI%YXwf4dBkX0C45;K9DE8o2salsN`{K4
z=_S=N?8&193)?7i{gV;e^)21##gtXaESq3t3&L>DS1oS+N#8jhc&nTxe<DIkMfTXb
zJL7;0nynz^F-LkvaG~j-Ay^z{r1zp&aIPx&9%K?cHIiR1u?Wl}7Jl~ee`+isqa&F=
z?#I|#Hp~#^Kr#(VAsM9rOQ;$c)}Iq@b`_uMP&K;yq|JsgDq)sg%ykI?nQ*`*@uar`
zRm$2oi)o4%tsc)_HR!y=&^RuGRgYzlwmrJ9Dmf0hlaSnLeFp|tQ`B+AJRVe(r;_OM
zJ?ayaAy=4eC8$!v<QSnbLzm4_J_%u_phxwGgtkr(eOq;Zz<u5kTIUK!Xu7l%XPr^%
z*;+D-&~~=&a5I(_?jy8*mHoh1rp1dJ)cLV^a+zb^?=>CJM}TAZS8F0b%z@YMLyP?h
z@Z(DzX{ifFfQyZHK#>l<jEr%9@mKwF%^oOMp5^LCfWC{{qrpd|?E^so8`9ukJ}byX
zCVb=<0Q>ALp&$0h&#w_TI^Hzqs1m|Ct~8#QP8f+px;5a7EsVrvsz_F9K)lGtw^v#4
z$esO$a!-O>RPS=YlWwvc|Jg8h+IASPl(>3BKt`8UHptkx!gf{_X-Aeyv`%^!U4A<D
zbWD}WeYQR&a4@2_vKsXnurLRmWwrKDOA!{K_Inm4U<Z|IhxOG2WT;Non!_OAKrOIS
zOL8JKhT^J*eN_qE^6e5|eqnD~0sGnv>1j4@wM)MOwza0fw_Q-|1{0!*;}NDG!Lv$&
z3qU>raiFqW_jKQ^*9o^+%HhSV--ADMO>;jy_+556TWUD{L{2HGcXy}KROJ2(oZL6t
z5Y}L~`=B4ejcE!0P!pCKV0O*f9|8Z>gNbfL08@=rU^kBEMk6J95oEolt!x$5=ns`d
zKPiHuZbiaDq&n@3Qxs*03cFBhUD#-Pd=7H&qkd=A6IA`%4IF&XOlyncnWBDq7J1+>
zAEuk?{0j5Oc$mKq%N?>eZ5UVxM|Vlzcl9wfe3MM!+AKRp&&2y<ninyWX!{>+pAD>E
z`p15BapP>)3+0p63Fo6#EcDWJe+oPXVm}0IYHADx?m@v>|6p*b$mW@zlusOzwU#fZ
zj$~x!y|!E%O}0n>CL<Ox5F&3bbZhtyF(Hh%^NbmJG10P0QUk}J$aNG5dU34eqyvGV
z8fUxJ5wi)&*aFmZ4X`d4g6S{|!<<?u(~&?vSDT2iiBUGap-rf7x`PA#R1P==qihS(
zmkupTsj+z{3hIwV+lN@~oXB^pFZNQj>$pvGk~a;IU4{G_+lH~rC`@rkDzPjxFKU7t
zTQH>EeXp_kk^1g<34A4{sd0Sgj<rBJy8I&8%S^`V5M6a(gtC>OF$W%uza%jG_6SJS
zU`zs=nJ|sYwdEig^*Odi)Gb%Nx;vvtd`N`BrbC?bKs6;*$#1ifQBSc8N~@CR@%uu4
zUq<^g<?~EkiZ4~e{)7*)ovrz3hlebf^S-Z32yi?LPP;&jPSj%2)OT;=wmu}1T|&l0
z>mtLaFWoHxaE}xMb@zL0U2?&Y9#OFAZ3v`k3~>e>6X0TWGO6N3LG4mbfKn>9NgpJY
z5@UcqOj+A3Kz}AIBC^<#Ewu<x!l7U9qBg?%ud*iFpS+Ay1D!UBZ8E{@LEVn-j(%Kx
z*<D^dKiO0oie{OQ4DZqAOfB;Gj<z-kM^5VK{c9Y!1y{fCx=^Yvz&?ca%oX-(I`i)W
zMw5!nI(|2Hh}K2h*YRvdEY1KhQ_=PqFQUt)=qz3PtJ>NN@fM!awt^QElM{-@w``Wp
zJKFv`UR0$Dqt{2NjsR6tdA^@vu&pd6)K<~Iz%&@3<vdI!8MG)X+CGKXgv%g;v0|%0
z!Y|J7tYOSnnZktP?C%^-&B@4j?i6c?wjbrP{&i0?^-*Z;HLwSXtdDH6I6tBsP}dBl
zS=?1>|3SfXZwXN0S2!5maV0_%J9r`H8%8@#6*qlWZAr<1s~1&RGtvk^htlA#%yB}R
zEVU*LOFF&PuDHMkg|czhmT*uszu9V;RFI5xEH|F_6?MwW8`FFDXFI_3e2L)Sli+$>
zc8Vd$#twt~!xQ~D_$$pAnP*AmCerR6m^-^El)e|WU00OUQLY}|`T*UEbu2CWle(9R
zEdH0DkQ+aCwn<Y(=GiDYjbSNTYm&YDB)jxR8bUgNg*#sHEpvt%-~g4DScgV7nGlW(
zz%ekhacEqjN!F&1)S`p#yPBB*R>P7k`=a)bevq7(9ZzrWzrgpV*m{$L9!D=TDDF+R
z<nAGA+%kXfLFx5w%uT!v9>M3b_YJpF@J;-JL0A*Bu2&BnCyPVoon>8Gbfg+s-g3G+
zcLDN`<DCl65<{#ao}AZZ$pRyE*i?gHFhjL8+Xr78q$>YC?7jrS%dPS{UuASzr-8qt
zs%&a>d8bW@%sFQVx6btl?Q3)``*S={>^$C!`*!Gi7Id`^6G1pM@5~TJ2HNcFGC|BC
zPCc4aB&3}<>BoqJOIL5UO%!dN?5o^XBLrlm=B83t4loIOH2Jyuk?pekx%wPEOGd6)
znwhK4o1By<*ix!+%hh`i>b;Y~7x32kW4^%+h%DuX#n-H0jq4ntbsAw%`Z!Rg-^Zt!
zY4=e_N?=#oq>Q%zp8RmXx|X4i`~5~k1YC{@C3#ZJo<?EVnT@{JcYF}iDhvpRHhR7O
zj!duT?h<0y@pL&oOS^cf$PC^FXHPT?V-tU>HIs``3RD?S#VZmY2&ZB^ad?7@B>UEe
z*Hq>p7B_2k(Rx*~Lx?2-)S#KkK`g5@8?jVxR+STcl^sN0k~#3~;0K+8fHyQVeV>F#
zV%O?IHbSMe;YWGL03eoR1IRN22EcWZ64#KAX$+kX3Up3g4@IWgArY#<+b6w8J-D-)
zmXSW(_7ROC9L&#qXmwC}3iCW(>+wP9huHP=v)VMA8J&BX&1loE_XBFCfzPAgOJ7LB
z$7y`*-H4c)dQEgt?^@oR#T%Y$_57^pp<6Qqh2BZZHPHLi>m4=8Y{u!n)4p&pP#PY$
zWb9-m5H_S@i!f|x!MAX|lxIk(TxPGKWOTW&;iw_`7uMGwHDvIGC)FR7H@N9*hL?hw
zHHwPmVCR%ediB81qJt8TMVH@eJ&;gRuhNUzmQ*!OJKrS%+j}3^BHu-g`Hi>oI=?a9
z`*+gFg}d=C(zsB+8~@V#JWo3{cJj1S<C@+_z|Gca9<iU_l!e%1sWKVa`F2BWDcuie
z5PSNSJ0O2jk%hwf3&xw$O<Ye0(eQSVK8;zTch}(CcyZInrlVb7G8hCx!}3G#3~5y%
zocK}_e07miZ9p;829ejmLK8UPN+9u!4vh>-?{ATUKP@x#>9L?eDGe{NXSb-U32u7T
zsSEa1JXB4S%az(*7kYy4%4PCeyFA6~8i2>K%iJc)gGs)L8P;%L6OLVPrwQ}R2rab5
ztA41JFMAoe5f*QGe&AK_)&i}1@q5>aj$R(b4hLED?tB;5yxMt=wfYvG@0#w<b1b%(
zZO+>O^63HETECP~LB|xr2-W7q*2sIx0t>Ov79&IU!3|_&PQb;vXe5HIRp|4(16G~B
zF`cohy%ltQlAA&yA~k7;I9S9!n|{Hz4<Aq!`VhSIb?PJBqR-g7PG>igT0(YPxlZqk
zojW1B2FunPo}M_q4^P!~x1OZ(3jfd#Pp|x~!_!jXDQwWsBoG=HPuJXOc>2$GB%Lv+
z8&Y#J*)S|u-4~boWTX#i&yNXQa5VSU%QluFU+){sq8%8^%HO!L>?qBxc4N7n&A!o3
zvRgj%e`QdgGH9$a1prHb5~oG{HgoZ1>$9ZaTS5Yzi{Spq#eV1TFYkJ7HoCm<XJ_vX
z!$-BpAB_qSotTZ7<M21rSkCW|GiXuE^|?caOdpFSsFW{Qi3`V+N>mgNw`BPKN|@2O
z$}w{_ma@dQdbCZRkgA46jkYhe&bxs~?+Si@x09`FZI*aZ-bB_^R*pHALkke_3>-A;
z=cia!&$m@iw(+U$;SIvOPXRHKJ6JRGBOsXD9_8w6RBdHb{pe~*)1&=PM2G)4ATsCj
zu7dA{yzBIQFJQG7`_5k+@3K*XhB9-pB$!>#qA?R4_9Pzq^Dae{QlyqI>s!dX!T_;*
z+Dm|G&<#DO+`UGh5GnRvvt@n~?|SlR$Gg^PKH*()YhV&`Eo?-*>$>0f@h;Z|4xq8c
zz9JpGrP(mvr4Pa9kI3*YJ%_w27j%z)XF$*`dpZkrr2<{KaBcP^CdEJ}wttvrs2|%8
zgK>$HazLkGT>mnyvdwKSG5>2dQrP}R((t%%Ch%6iJFNFn2ns-l9q2@YmOeJC$+7*3
z-Xa}bi~1n)vI_fwPL;c(wclA}pkvuF-**Aft<VURCw)#j1HU4{@70P7{Pf)WRAu6w
zUQB}EJCCBy8A@q3Ti%xkcRw%27mDm16vpURzs3hp<a_boJ!@GV<E%21?-rC-xxq~t
z#r`44d{RX`QHzME!QZ{(cQX6TFn{;o*>D?5B|N&UpH%tmqJA7<?`f{*nH+z#9Jv$<
zVBE;Iv)}ohHynqr5EsGt|DZe6qVA^8esf1y183(q1{Z(T;G8~gM+l!7GRKiWJ>!i}
zuOAE7{>ppS>*P&EE`N1*1F*Bhzz%y1JSdC7o2Jr+kainr>9_xeBziD?1WE8roo(Vj
z?vk}GS>ckqU2=y@7Q5uPF1f)a*Sch$OA;=*+$Fuk=;9Y%3->v5_BYWY{Ql+-B1{+|
z`>e~0o$Am2<^qp_i!5bffu>+TYhWAfwImzZZ@dT_YV#uSf;C{5CG%`4n4D5tmHe)7
z3A^Qwi3of?lzs-kXHoD3Dmd1xF0A;D#9rAbV#6q-Wmt(;kXSUa<eF7gAjR3BQO4MF
z<c&^<zA9F7wOZ-a1)IO;u+8;STUGPDh8AA>cAeA1*o*3>gNpB8WW(^DRp?uBp3N?7
z18@sY#pUa=XXp8(AV>w4?>Ekpk#INVR$=<=P`<=suR$&?YqoMTiGhTTvq1r!#CMf*
zJ*k*Npp+VGtS631=(*HCZ}#8I?fLYW87_O(JgQUnVwIgDK?!)BBMZq8JpY_k98%UA
zH{>Yz$K=boPo&#yl`>3AIe%bQ_)aerFag0A3`ANK>p|+OTUYX6UDiD5i}jZWCf9kY
zDjWUqzIDD6GJm?L>p~s4mNksopH#PlbC`fbLW1}_-c+X+s@m~wL$J|Lsi;3Du}~^)
zWn!W7Cx^fH>qC@Bm1s{%%c;u5<$A14+^q_d!=EBcW$JEWu(GfL%(p-2u`;!=hoo%?
z!5gT1d}3jsw~4DqAwQDE3td6kEKuT)uS{H_pVf&gWVA>YUgAE-_4&c3&sQfd*H5&%
zD2DJQR3xu`HA7gWE)veycL(o%h4m-bl&lRl=+_^_mtN(Uow~PR3NHsw^2}9T=_8C!
zJ&=9|;?#|E8n~`89%X50wHeP=!zZ8ts<q;tGuIEu#nEpU+l47Q84sEXklH4Ri5lE&
zOor1s0(UzwkR`%ysxm@sOq=V39-!cR{VId)g?RFat<UyvrBtmn_*Tl*$_#suHTHiI
z(KJ#9V%QcAQ#Nyt`L)(2{!{8rojuerOxCRYjxKLtqlw)T7(-0o#D(-Q$UiX5rCt-m
zni5ZbW$QCK@B&}+#z+Ua5Srl-@Acz$R%@{%btAn$HoxGEotgFvFdjL-lkdlq!w$rR
zf&^hrsMOA9@5MF*{Mf;MvFkYe*bSh~SI_K*s+&88vRCl&T~0YzFXoZ#5YAxvEmtCI
z^_61tK;KOZ2jiBVbh5k`_cNsvN&dDLV+;-`c+H(r+pZ(Io{`d(Dn9)%R%%3PYL~&s
zl*3MAZqfD;dI4-*_0B|XY|NXe9au9yGF4;2csmfj9TW9bF@DzII$uDq9Y=&YrG$;x
zr~B3S(HK`>aIIHAYz;#}F=x#}v!xy@TUR2A+^G$YOAt+^rW9|4lB#h}G|to@)+=+u
zSy{@1iBA9+_J6+ZR;j_5*R!lt2a}ckpBpk(sy{p(ZVf*&(^;v6Zd%tbuo>|)*|JI#
ztgYb|3IsieIxAJ^%^S*u(4QHrq(mf)-d67zQ}_WANX1zCwSU^gjUpBRcMg0_nB+(2
zHWNT)bB<^Pl%Y?yc4@UXqnaWKRqTa7bTim&-Siz9w|3UoRmkWUi0Jp71|1=a3I|Px
z+g6`=pp6tBXt)}VFtMWdKKfA#`rLi0UlO#gU^Qg}Pz^V(9e7EgW38(P?Inr1PHjqy
zu+Y1&!FDCemRL{N>#@{HYzyW=@RqE|EpZ~Nq%O({77b?Q1dCo`_~?C=;cwQSg^czF
zW{aS6@pXMGB-eJhLb_4vlv^R`Lof)ROmE%MvsOs&%ev$3M=&JQ0f6Ru>$}6XU4wOx
z8Lqwa<vxpu>x$83SlU}5of?5=9o+s?N4w>s-O`M%MsouqUE*P9vp&l9UYy(&lN>lR
zyy1x#T>YgP-T;>XY0RyoSO}Af9EERz-PX9-M#RF=ozZCeemucK{juLVv@`~h5`*An
z`uh&&x>ZCtBCidob-h(_MG-Y83-f=WHOSosJRo+t8RByN1iI;o>}>=;I~da8w$V_n
zLdUk+`h)h;M-8;sWP!HZn(?5uQX(kfcpqrLdG&t<S`Ju%0Bn0%SGPA0A?QJ2<?BZ}
z!QH3W+TaeC?3ai5Si=T_cU#Po9}~;Eo$weU%4pf(2DaFdD#GJV4-p5Mxcm_3@k-v`
zx@g3-1$I46m6=EYkKJ)I*FRJB&kT`v2icV_@aZC@I=BfJfvtGw!&AyGM&{^SJh`CD
zk|io36`<MD&^MQn>p3~E+mZ#Yhf72(%IpeVSJq|E?($M$Ogv>9mvFA2aF)v3e0isW
zQsE>dU|T#KGZl;RazuLIV%3#mcw+6r3CkTm8c15Z!AD-6{@v^>2V0hHBw|b^0vRxI
z4O8>9!fHlaMmIg{a0N9-ItW^KX&=cuNvS!uv9_%0ravpa_SmDo_4_3BvG>4Z-2mS|
zp=hviOL}Yi1(XhtD@wBP1+V3dzTrb68{1DTcAOrRF^&%<bcFcfZ0XTu#s4~W??D~&
z%YLaYF(rb;Uh!1;LYwQ`9(0_CN~_7L5M;EVkG3oFr60n2suFT-^r;E=OxsSG5HAS#
zyG!)DZ(DNfm-;IchCUtxnHi9Pm6#?9RPFSun=ECbUwyav`huH&tXW~nM88x}L?HGw
zPbtiGv!#Bc18bA<rLf<r8qmPWaVZ-Cd9_`+p0t|rx4mJ5$W`PehyQYxYgE8cqbiu;
ziD+_dYwSgc8yQp-;2kQmfDS(Qmwo_mI$tAkvl(OQZgmU2>J#Iq=#veG_8jp29^kl#
zW*u%L_MLUx3^Y>|T#Cx#=Wmg|g1v?_Evtk|9MyZG_s^06_EExmpiH!D?WGEDsFrTP
zq_lRU8;IykxtY^F@GjAP)Ml4Q_`M<13x1_0XzETuh^D(Nb!R?5aq~xG*CeSg+)FzP
z7O@`+61t{2QUzB@oC6zIVK^sYL*XGh*O1JP>!~kYiwMxB&K-KQjyDL&JF7HG^r&17
z=vRLlc$BYGYMW7-=f41|Dg|Imo!I-tQQGLjnI?K*jYjExDOlG9H-q<rf-0<{0f%{*
z>a2kfm7Q@_emU#)9&*sw(xYKE3J`enr_Firw`!AWFS_Izmpty0iVxshCnMJT^Q*Oz
zr?x(Nvw&7xHr#1*z1X1@{K}yhDu>=DcMtdcM1nn*_2-5aEb7+T<L%w_dSWv2KUYh;
zxJzT?1Z@~u1B0*SYO%4WBI}O}EqrGRGqnfs_I+;7N`-M<6c=kl5P1G#hHWNZz~q`z
z+EtCctRFjV!CC3=D@|-vSY4p#pw4B=&U{!kZe=tz&pP1`-ysHKdQKjTiXtN#@+W5@
zaPz?*8<RzaGMkJYC-Q}9-}=Zgv(_7ScGzA-ZI!7b*G)_oc3pJ{!-p&HrFV(^bz;$N
zH4+jG$Pgimzd3&Cbk>7{vQ=U=A-XuHwE}e%YR*18pXIdn`9Eoqr1giK)^K;_$$%%;
zmH%%C*iiy(hX-uA`r(ME_~gmbj&WMM>Dh24M)Q^vl|31GYM!mej#8(r2zOXIBh7ks
zD;4?5d2VI4(Rz7r*=D8iuO&)bRtdE%#)1k5V@IH0{wX+=B#l{`p<d@ris#3wl5^Fp
z-ND#-h!*ak(A+ZpV0{t1b*W>*V2pFU$e>7twP-BcE%Ac=V;T#bfvltW8Wd)|C|CAW
z;SrrO<fAv={){p^O2uVoYhO5J&|<z5aCuyY(&<f#FtX(Ed#@CxUsxbr=$mE@aBfBl
zw9c5Ujl@~D*;q?^`s2D&ZC=*#2n72DbsPQpQ0#VkfJ~0XlUL8Pa`U|<ppPfc&=}~P
zks-*`?4J!3Ja_1s!B171ik#s6<%2)}MPoHBtnjWAHE{;cdCJCK=mJvyv)^6eZ$Q(f
zcLEJS5D{|&>9Jx8YxSP*rR0q#hxKUa)}(QK)}+DwDcVx>TRy28Y-u5VyPD$T9-8?_
zy)3dS=nYZ}sus|M#@HuhCBsNjXKyk_j~|pdfCbZ+xJ}DC6>GK*$=H$P2$;-EQ*Bwb
zSgJhVOQ?kKG{%S$7SAO){GF6Btwj{oY+k6Wi55NL?ih<FPp)yk@76)LF4l{-v+PCK
zbNIv^uFNmGRFtaP@Z!t%r)@e1_n(#1%$K&Qj<aJ6tc_41ze?qj#ou+^(ad8vB~EFJ
zLxStd)*A$tmIb7q1~*zCa)~YI84i&>7Wz*O!y)Q~Dds=b$fDWlm<I><{3&y4J)ScV
zM(xc=&FYY_$TBeXHOiQZd?8;>aZnfhreKotq{2K>;kQ*-AOC&!>GW*&L8UeX8reL+
zP_nW{rP2<NC7x_CB1rz+CN+7xO#%i;q=yV{C_b!WLJ>r#`Q4*>OfBMJoqs?M40aqg
zqgT6wcfy(UU|WKE1xvlwuqmyNf`t_KgM#||GeEV;B7<dQc&_hZ1p^N^*n2<t;%pQC
zp_z_pAF!zp?{k8}eRYCjvvOtx1>6hOGD}b#_~&dv@g>WwtwhMIG<f0fS%Shaj?yM5
zdX$m)O!$<WplEp_OHf!&6BIXH(I+UZNPj`G%a3+UP^fS)Y+nfqL3k7p4nE!oYKMO&
zHgN~C-j?g_o4i&0<ZCbk6XZKxB@+xE*XrX#d`!>9H7w|!Xgbo!cTk7^MbL@d^_!hf
z|DL9?U;I@LT(c!4Mp8<Irt`umYKnYYogB8A9hKed$B%om=?z<f^wR6f<h1hW-ERzv
zw#uto+^2}(*EOYf_sXw$#mBs8YYV^hegy9u&*R)TyK?p8TRs>v<oq$@7<~Srx-g1M
z6;k)B%<?f4>c>43ZC3^H<k+`9I*6(xFOZDhn*I@5#rQT1I|nDUPcwrPa7}wuC*q3G
z8iU(@3GJ90TM0lP-1S*N8o1_quU7{SP{-OYp$h+Yj!P|GLZ<tlw_K-Ya;3k`Py6a~
zpTM&s)BOt?$$o!0@6`=@?Yj~D_8-haGx_?~&j$aKh8X<OQqBSCQu+tzL5Lj=`{r39
zooWx|lz~9zSjF};AD!szC9v(gFu#MU!{3}#P97n@jInU6xucxM8T|P%C;zBfC*5?u
z^YmJa(Up`fToPNx$-)=sfXuWu$%Fyn`jq>sc{T%y4kd}xN|VLQ$QDnXRiZrsITTSC
zgt5F!Ebq^qNJw;9k+T@zX%(FRaK*}1>=w{TA$NVTwXRsVB?%|q&x%v5CRrSJ#bPQp
z#TASBVn+GNpKo-<2HD5c>Zo^WvT%1Rc3Q2*v$K6Uiy>PlEA*KBxkwCGCD9Zhm=RB0
z+e}5t;%8^u@EX+M?W#I)B7)W6dZoc4apeMKEWFh+UMs+We?L(k*vgd#C^pYnLD*@{
zYrB-YxY=_5QlLS?4JV_1#uIn;STa+`kc0uPt46W%h3H?FH5d%uw6|pbOmX#|;4M8Q
zp6$h_n!C|)^F_;)`SwYBzfO0_x5jb5R%x6D!GHU(QT~Hp1vA59d|MY>AAWm0{fcq=
zta2^kw`bFH`+xgE-?y*z|5n-eEijgD*FhX+Z`Y=O&nr-O(2(gzwXFCU#<l6W=<){@
zI^n|c@zm+&SlM?I-V?9HM?42+7ajv<=W(3@7U6f&CDg&D?}NSn5VmJQEjTJ>Ebs6Q
zklR&M{)nV<IpB4Q1ABcd#RdER`sgt=v22}N93CiAYuVr?XK`7VW{1V0rEuA9J=<1j
zO)0i!<_l-6&YK~F=yK;UP~Y<5AkO@x?A2!##$A__#ED$lK1S5S)h(K~P3!C?LhhG}
z=dJbDC9^X*3#s%rBLp2hu^4|x&HA_ye383@?Rzw`f=u3=6)O-TghR+z`$WTOZ*4+j
zHMFJkORV$cV;^6tnwDx(b(-}at}%lZLWQ|fvO>7>p-^jHGia0*49!>C@ehrt(#KtK
zEk$?`ZHQG_o~fQ`*+!feld0m0nxXa`u3)^5Js&HP?}M;0p;hvjSNIa7P_2xyb@aCJ
ztJ2kb$g4lEBdz0SpWS|`S5W+HwXD)4LQLVNhhP2ykoA341ge6STbI(XNOJfqSIgxw
z@+wLCIU#u}vi}6Pr4lqf80rFRCKbdemyG=Sa?=CiWLx`=ZQuDGs>AB|dQ$z7;k`Pi
z5?IUZ>TT5P{yj)VnyDxFU=PICQaZB2`cwFTlI_94FQ7AuTE9W*8iuv$t3;K_$VINc
zvp=c6aM>POr*i8H9t)teyF_Q<Umrao-!33hO27E!fAucM!C`B&AUJ~YCpo`j5Ihh7
zmCrT^^6TNV1geQLxa$r?7^I74&Zi+{3SQV9@H`t#q$j<X=h&ww5=+61J%4oc?2v4+
zTjN8|9d0hp9_OuT(&|U)9Y2cnBRFxf(+x`<V+SD-S8hKcy8L`LuDF|XGL^gAJcx91
zhOTbL^>8dNJGfAf%tj2!!{W(HAh`FUZO@1SFrHe`aD#}WPRo4fA(5H_V|c0WMgSNC
z3=cyQF6VraP)EZr4X*i#3-mfl9n&5GJGQD90(b36%9$OZt;pW{wN`SW=z;Zhmy*=j
zL#v@g=~z>(S852I-f<U%3f+^QOdHl)z+k-v48g=g9c=M8VHvH`7rBN=+MaGq#rOj!
za+s-|?)7wY)asC<gghrznEt9a+R_f03HD<~9sVf_9=*xUfOW#!w;5<w_jQ3+;$(s#
zlwT%seTfA@Ao4t4CXk=6^kw!O^~GvVJQQE?enAJ2@t^H*Kpo#Zv_AJQle*dP{lU@8
zV=CDH@|2D49*rkvoo#>u05b%m0(H44xa~8N(+0PY)7nIP8!um&>rjA%JQuZ{K4<d^
z7=htt%POHPB>PbBRlz@ZL#_XU<Ttdxg!lUMrS9aXUaKPg$z0K6skdGAuQ6FTY_2i4
zk5e$W7sU^Dq}G01bemeo-b!`x<WaY&*3VFDa7%@g$1eG@CGms|j*T*LL=M?U0u6c#
zUb_}KHZ&OKaz<S8lfS`VMsAnCL}w4SN!kE<a=u#nGyg<3?_Wfv`DMZ5D>K+8269*4
z0mu9>ar2{S4F&PLw*2+(1s9z16)-+tuqIZt@s%gtK3c4n!;(Vu-Wm}?g{C%!RQz>n
zZ^d-CKseJuBElq^>WmQflu3)<depg5P=LTGOn5~+6{ir*GgqPzF0y=X=KoONNv=L|
z9nG0GNvViBe)PDj15DR87hNe;A3(GaWkM;e;kN3koMT@DPEz2q_UCMUVOzPm@y9sE
zHzteYl?hM8@$@73*6%`kV^V6=fpP&MmgxoK8D6`u;JaU0aNYx1@U8m<_!^$ZY8+r^
zIKaZtb*`QGs+|t7``|fT6i;3ZF`0c__Ah7804Vw2`InIv1sq_JvktIz23TCEG!S5W
zBULU-T9w<vw(xtd8iQ@AMpYqKB!8Q6ZoD*M<%@edimrgK7ez0>MQt#d%mr)`ZflJi
z1K`1k){yy|CSes<AQk8OpXXpa--x%q!syflMpa{#sq;6QR<E^ViEd(=7*AwEdNTUp
zEZ;ha=yfD=f{-DXR|7nBS+C9kwOWZ(ru~!UEEMcE<KRnUjQ|gP1q9JK;T-wQjnxv3
ztsAC_e(FR&b<yP$%NjXXHzeAcrd}QXYdCU9Q^Sr7`z$C``Leln*mGEti6&Gp>o5Ff
z5%tr4$i>9eB;V^8##CF>d>WXe9?btid!jYZHFMk3xTpJbk>7axAbL_9vt;;4B@QKR
z35a4F95XHJT;y>up-l1MCW4j<2(SpP2AOep()&#f5A0z6z~`l_9Fc?UVohWP*{jNG
zMn5Usn9+N@V>>ikizSx2q(KxBzk%Xnosu_VKqW$%@y>n+ZPe1Bp`9d}uee70M$Kw{
z+`BUuq4|#zy*s9(9S!3<;Vw(5x>BxQkIEoj|EZ&5dg118Kv+tc%%eg5`3yGqe$Mq;
zR&<*HDmU@fH}R>+@~?VzVYmCUltkwx_q7X6Njw2Qzx<YLHCqj;;VxCrpMDF&^hf4a
z91hfJ*Jv0LGlOlZ$d9NkNa0=Cdu#CCi;&9`k~{tA<#6dqts7#Z7g(YG0UEW^z}hYb
z4Oo*BHJlqRS4300@N5LnU0%nrBpi|-owJ(G=;z?*oZq>hd4r?vZTz$ozR_hf%i^($
zElu|b8AjDJ{fD|hNs&9=5>6IgXG!t(O2`r-f(!t+6WGk3)omhFl)A-Sj&fa4#p&;&
zJ_u2%b0TgzZt|gQ4Wo5cY^C*#!^R>?b1mkuu?%gz&&!Xto$h{eDEGzQ*OfPN;a>U_
ziMD;+e~L6d(EE_y?G$Z0$iLgE@m2yNrXsJ5^|M-WZ`Q1irLAP-2TeAsUn1MT9<^Dm
z2S=yc%sqIrTLCl(-)Hpomb`1p8$1_b&U!TR_>p;yvyL3n_#Hl-AGY?;Jz1@lT5Fpc
zGp#*1tzT<rY`?YZ$s7FGTC?6Ui`#-w-DXa=`4Ig21#s#XI99k+va}z5nYAfr&7}D%
zt#94@nZ{}SThcg@e?Qyw#o(vYU8o6I13O2cLb*7}DC~|EkbbyI^8F~+YtScr9lSnm
zM@k1L>{zxn&oi{IFx@%pueP#4t7cn*EiGg!xiVcOkyz{;+EPA6axT()Je@E&c5G&f
z;>met%aZ}_ODc+;_f6x;`&n|GogD`|UmJ$?dFun!$nezD{GJ4@O|G9f?&YSm%qLyc
zOVpjyOYt%*<(iXd+fihyZ~b6+wEZfD%1K3rUhI^i;MaF~WyWCUv~+F0^jLqq3yNKe
z@maH+d|l;XD7H>O8xl)4Ztix1glXclrTP)PUboGH?MaKD6PA~}NI73ear9tfk=y3b
z2)G}%$W<3BQJO3~e7aUV+z!KHYr56r`~jrP-ep-+;ht%q*ez96smR3#dF?Nia~kn`
z*E`J*-tWa0>nBbl{&OhaBY8t?-Ae_mdrL8RvBrIh4{qT*EziH@OyV-$a{If#HvU&U
z2}T|CT8okbbpg)btY@T>qyo7)Q9T30-^<*phnn<eemw8-s?^aRRdSEw+$4g^OkSXg
zjQ}hM%xK*~Y*#5~aD3}mfisA=K80h#=m!-~<R=mVaX#wL&uWeGGOKkyZSZL`sckG<
zniT~ThY3|76O+oS_q9H6x62EMwG(fp`lfp2dpOn7@BqX7%*bb08LzEUr)!rJ6m(JL
zI`|%4)-X7_+(KC8$2!Ik;kK%bOB}<FNc@9XI>KleR-zxl0g5Ufiu{-p;HG6_JY!B}
zJQlVj%&j2YdUX+1)NYrxf3J@YkC?Q6dS}{HaeG?pG_BhV`e-Y`9xT|@V5uQYbQx9w
z-4U`ZqJgye4Z=>pzm3vo1Di6q`NO<u+aNMEe>f!C-p<Yi+Yx9n82?axj0_5|Jz4h+
ztcbS%i=k<T7rEZR>%=CaZ4c@__!L;Ly^}7MN7Dg9&4TA5D|b?<X2!IP)bJNhku-r^
zQ=v~1i;bXto*NA66Js;s>vT05UvG`5XFRwTr84nQuIhmZrMwo-1MqN)hrR&$5ES{g
zU{EidwpOR65YeYd{nG&xrl;)@wIy4x;K4G%8j_gri`Dc(QW8tNMo91l>zr*n&~#Av
zq@!Y#H<=-50kPnBZBxZ(9V!Wo&&#r<p-iL&<f<HAUOm@@qIv3Xv|4u-{j6n-`h#=C
zs+<bdW5dS3-Jt8ac*`m=ck_5r>0koRqrLa5qccQ1gOoQF`PQvo2N+{LFl6fU8Z;bX
zcTrn{(aT??$ld5$D);9DJ<|f5&Gu>-F`-p=s%m!(My3e~E3aGN0KhDGHpUcO=bbDk
zl$yaPvgsUeFv4zjwmOzLo+;!jC}XwjF8E6OfNZ770{d;fMeh#QpabajX7wbq6TorT
zjH3Nabj}T;w2|*}akjQ%{JG%~+`c<zsNAzOR<=?Hu>rbSqkUX;iQ%3_IW`z4mi^?I
z#0suK4+<uB<bT%j+#~g^qw2HV#dRX~z=!*mmRJhy26U@pH#H6219@FvS`h0P?aKch
zx{GyO#QE`+TnhX`e8q?G+t(=joZF!IU>5EzZpb!aAQ8M)OVOwEvxW?L3oSfLHFUrh
zG*3VZ(SQxAKXNclyEW1v*~m)YCT)QIsF5F`Eu?rL+WH8+OBT+$#H>;0k)+GCh)hN9
zIM`##u73z|b<L!LLx55;^3@+3svbqQqZgU})(=y!soVifO+_LU4i<h0qW+1h#)mB~
zxIL@IFIbCzK0DLmXA=XpShiy={<VV^%Uz4xu)VIY4mGydwhO+CbZE&z9t1mQcc|Pt
zG^VdZ-@1CB4*fK~Lm()naBwXSlLmsXhb{hWNfro>vKAlsQ3eD@KQ&N`BX+FC2!(?K
zU5nZL1vcdvi+4@whf&dGaVQ=(E-Xvhjdt<m9}G*AcN-z*T8%nTqP{`66w{x@3=q?@
z-?Q@?m9M0u!1U8NO5`99lEQU^ts-kG7qP1ntJCMIjH@F?mZ0{1E`DQQ<#LJOoFSn-
zst$%WP+f#xx^#vRzjzi&`Zi+e)QdX@+(@D2j0vLxb-PGgdPUZqP#AKva1tMQb`)M`
zdep=yYihnfR;fjSDWqshW}gh6IL+z&HG)Qks*OqT#KkE9&P)zVBMr>ARLrR|aZyoa
zVp>UZ?Ajm7#o{9FB5XRRIzcG&_7|GIDhRq3onWi5){S471eKNK<tb{>+Y?ID=P6iF
z4tzql+JUE>{c9b5eSed{yRo+ec%6Eo;5GJGl5~OiN-A>27d@4{a!VG@e%Ww#H+s%J
z9AXrUZypF|&pl>`sN_5f2h-?>QAtVI;(6IE$^kVQxvoCb;?wg7YVpH~JJjN}6b`n&
zXDx1BO<2`S_lYh)aypmjEutObcXp8+0|(6mS;D1`-DP5X<hX4<pMDzj5AG>71K?7Z
z+~Sh|aY=N9eOut3u5!s0E@^eihDTu5U!)?xYVBLErY45xh2~0$+x~f>_4E`eS!%Jw
zag#WPy~mH6G>?UUR{};zW6+<MD2|-N<wBcR<NBR>S+)o60^Hy6eA8{>3u{$;`4pDQ
zAF{aX6gIZLKf*=Rv}$!xFSf2aaN#rO_%+|HY@VCa>2owhSsFA`lOVd@(#hqx%FuUo
zvQ|{r%NLsJ>Fr2cABt~!KEC1ur0A=8vg@W!-io9xji&BZVL((PP0s5lQXM)!2ALrp
zbr+x%*+zWp`;=(561GjAqi0X?C6?&BDofeEp)?+TQNPrlKj*pSqRZrWYXPhvS*n8k
z7O&KA4`kD6V6u1Wvp-05m%gVjfUxeiUv`!}8JW~*vlUmez1a$tq|O0nOGd1qh}cOE
z+FVBna}!@f=d}w<GVm6xrvdX2-VxiG4Atv!;UbudyKTh_W>eoOP3C|@eBwW;<KY>m
z7PImRcB*x(k9s8tw1oJMFa*5mV#My^Nu2BL_bkk;$I`tEY?+BFP7ONXfF_+`Z_J?R
zQ1ju!jE~ZqXP%YE>|kjnOf~Fp-~DoO7)cfWdmmvSJi4`eXPiKW_^MIpgXdG>LY(H}
z>Tsz>5)-`WjCZd<r?u7u*V?DtrUuBQeC%_M!~*$5bj}0n$4J7aHd4{Z$3i%bcueTM
zKp*oSWBX&)$??P(TiO)`8xYLGPy5P{Hrh~RQs!Z^e~9Zr==2Gw#12I7A}D>&>4rP`
zO16hPpG@h&)cuT2ea8~W_s-9R7L3S!hlrapEy2ozEz^-M@7T4lts2y*EPlnJUlPOY
zQH?T8v<!TIIk2fQ<d_U9a)n9j2l>&?cd_<Fm+jg70gKjV{a$`@Uj2#(3beQ=CwG0~
zWO7eKgpMbzEU9eWOhlobXoj0-D~D7QwoXQ>EBB^sC3oY@`I~;I>dT+vS5@lUA5|y*
zTDj?kN_6td*4OeYQ~5(xV$Lmmt{&M_nfPbb$Y&}O|Ms(3HR747)R^692j`=!u>m=&
z){9s_I7v_%Z9kV^T$D<jhwtHfmtSW~o^n~#D*3`5Iewl)Y@_G$a$ay1&*=IU-37eC
zPQ8H@1ivs-_t-C4sc++#U6~bKcK+a4#k(AH;Z0@gR8}I-^zp&LReA5?khvw^x|N>o
zPZq`Zp8Yai<Q0aazwnC%&S2Iy-367c-GeK~ZH~6DVQC_>POaz-uGY6r)C1P(&m-G9
z{e(>iJ{3~x+3_>4{v@YEd>2FRCzYxyRiV@KDl2QpdZiF&%;q^auj*A^!+i1@(xYAp
z->axg?I@Cq)UoKY<FVB2sq?G(D4a5@W2gzY$;B<UHPl>8z#efyBkh=|ny#KHO97r8
zQo{&`gY6!`Y^hGHsNA%!a>ZsaV*TJSoJ@6IkC}3s%yuFXBY!fmR(J@q4Q?j-Rr_u{
z=w)2pO`4BAu8v|_RjJ{JA3StWwcOEO;<@Pp<3xbn7+#Uz&1Ty<!}UNSRL0<QTmGHh
zb!7Rzeo|_!wZ+crlescJJkH?EZE|obQNHkdD)QKHue%-in{9NrlfGq|l!A7C?^jNf
z;(pYxIqk{XW0L9yYL~M)6bM$ljrQaZsVg!@Gcmr}pO-lCV2LO1GA5o(bQxHRKQ~@y
z6dsDU-$brx``1nMm_*jTJ(F9b6Ke~U83w3ALZ-Er`W>ZIWXeK6rpY&Y<wD%DTbXFL
z%Q9<;?PWI{Bs9^Q+$x-M$WW@S60es<=Y^Y`qfJaD;u2l$vu)5}omAihJx}I6`-cQ!
zuLo$;_w)UD@Yh+eb)m-JJ0k<zZ!8aC`<)|p2)4UXAou|emfS*M_vO~O{mo^J%vzsy
zxq1#hhesO`)}hA32l_kFK@)jp)+eoW7;tH@^_)!fW#Y?gb2k;ad0#(_!P&!bVV1w#
zH;e-(hr?JnZij~PuNsDNL$8JrT~>rcIuV#3086%}$MKK58t}{fiZ0td`{NB5EZoQW
zX3l8yCw4lwhl;)X`2HXLtE_1_3}7WA=S|5>!`^N$lL0?pu|xfTeKGxi=`HnNPWOY-
zRSsU4gzY`qmDS!Cti7$LXWBb?MhLI7cdWh7Qy}<>wWr0VBf#wtb}~|Zwn_c3EBW-?
zpL4m3b}aWhKeD=CRq`oyON2G;dN(Tjp!Bf>Jz%}`4HAVHj<$`mU+iYS-1{aOBNy(W
z5W~^768AnrVByCVW;oimlY6sM;~#tPt4jQxqZd_)cSm=p58!<;C5@_aJ0W<OyDcSt
zvQPbG7Vx?IiOIgaHUs>%M})wC`|ur_>}x3yydxLKhZVu4t}5}HjE1&^+Qq2hO_(Zp
z5Kro`m(Hv&p4Dv6a_{9qOwSArml4)&07HX>f)fc+u_0YGA)1C@{ql$hG~`fC6rZ}W
zDqF=)7XS1#6b`Q(;hYzXr_Pt{<$M&681~jU_Et>Z-HqI$?oS_MJhg7a6l$svi**Wp
z##uHuswzHr(U0`8vc4oEul>-l;BQLcuMQsvrov$Po3bEmlJRjdKk<)GMNa;VpQ@X#
z&zdSnC(nK}GgXnMaH@_TyF*j;bR$!BtXhFRMvig4JluNusZ<knxr=sSOpM^Fz5NJ+
z>$Vv|ao-3g&>?rtO!Jr>8o?eKLE9UC1g-T3=SC%;LT$l`MW%z_>5|)Ba+6CAbIEo0
zLM=b!9@%Z}2?Pj&-#Y#LM5&D}8%(DIt)+X#*)O&fv@_jnd7Ld>){j3#bF6QDpH=?{
z65HB&cS|v)LK!Xl`&Ra;NXeOg`G4Cl1UQK#Fv#@1RN;qbxRqIOb><@oYI=)p{_bM?
zG?$uc;8#Qm#JR0TjYQD+Y?rog^EWu!ZT@0&v(+cta35$ueju0u&;WIgKxTkvY^d9s
z0ZvAnQ3<Dxs?VuTPwrSci{I6$?d-2S*oYEH-;}o)6b0A6^YPX@OMyvP+Sd8^*c%AU
zl|cK{RNtv=j0?@@Ow1;5m2N9|RK+|Y-jVqKEzE*nU>^(j<su(r9*h--q{-YxXJ$wl
zKeo;am$rN?bqiWpgq1XJ-U;Q&$dr@&HfPL=k~kSw!{!XC&+MUI=dJC)7_3bjt-9o~
z%Z~KrZ^|@-MPL&lzPDhKdBe;B*l1YdHn={8qq6-Xt+qcx0}$YBXkdYvG(ic*+vY5(
zJOBZ|Pft$Q+cs0IJ+iswqDRk`Rl-`_@Ol)hsV6u>zL{SGv+pVeLg`Ye4J?G!kp6rX
z6`FQlOI_EWCcvttW#etILBsyA`ebqCca1WSAW1hM{Oc1S!r~XRSUUU~*voeOitv@r
zJ3N-{m{l3?OAL?0C~!W)L_+qb5JJv&{Il^{wqvkWmUOr?z?W$uT(rQ@xp=QdLqRw1
zVHnbr*J?Plz0T5xm_q**k%x%6{Jt!18%#cegn77|!>d`1!;ayd_KXPCtSn2c9)FS}
zsc?Y)tSGjSa1Ys8S+3m0<Knhfmd2SODnhhV<A#rnxy~Ua%e-!DCEO#%%JS}tEGrA>
zk+HJO(s-SfW$HFo7OTctS$^1OWtol6kO7G(6!5H9gLH<u>03ZDgC2mAxWU{B&Y)f@
zU@!wBPNsogJK{`#Lz`z{-uxXxv8A7aV#D7!ODGn3mL&Zbr(f<{<fYE^YqpU(zdX_8
z<|zoL-<@kx$78pUT|J7C>MsY=x&O?pIBmW+_YREkh-~T%dS6B`EecNA)kMvUyI69p
zJ<;s-5y#s3`G<Wa?SN;n=(Cn-#4-r66O}F70jtkGWd71uiym4xpeCKezIaOiWG28(
z(*kuroTe`SVAHh7Ka>O)&UMb6rOH?<<SG|IF-?jc8RC?joS8SrX0=NLU36O=-mTLi
zGv$#FNR<M<Id);17z$DxN_AcWqg*2(L@BZ9e_^#8X(qh_wOkbJB^3yyQEgyPPGP;H
zU&iT8<2wbKhHKL!^N98*xw4wup+3dbC!8er!yio~ZD24WX4D<(B5_1gQK1F`rb4j7
z?xRJn37sA7tah*{PiGrdzEO(lOu^<z4;w$c(BITXhy$6y$jW)aww<D%3j1(m@+D_-
z-N>H5aDv7Xi;sLt^EywhjeIuraT@WgBDgg3vMTR!-BfsGwXG(fOCO^&DZFc4HDhIP
z?#_m~^>=`}lOez?f7H~(vdvCedQ3>$vcVcgSyHu9mRuUSBHxn)Ew0xm>|Se?ruN%a
zfCE8*Lh!u{9YX|qlFjrTxQWd(8Fd<$mEkh9xpvZs$%05k5~0(Y2@KWrdk$@6sD{dF
zb)<XF=haE<(#Ebva`@4CAB<S1H#6dSr1!f1je9>j_i@7tM{y=MjN;4_;W%Hti2<Df
zkZ=8p^f%CQ^77(Oysz=u<jMm6TdQYf{D~mWwQzH;v`1t3-db-%2xH@TitG|}zy?ri
zsW<Zrs{jdbG0CSGU_3%~7DU?H>{ymzC@0p%S-b9q<O7p~>)lTNPD8>u=vy)YcPSvf
zO`#wP;a(%S(_BUe%!p!Gk&O(9A!*j>e6K%4Dll?|mpY!eSrwOP1`I^X#{x|QLSopo
zNst<O@u5P$>Xao0)4b2F$C*gaUsG%WKG7SmX9Cv+YJk=oM!(k^#ju?}di?0kxTlPc
zYmajEr9-33j@+LEWz%2lg(^G>wyY9nq7Xfv9%)$qaQZ$_IT(>|xP667T3s^JB~42}
z_#$%U@aGGDu+4eGVWF$|YgdN4XsYmwF->4WvT(Ob>5}r3Yyu!Qf1HeCtU%%%=C^fK
z3H<^owSv9sIq){Iw)f>=({0F@_J01k(3?L`_%-R7EgOucp*M|A^ybpY#c%mQ`I9p}
zqQM!tr(^E!JAG8s@AQ%GFMU&0pmXe&T}4A~6*&i(OwPtQ{8YH_9!}>8o}3#31RboI
zK63gd@lZMj9i}cGAL}@Blug<*mks4I(V^3O)87(>g0(TB9(+5pq?S`O%(r1Xy5*8<
zomi_-n1<HPL!)yJup+`A&(2idA+{t|3ELl(Hy1Gc8e$7nzR#S1`0LZhi$u5G%1`S|
zmf0!*!BAgly?rwEsMG7<vX@e5<F<vKQBSuOnVx3_J1^vODl+f1aD3>MGRKDeF0STF
z#TTbasx(M(3;uAh^uHbMJ%#9f^_QH|I8{i;c%dx)qTeR$j84r4nqL--@OfhbOP2;E
zzNsLq0}h1-D0JkZu2+_ynL^;K6}L84FcJqb&t@@3-0R3U??de`uu%m$RE_JNb*#8n
zt$N!R6h3(UC8sXX7cuZWbC_vXSAbES8n6b(J$LCays(!+sKh71;|rQMGVn(igIfj}
zjsK5JzU-0(iy`hCb-E(kU)=Ps&1zx*|M#PGp8f_traHD#kmY{f1?OY5!=nE?>y?po
zj3^}Qhn#;1b2}{JV)X>~hyycV!%CCoy1bKdWavK?dDaK^3FdB_8RJ53<|C|Tu}~1K
zg0H!s5BTKIAAK+s3`ek~A|rMW71W)h2BqekflDteGD|_t<$p&2n{w%<rP57Hqs!@r
zJF_H4E))xHHU&Z`#$!ywEQQULuM9p<?Y&F->Vu!HclyHyQ8AY{XejVAWAgAbmqw2J
z$oDv;C!wd&9JIGiWxOI$6nyTy99d>!3{-KM#tfARszXdf=j^8z_2X<~AoCs4(BY}^
zR6bgX6Z}2aA)7ks6_fw!aI!Abfz)1h(|xn@L9raId_Fp-K{7t0Ve(?D34O0}8cpYI
z44Vl0nvj<Kcg|=qGpBu+HRMss!r0xB@FRZ`4w2r@$mmK9US>NNWW|9H0lK3*S^9o(
zh|P|v*4YY(x6i;JjO}@?^iJ!XDYShmYN^Jy)_*C-7wWiWIv8=(@g#)DsnQd09;H<^
zcU~9{gk!h0x<3m>9vEIDK;u`fg{BvGn`bq<-F=Y_T&B%$ts3`iv!%P}+|YwN3MjA=
zxpROaHkPmu^i*p!2O@^6`e4hsf}WIpTBh?}a)j8_OkL@?=?G3cMixH&zUBgdZNvig
ziRUw@67{+?xYg=2mCQ65Un;~o8mUXqm#%T(M{nqK@%}FP%pwTwU1LB4(ZjROpGhMd
zfF6#p4uPScP7l#@9I`NH+RrobLf>q-sWC%5J>V;>9SWVppL433#`I%Mlo3z0$RLg!
zvT#-8aJ1Bw5Q2`x1|o;3st)Hw^wFyqev80~xIS{|u^}79i5y;DXXFsy?8yQAFdNhp
z>m_&1IGf4`i>`A>k;+GmSYfCo*yG3lN0c(eSn>ZVr4-y@l=A)`j8X>c2_k_~8vh$g
zakgmbMiSF=#mJc821PHQbCI4#61(SNEqM}{B;66<5y(-$7|eS=&heHxy8Oe6*d3=M
zA0XCieB^4batf`OBUa<2qpg2|yPD1EIXhFNa@>>AIh%M>HS)>o#KYAipQuheQn~55
zN)|)aBc7<td#8HbtI;`+k;Ag;bfIN^y?W%+)rmJMH~qD8#Ybd)x;pQXD*7aYT=lq3
z(K#tA@@#a@r7Dtmw|e9j-JCO{a??wdSXHY>Y^lzBL-&e^Q&d4=Gpv~GmNNR8ff1Hb
zYR}F$MhI;dAl}Q)Sw$*Kkg!nY<W*5)>2+rM39oC``>FPRu?2$EuGb8EzSo_b;d=+q
z*?eoB|GvOdwv6oiHr%S|-$Ln6;Z`+28jxEVtuZ0Z03iK)Gq^bg8*Vk+>J_)j=)tDW
z8n+r`^?7$#SfDQzas=a6?}7Hgg`139HMrzQF8QuY&Tz>oE~$3Ou`c<BODbG4+9e0M
z<N%lKcO$HCXBzQ3Mj!t({i{vjYR!(P5JktRvyIU?iWTIXf)t;PcY~Yu6&KX~c%fkm
zL3j>=rIn}z%G&s{d}6+C%M-W4yyscZOwd2R?o^hJTDMYxLmGRxCCEfH<y2&=9nbX4
z_F$TcQ!J)pMQT~tX2MzMHYhl&Hap&;b&c0dw8>YK*L|JK%lEyPhUYt&+k19~ZQ$({
z+LzKmr8y3mb*BrzqAldc=d@w$>&2;RJDD3_PQQ+nt3N8gAljx)ull1R1&!C&AGK3K
z<Er#Sd<q(W#XOzGuPj|qKl|n@)m9eI?3X<vrrxqa)FqK+)P@RYDRx&;m;T}@XIy0r
z@l?(wlE1~zS9huCeqYgMy)^Fj@2lEWWRBN|f?3U(H6`<-ySpu~5z>64WfRlE7uevF
zY%*DmoR{>|R^1`iKNcRMy<kbZTTfc9TIDhUk3g{<09K51Gdb*IviQE!r89>HEVsu%
z9GhG1^*JoiQHwVQhdu5Fql#)W*?B-dh0b7p{{U9BUVs5elCS!+3HG~ZydD(7j`74p
zZ79mtVi6xQ;0jqDnaY)^TqA|Tou=kyAcTHAwbXm0WqRE5SlDAfX)UWXmnc?|gP!;H
zguKhLfFH{>27IzT;mzl~J>mXYSyhbsPpbI-v%ZQ;va6{0genY-GD!?C56gZdQ+E5I
zSi)k-!pWE)M7nkH)J!c5#>VYM24>ZddYGjOce0}=e)}dS9GvQi9<)KeOGu{*e>F+<
zg({*<9FiYQxL!({Y2Hk$4QINm4;vQgXGk05yHokY$?o<Kb*e$M);H6pU}w6#&{LW8
zXQNF&&9;(ly&749S4kI1(0D!cA2k&<hXeG{zwv8bIR?LGwC4y;`iD-z##l<|qO?lH
zj9*gl)TjCvNe^*jx6OudAAyqcNmq!K|F|d@$JV+txR-y%us<H7ra1Qofdp*(wLi$+
zK?uScwcQNJs#5t!XoV85G}|n1?8m7p%$gyliDL^npE&IKWf~X7O}(6ndO5);MkL7`
zH^dX;`C+1Ad`&X4_gLGAI#jQq`SEnb3tJ{gQ|)Qo&9<P{Y9U7~!Wcz@_CK>&en^NE
zg9InN?PV4nD$q+f7Hb;yy)-!JJJJ$Ns@uZGz;9=3vWH4X;_2by*X|@l`F{amijHzy
zNdNKNq=^l&HTc{=Os^>U1-Nww%c2~4V)!&tu+NEaA*AmDVnWgB-xNR%;!NUy5=UeS
zHHgfNY#_UCJ)<eOxD$Z*Z@nJGnN<}(Tuh<|zwH(hQw3!Z)Ao|Q!)$|fBX?S4t#e0g
zt*50b0l3eE6QE+bj&H97nZ14n+X!ua+v|4l_|F04-8n+Kk3LaU{Qk^XG>q--&w!W4
zdTa;I%QX<JK#Qs#0~%{RQSLf>Fk^r><oOM*+zK3^eFYBMz5)X|<Oc+|TS2P$qg@n2
zR^<i%QEHSQCH8|Z8Nsj`cb5Xr)8~PAC&MU^A!7lYw%GSup|xJd%QQ^2uA=jSepc7m
z@&Df)Tit&#whDC=zGDzI1;Uo3GJ^6BSmq8i?C?Oef!WM~uP@dPFk$?CFqv<p#&Hyy
z?X&WL457l%xD7IdJ5=C2JB{8e*<;fZ!<kP-2FbQ~2AjIvq_P1}{EwZpk)d24`j8>_
zXiKKyfwoI?vzi-+SampXgK??gIW=Qhw##1qj+VM+$dKt8P|q5h-|wS5l#;WFklS#k
zj~d&_|Has>qsUs13>ErClVbM#DpBJOmJaK~_O^ozE^7`lFn*5=>SE6u;)#19`h<A7
z+qFwicTAB+O`X=ZIoZn95m?-r6wqGn&6+c?3;`(->h~>?VK9YY&>AUFl8}6en;D~3
z`Q0vUO}zguZG-L7Vpfcgdw<r6u0|F`Swi{N)viXG^Ln+(3myVh%tMX7Y_x}Mwg-C`
zV=zfqBP4^Sz$DdA=EGorpSkQZM_$2Sz5V(yDM16<uO+>tz`NzlQft>M<&a~Ko&^{a
z2M~`<2_GDC+4{vqj#KtEP*_x(H*(mPLuly`Ql}zk_kPj9T_HM&VaqduiR(x3DxN0}
z0zey(8w>FZg^Yn@zV|unZ?K50`dgNKB!-PuT%;et?@tR+0npCVCmH||ycLm#N~P&G
z+ZVqx1PhO+X2RuJinzgMbkz4&IJG)>#T;$tXIX!#w?ViCnmYTBL~W?e$(B~2$OauW
zB-Myxbe*<H(!NrO9<*H7L#ZB0{R2Bug<trkOmf9vv}Aa>60&jX1T9_HILCyraZMBW
zV+d<k7Wm;Z>~OhdgXGziYu^`PoGpy|8Lfk&tHG|DogNe_**Wt2zr`<;)eLdHK%R|X
zCXo5iZ6E$~{Ms$Oef+xIrb`s|-{9BxU)?T#Ri664ieK0K$>Udxj)TK83qS-B#te1*
z{~!E1_IkswNtO(cEBU{GUrVn1B>Xac`&NxTN8jek1tQ3GXST+59m4(wAt&<)aCNj|
zuW?9EXr`Z>($g-n!me>l?;3vkU~>1G`9bmIZV}n!#FIPYIvK+Y&$OiY7$r~}k|D&(
z;5)dghVkS+uL&BJ>6Dkh(PgfM^zra)843w3=X@9a`pOYPsODQ=!|-z7rU+Zdr;(`R
zoX42tehw5~?o0ktc6hlG|1JzKcln!zMr^@z=gP<-=C)>1!Erz%8QJNJwjLY{i{98}
zj*0bHcEtVxe=73Bh%5u%Llq<TdcDqGo!mpAVA^ulgljmT%dCzKmHr%l(c|`0i=4ji
z`08ROR4~R#xJVw!Zsg?AGVS)j4mPVj*~jkWh5J;6Op7ja(&b1ZCMA>w|He1`Apdnv
z)*#)Xt`T3zcwZiUdA9eZY;-bk$uglo{jLpv6ZkOSjlNFV82wbG@JbVgEvqyP*`fa4
z0u0W@hmvExsmLjR_ExDMTSshJ?)9A<+fI&QDzxpSh8J`0rH!CsOFi}9Yf@U$L$Hwa
z025i}%U)0-78(p0ilaj+vfmot?mvH=F=ctHO-{Qx-Z5)(!uw(hdWN$cisc(JA0Hry
z?nqgXu%UVB+NRd2`L-r=8TpnS0+A}^2Wve|McVDXNQVy#1Y<s+n}zb-D-I@>_)@Mf
zCX;yRb0jeMpg07}-f_A@U51w<_xy2H<a*pX=}k?3G7D(bQ=Ls@zX@~}rhE!!uxd!t
zMe4>{^%f))HT-9bdc&(scji0Gm+#JyPwtKyzEceX+l(U8Z7(v4$hmiUL4j4@G$+%J
z5fHW@Yx7%3AvAKE{}gD53_lMn<U0|(|Awocxs!Q^>M>S#H%<_lXo&jrkTt+(Qx8nT
zpv~kANH##Hnd0#T=I#|gaprDN%SXhcJy0xkuXDb^#tTA3WI0@5bKQrKX0Bt=K(Ms1
zmhG%B=J|%5Eu>VV1Mhrb*8%5_8eMN4fA~~%im{I*c9pKuW^F3+xpiKNfIs}b*l3_2
zIB0{Z@;7$CHXqAY<xS<v;h)~Wt_9>lpLhND4n^?K4vmK{8hOb~*}8(+s$opErT8N<
zeT3L=U0EWxwp7))d^Xf)_R_1wbG}!Id|<DQ?F*`$N<-N`lajM;M3*1NIko8Qf5U(?
zas3ao117U|c$jd73U{aghlD#^k;yfUgW&d-WB<Q#`QUHo(@W0y&rb5jMdF&4@83qE
zvwxzuZ~zvP{*vKQR3E`w$~7$VmC2lB*-4wgsiQv-XRNJC9*?4Za#6Lyl)Yv65n6V2
zA339x;#?Gz8UbYijLBzNh+FL6RY*q`bantQvA#P8xNQY{jA23QNCK5{EJ@JN1<#yA
zS12;~(n3J~oVOD@CJrSW*$LZ(BYWRMiX|J$-B6OT($QOcC&>4#p|Z7`^#E&5q6+2t
z<z_9*&C0}c8HcrXIs!POGVcKy?dpgFRK;d`;-RX<6LGewExro90}g~EqJz5Nr#kTf
zeJq*SL3}essN4X;R3~~WSA0-3v4ew1He+IQE+c~(@8eY3!Vs=s>z2=eaE8QBTyTtO
zh8n0~NL6aWM}6n<^DFb#R;8wV#5wv|U#fzUWI_IaP!*&x#W<SJd~4Z)9yfa{T0`%|
z>csQCkL&AHF@i4oqlZy?SmYl-2yc9ZjT_#3hdO$m-i=y<Q=T)bdU2g4&$#4qm#lTk
z3YXmNk^@|U#qR01F1f)a*Sch$OA;=5w+({*R{tG{K6*9%^?qS+j{d6A)^e1sAlhk%
z<e0^p=<<E+5*%hSUZ2>XFg=6yT%Y(hL^CB{zl9fd;Kc{k*)b1xIxdyZ6s`C`#*EJW
zX{-uo`8nf_ZoXYql{ld!Sv+#MoP1{$D73{ppg}xwY=M00=j^F$BcH1r`CL`vA@3Yf
zIpVqFQv1OtxZ<I6spVFGnP(>8%(9xJiG#taxbR<uE{!J$=|GGMA%Oi;6dV=LVjQqk
zv-;T5^my=m!YDVBcE8Vx&^KH6`!I6izHdy9ow=Vndr7GdN=X6{kkG0DWZV$MQ8tKV
zn66wCs)O@s!}iyN7Z!))A%5X_4Kc1SA&uu%u6U)WdY85OJ(%AG)w`_VcWemn0Nh8F
zi3daHlh#-A@g}Nn@1A*4JaybhRpVC7{0;}`Sbx)nanD9u|Eg9}dtFwYnD}Htb)xFY
zqKV1j5AS=(pz2iFlT{;ERP$fr(TtbL+RD7{WBxzp-UL3XB6|Z(AT13NIw*0XvNRes
zC}L35M1yuPz>PK<1T`pX6l9`CjgUY_SrR*ew9N%nR9r?G9UWW;9Yx#|KnS3+If$YN
zqEc<6;xe+SdEa-cZZAo|S^mHG9zV_PTld~mr%s)%PMxa4R$v`*)a&}N%tZ&Gpmrz=
z`JFs%>U4PM*m$@U{Ot?@4t@(swrqUhnH%?soMN?B{fP8M>;e{E1MY7DMSaM`$&Rfb
zw0!UH{}gG-*eI8-`qJqRe0-b}1&HxC5LvAK`6jyQH9MO~p5U{Y4MHY!g+1CN<!~gp
zpqvZ<UU5vb$!D-Mr+~{iAG&8fd5aMk9J8r?O@`yP4Q|a_a_T@n>ksVldhW>PFMHHh
zVejs|!RJs_v>xyov<o-Y$Fl-;+JCXbguORe$!m!ht*SqCncE7T%Y9jDc{mQON;w_O
zh0>Hfs4@-(?Lle$LX;BT&>0tLc%_i18lch={_!feyVd&EEShlJ)g|3{>w`<;ymfK>
zq8?`<XaMhM#3A~aTbS_*)Xl}70|*2zki3rx&Ru$Te;Ts$nX2IUkRF^y0cgbC(-o!&
z`%wfDG(`l?O=S5ajXzXLC+&biN{uT751onL9D04oSFv%A6+Gb1tJSiSnv@|(4!YQW
zd;#xX-D4IMX7kpkYjC_jJN?T|9Je8(A@6Eu+y+KL%enJvX@(5k3fZ7)ff_w(n0N3u
zcj3x^AnEHr)3MUyB#zdSs6=2T8u++o8JSczVXejw^%fExd2~3)A$*1kTK6VdwnR7L
z{iQz$2gfK>3bg~qdrWEpb)fOeE&KAVaV|q(yO+I0`di7^@sqwP$O^XP%##e@z?=1a
zj2pZQE5Kh_S}WogXeLCrUBf=)z*Ud0q}u}xUafweUL@@^q&vG_rn?g_I6jVvd(LNF
zt=HOB5GRi6fI+!N44kJu>3Q-AJZW&!96^=NA}hrWfQgY1Uop0a3mt1`jxZMPE+slj
zJ`$<Yy=Q#sJyPDHx6r{`QO<wnHTfLeBd-HoTb+z}>Cod(0%`+ua0%xyYv7!9qS;og
zl}on1>!UBn=*!Vlpze-{CV<81I}Bx@u(irNOouSMVxgYZ0dKhA4B)cOS#tIHJd5fX
zd8%EBE=4OiJmSCQCe}c{luw);e?VLr^#=C(Cclrx;ZS5qXnaHznT+b7MbF2Pv#dj2
z1l`eROSq^3Vr9`c)gzZJ;<mzI$8WB?ngIlkvHi(d*5jNt4;@U`3~n<-*V(~oSa8GO
z{$E6fb9)H}WQN(7Wcy*JN{89kAuu3yv2KJ2G$JN#7o02zAiji6DokzU4nI)iSZ!GD
zyB_;RQL1AzOIaPkGa*C-geSFcWVVJ;W-mT%lo?*A2I(xjRX~1r^c6jrtWBo3N#4}@
zO;oceA{2SauY8upAL_lw!V<&FmJLMNy=WR_8vE?jhUp#&W5YKM=<`LX3GB{3s}a5e
zK$b^CB=+b|UIc9H)1Q&OUk4b4LIH7V)KYo-h&ZX#>~5q|GqE1!>OhESikMWsVfr><
zh^s*yV2CRqgU%Eh6bj4{RTRY7^cT%6lo1q;QA=PLQA?C%DsH-dS?cA5j^Yd8{I<HM
z*=3*<+CNi|!0m$MG^~Y6AiUFf)gi@cGY}9RDWj&ka|H|;Ta@Sm-U3^#&<yifHb$}_
zb<Dc5PT?_o_%34SRcF4Xu|osRqd?<Ue&mCj7<2E?baNOxPs%i_q|kU!1Lq{;bvK;^
zEr81#r~q@cK13z*+{@c6;|ybxe=Y3I1zpWyT6dT%O*i%1R$*1WYPf_0ut%{H15640
zwC<A1{CZ@Y#(n{+ppAON>}?BNo%s<R!KpXltd=U{-%%_7XYVvXLYl*$QkDL=T6E}S
zefd&fwoHQZTp1t40EK?pdstG;M)d$?;?5X_3+hfj$bFptEpYZzeUAF@!278-k@k|{
z1y<u$4&`7Vvmgr@)eHF8@#Ubt=F9yCtMO|rll}Z$Yq#ujg<MS0x*uEXwp)#nUe;UH
z(_Z*6mG371$n!1g4iPLq2SLt7|IS^)&HbOCM}~g1=rYxHz#Vq{0{0Z_&X4U|0IVFx
z7#e~%TLldXipF@vtNd^75uF6qCXZ;@WgZn#xQ!YLLR!u`po<+SEg8*DFQ{N2Am}0P
z0pu)6T^raXkiFD)m4cA4ro*Dl+RtNqP_T>0(F^=VB=)XqxkrQV6Oo;%y%*bc&N-|G
zMym1>$Dak-K+hdYf2<2fc2#hji{+$ZZ6n31F%!=$3=bBgk<>?Zn<+=EXt^&9D(8My
zNzhM^jXJ^<B4o{tBn?VQ_Yx~4N{Ppwi)9qm2ll6y<Uc+yAz-a+<+EC?!5~<R`G(o*
zmDH@}JznP5#`DnMwS3ihKj1TTAdVssm2anih~sxib)272ffa1Aop*?a<_X)GqlFx(
zi)MczrhOjk1=;7|8a|3v2__z&RH@WQILiBsV?N+lkLPM1G9hCmTWbY>2rt1<kEj$;
zo2rho_YL5aCMc?}#%H0_!&0R`s<8IATTIzlRaoz9)*)jthUO@BAM3!<-|ZOre|!eK
zsXZ7E(xZve)j7fdYL!-=o=pNZZP(|Iaa3mvGZ;5Xl~=R5<bU9b1di0J_i_{fl+PI9
zu#cU3B3&&mR=%dQW*{Jp#6=-FkMX3m;TytmtM~ft6bfn`0Kp4SfwD47n2Xi>59@Yd
zr7u6zM-xE&pe1Ms*;Ra!rv6z#I3kT&nk#{%(1Vb}83dZ!gzzbd@)dSXYi58K#$y4V
zVrywD_+$7(6sh-?i<VqI9(u7qoyr7#X3kT7haVl_JZ0EW3y&c=aHzmRNK0QE=N=tK
ze&ATo#(P3tblE~dLOR@;MKDUH!90O@)SA?5GxM_6JjqgbLVdI8u!^)#&^SKIz$SUY
zu}O1{2mfs5e3qL-fz_5<(as~muui%_Tze%R_IJMBA|7@zI#JRU1Y`81-Q&KY+(d;v
zLJ>#Lrm4sKX_kN?Hn@5DGz)Jpc!z9*)x^z34%-0rY+;(douW(w>nolXn8r?hNp?SB
z-vV4wEC6FzB}+a2pk|c~>iTjtYJh1}tpCuSiT%(PAXEkxw)rPC2-q4HM@y5`b3bz5
zDLx8dDZT0mP?0yH#KDh5c&D}jFXRLL<6(|Ugt_V#z+CLW{5^QU@qEymFiCC*j_Q~Q
z@3sTO^Gpv?wp;A~!ZuTp+NtL@QpC}N&|Sh%Ft4Ho5_7XM2IxSJC}}Ty5glN1vx;d6
z<Qt}E9V+HUR5mC8sG7BfDHsyE3adcK%JKnvSHj3MJ|&asBrQhGV<B^@$r7`bhTzAo
zG#=&KBygNaphc4bzIna|Umf>Kz5F)9HOJh5s%D4{N{DdHH&48LqP2odYf4*$fki!Y
zZUeFgTOdIZu}1~iU7~I=g|G~!Gk|SQxHZHmF$1f^-!Qs8afzsvH8+7XFGqpX`z`rt
zDEcak{OKis0vGg^ox0~6hDf01@cRQ7<O9FK#UO!gl(AbCOrdV(Hvuk=z791-9&g33
z7Xv=ztc+sFKWK`NfRyXX1S7305LF|yIl3wlWw-ihvaTu%Rb?+#53;IxPKy%w*)u(W
z9TQMz4(rTjo!Op6u0Xq!lk$=$b|Svn0Ftw`vV#gNC5e{1uEWD*b=~V<H>+}-1)#3@
z@P}sgRX%<VFT|gje*9T+E&jat2>uLQ|4Xx4JP5zGC;!^4zQtfo^_lapX0_~%-OcLn
z-+b4s&Tj^&C-PBNf^}l*#^-l6t3}_UtpA-mo7E?O_`X@)-(yd+x??9^`Stamn^o~7
zd^_QLfO<cSKYuELONaeue=&QWK*hT=$Sxc&;hLm6EYgNi2*k7LPJn_>&6f`#T_U;m
z$jlSOqf?{a;@cb)t{CcO##_jB26~k{;hu-Ru~F3tA-ZK92&fZo_w09eTM>OoX^KHR
zG#=Vv0!^i8XkT!PYTGq?K@?gy+&+CUXm7q5hg%nc_Mm}Qr=gvDPZU}@pp8Blv|Hk#
zbrooS1MPSXZRGqYv?Bnm%fX=aj)&$EXuq}BEnVT3mae-$3auxgHS9YG-8Q@t*V1%>
zw$MN;)zCg)6om$Hag9G1w7Pg`x~10|XdN}Q_OX_p2xyrHgLY;-G~Lo}2HMly>)dvI
zbZ->5lW@Cn??GA`em$<Ge~^|ghmeuqF3`}Dmq(%T#LD`EL3=13+TjAN%0S~L>-fCK
zvr%Z=x#FyYK^xW@+KC35t)boWR1{i2K-;<JAT4cvEv}^+w@;FFOZ#bPp%`wb0NNu5
zgZ4r^G~K7O474@$ac$SNk3?~Ua&r|O4BD7@XdG0BTs{M>TthoG5{1T1!rL7TT6#P*
zj&eh;ACh!SyJ~2c#B|81fcDbvgV1fot8sKYLZJQCKzos+W}GbbY81EAa69f`(Ebz;
zjfyhly3{}$p`qRUP88Y@K+8B7w3FhY^%Q7s15HlT!)nfNqtJ!|+Nz%q($Y^C$F=lm
zf%aN+Uy+4-Id-;P13rvGE5hyMgF%}e4^3;!G6U@l4Q=+UD6~rft>3|*<;O$Qz0lJ@
z`;dVHWXmm%Lc1KdTmN;Cmj3ukTuU{Fto=>5v`Rzk7vqqzfOhx6pgj=}jYbdqKO1OA
zYG^0MbZ-@)6-1%YjnWp-PYVb)MqL&UO>3k92HI2fAZ^zNZ%Iq(px|rQBONg@V7ngP
z!BRLQG{KZ1_3QWa_{_KuL%!6>T~5MS`Kw>iQbcrkk~KcR1%>!LygKglBl-DTEkD0W
zKL4Bfd>`Jy=Oy}ctH8|Vu=Z?zKCR{FUF7pp^ZC>I^JM+`kw?dUemp<-wfy|=sYJey
zd|r7CYJL(0Ks=?@r>>Tt{#8Ex_7}DrdxHgC520YW>koVTCSkVT@v|&@U;yQ6B62<>
z+i*9Sccr|Whr7#ocRB9DetNI=z;P@nWWg^CQP=~IV?hoJo|OXENpBvOq)tEq9`5M?
zY}sS#2)=QFexoZ)m2$Cw=e46Xi|SGE(@Yf9=z`@hqhLD=j?o39z?o`23zl-=Zo3}c
zfPzLAjMWAAe2s#IEO6<9qZ?81C<~tC&>ov>zJ!8VEEuW_3Z|oA3JVlR%(iREmnbM>
zK~NXmGY<t<u;4^paOIOIIG+WpITg;B2nuppP^Js|KY@ZQ7NqKeMPOX@2NpcPM?N_P
z8bBSwf{S#)J_w5XR|o~WnBk5CY@bKL7c96-7j&A9f(<M<RTuQ*Crencfk(30uGfMn
zc!32Ky5JdDA~l}{>AK*HY81?7!6KxktAAaCUnOQ0yPJW3@NoE)wO_{#MZ|??|3#lS
zuW$7{!M~q49KOAmzI_ILdkmy-+7U7+@`VeSbl3-}9rYMr9JiF?YKdydV9?Luz6_@L
zSzwuWsao>j7u?e30$>_>fZ>xYEBEY59J+XHWT7*<XgOZ`x9k7%_v;^|>t9{+AJl(!
z%kdgVia{tSjBPRIK~vR@7f=tImSeQj2rcD|2{?d&wN6sY|Ds=#0faAZ95;~IgksH4
zj6Zm$-$51AV$3L`Rm2P!rIi)D6Y%3~EBA+r)B3N()MlU11!<w8wA@uV?PQU!8_s;`
zmeb^!+fXk<T4xA}y!~(S|JNGZ$&5WP2k+sjoPgu_6K%?t3L?*_`>qCiUBi$|0)Kd>
z-=*;@CXc|J@{i^boI1ou0D|e3hKlPr0RVdCc+z}s?r-jkoe=9v9ZS6pzLXIc3C8a*
z5SLjPDt~<GRokwJ%Qq4BD&>Q6lCuarR=iYQHBWeK$5lZ0Vo`D2SvB`;oH{MT^<%>~
zun}?p652EI_xoE=lx0jmJnHl*@J#G@wbAb|1)3G#-@|~}f%|)6#ew=7>x!(<QOGK*
z92T<Nq08O)buL0j2y_&qt9-a#oPh{vMOyzB{cHunt}>Y@{aZEy6yjNpkxl6R5Agq5
zwfIVqYl0?Bj2?lV=&`<tLEwKQ_b0JmaC%BZ#Zja~4th$*;iZvyFR;wLRDE<GJAo3O
zMhQn2<gt<E4#{KiCI0w0J3Fwmi2P%bf2=6~+->-vnDtH4oW!;O1@t?)1;5JqE6szY
z997)7B}08u4h4z_+2kIt4r6I4sbDBX&q#B+sh;2wN7W%CXQePU;E`&HNMKpfQq@@+
zqwXCI68Q{AAtx0aCCLZDW5dM>9Mz(IMt;G;j5(rx=qRm2D~TnvX+s5Fy~>vvGKC_2
z_iTntDUJvp^ad^=*WRD#)>R&d*BWK&t^<CJ-JtW8LAl8YS3v~QfG~Ckg%^dFR7D*a
z?L#%}UJ;0mR~Y$auONBu?8+MSO88F+s7n{M!2kcIf7B7+F19y|y#jva62Dllpt%rd
znIAIC{?ISFf6V4nn9Z0c{ne^}%H~P~|8@C)(?1i(g7<RRHyGaWkLjC{#MQ^X$rHWR
z8B$P=pp0nAXez|ZLHedQC8@>lY2%kgW&{HhQUFmewdNi{t{BKgrt@<jN&grH;?G7P
zV)RC=uR$lXOrTeLp!rnc9#7pUzJpL^6UoAz@z0b3h-}-)x(%}YX04D?dc&DV5P@-~
zD@FI#nu&1{ZL<VcH_yrCk~qDYxx*7MVXdBP!c7TpB#{I+rM$@?ez+;;jn~{%@kS;d
z(c{%b3->zL!pTUi)d>KOq~f{c8sMHBp=Q3T50aQKAJ5dGU4*$8@*Xc)QqxSm)&pW+
zEM!WY3{xlEE&a5x7)*4dc(r<+n8^8kEP$}g!ZqGMX+uArLcS6G$nezMkF{At91xPu
z;fxjPYjotxcd^E(jzs$Gv5_TYi5Ne$0l!xieiy_JGm>NQu1kdXA>pn6AK<0`K0MC1
z{JwuC6aPNVmgs%AdVQ_qDdH9q7xfPxn<JfY(q#~qf5$(x3o^}o-DT|41I*Vs-pD}d
zcQY49c{y4NU_|1OBlj&9#$h+&ror4mWf@Te(q7*D|5%39f;CzuM1`7ZYbHi%73v7s
zOe0uxO@dg9sl&rD_YHUb;Y%PBGmK1#P|^0iXk_APkqM*9<Pzgw^2dMTPdx@pOa2C}
zTlrJd&pUuW_3Oz0kNv6c=Yvcw{HanP)!LsDe@7;_66YvwSI*BS>v+v+ar32KD`<H`
zsrz^KMTnp(3&Z{qqzsIVC1w<M%SsESZr0D;c-~u6E~sbWeRvMP!&oHa9dOPZVy7-a
zRwd`kk=iFES?WAf@>liL2%ukJT!UDD+6B)3Fsrq^X$$>qW;KPxHdm;+vAB2KLa2U|
ze`@$|F~hcz&c6DJ?qjXym6m;8Gm_0ZO&(|kms*S8Gpr;Bbbf6m|A4cKvF+$?IUlFb
z50*U%hC1(VYuyg34-V|y-);P&@EODg`zud-6Nxk3Jb_-kx6jY6_oo1PXR+FFsGtqp
z;xe$L8%H{@R{gEepVIucZztBs#8z?mdpB6Q`zB4oAJ2?;*)%v<@UocpXLs(Y?P~!*
zQ=2hQGfkCZ<q63On2x_P6pBSA6o;mTTsaYO;K0~iG#>0=g$%Kro#t7tmfQ|j{(`Q0
z5y4ulzy~vO+vA4<2ROb!0gaGkK*=~{rrni);FyS8Tp&jnY$4X#X|uGF;J`Lk_$2hG
zdhZFDsJv8PF4C99!_nb~Yf(<<?<Vb!e8gF+nw?rRKC4YD`kUIo<j_>}C$^ZIW3KaY
zjjBuxSg3s(r0jBd!2^zDTi^)fU_}&mT{z$E=ibU;Oc}|KYf&Fl{7XrCP(8)N_LC^O
z{c1OsK(MU<VGMOp6C7WV;48u;xTmh3lTdh16WyqDCYkJRl+6xnd2*cRwQVj>z$dRd
zTWpw}Z@@j9h&6@{^96e+-NNxRoE>sj$$<`y+mNl+2r@TUoMx^292soAtXE@cYB=LO
z21j&p%{IJyE{o+B`8x|x4ga+ioBqhYa!w6$kTN?1hRQQMuYHx|x#MI`f#A;Cy&S)i
zJazB1V*zrnp32~TEqxzsIG*AO+$T?rS7%!wrcNN?QvQ`l;quJ7o^RwfdIIme@zJ90
zovQbrQu(>njDwmRJu_ZJq2xGYGJg}!gFe^l-Nf}8p^M-pcRQ2<hQ67EzU_dxglEPJ
zlu7;=&kxc0NHj*b__0qr{Z)#RaJK4EbMT)1W{2)s9vvF%*^AOFt`M;=PnNSuJ|Y3_
z^O50sk$ZVc+F4dGFO%H3hviZi12gO=)q}A^hlxU9BHKbZ^)kTgg@uQc&Xd)Li@+?N
zS5E)Qe;5|vavNl{GI$wu@72U+W#!>kuoq=o%wx^6#i#};0-Mw>WM4+UVvQK4a><K*
z`g4y`n4N57JV_(1pr#q%m~%LVS#}DO@xCy)ER`|a7TgS!0i-kvMCisWLVOP(SR0})
z5Flo#mCd0Rbb})$Ksx>DuYmOWN_0{OWaEZ6K<?ELV*0%hRGr0~(FJ1QSvS~jm(a}&
z2oPp}L@OkAAqW8t$R0)YR7me0rkc4n4!Vfxx}dt^*U&(v#06a8B&M4-eaVn8bboNI
zoU##nuD=W~kmudNBvJ9-)GaO<%*zKwdY}&sd<4)W2s2%Y7_zg$%}HjxlX2u^-$3*;
zQqAlM;G6e7vt`k%eF6B!0^b}3zJb;S=0&>hC>+H=FIpzmI6D^>L$QqqoGqT&pOZPs
zjKN~S=^BOOYXN7zfzu!qvLMFW+IjA{Pwr+K=&)O%BXLkSpx*}QyQg7_AJqhJ1?0og
z_BG+7bbx%spB*#7#Bor<=@kt4)frtALT9a+;@&TWDUQ%g!Tvz|1h3%Uh^>yV6i$Xd
z)NRHAzM)aT4D*<`1FH``vu$E+j{s)Ffmu%^1RC{(F;_L8;eHdZPUr>qTg^SK2A@~+
zS|b^})|mCy;zz#w+wu#}#7>E@+`GSqE8w<p*tpdP>3otH2+hGhp|VpW8A&%dhu<Xk
z+AiP24oPB`Q-qBqITq<eWOy(t-Obh{xnsMK1e-ZRP7uUeZUy&BE}hD#05!N$`?H6f
z3WPU>=A$VI6{ui|=XWaT9bW<VZfvxId&0}W?&_5Zrh=)_3Z%he`$f`O!8N~ELBr>X
zEx`WXd%{Pvf=hJ;!344TOIk~@vZ7*D+_qR@x;IIEB>UnVSR7=J=9oB~;)s>iLLBb;
z9XOlG9&NxWZULt-0S=uHtgs7V2IE$+>c(lg@*`LdHa*nqung_3u&2Ye&>~w|pHZFR
z$MxjSHxD>HE>b4CPgsf_vNrX1di<1a(ji@hrJ(Zmgb}T5R!z5}yT1iL&5lBEgP+F#
z9`tov<GS17r`1&Ne`Ez@*nS7ApzH5dP~KJr$FPD!bOlkOB@#326XB$j`zdobZ{-vg
zj1`OvQpD-k!O3&oJ<lPngxNq^8W<x?m7TR&fkolOQB?U#in-%k%0^#sEa~r7g<s&j
z*ryMQzq?Ui*62&IzBKB~YeRsN3oo}AzuE<vO8dWD9R>e)9{C~otd1DN{}pFf=a4tx
zk?P-r@}pPC>tl$Zf=w!Zh>|Az1q$CV?GeUB&3ftU=qEH*X~<P~vl=_K{nMOI1|O*4
z!(TPio8|Ha2fn0A?{3V%yPmpoShxNwxw2ukwZfN!G5{#g=63bf{0(&ki$Gg8nKWly
z9>0JAhY?`#dU=U~VW61BO7SgbmehAx{1R6qh#$=#g<9nH10hrsszO+Ezh}n%;^g7S
z?erZ{X_X#2*(qRn)*hb;jhfQbDR4C`=wQGxo^dcAmB_#;-xqQ<e+rI9%a4zFd-<r(
zAi?$XUl8@sa39Q3j<(|)r(JLCP|os{4CEl@d+`EThHDV;Qs`DdDD)Yk#55|lKwQhJ
z@l*!cGmZJvdTox{{`gnG)%1SNGBN{#?Wv#KORkOgVM#>8wQqN9Lm@aTUq<*s={?!N
z^_7RoQhY3p!hRCL4dFbxdFYpF)S;fa39^ek|I3l!zQGfaFe>DXzNTl<$fKI8_jU5r
z?S&AAyT*OSmQ<-*@NM{A8bkDH5#?X7jgBQneaTpoo?}<RR)&!>pmg?n5ckT^9NuYh
z_zwaR?EAK1-vvO%3Zmd!vx30ODMZkml)xuxn3c>UT`Y1<IXN9Y=5#qyo~OSMCkLRv
z#ZSxmsW03I21`yvXCC^X!;&y%_0k+Q^0C(4p{Cs@(ysJn+aR>QFT5iYRA?dJj8EN;
z_&->o44x|D|H67ek-REANbeE9U|{H|<5vlPp-BalBSZq#bGyGqSGk_t!Oh7`lOa5S
z0MEn?IRIT8BcbNYV1xApmid;deBxJzPCFoep6Mc*|09kaHID86EgXMgW(2elBo5~j
zY^6qvB0MJ_2w#zi@K`I<`8e1{ti!z~4g0RJ#R+pN$OnFOW8c>Kz!UD*`M@=Jn5@2R
zL?&<b24wAqen8gllV^pS)%QzqTXq#ua7`idc50V5IqPMlO=1u17?9cv-H3dMoz2Z5
z*UFC&F=J<7(hP!_+VQIsktuT|>PgI$`Tk4pA=jh|Z-9htQ7`(?x|0)I7axx&zYId#
zpddMi4t~KO*VQ+~<s3;WCsYX8MV&fqmyQf#-W{C9*8@!5J|Fc&7C3#LK);E3fDe?*
z&?vx91D|<q>$AY#tH$ejU5FH)1u)SE9#dBXTLvH9fnCXwt!me~fc(4zSzi<3m$bki
z6=3CBL!}4P2|f_bL6YPH8#`*vc75{@tr44bMVVfv#yzJj*hrt};kXY~8F9EXhC{4=
zyEaoMP|wZ>pR|XSgGtp>InU}ywC!A7JIYN!^sSywKonCsqGg~p^pp;8gCQuQWq@MA
zAg;$ZdF%>mbT9<<WRm*rwzxHQp4uG}A(^Sa;(EGD$&W39Ux;PhrMy8KA@2HEEUKtz
zWq9CL&r|ckj!Ct6DkB%J^<EN<gCLw*tG`Na^em$8+w7?w!HONIP83MU3)EFHpt2j&
zxac`ca5Ny$$x#L5Rz-hwNRRG;K8o$$OC{sh{d4=<e92kkkdld>b)TZHTc%6rQ$7W%
zGxN=6?H>1U06xY5mKik8piE*SDu%x}k8Y-M-Kg|X1F8Umsv+4ie;^*TxgR2c2c_CB
zfE+Ypmi>l!-g+(7Rx<xCGXE~Mq?F#lO?acn#4XH(#DE@4x}<(_Y0Q`6(WuAo=M;f)
zF;ErigTECy)&k#cGObouAqS}SOJpD*We$GBLe5%2EOeR`y26cJtda|Jo2J2jY2YR@
z$r>6zPXWWFfdqMJp&rBk31hyw@({##(jxWP`$c_s9aPHgRE}`P8U%@lGpl*EdpsT@
z&72qoFi0b9%pU#Iqm)BSve}Xxznz~<9OZM6p@CqqxfEL&*0~7ItQ43=L_#_tvimz6
z(m+;Ti!UNDUUT&z-e&TMVRW=n0P$oeJB@xO8Y|2VW^H0kp?u-5Dk}uf&+!6#Z26?E
ze$kDA463PS;e;3dD!%vAunTOuPw@;)E<Ibl-PoFUz3M4bx>#CFiI7wQy2d?WQKOPG
z5ayPh8+%V8zhv+u#{L@&p8rPc+6StWOzncPNDf<prnuF7*h*7-#mVt9M{4W$DV9K2
zKEU~8ukQjs7#$+&3;@~mW7M*SUFfF%D-nSW?qOeGe{1xGK5bg&)6I5oiw3l>`K=nH
z@YpYtAa+%9;J0Hcjt~4cx}rA%!5t>NWrFf0;x!wkTC<G0cBw>fB|n(Qe%%6!L6Qo%
zFH1dv#j6ymwH0w{%}zns9=K|8>xQPpH<_&%t$q_7LFB=yqyU0|1<@e}2vK6zP0^<m
z=BMfg)HJnWziP(Y;7<-jLegaMJma8+52Gw`Lpa%oHcrcNb2vtcK1P%X!DxtuneI$R
z)LnEVG_kt+wbn=<qY8m^_)GYS2cw%)7ji->z|0UG{3oeb*t=_~XT}jEHvA^EnR|G}
zpP}}V<shN=ID(*~o$7}(9PJ3YcsWv(4ujy8w$X8mB`wZQ9d!0#Ns;yaSBC4ze0ucR
zW=8{IZM!Hi#^edtevQGn!?ozA_}7eK6H~Xn<lhjPF0X=gJCGTB5KPplka*=6>&pfD
zQlKvb&xD5D1dJSyVXT$lPmZEY2X;b!$~YOuKVS{;4qIhBbGO2IJ>Xpv%LDUp*n!bu
zZ6gUuQ}rZ&aHkBLwCcZ}djtH!o@xe@M{RdtYqE2EA@!%KHekV%bnVggw_<KY^0nTX
zoeDh$7p(gcars(($?>kjH5|1{zSamg-6rO1z4V;U*D9g-l+x4k!Hu(+uhkDPsb$Ep
zjC?3$6xNS>KFX<UVR~F$Ua9NT_oH?Fy@~D*>#`19*PVDt6-!-sv3Zth#ij9(j~B>+
z7-Ubxf&A^W2W-XH%-H^o>5WJ};V>G^mSY7wBX!C(;xq!F?tp{9te_+{0CVIRzv{sh
zEF4}AkE0(%mTpOb%N#tP?-oY^y#Q$Qdr=DXo9N&<<iL1##7pW@!Bf3G0Ni&c#+MHF
z#ryj<GLopO#b3RL>l|x#CXpQx0@_1<g1;(Ph!975nkQ$<T!Yp*cKTJP5+mC7s7rcd
zxt1$$Y?}wpPEbbWO1HEpYl9-F2Br8wg9j-^G7GOvkW7+T%JZXM96p^dpVCc?Di-Ix
z2RLB>X%V(Ywi4D+lyZg_UuoY;YYSB)>p&rBc;IG(9TcHks|mgjbSqA5Hb+HbcTR(8
z^1A-(BR!~E^k<BA;aQTvm}~OA%oX0&tX>Es3#Y(&r#snnzcbi)%QV$X2H}XqQ~QH>
zCr(?Qi<kTyN<MgrLx7km!On%XTcm$PaWG;C2S$*=+*S^ef<7*%4cx_6iCL-;MDEMh
zd>hw&&)yu@eV$r|-iRBH(L}#p%}HcXOFSn~DT~0Vh~&fv)G7sb>W=kvo7e`LKbT65
z1@T5tW~fOo=yVq+jDiiTJhk!;$S5#Si6xkudz=rlfiSyiUPy!qTA+EfIXwZGx<9M7
zq4H)>x~F_ZT{_di6NhD{L5S=lje{&_sBLB?Dmp_b$*th7TqV+n*PIl=4&nC3!67x(
zP9|o44-rFcbM7?iW=C3_80$4(-83Kzul3Tapo~e$AcZkAo`oy_;f2x#)IznH+0v_T
zWXe&bAtQ}7%P6GOs~^4sNiSpW<xA@2KarxEmwhChoqFv$(+N&TweAeK+1d#v?LIfl
zQ@ynvLayspO1m#&y9J&oUXOs(<ka0H<eY2BNj-qh)*vxYq^^F(^fSETFm|sOkBZ>b
z%cFqybLzJ$zJN|eHT*363MuI@ff2Cqw=9&dM|J9~YZKH1tX^dY&!XhKvthVGu9rSx
zq$>3Zxy&^#$J|VzG6*rB6b7SuTT&fbM3Wo&n0(ff+`y$o7_!#DGAan&B(Myw>^Al!
z8>GkXrW<jumCpg-+phH`CMfV!7jh4+33)&|^Nq}TxPoJ>#8V=tq4)I=GIhclr@I{y
zV&B+s)CFy@x+)2NfmIF?WoLlTwvu1Nv!wcwnM0}2VYSgXdE4>PWY@rl<*-*Li^H&O
z74bnvOg-PXPk(s|M|%Tc4Byc19lQXydizV=|3(vo#{7)Us+P}O=Tw@3HSv_LVGp}o
zeI~WwvpM>+^`f`Hha8V<$I$^zk)|y|AIJiCc21J|>T`xM#cI>3g3M>JJ$v|)oxbON
zqguecwB8J|fcRousIHoxHEe96zD3Y!++z=l0$d{>7=10aP;J5z{qQ`pyB&*DkhoGG
zZ5eSv7zWM)<T&jlt%Y?SEx;wIjeWH5oUKu{(=YiQ6pwRIM8JY>M;7xw=>^VU6Ja(=
zp{FYcTS0@UddaXs2HS*&Kz6BwKR5ChYgKdr(~hlLBBJO3>6J?0AQ91o?9VmSpq3{0
zv4LvUbNG%<2o>{ChJfA^oD6T%=DkQ7N*Wb_AklzHK1f)Yp(shwLC25CIf?GA@uQV&
zrpfz!AJ<h=PHZ{oP^=7yK=Y=1-ivj#JKE9Ef|~0q*an%_p*~!1ma~F5{2CcpA=ib=
zs1`kS-<cL@;P6S2tu652F@Ic7ZZQRHT}WDo*#NnAB;yH}ae)(ba+L`g2o843<PN+5
z9_g_&i#)=)cQCgXfRfaUC$!*^{_n<G*A^QmKiwu9S6akYI(&uC4agw5FN4?Rz7m;t
z3x6zu{aQ(NQTv!a*@**HJ9X~Khb76#EqoW*JqVGcl~I>UQ_=fT?#du{eIPGEWAZVy
zu#CxVSJi4Fj&C7Ox?9LR;3nNIVpd2efX+~7o3*#-7H1I!d*-DjF+;7vcL-l+EDrD0
zc|?1JDJc;IpzVyRp3hc8zx-dQ@&noR-?1?2uqiT(JXBv&^ySwqU~OUDqvOGkwGzgU
z*Rmlk))$FtAvHP75N%_-o;tpzrzeaAC6J^#`m{lX&R{Suuonjn|0o1O^xF~3sQG<n
zc!K#Qga4f`2llu<wUQ+h*yF1BgHQoh262-r$aWbdD1h}wq2z&;72{5>-0E4BpOTkT
zxrtb^5-KdOW+0k?cfg2z<Rwl}FXRD?PY(o^tWioeP|o@g>vQU3IPdk!2`67OVa)Z{
zTe%;5>aGOmMuG=G?*PSW;tA-68Zb}X`UTFHfLbl*Gr-5H!w#+OIB$X35wxug_y@Qn
zQ(r)eyyo;~{CG^}mn5|>aSjGl$QHtY5*Tn&H0<<&0S+NR74^&rr$4Z*Ud1h>QUQsU
zBOd!5>>5xH5M*C1YBKCp6gRAqyhd<I5!FjEF~!IY^EieS=o@1;i}(u&hyiupiawS1
z<f&!8#QV-$>Wtfjw@*3VsEz}+|49mD!g=Sc0mch#Hd2HY;~USSuGRaF@zniF=C@rB
zTxJ}na#z%GLOWl@)1*j8x;cblX)B1}n*9i#cme|m4&=<?fC?}N9O|q7?HEt(QhbK=
z?aVWAJGv5ko#04>+z+Sp_5{9ReQ<1iuw+Lj2hq`(z7ezLu5G9oL;H4SUTQ_ZyiOG-
zYGR=u0J&Q-Tr4;1hZ(`1(~F<cU6vER8q8?ORn9L;#5a;YW2>Q&L`8y-Md*}bWUWc)
z07yfzCMVa6p7aweCYi4>V0~dXwKGZfq=14o4OL-Bf3BiLn(A+!8U5K3V^|COU<=$v
z=NyIJyZp%wT5I&#Eum1-C_`l)n_yVcmK>`Yn*=f^1!6U06KkRX^4lt_&xUwoje{^b
zEY-W9R?C~MT4tvXJ;4~0$o#fx;#iCrInZpuRlRJ+{17$c&Y;aQ-jw-xu^uxs+pgNF
zjP9(w5rwb1OcK7Gq%Y<AvUj2sUVAK<c_93n7&GHnOh4NNnCOw<$~W}2e&_rYa1+hn
z{3K0A%J^SqI5K`erdrwcMjK+t<FPLUP#x$?CU}<JF@?Vl7V?9%Tp&>CnB^xzjneXZ
zvG%Nujye$nO+ikv!_3}=qJXwAPM&)30!IPiHEL;3ZC?>B${aYNiiTRiNE=1d&;`c+
zM$?@*$RdC120jBG)eXFg+$s&cmw<n#fj2~<mPDb7ev?+f3Ts>(&bi&RwiV~VUq*Hf
z&xy$0RdK#?49$*<C`Q|youSPJa$wJfB;bcCn&fKct1y%lDK<xjkYRl!OeuA;s9gvR
z(1F8KE#F05?(Z<!Os$fEa0ZfO#ZsF2MQB%WcKA9+f#`t-S$HvFfaLQ8R;`)diVauS
z%JW2=L<Igf5Nwv1r($Ugc2Mc5U5>b*XfJ6Gyg0Tchip|GJ{nf_|DgK+0}yOMHan)o
zw4l02s}@{&PRp=vNw^BSM~$2yN@1A34Cw{k@I5#yP9KPUKTTwHCu%5zu|>SUn52O2
zN4GM;ZG)A&#AA;E!+Qcrco$}=E9}s56)tGo$mht7ZfE5#pK`IzmR{ird;p2?ESlUk
zxxgN}HotmLN6(Dk*uhwE5?CzHD!R6_r>^x?H+P)W(Q00b1w!p357<*5MTu+Tw}Itv
z1HNnGmsX#(OpA7wJ1nty&U;{gd(SKykyn8WINNlw&!|j{sa&t$<P71Bci>h{|I`Bw
zm>Vh%d?kvY2yf3`Mv_9;apZn1VM0yfDM!K_wxi*C*v=oS*9Xq99e}b-rBxI#5hw-(
z_&)SCj%!&~f{fFT<N!m^;!)7TH3@T9%fml{!vZVN%x0HoMmkL+3b$}1z^U-jR4zDQ
z=4LhnQi$!B^)!}Suu_}1?GW7yo;8*Qnu10JI-s<F^I*(9=YHm~Ii~dlxWPD1d+B^m
ze)ZntJavCXq2Im;^XngZ0^Rj9|2fHn?cwOEeH|xVjfd^zVKd&uhyHWg4Yo(&;r@=3
zdgNpJeQ?K*F*)xEe1_*k>boTs;v~wziuREZUPBZ2yCxliUr$9g;P2bf`<0QUgZpoe
zyoHMJ(mr`<_*0R)aF3VF{mMwqVC*EzHS(xp!k>oJcNXx?E5av|NY1z$eFIWZwL@KH
zsH2Zga0Eob8#`fS&~aIuK9SjMZ35bSLoK*PWalsX@}R!lqc1b{<zGibpcX>V;_NGe
zRK!zEY?xUkH9Pfy@mW2-w)NH2>0>`bE$YYyI1tu0hh=DiTYYKHob$4m!MCEL%n9|F
z8N=Z~gINP;QOXaXu+35o0TI~m^4OocV6T4m)#BY<4ERUua>C!HZq%y>s9NP`2@V`I
z4=->GDXM{95R!}iM7&boa(2Nrfp!?2UEqsY+{G+Ghz8tEj<<dK5jT*#2S|8M@e>Kp
zdDm+>g@`(mBy}3`veQ4io}a<c+a`B}fiV?c=X~a%C^GJacwe}IDQ6_EGd3sl;6~(>
zQm!7F$W%!Bh^Vwl(1#hIOl!mB#E_hXOeeT(jH{h~ejHNry&yF*iqrwxa(LWlVj|_U
z9?{QQwPnfr-)+m9O0>mxmHfT0v|2qnL+*>@9*u<vx!FS7l|DtgI&Sq47#coO-6Fa&
zqWgic*lJ+lBOT_;C+SPpv3?T2$7QAL2bny2$=LM@kg{m}*Lt>tyaN3+GSkcO+WCZR
z_gHcYK7!(@dx1751Yc%6y5eFH<04L%K<%0guV52Sx#}Q$`{1N29_Pk^yg!ue4;5nE
zfOVF`a@SRUMy@I0N7Z~P-7NixKGq9G&&6!F<F81<h*r<W<pLa-fF36jFL9ud2~i@@
zBeiitItTlg>fBceV%038P-EmHQs*p8G^APxL~zy}259R%vk#?=G=7!B<ypnZV#;<G
zgj^3VMBmtX*@H>*5BNH21@Gl$lmGUx01Zkq;w8~1+qGjH=?ylvo%k)9sJ?&SF>7%w
z2G);?OHn_5#vYq%AXBVwSmS&qy#yh^H#8+!U$Z90VvdA}xYP??6qm9I=wqD*K@B!X
zosH24XD1Sf!|mD873wPFUh+^bFBPNRqnETJnu7(N5gjhot9GAg!v=H4un&3%Bf3U>
z6+GE=P*~Cd?H*Mq=)b=I&&bMn8{?fh>XphiaIjMszQQ=3ajY?bdEZN8&tU^iJF*Xx
z)UdlWF}#dVGggrvoys%%GQ3*vT{cF5QI&|!r5>?UCksR>sVKyg9w)@fpy!IAG8YhX
zEqGpHf%%~D!$%PXtVoVm{Iy2$6Q%<l`K%j3Ggx+@25iFx8jULeKy`rM8hJedh@E<>
zfaVAsxae)L&c%GYXHkXrZ%Z}Hg04QNjo~faWDVm6b|qIHTGFMZ6>X4H=qMuZns+|w
zN^ZEYNj5Fm(GAw{2V^D3k2jtCT^Q@WV8Onbq0~p810hyc{sDwYxs?jYmHHYuE`;X+
z>|}&3?|yw1_qOY+a-?YVhHo4BT-^!aZRPLU1(|cSv5io{)a=|PO!}-|010EOcn?Br
zq0&Y`3l^oP{eyb-m2nC=E6?;SwyOksGJ_x6uG1$tdUC=IT2D%t#zsyFq#!PNaw@t+
z&wROFovo8LKyZnm(4V$l?aMTzDo(Ce19}p0vCs$@a71n@j{29VDnxEPwX(qmFxP6>
zC`Am%v>3{8ObjDM*SJOMa4ZC6g(5!QDBG+3CnXGJ(fx@0?M<FqYhhO_D|9NI&gne9
z%d_YlxTME=YX3-Kg?5KNu7D-P@YXotfvss=bc_|t&=)@VY5_EY0+mCm6*;J&vFp-W
zj#SLrBFKdbnss!LahdmW1Qf^@3tO=ql{3uqXD(gB1B9Czq^GcO04H_g1u!vDgyP2b
zP^&!l3v{3*tb`PRX3z8{;5OK^$PLdIZMp|f!^7DykaaE5hTFqetWbLJE%03KI;<gY
z`3$^z#2hv1RxJ*~Pc_TPW=ktZV^NDca%q&#nCdMg91)929n2;b2*W)MhdkIA`Ntg9
zwGB9P)c*3;(4$aQDl{8*1v%n6xp?%Ysw>3pM>wAe@g2(B4Tx33kd%Q7FqQ)=xcX*N
zz*0}<g%m}m$QfD(0#k3RX!@T`+{)|F8<Rbn-k1SfHTfNmZOlI9Kcqn}tH)Xi@&8-k
zbOHx3L>Y8AaNz#rM?BfadW7xc*resIJx_2w!V^euRN0^4&joj3Wx`jFVJSk_i*Y;p
zZv6W2Bdk$)@iRR5^jK^vzNrzSYrB4y{iGq+(04L+Q|I!S4seT%jbK|+&w2AiYyg_|
z6xEKWu2J${T>Vi9%B*^cBr%_#i%wNVo3*ImOIIdvMjiFoIx_kaw-i#Fd4xuM9jo48
z9m^KzI{dnhH&KYs`@KL-Y3e}EkBlYLa7|Ljj?$I~#+O2Cr?!)K9bvH3OGSnpYXz`L
zYR$uOwngvr>Sw)hC6>~uvR#X1c?6Tv{;|+ht%Xd7=`&ixygeQ!@@bGzx94vf=2aTz
zwBFigVev&<Fq=GloPg&E@i3`LL$1FXn0v(;bp7=f2j-z|!F;}JJWTKu_V0WsuI(CT
zk%2i^!z_xzeC6+Lv^}#mp3~xCvU@_VU(oNQ=P4TI)Z-jH$Fv1=NNPNuAXkz)DITWA
zbAf@midNQkW!&h%^t1)Dx=TDv>GuyMjo$ba$iM=gBMr>!G|c@u4$Rk|Z=>zmtzib@
zVd{QQGBCwRB7LZr1M`n<!Q7hAcER(Mc$lez=d%!R((@tQq3t^*Q-b_?coZhtA2L9H
zYL38k{3(IC`GL58*F0Y=Fe|yW`e%RCI6@!+#I@*!6O+`Rklwo7HUBRy)*re4fp^ur
zr$c=0fi_;G6lbZ|Q4m=TP{V<mdJcEttHfJ%%|XCWJ<I|w_rn|aor!`F3+C#A3$I7P
zZ7euN7hH5K3a)3tDmbS2<c%^E6tmzuUGNMGhO!_@7xZQ=XRzQQ>R#LRuW=|ijs<5(
z!N6M=qfy;h@HAt?_P}x$v}eKTC{WiQieD9Q4;lDxp^wYS9)Z^JJ?bPhze)(NR`kMK
zxP{^~!9Qpvj`Z#HvNw4W4aN|#wxu%WQ%6qMnoC;`F%M9<n9M<_aJDQ+gY!^Cl>j5o
z7%>kEL{fwHUMdbnN9P?HI{og)!5KeS{)vyO$sNG~*r3g|{|#2C(L;sg3t(2xUvK~n
z${A{zEI*-0pbYg4mDhZFKbkWMx&g~P@eGK--Ht}&SfW;(hCctA=AIR+#k{R$i!G!M
z-8PD&rU979Nyxfkd$9k{8V*uq%Mb=<p<CgQU_Dc?iNCFIGFV4#>WB`R0FG$gA78Pd
zt@5jjt)Omji8NT9i5xxRZfpY}qi3Y5^vSdIm`)uY)^g$IC>WRsjhK0G)??E62`mBu
zDQkawJw{W|!_YJ*O4BU<%24I9BbZS$U>sPhp&Zsh-FyjYawwW@DC&dLj)ZDdldURG
z)f7dQ>U#bTs`YMA;a5!sa;E;*f<GVB^Z>}1&%(GZMq=fJj1JY5K^FsU)dMyd4chox
ztU=NYw+aN}xiSPNaAoCTGEyZEMBNtc@t}i+GZ^WKK5G54>cTb@qE8+46Xk2-`RGd!
zuMBJmUq^Tm=xB_AIx)VnyI`CdhcQ~qC)fO$81u6L*C{^M0c4w>Kp)xf4@^*o{s;Ut
zQpBrInN&*|>*2k$2;2d&f~OW_5)Z}`bF1`Y+)*{68Z+U4HmiBy0PQ&g?P;Sv`rf8h
zXf1JfQLn^+esu_dzC@sj`2YLxXl`Th?)y*S0WD2+gWq-Js~Ef?|1-SA_WtZ@v%Q|_
zGLfC&|FVyKrq4VTx>J0b3#lLxD5?z;S=*JLL(xVv=+B}kNnLc9=4nu0I$B0O*bBxU
zg?Y{O+@v>O9--@9k1ufSeu37zX)1fBRuLJ@pgr~xk>E3lk5?qvNSC_aL_kp*U-^<=
znmx0@o;f1sUNx&9+WihSW0qP!><cXZefQ6OLFmqzP!3(Cso2a1I5p}ea)^VVLz>j3
z_)ea3!!>Z{&%(SMA`rIvTMERCdmOglAJ6oQNcUFyvdGZ$Z3G+%7V^z)M-UezJ?mtp
ziR?!ukzBJQiH$@)=7v8itieOTIgqx~Z}=Mt2MY%oN>h`kXp-wZ#Cm@w_87%u=(yUI
zl>>EUY{3AufT6`xFcpeWW*Ib9z|n?mB6{SSt8^Ry>pjtrk&hirQL{*E>aHhQGdzAM
z_+nlC$uMi!jS~dUQMdX@;2R%~68LaaJy%2Fi|`pTo}J9$ca!?DuO@L3XXRWkUu<{@
zd)wdSpwS>hE|uFJ)TRg1T3&BygVt<~(()uu7S%JV2e&Xx=Y${T#;>51XK0ZmhtN*q
zS1FMPrs7~Y<WkSI11?o@3N}H1c&1B=OU=$|_8HV5JQDta;nvOsFuMYNCKvKyT~Wki
zNNnb$OITYG@hsKe2qq%rJFGN?fmhYLf091*vOU@4A1F%ZG$N<~5>EzuaL<c=BKrh_
zL1e80D#)Q4%Gcp8bU&4yg|IPd^5-s{G!cJ1Gfu%LjCh#JIdw^%;4BA&DrxEoxEy33
z=AYILk$x0wZDu9_4ahqIAc3PN%uVQZf$%U%QM0TXzcJIuI0)dEqw^O#oiBXGp_z%k
zjL!6`hnCZW@n>ccWu)yyn}U{?u;s9b03!$f5jpPL#<d!ASS3P*5|cuxa6ax2hz&wq
ze4qc!JNh$c1@%n56d7U@ZGn1hq{KKLN&-jx4BuFrC@>^Q)>i_E>|JyY#1v5s?3}j*
z9_N%U*etJW^?q-~cbKHC_!@J@T++D<t2w70g<V-Nxw>V-C76+RHzT^`t@r|eJ63GL
zmy>eX*<LGm)1-cqAG9T!%)3ESgFqvhgcb&_AlCzp0C!y9Jwi~emW#&I`5WV3yC8F|
zj!%xo02cAdg`fr(GfC&!<_cC`EahNj84;k3;6gKh0xqNzieB-`q~H4(5{VMKn?Iay
zL*U)1+15!@5t(UD_RRhZ$L*nVFPWkoF)=8dH>AI;AY<=N{7}t@4u}GgW2Q~kJ6IbZ
zGldb=gW?3k-2}f7D{Wx0U^3B=TB011hZ@9j2HUB(vb9nIpqZwf`G6<BYQ8t*nsq;o
zlBe!g0c@B*NTY`Qv3zMGY$0=aW_2*HM5(pjB+7{N0x0U!)FQx-L}s1j6C8jXs>(pZ
znU}NQ!?2^`?2{;=_D~#^?#o!7at@lCK$<!Z&Z6|i4wga^yF27q=Gq0Kmm-9?*#1eA
zWka4nlI{=@Eh-2RTV^XBiXXU`6nXX(O%e1<B1NF0NRi3+iJ68ijZs6+Jmjig5hC+I
zwPOzG26UkxiekR-kV!f%fev`-LSq2XJE$5mL+y}3^u6l-CDZ{GWHefjXgir|f`&@B
zV^=2)R!`ml0`!aIY;q9>))*#MFxe;>PP}3NJE_2MayDV27AGxfgg2Ca@4aZ|`pV<6
z5fA!CrX*x-#~O38uk<pcpg4S)FsW|4>VkyL$eI|!>=;;bN!4vT+sUY(O{7oA$Xv}b
ziXvQ^78G5094IPh=s>@Tp|D+L!wenKU7E<w3=2RA?}Mfs8J^duX^Mu@>50-bCQ=})
z1{-eRz#fExd7u$NZPfy7fcE{snn`NJ_Mgy4iOK+@qFyn`{2rvU2$tW6-2@98HGL=U
zJd4@|n!JIANAr%Hw3;9B6|q79iaN=W_yrU=k#jF+mz>%lQOq|uK>palD2kReNHud!
z%9)-;KiDTQ75s$%%xg{fNimW>18;BTeT%+R6&H#MzDZwx9wv8J?^Dg;+e{=xYvh<d
zmVBpo2rD5*j_r*)Qr}_(hYcS<478p@ZSK2(+}O@x?IVC#lpzc%kIeH{yr0*xVioCy
z_kf#a;lUJ~A}y{p{c2b?9VW-aEPmA)jG7JAJ?&%ML0NMWg-Pc4R1TIY#_w$GI5nYH
zJvKdF;j>_Nk@Mm!;x+OFer1y_BJZhAx~&uTqOCpg(6Kyiw)Yh3&=&r)@C_6UcEN(j
z1K$aI-EN6MKVZ|vjclf{RhH0#8m`2j+u*U^fpX*YdtqR&%TxQTs5;PR=Z-k~KpLrq
z=``td0>*(tI4&pf8_d!_NP9$lF3sy#>9JOv$H{FF4>XGe@=_74K@q^}qVP@9{`1^u
z07_s04JybZ8!V_mIpo);U`Na$$@-)aR8o1K0|?f_0LlcQyiOWC46!Ngav<=LM-ys`
z%mMQ4Jaw<*%hphuL^(l``a?skVRa2tjw6;p6`FKdZWCKX{Qbe@!-7qV84(Q+M8$YJ
z3vX8*?GIg;Jq-NdN%$<X0uQGSDr|1@2Zsn~yoc)%{?JwKVa(kcj^+)mPw8Z>7-AS@
zh%ibbm})%MT=O~_fmIYsbt7<?%z1A7Or&f0@&CLr<@n@(Zp;+$!GGGAl*%DaPsdp1
zEEsL{(E*yrojwz~HvD3%lKE27W71=Y4(EPcaT{2<;!^%OfvyF3`82c^gT|@u!rV=j
zhlP5)Hw$)bb7db;+ECP}fN}~~m6Mzj8zA;?P=!dw#76KMpa_Sn@*&L8b!4rf^nHIh
zF)0$FdB`D*Y^ovNK?AwI!ZWR~yG6Fk00ODF6&M$$cax7(({Tyw@q{Qbd>=lOtj?Y8
zehBxC{p^jO>Mcw3<}3QLP+yMx7c|RDOcuqznEtd2obys7mS3~8fgA*XR%|u=S#7gx
z&9o{;-PpTfjD@N494K~<-ga^Hwo8rh(gnIHDRQzE#NZcj(NLNr<}FkcD1Kz{hw3Lj
zUINHU=v`A+&9Vl(1UsI1uZn*{1I|PHTH;@={qYbto~qfYa{;i789*%HFIN~!NxBK9
zWU6w$2YD6;bapcm?)0vYSWDn+Ty7GkixD>-^dw`FFyYa*0B({xd!Pv@a6C7kRl$>x
zDzt@>Xb&}^x@NPs_-WL^FbA~39C6;v;REnmD<9Jj!=s|eB#v^RCo=RX=Y3D$31Enk
zPMRL+Y$dZ}F~ly<j5<7^mmxlluoD{v&k*qrE}^H+Vx_X;zwS+`Csv=BgJLlc>#QJF
zIhse{NtBWTa6mNCa0dPUA1G$VZvj-3xrj#55oLz!&9q4X(!hE^N#Ps7DV32lE&l>}
zLQ*;-2`r<^I7_{qp`B+8h8jFGCqwdybqNy=^(RZiUyBkmsS;ce^03**tRl0-j2VBJ
za-=74BZ%r*ly|rc3Y82BKbJAi1*A5*5CUvQsV2n1MwQBdu+d3~=)IPQsY`$N!O0Gw
zCj~V_&Dcd>kTk$E7<h@6m^2PM{m8$PQ6SX7ZN9Wr#&}NlKA~^~F8;cDwoJ1RD9Jb$
z9$}(|VXPo{27y4Nnl1IrK8-i<*O~;J)6un=)x4MKmkRoP6`kCn(~r6n0VO-H6O%|K
z@)%upKY)j0-~PB0T90>lL18_7rF}=A0y}i9I%g`e<BS3LQ*+l)U}-9rvjLt7%76yb
z5k`zT9V7XqPKKr7AYlXOQutj6XEbrIt>DLDXCOA8EdkSTK7y<)nY94fV9LELhawOm
z#-0SYg<{ZEst=EZ#trh8Lo?NcTfKWHddmmVopCOmeDa$!HfG0V=)uwrFS9e@DG}{#
zc4m%c7dulvzHqH@9IXTQ*0^5o{Ot8Nw8V1vdVGXL8p)d}b~f+`Y(qB9UUJzyAQd|O
zj(QLZeR2<5WKh-9H|j6{L6<xuyNIw$Rt(i1)(U45$IBWTFz5nwQ6}sPB5scmc7<Zm
z$b`$J75Xjp0Hlug%24l4+=j=|kT`;Y1Vx#Kb#yppJfsC$CP_$8u7o7@s+kcj8bV0O
zhjX}sar150LlYRTM6k?u_K^cvb?;M-76mE6fw7$vG(*hP3;_mdn-TuQ_aR`@xylEp
zZRUABb-PW2qL$&(h*omIL=3ZV2ZKp<n=8;VXFT45T_K=tVi%=j`evM%s+o|sFq73%
zp=i<#|GFjVl)T^^E8!{`A0wT9MABWp;C~@qUPn(YCpE*jNva^{U+vV(@+dE`-RROZ
zRrrDy5GVoS3XT#{sS5uS8G&lGPh5<V`tqi}4AGZ!^<}|M*y|CJJ{ae3$aqZ-muWSB
zUCM0`SwCk=&`p>x|3KSLJOS%j*_f2gvQFwG_Onr_1dakJ-D>{^{U#6<PQut7OA}6|
zc|th%s$?!lg|z#4b`6F@&JJg5spg8TWSkuKgJ`F{w7r+JvwS2&4xtxOV?fVp$^b=Z
zOIof@%5|7yxdMCIPxe??Hi7DMuqJk59TKu2ANY($2LnfEoq`0KqPJ*jIU0i2IYp}c
zTp{iC5s+^gBsS4s6Z+i=>R|j=MfVG#Vg3Pkil&CFR|8)E^{<nHkxq!GV&%=rp1Ihx
z4r_jR%#W=0@hrm0Kh4uTHn&{!+pY&EpOBOf)0yL|ZN?U#__lU)#bNmL8qXc;afe^G
zO}x2wbLI2+l|Oy~{$4)mG0RSHWrcAX3`2umXdyv$a60TF`$@AF&x;{(@KD6S$q#oT
z<7`i0Srsxz#Su&R_F4m7IvQ1=qeZVob-b$nH=);V4xd7O2W3V3K{G^^&7RQJgDSPR
zpODlaM<G*j9`HT&Rv2A1%5)XGt0lkRsQU}t#K|%A7qp3SA&_tx4SHj3FG7)l{nMsg
z2=nDe-6-e@ntv8m%26T`02mW&sJ`2wHHaZNUMc2-61GH7#R1xDx1lAQBQH9P(YYQ~
zH7}{&Z&+i>8DtCeIee$zt{I=n{+{Hrui6^fh{BZMkCFGK<A0Wp-xXNyjYMiUN4~^V
zTdzCKR2#-CvpJGUFt@5<Ow`wLJNei+JgN;W9gT^miS*%hBSC3#%}p}R74FGmOVM2M
z7oFy+lNCCoDy~D~#yfB>I2@GqJhBcRLmrH~Wyr&;jbVpeCsT8r-fl6qZ*-KCoUTVX
zNdL6q4n&ZQLRBHVfKn8=1!!Q;2~)-suWaJwb2j}%_rM8a%oH1KU=@@VL~J^A`Zk*+
zlW;D*FzL}ZE20jVxSLD>$*mSMk6B4kOC2J0@=L8l!e)3P8JPnnVvYe6E=$!3J3xhY
zc=GPMd{u-`jJDL`T`HWa|FoQs0lguakw1ucvnuA>=$-x6G1zs4XHi=9K5yl<vb#_1
z`pONQp^-=3k+XmqnpG3VVe8)HW=!K$b{BO7R{n%7^pY^3M_)bjf+?QL4q9J*TD`xM
z^Lt(O{#59#$Vx0?tLz}vMDE8%?auE|^*%gb5(%jHa;Y-o+7s(<(U*UrTnBcd-DMyH
z<PW>oxW?Wd%U?w-YgyXT$`0z-JVILT8iI$(>g7KoP1U#er)ITz4zgB{NA`uf>!aPx
zYUgSAHS`3OjUR{n)sw6DHLH33II(;8)ab-+52UKLpNXWdsbIL}t{-nRscX72WPE)U
zV%ImRE*`jIAE`-SqQ3@7f5q@mm?+a{-o~FFEW-x?5x-W{t)Z!UpeK{~IZ#Im*Fnz@
zo(R(vpYOtbZehhDeKpv|ttqtr*)k|{?CtAowu9ls)Us->7u<8g<o6B3m!XFP%zpXn
z7pggOcPo7;mg*q!T1pUvy3vxl^*jRh2M!GYUn20}52fUQqjRwCaubg0121{~L1HFS
zMCYYDCc~X2LJMH4tt2W#9lPbN?A@VnRT6MK=zi=IN5+c>IH%{IgmVyJHpB+wd@U@v
z+?9-H$*MEvpw-`Ifj=%D3;y^9X$8w&UsVYMI2}~K9kjVmGi|KDg<qf3_5%8YNP}Oq
zQ0w3Dd0z5FNlVbEquL3k+8`b#tJ7IyH7Zk)jo{LsF>|15<|4~_^3T9$#TcM+%zBjd
z0F$Y#Ly&ZR+KVWgnu!c)+m$_<ZYt<V|BK$fdgm7H-)MD!Ow13U-$SnFAsn2J`$5cR
z>IxL92TvmR&&3lf#JmwtU4wqwu^voryUx0w&LzSx{g+7ogS<GIN(qA+3}41W*ZwR^
zETX!08WQ4V@dcEZH;R}<j_F79hZ^z5cc`|9K!e5tpbSXepJ#Bd`pQX0;54-$aCIoB
z!2KDym60vL>aX`{tcV2^gR8<U@<>xRyo;2LI($=TzL9*))2L_df&ZMP;atKTO-T-X
zeH)nQjHty)=+FN~zBacZU+r4UR{^U1ujH#;f_y=mxc|11FCXH~kSz*X?s6kvdK`_2
z1}8nSUTkADPFeYT@-=_!@5q;DdZ$+W4)KQN1RK>hl8r<k!Mv=cdya)hMKCW*Jb~4C
z1{33ki8-ZW8`YK13U-zO40<#Dm@Qq=-L$IU7lszFKhrng$)K3ArpZ?thusH<ebVi+
zV@=f7^=^_%xsxqsG<$(JKKPW-pgahzh|pp>MVF(hqPQ|N0fdG2ioAi(=N{y9HTg90
z`Ca;Q^Jk#gM^R>iib&um&-8m)d4kS{et4iFrXRHWg?<=uy0&Mx<6*M8*DHd4@mX<#
z&g5(L$&D=p{q?&j=<h&+j7YtRg5|CO03*jg=n5bT52BnRbv|+`as0zSwgB}D#fHV1
z<Cgfpq5IpSeuMMGKOh!pr>Eqh`d4#XRL~CFxgf(z=H=af3<7bS=q%ZdD!7lMvK&z#
z91q&(5GJ;W<{3Jd@HZBi&hYa`pU(<0y6b~PkS%foYVR%n<mF5$n{l!{URBs<RpIWB
z3$f?5zxO(xrii21W=T#jdK5~SAtV{RfR$7uj5V=E*ZOG`8@ZtZ#yAn2$i;$S9?sYl
zZwuB@-DBR)a^5zdn)s;~OJ}E`b1T^RsW|BI5YLRe*tu+lSjj%C3(?d*YpmU$S&ca5
zviBN4Myt82Cf(%6$%>_{6ZtIb3j3@#O(^WWepvEaIl=KpYAbA3FostUv&agbpCN26
zsZ=C;fZ1)qeR@l9Y<$Pla~kE4(?Uk-_W5x%9#>hZkF$kCH|Wc|pP-vhh;e9)KkeGg
zEUxYn|N4E#a%*-L%f7hJW)|@Z|5~n?A>IS>^PgqEk(mUS_0?Ip>EH09^$bPKrys!$
z=R|`&Z5O#^7rAAZ3M1W>ron@qNH~W_2u*TLcr9pNgD!Y&0e4NsP!f>cJ=yR0k;WhD
z>iIg-fj(le2c3cSceR;Km?z*r!d{Et8jG!QSd4VQBe>1C8NuY6jM;AD)lNSzzFKaz
zEY<RdQjfM-trs8iAFIv6@7C3RinLd;i>Q`wvs%8%YO{H@)8GADd}|3!T8kg*R#R;T
zTZ<-Fpvh=$6($q-kJVP=ck61$MXQ}FZ!@INH)RTfSA1FS=5^ZEI3le@QmxZf`Z1O*
zlm5VVE2k+?xx!WV38G%kZw&r@d})t)DGA)eU2ge-+xczJ)%}n6(#TzSmVxU)>0pEn
zo!@v*_t4zTEWU?(O}e?6Ip&@e5EAk}guRXB`mnB_p~JnXd_{Xe#^<gZo+O2hv!u}?
zKjESBJmQSUp$9}wc(rN>NhoA)X1P$S$BrAgqZlSvdcLZMdu}QRXb=Y5Wst{Hc=N}L
z4!(vF9{CXA-Qd8pr$FtZgoI#xS0ihP1$6|!iq1I@KtH=u`8JRR6L`7MNR1{<Lq-y7
zmQg?@uFeY7G-Pk`_yqVlli}Hw<2G`Sy1uU{fc2Xo`KfR$<JEgh{a!-yC+-($yK<h0
zr<in*BY~ejd{BzX2)oDP>kYZSGkY_(Nv^|g)xPNpb`z-Rlcea&+&B~B@WRHe?ZyoX
zc2B~eillb=NG2Xvv$tomCvYd;#?LuP6NcNPvflz1W1o~)8Vl?TcjfQ?C_lKWAh>eF
z_UgUf!AGtv=)F2W_|dq=h}-kZX20E|q*@|p-H*n))RjZAEz6PljoaJ>9ak6Tt{p!!
zQUth3$rDoT2RM8276_jdc^qXKx(urMEy!$AWVStOfm95y6W(Ys9SIBixd<JDW~eYT
zC{M-f>a!E2C#(<A69KJ*WBOOd58ne|EBY^fJf8l1BdQaweCXexe@>~P|1EMH2_0r2
z){<TCzD3w|T#WV?xe?+T#7&19KW~Sel*a9c<_9-L>6hxAc0$r11iB6d{Te{O6nB2(
zR?u(hxM26RaVrYa+PNTbmtsn6)#O*(B+dKH97(A&H-aEP2ti`>urc4jEGV%@i#SJF
zvvYw=20oiPpI6u;ULi|saS7~6^VqlYH3(G$3b^_Lr>J65uZeGS6S@odc+5v~kX#Ob
zH*Rmw<xbq9bli%Rp3TiG3VNoXr>5DXnsYaKX5B+Gh=F(sm1@k0DfFo5aVXCDl!w@(
zU(g~xT8!ePNW10+fSLWc=`%mBuzYZsAl`nQ`=0EX{uHVRP3;WEDMCRz&-A;bpc@KC
zBC#Q*AT*?NLHiB`_@dYvvj?HyG*4h0-eGQu-*0z*dsuK)VdJ)T7X}MDmt1HU%q{Vx
zA@rT^>1w4ELK!sfI0Onlk9ZDRkun3;8njCG)Lnyi4q8z#mnX1I3y;8GYYcXO0vTmz
zDY`}wL1;60Ync7Xs|KWYg~6tE+X9Wh1pRsCNMRVWU*ppRsBx$a35}jxmS2Npf#zwI
zIYUBY=a%NzK=a`4L{=$*b8I!`e0~Q$M-6YYh7|>Qf>Go#em8bVsBCWO;M`9=Sk;x3
zR2bYJ-<~0%0gny|mUSLG*uFV=NU-mtg=2oD3m7;N07H|1OBocL+_`j6X!6|h0{iOb
zA;Hm|%bAf|w+%#KaY^ppij%OV$(ZILA^+U5gOj)E_WTodIS3V?t!2$i!yZxyhh;Qw
z1wCt1NY7BWIRzNa)Yb5H7@mdTquO>jt1!E^Jx^O5^E2{%x_V|@j^}UV|D=c;{rDQP
z%~l`|*WW*;u~6vE>Ea=wl<MY{{xK_&(1kAWN>S(f!8nE{clY?Fus#U~`|OaJVZgWY
zN(+o@SAeEb5V5FPMk!eu+;89B>>sm6gZmY4Tx53+qM0+x2iL8fwl#b%<c$;=TVP+&
zJZ#M7!oYsi8^((T!Lga${q&%jJ(`97_tL5eBh3^>;#jS)ar+_X+cUds0ic%+B~6A&
zQ<q`=h^Uy5zqSO^tYcPUivs|!Bc66%(DXA84@iP9o=F$ir(HNLjLdbV3^Q>nt1!5v
zAOwsEF(=#)Xa|>u$1y@O`#903d*lMseo=1|6tG=i3}EyZ9;3Qk22yH_es{FKT%s=*
z>dR1l@##yhzMQHrC+SP3zVy(SBlKmOTu|{wZ?xhoq7`o&AlO~L4$AE~lfKi^-cCk0
zL*K`Zr)2E}=uySVg$BBMB?y*z?6deLe7@pP-t=|bFbJ;LTGw3h30SufgX=!~{9wcx
za!@E*oki)b8i(G)<TBI^*5}w(6?=`^v6|h0QCjeQCq5kf5GuaC)f>4ye$1gHV=TdN
zH~zQ_`|RPU2&{mfWuPuY)kFJ8_wsGHNiukbOX_*0BJ+6c6m%5(cU*pOz*+b+`mA<^
zIHM`wu0(G4HY<0<l*_eNYVQx7kCEYFo>%g6!GbW?n+t>Q76f6m|Fz*OvDljndT+@O
z{y47jTUhL${r2h4SBb?La0V>SW>}o=r{y<phsD|A&s{S<h{Mh>5F*8b-xI4Up;!22
za13p-9y6)SkCkp&sxNP>LGSz#Zy2vAW`D#UQ(dBeFj^}^KVSq?!iJa2c-Jn{`9QLa
zoN1*Y6u{gFdCi&XGtMP|5VjP;MsUNh??k6zI3yfDh6UFmWo=5?kWjZ7!-7lc;0#7y
zTd%_0?>&L`_y`G#(CY2S4GDJdG$c53NeZ@hi!71HpMn*%(r-TwDjhB$lxio~GYX6a
zntF%juJ#1}j@QPWx1u0Lpsj^>lKZ14a5wn~b`SRMD0syMN6B}Exhp+0%JB&5qTRGX
z^tq6y(hf$vOS|MG*z+zH4u<#VuAI`HLwq2{^w>}p`lWLxD|hesbzx@klguS>eM&Jj
z^=JC1KET@K4||@Ts>93)xk~nf;yW4YL7@<d8iZ30jw)g~T$GXe+cfqlED=^dn9LY3
zp;v9ds`5l8L<ew+HfX94RU}pLH2`HS62E{D1q8nU6pXE|hboCjoXgg1*Y*eFoGzL6
zrqjhAO5LTME`UP=h^SNbc~F!ivO=yQ<HVQhYy~gK08fTLl{`lJh6uQP^fR2Euv+gG
zK0Ld(T$bs(H}z$azWiNZGW085-vg_T2BdfgK7n5+UJG7Dg=LUb@G2<BxCXcnXz8pM
z$n-^Nq0}d@1AZ$jkwq!Gf@_k0lx1n?0R~jn%XN&l5kvsHQp;<qH}U?by7OIJ>Kz>T
zC{1XqXQhCE+Y0uLt`7obNF!_@cpB^jxCW6J&nqbiMR8&xclCtsWJYk&;p32>YeU0(
z?gkqHK!7WIp6f;GIF;dgVE7jZ?9k{XDO|IFx}aFv(MihY_Jt=83i+3$K=2@G?T2_?
z>DF#sL9ko9p#O&yj4ATk4GNB4l@hD>bf@0`j=n?2wxaKdG8!a@zL(Utrf(zCBthR3
zSO0hPEsC{Y2wg$?zCR&1geGF!v-Y{GE4!2Op!KP3(OMIqhnYIW&+gfR`2X+G|K%R0
z>O}hg3EdB=ErZnof9H_-AkH8vWRnAG>?iTLc0Gjmqq{L7urghCBjNa(a(pb_CD%e&
zFbAck%OX5c3la$weZhHdh(HcF5vLX3vl7yGGkm}}X2j1#{3w6%_&M|9wkt_CZ2^{2
zJwvw!c^T(B`bquzjx(MU(FKN38D@&yAkqnl#N;nlzg?S|MHf}ZOWbda@jL3|Afg4l
z+U5#JwM2CFQB03IHq>L@HQ?6GaAP?nS^;&;mv3{wnu51<P!HprwJ1#-1sx53l~E9!
zHJT3EzEXa&5?jGF(|tiawsFdp{!q$lB+yrUhkc+b&-LR_#oXOfF-3_qmfzqMUWHoy
zp_xCig2LuTzdcv#8W!w~#Gc>qdSp={>^Xm~iM(5wyJzwng~7cjhlPy1#ASH33+a#q
z_j05LJs*uV-u9zGFt`TRH*yT6f8EwXL`q@5;Lmg}DnuaR!qD6gSocMC%K29A_tOrg
zuR4B1_-z6DeZK4yU$_AygT20CN3I{%d)2VqB^BM^xnm&FlP_WWE>B%IdHpQhbo9&~
zBxG<%;IWSq@(frFY%3zV*%$Er(Bz+rWYrr|5{iZeQ@+ReO7cTH;@7@$jo-n(HX~B8
z=oX#hb2j{*_3(ST9gfXk-T58&<$GS)=eIB2#Sn5}AMpF4aQ6qpI(~pg(%ah5jLJGr
z^+wJp2#$OWiuwC|M(~pgH+-R+^Ubi{JN?N!teR$qai??`|6%wU{J@6qvWBBD_={Du
zqZyxsCcoxx{0@63KAnabi$C<Do0r`0Jb?<@Z#!?=uu$LM3Nh$%7dHOVG16;jaO4vx
zzi@Z{Te`-tbdAl!djB>o`KQ9%U#2`T{^KzB^;upk=lx)6*KjD}TKEQo(Z<~}j<z;z
z<;T{Mo2}lPD7Fy);^yFkUIs0ltX=!`^6j0#28j8u+piP9?0+QD_rvUgo?x!P*yN-;
zqY^ff4uLGFe90W%bRQdM1*d1=5^_~vg*j3CEw+@?qQ?OzEBFX+MRp@ysBy6}2#IOS
zIm0!OH1q_%1c4EYAJ?eRdks)Mdv0Pr5H#<ikKnQ%1&_7kQqL<(t;Ri)?+FdIhDT<a
z&wWx2P7$EsXA3t3R(1;dr*oR~n{+eKfO>!}m$?mu3)Lk-wyM?$cD=@Nj<g0Xgb`-2
z7>)oIU5Y_m>j|s_nitsJP))@;aK`9$@EN+V3!Q%FmCy!1S9Y|5dF#SQ$)Fcmv7d41
z3+JW#w~(peTA4d#g(CQvq%pD|K7^i5aFhD!8>q{Fg8HU&L9)coJz%HXuB<&Kzm}e&
zdhH*Kv1*+a9*=R9n)e5BneNh;JM|@?FO&79QeSS?mp|&u+NHpW+egN!@R<G-fBz^l
zb3%Rt{TCRT;a)^%+D{m11+fx#cXWRqJam%_&=+@ZN(0lRUND+W^V(M2z{5f&$sPP@
zh2$~jyDFZiQ85_|?<3PPvfZ-pTFY-oWdyb-2lgj>=C%tB&j@a4{JMQ`c!m|o_x`#r
z68t!@z5VVb&>Bge+Uvk0c(HPHD1Gx4tnXFE04)0fH!hg<<W@}W<}h?zBM(;8@B#k`
z{wH)MMh+HucOw%4@_`IG8Y^PXBwGIr?8iDQSzE$3pGM;V<`Ki%qRp2H4o;iLwrX?b
z-J#Ue^g9~QL0OjlAW^dH7mFxfD=RUsxI-QWUz7(yEM}XAb08%$rJg`er7+<x^&o!Y
zu=jg-dDz);!;3}?_ZbfhUZj^=!mX~7<ZCgpkdnlXdhGJ}j)JQ$9TolpJgd$C@bJgf
z9c;RF1kiYw<+B=5zB1kgZ^1uS8~g)xh4FW&ewXmUJjIK>P%a$Fa1L~~9G@Gi*Q_#+
zoW$()y3g5Tp*an_r<)V%)Qrhh>c3FEeraXJBMxW~@ovkmugA-^(53bB_*G~g@2$|n
z1-SS_)$@75=I=A+fQ7hq_>39&;SW~xIga|U`oQw6bm9WN-?!|}rvV5*1CTkq<o;OM
z6`p{ns{mVGy%2>M+gG!F{$TwcTtYnxM$xChGRt7SLP7XnB&HsTh#vU>nU~ZfpRybt
zS+QnLMmwO@O5?Z_(uHkVR(WP^6!w)7myF%$OCzs=@29CRz6U%*8Dapc#nT)54}*}6
zo*DBAqz^m`{g{V?X^hkFE(Sk1hk1UF9S0ys!wvdzB*vJ@bW^qT0J;z^n&i_b;>`y_
zCX>)<a#`YNuolUVph4s>$i53715K;?9WI*f1by+o4Q_iVp4(dZo1W=5o0E`FKq6!d
zziDQgBUpxdoOUDB0oKqR1N?PSwY&i8L3xp&PzX?RNdB@Qd)l^yTq*nvkFo#lOR>xm
z*e%o&dC9a7?C5-}ZhQ+!UmEq3WAXv1H2W{i=2YkJ?7tAQfXm)46M!31kESD3!77dN
zffmK`9)$VXdSw4L@e2F0fLF7c92p70Re^2D|9Bu79B$R@=RBon_Pv-W3vO)u+7&Fy
z2z-vmw;}Jdxu<7#A3pGB!ZAg50xVBfaChUkU4l3qC*bq`(D+@azz&aPPr~T3BC`ak
z#ZOD6dP@VCfxh5V*jZ*afZ0mO>qXq*0DfY7(~5>8iDrB&-u}H-Kw_)G&H1%S1x&FB
zG#~B>6arDdoqoq9CnOCEb>D}$EeZ#qFh8)Z!$rZ)n+ig{jQmE`z5shE5cyvbZ-&o3
zC7omYB3UbP{)&_}z#oUDEQg19_>?|YXfZ3Q#V+5!0o)b_UvWOF)X{ktqC$s{Umcc-
zlu*6Am~1hnAG5df2`0)h99%iG<ry+te)*633?$im{CZdsP@pde1`{wd8Nnrdj3^Oi
znmY3V^BC|@B;MXgZHlfarl+Cn;Rp&L%*9eEbaR=Zsh3}6P{U(67WNjsou3BwrA^7^
zxAJ<ZzKSh`YUDvyHT(0(4}ouJ*Mi+XVtgxn8~D~!w~|N!nPN#}(qkoOyZHwNMtfP~
zSM!?&@wk}A(M$Kdib|8-`hS@F67Z_3tL+4GAtK>KB^VU-MpI1`H7L|XL2n@HiC%0J
zhk&SQRm6&#LIM#3CfoqI9*%<IShYA+thUY(sI>{uB!Gp4SY>bkw0LeWBEu(ROaAv=
zd!IWI)bIQL=YM`4%{lk%Y3()bwbx#IZw}F9qVeREJoe5P7Uwm(fp^+63La(wuK>cS
zUbA2gxdemW)0iB_a|s0UM|gc|W?^t&$9Iqzwa&RFI2E`+tq4B}PW8&#L&rBoS!+7i
z6lJxT$%kOD=g|~2{RJ%#42HX}ml+(;!WkQU&ILQC^)sy{($k*iFm`g{rci@SaGI#J
zM~N~YE`FaXjJ%)bM@QZ&HS&HffzX=QGbyBvf|fa53Tu=`*iDDLHOy;!9*ESdKS2?t
zIze4EddNZjM{olsIHvMsMNW-*xvWIUG-zY!8ule{;Ml}GT-yB*_6K6`Wz7NLqzgE@
zCpb@P0DIlF_W4n$B23^i6c{1j)EqT?1i3fD^O1oL^B0blnWTu*ZAXk;eL#dA&ge8u
z!R?SHtbT4MTWhwTy_rAkH)(uv%7oSjnt|rO$y{l#j<@2%f-DQ{Vt5w#IMtsEUX*LI
zFqLp>zKcLmadATHaE3!029sES!OCgSnx?v-MWZi4TSrTi0q6|2J+(iNa#gwFs)r`3
z9SJfH{I|KPUU5}!q+WNAB)RH*UG-1oDsKA(?dPg0KN;eJsy_*%Zu*Ua_P<x<ld8%<
zOqKFUs<i)GRXShv5_{qf^(a%1(du!HdR(a<?>1oA{)O7}6*E1G@o(8h*_)Je3D+2K
z{9ZsngRiT-H@1F4H**xGmYvrMbt`*gE#~BE_sm);6Uk%GtEWnaH~6Vc&IYWv((&+H
zwF~eWv3^)0G3*(Lyg+0-LrRPAii(*@_JgT6>!~N%lJyqNQxs;Mek&+-<gOMEQ4#qN
zp+FB`#22Ux@&bWW^CRNc3}QGr2}4#y`GRhA5pXzJMw4Y&5`@OE)k24Rt3#v*^Vm8%
z!qx!`Tc^bde-I8ROMwwRPd?FGpx(Ly+r++QZaN*!dAIe}LS4!1KeFQ#;+OamoF@q|
zV{>;GV;O$$MziT4A`HJMwo@>gJS7b&bVRLn!D(~to2W7wHPAZt2ZQ_YureMWDU(Qt
z&Dl>i;sN6~53@)0#nUH^hvnBY!EC8*#e@H7atUkJE?<D3m|cHPgZ4|v?&rO6VZaXj
z46iZj{4gfWVMht_ayeGobGf-i(R3CUt|;ATPSlm&Ep1KmB8Yj?uP`pb{$s-!u0-y6
zkO9wcVG$50AEyOFo06cBNqDnAc5ZikWI~z%?=J{o$eIKzX&(m8MtE%sgF8F67iBdE
z@sS|p!m~5UD=w^#t@z%#x-e^}p9`e=Ha6=WnXZy(e-o{ZLV-h`Nf`YB_}>w<6%RP}
z9l0e{Ps7;blK_6tp9cP1#BvJwg~1(xt*5}p?=u>(Oqw?PMsXJo9t11UQxqJ5{*CY=
zRO3*JVatKQyb{HJryf|X>tQs!L!RKpMCyK4>mA`_xI+7x!AC{bf|iIUB2q7r#WEZc
z1&Wn{(4XbGnop)c)TAN3MP94D#Lk_0<xir`I~&<K(|U)@ERJ`;f3jhJPdeLI9WvWP
z9FnTcz}955Lpv86{aK(_1y&xd5ne9)U^f@2aCx6ZD!?9N*#uJ18uNv*+?7C&DOda?
zkdp-DB5OqErC_8EN10=5FU@Kr4FsfI93eBpTPR-5!j4TyD(q~%G^@#f)M^-C>U**B
zc8=`7Vq{k96}G=ea_ARga4D>h2iC`(8^t;pjaZ*_SKMHe*oAkCe^M8QZ4j&jh0uq<
zTv{yVyc9RAd9TG*jYP}^n?ujg^#?zolEg>Xfo@jDP-*wioA3kWAc+=V6E%kk&*IYc
zXnLz#fjWJASQ?ZD4svSW1f8)T^$X%c%XtjRuw$5(AyFsx+%NHod+3rvuSjBsn+Q{V
z?r*VHyohFb=s`*B?<S@oarbs4LI)*<?v})p+(Zu&Z~YvJP+v)*5=rD7a$4^}jY~Lj
z2@T~pSY6U%i|4E|dcsa?Ih*9^jYUxYrs3p#eCH36C&T<n<arJ;oD>Q*_!tf1H{><$
z>i{C$h$7J#P2B-zA#sge)44e1YOV3mOyt7&$k7txBQrB3V0JN3BR(OYnD{d46z8tP
zDM|X)SAW*BE9{h`^~i!6s335#ruGAMF|wG!x75fo^m2A=v4aAjKPCriNU=Pxje%pq
z%6Nv4;5@}FhRUp&r3jh%YGv%bOe$$qm7EL#nAsybASH}KNWBB8&O}66;<}o<`1ruN
zjgNYlyTFFhV%oD(vtmzPgcE$UYxZn&PGbdNPZ@gs@JG#NTm>)Zn|%<xfT5JgE=E{Q
zF3zKgo?W>CV={&<mm*5FZs-DYs9^_ch+wXp>NGLe<(NFx6Ged<lL5wIlI7fm*h)1f
z7o&hP7C(7nU#+sYo>J;vOnN$fs7a1mO|BNFsWQ|;LF@|v!zik+HXgo*`vfom&Luyg
zOeuA)=?^vv*GNbKl<49(KEts$8wek-7jEZEZZo6#a$6$%BU=2)Yl?BS+3dGjEiAv;
zuQDI%FY)I#j?7(Fj0hpvIU}={jl@;K1<li^Mdpe@?%kj-9=X$<Picps2PKhcr{q>D
ze9VJdr@@P=x<wtv9+;L~Y|S2^Opa{ijN}OlbE_=4_fZ!K-Sa&$up@Lo>=>u2^PdP(
zaDJm6zgCZ1)nnTsNxSYfnAdOOp7y9eOzjt>#03tIFKY350a;RuFOv^=br%V1U`d)r
zE6x<RF#8ebCmkMk#`mxH2BzRW7<-4(GhX%=d7y+yRAK{Eq6NhXB-I^XynJ!?4N}K8
z=d+C1ROPsgDBbMNm7^eDU;)=X!Xnm5+peb@aXn7ea2GtrjEGfT$3$!`HxkGRb%5o*
z6FO2CnlV6Syv*ug_oX`>zl*pRdFhvDBU7xjkK};^Zo&_7^Z{T(R#c;$HSa%2%oy*#
zy#$X!te);|A6Ky2nCU<mu;>h<3@@hrAe9|a_aK?lw4UZ~(|VgS>$hes;DcWAej?NG
zil^blADqGTF1_M3=pSS;)TLy4y_RXIta-+pNP|~=24&hGd~hEgR@ynk1y>G!a8@B<
zMZp>TX*4|8hDRMRy<9NuR!#^QsfPtZ#Eeb{u=V)j*Bznyz7ak2qtCOiVON9Fr{di8
z{^083z3Ypc_G53<Dkve0*-uM9tr-M3s=i|Z22}|#YEb}BE0jPMm{9^H=(77-q085N
zxGZo3az)p?F4inyrCp-FH=;(E?3vKae@~*)n!zvh8JEG|j94+8kB#q6BO)ckj<cAL
zrOw-YJmkEFhup>rTq<P+E}tbRij;>W_)tm7=~1i5Cv5NB^sD$`S58XOD|OHNVxjJW
zaq|elcg|A>MT8$w59<}c!<#_VEIC1**D86&pg#f5J)3{PuvLt|j4sR&{aBw+oanC4
z2rrR}D!Ou!n&a-2wTf%AP5NTovrpiT*+8KwL*Sk9&_yzOw-~cc8NIo1tdFKb7AQpe
z$n3O_7xo6?F~hwmdZ<I9f+$l80sss4z%XzS@|)NB$Jt6n<WNOGParm!I<X3Kq;wN|
z@`89+?<kn@OT8)E-AvwL1_RPP*dTR}3F(HsbPf2YU>7d=3TjL7*h@$b*HQ#Iw53QK
z29}q@@zm-(hiJ|4Huee1Ot!^w(2_M+&luJy>c9TCajGP3E>o<GT6qBIu%%&_2p?1v
znj+I}OHt%eMIV_S(aQj+XD$|~9~EI_psfUmbM@>ak-2~*<RT8Yoe>=FD$+{R?hQ}s
zqtbbITD42-2|-D7;7u?C=Hmg1oj-_ha2h;4E*4xkWEA@yN(+pqQ-Bin#WVRo$D*$R
zCQyu`2%5H<qy1h8!zg5N?!nLS=YT*cL;nX4A2b>sZ9_@gjWQdwq+i9sMxLgIZMst=
zmN<+q%L3sRyZ|!Q#s53~JAGKBf9M#ri|Ux=d8~w_N}I)pYoqNS8fA<XmC!DMO@Q7?
z+pN9|c9eFx_upNi#rE8Q@6N9fJ_+q|BOkH^c{Sf~u;ZFgGlR+B-Ya7MntHsX9?z=B
z<1a$!kD<^f$ooIY7l+?3Vd6X_8KsN89F^6gE#wKZXf#kNv4V9cSn|1Fpr5$vPEJ)3
zQ7a)m_1Q0A<{WZ2>WB>E8IxE<M$G4*jIueTFYS4zSe_T~2){wu6=C&;U*tQ&RN%41
zs#?buPD}f5%-V2tNha37xImPu*YV6~<IamOpv!&0EwSFf!`2_)CHo)Nf7Fv6QmjP{
z0&U@?#QDUdQt-*7AtvXR>W07=r%pv1ZITk86g?CX*Gs1gAJ(YM;HR})BpT`3xv7Q0
zw!jtxZpEXFStk+<OX6MpmPEh6^O1sWTt?t%Br(ioq*c_OT5R=gFAVN)`tGRH7I{-S
z2;z$L5Zbf)E(w0h>I!z@oCcuR8@hrzfwHd#8#VdHqLn9fN_3b3eP}Z8xls)>z%Z36
zI_$$Jw~lP;x$r`=uL_Q6tUM2cCfV1tW~hgX3;CgbQ}MmL61<A@fZGc@LPEdB!mOqu
zMi;};Vdl2t+-@(zvt)r!6SFi*Omw*@*b+JgJ#udRFJbfL3qW4pk`+(h82*O8*HQl7
zUBqtfHsytWJ$o+c1Ani2dY*Rg)Wbx0fsjt@O>JX?j_FRz&FcO|VMsv_7XxQb6{_h{
zcG_<;fLG|$nGF7N4e-jrh`mWQYY!v=Y1L-{{k?LC{yKgBp<W8a98kciT}~)zQM~w9
zZhFJo@ze(tZBj|9JPd`oJ9{Ao5(T8EvRb~R^Tp|NTO>G)Vh1`RgcRWxs1ser&<fmQ
zmuy>1kfC=K=NfmTMtU#NT_4*4(?_uZnU3BQT*^&5HK-57K;(mR9`N15`Vx$-#>#Uj
zuleL87}@aC-Ir?G@Jq$Cc?`8Y+EfS8+n)D7RDESZlp+4%c@SvQoiRc7AC-mv3UYHG
zOA7s-{v>$8-^342<QDOnfJ5i`=fEP{;=>PO_yhBo$%7&LnFI_bhWzpPe-3U3+9@Y{
zsEsKeQ_^WYFhc;*<c^7o!wre{ll7Z)tbcuh@GPV5Dw;AjqRaS1P|C2mePJTcx`02i
z@Id!J7asToBgzvfep9}qZM-j%cQ$^exTRz|3tl7@v1B>qrTOHdm5Z}s=kGROCiSW!
zvq_Q*<t2)uiVOl&aeOw_+Bbi4oHp$@>m`-cv9S|g+Khys&PJfTaE6`s$@fIXoa}t$
z!2OrN5zYT|(6)(iSWvgh1;o|F+$C7bKjRrm;KRDSRX<lim@92sPd+J4!!#t*m2fs#
zYNh>s2$hY>LWX2Bk5in`1~Nuq3%gva!-TNYwFVfTb4VCLg%0U&GnTM?OAT9RCIF%!
zn4jIs4ns6q^daR~embcJtX0r~yC_%;jwfu|Xk)&ZV;pw#V<SH%@7Cp~O(F@vyd3G=
ziLKK|7+oCw&?hY5&d1eiOF<jY5tk`CfJ<^$H`MwO^3rAzjAAb-OM}IQS+HP%pUajI
z^6)Hrg$PZkoFZv^Qop5w03V5hKo+GS@Zx-Xi&79!Vt$UVGP2=FTLDcOjzKXat+e5T
zW$I+WUQt}KF7$%9ad8fk^N-~afo*83dbJzth;0|9P0az3Nq1hFNvTzQ$Y%0GSF^C4
zcJ$tK0O#5R5Oc6C_}ZBiQy|m;o_98H7fruGJvyF-G(QxXx43FQ!JhewEE#t`q0<Xx
z0O+H8*e>+xnNwr*Db$qSPezdNuAIO0c)ra8Dy@jzu@7djmz8$r`DD?lsbtMtMFNJS
z<DQP6tH@So<$XM6D22IzV?_Ec77;}GRL<v5lOprvo9&r)ye>6gO07OGTB=5*g~pa%
z(L!O_sui3kNw&wgi&818T3YOUvN@N3%HSeXY(7r}&3a0t547=-KS3qg)wGy-EYJ09
zSGiw>jR|O;7CYpRh+RdiRtd@pixovMl`-e3B=V;CW%Z{SqeSS$(W-<_K@;Ihl)(C#
zuu2HFfj;@`e;^(}eSVf2QRfm2Xek-!p{~oJu6dTDXK(0;0`b{cB@kW`ONMqxg&gk^
zPzZaJ=(9Y72g%q5X|R+utPk~~v_ZK+=v$rTh^&NX+xFbGDnTHCKMKU7Gt@8!j)R^E
zEs+td&6$I8%Dp*p2aNn_4A7LzKZ9*fIe&agQ9vwqXXpvOeH0d<_}dfs!25lo{BPG~
zmvB#+?4RJ|2O~|MthT<Mox>+a8uhHs&ROgQePnM0HWt8o=YeP4p(avtU{xY3uC5qH
zbXI@8h>!Rzs7z<!f-<u35ub(8C#sfAm4%P^EYXGtOZC^lopBpx0Avy9ksKL%MRPHo
zFPVICR{ou6*L|s7&Mq!<-g_MQ*a4hI@ge@nrGz8#{JlA6Mb9fr1&_%2doOMyVw*kp
zATim=I3A~yy_tja%vR-wI-Oa!<L6ti;wZBTU*qTTnMj!N7uq}n&ZWf4eRYtjw6qHm
zi0pjGly1=!p2v5v04Y~3=6QTaqX{f>On_*!aU6H?1ro_c(-AQlMkv>?zv&Nm^TVH<
zPaZ?}vcPXK_DkGGHFZAUY1CJ6cQ#gFmDZO^41%Qx>b+>mIN8gHp34U>|7qdXQG9h#
z-wl!aE>k`kbd@G04p=;gku}_gMrrZJY=lecKCWP?5HM~d+)Iw|?X=Z#F#L`%Jniao
zK7SCNdn54NEHhMeQNgox61MEOWBTxk0&D0obcJIDwUHa=ikjSwbC&|*RBoI*CRnsn
zHqIqu<J^jrD3bpDjllVjzsJEjn{dwfQTTos|F!XT{sjEr5$W&siT%A;`pf7htoZ`}
z&65UN=#p%dTUL1@Hp=zFM!7!NC}%v<i2LQB)ifU%&oqX&JAG9@zx^n#pAWO25B~o|
zj|p3a9+$?$*%du#&tC&s_nH{5;H%{yOUcD>;xUJEai-k92rJ;WRyDfIj2Dt3lNFh^
zuv}odcbU_^inwvcJOUAXl6H3vkF$K2D0(A;qA0(z{loV6srDzZeUt59?aEPPXI;kc
zL&re&InHw$Cp+szZUK_l`Qt+|6FQk1!BQ5t-vpQz0dDL&Q-S%;JgA6!!~m>DTY&UI
zLOL@7sd|Zr7ml~s^EU}58i4{9%LNT7pkT5jIZM~_;7x50!K2Xxaf8hSSXHJJW_mV~
z3EzFxab7@)^EmqgJW3F2z_ub0Tx_I0VO+ub%5=+@VqK8}R-I2)&0K~tX|IMm4qjtc
zi_+&Yb2gkmS2%EB66WJ|FCq~?FTl@w&z7I@W5rPC*MQ#gROHI|4ZiT)w~c0#=MO`m
za{-{5)IsMy#SgY;43eGi7X#eQAd)w*=v(J_te{(-L8yX=ff>h@*0j+o|9Psq8}SQn
zD|^^*eugf88&%-v2$ichYyBN-wFWhYZUUX0<hh{O04nvEe+m6PmP22Hf6B9NFd_Go
z%B{FMi72r=@9<+mYvnEI!l!2dQj*d3JQH>&v2Q1H5}Uz%pn;Fcc!HfsK)jXm4dS5V
zU?4o*I@|Eei_hbUD9{|2tKy5473RPXsX&TJ1t_K~@Hz`H-Nmn*_zD2S8UITdoaTps
zx^@irG2;d0?{44<3_Jm%3i-z$&qt?6P%-acE-GG05>zZa|I8#;4gn|3dyNWT1Qi(5
zh2x{BfHQ<O2bSk8b1oqmjJb{yFphqc9{@b@y!sfJ2yAJBPajsV!(1+VOBi((0oGiG
zMTE4k&Lgp7*mNyFfWNMJAIyYPus!`h@8weaq3`?R6}@n>cZ%M8)&_**V<3!!&zQwi
z*#RRuOnm~J;Ra97&KxCA2bDa1qknD_MkAvH_W6uC60!@!F|f%ndB#1-j++o?f5>d$
zjyw#_=H9hItZ?8BY(f=>@9Bb4XE*c(%6Qq=Jmx5cBYDcSy;y@l1U>iB<icMVjYB|?
z9Nh$1IETl*kIPa@2L{Q@p2dTR7?M!6LQ4hf`d%lMh>hVxRY=u`U4a-t%aCk_Uv}=<
zBv`vc9zgAf8zZP4@n0@#S9~X#hR*?N|41H;{TGMd$tG~?jTw(@&zyd}0VD>X7j?W7
zpoQ3>Z#hB6Z)zM1l7N=TVDzyCYQON&M*x&3ik)qCF2kncz`@jMeS@n5o0GAJx3Wk3
z_Cd|zf3|NAZzcxQ>$(SfKWg&gVjcv>?XmC};VAajm;<<3A8?NLK?$zKqhRKsJ>lc)
zu-$X$`Pg4Es0C4Zoz~DL*bh2rAGYLIf4#R2Fy~1vas4%B@i?=?`n)eg_xX)q$4tGY
zi>YqMd8-<EC>@<U-Ducl4SuufU#Ww3kp-H*!bLJeGlP8}HhG}}I$ixaL;ZEHdRcwz
z)fwJj6PK}Ad+tHdh_R><5+%T!--Uiv9G-5>>48MR=i4g>f|`me!7U}BXVJ~NZq~(v
z_8Se;ar(s2B}GQVWj!vl>SiQ?uZzy_iSHikgC$9r<rEESVQPw`V&`JvpnbtLO`%L{
z&VzK?77aqs=Dw!y(gn>Z0$1T6`n$0Nkjj(Eq+F(CbhF@$<U#w*z_NXuI_l`zz*nhe
z@)u^H5g!pNxi8gtm^}yZ7_a(3Bw~~}B9<wR;5bT%l1RD*ybk@PAVUri8Izx^5z~Jn
zCA`q_1%chy;w2yszmu;AFXWT|;kU*gRO}0ite$j^E35b>N*0`_2NM}WN=ZtuGZMAq
zJHaW7jzLayJ)~hii5l0QF-z7u5_RsnlcMuIHQHD9#Cfrl;%3hhBx1gI^R7<E*9+6S
z-yR?8bT#t1a2?_N`>d!&&V)uTKAQ*9&OkYt#6|3fLHJI^y!b5u_l0vRV3dJA!h3uf
zXWT;#1ujB|{n?qjjeGmx|LfE7=VmYdjLREmeAkM-3_ddu!vFhy#*AmcZsUx5J@@YF
z%V!Ax@528F#}yg(E+1!HSk#Ko7Z$b2-*xhLQ_^lEp3Fbv()sruFaJ(P?H3j~$MEkC
z`Md8J)N)}_BYu4Mcl`ee{{M1Zq4C`&{#nI8AM?-W{DUyn7Qhq(o6W<{2-{aXUD#Z3
z*osuSQo(%K_f<#ujzdy#g26z-+po(kfMg}G1I#z$|NZIHJ|1UOY-FFBlE)d7)~BN3
zR+MbtZA|z4YBK?w)ZxXS4JqS{jc8VZ@*M&5{0n0y^F~tABX9W5JQwzBO$GzzP~j!;
zo8G?|!{Zn=#y9Jwo4?*3qwjL4_DORe$0x7=4LFWePN`P<V0@}!OcPGxT%ZJ>!BAqE
z`D59il7iZhL%aP-V?^V%nP9sv_b<X3OIN7)hc1AYf`4co7bLI}(Z;8(pIFnOT9nqY
zD&WIA+DTY8y7*1k6NsCZSlTk7FG|Yke_KGMidC6~cw(D;E0U9~v|SJw`b-~_+;gN2
zGYIcy75;x$nxUrHK~1s4*#jX`iw~atkE!8<?qr9B(Q}}0PWBG@K@6TgB4&Y31~S}Z
zXw=OlAaITgfWc9vR>s``!nE%%<GSb=0rSc-E@Ev`{YBabxHr424)1$I0~Ey4?^a9*
zNQG1`xv(tPC$Ki73deNgjCWKi#2pP#S_D`^<O?0FL6#$Qc=EtFLRlQl#A#!K5P}g?
z)8}uinu>#SYiQ48ynqUe?M3zY0gGrzaj>4R#a4}a)H9c?^q^XT$$`nVG>vPQlk^gk
z((8{<SFOxhBQ0_v3HQ(RbC={aeFf?E9D!D`ZPVT4Ze0wWs&YFKD&=4fP58#^;KgU5
z!kJA-XJ=fw4|Wuez@8Zp;^5d_08&{f;Rbq@bTF0)zU~E|E}|6`>8`-i(Ay`HbW_V@
z^F(lX8P4?#6{2pZ7_EeN0_O4;wA@{;qozO}*@~66r-ODJMmt#%!JsR1ZCNticv;L0
z+e_le8O-&-1^<zz^ne~N0p9>`YT?w4wx1(8iEHJ7cG*?0q=LkXWA$Px*scvV16Q(+
zx=z1ap4Jm&u6jXaJpw>MuwVpD70w_$F`Ti?6-Df9TuNjkzW#ZadhEYTI`&DCu7_-K
zU{vDDMfjK$x?jqr{i%uNXcdsRL2a>*L`ikPUJcy?1>zLff~qeebe!W^f<9~_(*?Gn
zO-A)VlE?Erz;KFbkAO!x38{uX7Juvg*~8gL38knC$^$B_q|CJ3coSZsAu19&QCp=Y
z*!w3H1g>Kv7(uJ*>rSp=pX?9iL80CNt{VD)@kA5jRE8hbUe{O|z~W=H`Pu0#jg7=*
zfMJAnRTaByrB(clgE#dulF|v9tekt<qH_nfDvHjvuv`@^tRi$Hs9=sG4`aUFLiU1o
z7xp4V$XKFKeSc95e@Sn6KUlA#VDEXb;mzOy_M`-H?9--$zRC1kR>A6<lPO&)Xqo;G
z9N?K<B<rIz+Du&HbBDAy0Avz?i68+OpnIKOm$E_3Cx}`Y!(6w*0fw|*fn>BLO%x#q
zDs5xBsr*LnR5-p;X9Et<VO5X~RtoMG$e=ICPcj1OO@o-Nz@fxYH@7MjD^t9LHz0%#
z2H+@Du=>`t|8~W?H3fi<eg+^)+#;=8p3~0&HLbKW@Q5qo?ruyh;#97cIo+XlHUFCq
z4nGx^a4dggO`=r|o_$h5;o5DK91fmu@`=Gyo)GF*{N_KZ4hs0;s^j%nwd#OMXq24w
zHGH5e3-Oc?=`zzQg%Rv7B_l?<{Q-`Hh#t+qP?;4%5m=<IyrMQ1kD{3;iV@$6i`!FF
z3}ikDna7~$nc3VHsDUsV1c;jbr&J(<!xN@JSZSY$T+C4y4TAPLqP2BrYnKxT%TTfw
z&zk*KWi#Gq$a`w#61)fS4mrErnp=lAOx<x+xpk89KrY}?_YC55lKElM-g#57RR;^|
znDOB-alYbkdCpo<3rEWOIoVu8qE1wuM6W4sZXeTyr@sAGBo%U|cARTry?kMcG4nbM
zGz(L4Nhw5nVY)GM8lN~K=1NrCQdosHP<tW9=c~(2dvrPMFr$v4{1}Zsxr?ZG@eC<U
zcWy0EL_kwC+CaJmQUQ)E0GmV7<}1=#W6DhH8c<T)AKa*5XY`z|DS1zRJS9b(BSM1u
zgnLEy+;AM)kf^`2O*6JvkP=T2qV7q7rVx!^?KaMeZO?<#*f=~8J1>ZDTzAiTbrT0{
zaeL8Q<8~x?#ds_2?7lSOc(~H=a`Akb)(6s*v+O0v3_VT2;o*&DxQ$kK-6)wbo_9f<
z7~ak3rg#_J<A*+jiChUk;wcn!9A*ae*J%!&(<O(JB<0kWRqVM^n^uN%I*JQ1`<27h
z52eoAuhHYQlSO}c3_Mi$VL98a3P0fri)B_B@6W9PjN=McR$|a-3N41dpda>Bk(-zJ
z08<EgjvzPWDCf`EvmC*;m+Bbf9@zx5_ERYftwaRxcfgY{UheXC=n}U0qdi9(H|REG
zM3pwcwbI5~wo#{VTYg4v!;NpFgHr}Tq55$I>~=-*)9%-7_TZ2%+3d$Cewz4bWdzd{
zzaJDoo9gJNQhYoKP%r3<5`A~JOZ2RJ;)$Ls8qaeA9^nNf2~>e9AD$OOcMuI6Qgjll
zk$Ie}kSHu1+~PU+EXTDSq8jP_+8RP-XWYD^7ixir6#NM$f`B?#4t4DX{4CMR#ZT{x
z_%q!tKZy8Y71pFO)4Cr5&gdI)<=8`By^ok5ob99!j#p6;B)G#M6$1F$WJkae+Dq$o
zUOA)=q0DD0M~VvK{;ku9`<0ZoALDD+M&PuS_>%5f8B<t;2;9pP;&J~nQ!LN#@gVMX
zd9+^E1@2o<WHlQ1bBPB0Ku>5Kp?2YI7#nnF{c-DI*k|pkkiHNYltwu{kHZfXh2@TF
zMG`_Q7zgwtJ$8mnhW2Yi_(jwnwu{{J21a`T;*ri9(0UI+Y2X{g0N3zgKPkUx(1ti|
zgZK-`?j)ObGG>l%O5bTBARdiFv0?$J<VN{{LoUc&DtsFyNK9ZUhh>$veU!~v8Q1rL
zT1R8Ql*TLtiaxUiYfQ7}%6I5cYg82~1Tz$!ph$_PW3TcCq0uA;MCbf}MlsK}FcMpZ
z)oi{zxh=@ITIs6wlxl6rHCd>!U`GXRuhl6*Nr|XHHC-Yp*0Fb(%E}n0H}5OOF1YX*
ztV*P5*smjeR%t|R2Lgd5U3bi}Bi0v{#SyHpQIqwUy(I65`i#Y;UC{%n{1vgjMjcF$
zDR-k(#%M1)-d=GlQAt!G#9GLb_SfDr+FpcMY=tEGE;x*i40B{;AkTJ*7BB-@$2sj;
z%##1YY&Ft^jD=Cr{OlA(&vd8Poe`8(90!>^mf%@w-SG&Gk?}n$omC-Iz9<!FU0r28
z#oDd6Xzk&!F6<HTJVI%;G6EvB^Ax{rJ(~PhiH_B(js+Dj$UN5_@_u5+u6TwWv#zc#
z*i|{#)P@|k7S9D|bBl=VDr*sz0#IP~JEd`b9%hRGzyvBPCk<O1wdxm_TLMAOVNux4
zg6Vjo@bi3D0}Vpkar$Y*bt}GTL#<5`6PcF6<i>)_lvf}2MDAruBTG@LoEK!XwjK~6
z!VKMv$i|Q1>VJaRos76VN$9J12q!Ck&TnhQqvLs=L!g!Rf;{3H_z_9fEU8cAd=OP)
zA{w&Tzu4&$Iwv?gg1|dX%Vn~*q#Pj4MA$Xm5%K<r$s-chqCgv9j-E<iIh+kpRVi9K
zLXU9_0jBe)zcBJemfl9Af$%F*dqVxjtWJ_AE`|c@r)PVj>kVE^h;w+q>xgEx-e4dx
z*||M{ShAA!@TMF+05@m;{2RO#!p3!m+Tl*;i5=VN#i?&%WC%uW&U5;qCFf87=EPAC
z+koD4b|!Djdm<HV*;siS7ALat0Yxu-Kc*-al#-lDiAB3f(Xpy1>Pp*xJl8euO-a0H
zZ!^Bro45H%-~o464r|mO+W6rSr{G=?fX7ZAj{jSM8{l&Sunu1kP%jZSzC28+Ud*OG
z<sfdS{jSGAc?ZXfd%SmcXB+c+`5Pe{8INCz%mwXG;UJJn+Nc$H1d4p?EWQU|%<hUl
zlSiX{*hK>o2{AAml=-H+Q06Gp!lwWZXa`~bAZ*m^S&1~<pPGh9zfa+mbJnKfYTcXu
z_-&`N&<Z1J?+-}Ff{!lfj9{zt;`z;(MZFi#59|j}04ky{`O;%&%2*XjBmD(3t_I_|
zMj&WS4^@(L%^L~vHlR^&ZAvi{hZpDUNG2f0N5m+Gb6&a|M7agRtMTGKqV|czN6K!-
zIR4c%G9eHEkB8h_lkk2K?xm@?Y|x6j6%|8`hAXiRtRy{uW#vG;AA|Q}^4oC&s>S_0
zm;fUTKq7f!00O19<Ntr*|E*?lDEd)Bixo2GJoPIMIAVbcd!Wtmlg?KY(1EKC>p%kh
zTNS>&<S{Uc{PCC*v>*5qzZ$C15M^dDYU@l&r$RM-Si^$$@`I6rW{H({EyNOTvQnz?
z8LSjZAe&k0T=?EsSOgr*bbP}M`aZ8|_05L7jWUB*dz}*`y>Co9_*~L+k&fznXH$OJ
zuJfm3Su<e)KruQ7`p=nx7|(D!->UfbiZG5dfsvn8fZJJn7vBD(#mpsV4FAF2T&Vn0
za-JU+ci4>}9R7UT`iUWB6Mwh(#^V7K*EG3jdprz0V#G3iR>@$v=V#DW-Qx2RWqNI=
z3?8X+t9&ph2UaA%in{{yNT(UhDDWzb%Gjh=HgJW+c<k;fw>&!`K(h9NwU3#o9al}1
znL&6l0h2?RfD>qgYGOw=xxAabLq10qg}QU7z`h~p6Begnk#F+R0eyB6RvDy(o|3@<
z_a=Yaht;(BDOD33tujUv2d6^p$l%7zrSz$AiDrN}SKO%qR=2Fu@i-K-%ujia`sQG_
zsdhQ}KnJ{Cw0OC0u^t-E*+Y98@Rt%_B^=A4)YM8)6kko<qWF?^ZQ{!sf$UeJ9K_5T
z1%Pl+lXXAv7?}Xd3<yl8RA^odMKF)^(tJ*5uV9=gf0||ttOx;B%OYS{H;(6Vt7|aA
z@5|so@7a$>_^)KpPZ1Is`i*b~R%nP}c)9%6aNy>Oa*~vXYUn#s&@F`<#FZQgH)mlW
zQA;UMVnC4T4B?as2tsG|CTDa#7D1!Rt+WNn8bRWa8c`<O?41h<+{ZLg07N-zL)5UQ
zAgRWcC_*gEYjw?MzeRMt@Yz-R_^WdA*}Wl0Ts*E#I6u3F6@kg><@v6jk44z^T3rq8
z`c24UjTy`(GUoQ%$^|{LdvbB0(OZbqLLP4l)kyt%jg4+dYc#0)8&G#}EW4p!nND|b
z>yL`u^dy&s=&~DC7WzP3Mr}?8qeb7)KT`Q)A{{+kzy*t&R(Tol11XPf*V&}GHkPO2
zh(akpI@%--Po{*g3%yIz4t(>wxlnA|O<aGK!iA)yJJ9Y$dLgN+@!OastQy!>O8s6!
z{SJok`1;TwAuZ{niPIWb9jTzFFG7Ph=uaVK_X3Tth{|}HR6}VW>nW>CtP;F&SZy=h
z+TP2LudU(?OmP;bQBJNw7)~3-YcA@qkFGS7z~Cr_d~t6r<~|-e_~aNi=EE}ilX##w
zyC@lT4LSwuH*Sj4dOPsep+<s)@leOVn8bjO_>#_*xYz<7sbe8ipbG}GW^htZ{sbC1
zY5$X}S0h>jgA~_|3YJYe!)O@XKd`#SS3kHva|6p<x`UNoqXG8;aC4cnc#+uUrxMDW
zpd=z=6<-qI<wX;)mjK`dVjF*q28B5;uk}RgqI9X95c5VvKtsJ`Jj|FF)500m^(lQ6
zpGF+)ASc*ZCb;OI>RDf{P;!_62A17iRN^v*$r7VGt#y5dk+SPF-^Z18{qe5%PkTW?
zB?SH9?o0$SUk*dO`n_He#?sg);yHK#GR)zeF}Za3RVeEika6=7E(_FdSoB*iF(6vV
zA#hOlTI9n^$N>W&lz1~9PQ$Ih_4DM21pFSa@EgMq(Ta>ZD#FD*@P`s`7?bdT4nUY*
zFQ%EhxJ@>h&00|e%s~SR$izUb4o<7vSW)$7MKaJv4v?IK1`ta)=%_D!^+N}l!QQ~S
z(28~t^kIzvAmkFA1H0e3T{GfOM7iQT!XP->SkddxKGZ7bV&ME+?u%RuA|{27!<&=Y
zAPidjD<F->;>R**0{&(awz&K4x<pm1Jb8c<El#(vH1GtfYCIh#PTn6Cr(eG((02S1
z(B7OVPKop$z)>MVo*=4=K(Hj-LQ=y^NY<KJZDwaH$yUY7>}UK+$SD#w8WL7P3EOQv
zyhos~ri3BFcWL-UY~MEnTOKfLSJoh@zV9h!Q-~p@Q0U}m;g%}whh^%-D`m~SV8`?o
znBYx*n^Hi+i<!cu2W3T))}v3S0C0PSLRAI$iZ=%mJV--Xc($(UfuFI>;0M`kfErfD
zUEC!}4NCo}BoFQN_@VYfKl_pPo>HTN?fL6luJAHESuw2$uUNqJFF)HwU3MvuD8mX-
z%5JFLe)t9*X1Y3T{R7yHLjBdZhg@haeR6e=>+g;BDdRi=24**Ebb*nXglH0qWx4>9
zph?)C1Wy8v@T1P0Tfjyw82B~QC-A#$Fpc9MmM%Ag9Bs9TraEVwMSP3+@*6zFf!Bou
za_9xfjI7`W@z7sOVSpA<Lk)%uuVd2gKygtYqKk9PAUdXWu~aK<QUN1d70KashUcnA
zV^sp#gBQ-rDH#}_GS&D5&8pQ3tX;(<?z%|?p{N*GR7M0~m0_`nu%dkpD{=aam__0?
zii{g*waT<P3L<hGDsIYfxtgIyC@B49-N`s=T%iK!i_Db%{V?qjrVEZh%keVHWflzB
zC;8tX%Q3Wr5aA;vg|iAY<#o<I&0QNpIl-Qf5>iDzDidYry#AJGiy`Xq+)bc%|5z25
zKyPg?ltjm01soPwQ!vMH4_3)1IA~CZa{y3J<r6U;CQNISOq*GVKJk8w#=*pw3x`S0
zrN_dfh2mNhqF;jP@~G50yT$_6AF~&pXG010pav>muay(H<`=c#x-g|Wj~=Id0qI0M
z@JRs$7%)0K_w?h&5U>L0>1XJ!AhqkROg%<*Me`wYp(`|pq6XR-?8<P_)d~2%n5wpR
zTMZk5$pbdR9}dY2@r5Q&Uu0O+TVP0QoI(_f*9g$+?wQ=(txs04Jtw{9cGP8baGG<*
zVSP1O4-9C}wm(D*aIEBaod0rc%t|3RE^>H{?fG-0fF^IM)2eevQK>Otd%~~Ba0OkK
z<O($Iq7uWpS`*=mb8dP(DqTmodngJKRJ*(eS+ON-(2CG^;ACgz7$Em$m!}i(yAFB5
zA6_CC(@pu~$seu#LFekgnN%z7w%um|wkjX}JrA)ExFU~!A%PXHkYuOuMLK>iVn!s!
zI)1Jf$4{1|pBR%4mJr7eZh^Qu2i%?$EQCb#&PMlfo`AGMMBpc6iLeE*&yW+NSpiIp
zR`aczZ!aO9K%~XF8$aQDl{+t-w$bSM(eWlgT>mFug1)Dk!GYrM6sYTxt&FN&?CX6#
z%sQ|ySj^f&C=TQbzy&H_oD{YjcJ4+K;n!jeqWJpHM*V<)0{t}jgSxzIB{Nt!nEiBC
z%cPXa0c>n`PGN0-iK#8t{s&_$QvRxkSgLkgD-jfYJ-d-lTR$zemVntAChkIAsB~dm
z%)1vz&Udpn@d>DQ5UL%{XS3Cu4}L4~01lh%jw6vM>Q)IDgQlmQQFP#F6ya#9ZveqW
zR>^}HCs4W0TmMuJSm~n44JW9?XCh=7dZGkPy3si}5(i3vA85`>EpDwKbqSj+WeR0H
zx?C!1i=&0^BB0B0q1$>;LuczX`E+O5t1<3ifg(~a6-DuXX}aGYp3EcXAKu88>@hf(
ztrVT@i))nzv=>>Pdv~0bbSeE>G|A~tQ9T~e4#!M8GQO)Y8pY%zvs_HN$fu%%hYO19
zFtpzu$xNfb)={y*eW1zP-OLM`kS~NCse5NMd25%G>O7<2os)FPs<_o`jYldDr?imT
zNil+QJ0U(fk{$YsXaifq5TfJB>+~ED87HHIwhG2GgEypG8RNb?i|dcrU#IL>kak~a
z6}8L19}qdX{d$O63G9?O{x@blPQ=CSm!tTY2ywj(I1c))lnn#{%A#Te5L(TVCc>9R
z2+gN2!Yaw*u$}3*p(2XALk%qR=57e$YiASEtkS^+8zw`!;y;kDVEwd|i7$jv5k@G{
z)}^PBdJ~{T0^9&x{HhH3Z(j$HN5*Rhxo;LKXaaN_L?iDo&gEbN4y2A|xZ5`2i?lEQ
zjrcqsTV)+(7PL*lJhoKM#0hL+x?NOr(6ssjXJk&hqDeYh8q?7m>r_W!M=|h}4F|Aw
zlxB+0w621Kq#Z`%l!@3lg)T+#(@z(J%kd_Gpg5IBgF(T7!YgHyAy81zKIsM%SHS~>
zRu_cU!$4R^#R*&|fWV)EI|Wg~Pv_7pg37(}5WST^|8EujV^Ip^`C!(UGj6~H-_NaQ
zp0j!}!1AHj_}=2H!UNA5Ch=c$O&cFz`=NjA4Lt<0c=UWSIj2W0m#5-59xUrMZUdJ#
zR*prsS1gXJJxRYDUGmgbYD1!zld2r#nYW%FfFZCIK61?Ila@HHn@lK)p^5Fe5_LN%
z)4=x&TpJ^r?%X&EY_-Q7ZWHI5FHm(S*ke=?=zHDGOoO3X22E5>>CCU|Zdwzo%(LDW
z6!FRdi}q0PiZZfBl^L8k-Wswp%+YFUDU)wvG7vl-@rI=^0rrG(v@UCe_<#mDsZ-da
z9Crnk;dWNzp)9EnF|vK7ao|8kK{)3|^*9qth;0=E!RQrBSPNj%zN^SoQad@ov91%2
zlA+W-5KHMpRq3pXD#!Wa@<^<Ny3xU8bH4Cz2{fQIOBg%_IYw-I0CIwh?+aEwa3vDP
z%Qwphu_2I3fng+NLG%m^@vF7GVp%3aYBHna2n2Ug2rbW@9)M$|{hAM~pVyE-@Gm++
zKD<|u-5sHQASxRe@ASMMG?slDoO$q*hKgnneu6Tv8l1Lv1ra({ub_|!NN6b#pd9nS
zoyKh00GbO^rW_l1;Tb3aMfZhB(W=tO0kG}7oo){==s?{6k);Eu1dXsk7sL)7;-pdC
z;aNHrvW<J^mdAFtOYAt$z9a(ucnLaKh#C_4cPshjaD5H}p_3)JKx>6Di+f9rhF*J`
zYK)onc;~fjjqs!xb(iv2dtl3sJxx1|Iv%NCb0A&C^#nG<+2S?o=8+P%=ek$5n7@8*
zjF{6;W_i{-5i$S1CL-o}LPOhgQHv7u9Ev%#xaSZ5h>AHrQq0ddN{Km$MHUhX2d~2D
za0dyLdkS?sC*4OeH-q4>i8wfi#MKhgRUu@9hD=SN+EI(rpTllvA@C_?$6dA*R|qIc
zau(`BUJV{+B4{oaJYA@Vw8Wk}lYUZ5&QRnfK+<){(cyJFxi1J0JaQFy;6LPn*nd&|
zZr5eY`DwC0ZY$MC?KZVi_PUCXwe=I0h*~*wg}Ah|IVBs0#MoFtc6JGVbzYkrT=b#C
zIaGGQMRj&Qw_^DGK&2^XeV4FRr~)Vjnoy_^{Er<QBz+l~eG^fGf124Hz8+Jj!{w=<
zD!>g#>1f|{YJg41!Zi^X!iQ~6d$(GRk#sfZ)4rC>u&?JzAr;t7LyzsmjMLS+9POKQ
zPFhnzX3`dYoUd>rDqWmFj2hqjPjEOUTFY1ux{O{8hv2JFCwz1J)5ur!hl3*xK7j*p
zDKpiLjGB|pd`w>;PuBxqCo8#J;FR(~8uxA)vN<{;1)~PXJJ5TwIP`mu0xXZc$S2+s
z<DI38wadv6n6d36^*|t*rIkA^l~hP;Lb<TM*gp^qI#d&>hCte$<JLySR;gE~rboQk
zD&5Tvh<1hlvE41>CQ;f8Jc-4A2w1=Fj33pyn>S)R<4nC0a`8RfTnY9L<e`-P5qY?W
zOCYt|qykLQq(R7oJb~mqVSuPS7!B{r)-gD@!IbfGu>lJXB#e~Na^a<p$Jki`4F}BT
zMC2l0<f5%Rihx~6SN_wOUB_3ji-<u(sadxX$NVF!90ou%l7H&QX5YbMaA)n;!Ug2Z
z5}{hQ<*f@<ta~3T#y?h=gzoUE#Gi77Nu%?YjtvyKV)lq!F@KDFjD?aVTSeqbG6SB4
zQYadfkWemLm!n9%Cm40-jC1tTvK9?g#lDl(s>reBlsn-W%;^NL9LEVX6$#*l!X_|x
zU{T8JtdLDV+64)ub3u|rEYV*=^vlhPIb@toYy}Q?Vp#6=;`y3f!)7DJ!IHA#pb7at
zev6XtRY)xkV%rjO_}BrMTKD28f^H_5X$KOG`8bIi_(ZyrQIShVd_Xv*OHtwMSEYsX
zC=w1`jS8nJ_@0wpB1qC~Si79ux$Gy`-!Mhje<!X1bRl;87P?GCS;akK3ETPlH;@uJ
zqyp;=s{Ohy+b5)8F(t5?QJ*CGY)|^?uEcq2w?uK4?4a=iRc!I!qs3GbwZQqwiN$^h
zD<-jyQ3MQ8k)2Ma&xBxjoxf<shcU@d1dCf)PP(q3Jjxxg<P`Kr5lnO5%+AWAVMCg@
zQLA1IvkwF*<e4ssq8WnHJbziJ4BCcS6~xbUS;X0L88FT(jbexEMEi{galn4dqx4}8
z#6Q44SXo)#h$W|9DOffARK^V);IuZakPj+o3I{}og#tLvhk3DLx$1$BRa8{vu|hs(
zjLB01Vd0FA2*vn^VTG8Avh6J#3n2V*d{X!?&WY>>xk+^+#@;B(-lvr7VzP1VHW6Sb
z*BT+aegbjSV$m6c7#p5Mr8-k2LFd&<74*}T^pcWdY(TXA=q~T(J`F{zl6)>*%n~%(
zo;RM;R%(x*k-6BrmdjI5L;IHJ{4c~x9S=VC|0`mpRw0e7{n!WOQ5o6AIpj%^*(q@(
zAIY(`hhm~0Gs#kMjBe>3*Dfa_=o0!GC!;xcG0t*6Nd<agF_P|;5;AZZNgxJKY1kch
zVJir>g4}{8d|No)@>G2;phNA5&#h2hYwddK5}HM?L2qPqb|Qo_{4w`lC^%h5VSE7x
z$7ytie&$Y)qx6;d%4?{*;^Hf*hx6=`&YA-~joBHZ+Ehe{QMXKp2u*A>oIf;m(uqbx
ztK58Rc6`HgKt}e*^>Dc3c8!^J2ubdmE|bjuoo3cPF6!bEm>Ky}PZ8MCuIem?v9k9|
zv#Arl;ct@7<S+g96`k-`9pw+M7#VCD8C*A#j*6AQIZmlLzPPh>WDqwMtt)QYcS&(z
zQ?fs~Wu#r$c`1%=$J%eP9KR1xz8;yi#h?61A!bDtclqt&p15N9l8LW@YQ0vt>dN!o
z9wlk1&dh(ucrRsvs6;qN6pmQDG7RAjgu9jkCF^K10hB>*0xaf$-0iLHVPOOW;vpVH
zi>ZjR&Sj<D#kQ>>WBG9XwUip@GB%>*Ukm{n01)ul`ayp<d|PSY?OkUA6FB7xxLe0!
zrKUX`)}F8un6j(JJzKwL<7waU5ouh;*eC=s-4qdt2gCLZpVtc_MG5j;{*IEaRA=PN
zGM8yC1kcUuVm^Bg^?BU>dp!g#0J>??yoo2xokl$QkKbDH<NzoNh;G0#33!>4UBe6w
z$JAe&eS@0eh$l`aTUyls4Vg|VM*yJA%RvMRSQ`}3KU~U(KtVmbn>y4!MjB)@TWHlG
zGq67fev*w9a5m!7tXugR_ZrMNiZ6n2jD-Y+%j8PDmF;FUjLp7b&$1e$?rg|WH2R~m
zSgyU?rLO@tai?PPPTGUgdED3qi)NA3r}pS-6cG(`oj?EXpXkg4D1iWXvfG{$N<l=>
z!5Q?P+QE~~ZbI*8B;A(|NO6?KV;a&jI5SdF3oz`<<g?jV2JM*k=?$zRx|R!6VTU|(
zAaTo!Tzy21PTAxC?4)=87g~OS7+(o7kSYpEm;oBDhUKI-AWzsilfHa~84l|C1PAoM
zcrMBwGq0Ce2A|3>kN|%C2hXyFyWtDIFlMiz7IL@j=K@pF8(?<2Hz(t!R!UDg!O3*?
z42yBFdx_cw0+eg7vZ1a}0SHPt(X3%^%MIL6)C^rN{wNA(%W#dw;R=hx%UqLx0SkhC
zNlE@A`zlhZI9}IKnd|I+HkOWaov-448x8YCtJkfqxCEQd^yShn4oD4l6urgF*-6#C
z^(uT~;97vD+3SUTMuuokfZ?x(lS(U%tX2}HhMA~4wDh@>#;h*%T`=N#aR9@7d1@z>
zO2&hD#0YhSuOm$DPIFz6Q>NQoXY(_$7(s>kQX%e>h_CP`p?7{<Wj_I)xy~=+ia<R!
z?vM^O;XyhsAf8-&Vbm3Abur{38NVBu56GvyQn9q*IoIhPSG)7lTq;U4*jvwoY|nWU
zxuyo9I?i|S+8*uHN)~78Q0UV4y4*ix%-T!QNQnRPEcz-Jf#QSK20I4r2^q<l5e2^p
zuJi}nYYwCuGk9uZk$uI!;^4}n;ELklZnI-MyoDGt{aIW67MRGF>cc&^9I6A{q*iRD
z{Fki0sF21yOtdQh2%U?NQgRd=$PdtxE0K*DXW?Gog4Go!djdPb>|ZauIw0E_zEpW<
z@zsaf-q`FjaM?NHaRDrKFk-VIm42uU*nnfRb6~k&DsvpqpzoL??NmO%`Bmh~8gznM
z&<8DOie+39o`c%H-7a~z^8pBu*A?bSUaXUf4OOsz+Ucw>4`&jmO5-@zq<1QBiiK3=
z1eT@-mZgSPQ0VzPj1}a>F5TPIWtZ}|5D1hBZome=S;Ig9)5<4afp%OOhj~fIRzdlS
z;;fy8M#E0QH7`art(3ij>#wAPg6pwHLwTkz|C1@B;*fq(BGPeUltNgNLc-2(e;8q*
zvyi>!V9zPn1>0R?Ej9qJII9r{R9E~AXnl@VS!oX+xkiyNZ3($V@!X+`l^(em>K?8#
zoqyy^Kv?Kn!0L3)5$j@~di=5gg0anY4Cz@|f_?h}(HI{uX5;)KZMneoNfjRl{l|Q9
z?*7kKF%@!z*ko|8;t}v=CM`1`Vxa2#^Z|E)r60(2ry(+$1uvI@Fy9Pbo{oE>+Qq6r
zp2M0?7IHB=AkXS3Kz?@4MvQ0ppU&g?=t?2F7&Cvg>#{iy<rHl4bWFdzG<t%s%jJ@$
z?LN7JYY&-x_ZdiwEL0wUo0{WcGZR8R&^OCphin;ZzBwIc$bfE`TBp`ya^lZUfp4E&
z$FT%4jdBBfH4Z`6)z>a(tIM1{7XZFr#=|G`hl`Z{ft*diR2B2va!@q?ODIfiT&YLZ
zI9ka{X(JG2HTzSISzcf{(6rB*pIwL4U`NNlunf_EPu4Ds_P`#L!&=-CWdt^gFbw__
z%BJENl?Gd8*TlC%?;r(A<pNRzwyx(u<`Jp+yMr;*gnrW0G-=fdH8EQ}X-RKQ&A0j~
zj|ISh!y9Wq@&W_LOt;cLUPBjB<uxoi-VDM(k*UB5STGdjQCf^qI>76Ttsx7M_X>OH
zGU&+@uL!0vf`&o;7x;rqF?_J!p)<+Od1WB}7T!<;{Ev6C@Dr}v@Jsayb@tW!_HGES
z3bw-#VIk@aZ~xA$L!zCblk(l!mn*fOas~=s+ZjHt*e*wO#X5E+KiENy2hQz_`?o%s
zb{q8>G1quBdk)L-{S4i6QmqC})tmikfslapxWWwjxJ+-eqoQPAC*@c}8dsl{bd}w^
z1^w)Sezt@k^as~CV-Ud^t|6nBLpfJr{XZyDJ6t_3Qjfvv@$3*V*20)Yj|BO>oNN%-
zR!05;$oMm;ad9fZBL2Z^I=FCrxQH&s8YCc+yPL1RIvdfCgVjDCu?xX5nT~6?V(!#P
z1?`o+7OX0VRpptMGWE=Yebc6rXHD>I<#-*o@<5N~lzvI!$H{mlsE^_E!)9sb14>hw
z0Fx{d=HWd+_QN<p`l52ooc*>B%kZd}Enm)-OWa1o&*Kit&=4>N8l99Qv$%q`Nri!?
zEqm85!skmm9K`_pjE3s-I*)2WH~WEO+)0PB80imK06dTYr654rGN*O65Ma<?;QATY
z5uo)Yfk`Kqqz+n(bH7e7?THBO$NdDh=lQQrPr~3dG~Y}<Xa;v76uWveBAt7hO-^?r
zC$o$5CdFeGr*G*`_zg~ph5Bh5e+Djsn*l5pLGFg5dZQtwJ26pC<Ul!Akk4QXgpKBu
z^OF>zgP#-ym*(T(W?rq8+lrgtgKZuE8tT2Y|B9llm45rG&SEU=1{#qH2Z8_O&Z47M
z)?a&mCw3y>tnurU&4L5d-y+MG!Mi*HGz-?bG=mys0%#_IFx>4hVIOG*`$N+Vekp`#
z$!>=cTuwnXML=0m=tfXvk#Hgi4*mCTb`2ol)J>$ub&I*`KDVi33#r$bh07-{L$u0{
zNtpn*h~O?IxWU%&d(O$Tgi^<=N6mR4*l*(r7L^Yhu1vt7Ty*b3O=FBuzV+ADLJG!+
z9EuN2Q{{1?LYuD~-?(4<;d?L*gQKNCyNfuPE5Vp<PB&M(Vaw%on2q@@=->55U=Sy7
z7&%a)Z?M=J0Nt+6!78>Z+A!<<Kp)l<8H~15t%<`Cngp~TkGY+fQi9AU-PA#&7aQ`>
zbSi-LWAep;m<}|!fjO6Z`gP@+K{;u)C>e?k!wH4QYg)&0i$Gm(-BH#dg3DQ)4DB!g
zNs#EupUnQB(Q7Aq_Jd4~LcKa|wQDy3toL<NSS=Ts*7O|ZrM8EC^)VsGwb-Bo%Su?4
zb9QyakAx=a1T1K+@PwX{siV6gz@17!4bYZdC@pB47Qba)0Uq-)Q6`TOx|nF5_OzXL
zn>3HvgRR|u)IH7@v%l&L4b+WkqI=yUJKG5{ihv0OPZ*38ie%o5A<_BpZz%t+lqa*4
zLNnwcBE*<ISnw)3PTU00age0n?NI}WX{S8GYuR~6PcU-ebJjY!nwEYS+}aMf1$TMQ
zQ73V<aak>fDRbMy-5JIx?TR&kkd0}#8G$#5A%w3XsQpWX37V}ECRo`YPJu6xgtW0=
zs!;Im#xWz(!%Ns2N4P`ZYXGU9owk!>8)gnI4&k7g`w3hP2$T=9U4&&OuSCBm_C<gQ
zhCeMxxXcG=pwH#9=~{)@o*NgqzOSnv5#e1qLms2l;{)}$R32piDpTKlQ?4hao6rFR
z)5{&w5zlLtZq+i?0kxef9q0*21o`elxLR2RI8!2JBF^lh!^%kg;HZ77ou1#)NuHvD
z%5&tKyPn1o0TyxepePu5NzSQXeG9ThyfzS-xh#bmpHwvtn&v_tb-txK7imCbkbwd~
zi)3Nvw0VN2XU>L>J0rS^64h^FU&<M{3FC>96fQzO%!UCH2x&&xyw@6+%_)9R664t*
zbUYb+<U%E%Uf#2U)xYzI(o&HM=#*6FKe|R_SJH~@jqE0xaWy&JJJcxr*Hx;HfYTEq
z32F2(F98)DR;Fb^P)ULT1PmaUTr$Dub|@n1_qFK`*&;&di_<(MM$OP8$^f{8uAHaa
zOzaBOyxSG$<bl9`5M?84SPA%-tyhWr0Vupmr%L=X*iw7<3RX=n;<X4?+OQ5x7@_)r
zXIz40U)d>+CwEC>0{W}t<|E4&04nAql{AJ3ch5v*KY?BC@|eUykdel0iQq!WEcBG|
zK~yNH3JJMRmvaW{+%7wkCcrx8E}q=SVkF`OV$UXPfiPW(!*QG9#lcTyj-?+|lrz-@
zQZzjIYDfZ*(89uRCp{!m@c5aaLoMkL#lKyb&2tsh`0nGVTf0pSZ?7x0jqzR7x9xf2
zQEkX?*MU~4ti9AZWfFG?^j~%sm`@a<do+YGa|<VKK^zZpa3b@3zciXB$F#Uhz?jJk
zKe$r>m*3eL9q;5Og)y1sRKOmEJTw}3KrCYQ)?p2Om|@>3`H2I_S{W7?DMT`U+7m&9
z53)BAsj%dC(30Qbd|c{U209zEzbSav{%`xR81Cm|ibz&1rmS7m5sJu=8ExgBNRdK}
zS)&ncFV?FmmoI5E<dc;YF=d9Z8k!;G@E9{>L_<V#kks+f_T!OPIXx-QP!KizfPWMf
zfeRyzhzu|Th7+lG%>dVK=h%Sm)JQQ=YSDoE%8v+OUkvwHPm&3ZbIsHkzW133``4Nf
ztX+a12;XM3ed_~LOkS~p>8zF3rwL?6yuIH}>A-Au5UnHyR__k17I%P3?rb7LrE_jj
zR0<_g#~{9MyJ9vPJjm}FHINeL7kcAOY3O4vx!9iRI<GSK(03>!OvG5!>m+~c&d$M{
zdDPVTrbQo#guvh0hzWO02s}7#U+6ptgtH&PlHo8td+B2JX)&l>PU%24od3XZ%F74>
zeyrq=4E%8N&cNGm;~hp(dBb=!`C`m9Gs&Up<WT(ad{C-I>rovHg)XPPatjt#&=D^w
z2~l9y0B_!1eL6sUJ)%tU5?8-5>w7|+u-@v)`QWUip~<)x8x?s`k(|f$PBk?{v!@pl
zlbydU3UxZ=h;MaHd}TY%V_Jx%9@}$%RgA`x1DMX1^V~6ZQ{aK@v~BBiaU*WOztVeQ
z%)Fh=2R&cnBZ|+zDyBG3w{^D5A?|uc2t;`P!s4D!Kcp+mm?^hC1=HSC#ZR3PQ=IpL
zId3Eue@Kcysf+)WoE=Q7RmDGC6;u2)7B5dMeu@+yEyXJ*p=dvRaQbh<$$g#?_-a~_
ziw&25gp|L+OKy2`qba=D@NK5Nj55uh50{*!?!-`7#!*p^Arb3I&dUhCl#30k^@sWV
z@F(PWah=K$;D-P{EY%+-;zMXKHMBkKIsNTse%mZ^GHfcoIV1UD9zHnlWaDjnjHg3!
zNgRJnzCWHfDA9Rl5GE6-nNN;Ob#642*vkNx7k4(3b4h$!pa~4BM;ZxS1@)7hr*C)l
z2AJ0u<vHgVLdfefet>_Mkc4skt6;Qf#see_*^%>@R#%Ld^O$fKBJ2dK1j$$&u<lQX
zRbTNlNkRyL4^EgXz4`iXwHSDKB9o{*OwKW$ft{UOhC9)dn4mGxT6i(0u<s@0yWsGA
zp-EI7=bVNvG72)%#d!SRgTDDF|CsdikG`Mpm+Yk6kB56E0Sj=dLTfNthz>NKYm}mN
z7B+(^gmfTV4nfC=C<>i*2Dm3C11D@@iRZaf0ndHHL)B;im*PFfOY!DLz>C)(a$gN-
zI)Sq<{y`(CU-1VRh5T_*S`2?6aHt7dz_m6`iKGD>^o~^oc$Hv3z|rM>HDcNyMsF02
z&>LjX=Wp$-C>Ek#qUb#e;N1wC`#|rN73qU`bzTg4IouK}z#wO?bv}|7iYvShghy1%
zP^4bVRQP9{agvIWgFQy;@YRJMbIP)Sy(?p>nV@ec-<Zg&qrF(jufzri3Ks1D^GQ#c
zkhwUzf0-g4AZL4mC?GZla;J2R5O1>=NW+y+j2{5yUL)mxAJ0!e{l3R{W1B^<IU*(y
zY4d1l_SbCoNj97FqxU`Xd^s=(hZXRPSKnfc+qqCRSg3D}pb{^*>=VX?Fwn0t8Drmp
z0A_-x6vkck-<cSTgs)Bk7>AuN=TYNZj0}OAN3%Mwm`tt8Qd~ndV)sV#;s70h8`T)4
zW({2p|MF`1n*1wMu|8=wZSFo2hqcWV6ACbc_kkEc7z4c`hro-Z94|!|YyN@T?{-3t
zVcE|ruY~}BUrNxzGO$neGWM$pi<CPmhsCH3nlDK)b!4#)6i0KosUg`bb-=yY-<!YE
zsN>2Rb{>=_QHGRA^QTO$w1h7^8O-?wP5QWhar|M-`m8H^;G}oEum@hOQ1(FQJG2LG
zUjb9#%{Rpgn9-a#ke=}xHBpQe@bk5_0@B}CR>1Yj3dqGrSOGhJA5;8fju6ftRB>QR
zM8MON#Xao}$_nT%#nTS7OYuXyV~U^6;;$waUx=JIXH^$}le7<}{Z<tp9qWeRT9ota
z#Ntm$@ljG-&XAm|ieCIqOv_#tJvXuFJyJAN6@@UT-Hs2<o<F~xXa|gBm9PVzMKq+G
zAvsWgn8Od)pE@kurgGem51|pFvWM-}-|pZy-tLTi9r)&4&kqYY?0+x-Z#|=IkU;-O
zh>W;9$l!Pxh>xHQUd$kLJ69>;-bGvqn3OM|iVt#->72V*5enwaz7#mG;2=N|t;r(U
zoqUv`ZpE68s8IM#>meJ^$HmmK5RD1YHUaE_bkfRYKH7s&Uro&l;Gm5LV!*@y!cs5<
zXL&gt1sLgwzN$G;W6byfQ@@%6IIHDpdD&zHWD74stE=xe8kQOj#mV;7HE{UOnQ(@9
z{c8^RCSBOHsfW?9BDodojyV0w2rT6U(oV}6ox?oI05At)1-zr@c}PQ>fFgiR;p6Zn
zN1=p1xvmrNJ(^H+0PAxf@k?M|cVo`0coV>`PPWGYupzte62N-Y9P~|^EP$;|ZUbQ0
z4PXR#^d9=q4SfJ$JqUb(<Y|{Y0{mWzg`II%sQ}-Nzyr&<0z1$Zh2$r}{!=@(&j|Ek
z!(aeoPB^hsCr3MF1l~nzV#h8*S)<|VZoq+b44t2nn1{10biR8`=MSUYKiNS$?VcN?
z^QrNa6XyMIQSOMnKVkyf|KDI3tN`%exV|gKi)+)le}YIzg?ikr9^=&G7WF7qkE`Vo
zr~PHW^Z!+O8hYoC%hS5+BHi*rp0Y%qat@OxFEB{4it8_#)lG=Q@sG*Vi&*S)S?Yfy
zPbVtiDNoc|Spwo=^5lYeMA(m*kkF|gmZ#NsL^}2VM4nE*HX=_klsinG{^z~_X=sUM
zf+LoQOHlH3%c!mxFD|2V)}10x+3InUdh}BdLp@T}BUv5^@)S3oPCgIA6^8i<blu1w
zPqjGD5#!MDUus?i=>v~*$kRTX6EZNuFLJAmtIwEK%@HYX{{~KJp8kiZeTEqpwq{iJ
zbh_WA?6Wc?COegn!ArB_EBv_#2O+w_s}9c#wmkKJr0W8cHTqO~u!UgSfDgo)N_&}p
zK0WATgQgnv$)nDen_}keUTCY$FEMX#HH(6nrk@QyaE^Y`&DN5X&I)YLBFTtK(WY07
zeC9rfxj%m*nwy*Yk^8|ebDzoFZ^YzQM=E*7cA5Ju=B|y&eVnTMoGx<@WbRQhxp^Qs
zAW7;n_c-SMSxoK>m3!@r8g+5Kyo0&-J|69*I`qf$QkS{MGxv&^+;ZK$?U@|OEpreU
zWW?Z|%>CP#+?jyH^1S*Q?c~anXf6TWo`NN`In9OI=2RR5OEC-IC699kLOjEt;Zr|;
zf*IP6F`wVkXIXtL-tLIHjS~3tGqf1bpK6Zh<DqBvOGq_lzr{Q<dCG;aewDd*z1g(?
z5;LoblP&~zAfTE|gsGHsGw%|il}Aev=VsGki>|;k$*y!ZhF=V9G0eb$K9#<}W&_sF
zw3kmuA9~}q)BVX6{qZ*qcQOR_dn(ctvn98N?xw8_beT%-CqVcpGCZu$&KQRB;iZxc
zC{dN0>;!HXy-<A&?Ppq|>R&?tZ5H|w`x&tN*#A`a!sJ`JBle2hQ7;Y+M;HA_ENGo(
zV2CUcNR&-X%X#3?Zk5MLj3kDk7<+kWN@Y*^9R3FDk@FkFo19hY062QTDcekKVc(Jt
zzmIxyDPYfuou8{H)65_g*4o{j;t@$DEpQ^dgsgR#?OR~1ZiNP^Pw7|h@0ToR4-TtA
z{ng8fJ}<DFv&<<17~w|}{2|7yW0XFFFOeocbYvdp=iU7<!DS|1&}P_w1Dy=q*iCAT
zWuVgF?!KBsHAdhBeDX0cxb_g6GXf3F)4mmadp+PmG)v0GMnlB~$=olNRET@miv#=m
z7&ANYE3nl-MA0u^JRQ-*gLf1MS0G5OaEauT9XkjCEXw+X(Z9Y+jrYfND?DoVxJ!e0
z2ENK3R~R^$UBOESPbdx?>|q2hKsmqtv*+thPx^&5;4|*A@fI2HkIg=HT+z%gD$)Q%
zwzshUJlPK^38zOBvYBu+7^<+jo2Srte`2?Bdz(-78g+X)e*<%rg8pSO^k=@VzWamC
z=u-6yrzeF5lEqOp2ggvF!A~ORNGvszHz*$i!w-`894=geeaX0pgLnoO(_cR;DYzQp
zO?u-tMk&nBLT>{w#5#bHz$%Bs7oQ+52*tRO%rW1b4}K|P^`3hCNj;A51D;(gN+v<R
zeh1pc^C-r@>KCKqpJF$Tf48ae?`9<8zH01Qb>8Ggf1KYkIcA>Dbya7!oRbbYq|jl!
z_DpV~hoJoTT5$%`?#2hF4NEo6o-|a5dktL92A)cgNG-YJ=iu@6&ge8iU!+w;9Q>2V
z$HPuk!L6o7LdXDyV5%NYaFU!ESGj`(fC2`auzaZpSII<s*|{l_36$_fp>jU%4OnKt
zzDE;~Sm+w)PH=4g`pV;s_kG=r_pj(S4mw%x9mvFSapAq9(Bk2}E*@UjUx$PG#hJqc
z8tefx%-{g+tLsC?1GqqB#8=m?T7qq2fxCdfJtpl5d{Si4T3&lP3is6?=r#>4Abe*_
zH%NOgiJ;8iTWJ{YS9Am5*Y*PBpHy@}E;5sr@o%!Ivi~Xk5D^#tLzKA$_<I}<|CFO6
z@W<op?nHcrp(x2xb|Lz;ug5gF_ylvLsLdmx;N=8m@_|Nx!67dU5UApDP(&p==M&La
zY|Wn{JX)!K*9)9BRdZUG<I%#y<b?=_3o*53|H)Hu(z_pR(|3a}99{<`x7SP3#dT{d
zWkZD|gLC}Z8G+5+>xDsmWY8$HksW>b67#7UKlqhQ8k5oXJTuyjMewxW??x)Ua<?b}
zFS~P5Tz3-I8z?`J&xk#ZzIbup<&%J?ZbjvVrZv|q<|`$tS7$r%2+pUKiF=C(H2yW$
z*6@uk0Yav%ZZn7xE)P~A(c=v_IP;HE@)Jj2W0suvniziq;gRvM6fv?Oj~n1Ok1gT|
zCByy=UjqBQMnEocw&yWUq7L%Blp$(}fM+~sa&q!IqhTXMQwx?Ev*j8l8ApxTm$5uN
zW2L6`7SEM2bJyW0FdTzh&D&{f85rfaf~kDi^W=fd<$n9dn&Q11`Crq)OZ-_IP5YVt
zY}sGXGUYz}F=l@YM9^PtGO%ELvE6%+8Pv8H88zLRcA@g<!Nzb`=4%B4pb4gnG;Mh<
ze_j+N;^HNIrIsLs{w1<hjraq8bvg!txS#MF+as@+aV^CMg<P+Bf<UCo0t;aRovX1b
zf7jo)b~4Bt+p)QLCGEPfKyrW*2?l3PSgZ#+(DTqKU?Lq0CGrx9<Z(W@QCRI#_4rdy
z0QE!Xz2*w#V%OlH1A|TBv+47P>PEaJrIx?aof2#SA%Hm&&P}cZFnQb&h^J{<Pb-F4
zXV@<S?}{Os_+}~L$8rFpjuF*5TQb;h3!n6m5T<J2D|d~%H92by(NW@0UIQ}+mKcnY
z4S2gPyZ@!hTkvD;$byb3zbsZ~OHU~!&M{a6q>;HBM%uT6FFxacP5-`RWY$+#+0UGy
z_@cvj_%xudIJhBnBA#Z;jEL0Cr~xX#h2Rs4jb2r_dyJrS&uDqv(gWyR0van_#J><&
zkaS?gUyG5Uo^=xH6YADZ=@Z71*Vxv5W^h0&Y%uKJ!qEfv=uR_m&^u|g8T`U*`U(;<
zHnUrP$K+I)^4^JS!WWvIHL8-igvuV1QvW1h>S>cA%Oo7zDduV4R?|Y;0eEPgYZQ!E
zsz;GL4zovJMlApt2%7-A8ulpu2v1X^#D)>h?~kb!B!pAu3t0%MvN%cZrrsHeD|GAr
zEYyvr_>A|9vM(ElDa=JYpp^<h*w-C^WbILg2&aQ`juyO(!C4^n5Sjq)L@?fOHEZ`j
ze+6w`N-*Xvo<GyG(YqJU(l*}T7}$JCa%*R!@xD?eOPObw<e%NZcdCzfZg~#`-us0a
z+#A{VyBlj@#}O!mw%khkqx~{7$i52_s7<lXm(DXB%88;KM9~iCx95}bd4@w2MR~Cp
z$#*0m9Dzs+&_4f>hg5H<pV5du^%Ze(7&*Gi=OmX3lRbEYJa%^nuU#C+Yvi{CeLeZ7
z(sMax*65_r)4j#!aC-hpAn%Hv=lmEwWtA$@=~xo3Vx@M*@Wnqs!UfEuNjRVHKZS&H
zJl9Vo;X0`2A0gpRYV`tPi&%=SOvUHFgAh*H^+K7@b@I5T8whlFB7qX<Q%^1rY#UEz
zDkC$MksZoS`>9Q!9L_&%sdezef7VHxo`#>wUd$98$Wg$uEw%i~f6=Y5Pwm4eM)23;
zvp-mygp5U2+ViUT4kTX6;G=)xg^XQ=af}~ffI{v$q<|SY0zq+6t=}iyEs@NW1V2YF
zMmA*0!nDl4C77`<h8o#%DEmiLB)<y<ui&t6WrL^^gK6yoX<T{<)d%(X7W=8fIHH0z
zJWo>vr7-qoLN+_Gc}ivt&@+4kFc=)EaV~_#D7*Xe`3W=QqU=j?e|Oy$U|~=r<C9kl
znk3jylrWF$dw4cK+Vx3jz7BRseGTEL-Cu*x#_Y|Kh?TOvm^gMsCX#TK%#odnRO7|;
z+dxkaJ<lvSWXz_FxZM^b<5_$t&fVdjk&(57Ls!*E%<&5_-aH5nF)`lEkSDCLUYM2=
z_EcWo!5)^&Dd$uQTy_Wlfl<jQf#u_|)0XMO@J-wvp?*x&Igwe^Of+YeGcp%Uc^sO;
z-He5NZ>Cf0l~Ka63p&5)4BZ&@ZFQkfP9t*S&&vh`IY-3bHp0M_#vj1nFNr_cjzjy=
z&VdDk<y4$8Qt>N6CpS3@8Xv_=92&2*2V*l)$MhlOSDH<lUsnjz$bhdjH?%9z>HLP%
zUtkVHq#UEYA>14>tPnABXv#%241aD0KaJ3Nm!JC%4o=TdO-TF;^uIF>P2kYZ;Fsa8
z&abZ#<lU+sW7XrjLqKIC@Ej-alg9yfVAu&X`}l|bHG_oGbL(?@HlRnCA!Fo2WQ@50
zf%&4KFs;Y~DnMG#`=eEveCIlH5Blaq-*BbQC;$1TGhEjN{pkAv3_ik;PZ;tE1DqZ4
z{BJb0>w7tj*-xQJy+8Y0M6H61>tj8ZD<KB5PgkJ_h9K=)>~762friL*PSJh^uZd5v
z3g%I^0!vfs<%JU@=?R7CT-Yvon3Es`R%R-+4kuwZr&yVoD0Zr^=%Ti~0wsd>ZR+vQ
ze*@p?VE#CK8?%;n-CrIL4j^eO8G$F5$DS(+pc_M6xb56%SZ~%ItU=P0Nvii(s@|`R
z_-j|8_n9oEdN0fYeTj-orT1A+kz%x9q8$YuQJd~4)tG=G=5a6uQ8$t9^;P|P_7~F2
z9_(Hgx|cY<)1wS}LgT@8NP411=swjyQ*6O$rq#QZ8aq}>@e4HOuK(QR^;q*qNZ6E-
zTI)?IGPwl5cO$J&{Ke$S%tAPFo$f5yRqY=FwJRVDx$~S(G@1z^gJvfP61s4W0)69E
z(u1Od=)ooILHxf2dQDLJC5AsybD1Xz+s#pZnR#pLl1H<PA2E$L+Rdf|*>s%euEgMw
zXWqK<&&%_AFGC94=?7KHDsbaq+e*Sp3MoQlL;9dBL}81@z?=!=9c6kVZeK%VdBLW;
z8V7(PW$+#1H<$$R2{Ra}fOZBVVenmRGjiK&n|>KnE!5Z5|A`qP0$aMX5z|cGWd`Bn
zuuG6C90K`pda9-dBH-;N#Q}l+JtiVdii2-p>4CV4dc;)}XhNz?6H$@p6@mcNJMTRX
zUIUwrmo=&g8_B00<dMiHXURw*$UExs`hL)53bcnNO9DNb6n}ZiUzy~uOrpr82e5tw
zdh|UaJ<=oeNM+Y^NDt?Fm=dTs{jSCgeCwOrWY-FIX@lT9GGSmGq%!p-c_2f%O^BGs
z07<|^p}QIFT8)-e=MVyr!=E`V`_Rc#h4~WtcMff+F7%<Aq!H85U3!)c=EiQ*a9Xi_
zU$UQ97=2;}4{$f0%>yJ&dpag<ozN#8_{CGSn!bT1sqWbg4n2IObG{gBEKOVR_1bRT
ze0811%nE!&Rh;-^GL71C8h^z}zWh%oqEClV>ON$+LJltPi@C=2$>A9^%mg1|p*h<$
z=I|BwsYdu))F$}N`ADZDX#o5#a03Sp95?CMVMK5B(Zk>hPBP~F5mZJZgsk?!O9=X!
zboMZ!aQf-Pmf<n&6!X>%A8N7NZ8jZ(a2>oP_lvvs49MLzb8W@NBvF}~&WpY!b%-_C
zXNV*WVshWv$dNWj))_>qkOb6*-jZR9IVmKV3ZiEiMUq=RqqmF1r#okXgv{*Lh^E4C
ztJ>qr+_}OJT7oxF__oELQeC7w+hzSMu5f4~_y7}ppnW9vcXN}E8GMto=@=O~{R)wh
zQ`93<J&sY2se8ao@3~e|0zWNK{4}2OQbu_xBXY|1q@VU?T?w;*;H7m*vfwfZdiE1I
z&^j^g{DOQ%jygf=A>UliH*07cl@!M5MKVnF1Y>2J+^?Knj2-_y{RL}`+5M2S*fm^v
z2&Uiu1somg`5*M8KWhz-Q=COR8ztxDv!=qD{hN)Mob?xD>BE?{3U5Zk2l>f(2EO^X
zucoukXUuOAW>tr)D@Y&<a5fPp_)@F0hxqoiz|uY+rJ{0B#abhBklziB`m?W*s&;_k
z25rRMZzn1?7YCp0T^;~7zd1RyUC2VmFr>nl!1McH$Qf`Xq=Uxb8csKYRO*tQO#i8y
z0ju(_J)u|St&Fl~xK4o#$eG==B|W)Km}LKWz0hEBnfPQ)FivTtMhLx6xHlx*yJMRJ
zx1u(wq;4<SR7mZXltN@`U+5Hc$6v6l;+UfRH9q6fmg3;L;K9(p@pVvVco%+!{!2QH
zq4oc8_a^XFR@eS_0vwG<JVBw2bHJ#<snB8#6*bWyCwkCmt)kKvtCw<HTDg!YZ3Pn(
zgyZ1>tkkQm16l{H)S*Shp*09HsI{oQiZhDU=NPp(f}-aC{jI&9GbBN6-`mgo{$D;H
zvd=T^z4n^-+H3DE{#UhS>UnvXM1IAX$QSPZFpg2R7qblO?&sbJe>~b)_Z(Mz*A=T=
zaiS}hy$1&$<2YC>w1fQPGB<}%z|ZIX2fA^ncp2Y8e`H}G9Yki#l}G_DT^{e;>mS5m
z9Z^LTDW9N+GF1Nj4&A2}w5k5^YocJTqE|y#g!=<f$4s+8|9boHZlnDJ1TU?APWv~%
zn{A&CL)A&ZNQcdHt5Jv5v7yAR;%&#k)f0{=YM%0aVS};1YEM>H&t_5>|Ftjwcbu?1
zRLUI_pWJ9`Kd(YRN?SMd=4L;^0)_F?gn<e$P-Vk7?)9nEi?Kx|O^<b~&kvDkt9U{r
zdoOY!6180BT4u?`>~WR-Q;)F6e0!!>>)Jj5GH?Rbe`UfE*BmruT<gZ8iq~_BT>Nf1
zv@U42SUp<0$8M<?+dH)R%r0^S2e!V}dx!V98aSclquc7I46d2oSUG^-*B&?ZfYx><
zp4g8@-%tHdW|o!zMU>H_HLok`!9ds5fyz@NzoVzu)CHwy*u!cnvkBGmE_eyAt}|}F
z+!gbzC~zR57l=D3KfdZ0w_uqVOc=|tI$kT;QLQVcv*pSoQ;%g{Z8y!LPsvE&suF2x
zXtl$QFiVnq``|%z@pMj*z;k3}$%uES4g_nvG;eL5vJn@pV`cc+F$UgdE4uS<{Nh7R
zkH0xhEHzmyg(+yOY_@)DW4#8}KM;y}+iv(>@mQK@kvCTHDu5I1d)LvoZg#(KkhRZ5
zcOrei+ooW|NAW<bt~q3yEd7!s$@#6?kS7@&TdeJ~cBmh*ZU!3|;uzGy7^AbhlLWDy
zYyC`=(>QqYQagSv;0H?zx7|Rsx~)<o;HfYIECR;#`)JFx&?@3P1UuVsEVI&WSSOC3
z45FvO@ljOwD&G^fa<st|L6KRT_014o@~a<%k$cJ3uw5Q|<vok%&xmAQLRk`iv-c5y
zJ^yU&9$*NQF}%xK)fkUXO(d@S6|)h@1?(ap{I@LI5PM8ieA!^-VyrF<U@rL7ZyuL}
znoqecofpI&KguJ}N7{6s$_<fdKmlA4F8-qsiGC1M!DspulYsq<b~B_~nR<MZ@XlIe
zrrnOVVwbm3(ziu!MwaIb^ke+uf2f<?$A50c56q>l8`vq65KA2dW4?RV?fN2pXx*=5
z3x_k5!|mvrA%RiT={ax>JRvJ|`DmvCsSuZ4+663_otuPXrr{nfmL$^DEN70v<jD!*
zl?&7c!95KZb9qjj=CQ`(N`&~i;`pdn8=h74RCl<&!%UGYK6(?($X*I5|6BMNX|R4-
ze0(_OU%|)v%f1Xgo^AL-d~80-SY(qcG9BB-#~c}sLK_Yzz>En<sjW1OKjLkFGOmzK
zV!n1(LSMlc;(^Dq@s8z*pwEsBW_nNG8Rebe3&<VWaFP^u#9Mr0%B!e>x*dy~#?&@%
zxg&nra&oz#zMKJZm82uw((D2TVkYe0N4*<+s1P1Q!$j3n^;=Vxoj;38ubFa36P7i(
zW3T3qZixSKdB@ePIJ`2C|L6ldq@)F2SH=qlFom{t8yy&4f<>SMIJ70jP5aX%@Dn#~
zd?JxzbRsnwe)l2+-T63~8pM`w-kS2_`M2@<HB+8y>PPQOdW{6I_KuZIjJJo!9cjcm
z#uX#qfLNz_=IzeEXUbl5onOz+J*O{i*Yn_v-b{qA7m+x3caCCu=|fjsWRnAT@PbZ4
z(vS`v^}-3-EVe~=39Q*CsTQjwb)~DTrAp6)ZGuKE%kNOFseX=Jq4W>@V%<&HZ75&T
zth)J8rXPG+9)6S2np8|h!q3<n-$7nJ>as71pWCuJAa8bN8eoS4Y<Q~@EX~t~VXB4o
znncjzz!DdU3SaeL5kDc|ALSe9b@R3>AdBpav!1gTSqBv}31+wW?uCDQA^)BE3w1v|
z+chJr5!|7Gx?-`|glrJ@4`1~`*z|0NM6{u}7;Om3c$qd7%g%k#oc)4)454Uf7T{Ei
zAWO$~XvtD8k-l^h%`yzBOQbF}s;T01ug-P))>I_KupvUUgKzG*lZB8&B9p@@%k9r3
zVYB0&aOL5~g@1Y-_R|jhkwMA2l74>_+e9pSSiqk_UFCYW`Ndg6Xv>?6)Ld$Dr8OJ)
z5^6YOdgXfFA~|E76{$5Uf=g8hu|@L7+LI&Nr^j(q_9!N=u)P+?sxhNfg2^KDc#Znl
zwVMg|jssCD<0?-|rq8KN93S-AM>urN=shqqR<i~ZE%|{;<G~3co~aP{bQ<kNTi`b9
zXMZ=9q9abkBT4N1e9GM3CzpyJRNJ(qMBfoM+EFaa4L6XfZXtOZs!FDJuI+rnQJCun
z{emt0MAXsDO&RrSWH*_vN>(26;c|w|zoA_>Ikl^Ctwe@)$%1%1KI<I;#i>|$g4WyA
zWx}SOkC)Nbd0CeU&2{P6${8?G<QhF}*r*Ts^yl=(rmrPZt%iQO>zuJ@cdaFUD{oJ`
zmX#tYrktdeaGyAQ^Qh6v=AY7go~0&&dz>zDeEM7y9_1JEX<?&nJvR!g-a*<UsYknx
zFjn39@389hJXSTX%-Q>(t#YDJX6MZeXAK4{S#D%s>^7o+CChYe)MFnwBQcCqp_^&r
zPx0C0h)JOp9OO6^B2Dw`nq<>4amldujDo<LUAux(|4e3_A1j`690|Y4aWv@=Q%VE6
zC&t(dynlI>g9G<SlZC2L{Eq&(0CgKIsa(jNJUvpqi{mxN?7TTtG)6|?rf~ZWZpsih
zPfi)`RkoWt5-RQbu21QpdgeW46P0mdDJrxBmO@(9Ki{)W`bp2^m`hr=a4l)kwWOuQ
zQ0b**fgSte1ZIibJ}ajOr=ixjB`f14D{wRdqtWBZ(LAn+k548+RBoX$Co0nv0|9GB
z$rPdC^Vm)zdn1@#WnG$6*$lWGv&b8gI+t6jdp7vgkFfMPeVAvsUbUXd5rWR`yrO>|
z8*B6vY^<l$M@Hv$cH!ylo_IQMuqTCdZs%ShomFWbof}Zs!c&iQ-uuOFbXLQ1>-QDh
z_-jzsVdWC1Dij=(8+VEHM0(Gwe=arQ7aYJQFazwu68xG(>LMu#VX@gjYOAa=>IxT-
ze5fwKNj0UtkoMx$vQkoq)^Iy5hHsF?*s;thjuRo2A<xV}df;AaKDbgUguP@=CwoC{
z>L2ER(6KpRCB>w`<9iDn?|qa=>y=BE45|nqWK#eox&V_*J<SC7cp%aKcbxA%3eVys
z0d`|}?{HHue{{v-4QQF039@;cSD;_2vifBU%WKdtW7QTWuR$gH#Y$vtyun}|mGa{r
zB%I6K83_Zacd=Y8x6nz8ug?2@i4rj7g~&F_hZsX_CYeg<XEJ^1dY+6y^#={xa~)iI
z2iLW2y?C;QU&-{9?RtUikG4`?(3`EbfHoR~(z}>oE=zwOBMzpqI;yN|r3%rB`>?Mr
zJws0UGyuGn)``Io$v0U>JE~#5RirYwQ{+qp_d9{lN%i$;Y?EpLqYA0hDp@Q0N+Unh
zy=XI26uIwyl>KhED4!$3qVtMyRu@@?rV<Td660{szd3m=W4fU@-Zn*QpGD2_wnqh^
zuOq(n%HQ#^1|pS5)>W^VVp$>R!3CAgVm17yX_+&<4smyEA3*8K;7%!zw(YXh-`_1$
zzn1tj^X!#-gq*hRIdqg+(wFiMOd0fXB3RI06(rL4IOM0+@h;?ZbbG?*pp4iOpY>s!
z2MSfZ#gD|0)%8P`XCw7%lEv%ld1<cfLP9PGRAcmnZ3y4MFiR{ZN51w=`aX+3xr+-t
zv^L_B0O16ctE1s`(|2u-VTI6x)IDl5=fs4pOhPtM=tQ_CTiM33yn4+ue9KD70kc-C
zGvkpE7)=PFlg1_L+aT-P)A3p5zHdyF`9oy}ZDDoG7@|@Lv+tM79^ILKWt4q62Km{T
zE`7HNT|rmItLflg(;0-yek$y8E<J3I%5u(#R51up4@KO`tdWY({MfE8GQLdzTKG?-
z{~&58AkvT^Qa0;`ow(9z4!_Y4&Q}=1Uh}zQKsd~TbcYBTZ5|m5dPGJd__Z+(BeOpk
z8q&WMQmmP}sF}lkGX(IW6CX6F?(0|ZOg}~vCmXAAGD9Z>$kAP+=66|EAxb48y1!Lg
zRCKTFv$M>Z6T#k}b*E#gc{ade-Df}EV6LhS?lmB{kE*zeDui1g6+chw%FnA4LEBdy
zKi@0VCDWHUMrIyszADrauJx)!nNKzP0SfcdbU#WKuVr`Y8D}M6HfMw_1hB7l#`9s!
zfPy?SR?!63oBgN^HSaiajzd27N1UiGcIU=b9luVb?-lX^(;*+|{-AmU9Ve<9bb0xn
z?-+Dj#EMzyBx18zpJ7ffEZ(sZZkurw_M?9v?#{y@&2lBwC}h0MMLbR)df3#gr_5g5
zU#EiaP(gMa?uPEEJDtj0mq<OMX+O{EnWNM~5ZgyhUPF>+$7AV%uT9BTh-O@d2<SkZ
zBD$Kb)Q#%Xmx@g2Z{v3{I!6Y?XT=Q(M0U30M{-DeQc=Ih{dghC7RXu`wZP*#V)QxN
zVDw9kTr2^)(lNS8zcq9Fj>0v8+?)78GYPuo7(F?tU2dt%s1ct>DoVrqNDqi-%fh}a
zE)k#CL`-@*mEGe=?!L0{z<s*IXyF%1v-}ig?)48gQnWYIcraf&)0o-7lwf+`HUE{x
zqY!92HLxD{h&<x7tan&-dZTA_KCdKQ1<Ib}$G;DqmJ2L&PIb+EDRkmAXU&Dsc^?Zo
zgwBQto%>PQHqi;={ca?Tw{J06{fA*SwFq{zVK__ol9fN5V9BHR;m8d8a9HQ4VQV!Y
zFvpit-muOGYnwpUNirBvEmb`C5OYbc6yMa6)9SMF<Fn2oSw*^^L4Kt6qTLRiFR3BN
z25L+O*NLXJZGG6@`3FkgACvmK&)-iDVgcrYzN$N!zD`t2rtg#xBr(BagqfZ3wz2pL
z$q^glvo-?um=W*CXFbc0`XSHP4|%bE^NaP%KVy3Qy=3v$F(dvSpF3Dyg<+9EOEPs1
zSZpd07B#r?`f1)>?0Fz(+0-DiI~zFV`Uqa>tu<EqX%G6h$*$c9TqC~mz((j}wp=ew
z%^Wo*J>Nlpm0@#C@v~!6c4tib3i0F^QfTLB3()kTPyh75qWWN&nM7iJGq}kj)OWtM
zb5VWj4&AL!FViRWsb#9Nes!~GsDJfo`)OvSK4^B~Fx-HL9xm{!2B=2!t5))nx+!pp
zp9#%6xZa<c8!79_IHP1hVLrO2$?6j+w|3P;x+c!2d=$UIva@fefa0B5i;`{0#n<9X
z=gW~(?B}TJXQ%A0$IDa=TTw}4I>$RR|9yZ@F`DsXYy9r$(Lq|{nR>P(oi4rpCq4QT
zrPi_7RU`8J34eH{SobzH7hK}|?W3FXU~V}EW~zg+bh{u|ZhazX>s8q8r)HdOHl};G
zcW2E=wqL&fD%DRHoGZ}90r?yoi1X5MMGm#zc+#ff9;TeE&T{RTvuC#s6)>+F6)>0_
zQoSpYMvC2jO1bN-y;?6v8jmK3P1a`}q$=v9&*0FrxXet!n$@Q*z6$S2iX|LXl=V@F
z^?o<D%#99`sC11g_`tL<Ji@5Lk4I&xqfy0Bt1cUl8{ogo#!HEjIL@t48QW(*)d4P1
zA3U<xO4|PgWRFR`nR$wVBkD$W5Ot&8nU-mzO4BmG;0Ib}OzO3)w%TY~=7Y%nH4P*8
zZWnnMS5n`Y)Z6$R=_?mWZWITNvyys3%Zkfh@9dn=vh}^M#9NIo(pRqI4UG(~aPijQ
zI$e!n?t64@+)eKPjX%;B?Q5I%&L46s32MFk0R4C}bF4a(dY$1bW9LfpHQBAT19`qj
z?IconS_EO>nbedU!heUMt6GHmmwYp4MKyeXFe6;&g4Q+|iF^$2&%p}QM8j?)i`SE^
zCtmomV9@ye5b6#u<+9@j9gvmUnoK=0CiQS;qz33H*DFjZEbwtQKf&RKjuFd+_6n-*
z*;n1129eRJqPy`oihDgTB$?r=Z`sn!&kIQ&aQY=0NEbhn@RKHRkhO@yxx=bmk(s+m
zz4fCNp4)vYaPPU}3o_@hg+NqmA}~KH@`SV+61&~=^vctI)LW7L*v|yDKG>W1s|g7K
zO<_{&EFLkKd<YUxYoT2W{{WW7!xI~`c*v_anw4K*0Zg5MvKKf`m!31R2kqH(Dzv$1
zc!B0zq{h5x*&5D&LA0p#AZiV-C2zCicj-M}|6$H;dyaT^uxHE~wLnrd6&Cr^uyf9t
ze)k<Qh>i$&@*7lm0u{17cE=-ZYVbI#16?}I8-Sb)_FUdpC2w)SE~A38NS?U+RSqyc
zYE<##wVlhkT03UMqw!hGc$FMGx0dWyF2)Rbxt{ojUrbh?9X)b(+nAv88_CpDoWV0D
z^>XGZEKzvmV2eE+=8B=N7~+b-uGrlb16)z+itSv{ImkZW;)-`%@rElly5f0P{EsUh
zbH!>`w7a6-6@PHWt*#jEii2Hoxhv+mV)kE%k!>Wz+I2o?oeRFtkpgIW(}}`j7x^YQ
zW}FaM+`{HVqRa|E%QmO78T>^PZ8qQ~z%*O;a;BhG*2GrUxoJG-BiS5^v!}im3-4kU
zEOg$bj!&h^R0po+(D1o6l0gRx?w3MyiQaxT&lTzUPLhbi*>?NRdgaXylI*S3sA(Ic
zXRXiWQ8QiU2FE&oN9mHx4UW(2+&S4V^5+J{VvOpf{)x=V|IyMVr=@xhij^!^mlWrb
z%Qo|u802*6AJ1_DYt=>JlcpI+!kt5N0vlXZB?Mq$wPqkYa)>5(bAh8*SGYE^GraQ!
zCLVE(9HDlD+4~hZD1x?G_fYJ{1}!Va9g@Ru(0aJ)eFXa=+&EjkpDx`_z<P&vZ4(B*
zw9<f_EoT<Y8$nW@N)Kl2Ai@-(lh~(Uqqb?(hX2>`RQTdvCLm8g48xv`=g}=c<Q@Ul
zJzr*(dBPw7`*7T&uBSDAx;Q;>;@LUqo@n|H67goxY$7$^K{sEd5_93C*hZ-A=ctur
z$;y4TV}PG?rsj6@KDt=MQxxb)x~amkn!WY;G$}T~i+x4iyOQiknc`oCoonfrjw<uP
z>Oy(sxDdHwHXoKQ0i>2U7s@207FS-O5|OkLg}g}DQOwpQV3Di99zi}C3ua=H$ha+u
zjcx{OL{r-;XY!-=!}hZH%yX$hp=}$!#FwTdM;iFeT+dLz@|u%Dzp^MDdEUJWXFH=+
zU;ISU*(`?YBCG~B!Kr$InE|dDBJyMnzcirJ3o~Dhw+-M0z1ey_KcuDy*V;~(tMQfV
zh+U7?5S3_*4`BO@0q^qW0@%~2FHZzt-W=(dtkYnw=45*<&(-Ym-7VSg{M7tVnPx-l
z=LfLI{V6A_1h7A0Wb6i7zxQsa>c|gZk0yW}Z~cKNi`Ft>N=30ABX2s})r5fdT_s|@
z24X2@-%!})x5;03Dz&i7_B8_Fyldu5+wJ=$UBACA`~4Sp9ftNvb+fH93*@)azqZPN
z8%h&(vHe`QA9uH|azf0!-6Q1ensnu!Pt^0DDiwF8b^&GCG3TUdOtDZc;O&^lg-<Aj
zqY0}Dy03qJ60eHOIFoqQhLx-Q*uzgFQB4i^VSS-ir%veWqzzbe2vHSzJaqL39-(N>
zDz!9*M9kEKwNbtYm71~ymMwbBKMzY06$zFyRS0zrWL__^YwtXwUfpwljvQSp=edS9
zi&R1~0jjDc0=XGv)t(3DhtiTVgMc|yK<Fz0=H`%BU_?ZhOSvOnHZ*ExF)qe*GmC1E
zsYDwO@XA8Hnm4&v^F8Uwd)G)E=FKts>2Jb+!6nj|%r<@}nr&n^q62c)2>TQ6&Rn)L
zW*8SdRzK@^hc%7awvuRqO03HjDqB`Aq*xK2OU`5>^;Z<<2SZSt<GJkkUHtC#*~I6Q
z2->ho)YCt&(n)%Il-Du&Cg0AIq;121dd&;$qu7pLZT?k#GGxt|;8OW`^_z*xJjvgB
za!|(%dieNYk1_^KjH5Es6t~UsX)Xa|vgV<h@_9Y#%sL?u30-eE_Y#|Pe(I$7&G~V5
z-#h&n>*^?mVl`L{C31eOu3Q~OQ61*|y!e1uBZfsx(oaMyWVBqS+^|h|AecQToMI*M
z1C?E{oi1${=Ufb9i^#=@&-|)h<~;hU9AVRb8s?I9R*{>HAv%qIa03k;8aGR3!zQ!u
z)Q=(SEPXGRe@Nb_O~*vobHFX>5x88)CjD!B&ripYb!#e=vy|NqGYYTPTXUOo;nl>T
zO^M=ldC}@9ab}#1HPI`>xJ9eSnN-!~W@SEsmNo|?AzH>oCV|2B(Q43g;QsP|l(PAn
z>2&%}^O<M3@Ds!7ft$~eAo)xiAMS68N1=YardxSCY@w2lcQBReAf{4yF$+11R?R|Y
zp0TL+qFi;%x})G@tM(IZdQ1y^ICFyF3S!suPPnJqcwUZLHFuMg`%-0i-azxS&UM9>
z0d{qkyE?-a8{N(4T`_7o9d2NaOy2x@U8NsC+$<*C*7!keDgP*Qi3!Oz1`&SX(8VS1
zy(to)e|_}uz(0H)CO}u;F9DLfhN~p%;sdqH_eu6<i3CN;73uVPqXwHkUdWF``Z8&#
zM7q^6uZ&{wN5{Y#Mc8;EC$z^$ZKka@u^V2ASyJq?6kOpzV)yL(`6gN5`GG{9Ucx@)
zrqdr=qVBkn1K!ALePLsW%b<3;^xUydz^$g7fX~xwLF}x`oPbMnzmqqz@}Xi;uIBSI
zaME`>5V8Xc+kzbw*Zh+MizoJhUw;z9XFo;YqF}I{l1%*TG)dHbW`1md5nI9QB*r-x
zzE#xX%7q)BbsGqBo}#MUjVf6~+Pbqb`2~Nbfx~QQVNQ6CpY43S2G!F&f7j)r=8rO7
z^_tlEMK(rA59~ZuP`bE2(^GF6o(Jw=kaitx)W|e~BgPMIurVe#*!bc^)(koH&a`Yp
zGHgVW^Ck+DT5pZMHknA>BXmdSPGMBadm85~a83}$<qG4=D9|(sr@dumGxt_tNMWnp
z27~k)UjsgZPudtVEcp{S7e{s-?=;Bd+IZ)2S!~W*Rl#_tN+shREAhL8W&QJhm%JYN
zT?;AYBCe;@Ki%8l%T1K(m7Vm4PZrwsoXUhXF~`m4V7(gb+D~WtFrq?|j<C5?&{S`p
zH#QN)>ImRpjXYM|0Vi(JR9H5^aA@|EJ-_+4Dl~rVFe~O%Rs)01<!D`j3OX*`hd`xf
zrtu6V26tG?3jakuf;Es+H_wxkUf>y8e8o1~3;S7e3HD9n*@iX-c;(X8)IX6?`eXgH
z1ST?w7(9oaB=PJ&UYK{9ScUWB$jz9jg)fFPQrBno^L33^i?;LET(kY~)#L;^B}V`Y
zBWXUfL%bKnhW|EB%P?E|*KYMD&P(Zq7i&L^IX-F0XDbDVPPW@wJRXcdTX#YAd;x&f
z09o1Rf5}9o@t&(3BE2WlSQ#y9%6{_eyiXzqQMg>Df{x6oED@J*K`;n+-e1t`IhEzQ
z2ueTMOX`U62AAp54^L)8xwTD=@*#>$H9@>-{9n>FlWIH(-PRc+wx}ZCB>WCD-%{)q
zY82;=2{w(5#;P$|8E+-?Ln`s>s#J2EDg{#L2K)f^*XxAjh`d1ri^%)_Z-sXErXo3y
zWJb$v$P*ZAi))7u=3%U@HZL$ew;k?TYFhTDepbZqLGb&cO|}v5$jSdx)`5Sg{7XlO
z9IiY5$XBGx?t|JdkoRd3o%qCF<r5RkZOi+p>?Z?HSXV{kdmcrhai8S9p8SJW@fh+B
z&HfpAe^bgee<YYE?|XR0$;tZ>;$tuGFP3am-dFr$+wyKWle`b|b&b!-`%}i=+m`pO
zlGY$rcdeKAXn$|X`(N97l=pVKofXa_UiIDGhP=N(qPd|1>N;Kdh4TKpyiX#A_~+!k
z-|qSHzTJtEcS5(G$v$7^CvEfq7s~uu1jf3`{OUfHR0;iT_6@-mCCkGJw!G7;hbl?D
zGh=g{hS;`7_|w(f)CjL!o6`v9bxA1<?xGZ|nLMT7ltiHd3d?se>A$YTioSQD1Y(gA
z$oX3Va*(zEHz`Qb@}{H3VrR6m|7N_2cT5u!yzy_=PYnHhN*Vu6l=`Q8TYOm}rUXo<
zFMX;4?BVpLpO{CI^{sF_O}3#~7iefzl4nk4MASkFV`ltx9Pcmk@7s4d^K(M>{edSw
zYGU6&A+Z<o*dQd{dM7^+dvdtym{15xx8J%0Ei&gi<Fd#Y@`Qxfq~;sY-+;Q%pvrmy
zq>^I5{b)GX_~Wm5){25e`qcHB<yFol_{g#oB9}n61rygxu0gT1a1guVH(pl%@yk4L
zY<)pFh}A#gtAgLqBoSP=ArD=Ly_l0$7y2t4>wGPO5OOS3O_(!_I8oy|sh94Z`sC%D
zfJYSE#H;CnbB{;v@U%@Y(Nlq!NHK}zY^@;71MU5nBG6+0Q&Gwj+>d_QE(WDFd+2qJ
zbv=w~Rfj}+vFd;j;7BWEBWyO5r}r##ua#*tzn|D^S9y*bTPDQdE^*LuYnebjbmMV0
zf+^u58MIbVXqn&M`fPQp?&=>y7(L0{tlyY_;w$srh;xAt2m57h;L2XlD#`Wa!8;|`
zUkp8z4YB51@8yK~k4=fBJ>zuw{)+7PQ4h2H;u0+27mo(ghx|M0U?R;XZtJGkikBJb
z?@<Ypl@*7>y)wghG29g^kt|R`{wn7>&_6HVEh{DVEBt+GFT77~3i%ADJo`G~3s%B!
z3hVjVG23Q|orH&naffN)%q(du=9R$Q<Z!UvTx0ELj?t5#^v_pxQGbqM<PdGd56!%S
zLfRG_;p4qcpMC2N^x2{0T67sd26b#FYJ-_pA-?6!`9`6|-m~x}YTybZuA37BlM8jp
zLV&j6`Ybo}8y`)r;`QSdW-0x4Bw*3Bnii)AvmLdiD@<wR5B>7Lz9aftOycxG296WT
z5+Wh=^dr3VrRDbEO7Sldb>mz|Wc+wBSvffnjyoNbSx>lMp^B=)JO3<)Qi-5|R4qNj
zBukX*kyfp+yV^*{R*lXI2WcIING?-rP69A)rfFddbG%ws3bD9M>%ybf!wJL`eGIb8
z8{z!hpp@1L<lN7$>&>+(VUO#p{gh==9ysH4w(L#y0WS2f<L^^!y2l4zs}m{jWQT9c
zr13?WfTz={V8p{0z>~8bI_F!*)6LdF@C4RR(d?nd7U@aEiCVRz%K!Wx(6x#-&t7KZ
zZ3j92x<jxtSax>Em+1Ym+;_$j>k{uTLxP!X)?NO^F_XfhO2>)0^fKdEICKrq<y5%m
zKE(z-y-@ezk7ktyu?4=+*hZNgj~@4Yq>W0Ce@HfPVA2W~b0dpzs`>@x9KSNE%IDYd
zdE8zU)s!`8;LIDcp$3kjFj~~*vEZkx!@Y`3WM?e~n>zNP+kEmxVzbu#{aYdLkpS$1
z3%12^M+u&gWmyR)3$0N<&x$b*4l_oEhO<cmO$3_6jJUxiMDKc^lY?@h&ORTpys^}^
z6C^s>w)I*u3+7%&`m(mg77l<}8!tAiy&PsYNvl~hL{c%u?D8A1GFI~xrz_duG%*PJ
z=tyH)c+ep@ymq03M2FDCXa0kl^~o6u4IEX?yvd){7N9hUZ<+Qusich+FShakmZlPd
zRod)v%!dz_HC5;r-;S$1T`_@$`nH(dE*7h;&pa%BOLvVob4sr1!1z)(Zfbj?aW|R%
zWqgLlZKpu<Pr~16)wZZ?QU0>9o%a~XvX3KZY6Qcm4<BT!Y6T5D<~ZoL{UNK4nwTbc
zWXufY8^ufAKCKOzn69n=+pIxTY!W=S6&S2~tb>Jb=l7$B%JLr*A=8%f;cK_Rpl6{v
z^7Iq*+v4oW8o6aHZ#o%UT-i+X3XWL`2u^AXm%t-eK0TAf9K2gG6D}i8OxBLvgz}7r
zO(y8b;5IpGh(L(iik9JP?V?Gr=Z%u^$ZH}7)AFvF_nH!qAdI%`oxuUtQ4}#M@x-3s
zTd|||&8<*d4yc^=xBj-Q6dG1YqY3p8j81r5M9*?I6bVvJ5j`KDNEb$lZhkrvB=mX~
z9>3L`v3hlQ?e(rZH6|~AlT>-Q&<XyRgy(dvjerRZV(M}f@d<sXh@<Vx!likv4Z;;e
z=nKIr%YtQd20hF7!}MHy3i<_nR=yv&Dj)q$aK+x|XGxcj8k+Bhl}n%cVyvXD%fm{W
z+xTo7REjtTFvCAA(q|DfIKpQ>hUX<x3+WNdhF^;4icoZ;t5k=*_e9g(GO<P^RF#>}
zoMt+z=>Tbk<4|1-9^@2|^yk%y@?~~x8_)}NrYuCy%#CK*J^bp>%QyGXp&@$9Gbdj`
zrb6Znx88`Te<d0Y=gGUxKMa<fb=#lWR$*M+Y0?CTMu)`yksEeM?0oyNA>KMmEdurh
zKeV%0qeEhU*s&j)zE5w?S)H<*HuXyI8bt$q351jI<XW|*GN`Odqy|)COiHk3{lY^S
zDk@*2OxyY->=T;G`y{_I9^^f-^DNiumYolKBfku$=zQ2G-!Pc$eAxfW9g*4`<Gt2W
zS}8mqwh-<@AiBeSo@yzC8^q>8mk)O#67rw$N!~ZjA9I-Hj=W8eI2`u%u01Nw^(fwY
zJ5RgzYAD}!IUKfI&tvvZbU5tLZWJr*M)#gyfM43B=iJHbMSlMZ(U||_%i`qAeN$MQ
zJInIPb2$3*?mo3S&MJH>{K1E>cE)!M&veBpt{CHrrPm`w%OyneBQ>SXJknWZ@r(aG
z^0R-~MSg0)sKlrc<nGjXTYMbxVU2y#9p_PHkSUK&UnD=5z5XxAPt;T)5Z&SaW_P#?
z8BcVNDl0@n{*$gf`h59W{#v$2|NHV20bAIO?mZt#Z@N&dyZl6z6{0b}=U)~lU+$a2
z+MN7cc2-V)9A_226%KyS<Y#wR3~)uME6%&NNBQaDyw~KJJ2L#h+HIVX7YoEsoP=N1
zy0UylcmQ>6^Ssv<SfJ3JrO94v-E#2MubFmCRu1<kmbWu;G4%vuH203rb&LUY);I;F
z&1Y!;wSJYY?N7==$yppu=4ik0W`a#wqUC)P?)9$WVAeHs_XjA6ZsWgykG?oR(?wtW
zf56^ubUN(+NA|XVu1Ej-`XZv(7wL=tYwYcBf0q+0=gD=^7w^7pveMy-S6%UfD~|n5
zkNV=@Wp592mLTV^MhdqO<nG%0-)L`t`}eGMn%d24+m^o?!Ch!5y2JhdioJdO)ohRc
z_vI(*`4`F0|26jZ?3;7))1$rpLx;)Ft**Gi6<51ryDNH>pC0V($Wy$%oqGN@?Crh(
z{V&+tGrQT_8V(FIdwa=ExsK)8PAqZ5w<CLdW1+o046ELwy}j)X!@*Yp(c9bH$)+v{
zk26q`NF79YivRcmL_FPArUX9A+1feYy4Wi3cSa)3vzij^d(C;0trmq`zL9OLhwsJ#
z4#XXI>s9<r=W+!g_n0u^uTxL2O|2R7(S*k{#UHWJ0lStgpL%Nj@|SzDSM(`;d-Hc(
zUw+@+uWxPjbLYqEIF7HhuKKwtE2*rGaO3@TLpZx~Mf~<vb;WBmD5*%K0kM@$rRAhm
z$T#=b;p&Wav)vW<SmEaw=pXT>Ns8U-Px@&7A4lZ(WI96+hke+Qtk)LMCAFRHwbfgu
z9?q`M^&{5CTW8X3fE>`5O$FB1yNx!cYNP9`c2_pRsOo1MR}nL=upt7wpsp-ik?3S2
z>HB8$lnqj*S8FT&sfk2-Bth7bmD<+7nC#Zo$=*ylueq=<zx!0y6|e4?-K82`T2Ru}
z8fHT4-78jf8DD*ZCZmhh>LPQD{NeoK2M)-cU+h*tHEkarW1PP#b{!9k!@CB)-5EBV
zN2v4o{WAneTv|go;{(!EV`~m(_J=4|iK5aMtA$kQIV0h{)v-$(h7@TD9Y5##pXt&o
zcwbYq$LK*&I%L=V^~Dc(PEJYh-)p`h_Woj<cKB39s&s;$r3U_xB3*jA|NK26E)_dk
z&w|)7hdII1AgyFEYD+)LAWBiV?1fhdMrp1Gwy0va+G90eQNcR0xjz|Dl-}bKWs<X~
zwaBXQoBo7PeANjs#CI<by1>0$&K}^Zu8O@V)X)WYrb{0>$aTr>dl@_LaP{6JX)SY&
z>DX_1Ba5V64D`~`_F8Q5i9?G1!yt~`;(w+~r}`S#(F2gQa<Cz3I?qAUb`Cq6Z#7(n
zDpCVm^ek0+5k<Omxc|IapQmEqweMobj<(MaQ;{ldwm19Qn@vgHI^VrD)V(#xz4aq|
z>(v9*LH5v0#m?f!s#vPZA4Bce%LPZ&b3dGPKichO4y8U&SKrgs@40&61g;vm%D_X+
z<Q}nv8&K`7LHiel)w;i*yFdI}0&PuLse87bE;yo!d*Lp+v52@LAD^h&dg(@QcVj<S
z+e=@ewm0tM{vQ>_3yyekgsbf--TMjm!jZq^*X!BvU0(d5K(U?9zVOdAasHJw9NXM-
zzHX#Ee)PyI#5G)Cdc@&Pgdg|mcse^nnUl9Jip14;kmEyYWHSvq>P{Re7GqXutmH*_
zyKEci)We(DZDXH~hpdfU{lrVo8;dLx@tY)O=1+7!_CczzoU?uVNNI5b?0U6ilXT&&
z7fKkEiA3LE<#xsQE@0oSq$YY*Q!57|gaa;xa=+|0-kL3TD%j839X@OlVrNYEo<3G{
zNY*wf2mnxq3LQ>!7uY!-)m-(dPK;R9G{{L|YB-SDHVoi89C<O=WnfrNG<gx4Edjen
zv#Po@Mdv43C(nnLXWFo^2mA{^{|T%K;ipFUp?|UDm68>ZLGPKhMOWw-Ak#SYmluaW
zmn3qpLRhMjuQya!tkx^z1@c7AqcIbsnLc2v0bv~Zws9T^Ysup$wg028?OUU+b!*dF
zr`Bxirl7acIt^PchUGE&4Fq!l{6GLS7w|{?Vt-y>jc`Dgf&NfAlYk}U3$?uuHSb|Z
zDkO2>nZGY1xH-1CjbxasxW(^YZO=8G5?@-=8(It~oaV+@t*l`dr(1ek5bOV^GB7OO
zlG&984*xr?+(cWTOZdBENsr&Xy)6Gb(w>XL?-zV$kY^@IPxRF8;dkVJU#jo-?&14N
zzQ0Gc)8}6Iloe&R=SH~iTv(~wd4chZf2|i=--J^p5kCii3Cm(rYCsTccwq;63N-`I
zLF`XH${7vVU3tHt0ltxB1+hLG1Rrn9KyfMu0N7J$7;af+mZ1#WP!z5_`Yp3rFd!&X
zMbk9h+N|%Oc>?@5tO$P^0JaV<=$ZfH7hkLQ3(gaU{Nt%@r0<6yD@l0M2|y#&R7v=&
zW4iVO7D@^Qu@P_P^`l(%^BGTj?#Cy!UHjp=m`*g%iLoofTjtP-I^T&L|5EF0H-EZ2
z#AN<-i`q&pc1eGMFVk%<L0g;YE0gS}u(M|UZPR9#M!3Y*Zw~9kfvV{<3SQo|W4}b_
zWA$v3!|}sxJ(XyEt(d8Ao$E34!x?h4de=5@Ii!)jSFZB;-mVU{&~^xcE<>K1NLC(3
zJCLcAtyZ~#Qs3TTrOQ_DK%e;9m~AhE$W+2nm#n#n`T%|B+ZQfHSt*C>xz;+-Wt3xB
z4H~?PcB+|u0VjzB(Rx*adzbG<gHYDkt^|V>pZQz47}Q`In;ZV{Ro8?j*hUMUQ0;Lr
z3&7e>KwG0*X}{WbW@qCuY;u1Ahp_nE58f0|nL{8Lr<~|mCGz*U&|dhhKT!Je@{O`P
zdjrRFjjR2nyx*8Bn2N1i;*z#$L)}t0g(yzTqO!;0Gyf)=&W?etJ5d?SM8}mEH*Y;8
zKJ$LvXI->4f4eR~jC^b6WO_4E$W))}U1m>#gM8lPlLTM?PjR#6&}mDkPozeZCRnzQ
z`840xcg8BIcw+TvrTLJW_}*arwcz_@tk~NPRWWt8xc;=VMCv1I{&4#NMVY$|o{zOd
z4xB@Cyb@0OBNMQ27L*MJ9?6}KzgR|Fo3#**vBzto7CYwITvYG`Fb#WxKAfc7JV&x8
z8ut{q;t0)Av(fjH+IDNX(lctU_Y3^m1hTh~%@PyA@V-4oJ~Llrcy+9_1}=J>t=<x?
z?VpI<{MMJPcn6yHMk6ULDtu+1?1$d&;rYrj##uQyA1rQ1v#0>G&Uh(vyBsbmXB&vn
z@=RnONkL&_0A;jjB5@g=)GoKMZj|WV&zXLGP!_&ZE&#F|+jv4mPeB0URk>jz^Nw}j
zOTIdQj-2dpz^{aUm4$y$HYk@B!bW+=1FFq&%jq&~oLuO*rDI_teG=6J3olZQ`2@Do
zRJ~7sz4NJDHJQm`t(3+H!r6=_aiQc63Hw#MY+OP}o17V7@0q!eGKzxO5tld<<#xi>
zyhM1_O|RqcC>M`v8r0CV%=_SyW7--y-)S0tXeZvM6wh6n8eHmDpJS!lbRM>}jpRX7
z))HX->mY-4liOA*dR+-V_L`SDiC3V#>||3G@l7r-I!~+A<ewciR<OZi-UbO>W+{F#
zNKk<Sk@+Uc79HW`$W}$UeSY;kfH)$|=&df&GkWrXAb|4ffjm+s^zA2=tg%N0+Gvfm
zkza?(o2Cx>g6?EcivmIQX*Wu(V{TohOlk8(>$aCxL>s;AS!aXlW%ao_6k*1+kgu6-
zp{a~P>K%Mw$2y&(x%8!V)x{&xMZebFsPRB`f($%5-)oxci{Kp<pS!P9MGsx)RnfTr
z$f_dy06i3&y%&0@y@{hpBjo1vQ0b3(m<UcQWAHT?CDYL=78(s-Iz%#T{m<T7h4FFb
zUISx`R1aDrh_&--_&hn3tXS>%t5DWVr^AQ2L&jPVyM0!kA$OBxQTsML@M$UKVaWj^
zkDL`)V5oQG#!0Yz+StqwIV_s`9VadE*@TgjI7M!=&l?STl>E&DTm$2Ufh$BAw4j+n
ztj=t%Gb>HKJl1iYP;5`KOMdbg_9g8SZsI6jRlbS5D&@ePV~pt(W_;<%n2UJZ;r^Z)
zK)@R5-c`QtIhGtRKCIG9w57R!^`hE7^3F%g$}N1mLc%}y@2Vvj3*!;&8fK!}SfbNu
z;1)}xfI%h-db2c2uL^Yb1a!FNTF)CbXXo(-@5)9^+QV#=2~;;5bs`V*Y}8*{yp0M5
zey3PGu{ATy)KJbwE#{SQ4e6B5Ms@rx-#Fc2_oZgh9&BXTvh`CSjL#dZO3)m_d&ey#
zZfCw`cf6(YSj#*l{)^04bW`HfqmnvM3?o$#>EZlOt*3C8cazk(gjBA=GL<7%$AfG1
zZIDO(OF1hwSE&x)GB##t=@hoqSDKxkvfAnk)sEjZ6W+iH>PhWXn{=NJ(bvak9;gec
zofD;4o!aT;)lS?H<~_p#wd4291Yc4=iC_wKyc3`KqL8WW<+svJAnt8yXN`%tTlAK>
zPZvS#M^}6HDLyO9K6zeF?10@&yPPdN=W!6#5+*9;q1P@|)V1%0Ub_UbT{?HM)gdyw
zA4O=*T%ZG8Ia4&!G4IcSpQioJ>6o>8O-+OoxWk!HtdwWpq<iFe_r~##x2@Dpp;|X_
zA3wYs8@q*FuoEe~*qZS@b)fV=cQp|p39g_6&P_}5(2D^3JP&*nc+5?Un2U4IJRh0o
zHgM!;bc@jH=uEX>N##W2Qg!9`Bywimw+p$`aaX>C%(cf^_bt;XvI2SzG-I+k-pMrn
zGmg7Jkp#=4Z<OBjF@^FhUdOXDVL0?j3)~KI#b8(L?ur4fD0Rhlt~l2f6E9={wc=eH
z1)h^A$fvnpJXH`QQrv&&gj;$SHU3npvf6>~M{p(KqzNvIv%fs8veuX5oDa5B(~+$k
z;shbD-FZJGtj}^xTX9o78;+@99LE`&ty^M^9sDhA{ChTV;~(J_KC*97xt-ieWWA1I
z^a5(iMw@P$K@Vy{W?uY+w-&ka-#d)y82?EFX#BU%<iwRa?P0mwfrt>+W=?V)lUhEC
ztiavbz|xKw=EmbN;3<_S)~6nY2iRe=ZZ=mFaNrt}h}|ZtODYk37|q0IO;=;+>hZY&
zoMm{r^<}d8a!Ir^a=YNb)tpE`_S1_MR_a$-KZI@hU2=Ic^=$p-=ju7Cxqc9-d2WDp
zTrhn1+@Xw(QcZGwpE`)9Aq)&5hn3)X+kcT0p=peh)x_BN-9Wp;g9fx_Oiq*oxHGTl
z=xZ?92)x0_VYR7t_PLo*yScr0QM~Q%cq|i?y*F#F`^DyT$I2x_I5zMZXkq&u1%meF
zZtXoa+?!3^mT5epmV@EqvtDGpX**80^+w=yv$%1%J=35da`M1XG>oeU#TbEh>JoN^
ztjuIIl{*qi`_*s9u#SxylS3X$;wn#b+ce%_&O?3b13xCOAM}m{H{|pBVm4WEhd<e-
zt{biD`%Pckjl24aAkG&_GC-7xI6mmJw^-Y@WJ(gfDGP_m6@ul*3(1phqnk#)l-&^z
z*ojYPb3?mqpF9C#s(-3W6u@*up0Y`GwD`?dcblj5aCXlnW(T|jTg(7S1ck^|;p2y>
zF$IGlSG5k9!IyHBF!CB*EveXsmPuHBA+3wm42mH3(xX1$1T1DP1Xz-RR#`IDsG~#A
zsjLX^t$7V(qi~XHCTc+qJ1+9gINVxuOt-;jQJ6u;ZjCp}B-4&6$+UwcGglUeia7EH
zIu6m8QYSXJRgCHo#Oyaz01NQkW}Jx}F%u%Di(QTx@l1SHr+P>`>W<xbvP4~W?qV`^
zLqyCzrl(wgB{Ap7R{?vA_)Z{^BVSkCTSU4-cSfu^|2rbAAx^t!HBl}7EWP#TW#apR
zH&P0ag}goC*i^sWj-7qVZoP6OU`WsAs}c5$KAA!0gnG9&7<kenq6UL+s&Q;0SHst7
zOGiZfaw(IFu=1$95U5dQJ}uk%9dZgifj@h=M*=gt5|tq^%oILzqzFtzTF0?rR=ii?
znKhr4@@Q<-5sB4d38)a4xdehrm`j?zj@*hFIH1bARB+F<NW!~G^fjCcuMcYoG*OY>
zYgajQZ6i$Wf=FF!tWQ0x&4csn&75kd%SVGb8B$MDkX90&TjoxC<l+>(lZDuBV}l^c
zwRj=?$=BsF!29BXvIrOXI3P#gj+~!R+wxI+QGDiTX5(@^JW1+MiYSkFg_$qGyXQ|T
z;M>8}B)(n9*Pp|;i{(Lhl63)7NYvNDpJ0f*-OMc@NvELM!yL0bzUE6X%i@v$PngAl
z;aaxUHnsN@16k%N+(22DCX|fZih)`0{-anFR94H_)AuiPJFhJ(;e(D${_QK=*X2#S
zL~qvKqqi~_x(8K_uTNkH<0f3ULPOQKqcc*OQ+d&Ub38xmQtkV0Q3X4xf|T>eoJgAH
z_Av-Ewa>8+u*AIFl%6=jsm09QWFgBuV9vDyQ%d7U4C8Ery=WnnW?q6l`pPv}NPGFG
zv#t^OLftIpr}GvPBeuq8O~Ha@g-SODP^<h1r@`Hu^=#IeNcotGJEirao42Lmn$?Qn
zTZu`Qmb034;}5hIzkAPBO`6L&bUB4US;+enQhR)h1I53^u_0G^QN@FpY!&2UzME8Y
zv~?w&Y}fV7PU0Q>5W*TJ+)`A*Trq^PccVVTl_G#f%r3lBS9#)WHy9AIT+DTe4aXB$
zlXZHxW#xK`+$0ip8vZ2u*#@}aJQ%+MuR^3j)IDHc&vdj1y#hz$!dY$fseZ^7ED>17
zFmRkv{pR)c%eUZ%Z4o-uNV0gfvNr6XYx{A6FhMVxd8qOJ9V(00IjckD*qxE|Hj6*9
zlTS2iZ#j4^%4a&rpK=Aam4}}`<e17Jp9ayIj#t;Lm56ZNC$p%rJUn_z;f5ZCozA3W
zi=$5qK%vv739S*UYV=a4^QtuR02DkAEx>lFHm6yf=R`#5{FTxyKFBHi1#g0QXMWD8
z7F>QsFf~RtxDY-eS`wH&?{Fa(nM(z9aOm9+qsW6j*KOIQC^OR=)!95}0Qbp?oKbby
z{T!qE*TcGkqFOTVFukwdnFb)fVpTe&;Hs2TkTQ^?i+v`P6}DMb7dXGndSzcn{0-hP
zhF<Eue$E_X?QF8``&T7XkJP7#um3g4X5-6v5<dQr4d)(q#R^y4?~1!zahoe{cEv(h
zT<MBm{ug7Sx7?^MJH3}TKC<-^GljL*H*31g?~;^-m}oibSVj|1G?MU=og`3DJBWSl
zTn&^p;?OLulzO;)-rJ@C>AjzFY!KPUYMkchd($OK>C#;uS(rC^6mFahxZl$duHavn
z@n|tE6^=)Z8?*2N>mf8jegJWlzo>H-N9l*!sw0*{!wgt8Sj~<d6N0IM|6{9ImmHsE
z`=<_J>TX^3IMyd^<4Uhw8Jd<I68`FPDOW$>!ecq9Dp5?J<0O(<wsba8TP=;%@_;hk
zKaoDYDv_=qN`Bk<2Xmy@`BjM_EPh^-_4pr21pRjD3A*sn6~+V)x#9#@+<h*%dIeeN
zmS6Fzqh}&NXF<r;3`KA{(+p2=beb;Gr$gX+@bnBj^ctRC?xUH9@vw8>lJuU#OB5Fw
z*_SL9tgMBaIp++l)i793FdpSr_yB2*9dAegs<jP7`XoAyoFEzu(qsL8;#ed%Jss{e
z%dv>5Gf?8=7%;=}$kDee(xvxrZ^4>=iPSM=iPST8B%1un>hNSW_GWnegNBeLKLrJy
zhJw%Imkm<O1^H?@omZ!s9<vq3j%dB`d-u5L1=%C<wjKGF?35h^CgkN@f;Hl7j-F#4
z^?4XEKI`YE_3PwC5B%2o8p0zcLm0F@k|izPOd|~yza#R3AH*lze@|x(Awe`;{}J`2
z9@OA_^Me|DkKx*ly~XnUV(h(2bOP};@udyLia_7WjeBeOGokfk4p{v*(!;Ob@itBA
zLxFiI9~s+kOg1uRQ%agOIC(pZ>#-O&DMaK=8C3Jc2le)&mYpVvj!YQ@u_HU=K^r&N
z;?YSAL0eZ=Gyl6K8`68}$Hc*IlzcF4fC~ni!^^qsxW={>w_Od)_uE^Dr7yd+J=fTe
zFrj*u`8tq0m+!6U*51~wE#>T>s#oqUp~D$X*icJVV~4qVPv+sJv9IAI^E%w&UVedJ
zEw60hI~H8u#06cs?A@p<LF~sX-S6>YaMvTB-eAhh_c4eaHQVF!spGrjvsY|e_ze3L
z;B)DZviN*E69M6tC`Ya5<8v0Thu`^C0X~oAvg4ZY_6JNB7X27m=#3pj61wQiej1+?
z<evyp6E)*7^Dgiq;<Il+eQ!l^Z1<`lcKR&e%T34S^>U)kC&c!kFU&O=*Ptu%xTaTO
zFE9GfY%fcEFDJ`hP7{t@`bmB-zs>96xeM}oIX)cEWydw15|i`3b3mWeOEU0@eC%{R
ziEk{*ocpR>5rBv<J)>9i)`Oc$`O%vn@wUTw1heV4+ovmtoqMtG>2^Kz^y|I1)zfmG
z<jKby6SF<tD|Gbyyq@02>*37H3VM1TmmSw+r+-c~P{);Z8sHLZDUX^&N;XK!6%i~8
zUoOwrBB=-W?Olc@IHHK%{XHe;&5Y!~zB?sP?zOG{Rr4gTfBka(JM#4}?%xYPl>Cz>
znU(+X;pJR*T%+jYA?nFcF(KT8t$>tpmNa89Fk=nLuTnk}Ly@BJts5ePfn6oeh`!Y@
z0vk^)iraS7i>azf3m}{*!%n4m?}To1PCG$U=4mZhD(!m<neVE^YhRR5wFYztE2tfB
zTY|bB_MuE)V#LSsS%0EMjqWGf*x+`q>Qig8%KhPb1vzK_jBf<dcp^jt`V%Sm_?71P
z%<pnnk>mcoIO!m8dp+G7God^5(+jmFSn1moiTIzNv)q^CRe7+-Gx58hNJyWzeoMXO
zJez%cLum+GPHu}nkN^2WoqF233(xUydXwW)SG>K>o1Lj6|3=2L3^2FVGr+#1yEDK^
zMco+ykeSsvj3;>v(C{Bw20!BOU(5i5cs;y<+{!!#_!XBO*NkMJ4(12kk<zx~Nu&zU
z%OiOpbT$nFi~WSfk6vkR8ej-){&-GP-+R$zMVSZaVd~w?G77!jvCa_Ru{O18!t%FE
zT3_2fQzHcr$+|Px%n9m90fWuCKA*v6UW*p(LE*4};YA*k&sl~ZBRVzVmE!iD2W&$r
zzV+Dw`I!9EIay4;xABWHIhWVNGsw%#!{qTw)4WEebA0AtVo}|p4Xf@kvoOdNm$+gV
zS6uKP*ovnKb9k>wy}%np0GagYo#=$K9-JO$Z~gwwTbrl+Ln*Cn&Bfnhw~`}gUxMs@
zL^~@AzK#9A8Q!&vXE8W!S1aJlh-jH^q@>H_eFXzw`9VHe#DZaLN<<cY_y<hBC0j7$
zwc18J9B=!sZZb-nZMA8ffq$~thqRO<$$dxd@bxM;6wXOJ4x8V%w{<IerH|@jSmr8c
zqsw7{I;^u}`?^%W*-7^P8Szp)c+WR9J_@W6v+7q3n>O=c`h|(k)yd$b;`$L!%vf88
zMype<nI17xz3J9yK&&3~5Z{*Jy@CQ2Vf~Q2fjX)YeWZ$vud`rA!1>5f1VSB@tIM2f
z7UC4KquWX&nUWi>kuS;-e{;XrJM||0zd+-6_mXcwpGC;<twgnFY)U$?dVB%~6^tD<
ztiAT01U;*@<BKzYLl2D#*tW}8JSz2RV#H?LQ<Po2^(AJRz|_dYYlG42M(z-w^*wI$
z`;GY0_Sy$T?NM!z;Bsu<sMJ5|;<tyRio;QmeU3JT9+moF)R4z&TR$V;VKLXWf7Tb^
zx(*FEM~M-&!LiS8Ue9-1YFj!tR?qDnpL4G85ya-t@G`sq(OK>1*-^O>v4*WCws<5F
zPv*HZ-{7Iwfk#l+o#UP4nz*&Ov?9*6+aMwKDO8YqgJ2^*wMb=jW>TJS{9|efQ)wsA
zON1}ULU=xRI@-)TszWANN}&iM%rUW!KZ#L8Hq?orVhW$O!tFkzX1*F<&^!E?WMn7A
zb4(UA`KMf?)PvmRT)@_kIvZnGZvLnvM&{nICo~!<Ue$t*B*r)IX0YjW<q<`4I)cl&
z0ppy4xlC9*KQZE?_`LnOE2dZow6&}IG*c9@t4;FkH5UAO8;TO0PYzjI&(VHE{;E^e
zS$UOM-pR47e<fCyIQxm@h$rH+9^%C$_?pl6iW|+g@~X;aN;=-4K2NS6@<jcRClkwG
z>6M-TeDe5UK<^~!40C_Qn~Bs&xEnvHo_Abe?N{<Q=<j6FQngwD;6$3ML!J_vsZpDw
zQUhAW>{sZGtVrRM*70qFMC245sfe0s)*CQ!a0N`46)Qd!!A7N4*8T~Uz>Sss&FqBL
zp#Pb(;XB}JK&LIaITwdo$U9ydEfi)!BhAE|xUYiiHhi?nJRBLP<}hA>-N1PK6wxa)
zTP7`tJ@5<9(5D{NBST-f<#QPN2RzJU=ndcPiJ`yy!av8*zowRO+3c<ieG_*&+K}4a
z;&U5_W!3(f1mmL2C<VNN*p{FBZp=Hf$8Id!{5jqD4G;6Wv1^arxcvElt{YE|qZ{wc
z>e`K$xPx2<v122MUpS&ih`0MZh%+A+K>S16(r~&^lf3%eKL_z3L3~s<hz~Z1(XJ1S
z-1YpOvKlsXB~w7$y|(afD|d&rj~dpQ`I+X?g4p+d<|*^R$R7K-7hPfW*R#efF6`%p
zXZF<3PoDkf`Z<DH!qYD9N|{mIfihA2+8l|jSq;DX{XC0Wp|JcK6G5M0e_DIIzt`Da
zb+y+CneFkA62Z}=P;pB5frxs}Mtu3o2%Svx_`LD(9`X6u`=5i)J9(JL>0djeCwwk`
z=AXl7=5+A6{micT{Gd(v%wx%IVJLj$HghhA-)_a#u2|}B?(MG1UD5wcT+K&W;h7(x
zEAStEe$H(r;J4@e9C-48$ft{9>ChSH+n?AFjFVB+u&&qM5z#R)&7wEz9O7$Y1!Y<;
zy&vi}A<wx7smW-XCN;oZmkoO8I7#&#J?C|VW7t}^6r@=X;SQSszzLexu^pDej@#t|
zr7xFnoNVM4-c%ZKFwl(V9Gh9f0UA)uxKP!^1Ferr24izKTI|LTaUP$)u%vGGfFnDX
zcPup9A7ul9h(YE=%CWPdERLNzjuWY@jXu`<Mnxjcln|0l2IGrC!8kf!CsS@IHU=G-
z+(e66)3}I>j@g|LG6CV%QD)~S-PE2AP)j<@DDbd;ce#`DUolV>xh8Vc8*8Yr$0jp7
zU?TBQ=KdBBg%un0_?h^;QCzI*bL7E^K;tU>sCK?jt#R(<sA135-k;z`<{3Pc+SF&7
z8qy1O;Ng@pBOZzemvEKjt~zxLuIATTI-B`9edqelhiXTBHX~Ly;_2xR)ulFfv?uW$
ztSc_3r<AUM8hSE`p45S?WM!j6nDa^^nrA7?3wR3{=Q>5p>qwzErw$u^O4NSGTyt5U
zs>53w6~F!6(ZPVdMv;C$=eu%nhdnoj{N7-De#_N?XC~D_KlAgF%2HAnIQwbjUO2Pr
z11BrufYf)c7&YP_@!($W)OJ2debeuTBW|DS)yuJm<*65u*ahp(-IP-=s<<FtcQOz2
z)XTc>6sQ-=tPNsg{>P~oHvxNp&l9kD4(=t?5-w`aQ!i>ayqr6zmw5`<N69&(Qcu_3
zEB8r!K6X^<<Brp2?@<DJ$F?p<9vzKyXm?JV@IA2(Vu5dmtUAc2iN&!ZN@F7RUcI(z
zUFB&xiJO!4{@77N{$AVqDWiyY5KHI1X=b?@0Bo99)7E!zF>1sc@i}+u$B;J|)I49i
z`NdIWoVN9XWOb=^_%xl3+g(|^`7`fNBNmNE2mKC6v3>hL<SU9n<f<#Cgq~Vb*-T}L
z5$|5e`XV>uYl}N(kE=We5+==0M5xhDYTo;aHbQJfX@Q%HaR1#S)kfuv5S5qZM~KtZ
z%rTh<L2O-$L!2fV2xOzkkyP3uAb3ueq+PEjA~oiF>{O)3#q0swfjW&JDJBIC#Q@OA
z|3093+=wmeLOXSkei^pVl;}~$o0EfvPKt5crduA#$gi|%-7Fv;LOR!&c^)5e_9?>6
zz@axqKD5`nPVt!!jp7sB72%G%2{#3bFY=+m4HX%-Aw90>j$o<wPv(ji$)l#v^XZHd
z&SncSAVltcGBrHX5i$gsuSngQl90M{O2QaRs8t2(h(7GzdsneoGufSWGgb6;RB%S|
zsNg%rTA}kMb%5)-9vM@5;vC6J1O0BSL-mgzHSDe0Kci4D%xrT0+coEUg>dLMdQ=GC
zd-HP?LM;#T6v6{1^`sC+KK{=sgr8AM_}>?FRR}Y=lkdM_(Ikb=qJ^_g%H#J6`ERC<
zu<ObW_g;#rq^`LjL2T=9eF&(ll@znQ_|<OAl0;5myzW*q^CNsfa?mmp<O^~Z#-kj6
z7cRcZ{GLNk#<v+-a2}r4Yk!})7Wi@!9SQgYuT->d*=@?MLE^R6kNQp>+}i#XBGuSv
zz0u0<X|3&N72ZH4jJVGC0DpXiuuaS;th>wF{nJU{EuH63(I6J{AlpwxDc9wi$k8B~
zK9wcTUVHE0*N?m}5x@QM#PW}hN-Y0)$dHG5GC)CsIpVf;-2wzbzuwGx?yhe;7Vh+h
z`}X5~_5F~CTiYvBkGFiZ8Zun?LhDD*HXf6D_{VE2TOZsnwIa19^^~+D!G=gVQkR4@
zkp{q4c2W^gsYjN7wD<DN-ob!fAOAR`P)&H+jn=saEAl$W&vOz5`RM<i{n|#q#ZE|f
z_c<oJ+hz^2Ob9VSHxcSd=$h6Z_eZ^^7wpJXg6)r5W1ny*@00xf{dkb~<cs!q{NtMj
z)3ME4Yx4J-Dk3mhxIgOMeU9x0cOejRf2$H$2XWGD?d$rQ#HbK%lzAR>`EVB^A^%C&
z9)14)jxTE$T0y(Drt5xFu2(|^)zXuC1!pw-_qz8ye}B}TdS2L#?md@^?b34$`!;%B
zh{pV$e_5P-xo-+<bNf3^U76dK$#GWUTj9~yna~{Wis7y}*cF$LK|S@fKWdBmTCl$`
zI*R=mr+3>Qs(o+2Khzs5a)4Cl2}4kNN68ShllEh56=!K(l-rMS7F5V0Iq#cr?m~lk
za}w}++>h~Sz68FB(xKy}L&vM0$*JWNmWRFLcehX2yu1%dxY{+0RTC$UW%?{Vut9|e
z>YqZe#1Qgup3LU%a3W!!{#qn@@iROmVBcR`My+L4N^$(62lPH}(X6HV5k>uiaedME
z;|Sw*vJt>z(PUri%PjI=lZ!7ta{hQ5;%L*VSxu?{RhLi@cP!aF-x6Z{XtEI};{EBE
zKyW=aiY4lTcxROThO*Ixxqv8~@hBW^gRdwoxTVI}V5UzJDS3+W?u2kThgeL-^#Qjc
zEb1@oW|?)iUP#|Xono-kV3{bHBpO$r*XY?5#{1qu42F|~)TsCF_c7GZ;<KtiwPKVc
zA98iEuJ{-L+&jkweR?~nqUD+qU|}&`HtOwL#F@~{Uv7xEDG!ugRBk&}ge$$)3LS&V
z@xiToP&a#2ku7EUIFBfiMh$oD!Y){KeT!>{ZK<2xr$oCarQU^X)Ax(FzO4F!DR{ag
zOE^&RR4Qazb+n2RtEQ~ZEZ1}Jy3k60Y6Cv3bN9O8n<ow<K9Q3(0fte_`DwjKm7q)U
zD;xWBpABh-eO5DjcrPW3r5@?H94cM#o9<M?i4<EvB^GamXT(J%LcQ6@Z;e)r5V`I`
z4xHMC%*FVr;b~Vp`{;^#SNy>hx4L4uE3S6M<@E^Ib$FML=KBZ2X4(IZ`>maJmFvGN
z>aFl@LKpvFqexWX62*3Z@qnU{#pmUAU~1Yvyy+TMxGMJ93kMVxhvjSE>I^rg*rDu%
zZ-MRlZ}6wjANljZa|rF~*rUCN6#ar(EPk%_Khv>YUN%=6B~_Xju|G^!dL7T;?T^22
zyuH<mfuE>ImENdlsew09q)XRt;M28DUu7?>ncP?vJ0CE}Q1ng``%e9o+u>OxaCW@H
zRYD&Jv6rjaohqrDSB7_uhQK=gprHTf{e-?(OLq>H?i@;%AL*OVHH{bLYnX#=9F@(K
zOqaV<Ol9dtB5S%N9B~f{f)6Srh*f%u4zeUdRjG8Z@TO+%VHJK&Q2bo_BtRCl)70hK
zY3kBE7p@S#Q-QBS@RbWbAdoYhl1|gOmPSg#M~1o0)?ie%-ntyw@tQQeJ^Kux^6kn^
z$AXmwYPO)g_{Ap81?v~pCZFmoFPhNqR_UqyKAa^<jrGIUwykYE%HinSfOjUZ)Rb|6
zPh;7zb{zE@*}n>Kz;eY@KIXy!%&W@)mUpbjduCa*pQ4h?mxUjmqo-2Tu63I2_*J-R
z6zDr1^lcMg4PEi&=m{7?9Q3S87lFR;*kz7nhBWMgVY3iL@69lhT|k>1zZShncRjpm
zspxg*w%U(h95{KZ5zVSavud|TSfYc?C6v7x97mgSFPRS14>aYv>Boy{AgsXXnimS>
z<Mr4+n<x`j9zIPgLS6+&e`wRL$yBBGTG=B?mqoeD@V+{brU`EcbiS|)D`1#0M#onZ
zoolq?M|Q6gY&T|O9XOlu6+1tnqUkuxM`Y8KCrNy8kM>9q$G{j({U%|R64I|Kn)a|2
zl5F_FMr|6(SkEF+ZQi;=e8Gy2mzzJPe6Zt>;qU)jie=mQ{2?~3tBi`RAflj8sQQv{
ze~A>Au)gt}S$K0Ucui6QQpyer%YNj13PvYNj(W(<lU~zOjt_O^fX$|ksqRM<_{btE
zD_gqNp!bc1#;TR_@UMAv*(KV3WxR;tQzH4ON*iu~bJuFKT2%sUZZ#t=lK{YVN(p+4
zNaflxj|j4bPXd?mK*w(cOBa;ngO~keXapXTnFm#P#pPx$E<GAfxqxc($kA0ld@6Xm
z=uD9TkjDy*mUC;FF|72)NeOP&2dIsj_|oCKw0zdg<@9lh;OE8ucWqs8>;tvUTXsFa
zck8MOG)KHu$#}B$4Yf=Hl+^{t@%$q_f3Tva`l-enA?A4MjF8&pQW&f1qHIp<L)2Q)
zLEMN6p~eGjf+*nZ2z6Ctg5-$RrQWdDuMA5+t_4f4WwF#ne_B+lV81>`9A)KPOuyJF
zYsB*DlO_2i(e2UK?OQtiFga;wKbL6Tdg1hnspqm}qw>jp5%E3tLXiFfBnj&<>Yc;R
zc)A@=$>n<`kzy)FA|U=N3(xIMKNabN9M;boYpCM})nHw7HFT*k+<$>}ZGH`1QwmES
z0|<O$@%(%zflj_t#nk;QyQHS=!^Xc$_T!Q4KTQkdL3we1yLsz{HSq<jI-b&PpBUxa
z=&}AUl}}~sF&dqIK>j8nj_BJ4RX9G8>SH!?qDg=F-}FhcqCInFYKxMdUfTJt&0dLs
zJy2*XcgDd>aL!O|qR_Su0=h4GW1?FHZ)ehvgQ3)-R89ECZILqSQV%;@ovUhbES_lE
zTV$K8FQ)nUT(i}#9<;JcTedzmNbRD6>HbIVcVI$a?`?ceEmpO)<1;jf;F>Fs^hE7E
z#d;d10Ww3q5(Rnsf@Z-U!-*cj3(q+cUO6`_23d|Nkcab5%r`geeB1tHci-|jW4=|f
z-}0<DykPy7&T!U+_?9O#6S^uEa5v}bg>M~!IsQ$ywS502sH@!I_Al5d3b(wuPzX&e
zb|aJ^Dr0Z_ffyk(dW-Z}D(iQ~5N>SK^nLXi%U!ynL!n_NDR$d)BiqTI@)W^d)JF-^
z`Ck)qa2vPB$$Wm9i|?A?`<b{z+Bep+QZU%!kLvKj34s2W_{?GX%`wNpTAG%Ri^|Z8
z%A9y~+)gx$i}Kq&6p=R3)&ylxdh%S2lyL1VSC9Agqf8%$hZVc{uknPjZj~O^&^V6p
z1-6MI$Ih;klx&iea46_R*}|VtqggxSF?l15=nOGnVQe)2B9x5Rj#pwGxC9^H4PNy-
z9UJjK=GhMuv^C<&p@~#+BKR4piZ&e2w)rjc?p>Q}GQWa#=<W+=y6);*K2vuC14!zu
zc|W0m`a1q1^cH3Q!bk4cDf|jI91ag|b$R>|OBC>5{NhR>yQlS9B}Ut~iDjv2gxoYH
z&XtT63QtqUkQ>Q6u`FGB>fa7v_H}eQVc?l|=wE6yFOIft$ZSEj#`wTL935cUe*_xB
zVcMII%6ZdQPBW$|j-mDA%hIt<m>YgNm8CqqbUf9qZ90k{Y+|#v31XIh?{$rhV&7Mx
zFG~NSFV;5g#Bv|Lh<rXlIy5{Br<v77g?Dk(!h{}NoA*Gwa;y%AahpWh48yn1aKX30
zrE-NMMEbG|KHJ1mJ>e5D6L4umRpP+DKtF>`Eh2^Z(V+JrqsIfNm10f7$3|^*n(YJI
zH#~W~^UfH7wI>kfhWOP~8g&uN(U5l;zB&SUzYpY}5AO$xGqt`sS)4ynoIg=aJzu>*
z1vpjcRO7JcTnr1!PfMg{Kns@Px)fFu4&zEDUgJw=3}z>_c$?O}GFY6!=4eMI)1!wb
z4;)=puXRUr{-o-IV=LNdWGCk3rrjnTAxo`H47%+S_W9mqSSJ`4h2L%u4NF7CE!D!(
zv_$G?nB>{VHO=(%a$Ja++7l#^(*Ed28}GGEguhoEJ(z~rI2~5{nGoH;uL}pO#qcd<
zkZ~)aT5DA6Sn*&(#x_XO8@oeu*+v~BxV<&o@sPd%30l+0XpWB>l>2do;LXN{q9xiw
zY3s_#C^<F2egtGhFOOgRpk6j^XRDW4=EkR4#|_ze&)j8?3FM_b{K`I#MXd8kiMPFA
zKuo`WoiOkVpdrGOD1Hh7Kut>kq;T*uXW4X@<YowS*(%mK;T`gHJ(KO5Us7geV$jFB
zIW|%JvBZn`h6!9FvV{N5ZlvvYy56c|1{bqzZopZ{3~A#guWK?#!D;ckkFJ<-L}}l6
zo3?RKglaq*>^Jjw1S=@)cfS%T?A0|Tnlnw8?hW8HH4^RJ>w3)&qTNa_5jW67I(HnM
z+xk~~X9tK~o?$u&a#3-(0BOiHT05(0WyN(&3pPtaQd>IiO|W72RK1{`3kmLJKBWvF
zzr?(_hh4Gan>>G8A+3UcUF7)_ryn6mH~$HVE9o2FKg3Z6Ht5MKVom$w#uhlyF8Z2|
z-SP_BYQ*}+^Uz$MzTkczD0?)KH{EQcxg<V{$|SOr!<<X92clvMIQEdfm&AmZ9hlvy
zn$0QGd-e`_l0LK#MaT7`6WootA*h(jeZHSSvCmJ*`<w-ud!C{v=|jIm;Wh=y){q$m
zt=Vc`mNgz+Z@u%XOdeQS_>6ABdhlOXufqUdy7k6kX5tIqpnkYpnF#FC`p==mJTcpG
zQ?XQ+jn`~IWKoumz4w|rRQkS(?zr|DUeUxoYSp=a;Z?(7lh<=LG~Z!UCmr22;D20d
zodN$z4EP_O+Q5Ln*arOjMNU5h{#+D8;V>?%6X}E8R3>AArtR(3jwhS9_Kkk8Zr)m|
zkiY}s^|QpjUHH?6kKM*o)e<;iAD)v+MVc_w-jW<1mYfk;62|%3A0^3ScBna3FY>MF
zGaD6?Htt<y?7}4602^P?ZQha|<rhtuD<mDtuO8kH#~S3}N#6jKBfFTSF8v9lz+2y(
zCV87Ido(#~k2FLaWBOgTPgIuI6_oDwbMN=z7@>zX#CScE7xODOu=IdFM45cx1ivyR
zE2{uPQ2M=ZNdMqfi8;z`3Xl56>sEzsY1+aVN0W+0;Rk<zGv98=?@1d|7dDWtM+p3o
z!W^F{!GjApXNk8NmY6f3vh#5vv_kZ#5-EnlQSq7mtzN&&r2O%9g2W-cu(iDIJT^4H
zJ7BFSJbI}!pj0gv6k~XHZZ?OL1x^MHhnD^x<vZfNrrO5+1;JR^wT0GR<oEiWp5TVb
zaKkk08q*c1_o)XvMF?gUFk5~vUlnyM`_i?PJ|R_>9{8kbv}lIKThS=9GS_NXJKOyY
zd~iXof6Dk+WMyuK#zUX?me(BiVz#01H$&mtQ?m-7fM3r$vqxVK6lhZdF_$^)vAez|
zYD9jGrj)}aOA4sLL*w1CIgc(JM9UrX3anH9c+ST6bz+W!9FZIg*>c96v;>O{u!%2i
zPVDfW0!YCY03h5{7R*>z)7-hk`J77daaq$-n9;Xqdt*H+9_9P29$m6K@26u^)|fMX
z2(Oi2tNv^+xv1tD&PVKTH_3-Hb#Q^asY&p6D+wt)dgB^w^Q&X&%wxffYiTidek_=A
zOGhf0@qk^G1T)rVrpc-Vu}KjGD|X6*fUT2(VAJX>1V`W84T6)m4Z#534u4<}$ce4?
z+M^~1X1L@K$b2pS#OLGt2KBZe{?DlW$rUzgx9ton=ylZ!ri3nQle%6NyNidMS5x~Q
z=hZyJuzl-oOb%TxXEun1+7Jif5h6?2bG9ffz0av;l!M%fRBYsiDti9mD(g8nO25I4
zRk80=E5rUtXbZK+q|WZ#m*4Y?(?Il#;j0JJpQE}cTlyyUfIp2^w(WBT%|=c~Rpz@x
z-z&sGxA(F7j5M2Ydkj<Eo>%47H#BqbfuC2Or$c$>RFsE9e7E{4^6IO~e42gH)2UD%
z&w@79vK<Vy^vBOvoupc862de;%uay=6FIp~6Tg->07Ly+fHbmyG7uAm>7ihnsjBor
z;5U_>pt?~L9t%A%6ghZ&+qTI7t<^w08iP~>Ni<dRy1slR_rCJIe%w``xcQmyd9WS)
zC<>#YL1-R`Mf5OR;h()Xnr}mRd7{kNWc6g4dg3NR!sQ3TA{Ut0Nn`=(3W0Q4t}_Mw
z5q!x)-jDD*Qt%B;fM1Q2w0OECY=!c=9dWV|K#oS1X~P--&?<EX=V~3deV>lI3R=&{
zr`rG5=)1;)f-TNDq}!tJtp|Kb`kMar<NYe}T!nZJ%zIR*F?dn_7vfzexe5RLW9OI{
zB=D&AdDpmC2)n*K&uM|#mRICVh$=9%F+E!W-<bY#3Lt!c2*mt;cX==1ulU8<;iD@J
z1+O-(k?)t@P5CP`oAsK_X`TVEKBKs-2GwUk%*p(pR-PE~V&gY$cJrY4-N#kL?;cw*
zVZ<X%yR)<I;P}$x23N0%FX%GC$u#EM{AYWY;q+KSAa^T#ZZC~nZ0ux!07b_l&cwQb
z{|m!C)h+F69I-{0{`^c1VauBaFC>^I5=@huXM=I=H9E6iuMo_bPoLs<_n*-6apT$X
znd32>$_;D&cyfH^w`E27XtwJ%cx`}B<-4(6QF?L}Jtn)NhMgoeW&w6cV_~dD*c$>m
z$BoZ?WCDCDFfQ-SIcxrWo{8B;5S3gcOm`QmX{(+Kb3wSM2!C&o8DiuV5<Y0qTjPbh
zv0^o<M6=NFWN}O9I`72XVLdS(_bXI+m#^B~$|YoQ8tX}$dCQ`&D2T{2vZ1G2N9yZp
z=PgNX_KW;B@T}~4k2SM}M$^ve{=)d=;qkUBHC)%do&3FT#@lA<UbO5g7<k!U{Xv6V
za<RP51yoN>bykEM_Hkj{p+W%!viQE7{$Svt&2n4_*UZ^2avSJy!Yx}^_JCQ>!-Ox;
zw|zeRL2S2c<hexac<=8SK@H(P4d?|TKaP<y74T$u;eK%EkFvg@cr?eK0ZgdQ9bU^h
z;t!Jj2A_r^XKHcf29<#?A$W;+G$r-kR#|4hr4bhX#!Y3wPM)!lJ)6EF??+(}7=obJ
zt9$9=1(j>8@~eDqGb!$N?H3V8LKi;rL4k)M9({dJL6gv+{<BWR;^O;-_bgFjm$y6j
z)e&Wou><U4)k`1%dV^6)9DDd+M<i4tfkeFn@K7u%;T#yu@N{~$Pad77IXad7+356j
zRcK$@48qT^a`e$TD9RF3I53g+xNBJ{l)}UAi*Wi0Q0ZYc9SWi#Hu5};4#BKkEN=0s
z&;AZh+D@ES7Vet)yICp|BV=8{HInF+hc|D!4((u4sDxHl^(l*K#I(seHHCQMhw-_e
z;2bAfK2v}#9{fWW=_%#e8!zfcFtvArb7baS#KnZwedx!ky7FF(nwI$e&sj#ODiNhJ
ztD2=~R-OT~0=1=lI59}yUs+^m7+KkATNDAVuq!qgPE5`CN8c*WdeN~)*Vr@rI;UPe
zw~C=fi8|t{5(@U)kY|@F3}5c02sDII7__r!RF475D;42=zjFf_&!mFnu5t&7kS5SB
zUMei|mAYxk66`2)CA+2oW^w%DOL-b!T3bAlpz&gk_!!C7RP*ep4}`&WrZ_%l7<Vke
zVpTDdCy<BH^Cmq_&%i{jh|jxaAQzrgHM2*O_IE0%Ti{Mk2uAKE-qGA<GQC|w`!aq-
z@9Rfjqp@!bA_&Sv&}T=X!IpM8Ho52&2@bMqjn47))&UJYbC8?_3ti=4CaOE{Bs)f8
ziK`IOsdd)kv9DQqA{Yq++;5d7)3u}oy%e8C;1h`W@n2#ax?;VDO$?&qO<e$b=i3e-
z$1I5kk<{Ka{RtojX%uO2b=f3;9urx_!AR%K)i>?LiY(q?q8G(hL2SW3U&ur+`(rID
z#FMD(X#5M#99Y|CqVpCxCaU)Aj8eKAhbfD0<C8I-!Bv@d3TI`)%zN3aAj^;1J7><B
z+__i2l9YgJcY()*W7`R<i(<vAYI^Y<+kuOiDFUK!lLg5YR}KGric`F%5zx8P2vU?U
z^>Z-Un@6B3+3}#i-J9c@utii62Rs{}x6r1z906DL*{L__P3RTYO?`t0v-^A{5ezUM
zHA;<mHa=^Owm#91lXn$hp7aqbXwx^a3coqHCC6xpvhX#Qab#uR3!2!$>J855WdgFN
z>W=u^3yP3roI(FhW2QE90$B-3sQoz(p+CGGDWfSUBWq8QD;fnid3?l?M2c-@mC^m^
z+AKiYN$aAYODV8EZO|9;(Us4ANo8bFI(lmzFlBVeP2H5yG2080*!$nK@b3p!c*L}R
zjP`j>dI(N%T*Yx<sOsQT7LX>Ezt$&_?uT&H4Mo?t$LDRQyV?)$;%oURzVw*hBa7oR
zC&O&Z3P53gXU;*~wY;gHsQyT`gKZ-T*f-V;29B(722l*?lrs#NL+u3+H}&k7zz1k>
zHJc}$kCWYQ?1qzHn+nU9@^<OlAa>i{5p`I1Y@#9ig8(~IAy(V^%$I;BXDWOnFib@_
z|AwxRw0&R}Sz}{4uWD(N!Ny#vcHKnsXx=z3@&fbxlI=gq_e+MVsvvg4?(Sxl?A1_=
zCD^y9HZvgM3|ri1jv-#QwPZo#C_Q`NTTPA}VcjR{<^`_z%~s3kl634Rcja6Z``%oX
zr!V_*E{eVgpH;@>!`=rqr>2`T^Dp8fvz?r0QH-vaeZ%47$lX2%A3xpIIco{&fra__
zu<=tc@P$T?kKtSM@L>;a%bV{m$>GDkH+-!A<(I>Uz6c+#GnXwWy>yZf<Xac`Qx?v6
zNv@f>yis60b31c(BiWNO#>XT3H1*|}P6ARFa+mEXWFo_GxZ^WeC#m>D<g%RsQ=MFG
z5kT=oO^%fYzRPK&y5~?=Vf41K9xe_{)oz;)O2dh%kd>nF8|8VZ`#;3J33yaR_CB0I
z8XBbSs6>N;L=74gF{o%Fap(ZbjRpzg5)m;jI8jjpBoY)QF$tt?E`p-sHsUs-gUYx7
zu9FBtKt*stTn1TOstqbGBLPP9f8SG8y%CU^-+a%<^N`#3-nvz1Kc`M@Rk5U-&#&FI
zM<*K6?bs1RI(aFiJMx7n>EwGM-Hh4$Mmm0>?ij2|=lS(8tG9a$@dmHkN4-VGFo>}h
zWc|DZy{!OIt;K8~PLUn#|4W%YH7!<VbA@!C+Yi}`%)WAP4B^Y7gl8AnP3tqkP`#!l
zLUrlVQhT5Kdz9qzrI5VatbHRnzfj#V2^1ZSHe?DmjB!Gw+mtqYLaa=|4NxiyWVaS(
z7%552`O>XID3Q)lU!=vLRuV<c90}*9oipBG_r&%Hc6PTYBDi{C6hZl35X`w_-w@;%
zY5?YMHm_RZ6L5WN@^B(;tL#MoUoyDIL2WSjskFT?_>-<NR49s4ff)}s?d&o`f=7Ri
zkU;Vrg8y?-{N+oH|IB^EpI@i}0nOn565W1XW6?cL%kwK;_k!-X2gRV96-C!fzj4zp
zy1`()@Lv&(?TRBJ{mHXYq~&`-da%21Nb?JI=0HIjy(KRJaQl1yOk2!Eoy2_TBkGtB
zy@?E^KBZNbK}yL?(Y?CG=+CUNF=u!VCMPoL$&l(ii>@-gaGAD%I#C_1IyFY!C)HtC
zhQt3^5^V?-%-1H24Syx)V_672SHxE-5K5J>*y>EFQfd<jSvgNRV<aPW>uSQ2S*Pnc
z#MXr%Yz^PH1?Eqm5bK0Gi(=~35m>k@>x@_d-{Gssds2~3`Dh9RjBAs$Vq+TBK~~xk
zRCZdVj3l>a=yU#Xe%^IP1{VArBLh-WoXJNEqB4*zb#wCNz|g+Q0KZU!ICWG~CoKd3
z%xjQ}Y&Q<PN>#t*$MlTQDZ-fi7?v_jvK{kOKEwIDcYGwcye3p#o^l9!?p@KZHcZU@
zY0@xkWZ|Daj(sR}cH}ekir4USw`)&k^mIT&kx@yAoXA2c1|mu^D;{Y-Q{o=f5(g@3
z;LR}*uIJ<{tpqZrlTI<1Y$WiI^_sPiKql4DgnW%AgcKGz_`D227Iu*PBcqlOOwef?
zk#s$4uP{wm&|-8)nxgJ3_?S&eD<YZYqB|l*QXRgP>MU9-m_h_VS}!TWb2R?BYo{J-
zz3}ps_9=4g@7qogJ+XN3&1P>sP89HTS63*fg&aajH3TK7I6eW7$!qlI5H5*oYsDc1
z&3D5Bhc73dmNS%U;EyMiX53}4^R1SxBc72yp;T1Uh-oq(a4iQmV!vdYMr<32$hnb>
z_oWWF!WcK|ISc!LN26NpMm<C1Ts<3*AzhNBPTXJH(SWdq5Wz&DO4w00;iesMjnSdf
zZ818uL|~^Ko&8i)hvXBnqr0Z>n-1{{^*d%=GCIJ}0RmAD3;ahNnxynt=Mf-euIHBh
z_u@RB@oA)si1aLjG@|(#nZ+9E?pGV6C;kwFw3HOX@!<R@((;KQ-C-Y*<`=5do{@$^
z1w@Kc8O2MoLJL~dKzc%l#3G%qk*@dcjx>!pBsHLxbcykpmBbUA1_jJ<MQ++Lr3UF+
zzmGwB9;+6lpL{Zkw0ti}A24m-IL$9q*Bt9HX%Y%S{q+O{*K}SnKmJl`35{pDMjUD;
z{%H!-?5`hCJ7Qg)d`0Ew*U)j+$}|AAj++*-_V5?YG(6^|>npKMpuE=T^UxG-q%zuT
z(<D3JCrOj>?u#p};+qVghbAJ}xM{zQvAQmCKqU9WF)+39eXZl*vIGMb>Ib#8f-}|F
zye0reu$ca>#)7CxLZ4T+|DDp*9zu=^X(}<~fHjP^Ary-VLAHg_jGHzf4uhz*V(*UD
z3XLbJgWISc#G$czljob)vo4S-m7szfq;_})xe--xE$c8|yGeMxY!hw!<;H@olFiAj
z1xqIsWu0OySQDkyTCjkSC~f#yBiDazj*)9ADRTYZ<59VmPeiVBYxYg9`Gv~sPr2rn
z5$s9-r5AgC5gWEI>imFg?wx?_TiC;$HeC05h%6=3sB_pGqt1>{*r;;@3%Y5=R~odR
z`!)t`c`0bGe=Lf&d@pDZx^3Uk<`?P=O!K7S{x75ci7l}{>SO`iv&<WdbV4TTmyR)p
zdm%pnuf=fB)x5sq3WM}3GMSN43m73K1?er1Mv<0J1nFVb`-U{XP(_%K`F}wAnO|a&
zHtDAKI_?GO)(#P*IT~#-&e0f;zuaKlq#|sVL2EkaUml5~E9C{<F;)A9F27KhohazK
zX<4JJQKOjZSWrUoau~J!R_`9TxZ~S1)Y1kEPF*LI!Y6!53o{Yf_0?1N<H%leQut_j
zmiE>~dud|+yKOar>0G-t!PBixu<Z69FLlyD3fN-a1#HHZ=e1SmMai6&3~&i~_~b1B
zH_|cjyzoLS`!YoY_c*FMHbrwTn~j%hdk=qGsyVl~#Bgr^Z(=xCs-5j=^P-%S^1`{t
zZ{0V}@eB1NXF^KXL=OU^XV}Idu-Z0CCisW-WrDt3t1lnw%e(rrTwjLk%MyM0yS_ZF
zFDL0sAAPx7UuJf|fPc4*(dj5L<NchUGzN2PAW?nH_F0}EAJ~08-%X?S#J~^nE?F&@
zhxL4mhhk#j=5u$nDtGa>t*UaaYE^^JQ&`^j916uO@7o{kH_xzhVdCc-u>F1558>5q
zn_$uz^^4Q4iQNz3;mA918ODAbd|3@Ps#5oO(C+`Q`yr%c?rlGWua9bLKZK1b;MUnO
zlZWEwXUP1mrz!S-xQE2_AL3{hH*M?M#CI8yzL6T9_zvo0`c3Mj_;)pp0Vim>+Unk)
zY<mfO*q<2X#$t4(6StpPJry!;ekyqlR<^Z2g}?Sh6z421f9(<cFmg)U#B?WgGX|x9
z^w(|zg>;cMVj>)L4U00c$px-AXK=Kvmc0pG<ThOd?G+*HpNQ+tnA*2Gx)H|NjuRRg
zz`QD40|Bf}YHK45lE{Xe>eZG_vi_>=jWE7Dq7BAl=Gbf}n1@;z4<r6gRd4NHP9&q>
z%J2~B&Bv9#w~f*}(Gf@KpV=ReulwpYN<W2Ss-zvbbuoU$C~N}1WF<^n^VjM%CB58L
zq-KYw;*?P5>K&!!<z*FpFuyLPYRANiqZpBr_HrT|Pb}KOsa2+&zji5KF^a3~w<D_Z
zs8R2ekFgLWaNe)z!H&~hDQl*oLGL4Ty=d<pvZIWmt9+@b%9UwUm{a3=Zfo_Ujks9)
zwBHlGn|$gZ1%Qf#Ba(A~>ykk*>Fp!g00G4LJSXv-4w>zQgn0Ne@Wzak352nbspMpk
zcR@UP<L$A3+LsjT-PV&-5nC<n9M~_v2IuNQ;_ZS*oNI@m0Fr~5eQUI>1d64EOJe(C
zY~XMrQ7MA*p@3cBf!qq^R^@C+M)f2T_B-Vd`4sy<teUctL7Zt`c*|`%`-tw@lrHG1
zsl+U)<*+11aHIKzOby@6BN}*<rT!{4$c#`<2Lh>~dZR&aPRDte#UjlXrIYEs$#fZu
z!U6~emHcNYy#zmL`^#YavAzQhl+ZM(AAOuN!Po<Y0BB4a)vcV0MUg1c{4D8EC7;rI
zTnq?r#DBf3mlK)_nlgq3A@NHHc^<F`cF$~G*ZevcOcNUZW5h#<B552X^%{5|1u5kF
zr&kt>ti~nWNL~Bo_pfn&U))qY(YiQ&yKxd^A;7u1NC)!|uyG&=ocnTXK$U$I7CphE
zK$b|gI{h8}2$)FclZ$eILJ?6YCZ9?OmYz_}?qm@FwX^Aqqp#HY1g{Lz9EHcN%`Bnm
zk@<o9b8bfUR`y0YKM;{5IzHwK)@8|a5hRlm#&ne0;n=$omNpd(_1E%{J0~=&iIl>9
z-QjXCbJs_4O`X5?44Da`pMZVf5T4fc_3*nnnYzDdPACT}9cj{%{>989xsM*rODW;v
z(Z(OJ4d^!mo$V`t3}$d)KRu*FRurt=SkS0?7Q9?F_3s~ZFlktF(=bZo{dn(Ge}l3E
z>sqnv#R^$0ypGc)L{oy4e_DT_tpk0L7|Bo~(4{%gQojmvk}o$M3G^k6b^sUJ5|}rL
z;b`cd=rS<UwL#$CXG@U6XvPdBDUF=tGe^FiVd!C$49ceIVORCeF!Zpip{z2lavH;+
z$0pFDQPV@VGe8u+cC*v?ZBOS_OAjacQ{hu*wpYDL=&{m2rx6=Qoj}lv`5bCdf-C<S
z<t!EOjAT?Vqrh;D&D~FSf#AT_&oGl`ydhuX90cCL=q`LMI_d;LRqHZFK*}$IE)?T%
z&U;Z38xlB<Tb5er2GX&`7w8GW0xh-0fz@!+Qe~iYL?D!Q6{~)~0;g)`J6Logu2d!W
zLXe0VO1qrk_5!XMUZcK8)COT7FIkV;AooqkRX0E9@Hx1rR^lO+?aDG!c-UP~XWEka
z1RI14ej4UpKICt`JereP#Va^gg2iWg)`+-4ikFN=fNV+eWb=}2m>hBwdL1BvRK&G(
z`wKa(Nrp_!k!eu=)PUEIGaa@`L;4xtu~vVoe$Mw&Er`VDe7^?e`JT`Dem(9haOUNl
z%#HX}+YUwfqk5-v-g!klOK?u+m$<Lmc|v&}nN6niUzG53L;#4qa2|qD#<nnJB%Rl&
z1e`RIeK1JC?J_}!wsyr(?+K_Z<XL>Dbipv)%+qBZdwm^wRHEzaIsTxe=IMC)>ql51
zm5(60`D=oq1PG0SCV{3<cpDkvdUkGSB~VmYJnsO)Yx8Qxqo=Dmi+*bjPZU;8fevDx
zWnFhn(ZI*6#xP_6pqtjSvq*nJ?;7$QKqyyMz--RY1`h|_22&lk5(^W@qtH0JH^;PN
zI1YrpIZ#lmx-nnYY#}R1a}_l{;dz{+;QG#ywoRB#smvk~>66q+TQ;{gKZB!7#-V5-
z7}Ws0Xvm@#42R0)vK|<eB5WuC6#)sbWX;U5(Ib4cb?OwH=0ntAQXrFyg<~cRz?VQv
z_8GVcNXfeF@#!>cP{;yEAVV#<O@RzY@YS}EzM-MgntJ_RU2$nGmd|gTMYXNWp(=Q(
z=>!>iiw80y4(RYBK>VQiG7Exs55F8fOIK6HBM4v|e34BJB(^w@nYt9_1kgZ_zQ2)U
zjEKl)OoGE*Awwb9Om+4zI^4_F9#X#`=4htU2?~YI>K2=75DGnxrOpus7(Rx}WoPU)
zYH<c4yHjBjLEQ&N8*zEwOklC%viS}Xmwt)j0#TvJM8)Mo*d@KK%6s7#M1Xx~N~LYe
z!Eu`?m0ALuv0To`hy`&i=R)MJDbH7z57go-tT-RQXjXL1gba7nTuAtKD!+wQT;CIl
zwh6fX1Cv!rBDL<Lcva}2al^5cf1nCC({@4?!q*A4eAh{hZ6bEA%<<Osh5y9jZ228*
znE^=tb&jzfg#wAO9-NL7@=Ts7)}s)`Hf+<@Bi2;8o_QlVf}>p(3auQcQ#;yVy|yQV
zbtmdl?;Z|PEEGrvX-KZMki7XJX<{J3Tx~$|gByY5vHZ3mIXE7Yf%^u@g{VsnjzY4e
zozP^{Fhi4^SV)c+NXAAX>A$iqNM@WHN0XPX-6xuan*hnnJxCLE<Sz&r-%U8~CZ>Pm
z4#`wHc*HrQ3?8+oUZA^#2p+{JLVlNs!isX+#X2)GtN0LBu1Q|n9^q)J>;|W?88OTj
z#4t-CCWz_!vw`5x&f2e?#_xMN|A@vgzjF~p-Tndq(u;`cKErMWwTLU<kqn*fQP$HF
z(rO^aNGt7SlB0AVc%GzwZDqp46n2+LVd-Sxi=t54_7M1vnD$!M8Ps*Tp2qe*+(Cxt
zzHhb1^^NP<9uE=yEX6l81hk8X3oJ6IfIJB7TnQCxzJTOlkCA(IS;RO+87%*f7;F>U
z1-Z?OjqjWc2>AR=!Vk+9f&UbNUxG>+T-WzRH^yV=H2r(6g$>POf|_r?5$4V2*f+&^
zv(|#{HJ}5WRDz>(GtvcT8b`KuaA3zRYiZ~0`Xw>-wT7+qYY!~dJs6m4km~fO^_@^5
z2aR?gKwJRm$XIYnNu(?`<&bG;%j|^!Qm}K5XE5+)e~D~(iY(I7^<7Xzsb?QJ^T#h~
zy?e;qB{clY8cPS)SNe$IQP0~gk1FH@UNox_EM~yNV2Wl%OM{W;>Sc5B7`@U)Cj`f(
zW*o}kv8fpyYtUESBDWv&2K_nQgg=rPM0ax482eg_nmUIij%5j5Uy;g_5>4TC=t`nq
z)rTeS;En4k9j<j+0CPQ0ouhBtg0J6a;q44};K-{4jh~(1@8S3GNS(C}dfgwt68fj^
z5X3jq8C3kDdaLMfaDfh1q0jYvj8dSI<~S)qMnNWw>fi<eljrO2=vQL1GAyCxUHGcW
z!6Mme=T_~&5jBvZuB2(0f@8&GzMB67OL%(EVV|3hUph<ZTV)9(<Tqmh#4Z@%R-GTQ
zN3EhPN?0j1wg-``AX2@I_$^ffegHXs1q*bNjJxV2>7!v2=)?T>1oYn_edEvzNB<om
zhon5P2NSlg9Y)w3C)fqrAgV5%Na?00NHCy%Gj6X9pjt{)%h+Sr>%2k5wS@;HH9xKH
z{~iEVz_#rUkAGSTEyZs8uQ<plfDf~!-%_))-K3i}q*#wyehybaqKoHxz66(EhUL`D
znz+A~L~YQtdUVq3M`vD5aO|EdP&=-gbk4{hQh~wQCL$SVUdBs~Ue-GFjEcwflGgJo
z?vIps)TwUdzHr>3{>IMzR^kXU9&>#savY$fglE%sX>rl<ofi<Pisz#NY{kLS7E#FQ
z_r7dV6D|Th_@D@w7NOr<e%KOFLc}8wd{fFu`LN!4)(No8f#pZa$?9&}^6%hUb5~Uy
zh~0m|x)iJnUM3YF6%+~-;~AF6uV_Fc+{+;SJ8*zoKY;^RIyT?!qLW7`L}jL=qH*L=
z$quMYC9hB!ef6Arf{C-Pf5*fWA<tuVj3xYaEwX|ry5NwUgVC)W%jagv7`3Nfs)i+d
z`a6w!Iz_w1AT4owr3B(s1sM7sN3Qpxg6^4W$J^HQ;RCNg=JT9ryujzNFQpp^Uz5&4
zx|;yqhI5v-k$!zvfE7PuY&`bAIn-G2*|Aln>UJI)OCJgIULJXg{lyP6_V?jhZGY)#
zFoP5RuT1=(Z-2Hw!_3E{Nw#xJm=kzVBN0S-bhLEWw=9Fy*am9!YsGQCXCMV%LU}H-
z-FArcaFS7@1`PyEMLTpKfS*O0vrXA%Y!iqCi#UaZ#sjCI7iJDG42|>-Ls)RfN+?lb
zXmDyFb~q~x9aI=PbeMZt^03@x{yTc$)i5_dxiC1`I|Szh)Et|1wwt$##{t*<f~a74
zuscTmF?H2gQOjjYe3@83=8!7IvdI!1f{MOchPq3pgorgoQZVEjiK<yPz&WBhblX!U
z>ab@GB}=4qhoEYxiN*G^SNLJki9SPtfS-A?X%o;*DhOfQGwEqDwOmd!OP5|L6Yh<J
z&fuX`**vwYUoAqU=~Q))NsAI-Mdk&fV6sQ^M6irrVEs34W$i4bWqFe1s)2Q_PJThX
zfq1RXe4$E_b=<RS%_ai8!f!SzM2i~-I!{qu{k0YHxXD?&3AwPiU~vZ(tL_}W?}efR
zf##eBY^#U!iBAT8>|lcXS{fv;Lk|W<VCkvG0>nd$h{dD{yMiYH9h)x3d{XgvOcCK2
zh|JoC3hXf+O=$9Ea~%=U#W3{)BHtiQ=*38)XLJpK0i>T{))c2TeZ!6c)Ujt%jAn1-
zm$uW4nv~RJoRGK|=$P*==`E0_2p%)~p^WPEm3F{cYzIEguGk)qDE7B1SgDn;z`>5o
zho)jUe-~y-WnFPlQn(3>Rx=M^%BEjKc#*LEHIt=ma&XMl9p+IIh^5A&ARkUbB!hD%
z)%my&x0jm-b%5o14meg@NuGeLPtTJ54)l4DzbuFcQbrhFGnU}O)KJ<;Li&D1E|W`E
zhXJioUmlpuIH@3rBc0zQ(PNc9d=Ueq##A7K$c~B*F{?-MA@$I62Mczi&gzq2c5_xu
zf78xNghjHrwPU=L6qDeE3Kd6SqS9d-ei&x0^mv)7?#a?4WTpnhH+nhjTU_ynYN`MW
zrNbKL(EWtY2|X__m|VY;B}3=JJl+Hro}1<5?()~3Cl4(Y4BAXM;#DuUw1@*`=;E(E
zQVL?zDBf&GMxF<S5@c}~A#B1CI+5A>X)aU#)BrXQV^Bik06>O<YE55?Bbvd3H7wxz
zE;*ajqWyo%cs}j5WeU-}TeS-;M}x#pa0+6>8e_9U$)O%oP{wf=Z$x#4?oechhv#tA
zV1IrRoX*FQai8F&;vA&q;H5b<h9yq$Vb&Vzak8$b3OD?IAx8lq6Z3G7GJMQiqTz&U
zC@G=-$@rwuoz5F}GOyt$LAgZ{Ej}+Oeh^&DOQ`>vTjT@2;s*!o4|GZ6d4kxQyF7C^
zcjU&_!Xpv7z-G3Hp@xPtbTnP!P-i`RS2KVv5Z-Y-Qa`KxHOXE=Ippn@IFaB^px{51
z#|a`%IB>I#6To$0bKOX3$OHilG`I;J56*beNY<Zd1*Hx|7iN@CyCi_d@iVoRs|#S6
zv&rNo#2&S0Q6v`1P1?<OB1*@}=Cw5LM2Gs%eO*EmiyQ<|{<`z!!C(g)d<NJGz}4M`
zg<o|BF#-A^^R!*dVC4b{U=m~O8S>pRsLj`(7t#xlC2Y({0#VdC*XsF#x=r9VB7lew
zEnzGMr8)9qx*mw|j!!fLQ5`iQhA|%Do{~7D{@Bihxa+okh1;Wk43aI_y`iqZsFiGE
zSCk$~TX?gCJE<^J1KHLrQp^l<XowGF5}*F^kG+f-G1j0ub)jutgT3ys4+N;-pZOP<
z-taH9zY!9J(!QMq#;}{D)W>E@16&ez$F+RaEDSqhxBoK_9urVpoFlf)?a|mw)u&Ts
z))tvw+zB_~cT_Ko7>CERTWd#9Y+wehg+OA?gyh}|VNMEz`2oaE6K<k*6*v+*JtEa%
z#HjAq3KR#Yt@2)6>;x|=4liKu7p_=D6s}lHXAD*lvs7mMtUy5SBBT(Z0)w`(6%F8j
z7Ybk>=l5g^Z<D&Bvv4VV7W)jroyhE~B0hq<71WWJ4M>re@F$Ywmm<f@qmRS4%cB;I
zY_U4PJP)8Lzj>RlKfqh{?@o~suPPSVD);a4lQq2m9QRJ}<M0L^u!)EDe7FJ+!*%i`
zhLbgX=Y&F4xP*T|YMf3X{I%rB883;Ufw@o$gUj4_D;?YS*Un%;^zy>5+aE8=7dD$^
zM|k5|QJ1V)L4l@a$q*YM{n1)87!y(4@)WpZ7>!yzRHpY^Eyf3ajChsuL)Z6KU)?Ej
z+!?wq+8OoUJ=(57VrUX!wD=ioDv|bdjl7p?KprhVX3)#^e0LXft&kLE-i{`$t{ybg
zCJayY4ke7OU~7}qZ*%lMo!M*=X3|=$|ABA;I&0=ots0Ca@+Qj8HpuALN!aGPra=rS
zMkYMhO7auZKj`j6V#s$uK1XQi@!b}K>`?|;U556W$fBT(y^&o>D)s+6WSJhTmHwbQ
zw4+FHL9l_32!iS;kG?RfL6@n1!AwQb7U^G*5^9q?YAR%1y5AUH@gtQH#5kiFA)M>E
z{uGmPf9o|HuB;g9)ye;#Dj2O)oQ`6D?Hx(E&n4#gho>XX(>eBec*LIjd|r`ms^ryn
zc3jWZ_*k9KiIo2!0<-W|or&9UGFBw1yll?S6hU!4m&)c0^fj*Mt`F%PL3nlFY&rSp
zKq;yA)0gtkk)ycu2b;#y$*lN%#SojX&qAkkFZufUL?`6Hjzg@vKdNI}andCWIOfS~
zY$1ctrFNZ(C}O{X`YqT*+fUaHDUlI7^%%(FgrFA^WAdO;H7}DyX1q9rogAAHN2?uP
zj<jlnUr|_uubBIUd=N)K-I3@pMqhJ&li$rHv0<8u98Qe_2xXXN0Qb<3{Z}Xfy^GtU
z!z2<DAvhdOsq}2s$P2VOWB_&0dj#q(h7W=x$37|#5obVI$*LXJ5(xF*G?DH+uL&+_
zJS!?gH?qkIor%`4XSu)&6#?t!-pJPIUkY`e&#Tf(wS1wqA*^sHK4LC0I21d|*P~)c
z8UjRVv17OkeFkq-j}!>XZ{neuZsvSU91f2CAkiL%Hv0SW*c7cZrA7lmlmT{zTKI5$
zABrm=%(2@}xQA&2<RCX(-)-GZ=>GD{Ru>@D^a&x)*AsN){+7ssP3>~Y=R4<`L6I8y
zN@Ul!eLs`%c^2Qv=xAKRr(#e<u1x+NKrlL$q`w~i5MLB@GH9H&FK;6uZ`@)F<~_p4
zkz%E)S#G}IO^MndH`^&TtWd3%`zB0t#}mr1dJRv)CxaI7U_XJ*>ab6sSc`1BJSP7q
z^LOh=fZg`LMGCj2^OR8_M~@SYK`CEiiMV2@-hJNl$arCMFBF?_hBhdeA5lajBBC$_
z97O^)71Q8kAKPIlq`CvX=8w%Zhd}hbnz$Ztjsf5i)t4VvIyPS^@E%O{sM%V~95ysa
z{&@cS2{~=N8ageary>X70Y{Ah4_v0E8E+u9wo{2Lked6h*4AutEQd)*Nw*#?X%ke(
zf6-3k9Fy;0+ck2M4mH5o8_3<K(!sX211oa@P9Zgq!6S@BmDGmLiQ4#pZns2$2c!;x
z^QvMl@WQP~5WeBmDu~To`Ox-V6Twg?ehdOKQyoXZ1p2kp^aF9mp>qlPl|<<RH!{<2
zXSxEABEsz@+{GAlocI_su1MNkv&c#UKrGU06z;h}>(d;9h{xa$b~hfHid*>Cq3K|&
zU<6ixO(+0zP_@8@Di*;Fk~^NCuA>-{Sqwmq;2YO7YNVE^EOy|sRkH-$6fnyyP;G|k
zi&!F=O}8O^CEyVbZY4}=UMnax7NDpO>+ow6X_Y`95B)(+?0L8Rv`lO&X9|W2GHAR3
zK05{o+BNv>bmB%Ux!5basbx07%+fq$T70_LccG9BvQXA^3#dW*%$}9i=;+|9A|7;6
zyMt8FB`}FBCK-o`8>~hOipZktrNd7<&D9KQ#ZjRMu_vmLJc`ZIfybt%RB{_eHLcf&
zCPg>pMRHq=G37IopOXqG9;hmZUokm1dOrC_IVb;)2jptp+IX8yqYz|f?uzRmGO?Mt
z7E~~EI5Km6$)R6<`<j!ff(SSTO)V~IFICx2;Fgt<PN2W`Gq9570@M>B0&XCiMjmtx
zyOF~X%tW1{UJ+WUEgwKcHbB_o)G1zGZoG2$v8$XISxKkD=#es^u@GKp3@MTfATp|l
z>YWHtR)m_?3BR1^*p(^<D9zI}90~GzpO)7W>NB*Ie}HVM6Vz%3eWO7ciry-poAzs3
zI{Mvv#1gc0@YnGSVGfNAzTt*z{dE&?=U+S`1^c{SJ=R~R=T?it(mrfsH;2lKdPTH>
z7d<!n16mVcAg(rr1myq)L{Jtbz-k7hRv3=>XJ}!?vBGP)rQ7rsq8S^U-dKeHg|q!L
zr*Rj~RQZJGMCR@+&yme?`#QlNo!;1K{Q@2m;jfuNU>6PP(3;nm`{f!74<;5v?Ms$o
zSghHKkRzm^4M|noF@zl1GZzqYRx$#htmX%CzBGnj?$-1pV!+O;R!Di!k7w8{L7Pd<
zcM-1$N~B33+?!So#I5KVN<N*`tT@=eI6vj8)2|*|(FHp+cE~%?U;7+Hb-4x<A)1Ah
zpEa+Lzm4UPsuo|xu^hpAHNT>~^o9vn-{j<eP>~)Q;jP|zS^3pBaO&fTE>%0P_t#!Z
z(XVMqt$3P8d%kkvq)Er~8!Qc}n2TxoUgzbp*Oy;?#bxDV#hhfLxZboH92CVZ5(-gH
zp!fby=}I{k&F&GC9_pGO_0ly4zEhFh<Y&OWDEx-8#O8J=)%NsESwi+#eR+5dbm*)&
z9g51Yi;)l#OvWD%;)q%GR^2;WpnJ@&z8dvRC9BavW`_x0;ma>{oJNnD!$)Kk5IEqQ
zSOhRDJW1uAtxZ^lbi0`$9)YnTSetqM7;M7A09P+c;s&Cv3g%do1^Xc;9q2+mXJl?<
z8AwY8(_B@&aeG`WfG`xdGo<MmkVN~MfY33Jk^;!Wvm$_aZ3=)vTR)`rjPpRpPU<y-
z7|ne-WVa1v3eW{EG`*Jsp16%fKTg(@#0cvs46b6wkVj&kExUo(b0@4<G8H2PZb5Nk
z!)hrrz;eC(9084$ot9xd@WZQ4NY+yk;F^R2d@f}6y!8&Tqah%6)Cl$F*WZZ^2AQcD
z7%s=mT_$LeF6<GBGJt}#ZwyAbJ4FDFaaw1A+D^kMq#<M07^b7EZdE;!q@hV?0|4o@
z%m#ujsra-%>i}dBH;iNo9vzY(IIG3llfFB+M|IY<QLJy-GkiR+lrknwLI0dkH#yq=
zJT~OwVBFkw{^>)dRgNYgQzw2T;)}6GrT_^6AuOuP5hS{GQpQvFZerJe`+BFb1tt&O
z`&#`~awEqjQ*lP;o&o%fS}3T3W0?Jsnyltxvt;J8V4frgejW|iUaFWYRfx4SOGjMK
z<4>D&0&iYm0{~P81ReP9C&$uv`|Dnl1r#$3ilB|u;iQLrbtr+3l1#t4)s$K&gwXw>
zGE76O!hOhhu`XH3`tnRk5yzlYNzqg&h2Atw?g3Q2O4$Mw1mbf(K(~3V-@V35zB9~j
z+>}D$7A`=@8l+hF&am&DArfRmIoNRi?^;-`ESY)wP(%43IOHI#nQpj}NaP&^lTr6?
z*g}vQM>~}t1d+yRo!3)x!Ef!xW|*No${ZSig?fDDZYuIz$EeJ~|FKGlmQ;Yr^wW0`
z2`+hpYn#56H*k%?x1H^uIE_0X7^_&C*&!zxi+N2V5+){U!PRxYSiB%@rDO;c$V>$T
zHI|SXR45P*Um1x>Qdjk8Lt=1(u?NKw?v~=<*baWTZ#&%9>`L+19mHR-Rclb+kWh#G
z>Xx$0%1bK-P;!MaK_@HZtGYsj08=6=FlD<agI12@4WC4%g0(`<xC>@!a{k#CHc>HJ
zS9awM*InkXdjgma@h?6z<to&F_4RSJ=Y)Jm>e{nS?eO5H_K!rIrS@lkj;+0KX#eUR
z6USarQIY9id=4U<9TUc4s<DB2c>vmM>zK_tEHa^bElsn8Q=z%_q@uf!mqHw~O|#4b
zcGCOs(CE(I;h`>_3v!#L{z>FDSTCP8ZcZr-j)rLY#$IkjYh^{3LWosi@Plv<4R;}C
z&Heh5hFej<nEWfmP=K@nW{L#3o=4M}BBn{E!x5hi1xV+ZbB3y$X?++(0Hl#%^FhO#
zyI4~wZPR7Y;`b}C5>GPaM1xgZG&tlecyqrY$wHE|;XV|5*j`CVo&z|Wmy>m2j@j^s
z6^rl*!er^>Xu<Q>9>~O9&909Ax?Q^o(AdhdtNnGK;(3JU6A*tk$b&^^cF3=4ndq<G
z2oP99MW&XN>n^K2z9K#H#btl4*bkFir1aSGAt>qPX{!4>uW;$-4cCvGOlwhhq!@KA
zs>=i8qinyQ0}+w3a$cXP3%#CNdoR*52!D*tpjG&UEW^yKURt4$QJi+X=#0U5(ScPv
zv;DQt>ta(g%$zLhu~w6O=%^9f!(|Yp35PD@iGF)_NvQvT5=zR=#T=29Ws1R(2=qM{
z4Q5vh+-K|p?ZpkFHcEhUa`YtCoQVC01aP(?LH<a}&M<S69@Oy^j7bLV3gBX##Vw{1
z*I~`(cV-b*WJ!lHL=uz1yvVoJ7`JU5Nc$wWn0msh`7d^SQr=kw3l;}pA8>fpIhTsX
zD1um~IV%E1`YS`A-((!-&3+B)W6XKvh~bw`1QMLf=Xx$1lt>gHw1h2#E~%sjj2<a;
z^r@OcFi9rkV=1(<JP!e<Rek>ffk4Q&WQ>7oC32bus_+J3S0kV)5NMjh@8~C56JXl<
zac1TStri_645s9U^To7i+ZjGtZp?Iph%&prpCw=+(2TDz44b4je+8r=eiDZtqLHyC
zoi;jrnGApt$GFEKjwD)2|IbYs{bR^?&n42CkC?J^Wx%<SrtCOO|D=K6n<@MFpuL!~
zSAu_R$_{4x|2I=sgGrJwWyT1SU^LmB>lvOU*fgmU&ZFG5o#ZrWJhNXpJpuCUQ!xn}
zyHMi>!@V`5#lo+~aBqblnz|bMAffjfJ`NKQ)WK}*dq`}LUY#MFP-F9<4jx2WVb;;<
zVBUL4Jt=_xDcLWAnj>LCgsB=DX3-^fTu*U%VXM$RyyREFtDi6A^9RiH8|AqyEo|cR
z8hPFlK2@IM{7>A6U*v2FbQuC-6kd!hYAq6DVfty+%d&CHRg}-kRLYc0b>^csXha0Z
zk4-1eY2!Q9>0s$IPSBTY_2ri|d3ed2fT9VbTs8|6(|;V2xn6f3|ITR&)m!HS4NhL2
z$16IIyqb2&AU`^f;)OvrQUcZx=k4gxSFsTo>f$FD>S9gscnSTF5otO|!YS|NJTtZW
zXJ$l!ZSf-!Y$fQjb4he>L1IosT57z^3XS*=_~g=vbJ0D|)<HTx#PgI)8urrxh<eK5
zQ#)+H;RGZi8N@+MyejmEwLT@aM!ts|Sn0pxN0~r`K{D<%;TC7h!-e$EoRA#i`8_ns
zjF$ns*iV&#E}9)DuRBCMc%;@+set=o_-FhZP~(7s@jPIlL4F6yFtlDb1HUQ4DBDn8
zZs{w-RLDs(0)CrN*&JhUba6LC5<yG3;8$SjjnIyk5pj09+WJO}b;w|>tL?q%NG9-f
z37j)z!<V<zpVW+AH(>#(@no|xxO&9Ti(+bg{`alnLJ4=G<u3V%Q9TGx!<;JJ`T~@*
z{0XNfl>d2sY<ct(lT^3Z@*hel60N`E?)8TQRw`nrJe7fB=z7j0%T@#kFt6#nE)SG|
z&aa7-<K*a4nTF`}{;>eF-fdsvM<@9cCy3rk@1KOKEF;b)LvT9d6CLZo+ORXP<40Kx
zPKhA;QXc$BSGfaY@J~s==co^3@t3;0#oz;BPSpdIWjKZ8NB{JXDOP*O2h*5`JB6VO
z1BHk&sM&?!IyJix#%3<APVd#oA{M~j#$*xK(krqwccp9m7E^9FV}aJ2U{`DTNzU3W
zShUsCc_q3s3&Ljd>Gr#5U?bIVPA#hAKkF@`O;9_bzak`30yKj)FVD;%p|fB;ZqC(X
z9oa0C!w60VI_jtd`p1qmh#t_ruQ)Yi#p!C<=@8B-GD&DON4Tsxco3aR>L`p94vaFe
ziMitl6_uUImP+dBqC=~8^{ps#T35z&GHW&^JIUyEN?(6;Y&zLZd-z@QlIDQ2kG^`6
z8ulkEn^Yr!U81D}zl!-QRUIcKw4De)EFlsSyla~u6w}MZGPDo~kXo+i-TibVpuU`_
zZ7KvrbX`W!%xID8IrWX0K#xY!am|=gG$BPGCGu3xWUQsGOi;|Pm&FREWIC%rQ>)0Z
zP8lFqmJ?);p62^`2rprUyposT4s3_zv!EJ?`9AzGqA~Rszj(2G^<|d6bkmpHUWIEr
z9x<(TZE}tCZ}YW(TgWa&_15*o6aH<D;A^j*PgmJYX!IB<l2SDgL8H|=guL`LP1Fn~
zzoFGYCE(@mMSivbd7m#$a4^XAY(CJiV)FgQz3C~nEYt6^e!n&&yZ2gV1HY(Qf!w6_
zt_9ro5e#0=Y$SG*4DRGSI3#Iy_}yxmP#PVpYm(MPd`+ST3Q{UZ&6~5_DHZCetv08j
zMS%>_(lT&KEQ*k6?7#T_Zdpk3(aS6(f@T_8)KW%GW%F`29@9+o1Qw_rld&{(2*?CJ
zKws8;L?ON`vA7}cDshv1gW8-zWbZh6<4zi5^wjI6vKNgj;yw$Ap{n>0830NXgno28
zuM;{MUhHI`gC4wkvpEh;$QMf48NQN_%05>@O36nZDorsTHRMnrXVQDp27*%o04Od&
zo8bT@9~7&kcNCn05fY~TzDVnIRBu$Le_0Zuzc}Lo@$*zaI_SgMtW8lJz?(KwRMG}h
zR9wvgsS=wE0E)CSk*6LLN{E@#*(5Wi9ihQkvWTOf>{lBKK)l*S?h5fYwmS{H3}dyO
zLZhjw69&dj*iwN!pl+x63I5WM(Q?VyAt2Kk)C-{NkqoNndImD6e+-RIJ=yVB+HZ_s
z-)%Cf{qD74qM#?4)JuwVCbb2OVy{B82a+LcLzzh(fD$&7`id!~!Dc4au-f!PghJ?t
z<WhQ<u&|rA8hw%N!;ej3KLlrZnSKZ?{7;s);hyM(s+x`Hl5C+Wh_}GjR2Z~CdC<lR
zayi|;SmQ|7q{oy!c1^U?(Ex@giVRBcgutsbw1!?`_%wMQ?S=gI1)sM>HZhq;B=*Gn
zKTFTn5Dgrxgjsq&T*odoI-bv?s_;L>L$1ft4ImsoTilObiDTDZJ*YEk2o=S$RxewR
zM%kU&=ra~@l9_4<^!3N4+mHm4!x?h1->IiNiOqlPB{bg`P9V;_$B!TTr@cu0c3c0L
zqv<X(z!?7!ao3P#2;q&C)x-ivchuX;bDDgGA2RF!u5mE&HOsPP@`L%nN;!~g_rh+r
zv#9YqQ54GhtE>cxF<VK(ty=aX&^rO#i$^aWzZ-`EH@MJoNLsl31JJWIZh`}?I3B@B
zP)|4Atizvl=k$E`=v+YHe@GC?03umS)o?W0{7_tr{9YCZ)FzV|=1{R8L~KAhIW4cR
zziurbv^K>Iv(#)vpwrZE<*R-1s^72uTATNCS{pe(dBYH-J2|LOhd0P3rg+bAorm+Q
zc66JxpW}{6egh4m_kf50;KLi6@oNo!b(#dXJ0>~!d-J0Fs+Qv`4nlZUZXZ1c0;VS|
z#f!cb$MQwbs$IvIABq(P1E=nf@r3eD{XWAA=gFX`E*bk5MJqb!2lBx$I9n_ebE>$C
z6<NRVDG6W2P$(KtaQ!c4ENuk?$W-tn3yYE;FXn^_YIz$R88|z}C1sFH4h=w2R4mkM
z&x0lRM;nZ5&p%BP2Q^z^`N!c~w242SW$#h+&?X`@FB}0_?HP9f7lV_R0Hm0|V0L9h
zjp^)lqG)DBOG4P%_xT-)p{zums185GerKp@m`ujcG0C%G%H@$BrR&L9sHI+quw*1n
zt<-_`O!z98W)V6jHj-5ObGnb2W6ZMj*34>W2a;K&=NAb|whjTLkNOS1#{%Ma#R^*d
zN+b9o8X;k%B4AWXL}H$);=e=J9)qI;ndz0huCuXf$E6bw%{#LEz`OzFo%2Tf@8)U2
zshsh!9shsE{~v@Yas0S(EchQFFOWczKc4bcF}z^+6uemPkKqM4Zg>GEk{4$Q(IUKv
zvH(b!ld+#%2%)Hx_G97goHrmA&II_N?k1nJlp#mk`5fTYiClmf<-<D7(54rWiCfE$
z0E}bZsDDxS<a+d05fC&8$e3s&(7?LAM%u@eOhH|C*F27Zo6t!@HDl|mP>0{9kleJ)
zWcr3VnS6}V{_{um!l>MO`Ui=<Tu=K}FA6{^fmay;^QzQ8$M<QXk+3*)*OUF%m~PFf
zQnLwr@V$=EfF=6J-~)fC>&N|uiJr`@$f6|I<0fgBC8~uI5N|^x$W*Gjeqvm<1jZvB
zYuWc_a<Ry1T`nogpXu<$qu~G&cQNZg>m?LQ=!x`tIOGVY%wWa8s7rc%Vdl{KE-{oo
zv2~rHboo`JG`bV?C0x&z`w4b3M7yP2M>Z7aB(`g=#<Y!(gj(oL0TRf+L>fd{CqXfa
ztzHn&xv&rwX0tNLFl$Bi&CgRNiglli&4iC-TwxPQ(q$$7L?m6kY?fle9TlQFu#66$
z!SP03Ly2iXjcBAC5Ets;ySB<Np~(ne4Q*BPo`K#ThHykAUH^dsdYxb&h(#Yc>>a+=
zUn}(i5$qO>16^n8Fc0vG_d3#F_Xy!~i!kTuO@GZI++bROx3y{)UQOdG9>jRtz4EK!
z_cnZ7b9=ZpxU^daLn*xO#EpTf-!GkbA}T2FUA1dKc}CSPSP*PGQ(<T3X2IL!fEEC>
zW|?;>gk&@RZ@_=#MX39rX*SD%0j3PwMV@~)shWy?>;xbA{gt{WNn)a&a*3fv?0y9F
zPbIs@3pqBV2>=|%5R3%aMz#}#%mElLOqORqW3tq)_10(AHBk2g{s&_|R9zOpG~FHr
zA>KY-gZ3TT#{lhPfH)L6K`1ePK=|1fenA(EqblXEbkHFqS)EAw<E?lJ2q;ArR4Sw5
zR8o4XqyVd}S>`NNxBU%}RK>NARqM23HCyq~IOqXjD5avwmjFZEdVR9=OT0)yLppQ^
zhU)(Uq>hbOVzG>iyfxYclvs%{uA4r4t`Z52R6Yi^e8&uBXb<Yy{(~q7jNUAQ2%ytd
z%F!lOAZc2>2QlypWWWLj^g2cTxPXC#0XG8Z0N(;y$w0GSxd1`}fLA})T`7XxWT*#B
zmK~<yLLuGxHfDCdArht>EGt_YgJSJWc>@$3P=ZtuL#ugWGW%qUI?a$GozTKgSxTI1
zTErs~2-q|HK&99peVN`bny*rkEl5XRB!dQF9@~uMMQpO0Tp@H(Y<@kI*m$0N;TUki
zH<uTr2l+Msu_nO_s4nC^<TzRbID-;<Ly3`Jvij*wehE<{O4(Yz>fSGxS?crH4E{x7
zwPO&Gmi9(w_3M0CDlTV?kKg^%B=Cxl-!#WD3}J+6)L<)2lIY+lG^C?cOt<>(7$Zg|
z;{*&iWyc+r&cT7J$tuYbV13Z1#$QIba>Pq<yLh|4HUBc3eta{XwNA;z9G&j@>>dyI
za%lS}Qb54t8hQ@wVy3ao8V6qy3L?=ZMp90x(01dYLAH|{RqH|m&r#y+{<@ir+KwU5
z3jy@h8!Cpefox81r?466l6;`~ECXIAoq)K$Di4hkJ8%~~iQSy^hl~cme-rNUnewiM
zC3sGa!0z!O&)I0l33bUtTky+bcARv5WEL<Ez{INcm{uvT!u{yxSV%47GbG!%UQ_q@
z)ZgXNdajn-&MXN4j%ix8dlEeN>8NrK_Rv4AfE<dC8PS|0D^{_$22F?=REK4hg~H%J
z<rU|lHE3>Vc@3pa7)ZqAXsmM7;NFUL#QwSsBDH72G>yRu<8xTXy)}bxbmVakK0gyo
zgvl83hL#7mUYqRHG~zJ~%<WyRCE+sKf{0wc86az8AOyDzgz4&~0a`9mmq<o=cW9w3
zG}LYNI)s(lfL74upc^b>T$N}rlIT9rqw#f`UnG-GdJp7f>P_|LukQSH#}oK<e;mmZ
z?EfgH)b_NWdDOO-3Ffm7B9O)q#+Y{}-(qefOvXMi?-FK;dGD2B^imtcLb4RpLg&Mp
z_kdoX#_kAkbZFiSNPqx@bB#2=X<gK^ze_0uRAAG$X*hU68#+7ux<nLn987ohvMT(B
zfJUIs5)Fa2JpU&Pb<__5YC8!DDJS*tQ3h(UCiR7x0|_+{6IbAl%3>~CMj5T?*Mzzd
zAQ8YKjV)v%Vq_K=q2epFhH*$v=dtk9atrXVo(%w;A`wA?A@0DMZOQc-S>wRkz;#d-
zVi<qz0P2$KdHSP7LzlBK#?Y036dlhshVJ*<Hp3+3<UuQF?r6)f>PcI>6#|cSgJSSX
z#Ne6Dw;2|VIh{1szD4_XF<Lf3Nh5c5HfcH~Q;gi|0b=B?(8P)uIqL|;&P8P^gYkow
zDF)KG(OwSj2}UrB@VUN=ldKUO@u)U}Md3?mj>r$?dk3cPJ}VCD_qS=qtO+Yo-^=~_
za2D+x97VC}(@Z0IG~hHw@&NlWrlw|vAC#Io-~bg|$ghp0g>S<fwg00~z#wvh5rdbY
zfBD+pfso_qruYYNieQ7B&t0IGB0=pf-5GIsmr*iAQ@|o%59<U|15<Gx^-A`6V=5ed
zn+*1C&~ce;cp1#gR4e^jIvMHuYeT|TaVGiL7AEgBVCqgz$M6LdQF3M6YG1lQdXshX
z`Njd3&k`RAlWo`tW2}~+q7|pe2|`1i19gL_kn7O#<kuyXKw?{iWfRhlny?D2xm!1d
zGPDAfT34ZPRfH1gL1jh*M|RWH0eB`S4yY&Rfy|GJolBtaGTOI2ohOiLO~G_o1xnLx
zhis*#2Tgp+#;!b!7#SR0sxD^AI3e!zav(df6iejv(D7N}<bH7rHnmFGS&+M};s>Hx
z1~joVzuo%%8wTAR@5A<$5+&TFA4K5UF67-SJRcsaDGV48T_!BQ{Y~N=3W!LAj(GB#
zLjA|&K;JO2Zxss|s4*hc6u~UUs!xajVUqrkG@u<dme`NDkI`jv4O|%tYKX{iRqjux
zQn&qe!=)_&21dhBkk~U)fx<q09A!x(tCbtXSG5Og{2+U~<Hs&3okvLwew>F5jI`A$
z_oC)JZ>axu1mf3<$$TY7J9si+v_LTE)^S-c0YV!t4FnZ!c$UUb6d)150|h_sQ6+!?
zw<x3WL_N9!^876uW5en$-qsRn2kVZ{|BgnPLvd_hC`*|pJ{c<KikPfPHYFY!%mvo?
zHk@KYuu_$e8pBVE0n!~abpoGo#f@!d^=gg<?V*{qm+z&S*JV@#@rye4Yg)j}Q{pXP
zm9W6c2oGUF*mJRf&o0*%kZ;4sN)-s#)Hh$TicS3^Rmdc0Qw3y7t4~<T_zGPPjOi6I
zRW*OEmOTj6dd6B(ZBnE9?heUp(c{<Ss7}>eHNO{RN;|H(f*ll*XlMf)gP`uE&e}xb
z4vdF4@uCn6-SOg0z$5j-Pg`0k&e#JFs$-{iMa6haR$F5H`a!W`3_celf<VZFp<#|g
zyMuu}vs<z@pKm#=d#<Rj%$S!DS_Gt2MwPXNH-;%R5f+1~E4Tk!r?Pc2no5dN>1wmJ
z5T+}{)uhD`{v@1OQ0>sdLgG-hm^wQ&N#iYB0zjy<C~&YZT&)JoXI7IWAWse(DdC5K
z7(zsh*J%O@^;vRvQa$~W05!~L6snbq;w(nPNfHhCtVV@D7U8Bcoxcq1=N4*hwb*ou
zC4Cz$4nVvSo*DOLRPFm7!!HxnULC)=b(VT`#}>3^#HM-~rD^FbHKUEE>X`ch-2`@L
z6Z^Ab{A#v>T6A{w@7O^TWCb@l-X2`q+`(yWC=7n)z*(0$x!e5i>u89>|E0r1T^cw!
zz6uY9aT((SeB)l6T#)<0R2))}_sNh@uNfzDsP)T=4w%*dN%IS+k&|GLUdp&;ee+}F
z7p4nHpNS!X>v?sR9v&tW!F?_mBWJKq0G8*CF*FGhT#3g=cBRlQmaL0IK?TDBra)JS
zVwf4F!3%S7N<r{58KHA>H<V`;x@We+|4lq=NXVo5VJ9LYUEognv4sP}#}%v?@?#6o
z0rjnSvEJ5n8zRvGW;|brS((irsiLi0u-Aurc`m3u2OOmZi0VJ{dH;Pr4fCD1Qo8m%
zpLQa^h|Q<L{;bjV=WIPcR8lX&1v*HD{h3d6UC;d?pU9k=JxSXJaDg7g^<|t(*1#G~
zioC)8)2A>7<gV9`WFL#~E7K7+WO4P<(;iwPQAJMD)Uz)zuRY5NCbP<7C)kx!4SOHP
z8id<)YOly=P;`FF$=&|CljV`!*9z;P+@eYeOy1!Pnh+j@MwDS+kP`HFOPye3N*;9^
zVBf<b9meXBae{kb!q{EOVz#+eqMMl7Ln9#m7ooy}5~54_Gm_}~UU?$6GFo9(5L=n7
z+Qs=PKktV&5lI%_Xo=|h7Ouu>VeTb9=>(w^45QwV`&zNtno?e(4bm`#Gb9V$zeHH`
zyj-|D;7Rhq0Glgx>aY#ln<A~+RjITu7{Jno8c*Q*jy##Rgy={};p=p_#w0q9qJ~R<
z()4}a?<>~sELyaAQn!Rh62PEqBd`Rk<pQY$#JWppx_wRj0@g`{s(Kk^O?tVkNgeYK
zy5ZM!U&;6?bs!!hRp5FipF}{d{dYYja|kG7c<@j5V^V)TQU^ZLN$afv1-&AGhOd?=
zMBl3=Z$Ke0#1ovxv67aS)4yr8AI1x_u}HDHQ*N4s{NXAw$Og;M2ng6H$isxv!qA|S
zLia5EzW`?L)2Tx^!tDe{l{$@IrxdIhlI^8P6u5cWp|sh@gMjZ>Km<LtkNL4xWlDB<
z6Jrk7Q;vIe1i@M(L5L3PId8KHpQFG>TXd(Gvm+sU<+Or`zqpkq=D%MQ9~ha%O!fRU
zII=91c8G2n(_03Y;Jh0w;+EZ&G&<n|p^ct^r5=18RR0Vuw(q7#%GCWb(~!OEkY~(q
z2ZD>fOL>u93SRF6oS@s12V+(-L2cYopoR>Gji)lAW3emQKm8>@mM;TAg}F=p)0a_t
z`Qo-$@QWxq?8#RaxB;+Zsa^P4voY04Zqecjyfp;?>C2l<!T@B+pmJtWyR+3JRTPR?
zfFwkrGK+s70m}S#95rup3HX9+qPVybCE?%oN)-x4rMmq!3Pn>mED!1RP&)wBvzPKB
zjgvwUNG{xw5lAlj0hQ>c4k`W$N4|)up29H2!o+&eXh6qQbXDPI2%0(sO@<eWWHLg)
z`8fk9@-QF12~2nlCDbqrUbrUd-)rS_D#NX^#$^gVf>&LG8I-oM@K=0;q<aIP;y>!A
zC?$k!4et|`(<;U7tOdL6Fm0*<SCiz?7kWfXUCoJ_15mws?<;Y5O|$XfE<JNI&foc`
zF(g3$Hk<K97UPR7u@6i=x%@-5jz+UX<v0*VvtNC~XtrWFS&~Cakndu!s1GDNTmo<~
zlV#v5M2I*Z|1C^}ZDf|3vW-y^8?V9CpIK^L+`aM<bO#Dy6Cerj%g|#R`F=u#CQC#*
z)zF7DEa|+>A*V7ZG~ly{Edx}y$L7Om*65o=r4a|K)^o7)mv%$t$3fjX4$J~hzLr1X
z0vt<$B0k~d2Ydq?G!F7pW2RStq$oikKpzRi4J~5IslKy-9=Bnz=*7n)k@;2tcO3j9
z_#>3e!k!N@L>fvv`SD`_QjcD|w65ZqDdrn=eH&}Or*7auk`u3Y+>`=%*`v0hgqzan
zfHdl!6y05cO_ok{+7r(}XLHw9fNEapD1@-RDYce*B?y36Y`q4@!#d)n=yb7v(pxl3
z;J12nkZhCIyjf)KygPu|UgujuzD$2>Chg6h`dglJA0vjo!E({T9foy*J|;aa#T-_V
zvy(q@a(}95rbdVZ6xsuHI0fr;$f25D9)ArD0qsBzz<*|eu~mQuI!e)Ab*7F8gf=2E
zUQz<LWTl%D05R8nA4AMwGKm=<=!-crQeKR9#@Zw*+6m}(PCP@m1CC0cOQH&jtm`@a
z2W?&`WZrZlh|h|J%zUIR8Gh*L;@t-8Jr7~Xgkhp-jM!aI-+xBYgNY=115C3PJtzvW
z^QxnM6u$M@B$vBgu&)RfFRE_<!SHLAPWo$qX7EOQS|yx_^lXttMt1ur3EoVm6#>&c
zDWsF+n3Iil)|hwuBj#U6SckEcnX*kxs1jAQ`e)9NDk`y4I!sk-vcGN+9u$OfhCxOP
zF&t8e^J&??nf@c555ts$>54ykuNv07sbKs10&G$+?1;v~WTa^g92g-LIN+cHg}G=?
zK_uwAK_i>Lry+m~;nP%gBV!NnAMU~AmN~gt@&v$1hg_r5on)v6E}>CbPH+Ci1(A$7
z+Kx|Rmj~JSDjAz*bD#{aG;|Y?Y)7Q0brPg+N*{)d+Az!q9~Md~%>5Wg)rc1olOr=v
zWN#-(O(E2pumWIOuDc}_65$1P8VrX8;g-f&hVvM809#)8Z@Z7b@D0R^lWNevc*@8O
zR0NVQp$(J6?pbg<tL%cDnoU3#D{{n?a;YEM&Q@<!Y8S65g2WrA>@(cJ?z}ZwYzZO?
zedvOrnbp|(pgqL-fNc;7+S3DC<cB-uCl%`d%TWkqeyteH=SrS4wTNn_f6CH0#?Y=F
zB40{aZ&@U{h$bu9(<}`?B;gxZy^h3OOgQ1@#Rb9l!>OPmMMp^e0xA@7B9#NFB1&`d
ztPKeYzby6X?QKmYExtZc{X?G6fGnD=DZIeVFC-55xBCc9yx~xXZ4d=~{GW31>AQRM
zU8}yd=u5S}e5)^8g3#D=c1v)PI$(oNy{9fs^e<+<V}Sl8hyEoeLe64($D(HRFGf@D
zCuTUwm~e$lXkwQBnT4O(PH#TN1(IG4M(}pKvmJ*@{f;dlw(%jPs%r<#lBPkJ`M3~)
zEQ9QbdnvLlWMjAOTc>ItjI@*@%?M7qwvYe^jay)Hmrt7N^xnqxVB0@+8h4_xbxty-
z@z9&+uDMkX?1fmOLxn1e#Q0H2Q`J+iXk`ZYgaDd6jT^o-_eT7LbA^JdWmYS{5|dkM
z%s9l$j<2d4KNs%Ypf9EMAibII7`2zO|6iTx*;XJsj&jdGsJB#-($Ecz-5u|^7eObX
zACk7CYJ^6wQlQ%^5U+4m3sg4)&dopLAkiN?Z25t#>xJVb7G9zaGRZ=alW+<*><G@s
zaEIemjK-;#VJCMv5u?yenR-@m$a3#l!Sj}<4hi{YW*nPzmYcWy3~Wkq+*!dc%bgX2
zGeC8SY3w8**h?|?Ab=ThfxSjR+q#fCwT(m*w<c*KT2a??-V@e}fRnVOsq9Cfg9L-2
z?k#MigCs#RPZrqGQ~G5Ya<YKfWSlSx;|&+VR)B7i%$HMDXukP#y7EfyJ5eQYn{-eF
zR5j{T;nmV<VA2@qeI(S99|`>0$~qGFYb-s~ba+Fa^ZP)Z=|=%d39hN?;(zPG&~&Cr
zA)nmgohj0;ELKX16T#7YFPg8oWZ!=Pk#RlyeQXE?|C%RNtGRiJ5lDdiAX#_FMz8SM
zj0_GTur{EGE{Nef9T~KqmKYfTATgBVpb<6L3{owq16erT!jL6_9&(m+96j1VVgBp7
zYf4xQ3LlyI3L>595%C}jhsnxSgF@FoLLu*uQ3%%p1)l0o6r%70n2kE0hP|#CU(RD&
z!38?2;hJm6_WjHRB*rZ5#U+A0-1!>ktb=4ZhGV5<TcscKYDFPjPhljmv%9h~$XaI>
zt{KaP3P5;jF4j?E6Cx)F^xfLb1p*O2cw)B?Akwv&RV)CC=kP|WpeUM68hL!j#LU1w
zlBI#Rw58<%k(zW>GWbLNkP|NtW|9EHq9$p`(4>0VJlrldC_6+Mw##$bhgMQ!QEkpm
z3}YRl%1C0?t8JnBiuoWa8pWh=2|jpWzZh%|CrH3Xs*C29M7qIH<Y)dPY}A{#K}`M$
z|7|2)U!w9N_IeE)jmx(iD&&v~6yH~0u}B$0dzH#bBmwxPwfmX1mS$qN$!d##R5l_6
zOW!{Re{6~+_)A@F;(ux)H>>ywxEXJ(RZ}%EKS(P`0>01ghA+iU1Sp5U$^;QB2|)kz
zHBp2FGOr5nhJFO0CpNaxk%?g_6itgKf2g8U;t^tx4cJt%P}H99tO7RuZJ+u7icgo_
z@#(f_d=`Xb@Hv!l#S3UWK2`nq1)pR8r}*T(w;O*7PE8cg2!A@Z#NgBYkMLP|^1k3R
zYU=-zKjT*KhR<X(Iiw8*`bthNHom3DAK|m{q<z8X_FMOe&yCl@R-`kwOJ!^aiw4hY
z5-6DJdR*v0%tGshs4NR3Zb$U~gy*r#p+DsvLSB8#uWGR0bZ}Mk$55|Z-nHm@-v5S4
zU0RHK-6u~bAXBX18!MI||6da4IDgIjRSDMG3`E+Z=Rpi)7!ms(JSq!6CHcc?Y50|@
zvfus>LK$Nd0sy*6cm#tdZTS~9ps8Pu>4gO*O+<iJ^Qop7K}$1?3Gi)Oam&yX6B$!V
z2x9^%^~)3xqcs}0Sfft&z>JBQ6-u=D&n`MhMjhbRkj(DU11A&c_d7p`pFiq)oM+9(
zDLqGPP4co5^j#omuJ6%@i5e-1rc-^WKz;L@p3{#aCO~%>pyS*#&>j(Cih9BTCY50R
zsrM4~d^^200SC*mrK(KtV=xIZ=WZiwCXI<K5J6uH-DkTsMx*J7d!61`(I6Skaty=Y
zc9RaW5tDL27LXJZ%#vs~=4Hvz;*{rGvAf6y^~ie?DBpiGDEpPAY?MB*bS9n}sq;Vc
zh(kg=#R>3F;dwohjF+*m95V40Xr<Qto9i`eGoMBQ4(#b!M9~5u=HQxGV#+QD_v0&`
zgwpKcQvFZzy#AWmu(SR}bEG1y-VZj)62}j|&dcc5dc^O6+Mmilgv6gOvm!tc^jWar
z<c?GDRiM5+^8(1@`F<PH`)<#OXu=GET`R-SZy9CaluZ!Ni?9B%zxm27L@gj@s(L3{
zjOh;S(zCL>Ph?~;*flntyk?hPuX;XH`IsCSJ`T#vZo~O9_TqeiRdNBR+xyNDYuI9m
zQL$3A+^f;r1v6>gtA3J+kkUIAp3B??9b-=Vfu;k}X-6nQ1i;_prJG1yyT>cWX5qgi
zi^PE%NG~%qqBwdTVbbwiTf=7qMpEs<SXNSEr>G=saLQ#-7lxmJxPa5_uyZ{4eq0Uk
zl>k0#l?6UF<bD1GtxVB4FzW4H&x_w%6s&w`7WA$r3f62;K<I+;B`j|nD4gDhmZXii
zHWI*xR$Aap4}hwy(hP9c$Jj{*k-)oa1U@^|Dz-GOmrMA_5E>#Z%LjbXNr7#Fc>i&r
z@@f!JWmH1*xc!+mX1GT6kMk1-wc&64i=a&9*eJld5>Wh<6&5MatDCGF$^T6B`;|%P
zHP5$A&}Dg-Bic6);@b01lNAqf{)EXa#+UrZ-<-b8f2;_@i7lP{w;c~LqR|0Y=xa;_
zCnge4OGI&mJlv8+IH$(`9<zUsOf1!l$WSR(p0s%Ux5<j=nucAtYww@-nrX2l<an?T
z-?a5WGSs7n7Z864h1~HkN^RVXRY%3ija$5(u$Ho@U8hg+7B7n0*PoYphJR5Y1$N?0
z|H|r3kn*X3u#jjBA@EM5%Y_h>NQyw4c}}3U?mwgLogYiv+j+5x5@eD239Dcxkx}eC
zUL)VBWh;dl$FGvh(fZQ!MhL)7*7OQT68LcmN!!MFSE#;9>Yt@U|GBexSM%m}r+O!T
zCHq}{kixF^{uxYn%AP_yQ|pm_NA7HwxBjB!`VsB?i|U`j%i5I{Q{jH#Z83|33lu`S
zx{&N3>V%e5Nevud)!AX0cxX3{&(`h+?v8U)nFbM-laIjOj*r3mIiUvx*xXOcF?-4L
z_7Pd2kMA{Hnz0`X+(k8;0XvFib`bd*fM{R5+=#Zw6J0Kf0U-i`JKfPe<+PZ2NN5S4
zhP_}h+6iHzH`<xO3ymz{ivdkNP!1kUi|`<U{@mUZ^v72T`Mi4CKF6IU7bX#Y5GAPB
z+2OdISVIe|1Y${y+4)mc74@*$4Hxj}`uOl$dRveIe4vQ|F320gd&<$WuIKDuH9gdA
zBW-Yk@u_8;3FHm=p6PNdpsMsDzlTJwq#@|0W;Y46zL&0GhZ9N)%6a<>RMxZtd~pSm
zNiv7BMbm#WL8Datj#-s@)R|i(Jt<XzPhR!W1u;OUlE%;{ofUY+t2@wY?YS0Uya8){
z85Zj8`&p>{b)r8J$ie?N4gX>GrB1IZJyusF6oNaUpajptjHl<Mo}1Ev{V*pu2=7G<
zs|@xfpVL+w?4>sc*xTr7b4)ZSCx}}DC=U>CUMTgc9S=ZaE~j+ib0pC{>5rRu@rMzd
z9nhOl2nO!US{y(j44z--1ZT@V4!AP0J}8Aeu2>o<KnYk7@_gG_f1ZI)j@B3iMLL#O
zFF*lQZSJ^xR&uyrqOK`S88xXf08Ku@=5g5Jb2x6BXQ?IQ0q{{e6Otg`#@=U8zSG&K
z!5>fkCwj`C>Ir;U9VAFXN~bL3JDcFSm9ii9!6NgL*5{lrq|HPKvvd&%p;<qLH{cKi
z5sZg{_TAFq*rfV;VuPFUazjHD@_pZll`m<)4RniaV;y1`Twm_H6yADy8LZbl^>lCT
zjE5lJ#3Bo;>l^wvnb<{$&`}!!PjR<Y488cQ;&2T~zOy2q=Mdp*3M*`t9qh)qU6bmH
zDVj3tV!i5wpP;AfS@I4J2-<a@yih;m8opViK$Ih(Hp!c&@WIiC+3Fqha04Cw31#?Z
zPxc=2ZT8cer{@E%ClwHHuMujPE4=GQ-ml2dzy-S`zv?B)CTDR;S`I&4k)Opk+|o%)
zAJ=1yfDJ)`Bo=V<b1<D5hd1!xF3KN`X$FZXW<i`Z?JR$&&&{wy7Kz!14z5-zw@D{z
zvM?T@r@X=NXT6k=$vmSor@$-t>qevN0YRF==wKsWhb}rfcfEgl7d!@V(suM5NJvSk
z<{em5!q6FT+BwWGYWzcgDwK71c^CzyfJ&5$;y?yYL3w`F@kI{nK@STcR3QFkhjlVS
zfD6IRN84-3fsdHpRXYd7%zQ^FRa;(;=?~EU_Qv-Xd?$3Da3$D1li)%2%YhqU03hX=
z=zZGBsq|7PP@+kUU#0v7Vgk-L^}#BTJ(-%q2@0r2fUP}~n&qZ#*oGhjQ@rbr6iw4p
zvP0Sax^E1L%Sf2{xIweUK+3nmsKb@RtU91}lycx4W<k?P2|b0vj*SCp->+XXrkSHj
z8$2r`<hxSJR$L4-ngzxcgC?U<|97^h0YZ%?p}cC8Swag$p>8H>QUaejO94WYB=8#<
zwmTSMM4S?;=HCMayWebDMr71Ic!B{$S*`OQ)c6X%O?s7o-r%3GY+eZh&BIOP=!1~m
zh7R%$s%g<tL)w$O>{I{?j1z-QKKg!B8le)+6&D4s#Fd@6$yFFmud8C!q565eAp9u@
zF$>yZ{w#<&m(RGJ_cKyabdegGgu%LVD8Hopl@=v{a(m3+#{gLq(Cj&eaI%G!A>3@6
zkT&eB)!zYV0SJWOhVKjor3&<oL~<iMu%EK`7z3heKRgaRRMj9Ln6U%wzh}1cP&>@A
zAwWxa2|<H1UNZqn_Y|5Z1|*n(%nGalqdP$U>lN$WZT%Ff=`x)(N*cTM$sjBfdb>R<
zgpY5i7zwWrsk8fBXwTsGm@nHvLNgiUbQ7TW;O4twf&-OM*APA$Hk!6SeGcUDN&8rJ
z!flvG!Tbl32-J2qr6z^n#-zpn<g<|Hvu?0OA>Ze?#C@nY_F~VXEfI(-YNcgQYIjx!
z1(4@HX=5A?W3C{kOk~^zM3>>W6GR@v^^|O9Ttn;Xdb-xru+T8xbhym>y5edS{*#_$
zXgim<M&k>&HnW(XP|nY}Si3Zt5(1aTAk%Tp6;Lq$06zd`UIcY`(VUnw9z)ii&yvaS
z$?0+|aXVH6b_G~In2#~oml*{GYBAsXZTgbPOdm6?Cv*-Bt;UsjK-0Pq3s~X8%yF!V
zEr*<J%>2ed4gT7rXyj1|tq{*Pxw>jsCx6{nEQIwpxo=k#Q1!2d>Q~^T@xsh&YBr@*
z?MSIOaz!8;pIDYTgb%7FcvdeX+Dp-PS<uOD{v11Tl`n1n$gr$|UtxSvw9@r#U1AkN
z%r<iqlR@wpLy@S7K!VU(M*YoHpa$*snKS_bTF>IHXXrUGqffFs2v|mNgwNETgu`~{
zb+>6+z);14z$u%g#OPnzoeh)_oUau&6Y7NAMcVbGC27}FBVXAJ0bS3{8?@^Y5fIlC
zZtYDC&q5TBuLorT5b~QKUms?t8>Y%-+#&AgGqX}$yC3R@5FZd0wZR0HhZ&g7&lq1r
z9MrLRLSIuxVFfY8Y%>KLF^AD}=&byd6X{Au6IW9TDtKFB7`hRalA+toH3?wwK9%6O
zX~#Xx?vQb{ZjaYedm(SWo~BbwzU%pRk(B_M>kJR2CUw^m5XF&|^Bb}0u4mm}SgFx>
z*Yjsq3Rp`dBVTLw4~&<S8q<tAbhpX{Qq(3BC$UJoJVs8=WW$h?jRF8oH01<ZqdSlM
zp(+p6asts{5*mPHkuUWu<fdKohLMxTAu%CJv6hqXe(NnEij@=j2E!<>Z{+8Ra?*&h
z334*T$jO<~ztVDo<PcO}y|9})XgQhDww!dG86zizLbbyaD<{SXz%+apHSh}sKhLo*
zS^h<afESykby5CFS&(>%{^qNLV@TXfo*7pP*xMR0N$VCvVu>Jy#Ixknw2rSE5|0@i
zLt;mh`1XItlUTkH5^wu7k;G$AHi5)>hQwRGimIZS1X9!^QB3!$ihrLGLt;Xq9>$Xh
ziS^F+QbU3zwH`p-fb!uM_#pMs<@i;FUs3<V{3+5;TT|J$g#__W2(pU44=jkf%N$|~
zo;Vpuec{R}(2M}lCjvET+R!WXVz@4KsVYYU&5y?VH<>?hK0~{>d?}>8jGp8zs=MeQ
z?;esnrtINI#yLSG;x0<@FFFqnWV5$wr`KOMMoP@dtRf59SJR#Aw7>1oc%a7uTretv
zeIU=kia@?+f;8X1Xbt9yO}&VR4(9&upU#01CpaEXZ*oQ`?ctqd-(+lLQUP7eM_<^}
zXFJ(u(%Mi;T03L7=CNg9Y-S1_7y`!cQoXbBA_-S|Gt}of<KH?bpCvDk&<{^y7s8lk
zkdP|3(1^W`a7`;(+-!hqCkoqE;|keXyJkXd1T>xmM3pRXCu0%e4rlupP9siqsrd#+
z9ii7*;HI4BxD#5D?`>BYd{2(ZScTAzghQ7@ObTL*D#8tcs0=S++~;~`KV{N5Spmv1
zTyMC5Z-BXjvZO$cp}+yFH3b6l@-WuqdirgNQXofD;Ms1m8WD$_jkS$cjv%KxzbGl<
z_9c+$nTgX^V&W^2Ke3Z>@<)_P$Ov3Z$p(6<ap?1+S85Cr_+f@nAoRwQi{JypEMh8v
zg72y?F+<@1$pQOeMo}O)!p11j=U)nFOW;A{^v^%-00w1o`-OpbRj8Fp@ddoa_D0-P
z`RBY@i_^~UWb}oe(|kOmjL*D*52|;z;@*G9Y4R4mZU3SdD7JxG>`Xw{!-#Pn9$@oD
zEE8zJ*y$}Na$nRAXJDY@d-U(`^;3s@b9u2w7dSNF8wxx|9JpH+4^4Zuy=<wfvmE&~
zO_*01szR~C&|QMD`zr4^zp<pCW@jh=4DNHigqf0jt~5+aI-@>6#lJE?Sm3e8Rt4qD
zknh0l+U~B0$tVm;t=w1jSSM7Yi5a3~7GmGXg4_oG9XYft+(a@cr(fmQcf~>v`N_b9
zUlh72nB|EiD`1rS&|Ot{Jd9J-?*TCKBMA672@{KYF)&(~yoRDduCp-_Qd&CfpMdon
z<a7}^UFig?<vkvN>(#71<QefR5Wr~P(Wsk6;j*jQAkxdau+dZZ<b&9;MoljZVzf(-
zu^fNM`T&p*)v^Y+3v6x|0A$qxS|_<2^)ub=-T`X(7XhlkZqhNppf<JmYld?4oInQk
z*&#a<-bPuDiTEY*waUbF(PkM=cMxoR&E+wKiwZ=404S$0w}gRHwekoKHZbFgCbBfW
zV0Yk!t)T+);r%6?jMTr3^Df_)4kl^p`f5xQGKrt<V8Sdi4`gVDx(ZEj1#}J#8k*oI
zhU*difFr52l233-xWcU{+(C?4TBcOr71=SN02868*;L<AFfhPpGl33VWLB+~)wHXA
z0cGFE>Y!ka=CD1@TPvD0R}gFrUu=@kCF)B|%546aYso*wF9>${NW2>YyE7D~@gB46
zMneNLlL~o|6&QLDM^cUBGc?kIZ#FT{acUYm8H2HByrJr7C44gmQt?x(Zg>dpEOo+1
z$c<;-eqsh5;bqTeAeOG-Z@B0Xkih2LPn%QwnZIt7JoB{cBDJ;WWskLCzwe_^T=joe
zjCx;vIc5}vLH6EGu$MALB5qG=hMK40)C+bwyFeuJU^%Bxh6>_$0Ke-7QyrK5?P>jw
z;#lNt56j7CZ_BxijXT>py;nii&UMyq;_<~;v0S$W$bd2bv_lssn^~G(R*<JfA_$pr
zQgn?$E*USR&O68sp7|343w?ZMEo;InXf#%AP{^EMO6FByvNt73bs?nSH__;dY0@1}
zhh9vbl!dl8F}aEIqJj7b{>nI>GFs&fSmi7`DYXRU$A6~Fm+{+$`ZqMdmNct~9d!{V
zej<${9XeAXKR+?%^S|u=c}z)fOv#eHmfXOI8GsX{!*?&K{!|P`cY{VoG9(H7X0me6
zG3pOrXgdbdll)j0fEd-k7}@&f?ilUGZhGtNVu+f}9UK_<nnpbQ37N=Sp*uU<O}Nm%
zIQy!`<=(5X#{weR9UUgFXzq_U9VVO-3bgY#0d{Vs+9#QG)S<2o0{9q=wU5<=zljK6
zt1nmT%Ow{ALGFHK5lq1EUmCw0#^BkE!C`F>PM8?nZ}1BMKiF!$uVwQwv_;_lQlJu9
zKvlD)1Fa6^rb|yGYw&6tB7|GVV|qY4|83LJjDK;rs~VRAhn5Z#Ceo>8nZXSh)KGrA
ztAgD#1z!lX80&VeYY2-7JVr-kB`<{+-}`GO10@_F0`e5Gs$$Y18v>bQ1+pmmL=`_R
zlo_EfXX(q}3qYCgV_7dGN}$g}y8loTJH9OA)3e2OhVH8(0o|A70vCkXoKXi8GZJ+;
zE8yRgQkD<)LJqah4$7yYv`4?E4fof5LHiJtiVz^B4Rc4}kWca0{?&u9y%AP<gZmt<
z$z6kOs-?8}8zj6!<x5lG^M(`z8=S_C?fr{W+82g`1g20s{ld_F1az2tdAnh`pZo9N
zrijDbQHZ<mV@z;WV}tjq!NC-aHA$#|kNFrM>#r_K8J7Eje`YDD4VPH<S7KqjE?os&
zB8I2*RwE-1ZDS3IjHei%_563@voJ<wd=^oHBmoJ|@Br=TAf1BXN?NPZ@XvIVe5|rC
z(X#oytHA6*(Bp5PAQW6(2hT|W00o9|3WHa|F~8gG51{Cyp*Z;up;!g~>0ity1)3ER
zXzsrS(5xUG)DQpE`fp^kjqtk|GKme*g6q{4_$+)FYjHit7!>q~ly$dS9dMT+?zWwv
zB7;$!+-TjcfFpDXKMW79ZXStx&%`gS;R*8l4Y&#W1tl5BsD^)l4%DSB`Gx3Cxk`&I
z$7fO?YM}H<Z3*vJ&BDySMsS51n?8@H#_p3jNQa9tQM4JWhq%NN=NCS%nYmX=v>ZaF
zwn+(Kf{NsnH8uWRP~zVS8l6Cot(qP%J#<T;2TV3?NKFg6_)p*^?gE(ad2Eckx$ncM
z6M5>X-Tj*DS^R+Mna=E|`;$4OG6GW$Re^EHzo4HmA_e^gq_<Nt*(TgEjT@QoMZ4;;
z8hAyVW1w^cB`mWKPWRs*M1k|}4xAc20z}#KdZH(3P7>zN?1Ozf44;Xhh<WS4Nrz>D
z`iUtk2BSYop@}zji^JN~eJt;^%`}}7cLKU_(t#<&3c^zS@lW3mwKKXNU&sTqgMSy3
zWO_Mi*GgR#P+(mT_3+Q1#!FspW|g#L2f^($5z60ZlOcatAV(hq(@7zm`$()1YKtPo
zXK&)>G$VXwg9@RJI4FKh`xG8Z^N6aeP<8kyv6Y@7adqxN#e3Si$?P^&ocmF#xsQqe
znmruV=j~0t_m)o^{IRAH1k%Yev5Lr725A9>C?o`tXd)AhwUJNjujK{bjDvJSf6@VY
z4tt$HlHwxQ)TJ4cIK^!s<VDS0Lq#d1E9Sgj8{l?H-80qYeYLKftaSxyk}Y|+{1klF
z)!)<$gq#}8?}EEj1O~{C>Dn7wkSeokD>qr8wDZ4_Oj>$$FBI5h?r)X69{r?aI2Hv)
z`y~e^ol!d;fS{IGBdowi3hE8c#aw4}pX2opt<maLir+6kVO1^iK}^YsF(pI0msB4N
z1NWXy;NEWe$`XVN(8p5Jw}kYC9pFGyXtqeS_U1A12K);Kz-D}C<Bb*gk<{_36@!p=
zSw5&k5`J}z(MJgeLOqW88v2M%#w<oRK~uF>S=&Nc3by_7-_c5byTvKcHfkYAS{d9>
zy@jmF53X-)POtCY4#(Z(H>y<hCEF!8Hhb$ww`+$9%I(^lm?DyXkj9bt(>2Skbnd8_
zny2{R4t58Z4IpNgu8T+T@9<lHCkZ0P0{h}T%6o2*a}@Ak$2_3(8p+$7AdRdw12#vX
z1|pEqQY1t*RtjQ;4^0xK%U2+c$yvZ_R<lj<Ztd44+8FjXnY)<BD@39MGE|C9V7PZ8
z>MT-a6_6(6ELgwmJMkeKJ;|g7NHsx*3UUXWv;$~mux{U28GfP}Z<qQC2~c&ovltlP
zmIrNh7CqL4>S(l<r?wdel{qHamDcM^@!y9;!XN_8tsg!K{~0nWNT`LFdWkc#UEicg
zTbL<Fe1s*Ytx<o}*2`O@twZD6;$aVL?k@;kbaVM^ZWHIlor+)KYxu(T?0Uc&XSN+R
zq{KB6E3NYrUz3V~8RJ|Xq$UgrNwqCVF{t5x5ku;nh3aeY03lOCd>~VA;@1#i{@^{v
zy+7Amn=IHCPPUQ;qn&UFk?w>$x)a{G*>=J!P*x`2p%>-)R>}-;rU5|7;z*zY2}*?o
z@mMCAu$H5;CrU@T`E7Mi0U#a$#wWsinYPDhaU6w=e;|5gh-Xs#bqDYzZc9T+FrbZM
zQ2!rm=K^QfboT#=<S@uM6Aa@Lh7KlmOOQ%jPY8CHFiLA&%Bb6@&|rqq1~X<RnbVV<
zj*2!aCG-}pDn(E!lZZ$tB3{JhWn8NJbkd4TB@yKR{XJ{#bD0d)_w%36C)sE3y)Mss
z?(134T6^^Z$*xP|<W&Q_zQ2Lsg@yB_pOTu(CDuPR$K4vY17ivpgU5ip2JG)e54mVG
z#JbDsB732NR}?CZj@!uL48g`5D(oum0}<Mwaau^6eWOSF7&~NA2~9MCY#9@7#?rGa
zMRod!p%lKa*MZq8VPyGM+RAt4W@<6yg%E^^zdTtq*jH{HXt2??0qEBO&>Qf}HqxL)
z{xu+;8=knn?GuV$o1EHbG$6E_4^VYnZO?x0;QEt69RAq>F0a@$`X-cd9u_GTC8djx
z9>Pb#q1U+NlJV)I30_~P5e8{%B{Te6y-uS)W)EGP8CN7@MQX#;kO^Z~TzjC?=07+5
zEKLvP90*bZc7Lu|xxq7X2(UYvF|_LlrLgSMS+T~66_{xp7ZE*q=ztmrrQ)Z5_r76T
zfRr9L{nIgPI<!Fe%3dIyCQm*(gcQuaw}>7@`zaaoKvQ;!kAD^`0d@TaO5nN8y$%)6
z=aqmu5YNCknkw8W^~MQvw`vKNb;ehB6Mrgs{)uBscLIHxM5#d4=NiMrINKb*3BNA?
zi&(=DGo=_Yi5)2vwSOPLU$Ty}JJUz>)=|L!bZ%ni129GU=F9xG8=iI~`HKEp6TQh_
z)7V*3N^R8MJLC{19CDs!=5~{8z`x&j{sv^y3LpA|{}QF|dBJ<Mx<KFIC!MUN(Nd12
z90F2p74;$bU!lYArJrnnv$S<Bv#1|QB;ug30-!n`h}E4Ry}t*S;XmZ!mr0M}gRpW#
zK84rY->Pc;q$=4N@q0r1+9ApCk0vE$Ct0<M@v8Q!t*%-%0w>Ci9-m%1&TSSMpAOIi
zb>-v7E=}IJ(L}kVJGvHzxfV7mYGHg=FwB-|mqYSYa^5p8@OsU8=1`m{kkj>5wdqt1
z=Zn22MP8@0^^rkZ2X>YvEU*|KW$%(wyk?mr5kzj7RC1t0pf5+-;c$fB&$?I&eMR3R
z5NR^JR0Stj17xg16?MI6vG~lX&?=`wOFzq{x)O6K)M~N!fhwI_)NN6rc%8QYVs34C
z()x+%=O?UwWdi55OlW^=(1bysObF{0rcc(UUz(U+!Q$-F>@wK-D>X>nPbVPQ{<GQb
zZx5*rcRYAvIPTN&ndG?S(osuCEw4>KUz>g-dk}5brk~2T^=~`Q2HgNy)*Yp^CWc1<
z^g@4-)P(k47M1Zzj|&eOTpLbU&x-s0bo1)O^fHT&NVHqDAl*t`ePmc|jQTh`UET%g
z54bH{Io@V*;mWb}0W?{?C{L3yjwVg({%e{<%WgFHW9c{)Lz8nq3hX(e>d*6f!6oAf
zQstMo8W8TvKx8YmI{R}<6|K&W=Ye)%D$7=@wR>|<vYC7Mpgn9F+`eRx$~=_29irO>
zR%&*24_6jzwVO-F%D<Da6_t+VTt_Wen?3x}N{_Q$Utq#ooC({Hvg7hLY*5$Hth}a=
zPt+FMuCkk6M%|(({;j3rwAn5#6WK6&nnnbf9~mZMJEry570Dl;pwi)~#8u3ebq(1<
zmE1tw(lN_@HV`z-4iwh6JvQZP-@EJhrYR+FAw92!JJQ-2nsONswVCTQOfk<KT{Y9t
z#!&n5bp|KPhvrlo*q~LCS+{(K;Vh5-hdmwA#WWUc2|ur~I)1is%L-YVWamVhRq4ro
z#u1YdefjFYr8Y;uqYI}FP5Yh3ow1k*M@Dn1lC3QI2+9-5X}>a1`Qg5nO`8tPa45QK
zC@Y4R1kYSN8ugVxT=$Y0!@~=~Q$x`QOPql+#}1?56OU0v%K#zBc*gZ7ZJQig8_}ta
zn5y}TI)FTj5ZjSdWy88-|H5W8O}Poul<KPJqrtf&LgiY<NOg8yjWBttQzx8Gib^Ty
z?jIK*ZofBmqu7n3nY{0??A9O0J;okQ!IbPedMuuj;X$Zgj{S{QOuZ;x{WmnqYWZKS
z$<A}3CyQwtw>_o%z%f#eksWu1<8a7GBv>G9apPS&O@ec*OcgI_ttyrIlO%zoxDkOR
z*KQSr$HTBD9bH5A&+ZKXem!^bjM!iDTOP_S7U^8IJ2o1?Rf{)7cyBH7B2-`Aykmj4
zCPk`k?rFZN#(HjFo8dUhoDVhMfR2QhD~`8*w}#6Mp$LNT?N_x&eT9C*7p&hM^8KRR
z14qsDVz*&HfJ9rX+ur27>!c3Zyxtia)f4Zml(>|=pv!+?NovjP$-c+(@2H+^#Kj{o
z9mdGZ55g80Fxb(gLH`+fOaA8zkhj>agdb%K)EdR{=Lvc8cE|H8o8Sf7qZUAp#_W_7
z0rCZ2@2e#nc)j@go2sXyVb|I`yV7CyG8VPlmsDlPa7CZbT$tURU#x=ftV>V!Ia2iE
z8u=MZ=dbN?;sJ-;xnBXfG}%a{=(QPU^ImY5XAWYNoATUy!-f7R_HUI-M&DDqxoxF!
zKK9SFf9S3l@VO8io!QZCI@70UYD;p*KO`gYTgsdjY&$rd(&mXt^C@S#C%o@Ww<)el
zJqsiq@_gUhs36bt>uQc_yj8>l{43$s<<aU#H1fSZkY#g?T67YduUmPnKgv$V`T|Yi
zv2Dzc=jR;>biL-sdwy65jd!z_SltajENZA|TO`cbX~TE(!vd^_AbgiTDz}~4T&ZQX
z`4m1hrA&gHca-!-Y{?j+$e3!{e(NKKF@i&K@d2AnpH@ze(v5>b$Z(5lcKDN!XPRpF
zFs`sxJ$Yi77<ePkg@AfP7GG;#=sc<hVX)DiqLldc!+Att1%!xQKN!HHa)|IL@tBt0
z0XmIZ#=uqgx|vqd{EF`ns(ky(s(id!1Y=68_=tAwa!2^OIbQEk%=eBz3pQZo_X|IE
zzbEH|#A+awDWSmDn2;&g3F(-_8@6?GrI9ic#I*D1raa+n7p9o_tZR=kb8v*`Q;b&}
zf%Z=X#;yfm9J?VH(RBwh>N3TI3jg|z|7{6L|M*0M+{cByDRLiwsG`oE{=C)D{3nyZ
zqR_<W1e=vGpI`hLy!gl=CHQs6<zo_7FH^SQS=1nYor_8MHoeE?%vz`@^E1~T9E7B?
zI70^V&ZV`XgN>7C^f(`*R7f>jf&uRrm#BDonnYYi$BdmtCkZvVNa*}^?xSHfY605#
zR4VZAE!_@+a(Qz_-s0#aZ_-opF^Rb(Pxig56`os^M(JY`-?eUs_-^6ta*zffob@73
zcZ;}(TKD;-%O;;QRa@QQajlrdy=J?Lf<&E{I(s($?`F?N>%zzxzP!X-SOztlqF~fK
z8o)~U)sOz0Ir^u>|6?@29|JemOMP|-SoGu7ey;!g){cMcgs77RTwYyB7W{T?wAK+-
znZ)0o)|B`M<%rIH5{L#Km($!ompcA#Q4Fq?F1)fZ#Rb%aWf!GTUDSw9JQK7&C0vc9
zpj1Yjz`XOzPGz7|dHFS7()48ysA=$xO0IG$<Gp`wpfda!W!7IDV9fO!9e)65dKon3
zM5YK|UlxxUJm0aR;xSeKIUoI<{TbYUACI|OrtgdLaW!Wt64?X~G*u8SH9Py4By)(+
z1^HTn%ooUUL(ncc{w}5c{A@6FHtjl6^Rwgf^D{5UYoBs*yqkC_T`b3bZWA5=v*3Wo
zQzotA-cFmgoO?U<<aq`X(0bcU0~N7Bj!5S0Ysz%nxo*m290&vD=1Wxc^QB7!%0L;V
z=XvUsi+h13PFKyxMH=BeeR7u>g4nM<T7Ehdveg;<gtD3KQX;we5z_3Z0$NVFa`ij$
z_X)fx<C6NJJ51*$AGSJ!rf8z|><e(3cPbCC_Wy&nNYYPXq669@_T`SDzg95nDXV$T
z(X@`srn8gnX@S4?cSScciS=)p@+f&*%45TneuolN$lVl=_UklHZO>5ve!erNNXb{0
zkGCKEujFIV$p4dkR6F@Vxlh6#pwFaq#=PovShBnzUWvv(Sv%t42I7^0cDQ!j2P-OE
z`Smzh8H%T2nG`8`$<E{KuB`Vpp{?RME`%Hlwsa)*zWsB8la|SlDVyg?{#GSjIf9cG
ziBx9SPoY;qbTT=Q&j75|UXW*lv8$8QPE>0OC#ENpvU$Uj+-lJtgdG`IS+9ix<(VQq
z11}WSrhB4IPj$;gPkZN~4wU@u9;b&J_`TgU_q$PM!!0r8O3Djyb|v?&Haz9iqNw1I
ziGvpMQQc3E%9Ikrt4+U7Y|Y|=I>PcxTLQ7cz?(qEOteiPmnvSj{U{n`8%TB*ob1;>
zeQrfC>eXz9r@3A@pSNIS2T$E#WYI;}85^Iw4{ZEsj*SP<_n46-Zocun2+_7uAu`3=
z<QfN|zoMpkbg!=#`VB}meD7@&GC6C4^$P=zw+}Bhwqa$%AFU8xS{j7&U5pGqT_rwU
z6>a<-ske)1Dn5bX3~(P#k)IiV=P+0J<ul^KDumv|cx!DawBx~Y#r{-Kj9hdaQw6>|
zUIyaiyd7HC9h98;7%9;mf3P9Yl*%+tXkWuY^Ky+RtY0!Qy`V6bI_NP4Ntf}Cld6-Q
z6<U9RNvgyoBbB!y#qGRu6t^V-M$vKa+GjZ`J9>y1&;z39ovo_4wd_--revOZhZnJ-
zPj7f{TO=~LEKWcFA(B-13YO3pI*cU-E)iYOYCO=e7d)^z{pP6OPoE{HTHvj1Wh;G3
zrL>4tK<I6g5xuUQ&s%tU^NEY+li@!pU7K-xJ2=4~V%zF@jw(B%`$cIXyG~}LMkPjy
zc=hVVGsM5iGLMVZ)TZUxXc>x9AUap-*@9A}N)4@s!c7;lcWThM)-?x>BZR>&8V>Lf
zp<EU+HjqOt$3B1Mq#!)t=3vCjI;~rW6TUmx^38X7#=@0;g?9w&aQ-X=P9&KlM4$?C
zA1P*2R^Kg}+II6se;)4&yA&0SKDfq^-uHEo{?i=Ni|j{osy1jLYOSh05Wa!EuGHas
zA@T*jpGt-bqVXLDVG`YT*#`K&Qws1u<GZt<*capbtXwJLxv*;KM2?L(27H%%0ltOn
zr>^86j(F2v{KX3IgY?H{4`k9XaU`jltK}ELp~V~_r?6J^v#SlY-6KG)BAEm7bJ$U>
zLlB%wTYwh`o<|DZsI(egQE7ICyNwKRToivv89?NqG2U`7=?i80(yOx<t7`kgnhEQB
z#;4z9=|<7_@F<?vW;W9oxD*HA6JMnh((9!4dbu5!{-{=w!W<KCMxMQ+kS|X?^ZsHr
zi3U`~f+{bOxgJ-MN~rZ}pqBLsRjti94Lfn{+GOYH3|#DyvZ!)xdM`rp1n-=Bns7{B
zJ?(2#kDPj{w^R{RoUD1_E@&+&;ODv3duKN`k@5j1+%Ho?s6kv)7wN&ae)hZkq=e^+
zV|?;f;iN>0E@f2ca2wwlhEbtyk%;pcX)4C&=}*R|Urf%MQoXma{9W>MOzqQV17BLH
zrB6+~@dr!Cv8D*(O1T}E{-9RN=s8T!A+6n^&6lU10Zs*>QMN`E3#wdPP(?*+F;FTx
zp?%#Z$xyb0Ux{SrVt&a7Xj^;G<g=SNHbwWzdBKozt!o>bx3@Dt$9I859Z$J8tDfkN
z>@%2PHPl?~t6qFwQ*-4}$p?ZV=hIT-_nSATjnu{n*SSserFjj?0(3VDt&_p^i3PZ}
zho#YsH~$-43y$pNP}P2Xj~~g7xeTIt<WZTbac!R-bon`rB*odV9%vAJpPqMd^VPuD
z0DPaGm+a7YDQq<R#WkAFZr+{IxYA9{&D+JLFK^yroIcma67@57d@J=fOLlHg3llS?
z6COV3?B=G%?_YM|#IY|YJM|G@T1l1C=bEOgk{y3U%58Uodh6@9|9@l(P|5Bop?Tl&
zUA5Kw$ZqHnN-=TRK5p9VVwL3ml|=s}EkG<^#RiINSxU17DQ}w*cl-)7QpWuIiuqI7
zBwgDtb^2vB=-t)JK1>zP_-IP7<+FJQZy}89`*V9H@yi$FT$jz%<v++qbZa#VZ+n8`
zd4-p^C*k<&Sx(vgT`7)jD<cLhW!I}K%1&1gORFAX#3Vub^N&psV7XO#G_OlXm9T1q
z6OcIXYM&l5f3T($vdd2#V<+-u6507S2|bcxzuH>y;!O&h=4o)VltPD>v-x(iM0d1n
zyZioZFTDh9iv%rMHHounB08Gn(7uPb`@?I>jzuw#&-Kd!-<V9I$vQ;{2`fuV)~FSF
z4il#}xd?YO%&KTQjr3?pnd`;f1h*1eOJ%7DIU-#xEW6-DH`$F|_sLnN{u_C-w|#Vt
zaONU=<4_a$^OIamh{(d?alxR>ENlGL=7jc0(YQid=~FS#iLL|uAg;|dAC~QZrvI4d
z?;f^^4h+k2Sz&!;5KgW_tMP@|z%~^&us<cG+1M18SmU9PQOB?p)JW@)En79LXI)8K
zuGm6Cu11Y<Ge1U7NFR~1eIbBS(JBHFx#y#K<-p0KPo}y@?0;`@pMd^M#xllfSa#uq
zTbAJPg=GyEagtqRa49?g2GXow?u0^Ax(oHDJ3fqs52h2$bVpG>NsKL}qRuAKT1+Xv
z@uliSgfR-=evg|lGaQ917#tpfHda|QGOW0L9$ci)1Yd@7$o8u30uGkb=Jfb%&tD61
zdIRLGR~^LsMbl$AO3wJ5xZUu*|7>x)N~PUAFj!3<QAv5g9<~_z07OF&o;JB-Fdxlo
z3HG$5b>-;HXm^EMtnd>S#nsQn*DZ5ToX2dx!-|LMrHEVrP(XL_d>H@0{++*JR6>^f
z5SfLkj$riLtCtSjD~W-3NIDaMr#vKpuc;BhT7C)AN7p3hC0@CIgihIQ2r_YHeH-NT
z(j*7D%u!FdQ^kA)C`=q{M_J=#6H|1@PK9w<g^YQs_Q8mcLq;e5@2B=f$R#}0pH~_h
zu&4}POYq>3a}{8ef8}B=@Uq2C7=gnthkHk<h=gI{n%iUdp<q%KRleNcsyRw`cuKFp
z)9z2{XfP?FK$v|4T`abX-uibDe<}P?Cj_#5?a<3Ha>Iu|X#8O4t<hV~^O3wTPa*D*
zoL6z_eIR-{h*tg2ZRjVKdQ5cd7Bai5Kba>iJLo}CpHP|*y^G3(aSDXo%MB47z3LEs
zH)Zwbn|F>tA)-|PMBm3HMs%Gp9G3)YKV2`BlrXXFZFw}S4UMogy62@YNAsn4-Tl!_
zj<n?$L^E+J-F|Un1^N|89&(YZI~p}m{bIll^U1YF-!O4yv*3)${Qi^;`^Tetgv=oh
z1KUboE%ZKu+kRXX`7Bo7>hPjgZyuo4?x=Hsr<RB86jt=>qwyoiV-ssfv+U*#-84oS
zyIEaJ+IA~HYtv8Y`Q+$wyLr|mB|6`3Sm<67ozBnfcUWzXHEuLPPxjXevzR7KWDiw1
z4+`=7(1T@%k<aLt&%LRSg-_p+!mBy-(z^r&{y;}{6`Iny1pjs}K?8)4OHi*XE`hF|
zM!oQXv_&L-2ooPo^fAPzd}0?SF^&REuWnR*JO6BU^<-;vM{fsEUH;6nb0sp38kN+Y
z0j+lcXeYrlG~y^jqJ!tSp<9y*)^t*u8DZPn;Y&WdB{{7RMccM^*lFQLoP-)y?5J=T
zL8i{7QozWrx=(g&#r&Xc?cw9HTe$Q|O73^BFZq@M8<+eRcdl)<SN7LGsT7eN_etyy
z-=3C2bD$GoXma|?4z$E9QH3x4-6Y=wLrU3_KyicI?&e)y(dK5OnZgY=i)0-vno+nN
zvr7J6i(!xXlL6@|)3!*2dh9_AKC~!%eK_AgSnla0<-&I4_8xZ5Ii6Vh%}qfs*0%(f
z5Pz8ktrWdfSiQ`$h7#*-*%XyuKoq#D?5F!lL&eHyb1R%zQB_h=H2`F`K(n-xsPpN*
z_1RZZtx`1{8z?19sXE=kJ>Nb}&W&H54i%>0#yBh2b8Pupr$in0svZ!OMi(s<Kd1`K
zFr!5c$8{8b+LJ8>j5S!#mNgZB?Z$tu&wi6qc9v##M}9f#W{0aPEY=dF$pM%-&oyiO
z2?e$JinGTV%r$s}Tm)gcU1z$3#6VjW_a5!b+`xt(=$y+Sj7v*%9_SHIyGH8iF6E0B
zSGa0ZXGoC=@qV5!*x}K4s)cyLA}dg8g<VpCo(_cgp?`Hb7K{ptKXShtRe5lz#*my5
zFue>ivbTDDYwmTTM5+LWaba_B6~e^DXT{?&8>hh>^lX1K&?C4Q%n~=4hr)O;dC?XZ
zy?=5c7j0#Q{h>7scc8%>{uErKPk}n(jpkR|+OxMk?N$@@OaI^nc#k4c|D1ugt-a`h
z{pVV#<L>gMUK8<h3SkQ?_1uM5{|}-qlMt5O_D7XO)MG|8)zMkOTfZDK6PP`{?-uw4
zLN=t)&nj+yx<7iXDCjY(%lApA4~(A5uN9)l(K;VQ83;X9PlBE+lpICttpX^P1hG<B
z*13~wk+~Q`Z}Z!-S^BbzE1ew$&7FMei06)tg7Ao;I?2G#mb~dTNcb)5sNWs|bJQQ_
zZygXbNIb_9j~x9>e<WCOTAu5w-Iy5|2`BA35E5MFfq7(yr6A!_?4#q6UA<IK_Fzgc
z$!v}B*MO@VX{;WPJ>OIA&G_>{IVn|Tp+h=NQbSZlM}nAamR&YcY8A)vjt%OmGu2Dw
z>b3WvmcR@c`(!`g-!2<)ihxtSI$guW<R1-;q>KMjh$NX8sYnNGj3h+Dsbl?!K7Ilu
z)#5TZB)tSnN0&8Pko2OhaS-0kIS2**K`y^~Uj^3&{=T(g8Mj7Xmzylc>Q=v*u2ptv
zjdYRGe%VF_SDI3O;#Y1OsADRc*mZ{9X0HHd>CWm_)rfOo!C0V1XX&A$z|^i+#9P{r
znR7jM!`6G)9{XXNPRMp;GhN1JneI8N$kJkmeVa71rM?*avjxO~4%gF}3wL>vz|dhz
z1^Bv=YL@Ba%-y}#;e!S~Jv3^uezH=BTl`#_&%^c|9xQnK@L=_0$PR%q#r=Zxhrx62
z1`GbRbMR>EwfDSKre}jb*GXKRf6{N;33@nlGc7YUeU}5=7-CBN)?lo(Q-?d|n^Ei2
zNoE*j6=LP9nepMQkaPUZ`0B&>!9f%j#l<=V?!fV46h^gKecU@nVV4_Uw+$@Q+G{Xd
z?vLe&upuxy{Z032^^tb`8H-0JF+4?d82^Vs`t$5Q+~Zasq092@?<8-Tvf=XxPjO}p
zp@8hxJc_p761Mu|m#ru2Ji~p--GG>Tp{@AGP-2d#tJkz1*5GmbqEhk@INqdhRrHr(
z1b!aQhqwBzw|{YaRRgzo@&C0wCU^tEH~h=nJBsn52qrPkQ2#Mv05ch=YgCJcpTXf}
zO^|lvAL+D*Vd1stfpW0$Yr{fbUcVfl905KMycesbFUBX^rTgas)@&f%O}iSDCfWa-
z6H7LXJu=8lf-l?IDGrN#a<8$-y8DS1JrjMDq~o9TTVK55I|Jbd6hxijC$Jd`w4;P`
z@8)U}-h$l72g-bt=vOo69@M3TB;XTf+x^B+rdivK)m&^z-<#33>NG6ip2Ge^^t`+y
zJKy=+QU`4->*QIa@2n1VWj^GtTD=TMFSl)}xrKx`4|WR)$aIL7>f2J#p`(t4%1WXO
zj~GN2<-W<V&xB6XbTC#IWX2%?1~zACo~#uaW#-9<4tk4D8FRUA(Fi7|ibaPN+uSYN
zLqYb3-3M9~(2m}}Sw@%Se^r8Wjw#KQUHn_+A~k<kwP`v@-B<pYt9xKvSD;uomC^4D
zTY>FpC9#KE>1i%g!vRs$tW6ws6U|pv<uIuTw+lBF{f;Mm3;>J=d{bqHl)9m<ZIQ6~
zSoBF5H9FA|8}e^*>SIDq|L@oBx~=RTf`A)SYHrN8FV7k~7|gJlM-79flo*k5{$nrI
zihbvyG#tILo%?`U6``<A7AF?nK7v3j!(f=y;|C4U1&Zt;t1R5h@wUph7gVlToS3G{
zixbzm%MV;ral&3yp+O2uMe>=P`lK6QgLD8)#DCs`=DyE*@X;a<;Dne}#|TRn7JE~Q
zQ37WQIK%J6?iYt*y3*S}*1vS17qDVtUvmgOB6VnvI<dCgII;8QG*szF)V9D)C6Fk~
zWsrpjx0pb|-p)Ba(LO^N=5`D-CsX~#`-vNGy~Ya!{Fi)yH5HvrbQm7$UAJklL&1I7
zhxdq&jdZoV6GKL4o$80893<HKOTSH>Yq;?1)O(+i$B#eN_Xi7HqsXPVd@1!7fS*A}
z6)@VC9zVQ|`2eNh@S`8m***R71HF8*t=r5PZLvA{$;P}cB=y6O+2i(=FyJJZ5Bz{^
zQC2?FZ|H;_pUg<Y>FQW&Bsp)#&Dz$ra(nej!TJTkIUkZ=b?w!MB-^K{NO<V{+0`t~
z9B?2jOHJFhKlW(*y6vu<&(UWA_0@X&qLGjFyQS7tYK{81kMj(?@^Sco@2`JbPlz4Y
z!q9K73PALAsRbnG3mS}m`yF#F%Qs{6n-_A&2IGH6P#4MjgXi+756iDEbzbP9e@AU3
zf9z&avX^1mDL2P#Q}NLs#Wt3F3zedYY;F|>0hwe0Eb9ZhtCB!PZC`WFl_?El>QW6;
z`gCJ!(Ddo))}R&$ZE*q3S|07utyZU~)mXD8wnE}#oe23h$sQ{u$orAe-2E8$!FHQd
z2tzjI*#O`BEaHbN`uPU}{ZQJu_R1~bK|sz~wlJ|(eazX3mdi9xkjdC-k|F+Qr8)mV
z5HS?323Z*f57)<E%ggV7E|*uyV<=lbDF3=YzuxKS1wto*4fxe^w@306{sKgQ5Z?J$
zI8@h|><|JgRRJPZ7ildCA&<^IQ)@}hCpe5|f&hYv?VHdAoK=rbh>x>lU?aPutuIh;
zSN)kgfmXIoyQ6jI7ry9@`ikzO>6?IeWuSWvRfO;4)Z;a^Da!Yk!f(-d`~<R9kTbM;
zKeSA<8yYGNRON>@I5)I3+>iWry11fTcR#_|Hv3Dt6(Pi6e9_rw#w}%n#voIVOUa_m
zDJo+4s88YK1n%T7y}8FA2?%^GZTd6Hu!WXd<kp=QJdsNA64&VJTg~2&<w>9?v_$u*
zy4<KVy=>JB!dG2fyQ4p!=Mcyy51m_(UO=$?-F=<Q)FWbzG3Psz*hOvkG;c4_tmm^#
zh9#MKBqNn=F@9(5mFmA$b(QMt4Kha-QIlo$q@mN*+RJJ=9HjshHkeQ)P1oRrnqQ61
zi1TZ*e$iU|{R=bvH7Z@DH!T{I8=DI}bw{tCTQs(qv|8<Q1!E-KUtBOO+uBwd^p&Bn
z-!cN4>1<HuBP5z;Cu)APNcoaS@~b<#s;F+XeS$YP#xtLO{C20PTcqzqnZ^?SydyAK
z*a<wd?R2?g5xAg;*?!s>%h8UfJ7#k$fz<TOmh4F6cnwpU=hKsNRo^_#RsAcSTc=bN
zb0s^|_9TEIm*U)u`PF~!G}G>A>NyUtW8j$-&V3Nm&ZtqBqaF3+fW`DIpdCc6l}58u
ztjyD~EJvu=9o6(}J+ZU=)J$2qE-|{qnJ@&x+8wR_ZXr0`(cg>i(K|=qA`K~Oo-w;0
zHMP4T`dFEd&l)v<UsN}$9W4F9n}PJl6~{x%k;S%K-y#daqqLk@Rp?6@`5cac*zI=_
z&7;o@)3F^TzW~KO+jnJ`BL4Z}{t%b1)L&TK-zEQ{zZ3qC<73QV0P7X)Slr=fgBak=
z1p_P^Uvlb$PCk(5oPD9KG3F0lW12B<WCl$h*vMRUUMw8zPjMW6KwL8?93KlTQ^ZBW
z@r_*7MZW4^41UW1a_3*n=0T>S;^(jt4gx;g4_i>dSBsO8(vwiiCpGYiGh)wA9GRjl
zg`=Cqb3c@-uH~s$%$gLYhh-|Bw6|B4^44SxX3><8kX8@1yQA$J9CODLY1k<`nxxUb
zSJAYG>c_ptS<xu{Ztae;XBAfHj$SUhM;gXhzKx{ec<Z}Bw?&eMNO_a`z+ZRti+*(z
zvrovm9mBpCyB)tpU|DOdDxuz<d07#ei|BjBS@2Uo+M)yaR4a-Go8_0v#LCePUt|4}
zC|7y>ap3&;sggqUap~^b_D!9Blk*FrU#$Pz`o7E;^Ot?Hs|W_KcCjUS&id`e19R5S
z=fs@#>u-s(nvb_yjGz&FjJjOj#Hn4T(lDFd(OEb-dEh8k2ju8PKb@k)p+zOSqrHpn
zqh~(<+xqO-y!X-%pUJ6yepMrRsggfdB?UP~d?(OGdOPysBsU;*RgoPz{=4yj{^w*T
zD$41ynnsqe&PcPJLpTk0M;W{ujj0ONUxT|Ki_9l9MtZiO_fqv9J-^wT>obXe{#0^;
zjDf7ZUAt+0nb&zS<$;L!vZ5{mwr>_MWOSPU-p6MS<ZrV8e%c;#CiHqqcT`r?dvw=l
z;OEQcSC+3n@b@ItW~1;?8eOoBi&|A0sHSXeBOos+;e)eQl)1wG>+~tOIIe(ZDT$_S
znu{wWJMQopY|!BHoq(jZpQt7T5REFW=4V@LJqFIx^OU-;Vz<P$QY}nKkHd7@R)&)-
zOp#(?`|2arH=08;R>h9^?q%9f+M-)4;^-R<5%F8vG|zyLKuJM?c!g1K6aD;gJM`Tj
z&|Ja7VsVA&;7>vM7v!s7aVGLz$ctg3_D-$zYRvRx?57Xbkh&J6nf4PYg9jw;LoSIq
zG@c7k$%YA5Vs48bS%-K}FA(nn{X!_C)dlZt(^K0@w`zN*|E83`5(+OhYtR)Low{wM
zLdiOAiNYW4Srug5S^$oBhfb#tGOadOH>fhFRtf3udzYme-bj%&MT?AW3Sa0xr6&ll
zT_vepC8=B$&DdRBd@-*r5XaahDGySCYdJGq;w@*hn~hPVjAl^KhVPPxC=<1v)9*bv
z1a)44l}Be6zn|`xs|$-9R#+rTUEucm+C=$6qLYJ~cH{qzlAXQ4W9@dhweF0^UfUue
z6^BoA>P)Ie3=6&E$r?l!r{RW+yEWCQGSv02o%qJ@&7nI`7fQL()4!nfIEU<I>eWC+
zJYp&$FJkPP>=~GyFNL_`2fv^*zRyOok1bJPu)e<*UjB3JsvBDs*{kH#sUQNLh7yw$
zDA0dEkqR<hHZmtz5=C$jP4<c`RwGMYIDaIXatxZ%q}%}ZG>#5e>(-vK+S5*5Fj|e1
z$2=0<(<G+#&5IVU0od;p+5!RG58gjGcvFIRjNoPRW|IP_0;xI%1>uQx-b9i0@W}a2
z>iDF5mnhp+TfN8PR{cWZm>r`~`oh1PCEg>p#Ie^;!|b4maR9VKt6}D$(*HT8{FJzj
zfxxW3U|gvE%f3&X=kBO)HN*NwZdm#8APL=0o^8Ka+e(vEg7GG}p})cjYYdBBCe|8c
zkm+{B@fi{pD3Dl=0jhptxq8=FEYFa3V!PG`V)>8nII-ik2xJUzGPN{04D}WL<E(z~
zAz<PACkx+4e{Coz9X%p>gh0mD-!ci@MH1M2t><NtB0&0V%x#N=0;Df-{9Kct!*xO0
ztQ2zOG+Y1DISiSYWm;Vpi%Y;$?SX0`9N+vH!dzVJ&27MMosQq2y>vAERz(15j8Pm(
zDTUwK7r<|_Mv{=@&vpF99h{w;lqMFRDnA4~M76c%SXButBa`!5=h6Y8DIAY2ak=uQ
zpgY>A=sx=8zXA8m93RCtBF|6ueW^z`fL9&4`Gt)|-2%8kF3(E~@FED^=Q!w*Df8gk
zM2<{i(;0H_9}*kl<$Oa8B7bd;Eg7cs`QZ50iMi2px1Y(L&}NR5YDJgqgbUB7O%kKW
z=iKZk&y3ydRK2;`4}HW)tNlp(jjz{@FAzOaqDM;LG$5yFlyX+g;WT#I-k@THHcdO!
z0ida@Mq^wJZnBMEzgise_*E|ox}Y4?F*%clz(HvU(wk>SZxj+9`j}6=r%wWX#ZjhQ
z)+?qw#drgl7<sglBbG%i!x2J``CF>I%vM0tpQ?1(HQqQLSB)P05CjZ%2q*|u8p*-k
zV9TeKP|388ppAk;Mfkenq=9sMT4IiFGlo<=l>7;W33+A)kI`EgO3Qn&33xFK%Qi^S
zN815j-_JY)7WJ2$dZQW|Xg}X98>)Kt+u)=_qT?GsHvIsa&2Xq+5DrT<0gDz1_A|(Q
z-i4jglJrl6yiCcVjZICHlbu=VkudSbsx3-%1SNxs_szw-?`qwQ9Uk!KjKKq_L+(nW
zzn}fNfnjt90y)3xyvwwcMelqt2BgVd#+68hV|eRM!Lu)H>Dlxx4UW3?O3|FwrW+0q
z8L>=9o336FELd}RunT*q`MyT`=Yx_R^MF*x&oxgF@7XG+r~r&6RzAp38BP1XLzBT*
zBj%IZkZ!x%#ySZ$Zd=sK@5hQJnQ9TCNSyzkbIe^}2B^S~?*@wdZbn9}|8m+Isi~ES
ze_1zaNXdsQe8Z(mASsXDWBplkT9dX0Q8LKx1RsM0GAg!qzp~|am3N%z{g(sGv9bV*
zes66UBZx<Vq`@|VGgV@}HG3rrn~GbA(DEv?Te=6I0f~DsNDox_efzdn^u6(>RnA$3
zP#s_73yFpE{2SuU2{KzB|CUl)+g3Ih1@A1%7nXCT%sF%pe0m~!XFERf!hX1}1Pr-<
z+vkoWf52UG-sMA5t)E|>?3~0M(;4`D0`#+4fzXuW!26Y=2PLXR`WB7aiZOndx62mT
zA!s+Y)kvwKIvfNYE)yAIL??adS^yq3Zz|6h6OW4+Esh_Mt-u{ilP*$t0H@i3^ye=?
ztst2!akZ`}st2Xf!>_o05Fbgi$A!IGwXX&#*5$U&4T2`C)MUpIY7!uDuGVdw{PCW4
z8`q{K15%iYvO`=mHEO|tq6O9)DopTWYo<^2I9U#Z^$#0QKmRsgOiBgYeH^6U2zL1}
z==?l6eIak~H9iQEUw`ZaWpSmVJ33aa{~%dDq?-TAW*)s|$p^_(m++f+?pOT+itp7E
zT-a0c<j)V*IHRNPa9Km8l8SB<AZf<T^)it`=B7v&&7}@E&Nvb}GJjeoY*-c3^x=HV
zhn1Ix`SKH|^R|mUw0H+Rn3j{)N|RFXQfJXoC(Et!`LqBex)>NzqvlIdGCKU*8<w)3
zi%M<RuT)fdTHZ@*w$%$X09rEpBRTxiYn?|Lxl9xG%YAD~!D}#U%u3~=8uE;#6H)k+
zo-$1;)ERobK>0LpBHxd6<LHHnM}I=@%-tNdahKf>|0DPIjRX#c51#7__^ev6=~H=f
z*7sy<#0JvUmVXA{H6%N3Ri~CkM*_Yf$LEJ3H_i^lTe0)<L+{-OYIQues}*VljJpaF
zR)|rhA?Zhrenhvjgk3aJ$lV|gi48}ivCBYXPA{~%ju@m)g@h~*s;k@&M;u>UVS00!
zo$)0dLgQLTq6Gxo>uPQS-N-I*{*R!|up>$x=!yGA?}PeD&gc@Z%oy)DNWPf#u|M}z
z+!Eb;dv2xK)K&j)GP)MkvNc1;HrQoq6XtBxpsmre-Ch-5jVWN#(bj3)njB~0)oix#
zYTSOzuc=(fLA3r=@w&`?$+7*DA<a9-+L+V4*hD6flJl<FC8e*=e_uOJ$S*n4@9TVL
zsapbvbC0pzV41|Qc3TfTlwt=?)DUc6XO64G#N@N(xq51ISi*qJO+suf$ALF(h3ESy
z(~eiO*rBPUsyYWMZ-2~xpC~zNUkNHFF=G5%=$lw_(;nbdzADG?b^P1ZVB(j0sQa6A
zA102R1TfrpUTN<gc{24JYj+k8*t+YF{?K8H$$9R`5gi4x*0@u9CNr0(^nuf_B|BcX
zXIGSxIdNwe1aUe|=VLsx{mbnB8m<LKsh>jO!u7>5vM*ko#4;OJq*bIQNH+wl7b_{4
z-Fss706leM&5KZHkiPUX;|%YO<YS0Axr=&kDN0CzK?H;TM1^9>&I4oLjg!U{2V#Iw
zP)%^1R-BhwRaq2(N&(L!6XlPf?_YSraX)Jao3+`JbF&%%NrWSDsan7d2Yuw#_;uTO
zHBKp-3sRY~=UO#yYEis*cU4aDI1r>?jJY_+>}b*~@nQO&lRhF)TDF@3=54Tp1dz+4
zvgHoWpl_-KCXbKU?Y*yhjs}?{4k@h%qcXW1AkB$jVaUG>q@q^iLn-`5$$YD?W=V{s
zImdR|0bG*3PEXRn?4LT_nyGmIr*JN+t33MtYrXM7F-;cqYBgBlbTjDLT5FTr><(Yh
z*8RD*zLsyR`95K&CHtb%z%P0idHX5929&pUae6;_Gkq$CiC5dD4u5sJbHTBU-YKbc
z%%t_?ZPf}Rg1TqO@iC;rMM>|;z$p1igb-p=EAz^%l5jCtZBUcdhO%wn6&q4eVu42R
z(l3e^LRG0|tISmU<Y+&G8>weN%JzK(v1#{W)`*RuKUqCTL{)+re6U?2K^nHpG$2Az
z8NE+xq9CNl-0ax1j!e9hzj)e}lfSRTKhfjwK&1va^4uUZbhkC;ho4=Zocd=evkm5x
z?Bkx{1$D1QUQj)X{r(~p4sypw*-aU0MTY!irJ$t!oX>^_s*ikI4HcT9=pp<E&0@^|
zL`$96Kw$7xd_Ch%mN7XuA;zJ57GBkosd#G&dSZF=E@F4dA<LZD<=E4hg!Yc7Xud$y
zKoVu&Yhs+q=$?h~4x3Xg!BIyHWD<Xwh*rlx(j|QY+GvV;VPLjh4~qmn>Y0f&0w$9K
z@s&oInLL>}$)MykE!K>C5Z2=8J!YgjhuU6Tcbc&*hfV1a2@d5-A*u`GIcj@vc`#^=
zlUHLp8ip?u*ZQp;V)H6ttw!^Rk<kUq91-YTUU7OHxR%~ZkDHuHJo!U2qg#l*8iVwS
z4cU84^C;t<QjO86O0xWgp3x$eEa0L8znJFbI<ylPa33@jiG^Z)poG~)l>Ke)G`=Y!
znisV|9RiV>L*u8i`T|R|QW=Yjtux|vXD*l0Y9j4=WAc9-pe#}sAK!E!Ipnsqp_a3E
zNfU*MnHk4`t~+p8>ZZU`{>qB&3(>zv+obbfZ^G6isNs}P(R|bFeVaxxK+Zf7I?To?
zbkx`2J(MGSUMH5P>^DErsuS#R@ej<#lu{Udq!@}0MgSb}FbQqZp8tMORkVtHMOl?M
z9O-feqGJT+cM-aN^I@%)yZP`%@=MxQ&N8mK(|J0fzrxOQ?YVR&uBZJLLbws@37m4>
z^!OVf?WkVjZ>pkAFJZekxCLa{PN+80+=stPc2O{Q8>LaF%bs;f@-!w}E-|q4F@0;q
z_@#q%uKz|R_61d6;Ooum1Kf1@06PJTfEn2;Ydtp|D<S;gh#iNOr@JCrH|qGC6^@-(
zw~NsGK=Oj+RIgBxFmdv}aey-}Eh}>7&zzvx2vFak!MC`~RU2;Aa;-cw!Fiay?(Iu=
z7Ub{lY0u&ogkp&W12_3_Db6!)EcBQ>q{|HRY)-Z7^y)}gV({j^wk;BkA4@(k?EJP*
z8uv?f>O^6gff63unH6E8evD_yKR%-2m}nkTx)(iX60cop($4wQiOuddr@64#FmcGY
z{fMmd`2%)N-Dm!Y&zw@4XAgJNZg7<ha;WV%0xZ#pZ{7yeZxBJIt5xX8q)^00do!SM
zeK_ip=N(&AiKDcjoa}fUX)Od94ek&H-w5V@ef(dG&iqpJNB93P5;+;KrN|!I{*jct
z&M}%BAS<S2C3oI!M(CveBymJ`D@&q73;|xa7^W?H)uIw9(&$VNdcduCMTgVtm+c>k
zr28yB_R>&Lfj%%1g>`h5KCo+I+hqT2iC<@XP5#Qo^8t8_?%hqi1L!<R>A~#<55@@7
zVc7{kb$(EE^nA}~nZys9#bC+Klpw%Gn`0mlwcwNY_Vbj|%<ykhC<w1CuMLl>k)!_x
zd%AVb;@wu_EX40VcluWP%9<yp%>_qvSn|X)DT9)fe(Ayb_4@S@k0PnRC#J38C*rU^
zGy306BRG0%+8iEe^V`|h{(b&ruLtxvIq$ye2k9==b!FA!X>B|ilo|bqtM;I;Hq@$h
z_~X~6=`le<LU6=0n0Im0I!Di#Tb2tW8uwN_=fIQfWF2_INoSk#JWO;R;*TrX@nNT7
zWF<ykA+doarn~CliFh-o)@4Q?2pF2f2=w)(>VS2V^tk%WxQ0+#pmp^tZOo79D12V8
z@!{%utUu514FU)I{Q9O;7XM)b47aBDiA&oJ;uf9mRbG`7F~mttiR#t{6>Vr?*DQPN
zBL`vG4Yn+V4;;odq(IANy5V^R8dj`4fidblgyA-hr_``h>9cKHD`7)(TQ98)+CDES
zX8_ZO@E|jM|I5JvY~Xr-q=&JIQ(jTvH$6kQjBlUU{^R(5_)`awH@{)UK?c#XWao9(
zltCoM(VTfCV@!5#m*6hL^f890ln0sNw_R2Q(Gm~Q>zYKQXXrM_OzqJHw+BIz#tO^&
zju(-^lQdlPG^dnj5~o;8G1VVhW>s;O#6Q<rbJy#c^3lME%`&(xiLSjy`8A#*nJ$&-
z7?i0fRdeA(bGWrRkLLC@*33=rnUliIiPd`ZIkLhw+&PrB7SeX=6p*&XkcPRn?9%Ad
zi#`M3-(0Gp=K!88RzOveRh8_#O|qB1-kybt9eW3)2s+)fAMs;Pkt*Xj9phKS4%p74
zDUd8rWRBR<>~yb<hKVeXGpTCzv^77G!8xX1#Ez0*zn&DLuvG*0>alBV)@S<N)3Y5X
zW$tya4?reH@4Rw%#&Kvlm)cBXkS?N<Qr@8-QHbalFTCF$<3>zyAzl%YO@2)^a0B1x
zj})kk&TNzaT0}6b{tzJQFJ%oxr~EiyjBLd4dYX=9Je3SxytJ!_3aTBAdA<m!IYy0c
zlTT)odr2Mi2s2iGX7v(&YofDESD8m$@gulcR!Dvwylln+aX#M67q!~$As139?RAT_
z*RP#6K2uqeBDK!8>r!54{ve=F|7mmjMgfKXunog6j!-%68E03<KdRuPl4$<Tigjz9
z14B7d95RM);+Ah*f^|@v>C?6j*7vw0|A{)=ak1@d2pG!tv557iOd$Q28g+bXLYR1b
zNtwYB&Ava@zZ9x7%=to@38;vfz9NeQ&t(#SyrhurPpo8leYD_$<TG96G=~<Lqxu85
zCg-G{KEykz=@TonH3rd4w?E!0)3doMt|l(7!J4Z*Jg$xY_F#(=2CShEjcfJAZ_)1`
z)qv*v=3TMqH{@-`@|yjv)~?uxdcBf4Pvxfl6Y%vp=Qa>!T5ZQSEMWONx>S|;kiuW>
z(X!}lm2a_|CDF;c*-<xPqU9rR%ucwk0GX8<MOe0OHy^E5Y$R4+<@yoz&T{J*rivl3
z<;O4?r=tGk?Td+FGqPls72tCvS+(Z$gE^Jf0-LeBrti83Jx+!DsSfuetsHtsS0rKu
zSNR6|-Rpm65>HPuclc-_%UXu8HjwmYd@cbaeV^|rN1ew>S$Bza6{`YNI~7$S`x+r*
zaC63o4mSeHH6(U{Vh(OmZ0%o!HP=tygF*T!(+1flH9)@UKa}8D<yyN76q@*Kh|C*)
z79$g+RB4dNN{!@vg>Y%e1x>OMe8oF4L|~EAJ^N2F$pGA5+DCBXwXJ}Y%^$i*=ERb+
zzpdd}<7q9X`l(hr7|HqPuGAQ2wmayJ!*_t=Te0RCnY;zr1Bnyawp>SzsGN~8LWNWo
z2tR5#T1QHy9^RHi#LFB8k&t(j9@mhq;>JEax*~ecO7d;SRncO8X8-juuQErB)VSPI
zo_QUbcou}T-4bS!nP01rg#8~Zr!`)oo$1U1_bqx2`m7i@?J}G?17tKHckhnEm6Cl7
zwek9EVTei=yGD8~8a^G?_>=@X=_GRz(#NEblF@aVqM^%&-V@U!EURkwQG)}&XB1G>
zV6t#qZlEcJX1Z@A_9uQZJ;FS1qVjRM@T$PuW&&a96S?tDI4oyAVC-k3G}LhRcmr=)
zbm=F|E{JFwZS*EOizlMZG!*N$R%(sT3nN(q>Wxu}L#@Q>?B71p5DVU>^mb?ew%ff8
z(yOJosViq78pPXtbAc-Si-brm4yQlNCRB%_vj5SG_IyEh9*gMF*kurZ2)`7x$<M#S
z@zoEy$xk&^nEW_&-&x&bbn;hPG`9&(AO{=`nldtsKFp;?affZnCx-oD|2Q#h|J_}J
z`aQrYl$z{huJ5wOAJQc={Mtse2~Mi}G>?xGr2Tg>ZknZ{yzY44ek^YqmicBm2AeY%
zZc_d9N#&W;Q2OU<MCmyyL(X7>(}ukT+VB-&)lzvYj=ywM*hmp!`5~dr8>M0vk08pm
zMF2_~#JbT>_i|j;z!atFENP0yAhRjwA)Z`)z}RJ1yvVGk%B=f%0(>xUJ-su^vUjgx
zDIinvk}ej!q#tIlvgax(YZPtvfm<ZdMv1U5)0bxd)829(JjUA=i4c~lKgNJrdkvKJ
zdo7|JpLS}jMnF|bEjp!S--!#tKX+3%li2+NQ`3Cj&VOGo#_e-r^)Y@8dP#H_$(($W
z93o2zMz<=rQ{RE^j!qr`r0Bh;dH<#Pw*sB`A9{5X&@rbk$S=%qw5l{7djH^DdR-9@
zT{tS{q4&OK$%W?!xB(;=234G1yNf$4hLd5g*k)9ZOEvuMUWKWKL8eRWVQP)j-CrY)
z*2+C~hj9C}KWt`j*WD`AhT-5l*0X#1?qmN)Q9DtIhPwmrbJ5O1`O*0uyE9fi-$`O7
z{Rf<k4F;-E+XNy?iCC6D7R_U0cHg36`LlRwr=+8OWsBM%Xs-VtMk}@R*n$gCe2*O@
zY`J%ga1KQ*zH^Al*QWaYV;RuJt*Sl9jS}`7X%rXJN0Sd#VsPS`vo+Ojwn?ta5^e`_
zzQ`eu4&c|rBm$&;QOjdOe0$I5PRLy6qJ!uCloC+t^j`ypV%TT$8Bdmm5VMCBy=yn|
zVh~oGd_^@!>!2+q5FB;2qxX7{!2_IAzvXpK=FHmxskxv|JZM0p=0W!DB#AF_SALY>
zrw#gy4T{`iGbrXC*LI?@x0D~lP{1U#x$qESG9Dq{|LuX}qphBT*k|&qfY?R)(&!~M
z4ZZ3`uR77IPVF}2iG`3utZl|R)^2boE48iFQCwFfa9m1D02GDQZDunw%URJCZ06?^
z43AX?>lX)OUrdG_45BtOxHfYf-$Xd6e8SkJQ+hSmvV(u|8MeNHAucPWl*YQO+<t_I
zEXxev^Bn2a=0njK(hN}7G!Nsx)XSUEr;*1XUMqY20x_1RrSY`$RcCgp-Jq<<h56e1
zt2X;Xc5oh6T)k8^%cIdVV(-eSB~3_p(I~P^7E`nc<F4^&?ov?wONZ*bJu>`0`_=F}
z??8uNuwA4&_SrjD9rx|*%+Dnz9^xfzkNv*MVg4RrzBX(#0<^CiGUW;!rBO>ohQ*L!
zK`{1Zj%>(mL+HMFWe^UXAUV=dmLM#)dHLie<(Z242ov9_T|y~#UD=Az*6e$#sBs#}
zjaXQ0jK+NcM&Id<*6vaGt~NZ5ubn=3?YG&8$coqX23<Jx^tiica@{>ccN1NA&$#Xk
z!9$+uj($_rr0Z_^`|8e^2D%;au4EAjVww)k&d`LNMKFCqfbTzr1xCdy3|nVP-yoc2
zDqd`Wsg|=OlWunm%aQyXKEY9#&u7P*aIvL4YEX}FcSn^)&_oYC0l9U^RI&aG$5+pF
z{>Mrr75~Hh@bsO|poRX5@b?-QyCcFB(VnN`nN1ngquUg^`zpq8%A>iNm>J=YdS@tk
zkrGN_%ac(~_;jw>o9C(;j)M-MV;a>f$zCPNUKQO2!JOkT`o<SEA0P+<=Fs&@FA)x-
za2KbvXj_Vn4uZbnGWNVj<c_c2;I%k5B{-1{gG6n~%NZjtEOR8}-ds9F<w~PJ+@yzQ
zRnWBR1iFcv+t+N;ylZAy+b1VqcJ_tMmB|NA9Kr&}r1P4~lJid7xb>6Ek{$bs-P_l2
zg6cEI_``ySkNo~6P3K+G#5WjTY2Kb(&$dr$&%5M;<|NgJQoX5>{2Ae+ea*0B$G!T+
zh*Er$gpZJ;M)=&>wM_l=NgqN!C_$DX#b80O;H@D5ylrW1ICR_bnTp?>Iiln!7={h_
zL$}SYg!X&^3C}n>^gVdtHSVF_pbAetMn!{C>0qSryJT<tNQCr@pd6kqMHNmSB!n0)
z8XS1JVP($~FA8~K#oyLy+H$fQm4d2fL0*gC`i2jJnrk3m*A7Jr6MHW3i$S;lO0@Hf
zK|1|1lX&(!=2kUfhVD*iYD1X57EsbBRA$Ql#LFN&MduD2tPUDDiz)t?ePm3Q`0?SI
z=*4sI`EDOb#&dexA_)L~-x?i6>@sH>qM`qihyQHfJP>vWeMam4iI8>WNtr!C*zD}N
z=2{!LxW>>JeY15X@H-WOtv9aIOMV506I$GMp^zl@!kAXUCFCo=<*K0u{QTH}2kKS4
zHp3sUBo+hiU#YZak88LF{l<o^J(_q*^xMbaf)5Ce6#7#LjsITNXHFkHs20!%=BJ?#
z?210<v6h)R8==eYcv@qK9RgzECDFEB>RXu|3WF{(!78k$!eQBh<&tS*mIqfmW^rqd
zI?6rz+F?#~tF*hsPBOwnA|5=$ZQ&&uVTJ+340x6RVn#g2u7p&$dJhR-C-KnBUiF4?
zQkNwA`5(CU^X?AvWR6rKDqI%bUyXtrdpl4T*$-OWnrNP2OFSIQbcF;4r~mMjvbz<k
zCo%2-lJ+-Ab{>SxD6#OI#^y_sojTwn`M~8Ulg}?Yk5vfW&O3eM)^+D5J1x;YM}QOr
z5I+&$dd|mi_=x38j-ec&EbWv;uN?9Ph+HS|l+}?#WUHQlNXW;vAd5>Z8zv^N$RpAf
z6(WChRewYpd*huYI(|~HzPy(j1(BZlVfache4g`1U0Jxeto|J$r~A2Ue?*=NUyMR^
zH;pC*JkfM4|MLNq1Ehj7I|Ywkbl!QB_da{lg~8Z$$<Cb&t!I{=-?r`w(3;e(OJ21;
z`VlE}Sljw@CVl_%<~zynB;$VldCj-?JuC0OM-XT7sQ>KQ9O`d-vJmwq2WK6eL%m%5
za`W=hiH(vMEEGPU=Tr1*V%SSDdQE8vxBIlX2B<0bnhFqImNZOMcNE}ugvYJ1#6V2?
zLi2xv+i2>eD2O+uAd37$J5Pf?CNZlC^`FyfLrlFHT}z{b4MT+s#8^zrPqV4GBn(e<
zByKKSe|DmuFFL;iX|>arZGCtyr;FjDjFDzSC5_Y-m1I`}q&g{2e~UY+>-E#qwn4?9
znw_VY#vj;10bzhPe7cN}E!8q*QdX9PN~M9khYBjH__)RHq|uBJSY?`!D}ws5Uf|Y7
zwV>M5RGTq3#A&U$_AQ3vmn6}A(ItDykM^AdpaL}xSX5-xV^GLC&?(A~rWceK0A@SC
z>r!aNraj0~w^yg35Jn&K2sU)=>&eazo>}UnGIP)5X4I=%qjY0EjIZk)Q>CxFb?m{b
zM@<^>s#-Lt67Hl5WJZ+W+)<gN_WD%Ul<My|M-2Yd9e5yEOery@LCUZd8lk0{=(Ak}
zuebJra~Htd7$r%K91wZUTc{~>_3a>8R=w4D0g|FMqg<n4-&sW+a(VB!Wd2!$21`4t
zjT|ZwJ>mMBcWNnfx{C2?l^PAN0(x8&S*cgcc#uBPPKy0bSDO;ua-AZ%prS!235S30
zkxeN`+8;iwu;W}(ZXC+wl|JCbw#tjGd5uQL4%dp2I$l_opf~?OZ8w2778UL`+~?fj
zo%>=pII+)R-Z|>DQzxm39ew#?3&Z9|b^YCd#rp5b9wS8f?is4~@9W?6qJQ|N(`~Ag
z8*tdwZ7@vti|dMijBryv@{eJd6KRjL_MnOoX&;-LZETgf*D#A`3eI+{hLELQ`hWo_
zH#){l(&(53#-6NSHPQZ_+2M*f$iiBhSj4Omfwp=Bi8xA)mm2HIjyVRt=jTeakwPnl
ztZ(E?wQ693Icp;%k=G;%$KJ+k@W;Edr#sOQyA0kh|K90siKhq63@<}+h7$5d<L{vR
z0W?v*3Z(by$klQRqdWTEb}sm6x~y%HRGh_}O%LQximD7?8bU+qzYjpiPa{Xi=;|L5
zZrRODpaKdS_S#Ju$bhvL$F;VdqJ4ux{9MC|7mv(|RpR@*?b&Rnm@@Z9cKfg)pM;N&
zsn$N3S9+fI-`QjTz$j-KqgQ4*8)nj4C+dV{FMcwJvg8|ncB11^KGuW@)Cq1(#*pA&
zl&ahY{JOP=ILGU0+)!A<6q*jSMGT$(tVh}0XTuq_zK^b-G4&>eb*6ySIK7dWC6J)p
zT(0^P#d_@;RH<z@E-kQ1k=ZB$Rf+XW=K2*X4Wd%^c(&6mnR`ohOJ8H`@%-v#c0b=%
zo_ybv^$3aYwQJED;u&wpQtw}<4{`b1LZL!$WP_AMSMS6OEp#h{Vh}-P^g^c44e_$0
z%#|E2s+2?*R&7{E_>dgN+bYVVBL^sD<1Q*Se1KAhhN4odciyl^!%9)9=LRS>(r{*D
zneI0ZN}1-y@{4|TqS;^5lvQ*R@4u2@SnX^$>v&lCC6;q}wWP3p&0q|oCMMbg-0_~e
zX<x&p%R?<qsw4Lu5u+_gHA<n3mVhWvyjE3$ak{zcPw2L1>8+uImm4X-X!XmvC5L3^
z#;OL7sU-nvpK;a$XO;02C)6MVP1mrhVq{@LTPC{dCcB@l&ZD1Bx};zS;ViX<QqoFL
zxq(u)|Mm*S$&DB>)S~#<W}juAVFkx^mwlV*AnPAnZ>WL@#dWHf$vK=A?f0mrBEoEe
zn(J~7S8hD0kXXw(sfe{)#{gZZmLZJ635k;4E?vdQxDUvhhz;0v_SSaZ5D=GDt&#gx
znVct+Ng|XSz*N_L=Kb||E4rgizM%8m*uMQpJT^eFr<v<3t<QA1E(44>=lIPu$FDoO
zeX9+TC{C0XZXzl)zWPkLT7M9EJYI9Bf#mHDoLzh%NZ+I{Egzju-frBU5EuREFEWIQ
z&ClC|=VhOsy9eog3d0nR0b?pD$c-VU((79eFopqb$B*9f7H9M3;{NG#34O8(w^SE#
zpo@px4qVy&3QSW0QvUj1BIU)4@|_NVM9zE5zc-{b&-Vmo!RjmtQ?K=iq-~(#VK~8D
zfG*+htgbJ@+3$vZRh)gBw0Olcqn9o(1`nLgKF4qt>LQ(CtRGzh*x9WH#@T<%NVk74
z-|0X&+j2zyz2R)!!^TM0J-oXZ>2fY#osn)V|EfqC*Xxn8@Ur6m>2un54Jj?U<dJeJ
zaCt^@R$KI(W75hlHC^SMJI1rAUO)YT*3kR}{edQFQbgKKAiMB(O)Bp5Q@Yt+vX>+W
z8jR17Lito#pZB@^8NM&}sgDT|qs0dMlpbm4=&qm37s@9;N!3JmyetgN_sv)~gG@nm
zy?<_sh|M%84f!_FRrVa1{gCxAyM^*jGKW5X5~vDCFa8!AoiDICtJmP(O*Yeo4v%Ku
zqVgLUot6Tlvl$LP=~aKTL<%g<n->&VoH>%8VvDn2tJvZ^kT8qGF4=hdR?gz|-Ps+r
zY_TCeF*g~_#Tpdjo4Fu+n~ooVFs6R-t<0HXf9<+2#O*h4a=5jUj7&A7i7N<X>}G8(
zi&DDT@dGz-L*+g^A=I0F^?moS(I|-$eSBwTI|V8r4lHy>50`BSJS(`&R20c9dwfM<
zG?Y1WNwld+yNiZ4eLW_ln6|_y=qB0XN3icE=h>gE%0pSu`u+D5wvKZ{yx7FXwccEx
zZ`}o)+Sd-zPRN3$%@58VK>L}^+SUd~jT_(m#+SpgaRDrS{}W`c#XVWyG&DKy(KG;L
zm%c}0-umo9F6<Sn*IG*F&vf&Ied#5e(fe1kKX8}J^#-~wGya+G18N1+w&Qjh81oug
zk5$UM7_O1nc<q9pqi}1{L~1}9uHJlrlA83*I5*;?oPP=U4TDM>n#(^9&<<O&gFE4~
z{r_nTZs!I?`wvs*a;^*%LrW=!#(#-1uWy1Z!F7Mk<fclt)Kd2OFBNM5up0~CjEsJB
zofAcGt1@ypwNo^GgY&vFy<jR+cI$Y}t{#rK(WL4j<L-9dCg-)ca#6<rc|1+dJF<#&
zm}I71PNp2@X~!FHws&!Fu5<(UI$I{$;ZBEbpA)|sZY4`dbIoM5xk0<eXS}W-ct2wl
zzQ>zAHdx<&w>>+u-o|>vMlPPf3T>-iK)PBfWOo3H7UZ^(-NOxRknV3()G$TVkfV^o
z#K!;YFs6w>DV0m2nGf_5-MQ;X2249TK69e$Ui%f)F!lgrf3o8Enhl}4Dm~8Fdx+ay
zMJs5|>QX7OCN$&`zY~*y)$BMkz;^!9l4#xYQW<Od?(m}%cAB^JdbObdN)hz1g}toE
zl8t6xP30W2)Aj(qvJ-Rx0!F5#x7^4w8KFNIoH0!0Qe(1HSz?N=qvPy&{fh43*Dsj}
z6y-;R<5@SgVCnlJNZZP8wUxfp1t|!Y8Yx+6#kZKE^}G1HrhdkVuI{0Rg$w(3*2)`Y
zir=|pxChlP6PFn}XRelJH2avCu?-g!#b;aDb2nkB6*H`+0Bh{YX);;0>1QVJjfQE5
z>i38xQU+>qLV9`a2-dV66v66Of(4%(Uc1Ya!618R80qX8mz=qXFF{T6_^wy(i+xP1
z1vuu=3|NK2tk7y@oz18O5|i_$SO1Dv#GzWocb!{()r3s<GVTM-(}=lIJ{N1d_a*O*
zEIQxPv;PggyUwUSVM3<WRT)y9@2FI*@!3fDO}(+0Plj;xqbBESo{)Wz${H;OW;0lb
zHhQdE7-P3zxs-UJPT54@g3US3dGS+2oOA0Ejb@Z<ThvYA$6|zY6kzYVw{(o~%kHxL
zw{XQj9arRYX!80e9AE9v2mG!gHUpmz=%=>k(J;_81|AF(NAFNY-+K+QM6xR#2TR(7
zg2@stO2%`{**@MEXF8}%m8#U_h3$zUv9NW1_LhAEU^db$&a{pxTponey<=q2<>}rb
zFb8hB^SEd@-)7k_txe5)NBK6{^P6u|xmJuus3aq0t}cMwt83@-QLm<7&t8T*C8nHX
z@B9%a2*(P$C;WKFwo2nVqxu-hNP|pvt6qVUdJ)GFjoejxh-b=`NPBJd(IzzS$pT19
z-qjB@O{0)fUrUd7`x<WWxD&i6jh<vFNsWWNI6fy-FbK8GJZr)!Xp?gc&;FSHu}>yD
zhN<~X#UXmB`_si@>US^w0L}-gt-PsRsMie;3a{8os+qaDwJ!~Y5Kr65;E)0xyDT|v
zQ{9c=t3{?!p9)5hl0V(mSp9OaU@Zre;mH!qRvUxX>ZK3^BF0xAV`~nx^+p?fGW@9Z
zQ!?}iBEE2Z*U6xZX95yBIh@{SY%xA_bme$qM)IqINT8M>cm!5Z=FtjLVuUgDy)?gK
zEIMU79yIdSqh`|#^%rv_hhkyMmu81h>?n2_OhH_AMU+wYF$Z?oriJe4!NJabh}24a
z$Rw>9y}<dhZ-H}JndtSKatBg04_E(%OrdZ`D@|n2^T3Jjxnn=Qc1{o3@QlzEX9y`V
zhjuvmh#QAVYM?OZKmG?Ox6eU2<|{#|kJJ6<UT1GK0B*!~w!sD<HAqpm+pbRZ#;2cQ
zfvWQe;6~XVlj>>`_5F#P%vE!dE0BsgkF$R?duxygQDDB`2y=*!(^iS9X7ESy(XVYz
zkQ6*cOpRdLNnUtWdF-m>v|2)g>XvlxSh+fR%^vq@A^F{euRD5Z&;UcsF-ctNh5<_{
z97NG28hmW(jB{*Yi7Sp5=V+$*tDogKr)euOXUnMNqn4U+_Wp>P0*}^|x82#{@GD<3
zB5y!SOv0te=BTCAeN_s$PHY({VAf^m&uf9nyt>cpxC1z^Ch1gw<j;Sd60lpXQh_SG
zWy^fAfi%es-^>bC)VR?7rTWdOlL_g5gf2?2cDjEbQ%vK5PtL_6>ub943yHA+59RY_
zh~3CTNkk&zs&W!G-PowOG1~+SXyK7QYN8kX`t2B}5^~gX!XjSNNHM`Z)*KePeYP}%
zED(%jE-XRVnNHSNaNVXmx@Y}cl(@6_tl54o_pQjcZMzrMhD0Fq%}Qfti0_7iCtJ?*
zIB}&i+A<}1%Y{4pHJl9~HRs<C1cM(<oD>`Hl|kKoURFS_G*Q-A5QW~Tis@>uM--}G
z-@>jVNGMim*E$Iu=xq`kd31P{qmep7gT9V(*OPe?c*smb#eTFESeTcQX20h(is2)_
z1ZR{0FA9ZX!~n^MTF{r)9AE$)RF0lGMX#Mw89;MJhixNGSo-;fgeq`!h=1cL^rvKZ
z^xS|?A0FUo^z9GK6Fb3O0(TjA3l7;77%%UQ73N!6zU}{r=ZntEX4G{Bd{8ffq%?_w
zL{<3{c57t)_@11w41@O*uHOubg=?>moN&qf>l=&mBlL|U@Eeu?TU*0;lFQIfcDiGO
zYSrcSq6>RHR_UTy{p0$fiqn4WSQCkq>6C$;W@QCx*d+q8&$rtMnVHq2SET8jli6YH
z^H+a|mS&h;J%?pZvBTJ9*NitXGOg-r?80kCA+zkA7+P)m;i{d8Rq%kDy4dgUj`sgl
zG@FEdS0+h%S>IFXSNa}IKi_w2j6vaqfif59juJ(s^Ciwu38GHj(c5^@`Su8)|ELyS
zoGJSumwfp+how8Zx2Sw~^vk0AX#8x5pTw{i62EA^X7pbs+_bN3&=iDRHU9G>^xrpR
z+>OYw@IY|sguYE20nR_k1qv!10T|;Lm4RrK=QG=ght)_7w;IUf0ltQ*vr4^2ekGBd
z!gGs)N+<({sh#6!XU*Fw;uhLW26<PdAJNTq#hFBwYO6(cXi*O>_{w2$Gh<iOx@f#%
zNA*ZKIyOc9t(MvNUZ|W@rl^6gOi}HMJlEU3ZR>{RpJ-JqPk;QB2GHN)Rt4*z(DdpC
zmG)bkGB>sAsZ8G<wv=}wBR*{;Up+O6v1O&`fz#aiyr?ysNXTHI;9QE$L$;o68RoOS
zGf%|Hx`5v&v!jHpy^aQzigOR1=v{4s6wAZX<c!^TpPX0T`pLfR&*!&4>Mq%_91P2o
z?-7_#pi%10HGdjQ;O+zyn4n)S^o@_Zi76q9^c{+U9^jYA!r6XvE$~OzeAK%>`y240
zMpvi@`<|+|lKP~om$+p3eU$=^R)Ztng*mQNbVpAQlXkz`-fitCBJbCKZVP~HoNB&R
zTGzdfT{^S1vCr1wU7QYQ9bwDK>P+(OHE%urC&^Q_kZYJ|ip1J5VdzZ0P*WORQ&-IA
z(~A##2os0qs`;M8_t7yMRC9sd4!4X;82P&e$#bj~fhU;GFfuUL-*|jck|)u@E;vGe
zemJ&C9g8_fjKWCW&PC7Be9D!_1g-$mIzb@s{kKjq@ek0T9nSq>`B5bl2173e%Co1{
zxpYKum1pvOGuFcrJrl-wRvI;ZJ4c+RB)J@jg(}&8b9LiNcQ`LO<H;eh^6=XtLzwty
zyiEa6OFceVzdpV{8LT+NG<zH-{=G>7K6emc)OTfKe9{==ix$z3=%|VRU-0=w8?Y~0
z7)wjy=2w+!LXb+M0THHgxu0YA=8r=y|I*};mv{U79s$k$gT8R1ZhHL7$)40p{C$hR
zU*_*y{rw8=b>dMY_pF!q>NWW>e|HQY{kb_8^!14+VcFtpzuop1xtC$txHo;$%#wW+
z)^(|F7g=Y1J=4zWf+HBF4L5Z8AKGjj=d^$Wgh-HOZZi8mc13d9n;K@AShlOrF59D^
z*Nfs_zgf`hELDgb`qExqS6!6`<}5K>kh$A9D`ToWQ2!YvXDEX3WRMRY40_)@P=Pvv
ztb7g#HGDE8uAXa6+Hk?mZp2dNHUz8V==etztX+~lL-Tm{9UpBbea%r^{*NN;8t-NN
z(ffaKji+VR#3VurY73VwHW=}V-UzWK5lFNJw7RV1P^}l;a)VpZaXSE*wHaO=lllp4
zi|UPx_PgF?wv3U{N=cCuiFq;^PGg`hFn@s%q%f<Ujh$W=D4zPf52XgXkiRt30m(i<
zd12cNk@H4zqBusXjGIRw580j{H?ad|3EPXZCuv)M&cdEr9%N3hRMn2HMMx|}VAl>?
zi}W;U;gJ-3mtKX5o8QVSc2`=8{ny7jrl&;<W_1*AXU`!pRgU*l;Ll9-twrbh1~A+f
zfMl-XLFsn=uDGB;CG9P|qLKvL7dbY63jTknBydvW0U62F<7AA3>Bn!zxbX8%vsO1v
z=#L94j@nPTY8Sj;;Gk9dp|~;wYuCRY^Z#Qg?dt|LlMXBX_<AZib8+@9=4+!q&c3Q?
z8{8Fh6RQFor2jj6inE=6?i~m5etGn@yZr_r5sX5xZ}u3~VJC6(7Un8_oycEy1rsJB
zZ_jbbjB5M*$P<n~KH2#b?vf8&s$CIB9hvNG*X_Is8@H}KIoWxID)g|m<v0BJKa2J2
zl9coZ*_T-Dj;6h1)45i6xvCp?_5hyCl`n{=V<Dwh%%8nn@s_rgj=%2oZic_Y%&kVq
zuj<blC;Q+u4xyALeALe&?07gfal>0~l|!hU2St%k`le>3Y@&<*(W_Ht*!W6_^;q_@
zZfO|eR)3y5yY&-^ox?RZ>zBgiz7~d-wy%|Mqbu4#>PrhA4FRi3jT6%E2jP7#o|j)p
zX_4mDrvLVZ<rBh7*}tacm=L#m;^56Dv@fVSD!sIJ&=PjEC8z78NJ%B`Z-<8+2k9p(
z-4So-yXo#J%ZPkTccybJGTQ#JX>Eqn$TM5AefNG9Gd%l=tD@AV3&6j_sC^tqF819F
zU_*@V_vaX+WxL-ZjG~|=pn^&@OmRdzaPnN=#X@yTo)^lV&$nduR|L{}Pm`wUl)Yrr
zf|Hc3ip~)WWHciU>(P2PQ?A1w_W_<d#Z_v8u^&wNRlYy4Ful*Yi3R|PWXEZkW@+T2
zn}>)BoPcdHYr#jnjS&Dl8uWnMNoKRXkzP+S<r}qJlbxV1l$~-I^Y*#B)PS5-Wfz-u
z1!EsePMe|8k6^dyGdcVGvTY{!d3z&P<UA~bh;yjzIcu&p<mI4kk;H>Zf8xr+_5c@U
zExKTbMJ4_DO0!f6duo+oySoQyBzmXUMD%~BBb$wcX(gNbE0E9e)ytf4+7TFSD;*8*
zbj~!BP5H-c$A51Zck-PDsDY-H$NKZoh}k6^5&|KtM^~V0)s_1t{$AyDzs%ov`}-CC
zKCbU**E-n->3p?TD`K2BMGnG!K8~4NmE6<IdbCfK4pj3)Xj`NaS+01GZviffgUjZJ
z#HUk;S&5!GSfIU)jrC_OpH5~<`SB~8FsK7?NVMw9a!P45_{d_bL}~F@BPM-`mDXHM
zTx>S%g(F<)*c@v;kQXhKKKj@KLtG<3sYY9|>B8@D69fH-4hcS8pKZpYiZ;qX+P(Wn
zQ1bM(_{jt+5kCov@+sy%tkD3U0vh72=nA6g5;X+U)J)mq^Hl@^R}o5-L?;y%8Hs0h
z`vyfu78a?Y$hE7>td;2F3pISumPzdSHSJL)gWb5+LhebY%hRV+W-5mAItb6I3c?2j
z8fQLA*c7ff&??xsDo?4BeH<C2f2K0}UBhn`%v@ih|8Er+h4=Eab@l6GKS<8_C-*@(
zt|3$L`(4$+tvx(Ys|)lZJx#ZnpNUt)pIfb0+t~h>;y}h9t3b%X$`zNonqpwK4u6kY
zj+duYSGBjz<>^L2rfm+_%n1s|!>DD~?768!qcK5wnZrV5$0nJ?*J#bfeVOy=TL%<D
zS>}>Bphi`6*Pqz`^|v7X35V!Jw{gSP+rF@Ep+HL;xY-6X4pyMm70B+-qd~8ve<mbk
zH@5d{>=Yh5E@4bmZ{=2-ZjFxPMyK}BUrltFZ{dEq>^!N9_Od4nvZspWe%uAi{T!#n
z>5^i70>53cKfK0ZCJ`?pRtK|N=#`uRw75`Uq5P;4xHQsA!eLd9MPq5T?*ZRrKmIk<
zR22UeN7m5*Eg)TS3}4C}c8w1G*oADlgPZfKDfjnD$bcX^_;nZXJq9vc6G|^ob7qvn
zvZqEklEGB6AAFB*os$hlgF39OuH~SX3SzoVSScnN$$8heQk}0fRH%bG*1z5@ij?xO
zDyleB2}x3CVhq~GChD~Kbi30zH}uj*Cb318nA0UBAtOKKVUW&5x@25Jk;Z`1*v+6c
z#M(%sb1R*KNyWp#8Q`=pox8#=ckP7Z$0!ZBiV_kP!`EMKaf73pJ|v7m-SZ6}^v>=r
z&dIQ81T>Ud>BCde`o4!rMZAOgPc#gVHG3|Fx}(K^D;#ok!BpPtXR4_mJ$F^dMe$r%
zqK?sxM{_c^AP8$+<TX#cir%+HJb;L<dCd{;DPaUP85qc28w)?uUSJo*+6K~NIn(UX
zorKOGaHd(Z(`<D5h%rItShUyh@uh5aANz9i<(ZPEa^l~904_ocARMTCoq0$61_L1G
ztq&by8d(K%f^SRDrXA`05DE?zbCv^}Gmb2{N3#!flH}T$0ekjcFS#t~>x!1$1)3%q
z0y}Y~3nIk3ck*U|5ZDiYwmG7GCB|ctOb!2eQ|02}vR61ziN!B?4G)f5gxAvOB)``d
zHWmxQ?PK&JMd>y3{Xqwmp5jXH=1Ut&D;;I1Qb*~3JRi61jl4Dg(FPS@Cv$-l_uNuo
z;7()cqMUW^;^#K02XR&U5uHBP&CO~ACn_HIM^*51X6cIBAb`JU@?+6P9pLDHjmh%r
zr~qGd(&hY{?<joIwsMWNbEn(CfPb^f+KVHybO9$KDf-A{rVb1t{3wu0m1<uA4m2<S
z>}AJ*A89@V)v4e_WBfEn=TbBhfY+&bCDp|ZOwg+wS|9P%Z_QT^YE(4O?PXtoN9a;#
z-M;kc1*Ij&$<A-s6MghpILfd$3}_)`J^k8}4JQNc_rBv-K#b3uN_KoGe;`w~`@VZ{
zkqIRn(s6?xhGoyK8)o5=&a14DbX%u|Ox#q0?c+m|ohR@vvuWGf%g#IdT=I}P{Jpcs
zG-=uLeP~n7oniM>7jy<0w460Zh+u9ZYQnSqW@|70A)Z@|KDJs47+*_q+aPq)EZvkx
zkMhltzTJiQ03mcr49Q$Went?+jKYH}-;h@G4-`9|uFiSjScv9n!Au9p$H{?UMuk%0
z#2_w@&bh`Bl%9er$#ny5m?JjXeo&G+mUwBOh_j>%+CqOdIPxv{Reo1f$1#X`_6YrV
zDE}Gj_>-`5n)jZU9l`2@G-EjDgLhG^7vsjup*3D@TO<}Hny@t>$F3#RY}gyji;1Ec
zSLCxI5cIO2>P@C%nqA=5?1jjSb?&Ioz*E_8=@|oT(YQ>V#NNB{O=iMS+HUb&l$lV@
z-4yN|F1tlfMY>w;>X*dBvLS=fufi?(Xz}<MD-(rSsPA%vBCBt;6Pmc+UG%L7O~vDH
z+4LJ{%U<y~f76^F=hpf0D1o;m+ej<<XW3ot7GBSuqF=xiJ#nB*53b8Tz|@HSPj769
z<?iTxJca(a?~Yy_;AwQlwdkU@;`0Dt$QqH_;vdbMgQd2W^%9Nroo;IaDyYsxrNbZ1
z4f_qVg*Y73jzg%CocEJ1M#O2#9o5|08kum}(p6Wgl$E|s(@&<?38yV2=zN1*FOIWq
zTSk>YEY!1wLqw@pZC>x!3;&hk-3B=!Rg$enTM_)17VW~(je}$xUrcr`v_-rhme+FZ
z&-l#d<1;6*7w{S^o|XO<Ka%qfeRiu6wgbNNDpKB(^QKgfw*Bx=$S6zp=JF%cQr@<H
z_>#|VNlrT%W!$#@@NwBKl2dm_jkT?Re97$>COb>{T^lAQRcuKrEWXcELQPn)>IIZi
zIQ+&EPLZbVZyd#@3yu#vS<>7<5l(w6#Ua~_KARFpb?}L7#{_S~)Y{E@pf~{r1RcBF
zBXoFVhoi6aO&&<EA8*Zv@D?ZMjo!!x^KmmsVRwsBD?VA&Q>$%}h=>rHmtoo0LtI27
zT7@sJ?%-{4Ii^e0lj$-c;Z1{KB+^r#XxYkdFLRP{&7?~-EUxA1K1`f;mnKp1HWeF;
zUs4P!&iv~pyhBXFd~Q!^)OdjN1@myINx|W!OR?SdT>w|3I;d13@seZ&dvHRRH$>*u
zj2F=1bf<~n!GeH1x}yf_ah~}%)PmQE4VK><kled9V&KW&nY2M2`uJ92u_uz9A5d>X
znp3lGQ~Tl<hpWKtwDl_6TmLx7mZK?9ZX6Usxu-$tb8I0|{@@@DqK3{(qEkl;O0(Sx
z0)(SmJ|8C5d!M5&^3ccJmJLm7EHFnc$3E$p=Cen-A*0l=P({t|;+p+A&01sQ9A_R%
zdyLrWxgpXJojrW`?f=pCCh%1j*Z+S|E=1*eLp2(!XjIhT*3g0lg&Gj$f+)c?F4ed;
zR@4ZIM5{J2iR5~DFjlKnQL&5FO0BgDZmnS{f?5UJD(<^J*XXxstAbSdzdvW@xl0nY
z{r<jxUa#=nXP#NkoH^T^IWzMIvXPwG2;n+p0n#ZXW*)PY!6ycrCEEMZ1JbW7@m%s&
zguZL};n=G2Qn2zX^=0&u#<Murs$oah!Zgw-yQLlsb4{jGf<IyidL*A^ad_gsU)rOo
zpBti94$d)ShRbAhc-A=UPxrOfRD4gh!KqNG{OX++IH_FK8?G#@Aa5Mj{oATPC#v2f
zY!EGE5vHROT|eo{j}s1OTUg?`i@$S6Vzy=&Et^i;{={3e*qWzok|{l~r2>YnS)j8g
zwsr>!ns|v%4qK<29`WKMi>)a({(W|5SJ#~zsUb^DRp^Lb*jf*KUxKaQ4*ODUEyY{|
zz=NXdJ+@xqB8eW@Qa{Og&DQzYI_0=^k0;vy4cYMNfCxjcM)aiVQp=__=Un!;##zwQ
z-#vzEfwO@#2cg*bIDs9+4y4-56Md3W;>$^?zk~iV>c}EzcR<e}XP#^2Bn<$hG`BY?
zRiaA1gp_{unIUIqs<#bY9yv=`ugfB5d#J|4FUCVzVnvSK$MxzhkF4no7^%mSDtXm5
zOe=m&{`+ILMI!1Ba3ulip3#;NuXd2&J6kk`Cho|f5_e!$l$$xCQf14Uap^?VB2iTk
zyLAJ~kBUtZ1+mwja<Aqa#V9oEA*+ufiS)x0#nt&*=mCSz?IrWNW~GvVY=!g(B@yf{
zmn1;N{yp`FWk(3FRx#=}g$fCL%kGn=jP-0MtCR~0ti8U4@5#n5S*Ax>)M^Ns%Z~hT
z{ota^!*)LSbzb+*cPmA``g$p6{b9pbO+aFent+@ilZ8r2=4UDj?_rCX!vv1DJ+kx@
zjGRqNjC@gC#5ZN=NTa~aJz5{5)_Uf2oY+FG7*2zRA}YsFCr7jhR#K7jru*q&c;5aF
zAw9~3Z@=%Ft`e=(C8<M&Mqwwf1v&g2!_SutPd@Sh?1qNFSmsj=vl|rUc5<`T1|=tc
zRA;^WRJR*e?+}qM6=SI1=!WT#@?`q(itgEuQU{mP+5aY`$33Lqnc-R`Y+J_9WO_z%
zqV4zg>yn77MUpZ@D*dyHCnWR4ubere&w>F`nB$jp@AHSo&-WMXJmT-?neUguWmS|m
zohE%P+=>}Ss7)ODR+}vbi5X-}=(DpbhIt%Ut2r}X9m!;-+0NVNGKZ_{sb@2zd2+gB
zd1mduY>jj|kMPBrnC55m%Q*?oOh)?+g9$^|JLCL3+QT^SP^+nhL!0%)IM>s&%L0Ci
ze&*Q|JN-Iu(tT6Lv(}eHb;;CD7OY$p9?<QE-(o-8-q(Cu<f_#NSH<AOq7yf3eY0OP
zYslj*aw&Zhv_j;-uQb6PUrcsPiV5;?fu_ij5X2X*j=TdiRykLMozg+hDxy>+J#-)2
z9#q2XF!ySA$*ySD8?Fs+jiwk4s-`c|0fCx8o+nVLtU|ah7d;WrK!yLKjt8Y%e++4k
zUc>#W47wr3i@nZp*%~)nYF5sc<w7P#vN?LpN8xQU7Fc0-F!7!AQN@nMMpz^>z=0&2
zqR{nlTP!&NQkC6`4+|v$I=m_aZXu333K*3%*$?vK4l(Za-X%D}a9&lOOo^Mki?KLd
z-^}dMoo=^)vdsVbf}J4t^SJ+UOI(Nsaq#dcU`z(%oA9Jg!E>uut42OIx&nQ|a=s}X
zG4i?vJ)4@px;L7_$8N*}eqRAd4SnS6W9%aP7#az0V~VIQmuu|GdXLbqeO5^b4*eOl
zqFJ=lFSEj|UC{i`QymFc=}6#rp6(5`BU0$ch?M!&hwtLum_hl1j@;Ep(eSW(nDRm`
zOXl$-tH`n<Y`*+Q7yr6i7>6ZS8s_~IJ`9C=J8wPFUZbpr_4sYG^0$98?<@-EusJmk
zDJX&&2(baHwy-kc_oqtLu`s1;sK-!%xaMM8n9()Vx7Lf<>>BEIw5WfiX5MjXc)bC~
zDXGRY9=Mj}f?0cTPp5GB!8}IxQPBb<60wZuys+wE=kP(HXu#yyQz$G4?VOotyR%r`
zf@Z@Fi{;INg5fnuarEx(MS`Dt((yw|_u{9d50%sz2ZcAh<GlJv5N+q1BGM$2Czhae
z_T`e{#K)iF0~hIjRXGi^CptY4f)AR?1kKihA&BpPsnE(cqsOW$=qs7dcA3nvzD7IU
z5F!Se&YSWg!NUW6A-yPNnHK07K?_R6??HU8>G?rk!gRh=GFb#aAx6R@&Mge`dc+%D
zQ;WI(c>n_k)CUM4UDfL7M6?mMdonOAm1rnBX=V5`-7w4ip|7dM;1C+}8-H}vbtEVi
zL-wkM7>(VbjP%b6$n!hLM|cwUjBiscB+vXhdFI!J*Ae4xF&<Rq6r7LUC2NtgqWF3g
zIW4cqdNqcov8)<wiOcYyDy7Q21CDzvi*dW$j;$LwFLf1Z=@NJFa-#iV-V%$e-QmlL
z_Jw*~RBZ<^x4V0&yd|1WvKU?61Qj++gnEZESyc<6TA-Wj^rRmpf*YWUt*dw*Y%l|F
zyl6bbRp%oIekE4+=1%zC`yB<R<NL)lMvb_+T>P!Ow0DVOEgmt`D17**LYn*9{gwvN
zHRU4*A`k$nSs(?aH~vVmC~_6%w$v7f{oi#gP;M-s%X-raD?xj`khuDBm85ek?P;Ox
za^Eg_y?=JMYO0}_Asthk9(hTBKxWHWt1`2h)r_mu2)@R4v8LfnpmOAId>93WdsDGi
z16LOQe7zuIu~?(m#No@(qSO_qFsEasYNV?X2<LdH5}9biDJa8VUWdf2_ES)S5dK6d
zv&{676&8$~_Rv6jHNvZPV=au6GPPbFj;M5uW6V@3jW#N2SfOlYoz33-#hZ4*fDf8a
z?<mud03y!V-HgC~768_44taf}<ujd(K|C5h$0M<0a6e9!EmJIC<?UqAz}+E?Jyul>
zjPzWRLFftM;l)0BD2PAS={Vo51Z}N;O@2Fn<QTEm4V+K*2^=U}eQGn|a4c-bp4bt&
zmySPT55Jo@HMuGse|$3uuuG)X_DZJ4V>Dc6G2>n<nbc-Nu~G!=rFD4NwTS6wRsWH=
z5N{LxZzmX$90&R6L$KgUHa!htRLvsdBWBl9ZywJNF!DW5gn1g%3lkc~DlUwN_y>Up
z1HGoy;F1c(LcC$W@AGDIR(=$rJe>SEffjFED|7}!t{SLnPpC={d99y%%Jo3pSJ}l!
z%*XbttTEjZMBo?d!-hX+KgQ;-kV=zjaz&lCX(G!gkyzAxCl#=9VV~^4!5>n3UxBu4
z*4*(f%k2hH4YREK66y^1-Vd;$^m3==I8UzergXotKe*(a`o^F1QAJDdDvq}*vVsai
zLK+6~tL#$ps4*j+{ql20q!+{w*nTT|ja75rL^rj~A5Cy|LRB(VmL76-kq}DY_=}Ar
z8DeO)^klrm9D7=oE}g+g;y&VttmKMu7xv3MV_f4<ANIcn3JUEWyVc>RL_{W2Yo+*C
zhwmvo@;v1YV&`A$sLDc!l0lmvaanJFm?p>~5_9yC+02^IQ8fS|3n1z&Hjml9WmQ7)
zbHkk>Q6UtUYs$%aYK~VjPh(|?-i#SjldH2I7V!a=&D_nCfYR^q2)`#-m*uYcl28kW
zS#MTmcK7K)Y)He_Md3Gm@;jQbdpd&4(M#a@{$uhJJMR&=Aa8#+3juUTTqJ)rf!UFE
zjz+s>R2}i?7KVxNmxtyVZj-4d9b5B7g=DA<x4oMBGTbU({*Mf|_hw<Zjkwwjw{&dt
z?M=@7Ydao!P)jE|0}zM3tb?8+<&3jH<<34THn%{1W-@R7>Cc;(CwbZTc@sjc^goli
zy?JQ4bqu*zH0#Z56w{7r=95Ql*7`=jW{xXwck@j~VG}cAv7Svsul_Y)h6{h|RIy}0
zz39zpS2CYI%4LSwY!-$!iG4&ssb7IL`$+2@W*o`Zlw~9lAq`V2ecGvEc4kqReg@7g
za%wg!)-FTXMrM&^1C{eE`y)da*z-QG1G7aY=M}Lm5VRGM-WOAZL%*x0P2Sn0&v$`2
zU``v?s4tEWoSlac=;WD$a4+KfrqlJ#0lw;$d<E3Qbdc*rU2V3fo!gBAz?lvWGV-w-
z(jyQ1cLlv4!-c<%m&s=6u-s-dbkFc2Kn*&EW|rL~9HRX#YF5@l!@4|c0qO6o1w_59
zg?Bd^rJJ?j07+zyF;U?F3olaG=Xjr@#=|p7>26kg#Bhw<^WK5<;!8}0Eh@g$RH)AA
z&PD8h01#%)Gz}iAga}Z#V>JNu=?cAza@Sk8CAVa`UdZ-ouT4rU!@|O?;VK+HLR6!1
z`Y+yc%xYPK*uNfhuVsCe3}TIixtD%*?umuDJHH}#c++X1Qny0%^dDJ#<w-GmS`d#T
zAtBP#Ki}I0{1j>+MwqKJwAXpB=@HyxZ_?av$(zmiFvbnyG8Y&EMQNHBt*^^(#*3pT
zqZsdr0>fqD1t&NbE*A@9<XMP9<RXafe~46!!PBu;P_%Bq5m;rI^?U_u&y6b~;!PyQ
z0%c`-aB{wyvcy#9YkW(WPTc@qJ|pi?hwEgsRS&xeBc0)`kIIb@MexWNu1#`qAF*VA
zPDx{~?tT*CeGWTJldxpib#N~k|G|2r{2!1lnBio65UY94(T0P?PYH$Zp1vb&l0kHe
z!HAF$Aw{SJ_rz<J=`&?B+sSGTVtdj|xF_Is|1>#_<E0(O((yO9+KY_7Jm_khZCb#K
zGWpETwuA{j(gYqB?=hO;yuUbg%^R|r*>SO83SuS8)Fatu*Wd4ad)q`+Ko0e68BZdz
zHAln9)*)8uZ%72c%deKtsG>X(Xuo`LBfq;oeKAn*q~c%ynV7qfpG*cOsOJmRngHxi
z;_y{~HAardjFO|%ZX!@Wc(QL$&srLR+I^n`RgHqT325M2o@038a;NwChejNE;)jG=
z%==?L8KfBL!;W=?OJ;ux1R{|mAeg2UOLhotfIlewymZs1?mJXun;u0VcFV>X3!Oz2
z8x%f8_6*Ze8r{91QTYiHq}xYv3lpeoR#L2Ov$Q>v>ECOXrF%#&NFOlz*~`v>E34EY
zIFjZ^&^#|y$uqi=o6}@+Y|*-di!M7bi9qPul>Bt9RqE=BLW)PPy}X1TP0$`W5MwtP
z_FI~=_PXD(0$c$2a_ZUcYlp3ASwi!61GCOF<AA`iJW`KmzQLn2Job@%6n2J(7QDOZ
zu(y{*P|TMO+5&nNy@lr-l?$FZ*Y(|>(cS*c<wudVR$0@f)2u|qAyIADyart9(lb9c
zR^L9EY7wjB|9v<gBIE7wAA~V7hi8MK&QZ3ex<AYpkczTcKygiz?yzbuEvP0Oax&7l
zgLT2kg38%XCVx36UGkSPnJ&eq|3Gc686gsZL3M?c4>A>RSJlam%Fvs#qtm6k6w^_K
ztX(Zm&}EH#=@Yr((xZ-cxuGig!<nbeJx;Are`PN0xXSXbSmoG+2K{kS7Wqak3;Cim
zo%YhnfNRuM%B!}^4^&eWm{t$XO{>olNn);Z%(zpX06a_5h_7%XE8qqLtkPwuqm@sN
zbBD2vN~WOA3eU8_#@jdj8@)mkr(@qX!4=<K4|w0YR}#K;ysNf0drXM=(^dW%@6nb2
z9O3P*jDv2c)n_P_1;*F~F04(TSO%|BuREed+!(&So3DOFvup+|SB2cQ+X1Q{LD8C(
z>?P~=C^6+cQdHc8At3*FfM6Bv{&uRTUAtB){Ne=2BZF5YB9DB3@`R!O{@B+Qiq!Iz
z_s4pIF>_HmD}7>dV$qDvqJAU;giq@`{n+Z)FLB-G;c;tRcTgJMjCP8Sp}6T2cXmRV
zx(KD2#+G+UGIlXKKC$Qz6`(-J5VgH;o)UMiQ2O%z?VA!;&J&GMtLY2I%%W+2#LhHX
zfCo>~^m&`~!7ZEYWKwsnX1CW8O%Yl8C_FG2?)#Xd%z7x(<QwOX=t)GTlW#!vOUmo)
zkwkE#)#Mi`XY@yN%+c0iM4t_3xb+L_oIA!Qo$RmPC8ZS+r*q4!EIp-z8e{E~-JD%e
zI<4v;%keWKR|STm`J1K$6YIyd6-`J_tUom9pg{AuPoJMKnwpjh1;Ol2!$f3iLy5I3
zTwfR^rzPlM#2dnP734f9d;z&Gjyp&k=MHl-Q>VGhnx~$XN4vuXo1=tJSE}MDT#Fp<
zSb~%njJk!0^B{uE*jwhho>)}1S?g>4#`J60(VKX$sVb&`U3#`G7lv))k>S|*&Maf;
z_8&q6-75tzV=}G6$!fo#43;%pOWW{k87vMz=(R%mD<y>5oXgMjkbJ(FAg&Q+LJUW}
z+1joe&`}m1F0+yv5RsAJS^|=nuuqr)t59nt(<r{tuUu~09Ms#{km(aVk8e8^;usX3
zMf61GTG+PVM_!+;8P{*+gw(`(+Xq01=j+~g*`Zd!NO*-PGl)IB)){ZFDLsgl-R)lc
z0*=cZPqkV!o>W2ho4)Ps5c4;EOLagI*l^zX#_bfIqhp(}$~%?HKR;yi_!$i-u^b>o
z8OV1X4@ghYoMOPKB|o`kcvwH&T6Sr)l}$o5JGd{y1Yb!KIncK{Bp-BJ2=4{@-8i)b
z`W=9yf4=H__*n?LGLTR1eGmFC%qVuC>#InjI2`-spzrn{fZm6Id19$&%IuB4#9~A<
z6qN2we|EfOQZ-o&iH<?zwsr#&5~O|AtgmCC4g(&7IW1}_X~wWjS*vtf|8z}#{${Us
zmB?r3?F|N@K2pzl5^~FIwUO=V<=;{LWkV+OgiLt(R*oHEgPb_Ic&Za8SwQbt{?4Y%
zo+vUlVO7^>F7!$=qS=E^%^&y)0=Cz{-#>`dAa;wQUn9N^VxRuz%b6qm=qPmI=lJNd
zx==sPOh*1D?avy8t%Ssxj*}2usa%9xX`I9lYzHXBC`_7m8$+TpwJxt%7G6i~-S_sW
zFLC8DlF^0x3#qEs1l1C&!Q4nPH0o48f``=zEkD#G(=!owBe?Il6v9Se7jwcgTa}P~
zE2@gI5G1o~7OV+y6jd)7M@=^M^|8xk;SE#Wuuvz9{UEb~rVXp3>_=3(QuR>Uj5D!@
z1gr5ysShaErRUJjbaYfJM=5vz3+tob7ke7_VEx2D_*}mQOi(&*jpnJ4c-e5t13G|D
z`jO4;vMJVO-;)anU-GI(7Eu(qqH{o8`?e3SHuH{|IW`%n371`>8L;Vvn(pVqq0<=6
ztI1F>n)&z#_%63teyIkb<^3-8IknKQ5&I`>uu|#i4s*(|e^n=F_1Jw;bE)^p1*KDJ
z<(@*9&`J7ZaBER-!d+~=up8*<2+X+c-Ofo?V?+I(HR08fYwyNUf=cH>rMX3nEwdn>
zNXl`=3f!u&b9>O(Q_@>;q-n#ccB!nj7=Qd!LEwx(3O1m_e(-XhGmH_FDP)u@XV?p&
zxdb?UP}8y0z^qYP6<%;LNYp`qss{R&r;gUE!`tWSH0%YGOr{47WvYssbAmn=%Y%=?
z8>RPZcV8>U3SU-+yHZ<{ldWHpqJKa=Zdu;NV_7(BD(#$ZgH^z9i7Wr5Y_0ECi|3N!
zxuhzFPU)h0;CBxV$j&t&5cEG(44uQ8ep0IwYG59D*Mn-^;EFPqJ>bz)9RB(8LL)s1
z`BpFU%uLT!PY_GYE~Z^Z@35Go*fLcEl8qtEZyE`NAin)}5>pxz7^-BLIs!RRmzJAJ
zDrbC+$7IbGg{{TB3CPT8AUr(tNKo>RucBX@zdb7=DUcr?=33QN?eSC|>78hs=W&lX
zrBfj+=6O(_`n?ye;W58-Zi%yu3PCyHBAd0o-cQSi$E)sgT<R?Vj$OCQie~+C+La!3
zhMz2SlUXMPz+CBSNnXjXAa?Pu-0!;1@Tng8;+n+?LyW9eVjN<fq+ztAfj4qww%Yfo
zmm}iWv~3_|)l<~Z^B?ZJpYPlg^>g|!)KA|fxZK%-82&RixOSkV+&uBAq?;!yae-l`
zIht?O3Rt?d@vi)?cZS^s@5)3@rh=URSn#DYTvG5Jo<0Q%i1(y`9{gda=ojqo_2bXb
z8$E(ezjUZGzZ^gG_fdAMxj;eLAYhMA<soj1X%U9<3lUm-Qcu}KePgxrcM(>%`?;f@
z*-;hAAPGg{W5xH@FfbWhW&BS9`*jATcgR^EmruRC0vdVyFOEj4`F+GM-0zys@Rr{=
z<hnx{;d3WU7ykk$fdbMX`Ofg-f=vDXn%ZIXN8NXJhNl&z=kiY~NDtqe4Bmel;k^gG
zf1*KeeZNlf2wK*EAh2G12EjJ<KyknDyrmI}h0%jm8eAj3?W~q;WDiuqdE)20xw&*`
zse$L`Zm82*<WU`xm9ow$3k8~sZxBN|l;V{<NBBMwnK0z7Cxx_~(9sQ&b4)<Pmd%~e
zDiNr#k9oJR(E30+_V+iWZ6DI=0D!iqG;XP@^qNdx;g+}%drzN+*oU0xf<PI{b4r9q
z2CClLbli%>7q`ZJn>j&QtPg-7EO_fA{O(~6OW=j}{Gh&Z8&)99F0CHEJ%d4!A=oEg
z!UHDpd78$o$9UP&;+M+DJfW6o|G?8KoZ|*5NA?J9B*LzX9oh3%AT)orFe3Y1Zgph;
z6JJ$LGM%)zXF7JHQ9L7s3X1RfoD_+4G>)Ed?Gk4TL>C7kQ@Qco(KEvI&R^$Clw?Z!
zr#7-4(p5AdahFcH287%o_UC7vrjooV4uAb3#>d^A;i-i+F$Pg*%_G;t^)`G_-~GMw
zuBgA?y2bVPD&OBq=-LD*v_;>K!uUUCC})$|8N|i?!h^kU2jUe4Vz?0hn-hp#w-<C2
z@Tf31PndRy6TT%X4H@MM&Mqj}8O|zr56dP(9d9}>R{?!obSb<HcT5*8>OYzsrD4xv
zqFlg-d)*&lBBvmLLH?3ro(h>C6pqJlVin}WeDnB7VQAQ%HVRTht;;Kyh0TWn*SQdN
zo{d@v-$}p+xlIQVzy~%WnGTcj+cBAbRcE;hiD<%Hx|Uy{T7E}<RfMuQWScwb8TO<3
z?yK|K*3bW6+cz@Fw%>B-*S3FFVgETz=e8Fr6lTMHPf<M%DXISzMileXeP8(L1R!ZQ
zOceJ2$lml(mHaQ73jfmY-w;K1#OJD^`S~a>Xb<nDP*gDHI%^YB>mJA^`V#KIk=)jq
z#+RKIUG;9ufTO=?<cKkiH^f+BlAnP$Vt`c|n1O6|hCd(;^lc}kK^n?x^{I~Tn>kCO
zj)`N0S-s{H%<4m+S8W!^>wsCZ08Ktk;6!KoWhO=CvL5u5xUxwk*q1$@1e)qHcHoz5
zb*_CsBUNXvOHQ1CTA)rh$VS-3YQ_i~dEos=W#Q*f3g7vCgT2jXG-qhDpp1f0>7=vq
zC88Kp#q%lHS64CHq`?X5mnUeBiU^pn$;)UVt=u3H_lMITaSfKF<JY{14h5U&I%d{P
zGEP)phF~1=BhNHUAPlN3J@Q;~5!OIx-3d0;ZUQO;%Yhf2oSy}ckwF5i4c|N$(s>G9
znE6mTk>slIY0|8X?prhtJ*x6Pnru(QlJSx^k!9lsv4H+A8qe6!x#{!)c|%8RIKc|%
zesM^?x*c6pOV`{Wi{QYWvbX9un%|5A&^sa$DX2ej<+tUqFVM#*tFpN+q$5o1DhmZ$
zB^{dppUV=l>r4OxG!9T#agDI@x)@)Zo0GD?w|*eMp$sq}OQk3bk8oq<;7iBXKko(x
zyXX?eCDDGq6(3(t+m{}-m6Z;!Ezdb2X5l(drU;4tlS<-*aI;2th@~G?(TYtmIqHHR
zwZyxDFU@>|;|PUob0y0anV@~=$^*4lmnTz)8D6VFs;!E(U1y)|k}5tbt#LOUlvS^R
zSf_zl7yjr1?_mJXRp6Ohs&EBR1+*c)3u1qr>f>U9SkYk$3KbKAk}?)=io%f(JCwj>
z0$ebY1*D0HMe#Bkx=wcG-1HO=8u$Nx_PH$vR5+PS_iTDf=FNZL4|6?nm)G$HT(?#@
z7A53gdM<w|WUtDPe%ePR>`i_V7C^^$ju3sUiaT%5Ij$Ocd)RIDi~at(MLl)MR-#P!
z$Y<};+Md>$A^UQ=11W+u!X}QS(n7?IKff2^Fek6CgGT?x-f96dDxA$LoW&l=)avjO
zUQEhyuHkeuKh5s03s19L&xsk2Q=S9tqjx_|h(228%5a3euhb!@FJpOxLsepqyze~#
zyzRW+0NT+~HQ~A+P-dV?ANM_e{a!&d1^jf;e((}pIbFl2|LBd;kEzEJ=%kE2L>M01
zee&+6?(Q%_HQj%VSks<`_5H91Z&IHeR1Hb1W%bA01_1ap)*y=`OPw!IcYPofqf#Rt
z#NzWK8}X#E3X{!IZS*U=Vl2Qk7qp+a(p=BIWRMna8jf(i^LikBb024JRT^j`0nPhB
zoo(QRk&0Lb{QzQ7&_lunJ}6A7Xk&$?-#f+u>c!ZbV?g;Sg~|?$^?>&#b+<rYTg5m_
znsAJ4^MK?L%i_tLQqAYtU8ZDtc88<#d3H;Rg)O#k#dMiimOrULF@h;5XXu|^mCv&=
zm0R_R=h^P|aEN*#4_-9r1@K?ghkb)UK`aP6PO|We(N|;qG8CHlLLLKI`2ETP`{wS0
z7}GDeZ~ougyKHztd*Ay%Y%d)CZKulVpQ(83uI-r2+HX%C_|^S85LzhjsXskFp+gBh
zuxK*7By6$vvU+od>b|FNe2(vfwxaQ|QL*}LRGhG9{ENbQTS(tzjUbw3w4^#=LvQ=X
z)Y!EJ^o&2;$J641mp^<Rb;%zd>KXVa{_ypBmpenjQu4qCvEwFrLN;}R)+r%RQJ83r
zj3(A#nn_6pk67#-liMCH^isloEvPk!Z()@|=PZL+TSo6ev?hkG3O~7)3GLuykhkQ#
z?0U8369nCM23>S^2s(&rY6w*?ma&KSwKKEp&BKm;407nKEpd%acF3X_1EX0O28R=b
zBR`jLkaQ(aQUp>al-5bDGvG2IgCQkW4xdX-sgfIVYLG5(kil(ovq3hp3wC8o)(d-}
z4};h?NsmI7<qTC;3Dq|_^~|qY{VEH8_Gk6fZ-l9ey!nuWy!nIH<h=QH^5#D$Ed}It
z;cbe<TxqX<G#C{vcP7(*aQ$6ltTtDWEqv{}6wqnRk?<&>7xO=xqp0<LpqMVzum2*U
zN}G_KCwV}JD8gI5>q29}V3n~M|M~SSFq<_+z`K2gum=rwzI$-zCo7ezimqAsuh0Wk
zvo5#1YFYR#0nGOOJb=~pVp=OU0G9QX->0kl1?TA*uA->`hI~EudL>%FL%u0N|C^3X
z4_c}y=gP@J!%{OgM&;?jH$4$gF(ZrB8o)b(5W`k2V@wTp`pJ>O(6v)k-<u>%4tDCA
zkdB}DbVbpjvPuJ`rFU98Iki*Q<lxe-V%k^>+*vi-=BuBiDsQtI`oEBl??462HYx>q
z<>XZV7byG!u*p2i6`mL|80e}2UA1fnh`%z@-2>pp2?=1xEeX%Y81DYNa9l2$tC(UV
z62$Jd{OAX9#+1~V4Cz5;H!CB(t*|an0c~ZO;~0l<zmy%Ld;LfTrUjbniT@UQ0sd)L
zG8X!QGbA7t=&L!07;E&>na3rAZQ1K`@*0x1<(&BjcyRQJnFl9>{)>|75wgLSfGMWA
z>PcBLr3E;-)_!}e#EL|rj@&?^C+0)$S$RIU!@&D=1mNkE=zRSiv<<bTFWXQ19Yuk(
zygy3hf=G00fzdOzIJqau*jaP$bdDmx)buDQ{eA;hFDFH}KWmXn%mfi?RjNfXs1I2p
zJ}@6t%3TG)ElShJx%P20MrqUtKT4Y6fH2w;Gu^g6l1VgX=!a?i7J$@L&>?y7?<d_n
z>N~0}wS6)@(NKikOJrk{5z6w~^%ly_r$$0~NW&o#Psld502us2Z!+*V*zi&ko;KG>
z`+AO;qL=fivYTx{HaE9rV;^drEyN*v@oRh;A*@ctI(`4@MSXReuUiVu3Py_p<HiUE
z(O(8;J7%UxCSxI)AdUpNt&dCKvI~zm$z~M~#@@BMn2wBL!vf<=MOsd!piZEHe#*kF
z{K72jTR56@xwZNC^PtPvv1ENml_WUup-T->d$XR1*gNdqtchsHsd*&)Ze;4OQnoIi
zEvc84{-rJ%B=N{7E{Uj*tIga56^4?afAfTNY{w@mkW7P?9m)*oyXushV@C$;ed#hr
z=sth8cvgyh4>e$#mLv94FJw-VLI6D-Y7vyz3W+r+q@}~%1kW~gB;f|@hf&_doiv3r
zi^6oOE8YEDbl@B-B|5p!4<*xiqgT}nXF{ssyPt@1Pj<|X+&Tu1w|*knp~B3ruwpM#
z9y0uKNcqLa(?!P2KP|LFqUcii{LuGw>SYvU)aDO{Gd<DfF5a<W1hciCcotZH+uT7Z
zC_rQBmgVAb=1i-@nI~c)-JoCR@GG;7$rlqsoz|30J)OBvuP<iC+pB<(Ngl+GJX^#i
z=Is9#i#c0`H&;^j4jpXg|K;pEFv<;le!u=t#GWnhJI-3@&i@G9(-s1p)g|hZi$l*c
z|Ey4dg4l>rZh9>wR4d8I8e5{qUXVs%%m29br3wulq5{RM5Wh#w8DiFj8M}@xB+gWq
zp-XjzZxBT+W~flru&M+cbugs3LBNGV<i)_vLabd2Wy8vyP{dp&0wY~YqLaLVV-5^<
zGP_t7tH)Cctw4tOnx1tH(iQ@IRl@=`-6R^Sr_19GaZ;C`pPaAWi;*c>r(Y%E_@6sj
zj39|d*|S}}LF%#GvRp{#+GA&59s%T1VpWrZ88DvpG_oP(?g85BDI_O#vp`@+z92TL
zbh4T_XcC>8glU;BJ^F8gPI}198bP#fP;_9vb%+ky$FON)-oyi~@rW~fgORtsq(!_e
z=hl7Sb1twNGa?D@5w;PM&QPB3>^XoDd8p&%JaHihZs&ZaUfkZgq$0U#SyBP3S6Xq|
z!<3O!nUd}|g<>XagA1W)x2-%6iZ2K$m;8{dQ8r~aXvk{NAad4PwOPQQ$ScxiMT9_z
z^8sGC@x#uo2;%kQgfa~OAil?W8qh4}E?VFhc%zXl96W{iEubp>%Q1l8xC5Au2V5Sg
zrQ`QPE7%XBy*;Au)9uiQh^jLgSUY@WU)XmNzasW6v|lcofb9Z5Oou$NUCKo-l~yx9
zAaqrG&^R}^FpEtZOxl~iQh`>*hBeVj_wBBUoP5ZS&!?{G)Jz*tpzLbu!U9^ExcY95
zv!*-0(hu%EZ&PR4csL-riJd{*sbF^}V=-QB5{~Wrt+yyEHB==Qje!3+lArr%2TmBZ
zqM^9;sdAo;%dkK$-!mD^*pwXoN}}~_3M3XaY`KZ}?eawX<DfZvmCw9nFk&-uH4II(
z>WF!&>OXv3^Lp~Nk#F1sq!rnP%v$N<0t)VSR{PXDyGTC}AE0oVwtOsE&$Z60ll@j2
z4$Z<qx|c{hmxa%q{=T_*5L%5pXR%Nv8H7YTSr!02$;4=dg^OC4SJ-Oh@<yQ9w{a^6
zi7g_Num#sZciHLN^l9J5Ev-Kpd`jx$7Iq!Y&b}sa71g9>s|+|=g=fqWBiZ^Z7NF&S
zDg(Gg7Pw?)Cj8a|8olOK8D4U^*`S-d$G<PLw~yW9l)a(9FOSdvU(eTXAKmAC{nVMx
z8bcO;-F*ElGpw~wKYoH$2HPT*oES1?m_J`XtgY94eVf^8>;GiFKCh|Qe7*gH$To%v
zp^QG~>$O(yzn!n|y`9b1&lvTe&et<`ddHW{*H2#ZrStU<6~g%6%-1U`DDc(u^=l*{
zd;2RLNlT`f%neH4+Cy$dEemJ~K`b0@HqvRYa>+F~4*8KxY1DJY;*VJ|$<S=ECq_iY
z$XJ1dN(P#S-I~t=v-SdT?Oe&9f0_LI+`-$ojGZDGi;f7lr>MA($eBdjEh=L2w{?BL
z#GDqr21z8(lEiF_6l2HaFeFS);%NGasOYzZBf9%FR19B*>vjkx3}x2Ls#kaEsd|YV
za3VXITGRcm^*)F_IMjJyi)|7S-gKxWff-n;6ge@f`**GZ{pRrh+uWN~Yj8Rejp`21
zxx_@k>F#mTp5R82u1-HNcr>&xx@%wE3Q?l{bFJ%teA$qhyTFP^KCnB2x_`gcb^Y)<
zW8;yrb$RhJw#B_4-gdF-&1y1VpH;%pa3FH`=F%CXmtK}gEZS*s^Ty^G|3Fxk6)n^M
z{aDQ9AMw1yo<U8g<9qADFqea1XvGY}DMPj9oBz+OSM*?%Y=of_{zG~6!50#4ik<t#
zDn<B%%Uq@&`qAu^0{@M#x6k`+FKCdUU^Vwj4nkK;U`WJD6Q-@Jl*aM+x%+L$S_x+M
z$M_OCHJ((lYRrjS_YwhMPH1`_6EdK1tIx3k_O(NleuNJ{|DHFaX}VH)gTl0b65?`x
znXqmsL*DCtTjPhDq%nK(ueRAF+D_BAAoiP7+`tK!_}D95@}U7%Gv(>h_Z~swu*7a!
zSj*k`Q7^{OBhol$YMw#3x;tY)(FUn&LO@TK{*I!_;K6mgsD^vhF{cQxQJSqQvVR%R
zg3TndT9f$CSDmyB_l<zU@mkWxk}k71P2tMYv1zIuK+D<IqxHO<^WYhog-3(NihB1=
z&Tt4~54{rUGOG$7Q21+qQ4CUw?BN|mQd-5CGY}NoF->xHc#V=%t22ixF({qUA-okB
z?5A2iVt;{U;kY1p*bGsT%*WUlb7V;}?BR$jjcI?o8$*}Oa%&HHc2RZjv7>G+;`SdJ
zaZ0%1?7Rrqa%bO|h%kCXC}aLbs13)^VE2tVj?3`}M7Y+)w;!h&Ud#Jtq^A}RU7(=~
z{1Xi<BRq0=M*R<$pYMRk(R)Ou*#a<+kI4YA;&8JIdX}ga9cV(IV7}T+D|&XSwIKFZ
zv}#XGwAEZ3ez>-fDI-6)w-JKaJ=rogKNQ;k=*vW4Mjn9ZM2y&Alg<Uq=}j9@+82NB
z_-w?VWT@7_SE?Hbe}520nroC(7!ARYEB6%R%MS+Um)JV{Wp6`EB05LNidC4W4rdD=
zMPZF#<RusJsD7q>vA^%^G>Kb(H?bi?b+VOTFd`}?Obu~P^igV~N@;L}*oG`Mo-n&j
z5v%SjXfxgtXnxpRmWvu#tByQUjs^kZ_q|H0UIT(oc_7Neq14uWPx!}Op!bfvC4wCN
zA+Ih{{2EYe&6l}Lm9L4>aG(l4enBVT&s0sM6++w3#kWdz5}Zjc)5&^~eib?`xhxz<
z+g}mC7PRI0R}PLd2w&-6X_E8=9r6h#(;ZHpbxQ7;H?~_Fin82s{qLelU1TWh%pjPk
zPT?u-mnd_tt`4Js&SpKbRa`5G=%A-u6&qPljNm7c&-->N<v2vyBnT1IfraAmSYO)c
ztR$HlM7sFl18sPtRw%+x6Zseg0$t}jcOq%{UN1b;-70PnuwC~$bN1)}vU9D?yzFwN
zrrCu0i8|@8Xnl`GYOX%#!?&@U1~!gL@7%Ic*J(EHpICef2j*=&^pM8g6N^q6(7f>&
zZ4jYZcStK|KmlTnHlP`502LDOKJcLQoSilIM-am_&XuM41ilW<Y@Ly{h=5iZe1xSW
z+77Vg&Nla%I#q@{2pJhyz@_ASlHC|beM+>wS*(g5@n`wm=MU-g{sQW;Sq&fqr9V!{
z$ut?pl4;%tS28_P40C){8me#pt*2O1G1VmB3>^3Txw&F){-k1W{<UW@YlUJqkB7P(
zZp2JEFCTimboC^Ok;ry05!D6PnGvs43p%r7C?y&y%_jN5(@y3ky+oPgFS12a3Pjp!
z(i0=2{pSN+f*ZKV2d~itve#(Ki~G=;jeY*ZT;J9z$*6Z=ufAD!YH)1#<$bFip5Hfx
zNvLnGbksLMHG4~VDhkt2{l|T~2N9lQ+uV73O?%72fW_FJX6;8491GLf^2Qu3wvSL1
zLG1RUw=R0{8-hc8eIQ05i65Tq46|$##<7Q2sZp&^A?RRdjT^jR2nQiH0IK9wtw1q;
zO^!7p6qyLkjekjaS9L*seN}b2s>+Hd^^?AN#<2ks=hbM$jf&Dk26pYqZ#iMc>hNHo
ztq`>3eFD0rue~lJnVW4PD+0JTy`El{Kc+^I&))2Ox7JLhNXy{^lOU>fxUaR@ux!$|
znph>w(wKem*NzZ)If-#=oQt7`2r-@+{XFY&vWZxuP&X58XXwp|@Tyv)^D*|F<I|W<
z4V9GHpoW9kzE+VJDLCNTpHn)>w2InwSiZ)vDY58Au}B-?e<vv|6&aR3tEs&3mgAH?
zJNSJJR@)-=k1S2ew9_EzswO;t4cm2wowF1#-@_G}l8P{a>4^s_D+%w9J0itD)v&^|
z=p9yb#N!dk`ICJ>`91p1{RH!K-cl=KWIJL_Px0hN$W@m)RW>zU?Nl8gc61WB!mGC_
zjNp&jbcH&@M=$E#ArGu-Xa7$h8LZ}!g*CGr&N<nBlr$WfA7PXCB-hUH$iC{c{D+hO
z0e~;c?4^<sx2PA-56wzB2UT&OwP4mQRj{lh#LVv$`<G(7?p5FTDkLB<hz+K>X4(dG
z(C&k2(XOXwPs5pMRM#2KZS0M(KT)tKQ=#V4{`f!DWe)Am@Z>&92!m?UDU@Ck<(wB)
z)mIYf5M1QgN`2Jb8NS!h8^+G?Z+)izsgG1~zeYl%*TvHl#7ZRvvH5343MR@WGwAjw
zds3%mr>4~^mhEeAVKj3>zA!4WMshbYIOPc`<|&xHSN^98rtMQMzvv8~pV=EBSpv%)
z1v+gXL4qk@CcLSdU7puScvHVDbE{Q%RUg%Lh7EnB{t3Yd&c@!g&DKSkL7!3==l7*V
zTzT@$xdoj3Z`=v1tt`n^t{~!4ruC~K$Gs_$xrMtAD82Jp9{X~AD3igeAK~U}^E|Ma
z?WQhl72Vbh{W)pDkRMIhif&?#e&e5R%rNzA;h*!e`B9%tCCk(CkqhN{XwueQ4zG<)
z+{Z+YKu;yPuQK6sajdrXj7M5g3T`RDUf2QP9MT9I;_-75JDfv+WRlR|mwe(pP!!Jc
ziMKt(Tan*{7I_!4Q#W?7f5Q=ro3I&n;nNOb84--~($Xe+6Ac!5n8Jff-0ZDdy-Q{`
zakGM$TPA7dxAqdNU4ptz$EWGhLnU;EH(l5V_0T`IzNgk?KKiG|B~q8n1DIzzB92{k
zK@^hPRA+l$W0@LqcZQStsxcjZ;eMJAN?%+I);1$!xMnbOz4;$So=E3&I5U}dK0@Nk
zyVUo>crYXfQ$TUr6ip*#+s^LJ`fD5ZlxQJ?Oh|r_13TMz+}2*FGx=*JwhO=G3Evbx
zRFN+LrT79R;V~_`xjH-XMur>u!Mxd~KCYooqX98SwT7RU&?nJE<U#4tpV`vgeVmVF
zU>KQ-L4(qlw$2wD*bYVEQM*Ns@7DDk59m(PQ4y?$+0K@?9vW!b`CI$P)(r^TTZ84I
zBKo3joXo#YQ73DY1?`8kOhskql61ZtOQ^wC$;fK~EH;5QGh#YOZe3nuw@cJ(Krk(G
zX~$?Vbi;(2u+iG#e_6XPFMw@)>63ZV8Km&6!1a^fX;r{L>;Vax>oRL;JFGdwd~4GZ
zjMd2`L}R6AkMX+AjTi0Z`yBAAvJ?<Z;G>-TiMCyp&C#RBJY%?JJbw(yQ50^yQ#6Lm
zedhc{#7(Ih8^Uj?4geq3tD+kR^{VL4JLW37^oO}h-c*&5FNkr2{AIgQtzm0aa@Z2B
z;C}jia>)kPMpq{Lt=7jf4N-ZR*viQg$iw@R8EuoXk&{Fyr%sU!zYs=7a{uX9&#*>9
zbve(Auaxl(;!ka*zD8QgkoGf{v$HE8HJLdY!k?aILpawxX2%&x9k1GJ{Ol0OUh)Ha
zU0=-EW@eKkHFeM9!^vZgss7gR{kekmuLS$*6PdKLE%$A>eS2O5)w({G2yW)r@Mq-V
zm|=sL8~b%z_8PLyCgp}KF~{cWs^p57Rn%xljQq4!qzO@w+?Y%~9t~CN>oGBIGTDzM
zc(uc@hF8BNN3<7GxOci5c9p`cfe1`<*6Ig-usRxuL=*<$r7t8~HdKvI6#W=;QcbyC
zfYk~toNf1TGXRyzVJLw$$xmNMF8K^nF()_8LoX2{m;9eJUnwGjl8{>hwO<~nU)z_j
z%^*|-u~$r*$`GYMNerZf6IcmPERyK}2C9YsWac|ikl~LpaQM@YzJSVR;CrtOR@XA@
z<?tV;7?p<Z@%omMH>7{5yt(LDbOX|BI`S6(X1QP+#jyUk#12EO5^BnkwH2r@W6&(Y
z#g5@rEg`Zbocvu!XJydnCV~>W{~Z2+mb-sy&F17=fL53BV)3Z^7t`aG_lu4C7W#99
z{S(usOzCphe1yB^0cZBb@7qE&?muEzlvrU8Qn)*HXV*}>%@b1k<E_xRRA<C5GU9in
zxr+VlBBynbNapUiLWPY+g4iE-%Y~)MAER_i&ha-~;YbPJdn_+34HPoQns2|zu#0Qz
zL}~THEcQW7CCf%2d;|=I-#vWlbr8ZQs6sv&%0igqE7P&q&t)&V+X33FrpXoIx@od7
z#SKv?Q2es<<&$AW@VZdnWaCBX<CL6q?2ospo~bNHCE5q89zb_^Bg#XXAT^amgo))0
z2kT>3TkccK<b_xvH%L&r_jW@1@mPoxg*nJ{qVPcG(_Q9K%KRhqnM6m09*;_~jvrr@
zE<MO)Gtb6o%cfw^)bR+xX<!4#aOwtGoay*r%XvdHFLD@dVAzwX*?JY!hJ87dpSSe+
z7N1MlkiD_{H$9CzPcAE~7?)_j5CA#a`}MZLT>FTNBXZ!3B0bT5H2=HhB6blHS2X89
z5(xQCO=W;E+8M5DTM1<F0FneBuj+&Ft2jUVFt(`JWO#_bW&|55J{U(yk`si$YZX>M
z!wHk~!v+^6mV`KDECti5(?f<Xun7TI4J6v_TtsZ>PIXn+4y48b0k=#9-1~qXG=dko
zhPa#|D1E|CpV5T`uivVL(8kdSoLg?8Htr?h=jLaLF{uC!sZxiXt2b%A_8iu-T#N@(
zKVn#<)c2_%tRmPmnR=DiKb^^;$HRH;e!vbya*mL27t3Hf2)E^@J85aynoJjhj0<Oy
z+x;rhuKPDZ{?JQ3@=dcrlMeYha@Zrk%#hzrpCjbcad)I!ba4D@hLCI+-UOoX{T`b`
zuh#%T_w)U2AsT?rn(P30EdPmaO$n-Wp#w;C=eik&nTjQe^Xt*To5az((Bg5`nM)*{
z;WRfLisC|J=l&!LE0!ccsI4_1B?;I4Lp=D%&}OC3Wt9xO_g9^aduEs_1Y0_HxaG5p
z9zNsUMEg6+8k8=&gjp=K*#3$y>aexa-q=XGkLc3Vr|qPJb6C41q<Xea9CS1by;dm(
zyh%cefaF;DHBNYivk2yum=TiB<q+E}m72w-Q>`7fVy@{o1Z(H~&#X?5z4T^>!N@My
z^>KBkiE};MH*sB!cDbewf!LnUOh(g8Nj;{yDmzsFwV!C|Q^g-=_}Tq(GPNPI7g^*A
zDaw?C1NSS;rk!TN$Qv@_Ng;PK^;~$j)$(*^qi*3$tru}pJw2%pueDFlW$rKh<RoL*
z=)cY^_!`7c8qCcVHU49TJ~B=ch~XiYNE1){CThY;OTvJCF0)p_!*pv1Ntu}zN$eLg
zkgRRnDuEczd(=1niEQrBGpi{4rJzCSlMCdH+!iY#x{^bN)$NaHfFl2SW;u=#)hGVd
zKk<bzFruj1IH)HhyH2QGVKt`%Tv&dg%W2qA-su7HT5jpI@H-DV8Zl|bz|Qe^FhsGm
zu@kxUBbh?`VAB-us8%R%6iWGAz?42q-?IPn0q0nPRy9ZJvp;QL(jTX#GI5SG40kxr
zteS6Z2I_x{*C*ec={bMWU6;MrY-<c|$fnloZ_OeMYSQZUt1O&3*e(AfdEKV;Q3AVM
znhe<c<1<x{hwL^`SU`81X@{l2o5l_1D-RF;BJvqgw9@L;S1J)hrodeg``+%VK)fj1
zkY!NzJN{X87)@%zVg2anP#8oV&Dl>DKXZmgzt{XC>H6oVJ8*gF-@lMu5UruvaC|f-
znh*Fb8Q9;*k1bUr@Kgv=jPS>kslR58aG1S8bAXSGWUbpl>BYV4zCK&G4R!mf%c5|Q
z8Xam?r~jH(IEe^#=H>=nmp&&93zS*hTYYjr%yD@NM!z!aJSIQ0>XO6$DX#zY#pIHW
z%nJVL0s3c>*)U<dt7jc1k;ed=8$uV!5{y&dV=h5R?mG3cNo3s&$~`D~wtx7Cqm9ZI
zy2r0Jy|pRRjKJ=J{}mJl|K+lo%Vab2Uu>;BO^j|hwL!~1iuh%~i#0zw2#NdrGM3*)
zuWY=qZD2aS?>v<Dsz%$E1Ih>blMz)>E2mGWU`4o?K*;X5MJ)F^WfR_ScamV<rDN~i
zU=f#JT|=X*K_mxeporMa5ydvnCE>7pF<7?>mwrJPhj=o}@>D^8FFLVDU+G(gdU3X3
zSk?IL<YU<9U?hnB?LLPCerA?xxlssE@N;;{g+fZy!Qoxu^F&K_KN*gv{qD}f_9oFD
ze53ts;I=~8Fuq|<#PLg&YKkQIX$ts)Zc0SsRqA3=EyBAh)vCjZ-u#^EZ_DGKU;>9x
z*yLjig$J~}@64@*PQeHMiIkG$);}*bCDbKQ=jjPTL&Y--4EiUD62#Y^?v3z-ol|LF
zA_d@`UE$ErHd>*4*wM1o;Z;K<x@GzvrqBd>23ecC&kHV0mMAm*&w57VYfqBNC&%O|
zP_In=fA}5L^#WMfG6pFQ?>3F+ZphGNsY>5Kvm9<f15O);vV8=s>pmPt;?&~wkc)rH
zU}L7HRB7tFT81>`mP$+dr{gE^JsCXQ#fyNSX4$UQtMs3;PDza`PnQn2d>7m7Vn;Gf
zNlmhu(y7JD86gb&nT?aFXj(Vr!@Ox7`;+r>`eO~vU(_j3gfd8=hHg}qCsPWHW-P)J
z{zu~#)$iw7oK>dzUW!{*qEFoE#&Ty{qo#jRn%fBLE>^7OL%O(SgJMLuWs<kV;v{h*
z8xB1r(Y~Wz7gY@yb4;RrbE`q*Xl}cu%)5rKYW=WZ2Ul|GjQb01B4#rr3;~02kHLy%
zaWJ}YM`Vb33xF~`@{?<Awosyb2=}z<AO;(|W{fs53QUb_BK9sbEcvczr(sxxemjBn
zv5BBr!}S~L(m36t$(ZL~M!eQ&`}+f2U=X7aAu30q*ZFod$TpL6qszS{rN<h87u#fT
zAAL)WLx1|USf*xNM+c&hf}*bJ5EP|Dt-yoLya?_OY#P_1*9Z;CbceEPO5Qe!&xu9O
zwqtVL{)Ktcq9Jwqx(QC4yM>Q*5K>Wt`xi;sMrx2@DGGPI*x5PdZW=<hDEPK#8aQ`k
z)#bbUL<ZbkaYe}o&%a>5Gfq3B?kwAz;*PqB+7<0oS4Q>%10tfuoI_fb6@||no9l~)
zq`ZS0HY2(U;=ee^2@M;6r91h8O%PUmPbIT*t}h9ZDL@pX#jLUQv&|FjPx2wLc<|XR
zpH&~l$vt{oG-<Qu4U-b>cUl=%lZ4Tq+Kb&E(BAGoFi6v?2-9N0;<J8@7bF&K(Y#^r
z#C1y`CA{{Uy>dd35Hls2-ZJ@+`7ggM|K;N@)3)68Sc5*v67q_wrha)sl>2{<cWXa3
zt}V+YfR_<auD?h5yPm(rY~KF?b?|c`e|PZrOPP*$kXQdY!xQ_c1g&%JKn=Z<cIbJx
ztkJzg{`i}*wd1V3aF<F=$%5G8OPxg=9{HSzBev-@Eh@&>*+V`RVyl{ITxS)eW9M|5
z0-l*nB`CXNwq3I?jP7DHt=-5hwswEP782P8<+^ED1{qIHJUG0v%vA{f+lDsl3&$Q@
zZ%W3!hrcezB5bp1(aP{fUb?T$Qc~U#N}U5d3b;{sy{JnpjFnjiLl%Ws%z157<}uB&
zR3wO>Zn?djr6d3PR7E0~t;nMn7V?T%1Paj!OaPlz1IE$uqpmhJpblUfaCG9e`k6V@
zW_7E>Hx+3)ikIQ5h}2&a{#EZKyoamw>uG7Gf^nX4Y#+qZ72c%Whxf`op^w~}uuWI?
zH8wwsZ20&CCKV!|zbqI@yE@^kOc*E+FZ#$C@-R2jA#;pP_^@M*z=C+|KOJ_R4R6-<
zncL<q8dPVt_9dzz=UCqF4Vu}(+DiW*@AvEa9mJmcA3tONvjyFW^q`jQfG{2VC@`|S
zn4#MvDYC|cmld!u=Qv<LzKr`%$(Ia{*HZIX?V-=dDoyNjfhM3nItIFy>gWt($Mi<F
zpM&qcvu5&7cQ2;!!ih|ucOap=mACQ;+U@h9)tQ8xf99Z-P`-Gl9?)WTPlBhW0_>2l
z2KMsv`vSHGD@Sod`C`Nad)bg2u>EK^oK8Y_8^F%|z@zqu7Q9!0+8gE=YJUW<_u1KF
zS?4GqUcyI@&+!_%`aY2Q?0J2`dCyUO!MPrPf<L*dKK#p04&L7Z;b@u;A0eT;CADM<
zw0jS~IWKQ5u?npC<4L*ICHzVWEPt*G=PF@s<{T0_!*P8zSHM!c^pPWc=p*I<e`n?1
z<^Touc;ZS^6Mfj^PK4~TS%JEZO*E+!i4aq_m!6juAxI4@J1$h=o<L6mx#>y&goq?6
zN+5Aj_<N?sGE&Rg3WU^&Ec@YI=!E6r<^uc3p3|2+dtdR}2lSl3Xr7x+CV`|1ND7bI
z;zSoT_@>p}?}fL2$mHR^Ui0sZIC8P)dI=&z_6PHV*UR%Z5YSnR6Pcn3jNr#GpxJ0W
zC7hrZex5(S4<-y<?dB&<#Ym)<_nmRK&>7pzPox6H%*{OY&#P8(L4qJ&vmekPW(&gL
z&7?!nHx)TMBb>3?jRc%GfjL3^=PA+k1Ii|I@FlaYU5FC5+_}<`KB9MLe9&_OLl<@G
zgsh1cwUsV?dj6hrV>aw7FjtbMf3hD}+cS!`^<8OMt{&PlzRBKNXFy4Vrc39jDp_vf
zLvO!oWT4PLv`%cPzNF)S;KBI@Fl3#icWrlC*{d~U0^_o)nO$Ltm6V60wu8yY=vJuO
zl4hQ3V6*_*-}<e=NsTX051G>;tXxv22~U5^c(N)biikx^<^PKkwW^(6D&3V;?X{u+
zGyY)Ynh)|dsi}vL%boM3La-vNFI9UoCU&Ad&Dhd0Vaj$MVI@wqL8{Cm#Py@Tw4fgo
zRD|l1*lnO}2U||vOW@J<Dvfd_6OhdlZNCxri608R1gv|?nIfiKzRAaQ?5DF$0yaW0
zr<~x$wM_seq?`EYB_MaZ7%@Awk{x2^|8-6Rx{>yq?vc?(wAqnfpObx6;hOE8?7JV>
zGBwD)E)u$D=O%9De{%h0)ct&4gXAdA_vz+$eV?xTORqjHxiZ_QtEk=-X0}hi<m1=%
zsp!A&)8`^Jl%@Jqsy@9>0)1kL=Nw_CF{gH>CzoYMHhlP1XA!tgYBoX!Exe}=sYs>{
zuheS){hICsdCa(Iy<<jZx_+95V9oL2#Gn12@nL^eWqkPUHwyXiKz&Ka_u)~<hw1pl
zc93hG2!2E`8`DylAelOvDd8b7r<Ov4_!}D)IG43QORxAyTvIStyWrfc@{rB>U(D53
zCfcrYRDY8{21bMnQcb$JgB#2~4j--rG`@j#5gDg+{CCpJRqMo^m&nEgJ!zl#`Onm0
z!~_l1L^G601wlJDQ@Hqtc{7v)MKsWo-#Qj9d|W7rop&tkmX4od51XOL>uD0@@m3@I
z^W600(rlv^^x&o^f3pCeNZDGW{hJ*B^f5iT*i~qoUT9-r=621R=y!d%HCAut2EAgg
z^y8&_j_j0Aw;{R2&8;@R={fYHRe2ohOxj&s&Gk^jQDd_lDtX3eME2}wS7bT$yOHUY
zCwNXe^FI+hwwhE6SYpmUg3vd{z?@S_0Aj|2Hc!SqOs6U{f0VsWe}=0U=h}<;Wvjzo
ztb!GspqfnmGxMIa*}oZeaBzMHw>Po+Jz&SokXRizKHEW9Kw@>*T*pkTqGo!D)yvNK
zPkOgLCswP&OTLj4K~IjOm*<dx2*Nbz0;uprUNgIDVWn$~xx62Ak9*zYt`NKG?Cdg2
z&K?YyglkC6g?flQlr8VCHNIXrbhVzCDE6eG*Yxh^iQ@kw<P-EKUE#%yzjJZ1<Nb8J
zb*==AoR`;dJA+0bx<&w(Mp`$Xx7}Y%>Fkund7(V3715B4AI+ro)XI~dl?H$Z#I9*D
zhd}&;{Wa5P-FW#ezA=q{iEI>ArB*aK7qYAmL9)_wYW&`)XsTCHwXULNg+-~>wK^**
zdStJn0$4>W^yE_G1Dq!!3ASY&nZOEf@Ws3$B)jzwptVjcU_+}$vSrTDb@tm@E`8jB
zup^<mt!fPXwcUtXm>q*yQ+@rYv^oEdHx`70YxGKGA_b2`;RKv~xmrH@b@I`#3kQkb
zI8P_ap<OA4yIhuGX1I_ANIL}`Ji);&C^YwyX#ZUPzvwG*M2#hK_ua#1#nM#jYY<z#
zk6R59a;mJ8h_mo<dGjHga*ZSkQJodkFWSO*6wZu6m_?J<0TG@`!td@>P=!ig<~@wo
zlPIVi<T^wPx#{aXrqy72$X#jCvGy1}f1eYN6#~eG6eWCZ9X6y`(~X#2n%htf=N1_j
zRyA@+JevshLf!LRVq)%-mN1!|-*A5D`$$M{*|On`y2kSp?YHulSUg#N=yT7)Nw3#M
zlLs_!IMcjxiMHp|X14FWN#qxA=IdPmEef|k$8BG#R1f4BMS@X71bwbH>j1mn1R|=n
zBn)=zfyst)@z#3Fz}`c{gO?L6%h!_ZE~#RVqOzbgSL^9NeO*zxg56nbk;ow^B1p~$
zPiG{q94OT})*Pa38zs5MR#JDOO}A3zy3iXTox4g>M?9l@@WKIgJrI&;yHmA%P1kVp
zD2jxK&e7qa^SF7O^&gb|y1KviI|EiHTxtzsZZo}jfHz|&9mFjJI8tLXg0e9$=e&QN
z$-V_e1~yJg_Zuq;YaEkUJg)!QW6wQ{eX)zi4HyGmbqVq3Qj3^Ww~XukB;Hw9y@%I+
znIn1O(2nQ$`zwD>^Y=vKwraFqjR~fkyD}FrLL5q0=WLwc*Lg4OO1n?SO9v>hSbe<%
z;KdgmDzEh&EuZt-L|2*pVAkgjTQ$0c@U$k3Jb;3qX*dHO{g!mi=odtj9QC7$5T$+5
zq|z6tZt^+5ye5=J?eUKSr?5)G^5?P^G4Xz?4lz_K;kG-{YPV*mx|{VOh;3}bjG<b=
zpBe1^mz})Od0BYdobQ)<AMeVullV>tBS-N+E|xiwX#c*d1eb;r){q~YSVlf&R9sDT
z$IxpeNf)lury%x|;~YFnmP0$#lS;gVOXA+Iax+-)CMA8_8%{}w#W&~a%5rtWsub~C
z)zo2i!b%KEu|$ZCj>(dnZ2315&t7e>v@Fgaz)#?b91qTr{z|w~uY0)a=R3H{o#dwu
zv%G<Ct?CS7uU@V$0~QLS%bEeaaP-gex?`%}hA0}FMsv$L<c9lgfw44S>?(dy6%x%n
zGY^_O{;Ne>UN>k5tK-NG(v?O>=9`aP(xqo@azfa7l;!>sxs{28%fs-+Y*-0L_+>uC
z+ouoJxh>&Z4W#;itf%@w9uezw?CF<OtLkA~%0)}z{9Ij{3&S16UOax;_lCpM4f`kz
z<4lVIS)Gjmu`Pg|f~X(CVG8cbTwoBaHr>UC?oi;=2sM@uK6K0?LJB9d5HD4SYPL+Y
z*nMp{;oD|=j(r7dbKb|fpq`w)`Tyd-d*|go{db8gj}Yg4*?t&9oG9eipA<~5VY#*_
zOa|0iq)BexI`hSR{b@*kEYs~gmoi@5vYTIE)!<WwC;*4Am5iogR&wmeItNr<O7c_*
zW96)t5bGh2KyY}8ez16RH2zb4=d7bc#IwvOYz`ywJvbTRKYaCL*AI&Mx$PpO3^J2Z
zak$!HsRNy+Lk6wdQ$w}2mL~^jHe-Ias6hCmml(n8;Sd)>QaFCc^zfGku|XGzd8Kq?
zEmug88Z%&g>Q_nl^3hq|v>Crrt#jaFI>uD1&KoSI$?of2d!p=0Xb{F!O_rTs@B{ea
z*d<HmI)i@PNyfURLj#*@DORCkCXlFN*@~)u{WvmLSxP!UZ*0pBz)QzB&gP-q8XuwA
zARPs!Vxc~z<IhJqR9{|>zWnJH|Jn!rX>O$DRb5iU5JMt(FZHWlziil>%(~Rzx+`od
z1!{$cQ8s47e(1NUf@Jjb4U<)}7VlA0dgQ}1(L2Gz&A`UBJ;RczR{fOdaL?!r3%}Pn
zO9|n(`!j81rDB5ICR2u1c{+;-KV6!+lGbD=h1;*rD#8ZrdX)gSD#13Y`??+pwzoQ*
z@B(D>YL;x=VDf(f{UomJ($u5%eXuYcq%hy$zgS0f7}Ko}idy9Upv@*Z+1f5t0pgCT
z!D!2dDHER<mS|sN(}&V)c0t3AUYck>O?ePjLO`PZ4}4uQv7RBn$}j>h**40ntx*-H
z;}_3B>oO&1RyB&)QpizyJb#nHj8UB_%vk-4j<&<+ep;ZIKtpvhHJK}x_NOZIE>qoJ
zR^52U+c-T*ebt8PVnZqlc)<&*54k?u*JmQMTxg{}yw$N+F0}e8WE4Cu+d4HFiZIj@
zI-WXlRASKy^&KZt^|%_Y4ya3}FRV?bX6RE*ddLD-T4z$XUty(L;2Lt3ORc5MD1AA_
zeW^_ksdrzfWn7cK9O%CAegZ*P8!<CWNHH@L+!QC%-^38_pJ@LltdriVWkd4NaTA!7
zbWE;fhEl1S{oZ^@J~qCDfgm!a#MNIWWE-PAHs0AaLUj5>V&Pv*%zcZjc5@iR)4E}x
zi+E7&ZaTD>&xyr{N7JF(^t$Nq>~yFB1v`F}nOwO_FTW(O!p3u=${J6~R@6A9ppqeC
zpAJ>+g6mD|!8vuvr}}01KkIE+>X<lfNqcqVEb4xO(6?8L;HjmoUp>U%BL42>?`~!U
zI=r37N$zosd&pr-p*ty*Sr4nAp)Uimn%*`v@S_@}Bzd_U+xBqKy`vD)cvKet2|4&j
z7Qi2mkdWa*LpaE)Otfe80(t~)<|SSLZVi8b;cpdxf41(9uO|NQ0_z}ca~95H<C9k6
zhYsA&6gqi|>j5#fn{<-FBvv9eVDc})cz7MdiON0>*C=BbZ{cJ5HDAB}s9#NHTCx7A
zm;ID{yMFzZIYl^Mzb@ui%Z4}3c;yn$l|lTNGPE#9B(`57w!&Cz2Bt*&>Gqby->kzm
zR@oUxRs2Y_-7DhFxv1K%F=Czyzo*W3{65`Mw%1)a9aF2wTMLIm>^1c)w8KKD)}%|n
zPu^s3s_kwmcQv39CR*z8<gYjP_j@Aq)GSyJHJ*-FxX)B|&mBN1a=+K*sPhU;E0jH~
z@ooH-o8cw?$oWEHz)|^Y&a*)&lQ1~e>SLV&;W7%)0l$ZEIpo=5U_!X;-DiCWmlju_
z377T283`BaI{_TN*znCn+cKr6Pr{lR`O)8S^l~b0`|n8O$mY~|B8|E(<1A?i71VEO
zf+53&f>^KIn*I?WnhS&@X9t>0W0L^!2`3DsC0ry+|KNlugdM+rEQWl#^aefHAd@bA
zdpcwEOd}3qKFbt-Y+N<<Axy^A=$S5E=5laL3fp2*k9W7&qFZ>f!b1O%)INok;Z$DO
zR?z(j6l&yw=v|o^5A7x&>*9az$kK0e?m^DXCh-R^WqSF!y*xK5MNij-F_NaFx-w%d
zRo-U*;r)Nx2i(q?FN~}|vrP>6kXMGQ`9@(fXI9!bTjYPpQde5M&x4RJ^i}%cGx4I#
zDdh3yN{v(mNRPezO^>aArLu;Tlo1M>JhJ72*yLZzpMlAR6;r&gRp{3O`ik0rqN8Wj
zz672AX_Dsb`)IK_l6c9~XH4Vw!d3o&GG^KsV}+g-Wp0+Ax#k)0wL8Ch>-Tx0(>~(a
z<#A)<Xo7{$YDPXAFpgFiErk*1wr&`Z2m)F{zHHujRATWrIk#)#p^eGJq7ygMxm^c8
zC~_c#Z7(CLv1$*VfWL4RMR#iaG_MJ@i1N?2hz4sMmi}hTMrp5x-_y>3#!|W8CLB8D
z(8jI2>+P6B8x*~EgFbh^+HhLq4k~i=q2rEfOe7YcsMEv_NhaFl@F2^;#@+OJYV|Rb
zxG2|so_b_s9H2RD?C3<>M3=9)@h%Ist3GOK^<k5aoS=aHHl6X@eXT~gLR3&GX40F;
zq3c;U;d2AaQgBgtE`bK>F-Bt7kMY2G<E%m)SDE><=oJP+e{bM0OZ%wwF*Fh`Sk1WU
zAepRnmT#X0xB*n!)&u6mz$+ouLT`%596f{R8JpG5QK?a&#v_cq{3`82N4&M6`b*D|
z?0Uc{QcOz8#NAbAs?()uQxg02=x~`jTQ1_(#qTl@FqLBaM<LL6Jx$P!_G>Kd-YPt@
zgB#!I6?|=S(EGa5*El-n(g3f)C5IKXVD!sx99dmFpbMJQDHyoFi>-56zxPfXh1m0G
z{XYL`gk!O0%E4-~g^I#|k7Vu+s$5~15M<Z-;qp!`y5q)+{OlL|ZtnuHGUMxcza(7Q
zBTM+$LC!&dEc87LrUAFiMA^i41e08D?QbGae2-Vsn7l)4c|tkcPIKNNC5zEl>zUSl
zFRICB!|Hj>vbPO&`RI>?ih8OauFH3x>YSzJ>MO(Mec5IJ@Am`gR!%objW1hqMF-{J
zHBTo5go0rvR#@-heV-zyUlxhnqskdRSlT&>2&4X%YQ4ighyw^k)WB(^suaRLDw*P-
zqSxEq;8zL>?N3NMv;X1}CM}RYr_Vp0XdACY!;Bq#MI>_DN2-YPJs<PSmIwXTt0Bek
zeyhVAH1*`67EQSsm^%Hc(yw}tTlGu0oo98$*H08~drY)~Sj$u;gF@%A0gvG=SGvYP
zyHE$-tqRI6u&VNW@V)Uq{FE=p`~7Db-qD8R%Q9CP(+kT-egcQv(NaO|qZPi#lNJ{C
z*mo-Qom%fYwY%?>lCv&B&(TO{&#uvl>VA1GnB&}zDQ1zqJ5c|9*8$3k!?T1l9^>X;
zXVQVLMmjLLEVD}5Qe+}6dez7DVX;y)e0S?dUXYZyph+Tt0dhtmgFEoZ9Oj!uTgBnf
z_5%HxZCkUpCbhjvZG*fcqPD}qYWRD4l>~N8P!&Y>^el)>Y#n~ym75t8_U5_sv2i6}
z4I^b|)%;9jDP~KVQh1KiGxM&jB=u1C|G!{`x77fY4&~ZTOZThFS~s(ym0Y01VqMwY
z^VZ`4Hx-SXC%g4i)c|6$+6+R(?A&1zYw7GcnCufLL1$sQ3Dv&=$DfC(^`&?8YG-1y
z4zNte!#za`Mlt&O#l+PQ>+>90fRdbw_v7-E#**}RTE3{Bdh{`k0~E>BZyBkZH*T9)
z{GGE&Kelnp#G;v-ac{vf4X>ex`Zb=9%?OZM?<#KmzNx@-&OGb<hI1M&mI}0x^eU@k
zL}Kw)tbC#Ihcd$<&fPbG7*WGpq&FXHdb>N@ZvXC#K6SsT6bnDMIhcEMx%`(GZFdwm
z!)%8#<e`1LJc@bbkec&Xz{LxkG9*?*%J4N|A+^v;SpS4WjFA>4tF#qlvW075?Vbrw
zdTTh*K1iC+=VYvsj1`jnnZ(@pS)!GPPreD8{QixE+*;tHyydM0-l^C8wZL|*^-^J-
z&431=4CLqt;@g)=KYN}8YF<E2SQJElXI>!~Q@av+P$9xeSMDHrO#q}%!ZC9x#|9qX
z)#GBsfB!R5lOxwXrvMnVByt*SMFAK5Dhb2g9Pd$`OnK3GH|N(|JUytnbB|u11z){5
z3<*GPxx1P~e{K7jls^RG*~&U(yj^^gn91DfGJI(SLqc*}>s-5~2eWm3#%brs5}Ssh
z_Sy8aWQk21(EQnqM4O$G)4G1^MEf%16AouN<bv}XAjbVzNoxEip?58xO*!lQAIQ#|
zHi+U4bsV-R9Ja0>oM`)leyK-XM$%6^tE#zp=f{VMx9I@q7HIooQkQsDCzrg@pN?%`
z%yn4XPe_;ctJTGN&q(eJ+CK9>1TsaNlUIiG*1_AFpCign-cCd3><YsOrVjR#DrATn
zSUos!jz*D<dnQ3_b5}BuyUXLE&ViThR^}`S+>jTPR&A6$si_9_m4rWj+q?3avh9#p
zL9Xmzl?`G8y1Xv={8t(~dFURSSgfVgbZqZaO_HAj-EC!?Y4d}v<9zgCc?di6l}}_X
zD%MyfiOpi21|d4>7Q<n!(A%>7H68?#uFu86)P*ztA%XaGHy1X<em;OWnA1qWaLxgH
zqEOiW%#U~U8qO;3RVlc27?3=_xyAYCLA7u`K^A}sRE?i-L}RBfb4GaHs>>&DMs9tG
zuQIotxbzt_*o9!3PejSkI~zIi8j5PUtExhu-C4JXFLg{=B|08uTE-PYUaYh70*v)^
zUsrKBX;QDn>#b~vd&a!<KxaXPeytC-fpbf*JurWXoal+7@Xch8R&+|T6Ly)DmOC+G
z+~~FW5Szm0@P3_0HXcX2#}xNCRAs*clo<tKgVL*EjRysa7q(^nEfqFAI0!)S=A|8R
zOhw@hFS%toGd!@x{j!{O)(`4sOY;X6DN__q>vAIjq1s%`#EJ&*%b*P(o%rQAI?Dph
zz8Xh44w%y?4(VAfqto$><m|T5tT2ArTEQ;xprSJC@!MmaOf65Qk(CyfpP1{^Hj)AD
zBJy^F9eZ?z>$)qBYAOo1yWVN5a$J(RVg8O^In9w_A=L~m*o|j_6~8^qVI(_Lc~tWj
z9)qvzu{Hx_rb5l(KbIgB&v#CSoO;e%PY5PN_X#{GrTgXg3EX3}VvYvZ6O=b!1)pFE
zc`A4u2{{$KFK>A&cssr3tKhaPq=JL^FAqSVVP!s`#;|GHYfUw~8BU`8P*dGC_1cj7
zk?HAZf!uum^6mt&s=d9Gy<veHO@`7`A`Y_UCrFSs6>D?le5=5=6YFpp>D3^<Y?<@_
z@$-QbBwWSWBKB~H%d)g#lMpzCbl5&N^-yJ$l!L?#O}vzab-e}5<}}F}=ICYgZ3D7V
z6Z)s5oY}3~r9P+bbA9K$6xB2(J+XXBdTPZH;@070<Q}exm3HseKBjn&=i0i7c)PKJ
zwjp5>J06cnqhvp031A}?j7xL=k26`{)@x#MwUoJRR#~Xy5{s(Q=oqa_6;b_Lk_fZM
z5bA0?BF`p?{q#@y#BO}P#e@PHMGLJ|>FgwV;m`$okFF#z&S?-bW!t>pCh--8KY#{|
zeT=3ql^{?~!=Jg-OJi4UbjEAXYNI1Ee?;!#&zNVD$G6;@uJq(h!BC)S)RbWAs7ZEg
z<1(2IEPAy)BxNUK$t$~NTGkx3lc&ETGj{a=XH0~*H#!pV0+FsNyO^;<&meY|&zXd)
zl13ikj9z6_waUzMWjbf)`62hVw6>wmdKyVdHVNMnQgWqp9#KPqD-tNa8bf9-n0tkF
z$4T7KJOwH5B7&e;(KqPdSEEs<*IF4qqk4{p4)75{W`1OItFLSGYrb>h3}H9g(H&W{
z56^K2eL9FT&uOCP&a|lsAALtA%j!&xCF<C)Aa>BdCCo8{@3m+bOsRD2-DAy!vLhg{
zL<S=Bj~OM_+>m+E)Fsw&ID^VGZFGVovy=}H(l5@wwJhks)(x8)PgMpJLf}dQsf#Sm
z;0cDDI!={p{n_}u`B29Q<-#6XPmxtUXxTZ|b&g-^v&=x>jViiv-*3FE>b@zGRY81{
zS#?OO?dVV>t)3770HQ&#vzlnEijDdp?8_nj>4*YIpY<#Yka=t5jYq3vjCky#Kkq>s
z@mYF++ep)0VDR*kZyi=!uFG;IZVr)VzA&Ep8WPapI%yfc`j#8tVd7S|0hGr(s7)TP
zy2n~Qker1wLhC6@GLK>-gj+t0qT7R9rsWFepUrOmd7vU<Ti$op)<Peo6+QDWuwR!K
z##=4gGk0d}@Q31{#q%w`lm(0g@*IqL(@jpr#n=&e<D)h9`Mg4g`xW^$_AB&GCrXgj
zi8iJKMbU!Y<(4!4i+{6sPz!c9@-3UQz1GUj#6Y{x$r^uk2d@G{w!ev!^vnunxx>Jk
zS*hPfFn}wuBSDc^bW&4?o1YGUvE$^Skh(8GAjBSeu@byssk?YDfHgO;KG^Rd=Wz=^
zG(e3yoGeMS|EXB8N1+qmO9$;b5dEdZG_+dvB3NGIse4D)>Ydpc7n94Y!#t3c`i7yW
zR&|W<$`(R}>rDT00z~+CcGXITREeOIVm+r)hX?@bsFio}RF*m5;T~XU0b^?!D7O6G
zHpK!Yybc4D4g+nDfhM*y&=@!a*(U0Fpdg0QY~2tf<#|E?T3M%RWNbWX_K~ws?Myxw
zgRxM_L23L8#DESu`-x>!luGNyO^vl04Ye2{M`pm>ACPBC`Y^1T15jq@`KcsKNDmm-
zvfe5BQF>1-KCJ)QBuUeklaN?+(Exl&XX*~js<uxOZBJpc_F4bke3+7E+2bO-DPK_k
z^(2f-SGIiNs&Ce7VsSlo#22dl9D83>Us(M$u!iV&fg$ofH}<U?iF>H$iyUb#?m^D7
zw(U`DoFX;AVllnfIvDcmk%&KU7^P1rY1!y-_P%NqvZ6a0jG5a1ZVh>RkP&-8@2To4
z_FqmlF>2#5-%{l}isX}geqT1u)wM|2x^z5nHPoOek4&a&YUFbdsi`AbpN`kNk4+*I
zjW?Ngp<y|F5?B)DaEzS!>(z40axoBda?XEy6-D%-wmhfShA;7g52O2b7fKjDY458u
z$08D2Hfl+~@gC@;eZ8auU4KTEL8j_@<Mrx5m!;%)d#%tH-~fXBuGZI7LAPtZqT6-k
zrDxZ>8fxj$IJyltMcr;9{>MH(aEEW#_nZR`I+f&=!0K=_dXo9jG=lZ?BSIV1(?9s0
zzG3gHE!0CpR+QP7KD%G;j)v%7^qB;(e?b8IUuA)`Y;+OqE8I&Zcu2Ha@M#b`cyDPv
zH{UN4_K^g|;TE%^qr~CMW*QQwnlQocFWskEd$w7BKmEE$5%akznJP}luRg-7VT^UV
z?;3Pl1v=)B-)<2rS&}Y2%jGOf1~uilsPJc9XF~)zl!+M}G&SXkMNR;B)KozBQ<H)>
zTCDLgxk2gr4O<jt`kT3Bx>92u{^4bz@6}{#g@#}Cg$pccbu#r)_pkkN_ku3$u=JIg
z6QovO%v>k4gA*SK!X9$-QF$!}LoPZz$7q?KkS}qy9CQ(sZLUyVVWDyPg}$%KgV@`b
z3yX-uovw|r7{u?XP-Eb6;*<!FjYL$<@z_XmM^!#H#@Px=4{StO4ocrx4_5w1wi=uh
zq2OjhA4OE!UwYbY-lUrMlN=2DMldWB)S3V?mh<RiJ{+QxdQnBK*;PS&JL}G%q2UpE
zRgK%ncc&>^RpY@bRZpoNeQ7)_56_TYmv7N1CMexbec3JQi>%YXz34jfKz{EYb%~ji
zHIScVZpPf<alLz7?H(OGB+WZ%VM=h=d^7{BvXfF<zHqFPa4(KkHsgiWTnVv$nU7^$
zeUf?GJzjB-=iFm84~v`3Jgr|r>1m&CQPll`LcL6~G5x3zkM)#rkq!;wB}-(g=cdc=
zJtsR#27~4{Xz-%&ynWqJmE%)@rBIoxF6TlB_gkE-X?QqmXSL&XEc_%}0MQf|EGwxd
zbBMV{=6Jx``UH$~R=T?H(lph9e_fxsa^L%|MGHDbnKLcmTXCtjfj6=m4ne9!#*cO@
z`yC1CLn`(A9!iSpBEi|AcV|p^9I?<+)-SwskT{UucDP|u&uOT+S@}6bk7<s_kGE{7
z+flSPM}zorAHj}6>F++?Ld)9^GfYL9ErHoVe<|_he7%ORnTzaqY>!O?fCYRL9<zf;
zSAw&08;eQ5^LGgHU-|<v3he9GoPB)&b^!ME0>PJB=wKn(A%e;Ex7bfA;-CG=Q$<kv
zVZm0b!ITf@?C%Le23$o_=jv1yD>U*p`Gdd~%r-$5UxeFiy+6;@`?KElUN=GYMun2)
zT31WV{SKA-fS5$vR%!uu#;LL@apj5jW^$p}Jc4<I+_^BHkcHjwx)qT}8}KkJ{MwK-
z%&O0YTilOOeKC0ryCvbhGn~5=(l@i#7S1(=q?1*{UzD4use5->$zttf>th^5#}d<|
zO-rYwR!vFq|6eUw>I)%clr4@XM{i679b!rh)mqH~tf-lcTW2{jta#1A3MZK&^wbv?
zJ?GNFxgcV(k)7%?&=`e>a|@0yB-(~r8(y2jqBUB5YdkM<IW?Y<^)@wPGMS^PajN)s
zRJ80<#j;Og_W!7Mu8?niML$^Y(J^~<lTuR#7f%Yt3{L-lw7m;}UDNsZKOu*4IX&Yt
zHB=Z38C8r*m?(8ZBqt0K*AcgAs|<}AGDDE+L}tiwvKfSihNe`dsHR0+tBIsZ&=Qvt
zv`v)OIwmD9CHRr|^L^IZ=Q1<s@BP33X=R_i_qsgmxvytEYwcumv|nl-n;pDaUg<UN
z&KKZDeLopi{mn0f#{VT}ITe;whJdbI;<-aCCU6e%ynpSfKuhVe%6wjiWtF|f6`jJc
zb{lhk)ljj29L{^hdz0um<L0T0=TNeAWyRNZ)j*}il}Bme0=jd9dC(h4bcrjFYI4<Y
z)rGux%g!orVu5{MdpH)0<YQ#FNm@$u<X=X5v4GBTmJCN)(|VeGzUExwpQALO3l+X&
z#$$n>k#S_p>zzI$P#JgXUjXu@;I0l_OkA0bRk-g@3Oq{8_?4G|l2x7BCp`b4?UZQ;
zDPiW2<`Gq|cbkZXqxI1hCB*s~XvrmZ0enCgvD&sT5Ua)S3*X4bW(PPKvAo_iV*POE
z|0S_h*R?)hB-S9hbI0=lVikBiUyJkg1!&=*=Uk@VRLD&W^9!)!#48@;@&$F=yPv+Q
zV@6N>%r39{yTk8*o9AMZ;}CtBex2v_>yMemp<kDagV3+bbVa}VYvPUv#W-?$%U2hs
zEEj=fDht+jU7hD5RF1+&{NEB1;7)%e{A@pMwaHpnn8rB~=xb$@w#|`#xo#_X)%8mI
zP(=&mkm@gBAfEdej8hj2^hGe|CC^J36!MMpD+YDoIc?YZNkjXCvgRgbNZ%YPh<E13
zO<IsXvE72$Oa+q%qgA@bc%yvKXXd^Kp^g%VU0)Jrwa?H-7JH2S5CLv6R{d~)J*6zh
zS~9YMJcF{~;g&wI$&0tP9kB6>x60>VrG~RFWIpW840>6vyH4y~`0)mrU0>FTf~l^L
z=`k~Pot!kj5m(aH7a?)#I{9(!%cZu=o0LxZm0IF~=9opgGK1Il=iGX>aW&Q5!A<J^
zgKYCE3oN>ue^7A)t9f%Wi(MZBkyes0gze`VZ<!mmhW+wVF0ha61L|CEm_Hvx^v6p@
z3C8|a(SIt((oEx(FB&2PS!=j6f8^djdqv}ygw1O_exjD!eAtK;w*u}2z!x?AU!u6L
zy<EGZ)Gm7C6Po&x9?1e$UNo1V`pZmziDbY2J7}1|P1hU?3S=bCsACIzt!Ftwl6#}g
zF$EZ7-CLs<*bA08GSP%}@sZKfUPJ8LX=V^-M^C9sH$`K}qagR;5b|{!<YKgqjV73{
zG4Al_P|J&G5y3-KR@W-R3C)KSv5b@xq9v1Yay!~^iE)@p(oG&LcPr?Dlct_f#L*^P
zv2l^Aa=R}sWK^WOEjyTA7;@}AhrG21#2&l>BYtibs6JiKqr`^~7uAHBHB%Fto$R$A
zoNI1RzXZe&=9OrQQPxx(?i^TI{AR-cwX!JV@#OL+#N&#hqN}Tn$0wZ$(aTHS(XW)K
z+aj(oX(UL@<~OJFLP5ec_r!J~7AJHi2KKbjN{L-~W4nS~fH^d|AQ_y`R9T2B|2oq@
z_lsLGRHyPQHdNtSv{!Z>`{}U4K>JDM0?pW0FQddqzl#BrcP-KYRsI2w0S^^HZ}JI>
zP+_gWPFkvsA>#dGx2VW~ajUHbUgMPv+39vQqm!FKWNkvtTygTJmPuCc`AzwB-`7vp
zIv?*i5%uxa2Y{=B$yO&9Wx5x)e!^cetk#p@<X2k#$pPBRRt1=`Syu+}_HkF!)(q;s
zo2EC?EM_uWEjR1eJcs!0tM<TvsX2FlshYFq+90GRg8TL^WX3M&kj5B1xA`ql<VPry
zGKv)G5sj)_>-~rG<y=o)ZNh>7poZi>_-o><-^Sz!Q`bO|_wFpE2vPD1_jYaIlfIL)
ze~YqE#*ot>w(U_Teq?u8LqeaJ+Zww5bXaPyH&?>pQeX(O2`~x;qXSQ;dr$G&i#Eq8
z-%<WTH2l;L)u@zLG=(__%LK+hlQUT<k(0zo=C8sFZi_{dAI-%g^5pr!)FWfsOnoV^
z!AZR@O_}Anf<BuqUP=$<rgy!eA0&e?7wpm|I=NSK>?Jv(w}c1guGndF91@|G_ikP&
zfldMQjtfEp9Y;m9a_Vq#(_L+>&=e;2x-5`m>S9reobSXvKW8lt6CwSjKV&4mjlA7>
z(Ju}vmDfax-^_nE@}D+fTvOV_=k<p3S}oIE+8e%@0Y-NV)H^evPF-UFOUee_JJ2}X
z**}9xTk)o2CN1)(>5EOoIMY@mXA@zbNdLejZS>?lNqK4_A}hvG<{N=0h|7IH>6c#7
z0PqwEN|geR{Xgqz-vhknzW1M3?dW&^F(H~@-`a2%goc6JrA@mqqU17N;_g%nMw(IA
zNlQI$FmAepEzK6j3==-s6gc3ypaxp3V?ArtuNrr>0N}P(427<-ohT;W=8pQ^wLR`G
z{QhFQJ#Kc{y*uD$@THF=eh$7OiE{t_(u{4G(r0Z4sxp{#R@7LG!vA9HG)x(cJkSr>
z@=$Oyf~o%RH7?EzImu#yBqk4I5viSBY$qzixnsu|W%Ay=hKVC!v8ED!Ah7KcUO$t4
z*=HbRgr`O?><=Slm;B5+$mE#gT};Yn;@RrWDhLvEG<NKf$z6b_`9a4JXm{~g(Qfz@
zE=vv`Hpmte*7)yJ6B^GhSA^28|J1inDtcLaD0E-27P;j9YDPxGopsGh)3SE<{yzg1
zTb870+wZRGI8k~a*DMWm06=9%ywfqV127Mh`+Esr<xK8lKn>Z~8eO5YFg3XRV!3(H
zz{Z;HeZA!O3Jb;Qb5aD&Z<iFnJM<zmMvRYO2@#yrmmWL}oxk+pDh(w!eBCh3@-MCd
z72ET)Mo$51?v~OEX0B<ZC4ZrWIr|u?@|XNkGu`FAF9+PphonfFIH<?IP$PYt_a6mK
z?3@vHlV8;Z5${wF{E5f|6W8T_3dbH-knle8tx>|S<0Ri1$#>=f;%XJW@Q<h;jf8+w
z&D<ed(&Ccc4=-H<-pVH$;G<qTKAkZt%2%Q+nmv)f8%>!@zG;{0UR`)oBkI<Q?dsiz
zyR9}7H;|_b56OsY$$m0;BIMdaZ9z9}@wi30H6!b9-LG$CbV?@r9C_SRv*f9(I}Jw@
zl}M(4uz!Xv9TKlWp<`@MklQW{tU(YOS1_g~z<~y}q7hK*KntAgs$v!vV_=-sSsUQ+
zi|lg1G#h8TYN#%@u-^TQoIg1Xj5F+0XRL}pt(TfnC(RKLz59LRxN<OE8g`9y?z_(E
zTY^E1W0<jC_8+nl^jKK^!$930x0N3hg6)ii8uITBfulw|)6Q1${<|h8V^%sThn_WA
z6-Huapl*-q3JLDfD+{v9iRz5TaG37B12%Zbv+kX`d|@9&>eQH{i@1H0y>z6lb2@^~
zCLD6X-w9QXSVS^V_R03KQ$Mz4*soxLKYLlrunRl(Xs-!Yug8WbqK6@Lt)Gde&DGN^
zl05`0_CD`r{mCx&7L1&1&l7t72+dmxQtyrYVzXqF_|ZF+zT)#7%U_6Sev{^Mi9vf=
zkZcc%9ra_)RLFBmOiW4kV}C171}TAuGIf-8li-csrwT<4chsBJ7k)6=ItCQxl4t5t
zXnMv#MPmli=S2pW@c9N)*TfU?eh6|W`~;c0mpQFus;DpUS66s{RgnpV$|Lcvx;X+7
zf7Pxb8!eMdnP)agMR5kx^68=<uPRC4x%M%1pHJYq{Fkwd8#_-@A8>8jn}7@6S-Gwk
z`kHqS)yBNP()5p46P|;c#A}G*2?(Zq$K1Inpmte$_9K`jV@?vFYszh?DYdNFrgYsT
z+?WtcFS%ds<VlObbBu}(Db){D!Wi~-ZM&xtnIvMHbZnT%Q#M!{-EaQ@-j281fQ*o0
znM?j_4{F&*(&O{4*+E`jNJ>dAnmdbTdS7+VT}Nw|lz19m!xiaa{@GCPZ?p=pEmCeR
z#`nQ3Yb&~C%_jd(t?%73?#kS<(I1IlrP}}0>)o<PML5RT=H0SX_jNq*ZcO{m`Xs`V
z^l)rLlYFw+cWQgz`%W#W>Q;PYW`*+3NBf$)YL&<~n%E3hv%#y9vewU~x>qo8ePe2D
z6<^-1s2E&v$;M04`wX&AFOWo$yyRw#My~oCT?*zUN<RHn371T=2q!gOtIF<zZObxX
zQQoNRA+M&97fze0%^aXo9bd8WsUOQqwY&Vzq93gp=VindraAQkHb~s2HiSF(T(+R<
z+BZ?%^j^>6&=XlyWx5=f$-$Go*O&&$Z)bdwyzeF($S-v%8OR1@193|Ye%mQ(zA9v}
z&pLzudSUTy*h09;>qF!*!F$}AcT4f#<5rd3yQ$a0QI8ZnfdTpHItYP3!00D}Gx!O_
zp~XEDaNbrfvD-*6z`j&nKzJ(^3?prx8L-qCG<`rmi%?M)^ubs9<(W>uT8v(90c)1J
ztre!~g|h~|fSGO0-ZnzU&ACO_0R5MopP#y{No?C6{!F$M7`JqBX~58!bZr<0BsXIz
zjS$CsG}+f!YtsC1+nnq-Uj(Sd;XhRYcC+Wga@YO#9g?t%XmeiX60d*V^v3BJsb`+l
z#NC#=K#oq<UCPU_+_k$90uW;?(9%p@wY<xwVst~?6!24m<h8{uL>adysg_#hT1=H6
z(2LuS2ff$JnVO*-1vSwe_@$+!6~@-g>zI{FUb&{LLAy>&_Uuw(4^02uBKW4QZWO;X
zh+j~=qB%DEoY0XCq*epLd1IWsPqSKXc1L7Et5*rIO4oDe$|66Y$_bn4t5>#=(}BWl
zuggr|PGo_9LZG!xqu{WX#T;<OC|cA_=-1HXU%AVA7{y3N*cbjE_2-u;@w*#DAV8zV
z$_;7J{p&w|Yc>vvX&Zb-K@6Hl-s{6cJ}#D2;R|OMPgCpGT8t-YZo1UFn63Lg{mAio
zB^@(TLI=OovE$#oYvWzV>w?1F@L_2NwxLD%J-&Ug;%s5G^#X{0Btuc+{1ZzerMsy&
zuxv#<oB(AUtz{s-=g8KjA{4pm#(I&-PH=m86$MC`+AovM>1QT4ZJ93gUy~bO$D7R_
z66bK1|CG&^j?`BmOPb1#tm}Oz!w$gfAAk?B2(dI5f4SZ(A<gLp1}oY(AP)Hphij?-
z%kmerV5ZLsDA1EgbyrbGfu7d(_BQ`*W+FU;J3pF~>iQ#d0%=c^dt2C+4BstF3U9&6
zK7t8Tg8WVI(x7c3V^f+yc{l6_GKW0Zk$Hy&-yOMyYhV!?p|tz)oDYnljla`+QL7it
zo`&>;ps=|^N8%PXaYc#8XL*(?#^VG4ZOg{Rjn}$MukiT^C{Cq%t7q$U<Iri~RZXP6
z7MM_Snd<U$Xl#?pBP9XcHqTG$rr<;<A~jv~=KEiN-2nVB{5XVH>E>C^M!-#tDo!p$
z8-Tb)&Z*Vrrn%s$Mv1c%CETgac;Zf~swJseu<5x|Kir!K`5=B6XGvg7O`1$Gomikc
zxKy)rjne?=H?2bRcxZA`jOLY<qyCo_(eCiJO7a{Bw~y!FMEf`ScY{>-C^%QU#V4Kf
zy&v$AJ=x>?Pt@@#lZJC-8n;lG8GgQ7<-Rp_o%pe1accg>gVUYsCUrc->)w@x7q{tl
zd1;{Ui@+{H#TOOJB~p>x4Y>KOt%N1B#}>$VT%Sa?9LBkzDF2=<WEroCDWb%czbny%
zw(RlOHL)fnAD}qJYqZZTo%(v19nI&H0EOAnNi>~Hytb1WzyoOYj@v|kj)5(Wo+b`j
zPc|;5=pzGD6y~9_8+|YO<PUfw2h0c~+tNm+L18vf13r@|U&DyZQ%c1@_+a2Vcm5S9
zovTR*D7OdaUyLn-ktfm&wv4uLPRxhqVGw_Jg$^y%3$%2tG&r0gjAp^_DWB+_YED~R
zgTAv2i%e}U`Oh6?;V0Ll)NvL~UNiN*q>3`JaFg$0G!MB~vjD})X>4lE;+E*ct~vz(
z{1l8&MM)*5kr1UEH0m0~*Tm5M2N^1xP42tuGFGgM(1}j3$wbqaOG-?bXVh6C(;S@!
zeOKK$70*pyqe8hJr;F6oby&Ad?6kV|xA9+I1W7YO4L+Nwa^$vA?*xS(Q(b4-&3RCS
z(-A%!oa(OU!KmDNBd4zQs=0=H9cE$xODfaTr_>$qR}q+5%+Zssb*Zk+70HSCPzz<@
z_CAwIF+`Y5?l&t;CYc6ep;?8dhA9`f=W8q1<u#E}`mc>E;wU*7hPco{gq5_&Fk*Qs
z`c9~UPMYD%>7Z#TMmw%F4y1;)EjM?JU%|o_blfJ^Go=SB`~1tG36&P0mtJFa*($r}
z-zKJ)Ar3O!s-NiH$tutJVlPVXqTHhyzC9z=@B{ryPf+rJscLGe%~yN>g}7Si3Fs@`
zXW#By&3d6)r>}PHIVGxDVGSYBH$AX+ZaSdv5^FQuqd(!UB`{vAaa7>Xsf)$7i;AQ{
za5`RJ3H<`CWTbWyJaE=3yK+XXpJe*IzGgxZ$&ia2RvSU&w%#vu`y5iBNPCLCNHo+5
zNFj<^q(P&#9%zu}CeR?G=j5;brHDi;YDj!A>_sl(-im|7alYDp-zq`kE<y!J^krfs
zQn17U+i?HBCa#D?q}GrKg$F=lfOoB$1AQjwQ6@tqOM8G(PUPS|K_b*THj7kxzVc<m
z#%<)l?xP{!+XdaNx%e5B^O%&zqtQ8P+>A4dt5u4y#vNPX8L5_jC?toFd;ol9`9#Od
zC;GXPqNweai3*_|@O|$~=()VLu?>3AwW}Toc^V$y|9W4U>clF~J8jjvT;i@F@<lb3
zijJ&OC(p_mjN8SCK-yUb;E|ZJkc%n9A`J5v5cB}I5~^if3y6|b5tprWLz$yxa-t1z
zsAeXzz%3t!pb2Rm)t6mZBfGH1orT6Wbwj1J^m(H+iq+IIi?skOc4gCSdF9>X%0kC4
zrPgA~2_VMPqfX7<(5N+rs|dpUeymJH+Gu%;ul&w~<MwD!Yaw8tkwQyLC3in!Eac5?
zyl8rfu~Xog(6iCNdd3f{0*nfG=hr=e^8{4s($#EFG1IbG1%Jq|$waL>hT3q!2L@>I
zpz~$cO1xPT1xg;4?^Md#n9TE6U?n!}r@BU|5#sAz*m@lRT_C@X1riJWo}h*h=VA08
ziT#zH5#MuR<HJth^&Cqte)m@{IqqwU%E6KbRBXkz&SYyc5z#|7Bb1PQ;k=mS<HrRk
za8*TnC?nu=!x+sYK0_~iK{_}5oo(vL_#dN%F+Oa0s>HE_7T4y#BGBN`qL6=yrp$ia
zqyr#XHe2BiyAwF<5XRoS5tnbg;l)L`1BNgNa9HIwo2U`{C;3A(F^du>Z-A4<Gou6F
zct1qATyEpnl4K3rjmrR=9kkEP0kw}U?mgMdAx*v!J44Y2(>b_%rVTI%peZr@bMsVU
z3(%L}-6>ak{sphb@l2TV_X=Cs5`&UPJqwlcZO|Qtfdb#YH`Md3=PpdlHCOh*IzU@n
z@PmggV1oOBRIT{N!w}F%{X*lz|GzdK8gmnWCGv9U=F>u|G@CoY9=(_!V*61T$+F03
z`Ob>qZD&pup`|02j;YjqDwpV}DR|qH>^r&UZ5J4h@85k;Wm?x8mq!L3ag^AH%5KG6
z^R^Lk(@L(jomq~b`})%~ga$iKGZ4Gd1U5#G7&A(I?<sFf-9`I&K}2jUuf8j6)0*Ko
zWJQUeuPK>yd`-L=#bpLIpUZ~*U;7}XG(2~Pq4nbnLKN>E%SQ`n6&$(5c3T-*_2Jc<
z?Hm`2;<frH-XLCvDBgi0-W-7*K9N;|`3Y<P3(Oaf2J-E=V{R8;Jl*>{P`MLbyMuYq
zJCz6!vNAI;qGmpr&XOYpOchgN$l!16f_Z<L&xXUsf=2TBMV^Jq&9xEC2-|<-z4n0(
zn0?*98;we7yFZ?{(pW+tz1%eT0QnF3Dwhyp&7gEvs5yXLz%>sKDJ%OLD}x>f9P>nw
z^a|J~e}Y~x(eBu#I9uqb=9G<t29NAqJ82|ebs3dinqTtXx^;)Jap*n$^Oi>MeszV>
z@!7uw@!0jG67i^^?_A=z>VkM2Y9BS|D<1c~_g@exN+hZ59=y$qht^kp*T=_Q-+f|9
z*VWebD_a)2zG|5my>Hk1{dZj-MP>JG-*ql|)Ampzs=j%L%_{QE?=r)kc`=j8KfF^u
znPf&;oKIT(HYxX`JijMO%-X<XPM$<dFf2{p^Q&@qjwt!s-yh6}NNn|WdPkaD^u^Jx
zbL`<LMgCD%-}=6H3M*yF578^~KR*Mzp?pWPy5S$re8ykhynP?@@uTXaF4iLN6CJx)
zo^!_*@}erp%4^dEJIw@}w4dMrT(_Y2U;HLR?D3B0GD{c2TI+hr@vwF|mzwk#&VHV6
zTInd1(U1==QrkGYx7ah8K3rJlu2XeC?c>3z$W*<3qJ9DWrtYt?gL+flcj<0^vkvR^
z>0|~MY=1Tb`%DAFtm+(K9a&ZcG%;yca5Q3ByS-xcg;%hwAVrCo1y3BMf+kdL=M;tN
z@jfl;wzL&s?nve;?DW7?SF40;fnS^C4Vf+a_wVha6&&r@Dpxc0lVgq=d9conYaZPB
z$swt(eW=094Lg=;laQVC`)JrC#7V#Rq~@nL*q?)bQ^M?RKFkb^jUut`Kx*>Di^R_I
zhZMw98i~94202ZNmBfenHhQ{a-W&2aDV)LE(q|{q!9y^m*ksaVPLckh74qi^c8}*K
zzY|6J4!;i)tD~VpqEZre`(XizsjlziOZ2JQ2e0nL$q3F11c~~tk42;E!g&=ZNN7Ii
zyb9Evte*vq(!xfY>7---<%34tp)QO0aDRS9Q$+~xj(*B7ypBRd%#11|8d@W_&Zcx6
zi4H3>rF#xiF{N8iWjC|fspON=ox&W*C7?0n>KeqD6tV8-#ng1tT$mus1+22CA{Q#T
z#%@?}ad&>;@l}t!cK?~jZdc9(&E!O9sRJfMv*-j6`-ET?k?-n5Fr3dQ1tPw-L!68~
z;=LoH$?eaup1)ZpiZ_X%Cfc7@C*c9B3sVH*92*T$eG8TQh5U?VdLgdS@OfLQ8@b(6
zq^D%50kKN!|26Kl^}U->D~8KtvX!}HORAn~+G4D=-zF)jOl7`9oDUa{b8D0gY3un>
z;uve2K~s*lZ7Mu7;LKdpQk-2->}y8Yy-IiQe5KGG`_1F%jb_3o?X(>w{{2-A!300(
z+A4S9$t(Ff`c8k*Vs4+)2|!T2NHQ8od+$fWcQ)xrGZH(U(lbE*->`X)d-eGNT8Phz
zV=6FR;;OFYGjmo5jMEiHXfvB);HVZzM_VXZt4I`Yu*1;W!VXE3-?SWt>1qWF-lJ=j
zIA`$&+-jilD{=aTVNY@F0E)A~ulvpl+j;eJJ5=b71@N>?ZquFFJxtt_@1v9T)&G0u
z>Hw6Yiwuv6S9e18bIE6QF?GcA8YhUQb!)L4e3Pf0Udq2`ZuW42O7&aMOq)12sI_|W
zwY%&eUYyfd9r_h_M9Cd0L`%>0Fq|0u(Oz-2VUt%DGj6J*(%3?!)$2A4m5fUfM|b9i
zo^$C6!Pw-V>PjhOEVkKVVOZ{@S;+3kj%3@|^>w7bx>=LJptNLPdw>2Zeef40_TNRJ
zVo43{F+yOC1Kx}zl6o-WoMvFCNRCg8=F$LXD7WDhu(};R_s;N|v#<U%{QlbGH?4^^
z3k>>)evxU!!myjG+Upe#Q)R7}VJ-oxDU3Wil~j}E5=FXwH#6eNACZ2}F*8Ckz#N1~
zZETnq7Tkyxeu;w0VH;G2Q<xi&|4k&27u6&GTX8mWJv9kIEoi@5eBrYe+-lM#<xCVF
z9CjYaly&Soo@i9vavzLeBd=!a>UkPl_Ac-4M&ZhAT9Zuug~^c|ixi=#Ra_-;3+&1e
zNPZD-?e|d0qM?bFp@uO)5F23QjkFN2Jua2z?$b<I2rZd3ujtdsaLyeO=IPc*9DfpT
zMhJJu3uXEW$+I1Gw%Ls4)~Ffee62MXh8TY>y#NG7#FiGRDRkkJCp|Xg=p_hdkmd^d
zKM>_xL{Qimjvw)$M*zbXi+cdYXKK}$ao-yX2xw;wO0{Xex%Vy&385%1J5tH#-UZ~#
zbfK7D_`?Ps$f#5?ts3eDFE9=@tvKVJ<EyQEu4HDqwLOc=NP^_{K#h{X?jF081$JrC
zV=(LlMZMeHsDMF<0)uYVI8YJzcm-D=O6*VoI`$Ub9s%N-0+uFgz?}wK;?j8~;F|t}
zXDKi+te5UwHjDleYP-G9K`!2k)pSAR%k*{XvZaD#fP5SuG48rvuk~?E*x+JQ0!ra)
z=0B#j*?6J}XCN9<;+I_FQz2?KUMx{K_%y2iR=b8OM?=Pp&@*>ZyRb{GYyLs`O1bff
zts%rx9<U6vef|?S@`sFg+kz(Os}D@SUFOFN4^D)X=(mhWi4ZL)%hqTVbf)@R^eYWZ
zzHw~HqJdv|2|O?mWBqf-a$?!^EX<8UYV<W{1MbOvz%8Huoqs|fdjPBrCT21JRl08(
ziG)iNM0BSaA#X-ym>5feP~hHelO=WbuWk#v@4dRDzlhZxc`Nq)jn68f5GkZmURe?$
zbwy?B8YFdr9-&ecR8P&HF3%$D4*B`lcHvF(8eQO0D+tpsqhOC){iJt#tVQxKdB`+z
zx(PBLXjz~pHDl8#-KocVJ)*g3_tykc{MK(Q>VA$ew3YnJ<s~npHUh-{)WwnjaR$rb
z*8~VeTMsDnlV6tg4vPv<y6E~RpM6>cm*dm?n0Nh;RBtrgrrJdLy+J7~I=n%yyYC>h
zr>_>M0ep|0V>cq2>8qRj@%H?3_oGE_s2_d2YJy6oiq~_9k9#C!a4WB+`zBk%kz=Zr
zml0t_$5SMuQ$M=jNeC~j=4ca_Lh(200b{5dcnmug#z36_`$nGy7YIPCn!&zz5q2#W
z`6)W91?s&iH%$=h(6z1|=uiiSMz3pOh$hjXTJ`|ht$TgYyMAWflFWz~QV}MDdV|+A
z1r!|4H2pO#Gy8<N5U%6=%QF>F_qR>3mnrBdxv7(a!2+XSDs_T|&^AX`K|6rze{HBw
zwMUl=rkr33;LE#dj^VIxs0m}MtkHf{e`l7bdJ`+uV+pTZHBYlo0PLZ>Z4B0+$7Q1Z
zm*<9GvL3;u58{uC#Vb$4mb2&AG$^c+xbc64ZqYq9`jXmX9u})ik(k>=aZIItpvRQ-
zJXFoX0h_67xLI8*a1}Fll&O^@N=6MwOej5<iKAXNS0iTG=~h>qvaL9Tk|x>gmL6Ac
z5tv`fnIc($!_=<)NDV5>A~)V%c6ahphfPiZ%=2nV-~RO(n?n6XsqU+7S&)6v(Lq%>
zh#kjdau-#00pd2Ja>+9WX(i^U%0sl;v#UDDZqJ*p^_y~sR*uRI8N++_?eL!OL+J3j
zrtD!pv2H!S7FPun7_pJ{1Yqy2>(q@-mk8W@*na}|!b(-{*PjTD!2%1(x#W#oNnKU{
zR2Qpb?EU^UH4`fa74%EgR>YmI6EWkrx#@G%CtI0z6}}9!xf_@1S@b)*@NKgTLfhNc
zxv@LEvCbXy?Gh&#TB4%iK2Mcv=c#Ts_W+k%^3Vzm{^14OpxhbPH2o~m!aeRMOZqES
z_ZT^qy(=U^1RD~ky`jkuI`!ev-ieY{+I|~NE|?1cYu!-#u$lMiMIEH6aL|>x>>N5Z
z=0R{P-61=^!Q$_4R83}wTq8aO6>IM48gzbZOq)1%vJwo3158{XeD`c&eD7-Xl0(R@
z&SV!gQMl6X`PR4l>?(cj>_zv1U6=A?HNWso8Ge2vtkqcCV(nhA_sjB2wHAeUoxhMD
z<X>xFmAVmAyWdhM@9>BU9sf*EI`t$Pvi|p_S3-h<R~m2wNB%M^bfb4G^H5M09Er@{
zt5{)hKCKi;ez3KkIJH_Vl^mx_KMVNg;{L=M`2b8`k$;|pOw@IoJNE9C;P=SSgx^i;
zKraV`$IO_i%I~Lw;I>V;eTfXs_-(${-XuQV(ja(Cmwphm4gi5PTv`&}->#)*s{OM|
z7`|xN4qqFjE1Kb}gR?3(<`MFE&SkTE8JE7ZsQ<uw+$#e-W$9wZ7B+w%>C$fiw+~#W
z(%1QD^MUG28mJER7J;R9Z@obyk*YmmD<bHdxOcw?bNr1%zY4yyeiZ%ZXjI)C?<`q*
z>F0c(h52O-Xw{!+<hT~RrBwIZhVgjTfpnfdS|n%}L{nrb3(mzAq}RtpP$MSGKYPY|
zFaAN9_p;^E*n7G0LGQhst-b;XOVVfqxhE0FD@xfX4G;+{otO5zd7<AT(VIVriLOAV
zsmo*Mtpq&0Q0;85C0dU!NGiA=e2@EJp(p(cK^}izBTDRf^#(Q&GuphWa0d`lS3716
z8^x4!RizJ5KO*TpcI9mB+N*22J4!wr>w7rT>KaE@->Y^ppIsZ~5^Fyms?(B+dxVZQ
zRfRk6q8vmYrCWxTc2C_QF<eIZQZe-C&eY_eu;?DUrzD0)Q8mVIejaan+`0t=47-FQ
zdfeXzDB&i52OzFRb(Qm5S6zz$Gyi;FnbWDOYehEvbFrBGbGs@*fP4KZS)e8S4zk#4
zMZ4-6bd^E)_+ZryEZ1DZa$A|s_HtiOY2r>Q|MjOm)9H~3Od(pH{Mq7|>2|)~Gu?Ue
zNT8yjj8011zhA06=oM>BerllNb??P277_uC%ijLA=Z=`m@H=fTY6sle*8rw*PDa=1
z@*tuNN$(3&)9kB6w3-%0;cVL;I_j~tVosq+&`lSr`ark!7eM#nyD@a(NM_A|-EV&z
zcuWjTciu&7^e$T0TJc<}TW1OCJ&>4xW&_7RQ$|=Z*OQ4Z?iK)}2dcBH)tjHgRk?>(
zl;Z$NOLdvkMtzUQ@dzMziQ4eAo|C6F**vY9QMtsY9}dOS%HT->i+OnRv}(H6=iRG%
zCr92qE#Chbv@~Up_MR5Jln$QOL3moZk-+CQXTDeP$wjiwSc<ETepf&S1dC~|8&fiq
z>kU@f(4XsEChRi-|EjUq#b14+xQTXQS;^@OR5I5izla?w-b?ZfuI1@gW5^jczv^+*
ze(z<^L}Kb<NeX+O@Gq9TxtGIu*_C(`H}i{+Ai3-9$%j0d!7n)%Uq#gHldCJ-g;r=m
z{&|yjNaxPrN&ee*yIv_D8DM?*=$RRx&*i^a6Y~*nqXuPMzR`VH&s7@vmrHVw`{^V7
z$Jyh$2YBk{&9eah)+Yn~FO*zere74lpF+H$Rw@9?pnqW0`XKguKPj=-`htvPQReSl
z5X<~t_ekdPP<<&eL<m_|y5Wqj$G!cqU{%A@7S}H7aVyL2UFS&v_5%<vz`|dNy@j0$
z`p?qxrmi-ANB@}~ME}_pzH2loGe1=3t$Tt^jAnSH7mcs&Vm`x^B?wr3J{B;U{|SE?
zK)|jwmJ1E!zCgfczh5F?%j2mG0@g$p?5JGz6yAFQBkiw?_f6S@zf8cUyI8=&$jnXo
z$6H>;Y^)aYuvNB#$Iwg;y{T6e+!}!oW44s2_r~}=dc%wXr>n;p`RZE%BT+cg&J<kw
zmjN@l4uvVdR^`(|w;joLlp%h$5rEnK;IaBLn5OsI$eqdUzh*3{aSQ*oerCi<&F)L1
z0nIq!mz)qg;ZHX0%E=Q?XFhx>v+$z>GdsMK8N|JUDcNV5cIDe8n$@$USTi=_^SZlo
zl;?|_f4TnH?27oHt{tAsL|fLVU~OhszMxD%Qode;yKoFMAdq58vky{sBFEp`B&qOq
z%Y1NvY5nE9YXH<oH3#Eqhdg-|_%Bn@aC{U`zQsv%Y`<KXvyY1nLdF|}N$;8y63^!`
z27!I2E*4i46dP67>^{AeN!;toet=3wX?D*)FX$HxK+^9|kD>1m;=v^#T3utJoABFu
zyG$=Ga6NS9_2Omxl3u*To=7jY^DF;dlu}TNr&);wcG9D!g>F%mCbXVG^F7Ri+;8tP
zb#q5EHHY)SB)TZi7LWawu=?fedGnVHsC*K8JR;?z3F*Cedxzs?p#{{X;Zgj@agFBQ
z5*_5J!Z56CG!wnXDtpRp`g$x|D0WkA?xR=5=D}C|)0!fgAmN5R?(4WVQeq{`eD1iZ
zo=nAd?|rRbyL++N$fg)Er0bX?$MPH+&*W@=XPceVEO<BOy*H|LHN49I=@dyBk9|U!
z^Ka&t_U;Zp9^}r&67|=YhF|UNF2^tV6wMw(eHTr~|8Za>KmJgR<RgFWk-Vx5$tIOi
z^09wt#6;k51Hh!*fYfrIt6*8eel0-)gsuN>pivQF)2zBT8i5dPt4auQ@Y_ZRJAOoj
z&^QKh{?C1-_)x3k+_E1-jg|d+*r9(9H|HVAeTI@AH@>W?9yhY=-u>fPP_2}h7}W#u
zbE7o=wAF3Wv#qkBtpZ~*?i?{%H2!qaBR8(qLTM`vjj_hi(2J{8gkD0(Q*x@Cxhl;K
z8Y8US)rzGtw|1ODJAr->`*ryv-ZP5NY6xF`AvR{77OdNf{cYns(N{X2QH#w|jxEfA
z54<}BiLM`}AW=xI+>4HLiADc5{MS-!#lB()G?uCYLQ5w58OnQyKUG!qcJlrK-n)Y@
zfe3%)?kt;*`_XlVG1%zL>yAff%Gi&thy(^$L;?dXBB8-O_tW=GFd79x+A|%PfHnG#
zKhBGs-FN)7=K=D-#qbz#F+7I)SpjTNUxdeii-`hofhd5|q@|-k6j+&<xYdv85tfwu
z(Zh8f4Ts%{jxFJ^qP~o}>MG?F+WhaY{*yeD<=5c<=*u9Q|M_d;C+kR`%i?xF_02fg
z2UaTJy<GB>Ug(HRbcTg6Nd>VcaQexnC-yVTZVOJt4l)2XM<aZ!SN5@3kaFW1#?+L%
z)N!#m|6sL;)EhHFh1tfiP4qiQqet&<+LYVqaCLnv8}_wT!7Gj_GUShhZ7yv*y*Dhv
z7J!(Ic8!7PH2APLudM+WaA1S*oe}-Pye4;AbXcS=;ieXa@=-W;;MOITneKHuMjNtQ
zD_+?Eur~!$f8+IBl{=o$mD+9*Gd)1rIF6-i*l9!a)WyQSKSu%g2*AxHX<`}ljQv&4
zd<CXc{D3_yECPJ`F3(=6`BSuzhq6@P+EG`Pp59)^HmZ|?eA@?1ke*F1-M~m$43TVe
zinOAX0>Bw(=8~TswKE-7zpV?C2Ki(93t(rsRYpTISLAfpJA|CsAzn8l?0o9-yQ6S3
zJaXd6=u8VBFb!R=Q;;wX)e4I`a6KoNKw>-|C8zvNDg^o*-4L^0lpJF{5@)_7KNJZ3
zM<lu{g`}`4ghVg>j;SkhLKn?{K~R-jqGV&}CKlEc@EI3YdIVATIRK;zh-mRk?zOt{
z!b>6wbC!CQiiX_&Yf&1Sxj!HIk7C1kS;h+N5?QN)xqh6uIhMt9Vv&bjzSnaL1dS5{
zy8KKWQpji1pUCon|4GBPxPA2sJ!j%78Or2tkVIv2zqLCSiMqyXxiL4oR#9o6G7dKU
znouCD$RJ<PwmFoa-ZT560BPhmm>9E(a<$aqT9u$TclUh^KZ5i&QIR~v>yEZ;83GE(
zsb4{(N`<@e{=RjZ6o(EKG)CQ&R5-I=g&BUxs$(M&i4Pv2)T+=}vDA<ON_p*S{m%@0
z6(oravWEH<E<e8<VCNnZ(IxbXf|$mGx6Hd{{C+Mp+f$I0oAXuFoEBp6h%*_U@ap<9
zwmaDt$1l?l{-AG`_{MSMU8W%Qr;7?8D~2;z5MNq3ynVN`NF;JMdZzK;eaYm0=b7dq
z&opeqy<e2fje%)~l`_o&5D}QBMoa@Yw#J+Z1GO0=l^y@|L-K5m)nOnNEijO}66lsd
zeD*yax4wjDAcLihwr2!3D=j66jB5%UFmixWCA6L4qnqWtmF!c;Z5oIjcjZ2LpoG|6
zr)VSu2|HRvRqz>hQFnR-E@)5t+_|z%8YHcFGXTiIOiF|70Q6ZlkUhvH=e>;@juO9p
z2Y+auogUXcM>SzGNuPwwh>)v(>SIcdc)}k6E<>ZgFYSSzdqTNRy9PUg1?X0TGDPmV
zbRn<09SxbdSZ{L4iCkD{0~BjQYLq7YCqt*LT|d=rD!6pK6kTS$;J4U#W4`41fa6b8
z`K|`(Qrgm&Vs7~PZ&4*W;DR+(75RPS>{vY4HUa1mzAk@!5MXv0NYmC1CQ4}>-xX35
z;?%MkK@;czELQ1c5i`+DyRLf<bR6>$J)wsuE9ajxO+&r^4Y*m*9@q1Bqk03iYUn@a
zz;g8e&sz1D{5O~08+^y1ZtoRpr3}F3|35P47XKEC6I;G*%sD{MiSZuPgLL`d;Dffj
z_9wGLJYF^=7D$5@<>*R`y)9+)s8w?GWiFO4hd+BIiC4ZMX<~b<Ehf2UPQcO%2A0xv
zikzt`rgdzlEUMRy*FDoagRNGZtriA`Z~hicHk;IC9n%f$QZ+6*7p<3FmOn=hN0uH>
z`bMEgq)0{vCll98A}6OWN2{t`0fXg-{zsm`ka@j36J$^P_TO}nf1gKDGV#7V@>ouz
z*zMM0>Bi=xhZbg1Jhcg{kL_ca3#?=FRLNXGKa2ALo8MbtW7=w5kBK-%%s1<UIwgRs
zsUkxVni|cqaVyXAOiA)k`!0Hpw<Nz5?rjm?T0`YF#W(7iBsLI+N{oLGeC3h{aS89O
zFgD+2wsA?fa5NyFR35%9fj43%ppd!EUv9?zVEt;9#4^i=+f6*f6>K`)Taa<=WTDOd
zaiS-Kc|gK7np=tsXL7Q5iOdUfHmx;#o=a}A($90YRZqNJV=p<=so4BDY1*}FCCAPU
z9I-Xl;*jRAD3^##jjMK!eONW1msu!|!=|>P3Dlo$Y9}}Rw!eGFwkb-dmEd!UrMukg
zThB79!KXB^vy;=}_ysh!BwfXUmdQKX<yXTRaB3yGtim-OwGuWe#e&T&;;psWP6{z-
zK6Q%z)q&qIkCY(vfJfu$zGf28v{w449^bcCwW8$ux61d0k=-++_&inVrxv?{qK9W7
zR;?innB1&WJv{Y#0w(N@`adqHUX6@Z?OF7o)u_7+J&AMoRWKJB%7o9R81cO23kL#;
zv>)&D5fVZ_x#X#T^E9(V#NkZPHal4TO%ya&2)n8zguMmn?D53VFu*Jm^}+^llA<rj
zB~!Flq}N6I3MD6(Od!&neBX9?9tvN-`B!zy2Sh;Q0^ulo(71pWkwf!6V^5Z?85aWa
zh&MH%xSOCvN)85H;l}CLt?{=TqDhRGUEzgk?Dxr37qp@Ax$4VD4g4VUhiQ2O=BPA0
zgAv`BJ8I*`PixehVvAdZ7SZQ}_wmTqC=A7Bk)q(v%4u>x-(B1sHy`?3D3J`ZluILQ
z)~)>a0y?1J2940Ds4q0d{+cQRpZ7=O?|_C>2HW)-WD6SmBLRF#`VU;Q%8-rW9tg{{
zY%UoRy4(=;MJ;>U^SJ;7*=XM&=&c^@#Qpj9KBvE2V#oEd7O<-_FW|J{+t_`9dbhX5
zyjE=4lQ5pm#OE7qv+lXVC)ghl>`~(Mr$b=vfE{9u5+%PgTf~IzTVM9d11`i9nGvMW
z&xox7P-uj4PyLS$&NS+HZIEAQo6gOEEu$~@r?bp}^%9p@A|$NU!~1!t6AHMOsJh#&
z(3<>t#mZ8T?kZn7zk(zp_ih?>egMD9EKt$@pdvCv^}Rmdnv_fQd85=`_O7}HU5Q8O
z8rXe0R8A3um?dgQiT78B5Y=wsn+V42ZM@7Sn_u#3;5_!q3m?taDm3vSsusH~5ayC|
z0%4?TcHc>@%N0Oc=Blfrw2X-ha{k`AB~cYdUf~uutuzity|AKeFeaB<si2vy)Xk-(
zY?pSFe6zF^O;xzbrKSAbJh}LXC0gFvI;yl(#`k!0zqY<nS}N^J)#wyuc*4CMzVKnV
zQ|LLD+;)ZWk`jJ#0h%XgqIsRb)D(42x6AZ7cIgr8N`;Tz#^X3`NL2#HiwXnwLEWaL
z)_X-uI7mS7m0l@ULqWEulg4!G!w5a<Nw+qrY|or<YtZ|T+=>%3)+6!;g~!=%8KtJD
zeOfO1XGWdaK@mr-F<#4l4*%J!%|#-!Mbkb>bkygznfi&H+O}P4{!xQFKc1w|W8vwm
z$=rlCopROP%I*roShS;_O2@@g<Ofbz3sd7kGPjOnPYfnGd(n{5-<C%pi;9u1#p-gW
zC=`0N!F}|GRH&RR+Dt2Sm64MuMU?9D>z-X<D9Us2M|gD7y8h&LOt+q9*Yz04L3*Yx
zmM|g4!7T}{2BP!QKlmoPn0?K*QYO+?OUG1hN@KaikQWdgf*RMU=_tAJ$$~q@`x*hA
zOMdznv4?#N?nK`I@BqE%WFC<1{hK4xx#S98NPgAVM5!wHl|{=;Ci@9-z>n|4tsP;e
zYOT1%d(SH4jyzq;=jq-TGKKRIqQu7Z;f9Ad*8_jYNj#|ILH;zg0<FZlm|a}wldbEE
z#))XZ<b#%M3>zm9JSS+{z#ect&z%4XIZF}_*ebVm-~hHuhchIv)A?(DlR($e#ziW>
z7v(t<a4vy0eMj4$33wxSsryff&jid_)Xn>L^EB|>c?=whu-{{A4TMuwh`CV@P3up;
z=al@O9)1Vir($JAau-%M<=8XFA~dfQBv*}0?m`@LZ8LksT9bP^OV1;M@49lo%xD4e
z7j3T!^7yFjO{5$q*-I6PsyF|EG)`%}cGZ{?9oJwTk|Spg&ZwJg_r*h!I;}&Q!`c3w
z#Y>Zi(nORvZv9PY8z|1+CT2m1<PGka#$4k1=fq}5Hi#9gZCgSBD|=)EY<K^oY{Sor
z)y}qp$D23nzpFl@&LGPki4cY1;?;dyS-lyd?D)!D^}f{7YT7mO?X?g!9=weN6UTE{
z?>4^4DrvV<tiTvVIC1a;Rmxy1@RG9DQIR;u!A*{mE&E9tghj=-yp-=>=U%Gvo0`&+
zZ(C39o@0_)%9ibXjw>WZO#4VYx$)GGOe?{Yhx&6(|A!VeCgb+p_+~{Cw@%HUP{TI>
z2`x@Q3OW2hoWDT0j}i?h1T1g3b?h}j>j#Xy$$PFSF(?&PR1nbm;bwj6LtY@I2_=O>
zsulOGpjBg5Oyeqk!<=jpUtVG%e{ouDN_}Z5AC(kWIS<pe_lk5lW4Z;IHW=>L>Yh%d
z9Fc0vU8;|NN12vf^`*~vqWwhhg9d>k;kWT*H)i7}Mw=78^tfoW&p#sui51i+@%yYs
z4OeQiR6gok{>P8HR^Y8-pc*~2ol#eBJuwT?c+3lphHQDJlqhq&JIVHy9Kl_|iOrJf
zD)`hyR)<3_TkdVDIBKCa9NNr6@hG{`BSJ~0p+MVcd~0sVwZ2j#i>w{IZR9(ntzxcX
z>QrJnTFU!%qxTi;F*c!NF~4e(6_RP(p{!6>olHpVTn%VBFdoa?!!6RusOc4M9zXMw
zO>>*WD7?6z+WTesz3n-ZJ0UAd+<TnoJwfFuBov{DjBGZa7;nDpBfdr`=9<*U(Ke|d
zsAXVvdLP#2uri@h@+Z%4$iQQ#_9gP&M1k7)t5}*tek#|JM%#>b5>_3gLt>HLPr@ji
zm?2WQdoQ@>tG(SFIwDS6Jd8U`h~pL6S}{b8)e8(!Wn&z&e7Vmya<^BP@PNIPTmH;b
zM)pd~;GUwbHKBznn)_1R8-i8C?RTmOu&j5PAagU!--;>iy&v;s0J+9J^_E60&jQ|+
zsZo-$M?!v~oOL8jUF%Pr?L7zV(17&s@@G_1uGM6Y<#W3Vlf^x7OwLMMr8_IlAgy)o
zC#x3s1NTB|)r;=fQ#8n@^Ve$Tkl`kOhBhJ;+yGi>5HfZT<!qaR-aZ}9x0TUyDSP{3
z{w3C5IeTbRTZWZZZLZ{u#K9e3(Mi5`ENRyuSrs&Gs=J+za+`Q<o9aHDyVU%{OyhQ+
zAQ*CZ5TIa=4ShmJF`HTT``*Bxk1h~4yIDN3s1(L`oZd%?wi`kK<MJ(HD<_MsmpELw
z061KC{mDCAN6FGei6{1#3DJi|_I^7k??bI}P%xgI$HUGipqj8hC_rm4I<G2sz^ODw
z1gQ#Gx?dAXv!wB6*)Wwmff^&Jaie_e+>m`Jn28?h6yVW$=$KUZ4OaeAdjz&^2-$;B
zJIoU{T<qD3hGgAjmG@F{4oKR^PfW#Sh83It!ySe$6Y~jguk_-n%79>AhWrky80cc_
z>MiIYN<2F3OPkxIyt%0QiQ6T@&#*;I_L0+$QPN)2d<Z$!J<Mbm9+>)xRDNp4PI^GM
zMG!!*8#L075>yFL%wCoG6;~Ox!QuhSz*nlvK6algKa>F2-`!KB)4;GTHPkVSDs@=l
zjvHI}GII!$(M7%3s@WQ6mD#RGnU3<fW6_qKaG^M>7e6|WPX2a92m}n<EM_TKNqfI@
ziSIliR^lweD6wCMXQNWVj1mjx%FqP46ekWO^-<ze_FB8e6Np9qLH&COwR<BZpjh5w
z99XJ8%plsb&fQWKLqsL7vd2{B5>GyEP~m`uDsXo>SiAl=V1?T58-nXmQ=!5bFtr%w
z0{ex)k;mYs3LKU8MI%-^#sT-8*2?GTCeCj;GDzX#RIK8uyg-%sRQA-*b)k-Z-#ZgQ
z5yMMN{XhULsy{^+8u{Jdh5F8kvA;6YN^68FsS&4j1?F^sITP+Zw<EK<r<ciGV;`zB
z{LUo~T4sdU&j?{P<Gs~HkuNmg$#+zUjO-_Ms^lFOH2y4m3jZBZH0y>1llKUxTP>Qr
zUu4dvZ@YIf0x4do$ba7qa?n<}2`CoUTB0F`oh?q)lv(bl9bzC$CPAuosrNoxm%kpn
z<%W|4n#q1B*rl1=&Pobx;SFJ_u!nDRUql-KH`Ln=W$&WI<bC1h50vJ3JKEgsf5A$|
zw0~Xx819x_+5>1z3eZ41{lQCrQO9*n(Ata0O(D@CV`NX9@cSTx^O7-75D#WoyhZop
z$h6E(@YSQME2)_qvS3MY2wv$h#cl0nS%}I`Re}7QEZ2}qt3m3OO9ORqy@qQ5PuP24
z-B8X7W<J20jXj}tx4dtvwow|aK^lyH6oJsR*GCfAK5p7@bA`C=Fwp;vKOiuL2`7w1
ziL0Isk%V7v8p}S~$VU>M`=d8(A(F75NpvoWB;3RMOfiyBx4Yi^NP@L))4MBuAvrP@
zN$~xT!E;OAbDNae+WwIQm2rvVgt|VFgazM#6?#d-)Eh+-b^|E)vhp&0B%#EuGM3az
ztf*LT!<K_}_CGzB6dbJoH+ZcLc&*SiO6>bg!0Qp4^uz1Li_7rZdRQO4p2+(Wy#8so
zB3`X^!|Oi2Pyw&Lf5YpEzxW)ys*L;fF$3VWl|J0H;f?V6+@U<Ulm`X8dZzP{n*6Qi
zrQ({fkek0yH^}VKDn8zB@Hlo(iNoU=z_>Q=co;87!`FUYV;bfsap)ax6w<c%nqN;v
zd8h_dvIB%jn^Q7YqnZ8DEJ^OONJzS5oIIJc<#}a~_<t8}TWb*c^%0P9*3*HQQ#a~I
z%)1{eBj!)X_95n#ye}c<x?PLJ^t~tsa;7g-Af|i|3%5npSKcCGe$rn^RK~43Y5-#X
zls?>&@J7Vk0HEA`JP5=bosk3BwL-{@hOGV@J!pgequi&u?=%#n_XGp<Gsz*-iD`%(
zZkOu5z)C>k^=kZ@5Nu#hB`WG4hB+J*8v*g#(25Z*=g-JX<Bg;FnBdl!5|URd@9p4v
zKLw6^EUe}1-`54OR!dv}-`nT70J+4*ZwiMvi(y@7J-aU$$)}}h!Y;(P<+*|ky%CRN
zp51F*r%kiuC~^HZVP<glhOr3&pjM$qM#F{=iniaTu(a8=08Sx(@Srs%gfW@53R#vm
zHE-4WW-;#3SO6=iuhON>VY%vIv{#Uc=#plv!IqiqDa|6932XM<{3mZpG*`F>#^H1Q
z>vPv7|16C<;JRe!IzZZ+l`*ZfL25c963A<a7bknng(x8Q{Ln1uI%8{(E&=Dqtol(%
zDK@WTu=&G<v8tr+$z#c%8Q^F19>Mtwlphq7dp-eOgxZRHqaH_z_8$i$|74;>YWJiB
z`+pzxQoEz*gom-7!Z1V;<7k6L>G$T%kvG9Qr4DG!b)V;a^Sna%i4wz}3|ix`(*C_^
zogDhVTD%Y?zkf&{t<lW;pf!%?{o^|atq~<3oh@FL(irB;NNM0B#0dbh0ErWBCO~iJ
ziI+~l1(&<~2(K|-D$dNK#F@13W`;L6(!lehcrc9zd7V?rgX0E~(0`sDylAVw%iQ;M
zbA?T>6_-7sDu2em#B8%e5(b&GAXkBHXIDaNb|wBMqyw;GLvB0u8YP#G7qa999pm|8
zu8?SavHB|_9|^gkT8oD9#^K^vwzY+a&3gE3c&HB5!8kqqeR!ze^)RD{bHl>|D0+A;
z5A&zVJ&2OWFW2H^@XExeegzUE<xVnqLP#e2n#L?YIPr_~#Nx)*iJIA}j*@eat{~xN
z6L<SgwEfsWw3J$0Kh=Iqea|K>sc%&74n}U2){gixgx0ZhWBE_(NaoA%t69HLw<p!L
zcw?E}G92q)o5_`0OX^Q*%M9W?dM*IcDqQkQ+x5xp2}kK|CaAvPdp4uU+^}Sw1+uVH
zSI-i=X78$#&#lE>yMj~GmNF?Ps~i$J#|p+y?bl~{r?x>b0==AC+3l@VdfLYub?^b`
zL79gqp7Xu$Ol&=8Qf9=84o;{ZS-F3Es_PXCY6Qk`<Jx^oHrlu)bn1_69-Me-r=5Wh
z_j>N#kj30<#*Rj`h=osdwA@dc->mcFucx}cVHM*o9hiuCG$N!Mc}&??2xUS*W2M{r
zF#jCG6$Wnu^C*r-J@cc_;xpJ&-4{wTmb9G~mO5iBQ5(t%$S8UK_L6nsDGoxoi$?hF
z>OCbXUAxz_z1zrsOji@pVSy#0qX%i!tr?xR^cFlVg15-sw{rSK4r{6KjPa@a?$HAe
zZ@)w1;n}b-{xekpHnfk4#sj=(ZOH(?rQYb9LdL;b2W9hp*9#ImvBnWnB#?e`YW_Bz
zpX`z9{*B&HWQHvV@bPW7dyaT1b@_p2ME;)HmCtdnENta`NlXt%zmyrVHr2H^b@zH)
z$6IZtR<zT<xKni6tAjFwp2>{(EY<ZW=t<4rxbveuQeEsopuZ)l8Jx`sV&2K@%CS>V
zr7mA+czQas>pNq!%L=<qpUOm=?%gzELHlU+)83fLew5jDX(k%OnF7mF)2^iw2Rv@S
zZhuBH36;3Srw@XIAQn>>OIirPf8>MV*}%ivfm-D*|F*s}Z9ytSm&V3AZo2nc=E!`c
zbOr$CeS%F$XtdC_JJRYAo#I1ATMOR^y2-RP(9R~oBzXROU;+@@H(TY_>jOl2LpNIp
zU+rd}A{2X7$*t`-RPVe)CJX{o+~Qkz=K=m3+JceO_hWX*{|CGLxsXw8vTsa#G`%cT
zw{0s~&=js93s>&ud9zkRJx;W^><Ze=SHTCNab%zm4T_K!PXs~Ms;m09zelnCP*z=x
zCG?TM7kYj!{4sgO{#9<)*!NBLK|!kPdxSAQuipRV^L|5gqtCUiwokX&rP1H*<u70N
zmz{>7?YF~Xm!<QR+oRNF_GPVUtI--0QA*gP_;aLfDROr@!GW$`^Gns(;a>`4qtjpM
zXxZzPy*|)^*Y*0RQU7Gbxu`DN4yP$2UwH;eNYqK_2&hW|krL;;O`ar03m)Y4hk3_T
zHmjLz)E4B)VoO@k%(8a(_F?`cQs6+h*<|06H_qjb+<?ypcN{w^H)y2)lv&4Epsmt2
zd|OM{b7Zb^s$Zh5;R|#hD3piB;plEou+4s!A8s1UWVF4mws(~{j&bVu^Y-0?-AkIT
z4v7ctvrCHoy5#rIOMYMHe)2VFaVa9z*B{XNzYJ|6J%M|=v!x)VJ+u$az+`U72(%YZ
zL8MtVg^3KEpva%9;7Ow6IY;STle~)fo!gF%zwrFuo1pN(J_!w4Op3!mX&ExbhTx8O
z3x+_Z+#oivOq9(4$1aE70+W=6+!Y#>98Rz4C+EK$S|aE5$octqy6^tbnES+Sz};ww
z<N3JEpGsY}kqkoF{##oijhRs#30o)5KQk;NM`qJx)u(ahx!?ooGQWm62AZaHrcgSV
zQUUIc3KfhLhVGb^6I&H3gdKV`#QJT&3eD=Kg&yj55emQyny#`^G>A+_L})2LjG|wS
z&<{8Lsl0(&FHpf}ye&3PK%9tRPGf_w+jDDh^|J9<EcJcx^?E;i2?vuig%debSILSZ
zwhS{qsU_7lN6#2kW5BL(dP_@;(*Sy<`_0pRamt8C*@)k{vt-1zYK{@x+oHPH&=s|+
zaF>M<H+aTjN+$EFKe;z^>>B%G@#r6@sF+icKhDJ1pJHfd7QU&%3TEV*$B}RW4)3k&
zv<7Sgfw`zNyoQ4~(ABTwh;fZ+Q8Tq9Dh*qVv&qNGkuII=p1a4q<6X&o^1oQbvL~Ml
zo)9rk^oMJXktz)G#3r6qi{!|n&fHg$K4D*<ZJ}3sS~5+uMsxH4U$p@!oj>1(sTPaR
zzN=^1XYya+>gu+F71m)ZV@3$qGJZJ!djsen9TN~fNNIwB78=?epA?YmTxGb^#D|`d
z8(y!y+`raJqsZEjx(<{Vl+X=dMG0L#Q2(jREZSUlhI}l);>(6ISfCA^{j|$>#vRg9
z$eT!PaZ#LHal=GAmu7cs0nT14h;yB50^p4zLb}Ht)!|PPs6}?_Ih^L8vU~ShH3*a&
zTaLhT{GIsU;qQ%U0e`9aor7R-zM5hmD)Q)i@UnlJ`;g)>Ojp3$cYvVxs`Bpp+V5j&
z4H)35iBets6Y$q|y5blNnfLtCj6i?F$+$AC)*4n12@rBuhSlFsj<I_15BymW&&92<
z0l>x*W;V7jCk-IxC!%I?cBWF+Shrb^5j|-?u+J#%d*R2(Sm}e}*}rEN_8yp7_}YP)
z4;O*+bsQLxeJ}IOzcLHo+CKA#&L98w#iaTj^qIcic2H(26Y+HivJ5_R5y@0loPRXQ
z6Eh7l`3{X#EB#b@sha#xWl>AjE1p9;y-#tdJ?YZ6Df>OFfA3uAU)F?sZ42msWtlD&
zDaz=dy6j0oRmQ)@b!8Z)Tln_1sRQ%vi5J8ee)UY_+aCx`;6;(}>=okLTymegh9Z>@
ziIWKc9iTqane3&;*;yudxx|#m&>`g4>EcHY9o<s|z<ONkd8M3gmEFw!VJ^77sqCHm
z_vVbcriAPJjMs#y|M@NQwA5`q$C_!dA9MzWFK4IZ56{<NWli62_3Xr9w8oS$M+QC+
z&7$PxKiiOEC`d5DIMFli-kjHr94*p*goZ$2`4xr;S=&YTX~t={dY<@XfgxnIF4n9V
z+a>o9LXO8pmZ13~U3%P@KKJ{U-MbZ=ffSZDr3(7s;{#16r>&kW`NN;pKg|2h5@;Iy
zn9Y;DAPQdhsfEyhL_?FG=MRNaB{8P>#-F>GF+AS=W8u-iixHH@IM)iV#v_ztE&u#W
zJ-*3SB+{~l^_sZaFc3C)Yj%Evltq-tU#BI2WgR=pmd-W&$03n$lm@72Ly#uh(q^Yh
z2=;}f=jbyB_T?!5J=id^+;nS36q7?kg$j4{Zt?}<0%`CPtSmFEt}eA%L{!;X?Bg`H
zae6yPrMQu|vCG;L|AAeB48-iIP$`dzp?Qx<Kiudg-eYPIn&FgqBG_+yRBfd~5g58_
zDeb$JzE@luuPEpxB{<*g@p4b+b32F!89Qx-Vf6z=*ekrH4;+IR9~JY;G5F8mf@7c*
zF;CR|p75mV7{C1&J;W}PNlAYIK5r0aQsTNXYq-b0f>ivQsdAZxD#}OHRoAQ>0t+dQ
zr~=2F-)8Z>yXtCnjlwmT_}TAGR(o`TRx3mhhO;UVron27(oy^pPYu&gqcl@pKT%qR
zP_n!EG_O_e(sE>!c>65hP^B0jJo$#Ye1dzStr>m;Rg|nsZ$LYxOnmb;p3EpWKMOAS
z8_7jKj8)mLq0=4IX)f`^RvL_Q?vhLOlLkp^$t8Yg&y$Cx^sGsW0x`~2-)dzD>@I&m
ztg8^hV<fZV3mhvt8^}7TEqBc_jaGXMW+~Y{d$mzLH?l>-X>w<*-~0aC@Ps@GK%Q<G
z3?k5JH>9Z;@^4(OTLSq0%ItdN#a`L?E~gt6l!&kr(<|)xf+&K@ODKp_(W4Ie3;Z#Q
zTSW`zaxGvx#|})P6l|-wsbaV9P@&Z~ATV3?h7_ANyK*Rvl`O;sW_&A-3xuM5ck!pX
z>II|lAXV=^oE>i}L0DT0!B-7tE=w|ky@D?ECw^P2E8rNm07viOo`pTJ*vC8D)b_Xj
z7_&qUCKU9ZU41e!hoMUYAF;7oR)p;Vc{BX|xIoP8R8P2>0imexr5Bc9ep;s*1V3RX
z9N2T$Pw@o|QHp(#grcwFbv?O}K-Z+!?}AKS_gHHF32j|`>HP{`?X^IB)CJExs2vRC
zNAb~s0>5A;D%`_c#p5y67bUOw#4pacsc-r>v~4RCY58iEmQQJj+agze^R4nrv{ADS
zLv*k0WK*L4x78bGw$tOcexSt>xaOOoIT`rtQMws&ZmUnW1}5`Nu_7o>%T3YfMm6#$
z+ely`ZH7zuyT`g!isa}<TAsRXSaMszsa|4vwR~6H^7^GMb6jE*1Xk;ZN0|n-zVqj{
z4j5ihwAGBwrW=}~<W{V(HQ|s=K0JG9n)B&zzh!8JolXB_f(F^hlA2Ez7hI!{G@L5&
zqBCP=*kb{m1_`OBNE0(fO>#xw>AJ#z4`^WUzcfHeJnZ9Pf$yU@YaUlm2DX#(T&s+L
zFQ3CgdK71E%lC;>n#`G+;d?VDYGqshqSm*hCUyMdsm<hS{p#HEQf_XCmg<FH@%E{T
z*fT!Qi(XAIhItx8u4j#1;^Q?^UE5h{IV@6fz7>!%*NVmJ?P@Q1;Zz@_Q;BW*6H=5#
z2mbne-R=*2$G9O!TzzDToC`OOYQhavsBn+|&=19z5N^T@1XgLPJ5JidyASHj%?s!$
zmJY-6=vkm>QkA=6fKoP`vQnoFP-+gHn1V8PP+Q;bQ_3CCUV`ebKdZtt9dYdAbR3D%
z-K}Ru^q1qieF9bmf5)4gVDN08N+DRvJ8_6nPZ0YxMs!t;>%2x^sq~hIL+S0T137%h
z=1;fG?Bvoruw7AN*<G9^aXo->d`NSpw2VIPS<+kIKHQS4)pGAI)Y@@$z!}9c?R5yL
zW-#%2zFH9${TL?n`?YsDkCj>c15ebzF}k_c(BK<M&A&lG5@v#Jdp+CrY{$3wcR|O7
z+2#2LH1G6d>W&w5J*t5s66KHac4E(JDUP@i%Jn`e4sEq!RH>9aB7C~8Tb`N^Yz9DF
zr+1c6?Hbvj*8gSxJUWj{@@<0eaa&fKXGdC*>T`Z&cx}6rh5V=GGl}Ni>(Ed=?oPam
zOfI-eoD~XRFB+RuqPK>UxOQ*(#ga`SO;~duJ^q=AD;`KwU9FWfLPv>@Ht>Z#&zpoy
z*}vDIVqVp;JNk3t_rzXOy0O9y>JT+pbwf~t`E7l!=Fff?bo+6y2MwG{=5F$dFVeLd
zy<M|X&Eu)Arf~=kP3MMuR|Q|`I87S?`SM#lpvS)1Z$PucfMkd$CT}A7l;xC(e>H9#
zq6&8|#Y{_&U3$<s5W8;Vl7r42ly9>s*CS?|+)cYP?Y&z2^dYZ6b2*+UFY!bpg)i2W
zUEn71JYT1}q^QFbE$%y3a^+avdv<b1*rN|a5~!?(`xcKlO4Ys&zufI^chBbUmjJ~L
z)%b=AtyEeejt*GvKK%y0)>`3ZZjEjp)QKhZ=e;sbv-=8gL0Wq5D3O*a;@wb>P>l%)
z{?DO2_G_tMvtQGj<Yx|Ot<u(l(ThYtyCJTsD<;g$2HM%@=oMVGF?*D#Wlck4wcH7=
z1*n;<p=SoQY$XOTS=Jj&TjjoSR{x^bx7W78WPQ-5l>3hqKU9;+(x*yHopEBL1n}7W
zPn0NZGIkTDgZck=`pcMVf36~c@A8jn@`Vt(5%`{3-Ni@oWC|bB^*1c0DvHDhdnd~~
zIO_wElf8=vECnN}D<^R8fjWv`xs9fNlsRPNs8sh*D~Dr;miW5;4vu^7Mw2LFUspY4
zG|_gEVx)ea(T6#6a5-cSQ4{~k1ivo|QTIx>-UBO(Y67;J5e{Go2QNg4A(kfvb)Z`%
zCmhmFS11D^^|Xf0N@m^5=a<d8QR&_X3I}px*T<=X)#)mHr$9Y78`S=pu;{rgY)g=1
z1f$3YAj+~vQI<9C@4Ll}hWlh}gjfjBPMR+;+M}m??(roCU^D?_UVvM4M*pJy87*op
zFXd)TEHWA)dt)leSdV-6l>SWB<Ni9pQ@Ua0VzluS+hLX|i2tZf?SqjtkuNonte!F%
zzBk~vfRyjW(uYB4aO33`!TF71<+O}JCVz@j(m6l!7Be{O$Q{oAk<XKhkA-(3&s!4_
zA>5F^pkF*$ZckwO4ch+6=Ps%S7|TO8mQ&u*=P=fsJP-z69`Nbn0iNn$B>m4F|JiHn
z^0&OLP{V1N`1`ZbD0snw3(cbc)Yaa=-{s*ZxM1)DwaH6v`YHjhfZNt8p3Af_WopRm
zHojhS>Z`UFBjl2Y%fo?j=cq8Byz08aYB7QGtsNR4O_&zfq=l5ZDgnYXh*{^EB~dDN
z{vk3JYZ+Kx=G;@Zu1B{9Y8H3MEV?PcO>6^U7|qnh8YJ=UXY%c`S1MWp0vafJt$Ycq
zx$xb;n`%*J21g{si135U4>fxi9vb-*t#@hg$rE&udKDD-yIYfGd6D&oh*_BB^4EQg
zp;k<Vn<3|t7vof`S+!c!-5iZyQBeC4z9<{7Ahybxo(#$^-lnLTXaEUzv+Uz7!kIPC
zGZe8!Ou|YdjzEm}z_U^EsFdO{K?xkDuJQA%o>x^6-K#47aKj(`7&-8x&kr`qTWDul
z$<;Da2UNRPK7scxD=efH`OnVdvaM><Rx{{{3?I!jPOTaz`YdXqx#GD;jlB#pFrL6<
zXa*hM$K6;mSr{(ZthG9=s>9$j8hly^Mv`aOb!s4-Q+aSE#|J;AeRf)^yTMuy6J%Zy
zAv}>b*d=J|<3MDUMCGWkSo_V5SJEv?0Xd+Zk7?&mY8pr&pSHtfmswYM4ZqTltp94G
zB&U1;lQ;4MFm|AxW&AzcactM1+>j~PDnjs}m!5XDe10=t->#YLZ|xb%-!pxXxx(B~
zsGPRA8D8iAYuxK3FOu7=gO|Rn26@4#)5DFwLzF!26S+CXGyC$o<@q;_;Do$B+l)_d
zd}w#EB*e?hGs7IU07t-!AG|CLNUv~HUiG3-FI4(O$1T;~w2$!MH`cG1A9VVFc01(X
zhnZa0N3hjz3T#z~q4wb~jttWJLXG$fjjw-z1C_O){al3S+b0AE{4Xm+On|~QeyLf+
zs>~%Tt`Y7PTp7pd2pu~J#9H>Iqb4jQC}$Ewp_LFAU~vtIUZ_TD-T6BT+b>#Q?o7K`
z*88mNYXbnmBXJG)$XdoR23&^`6ycA$>a>vLRrLC}#;9n|(szX;hQk#EnV%4^A~cmO
z>n2Y+Ar7-Xc7%`Z&M~uAsM9HU;0eiG@Og}F@itcQNPmPSJg<ec033={dR+7-dc<AY
z6cEi0uR=7TlX3-bqU{uK{C#Cv%wpmINS+Z6asqyHj;LDUPHO32#{+|cEreY5=~K!L
zKdtCiuv6A7R){px>2g}um^*dFY}kO&59r0&0hdYyCPC2rZ&Rwb!fT=@WuSj>&2kf3
zQ}cgk>WYsBHSrpjurCpyp`zr06BPk9OF$yB4q3GC<JG(C$qQFwD5NGBD5|c$n3C8_
z`&y&z-_A9px~`F4Qq<LsVU-?y*dVu+8)+WKFxQ^MixDwgH_oxgO11U}iz`e~=`Kll
zHm7E6&YEO)g3vOoPOFDmjACo5b%D`^da_548Y*T4?}?ELK^hJ%$>KTY^F8jH$9nIj
zMT3~SSgebH$P7`aHJ}po;0`TaU$~7~GSem%m}ZZ2`{u%r-J<K4=hu@wz?cgFQh#cM
z=7OKg4W+{N#VGOJ3yb0B2UJ*uaF6hzK(AqG8D-!*?frTD3(ZX<1SNKQ$15hvh=5V`
zd9;_mz;vA@l(%E5>2k70AYQ4oNRYeuEMSbPN2zySx2Sq^ejn<Ib`{DFs>ttPDvo1y
zztQ71KBhmOdffX*_kW5f7rl?VSV8n4R(K`)VpQE+uPnL@<EtgU%0D-5$Dgw+174-)
z{v(_rke1FwmQo|fNl1EQtCi;Y*hh0MXSh(UbB?u&4h?l1^wsLlH6O3%Hv5fF695s~
zkA{z}a{)`V#97<NTEdtP#*rE5q``uUIDCS{-8f15!PKmwUt$7mC7R)&lll~`HQ)nS
zRc^=9_pVMF0(xjd%a`_;XLOuGhJ~YZkP(nGb+K^9s;#uTa&dft)XV{kq`$Zb)LQv2
z)S3XTV`}~BPaXz2b2*4(`U1PRs8GP(Guf>o%2&l>4rQ$xRDAuXlAl(mg#PF^38uO9
zf75yn-=mh|g9Ya33Jcg(0>r)k3|U=u%k(-|z2dz(F8VG5-#<Ms><4-{WZ}s&o_d>_
z!!rKs3U3*ul4fnH%0zmtFAYqqZG4;68r?gHhWE*<+>9IjeBE+=*SD(ZE)|WFrs9|}
zGWhnXe%Z#}ud{U>7*~#iNR1BR_$5Y>$+8A?&v#W;X)zoVw2Q>q0{}n~M<Gayj@2g@
z%#Vik;)7_dZQQlg{486V?L5vuYUSr~weFi>@4%#bJjFq&D|>h)U$kO+Q{92-t`FoY
zPJ$6Q!gMp$dPU1S-X65k<b0Vb70Yle7JzVMk4~z;sZxM&qC!?4W#Z%zR`jtrmcBqn
z;_>(W1{r^ZT7rje&AnKSDDkTugU2uF;dzDI_tU={b61I@+KOwer;d+}{~t$t<DXQ|
zu(eU#*bhW`$`Otb8Ewd5x0YsV43z4cBh-xSz$KxXd0L-}YvxecR7j)szOubQgVq8~
zXmYdvrvx;x5O**moRWr<BXWXk!&+f+hmU|5|J>6l7_|A7>3Wq>9#!k^`;2Cz#CALM
zMa4Ht`)gq~_O+{I24?u3nRqVd>qo;kwa0~-|C!qb)f5A$ogXv9M(8f9qzLta(~FV3
z7~VL{2NGubE%Rba1AYR=!JFWEgIp%~6Qfnkok&aJvj(#?(%cQsF4;A@Fa_z_%NE)W
zu9Z~^D?pw(RlXOGe1(kObQK2xYXoXwn}#&3kvt=TFRyzcNV;!4kUVE!p^u%26id%*
z)e8E-Xs6#GY@9$ZKliGIJlWXYv)6HyQa94&fL!6G9wP<qgI31rsPl~JXgMVYiS5s#
zLJj3BT-$MdE5z;%CZM3#5A9dVCe5Wqh7M4qrO>ktvb^UHj_u!bjLBlp%Lgds@m|{b
z9eql<U!71iJ#1(dIuRYCFWhE$kRH8K_%6y6Iy5_1kGdcKF$%~i8pw-sRk!&;=8T{x
z-}ps|<sD~c1?jC)?I`)gxL64+I7mvM1E)&6<Z_$Dz4hMK<GK#>{)SnIsf%Se%v+nB
z>RM-jv277H>*RM}r4@P%$N6h;E28AVTPuVUY&#hpfKW_2@#Y&0ltevW{(0Xhj@L)t
zV$dsA-(6R#aHKUsl-E=;>A6CXh+oK@sWK0&Zff0SFJTyYS1&~3u@o(!2IZ9@(*g$F
z<1RXMAWS@w|1|h)sV+NChZAa2UGqdtt>bn5Rb$fm`dwNn;1?$?+3`p*pqe#Y?TMZZ
zG;cq_e-_lQ?8ZW=$U%waX_uEe#e0_^1H@`KlB{ZtOP#M_#T8+Zy`J6cmHeApT*_5X
zxN>Ka|3tDddVf+ZRo=X21!~lt*3qvi8FAyY8?3>Q*8$6#0R~1BB!Yi4`83vobZX|3
zbmM#M9Me=4C+ml1o}~w65aJ=pjL1x<Wl$J~NF{6IUVG7#s6iyEFDDT*Lu-c!s*&i$
z%s?a}OwQX9m!`+vJy5|IVa7&@oy_S;ZmA1^fDQDQ+ZlsP&d~<`<%jR`vW#i^LUhO%
zbrfQ!xgMiCoiJntsSJPt`PlvCh5sHKkB=Du8@c3!8KVD?6R%|2@(3$pJ#Nkb1$*2T
z13a}8HQ{6TX@kDI_hBdQUe3O|$68PfF`iZSvHURm)DQ=7itRbq;$o6L<1)Q}m;H0~
z|M5FsNPO%-m3e;EiqC;DTjUpMi6%-swRMR-mzr=Vy)XZP+4I2lBI@Z|?~@wjpQTeb
zEy;hEM|*vcKT$2luuAyGHk$PC;l0hIp+st#Dyb;9!CjwGShE%%b@U+SKm5<<wehDn
z<(<WCn0NNroy9g%-9F8`#LR2kH+!s<bYwv(`JoYcIc!zZMk_DcQF7;gz#+p^o$t;2
zg0}Ab`W@=c!zq(ek#7>P=;JvW&>?$@ZU_FjKsUaZSfpF;mD&xif}+^tsUpSl=Q71E
zuA&{M33uqlf0`k*(wmo~YhAs(hq`+Hl0sKsE$zx&^8965Ff8fvxRNgU=w0XmG@ucr
z;ZW*s$H}Ubcx@(ZoJ&5h%NL5^W1|KTgYc;e^n&{b`IZbfo~q=JVJU~z5r3fnGT|ah
z9I=J?ugd~LsridQ{UcZHNZR}|JzVa~%zjhsg9(z4d!Rk@6-;yJX`f}ijczP6aJ2M*
zYT=VE@GaI13tS(?uWbCYS2BJxWt#UE@Uk(ghPmam*O^;>#yU}9>ey#KsQvOs^pAbk
zb}`Vx{uE<7cllA8JHh@-Y<q=mIp7VEnUjyzn~C&4jrgYf3Z3@OF72^6|Fn4iH5$=>
zmCwIL=o4Lt6c*+ziQE{uD?-3#`<c7)O+nTmX!HXi=AC|}t)knF9(&v$acu-=EpTcx
z%6(<`?zq=L)_9n?Wc|zFwcSm9_7KWL&~$O0#)7G;Uvg;$5(ZXoT%|`W5bT*tzIL&u
zzz@k55*x10EWNbgGy{j<TgZ1{CvHl@#J|~ypsKm#uYD~U0%{#1TgQm5FvF1Bm~K06
zV`7-GLl~6<3)Q{PU!RG+b&U1pA4@3$nP0^cTHN~T=wW#H2__7NttheXFwK30%fB3A
zOmoCPzymw&i%ippemgK6=$BE{CarjRTBshU_S|Nyqw5aN2$4&;(&93ZM!L}Lx!kKj
zl(mc;5Ta07`}@7nMoqKrMnUKqHfhi{v-j#k+tk$gUHY(;7HoK_AC#BlK*!c+jXUks
zlCur!^`co#wulMRFaeub3~*_FZJ{+0k}xrUzH~#6pj_hg%Xbb4I_4xVZM7EORgHKh
z*)J5vcL%~mZo^kWqw*I@*Hew38qqZ1uT}VK5&l}Fw0ao7{(`cZ#ZN)kCQ+2ivk44z
zU3Y|+!?x7?OpPK8B&ssDW3<N9T<f<0v!j-g4y$vIjSq!squwT`<f(T5NCX67X(7J*
z+q$FqaW*PtfsSQ>+JI+{9}ZrpV6n+i@b+|5Bed%~J+g=p1m-gmgq1lomkl8p8*wdL
zhz>f?i(m`bZ#C=#Cv5ZeFevWI1pStSV?nRq#|I}27P@OAge1mkKS=y9>)<gKFD)4h
zLQr?Aunmx~8ZM-Cw1>+V^rx}lc>3D$eu(k4x$0delRNcn#|9iST;F@6{OfV<u}TE!
zO8ozCmyM%@e1-WnU1rqV9FW)J#+FyeC2Hk)=aQT0QdT|2TU;|$R@2S<J8bp2-!nD-
zI>yUqqxg$;1O73d5<CEvE;1Bs14G^2<ava<GTiTSP>lP#hI!ogiVxI;SWibqJjR11
z=^C^iIb+D<_xJ%Hz=pZuXI#O^M!d&o*m8U@IzBfT?vm|p5^m5LJ+9#Zk4b#9#f{7+
z35D>MVu?M}fIxC5Jy%#{SCC9<T_S6&TEd3uOcqu;Cjbcy=0q2}`s4m(U8$Y?sfcQf
zogQ~<S&1HZZP~pW_BU{^QyWT+8^8PL$6pA7vhPO;W^gbLYH*}AOnbTp34|I7K<kGg
zgi(c0-Wt1B<%Z1ZunfK(BwdY}r3W?8IB2opxbzvSjIg79RLa(r9>bn&yMerz<-IFH
z2U5;)4<$9+X@6xrQdVC)o<DnjLN+JT5d37VwLt6GJ56<Y)~IA_+O&lzE7<DzLp@tj
zj)czfHA;}Tm8o2HT@K3ThE(ffiVJmuA<<#;5b!I9`-*6%1?{^@I65_E{v=M*b@hV@
zng$Gv0|TsL^O)YGmpw{b#Xg|a7Jy_G_%&J2YTStL``rt*;*$D;>gu#!W)vc2Qp!TH
z?|_X5+2`_OK^S8<1GFzcpwu{S7~UtE{g=TT7DG{n<t=I0jbh@c`qX1(e-+4(b)0%k
z30wfoGJkH!>`BH0dq^v{SjvC)=&D?@o5ySns6n-En#mrFB&@KbhupS<(Ngb7V>Q~!
z{xY{QPZR`H1HB8~4_=1wUo9|l8ULPt0K8i(T4M+G4@d(+zzA)wv01*MQbG#I4Z<fw
zQORkGYZti`ZTJ4VjH6hes4QKd=zEX79eRcwW>HJ?t?fa3$s$I{PiwdDeL4Im06(~p
zKMMRtbPUCU_8~TchU3>39Tdi;5^`IC;V+kJ2E`~>hpasYXk(AdxV>LuY*+V{_iR6X
zE1ac8Ub%=57!T1FiZ4p8d2tguF%4&$sR{iyWfKn*P>1jnl@&{qI}=s^?fV;2MLy0+
z(h|&b-Nr}x#WymFQ{4r%?0H{Ej1qILQi*D*avk55`!a=-ZZ^y%GUvim7Uxr!I;l;@
z!gR0*?p6$fhu);2?SB~-d0x2Rdp|7gY(iyCOyRs!Gg*K`=9Z@G87S`STWz%bc*lN{
ztaK(j$o;KWlfM^v>>uf1-Q1RS^bXr<n9K5imE@3``(5?=*8d^zOTeQlvbF={LRgv(
zNH7XWkN`mt0s<y1Lj;rtf`r8}ic1tlPz1yT1ELU;AZ^o%ilTxe?v5j)BC@C`n{1*Y
zqHMCbVKo6oN0HV1?|Z6l_w7!Hfa846^UwH5y8GNZr%s)%PA#{JOlGLR@;g$hwJH<e
zuv0?yB80~;)@)G~m7;NeE9(+FeXZX`($@#K!nVt<r@;;&bR6<j#Z$Txr#anI*S)A=
zox)X{rW~(6{s1g8F=iG2(oVzd$vtfv6<By6i#Fw<P2rC<J;kuV5nc?ZvuL>dqHdp~
z=W^jX66BGCQ?c+AN#vP#`7QN}Wtt#QKtx#&Y5@zYVhh<s$)RdIP)*h<wcrah?%K$R
zeLDPZvqdKS#@YPhi(2;NY4Dp?mftHLsF2^vf0*BtFn;50e(^=QPKV#=|0*Nj7yK3S
zJLvO2D&PF(PJ2kQ`NbD??GvXV-)%pa;rG`W74rM+mOskxx@Jy(Gi-kGMa_TwH26&^
z%kQNX^ZWB>74kd&FA?$EZ=FatA!zWMS|SK=u3OF`P*VEvApHR9D0$V{0Y&(Sj5Ndj
znd_{+zDcBq(2HAR5M@(wk_o&}2AJp+E-vACn$C*8<ZSf+1xL4@mF~`~j|e@qKY~#D
z%DfsOS1mYt*K>z@BEtDy%jD^b+^_Ndr|pd8wb0u$OoLn+zs0LQ59yXAF=ixkq?S^&
zIrnvp#SlfzOgJKCEJj=<PpX=mA;#vxFc8+h@y#GVG+-3F0sb*-$ZGt4Hh_@A)$yy;
z+D{>-4@6Ai_`QISfHf*PiTGehWP{E$VHPtV2n5u@qz=GfUfQBA?!~l?2!)tkQ6otH
zMXiMpeSfdy$MxoetJrB498fX%@V=_|oA}Kq26LQDVFxM-M#z%Bh1*3qmcdHnAu@P~
z3?5P~PJV-$Z%2<Lkro{#V;s9(hU6;vROhC_q)|EA#V&D%xtI$*LU4Q7*`33Rh+#RO
z|CS#1e1=(Qb{5&<ETX>Xrriix!1COF+)a|(0)H!`%d{H^X4IbPT$eK~FIY{1tXhKB
zqxmyr73Dq*ugp3M2M5?9==>Q*>k-f@S%8VZ`!~TritPk1O#Ws+cOHku<?ZJ-8uwid
z;~SLZUL<c!$H+jsCk(0qTI8PAT7FmIF=foTx#?>owFZ06p#Nlhd^}K{7iB*@h3(;F
z!vmsMv<PP(vGoO|zoPXtB6iQ()C-SQa!*}rNWnicIqK*E%Uj|3ZJTGsk?x+ty`aFW
z+beAng`!BD`r^obAqB(ih5i!sPz85@_!AlwRR>>~LaO_k9Y9b9(=M^eU<{JBSBIq&
z*TOejhtar9P@^5H*o|7Fhzv4lm;@4D-sf=q7A8~f;^#;V2fE`i_#S|Zv%bO;bL{LL
z1ZUajx$8-Y0ZBgBd%8#pa;A%@&3QtkcM6h(VSSn0*xRt*HSd3hZ=MdFI%{xMBWxGt
zY3{fY;s`gG>J6t^$};dN$hg#z-(VqwWhjG}Td0b|C!MMYjD__qq4QvUX!l38VggMi
zM>88Dq2GLlg0XUc7_d{2!qH-<5Cgiw0~85-h}}l&L=(x(iuK3kAED-vfCodg!#=U-
z%4%eP(t5716&zSDmhh^%qsx5SLCKgXXI&0S&6p2`yH#iAT|AGNew=fQCpv8Gb%c#-
z*d46HhIRZ){gyM$7Ev?wDtf#+gxBax>UjKS-vb4;>;f8*DZ~u_7pd6}S~e$G#lqfk
ztii$&us;|pvRN{W(i+B9b(ywieSIX*L1aU5mfj4xkFGy<NM%C6*bIt@MFZEFf6mbp
zvh9wUf6>jNzal}vNE9~5a(-7UX%BiCM2eTmoCIyr3Q4MWu3`%~U*MC8+uraznH=pM
zk9n7yWn>T^vc+nF6I6<AU(0@l0=d20=c>%I>+_oO**Z!a+>0K(a8RSFg4NU@M&~$N
z*a(V6)p(F8!J*06?ISE=H;?17$1I3?F_q8|$E}e;NYkF?6M4*#jS*bWE&&G%^%&d#
z*Gle1*CY?9jvDRKx}col`iRt}cM?rUF^@0yQ<7aLb;H}oYC+55IZQw17IxT}l>&Xu
zXD(vR#J+m`m4cIUim?mtauI-#fG9ZwA<+lp33&0c;UuB^9ZiDaYIcq$ad`k&?35Pm
z<dGv<1OX46g9Jq$MD)8R%e7i;HTyK#I<pTmQM7Kp*HzZKTOJNtceh~uj-?}yzsS51
z270PSvpsls7)Lg44om<!`#t_XrOV0Ga*^3FydvPi%yK?&y@kK+6)49ih^06n_cyoy
zT;Ot9_;Eh+#U7U_A|EUXjvy-)x%N=Vj=V5OBP_qQb**zZ8%V{d%4>DR&B4T(g!~MK
zl{B(}8h@JHlU5~+tk@e1E3XFYuUD;?&l-6nPY+n0R~@>m7HBPr3xi=F?{dt8sAJf4
ziDm@Ok_Yy_vblPnia+5WiA;_;;<mS{%N7W+K<uf|y}`5x$lD~e2&S1zmeMqrG7DvB
zg1|O3M8EbD6gh%Oesj7Y1&3ZChmI=EKzZtu>qju@x#l7t-g*tev**Q%>T(clhfC)q
z9^1RR?6@2{@xlZRs@GS<t}*m(8NW{f6>1LlYSUo*{MMUmoN7QPAES2e(_JfCDIH&E
zOC>zyTXYUOaN4HHnjs`C45%As;I^8k>;$e{i>Of-@A{S*U*F9JN1X4(eUCD|*%waF
zq#XMOH?kg+-ElRYLYu-*9o_7?HU_wfTlDpk&<ztgM80f6mG}t4Fh|K!=%5H$GldGf
z_)nXhl<+EuXfCsV1h|3l^X8Dv&obL!hZP}VI&5UVW0CphOVrWyPz}sHk+l8Rp~m)X
z`ajovRa){UTje3=S(JYig!h98_W*%zKLV7{XeKvk0&GTNH%-WIE$zchfuVv=@HkE#
zo~$hlZ54GGt`TqN2_2hZwd@0EW(2Is?vO+Mv8*S&#^T}QCDa0e!i;Z7<(#?*l)(w2
za*Tn@#CjUria!*W-%43cHG)&LD2~=emgQ-*jbC5g9kwp66<OJ5d9P~$#EEfmaV*gE
zjpIEE>r~Sp(UM8<Y2{^`I^Y}I6ww|zd^2MGk{PcDBE=E${_HIHG7dui>7IMZbSjM-
zu5CS9pHTsv>y7-_bfu<xb$klh8SIHeM{hsKr)Q4O+Iy|^rp-Lw!O(QiY>%%W^dt5t
znvyNbq2)-KvfZSv{sDdCCR2`YbU}h6IJ(M!jd@n78mrN~W~O<L_Cb`>b@H^4Q&I&7
zj!?iDUmX%bn@>A=0#U>iB>8CIh)iFPB%Y+5mFer7l8HxSk^7?|7<~3}FG}!Vg@B47
zX&wBS`6{U42M)?Wf=K)2ZU#D1JU_i=c&myEb*{o!1d6_gu33aD;PhM>;qeVF{|k81
zZaK>wk!NVCdr@^>Sh-t%TU&CQ0mb!!e8{`<HGHo7t}zyXMDJCpmO8A=aY%8Y;F*LB
zo%=j#JuWYo&xM+Y&;W8KdIQM>VaQ`K=(MvYKQ^cnqsm#H!j(yQ^X5J>-||zOw1AQs
z!MT52rHC5_@vm>CKI!WxPxRo62ltrztgnZX$yyJiSNag9+Lf}BhI?Z_#Ax<IbXR4#
zsT}0SsH<Q#wa6LjJH2+EIt0$<w`sxsRN{Q(sT--l92D#uEGQk9J!Gd^lhjA|IgB<{
z$2b^m223>3m(Uh0W7#tS=8G7-LC#p%hJzwyzJdK+j(WEQ*7*%(khLbm1JytnYci4~
z<r71*IS!QwZ;F}-3W3Ynfx)Bm1HI%MBH0@5peQmnGQ)_<HmA21>DUZ&%0-kRVogDe
zM6mlp)35ohcY4{;(b4azyh%Dh!eyDQk)X#5%ewGt+p-v2dc>7HqBiVDi*bTHdLO^l
z`hDF&>Rb#K5u<AC{YJkA9O!6rH}M3RyLbjnP)B&Pxa+t2I5@I{f1LW}?y!)pIYP9X
z1Lrf*4hc=)xWJn{zytxWJ@^W|C_j3kTL@a0$!C!rZi;U5Pa#s8!Owd=bXZfrKCNpv
zU9aC2d!Ig~%Ht2c{)Y44@*<f;r~{LSvx7{cgX$|j0+yyM7Y<x|<VF_gl5zh$!lc{A
zFN#Q}&y(Z}9MHQGuW&xkwI;Oj@&IJNK%M<QnpzjIji-3OMf$7eAcN31Md}y@rDB!{
zan4L?zy%P9k?33vAH`r1>vo$_()3l?d}W#)>dQy8ROn^Xg%a3S?Zev+Z$sOezxl1-
z+#!S+L4<-b2qTCv76{Wi7^9?@NS6)Z`zHC)eIYh9L+?@vcUeGIDbi!&ODeypy5j<R
z`8u=~nveJBrr;UY(jjcWb?;WEwbmroiS8w(ftu_lS1yB4m%)kbu3tVQ`b#<GB)tFk
z^-a^Ay6<X)4aN>%4=5dM@%_e}{+tX-rW*Wsqs9BZW7J*$pf)@;d$JzXfe^Y>pKHJv
z2Kj^xe!wz-2B%c**6Bnp2XQ^`E;?#9-gr*9|F5*QrEDi+)nNKAx~hlx+m~>=ekfX#
zxaRAbh*HgQrJ&X%<d3DEe0!@6u|gBKYWF_a+YSb`RJEDk=kt3S7J9)EteV*<M5|ux
z;Anu_wnhgh2?}FDk*5p7>ZFr5Q3pSuePd7P%=My9CL6`!exHJ4tspb^gKMA=h!7{_
z1mdWrhVMd4w}iA5p`XR%zs#LCFmebIMoS)`8zgJ1muq2~fM+LbX~-!uU@kH}D(NyT
zPIigFEM<ikt(|^>UX@Rx0CKRb=d-LUsDug3!CJAB6zr6d+Ojd&gI}P=sr57#l!IR#
zF8r>v#4klv{&$e<X7$xOXc~uSP6Lc+pLkQ5HEDEQ*nhymB@Z{o%t^><Fy>2EcfFz;
zn<gVqTWflwT&ldW4HyWpZ<L!B*r$xbcz~<e9=^cVY=}&5pbyB3LwASe$yMCixLvg-
z(^rO=4)F_LHThR>jM2-_zY;0!u~>3|DIp%=!g>!TBiiBxFfcO_FA4WZWmk@*Oy^=5
znV5&=bWnaKt_jU#LYnDs)&!FRncid_QstGf;I{u@hUIHt`UNG9%FtN6<VLrm%VK82
z)ovAIgNex!Z0y9$zA`X~R(QM`Zu!Nq3nAs&WsVeHkHpNz3UJTF2&}`#Opa&oXaOm{
zSAaWKINinF+F*rTELd3)7Z`&ftDDJ`RyPGxUFh4`ah9F=Xba2IU0Xua_3XgVX`?3O
zOQC@t@}+v5@hCYLUfL$~1ctt+zMhw9BTwwXA*cB^N(O5W{>0vLa7~vq#>0)<7+OuC
zFUkav3>+X@v=mi$-2XNki7^ACcp_R7qi#O5-=50Lt-<q&+5|?!sMw1O8Mq9c&11Mv
zxN|Q_&|XPGj^jE%L?Ullxri@);zXpOsKAe9>c*85<=34dd)e)}<4NMh5Q$UNz2Zk_
z-FWF6>*Ef@qH>vDA+~APNaIu;LWu5So`+B_vb$`HfBPZWVjLQAD&$FJk>7S87rhQ%
zXouJ?air2cHI^`I2`rSnkI|lCiJ?`)=K?N!@84!Isxo!@kmNR)vdp1rAWYi*fp$+!
zGft6$9iaS4RQ@E`PsnM5UWHRG*nH{H3YWvNxQ5}s3i&gt-~wVBPx^<G=HQL^b3&}y
zj{<j!0A!E{1BUI&kQeWrKCsTN9Yz)>w$kVmY`^eZzwDwWVUv77>kIR6+HYIDyD?A<
z85ue_3Qzh$;{1;tBqU(@t)G4%j57$dYFy$QPPb$U@Djdq;OY0ptcMmm@#s)t{K&3n
z_Y9dKFFal)FVVd?eRx4>))jfR-HRqv&X`g<#9dU6QYbtgn^)VHj%Nb~1IAmT0mG|V
zE%D8FPQmf4ONR7x7dOB!eItzrcc{Tv0yvQca&etlPDa9ls98Hgh=>e?fiB2kNwnvH
z%P+@`U6>DZFTN^vc){^YQO7*~T-2xPl%qr3#gE`e;CK8{4Hu%nnT^+TOecxX9(FSd
zStByrEXiykyA+7PPGeJ<#%9nIU}Z98XIM%lY%F2u7diaLHz}7QO~3*xf>kb)sZsXw
z>NxC+*P~+zqL^OuRH=b&eo5Z-o+>a+m=C!q#11^eU#LGsK0ba7*i9on^t$}RL>zKS
zVf`6WE53NhNSvy>OHVYyc-S|fa|U0G-^^oB0&tTo<Ds1wtBuW>iIFz<FR6nIATGQZ
zVvEZ$KSF*coB==Mrg4tl+PTt<yHO_?0y8Q<V-M=Y5{e8QxCnT-pUm{s@vLRAf;HL<
zVMpfu*lAgEPz@$$jPcHF$2mWR{9(DCzv;)$28&;$g!vnphwz(EBf$*!VyqRR!0^JO
zvF`hL?F_!*Jwq<92&}jRzM%`-h(ZOhpVG<h`~HRRzUiEVfIK^Rd^6_(z?F5LW*2b)
z?6=tPs=Lxg*+Z&<5$?{FsRx<BLU2}_YGHF%k<<W{b?~lixeoG4Ejh=7w!lh}_W9i?
z0vJLU8KG*k5g~Ig<hL9KAO90<Ur`mGeEQ!6b5nlXoqlNY+m%*%1y=Gp^$kn)fF^qB
zmNmY!t0k2TZvk5*x-iq+h(01TEI)xZXHR~;NUx@DA``g7x4QnhjXxtw4~J~hOta9O
zu0oh;wBH)zuMR;V45EE7Yudtzk+cPIbxE$ooN1@RvXr&%IHALpo-{}h7Dx~T^c!1X
zUk1S`{Gztsih1)3p)sR9?{qFQ1{j2(Su3w@5PpbooQ*<wRd;cZ5DpHLI>Lwh5UkX;
z*I;^&peKOoh54s@+IJ`fpFmU?#i1|%*cOJQ5nFoAh8RSQaY@W!&@jC-1_PKCS)z}T
z=b25rYo@#ma=_7hf%VfaP0Um29DM^l$N@9N<8?mccU|=c%?pan7^P*2$B;1uC?Z0P
zF@7JfeyFC$T@pYLsKm^~kVGL`Gq4hBX2E;AB{GaaWWe1`pZya;_&qd`iW;xlLl%jY
zMLcDJh$C~u_~ffL5{JNMA88RE7xJB_i6C6E#P;ei`Hn|a3a2NTp>CWppyNrDPmtP1
zQhVE`7NM{4UCPo+!o)R{CP9^hB8U?78BxuC@*wFuNcy!9Y55k$uX~y}M8tT%hqN6c
z$Gi^crosZ^sk<aB0G;eikHC;?p=_{Y7Xnt2xHUra<mIyR*2^S3jw1+KtL9nTI}w%w
zo9~?jo0S!g3<3BpUsJlKs1rLu;dGtlB_*v|BeSz_(S`!Wu&W4~fpOIll&2nGOO2`;
z_Jx+*uQt636X4v3Lk1D;-$ky%*9Xwj6tHoYv=kw2gW2i^Amxpa=xcQNQZ#U9-XyVc
zZw)!f!_OT6!Jae)y?}&M^ww#nsq@a)O@&Cf)`a_!WzUChDuA@&*25#4nnfk(<3}as
z90e&A%B4J_66@A<6Qm?sqinqT?J*L;<B}=r!+$^sRf9r^Xg`jZjGRx<nzla6*JRZO
zABhDuEdx8gj**RSndguXfR$X2ruR<tS-X3Q;;;31&t{63Y8w81if(ucGhCzw)?Xb<
zSOBu&7u~EI4ytGZ+w9>39vQ?0C!0F9XD>FXX4t%0GFScZ3L3}UEvR7-PZz1udy!4{
zY$4VaZ^$@K*3l>t@-XMaK^dcH1^fdWh8e;T?l3O}vu8s4VT_GNUx^tkKeiF1@6b~U
zDNs!+rWA7N6ZA=DG(PKcmP2c>|9f8O{g#h06*h@aeAYekA)Eg&D?J-rV_2bQq+gcQ
zLtTXJpJ?%1wm9nfa55kIPp!`p<Ufb}<Bz3MtD<(apwz2n47S)P2s&SO9YR%{!<Ift
z&(Na(o<acFcf9w7P(bIvP$;h#=VH>_i?B*9vj9V=E=+G=Y6Gg0IfyAUg@QKk43>*i
zuBAFi=Ri&)R$*kcTy6L}TGY|jVT3-aF*S;q@6tIXc+u;{(2!J4LCcw$@KE)_B;9dH
zu*h<lRN;|oZk;OCDL6J{+zlh$#hgQSFCK`*{Me|Qaj!CeE*e;M%CT`6JmLq*qPBCn
zP(K8V(@U3_nFbL?(CgU1M3vb|drK%++;EBbgfmyvc8px{y3J7PL8$2FXXCVru9<GD
zXl+Iuhd(}-mju@5jpo*nEzB%ne2_F&ov`U_6dq!Ri{}w`AsAY~%!}W(g|S8$=Q77-
zQVL6`>+@=JnIq&(Y9}{u{%AIidDKSy#7un2yFAm|Z`DSHYKg#(luU=_Yv<u5uR5N0
zdX5>Ld-G`Ib?H0u&czE11;;XP9(_xm8-lC_LFSHd7p>+bL*bD+?&7ul=B<T1D&gKQ
z*#hR35Ldifw#F=`U=)eHbdpG+5rOH%2>nEAUaBg+1Vi~!r!_%;x5ptiAk2PbJmT<W
z69i=VnFQHFLdLn7;UVbIME9?tiSj4JiA96;xpLmMC)m9jAIDP|H5w&YMd_ubC0o_W
z7r|rs<B`0GzDDv5ZN_j%y*dk1)2SB>8-ZtKsT>=LZ^DvvsFHq~;YsLRCMz!1-gnUH
zMg97l?kUvT7r+&d&yUP6dV-%6#)>4yiX@%?u*+vR!uF$D>2b9a8wq*d(oUQNC&u>Q
zk)U4kl2JgI{N2;uppYZ>d)TvTFagqL_{5MT$<cY1AlB(&sB?PEOn^|_oDI>@g+}!9
zP1;y8$T9T9D1eYQLNtux*{mpsRyTr(^T?A|w+N4@^YIIHi^ifw`K#2$lvn#G^6DK$
zUVhihE!n+MVt&{2UEz;WWLD4AU}V<udC2TJ$Sgu$k7{{kP#DM%_y?xw!JH`eIr7#`
zEN<LRP!?OD-g`v9O(eR4R5(;aiPq!*dZn?TY!1uP!UYtkroX9MYj>xTz=@i%ZMMrb
z`s^SW13)EjiP@LTP))&ch4(l1hkRf>p}v!$2KEicU`dG3{)DT)wgUirowGz2v}bUf
zq|U?E6vig)V#@s-r1X^S+VUADuknLXUlQws8SxJqix!)-n06vs0TeBVxUPR+8%hew
zz?N;_O}mU>;&VMfrL)%A(e1fD`-8Imk?D$1H(n29JH@K@qE{nJ;ETq=dF2<`Ui6$0
zQcYjS*Saux-yO%};--ouxaFE}exa*rfm2L?bQq@-`Z^X5M4FKPQ*INFZ*Yin(G8Zj
zvOqJG9Z74swqrLCOKts$4+n@>$7cr<ki6C84#HqzR$KCn+W4UfV0;v`JHGRn=Vnb9
z?b$U+G=*WwPW5lpjn4q{BLwPG=!@^`h3U)Kho}h}LXXqrs2iNpDZhH1X3D6?C$N?{
zh$u$&eHRVTNg-GdYVDhO&{~=I^=fK;d1xaUw2=%Q<AO0)4{o8jM$h(#i1cot-R`2N
zQB}L0$Yz@3AMTDOZ@u`1ob?80ocnB!NzkEWF^fx<=kQ?;e@avtLFO`GQu^otXdD*U
z|9))}a0zCI=#TL>9`H+$GfIp?*b2vk-#A;J`HmJ!7H{1UO?Q9>OqFp+D8I?1reSZY
z&ST_~t3P<2B6qi_Wluv%+Z;*?`IEmWc`QPno|2N?I0Xmv9-mkBCJn#&WT%CyAu}UI
zoSSK~Mp(b^;n&5I5lV8h9mkNt1EET6l8fhKoC_wM6@;MD5AVe>WbWcYl54R|9Mtw=
zB$v^rce)T{cMBuP!VlmF=dcb@wTGzML#jHASI=QdA_zaE)hq!5V-5B%VLjZ!h8Sov
zOT>x_AYW>N1vKSMYB>|B+)vdaio%LeH24<Dr;*Py!k@q4e6HTCsdwT)>C5qEJ96mU
zWc;n1murh}rgHzj7yKJB7p$iASDB}kW~!e~mVHVqY%yKSf2R5*N{N|jX%r~l8(Hua
zOyOiiIu+g@jUN!{uSPqtcIOHz><iYwE3PR|u8vWpUTwD`R@LiL<VPFTE>v1F#}OeM
z_SY-<b!~jtbc2Qq4s4>LF(0~)pD;dtx))hLw{H>CwbFQ0W*!x+X314~)zoYM+KZ!b
z)>t2-NG0`E+hceiVMIx(I{Uo+rD{Rj?@CpphknNV*ibyEvj5job?+!VSic*8>NUpG
z2jAXTsycgs@xsM;npN^`sp>KVg<r(+_Ufla_%rG9?@QI<W%#yW^MO)z`|CfJswJ(D
zm#XKwfXaEx@w0j#5V$E7xZTr#0KGPN`rS@ds&XFtrc^Z;kDtwloG4WV*Wpj=(fHH*
zu@jtney+9)4L0810Buqaw8U}@q$`p|A8B3KuUU-Gx~n6H6z<~2T`3_~5`c`H1FH(U
zN}RL@ShAM%Zt`-_@mZG|jI~`T%Z~MBh#d5r>utY5cEs{QCS<9Ft|5z<spI$K<=$f*
z&}l)@iR54y>3LoMyhJ#d^cnkh(*Rlj`zS>>z;uCLS64Q`wFor$*2Y<aZnf17xVDX>
z{Yl_MJrIfhR9~XsWzbi3X6@EY08MA4u9=`?j*%D=k0g}XC*7axdwlq;bYg?|I|Msn
z2cP+^<8tV#;T?BG#Hc!vm1iNe`dr5@(!4j(mG@-4^;_SzsTOLwteDvmMP2o+4%yJ3
z*_7{hy(Ps>0un4a`8=&S%o6vOYwUg24Aur_pG~LYth;gFA}7?aKhUlav%`#V;&Y^g
zpn>}soRr9p&+1_)_12VzuCOV!ERPb#-Z84Ak%K2q=?L75JRQKq7C8A(7RAWZo(qi-
zB6*U~`;3zk7yo?LKMkdaG^IJ4ZJr)2kCGVTl}<{GFFxxgL#dOdv~itHsb6`NEVj<&
zq~sDx=Nd{oFP7G|eb=T`sXR*ZipHvj4moL_Hnr1onxZL<kar#^r^T(yk&`TaPjFJw
z5}#%$HPe*V%dSLHy1hI~%#~DICna*}v$`5e8#+nretpVrUDNU?;TYo>^<4u;>*(1&
z>*rM6x-ptk(T6sr?XAjbovbj=aZ=I}f7wu~rztI6YEyc!JW8^)ZJ?8q=IJ^^X=z7k
zU8NvTmzGDV7F$=%Nr^)epH<ILx=vGS|GCZ6@eAzMIo`0L-?1%f*|}xpw4tq*(~lj5
zr<EHtC4^e-w$?LUC4!vHaYVlhNKD_N5F9^vU1NGP08Jo41W!K+daWA)ge5%N&Vk;9
z=mX^v1_%0BLGNtPyJ_@c8vXh2tx)`u6JFUSeo<bY!H!M{d6^6pxGL;*4V668x`r{)
z+Sf+6@$-wwQo_YLCT7_}2PxTJ5X`dFrF$GP@paUKu|+pD!_`o5Okni*ha`8?!<Jd!
z69ETWFf=j<_^dljr2|;0-<tQB2$qB@;pb;TJ=q6{GbafV?CB&(zr#6AhTy^WLhy;d
z1qoIL!KoDx{CS^)L%N^O`s6|_7M~`#``IADDj?Xd0)o#t3DS3b*1d*cOHDBCA3=h#
zAh@@sZJN=WoaH2_IlRyiT-#2XJSxPY1%eM&K(O>XN0aGEKI_ZYy2&?df}g$-<gh9T
z{-pwf|8x@6TJ{-&RW!k>j|K@c{vAv?b(61k64Vi}vmy9Qsx-Od6G4JpFqm5b!CFp&
zI(!9M=_YsA1e+}i62xk^)h|fUe#sBc;PGeDusKS5N3sKB*jk2<8-nZG3Wp!PCImf*
z81xjl{N%J|F>2gS3LgmzvWk}hhv9d{`KS))JPqvvcW^!5oPu)rRTu47U7giyBRj`b
zpRTK~sZ$P+??M3$6+);MeLO4Bxjy{L5G?t|VG~;7>n_j&+S*3i(-b!Z=p1H@gBF_*
zq}5e3_q0umr`Sw2R3?)OWT7js#%5PiH}41ugAV}h%x2GT7SZg^n)0PKWrh>o?DGx%
z+M3IHFWGABOy9am2t{eOA^6MJj%Kra@>!p@)XjeNLTUEcSAqm7$FnLR_?(lVmg5vd
zu&*Y#GZ^qXCxPI~<d7?9*_eQ5I2`08sJ*|fA*fmlhkwxl5465;(2Ay*sx~buCXk}r
zIg?bv6%(sAZY!ghbSkEv)Znnkbgh_IzjDZtX(QhMGV~j3E}K1Qn@?&5T;|xc$YoDM
zWo@f6Tvk=h%W|1UE=M<wFdxhoa1yPmO_}DSx%{Sumcn02-)~KRz~=IPp`k4&nk?Vm
zYg$Y$pE6W_M*<Kb%j#;%)-tlZ7`EwJcYXwy7i%taY|7+P+hjLG-%t8}>q~9q`1Y;P
zD4)xEHZ5}bTXWskj%B&D)Q&I8aM_7mo*&6&C(Y&Ck_wmrsJWbN=&x=mTy_e&Vkdge
z_9nKW+d;rYR1joD9qA;fJ?An*@J3DWnMZ8p9CXmq$}zMMfk>;7O^eNrF;otxgeix5
z(zw>{_L7VJW>YPj_+*N7n3N%GKdvKHN2tQJN^l$w(NT+M&TfZ!+}lhGei%9MTh&UK
z^DzW=gtb~z>}nC3Njex#4XG?Asf!G$YMRtWImK8=G1=)@0V&H#N+oNq{?S6XdMHGS
zY0my6TV2t)dV80nflnDy12n0>hDb38KV1Q-F-}s045@!L7p~3<kz#5yqykdOPEyqj
zso9#;l0Z=GOlqoEKx+G!jt0KlRLiQ1CUtFy6w{ga8lPHL4>(EPVMy(1CJn3{B1JE`
zvjS2*ourx@QiYn-Zz|Y8rZ6c%Qucer#z|mTbdn>IbHIb?Bs<U74LnPex<-?tk7$#$
zHnbHVS+<ith=4;MsSj&a&(x2YE1Htd;m-Xeh~dr~$+T$eP5{Bv92o)|bPoR1jgjbe
zx)8meLBBzx#{vlS3ywKzm#Ma<k?7A#?X?Vg9gY5|u6^sL4)l7g{o8~H=D!j2kD6%a
zS2PvoztHFdA9ak?dJ+8vgC3mdn?-c%0it83WwfBX?$hWCw>fGT(KY`;&w80@HcT$N
zi!TC>dr_sX?cB4LPq&sdY7wKlf4UnJc<CVO@$vM2ck!|F$(O5s8zhuX<Y@!P({=jk
zp$qY}3ZB~O=1j0W9D2iX!iZe!8_{STk?Suya(%Vk*gd-+s>o-(m!#Ws9SQrb7v5n*
zstKve1l%j6bT7n8f)UJ+e85Rk_Z7DplE*OS1%=XiA(B-HXjK8pE>4mZrq4<=Bp=fx
zpOUxgG?%d?xvgQyOQUhAB%3fjnx0Phps{Xvdrk7Nycn-ZS|nLq0m(<5B=wxoI79N|
zBx(5I`Jskm9@uZS50VV6l_M}@CPS9=+8$1lv|*ps*pU3ICV7>aK7sG*W?F4pi}(C;
zw!?l=7V|@OBg}tRCpzE9=V|l*1*d$%ckcrboW(VEphF;dza$d<W<h_@pg*tCvjJ3h
ze@q+B!xP(v$H`OI)K)^gWJjcP^ob<?a!2yk-Vi@u6Q2Vhb?ZE`fVxvPBGLN@`oG{%
z3`?8wek+>RRiiigBC_@m<^BuDEX=urzR;jg)#xsber&iyG8pj2s2P#y4Fo;UptslP
zwKaNIIX1%tMF~s&Bhe2CdMAVabt7SZk4E47k%gvUm2&Ga?BcfSpb)2g;ut8Nmy)iI
z7l@P=*(K*o$?qFFN)Fd0kGGVPGwhOuQgWHIWQr~s&?RrQOI{@<A90r4-;jK|X6uqW
znmeR~ND`xl$48i7UI(gp0BBH0PYSv<0zjy^ue0Ylo9Hbf(brr=^mv2bSEDZl5a=@+
zI%*f|RdRcUL&e`C4fMG_ZJ=vEhW-T>vP0*FZKgZWyR-JcN1{J2=not8S2Vg$qjya*
zv4`De0?<QqYCnC*cxzJ2>3rmOxuke7HYa2~Py4jrwBr1QdJ<dqiI&6{^6~ydV^aZ=
zNFjn?fv}N~S{5@W9P^oSFdvxhtdoOn)jS;YmU1wwzV5_~C+30LVccF=4rZwg8SHj4
zV5$Y-nEyI2dOL4?&RM5OC_fx?X*rnfWcX~?$*COmmvGF<<zPNN%~>ahEGjk}^U`uK
zKPhlx#u9UbD@;N)%fXx|vj;Y}qLrE9n4dO^E}^$%&A`T#cK$USb9OnHZOgW^VL0Zs
z<zSXBaki6-N9t?5jpDG|rsZJnmls%VZY83>9F7@i7`>e%{^_h!tZ#HU=4<6(zBkp0
zDGN;<!ZGv8!St5JJXSNTon6Yo?0S#0&dQX~@^H*b<zU`F-H9nnP}9OO*EWbQp*I#d
zF(nJn49E1BgE>mF6<aGJ+qw=+pEavKf+zZ&N05?n@SsDHb!}6L!5s@6LG&+d>rFKx
zdVr=FX82tFNd`SY7n1Q>_4U{z`B(C7`bh-$7}YEiy#sPypR2Y(FF~XQdJ6y%B8MDz
zpra3qQTwV#)Se*dpCsto=V<gejlS}32lH3}k5Mm0qOWPq+GiT{ej0r#fT(@$_m0|S
zp?X9l`eLblpg}*5OaRQkqHF)v*?mdp*)kISWkIiN(Ep*)=V<hAoat2}nct6lGIY0t
zTmgHvToVNSvwFJiLpAy+jqWXRFfZe-e?+36D{Y@;&}(XRmu~xu&J70Ab&rZf?;_||
z81#4G@MycqTbt)OB%em+FN{Q=E9mtN`fVEhL0$XFdmZRvbw5;#XnTJ_-+GpAdjpN0
zq0tjMJJ2!f5~E&=MBj}Z*5`WMpnr%s2j)Ko(B5l@UZ2hqqjH;;7^(YRo<rO+XF7Rx
z?#Q3R_0dvz>S>7Htcf<%JRNLf_KbXsV<LUlc_<XzIWh(H&;?z@@OM04Ug8Mu8EJ)W
z`(^g%GAUsvBuR<%MkfYy&&Zm(q-*w!{2hS;W-_%g%o+Q^Dw*<e_{9CNS4P{vv4(!@
zb*-gOTN6NxeDxPP32$qkZnDr}S<*oa<kc9G4;jOp*MidROmu{VlMp1N`v`!l`AU0m
z%fk))t}p5{;Dyqr5fe$=4p-8!VO7Jz^7Dehk*j&rmO0aInX0zYq>pVKj&^%Av>s18
zYm?;VS99UINzyt+Lu(oqQzaU|7mik%V8?L>lfJMnN5cPo4m6)ty^famBD{`3dFDfE
zm!2oFsNU}mp<^f#qrT+r6HcLbX-=Vk5U+)P18Kk?0aR}+=Sc1!cw&#_+R9Vcbfo#}
z5qau&JUt0XzzD|aLBNl<I=rb9tG*$!>Kv)Muc>;zpj(4kbte$llNo$d#qZizFI?Zt
z!%`g4z@4#S`d%m)THj;MG)2NQvL0*eTQtx$9POSU8Y{*oN0^DLx+HN7p75VU(SYSZ
z^I7+~wFb5z9i?!AX?@sGG?3oJA%<j%;p!?88d#r94fG@pnEhnZ@LKNzh|c71_c+iq
zh~6L)y@sI28uYdr{iN=PH`I5aOK0+B<%rsA3i=1Nb?tkQE~56|HG0=<2YNf!{!}FT
zt0?JnO*825C!#;C(Z@;3W4dw4ny-sQcS-HN4SIKt9;4en_9KV!N@vp8pa*B+{z-Hz
zj_3$D2QcFV1AIoK-~VwW`d;2$;k5nt&nNTiUApaa1>ITzAS8e1=N5=zuzl+gM&9R9
z$VA>r$s<@>Zx;7=Y}Ju37X-s@4mPLju-gkeg@G^grwlC;b0x-1znn35kWe%+cOM>r
z_4?<+_|un#j6a9wSIues!5*gWaTYVPSbB}Cw3ZeG&I)4_vU4c`&RegkN)p-|a<n&)
z4nw=zAeYk_I@FTST5RaF(R5}?bS0g8qtlUWcB+#OL$J>pW9WR2JxaiynrHLVDLNgt
zLUnf1VW;D>S{OQ$G@aTK5y{UFmffyi$!HhdmF<!a;OC<b`RI1-sj1~tSJT-rLGuHX
z0J7EO98vt$Z#wKok4H+WQ^)*4izc+2he!<``zDwK`ndptrDo2FZ%zQHk&)=rlZZaZ
zpbyjNcLS*Y@(x388lKo8x1Bt7J(?)QcULj(MJwZ&no4u=iFgcD%_PK--EMtJoTqdJ
z0ok6yqh0Q~nOe_4pZ88WUp#Aw!vuNkkH3*mNb)cNkW|Z#*g^wl2H!g4VZQ!^n|l-M
zn#$P09$Ojjlj0rQhijnuJM%19SjjBaVGcG9`|-Xcp%BUlgh>eH^RvM>_7O55_*@bf
zysnp#S)l!<<b}HA9Htw7E54>9<jCyJ1;0l~zonp`Wzcs)wWz3}M*pFK16{&x$w`eK
zj2W*``qq}}+7#{=bk|dq{_>@4JiG*=$b#dg)}^#VS;pJrXc>0*Ax3ucq?T6_=g{c}
zK5L?(+?bU8)`8Ks(SKFPC=V$}mfa<-79X`~%24$0PMX@Wn;V*MqX1~WKE|f$57Lw^
z^SZxUeHS0w{S{4LUE!puopW=XmOw8}bJti+6M6@8)`<jBhpR;MtZo{hyH{)*?}eTJ
ze%DztEz9n4{bGGIp~?uBSsL?d(-W+iFGG4gIFT~7lFyZc8u_Xb(D|yPyZCi*;^FI#
z-h`XBCbMN*t2^{3>Th)-LVs^JqW<a`?ynLOuK550{a}g%y#*V7;CKZ3PC@^?nr?hm
zjsCGlU)$4xej(B4N1{&>^v4YPn@|tJ_85)+$`uau_Cy~YiQWx)na{e?pyz1xRGqB-
z-ra%Tn&@pK(a9&)KMcA{qp#4lKXRP|y(7^N9gArD(}KRes&4z+uvakuutpzW&4DhG
ze<KooEK(Yu^`t?+MWYYXdCpYl-uUxb`?yH-X9RtyL9eILXKD2Joa0UzvR@R5URTf?
z8uS(DyTH7q(SIN8U|uBui`*!HzCeaGFzB-ceV3)%K3bz!)#%O7a-cUQ^KV6>cM$Zy
z8T1Aky@f`9MHZk;S1%*}@sa2sG@$6NH|Xn71(;s~AdL2gVUF4_X6+Y8qCY0+NrIj?
z0jPeB+Q#KT6{(-##S-x0V7t2r>UXhhcix3SZ4ZDdzUE}9in$JdN^Uq=y2k2SsYOiX
z$Tv1T{%#iQ!NH$bJc{tX9)NlV&<lXTM81#Y?{)}T3k#(Z)=I-_nQ{#Y+s3zr{oNin
z<>CnAjVOTiGO%A}0oGo_rWn{>!uFh$awph1qmGS)&CsxIrrZ+3(lu<Mfjv*yz7vAG
z$-rh3_K1ePYv@fPEJMTA8Q2KI4&rbq@HfQ3h7k57V5%>^;lZ1m5wLI$VHZB=A%(3c
zZo}Ky7wG5j#Dif5Q*{nYync-2tivNwB94IW8t~Bw0DgM}fE_p#2z1Xf%zi`INDb?b
z-d}Ad;2aGYO~48Q)*lh9+fkc(oqz{4;3ifNdCetk<!@3bkyt(g9?^hX2$)DfPXSm<
z&<UuK0DzIYrU5xBn<c*H{p^10;e3?nO~5@GFrRJiL_o3z+(;VD2>9?<LHU$zu1CN)
z0dz}sYu;iAbLm2{8!Yh4zE_UDvbM-OyRc)mVep>P!2DmN1@)0msPzv6?P?8p3oT$X
z-y*D<hOJ<s=LuN+FTsi@;1L3D(SXJTOeNrK4fwb|0Cy0u_Gdxq#u7OM+@%30YNH~k
zbFAu1==mD@B8#OH&<8hrLuh$Md(8+td`Mtd8CV^{R%_TttT2XvM>SxUp`WkzKLluo
zhCaq(+X*=OgV4I2T?MS}1HxX^u<b4_gEt84D=_P=hI-z}7N=F8qZEqs?m-ae_XmaA
zVi>oYNVJDEpeg|)323DO%?QXQVCMlrNhY8-0X_}5lQz_efG!$PnSf>ll#~cc9ir4D
zV2%bHVu>mQ^wWUX2>5v>0LS+W%4o{<D+2zZ0k;#diGZOR(3ODq38<+7J4xf81iTXv
z8k=iTV|r#<J<12e^n<S`)FJ{hzm<}E3AmF0<QmlC7!tpc0Gv=mz{dm(B;Xnim`~!c
zyKaP4*RT}^){?LfzZS$t4J?5$zlJ?zV3i0PpkXIj!J!8MsHXv6lBYccto}+U`3U%!
zfLsl@m4IagBx}F~0$wFx%U(f=Hx)fjSb>HuWTE>A7^DG@5HOyA$^x*eV3I`L3;^1_
zyQY@mO!i6xS?F(jNZKl%fkGJsw9<gpSe8?530S*ZN>sx(Yjqw0!!*E}41kM((p^%b
zH+FWb6Au6|M*!VYSQ~_@2y3Nb4GnAyVMo6##X+HgkMRNK&H?8vzLbxOH7tRxd6|HY
z8c>8hR?Q~hyPbmd97{|i;86`&Sr33b0xlJR)n}Cp>lFZ?j%78p0Jt|wWwFp#JB0aM
z7V1vGcnxSuKpO(i)qwK}Xhgt!+XbZw0ksIYQ3H|)IPM3ass>aeU_Sw`Y!j4yD*@O}
zz~vh70Rig>_<5_8c%Fd81UyCn?0p_teE|@#|3h`n{>y|t#8SV1A!yxih3uygFk1sS
zSEI%d(2)R}&b5TB{#<Ydut+8WqX@8zbSC8Z7Aewl7>cwc;5h>9B4-oQUKgp#B2@|4
z@tLE@FEaocNeE6Kx&uYNA)t;1Jj5PkGXbw{mJ+Kc0kDFA{u)pfLwWT&0VSV0sQ!(R
ziG=vAOcL=EaJ~j?W>+?efaRN{MC=p*ZUX?4dpAx??sZD;N)~FR3+*dLq00z(`xC*M
z#U8vP0ofW*<t6}<2{`<*lo&<2XAv+<172VkS($+L8sH}TKluRI^pT(pW{JH7jMjix
z+0A}JKrIazNIAYoz$+Vx((OhBKz0qU5O$u1HODSL^#lP+Ka@hB*9BlY0V4%qeTMfn
z)Lj68!jfvb%}dzkVJu|nLR+3jp+N-9*&ytBh;<1885;0HApofae79aoB(Owd0`Av<
zR<{69n}D_&@I00^)yew-*s@Mg6lM?A0Rkpyz>p#Ub`o%&20S(sfDHt!S}Q0uo&;bi
z0V6bE&wT*AOn^%R>amvD1T0u1DBCd}SJMc%QUKk~r%3V$`1}Kw=r$6un1Z~4u&EmM
z5mFYFMZiTG(2xmNcLKgyEm-}k5^J4mMc7P%S#1--d*SZ2?OyoTzUYN7)R>h_I`oql
zm|IpM#k?{H-=?lCdmc<W-uK4N<WZct;UC{sxK4RzUQ1>sNs>O{OA0&sICbMHytIrX
z4$QH5RY0@k4SkYJdY8P9Jl>`y>zwDCM4bGfDUaj?Q!4C1W|}(47pa0LSZBm?mH`(B
zbGTvOB8BptUyx*}76)JPI<3o0jwP4)!wD5R!=@L{yc~tC)`dLg8%GADc)*#ToK3f1
zLB9#*n<1sexd%8el<&Kvd85!+v_Hvie|J(&#i1df4ka*)M0G0XYf2zAZzqQd$jOz&
zE#%oa2d{%v=CJNm*1ec@FR<(8C-LKO06Rq*aDRUy{PYa-+#HAyI;Fsze~}nimUuE8
zL+IJ%u`xV8CUDeQCe+@j`WRKNJ|OV_m`d)aSc*j~A^xb3LDBWmgRO)<z*B@uKH6KM
zO0K>ZDtSDpl7*~0bV{NvKU*b}z6)1Lh`*@v`~TXWXYQ#`c#V*sp1wVI|2ABB(C~k=
z{IYgeD8F4-pNafR5n#kCLVy07<rlxJLis&))tSie{jdI~<hN;Oh4Q;L`%L6F8PPOk
zdh+eR+5Tqks8D{5t~?X@bw@z`ACh0z_6p^<>xwgxUnv5@|B(FRw^b;=r-qz~{NDfa
ze@cFvzNk=s*A6}t`AtSZ{U5TwnV(lEzea=3M1I{7Q2&SIm$jur`R&R&6Zw@QAe1XV
zIq&&z90?a5$l;hZn`72&eV#vts2C!RkYOdiVaFH;(fEeldop4zN}fVo{J=2R-d`<;
zyx4DhVTh&X&(@nsajF})cgW&8PKv||zWqL@eF}tq`?!6zH(4oMowG{y9e~M(OEJQh
zmXJLkmI^(740zp-#+>r}UiY;5x_wD(pMAzBuN%AsZ#oX-sgyV-(>pN3mvED6j<wDS
zJf{*T9ADxI4gA&7e8?Op9CNAw=X~|h_j{<H+w76iJ8u7K0c0G-*v3pJVADau!tc4K
zmXvFRDC0oxOFSjdtCvXeDV~rFfyS%H@snFwyhlntP(v?Ab3571b&PjJUk~W^WV1ck
z0>VFXoTAnj)Cj2rH7EKK&7rkMbD}I;b1AC-?fT|342I?CJ)R&g2Z%yH(?!4bMOd@U
z`?qst0+-^+f_}1BsaN`g;VW#0L-`%Y-_2lKm|q#iZHoM3cvZ~{SS=xitK(OxTR@`Z
z1JQ3d{>8vgBYrCJ@h9?%z<*7G=zO=wsMYS@g(7ZH;Jq#hr1&N%hSMvLpYbQc_}Q9S
z4nO7LuX$J3ZrU^ZOz{tI55vFmO!4=nV*)B9&$G+J=loolFK};*wjDhyM>|OsUsunj
zX_|WaORee$nY<Ap&rzTkWxnfrO$G;5_TnT9_Q&q#L?b5Fe6FECb6uM6gfXJ1cUN(P
zl0=l?vAfW?1dHG-*p<aNiL|EL3l;)*bFR&v51Y-&mxrApE?nQ^BHJsok8H3^@PP|;
zcPGsNoP}o|`w<nqIQWx}q^=KtR=5JPGuy3H&)_o@MR>F42~}runHSX`+|%}H{|%Fw
zpqm>3c(Sh#SGfDS;Iv+M5!bcat>^W|Q;CRsC2@W){^4L>Uw*tN{nOk&e4N`Ik5cdm
z|AxZDajio7hTQme%W*Fq{MnYH$7{CH>G!J(Mw+wJOSa*5yDc7X2Q*tweZ+PzHB6pn
zB5FcAXdgH$c@*3BaBOT>l#>(Kb5X8K*>Zt?XuWFR7jig>9TQIVMA**_(2s}yok9Nw
zt9n*<pnb(yE>3m%p3e{Q`5_fM!MJ;ITN<Y@W;BVA$Ze8ntUfbWonI(M^N&8TTQ4mJ
z*K~Kudw~`+FT_%~z1$sX&*BZ*Uc@T(6e{*S#;BF|2Q8N@_y@wGZNq8a!C_PgNh=aV
zhEpT>3=BK8qbh;Zz$n{r42xm>1^crI`+?2CWOzn4ZW&15ZVrQ%gR`&316(ZP%f}rP
zKZUHNZxSxxz(3qm!~1#CKa6HAXt&lgc4Df*w?tSAt>7BEF|DAZJT=w=cEF3a7S+mw
zR+ZDAjlcd3<UPn6Chx)(sM>bMPEKcZ%5;8jXx|r7cZB^7k5+$}Ec57EkY5Jmcr`u;
zL5`cs6P83Z3hRrm`he#|?OLii*(f3#Vfq|DB3k|4GWI5K0t}iS(f*K4$u8S?8s&w-
zLJ`LG{AJ)^YGnO)maQLVE;)p_739nP%DVoWLsu<atOLBnBQZN%J&?XVuc3q<AB-z~
z9Z!u2vv0(hAMkI#ItQ%Cm3x0!9$dgtJ?@K;N5~$8X>rm<!9o%8n02X^2OAQnH6HIf
z7i~C8>l#U--G;<fVEZ>?L*e=x2>FHer#gOJLaHe|sJW$kQOtB~((kxdr}nTQF%pq(
zc)v03UWr%7dx5bh7_Vft=`F^q*G=Vr)PArJ6Zbz)i;!1r(0@YmI*6W@%)_?Al&5YY
zTV?F$_S3T;UH`C<{j?MNk;NC7kMHVO2>u-S7_N*;Us1m0?CA;1nHUx!L;8rSi99wf
z+WH`LGbp(F(~FCQOz%%?kx;uQq$iz&T#Og&{O3=i5`)?+fc63toD7HfWqv#~QhwTg
z`iXdGKNkggWH9EUVXHM24iZy@3H3$~sO-UDuJjLD(u?8sBZZG<zlfm5ep7rgUYPHq
zcPcdBH}4kn?aE4@3<_WoD}5tmzK-}8wdPx>uWXpBtmj@MUxXL94Q{14GetR8bF+zi
zO(;tXGWZ}Fyg$TXxO{jYMOa^}_0x^=!P>ALBSAY>J-j+nF*&SsL@57KjW2<4o(gJY
zDeGPss+-@!>pzqJvHeurb%n36{;_^r{S3KnxLf-(z|sGG|G21Qc>h?HY((^r<=aP=
zZ68DaH2cV+V21oh?PJ`^Nc#|@%yHO9>0i#!KFZv`6U<lHx1dQnUzJxZ>Q1rkBf<u}
ztTpQWJL7vq+JBHN9021)1SRGNLccxM#d)1TVtBW&E+F}rZ7UDAZ?4Zr=|5$CUi!}q
z+>2v|qZ+lkot~&TMF-mME{Q;IcSC)$J}(_;#QJ=A{im6K;Z*?a??V4fzemPQzb{-7
z(SJ%(GCx=-LdePF3jHT3#JLwsx*qRdeC}}ceDT<+;_DlG8u><<`%iQ{>O-m`uXgBD
zjmV_8c&e=y8|sstE~d-EKq1&=9m^B36?O%K4+Z1me8whdEhMj~n)?4ZUVr^wq(7F4
z*JHXsCT9|_Pt{+DyQs`x!+KH-l#puSenvVg>X$2~?D4w#vGW<!Z^q7NYYSVHQMqt$
zY*)M+2bH^L@lsn3?J)x0L(T3e>yJ_OEBjHR##>m_zqP-r+=%<<?XQYi7OCMf5!as%
z37=|zRmlF0d~uByJa~;<6Ko`UkP=l|qM`E4@BSJY-^$KE9dBxP&G66^gq8SUTCVm4
zpTRnuKKn%)*q+52!|HQS<38YMG26azGHiY+G#y~iD-GpH7xPLLPagHcLbgPEd-5o3
zQmDB+jhH-AN#I)MhHT@D<bV7`@Sef>o;1$)pv5}A$&F<m=EKO@V?17F;KBC^@lDhU
z*2RSoq19#2|1PmQg<%iV9K3)LUN(YWHkMwN&j6T)x#Emf>gZSrfKx99cef)~r>A)6
zDPHPTvXT(PVe&qs`HP41Bl?ffcvX#WW*b37w{fr&6#ajnpVe<2o}UdT8)fn{G@x~|
z$B%zTPe_T84Ny-_^=>~&KlJbm;!mUaF}46g;p(_mYRVW2p5lhdb;(;vaW4yrTE2zk
zU3j2Oedh-2gIC&AF9@glC8=%=Qay8eJ4T0bSuQ<UpDBv!e=t6ptVn>vf96awJ#p{&
zFq;UQL%cEQ{6Gw!Llgpd#V<y63lfMhoP`}=&DT3eo>~N<_6xto<?tIm2X>vlgwHvb
zxF@%n%se-6FUm-CFY23^7JbG?&lcx$o)8I$TGo<=6+Tb66tl{2sVZdnx-tw$@XM{=
zh!L=)QILtO32EDN7r(?uu)hr0pSwsFuMjIBJ6x`|KCf}R<?YtD+e|J@H;*VVmQetr
z#fp*H5i3V%B!Lo7fKLJXl$j(;^`Rq0Xh!T;ahKcP3hIfBE=jy64Z#~1+u}a9++@%6
z^E_T$$+php-Cp8Tvq#Z{RMJIgVk;A2GGOxVV$PJqKm$GPhKIHHbmL1rcvS6k!)z(6
zBdOoS<~YJk{OwN}U+yZ~m!yWzHRokvh61?&Yy+7rCQEr+qg?HbPtGi_D{rz?=8n12
z@b?z9350Fkm0+@MllrwCL^T#d375y|&R5ibH7v`5(&2*PU1*itL?<&)(Z4%i5j8*h
z_vS0I$nJl3Jo@#U6=p|cQX!l($$u-JuTWh|^vVs)Lx(j?z170p791-S7l+?r+j4}x
z?rM8Vdo43QDw}Vyep*{RZVYbDc!3-tLtX?(#a-65g0sGkbc-|BY8Y#F-VYfyUzYJu
z2Ha8RuX@QBUB|y?4@io7CHD%A+JfV>KX3kO^Ba-&;9;d%tTYKR5^p11-{uVM;WYB!
zR($CZA`*LG{u{Cf<^Iur21XnTQD0mLM#|>D<HsXjC9!X?_j*LpKkBpf-;))m`aDqo
zkmMBK)wR+;%xi_tEZ)5+J3eiD9y+(ab<n}pNi&nu4jyO}__rVb_NmLjPv8#5@KC&p
z;6!J#{~z1Og4ZgvkM6C{&^}HhUex^Fwt?vJLZ)3h-Cj<-nBNK<m7hPKhJCVr+g^~>
z!l3MMfoNe**+kfd>cnaz?6Z7(NVDTb*FP;@NUGiSKN>HdogZlr5~Mtic+vKPGq8v9
z<@5h%|2oy=Ac^egkU0h?c|!5j-SQ0N!})~M@Ryx@+1rk%95#gFsr0YnFI8_X$6xMA
z`FH(=^`Ei7RAsgQ<^D46l?wf(wE3TI522i@?g(4wCXixCW)d%TxSoC{100OdgFXK3
z<f#1kc}JA-ff+i=VtRi}N9)yHjtnqN$VNBMtrUYW;;(pQ@L+?oBZHmI(AAE&hf9wB
zmi}=Q_(7)63*a#}L}sUZT_n=XA22V0kcir|@DI~m(tO#-g!Dr_JI|pXBoQ1*!f8E}
z2J({CsjJi{*U6Y68!VJeV+xkWd5dQ`!(iVsAL{>4&tF6O88^Iq{e0mrM?W7W|9Se6
zVI1^>EiN(%xGmbqjTRFWS$C|*)7PCNw=Ur5Kcb(Nf744D5>KP+r|q?(pCwICM?e2<
z{Y~8$9rhc&zj^w62<CLhbN_Af`T6+@<ukd-8OY}h{5uhOoqG7j2>(tD#ozJe`S-!3
zQ~9@hTJ-rl$^PKQGVKA6<$R;?@Id#_9voRTOvUU?65Jh5rT1~+2WM?6-s1MJgs|AG
zdV<r6=I>4;e-U0~KI_ICBIIQPHfP{2t6fe!T-Nwh@*4ktGM}{_ooQrLYzDrf%x9g(
z_+w{vyQxrT#QM<t!DkWU<3;B|3=#Ph?DhX}eTeJb4k1Kr8m=l&BiDyw!1bxuhfZ_9
z1CCFPQRiQ8+mCeRp`7N4Mi7p@-+`F{JO%$_DpGHs&8v$ce;kJXarT_HV+Y_L>fa^j
zei+FEYm@$qiMccXs%9%Wg4cr$PifD?D#*W>b(tRBWL~GS(|06Ry&bAkBgw;kW(6g@
z{WnI>x3EfQ@~zIHbSpgDy6Fi=G>+bz-*AQW=KC9<`su-J>v?8dPe)nLVLU#q{dCZE
zjK_-^ePnlWYR;3I5r~QQD2{{&&Lnu-5Mks7GE)A2x+v>Y(bvP0WR#COQdk=zaBH(3
zHdg96-SsfGx8nWkszESDNO$0Tzaf-+9v&KDn~uI|M_f6!Iq+P#YX$q&|Bkknwb3-=
zaA-T%l-ld<=^y7_ElWySW)T5H1ihl5`y_k6diu&}c`0|^2e)5eiSE>4!I+}kq~C6k
zH3uv=s*X}36o9ZmTvDVapMw^44vsBoWa0My2kfh+G4xZ|SN<TeuS%%>6!!H8?R#j&
z^&c51^%o>oSpR9vKeVc1n~T_+a~VqPO_nXEU1i%_M7%qBHh3t1yqR0pmS97{cV}Q%
z_PaBV<w?xu_KUYexx=qHgX{6qaJY{H))TKrW1ZW%Jb4XXV_2$2fT_Tp+AKo$5XIl4
zu17zaMd=2;y4>~SDD>Jgj>>xad3f`%pWHjf4g~pJQcHSPFm!YbuVgKQ<VxBvDd>QQ
z&%h58B3}p%wTJfgXYIe3c8?CKP!7W!`c{N^?rnmU$1>{Wb5w2iUrZPv=2y8sq<n_^
zFZljOYT5DrUxWS6U+h>9F=VjfIQ3*vSkEK<K6vx+X%-pGc8vIUVW}4@x5E=)mPNrn
zXdcBohvNPB<3m3j_^Q=hZvT_5nfR*SpW&Z1EAUU*m#`0AFPW15(BU%bTJli7f993-
zPxxfeKVc5WKey&KmspQCM*1N#a?erpeg6^r2kt>{7IaXM=38k?)Y`LPI^)Da!|d5T
z?J?c|K(C{CtT+GI`vqj^gf?b#Ug%bE2|maQLIGm}-G(uNV#wjoM1F$>%L~uujp!6L
z_dGo-kxEMkLwtc2Me;q~8Oc*vxp$U+krwvu!7NhND&@@-o2pBu`-5qkRkrK~5bMWo
zfSW^IP*{8ZH2<vnhUOZsS@Hg;?frz`8|$9Ae^$J|*Z8OU<*f=gst(kA?5G11Jk9;R
zr_o>CePUP0|CpA?d%U%b{yA=z{^|?#&{6%NKba}tAO6$*)q7Z!4!Q$OQ1@3$;-RV2
z>94x5P13(yfJ+bp@8Zo|pKAv{(DGDRFU+^>wypJjXb-^-?HvZgMG_3d;$f8j?EGMT
zb?g)9LS5LnaI$zGwQ0#Gj`$jdUaKIzbIEZEIW~kLjMgTtJ|~>;ha|kFEWhmk`XPQL
zF;>{?$9n!)<OE-dlkni{gRmHzT>2?%2S`?Tn8=H);OFLz>2_||#?zFOY(&>`3isze
z(d$bmW${fk19LMl$kI*WwWYB(iOlx<*|kyIGr`)Hv6V|A`X~1^bKXO=c<86PQLn_q
zagKg7M+ZYZlIR!DLSusw5s?lNQGL7SckvJ~Y<hf&&KaRNXdfsr%UlLLS05-4ii>yj
zmN;|F1?%N`523ioc!>4{t_{V-==%G!@|Q0Hx;3JMBt~`7uCyOb58pq!^fKYQ2l+n3
z{N+!zw-vSiFYRqGYpcNC#!rBK!vvV>IrsC9q6x`<UcBk8ohle}@dVb%u!L{fVrJ^>
zExL1nCX8`G9nvk!o?f$&&!m$VTq^2#vnJFr+L)1S=XIPCX<LueKcd8!#^gcbV{L2)
zOso`&DIfF-i-B9|ZJS9o<lkpRFYgc03m+f2ALk7z_V@tTpTM2%7?==FKQulF@%v}y
z|6jB@1OJ)OQxsOY#+m!i>5Rw2?MvM@N3#a|DsR3=^$>>cs16G+f4+zE$_~$W+bt*2
zv=Vt!F;T82VutFew9VtS=bLK&!hFLdmWiIy<=8b^W75aLaBj9*{St@Dak532e%#Y!
zTWi>u2cuYQer6WuzoZgr-2<o5*CI(W>boW$66k>DV!1NY7mKjmD-D}9x8*fqok^L(
znQYL7t*cQj%;aCu^1PQ}^d1<|DD*{K|Kv~jfc;Ztfycnm@R%IN@AxaC%crF_Qwgj7
zhS>MrP|x0|>v&pogm5ZP`ZQ8FTdP4hkBSr1L(x9Sv)$$ryzMd=GB{TGp5`9!XPy;b
zS8*@yP{X~rUghEGKj+o*4cQj!%iSKE{&VgZ^ye71D6vx55kleo{{j8B`njxr+m_XD
zJvQNw=(p{^r{5V^yOyc3)6nnOsuk(?56GwH;j;3HEi0d2tUoB9*f9Ap2?^PMMyA+4
zogjUUvH#%2U?w{q_2toBr!Ai>@OWzb{{!+V`LV2gx|EgAme@ZipDtnY$q19rX~c(2
ztgWA}{iK4&Q_JTx*1v{|KS@5ozTY`MQ{98lpgX8Kn0ha&0_mLo`WKSc;2Z_Wm^q4L
z;qOObjzZ4f!8=mvQMX2z2+#B|UTryI?8tsUDmX#S<5CvMQ}#ayU#OkqwntSAxIXpz
z7tia6l1~jM8IPn=7@Nojn<31ixKRT^79D~tZVl0I7$$lU^7ZH?iIFqK<hPRF%luq;
zemk-<*vfTgQZt$E=uvNYyvziDNoB`R*mWc0897J=44&oy>QE(U@o&K)&D*T?tx)PF
z-@@xZb^b5Q+<YGdGC?YDq%$@soqT?SbnMYqm~@Jgr!b?!w2t(_nAVvo85VQfLcT`U
z1Kgfz{(q|R9}H1Oc+tmy9`=c7Nzmk1#XwjU<m2vXv6#+)j)2W`l8}=l05Fl}D>Gk8
z`}hkLLq3=V!55ej*HwaMq>k-8DI-1TQQoC7lO?MCSz!~IK)~7m>v1Lwd=oO38-r&h
zPccHvfY3a6Lxy&NXQ>oDS}gm`xg$ZWwjRyYoXMe{#rsf<JlMFOSC1t{KtNn6)>Sgw
zU}wOdWv``Hqc9Jwk}ojDQNL1hOdt`atY(#djk~)dPp68=x5o2*f;f*CSv1~qb1$+U
zoz*<1Yo+m_x6SgZsfkzY#dOFTD<97)sTmJ_TdHok0X2Nx@7Gc_KVyHXTK7}{SD0nv
zdF4<>eij%Ad!GRLq<h*AT0ao_C^)p9uasdBf{PZnQ3mwGFykL}&?ti%oJ(xk(2)i0
zKoAfw3W}PHK(#gjk5_fZ{u)xGh#aqwZ*~_yN)`DNeol*v!A6k0$+^R^`0)Id)nNR1
z5&!tE-N53C$=cp=^-<JkrOd|hhs*QYp;*m9`j$q_#*D=?(6R2%<4K4zCHiji6vAM%
zdMXr8cMRnH7f3owFfW7PW2SHNLxq+CB_?ne;}4XMSVmEpIa%1Hw2;jiH!@0d*5^*j
z&BJkzafWUhIl&)J)B3IcHC)mtP9DYaWevXMB}MdA%AEU?#TI^11#c>0LF_A)aNR`R
zHZ$EDYMXam2}YbNP|eF1$HfF*fvst7MUOP_z%_uW8Yf|izn(Pbq=m&Z_q316K^cF|
z@_AC>TDSQ!I$-X)51XV4Kl`o}!btNBTkaXTJZ8g_UD(t_)o;UhQZE$j4E2zsF^drt
zwQ)zZDH}D~lV~}iM=0G@HP&@>jjZGQ^`~ElI`;(Hn_!O`BHFvXY<vCIbh+mgwl{ev
zZBJ(A*;3ohot`0)i=!*Q>!;Q<Su@B>QVTZjcd8EtJCw9Q23Evbe>;%%*`f=gzn30b
z2eRCHVxKe}F-{{f6v^^dGS)RVBrgizM7^MRRpaAmdJVhjW&1DpwELs@zcs=o6SE`v
zf%c?gq*KjPxIErdx)QHy-!lx`YSDyLdS#9$ea}4!?RFOJ%-w~-%?PKnfpdun8EiK6
z4?n`$ZD=@8EX&2>Ghbp%<U^ETNQRBV)<Lx7^$-dk=df{cYDF!F!*Q0xUHlf+2Noez
z>&aSVSJIn=Y53l5C%Ik;u2*@|SGoOOmi6I4PhaOu-zBM;zCI~^(hp6#qrZ1$pO%OE
zr*FDzLjRU4`+Gm@^V^O-D~@&V-(*w&O6xMycjwk`cQ~WyaPERK4dgqRbZtGRMU2Xn
zwmpu8ZTF(wV74XvF#;g(N-0^`?r_QLBqc*zvqqEGpFv%XJ_?0h<?JOw_UbQ6&R|gL
zatY%0NAYM(!GR2_&--d}8bAH!b1e?UWdOl{VkbEHmXCc!$@x;8@eI*Jz9YJ;0Ahi3
zbT~+5KoP?F^SpT;#iyI%>aKQL^3YvT@;cC^zTzqP5eVE@eSpC2t(UB_w%MT?N*m$v
z_Kx#elOAHMb{GG}&=hRk!Mzq2D3j3I-s~PR_iF7uS`%cz9D^fwFoifqxaAMcGAEq;
zRxcCflen6mqCP*UlLQ!%Br)vVrEhV84w&96^gM{Q@H)S%Q-Zz`Sib^@Th<}Hgk0RW
zM0M)*?j``Lzr1@=L_@I@zsB3x!G^~n#jKzddr~7|Pm7ZEQ^pTG5EdjvZab_)voM>a
z&7RCQl<VGSBr9R|l8hn{9OxlS@kmOzp%Px0sGVUU42E*u%v;w%UE_E>*leCb45&&+
zr3Oc<qE)q$)zmk2Fav?2<V{iqXK|2VZsQMs!ocqszo5tIU)W&}b|NLcICOZygUwMY
zUoI-{CAAt%FUB%!Gthio=Hz$v8^i9`j%~a4{v<(AnhNJ;Y=alT>oF`ry5=ro@1Gls
z99?&rMad~5(i!HnC^?nCal;;NTML@UdBU+>mgWJYNkl<M_u1oB-F=#>9bUmUi%UQd
z^MEu{U51>><1_wKu$pd#T+w8Y@acSycVY4&k`IYG-czswN7k0&I`LudX{&@I>!YtJ
zLv$UzJ~zJLvnD*CT|mxKhD1eGUN<cjbO*$XHxk`DAkpXQhteMZl@N2@rL0YAg)4cS
z4M2W$JH>2V+xxC*$Gt<Mwd07#iwWZuHZ}D)_C0#MpOn06w?<9lPRQHX7+*%3NZD`I
ztxJK^cp=+(`iOdZsrEAHP`Wu=%hi@26)mGFgclyI;V!-nhct14`<>jI^K;vd9d&~z
zeTTdF3P9b9v*Lyq92+^>U3?h}*@xf-8!HYY37qZtA{}NICx8A*YJw?=@!A}8Owkd_
za0WXQ>neWJqFiSsFChi`SSJAZBSz9ZwlACJ@G>Co;ztm6-r>Xd_=g=8661x*^YFu6
z+zb!fm0pTDS45ngOvwIq7V=x?JW?HHq4TWI9PtliCH~FO%Ksc^5>nBu$fK1H+En<}
zC;^4X^8)aPOexl=O+%8V0VzJ$MY>oLi)ET(!hm-`65MX#`D9{%2j_oF!Rxcw+R9R}
zNH^cxI}4qr2gb4-<lV)iam-Y^&FyxIT&}_o=~4r*eVko@lMC2iBao==D|rYmRl$HW
z63=Njq(K9ePajSLhQVTe0K-)lAeVbkLZ5+vr~dpTpKFW{!oZUSf|~_pA#?z55~TQM
zKjS$yHrrBM+dHl`O8TseiMKqjH;Uc9npTNJ4?-NUv%`~zM@I9AQ3IoRgx_ioGHNC_
zSmMA--CsKT%9*NTG&HynuEDz+SU71R&|P<1U7Bd^Gv3C5jq&xh+vt#l?k7eq!Ep=}
zAli$b0I46^QpauqB^1DM+$aH99~96n3w%Hr>~pM2T&L6Bv0;h!*Y9a)SZJMV^fEZr
z<L#H`bDi|kxbDt?kgI#VJu?EAa0oD)J1H*~`o@94_$$ZR|Jt#%8W}IenFWS%&R0>b
zdFXsyy_3*ppSB~~O5hWu5c)MI)aFWYJPs`6Bk#7rtMVDFE@4SE%87o;&|QPo&5TkV
zWM<6Q@7mPZQ7sHN&_k+4XTle(g2n#sC>Cfe)gl7!k%7A|q#i@|DZa2ZaNq>_LjgNP
z(y3G)3wS>XJRA9R9-m%mo?gqRsF+TzdH@(mCIse17HkKCL~f|Z#<D|ZW5p<*Gp|Hy
zC(yF3A@L<J=Qzpc$7T9r0uS=L-}?N#aDqKVdNx6k-k>N1TX=lI*hfWX+aV|v<pK#(
zo5|>-mk#`NOt=^j!9{nMvsuzbY#bRhnV_v>n_`e|DE0;>lPHGD9v|j6f&~I22zGXM
zWqRw!k^7YCtqYGfaTiTt6!TlRJfNke-up;%BZ+I0M6Ma8M};M#m&n(-l5cME6zEWf
zCLVvs7U-8aR!O8kBq{Zt9-tXdV+8xoL_whmMXQCppc)beN|9tD?4Xb$Bhw&ZR0SUN
z9G)7{iCi(f7Ri1e7|7={$T70CTEcNrvS!xI63c$k0m#AHOw$2$Fst|C=rtasm4#~9
zk<`IMkN<k<Na{<0E72h%_VRpoFZ+-mi>0fPKIAKDZ*Q2NedEFaw9l~X9e~)eLYGGD
zFmp6`${Y){GVERitUoz}!a~pEnyC>mkA&W5eI9n@oA$Bi!FQd?pxuxY1aI<UEqKNq
zzjgVTSkMwFB2!djmQnB~9zJ*!5{4TaqG~huNWL8Ay5vs14LDu*D#mB;Q8>1G$$;W*
z&>oL>4P*HO^577QZ<cT<5k6m_>jF;^bV^IC-7ktI!W<X^a09GvBmG_#VYS(;W4Mc}
z<97ML5Q$8Zm2HDARAp1^>%Wwi&QuHgMxh+W3oghIW!O3F)MywGR<@L))QggH<U0hf
zw*2~w*eh(OC^?Q`N!?(t)5TtAVSGweV;KRyIaa<i8JHWylk#}Bm*u70TulgR6MTBE
znYYGZ-)IyGoARrZxQ3pW#Yb%mE@weaGu5I#QCbiF*HKX0xsmampFjf!DJ`Of?l)`;
ztH^zdI<th|YB0tEd+^W&>*;mkO4xBGEiN(*L!##TY^rvxnL=lVX}%j2t~$rWUQ{Q^
zjqd3aMoaXwdoT&=zsvDhlhD&6cR>{#-^TOPXWdEq%k!F14N|+e8tnmoV;W(^9GEJR
zL>E#Au?ezdD{-g}wVQh)N9x3*$7s{A?du#3J0k4cnr6d}73hX(z0NT9z=lmpjNY)l
z$CwG&4U?Cfnw8(MCrN*KUL!IowMR58Fr02=9;$|H&>sGzT`CtF#Dh%KoeEPQwQ&GT
z_=3w#9>;yR?rEQ~d13bl*%PhqI=#3g)e933zPO@FCLME4x|mWzV149i-4!5UN?_)s
z3?fa2Mk!p5@XUbZxAt2`u65>V3<Oab?T|iHpM^57yhZ1RPoX=HYek;?oY?~f-NU0B
z(j!rRQS0W0P2{4~SQ5(T>>XBYdFfEz_h>!CQ$%~0lTg_H3-ZfX%k%I)WkRPJnDf$?
z3emyY9BGBGvfjTZt_P`%!bBB!RA8E{P&EbXBC8P8gR{*N20qC^&W_5T;J>%Id`H_k
zaRv8wEZ`vpO!#&gY$yHGyau^7gd@H6DV**SFdtL0TRpxHjcba=LA4R>^Xc|M_^s_V
zj~DJPyXG;it6uY%j%StBk(+-kRm1unE>)KgJ6Ng$!vk1f`BzD)nw*ctkp0_#Dpegn
zKU%7?Jg}<|+hbXzQwKbFs0G$WuBo!GRJ~LLjH&xdu}abj6dkK12fqWW*_zd8^QCWU
zep9$!lEn2A^q-t^q%FWoU;>;`o4tu^>NEzxAX?`gFLy^iOOoJ8wW;ePpMkKwH=Kj;
zMAWX{ZtgH-ZXkwLnzUM-_qkm$=)ttfUm;IYN?^NE%i7ljI3et-OnW#`VN#8S;^6x9
z&+ek8D9(NK?xMOxls)Xh`(f}J?^buwX7H$ste~u9b!af8bY}`uT5L@H&0SPrisasf
z$EjH5PNgMbQMn%~%feoX4S84K2l&TaR{93_tQGponSQY3tSqE6_#B#biUS=a+2Sno
zz1zZ8#d+`_{=I=cOzX7Jq$FR^`WB1M5j&d$S3_Ry)&~aTLzm8F635buqLi+#OIHq-
zmaYa-R85akdI^G}n*0s4ax1=tVqS!Q%%%*Z=qKFXT6}D)y{x^}jC|&>w;w+W!z)|?
zd$UJqw6{3auKFh1_7-7NE4~KznP_f^`!fE0Hq9go|FkbzfW_EgEWS^~4l!5;O-37!
zOl<@Y_v4K+6JcL_a&zT14!l0m7dDlh0&ILvgk9~)Z6}Xfz@&Uvr|JtHI{5l_u+L0_
zIoa;OH?i<<zut?(al6dh@5Pd~(+0p`$$Z$$-y_N`DO)aZi`ITlQ2R`R<f@wcqm(`u
z#Z<vpkl)5I?MKM(kL>qru#q}t7l#03_WLy{yPqc(mH(mrU`_tL{XCPf3~ln@3itcv
z?1g|%wcpP@?QQKJh`Xa0XyuQUa<l2d-+!N`D}KmL@eoM1o|W5|FFDJd1Z8nL$#321
zwv(Y=X2FRM(e+6fXMc%riK^l4nq-s=?;%aJF7Z-ij*9FQ;;>JFs3zRsxnHVO3H<I=
z_wGRpTRL4R!vCk}_M!4o;05i=V9JpKsN@%E@<lfSBUREy3t2tB<?tKAD^ntT!<K04
z@*K{Qp|3)^f;hlF=eEbSd&6E#mNPb(oMeD|&nmTTH@F<8xeW0K5_|PxRDhGL1qbGl
zDetR#!0Wd^t*hg;U{$;KbWL%rIGcIz%f#>v1h;taL52;Ib%H_l%k}82ySE?)*aZSc
zm97E9s8}R(`<7`ffYiHYUySw2rD&VaHHRNE^;+pJDp^nYa>~_jJ?OG^oT+m;raGG|
zGnccoT}k6FmWimSY5c3>HPKHn8_X<Lh6`dq3vM)4*T>16&bsv!kxc)gSM^>Q=Svty
zLYShRKtjUZPqm_OH{{1Mx%d+@(G!)s+J?KjhC8WU&z5Rgn*|~cm^#SZuqOw7DwL6p
zx#7+32QT6T3N*viO(t<U-P>+G$AHTLD!G)lkr7-P@ga5MF-ttp;~I)oqMqIegY`OK
zc>I{2fC<8QxtG@##9Y0Mn7)0|KSNU#RJ5K%y>$m$P0xe1b5tLr-c$hz97$ZE<n$G(
z!q{Vzv6dRwT&=oMPtt%1n9m3G^m>34P%mAppUJBxxjJoOb_1@#dHN>zeT^v$dm*AF
zW&u9-{I=b*;%IkIlNFvy+cjS;v2&Pq!kHm;=Z^4|2zxQiUTZY=U$A-}cwMywE&^G&
zR_(4CQ?faX_3kPTtOsOm*Kdu=F;-ONouG+N;!q(tiH}9q7P%6>CK4(gr5NBFHEjE#
zw?KNZZr83olq9<YN|IcttK?v=sP^;mokBQ)4Cb3@b{bCLsLZqisD^SQ==XNbDw98_
zdc53GEy)zC@>`E?(+bpUsiMI4M+1@+r;xQQMjK=sOqu-&cU{j$W96~-+m1$$B^PPh
zmpf|4kT3=V_R8vZa~;mS2l5R$vo!bCTQtom5qr<LP;(LWWK}^oS0;8j_dbd{JJDQJ
zt8)0gm`rD|juB|*vg?exhAee(4xf^)g9|`+>pFz<5xT31i^lm-S^l=ekj$mNE+=$F
zRa7$v=Q&Q!FEE_vs0GM6HRmJLi~L?pr7<F?+4vdwp7Xxmb?ScpxJM>|bvRS`gj`@A
z-^L%yF(<1&Z7q8gHf%$0@GB<cBF0C4EJkvqFZ&Z>=}!d*6g1B+VJ|<?CGgV>*mF2w
zAM37ThY1tM{gXGbuRFxP?vPpxiSxQu4~XkXOP!?b`>NCzn+!7=1r>C@)~Mjq#Z-Z{
zpga2k)9E9!xt<_EdW0XxQs3@kS?rRSdrviEM1EOlljxIhX;{pa$@OM8muo~%8lu0l
zjnF$n4)clUt}$$N7PbsOu=}Fqcm`Qv=sJV@lHe94$H^0-e_J&QV|BJWts5~uM$NdX
zT*fLH;#~}5S;kHd$!|{v0>1}AKM!5{jN~H(qHE>%7~w+FVuoP9NhJ~$Hb_VlQ|Z0v
zwYi#)N$o@_KO;FwK8uo5_~|oRFIY_@z-qd9DRX|mb>C1UoAVYqyao&f{r%E0;+f(#
zh-H+>X3LgHFhTRXnjLnAH}RT@!^)M&kE28Wp5c&2;1~@TwPz^ir`l^gYAnCQYv}to
z;d|gcDW=t=1`#sIAZDwc{29xi@TpGx@f2dFn)^AvZG}^sL6ReXf=RQu_{-zkUqm(V
z7x5eTi+sXjL^~WxV_JP2WHGIcSuEYP&=w#j9NWVnd{zzJ$ZnMLGNv}zY=hZE=!E|P
zIx>^~U>n=J+8m)SsjOf%dBE*0R$m~i+kb}$-Zw5gf-aj+mt_?3_}?|DUYN_qVz^_w
z?Bgs3H_cahU)wI5OTMnM^&e!PYwB=bt1F$?b-0V|vR!Zgf8@OhbXC>){~eSosTyyz
zrj1tgs;J@T6bCdY)+i_!i5kU9v{qy55G$=w6O0yXFk!e}u13YFPFUx$S|=Q;AQW)M
z8Aq^n*fADy1e|z3-)HZ0r^KPZ_rKQvUF&5na_%{256^z){p@G&<3;xO##?gYo>)EN
zgOGbCC+>ote9178J;l!R>Qj5ZKh8J0hB2zKlQ?WyLjY@vrOM<~NFD*wWV)sfq)S#_
zVCnkwz`v-m*W;6JGYR@R?NntU46e5f@sTU?In~_Eg^l0Isrv*7lWH_lDmg~LcPY2S
zEj4fTF(Ol40V9>}-BMrABsC#PWq}@V^C?k;*t}<`QxkRR;g!mSt4kl0s2loB%h+W4
zWN!9KBvYp*(nB6Ok+FTzx=mebIKz!J!}Or1f+j0w9ds|MW=>sdmfMcpOBR27Eb$sS
zwg?#kMJ3GDd4HjW0Lk$mXD5X%EP~5@LBZ4r?Ao3wMGqqIyARS_JD;^tMP7k^7hou7
zce!#R?=m@M{YN+Z1sQI1XX*A+TbEhjPSMRY$?&4*_%+<ia87<Le|n_oQ}}%d{H!Ec
zj_e#7AH6~<SBBjPAOQD=3Cv4-zGDi9J5(%=C-jnR?mt8s!XucMy|9%}@OsH8CU-)M
zeX4u2W!C5kOc=ipud5TvPE$GBhuCn3yj$&hh~l<*x)u_Ui-r!_GhO!Y6Cmy5t#%}R
zZ89acK4efbNP2yj+o@VhFu5751c?>1Bfdl-yeMbV25B-NfE&78zoHu2NI<b%lS{VG
zZ?elREVy?kF9gk3K#cE+C*9i{-=J4{E%DAj1X*D;{jp<o?J;??^U57dR#ujje$i%?
zq0hx9?O-*I2y^E6BwJlTqzG`w{=J@8GwzJPNlI-_4N}S8pn7RCwO@I<?CPd1A=(+0
znoea5|9cx66ZCZLNU5+j(`9G)LZu+PQSDHIub^jQtNlE5utDfRT4H~z#j4E+tEFr^
zGA^JU$Y(Jae9}giD9Y(#BJbv}keDsdx{6{HGr8@#(%r=+Y!HbJ`GayanHb%6haU~Y
zu)P*^_3H5&g>{AS*;WR1HK+SylM?Hr!Tm1u@t&m)bUzV<rWo17vd5<v!s;%3258u(
zTR`2ScvpP#?>v30<pWm92dvVN&;-#!ceJf3Q&#>`zCuMNO5ERKA7tl<lU4@7QDu~+
z7##P;luo8>#54JoF}@}4l>Ew9eqZH<&*fLPNyd;|Wu@(Tkm(f}AY<NAxxtiJ66%Gu
z7}h3VP(zYr$&-dq@cNd8`LESa!RxP|%73jf6uf?f)X?v0+>xlbs=FO(6zQ{T)k?>Q
z4Z?rD@Nep?(OBo8K=LMrRTBmyuQ|<^$VuVwx=kk+MDyrO*||>$2E~;aU;^5fxF;X?
z^Jd6m^C%MtQ(Gpm{k3*}_)-tLPdzkSc~93jrjF_fNj1!I`#c5wnlcx`-|G3NS@1Ur
zet^|fHf`=MeKx>ameyzcQw)5QgC~-+yZ21aetXa4^4T=ID&D!Fno2#FeC}V#*&l3@
ze5n1byIv6}$$qbyDg9KxC%#SDJ&}J~qgZdApUoH{nt-&K&|lPZEj=?jZ}p-HIc=1<
zhCBP%&Y+^^f@?}Rvt*;sZp9QK<r47sFO4b~^MJ@I6=ryLa0GhXy>pF<&<HOfj~XFD
zQ)?4-Th*~pO%${#w|3P=LI75|A=BP9NvfV2=4Y_29}o*7>j@C5!X<2#ey#gIFowJP
z2`KW%@0aiKNq7r69H&`@{y-ai+F32zfF?6c<vZvr-c@4ca`0D)<ABooIn63)T-vd$
zU(aG9_piGVbl3COUi#w@d2}5g7SKPqtLnkLrpoYz`fAU|6BLIqffb{OMEF_l&_z$t
zgF>CLFkv6Cqnv*VM6=OaclbhYUXosSnsH%C_K)!Ks=crQLmz7eQ43nPm9HX?SpRsr
zw_f6g&(JNt)lIr)(Ogg%$Hte6!e<dNXxH*s*@(xAFyEX~gX+VKZfHB#CIf1u=c&gB
z%X9Tj-WVXm0XgRLD${80(Q*&sla?8DKc@iHk`5hPnXb5zmzHUS-(f4Fmc^V*Py$9A
zTa~Vu<Vz%&UY?G>%$rCIB!EZpe{4;<;wWFLmQuS}R#95<$=Z6KPPCW39jjC#z9}%0
zrz^TQG8wR>p678ImBs9msV|imq>P>g?qPenjI5uYy9!=hn|;xJk~NZ7X-e+h5PN57
zKquSN1>Ge)axcz@z0X4g^PLlZ7wI4KApV>Dgg1T`gZg-NpZ?j?0`8P@FmZ-nwUQAe
zFPERN-@D3@LMl!^%h!M~#rX+qUi9DOCsa-N!Tf}m<}v&}@)MSMd25nP!&>?Syv-3m
zDG%ppn`Fr`iuSo8hXUA?k|re^s03q0u!0D>eXw@AL;g%OO~Zku{gnh}J*2#DLt=x1
zt1(e^w`wMBB_f|eKwK+jo(2dywSqJpfs@Dw2bSN+6u&en@x8kScx1O+?~#qt2$2&M
zAdQ$7Tq|8R{YZ(#pYY+DlL`>Swed;+G~pS;!`Nq=1P5&E&=3#Hjv}`vsl644TJ1KT
zDO#>JGpCZrCx_8CNJ~0xw}9pl!{x~K|CM)StMNo@(`6MjK>1CRsl(~sZ(ImEV5)#X
z2Q;Ejo3KYVJ6q%~TxyQIcOjcyC%4Lh1#@lgG`m?Yc^ao;eDrCd`z^n^cQo-BA=g^g
zJ4Xp4oalw2FQ-S&Ll#w0dF{I6p9<GXKY4(xji5*Kpeq~x4EZVPik-RmnOS}ljLd4I
zE=>XFDrRD*3=E`t{92Jpnr!~a(oN|(9sA-4&@-!bR|qlx$ZSlcU10H#r@yj*Lx3&2
zrj$imCe}qYchrAC#y{PHIbh<`KIel2#XEiYPx-v~p6_zCxoa3}<vaqnc%t8Oj35L7
zVYQ=`1RMEb@_T|>P)ZKiMBvc55CUo-8xwc%bIL|ow91P`rtIMZ)QjSJVGnw_dtkS$
zrs0(>5!TTbQGlq@lx(FsbPpYryJHUZmFNo9vj+Jzf}qAcT!4iQO$^PYlVEj^6sM#s
z#yur+mi>WC_W&u<^kX1zUe-@2(w`QqESyh^ZEX5%Lj^{LdU18%)8}=zjHb`iEB*BO
zH6dF~7*aCWCj_%|ianL%H|g<~1_nX1V%|(_+Wvtm)M2bJv(tHm;-|{a0qNLnhZ`rM
zNc=)Xms@kw{8_C%cf0h!DDULAyL0b$*X7X5o<~Lgg!|Q+Z>>tl4y5s9dhJ25>N+0i
zRI<wFpU^+!U*O*O06Eoox`%<yE;lWa-@Ds(HrTx>i`{(tlo>JTQXg!5R+33@UPwq0
zrqwkQU1PuBQqDI-o@n`RK5Z8QK;=?Vxe5D!7)U^Ik1^GbN?JFWIUVdZQy?3=Pkbau
ziQOxuM>=?8E4>~_-fE$DKs@VbHO7*k2nqYqxH@a1P56ubcnaCSXiE7Y9)vt%%|SAL
zgExvUnK^4oUf=V<zYju|J@l;l(#+2YoOA8U-JKgk06>qPG3GM|iq_$Qf(m=8Ut;23
zX=(9R!GknSnwdKcb-jaa+W<4Q;;kw7f=<6rXz0rLlp_r834<DR+)JDO7!tu53<WCQ
zSV#6BTjsq>vvVBb<mTSy<*f<6#b62dnX-?b31a~(&4Ps9!@(Ps?re_v6q_cDJ+!`{
z9}WB{PsctVYiwJlM{R_JyVo%Bl(IiZiI>Y^85y&r;6Sg$MnrHyol-^=g|h&hNrKy=
z^X*j}ZX=V;F;8l>Sv0Hl@YuA19e$17E7UG;o22+xh|$u4(O4JY7LB&hl?sB*DalTf
zw-kNLRJ^;nm@t~`gSB$^yg928_2G~1zbZJl`+Bx2weusi5&uE|>>Yv7mwpCW7Bd5T
zM+jOOcYc9oMOgU-))W{5ro2o@hA%%MJ+R{UgYfiUZP`rYY*#0kDB~GSR%EIo9WK2I
z7QwX?x$&k#O6k}uC(w!wHg<RJSRjjtf@9U7yIQ^<4n`Z3Dfsnvb;VuY>+aK~W(WNP
ze5}e-1ijWDbe>qR?-yB1fKnVkEEQOlg26L@0AUa;*;@815P%xfvYOHH3s9p#hr9G)
zwBckAK!Luu^Dby`oVZ(mtQ~D=P_UF)ftkKiOkX*SA|pm#E9XD_%9uIsi_fn$e}kZ8
zdf1>HX1NDRb?lk%Hdm+l-_O)|cZK$VH%_9bKWQRyN-_hLUdFPz=ooV}Ri<NZVvZZ~
z5Ut(a+u#4UxA&kzK{?v2=G2ZQ^_IbEz*kehW)8=8%vsl`us+7ies0onq_^BT5JGKT
zN`C4WUz3o!*B&IPu6;PaUU`uh>kZ@AnLpv#O^e=L<*wbIUytnN*U*7l8m;Vr;|G<b
z%PJ26AGn+Qn68QK#Y0&#i;podN$^_YlT6v4ACp*#h&-&cm|6ODFQG8LDWBMD$I)hN
z?ik@XKIu*4<+7)FNSigi+l;;VPqm4JTAQ|SY}ev8$6K4t)}|(eWq<JPZT_C>1{mW8
zW9*Jc^4p8?(7pd!5sdp<dkNnjoL9C759Y;=JJ6DOv+>c)9$Tm%%;xoETK2q^%<S>m
zvHrnyrCy#PC79V`S$Nj2XFv1LzUG-bNe{GE;9h!wUnTr1<li50o>cm}yd2A_!t<m~
z%Dw}Ch;WwOj-$K(;yfv;hWWcr|BKF(`nd2sDdp*MmXw`+{X}1%G*AkMnJ4Uud-0X9
zBomz{HH^0w_-^6tefG9a5@dkWE$2zyITIx53)4Z@=u&{M_+*O~^pOuL9)SOlBP^X8
zdu<-h5Uc$B>D`OpC8UN7a<@tGyXx#ao0n9Ina<$EHLp475b?~<pMLAcsADiuD}p4D
zU-GA4x}Tx_|1W>~m$&}d{ORjh=g!ZaC2{<F@~6l5QTn^{r;~k@w*2Wm?}IA8FEDZi
z{PrWh|Kv{0%3xpztbuf^Bth0d#>MTsJmQ%mzWB$z2<ms9$DKV7zDo8XA^U)u&9|{8
zuRA5v1P)kz9cdZNdvHWOHjtF~?bFHi(__|;Qs8xXJrbvswZ0FpCs%n9(b4yOzOu#g
zB+D~z5fuxi^%A!lpxb%ydD2=Wuj7A&e!KPRNMyiYk$yWb`wq0Bq_X;L@;(2z_1kC9
zf1iGP+1?gn>>{`D?jO`|t7OB9{7XC2J3eWtUP1guTdaK6?r^KjtMl^;R5xF;$IYxV
zEp4op8FF|{3=_8VAouYF-od9*@VQ~Dk))Va)|o$K+03;*S?2nG`EZjuZ1T*^ucUrq
z0&K?$4uCtLHkvccFW#><XS6kH+03YAa^tc=2<q3kF>gRZ%Vw^1BlSDw5+A~6Yq^{M
z4w~LUDs_@xqkU+gzl<seYJXiItG(>QkNLjPLo@RDt<W}@ylS%IF8(x<*C5oOH3+r)
z@`|W|B3b_UF5v#Z@O`0I`!dGCq?xnkMzS()N%P(qBjO9ah+7C!8&Y1np-{w`mGpGF
zO*Eq23Jh|AevD7nZXNg)M#}1^Osq+hnG_Z|6Fas%3aEU#nL;kHWArXvcC0RhDcUG=
z`fvSg-qm-Bn}!VKUFRB_7?#>BHyt}|l=0H`>SdX<;4*ja;wU;0rViC1Pr%fKx4N`F
zFtn|PXidJy6MtdWzCg6D26zCKYC(+h&GnXdGVpaZ@OiNZ2W-kbGg5N7@e>bO<l`Z)
z`gq7q*4k}@X6TynSND_!EzB)az$Yy(A`<HcS(q6d(S5UA7od|UXDX`hlK%?*<ab++
zUQNY&!Q=287bZ~zI4T~xv$*hD`GrA7DBMWl@}q@l=3MWe8)*VWvED0zpC-M-{*5L9
z)M^W-j3il1VRQIrBe!Hw{*;kNLy=})p$&vO+aA8qmq}<Y(H_b)@k*JqH6Vql#_hgH
zb#}Tjf25}Ztw06s0zbzWsa25y){0G5N74ylkYt*;1S@_&;|H<0SuKPlMkb{aC*4mE
zA!gmKpX8Z!afJ)+|E50!4-@N5*@8-~oJI5NY^mAy*sp(4>Gosu)<CwjhN7u?G+BYR
zgs7RZ>W5qR7{3fsEtH^wZH0JxNU#nm@c=PPmC}JtCe9VtFgbnL$_4Oe_E}_w;_E)%
z-sslHgVwh5_oXMJ<0qKCe*Ln4erx`7)8g*!@JfrU*(!R~?B<16+v^oi+T1-n>Hb;)
zk_~U?S1gK*<oI9n;e!h2!*09L;#9bL(yR%ayCw6K$|v3jA-F{f_rT=fCo<$gW<gf;
z#NB!uw&1cz+zS2wUj2Q$Uw(hh|C|1HFYIp~`GK4EDeoGuz7LR)7V`6dx75;}%_d5M
z)9VjP4}4+-g7i9T1*wXYY+_i}%!Tu>^!#xSZb`+C*YoU<nL!?^+2UTfsjNn3_NcLH
z7TVgDXG(y3z+HGNWYG5kvZ%2ih4j$(LQy2!M0;T$sqMWN_Kbc$kZ=v}`nk2YB`om%
z)`SW!ID(z6w_o?KRW7;m->Y25BTHAgjSnTvaDw6r(?6uhM@r*<4IY^n`yI9O_Pu_7
z3(z$KT>(7t$+w7;3vecefDPagn4((zQ0i{HC^D%gIR*2zbn!dzAI;ZJDt<?M(YrB)
z?>c7JCR0+ru%p{G`;Oauzj8YbV`x5-i^elm3aQZEF&>)eYyKSX+>zpbKjNmQ$&`hZ
z-S5h|%+JL;-v&dz$U>8PmR{0h_<w4G{jLcsA}!{NoNYz4&6Pc`>1M8N?0tPEH&Gv*
z<W((xAlKSjMHGET1dpP*Xck4neYx9uL4j}J-<q-1+cJAw<j68jIKOC$@Gi^SMN<Tu
z$&>9d0(2IYzQ2#sN};Cor>2|=f(5BQO5aQ|*M1Y!`Zd4uM52gZokCbIdch{1|IG0F
zd79;ZU)5dU_vJHU&N)22uu#YB${c6?=HiHx;jBEQyBBW+)}!({%L82muNkb~@P_TK
z_Ko^+;T!c&wjP<@uau)Shd$X_4+EC-aY|UK&reW(=jV}+@O}sJ8ob&f7ZEq{DgG~T
zm4aQnm;t#6-j_Xoo23)+NAw4IXp3@4P2!09xa;5arhqpBlv$;sL5&KGgFP)++a55b
zoJMDTmwKy_O$MvD{C4>|iXmxU?X%soM}&K8s|^L2iYKr01*=rB+KjZxIs9JhzPi@u
zk0BtIxE0y-Xo*Hc=pgaRZFU2rE-R*3(fH@kI{bx~qqSbf&!3q4AI-RkuAen2&(CTz
zKdbE4U&;)`CpD=iAb>go(P3RWb2tZ2XceX7tA6n*pQ1A!;Xf+_pT?&gWL@$6?2-C~
zFN;Q#N0iwY`I?<vz9>0+#h%HICFRL}D@@M`S>RdH%lT-Z$p;eKM<cdKyB(PtTp*BC
z?b4bhW@5*zE*vt3hdO(Y;r%`Q7-~$Zg)smNY<P$!iDN7E1MtQs(iIO<I7;^U$n=*v
zMw~5_)yJ>A+!GvJ5Mu1nrcZj4HDvB-aLLeMjgW>M1Xc8?Grt*baL3FEYOHfs%L3H{
zuNtf^S4rppdpqIVR-EeK65s<!t<A84O8~`|!OocleCe`MgZRM(-1yv~v-Q)Aue(Bt
zkH^3jnxE7&Lb5Lw4KvHWRx-5-DMQ`+>TPO~JDH;TV&`I|7SVHqJBlaC)Us~B$KMiT
zo85l)5SYPZ_kB`-nb;bi24dN?MeJ^Dz>iA%0goiy+fCwR+nC%U6J&BHVnp1;@RHrL
z@Z5se*zDeVN&tkuCd<1UwtTVX+(WKqSP32!@%K~)UZ_9WEm>cZ70TFz)uIXBZ&xnn
zL{S|pqVNEt!Tc=X>{}(|kq^H4YJQ<PVFA%($`hx?Gb&YJ8_{v?OCmkApv!%PtCBNZ
zuIsM=`RhW7EP!|X3Ba1j`DX&93XKCeEZl3wm&CdaBo@^Y3+uc#=ZLujOM^QJ^rhkn
zcvOS&WyR51r_HSnFg+9V^da*>=jVgtV<2tfhnEU>tdILiNVp<>GxR*2MCEZ9g%-A7
z)?6?%@ce;HONPD>pY$;I@y-kR>-HZeh&07bi|1{b&zP1CBm1fvpn*99?TXOy-6ily
zUAkih{nVw?%XG<HsLTGDhJK^aCFfm$1{sxUM%mo0Qln-s>Cdrc%QlLaj85&`Z$!Ex
zw%e8^qcamqOZU+_{h<^eovQ1{iE<rcKw1?;)}=2j)g^PeF8gPW?zjKYx$*OEvYWm7
z)ulRAYSiqv`_t;0G`DVPddRIq5tc9Flay&YI(5jJrLg<*ej&N(fOaVx%@{Ie>us;$
zAzr6bL;2-OZj$C)hnk+hl+w=H`V59ZdOM2a{Azo5nNo$5>AR}9)MX~>t}b%`Lx1k9
zx@6{1hJC(XrOP(9riXosnDY&!{-3IE(CO18!({AEwa$Fa$T)GXs5-}8^f=TfdDUn9
z)Me+EvAQ=R$u-kTz(Lfhtb<MoxBansdwyX`t%0(c#>0Q1U{6=1YrxO*9EX(Zuu-s+
zIQ1&o^wQgs#_rus`S{EQS0*@K5At2>zQtX$EG*AuZmHcbh>+AR-(4%_FY~;+gBu+<
ztr*O`Gu8lwVN;EOEmx`mU>^h6ZO42c*kXuu#f!Td*qZ~km_cK!g{7|CFkUh$_4p`#
z^Z-unen;8}oz>>X07B0qt*wm`Fj|Y(j-F<KsmcO_7}{rUWbFV(TCeAK-v^9XKV31>
z1H-2rI>hz{%&63YQJOppihco#X7@C{CEFgz5xa?k`j<>y5vJ^6$8-_tqg31P;SNiw
z?cR+9F9vhs9o~@27bzuQuf$!pxtD49HEW3^Wp>s{#184Z1$j=2HLyG>-hb$mXZ>b>
zw#3(^(m4qpxZMWvlKoN}tuZPyp}I6ZaL-*J%ImG$?w1;|Mrp*>O7AnCCIT{311=h%
zdw^U`@%D&8O`=GnbWDS|xSrumyUH_)DB@`&ZV9wG@V7rqn_Gt%qmXHsrA<Aw2{y7x
zIBDqKEEw2Ew~c^#?MK7@hb!PEod6k42@36l)+5mRTHwW3Ljui7Ptt2W!<2Rv>q`*a
zPR7Nic>|TIgp#C6)T=D|TTOJZJnz1^94Pzxe$VSdaG!m)(Py*l(Kwx6eK3lw0Wg}0
z?th^N;{ioeS#xkqi{L4{BUkuDcGCJ<b`H=_U1CIRUu0da>^J^*SUPG0YY4B@=OB$n
z+)VFnp>;EJjCe0=M_wT`z~IO=q<=<iURdFXr!O_X;hVpJ@6tSzoWpm{9$x+Z_E3_i
z0AA-8W(Uh|{+aCH?D(WNbdP=)x5hh_nCtc!(#t~I6hiWIq}jtjqFQ-DGi*eEk?bVX
zf0vxprO!6G%ADgbhhh|7i=TI+JnGDm7>2*7RC4xv*u#NKDx|zNsveOp`+UbOOZLl5
zSOa^A1v*ydGgVg&(f;o3;o06Eo+I5?m$^Wftg*d^8*gm??(N|c?BPcJ%)F)tUQWx}
z{@F>X(Ww#rWDlo&HNdp7`{n65d$`(Q087zjNcG3~rOSRpZERyXw$XNxZ9pp#%DhQ5
z0xIqh>}1wP$^v2|Wn{88a&%-P`7B*zBfs21T?~6G*vPj$3t{o3Jc1USC8QPWk(0^P
z?9)b8y%gC<bcp6V`8IN`Bfn3FcpG^<AYmgDSsRIe9p&CWVdnCMZaZ3?Glts%&Amrj
zql^vu-=BElUgSy0S5CV5cC(=S6)d8AP$`h7nQhehu9?_nmwA;ZMc2z59r2s*1J~Qe
znbig^-}v*kG4&eE)$vm?m$ymcS!AxZ`=zXT+*uI66gDMnW$-QQ&X|#ui=T<Do`p*8
zl2$f^NffctLFXOueNcHLxtWJ*lSmN*RqB~hsac|L0H<3f3~Sx&uAc=sZ^%xH>iQ=$
zGRv;vES4hj%TE3Phj=@=nYWX}Z!EHtHp_=OOEl}@QsNp1dc&CzvQXa9rsN{Sxq`A7
zP80BSI?r&{A>n2?<qQVH8ASc_b-kzu!@0)x63W(X`BV);9(X-B;%VU{7DY~B`=g%W
z`!t+mE{V7(qF0{b{MoO6m|mxBXIxZZICB(hDmI*-lF;Z4r>O9Qu<v{kT)$_Y;S2^e
zr_UAt9*Zrjmi?@f{jBoe53P;9ABucHntpympLXw(>$p(tl(2j}e%N_p&@IXIe!>$n
zORV^FuB5wnI?!HN9A6rLVqfz)S?6OlCK@c)uvrj#-0zVDwt|4Jic}?4VJ>_6b%*{m
z3!k0V<z{p{07LhLJX<Cd<i?-r9ArAh&RbYr%}x9;DIJ=+ZBVVQ8Gj8baiKxj>A&HT
zo;pjnvK{}UJsat%GjyN1)Gm5_dnxz0o(uFmJ@rnz+-aoK>+8vjlk_d&x&DPt96y;V
zE&fDHRnzP(w~NAUc>6%Ol|T@>-5^P3ZF6#!wmWI|p&n^2nfjOyFRUKV{KLlN;|NbJ
zQ3v2Jnci^K3&J0UMEJw#3hNwXtpeDVdeutbrSf&@iHq!#5&(6X^X)Fk-VR>&QYttq
zGi({Q^|GzEEWxa{{sddQtoum0end}pBLC8F(bp8EF48uc*qWcNX&{AMXcS+bAU!>{
zPeC&1QWpxIbj4u$!+J>Z39^u!>s6m0NcULtKm7sq?q=m~G6f4^sA%C3OX3GTRVpT#
z?pk4uT`Dw76{9!Ivyv|b2HoFHnPw}=G*GGBE|<z-=&RD1q0&@qw9_BHOV5{v`$nrC
z7;xfT@gp<E;1YIOt<26WIf>%wnMR0oyC=(3y9-*nF5T5mlXdA!yL1^kFFxfi)}HN0
zxp;5r$MGox_#vz}Maz|=1}|XC>*{r>Iir>@8b$Q6PN!Y1%=ar5-_4XA`mt!Xww>9K
z5MHV@nX7gihfQk$7g#7YaR~s3)97WQ5iHg=7=p3D8v~-qfb&xDbN)Nbco1BvEScxy
z=iX#aVA!FX6wyqS=-WN_A6c`k3P24RVRF#ARqOk%jmZ<<z#w!h=t%#9(23kyTo&nc
zO@wPTR|%Boic@RJ$^w9U!lA~|nbCK9upe4NgIFnzP=(Zp&?>L24ydg$uAVWb`E%Y8
z0?#%bms&M6lJ&VdiCv{)GC!8!<46~R99eUIF(z~4O&f<?dLCD~55D3<Y_avL@bVDt
zYK^)^GEpm(50hgYaeB&YE&1AKTfb9{*Rz~2#N@DP?udYLGc6Z7%lR52QTl)VLtbE*
z<G7Z~-vo+tw-OYA6*3R_(IG_wWi@O4eE-a1I->4PLPXlaIpV8kzS=cPJ!22o$Kf+w
z51|QImaAl@;`0AUS2ERe{mxZ%QH(}dOoQ}oMY>F}h@me`_<J%v(O8Js<}U&VG}!2i
zq%IRHpB4OCP4(%m#9j3ljcVqW1*599+BPbV&q$qb_kt84RSoCv+YbdKt+*pHOIGzv
zRm^5HQb;+<n_rbmCbgXrFhsj*U^u#TP5(%WY{@(_OV;#MW3sF+sx(B~#M2a*Ezv;6
zk2!T-m3)smU1U8&ipIXMf(O39AY9;%z7Ll>@KX1ExUvD83k`C1!LS7gNw8ZaL2~jC
zO_n^UKgo>$=v4P6rV$?wp^M<nuR+t@%d{8|Wr<ou`<?6bp&hL*WnwRU=*>pR1OnX_
z;gV`hxQh>x*&vjzJt=U1#H-YoJittmWk!+K!Jsn%sV>Yg>kyU(#?t)^?h^_rq18?t
zpAaN>m;KF$wDloSPR5Jc_APc7kz$#~n(i`DN?*D{cbayHrTr|)B<eW(0$9}2kEGuY
zg_Z8Kp4v4Mzjv=_;SGu!pJO5Vq--Wu`;K>M-6i2fNmk}YmR8Up`Tv_sXSeDbn}c4F
zXRia2wqK2zeYV|)zpLF(UtX)k?W7dXC*f$1iXXDBhkRbZ(Z<7Bj`m8lw@Kclu#z!q
zx_y=~l7+JG(YyX{`S?c)##=-)!ClVt7v(SS(U<?4rgg;W`EUFo45(-$uyijX5BH5j
zS$AmH$knvob9>aZU32~@?Z+n%k+~~6ufW!Uf~sb(;@?r>@%yGqtT=dk(r|9)wd)R@
z=S#^rj#wT+<6+2x<jtflFep@<zPnapt_c1s{74UZeN&WM=AoNtP!Ip6x2d#lDQl`8
z39GUVZTqKY_aI?RP)B9Xpm(!2)+i;Id5+>Z2rqwhC+V!0XUAM&`I$#bY!jw1SV&8z
zJ8G;SEM7+UrYbiL+53pB0+!4PaCJ4;Ajn4gDb4Ai$tV1-4c*$?@Yyn3*GT$xjig`K
zFe?#Ei0o%-qe1RJ`t*dsD3f%pjgqMZ=^x8ypT%8#QU`x$cbCTRdt4A40@q)5ve!JW
znUf^bv0D<d1``IAA|8X)7G#%j9NgavN4pwD|4r2uUhvD&R?uxsLS~Qo;n?(`iESj@
z6qTQE$B_8%(B>7bRlTC3{^Wzl$a&P_<UWKxq`};#A^RGR41Pha`O4h`R3a1GYe^9Q
zOT#&nCjJ8fJ01JyCMNz{Q|!_HvSk`!^|$NrD>5LxMwp3Br>NTvI0zeMVs9@F?bqbD
zzpk}^Y_9$59*We<!f$?{{nIJxUi+Kccf%(mxp!bp3dE~We&dsy<^S~lo-NCFjUw-f
zfVo=)=K04)E9GdxN(1wejSUUEQ0$X`8<<%Z#z$zPjI4d7!EH;{tc-}}wa7nTo6f`@
zrk1M`#Phg2@cyt)wxxB2e}Hej;a7|rKCfpde<R=jqf5?|YSQHF&n6^$H%UHl?DlIG
zH?s(eR`4JAAr~~g%yV>5Lkx<2XL13NnnU%AisY4~PhsY~8-Z#z4}21zvYlEU{KBZz
zqU7?|le53#oZA<Y{l1c!YDf-#SymOx%MjHg-I`9yjjQ6=ev0uv5uY?sC}4F6yIrHQ
ziPpo!Wc4IKHM8G{_}d<bS=r_BNwci1&FB%u^~eB`R8)HX38X-&-1pR&at=ADOvh>m
z3Kf5np#7B3nK1xUuXJKxlSs1m^z`kZ_I&`587%2;)x0kg8!#kfBtK$jK?=|FOG?^B
ztg<IdfIOhPIX&==jSSswM2k4WXz#Y}8xamSo@VXyKW?0UP0+LFUy;SIOenraxnK>3
zZ3K)xFxmeucaPSve}64^QwMcU#X*8KbNU`d7tYIGGX^Bzab7m=#Z5v}CaI5@gj4<o
zzsAY}cw!AzbENT_*-=nq9>wX!nP2Ha>M=Psvv{^YN8V4lN|P;Ye>)FM7ax#WpP3$B
z@hCCCLl_?Wp~ggRC><Ta+MiE3qnYW!d<+d!EigW8x`+T}qae1XZ^kBjL9p|FA#sUM
z8bRZ#-bLTZl)ms~+B$sWOXn@GREg9J$-%5E-eW)~2NTd(o?QM`a`v}y<1#(B?)&j`
zhf%48$-$r4=ocf>bweMEPr1W-Ik`634}LwlcGO^s;9q~6T)sFtdlhYbne4Za&0~p9
z5*>%yDTjlf<)A}8{j165s`$CnXlm5Z74b}~+Dy&od%*E2^#+>do%pOCjU5x!GN@KY
ztogu<&~eP5ru~P$7@zVqf@D87pqeeW)dgpMbY^Y1Wo@6b=<#<J8%R95a`>y#gGR7a
z&Hn!lJ^qfAbms7vP>}{PEi)RBXR95;9Fx4{VA5&c$_nu!J#0(%Thy}-rc%g=dJ^N<
zYF7HNYFu?Y<Pn_IjM6Uk0~o(V7)kfkr~^}jpA5~8+Vs`YnT`7C^B(7Vl17{%>zvxi
z4^j2Y-4$&95V%Q6HQ>UDAJ}N7hw0hj&<l{cqz|w0KWmbMXa6WR*ing8lk_E-<ovyB
zV6GCsU6Z7pCX4ulC0}gR0$vu(PYTcD*4GQY74=-|I&Vg1rz7WbSsKwH!=Lk$LCrs)
zx6L=0i24=vE%(v(cT}F{4o1PYETWlJ_?E8-a~v^_g7BJ~G}M8X#=11@)BR60#HiHQ
z@ZJ8YCEe||Ht<;Y7#Zi(x81|J7nJP`B;p14)=fYuqvxl{nb?&Jqoo)ek}%0=iB=KX
zM`%{mBA1k@ks2}80!R2pgFG^XCc#!8=?{&px%(}qV-h>YBSq7Fl}*neR5UIhUgH2T
zwJcHX9s^|Vmgmj0zSdu^@Ry7H<y?Q6;xFy~a{8Yc)Qcf>ozs`*9}ko;c6`{Tm^G^=
z`a@?Pd}Z3!ThyrYHt}z|p*E?NxF-OG8`jizMgUu6i`pt}O?BwEryZUg`fYs5qsH$O
z#Jy5pVn}guw1Dhh#$tOx&3aqXVB8r08-H_isr4kFI_9>~hOO1vin}B;Q?}|EQ75Q?
zK%EKlL^Wsq*WTGsr)}p_Wf0#e39c2{>bvW`Ijj6za2q~4B3e!~m6RpqL4@-;iDGrE
zBzn8!u^nwFuKXMA7SE!q9CVd}82XO}Dwsfx<p(f{ILRuQwxgX)+3uEzsi_3sPWd{F
z)*bO}L7S*VhNpN50re7h?nORL)Y_y!%M=VDBB8q6ZDjRxUA#P9ZdKHUwyC?7g<vND
z8%j4+Tf+3vm*Z2uG_*%;4E|IpdXX3NY3{WCPfR08XIHw5*kGTB3bjdlB$P>?UTf{i
z^D!>4sS~iOdZqid)l_G8h7W^k0ExBA)IIIEBmq>s?~uB==>i#?h+|NnQCJ71TEr@r
zZ_aUQYA6awN8Cm9qp-9a`>csny}yj|m%aUE_dg*$^Rj+$f&7gB4YC7?#-Rd`otk<5
z2bFl`3@sRi@w7(DF9we<=7t5_f}yYprdlr=MWZHRq*?xL4Gdp9$31!m-dCo;0nhcH
z=^W&w%WS>H>^&)UG6gA?-E_@F*VrqM2Q3x_-lR<Lw6f@3H}jW~qyR}$fF%S@t@z8B
zxhZIR31^&$?u>AiQc7lmo+><9zT<jH_#b$E#h_U#2CZgrbx%(5CslV2x`JD+km2eG
z6gs0vi%hl*O7`%*yP%vi+C-(Dj;rR&6qD-3ejZ-h0OVcF3)Zz(otSO#7^RuWL({Sw
z4?*rhrNVN(NwUdlX5itcNk$Yv0zZn3l(=K>^#?(q{$|B9o`Hpt%t1Jfq>b{i?XyOT
z;jKF|_)MXocuJXa3?q&2opo_FzR)p4E%ch&xwLy5DI2Y@1BPoQI}-o8`{!N*?Xn;c
z2&c>sz*hbtj@KXnnsDo8$pnR}1qNIvcmS-s&Fpg>1CvXjV>9CS5#{5m!;5`5+KyW>
zPLvOmDQo}v8jKtLk_l(17(NUU;HuJfg<aVR?OZ@b5FgP2*1`jwbetxtDKiqv)yr&o
z$PZb)G+ps-`IeA=*y^k!S&#t~tiL+TR&ttzzwV92x`vA1UjviBgGcc3&jgMX<Fw$}
zN>k8yn^!daLWra@miPC1I^lsK=_9ijc#yX=bm3V!Sn}wymgurpdPp6BL6;39x?sU(
z8(c3a^f6UVK}4hHW*Cin-Xt60qIn_^HmnZ<nUJt-;F^a?j)KDifiz`X1%rz|+WVtl
zAR^c+x9JS=nAi?HRCXV2jtSBtw4$RH*p+y%u1X%zmHbLBoR{*1X{@XK<&yE}sDI%<
z<j;o`U)vk~1ix<sPPZA9E;}&J;2&?*8R~Dmq^Lve&5fk7c;7L%l=<`?PwPGtdxW>{
zxvL?}zuay#-g8r=gmU`F{0EbaKJvFjMn;AFp$Of8u;&sUvL$d~%mxlHP-}P<+(AT`
z3Z*wAeeErqu@iRhDuGruTo+oYmrBA&jDz(%$SJ#d6eU|;3Go72iC(B2h0UTw&s=LO
z7%Du^HZx+-3a>m{<pfRq(6jGtgW73W%G0ihxVa=YplM-UQGA)H7<j7GhNjh7weiP^
zxsT{fS}B5MVvXZf417rWG8rs!Q(uc>iJ$`o%R68$b>%liY5qW8BV3j5@O%$h{uZGh
z4WH;ZgABPxU<%XvSUmHAU<HQifE|SGWG1l$8Xx10Ef0`oddewld1oC%W1j_)htw$5
z(j*<`2N<TEW*Pwp1!0~R-h}{1#oAU*eOsf%y?lKhq_v)^)PauCSY9;uTDDIUR&5y*
z(6zGOGt?9}l=dETur6jzVDxsqpEy_KK-Di!rf@*Mwd2^p=7*;ZFl@TvW1?shBk(|L
zul~5THN|T^S!TtLi`^q-yKE_5itVZkdveod`%sMSy5xkl?!vy4$^gO)b<G)uANfF;
zLBzCurXKf#jCI^s+-)RO>Xg(+B1F2s@T4al-5N%KB|>Yddr;F0h7UPKebCdXL?3Z1
z;v(K<e?v6N-yGcMC?~IFqiii0Wu5A4a80}ogWFv_Aq~YNe0S-O8Q}_LfO&OT?;azE
zQzN}E8k)OPS)F`7AmX5iv=Kdikh<=zlM%}kvd&dOJV*L#OY~Pl{#B*?EB-|3D(}9&
z7$oYEEd*RlJ3Vuyql)y?8^UbSc@cYqc|NKIs*y4K-ldt9a#4UTVx#^e+(eAL^_Sk|
zHr-XtiHo=V945l9?XMQVxTVNibdG3Y8J|BD%CTEA-k1R9OxjbyGs>DoX+{L-^?<Gu
zCyDJX!2Ve~zQxeB<&<d884F`A1NcZ7<=`vpkDe_R$9;Vg7}UX!K|vRcfBc_&jUB-D
zL*>}m4`#^fOS6?sY{w5ZZ1E*;E8R|Pa#d$lVT5uy3_LSy=xev>YJRM>D$y85STHzu
zq@dIHlmm1{^cjB$@X^6IWkBhVwXH+Q)Ec0!ZJIGqhDYGPJ%44x-juref7Y%-HPE5M
zgr?GK&&9sW96sQk1zz7<66nMaO{#I0P0G>tUjIZJ&_jw*mzVufaA9;ZU8%-fCDEH@
zdLb-O<Dw-q6F8tuxkA}<7%nCO*!#iK-6=c>Y14Kpa`npe^p{v?2RdFu4fqC(U=D(1
zD|e^AQuH2J^4}kp|K9!jb-!wl70@XF9V_~^{*QE*jc(#x4afFM%;E>woS_T-x}U!B
z?y8=biLUPVM`-p>oDoAHjB)x0Fa}_i%IlkSnbiaK_@r~}r{CGzu`<?rdV0-?D^EM+
zgqGG5<M-{?zkTJg{@8XR*4li+bgbjc)mlf!@Bhhh6IV{y!M`L;TY-jJdD<<T^FyZf
zxUMw_e?QiW?(WAB67lKUB~>|x?Uu{=|0(}JB2{Y^*Y~+z&i_mJ{kle1(*4^!hRf04
z{1w8~(g%4w$9Z!1ua-Mc&a+VK0C(yfd06vem+`Wn8&b(e?}clz$NNvK*!(?tWA=j2
z{wtqEzT!AGgzx$g&n~!ww{I@xSLrm4^2o%VU0W^|Bo)Osqht5%N-={(%v66WcGV_2
z3vOo2v^iT^$}Zx8t6?E}UMxY!1Xd%i#yM-_B}%~6TnvA|>aH0Fp*G4Js|cp%5gf{K
zjaaCA@{)Ih2=@Jcm)E2B1^D_g=M$|pHrml^oZB%QnUvVly*ugf=pDBx+pNBR??gt>
z*M5LYd(lS#Q?-x%<N4dVE7{f!R*Ah>=-{#M+SV;D)&$4(KRVh+rxTrCOs0kfMTloq
z?shq+*LLlmi(EBOfA9Hg<A=jri9CB{f$-N`chVr>ImGPixAJ^HU<oFqJ`XvM{~qMr
zC|y#;;XbXHh|PN*@!G6dfBveFmwlGk>;4NF)tzv9?pX6NABP~<2MIrUikL9pwGIk&
zq#(G+w3#5dOAy@VAt>OF_~Z*cy=pXOTvPpFsI{J6p8KV%^e`!&pwkc(fl?tT!uM6?
zc$dhd=(2zNJ8A_RN?EoxY05^4!e9x+Y*SFZU4Xz~VZ+I!6Cjnsdj;^0-v@kw^lfZD
zgyc{Ac8ii>{l@<!ndVUkQy>KYj7PoTpTxU<?qOzCoaVr9WHA(SThV&Y^@fmw_T!U3
z_xNZOJ{p9N1{X!s7|z-{_@nh$bi)>pq2N;R!-Qny;LRUdT2JkC?B;%^4nSvY+p}zK
zILL7mPu5=Itu%v<V%O@agOA+v_M1O5Z`<GkpnJ;mPiDwhrCK)6+M^3D3HAuG7&7T5
z@TTc0rb6D&*AKV!vdGVe6ba$JNi5qO0BRG)edq3{O<;U!WHuspE%e96w-oZLd*(io
z+FLyg*5fTYL43do#S^BnPv;2@-iz5vb78XD(N2x8O$s{fXwWu+o!gEFv{SvJETY#f
zOlN=zY%0nOz4#Mbux`u~XYsxfaR_oYrDO3DQ6@ggmUA*gmJBFB?XIY0e;{*ge6vpF
zCdE5lcB=ghhlBe-Z-nDY`+>If{tgUoVHR6bR&WP?$9p8=ezRth(Vk)k2Mb$hNU@O7
zVb5f!4NvK%9J<3E6Z0T*?*0pWG|N!epl+aLog^|_y5fLidd+6*{~QIu3@~LscRptP
zL7Y?9Ol+fLd>?*byXj#h)(k!fJ^L-P8{dGZQ2;<Bo9a~j;!#Ng?&K-^M98LIy+3s6
zD&!7{8KI^cNs=(W^8t6oA-m`=ibn#>vNt3f(b`!wZ4*sx`9N*Bug^s|W=7{PXcfb+
z{DM9mQXZCW2*3DfK*$@60?f$V42`j`iEGr)_rXYf()=*m^L}Mi3Fr@wd#>{dc$wJQ
zu$w1e&4F*N>b`*qwY%dOIC&_)`j9WgIK(s7gRj0Lp5eYOoPFYOGjh46FdG~vn<I`p
zU2*}f5Dbf^82?V-c!+Iw_R|9JCN82rQ&=L57VPlEwOW$tpy^B9@|}v8E#&R_J<jR?
zmNd=cE7huFG4O*&izQ_=@SuEL_8)&LU`aAHCJzjtHhY#%qi0!$Nug^sv2lM2eH*~=
zqz0_qk6VmaB?KKS`~CTF4X2stFvU1z1B^6gR~NWx(2e;fQTzf9xyd+zKswhzbWhZx
z5C$#NSO`aOLt{}qAcWG#&Jq`^Jze{3gfwe$yZ&jPgJ97={hndJvM@woSu=n+OU0M~
zwCfs$RsP%NqJ`i8L(PSiQSdNJQ2oD!F07a$Red$*O7FE`>B&bUJWu5Z8<3&`dtmWW
zl;k*A4qH$TS0+*z>0LK_&klbnWg`C5nJD8DW+PQHe&wi^$~h1<(XnzXW+^@Ixi#tL
zJL09|$yF=xKi2x9xBv0wecu0A`nmj%jn-qPvFp9a{=pYB-PrbUrW*_HV3M)<Uzu(!
z9n9Me$UB}Fdz9jNE=p%3P@G*fzWC%<h3<kqO3r`5L851ln&O#6#SZRd`~M~@w?N6a
zCAi;?^#b>hlzozEZrSx~OF78|BcHXw9Y_ize#4TYMw}~01$PcfnhISIzaXw4p-kkY
z^UVeRJ6H;FY)FmUqn(|{?CHJKQZwA40~C}(G;~Q<&_=)NbDg^Lj)KB#7R-op^hH00
z{Gex~F}@=|2*Hp5>0gj(iMP9+l~doj#}ZLd)B>17SMIOoJT3_LxYypvb5`;+<YzMC
z0Nj8fucS>zJK&LEJ>5RAs5IgODwK)c@Z|u?!g;^>Wk7>!HiGzV%Kc6eH$3|$Q+C>G
zGJI@z{o`^YSg91;VQR{&8zxUQM!QR|RJ+oyps!KC%H83Icpnc?MIR-<EfaXW1j`Cw
zL9!<Og4nE2YWMXh8pJLHvgCcTHa70|{!~?GrqSujonGO`fLb-L#m-KQR?W>uL>ZUr
z5d|wn2e5yzZx7Ry=FgkjGczrbK>+RMs`}Ff@BXPjU9d{MR7)>Lbj-N~J}<q?-T$zn
zhs7ByhLK(|%PyDdtF(`bHn`hJlZ3mwFURxka!2-6v;dUCvjw``Ha}P+av8h|?s8u~
z)Ejtr(GhTd`8P%Lo%m!Y92I;oOO%J2umn=A{L{lv!&ima&BAk=_f0)@?043~r|5aN
z2I4||<A8EEAyK?`jC{&vFhdK!)Jjn3kU21iFzbYLWoO9AsnSfG>BqntYnITMZ&n%z
zcq(0DlxG~AL0g>A#FAfa8iFxOyGEA<&~^P9Bz#pk1u2mK;2(|h@;_CzQ^7E1!ZjU&
z*b>J6l-ps}4v+8feB|)Sa?h}8w%b42RdOl=`%`&cn*2Z0Pq_i2C;Xr!X?KE9#dE7W
zX?z;u>Gy{=^l%8UQaUq!iKjN18O{<<IQL}eqIl+0>(YjAs3qf%j?jkeT+^awX5i;v
z#Tbj$Cx;xoO7yh#<18lUz3QVKRcx`iFrY7>6rl#CL6Xrhv0HA=NiaT@B>4VyJt1(8
zOof}IC|@BH+sD448H98r!HM8Es#?x#6JsS9Zi!o`yg*2^zIyJYjdnE=c_}RNn=VKl
z1%jiDNUd;8{)Bk}pV`$=8k9Vp9-FWbPG0QTbWJoF_^uA9?z+#$RQ@AR+xPNEU<xS{
z!7#(FK7*wDT?Ec;co<xF5x>kQ7epkt*H+>olyfR>j{mftu`jX+po)XxU+{5Z3u!a!
zo4Oa;@gQE|wnk$xY@3)FjSwW&v-OS}8UXn^b(m`(ya)as0<OQq{|}>-`{-tCnvjNc
z5EcA-!yljYoJI)!5Ko4XHCAPZ-!EfDQFrMb-dLTll2ORJF#Y2eQgnUTJND%ZK4MWV
z)L5f6IwPxJF65nw9ePRDE=7w;5}32b7MP|Yx0&;=aFvRQ)#YC8<7v+2_FJF2+}(YY
zatDlsmO4ApXjzC~iyv1AwFUl@Mny6>t9U|Oyz^lp1&r34CB4J$f);EbYs7y@dWSER
z-@=ZKWahN6nrl_e+@cF8`SO`#m9NW58+Gaaq}1v(jiHO<9r_M+U3z^bmaJ1cYUs!M
zCLImcrScCavh{8|t`LF07<4xQQ{<cJmQM3;i{9qlMnh@QdP4U=e5<1B?v|U)yZ-5+
zpzfJ`)EN$Q{3-rF8QftX<TuN|c7HVVATh}_jE_VQgFy{3@pW0vExT%|$@zxK`E0Fa
zU(U!%W=I9DH%IyoK8s-O*jYVqi#v_MU^R8ofotym^ef;RpY;g~;E7MZO#l?^UvSz^
zC!!*d5=Myy6k+(!>kKR&VYN!#bsyw;c?`+?7@NtC!%B5%cLL84Tm#7#=oP|D$skCj
zzVnZq<GZ$yT%}$TJy)vhYTur57Nr|B9N(zB?GT2uYj!w!@^Ae4z8_Dma9krC*EmZN
z@Z*t6WI$jWOCcZeauvsffHh39J86oSH%ghFM>ha}DeAj?6<Bd6_4q-98cqILuo)=b
zo}?9;$wxsAD5zzf$;KiT6GXq%?OvGt061WUHq;Y_KAfTx>gO7_mjM<2rMqSfs3<=1
zzKFi|UCN0cwi|%sl+<8<Vs|Xai!sV<xld<CV*{ER4X|7wfk}~EB%3%XilWIm(4iWR
zWJ?r~@k$YHTh8)+vMJm!JjN&-Wnw3PlGpoYf(_+uZ~HQuua@Q;&7i@(^AfGJM|Mer
zn>e?f7KsK=fN_Zb&XfAh#(!r_42l_oHwfL0>YHB>32YbTc`WTHjQ<8l9Yrj=96*sV
z5r^iw1|#4t=hY(yAz0@l9ldI}mkxrKwP=qb`i1>_v=;F*QTylLvsp9yaP&}&M%aGN
zjegpE4=?+<doRK=FFBGK^VZM1Rqkb$s@=M9xBHM#s5_oLJ#KII9w*Zb8=~NamVL4`
z2BHG7S%W;XAwM9h<5b;QZ~67C#5^_!W@59f1}(rWh^(wA)sD@t#$gsEE?HPD)mOFk
zf7h$px`ova?yK6s6Z5NCdhcs*76AE+Y_*_Q0J7|_(^O3?3(YIn6Oh;DRZGXV=vLr0
zKI!V93>jYR<IgrPacf_e!&((BP58JFYt{An0BHu{Mp?@;cJoJ;Dny))&2zr_?bUoH
zR<*xe3vGeh)|&GuMJaidK67Y(n?{Mx-w+s~&4jgiN@(*5?r3SrTdJfsUtJ~;)n=rG
zfct+A$;Uv9I_{eMHg~c%H?}rge@%sLhYCg(q)nlhefX&&{AJsIrAur(T~cKyeYrVN
zlkWG;XjOu;<9IMHw&^<-nu(Z|mD~e(?oMvQiF+FWpRXZI@;mN$Gu_$+P<OCiU%~62
zF%ma|yYB7L`#e}Vn({m8!4pUfmBxlj)o!4kj^(NAIDlV2xPR{n5ukAWBOP0&H0F*K
ztHnE~^Ezm-Muz#U<u{it)CKb~d6H^NHv-hDSNds#J115=-EUNxCd$+qO`wD{O~UB(
zJ(GpESI^gb=3-4$9n8)tQm(bp`Zi`GXM19+!KTow<8kS|tT@LWs}sSoWXAF~wMFq+
zRTvY5GZqUcRO^Skr-aUNe(h$t*}ZJ69{yb&45Z8E>q7W=d>a#LjHb@?F}q<FA%r-L
z^CHD5T%}`1uT0sj1p?6)W5k*1*htZl?=OVs2py)#4HaOfQsKR%Sv=;Xv${VJnYWo?
z-q#lXa&8?&-+<@e<-hJJpTFb7Ch5~g8AHe#VCz`XKb|q?r(?zHk>pPs)K2g5``0~g
z;+MxC>pxo&zwe;c+P`dxcdia{;FJEX>!jD6_~p10PUV@UhcG5Xtakm&U#o@oV=njn
zA#-CdOI_pY#hg;B5hp4AyZmY8#zFwq>}_8b^8S9FQ>ue>`k1_o&P-LsOf+I9I2ai$
zHb<(UO?^R)FyS}W;Kn9;+*G>r*H&GH8NJLG&n17LRX=kT!_lf)JhhtN9}VaFt8yo6
zry%{A^8xL@a}=Pwd#WU#ADWZ4Ge|p;E#6t~NfKj0#zyX6iaf`ja`dV3NecEtzy9rC
z9^3LK>QnFlT2g^iTTVJ9K1nt>6o^mSNuBhKv%W{?{$suVAI6zGzSLs|88K=39?ZnL
z|3^wP!ipv=(M_H<sF*T3-=tVp?!Q>n_vD^5>ny&S;>DtSsV$g=n`=Ob8$1djyDqFF
z9Ft71y#=R*poT{bn&I=yuJrMxCBjAOHan;znTf7=Wk^MyN7m93JTiJ*VO7k{?Hp7h
zTEa8PY3%bEK2qEyRn^Sd1PDZ|@r;ntv1^qVq*4=~o*g6Lvm?jLMnxSVA5&pAO#!ls
z%DuV(zZU2lk|`q2zc_GdwARsjzZ#k)n82qOrHZuFt3J#yS>P4FX9@o|<VYUp3$-M~
z#icfmPJcvCI^bdA+$FSYlcZX~Qj?=jx?+1(2g-8yn>|9B4k5G7m>SB&e)8@B-U4dv
zR(Zq5uP%$P)V^dkT5XwqlPUZ1VQE<=lLsx?g6eIhn)qCAgF>CMo&hc}NtxIVb62OJ
z>4c!7%H1A&6ht5xUg8Ib1Wueaul0Y^gmPoR;4(c0Jipv;FUx<hH6LhBy5Y^R34!JV
zjiaRuX}iYa&T2CN9{cPQp$@I%HXD|QI_-KS+L)T%eVADIxP4*ay%e*`<KNCf3ncHh
zpXguGMWjd?>2C8|ZD8R$jRFtb=}U!Nd<Pl0KKX%jXad1yNyQ<H!hMa^jt#y_yxi#z
zg(Eng<Z<BWb59E#ee4!_q;2RKqGlScxoP2yuj%0&DVxUhX6pX)#MGVPoG6%OcwLUK
z@50v3`4~h&luNBuHo)jgN`2?eGLdv=526D29OCP9Rf&`L6M}!4YQWzstc8FaGAy};
zuY(DM!C)@#;DCy;s&0HeX}3J$R9TM_K!uThVs|=`RJ#eeG_x1(x%iZ%o<~U_gE{qj
zS#~q`Gs%AB$SX)Om_5nasBiV~C^iqP0CM0GH*<V6k>xq&iA7x-!ogJ@P_d6N;CG;K
z?9KDZbWrJlqjexu3AR@0Soq+zmH@CLO3%!_cYCyuEgPZh46Z_yw;7Q!yeB-rBE(iT
z{`s|NdJVI-QrCI4jY#angO=!7VSsTIIlex?ST^(l33xc&54uSB=6UtWERB6)Ry(AK
z<z~WDPsz4${}O2w(36QQ3-oe#t?&~maADC9X$I4pu$4gsW!)Ql7b%GNB-3{w%#*WQ
zz5D!EPfoOgHbtHylxNAw9;9cI%U?~-Udg_C&WPhUJ+Ta%&^<X@@JEi`%ab!9cp#Oz
z&P3sZlhuq0TY7%Z$!au};Jyl<W6g~M52#M&fKdnrMxo!%ert>wbCSdZnjG@j+~S0O
zxNTRyA010&?2kIXQxzk&=hTyZ)+%{G^C|m0sp#V61mmWH#T7_U@b4e)^ZiV<gl6v<
zu~td<ZYV5qVp0gG?{1T2PDLv$>DbEuM5=GAUGt=?nquZJ@5&E1?jrM-kM)-$_d*Y@
z3|pg%;+3G`Ca(-n@%DU?K*63bG?1d}1X~8pv**{5mK$lpWmZMj1PtelJNbW?d3)X{
z95)5+*L6zJe#eItP56z`_H3^~LomxwnLempjpmHG_{1a@PN{Tj&-TW=UUYQ_jLa#$
z2L*#S;(^Q46_0!<eTFd~YqTkPAB_2BzL2+kB`S!Jc_t4?m^fFs`3__LTU9ru*EJ-M
zEcRs_Bc_zzgEl715-*SvL*RcUCA)`Rl97}I?d#^8?3G@S1C-tp>+|4*$%&V2Fl441
z+<B#kzBAPsd1KT19(X3U-`;`kd!~t6wW?R+=jW-Mbw0EwV$sf>^Kfx?);i0rcMC2s
z9-aM5m~)(rbl$(5y|#F-jiFb3lVMD?!PQpF#C7R6P-M4NNS&d_Nnd!L2yRg-Q(-8N
zC}Nc?eWCV!(tKrh_sTw6>lVO{7Dow(u}Y9c`<kMXVl5l9I0g_Av%2eoW0gbjP1a7t
znt9<wH**gVu{wSactFYh=PN&x_c@1ERLg#SGJicx>kYqSu8VYR0|46$B64{3^S$$J
z&bd(7o)<ftcm3RL^?cTCq$5c9*Zl|={^uV=52rp$zRiV8`AGa7WJJ!3HBd4y)n)_0
z>zNX0R6w8cr_ewArFA>z+KkmAP_QK2!3+;<xF@&Dvocj|=*1<B776}V_^x9%Z3Sj>
z7iQlf{52w4C39R3MLTC0*wR5g22lY#@yYKA$p!l#1QXT!$glr6-YL$>|FT-I@3ZB;
ztfoyI`YzkA5j-|?4E^Cxpg%`0ldVxjpFrOkN6C)akmrB5y){lX0P#3_E@Gd@`N`C<
zXbRIpxpePxmZR^^-W@!AgFNL)Pd<O-aYmFkZ;BSFnANf|d^TyN=d()b=!EzznTC@(
zNE3G#wIIH0DaMX-wtFiZ(>L#VOdS>B+t&a3$iMJ33x>8fSa1bCwmBzf!I=|bkKNEu
zJcpR5z#Vm(waBLMwTT{q2tNT~=@x=8gWP#@(A#*=_~?DJpHRuzPeuj%+-@TqhriN6
z7P;GRH}E#3PyQKyJiLQt8Al)Ra}qcD>)oW$#L+f^1PuLZG!WdL*0M!Cq(vjwu~u)J
zG>~Q)27tIC3k2zybL;20e-1^aItuW~$S(Ev_(+@rCMQm<V~>~U%H%}X;DO3I$@7%=
zqHC3`RwlOdAM(((F2&t9S4FEnphT2!U3+HS+ABL+5&6jUWGXht0}-@d>u5Pr1E|zc
z5;UDUQ?Di7;Juo2a$%O7$w$DZh50;7O74<fyeDUrY7;d;sumA36(`lG9Tb2ly1Mlu
zPfT3}E=joLcHbBst7V9%T31PUWo@b1dRs@3nx%pAFqA+1QjH2)9wsb+K9@vbL0D9M
z*nz&JufC?*&XnC?Xp5>F-X?|W-oX+1LsOuDeBb@PG5{l6YioSdJQc7u)uM)G;o}&f
z#?bD^P^%NU>Ol(f58^BJv_oGHl%CxDT%UBXnd;D6s8gQI)R!kGuCz#X=OpvgRxY4s
zeA4gLjqM9in`U`r^D<>kL)V~N!UWIef5tjtY;1i^+4SRH@Z)eHH!V`zSA>z=6GrlS
z%iuovuFKV5yqIPJgHD_)e#J+M5*+FzC6-wi4Tj@VBuSivu&ZY#PX&ukb$%s!Nt9^7
zOfFml$daLmN%3jCskbFw+iR);BX$UzoWo6q6wV+z3y)6*tKOJ<!BKb3>Q1hI7@!2H
z%bkYz+-qQzZd2(Q3{zDbbaRs^;TQd8=_j(dQ14BUILCK_*LLnDK5ec_fn%tt;?ho{
zB`8^cQluB7`J@<a<Np*_^Q}({LAO}?d0`TyN}M*erlO{!2@WjdCph}y#`Wau$Uexb
zQJFdcHZgLSJ7IcX*ocHbM2*31<T}svBiih4O<P6pD6p&%z41~0h<;T6-8eAC)aY_A
z^zpQh=DOT1eH3*2?2Hj;XJS-j&pHKrLB52jR&V3r2Q=3p=G%eRS!%+72~iv^C?Qg+
zfmJYB+xoZyznuDw;_4=~TchTh^@|EN1<K|@T(=Vd9u--soQW@jw*v|l!fQAHQmso^
zC-t51S8{!IN`F`Z#HrLsRI$k=nx!F4?)sG1KAWpO4;j;|ldkdm8tPFqD2I9sK|{hc
zo8?(+pz-^X<s2*9Iaw_RFH7p(#(uTpZL}6FyWz>BNXEdU!h}~Rw;=CLwB1tP<(8i>
zibuFm3k`bRC{c$N`&FgOj(O4+A=lu{#YE533e!}(5|TuFW=DHpP=J1H8`xpjh1Bv;
z7(ugois3Z-6Cgne;PE0Lv#HA+QvgzzJEY*=eZB+aYGk+t^cm0RIP>#?kn<}Z-y%pw
zY=d+B9J$oJa_ztI6k~VK+d_%=2@O4D_gqQ4J-6n_U+900--`Cj<*yLc;E&TvQvAOD
zgQmugr!BQpioa1l$Nfs}Xd01&FEb*F=MR#}nfT!nkuVj-@%@!JlhnF2)GM}uDySMW
zk~1!joC__bKO)<dj{W;Z9Hva!J1<N6MFI)TargTLEQV%2MV)*r>25Gx8>x3IxzQBQ
zh=;4SOzg~~f?AY*GX*x9h`Bg|y5=|IZx~mrWix}7dXb3iYo_eMsX{a6(Un*Gt>cIR
z^|NA7HX~bN>Gn%l|DYcsQ6YJmU8Z{5Gcprbsk6F4+xzzJ+|SQ(w^zPvog`;w$tSV@
z;RhWeKJ|`$($p(ef7MZ^<%Z6(ou)@%4W8_W{Fz=*ygF=e#sTiNn6ecqz&<Q!5(IvQ
zn09J%_1o>&yx4E2hl7C@tT0?gFSxh!n4+kB4_1ILDJoiTMdM>1kFSfOaEtTbySFdT
z+j-A6h!y?fla!AY@kp236CXyJdJ#_vnJwWmM>C-9rg}E&as&G)(d7p8@iesBugi63
zdbbKqw#}yrx596!+h~-h$+p=pZ|S3Ymz&<l(_EM1`*_RI0rBmSa-DCI6UdxAS-j#I
zjl6I^l!-Onm1m?SqVD2K?||hi#*DT^rWENHwZx&4j!L)RHho9ApFgS~%H6SIjn*oy
zbB;Xeq~lvRj^BS!f7Z0e9ow4S(1SIICP5IdqNP6@!=1@!rtBAOkzcHi-OpHO_fyyT
zZo_REbVX!|3dTFWp0UE%<FI<@A528-#cln3$&Jakk)@J$25TvT#*wz#eTXF14*ON*
z4t)sdwrx;UfB8=Qn*UaC9#ixUq5-(l<#rsES{=IZ%%hWOe_9Z>p^;M?TRB=y$`$lh
z8J-a}WW>a?g)wh7I*gf=(w|8VO<6G}wWl_EuFR%}Rs(F!9Nof%<B(Y0x@B8~snHRp
z{1^)G6`y>+v_wZienKYp>#g(n16?e|cU_oo`5^Vrco=L^!VTW^8&fN$Q80|zxzSO?
z=sfpG8HCBr<Bk5IpBtIpzUd?HYd3ohVScU9kdCdhO^DxV{Dz!L_j?wc^U$Gr&0N6<
z=HwTA@1*8{iC(pJr~*w=Av+0}{3`*beg&;&a_+1En2AM#%#$@Z0jPB1N@MBW;`i6~
zKW>k49J-;yG7ij6l2TI2dZ5PK<wM_OqsqPbGonl*lxfnj8c*~8@h*2|!Sli<V&_bh
z%~B(WS|iN`h26UU19`V83b+)}*RrDv{l`q~##A1CrFq?P^FA@0mV0{$i@|L29Vfls
zGRPy!MipDp9)UEcMs_dj6X7UvbP*%>+QKG&v2(|GlzLhlN*_jBNs_BT*`9eV>&}LH
zVnMrZo52ins~is(jjzk|F9I|UkdgTWe#@8t$mJ_SHIAquU-74B`LN>~yySe5T?jU|
z-%PMEz0t?3+%9uIUFAML=Udh*T0dLmeooG;+i^3t{%!kvB9m>m5Rd$HAD;bkJ~cKN
z3<HuycCBW$nAO3hd26Qx9?KLBNv5!H73Vf<ft=0Ov22<7B_-2`oR)l`<hISfR%Cz$
z@!E977PGg2A$54E&If0I?^X6{cxf^<aEJ5c!Nh(W_4mMly#6%5HYKF~$~LzCm}y^>
zEz@UzW%tffe@3M<SfFp^)3kfjSH(Y_66j_=91`d}_S~)qVdXP>+{8<L@1=@c&O_PM
zKfT~wJzeD1<F@+{DCOF=;+Iyy3;a99hjl(ueSSPkoysf7sy==-iV@&Mi&>eo9^!Th
z_tqc0ok9yLqQ(Gfgtc1LXv@ad2zg93^hNuH#-TAS%=ODHf$V$ENBTAJ<?&J!ryMO{
zsuibXSCt~S3^=g5`%{lsM?rJ|1gj}05ZMUmTXd9ym+ojf?>Wyla43d(t74cp6!G&6
z!CeG{`D#K^<T|+l>qb7Op&>tpZOTg?pZo3czK|)eY69I%xz_jouNBgq%k5EEsAG1*
z46sS!HRVw++~$wx(k;N^a4(ZZ@IUn(@P}RE&<cWS`_}I4xM(>;vF?^;&DrAjjVZ5r
zuC*~edi`|$`a_>+J(%NZ(_<=GESo-?Lg)%j`G|C<$MFBx9M$q<Ux&_!EK$0RTRc2+
z8|=^-qS^PNcAw(^0zb@b^!r{bskwkrT5xtBEndED5M%v$U-~E0IjEZFK18}J*ksC5
zZ<2qTrC200{u+V+3&4!RG4e%qbwd9-U*VC@EZOL@TUmBuaTRWNuYK&jbl6)FCwQE3
zUlFn}POU*fu>FMt2iaN*8-{=lEbk*Rz5^YbsSZbxv@m<=p6qJbGr4>oU95_C9zeZO
z&n+1>+ijA3r2VYBUMW+-e#=HZQ1X*MPW_lN`}bQ=ml_Tm`|V(L>EYFNnK9M-YvHf~
zoy7@~05_Tw5f{X#9UbEVAJv%<3qqmY8sks-!0d^Q0q}!80lRoMHep|-gcpJ|4Z>JD
z*{p}1|F(xib(Vc+hkirKMtNkI{uTtB16Ll4y3qtG9=b8v%kM@`!Ht?lf>FE*o24JY
z_lNI`)t<4A=Cqt8YZ}9g70t`X1x$J~rFaA-=+_%AiIYS|VW<-K;NSh3liF3-InL&0
zv7Xbd)qT}!@M7xZONLfad7;&PzpK@E?#gSm){r8dm`SeEr-wTh3d`_A+q@B_tF{rO
zXtXc;#m~Oe(0{~gFi$wjw?4Uw)CT|AfsXfx@N!gpvL6TMo7?$Sd`g#wGn5}Ks>=!x
zgI0n<KZHW!(*i0odmA@${ym#MaKwhplad#<a^6|c&mceO>`J%s3w{oe5UeQDPM<^s
zmo_n^APLPjx*#MI=SpS>)86BCcBbMlr)Y{TO_iH>aOAbdmvCpkr#YY6W;m!4;mDAI
z#5P5T#ddEjVd5R62w_2PAV-J^asx#=Ef^bMG84)<tiQ}fJy!@#rU(};iWDI|14tCM
z4a={Y*uthfhsxF>GEo^>GR<!pq>p;)ha3NLA5qUn;f2NxKcK8l_sm|Cx<+^c_BItN
zx0hx%JFWFVh0grw@lEP96LWjyMrHMERI7ziA(UE*p+hT9+jshEUmoAbsC=2eM>XT6
z|K+Fx5oW62tWKzH#-S;DRPr8@Apvcc2W|1Qd7y1!&q6K*L+cCSu>hJ^NTENE@M!_z
zo!^1**w8tF_x&bc9YcUPSGpY*{x6w*2Xe+a=IXzIA{3PZlI^JBs&8{3r?H-6J#pP?
zFXh>Lqo<0CSE`LyqID3>a5AxbqH0gRSX@o5tD0${Osq1dz!0Jj8<*}FaP6CpaIHX?
zUi*^)E_=bV!GDcweJ8J7O{Lb3thjoZSu$g0^}a!ySGos3$g__@=~HouRh$;`Nyrw|
zJ<Q~v&rZ&En877`CU2G%Y}q^c+}p|7-J2w5Mix-&FKYpH6WQF9j9p|2J%HU`hVK<R
zI_X)UZ`YXh&6?Bhzo|g>HfLJ9Z{&p=+pM{WTXK?JMs0+Paouts#VPWqZqz6W&b)_q
zm94=Dq72Y#njpqb^adAYY)(ve0%t2|%;GjO7Ba<mgcN>@)a5u-Xou|^9C*kqF}b2W
z;ty1BVDh@B3z^(nAl4U}Ys@v`CjNqP3<JBlXi0v2*WyvTz$%QVS#y9U&DVe;Ylu4s
zwQINr0b7$ckc>wx22Yl_?RP2wreo!5XO06O$(Aq^yZTG<vYfj4BTIiljdbj(yS4MF
zRp*?2m{x-WbX3Ju-svAtx4u9#+DJGa4r_e^tYdDo&Um|*YHr8~eD{CisGu$NiGwVX
z(y<L6_3FXx^}2@+o(zr~h0WpBDyCev^-QviXci_`Sf8crXEjM=BDo}_4uXH7IaBu0
zXeFpIottNG%v+VY24%H6uuDH+fRW|t*gJpsJG^FSR6NF|(O#@SJQ>>V%(k5=YdB9s
zCPVvgRPq_x`pT6pJY=)8$DAT2(>Q6Z-U#8Yju&iC#PISWnruZV3>iu=S3sf9sBUy0
z?~N<L!8BJHe0(nib~#LzI-el;0p_1X=Rakeahq*G`P+-qvkKP_LcT(WbVc9!3epIs
z8B*Z8i&%tUNo0iv@xgsH2lc0>aO7v1|4BXX5KwQ$r@kJjk(_`ABQz^fOx*7jhw}&m
zgymuLPq;B315RrfiLhy6!l2k^>1VW7n~7a=d}OerWHNcX*F0P7hNxP03Xq94=2dIA
zSE}~=Ue!!j0l*@a$;2MmFwdCc67npZ6J=^Z-b<l^U+`39=Z#N6LbWtTZFXTiD<1C5
zpZj33IT_&DwmxG^yl*F`I6d7j)TYBJ#Q7y5Mzy94On6>z**f5=)P(2?@ASYf3Ekr+
zEfM6=sy{VhO<TsZ@PJOOOb<Nip}v*e@!F9QF+!Diy-^VQOkcnLE$ZCq@wGCTPOV@x
z+eq9R&lHnphRQ}hRVMb&Y@OgMm%8VlF0NzkN6t<rwy7yVkR`+G>5^NE_fAeBU8<jq
z=;BGzS&(iJ&?ir{7+nRJogOfIMW2{0C^{_^^-gDTtFE~MiT!oK@<g7znmxE)XezdE
zZC3|<{_JNSMK~;FcJir|)|a<ul~#iU5J6K&#^zi24g7%e(bU1cp|3naTKFhmDMMtN
z>_KGDCeR!X$r{AyxS>7B36;*e+FiRogZX8Vb?ar{V#03k{7{9tAiO(wj}L)H{IAIq
z5b<10l&-JIeb7T12<M~AI7r?mH(qyWLYgA4)b<BZpLA341_h&NJcW%Zee!ASt%qUw
zblGBE(0Cp%U<3A!467K+-H=>rSON+QT}kbk2qApnH)6YJiVz*DRD2FxeiG>m>w&Mg
zd=N0tAt>-~EMF58Y(v1@@<q?Msdv8U;U~yTniu;G?>L|B5dyNyR}#J5aThX2|8W6-
zE*<e9`J!*};>ZLqZoZHpZOb9t?pggV>7#?Fn3q2KngHuNU-QT0kEXwQ!%$_It}4tQ
zJ*n_r$Lxg2C0v)fG1+(Ag6DD2vP1c!`+YY&|KG|VJ-@mjnwCuM%+SmyL65sr?X5YV
zHa=8$pZTMsdzbV1qkFFlUA`xOGy@lELxSy>n!Jw5*%BGs6brn%X8bj1D9v7^w3CuZ
zJd6_Tx&B28Oy*riT{Y9m1R_|;dDi9L2hK(iuUyxw58heOL4LKY{EGz5Bo{Z)qMC6A
z2ofg$!hS<@>k2t@1Nah(w=YyNEl+x)@A;qxg3R@NMI`C*DdG3QqKZw|kzJN^p{W(a
zC~=Q$=M7bLR)JK>$Se^QnTpzfhSi2kEU76wIMfN;YLq$<1^NK;pa9u7+HafUb0?+*
z53Ed=UCkRlWKpiS9F@n&Lfd@i0wkev>KpmwMOC`2)k+@4NrmxAZPpG4LiyZ3jP>I!
zJ5#J7J@5c4c3QoT?Hl5Yp_~tFN|){I8)#Gmt9003YAj7hXUO_^;CUoR0#7V?=K$X0
zcs;sQ_Fzb5`Q{~^YlIQ8kA=~b=W(NVfWKy)QL~F>nq4e&>q&v@yI5I_?^VUgPt{VY
zs>s(_tI`!WP?^ALLZrRR8W^51PJo;<trX-GZH?a2oqVq$qG`k#v?&Fx5$$emNDlBp
z+5*cp1deP9*EVrxhVM4o^{j<?P@hLSu1~9AuA<lQjjFkCei41m>li&w$FBIfRJ%f5
z>9R}hw-k7$;<F3nLbCFdwv;_1zW;{37_rtL_xraSJkHMK*bF^x_LGL1J^a3yWM*3U
z<hl%1rsA7Ho*}*Oq4iw%rXA`r0jXfd1w@G2NQIan$iboUb*%9am$pesgTV$pKe8;u
z0NX;<1_*Gb56k>CRG)=;)8jS|+ZDqi*g6AjqD-dj9~%ocx#RLz>9WM__1&=DcfB9@
zLDqPbBgwI5S($;?Ya2~-`&N15-7{o7lk2+DojAnj-X<hRuz);V*r@XwK!|sm*OK1b
ztAY@TftD7LL2xb9!WSPd%=5tg?)#`rWTriCBR#OoV+EdGo_Z6fD34icp`2@%+wH`~
z@KVr`B*CDa2)8b@WiXYVVR--kb@QM7)~}ndr8Ngo5!FE<ptsD8u>g13nPqa_n6bVy
z-@9&=>cU(Z(322U=E`I$?p~>qFz5##L{1(eY9;06t$&>)(r+F<)7BiKoi8|h^J~jX
zO3Ha(c6*1WvXPD5^Ydj475Zms0aZdCG0P6G7gA+-L=~Gs0H(iA^XaCU*uT&3gDSpE
z-&C0~D?jj+Z*(+nPnFI<mFw_odQ)Xlpo-1k%|VTh*o{scI*jD&IW?L!cYO7`_~cn4
zUM9Bh=RzhDb!GRPtJ1Mo{tEJ>@RbLbRuND;Lsx&GN&`B$TsUgv2YUZTmCuYVWg&PU
zk$09ACBBf)SeaO(<s(G=^>7%;YfXKPWJNN3%E-6oKHE`_^s_y;MeO7L#gpzoY9yK1
z<W0R)yEk3L4A8>~3?TR5$hWs?wTv@V1$H^dnIVH0t<Jz&pgMXm;nsXDvXKlBS!7-5
zA{xp&9ts*DP9`CC4FPoWz|ZT0;=XL(6u;w<A5ZbWAKwR_GO;Ib2t)tZ`x<&QYE5Y%
zQPybpzs4KwBTcq{p8FbsZCoz*bX+_`bUe!J_ZC)gEC`A%xG~0P;f}Mc3n@&ny9}hb
z+v~+IH>zHG?LlIfm*l+whF%jSD#X9dwj}PJccgAJWhb!GCM6K?f6gM|KQxf$O=rj{
zFI#fGhKh1n{$3uHr_xcnY!D#Ga&BeaN1J3gZ<8MQ!Wx<&&pd9rOJp9)KD<F=OJe>0
zbv1*?wAHJX$3<5-XMqhOS+C!oo3Q+7=ksc<z(G|Utt*GFb+Evci<svgcDYr@_CYcR
zAg`>{Z5meo6T${6M;fqCZYv4g=C8<)?lZBC|DMNfg9Ist#h2-u+iD;F@!U3|577B;
zcxJ!q<bx&4&p!?Sxg@#zx_A)J55R)}KcYi&{$ABw!016W>58tagwfM$!Oz-!(7Tq2
zaQBPM=-gJ@6Ak@XSg3cS-|*r1`s4|-N}l)&pIS%%x{4Qi2kG&+tdG=~>SStkO}ebw
z+W%86YKPo};k3UfB2@QL>gQ4N8+*F#i)fyS-0eIO7+doi);srF&r#k`Gl+Hr9=>#^
z1|L{mcE6yB13`Sx)C=5k*363TjrBaWSV=8oluP-nB7)5QxgQ>Sx*$A)qh-0=*5UbS
z_<vpQ&EGBVt;Q+3P(@4B<V^(jWs}<6$4XorYPa4Sa*Oq(hp!K*K(kw@+X=eO*SlHM
zF+C{U6Z+`WO;_DfpHr9hf$P1$9A;-NVB=Uk=k67s@ftx*x{F`)<iU80TE{=vn_2`c
zO-SfIY5dz64uA*?Ltv?JNoB_$v7{0$<n2}6JxIWSDK*}+D4F8xe$Zi_P``kjOC7h6
zdbYb;q1Mz_oXj~YHB0Z5k6EXmi@Wc(cX{=?a`l>{cO<3R=eL%KASYP?I(xQzTPt9c
zKFppj=>GH*`YOQu^deX4qoWu1qP9C{H8B4x@+K_GQ5fHtKx_-ewM`V?xcrjd@r^SY
ze0<~2yzA$#AjIz8Kbr`~+0)57`wt$CYdD6)v=<H_G3~11L^V#>giN%1W>93$eG!r~
ze!-vXm+DOV-Dx5((y^=`keyf<vMPk{DB!D-Vohkagd$U*ETw5|o&0b#z5B(oym$wR
zrFq|*lB-=_D#U)Vw^!(90%{f9ND$oM({O(Pgr4+w#(!FS_g}*_68nPfv*2&Y6?&y*
zOUo77h`bYC>2uYyecokWZ{+nXO{TP4wM8aQS|Ibq8>AZ+MkQvtS4u$4DTbIreEbo3
z7`HNL!AEtJ|3&Jq=1k;&k>R0D^8$e$l%!zRR9zkXkr+BSpP<r0-6OPqU=c~VF5o4k
z=Khm}PF4U95Fn?U52SNF$O^kiSz%o{gcZOSpL_|}?v1lzn!W!)0nPIB!`zd_?-JQ@
zxW5&?>zGZ$vUVC{mey<T^&PaHxa#dy-F1cRRvhnLTdJfFp3Bi3`Ujdn6Yso_;rjj1
z7AUsmH?|+9Pp#Ae;K`xSw47jUaTII;%Jp6KX0CrCJM7CG$7omn=xSvvS*C6;j!_&d
zn!~tT2P(=HIEIQW;PuQTbL<|ECUeL{?vCE&jHPyX+(fRZ^so9Ty#=Upb>D)tS8`#}
zB6{y7cc`NvKRX>Oy%vkDWUQFp5+7*@DF9c8GbNFqV9)VKrd$WkIZ|C`+B|KVJj^bz
zw-NLDFjHpW#`~)!R)MkA?P4`tZ1}@MU%7~MwfiE>*&4jE2%Q-c;d>g!7jhFHa3&Dn
zSBRt3cl%0TSWx678|HfD7v6<OHEHb;WdtK)w}?SZxKg%_Y2)2?dZY%x>t;OFblH-N
zwg4S|&iEHW&zm;CIuJo9Z&?8nzN(QfyVIA)U2Z)>j{#J|t&UR3>U3F`e_zFWKIv#u
zOb%kEY*C9QozZ+Wnhi(E-R7<Uw(Cc}r`8Uh4o@1~M<h<_$>rfmn|sqg@n^SWVpom!
zl#C*W8g;_`Kcu}2e4pd}|DRSr8rDc0LKu^hQgcc-ht@Hr)=x+^lr;_`8zv}9lPZct
z68iD!J!KuXbz5w<m33RU8HSN+QEb$?&UL;%Qd8$@S^v-1`?~JWDJlE@{(X@9bKm!M
ze4pR%>wR7KtVK$CvRqe^&|=(Xz9|!FSfjKDL~u%|%Fi24(f9z3JLhD}FnD_{MD}Z2
zI?d5nG_EFmpQB5z!ur3@u@F$|Uoed=9+pmY_5>mvsoGKE;%fjts>3~ehBoQNq0uBP
z1Y3$AG?^;E_uSkBC6O!X%01MG8Pjtw@=}HTZKF26eO}(xDEek1Wd4<X-P*@_IDU%X
z1URG1_jkPYX8|JAQEnI26DP$RnwpOC(ThG&KN5O|sTfA!_8^1PKZ%l@B9B$CueV=k
zToQs2>B^t}ib3Wk1i?W>5;HTn`eXp+HdFpjtGGo;6y_s^70o73J6@l)YGnmk-@rIV
za>_VrRu0Siz*kJroK1wI!Kn>6CGEUvpuHAg{Hq&+uXx*Yf|g_v%}_@Hv)8WmF|E03
zDr*Yc0je#yhv32ZWFm(5?G(k|m*IVoX6DWE@pT>)DfwFd7^ggx&vEZ#s3>G%0i2E{
zJ@i8$X?4!gS2ONwJ3`|jUj|xtYe}QeI{xh{k>N?^G$}odt(dsPPexfxxtCIN+~osx
zXKL5iDj3_b0~BWe*8ooeW7C@(0&Gb2+>ipte2pr?`j&-<kArCAR4?RC&9x$06n?t$
z!e7Kh`%1S*Lv`2Cbm9jPD48alWN5TFG;@eK9o)E2hcn}E>o!W<HQuv0KTDcpK7HT>
z<I{sz!>7j=ESTo_)z(XI0yOA@q->Nr*(ipyM$Jb3BEd`|W>@%l)}m)ns)ctIAh}R&
zaEm07U^T%)$bN?)bY=(@o+9D|26fY^Bi8dyU8R^O&VUE2fq~;oy4Fvb%E3j(0A@{Y
zJ`qt=5rM7eyr>Xg$I6k$c?*0bE{d;-4=>8|lx@S>-%rfj>e)5c7&{J`3KU&FwCbS|
zdn`;|Z@fEW^AA1^#cJIS7TdJ7D`^10g2hK5cM;$!@A{hoEgQ&{o37O*3l2q<ZyhG2
zhD?U2a^I7LSiA?DPACObZS9@hyOO+&x<l14uqbr=5qvn~3|K$h_yxt`UackQpODaO
zz09@+0`X_H?mLzUmKNx(7nCWdIssW$rKqSoFG0OD&<ltadB7RcizI3IkhK_KUV!b1
zdW*>Qa-EFxIva>&ApGy4JX1o>Ls{QysdaZ-C$gqZ_5tOjnKE}+x_2y!;)4}57=*Ih
z>7?xG{pDSkN#UdugMVfUsI{D|?t`xyQKEG09RZiyXz@BMIKN-^Vus|FKL`LIcpGkG
zGL7nCRx>1imU=M8aOo9DqspzO3xCWt;;247vO#S6C$FL^G;|bM<(w%L;|RlUkLO3?
zT{~V_Z#LI^;cg?#unfW)R+X^cJ2GK$nwo->%29BKs5SeZd=)Pd&sB(LQoW6X$5%-t
ze+35fgfW#|2R5f9@BM0HhC83zzUzgtsX9_)zD+f;@|rNpQ=as*L#4#_)STHGhwLfh
zGiVg6V&``*%4}&wwJ6q$ZVT&dY2WL~)Fc0(=@R=kX&^TVdE{O1A>xv-kV1aT37T+N
zVB^^BA$eSpv>KtP5gE)N_VHYyA8ypm|Ib{JuDtttuhczROJs!A7$^e}Y_sl3K@F%&
zlmZc`Jk}2L0xx(od9)F|cmc-n91wCgJO{|I<xOKKR_(U2z=t{7vFRv_hvrSOM%z7S
zDA~5gEqlDbmj4_|N6Va>!v`8ZHbwQRo);((h-Xh>r$;bL{a@+F*K-Gv(kT+UFN^2h
zc+wZ?w%r;IYiGc!Nw{3DhrFDnEB^8j?<f}>OtOM^lAWtmCMvt7PE-L;Mzg~n7BJv$
zo$tvJ;055Tn!0eh(uJqSIL;gvnRvh2noSH@ou@PE>{*-)ESV*8DipG>{jNB=Dt6O9
z;l?B;t+xn|MUqqRzk)U0sjJY3>q!31x%T$!RK$@#&)D?)73!`aKh|AUp&m`G3rI**
z);x~=g?J~s%KeS)WpuI14fR4wBCbdZE(KvT(^7=1F;0bkxLHK5J#_=yY86KW#Ub}8
z7z~|czPi7@$B4gItif~Rr32@c_ayH>82P3a_%%F~_Z)Q!qKx}B5`N#IXLQK<LeKlP
zx*$za1S3PpM+!s>@ehHYFgWwQl!_E3zW$q#(fZerbB9z9^u}zM2tcAS<SdFqEkc)m
zooG0RTjs43y>@T$I#Kto>XA_{)hKbWuY3t?+xN(Hg6L^Bo;b!F(#PoCRG`u{qU~O`
zofcj&^x9O-e>PiVUZ8HmTJE+NMBTBr^U|ls%A53wMXe}5Ysp(kB3{xE-k5H)A>6%f
zL@BKEY_vCBm^qpiFurT;nii2@XSF#BB7dr7AjZJcDoGuxUW&?e)HPRlhvHY(K-Q5!
z#$3RgAY;x}mnf8p#;8DjB4{*MdLkb5k-lJctjR#n_-bh~$%&vGR;YP6%E+Z-iKr;w
zt&r-veal#r<=hPg%zqW0cgfMXmYd9EsU`Hf+Sfl>VJqx9F9?pJj`%Xg0YUzVQB=pq
zWk{8^{I$Pkoo{nYJ#}Q>ku_h?QJg9hOQ@ob3d(-@pxnN7<_^@ZgagwB?m)i%Jg#QB
z=f6M6a_v~@1>%C59?cj2vun(MVFRWN+D%lvb4|I{dbdvA^ZmBgmUGWP<D%r4m&>~|
z*x~8pN;}q`cIwG(e4C8h^4pIa_QQ^~)A$;}KXiNBahtTSJ-@u`0dc*W;jrjUlXp!!
z?fmIyoO0U9$uUp1?U+8Qv}4WpPdVk>wki&Op!%A&bK1(vZ>!&={WCsVpv}zz%20$v
zTa@_CenJCI*`2>Gl>EljLES`&DJSQNb*1<xBNJb-OotQlOoUBt%$Mo;1c$s^rJ}LI
zfB<`R-?2nsl&1q9HP(75f>cFg45{HwiM!<;5rj$CV8&L73#W?hplyX|qU|a-laxY-
z4|~{ix(PvlEHRv7JT|#BUAcQFJO-2g&}578*yxy<>i9vFYGaDPY__O7+ys<oI7CAd
zA)w&O<l1!Q>zAw8$s^U;%Rs?%Vysdp!rZgHc2;6m+25`7WQ#pqt<t<Tsh66Vq}@8&
zP10^lx-#wCZC1N>rc7#Lb22@#g{piC?ZNRa-vlU}e?&0_GAzIwC0@3*&GF4*5iz#@
z<>Y@Xa=fcA92oN>7sUM#!)<3uy&)H)SVl@^%qgUdsIvU~6eF(Lol>>bV!p4L<#*49
z0p*73VicnmT7)@il{c>lGV#Qvp88N7CdCLVraA;!GlThXq>Ovnz)|HjxbJ;G3Zc9f
zw;6ey3huqhK<?0dGiRHPyxJDF7SYK=oV()sNORNz)N5M7lsJ1Onc~#xrS1uP@odHp
zsnT*-ymTeJxLfV*a@9Q1YOb-Gtd}iyH`u#X)W~dX@3NI8BrnR<d{{!u_jam1U6#4Z
zM<q_{4w0o3EpI0%ZSBiVH_phT*Gt+xz0Qm2HJcPj8c8!RAwi?mldS;h2N2dW!_LH}
zJQ8e9mwn4hPqy`XofMQuf~XPO=2G^_x*d34`L<oQTWy!UGrCC6q)sN5)pwb7THO$h
zuN48_VzjT%Q(k}(l$a7vtn+~wu?QS!JU;mLnpqlMI@NB2Y#d3v&syXw%uxJ9YYjf*
z`|#a?M8;%Wq7h*_so?V|z7~YhXaMje7bmZ1Nz2qV0cQG#8ylpaiMo)CIMUXcQjOK=
z%I$nBRqES+EUpQ=BJrKB(Dy&@SH8xlmojHsptB3B@CI5Wd*IijC|kLW1s^u$74qfZ
zlw|pSe+ew0%7;w(KGXNS-?hSq?h_-vj89b6?NyH5j~f8&+(`Xqp$f8H?!L|q3$vN;
z<{ZLa8g?7l^Ji6~*?qE!@kXY^3N3YSai5uQv<mqzbI)+!km6L=RqheJI<%0CyG%B@
zh1QDkzzasnd27FO?HxSuSSFRD@=NXMvdl4hgs#d={4D(VPW<CQ{fH7n4%!erqJB<T
zB07<PesFy0j?5&Tm~{z2>}@-MVl93TS-vKT5-vEhhH`}1Y5}%b+HlmYHj=F@19rXc
z*f&t^wYUQV+0$1l7SgfOWMPp#?RNWXF1YcoG%yNY8cXJC_hUS`1MLnMmfiFpmQ{kz
zf+}i{l-`s{jG0rhjmjYUszi(;?tL>_gppF?buDVX#C@>B>$y5n+UR5oyP5)}?s#@k
z3ahZTnWWNs7@H%_*c`4QQLI_5Cuw-tq(HeFEY9P<84U1)KkE%a_{@DV#6?}+_N<&K
zke7GgXM(}n8!DkNRr#fij;W2Wf|!K5)ZE|^^jJe?PLzFgvWOhMeB@$yB`gY=P-4_m
zO@f1MYX9Lc8`y|p(Abc0w=eg*Dbdt2w6)ZBHGSrN1S{wMwren06DCHYMESq->=S*|
zEE&aR2R2d8x*^|0k-l6=E&WrgUc3Z7S!^WRfMrvlikq3r(x>zK-bXD6*J{e>6_3|_
zasB^$Z^$qN*7feVJAAeXdV#*rc*tk{KnrgBKl?Y;A_2s`IivF35KpzDz7|ZQ=P#40
z!8Cfm*HZ-T0DOIXBWo6Id68E$UIbzmS(Y2kPOeH<es-ZSikf)>!50!4oA^<y4iR!%
z;dt80*a}BBgjP4es>YW(9xd*mjZIk-Ld)0GBkk$4eOClsT4ndkGRMXuP-=Grd$`oT
zR4meB|KmnTwtXdu3XnWEAbDO*uTa(x$+K&Ec%IQ`6~OU{c9t%3>TmbPT!WlCk`n2}
ziWw%S4y4!xABz-huWOc^qQt?Iz2x^)b@#v>Mv48X><(qLefPQruOO%<vxzFiEpqb8
z;uV%$TDYE%^|nI71n!bYWf6xBIXp=~2r>hD9qSI+Lvn;tV9h9Nvp}WbaSB}5N&X0k
zNBq<w6l@9Dg7evT&=^Ez4sZO-eep8G)v`hyW+@u)a)G$uj7p-%gIjawMU~QTh0cq5
zeJ}Z74<z20rnH==|46z`b#-Q)JFA(roVPf)#f`dzXLs+wBJA6J@30@~WNr_9f_$C%
zeALT5c{N!&n`}WgPv+TI*ST?jr`#(q@Mq(b*s^s0rxaQBFt>kr|J`-&x~Vj}=v&-w
zyR#JhmKQ+cX(eQ~A)?EMcIs57;~5FrJyU>|#>jz8?_I8ysHN`uq2TIeSE9*(EpPGw
zp<w>gPh;-DYzopk(x3EkNVgZ-jumcLi0o}W(0Ea~EwQ*iLHd!`CJVuzIXMl)?*Tt}
zQKW?-jbuoimiM16Ev@B(mtI}h*R5C;XT<E^cB67y=6Q@1jHmpH?POnl<(d6kEzQek
zVd(j1_OE@g=v{R(MdY5*mAY4o-!b?2-QwbR%qV{M`{H*<mH1t{_+4}E-MPi@rsm#F
zDty<ms9mI(1@m6n*Nl9$KpM7(?fN1}eE@rCK=|3lr$YWSROa$&;HHpI!}kR)N1gh7
zn)6JtN~})e|7jq02Kh96nPgP9h}NE9K&WIA|4*x?NVOGN0n&Ucj|qJ`2`EiYXL>5v
z8RXfJxFes^7rE3INm8VaB3x&X=tPl&vPE{cB8opvYN8{qGx#9)v*le1UHMjC6tL3C
zW{R{>gzJnJD>5%z<VU{93{=Tfig3MnYI4l`t;ec`)+3VXS>DobZ?}R!_IE$GyZ_<q
z2|xbqRXez@D*k%H0T7w&DHi=JT${Z$d&tnI-ES$fhPwT(E=f2FSGWoN%h@U^Swo{u
zd+bH4+0xq&Q2IZR0;S(J3t2>IN|OMEd!N<gY~~WEU<{dG_|n()FTHqx(ha`!VOClr
zv9>ktpA1lXEvk%>d}QW!LFv;6D1D1B{TnM?0J|{*ls=APuJ$>}Gk(Rwyq`SdlZs!J
zzxcx9Jo$h}m?t~TJSv46+&<fQQ>04DNJ)-J-B<wrEZYE_2?=L)%{9vz-jqUdTPSbK
zuee#XHozEV@mNC7@%-TXfuvlFS=)NNkt+0$U6no_etfR&U~Z~WfsE{Uu1E7RtLMJ*
z+_SeoDWFyIBA5C3w2BUAg3tS{M4;DN8%tl8yBAHB*{@(mMe_Q$em)3(t@NWq>fAe=
z;pufd@S!QA-UbwSTGScB`oL2sVMKe++e?1dUN!E++hY3#fmQ9T{_Url0kf}~8|n9Z
zt-MMmi#e||Wm1~Xmp@=)ju(i7IO)KuxvR*j?7QE6_zZJ7s9-K4qoVl?{JrwL$h><*
z&KRA6Cj*xfndF`Or9Lrxlz4kuaB{w3lTu;PO0Z{=I{G}Ee;$?H)tc~PpXNq;UMGw&
zM{tGl!F#-zM{n-ZV+EvEooXqFpim9+s|5K~Zl46!DXTu|vbW9wa1XUzA`=?4v=$UA
z55>BATSsUnbqcuk&|&am=c{jknEReM_Nm_MAG3StyWVQFa#7-tv$0KRL3U+9HI7x&
zF)PoX?|~7z5-=k9f|{Ls39D6e+1Ky<$?u5Bo%Mj%)30ea;%Trs!1v1kDb>+`zr8=M
zhcG3GkQ0(-!;D-IOl3_fz1`oLgf^v~r}_`dWo9mMtP$&)vtSMD;6wB*S9CWOr8Ok0
z!YD`C(=I!B-ta;KgvVlbRqnbCJbtVK1VOFD-FB>stlmJ$^kBp;@9gUDd!Dd-qRlkK
z-nQe5(OH*mH8)<h0Wr~q>$82kSyLNC`8a}iBMK14aCSd0Aj?EOp>*&>UAOl=FRknQ
zg@9J)QrpTT?VJMI(`J&gYs9+4A>;#>|CP2dy2BDJ`@*01F}m*!T0i%nVs^l};omed
zAep&SDyG-H`8oLHyw!E?h$s2A6TiHWFXGRG1@xjbLv5*<M*m_PO9j?K&J5o+lTXnW
z`xH|(@gzoSBWp{>0z#|iFK+ZsNVAcsWMPXYUgb)T_QX08&f(LnCjB*Mt6KKK)Epzn
zRV_Fy#vRe335SvTs)n5jfv!x^RH!LTM8zHQhG%lY9A*hnI&(YkpG|*h9cV^$RI6r~
zWuSw+23_WHAbeARa1ng(5#bl*yc>9cuiqRS;0u{*iIV`pG>xg+OZJqMBu0?y-Y+-8
zU8Pr(#!`GS>F8K~M~TuiAR&g?q}lpJ_*_v&PNNd^{2EzY%<}$dHHcIS#VxpvH9h50
z8vzx~??uI<3eP{MdGO2pAbsQUV*1(B!fGO)@~(f%24+-Azfp`QJ!Tcd0>@FW-cSha
z75@Sd)sWQltdd##n=bS;0L5rpQCZ13ez%hQ^v|BpEyg$=NTm}sz(!K0R?YJXpjYI-
zmn+IurT1k+1iP>b^q!a^Dy!ICWwepA?7Od7oP4}p5~FoVO>W{ParTE>tfs};e{C{s
zJm4$)jk78@*=4)PE{RKZNuA7GCTstf)jXL=T~I5P_Z?rm+F~saj!yz7Ms}uepJY;w
z6yOOUSo)X(0ORX~%En|$D)No9!ve$FkVOSV0U&U!=VErI&L-H7#?;V_YDi}j@RF!@
zdMtpRJThJO#pyPgYFPU`TT6!Z{doAnuoe4x&X=Kg9Rd_hE2VHOZy8hSVi3Z~K!KEu
zQ~am6EXc#E3t3GtlpBj(%Elu(*!%Fa?;+cy^sL*(o<G*tsgeY*x3>H6rQqxWb(Fa8
z(Tz*o=j1_Zet==AdrwJ`@4<=5l$LMYD|+dBc*=f0YkV5|S!9nM%S^Nit8GC@%Sctb
z5}vs!yj&-HI!a7`iDz?omU)N=q%6EJ>WNIVf49rdfgs!em`8RsLSEvJKQtvXiY8v4
z9zsUQ5#9-p<%fCZouSBCyPm;z0aj7suT*f`(r4cz5(z+77OgqT5?bf)lM@Mhh|l9z
zFFZ1CmG5ky3O><MMU7`mg9w^50T~RJ!jf*-znSyU+!}ci|L-M|EsA+qlj48l^Q?Rm
z+4X6TbO*_o9esvWBk}3_1)h%~D5$X@PI=C0fDg{-v3iPAj-*62bjWhpQM^=~G8s+f
z{M_-P+2f&NDEWeFsjTX*LFvlftc5nt%NQf7W3nhC6Z$(O1n+F%g=a}GNWg&)w-~)X
z=6?DyC}1sSH6#^C@(Lb>^^}YGsT8g#1S`+7`(>F%Bqk{S*WUwiobrbttukw&H+SnJ
z!1d2TX?WE<kbHeh6JL-1*wiGYSescOrDQ&1(2(<3E<JKYx@=Fd4^&2HEwG?^%<*)?
zgXInT%P=kgfY%-v67xP{@(;w8c1|sLEK&!d5JPmuw{sL3tI=d$6^04wOxOn%l&@!g
z{V)*ulJjXS9y-+18)%e%!b-2z<g=6mIeC5A_C>*Yjqwnn`-*im;o80*=QoQ`%>L90
zM6R*?5M5JaL39;GO^t_I4+p(xo*<?M0JL0MZB%NolzDSwATT3FTln!x+q4ys%U9Ea
zN`Kv()7}Hrapye*z+NmOp(6gY?cN3XZVHaKGf@4r9^+&I69R~CNt$2|0A>M{skx_)
z%!2_lGGhhK{Fx9!i6)l9q)CCvppi;6Ri%Ts_Zve_Qz7zG{~CB<^8COHD%OlF*y$oI
zF(C^M%)W`r&KoB=hSF;Jz8Kx_J4&c2aMqN}edvDHxV$B%X0=)2j=87b64S3WJYK@)
zTF1z)-6i(3<Ao)tL?1h-m=P6a;f)|6tKH*E{DK`MXJj8hqY@@LU_n#I@-%)MWFO*6
z^pywm>{=F5S^mr%_t{Rbpu(nLHFfGlOd4Sh9!Yr!n&TcXEa%l|lUqaPBg)V8-W<1}
zuuwtA@kx^29iHRb3(C6T4?<6O7lwoK{CS+0)jl8U5aFO><t&5ef|_<+BYzD8?$IOs
zJ@2rg3-;FP3Nu4inG^19T@s*F5I7@60DYE*%KkY*G$b{*c3V$F*H|wz`2yMG-lDJf
zmVF=_;A{qw_}(F2_nBC*Mo072mPWqZYbHF58YPZ9Bug%_^CpUU?S4-&5Vs^LZnDh+
zOw6b2Iqv8YLQ|M-#}dtc@f>%+08evuy~{nvZ8<<G_m}&D_q;FXU(1i^EZCnIB@X&_
zp3qT_mfLXGm^%UE=rDl>gky>s8yM$)>Ng8YMX->qN}HZ2oKS%If)^inX*~=G9dUSG
z2eu#NX(|YR2Aq+GWw}GKWf8B>LdDHcaSMwl7AV>K>@mVe)?@$R!+<G<S*L*|g&2M@
z3Q15jnqO4a4_Eg|0S{A$9!XaVMAmL&%J#_UkXI_hFJ_KB8?c}ovjn)$4RFuNO9m41
zZEy4R?fv?YW(a*7F+<b~)vwm9U$FtibYgNdmsy&ObF&#%3@>G6x2sZAw#DXgR<>Do
zqV(Yxd#Q*VF#?RItNAdqP?Z7Pp(eOD2IN!S`KP1rXw6$yh+04`O2a<kLcc<7k_j-y
zIbtC{4Fb1$#)+bI*JIsDv~eR|5Nw;moSGq*<Yqp#P`GT=%Tjl2*lw7!Et>VBh0;})
zDG?C9eHgC2^}_}DMg!IQ;TFs&SWt)1di9=RFV(eZxbA!Rf!mRJJe9*Q_QUkz^8${a
z-2c3Q!>jzl<bk{!<fc5v(&O!iu=MzYX)HMY;!|#CY`{9@p|7w+`J-lDY&{iw?u};t
zOzh&%#vAhI&DV5Zz?$zCoEOl$h{1j7c>(`Jy#1^N>y5X&iG}Yv7gZ-yv6hl*D-}d<
z8SKdn5oeau6qveGX9*0~@V+A6ewTngP`q6USP-s)(D8a$-sW*jFW_~&ul)VI&Etra
zBUtxZ-{x_}XtGN%=dfCyU4p5#?grdE{+<5iZ1cD~uvhdE2Q#p^3+SW#ifLl~!u8T9
zF@Hhut$+2aV7H{po@yEa8_!@5QF(WbD#5ep8%@-_v_?KUw9uCsEf2;#A6~(6jew|f
zw;!^!9Buc<{UslpICQVm7jD!!)_*V(Z!}&4YL)Murgi8h4*dI`FV)PV@=RJ1_uY~V
zR@I<*bcmPAZ5fhmr`>!7`RIIG$81xfid_!usjS?Dx1@P&rnLYhYn{xHurB%=hvEND
zaMml_TyDLGlT1C{caQw?4jyGLmYd^`6*<p}tjcg`h82|<b|>1yWtolap?Urz`5wKQ
zEC#d8BXFzx?LD+Lm0v~p7$iHYbL9-_kg2lwr%DL53qD$cH4OsY;TgA#dZBNF<hsRt
zx28PO+GjGo*YnBrrKJt&4I2ph_fV%{%wugYDmYQ6RmH}Jl$2l22B1By-E73_x?<>6
zd>C$ct~)6!5ZEHBV|%f05w{PZHWEasCSnEh&#P#N#`6CWgX+gTe%XX%G-;6K4K8|p
zh?X8qWT%GlIrf>~06RZIK!6$IFtM#P?i*l7)9hR_16$BPc3Zv;GTzn>KVkfai#^6Q
z3C6757XYA2yO^upU6;q{(+mt2u~jfTt$C92AJyR#ZIv7cL?yCYA5Ny8OQxR8OcH(|
zi)MGrTlDoh-5j-UC^UreHh-ST-k8wVh+>s6o{e_@I+g~pC@glBg{6*0-z<FV!<}K(
z&Gw4{z|?<C#n`B~-Pu6Ln~S1P8Tb#54I9$Nnkq<FHd~boNlYs5zEvcUB5cLh$#(rt
z+e%+U`Va&DgfWXQ+oK^mbWlU;5YjYvvYH3H%+xnYriQ(o2V%lTcf84rS2E<2KTOz+
zbAT1d17Ls9F#upg*oLS>x^mGm2HP!-nTS6TwRym1l9>i@-O=jhEq4T$z#_K0Pjhzr
z@K84V28M-j64G#${F}Jr%DedWngwBU{1Ii(7r0AIvYzt=K#8er%kVl5$#WjA{n|n0
zvrjM&#q&_Jw%oI4(Wn!a5g*hg)B6YxEd;vm!5q`aUkuQl4^(J#eX>4k8Wa<#$P8)q
zKARKDqZXBhDwDE<txEblxDZs7j7ukeKFQ<#Fj37nt>{z`&VTjQTDV;Ixa=M9DsePs
zQQMWeZ4n)c+bi5zELz9hxv`b94@u=pQM}HK5cB3r_~&ll#cxG2m8aauPc|26<8S`^
zr$M6gaMV^BH>A1xXg|bcNHspvq)BYri9F-|vpOqfX3Y#l>2`~$q!q8NR2XrZCY9)L
ziq?$``pX{~9iu}F&dR-#GT{6a`_|A(>qkear?#z0t|K1$X!6tNl8Zj$v%;@d*!P3P
zMe(<Tgq<q)^PT+M6vSxVR-Wc^rVL!cSkYMmL7Et_iEpIq8AE*3v@$KY@usC*0Wiuq
z<frktSIu!#t(&FcW~6SGg_~Mo$m4FbtTPRwcmQtVYocQ)+SG~%h1-vZ7JJQ!yPfUP
zQi&$I5Qmt(ZbwwDavSlMBdRhF;;M=go9ZJRyey$B4V(?3o|d6sVF*fk_>ys&K~pk4
z<VleS+N5ma^bI{3JaBzX1`OS#5ac)2LgUnF)I!9l7yM~vmMQ>vboj)V0-MnLSCnyo
z{+jJWntwZB+0n;XMaM{HJS}~_xyU}5F8dHjD?o`Z1OaB18>cLtHaQ6UA*7LmHDOp=
z`o=sujjXd_A21u9Y-C*I5i2UAr&4$Ov!H;sL_<mBN^|)<kf#nhm34N*#x~4B8s?YU
zhtqYwQ)x1_8*VoL14D)=5*qXPv<B%-;I`Kz$>@MbgtyxIG0Udyovutx98q$3ddT7<
zqhX5?(40v)<dMTudqEDg(Yd5_vD<2eF#ed**N5@5?@gERLptX+hIAo9(_mEyuc)hL
zhQz6ze~?H(jvXugM)C#zFo4KkgCjFT6r|$@x=>4OPD0pB)gSn+^7Mop91g{~^lVQj
zfY(f^{Jm3Dm%d{3%zU;#B_Py)_UH1a#Z~gh{5O6Adl4HV`awPOd9+))#Fd^QpT~~|
zDFM(F6t9wm_WT($WboODpB*nVau{HbQ<~*aR-9KjTHYJFljkTF5VsG$w5+N=#2=VZ
z_GvbVeu%N3pA=>|3P6fDC`ZWDT`j1B$ws~tZyYH22{be(RvYu=%v+g&mNm<}{v%nh
z0KRVOxC!35XVl=a0`0_S8+dopRZQ{Y2LR>}$LsOIQ1}vncm6UT;66<}j($ms^@sV~
z(+gl;4Ln8$cw~eXL9RKBSTe61SAIpfuHtHtMWh^HgGaMWI;(i_swS1_MWdN=oZjO}
zq-;oB@9X{QsT<XEx&rOyWM{952m$L~g9ET$KeM<$KP(PHw|eWR&eW4yO^m6tOr@jT
zW?By{j0I1i`r%Ihp?AuWp`y-y1mJOh$&s=G8a*f3@$XvF9YvCrK~{`)&JhW^mW$Ua
zsmES^ch~NI9$>(tEZvu*FETqDVFkwRSRy`N9I$bNO)rmr{xK+kWZ4<TAhEK5vd8M=
zgQP3awkg=eHueQyNZc5950#E`e!@WXbIfT1$$$f#Z`Bh!*sy~Bj}jYfEtZYbeAYXZ
zP#)?VC^~Y`nf-f(C~hzD5a8#6Ds>|vf8Q1+#rOXUBJ-IwvB(tms#TzN0DV(_#lJN6
z!taMr0VQf$_83Iun1{<dZ3pwB*M=n1!?1eB4F=6J=3;|@+Yt1nqRwDKFU?>(?6fnj
zV-d(mKA}nVA$*9tVN1&M9nzFHn1qnHI@}^TWGDa0U@@pryUKmMEMJ3p4>2gQ(ddx6
z#qP-sZ2AW*Wcpj>G{&inIq!S`JBDT;9R@inwt;imX#&gqxxKbww%b6+Gq=IO#qO*h
zvvk^&hSZ|^MJt9(NDr%+kUplOv>`QYn{nx~UnfVD9EP)Z0AH4)4zsW}IZE%jX`|71
zgVSY~QRMJw=3sg2n;f1pK*l<7bL`%}Rk+{{xZWFbgA3mG5BK?Co7QQ6W?CG!mFGW4
z<7yUq<!2vE=ve9H&jN41q5PHxCh&44Na<U>l(y`Q?k(*m7;~UgdToVjd7)KV@<cz$
zfn=?wgct5;Hn;x|Akio>?kLfrn&|R^%xLnS)4e9j4uOWDk-7?;j-yQKnqML2#zWvG
zwBz+ui{I0?MU6j5B+v-_WY~el=V+YZgc{h_P*6)hied<uxZXzz!eqXNj%dF_wWGv2
zUuda-QAe@oD!n@6v|_oUYHDerueNWtni&YHGp=79>w-GHssmJ(TO0j>{N#iAK>nKb
z5RR8YV0u{up1gS054W^A7SB=?Odb7v6#7}Pg<WU=P8N7UkGYdO{2Cao#2Bn{&jr!8
zRGoAz5g8T8USSf=cgW|06`Jq3Q;We<EOys7)s_$Pr|LiS8GqMnV72|y$#1XA{6cvc
z$lm+`x=9P*i2rz_I%^#k+0*4$SoVDX{Kg>bZIk+3uPu-~d9JAuW0M4sHwt`c`{1=P
zxkyGDg*TkyfswNqp+lqRm{dK+ja&m;J$7?G7!0?O0#E4ZfmF|PCkfrzAy><1>JhH8
zLyozFuB;1~R6Bx8+%LC@9ph|lD%qGW`}EKeQ2&f3#1MJ?*|>~NsZkFMq3QaOHpl+`
zq4NnF4H~S*^YdP{WEmn_<DQZPTiUn4-Es?vIt`LEEWvbFF3|L2g-4P?iC0bW`_;$G
zxQpM9D14t+G%i2UwhYGQm64ZMC@24;aW!{%dHFoB!C5eJN-e1ArA88YX;;SYbT877
zA$zXMc78S}#4>=5_(O?T<lA~MVfDbMQ%8N0*%gu20Ct4z`sgC!C|F7pqQlL0_RYri
z<H}T&x@?hpX(p;w9=%Rwh5Eoo{MF3KXrJvH(#@kA(k*;O`i=6d|3aa|M!j*^sCV_z
z&skQ*A355PI#rQR&{Cg1w7NkwvP^O^2nu@WK2B~Ek7k(YqpJ${F>Avi>Qde{#@@##
z6WO^Y$+#$_=C!ZK5I5>vH&w13Zj{d~>rMZ}v%R`@ELqBB@r3kgr4v}k%_P;qx(6^3
zF8PK`LxlYSA2g)L6Nxi{ep$s~Y>d!O4b(v`pA`ZZFO*;X6pf5}V$=(AlzP-|NO=yj
zeW4yjiJyHMGie;hly!8|$%T9xWH}1u4pn0w9<Rw}^a-GkSt&~V(Z1Relh=0ENigde
z?LZ7W@&wPY9^(K$#0dl!$f+M(lIimS>o&>M2btl8pieS?m`z@)8So5?e1I>9vK#Yz
z7;Z>d=LaCq{ym@HN*O>NfAD_oXZi29EPS6=H0HNoote*{yA+l$;J0wT%Ac7x{5D@x
zhu?a1h2QK7;6)oTzjdFivOF|odYfQI)+QiEvjOi#B|xQBtixxFjs$r5_M}ld01Ls%
zU^4_F5o<E%wvS^XiAza|U-rFXBC+DM;5j`WmRLgPd&sd7ZlbbHe=8Wu3P$!;nKu>1
zLBxTj`Uc0vN<5m%h?!ACRA++1PhFM;;se$&i<-cE{g~C|v+V=`t%5vx$=4-zAlJQc
z<1ejJ6cW>FI;_*%_mtRB<fngP!ya9;XS2{>AW4;pNix5T`{*W!XwO(`8|v*(4!@SK
zb*<VhS}#mAov<UFmK~={_e0aqj02Jw4-yomZs?NLaCRbDuX4e4U;;7EiPYVpZ>%G0
ze!_uhDvIco21IVz?p7sU(qs$gwt7H}|0(hqi5va<)0cHF_&yr_QSegX`rq`%;`mzP
z#iZ&>M~CzRh$#e^4J%+7gz6a-2fI5`$xZ8p*xA2+L%%;;4}7MdTI^dTrsVZ!ZCiiV
zw)KbT3H>!&f9knKzec)O-&W6fa=M)=%^O^wq{eWCA436trteGt)ru!pB_sVw^C87_
z5;D<u$O@#&O)LGh!s_6$zoyB*(PUwJ<BM^v_6}#@ArHB!*-K9a8)!e^^h8j8s(qy)
zMx6WjM%w>PzxGLy%EcGiS$yNZ{nziWS}hbmkm%ywAh)uP75brDvta+h4*ZJtVk7Vk
zlUT`r^1ju4&+t5+)guZYNE}OXoY&ah+Cme&Jb!*gkypR7Hz|OleR^B>H4g;}j#$nh
z`=wN1T_v!ta%;^yJsV0D?!Zo+uoEa`n-@4jpA)9TX5K$(Gw;n=f+>XW1<W6+m_h?I
zOe=mAaFFPaQB3@jQMBca!pLZ(su>y8x*=!{DfrRsGHTK2>TsKri`~rUH9D679~tr-
zaOIS1&8Fko8t0XT_%FX=t><@0Q1fGq^kHKx?|w(GU{!B7Jz{sTEHctQKvM{@haQtZ
zFNldskaN(GmTl#Kr&M)7|2rxF`|RL<A4xFc$n-ITWB+@HG2Z_^FzbI?n^p3^$9VsH
z-RPYET^{`JES|0<-Lmh!;DC2?BM1BrckzcNQI2`e;Ple3fRmG967b34rGi>&M?0IP
zke(nB$ju_<9*;W;A#8u^ZRH>&WuO|X$0Ygw@|aNAxwwBDs~9`>Jz78?<yTy{e)xAA
z!~?ZvWiFrvs`pJhI+@;rl{W$!N0-XrOeV)Xpml>G?;{X+Qli1cOsjPR?Mk`qUSUZ_
zPIqrIf&>fK4VphN(2TKhyZe3#XeI;_B9gLydAC2nX-7M(I#7Jkd~DEpJRej1MP4tE
zg?n;VxacI%F^^0ekH&kRHHPP9GFOWt_D+|LfV){^xQ{i4`|xVC#_&8iXQd>D?%%L*
z!y3bUexfUGeBXwD(X)ox4K)0d!tjLvKFk;}E53*sHaC9YafA0K?nd8Z-$<9rzFDDb
z6t0*us|+#Pg{n_vZud=TfHBXPcXi0M2r2PV6B}6BJ^nqJKdAL2SfQ{|;e|lpFoc*J
z6a#++OQwfr70QsgplffqF5@a>BBd&id}9NCv#>GZm}1MO$BM<vmE*LUYjqOaSRD+_
z_a_zCG0P;+WVV^*1*>0qUENXjwonxgG%Zk^gl4)nHn~mRhWH4(BCeBli9*JZDjlss
zMmam)n^$rf^}1R=+(k!uL#kGNjg;B9I!vv^Y{`I#?3b;-9Ij|q0kfSZbe&^Op}?>i
z2gS2n&c3!J#23#_+8D&lklk7gl7GDxK=PZSO0gFe0#7tIItgg4LvHGHV^(LB=xN9U
z$q0=I+M~<ZCoywV@X!x;W}}A(lG!pu!-=lIWk7gHK$|I$PTX)9l&MzTb#veepCVJ<
zwM;$6Q`2s0iq{!2cRwMrM4&*VaS~*scI!5?guzo!P!GKtK+tnkAwk(`GZt;O$(!pJ
zY_AsJ{ps7XsRJcchG{qErfqhsrmY`t+Qk3Uw8MNd7vr<Kp+AH7cd%Gej=#;mHJ<Lj
zf3p0x<YxN7g8x=Pe9GGm?HZ&3QzopfcW45R4MaeYk$MtECPS>2O4lk#%5YCjoRLgj
zuLjuaGL>-hq;Gk3_D!~F8Lpeva*IICttAnJgbkE=5@p`Fm>nzbU-u!~mSw?4dvTzz
z!u2G+WEg!vcO^ds4BEXC3p=hkctCT(pX<}clJ)y@3+dCuS87-d$=RhFySLNt8p9Zi
z0tCxCu+`#L84w4KuY>T${FlgtT83<ZMS~=gWFK>7)^hezdwKr>-(ow}piG79i}FbI
zLrG##8-_sJ<X=QhBNZ|5E}Q^9=9%&<FHuST*vh)J(`e&B*svNQi%vzqTDfx1$Q<Aq
z$ch68W0{OuS7S$~6ThqVSyE-8f8*lRSo+sonD5j+a#`ZvVTM9vdb=YI*4&>j?>@~$
zzqnD|rpxxz3!7qT{uF)cTXu?7$t;vRuJTZ>5S5`k!ZHe-aFT^58J2iGXfCa7h=!C~
zxTPU|<j98fcSlbcv+RPI{3*Zk3m6I`s-~#{p`oeNM_Y`M8VL{)*q1Ez5NR%k2&62C
z%-vHEK@o$E7#f++WH_b6DV5=c+eRsyujmaE2j~(m=F3Kj$KKum5DckNI1EgXyr*GV
zl&ISM^@J6qhamD5Wg9K%wrJv@$N(!2$xaszvjAIWTdDLy0s)W2mu$%jPMpf&1eX%H
zOH4XsNAd|DEbr<TIj<wY(79&t%;{w3{5J`ZIv)mIh{%oqdq7#+36`^?r?>KSoF1<m
z+rE0^wgVraz{b)^cc>LadaqsQ`Je{@zGZfQYc`*zNB6O#jsePc>t&XX+4m2jFe#pB
z6p(<_ts(XnC#f9(f|N0sPW*DLXh)L#Usq+>Lm%Ig8xbYf>FZye<)$79F_hnS;^1}d
zYs=cIbD*KCQJ>gn<Cc;T+K{?0v)WL!sPBbbp^ymBC<;po+Osrz5Zul+^WZ?(-c5<1
zZz@n2C04!Z(W~j?)+IDUsJgYL+C6rhQu3tLJ&I$h&tvAyzG^FrQ5%P(2DKmutwRc_
zwn5%@ijuMCTdC(`iK$2MCG5;kH}`Eb1|xs@#9!X?7x!bv{Gne`&B;UMn;(L|25ZTO
z@V<~KGE^3ThKh}mgK1UazQ4<B>v&$pV<4tFmVI*-t@q83MQ*PB2x1WgEx+Xw<*s$C
z>@^v&pym!;F){7RgqCujE=@NMkqx;!Av}eypWxd0Sy_44efDGH@~*$~qvNxZ<xp<t
zmHfVoY9(EK)_0n{_+lL|ezHi4ErY&AyC2ZGhWbaU{u=5Zq+)A){muFP535h{brkPd
zlUM&{9*iQv?cu%+@u-sQtz<;qm-AHo?0)x|kVa5Lc!KKk6+)>9ND~^D9zVpg2>-xJ
z5%t?fDGL0fpKwR!=eqha%gZ}YVie-HZy3K}vh#ARpi;u?)-L!seUSKgQF+&|H&>HG
z)nYW9-}MjnA`I{eyd~C<o=CJ@TIa#>N$O)^j&IhrKJ`R>>V^8$M}51q?RY|JNrTeX
z{1EkRj&{mSfRdO=vOe`ONujLZPDs5YQN<UC&|VFxo5B}!yFwPiY)d6#;OB07Sl7FJ
zwRJPiknF-IWGSGm=F_Mcd^A&0m|Nl_Jrv4;Go%G&k<xyJ8@7EeJ+OTCx6IH8(uS1#
zEB7^sgMhigDmER2_@UkM+oo02b$wFa^_Wy(dRh{v3S#zO`D{oZ+SrgjqOKvDRHr3|
zg;bC@yz*NVwjaI11HhAsBt<cw67|urQOT6_=j<?a6WkI+KgKW-@2%3zc&!njDw2Ap
zCivZ$PJC|{uSowI6sa2J4g5S7c0Q^Z|FDU80{>q$s3A>lhII9R(N{=d60yfNH>61a
zqsi53vb%TY8Ctz+*Ug}1N*gr5LOEBifdrDfkc4)tm(9D7Ed6Qn)0dNr{(Eq8_$oa&
z;1A+wD~O~`Wj_hcEY{35L^jZ16%RA76Ji?G%SYnE1J$-%Ds3Y=M#BSyKFz4he;zx1
z95UcMW`ALw6dTyY&JbStj9WM;d-#v?5|XPm4})3yc%X1=%?d$=BgbdkfxYy*%tm)e
zb3^)YLdC1fuUr99jaqlus3-bL>!X=9gG7^K9=znF3F&P=n}Ee}<sB5LAG5gp%0KHz
z>ht8Hw}(tfy)<E$Cn4MYOUI@6est#%@Y(_U*MIs#{i3x8PZ<7u{h)^r>;9x|Ll&0y
z@0;I{T34UK?p)@MxkK*t^1h!~jFD;o=u?1RKZg0gD(C~gks2|vk2;~>1A{~5HEO76
zm0m*dtL@rVqo}m>rnZbF(?Qa8ERg_2C5GvXQ9}LYsuv|L`S(z&Az_{hnS4kS@pK9R
zE6h>0U^JRBUHL~{*v-ND$2*OnBBvEUq|>i)xJ4vtEWlWZx5ioAj1mV9*`y>hPDX@3
zyWo4|Olq0)p?HFs?RnWYL}}^SX@<FHhFLw+48a+T5-T}jLjw*hjZy5LJ4$#r%UI-q
zn5<J%B{nEe1ewiE8Gpb5!kHVjIu1m70wj#VqOwU(sbN?#D=Var5Fay9tkaLqBdyw?
zUA<IDrY5zdE1w<#A3o8xJ^Ki-oC4QsGXV_ac{g*FDc-xSUw15tntjhmEH1QR5?A2r
z4pRPRoeDBQ<MJr6<|RMlVAMhOmW1yI_7ZasMx9hCb4P&(c?JU*SA(FX)=6lRPBmvS
zr8>`?#A%!2meDGd%C}naMyhsj$NkltuGJ9ZB|Cg+ADK7N`Wk>28wk|L%V~5M*12VF
z?y^+WMUE6N?$8T*t?1XQTaMya1%My>^kq*yEJ7ulV%Lxlm?Kmg@$=)rvJ`P4=6i!!
zDAiPfzwr9rP;Pqfr*uh8txE6x&6+^KpS0~n8R|SPl}oLv0HtbOqeRCbX!lG3M;k+y
zyBlv6?XK#3G&{lWhc0E)`%##OBz=9%C$3{KVj*sfg}8Cs&So+scR>S&WYsaxm0!77
zMWyDKlG2^I8s$!wDVuXV4*EVo(d{v|{fiySyQ`)6*F9XHdOG>(^T|bP$b5foP;$@*
z$#swPRo16os!y#o4NF7VW{=mWAaTnvoNKGfU#(NM^4;XIj*iq_g~$3SB!&qI!g~4a
zdreVV!VI{3yG-M^_(K-<Xv4ig7!t|E*F|+~Jz<IN@H*)_(OJWo2g<M9jCSnDO*CP0
z%rJGg7a`Fw7|3hGQX`A3Htc4{M^;S*j*7LRF|cXFi92|0c&$0^o~OJv)L7T`ig5|n
z<Fb82Gk_MGM4Jq7sSV?iczeNc2=-S0IkiFW>wTRKhoS9aw!uOxPRLi#u5ep@%-S3D
z+PNB(`T2JRnhZ;y>8845bp9Zc&o7(8N6}He$>ak=Hiw&nf2@>=%P+FCv;e7^Ux)N~
zG9T-V$c7>8BR^5Hvei+pv8MG&*5YeXa^@uox+rnyb6$Sr3pNWf%47J&gfA0pjp@qI
zt4*+Ro|(Rv?gg5kTV^kb=ODpc7ipAz>?88RF1;zADeGEbx+pjyQgPSlLDUGp+*jT?
zm((qhyyg@<s*TILPp63I85C{T9D8?Mg>3G>2`G7HKtuE$_LMEZtVTZ?u#6rUvhNOJ
zDaku4>p`1&T(X})>GBv31?Gc<X|?-F!&kuJqwNh2bO0Q}sI?!3L*#+Kr-$b<=jDUs
zJUFNi<4TLtkd3yf@Ehp|{awDXCNn!oKWQC{oybCcz9vul&Cx`nvS;oO(r@=4`jFt4
zN<XXQrC(x{Nxx5OW9hdW^Dy=ORno8X^Rkl66s<yf>GvBlDueV}uW5PN2-%s*)P-hN
z4rJhEwy_p(t+@frivNvUqOzy|CFHC}`>sCx%aDWio&1eL?Q4w|YTr`=X4J2H_D|Bj
zWJg>t775s7EelMx8|8#uK*H23rC<Q`#Z-j}oO(I==?h8hyX0`x``v*n*J7K(jF{Bv
z`lg2HC=!{Pu(`j_BHY@`#!ZM?Aks6MC#Gr;I2`h{{Hx7m@jrvpkTQSK$Ko-HS8$V+
zve<Lt5KC#Y>rLKWh!Wk8cw#rBK_rf?JX4V%G9=yn`mccJ(CrMK2g{n#2&_{8pw1*1
z1>c6W@2ozxv>w|o3%X$KnC%8^W(nS>{}FiK7Rw5iov+7@JkB)BVqhYxG%?Qaf7%Z`
z82L!oVC_g+y_b}=V}_1COUAEeFT@$6HvvLB*)e+6lSu{tS!=@OKib#ik{>8e5}Iq<
z!5V^>+~>jH7oxew)`>o)xi~7d{7O5@Oh0<f<-E0~U2lT-myCw7&2d1@^@ywnX6zde
zod!S7=4_hlCtnBRYyjLrjS805_*jP0<;@bkTxqz+2D&~YvR!XD;J^p>*pWeh);fX{
zn(9-lz)wBgKvM=Js4Ddt5i007^N&vj{jQoB*5B-!sdk+kl5gW(54ZZy&>4SPjHdEz
z^<WP5&o9UY%!Z3tmTQy{%QCzAs)&MzGUpl#4qQNkvoRnOHHOR~6dq83Jomolp0k?;
zDYxMtprmDH<IjyL>AojoN>YqZV>K3#8mxA|{f<~bDF)tgun<#B5upj@;0fJRLFT_E
zEIbfd(5O({$MyrHlPv_!n~96!XHN~jb{)R<W0w)<l0ckc0udi*z$tC0DPcJ^GnJf7
zOe}gZo<JPEP~b0kBySw{6+C?C*6WvvL4k8bgMm{0y2Uq3CQ2t&ackkH9qqlhE|Mu9
zrEAGX>89#eh1>NTdFpDGF>%?>_Xc%!X~-h{QgvmOyt?}CHzBL^-s5#KWBrn<|505%
z^)c$|pYI8fW~_fSKUP<%{P+(N=AGBII*7IADk>BULa<0L<JIX<Md+|v^N-;GrHN@|
zWVJIni&`mwPJly^DuiGKuQTVqyKdds&efM)_O-Eha9@&nn*5-#9jn<gUZQ76oRZ8U
zo*fp=D&f3^u^pf3)dj;sR4wz{P@a&Y$`j5h$y^gZtFUJTl1eg{@GP!#9=}D{V8YgX
zZVl!{m;z?2p)!wcZ!^Hk%6Ma1mTlYi>_2NYstHQkYl7l9!6EZbAAKrWPP61+SX^Ia
zWrD0io>({{h9&m{g(XP5%Uq%6c;BS@47ky*@qWHIZS~ghb>DnUx?dv%k%3iNoAan4
zWA1C)PIIx=z@W7jkNl>0=&Ik#&=tJi!)!F&q)jDE_wTBt4+Sk#A}uM)&s!^rfA1_p
zExSjT^+1E!_@K<dvqvCqKwHsOCDrTJK@Hnilw7c}1&A}xGc#U4=`Sz&%QOCRHJ9k8
zR%flRW7cx!hkE@&=44;$41f87zns9uO<HCF`v!kG%wG=jmwo-E)?fbdn3deY-+kR*
zw(yrSf7#Gq*7=gN{N;UrxyWB$zZj8xk}FsoEm$A5^<tx&f_zA_*dDIPeIJ8mB+g=K
z8|oH6u2DUZSis9c?#&<Z6^nMZdb?dee|w#KpiJMh7)Ki0%DdS?6D2+@$x8vS6PvzW
z8q29P>v5z;elTK3P7~dB3&bR$_U{_uCEnyA)w^ELTT0i*i`++i@<J+?kb=qJM5n4J
zUfSI2ZKc`L=5$|u>|S}j@2u*7FRp&7RsUtEzEHH6Dx2)9@3AbecLMe$ZhCR`N~?ad
zRc||$s>6KMp8TV*tmplUt8Q#nYkXC-N!cJCJdil1JbdlLL!4C6OpT=QQg^e`C12*j
z{P5rgJ-C(!zYh<t<U!_8X^ZH<Y2n#4JzHh2*MV2_%>6(QdU)WLUdXQx(Wb@pF#Y7>
zd`ZjRl;%;MTz1*3N-+80PJi$Z0zi2io%v_zKXZC~C=i0aPK!r=R&D}a_od^-qvHO{
zujm#c3g}Ttr)x8NEI$M*k0go;8^eFD&u#-~tyf93h!U4{n!zzLF5)xvm#yy%eT#4?
zhA`=zAdvm{9^7wc0Hl+EY2IM_kM}h{-fFF>RcTF)j%637Jj`khW^Vi`F*pDfCQ05m
z3EZy5?`Ufa?~l6j;&-$czx(h9MQzsQ-aT9Vt}*xSuEKYni<-@F7J%KavhTPBdYVq>
zlIq3ox(fitAORz{-e>Z|4$K$;U+eiE$y2bY|G>v$lk&=KD*7HtXST@sz6dtKB>vC)
z9?7?|MTT3E0lr7_DtPf7c{BKkB&|S*Q@Mukk<7^!xm-w0D^fJ6iH^A1_efgn?eh!=
z^QxIwEy?r=T<cnho(x1y+k!NsCaL#he-a2Y{(6X1XZG#B_EvJth#N&;+xHW`9&(LG
zlf_4rv{2r^T;>R{fO7INeGx;p^s95#XF;o(HSjy7Ka?CWL(EERgnt{L^v%BXultwo
z9-wrSFMX7iK7f%}Jg$|tCl641D8<~7ZP3v_yyWqGRYXr2&reO_CszLT2M|G`16#j(
zIm3)eSr+Z84CPk4Ex#EjS8)r<O>iK>+!q%2p)sD<5!gAfZ$ql!(j8+7hk}lwB&D;2
z+RJ48POKm=<Xd{2v~yH!J!E_ZTB>?w8I|K5Me#QXH0I7FO++TB;a2`acJOLW<h39-
zmECjp=-Ix1x`SH*hftK0F{;HFic(y2yIP9i^^q8$GygnB;2?v(bM<-UUAyqMbM>^g
zlNs!j(-RDqnbU!Rj9zjet8hEk<|VsTCuL&C>9>lp3cFQSUu5h){#5FC3Yh8Sbj8lq
z)7!|)Rl`aHMLd`8DqMu%iKu$r<I2yg=wf}%{7}9tF~ERk*R-o1T~xSh_w)l|EJoAu
zfX>I6v;nnhKp}MJPPGBqK7%?2yWV*Q@PPg*Hx&;cHwm+(%@3uOE(Re)u-j<S1_n2`
z**E=oD*SkOjZ{?xo3F36eK~9&+@k=t8l4G)C~^K&nHn-{0GdA;F|vlCVm%rO1}%5A
zRzKXOBiLTrB~BW0KBV(rJ|_*pPtz}jHb#q=YQ;;nLQ!3E-BR^vI?DaxI`77^zq+@T
zrEm{7-bo!aUhiKbrp#n(5C<59)K=$`(HyIpIOh^S1M(1f1w;*`{x$m<808uHO0<A}
zr)&SjmyYj?pX7~i=c4f~41=%MsNnMKs2E9-f#i?msi_zq1^Xv}bB|9}X-ZJEW916f
zNG<RIl*nHpml9*5bIPw)1gdlOspVZuDA>9BoK`3yl<ruf%CLOM4G@S~)IB&mdfjzo
z?>smI6}T}*hN1yvNjvQX0@LpDsPgO6L|X`Ym}!+>nwaHAu@T)=xR%`pCND<QZiUn~
zsBadWs@#~5_%7jCkdhs)Mt6$DIE6}8s3o|SKAw=c{Wi}7NnqBZ_oc3Dr$TOsrC`WO
zj1s4uAM-@K8mqP$k{>riatn7Ic-$O`dv<@eh<g~AGfv$B&X~d+kay)>k1%b7QhE3B
zHmiUYrYUFDLs7~&ABy6?X;gF1E6l|A$+KSyDHwm8tt|<)Do6z5k7^^%z}BZt$sfP5
z?&1$5G4n@K&~6@FG?G&_l14_7xk1CBo{hR#x_Vd^NY{7iE!&T0b>tKX{_C|lRx0m0
zQ^mmKR2wz~X~L}3o%rLJ=Xu$bWqbs?#W_gLzcbs8C*zQkkGs84#0Ck?5Fy_XZklw{
z!%ZNmJM@!G^`&|rCFZdi!G;jU=b1^p{H~^$x>QX8ie6vsv~0D|lM&^){i<0nR9oh&
zJ$mj}66M!-Sszh8cV0eHi9$2}upO7)y|`AKNrF(H^(b+VZ4XgCs}<}hG3l$j?isnh
zt~Z*I-?fCSo3;urzSvR+azy362!VEJ+eCIOV-8De2P1?foHvJ;LEA=^x1S@he5s5X
z62?{?gj3MFqO^8~qh|AE%+v2Nx|dj5a3`FF3b?{2BNq5i(YW~h?&C#^1E1eb^Ydxm
zczMS_*`BhB?2H~8L;)v!s7Ev~$F5jZFeg*DvFa4Thpmdv21*ZGrk9Pu1el6p_{J*&
z3A2oBIsZh6@|xj!=&4Wzm`Bvk=Qz%e=_>a%FB304p^pl;I0(#Q07i*>&&o%xqKwJN
z+E%I|v{YmRT(q6HZ81D_%$y`LxNf$SG<G+szM!UEjf6A7-E(Jv0T~Ul5DN5f`4!ri
zj}ESrjWAj^0)G;v8~fvW+`;vJ#-<Z$mFT6osK!)L9ez~lhkM{=?~GOpAUL>Xr~Ob(
zU{`;hR1?9jCWCZ!^#!D6k0*V0ytR=o+h(vLKss~Of(;z}I@2q2zgyHEyWd`m`hL@G
z@=ptm4b_bJdMYz2n$K$**7|Z>EmK=^KdM~xL%|&7smUlxTjE}8)7dX#WF;!7tkPtz
zQiIA-u*wf-6BL%J$mnneA|{L&P5zIjuBOF(*`_bJsejWK>}Jibr^TdNYm`Y7vTnDy
z+h$(oFB`T1fd2mY^y8R2$lA?z@e#?}{EM2B0|rgsD4FI_Cr8&2$XjDDd?4}3=a@Eb
ziX(hCbj@p=2Re%lsJnlkZ`Y2z*|7oj8Qu@hR&+l;9SmGk2=D2~)89zZPPJ$U()RlX
z5BIplq{MFm7}C4BD2_Q$kPweVE>*6jaIfu8dx*q*&F!EL=OiPJ*w^;L1=?Qt`=b88
zI$q@-IVvwsqA(Sl8w)QHa;b2?(|ljZ#ABVnUJbZ7gZdXgWDx6(S50p#p1+Sk!TJb8
z+b|P<i#6|nX<i*s@jo6gUDloF)7M&??C~7RsO<dceEN^NYMN#3SpIb|X|>fzCapY+
zBqpt05sCKIDML$F&1fqln{L&_Re=Mb?UB;>)+6JUtEDLIt4Jr|tWhplvvNR_vZzMV
zL>J3!3W3;SpOisVS(1=$H@^{4=Dxp=PyOY@J-oo*s@sq{D(av$GY}yP{i4(02UWSH
zr+AyhL?`4XUNbgMY<^0<=rlH7J2U1rn?&blgUe^XDa{exZ5ejRcs|##N<_O#M7zp;
zcaBzw&n~gOjoRfJlSh<zx}bdtKlk(g?RSqd&7`B}2t3Bs-TRi1W>X0cEEBLbu2un7
zi=UWAqg59RrOvK%!%E9MzjmU-w{MjMiW1*>N>lCftF$b6v{PQ+T8QBvj?$C_nm;%}
zQ9lbWh3umY!`~N?lTOL;u!)=CZsHpIB%_cwoP)>p$XdZ87;JSy6poJ3PRA0Fl>ENe
zXZb_OeE=$oC&F}{o505e5t-ymsV-~u$${JWZm;G9I$^}pDosWl$u-^sR^?t~VNaw0
zIW_<_0N~r4y}mXdc_pt+JN=|zo3s9JZNe`iaFGYXNUjkCv?7myw*FBdpr~^9K>|IN
zlqXQz_99my@y{36^=*=j%zwfdfBIf8a9WHPt~D>E6?+0Aoo|GYrOu76iK){xJ>;pF
zL)eX7rwZPZzO}gGvMgE8^{K3^v8@t}ZFn+h8ZF(eKY=R6qgE@eMxX^IG#N0<t&Mp#
zE4WTjTEy@95opEf9krW;s8UUYR_a9F6?QW>K$5d#7y#$Zf3Z$>g5-vV!PKhUMgPeo
z(=R?VGOZSw`hjEtv+8OOn9T14y(n??6-5N;%Znf<AMw(<%w-g72=t?z$bo1wQz~yu
z+-QUgHx59!ZdNnmx6_-nIr}5(s#%ehzh6UEVAA#&E;;sCSLCn1CQk2B)Dbdx`QX?(
z!suZ;!6r7{^6opW+c<$zr<c#&bR%Eo4_3uQrBAL&>WJv4SJ%+Nj8X~d)2uQ{$kw^+
zUO0^WJF@?>G8O?Yz}$0e!8c}9d#Kg6C=Y6EBaytmtx-hsJEgNEzu$j_!aR}(`6Btv
zSRe8v&jaTA+TEVyn~dbUjUHMN`%thf+&q5TGUlhWxuD*1uM3uYQWeY_gd~b8z7)m0
zlFOO$<SGioJagaMNHqCXByY__1-&9?NZwPDPpK&;d262*lOp-mM*o526*!U-ZL~P5
zoqi*d-}sAuB!6XJ9?5U~X^!OmK(ZwN#q2_oKe@Ar<b8Qz_EhZdEXnsW5|R8;8&M#`
zjwPbb_~bklk(4(I4X@1K)^lbyP}Oj1w&=_axssuAV*J%1Trpn{-@5`vIhZHz*zfUc
z8Hx1;{Gt^EZ?DYs{9<x8wZOJWi(jN{jQH*jxX6Oy##tT|LGXA!4TcSZ8cOaOt~N!%
ziR;%2<gwWh>jPK&J5P~SVuofZQnQOV90sD-_acjkepKiaBpzlh2C7O%78_A0ZoAuK
zqMvF+|L#B3g}gb9C}}{}CO>F+p+Pn~q2Vz{K}%DmYha?5SkB|?g)~QqzNn(RDiA$I
ze3&ETDd#l${n;Y%0qMkXIH(u!m>`j}0*<|Q@DZ*6S2d_;&5Cd}F^(~^CIFPFHEX1Z
z3Z>b?V;Dhlsb%)LKf64-{?<o1y0&rV#y292FSFQ-@+;em=-QVTUC%xYy4FXklIgnx
zy2{g)&wNPRe1&0q1F#vB_>nd(vM#YQE5w*l;!n3JF@QO{z5ep@Iw`Mb{fno6<|VS?
z1>QKOkikH*f@5o&yrG$M$lc|)cykt0PMVTg*U7v~%33DR@r71)H_Y=21WTw9N}l6>
z`Hz<wc%bi&B_el%#`C-lo<6|{(J&7_WH&P!uZcLimR!_)Gsq|&p7sqNHbBF3+@1qG
zRV&Tz*iQKIdBDix;0v&&yY)C8oXju3jFA1C<5yenwNFtMocR-ggh^sLW7Z7<XnIbM
zE}*1qjFGvFQOV!4XM2SMmB=Pe1)da3N&>mFSG{589#h9<kf!K<*&6KMcq+7MHse?z
zNh4M5YUB<+g{0wBtC5kyOfBr!cBwEw+7urYQKe>y^V}|qP|R_MKZ_#Tz@IrDrZa!}
zlvenRN8+k(Ka081mmeZ;p?26{j_bW$*qs6$baGVD9JjFGUWF*h&iy&=x}rC^Hf9#S
zi4rewr~xt>rdK*bgO25w4zA#QYQF5GAu~@ikaJCqDrm|*F&PZ+4$8B*)sGy0u}#By
zle+*+j2Ex<!jXsw<6c8Vd<se_DVNCEC)&!$yTm(Whrlz&ecW(huAnwjR$i@)UK54}
zW&uD9b?C94p=`CVnu;avykoqZH(E2POGfc|bTTc30`arkcCrd3ez8_xGd2>6<Icx`
zZyE=G^0DZ-G2LEA!=0<wm3JpJwA3@nMXznZMu3DGY)Rhvhg<x=<frc-!#_x{!H0+k
zHhyx^x`UIutYMs=|31X0MZPw8m)Ry8B9BjF6s;P1p*8x}=?v-ZK3k)YD@#Yjqt_dt
zGcW8{AQ9F}3<eAOLZGqMRV9!tS=TrhVg}@fU5O-qHLKw&cS`_UpmyZ=av=)Qu)+`)
z5ZAFp_{4KNgj{RQ{+{gYQ_m(p{SN@xYH;%LH4<OUpG~E^d;quxXFi2wf;O;*5nsJ(
zI5g-kIu^S6J4)W@s(_wWc;$YESMEKkg>p9uA!AtgNVtW%DkQL_DeSUEpY2eRP8sSx
z19cyY8lz!#+WqqQtM>JgMVSM6aumNe5ZIf+(=oq`@g!wrq%wBvJUq>^&H|nqB@+x!
zC{|0|1WTZ0zKu|xNgj?W-24DxaHIyP3lg{6hG80dDQm5pOJl;{_Qpa-usiBUSg+QQ
z=n==t-Mpn&9D&YhE-CAv`&nZj3*{~?zxoHd%Oe8cMG!@eYRQOzE<^;s4I3n5A_#I7
zz&wAHXS7^6QUXMVRf*g4EFUYei4hz7Y;f!8g5^tjF0_3SFDr5;_j;*w*vt7+Cy>V-
zw3%Jn8GsHA;n<cGV-rU<FwZ<VXet$p^Qf%OhAiz(zg57Y#3i~4qB`jy8^ZZu=vnnG
zQ@z)&UBP7c3qM8FTQH0$aaCoWfYs@sIRP8bcJfRAKW952fMy3qjeV8C5ix)kxxpg)
z%r>yr0QCjv<r=Mwc3nd~_s&u9V_U4rbNs0DANI?S4@=Tj5eq82;T^0e9YTgsL2&b}
zpxu15*dDlD$RzFSbJx;t-@?N7w0;k_Q9RnMhIsQY-|8Q4zUucrakPVXgWQYTk~8}I
zllW@kwXYL&{$kuJ&OaQi^AE4!*`KcE{6jvDMELn=isyx&w@~i|>-T1ltPz)Vu7nGe
zb`#m30b?|6GlRbnmLA<C+kpsuiK!t$iT5;OK%97*T7_$qQX_R;2pN=C)@C>qVucUg
z`@i!h<jyKhD#y_YD#3U_vCc~97fk?EcmFWIl4ATBh&}LfvoA5pvH)5&o?yAuYEYwX
zK;1$x#tGkVlXi;sesidfug^LUA6y!IfOO(w(~M;^b%Dp0swTQX7W5qV4Qw1)D2-Ss
zWGGo<xmFg0RsyxD>Kxbir~Xx<y%UA~pC9)xC)0ZLjt1ZVEvP=n%`3Q%r}Nzn3#PMU
zzvjHvF~@zcpt}3-k<fZ3);&e`47RhD!z>>Dkp|VVQc6WCXtbd$zTRy?S7u%0?~T34
zL)DF+{5oI*wE%2J|8iT0a>Bm*xq6CPp(Yj1!_kqK#5ghsPu?9Ko3Sv(^GnvmC3$Zy
zBTk={%b{veTm*p2)fTGFFGL#H<T{pUu8ZA^6M)d$Ijb+nzY(5J7CxJ)jgFO#*3^Q~
zYka-icE<Fd_i&PVEpW~_O+6KcMF(eJCs-0=h?XDL74{m0bz_V}rViY8L}CTFh1PPj
z-8?X_SYxXA)j;PA(($1}SzdSxaTSlMS@QvURy5b%;<yOV>$NGvD7peY19-<0L1MA{
zWdqQAC<nbFdwI1du9UZL3<MBYyNxScv2RQ|%f7iwmJCsbIVxcKP9h*m?0a~zigtUS
z8f#{tW`;sF=VE+K%UAW$aV)hwuRXlcan|D2oXk<G9WwK2n2%VM|48mogEslT&5wFE
z*z++I?Mv>V0LN);R-Zm*v(gE&*|ir>n-uHJemyLGO2ycY&)@FbVMKYiGD#Yu-S_+V
z;F1YrUMlZiCJ3dTE$?dM2c_OUeyig-0!>e&%44?PfF3y(>;UfTQ~zz-C7HUQG`;r$
zZ=hQ~X+ueDpE*e6=C=nuP39xJSu?xxh^DUHVR~12_veC3bl^re4W_AAyyrI|^-+2E
zzj@JMi%l$uba^-<s%@<)N_>#)2fj~!5Q7h5F*%Chohe~Fo{>zfVEyBDi$?67OxeP-
zff!@3ayExy$DmXQye<YCkf{CF;F8RRPy^dh+~&-nZwc7D^CoY3x=lkmkm3f`TluDB
zk(TYJo*rt$=NQ^I*S$E6YEeV#wah<-i_}MB^#Onq`veSkeQyH0d+o`c>L{vQyVVAQ
zXXY8}SJ6asDG)HOWShJ_5j?kSfb2}}qvHBz^20}%$)Ay%;PX!FZ6|B~S!Q{--fgE_
zxS^ewaUwzSJ=2siXlDjZm5L;+l{otcdDhgistt$pR+dF<&6xoTnUuJ5{`(f)U=)j~
zM|xYHqOf<O^M+v1Q@>gDOWm9juS8Li7TOu+T`M<Zfvt^q%(KfoNqF|y{`L>@ZiZ%M
z`rxpH=C!g^`~%CD=!#2XR~V^6_hQ+<DoBQSYiGDZYfgr2Ckoc8A(B^b<;mC*8TYev
zA0>Kv1Pkn3-LhnN1J{z0L3(xCje%%h+}Y2mbksvI_%QoQCrf9`#Nn`|!L>z=^iVY!
z&GUUh0`7?;-?cL@OO;c5zqw9{BR`T`Jll4MDZ6cjde%_@ZT7w^yudZo3z<42!iyd~
zpr$DkYA)2hpsrC=2)nt1en#8o&1`%H>8(PguJ=OEbrr&o7L0vTN08V-{A9K^DG;Y^
z=@`-|aogEG;OG7wvSjEs<dp&Z3dZ8K&#F8G{E7@%FXzji-9pfuo!x#XpF#K4y7JLX
zIR+!`cjc6&gLyUApXU?l^bw+OR@|S25TCwiYJeshty)v9$~9TJ*`^ICSEpw!;n`GQ
zu2Iis=r>-W34U>FT8I0Ydk6wG8{K$*P%fA8gC%wS($cr)`uMj3ntNEY1dCOS&2f_O
zc`#TL6CpeV(<G4q`alO~oLv2zP@_lJXh>ah(TW5IW^I^G-2AeMJ_PhC=|*chN7uiP
zo74v7<(acgNZcB9R{Yf=$k3Wid~sG$q}I14llL{t-;TY!_}JJmH=v^y`hJRp`-inb
zl!y8C@Gvij05DaFwyIt0#&YIc6(=!qaUxpL=BtTAT5@PJTNr7*JpiB{N9-E0=tBa^
zL~riuZ6$IQD*n{OT|BnHY!ER`15dw=3I<lZR{u=$VLnMpKqGZ_?aD3|niS!qa6HD(
zWn$tEf>w8|l1(nyyfr4f`?I|3RAd$0-<vs0CJ<tzhb~0_>Q2)&{<qG!nW{IVc@qX<
zog=9WI*k(1dwD*5jT-Fd!@v5O7rua0N^*Vki$l<}2b`a~_)x^{bpz!0$=^Hy-wf87
z0@@<`lepl-ym4^?Nr~I|As?*`QUjl-ngy0qUsU8(SO#Eqf?!fYs8QZaNQoLm&wW>0
z)G7DJe=<PIWDMtD0lV_K`JWHTi+7s;I8Gog$bZ9&eeqfIVmSeI3jKHTwKna4yurJ%
z_waI%>;66)9#<U8CdgeEYyaa@__B|G_{KUndk(+e?nDqqiQi4k(}m+S*FEeQ`K;5K
zDtq@`VqIlhy&w~zy!*E%8WJmbNcDH~H$m>8>hC=&D$c9^Bdfmrd0+ilU%kUuzvRU{
zNDo)_g`s+YbSiPMswaM`>IB*cTlKPU`RY498#L5@A?*=Mwd_x`^sqEtc^Y+Wy%`y0
z2g5{_hyPp{)7Q|F73s2Zz5w5&Z@Y|&d)rHLHlwm{8)c%qA;?mrOtFOSq&~ec)DJiI
z(*pWTB^IvKaNl{(#20d*?Dsr)AhFvs7Ac5vg#~#v&$V;%+%ut&m$gh8CI0ravJ!U^
z541|zW`cq<VG?uoc)UGc=9A*118YO|S{`TKmuQF%+>K{$dp)?(KiFRnHqirZfO4&M
z{Q6bCC+cZ3=WiLkJ*F8J<;+Q*rO=^pA=EBKy49|JVbTyq06l-d;M#8%y{q;jMygsY
zULnwZx5F1QOGypTgXEB`s5^@rsLQ?kW#PNdMUBZ+Y-L@ZeP<jAZ&dpnxeE_w>Jq($
z{<qEd4$;&A^UduK#9j?Ka*vjGDd_39?b+A%lqYA0(Cdpc7jv3E&c~+NA|-0uwtG&h
z)?xJBPQcX{UA19Q50=@3BWh`cZl-d*n1lY;aIO(Ad_R}_BFUodfw{eZM>O%O(ax4g
z*EMpW|3G{HWC7Xw0BYSG$6B{kOjW%1?|}GiD{uF=x3Z65WJZLDi}(KR6*L7+Rk+Rj
zm&@P#$GY8tfSk)dM#}|tpFOc()?nsgsFc#S!fLdjoLs1_!reSTX?Z!W=Rgp<E5CB$
zwNQReZz{y?s9q!DzTHG=RahKDG{4&9pyfv3M%(-EF4B}uX@ZPg+s@TPXL68}e9#<G
z)zEj}wfX+G(UbXp1v-VV2a(>YxO_BrklMPWNepj&+ZNyxE6}}r(cMfrbK^#HHv}qp
zpl!JNgnI-!V*YkYj~g~BtC`#8a}rw;ii$OkZn3c9Ti1R7@Hrt6et=Pq-y_ttP-Fha
zHlo#zmENjc;FJBL_?l=tFi%wDag@0GZ_HZ<t-uv&WuU<tMgN;6iqfyMW|yd0EDbXb
z%%HxzW(BQyn|Vc^y?8D;wK9X8j>nK+qhiU_TX{u(FIi~Wkn+3a`ltwY;tE}JcH(7m
zImT8lTuv1hW@L`loH1g0RUC(6sa5OphBQ+cXy|UA{ek2nQCbdu;CuQ+=nE>{EsihO
zE$bg&{^m7aG4IH`L9SsXO8E4>$YS1XwZh0{Jk1Lu|9d~k>gVgD=khB|mld6#pQv~X
zb;2~wAV?zg8W+1Q7%YTjQX9=UQx?wNd;VD}FdK=QOPacY63mPgu_1}=7uBTvVs$5P
zll=3u{L(mr!N{`gr*FzOSo?&OdmEl%qMZjB`^ZOhU@O1f)u#Zq(*d~qcnrT3&db3M
z`dcdF-RSS1%6sZqc?Uho-(9FH^k-KLzhxQ$|AI}qT(805Qe9;loM&lMiJ^4LsT-@`
zka`WTL20kGR=H`HQq;&SDcw5wv??Sg$nA5vn4W3#K(aS>se#$o|5O08W-{A7`Gt0A
zzug2qq@;ehpQZaKJWmBnf_L7=)erZRGYb;iAmbh?d4^b)hoW6hjk}9in+cMsdAgC2
ztpUrzPA8^4?yaPKOL>|OXTrl4zH}DnkCK}0#~(c0^sF9@EIr42gVMrM@y9&t860IL
zY~zU7`{-xBSXffTDD2unp$aIdMHTb(@nA$myr;JNW9vhS3()BhpEl$ptO2Ffnm%hE
zwVE7kX@XQE!6K`=QdS+CHTHZj&$ht8>hc~muo!98e2aSSn+dMTXuXUQOApSIV&>OE
zg6dbJAIQKfxlcS~T2Kai3<JD#(W6jcgh+QQxS!*iuk+b6MztMFM9hm_8rLI_5${F_
zXf%7j{)Ym(Dvj|%YgU5RORZ#lKOj?1Xo=~FIbcIr#({-pVzVgybewD=Mj5vOotrRB
zdD##wx)FExcXEW>Dg%%0K?<(j!hlIC`j!9ku0DG-7C~5m(iJ=wN>}N1RCaW?$D%mH
z8ZkOM@!evSs+wTybcM;=?LOXMXbA=(kugeqoUfQ-l&-J}1EX|z&M4RXjjXY50$FEK
z%9>?Btw(7zw?9f{pl>QI0?6yKt8R(?IIvQW_}+2aFT5=h@R)&T8Q>k2{d=LXF0uwy
zb^68m#E<$h1;MJY-Y^5ZB~n}J9!#%E;d=u1xfW#^kc)aLC6F&u>8R|L&K$^l^vFP-
zv20Gk$CFFYg@D|2VIIh>8KBi9%r3V!6PF(_02lRI;{${I&U^lEAm8T41Ash+qU`cW
zc|8xc5+Cx4Ax|mHaW7swKy3`x8SdzrFY*DzhJWE0riazASh-0KH_6hzzsLZaA+PK?
z?9KR9-_Pc_)Id$f0~%-yO#@cA+{hq(Rgb|+x<+z#!5srL-hZtWi8||LuV!dOxVFe%
zk;HtfBS_3IGR5qrYGSVzUGs45o3U7S*u)VfuG?<_T>AzF#`U9j|KD)E2ey&I_W2Ss
zpS_e|QYA=4i5KR??6vhQ&tCh68RW6oIe*M!ucT+MHOu<3*9Qh%GFb*>qPhUsMr*%N
z6-Dg<us2!iXg(9EngE*&!)muqf?)|0HH%)&y5!jNF#`bBH!v_@+wSs{KxF+-s_5yf
z2Ldb+)1}GO<9+weakmasfSArjK8-)7e-mhu*gZBoiK|<-A;a~bIu{b6lWCQi!~Qt8
zc`X*+H~5ujyz(<=@0ovOg1^AuCZ09){#-oE`|QNCKJ4~pb7qOm=EQx3ttwu{c0S@X
z@-Vi1nI6ykh(GflWFS%EAxp^#DzXg7yB&X0z*woWcb=EI+OX8j)$K4>ALoIaM<aau
zl1{L~r(o%HvaODI%B_0&SQFOxi*EFuOzqo9{DS#JT{ZTpLbG34lal>9!=SXl^Cb4G
zXDW1<(F8)D?OW;ks$`0M*~g`a(3uJ!f>fNShd8kzs(eRAx}pOLuey00pP5WcT1dZR
zCsxpuw-Z<7*@^ocAI!R_?45rp_Zjt1qje@^gg;gD{IE@m6mU|=yTUWpw%<;xlkh<L
zM{9nHQk(jZeXN}0Fah5`HX^Oza2^b9Mx$J@c2&<6|3<cW$iaq+ZF}B{HOYo3F^2DD
z@R^Ak+tCwFu@@I0AFJH3yEHU5g$Y`<S|3d(W<6jLHp1iM6m=b%*;CqBH*Py6k#b-j
zw~4V&;07>w(OiFs4I!b}<`9*wemFo(+FO7zD&?lay?bR0EdLB(-FcM<mOa3lJ&}+O
zSf#7Vb01Yhn9z!v_yrZU;%9P*okymbJUG5|Q^u4|+za8Oh=xJHN83(5R$%%49e%q>
z--Y(B(5z_5FWCh}H^+!65Ld?%(Hs<;`00{7nKGRA-9kP?p$0~Z6zJBs!W#z3D!)+#
z*2w_Pxx;n?jup6PMf^KSg*#U^3%gB<nK!9}sbN0=gsk|gSt+tV2|2mDDu8}CTBrL7
z^-YBqRq)J^lvOh|gr{P*2&RchF|y$rqUB!18HZ7#*-pU|#uQfEF|=GKM!}LYu(1T_
zju`2)EDZ<{kXXs=FKbfRp=_hoa+iS?-Bt@=BlQe}06)&!)?7Q6H2V!HdV{#|PXPXn
z`JwcOC~vqD1?~F3wCSGyCh(qv&t3#?6C6eUzNr$X!5CX?E^ad4O31?aIUB8vwk(X9
zyHb9I50NIdw7dr>ybuChq7Omawv#h&Xim~22koP5duI%73yT9N+6>U9O+ovmoz@F&
znhenPIC7gp8HLb>4D7RyQ($XFF#-@FulPych=$!KdXGmWf>&exMs&o$Bg*0@ZQq&5
z$9eH6+~{3Ej?SMckpHI7W=igVC4O#4BW3ZEF@B5j1HYu}M`z_BcS>)z1YHD)$B&UC
zNK#I)kYuJ?RJQ15DT<}#-FM_Lu06i`Dyno$eAq-OONq^bO_NaWo)7)gm9!46Qr=R%
zZS_*y*@0>R0?tOeT4&YRd*ty-YX~r85fh_I7OB;U62mn<MAsZO5G8(gFP1mA-VDwn
zl)j)0ZBEG%+wrzE6r*-0)gK78Q)~WrV$=5|)QG`yWWUkI!-U(5#+M!ocv#@j(E;iD
zks2znG06~CnW-b#Sex;3a&~%Iu%8lUQR`(3U^iZ*;Z_YQ<YCjat;L71CL41+*yE(E
zV(__nJ3*VL=hk(K<cDp}9^ecs5yD@>h!}zi#4I83p|T@E*wAP46v_w{X6_XlV3j*I
zY|SkIXHw}l5SipVj679r>kryOH=bt;tH;3Ei0ek_Kb5i4%>f-Pxe9K{2<9cdUT97h
z+mkCj|IyzRSRZ}VEF{x&mJuMXn2!R*)9q-T)~o#%I{$oi-%c_;n(9ej)6vbz`sipf
z*dFAIb`7$ZKh$>|C_qsD;qvH=|Bt<Q509&=`p45|&P)V`L?BQ>V8DVEp{7tUDCo3l
zn@LIAX;a#ADa|yQBtw&#>0FYOYf946FpLC65KxJTT%=-9D5$7GuoOfH7rDqSpumX*
z%`0-3_WSv)wa;WG4WRG){+{>uhk2gN+Gn4AS$pku+iUN04toS40vzWG?7N^<4Dx-e
z6t!@x`~Bk54PQm7^p3AIt=}1r!ja?Emh&e2yLPsh_Q+9Blux&3zOsI2G8IdtTXENg
zyW#X|gMP3=y^1M;UYySW#^_}?)dtgu%b3W*Z^U=bzD$<~TB9>(uW}MQ#*+0=sx9~A
z$=T1=<*QJ>NtSJ(PpAWXuR|u3E;CnU_7a|%94}Gm-+2#~VOj8i=~pKv2$nG;!60N{
zG)9@3Q{{~*q~yqp(6y3y3W?I5ZX(wGzB|2u6l-p1jiswf?>Nr|@}?Wpl@7^3n1CM>
zQaK^bM8gT;u*;?2QtW;o9~60=ePzB<bEmZ1xGKqyv2A#g9p7<Y3A$)pllqR92U+|i
zP%zLt6O$rOh+8jyR%xgKL<^|e-@?YfQf9;8`3ErtJ|X{*xu|P_C0ZF7V)*+*@9rj3
zim%IHgZQ1=-g`zq4V>)Fhe9sic21A&vcAfyJYX7HAq9{Jh=MizdkKp_LeRShFsEkC
zShvoU?5hNnUrhi;gMd>Jpp4HhJwg!#z6O1;C7%W2VSo?Bj_|NK<ZFoIkom+^Qnj&!
zJdCHJf~fnF<vYgCgPkOm#RY>VT3)w92m!2!K=-@u(w=8I>1Y&kh7!jXmH>8`1jwx6
zMu@)k_c)j4@Qbp>pDVF<;!Emm12{=wRNMo4O?cha%X!L8o~l5#dJbDB68IHSQ~8*%
zo1Q4#>PIh>$($_AL+p_q`Ph+K7h?t|Ff4J1Vdp)WlJ)P-4u=w@8}`LSm)_xbHJup7
zm8>bz6c`2M;Ojn&18M|I`W%yKZ43jdk|#ic7<X={UUSIZ#1B&Zd&rqix<~}{FBTmA
zJEl=P{g(>a?;i|?U6wOY<LuK`^1-<0BdnIkbtdgqJ9Y5~BAf$%*Sh3R-Q$p#!)1@{
z-$n-`x3zH-4%_Rhlrt&sSgs}eP{(kIz>P~Lrbq%4)e`94!>}%7bL=3lJnfc(l)~BC
z@MEdvqQ{HQ$l4Hm2niRb4<D#1Qm0**kG<K;7mq(^hzBFA6Axwt%goRTXf8KH9;l6R
zGbA3E!$T$p1yvdZ@8H1*uxXqq@UVZ*;~Kl2^&Yp4><w8bH;A_`oK5X+Uy1SmTfJqi
zCvxA);I4euI{ZFT9yGPTU4m%PMbu1t9fXPIx!eMaJ#N0Q{4jg%hi0MgpPLcU1<)vT
zIe60WORSmk?s31WsbC;eULtAPoPZWWFhS*oaf0lz4R^VL;>@Y`{vW6kkOrYOaOAmq
z3tUmWje=({si^J}Z6w|Zm-50ja3C;1Kd&knnmH6+;56|9@lnG}xl5avLe%tKg?O$s
zYaR6q_6mh{-9JsQ8Sm4#OK&)8RJ!2^(^EwNA4^1p{)5X%NT76^7Aj$(QL-BP^`j7Q
z^xla=e0>p`eQv&L%JHgJBoo|ONo{PuiX%T<Z_x9f!Kns&Ym5Ry+{M->_F0Xg&RTEP
z<!Q$PWpcVqgA-H8XTJ&bgtqrD6_R%~fZq0Lb0NjpVR4E1yPMco*z-&#4~g(S#rWFZ
zF_JYja-n2NxfS+7lKCVn1?*3nN;6TS00(C)b<EdSMD0ZffQ9GhbQKwS9RJp+z5<!)
z+QPnqZOJ9Q5NqWd%74dEZ{*t@&gpwXb)j1Tb%N83Gflgc^|s&1z!AhXQ=a)X860}X
ze({^iLcY>1MVQF*?nK{A>@A5+v~pt(Hn0G9vS~k#AHM58=Omn}dXFCKg<oUWpL>Ky
zx8HtRo=-jG0e-y|9#zVP<0-cb_Ba}Uh<Y-r;q0TaWltuWvi&j?>H~8R-9aolQtRbk
z5litSWcXrZL3HL#u|J!K`N(`sBu=IT!O|pGH(twYztYCwuKmKNK<}#xRK^&+VUKM+
z93Xzg`qz}lH=FgOfrwfTaC}@BzrX~7(*1<cju76lmv#o6SU;pexB)6Or#iFV+gdcR
zAIOT_aTf0$Qu>#1W}#ploy!>q0~kpH0(VM(#_!EqU%w|$ctrPNC{WjqYXJ#T*MbTA
z{f7!&i}Aa0W}NHq<?!VVzWuC^)-e6%3_33IJt4b!7f<NThjlDQZ-6-UY=WN96*uLf
z>towMSME;a3Dp{O!Dtd9!xn&`(_=Od3(>Vd*bg&2EpLX$=9lMZTE?B9c^Bt|$G;Eo
zFTyKZt!Hs>l70HOaGZ5{;~P8eLr=l8n7{w+j-7S@XL{_tZ$WCu)A+d($C|cUKjM+&
zK;}q&Qq)cXk;3OQG0Gw3uP}Am`qzYydN=DC_N;**vFwVHznpnyhFx4wib5Db#sEb4
zn3s9d9ETKs_?D6yhQxem6<R#weeB0#1<GJ^An_~eac1UtmQeC>xq7iViv+^}+Cr29
zm<6+!n=$CDzn56T0f53&PO*=`$xb{b!)rlof4P2vTpF;wa<L5`SIb&!r&z!c7^9>P
zMda5(0iL)0t49@gpR#<m{M-!e6E`DfQt?sqGExKfso>+dSo^Mjzo-nJO!m)I!&&S1
z$C?Kvu6xs=0_al-`qT+iLdDS|VIA?wn6NAV_=2cQ=@nXx>kpI)Vx(Zk-20t|@_fDd
zvy86?e1e>U6-26@gNA7(V<QDbDR_u`Q+A++<jX|;CY`bTw@CP1EF^@9OB_6-lwAj#
zn_`1G&vMorr?+h*?{m?Xwf;QQJXnB!P>qy?<^U=r<Avh4qP^|E2hB+9qLJT#K=xnv
zfjF$oH!ubAP`Z&XhK5Y|*g4n)KSozokRpDz#F0(w!DPT4`0EAwgcYm_v<m`gB`lEj
zHg(d~q!N4WOnGZa6Nd-VN+1iIxfT?j#lk4Pt_&Zun=&Wkt@zQ@qPgJ9!==wzW%Q{)
zP4Oz=4)@vTC%LOg%)0T_jTwXXEhq9T)%PKF9a7sL>a$NTC}MxGHwHWfly{uMg7LP8
zF;?KteK(91^DonffxS$2!WB^EiV)i@Kwe*7sB2Ag1H%UOMb)!@H#YAK!Qk>ZId%uI
z*uFtfDCoa*<CFBfyI<=h4sl&CbDM;O!Jjl`)><Hc1@kC9U4WQ@Y@mgG;|F4&++E*b
zT*9dUvQGZ*B;Rqn#7>Ihq)7qCfWEa;eVDl^Y&+|He62HcM@Mv<dn!>hoyw%Y+of;n
zCKh7y>0ewbPCdRY!;Ag&f{!?r_FTgwKj@?$UPnOXmtUL3+*Ste^ZU^V`t8IW2wLXY
zBX5RG;H{3!S?fN3KyH)OlHJN`c;FkWqSaKHn4fyV=*hkRnLk_TETB^CNGGg?Ljg2Z
znLmI+#{E&+8U8UXI((ao2h<G6U?#~``7*j6$3McoHzz<n-<LTs_CxB}v!-o$1}}~T
zb`Zzem<qmM2Z3zP>iE@cpM7&&d0N-BQp<jlr!etRFK8=mMHsQ%{-wHRW%gEg?i4QG
zNRhGL+6#BG-Y-yF=40f2?k0oL{fJW$nLO^oqaZ+TzHe8Y_A9{24iKH+3K2$jrxueD
zWoCoOOZ<G0t4l^!=g*Y4p+7E3zArgdfxylxXf_a_bW5Vs-}4qX0<3^yyZ$0z+k28P
z<NcywdG<81NxfCTO61UZG#O@`Gy$6NSU&0O@4;c*e(x@nRtl;P?z2xQsKdDT3cCdr
zN0wk<efELlZu3J);*dED^%7oFA(Zx<Lro0!0qaup=5yE+=jMq>A%~rmbU5shu&72*
zMEEtIkq*Bx$4JMHF;f2Aja%*X*$vTrVkjS7QVEJ|>$9s1@AYnl!c5{GpD@0L4^<VQ
zXx*3~ir_hWx}x}{LbkDfJP3Bnc>4)<LFA9{m#F)cq5JFy3a$&g@}4MN(NNseDAYKi
zuqz|A^3Z}GEMSx&I;BbNv)c+9$NLWouE%vYl+$g?KDsmLZo~t2>8z-r@jiRBwQ!`v
z1=sd^FW732+>>8wfyU|omDH5o`QN88I$x9pSXaKZ0-e=!wyM84G;Tc^4))%AK0+x0
z(Gq;P7|O29Zr!MU&lG;?$hWC>Dn6cwGL$EXA!?tB+7dZFaF*0Ycpo8E)J9avK7+58
z#+vI3d}bEsB{9pgbN~Wx2ut(In4J|)&!7~Si<8}IfRJxiW4M9U7;FoiET|`I(;A1b
zo>;BQb+3Xh`p+60BV!(=8!i(yFMBBn>Edl^Qzc^sqz&IOJ^qc-ubm@)p?E$L+*V~&
zx+NK>wmAYH>-?klP&}q@?Y+^9QyzZboQ$>YI!agPw7Ik-+#JETJf{VEF~~hR$gFkW
zo)+@xsfu)q_7!c8f!X_SGZd!W`Z&ZA&PQ2+0(kjQwMcT`&yrJE2#h7$cZiYvbe%I;
zl55O$`h1K;qD0&p5{WpAwPE${Pt}^*^D8n3x?~JzRl?MKj%fO!-7B52io?2n_5!$H
z6vleECfIsmL3<re|8IYs>3CqLUl(qwYN7uM%J<pcg6o>zL8uJ75)IV$4$6xkWU_PE
zTWwKiir=Ug?3+N&I~$aocIjV8I)?D>t1kHzm?C4H@O|S0gFRwg2=ZmFH>{^+FzO$#
zNA43@Uk`^QZ!B4BIV#vUAA`~S4*IX~ZUIrPC)ymePFJ+1!wmgwcQKmpb+a?)n4Kz^
zK6{^n=K5?`!FA!Ny&cj#=j?-3GU}t0x|u*uljIx!K6?wCi?N~f+1HP|zP#XC8|wvs
zMnyubQpMaqA?BwR)V1F)ffm~MzT*Lp(?1VUG7Fv;VrP{-kPme(eU6m-RmvZnq*4ys
z&rO!p8B#t#<X&u7j>eb+Flr)>dx=)U_Uq%9QC01u`xbW7*YjiuEyJpcBaK!vA{VW2
zVY~0G5RL^36vbRz<Vu5r$v5k)68jP4Z@<^xjRP)sT>f$6?Wg`I*pJ5fzoWl1cK%NT
zL_GhuQqTYGgPW7=@&oWF>%dR2;y-N@0swDaiQ|Bw_y4xj-s9T8@3ilWe6Z7=y%a$K
zZw-n(H5KOs|Mb+m_@3J#_+~&&FADE-J*xffw{P#X=Lb1<j0h|`4NCmI>x>e|HI#b!
z#U&I2hMnQ^%U*$f;blrL-_|0m523$ULumrNCAOga_AlpGW6abJ7FN47SB)KOZ{7nx
z$!b(z>`flB|5RSJjCJ)j6wuNQLGgU0rnPf3CC8c+WL@BaswMld$LKe>P!;tr8qdn!
z$wyL`n>OAdxAl6vkSS&k)BV~D`n3+kCA>l5XE?pY&3@@0e=BV35NT_7(-!SN+S&)1
za7B(4U>!%$>wWbO9<_Y&yTJT@etpz>9vMLRm>cpCK9mUmQr_jBhwy`}YF*E&gK6k&
z?>)%aYVCQoIiRWhfdiU1vq_xR{yYw6%GXEFLWX@HufB=f=a}1j@a*Pkbegj#ZZdiA
zOh?}P60kV&wwsAR$ZEgDT)wN@4p>N4=_-AUf3tI(c;w&6#2*%qv>yE#TBLt^6^mu9
z8GGgpS|)hYnR+x8>oXL)mlK<{t~(&F7`E1n>`+0mUy$DLar+4|L2xC;qJN#nYw6<6
zto3T$SO74tv-uA>M>$4lXE|o{Zq{n{QbikPnkDTxWmt>c2}Ct;$%H-o=i>vH1H2DS
zekUO!Rx}%UISV<32Na+8=8aGYaegF^5E~AXrHyrwa#TiG2}%dA9l<MbxVw|Bf|2L4
zHCs1H_0jPUoO>!|6_$4n*PPH}a-hn`RZ%~?7hfy)VhU{iQwci9-oRo%Fq9MA$K#x_
zKDdSK;oU(1gZPmn%$pqeM`M$dADUgTWNc=FIy0x{f2S7c<%MQTpU$J$Q5;V8BSN#c
z-uZ7$NXDwr!Oi#=24~Nl44L@b*tvrV<2j`pzYf-bXmknbTjACstb-q`{Ax#KTEDrT
zv=m)yo#N&I9saUV%Raz78jf8L#z`_oJ@@k!u54!gy=)f;SWIkCrjDU+96M@((ZlS6
zei9JmUS94D5Em{&RXKhvF0^&scj<M2-9b?^5qHZ(Si5bJDc@Z{`5pv(qZLkUfctn%
z>-fjcKLML7*pMrK<#yb?`$ZQv8u8MB(JQB-?CB*Xc<bzLh^Lg4=tqzFdCeE>3wXqn
zr^tDPB*1WsAKR4wl%VWP)wya2Fajt(9>F<y>kFcSK?X*OVA8?p<?GOCro0=Sp`U%B
zT~`nb;1?i%{*ijscC(Rdd(r9kKiTa?=$r2W7{8x&Hs`Bw{~esG&Ju`&v<NY$%l_V8
zx~nyX*nk#%5e6+2pLh@SA_P`Og$G@Vc`yayy0(G*apnTqvnK_Pf4lUOjdGC$1$koW
z?mvNkwfn>Np0Iz$d-J!%YOKQK?9ayP*;tEA6($i)i|XT6aW2q8{=q#E4Jg@XowCCa
z4FXHuV<fzvoq~^oaBNoGW4|#Cl=-ge4OGTlSOW`<aH5?OS&$JyG<y!3{l>kV3m(CQ
z3c_57zvO60S=osOLQ5luZ~{!!8J&VSj@s5oxAL%fZpZM>krqyj`5Uu0a=!EyRv$M%
zChEq>IA|uvMRSqryN@!F>f9{SW5}Dv3i~~VO$2=q*3Tg^w3fmrFU)=@LS_BzHb*NG
z-|mhmS<U1c+Okq%VS6_Y=~$3JMl^0bGV=xTZSpKIT!eP_!^WkRTFk`>mgVpuuDM)z
zVFu>rmYsYs1usoM0aiGFdleHUQB=+cFxJpCDx8Z7_MV@`B>yh6+xmA~QmHtU{g(Nz
zu6L8^Z*SjXul@jdu5|GH5c>a^XJ-oEC%(lx<LhJosvq1G;QLpq>eOHL<K`s$_H*HG
z4%EOSJ?$1aqwSYqUux}J!#nNPugI%cp5BnB*$={C?Vt9l>t>{@*L%T@bfUifO_HE=
zLpc%YwbIDM;I7L*y>v9Ir^Z*Wlj<u?_1{9bqWU~!+BI{>9AMZ|@6%7ZaS!r4`V4QF
z<)O@gbs+0Q##5}H^)~L{ER<3rDnzWRr)0eEUPiUITuxG)$a42pmjNZ>dC)f<wJ)11
z>M8$WGRN*X*ccbSZ-r-4*t2~4=O(nrK3|e3wnQSiC_P%x1Si(yqgjIL8LQn?ft4Ye
zhwaWD3ehZIB51BEV|cWY<;KwLki`-8T^^dHVw)T^)nD0^hvsC{=O+r$%sfGA0?ljx
zm`6=T^Wksk$bQ4HOV)edZWEw+Gs*<Aie`r8#?T!4#st*dR|LaB6XY+lpTa{cIclC}
z`m8Xao(f&!|M?FF&G(<)1<h%u%7{3y-X}jX0h+EnG=IW!V`zSEA~b6!?K0^z^3l8v
zV#7&aZfuA_^F#;DrMsfJ-c;FJ(X5yNP47ySad`7t+Nm)#FZlWd)Qr0F(UeKQNFsWM
zH@&9M^=u1D)S!9!<A$0)k`sp%A&LlkD*@TTpntejhgZpZ_-OMxs?D<234LmF>|}n;
zX&LMLrp7Sp!%uj;js8kb&p!>trf1!#{O+4I1vJ3mX88y+<xQx}jXm<Z7;vCEEzpZC
zJ-kmETSa70q7QdM95HXBjJseN`t=QYTvRUDq!G_EW7f*no8N{)dFM@TxL0S*5=~X2
zl(e&l0MG1+522X!XP<)%?24lLG&_#;$eH4;STiqiY_C`~>(8wmFD$$LrI()7*Y^PT
zd)|gpKc3b2G7jzH2wuvY6MLUTT>SuE%IhJs)`1=bsCHw<E5_(m*zfyrc`Yw{UqJEK
zcv;QMto2t&y!{L^u)RLw&DFS{Medg{J!|}&mr-73t-Dy`CR1Z3^GF~23Kkhf%t!m!
z#LI8;64Ymn4pZYa=1Gk(i|i*gIEZDuyo+xR$XcV|6?-l-Hb};a>#qgPXEI}kX4Es|
zGt77q@8`37VP{5WB1M}v&i-CbHW}wn$Tty7H*DZ7AX5*gE_Ei?Qm_fe$%x}3$9pRe
zb9iqK9W!w-=3qUFRE7O*@B&*2P?!3R%PP_F!egvs-i2NB1q8i!w;z2IXfF_MI0r}^
z|K-vRZM^FJ%t(05N{<`Q1v;J}(Zd3fKjs^cX=1U0V>$IB#&YS@v9Z+W#v-Gtu;X}|
zm91bH#xBSp;d!#3ZoXzEJ6&+!m$-)v?g)&3IlZ2EuN%XASN|eA2Os#8hewyuXs&-v
zJ?+iveP<1X8`+OB^3V9OHzLWyA`*bfEY`UEb7F)RBcgyH{Z)D~4H{sYWSqu~tX1}P
zk4V1lc|1?&SEId*H51ZH{d=$!^=>I<G@uj;Y|0eg_wIxHjv{?t&6iJ}xm|>nfcFeH
z<=a{$pnL^E@1hlf-sSZf?;kIgnn8Lom$GJWbr5B{_h1$8Wdh1K2sp5vpm)_Y)UL$-
zmegG33uHSgSo>J5?L)iJyJQkLw&LM$De1xet)xsZG#l=f*n0^T5Vqj#0ZHS!W6kmm
zKKq$RS3cY%M1|u!fF}CvE0!=kY-V8ny_^_CLgf*<eV{kXFZ?cXKX4O4-daJHAUFhW
zSMTpELC`hU3bJl<)&Lie>+FaLI<vn?cMq&5$ip>ew>)+XcHYYwHBEfIZV1B#2DN47
zi>C{ECd)!Hcc=i{%vAICa6or`^g|9NZW}PGXs*&@$B#uP0$S&Uo5(6TDx#xKE@!$x
z5>&YLXqrn<oDs;qB~PA=a#r-PcCbny2@|&OhJpZv5_CS8;Es#PB4_zI$rZGay|euW
ztroCK|96B{E+qg0BAt*#&?IZEe2bQpMhxAQL6FdpQA=`&NP6Zy?lTqH-`PuN29rXO
z#u8G+=v0u1j3X<|V!Yf|PnpO@^M;JEHPA9B17d*Iq-PiW173o;IQ1A0m<ty7G$}vE
zE-S?P9e4^s9=njJ=+I|RneuP2%lnIV<xTtW{h|DMIJVDzW`g^H-gg;+C_<?~@7n>q
z9r{h2ybSa{JaW63HQasDe#vCjOV&Hc;wdvcp1lAT>$m1+ncBT8b|UXq<c<6hHY-#9
z)+T6=N7HmK-Z+VxW7f2hj2gT@;o9DaqL|Q;4l#Jvs>?x%Z29mS+W5s&GUZ!PAKJ=?
zHa>yMzL67A&<>hf6<X^Mt#y&sLcFC*Yr)HrT4f{e!5-TCn_92);@rPMF>gX@Lj60S
z`u8B}mG!R;k$HMI>nS|w-)+2xq8%o@Z&pAy%*uDyPW_zd$HnusZdgVsnB}l+Cs_9N
ztH`qD&l6zE$7H6LHr2Y}jfuDxrN|SGyo_<}tECRtqQHurHFCZO-U3?w<3x%s16<hy
zJ5MHE`J!D!L7$RQBz^LNLad${(kL-u1BSHF+ql5)r;M1cprEU@kr<hVKaCZ-lg(n4
zE!{#YvW{AV1lbq<pipTz=OE45R%mU-iYFcMJQ!&ra*_3Z`gIb<@k22$=)|eb-CjqK
znV_a9vUmU9E6(X|5#_8kaso-AmI14*vzC$?PME@c)FiVQ1UY3&pcmWk+O_j0AZI1T
z#@UOiF6(-zuB`PnX&Q^W-#(}#Ea8;Z8=7nqbiE@#pDZ29CGZft4nEQ`!(eA>%0zpK
zw!!eUpfl*gj*mP<_h*d4g8u)!>CI+uX#O36FqNoCqqU9K>+dBu%l2KpgvIqiBB#zM
zZklGK`uJ*D>oGh5U_V?A2|pZ;uzl=nkfT8e|Cs*;HEX^v5TzKbe@%z6d1@CL4?unt
zT320a)<&29E{|pb%#2@{2a^vnmz1#<68eJB!v<a$Gdn(V1PDM2j>)Qo=?(8Z1cN=c
ziQxGED*f7Z96YANuWI~sF2KOucH4pU@3>~^erJ!;jlUEc!7<%BYmf7h<t^R#ePnH&
z1s3UkXV21&Uz00*?4$dg($bCV<f?R%kP0%uKy$skQ=S;X9EdcUWmG+}Z^0<wO})~s
z-qfEtD41!C77zU8`Ov#l6`Qvh2G|Z&=X7CyV@=_`6xrwP@pnOg8fD%`3c$m=KYdCd
zgQLyd<n^zBystPL=pX-7>4xj2J3O$Q_0GvE*9-H(u@Tt-xAdcknfV)~w3(;%_j3B2
zuWd@L0vE{<Z?gvihUsE;Qw_-f^b(zBQd>p@B_lKfU)$|)I7iCFn}29zDa~Uqb%ynP
z2|ZF;Z#=(eS&}ZZpZcyi)r(J*hXm#;s8Vo(f**{4ALHQ6JbvuS`<}|D)TQ=g0>^((
z#f*LhZk6I;^%fR^MhXbzd9#bnyC9t-XP~>d1=I|1!Y~7P;Pyg#m%WbSBHw}>@Gl<G
zB?B~z@vp|d%i|rbrfH;tT=rG<#6E9)R6prq*Z)B)LqiyU0{#chjQG7IE4MVzsl8>o
zhT`G;!)I^8{TYKZ?q{Es?4Ul7#dn&455|gb#th{#-VPjv6~@Et-iZ?1@DKCxr#Gp0
zFPl2ZOWb01iAfIuf;f`@lu2*x5vwtYWvM|hwP<!J<xj}OpfXb6M8~&2T~4`9V>{Uc
z-<n5CKuYb}uP7xhrVat?RLY31k;#w|^HY7G&C>ny9;tzFJ6coKtC>?_@~mYa=eV)X
zRtCMbzk{pT17?`2HW%$SetFi~vm?)$^$DWJh=_b*j>j2F|98}%tsvo7u-R#<7qaC)
z_$j3U$Be$cmAx{iabI;w9U9G8_n)uI;U?+A`q~b5>&Zo?u;dbIg0fvG!9PgHZ4H!X
zajwm~0kW2_hj|nv<8<Tv%QZSkaH_0Edd#O~E|$0O<*_~~5v2K0{uiINN8VS|XMbz1
zx|kBIG9T&z3NL>ElW<olOhS;eowWvkq9SkK@!PyXa*8w7pU=}leqYgF`~43YBmxI!
zgpaP)5w>vo7Dw~5<T!#351E|9gFbS298*2VMA_yAgrUdzHjpFhefH1hOgOxUuEp@4
z+Y`fEhT-+uU!S<x&HGSg5i9GZSJaDBCrT9dQSwv>yawHlETXpl1Z7jcU8=j&;NGE;
zAZ%&=bU^lGCcu_)VBcr&Jwf+<_6JqF;$F~<^Th{eE+3qrg5CUQXwTn>S3IUa`8-Ys
zVnaahNQ_Rtm)5jy*XMCg{gQ5U)ZpGE`@u$RbTs4Sk^ShCIF57fc{q+!IS<Eiil2qs
za0Xt&Wv@F7XL6=~9XlY`yh8tc+73hucSr5K$8-MhC+c(1y#SxmjdziKy7SLxa$e({
z0Q*+n!<FzlG~xZJv-ylyjq_MG*n7-KThH`z&EaibMJ}V>R;$w|n-Oe;@{PAzppZxg
z=MY)bRP#CB=65cK$U`!3L_xWe$(`*pxwrwWoLu{#FJWMx#lXx0WNdus#(aO0P6zy_
ze%9>Wtfm_N6SbMW2M&C5kfOC<7(~0mX{B8_j`c7`=pT7xna|=oMk~KO%l?IpW5=)(
z+%oPnV(;Octe6DsvURzXxoM?H2uKiUW505O^Vw)*fb?6ws%nPXI<?f{bsz^vg-dDD
z7ENGg=z5`sejQkl!WwxnbsHsfKn6T^UPRQl^LatkL}S>xhay80&bUAV(cT|Z+k|r1
z%bn~6{z^gXA9LTH`y!?-Xx9Dc(>y&(KEb%A+~X`KALIymA4AiR%8n~AHs7+JE6*?N
zay}ws?9|v1hJf;JUb`SX{8o{5C~H0PkhMPef@A7xX>sXW?Dnlf6CkQxd;;s?Txm12
zCHAvdXla=m!M%mkNBw(^P4xy%2Qh%3M*fku9ASaQhED)FVZyHZW<hWVgzw{h$IL<^
zatAo<S6={iUjlU>d~l4CO44!k5=Wr$ePdbc#`oa$JBY~|5m=N-B5Msjr%GAZ(Sq8P
z9lC~U=>a1MH<4Jvt?*HTcpA?q&IrA`xGV{?$3_;?U||U%df@;J1<$bhK!RiMMeKuj
z@GJ+In-AC8)s@)PMYs)Vl(23eWeM^H@tV&}a7mC^LS~sLAH1$<f-9wlO$n}hJo|#k
zdnGaTvq}Z06_-ZsF~0@JPo|l5YxxthCriD6MpT1gXy}dMD5TIEda#cnj%WmrTn>s<
zgKM28G1q_3H)Wpy%4WFM1uZ%l#gSiIwO4$RO|`=1>Bjre>`y(9*_<P@xyydT0~~z8
z{yDMqAy;Wqx+PHAbAM{BEiWnpLcj{j8M?d*^!bEfg*YGTln^PBqD<&$zd;Y5ZK)bY
zg2KK@8g2#Uy0I;fxwu@mM-3Buao7GM4E6ShU<zLRj5Y{LlFDFiG(o`-D)rLDQwJfd
z#J+vHy>t7O_Vnj4)K86R^Ks*CZ^l?rqZKV>@nfHNjs|XYRG18B1@UNVA5IJAmgm_(
zOCJ!%izhQRz`=Ph8)}*1Iy~T%vw!gH@Xqbs5SapbX^)TVf5+L{{}gQr2%t?`kNerb
zY-(_slGlILG@iSv*hKx`>%7>-@g_xUkS%i+>`w!ck&ZEnjNy~*nJO=0lr4@^Ae}IA
z^<uF$o7bQ!v`;Ze=7<DrCDx5))+E-$46GowkW{PoMmI8Gf~w4mAyKPG-?J(2hHOo#
z-?;_S#5?L#;oJy)%KOa01joh34&nRi&DsAjr|>XpI+0oL_m8Az1uv5KiptO$5@k%-
zo32qA^^vMT)(CJXxC`R1?zx)Tp}dvX6>ei@F_KR5Y8Q*c5DCv_tw)#BGjYO2BARCT
z0ncI(WkF=|J+_&2#yUT#gT0z$&2SL_gz9q-v6@p?V>@^2J~6iV8$v7mBf?Js65+9u
zFW?9)eFAjNf=99-RJkn`%rnWHg#-QSo(L(xCc<Fm{V7-|V{s}E<zvWTVbMh?`V>Pm
zp4pDmUGlBi<z;fd4j=mh@)bPCh8J!9?%b6W4L>WjNVH=<W(FdOmP+imcUN78+qo}k
z7^ab9aJ@_2@LupOvGSD(Q0URL8(Q7H{cC)0#QQkNxV?v%2J!eDu%gaEt7X*bXhe7o
z68I>S(}<IgBkvT>#iR+T4F|8kmkf=kv3tyYJpD4!eVBxI%&Gy6)@z@Lj(`o&vAyCR
z+F;C_ykyYfT6-~%T=E!l?wf63mWkT8uXqYVcmY-v<Mcu4#@jhzh0nJ_D7u)7frA2L
zE9CrRs@H$kaVw17DzSfh$#_RW#(~MP`py&A`jZl9g~SL+@%}%vHIrwUvS#!Xxz@8Y
zbReAP*6e$p#F(a!DVB-+XS09$E{F3W`==P7IDWus1xMR&hF;H$8+ie5)CK2F1V0y1
zr+<YVG4FQ{H(CI*B|50Y{^8fg6QYG9j+0-4OhF1A@6?bwW34<_Nc7hwg{zOWrN&iB
z1l<C0q=`l=N+S9MR6Ob&9DET;RJbo`U-bkC^|CR)h4!Fy;|XNP0{_W)kO9nFQ5HyL
zypss9^|rBuh0!&man~KD9AN(<JASwUmZ2`rUPSDTZ9Uu|FL!l3Xikv#F<~Dn^DF+0
z7+Di7@x#u){YwiCAzBi>ot>Fz3CV%yAEMN8=@2I4Nud@#<|2k`5ssdnhnu=9orb7N
z#I3q)YqbxV)^EBB;tAj^^R`wV$CbS;R<O6@xFUAKw%?B`?dZV%BQmyMZ9g_mqK_y1
z0o1+0q3$^OYUlIoeyYt%+WShP5P*}}J?K+9;u<VLPr`ce)erNqp89jXhsEu9`>mtY
z!>WW=;J?Sd<8h!g{`vJR%pNU**w+CIq+b78natp3^W_KwGuFWwndmYC=;V!OvvdX@
zY{+1@%?PZWa68|3!Swn`WT-?M-R^hxD$SOn%8W;QaJs<Hm}Rck<}=j8;HnPC1Yxd)
z!C)Hpx=Kw$8JmJ)mEF<%Q|Hq8NV0b+=p2)Gpl-o~Uc>T2WW!uO5G8;Ci@*ZCiTG;?
z_=QXJAZQ?*2SE{zUVksi0xi95`^Ch?k7K5Lm0l2&aX>BDcSdy#V8y^+1HBJ8ugU3t
z5qs^Yg94MD4rFFd6~@FDnx;<U>mn-_V8A^hUuxK(ze{_jqNkcn+!>pyp4&tP)xwJO
z%Q&nvZp{;%3NtoGO-(em<1W<2m7`yT(^a_`DsIx2Uq56_al^XMb$w6HR+45i4~~-z
zZ2Gj$?EFtLh7C5--iJ{7#*K;%6e8va1gXz)yGlO;uwXDQchDUtgjy?qGHQFbj_~D<
zf$kljEWMaiyA%I-yAh6k5(CNRcZN-NYBrVX6t-mgMCW6c8<A!kpSPDjA$k+{X*3@e
zPu5l+$wW<?wa%(kJpl!7ZRvo7WWCi33e>dG$P-P>>%AbwM=@RZj!AgGclXZSOTRNX
zG86KO?`R%Hu?2OMevq*ex;bTbk@&11K{b#?Tl2EDhe1EIwvA*&Yv2th*kRaX5cD(b
zv5iE{S`QuUu!kus9HQq%^EpI{gF}Y2+CS#x@$080uSfS8KZHZJ^7XJEMHaM8r;{iT
z0~#!CCb1{;4sRj8E!g%LuhV<?ahw&6WD6H$%|5aWVsAN3nm-6>1?8y?(Ap=yl{bhZ
zqzBV<ZV-;O)riKVj~xV5XVyAH&YhAMxj?`x*Ng18UmwO}+}!@ayof3dj@-@T2!B0P
zj7o=s;fG*bKA(3up<q1+N5Gs<XdqvF*!cu!FMX3rbDscM^PX2Z?2Ps0Bv~4sHfTI9
z@Hgo_zP_*xx4mz!Vc;+4yEz<hzdp?g{I!te_AkwsA6w`)#hkcU<}$OneU<bM#~m)j
zfgxyEiKYmB!RAx!ubig#-A8HWY|9J%y>~Rh#>-<q=Cnm`>GlkZ43nBQZ-Y!cO2-`K
z8emeKQnnYhCehzWLG%~GB`%w+=B%Hr%$s~4I|g}0g-j&XI5sNmJBor-OVnN>5@uW7
zXcG8P1|jQPEJZ#9LqtApT&J#{4|Sb>{zx7^Up4rAsO$8_^{Qov5C6vFL-pae*Ov1G
zH*3Ohi8Atmn|*Tl^$K^4yw1f0+$%pHocue^EII{79>X0w_#g;<Hd4mdCTK)khrL7M
zgJAvYY@9_+yZ*IdV$!==rzC42C_*d)nN6Dn^mP$rza;>SQ6Ip=Kq8UYw(ofZHuz_x
zFplr_yg-9&>Vbj3iC0`{?aZCh7M>jH=|q_sSeha5j28p1##L>`!^-oevaV3)ly0f<
z&1Eh=999H7eO?J2mwO;a_FZr68W92YR!CR`_yy^noRY^$&icU|xP-#$ml0VlXXZ`e
zp_1p6r51uRpt;I(fNz!KVun5tCfZ{tZK{8ygkQ_-BQXwn>mJ_#p~n@RqaBwiWqU6o
zH8S1{8YncS8}ul;a}MN!F7`=Z`XzXW)IVbak}epQ&=l%Xp@}=-EdZzH4a>*IvSVw+
ziH7w@HwW1x=G_q%k<#_|4x_sBKBi9cny^NJu$=HIBP@01xj)BE;W`S~b)gB!)Dd6I
z!-~;ZvLgyiOli+~bWl{oly33+dIr;<c2GoJaGBxOLKNu@Y@Raa8FW?9;BaY&&P4xl
zR_VsbtkSD2vbSIG%FgZAQmVk(It%s{e}^D-h+Q`3DsyR<^n0aHJ0}8fly3Mmi($T;
z%Bn@ciDmY{t286vBf3Smquj{fAe^OJ7W=@?8)i_LDFs(c%LsAJnHn&L^hRbOs$1%q
zd)$(S?bh>ECplzxd}{MeHU!vS%A@phX~!uuF|ip>b%;CB{KG}z$!LSwooJCJew$)=
z;(o-?I3ro_j_GRR2YFY_2#rpq!5QXM79|%O-^0YAvevsJc{pDuEsyy(%Cm*0{qT>$
znTJ4Zv@`N+96g+i5nKs~m}vC`Gj$GT%Kb{t;470eh+56XLr&j~RHF&(1Amr>8F!s;
z#(@T3W-G9h-T#H>O&vv=-^L&4MBKC$+|_8@hCKZY?L%IY_24m3d{EIgCWI<_m=G$O
z(5@*Z3qb#XVJfly|I`}w5d6D(2rvAX;~|tk)<A0xJ{5(9aEPC&GW&Nv$3s8{ChO|Y
zD1-UAAnbXDlVNtxavLP&zki%-Va5vSGL^_=i`$D}n|;-9UJ$)i!P%Y`$lfK<UBzuQ
zFGTs(G2E8pc`l_Xqv^^w!YOFfeqad^GSBZUI76ZdzCiXi6EtqcDf}#cZ2v!Wtn!&s
z2+y^D@t{$XiSY<1!MG3;2-`RO7{{4DVLXy|m@RLchN7mY*6Zw5I+_>K>y-((Yid8n
zx+|GGM;$U-M+%wQEA0Y$Wev_$nH@UV`4*Apf!Naz<=9Li()$N2ZRick(a`QnIV;y)
z`GL-?f>j;LQOwc%6uWP69_994IYv3L-($gI_Zx<C_2MU3EhFP7r{y_@wp&2C;|=9T
zNfbP1k}ba+mR#0A(y>mZ1bILNyXHOpkSNvoyo~pv)5Teocn{bY3YN|EPQsC-5|AH~
zWB7gjy<~svsobSSGGKT6pE$_4{c%$ky%(0X7u*Bcx=|vj>I99+m+ar(P5KtbQ(+rm
z#W7=9Yw3d;<59krEmKTR7wcdKp}xi}DLBx2b5M)x)*5id^V);T{1})>m@^k}<oA!r
z+VtkHP(?bPI$G>A&HLEA<A;JeW2{qQzmldw%*9rle}hpTidh)v-<k6Wd#dv2mxjlk
zM>yv%yZTQV*-<L(=|P1&7efqm{$5AMTGk?Cc=g2mG2q?xFXYF@oI@C5-hEUN(?}a8
zDuhT=I2w2y!^o98m_-@5b9Ml#1?C!x)Bd1d(KY5SLp#gW31uZ~(DggfnoaBl#z>)w
zk7TUxH4D;5k3;%v&+m$~Q`ZUK7UEr>`gpv-N~gmY%v#+CF(wKbKNar;qy8#!_OMFe
za3L^y!6_8T(hZBy3CiDeAJO51vY*?m;%ED$CKn}OruqP1Grj<o_~vsuj&c?OcR(s0
zZxClRP?qt2PRroz9=<}7T>%vw_p$sXBoB(MKzZEs{?`FK#D`Z-XT8sB5=Fhg(<J!Y
z+x10Ga{y2BJh4K$#RDGcFR_U@vi&G=P)i;o*!62MS!Q0*mq=&fykbcJcg+4GPJdzv
zv;CLy9$bd-4wIZGG5XWczrC+qzJSX)y!6QB+qgW6m+#n8edHACA-+i$-ktp?lZo{K
z&$gYq6;ItgjJ%N_BEvrR*GLUPFBIs5e<%KX@e}#%f(2%7hyADX>Ai5Xi5xCF>~HN?
z82|m%1o2<dNB?{0qkhpSTweR7ycq!<>hZ*-m>(iHh0%>bRutaEEPn1<W$_zPP(`y9
zoYyU%ol!RuH!!hIuKnyULD-KuAN3eHeB$#_Fm7@bM)qsySBmUH_YncQ{@tUK@TT+@
z`(EsjaH64v=^13kcEU?H$Vcs<GyIf2MDkHyBrmuPtbjU3c_8A^LG@<zg^3?P8Yo<N
z&rfZh6Utd+L%7TOq@AM+d`#G`BsDU3Lx9gTu5<=i#c_qlYc!OEN$~qw8fX@H7~E$a
zhgpE#;z#$)ef4>m=}J}ZPK?=^3B?R1M0RbRy{w7PX~_hbBIA+%m_gaYzrft@4)K~W
z-tfQ7-_L}EzgtBoIp#BKUGi=|e>;z`K?_gJ-`|P;oBaLHpMMyCV|=@u7dhxp%B4`p
zKoLv|){_(G=DbKHITTFboCEo=^CBomKFO7{(?Da~c@c1@d4A(Ta^A$xZy5Q?fAS$~
z1#l{Z1PVffKf5>e#aN`x`<Tgq2+7LXdO$K{ThwZ*mq~c_*g_@q>d#aIs-T=;WG8PD
z;E<^OXTqM+rjxJ@7yP3a*F|WaMzAmZ8Hm2uIR8fY$x8>l@H|pxHmE(njDvuP$*}+&
zO;}PA=zedH^dW)FF@ayFVr#<Dqmr?}@jKF`nPkcO9qB|vxU^?E6%%Fz^2^<=?)MHz
zod-=2*vpviYvd>%P4|7(C3I^t)`N@1jjlnl&pl1n^H2+*0XUFI_((N)#MV?3djMW|
z=a7x#7@{ul%I2J2^*d*rhM$71`V0=5ZvQE(S4hw`YhC|YrD}<I*7j;_s5{Yw9v*QP
z^@9UgzD;<d;I?NpLmUA<_L#0Q_ZdD(9R!rZzt2-63o#n|k{1w@Sj(ocVSHWQ-I=_*
zmUrvqZu$O#3%oCA!V-z!08yd&6#H|-g<~5zn054(vlxq!Rr^|lA(6w2MYGm(Pm+G1
z8`~sx?HAA^v3965@&`5MEg$5S+=nIq@H}w419$CTYyq!4kqdej*!R+nSD`TY1tdHY
z4!)d;uB+YkO!Pdjo{2sV_a@mlo{Tfm_h1XxzU7NZozj9s(AWI~=bu;YgAVuqGJeAE
z;6_;(d8gIjr~S2&o%SPdzP!_Z@MK)xw-H5-##8V1@4t(mY3q<z_b6Yo@Q0HMj!l1;
z$k%{eIStC;m-K)x07iJrM!tv#OH7IX&HE!?eInPcgTRFC-|={^-2W%{mw!zA|I_<#
zKlai1|2OZC>>R`UBk9-iG5!Bf@9+09?f*CLj~x6jj_(Ta_DAvOfAjvxHDlv)=vyG)
z?aLtBP`Rye3$y%z@EBDrt`DORpa1SNqEo~P#7j}{hSqXaQfclU#0|!SO?2bS2)6sD
zP{x<B&w~C+H_CFR;EX8yL{)ux9gIC3!X%XNm+@F*s%FOhI2`*`+y!cN_&*I;;F$UG
z52VUw48pI?Gx4JIDfO!DQ;!&Jzx^qEz31^j?+FMg(dp%xW_y|3MU2Pvj&8Sq(+>Uw
z+T^5sZ88r3_Ah-Xy~OOGcl&CpT#N~1Dx}HZZv{;T{v~>V1|R|7<S3_OkHNFcC4u9g
zETjkMkg3D}X?P>w(-YAHmO)3%FlFP=IC^jnQx3J}$z4Ma^p0*p4?i&eNP3iR>{t5$
zrlCs)9`bSQuv#?dxd_&U4Al!w#HG&S;bV!Ua<*W+%49__`|rwVm=iLeobYD2l|;S%
z>O3aIv#fW+!81%a*1)7(1E`b78FuFY#!;p7I*$Ga(1Y29AIH((@Z%GuJ-@|p$&;l$
zw{hUYmqE-y68~po9v)703d=_6R+Mh3^Hn~Q#v6)HLW6bF@Xm0+&S`<;A4(l2#SXv<
zt+I5>NtKn`N-rD7&)`~|#VO$0e(aY^d|YWPv-GnW_iw))|F<edWkxyQsa?yCG=Kz%
zz@HAF<ddKZPhQNMp!B{dW}o<Dkd7xTCe|OTCZb*8+{<ea#^%2JZp{5IQ#Wtanfq~5
z_sd%#G#RJ!UG>S&KZO4%Kk}sXsYu}MJ((}zZSAQRp*kjn`eX&>EP?;CFmLbXO$g>~
zzVAaP1ff0^8xpzn_k|OJ9=FSc<dK)^=2dJg=T98UjU-9l=YIt9eh#VJ2n+c0U(q)_
zKcTWUPTyRBw*T++%|CwkQTpZyxjSCp3~l}xebfFg@Y@0JI`j}VGBLkB@%o4G+XA5Q
z|6hK)=7C-KXhMGL*tMMUTlD7tF~9xdZHK<&_-!w={eQ=AJ@<bUzctC-@%&c*!;j;)
zf5G10{MLuiV=`L*zoSQL+egu3ncN*ukKj!oLyyvpGkAuh;QjU3nXwm0RO1nO?TXRu
z&f3fV9X@1<GWTkk*C#A<1IuKsK9`9bG@JKKO5DJLiqBY=&C+Q9H9T#R^{)95SG4ke
zuGzfrP2s+tgf881hLo}P`w3U%)n#b;tvUu==n&E5;eg}5yv0B$Ba>W@+n-S!_Hc0c
zlX*L%;J~m;#ws&7ybhGm$if?QIMfObqy8}*HcJ`ngJ0xuNQ}ebp7LFAxTaX>u&LP4
zVO2g3N{5Tl2X{TbtT=4DIfnyJQDwZXc{sesU49%>-<-oi&)<*H;j6piaDd|Aa&UOY
zy#7(>fCfQ_5`#mpwD0}$O*tG$$&A<j>KGjYio@b5IULTEX8>|ISijhZx13n4%*7Rx
zg$`Yp7&<J^$AQnmWvm|bK{`B%sli-K{#gzOKIE41Hs;}Qxs<W~`T)!1&c`1*4iA69
zCY+pOELA)@CmTE-Hm`&fT5t;^WBv0hiU-ae6OY<o=I|&JJf6jUhcAa2e9KyXiQ5QY
zKEJqtFRi-@_S6K2%p~{;hd(R?iOFm`q~bQ1-HO|2v;0-JFt~kWK8m_gc8WnUDBXMK
zZ_c5}D1F9zd>)FWTBfOjbFxSuCAhD;LK^axX~AjS47;C>a~5A>5SmWgT3yM@J%feg
z`PC13y8z)|;5jaoyl#@A>Dh8f(8LJ2Wt_2YJW*-7RQmA#d?1JL=LF$RxbM((Z^h%m
zNRGcA$j2e4hURFuKicV1I=S+@RneMZx|J_pXT1$$;(efW`^j9l=>$gb>#4aepIn$X
z>|B?R>_ph=guS?vWxZZ4D)O&2EI3X@QV03aLy=udB;hN|8r)t#n_mZL#agHv-;539
z9^1gC9=f)VhV#i+n4Lp+9xuqa0YT7%kS8CU%`ZKGCs=KlDg6wWr&+7%$0$7tw{+wO
z%*bo|DDas51n#iy!^YiQI2}#>%-no|tGcZ99>m}N0h_vs8F@`D$1xW>V@mI-r9c03
z<aMz0Q`k++FTDsGxb{j@dIfK0t<T?%yc(81bX@5oXbt-dru6kZQ<SxSave$^z|wJM
z<Y98r4JbXyl>P@jW~jyMQTlZ_q9eazMqcT_7L<MrcSwTSS~_$sO8=Ur`9-b#(gQc6
z^bbtwK6;;c*oAFh%F?GI!+!gFNc{w-NXN$$PJt~&Na9E*wz}^Zca5$7<?ZM2deE)b
zyT>uMTI=WgCZ-^^I=K#E)dhb+^Ce)kt=7}HpZ7+IZuGhRQnJ;5{{BOO|4`sR6!;GX
z{zHNPP~bll_zwjNDKM#M(k%SX#(x$5=iq-X{^#Mp8vnKUUx@!8{ukqa3I1_nYSIe)
zpMq0ftMI=X{|)$W#D5t7P55ude+&L2_&*c>Yw+KO|0w?B_)p+JiT@P-)A(=4e+T|M
z@xKljPL9L`&&e^AnmiroOrDj(&zu;4;`~{QpLvb=sqW+tUe`G}5W!Ck#xS`C2v4rz
z-I^$VYFTXo%PmaeXAy=lc@bM#l)z6ABcHq!9Zn9-;Lp+gVZR}uH+ePioxB<dPhJfS
zCpTcIlN&I$$qg*h$h%D#`s5~zZE}-bvTzgcHdpY6dChW(;Z1JF_$IfoqZW45!n!S>
z)8v*`{+xxM2=gLrFT!dOP-pU*5Px{t3Sv%fW#Lxh+{)hCh)^3lY6CeZM=>XpqiiM0
z8d3HeW3?C?jj=|IV~exVI7bv`;W!(J^KP8g;v8>+m?ns6qLM$y^M}nRSS`V73C#NB
z1g3m)f(Rv8H^Jr;Y#_;UNw%EijU)$?VxuWGnqpHamP--I4z}09_Bz;J2XX0OQ)eNC
zzv8AgTmiPma33%l23r)*T8(Kfp4HI6-$qP(@vNx)CYq6+9buWODok^6RS45wT-C<k
zIUz7j@tkn0{I>Hq0)D_R({rVTxlu_cm_N6ZwW_PYV8zwaZ*_#d1VZdR(8w}1QLq|*
z+2i~Wb507gm)bD+u(&qag5L$Rh{=MbC-XPP78WFl=YljbSr}$|p|rm++`)8=tu0Kq
z;dfCh%P&eZCm3QnC^!UT#37hsk3qS+I898J%)pD{ikBR7G=D>^wIswgmxS5c62WIl
znz+@4Nxix-<O;tmStqU4rB^d8z1OW{FH39d_!}agOJg(nn<C~*J6Y@GB~Tj0Cokm~
zPZr#kg?M+FP-6v|uXt566i4x@IDbQ{!4}0K%2jcw5%XUhYQ@~*7c*TPA{Q5j$X)nl
z-PIxHtX>VqDPA36nbl;h;?-#=p5lfOI1RtdX^=J>8d<BM8LU~{(8jtA6qMqIDC;()
z<Sv=7xG_u|8Y9eUq|g;NQc8*&lk%Hpt#FiO!h%&e#va3hRk%~`cCus>MOQhsxGBwa
za|1ZMxH-(bErL&k>Y_Lzt*r?|B^0k|C(f;5=C@LN6t_}%!RhQ#_#MA&r)^Oke?!b~
z3la0SFqCU?oAle3B(2)gP!Ny~rXeHp%eql%Au1G$t%hnYjx})<G3uP+SgZU}s*7W3
z)`|<Y<J54)aVZm*Ug9y1H%|3j98a)?xKJ`KwGuNbkdv4JF~{%G@_UT@&XnI{`5PiW
z3Bf->C0m?W&9NjJ<hKzju{hBv>F`>n!|W>|V@X7$JT*;mA}J-QVTuz%?c{OnB`LF+
zl)6c&m86C(PPTA<lMzxT8G*VjPR5C6GEO{`apIYzPApEYm6B9+#mN-ZCw?U-P2Nkc
zBh8cRh(jvGoK%Qyri24iGQX)-xhwpZT1O1iLc{hDF=-bJJ0z!rdb_w&q@!~kuqrBY
zHMO$AB3DZ&3H4s&O2(*F0oRdjid?Bk8#JZshzPZfYZm?p8mWg|vs#-W{;pYxW=O1S
z7K#d>M7w5(8rBF%h6y4m7MUGugq{M3L0DZ?p;iIm1e>mkHL_$?EDA*d5NF9MZL=zs
z;?<l`Dx`oV=R_#-t~s$NujaN=*|_F*Qp33BMOv9T4}&9!C3tUMA|@amWs&Mc3_8jM
zy$W^d3WTZWT!B~{>jh#-q7;awIh2|xbvr<cnAIe!NP_uwixvW$6p=BU6rmz_)rLb&
z0+JkUZA37ujYwm)G3lW;CUjX4N|HPaR>$BlxE8e0Vz{8E+53W6LV%8aA;^o&g(1Og
zVTiilwJ=OI=voN=16UMoV1-3->VH>IDIW|862VZ4;|qqv>@OG=N(7s!GhM+*luZXQ
z<pKoHU_#mi;7|Zyn_P<{G*PZ4(3Av?lDR}_wj|uZdv&39B2m{6A`*3BnVh<Cm=yrn
zdmU67L8MuVM9z{5Ya$$bogz^e*XnBprMeWYiK{LZlOi2Lr8;mXGM6d|mV!Td6{8Ju
zEnOGq)yYe0H~}Xs)1DlSkjN)1u>d%!%R@4$%R{ZiY<WaTeoC13!*yynK_Z_D&I0Sh
zYCs}fFdL9dR|tb90P7P(>Fl^*Iv{rh5Jdv$byp~zf<(Dihmve%b%f>upc#4tAjJv*
zk_oZkm1s8?Y>eDXCna-Tiq#t+D+G`gf|d}wZ2-Rrpryc76e^NH?xkoZTn%YjHCH1f
zM*%A|LUIJiz+i=z^GZkCn4r>iHKwUg0O+K-!eaegVaOP-+Gr77;iw=Vj<$2Ouv5?%
zE*L6;rben7R}-e60Me*{-NJHdCT*k9KLE5DE_hzE6$A+&w*-l>R8LUNx|&1}x|-5L
zkY=$duI3nx1ORoas~MsV03xv?)oiX7vE8l~F~F`CoyHb1wXT*(GpDKrl1cz+B!ChC
zh%^fFk!TYqJOW)HpaaU-6%otjilkzsZbY=N3zn9+tbt|_AV{=^q_Ng;6RWpEGbn(<
z$CciLg5VVtgn(wwW?N_tOSXlCSZ&Z6yb|;7f+;5D+Z5flSR<zqKq`pE#Z{D8w?U&2
zD1uR_5?n>au>qh@<BE#&;);gp6BCf~QOFp97;yk;I;yi0jR|8$#aOzcVhI6c`lDjW
zT(I;cWDM$wK#3KDmf}@{#?ghm3IPcYEDmKw(9p^v@dnykR~*WN0Ln^0oQ=g>(<E{{
z)&Vo`ibH29Acx?JbcrYESh?cLFYz?(n=7F_k!WbAFej7?P@5GJ;YJcG5f&*1x3PzW
zxLyEUVh|9eL`<57CqP^P*llvPj3EgH$g2jCjwJLTuXGFmaxdIQeo2al=SntnW#)pL
zz{ZkLhXi7VUGNS#22ho_B%uxkgrx|yBCb+cLlA@n>r^Ph{!+>|sRnwdu2fhUETyvv
zv%-#2ktp>`DiM*ZM1&Kb7U$TN7Vp)S76;FjjtX7UYttl8I>Gg#D-AU&fPRWAtrE~4
zN)V;?Fr6k>2UM&8Vc`zdU>(YC9ZJ@Y78y|o<Pas#g5FiYrq2?ER1`lL9pJC*oOuF^
z>H-4&i>n33FPSTFs9)jWREPoo;=Ow9TdL)QCo3E@?NoeU?+<UDFXihuEfMJZeyzgl
z(*^eVwEwQGmXBYju;SAzwcZlNqwfcrUtg`|2dlJx@Cq&Gd-NnJ@4sHl_1~Z{c!-vd
zA8P8|sQG=LG5z)`Uc)zOe*9de!_Zp2?kdsti*7d8UspJ4@bhifYyWnz0{*({6yN^y
zw4M0*3Vq9zKBI>z{ro@DdP9@7UhoPXPsJIhNIS!)E39}}$2IVcg_1w?O@*T`)#>#g
z6;`ZN=v%N@^2_#Er1uvo?D~enifyM!zV88r@y8U7_N|co_+<+Fu25KirNW}C3|w#K
zaif73Dja&t%<DS_{#eJ==U05YW-Ii~G1qey#;X-poTM=LJ*_|RLmhY7W;3rpQW$TC
zIO4B9t#Fj#2K)`IQ#gE<Lf<(GgXb!&KhIn@D_+Cfb^eD2^m^1*ICQtdqL|+Aiz^&p
zzyyE8NrheQ3jMWOK3HYS%~j~z*R=Clg?)D#J~@1;wB!4g@<rKwW`4FQ9C&$|+^=|5
zVb|Xj_WeWQz*`E3-&Q!ZL!rM&`D%2M!lLb(U-6p4`cG<pa4*Audn>GeUGI18qu2fA
z3J3O8ST;rB@TU}39H21nGw|<PKlp)x@0s=v)%$&agD%Ej`~`&-&nfKsFNMQzDlGc5
z!v12VU*9`=-S?g;H==Oxp9=lk6(Xc3?T_x%>wyw851&vtw41`N-3|1Z{Fk)6Z%@6B
zmnj^6RrAaC(QDs+3J2fN{J|Fu99B5=bCuh!9jYhF=<VTe^elygoeGOyH1hwF!umfe
z^uKKK4eWZ}+<#SJ*InAb|2&2LZK_ZEVhYPr3j5cY{PPudZBQ7`D6GF!Vekrt6=y0O
zzFA>c%;>d*!mgCjPaTGD&s5mgZeY~hKhMDP6%MaA@B)QJJqmprOum8sbM(4@qr%{Y
z3I{GySk|hr?<{lwY;%3F!iqM9WtS-&x?ExXCUbp-!hvrYc%^~s4D3_bca?$XDvV#P
zu<P3ji%j|c@91^^cNGp~6b9EQ9J)qfS*OZ%*E)s%vyA>fTj9`|s^5xQ6%H>_{V+OB
zq0iWzp|7Yutglr#FjeQj>=vD``tK<W-lF{${aB&zR)wQKRoM46g~PX*``0QQx>R9*
zm$ut=v*H)5Rr^)6P~otFLyMez!?!0X4AvTcbt(S`-3kX^R5*0#86pq$Qx*0dp!r3{
z@8~yl>06@h3<XU;#_y;%en-&w9iwJ`2aKOG?D!wX?-(@WiyOaV)YzwiYmHr*r}FAE
zen*+{JBp0oF=+4`HU5v!_#LD3lukk8cMM;y;~02E?b47bS7H2)Vbgw*@jHUX@9-JF
zqs;gnapQLs8NZ|6%zv5jJNka8^HgU1jxOVO3>bf8=r77QWybHQFn&jo@jC{LU)E*(
zjv?c(lo`Kc=yIjUz)JNu>W$yg|B$h}#_tFkzawt^j-c^722NMMqpMc^j)C3Pjs=b1
z;WK{6z<ugx^xtp%jYp0DVf>EKZ>WDUe7S+&QrKtwkFGBDGX^&(>@xmG-1r?8Z|nT_
z-(u|TS5<DxjNj2;W#q{CAEWck^?Zf>{aU}m_#O2(>-Yza|KT%!$7o9ZhzjF(R2aXb
z&-fkvXY2hU<9C!9zhi*wcl-q%zr*-PMaJ(48o#5D`#$&^H2z10@jK$i?-=HSfPW`x
zdtI~jdUTG$zH*a)xWWqKck~~oen<Z=RnFsEb)Jfh-{CiYNBkAF-vfVDIQWJ_zwtZb
z#_#YMzhhvh-VYkTBls6n-}oQHWorM1jQ=rY{EuPdmkb*}q{8?ee&crp_tScQ<97`1
zuh(V9?-=+m)6YK@j=rm~$oL&T<97@_uXeisS%pQ$@2EF^N7tV;-)H=eGUIpnjNj2^
z{0_hII|l!v<-53Niodw=J1UId;WvIq-1r?u#_uRHen-&w9bH~CZ>0+Bjo;C?w_f+}
ztFX-Y9e(3?_>JG;Gk(X=2dam<(n_EHbqamP?+6YX{cQY>BI9=q8rWt0j-ltY+`uae
z%Z%R<KUeV>ZdH3zX8ewUq+a`s-%)1#jw0iCj9#Sohx-%`U9NB-qOjih9fQV?@EN~j
zD5?4`X#9@Bh+Yq;jUF`RgU0U&8o#67_#Iuw@9=kP`9b4<bQ!;6(D)I4<97@hSY-T;
zK4Z_zjNdV2V43kd`ix&PWb|>+_#MN>e~BBvqr&(d6~^xf8b6}K_#G9-?-(|I(5SgC
zGJZ#}Q}Op1zr$zzj-c^7hKxTJG=4`{hw(Fv-!W`pzwtkU#_#A_qk7J7{EiCacl5`#
zzk1_$44d_s-}oJUKQi;#uW;0?U%QO|(PjLPxbZv6jNj2^{Eq(bY5PIrcZ{BI`09s>
z_vlG#_xl$ptT%o~(D)q{3zRPh=PMjF{>Nak^8c`<FlhXadgFKWeMbF`GRN;IvJfKS
z(FAKXV!uhiBUWR>gb?xUO2V`Rwk>YMAkJ;gYDzJtZOv+x$T}c`h`653`hZm-L~96J
zu<s}kQ9^;S4n*RuDnuux9Al4iEqf}+k7+$d44EGbH(^r%5HUx>bb>K|3%lFgn6c)z
zA^IdR&ixu|ZZwq;xHiq*0Bdd{5o7;zJ5vdkpNFV4^XEmv+;IkM6@0mELwx47#u)zx
zMDUIffndo`#JC$}&0|1Jplk_P)m5^0Y*mLFxKnKfLfGjf#6AwMYd|i6(Z(=#1T5_6
z95X}VamN@qlQ1cJ{e(h~nxyR6<GLow@e{J&n&d(mZ%xv)+o`ZNw3_?<7WR5%d<%ds
z@n4We2o7+e?n_zR(;+?!5f3Ka7bazg!@@3nbrrAEZ9G|GEo^T{Vz0^yhN2P9YcQ0M
zdBNrk_mr$4f_Iz;K*1}B$R{>1a2@L;{TCzd%lnJdVVRF5K#cuiJExiXOTyT@6sYsH
z1mR8MwIqhnA7EVrg0_U=RLwHNmN0j{03%JTSJxWh29#A7Z{?<ng>4&d-vBm7h<_bJ
zjsj(8%fc)*vE8M7>j~h=$&lc2vMGnXeC|(KfN9oS7D-CG%Oj0K$K{C#W6##AdDzM$
zq@WODBV4XIUR-m_hVp~vnxg{2-~v+%usva6uRnwss1-`hT?8SwR_jiKwVHCkYcz{^
zW=;+pLJci!m%A`*7uzu0rzYesI$&7pHMBs!<T@Q?I}MaCf!JRXD4|W{L%w*e5qXRI
zIXJB#P|9N~M`4=bf2$!Wfn%#-T|+DDaaV`<HHKSd9Dv;BvADm(aYEWt93QuK<a(XN
z(5<j;2U+1Z$SLk)Cnq70a>{FL;<PB_Ua=L{$gve}k8sDx!a0P6a7qc6!<Yj?o&lR6
z{!IeYJXc{g>E^P99Up18DUx6y+F~}x)kL`_Y)h>oeuRjm3zYi_*{QHNEr?DFlzdDx
z>D1gH`%+f3nK$nAR3IOlJ8=ijFxN*5gkl85i3slA0YVQ5j53&wYdKi}2z@Ho(3^zG
zqmP~`a8BJ)feUz|0QpOn!dL-9G6W{+eB(Nu;&>wMIFSR`N_`+u_7HKMXlA>u;dafB
z$c~ytHNf$K{e)g*Ltf+j1^2bAHr<N?jGF5xcR{Q+-KVkIG_-HEQO_Vhiv4KfL-t}h
z?)WHFd5Pi(3-LgFKWd=f52vb0A2v(=iW>Sxo8=^e6>T$6cXq639P-O@*m5DB*b~xz
zb%Vr;rrQ|Qw4%BrV8x;{DmXtl{ULOYhcMB&jyK5WfQ2(4!r$ETA->$~f%9x(V@KLW
zH>=qnV2XGGc9MUwf65bf*4lJ9&HIU3mE#1r%XzJPxK=_pPOU^EPBbwe`#<D6LedRe
zKcXK1MGmm*BlC+bs}^a;=!XRLBg-4P<Z#&@w}41DK%s9Eih<?0;lq9i*$>W*R96wU
z$i4|6^eL|+&C)+058m-w<{OaPPgaupmM|W2py-Jt2&Vba!@QqdrR9^@o9A^3M*|dc
zTZz}AH^H@{$C4@8C$y4j)vw8pu;{<kf)Ka1EbOGoyrj&yQo7e{rHq`D{fMu;&5AIg
z_@yv!#5)B7kq@YzNvAaRK480<7o1q(ITc((?-Sxc67@-kna7URv$<DkaSw@dO?Wh6
zLg%r=*o6+A4|hXiU7QSJ{@l=OF&YH-5vQ$$j58rwOyGLPaVBvL8kHQL@o|f{RXM51
zjiZ0zIP98xR<u!$%eiO8v6%@=<(`$q+`yE%XNR$A4V&ej9ZAV?JojvoV&<fqn&_sv
zXRoW1qYv(?P!x&-IY>0nV{li&lF$?)!97MMS|d=;l7O*bb(|{{_rzTlYfZPY)2di(
zO@y`P!13V`5+quov?akEK_*}mq&f~BE}-}4o)cqll7Qc)i8Lk{Idh|?ow=Rh1Qy1z
zL^&d%2{;w*d7-vQt0v&Z!7XynYf%4^32`u)5D(KW9v)l@H;&@qgqkMW=)Adc$Pq^f
zn1DFNSq4XPX3be)5_9WJVwuUAw_uj!s88eO!5tY_AabT0d~x&e4$tShYv|r_Tu2;u
zj7i7|L3d43&v+n_gj0kvwb-Di(}l!3=p`n?(Pp|E?plyHjRPp|1)(#WT6qiVf0j%W
z65{f?7lczSLe&L0D4=D)Q9QBeMh^5G6Uk=mJ8L2-Y_lL8m6JbioWZPGx&*h7sIFQd
ziB835VMM(@_rh3%9D{PhEtIpF?nO;aP)sPiC?0~&V<Me`2}43$MNSHQ#ZVimDo!J(
zG8lvU;KadwY~slnBp|p_h7P3E64B)?a0Go$cTj{2iN)g0Fp-YQ0Z;c5Ou;O6%7hRT
ziDZlfM}ZiZ2uQ$`viBu$N$5<v>!1|r6(RxelD*^15d02FK(VlJUAO_q3p9}yv8oFv
z<k%N(VeP?*g9Jg=G$99XnInF>Cd@4rM%<DEs=Sq?kLj+1?iIx9Ai(t2-Qvw2!vvNM
z^lRPlXH#jxFop3+r>RC|5*%NJPb6g$5fMG+@K_aUCDL+hDa}30@H`R^$x7n5nM_2f
z9V7u=&credu!*y?JWOlD1hpDFl?3^R2a{@`DBY_X!%!(q;Mi0Is@09dO3+b~NJV%y
z2|1|<wLcT$-npS|L0INAHsY8q6X7II5HrD*BQ+$BNkGL(0#<-sghbadk!WtETf>AL
zJ#mMU4Uq^OXm=<D3j>eN4Mzh6*Myc?ouISNoOHt)T2myb51CjuOZ*}vxFSLh>?iag
z6D{zdiBCf$-Xet?L?1GT&NGS7fYqpsluW}Dk;sWQ@pOqBr=RB1LL-rq12Ie_rFZe6
z*)q-pK@KEAoykO`Sq@Af(T?NNlG838y}L2SLyOFb@t~U|s63fi7hTE|n(pu_U4FPR
zH*)gD4IoEnkZ4@WLmTd}F@bJ)fO3q=9TrW?TcT;51Sh3QG%XWcClhBLp%Q9{2TjV;
zb>_)dNv!4MGAAiHIHN{4!Oi1T^ef#>^sA*EoOR*h6Xb-O=^DG6(kTcU63q>(#K}WK
zR}1cDoYA8D;BJo1>fn0A%>!0+2$*OVLcs$Um)MOJVw^soyQP)J4hi~nvpDZe(7ka-
zqC6TYi3S`A*M!aml_<|}p$v?kmZ372oD?{R31}AK)kt!7geQ63kt8DsnvgSN$T=mP
ztdblg=14-FT{n(tDT|7CPHJEg1)*j_G(QvYr+9$MjgiX{awKRAkb{%aS{=?g)}_ob
z%R?mK7qXo;F$zpXl1U*rxM+!tv`sWWZ>5u|*~B?&qCM`YFg<f{dQLbTC#=O$Lk>>h
z5mlVFuHq5~i4J&6OqfNGJ8D)5?r4mMXn8B9XOfW6g)S3NGQ364T^ck#w>xT_C^yc0
zg}K^uLvU1NVr!tB$l*BGrJcs&Msjhs3kHa{;)c~hNm)#}<Dye=3tm2WT@!0$T*y%o
zjyLELL3bS5k4tAaTz%LkNyHk2ym1GywGMf49tq9~%J5KE3=0T1{LIFAWD+JsK-i23
zY(gxN+|rX)D3gq}wrh^8SCK;_B{}U8dhYIoS*p6R($FcOk1uSTFy5;>(P88w8S0QY
zf?NE4Qk9OsD72*5IOd3rlLYOTBxt`hF_*{uQ6^Q(b(EXy0>MWX2v`9j2P=f5nGkEm
zM9gTLq*yEF5L39vlHmFf37RcUD2FFgk%l#7030@#HN7Nwz|Nh7S{BOV>^U3^=B#Uz
zGjwj8F;kvTwUEHL#b!jErea2Qr{EOmt;9OGb}R#gM1)iAtK^iRJ1tfZx6)X@$^g@G
zC>au5Tz}$>qhzp_Of;?vrO63M$m0}D$ok0*0>S|D77m>8q`bR5)~XnG;J~D`EL?-J
z<Ie-Tppgt+5O^R(Uq~k)J?1)={6ZM#$Mdg&pH@bu2h7weGGWSt7j(sKu0c$60hSuO
z))lOCy$+l~ZZy|v*laNjo+EUTfj*8ntwPr(NX^Klj?SfK=2FMzQpe>|U(BT{bE)HV
zsg)W>M$62ql-^cqEZK7eM?M{<#B&5J$8<iWr71?PkiyDs+UF)A1)@!_2{MnoLzeLf
z@?1S>ipwWW(Z}&XMN~nDYibUrnJHLA5RWO4%%pH$TAu6iKpu33<eA;NhSG|1d}cs=
zcMldz)H=xH`b8qM9*IcPWt5aGn3#&UGTw@m%)6$*E9_U-OmOOuLjR15dgd&wn*-NM
zQ{-o+!mHEGTo@oF>q(~Ig39wrNMS}3>=#QWt~QxUB&uW;=HbH#;`$@S<r908n0G6D
zW6wNBx9JXQN@xX%(Ptz)NC9n@tByG-E{v9~U=5^ZFQ`H6+N4b0+$9U@G_S61uE|5{
z80LvaBnC*u5rJh2Pdh06YU&m(moxgF8u2YiwVJ5JK_x{2BQ+%QEtu9MmuZyN!yuD9
z_vX=s5?fxNj-;fbDU4oHaX6WBH=NXnuLo-*tU|E9U<#y?yRpVPIsWg#I(4Z;jy(&*
zsg76z{;_8vRH^dIA}meBdG^R+M`#-4P6r>qMBX~kmopQD*CiggC%C3rABR8+ODQfx
zJi!=5f$p_OqUYKQ!dO5Nd5asJ-Xvx&<(4>3yJyLA6VdnJc{kHCQdEGbOE8OZa!JY4
zcalO>R`THdYJ1@(um;vWxZ8?_6R}znj<+IqA}JVFKA7QQRK98!v68s_$)qX#csRYx
z!-584<D}#P8|Hz8Yy~MpXQa3c(L7yH@@`z72=UalK>ITU;NfxzUOZDcXB_7e$%Ci#
z=o3f^>kOd~IEgw9d7LU)6nU1$X4O^I)G#lB=!1-MX=2?Hc~As->*^$G;vpg`)62kL
zSgxSP@=&q{4kA-v$VNUr>5+vGSD2bwioFfbid9(iG*%$Rhc@t(C3H?`HBL=a>wB;a
zB9|})?ITY_Fa<hOn}y)Mh)e8|odH^Cq*~Q6WQu`U&C|##^I{FFU|~Ga3h=$9k3_S&
zwjMk!hylPeLaNoYEW9b@biu=Z;kUxDvt^`$5$;iVR<B#7{s>awf4UYPUH-rhc^aU~
z67=sph*($2BOM;uWuR5^=%NUw-lV8^HSZXvz)Vs4sz_m}#C4gZRA<xhh^d5CYz#MZ
zX@*oA9=0P^;3{kx2rjW`GA$HB9wId+Pwgnm#np@UU=an?PP$;xrH&p`?O{4^o<?d>
zt_P43Jt-*@r$ru2NsKedoeNo#N=h+>ykI#1XBT;*Z8c>uZHy+#<IIc6KB1&UmL*jO
zV!}o6gjbQ2>?6F&ICV&2$u1)buZp)IN-cNeEwWU^-DEB=>EtyuCPRxjgY?9q^CguG
zn-um_B6O!c;V46;968p0v<s4Q#!F00xz0F*OlpXQkQ$wkeJ&|Ibc)6E^2j<*+JkYf
z=ww{dgA|RTrdB1n`tx9k*8zLP6c#|UxlUrLGd`n&DHw4bTQeR>mDsEYk%`$7rDn=V
z3Q|kt(FW$#$wJJ-2W^x~_;iiVOta&Kda&-(Wv~a2rWk&133twxeFjep<Xl`^4<4;)
zkVu1vil&Y}n}_Sc+9fA5)r@CLWR#JpSY_s6lL8zsDeTsmyRA!QeTTbn7=^=NUf0TF
zF`h_ruI_6gHBWb*kgCBJ4`(5g4C-zHQewf7hozu;uS^;2TO+I0SMwm29#$Eoxd}JY
z<IxncM|6XFS5x|o3i1;0*f}#;92y;=Ye6X&i8^^|-&hXgmQ}4M3I(Hb$&@(YlBe?q
zOV+Ht!40EDL|v+=1$<6dQmaJDqOCQ_xr}^x;A-oN)q_wYwHWi-$Q^PwZdUgmaDT1r
z9(ZD4VhFuUo;&S_t2&lKU1<1|#b@_G{lWpG9>QZgAQ3q>F7~&MDX2;1Kc<vlu)0gi
zir)i58NP}`4Pxq8L#?x>^hqF3T&*+npxRYJu{7kyCG!$tE-EDz0nsVl@kFFumJ&#b
z6=z;5f#n5uC_Q`%NEQ)DrRK>qSsn^P1E0-?e;+b9Go>8M6r#N5F08mo$&Q2602i4&
zXeyJ!Kut<V4j%_HO@2wJjhB>Ic1dBC!5AIxa!qPdSd>aDnEE7FQXbiFI++?BE01}y
zm%<d8QS*$oN`_YHlVToj{OBw|b4F`K*D<w-`$Qh5qQVEshD0bO76Okb>8_ZEyHuvG
z#9E09q8PN(l1kAF*A%^GP2s2mH8t?1KcuOp35Eukw>&1g38_``bT#u<CAdc=DOnwQ
zl95$3)y#{mGV3EKnx(R*kG$sG-R7~o&Uo?k6nqud%~6eyQbDdIj{#j72jZowhm!Gd
z1B?#uCK_g?`0TZZ`(_ff@+4EMjO{^+0?E6Gt2uYEu+`qU#N{3x?t)_&qhSh@FRAou
zDi-FY#cyJ2U6NsCO&LwYr?zHsedwWiRoUkPQze-xS-pGk#5XrNSgtLukrPiUR-?Pw
zNY(28F;b3oK?*9G^8vk2kBq7IRr=H(Q*fJ!J)L6HFH#b@^<b6S2|p8exfrf$q6A<G
zZrbBwTy|GITq7uNaGO{8z9SKes~j<<Gb1Z<?$dfCMXuwY2mg~Mt-mJgmP_aQyE}Fp
zyLRn9cE6~o1hzG%szr*FU_+_p3wXj-D-@M*eczJe7Iq01(`H@Gq**XCX;#Nb9y^w-
zG%ID~R>}fdT3Bgz4UxMt%&kPtg>mEBm$^uC@oSQ_(oAxNT{#I!pf+7(P?J$kf5{Pu
zXit}SMj#naPw%Xh#+r0>$O4ko#<(=cKO2iBr_YmUrzFV*%#FudTc^*P!)ojnnvb~%
za!i+{b;;~VG}b0NC?$|>E<xbfm&gGy*>*q@?lhQCa=G=$t+Wz420>X=Fo`Y2C{`Ls
zCc<;@pfHkHI@5$Q7fEn77uh9qpgb8vm1GkXB{!)`=A@x)#M>{KD}EA}*GM*swr8@l
zfe~ev<q&C?Op+qVBzzLeC6fqhvk;SsP&2%9c1-1Hx~Q(g(yf{Mn<dq;I*~~xx!G95
zl~W1U(pV$U#A4b>V&$w!SvoV>!Uma(wX-fyN+^K_od9@jQIwmZCA_I?))LJ0aWiFk
zQ-XtH5_@NXWH9;v=z5pfx~_Ch?D&>DefW?>$(F4EdGHn*iAtzT(R!IG+#sSU$>J?N
zSR`dDx1w0&;SouTI_K0mq(oMbL=7|=g+|a2f*|nV4%kVjTS;yb2FSq3AkZKPJk%fq
z4}yTm$b$?t$Us4WbiVKVzklz2wrB#D*Y~fr*V%hL|JV9gduNTWK93cEi-nSug(z4z
zu`JyW>A0zRj8ny+GU*QrDf`X?QMtF@T|)BC5|%WH_02nYN3I2=!f?+{U~*^6{$5OO
zZ}#-QF!I=Yuz5GQIW`F_jP}WE-rI)VCF;G08NLyfF}MKO57sM@8=c1_nuPtqBy?r%
z{+Ikr@Zvb^tFHj-wcTwo_yefjXW;GFZwuIzBV0ri((~`aNsUR#eJHSqMh#nRa}mEk
zyL6YG#UvR_CnLIps2(sZKt5Il*1>pC5JdrOIx)bJ<Zf$f4@?is${q>HfJrdNl*%G`
zGu#qM#Q>!7nn`stlN&oQ3eumlxg_PRX4VomB)=~vMe9klWc0gcmSt-F#9pV{1B1jG
z_69i!<Rll9SJJdpElupHV2t(g3~vx&A)5E0&!<WqHGoO$dmu9Dkt&Wi9#b;9MgDcs
zBx-VTIZbS{H$r4mGJL$4yxZ;2J&4JE?3hXhL(*K?+JavS{ZWvF)<G^hP1p)=hnEwQ
z@Vb-0)Wj%4Q*ke7l7$3U$Hy2kf$=e%jP1U;3L8&<hvpq5A*o2bZ?0kjJ<$%+Tt&cy
zFeo)CN(aZ+l=PqtG?Lo&k=)w4A*U-OF$yKCA-UaN?~;vdLfn>|%_P10TmzGcQY7l;
z7W4^Vg_;ttuhUu@$#@;|CL!B3X`zIPg5L%qS_^3;2iva9YidxjcaoJrSunFQ)G@gS
z)hSrmNQ#SYwqzOJ6m_SsMHdD5;eP;!!X#z@*Iy<1LfV}mf+ML7h4OX?ea*E^n5Hl_
zSQd_Jv{^?|UY<;L23q2o?1txyl9II{Xf`2YZv<!5q;y<KhKU0EHKpQp+z71@4Kshv
zjT+Roxo~J?QUg%bXBzoTb|0fjwcTpl6>HIKdy`;+T`+NC#F&J?0_`cy$6)W{xPKEm
z&CP*)u$q*bIi*?PDdw>}5hIByO)A6-4<jbIteVP@Ax@%EIXoXDqRhe$&(Sv-kAgZ@
zCzruxDcNbwOL>6;ofg~A)L>^t<+={)daFN&?U-){K^r0`4I)jM^(3-1*E>7rx|(FZ
zJl{6J;zRqy$FMl}zU-2jRWb~?O-kQXz>|t`vn1ZN3CjbWhWHo-a1R35l{X=)uq-28
zFtCi1Zih`smceH>VRp4mAIWf2V%Y(<A2E7L_GRfqa&c*PVQEPP!WTrzB@C4Kwe4@7
zh1XZ}TgZHF9Y)PyZ=o!cHzg=4$+g|oRYgw`mE4c0f81lx9wtMK2TO=#=ZTjU_?58&
zems&n<U&%WZ39$ptalz1$-8`YM&a<325Za~VGWS+DQYTN=<Ax4=tD8kd^#XIM9+lg
z)19r^wKY1;GO7JIlG~e045QWLI_=TdSzWgSUX%W+AtQjNZLdX~1SFr!xr~pspKE(j
za+eLoHVe%FRY^)x++(sEiv3912N+cFigKrILd?G5)n3+MX#G$Y_TcRKZs*o!SdyEe
zEYOgHY?7-oEc39O(tzL8h9q$l$zU2pg)9N_gGs1)xl1z{(!QwZ$?!G=72e-5MIi7$
z%d$vrc4^*hVwLP{&oa&plj1d$gi|Q?O(u7s<C1vWl*k>G^;e$Hhr@3Zn~1mylx5OG
zj!AMArjo13q$F;Y1vf_d0uvYJcIqLK#43v2G?TF%fGS=isNyx0gu8`A@Fq6&Kajg3
z6-lq2Oh!zPX8(DL`b`M<)?qf;si6i`(yc=(IZ9N<B;;-`S4hI$MC&?SPjkP(+vbXh
zWUjPGvM#nSl49K>X`zu+OO4HeSsxbI{03_@bpT9qcaNk*^=VO+gwh%XV4#y9LUXVM
zPt#b}2c4B3)UA4TG_!Yqi|KkDdbz^Wi#0GQZJClC*DxqsXZxEj8CaHu*uEjVF_XF2
zU~0CW$ZrSKClHgVj6ky6gO3DzlgV&fM)G-1^Z_{d^;N1@o0_As{wgUYX%pt?T&odD
zO>7;@?hP<7sDoot93GM|tLMbQLIIVlc7NE|t!Hi0${y-GB%ijuI6@16F4Rjx4Uk=k
z*Ue2$D&BZWB^9Qwi6q1&?HBULbq)Q!d^2dtVe+9`t%)tm&Q(py{^Tb~H9v_YnsF2S
z2B}a4<e0?l&yQ!*g?6aPBv)OOWzt)yk};i_bgMJzVNXjwr7Ar(SO`D2=5w+>(oRJ(
zSXNQ>#pEnTHoNDsL~L^>7M6Y>Sb~vrr8JIoAxtA}VHwZU7EdX9M(NLFdUv`)zi`>=
z1eCupW4k-kl`<Do<pBD{&y}G%FQy`abgB=?l__2R?xjjSviXyVLm8!A{&J;ER3Gm-
zlR68O*PHoSrTuJZIHLSjeTvhSIv=Kg0_u5~o&rp#HvrRMw=@Bn=Ic`{l4<|0=oE8D
z&aDhOpG_?@KHrGCB6Ne1rl%U8r5a#T%h<@dHcc;6e}u4xG<_B3o<hzUkv{_VRMGi1
z!N~+2+%~3Yk;XO_>Cl#poMVu~Dex<-2h*u|mgyA?RnWufdwFhwY1$IQ)p~@n4>1Ne
zAnYQIz3$fXvdUn4-Fu3SiS%cfYTU(;hLL5nH47I9rsW+e=i(9V;N;0j@55pZ-+D-v
zBXf((T69^@+{)IL&sdEFqa`~q(y-QXO0f+1KE$Y^?1wb`QaU?M_x7|lkd7T~yA6E^
z((-GdNWrvNe^~jL?rM@!C?2^Ee^Id&NJ9WhZN&)mGdPg}uTsz{@9RaG&IN^O@Wc7L
zp@P9o1pUkI>UGH<k%k<IT@&eB6p%Kc09AUhaBpGm?lRNhX|*yrJx`Y*q~~E*gKrhJ
zJxD{ee=K|X$UL}GEa~*OMfzUHXB3fMY{N&9@%@nIN*3?)TWmbDTk$QadSRPO_u_FC
z8keO-oP7hGoZ<2VzT2HSnx-VukK6&zV@=8k1msrReHx0N=wB#X@_fJuR4nN;KC-Z~
zhD|KS!vY2PP@;@1Kz`eXNX0n<g-Q#@;AkU9x=TAe^#@GDyRaQ;Icwu9NQY7d%!}IR
zcRScX$gYA8wMzQDk8tQ@A2AIDn#KUrSWp??T4i$Vkxs4x%1qGd*^QoI8p8P6b?H7L
zy$tO>=u2Qdv_&!9?vRbsm|2oNK{^f4x5-xOJ&^{JwXU&;^gTPXvkdh~^i^jX;}E4H
z&DYU-BAp9;S4oG`1)odh(g=RP&srl5Z87ccqW7VCyWZA&szRyiMqqu0LIrFh$}EF9
z?)G6<V!8{m$EpNV?!u&FKN)bn$}|mCk?#52Ey{$lhI2DsIDYFsd{uUyuIhV{?&C~>
z+ClT_21IC-{~9}?1Qe#R-iR}2S{tC^sX7fgDe0cqDnl7A=?l?rqLaHz`f^u&4WEki
z$QuFQ)n5DZj|@gP0{8Ga`(KY>DeAUDuo<C4=L+oV*wT?+k8fd`>mCP7rh}6oS;fSp
zc^X_C(raMZ@d(q_=ZKzbBkB05Cn2v!I+)@SxUs>h5C#R7krq4l9cqAlwr*sVLOuo^
z_{b6IfI@(cbVT+<x`Sq)qa!WTPy@lmLg^j2-ecY|Er0Vn*AZsWX{l_G#@b6?Ez!LW
zGc6yAcpq#(9rM$m_x3c8P=*>BOKwV=`%_wTkY!*GUS~fl&4Gt~N@?g-*)Eyx$p>I0
z)Hm|fK>C@KHslkawZV2EcX*~Tt#8q`HnP^0-iCn|N7^tKwxA{ekA*b2H?A`u;#?=~
z=%J+<K`+Pp&oZU3IMU{s(VL3tJOa-DIvf_rZ;d?0Kw*EgPvy6cl|It_l<7f-J>UH+
zBZtS8ydCD`ygULWP0V-J1DAG{W14FfO%h7O*THQ<oei`YJpYI?ZJdmiB8%xi*ppyH
z=SIU~i1b!>XAQgr$|Hg{W?S?f{T+((U04f1XZwI7iG7M`4DohfTqx5$D2>UdMw)v{
zrYVCdy<2?CCQbrao*v<2+>zKXkcqH>DBR}=zoWAq^@k(;+?NP$FtR!L^6q_FC6u-Y
z8`E$WAzRIM{`NV&Iilay25bz_Lysaol+w$TEl6)~-~|wOp6O7UPz=d5#i9`?z2S^2
z+bq&hNVxCV^!J|Y3@zzU`Cye&d8V;DI}L+@zA<$!`d#g(*jrV`d#lm|_zhx`BOQ(l
z(J%C<*zQZ_1ARAr?MI#tu)l@IYoznV(vr@w<5?<Hw8t^sezwxuk+_2N^P+vEJ>hns
zGP~P3mZ(4Bh!CCnJ5F4dfp>-W7pA$_hgvDpZWB$BEMMwFM#AG>TIi9^&Qtvq+X1`y
z_Komc8Ij29Z{efQxz?i$JT8jygY-Ah3VkyzI<}@K(LT_(Y+GG|^5B)cJ~O5&hllEE
zxBJ%hj=<}J%0vqKBUGPdA3>7>j|wRWN2Fl!{DK5b?wMCefDRQ4d0M7<_I7!Lu|Y?A
z$%i2QhvYqwhQ<Yh8S59*m^=2@Qrgx5rE{HR8SRBG-|k~IEz(Oo6OQt&Hf9<F%`(mA
zqD3C*HCX$iulsF%mFYCB52)uJkv|3bmQ0gxVS2Dac7lFhBlMuiHC(Ec4SYT6;QXjt
zR~e=$q$fS%nU2tdVivMCe+%j0f0U;0f9xsP_K}V~#oiV3e1E(lS3}8YNPp=wH>A_3
zr*C1}2TDjU#s<>CX0RUGqT);s(j6S#!j>ocAL)}qf5;KWoR!C>(>b=`LxH2cQj3pp
zdTH-x8KjG6rGkn5Xh3Dk?MmAFHRyeNi;O6ZuH!sXI+O}Xw|h(OuYve69SH&*eG*<J
zBhtEf9L6yP`6`S^?-JgdBhaf*Q>wMgX{}vqwPl1q$M0$$c%E)!-No;!kG65h1C~)L
zIYzMZwA$RjG97_=Ne_N6=$!$VYo*QODZO{!2O37U!6xRKywl<CAzRZ3&;Qs<Yy`8k
z;GLdPqrzC~s0V5I{z_jz!gWY|8|X}<FR7bHdg}?C;lvw&w@Sac5uS}kKT^dyqV>aj
zYow)94|-@VGtC1-k#;|-d?-1C&e4};`kI5I@^I{)2b(B8OJcZn4&wnj9e<hsbPY^Z
z1@~K*hH<Str1Hq;f_1*tZ&9f*N+nGU7=h2GrQ3iC13904mO2cA3!mGqLm+)T1ggcP
zhjG=PU99F5nixJ)s9Xr7HpyqMRG-m_jLa!iEqq4qCYf`!`pnSxD1*xYp1DxyqX??6
zbD{b=7plK=p;}w$q^Ou-1*+O_5Wv54QNA+Hxv0Y@CD@?^s0uDt-x{hcpCCci7pp%S
zZRj5jkhN7m?o##RE>%C_Qnj}DYS$LPwFU4eKq*(g=;dk!(NeA;fGY^#3a(U}_e!;S
zuM`?KeCd_yi(aYzPP~AB=ksdLO!Z4=3f&rNn;9xr?VtD=zuVPnu~6~(69CH3en^KS
zc^RSVhg!+An1E~36Y>-q4Xqp%$RA*Y@bR0m{*Q((4w4rbZUg?1KpeE87(NPTr4>FD
z6@X!%@}iC$0G#`v24M6Yr|?v;umBK0ruYwQqr=uz*z`uvZLW1zroz()pgSdv7gRU`
zi(<bGv^FYdYjdzYMH?D(s1elmoq(?f{Z8b}FWe;~5CGEA;$i|kM=z?#;Z^{?BY=+b
zsR9W7Q=zFr4#B)UOh&0qmO28uk<oK-qni?!C-7u*cZybE0&1eC7V!_OhKhhY&lF_N
z5@53`0XUOUp1H!I^2vYyKVSt?UxJH;Ucn%QeS>h=8a=0am$j`KL}+yY>N$f!39uTw
z>*zT+{ZZzeQq|Om7mbL`sy_uDf^ALtx9Adb+3b=zs5nPMO&R)50QiS;V6fp;UcE&i
z^MV@$0NiWnOGjx6hwvj;wb9TRQl*Gz0#IWH5c<OctU+A}8H2wAh2<iI)3(L|<5+MY
zQY|}*<479S8nBQt$eF?SM>*Ku=}lGuz8Zntp`a&R=a2enDRD+I0$Oc5EfKWgAFr@k
zqhEq;n_F}nV65L;dayM6)eTfI&y#6XUb1Rhs+Yv^5DaL{^Zdb8Gt?$TZSw=}!sJL)
z4E(ztmhcSTWOHSWaT-P=d_^da0RFg#Fb(ox8V${5s5A}e!^USMgDpsLH7Z9kYgtF(
z`Ak3FXlsD4LN|bCa9*ndx{&g~#!@poN=<00IR%!xU&LF}O9_6aF<|dPxPtO>n~~Z^
z@69bOEQu3NfXG(Vn~y>tiY~y!Vlg_H(P4!e<56lvIYy}75<pw&v>kwaz@-QUKzIqr
zMCwNUAi{Vs3>|Z}yZ8<P=tVJ;a14b*3;=^<6E@ob#lfdh4)E*9pq@^E24X7D1fX5H
ze?39br+nr<)=J(`qhbUXxLRfoPXPivMNheZJalo94RaU?A_w0RSk%-Ok3z!=;hz3{
zC>9Oq$+X1N96kVv900j{s93nKY4{_j9HRhtpn1TjN3pwI#F60%ELLDO0|D5|;^Q!@
zT2FGg2rP5CWHHS*cNRjywfp_hy&{LvGYZh{6{{t5>2L$%T7?Rh$&Sxb-w1GDL8Z9H
z6d*L1$Qi6W&UVwnV&BD40V}ctpvxH%F91}!>MW=|Hy>~EI2l&h2$w;N3ju#zO8x?b
z-&y3`4&BmdgvMCBei!^{0(mryhK3YNrmB{=8{eA600!G$m8CG%+ahPR4R6&s2EHIz
zC%+vQ)KTt=D#gvn$I2ufjE06Y#Fzkjbrhp8L`O{hDAZ6KUsyDi1DA+}u&0hfmB4St
zG-D3k+#q=KU`+sfi2%UsO$#J*q!W&lV52;3mZ#+bFwgUQFyCd3nuD5Pw8i$DWwQcE
z$9X$~paD>078b-&p1s0WCv*KMD&C512G1b!;3f{Jv?!d9h9WYwETb4-bC9nPBY`=P
z0(<RS%Xe-QFm9cdtfNv!YBC{503XWmfB?IYmbvW_kngbv+9+5TPbTI(-JXZR31*4_
zh5l{yahGb9IKVL~1!ayMD&H`*pep4v018>iwnm%{to`dzTg2K3%_MRlAwCJQ4S>pr
zka0(OJ_~D#6oaF35YxnCZSei44vkJs0GL;0PPb6Fj}}TyzJWBCIb1@GNgEq-(lJau
zM}M%G^~_ON4le5g5?ZBeL5={}N#+d1`A9Pbkh__3u*zV=(Zqny82tFr7xB#37-KwD
zjbhSV=DSgKIqPUP$Qhs!T2Sn;7?qLVu!RKJ0vzWBh|>}%#vCq?MGiMT0Je0xr2*tV
z#~e+qP{xfuEjB&oAgIS}X*&(@nJ{S(bl2dh+KJymY?|$L9JHoe>1c-<eXAx%J6uQ$
zz+fNLcarC$;&ILv7XfWm?5s{jmph6$e9*px*UKn^@3nP&m<`gwalEaqQ2CB_rSF=B
zrV=>;ZpxEx6l!}fBOfyG477}E`w+2*0G?5hka^ll5-dGelp*9`&*wrPIT$toYSCT`
z9gGpHK1BdOtZ8wkYZULv<peLn+UUE5rG_Vj2zYi&%F$6M5s{#o9XZ@mFiGW=GTO)3
z4?d4M07Wkl6oZ1G7_bC!Zrjha`(9L;)9%xuy~z0*`V|4SCsr!~9&ik$5q^}$&%3cw
z1YlpP*Z}(<I7kjY@E7=;+q&~>)C|5XOrvn%3RMt`4T>FI0Ln};+X6UDE~_;GhPT#e
zb}&Kei~y*AWE(LDqo8G<8vtq-!xz%P!+$_0cG!sZq5xp-{Bc+V$q8WyvNoy@x7ff0
z^wPSI)tn77V6azBZvq_HCtE~c&d~u`0!^C)I8VjnPt56W+u1ijZW71=a~_^e$U#Tj
zFa&@ediurQ{B>2p4I+!t39I-W#wuhd=y&$ubIFnc2AG54STu_F;DnT})_~eHR$Z_j
z0NWVg?Ov!0NAc2FalN3(Elc0dVyLIRjbX~)A)rT=hCg<^J*``j)7gu8$6}0wl^raA
zXVkn2G?~<$dJ8_ozRfu&z~zquAsZ(n>;N$2N*rq>fZL^e8_WbQW$oPKvB^=gBlot}
zVwwT;CBkr2!H0`ny!<0axfwsU*ZC*{tIT%R;!NKtTMWO85N~*f{#kJU#fDF?xdyfz
zx^Dgs4v0K~7E-5jN1w}HjfI*6DF7|B3FMBF0Ij1fN5yOqjc05bkQ%TtX1!x*4jKif
zT+I@h54RGy8<u$Y^7K_<%FpLlwqbe!H!^mv)LjTwBy!{>LZbr}l6Q&17KuCx)s~~j
z(t}LfArRu8rhZ1K(Blx5YCEAqxh6DRQk77B!@N?_R3hqmN|Yr_RT1-2@1v4dExP1|
zQvZgM7cN!b#d^mqSt{CCvea`C%@lf3q3T;-xLWAfm^bt;7e6aBY{-NDF($L#^J1x5
zWL~KWBPz9DLR3&?%U>FLv-s`IyZl-FKD3&64(9+XzjtL?8eD(vmFT`iQH|T$I>JQp
z2~_`~POA*_xuLI}85$GT4Z0*6kRRb%=*>qM?|BspQvm<o!_uD-zxS~8XcQ`Z8i{<S
zF=|1Tm9O;=WSvw1hF>0^qb@C0!Lf7D^-qC8ogKhOWeh*Pwh7%F_Rv7<R2SV{xyx^F
zVWXRD$N3E)aWzw|Rn53WWEP7&R4WwHD`o}jYz>}GEo!GGlBQW}C=oSFQ|2Lnpk~CX
zBP$~itTJbR6+VPx=QbE*aVqYy96R?d7O*Kv0IcQP=Yy%>DiVQvhD|$={0d=BCxZEU
z>UK9+_OWxYVoXKEK<2THGSq6I`31IF=FKl)Z-ovi^TKi*DBLsn?W_eRIh{rZqHYoF
z6aDAL*s<US8GVH%fpB6Yj+h8h*(cAov2#5NyHlZm8aoH;%2e=_tR*}jp)T2FEkand
z>FG2U`a+o8=&NW%IaS}l#SLHJmf)~b!|PqRu1@uyv<B=k`b`c75}=5lu5O}!cx`ip
z@Rg_+kO$b<7YGPRO)zAC<ng2mM1eTlHWn|u#CXKaL(`eJ351agZ7BU5nFr4k^cOwh
z#^xAvL(GZljEE$mRv42<pwvptyWW1h0`&>|fhf*Hk@+F=K~*XG#&}-rM#S|%p45w}
zf*aFV4Br>#akMX4r8jm1yc!O~aPMT^F8Ku??i;(wh>l+<`ULX6+(f8>9$0!RO2^P9
zP-OY&<QRr#@1DZ%C=cNkAx+^x3co#u7@C{<s<C;=X7)uKn;+=3XLywYReajUZsSO4
z=boekJa-%39ry6s;Jt(>E6v@Vy>kO7JRPm(8G}lK@h##C>_p4aX4L*IckOvNrr$;{
z>6GhOssH19-t9uGq;t4|aE_NUH`P*OU~Pjb;nCo+dk7%`-&llo<`}#O#stzi4sWoJ
zc(FAPSjv-lj5@(k1F~J>q^$-h(T@DcJ^#3v%y#zTY~~mdHF;792~m}&d!vEkOjL|k
zNr@q2piX>2O1Oc_6VJ@!kl`_{$V1=C<A+F1f-$7Ai;>SM&H2u}uweT=HG?t|?b!XH
z5kh}Jj{9hNB6yNUtgA6G*5NgPI)#eWO(=DhkyngX<w4&GkszOw>m%2Rl@`1?5Rg}<
zgfaZoU#+ydxY!zO;Fy@*RB;4K9miPc$IQDC;fS72GxIt55bEgyNlYM;jtshWN{3_c
z7=(VOPv=e|DaP1ukgLb28H4_m=hBIGpg}-cBTcW|ALJKEof<U{V?yyD5M(MH1;zX&
z!jIAPbob_*5OiW(s%S78i;YX`5)pM@MV;X>cngXuNUq2OXFUHnPA~*YaWxQ}f^`OF
zjEW~XfQD!e-j%-EXbCdRW73p~6Xu&?JZ|q5wIJ{;0>rjLdK+UTBdoOHH2?$&uSDev
zhFW0ufV-@vim`UNW-*T%Gsp;d0itrv0%CwTZmaO32!x}RmIKGI`F=wiAtFyP4+tDe
zsLF(FRzlu-OIk)MUW6#nJ`0uO7^E$>7iR$T<oaR(0m#;h<wfLeT!1u`J{V&gD}%f3
z?OV|Da1;RLQb9!jJpP*cJw5KQQzCB@Q3M(CR|+*C8lG~z5bbIbvQ8jLxlb5R1PCiq
zh|vWqo|6VjYclhC&n|iI2y~@_=%C4cE#7Q!>%#rsI<6|<nBN>o#~jLqvCU}CKH3R+
z6anX`snv5tH`~zY2EvAkm_;5-SXS4*Nda_>S}<-#G0H<HrgffmN<(&MWsmnO808m1
zEyn5QaTfk|o1rNj!(qm4sIxI<$-BWifMILR))>9(aB+c0G7xqMpAJOcE{<ib&`!bU
zs_MS6PN|(@o}AeR6w8Tro<i9Q^ADpPjiF$rPMCW-U-AI$CJq{B#Fc#re8Y&(`9-4N
z$r~an_!2rFd3jh7t9YR8SUx!lpuuVtVlEN&S)1~$OT^(EC7~jdSyV`T8+CvsqE9vu
znr`hD*j8-mM$4&3QXV3&gy{hYzE_)w)}*;<rC)edAx|nRuh3BP&Bc<&RRaq*&Kl+_
z9J(o4mY5gTXG|F=>Bpd*f)GzefX~soA{{p)>yGim3SBr5#@m{Ge#dy(xm%tku_(4S
zmc!=|h?=Ne6|uW;&||~L8ByeI=e`+;2M4je=+|+~5Gb_rESa6gk{jKfEm$7q?K|cp
zf}vs<qejX$NtWd3Ti=0Fd3p#zFTlJ$ran7gh_<PF{g@qSgdR+Bv~w%3+Y={D?F61f
z0~M<<20uEI_9>1KD3fS-p-QMk;T1T>?HX3l?WgqF8VjY5WA_5V<n>MNhV&>y1AF#c
zhZD-Lv2fJ47uXn9gdG^6BOdY?^)u2EwV&Y^h~nfZ6s|x|+B>});aNNOoLZR}*vumW
zcM9PqQE)nmigi#W?_+J3WLhA}je#7Mih7oD>uGd?ix@Ur#qBu{scs0vSAv*(1|n8$
zoku(zV(%K~ceWoxXdOQ{B*y_(MIyjbno(g+hADMhz(Rr{ghr<HqaysQ^phd9PKKXJ
zSkXQZUV^ik1@eG}v@TeB8WCQ;Shyq!#-myDmC{*<xmQbnEJ9_5BraHr;(!+}#yeAI
zKxmB&JEH<K*M3d@T_{)h0n&t^FuqTQFBb+J%Ej?OV%L0W+E|_P`%C^^*PKcf7f$G!
z{TBJV)}0hElqU&ivN__1pa!WnJGCM)`}Dn3i&S3nVZ}KQA1KJ|sOq6LPk!fzI8@0@
zzvM&dE=W+#4+{sR0&+v-BFUQBC-xyC#4ClTPULD(hK`WA8kFINBUn1(5K<{C9~(YP
zCCnNQf5D<tz)i#_r`y7KDpY1~%tG!3e7Xkt+=3w>og}BU1}j$=;@IzMoQjj}_S6Q~
zR_0Q3vV`RwTPJ_Ws*`Z}G8C8it0GrTg{aWu=hksjs8F96M&mG7K3(AwR6?*CytKx-
zxd<6{x?FRai$?#N>r$U#U&ljf6P6D`Hu^n=7>m{*#97VIxI``>x0);r39p(97;I(~
zM*r2|;^H^6{9e}F888>CXh8O%7)U^>X#Sv3AN(OKNHmgDEmMJvQ)-yv9;-rOdennw
zg2Xi*UST2dF*o(j8`RX4@aerJLaMe4?Gqr+vuaCH4+_RL0IV6C($sx)8C;b3tcD<M
z=kxcNE6olAw$jiN5L!CEGa)rS{$3QGg>3V@kjTep5%8n427z5S`WP-*|1mx*w+FHT
z>OpWM^IYHKyykdC-vc$kctznOsMA-7KBsG7#xb&2q2pN#hZjKc&1g9uxg(?sXb>8&
z@$eHXUc;&uaSJGXlV^`mgwu+U-f88;k!j2fA98Pjae#BRolF1+3v;*c+`s+1>%U{J
z76Bg6r!-Fpo<V#V;e43NeJ|8F&!L9eNUagOZ47V}z6~z^3p#x1(4inc09-Y-TH_)4
zq(X5VCc6}q*j90zG?hu?^slN^MGvd|WfZ>GUx(+%A01O{{GK^s4iDrirkC7r?y}|u
z^cFf7Y{4eyQR!Z#x3V^p<Cnu5aJxGT7bScOp`x9s@l};$eT9GKIF|^jU~Yh+M`6M_
zjJVtAWJ8=s7E@J1X0j?4md-|M8o|m3G8eKMjqp*Jt^(0hdKR|v!G`!5LN@s_4jRBf
zMi|_1t}67#U+xxtv;@gwWvf_%ARtuEc8>#Ajuek;Y}%O%HFGq!BE|;a%6?@S1oIp!
zID1-n#Szj{7%Kq_-)Are2pdrIu`t}8prA;%%5lA3IbsD19TsxI8dh@w%eQ)PZxOE$
z0}YcM4ab>9TQhjsaj5!ZRzlfNxYa|<cJwjgxDjf0C;L1e*0h1FxyW5z=Y~RGPTE+<
zSHWdd#t3upII^H`DSj7DwyFB%@0R+P-$DTc2vIjilX7K9kOoE&FU;MQ4zMhYYZxS&
z>+niKGEh;tw`b`pAo?5fRm5o?$6o7pX2>Z(DTp1cBcX+2!gjxhABM?6h2e3!(_VsQ
z`b$E%6z9+)?B1xjGL1t%vR@M=D{#g1T*f;-(f+HgmP;DuF>}eWy9WVfw$NHec>^#4
zTw!H`Xfn>(x?+J9aJ|JfIK9mPc{aK)34ytgzOW0}&N?oCBIssAULQ|=OSsSg`dB0u
zd^}q?5@D_g4(=fQqqYY^>RjR;8NMV#K0~~<u4tS(7%I({rA`FXPqhogYPeycFx`zf
z3e7SRV%BL&C>I<OLRs-VQvt&fkPvGuVrcJ$=s8Z+2&S}7<Rh05QIc`gSwFOeGhE!+
zLiQbJA7Iv5l>vy6!6*oj_4q98*E&mvAa;UOl5<j1hDR=8@fy@N(a9ua^KrsHPA-Sv
zNdf<=yUNDNTrL2D3|AN%pWv?gCzLNJEN2a$nInv~Le7AMn*LchJeaJi84u?qeyv6h
z<5by$O|L;k4nk4UIhnt^LocfcqX-D)4b~`hi_Vn-mRpQ+;kAS{DYQ<?&3(nW3oDz|
zTrDGa#f`A4Xmqh39bIC?)}}gZ9MQF~rN*{ti17(Ea%cU+h)2Ugv=3Pk5NwVnt08&m
zpUGuaJMdd6bbsTiT=1CeL6*Yej_ay;pY1rjOW+mX(Rv_=DOE(%881#x#@N70P1Vmr
zI9QGws$=+UA3kEOZEHsei%k=`akEh|uKJa25xIm2Z0?A5f|bT$E`}g&mux!1+y@1@
z4?^K3`zUgCqfM@6g1d0Td_w&ubBkS4kX}!z6-KVKKRfIN<wk%j+B*mbE8woUq|#G!
z96CPDKiGSq@fnAQNc9uYMOd!G5~W-$S6ylm=?a6wi0%b<y8CjY9nWY}o>tgvT2BVh
zGozzfn9N{1!w8N`VfZyPAo6S-$Jn5on_P8RSUx{r$<YOn@s}$j7ByjQT*Agfhrw|!
z68%B3(`|RZhAKFiUglOdYeK4}bq-fj8&(L~ix<gnDL4Fh<Ba=w+<p}1O61~0mX@zy
zT!arHrzG_^V45AIa{Rd*Y1DzrEj2g=v=xZYa^LqxkJ-V$?_Xh9;P2Xg{QtG_E#n`I
z7mVK+KQR8$_>u9U@rLnF#y#V=#=FMvj9(Zx{;PP8KN&ZTUm8yse`kEgc;9%^_?7Wl
z;{)Sq<L`}Uj9(jHGycK&mhl_o1>+x$9~d7RKQjKwc*FRuanJaj@vd>>pTu{+Fm4+E
z$#}x}rSTc#?~Esn_l?gQzcQXSJ}{m!{@(bS@oVE-#y=P@7{4)oVEm);BjZEk4db7T
zd&X~#ca7f}zc6n6*Y1DgrtwST3FGgK&lv9;Pa3~6K5KknJZ=2F@r?0n<7>u07~e8}
zW4vJeqwxddL*qxrKN)Wrzcua|zcb!7Zv5x&f8(a{pNuDrUmBk={?2&Pc;EP}@hjtL
z;{)Rv<L`~H8NW8ZW&DHjg7F*U2gW}dKQcZv-Z1{jxM%#<c-Q!y@eAX|f8+i)ZW_Nd
zo-qE-_>A$s@ucx9<Fm#G#?!{%8_yWOHoj*3gYhlnH^vLbKN>$UJ~V!0{FCv9@mu4b
z@jK&P<HmpC{x@zK|H*j5_@(g~<L`_ojrWbu8ox50Ha;+(G5+58n(=GnTgE>aFBrcu
zeqj8g@gw6y;|=4VjC;m!jdzXT8NV=Y{H^=nxM}>-c*6KQ<1@zl#*@acjL#Y$7*892
zZ#-lC+W4CB55~8Q-xx0#|7iTc_|W)~@lVDZ#&3;##_x=GjT`^e{cqef{*&>9@k`?~
z#@`uF8t)sQHGXA0ZG2!nWBk4GHRIRDw~T)<UNC-R{J{7}<44Aa#v8^z8TX9e8t)pv
zGk#&*_;20+#!cgw#uLWh8J{uUH=Z<pWqj87z<ApDd*d17*T&b3e=xpf{Kj~}_($Uh
z#)rm_jDIrTFn(*?Gk#~hYuxxR-T%f-<3AZs7{4?=WBi@*r18G-S>sp6)5ZtJGsfQ=
zUo(Dfe9QO;;|1e4#t)2tG=5}!XuM(klX1`Zt?{n$JL4C|jsMR5Z`?F~X*^;4o$(pt
zed9^vSH@?J4~(aczc-#Ser<fs_y^-##&3)ljDIwKV0>u&$oMDY4db`QJ>z%AyT*-w
z=KeQs8vn_7!uX}}8RPGaCyn=w&l<lno;E%(o-zL3_?q!+<6Fi*7%v#VF@9kDqwyo-
zL*otOpNxCPZ;f}2-x<F!Zv6M|f8(a{OXCUS?~KnF?;B4VzcM~+d|*6n{Jrsv@oVF2
z#y=R}GJa#cVEm);1LH&EN5(%HZy3Kd?is%`-ZgIgbN9b-)A&!u6UHx%&lrDaJZZdd
zeAf7t@wD-Q@r?2J#@CEr8{abi!Fa*=jqwBHAB`Uw9~y5M|76@VervpI{Lc7=apS=K
zZ`?F~X*^;4o$(pted9^vSH@?J4~(aczc-#Ser<fs_y^-##&3)ljDIwKV0>u&$oMDY
z4db`QJ>z%AyT*-_gN>WUe=?pherbHh_&eiC<9*|^#;=U0jSq}xjK4R&X8hXtmhlh9
z3&wAZ9~l2={K)vwc*FQ7<DT(b<6Yx-#xIN;|AYJAxM}>-c*6KQ<1@zl#*@acjL#Y$
z7+?De${YMW`fdDw!5Ej(2Hp6DanJar@eAX9<Cn$<#{0&vjSr097{4|?G=5|J*7(r4
zaXa4Ut?`6$<LjVL8c!Hc8&4WvGoChHFurE|$aulHXZ*<cg>ldLrSS{nedCwL2gdux
zuZ<6k-x$9(J~Vz~{MPu;xN*ndZ#-e#c;N3ho-m#^o;1E@JZ-#Se9icg@q%&B_>u7o
z<DT(L;}^#J#xIQzjQ5RS8y^_IF@9})X#B?bt?{98<F3Eoc*3~x@A&(TCyb|!CylQe
zPa7k&jmGyi<448|#y#Ul#xIO}#xIRu81EauG(IriH-2q=VEo4Tweg|x8{@aehsKS2
z{(j>L<Hle6`;8}zr;R6#uNhApFBo4leq_90+%tY;{KB|r{L=V^@xJj(;{)S;<JZOq
z#&3*Y8y_0KF@9@&Xxv!v_Zv?bH-7K$H=Zz_Hl8%TW;|`YV0_K^k@13Y&-jt?3*(;g
zOXC;D`^GPg4~+MXUmG77zcGGod}#c}_^t7wapQOXe&Y$_#=q<DH=Zz_Hl8%TW;|`Y
zV0_K^k@13Y&-jt?3*(;gOXC;D`^GPg4~+MXUmG77zcGGod}#c}_^t7wabwZnZ#-e#
zc<Appo-m#^o;1E@JZ%hbkC^|)kBk?LVNi?x&-jIL&-kVB3*&v`m&OOi`^K-04~*X!
zzcxNJeq;RB_|Ukq<nK40FmC*N{(j>L<7wkb<7>v##)u~r-*5cLc)_@5{K)u)anJar
z@eAX9<Cn$<#{0&vjSr097{4|?G=5|J*7(r4vFz_Ro-l5F<L@_~FrGG^G`?m$ZM<N7
z&G?b=f-z3FNB<kYFzy+@G=5>cZ~W5uz<A&Iwef-R8{^l;hsJM=-x?npH}3oUjVFv7
zkNo|{6UNiVlg8JKr;QhkuNglwUNG(%KQew{+%tY@{K9zO_@(iI@xJkE;{)S2#;=VJ
zjo%o*H9j<MBwuJek$mBbzd!jx<7wj;U*1qZ`kK^6;^3+q1#Wz(Vg+v2F#JaJm(QQ6
z<xke|uWNX^hT$AERNwVl{#Y#^E-*vo;T%7N-~J2!{i1mP|F4DxEBU*%-+M7NT;F)D
zemI@zFTejktl|HthF{ch<L?9^pa1){{9`rz4{G=y*6=^7;o~*@qV{|5-kny7{QZ};
z@{OxO$ovzv{Qs<m8w-CXN|yhwp8qceA@l#HmOov~->>Dr__v3j2l{}NtnXE17x-^#
z_5E!v|Dc9X)$spV!_B`Ng#5k#sh0my4gV8FUguwye=Stv|FwocuHheQ_@~<MH=0o(
z>;JZff2=+Kf7I|{4gc@8=NltYAnQL<EC05J-_`K{Q^Wsq4IkF(kKQcX=g-u;CH}C6
zn>GB(3tGPKzf$|XGqv)QHT=sO{x@p)Yz_aSR{y_N!+%*T|8LdsWUc(QTK<3P1t7oY
zQ7!-P)t-kVs{XS4ffs<pf2`%dsNsLJR^NYI%RgJo|4(Z9KX`%2-}|nX-<TMFzlj>&
zua!Sn`@Mf!%YRkF2Q~ad4L3Z&^Zov}TK<nUJYD<!!&?5kT769~09n76+hYDVVtFj^
zhc$eu_Iu4*{zMI*sbQQr(qI1m*;@WgE&p0A|7Hz)`7GY|FKf>~sFi>5>G1EruHm&>
z`EP6ZTCM&Uwfvv{-{JaaYvuoOt^C`6F<jo;Me#jf)SidWu>P|B_G|TBujPMV%lGnJ
z)c-%%^8c3_zE!L5|E%TzRKx#w4d1Rk|9}0fLCE)Sc!5fMw^n|kh9_&~ul?(_`Ys0t
zl=U?xhx3<f^*yT9_n?;FujP9?DBAC@Yvo_o%KuFbKXUoTN7t0{cF;(?R?BaEXoAZp
zf1BkuYUPu^&HTyQ^U2?4e)6}8w`%nzf1CNq-zM(V%J*tG`P(d?{B7doZxbhfn>hK~
z#L>I>5x2)~?e~(u&HUtV6ThgHPyROZ|9&k$`P<C@2etfvSi}FQhLgX|=aaupocwL#
zm$m1Uzs>yQZxbhfn>hK~#NXBH%LUWzm;7y(PyROXe(m|>Z!;g+vE#VDSGDrV-)8y0
zt>quoaPqfVKKa|k$=@bU{x)&)w~3R#P5ip{d&%Ese)6}8f2fsD{x<WIzfGL{ZQ>tm
z&nJJI`G>Xq<Zm-S`P;;2YUSV7@VgpL{x+Xa{x)&)w~5`G#r#VCHuICeO`QB~;^c1=
zCx4qb`P;;kF?x#MOa3<VlfO-z{B2?{uf_Ap-)4UDw~3R#O*~m^uWPmUN&Ys=KdR;b
zz1s81-)8ybZxbhfoA^bozT|H+Kl$6lXKTNg{B7nZf15b@+r-J=CQkk~@qX=nlE2OT
z<Zlxvf15b@+r-J=CQkk~aq_o`lfO+oUHjg{+WRGco8^<gO`QB~;^c1=Cx4qb`P;<F
z-zHA}HgWQ|iIcxgocwL#ncDXxf1CNq-zLuGI&t#1iIcxgocwL#<Zlxvf15b@+r-yu
z@0a{-<|lufc(ztP`P<A-{x)%L7m2^9JwI2&$=_!A>$UvkZ!<sn+r-J=CQkk~@vT~Y
z$=_yv^0$eTzfF9*_I&cUnV<Y^;^c1=FVvn-{x<WIzfIgQe_P;5SK$3O`P<A-{x<Q0
z+V3TQoB7G#CQkk~aq_o`lfO;;DC=(=%kzfkd5XRPtYiA;Bgj;Vao!W>k%lm$DgYPp
zG<c_S6*IyiFb?%bJPjUE0>)YP^E_6lQ%ArI%zU0_(3t=}7svS*ade1B5rN|XzfSBE
z^ImM6*>Q*h;Ea=@hz-P-E<1t+rZMr=&!&qjbcm|~5P&aSoQ_zU48%Zuxe|GTn6Vei
z_xb(BX-D30`AgNf4k(||Ch~nQU%ecGE?oX{HPQpiKdi)O0KRhR5^nNl<cE0wnfyRM
zKT{12f%3YyC&N7mSFTn8eprnyE6jKTzJ5kH&-t(G`yUqP{y84_{P6od#2Xe-E|_0N
z;EeKRY|Fs$bBugY;*2nPEN=bLC}M;?V8z6Z(2m3mL4kmd2#450Oa|bc$3=gXSZCYx
zyuzwY#VIr8Gb~P}|0179)9&f}7-!=z|01G<vV4sExHgCH+uGWkQjj&>(-|01IB`t^
z?*Ioz)C-J`E#9j_th2L-!N99S_`I=>iZNdiLwV#Mr?rg{2%{Wd$Om5C<4H#4>mDPX
z@{IYwNE!G~K?7JnF~5eVOoed<4pB$-vlWct#K<Bj&-{q5@v8z4bc__yG>*k|D~@d$
z<K$uI_Tqh(*K}ONd03qLD{#B>EUy1K7S|@>bS39B^L33<7cr`E&5dvdV8BH}!riHM
z_i=nbe_x{q$M<j)U;QbJTO){BUU+rSk(Z1yesFwV^(&u|q7*+B`G~DL$DmbiZyvIp
zx)E34@b@@6ac&rgh#AHs@NFH$jo)WJK9x5s6#0zK$nl)ziFsg{@5k~u_Sk0~i4~gV
zn>$$6BR}xnrNjdqHsv$I4Cm2#+*-y3m<1j%xHm%_96Q%tK?GC8RpFUG;Q=n3>O3jl
zp8<&?!Wxf|A3Mi&cj__1R$$d-c`Uq$%o=fGl`qUU7+hw)k7Z8%7Kfs%IATAQ`5ec5
zKFc%Ofyxh7rt$)L;Rt9j6=yS1-gs3ps7j1T+M17<&kJQ$zss}!A&k?7#E3=134q=i
z1m<z+DIJN_c!;4rm>S>&E#F6r+2Yq~4?fSu5&=aYXa5lo23r@W@63YDiG0vLBj)o8
zXN(Pq;Tf4voSPu>8GE*eS4RlJSwv1a77<7=o+H@DF`cx;;-FK`$j>ktj+uHaPFoi7
z5su9<^gxCIMR~j?&WIPc@DStE6#<SxJ&tka;NGS<|0%qM8;pv3c8+PB+(PVD9-T%0
zO+;GY#ZJC$=h)3n-jQ5{0Xg>N+}y%_yf5y);QjB%5ad0A>9D;5-`hqcf5uth_hK1D
zhafIH7bxPK?mXw8_$gvCU^uJ%00)M9XdXlr;CRESe8zYEVzZ+#B*%FCc@u}3w|UwX
z`FC-5t^%|8_w&rG;<qB7*EF%HjujK5qY&Xu=cf64SeaJQJA0sOycT!WbG{;<3lXD&
zIPixs=2zU~t9;#wkU>R|-)XNSjHaWR0RMsaenmhOlwU&34740$t!Tbt6=IB-h^C<Y
z?HgFF;=Y)`L+y$3e5GPP1Lj=Cf{K=9d7e4O`s53_fDsZ<7Y5*mk-yws#OlVE!YN*2
z9vVm2&oNLF@cq0CG$QJjco|F@^0l#+v48{Pjw<bMnU9x3G+#yzKK9q`ewQyiKe%!4
zCgum0HTIMO1FZ$-&F=C2!q0fVIM16OtA_aC{Ehgnckn;_05KYmaf#91&p6*#aYeGC
zYa$L1>yK!xD|wB@v550g?q}s?Lpain@(S&d^D8l~EAg#E#}q^LYXmZ7xEtnUANp!@
z1;Yq&7ljoT2r~-fA}~1F%~dq=_MY)p8O0ONJ6H&=D}Su~%6tyY`5Yl$N?f$hns&zD
z?O=xS{`zCU<k**W8-y?}GC}xKg%u&*T&o8DIEJl9;Y@w?QSk2>p5;T{U5qfBh>_c#
z`Ev>h%pa;>d_}Gw%m-tGi@ygO7~$-%_HOU)-LJ8Cbf2p~@-B9*FUWsfU0)LaHQF29
z!Tx)UC>8BKM;(?q;Xe3F$9n?Kcp{pg#MSjEa0Vt~q{L$xL&Q-=kAd4`?2k4^5#zB4
zW5IdCh_C#8#0>$X!37#quE6E{D6U9(+YRKKR=<;>8&Do!t|+aFiYSb|0x=y?slE?4
z5phLl$PHtLSe)-Hqv5&#A?^gCFd~8>!+8L+pyqglg#g}F;D+RXcoPt2Mtl&<?`-3y
zr?2uR4ai&VHAGa1WB$lT7>#oM6yDtitBH7Fie!m=UyT>hY>pLyP~&E(V_i)IzKp_;
z9qV;_h-Y40#B&Vn1%t0g^k>x1@x=8MtCjdq;)tB2t6Y@N;iNurd9JsP6{>uET!x4N
zRz%D>hBjt@0bj>`_Qm@EbNy|vag{-S5kVBOjyZn|%)ku9u|5~`2g4b=X=mLLYL1DK
z&}M=dTPTly-9+HB_U)BbUiNj25fW53?r1*toG}p)EUOoxR*o0)wfOo%?#=}A9XtL!
zCJ|n!_ILa#zU=(d+yonq<L8DXpdd)Zi7i3|@#w{xhexVRqe>)~6<iofBq7+Y;}o;2
za-Rrdtrh);b?`!w2zMw+SA=RzLlUl3Lm-myuwI8k7e-hyRf;QV$yw?eR}-r8ChEZD
z$;FiqD)DeACMQbx&A}$|;wusgp`2ro1O+yXNQObEL@P`JmesD~74i{vU_>m85)z`c
z9zu{}iAw0bAdr_-$p884B=F*jBBIp?BtU0^TUeiKe6fVSjQ^1PXNgrwyG3Ng<8h@0
zWeo1BEMa+-`#u98gFt~*VR9g$CSe0X`@y7@1c<Phz#ym&DSdQtEQPG&=Ma1waUUIf
zizU{;)i3N|p>JWGX9;x@<1^lr9AE-?Eqx0gp<o&zO0b|OfnS2<j8id6P*M|5DniJv
z14*M50+k`rb82(nL;`X3xVxTQujIuf+z5eDC3vZCa!9OHvm^L|_}aMX7uWq}t3$!S
z{YAWwUfmi8tvXc#cZ#lB{oCi;Q}{2V<sX+ENEuNd$M;~TVHJ$%gM1GXR`(Wf&RzNZ
zf`%mtl&rC!MpufUu#gIR6pvsBPwuH8Allk3ijM^Wp(7U<rMya5x(7Y*5MlAFVZ!o*
z<q82q3TmY!AOK}XhKxFJSteM0aOo;Rsr51biR(a6f&_-X3AxXN&f_N%Y}p=OlQ53`
zagtQ|&viuiVF_NQG!;L}n;AfekU@FjN=ZOW`ksbVme}U_<clQ%K}$Em&w@}L$s$<5
zEIKNeLb152!zI4q=o=ywKkE{ZGg|Q;CaiZcgR75hP~S8}U?WutoAo-LlIN(FcnSs{
zfsODj{uKp8A0ou<DrE^wGqSrC0(rb4LIho_l;9O-)e>c!`ezlDs9J)X;U9(wtKy=L
zGgv6}#|{_D5+FcPS|w19N7SLg((@JE0gDn6<Sn`C5k?p#|8TFf1yvwQM5Jq8_|t*x
zTN38MkZA<*4X5%d6_yYI!idB*R>~!sA(?cQ8VQOvnnRn9=xP~;3S~IBf`DbvVfkD_
zi~)Fll%Rm8yHikz!4;3EJe^k)AO8ZM@r0LV<e(E%h*0&oF&!5p;1Mk~LnR!4^xn?4
zZsR$A16NLLafLyfQItL&Yu+-#=TTb-0#@HPf_Pgx1A)Rjl?8dn&G9e0+t|f11;O&{
z@Mq@-cQJ7pbk23~W)`k-i{gt>;!bfbGetcT$ei$w7rqPMgWWU7;Ng<|K;W}?=I`8y
zWlMw%LwZZGgO4jxVH@GpbzuWaV4pxh{)~S{LfmLlT!KS_?nBWm<<Ekk1v~hlAXrr9
zVopM~Z|+gcUn~u`2l!?wA`nUr!Cdi(2zv}b82YW_`iaG*Wi(Liw-9h0Yl|8Vj35v+
zF;e6`4h>7Ug=l7N^OPb$IzmfEn7rdFx`+fF$yj9Evk}H^1uD*Rvp}dzbQ~@w%&l>C
zuNuG;k6=TKcf(f5i%E}z4*&;L25U0`lB?rqf&eC3il<<PgAkX3U|^~alqg0a30=rL
zP$(7e0fgN=wJ<CJIY%K2rJ*zdFQR>oCZ6M!3q@je;GS0%N{*9&V1HKI@R2Tfk9K+G
z%klQm;719_so(&l-B7qS5ZGAgBTX@s!0yD5YNClBW0z3)DmrSt^@VPB$vBwD*U>^d
zYfIOEo8PjIuOr6-DFOOYREoQC5vCssu;<<W7F(V2XgS45=yunZ5Hf9ZH*SwP9ujDU
zAt6EHk9CsADO0u|&vw?d2%rv%25sHnipx33ZXlE;q&&)PR9lgNV2NL}%X@8)$CVpe
z60jJ2SiNI%A2P;!1k?e35Fs`@>rhm!tD_i#FeW1BI7*1XWm!=hNmzj`?whzdfa?9@
zJuIc@xkCOtZh0`KzDhtqL?a?xBxea9L0I0Z2zeZx7Am;SbxZ-2NCG1Siwz`!YXdA}
zS%TpKQ}EX#&!`ao0*XuBt#BM$<<d&!GKu5tM%Iy0KaXqj^(*rw2=j>k8L}`+#HA-G
zyo*rAg2m6Ggoax&q)6E9p)0k*MF}paXx4~z&PO1r%@ucL9LKJ<iUs3|RtpX(B`{M8
zu1^HqjzFu1mJ7%^vvEIC1SZ5IxJaS6QcHF0RqmhyLEBZzvFsNRcAy0)mmD-;Wi3RB
z=M-(Fzvg8jA*i0Py*RJNu8FUW6PlM8ROeUG*6h3!w&<1<0F)Y|3rg~B=Ilr@*YQm-
zT@{LXstUynQH3%HZsvr9(y9On%B6=xf*L50LS-kg2q{W@sRcq&h6F%RAc#`di0kh8
zr4T%atiz%ViNK^t3XJs&Yc46OxUk`of{`DBgREwxWCMj=MwE)>CF&Vyw@BN^iI6vO
zt9P#6C(cE$gaLz68YmR5uS<soy*2Bhth|aHbWtpTC{j4A3|gCr*NPc>q7+McTdcl<
zeC{M(AT84_BL-|)GanS+$hh5~)eSZUh1WYK1>!8{GG0c~D$3wKMlBd-o=${xN}&lm
z6IqZG=W;xT_$|tAyESzK0XV%MoG3+Du><@H3AGe9%^-*(>nvs|s%AYDYriy)6<_M!
zD(=TbnUG^ylXN4ds7XMBy1*2I$++d9r2Lv!Mnbqfk;ADIB6Eep>kIyBMem~_hkY+^
zqViKDU*J`B{4JFcrMF2rsX{4QLuH^T)Td)XI1!fHZ?Pj-U^iupny-1ZMo|Vcvt9HB
z-dzqKX`#eZAx(S9<5y6eW>Dl<1Wgh5q8%@4?oLVVRgSt%Y*3q9&`UhKyR!vO{6yG-
zZ83`Xfi2+oc!T0njuYodiFv?D#HUnk4{AQCCrIJ)v!I;<tT41HNx=?Mv`-4>Shutp
zMwzhW&f<@)!7^GU`yrx;qSbl|Jw$m66bZ&1vU8}L6sV1$mF1-kVRJokuJ>ef7h@HB
ze%yzAB1B<)dD$8gj{BYU)HtAwrQ_5EmlVtksJr=Hl75$#U@XUc(o7Mha``#R<U*?e
z<9x${0&a=-6_*r7RgV=Q%dD-g<Ic)znfBJ>r9E&h<x^m^HfgP|QsTCUDurxVwanJz
z4p_V@<>@jw0f@%sQ%`*-cZC98ZTPnoI#{b#zB3{gV}e)f5ra2G*?!u?9?UkB#d$s#
zWKq1%M(>D1S(RM1E}3M_+D{m*9lQareINxq2#oWK+j0A1g|ahPS%<_@QY5+zJ;h1+
zjovWp`DTtc-to7z$nu64tqY<+%x!INeBGx#O})b{57&7?R^Sf8-`eR=IX>lx+<Z!+
zFD-5oWPj24#q7>nW0We~-~4iAXAN$^CuBzi|LXsX0?tO}VyzoNL3?&!q(UHOUbcXz
z(0qux9fn_s>Y()YKuuW+zXiT2e+xz>{uX9Lf2Eif9KABb#<deSvF0XafLkNt_9)ad
zzp|b6z)H({l27FOU`-)q@Z}cl!dr0Upd`zuaL28`6c!dfMIKm|=%SZti~eE`x<{%{
zwL1g_Tz5f9$q4O(i{{{gapHG7;E^eJ#4Zd9E0oO{qXV}WRw#v^N>PU64xT_RL(7O+
zYf!Kkv#Pw$EGQCPVv%5rEkQHEyB+b?;gN7+X{Se%J*0Ksz@joq(NGwsP<kYVvDniN
z5B(il48tf}3>+F;tgtPoHU9)>#E`<_gjRh@&I}w)X7&XB&sBK-@m-j%lA>kUqbADS
zhD<&yUoml&60)n(+zId@+XM32@t$}}wqEHAWRD|7pKvP$u#&<XG((k%GASivJoh=j
zM4^2r+5Dh{;2d}OouD*|8#Pk^<5Qu)89*z8`&{^?pkN!qZAu;AuXkb%6O!H=ZM>4~
z$tTvjH?i4O-w>1G?p<Dyyxv7naA;pofPx9f`+=m!35vQjwgRrSxO4zFntk)wo*bm`
zo<c|fbMdAX3N#B~1oTvUo5nb{VrVz;)b`Ts-C`2zDe#kMm?H4`2?Y4BmDxaN#SJpq
z@|(V7({m8@_?iU_=iY7E_Cdj{qBgYPSA8WyrBxv*!CtD%8!6ADo-m!tkA-$+P$;i)
z!$Hea;u8h8Rn9_RbraW@Zm|surXXfFC~<j2vCf0i!=eoJB>a0&%_iH2cMn0hv8gR6
zU{xutZ_iTg!!nreb5$wvgk@q(S9wjaOju2^T!Rbfvz|UCatvJGTL_Ar(D>FN^q*iP
z`&pDn)5c{5pfH$yb+lk#yWL)g?<7Wt^z0}zv`XN&xS_Szu*Mg>-ym0jSQA(#DX}Ji
zA}1#*u<rM05G6%=)M7mW1x(&<ZwIc6#T!bh+=EL>Y8g&YY0RF{HM%RD7p7Fk^K<MT
z*<7={*D(JkEPryRI#0GKGyMMvjUnFW$3+iDuSR2{B1)RWsglg%OvnN%ra0v}kUqO`
zwRDeFT`*}D!&I^vN?oXlbRxZ1>f-0aW=WK~_<miN-X~ptp9GKGA&VyJ`uzP;xUFtT
z97QQ!U{^KCiuB&A&eWt$l(MW_7@0+)o+^DS+0ZDJELIqrhe%;+CaGozC5f!`e9r%<
zi=>Jbilvg}wFFls$>0+Y<~!J+qf+K^!GUo>ASu}>84rRqWE}VarSzh_FiI;YIBJt%
z!`0?Q_RAz(R-<K#d-X)h*|~6uL_r(cSny-po7{I%Dy+S@T*Oy*Pn>H7r!=MN>5(;Y
zPIp;Wt+5j!xT4#xTq;@uvaI}wZ_~cSiy%}Aq%HVLZpGdPQb?-hErtb&t<AMY53&@h
zFH{l}w!6aH1-?zPy@5pKN4Rf)0ZxVwibR*Joc~Fxs1r<j3?Ceo(l6>k9!bdM*riCn
zK$A1p$RSd=TbsniGv&02kYgpaT9`BG88u#u*l0BXAd`leD2_xgp@{+c(f!C@6bUkY
zowU8OZkdXuDl#X9dv+R|6W0N9<>tQ2QY1ls{2l#Oq-rThu-@8VDM&DiZnpO1_oKQf
zLY5;(b&=$q51mzz@JUdCQ}bDn%Fkw9w!*@>r3Xo0!`CDT=e+kruWAyu4k%t$z`^4|
z_!-BpWj0@=rI2aV&@7b`6b2PsbgjCQ1m>GkDc>tew6WkOmMRHto#QJ@QF5r20>jy!
z-O_?wlmZE*^b$~v-J89!Q0bvu5+Ix2*oZ-1ke;oyu2ZRw_wp*iS%U4ZPC`poNgD$+
z7Y*j+gVk?zU0aVK3vml8OKokgQV^_?FoO6^RZ_KaTo>4e$1<Umb)miL5B8tKDU4S*
zmZc!@Vl*w+NUd$&|1?x8yqqf}N^HZQUF{CP7v;}d<5YVnOGOV=e-T!cCs+hY3iEGa
zO$t&U%i%L<fP5n<N>R@4=o))YE%tV<<K!&;5=nx~E5%=y;wuhm5kaE24j1DvkMb8u
z3MHj(drQ(|-+%<SizGc=X;A_VFX;)$(zvZ@4d*(zynJ?rzc@s?ctIrij)(VeP8ji9
zG)cf+5Yvyl0z4<7)~q@OPu$pTZS6odnqN@;EHyv42WAw!s7)RqEwthBQ+^Lim5W9S
zpA%eQV`8jqQ3yq;#r8UvsXj`}R49^|&&7N(knGtUo^xOxMG6yaDS@I?;jg@Kr_UoT
z6%u3%$+8oLWj1a+;;YhHR(mhVoCRx3@e8G-;6P(lHr8c$cH;&}^5u{R>GV9IC7qt$
z_#!w=7NjATa$-e%Csd}~Yx~;3C_{QUEMv5C)1eY~y={gbvq2>J=wo%f*AKV9i4YNC
zE5yZ)Fqr8<%YR>B_J;sC(W1m%>21^{<0$(CH(sJ`I2FJ`WBK3Qz6;xH8*DR3>n&(K
zpM;$<6lWj}Hej=VqSXb~KbGol7pjg>KTbe2gXAw6Q&ww~3fHjf5IypGyouOlxuvGf
z34Am)mia8ja<kUqY#tKH#OC0uO+2=OccSfx>pic$o7=zz;`jQNh(wBtF$!fx7l{|+
zbyhf;X&0QZtXE|Mx9l9t%dtY*n=okrpM|X<5=5&#&~SYl>Z(Y9c61df8c?pBDkURo
zoY;U<GhYHLC)lWXS<Y{eaC1CHk{lcs;jGLDd$pNH63!Xq?N=0SK*Frv+}ctj=xLE+
zrrqn@f?<LV^Ai|Fp%cLvfS(Uv0$s{mS=Z)hfWrl#AVCo(H-7qHgf11Ny&J>A7D>GH
z?2A1xL*ef;@tk$&0@|W$MKUArR~0Eb2ai%U8V|y0J%@A%SSP_V#Q9EeGk7WLxT}9B
zK|asnq<^TtujV!yWqwu!S}CA$<JB5oq3N^;w;<5oTc1y!`^&$mTb>G<)_iUYd=`RR
zZtoTXL>prHRSwsbgNwpy5_UAvU>_8RT8KY*7PMjcN3>)|ERKNoFiZe&M|c`sxM*3<
zyLZsMQQG1;M6-o+h-Mq-5RKoAX-HbiY$?x@_I_La{-M4MYhc=aSWYx3g}x%sj3G~&
z+$JmbA<`<GueeFl>edX>@^h016wRNT7KAD-Z3tCbS`kRg9X@s7q^Y|rT5!^ab=)7|
zJLr^)-HVD0iw8j~9CdZ|Y>oEi+#Nkj|J|iMcyRBQ&yq%SsYL{qqiik*0F0tou20Hh
zigTwJT45n&Iom^JV=u~C04&*Ylrv3-ROYt9+LbhQc#VcBw9^JnzY)H^SjkgIjc0>a
zIQX(0U4X0YLYgJdinS<do5d+KzDu6xp4wXZ<DU3A(CF126G?+e<wy(X-jaqXkMpa%
zB-FNcJR39%OpA+pHfZYPWzT7qi(jIQ2s^8vEjan3XuYx=rL{uH^|NiB3{5MoX&BoV
zFVtxKj+r_Q3|>qb{RVu2aA|BDPNb~M_tVVMZ*bR-xhfj}xgeE==C5dAUa4K=<Ya$9
zX4O5cZAiQMtgWP-ZZB-9EGMb8GENIxp`nl8RXK3i;9Mot@%=;tFZwey`}dx#%Di${
z;IqT40rm7jV^d*S)xUffc5L;YbCx4*b??r~;7Mu<gBBLo+`NJYt&sOdo>4rRLamrX
z+BQhjDzsQV3wQEdzjbM7jPrMMW#U*O&&OwTqqx(4%68HEmo%=RA#s)E);6ErSy`v0
zw4_01kXz3%ZC5PH5DmYZ`$GQ4df`b>*0%vYdF=cp4ebrtxDN)QN(<%p5UoYWme@n{
zH=Z8x8?a71slQ7)Xjkj&9r5e{E_&pTs^!F+;w6V^PhgaYJvrYcmWddXNu!uKka%5w
z8z(>6fogqXLLd~g-(;y>(&nx6M51kn5Q!6Z#hQ)Z!;<=J3P0g<q<FTl>Eb$P$N~I~
zq?Mj8B@I{ZzE=)awC`f#=vhjtEm}Ew{)<8=p0x$|?iM6Ts3EE}h$^kH3zy{<x4&$6
zo(|yKThf-Wj=*F#^eorIY?u6vZ&+}vt@**W1cQp>E#<mF#wX?4Te`~oq}VHL`m^h>
zti-L%K`Rc4NdOL-4^kEDMlez`uomr1+HSWmL1tE-zj&5%)f8Q(v8u^Jak3DVALH~H
z?`>xL?QB1unOf25Y6-n;gTgi2GFm~qvAd1E%MRKuSCQpVj%@hz`K>M3Mz+`p5IIl6
z32zx%NEmU=*OA8Fnp?bGNT{G)-yBdp_-(u0o85w`iq95;>6{F`^fx{U2j5tyC>@c(
z0PQY@`f|4-mV*Xs^;4dAtjO~x7o_r==e^{Tr1%@qGS@wpPx9SmJ5H}ImIDoqDP!Oo
z?RTI-)Xj6llEXO;3QNsb+*afda<VF8qc8igg@4FpurbDs;5WZycfq!MQZkBv#Aly_
z7H2=xCUjEkn~iT4y-vcJ84W_=3tvv(Z1gW>Qdqe78ey~qO|r0ls1SxhTZ4%nZAAgt
z`#!8VD=^M4cX3$2p1LR3>V3rex>O27s4eZiCt=Uz5d(~?!62W_Goy6-w!QKsR{3z!
z&HhDw+M%O|VQ7vuOuoCED{1&gIa)R~jwpuGMr|4tY0+978=yVK;B$3z-JZl}(0bw=
zm!U|=d4w~d!{dt2!pry%{q2ij8!zc>J7{#*mAP)YI|~P7%91Csqz@qfwYT7G58XWl
z`3kKt7Mv_RRpu?=v0Pj$Ue$e^>|?AAX@XD=ZY4V!P~U)wgeM_?qu-{7uJtn4B{rY*
z9o}sUo$6+kqfN73pO=<G)5QH3Tgl#lp6Sq9_(t)Qx^R1eM%r>*ZFdnTLoAqPyxv99
zt(ffVd(f(CpB62AM#!0!<>br07VX_=oEnm6wby`Xm)0SUEr}JDO(k<bEB9)YtS@9N
zSq)UQ+=qXkiNhj{h>%ddlcfBE$1lAnXa+GE97~!YLUKKtI4pmvWL=09u`Wf5D25d)
zM2e9j)@4Q!(G(RIJ$(@ZAl1B)P_ncpVqobK`5|KZqLCN|#EP|$M7g$NUqzSD;-(++
zvCfK7j3xE%(VbyyB2n-DtYS1G(K1PC#1XM>pecy;$FtqBVTUn<C3A>CeI1sFDv^At
zY!OxBk&hQj{%T3C-?Eg{iL$7W$W6MkKSe7IDX$rbiY14L7cY<~11Y87fyLi~2xkAv
zr8-ew7j+_RX|tWR<oZvAZ?SrW=R&ZAvrdc3t<@GJ+3*#v5>Y3KAF!m@3dIY<XcUK0
z5F?MSm#T9})Rw%Al9r7Np;vVVkxW6m4=puz=Pb#Op9-FnbxQ1oAMQ$Nn-vj-u#rij
zDxoil)_Mll2qL9iN~OP!h)xhAO_a!3$f_o)m13<bOG?c86`hKsk5p%{vMH|makB9c
zVO2H1XaoB5CsR?M_6!ke<}LOl%q6~3Oc?A1?fw$INh(B&vDmrjW>l6W5iAM)UkYNp
zk~V_!aj(ld)X$QdgahqjTER6KB%|ugRAnrQsFtr2r3<YPE9+0Z1AnMOWV29sJ(VWg
z(pR`bM4v;K%>^%so4sdO=z=6|FPjdFg|>|F1_p<!l3XmRU&NA>vZl!1z(3L3{;6;R
zhDIB^Q+oY^Xs=)VJQPXGJoQ=<S2wr6g3QE7P$dzH`K>kjURQ}*D|`4Uzf#tzh7$M3
z$E&+RaOEWtKZGNf`9m%Vr5!j+EY<oU6Tycdgu)+Vgk+uTJQYlPN3|qQU%{RMgJzWo
zs|6IASVpVFr(~+a1W~@y(>4w*##y+M2<yUp2Ll=+Xh~#aTO(f~!nSILwL-+odjq1g
zIxb%xeb<?TnL|UdAU=n50KX{6;^pHUA-$a1S@PN1pbN)cMw2>qj<Gzp(4(8{8{1Q1
z6b8}asRnb%<0TQL$y}~L$pNC-fO)+7<E|vdQ|IjYRCT8T5zRQ|SKv5<{CKL6yXN2&
zBO!~gB;Ew){|gDIAhuiJG@pSP$FRZUV6c`qHv5p+z*@|K?c=Igm9sRpMT8X=r`xa%
z%RzJD2DGWC#32_yLYG4l<)CSXFz1owFLL4*8Bj89qR{YM@8WbIz1s`o{l$3`f6-`i
zxu-F`(F~F1FCfpH`Vwcmv^&5REq)Zlc^JLG%C>2X#7N$J%+H)3K%{yCCb4iA2Jx<g
zK(*JvU)X4R>Rx{x{_=m6c%;JYBec$-UHB5?*Z7%uXqO&(bexXmmc)#=fc=`si8ol1
zvfXTFk0RfV3}SZ*D`_E&g7w{`uRn=AVJbC7Y^Fgh#K31)!XSI9X!Pn2-S0f<bf0&I
zB<WKt5+m3*<yp*AA<j{bBi~K24kJXyREyD&tKmrkq7-2FA((E_5jae2r?3!dU@Sj}
zc*gn4dDNoVjmD9{ro##(!aKTO6QoYPCphwPOMjIS0wOFft@d11xFgXHu`64pKuIDz
z)m!k6ZEd7<aSD=RA*l4N<{(j0@^x?~DL0&g?wVpg`V%u3BasS25TCV|p|Gc0*763$
zCK9<1W^^r#3?A-06>dDyareaqgILIXMTde29Zng{?Dh_P*@8%6wqousiD=F|0$UQ7
z!fBK)&m`_Z=9TI=ZO0(;bz=-IU~kxz*a)IDUg+fL;CBDR`swE%!71YLa7(Q)m3&XU
z37fpV26a$4a+A2x-PwXR8%u0qTRSz#bKAxEWJxZtT*>JyY=7KS;ub8_#XK4|H#R<6
z?{2|<KZUcv=XcMCTNA>Pmlns$22r6_7VeJ}fp*xvgEb)TY{9sv1&h=x?+I6=zArb3
zI>b?v&3>Os9uCwC#g7$If~ZH;fbg@`_jL_Wz!%JeWkJ+{*tgZPeuo;>H6RS^5oK#s
zmt|Dkf`tgrPyE{Dl9nQ!s7KX{7{1kCbG`6<J>n~_443s+)TplE^CQdFs4h!)SxS5r
z!4mH~^S-<&YVPoqxg=hRI`kEOGm5(vhavyk)nTg3)~GJ~@O}3s{8~^$R<Z{ZsZ~ju
zFQ*apur(z9kQZZFNee^vxC+(MFD-JUisf$0R%E*nscx{sLK9`PaY|bW%O<t7cvPvS
z4S-ZEu6X5AYajLUdxrJNESt?+YLrE->6D`eF+4;2-bW$V;s?Q=6@r7Q5LegRrLQlj
z&}C0SsR*UzW@i@1EMNoqNat$%JFx!oA8j8WfSPR{E9gx~d!mAQqT+W2qBz|DC1ZVL
z>nrxVRjBe1(3MB>LEYMdi_vCls(0bSCAp8)sF$xCO_gR)Woh6XOiAjC-K9cB_pf0u
zgNYk%tRICqD}jVcRPg5zH%whah-SLKN!ey9rCjXk!KYCQL0L+)znY{w@vn9C6@qF(
zwXhxbhl1+3T4514)u(M!fHgIGsE~?3vIM&pYCgC;QY8Q?Mc8E2EMA$q3SA@|al{gV
zWib`qMAj@d)23?oR`3dFxr?$C_)wf2LChijns%mW-Js(8<D9HCl#IT~8Z?9O6%ger
z<4n|@&L4IV!)~o;Ur4A^Fd7Y=cm0TRtEkZww6U^YO0(xA-edCX|4AjNMil=@LN54f
zMLforNMiyj#ngTq{26ri(zvoE?HDZ0dB~)!*VJwYElGxz(#1!`GOZ6NT0LdW5I{rN
zEXzhy6jaNQD{J4vRV!pBlr=T<fAz9uz)!wemc>~p^gsO+s?;_mLAb|9n`PPc7S8;%
zdHS<jRx+pAz_MPb;W52K?yFPj(on5|o^Fr#LToL|_FC}b!rY2clJ5XcYcu1dRm$QM
zl65Mn&=s$BpYoJK_1C~eMG#+&hpcz7_jI+p_01EiBFY*dMn0weh#m?hRjLchbFjD8
zsAz}bvd_bjS2oR$hNW7ah~;<)4__>lloh3BXT5`+RV)|?aI%KD%*EPQrP9kPMpTNs
ztRU7))oUS`G6p+n2a@1Nkb=|Zxqvh9Sh>{m5`#Gm3jZIKr3zG%C+(6sqNo^cl@6h@
zeWG4c;}{`1=n7TdGKFl#Z(~_;&xHjvslg%Zs26JBJLHZfIlNf8K;4~!tO_dnm`*M%
z`@Frn3O_$oGUZ6Aq-r0_&_$YW1$Djy4az3HMqtz{s3GDOUh=M?2U((st-$wHy}cAp
zsc1kA;WbHt3%=%xcQyD$<Ik@5aGnzmQNQ_RS3=y%)-Or@!+TWJ0I?hqZ4hay>Z9>d
zaPd<0!NlgM*&ji$P3eR(CqEK3AQg7hst%x}mP!DW4e6MRlPq^(oh3EJV{k2(c>V=t
zt2R;UN}wo1J4nmT7uHcjxwwJ~_12o&5#g-SY#5c0bwJ&f38&(z3@UAkTW}JsM35GB
zPz;*c&YJf^?KLsZxVtbG8OlN`thWQG9h=!O$}s+^jpaK)SfpGyY@hw8wAHOVgG*`1
z<R69FqyA?0yhKHuG1&9862PDj{SUS_Xg}ee0QCdbhy4543(fi5?#^S*HX0w70#|j#
z{1}oELW)*dVKTiWe|9wa!uz%>mKNFDg1sU|KDv^Nlp$Q&ew8d;6MFJZYGm@?EL}=}
z+i7A6@{ylY6K1mR8aeB}^1hXdb=TyXtfWTHN@_AjmadVr^uzbLVEp8TqkHGV(Y<q_
zCV2WMFVtEv$wvr|{K;CIWa-*_n|$%;H>s2Tl@fv7@hN}eCqWjs0}cVKcbE!;d{kdv
zJo<C$<owB_zw%=3E3@>`eTk!^N4`m|O|p_BBu0GBrK9`u($Sw&C%f)Twa;-kTsrzq
zF8>Vq=odtjyeFUGy|2_pmEYvb(eKT>YO3o=mcCqwnqZ8uy)J7OU#YdXKj-tKo9gqU
z-{kXJ@AxONQoUzd#ph6^P^>=o^cER12YD7)0jNDCJ1DZ{r;6k)G8kn%P!)zn=2|o?
z4TF5OHc9+~yfvxXRQ~v@wa+p6;koy{Sy8tg<1ug2QC07acv=#k5p1*YiBoAUGZoEX
zlt!!6Jq1|0+EVraAQ?7Ro@<SRu3=sw`914p)Gcvr*nX+flnJ%Vf>jD*<uDn%L6|E^
zu2=`-!=mmKW-2B&md?#Z-5aK}D!F13tCA~Ltty$fi`)ns6v^4~g&io~Bzv-A%K5mA
z(q%(BR0tnnRN0okq%Az;HC8fYVh?BWVKOAt3K?;_)@YkV<56Z*tZ7uzZ(Y1FMMENV
z1vBDfSqZ(%F%l3G<@$}KIYmd{n?z5}TQs(e2y*BQ#6vJ1gbvyl<ZN_CPh#CJo#bHO
zO)j0o(VfsdBsm5}#E!3!v*W0+EXjrLp-s(6Q3+lzLU%c$m+R(CB_o-t3X@~l{E7zv
zq(w2A;y6s6znYYg&Nhi*3@-<qse<+?e=^8Dct_IKV5I;`a~Q9}Crj0qrHj$cI38ko
z`Q9q6K`&A^RY_jJPaaX)bAe$rtCfhyrNi|w84FX&uGP}~mEjlcM+boGoda)NR06@X
zGXU#c4o$sal4U&tpB{B9Mp&3MFc2Z!e0)yh23F@hL@#sY$DwP12?DV<vAh;<Qd6MN
z`GRj!nepXm`H!V6sYN&8Pv+o5H$asm-w9Td<nZ<>IxWevx2N5rER7*DR7vVPz<)nU
z6E{km+~x?0?$=M69H(VwA(6l&U6w|G>e6&yk~ce)kk{s<*ec1PTCh)KNsbrPqF1dO
z9n@+=ZL&ZUep&iic$-q`z@{29dDGq(i&9nMhgeC4fJ$4qhc7H0n#1!Mm6*J=Hvrcr
z$7%j#DfF*(74;;x(ULsy%{Ur9+MY{MJ|tUILTvzs5)^<?Z%XCEHzBzY)Z*N#eiCHp
zEw*6Hl+%h70#O>F)-d!c-qat5EL~R=nB05P8hln5fmydU%l_lmg_#SV-GQ{W+Qrcy
zlebp~m2DI+IAp_%cZVY6V;Z{kjl-o830iV2IzU$m(VUCY6=Sz-)-W-0%ZQLN_1MrK
z-vz&tv99OQQe4?k8mq;SOD7tEGN5d{?-@!##$nNz1hb_``ms*bvK!_fFTsGkMY)%i
zFgjDp!2U{-A&nxmQK1)ta-sbpk4+9Ah@AOz3aTGdXkXmvbSV9PITxowL0)fR=~Jgy
zt-~Lu1$ll!K^k&4Ko-aA!CintKfWE}FuxM=Egf^0p%#XwehKRu0|$SM3t!>{=a7*8
zF#-X`jE)A#MG3k*Xa(_kJn0i1#7cVfC5Vz*Viwyy&b08g%|;2c^q)2UP8j))d9nG;
zFR{)15~V}+#EFMsvhF95x39-`UNj<qa^SP5p;(($>wvt|!S}9lZ=oh7eiCHH?HSy{
zI{(>p;h>PJ0sa5<I{X@TR&g-mDZ=-xpV#7r-^stzxptqgE)$vCXjJlJ1vn4J2b1D-
zoDGeUF0~qGb4eeb&ZOhQlU#-?+#BeKSN1+%Ecy}rvgk)hBBIyC95T|R!!nxOnv{J7
z{RqaJ<&Tn|ML$A#5#2YYRK;1+Fa1pYmuufk@qpz&|C#zfuSs?J{xh}j&3YcjI#yYK
zqW+(0e`pc3)(%-Q@jh4tk8HOK6>Dt4v!ndQ%eD9MdzOlu3d4=^xTm!um|5Ha{mSPB
zKVRA|Nyqz0Z2;A35m$!vhet>=pwC>ndSv;T&kLR&%c;&IseO1Uti`j^iphG8lEi{8
zHfcx{6J6wC38<tq^8(hL5P?Lmus+!7#jT2-97jd00Ue?qiqxFgNYCO`D@&DLwX;;|
zp&<<GNtIr;U66j17W{NrZm}GLgMxu_%PXqsn(3u>`vZ(~I*H3piv=27C#+uN8BSNc
zkh#(&p8|Tg0)syfS%}`iEFWiOhqrdtU)XD9mDO*ne26|9u&jaA5w{<|J47#Rf~P~u
zVH6(fVhf9B(zC5~{|F=()01<pmoG&ZEx<+j=<Z)zNGa=~aKZzyg)PzbBN}|%%$&l`
z>C_Tnfv064ZG@*o^a$OC{0}4Yfaw~9W>c_K^L;dEMW=Nwy|SwG$Mo8=A7_<b4I@>h
zGZu1Lk8G?hL?ETCR%z#&IN-Cbr;o6+(nYwWM-#;v*Q8TJktZEOu26YeaG`UoMkNn=
zZb+2N!jc<wvYwP#$~ecMBNQlG2Kpi}R$(RPc$14g7zIQ-#z0Bo;<N-8m^(ABlr#z~
zZ`&<hur^@|E#?bZ|EZ15wf5{fOp%M212I1H9b>4J^(P&oJGl35CuGahg_t65JYJsw
zK8@{DjM$b!k=%@P7Zp16bdce|chJ&U(t8XLfz$2$>MA|nCnkQCPK#fE@P*?Rm-Xa(
zZlkSP9?xSm6v2j;B7TPGSl$MXh@NLYOM3k7O>mUaK7kQCLMvy=swkfli=~+R;9J=K
z1wAC0`RjLh9nR^BC{tdg!uRA@z>AVEQ-IyD7X_ULCP=qWaNpq|A_||@{WdoL(QH=q
zZ&>vtauiOzzi5n<E_b7xA&C3CwGMyT)AYD&f#1bv$-@z{>?Q=X({Ou%doI3p6@qvd
zb}Ec*h#jZtvkRf<x!p>|u96;XEh^G!MO)WEmoQS7C2$sTelRzCg!S+=;`L(2tyh?e
z`-`_x{&$E>a8&tZqhr99zZ*8tTIeLS^U5mJ8W!maH&D`XWO2O+^9s#HoaH+mv+#ZX
zvnAOJ!vj}l;=t!X--&u8#}qfMpdRnP^kjXn-B7+QaiG?2pjRUUVXi>%z<388XAv%8
zB;k_O`Gsd!e2ot1IGM6`1fPGp@Hfqd@^>-R4Xm%xY<aE~^<Z(Ao~Y(Ed%ACNWvHDC
zVdS`1iQoK^N;^m+r+JN{ze?Ujaw{f10*@7{Qd=KS%X<b+saWCK@E4Aav(fmZdL*y9
zk$eJ1_UdN{p^59>rmCD8GH_h7U{Xp4G-j0a3XjN)vV6r!1Q{2Lj4GFcj4PiVrI(Hj
zOq&*$oQf)!8J91^>{c$1JWR_EB;$7kr-cmb;A69d8&YU-l##14ehLgxtjUpKHBr?Z
ztBmA1C7M`&%M4n{ibXq(XUaIr1mKMKwf)REQkAKULTjn9RlaV?3{*6ce1gi>nmSHx
zRmc|c;aYy2;SV3uc(JM@6j1TR5sIG=&>uSbc5n4tNa^LVZ9Wla;_`g9Sqnaa&W56#
z{2TR4NOFhf6V_m#B@Z!Ep8P5@3O%CzcAZh^r3<#q8ElofV>9_OXK*vrF{6SZ{KSk|
z2*}~^27L|Rs%&)iMsD@hjJWpId&>J6dTzL?B`HddcmkR|G)gDOZu#S}f`U6|tf}g6
zJSP7Kh8jHRa0b>OEU3f3k?YcX8Q9O_Dh)68>?r;?=q>b<mT&#|aE4q?I=DdRF}z`_
zPe8H8?+Eq7Ct@4JQEkX?Zzuy}6kAy^e33ynKU3p>{J<J#%E3YwR2jd|iOxCmFnG<#
za5beNgs*F+FQPE4wZjF7RXIbe>>^{XVb@aYX8rilh|$d-VpVaUgq%LX?*|{M^{QOK
zmgB5f*lX}aF#}!Iwpg%A2COeyd2#{BC&2Wyo|Nu#<rB(aI5_%>@jLPf^&<Ag))OeD
z`MO8Ua{87bqsE`jV-j8ZxeNq&{6w7C5z4#BfFQWRb5e!&mrrOpgvuIMX)2UlF+`QI
zT4S;B#1}i8TWeIA)<Q^plBb_;4Bd-{C$Lv94sF5OP?13n9s^Tsmx4rO#*nIZK)wxH
zQLuKOV5voIK3$>y2%g{*O;vOvXW1Oj=$Lu`q*Z#$acJ=nlg?d#5_1>|DIJx%iOqaf
zZ2c!-cUp*acWcFrYszPzfFD^{*(0~YAH_~DP8wa?3%4dRemYDRGZYyV(}zCLEW9!h
zjJ^jZ@5xOlVQUIf1X_R0IIh3>rOYv4N<QHUx?8xB8+^tB4z6Kx(z_QKJ3R<DfUy=L
za0sm?812R1r$?MOIsfhRqR7wWW6XYf?&tQ0Pr<_A>Sd`Vhi~jqP8rv(V3t^$oT73X
zRJa)C9KF{e=i+qfK2fnGBL~{CqZk0>e6ADZ?^#BW1BRts#!J8H$jJo->r=s*M9xth
zh;owA8Paem=SYqsa*kptYB?32LODk=70Nk+6;NA?52;JnkyETI75R=iilGqgQ~Ms}
zsNv*9?tMwm#Qj;gElUhdaUk&1b8Q~Nz`&eZh7Pf?aq=0&{J>cOv^Fjzgt7_$;$Rw<
z^iOSkw+0GaX2`0_3H$rm*gHyw1kXfHb{@^P3iIq7X&KObH?J2AhI7oK{5n-g&@DNK
z7i?jL-fqj74lPre!yhY_^7UVpIoO4MHJL9FyTqr3=Bcz_1b_9ZP3jxcVW{QI*CMAF
z9x<h{q+qq>8<aVP<`moHa83%h?>`d@-jbM|;+aZ6r(Pg_CwL986ljP3cJLIRmS*gl
zZl;nW+gTY6?){vyPo?j2lTq%(yJ5WW-N;v%MTrhK{}4H3Md~LB${aEw)zbu#Q`LJ#
zmHwUIN3(iJ>tI6WWN#{PX7L6|<+x)%-{e_DFg>3ZEb&mzjB?Ch;3UAd4qk#gpo;>Y
zaZYhmd~OeCOshHS32Z_!8a}`?Rfd7r$#JOeU_D0;BYeFVH%HHym$=*B#s=}E(8ll?
z?038asx)WgbT6Ob(h_^w@ag9xax`1`27D&Wc`|u17O~9Fp9ZIa&2?BY!)HS86Vax?
zyyEiTh++Nd^-5HwN_?bWH2y9)E=2ViG>(Tx2&xD|XoWsqNDu5`KI9jTV?HU4bMl)o
zi&jovf67nak=Rt&x;^5_qVS-zyowbxV2#=g{0?)1NsXY@U%*L2Hz&Q9GY|e$F{YJs
zAH#E|evtK3omFP|?4>PO!FlM|;U+$XetI|}SXwqeZB+%N@|i-jG2xL4E<zg`*oaT#
zaO)C}zSFm_vmI}OoPxoCMsA41I8)VQ3@;*QuyKEO;quJYt5>J5%v`!~g?2%HU!%b+
zxIpLdt{PmJ^*J7?++z}RT~A%Ua^dQwt5+{yymaBSi}blheKeEdDHy9DMZUkMA*;Hr
z$B@PML20k7qxH|sl0V=38Ubegj4aJ8t;0jDFY&a<V*Z68QIJ_bBj7MATM4T|3!w;8
zW~gQjNe%q2!bn6*(K01QMbrKOS@1k4&hC}|2T*mM@di8B?e}+j+w=cFY1aWCRq^~E
zp%($^oktH45)wM09KA>rf^@i$TndCF<Pv&0L<JOSq9ULiMMXt_AVma(qk{s1NN*<{
zK?p@fMEK9XoqhN2-P}HZzyE!HKQG+w_s#6=?Ci{Jd8v>xLx&%VaE8^VMF-o(0~4HH
z6nL+(UW7|f`tZ?F+QqXl0&1(`FJF=G{SErmj1T0_6SsKU?C4`dm|tdkc`AXmivuvJ
z+=X2$rnk#CYl>6uIH3YcpK3*swiw1Z^cA5iCZ=Iy5jS*bOLY`<m9|%m<!G6eV6IIW
z-_)tuD$T-iOHzjK0@Lq7WewAr51a^b^`{ImN5V*9(YId_8$RGAYyTBRhEQIt#$nMQ
z>_?WthrywbWne=D|L`RJHLy(bY)GQh0dosGbfq)Tijvb|YJlqtW7A`Y!*$_2_$niU
z`V0pw*ZG~?D?`ts+yaQc_nTnZntl)zmxdT!F!{nbiF2?xuT2K{8Gyps*SLZM%TRtr
zd>b*C$~OG8i4Wx)ljyva!2@Nu3Dq|Y*#o)P;S7h<xa@!mY?Q&vI-$sL;A}YC9+Z{N
zB5WpJVs_@sG`=FS2@S;0rgnz%?Jg4muHGqZf`%<Vej&DY-m46shxH+>FT1b@@-#uf
zB?vGRcWJNnpHhU+#L4mSE^fH*4yNKVU7Vd`VtPgONYhrv*o?#XU_wzZShN6Lf&1ij
zQ>8tI6+th<6;9fX5PVy%c5IxPFEJZKWY9<R727y5WuO<Cv!96S3u+tL*niqJ6h$@k
zFM|GJi~TUE;$-5>B0v!&0-!C>pKRHw9jq$zH|T)}R))PF0SpG)g{Da!Js4I5Spwfp
z8Qo#~80;p6F~KG&kwDNgdoY(kDg~k#_EI2G#KqxPRF*}}K_(R_^X(}y%_>ml7X=%q
zORX%(q^Ol?W-)N;^Odm*{&OFc8E0p|q$(>57IkW6WOS)0tSngcz{<q9Hha~qOpGWT
zF1qz*Wty53KB`{Eoe$<5>RxJD@n$VzRxRtdXG3%8Sb_>Vm$gA_x!?K;<jJ%%^-u-_
z1NLx2d={P<m%)Y!_|x#O9DwtSto3<=O*3WnS)AEkHsE}bvad`}x$CFj^)k(z``>Sk
zWuWT5_*R@k_m%mgXnuDa<3&>z$N<4QV;dHku(8U9uwJGqi%<Xfi9*C_Wxe~vz(9v>
zj5uW*%gj5>jb(9sdnvTv@0oDi87}KgWDzL%zGxE55;G~c)r`-;37AcaY+~VMY%YZ#
zOnWDMWn#)=vpP?w`^uOp_TNLn%Z#zAZ-Um!ke2yoO1(_nmBG4S>qg{rkUxU^15B6n
zJsUmJ;3h!mEVxI4`F*TRyRTfI28=68WrNJpQQ-MQnJ?Ofw=TosZg$t2HskurjEltG
zwR`z|W$fN=u%2vH3e&iTGSea~qi38x*-j70+~NsuDD#hdA#sxF;CEX4$_$Y&rr3j)
zL6*HNX4wr#X7Ltd#tZ9HL(ZAS#aT`*0uCtS>-@$tO>6bUGsD6ZfH?EqV8CI#EfUs#
zI9_I$I1r~<I(AJ6%ZQI>28{>UIhBHZ35G2OI+a3vR%aERaBeyuyFmpmKTZkQ&j4qt
zyTr4-2*#7vVQ?`?^ZMWll<nf|BK$^(UtupZm^tk|$4~|t{lMuIHg3S_?VP<bQk4>%
zhxClpFvxVnLIu2+40y>2A-gC84e&36;U>y5$EO?0K%Nkp;g0IQu!|cnN9&Zvvgu_t
z=ZtOJHjCR(M$E-}vK{^?N9Ei3K{Y6>6I5GSp<&V9Jas{#-?Z&Fk7|X%CQ>LgPQctY
za<i(@WSdMiQ*AQGdLbP@v&RMrLOGI6Vc<4vSI8LrJYFblM1bdA&bK|0T_<DADl?=O
zrD7Nx?|{(`d1NPCvJU~GC`6w~^C$Jd5(}AK6wA=;?>4a0PDgU9FD{00VEBtjQOHp2
zfIi3{jAS{H;zdW#)J}s~VJ_ll18~|YXOKC&@r9>FaqJok;g*rOk>dd+5~o<0!Ba#c
z%0#POPDGPV@wQw;JXy{-otZPJeuZq3GbT}aA)D;{CN#dP>nr3!8sb~oWwK?#qb3OE
zk7y0Vw;72-L<uz%F9+gCEcA~+8B%CaBHIJTUX}(9wJtu6g6UPe=22UA^NCLs@^Aio
z7j~$R^{1FHL{!xcLMpfzhIv=z%+?*Vbec&mXS@Ofufl-XfK5isZff=f4yzUA#*7cb
zVae<T_T@Sy$9D%t!8394T~QE0B(floS-|d{ItsH2nFDr+F;g?EkqjAl=VKRV_pHn;
zc2iP0cuLR&YCdgr!2UGBkQTHJ%gRWGEMYmn8}9j86eoWbx}IEwTN`kR5;TP;1OQoH
zfA<wMM&ExeyxQ^*u{0inXF5$QMhpvknSvS=DD^Xc{#HyY75Wok#zZM?$F$O*whBtk
z5rghSXgu?nftX2Isb-RWMgU9|xc_JXjHOVZ9eFaBvbQtQk`&oG&G*!nseGP(c@YIL
zXM_zpZg_BTU@2yI%+{{F!7PE7AM3vcWh^z^?ug#Gu{6$~ESO4Os^v_=`@yoicr_i*
zw3p|03p03nP=i(tOW`U?Vbx%>XO>8ll{cC-v==_VnU`v7Mp{q!uk`pzg<&(U_V7}p
zKW;Q_S}8Yen$Bs?s&3nOsm>0YH}pIEm^8R|4Yx6~eX0&-rJ?t=X0cLj56esK`b3V2
zYy>+B*~Wgp+5mYFC`AujLpj06V+$s_UWrmo)>_s|ySxUrn=qXe)^9jOV|}zNibzGV
zCkyju@QHhfyi$41{u%bSq9{cVYCa|A0+|!3xt2OtbZpJ?T(C!$RaZ*-oK1tr23+BW
z55BVnHebMy5Su~(t8F(%&(qID)(0;!H@LoFcF~6%nH+C;a!#dymhXjko5J-p=39b*
zuD+J!yUj;9z);FUS>p;&PdFQgc_}Cb>q~4^(cYECN+Fd7XIp(~C6)_zX2y<6XZ_nZ
z6*2^HxDe7~+}-Xl4&qhq{V33bkZy81%zI$O+fEdv0_A^dMjH06gMV59E*FbW%ZT9B
zhVg4iK|3SZepD#djI>ap0QU@vn?}Ml4WfcC2db$T6vLKKLpswKkFkey|IKF-`NYVK
z6nJo=SbsPOMQoJ!73-D@XA)3i$Pnmgef>hO$GsGMI3vxCkYT@^@8P~;!>&1Bu|C<s
z`TsEOfIK|RSIozjIIQBc$Q6W}2-AFrRJfDTKj~e;V04)?lbo8REfAnxH5MD~F)mgZ
zi;Y(+5$IHNDwavj*BR+fM^=0qCxPR(g3-2Wla1dY5x-(#L77$JxemYLz;p*MW~P~3
zckmT+xw2>KYY&Wb<`n9g2&jX*b_}!!f!Cm|VsK}c*U|27;AniX*|3R+V{s-l$o~ox
zj%H7W%nzu%&{*vpS`J`M*ikf|n$Ljdk`-&lP~7dUr&x5Eb6e?*)k}PK3Jyec;H%wT
zQk56E#RRLzmcQW&cd&T*A$6kd0B$deA-&9gVBRJaYn~tLB2mm;Kh{R@;3^RJZee<Z
zy^yAYVF8&Pl4ct{w6rD*Ls+qxpY_dGdK2^wXU1R|{;p^^f6K$<2!jEE@?iD~nl%n+
zRs@4pzhToxa5hx*g5O4JC?68sH`nk(WS%F(Ge0hvFUHFC5QmMWD1SeIl?R{e8GVB<
zr>nQmcIf54z}WBHp08YtKUl~$oOja8edAoS41AdD^ub|ct47RUWZ%A9K@jgVjK)nt
zVEV9}j|D>-nE&8c4z|)~G)11cqQL-hub#~YY;t8gBpKevxFdt@5Q4#!8Xp5!w?ICe
zm4o!fZXqE8%>;3~?^iCydjg#83TOQ!@V-2*f2Pz_PUKhl^BLYB$#blTC(V?BKZ6$u
zMt~i>(fvs6`7H0N>juoQY@ZM0R@hr0c)4g;;EhOr<(eo7`H9tCrpWjx{>7fp|AKuz
zS}4-T<TFBf;0_`^YR&<8&6*i}9dz>1+F`kN)dZwtv|SAFj-5VjU`?L+hPkzkJW44v
zb!>OBpAVM@R0WQOi6A)*Z+XNZ8Ss7Jm4^<2cd~yN@W3B<YRpL<%U<Y4>@BXu*4bnR
zK&v1d;ZOliU`v8qr~tvO;qb73{y<T*3Nj;8Nx#N99tI9913O?1(E<545p7n|t&CWE
z*X9AAnekPCSGuy%r(NCw;}yo7mR`dOVjD-8zM(@L=nxgM;El78Szt$V`Op;!9jxFR
z&LDYqpOv1Z!wR75zNIEmH<;G7G$50MW-GZuhN<D<;l^<R#t17g+Y{Niw#r<Nk%k@b
ztb#@!3iLcXbG?1<xT$0`C%m$M#OPN+*c)Te$SW{|ppjzM%s=bptH2wgCt!VoVkV6}
z0V^1WCA5sSg8kypohBJyXR!)U7oH8>U><?u34(piT;h^y0(&=)sDSjTQ(l#HrzaH-
z>1MD~GVtydXGfTQSTxF>0BGntb)wo)xXRJ+M?8BElsY*FRN#E+Yw52f!>bYWP?m*f
z`Z-Xg7$5)X{1<j}4|pr=Q`z7@WTt^LlIciuM)(F3)PU9S#?2z58a8Vj8QHX9LtpeF
z-sufBcpfK+6=KiOPtCKmbhp@yME(v#-0{q6h<O~^otEKX_ph_C);EH%25zcnM`rQB
zl|BGO4c69h*p>;Y8=NuWomg7WiyGQB4}N!Hi(x2g;4ow}vT+!~Ai)}Xe1vh7mL%Y7
zaaaQ=LVgH~+1pYB+Jd&i0k?&*>(m=J3|_<F8faRo^8wG`IoP1j;93a9+R<UKEk-In
zbCLvB%aNg(3YJ#D`K2;%J*yU#n#N8|_+n1JIviM|bChw8%mEUE#__w-JEmm8a&`jz
zOS^AZWR)u$%?26G_|?F1r9D-@PL9{m4Tr|Dzc1;lfe+AMZ6Izn;5CdHEC23iQfH<C
zluvW_#MO?>-O$GBWKn}Sz@UXvZ0(yr!zX#oq122B=PR%Vn))v7b-#u`0}>DB(~_nd
z*iu6;`p#|eXNVesr!;aZh4f&l54@zAikI?eHO4EY4YAaCgNMLg*OZl#!ZeEXF<6!<
zAMD8j%M)Y;G!iV8%B_QLGnuV`v%fxfSg)dO@C!2k;ZuxiquB-BHPoNNWx|GxcG?22
zLiCLpe2Q?}#7akPm30PR5mOD~HVi9c)-|w-6W-cm$X+mBd@2Gt7jdW&ulLd-MqY&{
zWVrX=fn9#jo&!+`B=6W$Kw*W04^4-N+uzd;tU|cyeoyho3s0R_VdF1oQo&axXkx)v
zMd+oLhWDlV1iOa$odw_i2?pO&f+QL6DJCa?3mhF5QALEs`XxEO!JY%83%$<e5AoK>
ztaMl&O@V6$_{$ft1E3`V6M3=|W)|p<rYe{Wm7MF-WAWM+Qx$#Ih*sfG?r1WHK;;fW
z@bo9!onUxRa&bOnW3``f-yvi;-~tGC7Xt)`)P9607_SBS6u=`3d<xgTVGb5xuqv8=
zjJ5%*@Jxx8ZDHO=6+WiH3)M%Po_rLJ7}n8F6oIYP96@oaNJPL`hm9595$5F)n6t4C
z$Qu`X;4eO3`o=ZZ(bUa<`NderFqpK_2}8}~pH?vrI8<WuEJD>`^9oi6?ikOER<QBJ
zqhDVgpQ(U}+b;t4)q%(Arp`YK_SHcSM8;L?Gj?Xe$Pd=hNE&B)qK=_a93|=)=h(pU
zTZJ4DV$4J~W+Osgr$Ll;oyHA=*MV2(smyI*b-<PG6PqFqdr)g7QRq!`pW67}ss{g>
zZ)}dhuh{hD2(9IcQk5-r!vCV`!w$*ukqzoM3OE12DhUrcK&U<i#Y+4wtGEkHB-C|3
z87pb_M^^~Gn=#-?aiiiPsiiH%!+_y^7*Gl11Vk{8;hPZAQAKhb3lG7!0kL&2<C8RX
zGR$-A#SUqs_;w+5Mync!mQUmTy*$54sHy>u9<QVgF0RHr56fphVSRj+pn<_cL0=_F
zIOwZ{3{fE=ucQr(;3L&g2_Hoa!@x=bD#P^2@T0-ifUP;qsIiDN2UOBhGrb)wvK-@p
zbwieN$kOh<VLn}-4l(RWz)HXjH#{proDF5ejII=?^2Gxn7`zhOOs<8%d{EO*N(F8V
z^Cex$$!1+HHxs$x+MUnQ>NplC>Vv{mNlP5U4iU$=Xmu1QJfso3$EGs_QHW28;3a1`
zGR1l+&WW%l06)T{Sg1F@fI*uZMJ3Q0SbRvr`4{BmguCM73|G7ct_2wFOSNG6eWn&s
z5n33cDAoK<HGzH`c3Q#K)s8GB%xY;CMvrVmiENd*mLV=RM7nydI1H4~BZYHJn!0jn
zv09*m!Z{7<Hu}{H>N)z=62mOOd8BFu&Od&&g1V5r7BeEEnN&RJt0jvG4Yi=-_&xT4
zaUoSJFgEnnlEsI<T0&S_*Jyg<ixC5B1;&Y@A2rh@v4YyO(B;<1a5Z4o2COUR0-rTV
zc-^dT;MI$!H9}DfIT!Ag>7jwO=sirFFML+ey-d6oDucmZ@=@Lgm(i<{wy?L#-~HVi
zHYPBeLe~N-p=$dI!I5P~B_F<8%c+#*t~#D&aQesB;xv$`m5!%_{Av~QB?DnY2ksRy
zqyzc#X1-odIJE;Oi1laTzx|&jrh}kSeWVuE!_FFJmBq8z-IDCzhG!{Cb+|VzD?S_-
zUSQ=7c2-2d7rSdRLTs;xYTPt|ZDwAG$<y$85m-$q51CqpZ~&|E9)|}Co#h8J^m856
zt*jGw!u_iG#t`@{etx)LHRB}X?~40XL!BhNajKd|+utFlsu`wz{(L47W`_gaAyYu?
zt0p8&1jXWMnl+FaM(t^64qz=(yl!Mj9d_qWxSkoV9&AK0<Hiz_4j3$qC^RO(3Gw+C
zkSvx|%gS`Z;N#*5UM(>l#xZUllRPa`)p~+25woXBJ~gQMn`b~H_!rx07W@Guo+W?S
zJ=$=Eh$Dh+3jP1!S*~1BYT!D(XnrueT!Rl(KYzpEZ0Iov*7NxqFe1YA6q;{D``7c;
zfKjU<gs+bE^lZ2<=ppOzo@Ta0TaOjB1L*pvx**@Ez0NyayA>1C_Dn9m5g(t$b{NC?
zhhBj@fok~K5<XI?n8U9gv@lrM;a5-CuNast0idma;6jvNJ>FQbH`-EkLP~OC5_>%n
zd-rJ#a`+5O9A?sZx?WNWyVQwKUOcL<iF#mcDTq682|`p9ij^23WPBS7Rumn^;|6VG
zIG)DUvO~}%riyx32V|G9B46$_II_%X92FbaQD2J_75zHjmwXn>bBwgXpOx7@zlt)y
z(7&R@H4IWQ&^z?2D02|~DhkyxXggaA(sYNcNV$o;BAaFcA7=<VQI2{g-)dyId1=2U
zskY#5>04Al0L%mjt*AA~kvgU)oIRFSWTFy@U0FrQ)W?VO1tl>QptS)r6Bw>Im2HgR
zdCcHXO!&8r$rAfsVQ&Fkr($|y9J?6@qv&Wgfvv+i;<cfrCAeVoMz7e+Bsj>elrtSe
zi|6;qG_S|Jx*~9HjBSULF4?dov0<lNdG5XP{4bk0{5-%~XepR{;m{=<2Vr)?_b;DK
z#+qDrgvo}=tS$>8j5Q78(9em%)m%NtU&}aRg$*LT8eY@qBQeE^A|n`IP4U2Bv!$;l
z4v3(U3{{hkW&&ykjc9x|t)iM*<S+y0N;EJ@(_|QDbWNBVL`_g8KG5iza3GBxQA~y_
z3sE_PJrnkO^UIO-JZ-R=<A6FpZxgQFx5`F_fqEZ4I(ZL7tJ(^<!4)*rbZR%4vvjyV
zkdh{_gb_<jL6*2Z9QlY#f>j@<f;u0s|6<U2sM#|UuHj^UkzNxHSK}{+nu-!i`G=Z+
z$G4hl?j5_t2CC{YlAga3gG79bT@Ilpe_!H$^Qy*leNcTeRJBs5P*S15ZfoW^Myz(S
zo}#M`2Ui>fAFVnKT}4+lsOc!}R`1|Xg((}%Ewd+Z*aS>ULh!1|I(^m@aHxV;b*hH9
z<vQWr;HIi6F!yC>zHdysUTg(9T7|{!EC=7|lT&$-rCt3lWG9#A*it&Tx_vU@oJvJ*
zb+u$8pN@=q14XIL)kXJ;g8l(671jlTgSmzOf<6U}!LhEsi-&2s_HuB5a!L8@v|g79
z5X!|c?V}AzZ6xZ^IM!vFW!wp?yJ7kt8oy9Wi~=>-O)8<aSx3}1&H$W2oFp_0@8_4)
zma1)RCY-R2Ym0Ml(7Kv?4)YUUB+YpM!T~M<3<s?)G}p3jEGQX^6yeaOGcGw9y&jqe
zo~1N<A9UR$6<3{D5<Z+A77ETUi`yZ;Zdl)8R<R(v#)ikjPNf1@%FZx%;!g%^2X)!Y
zKSc@(>!$jC@~fL)ziUUSWb#;GjoEnA6Q0Xr1JiS1{t!R;J-1*?taGHPZl>=iLtPeC
z*P-llK>QxT7=+3YMC%<bAN8!VF&nRkCpaGbmMQegTzz44saVCX%~KKnNg;f)e=Hj;
z?5blN9)@6-^nCm(iy1$d^W#?;2VPMBCrD-51)?ekowfWbTg_X%vN3{@1SfD?0X?d<
zNzO3mvLO|$vStAi;NIj+gAJf7!$c=yPIgI6M!U>$!JiCUK*23?#)kV6!@(=3vvo6n
zeF<JU16IyO-)D>+#g@x7@2G?C7@l;%HZU%x*9}}hhlG2C_J3^$C?t!;CHz#DtFCN(
zniky^r7k-~t#_K$2(62ei`JbOQLu697jWnqFRbk^#lTSq6BoOat#073GboHXM_M<S
zrfJ#}n~@Pa-k?45+S;YrmbKY@!^f=uj6*-$pqYH~LDi&dYpE-EzA=-<)GbKu4C6*Q
zZOu$uJt+#F6ds2F6^HYoN?Fr1VZ0BeP?u4$iTc!ozEiT{H-p`WmE2yS;IM-^1)L1s
z(@Hn|=3kpH3**WPKAW!!^WO}$6(tPXtyz99UMpiBMkpb8QbGs$Zb6^N6(-dbuKI?~
z4_cl1$gpmmmcll#Ya@{L5M3R5U*CYi&g8-cercKyOjl>i(~uW|*KL~eBXo6VYHT{3
ztIJfm`@;@juoVIGa(gB2d4PxMTW<H0dp&lH<i8MnJruk!b<Rw<e3UJ3nUlnrzr_0N
zL;;&+;I$y+;R4-WV12FytVgvuJs{z!`^WW+7K5Xtr()^_(*(_&vHwK*#bJi}#(fZ(
z?Ck>TpvDd1WNTtLyihS2?vr7<V5rZd8SWm3Yr9}!|3nsUpb+yzQ5GoRjW=4nAYy1X
zb33(P4E+T+67wsyGRO1n6xhG;els`$oH<@gHu=|QtCjKE;lG}+1S*|^SSa;Euaqn}
zYb-oLe15v|NB`&db|kVm&7YqP{E^^?Z*5}n9^ApB;PYXP6h;&T9qdQ{=f9Gc0&jRV
z@iWHwqoKZ{grk14Zt228HnE$7=~Cd2I)LR4!?@S4%|$$C03cm&#hMFJfLhwFN~og!
z89X!$XDZ6i^}wvnF4o{Hu8=W-QNc}?VU}Yo=>Sb3eLEt2N~#SyIN=MDV*uy@Dv<Kk
z_c^XiOM?QmnG?8-XB}j)h%|t87+?Nq5ETs<*=LHZP%sK$KQVC;t+E%c!wZ6WxE~Cl
zn>jwTo!TigzVvBeNgJ6gl?_LQfFF=acwhKWG)pr363r1@HK4adj10%|jsJqK<Z2+g
z8WEf}Q=lO3v~Qw81b3)G`E)ax41<d8{PTB&AZU*W)^`G$47NtQE0(QuvCg9raWLNm
z>uws64jwB;t<fr=#isw@G{&;6*ZlMf^dEFR!c7Rlx#o`JI}4$HY`kVLwP}FOR4@8W
zAHSzk50sgh@h8LJ&Z!jc!EXx|)}S(<-9W3@9m4plKcWv<mgG3yejoyr!|<yCfzEV&
zgZ~X@KjCb2Y9?IV3T{sXG%hY8C3(31Qv}mDMX8U5$2VU=3sTb9eov-37@ER*yiZvW
zBGNzF6cOh4J_z5D4y}+;u^j0TB*0|QN86dhI);YCL()R*x`A{etje%{(YD|OgRopk
zM`%5n8=<MBV!Dv+io`?>e>F~U#?lSD4bp+Lf5Di6`)JkJFcX!GH1L;%a<U5}+1ray
zF&o0$qd@@L!GuU-!a~%SDzl<Q^6rPO_8;NCoZ&FGML5M_Sg%2hKEnk4!|=x1NZ;H5
z8t6ZnXsZ##d=eQ<X_z}pT(-@`Mq}cby*J#nAT~*Ji%esj=|Z)l)xeeYAehXwbauoR
zTw?AG3$35b3`btL1(RKDqlB758$AOi7VqlgZIX%-<=3bGQW2tXOlxml4A@t$=XL!j
zjVR3{WyuoF90&9gIpv!`3>jrP?MDUaSKl;Xx+IWwEDdsw0l!?E{Lvcu-mPK+iSeLi
zIAGEjx1sZ`OkjE1uq)3Qr~w>dZ|KV_h?*7ysewL_m=naO-XWIrE~2zR#yF*mB_Q!F
z+&b1}jKg4#mg#r)R$qOqW&={}e!HZiRqap?dn>5$Z)j9nN<4%K`nnoivhMpQm!Z&n
z<9TSv5=i^lKx<SSbP2pbT<<9H1KK^j>W0y3$R*DvHrPqU)|T0~PjcW2GlRje!t~8z
z2s6ZxLdepE4TSLy7DRkuKTMQhOBp@j!(cNT{u|*BOE+xbft~8CZIm2MeZ~$?vzrT9
zm+?&uG|ZWd%bzgY7#6ws+eCp{KJ+5Qci{zP?kV~5HBO)NhE}pBd9?O@%*!jfi^Enk
z!$;u6cd`5_mni&YF9)gYCM&~7;KcWoA9l>3@N188kZt7%16m2-|Kf#+78L$*ha4Kt
zH8(+uAJ}KmuN3~RIUHsm$L<*OeFWd)``Wg%wJ3bij-0-2o}B)+T9<E8_&bw0P4#%P
zk2w4#=!)-V?F;py@aGG1`kwi6`a3UHD@fs2mE(B#czOFDZ~bl*h5rQkw=I*?Z?vxW
zAqu}`AogF9y#KpT-kOWTzW_HhvX6V1Tz*sS(Tym4u3t2`;`v-of5RVTGAaDRR}h~I
zZjLZ~M8ApeZu{SbP7NG?tL|}-`%#hs9oYZb%X_Y+@E#mL%A0b0)nbX?Q22*lPS!I*
zK7LCtUA2(HFF^j)RJr_ipPPS*!asf)`)`1pez(6XuBY%0)L;8}Iev1Bn5`7vGn~^`
zm%u?w!$<U+_`a5B>3=Bv1VO)+oc_XU58G1sHK;#IC;9mM;pJXmQg}Dwy))(XZ@1fZ
zm%<N4`=><7>9@{(`~?cX3H#snv7G+oS{WZx_~Oq{=;!73V`*AcG=;B;c$WqKMEO#!
zDEtBBUs)^H-@IEocBJqn(SE3@a{F_)^RU7cegoQX+huwCi(NTUmc*m|by?ucwAx;U
z!k@+VdzQ-W$K!qfA^nG%qWvGr@uS{dR)eBH7srq1hP?f8?<EYP@b5R`<JWUjj^A*g
zqKm@c!S=hS$o2o-j4*Qi)(qwJy%z27dg*KmMSmCepXXOO|BudJxIp0#i247n9H06q
zdM|~4CiMTl9Dns{m+BP01-9RvA=m#mMt_t};g1UcCrggMcrx~D3V%`H$H~X<!Fh|n
zr|_fD{&{=I?SI2F&wr=zlMt_#kn`_|UUr(oS8c-WpDQn1>1X(ec}IMA{qt^L3g1)M
z?*elC_K)Mp`E#?Ff2Pav@eOaKQuG%K`fteb%W}4^O5yF(`1nz0$nia%G<rzkOF>|z
zeP+q=tv)yxN#W1o{O_^A_pEt$0)_uf=+B#S`sE9Oq7we!STviqx8(RD-K+PY@YS*X
z_PKKW`1ji-QFt5TZS&>$ubz**P2u-r`#lTf_;pWKY@zTIzYEd2&-IQR|5~#K$0+<}
zA-{!ke3{{cpHTQDVZYv&<9jQuH&OV#NZ+$aj&J?i$JZ$QPl$Ifmg9S_{hMt62<$)C
zGC6)j#0xJ|^zR7yx#jrLpH(8q&x>(<{JK`i@vlrTHI1U52hFB?r5qnMt}<!AKIq7Y
zzxQJ~{@5EYEv4wIg8nCR{K&fBy+q;Xb>i(;K9%G1-+5ymg%2x)_HVTu-}LNK(*OA7
zb&mI1;CJL)O~${&(0}%PE~h`H_Bt|uun@<OZH*jXV@U^c{FlM@D__d-DdAPFQu3>Z
z{b#qpE3026^H)WG;`-yUz;}NBWHm+qTl8PmujKr%TQr6AUyq9T%>tiu?;_IwIU?fE
zwQ~CEkS!q;|3l{T_S@IX@paq09#7#PPv-Vp*(AsJSUI1Zf9mu`{r^UeU)JFFI~4u1
zV*c7J#}CRKPx_xX5wC8M;}<kn$@xD6$B+7*9KYRJZ#2dK>xlPS;IEEf+>657P=9UP
z<@6tvn_iT{XQTacTj0n3{d6dWAB_EH-yx@8D4{Z$znzHV*JFW?eV(HLMgI!wzsn=1
zUoFRL11NmxSgwDr-E#b?1O3VQL+QuIkFr;e|FMAmABz4qY`<;49H000tl<>C#S~88
zZGnHZe|$*_e^A)Z19JL}C$A^*AE5p4Sm5^`yGYKTs}b)#D5sz6_7*b!?TYQUeJ{ty
z)+^GIYX2e}f40MNd{&#nWd5l?(pP_!<8xPQdWE822KC2%RE}R;=GnIt{tM*aeoT&U
zTfzG~h0ntA>-tHKFHrYZAqt<3`s200e>T2MIE8<87LLEua{5CLe{h1tqx`)V_!2Yg
zk@=VHC_nExIel-L<dGEpRwC_iL5}aV{>pL+-vayJby1G*IC)hBh5tzC-!F3f-0JEa
z3ZIVihsy%LI7hEl6g~|7f3F4p#LFd{Q1~^-zvqga{|{T+UZn8Hu>aH>a(q_l@1Ifl
zsn~xm3;d&V(>qi6PelLUlGAT>t4dx9|0#|?_iZ`;Xy5ka`peVp=zraj<0rlNd@e<Q
zj+nnK@PFTGmqy{&WBcv*<n*sZo{FLHC7WaXk}bz?DBHCZg>Slpw_klI$N%}}ATob-
zR`CD39KWvg@U9g7kT*F09t(WM?FUK!;|9|A{voH|aAWSx6#YL@|J_gI_y=VV@1XEG
zMB4LjIews{I+;IM+ZpZmb2<Lq8<(3?^si$7dvahR0^O;6rtdEomLT;nRPb+;<3p|=
z{FI{K3GJ6XuN<Fr!LyOV_eA<03;f|nL&^N_(r7L}_lt7*70;VQuAh#`=7RDTm*aC?
z%Q{Z+|H^ZYS4+t8UoIPdjKWWu%JJ@!a(vXJsbu~=9r0cZe0I*4NdN2m@+iMja{48g
zu3A9xKS{K|v>e}U_QkCfzIq={Uo9iYudRDy423_0`477lzIYo_eqO|TE%2c!waNJD
zk;p%lmGi&sgzYnmfAEU5kG+Z<KY85x^Az5L`G0p+Ieu@O5;h9|3yvRqH93C3;lsHp
ze6JYnzZ!D<<9y%NrttN{INoc4A91hy9~AyP#-D0UIsF&LJR$A(>XDqj-2(rp!k?u5
z+Jktn1-{k0wx$&S%Bv{9T5|sP4ZcXmFRmAme+zuhDSsTK=&win?Y6)V|GY~x3ZH%)
z?N_Lr|8|Rh98clD7WTKc9N+81r=<Va1oh8dSB@_q*?T5Me|{a#zc);dA3SALH41+n
z^XK+@a{R+wi*Hc)J=lIVT#i?MDR-N~@12MC!vf#A%9L#s{xrr<-uiO-4XPCzOX05|
zeQ%^3-|Dxw$o_ZL<@)Q6lH(Ut9rGGR|0?otZ!O1P*!wNH|E!jR^xMht!^*h3QS`G#
z{-J{$|5=ThtttFdA%6?}$8(M*lX#(j9p&^RMtAsv!heYKkJ|#@qmYxF{~n9^qqCg;
zvFsPf_`z0%>#yq-Ilj}xilqG3VE-x2Fp<I^7qI^`{LQr+sP-5AnFBl)^wZSU6Dj;t
z^uJvF<ovICU?ctSr#OFj2FUTZF16i9(cd+g>#uE~9N%JSE7JaqyN~j>z^`xCiOioj
z9>?js2FdB4s=JD`pAB8uVT0xP7f0+Q*AFhD{@N_?FTF$i|8DGmmxccP9{L@*|E<*n
z&cC;`T>qw5eprO+zk)f?{%pa9pg7F&+vQbp`6&Enl@R~Coc_-pqt8(I%kw!w*H$_G
zo%_~pr|=)4|7OcCkN<X5d6VqF9m4)Dmh<o3UXaYcc?$FPE6wHjQ(u1nEyaJ)BB;L>
z_=&x1lkuayE63Z#MuZ^!7y0IDGXG}7{_|MiHz)i;(yxyEtH<T??~-<JI@SK_SCHXo
zx%?VU*<FFc_eK8gW#srfXMcD~;Rm7qxtGZC3#xtlgu>Uy@#`Kh$FG@?O4|Q5s6Q@?
z_Gis#NcxZ7%Upht-$p_5FZ1~Qx$Sw<eiv{deu#YhUAjB%8>;=MDx&_CmDBG!#&wy(
z-$A_B0>8Rer(G0&Db64Ea&r1f(-T)v_^%M}wZJz&T8s4m&g1;2K9<uz(BT_${=JIy
zZJRNXh`ng;zx78WMo|2B#PQ>?pkH}<qrw#ad$gbS@^bz^D{zin{~IUl&tGzU)`^bf
z`l%i5hu4Ds^os2|QT+db@>8D3=}$VmnOwh#aH9SGLT<k<ZCy2kqQ4K<zw8$H<_CK_
zD17=U-r=q-^8Wub<iQ~dpEDQd-)+(Ujst(YPT?C)K>S3x{C*m7iJbq^`yoD7Za+FE
zb|CpLdL8Z0-*Wn+@>eD8Pn|s2e>>##w@f=guHSx-?RPzu)BpPHNOJ#u!zfPQW8weZ
zcyU)OCI7l@5uYsIzg{VSO>+O@W;?dOg`EEq%M1QM(f>){i^%EUo!fCTg>Q@etL5eA
zN0ygdHig2kdIt^O5V`*yJKsaD-yKck?YCLri%!nngrYwH`FC01E7n;vkHW9*&-u4s
zk;}hz?HF?Z!+LDLI!TV-f2#wTzix^8Z$BmPzeZECKc)Eh_TcifKa<m6()B30elQ00
zUwJOa|9R!eAd3EDr0=rO-<>trk^663l;r%YOXc(%)tG*kq8}&hM@u=r-O;3r6u!)#
zy#GBG`txx@^*9P&`6lAG$?gC2>V-b1@Y&dYWvG1o^t!u=oIi^;!0}^&zf>bOl%n4o
z`FC01@4VKO%wN<*`btr`{uaztdH_Yg1<GHYEbqT3C6**o_=V}b{Yoym{5|jIBhSxm
z?9cIT3;dkKgOw=yxk@2EUOs;{IMe(Qh0ha<{kL7tf8H~@Nc*2>BI0w)@%ek+BmIXc
z7so3*<oKUnzd)`(x2eYQUJLq#SAXWF+W!jT?GCy8)}@smP2oQh_CJrD|F5cjaEHRH
zxPRMY(f-kS?veX9Lwln9?#uPx`%ZXuivC71|K^qR?>^OgDuus3joTlWM~-hf>Fu2q
zUPb+LTa3Sp|BNNqZ(HE_R}<v@*QMAxGJfeT?AJ~?|5dVICi5SMP<|c@`BmAv*+aGe
zijaR!x&Jd^L;o5SJ`U}tJ)fNaX5S3^fWmK1Mg7Sy$NwkKjNTN!l<@y8@RL1hWc;?_
z5!WAOmz@3wueME~=uds0^Y6CE-*p_8LdIWzVEk>bAh-Vo!_UvA==VzD^t~4NLHTBo
z`KRufKlE74e}DZ^v^z!rbD{Rb<n#A`7L2J$;q6FYDIkwuGrs+NE`?u;`6KsE!3giq
zeAunxTj}RrOyS+Q{_1Kamw)Y#yOaKR8O$HJPs{CJ;>yKuQuMzR`6CPaG3}c$a{c}M
zL*7t(WjX&-`+q~mUu9lI{jtE$T$gJo#lQCir|&5wA3x_SH6`=!F-TuMDewP>TR*!^
z(SOf{9nD^4W%!7G7vDb~=-rmW?+NGacUjP%npx-)g@1}<UAryX|JCRHDg5F(oN2o_
z2!?GCe2eeDo38Xy_#X8*|2B*9*P!eRWc+>`hmAc+K7Q&vn@Z-Nhq^e!uGVt>%UE8F
z-2c)K^MC5Aa{SBJpH-&X-=GuHkCoe>;$Ob9g~GQ&yvG7R@LKD^6n;GN@3rW^_gfAn
z_mA|#^)GuBdHYv9YnF$i|0dG66_M-TONUO5rSPB3=koJf(63zdS2F&3jB4Yyh+o^~
zJy?gL@4@v4dsTV+mrX0&kis8Dyn0SP{(r9cA(_8lg7R})=wHc*i?34ja|^P?#UEUr
zV%&=FCG)b%Q}|s?czt(Qx&Bt~y^zd5e2V*j-G!3)gYdtCuJ|rrebruyem2U_6ECNK
zVa#dL{u~$Ur)A{yw~TC7mZHCJGTPsYa(w%(pGQ#m97x}LO|Cx!n{WP!!Y_{G^wr7o
z@$)>iCK-R-PULudF*&|>`_&GLem3UMmA!KOzLgzF{zu^Wwbzojzwn7{a{Q*pbN)RR
z^gC`p5k>L80oPyD59Rc)=5Dl`!n-m5<LNFRKX0v0CiAD8+o1kjm(y=|;mu|g{azw}
zoF>=*El11Nr|^d`Z1VPy^M7^Yvq=>GD&`+uHaY)u3tc4hH#Knm!fVn0r^`+|Owq5L
zlgm#jF4w=TT1n*k$IuAW|4=#qi6h@4^FL8Y-)n*YY14Lc{pNxb`9C1%fA8Sl=c)G3
zF3R!V5^{Xzx{c)gk<-TUo^x{h_3G%|Jt+F==)ZgR%l)rTAMGIZ_iGn7`09B%{b8G4
z+D_3ghHC4%A@9FCrHl2W@Z*L5@U@(Nt8cH8{@>J=Tz<Coa{P_kRclc6cjx8pcUg?z
zlKT?K{M*Vp9PhEf*DT$CBt?G>;+1r{{V1JxGa3JGM7+%cfA7-w!zlWlt6=*r@I8yX
z_aTL!hw+;-R4)G>zg8jbM`$P1zbtwFX#U<$6pH?`dA$E!7W&(y=WSB|reOX?O_7hE
zx4#%f`fsyUPTy-m|8n2`kre;SasE+$klT+t@i)lzx38*V`wz<b-*Tt{x&PvbSiiOC
z|EoVG<)ruz!ThuOk$n6=YH)WEg?|<8m(oU#A62;aGz#DFD%T%-Z8`qh5|unZ&=KvI
z*8*SY<jk)q`W=wI%Yy$}&g&~Fd>^E5uOsI_qvh;xDEuo(-)n*Y?0GFR|GrSjzpb2p
znLlPWrs#iyc$WqK<hIFV{Am~MuPdj2zJ@b_qTgZx?|-iaKKHFG(*A~q@bP00lhdD4
zCV`B<8?Q!uZu$88Cja!+6#oZSaJ-sFj{oTQk>67I|IFZcuLb_6+>6NlchlB!ygRR)
z{%gnj6sPDv-hl1TC&w4r_$9f2aMDNE{`_+M$PL{eQ}i!>fbF-ycg__TP2u0l#P%1E
z)9-&_c@~AwwHVu9P>xTz*8C)e|7sPszmOcCYuqq${o?vt*nSKAfO1XhQuLor!S=r(
zr{C;!oA)Suo4MHj!g74<{Qczm?{=iG7LnsO#r{Uxzib>oUJHEUhB3z|{^OB<cTqY0
zT%Xh}M&akag6)4%j^F!bZgTzRd!hfu<oG@@^+|m1kFozP@a+$LMCL!|EWrLRE~o#W
z&yVh++JAZqKfi7-A;&j;+KF603&ZpOYDqc%<u&EV{SzxueqIaw@JUC>_0JdH!}gbw
z(_h>#bu88XCOfhHrRDg~SDYaAr|49USIfxpKkv9o`tOS9e+&G8f(d_8{MSajyR4jk
z`QhC*Q}{9~QUA-y@fnjI=BM!X=^U??m*am4|NCPKe*x`>*8)HPtG49+r=vK3x+}=(
zuRQS1%M^XPnExxv@hg69Jb=P~h4ZgkNsd3T?%L}Vz7EbmUJHE4)H&}{co)jwU0F{5
z$Mm?DD14o7vHw*${?y^`j!^jf!v0l}<KNo2BZI=*Q2)GE_`0J>|9$vZIR2~3>EFMZ
zi(G%5h~vjzO^$Ex`f3!#|0=|*)#dml-rMB;2l>9{{Ch3%R~t6CNzwmW*#8=G`YX<#
zCFOSx_19igj(>YuVbXt$PQdYBOOF4hWGK1+C<^Vj*8;z1z#7tj8a^KTU%!Zh#}oPZ
zmwt}%_Mo3TQ1Xi!#_{&ra{f<M-1j4e->@6)e;qmgOtY%w{>Mh5|1I#d$M<?p(eH)!
z!(CTS|KRpRODX(n;s1om@jrY1A^o>kME}>5<Nqjph}7SFvr+#o@C}yMAkXif6#5@7
zr{5}vjf_89FT?(ikmC;@{jMS<zcPqd>&x+<WR`GHc=sr5zXksDBiB<Y{5Hh9BjxmG
zJe~0eg&&UkXOEKO+bl0n_Wu~vKed4zA9;5I>A#Ie{qb7h8|9eTpW=VDi2oYO>0f!@
zbDP4?5b;kVIllY4VznszDG~oQmg8Uj^sU?!eyNB*XJaD8WVeJJyBL47359R_4(jiF
za{Q*R3zPd7mZSYuSIP0mn-(V5Z!V+!y=&z7Gb0|Xr}!^66ZL<S93N4>OA!h`Tj<YL
zIey9q74uQ}NL;^Bzmwzl-mYAh!bg3^`FHP-<CF4*m80;*G5_uL$nkMk^4ci;SJ?mR
zemQ>Olov-(_&0_A9FXIuZP~Yt!tccS!+lVW@4NfpQwl#A<)<E!<5RptT2S}_C_iO`
zeEnkchiCq#@G+==b_@LeI#th5_(My0|EnA2^vCbIPx{aEaQ?G@BgYpnUzv=*Y_H+?
z-y+8k-5k1{;{Whgj(2U9<KHj&S#1hmZWqUUE$}agb+}LAAE5l~9y$G;ofnYtYav|!
zR(HzrAGD0?Lec*Q``@-pj(<2Yz7&NYDE9wa;Md$3c$&gDf1Ars*)6Ak`{A#RDSVlw
z*nfNE_;;h%eN5pWqyKCZFA@kc|9lgjRe-{~F#loSC#Qd6?8J8|d_3~+vA|E;^8ObT
ze$!Omes#Z`e&JaT^8C^+oIh*_<ann#k{tilaQ)D8P>%2NX6e=x{}pimg!>0M{_ust
zWc;P#`8{Q{eEqq#cM}<Zbi?&~kHz|BDYe2vivKXAZ?m8u6Eo*$68{b=TzmQYP2QNA
zWd367HI7$j%JGv2%qG{b1|$D23;Gw@v?TZcBq848maqTz$op<*s{Ipi+H+g*za?Tq
zTMA$QByYcamc0ExW_-Se!dJ)jbNduI|KFD{O8T!K<NBTZZ8`ni#cEBV=r70iyE@46
z+rHY|fx<Vy{<n)4F$A$++aEUUN#W~H;{exB^7gmSd;1p(zZ=`{QRR5=v%g&wzD##+
zzih|l`1hY2An!jGZkx+u{Ov#b4H-YUQGe`J<n-r%dAAS6e_xcp*FyfK>USmcH$S2L
z?BVkM-;_4*Aw~bl1MKjQa(v?&_sIF@<;q<CUJLpwuTLiD-(q6_LWG?Dv{R+X{a3wk
z|BbhrT>jUG<ZVZ_zXZnrE{pbm_+lY)|Ht_py!}ciIscJA?cG7qZ;SbRrM%pK@74AR
zxqi}lD5tN^mD4X&z5$uP*xwiXubF)R(T+a-f1vpP74P5jTJ&GF$rtxgcrVg-S;+5p
zjRzGd{OLI;|IYIE?>jVY0fjHx4dpjaj-S7B0U5vjh5ReE<ofr~xn5-a^rHj$&yf2c
zvwnDBr}z)W{U^3iIsH4Qc9QG=_fUUbr{(y+detTUw@+Jh{yit;`J119t+s;VzZk~9
zuG(_?&qlUaDf||+KejV+eAV|Clk2aq;`t?eeR==C;>drIqCW)rSHwl+LFUiS2@QXz
z@N04Wx-Il?!RmWt{&kGVAB>U9zuShRr2gc?_(h#BZ-4(CEy(z<66XJui*o<lk$Kih
zwcmc43(RJr|JRHD(T&2_zsd1li~g&h{DkzMcA@`lkCeAR>2O*SML%22zjfvMrxagK
z<{t_peeXDV|8=T<DVw5yPxyZp_OH{Sw{B4Qfzwc7y>k8+{Y>wFU4j0u%cB3@t}u$+
zznFydy%zF+*!@&_ivLx3{>N^ie}&J!F_^;tiu`-e$>l$H>$BMuehlV6-F@ZrcU;1`
zrxf0X=T|(><oK`7<XcDK3sm9u*A*`Bzc*iPP5K}6b0WTh96w=eQ&N8_BYm}@9Dg9B
z!eoknH^%Rt^K$vylP;6?=c$OlCdlzA-O>h9^xqcw>xpuFcKx&D_+5qa^H}JA`BQ7!
zQ}kCMecNTZ{0i^uxQxQvG5%2+%kghLK6#zOe~<htPPzZ_WMO(<3V#>l7n=qC6Hjh(
z|M&%@@3!Fo_!m{k`7>MSuLb>tPs)<x_c`+Kx+<67KjmtiquO5u?=Mrj$mfrj-|M@F
z!bb^wMfvz|o3}zg3g5mMAHV83x&Q83xSNcBqkdNu+mRfK=M_2q@<+yGQS{p(|LQe4
ze&yrqZ&CR6K;H%QUE(6$ApX-2?%gFQd>6DowkGoa`)yMna{L?;`NK)_@qg~pLo)st
ziuAn}^bc=3O0IwZgyY}URL+0t5yvv9_FoqE(?b8d<o=e<UnAaiSnj|5STu}W|I1G0
z`seK@@Bb|=H#MO6pDNCOPL|7mc7eqa6h6ex>D#W!<+r+Z!(<BIAIFb!U5;N83NI)o
z-v68g`pZ6QGdX_w8^w-O_!KdIr^wr%njKE&KO8vzJQnn4l&(qUUrXiU^0T*;+mEK9
zpAMq<pMdRGRC)hjxl@i@zj5ODQ3lBIDJOqTqv%(!kNh{6%fDOb`b`wRHn!huA^$p~
z){*(2naIEWlDz+3d}%3Z|6SPsHm@B2^ve(%#s55<|2-D^dv9cKa{g?A?N_4Z@~eL=
zl+54t1ibCX9E$pmeEu7|JMR^W|7xIiF2LL1dVb?4AO1sp_urlKLkhoI<bN~e{!7TP
zybURQp){^PE(`pfGu6rY^CQ%Mj|INS^6BLHzgf8cs$|LeKNfN%lH$K~8_vJmqW`9h
zN+<L0W5oPDP(J=%yjPgCe;$;--6hxG^9!Dn`JZTve{B}+U$n_qjcWfQ<li+&Zoe|B
zXOsThaH0Q~<@~2T*h$8ZpCNr)3;Fo@Y=2rD#ebHtKNk26HGXeR;lr{2)oF76UGI(?
zK;c)Q{@HHI`JdOl0GYqpkM_^iQjY&3-^P0s{as@I)L+EO2fi5h;=6I5*?&>^C8GbT
z$o02K_i5z%O?^}wRh8Qx`&%c-_@^uCuj^8h(R}IqW(EJFm+g6l;=dQpUmgqnuQ+no
zBMN^N=MT><x%{h)t+Ii_e}(dMSC)^TPhvW6qwx2!|Lv{i^b72HOvW!i2>Y{8K7Vw(
zHkjPMnSk<hU6b?Qz5YcqexD@pzsmV<S-#P8s{M~qe_c=I^nW|OVl;(^Te-E5+oJu=
zcNGk$@H>V6kCD$GKmB;&7KJ}8_77U<@4-E44GMo0^H=J-^8P!J^S}WLzX0X$zACq0
zySg1G*RPq|YC8sV;BRvIhhB>!=l_Pq`TVKa<o)08Z0#Ks|EF>Ob6d23MBb#;6n-(r
zKepR)`Y(Ogeh7u%h<LXJ|8?4Qt3%;CWBb)Aa`|1YK7^b<I#lKI^R|)muas2D_~QoZ
zudA&bfB4ImAr$}5aQrA$<@W!^7f!PM1^&SC_ekFUfv@!^*WW{h|7bD(N=#`@<_})T
z&E@B5CvX3cVXe<o?N=f>-acJEeg>b;PsWc8kiPnw9RGEW?!zeh6;OU&i~PaZ-Z5nS
zQRD`fzvqs;{S7`IO~xM`fqxf_f7fqv{Kr+wk@mB_=)Y_7_9t(l<0lpQS31b)pZ@zy
zX-a;-q5tK!z!!=-{Vj!mP1vt{a{ALpjI2!I!$tpD^ncUPm%CH=MM&TKr+oZ{9$7=?
zpRz^#)=|#?`Wy9%Q1sUzeS4IA{weYFlhzbI68g^r`s1!DAOBx^XOjMB8rnaln!No_
z4}L`2|57-9-LK2_@ARHIr2dDA@&AS#Uu53^a{YIJus;^|t55!2Wc=en`Ma{^{Wsy(
zA~OHiR*avqiQEw2e}&&HzE>^T+KB2u8|ts^h}{2P;P{Q)|JWGwhw2Qu{2rYAWGh8~
zD$38^Mc)3(`wNiyp9P4wS+w6%Ix>u+ulC^f-*!XJf0e`e$o=CVp#G{w<of^GORM53
z`fp<VsdSaMe~VIV4uwxe{q?>i$2Y!|n47}CA>uC!`K?%5g0!E#QGe9;<o2V{m5U`P
z`m0fYUESpTcRMqI^k17||G8(%`|tS9Hhn1iyRrXlkL2_h99#4mg+DF&zq=g&+rZM~
z`sqnrfA?6(Ki}nFNdM1Xg6pr+RWAQ$wd*yd_*ZcMh`ooL|Dw&_olD{8WpVmmi}_=1
z-pAznb?4!^xy4!}r+@0B(0?fUH`DWIc(+a7|5NtIlksbaoAd8pDVJZ4xVY~q`lCPL
zcy*N=|J{kk<oZ+1JxKp^Iey5bPd8KaOMZ&@|H$zt5}T6i*SoeM{x!M$&u!mugrYz1
z2=71FL%IBKJU#j=g|F6%<Lz!a{#n<M-4woQxm;TRtIg#2t9hT0{>!7YIW@fPb$R>C
zRqMQrqW{lbJbyhyj<0e22^oKsT#fv%kn>+-$F>s`{X(0u|2E6}zuVGveJOm;?TDWx
z=YQCsj^z6PG{oE9l;c1A`la<0{k!iY{Vj6-7w2g8Cxy?(^FMA2`;pZDAsK)6|D4lT
z_sQvh-mvUdivBTSzw{RoaC0X7F7dr8B!3PH-}WBYAGZblsMBqSQTQ!*e}=kW&i|6B
zW#6IjLl$BC56JPgUbKBf;ah#m_1A0B{!`PAk@0&gVZSWs_xw15j9<Ro$j7he3;Fm-
z>its$#ee94{91>3^U3qqx3@(tq3}O!<L!5SDW^Yr;iHojzV$wo|MznFN1b@T4TZ1r
zBe$PwygYuISEgV~3jfkhr2m7Q{*LD7KA`Y+7uR3cV)^**TK%(Y6uv9E&1#Z7{y6pW
zhhI|oB;mhW_&=YWczq&;zbN9jU*-Kbeb}kW6#jekU%kEL?Voisst1KXFXGp?<n%AT
zlVbpd|4qctHRS!DG%%C&e_j*uTW>l4r`xyxl%hWg^FJO7eDbQBWc;%f{a5#GdHd)8
z(XbFje=Xwev*q}jg`K4T@uP^pV&v_AIWCesKmQTR&uxL<ID1H8ivL9@KlN=n|Ap(_
zBG<n*i2U0fIX>T+OfrAueT|QQ*ATh>6dyHdA;tfi2^{aW;J;k2&&c_+MH0u``pV_s
z=Y=2srsyvg`8Nyvl+JS=Q20HlKk6d6{j(P>N3Q>@5%lBb@qdMBXGr}yE%dj6oc^nC
z9H~U{e-!E4hsfy{i1_Uug};va?@5v4e=FK(JcVD2@we+QdH*eJbeW8QFC+i9aq|4t
z4$pdW{a7i9`fGtdk!Q?7ivQBpINmc%uKy_mYLfo@TPQZ$6M6gRuUhmzMgI}DU!5l(
zzvKQoSCqo{s>1zEk45{#A1$~`;k}rDP{zyUe>`QMLg9Z!yv+jtI5UFO-$#gdS>RXK
zJhPahzr7BuUml13w-)%Jd*6DG!e@2j@>3?r+aH^l^dW^0L;X?ymiPbt>y^p)eM}zI
zKMQ=3LvM#u^k*U7^;Ay3Ws`q~QuxhLoWAWJIetprie&!fYt(<wk8=O*c9Z9IDf%05
z{JICo>Hi*QBlE8Z5N{hO$6vYJCW@k8=TF}MHjDo6oWnDf!q0S}{ydY@pF4e5R|<c+
z6_>x)g8vFHmfuL>n?L0AT^9V$E4G!4pIs+7-g{GS|6bntCF%c{3_<<1X#c@9h0I@!
zna1g>gXQuoed`qIzZX5l@pjmrZ2XA0TYQiF^v#Eq{APwB{}%F_ADyEgh3^}Wcnkh_
zbngBMg|B}fxt=JuKjTB2kn0!o@cfR=0{`^V!p|xCW3O@g>QVXl?Qwd<ehPmb`(L>#
z$KPK21{pv7g6IES7W_wb4?RNB_nhSXdo1wnbDnEL;S1sU7n>sH-$r!?MKy{X;>^s*
zipx|dsu^i%nQBH>YG(2%N4V25Dz-QL5Ur-i#;b!G)*q6UoSNBGovbK;^MOXiIZ`t-
zVpDXW_yK`UjktuY)VR<(Bb;fe;f~a}w0K9K%-Bpvn3~~8NO8nvhQAV<k_G=16?&#;
zI%_j}9G98m3~!f`4D>oXQc}{oq$Z@*RzvG(KRYrqlM|BTw5K^TGSV_M+^E>}@Zni;
zBORH8k}@;X!{gFYQ-Mx*M`lu5{7a7ULk110qZOn(GMvfI%yv-D=$Ub>PE^N?*inv{
z@#&5s8btdof&JDiHpA)25V)lHj3C6~l44WUVDtt-HzcPf4$+#*{|-}m+kmOssz$SS
zT2^X&Oh$4#@XP4wUDr`%y_24q5v|6?$7iTnsm|C0M|iI^_|*YFriyaje>$#D@&t!g
z)F3Ka?H&tKjdN=MZrm_h?U><kh<}-IP;aEK$FnjW<D%6h2PleApG4%xgmW6{rH;}F
z>hw|*fFS-$ot#s7vArW9HY+7FCaqJu-Z5z-9jQuHrW(zw1{8#)jY`gRj7rZOU)5+E
z+23XG2Vozly^ygmBwxPL>YO*Uk~PVrweRHTyrO!;e|($q<u-M>K;f^~LHjr-0V(n?
zGk#l>yCo?6Q-Pl^$G52v{yBwT8V!5nZ^8bA@&5ChnSSnH+oV!><v8cpwoFbxJ86!C
z!v8jjx8FU?e||F4-?HL^TNK_kjpNn(a{0#<Ty>Gc_k;Gck8QP_|GT-1t)%ejU9kVw
z$nlY-+MT2D!>4ljd2;#ZSIzAYkLd7#!cUIl^zE<7+yCeOv^^BQDE6N_PA>nCYv*51
z;YVb{`3le<<xM&L))x=`Na0_B@#6u!XM}%zZEpXXfwvS2KOEcd9w5i}DE{t!3a^ah
z@^jCX^Z)Ip4d*HRv<!|{mx%e1_otcvLzS{g`|+SR$9v|<>3`Pct3nk0RMcO4EqVJl
zH0ged!cSrP_bc$wNk0C2Op01U;nM+c1H5;poc?P+eO;2muPVgbZ~It|&(-avJ`}!S
zAC7l@F2_eieL0E3e_tN<_ObS#mycgp>$^QE{AT1|S?lkgoBRLSf~utbn8frS=&Pyn
z@mJ|W0kZ!t0srjdw!pVNwDumwzl!7Eby?p2x}DOuQuw*RKl`X3%Jnzy{OJP}zB=o_
z+c5rb%IR0{Ht<CXe+cAn1H5~RTz_A#KI$5UuaE8b{3@sac545f6y6K;T|i&CFUNm+
zVJT^U9s%CN`2R>QzpAknms0d!$MLVMkmFDO{sC$KZP<QwoLql9Y|A&0qW|C*-v8bn
za{KrC;ki#Kyr&<>yYl+Scjoc)@vUp!DSS&D|DJque969<WdHqw{3`|I_?F#fHlgUx
z!}0I>OfLV&>!V+w@Dt|o_Paln)1TEd-((6u3-LC$9N(tt)uI%B5#qfbIet%tKN2Xs
z8~rcWZaMz*%Q1^7{43ah-hFcX{<@nAQ20sUf3T0|tQ>zUrg0?-pYt-}y>fhq-2JXl
z_)k%O$}Ks*#O-X-f9i$fPq`<@uecia5k-GCo4?^>%PH5tZOV$%6n?$%A9Bg@vvxL`
zN#SQ=|G8h3^Y5){Qz`sb^q=g-<@oC<)1FiKd@q3Qg^$+)-*e}nDHQ%ALBE8YewXHz
zT@*eI+ix!^#}68z+9>?@D1Ub;Ilknqn-3{`vAWoP3;btQCN!q-i_m}eR+Q6!tNvZm
zf0={h&mAhqw;Fw=Dn);9N3Hu5Z<rjPxM>qfe=trv_Ih&sizn|!QS=|7|KyF5<F_@x
znS;VF#_?xwEysV@`|M!~zZ&u04i@;|CzJkLGHd^x9E!c89KY_`v>O!tH^lnVD{_2?
z?}}}t@D)aK{ZsnM@n7GVOWKbLIDTCN<@m9k-+qOnze(8NL2`WLf>xs`ya(nl8_3UP
zfzLm%RDKHI3Fi;xce(#Q(Di5sg|AeB%g?<<?mtys);^ZP{{r^I1^l}$=sSv}KBn-Y
zXg`$Za{gD&UPRjO#@K#!i5y>SMj_JwYKr=!K9=KClW)|f_`iwv$F)W7zkYYOEt!9d
zsEGQzLoWZvF?DBA^e2e^A0pSkTSe=7DSWRO@c)_qS>PA<s!*K5SH}CnUB~6~_o@e1
zexUHp72bZ&Ho5%jWmk1l`1)ah{|){>RNnr<9gC3h|M{^n{un-&oPPQn|LH){Uk&=>
z0=#Xz9RF+kPTx`ZRkN`DJLLE^_p{0Qdk@g}0Dbplx&HPa9N&eaue=KM?*cx*oPL4a
zH`h>j*9*{gz$?4t_}Q&zbffU=Vg7dk-d<78fBW=nZ7BQ-jQ`y`<>TjvuNRT}>lWj;
zm7M;B64TC5^hcomQcueDzgDmFr2eFX|LtM&OOfXf26e2mjiMie_Dd-&m;ci{37aVV
zQS^W8s=WQ#JC0AF@ZwmmD^@=K>NjXY<`2ZS8jlrzzJv5Xzh?b+55_>eoPJpS*hv)s
zt+4+Tha6vR<?Fvu_!z|766E-|ddHCSXMYj@jg;dXo}N3MqW@qMw;%3-a{cRE?Ls>W
z|2xJXp1pGYxp{d!=|9}X_ItX^^>=88EtM(yO<?}9LI1g~%k^(z?s;b^d^pZO-X3!L
zM@lsbrSLa#{lsOH({Ix~UtJ2H3-=dzYsv9@w$&U;;cH<3d%u?V-<*WM%2W9HbzuF2
z$uCW=KZTAqd6mMS!}0I2z?Z7iot%HK1KtDlm2^4%_vVZt{qOro-)4ayUU7GQivM{c
zez3r&zw>JZh2O*MM>g<3R4)G_?=4(K;rGsi+y~&jwdMW)?UV_m{rMU2>|?JZ$9Kq>
z^*cr1i}^42HaY*t8@`f*!p~gJ?T7jOO6L6M&Pw5#6g~y!fA(>i-mhcE-~96gnZJu^
z!SUwz<CyU+f12HcqQ42_SM&RA%=k;GBT^`Q31NRt@3%4I+g4Xd|4m#=?mZ%3|5+ct
zn54f4`8U5`#!UZC)G0E4JPrA47wDhrmD|7M36aOB_Pa3u=PD<+|1GxHI7#6*qW`5F
zmiu4tJzYxjKLq1X+fh0FPA_jK_5TWt9}l$O{C*g-{O&zCd7t9{4(88X!{p<q(C=_T
z3$g!Vo{*pE{V-<w`}-!7_RGcQ&->7SF>?8ps+0PRqJIG8Z(lB#UxC4m{-W@igZcO~
zzhB18|CWO9KBDmTar}EN<ad8hmz)&72#$aA`&G>JlP2vX{l6n({k^YTe)qo%T}IKb
ziS*redH+8tP+~2GZ-Dx%#LDrf$G2ZZ;kStVtp)yGmsv3szNO$lm%RPkrZw$P;g2JI
zj|KfMQ7L5p;TFo@{C*R2|E+4`EKJdFkNRVNzlRxLb9GV?3ZIPj+irS4ff?WZ=8_W>
z{t&MJneW#(<7><aKSbeAGXDWS=KJl<_-(&!d_v*R3Hw=IzW-)T#!_<qWhC~$`F?ye
z{R;`x$^6Sw)L)nBeta{&T(if2Q~WQ){<E9zr#IsV%(>8t!siD6U;A8<+pqiYH2j9b
z-$nVE?>9Ho53M%kJcZAJ`6tD6Ke-v-x9*K33jZp~-)6cW+l<e%KHqK%zZ&IdzF*ml
z&-Hc1KPmis7=Njz`+d#$iboDLr10C2zWIJ*Gk)2x?_^W>nHWFWo6Gxe%Uj#hDEvCq
zKlA;>X8QU6`eh1*{{ZE0zMt5PAL{v#^xyX(ee?amX8fTRo@9#tQ6WFm{kUfQe-{3y
zJ%x9p{M29M_Pg(yx$`Of8ti|sLq7lXAM#0U3V%+>zlFU2D(#OOPvI-!_%+|pYHt78
z!lC5&UyJ?cG2M@9#>ag7!9j|C`bcg+yr%nM&G?>Ehj*p$n??L@x*yYwUtZ!iIev;c
z(SI`CZ)nChtkHvvKlfw%&G!qM@z<kQko&Jn2>WHaAJB|HIC<e_s{Ps6|K|Jo%=jYj
zP9*csl`;QezTeG^|NQ)UGX6V?@;BcPX2#Ed{1Z9<??U}I-_K>nhddv<j%t5%aXutb
zK7O7ZO5aZ5bL0Ar`F<=j{WEb5$@Q;th&SJlWyU|*T>n#w{%O(vhw|||wsYs26#gRW
zpK7`v$xQ$F>WAe1m#g4E*&u!~-;ZR*H&3WJf};Nf{U`JNMrQo`3r~JV;m>Xj(cA~~
z{UT=k_`OGerSSP?;QcOt$nCEcUinjw-_)-Lxqdt_j^7WVnC|B=^RGO<K(61-401n-
z8E?hE*Mk3)iK~ZD@;khi+dsGIev|)}zUQ%AepdXu|B~aU4fwkp#ee-NTz^#4{T^oi
zXAQnTo5J_r&D*b<?&mP$%hWqkn!=aZ#_5~y=P={{DOle{;iv3G`iJEC!!3tCex1TU
z!2F~6eh)MK=*R_O6h4Q@zrQJ$fBA@6cPM-<n7>?LKU^=%?N?TKfr}J=HqQU5>3$0{
z|J}MQ`I*9RhxK3fG2f42#?Pr~UqRvL4CZ+A`Fb;cX=21+3V#*-NAvl5Grmho&2tpK
zD9Yb_zTJ$UdjDo~3jbKdA7UX+lSbhAqd#mzr&9REn145)Z#UDwG3Sa(;j>}>@Ie2Y
z&$pZLKhLj7t{**R@%sZ<Lo%H&H{)AxOeX2)>(3i(KHqM}Uz!r$l;Zy>tY6rGzWIE+
z8NaoGhqRv`!mx1x-h95@jKBWU($y6G-*NsnpKmwgTURPX&cE%^|L~a3x0~_j<Gx!@
z(I0?#^Z9l&e#v_=jVOFBwtoXY=JVxde964A<o>yGh&P`vH{(0DxIwO;6)Mc>o6nb<
z@kO^6>Pqqd81_GTp#Ri+a{ITr??KXkT#orS^Z9Z!{kA`ckn5lQar~Okmz(i-j*R$)
z;=i--|4rw^&G_D~fg>sW=?pGEkLi5189)EvGB<^{WB%NoEcd@Zz8O!(ulbRGb*)_f
z%f5MQAw@q!v_Dn8eiQR-t%JhPK)mmKGPfuB_?P~kj6b%$`Ul_}n9pzS0{iJH#(e+|
zX-uAvh10=m9qov4v<e58lT#cS{BUh&IKK*i!vSX+n3j;B)`9c1(dsB?qB@A5YmQda
zMyhp&r=_K^6RU+{_yap8J5u76&{$_`Wb>+N>6yuCsj(?xj&bQJ$#Kb<VVSXs%^QTp
z^V6-(BdcNygMBqgOwLTo8V;wIM@7WL!COZLe$|W1aKyuL=;YXxdP$BHc8EE`_mfjm
znix-N|5s;y{gD5~sa-~spVl6poEY9EH4_do>wlrl*r9FxH}O|(hGgfi_4CuFL)TEo
z&sFo^Q(_aH>=ZhjnPy1+M6=-}bi8ADR$@2D7)J{BTYRdsI~+P!S#7|vuBMUB%-Fb*
zTC1VI+0p1!$Jj)*j()hAA$^~whW_c4mX?^}XqS?f72hi*HZvhDL-d)kvl8PnBH~iO
z&um&}P-KIK|I=yurYL8@R1!O09%efE9i}qX1c9?J{0F0|brGC~hlAUh;c)7meTS)B
zEaDqbsSd3a9xKk&Hw`!&A8@8V*fIB}WG7|7sOug(PSplhf~qm5>j@uMK1tJmHT$3B
zADfj4hO$|mL5&SpApBQjgkhWb`tH9PCC&bQ??In}aNulzZLKpI&tjbL4*PHJ3}{An
zLSni>xuey@xUq(R$Ms9g7|ArA#=_751xiSU@uA(sp#2@K#_9h|^&c&Pec1ee>OW^@
zT82YWnsY&-%7h8K9QX&QvtCJP^S=h`kE<;RFv=F!M93^wbFv@OO~W@@9q#K0evt(e
zrU6V{#GqZHFes|=5Mdfd^+}IS?FRQ-&^;0TKgl1)J#@OFM58A23o0C=vm8#{lrT%L
z{jS+;es>2bi@}~CnrV20D3~h*%g*G)WVqiW(4Ofv5@E)OCZ(ud%3*j^=1A=q5GGtu
zq2Ei9Qz_BMkufGY&e0{+nGUytbOc)+o2k^`S4_Z-9sy;3w@kFacAKsr>CGizc{vHf
zL5lu1I6OR@k7|&eu*cekEHQ8^i_Z?XFe=}FZw6YBf-{+c^f)1{Xw?a-$*mC6AsP<#
z18z3~Ly(f@bac?2E-4&I7|DS(G8!jJgIoSj`kR%RoDvZ?Dqc}q@}5ji3-7JDfcjt$
zQ{ytmr)Q>x_eoAnb!2GQ(GXUoB`Hj%zCI-!6YoqL#(s)c$FRF*(o)%s*C2|uhsI~B
zb<)@z6%`InC1_|`26&zsj?pM%)H8Lm**|{$dVQ83i%K`$Z*pf0k1rJ5pN0R@{c7=?
z`F&SUqwv`UIYQ*Og5j^c>>%;E3UP$@XC5C2y!aOL!rna3i|5UeW17vxzpV<?c<8HL
z6al_p_z&;&3vC7X>1KS<pCLa0_@?YR@DX^?Zt=Z&;h)#2_OBkyDT(_T_-)K^RUm(y
z{=K>Lr3(~(4~A7PJf9T|U-iJ>EWZ)Ze@~}Ed;|Q8{pG>%^ZWk5_J;-FoA&37iv6v@
z@Hwybji&HrQc%*UKf&<5@1JM+`2hMqUgq>YZl0eEh97po(UHOzYKiiH!1w0`!zcd!
z>h}~r;XbGD#r<Ky@FhkM-b>+kVSdJ2P0s(^hbO+J@J}#5s??I>Z`_^D)@K6b*SRZi
zzw5Lde>GfT`@;h8Pg#EV5#(4-a77H({y*oxeucu98He<1%jp-HR+jB=2%x_U#*Yo?
z+s?@GeXb2<`P~5gIOsnY;D!AO#{b5Q`)qwY0RN`wf3!cr@Mk8!+?T>1!|^Nfv%&Ct
zcFk`<;Z?9d>?6jn$W)l^N9p{jA5r+mAb$_EU)b+p_?0LB$e{3xFh3{cC-A}!a_$sm
zR7|<`dGqC)mu<4Y4P8*<cdi4huD}WY*>CJKJEX?=yt#7C^_uV(L4LM>fgf0U{28GC
zs(JqU8Thv!&8^IA%;^N9KdR*(H-&E)1-kbf{-5NJ7jodgDoVk#6MN<j37OT)#Q&;y
zK>w7G0KB>VmA5QcDf&m#p#KQGnf{MyZ$?t|2ebv*=Ln?l>k;09pO1f13Fg0<=J~J8
zpCJF7fp|0j^JcY+qWI5-`$s*1pE=22er9~0_<JQNe9;ELX)bHLr)kcD6u$RO;QwFX
z2REzqA%*V_>tnWpA&UK&KmTU=z5Cj{mnr{)Ei1bSyt)1V^jo7)^n26;N<~7HrFrG_
zUy3OiLeVex0NUR%cL3f@e{q`@SAhN-=J68`^xfa*vcx|-I&dQ3=NvWZ|I|ugdw;OT
zFS@z@ABz4pkiYw1;J=&mrk9dm(iKHf4+YXU+kwtGGp7Q+%sdnSGm8Ly0&kXI(~cb%
z0sbws{FVY<Jse2ijKBJA%6|Yq!;BAu{&N#}zH5T(1pDvtR=d`M{e0VF;=e&BC@ku;
z7Up(~C;UBiML5t8=)YEgw@L7#9Wz%~W&UqKe%;2-w`w2!UdJayffL^YN35Jf;a3U&
z5%hq4+<zo#-vTGT3+*{Ki^3m{@ux5D85211eY#BHcPYHx#J_Dx5=p<)<{E5&SU~%C
z;{GNu!WvFNKVHxk->+Wzo2`!r;49_u=U?12A#mdRVscsy3O^k5hky8U#61xLC%%iv
z{4kEfZ=COs7jcNdiSKPocdn%HpD_ESefYPyCqUrDcg&6)Y=1*Q`_G%?r{XzxffL^~
z_BK!`d<OcTLjG!b9!CnC_+I+z$&C~~8~iU@aW;NXet1q-;KcWblP*`G@M~fG8{6->
z!S{&>ocO->Ml&ykpWs3`(id@<z=`kJN%QAXc(_#>Kb#M7&QIXPceM=_*!i3Q`R~E_
zNwi;_(-S!H-LG>_cD^M5A8FEGan4HM#CM1K>+4bYJtp~yb4CIuz8kh|#r)p@`YzM>
zwfEt1pumam=U;w*mBMc`>92b)-G8%7PiN<20_YDNV(S0+B&|OLUGe>Ap|LY4{5g~S
zRorJRaN_%K*N%P^{(%WE&PfQI_+ByUhe{NF4a}eX!`mVD848^E&i`%ZGYWs&)PEw6
zBXHuo(D579Dg1XP`eL7mz=`j7Cf`n^@R=t2C-!*=ocJD*{8bYQ-_6O}EqYO@L+j7w
zssq^m&Vc^EgY6f1aZj$GE4~XX%X5Un=g0f+1>XK4ZNJJ_@50vC1L&(Jytrpo&=udQ
zPYaBp@P#J(w_n_|DsbX^=s$y5{xE>PQq&(W?wJ%g@jb8fBGP_mWBx+4U%8q<j-O4-
zo42FrH!-ze+*2v&itoYiHf>4aOPKf<_e2Vu{_Q;&PvPsD<fkl4BKiMx;&0zj_#>$Q
zqW!_<?=fe;??d6=K>ZhZ58l(H^Npi>Q0ZFa_}PQ=zrc$;gc<+WZ_nSL=oiKLN8sIE
zVetn(W_-_&cC-C40s6CV2uBLMGJ?iexjv2@f5%Py2b=$Pgd8bB(Z31t3;XEwo6_UI
z<)^tE6n>_;|IhL~mbv{0!<Vr8odeqM!TC$jch95epMklLMpF1sP4wM(VA@Q-^xpbx
ze_8<jstf$vug<6GzZX)U?Ei75@#F1B`~Q0ubRqHKANkYwUP{vX!_5Di`@h{z@voZn
zFWCHb^@|bgeujYd*K_#O7yHZveT^CTPwMcw-5`Dn$UpV6L;j#th@wv8&k^yLIeyE(
zeAQ)$-(I(y;<wxhfX~jUq)+n4o9RCp-RDn={_ecMT)Dvb&-V*&!4cPqJCHwmt(S@Z
z$~xfx5_mKJA#J|gO7Xu2@Gb&x=KuMU*6#uT0r`iGfcFr1E)5}lMXBY<bBJ2M>0AZs
zl=rn($lpwVcfEn7fc|WA{Cx!Se@ev=#oIwH|Bq4&&jEZu{I0U~lV%}G65g{R=$rX3
zzr5rlD*qM+c-Ozc&whPX5ek2RnX8r|iU&m?=$rd*%0F|$ss0-Q{=0ibE@hmFf3y6Q
zpKH#f^zTO)Kdv?*miQX|TDPI__S4Y*_94n5i~Q~MG7-Hg{0eygi>+gb;s!CWPq6k6
zUH8W(s{N~S!uabFq8u>MH_LBKu?nA3`0oL)bPdFt`@eWhI?Eph<X`W?`)6zf-c0{l
z@~#Mqem2ne5O{O{HO+b+N6GJU1mL@eD5p*BH}gNR#0)3J|LortMa|3=fH%|s*jZx<
zMSpd7px--?z8U}Q=qKM&_(EyGX&-C+^i?r0Q2394f7`#nkC~IF1%;p05A^?E;Frz#
zxE|mG@`urE{UFAg{}VCZ7z#f#R}Q$FBvAh5{wu%qU>U0adesO1`vuZB>)*qPqqbA}
zw-e}l1_a{G{g+$0d5PlxXP~eC63D+9KcV}eB9#0?q5o||0_mIiA312uDT@CAxj|CH
z1Mz10jXD!@fRbO^8_<6Q-b}xPcW7gZ{sN%yiVLJ~ZvWig9loRF_Xg;XCq6`RHR2o#
z`zOA|b2bcq&hqC0`R|jkKiZaHJ%74KHQNaIfcbM~3E;nYE@cDrLnQXM#*41URQuWc
zFKt;NN<QF2hTmT$_5k4DH2Y8N{g*BRFWSwYswl<AZaxA02h88SszCpZ32eXb7ybly
z;RpAq^*8qZNDqNG_kYWqU5`@yYwwR7>!W7wH^G1S+mUZj{m<SXX(RAv{T<e}RRX2I
z+nN7H;LY+|aH=cQzkvQ{?~n9I@Zvd#_Y5u%_~vH+i@kr)Gd{5WX8yPK$Swx_2khTr
z@Bed62vO#l{AV*huI~@4sP?n>-+3ki{VzBonEX4<-ns(#5Agrl`|E6z!2e$^$6uQC
z^HB=V-e2beyxoL1^MCC|*=7{~?EP`J$$@wwccDMtI(@P!`t1F2E&{J8t@!>o+<d2R
zHx6Sv)J*?r+z_@U>J`N{+E(NSIJRTnIX*QmykBf`W~Yp_tn_FVPEd%KyTL~MjE?X=
zIBG|qXbb;t{XgyRV+SGlp$J83O)?1E6~%VbQE{<xNe;H}FiwAknG-h6wo8e1IvI!b
z6Gj=fCXNDhhGEBKJZ!hEW7sok!~LQGCm#&k4fT!h^Z^Ncgk+;)dxy4TG5B6Z8z~8K
zh6PTuq{JKA1U)t^ahOj`+L4Ji<RhGMu}*kf+#r3^vGzl>$~GvcWw3)aym66@nK;`9
z7lt?x;yXCPb`b|itu}iIY<%UfE;O9_fEJ8_*AX(w<H-%<KLa+C26;$o96Kh$w6`bx
z30<3+md<wIX0%IEwF3@<^kmkYc0NwvAO*Zwu&*;V(V>oORKHnx2j34M-sE_doeB!?
zIeY|cIqssJ-bqO2$BsG}PwV`@o+Fr34RT5Hb>k>_RUdS%)9?#Zc6fJS9J~lp-<R6K
z*DAwv#=>ZZt<r7N;>WY?vRoSMphmRnNK1$#q~kxDzpC{YyZ>u`eN%p-*)yz%?;kV2
z2g3g;!T<I8ha=efPr&n={K7Hf{W$KjiNPNtDOujWFk7FQubTMpjL#SM51ZekAbF%;
zQC#EIPKy7d$9OeyKdZOy|Hl8$T<L6mFhD+G=$DCgN%MOg{Fs#dqw9d$EdL%LpU{qc
zrW5yTc^m(4{O@bJu?xljkR;BO$P0?~bqT9v(L2RcZiVE?5g?z<uYmt@9DE2oA1(6t
z<U=Gsu1uT3&hH02{|WA^66;!S(|aH!kMt|bv&nNhBqSu@`MpEA{KffXwbQ?pf1^VD
z`S_jx?YnG$>dR}p!s#3Mgr1DozJDIbpKrtW3#*;^^WAUo-?d7_e{7Zgf1KlTu=C0D
z-S~X*e$D~EU_E@kkk8GW{&@4hICs8Z52cmK#rk)ijq@*_pAYOf`<VOJjQ>B{-UK{~
z;(7cYAV5ICgfra3AtE3IMDAk*<OU;$ARtT#fdoPbNziZ)a*Bun6#-Gl>noySL{Jcg
z^#DOpqZ}fjE|;L9L`5zY->&JZO}4ftv*Gvt`*}LGGn@HzZFTiAJ>Aptzw-YM&+pPY
zCkM>ye=FGE*E^VRp#O9Gd-3<&DAOW2Z}m5|g?*xPdrH2MHr4ru-_ZW_{w{xeX@B`&
z`TB-@ieP8%-airSV>A1#T`vCbfWrUz^$aI&S%X5${>{Dw`{XhE40o}Qd`cLE2s)U^
z_=kS4Fdz6@pJ4l^x$wg%1wjscVQlA|;t>%mjPAjFbDkKV5cZ+>cbOfDOm`YVY6lMF
zQ>eh9_H!enBG^Cbj$r;otlunrKeHeA$>G=MljNu6%s$o&3tE7E;+TDwxY#FnH8-b=
z^3P6{pOEnz@N>{VseDbu@=N=Z*)^qo%ChVEVH`VAy!R@2|JMqO)erM=T${IFUVIz*
zt5FU-_Zsw1qO)5_`yZGn%U4xVKUm=Z4@kYKeevRVV)_r9{?ToYeVG4m#Bm*7KX~!~
zb3%S4XeN#91pZ?&|2aBV=&mTg{CcLYW;6eJ@w;yagZ?)2AKS%$(m0SE?_m6$$?400
z?`Qn2F8pbX#}Ava6AdrfeW3i>n7`zouR#5FP>eC*{t4zSGM{f?*YiXE{neij#)AE0
znf)IS<<}5=-oEhbIlmh_arUncnP4A_*=LuF|9J6FF#8W*&}Jj>qgeUMb+P|UrXN4N
z!1y1Y{WJmiv5bG#g+GS_*|As_6%=M|eR)6F-_Pt%+bYw%N4uWPUw(ZM3=XJ$LwQ5L
z&QC-AK<#7NWLZBPL;KUbRK2R?TOmMpg7NJpE#dih2>(yy)BdFXnDF>K{qmQG-VOH2
zWA<4=?F-IpCHwH}nf97iD)`L5gDOve@|D*uxc#~)>K_R7ep3_sCzf-zkUx?59m;7L
zH^cmpXrqVZ+o{t2ks~Fa-hXLh`|HUMYTY$$Lf)pvj{n~otp8T1A0S}=-^P93Ea#;A
zAO3x*g9G}h?B5XD7e)QRuMbIy{0G1I<j%7&|2U-o=Kl)+f%Ts~`OH2gZ~D0o=pV)G
zqxF*iNbisF_X*EGBT;{nz0S`a0r{JQ{ZAj3ul_hbK=aP*YLY)M#2~>Z`1fVnpLFVn
zDCVE7T>Ag~`e3@aU%(SvQ5L^#aZg8oY+nvz|G^M^ALK9VKj7UJ#|Dngz$f`3@~=DL
z{p%~@`UU&vK-Awt|J3pR(TmT&-!UiaLCD`6RzJ|T#=QOF*E4ms-t0u3YX9zs@};r*
zzib=nKfM3r#gD^!p*PBYKM$x1_V=OvjVZEz_yo%Dp-}rTWcu;LSoBYlN9sKCD)2S5
zk01TB9_ml~SDRQrFXBLUY}Jz|(oojFw`YIg=c4{vhSY!N`(o{u(4XF~sCSe8@5OJ;
z(i=5=&oZc=qgem*)g=5!yuYA*ILou^`62)QKpQ;?{6}ZyYpdW}V1M*a8b9IJbN)bf
zV$FluPk{fVG5=|Y_UHcN#b3wxz0V$>2KLd|{oP&2r}wj&IDX>Aw@L;l&~(S346sic
zv(F)HU$}kv^}#gpenDAm0;kV+yJMVVA67q~c4@zs1+H}Y&_4M5(<4_-1^sQNe;&3k
zTz`#SA57D<`b_@@qndOD{j-_=7hLpT!GY{JJ^$9o`KH55%f4~yA69?HVEe`WM?7{f
zG*n>UzW2d}u3#UN+2><1eh7izzw_(mf93y;L;H|CIx5HMANsL=@K2KULy{QZ^FjU4
zexh@+-A>jIUVJ|$Me^`$XMdb%8sAPr{&@6%dOx$-B|N?l_0K^$+^X>;)NjO(N|E~a
zeoJPQy<5&p^&8>w`R`lx&Qmw5?7s`@w{Jr0AAUWWBOrzZKFJRo7xeA~{*%k<pV=<;
zj~73(bZ`RWV)w6y`X`6gKe6bay#84ge0k^*>z@yOaL^I35AUCscvM~*QhwR>Jb_NE
z{GO_#Ipx>S%5O#FYpnnL3<t7f9R3WP{pyA-jY0n$R=&O#`D-ZhmtP+M;fE3I#OM{<
z9)kSUS^e<1Oa6NCH#2_KCM!2V{@N^mUqwF8UoXCee3G|~p0E(g7v0~j#s23U9RKI{
zr-hGB3OKvJSk~dbG)I3nK0NcdRK$K-mRlXi_q_N9^Pj}3_YDSq6dOPM5bZ<zE9(tp
zI$nH@@tdB^0sDm9zm&!IbI|_9dc*MeWOw=NHLYRU{;+;9<o<ejPx&8we9}vQgTN?{
z{WiLpV;?sDgVX5)`v+40&5LiLebP{#daC5%g7tGQ*8lY$l?u@QY-VhD_Tl#5QY*oE
z{>bki-@ti22JZi0b_$b^{^`ede(lM_u?6)vv44I#0Xt&&es~+(7ccwh%>MD+=N@(X
z56nMD;r$n{-@Nz+;}3|~dQz3Y69wNA^_zk9C+#!u#kUy$;+Z?!tNb&|<^Iu&&%b|X
z_U*l(ezw^2@pGbn_9^OTemzrHGuerx8MoC0`}6zXZ(ZtVFTRiQ2brUC!Tx!ye$I2L
zpS}1N<M-?Hg;W1f{Y>M}QF-zo>HWPnj-Pn(byh#m?VB|g?Bi$kb8naaZ4T3qA2wtB
zDn`;);O8;E>B8T{f$aG5<tok@lEwe`(qqCu@3ydgZ->v9qZ330b-0*jr^^1JiQ_+Y
zcd`Ly#_z$7t3>y|3-ULI)t^_Oe+Yry|3=HRu78h327gs4=k0HSpN->_l)qUn{kQjn
zFAq7Y$j-cd?%%~wzOtErmJ(($gnfAbjbG1jS_(TcD>iKo<Zl!k|0&&8HW2*&$crzQ
zeFTM)#ixG(_A!}#>L8!@f4un5^$o&nE4w^#4eaA*_R+qU|HtjauMeha+PT`nXZ{;9
zMhE-EvHpMbAhZv@|69lMJF|4~^&v;BfBjJU#eGiw%=)*n*#25<e9spG3_d~6HR)`f
ziX(Rd-_Q7KME}GR{=@qxmFPkj*`J+Xbl)VWe`_%NRFcIuq<net`S&efy!U0u-&~fz
z@Hz*d!vFd8Ox=+6tHYZ35`=wP^7+fzP=3D^_0M!!V(e(yKasi4srkn-_>roKt7TTh
z{^x=FU#cG#Vf#z{Hd7CePh67eukL?CrN3{X)YKX&xpw{V__6sv#ragO@%F)Bf4f)k
z_;WMyen&&t$M+tNKim`^pY*0=zHGJ==C`ci_P-tL2W_<E`orWmMli`ouZ@BII|BCq
zI9ZNA92fSnAb-n9{q>u}(?1FMCd$vwzx`D~ej46?Ejy0?kb?fxI6OYJ|0Mfu{1En^
zjJC0VwGs8NkI%no|92bb2YUG@aY??N_~^$f{_u&CMEkRw&BD{4=kM!VHVqN{ko;}q
zGXJos`p2ypc@^}}VfGm#o*(%{{?dC-^yb&6|NC>-c2eoz73*i(Kil6TJU-c-<krYG
zf2r(0km~;)vLdzd{>#fg<o7zd-?g=GybXLBf7^`y^Yn4~543-^-ZDJ>dHoi7Ydgr_
z=sX;sr26e~7=Jh->ImGQ+76RXdI#)Nr#RGa0sYDU*Hizhxh%glztqb<v1k{v(~Kbt
zRs&y)mG#>Wv`-AwZ$f_!_XqUj{izq9^rmv~@z$|A@Uz+d(XAp|Ey3r{2fg@YAL9Sh
z{Wh2%6&;28ll`Ma|HlXRzl!$h5nle1{%9s`PV$d41b>Cj_}gj-O^=H4XWait$LHf-
z`jg(okN&OgF5vU}zXSFkc>l+X&%bZk=F>=MzYJ#oTroax2>p5gkY7)FlH~fYjbHwu
zO8>{PedqIgz4)wqsC~UEDHZykHhX@z!DW807rz|+5R@lgyZK?~{)qMeeaPqib1y#G
zhvdv>|M#Y_Pe}jj3*kSOus@$a?8Ud4{!800h50!vbk;w79_`Qlr!u>qAM)>`=B!@`
z{u9OSUwWZ`a{uAibAA>(@o={l&iJ#B*}uQb{g)S?&!75WP^rD(Ke>#b;KG-8=S;~0
zhdKC}q*>yfO~U@s7TUiSjvxAHd|<_R=L!@1&s7VsR38_xlhvNxu@>}?W%n;LT=e(i
zYwQN|>zx~%`N?Ulf2-sDqsE?JXl0m!>~JePKD~JUUhvOYR)5|n+IJt+KREx;#`%ZU
z*!BEyDLZlXvk$L2_ovK0D_rd3#lOt>QLX=8;oN^Q|Ifkl#r>aO&v4omb|QPgyeYu<
zGyV=2KEIyfG#@*0a^W_3KV``H-aeQ5A%<Pg5Bc{m<Sv~J`sXnHhq%-a{CdvUSp_)x
zWwC#y7(cPt^R@Muzr23-;`_SD6thvbZa60w%CCX`X=Td$qswCLsCG=W@3=pwiStkX
z<_fdpv!#PiBz0Kmj6cUR`@~ZDV)N7f4Zb||h#D6B=8Yd~`~dk&^8=~>b4;}F5cv28
ze?B4qtH58zkF6hnM8$6+#(xZ9AKE|M-$C}TJo#*V^^bP5;~{@(ektjng8hGkjsJV{
znf?>Y-jJ!%e<s~uu<<2NKJ(9Kp3eEtX&;$?9ueis687QsgBQPgfvkX!yZXO(8u)q4
zf8t%r7r&n2v{mfHJ5#^d2lc0q)t@_E>Q66zfmiN2DfR60>n^ALV*R(JXn)?mL^As_
zbu}BmC;9Z=oN7>hqp<yIhx04C)A%Ir4^Q)BYj7Ytrg<CdF`a)l{toY_i;lzkK}Y^s
zk-t93UpBw7CgbtLb*zKCJ^JZLu#d_5Z-=S>fctCG`Zc)iC@f^L@|AS@lr#RE&H6tV
zvHs`d|M=QC_as>RzbQ$F{Z&`k%s<b%)IYk1{(hG7{mov7{YzI^j30p=J&Tp!TI_m$
z$iMHBal;8HUnVQR_}C?+{POELe?2>qm3#Y3PXC1E?;)4+<;8Er?Dxd34T+$?&GfH`
z_Tlvpzn-b9>3D)<?6)7l{Y$io{{JqH52Rlc|M;D_hv_0KA|1!~3V%A4{~jw$Mmt+4
zcbb#G?Echn86WfFlinno-TNXue~(UM`Y#mv8$y3RK2}uznS%#z1HQ%hhG^d{!8e;o
z``9@C=EdjZ59^b%oaf`&$fx!(Pt*@S!M7tOIi~ctmhG<>-*En0{C1ShSD%>+`bXjO
z!GAG-58?f<e~#qa?Ze~8A-5gMNsHRw4SXB*{{i`<pnm>d^skO1ANvnp`s>K0eqP-0
z(?0<}2l+Y3pDE042tKc$z4&R!H&Je>IPVGI)A->i9N$jeEDIv-UvJ(Ko_$#NMBCS{
zV>jsk@bRCMFg_skr~SQc9KZ6?pH=^w{>9KfPW!^j*AnTLA?rK5_+0;l+0oZj`agku
zgZ1CM_}u>&Uv9HO*gs@`#q-GL^}iRNfB*cvzk5Rc8OQ8%0oyNLfAZ_mO#*`J|M<)A
z>{scpWBts>$GrG_{Hn(7tENHz=CJnt9F|}H{Mw68<%)jL?2Ae5Ab<J&UGZC_|MUAV
zFFyC5SA7ru4Ep<6{nq#aQFfvH;{MPkK413YTkHn^<~ftg13#DbKjY~B3;mPUH~Bmk
z5c(MZoymJ20Q>kEztc!*9}W9&eq5gti>JxHTxPKo6&HQ()DL`o><ucvZ2m?ac0E7z
zmkB<TRPUzQ;GY`nKWM|m|NS89peeFmqxWNU^3cCC`+kf6;3v-g3*$FO|L5h4UmvWk
zroGEfq*dx(!|@;1zxvgsf5l$Ez-XG5$@Je|dg0fQzj18-TSPngkKF&g_<{RBOlR{a
zH~$0e3(XHq!STZwEMI*7sve>-J3;!R{O$Jv@P6zNeofS0J0`~`ZCt<U#kW{;tB1UQ
zAJ`|4)j#hE|1^aE@cRodzJ>+-GV1^Asw=QRM|3XM4{><^)k*k|CHTC350_6r<AZ9i
zzXblD$HqSm@%#&dIZ!@7vb)N1pgU*X|M2hE-TU8q@PCc@&t734ALx(u53LX4*N3Ep
zcA@ia&3<P=fASydAFhG>YrptsHooM=_YoN7wPDxlLiytJ1N)%=@b<-vAMk(VZ)w~9
zW8icBTM<8Xvh$xhzJJ||&&LmnFDcgr?Bi$c%X(oSL)eFpKi5OO+ysqpM53Rz`>4+e
z@XtKtFG2t83;qdwHa_6R=lWNAs?R5&zrpIycWC^C<*yfiH~V1+OMa3C_Se|`wMq78
z;}2f^WyOLMh@aQ5CDac#^Zy5s&+AVw{%Xem<)Cq=)BZC4au<I6VD&<dCbAAn!>iRC
z|Bqw#iR>*E;r>5?>Bkdzk$wN|k(Qr<{;{n7dC5ip1{}zaY5a;#fBHm)vA~aG{P$e=
z4e3HR85i6GTNl4L68tlljUTSQCh9lvf4{6Z?OIaa<i^GG*li8`*G(UFX$$-u=KtlO
ze<A|yPif-wcQ5|;^0L6+*~72S0{>5A`MV$O!}HgRzlY_oKWCw{e!*n+|JlX<jRKmf
zKg6=}!*xHI10jE-SpR1?)(-}||KjD7r;>)*n}pJLxoat?-?Wx;e#lm=--e6&O*<Z1
zzunA%?3jN){gc~bpnc3{<@XTwZ+ZL3uV;98Wm8b7cmKZ8U>}RwzgT<ukG%fz;`c^6
zjc=?Tet0_AhsFm^;P}IMu#X7TuABJ&4P3S%zf}B<#d9RL?{3f;_)%#8?~orO{NE7v
zr+rOye17W1=l6HD&M)fblrQH04Y7O~cz<Ez`<J}<q&Lah-+lS5V;`pftD=6eg#LW|
z&5KX^lg!O)R==SAH=%t_qW_rRCpi|?@%?*Ve3RwLzS`}}fPMJ-izeyPfBf@s{0-l~
z5iXz7`JvP5HK2bi+Giq;FHIBUV?JRYdm)aGb)Mj8=EWzwH^$%5{o7>7-)IB*KD19B
z*yluO`Ss$n>PP!w>a6BafAaY`|Dydhc7N@~=i?inmn+s5$}b<^C@Z_=A?t&@_~bWe
z9<A}s4M#)%^6`yo$hS~`9q-@0`2711w+;FZ>Ng*2zhbHVV*P)9J?Tl3>)*n6<4KkN
znOOhu{=XN$A|-@!|EzT*Ab<J#i{^NL%G*aTKJQ;NzUSu2kiQ12|9iNMFM06;8)cyW
zm1^3$GycH%2eEzR?F+x2nIq)=Z^uj4$pt=t|64=!AI_(8$+>i#M;}nWc<y3<u)mMh
z&oS73ar=Ami?jC8UncD&@O9>&EnN6bnST6GY*`!>wjB6Ihy2yp_*hSu_ScKg?~jH&
zbk8QxpWh$d=c0eJAnigAvYCTz-j#JH@MGEf=u>q6#p*ZS|Klm-vG><$ucj4)@@um3
zlLsFXWB;Ol*7Otyp|_Xy{{{$6I5qz`5AA;z<*OxjJN17Y*8h>XKJ-CRKUj+TzePSu
z`H9*W`m*cBd(VOY^YsxeUHqS4PaKj4^Pk^R*Y9=uZ_Ix(UHr$3uVX?a?})t$^?x*t
z&(QPD@-<~a;p1=o`3mVxlDH&S>>B3GKj-|*_#oeUMfOkpHDvyJ@eN7{W$)*oJ_z=w
z=XW&zW8(O>VN0%w>(jmXk&OT9dj}o`|L4!A>QhB^pXB>-{kRujXZ(#5haCd{C;O28
zecQ@^<m1m?d;|F;<650}o^P7y|HZL?wL|njeNeteOZ(IMh@$fEe_SgI{zLXBzTR8<
z4}U*fxP1H>+7e@sbAL^IvQH+iPqFWm1<l0%VYvKum_T&y3w=TVG_=oY>>oPQW=@9o
z554%@f4V+!`*M~4^uzjr_Yb}JQDhjD%VtMA&qplw{BAh%4XmGO{kRujXZ)G34s_=4
zasNz2zJ+}1AA0fm_Y1nk)PnMBGW|Qj{T<jJ`E(!2uV?CNT>q3#RqLqASGG(4(2LLe
zpEs|}%7Fak{pS%b{X;K4ufHGKvg#qI|9Sh8=F&g(;s^S7=tz&JbZH0vpNIWJAHH9D
z5%Ou@RX?u3)>!+*?H^cRiC=Ur{nl=$f6MxBf4Yp%c=A~R82?(82*_X3pX!I=*-`=S
zpPqd7`<}d|?z`Zh{Q1Z;(0@?)rzfB3pR{yiW0n4CqW$s-KEHqQ;$LI^t7;b?sqNH1
ztbf%kL9kDWh~<l(|H}6Ri}Nml>P`B(PlHcZgMHFi|0Esj2VQ>p^~52$mD#_|>&;Jr
z|M=MY{fAxpKOG3<BCY1ZUzGQqs}A<DnSCsm=i^4T;OqI(VP?AWN28lU{${iBw-<ZL
zD|!3gkptOr4))L2qinN3;zKCE7Peo#v48uT@J~bJFMs~x#s8Su|5Vw^mBIdb%>K{2
z*x!ra7=I5*>wNlapg-L|ev0kyI;?;A^VyQj9wCSH4=C?Cy3l#QjfUg%I=(;l9-N=x
z-!1!ZI*!lN<sn==v4?$;_rtb3Ab)jMzh#sE{Dl3(F!@=?PeNIJ*`D=a9~xh6gZ;O5
z*uM%qx2`MG@zS5{PCw(>ibJ9Q7IObS#HIh~#pmmjTCPu>5B?Ly?9*Gc?@nOzH@x^<
z|7LT>IrIO?f2jT+f_y%H>&1^lwMZUpa0d2wj?TvN^*Gx9E75<pp#Eh2=WzMGF`bMV
z#bA9<w2k}@$e%0fPoJXvdhyABNX}cn;;DlE(--+R`lo-X9A7oNhvz?KQEw7oJ=)$G
zAF$Z_VU}V2&)XL-{ki{qlskQ>%74}%-(dY)FFyC57h<ADs{H?dz&|bK|FHh87oUIs
z)vDhXL;L7w^}mV!$=gSMJ=vLL9r}Rstv55`q5aBb<5!zp`k!9>PK^IyxeMuF{~Xr7
z?{VpWdhxmc+`pjAKCln>pKaK_7$amx`|<s&Ui`}ygMYx{OZx^v{`#2x-xcj61YSRk
zVeOy%ul&E_k#0~p(E0q|j{h+J9^`ZX;r0!JiG!{919MQGe`>+&P=0f;elW59dRaUl
zF@%5W1EhU)oS)N~1KBb0>Gb-!_bqemgM6w#{}CHCSb}e_M*D}!Us6Vrvrx_*+{9V`
zo{M}7-_N`pp6`JE=du35{e!&pr*S>f|58dxr+v}c`)6`p`X^oJLKiuM<!{M<PdWX=
zG&X*I2KjvaxvLA8PM`goK1um{g{5P_|6^JIDhKOlUO({bgK6T3{1@fvhOu9R|Iq!5
ziO;XU$MVa^_lyuAJAnn5=27}jPCf^G>Yw;9e@|VL*ZDp}|HSuKc=C05T@Fqp{NwIl
zo%dr9-%6M36L)<qGfLklAGG;#eWE9y<!?;$9nU-M3#&g5QT@Q$7cV~lzVx+U8$tf^
z@vFDMEI)>hZ}98Ie+381Up)K$!H)9%a;*M|#`|A>|7Zl$LXX(^|CMp6$G|=&D__@K
z%9j^E@4w(A-}?98Tfsgi^M9YHADoaW`z0o>kKoq_)5QC+@d0fV%8#?m;ozTss(-Nl
ztkOZ$pJ4y)=$|-#cn1fv;|S(IeYW?h3igR*{&UL3f4uno`-z(m{{i+fxP7GBA>(8G
zdZxZc^Y-X`>YFCK-+qP8+IQW>f4um7e$D(}ntkBhU$gqNnXo?uUVnBY#a!e{d0F7w
zp||gL*1!80KMwDYbX>pV$M<7*4_vAK(3?HruQi~bbAOk|+Q)X{J%pC<A8W152pj7k
zFa9Ey?2uLwj(rR^f9wzRAB~OAc=2Oc{g64Y%y!6MgXOO_S1Q8$CtiI1{nejd><j*x
z&HVFo7ysnfGjnKM|Kj7D3{dIc!o@$m`0L9Cr+EKUlb!b;#<B97g#Ke_*gwJfw;Py!
zgK3)9gPnL}`iHZ?J~_-jM}&QRiu#{l&v05SJ5fF2n`9_oTB}6o8|uFmUnC038R4HF
z;rIhS|6=aVXj%w=_?9g#L4Q8}Y@vP3h$M$$*OuuNmEUM$iFY7>Ie)av_=6YU#9uTV
z<-86*&Jq0RD6~%(y#GBT>~9GB@bNJ(KA)en_Mh}qV1GV8=K}gaFTY-Vp1(hRI2z{v
zhuEhAmS5h!d+{5hT}b@<)wXh=zrpIy3oiGMUVIwYApV!z4msnuA^X2Hkrg?gf9S=3
zk=6hGzis8rUyWt`pYAU0OHWeFMVcjozvvj>+?k*3XZ@cM$mja=-yclVv~`Ss`~FQe
zq5oj8`4v-L_yahQ9rOJMvL|-^3-Z@w?MoVte_HtbTE9t_-_nf758JU5ug3e}`Etnk
zf09f2_2Q=?pXBbNHoSi?TF3Ic8q4n`aerZn^2^8H!sW|aODyp!f6wQ@k43(L{9>Zo
z_bKWJFFybN;FkxT_haO;`ai{G{D)u9%&j$HCo;atS_b*6Gym7IeDVI37k>!j*SqVK
zGyjC|f6>OJ{Ce?q=KsyAY;o3~X0!5D3+p$2|I4pu>S`8ipI6_i!Tz2rbY}l1F8!Z4
z4rIst`*tI%IP)7Vrhf(5Z3yX~^XnO2v$_VKnH1Ug669|zo8RuE=L@WV=&Kuiedtke
z1=_IOZv&n3%k1;TEct)F39_W<xc`f$hZ2L%u<zH`KKwBBAAHO{U9#m>Jb%6TkFyP!
z=0#LI=lDNszgD~S-x8Vs1?eshUSlWLPpv!@_-V}k?a+UC`;N<|872R)ab*5y_~g$%
z<?J6}u>M;P=zmu9-~N;x2|wB&tBqhtfg@99Tj0#ZF4dzP|6%sogZ8oSm3$k=SE=6=
z0I&}R9+T|!d?UEO2$}y=-(~(7`}vG64q5q~J?_Xo;6F5eMg7~d|H(^zM<zHQOnkoP
z$!Gsixr(qqw7=~6)Xw9m+Ih*>v46`h$A8KfQTZR8PmO!e%mw>fY<|m#Q8J@=`|HK`
zF@Cd|!%IW?jbr|EO7tHLh5vZ*E#%YlqoISBb%Fdfk>3s5$Ht<5vjm^_pS}1x)BmL<
z&3#~hKELR8tUnDl{^rFu82|gPM#KAoL&o2_A>Tqi&0q53^Y6P{iQNqT$>#^Ib7|lC
z^-SH6`>&oI%dP_d;rB<&UD|gqzR41-y)>&9*q^WOc+sVO_u}*KXKeWC6_tG+#`?j+
z^_zYi|L4~;b+sOBf>Tb@f8#)Zoz35<*b&RuKeB$K{rg68AUkf%>YtwLmsSG%n{52#
z7Uc8()hNc}hdHc+K70PaVW7Xs>gOTUzOd)xuX(gzoWFhhy_Z$|N!b4K^5w-h*$*1v
zuUQWAm;29p^nVNW_v890em%o!J(>M;*8MgK?4Ql-Z@Ab$o&(u&Z+6^b$<Mu^e&F|~
zv)amk<nwdzu@<A`AEH^cC3tG^t?Q0K{h5aKXD-&Cy~O-0pQt~L{n9`6+hjXaRQ`ck
zDdm7~G5%dpzx@<iKYQ`{_kCh(6@&bZV)v(;UFtV}eZFPnr#9@wp7%Gt0Qnoo^7mbr
z`pt_kR}17P@@n6{=fMA?SpAUeQonieseU3ku3KrlbY$dh^n8l?C(kq!w!bLrAkbzB
z{&3zu$k$YUiop}a|E2S;VuD|d^XEP(`i5nT2lg-U|0^#nD!<B|r-!NdrY7{ip?LoN
z%U9RO*SB0grQ)YpqVL<YWPqQ8<=#twvJ1&tjmJMD{6ED0XCETlORzO7$@u}aUR3^?
z(7(hb+3z{${h}fKMKHeV1j+Ypz;*^UCMhHkm*lhOvhGvq|G#m;e477URQ)Sj88E*k
zME~qtgZWg?S-2m(+fN|9NlrXn4&FZ>!q*=R=F>P$QT6}$^OcKL{FlN0mB99xzjsKx
z7nQ%a+D+qC{J-(}GVy)8lN^&2mA~ezeH&H$vQGrt$G7+T_<!i9q5mIZ|CAKQx3AAX
z-*|J{|5W@Q_c1=b=c9=J->2=^3>AL~)8BtUz6YhK{yF5>jhj{c%|n>}cpp&I{QYa^
znXxK<*`<<SOw^+g{1dLv{wWc+Y*F!Zo(tw1FO9!0|D184q0;}8GlKcoTfc4Fw<}wv
z|0S&7$UeS^R7Zc3&Vk|&)jK5Lteu>v;%A|M2KYBg|0!zzULBVO`$L74ub;5~C%)E8
z_B{NRWIs-!x^s&3CfTLwmpxVdH1r=?yNOG$lRs?j=3i9&iiyGbtF@B)7u7za*Zdr(
z;veoC%(qu3IlsTC{00f{!}~Ks>|biR<dc1j6Vm_bd04pi|L*M0_f`CXto-T?udn{8
z*6jyd#lHphC;y@M%h^MD4>tIhkl&D;S?cR|Rs6_)!S*+C{$5e-|I{zfG*a<@#QKx;
z5A;v)JpsX5=O2;YBzvZfy+_6W8v7@lU)1`)#JN~y`?!+jFX?Y}EL#8V)px#&Rq5Y%
zHnTt4#UE2N{+LT6JE-^ryQuj^&EJ%)>A$J?E3y8h@<sL`nV+M<pD15RK5=_7CBJc0
zu>O><Mb&>ntx9nJ8&W^)s3ZBL|Ml`K8IQpGZ$tQ7*97Ztua)^~{f7gK!Da~@kzGhe
zyp;y)*FyL<_MgfBiBIFL0U-N8T#^SH9DwylA^eFrk&5i2*Sx;=vHV>dVSZEyzZ1(}
z%2&z<rgq?v^d>pGT$`Iz{QV+-Ez$oc`w*XG0LVTNm*m1mIWYeuME}>A|J&=Z+~Rl^
z!v+qCOR~e~E0z7{mb-%e$H+-?7)7;D%D8Gu|4Cx?zki@?SBlD?nQrE&?6dk0`IE{1
z*L(l?#=%C){%wz9!S*43QS<j&bTybi7Lva{yuaZ3`;Qi_{QmEoAKy~(n=V%CU)1*f
zjYeIPReV3|-;#ZN*NWDEh`#BQ1uFgq%wMV>h)*)$@azNmJ;_}adn)Y{$La?S%T-bR
zb4knc@P53I{QVc}f68Ct2PD&*4oPp4bCz%ZS;g<q`foJ85s(CAlDH&aU-{ft6@Rzr
zKlnubM)nVI@p%cu1`df!@{O@2zf<vNvHpXF`%D(q{%=p+tn45D$NGn~&ty^gzg;K;
z>-$3TcM-ck4e;@I1PsDHkX=Y#DZO>IieHwMU)pD&sP)g#6=Rg;w>P{0qH<eQ`!u;!
z%u?xJv2JkvL;Z%L@|SjdJW0hr%lhZUFRFcx<=pwQitl6j8{pTI<0vd!1BaBaBnSMn
z{)~$M81sMPlMDda2jY@^uE``=zaQeCWpSb+mEQn28}CyYmkx<b@~<t1vVH82{weqt
zTuXd<j|=g*BreIn>aF=nrGGo@KXCmi9nPg=;*wlBruI4&e<iCw&D*g5T*UHg6dSQz
z#g7>p?Ef@=SXBRf{P4;ZD*j|vKhQiNo%)Gn5GKhkB-2KIIYz~gWBoUJPFvLbuU-+;
zDyaD5So`b4@z0{x4}F$YhV?Ze{(m#Cf39<Ub!g00n7<Li-@wW*jr-8=U}g^-lHExT
z{^BKN|2*q?=|ANE2DZB-13>nHKfhaWDdKh2^DpawrrD;L%z#|`PMMz9^Dh(Aqj_36
z#p*>0`vlhC&B5o(dtQ_iCG?B3KdT#ZT#|kdQ#){2RK9je^3DH8d_VH_F!z@!s{X#q
zQh)pZ5#PQd`Tj8Z*_abcP(J!XCcM8WkiY+6{<eHc<}cUZV|s|@L+)0T{^Mnhf_x44
zUs&tHm#N~#3XzBB&Z6wsZ%nU({Nczi@jtcxUhBJcSxmGTl#zRK|0~E}kNgxDekp~{
z1y31xKyqp9ug?5%dj3xDH%lrf70}NlIam0jWci|c1u-FlxFpBi-RP-;`V)T%tzTF!
z`wKempIcP^fcX`n{}%8c;%_`IRWqKIeE)UwC&spzqT)Be=Og;>(mrOz>$A^-$LlNY
z@5lM8#(Js0eVzP_xpil%^#2yupZZ=y`&=hKZEvQt{*?RA5cD74L^<xJSH3>`9NT!f
zvP%E#iPAsqdvRRvI{8&vmszUf_ew|pqcVT(>*S|4>eXMx?<w{_f}lTz_2+f+e_Zp#
zeieV|NXhqQOa1jK*JuCjKXt#N;$KGpG;c=xUnl>eY7M8U_%EXV)&}I`{xwCdA4(T%
z?abfi{@J#sw2zh}@3;Kd$xr)Uo37HoH8vFfftbJ5uh0GuyuNFoieFP=HLJAb>NT#9
zU+&i5H>vnL$bTXw*DNAm*1nqd*gK;x!~8n3Kg}N-fE@v&1lFHn&Oi4dIENBw(KWZA
z{vTui;Xy24CO)s$>x5??&OdnOyz_on(x3SK(SPW9xOtuYM>=1H=WBuXi}>S6f2<em
z>*QA{R}bcggzyhz{+d{B{nyF=eMfp%75`am->F=g`2H@h@*86R@(Drj-yr+EhV{Q6
z{l>mde)sjY;Ql(qKDBZEg^l~3`md9}FXFx5RQxQQUrNu#b^ZGM^S+8@@>Kl(O=SJ%
zZzZ|*b@Ja&d@EhWABE+Yp1b?6lmE-1Ct-eFi2Zxw{BRl%p#3$x{D*&^@xtxZRrSvs
zJ!J(#;{i7A-@&h^YKEkNA4s0;eEi;m`cwaN9QGfyVbcEo>*Tj?v3`|`ACL8qHA3?B
z`r-Kx=}j_mb$X17pG)iSMoO+3Cg0LzAld%6B|-LCi}mx{SU+eT<hYpKplJGIGTQqe
zybRCpR#5#+?MqK=fAyy%-ybHQ=YRdE6VChpIX@5WW9?6JR55XVF~6SlBx&FWk~hX&
zsG_p}=V%{eJlelW(d<L~MY$(T6@NI|$2UoG?d#;v`mj2z?+cV)^8bljW&LB1koNJ1
z$+xgumWA?S%WAC)@(<(vuZ``aZ<p-9=}p74kA(vWSt!dt^Q-fILdxHE_<qs9>Hc&8
z&KnDpPj<&_)>f@KSW@U8;-Bd*>o2_gM<+1K+b3>6>Z}i9>+cp|`$EqHO<bSi#Wxs#
z%Zu3`tMt!CzJbp*Y5yQEzJ+{}pEMs5)P7O@5R2_EJr|^Le=oj)e3EbWdjp=|h4^O=
zynnafOLDI8<Nn=6<?DO@OI7i0s-HiRe6vM({z-b1yf^#%iYmU*M-~v8S8W%O@BC=-
zXWY8jovQpbX#M6GslSf>h;Z#g{54;0|69espZd?pH*tNC7vDlK$xXe#2^yav|A|8T
z_?u(<5-y+BKQoTR!t>>T|4{w2hsGa<;{9Eid>!>C5!0cX^ZpI0f2jRxjQZOq+P`&p
z{=@C}#rUP0RQ;c^*gw?bCEvVG{*`6>N2~bd(0@$i+hOvf$S^2hEL&?4te@icX@q<q
z^7Y%pvyXvXlJ_T<saY_8sr@>I`D^u({$qy8w~$Zr;}@1KDaa@P?2h#tJr_4||1zF`
zh|3q~pJHN|6RPg27c_oF`wP#)@i*%fj&HOL&psBWMDqT)8Br?zhogTQZ6)8t_m6q$
zuOpvCk7c8Gs@ktC^iKoVUD#cUrhgVDK<m57f4X7+^Lp2Jlinn|%%AS;KSg{hzkci=
z>PfPE>D|NA-ykr`w$Go_h5bYP|6RO);rnA2)&8_To$LSq_xg0szuxufWFL|@8E3#g
zf%=)s?-p!d=y|3d=K5<YSC`TLuMH{Rq#(Z?_CNm^DGQ(<-`{J8$tS%LuRVY9ulcI{
z%{?yv!%mj|WA_Qqe_{|!evo{0N`~tBY{oS4?%P=rf%S=(L)LHhYBI8A>-#b?)2Ah5
z>NEAktjvCi(}!lnPe|0WZjWu>{LcIn9rY>6<MjB9)RxWf8apvDA+yi8#MI2>@yUtl
z`fRbZqe+0$Q=gWcnwgfF-ce7`n<S(pH&2+7IzD+q_sQcr>gkCY(^4|^CK=PlCQO+;
zIX-n<hDaqjb8u#S=Cq7LNbw0tiF%XtX(G+ZiOtgz?vGEIme?K6cGM>%Jdpp@goI&J
z(kB6_w^FAxp;S_4W?J*K#Pp2hjLhy+Qd5PdQv^6w5R>#yw<aXTr|R^3W&^695|uD6
zJ@}V&mp>^He){Bb%I|>IUrEbIYngAkjI>q-4{pmp7&Bo^fgj6oDN_<A>13qI(=rpY
zI_gP@@#6yLCIs>(Gd?*b<TT(0G#NiFHK8$BL^woqVIPpq^d{p|;wLokDgF#j6o<{5
zHy7EQm_9x}AyJ<>`xafDrNARo>WQiGV^b2x>0_r%N$IGk3B5+%b{}ZeuA`osm^d!*
zRl<ZR_)qaE$rDm1Cpy2sO>59Eu>A}9fA@Dke_Z%~Og6heT9+#JRy|fi^FJ+TP*T4m
zvc8yW^i6Rs`}g`<+;`%D1>(}_zPs=JPVg7;_hURP)_>{Wl@NP`YfhEI`S!wEnlZ2z
zVFEJne|YBM?~8X<>Hm6XF+aQzzP_lI=2!5!{!iTcU>CuEkn68k5cR|N!akzfftoI$
z7uv@@QbCJ)p1tfr{2%APoO!gPir?-=VgDaWXn8Jt>(>gJecGFU<I6kxsra=j7SsIx
z5}KZ*)<5l^3Y!0dH^1q-k5y3dD_LUx>WLECl38lLwJ=7r|EU(pSNg#1qnDo7RK;JP
zB>d-ODF4^y(m(U&#%RXx-u&4Y?>{N{A^z!~B=kQm{PVn8|Gd-XH2+uSNbP{+`ft8+
zv5!jsD`I|>^-~EgO{}Xg=s#LZfqG94zL<;32e|Yh;AePZUc}Tkf*(?T<BJRZe+lJ(
z-b>i$QOQrM>z=>#J4#Kx)<(3yA@i?>&;XQ%14T4{dx~&a5!~k45tn4~;fdo_{7oOo
z{)2{m>Ze#)MdNR}@rI{W{5BuSnNY=OhV`TJIlm9*TZF6s?|p}Uuj1Qtg89~U@-NoD
z0MAcD?EltIX&=&`_+}Q4$GNP-CcBe-=5wQjil2n~WA1A9Z26p7tC{NLudkfEuW=3v
z{2?yMVw<X-Rq>lGmHNX99teiB;fC-{numyfQ~>RKBrZwc%h8Xj_<L~tiukmym?S;d
z@Z#S(xv5{pKk+iN|72+o3uU<e(=GR@J5~I8?*#J$^F&hdelpDbZJ+kh2o-<p3u->C
zGY(h(Rpv=}z7XP{>o!Y%!2WEWOSt^aQFp9V@sFea#J5h!@*AipT;5|renZlHaTz>6
z3ekTpj?WX{$h$uNS5-<Y*KfAK_dgKd=WGZd{NLj}3Zys5Nkcw|`EMcmA6XH|UkiMk
zo<jzn7l!FSca>>zi;Dj#vkyIgr031y=5L1G80M#i=syJQL-h}hZ&SGqmv24WJVnJ%
z39R3g^)%Uq>Iafu^}~XJt>aYuY-}H?ekMMxp9)w12VQ6j_wOP0NfzsaAdvqMpCsAI
zOaIe{4z^SASE7B~_%=Q_^y1g*{-x4Cuc3bu-?$Om6YNKXYoFG&-n3NuzqUKz|Bi~j
zx=D_t^>^Xgr|MfZl<!a2^m;H~pDpz-YWX$JecnK&|8(^KfdAYq$61TYZ~J}UKUDn9
z*!~iq{F3rDT>HOL{WWF#Qu>)-`w*Yjd4$XVC(>-L(*GE)-z5JD@Nu1excukq)U2=K
zC*t}7&Zl(3^`DY)nTCq52iDg}I|aB!>_0zNadM=J{|swih+kCuZ&*_m<|l;IKZltA
zm`$XA((}%6?f-Gcjt5ly%dCG$e5&8V<*%};j8gGyJRIzwX4C7_zx?{-Z7Tkc*gq%#
z3G|z3eJ=K+z3R_|n}#XZPhG|Km&z~I3mUF33)eq)KlrNh{$la_!S*4(*L#MjUqbS7
z(;Gig*{2h;Kk<v&|J;z(2i{K`;-6Cj>&s;OPJI7?qTL_;+-tM4{(K>@J~5adC}&~z
zuRfUlh|>NavHG9%H=7o%|6hObPEBQ>p{#x;KCOQb*MCm@bJso<|9jRx62GYJ@3WH*
zDc5)3{HF9zDqqAm9+3B`^jzDke68>H8O%=z@t@P!zoPyp@kxeT|NOLe!NV&4sKEMA
z`8zaPA4l)c=`8CbFa0M!v8SPmzYWVT>2Dxk`z`oB#*6>s;U&uU#gFeNA^Q`b>SsFk
z;%C1-NBRCGZGLe6(mFYk;o84pqw~u3gA1Ac>AsQp0m*&<)oUcvGpfS;{1E>c!u*r?
zB*QIV11qk9`5__vPucx7aY@p=CZ>L1oSMcF&kVC+eq-ev9RJ^l`!8o76k{?qW!(mh
zINax!^Y}4(bKvx|1HPD3x>&LK27A8X+b{Tkme7)V29JNz_-*W;QCift8v`8r!1<#y
zPUHyw63$;B#^<#Q?)<0=QJVi3vI5aV$LB{s-{wg%zPgx?|1TEJi2hdz%_mF*IuVKV
zxBXSMsMsp`VEjaWLtmuUsMcCFK0L+{<Nuf3`LW+u)$C1tx7<+uKf2g;pNjvUc)y2z
zrG%E{Vt;L4JuR=JPHF}uU;lSQdh++BBO;cXEPt;;`}l7tpPnD3{a8=)t*jH^(g)6u
zocDHZ6@R7}KQ|S8vcK<OJuPQND4+XJr{fc9s{CiKc>jz~!S6v8Dk;n)=eO<LvXqKn
zyQ_G9aV^w7q`$Vmo|d*YRR8=EDHHx{*Kfa;E?)ehIA;HTf^Yoi&Nq(K(~NR;nfCd9
zOny4k?wqQ6zF>>>(R#6n5dWe4&HhK||758CR8ELr`ocSpsQ9Br|IjGz&d<9h^k41G
zU%hX~A{Bp&=pWjJ@YDXQr$w#t=8ry^uwTW0c8>7R67Kp(m8h@TtGxNWUYeAy;-`z}
zU%pZiS~h!rME1{XC7z$Q^nQLC(R0ZwD*n1s;`vnR2yL~P_fW8YBfdVNnwAz5`h1P&
z@6kD#c`AO?UE=v;A$(i#qpFAU$#2MUOYS}Su;7P0pPf@e*r!Z{wuk9Y<tt}+SuJ*c
z8Nvi4=Rddd=rO?$ssCfY5%qsrcYf@>Wi`X}=C4oORYUNX@%Cj?J>fs)BDBLy|GuRH
zswzKl{g+*6nWf^tC!YV>Km6bMvwpg8tBS8z67|Eh|2seP@oghj{87Mv;Q!8ls{ZP_
zDt_7w!JqMe=jYA8a#h98xI^$~{@?kJotSn&#V<8n@S}>(=T24gwTm~4`KxPUS^Lsg
z+-4b5@>`=coX5wn=f~VXyS`PSiqJo#{BE2l-kDrALVK@taQzb~znvnroTK7P7I^(L
z>@j16;D<aPuhUBSf3;9P)o;E#BDJ(gu5D=ls_F-ekE`@g5bt*~V<I$NjH9dS&+JRJ
zG;4ck{mfH5{@uFI1wW+z@r(6edUe5nE||ZTcR-kZ_}3rxpHo%UKe;0259otRY9{07
zHWJUM_UGrjrVY%WqNJKZH9kEtF)&qX^5C@i)c#`PSVw*Aw2bMY=V6XgoXZ?4F%v2|
zb%K~nm718@d`S1WJI0Mm4?em@Z%kjp%(P~DVtV?N^jkD-P`-`@XV{7Vi4(J_a84Uc
zY-=T^+=;1qa5a3>QO|5u@Y^Bj@u?YUQ_?d*PZwxL!3!jAaAta9{A6bWUxMyTkaH9h
zMwl{gx}H3x`5-aPOwI)ytkg6kd4`z47nptq)4gUSrqeX9)F~MWV$z+Q7$%Yr%=DX_
zA<XSe`wDmg`4`Efjn~vI78%)ww?9LEmzUTZlAI6i>IIj>dILoHd@QsxOk9$8{Q7#1
ziVyS4oX}J93!7&KbIm9amt><U!w;zVXZuUOe*~^ScsjV8q=*-d=yOVFxu@zo(TzW6
z>HD{<_%MGBf{FTD{$Tr1Jp%LCAW|T`Nj`QpW1Wf*^VcBwJoqq=4I%~Nk{r}{=F=+v
zlPmCwzvMU**Z)VCeg<(#-g9Kh6cvAcU$oCCX@AcD45v<+ch%A$QXnqLysRz<ReYF#
z2SM+Z<jBJ2;lW%y3dAM3ZAyz<Rs05Me{-E2Z;fUB>~BQZ&iFvguUb&SiEjK?=g+99
z;=}wt2o~yJ*gQX&>qmj~CTXqO(OSjtF<f3@&ye}6Ef4lj(%-kIk_M3iaY=69S9+L=
zzxx7Su}#`1X_lHF*D6|rNP)N{_deO_l8WDZ0Q&z4slOXPs!Oy6kpgi^roWxiQ^kk*
zj}ZK5|H9@$!dyrS#3fng{Zb25{E4Ff<%FlDeT<}F`%wLmyS1hUkpgi^`WDQauHtJ8
zCEp$-%a`js%Xu-HB_ajll6-N{ALms38V^anh2zj}{OtKL8bk`jB^llO=y?_Ys_1_~
zFrJb2apUJLh|wTYATG(IX@4l|ADDj%!RVdjNH;#rLxo6zxFmn9x%Ekv{xJU(g6+bm
zek#mEg-C(8Bv0(>s;vLlk^h{M{_m#0wn(rcVjwQbqZNG5sq}A(^Dne6h4U@JhDd?9
zB)@C1ajuGgR@^^9Fb5azpT-g~Pgg_=#3eZ^eXX*85{c#4_iB=JDeQj*DN_HR?5}As
zMw&lPN?ejdKfYQ^rN4&lmyPx}S^ZDtH!Y>229W}BN%roqn=1Y&Y`=`t(*ACIeR4$&
zA_d}-d~j-;fhs=CUv@&DBu5lBj~V7NQy?zMDKE9Gq~d@5yS&1lAoDkhwJ&5JYeoYN
zA_d}-Oz@X}Tg7iQUFxsTk@n&9q=|3*T26yVfw&|a@45V&ieJN!e50(af86+Slgeul
zDG-<Bp2ml2tN0PolJEE6`+g}e=4re0ztd}csN(D6CExl`+TT_GU&?85B2pl|N!CpH
zZi$MYnko6Vhy7zGme(LsATG&z&8iGh@q1wYS~nDK|6IX_NP)N{-+6odS{474cs>9@
zpR4wtz&!gG1REj-;*xATwU^R9jq(0M$9d4){=|=cS=dKJ3dAM3)X+|;^oR8U5KJt;
zZhYdBBreHL<9Da3_#MUlJp|n<+&+0vl-D3qATG(KX8CVa{DH`~J^02;<u!;Dh)eQZ
z&sjrN{FpIPf31Srf0}d`_f7}I{)n%YccL4AUg;&fRs0G%+Gk$j_AzXszlan_Z<4iJ
zRy(cYZ)`64wu}DcKT+A`HHZ|5OR{S5S<3zitp9-EbMc>o>p+MNlDH%*U&vjo(!c(#
zs6X0gNt59Am+EKVOJa{l5h)Ot<lR?BDEpt=&d4i#(K3H6pPXqx?R%$%L=2Y1C7EUX
z5~tGNJRq;r7s>qfeH_f6BmlmhCA8R$^_@tm5SQey!}oSk@q3DKKPMQHZ*LFglYR1z
z)z=_WATG&qclEqe#gE1NBfFBcPgLXJ@eShJapF0Xh!luRvf&RO{i)(tnjrPJcB}a@
z4Mp8CvxJu2v%VAE_#2Mi+E~TEQ#_x6U_Gnm?;I??{9csbaYBC)DUjYI-}&)ER~5g@
zFv&MQQS(Xv+-_q0M??z5CE4J)jxAOE2=ROmf^U!H=S>Z^Kk=<vqW>cz1>%xCeJ-W9
zif{FkeEp2{A2)tlhXxu%3dAKDw>eFD|Mlr;w0{+;f7+~I{mFl{SYaE87>G;qu~XOj
zsPr$1{SyP{vvR(ERNOl)ETP5K66;7sq(EGftxK<bU&UWd_2(Y!|1kaAv=qd{#Wk~L
zeJ8r{Z%yd_iHffsl2_Q@r8pm~5yAF>`WeO#eSg+>q8tB<Lqjj9_%B-W3Tv;lzZ+lw
zr@jV}0@;P+?t_({Q1K_6l2_=s@2Ac5C;!Z@)<A<ufw&|;tGcX%ihm5>AMdLw^<OOj
z;89dR)A*A8QYj501>%xyJ*`zU72g)~kDSn5`o9}LXJaW1A_d}-ykXMHRVx10Kjjtn
zVh{fR1Ybl7#3ecIhmVV?_%Oc-f{F8{l6nT)hwe{do)bh0#3h;fz?`-!{%_*>4+Qh9
z)SvUI{N@NYL<+<ux%$21<y3rU{*<`L=b=B$qk>3*xFomsn>|>?*RcIEK9l9w=MT2e
zgfc`7mc%6)vF`5ARQ!rKK50~!{>k|VMvC7i`iDFam*lslSO28q!~8D@I=-JtbWei(
zpYj*xfkC7|T#^rss{go(|03Q$`t~I`m%8!w<5e|?6o^Z5{P{U2RQxt*A74$h57VFg
z$39g>gGhn6Bwsl6(r^|3bF6=~7-=Z3|5Ig!?><yQvkz5vq8q>7u9=rr{O^(POD~+C
zccHQdkpk&W^7M{N%JzLN_MeShwS7o`-{Hy{L<+<ux$EbIH&pt={5}YlhyTDlKZq2F
zOY$}2roAe@AN@xkg5`_lZyfG7L0po=C0Tvq(<fE@9;f9M=5uQMd|Xz{zX^IyEdQUl
zBujnr{C_IG5ACmip5$D}{pYz}q;aq$F3G`1D=6*19m}uZ#XjW!QPE-^l86+DOY-5V
z6AYF9DOkR=pJe^a^^X(%XLx=TRY~wgq(EGfW&i1|e7*qlHzD}Ze+rw&33E9q5SQev
z3vFUm`ro)xUZIzo?0j(JN8M9LgGhn6B)8wcKT5@~jQux#xwH@Gll}AlsH;JwKwOfC
zhpxDy;-Bv#%a>MP`llN|>d(3wL<+<u`N_p3W&e40G0C?ve>tD}KXLwg8bk`jCD|)t
z?t3czvx)DbKk=<jx(1N~aY^oNHMp{h-*PDGkMHN>`cwO5d?Dspib#RDB&Q5{K{-BP
zWB<_jS)IS6zji{fAz~md$qCh7QToqiT>t0y;HRAu^H4>kKwOfQzn!7%Upe!a#YG0b
zUy$2}{1fIeL!>}llI<5R-=wlX%wL8;?=R$hvOmmYhDd?9B)1IPbdQP;^Ov1~@Bia`
zw|UIOCHZ;Vg%7LvFn<|>>B1-dVIH#+o&OFUU%I^LtkQoH&_B(4Wc$VSC;P`<sHZ`s
zKzfs`xu<Q6O8+&9Qh$Azn!mD{=pTmBel0kC^;Z=i=3hhbdDzF9hb`t}Qy{%b-ni?p
zw^aO%Xdmqxb^Z1Q-m;kY*U=zSATG(iM)Xw`zyD;ZztvF957>WJT`g8b3dAM(*$O*D
z#h;G$(Vj1yuZel&PQ(O=OY-PD{+Ct!d$4`+PgCb__6?%%CB~Q1rq*$yoBl?x&h=D$
znEwtzADiSzH~)lr@DM4G-Xt#<kC?CG8}rfrzo_fabK?HRdSCP({uT4oMWjGnl4hr3
z$5nhkjxX7ds`<~XA!4v3F3Aq-K2gpug8BOpED!s@Jbs82h)Z&k_O)_+0Os#Q@O$uK
z9zR41#3gxK#TtL8?DIV8ub)%fhwN_^udhL*KwOgB;+vON@nL-c1S28Ik#7D2>jWTD
zATG)G8%_F1#cxf|?_A0k^*`+hF}^Ay1>%xCTH}ERD*ghjAABzMq52_Le1J%SxFp{?
z6?I0%PoeR>?~<HLxqa>t0AIZbEvHO<C%W<fzALV*ioa^Kw7>bQI)BMN*=5D}wulr+
zZ<75M#wee^+>Q3vepB<wKE@68HHZ|5OR_`Clgjapm+DIWZ5RGC;`xZaw}hsb6XS;>
zQXnqLxZ*W8s_gSKwvWbnwf@w9%PlYRS40ZLCAq)t&_gQz*(ap_eiuI3$EqO8mxvUI
z8;~VF{Zhq;^)V1^EMM6!^EY6f3`7b6E}r--@gL><tAFp1d|wmUesMn8N2@E?5HWE6
z+x=I+pwb`K-#B4hk|PRRhXZSIC~*F&s7sHk_^|#4g6YABbvO_yaQ=Zw>wZ!3{WyNE
zXUX>0763?*MhYo^v!966AX1=DBxhFZuv5h!gZKZ|H)?*&O>%tCzadhCNP#|)yzSV2
z<@i{fC9klX$^2d4My-F`RPp>mL<+<u`EG7?<^A<Od0VaNN2LB+8UL}~L=2Y1B{{Fc
zxYt$of%Q)ie3-w5t%HKKP!xz8kURP)pU=YjCkT3Ck|W*tunr0$g#Z^%JXE4WqDudz
zEu{X&t<wISPyS<{DkH`x%Md=~`StD+uTNI-|I#Jj@50~JB7h9~!1ZrG<M2Bwein{z
z+uzCj<@!h55rhpKaDIHskQ5bP!}`ZMBkjZ2iM=p1fDHP;`A?=*e^AALx}LO;JzVO~
z`IcCk9nSqx?<dTXDn6`lgJ7ZmaK76*H?IGLm%FT1@fZInf3{s#7BtSE(?g^!o)7ZC
z`I-9kg(`jy_<ycg!+1h%ADG_`@5!}yi#A9^3Y`D^zB|?PlTGx`d20Uh2qFec&QD!6
z_nJ!oQuPJ@E3wAbpX30zeZu8W|7r2JD*h;HAJ41(bH{Dr*?;Dg{~l5C2cMC@+Z-ha
za=HG;o(#4N9dY|KJK0A$z7#o7+TVCU%}@VX5`A&v9pNHU;QY)3^_Ar}r6l@)FSUIR
z!u$tC;QTAKyFIV6&+wL#Z~mzEpCz{_;NleLM^>t-T>k>=3nBO>Bsr4XKiu+r$30>u
znqvJ?RAuD<A?<UPwU1Q)`wx}WAX4D^ABw80EWiDcZ+{{6zs&gIu5bD-w)Mv<{gcpt
ztcy~A&fkVpy8Ly^X%H!J{S(W*^0kU@Az%Mp_Rl$=`v2CbavDSmoL~2rr`}cZGtoZU
zPtt!lpX!I)OE+i`DRBNxi%Kfz=e)H;=C8g_>JQh$8R{RV-7LQ+E=kV+_m&@9sq}C7
zKJuTE_J`{W^51|H$Gq$R_JcMn=Rb_Y{+oT5<Zmvm=37fkX%H!J{r`%*+(f1S60$$O
z@0jz?iswi6yTvtQYAGkW@qhoKg>wA!fyd+(=J6!w1Lv0$T`J)F1Ro*=u7CgZj7ci}
z&td&+-7W1C**4fd^O_SeSaSZ1Qb(2Ze=f|G`D+eV^AA2F+7~f?o9i#-L`sG8yAFCT
zUZsCKs^2cF`R#@X{<|eK^HM1%y7AwAWxuk2ayRnr<+6Nn`w%}*@F7y*`focif2m6U
z*QZJQ*rR3p<;J(J2>%q30_X1>GC5tvABOkW=C6h8uU{>tL8QR>cXwNRhl;<N>d$)$
zx4(5+=r1CL5PpMo%Jv=BmqV~{-Fl(x%*9%B3iOF&&*7c>s`Rgh_wUAU(mtF|?Uy;f
zv<8s^aY=T2B3U^<9M-Qx@Vn?we4kjy4v_+VA{l+<JLUMs2VErJhwY2oI`$~BjvXQe
z;*z}g@2$%IEv%1+U?e9w(v1)6<RMZZF3FZ(KB;Vfzr^t|Yozp_Y&JjevsRLr`$cUH
zA_d}-d~o-C<^3<LzlT8k&xE@UpSUEu-regtmH&*#`4zt3rT_4C`2Qrx^!<}+YY-_A
zm*mYq^;xgtKZp0f+GuGX&L{hr^J;4lHEpPJWx7~+o{*R#7q!z?C9}m!_e|Z{CuY!;
zX{qCeq$j6|4P#*a`&3*UKPYkPw8RW&89iw(r5=2!eG~ip4DtS_6<W_k=NsBT%2}T-
z_9vnD%=zz};CxTN8`i5sp#FqB(lnhup#1Xj#viHpEu8mPiTfjbZyx8H=Ouvivl#!`
z^)JEulUDfd2-bhMSYK)UE8ek#d>!BWCvK~q;Krwwa`Zc!Za50>PpYObU*udz_JQ?r
z_9-#Hs!Wn|zOeOiz9W@nqT(-cN#16*EUS9|T!-zl{1(?_ABx_W?ItM!;*u=ae)Ap`
zzsrY`8{p&n<LUj2_Pw$L#@_=-T#|49>U&njKm453znE6SQH|bPNbm2oddPmM7k|a2
zLCW`+k9b}3>CTY&Zqm&@6V8_3qSF6rj^vkcdbMI47yXB1;QfN^y?taCl6ea&D)-0G
z@cAa$Kfp!1ke$5j^Lz0zvsL;}V*W$=nzfRG^23YYzGS-c{gL-=k@+g@V*$`!i~0Gq
z^c#AgyvFvKAiIz}a`&r!RQgZb9qj+aC;!x2%KFGl|6S`|9;f0jLjNKEBzu!|dyg~e
zP4bhzAO5A{55@Z<%3s<?mSiA5^!)oXup@Cv`tw%QQSqC;8tk9MCHs)1bbt+kxFqd?
zb#7Gg8*~4}_csT)F7MGMF3BG6>bWX@9P-Kj#O2Z}f7hINvZIQBTj2epSbshs{e}2c
z-n{rLX1<cB;+I<=?4QI9NL&}-#lPvx#DyyUEUcfYexr7hzh9R2<&e1>n!mOCeN<h=
zFS}9dPke2Lw2!N#1OgYx6Q9?c{U)^Uwh`R^PG2GV{?*0(Gi%?mI@RKm<n_FL*K|rq
z%IEyXQsDdg2J`237V}>P-@i$M>}J9J6E{AkNAjD6jbVSD$~Ly|^nTVhXdluh?=6{*
zw3@uvhVQP3`!u+Zr$ByB^70KOV+H?q-ha3^Taa3d`+sV8QJN)Xe^j4`_m!f=W|PrG
zBE%*6Vz~+1Rs11KME|ECANN_;OJRTa!SMK(&h(t5;;$VeEfLTk$5H&qx95k)|Dt!!
zM=Jilr$paP=pX2Zbd~vQmzMhb7Z5*2iz-IB5^A4eN9V)-MIrV-`mDUhycyf8Gf7Ss
znvrP#MZ_=M{w4h5E2;R}0?D^FNIuoWdKt7oE^vqxc{{w2{QbJlm(c!(=zlMc&jk2b
zAN!GSF9}coVLkL`RQyu-e9$T_?N0TjT^8;C5b+DQ|EB7X4N~#5P=BL@w7WF|)42id
z|1j|jxBsWljZo^Jy-d^(!hf_5vV9HggIf;mzfAI>9>~rw&LQP%*{8owR_Xupc$vRC
z?$bi{@gv`Ug!C`mK7S9o|5X(~7uUaA`=x!TU9rof{g+FAF>wdBx)A?q{$Wj}{d=ck
znZf;F=)Klv1+;&*<VOgLq!q%S)TZyfD*bKLpWc%lxR1XP?Y|;C{+FHmLjN|z|EG!i
z4FdJoXkR2h^6i!3+5gY_S*KO}acCdn8{@J5i9-87M*PD4v(czk*(&~Te>&<1^r!qa
zqtX6P5I;)GEyVuo{yV=?#W$e-xn1}_-k<mfBDW&if0g7%iTuqi#Q#flZm?6uk9h>`
zPwQ*2f8|HM{bYFhCtPc;Y`^}?lzdu$LH4mLq5W5f$8T2QKiD5E#D6{)_eX}XkB#&5
z%_>;`R7N|kmHb#OMvD_K=#;q?+P(~a@f`GTL-^vYBAQizuMLxYy$ag@DdG$J7jx%#
zKiIy!imzk)Li5|nK7Qoe>m)xy)DJm@_|M9%C)ca^NAUe28qTjKzFigV|Fq<L)jxkt
zPur;CPuL|*Y9il$58K~rX#Z!4A6aPoxF)k*D;575-v1Kc>V@q<4BFogkN^1bl=&+D
z0nxrdAU@g0k9_+%;ul^&|26a1_f-6g$oFykS4aClFZsnq{@R7)@5UGERZ;O*Vg2dD
z{c`Na=>Ij){x3>?6!^bfn(h4FNat^UIr#d|X3;ACpZ7@n5I@lWsfqS~iTK4t`<4F#
zIRDReA0Aclw_^Je;8Xtx`S$;aUwHkt+dL2ZQ-ze@&Dg)SPRa3G(%-Iy_J3LOb)kAp
zA@+Is{`X*ivk?9)=>Lmgw3U47pP04L{;!b!&_9v?3;)mUbE)0WOI7?oME}_*>K_B^
zWi1EOse|_4Ao*VHds2gzt5y6bvHwPXPy4$1k#E0B`h)%5>$fL=`1BnWzZ|?@qK&ve
zLj8?r$HULp?7C?G*TUm>t5)$X760N(=%2{ff5-YqNBeIKkH4aN%OxtliS=_p|MgOT
zy&l^Cjqv!(A6s-x#eWCx?+Vz*_nPGUk#FaO$4^RcR!qeo@uX<K3h?bmrG4!BX#Y3E
z<Ja6>`Jjs5LG&Md1^B*fw0{G%|6AelD@We(ql!NY`zK_7UnI7_4blFa!{fiW_?ohR
z(q&z+|Cp5|-;aEI3-O`;boc+AJ+#MF`q#qe%cQ>_`Swj{|F^^AKQ(FGrz(C7=-)QK
ze3_N8{%?f#-x?nOg~rX5<tvHS*JJte<M@nzGunS!c>IQwKf6Pv|7FoXF$(DKZ-w?p
zzWr`^{F|Td0{aJs)X%*QmcKOq&=~EH3!G*9=$^m7?=Mk9#m_7r%%}Fnyanz5KIsqb
zqdULmibs#D_}1LwnpMC)_6S+N^d@Nk9mFrZettQ*g>w97obVrC0lsgSY+wAyw|5dh
zR*Nd6|NKS8cVYj!5c|Ik?Mu6S|MU%zJi95{-$(p3Eh@s@KBtfF>8s*vxPF|<7v1NX
z&CvcI62EZ!ytmC%j?c_u{!jZh>bIi(KMIe(XzbJqD*Znc;}1pw`vmUukZ*rXeDVH}
zLh7Hbvx~w0!y)!>&*~rR6RiK6qy2Xgzi|7Uzk5s>72js<qi-+P|1Hq|pM=NXa->pC
z72jff+OJNJMf>j|e&P1H_qj7l`!vu+`&hvK<VSww+k3;~+huQ7j&HORd<ev)=h${j
zwEw5XFWmm-O+WTj*=H%XUo<|iKZSN_h4$Yk`Ck3Q%kS5_q~af>@jV*<uZr#OZJ5sI
z#24@HEu??D{Qj5URq?a2e3AY%&g4hF{RQzOw75d}mhauCRQy_E{L=^di{skbNU6Ww
z8twn3<VT7gd13wYQkk#RQt>SuU!rk0(%-xt?f(_=BMKdV+t8}yuPXi~ynpnM!21`P
z2hj%Y|Fz`nLjQvO6F&dp_l|SlP|bgU_vcu!KO1s=VyFo`mY%E7`gC}APE>CG`)xSC
z(`zM`tN8GK66>;<f3jcd&-n%4PhvKy?35Mfk1RHU<Dor@*M|8aQFjJEKe`O#+XIEt
z_}t6J=leQdd05O>hCshZ9_8PE(eZ-U=Y0&%r}+L3wJwT#yV0S~zeI{oaO3OvJ&B2v
ze|c8y9}+S@#}ItqSmB>&e;R+L>%-+g6xVT^YJLvP-}a0BZK!<l`8hCO83MOYfuiPo
z-}vYIkAeQ&{&53~Y5Ht2x1Z@x*Sqr3f%2+3cx~;nw<e1Gji%>odiqr7i{;||*tX!4
zUCes2{Ce@rNo?Tnrz;+43HHfh^NTjYW1Z<DH)%ihTP0u4iqNzeF&`HKw@;)z9k`G0
z^+C7$h5jM?Pd;#3<nJtar=@ggm_G(Vcm9g|;AgNLqu*-UFy;KQ@u>y&D;Ym6HR1kv
zvFl2F`h+xnT53l8_{8RMQ<76NVfL8V1VtAgZ)??2PfO5oGZfg}WVqZgrb%W>Msu-q
z%lKs2B*r;NOwUXnpPUe%nTTiPek}bGr{9?c`>;$%9FQUY8CWgb+@d!gc^`aim%nk$
zaHZ0j)6?|8CM#paQKHZ;UFgI#o-%$s>FKDSNJpUc2qoIt=_RnyOMFW5gjBjnAf{&w
z&Wz8LJHfPRE$mRhc&Sq|`=s_xj86mjNG1G%_~gu<Q_{PMU1wm&898fDZX1(0Wjt<8
zQ(zXKFmn@U8lRZGmmzlTfo*Yux0Au#&KKlQBp(^$w}k(M>@RAH_pAFZ71Ofb9p_x^
z`&#y|@=5YjRud_S$K`<&qi<C4jXJ^~FX!`hd`?wV{+V`n6jSjV-YELF1^DzF%!@Be
zN&bJWO50ISwg1v;QGV^=qJ9%*fjXIfH_hvfeW#`tH?z7%?O4v+HMOW2)$_slsr2?+
zj|zUs{#|L^ME!Pe{$vT`fZG0$J_Jf%9_9aC)#bs@Rs3_NsNZ(y^X)MCk@;xnQzPTH
zCBpt8`-6RyB={pDG}srRpnb?5X=2X>LsY`W<3v4G;5{zf{-;(B_)}&7v<iYhO4QF{
z-FQL%n@vT#d9=8uPpPQ+%2(8qM1^V`6zdF9D{497nCriC{prO*|3$q0onKq<?{nuz
zrB~FfiurtdYDFzh98*3}It#o0^|RoI>~GeynaJNU?)=zkLjMZ+e1E3UUmO#cWSb|C
zofZ6$`hSS%U-`-x$JvvjnGtq^&{zu5w#j(~fqn1sJ?Z#$Ky;5e`K8K#K5j0`R|T-V
z4E{q&^f5?My4)_LfBf2SKNS7X5d8<fC)p*O+!a0&k?L?sQoBsYB#BG%e61vSJ`%!z
z`+de=C-tZPG>xZlNnDaK8QXWL_?bH;KLXodp9`P*kCYB^N&Y<chW0A{;*VrWp&a(T
zh5cL{FALoF-6Q)IG>?q9B+q_Rv!06o;|G#Y`jfrABymZ0`8K+)ia+fmX&<4#1sO~8
zGff;PBmMmcq@TL!|J}`5=T-byUY2zm`492+H<F|u(YQUE2TFRAymRh5XI1>)ng0-<
z^bSZikB_({SCtw#SjAt5&mSp&X?%%GKF^f6Byah2`ZX25=SrEsWFOAu$8Pp7zvdIA
z{;&KRT)xaEIKLPBn<n-r0{(>aSV?b^Pa367mHyf;4}J_w&xQZ|<axVP{F69;nCuhC
zPxKozOWyzbSpGWBRp8I_9d@=-)t@B{aeo>ke*^rxek`fLRrw#`z1$Go>d*TZ5Bfz_
z|8KIyMPhzqF|0q~{nZc}JAXsxqf`Fk*8wqRg}=T^|7XSXM_+;c=lw4Fn>PgO9{}SA
z>xoZGtN6=w(Z1Bmw~vAE8RFM_@!M_xBT2=7Tk!R-3iN+m_!hRCZuY<FhMAhMe=FX9
zfcGO=5#s(7{X<$o3)zpG-jk$#rHl3cBC_yiopHaY^sn=%uuqSC`<UOW{U@$Qu>GlA
zk^JFGlL0FKc~RVd`g-R3&w9LHC;#yukpAyq5?nuXJN-QBnZE@;r2pd=_P3|X{h8rc
z&~@!Zf6bpQ?}Gh{%V;~B<r^e!NtwX^k^XDOl<TkJ|73{#&4_UJXD-O6{&`MXNzLe`
zX*sJz+au=Rn&LQC9P_YYMc>LQ`}Y;=bB$s7_V@pg#4mM@-NsSqpA&ojGfl-m4D%~S
z<n!r05Of_$FaDTM{R35ec)x_dd;$N*_e>C%B<E8;k^Q5e?eUk&{ySoY{qJ|Tf8N59
zT5bXR+v3<Kj;Wkb`UBRL?<(|PVzBj7BZU5XRw#e&ZNc{wkIP{@!iC5eW`6UQ%096E
z+FvQ(K0aKB%>kQB%QM_A^nc$RX$$+Shuk0SxG4PYK`}Zm%2`4Gd`Yak27k=$R9ed^
zRXTA0sCO<c_LDCiVxMh|{&!7fpUT4pXF-H!=g1a-^t<Ol(oD)#mx7NeU+HX_NlCj^
z`VT86?7uL=*+03U{ymLg`$q`-7rehCF3G=IHceC6zriW-A3v9*f76VU>hcBaMj_De
z%g-@+Y1^yQ8;J3@g(mZ#(PI9jz9>S2>kH~n^@H`bSX23MZEg4sLjP~zKh$CS!3O(P
z`oDfc*uQ}O+9|dEur3t>=}-12`R-eNVEtgo{mYNV#dWh`b&$NC#`hYdn&y2tZjbYt
ze5rW9hu@Rf->=IAmHs)0ME&+lzWseJ`ct~3KXFM$TzgAX@t2$y<*NW+KdrV;D1Wqa
z=uC`+W!)azzIpfjA;pe*!j#Er@#)DKQ&PK&b*^GuP7EG))F;PhiGeaPj215ry9fRy
z0|qZ)^vqNykUyj;#`(nHr}*czOfl*y20{ZvjT6LIlaj>=C!Mr}vD3!ua>&y8S22`|
zNyICY$Vi?Lw2AZs`DF1`d_rdO6wrT4$~g5G>51|u-qs3!MuIvGacScCl*EM0<{2r;
z35jArQtWIUJo+hi)piC@@&D500BYuBKIF?%NlZzcEcI_EOfN=n0|y0dHz_%FoMXL~
zZD7H1LSpj$iQ|OHoPk|9lad&pk(il0Sq{dwX&pSEN#%m%{-_no{lTJy|3c93ljGdB
zKe(P9RL1!_@Mk+a4t&8rP`V`3I@jEwTE87*$qRK;rXS13sq81k_lrb7XKV#0&TK8~
z{aCYt2GK20x+Fh6cxsU<{R)3cg7LS!4~k6+{{1_9i|-GJc4k7f6YEYF<z0-Ec?C+B
zWb8YAmG8fY@lgmg?poM5DU6lUxFC#^LUaq1F3Gs78<p=DfbmlZejHck>E{`sn^^z#
zbqy!N^d)P7*zah64JSGmEB;WrB(uug`KikOv4`cwb}^a%JpD|O_2w$ke(tF0#HwYb
z{j=Y%sX=rLlrG8s(H-Md=^L27HA}VwZt2H;AjYXhr1W!rV!vY%-2$acGG%G$8mjbR
z{1*a^D;G8n3}eB?;|lL5kUo?y$!#|^Qoi4^-0$)Vv$(WBA1B^GK$ON*=@0C5$RVXm
za?OJH{;J=fJOtb2+Bgou%D+}W7)}1~pHxx2FQQ`bmj#X}U6TE)9-XL4|3OS&FQNYZ
zG)^8X#>F89#>vHAwz&oNvn`Oc^O4dedFA{1->cGx@p&g4OmYObKcx@j^biB-3teEW
z-YrnNB<<H9idLncD#q_2_+9Kz>H9_65Gnm^@fo69pma&LK58iUuZ8Ca5KNEX56=-G
zQu^>50is)=bV;@u9k1M<Vl|~-N9}*~`}GWAe-Q)e3temx-2$acve5$ZW*Ei$;WDsa
z>i0<B5YIIrQu;oj3q-d->5@D!dHpU``tW=Og3rVL@SFuAr4P?pAi4!gm!y5=rfI75
zM^XA8%KF#M|I?zy{?sB;`gu_mHHdD3(j|HC4byT}>DR&fPm7l0G_b!kwC>bT-&#-D
zMzsHWZaF8?`?M|bVoZo`fzl<Zz1ksCmA-XA63m;DoDcS$!S`8}VO&S-FBSEA11J6@
z>fdkzrAzXauGN+M$DP6XhkmO6#QR(d{{FG;#P8ozLi5*a=tS7hOc&!$IrSSl(M=ah
zmt^zt|BX`p{;T(4`9CJ@5BozFOg}R|IE7k|$YY~f0}Y~Epma&jdhCeu{nS1S32`!g
z*k7<<`kk7J-@90jv%!D5?bnKwfS`0q)_m%GMb+=mi^B3ZTl#<2J!=26D~SEYL=3!-
zTYT0ax&%s><UVW1kE--5&yxUuGg<%n#E&od`=P&6Fi`vJ`?jhE(JfHABun|$Zc(NG
z5R6|y_*}NXJpJMI<k$3f>`(Nma7pQsv`Xz&?r)VT#(yB#Q)T}1^jD9T{Vly!Wewt@
zzvcg1;xk0IK<Sc<|9gPa{_o-Mw<F|@08hW^-7<x^*DGrf>xuUPh7%}Vl6`7c8lbZO
z=9NgRE&Y$DKT6a;#@Ax~=4s)7BGP_wIpQ-!w?OHV{9)3g%J)}~xF89(NBU_$Ru=mc
z<)?3n&k)@LrAu=3rcTQC=XDq#62Yib`0vj>T3LfgzuzxDLv#z2F3FGo-K+HfeK^0?
z{!;D#WdFQx#r}UHQu^8vkv2q^K<SdK)L=txRsLIe|F3;j`0uxmiToFl($5i}A-V-h
zm!#e1j$2geXJh()5BvMR6Z;d2Na^Q_&k)@LrAxBh&?9fE(m#*o&#GJa@6Z0evIddT
zx5a0OZh_Jz`Q*i#ja2DtVtfyRKSN#rQ2v`gRMsF;`f1`bM7KcclI-<UbZ1ri(U`uK
zTe$!EPYQn*k<!l-pCP&hN|)rfTkd{Pm41CpU)Kw_f9#3M8bnIp5T7Bs1xlCXvEgNR
zsM5cT@0T!B)xV#=UpKC?9Dj;>zKRCXEl|27qo13Uq)LCHcs>BZH&qO*hyeS;6l{O}
zjb!`dd@26?(_N-d$8M6+CHZdMjmr9Obw8QDc0k&nr%(Og>>hPAh}8cuyNUg{M05+3
zF3D?SyPK-t{{sGg`x)8);OW!*d(%#c{f|Vf(L(-ypZE;XEl|27$JE|?pDO*gF@57u
z;lE$&BGM9(et%Rav0s&lZh_Jz`TsHZ9`I3A>-+d22^}$lbdaH_sDKesX~IyXTB4$&
z6gNU3NC-<31Z<3mz_mt21?yTb*BTWm0=lANLyd@t*j7M5MO`~s@b|uR&a*Rn_Dr(D
zd%yqx`Fzg4({`TceNUZJJ5HEx+`q7_t+an6OU6H4f7G|aACvy%b2?Idpzo2Y9B?7C
zrt}D#^xvz(KkD0m%^&{|{-Mon1$*cp-PD$Nc>AU4e1Hr2%!g0@Xu@}{l=@runZqCb
zOu02^e-iSEb)e{2un%y+g)GS$Y1|+8j~gYvm{WQ9TeaE?_Rv3Ev%O#+<bVrV_-KD)
z{{KQhrT;H7|JTERes>x_Lg5`Puw38%9zuN8`yNRbe|5c^jq8gKQtJmqddvDJkAv`s
z|I(9_5egP2=SRtRy))<y*|S;Q3ryj^f1HZ{H_Pyk&^Q=BKH^`+E?VD~JifoJFWU(A
zK@PZ(xBc{sG5<eQwSU{6$nfX=kNo&8m8qkRTMPE_4iYiksI_1p<bVsg<<Wl`_g9Il
z`j7LO#E;Mm{rHIg6<5;yGx9roOZ%74sUz42IoyG4uzkf}Ci_pxRPkT!4-|x-<J1xC
zfght|_CXGJAeY_z{&W*Qk8fcYRpWAae;L32{&6n+oPV4Pp9eYMLXP=)xAFUXwXO8u
zF72=5Z>^Uc--Gu1(0KqC^5w60Y&7YA)}<0ZcA3ooc^rvf|3vr?qHS8pV;oMDj@bt}
z;6e_%V1qIL=kY)6EHy4C2%pCRx&C%p{_;2=_CXG~kguFPdw@y*rL?{;yI4Q7{-Zi3
zBXl}CIXsf@dS}3eY%{BAEffCrs{c=v%KDeCf1~=|JNam(#wYo%cLrR@&kvh6!Gyn>
z*WY0Gm5hHnKJQQAY^C{a>xJtZHjs};Um-h?4|2eTTrj8Si6(rjvBbA07Pzm{@rTz+
zM%byHC*SqXfD36)Ic%Q^e<_WBVrN|<%Re0-O{~_@)CWi&`;CM<(|k?xK@PZ(nO`+G
zw*T|^D|V4sfh%=<q(2^q#UAO8$6>J#a=?W=D}KUDCjDErSN8934*!K6B|`T3v;q<N
zek%OK!)VV}@<9%`kgM8Xxxs`#MumT*8sQ(M_*j(#E@ZQZetqABe@cH9{sYbWM>|QR
z=xCY)OTO%=s*vS<;6nbi^OieJ_&h$&b!yz29{$xGCkJ-Gg&h0cN3Bixn^gL@zccHP
z_>cD@{+As=W3tExIp9KWUEK8&Bfbj%*kCjMn`b8@bR0zakzv1?<fpv(yTHHp9XrE>
zKj1hO{zJ|9i2u2hX?{8R$0<MduLG;&;vBe;dzybW$b=tO<*)GV|Ku-!|6BQA`O9w{
zX2RdC>>mx#zmHb_bf@|OyJ$X*nI<3Ppf}|5FHS$xgkPf4U+90VfA6iG-ZSApTvO$L
zBh2BywnTmJe@ov%<a0hz^$$7@kq>gv8?sfOBaQX{9*4?zL~fVgAA7a>S2wC}^Em71
zuk~He`%y)#ERjQdMX?WZz=eG3os*6G1DB}&H!-lleU*-n@15Mt27-NJKddb3e<UB|
zfD766a9WAZ(ErTy!(I2T86WzWH*O%<L;u*J4Fvlj2VBVhU-veSf8qJ#>_S!Gi)MsH
z9{9N}$R6Z_9B?5AJk!s(KTj0vmz*Z!pKkwz{tZZf^1v_8rgQQ^4!Dr#tvaij$^Lb2
zR{Hm!l6aLr|H1cfc2n9vn|z}Ep$WA=kPmXeh0Ggx=P(ogwX0P8_w8Ti$4C2H{EuwG
z9_?@0f6{s`<bxb=Aq&nt#n}H=JVDi=1{Wq?Wx~&G+DxzqewdEg2RYzE4r(-Vlu7@&
zi>3b7+cN$0`%L&{_tq2afnQF??1LO|Av3mKXl#GH<tp_C-~MYR{POv=1bg5|{#8q`
z4|2eTJn_iidz<uM_^W(_oh#!%kJC5dm)%`Uum^rQ9kUN|z=eFO>!zPg_!ozy{l(tO
z@pB1_J@CVH%s$8g7xK#6x*N-%^7rK%B6rB}U#!i;u34ALTHkojI;uV%gp2FIg}kfP
z?LV3He?i$F^Cl{r=fHCv&>qb59M}gr;6l!P?Tt(m{vK8SS?5Xn>-Zx`f5)f)oZu**
zL<P7B*?8A76aEjX{Ez;R@n^g~Y@7*yjY@x^QBwakTKtcw_P*?mwFP^d^yhgRp$gjX
zjC_zw=&c@T^7NDEn(%r42|H_Bfh(&!55@hH;YY_m`sE+GoA7yl3Oh&P^ZsT2^gq~^
z`nnI%PgV0&@SKi+@4lMG_P2}-i60sy%fFy`Cgl}v1pBJynFQgFEgWvl|9O53JItF2
z!smG|><<*b%U#_all`p^C4MX}^|!A|wm;@Q=6+9Y-{hZB?eXy++6eYS<R3kHEY>=)
z{)cl5^1XQyh114Qv5IM?2+cm|I(0^A{;b|sQU0t_ENe5B=8l9%(;SZDyN%V?l9@WW
z=o0sK@{O_X)7~5g)GQ!>9{uf3n%|SMe@NdSDSrM!b4bJat|4tTpIMbE0@8^|J2#g?
zaJqKZtHynG%`bopdFLCSd}zWyht_9_`qod02H<1;7vN)FfgjU<3|z=Z8hkb1gdf{R
z`tPIfqCBO43t5gqZ%Ce3!4CL|c@^?<$}eysdyJ?t%7p)68=7DHyN4f56MxKJ`mUmR
z1VIkCkdNd{C^X^kA$-S&Z?{ZO|DtN*=j^+O=Z~kvzq@}R`}^>tY2vr<LV3<L>Fa;*
zg4Oq$@Sh}n@rP%ByH$GnA4B-Dm(#~@_ujAvP55u}_}xFrA132pGyq@RC_@_YZ`dOG
z=DRJp{Q}_*S@37+920(s)-Q5=_;zcv{yKiNC*eEk>)+_RH`<x-e;q^Vzg~tIwRwW8
zU^D=K)Zk?OKf9XppUcw6Kc{WuD^2*hg=G8s9=@%{@gv<s>i9VyQ#(c_@ekpIa@_f}
zQBT58*`JZ;Z$w6CCHB|Q$8Y=RZ$y?JlBmD(+zsnLhe)Fses%o(oOb(7_&k5XqV<Oo
z>)TO2=dZtD{65cJ$ZqJ3A9v?2(0P#4@q3>-a)b$==MPxpNdLYv-s$=SpXUz55BBhR
z?m&pngPe|k)S(-@n(%r4K!owt{M8_Qo;wh=JbZWV0G$Upq&vs~hpsZ_|DSOEiPldF
ztMVt>)|~#Zz7h1QsAl{hv2utp|7}j=Cv6|Tt=2C=yoc2Btt#R_^oD$ETy{gUe@gy;
z=h2k^`_^}g2H?Za&>#IuxUNg!Lbko>H(oy=1%LK-%15#@MENZ;|FPSd?O)D`f*kNM
zuRvZ+{RJ-MOFO4+G2!QO{mX|RO%s3NQ2Jjb^TmM+X@B(A2PXVSZl-ed5TE|-)6;)X
zUCRI0rJw&6EwAA9&r<9k-9&o$@S|zs<2ydp^70DuUC58D8+d)>l=<!3SIaUq%gyyj
zC#<(~<3#sG)<|g&>pUqVN(QZC13tio+%T`4*MCmI-)L8kA5r*1TYt2=_+3WL9$~@{
zEB$M#nm+VT(R;RRUp!F#_w1X=>$9im|G^_t|4bp{l8zryxLCgl_NcD@@iAW*_dhN9
zP9|)GKh}3kS0cQ1iExL!;^tjPn)IKj)~^b}hu)AnFC7=>z=iDj^5*wU_-mud`U9s*
zsq$&y=@Ph*4ZnV)w+a7ug`bFjShp)pspH}txR9+@p8SLf|NgBq-ogI*`f8yevRwhv
zI!=!Bt1A8>--TS<Z^SXC{O@AQe?=1-pEz=oOFep|Isc8mBEt#g&lFND`eOR|?}DEW
z`O<`cIQO47qp=Yy)%R~FGk$g_SrY*Mi)Rzv&s3oZqx&TEh8(rvtfx)*<7j<r$A=$H
z6Tf*!YV)f`{r|`*(;qS6ccbxpQ6Ij2RC@ZCZ=rg_N9pVT;AsuFn(({tpm1!HAr_ZS
zkl`PIzgXE8_79Dva(hww;eS?-72lfh-EO19JbYWNpND!Mq>hh%HD8b?9U|Nz5AXD!
zm<j)EDpnjHel$&d^y4Lg`c8lgx$g76%S`y^vi*Jdw%R`$dPC~^=MAU$SB>_scFzue
z*MuKp{o8u>kEV%_er=!1Nr%uI^4)gV8SDRjZXx}B__mtI2)!Y7{fGCV_K#}l|6}K6
zy-fOd;`VFHr+=FG=*Le|+INC<g8cvenr9Rde#-YZ&)>Ahd*8oY9C50K-Td=6voC0p
z`2Oa(n-Mw>a`->w%-Fb1CjF29lHSmV@_+UH5$$5mf0!3L=!JPa@@ncYa3R;t+cVmP
ze-7b0CwusI*YxmLj-hx%{Ww7mxR7U#eEB64{zi^}KKy8!_!vi>F8&KYtmpOjQ@%gW
zr1>Lu-wZKJwLjU%n)T;-1?*t|J)_BPYtzqv*Kb+>xe31!<v)%OKbj_fb<3ZtM2WHe
z;p<tXzwOgMCq4a(X+1Zml6f=;cgP2wAAdFJKbO|86azi{Xqxy{rGMZ;-gtO>WBkwA
zP4SP`w_LnlmcRCKX8jkdabpPo>c)T3<~44AN{N5#Zly?diiaOf6TiCg|CcT|oMXZ-
zp#0CF^*1A`{$Y1B>mT9BPY(K57ysYyKRerm|2U1`i-t197G?iv0R9%u{#AYdBitc3
z^zSy!gkQ$v$0lWny$Ju~&HC@v@T(jD&hBp+>)%^w{D57WA?m!Q>VE<FJg&fR{~jYL
z+@254e-KV6|H@A(97p=6lz$gf|C`mOZle7+7D?_ujkinA=f}*GJgWMI-64Cu+va4G
z{j;h6*13$v=N}^5TcX{~_UC?Gzy9dg6=LGiqr3f|bl?)u@&8vq-T$wEPWZn9I`RJq
zi1&`^l)43s-0)>+eqrG>cdM6_RUG}hzPNukZxNGUTs*D#C?N{G-u%hNRSXR)8y4i1
z6u3(g^42vMTBEzmU1oY)#Mv5sTn;;}zn?qwC(CVZ#?zvVG)91Twqe<s|24i-%2gW5
zFu7=wt4&dUY1d)7{U=N)#zr=stx9hTF~w7Bu($SPasG7PD`sHfw32*U6H@LJLl<e+
z8FyQlv+}3U$S<KKBk5X+MdK+_F4IbuiDyf~v?^vkYgTAP%b%JzxsX}smz3nYual&E
zTN8>(PS2Z~d~F7;yXivCC@$=J&RM7SwkC&@{w%HFjf{{v7xG2OCWkb+i1MeD_Q}Tu
z<<CEHo+$I$9Lf*b^^hX5Zxi-aNc1D2{VJfH4EZAD{vPd`n)1g8wU0Z#@foq6GJizP
z8xrF)EX51o$LG>_YV69?ass%JE%x7TET5vZzMB184Y5#_kD*>>{DrD~1pZhyEPWpw
zmqX>p{HpOgfA+%dCjGOyf12>IKTs?HALB!Szn%gpGCWJH=5YdsdMfmWtTp?l`%L&9
zx0C&S<5NPt&HC&3z&)78yNMB5^pos>3)#DW#&#3_<79uwH$Ej6fRFJhmV#-0KIu*4
z4vXi~g*5EHWZMPVCj6Bls-OK$abT~kpM?6D_2+dT*;(!{r4I`7$ZMHm6G{8#s>A>J
z8@H92@b}XAdMAVG2MRxyCVt$eaHIH#^)?l)gn->4?;O5mn+bn>Evk29dibG})6>6{
zROWRzvEF3@IN;!f2e0|tw0?0*T2D-D^XwN>`1)&j-Aj5h(QbkM(Xy+Xi_l-q^v6@q
z|G4-4jwbwLXncKayN4fA{q*_^g7BUB%|*_^sEvC6g54pz+#GTD?~17Pv!9$i-F-On
zKE<B~G+tEokH-`~@;ylIw`XU$zd~T#0M@%xmlFcG$p8C1vzgoHQ}z!SLG2TfH)yUT
zy`Qas|5-Ht#qXB3_s(*DXpm?pvX5^lvgurRcn{=)9oLnb;@>!j;_<;5;_f?S`iu25
z$G^MPP+Cg?HKi<v*O{y8I|;mA?evCmee}UJp4I-=7yh=y$NwNBtK|ye&<F7^{z-dL
zzSU<O^#?o$`Fh?LXPflj(T(z-rWF1y<o7{L;UnB3L!3^?S?(__bxip`ue*o!_SEHs
z04`*w2j;go;m@V<8IG@gKGffA|HbOfmXauU2Ne^KG|HdP-|QYW;h(aD;=iwbI+i9r
z+UHRZNGPrjpf}{D57y5z;V&Zng|B@$G$1|wXL9>EeV?A0rv4AFZ~2=E{}IBsefY67
z@u7cJ?c}h_JLR2u|I(EG@gg5k`2XmO{{zkOpTpmu|HAI&Pu3F7BeejNkjQs%;iVBR
zUnTuh_HTHT^pCukC3sy!fBu91htNT^u2*eZ+pZ(o>7`5&X+Z0`(RreMg6>D?Tz3d}
z$e!=5=xDNk=UXZM_RJ6qcgp-HG{_wO3yB{)%l#$Jl;nBd!|!!T8s@tK7joptBW9WK
z$BZJqdU@^Bu>kz2$_RizpcnC`@i9U9A8-*4uZ+8X58<ce|DV$OR*_BAKS1yI+aLK`
zWOq}MyR(Tvdtl_NrXoh?Xdla^^9nlG9q=K)=@&MRPr9G_hoZfG`k!L9zpg*lJqzk5
z050U(<wqIIpLc#F=Dzmn&|ot@+Q(u4MU?+qS7nN;s2F!h>JGS&#c!WoZVLZHr&6lw
z=d};V(!|gGh;UnHiA#r({S5uIz=d3~t3wwP{wFo4{PW?5hNP!I+uzxoAwHi$X@T}x
z(H-I)WbHS~Is8+;KV#=m{nzHNPx%hmnau0D*v$p53~@&)IgHy7if7O`1?UZV{j`5S
zXVQPmja2>;KKe&OL(|hgdOY!_`uFFH$o__YBH%(Uc=~N)|Lpf1|EYZ(?bERU{D`Z)
zm;YdYo2t@3@Grh-eIt|p?RE-bkMP>3L&MDaqkY;^Jdi(Ny$f|YArS7k(0k|;2NC{t
z`u<)yw7x>*3%UQ0KmVC<K9@G0Yki@2%tvj{Nj}%lpf}_}>sJ~3XG7FJ?M(FA$3w%-
z`lEf^Qb3sZ%jFQy_tqV7A=fSZVY$iv1yuex(=x;|)PDo;u|E><G4B@h9d&%&{%a<D
z^*7;PuiO9QUBv%Oxqp)1{s`YtFPg_zvvwl?kI{J!?Vp7F-|1ajl+iiuj2g5%bxPAD
zZ&_WEUwlb^aV71QY9nj;T=GWNM_Fzwr4ZADAbq>nByEW8!%HPWZHjKgs0k7cjEtF>
zOyz4q%=dPZ$)A`vp7zO}m~y3v_mxTPcQcW<uu1HAqc+!`=DS2&-SCDn+_2}vG*7LX
zIn_7aieBt)lf%1UQ&XuWn=@zTP03F@M0;ox#e%#`@<--R4HweB;Uf!*d8cfqC%3&R
zHtLy2&6X+KfBSas4i}RO?mNf=g?W?Q&49Q$c;W<H#%AGs)!k`FnS>QJgBEypnp!{`
zf74{LaNeZECgZ%1P+rma!n~4_go1o!AYbWi71Ac_`N{~?lA192RDOm*ON^RgOYnh(
zlk<7EpvmK>O`9^A+Gcs`nryHgi-zEV?k#$T+J_6sKyITkb_5EiHY5`&(kJAx?{qV+
zKaf9P=7X_cWxmAikfwB+y|%t!k9t~^j@cufhUu6+9B?7OEqiT`Y5w7L+vGo--z0u)
zQZhc;;mRIvDA;qmB)7+vJwoT?cc}9S-D3|2T*!k@eEn+^es^jgWEYuLIezTXhJrot
zqmMNd?13Mrd+gzW3)!XfvBHGk>tuyLPL7l0c1XYdp?~%$Y6l^Y_DGA4*}vX_%GZx+
z{P~!Mt`EXL`iNJI^Iy+Y_@N6c$1gjZ>`fl{5jtiMeEZynf;}AchMav@Pvia%w<~;S
z#l`Ml;{o9x+fDW-5BrO62#b8e{&X)+9uByWqXv|GVzU3dtK>hTt0cZvkZgaRr^)rt
z@?Xim<S}nC`!@;?@)w;z;b&+c1}^0JPoHDl|6w?_&#<%plJSq*f&JmX^l-@!zj2$&
zbFL3Q+S2uCpA9|HQm}^uF65PUj$Llj|4r_{Cl`BBhJU*F;b=?29{AR)Ed_fx;6ir$
z<BA<7{5{hozE~sepDup+Gc5&s;EU%7o4s<th3xv}(H%_qb;3&j@zv8m`c_N99{4%$
zv=r>&fD768%)9bU_#qYkv9KH$ov!|NQA@!d_@Oxz{^a3+3pw@klLngbZKZ#-y76xX
zVUY)ZWMxai9uByWJx6!nYQoRu{sD54zpEGjBdZ9HJn*wuw-oH*fD2jn?FZ9L_&2Ei
zuVSKl@h|o+?MFr)_|f+$K9Gk4F63daZ#3q=xlN@0PL1l}SCFpkfnV_gos)+HE@Y(R
zJI3|j_Jkz9y{W+cYr63-w4CA_dEm$Bm^~bDAz%8i&SNI~KcM1&=)~&9|FWA~3iiOy
zzL&zEJREQ#dpE9sp9z1KivLzd_3WQpPW#W12Y&qNmV!MTa3Ozr`ldD}{0S=jqtWW+
zKNUC8{%_=g@7&r-u!jRK<g=f2Hm-j<3-|&0<2$Y5MZzPG`kzC4&#_1SFNcoV!vPoa
z_KpV`*Pn_~`>^X8$@Uk$pNRXR*jde~zC%8;Ri5LwHI1Vcw{VG>?0^e7`-Z)@ne5N~
zQ?66}LOOnB{Z#xvw2yE<6?-_~LiRXynsNQj3Z;K!j?DjbeDuFrJxG7@aeg7Kzn$HS
z>L28X)T8t3Gewy0v4;aL<axKZS!&XMLKm6-qZd-eiyZfZ`RgCt4;}Tbzk`0USU#=4
zMjra-PNenF$io2_^0XWK9c#j$L*wUM7pfk9d_n`k9{6G6!X6H|kTupkF~@}erBL}_
zHSsI*8VL5l&%KEBCl3c)$PN34Mojnx+vPu;YU0O3q(6D!hlvY&IN(Bl(eCpbO!y0F
zd<eT}HSxn_d-lMupkwxMz=fQA$5$~E{@n^+<W(>H%f>el?17(6*zDne3)yGH$Hwo^
z&fGpv&aNhYIfXTQ;O7t*_He+39M<T1<ND7r8lS|@ensa0JWtx6{?HGYb1tp-NFM!x
z)&=zi`^V3c<CAjEq5I_FfD1YBqBj<r>|f05XOOcdOZ?~ya-<g86{EM&J(?#L?$FWo
zxt~acc&CnnJ+BX&PW$|XZTpSuf40N^qw{6{XVExSzy8SoBC|TsH+qLe{uk$C^2q<9
zvpdij+zyf){X%cZIqL@gVbVXOzCR)tOZ|iJb1&&2*dza~pkwyH56|o%*uw!Aa@df1
zT}=2rRQ?;gSJppx|2@C{D1UPv>LA!--h3_{vk%&j54ez-Pv7*g3BUAMmH!<o@p+!2
zA3xC#Jeu~uAdh}o`-1j@{aFKL_*c+9_He+3?C|)4Stk7DmcswE!2PSEwSPeWiovx1
z0D06u#1MKjdDK7RbdNn8jv!xrZt#&NeC{7+=cs<^%KC}9uh`#D%zefFequrQ;eZQy
z+Vw53HQ{ghS^mS>Anninz<&FqAGqw<g9Ur^2V2h^EZ84H`_b52GK95^&dI|87qa=z
z$BgTb&!X`W>|!k>epJhUVE^1Nn+W!>zfFCz>|y^LI%W?CT*&1g)?Q`O-`XtyVQo<P
zPXK<L-pwBPxx0xEdEnc0%pMN7kRP5hq11%Gs8HdzGVA~L5P3f`rioyWe({R2O$2-7
z|8Y8I4+mVx`ahmI&xC)0s(;3O`w#lVANG%Z-bAp6{*mp(hdlI;Y@>7XaKMG^`RQAY
zP59hD?>f~l9u)rEPtQJqPyO=TR}Xydr)LibT*x&qUY2FT4<r1qm-&AR{t<Yil)Fol
z&kM&VpW_U;kTW05A8Ep0N$a<;iv-}K{3-vssbG)%KYLG8!5;a)_=a?6uN-h8`$rG2
zW5T~vrN78jbNmOsXiIqu`2>FZLq#@u;Ahi4_He+3JobvEQ%v~RkCOk0`u5-R$G_&(
z{>bHf?0brT<oo_1pSR*o1p9SV|6rH>Bke~<9uByW=U!1^Z2vyGtBQXuWJ2Wrc|ShN
zpJ>l^G>*pG|0;A+JHdWZ4)I%<DeT_uTpxsg+4k#<^`FoO@*mCzGX3lL?)MLkgQ<AP
zay{xhxer@{J?{^YPW@+C(TznW`%lFFTQ|!1uj3>9?JwF2_6YxqZEXd6gnusGV-E+r
zLvH)!wu4Rhx1FQxze&bF9Uu8m*^li6`z<YKzSFfFLell1akC}|T*&RsMjF@OZdR)B
zXPCpE$G`jSo82k-{BGjozYi|Jg)F+it8xFCGPVCz=m>N8L;s3{$=>9V|50M2NZ&S*
z|HbJZdpO`iuG-RLo5}u7RsAD!Waao}hm-xu13yZ~?2-SL(=mHE;6grk@sq~y&n_r`
zI+^j2{wy*Cd({8RYty(?@|edSrhDw+fD5_uilxT(hZ`5j@VAaO<MS(d99sAwdOvyS
zZ_zP(=wH!*>YwD{fD3urRlCnH*?$N2|Jp3$KkxtL&wrqA*=KEN|IId{Yl)11WuMSF
z`DX^w_#WzyiGA9}^+EWzu57l}g#V&!_7vh%ssG{=lk-35Uq)+<vxoliX3Ye9=pUwI
z_HfV}^5fGMJY~Yq-6H=H4Zz<x3~!VY^_|!e%>?^7BV_m_Kb89Zb>gy9x|#5^$I9@x
zKa%!es_8$AqBQq+#h0{qJ?h`lMePOq+VuTta?l&{meKFVP57k;OMLOM3V-eU<5j9(
z``u!#KJw5B>FK|&#XH9OUm4Bc6z@_Vc8kpac^s5K{(YzE_rsZfHbM-)KKUGH&>J#i
z?C-|?AI|+n{o^p1|LXWOe9CoJSNg^vzd@asccDH}@|~!?(Byy%S?}CI=K6Od`NGgn
zGycMk^6l2yRPK<+{zJgj_ou;i;6iSEpu>x%@L!|wWBCQ{Uv>RAXW@-f8uw$_N*^tn
z11{uqFZMI;KeaGR>hH{u?O!_nVyb`n$N%-HC4r(J({=LmRFiLr+Qr$!0T*)q54W^3
z>AzEjztuoyL^}Rd72nFf7J~g{-6eu`EQJU86|-c17|N+3*uw!A^5!R7ePF`hr2b=H
zV%A@`{}BfPLCU2^C7<IAxR6(eW?o~$=kbB;95pUc*Z)Ar2?7_g^!<<Kn()6?`bXx<
z{71)sxPEf@^ZrZz`c7X}|AyX>z=ix`=Ofci`14r*jpRF;(;w=)cyHu097#Dw23zt)
zIs-1`>_ZwD*T0{zOa3)7T$X>j{!RPJ`_VpR2l8JpPKK)0FZmp2z=gCj*BIL$W+;67
z2Q&Uq!uQ*I(EuPwiTZzh0F_bX;eZQy*W-n=P4<s*{?G15iT`-*<oqA?|M;%@!u9;Z
zS2IP$?)t7r{XazK?BRe5dF<t7#`<q9)&3g&MdI((${&nF4b^HO*ke4ZLj^DUx4KEh
z_<rI?9uByW4SuNK)TIA;s{RxDmyG{B4%J`&b)tEgZ2wremg_Mt*`agxi|Wby71L@7
z_He+3TpQX^V#4R~sjeF#%U@n6!jF&ompe|C#-^hF#p6`jqyEL?RN2D;7xL13??1?d
ze;bX@b=~>W{%bV->%*jV=}qMI{kWERU4DReC2%1>+PSo?3BQl}{<OZA_UHW<{Q5Vb
z`k%l2@vrB^K&TJezqA(Y;eZP{vgdW*n(+6d{kzPJ&-+hCKg$rgFSd65>#99MtRpP)
z_s>>{bYHMnuDO!Hzw@ITc>V5_^*hQp(fj+-UW&iS@ONU#;g9r}J&*J|jrQN=7gG8Q
z(RnVNBmIeMT8j!ghfBeKsljj){$A>T4E3uTzie)65gXy*$LKsx=fDqNO?*!E@aePJ
zb(WI9{n_?%!f#=z`Jv0y{7@eM7<n;E#D1F~pPVi2fRY?CHc8&@q}~_(Rz8n$n|My$
z7CL^7aVM@d;SVKzyMN6DzLO^Y3rFU=P#CwV<7X=(kl#=5(30>|)(^^|@VEDQ>(`4*
zrT&}-*g^8ROm@&8<1#TG5#tc$Q&gY8fs!wuxsB%sEs6J+ydPKgKVdsPJAn4~RQ7ii
zKJ<a)agpqRFFug=kKLzk$lHlu=nZ+^#w*`s`|I<A2aTfm|2edzzh7n!f2>~*{M~CM
zen?wy5ClRvP;%mrzf5BNb4MiW-+<D8<h`0Sc1>P)0`NoM%NGHEk($pCx!J6L9S#4L
z(vmY6U!R}Q{Zg{<eps3Qbh%mooPuP0=VHZIt$VJ)CFVK9{+C-7(+NK%{yj_izf;4T
zAMYr9ga{;$%VG!p5&tkA7vpf{Q{Fsl;Ln+|o9D--gnzBy2><<>iS+@*6=wZ){LyN?
ztI&S=Ja8fP{BPQX)tvt(@*l+iK7=35^6E`a06x!;X9xXvi;3=eV!oDp=KbjS|DLmX
zlL_C-qx`3ihcB))>#yVAi1^>etUv4y`R4vEcbM#d#B7=$v=gCBVG)4O<AT^h|BLUG
z=`Xrp*4yP>?-#g`TWcO!$An+R?XSB%e4)l6Aw@t|7r&080@<kE)nUT#iSh^Gzk})@
zQNqXi{Z5+ro8FQ7Tbm0!rF}<w_&-useiPxRl>a>b%6c=4*3yx7tZe+1^ZY@H@}I|E
z#aAEXmA^Fhs*LW#L2t-$M-AfnX({^m&Y<-nzVhksnB$*r|Elx{F64O)=Z`hvpHBGp
z*B-vO>VJd(z?x%oO!y7C|Nk2g-$@g{;U|@cKjJ;~w+H>5P53R!RQ(6>uRWDN)}BnU
z@Ok+@G1sjB!lPx#c2WU+8P*$~X)b?&5Bd8QjoAJv`Tu#_DgX1WPvIzhq)5oSYbWC$
zGmZX7?V=cuhk7{TA8;WXG<|{BZ%xVn?;?D=5w+#rqV&JotUvZ|fc^t+lg|gukA>YK
zozp++Wm-R6?2&nIEur$@OO-v9#ClM=w8P2I={ziD2;>9r|MJ=Qtbe?_EVs*5{mZ8M
zpJ-N#>h|h=^UV6&Yb8JE|J@>~f9zoS-G+P;_Sf;hEWG?&#?Lt+89#&UAK6Uhufli!
zNBDoA*0eU`=W6(kIs9Ar^uOkRqyM#YYph`WkcJ=qf$%@{>HlBCN4!V;`>Hhee#Y0+
z|4Q2b(J7*D_goeJY8)EE6Viz$hyUEmWH?5vNdLgUy2l;$P52>-e=*8`;G6(_tY44#
zchT!I{srM9-UI*cef5tZ{FL&K$KP4+W{Jp!GTej4zwy|+XviD?#$)d)=p5glJoYY}
z*8yrI+W&B&S^GbDeSnnu_oH9Z6A`k1p0ua4z#RX0To^m(U$d@!ULe1aw-dj*{=?oF
z@iyCEuYath{?{0-PlEO1#X>XwV)bU=f45QEKhjmjn*_2vK>ULo_vv335q?Vkznb;$
z<*g6mD15{SNURS6{78GMD}Lau4}x)EpaERSOZL{{`PnJ>mr}JSO88hmTl`Dv4_rtU
z{S)>_yBONT&<+NC#5>5bOV64?_&xRSuUc1;{a>w<z;_fr(jBCZKlLtYf9r<i@B%*c
zhU~ujzHTP{b2igIeCvaVYtz&JHL4FpugDbd)u#V%&JZix(YbG(BIpfy$Ay31Y0`fd
z^}k#9`}9}%&>OP4`U4m8>T4J9{z)nJUqJOgaewWE{l#_3_6)*5<z|)t9IhI0VR$8h
z3)$?7AG!S{1^;%^Kl++a|1|Nd3V+~2{*)Vf&x9YM@Q-fs@P!%&2E8GxYkxied1&}g
zHsPn_zdZiU`hfONQ|t0D4yQT9+d5i*b7kY-qVt<1LP5v>Vo{@!CVU?M79o85eOZsu
z@zMUtW8Wf2`o^Ep*tfDy-uN>f`&Lf(;b3>jW|#l`v&sI>C_(EidhyTE(sPjgtBQZH
zALL;J>;H@JQ}VxuDgHVB^smNYA>V`4!yoB=_dJR}H2-KH6%dwhJ$v9n{~xv-zl-ow
z>K}*F__xsSKp`#)A9_RbxGZ*^q!95&viwW8{9o1m$`cu1FaLP_nYD%1$J#8@v$)Be
z{&oCoRsBD5g1P(yZ$(!OdvIq3uMcKx-(N#%{7sbB2ZD3b#4nkx>I>(Z@nI*VgW;?1
z;Pu%O`ah-W|FIGD{awSSe_49^cluu1D>Pm9TYx_#!XNUR>#y5rihtRslBN24>jOCo
zA29+_w?EP)#wTH1jE;}^cc!!9D^vU{C;L0Je?Y?BY}P-wr3_Kn_36bb|F5F{3;i$p
zX!&Q1A5r0t^(pI6`<I~o1K^xA@sGGw*+0$ofqS1caH$D@Kj|NtmIZj4OK8@g$Az(j
z{tu}3w~*Rz#(RPJXj#`fH=5SRbGZNa%bJPx`<(!M?iXhV{B18w{jGumc|-fHqn*F{
z*%iYXU$1}h_#^8xS|3TRPb_XV>#yU_Rs9ckW}5g{+;t7vKL!5`8vkOS<*g6pq=`RV
z)jxvj|Ii<@VsFQ{2tTF%v5CgNIPGeA`Y%dPf1%ooBE|A~&D@FaAK<SzInQnX)b0P)
zPQoAM(?3o8Rrkp7cXrEm@F09#FTJ3U(_f1Hzh(UMJ$!Lndiu{(`F~aR2mY?_zT^Fi
zQ}8P&{@E9J_|AU`U&!PNcv13A!^apu`xIGjp#5*lX%zoPd-&q^^z_euSLHwVn#&*L
zdytR6`tUx&PpN;L^(#@#&k&ER{wzn~Bj1PQaUtwFNg<H`qdywo;p%px{s{azEB-DZ
z{FMB+2dz(LU7nTLzeC(%)}P0Pumk=~)&41lrx*XfoLIr_Zz<_7aut35y-+K$KA97M
z&*MV;_$3P84*33u-jHjfk3PWqmuuxu`TLar&CL>v8_0Me7Mt~7to1)Ffd1nOBr)w*
zi+-Z){yL3J^`BSB{?QU&`4@nX{Yzl~4_3?ghkd6tcwuQ59=K=1>5MN1C&&LU7ZLtJ
zwS_%M<s(bX`rFH-M!-k<54~=V|9B3veUn3Y|DHts>kU=^3RC|}v_maX)<EJr0r+K?
zC*wc)p430KTlU*{_MUBCZmV>brS0{=%Y&6nE2L%O2GdRu2eKUmEpaxjq*Uz*!ApHz
zZp8LI<Zkg`Y1=!5^GXZUOL|+S#k6}vesM|Sg3G$7^wj*KN%R=4eRg8^-WIKsHssRD
zVYvpFyZ9Kx`yApu<od?HbN@?9{_`Sdl)n85#9cD{v(&pF7pnB1qpt58LgfbSi-3I!
zj-ZT++dq1Ar1W${W}^H9rJ7Uk<My8gdil5TW@`SkYYJZfpRvGqFMSvK#~r;mly1`d
zEpf1j|JhL7%NZlJf3b7^YM59jK1}xoo#Q=_E7tYq@h>U*k0yMv&o}<#ZnOS5s{IlA
z$1mXT)(m%j?AUEt;<aJ&{HMA?gob9N;D@uO8Qb6b(E1zE3}63$06zNPf&ch)`fgm5
zC0-{PyCqAsznIQ%%@QY*jFE)ikoD$tJI|#5Uiy4-eEUa>d(8Ty{|ET9>rgn;JfK0N
zDgUPV;X^6hS>ihcxRC3=skhC9zl`ReJ54e~WQ5E|oB(`YADtcWH_~ZjPNpb6hIr6A
z?L1FQw969viC2i)<wzvCON*~Qh453>rwmj3yET-?U(vj4fBeHd>x%LYqU_%tglItV
zk>;VW3qR69970{a9RBRG={{|7ARL;93kSU+2R)qop-KOY4pjf3_0h$R>U;KHv;D<>
z`DW<9upQyixVSc*rJO|Zj?a76lM*~2U-+(HL(})igEi>;X9{bs+<g)sr;z;p$=X35
ztPdLA)=otFwi8$<G)m{?bgsLfn$K{{pB(M`-?@_Tr+WBKn)qmc&aFZ7KsvS+`=}qo
z9j8m@<#Z07ko$%-<o(MN<<AqU{5j$|%Kv;WuJ93(kj+ruYxRv|)%EDC0{1Pz)8&t!
zAIJTlDfpo^$@t-jv_EhmtHQTtSB`)9mYqc={O6xc#*ZH$eyj@o5gm3;GU4yk@Wb~X
znEv*qmFvIj!j~qR@JH(5e}MSnvdZzF`(a0(2|ss5vi-vk9GL#0D)5gR@a-xSe%nWq
z@#6=Ie~;`3(BnPMAFX(X_is;$|K)cl<A)zSF#RLH%X%R2bUA0)+6E^4j0ly#w0|L7
z`~dOoLfL+<<Kq16Z$jsq@Tar=3q1VrLkFgRY)<9&zwG-T4l&`MzAoAR@dL!Sey=?K
z?>v6r0u%lmJ^nv@VET)#@_(?mF5fP_FyDm#;bWTq2Z(PquiXAS&UpPf6aI~Q{`bg%
z=^v@W{(qg+^A;2SP(A%0DE_3%?Z4sNg=<Xs$Li(ZzYkFV^DDRi8x3}EG2vgZN(=u3
z#cxqL{%hZ?*lfaY5lzMqFFi2*t-EADgdXp4K5qKD{wDl2&m`l=4-h|eWaaw5`N4C$
zO!(idO~w!Z=fL!jWSQe1^7Rpqg+~zn621THD_#Es#19Qi&i~Nw1bM<cOUL>3e_GW)
z@6^&?_|XH?-%{g75Z*nM;yFr=Dro<)AO927e_x^R4`2BcKR|q;)^7m5E-!0v^n5=)
z>feo?lHuRu=?N~=@MC8E9}cL0H%C7}q1pc6QUBMh)h7I0D*xF5KVD7z>!Ol3`eA{m
z%V~@EKWM@)SM^Wq4;g;EdioE6T^_2u{?W1c_R~!GO`nze13!L%_|Yox-&pZsYZLxa
z%Kq4&F#N=U=^vU^dHt`|yJtOV!hhoqsXy@J2Z(RatUUjlw`b%i6aJ^F{sa8*lhxCI
zVwP$*I8U~p=<yEcbylsr(S(1oN`JtQR}&xeKtz7!`0d-QG=BfgQRN@-!%tOD|Fb@q
z>8~pM&vPEwVbZ_Jzp4F+^1p?u{Xbq!{5ophmbhBBU&G$IJmc!y>X`69Q|TY`AHwC;
z(|_noD*w4M8Q*eqHLty9{3+WrO!%WI|7QpMcs22-t8wG8PL+rM^5?%i$%Ma0m4Dcu
zG5mD(^gmnWf1xVAKgVBx+rLftbJh2crS?ycR}+65#(|$=u79au5KpYw{4?RF)Iatu
zl=gSdkl`18rh58^(Ql~cq3Q7s=jXJ2<xP|R16BU-d@b{lcs23S4-~s7x%{z|;=up<
zm7lLM;oq+EpIK^uyzsNt)4#3i2al<7NWjx&#`A}4GvPm}@?VU9jaL&tQT|?)oc?tD
z3tp<2VZtBvxD0>bhnH1P|A}fGtg|5*U$_4;BeU0;@E=m;AI5*htBL=nivO60r|XUL
zo1fkFsR_R?!e5O)3qMyq{d3-y`JYoo`B#ze2orvr7o`0Y`d1VGI930QRPp^efB0=L
zn($v%`5*AZ%d4mVHwgbK^#AIGhQ|2UV7aD$HStF({X?@Wum7C?z_tG|>0kC>GJbeP
z_4NN!m49~a<njmKU5J0fthvP|{4dLr@#EFR->>wqs{ViRQ;!+zpLN$K<A+yPPk+oq
zvnI>`LEjuL{~gz);|i1h4OUY9=VEXCVZ567U3SRyXFr#m|98^x$KGxmzyE$x?LUe5
zzp8rr17E21OQ63lTYvhgG5vk5%75U;tBL=5YgPZgAUXc&_@Dljd#K6&_p0w7;D?{D
zp8j+2{nx|%{iA|Gj6P}L62ecZe|$&zzda>GyspOo#jA;b<=ra$XD92gmp?yj-D+(A
z`}I~C|A8M~T|NEpQ|Zs@QaS$FKYw_N$^I>A{0lqa#}5!cR0aOt`v)1n|NCnA;WY=Q
zf20ch+&(*u-=FJL{+H1I0P$lQzMlVXu>P86vVY^n$@UMgt)BijsrsLu|LXCtq<6g|
zO!#3{|4ry$P5fr+`^OqudHmaL&Hl}V-$U2`h3e^FsPIGmlJWKYXK=|K*P8IVKALR*
zcs22FQu&YlaOLIyrQ;@_XTmQ~<v+$BhhMCo{+Fowr?V}&{;TVMWA9flFyYVtkJKOd
z@oM6u{vW+Nx&2Yc|NiekjOA|^RsRQmI9fgZfgcIW|LM3mZ#OXOLX-aGy8hL~KSPCo
z^z+K?zanGFU=#jKRsJRPf2n%<k5~DBRpDP&<Nbyv{EJln3;cLB@#AV7bo5cP{%+wy
zKf{+#oJja7<?mL_{^51i)Bm%Us{Wzo!63YKIi=$_-Awv#R{ie@{i}&ze!FUa((2zj
z{+Rn7`Iia*9+m$BKm2m_^dF1-@3YF|f3wGGjWOXrsinVoHStmZj)u(P4?AppHpkfh
znWggIg#NEoPygn>D*Fe-Kj4>@j4v_iKUcLs?nV8ty7(&n#Ujc1pI-h~)&Bzg@T=9+
zKdApD3kgrj({fvms-2Z}ZAcq`_BYS}JC(-&(R2JC*elvzjz5jRTSqwS>xg+Y-qSxG
z_1e00PV;`@u>MAvo)5iJM_B3x?C{nJue$Z$XkVFLvHrv;3jZk8zv05`&HDfPf(qxE
zvYf~B)-%c1Ep-DD`pmxgbz}R_fbVJSX`!$EI{-i0O!5}vlJV=P^dD*?c>@o6<9x}O
z*L!gMt5Eu5{@3%=|Lzbz+MmO(nf1@Xd>b`C0Q$eD;-5G}et$ym9_j&nhc5lk;|u-q
ze~s$@{77qmiwEG>St0E#-jO)K2QREo5>hvyKjg3vA9VZQ<4S+@|Bj{lUzGGm{WJW!
zS^t5moOQJMj;MbLH4g#yt^<Nfj{I!Sri`qtCE5LCIAZ=wU+Vv`r+V{W;sN-%&q@7l
z^__>;4^Z=9zzeubWwlB`-g2UF+n?+q5<jPKy8DW!Uy^Y@k^jA6*1wCY=SLRF`@rv~
zzCWX@%=KS9_ufq-I#T#AakTW`$w|hKR}=qMg^%^4VSifz=O}sCJ?}rx@h?}|f2)dr
z{iyxNF7oUje$%Y~S22~&x66J8=w+$&hk1Bmbp!DZe725wyFKHV50dsr|9hG0|AGDE
z0r+7R|6zX>ydr$Pd|$+t>EaNDZz~D>g;RSS&-h`bKk!GqMDgFR|66AL-@8|(zdgz6
zFQNZt8UC<0;-R7;x-Gb?FUNm<{=r<W{EY|TuU6}g=<&Y{`HxzU2)K>{2A{*v?4H#B
zx<Q5iv()|^YUIto3~w;&zrL%qvprL`^T7VlKlHuSAGmeuNdmj;O8LZ*p<K2<#=nTL
zOn=u>{%g(25(S&3ed7W6b)HrBSNSaPUtcA!+utRpKj_^_*<r<>cV6Vje@*E>m-0W$
zp?M6d{t<rLtbY*x6qPSp*CzMBQK@d6i&L6kQaW_nv?;m8`MLQ;6DAi;8Z<etP)`0i
zs<$<PPR3i~3-XGrg3{7(S3W;0zl5gcs7X5`i}Q*~!qbXN=@MQ=bAVFc#q)9I87W*e
zZNlvHiYJ%m7fTEV>gHWMyELyfzqd8ML?ODj#}`h{FDgB|v^YO+D%~6Jzc<jmH*i`}
zkzsa`HZ4enM(X<9cb#+HAk+H1ygn|w$V?e7PAs{egn5X(J}!IAN96T!*(c^D()zf(
zM(*)6J%?SC)~aP6<dBXahh~?ZVB*K?=d!bARnCvs&t(sOynZfw@Z<G!*@It**4AYo
z<iHEEZtEMqF!75Hm;9ouWc<|a7s{3QvxkuV$XnwiV$Oipf_-Oo4j#vyA&<(3wifJz
z9C$%qvHjG;P5gNN6+27K`>M`7ES`(ypNGZo;q{?;UJTE}a_3_4MS}w`$Tm-YXWXBQ
z*9T^2&6eTI>kwzrIm#8RgKBSWDA;2?UWbm^V_n`59kV~C3(Zq{Ia9>v)B26%gB*B4
z?#cRkgUNmy=cqR<m*tYq5A(#L3mOXclj;)wZM5Fj^|Y5U`PYU?d&TG;d(0n;(=q!X
z2VRin4W7Q<#E;h(W@o8&g?Sxell^jbHl+RgJp0Aym_6)g(=q$bwEvg=G3|%7y`k&n
z+f#qR3v%6t@ei5!sb)iAua@@Xd2W7wACkT7mojOMpcbw#`&?p0*0&Jst%35q?9~>6
z{SDpaxkbn9gB*B4zSU%KUlYHpN6GjXIaQXsIzP<As~AoDW0S{xyvWI|1bfWOb4Jj9
z+2k=lFDIAw%O)S>zzg!_C$IjOiQj?&ir+nE`+;BinpT26_?16T=j6dJdvz<p9{l2T
z%s$A07v%VP#~9bwuPd8{MdWCC5c?}Rd>=ht@&BT+h>*v3beT9*uooXEGl&%@p9h_R
z7i4U4UIUZ;1~~E!c4yUoePc2|j(_YzS9Wmyuf60setG{phxf;wL+js>pFB(6iOuUE
z*atcAg8cl&qm28rw)|1P!MTtUE;(KY)So`w{pr*^M81!8L1VNxH2bFXFwc+78B6;U
zlZSmHbdP<I124#SSFHWaWWPd3z9Cevz&+r3qJDn49c6w2oX}VtNm-`OvtO+z*z^7p
zJdd#|2VRh$ymQSRCVp*($Twk~PF}~;&u<WgFVE|=PU`6TSB4Yck1~Wq6Pei`IYQpI
z={|dl^x@}2bj&`;ffwY!!&~N>`0@Nxb`dr2wX%7rJQr0^kYOGw|Ia@UmCyBgsC>=j
zzzgz-o>K;!`2DQ*#|%wT_3KW_^JL4nP<WBOA|u<oe$Qw+r**K(&TQ}czv?BUkCLA;
zB6d!D*C*fg&cF+@to2;u{(<w3Q}u(UGXINe^LU@~Ug;j)evG_Ob};2H<m-2q@hy7j
zp@RLJ_;6`Vc@O&l2VRg3=d2oKvR}7jCBM*n(tc4bePDl`vVRjF@?)-}xIp`zgdRWC
z^<RER;m!M>Jw|J<v8QHcP9L$Qhq^w1USj?;_}zHEdH*Y$)?Z*}caZkudA|Pi!TWEp
z%jwt7^<_2bSzmrLue-dD-`DQJQRNc6Aa{M;u${?%KdSsMdU!Cu(Dj)Kus^l@rP1|?
zTkb)z`u>P5IZUt*a^MBId06|yO#EIyU50OTtK?VqUb6jop1Pp*;ovgp(4W6?{vD(I
z8LlbY+xI-K>k_;muejj5H%$DveVbiGwW~+y*dM<Bc5ZI#u1-5Qw{-_O+=2Y1bo)>f
zzlLi6E77*leHE`W<>!}(e|;$ql7DH0OdnyJ#w?THyf2x-2D;BKMEgRq4|3oIdD7;k
zr<(ZnQv9qhWct<lm3Nc~Wnb11?3<5IP9NB>4Lq=4TgCPoRDYIn2lxCEydckO^O*7b
z?e{GC4tuoOeq9cd_QJa>I>~c~)<|GKW}v!%CB;GV*<^qJepmRPF2M`3=EGSxnCusB
ztaMcEcDntrzgPU<^i4)SO#Ik|9;7{X$nRD4smNoQg8d@OAKAs8$aK9tOZ^2e$VEFd
zJ~HvEm?Zhd7MR2L+4{-$XxKnv*#)#_Ci#obl;?3eW}jP2-JeMJ$p<;`g1qX4Ugwzj
zUGl4X-)}O1S*F$h-28<esknpozar1;v2gfhFRA5v?2i?qbM}jm3SyLe9lRiGEPk(z
ziC<PNX}{1-(tf;7kw5)norp5KwqV~*)u(~hq6_i8#>@Y(jzl><%Rb0~7v%jt<{9JP
z5+V6n<&vLue{%gL(k>aHQ0wR0P5Sx!{eJtF%41)7ll*V*47?!o9vu0($$tAXBtLO+
zf&1r>#;=an{-du4TXBS}9{`#62W00Q)W-GlEcF-dCy)<DdTyrmNmAAa8%pb=Ik8Mp
zpytO|+b6p(Q>>MBX$t%0!aeS!ps+p|_6Gt3e9ve1Jw$|0JOr0hBzQq~eDeJPru9?G
zM^S!T!&^Tms`ybg#dVNaKc|Pfj&>Qe$Dkbs?JqCap?(=(JxBd5A;1grw9Q+JP4>H+
z+7F!VUi=R2Fx!v!mtmX2enIP7V%-xlzqyD%)GWbAKL9Vpzav+S;Pu~A)}IyJKKZ4`
zPkd?S7ovKNpWl47{wBuV0U!Lrg^fh+eN~4q_znE)@d^{aG1UGS^6`uOm-tyz8;OcE
z_`!}JJhkUwQ~axO7+K{|s^pzD$u)t!Q`!&l4pOX>-?WH-z4Bzfa>H;+zqGE^tV>AG
z`I%z>UOK-zQ=D`M#cQhf2RZP9y!eNs+nV^T>`(lf()X>J-xLer$Ls#H1HZj=5IrnQ
z;QJWg#rPh^cW_nw5WXXJJbk(;d>vYU*ZH2x{u=aQL(bV{j(>4l=gJ@diZ@JfpV#AG
zbE=P7+#b`bgUIgQ!F|T`1G_=qu>9C%Ci^v_YL(q0Lp-GBSy{Wy;roy(s$f5~OGk(T
zm&a%q??i>8HP2fo%fyYZffwxe$GVT7HQDbwYJZOWMESGozl$n<GBjnH<@XiPcb(sU
z8*ek)59zo3r)*LFn)+Dc7ibRrAoqN9?qcQ_QT^)}-%<E8*>9hhzl6Rrhi{akx}RU)
z7bQQeuM2(L_9SW#&TiaHl#>r~up4CmjjJ9fektouUQwflu>Q#O*1!JR%#Xi|{rnQ+
zF&4{u1$dx*i_fzJ`ydCqK~6ezBFDcJ`$e*;9QxDa7fF*}(EdE&C$_Z{p+3R<U^mF(
zQ}5&b!&2<Gw~*G|^6|63NzZ=Q+#<s_HeJ?hVJGmj7FdFPkb~VI%a1?K-QP)%fA-as
zztr&7_l~8>FUWpq-^%`r);-(QHi%wI`^$4n*7E)@DfWBdI*L`99zSPKdiKM-kBC}#
z1Vq3uwBRtoKFGmtkZbCWY-oyq^QKbz$nyAE-=@cJ<#Q_iTFK8Nf2p7YyKeg+dMWm+
zd&j?c{qz+3-9C=iJM{63rpYf;#XqcD0wTy?qCZ=LeUO9QAW!(}-k8aLXO>d>t?Ah>
z^j)$&kgw_aOI7x>>(e@S<bxb|LEd&)$wMZ757YYp5g$MCeR}+^Q{yg>KZ6Ii-&=2F
z3abIN|Hjf!AJ5i0r;jOozs@HM)$;5YNt0hy`HMK&60QevO~P)Fb1(VyIg|Z%-$wN|
zA3r;up8bOI7o-oTVSADDC~*vM$d@5+-SXiOll?{x5hAv?j)<u6iUshC5RSim6KY&r
zWO0GZ0P(c>;j+FOKr3+>c7wcP#FXDn_H(HHG;)Zy{<QOh*?zqKw4Yy9@y{94K$O>1
zjWr2Y-T`<)K6=dJlT7?x>Px82vl4%_el+vreY5@is``G*{*CsFexAo~%=ZQf^&dYz
zzoca3v?=*TSX8+E#U;~<dW~tH=ia)ol<$pc-@dnX%B=8YTEBQ$(b@Uqc~xKwPv*-T
z7fzPXxo;aeJDjh-(S6m0rF4hh$HRntMDhwJO|xd5kkhm4*^?&~<(1AT&hJl`XwXst
z4L>T%n~Jyfwx&&<VC9t*9oO}Yi!RO|Upj08jZ>ODadLifZ!0|Gq7nJC`H%8lxic;*
zoIGA#Qtv9rD=DzX7taotPU||9kBP{_qeqV|DJ`BczSO$R`u~>7wMUOW?!^E9kV#mj
zWOmW`uBXi?&7alVx@h+493WHk!lUUvjc6O|nvV|nUjGRbip}?AM6pUIPtET-l71+_
z{0mV}<s1IHC6h1Bm+MbcAbBZ5CXJ_FU!PMuBV$QO8((|J&6NLqN^Q;IeD}f7FEah$
z%NEj!$@kb&h*4@@yU@lPm#Oa-T-SN1zbEPsINwy~;wCiye@Ud9<bm<e|Do@9`&X(X
zDt_YE^!U9{A?r8b0i3}q-xS(-P~3;iQ3sur9P!~#d7S@56~8yt_{gdB{b^l8`M2U1
z3E&rr$rst`eHbrmjZOYOf&DOEJy$(nmDpH#{&Lg$!TIwk|9-&>1^YK?KmC2YemH*x
zBELmBm%X;Wh}~0PU>~_CooC-$UtmAEFr5oJ*B$I<sT)77&3%ULhw-i0-~PI7WWN`)
z68p=?6hFi}NFKMv&USyPuSvzT*eU9Uy52y$4j$@uLO@SkczeZX9f@Dc`14Q3Q2hJD
zTYucyYmR?df816td{XgnwDfVmihsDS^8g=99YB86tkYF&KkN_iyo!H=w^Mmf{NSv8
zW`06e6B738BV;<WSIX}@yrH+MheWfA+*ej*Kky&)(oy-$&(Yc!W>Nd4{U_c|T!Z-0
zxE^-4`zu6Z-Dbr@T^7e{{D6=9khl(MN6-0*_@%5b|LYILiTGiE`_S*weznw#AhEx_
zt*&#wPHa(@Sb7Y_-_}(B<$j4Znc{NlFA;Qe#aDDcnkg=rPI9o9{?y-vr4GQaanmsG
zKbc4$7=NEh{fE)NJo|}1%;B4(h40;J|0j$a1#bKqnJ?<=!Qeh5c;Wns>-TIWektjr
z;V-2BC{Mpgn*2_yA>$wNIpFBLbsl&Q*XyVYHI94nHGlj=`H{Vo+AQ~b_Ot&?&wd@W
zcm~|Y>N<FX2kt}Wr~^yMiT9s=m_K}x|GjxBar@ij7YpEr{t;WfFI=F?>vqZc-y?U(
z>(=4&I(VqRB?PWp>PoS7@U<p>!@E)Y!aC|J-7Djb^OxCvI=@TRycfhX03X>YnKyXg
zJ|wPN>Oxj-2i_kbkv?EQJ51%<D;_^<|3BmRVW#3YxN`etD_)R$cU*Nd@k_~HVm$sN
z!`J_%_#t0`)a{4%>3P3V`l9yeNHyE3!3*+^dYe9C`|0`fB^16k@q-Kfou2*vY5ts}
z04*i6-<`k56u!CCziYkfg|85@yaHoL-F`vwZ+ZRn!WX<CA3kY~yFZb0y!`(PRsLSj
z>0=Y^kFC;2Bu#!>FkkVO<n+7YPMOXkYP>)2m6;Mkw_oA5l7me4yP<&6htGa?jelmp
zt*<7RAK;N7rVdbVw$yo1t6GI7ez{G^e(SyPjr~J@qgG0O=ywX@hwI?iy=4As6TexU
zzr5!0b29#!{jeS%@<s4aW(pKP4Y;$=RKK4^_KUopmH3~PDfuNXr~^(Pruu!wi>*Xi
zq*bDR??hXPD4nBzpF`*6bgnx~U4X1{<O(-@%k=a?{Gz_}5mo$<ZXxyb`^k?o9K`{q
zkC5V*tK{F?vO4+0H|Juin2}pV;VWu_g%F`EbNF)qKRes~6=M4ul@8RrYIRu*{77Dp
zyd=Ntg2Fc&e^9cUsLAPfNrkc>>MzgH_ypU>Pt;70U&ZG#pTfLfz)d=7qI+1~`pd48
zXLx_Ul=8RMWn{lvp8X<e@>|zN@`xRooc}HABCkgulNH*k><2rxy!*1*%ug@h`gfqV
z10O%TR(kgPr{x=XL0<5$`v#i$-OKYsYJ2vJ{U7r~{rTk|PIc>7uwNqn5x=O9pHn+M
z`~B1Uv!x<zb0u?}GpDlsVk&)LeTEHezq;P~2v(i+_~oeb7v+S45uZe5`o(qdz<o%>
zOUPr3+VTETEh1|E{M)L2Fn%|Ee-J;oXqx=$d?R_pHciD}U3r(vUvM4xNe|IUNL|QP
z^6U-A@%WQO`bGY?vWUXh$1haZY(JhC#LjkqX{)#0=KSyO`ZE1imH%~8?}5x5bqw!6
znc(+|vR_mFKC0*0Pt;3~-^HpPg>^3!oanJk^2T}$LH4uMA0W3sc^dCe-Xhdp=BsFb
zX=zjc=1wkIrHcgc3%@7t+v+*+i|(feM4!|9B`n`P{~^)^(r@zzZ+eOOg%v-f-z=IR
zV(+5yHhGe_UEgd!onO%SlTmA>{cP2K8pIFbiu=pw?{U9>%M`!mDtrgcrnZ;ep8aBJ
z@=JtcE7?v3+q72ejUoL8g>Sa{1Eh7&n2G-Qhw(9;PNn+kSDyWx2I<-FU+O#3+FSr?
zuKesBX+K;Ce$qp9;*0U_t(!*Fsm=AjT&?{+M)O0QgS_=wtb@|ycit<Khh9G@!Fu&-
z9TS}gcrH~3h<`)+tvu9kKg2(q;$P(3I*IrfO_N`()yhs6$a)mz0<L@DeR&=0DO9NI
zy3pg_nO4|M9}zA7HNTMfeeH#Bs9}2cTcFy3gcko2>rJV3fO2$V>KxZCb$;B4(R2Ow
zL;J>)T`7Hh<M9&*r^gTL&PUX`?+F@lWj}QtJQDZSLAE9*9{T`~A4_T9xOO`|=-Zz%
zqWINP|A)l>l(xE#aYQqRQ~SpAq~91h4v)tNhG<;lnZ?weO5-lEZ>9QMLRjhu`C!v|
z&E4_Q;slw`p?<*g3!NeKeSVs(XWH3j`|-R(cDDN~guZU2x-9mq^>mTHSh%4{#6R#G
zl5zG9H+(gI1t(Ma+pJcCUo1_2->G~K^Cpo#`urrr7wOv8c;Qs%mwE54Gnt>Q@yp#r
z_G|9(a}G(*enI@AQ<J|-g81q2?~yBVczjVx{eIOh;<tzTFLP!1T8+&7oM>|RVqNyo
z#qxRBW#G}0U-VIV9XxO!64xQ0?r@B|f48Oee|$spR~#OHtXworet&jW-$4&aiT`iz
zrLM0pa4!KL_aQBHfcSUTp~c6r{i0g<w#}saK{JnEsIl38*)*?|o$dY#am4E~o*^Bm
z%i`pZldoI2p-Ef^|MS{cxZ~S&`{mI5hRC;G{XiU=9=`{-N*-2Ga`@I&{UT_80lr30
zz;2KSwHR`Tn|@XJKBMX{r8IvuQbGIqu9Wd6k|w`ix2Sa5U$(abf4Ew&C^B5dXWY;v
zctg&aywh#J!uK2ckFMwOsm*DAsv5s-H!<6f$8WQ<-CrT}b=%ZsfpLvhr4LK}0sNjT
z4)68b5A~}zd3+#^FNcc-@C#p_%<rFuFL*&-b>b15{QO`)p1&L#R#QYjQ2Cac$BYyM
z$@7}o+3s(!{jeUAy{_`~i+BfqCAaq2!u*^QB@fu|6AEAJN6&s%GjsSZR=mIu?Hl_1
zAAGl0Rlm2?`@nDRPuDLs*{}8xD#uIfdgI>%_!SJ6F9g5O(0{J2r#Bbn-aGQU82E}#
zLRjjkj*`b_6s+*`L;dvRo2mS0RV%?S)ZA=8o!@|aWco!u0^p(Gt@eA#!3|9!d?Amh
zx5mw%BPx8c{@_~{<u4!C6bpAsJki3;Z{fKTz*acVV%;;f9vI-;W1hr9nePPI57!}E
zJ$C!Me)}Q*HKO?g(VxBe7YX1OjY$T!B7*O?$g46PsLP^Q<<HTVD^DMm`UC8D*QVTF
z%&%P85B0xUJE&f{F$=F3c1yGURP`W{e(@cymv8SW`{6oxBmmSwCna(JkOePY>9-&1
z_j?`Ux4f2mn#KyG$?rq;{b9wD+YeT#b`S6iihsBcemmY?e3yyeB6@w~eb0VQtMu#_
z#INxZ8INO~W&8t=gaOn6cp-e>+|@sW`Ng&HJ(1#H>=!ToS*_FKmuP>{)@waSvmba=
z#c$v<pR8ei;v|_rBmU)XCVnfu@QtR)Z;-MR!V&n3wRwF({1E@@s6Rf_`4o5lV@UBs
z{<n<QAF%Sh@C~&|&wj%dkI1|7`yBi-RlKy-xF;JoG>LErzkUTjpUn0PYy2*t@QwKR
ziNpRGzc*F-wIi~ARTV$jvHOdE?P7k8;)nHVpU9x{ccN#%$Uo#4eOjgugnPRDiu;R?
znP0iauZ-efWRl0vZu`&d7gyn1U4CPhzUF=(MKylk@1Xcs;PH$7Lw@gQ=_6hHowT);
z`~4f&__hC%>^Irt=UD&Dey3{flR^BD??EnHwEQ~`Uwj|o`{QLwzfPYFf&Iy>cIoj8
zn%}T+(*(iJR^_tgo~8a|t4omgOrOs4M^oB|A{77ZlRbV>#Sb|mq+b3Gpmn@>9VM)X
z)$cfZ56$=PatU3hdAB`A()lZyqUaRT-?u&sm|E%p_B;6U5BswHa(g7_&)?Jhf#~nv
z{Jl_nv;BDf4?Ela6{2NC+6n1ET^3!_tRLXJ0slKIyV)(K_T91?)PCTf|ESgh!v7(4
zeglzCwehD9t8v?CAHx5^0}|m1Irrn^zwpOD)c<&WqR8-?iTRn4H2JMm^;4@!a{m^-
zkDTWUTq?i^FGz$d<gr&B=GI>v6~0Ixxx_Ep*V{kK?wDTq2F*Xy(@hXROA!UX!6z?x
znC)lxOpbr2()>MMkpufn#nR;WPvakWqx_vd?qqj<X0GCg`hi9BGp#+f6Z{;t&J*Gd
zq#pnDefJP<cA?ZC@ee$39}?FgYy3OIT_3?w{P2Cw>rdGuy!dAwkzV*tQ|SZq0DwDH
zr4Re#%D;~guCU*-@RGV5z7frSW&P;;?ISOIqiOOB>VF&jfy{ScKMTY)34V|hx0JZ;
zYvqa`(#O7YsC}rvmp(#Arf0uL)%Z@meJ$Pe0ba1*#KSLi=Ra0x_G|hR)ep9M_7k1b
z;|Csk{+zD;Iw^aC=k90MCAIIOe&31sMSb>*q{$ECz;u4cte4@7{i1@xR|{@Y_my{Q
znZ}28q546D><4EbCGCfENKU`}6@~P+vK{F~{Vx_x1d0CGR-nJ8yf)1nrSsu^=(}b;
z_1n<>3Od&v><0PJ8;#xXH_=O`f5g8==TiALz>9w|#Si%kq@KV0)A*<JJ?WC?q9*&@
zxPbD%k3IW2N2g~$GK*V(2_Mv6IDOkC#@AVN9;S1QudASWxFI^%9l`<Wqt#byTX6n@
z_Fd%9fAuGRwX;N->fg7HF{h6*ZTtb&|B3BMZa-MOO64!A{R%vS_~HJh4&xpnekt|8
zIK@Bvl#Imu)~Mo#dLLv&0oY1L*?wHl<Mmv(WQb06>74d+!FngWUWY^V!LAfEQNubw
zmU<6lgWv8w&&{7z{9CEo@261zhc(>`-%w|>{UYjpwvwN`CGDiAU$h&A)Vz92J+BK~
zhs=54EBE`YLgSa~&_C;X{6rTszojSAbL4FISBRkYgLL^J-6H<o^70lQ-`+y>mgyJq
z?^^2raO!#dA_4qf*Z5)lq;9`$s{PN(FK{)nls>w^b;Q5V3vSF~e)v8@{oogBKaCMT
z>|bDaHQP_;hx!59F@Qf;)eq3_3w+#%)cF;3|B~mICHSHKT(2E{e+=>Vmx-mx?_%|x
z;XImLe_p&?#>-e|*}f6P58(>F^E;mL8}Ykd-+v?bL+X#;QB$yeYSP1a-=7UAuF>}y
zT<ha;Bt+THx}tMEs`t>kI_#pf$;GZcR1T^0(5|}Tbnma;AALtXRFs0Oxa0R3uKiT}
zbEZyrpWZ~{*COrfCc@XsNiTe}KbLlj#^m#|_eO}_s{PNpLE10u<K#bFsZJo59`)^C
z%r8gr+pWeIccuQ{(BU4x=zob{^sdVJ^-u~y4(>nG9sgp(ep96Vh7muDGFPOJ&~g7A
z`#I|?=Qm2(5Aw{8$Bkn9<tly?l>Oehkkaqb9zW6Tzr#;#t(;#E6+a;>_Geze{6dP~
zVzocg1hQYGi^nhWU*Z@0wsL;6l>H!^IJb9aeqqILqO#v^vR^32<7XfL-?5)9Wd0nK
zKJ@(M#NE$+!1KHH{N-jUf5lK={+A}d#Q2<IX(y!3M7~%euj@SU9P%;9(>gdw^9PYX
zx262q_VIJNr)NL(lVjgi;NGJ4Ny2sD<33~$bpUzAu=Y2&;X728zdKd^Wd+$U(#Q*6
z>xA_9)mQ!5k=nBSK>qhSzJJxm4<QiJBzQr--SR7U{j;#fuRGZ<*39D<O_N{euce*`
z$`5u$_%C19+MR!{*PlZ)z9c%#D~v)Xrf0vQs-9wBnjHTMRQq#P^DDp)a@xMNuW<OH
z{(|`TDTS{y+)E$gr1bb<-|yHMnNAUWOP`bFo;_Ax2R`mY;yR@B!QF$HAM6Ky!?^x(
zs<%H{B!C~UE6mPze}%Y2jeim4QXh3$T&7(IKJG)}I%JbOX8*zbL?0P%Q2!gp>Gw2`
zpWVZ3Kb;@ye|r1S^iQPyoZ2$nfe&7g`t>!V7xDMo64(#*=Z!Xnua93WO@21QQH{d}
z?jkjR0pmAx9(b;~I)H34y~7kY{we#ReWQTpciU%p_H%lsXTL=Lto5%Z_G480p;{oM
zN$`fecIaE>rudh?lj@f~epava_=T6raMa@;>i0<3z}M*UHV;XzciRVMa`{%?U&cR#
zZ^s-;AGx0WqG|GL^^!`bTKj#1U#3jI$lsF4(236b;Isc;Yl?q;czyD-Jbt0x>De!$
z;-Ap+zlCbQNnF=?fTyJnaR2Fpvy#>aLHcdhpX_(G$4~T0k6$AFYW$FXtNMNeFUT9}
zUv7+l|DpJ2pX2e1q{(lv`hK(SNzR`W;j4H9A9jP(!~NFAN3A#2uVzsAIzE2($?4e-
z=~rBmT)yp6>zCLnUF$r+&%%L{y~a;}g5w|7FG2cvjq~SoJ^RJd<Ttd1OlQszsSn^f
z#8m#QuIoJToNm|OhxNL}ls?u`{^$7kIepW!-zqge4C}lA_u7pr->D*e!4Gm~uhVZb
z<$s@W`D@h@*dNsDmma@5s+}NmWpevprs9q3zz2Uw2M0=a?%j>sUzWtR{O<=2-%(!p
zM$_bXg<4-Wc2)BDlE+lOXl<17($;w3ROkKHxzF<Wu$1z*JMVum+T$0p)3YD?DeZ~L
z>GvzeJEE@ZJam3YKhHedf2BWskv^WI@5`u<pXi?+zrR#FMoi0JGE~1!Rrxb`L%#CS
z>>vI7kUzI-Pv0Mxc>AM9(&QJkUohgO*fY^J74Ts<NZ1YM-)-IyGv$A$5I=j27ryp@
z^z0Xu|Ka<xs{9Y%MUWlquAIR3)4z{)asKS%7fX{Lcv#rLO&J2;Z>ZOVU?5Fe>Kyi6
z_wF@am><4B5Wc5S`5T$(g|9O(J^Ll<r&|5xq)%o3hjqJvuhC14zsLR210!zzKKJD0
z`u#yQ$$n$K@U;e|$1hvue|r5M;f{7`;OqQw9kTHWZRGecZT^Qv{6c@!N#xJbH2J-v
z%31N9Ob5U(#rJud<p=&Z;McuhQ~0Ljf7ULlzg+0qFLX+J_FIeb#ajJpzIGk<0S`$1
z`Y%UZUTos`?RgZwK7L|wdi>g={8jx3z&-rF>XpC9XS#H|-|aurzu)52e&B>W`$f{^
zhjBvq&Hz7s{XgAKcuv25)h$hU{$NV@Zldzdn(d`uTh)uu;sL3D|JGLh(D;r7?(H8)
z`{BCI1JCK#XAixe+fP&Y6>|DG*y9)bhx{T3$WP?1=Jgp;_zj@>9}%DZoT2H(KkPd%
zCMDMo(k*}GYPztd5cgg4TrK7o9+v!lxtqc_a;axOYgl^xUcOSk$5Q($q5bc1H9pZ%
z?aw(#03H?h2;mEP_}2Cp62C<Gf%c&}6u$O&FMUMQ<o8e8uh6am`b$3Dcel&0Z?gTa
zrSi?5;PDF$PtSfkRXjsE0rSMaROv&NdlqhJ5_W@p_PgfyFhArku-^pApRMg)_=*wf
z@k`XBen>7qP`?-II`B1m-Uj6AM#i9(CvyC=2PNC@VG7^KWgfpsn*4rK>u|-?^N4?c
z-X`rAS}yDNIVr^C1%xkdhqEJs`IT$@iYWa$zVNkAP0xO>sq({8-+RD`qFhnqBP`s|
zB<u=#<<dS$>;EBqmvZ@=k6f6>)CBN*ytV|e6;52WKZ|pc^Oqs2-Y;6q>%iCOrPQz9
z-f)<^etJly57hs*Q2kj<%n-X(dElI8w%=~8eYfB_8IEWN2mV~uK8bXbF2A19w+6WB
zL-B+CqVuSHyV6^q+&bONkJl$>XS=^boQd|e`;+a5_Q|UF>AYu^-+4C2KcruLzlkl>
zK1uf5tLzs|lV6!O4oA@zC#v)TyXrjf9P&M!AK#+ZP}BF(Emu*$yptuCsrIOlnlFYJ
z3As#*e;6mE*PpXh{R-nIbROWNx1X+>eBypn`{@Mgp0XNy{6wxfe06^KJ{Q{jH;jJ<
zzaaZLiYW4##~a*|G(Q>R*B1Ut{I2r&MbhNg<3BPV6?>&V$p0+$eQy6H^S=-brb+OI
zeLp;<{hgdX@coAP_a@~pBAk&3U;E7J*)Q~ba{Aby_I1MeQ}EE}CEB0CuWh^IZ+FwL
z`aS}`J;cvGG%NA<SO7oXw~(Ff{tEF2#=oe37<E}B`rlOf8^o`Z`UArEtoL4C?zi7l
zs(*D}h}vJsesIoNX8Y;<#;lR~U*wzQ_AB%oqW#&zi#3Vs;6G}~7cctxA%DJn8pWLH
z9zW~s^!R<N>=!#nJ`Z@z%LG5*<38k}I8gGwr=FSWrr&<a^@E@1Q2oFczR@)KRb@YG
zu^gXmX*_VM^S*Ll=1aW(y`De6OZC5~&wini>Dljt)iQjA*1m!8weOJW*NfR;CS^GJ
zRNQgXfYX>?uGW5fFU3Dm?1isT;e{)Zdi=vYRiX3&+#1zCZP$|N+QJP@Ca<a_#M+NG
z4rhM0#;*^pFKU;71(hXf@(Z%x<x8YpoduQKPq*vLd&(a+?Qd`=<<E|fpM7q6;fs7k
z4`0k1#dVzr%;=~C<bQu{dG{PnzcDR+ET;8=ou*l$&TCTdSepET#&=@fTU&*L1wxwC
z)5oQex9StWl=QLZP^w>D?P=+pm!AFVsqaX%69E2v6~4Hx^T2cZ^=F#y{no_q2mb!>
z@v}z#Gk)_`{kbZBLlse5$z%FI;f@bO`TMsjKh{wF%9@uY)~Nh88o+N&ZTTX+ufCd}
zVr%OkVBB`}LfLPl+ey(8mO4QE8(F-7$7iS14{p1a`0e!gh0ZtIPv=*n_@SHtF80Mj
z{U8T7H0i}Cd1KPCzi%_8-(|FZtUcSyU&IAwe$BP|!2*0AY58+qv`?z*IuFqFA-b35
z)SKVTG(Yck;^z=Q`!HGVMFRNQ+WrP;KaFbq(0+>RIuG!()B)-*O?I9>hr>6=mOL<i
zV++l1v@fN397oA^0DH9Ae!M>tJKOyYUjIt}KC;yFx<I(&{(>*Qb@?HEVEu!4+fw=4
zoaQeyko;l+{K~ZTUocO`8YasL;J@&)%ts??Ul8!XeMs<v{pxRciTejz<ZAZ2gwn5l
znHLJq7_<HCtCH<^gUUzn9SPixA4z_=4j#A<smIG^_N||C`Uoq2s6U@Gfp9M;e!Zpr
ztg&W(;<03Y=%0>i?f1h}`$kpeTPH;n_IvECGcNJxFNlAA$$n00Z4o+7@{0!W<9)T+
z+3v4MnMbQGi>Mm6gM7!r4NW54asQj~HQn)(di=ZJqVb6>vJ(74<IMKc`62#=)H+Ro
z4~~B~di#hCwr0?dVBu2UgR6M*)V$)!`6X6SereY{+6?N{$t9(|t%-Ssg%{<GpQ2x%
z5VnryCnrqKE6mL+&ZF(VXqT}Wg{39d_=3D5_bq(yEcYVcq|L#K@+Zi<*q`bO-p1=D
zk5JLH(tN9U2JH++drk34Z`zWoWQsNV__56N_-?(enR!K}^cvq4+IehRaq^|&{PCCg
zA1Nu#qZi{96Y>iuUy{!|U?nb1E}Bu2Z(THPS|KyK*<(~VZTyr3qp5Nut%=3?`PR{(
zIcfZW$)zRzi}Q=}Xv?$wS)~ED#?L6GXM*mAi}Np;JZ(ma@z2aDz@c1)Jgmpb_nG#O
z-_%gXYiEqirxsE>R84wkwtDZrA(TF@%oG;wp~QYHzmVoV*>ueQ2%40~^YC)%m_6ph
zhv}GokB(G+-;gOnbj%(OydcLG-}kDC-=B(KXpQ_%4dUlKUth2XzwFht4-|RubLf~o
z_~kxBe941f&a?FedpPidoH2aFDigm3U8Mc2%jEYS@5AG_-%{Ei!*%-`2|<3<-SRYi
zaAU##&*t*~xxdqX=j8i*EANLIHx}$qQ|I!k_X}Q-4?WnnqlsTz44-Kz4@O;{%n$o`
zl*Jng_K^<sjYRWcB797~X+6sGX#Sc*$Lu>%#{d7Adk-)vitYcqfZb&Ugds0V=mo@8
z5Jr-SfyRh{I(QKQ5r!lSDh!ASsMrW1<`Dq_Q=8Fi7`+H62n`r8FA9j)G-5*Z>VOI3
zeNT0r?@V{mEwfyH@AI!`&z|Y(^r=&)s;jH3tL67T;@{PFB}VycuA}d7e_z`b5P}PO
z*nKl=1@Rd)eo2P-2$jF`J3(Iiz1)p>dKZXHqOL0=6N=Bgx~`D2>L@xt`Cnv0U03Q5
zujo@CqO>gKhCa$aqf=;^1OZ&oE5?<L4dN@}{IjoA`76Hz;N^q;Qnxk{QeZ!kY(g&@
zHObm9PV1z=eigJ%3hWn?zey0l1%2j`2R|0XC%^9@gUR3Z(D^d--6xrU=FBFpjG^}w
z(+g-mz*$XPdF2eXK1S=M{6OpDy$VE%eoNU<Ozkt;-=^PE5Wod}_SR>o1oBb)Q-*jo
zb=?Z%OU`a0q<}9qht5v|KAYA_0iU>*SV+K^p><Lazy;m&<oe5k_<HV8dsr_hKKUI5
zZ~p#;cKcP0g-NoY6}6|y|LvKLU1>`GC4(`mu`8u#s^#dFjfIp%XO;fQw8laT0=S^3
zm+uLzUv_O*d!)yz@*(Ge_44hZ^5HZu5V7v9UBUaOu@SUP@?vkw-}kGEBvo`$4wvPD
z-iu4nIw=N~U%8y5-%=331??O(<k%qlRsBruVa(?85yB@1(6LFt7a7@FNC97heoFyg
zlzvMAUyOcBK>!zY{Rg^V6~yQ4V!mtto-cDjYas=EiBZHu0=^3REd_i@`Yi=~Df%r1
z0bI}r&rfd*;%n5L%kPWI|HOKK{&pWu_aAh<jje6z%FUFY@_HLzPw!=uOr1jG6XsBT
zOzWlmwTITvswUE_Te@=09hCpHf5j?#51s@8T+n}A_uU&oe0TPz^8Xq!UV4ezby*dk
z|BabX=cD5z3^<v~`!lUXoW%TEtx2zFC8T^o^^4?p*0geE?LxIavZ@tbuj%5$0bJ0F
zel0Hz;!Dx<Q#UkH*EfUibArl8bbKoz1^Me-Lgyzz{t8+r1^Jt%byASO5n3k&0bJ01
zFP;_Xe=mct@!#{=6I%%>;EU34Dd0=cZz<r5(Qhf>v*@=J1aLujm{W6Zko^{a!F#-{
z>K8eWuGfB%Yt;JWu{5s&$?<J*2Bo9Dl(u`c6jB<D<^15yj=$EwJ(j=)eQcNQCkOF~
z_tYNdYpQ%$oBZ|j-E<=*{jZ`|u`5S(RLhami-nYB->PMseoOhdvpQb<jAEKMwOE|?
z54Bv;oAxI`z^|-s^y!KqJ~{uT40eg)lk;49?PpVwv*`LMo~q-@Z{+{hhqRocWs<rb
zsC;g#DlA$rWpQmqkfC)_9zR(vC+N2nge(_F+~4!<Xb|5{OKo5!l>a$&YA@daI*?OZ
zAdF!RTzTvo;ya^2q-j~oG`^l0C)0Wo>mv{-UBLG9$L5A-fb+WgJ%0}3`{(D(_qMWM
z7+-W(BOwKRI3M`1yuW<T$TnvM@wJ?(j_kap%7@NZYk^uHuhCFQ8Bh5uL+Y0XuHb$n
zTG&uXX+`-h+Yink4P3di2DOc@uO=cNH*!Voy|?}Pp8om~L3~xD{obe|jBcuamh+H!
z^LIYA4`guK7_OXrhFZq||49Cqs$tP>kIDt718q;Tc_{fd-48^&8?InO<SX?1&%Rqd
zh|g@V%7?RA<*&~75~W|ZKPvt(T$wH5Da3v^T-i2Ktv4Svgp^;Y{L1YSVyCL**q^jL
z2?DsFS1y?PTM%DwnqNqU_&-$n(D{b6qx_<IJ(8PCT|s`DTS}>2Tq;tRD*MFj=0eIR
zm#O6x{g%?4+LJ*6T+q!n{&`OjU(}s{i`wjyl>deCi5E+S6!6*fTMGEV06ycTQu=OT
zY2JLB#$L5Kh;R4|Wk2Jxzvr{ol?o}~GuG4jNy7MSS|=r6`+c(Ev|EDsHuh0`>CM4>
z<>dPE{w8@#b5}5rP{j?+g%sSM*|c8D;LcTq<!SHCJV+g1B%9Oy9tj8JEA*aA?+v{E
zZt1~%M+KMP{uihNS_2Gv&&LqgT&tGTXBk4uRG!D8;&duMByU=(y%;&o5K?X$p_Y?p
z8bS&JxS(gX{%K2){k~;B>t|IyteXDz0p?*!6i|DaWHgl*8LVopU711i<4F4=Nc+l=
zp>3r|`?||DXqf~7T+q*4{{H<ze8qhK8^2uTubfB7TmM})ULDb@+f+!|OxHIVjCxI7
zIfr?iNK+x@cW#eHX<I4jf2-{)=(iLEa6#X6<cwE>__obdd!)}(e2cXHHTj)pF)vsD
zR;8cT$2ogF-PT{<b))s^WNv$UH0#?xjIVtUt4R=_oIgbdql2oSD>ILZ+|N6Yid^>2
zqav5X=23y&pr1Of-UUH?7Wn3km4_2@9Jn`s_mq;osQrX+Trc%2aw7F{kf1%CJb|9!
zko<O*T5oisHV?`4BJAnc;DV0bGV*~Sz5$o1@@q6#<yYrx&gV-FsUoDbS*)%P@!@pe
zMsnCGYX1zCQz=i=_08>nJD;8#lN>Z%Ek_1c5mFGq1^r5k`>qe-+fz^NV->0LtMes~
zSI5V3({udGzno3}=c(`dj`pu#ayW5P`#=xif<Es0E`j|UwdDJ46r9gg`Ox_+YJbQO
zq5CK)E7_iju2qC9wbXjijgCX|I+hWAv-%P1QbkBX02lO@E4JSmWWPU{FMfwAA99?l
z*Z*++h<{D}+awuzKx$8==(m)^+vAK%x2E=v*IuX7vbd?5uy#`aGzkK@puaopuE74a
ziOTIn`UYh`InL0_C+iD`>R<C_`bG}PX0AG{8;gXL=X<F2sauMKl#W~;BFQ2lrQS)3
zC`rGiAb<<HO5Z;^2iY&OP3@8XI+(8()xXjn$%S-$DXn;U0sSU<k**)!@D?r0?K8Aa
z$|2OAmdlYlh?fKbT+qXt^#3x5FY_7iQKrg=e9r8(U!OrapOIVsEWan}2^URL3-;qp
zg_NIfRLhB{n+hodZ}M#H`3WxQ&O=6(2l2I%?RyI8?d7hP&zZe^uhadmH@v?@EhS%R
zCZznUjh}Z1ug5+suUEe+UTY?#Ab<<{>i#nx4&r-ayV}G4Oz|1_<;REf<jaTcp}_^c
zG;`P)L42vLYLEEmicdZ#4YFTiQZpe1_DfyXOi0O>&z#nb#({*}ul~=SY6S7k{X+3M
z``}B{v88~|xT=|uk}qG%qV$j;;Q1bOqm!4r^XuB$`++8vUt@6Y`_kzvRXqr=f|mXI
z@+wfqCpe$S-#A~X>o(3ind+bT!U7Rncc?Jt<(`jJ(080GZp-!GgA01i=%04b^ZUK#
zZ(Ksx1hWD4pYZp!tg93sRfBGT#`m>)ar{NCi2N#od7tV(>W^G6zvE8rs$a&_@^tD?
zrFgNinz(Z!X^ZOfe^WhkHEquUT+r)3YxA=lU!dDBL*Ku#N61E+3dW3J`%N9-x8IHz
zM!7rS`!}#N+S_*R1|n0`AUp4=kjo?p;DTOq|J2`t?AQ87YM&qHng5*mU^i%oFY&M+
zIF=2jGt&L>@ZMBMH7yW3W|RG>J^QWfhbDbVb-Mo`E$3qu^qc~rn14W@(x%hX#CNPd
z|JLufP`-@M&9583I>dgb`R#Wc=I_2!U3YL^aK~1+5K^-Dd&^sh3KE18{sDd2kSkBC
z>KUJg@z-P4D8rQ38tv|pVLo^Y^g~=8@LoI4v-%yC&-(ik|KRPd2IcOi26kW#F6i!E
zJHPGa!}od0IOEJc>O4tH*$-UMVSMv<tNr3r)%6knbUO2ym#YTIzWA!2_*Ov>U(auq
z{qX(Q=*-ITEuN?N%(SX!zz6#|cVFmQY+rnjw4M7w5Z}CiDGTBIj1`sSgPp{MDqY~a
zm%ndnKAaz4hZ}3&7Q{Dknc_3*s^cWCshs_`&sX+KpQ_3U`0#y1ktg51H}vlk#Am&v
z@)zHqi_EGVALglZw)yk-L4FU#8JC~`UEj3#13`T2S1UezpCVOBz7qZ(t>F2hV80>!
z9bNP1{PK73bIIp|_+~w>YJTv=W>?OB!%**NeE1G*7$3?D(sSOYm(}y~;r)*FtEql3
z&s{$<mE`-J-xtGpL!9pvtzL|}r8xHw^&WJ~IuloV`B4A;_;2cKADf%MJ9%y8>{s(6
zu3wh;%LnFxvzz4Se}@<Ls~yC*jqjcDeTC?p%JF6Ak-taz8SHn{7R4>P@qJCsbnY+M
z4SM2=vJ->&o^h1_fv=*HeA#)fH2-^z>m6fwe)db&dw+Kj-=E)6`5l+b-^6v5v)_O3
zR(3KTP}f=5Z(~z+J+}sraqVU7!+x(eG;0O%b$n6PFR))^Zsqv&?|gu7C(rZeaK7)0
z@4TPpt`FjC!`Bb+r4A6^U)7ZT1iv4!FTOqtF6bP@SCaADFLr(9?05goio-ll<s<C(
zInPs)Z~i|0$kf+^_|9HK^&k1)(wCJVWh%+nl-n=qxvCt15ABBZ=HT)RdqV&5eb?b$
zzUTP;j+w+KF3RyGZ>XI8ZshAnysiKGTTkPT3V%Sog7mz0^H~kNe7JtxM%ND+Fh5xI
z#>(-%w1n$9ZNAGCw-50Cui>60_fO{={^Qk81o5rBTKOOND)y5P^Qgcc*?N)3x9^j$
z-|vfp__lNV8GMPGDrZ0VnVs<GZzFymNPL>#{l}1rUtHkj!}a$=Za;%Ba&zVQHZD{7
zYkuRuzFo-e2CHgt`Ox#%{$R{|UOxC=U%tM9FI7pt)@Z+I{)g|F;(l*m`FqQ>+nx{N
zd!ELF$pF6CEtRuhx8-cVjNg9G@b!0Je6Zu&<+l#?@*#f@dBtCTGnM2U$@l5jc0b>h
z%;)S>@nQA@U*?d5J__RdcCFuj$y+ODzc9Ya`rmJ5k<-0=@V|bV{i4YO!*|tZobNpU
zZkYX0A1&U~=j0&1yI=C>Z^Z%PbADEQ==azcUuNSccL(vAe1D1Zk+`jL_RG#=_M_kb
zFn><i^#gXJqUnZV*L3}q_!i^+9lZbau4cc;yvp%aY~Xz4_waDu^R;-C1MpxOy6y=d
zcJSH{<#+NrfB8sNk`M1$>en}X-_IVet}6z>Sc41cd9?f_-~BJj#}``t9J{@8_B)u{
zDX2$qz7ZTBR{wQl&N9~9#x?%dYrhw`ebqtUe^7w`Wh%*+;eMd>@&5K{!ETlBcu&xD
z&yxEG`$2!&=iX6XKJ-t{)#{hz{L0zyFRdK~`}INp-_ZQ(=c8_T(+T2RzTRKIL>E+!
zZ;Y0Y;G4qN4_sG_oax+Oup4ykwSD>r@s+Ie^Ho%mPj3f+Pj5Hui*Lf?kNWN}k-vX%
z{}uc%v9NOX`|&5`XQ=1E_fNhr4znM4VZZafzF@o8eyCrna{m?HuZ-|>bo4tzhxI?V
z#QV@%{{i~1&~F4DH*@J9xQaRA--EZx`O6yX^|O4wZ+%rLaGbw;zHhzbf4-lj<-dEr
zpLw^Y@IK#<(lP?-6@w#=*qwex+AqoTN8$bBULy*HIY!kna?{wN;QT$SRFy-dgAXfa
zG*j{Vb@tYXfBPtQU=8~rdhtWTCcecf=EL<ZL-$7(-CrVPLiif-eVVDgPrmzAZU<=B
zw_eZq;|-jEHS7m%|K7Pw+AnpQy5E15>*pBt|H**zkz5>Xzp(j!d+<D`4$rfO^3jF+
z4-mgE`_(!8)`hP9wE5p^KkMg<E~y+J=5b8(Jfh&c=w4+%#2c;^a{u)FeQNOJR+7)s
z=KqLWl(!Rd^AA>p@L}FkJ%8tH^5-M?oE83foe%j6{iLY%zRcew^S#3P+xi9Sf2mg>
zR&xJK;?7|E#d%&2o9Ek7wYm_q(7&;`+%*n3(65T`<mK{rVeTbh&wJ7rPBM-xpFBCy
zUjFNN8ol^Dn%<rsJATUWi^q;KjvPH{(ga$*bok}xj2?5@#lvZ9`BL$5M)|1GBWceB
zy-MBwl+hz6jFP)e8hy#|vE%<Sb~?RIjF*!yDfgb>%+ZsF_ZmH%w!YLo*IsV|BOTCB
zeYkM7d_JA-sLIFlY`<0~kR?7rElkgB?^5<diH45SxJqd=lSGD2Y`1iYYTv0?Av(aG
zNBY}+c+Q%bU0Wn()ZVLp{`1f(a(>+=iB5_S^~*RK^JadU<BQ)N%qPbmc=_gN-&qIW
ztTyWS@vr^;y7(Su#mYlP`nB9R1njr+syRD?zQ1|hNi>e{ltOGK#65~H7omPhz5@CQ
z|9^ZU?Khv^vs_K%AfktgjkKJeN6XJ2Dx&QU6)nfn`rBy?<EleNjFwNJ<uom4XxZ*?
zXx4r>-XrxU-y!XnV*6qK!QW_nY<zppem3(VU!moDk6!z=tEcQ_PgDIXNYB$eZwan5
zI6v%{nO!2RdmCr@P|qCv<K6D}gHm18aWVfwH+p~Cs3;INfA7h>H#mRoQ>*y+!oEK|
z_c>Ls*cnxxOBwuYIgY~<4E_ziPe$)9miEhNe5Y0;`+Z06XRK7*=@35o-jvsVW4Ii^
zPB`^-T0A(`%J*n!+^;>VrHFKExtINFZXSHS<coDx9GKs4%;!{QchUQ({5>km4zb^0
zKVK2|TiHwe<@Z9qt{J=i^<hbCA&e`kiDYAXFRePg3&#n9es*q0S-<QxKBs)35LWlx
z^FiZ2#aGPxLt}hNjN>s*1LI3jf3%VLNaIby#+k&3Q@)R0#>YYap1k_2#nOIg|H1!G
z`GV55hn^AgeT2h&C>PL@&zrxaUs8Ui=kGv%UTAmp*Do*9IDL$xjegxQo4>H%?7^!p
zmwa*lzBKNCr_uQPxLb3m1jX+U&R_Xnh?nm$E~j=}<s+Lz?0Uh^jq{`Yia+R`j0MfJ
ze6ZiF216f_e2(^g?#`1bUDa~qbHoGr@#)VMz=!Lu{#*<BY8SK=sa7on{04g1)Q-b~
z#@Fq-O&!@T=YC?kjulZ9(hWaLJ<?Q2`E3?Rl!o6$@2B?xNbFWB-kC@53y_>WmA79)
z?*@=ep=CqPmvKi^SNuoIErA<)_aEcF2;y(c?+1&{ieJuu;pNBt9Lbe6g%r$xk$8~i
z-yp&K7v@7WUk3@^zsb;VDcxkbrujLH=V*QplB1(kpV0fn_QN$@$r1a1fg9R+dUEX`
z{vAAjN4lSSejdgjeUj$iAOU}hSfqfzf__T@f1I|J0{#rGlLG$KQ?x%xSO7P)RlA}?
z5dS-FsiHdN489KD;<vwie<MxTaqIQ^t}Ja!_M~xe#vAornM&j1oYgdbkd~!fc@z=R
zPSH2(yRzbI+TS62)3TJoRKKN9qxmb|qV*(U0o>42&$HJD@n^QEBN&$`{)FcL#}`uC
zXnc73n}c0hd6?SXszLL8ki<WsagRJkL9V&~KWaVxJ7xa$YwM^rv4d+1DPaNJ&{J1T
zJt&CZ+^mjZ&r;VZIsbvz{~te{>`UV}6J6;2BNEJqknBwF=ab<5kBZ^+{yqubr;gHG
z2T~62L;KVFgc({V#h~&amm{=JN>~6l^j)0?y&A+{F5A}>tca=?b$;-sPNw+-NWhz-
zb4$tc(z+-Kcq?d~6!2!~w-oWGA~yQcI+CyeZs-RmJn?K0e~j&K)ZGXFAmSyts+Y=-
z<Y2Nt3DT1sNy{YJ^w73Z5~L?Z>!ct(74%z5SO7Ql>w`K3+Q0s1>Ik-HehRPu!2Zc0
z#781zd6oWj0r?XN_%p;J1^ls5^zIr7_#^aN3izY+TS`~}H}o;Z7rq!||IQaH{}ByT
z`L*eJua{reKXP2M@og(tCdvAT#xW=V)5;b3{)Z?n5Yg|c-A3{koiI-0o}*vWGD#bH
zzek3OU9DU(N~k?f*RRy>R<5YEd;bSF^!(oIM+fm&@c8@m%NMx^k?mwJf25`V*hv~^
zZP9!s@jf)41<AM?lpj<c(`V3p79>$Jscc6%XSQ^u*9HFlTg&%ZXuZ+5r7Qlmxg~Hz
zzdCYI)gb;8xcwmb{r>XP{PjPsM-^1@NomH}g)`xOB=h+?Ldv!>wI=pb9U+CAX(Ih{
z9anmttky?pSxQ&{H}vqvg9GRHy7F8GIz;)8Y$tl{KYtL}o9va|*xVJo?=04q3MojR
zO~0jty{~IHr9w*B`?`8Mzzu!TicU*|?BAK+KQ%n>KYRJX>%34Zq^u-=lKGDS{`i_w
zAtj7IP3xrWFaMieR#yb^&ls)jAAeH$zi$65|9avlnb$6ae*^K8g!0q6G|B$*w@Qe&
zg7`-aW&X*3&u>!ROPSnV`IBz{G_8{o#vflt=_A=+{*yZFz9@*l+3kuXzD@DlwCMF8
zhyBHQxmZZ)M*Kp)Px=aZCJB9dUO05WnW1%3a6Pc;w-h-)nkCy$^jk{%0@|LIqqMJ-
zuz)qtg=OWlg82J?NymGuiokc&<ol6c{#y^G^`7|<y7p9OG*%S|DGzp0>*LF54oQ-Z
zr!vu60wsBjms4vBgp}vbRqG=wsPBm+EPxyO;<NfZ6T~mS|0o0c$#s5NKYH7j$MO4Y
z$wTR#K$3T8J_Q+4O{=;x-lSuB%J=Nf?rM=~LU}||#_6eOMsrG#gavRzUpBN;;QU9M
ze^N)VZ&&S4ogcj7R!S!cc%rvg5mGks{bA-ddcT+CV=U9U49Ol|PAs7JSxM&KsLp3D
zq<&A5umEo8|1AEbXOR7C@8Bb}QT4x^C)w*is2@{RiiH&WBW2%IAuW?!T&VUpXq^<i
zZy2dc^Xri8{$1TaBnyg#l(|#X_8Hn&N?5=e=$>Cx><Z#<!1a%Pn<~HZ{Y)?a@;=1t
zd0+mS>-hX%G!+?=2E)~I?AxY7itcYoN}s&{L8wXPMTUx<^u9kySO7Ql;nu4qLHvm=
z>IlYS<v;TMO)o#}FRrI|^GGtssqL+~&4iQ}hxiGmoTQeW8=DC!jr;r8$I`0(=R8j9
zNx}lSp^yG{#o8eLzCZ90GRpos|3fvEzhuvII4x6slzfEVKP7pN>L+jccFO$A_fq+F
z+jkGs`;8=Dl5ynx2dSm>z9LCjpu@NU{J(zx=tgh<9-bcvdH=Gwy6E=wD0h4NS#=*H
zo5eCfcPmxP1C<hZzKnT%Ia=U-3e3Mw-6d`~W4k&&p0k=9AEpd0+Th<X`^&$A_}{sj
z`U83viu5n)`0?ez{OK|3OyGa=HnlyzV+oG>M~!xWnk&@~;NP*^&mYYd3GC|AberG?
z^rLP6z4iN&Kf}+L@cf~TMfrJgbrBt|&TFg)=9kZxWB~ukj^eSWsdA&%3ZZivyaMS;
z-{nsi_S3b+{D^N-<MB&~f3d~SkKsQH>HghVN6%f@{^=0@jAs9VZz_Icx}Sf99?u*X
z>+$=tKZBRBo|eAJlJ>{<#qfOK^Ic^B-*btzR|eZ(l&b^5{)gi^MFG7K>j`bOc;x?~
zTD;-eC+H{2FSc9Lum5e5Kg!RqR`T=7mw%-CEL~0D{mS@r!Tja){7MG!>)%OLYlXmj
zfq1Xh;1!#=yx@CGCUywX1qJ>UXAeBQgZ#dX$^7u2*)yrWBmXh>us=K>%x`G+NBv{1
zV8`Oqq5i@A`{)QC3H$Rn3c57^ZGhiE+lTe68st9-nt#RmGv`0)5PmstuMDt%J3N2Y
z{AVNA!w$#8fAHKG@rHY}@PF_h=-2n0;C|m0&v#a{|2%XF`OnEThKB8LuL`!md_F4!
z`0<^4z5d7dF;UN>{w%qh^Y>j<-c9#t;s3hvD)9fbe0WCMU+4dpzMo`l$i06bU!5QS
zbRM^-^S7#@>S6c~`0IS8__6)I_^}^SIP|{G*U9JO_UY>Q@c$M&$bYKQ{3Gyxo@W==
zU1;6@c7@_GZNLBDx7HtTFhC7$`+f1l?(qNa@#&9x?T`AiC-KL(6pFe0es?;AUp_yV
z0sgaXy0Sz1#d5WR|CjM~4e{{*ie)NYc3qWT!?)Mo3yU~vF6&b_KKikj-x)X2T~joi
zp3fELE++PxVE@ti3r@Ju-QO%!+w*BeyrGJZS5@u7IIoyks^aZ+D&EEpAsTjv?s1Q}
zGN}IPNEd3eD90aPn;-xG_4Nzf(CJ~1o)yGzTuc1bbNq&rAAkH`${$c4!i;*o3jfjT
zRRcSOXp7?$th@K#ajDmT`m_IhN!Kq?oa0aD$=?#+;hW$uzuWFm=@JJiJAgkSRCz)D
zQ^8zeY7wunSQqS=wAIUB%>3tcBLDaB+w1bP|8Bm1i5mX$yLpG7Kg#DX|3<~5Tx2*t
zOm*WGWvo9N@Um=w?p6OUqxO$kBWM5k`e6R_pXxvZ`FJ04dm!G--~N0<sB)@*|49F?
zp2^1vQ{aXk^Ht4jC4Z!|%14a99MX>FKN&`SPiX&d2<DG#?f?7VRrWNi`R(7A{l_{{
zr3?OJ+^M!lJn|)sAL|X?;NOj{!@c%L`|}U#HnD2w?4J(dH|V*r46r}G!={f9na$%}
zomW-540kUfrgFOo{trH0y_bUBq3ayKt-{NX_K%!jJpEpw5a+0JXulY2e>v~C4B+p;
z^?$sFzx*zWsAb)Mir?Y<s-x0nx<?ED2X5%b50=UABR5I#_$!CoZy9QTIt_C6kG~Ym
zkNJJTA2uHPjWXr`$QOeVSMc@A`j{Gw6ioMj_&?+i_*V?Own*|@8h>IG)&C81{Km_{
z{Prrp{UhHhdx8@rSAXD-H+aRdYy9yhb_mf1$3xq1CKpNmH1jWK`_~^sZGZ3hw-A2$
zTu%nre<zPGi<kN9AN@WH=g-db@tCp??CTyh;2-Rc{m<#sqEPY+9v_GCttXyG^}mPT
zekIucI{&`L$Hm8~<KX-&xnBkOwJ-i|oF=5>isx^2`%lpR-^lj==u)z4NzQ-b8-w{X
zG=5YD*gwYCBk=I)#PJRJI?MTD@QTfgl>eaqF|k9420zky{9lL2`MI*!uL|Zbm_he1
z-_!SDs;F{jyqX_>nEk8rxI5HK2J_8ke?xj>A>4=tH|&4Pir12o-(>$m{qvwj?SC3y
ziI5KAw`hE&46wiXiLx_zu>ZL0{qY8`m{HSTFPYdOL`SsvZC4L|nfUkmKBhZ={s)D^
z;_I)?^XMZ*&~jdV8NiS4XIt9)8tIkFPcY6O9Es=s@g?eTq5olbgSU9$v0j6u{S#XG
zy{~5#VbQZ6g!t>h{^QX2U>U$air@bdL(8$NtJ`q94&(X_UV9hUpSZ4>93Q5@U(6ev
zdCjK!UjN7aZ{OSKT5@bvQNC5#$9N-{Uydt~0sJeOKmC@v9;vlL%w3_5qxV1b-sF!r
zu|tS1)`pf1`}T<G(tj$n`}b|K|LvUuG51S#{B#Jv{O*Aa;6DfLG_C#rE81xs5C6H6
zw@>d>?F+*_TKGTg2mMROr>1!AkMXl6jXz0$k6fa@xHp6C@34!3{|EjKBK!d)H4azh
z7xD1S0bGAt?<;=;7xvS2lq29r!+yBsY%f3BZ)4|C{j;JdyL<et{P^GF_P>!<&;4+K
zd-**W-G5drQTdDd%ES&KTIavf*mYD8|8>M~tjzHn{GA8XJJ7oQ|F8L{a=H?%7l|?F
zxctYc{4L}ANBMn<^oR6*;5_#KJo#s@QrqLZ8>)5^qCb~Y*g3`LpTqadh_48-JEBYY
z2R!?VYgV}TUoqxK{j;Pho%t77nf$*ZKmQ5)ezV2>5`wP_26Md0<H`}=8lWM%8^^<s
zZvSL+D`|h5`CsSugGJ@n7*mivN_<m({JpuJx8GL%Q8>Ud_J44iyy6=!FR*_MJA`PI
z+X%1k_+8=KUjN7QubZesv9}gv{l|DGKYqdQ9b#S}VCenQIKR#Php3lK>=2@J9-%ha
z+P%>)vj5gORrx>sCpwd^U&o`Cqq2}Ezr%iFP4wSC4&Z(s2hS;(FY}BlFNn|OcyI!c
zZutLiyPg>#?H}#t=Px;v+W#JY``!HPe+T=sJ<@;wqVt18=dTxxosBj47xW=FfB&V|
ze{lb@h`wK8T$FpiBF^7YLH<F@ab+@)ySZV&y~>`p_WjrHT#s2j{rxBD3CeEHNR?kv
zK2Df|{~Nr)<aNDolKgSDKkgsp_g|ck3kBvEGqwcVU+2G!pQnq{{nxJ*?V0m(#R>bb
z#d8gg-xt4L|Gaee!Ebr(kNPK0<2UU0a`sQ>$!~Ex4fiRqBj%gKd#K=?!tI}Y>mS%1
zdi9ad?v(sVwm<x5c@^@Xi*x+;*8J>`{xoBZ-~X4g|Cs!q5A5H;R{o~9tC4P9gB!Z&
z)q@vE{wTj+1pX&!{Hp!mYFYn@zn33>c3zSt{`&tRv_E-XKk(zdqkQ?{|Ij7FrfzfX
z&-}0P^=pqTznA3fZ*0qtANEH%h5dB<!+yH`;aAvC*VwOwSNvT2M7RGr&HR|Z;d}BQ
zaZ+x6#dMzhnBNTTOq^f0GwhG~Vo?9@iyz$3J6msZ+dumFhv!>R{o~=c-_Otfm|xbo
z#()3S^)}__=K22mXJ7LjBK^=vAN=Q!M~koX);}+@|6DMD`VUXeU4P^M4(5*?qFR^(
z`2+)>R-DGs{_C%P{|k;$U#soWeux1yL>F^B^yKcVo*@1%=)XeyVdGiU|J)}xzXs|<
zyG)hK^eR=qN9c{iSd}VO<oA0D=-3fHe)jt~2h&(Q5_}&gPT%U0g74wjb?DtZl16f8
znr}Q=yQwRDn7tJ24*$7l<^BKk+8@t<8#E;TAvCs;`%lsz1lwP7%K-ahJcC`|??27C
zpUSwS+}$4O#C)jee>2>*;s3x5ec2PO-RGyUKjw#Na1zx&iGnP@{b7FmdOs~l7O?+2
zQ~mz`3)&m6t90#)AASdY>s7yYmiCW!SJ(Hg?Eh=Ye8z_|Q&ot66wJS<t6C5H|E9I)
zvHv;TuY&8W!7KD~VPc06t@}@6!tL((s~Gd+{o>d*YCjPFqL)?qGCt0a|Lrf-_TU6Y
zb#50S-ryC>4pDYP`8Baah=$#v`wkxCjz3Ij_RrA$mreeIkPhLud4qk~|4P39()lZE
zfA~H019hslk^Ylpe)#{uYE?x1Kh=fJ{$PI+Y=51<9gm;UuV0sQ|Fij&s=p$f?kzlz
zmncx>!r=HY1^+4L4X(KE{Cm9h59-gsbpItztD5DHr}N|2>l1L?&Eu4iF64iEw2Qc3
z&cqHOx*NwM9cRyI=01On9H;zn1DD?@eSa$5;vlgR{{Lw(zx?i)4Dg>tpQ_{7)m8ne
zu5LnftWf0w_wR9cFCo7C)F01FymoID<0zAL`)eoq<_GwL`Ol;0M<SBrPv^=1cF~3I
zk#+ty?<g{>P+j-peEtIN7c!1f{*&PNFa^Jd|4d)m!>vEj{(=8IXj1?A8M*d@y*)qs
z_u~Fc%<Bh^a_(1w|G@t<xUXdYF|b3320!-i_rozU>HpwI|H&%iHzpNi{U`oee*75!
z2|EL09N%Y|a$q0@od4?T%HP7~1H}H&G5%q)UjOijCf@Q3|5@IF?0-nke~i!b<DaxU
z*#E=)r`I~=S9YHMV=y=LGqZM_?AD)LesTZx-!EvxK2@{!Pv^;Bo7)Mx|J2vwVSnU{
z^Oq_Y;9|_Z6#NHzRrQ$<di@9YFID5z{-=)+V*W4ti(vc9_j+U)sFXO5uNRm<i=)L*
z_>VT<Z*MJK26hP1CdYSU{ngVg-1b}K43+O+a{V(<e!uVR9Dn@F{P<x{yf+4nja<)*
zlsZnFSJdNnDf~Zy9YQqhj{Ga_vUHBLzj?gk$Mct@?0@T*<2Sy_k3VcaHslNDCB*q(
z;Qmrm>z59}r)YIW!T!TON&X@E6KsF*i=Nc~P_rQGKj}RAF>f5~36AIZ`fJ}=?ndGK
zO>q6?7YPjP5TauoZ?b;ae9^T(+W)A3?w8lE0Xh5IJMy!CnEym^{i^Q2e#JOl#&P*w
zzapG)=+AZxaOam1{QOZ&oam-(74h4XbM}vaogY8uqtoqgKFciwo_8JgkG#$C{34CP
zb`4YTf9NJZENbAbe{lc!Ih9}Myqx`wo%!+a;`WR)U9}^?5$AS3;=%uOTUG9ikok78
zKQ!8H(AS^&_D_;uoS=?_@efx<$$tjr_|tjvXNveZ+#iec-hHG$-ryDYAFAT<JsJ}`
zglME2s~etr-zmhu*Z7AeG=9lCKgVx>lb`*M<ohq(e=z=EpDz{tw}^*dfKS(0k93@W
z%Gyt*{Y|z%>Yqe?S^pPi>!0|y`SFL<pMu9}h+WFBaQ<R#T!*0pYs=tA`}2uTOE!4@
zAMMXNU(xu<p*i~-|H+Sk5kJo|xt!wkNxn|$?avCnuSfj8__OKe0}q;Y!Z(sX!S)CL
zX@yjNJ^blB`BBe1-}%e$nhjjf@O26tfAIAS{htkx;1I2@9zyiu^`q14+ev=Z|Fik|
z^=4UrPR-Sy_ILT&|3_{Q8&gz04~$+s4g~!SDPGZz`+s162Rnr5T3USJi6^`)-=9iq
z_Mc7u?+nZNPyGA*_|gB2@`%$d<m(jT;lC3<RQZyAQeD50FW67l@PBOADQ&pp5B2+(
zA=G{_Yv=55Wb)(B-oNm57U#!x8SOWmzq0o);Ky+%Up4PE@}I@vhyOcde{)36{^>mV
z4b(GQ`Aw}4zW#P+`=h=!02ZRrZouj{7OwbE@}vC#{>!NTu|Lb%-`<s<{ZW3wgY$IN
z+R3m#`dh3|mH!ynAw*+8=!2hL>OMcRwePQ{Y5cSCc|rCl@!g7FwO-MR72@&g>RskC
z-ZH*Z+1XgAp5I}6e6Kq570nO#O>RExiXAln8_j2p`KsfzoTl|*A<8SD-+Jtgr)2#T
z<@uq}e;a8)*WXBv-}oWe{yVh$uUokP0sVyFc#QiW5O45`{p~-*ai9GD&x54@#I*UX
zTN8h}R&}w1`>)b@@}Go$Hm>J!o?ao>ua6NQ^1UqV53QHqkAI&vDyaN!Xi4?wXqqpR
z`RyO`v;W4l@*ni`<GhD(I~not-vZpf<k|mY@BvZ(9(w%(xBZ{c>_6&f+VFwuVh{7j
ze+uT`qxlcspM{@*AMeka+ILa(_xIt~*iY9nE>PWgMZJE%tMOx8es}Wydr>)Ef2sU}
z-}pH{{!RBN`wRYVI?kW`S;gZzo8%Q=a=$3v>$kB(h%RHpm#{7!a{m#s{G$CJCaC+b
za(aGe*3I#!^W;x&V*k<F|ED$L_WyE!JvsAA6`yX$@o=mVetq>Yv--ud{a~^EQU6aN
z|1o2QVj1__*uMnZe;L)EG7MBoOyPD~{L^xdQEEK*|BHEw6DuR!{z3nPUOurMH2e$O
zweC72?X^GdAIDMul|8c{%OBs9AOFRCpRSL8?#BE^d%yjQ|Hb~s^P~3zXoxnn_$|B6
z?Ir6Ur-#Z%*uNXi-z^#zh~ih&@r_@D`HPQH2Za6gajH1oCeBCeW5o|Y!28a|&FZ-f
z?27$#t*`&@hl|Dp)t@Qye{or^|2&;1|0te68|4(|AHUjPe!-9LBVc<2JA`PgNBw#1
z!yUIv{}HC&{x`~Q?kQEpYWV+e!S<K)0?7dTqy4GZpSXX~IX5onbn*2I{;iI>_kaEV
zX2_spZkFXYqJ1BsT`RKx)SUg}zX$V|X#Vph_uryCg5XUp9`;K=t@xd{Re49gU_V_K
zX%S0z7Iv&&wd!KKm*4(V=)3Z!hu`?4a{NMTKY$<c1<dg|zrTQZq)WrhF6#GRUu0fs
zEbX7_>F2+m_$?2Ax|00)+8_MbeqZ+Q#wjsaPpaF=H+~-9PgzOx-#Z?D`_KIBpXPR^
zak{^r|B~b591lNVRA1Q*<s!~pVanhY$fq;U-`&<*|D*n#Yte?&s|w=?)sGPWE0|x-
zizNff?`FQAvJdg|&*yn&9QG^lcjx*6@jMNid(5DJ@H?zKa^0Y`^#8ba{cR}6pI<@q
zLDf?H#(#tP<-AfdfIo`+N6r6V;O8vh1jigLUN4{EgvNeY9y0IM&x81*z3KVmIy%~M
zia#B~FaGK0$NN)`cK^GRpVOiL1U1`1+<p+8UY!q|(E9pI3V&@M#9xcXKR8#>e5yw)
zep{&PBgPFw$M5s=A2|Czn)_Z#&ygcXUwUc(2^WnXZ(KTg(%A81jF#groiM)pke0*U
zRl_FBbwgUVJkD^p>OU<pTHn&$WY}a{<8F7xDS^iuJIZscQ>P}zP8xmb8RO}LER(x-
z&YpC%iXS#sp3?sbl`=MT3F{rt4|V&;(LP4|EV_;Q7Y60#XAwLv2J#hJ&Tk@rn|!?U
z`8wo$<sV;*_ZanYV3R4M;tOdWp*4q!%#BUlc_-z(b;%bF6*evF!QcqgFZXR2ydtQ6
zskMvx7tYUllM})(-_Q5*>+h@M{1J>J<oiI>FOOjZ)+XIv$a!aFFdnJPu{mY%Pw*e#
zddbir{%iVE`5cntx2h@sR!3IM@=*UP|I=+L?>?Y;J;&D*ndbEb`cWz_sVCC3tOwnH
z#y#{`KQBMVhkbP!@eil@5t^v-X%>X=Uth&%|L?SMY&idpC8OM*7-wnliV@xDJ^GE+
zM7osbv2NU2j5&zxPV+>kTGG7NO<H63tcKkYadW?`Hp}*b;PJt@J|$^<txe<0v!O7U
zUykqh`p-M?|Ka7?UF8qFw`p=c2oB7XnE0Sn#A>!s^FY%)-C-fgE1<X3ZRPuZUgRQj
zKnh)#Qv1xH<1kN(`H>>%sar<5+w1dDe0P_MkGECnh`3t`(H8v`91jjW*E3Tpzay&J
z<-KwW+e0^RH0;0f`&X!cz`yZ+YM*)d6Gh7Y;D+8`esPRS7dXIgRg(X{SJH=j`HR{9
zPhCgXCl7zL`hn$lcw#A?-`NL0@&$Tpzgy4s@~>q6nNL#&mgf8?v!DD<i2s<Kg6%J!
zX8#E(0!T0P%%89Oz{?N+*|UuN-@~6O-aq@BM+N)8aYQh`3H}iOM>`Puh{CtKdiihR
z=UZ3aL;mmKPaL#={B{Vx=p4*%F~6NFvc6xiJM_@|?mEQF5C8v|+U<^qKU(9!@>|`4
z`JH{(AAS%0>d*6j@bbg|Z=6gS*wW+w`^oRL5B48B%>SRMoc|9k8SDE#?p^FZ1xv{P
zJ^ZPf`)7ZvLomM+;y)(%L;N3p1N}<BKacU+ALaMS2g(0E{E1ro$=@ZIKhE_h{2*KZ
z?}H!PL(lwj&b40t1lONm-bnuM;g24?fBfkX{xJV>z#me7F5=P*{ol3IXM6eIVE_4p
z<~I?oJpR9*{ASl+`wO<e!91|P_?Pm3BgB6aygl?eZO+``<-dmcd(xccriVXOdq3^Z
z^-P4%i}p{tr%G2$<2RYVg5z}sZp7~x@#mw&zZmTwv_IF7{VflFqRxTkw@(V@$8+H@
ze)v7~_umY=#cO}~e}>v`j)y-Q**|{N^AR=}?C%_{_>&wD|8dy<kr4mK_Rv!j#!p^;
z)Ssise?)7K{~us}o67|_z%Q2lefznB(+fT7fukPw^0(&t=T`ZCorgbF_rTg8<yYr7
znLim)e!&gB{2ve1@bZsh{?}yt$HSkfw}1ThvBC9E9M@&$g#E2b^4DC@xTBXJ_CMz#
z@_!G1wEq6_8^;CnhuPn$B>!M@@{K|Kx6C8M9Om)={p7bQ$uFK&{vYN)F)r88y=u(9
z#LK_&Vs-z!ZAMjLdiYZf_Rs$2@ger-`X|C2jqo26{J23yMUQgJ{#L>Ihu>dW<K-X7
z{O#6M6_$rT(eS|X$GQEc^IPCY2dc)O;$`S1Pn_lB&+zs40V=<ahd<hA|M=}N`*Zst
z#yqgU!~8L}uZAzs?txy@x@Tbf=V1Abk~SXy-%oyVLWuu_wSSiXefwu1CkT4^wv$?V
z{pTjO|1s;x|2_Pv#`|agco=_ol`ccGzsdYI$Lk8*&>dg+woMR!<ZAMN4}YTM!15a>
z2J>6{;9tZEf}Uq=YvScc`&r2P-@_kma$xyU{~OGc_5XeNkImadkDofQ%*+2H`_B=?
zFAn$k|9<j2VgAGZAJzE93g!RNkn)Ri4ZS3@X0?~UnCs7y2dMqy;ZGg1fA+W7Pa@2T
z_NUR2%QbVt{wDJ$`8vhBWflAe+M3k*2`_&GZvVt*QTxZkpE&fu@}vJJqVZeIA9nv$
z!6|`m|Jk(Py!>(I|A_8i91nlA>4D|X-WO>64(uP|Klr{2^w8g1xA*cp%wIwMx1!AB
z|NF_G4)LF?{n=08KVl`<{~`X9Wcx!K|2}4rmmmEnaoPXx;ZHT&Kl__Kg0Ek3F2B0}
zn9Ps(tmE^Kgr+B~?9k84kNfv0ssGvX@F$w@AHN;KFSz|5V;<PwV*UypoR<*~{oGUk
zy4cGfWB)ml`rjN6f3(H^@uQxP@cB{ySls^%JA>b0{$z;%gB$v;<9GS|AN&^8KjH|F
z{~uufbO^tA?(f_G;D$aX@p{!j`#(qi@8M4w2iE@Pks<YeCHY@_=EjXd{JZ4+uZKTT
zdSLnO5PqwY{CBQ=?VmyXCS89W4}Y}ff#nx?uEc(x_5VupU+`d^w}bdcJV^&W(&PUJ
znBQm@>_6i9%K86=w{N*Vi2n*|znLEXRI3AP|8xkySxNr$mrk*R_#Y&G%fp{&ePH<w
zJlD|t$Jz&fjJJpW_}w1Mz5E%j|BIg?|M&1m4?D2@=@5Pg{2}cJa6>mu&GTJ<!T*fx
z|7q*-{{zf#@`tq|n*GHp_WwNjcfQd4&>;JNK<x+9!=Gw%VC`>*@SBz7KfXrv`5^w|
zE+qf=@FxyGu>4lY{fkve{{I%QzdDG&BlVv+9{woLi-vA7=zWdf2y6eOL-?Ia^8ePq
z_j5t~Bc_pKw)6P^0p`c}hrRrN_22tH?i-;y4nOH5FaI9CfA2Vq{NKZ$I^w|kPxk&r
zE59c5=X?M7^i}PA{kLd;F55u;KOX+Xkq4GP&f|Y{`&+O-r%S&Lz;h+&iBFeq_u79c
z_dj%z^}mNd+V;TmJ0biI^G8s?v;-g?`lJsg%=7Zwm#F^p7~Q{!qdfk9fcXtPSJnJS
zyrBF)QmldVBHI1X7nF~j=;iOr*Wab``Im=3)$YLBKdk@3Wd3A`|9~5M$i||_gZKx?
z`rpH!IO@Rin|Lm!+27g+KgtVq?HX%-@$xT1`{yR|e-D4O{ek7rKG)Ou9r#a3`vG=`
ze(<oS881KTpRKa})86C%2be$3{pYYF?q9^3%C-NyT+yT=h`-0Z<o_Q2REGm=e<y_B
z+y_6>3qAJLSEhLR;XftBZ+Z9=(F4n$#&b!{e=O!l{jS$S;D-LV@rl0iZ%Oul`x5eh
z4}bLN1IwRn7is*?KKSAH&>N?X_T9gu{#;G`qJzi(4=}&Q<7Z&UtpBh5d;d>xhCuJA
z(;@BkAM_uNpzE*c;ZJqkKl>Zt<nw0x-}wGF#_`}cnIHDm{U^f_(AM@7{_ygbvHwh=
z>#ybEPjou4{BeGMt@B&pXTQ?<u|48XZ8`K-;@@lh(nPv`IUfFK=L5^1=Jo@4V1JBX
zN&-;Rh=*Q$&m+F}8^-@EmE%979{=A@eh2;J%mM!~cw8SiviuIWe?sh^;Nw8Qe#U~Q
zy#ABq_WyNq{F{eA)n)(epAPYV*k9*2nZH7_I~HS{E@<nI&2_!}d)WWqljA=<{E4pn
z$8YjDw}@u{Z2iOS1lZqV{v^kP8`|I>C9JJxUtZ(o$NY@OxvBw<?<+@-3Fd!@-_L;G
z;ykBwygg0LQw09IZcy)IipP|nfM?UM{`WMaIFP0hU&irso;-Jemml9ZU35^Py9K@v
zl&K`Y{+&DUf5G1qG@erZpWs=}@0;MgY*XXLBDROV`n`XA=H-8z=clO4-<<@1s$1pk
zpPdhl?F{~Rcs>*TJ+__vo~D?k@+AgfO~dZcFaEM|m6sp(?{-Lmu*T-TPmnmaa{Na-
zqueuFgVlSo;2+5I*{0j8_wx+q!*>CkaccfpljC&-Zs-pW{pQUe{xd#M1Bmc_lxX+L
z@gK+bH11UUfqw(fA7Y)S(q%9pzAF(wQl%@ZgJU~QpZ)LK7kK%fWB>W0rz*eT&s38C
z{+m^KG?^3ppJP55&KHAus&T%=4_Efz7e9{o;1Saf_VQzXy&tImL<Y<cn>wy?_8-ai
z*XJVzC+aK1J&O=ym>==`;z#{C@|WS$y!@y?E57&hCyuWiKi)%4cl6JPjQMly8LD0d
z{~CV35c8+)iy!-SKI;<S_{nG4e_H>?&mTRZa{O<gKKY8<18nD({60JE435@ZFF8Da
zZ@&B!AAWm@*Z%PTZ#Di*CHeLG5dOM{=Z|uB`mbM8Fwfz36(7bAzkxQJjPdn9V1E3S
z-}&vII<a#0ui$xd@V+Ma&)4F?p_dor3ujwaAs+gPC!RRoYyW?-|4e+*&!6Z~IexvI
zf?qGE;L!QQ?2qF>x88a1<MRDqi|0qc{N_vR(fhNP=H{m}O~tQLm3x0#&QC4lOcEK&
zF+b*q$`8;C9{8-fo;f@G<zZlJwIBYM9ZBy4^ZVC`^XhKAfa}*$@Ar6C+TZ5+xiCNM
zjzp2L#(-9c4D+k2g8G(=JXF~CxNnUpPPAtXKJUkS)O7*zCdc>V?J<8>oa1$6a0K*k
z3l@#4M*L~!$Nc8Sw~_s4fR=31GuZy}a9;cGctP12*HPI2)Kw}zeT2HcmNLgm`r**~
z%8^Dbh1s~Jc#qz{HrG`XiH0pjlH&AWa0GN}@qpL8{=b6#KXIL6$Mq|5Qn3Gr%?F#E
z=aA<^gTG$H?P_afxl00$^SE9TZ>ab%|1V~Ks0OvyjwAn{lhEb|`SUB9KVfZ=kn<1G
zUv@rzOEXF9?l_Xt#j|Pt0Gj^*VPz})QhM-l{$;#BZgwvgkx#3OfAsOM*OzifR%`6k
zUt4H?jq76?|FLv=j5|d_&R^o?cRt7+G4Xmcv9xb)S^gSE6RbG5^5F5s&BV87)3T>L
z8dLns;}4>K0?+#PG5_)OC4(bS?+!WmYj=Jzljn!R`~y{Keir*$`aTfP&*GdC?Ef--
z(k3P!SFBKej`E4<GSojj@0-CZid#~8-m5B770rZsLo+e3rdq~+x`zKicf4Rs-73Y!
zU3LE{qwh1x5dTxPQ)D-SHy_HVcwn9hxm~QaDtF?FLup=`L&e6SG!Me;+#vp^29Z6U
z&*lE|u_)PcZy|Oq@-H`~YRbF6+DZs;LvPsDWnB<|3pqcU3=O%RHPi1$@n6(x{NKYB
zb9zWC`Yu%~@xXknQTm)&{^i8`l>U!%>A9x2TJH>MC8V_P!P}3Z0wje4xS{*DJL<nd
z{Ch05gLR0S*T<n#dF_7^m0OwbRMEMDa%j-9lpaS@eo#3!r#E!vDE50}BCRKRzY`sQ
zYmUELf7<><n#Y2+moolTN}rs^;);f@F#cZlUvqi)ND#mLzOozmyUJnw$@Yze6!53$
zw-oSKn2m&#qnJMtZ6u_G@h5uHdJ^!PCp8jM5MX!cZ!XyMUJ$?hzOoF?KKRpTHxg37
zFJg2q67XBY8__r7bNo)fM)ci=aDHP%BOwL+8Tu^+0o>3B-T7&?ApY1^wMV?^-}_H$
zEZLg`{1x<D3i!=wWIqzvKQgY7kP>G97;P&B{9-z>OW^?StR8;J2SNO;X#BPec0$#g
zQ&02z|B!a%pX9&hOQo(jov6Q#>T%=q=B|7~<yY407A;Fb`qH$$l+>kkY)^gk$z^Ie
z{&K01()>yW)>M|8<LeH-xoQx9Q4hr*pBT*Fiw-1tlg~DHC7YgAlpd0L*D8LTKFd$*
z(j=k$tBIc^U;dXi-aj^o|Bb1N-*`8eAG{XXN($_6e$`w^f&FdzEd~6>E2Tn87{5*H
zq~yzg+RI1Z9>gD~`JH9JcZxQ4_505?be;5u`cwS&zV%>Qmh~%#c0E;nisd#Z`PcWQ
z%Gta9#xDNtv7hcgFOPk6LlD2s{PtJs`n65tkALI$-?!*`BmEsA{;^u`TtM+8wQf*r
zVsu@W(v_C2ZMp5uPyEZ(?(rWF$JO~?8uLV#Abtn-=Xut3{{L6(|LM24yc5K~XrM~5
zaf9-IIghRP`a7vDETVKF-FL`PF|o*%hq=8FyP`-)S(Ix6xZ4#|dr5|h$+SI5>^hZS
z6|-oWWGnfjte>1~id<1!@7?}+u2c2RLHzbiwTE$sx?j@yAEp}&ufMb*fA@y1H}Mj&
z3zD5RR698`r$|Wo`8&1Vm{}yGJbA8K&P*#3QfB<Aj&Dyd5>gO!|JfMbeO?g1ynm4)
z&G%jZf8NK)dzrBN7@dE^g(toh#4qn(WUx<G{_}VDF><@Vy^o>w2kJgX=bw1%VgC%`
zm-92qVDY?+avnyn|J&rx(m(C$&0J|)!`(dl@53S4pYD(3@&09-@8gW(W<ttT)9;Vl
z+W42THy6w7e3s3p{QMv9{BJk#^T!>v$zK~3iMc#qn0b!MhiZHv=($v{%9P@`4}Pca
zzeH!1fyxR(?08Pa8x2%>O7L-}eWc>kn^ixr#qr&!d>c1c6Pf2~ipZLp97}QhtAurf
zGgrJQ`Rz`sUk3M&;##_2`V^G3@jpWNsh#5GZ_e}k<GCH5M(pB#6?5nqH!8v_uHb$Z
z+;18jkNZk%W{Jq$)tF;*{Mhc6Y1g~ocXXH^{XaXV)AQfYs|h@RbpA(vQK9UN?}&qc
z#wRKs>7{DT4d6HDlBFNW@t5&>gY_Y++dbs^4}aes{pabr<UhYu6L@}S^$)hcysz=v
z-`t>hFb^r8M&SFVurv54uT|S49{jOW;dwZM(%pCw`pePBtn~W-*W7<4KmVNGljAqf
z&5z&E`WbNc)e9A8n!kH(@QRhZJ@Ta=$HV@Sx{XDW1Oe$oJ}lc(SXc5V*#7AMJo;Sv
zKE&_2@6(F`!Tj>Rz-#|Fe{Tu)#Cd<^@5mzF;1w_Na~H&$9FO*@`Btfj{DrLreN9^h
z<lom_E?g)1Q_PR&Un7a%`YTs{ojm!EJxtXD==bN-iSIVDpU2DHDAeQgd0tTPgA4YL
z{z&%|x3|DyviI+Z__}QL?Q;IfH1lKrpT(oe{vLkoy!`Ax|69eW^H*U0Ql7^g{9WMx
zJTE0KBlFq?*Z<fL`kK#XoJjWH>-*^2X43wj<^O&3MRXk~B%{E7+3%yXq40fl*zM`I
zbbNV#(2snZ1m8=?`bGuxi@ukx2lx--7tCt>Ch;#$@b?{I|GP`ct83++Ux-1$_LuEy
zum9tFSK=~N&*MCq1)MKhe>A@5g#0pi2dhr7{Y_pEJ@wX?o{|2K`J;a2`X~J^wH?M)
z7tyEHc^&4LW|09pTB?>4N{N%06ZHv43w#GiANK%$%nu&p9qz&N?6&H99q0IR*6^S1
zkG(Fx?~>(*{WHXGY$_JrnBN+#><@0}ZW_PN$)^(-&jHRTuZVGbBmTY0FO%cX#&=@4
zyf_?>{mOWGe%HnB_py>4RlTvA?Z2ZhUB5o0{=B0ubhk9m59UwbExm`j5Z(Xu9G#y}
zpg!Sf@xZ;K+@H9v8N5ROo;|p((~e{E_TY#87fm|v`yl(zZ%*~+Mb(9sQ0Wpwg88kq
zIxzT`V&2%({Qe(*p82);lNa&z0{H^Y{(KyyH^%&B4375$j%|AH0x!QaUcJAtl-kec
z$JMg@PM-X4u>XUHPb<3fc$#=xr7Hp+eqLaday+k?!~TPEZE`&F2l|cJudOA2iv8y`
z_MgaB^8fP+sQ*pb-?|{!{&re{B$x-!y^OEQIYy}oJZ=W@;BUdty^Myc{cP}F-S{~y
zzOxeL_+D7gdgG%7zVAbS#{4xb+Tgb;B0600n?r;7qnp%$z<)CPtvyZE8+;nkjms(W
z#o!eW@;C|9OW+*E<0KFt=k0a=l7%O@-xo*y3I6UU(EQa-L6%<(`+t*vV>)Je{U7}O
zh~M_`JO7XIBcGo6;fPvZ{tEV=5{vF{$^YR$R{Vdnzrb~k>m`Hz;Sg?D!%t!y|HdYN
zeMLBKh_i+|bN795;$Ix=qx>A#uMaIMzXjDrWRE(IIXsv@!o?K+kMT*)NB;WrRxTH~
zP8kgF1^YkBh0XEV?}>7|F2(V%yTQxl(>A{6wLk736ZCye^DlL6ayK0j%+IgEX0Kn%
zaNQ{w&u38TIW0cIYu7JU_HlT7gX24Mdo|u#*#X>fULRw<VoS%CUjFIa|6u$?_h0W6
z@>bNA%9FqR8^x3UUDZFZKpl<W;3M07UvJd+bB=4E{K4jYkMs8aT3Lt{XY_y6^&h@}
zhyM(^o!W1gR2NfgspD89gY7?+`X6LSC?zoN&EE0%{!_-=>;9ACc-?;-j>mm3_OCN|
zy0893`=>ZT_0NU^VZ#4M1@rUp_$)uZcZKrErxnk<$ac`a!}Q_`j=w;qw=?f><xeUf
zaU7H5E4a&jCF|YSk9NOLkNSTHzrR_~h}u7eyph~@bTI#1&HlUjJ369<Kc|~bSDZ#Q
zb)AJjw|-W|i-X3wgm!@ft;O5NtE%(H3sw9;rG&}4t@X=YUjP4r>(2qLsQp=#<9G7p
zZ~2C@8|o824dsvGggqm?qIYlAzKu6i<po@am>kdi@Xrd~FU9)Ts@31{@~`Cbd%S#}
zSe)axF3ivV@tW$quqU5JoLJ<KcX-8|)+!$9wYb3d?xXw(@kx$1a6s1c#rN;X@+&$k
z`=I<j(Twb0i@r~T_RpALe);_l8DJmrY_R?Na(f0m5w)AZcV`iAaC{MeryT9)D95AR
zLKnTY(EUE5$^0AGf8N<e*RL-<_s`|Q{E=JKfx&+z_dkG#Pb+>|<WCp)&*T12Y;W)m
z`gc#kZ}NK7LvO$I>T%M4Qq2Dy^M6CQW}Te>I3fIZRaXZD|0%d0@i-qooiMmPjQcVJ
z92{@;@cVzkHkDp%ALs3n4(Q(R&o;dN{~_~FYDe|wTLruqT?@tr+uxyiLS+E|rdG-i
zk?%Obr)WR$`1lB~SkCoTobS`YW%BjQFjPGj<Lyn>*lxo7d+w0@kuK`IZ!!O_?X=<6
zLSde%%8@xPnBRQC&yVlFr0b~q5ZB+&AMvLP9G|yW@vt*EzuV6K#@CAkbHndTc-cyI
zD)QPN{r~X^WdFAdgi)94jf)gNJPO*NaZR$6fG6zxf`Xq@*lm?P3_d@;w-cMvN<_!B
z5}9IJ@lrKWLCYpB<GaO)%V~W%3GWAeWZ}nUUjBF3{y)n8^InA_vXbq?{O~B~NSU%Q
z?6ZQuw-+z--+%qi^^gAEh~EETGGC1i%Kl=R-+v5V551{)nQT92`+v~>obe-V*c4VK
z|Gzlcf8sU${NKID`95CRnNKH{a{sLrQ#=t~F|f6=k7%jl!PSeub1BYO@vt{Ewp;h~
z%Nfa^?5d6f{zi0}x5pKWxnC+C^O9ixxdRjk?4KRqe~RD!oB2M)n5*J({(ry2$LD@U
zQyorJaJ<FwF^-S3#&XTG8+P*AzcXKdmwZn3|JH)+^A|Bbm|s4BkpcWuxjr=bIfYs)
z#Csno&Ui<aFHv66ll!&OQ57HO_=h+9w@-3>gf-L$OV94=e!ofUKi_j9-M^2^@jH3)
z$GQHu`FpXbf2uZ7`HOlL^+!aDKZL=GKlN|ll;cfJCx>0*KEFfz^Di#Hmm5_7RIi@3
zzcnF0`)_+q*)7fAR|fwm=EQSS*niX(wY~L<^7A<JeTMG=Kd<5w9FP6Vc)7`0oi6tJ
z5BjeJjo-5-ROhXze&lgv1snq{pC8G9<L}`11L_&ImhRuml|9X~6pz6xhM>KDnkpCI
z`|@?R!%50+G2R~B$iD|3ZZp}-kM~F9_&58xB7yh61dk&_jRY<Ez4d>W#fmfj5C8M)
z=y;CT`X4ZkOOB(<d|8?urzOY8CBNEx9G1@i-Oz>S2l31CZ}I1I{LcT#f6blBo@oDP
z?N85%+;M<3CN93s!%xfN{k{1ca6Uj4y?g0ES$-X@{C1Y(_nPJStw|~$VRz_!?ca;r
zpZLxh@*nnhULfADbNul&rNX9VeH>f_;H-~X|IT5OKcn$S<@^ch!mR(8m;P`3`twJf
zU%Xf<qW{V9+q7Ik%R0aAKZ{;^!uNf5`2R9`{un=q`X9Ecd>51dH~ve}{tWSdYc+lU
z?z<enLHUuP<$duNl$<yv$p1$SrTfR`Isb9~kNHi9#)bZr<4@DF_4D5Ry8pCja^nE$
zKgO}De!%_Xa9RI&{KvZNf3tu8ohl#kJVN&$YaNx}Opf1JPvv3P-u&<%=&Gep-X!gx
zV1Cs91KLyjQxs(V$DE@03%J}s>-9hU#9X4bM{#?I>mU7n=Et~QWDoK`ztEp!;<{k)
z0g(@V=9$waf26yzKi*%PLi0yCC!?03oh}dNj~zngoI=9=PgBNmJ>%Hw{)MAOHEvg<
z{a|2w^tbSRN=uIahVLIS{to;muZR9|OJb7O|95lyp|~Tpf9UyplKUT=5dNgr|Dd<$
z`E+6d_cJ?FRXYv#YxFMr)rTs*2JcYkGk<)H<4sMU_I%WBf5zGVzcYWDo`0Fe@DjSl
zObxcb&BufNe?vd5cK@E@b^`7b4c_k_E#BmKz5gN3@x3%HJ{og_*Zw8key%P1Z%@tn
zk2x(r{@NN3pH3JYuYdov>=|X}bVHRduygzQD&8qj@fIH_iUYE~V*U5h{})?qf7CyH
zXVM1uR~I(hQ%ui~e?4=eKL@AVwodWjz2yk6xM{tLN4;cle3Zxgp&g6*2K(W-SBxrL
zEbC88dw=Z@x_@+fRTUd~{Gk)VFUO_JkWflw@82gWyK%Ib%g;%zOI3U^ub8@k)5Y=N
z8_4&|g5y!&MtMJ^=iHIUJtqCfK3&y6FR}mMY*M{)MvmXQBG~>qe{U|Quyd9l_FPi#
zMuBq=+aLL5@DB6%d9gTDJ;wpJ$?LnZUeMr&0?F?jr})2M{&S|&^=ndY{ET^JFuxo>
zBSS(dvHC`J9F$Xz7H41Kk2iS5E8I_x?M;qPb9)={agL|kDqom;>ZXHT|36h7AO8PF
z2iow=s@eGy#8vt6*XHYyIMrYOmvg@^^2K0^jeNgsFYw>LH0S$bY%iz6k->2P=f=Sm
z%^m3WpNrEJKiY3skD>O@Svh_uPyUKG{pFNTC!Rb=9UnaKAB?xbyaV8KP%ij8@$jD_
z9FTSEFW-7he&5~h<+uOE^!~VYc8=egk)Qp`*v}n)?upa&=KER1qh{U)PTszNcj)jT
z+kxXz-VI(4ec29iwe)}3e<l0>5e4Kw{c`-~)%o#b{DU#x-~Tg=>tU2r*dODCOtv$)
zF#ZSeus_yg|2@anbIULI(f&!%^HXb5^_>4(`SHhioR3}8&p%L$$N6t+r1ITjJA>~k
zv>&+t3jC-y1&8CWvuDWin_~Y*`E|~u=hyvn_IL8+pUeKEm)~pT3$Ze2c1~*X;C%RV
ze>pPUopa+Gc~Knm*bUzWUBBA*r1s~zIeu$qe)ccoakiMp1m_Vvo(l2s=em4dLp<^&
zww(Fd{<wY_*#oK{rFAZ>Bkd3Wf&H7tsr(-7ssFFZkN+_qj|w~EbiKgC_6O(ghQaw#
zr_djde8GM=?mt$wD-E*$&M38?x99l9to-;<PSKvhc}%YV5fA&H$kz+RgKq}cONbA%
z|B26M0_`u3CjYr0=RZ!K{PnbY9{l~dJX%~%!I?VLZ)bydNW8232iwE`NC%GFbj*KJ
z(tqM7sN=wYIu%m=IW)&_&CbvMKQkx%8Rz*%i--NYaX&M*N4nZ`Jou3=@MHfGUv!uz
z>;Kd#e*X49)0yKre)HP=_@{FHWAQvb;Gcl{gv%p1`~Sdp{#dn3!Iwh1wE7C^fWBht
zsmDluhwZ<NuV0PGf2`p-elaIM{%reMyZ`!u`Qgtv|LLD7e#Dn?f_rnhK)V9|gZ+3j
z(XwWl9RIesLi3+?(*HgDPM-YfAN@Qy&$o!z?7y4qfADAdnkj!Uwd+?&0gkA2gCTVn
zy8JwU1^mA&)t_Qy&i>YQ`PsjO>+|@Sa^Hy-?P5RC$}j34v@5`0#`iDIt;(-*_9re+
zcyGy95y_v?>|a6cPy6h`Z2Q5Sn;(DJd@kvbdh%tiCyieI{)f|W|Mi#RH<=mfK>5Ar
zhV+lp|MC0<_V0EU`TyvuVh7(pitB^<cWC!7eYAc~nCb(*FN2-IVQTT<{Fu{){-PKk
zsGF9K6*qMnDEaLk%HOtd`8|)i!;CKq#4_Y#2)}$URfdF8V#)^PC-G1H{?h{O&))ua
z-EF+Rvs2l};NzTy`v~qYigP^5H@185#`hL^?T`7#<omzInxZVf#qR;5_(1FYVf|N&
z`F_^s_i-c4GnKE)aemH)e5u0eLVlUNJ?dBJrK4|I=H<uufr--oI|{S>=8eJrqw|N^
zKe|HY3)=IHBQ|rnMtceA%JyrGR{n4B4zNGAYqM}-H7`HjpZbvMPcwnLB-;6=VE*D`
z)PWOx{Gs!ilj|9d7AJDQ5b8;kzc#DY_UTg<C%78%_!IcQ$p`AC>AKC!e9yno|CVY%
z<#%F^-^r7IfBWBTey$N?zOeo`q>ncf@4OxFEAM~x{;Nea{=}S=<F{_k&;DChDSHad
z{`W5S#}_cbCaxbWZa*MjQv6;Xo|l2U7Qk6w@XC^RW&1hR)8GDioce#nr8$1{mj8`^
zHTw_J1%C85hWQoZ!H@bA$yoZ+LG#G}7bmp-hki7FQM_S+D1L?Qc58n8urulnoF~Tj
zH98OMZ`#WLQLkVeto5xrFSrdpAoQKhTmI=Szo<V8is=2pSYejm$&<hMUz}cT{KHku
zZ!a%*31H8m+}<!|sp|r`>ZAS~qPCARH}>O2(aBtXi?n}4YybR6?PqgJRk0fWnGCkS
zoR>g`gi@l^R{UspakN;pT*W(D`)3Eoqn@e9J7lzYJhwJ^J<`*;&o_?O{_pbj_phVq
z{_!gsKX$~0?jGiC!TiQz)t&<XMsEMxygi>z9Ck0Ki}~Zc;<pNayt1|s^SNIX{)Xd&
z8+v>165seS@He36r=k_jEy4U^UVi*rF;1YD@@Mc{1*(3qm>=ga<M*nJ*A%(QJIvsI
zp*YXS7vuP1O;0)Y*+xP0C#>17Hngj#=Yr8vHFrmZ_b+P8KUhtr^>RKSgf=v&L(XfM
zY+l!uZx5nnS|4pu*OeWuu%*)H)}ZyC`D)~R3&ss{WQYoFXg(U}gWT~EuWLPhn`W(j
zEhv3`>nOhw2di-=g2v&>eUU!-{%m@Ffk?eu-<745UZZJ&h;6R#%GANcvzp#dq-7~r
z9z{FTPVp`EU0FrTCZ*qbw!SMXzNX_jG%k_WOBp<omQO1X@vXEyNgYbR=u;rlw7rzD
zpr`NMJI4jipY@@oj*#Z}e&l;H-t;vcM0_;AT4rG#S5k65xGQq@wkdz){1{PMFQpOj
z$?enhTZ)`NPtI=_TU^JLD}SZ!ug&crYfam)qvbp3MO>0s`zju5NgW|2Ea>Tb;<@wg
z3(CJaU#TOQFQ{^5(sS6L^w}rX5mLg^CwdYK3DTFKZKWW6;#68s5|+M{JT?i^mpGmF
zCkYFB`i?AH`EpSD?%?zpYgGDTA?eGUUtdTGOP_sSeR>b9el~qJZ7T)oOAM_qq=cnU
z3?W}6LHaTy=zJt$K~G<k)yv~S={so`AEApXf8{g|%$t9h2Q~R)L`WIXo65@!nh)Za
zh%1-VvhjR15&bFRN@9reSBI9Rl#u_$o745<=ZGt(Orr8i<uSG=;z~bWPSbiRy=eP1
z`G1U#FC{GK=^K!~?(LxT$?=CW7(DLKq58y|zFJft%JNkaY3xdp%Nx%7BF&HJ4R6u1
z+#cbO4r)0=`%78WMy*M8rTGp?<osVUSX~;r(vt79<3~3XQo@3szKK8AI3y^2?YP=>
zeo#N;I23RCR?_uA+S|Uya0U4(rWr!Yh&i<0bG;BB`Im=GRrN=7x*?==yipy`xyley
z?xFdd#D_V1j5(F=SEzp4SJ2bfqvzMPgVHC*Z^>ZuxHCO{f9z0aimYocq+lGJ9ET-k
zWlMj0Fdv5;mnEee`I`(;r@1Sk^U2Y+Hi<rtOYOb)e?5IC4UP;AN?*AgUnfJ;;QWip
z>j7Qw;ukk}W%?PEp7&{<)+?I3awT1#z2O<E|7A!|YVL}~^CLNzHy2XUCsTix$A8n5
z-|qHw{4~k1Hi{=Pp}CL}7WDLu{43TsD1BGT_7??ffoi|#`PVB({hQRDsA$>3mA1ud
z`{?u*<Zms+)WgW1D7~Tu%{@X=vPhM;6#bSminf>jZ5b_GN%H#GD=mbS5x=YaH|Y3M
zTJbo0JJEvPNzct^qNh_&-y`dcMM3GaZdAO2C+gDEhy1Ik(o#st<{$k|k%Z+Rc#wZs
z4$D8RNB&_sOzY{p`>Us&p!Bt-{s$SXAI7;__7lo|Q8Sm*`)x9$e=Bsw+U72b*q?>2
z%%888Mb#pjpqu7lCjXV8;*UaC{-E}o8)#XOMA&~L)oFe>lGbsxI{Is&kTRo(S{8zi
z=L(knT2J2>^EzD~l)f+KD}H;?SoZ+tvMRpxWr$C<x8e&*Tp2^xi}Zp5YD<;4@(QI#
zu20Z<DL>HqcrW_q3H_FGaBa1H?4A-KW&90l*?y!%Nco-C%k9%kN?h4N^{ZS?-e2O1
zKUKLUJ$=u0oU=A4ecSo^kdCV#@%#MgyMPYlt^e2Jz<jFa6LRO2zs{lbdG9YaQqxkV
zAE8PO{8D-jrN<jSK3SDtZ(PvtGLD4){G2EL<(*$0-<O%Sl=6ZC<_D{|SGCi~o7?~$
z_I;xFcs!0d^Fnuf`1Q*ljdGU}Z@5cByvg^kV!GNs%JDyz@O`1B;!TbZQ!!ovedRxw
z9pg>k6dr%q>O^|?Y;5lPIVrnx>FZTZaf!=R{v&<*cWDyLb2RtkV;ri*@%ndlk{lnV
zkZ;fzb~wDcH+{&zBi5+=!}#pveU(e!>FCe@ui6jkoBxT*KjX!67tvtQQQXfUx+!}^
zIli3x)t&S6%Ri(G`qyJ)3xm?vko?mem&?Dz{gq2!#RSg3S$_Y_<_Gg4ea|8t)BOJV
z8pgp5*}wF?Uj5*=g3@Q7ph_6>FZMv?(s$}kl|H+->SsazCHQ%U7^LEnzN<OEjS|(K
zK>j_v+kYIB^EFH%-=IG^ZR(}o^kMvBuK~(GG5#|8VCB+>c`&T^{rQJ}Fg))-`o?iT
zq4|(MeV7LZ&rR}8A6=!~aP)>-)_T*2?-NZmRr>IKipWEiOCQE*n#26*`xO1|+H?EA
z7OHZIaSF&k{W~xDrVsgd^lkT^?@b@-m(S1jr!P~<^zC6@Jimv3?&Rm1&VN+84P|D5
zag&Hg`cixxi@(FRuk_(~(Cr5f?deS)=9j#OzfXqzt9ZC_`3FDL)7SS?l~3qT2FKMK
z{PA>q<p%h<6Ib>?x_R|p3i$@zX->%?Z~E~5{@kAa{7XHuf9XRxL;hLIR5}oEFkyo&
zD&FLAD@X_4=MckH`pmsj<c~nQpueekN_TJiR&oFO+GW&$qJaEMF0EYp3b?*NI*`5^
zTD;+&h1%^}JkqCsx60)0!xYkm`sJQ$uNmb{AL^H*wERmvTDkP0J`^c+|AF-3{bJOI
z27_XLJlF&2gP$Yb3`-ctW4*!4t?Qohgg1RCf15_o_3z@U+4g7bvEcN*%k`nXxtx!v
zls?V~=_}^?0`rj|9bJm~I@e1bC(cKk!Q&#0JIA^)362j_C0%N{tDs*$?B**eeS-v#
zzv#79m4g!>q4IZ0Zv1}qpTX(-iqDVh7S4<OLp;(4UOd+^c!wTn&+&6y_*tCmTVu9r
z55OKckFIeZ#P>Yz2l;)_#RjJj<71w9wi?Y(lpCKEc|16MyWdjwKz)eg8px;3iVJr_
z$7uCrG4HU0#}(i>xLsO;_ouYydN_}+VHfBnegD~1`X|N@<NEinx5+;#pnl1Oq%Ul|
zQV-5o`_6LrIIt_`=R>^Vt`*`t9xsD<<Wv9c%6^D9dHXPhbYcBV%d5<n`DbeR_xft`
z&+)nZt9T+f|H9Ju3_tfZFZ8D`!`A`ilffW=@%^8nz2|WKa#b$j&nCb_G@ip^^;tbv
zwUgryDzx`+XHfsA<9UDBc~Yeheg-Z3oyZcx<O7DizkLsL8axkg6W$*ErVhO?X?#;E
z^m%j9ZyMiFDjZtBuYOR;;tijfk5#4g-4NH_Z`w`cbJAtig&coFT?^TMrNkhAzr?oF
z{ma+T>pb3mhv(b+*FV(Wdv^NnU2p&TX7t>_8`d1>U;iUL$M7ECyRG~UyCZ(_eZBit
zuTo{P{{6AVg8DD}6$;~M)o!p-!TD!Uzl=Bk>}N;0hjzF=z<H{%zakzSb}6<{`eN$0
z^7iZOpm7x5<zN0o>u*wR5C5KOshA_72hE>*S5W^_lIACsA>Nz&m%jJsBc9*JudXMg
z;Q4K0K|Sg(t0(aM)|_6CzAsfT`}{Uazop=LZPKnMq~LjN?4EkmpH@$7y;gxHEIJ;^
zS=3)FL*%M@uDtw>S|43V$0I>Nx}euB`fN{7`qDIikqq|tf1keS+4Y4Kq|c1i7gCVE
z_*wLPnFP<L(`VB2WfG(>b`CwyCPDh5{pffkNFTV7J}e`BScXQrpc~sAh6JUr7rkF7
zLwvVNpF<AiEr)o1l-^C>ry{|8;KncXeJPS<vj3L8pA`FnzSl&8=S$B2$KAKUT{Wfu
zuj;MdE^@kGblF|xm2i;cGHi*Ga9oDuw!6P7Ia48IY=qbSNK%A7<1&qLdEJw6BqoG6
z*GlCGNy3XHjWPdc?e+bhv-h5T%sca&_wW7v*5~t_b=G&Sz1Di3b-&AhO}%A(UE4cb
z+WE9`rsO-h&$>#?nl^7UX6Jjc7dpGK<WsS)mj9Z#e(i2;C+E=H>8SdOd{O_rYUqYI
z{*K1_pX&e1{8hav@ev|Fc2zs2iTqT`e@)~kwL;=1M1HdJUlaLBy(RWS<R>TpHIbk6
z+w#7c(2sLvZSq-pAMN@!J{9Ay``6n(j^l3>`P=W8`OCZ}@1qHkKeb$BDMbF#@?R7A
zOS~@ca|w|@SN>}ve~CB5UWoj8@?R7AONuNtk-tQyjnYKLbfeyJ!tmJlf4a`X7nrZp
z?OZT_>iQ*kKYD$s(t_{l{j2-bb$o;B0n{hN5<Bys(I+*O`FnZKj;fcuPZOue7xj4)
zW~AfNZx5`G*>9P4A<AF>%ft0J+v&6vOig?*EAy7T|0Trtva033rdGmFu-<1oo_Jc`
zBM>UK-kA|QO~u-I@<sjP(=UqM|ME@=>dzg_e3m{Z8%)2?H%b1N{YBZ+4gFEq-*RtQ
z`V2!IME=3`%JVA1{G>Zb`zq_tY588$JXuc(ss-}?l&{2230-%+@h>}C!V@a*W2~Js
z8z@aw<cs>`Z%?~6F8y9>X!x@>n)K7_V?qAb!~aCJtZfPL9aMX(%<Bu~PBkG~KS&=z
zC?)+6tupdo(|w;yKSbWwvbKr6(8`|1KK*?|rHSd8`9j<a^>U1T)lyks6WY*7<fY#+
zeO@xICMfbn{o=}JACBWs_s_JlA2$5`Z|SEk0H0F5`fA<1E%p1hh4T?uU&-qJi`_7P
zzq+-^@JUHgcXP&{3Ztnc`e(TwX50r@&8#;4Hm9e-IsQqlF?jBe26ynm{96oeO+U*=
zs)5e|?wxONR`ak{g__hL<1hPijvhZGBImc7)f4`<N*Uq(_s`UfzYb5CcyXSV;SS1$
zaps@Tb{lJ);G7W0i4FUPan2WUd`$l>1^|6H^dZoDJ-PnTVEUbe^jm+E)c3+4Rjvqs
zmh9Wois?5A_vrCly|I;k<D-VZ=>1Rwcpn+wXG-CN=slY*@b58?!G5|2oEq~5^>-JZ
z&_(lCwYQPiTFejrB=1kD6%F(6Ph}UI^kYp$y+Z08{hxAk`OeF2CjU@EGm)=&AHIbM
zoyU2>Gs=C$2L9t<k+1Ccau+pIcD9+)>%~g;3niXurmDou{iUv$?H8KiE2XCA|Cv8C
z_FSUhmzd{7?uWkeGqG>jSlPJW#lt>AmOJWtU!hh^Ki&`R);IArwn|0s7q?*%y&pOY
zJbFKL74YnnCLeJ8p94;9CI3Kg`1Sk+K7Wz&r}q!$gufK{bFq(*d{Ni?3bl&zmn+5}
z&a=7xS4u_sbCKXt{xZOK;`%7&3q58K_~%6QqgD+*AXxtTqWtyI<I0~4A3M*-*Dt&u
zoBZ`{HP#Qo!Fv-3PWHbWJo}bOSC)@GfwNqu@If2Ai%oxA;Gg6EBEIKU$pD};*RZ^l
z?ou6ke`5srd-Yt|FSR6a|97@#{PEla<ICWS-T!^?T*%`H(>~bvU~|IE8(2FVJPrKf
z&%^TbfK#*arwsaokKQvXn10Wqei_rYp0bt|__JQ98GqH72UC&xiMQIBco8o_`1_!J
zpga=5cPR_=VFSOhnZa59$TzIj5d0Ycz3++j{~F})Bk(tWy*QBjtMh6}JbzB4{CSU{
z{NtS$et!VxZ-JAK0sjcs7ZyI44u8mZ68ILr3xM=?fKwxXHh^OqTwG7{=k_yl`2qY{
z<0OB6##TV;nj-wABmD7QlxX`m0qYdmpUrsELiod<HT>~B3gfl)IfK)m6x>^AM~O$%
zkLFUiUorfn!!&<c@W=W2BL_?O?5t8%ISb*u7@vNXNa70k$NOAz@0s=wu)1}f@yGhW
z@YfO+m!bXRc_*gRNbH*+Zo~c2ON>9x_oiHuZ-!HbKMCkJ-*ntTn!hUW$NNcg@5uN^
z?#Cv7-qM=!H)Scp$355#mwfXaoCS-YR~Yx?gZynFj`bEB?z^lv?%6+MeuQ<tpV0w;
zGymPj!SeSg^5;UC*Ui;$lIPETsb>70fb>=a!|6x<9K1_lA$;CTLH?K?9@cqTk2rAe
z@_v-oCLjC`IJI*8Vf(PQ<h)S(cQD$Ad7sMM+3JS;Oy2yC=a2VOGk-qyzL77>2R%5T
zmnq-GEm-V~d-PQ62|i*2f38i~y$if6$|dhv^MF$$U(_%D&8jo~{JF33uQ~XudQZlW
zon$ZOLWA3Xtr>sEbT{o5`CzzD?-#}`SR6PcjN8DyE(Yg)zYcJ=uk6QWfKwx1)ITqK
zOTUlT(dr-OFa4eH*P+lpSj*!1OV2QU9H!rvmSMRw+$!ArOTH~w%<3I>Zv$VBbFNYT
z^6zh;KOW_80KPAS{`9o@O*MZ>@W=Nr=gR$+UUi{;P_NXCzhdckBl;sz{+5@;r{8gK
zZ==0*5Z@EOL4E?x@&;?g@@oSa`EAcDgZ0Zc)GrV9kp8FKubzF^_?IifU-s~D`prZA
zV*g;u6T^*;gDhA?@8Pt8FTy!N);kXH9O@kp^8;z%)P~>>({ZoagZ=wUcz?r};O`Ar
z+J_OPY9ZUdSL4%<@4zsB7P~)SAG8}xzXamZ8SA{{BMH0{*SGPmf(<-h57)5&a@9Xh
z_1i!4w*~wux!=m!B6D$=pYUFb=P#Qx0h7NYP#=;HL`$8v81?FEldcvl+HpS`<|oMC
z%UG{w|ICK_5$}fU=V<yd-OAv8)Cu3L*ZDIWDSwvKpVr$Ya3y2u<wf|5^j~;yXOzF_
ze1ip_PmJ`#Y~UH(mm6*Wu4!$`3-M8KPmSM`zegKR_U9*<e$ONQuKq;kQ%4v0b6&3*
zf0;*(e3{=E?u9rXPn`L)7~e0jy~O!i#ybiBtuxDgucPUgLV(own0TeWKe1yD>31dC
zzY((jV7*h|&wit3{1v;ubuRd0x>|?_->Y!(UV;sr=jw?&z?nbzzNrhG8qMT;_p3YW
z`-SrJpToglk4q&_u9f#~QNLJk){MW3uTA=8r<nc|X8^86ztO|H2{t0M_<7@=?>;kL
zxtqec2lu%r!gv*MY8L*KLVtRne~i@pW%e`qn&XG%Ev5Y%SHjQa;7QH+i{>|a&>ZEA
z<68?B94`{@1^ft%7j2A_S)T0GhCjMbG63kTUx?o@x~jRKKf&K?D1R+KmHc^Dfxlc0
z`5TIS=pnrs{Libx@v>pT_mvsnLBM%W1o0uj{}HK=QoyOvO#S|=@9C}iv$6lB4f5yS
z`u@_Ph5VUaQM2@W0`psZ|AOK6M}Fh|+ZHTN>WKaW=65M~wxhhi*Ma*P$p79JQ@><@
zQ{(p*fS#AEy(n1z9z*)+^*_6J;eL7#>wxUBQP=B&`u}kFS8RU|(~tXmI>3GO-3G=l
zxSm-3LE+wXy*8LxQ+)l8`I!C>xM}cXLH>Au>+<O`zw}Ju{(ARqlYZojdQJH|?F*AX
zS)Levls^l6lRx)mSu2${%(-4>{k6O7Hz>{@{iXh@`<ef~MgsT4bARhCzm@uBWug2z
z@6?RHmLG)qKy=m4oVSd;&+a~A+_Sz<-~;Z*$b8#fxi@!JD?5t31NSuym_eVz`T%|p
z{r-pBJ{e3u)}PCclKlBm;Qfbp<IA5;KdmZ^R(NMPGQWF1_jjV-&wO}o1h?T2_wBMj
zkOJ<kgZ$8+bAVH0{-l2RHFx^=b5$e#UPk%*lf2Ji4=kL|vEHj0fBEw_6U@3c!)5)V
zMwodarqknJn)tH6W#NOL8<=`0d#Z6ydCUN=aG$=-0HBjE3+Dcr_3!%WcYyJa_xFAx
z^^5mGiSlkYxOzXHKM&_(nSM+suXUKe{5$Dr&&XeNe8hNhoS>E%{%pkeIjo0L9)o~W
zV>%B3(C5>O{Pw*P{0%_+aOPm?f0hb=$UnJa{J|gc*Bj%S+&a^LVYt!#*bXcX#{OUR
zo*C!5z;B40lgI#n0QV`9KW<}zwOWQhEQcqK|Ko`|{j%V19r9<Fn`Qp9TcbRG*_B1o
z5B`zAC?5=$<%#pS7Az)VU!nJsnQvo0?11?}&QI8IZ)3jHIo;%sG;nH6w=w`N{?g*w
zVEw}Nhs5bpU#%@s3vfT7w<?~$1+u=W75VEKsV|JJQXJoMJePpQgSa=FxDEWottgkM
zkI2V_cf$3H3-{Dg_(MLYpL5_Hn!g;<?*Qb_<su%ZNeMqw?&^5{7Do8v{c{{A&;#B-
zN8EzNC1_8G+rXp!SO@srR}6o2?*gYrzL-Dv{AASU!Su@^e@>J8dpt=$59^!G2l4!Q
zk@bgN?+k~}a9Lk4oh(>H+Xu@3MXVE%4+riiAV0C)aDh|f_cnk&O|RIX`Kw0y)kFGi
z()%L^7v=};HSzo{i=<yv?hLmA`v@3c3l`CJ7aRBu=nwGy0ta|>{G0(!jpdH|N#7rL
zisp~!1C}EFJn3J%f%he>wKe09=P-G$gW<l1a|}FZlYqr_TTFTrw}A7W@*LiCNCH2x
z+PJr-hv&Oto!=);bM;@;S$hAAd!T9O*ngR>?@w=5l7Bx#t*aS-z28FqjJ%)m^%C%b
z_OBEX;JFo!gPH@M%JT)0_LA<S{aEtDbh7|lIbcE`KYxNhzRx&F-)}#xaQ-1zgg?Gd
zQ33y==QA1ZeHgEDUY+U3`*__oru}0&l_Oo*&e`y&oab54e;LRCpp!r9^Rr$3_m`MI
z**~l3F6kF|e<1r|eELQC%b!bKZ{o|~$)6p$e|-(oDVjgqVqTQz&&c<W97k?8{@V-y
zdJb1lQNMf7NA>;49g_!{{OP96ij%9~hY0ZJ<!Z*?LzM4FVg7h7#|6&x+m3W)ezOoy
z=0mRYF+EP?{<AB>{Zg_?cl3YW@O}OHB?tWR{?!BI{`u_Dh5M7;k7~x>n(s|H^Ja(F
z|H`p$7fruYK0&#RoHsruf;0Vik0Rw^lQHN+pc6m%stf)7XO-aZd(@w!^#0c07RsNq
zzGnPYas3hX0)wCXRJeXAfyILF44!Rd(t~m@`8JGOaKCLK{CO}w{pgPV<X)TcgwCH?
z@W=J(%J*e{Dfs@u$2H@x68oprhH(B&KaO}s&U5~!=K<}9<N0I1h3VaS%B=hR`V;)E
zM*1~xT~FmU6!NF_NzM2xcAl&X`BvfHY07sV#tGSj!|M`rG0#cdM*3Zeez%MK;Q*&*
z;Sco<O@HU}$M-9q0)Mll{JA3v`BQybGyZ<S{vMVOhRb`hiI>76Di88~GwaW9Og><I
zC&GUPoaw}HXr?}W?V*?I^mB1P`+MMT&^c26&Mfekt08~$-!b{n{nDfd!;Q8ZjBm7k
zV7#L3gAI?O?L&$IKxh3)_<Of>knlGz7rB3axa_~q?pS!gBfFty>BsguJHDJj_&UoO
z+qnd6`7R#Q)dHR$??>iqc(1;5xha1(+*6~!G|z4@@MM2~^1<Q$nI-qrX9Mp8c%Rjb
zza;u+>O2!Z!}<T!Khx(*g6g1~?$PbTJUhale?CCYH}d{{7v}^T;$!Oi+<;aUMpL|h
z-~B1fU-bTcyOH@IdjEb3c=Y~#2YBfs<bU+fMgd3g|Fpku!F?a^tIHqP|2CogP1E;-
zwJK5DFy3-Lk59jC5&n`0pW`5gJ7GQIh5Tm0g5!F+XZd4)NBz;{bCxsSKkRfg@^csf
z^bQeoy<O(~N$1b#`zMK&vOi>F;Qsqf@%-`rd!`@9s|xo|Gq`ttF#NHcv7DsPk0#Fe
z**lr?!v2{BkM74k0L04}0Cc*e-XOi_&pQ30?ZY}bzmh$te*S)c>x-K4_n)>8(RzpN
z1N(D~FWU#=OmDFFPvgJdlg1zGkN+a)i|0%Jv;+6&E8IiQaz~x_|1<r{u|CH1V7MHo
zE40g{u;6+#agP5Ik$yMRJ9^(c)0^RR<{#+G&beWC&7Tu_-|um0|J*5s`H5T&`TKY8
z*FSD$INy?Qu21vcck=fT);B4?X!=F@?ekswgShf{a=FY8wkzCUpZzjEe@4@<7=Qn*
z`}ev3EQj|DqWq+gZbP77{nXE^bor~s{RNyKY%lxg?e-=4)b_rL=a2WpGk-qFeJ<yR
z+lT1BUJE`?`iDtB)}J=;B-SN}JHQi>c`6q;wKDu6-v<mHdcEI1;Qo8QA97GPnIGIx
z;LrWq@W<wpy1qYN{~r#2i_M=E<F911;V(K5(fmlMzXSK%>ieaGitB;)_nno!xKQeB
zI3j=lc=Mbug6$vq8z%b)-ClC9CC?#L$ERN=vVX8mk@?RQ#)aIsX(1k?*MdK^i_Bja
zWW%@v_h&}t$J4;6@q6kQR1f%3^XDM_4#NDWCF4KuN;x0Ua-9FE{Y^Z7_NCGf5XJoY
z4*K`ZSH7kEG)DVQ+=9i481E3bfxmQ{;g7fje8QUsclw$60T(zm3xBAO`o5jNe#`y~
z$4BEnmGtW<_v_+*2J72+{`9?>T9Lm27}wZmhS$e7e}(iwzbfH>CGR>+GVM6?CvPHH
z%JI=B<-SV`?x$nCXjK_J37pyx6CE1Wad(_DTi2gfWdHn?N*vzRSh<&&@YQ#QzY=^&
z-IaSAbSsjkk1s&JUx(`#8~YyYg$8%w{yn50`y(!zq}#FXLcS}2e-OE!W84)CSk_Bk
zZl2%&$^1FR?Q(>^--hXT2J&a-jfP6e{g~XpR0aOnouyvv{?ErTuVP(i@)6T(3-}~%
zBYNy-=O&qPBjwfaZKV6~uv|KQ3>@ph8TgZo=;eRwer=Gy_tC#Td9g_$-rrNX#iSqk
zqF#)@V^I%eKOE<WNd8WU;1=TZ-x}wZ!9VIhHJ|WukUy^fJ^pN%zs&dl9)COsnA_Ww
zL-Lp7JX&NvFgicObV$HG^XcA*fAn5E8#uosf8U*Od;cJR&msLDI?3>t+ug`Ny)~Y{
zW!y&`c`xy}2u}W@_a$10*H5fZ&_887Ps8}ah5zJZ0>&3E+^7CS{wgs3Oa1VFlRwrk
z$!-5P`J4WpsizV@{@>(}`wOc7m+)7La!CEgHZL9&cRxe!ZR5~6#iU!ZyHdJ~%X(s)
zbf|;(Sj`z6HrqX<e=PUsJ8fF}G;*lS_rKggC3b4*lYW0DsQ5lhO5FR@OZ=1fWs>dW
zJs~0IbTQAC^Wq&^`jioKP~9o*y!DE_@6l1d7b>R6H}&iPyz`fF{Lk)cIzry5hJQB~
z=D%9UCvZP`_o-p?)yIa-uW{gxh_#Vo;RePJE$<4)_&U?v=fQhm&hFn?X<8PsKV0_X
z1^vr^82LlKso%TDYrW(6@9mlovrn4-NK*D$1k<1Q*Q>MSViY0XU!Od?h0?_P>l0$9
ziTBrA@?X<d?U|_5MJ;@~YpyY8&TpYKRj)B-=fW0B(@N=%X;n3)g-?9%BypbjFJwV}
znW^%<P%%ZmsqfnTldt3WKSlOOX=RNz=|5fM8{|L#zEVATUrA`@58_tdOY$1adqhIT
z-s?$<TTRUGIr*=tOqz55y`>U)Z%L@=dp-4K0a%Fd^<*3Fs5G@Z+Qc`}WJjf`m?GcQ
zf0O%ad>sD^W&Tbp?+T2Avh_p!PwXl77fX3OqNh)4l_~GpVLg?mB{KhD$$duF;XQr&
zVY1j?D0kru?rBKeE4k#~JygCIx?L|@yJCNo*b7yzmas2rpzOnX`t-wLCO%b1_f(p!
z<BVAyD;0^*{y2w~I<BYER7{a?>Nh-f(V{s16*ku8&O!Pg5l;Vyb#$MV`ewJTK1Jv4
z?`8mq$bC)l$CkHGgf<>&%=V#Ol_pE_yZxN-yQ`RmF3{;I_w%?NyZZEi+(+cAgXDXm
z_DJG%dwEYqXr<`}8aKc2%V<$=I&bg(ar~Fa{DW5RiDn<8-iI5^|8q7<ddmAMnYP`0
zS_rcxW=*`$!|T{hY2tkzRUPC#7NK&Pl+pEPBGJt!-WQe=v!)d4|5R)FFLdH|$q(|r
zOiI4hbnq7@e(84Il%@sp-ixo~ztU7hk#FjYZ`w5%$Ny5izv7NJ{Of(JLH=vn{xKSC
z|1z7pC{4xMzpU74BL6x0uZitn;)^ayQ?d3hDR!EQDe_JIvK@|&t^X=z|BqJQB_{vt
zeK0}(Hyvcs!`m$La6-o)Y|Pm&WZqwB?#_}w0_~f=-^`W#T(zm5Pr5zS>FI8ed1fK5
zD^<&XP44j~{OZrdEHrzdG4uC(c`s1=m-}4S*@en4GG^Kr)5$mW)XOLTH7@<DWdDp-
z-rFYqqx^Sl77k(g&d7g&Cma&CpULtIID2f^KC>=tK5b-Je)De+o1fkx?0(o+VRJDP
z`KI3ctL+`*_&@kk<AZbh1pkkorwXROBjq!su7s&f@}AI>FgtxD?+W!t`<~vdi_%nb
zX6S46(O$;v_U)oH-Fbr44}td}$BdQqU57~?aq5X#tMo47pHL;+0|OWRCEwKdZn)16
zGC#S0I<mgw$oynZ&X+91_%qkg<O8NMb-h2cv4mEJ5VMa<$4(T-!+_Ogk^Iv7yl{Hz
z_uPW-WA;7N)Q|kWx8#3qUwvv5pN2`G+H8wi(=sU!x<1W~XyOyUi|U+rCjZBdw(INp
z*(&T`;r_;LlK<_%{*_!K!@pG9zM`(ng>+r=^Xm(X@P8!s!DTTYz;OikOL6_qGTy74
z<e%XEd_PEe3DzgWB>jW-x9uYJkklvtN|A5sqgubVV_f=YCH<Xe8|Ck}&NYrtf6f1Y
zGyUBq^2U=;vGmWpC~r6kG5vGmRuj|TlK+~N`mE2?X;aP}J<Ynvnl^gm)UnpNXHA~A
zSN{X8$stqvoJo_;nKEYV6swPRFyKII(mA6ihLNfM7pLxhdfvyelg6H%|6p|a$jNy_
zdbA%<dfJo&t%+w%9+MAt%Gl9k&pL1Hm~`Ih6!AqOHtnplP2~Fbvn~z<KXS?xOTuKd
z^AQc<*2T5K={~;#r~4G)lz8oM+V5B3v|kZUiPsLN`~C`??puUY;<dwR|6hUA{zW(?
zt~u3;?IiU>5A5#mUskxk?^Voi>-U@O2D)Z7%E3F%tl_EacbyxF6C3Wzd5-hQaDBZa
z*Ck41AS%lCfBh$&^Y1`g?-%ab*6%=9iJA9o>o=gCm4$n@^*hixG4q~n{pNFORpFj(
z{pNGEn4`)8K>Z=*KBe1Vu0OTI`cpTFzWr81HN3g$=r}D5Kblvqs1KKU39UT;SLNS9
z=lK-CY7o~CvChl(w-MHhqvv8)VZNU@=kGgU|8Mp)%nKj@5BqY7Gd>KTdO7~c^r5f1
zOuXAapGN+9Ki*r8?qNy)W}E3xIXlMl&-?#8<DIf_-v{FjSVixZOTr?0uUtRi(R<}=
z;8#3l(!*;x-bd2F55PKTu8YAv;8Bfy+ptJn`NdVi^xuyB-&@|lbW8HNTset&{wpHs
z|7el>M>A(3AB{Erc?;oJJ_h*$r(9gzqZmD(w_uZTpNrfZXw@6%`^bFf!T+c>KzB_<
zvHah+E&C76e-i7<EdO1<k@+x3`a+Pa(=wiay}qoK=l?1dJueDaC2ukDR(l$MELd<q
zor8O5$bbI47~Wq=!TlZR$C6J6IPbGjSBCQitn(WE83JVM?{|Mj^Pd9$!%+US?+X8~
zl&Cb%zqN|zpZD*1@Gr^_1CGkYg2mJllP|bFX#*edjggl%@@yYrym#(n+(-9KJk%kK
zyYMHfSrK62hWhsk|MPN@{RMis<+hUdh-aC2IJi%Z^&WNJ&*#D4zSsvzei+;o>?0t~
zl2!Gs@t=4JK4`E8c%;6xxSk8#g8Q{g!tR-m7(R8TJN1^c_P8Wi{%0Zm`%RMiualh5
zoni8m(<VOsz0HOb4*@K|J|F91Q_dOgvUg4Va-W)d+k!>Ebq2Rul>3Mc{5La@FHSHx
z)BkrD8QcQy!2SGc<Bzk8@jnebsu|yuqJF`nd+i$Je-hij;WDrDL?dNke~{BQo_`Db
zgFFU={Y+LXBR9g6K1KZQF!`D3(---i`=V@o5IyHiekME%e^6g!;J)<HFkZ=kBRct}
zZohK-gK_*<%Km(7Rl@@R?f!4_f9Kw(`sXj${xkhw7XGtA{@efG;J<k!KQw){)f0{D
z*PmB;s3}*Re|h~A>HlrzEQ`!Vbcp9ai;B#HziZIX<$hrXSAVX_pTtXGu?YJyiI)Oz
zg?<Ea#(P-AeFE+~N8Cs6k!L(?{Gq=5<Ug4EB{2V{Q2zVuA^HFP62<)kPRDruc|V8;
ze=Y87In>lcfEDlC;l6nb7Qf9Jxv>6E0$<F2v1R<Rf%6=X*TIxv2YCBk(f*D3<@TTc
zTlj8vtKox#<)8QW%#izE?9PSzZJbVqf2JFC&A-kiY4}&{{+|7JHu1AD|HgU1uaIsY
z?uB8z`eC0M`_YUy@4ZpacUSg%g?n#2G3Ufw>|GB;Ptl(Qfvfj!5#*oeI|u$=`oD*;
zm6rU!Q_a%9*!?$|a>GCQVfagNUoz9*M!d>@4(E%3z%7g~vykH;;L-b$h5(Oh<e&O)
zn%y}g$o~iE|CgUF>EE<)f0NU>X8d1*^6zyt?Ht38=6~`(;0f><dC$5Z?<INB<a5UN
zD~t=RCk$>QfQNT6^7WP&JjH+`I^CB6|M<mL>oot~f#&-c!2jMGr2ltRApN_<^RMS$
zwetL5nTx*3@Wc6Jz$$;=!MUbiME<AX`~my37CxAQ`jWT}{0HFC{{OZ|!r`XjKB`fU
z41ZbI?YH{;4>tVseC$cG{^qSKoX>N*){K9iTk<A{>%WCK*G-(^^Bv9XR8wzRh;Z~g
zALGq?UMOE1?!Upfh<FNkR4d2QEbE_LUs`m9=0Ab;2j1`1Le7_3f%Dyto)8hmen0hS
z`bW=;GW@TRFIdjW{{oB)t*6X7r-cuAPoNul7xdweP+rjguatF9t@?2sfqEee+}IX=
z$v2UoKj<`E`2VN#VHZmJ+o{6&Q^%?q|4ZL7@nb#Da25e)y;TZ}3vrH}xL)Ja>I$B3
z2S3dXtTMn|;FRMV@SnH^_fd`ci1>botr({H_mKbD|G8bxzh_Sh@ZY^={Ih*#K4dsN
zZ%Ul;-iUJm#4UW#9pg^ojCbz{Zo@st*L0r(9@Xd%>%V9IHomXU|4E$B<^JBErT)vF
z7T~`}&G_ejUmN?A8UA3-f6h1cGx`5d_xq~L$N65{2!Q*2ZQPqyjDHL68UADAH+9qe
zSAu`G|L4g4%l60s|2=EQf3fm^GWd7bn|L$)9hag!<6H&fx03l8cn`$8Kgz$2{Lge8
z)XCJ}#FKCz)rj-ER`Wl5OY^UAzIO@QznQ|nw?0t+_o^BH%N81byeZ-OzbWcx;^e;(
z_$N;Oo8$Zf^E2Z;3v%&(Z{lNvL7uNA|EVbBFf&|QFKD(c8F#+&OX1&52ipIg<N4?L
zJP#i7d|npm!*K4ZZ_<Z2eU6^HEWro72Z`rSN`dn{Cix^keVz%|yU}`{@feOj)aR|<
zqfDni$G@F0{%NsM>i-^%)Z$x>zfSLX{&{}SgTK*v3x?a@GydcTh1>aSP@h?c8=UDj
zssZvd%CifPW?){7<vauYI;<}!+#})vk7_FcOo!gQ!|nQgqdfmT!2gFIi-Sp}%G%YG
zS7(=a{`L7jtvvr%-Ydd*E|)RwIbiiB#)a9*hEEq373~e5>=%%qVQkOQ&U<j5pBKjc
z<dwiL#5o;ngb6nXJgSlJa#-9jsqC{L{}%YK7XF>jW&Vf!m;KN9Z?PhrKV5`>9Ny1i
zey#vM;`(^GMCX@1xR1&u3p}c^98o`UNV|LE_8%#EzeFqh3DaL6&|N9Lg(l&nGJhz8
zUcKKX^GtJ}xPP!p%$h#j9S)(LG*tHU$a`Z|i^X2(d@);#WIy_I&3)4Q@q+t}>ain)
z@AZCNSHjDR-<k$Zk@i{kx2K+!Gi5@@(fquag@(%hxSZbao)!OvsK__<#!Fj{iR1sm
z-A%rBW}0!Fn+x;5P~_o<e@bVS5+eV(lR7I+njcrfw=V4L)4-#pjL80&Tw3gf60-kF
zn-gctf1x#388hSA#y0<|&h4x;HNMT*XGhBZbD=FM6Moe+u@`z^l(F|tl(2<*U2E*s
zh|bC<cuc;je{}DPE^+*C?Q8hYU1IXRBkMfD^w;mR=4Q+K$O)}|I&!v@ms{k%z!O{h
z#P^atvDcK{U+i6xhuCZ4x^7DBH1Yl9D*3O8>$=`=<$IwKvOhU@gq&ABskKl4t@o1;
z|KZ_p<M{8DHvGFs8UFP;XORD_?1$CqUs=}4CuglOR}bl=G^IBifoDf|l6z1(spSsr
zyNJEeWj`5nW|vM%(>Y%nv(>wk($rb@Q)!hvwv$iC-XZCGg~;zDu@`bWO8;EKuO1=(
z3AMV@*k?``|AczTer&y8D|3vPg{YYB)c3t7wIz;!3k`+W+2sEy|IM42{FZ)lC#9*=
zp2nP!|C){~HSx0_=%_R`=XmVlj!Fsr1hcicqtfI!CWiJa;$Fzw8~#1mQDuZqKF-*?
z%Q`Ae!-W5!nk@S-y$Y$6px(W}{HYYbG*OXn>U|#k$Io&6pN91J`o;7Al<YUv^7S@$
z@+m3#L91-pPKJ;_ysyMwsJZMv)#;V~Lh^<X^NZVTC#C75Q;^<WcT!2Ag_1wCa#o64
zA*O$#<xWZy)7$MR-wRcWJpB5o{Z1++bUOB<+PmzeG*OXn>JRRnh~0nhpD&h=Je-@>
z>%77If7Wis$LwmUkA=>Y@~@S(s<}_cm~9>^^RcuKLXT+oSIU0<ze@cq^u<Qsxl*r6
z-7It}+yhm=bdFfNnW^j37sS7u_$PED%;}GsD@|2vj8E=c&6Or9@=g7P)bw$2>3{#H
z<_qg8(~oyog!%8Vv&o+-B|Zr)gV~Y)nt0wQacrs5w2$nk4(^{EKG67IDQ-1wzedtp
z<YOOK>Qjl7cWtf|v!)+*M0}2yKAF(LcabBbH#*6<S0_k(gmgDkf1j5BnyC1X`jJ~s
zxI2#jtLmHl=v`y@&q{qCO#i?35q{+SNp2r`|6FMCaE4&?6^%ug_u;GellR_*7IruF
zo9f?AX_~?a;IoZ0#a`ZrPYjUv$A$K|BJAHpsb73GRK6F|^4Ix2BmXt2LK6GVWSe_P
z-uPNESn5yDN+#p@A9ktv!n<Ii|HqTxApakT2ReM~N=Xl)GI`%wo2#xU_37R{%=cAd
zr)f6&Gimv+>3XR@v`YQ8)TevJ^I-n?Uii`esp}*lq2`AfbK(}sPeSX&9Ncevg6u!m
z%9$nkPl)-Y>P87)h>HKHU)-VW&^Z3bY{eJfPw@Y2>mTNy{lC=aW=a$LKN<P2saXFn
z^QG7evHw@~mAp4A<oA~X`^$^<|6K7~6Z?M&`BoGAf2vvpDa8I?R{m?E8h}64zwdMN
zieUf$YmEPQ>niEfrcwTVUZ>wA|I3E>o_dAIMN%n$e?+nOd870H7W}!F>t(n{APM{(
zjPsnQ%6-HJ&Ur4r7a-k0U-3QP%)(}>THfp(&`av#>!rW&w8(35fq(YjsqgY^$>o}V
z59@!N{~jp&f3l5qAvVg{*YIz0ty0v>k5GP@DucUi-2b<u$v1SD&mUV7s%l$8aXgUy
zA)%^|Oyu)J^818J|0r~t$=_KqSBtrW@Z)rqz13S2Dz!b4PydwoRXsG3Pyd|QC;paD
zL&SaVB55DQe^<;@{71dRt1onn<Ns(&=6`wy`0pRjzpfW`St9>^u|ARY!u+%Tt9rAY
z@_uTk9v>keN&RS7NqzVCcKPyCDP~v9y`{ga?Nck-DeLEUiuGew%o#Cn-X`fI^=0ZU
zvHwRqb#`NE|HYgWbETM5!oNPhn|`~UvQ>MspC7-G|I5!T^Y6!wrvE76-|ZFPf4~0@
z|C!g?sj6n}^Zcvj62Io{^Zcj9Tq$PqpLkt(*`a-&e^<;|F_Ztq8)Dz0eV%_$%sDZW
z|D?z}y<>rYomN^=KlQ7D7fAZ=%lRM9e|McF`EBRMitA6@pW>BG^uNzNW8@(@Q>E(F
ztEbn2rAwTbuO1&Mojz;iyqr*d>6+^EGu~P`k0+$hE9T^UW>WrZYFA?1XT_~19e=H=
z#ZJ=$Xb-DClk<B*32Fbda@KY8NuTf1{!#V%yZM*?SkC7OQIT)zeVX)|FZ}=0`5RZC
zziS>?|J*-5{Wag(uQCL%Z0T74pM9H=6U%>UmGIwL-b1~lt4|jmDfxGmjDMwIXqs^l
zV`%h8e+--555nf$Vd3*8IT?Qi)tS8+au8LD^*;4R*Hzveyx*f5_5Z?Vjr<R}{~>jN
z;h!afda?UiPQ-ebbAcH@u)K|^8sqz$y>pzeTmG+7`!_Li<Gg+n_;pzCRX>^VZQx6J
zPay97NCE#V!yRYbJHV;Y9r^!!<Lc2t{yzi%ZJJ7k5|!uwz<-bbClPO!AMzi4Uxj=|
z-wm++(3QF#`^M;x1Kh*COPmLFfoCQfIY#FbVV%GKatMGuI!v4w<i8i@|1SNlE|78r
znD?I?^zZQ>UDqN1<7b)l=e)k<hoaPIu8*!a`GRuki~F|J{RX$;zKrV(m<LS(&#$w=
zy$hTg&1nEHKGW^eApeuWfBAHi!+F0=>NoNH|EKp|^L!rV!uzg?TZkX;yUy-h?jw}T
ztJnvd%Z~T)YPjFf*Q7sjX(mI;g{h|e=kLEc_}As%>iz5R&--ywhy1$yyT20u`TEcP
zb@|Wzm-t_Z{O>_8du8Qg!ScTu<^T8#O!?3Af9S8vzqd<#{<q&Y<)7CNu>2E0Ez%9x
z2)?VJkLh>AenI{RP1GH4x#Ho%2>%0rUH(;BJpayG!+$0CB>%*-5&orHZxr<3{?PHp
zApb+afA5PT{2%t~^6wPk-`;5WPw4)(DDqFd7jR=M^DW>z34QREvmXueUjhCTGa~#C
z`gQrw7UTa1!#|hm^ZWzny^Q4F#h;qCf4pBSb@;E#zg?vKvz@PL`|p7N;n4To`OilM
z)Bgz6e^bUZl)E=d^7l`sj)>>K6z8|NubIWG4C~<DOQzf=5MH+kZUNu@1=BC&d9Nh!
zXusG2UXF7xbngP^{y_GND}hrh#UJWT54tOM{mUI}9OgbYe9x76uI2)fkDo7-@tfR#
zP&uf*Pwx&fX2)qSYdM1T5VNe0P(|-!O7)bn>oS?|9?{;XyJYaJ{maU?nkvLztMnP|
zecDH=Wo=(2W=(@-zC){O`Cb$6`&C0^tS=P3zv<h<lz$(ReVBwNR7^2n2s^&I<DR8^
z==mYe50oQ+RJ|?pQ<s;j<Rd2C+#&J#BiY^f!*(~iPLE*JAs81peaw72)1U7(a=&W|
zA8;Q4aR+#GelQJu{~Y3p{S+DCm!Ka_e>~vDGz%8g=e;uG7%iU!&JXkbs<)KPAGI}O
zX#I(Y^T3>;pw9Edl>17^Q*AeLV0qe)`{!_enBgB7!6`ScPrI+lIp8-6=ZdZ6vYz~A
zVg0#M%*m?4`g8L2)~Zs>`SoWpTPq6d&q?vCQq0Aa4T}NLkDYv14?q7vJ{vK<&I}dK
zx|=peJIxM_&p&$IT`T6FT_XG%Tc!AJVixjAz@l-)y#@Tm2u`^zi{LigCvi@J`6LBA
zdY`ugyqLBC7Su;?etk%=e04zk>#x7hZ=64WoWnXiB}QGZOKU~>aG#}pzL|G1wz4n1
zvl$m!C!2gl`BdQCv~{AvEqqXkb9~vG!sGE#IA`Mg-K3Wd_tEpp31r+?u`fwwFn(u-
z#&=PTa;3hu*%ixz@@a+o=W;opmp!auUOwvR`1})<&xUs~{}9=qH!!k4xdag_!#q>;
z+{U)o;m_&geU~=eSAS=4x+fnuM)H*l_curI4De!F8Wu=)b<W_IUefZ(>}%53hJ3uX
zBA>Q}_QyIVUOw5`CPA2g7U4c$&Nne0JtDXTi(bu4y3)N3+-@7j9pI~nhH)2orwHx=
zzdwR!ffv&pSPX~G_e(v<XK%<yzhCOME6B$_HeNpN^I`c!%RA$7?mUz3l!FBezIV!c
z!v@axPKh(0q#q6Y<G}s>Tvx%n2rlp{^uHLc2fUaz9Tv<#N6x)%O|X1Tfqb&A^cO~z
z<h^lH@$&ITgypjl?HA)i57NryPnHV{7H{HQ7~NA2%U%o1f%(4ca|Y*nL<au+=7X^N
zEb#hx4>mUt>lVO^X=SiTK)<)e>1~4Y;r?)aT*FH@QRVNMaNXnL<)haJwPN`iiF1A2
z?`Ujgt10$JXU{MxQwocU+29vAmeE!Ip8nsN`lmVEN8d$i0em3*&%F_zj~{~bC){Uj
z!+kN0`G@+PCI`*Z@<|LZ>Dv_f=OGbCR@Uh`f94$@FCV>rs1@Z??EUIPFg{>;as028
zI*s@6qhFWLCml_EI1lc^{U_j;`HlIfl;`RPnRc)e?kh0Q>;kU>UQA;;(0-3|?8$n6
zxd-`heQl_muXH{vyg#2k!N{i}KBUg`l@-9t79qdkTmZx2K5}QI$v>>wxL;fWFTn>-
zE;jx!A2Pp1&o3t6{<OYQU&?xH=AG`!y}fIGykWoFT~&%Xc<!=lepg28pL7=p^=}?r
zb#}0P4MG0V_kX(S!uned_kgnBLtV>9E9Rf*J_BPbPaUJ3b*?t`0Qou$xRo*K?&5>!
zIKl&d>Kc?soXgDucb`DIU>`#c_*p#PFw~UOYT(5*lX@~w0|y=K!T$Yt9Dk)CpYv=v
zpAvY#S)CMLzW9DK<x{Nv`gh-NJ^=MncAbf_gZK`A*2sbDJ1%gZXUO$6a>xMRyb*Fk
ze$E0frX^uP{rJA?_SE^O3g<UhVSKT-oL^Ic_k*pI<K@Hidz8=5a}a-=J77Gb=W$qG
zqU%`+d=Op#vVik^m>pT?8udKnfOm*(xaWI^3U~^5F>L@WEa+zqdjDK4pY#w@A3g#3
zR8N-tb4=lUlRdm<@`>`5j|bK}xqd}CJiR2G9~iHOAA(=3-!eTtlq2RJ8v$I3_KP^>
za2fUw5qIFem=?Vkp#G*$j@I>aVvvy!>*uN6W&9pI|9DEx<n!ld#vc_KUwn#nT;e5&
z;IUX=CC+?xL<DaR_iw#x<i>iNa{dk66Yl``Ya;F~;Kj6P{#p0cGQWLi{^9)q=WP%l
zPAudfcSOzP6D=={M>JoNFP@vrjWzX*g%747-EEvRWd5l{`E}7xw&8vW)|Z)2n16ai
za0l*-X$*(<-(2$0D^kAZS&{cmx6Aoa=a|C#yWXialh1UnYtJ_A5yScFEu{N6BL~Xo
z4vbHk?iN0<(NEwz(~S2F<`ej1)BR2+-_jq-hwm{G9}f4$H2TMU)cm#!9t*bbn^FIq
z@R{_VTNKV0W>2e`d|d7yxXZ|a@rb?)M)`F2AUD+K7Cz{McA4|Uln>tza=RG+$q(OG
z=lk)LPmb*c@?n}0Dxyd0pRx-dKQ6BR$<37U`xN%#WN*{y@$%vM!-WWs=MPn+{%Nw>
z$bonX+&_Tv5&Qq8z)wK`knSnZS-5{C3;)T_bdFnrw}U_VcN7~Kd3FF^Ok+CG{(zxV
z-_hl(>X2~#{NTBIexvYyqB^r?@`=iU;ZP17Uy$FZ94vegl|wJ!Q91Mm9+g8G@C#XA
zA$?hHVEs>;4TSDSKQLfwuzY=i^3}el$miVp`SY8W6EB~|=twjF<jWWGGb8Z7rF`X3
zWU8Rw+;P#dLHTT(WY)LWi#WU%jq~s0*(2lS!}swhpM6pPc!}`*YJOegM$^Adp@8un
zyzFG-KGo1jl=o!t9Xtnk4*fvlY2Z^aPGSCZfm<J$a?N>_3~*JiS>gWWk#fcI=y6lV
zj-57T<mj=MT(i8--UnKv$DcF0eC+6nG>;uOc5=aX{Al0u?2%LQ4#tm8%jZ)<o{S$o
zwS3B1lP6A{Hd1bF9ygAjjUPQ_tX$hX*~h0A(5chTNlz;ud;U37CXFeeAurFGeBQ`O
zXN{2?oatcds6r&f)APno9-rr8szh_ln6cAFo;4}&TtfjbdH1W9JnI+gpUgY(@ZkFA
za+IG#o;3-W-~Tq+<PX-5)QjzZ<ok~7pRhj3?@vSdvP^bR=V4xm^)Ta?c+#XVahChT
z*>6F+X2YNQs84Lv!$W|xUzCmPmxOg*qk9669#HRek<UCQQvY^;v!QY)7y5tcG4b+w
z7yWkYmT-TD_py7}ze4#;MgN3&86r|vW#mBI2JS&_#D@c)i}ef2Aq{+I+&4*lI`D;%
zb9BB4)_INTPJQ8~wdcm2A8`>8>w3etp6A*@d?BCQ51)F!t<n@d55)cP$yIHYCY~Sg
z-fF8faesJP>@;zIe5L%?lwB?JC)eax8T0$avmc0^(5BDB_S`>TwYII&l<H;n&s*=d
zRhpvbiH?q(zoLLB7wTu6RQ+n4d>)!^=8c_?Ouo_cI6?XJzg*@I1MBCUe^QIOD@|E_
zKdsnTJ}vW4LLbWcJMBIv|26$|i;0o@WmlzX`b@JwJh7>((v%YUXqDJ3W}#MBgu~-{
zx+h_2I()9!%Xy^SS6zLooGR^yoL{E;@LXfIp6RYM1?R))M(dOd^<DSvqVM1Rr~T*p
z{TKIlXq@G{9NvL3QY)N4;kz(p2;^YSBWw@vKmSkPi*de?_cMg_`J|xI=h5}~_iC}z
zl+Q1lyC_SD@5N;0zougE#n@kVQJSdcLZlh!KQ5n~3%1`Y(SCn(lZ4+|?&rk)wCb$*
z`o~&fe6B(Or=ef#J`<KtexJeqro2|d{X=DA{eLd*^P@ixV;>9ak!rZl?>|BPyA3$|
z2i8ZXe<0ffd=;H%RA|4~N9M0B;EWgbuUkHFPf$LUm>=A2pyZ!_Ft^BB&V+dRaD9|~
z?bgfi>)}2QL|=`sXK>D&Ct=a!YJ=x`q2B|%A8__dT;TWJYTR46znOd-LHCCke{yi&
z`A^~aa9ufi&Pb+1eI>`Pje>r9*O&bFpE-Zp59{lFTgv$fIfuymjqQo?^5Ol)ln>{d
z$QMFWY<Jl|qkO(Z`(&MM{I~JJ<><E&uLiy^*4M3<O+NI%N8ct!4m|gk18)6b+C{co
z3gsr7GwzAk2VRbF9Owrm?rR&&KWXHjIj%TpA?LMGzMM%llTWexUuJx3;z_w#2!GAj
z2KSCLF-rj-c59d~2RPqr;XHC0c>W%_pG`bH;JvUOPdQ|PpB%Y&X$f#N+xhwTW4FE7
zEGVBrkWclyQvbATl$Vc-^kuzHJ(_=xy$f;}#*{DtH{tpg=D`z)&+5h|9m%f+JX&v1
zZhu04Bfpf-$Lk?atdqI$XWEu<d@{iKju7WZJm5}5U(tWyn4o-)fqXLW$o{q+nyC3m
zM{ja`{*f&%zN&)1*5f8V9@a|$t7yJTz@kGW9h1PX<T&aDBWD}<Rgkj<JO!NhuyI}4
z0iHVB$lpHG)JqxQTV90Ra1XNwd?EB9(7k6*3hkde9`bo;Kj}}rCuiF+p3I&TFP}=3
z+ba0ScEo8K&Og!lDas*<c|f(3xnO|&j<^N!f6=sqF8p_qADDj})H5?1hU=42z@13>
z8UuXjI^#e683&x@i+bjT1CG%7r>ej4zc=KwNg`ygX^2=!|0f+UpKL@v8?bMH>;3fL
z$M;QqxL-5@i^n%1o><?tfiH~Q%jy8P&NA_&|7qa!;SX^a_*~4p<t{Pf{|xZ%&zNu(
z%DV?V8PQ)kZ2E3mK8gKIxbI+mI!y#<jVbKURa0svpJq=Qf0!-^PE|e?PA`a69gloY
z_a*q?bF@>$8v!4Mbs+W=DCY#qQM7&BihSrUALsjE!=E`^H{D|Lc?!4%o!Y*KU#IUc
zoM%HmT)$cOiS)<i{%Y<&u%^~bKDTgOjs6?M+41ABd?<%6C?C|T<hLqv4v+EvWNX-;
z9tdFCpTp_W3%K=C80UOqhWio_F7pk`)c}0|z`Luy^2-<G^9k~g`c&joPA;UZO{<xF
zhTd%A@4ad24FsdAF+at0w_(vKvM<U3e$;cuANHSJ;9XIEiB|w$@L1S=2Kb98M|3|I
z`1k1N6Ze2qPGvAJ|6{+?wS3q=<oh4(r^)@Vs{;3bpKIj9d`_MFGwA<;$UoNYVfk#t
ze1z4;^y`>Ue$V#kZj;X~#Ea|1YzG<d7umj_Y}z9m?wu!$d|3aafbS(Aa-5o2E$60%
zahe@5&+k|`N1PKg^Un}`|J{HF=LF?56ZP`~IY8o_TUftw&x_ALTwkw(e_Y39y#ZJi
zTmQ>YJ_8KD7CzXH_9b_Sku&*CVV=kyW9pMM1Bld1F7TFISH?V=2mG}UjXXK;wg9*d
zUBv3E2R_^9zMy<Ke^`2qG<Z7}<l~)RGx-#|KQwwiHi7Uz!9G;V(*oY(6BB>ptY_Za
zJzSskg8O9{U$DPN{&v}5{Nena4fnj~+v;f2B?Y`RqM!HP`4_~^|GavsahO|S+C@DM
z)qB;**BiqN`BJ;A>~7p!b2=(bGv)kyP@RZ^pSr7~(sW0DAZT3a`^fBP<o-Re)AaCp
z!LOBiC1S2#7q-8a8|eUFi2Jqd+vUD4p;Z?ei{zahm8Ki?eMS0xSoyDM!S%-8y}P5*
zR7^$X_syoQ**N*FX>0h;wlw`Z{SH%5es;UCeEzi2gqYIzH3;1=>qA;)es1qm#VN)<
z|BDRc{=L22$I)K(#r;F>+hP_vWRvti<i3T(=Jr0NuQXp)ejsOGgl<Rrc#GRBO{u>b
z`(*tNO4BsCpFq#oS@k;jG)?UN`96t{5}IQh_ufnLz0kZnjrm{wM&<Y7zQ1o0C%;M=
zziE|QWy+-<rv>FVXRxv7FYo(uTF86wLKVk`^XHyT!t;k6Sg_zhhtmu7u7;l5NBQ?T
z(*J`caD6|d*QJF|15B|~PD=?-=%RjR{?TbGW}zJ};+ICx9VhaX`AKgl`CdqMGV-M>
zI~NY0cvO$d@A+<59UUh>>vEHStewq0FS;EJ%J012nDElG<^Bz!rE=e+R_;sPeERVV
zW3Cdjrdd)xwXzn-``tpN*BW#BIr(1GhsIpJOzr~_a=$d@%suk{w@^E{PrfPli3oig
zx&NXu?h|xhmv4n;|75;Tyee&?(0w#NCT5|g`x^cd%f&48hBWwEzSVOje4%10D!(hH
zbo?|<e#09W|LqTr{5<h6D8EI!h4a%AnabDmtyG+!PRrd`n%+7v?0%0DF^hZqD!ETh
zXz!zpncw%B!hc4eCiX$qYp<|>O%D&7?Z#pM+Wa<bz8Cc&{ah;cHBnLdy)x~0OXB3W
zW`l%RC2uq>Gwp}&X9VTvwm0%+n17e~YW-d}RkLYEp2^Pjl%_dXnfz+4lzyL3`@O^b
z@;*C$|2we{sy{`{CCE>7)2L}UK9=NX9iMCyDW^g&9Y>c&zZUL2vD370SJ<x-e>4?Q
zQTaW%<n-A4ZT$O9Z<j=bvRzXT(r4<t_p}V|Zos>I>XC^)LU%lGmN}}m(!~2v)8DjG
zns^^-a+sVq6XJcSiBDQ7O}q~^A>V4^eW*(8H1RxIc55r8iT9ya{m@Ej`cLmeCI8gf
z@1ef%_*tRzu`4is8g~~s$G9hbsga*F1HPheqhHQ(FT>%wZWiNA_IvW@)qo54Mq!>s
z0dE7i9P5@G=X3!6Gv3><E64eW1$-Xn6N!`03e3-Pf1C~XImDmq*eT$}H2O!qi9PYq
z;QBh{ck-OD{3<W2oAPsu$d5SrtS$Mip4ufDCqMUsu>7houbcAA7LgzE+Lqt4yO)&5
z$?uv4VfiJmsGIUrkHnW>;<YWm>qc39<K%bJU&8WBUs*ThXBUwl@!FQ(BYWL*YMlJG
z&kD=0@~XNiKevedh}X9KuK)7%Soz(5V_1IG6?Id7*&^~IUfc59Jn4{Lartl9nPK@Q
zuc@2zQ;!y@|A5!F{Dz&;{>M1^y&lPb>1*qz{Ols~BVOC`>oc!+*EspjzfHzHNg0o!
z|6F-p-ISkOM1I6;TYejEyZ)Ov`R#N`xcpXMUpM8KEh0bSwJpC6dq31ZPJRhF|K=;?
zzvPW|Q-12PBK05e+LqtOmd(e+$<M?5AIon#Q#a*j7m*+F+Lm9*jSV-($#12+uNusM
zl{eK*`ME{pN4&P>H>UUSk~sOzh|C{U&#Ig9%NCIz@!FPO#WfedA1A+Tr2Hml*G>7U
z$BWc|z-wE6t4_cAp*Z=i-XmOo)3?-3`PoI}N4&P>_jv!eGI8=7c(cfFuR#BAPTiEB
zTSR`uYg>Moy)oy2IQjLvJ)HllZ>^j1%NCIz@!FQ(%y%0ukCWdwSB2%5oL4vHr=BQM
z{{gRU`JI2=ld<i`;upj6OW#&E<!2X>AMx6j-ybi1;k&r}H{=qmMRNRmd)<_uTSR`u
zYg>MI-Z}5$IQeze?T1#7U-kUDDZgwH`4O*e`St$z?$6@n*XO#h{E~OpP5G%Oi`0L>
zYg>NnFL-iloct;lhs$sJuDU5dyNLXV*S7o~Ycc8AIQe}OX+J8xx+y=mi2R7xw*1CC
zcgJyY^4lo$r=j}q4|P+1*&^~IUfc4kJY(9DIQg}R^q-S=*G>7Ur;5~nz-wE67xq1M
zw>bIzLFQlV!1yhFPu-NCT||DwYg>K?rVou>zkEr~7X-_1<-K)Ner^%@5wC6et@^`h
z+v4)ymdN~R^?h|ye%T`OBVOC`JMN}!vGezLM)nUS7t~Gpsf9)AKj5`3zX$fIt{0d8
zu8;2j`*YotpIt<L#A{oAS3YQc5huULBm1u^@2{KkbBoB2cx}sX!?H_vij!Y;WdA|+
zU+Sj(vPI-aytd_c&4W$1$H{NKw7+hk|B`&LZpu$RU8Md4Ufc59+<nC<aq_$I(QyAI
ztuOo*#eL7zfA#&(MdWAyf0EzpL!Ub&PJZJe^H-G**G>7kMdU}kw)5Xt>t2ZMKffGZ
z|E;W>^2-*HAMx6j-;u-O_fNilZ@By>AFZ46Q;Uk!f52;7e)U_O5nFyoMCK3DkJU~2
z*+t|>ytd^x;`1AKh^znHi2N!aubc97i^z|7ZOhLaHELp<{7U~EF2B`J)J^$ii^z|7
zZOiYA%-w6_<kzY~_MZm(e^1p-`Kf1$)PKNhTYish*!i6}`K^nL-_i@~ru^(8@*`f`
z@+-Y=Y3O}*o`184h0AZ{({)pRZV~wruWkADx~yr-xcoOPvVK{;sBX$HTSR`uYg>ME
zuD^C}ocylS7jo@g*ngE=TsP&X78j}ifY-MC_Gx=nS)Ba#vSs}vAiwmpbyI$J5&03X
zZTbCq__h7x<X8E8c>TQcxw<Jow}||R*S7qg9QH=5IQi`@{XaL5|Eiy_oAS#RkstBe
zmf!SQb7J?Ow$4cZFCf3<3w2X|>e(XoAMo0i-@Zr8i_L%4(f!X$>ZbhcBJv|%+w!~M
z%`ZNRE5E~|{l6FMru^I@@*`gB@_Xa`XX4~{K=l0E(z+?XY!UepuWkA5()PQ7aq`<o
z#=pMe`L~zrru@`%Me0A`wJpC}$9{cpoctcr^Y{A{`p@aV)=l}@MdU}kw&nMSTRksM
ze%FZn?120#m(@-Axkcnhytd`{=Gl{C?=N}bB<cSJ<X8Pl-IQOpi2R7xw){E`JFX%w
z|E(7Jh3dc8>ZbhE^F``E;I%EkGfUjF<K%amj6br0{Fh!{H|1v+kstBemf!2WTFj1<
zUw;{Y1oL0z>vdCpZV~wruWk7aZ@KWkIQgX`{pad8>Zbg%MdU}kw&mApx1le_$!}cr
z{+Ft{DL<7hQvU(3ZTY=2@z&V;H*%5l)9Dp;Q+{?4`4O*e`Q3Z)%GmR7OCskND&MM`
z@^g#GkNAIEehJem<lhO~`pW6o>ifkr2bp`j`MyC_E9w7DZLIh{p?b&253{O@y1o}x
zu0B;Z{B4DIlle|JU{w}*FOTu)*o-cWzI<o2TiPi1rcO8{Y(KL@!QR<P`UuAs?2~dQ
zaVB!F_Gu%-_pHvpJ#2n@hr;*z->|R3=BO!p|LOgEw%;6ge{2dD-FsJ>`(qb~ob;95
z<olJ4azE=uh4=F&>~74-Sv{1d5`Dj}+y`8Fc@Lke<$W}5wrBS6slgPvPj*J(`-;=T
zF-=75XG<dK@2hU;;nUY*w%=wdDs_ITk*h7?X<94kqV03%_VCHw*Z7~F(L-tSb~R?_
zydFx^)v#A$r|HOM#=rE%;$Da<D!)J7{e7c2`IUZazOY)w%db?t%)T%0M+rZgYI>h>
z)n9~vp<?$LSBssdfA>D)`_7m61mrp6ny`7{p<)i)uRM8v*xcz$O33IJi+!9L0+9O3
z50-owd>>#2-cR^VBPkp8>MMJjx#&Clev$gG+<3SV{uX<m<d!AIAKo*|eEd!Xx8Tn<
zzIPdUKjhDRzoMrJ*oJ%FS4;m>zz@Sac;17?y#ss^-gR+KHFz5M^4m;2)$s;*fm2K3
z5AU&E_2r3YY57&}W9q+0aQ|+Hp;G@fudf`uPo{8>JNKPZckuq-M)>=|N01ZV-C?*B
zBkvWl<h5uQelMW}A1ueafZ6*^|Ag}9yJZTv1@}Xn!k>t|kNPy6ZZ_O+m=lgC<sE&`
z?0C4Rw#*c3wGev4k8-yK^Ir$NpQ!J@&uwa)f4|IL9iRXBei`M*cM_dGXE8`$&%aA`
z#CYFq!S*Q3FXr(6Ao-|{ykFx$;B((LeDfWOH1Oy<dM@zjJ7`H%xw|wA%R2?U6L7w#
z<`k-EKgP^Ah`ze*rF+&iu2*kf;wa-^zWseiT(pw<AMba$AH>U#?{`stn;5T1{;TQ~
z&S%Vj!z1r9G5?*wcVOU8BShFjJI;4MN`ViL;JQzsRhbvgXUz?)Y^D$V*LSOHb?8fB
z_ssXkR*vK2PX%=Q!=*iS{!8F}uPW4k+fSE!%}0_OscYB7%dh%(CL>dRgYX_C-x*@K
zv%8yeNZf+Okln+$4gA24VcY?JOQSIE0#7HxxCi`CWnnxEyd>gJ4*2qjdxdfeYc(Bz
zs1Gjt;)P)OZ2|eI_r&2hfy}!uUViR~u>1y8n0!V#F<iH8m=6mU$6OV5Zv$ThoaNL3
zULXDwPXnJ;FYLbye0T)+fFBgWv%o99G4ZjNmHS8zIJG4HltKTp-6P|){Jg>DyJygT
zOc*Q<hBQ$w+7J7~BJzv0AK#+?Y`;2zLHc?E?-sIsv|w9``oX%&)R&CkNo<!dHFB}x
zehBYd$35>U;O$q1%N@F}Dm~Hg#qvG^?#t;v$}hX0KStj1I|J^ivE3~NaBF3sheUqu
z`92owzvc3Np?hkn;{Ekmsj!0m=lPe>N9a8Y=FExme)YC+|EomGd9Z(W$YEjg@x2P>
zs>9o=!_O&vZx3p#W?Wt{TVn66Dwv(a+NyP8@Av0dwNut{ZB^?)MPEI*t;)Zrv9g^?
z3~j4Mvw}pl?Lt+hs*Y%@+Wl1Er}Ct>c?0uZ0?4asLRGN*K7{<I-@kU=YpkZfXVNu`
zcd%KasZT$`oT*`YpSA$`|H<(C3-uQpf1Dwv{bl&-%W%H25wBl*U%P5;_t5*=2{8xX
z*UpIfm)^@xuah^qf8l-XYOyc&J~s0^_5GK=`gKr#T~YsyIz-x!t4s6pQy<5dUoAha
zHX2P;ErXmsC<kJ+;a3~EI@66ml;0A(8|fZl%CCj5-gzus?rh+>jbV8Y1U}<Fq#Mfh
z5a8#re&}GvQRI6x`j_6Zrk-)&J~Ij7B0er~YBWy=aM~mFf3M|dA7H+l2Kl+V{(Gu1
zKU4N6@$#E1<6^BSzqZdA{-W*2$Y;a2<$tBr_2}<=lZ^aq;E&7=yC>f>=7sSz+^>H%
zjAwwa{n_BG|0;p^Ssiwt1wMXd7|#KxR>nWj?>%hYB_h9hxdV;-SpOZiLB`+1>gVTQ
z+)v}>r{`a^qWnD6?|f&&*ot2(OuQ7{p-aGm@6r-y{d@@e)x<5h-w*vl;^e10-qR$W
zg!^Q~{Q%&%MdD)vU&?nv5YHjNsnJaL=lr#AMX>ySgZgi_%wJg_7T(9pZm603_`Z5n
zex(@Cs-4UIs8D`<7nkpsScqshy!+>FH0>|tu?_7w{U;xLylB#g@2sTY&q9WKp{aKr
z;6w1vv)$O>Y2eZRwhNpZ<3auW&F}l;H}+q+f82Xt=9d;X%I80|v1ao7)z4!>P8Jx>
zzefX{eE+NWRI;C$bW2fi(3#(<f3#})*kJy91^LgF@o)CR`YO}h_+x(_FTc!;aR2$c
zJy8Ef#&3J>8OEhM<f{&sgz*yKnd`%NBj6R0cVJ6_&qsbz7n=4U0esaulP{fPO}@8)
zZ>U0jveMv`>)~q*p6zCE8}6wwJnB_lF6tFG|M!M#zHnYO{g8#iu#OYs)gjQ|(=ONT
zCi(Ry_G*-BzQ6gNze#Z)eBVsZw`x_nVke)5^fYGvP8Iv0f6f84G5W1yuje1B$|K+Z
zIr9B|k?)rd<(Ee9#||`LTg>jdg8#ppXDljTmiP)4Q<N+9%$j~*#>rRrueGvrCSU6Q
zbx^*))W6o>{ZIPW`ukx2TAPFYYi$npueCYYzgE)64)(9LeXxI>mOl0`^{=)2<OdSQ
z6_Q_0kiNB0u)nSCiz&*L`q76yGB-}XZSa1k`++G>85!pV<@-S7J<MI_ghSlYPTDVd
zuaT<bDKZ}!ST7hL?t|vRk?$u-{?gwk+jjQJULAHn^K;{KqE~07X>8>C4~L0-7S&g&
zo}GQN?_f-fz8&##J9Ji>D)oDF62Gj3r|AKyesp<DbQS-F&X9QmZO-l{_Cm!J<x0Jo
z)%>zJ`MzD>)SKDKXZv0`f2bFdueY)=KGP1a*cdi%DikgM`)YCT2IlYAMe2`sO$|Tp
zm0gskAxHV2<$tb`^^@TE@|x}8@OG3p_Ja18*<t$&_YRvckC^`wS-0BKFFdg`cTm`z
zk67eSIn0#r{^j+D>GmsYoA!eJ&s<-5`>=as<)D30)ux_c`$Ap6-=~MVY4}_0{l2p?
z@2~!1V!(QQN(4{ApTpSyg!>Hew<O(ivrAO+*w(7*iNd>oc1p|(3-A0n$Fx@2$6Dpz
z`O6*MT2+df@BF2XZ>@6A6yEtu9@kpgi~i^D{5gmx`B-<w)SH6+g9?m~%H(}lw{am8
zI^P)iN;dNqb^Y$HuaLYw@a`Vxfnck8LSEUD$v#B+wgyi37CzW9;ywv{mk4eH-z|cZ
zzu&)T@(sgv;C^-lPXkxEuzMHy0Y{jAlGoexXESsk(aT`ApkMIwoo{OSCh`9KBJ{t8
zY?1QRqp`|j{G0tYKL6@=FPMM(a@^=m@Izp!T8MF#W0`SgcZ5IcEz{rO_|OJ^FW14*
zj~fVlp?s*<VRPTMQ{E5l6xT5=`Jeo$oqBwPIDAj)-S1?cXj?n=zC_M`LF!d8yJGJB
zJ7e!`5%)i~QyXWBf3xJ>X)$|Z-n`A2o$uQzdwV-|c4Mh`#J*b0IWebt8UNg^;@{ue
zAyx&=#$W1g`#+Wk^Y2#3x37rPEiKG1SzF@sFXu-%58dNdBd_TC&XijWuFf#^gN1l-
zJ;-Zq>UqZNn#jB4%#WqJn*7D|;QG}H)-#yz7!LnG!?>01P3TJf7VD10O>R)?kdm<f
zhHIs&u<qv#4UfkVOkQI-p#GP>5Blqmod2AT`r$b}|1`NI|DF4N&E$I;=IPV`#>{xJ
zwI1S)^}z&uPESC2Jm19I0)CAOySIVg8o?>|CMY-Vp{9H|a9>q!{IM~fcY%L+tHGT^
z!sUJ8BPJhE?pe6s{u=TJ_^JXP)fNDtK6{6AJ`d*K<`Z=RQfjlv*InOGxwo5m<hI7k
z*Tp^t=HF;OLU3v@>qpcZly5ZuCh@@_)Jv>SY~ZsaxC4Ad4swBfUEtMRzeBouz!z~H
z8h9n}&Zw`lkDHvH1wIV(G|u^Eyj4uTEH~84&wQn|mT&b?BgaO_zjIqlf6pn*U)kH@
z<;(di%6BNrY3>jc4@6HjfLu6lV!@*CTI7q!_<jk?J8&EB$4C500Y5h4-U0r3eq0<b
z*B^180sMF2{*C9u@yP&xAGp01?Hur^RtkXn;ufc#6W9Mea<FmeylCX4*MVCKl)(3&
zMCQjgU1co1KQ&dFM(<_JsfA6ICabqGXBRb9nua*WoL<~iY1)SGtNzkd_Rlm`W#V3s
zPpjlxO_ShX`WbOAl%)M5VlU)iA6M#82~X%;?OwNAPl>%yqY4wAwLsz`^jdRc=C9RA
z+N}>{Ka1DYry-+F_|<neRhs7hR{DjR1}azC)TfDenJ=sE6#s>&C|BwiUH$ia<K)}U
zG&d?Y$;h|jq_BK%G~FzEtJ+1z3l_}Pf7wy?6YZ!@lA)X)|9J9W)7&2UPyIjV_my`0
zy25zR6MI+OSKhy)Pp;Sp)yrf6V6T}$Tcxhiotl7RKf-xnN2O`I*t=_Fd?x;Dy8pm{
zWBFUUXV~0Q%(lEIt|ac72I=uhAii|XXchF4%j4wx;m7!57gH}-^Xi52FZ)Sqsf-nc
z4vonB<;x`ez<ABOf;~0k@3PMsBcpGHe7xs6D@{kq_%*1u%lcnXrFsd!((g*VB;!}1
zF0jrnk@2h0tYOA=W<_VEsY>=8>hz^b$-JKK=cV3~@v~5(qcP`R>8v#M60=s-%RBqD
zR>p7s{=C16Uqa_iH$HjqNqmK<%JGN#tc{;$g6-QJjxS{X!Fr-mVgJ|Pjhq|fd+N4$
z)KIX6z=xsVll{!J<A7Bg?8_i-!D8`OroJO?15bP(#vS18;J<@?JTCAJ?;7`ff4ma-
zAna4JvHvRzysSj>FVa7C@lI-)EHqm)QGRCbq@Fyhke-=qc2eKWEts<vJE_jnT+zLA
zWnn&z^(Xb$JDs>t<lDx(;YvSbuCLlMKkg2$ua>=R;%)uI$hRBfM}1j;17LflD(`Oc
z$<H?{<=ogn)t7>z^Ud%9;!frhcaeOq^L1{eu^%J$uHcr`2lllM)Qe)T-Cr?V>@RPi
zI$bX2R~x8xKgf4W8mN}%nD0Ik?>upTrkJ&VqeL{?pY=LC(aXiG{rR}B)SK5dP~&b9
z{gno4kkkuVv47-9V?Us$(c7GA^kZdSQ-AlQe6Rhlka<n*UeAxXQa^AW?u?|EWw8FV
z)XP~tXor&EeMNo1n8~lj)en7S|BkPAH5IX&lkHFfFkQ|-dt@9b)xqIEqj!+@N6%kT
zb^06s8GUg@*qkj3o0AuY&E<WBZ)tz1-0}Qp^b(HK0k@I8$U$|~*FlrCCE`Bl-`t3Q
zU+oh9KEZw{yg4Z1|I+Kj{ueX3ut-C%n)=iA!TMtq#~<q@AJuQHl8>NV);H<U4Bt^t
zb~gaGWwXB<9p9y~KTPd!>J<zAIJ=pCBj+b1+xV&)?paURz@z&B$wvn6>5m8Z{V}d2
zUI{$9uP+OH;~R!wy3YYWq6y-O@q9J#=s5pd;Kj57$U<e%51ZF#Yf%2vv48U8fzp3&
z63A~2;^oizA<F;Tn~`2k%R^D<dcrv0Oui`RH+mbsIDcc~t6onSTs1Kx-xToMF~0O(
zF#Vzgvgs`!m~fp^<K6?l4C6MsS75393*+8?!MM)=|D=nFr&HhfpOtz>tIU33T$LF7
z)x&`AVhWHA+}Qr}?_59`=m+h#=+>b87a;#H{zU4JF(vu=Bh@fo{#nGE^3P&_DaW;p
zK{K?U#3}y;k@1^@4~{^4m>X#1kOtlh>uXF$7x;^jc?|M*S!6%xEVzFS`?nY$4|ud(
zQ~@tXJag|DIaC9m_72h!`%bKIwFOrN&BI^DZ}aPO_6*8@4dlP0j_7tIzWj9?#mk@b
zOO*eh$o>ulrv_l%o%>2GSVZ@O*ud|4#_&b=4)FS~7@Tr&fj@$I5xTDgz5?Zi=|y=C
ze9rj8d5#?1=dgc-_<G<h*YuzAKa1rK^C&Ej`0SswBoH=t)}))R*7E22|BIO4Tl=ZB
zPi>pz`!}jIUjFRgQ2xdCPq>(O;P^d(c>I2TB>w=<p+2{#nsUwfx=cspH))oAbv@?g
zxL;7ZHNN@@{uAE=`0Uw`|7ufzP%h8D037=&Y`EV8^Oo5uCO#?PpL_@Ri05$N#WaRP
zeg?j9%pc<9f8qx5!7A*(aGS)-pYtcRC4Yr^LB_Y3{BQdY<!^uY@5x`C7cYMs@%&fv
zcaSi2=Z-)0BrSgz=ieOEKUazTv&{?phg7qg$^RJC!`bO3p3Dc6F;7LD`Jern=>DN^
zIj@C$&V0jpY3>smfB^nZ_m!qSwSgy4ju<ZU?Sh3S-x7D=-UIFpHU6Z5m%<<78Q{C$
zVf^uCn|@s-@M7AsM#g4%iP4{ZtfSxm%t8KY^6z|$4c|-qn=8oQZC*3^cfvUb?n7fd
zMm9o!2J>|ZSlkks-?R7u+D+D1N#Nhj3;SaOuRy(I-5k!JU!&jXtuc6IsrjICa@e1w
zjJveTT^q)2;IBu*P0>AYZ;SEY0d9Qz=idrIY3Rw5KW-dsfA>KCf2Ty|4|WNh|7=k+
z`Lq9Tqnt7Z*J6I0IOYEh=c(C$zz6sDHF9tx`TrpF=b8U)xZnJy$%jm@6!6P#H@JoQ
z1_$^Uq`QUv%o*S=^1plJSw4~lJ{S3l{!{_~f&ScL+^c`l|4HLJ>UT~&YE@AFeIWmN
zJ;b9ih52)L$C}B%Y?0xY{Raf6mVFbJPXZQh$8dhLfIpA^sy!uKKmQKr%(7z)Zo~ab
z<p12^;rzb?=6i^{aQ`IzNBUL*Pa&R+|3cs+G0&o=nQ*hfhXZ$W2Co8MOyjtVddJiO
zQ-ks^$M|c=o|6A(mnvs3<F9HNFMqx7L@TzxE3uB^zGCFScpQX$=-db#<Ax0S)$E@r
zba^Lnonk_{??rv!+alwI1n?8M{`8F*FId3y>#e7o`rHA&3H3JnrIo-(erocG1NR(%
zb;3Lx$K#0-!`TS*msD#L&wn-kvLF!Vzjs%Ec6U(zoL|%Df2|`>S;{vq&H+Pg97ZaA
zuDXTT+wgbY&L%%Q7n}Jw7ROi6-_FM$?*E;0!}f!}d~Uc>?El?!!;hUW{fxjo_BGdp
z%}Wjyv&^?qT{k~$Zt^8<jDDur|B|9asb6*bnup`&->Tj=zF0$y9Q8a;Yk`<<a|Vmd
z1Mymoj!1RAmP*s*XooDB)z_3?e`wHBIYK85m9|dyr#X$qEHqc<7lTUgU(>2`hn7B_
zFJ^0z>|-bu|AiLAz1OUz()4ZGxaY6elmCp){ad-eCzPf^Q$&t3KW~d)nvR1xC4Old
zdXU8L<p#=1Nc@EwH#hT%)$*;TM+chk8A^2i@B~>e(%+|Ai+@5?lsok^TaLLrPX1>b
zu`7G4X;-{lSpHiY(?_GHdW6l-GXTJoFAv-QUFMI2iu1wMLpv%>pXhxk0ri#4BL~&r
zBIeBz|GOdm_)W7p{AcuOOz)#QDkWsC4%=_vJ#0R3@3478McAB9h39)`_6yt7M6pnB
zl&YQ?C;z@JP0hh`#rm9bF#j+8QNpW`{J5pLPjh>j5bXLpC{0gpGUnWgJ19++YmC|3
zZ3m@k;m(qOWIj3fU2~uAKi1e+{nT7(imrb?XB+#<KH`_qBE6qb%3tmj@n7hf+l+l;
zj~$dIeXoUHA4zO&?$Z<d7<+FA318@dpWyyvaWAB&DRg{N!jC2#V^WnrH20|unyu_t
z&6TEPAM?Glt+~>)tITif_@qzR!KYEz8*}Dw&6Or9%ANZAt@qzCPX0Nm|Fz1!bhfYS
zd7hyBD_07Ct7L!u-Ih<=Wxg~x-``L6J!zHjET1+@esiB~pfWdzdm)ANsFv?F4IgFP
zTlZN?Q>K}?Ke9w+mdJmh+m80VlQk5}r~9y;UA<Jk7fMzb`|2mftZ6OWKQ8Wt*2#X&
zV12n+)~9rQb5~hD?S=XN-2Gw}+VG|MKJ|>HG;P8D&T9Fu=~TG4UXb_-{oyO)KKs0-
zG&Pp=&?@y8`Cf>Ma;JX&-PMQ1$zPv;)5=?KDx#?Tqw=m=WkRStpqtV}dFOg{Q=0yO
z@}DT{rZhE!Jd>TfDNXl$VZK*;%gUKhpM#Cr?cYsldP3}-qe_&uUpJq&$~`f`c5_?%
zuz6+5#2>z@p}mbc`(8JtY3|=>WAuKvh3k)gJBV4%6Qtkn=F>au;Ni2xhvrZ6K#9N5
zE4Lf7w@){vX@Hau{eAUY-F(7lY61Stg}!O{gwulkpJnL(57hJj`Cg9X#huRfzhFtC
zuGeq1N`hVP4^`+_8(XEyaXyg!YINU}_qh~&QN$bJg9BQbeiZ#-ei{F`!8s4f{=lg?
zk4}G*@MnCzuzMT$-{u(HYiTML2lyTr8a&s<;2Gd;aE`|5ZtyJdne6Xjd{+(pfz5_5
z_V+BvrxNxaba!C+rl9;wCYt#NOX?SON8|kZx$06g`IkOs!d2L3$XpnmS5F}P=(=|j
zIPX2-en=ZQ?>$k!G5rDuc#iAj4NQh`fiK{^#M{Pw2KY$G*`96W=>gxXv5`N+%>qAT
z1^7a^IpAIg<DPO>VEA^7--$DSGT-BKRpzeL`yc0}F#p5-=O>*j_2Z`v^XJdpuJQ8c
z{3rdt_+t}K?l)vO+jlYXBu@FaX%NOOd{FhLFwS(bo($tQ+_&o!##6wvnCD@*4)8}&
zUWorc_TB_cs^VN9F9`|^F71Z69}pB}YuQ3r^soscO9w_pMeSy$XMvfXcBTghx3tCu
z*K}MEmzchW7_ym;qCsPljv9l;m{y6wy){PB80{D}=r#I(zf<owbI!?(Msx3d@_+oD
z=Xv{7z4e`{>Z-5SQ&lHT{%VF>OxS$MlCR<WIOTKXb9#;e<@4lq|7QG6>ra9F65cg_
zHD9T^PxN2c?`2v4+=}@hv!rYO!8rd~`Y-1^xx@Kt24~Layp7@fWSkD0I4)LR(?RDA
zl+RNBN1V@BUen=wC7bU$j?Pp5A?l~rOE;6B`1hdvI`V1em&)Hl{#fdX)`wb;e|MzK
zca{GE<xNYFzm<H6_l>;2^Zt#2_h0ug{pVo)q*>aP{@FqQTKW&<xZb>8r!n#F;d$B!
zU1xpWri0F#Ipo9ZtE1$#o>6(1{LwmJ!THq~`6cAzOKm?QPX0*ps{dv3*M<D4kpEW5
zAFXG;7V;;{`e!re<y^LdIr4G(r}x1Z_m7DF=cn5IiZJ~Te+7bxuJktt{cGueJm+Du
zF9y?ppswHL`T<S<yEMQ4YULfquZ8nShP<Y~mKQg)u65I%-Pb?M_YLy;zn==tzoi-O
z4!Vz<;bzJ2`ZD!|e2)B>5T7UCxgPpP+a49jYd=EoXTN;Wy6*a)GXEx5K4Q~d=Gpdu
zJ>s$0?}zcaT)BPr_t2-!+OzxakG|6W=HRK;uD@{|e;v5L$ph=*F8%Myp#44E`o5Jc
z9<aX=)S>?={ma<S`+Jb}M7mx~B%^W4M<5S`$7{c8x9<8oGhxGvAijb*7{AHo4A|ep
zmep3Wu-pDdkbTbDBQOgVp?@k@Y2f}I60~RcfGi;M5B~Ab!yNy{_uJnHu3lxI|D<2d
z7rpm6?Y29*%O8G@*SL#pxi0oHW>0vo`Ll5l(hu`1>4AHC(D|PV?1I=3%pYNWWntev
zJ**gQV-`CAZorGjSi8F)_OSrvQ>=d)|Gy%?#ecnSV}3h3?P&xuev_+$X9b6CZ|(Xk
z`6bU+`XfHTuU@Ci!2__lb%6N+)3-2qfDwFcC&*)+n_fRzWKGe1_B4VArmKs+Z=PZA
z@g4Uxg7RYYv9Zohule6plf9pET+qJrQPy7B5Ag%^(tOc-cGU~lc9%b!BGj+@Z26J#
zn?HXvKirQTBUsDyFFfjCKeXeGk7Yg}*L#qMZ_KmlRoZTl5eys(JKW>r26=c8=jn+4
zWw#&Xq3R;*9vMH#2tMEf$jBF92cB36cPU@+OR!VS+H<`S9#G_XE4Ksez|AXJUdIkH
z6=33*v3~>e4SH=sen|L*emENj*d6;#C4P~85FT*KH>_lCKllf%V|7*@I>-oq#PM|b
zMvT9K4gaw6l>-nSa1Xjsp8p5Jf8Y${pTxg>5S|D0D%)f?djFxj{BQp8h0FH~vcAzt
z_chtHt)JtE+I)hVd6(X^Wow^9f6wCkj`(ofpSP~Y?9F~umhGKGht>Lif$yWE<cm5k
z*nmHV%k_St`g^gxxW)2OCh^ewY=Y_gf)e>wzCVhOwDM*0mvJ1SyuPQniTk#6T;Q@u
zJfiPCOZI=I$!|N$#>bG)lJB@A$mht1$60yu{Cj2_4O@A?`i1xgfBr-{{`0!8v$ogA
zj2Uk8ht-PFdl`BnLFn|rO?v(h*W;)MSLryFyynAM98c>ytT-Q-_@qs5<#Xis;JGu(
z7s*$a+w@SrLjGv3OH$sU9(At!<GP6$`F%dL;p+H4O@1K9wGP+WX@BZY$}3-_ysiVz
zq1Dd4x4SV<GeWqP-o)Npw%@`QUxz!d)x3A`{{ERed+U>Qf82gLKaxdxME*n$u>U(h
zqWkg_xx#v+<)`#x7JTkUV=$&kCp^h({aU%m`mcH);RCBaVtHVH&LRI6_qFMGU@-ZI
z_n<$NA3{E|BFLkg;a&P3UH3hzzO3UoT;t<XzVF*MK3c9~<S*s;MENZF#fRE(^_<EA
z`RW}kuliCZueY@{=zZlaU)aN6el{?FevkRX@(bH{o}cB8>OOyT{hsE}A7vsMm+Bvb
zGrGS}*A+W-c=8`szI>>yH(c`9tO}-UoP2mcVw!w--(i+~Px}<Z`z(u;?`fanqL99n
zDPLj!>ps8=`P+sB<Im>Yyv+ZbJ;BzuTAulsnWzTd2VZ#q?!9{VzAin-`ls_NTOaM?
zN$C0BrO`Hj<Xx&<djBftiA<=x-2RMBcjdLb{GIRnm5*5O%pM$vD?gC@*QkfeJLF$o
zYvZf@F!BquJz#vI<WCLpnhsa$x)92{lz*M)6srGo$iIA3@PEa~ujagx$}b`R6vtP}
z$H~XJ?nn6s@|sS1U-V@4UETHHI<B-2IG0$xE}~sU&-9=B*S{WM(!i1vP-cAn;hj=J
zd#eV>c<4U!9G(?ue=q{GATie%2k$Q{QS_ey-FIGqo1k;wIm{*C^)<%CFYIb;|1^XR
z0mB=%G}!;W1JkU2`QlSSciqQcf!~7HUJbhIzV^r_#1|NK0R!Sq#}_W16}*P%_}>>u
z|6TrHZU+885blo$ee1GmGU|QTUyr|`yZpQRW&2Ean=Mx|PwCIU)kCa%Y<u*9fycEy
z?2n8FUgH08cfdPpU@P7?%H`n92*JHmXzv9(P>24x|N7wqzs;Cl9FMv?!#`jn-Ag-R
z4=1oM$3GRg3DP^-=i`WrK*zVGZQB{aq>F?8|7J|k{=Ja<Gp=<n^~LkR<1ARw54SUd
zUNfwF+8}IT!KKz7`Di;MSdH<MT%`esFL2~d)?WC>c1F<eSZj}N#n>F^>DodEz0cqC
z+cW&_*HZTXmP*IxCg1%3`0ndReg6`ty6e1$d%Bg^c)T&d)@M$&EzepnuIBk}&heIa
z_&`C|ZGOGZW3--|7dn5yrTjy>Z-xDf>Ez!I%}>rGUtoVh`zaV6dRKH5<GIAfN9(_3
ztf%ALM;NF4*x^=Q`xjBB!}}ML=ldE>pSc{T6tA%VOZ$->Wh<Zkn&tEKhrx8-Hqlh%
z{jf(*f6t$PFR}k|^B9b;e%-tC{Y`Pgzm|Vzgw{D}z!lCX>in<fN1XFz`u|-%Fzg-M
zjwqid{}}Z^{mGMGuk-#KzpW#`hpvNUzTQIq2pwN>JW(JY3(1$szs+_{-=9^;H-*lL
zbC~WEe${=x-pX^TRc|z3e|w0P*M6H6pYE<4NxlF6_FHfF=U<umx7|y|IL~e0=|y&8
z_xY#&M~z4E=QiCn9_m5({0oN;X^v}DK1x1({zZ&@`234F`EY+QO<w!0dM-wme7GN)
zCm-%_7RZPDr)Ba-G2JykUL+sxhgQf>;eM>*a@J4Gr*T)?baQjI{6%`mKmA{N@Ab7u
z{^8HRwamX?9}5p$v}L^9N&i~@jpP2BY|8d;_4y-|Z?=4d4i|D<Rb0XTF!^DRTYc2?
zSfb<);J83}m;4)l;Qy!pG4ktmTu44nehK^MW^jYYXnM@i_vZXAMV9hWmTwI=NB&`s
z7t4EDfAZwdW4@|<f&3M$SCuc4|GJhx#<N5|eA9U9{f~D)HoUw1n~CoiIxW4s9-q>E
z{>8WtRm<Q1%RifB|6BRzcIAj?I$-1NcOw6;iyUqBUB`C=dZYZsy53(Er*@xz`u<$=
zZ!P-~Za!H4-q3MfXnryOrY$$xo(*CAen8%({4nz8Yd?j2ROLgwOTHN5W8|;Uc+#IZ
z`B$C|#>bW_W12Xxsqt*0{LS=7c`X-bgyb`nzcVD?L4FMTW$Mpa<ioc(377YgKYZyT
z|M&BHvHslfO;*5spO`+<=HD)SPVf3&-Mz@x+jKT7`5xZ=i1j%gzC!=>{h>qtB=SXm
zk4*FBLp^WqHtUZ|`9pNRnY`wU?&nbd<CKr@WA#&cP3N2Tv%CqNqx19oY(5s5zd8ET
z`w7cyd&gn2>7((d{MD2{HN<0>>Rp}d3m9&m{QcTLBVQn|w>S+h@5g*`%&)r3zdx@D
z=3jK$C*<GvyU)MkvQL+P=9gAJ%J_BW--aIYk9>^spSS#bdC>9S>@NRqxgnT;mFXX!
zf7w6ukbmcVy8Lr{$UpZd-RGb3pV$2R<>Tv~?k@lCSryE`!px7)Klk14^Us|4>GChz
zL;jh&y3ar5Kd<?Bd)BFRmw&0tg87#|>a*ovcGaiLzhY1M_tPHokNoE~|K6N6;=j7f
zzY(cm{zd0}w)}I?{dD<f?zQsKQ2S@@=^_8fe_r$N%j-XSr@Q=H9sd6H(Vs2<%vV2M
z{<%HmpW8$JDgSxRzs-Mr{_*be@7(VP%U|J`&z67gw?AF}WqZiKVh{PJ{O2|Qo`197
z{O<Dav8#glm!ALG@~`+Q^RL)L{+XZkP=AvDyyjo~w0YyY%fIp02J<hv@U!J#cGIUT
zf95_b9}TsC?$5i=KjlBK`S;U3`##%U{zXFhSBZVL{Bs}qbouA@kbl`8@=y8CYyRDJ
z!P4Ej%fIZY!SYvF^cnMy<H88b(<jZJWqZiKVh{PJ{O2|QhR#0qJKg2q4?_KyboIyQ
zpW%63%%;xy&*IWgSN@7U<e&SC9_ml>pO^gW%LLYY!_<pAx?BIU!?{+_x!A5FDB@M%
zKu}tabbmnML98bNdRm`Uf}23sC&geE$oi!6e!Wfpv^_m+No&sAdjb2s{g<v^s^D3H
zu3w5gg!Mx}PwS7Oa1->j{wM}F!Ke%Tq2bjFUWCa0hAhGobm;mXiplvB<^Zfu$n5Fi
z#*>53ceh?iBr0cNKL8NkZxCL;)YE=~NOn&n=;_jY)%)3(p0j^<`MZV_@6M$kpT9Y*
z%@XvKzXiAnG=HNo3p9V-MOeQD+<bm8#(xUsx8`pN&k8huD=-Us%HIg`M$l9KM&Tyt
zDSzYeTaXLozvgeb8hclOD?|C;Q~tWO_`kqs&EIkz!UKA`G+*`J_R=HIb(g<|W7vMa
zXzN{BXW=iuBk+APSx=Xpi~ae)+J3<hJNN%D!Tx_>$TI7n({!K_909w3J>CZwa(~4!
zI6nYzp0)ltXTuC^{j;@KF2a6#po;6&%3p*3z<BKM&munY`3HK?{ri<iArIu2+2_-j
zV?RF-!~T8Q&yhx0f?2xYm4BlF`%7HxA1N+4(1Y$TF;^al?-t-c!`*-Bev;S;@EdUX
zS}QsS=K}y!&#=<b9PEIe50J+B0D|i;hdaK9kh}Ci4@<c}D4Rl9zyzNE9K(MR^mN7P
z;PQU|4e`11em_6OMo8Z;u6@~<Vs+R1;qpn{x3BtsxPyPU^L-=Vk1-e%<+)?}eoyOp
z?JpUA2i4&N`o1wgZ-vK1$?N+n^~WWz?;D*|a9x_duPUBl+vhmt^?jrAT3!7A?R_Kv
zPUkJxX|je>&mDT5y#LQlxB08@|4Z*;y=<my{Y~-Y?(?_r7p*^<zkRRb`&GV2)!<?w
zUh~)C`l&4C9X>GZI_r;1Ui0@9U1vmoBIS>u|0?g2ujcz_T}M5Ke2M;RxH0kru4lMh
z?;R&UiR*Y=@@ew_P`xFeCI2$tpF77d_m~{{2@F^H0{Ka6ZMe#p$gk)3(aocFJw=6l
zPdBZX)ji*P{n^Oh^V0nOfadS-WdXzEIG+ytV)uqI!Uvwjxg-AT&8z%2V>$+5T^+xZ
z5I<>u6MZu1z7gN0^IzK?4L#EDD!^g%tEe~d-2%DdHT#>xuJMeWKkXrVGxi1gud~yB
z8}=FW3A$%}{kGil{mqrzg7RBO2JLdrm(=4?e3LPD?*3+YRnYx+_BfADQuZaucVgs<
zpSr(!2J6!O*Ad(YsobOU)nxBEwoA%x;khqrf7n(-YW=6X=C9sY{<P+m?%LnV<MvVK
zL|Z>jM85g+S@KcZJH09}`p*}-h5^LZ;yfon&-cn*jq{j*MWOau`(Ms~?PvsgK3nW&
zJP(A=XVd)w<_0Vj2lRZlGGqnaoyX?2x7X}w(tz#{D_w>2u7JhI*nd($+yr_)TX`M)
z1N3}02WElxugmyvf;jrm?$y|@a1+ks0&?t67rqJqfSb@ibMSqO%5`uD^nADMH+D3F
zwL_uTzVy`f?>WR(Fv1pZO>Xm#s-WJggXXK=uYB_OmEGm9SAOx3d#bIM|DAFyVgEbj
zSf2miEXU&irzyu$mOo877XSaR%5hEt^Ig}xcg~vb+TS0b{WZS!*G<}d)_Pj++WzV~
z_+cBYq7~WhbOsgT9XdR9Pq4jn$#1<a$j8X94)JmF<q)4H|9Z&(Ecs0#K1Y5S`vcm}
z=E>j5^}EU!$RGDmFrG#7k)H+m68SzMzD)j>Cxh}8@@^<ThQ)Sj$RAzrtmRhk#f!go
zQFrC{R`#3XEp{bg0rl@b2s6TPSHS}Z`~6Fs@cl7hCfc<!zK>jhSukgawdY_KXnmG`
z5Z_M&w7$weRAmG&u|BJe>2CykoMHotjO%X%W$p(m{Q=<tYuc=P_T4HYNFQPC&e8pi
z;2E}Su`l*Ff~!wu#E<EZ^BDV^c}LRzJQ`HsINEd1A-=$6+&>iAT4e;k<N`_Or79!1
zneO=)5r5zjy651R;Az?`6@0%9m=d?)#b2&6f+NwaNPAKGHU19}c@FJ0zBiVCAN~P<
zTxsPC<NF)Isf(;V_7Tz&*tf&li+%eW!BLl6dww&X2YR|R-}Qd+;H}B-@<09r{qxO#
z`14=qw@R2B5`5PEc@;b>(DpeEvq0xZqRTNq0UWm`_>T(b2kkmP68R10I{=*@iNY-C
zX?`RIH$hMHBWbt^MxlN6U#ib}#8uFCt>4vn?XS##m70(~z}=zedzv3{&KO_>pLKqu
zawgIf=;_jY*ZYe#&z;d-{zre0{=#pt$N6$wugm<%zVKAb|E482gy_2%?*qM02!@!|
zfe-2U@SywEbT7Vx`3GR>oS^$N@K5`(;xczz(0v5z8~=XLuZQ+yR?zSFKmQl$xBtra
zi^ZosCgXYEc_+_`eqnwhKEUxX1oe^MeTnAZ+Xos0NdC)J*oOHW;DXTn*JjjTUVrdl
z$E1Om-iLqae-(z}{1ITp#nx_p!S}_l588))pf2`4{4eMa`_2P-_ROICIkSTEP4Yc2
zxuWkOe*nGmG~{@{VQt|ynLp9<2l8B>{qi*U=WE}cW~&Fg@;SY0`@Wv-&e)&UdJ?+d
zh~j1(&rxuV9Va?;xQ*?Uu6K@-zl!^ulpjMr&;32hk0ZY(#7`i9RLFl-%V`|XhR+#z
zjqz0fWAx|iIv#Ja@sE?A_-Fp#7aBY!P2SL-@Vf6~xsOG8&4;->-zq-S`k$vi!*)-4
zCgn@y2Zhd~)ONoY_vhq!UZl4Be9UOMSNn$QwiEmG>UCXs{QY<@%nzP|@%Q0&z~{8s
z{O`jD^)CJT2)K>pkKq2oVrYIvzni1Hj_jV{e2MbC>CY<eM^t_X@*O{6deeXXKN0RT
z&7Nt~Pg}sX<PGJ~?0Q#zOR)T0ur+9ZO(RJ83grFc(dWKI2j2Aj?JWBCg&{cqisL<%
zx&(WI{o}7oSRbhSE^^+nZ+v#18;s8xC;)!<uZHa3zai-UHqPVqUu$Ou?S41E*`-*N
z_gfckDf#P%4(=b0%l^~*@qTBU%@6l9s~@}3GrjBn;UfL}-`;;(J<OJuJipVBXMA4Z
z`I5R{Rm)L$|EZRvi~3oAv>wxP6yATT>7@HlwcbGTc-I8(KP?Zjda3C<hrGroP5JPC
z)jWAe&rxEzE|7nn`&FHx*8j4G8`|F*p+1NAx4PsDdQJ!T+hS`~x0j}arqh5+ORxC#
zV+!@-hHAX8*s^`6AMv*C^}}qi5iT;`1;hI0*S0=Y5AHqE^2G-&FLjPwsgdM)&X41<
zI1l)!An%gjYhjR&lRsl_kk68@Iwr{H$sgqg`6BrrObYU4@~<5o<Td^Nw17PSm&0_}
zJ#-GS>e;qMHlI~5W0XHS^uN;NTSM{8k-tBbJ_Yh`XgV`JOXSy3UeC>`kmuj)yyZGg
z){q#qd1#;Qw!1Dq!ImeT-yJp^_36Ht*W~#|+4k=BBYK7PNA=@K?sw92Up2Ui9ItEn
z%hF+Vh(C|~v=Dzj`8m1|m;2E#B)=%cuO`1V#9u<bF2r9(er_mS{yoz>bbgMeV<~h_
z&Xx2h`kJkG_5WT?J{<~IhfQaM__dVZuqEgZx}n~6Q;5Hj{C7kAP2|J*k|!U&^(CSA
z|626${oRc})-ADu#fsGnX-D=4rR847pU(FC7{NcC2lIF6*Jg~btM>6Q<V3WOu;=>h
z<3Z1dG2h$U2+qg&z~8>>c(jaJ4}p#^<B%2T__7GIK+kh=zrVK;==m*0m<30^W{iV*
z`Rq>nc<3BIzPGo@0|!Wd0P%|q+{eSfi>y7n1LT47Gd4Y9H|%Q!?z7e&U$d_f3_RG{
zBd_jl1UI7n_x$@1c3{&9w!ju&LVSQ9h57^e=P_4%7T(YPb#D)i9rXV<_`d*~d1LUb
z;2Dlj;xED-cms9`Fa7vF9%TF>>qDGZ_V#e+<<`Gk1^xrWxUbrI4eo$msuy~n^X9Ja
zcBda3BKH5pb5=iOeCpSa7g5k9K6<Ugcu_8Q{Q({ZhWbZO;=PZI*YsL~^Y-P+zjT0y
zCX5H=N^d;CL;gK$kKA>D5o9i~_WVPT2WmMVkbeSp;CwzG`8DJL_h~DyzuTjK=)Ypn
z7r83s13bh+@^RXu_a0yb1Eqh7|692q@<0>gA1fVT1Uo{%<cj<V;RD++KJ{ORVm?cr
zkKGJ;;Kmr|r@nQ7DFNZ{18l;21poV(BJ@YD(%&Et3^>Eu_4hK{Y^n91z7PEv^+N^9
zA-n0d*I{j$*7ll=bEebOQnSKoZBJzyo0FrO+cU|I$sV`x^i;CdIZR#ZCp*bhVp&tN
z)>+ol(lps=YiQ5Zww#`#wIP|PO|~B2+L*~Cm8)xM$%Hw5Y;m$V;j}lVGGoWUujFZq
zGl|xWM@$$u*~v84tZ1_oL^_#SsamJg-kb~xG$(!T@N)KyPXAgFyT(*~=l{&KCTfz?
z+v{SPR{XE#bY@lePIc`~O>^*U&#u*p#-{FFB}}AXX9CKfO-p!fnMBQs>cp~6CoeYm
zGalQN6p2>Ew#{iyq))QuljUhi2WwrNJgxJ;H78nE9N*HqBH21Gu`Jot=A1OPQ+io@
z-Mnt{7j!Uin-tF3sxkJi^@iTBzkTnAyQ@E3e*Y%E({k@Y`TorTFlqbJF(}v`^z{Bw
zL)Z6@<zYJ;K~L`=&7nIRfxdr?!Yt_N{bLMn0)79Og;~(k`^N&@1fB06VJ-ps{!!zr
z?;k606X^TL$YDDhfwoUkm<9U&F)n66-#@B<I-j3~n?T<`7GM@^JQekeZ+yFPDC}5&
zRB7JH!|tem{8z=bwg}t>(P#ax#$5jmYj@N59ucr^JncV%9e9ZyuIL6l3+x<f?}EN{
z*;H@zK4^XGce~Y}Cm7yut^O3zbolk>!j>*S#kAq8LHkv7FWiCip@BK*e>eyB#ze}V
z9u^!Ols_S4&-3~6eR~=~5&awg^>E0p=S9aK#CgrYu}tsSHG3F=dCvc|G51^-w2vFe
z_VD&SOdeR?ZsQxhdk?IQ+QTen`Z_<|!wBZB4nBVp&jZh0i?geN@Of&fl|lI%F+b|R
z&ZK+k;XRGuJ7}LIy-L4@9k>m4|Mjzw{Te<W{~i86u-`Jjv@yd%_J`QNiO$FW1KQ8D
z^06C{UO-Qm>W$tH`O8k->d$bTKO>j3wyXc**B_l<*Kj`T{JK8>pEAF$@#%4XodQz-
z_^+Pk*HuR6*VR5Vq`#ju->&N^_4!YlfB!Dd>+|Zb%kjM`;9s4OSO0suJDga@C;7bV
zsD|di`LprUPV@LPMnZqC@6&m{cJX|xN4wKwy=Tjo*kaYq=()SuFEvuq-i~<Ojsx}m
zwL{k#9B;dvKaG-qg5TB9?<>3HPbVK=y24|$7@ig4^AY=ip6hK|>^w-tvHUyFa9rA8
zc{9lJ*YaGJ{7KgT2zmX^boM#h(M*$HsPo7Tmd}zO@-F@7e149+(RpN!|MTR-=WZ9s
zzs~PW=saGD{H6TAZmPjXe6YQp8{#A6pW?aU`aZ%TKmXZaJfq~TZ~y!|XFJR3{niQJ
z+{r&bw~6y}F^sRvGy9tLJa64xWc5dDHodQ(VExnip0oHKMCYG02G4Unq0SFEba1%t
zQF+yeoyn^|S;}wYdImiQIZysEz7NuK;fv%uzk52|>T{X=clrLMye9`9Oc#gmS&F?a
zA0=PlIt??X$@9S_AO7BIjQkG#-cSB|8*ZHZ6?@xxE<Nu!Oa9#Fn2)Mg<RAKimDhL{
z$WQ0_@9|MKo@Mg;ok{=6>%4BUV*M{4YUSNtHX#akFx=xUpC<p`e<FXP<+J3q-O~Ha
zJN`DdyZ%r0Z0movV*h_0R#8nBYqNTg9Zy;*e8&WK|FstOxbJ=JM#{&(hj&iE&mo-M
zg7N6L`+At!5B}kOZ5j*z1Uf%cSku=Co*(J=-I%J$)*jEmKOnQl+MV{kMzCE~P+sSA
zO5f~j1fBCa`M$;lbUvp5v*1g7zHm3}zyjF)^9|wtw)Ur;>kvNRP6>vu{bzF{QXVK^
zeT&Q&=~Wq`CVL+!{b%3&#++e6_gUkD_Ukb0kolPM5Bhp|X}WbUBP|4Hu|J)~!X81d
zU4qX$=ua2%e%$>Q;tuTg4{NW$Ech|j3yOPwU0)CH&k8=T^Fi?+B0qqhE_KoS#@KIG
zb*F#M_S<=0#An+6x2)s$>)&KJyU-uKDo8KUC%wLtQIox&5Rz{Q+26U*%0=*vO~G+H
z1pQwcvM&qS8$$L}$esz=ha;-~_(wzbY)JmXko~fd{mPJiZODF8$bKvI#edxmee%cW
z&XD}QA^WC~Ju=hp8`hGA?4zJx{%cCeJ`eK#@Q(}GCmtHiUpHi*6SDim@|(BOqW5pD
zdwZF`{dC!Wdh27J>f3ex{}s0V9Kh%GF7uLdIaIx#&i`M;_uyu>ZGRl^Da<#rJ=AtG
zO8$TQ{MN(xz97G2gBN0+;fBw3EszhN>sllqKG(HE{>N);J(K<~V~exNk}n@``*#lc
ztxsBc<+a@|Hrn>Ec)pFNOZo8mu-a}P9Qs~oobqEse3pFp+}J$%L0soz*q&><{VjgK
z#7WtDsYv;7f1yO4$<cY+LX+Oly6w4B{Q5V7`X}?>@mIU_ugH0D)jPe1^-uf%+P~6(
zFZ-)aUo*SWqZ~SHebe&VpK-}weVt8r9T&vOKfwNv@-|nD*~0#b)7LU-%E$Pfg6u(-
z&yipM7{lfJ?mYPxp2w~Jm&jkL?*&8sz#a2Je+<(-d%KOlzCVkSA9zcU*Z25Ot+u@R
zz?M&!@@G+A;}awQ^|B3D{a->p@>Y<?XPmriI?v;bud?+>ocvYn?>Py}r^y%i{fPV^
zn{HY1_k733Q~4bEcX)nh`Ri6bPoBxwdFxA)-rxTD&#vjN{oVLQE9m^nmeT_2w;`Y+
zd|vx!?t=bCp!1g{m<8#j_WeTq<o=jj>~99*;W*YyrWeBv(D}&Hmmv@6dSW*Q{{Z=(
zn(Wi5B(Po>$c6e-*=KA-+zjM_d!|}@<y6Q6t!rst2|G}veB}(-fyblPJ+=nxhk-MW
zuy*~``OD~{{zkCwBD6oxVSOLWf(__jNPo4Q#@b~-*89qpUE1HnjYra62Rl%pJ&pe+
zc$aqbmHtN1H(~uNWFZUOeS>{IhO`l^9&6JxjkFN_8g{v2%is<if%aU|s~kssfWy(>
zllaBXf;+JH8&*Eoh_nQjF6MgVn*JsaJbbBj&#ppzf%9irduciH2Uxty+SBz2AGm_<
z(esc#Kt24EE8BqQfmYg03jYtNpnaAreF~ljdb+gS>HV2069elP3#=c{ItA;K`uFK<
zpUc<S^0OB`*1Oh^6WKl=&hdHv1S_xcShvQOTRm4?^?ci1mN%t3Pt@T9kM%Hba^Fo>
z-aWyNyIjiersMx=TffA}H}QJ~T90V`QVD&3brH*RWTW+8&(DsNKj=orf2eJjv>q9A
zZ;;pe;(DGFtMfqx`g5Ds%Z_a)isbL+Ik(zQl*xZv=P%e!8m4pZZ#LX4$DcZmeeXrf
zt3TRr`Zni%RNkdOJF;ErOds<1?h~xX7m@!%==%ZH<S+ZZ4cAPx=^rQm=f2jT_#G>}
z9MSPJv*({~tTv3^7o7K#cl_=5mPR{&C-c9~TV3sUmh-^d(?`9Fe(noyHTm%Q_Dp6|
z<~U#DAJ$LjBU|q~^yg9Pxqio6;~Spmaw-4+=A)SqynWjF=uet|{-pWl|Ec-qO~z`>
zTHc4$UNqQ$K25gW>SxEFZ4W@dpB1^m)`tW6|MedJ?y{y*nf*!qPO$3ZTYBC(>jQ@m
zl>f;3fc#+cZs>c}L&z7JgXQ~R@(WmBYJY4P`K#3b&^-3bRn{M^=UmFWoF7v@M*c?5
z8!I0tKZW&&@@et|**;_$ZkGHutw-x^xy+GY%W@nipC|tk=MR-Hkbg787s<EsyDjCU
z^}j^^hL>zQmoKvQS(*I1n=S7=WaXXhYy}wAd2&rR@_S!z)6HyVJ4U`Q+p+xBwtYyG
z*ZFykf0jIh@4WS;N$(@_CziYGf95t@K{sXV>l^zRGZa*W&!a0AxSof*>wEtk(Eunl
zbD}lmPQ!j!V3#?8$IZs`g7(OhLA&#%puLm|+J6xW@3^k1Jx_4GDm)*1Hx&NGBSQX#
z>{I*U|M~WZL=Fntb^bKkxT6s)9~ty72KnMwvHt4<{D0sAxclGNo2P95GS>okU_kHS
z^W)H;_g}L9z<=fG?zCcmGthzgQvbCp`t$y4$CLdwoXs*NXkX6oOYlqJ4zccK{5L`V
z7;BHgEchAv`?9_(ijB{Lt)eWroDReX_~6Udo?nG$fq{ov`54Rsy)+y3{^~ueS9hnM
z#~*L&+3X9pzqM&XP(K?6+5B-YuQGxUuR?zt{qt<D%0n*%Ao=OQO|V4tQ}!!efrJAN
zfqqH;6d^AtZ?VtkVHVWl`7GpJ$O;_jmwPGpH^D5p56_GLariB`;A%XN{LjNpu+LZF
z{t(6sFbkghJHos73nu!tDi6D2{ei?cj<5tTAbNTDpM|^NRJcq096T#n27Q<K<l!cG
zQT`w7S%fXn^)p4d3H}KEE?<KA=JWe`sKfe*vg~iapq~fT=Q5rZ{P<}5f691PFj4g%
zaWlXkC(#|xmw|=QZ!dk}<^XpheiDBdX2I%7h(F?2gx><$-{H+4!)yRuUsJve;Q^;a
z;r<x@AKV1*zONc%?-Qm4?ZXz?^ij59n0;RDV`izz-oF>J-*qgWM|eeqEzk?e>Royt
zTzTqC-Rb8~zF_sUIBvNo-;;i3uSEU;s-Lkn*nbMBe#YS@Q2i`jh5f96>SqqJ0@cqn
z%mUTV$ko{U3aEZYVHT)<=Ha(M^)n4Of$C=gW`XLbxdv$gsD4HfmO%A01~-A~X9aN;
zsD7s5CQ$t>B5Z-`XAW)x)lUb{3RFL1Fbh;a3or{*KMQzPp!!*YS)lr9AS+P)tiVm6
z`WeB05vYFVAS)Pv$3#C}#8sgB>A);d{Vc;Q_`lLmgRne=^iuWni3i92u{-^I_D}YK
zd>`BI>`6aO5)B`q`dPji<r`4_tkj^s08~HAE8z~PerDJ8GXmAm;<x%4f$C@Rbl3sa
z&&aBNMxgo`LD&M-&*&Nbj6n4>eP%x+Q2lhyhF^f{XZgPnHlX@hJO|+cs-H20El~Z;
zeWjlfsD3&KTcG+G$s#_0>Sv`9{~u8OES%QQ2vk2Eq=i8BGmB>hs-G2@1*)HM_$5&N
zjGqfTp!(^Y2mb)o&saO+52${Ykrx8h&j`!{)lV1yMWFf_gIS>UXFP%MfS&5l;x~|f
zKxh5A4Eh0R{aL`X0<Aw|a1-dIda3sx-Enfa>qo~8vh`<t{BrNnp7b+%E$SaY_0!yd
z@&KrQM&Kq;{miaKeG905x{wv9emXD<I`tE>ML_kl46{J>GX}o}s-MnvkOfpf<1h<U
zKMODmI`#8<_y?$d8khyDpLv8OQ2lh^CQ$uMBW!`{rwccM>SqaV0@Y6gzXYnEahL_F
zpK&}ZQ2orpEKvO{z%PO7XC7_>)z2c#0@Y6!ehXATD{D~S0;-=Sm<6hzIruG5{ZzeC
z{ZxBT`l;@n`bk3dQ{7cR3kX}Fm+Gb74{vc7bXR}gIoj%H@sG>BM|;xGd>rWmsD8$3
zpf7;xXBKV()z3--=>w>K<{&Fj{Y=9wQ2mT9gZ=}mpV>=LzW}PAMffdH{mfm4`VCP1
zOkaok6HxukT>*DM^)rgF1gf7gge6e@jKC~V{Y=9wQ2i_;Y=P=$4sHU~PZ$4Hp!%7H
zS)lq^f?1&YS-`Ub)z1>l0@Y6kvI5o53fu&$pAq~Qf$C=gvVs9n0cqdkh^s*L(}h`}
z`e`65_`lLm2Vo2JQoYps(<csZ=}teFA7J&fJhst$w4C40$Q+K2-_JS$|JQdeTV+tN
zzr6H(4bk3@nQQOq*1e3NjPpDF*WAXSecd*{E6z#4_||{j8FJrejo%gPqZ2{@HihJq
zq42I|d@G2Xpfn`-e0cr;pgz_;*0z@sJP``760&bOGw9z(>0o@bq4?}*r};XCZV0*W
z9dh4<@st0m!uh8DYk#PKoCl=We=|SSei#3b+GRbG|N1YChvcf@zY1>ui?!=-_IWkg
z`~4yJ--ql+9TJRRGv0T3*XelkBk18$z192t*Z177JN=FBX8kXgmwP@*{dx#Ys=p0`
z?D(=$i}DR<{aS25eFtd$T7sKE>sPl9<r&cW)ifeu0j*!lcvhhGYZkHstzYvn3$%WX
zBvGFLTECXzCeZrTsmHT`)~{)p1zNx65tiTu{5KgN7vUz*`ZW%}1X{nA;U>`fHHxqW
zTE80jCD8gc2RDJ%uSJ*zTE9B*TcGu;gJ%U=zq&9Bw0=$FS%KECakvSze$B!x(E8QD
zZ-LgY1>}W5>(?C20<B+T@LLeBU#}0UTW5b&)oh;~)MW4fQ~iT9;wI2b^;Yjot~~I{
z?(}yvzh6}xz1(}WC;criM}7jTzl9Xi2T=Vj!cCz18*M^<1FF9j$O=?{OE3#mf76f^
zsQ%_)7O4K375Hy}>Td~d0@dG0GxQr!{f)ycQ2oszEP?880d4}--x&N7sQ#AVCQ$u#
z5Vk<|w*ohT>Tecq0@dFF%mUTl2>ceP{zecNf$DD*W`XK&9M1|=e`9bHsQ#v57O4JK
zAS+P)%_A=as=ry71**R;WCi~z`Wr{w1bV67>iwabnrFMy-%<6pz{R5<ufL@<@)J<~
z&1aB4fa-4nZUWU`rxp1PsQ#8A>w)vDMc4(Zzj4S4RDZKD3siqA@LQnzTZEfH_1CoF
zzXPhjF_;CazgdJOQ2ourO`!Vg!Y_g9ZxL<+)!)cz&^JK!w+uId>Teou0@dF<%mUS4
z1HT2TzXov;sQx-I3siq&cvhhL>%vW-`WuH?p!!>etU&cQhqMx?{-$9TsQyMFEBH^*
z-x%U1&`b4J??1cj#do^X-=nF&=J4g-qdnEX#g)iUK=n6w2GR#m{msKop!yr>Kz;+N
zza_{DwEiu?EKvQ8K~|vpn}%7S`dfzI0@dFF+ytt>6_^F8zwRpJH=z2PMpy#X-yGZo
zs=rY@D^UF{z)hg~YfeYn0;<0yxCvB$<8TwG{^np7sQy-97O4JK@T@@fH-fkcRDWH_
z3RHiia1*Hh#$Xnx{+1vs7=UQX_$-UG5~%*hVHT+VI*=9or|7SXxC!)9z14fwZyKj}
zr@xQz`$PFp(BHyY$WK7^H=9NJ0II(^xCvB$%{hn*p!!>ctU&cQ53@k^*M+P=^*0W)
zK=ro-zXhtldAJEwf6FinRDYviL4E_Ozj1^mQ2ouqO`!Vg;8}s{Zys&})!z!j7O4If
z;U-Z1jhzjB0#tvqFbh<F%P<R6f6I7Qp!#bNH-YMJ6tV)<Uk7di)n6B8f$DD&vVsBB
z-!$SXQ2mX;EKvQ8KvwXdqQ6nZO`w<Rt=>})T)&|^{jFvF>yBCOJ=#<Kn?Dcv38?<2
zFGTtPs=ryd2~>Y8UqyZcs=o!u3RHh{Fbh<Fqvs?3fa-4yW`XK&5q=9)e{*mXsQ#8<
z7O4I@7r-w-^*4sF1ggJjxCvB$BY0Mz`kRBBK=rqbum!5W1-J=Re_i}nf$DD>W`XK&
z31)%nZwb!|RDUZl3sip{$O=?{BZ#{|^*0K$K=ro(S%K<r9B~z>{<<&=RDTU*1^+4f
z>mY6dy;N`YK477HPIvmdmGy7=6ZAK?8u<yR{>Cpu`T(lGX}Aegf6EsmzX8?XJY)r`
zzgd_Cs=v-9h`)gA3tX55s=o#JEl~Z<!cCz1TZCDl`Wv|v`3<Q4x(G|4`WuIvK=s$)
zS%K<r7H$I7-x9(WsQ%{RCQ$v2;=c-1f8#I<RDX*w3sirLcvhhLTZUPn`Wu0)K=s!k
z?gG_c2WEllZyvG&)!!K6Dp386!Yokzt-vh!Pto59;v&#1vYj>Q-QCB1)4%>T&-K}x
zAP~RSxBm4$`<{1idZc$<pWT3^FLGVaeNyF7cHY>sSR&8$*3Lldk3)xxxQ{%4tX=Ph
zWg6bq%=N^@{BqBpBY&K(`^(jNOo99%x-NWo>wl5_2=dwYt^XzRKe(^fGwFK3GWm^M
zpIzko?+W>WPf(ugp}9QMWOZG*u9If^URJX5y6)K_{|eXrDL<IJ^L8*kQS!rgOnNcM
za(}Q(KF#wcb-i_r{PtWgUfyieA+G*&y{EH>&6gbc@H*o>`3E*LT<*UwkUzF)<EiVv
zi{#gHJ-YH`^1Ugq|JP7Y)`!xe7x^Q(Zn4;8*DdP0b7q6tN`u}n7?2L=Z#DI|{FX7!
z>Ms3tAF$~mYqjOlyXx;+hQBk@PuE>rX=A3o9L&!M9lrTI`JXm;j6;4S_f3__N68;R
zy>Jh*dhL=gQ13L{IQfo!Z9c>|SpU=Ha~o{9DxW34?P<&BuVp@~KisESo^SmrkpCXf
zBhEf)`6Bt_xX-WnW6PJwmo{1dl`oTDaxvrC(d01|@-y$Ze0jPpe};Nd9ookgA-_4a
z?~Bv;=J=sOeRL@Q#C<_NN`4RS2h(s}@&n7k_{7NPpAYhJ^22x@bo>FPKlxjD{->_z
z&yqK<T7R@&$&rt8KS+L|&G$U{69-!P{NAj$)E}l___mgW-cM;bQohf$cbVVcTF3Lj
zpLrSY1K#LkbbYw{VE6j3-&a%pzv~;+pL1+JYWOYO7n3I+p~HccFBa_oa`XYNOV)F=
zqvWq=y{o)S{)w|}I%K&XI!3;U`$tqhPX6eSKWXxJ^`bwa_1q8t#r`j+cd%ScU^!Jj
zPk**@9k#AhFOc8J`pnS(jpRqO9aH`u@((aR$`{F(-m&p9FIc_0pZt_iyYT?|wOprO
zY`68|Ci3%Mu>KSopNGi*l>2&=f0%rl`$d(1g#25S*K{tCuiihX&t>w-K9*Pc3VDa;
ze=BdO&vo2?r0dSLyw6}d7vHe$x$_D7-<RR&y?T7d_q*$V?>5^CmLIWt-*A*M!$C#(
z{1v@v;4L4r-yT};{PU3eTX6TU=PnKj`qy_T%AfDN%C|$$pQ{C!j}6>D_<Ui0(0)_@
zpuGhD{nulm^{nY<{jS*G8<H>Y7<8Y!Q_!9a+5fRJ=)NTs-zu)pR;fKh_D4egy&cNu
zXK`Moe?5Dj<w1cs&NuL1e+j*xet8GKE6y4nAGF`3`x!~I`_w74!^}>jXLvp2-&-O3
zetm-SlXeN(uMCAhE+qels^I^7G4%WuA$j$EAPuVjb4RV2h5COl{XT@A-z@rHp4`uv
z)9Sq^K2HB5iz4QKQvb8}MT}qnv$2Tr>woTqi1F)xbW6ne^}l#t#Q62UusUM=`X9+g
zj9>ptYa_<5|M}Y^#;^bJ??eLnA9+4v{Q94MEMh*D{+|N>eEJ_xMT}qnV<$$;$LW7r
z(j%Dt=HJnO=Yfd%H2NR8AL)}+jlv$}FGtMB>3{6%i1F)xc1^_i^*?e}#C)9oyT~8E
z{yWD-j9>rDS4E6p|0|D1Oi%isX1c|BU$km+V1Kb`vI}D#Iv4vNw)W}z{=s9--XGqN
ze_QWvgC%5tyj%}nSL@xw=PxYfcRdZyDRVq2WA@|u-+6vNAWA;R{%x^n1BjE~X_ZZQ
z_ZZ8k$?y8O<;!y|pCvzx{meY&bL6A!$2u`9pC^A5zq1lg+WuI9{GP`8ujhOf$=8R@
z)u@pF+dphN6qnliL)+_luQGk;zqZ#?8BZPOMVUXtHGTNK2bcWl_iTJrUh{Pf`_Ia^
zQvSqi8UIZ-J{j`A;CR7IvHiLt`OQ49UHe^S^1lx8FOmPz8m2$<u|j@&|2i*4G(HaX
zB);6ryC>WDM9J^Vaf+UU=8~U$j+NK`f1G@p{iX7&c6`)9{{HV$p5Kj7{nYwj?`Hp*
zMd|++W?K0lasTo;Q1|SDe&(KQZGO4GxB9Ou!1R7kALFg-Tf%(bK5yl->`#(53$CF*
z{7!9z4mT@*Td@C+tuI~I%Y97WiCxzGYkf?7P?x>5rH?6Nf0bU*Wqr(_4^tby;q+u5
zv)(5kE%z}C`*yj<uzBzUgy-*%nZaG|<)`|XJw~8C<au4?cpo$HM5GVCho{#@_~(EA
z=Fon@7gUh<E8(BNzp_oj!}~?OW*n_1doMg046pQ6Yj@qgIB&g=d5(574d-?Jt&jN-
z{`=!&4hs6$Hyw1}=yP}f(Z@tb1>JSNvT$TyoafQU4DQ|KU;LFm|8)NF5^?waAH32E
zeBbJnV}kYxq5Xf~g}lbUg#0-L?rN8ie*$;C%5U~D=OH|o;gz51V=ngfcPoGHW9}WJ
z(zrhdrS0KTwb1*cqqp7O-S}YnZ0kY!xhBt$ebktdFsWYun)+9+!})7~o_|+50q4&F
zuM9{2`_6Z(!0x}^gWZ3A-V*AgvjXSK0dd&<&u=}!|Fki>A2q!M=jj1UeEBPq_e*4b
z*E;Bf|9X9r-)7ACxk39M&^46v<_ag_EIZ&gqEE2r8~b`lP(FrlObN{7;Pc!0@=siz
zI^X`E(uqhPK+o%|R70NuJ+Ci)EdCFm=k--!7X0_CLI1OTSOJsn%k%P8YL}rw_fg}5
z_7c|%S5AZfz*Qmt{)GRRz2pn(otc9DtX_UJ;lBd0AvQgn1o8{`{xO}Ro}mNsl3ser
zdD?R2@!~}=J2Za$M%4PBn}_laI5@9H!gHWYf+H8$=k@nc=)1UAjzRo^-(vl(*dz1%
zdiZLG9bXn;_kd=|b6)^=;El`a4s!v}D>pz*_WrwHUG+t@AJ-Ko+xA1p4>K|GRy?Mw
zKFdCB+Yg72>s{xMB20?(k83@NaQpGa(7cS6vr&9spz`YP)(3<BAo;xOtq|{$pL1JK
zK1P1ZYe7Cv{)&)4Y4Q(k3Cd^5&k6aHBmV~bHyZyu`I)=h^i;k;{u%bSlrNIsf%CS?
zm&pH+{T1cQ<ZGV{#<N2H-cY!P#bQe+{@R~AK<9ti-aC|U2&Jd?=k5uG>r#H)&w}xZ
zkzaRDkdKr9vCii*+%);+4_W#0PoU7avgDs-xSjm2_76unukF&G>>$gJ*~6y4@~g?a
zjg~Jatp9rM={}n8Jl`Tu`Fl9ut^L27$?x)08&C7P^`}5yOPbzCe(9luyK8@>e<qi{
zr;&b`G;tA+H73x10_X2PiHN`dBzAxQN$mdqli2<JC$ancPh$VL{*$=-`%hxu5&ft9
z1zq*ue^P%+`c(e@l=P|oo&J>k-;e80NuSE!pAz}Sq4wg__NUHzFPOg0)7D;ktB(;x
zX^+2yzBKT0{V$2n$MwI&-QWKb``6HZWuL)*W%SJj{{EP_2l`{MpRrT0Kln%3{nt~N
zKg;^gzZe~wAKN;^hNsU=!LZ9efBN%T!RJ*jd|$tvW%Pc~>AyQf#z#6oHjMKFg=4le
z`3Jk+55`}#1(L<s=w06r4x_5;du)AQqv3D4%hm__zFNz1_<ePh53J_=zt$@*`5e!)
z>U^(DekR`!>-*I>`78PUNZ)g1$vffqz2yJteJ}Y_Z?N%q+U+>HKt6mfS&@ABT(UBG
zeLt-K%P>D4;P(`j??wK1zqH}HKUnVhpzYET{9k(hs6+YJH(UAaLk*t1Oa3698>aQW
zwm+v_#&%f03rqQl`o8ri)*o$u!s`XJ{Ryux$kCr_t}oDYA@k&C?_k5#`n^DY`f$r@
zJj>*lZw~TX$;Vz`{Mo)$$gf==lsD|EUBGkXoD)~r^dx^h`S>cE&SmnM-`Vtx53=o8
zh5TyH8|eFGhx)%e=Lb{|qg_pa7v3huPw#vEV$G}m@;8U&uP%!I<&s{V?<dQDvgPj}
z&ll4<+|~Z&5{7d=&!yAz{3&kc>;Il)|A&^diTr<M&OgQZz#}}*Q{PkN$j3MzqkNvc
z8{)NmT=Y$wekxz2eDRJTUn2kZTS2}|{)FB(Kh>WK`SVyVl{ZY^T*&_j`TN<QR(Xf~
zFGKzy`Mqo13&Hrf<V$={sQ$#rPvCry@^SJ%V>wnnO@7IpLI1PlBX<Y+9QoZs{^ZH;
z%=eJxsqAl&|A6nA<0CC!Cf~sNue_J#Bh>4&^*#0!%e&;aW4){OO`80T)HjFnIr0^j
zZ<Q~SzntY;<+Yr>NIfjF9P4=LP`-aIf6<mpEoV8t_g3De{%`obO}DttE0e!X$5HIR
zrpfF3{Nh&5W0E&txTouTZSqO7&X0FB)p;Ki3xC6`lTIgUqs~ba#(5tEn>g7y9bf)h
zoKB?L<U3+LfB&tnHJR)Tqgfu9*VvYs>?~_<>-tbyC-0m+**O($k^Pq2vQ?R6+kAYJ
zELrPu^3gK+L|H372Dc#DVZZSvAAM7DZp*T^&Zkr9)|Q%1TL%9QUxnkR&r+u+8oM4(
z)wZOPosx;BCeN;4TT9`~bCaEhWK%lXI<qy=n40c==gxk*E_GB>dt1YdL`_3-5n|OQ
z0ZevMGZUGF-#&fuV!u_AAz+sew)qJCKQkp>{6?NcKk%hH5fXs_xvYLZ=tcNmTvzJa
zKVV%vA2ofOTWY)VroLuAtdpJgwq)y3Ev+?3a~pD|C6j29Px@)%HKrOfjS2afU3y;Q
zN}F(!HHo%1WbK#RlkLfm*9rN+U#CvgcYe$+<NyAh(xMS<rzex?<B?;@)=$v3ZhaOn
zYF5=WCA)N^EpxhPhnHPefjR>A%wh?$I@#K+e>x-S8n6UheV+?VCy;~-7OSjh#TWUy
zln;?iM>`c-Y=;MIV*<9>Er}));g9OEt&rQ+!Pb)9&EALpc;iHW`&;DqiKe2tEuPrb
z{>J}e+utGfF{5{Ff3-g8={(76*bl<yWY32P{W<+tw!YH-j=r}T_zlbF>umqap?sPB
zT$PWKe~ar!l-Jh@msZ(!Gk&4%@3@p-kz=^@KTG~)uJ6mIZ9g|h{-(#QytZF?@=Mqb
z=Ko~>SAqP~!)&<amn^UC)CShuS=RIU{`P_29BSp2FOVPl$6)#t$xjaPo5(-U_RHb?
zNQr#i<JO<f^CY>zG0yf^&-pBqpYlBaFY~KH{&=Qmd7%AYhA&DV<2s$}<(7|<Kb`Aw
z<MlQlqeJZf9oL`#m+g^Dej0gA=NS3Td_SgqocurTtMxq0yS9Bylg~0eJJ;EfpQ8O}
z{;xdw5nNxU=~E#81kY*DX6*kelCSXns`_6dU&sDW{wpiIc$LY|VSmQ`E8Fp*HXZu%
zf2rQOvn=ndsr3x{o$NW}=dgY5%lo@WU;9^o`5o45-*2y5VvPF=zV))r`s4i7mR|;I
z^seu>SJS`nx@sF6V_u*>==jW`!?&1jIt~~{-r>2gsF6IzCI1xjMaKs*@)hkTvs|Rf
zpBxGo$Fh4@n(OT1Tu+)MKZoNUji;91ud^Se-{;CxzLw=z<+c1i#`VgE@!3H6X&guD
z_@YSuZI-*vaT56?*DL3Dwff_*|2gR^Nl&7@zvZ?6d{IBkYrio|`3b+Wyv9@OlN|L>
z`I{*}@=PnQ>0BURcS+En68ZPfu)Mj_#^*8ehiSPZ{~G!J^k3tt{pU5W2K|q+-+Mjl
z|NMSd54B&t5A|I6JoRwRi`3i4t^SzpZGx_6edUmkkUw3=cO2I`<d?o-{n7NPkiV1l
zq2{B({F7W6%4@lflD}o2r01@@OTOXn^q=zwG4emqb)Bqd;^b>NZg%rFo#nei{%aW1
z*YN({lV3i-U%nl#U$1%>Po3P=KAU&CFW=feYx%yP;|y(QH0)%V|3k+gbO^WS4*5A8
z@49S1qvV@e9~=H}m;4x(8|CMakE=hFkC9*UmW_|f$H|u{ue@zla75^%R^FvQY07U>
z|M|bN<fEM5(f&n_{I?i?t&j8MmvB9+^6SZK``p=Xkk|HE`6Br!+ii`1iTnc`*XsJ$
zGWnCW-g>dlV=Cl-$a+-UZPl0BQ2IxxM|0k_>7)KT<h4CFf3^Nc$<Nb%&DE^G$!mWn
z%YIFayvuTFUa|gY{j{F_9Zk0a<?msCLDOL)`5%*auCd`3$**O<L;Wd{KZm@^m&yNp
zUt3;_%WXNUkdNrXHtLCC{iF-t)E}+S9_IL7<LOZT>t_e+1Fh%QGo4irwVq?PnK?LT
zNG`p9_0^fT`pb8|&9>inzl?V_H}~zD|Jr8D_rdmYZ%vLEwR~&687{9BH%GF5%wJ*C
zBSMD`=1=}Ao8A#RjOToi$~)v6SU(nzU_ZvO9);J#yX51V9xQ)z$Un<`*8Gf-|I5=>
zPvh)g#?>FrpDUjuU(5WD|HA&SBKae=f6s9BeOQs@I7>b~$avRpLwuI}Je?n=yuJ^7
z@+UU`)t@}&U;i%kj_(ikz279x2dR9K^26A!C|@F<<@}WLW%9>_;#nczO1}Izn-03Z
z>A!!$dh`s-N2x&N6*ivQpLWR~ru`nu$H>30?HTzv`TaujY4TgRpF;i5lK(dQ8QLD_
z$cOW5E%`~mweinhW#gYGfB!qwlb7xKoV-<E)A9xTzvAShR!z-G99Jk`B)^IC=gP-y
zx82NRe@po?`S3o4v<=?ut>0mNv(D3}EP1P4UB630N0;4Ef6HDd|JOyP+IZ{wif!*0
z<DSsfzL!6+<^K?RrFSj=8`*DKy@BaPebtZ;<NT=Vla_z?+Mv9{2hL)9s`63t7lwG3
ze39*}%E!pxr0tiML-K9fuh()&{-x0PI7|NfA%Ak@WBPpw`jaQWP1{HE1@b5J`w|+@
zBKZ&c+4NVwM1C{Bho*d)d@cJY%2&vrGd$>z+0HuL6Dt1^^8GkZp#C`IH?TjTe3X2Y
z?UC{>`G!!w#K>Q9STH_u@~5!<Qh(CqcVoZ1a~%cw4u;#w@5(>Sew52})_QZ1_Ls@)
z`ij1n+W3UmSM+_3ddT?ztxtPB66AG##eS?89M*SQ&wl5+;Qw{8&QY$vv7ONW8zbLq
zbTB?~^81DKEls`>)=%;ug!ml!^ZA}q!_AYovHIuVzNGZN$I>JI(B1lwpRhi1zHBQR
z*}pLr&qnzC1KO{l{o#;3ynf`#!>nNX)m@C>-H`lPjS&4C5L*8l{(gq62Qe38y<p#n
zhfi7$avbX~dT+wt)7Uf^^O3&qf0RP@4?^+L^&R;??P3J`gw{I_>!%^v`(+G2@`qiF
z0H4AQT=IPl?|K0naeyC&o_~t+*)6-^9HCvz>!IgghkX3rFPPFxyLcGTJK(*!!gl*i
z;di@uXbI^_N67xv+~D);`Mk0nlhtJJ=h2?ug!BL|3Hdi~X;6L%?J>khuuB!%Bj5Ur
z4e-yOA7kL|zjQru1iB;`9Qwb<Qr_9RixGssAEN75vM(b&fx~t*#=&{AX=u3MaN3>T
z5hK`RhhY3p+}Xya@I2BJ*fPx8ore$}p!>rrPwrv_<7_oxoJZgeeB})*AAfKcBY1I@
z|KDMr;Ig3od!hYVKMvV9(jI>d{s9lr?rcVQz|$f5r;ZJ-Z_&`S80x)a#Qk6Gu72n<
zoAKXkxo7CEeu!tglvL}3;;s=R@Gb53o-ZAyF|c>7FO<EM;i>(lQ2p^Xp7-mIoL}O<
zItCe&Mfpw-M*ad?|2PLCe}M(V{nA)(#;6ze#a=Mr@{s!oy2lTS7=hMD#Ut_mfH8D0
z4~-bXC)H0<ANkiOJ%swkum6LO4%$=nzc>lu0lJ<)y%7Ho(E6z|FJc6m6}kN)M({$5
z{lEDyq5cF$h3YS@ubjP*KEMSC-+xK{<<H-BA^S&uVVEOW5A8qySL-tsdt#(DRrW@F
zfd@nN-!}cf1Mz=>4{6U$#{U7d{)-(GF#@Uo{P8<ER3Fub>aV-z+VBg5kl#RO{U-xf
zK<lpxbVZ=`R}pT4aQ!9ql|Ou~ud+uVF95Bt(t9Ak0IjbIQxQHO^_A>LC?PC?uD>fI
zZv|R^mFL3_q(k-Jx`h2d<xy}4whm-RiwS=2%%ENCtN3i_GmvBbRKUPopx1gnhUMSh
zl|5}#T)qz%J<?Wiy}AE?*a`T~LUY&nBHAzI$!jsvdo||`vfNirZ;gKEOnHsLzB&*7
zX1yos@PW+VYdw>D-E!}qCm$a7Rmfk)ai#W~4FA^<_OG?S86m%Ch}Y!Y8k+xeDF30p
zcjP=!lziV%f7T_R5BW2P{JMwj|I&G*82Q244`qKgPJYq#?4NSJI8DAv$Mxj1<kLFN
zAfF?@S4cijzM|t5$`{D*pyLw8r$~Os(EN<9%lbRV4Vum+%2zXA^#7L0Pv*E=<tyZy
z_#U^&_h*Lf!j1iz4vde^w}t1=9Lj(1Qp$5Yq4RAM8J{xs%BB379Ova9Z1glLP5$a4
z^^pGL$p1PtAGwzNb7d>9^M85rw{bk7^Lz#JMb1+xUnGCNrZe@eME+#H_fq*X`PVp}
zQ@%p}73RD0hV^XvP8&}xFA?$`A>JXM4e?R(4WV(lOP<BjbTD5Vc;E2kMO*#zms|OM
z;vh^{WEXYSFZrFiuU~ZjVqk9@!fK|UnPuw<4fj00-`DvhhYq<AA0@wx^Iq9!?0k$%
z{si)de2l!V2hjQJIC;bPI43rFOqzTL^HbwfCf^j|wLZH=^^5aohUw>MeM3G%{?CV4
zeb@5jkl)IAFXe}kKZ*6U>P3`%OzU0holCyN@~7|bV&pe-eTBZaNRwai81;+gHA{XI
z-|Ogn-g)F-*Lh9KpHF^<j;qOENPe)6lgY0p|FDkR$zMW#I@jZ6`M)kBe;eOdYJ9FB
ze+laYO`jb3^SC}i%T1pA0;Z3?A1aW4tYp(c-+L9wZ(Bp2^-76+BhQ7>_l#xo+lBNY
z!t%Xih<C`lS}v$3QSyz<chy6e{EM4ye3Xxo53gg1ldt@q@_Y}JCO?z&Ecv5sd!AK)
z?&bewd<x{ZGM@RH8oUxwB;U;WHPzb^`4YbatNBtU&*Jn?x9Ikk()YWI8skm=`o~S#
zf$%eXV*UQBeLA0acC+=*2r_zKeU>Gnz3u(2tL*>M{8A4dzQvYD<+Yx<`L97f&If*O
zf_#qrWq%I(UnF1qdXU$8W5^xWpZsQ<o(}crryI!6v3!(#1N}FrSl%T+nEe!8{}3nt
z$idd1VsD#1Y4SJRW8;%Q%+5P!$#3HM0m`S@KJ;a{x}H70z5Qc1JZb$=K1Y5e`RplH
zuZrYv{E+Ezh~-P<AHFE*c^D^eFy5DI%#OBx&y$am-*I;<U*`V!IQcJWdQv_|ehJU_
z(t4vv{<mvwe3ZYJ{M{dsXFsb%{>!UuxGG;Jzc=f1)t?IaOb7oL%a=oy9jy9uq)mqy
z`K^qnp3{&e|HnTt-6&rm|CIVqzDz!@=@YH@(ow&sdm7KN$nR-+Y?bn^yF=$3q{+X2
zALCE|v*cgBJ;)cxuVXpN?{57slmGo1E3bTn<I9wmFZ%D2e`RaX|1|kt_Xqhr`42<!
zDUnZy($ipEDAz`fr|K1XM%U=QG<W4L-Oax|{3q*=+1HjUIiGkos0ist`_RCfq`!YY
zLFYqMYA+3tgnNRz*!u!3c=SKN6TS!Qw-3aC&Tp@vp7qbi$o_TzeyWwafRe#n60*zr
zvHnZWkM&=2UabF;^J4v%oEPiACWfBRh3qmv?4N&$V}D`MHy@dO((fDIi{p9!|J@v#
zuhH{m(<kEmT%ZB|OL~-G7PK54^lyjI{EM7F>%ZjuS^uTy&6ZAre}JAZ8-rPp-R76Z
zyZ%u87n~n-zd7XpjfhXyH%a##^;w_lOMO*)c)mH+&HRe{bT1V*b)!0so*@&OU;f?P
zpu5aZ%YHz;&J8`^`vP^b_j^PB$^1>$_tEdmLh&mf6ny^HkpDV=6I+V(1$s{j%I_Sq
zFGu>w_l))GfL+g*5bl)LVEXPoPbKYrM*pDwgB|g_&%gb~2Hi*CJTHIwdgb+Cd7Csn
zD4*XsXkXA3RnKATu%P>1q50ztq4UgCdLRv258boRjxp&!>G?3X@_ZPnzuXJ^nN57J
z9cMj;V&YwT*LrOU`Q_KzcF6s<?KhA%bG3i0;~YBd$NsA`db!7-8uBiG{aAbr-x&4P
zkMTeEGyeLq2>ZWNKSn?7XFjfe%)Q;uJKw{ffByQh_)b6LuOD-mT=dtE#drI8=WFw?
zncOz}y;-%({nONs<@fLn#lc-q7vJw^{Pkny1AJrES3j2V|30pMbZ}V5$JLLqUcve?
z4tt<}>|JI2^<#Vodp>tp4DpGsQ2phvAKj{8{h03e@%3XK^8WfU-@nTE>&N_#RmNXG
z=61sQ<e#E`j9{|ZUq3pLDsva=JFOqHuzy_r=<Zf!{Pm-|dzJCmkIo)d#$P|i_C$T<
zs~^j-e_Z{T-@D5A>&N&&oMG;(ADw-w%*WM_X8%uDKSmEg{C)Lf<v^Tg?yDbTgQ|?b
zevFN(GXJaf;~)E(Pg6f;@$%v0>c{x5_;b99tk`tkYv9_BkNo4yfm~l7mFn&IuKBI3
zlk$APu`PkS&To~sxBMwz=eXg;I!fBxV9xjHJd@VXzYNV+X8F{V`{|F)W0K#Z>wD>c
zp8V;YcZp|LcuawOobv?b-!@o=<GfQ?kLUkx`{@z#A8|f3KiBd)UObcQ1$8~Dju#7D
zFR1fLIr`I<v+>vYl|1>4KMC>$^16RW=Lw4B-OxJW68Z6**D;(Q+CqM3&Kv2xSDE}o
zhO6?1?d?X+w<+J3{OUVwJe7}-53d&;Nd9kJ&!h4V`C88R=y-7$`L}hv&UvrH$UnyR
zQsqaG|4`@sDL;yQ@o&@<rbCo`?oRTQA4C2=uEWuJnu+9BD*sEH?=JZvoR8M{#K>>p
zJZO>niK$@kn)U+2B_Aihj_(OHebVG3O-b)LjZX*pZ+*e?<~duAvg8Nz{gb|*$dSL5
z>8bO(dGb2nsq=XS^5K18Me>_C|EKy~B0rA%#fv<DuuT4D=6m*=Hr>j-Z8}^R;^V9z
zwo$M2|7yMQ`d@9jDZf?aLwtq&MwScxUxxDy=WrdMtNk$Y`*EI9d53(O@|ur2zY^E)
z3vm9!rF>L*>Q#(<cz@m!@{jU8oX%6m$v;AU)BH-4-@x=YgPOdA%#trK9n_yP`FldV
z&byq+dQ9`t^s)JJ!0&B3tN#)58?K?=K5y&E)5tpq4L$gfVTT?ze8k96qod;|O`bCK
zh$G!;(`OttZ~lUXvBk%pc+%jdRXg=FC&wEao7*yHo^`e}%o*;Cc3dasoaFQyI%sI^
z(9?#t4PANg<U^f9haFlqeB=mc<PoEsQKNCyL`OxV(Zi!lqHWQRG2_RNofw_uOm?Oo
zbcA!{k<-Rb8#itKj0H1lX4K7SnbCH1?YyRW&GTC3W#+ZdubH2mpPJvXpmssif|dns
z3y)cNY;1n4CRQ6u#_D2?v6fid;_AgUi&rdeUffcBVs)~*<+#I-8*|*)<HjF1;e^H$
zn@&uh*tYc8rGu9)U7A?BY-!!n)Y8_anWgPZS1#?Sa(1dZdD6*MiD`-E<gB`*8pbpp
z+IVzhZDSe{XiF_fwWXU|7hx0b;>^nSW82g1Z5>O_ik@}&*;V)6@!PLC&TPk-?;rsV
z8|I93oGFeo)p3q+oE1}@=BYyuS~+yg_@R@Wp>0(|S5_S|_>fV!mbW1_qB~VZJ4PKo
zX8f3FbWC*InCOJD(Q)IV(Q)`4H+Fn9I$_NCNux(knsoS)NSztSOiQ;;Yp<WVc-qWl
z&8&q-9hF>mRBPkxS=DnAsiRYMbC0i{n@G)VZ<^blnwMyqKWzr~?#@rFn%|O|-`cVu
zv0%Z9mIW;<7uIBAGp5Eet&0{<TRf|JaRS?`(~H|v)eY^{nWpOYWOYa8*hNPlTRr2r
zMB{OdiQ|*CFJ>=$F?;#Rld2N+$(s6>n&#Tt#H!j<TXI%9nW{~uR@P<G^)*g?GE<+%
z{@*%m25(G{YfMjQPSi9f(y2r$l{`Jw*wnIYc}vT(bj{RsrnN1ZX=`i9)TG;M(<>Vj
z_ukR=$USXu{^DoOAf(-tsZ*Vu`c+|Twc{i*j#HPO3V$7^5%#9mNlr_h<FvpIubj5@
zBw*^$j-9FwuFp(9xG6LFkfnzlawziPP$d6wq|9){X@rw<M#4N2=210mZKLWN>qa$X
znnx{9*N;lq){RQ1>PNM$tRL0U+!XB?+HrVvVstFBW|EVhI%(4A=rp++TAHV2S{kP}
zX4+;nB${VVtDZJ9(bj-%@5x!2MEy~%EzPqR&Ym$F+tcUFnl^LJ!uhl2w6tZAC##St
zNgM&tK7UzD$NWZQPfKm%0%+TU<mrjnwCXvrqZiDMEnHk3YiZ5IT9b9v4T;8M7tdO>
zv^^TF8ajMsRlnw`Cp)RBiMG_?%MxwLWsRv?*{EKFefu?uw!?ujz*t}$Fdmpt(~wBj
zV0U{h;#Z5!=g6v6wb;U*L|p3{o04^iFS4$!u02&#e@0_kHv2aqz6~wytqqw>y0NA?
z-B{a{Y^=vUm6_O>UWr^?IbnHQOKJteZ)!}fXu{ri<nc+((1#TMcM69qv_LJ=jp<~%
zB|Y}E_Qp&r!fspEx}vRSWqn&S0?Z^bh{7b~{y1O)4pK-$4JOEz`1Vv|$I3+ODmkg3
zBQ+AmY2?s02PLM;nR9CORQx35r+%t4fBFc=IbN)ZRITIGq%u>T2C+7XYs0CqHr95a
z2qy3YjdPr~#xtfmnZz>uv_PZUMYtWp2tewr!%%g#jY8ek2Ik;{#*UkepD#^5IMJM*
zJPhi4=m?3&2x#LZ(VV8y$xO}Y!^fkLesQ8`%B0a>nlLGy$TUoW@DbB$n-a|^v5igB
z6V2_-(-UotHPdlE!iwqb4UM%kns98uj1&}L=7PnOoLMtas*h@EPu0%G!4WIwR9DAF
zAJfpBY@L_LG~(!p=4I{kT9DN!(KQVVaP&g^!g?s+!q&!BiG^(_ma&mz#*D+y_zAI*
zV<*Bie$3%t&a6r&7cB<2D3Pj9;&g<j=0(X&>#9Xa<eJ5@k-s{zqP4L)(cIXyw0%r;
z40NgG^h9&*gmH=1`t;O9YinZFG8|fvg2px0K&8^6XK7Ki^w^q)+QwEKFMudDwX`LZ
zt<cK4M3elqH)TY>+UlBG5}7(VRY6p2Sba@ns$LWf1s___2)!92KV#*m4Vi!V1pJI0
zgP#fGpj_=8O`<BzD-cj~OA2}k#d2_nL}N`lff__~Y>X&bTdVxRR?+pg8VI#DHP$4(
zlP~0Xm|9wsZ7WafSdzi<8KW~zZIisC1tzv<>PAjnnP_THp5BUM7Mx-8rypA73`@2`
zS&kFhL7{1#>PUfuhQa%(PEDpGGs&rGZ-tW8w=_cYqzFLGMjip3N{>9E8NaQ`l~OY$
zQd1o$Gis-{s(wS;4snnc&M+v^p;f4lS~AWkoT-s$8r70&Y)OrlqZmey&a|vZrpA6r
z>i#Jsr36o_sY#|Y(^?bD8f#Gfx3^_HU2>))<&&+`TN4e<jWeb#m@#YKj6`c=B88f1
zMRQ_COEZ#eMhj}=`WY=PD;kqCTGE-unwhia&8nU?t0SGP$>6uKHHkI^)%om&(~h5Z
z!t8~M7A~xw-O^Iul$_m?X=toL+fv`&G$)Zk63<C4YfYX$XB8@n)G;WZ4UNY%v@BoI
zI4_w-M4_NKv1Hz=8pL6q)HA91$jD3++8_8In>KUiteLUaM16DO%Qd3?i;~OX_o7zO
z(#138%$n&eu3j_?Em9Kyq6xn%ldWi%@a*DMU}~xpji=5_R!e*`)zHsmraIY#^gvCS
zNTHc(tZ&Gibg~?tvb4RfuCBJq!PPI}rCy>YgCjeZc_}7oij)<dt*!CWr^ZX4+C=N=
zsMO?NwAQvX<HVC>T{2Yz#coZtILVG=%_RIvy4B<1_S*WI)=`Zu^(}{wIy_q6f;4G`
z$Mx+{%HgSGW<_IDQxY{~TPB%mg8%L5W+*f)wKy(i5(JjD)#6ub&GzPH$yT(D@VO-g
zwNJLBMb%o9%`HfRWTw3pO)X+ti{ExAa<U1MZSX0BzaXj9CUMTlZ`*iL`1UrOO@pFl
zPpI*Z5pgofCIlxn?BQNLJ9dniCyZ-P;n<E^scoUkLsw26x^jdw41uK%b%wRoB+$ru
zH`t&7Y4mfZdo8h7I*xE^S0R|GPF+)?zHO@0luS(>TI<L;F|eUP)JLZ}sphs-u(eG^
zrTG7m_O5G<WLLWGZ}U8T4`F-JmFZ3iNr+=P%Zn5wiHnmFRF++<mRd+c$O#f9p(Js4
z@2l9ivY-Cn7qG5rzuy>h&WI3DRlRqwT22%SNf9%~;TzvL%q0e-Xd(y(x5AGtqlak5
ztJ9t1gVx(OrcV6B`P<o>?4dhGLHr3-{jt=y*5s2L)wOD~y6XRgSL^<2!~fazf3~(Z
z)@7eTP%HJu=JxFX8`9sNF}CJ*u<c9rb#{u$e!GLGoR3j6|L3#J$N1e~JnY_#&@nyD
z*2(elUh5qF8t;y#t;v|BzjxhgwD55_+14Wle{#Qj&^|rf`Rgvvis!d?c6M@xjlaQ+
zbjPlAv;C9Zy>}P;`>56ZbysL%@2rio&Bv3;!BKX>LpeBM4Mz8Xx;YN<TToQD-#yxG
zR6uS=yKD9juCF`lnOhi)kFdKK$D_yY__jMe#uRc#;Jpd*buzo{jvu>!LF74j*6oil
zJZDHaHiUl=tLt_f4}1RC_H}p45AhGUY}_98`*@o6XgFpdOM5iF?%s6UlgG*J<)l3~
zp>02O*`IBC-es*O!}HN4_+orMnqJTEyXRUu-kT3*DDuVKkgpzG$YX6U{id&<&we8V
zFw1^pcKB`g5&#5ZF|}=8_9qu#zW*$sGXTqQW#Go%^?Zz_=}m6$ZU$c@tLOtmZS;S9
zrMwS%ie+>Ev)V8>wBFQACbaI#&m8i+9=eai9&+6q4E><|5{Mhk7~oGvW3CARWa^tC
zzuBk3qpK?r^vYFrFy=eWCv9ibdQBHGt=IjZhX1qb|1|xdHT!2%|C>#>{GaX@dv%F|
zaq!Y#_57dy$PV`Xl|L~6qMq2)6fc{O{BtuubLOw+<FRajS<~&AKR-MnkE)M`2{&@*
zdN^Sc(R|$f%xl(mJb4(;{ZYxf;G4`ojE80)A7&YVvio-Vr)=Pl4#n->{Gb0D&;@`T
zg2_kY-V{qBye==7-I~y063hg0P(Xw82n$$Y{?()D<2RWHW&g^m@cnlaJ&CETM(@+x
zAM`KAEnEIAKIQ)U)$;7$?Y}nwy_>;yR;l1$Z@c#^!%@Ejq*$5zzqNW}wYjz)Y(u@~
z#-Uyh|86ulHyc85UuSKzu<mgO{hjIUV2lpDLkh;|^1I31<aTm3c{d;0>lQX2Z;fXi
zBMd!k0fEnWK4{^uZa4t6<5q!q?VU>d!%m&BZ6I5}JHNY`prm_v&<QAe?~D8b^QZ8y
zQuY18WIE(`_ve2{74Jv;^XcvU)Ah(;A@0WhZB%O?Mz~Xa-=BGKy1s7(FM0iK_py83
zIUF5wmECD)C;a;k56!m`4tB4*_}<a+Nylsx|DK+meE(OXL%Y6{n@;O`^l5Z@c5rfb
zaQ@d*solZ&{`49%-#P7`V&lL|k7um<czAz(#(m*l`-GF{gfZBWow}?OvE_V<+G80m
zyU36{INlo6IqG~j!hc`Sr!ouYBSOaR@cLp1fB~cYfW7{4du{cHAhk;s{om5kZ-N{M
zlnrLH>{7A%aR0Mn((6I*6BYp@*T?Spa|p&@yFb?|@{oG98Yq3^dh~Y_G->+^>uG3I
zYJXKhdV1IVYk-naQA5A*ab^eP*z9{S2zQr!1F)bw##4_cm7YeSjVB#2+?PkiJBqFJ
zFOu_VI_Q1&*R#6`zMK(j<L;$2kL$c0R8hvyEF@2G+&A28%1T&!k2e~BuIi-8{C-=p
z5eD=&sOYON{b9u*@hijF{nrpJD4bC0rJS%-$!zS*bW$_UfVch*UfcfwuHva3&)&{5
z0&>DCX)OWw4~n#<;}|8sRvdZtW^_9O@Xo4IM}CW^<k0y3T6c`IC$d_x!0NZJ_P#$q
z+W}Y~wA+Zr>sR60Un?fJ#RUkv6?l_PZu&9@1bt}4w7aBO-Oi~_KHYbL0=Fyu!RHl)
zm@p=F9_4C7)Cqso*Bi}dy(!eZdUZ9hBiq~px4fNcC1p6?ex2<auzL%Fo^?Clb+6wM
zW`CN^KaE<%=OdYqU7)5(;rq$-66ZGn_I~N?j)tTAgE0zEoX|%X2Gc9t#<$n=e)j=q
zdU$Yr@qMRJT|dG-KJx!>F;T<G4O)EMy+ki@U&kz}#dxO#VhG82V2bq)=VpIgVC>pm
zJogCy*&YnClY4#-cIMu+(y*}9JowaYfrRW-0tZLK8)(uG7~Qwoa{ou}4{(Cackd^+
zquyk?Nyt68y#sqHpabWQrkB%6w@)Z{&rre)luMijw8<oey_?ZseBT*GC%fKEIz@c-
zXnLqXNNi25Umbt(KgP2+CcpZj$80{m8O*B=ldlFnsb0Ni@4o@|veutggsK%90_SIh
zhtmoGf+v0pKEQ}y`5!Pd<_5Ij_Q!NiBm)mo5kVoPyirhTe@Ins0RW(z**$_anJKE0
z>$V$YEo>DYg{&>+GtVve#(DRX-h|1JU~S&Tn-8vpwE5%Vi~kqw(P|_9u^Rtq#y{5L
zAM5dtjrhlA{9`Np(X7Qk>hX{G&CU4D&G^mD_|47u&CU4D&G^mD_|0qao7dtuuf=a(
zi{HE!zj-Zw^IH7owfN0z@tfD;H?PNUUXS0r9=~}#e)D=0Mu&%rrVziODX<E2?B0C^
zzdwh1v&iW`l3ORH5Q4z&5U0%@N(==FjMKS87-mKTdMq>`<mT&tg3ZDB=r4_4ls!_I
z{^~V<!Bz?T@E3ST4_AL-n_y%6K2~uEk&ylpDWrH(bRsrv0?gsFGI%$l7?*$h>iFcl
zy|Z_(U%lJeJviRo`~GzZNP1Vps@Yx{ClBT&ie{!}_x;h>I3lAwR=EG+bTYr2ML4p#
zRmXg77|pm|udS{bmjvO6yX6Y9?e3g#1#9s5H3rcDEf(wpPU~cR!?C08m&(p?@D|u1
z1dOut7f9m1a?lTu1MX*c02^V?Vs`*c05D8PMmHHG**o6tDD2)j+HZ-SVE*OO{>jnK
z_W*)cd!M)t8-_LsayUr%!2Ky~`=_OYQ=>=l#NRSCva)jn2KW|;K7ro39vz9Mxt85K
z;tZZ4S9Lte!X=*E^g9O(*c|or*C|w#|8+i}e&R0~zRnSGnJCen!xq7knaKAdluoZF
zz%tPc7(aL(E!J84JlqH1gS$5P@nHulEc~@rx420$PV4Ys?-=46RKS%^yKMy1!#E7;
zR7;BKJJPVyUEG=f^&V+-QwqS?#JCV#%cX=Mgy0eb8J<E2J~~{MTQqz((xvzu3T8M#
z2!M%$3|Gz%$-N4IICOA}_xHO2CeJ_z#3cyx4$Wb8iQo-Sj4pv3nC}O!7px9K?vDmw
zB7hNL&sf?gL%5v{73%i6N0w;-8xI=`a^ilS^5Cy<RWk(b9*fuQ<Jo}e(p_Vs?E35r
zq>v&32$p)}bp%EXuS3~d#DJ>cZKo9;HG#X3gEW-b<yEd-dsE_O@Ck0prrbKQJM4w{
z0!Ho5PzAo4V4{21(Orwjy+Mi@Txw|mUwNVmxHiLGAQ%fMOl^f>glw=TBICjd{24F+
zc47>Ja?5vRzB(gf3nS}5HZXapJ8FJ<w%3C2WrcWF!`U{VWM>SOGMz0&?Z%_TKY602
z>38_uhd%LRfAGaP;?>$(eIxM0*%jCgw0DOVN8PQx!yE5=D5^it23WIMU=^xjCiaeZ
z-W~3BPA}RYq^yA{*gpYQwf5eT75ZQ*azHYtEiG-knjZ8A69nuI3h!WCIUC&FJXX#p
zhbOI_!(H_I;F!ci$0)V=AgJI>8r7Y5TBC92LwA0**Y2F0o*$eXw_%MTp(?tZHrVtd
zHi<=PPp<AeyAyCl|NQ(=+!(^u|47I(9`YskqmS2k+YXA<8~kRuQePv+hVF5NIvAsD
zozCa}Y|@deD&U{ZOxi$C44}1#2<_Yr?n1C70Dt{?>qbR?>f`;<XZ?xazRbQ_Ml~Q&
zGx5WU4G<1R?`SAwD5<vz;i=Iz2w^5b!nO0{XNp2@$PMsWqYPFXq^=@+Q2uju*t3uW
zwD!ruhoHVI6T2Mb!QhCa4yeX^Vqk>`&OjO55h&r3L`ieH>C2-o%s@vKqlCMgK32L{
zXru{hA6{hyzkW}i#qhl=t-%;WWSMavuK9Lb#&nbKnclnNnw9{;xqD1A5eVeoU_9ed
zeIC5dehA2C(El;BGh3pH$iDFpYk#lw=CCJH&;~^t!RNTeBKz~{Xb5SdC?1EsBK=+x
z6D}|aTY`#JP4CQY6Fg|tFs34@o(C0J-4s_m&Y-Z(eY;M6JlH+|@cOm%Iw<oSt>A3V
z^A}?{<@<pE{9VznL(KD?uCCa6uKKoKt6};ujzsD8#zvKNbhS>TSzl|cZEkED>%Otx
z*jn9c8q)|9z$bf;ua^6--;odQwD|CJa??84J&V!^ElAXRu_H~<+j79?7<G3k)$f!?
zNDdd*l>Wv!rN41c??t{$G1_E_55Bt1x^TALyUG2*$_YdWUXJJWX9$sa4Kg9bC=cCf
ze|9t&+z&>0%*Vl}Bh;bto%1$g1V@#&xhjPpfoZ@I-)G7|Ug0)mS!6Q^(QvZY-G}SW
z2iAQ^^6_Bj@c82B9n56=u+!Q*JMZisoV6#@Zl?|TM#$Qpo7x(U+kU*6+>biP-61I@
zmRn*){Bd(J4mjo?gZ}rGgIiFBUGw*q(+T!;(679EbejNV0R55YfGC2lBodESK`JTz
z9)?Ixe+OxOL>|Ao&#uKmf;q=yZVg55XE^EgCMtn`_bssD1EML2?{E6jc<dHNh8T*E
zjIJIf7kYMb$oBV_`|A10?n%FUbAGr>iX5tt&?pNoaEWtSWM|U!ZQ;`F7vpmrlBnvT
ze)5_^fnvn^cx;)BMt^WQAHFsAA^hDC%?yi*+Zm8xb=E<sHvWBwmyUnWSne>UzDh;H
zHF-|)U$(X|6SH~mI@50k<07j}MwS2yOss!!s9$u`LM=Q6Y<KUzGoSLWTOjg91gWM`
zq}XrYDj$JTSsaxEjJvmPg&2zund@q4nKHMdl^MC@-XKB*@s;s!-HT;+$&Q%-Wv>EZ
zLpGLtLwfP~wXzOTxtDnHI(r~`<mX7oVX24+M6Y0}>|tjQq^7c9s(cL{OvqS^6A_$9
zTm>{o<cBCQ7~7H=Yo`|^#oa*|l{q3rk$CCF{bZ8ir-p;9xV|Dquwa(o3WhBOC4qA_
zw4uwd+N6F^h`;bKW%+aUBUj(zI|lsPuxRS^(}58MjWBS2CIy=<xv?{kki9Y(0u1}C
z4Cv}+y}7=%(FjQpvSL@;we6bn)Og?a`R?l3oHVWTos~05$ZW@hj(-@_6;d8f6Sm~Q
zK+0|b&6)C4@JCf0lj_(v?4Go~-8<{>(f0@YL=~QY((N5wRgNhUr~vGH*M|h?m1u(w
zVbro+Y#1umKO#*6QtD7f(H|X&8SQ*K`qce2AAwmc0(f=YJ$^0J@?lPbhUDP*OxF>E
zi#!B4ZHtTyQGmY)fq-5d?0<W3c(|P@SI3LLTpXNlXDV1o=I;H$;hu*_L=7kHy<Jis
zk!9Rox=>gn$Bh6leIzhE`PjKQr7C3ahxdYdAAr+fa~ZL_d#4m<ZqcCS#+cq1;IY=9
z2hmE}!pp#+(RYTS^}_xZ-=-JlVFj)YQ<z7?DFxDoEFs7N#RlwDeE$Ys*z++PKpX(_
z2vEwI8nG(4ZjvcVVGc6wkZ}cR6<8DE2o&LsxWpT-z>Jsw*xMRhDR5*Eh*KkOsG|87
zs%WB}k^-PAx9qu~<i!+))uX=+?&oIkd2o}hx+D?aQG5{e7%oUUct6SZTW3N`26FUu
z(gaIZ2*U*ZgZG(CA7kt+5QMVeU!pzc#}QV_LgY*M%a~Zhn=^_F1a!=@p;Mqmepa!7
z=mXK4c(HB6b<>D)vFIc2aA>IzlC45MXL@pPqj|G$gY}r-$<PUuC_3VaNwWtcIw>!3
zIGBCmX{6icAq>-t|A6#X2>15i?npnAn4JzVSNLAY-b+v;Mts<|Fl&4(v!=*LCXVW;
ze-ImnDu$AY%I>i|f@t3k9<e?wui;+4gsKPD0rv;mgOJNAZX^Sas@^_g>hJKB#>A@l
zg<m($Z01&HcC#X9H}gsc^3+!%`087=jn(Gn`l{tv$l$JTG*|2E#?>mL&QgMOR8;ZD
zxOTdRZ-P~7dD1VMm_y4r?0y>ERuqaT!!W?e5O?vsEMLki_YOQoY|iod-r4cap_?#>
zjn4bCouj=@``~YTNAK9ZLzyT=yV)^9<-aMZath)Ac0?I#;L-U>>m+;&aS*P5+-X0K
z@4H|AGH0g{Sz_Q9dywqCzraoeGU9CSFBce)&Jjg=C%f2~op)#07)x?4Q3sNVkW?%c
zjRXp)6sKL40&YVNQh7UKfLyPHeWv}48b7^~%Q5s}#=*42>_$|3&(bJq2Y3m@oW}>z
ziRBU?I}L3?9SsOhX}1}WA2ooHVO4LSv~=syGDIDBIgYPpwk|lyF1&<b1&T@L)cJsi
zDcI7Lz5!|@SBu!X3Gi2AQh^z|jG%MHM%@ywTN>iG;2P`(KFi+=D2Jo~-cHdTDj5(;
z6wL*^V#a7z%~umIjX~5VG+2IkL|;7-z+x?R=eLPZ<kfVLR8unR;6R)D2oEU3j<SqD
zabkESou83fu(}cMi?Yoq<i2L<6|@K@A`i{BrHr%g)u4JRv<6)bsGU4yZle1J8f+&c
zQSheg*gmW*X96jNfKUXPhb6(4kleMHPu3FyXU-t|;nnLue)B)ye7*g@ez)?&kAHe=
znyg|zTcZbmi7~B8Cug;Figz3JwOaFU5SO+3`c}2E)~tqqn;Yw!s~h#T%|<Al3~*dV
zd5~=r2~lZuKRE1O4sK?DjMBp4IojTC9UOF0swF7@9#t8L+%UX6#5>I~UGK1S4|`u=
zi+3)0RDnOq&bdxZotp@wQbb4`p-z&d%KMw{=gAZVa?Y*C=tNq7ph5yty@;Z#{h=HO
z@k6iz7b<ViOE^ev0Tgk@=}h7~B_n#xSC0aB6EEZY7@ZN}5U2e}1t;PIPBvTKbx=Ua
zVmBCG-h>+rOdYse9M;=zA9=hVv54kX2z4M%&E~97y2{Jx1b-q5f>>J?L1viXPKM14
z1RkeHfP#&;mn3k|C_!hvG+&0)prXVNJ&4I(_Das=HR1UHe;r+Dd}5&-BfeydEIlJ>
z_%#)~fd_I*4$MFf6sJT)XQXz(9r2~JB7eFi0vM8-^X-V<!gET#W3(i#CqS9sIu#Lv
z8*W#e5%8k|V+nH#chemjHpuNxu#{1u^^&!O_OVbQ#4*0CBzhumYD^vUAa+$(Du)P{
zDo=1rC}g)u6{~E+^+YytnB5hWT&fcFdLKfl@RHxQdI}h{@GuqcW8Fo)!s+vT#}nuj
zk)H*Mq^PoB&E%$yWTGI#{)^=S{}hS~yWqI7<pl^ARBMc>vvRQ|%crVHaWr^H&K#RR
zx%te?@l~Fop!9!t?|uHdd)Wg8HbB(%&9#lKdM)HE9L~gS@%DG*Nv|HMe{fyg@!LZs
z9ScQg9@RU(j{2Qmo3r1}a+mFHJf}(&IeuQsUB1ih!FN_^Y3xeYIzL0ftqi8KgN0PR
zl*s)<07K_M>G=En^_dmj9RZzSFM6F81qwiOqfxLCS?hYDxXP`>4%O0_GR`~gKFWL~
zlXI%jT9H!72%L#QLrMsD2BMN;p+x8W;ArpU;v8Ubd~&?EO>`-3ybE<w>H7%QLS90F
z@;@zoe0ZoRPUAOC$NxrN=d$|`YCYONQ9v?SigIn<jJkbsh?$odO3kJ9?VV%f0iOpR
z)oT}dlGj*JGZL^MvUMu-w%3nTd`ZIqN7%yq3AqJ>2$ls=umKXQc%5D^#2eAN#n;ii
zrPraL!d~M|`9cH7u(>0tiTGK$w&XrjprSHNw2}<3T>cPjjI(?o%rY<pWVxn#3qK5i
zfqOLSrQlojnvj#C%#$e*+S~B8S+o+-vVnr(7DX2#-_%FO`$?}uz!YDz?1OCi_ayTD
z{MlW9KuMkoBPo-~IRiyD!sNzU5ZnYZ+fM)<MeAtSPvnPKkeOyZ_)quCYn2ZS;jPRI
z=r!Lr5SZ7!$s}TUqWUlC^}*@qW{mp6>-G3LNCr5;NggAuwkfl}#ivlpjHN}Mc}hW^
z14Wc*x<CzysWb<b>}WOw#th%4*F!uSh2`mW$i!HP1FBQSMh0Uq)2b-smB(JMozj*R
z{!puI{rHDyT%(_G>tpFAgO_q1I9mA+3veIM7lqeRU*L-Gs|v5H_8Foeg$hVJ5xZ^f
zC+@~`$dM;nrn9N{>XQ7y0gVRBv)8#zbQ}47e!z|7mmDnB)*LR?w;Hvr#^%=ATFqJp
z*0$Db&Glw;V`I%LzHu(WPdYlxS|>+jqM#~Hj@|U_9e+@*cjvDs7jP^)hexu7EEQ>9
zF(u>PV;&8O@51Wrb2<UYj@nf^$`*MJsdH|LB?Us3-K}@(9mOjLXM4LaHIbSj%t9%T
zP>p`3JS~-G<NKROu`kC2w%4+$moP9o&_)RJ1D3=kf@)z6M7U$+-d(h}wFjn)2?s=;
zQ%#?rLA)j@z+S1!qs?#0Ky}VND|vGcu!bgnG}8!JpBa{eR;cU+By}-1R=blDU=o}2
z(fCnevb9}cWgv{rxyv={=k3RGwyzI`@<@#d>gG5>ml3&MFRh|*MLq_W+V92d!{w(9
zCeUy51%`poC8L6YHD`=X^>XejH1^9w_tRj0XNvgN>&h#n+<}2BWG2XlDjpNQ0Ob=3
zLC^GO)b~Tt@Ypf9&@YilserE_xC4WHJ@^6$qG%}|NYMc*MlpoGlgz&0U9^6Q(v0To
zQlz%Xg?PY=D6)fHVLd)L6gxA?&<f`rvfCQ5H&;isJF-WSw|NdrKj?rOr_y?0v@9e|
zL=KBbKKe#!AsM=1Z6cj*2pUt+F4_h!Zu-HyPM`tj<e`bZ>HHAbkL2}t3M#6tF6PVG
zY(IeRmJfhW!h!7!cG22=(g8~xf@y-essb8Dy$AerZofcPCs*kV95_K?hZ5LyMj&kC
zcR(X?M(HDxK^>4l217i~Xn?CJ34q%U;>rv6=I*KA{u_;Nfu9+Cxn}cCiL0#=EQoga
zG#3P#pwtTWh^{LU0HVb4eFUeTy*DC#N)lfZXYdI_V*7`hNsS0xSDP92<b<0G2&I@k
zE`hLoa_|4i6$LjGPJ9yz4)u;-xCNJEGUg-rU<00ZL?w;0#3dQe^l7B79cPysTbs28
zg@3D?8|&T=u#F%+mU#G9cMe9uDs^@Uaa6;*XA!u0%gjyY`$Onj*`Kq>>)?sAf}3DH
z_a_yxopg(+9!|BQ3rDEJJygkB)JKD(M4Z=?Kq#rBiX2-soY*a=L>wX(LEPE<HeLtN
zMcn2#<%}v2WzayWD%Xd7ILDolej|Q~-*a*N?eWRS<4%B-o#p;_BE*f4YFpUH`KS?f
zL{8~<RI4eqlv(DcDh|<g1lvyj?LD-UurUsFG?BGdV#g@q8~}h5u6W#(2l5@{$=-pp
zRNOSCUeW_vzXL6YL&6H25;`j<TQTlQh0$g`z%@hVh4@ZF3(yTz>9WcL_sBP#3KQQW
zR-m2k^iq5~NJ!BvE2BqanAvh&`c@s8QOP^I;esr(8QG7L=bRe0!He;*sNp9b=;a0w
zYh99`(fE#v4!jxv_?<)(m=`_8BcklE?EFAFqUer?fHznE71EUKxz!y~rwNp^1Z0R_
z2gI+Y7_en3zZblg-o%KOS3pNp!b_MFMCRja7!uX0e=DOte*w}8@(ZC~w0(PU9OWbD
z=yLgpN>Ia*?d)$LZ!?Iq!B8mJmB(rfV&IVTi5^-CzFZE}Iil{PE{ZX%eA<i^f9^hJ
zR+r(cO8Qhxgy?8DB(D;4hBO#=$cF-DnZlJqs2z}V;YbJxqFJ*<z&{Wl(eKLDSjv}h
z2WfHGC?GB)Z<!CGvrw62%&chk5St@DL$pE(YhzCMXKsv!7|K6@C&j{kJ9rG_`dct&
zHmrQ(MPsam>W@94S30yZpG{Y8MwcrV$`4k~|F%+ZZq@4b^?H4aFxwlLsB%usTL6<A
z&9&OvW(^3rg();{UDhP&IeG%4*dj7iD_#epj4Xu;T+sUf<3T>kfB(}`*%WMNG^QWy
zwma`QefrorG2xp`4~}V4`U`~)u;+U%dc@EFdT@MjPLV(-B)^0uF^5{wfKS{WD%|e0
zRq)}Z*n_u`LNAmEor;^m&>8G<6MbqTUAiqWBb85>1w0#6m7?XgXFD?r4Wb6M&7}zA
z@D-k-2(?BO;z=YXSGbH0p+*O`oeuVhyFF62#@7t%DY2JjG>Zkqpfa3d7VHp*WU`#;
zmc7y;g~}KK`FiZwPdbG0f(Vg0P3&8M2LJV+%uj$&(pl=q<!MDgsY5QCSV4Y!aMO=v
zOa&g-eG(u~{SJDf!5m}KIYz~Zt)yz%u|*&zX_n>coh~=K+7%R}E;iBhcGO}fzT*>=
zIJpfNJ-Q%iBL|aX(YTdM)l7^lNWPeNs@0S}i@|f?|B4)>Enn0lSHRMtSbim5e?qaZ
zOuij+3$F((AY?6@c4)=bMX~PoGG#24`S^JlJR*rPotw9a)|rTb>o&SG9=bTAd=2~s
zv?(643WepLZtZ%!3W}!-Yf77mMOHvD%Jdzy>Cluk0v?mcha?QX+#+b^pTu60d%@hs
z@b0T0zmlX_upY?H0zbk1)5DCq*e@FvwmK+=N*M2Nl>@Rj_%MnWB<D`ImJZpAB|j8t
zO5t?>pm3~R+$&v(os|x~_Cv7tq2e@{+1$k>Gm|6mq<m$U@?PS*a7b0W<wGEx!Iy<Y
zv*QuGVbO)Pp}jG{pNR!Z9QSmFueG2N`{te{0dOP$hA*Q8JRQ30S>PeMBND#E36gq(
zj+73<a41<ZxVoQxq6~zRW@>k0I;%|n+Nvhf;-20I0}!t<4?Pt}AP-cfk~^iS)?^}j
zClsGci^(GE<&k0l$}PI$F7c2T)}k9f5(s4()_ADE_NPOd<}fW$&+dcFEx2(h1#n;1
zYFi@FJQy$*C&a$O>%qc^%;~)owi>ARngzR23OR~?_V>x9>YK(C{_!E*guI%FI?0?<
zD1Q)#VpSYsQLJUJH!#>z;bAL9zoMdQV&j;&S@~RFF*ix%I~}aZnbR0FSy|nn6?m&g
zJkVUPZ+Y|2HeB1)y-bm+75HDOZN1*RbGAc)#!<HXh5wfJhKld;N*_Rmbi32jJ~RG&
zxnEtT5xTa@|ER_tH%MV)*$<M`zXGHyB*@yh1JH{S%YjxoJWwsV(#vvt1(sPLIWfzH
z-;H@AJZg51EF7x%j#TmC*%7JYyckxlZ%@ZC=vJbQRi{nplSJQwJz&fg?yP+50oJQG
zDAcW3Y^REq^T4TePL(E@8@xMLn4Nji)~nfTAlH5M!px28ZNaA59vJ@qap{;K4qWT0
zTlvCSHF#LebnjCq_*soB!RK2-IEDnWkKy5nT(Dv(9lIi!a8K*RijFM;L>&u2?sAS8
z-d8Va#aldft9b<6hRXGXU@d9-+Wd#0UOWQ(7zA7X(PUn(yl{*Q@gA_kF==pL(Sq)J
z+j?HXhE}#c=v&>e?6JlD{+)b@YUau1ksb?KpJA^Pszy)~9IKMe!%4h25x0&27%YHa
zai0>4A61N#KXVV`{eO)dHhZF=N}jS|U4(e}g7;K_M9#3vBpMHqg7m0eH5SH1i3&Gn
zRs$Q>waPeBhGGF^sZ>l&Bbxfn(asxN>}QU>{`&)&n)s!EZl4^p&M{$lIY8usRgYOi
zcWO@m3ThZ6Q7IWV`UW&559wS{?ji$g9ZEqgUV2Mz@(KGMZ9Uq;&vxw&7W~YBUccm_
zZsFU=+V|S`bNX`;e|dH2h0p?$JCXimE)5ZZlFo}3^{$6FhC&1PEN2>6frvuyQ2^x@
z*9>#Xk$4RH+J7`Ip!c8~0%jPJ$1l#Z*n<&#>c&z*8TFJuA$s+IvT!Vr=$uD2BN`|c
zA8~geUSQG<lwtB8eO3y3ge!{lmKry_Hry=HTNVH(z&Z9qRsa=?oml?QqX`^vp$LNn
z=2HsbtAG2qYRib1D)~gQeE;zuU)49)8|%$AVx-1uZEMZDr?yt>5JGDk_<^<N#-=w?
z?Wp%r4VXn6Z;q$h9^Bg>>rJa9^m!)`BIb6maKuRiGJ}Tp`B@m4km5%wy!s_T(mi!e
zdNyz$Jf-^n&YpF1m!cV2c(Id~2gIFFRO<Atym(}AJjqG7^&TY71#=b{u!N!ET15cs
zOp8~nk?u*vf-SDNEjAJIV$cBerNjF5K<J1`QN1A#8DX|A1|{h&`)zH>_;_!mHq}Z6
zY{&#;tJ;fj_;;DN9f<C^<%yEq$ApHva^ueHV7);em}(oK5`zE>eK42cWK_j|cAKxn
zYGq6i0B17K0Xm!VR>j<8H9QjdV2c8-K?jk0KPYpq6($`}1<C86Oq{XD)z5(jN~Cwd
z`HHuqI_(^u9;;Nw0!3LRES;oXw+6R^POGTLvi@ePX4EUOp29ZPdFqXSJ~IX*^hs=n
zKCj>dAs_S|gD)%yU!Cx^W$)mKSl({G!W5X$m*NYkz?f<;KCk2-?Y$C)vc;0@G7O`9
zFcc1z4<b*_^2EySxC$gYlhtD3jo(uOHXVdnu_vikkf#R$TIrw%DYAnqukswTYBN&8
zQ0p?tj$u444s=;JnGkpw^ovy%vFL(_5|eVANwQN*tfk>$=o!guq9*ZnbPlnqSb`PC
z7Ii<lM;2iaZL&L+mUEb(3d4*dAc@s&+)4epgN@Ilsk&6l1)-kHZBzT)UXv_+Awi-_
zaVUA&NsmH3mZyC+3`~f@8wlYO!vU@I`#WVWUNJTB4VmQ6uk)tTqLdj=-bL1~2P=v)
zy*kT|8gt&QTmma@22~<XW0#~b2{~5*5Y9VEf>#_?TjgdUhq-h4uGi}C4j8e}q<(yz
z7RQa%+Q!D}R+x8Y^J_W+&5e%cMqSVav)A7H_QD<voRLZ!jm-W1=S5>m-Vno#HLbQu
zZ{!b+M|mkI4J{ABbhdY#x;g>B?elNnACev9$@V^BYv5J|iQDI}L1^vegiaXVoZMaH
zRkzuZh2CO1L*-H8^N4zRyfMXZs3Jipwa?#PqJ?H2aZaKPtPBE5&n1gTEA-Ikcl(@Y
z+=SG{Wtnm@>qLnW5YA8K$?oM7M;^lJ<eo*hNct>2CvL&Q;%JV{vx2K-{4WQ{3|Nvs
zmAWoNLci#_iim)gLFgE#!eju(++E8=87ve|Rq$B=i(Um{2U!{8(=nwBb$-#pcJD^j
zdr#ine_n}4r87)d9FM9Xi<MD-Y_YjrJZ0dN{&5vCDH(?8SXCxG&e%%X7@;KfW|kbe
zn;xW^6{iz>e}>GDB_TR$BN&8L5F7a)$x-mnCEpQELX?0j4ZM4Fm>O+?v20wKz@?Ch
zj6eAh7(DV6G$Y-x-opKocb>a>n}ws{DhSO0dk}XjXX|lEcIykoPq>s=z<_Nl(Lbf~
z4H**J&?z*F6kC)CJYSv}P}UErvjQ4-IDs0P(Whx~2@CsKD;r!~xU%T@Ol=d1Q#zV3
zK-rZXb?=_xZ6de|MImv~L)~id5mn7svtPuk-PV%lD1q5@H1{XSa6GDfshI*RDVbHJ
zFTe>hIp3rn-*iqX6>V`LzZ;ZRR|W(ZMPWXkgpBce93b;-#zwA2h+6#wfZB%4>6D5^
z`E9vmFFOl>+;rX*OFC45+K#;ut$wNx^o*?s+(JOA3(POglW&fT(%>mq=$Y00hHrd#
zaGuep!h{v6fO#CGjs^oR)<S|PF)TV|8S+RNhr1;vqy|2>cy~($_tIGOFLyB)%i>J$
z<zPt0Zm!nWo2%>0^IhLsr@+Og7e=)!3C%aH(+l&Q7+f4g;+B;~#Tj+1APWqwmKju<
z#;+*FN*{b3Lcn9NXiU3NUqXkFVIADT!3kDiMY-n(o|kt`%6I%#g(o?oplr7#N<p(b
zH?s-Jf3Kz*(4k{+nGidIRTho;6wYKAn@r(FqzkN#z533Qq%bqGrh4ecKLj`b90gGp
zy#Um)87jh5!<>p_9zAo~$up-jYhJd_9CC{|0GCeWWmsDxfV#H|s$c>GpYb$pYLy1V
z-Yz^i#IJD@GM8Y_o*`;DgW$xR76y;WwsSZ>Q3PESI@1%BfDP6#zxn71D03T)X{!G`
zFrFbErW%X!8FTXTfqvkERqP|rmscjo-x4c^?Tx<@57YebQ1O5#_%?H69-J=80H-62
z479{VnWI!huP5XpVLYfZJqz|cav{-lTRMOx3l=RM4uJ#9s`xJ+Hnrny%$1Ts9L6z9
zAF-@g$V=69ovv~+MAjRn7JGSQ>9stkFRrzUWFI{4!7>$Uzf;J<VY5}?c2yjshKSrX
z$b2P0Rz93ed&y-4iUfv)t5r7$L|y*)5pdmvH$b^53`rjje|g-_7GZG70;qt_U3dBL
z@%+{cC*ol*f%{H&tcAKpyPrFGlkmb}#~5z!(qWeJj*5W*;nLxS9+0XTZBJws-3P5#
zR+m`HpFH&xauU=i371j^@j$JoClUqhi{vNQj!s$kkm@E@7)1TG$Vv75ytQexc9`zD
z#ly%*{s2<Ls(2<R*cDx&B~RF$=zg^-1y7_1UNB(caEN=%cSL05nAP%=8jL+3OYfZ8
zaSgQc1!#%b=~m4AG5r>YWRHvvxs)R;IP_vl%iM3_Dg&ZYz+^TV&WNC2lo>aTcL*Vq
z#<VChW*}hp!}9FM*M)3>QtK&WKvun3Ut4X|Hyi6)^rY3B-sZ24m5ufF+E#tFNq1Up
zqv0*HAMU;zZT80Be%ajF`PA?KqkBAUf4psP9t6fznQ7rqik~fzJ?lQSSsbnT4mFDM
z27->v*)+TuxN|4@<s}Nryz-^;cfgl(PI6REqHwPi`<T>_?8}c^S)MWHNX1*HdmQ`(
z1ZCw6*uz-qh*!yIJon&<OAaLfayT^361Utj=r$0ThGX_ymauOtN9`gIt0J*cDR9wH
z+%_d&aFEek@_iQ6+a;Erd~i_!W2*#A-qO%%fi;ibKNc_>P#oo5I>C8C+AMf42Ku;U
za@+@8m^F|o#eF$C*6#$D<tDbsAAPWpDS9deIQ=QZ{sL28JdRyqH1))SoZ@lRdpei|
z*Ji;FnRHnf%E06d;BQiW_}z@T=aiUvoJLp_<SKepn<h?B5<`_-#dKTBb*XW#Vauaj
zBeSc<SZW(Os3Iq3O-6dy<N=Fntx(mWO?a-Nnnq^^nIY~ZQ=lSn2O%@0cCL~vJS1Kz
zBC-8ew9sao#il+>KM{u0zP5uhaN9pY<Ee{Qe<m})3%QSN96WS|66uO{{_rXtmkdp=
zUa3@D1O1;EUQfLT%WGmw9F=02CBLCIS79}gP8cDd&c+DEso78igBVkVT$u6IX!ix{
zTQEtE$Yp04VpKSe1H@}%>J-ZsjuS)DxHaqAaV!GY2M$mNr)v8oth%YtG5a`Mq2iNR
zWW@>th&)yJQ>oP}wZ?gUZM)Xow(6g4h91&;vkL6iT+`K6Xz+C?a1AjvI*S^R^H}*A
z3!{xa_QJ~!u8N#^fGRoQjq*p+vlup{c8Dztz}fh;Y+sFG2BiHprm4_tQ7|||(9jK_
zBUl{JmclN0hdXjRqW`_}*|-YlpMf#z@N#ySS%ggVOmD!Lr#Eurm9s7)9k6P8fLKm<
z2PwAT*-$v3Ogl~z%YeRk5uWrGyYOCplhbV3uq>u``Ez(9u7@kASl94I(c3xfizdJ^
zZy1y-;}G8v>J^O)9~E&g7wq)5<~rQmRImC+DhZFj+GCR1tP)}aeKfwox5|M!5b~*r
z4t+xTa9;BmKVi5mQ<+PsX^A<yL_I|?@YK{87|0tF9OdxXBOROouc+3d*WfZ&m;sr?
z7Cj_o?ge9QmX?#I$~*E7&Ym}demR~^n#>zk(5@C{2?9xcC&_rjia+xRDgd7NhPfg>
zkt#Rh8&4L|-eB~mQh4D@+%8%0uc9ZS8AIqOtu0CsNk5pArj!8VNfj@AluEw5a7mrX
zzyyq4*>Ik4%ecM=0CD*ZEb0QcvYmPDyeF^EvHtmJmh_NaYoqmcJrGu-?G=&ePwzY6
zJ8we3{vhZfUz5zO22JOcj5*cfk#pWenmCw@hQ6B{s~E?aU73S(i;h&p5*Ev5r{6#n
zHN!S2XDY$@um2R7#HHziZLMq*hwM_Gfu?~%k)}r0fmzJ6>)9l)XjYBX!JR2NzZlY4
z>K@RXP){tF7YOf3h$x=LbFjq^S;~ry*r&e1CTDS}J`z-^2d0^8a*w?s;DTX)#D+~(
z5C#!aZ1Vo<2P^IhLR4@Dq3Y}D8%Aa)sf)-Pmd0*U5^t+Pgt*Pz<g4w6;kKo>wy8hg
zW>1|^ii+>^(a0vmCZqM{+8V_%YYjM>^>tFCo3(YHy|B^PSR;YDUZ<6Fwb@wPs;#bi
z<F;{}-#Mq69kasi2<?r9KY?%8ioU^@8S>PxMU8p-RGc`8LV9ujzOosV_mXm+>~~Te
zrTCrvrZ}8>F(ZV@IGBl3;E<pq<rt%>g=EgjqZbTF*BF}+{KwE=RwcmH(BC6|ffPJj
z-0-u65C~CT9jT%w+LCCWq&<i1k2L^IR;;ot_D(qG<L`*~k!5oL<?r;F>uvp**&?t5
z7_gi^0f-M33_s5{)VZHxqpV<5+Lc||O!T%m$sq&^WTlcl+yO_#PI`D?eg6IG)j0MC
zJ#lDohcJrnxV-RV1nfgoq=Y3}#-;^U<xc4DwybG%UD!F8`4RI~NBy~THq_NDGneU)
zZ?i%Ls17L`p{rKeK{Nm!l-jRCPp`--LQhm^?2%2Jt!NdC(V+-X=S8E`1g{mMYJsEp
zPK3&Naqa?(BP0XbQ2d&|6SfdY4V~7EAj3dG9-vnj5d4FjnARbuxjc%nO8!>+K%z{2
zsjy_xTLsAzz6+g6rpm~9DIq%KiGoLfr2IJB5m+x+g%Y|@NTS!l^mzh_mPoM-##X!z
zZU*79*Jveh*;<F(x@#tu=QvgG=p3cq(X^#g3di2V;vJe<d?ul6>AB~4n&`DWi|nNZ
z#wBR|(i$XtZ&*=c9Os3ncZ>kT223fz)Ba3<@SRPdAwN5lY9>~57s$q`<--AFGQR$f
zkZiK;{)b>T4*(Noqin4CnVlI(*@upTXuhqfR)q%9^yYlZq6LCy@f2TfGA;o;azvq8
zKy^oCjRhb0eY1o7q?$8$$bvo+vK5;UN;dzuzyBZ0|E!(%D%F*3+hy;EAOClU{q+7X
zDx-vH)bytL9^@8{U_iq9ORMXv8(SNjn+)IBs&CXATWj@o8UwV)iMl(%Q~ZWc|3EHP
z_I0qE)po-~E*d+@sH$F{PA4YRoNz#opVDf+95GVAH_L`B@0=d&TOpI8Wy^_im&uM=
zWn(Pp&mXX222t>usTDJP()v(<&0F8Y{u77a%@^4J-@O>;{Lb6|;*6_`Mbeef%dpVa
zzHJ^4f{lHth&NPL^-K`lv(i}E?!b8m(kwgpPB}l-;(MoyvmU0gOhi{hXz&No_E2&@
zXPz~tSh?uR{iLFSzu|(-fLT$K$CzjUl#jKOGoNxfjMV|HNNt3mw9@kQ!=5Na^Y@}G
z?n>B4rij=Dgb=Sfc}BfOFa!Lv(N-X*l$VZ%yufGZPi{A5ZS`7H1TPUeswx-Xf)LPD
zc(y$%y@hCsNU91)-IZB>W24~tC1325q$1vU8487*f#6qX_JxQ^UQ-)EnDZOS$4a^B
zUbamJ+~LLtVSpvDC}zrYDkaP+@$xboG)Qj}a)PVvhn8s&WYm@T7Rb*62d^<TWiC}P
zx_63Y9EzQkeNEa9ofe#&j|i00rd0*Lk3M~AiK@y|rr9)(diJD)aE38IVHUjze)ZN1
zvQc;ok6RL(+>6CKbaEYTDSrzaMe>TUC5n(4^z8e+<Ad)P>pmxxbFxS>QYOHme_rI1
z-YUh%UP~i`DC~be31vx)`2+9Aly*4)iay4w^tc=ud1`wKP}<!(zC=<{Vxy-Iw~C^Z
zn<)?pDmP<>=yPxR__Vx)DcL#;%?({dvWgW`)T3Ko%qoP2T#RnIFaOkk{ik1PDZl|q
zn8A*j$$Y>@;NhcyMdl6j@QJtF50+r0mLp^XO=SGh<q2zBK^dD^{KvLjVZwp@<oWgB
zqo#Y2`3v)Gw5*`4V%C8}ZWyIv76<w0&m3%=k)|rRZVRhagdYKP-fWy?-E<51@l#P`
zQsCv>N+DYyH7jKdu&KC9%e*M3ffEBxP_Tm`{YpFTS$^Aki3I8xZZgfZ-DXa>N&b1*
zz*5a0l0jSXETmUcsll9ha0U3SD6hU*-`v{VYBH_Axwg5s-rQJ&g!5?*TeYp`R&%3P
z-`Hp{<)MMAW>S_9c6i<e`;5%@qc7~8W492Xggv*)<f_s*f{?!Jya(_LR3FNk_Niqs
zgHrOsw-JWu!O?I$b>r68^aW*zD29b^v=Mdq;SU$YaD*gkBe=mA!%E{Y*}RVT=;dpD
zpcDaJA%||#ByT#@z9ZgCzBdL<<F0T|@<fCFKP|!a#uza`_gK=fJnPsrqmE%zGZs9E
zVa*>}%BsuzNod_PTa+kZVMTjL5D?94BLZG@qEUsXqF68tPOaI(gg`LQ0+&KTm2~RI
z0CcIm)6rVd#m8I+mufHo1Av2e@sFXdLJ!r|KAVqs4PG)YlE)^xk4T=1ST7X62CL%W
zjT%^IPfc&#K9KSD{k41`-}A~GK!80e3!0J%q43KALg*Wmq)TQT*6Ka$2Kzv4rK^l_
zRiU6Z#%nQqP{ar_K2;bW_FPl9L-6VTFl`n$Us;4L(G3Ns?bTNct{W?$D$20g)ACOW
zQsU==38!EnH=2>tOuYz@3Q>Oiz4&Q)Ix+8(l)>}`A8qyddB}LgsHQM8!4&2hMzlbL
zTjMv9Mmt~(1rt!S0f%8|nhAt8vShD-5w9Ut<yPsL;V)cOFbMnNv`g<<Ev@w*oAE<+
zUI-tvS4CePlXS@5Xa=9~+<S4-a&%!<j})tILSt$kdMZ4L$wZf>WWD>;o1weri`ej2
z{6%#0N5Gi2y7`pE8e`G{y5YU;?7;FO;)IMk6mm%KeGAs&(dkXudwVZB=Da5ZT;Y33
zC07r-YjE8sN1A^~@3De;`|7stP>7KGA`bmO{|^_(Eb8$e|2Sh~u>035jZ#A2WXOz{
zrQ6IcO2fZrck}udW8p5jOJB4CdQoE%cVUe%)+$)^ezHp#Hm|71k1e$3fjlUU>S+sF
z74dtWDIK}GUR)IZA%>q#njxASY$U$9xz3oOI<9MNgR8R9_RK_s@YEig7Ni70BbLD#
z^x3@XO;&4U>^+$&G|OW0Dce6ffBDU$c6_tKCoAPo^5!v5Ep&6U<my2<ARV9~I{2nj
zQ+K_sNHjo=vtVQKOQ#2?d$B@}J1p$+pf^9B0Z6SrFOb?ov4V|x=bHj+$s&;qWE|?)
zUjp}Ji%ERxoUtYsc_xv4yQbNpjb=Zyj-eT5$%b_xEBJ_LSc17Bi7}d3X*1?UfJjYs
zrvEfJ1UJ(i6gr|5LAa;&FcXiFr%e{$oc5YO^QO1Ly5)^Y$r;R~O+BZMRAzr!+q7Ge
zqk<6c%=kzMYEeuy5h{@zu*<DAbdr~$IkxBdc4iU5AW$4MyrNIDlpcJg1vYE-`Wbg)
zt8Z<D?r)S!EZPs@O@bZ08M(>{6Ei+(yWlY!5>}`46hwNWZNcTlPb$Jhg<+%26B$>Y
zXhvN{7_Y&mD27dylq)j124X+iBfDjeetf(oZ^aVB6y}kpvz$_EewYeAa`VVB6I6tc
zR~9Qfl@nq^9=@8MbC*lx2-%Osqc@MoU-k}ib)x{ih1-081e9H<JdN`<dkB(XBF@;t
zFmLBocn;)I`V%|o0bQcPi-SjeE(+g=@<3^nV#qw(6(s~2!q$7n3w_W}AYN=zq819?
z?1lk}$su^*wJBkOi^;NUK8aQ@-g3$8pLqUf!6#^gWPT-(R;3U+8F$J?LK&!|JPm0`
zZvqu~4etWLj`I=oH*qi&ff^GBS)hUKaj+t`hIY3jK26vJ!Epq;Tu7JA$ODK~P(4`m
zqUmeR+n5bf?$6y#{wDPxL&t!+SL;+wZ^pckRh4r^*57Q*XrQ19u~&gM9U_Bz$-}`@
z<~=x)KSQwgK!Wt``(+1-;c@1{L$YAcJHWuSm<MDN#hZ`JAlAPi0O>UjZ_aMu1-o`k
zvL2()F4pcJ?actqBH5a-g{-IX!AeG0v6b<*9;%tbsaL=ff8`GF6m!!1m;^D*S<?P=
zt|5gMdaE&mV7z}UI%R&sf}a%2x>pYF*Lu0guODC!fT^=*-b5jfMb0k&R4m*+dG}|w
zl!m1hG5h{t@67f2rI1#k>57$ot@Lk4G*>8&?UR4#2s<|#8><_PS6^#3S1HP7HVn;>
zB>8-X%>K#AJ{w8xoSq&Yv~0JUPAf6OY%XOxP`|(+dl<T-cK#HD3g!49dHLV7llR65
z5%5T%%5Ccx?K2RqIB?1t3}9G}4Leikv%Cv$`P{n=-u;gK-_-OTyRHh~d=VdB&L)KH
z_P;LA{<XM|49enrOOVCCr;r@mWaZr9@x`2>)XmJgbNQ+XM(B-Hup&IYk5MQvN+lA;
z(^>rQO<#3)C=Y7H!_i+V5u`NiI(Ywn(M<=Ch@UTppny3a;jB6#3qsKsX5}+dRF(6n
z6{s};Nk#A>AIkO8BNQvC(`2P5Il~To0w^-f74*>18k5jeYY~clL;qq$F9ak=7$%n7
z;K+OLEc(X90TZ-mO&|<d5jsD#a<-DVfrvs3w=YiKDt7#gCcS$Kb%9!5&JjI9Dg!J=
zdrR?M++DdE#;!EJ8w0>lVHOG?*}>QCKEL&}uESk#A)6cBu6^@M;hWv=YoA#tgX=pH
zkz>~2R{)^G*AO<f1j0mR6+G$T*+nu>JbFX_LMq8orgyy^MDEen%F7{=8$Cq0LxALC
zj6#U?6HtvUgK#)j)fYjBQcTIgNTrE6Z3e60pG<1*^7L+8PR{XMQ~GS0j}wZJ%7uK-
zd11y(Kve-USQTeh5OjGxKaTDwfn}0!?P?*NwcP)jl~lQ-=WtRDmC?R(Uyu>@?la`D
zo#VEgxPz~?eGgO5g+|>y3@*dgiuM#yWOF&;m|OPU_Kx<N%k?t^9c<|!Af#{xjj$CW
zm>}6O==0VR1z?wC25cOW0i>#^{X{j_>#OUV8lk_@VEorQHGXtk!Xk$4$=B95o2wLS
zY_8Wf`G0lx)Yw|z+}aBJ9v_6XMmH}?4*Oo4yF3nR@<M=hdggn5zu*8AhY?R@(2;5>
zw4pw;ypTD(jeURuru+FA!DaXF5nJjhA$q1FV{7<Vs#}>ZZJ;Csqr_PiE8pJR|Bk0o
z95ly}06JP&$@9au-r@qN9*7w|%_?H6QE-&RvcwI>8Zs{(3X13!J<?iSXyBEKoPoYc
z2A$ww=+;a8GqdZ#d8it{MeL{-eB7nn4ZD*6LhgA6$EJc%k@!r~kS07(fEkOYlMx9H
zS1cVQ5P=O%MI*7oTRz1);?+47hG6?>=*1b|SGPm~5#A`9O-*ZIr!=fAr8L4i(B7gG
zf_#$!f*HMz!CS&#Q4g2lL`1{EfpK*Rxpw2uUirmn-M+f{iXxDg-=3G=#y`?MSNQbc
z=ii?G{M+{Bzzj>K8cANTu$F);$9Yicgi-->s`f9sji*k9uwn3}Oe2Qma$E@}g{3x8
zA>Pc!4yxcWFdTeos3k$9MYxAqz9H=8?S;5aow{06nQ#s9Mmj6HSi3V88GxE5qNrIB
zu7LxL4YLgzvA_hZzJ(Nm?}M}o#9PV*<=k8Kxwi>ylXsy>=OFo)0y`)D4*4X}$m*7i
zue00aBZAK9`q5-559F9?F0=y4XX1F2Y0~aU^te5yx1WouxZ#Ob=X`>FOX6Or5cF@3
zHL5mmi-pS@XcUn6J^|0!a|=lbnG4~8${>X1RF6T4Qz-Y4(N(x_*DWY3EeTP8#L@TS
zkkdu;(K~^huYBIK#T$esNM@;a;44c&rFKhYpU6VR#{S;)zOmVC)F}jMQU%WctFf(8
zbF<mp+MqgQ)hfYhm)5fgKusQpxZbJ*WM445??tJ_?h7Z&tuWJiFM0p`{DgW9!2qA`
z8VoJAn;~cLW8v<#Z5J|!H>Z@uR!6s=zd!2|r$2pP+o$P5vOk*5`*(2bzhhHogMSw-
z^^LJ;Inx!i^g>(Y^xsi__jB)`LAHkXl@K&el+Xm9EOW&>IQrlj$ds`v2KA-1pt6he
z);WKY_2R!qjb!g*osE2*=n@;}R8N`6)1+7}w*LSU{ONh~?s*;Eb~4}r#Cy#BCU~0V
zpK?HtW05`-{EPBRF-K%Si<Wq8a-LfoGM<MgXVXYzT2wYy*!AF5u<_C4mB=lD{Ya+y
zAQeCpIfL<#K?<K@%|^2F^y*`ligvtPGSpAsFWdR2@0Y#E)Awike%B=;bIDP@T%ufV
zx_1ua(<(a)>u!?yz_V*XO-gL7vrRoZ2s8DSR7l^@Ai~07-hp_=u7$##$cM#IFAAU@
znC8n?b5dWKYLBYSy#v_Q3`t*cGEC6`8hDo+vx4e^2Cy&3!LwnScb+TJvv^M}AM6eU
zUZj!5E1F4XaQXc9Wq#~smKv$|USo|W)>LVRB5<WoOZeEN$27+`li_#Os>=06yB#|L
z02rc-fshm)7IuAbBFxP<PDwCJW;uO+_LTI3)ymz*Gw*B8`p<nHmHwQX|Md)Fr@mBF
z6%SMfYAyl=+~}1?mn*bQi7e~7waX^lSMj9GkVXp#uk)}><lNO-yo=2OOS#`txb94V
z1tAwtD^$)tTAzmpDai|qfZyjbsqYd`hrO3?S|rH|JC8bF7C4Zz;(j0wFH7%RKHAGv
zZ&(eux!WgUP{KxTAA`XSR9r+v`6{`4d)awDLxN4OdYg^LF#-(_=I=)>=6f-K*qA^Z
zY=^v8d>;)<!z<kW`sa%z-JqNs<3WWoCk2*pH+F-naP|eN<3DSgB*`d`uaT@`@3M_%
zqtV=4TlEoQ8}-^+6H<*TdG<Z4vE|X`M!nu>HsIK70}ote>%-wL(8XqYEB2(;SS?0g
zGSN35dT?Cwp{DnyBREk``2KzSZ<sHc5z7IUdnU_0q9iu7$?t82#+s11C{7@#B0xm=
zNv2GaV!`8+M6{uh{nimnU!3e^*Qe1ZO0ZgFWt5h?8FnNbk=e*r5z|Dw(Y0#Tk(Sd!
zMV|UXKOq%Sqb=&tOgq$MzlYU=q7y&@qvf5R;S$dP#s)76!w}eJVahOjVX-h4ffY1I
zZ*aulaa-hde~a}NVGLSc2_=q9Hr(x%ECq;3Ba(3jhPef&)rZp_+@AwF%LQr54*#4>
zHJ`9>g7*o8vI4X{HJDMhp^YtAXccAJ(#yQiL#l7s&RQx)J|KP8N=6HrGxO^wM724S
zlaWR8>g9J7h3W*Q*OVlCutbF5Rw+?tEUiY7xTXb2V#&STy|d(b@vYwU_$mTy+j3-<
zPOy7M)$K7_o|(#5-6jnqS1p;j*$<%`_{a2zaguqgWYc$Tqdn?x<Y~PrM+trHBdiAo
zc(bZ69+z;c@7WxgxN|Z0%5{G=%i8YnlyDo}Xf~uPoO-dzQV@~(mLzvw_A>AKM17@|
z>6HwzUeW&Zj`i=xst_+?aezU4=bXBd7<J_?Tz@_1!(06L?#QOg2$#rwcyU8?@<zEl
z<Ao9m@Dl>{7l>!!jC6w2flvKdI>G8npZkgE=pjo=`+hyCvaoirfK~$@vlf-)s>8v>
z(YSd@X6~t7?R@rlY7=uB8W*fVw<T|!e!_Y{fA$0x<+*RLA2cU!`i9bo{?Yu0(8S6K
zv6Vz{jm~@tAHmR-vAoOWKC@D4K=A-4hsT0#QkGP<PAX(Y8zwz7#{_3Dg9dZzIn;IH
zi%YPuWI{<^@cIe%wyg*8+rc9<br33Ite8o&?r~b{D1@>qD!{C&=(t9)23#Hx1h=I2
zJKC40Uc{jH{Dd(%&ycCawThD9N8C~r%h`+m*?gR2l9&&pfEx06Z|1P0nn1v+L<F$>
zQ$EWs2EN4@yh`}Hy0+HXfH74&L~X6c##&n(T5r^8hxQ3X&t<Jl^6dG_+ItD*9>t5(
z0pkwth>{ixDSf!-t}~UL1Gbm6VT0wNLl<ZJ_yUXw;Dx&gdl*Q7<h1VdK-gSs?l;@&
zwU9X!X^bcdqqMl+NEh&2_40JW=H5S>Rnm79$;N1oLuM&7DyYz7?hUT?BrIGtS`)+h
zKU5Z*qy`f7wj0{5+-?YwbAP$$d9tX80^He}na4_NS{u(bgvBB6XRQwan9%cP3P#=F
z)!=jjII|iQ?PnVu?fc2JjbI5rsbsGJzJnt*psuBh^@`T@U|QjRkjD|L(*(<Ge&_Y*
z?|Ag+N((ues-BO!qmWB$$nfv5r<VKB$e~z=MRcZKj&eIv(>8GhBRomTc^TvibDfJR
zjwiY8m_gG`vc0hHiY4$N92Ki4|JNKp!$#q35CqLAd`XpwvVcC&H2V8kS9qzdws@@h
zWUv<;rZprHvjLu>w|Wl)d~#JNCWwtIv*aqC@kUO!r!$Ux6QrMWH(r(U%o*-)s=%!G
zari`H2X(y#cOfH!={N4fHbmC}1UtEdLe-rIuGByo9Ervq3NbL3Zp}nKlFd}9J)%da
zx-5O<Q8nJ)tcPKbKbft3F-N65l>%MKZP6r#3S44T#UiCJ4cw<uuYn)1oC|vfM2pP_
zct~VHz)*p`QdHez;6$Y2f;7jnm6Umm!4fV2)TmM!1Y9>tAkB7L1g&_qB-zn^9Eyll
zK<nfXmF?@Rq@h+RfUh;!1)8$L4FVxrim8dWvchK?xvE?7|JVhQ(G{DUoAnJgkcFsZ
z-sl>Y3ahIa?6uWZc0%;QJKC1(;Fzsu*!S>-jMNL2@lg+C-Se=;_{D{o#f0E_j?PZU
zrW#c3KZ4otjczy%FwVsZ1Q;jmXptCJXax<W^t7L5j`N!ELB&_e^&vp?C&=`M%r0p#
zpI0GQD@xsY#`ub#jRgq(FFGh`*V9&*=cBC*Vnrdw{HilKBo(6(@o}L66;ZME==m!y
zmYFNMn2^||zm9etOk+w;kRhd>fpCpj<Ql}>m6RxJ7v_k@1^)o2N`X$Sr!y<&<`WzN
zAr~W%g_=Jn=`JTj_2@>M2H>#PzU5^e0;AK4T_|VoTa=_WH&_%gcl`>QN-fOHa)AhT
zfrY{RVJgvQwdzEX{z|&_750uca~a6o8_y!ep^-o894+_`RDj!7o345@uYF@L!Qoi0
z$5&yDrO!bF@s;-58Y9S($}AamCwaNkB4FINvr{7rg!sKtmxt^5`Cv!$gp6>S&U27%
zz&^op#dbWwn;Uf+WDhu;(3zjCU<r(xKZ{a_6lw~^Tq9Z3#xG~83MKO%9{xegXpdlm
z;Mk!)AFJAf1yZDbKe%~(!X*_OCY(;PQ!JK(?>2D@raG>(@+qRJSa~hx^Bv)C#|rHk
zv7wgFNajhdXNNqOwruw8!7fvJvc2iFr2;+v+$Ae8e7pQpVbHPdXgvfIe7d<EPwsxA
zG<g2`;mhMcn$2cyQ#-b9f-adlubezquCczp(V!96rtN6Uz*f$KxGG6fK!OOD84@_=
zST<p=?e-RSM?BbB<BGNR2%X0UQL&O%9JPr*NFdF!qrt8HeXdBxEE3Xf9_e30PKj?(
z#gYHRfGJJl`PV>^dqtyutIG*#^dic~%2T1B{RIoG6I*Lqn!Z52_#DdIyaw{7%n6x&
z4WKkqP!4HiZ}K!rB##KwX&#GELt)i{7Ln`_fbe-co##>nfZf`lp$lG14<dRtKc|2R
z_D<gOri(oiDijnKKDLgQNQ}T=DBQAz*S&Pz9B6}ZlvHn-%42&()v>6>-Vxa%^;rua
z5^YdTpk1Sca={j1+Y3CG(Qp2q_mbe|-4*i_RzYZ1pX{=}@KKRNVDtG+vJmX5**B(8
z(*{Y-!C^;2#42j=I^M*U{rTfLiyaG;JZF)ke6MUQP#}f8!@<l(sIoU@G){$#aGsm^
zMPfpqI<$?)pMFoYaY`Dn*2T@#)CUK}p7(5)jGRZt(aIGJA&-*;>|HN;st^$szsJv!
zkrmzdZhrIW9Z?W-3exv@P9!8e@D6lm#h$iw&NF!n!9WGs>6~DwBSj~zjD|d&;{{(i
zGlD$Fl#92Sp*3o?;W4`av0EItPQf17ZHYy??|$(D4)1w#J7YTr1Y&DGQk0L-4fRJH
z3M|F3dY<KeWf|+N86^6w0b`-<;uK9AJW-7H+wH^84g6aybBL{IZo*B55!J+1tEMUy
zxU&NpHL&vDk(jfJ{dsAx$VLMo&}0j3M$(h<UR7C?5ajAA)6h1V^{6q#EuVoX_!5kw
zDUQ2ap)xUYHXF^ws}q*JBfaWaAw_@=Tuh!wVzo5#!*^+8Vuvss!TxWHY&;PZUl!H2
z5WEKLu1AFNu=)GR@`g!OH;>qT{wt=R?{1VH0kG#tA{y4n?HB401lwJYb3;u8<n%p$
z3pzB^wwv}B>4QKUBziXimtQ)`o>=juqCAuse?N)gks4WoNsE<ArIWmIlHR7-{L&Z+
z<DwLhT@T<&U9h=IY$IyLz|HPZ6IG}i(d0wGipp@!FP6IZmDk`WV@8R3>Jd{9mp_v%
zvhj%98C#|+b!4x^RLRN*1|tvUbujf7^r>UQWu3jRd?K88tLcW8#~@n|WB3LMyqVw9
ze}ki2+`&T?4MxTZ<XO;fNH5~R@6>HlEuDmHu`&w($|tqF5zIOZG|MK801qb>CW-Mw
zBz?&Q4pabUU?SO^n5jn93#B@8Sa<n&MgzF+mCP9y37Ygx!IvyjzV9rlLImTZ7JSk|
zEFo7{hrF`pC@2{}y+2PK>Ln|Gdsq2Jx!^k_<X$n6t%p)@=sO!jTD;7bQMQY2aYk1;
z!o&`RP=2}Z?mmgUhl!zT-KZJ41-D^mm@K*b7+V})95P`qRttwNfT9XSk<*8Wi4=C%
z>-8F&S=Sm(j1`ky)~MwXykxM;W^Jp+WLnko@PC}RR&VIV#%5!q)}WoQPV+gZuQlsF
z1IDAKND&2$jk72hT?4TkyCAPoa^%QtqPS;4>ih4oQ6~1mMzHgj?E$)At)3bww@3?C
zs+?f7%0Z(Q<Z%jF#!y#9q(n94t|j~k8*QIGu2uPH?arofRJxap*)zB^M&!s5J!=&G
z$5>;%Y05>cLo41Q%vl7E-gC^Bhr^@P>O*wy8z9ON>N0R3svNQSPgTFB^?B)~hyTv#
zEcZ2|gEfQEj3`sDYy&XoSM9`w$`z|ti4&zq#3zo|@)TM8t|uit*sf58QjEt`2(*}o
zN;pei3>#`OqCAK?qn;p=1!UvpIV19-Hm1qvoO$D$FuXb3q8i9plne9H$^$t}7J1&g
z5E%>U4#6Fj>wVZOs9DH)#6|Ee!@kWE9$0b)u#)&FHXl7ni<Hia3jOnE1!BX8Q?X{n
zTeR-n61C@-{ahV}uB-T2og?Xzm5{Mv*4p`Nq@SX~R@i|{f>%tF^Q4w%D+`TBhGIoj
z6;dZ=&fI!A1TsMY86l@a7fQ(lLeS4z)RDbba-3XWtkSU1N!M%^((TaqRrVCsO|UsR
z#Jg45WE4Az01N#wigbaUj~UHb?VaP9Z3l|OerrbfRnE;+-3)aMs=Urg#?+XclZ;t~
z`o~&EyK!S<1G~Ag#;$PMl%h^m2R%_W#&TdjF`;Wdx5JY_q<^$Mwc-qew@UWmhKz@@
zN}nREiLy4aLP;MtvOBOddNV4d<NMAs;a!AY#0jM49ab4=4K<9<XR8=S1Z(wd7-De{
z;$jV-Z#gb}A9ib;+~7x+V!i~%TyA{7bxL0*&QJgv6NpZmm-grv;we@RXyYWxg^7qh
z13qFAT)cW?=FJv_3Q2eMb{Gu9MH{x_42-gF&Z7_2Q3tk^J#Qa5?Rjp_8Qk{cY)2Ou
zJ&`JqkGgjs!6gwJ3K7XmNEZ@{v8eLh<FWGTKpdmSfZNbNcG{vn^KkG*g9eqSik!}V
zC>m3qH%R`lu(6pURdZa$PNYDNE00jh7g&PSJLF1P10)M7jY0+O6Cg#_1JZPGbiw->
z%>=sRm{pGl4`&0QKT7P}a-v9V)xo^B=Way07z=g}2hRQr^BMUc>_YZGm-~`7tAfB^
z<?LHTS?IsAWP|?mI<LmY+(h71{In=1dIo^bmn_J0wn4#OGKKza&z<Hb1Z<}<dVX3A
z6v}oeqAA3Z`}N$imKK5WZOD{hmZ8aSqrSSiLGogQVS2U^05x4~C%m@0#atgcan>6A
zsQ{9l0ya0d_?!RO7(negjQv^P+92v=_%_6#4^((>v-jLiN#l8{JX0i2qRHe~Uf3yA
zYpSfY{Y!LT+h+j&Hv8*j4oG_Bdmfxb_c2DHVM7f^uv-#W?P_HL6*3F_q6Yhif*B^e
zMHb_9I`|0i2QHI1a>73mZ#K|^l{3e$EEw!9!@8+%_r1rBxKoZc1hG%cr}rsEq%%ab
zz^sgVfgVkbVj8CdO2<Kffk5?MLlz@iVhN=`OB{gFhh;mgb0S@#*pYh<?w)v!xsnW1
zp?0i_W)k9fvtuyoP$+ha4KO_sb$)L%O?hI@2pMdFGsbSKx=6;ev7Mb46e%!h0d^sE
z+F>o67nP%2BZP{ZoP+(tc`-rQjTyp7RR*(S=jHoZ&VbC?jzHg1F2`2Yvw)Sbn<Wt=
z-xAWA76PFkSWp$hV>8WO*<ISh_E3-JP5<U-kUjFmvy_6*mm*Z+wKL+<6v;jbQW>|d
z)XTfa123q3$#gGdf3FPpCesHylmg5Ub$Yi*N{j}tH^|SEUs#~?d};IsbFVGU)TTDL
zpt}?!I$vuGD{=O+TnBTC|5SLu6e!4)OfLf_M5qn?h3F+v5lEx$VF&M?S9y56Y4Ni;
zgA$qSZ<>z2Y$Z#~S%^BHv!-^Q52WGxUj9DaN8XeC@_BBZza2bY2wqF<2F5~4gM3P(
z372waAX-8r^L$I}v9bki$LvxJr;VSc!Etr7xyjaH8=I?}Y{KFl>%WlV&0*RvooEhM
zGTxrRbr^;DAT;L0YGT4gp2<OwIf+B7$?2t-PX5`5o%8N+XWTzDg`#7ObcwhYbpWJk
z4-yB3n!sHJhUBuOFte~xSk<iWIdd7Jm9PU2qx{4(*bfG0{@jTeV0D=z=qbO%$`h#L
zZ(_p9ls8gm+e^PWwX5vHND)P10`%edc6BM0{}{~n*yDHa*duc={hd#M!7==9dG@<u
z&)_ns-Y`E!p!Rmyj>Xg4HX&xg7+%~lWty_FSgqrhQ%T-%BC-+&UGp4b;f{4me<nAh
zKwBr;aF{SXx;Tw&;+y_9R`ev}i5g8-iDpx8P?a-fe1~s=!p+AmDxW;-`S?*OX3sQp
zqu%}Jte%!#_YN_jjn8e8lQJ)6OQ3m>1(6tm<S`PCmo6<L3TL)yPT9up;K_9+PI+;R
zdoXqjMv+!xC5oQ4iq<h|&VYypxlq-SF8E0-|B_jhS=D=3^j7SG<@-e0jAq3n3L7XX
zV3~`9BxTEVM2U2UR!{Ea-{gU7uK|i&x5A__I$(#h#{Glw{R#zN#1#Bx6<=<W&vXgD
z!X__9s=@XaOl|i21wO%f+NUQ5N+Hi(sCG<u^vIQ14VjYWmfW*%w6cJ^P{~>DLXamE
z3)v53K#t9@JAypo=`qJHIg0c#-2tkrb!h)&=i|;_-BAV6lT3m%Vt=7e8t_|*BS@lM
z@lK_eO}KY&{AwhgxPjc*D-EP|QldsH#NCvveSHIS-r)ah4v7t}ZZe5%tI=fpt<|kM
z5PM^F({kyX{I$;MYIwH+n;RNovQ9%r4QGL`SY6+$TTbVl8C{#kkieg+sWeE_S4y)#
zF)Oo$w)Rli?ewS2iiQb1Xb9SxSw<O{Uj*i1YED~SOL6O>SylCs5n$pd%!<hb!P#hE
zn(@8+i?_?+3RQ_8%j=h|s{a?Qnpx#&)_j07sP%!7t?XLKX3y9%H-IapGgarmFmBmX
z!7HDeerA-G;v8j19$;EowS;hA9GnrRK1h&JZw$@th;Au5rNZC<nT>>OOPF|OPAkxk
z3%Eg@X{u)mcmkyh-S39(3Z*rUobq|M2^>Z<_@H>_IXkEn@=BL3_z{5uc8aVXm#uud
zuK<>Ol9?MVR1E|P4}?efu{`DK`o`LY7>Nv4s8&*YDI`HE_wX|XxI&F?<f*kE>x@bP
z0wixe_$3|A(++!QXD2kwl=<`Mi0ajP?O*JvXmsh`bjs5;23x-2JXsz|!b&5Ss3}{O
z-c!)%3SW4lJ`BX1-|{&TqvoC|Y9dvqB!g88QIsH;Kr%-w>_tH_+RKY~KrbYmJYf^I
zzThk9Qi^##1L|%qeP;~b7UYq$Aof%0Z;`PtJh{cGU8>nm<xOE%?cqe_zo#wGnbm5H
z{^9Idx%(%QY=tiu+%r-}N=mF)cx&hIl<n$5C=T8UW=G@Wz#Y>k+n;JOi4q-%4r-%C
z8}vgV$RHCqG>1qOWX+f?fHSXpntG;rZa~W-SN>vr8OuU~ta>kl84x}8CA@Fy7!PnI
zg>WK%-b0C*#_$Nx{6xUTz7=VbgCc5DTprFr71e{-<TZO9+fdhH90FsG@>JkUrz$5>
zL_z#$vH;Ifdt!NgLTFZ`_g<h;@0r<7)3_?C)3=5pspbUS<wyo~v%@>s2DqR?{70(&
zJ+f3}C#2^|=$}A?QWji^FK2StqVdV8$#=6(p|O+a_WN4X2xg7rrE$2FGqup&8C#bg
z72f$6G;Yr;iSuHUVB;u;A`#2bm9z(u-Q+CnLj<g6e1V?x_TL}wE0-2CxXD_CWpNN1
z5Kv!;{EM%1V%tsb<TA_<^n<2Fg(jJ3GayDW3(=O%GWH9yfXip4_*qZ$fc&i2*TMf-
zULNwvE9r;5Te5r{4!$ffc;4XMr$2#ux(I}Wg0qSt8A%xn)k$(yNy(Wt#BM@2)^CR~
zh)xzb5Cfa&9Lr(QHu`Oq-__@lgM=*h@sThuviYe}e4)xVkx0;!)^%41e^ye|^w|R^
z&psAxmzGT7vL{1)6s7X*Jnd*a0_~AJd`xH*(>BR^6zaW<ATSeXZMlI$&~DG6e$2~V
zgF6UJ53&Z`0LX%r0#zlQyty)h!S=C8%dHUzJUUG!p#;?VbvrFa6xNAbxZ5Q9rfRwL
z;z6lC3;Ad?x)4`{aKRVhIb|2rOxhm$szYe+#sl=KEl!+-7Y7kU#8t=^DDe=9;&RCE
z5MMg<%2S_J(NtP0@14VTxCkqyD<M{k%<Ew7wUt14uIS=oh9GWwW&-eqa^=MfiI16Y
z>#^I4xgO_dCB#EWhQaiM8htIQbsJN%ZF00c6R8^LD{PSEU;+b)S5umv$O6MK>MxjQ
zt%Gswfn~~B4@stDZ@wWeO1eFK<gS;rp2uT;a!Hl)XW*vVGlNPBMn#U=8+U2-_9q6W
zS5NM`D6p}?M6=f`mm}matav__o+rk7vKM0Z2TrIS07RnHFRpX^NwHTGC5o6ukWPNd
z!|tRFiOwfUM}j=()i`Gi*#TsVOsjgb>a7XBGn^hD>Q0^GwCsDC=F}QSFC#WyNFV95
zKLOK1=Dr~%PpddvEx|(@ueSWt8$E7{fi<1cas)2>WQKVZ(NjngaT&;TS`xMqVLwPe
zxuBC4g}UF2-c96>4fZTf;LKqq!!@L*7D~XQF(9(~{-!%zx}fd^(#z&#&wgj|P)?vh
zY*c(3UiH1rmP+hhKC6aMMZ`g22T3z*?xd9BYn=nx559}Q*SD>(-RRt%i63?jTvH_D
zq%>B+cJ&Oh6;_7@Lv4bKN;0la2XL&sn3vQ@!ZivS5iIWyHyhp28}IQX+xCQIa}ewS
zroLO@YNXXfll^}RMD^VaG-Y3*iUK{!QLZtC1oJJ=eF%BWX4s(<+g*ahcGS}_xDwh%
zTy&%Euw)I4D@diwRg34UZPm_UcJz<yRBSO^=w*9J!&+WxH-a^Is$wjwtvJ8UDF2go
z<iuZDZCX-DtG@`1Io9PEsoSEnOJ{o?E5s?v?oWCO&eg6PLY3l>;$kcGFMqeK(=T1g
z&ysxB9u39UIrTj%UN5*%cUVOwHRtPov*biUTIy*bR3^MIMqcx_GS?TvQiA#C(Pd%6
z2%n2)BWA2~Z=RdsGF|6XdUU(yb{ODT8o6I8;!|0sH}M4CdcS3P(!y|7p~|?~ir79?
z<ln;kA)v^Js==kk3A&Zafyq0DXj<MIM;H-%UN`MX-WF1EA#j%eie<w;TN|9rUr-qn
zf>K-^-tfrUO;AWMrcO4oLfptF9#~cyZRdV9fWx6`GL2$NFp>M$fp#!SdDNP$R#hXU
z^_}U)U!jfoiqXyMgtQHJNV`J<YFB&V8LgzT#vC^|9UNv*{)@Cbxr37@lzYJozMSXF
z(`0sfP8i2dsfZf$e4pCf@b6xX7F(9+>I?yd=-`}YMTP~vXLh<MPHuJ3rwUB<Iv`3l
z&uff8&MI5sS(M*mN(1*|MONB8IoAVINf+Qb<M<dhf|`MkiFNT<LWe-NMF|$bq%$pL
zKDOb-ySCN*3|FsD01ANUKh)l+_4CK#`RCl+FP;B!=j{04cz-*~JLfgPS=$w*y3jyq
z8AlOR#5lfRP!U7j{n6)<4cO&M4GT~v5&IEhM~zA+;@=3GCVAznCS}A@Xg-2wUA5U@
zvAw3qPaD=ynHsB)f?rngk|r@*PaWB`F|GBXYQvK5s2C6WNkYVSKMN@l`&%4@ilR&!
zTI%|<+le?hxP@E@A%v|z&(058*zL1&OlIXV&l#l`T8y(}=&2-jgaT@WinOorwY*W>
zHI=uYn}z-oQVT)-Rm3*Sp~`3x<SKVT5uhTOe5Fl3pBLw_xWTDBHTHHFva(NV65n-a
zqh2e0;%8Fkp5oq9NhH0dG1cwY^YZs6pc$(le<3nU+?*2uv)5_#BLg4d)Moc9JR4&v
znD{=pUEzUN@>!4^f#hPii2N^Gq>yOSZHu_yk1v#_A)?wxG>zeT>L$FyszAP~i3};h
zMxT(L`)_@qJ?P#9{28Mp8_W<!AB1L!m^La6Tks8w8T={IAOEi`Dw#5d>2NJPGnvB*
zQU6eReD}{@`H@tL+ZJGpI0~;B+vej3I7896D~H!x7%9f_2N^K#)hVHu91^n>@p#X<
zq+f=kX(l7&>CYlki<ygV$p&!*+rp>{V@NuxD964C{^m|V1}EkeOFdeEvssmL^8pPn
z|NPHZ<mGiZZ}T^DYb0tq(GG98UuafkaDA$W_XB*B)zSxm=IoY~Z<Zun)9wEq`Bh8q
z?r1n-paVHNhZM7_@Cro^KN}_)l3(~hpiXj5%?`93^cx;Bix=V?XAz;3?=aASw-QN5
z>AH<M{}m?EDEwq2ACyqacQ5YXob6COT4Q4+ZXtu!7>7W*(I|pnId>0cF`dyN@YDm_
z_4EVELIc>8xlz@yF(jUoHbw9c6ya(3g<0}$soRdTZUcn=bssP*ZiPO$T$*w%-2H~p
zt*JGu^g?v}?3<;f0Cr_Xydx2+;SpNsRv?2iSSzpq@~FJs4=t8F$N39hW-oZe5|yf-
zl_r0=pXX~WnH9J4{W$JhlD>{h73s&8#-{_uMDZma&Ir^6veg`Ltfb}#xHJkSc|=Z2
z1?)R#Fhg%doj0|aBC}%sUkFa4PnCHrHL2}=L2wAnzfKu$B|^iLvI9Vd-t-8NJ(`M4
zSlp%wv16MiVK;|Pmc+^}nx**a)i1iBK>X$R8|FO;UFDxRPbcR7*^p2viYtC18eI2l
zVd#S60eN|3SXOHJbEJ{I?kI}5=ZvY_f<W|lg2Yn~0@e=$@^tH|^gKqvcCR!DE4q?k
zeHuKNhNlprK=`(DY~D5(8Y@VPY!%#8oRALg0Nu-qcqyxH!!{N@X}bm%>gTu>pO6=>
z{Drh`<WYCp$5jkS0R3NE%hM@1dr-JWD>bs3HEt}B1WICaw+3`@USoJB?Qn^4y&`Y(
zr#6?YTN@zLvbiz2C<P$F=)zOYM0DxxGZu$_JDUlF&d3$3CN$V8aIt(c+(z6o+}rT0
zOXp=SEPExU`w4Sq1;na9d%e9BFhUd)6EH%Y${ya?xax==T!0YApIlT{yr3cX04^V1
zh9yWIyEi4lFUE<>=iEMzPjPE|@0^h{`)zz8j`?}SA8qurp#RB7%pFkYKcLr1dO!Ka
zH~~qw?M%Tsga~QJn_{S7Qv5tO8|Ih?oWBs6erMT>53%zr*b9uQV(ajcT>W40hL;nl
zM@0(K%(6T52sM1s^Bqy;Z4IIM3crG2I!Sy_hD8F5hl|w}#nAYpN|zmXi5#-P-;2|8
zc_eZTytC<N^_c`P6M<<Qb-*0mC|E_c?{Y%y6;#-{A@V2I5-JNWg)iv1)w~du1!2yu
zq->*={D<pgwY9`>uG`kqg=o5y2(*3(Xr%tA8#37{!QHQIl(cpk__Zko4;od~{-O#P
zRg#pTv<uV|fi_#8<oQ`8i0G8e92sv<;Nvzm+zo4Gxd3j=8<Kd$#%+hsfM78f_;w)T
zj?U=V|3(c>M-Q;^OC~zjtEI|fn`>;$l^%`5KAAca6$QLi5H}=Vor+vR5jCep3fw}T
zR`3!#4l4tgGVZcIwpTs&Bj(<DrtSn5quT;8sUSD^poIt*Pwd-gJ&9Ngx4~+v-#rk6
zw#y{cX&e#eO?_q!0V5%B=f-$!)?)U22a_Jm%v0>%F+x877GZ_QP}fnAY?I}wiEn=S
z?ujyi{E93d@tK>@C+d)YMjKQWlMs4pK5WbNp_GVAx3-wmHa%1?Yb+xT@*}Z%IPlU^
zxien}^K3`-^nc(Gb!25WFs1@Lg!mO10g65B30vCQL@y7Q&q+8G>RU|i!tEx?G{kDi
zpW;wG9E349z-~?pA5y7z{EYW8-I5d0^r(D_vVW*3(WSR-z2dUxn8(Gn)R1Ke#3PeP
zi>1K9(AzIECOHFA*#ATXk3~g<JFk|1dJXWfO|pO>*fh;r&ALN=mMD{z0IUmi%zl#+
z^5WI3F;+1E7(`%LHtA~*99YXVyFTRM-q}VE-igfVDPT``vp}BPra9IDC667Pq=%;h
zMSk@_K`sQHk0t3taY^@6=5GzA2D7RZF9}5%)ACZoxQqH(DE0Ul>l4F)^iy)#3iik=
zW3@DZEUm{ZdnH^Juak>Xu~&89%GX{C53)Eato-d0(3Hpz$4v<qn^BM0DXNG{yiTs3
z4z9~dnzdRgzj7g5s4M<uf%;Vj-M_V93++?6T?zTNkR|e}2be3XvK9gxX&P%e&xGdD
zkB8u~xW47GNhsUwrQs358`y6Zl`HuHuW!p;PtobPb_GFy>OgY8Q5t*hpL*FHv=9c$
z?y*+zdJ2in!x{~qZ#&%9E~HkT=W<VKn~nOcq!bcZ6&pMjWac@1L|Xe7A=2m$6|~&-
zyVkBFCOL~=NMaXK-tSuAd_A0B@v%~!rWDiW(d7mN+aC(6RflI*OM}Dn;5Eh=M)X<f
z1up07%x3*b*^BRM5@6V=DFz_?5*04`4cqS{(yI2*6H7p%7gtLiaq_aUD6ug7&&;q=
z!by(<&{Fxs+?ojNlu}Zm;28vw%;A*Pla16>U&{~b1hpek?Zc!~m1o8VN%L#rV^52D
z;tB*eDq<0TNxjK;N^-hL{<rly$bar`s5D`OEsgP32<<d1LP-kUxPZBD3gjQlHQPq|
z2jWQc()3|X0m=LYD`?|}gWg0iWFFe;)ihg2&&rA?0>75~m>n8}@xkmkXEcq4ym;dj
z;f8rK*7%_|%YbvLmrZ5}bT`*(y;}2fwR?HRB$ib=hMA1oysTYr^fxZA`kR+sW({02
zGnGN7Yin0mm(9zK+Mw3E?5|()_tnPLDnqNcYL{EhZf&(!?=xbx$9NZ}!tjyJT7R9%
zFC1>vFZ-(uVBOrjT)U#Bf-mYd8vU!mdavJH-B|0^_>T?W*BM;cU)!v2+2F#B!D=%=
zF>IZc^2WT5HGx5_r{VX7+>mWTfp778=|G`{Fm}dBkVrB?cReMUa3`8#i(Rq`OEp<|
zmd4|?{P@B|Bu7fArV^;(JWFnA5$#+Rc>X9Q84vp$!cZ&^h`NNz0%<LB4cJGL<AJJ+
z%OX;D2u&2q?OWe7#4+g~-F(XfiUnh2AO>TNK}C0_xngStR5eWZw?mY&&kwHNy6df%
z4<Lk#7i%6aHCP`gdyLwC*sDmVu*ZQd%1!FMiCDkA(>XbApYOE3wSuK!TXIdZATF#S
zfanfd^4Uo4`45I-!=ORWelTH)AO+@6gAY~i*_PBPSuJV)PQWkQDlzeP5Gt23%wCd}
zGFJjaHl~5|4Pa@&9X9tPX)oVD2R4o8u$}ENh&Nz3ZWz80T18{R?22@{$xUI@r4wl3
zy2IKhlh0F8!iw^YPcPJ-EQ};jD?(p0(D~%)x2^W?H@T!c4J&hYlJ0YDe_66Ky0_Ne
z3a9Of#8X3qPa(4{PErw}L?C^AjIJS=jMelw4sbv%exSd~*=r}Jav883@N@iBd^Q3a
zJSs(raz3I4Db&io`r~c)?~~~_)jyJ$w|_COz3Xqjic?{7sdM!=(xkADPr8M|3Y`H-
z`sdRTI#&SfHg(vI*FQU(@^wb!Pc<Lc746zD;-3=ifmnD{_oNLK2o~}@G2BUt+cv!z
zHi3}1H-Nl^Je||LiAsBGUKHDm$~A}`3s*HF*hN?!DQsexy|U8r?5nx&?o(lZv#JU1
z)7~Tb#JI~R(kfriL=X93u9b&u?s!q=(UR%FKu{oaqCYdeP@I^eACvmP)cp$hTQsWs
z)--Fp6xNXk<VC*RU+gwYJ`*RSp|d1gs`lT~&yS`}p_y1cs-vi*=waJuKJn+7s>(BD
zUE|{1YZoT$#~MzB{yHf##Yv~mHS9F(1Ou$YNVCeAURymZHYaATeO2-+l62NT%9tBV
zUp=Pbg}FU}Ni6lX<rp$w>!SO$%`ZHMx-1_BMEN?i{R~2{XejB+tqy+)^Q2kPMPd{W
z4fCR+mc{(p{>kp%yNi8!mRJ_RKy1<j&bIAOkZtbH2MOgD9noORHvF#cvP~>ns>Y=R
znS(Qc$h9~m-_Xsbm2hjaDM&Lehu>nKA9s&<7Cl)I*{i4x^ViPk6+$~6ZNA}GqD|7w
zE3BrroT|350)y!yTy%3|jx`YpTzj&gJncN?`fFxE?-1hbz2E<E@aJz2kB(1H|8mwo
zzxeLs_kaCcA~jrU#Yg=&$PLdRiO7sroJGdblkd38Uda;pNbB&h2tU~?LmrS3P=9(I
ztX3-)Nap4Xb6{efmjoc9zAY}PLw=xMT~Dac?SIJ8JpqMxbR8igi`X!ky+!!s-dB!7
z7VxBfZXC^uZ^j*8x<^^40Ql7^?T@=CEHS<272X<xg6Ih$1)`{M?u_g;1~zQrs`IqC
zRFiP{iS<&<pc&un=VambV7A0;8_pL8_e`9i^W`6d%Ewp-`#pkTxCcarRkv-u9t`Sw
zn+BtbY@K5ss&lmSeTS@e>*DNe@A$maK0n*rIchJiHd})9glRN_fh9+gB^}`GnB#Ly
z`L!w#7=YfqA{=N88drmQcjId7a&s`)7+f~H8@<}q)}X%Lxa<v9wcp+4YJH7z%HHLr
z#^^Hih~TDvwYJvnu>(YZv)f(mZmkYBE?3ztz0Z)fb(*%<FMI22^?q&rvexUZtzOoy
z)>rj?z12Zuqu*dq@8$YseWPE$Y7FX)UbE5MxZ31|^}*WuYL{v2S4?bU7ry>xz0n_B
zuC8`#SIsV=QIlWX+Uzy9)?e1c?u&EWbN&98mH&UAuXLg_@jwP1+e~UMH`HR<l!XUs
zhAZChVmm)52O}(|r!P9vRSs~cb`Bm`axcM?SXo4}de9xrezFn)x~21^XDo%M5`}?F
zZ^-1w9jWs2=GbL&JXdGz^Qc~IEzmdu)1Qe7JVGl(^S{nYCwl0~?>iQKase+w(qMKL
z24O_wDTIoBD>YhZ@j%>|1j{yIdC-2F(Z{N#>ZWZuP|KH9twf0{_I-BvI3Kl;VQeF=
zi&X(QJ~uU~hedUE6a!cal4~`(8qEg`0UVuS3{mH7HU}PA`G0!QMuQW%+PpJ|8X%0h
z+;zc%B_k7<lo-ywaf@UIs3?*wx^KpmjF3M@ZvzSADU?nvu$yn>uSd5UxE-68V>E!7
zd9L3km|zRqjcbvK)a}jQSiP9WEcjyiUH)2CvI$(|!Y5;!plHk%Y>~9dZX*R{(xaB;
zj$1}ewppI2YI=l5+=Ucm`jDo#ZEZEz+0>!FR$E_XtQ#*jn5SFY<bN4IvBqXMO=j-a
zHa6-_Y!*W+HX8MHX7EDLFwtVY{)^wSsv#E`$t?`*Iy>jAGpfAa)Hq6Z&S_vdH|vY2
z?Q%XMG<2~W(E7p>j%YPy+MlXIBoGGNN_9}dwd5!OLAMT{6wJ8Uvap@UDio$~@_xHz
zbixf3&8qo#q|YK8mUz@dw5+jx>}#kBA1tFE^C~DeaxrZlI9lGetafT*Z<UhUfs+CP
ztD1|kwbWYZ+6)&vfr%yxri<HE$vZ<YX4y_5*Jmjd>IeYV#tX22V~!y6cKU91x_2a5
zv2p4|=IvHpFBPJ1mWV2?M}#@#Pt%?`sS6lRkwj0}#xLfRRdB@;g(hPDc?-Vye_4AI
zIIE89O#I%ew|2ko*X%pp>|4{k_j(tr<HU|9iA`+DcH*s9Bw0ejLPD0D#7#H*+HBeY
ziGANU0Rlvvc*eACglBB4L6fAdh6WrtCUKm^No>vcovOO;A^V@?_n&!i>eQ(^b?Vfq
zQ+2EA-oE!KEQX$Z>>14cm?@sZ{vS=V$C<(4x5E@iWxwI$4YToW7A!mX+`4(Q&>Y-u
zdJ^wdcv$WX@k}dwPX`MSdjrn=(H8C%)Z+tX5B$1=*uD#Ht@7`|#$$fLI^*HTn;)9b
zkEX~}@F{t84wU(uo?!gAXQgDlCr{;K$7g%ZENt*O0Xvg$;;?xSKKXI}iTM1de`i7S
z69Ms|XX~GP@X0?$2Q&5&JjcU0v(0^rk3BKx!6#?i_hNuB+d_AfFZVIh|6pH;+1R{U
zk$ZWbhKa+O<6&GJ%macs4-J0c$wFs!tRguN2PMp`Zq9k|VzK&p_^23WZR7Ruhg@fr
zVIBNcqI-0J?uMx-gO6(A)s!`ppR9f&)iD2&ho5QAq@He?H#bxHm5TbOQw!#2<~~*N
z%+p^fLml(&A9B;hSQoD1W$**@rYg6ELngbY6uOGv*|#**Kl~rB81PsgrhI#WzW;<A
zRk`(Z_CjN?K5)e;FibW*_g*$O5;+$#XCAo~kaO|LdHWm{m%ANf9=z|m$pa0!c0v`j
z3wu+Xv-0B0FUtn67?wY^!?Rs@;38*#{3Ki(TfyL*nS&VjN`LJ%uB_x!IO)dqhaD|9
zJ9BPkm*pIz{1;m#?Ld37k7l9E9~3z`v#dE9g~$BHF=lOHPEm93LXCOwLGC-`1GnSn
zPblT7BM#x4pF$^ND}>R8GbuKN+nJosDdTw(UeGKDOy~%Hkn%T;tN(O!cHg*ihcEx>
z0ZMSd!gCF*XZdPWIFkG&;eU3Vf}>QJNd{B)Ry3YR`AvT-Fcphq+zR75Pz;{E*#;5W
z`wQ9ovDs%knJZ)2{@HAH_4`oHB{5jR2VKd-f4mk;{=!WjYU69(gKfB|&EphYlQFGk
zJKJ8VxKI)ImAg)SF%|nUnB&c#wg#m>%#%!>eBqRbvpoMew+Y|rew>#ZH%V}2nBv|5
zF$JGgnm+|oh&zv-Y)8Q49Ot0F{Kwl_{#5`TzcPQP@f$Y8cFBq7RNa*nPKXm;{=qr!
zm&g=~zYD}=ftNSCjyDTNbdfAE+~S@CgHNqL@pK+;h~f3S{5n@Ug}Y_=WV^hFx0<h&
ztiXB=pJ&GleDSAeSlw0P1!8!eFFxUpoi9G`js+doY}nJ{YYMne$CrxzSEQBW!-aTR
zWqAcY7LRuUr}6#5O1_dzzB_|gm!)c}@!fd5)KVT%%z5nH+UM85xMIdIT4|nT$uYa^
z9?ZjwA9!*Dizz$^#OJ5#;SM;*G@AtWk-Jj>7kFv`{-POMez*{<?jD)JjRkT2Uw;JX
zzKc_K!p%PM@&9q`CgPg$kQvrDpOSO(k7K>h#ni{_gK?k2J@`+X$L4~Y(7~<+GZYnv
z6u#+%7Zh2y(a+@xG5fB2Sw202KmNut27?RFBja!Jo}52L(#^8UK2A5aWc2TT;tzgD
zmVi7%wpR@MXF|a!$FVV{IlR#1zDtpL7D>*G<S+<t4Z$i7_Zze0-N?he2;6~YE9Ef8
z-e1n;bN8&=A`I@$Ihe;$W<+tXB!B)>GTwech9}VG4f&`Ndv>#1$!_RzC6>33;Oc7b
ziCWowUN);BN=~q^|N7AVdwMxgphI9~<i1YlrmRvdg=KXKSH)4j%uJIfKk?*b_loKN
ztL4NqPnZ|l=ib5y9+EVh;Q#nyjw?KO4qRrN6BSsVkImWZK8$N@X?iE<<(y|S-7%c3
zGq7;WUVzO^BlB!FF=x#o2g$$B8*y@+%6k&?u+aG0M6;GEEtv=(K=`>Yn1nx-7rZ_7
zFfL?Rkc_~Km=*-i;AXcG?!gVYk;C_Xm=8w=r_*-EkSj9w5%#%z*|p`|;0wMjU`~<#
zFMN|e$=fdWuN-rq!x(e_V-OfNCE5F^cDjeFVrgN{GO<5%i$<(P%St|(>rpPJxy)`v
zI8$Nj5P!7qxs;6z|FRWB26F>?*={PQe(<x7r8(bqEXDH8eAqF20|Qnz8)XbVu7LUX
zE?=7c$xnRtj{;9D`S3?ShRtGdxPS)<`DnwFkK+OKvL~N<c*^`KjSoLcWwAH=>T~ru
zOEU9hB@Jiq)lbeHhP)DI?;o3MHJ;aMtba;2wQN~%>Bg#+F9?;nG<(BTCW|bOjLBc0
zxcOIqW=#BgUhoHiTx9aanoZ3W^*GO{$~0EZscfokuB~a9gO8?XnsBf>r)Ew?x~ZWF
zpUJ3CS5!AP*EZFc<1P4j(j?VT)0j%tSEU-#jm_z%>SjDy(o|hvQI2?HZK}CG)m%BJ
zzP_fqu|AV&Xs&6%mwc;hn!#P2ZpNc6srshsiYk;WZ@^bL8tSWS8}MLC?VRe0bTdA0
zR9TU!FR!VrOl9U|Dw}Z1jLU0PV|jgLMP)O#K^a`P>l<*+j1M2psjqI%l=H;80%s=8
zsmiK`=JGi;nWl6tzJ=6O+gOD^^u)mm9-ZL@8Xp>-Q<>sx{&{MRBj(x~99(Cb!QPa?
zQ#*|{xIJIq+?c6vo@1{+vOmHEf$rlSXF2nKZnB*|_@)is(kv@^kT(nP{{y#J@SKUe
z4QiH(aBkj_!>h^4(&dx#%uA*Dj3%yR<{L&B0oa=3j|Z^+!C%9{Rp}eJt&N-ic;}p%
z0yrjkOAUj|Zt3t`1l|nE+i_+B3&h|-Mt=U_gB$(asRc7UZx4KK%z`i2zd`$?eFpWn
z_)1c`F86#GzPQyV-@U>pmh;%MkK!fp<bj&?3!X$1<U%QjO8g`=Kg)s>Gej$}I>Ylz
z)wQXL6b`wtY^p*(@PjM0)#bH#9I67}xspS-+KQS?Ek9zF!5LcyADB*8)K=l-tsILi
ze#@^4y_l)Q_ZMm)1`Dt%ybHD(o{0}(;hPNqf9tHm=cb_@-Zx%V2{Bj!mg7*4pL(dR
zsfDNDcn-@(EG4mUgrZpHVQI&md3ht&jc~mxJi-N~n`;{}kl;fNILE`{uK@>ya6@^u
zEr!9IhRRGD4q8(`2YNSDG?h0s)MI=#R5n*v!&mW6+)NE_#WXdhGu8E(Idkf3nsEE2
zqNV|lfz?!2)k7M_Xf-^(Jl&XSuEZl_RVjIIdUHc9zH!)`Zp3)yD6Y?>>r)L-t|Hak
zT%T#Gug+99)YkGg&Ybdwng+aG9fPEKPCA9#Joq9GT3VTIZme#u#jTxmRb{3zg{R9J
z8qy7OQdm1zmp9F+sVQ&DG?rJ)!7#4C&7Y=<ss?;#aSl2njZc7MnATTgy1*@-6b?um
zYw9cKG*o07aet?w3D2J4VYrHlTCCGylq!7jyM9hX6HZR6%bQ`VMl`Cq8Y}cl$c9~0
zjhF!%YB5^p)HkK7;VqTrjn!Cj<Jq}PBi;avhu)fN`Pq#*P53feW$I&d+$kUSx4cmN
z+O4~1`KLnvm326_F!+laT!-ZE&3Pf@8#GJJ@;ob-f7dBbddYJAS-e4k1JbP0t7`B`
z5WL^G3JpkAVJiSH#x$9NzvB~bxPyf!{NT)Z1h5kO2n>hv6gr9yjI*AKO7sletQ=Ow
z`7>rJI44F=C0>4vdvDluU@okzsI7**u-)KWlPmD0%gP$uDobb5wKb>&HCDkpapSDA
z8iN93il2*1RpL+^N7er?m6L%`LD87i@uf{P3}14u#CXNP2UMrACqgRpWWA_7jdwk#
zFn%%0%d7D`Bfh4B835mCf`ioB2@{iPc3pvszB^sA*KWMd8839^+{VZ0vVCHXoXSe<
z>F9my*X(M;%-7-%SoY&cMDE_YBSPFfm4!@>SS~fq<0pJBwT#n#$>(za()kN`mHub2
z@8Pn^J>rX1G%g=d53efW>ofRd5mr{X*}(_2@t<zWg~*e0^5TrURVntu!QW7qm55ku
z3O^tg*CYGR{=7I3!m*Xd*VgSvTkG++sgE|}*bATk#*<T~LJSbR38*YD1&71bT#oq)
zH#lH-d{z+O3&a$f<}McgfgXgjX7EWt?2gN^N5(g<G3+=o^RucM^fDb6eOr!kk7+N>
z+aMU-l@;jWiW-b^OiKJ<4jmPbzgFWDI<=Vb(pYVj<2bXDw^!f^wdi)40`Qb7Hstd8
zomx0V8dD@c08v?ksULSkFlg{*a8!>O7=mz521#<Qv8U%eT45(;A8+6q7F+CKE5n5x
zPB`$#zd7d_lOJxxXF;EAl-0TE7naLP!67*|rDj1rzpP}O{hGEBG|tqC^(gK<;G+*_
zf-q~$-&j?tboaQRG&U?aZZ1=axH|TpI^3xaUssW+O7>RCVwD`G{5~q#UnTQZvRoyr
zRdS|EPEpB;Dlt|i5KdKzT9p{14*o<Pd{-UpR{Oiu{vWCRJ!<E-)y{9JomZ4UO8GHW
zI71bVQ%S9KfzolM2Pj>rlvaLP`JVENl%A%d1xh7UBBgw!`^qm-{z&CdP=22B6G}xC
ze!58O>Jptl2`nMyE9KWJJyfaDx@F#Ir5{i_PyhK-Wq?uu3Ou0H45dnyDpJbRe?EU2
zV50uU?~evdRq+WbZ;);~*bVpxT~g7d7asgE;Ae>cRKM_}@9IUj{z4V>(ktKlw%+*O
zTl$svzJd5Vi2n`Z|5N*k5r9#;W7}5Uv2%;=*zua~*!`;R*tJe~>}}T_dp78f{p)qd
zzD>I0XQy??y;Hj5?_bv)|8z!o{PS|%@sG=N$In;lj(=UDJN|98?)aBgy5kpXb;qyP
z=#KXn>W+VJ(H*~R(;e@&>W=Qkx}$56?)cGC-O;l|cieticienQcih^nJAV9%?)Y2i
zaA%9|+^}5#&Bm3=PiY+*u0#EL>-=!3j)XkG1V9B~nvR5r=|}`=kvzaSKt@Mvs&uq=
z3ZO(sA1DM20gTbnsYsg&T+vHMtKvFZJyAzfJ|GDw)6sN)KnRf1(ab==WF0N<3z(s!
z<G^3y>1c7jjt(3J7!N=_1GSD0Lb+au_a3LCeTsB6F%}R5^wDq!z)&5{uLR@)P+vak
z3qw{IGQ*G;MOqa6-Za1@9rY&wptFxOJyVA&DgiMas;tnV2~z-|Cxroh0VRNGIy7-C
zV5AO>t<j+oJ^=AvlXR%441jWdrt47e5Fk&73WfoqfD#>^HbaLirvXL)Mghj^aK$iy
z0z`GVI<3Ryg8}_@xD0${NSp8g0PzV4KtCOxG#OB-!=r}-`s(nw5CC{AWQ?o=fN$hb
z9UhdY!$aZ#(0w7N|4abliLeeACUw{^)M0PD4(k*kqVuLt2c!X|fP~JQIaB9Ni|M@D
z5r7GRYCx^dtI7im1q{%6)#Cs)fO4HT&IgRudBueQ4M5tEDLQZ9Ae}b|dHwt9yuy(>
zFIfb@pi7qMyhKRn<<9_2(s?oPhN^U47<?YmJ@9#bb^f$+oj-M=&aWK_m;k88ST54}
z<Hzg#v6VW1^iTl&bxcU-kD3NZ0SW+vbpD730L1`L=MM+(&|x}%*kl084lDy;UKrS4
z=lAWS^ZShkppM={0Fd7&1DKBZK%EaC%a5c1kQW{WKs}*+0O|~ZKLp+o^0fw_4m|}h
zN#`r%VGhanhXZ1ON*yVv1xyFb)XGZ(%C%C1fUAIq09OE}A)W^)#H2MC5Cwz*`G7Hi
z1Rw+$3f?k61~3EA8_*x=kn2-!2>|?<?3AhjOa(x`4}L|Mf_N#Q4}j%*0fqzm0R{jt
z{X%c$L060pOvM23qK!%yBV7ZK=3)Nzs5{#+5C9$z<9|kP9i3JTjCo@i=7t#<n=>8&
z^ugG`*qe#*JVWWoNX##TF(*tLqa#D}btF}*!^Id^<6?TlFMqBT#*Qi&1sDMs3m6H2
z?gh}j0BtK62S7Uu&_38!!M5?*G9AmW)-lyr$NCoNSlI(QRy$57^9SnW(6mkt7^{=D
z#X6Zv=)$~OT^O#?g+oW_WFP36!F-V_0ERBTFgK-&bR>y6D1(ubEX5qvPe(9^g!?NU
z%E!2Vpa$_VI<KHuNBS4(@Gy+eiBpj_M2E^Iqiut9NSEsTnra=Ig1OTx)uG8~-*Dtj
z84v%5UldkDW|<CioK3{MS(Va}1Z0eZE*aP+6Vs9DKIY&dn0I^Y$Y}V`xB|>OnBS@}
zS4XGnNLi^~@{1qqweSC}if2^3QpGD&9M`NFDqf@F6IFbQikGVR7!@C@;-gf&M8!s^
z*ccTXtzwf@tW3ows@PZ+t5LBTDpsLlRVtQJu_6^4pklpMY?z7_t5_cu>!)IURV<-b
z{_>h$_}+ilOS@L+$(e55^3$8ZKi127{#LK)xuX~L+|@7k{2kJM0r)4qru(pN>0Ymw
zb+;qlj`)j+Z_>+t^=-Z8R~>rMufD6-{qzcW{~T}`@NK<pR$Q-{71L|Geh!(x&}+K>
zRd0CzAN8WY`(Ky^LaMw(rKc(%Q^Y6?+Y$`_5x^sGS?L$k@tL?36k}>1kgwy#{V)Z<
zypu+uOJK&qm}>liIx=dA&dXrR!;p%PnyO>d$LZK$Tt243g&%;MMkngX*r7U}=&$2N
zg*rAasbiCHIjMlVjwr|EiJ?9m)7*p!IvyLOW2Iq~&A^p0we?EtIHuufIl9pIbbJcj
zXA~}RAxxXaBXzuHhK~30bZp81bSI{t!I%n1Le><NtFF-T<VeT^%*3T}G}?mcFghKV
z(mv3;2CfwEuOod>J_1+wwT|^3rlXVKO5@=ULucw}A*SibFigQw41>{-f%cV-20z@p
zKg!R5j&P^EzR(@+8}B_p$1z>UdX?zdFkIrN4c2*OaKUi{p;t`D3i5QU4=$M#u`HN|
zw&V}i@v^=sI~;XkYDAg5yc!)JlYx!K>R1Z0Csd$5Ov6JUYe*726Lq}*XdO@WLOr;|
zOvDht6dJ3Ayb4^_lVKg_<$H*);{zUmeCS%%OUEbmgFH;t#jsCFFX)rfakzb~Kc<yZ
zT>cBEU@E~StPGc^YOd=tI&WB+j;AAN6NW#gyGUvhhA@WRPz=>!QJq%`xzh_!-&E9x
zOHeWDD}f!#igdgJJ~KG2W1|M^7%tN>zZm+Cge_`xbTIm`5_TSo>3kA&Da(f}*s@}j
zj*S_Br3UyCNE?R!#F8aG2{L2(&~+f}g3Hw~_}g?`;^GB5uLwGfP3hQp$gf5}4MabW
ztHN-`bTd7qBU90r5lkNgXXqHF*GP$m?cqyfaA_JkP3MilB{~i}V>*hb#_4$BbR8>!
zpU%MaS}_AU&eV}XaUGcnJ5Mgu@dwJ`cW7sCv~Sn|)EU;X45rD*81yad62T>W<TUsy
zmV7gy|2QlK`Xu1{STYU4GGS039UnOiw#T$OVJLJ&zfP%u&0&ZBkUJCdADE)!;XEDh
z8-aZIZwl=ij7vcX(`X2~lwj;|d4XkBd{}>!Mf*$8KG-yxf?rO@6o)A_GOQF+`6$#4
zdzTE?vBWe?>#$+JN$_Lz=@{5K50~zt)8Y4!Hzf?;K)+&n7#{`y8qyE`4L=$>M8`8&
zuJ%P6;;<=~o`qPJU>xO5=5h!95Qn~LEMcagpGKpea`bruV+G5%7%nNX!oE6E3I89A
zKJJfYX$tc6V2m|f-X>u_$wz<XV;o~y6Ty5CnS?1EOWXYZ!_iK(aWd>U>Hz@yeavW`
zN86_0uW9;0EyfM{a8NOzw~k|c#V5mW$}kU<WpsQR`fWyuj+Y}3%i8!*r1ip_)DL}D
zigAV|XsmWTYy)2{z*vF~u>@?NfKMe7I+g@ZqCHqr#Wef6zm5$@J9@!JMX+aI^veW{
zVbm8b!8}odaae<SvjFpG5`BVYPc%FjevdeoP|*RnBu;>@@Df>tIVcVv9*^=Pu*~X(
zwobtku5_@@AAn_GDcU%t5<Uey5_X=6OC{!xyqTk51B~SuY@QFFOTab>*hFKQ7{QXW
z7wpmtzBOPn=BM#G4*lX&;;;vNzch+C=8?&@@I}ryNPhsfnF_z0iSb@OM#rl#k5u6r
zfVm(Zg&&0g#jt5F4FGTd8XcPm-=6||Rlt`<!l!Wkh>b-bPc6duLEq1SZ8Eh0<flsk
z@Qd_N_%v*XEln&w4mO2d!;^Ka81vjP*u6h4$rE9xaU*ne47L{43CsnsYXa8*FM{g;
z7E{=2MI-Q8%-K;azoHSOW4uI*ajn3d7nzvWk;(9@k+{B~?nr7h>^xjYDljgvMTz8N
z8;0dgB#J)3b}bRcygCU>Qfv<*SawAE4baOwehj#y6E#HuACS}qHDdrH5T6W~0+<A-
z22|=qZ5&VlNCNWpThAl_NkAchc}2RQ7HM@;0W$!#fEqwGU?N~Lpi~!No-Y_ORwt&H
z0mkUWjNyR3I)Q#k%*+QQ0H|lCLOSZ25d%Q}j8Xve`T+U^`T>RliUGp_g8>5o;GYTp
znT3E5AgmM9W}+?+fI6mw#ug?q9kMaEC#Iv$=~2KS0Ax<@1xN$R0V%)?Kn73+IpCWX
z)`bs@0F2UwHF4mv!1=(V0i}o!1`J1hBA^;j3787#2bcz^0E`1n28;pB1WX4^08G(u
z%^#-=pj*MDiLhraU@BmyE|^fD3&xL8{y^oA=Q=z&dW24*bCMN>I#~&47^ihIhV^T~
z5M7voz^O3^gkljWRsiAsivdG)!D#ILN{8u!vJ${3ofwbFcnntWwJBXtSfL9FV3<)b
zRw+6r10!OspNK!83o%%+mDY(~FajopL@|s%2>F<}lc^axe==Yi7CSY#2#3nCZ^C{D
zlXSsI?2iUxun)$dAA^Z(EH1pbpyiFg;2nVlS0x7WbX*|NVR<tU_ptX%Vz4K{iwk|;
z089u&CSx!U#=yp+2kY4Q1Pth^5txv1;lzG8!3$^&Ccv8MXb&7=JO*;!Bn)B<WUSfa
z{mOAM0{>u4jsvlP8G`{j1CwGH6QsgG?T3ZJ5ZE$0OeaGabXfOCr{X*yHUMV{5v;>8
zaIpW5RAPZJ0|P6BJ;)^Nu}cT&a0&M4Be8Ez4fFgGUGkk}em%lPeg>PYlJ6`8?Df<B
zli~Ec3l~*Lm<g9Nt{?r*QvLWhaC&p$34gwB`sOA5?(yA#J^my9m;I;wXZ`0;dI?}D
zU<F_wpbfCnf876S=sU|O{^~h@Y8cgiXJP0EyMNdk>fC$%ROtFL1n(?mY{m6ck*-~v
zx^`UvdcmL<4ccPRc7t{pbkLxqg7$3h+Jka?b{KS2(7qF0`;fTrtU)gr^rAsq3_2+2
z(DtrF;5@WL(7DxJXHP`B-dNpr9_akRuJbP&v^~;wv9;^c>p-gvT4&G;25mN|rR&mZ
zupIBYh~h+O*rgL)ms;XPNVwF3gp(%Wq)Tw=>qW?=Ee35jXpcb$4QfXP>e>l)?UcH9
zNqujj`d+L0-U{`-o$4?4_zixO->m+}R{vrDQU5W2uK$Gk)=qz(|Fr*%y3($$tW#HB
zR#!HwD_hhzSE?%;)s>_E0(JF-x_VMwJ*D1SqTX7n-dd=xT~t@r`;F?#CiNG`{5k5%
zYwF5&b!E4@vQJ&vudW<W9b46v!>R-6$JLc%>dFaq<)pfDN?kdvuAEgJt*WC<{r7{a
zW4Y>Bp*mKoj#d8is-s<XtWzE9)z!0V{(N=ykh*$UT|J_%9#wCxQg5wRZ><Uc=t9fY
za|jno*eYS0go`9xEa4IfmrA%z!tE07kZ`AjyCmE#;T{S1GQ24K7lr?#@Lv@Ei^6|V
z_%90oMZ<sW>bcO>;|vb5{G~Hj&nZOU&fjf?xKqq|oxu@ize&|fzO&&wEfOwd_}x}@
zwH=X-lDP3ZOx(!CV~8yKPK#d$ITs+}t>p~Xh#XWCdAH>R{>KeMh=kMlj|3w8S0hHK
znKRYQ5o*NDM8JlKpYkjGO25jl_G|oFf094lACH6Or{=4_+^e2=(*KH@KUY0HSG~1d
z{l#wecDs6eoqBt{dV7O<t3@V&Y6)v2oD$M0A<DxU5aklDlz64g5|!Z!q*qFMRk#xI
zDv8%fZjGeWgsYKW6QVfv=%eb<1!}>gp#_gJ`c?JSN5d&(lt<oOb`byL1|dYk5&TC2
z5&o-mN~O~(ol)s>m99|fN|mls>1vg(QR!NhNrlFzQxg!R8DtogGpJxt$)JisHG>)k
zwFok)35lReMAY=@;dc*i{mxl+<)FH9QGM%8b*05G3zc-YzRcj2NO$Y9?$#ARC%fC0
zg~$JBQOg8|trE6LxLCp^5-yc+xr8evTqWTe3D-*4F5x-}*CYJ#G0Obg)|VKr+{JL~
z1%`W<F+8>r;d`xz7;aj`@Ks89@7O+u=T0H~NgE~nWEJcB$tKEqZ|8*xvGMP{wClZX
zi%jGvn_2eeS#sVyPtKcXspqZDn<a&{+**8C(%G(Ciw`n>ZY$%f7b5K0LVa#8WO~mr
z*4wj%I^12#w%pqC8dF}}&2ZZRhFd8A_O43^Z?&&xeEB(qcTQ|)e78tmK{+?y*opAg
zI=1@O;XTaV%#@oKSnr*awCb(Z)bRFh(eMImyt9<G+*x{Zg36>-CZjUtDpR2{l`2!E
zGSw<mqcXLsJf+Ihsyw60%T;-WDzA*ZckJwsPi~9AMDJ~VNtIWr@@iFHqsnVlMM_nq
zRYgWsl&gvgRZ*!bs#Ha_s;E&FwW=}|O2Y=B41;n86$~mFR57S#P{W`WK{%a~kY&PY
z7E+HqteO`jx?6X2x2@}Ly8w?e#KG>iP2H{A4FN}c1uSu41J6Mu@9J(_+1+-syY(27
zL4ao=Vtcw<_k&1wx9;n1J=fiORD>=^fqjg%Lhc2y9gw2uObimYA$CyY8~`hrAf(MG
z1LAOZ8w#-8At6qh7^-{~!{7*#k#Iy5x`5(f-)%~OKr$q>pg35Oa~P@-L2;>NTW?FZ
zZKr~5%fRng+MqqPfON}@92*l(wi7(i98H4}4x>WQkPk_#QS3Nlt!yWhg&r$R47ppu
zdYXkq0OXuDHk6{<komea!5a9Dz`!O3m84CO9qDdc3T~j~r~(KrI0>|(yKN1)*0?6L
ztrZm)C2dc)W+j=PUzF%>YnSR_W!Ru?Bl{bjC^ms8&}=MZBgQH=7(P0R>oN2+9cQP=
zSq335uzobAbuXA9WRq~haBVM9T<e>{NuhADi(q&~`f)vCFQG(t+ai+&L%@v8g+b3E
z_Ois@M15POVK6YQvPB9lgS^eK0}{51>6Rmg1Q?!5nAk~_ebsfrVI&J746lmS)=C<?
z_bBv58k9h{pd~E&nwSH9O;fyv-U1Jivm)EH9li-xBGWNKP!0MS#KUPoP&*T28paTY
zBddTc`X5*!3&eip!Xz6}2)T%%EDX$C$lnG9fM|&B))R<;`>2r+O5JWf7fLh8FeqnG
z!Jv{s6@zL9H4JJIV6KpmWiVGr$Wq}ni-prH7f!QaIL(sbG>eAQQZ^%HGg3AqWiwJX
z!?LQWUe!ONo?M{jHL9k$>d|K+x6YmHS=JuudFk-2^{XPccJ1vsyc5)#o)d2*FmvC!
zu=eJKS1@g>dG+dvdNsFRJ%;}cYHovixFPfyUh$*m%~4OxQF9+wk3Fm&d0x$ZTs1we
z9(!EPnX8_dtLDyCjdRswh-B2<^6=bumu;FKkuVc|s=kS2%;JoiH(xz5U(KDb<}FZ9
zEKqY7sK=n|v+9Xw)!b**W6!FFuc*dG)z}niL_yTo1T~&hkJPJ2=BY=YP>(&P9(!6n
zK36^dgnIm|YThGi-cxEm{x49^HiQ?T%-nE2LrmT;?#ASepqxPkgGvTf45}H_FsMbq
z$(td|aPnrzQs@u~Sq>c{Axok|B$TolDVve987Z5QvKc9xk+K;nn~|~^DVve9<x;ks
zW!3jqsVjTbl|!oIRn@UneRD(T-maBLLicuTU%_Be=-$q?n?m<?FJF$}WP9k|-ZwU=
zIdjyUN7bCi)%>SJKRES+GYob!I2iiDB|{z#z5VhJPlet-@x#~E+dI_T8`ayJ)!SRt
z+gsJ!`_$V9LT~SXdm)3?$lLpWc;W4Z2DOIXZvWxy49+sR5PEwZgY^tHFxbdo6N48R
zyu{#T2Cp#K%wP+HR~c+$u${q92D=#SVX&9MJ_e{e^!5P;n|^qXwY^Cx2zD`OhsM{B
ztLty5>zCAx7Ipo+y8foReoo!krEcs|Hx{WIZR*Anbz`Zzv0B|&rEaWIH<qazFR2^r
z)Q$b>#!+?Sq`Glj-8ipqyrJG{QSU5NH!i7n)~k0ms2hjXJ4@9&OVm5d)H^HHJB!sj
z%hfyW>iY6f=bp~J2;SL*;QBJgmNHnvK*)AxfO{2i=OG4%nX;I{icsf1rtM?ezRn{E
zn6Zy?_c8YXa}O~00CNv8_W*MbF!vyH4>Ii_(+)E25Sb4#?J#o>Gj@crBg{BL@+8TV
zBu`T4Nv549d77~^%soT$40F#g?RAo`Gj^82IkKE%>^x)V5xc$+F$9Mh96=yy&<e2?
zq3f;8Xk}U}(^{F<2E!phu{P$mu~^&nMGU~#M!q)kEh5VzvMeIYBIYh)?jq(cX6|C<
zE@tjx<}POLV&*Pk?h@uMVeS&<E@AEx<}PLKQl>3s+ES*iVA=|nSiur2n7e|xE0EiH
z?E0}#=WztrmtV&&?)s|h>kzJ%aE*j(C2W^)9l7^(9%pa@!F71WK9c)L?jw1C<N=Zg
zNFF44kmNy-XcA1c1ZfCPAYj@Gk}F8AV2M4@5|ZI``xqQxaGIJgLJTDkETz6Hm~oK7
zNd~9TE(A*>*ITYbaUy6=1l8Hs@Tb?=;&Y6hW9&R*=NUW6*h$7tF?Ncv!;Bqf>=0vz
z7(2q)5ynn4cABv>jGbZZ6fBJZo^^_CIK`%)WN@0n83uc=uZ+MtaAzVov>-#ll|ixp
z4LWSlkqFs4LBaK}uP|tNg#J!W_&)Q1t~1ea5;2e76X8%G3kCxzC}<E`1PYv}0f>nh
zC6t13LJH%9<$x^30vIZ!FjyQy0Sp*YL|`FW9^tS-A_obi5Rro0JG8=3;KYD{x*QFX
zX9}Pc6M>jWgaT+5g#npFOa!E)9P^Gu;2dl_5m_))9707HJ%*yO;7e3j5GV``<Z;qs
z8`wt{p?#RE3<U>}UJ(ifKtUoY=;bIRVjdy|%QKHA2cmVQ(G<;LPlS<akR(zGBtjD+
z+6;(oKyjKJ6ebgsXe~j_XhAlNd1wQ5K>^s0c{COfCNL&qW+tM7NTfkPoxZ;4o%O5_
zC<Z58#KFc$8;5rcB4EYNqcJj4k67n%IM=f4i(;S_aVW;FFGC92B*LyQA3@gZ%S)WF
z631BL7?Y@aQ3(U#L3PL9S;eSd>ObI*@Mrp8^1tT)ssB0u3;rm7tUuA8>`(J&_@DPj
z`(ylBA&l&m4AwAM%b=aXItJ@i=XTY(Lv`*{ox4=$Zq>O*b?#N2`&8$C)p<a59#ox&
zROeyUc|>&{Rh`FF=W*3}LUo>0ou^diY1Mf~b-u1T&#KOIsuNe<h3a~%y56R)FH+YR
ztLsbD^`+|iGKEnO^>;AX$zV5wz5YmloIl0?qW>rUpQ&%`P~X_8zHvx>V~_gA?%2Jp
zi(dpt<RwND2qXf0B$qgvOB~B3j^`35Aacn$D{{$sE7GJ`ktWp<!V7}(gPf!4FOREl
zy{@hvS65G~t7p_z#Lug%Z>Xym)YXgX>LqpcP4!lrdTWt-Yq5H3nSOWKQb4PEYpc3`
zMBUh~t{+vYQk5=MnNn3=swzrVWvQwvRn?`crc~jPg7Nhe^!NrqBcKV;444CW81M+-
zQNWi0j{zPB%mq9FcoHxV@D;#Qfcb!@0nY#y0G<VW74RJ3`3cePmW}hfTQ;d@pI478
zQ1hGgJgmK+ZB%pdzezQHInurGjqZgjv4zJL?4-tSS@$eosc#*AQQum-N@EMGae}08
z?RrJu*}D^XKj>Y$=cR4>_M+{&=Y^N`t>vrrtxMopvKsU;eQViPefxB)zP<4^edok}
zeQPJu+Ry2p3mbLMicPv_^(Kw8DZp}lci{?s>-9Z|A4YvAb<e7$`p)TN&|!nVy=S4m
zz5hJQF4H~dTQts?0LvivB<eh&Z@q9v-(8HufR>FtTMnU-j6tZ2onK{Rw~n|pY?5pm
zDzLHJn_qN%E4RAbO-w_pXoaKD?jqo<zIkq;zIkz*zIo{g;0=ANrB&Zr2n}0dg|@wb
zwYq!#tNPYrSY+`=z%Ib+NIM6N{3VdLWS74A2Ca1na9ZD53Ru>ryEnWB44KQ908nNl
z>R-7Oup9t6D^bs?#Q@~5f}GVzU%d|S3IG;aeG%}czP%9EUJI+Pg}k)~0morMl%Zbj
zXZ5Xh%K-a8@6fk4oYA*7w(DD)HUQAOFDwF}Eia(l3y}FD+PCEeed{HZ--0?{Mtv`z
zf}YT8=MjDDwKV|H+tA)u;WgXPE89@t4zz72;yYi5$Dr&k)U_M17wP*p17M52FX>zR
z_vr4;kaGw+9lE4%9c=?3{V4K}qW+_A>RZQ9{@4!P{pvz}>-aVR_)oUzTPINGY4D#0
zeH!|nz5q|!4gl}AqrkAoS+o;<ckA4K-Mt;@+re`l_BjvP=h5~zV5c`O={w6H`vUTJ
zqFooE=f#7F!ycDl+c#0qn`rx+@Zi>kx_j4oz!t>e%@`d$i{YJ%R{_=l&g-5fz)Ma5
zFiMsj)jdmJ1%O_9Mq?`u*bML9iji<!_pF4B)ks@)5%CL%@6$bN+H}ualx^Puycjfe
z-*-g!tlJN`q<hw*>^k_z{zJNF(^>%Vi#v7C=Ciuz<>k8j(962#m36?&boW8{&64#1
zjJhotL9cAlcUlkYn`^;?{_NQTUAABpZ-tIqH|Xxe7-6rW4X>i!?dx^V4&WVV&$ice
z&#sNS`v~gZ-Ku-`puW8abk70kdvLSvKK7FCIRrU}!E+q^htb|6D02j|j=Z6Jn0De#
z-E$H%#PPkl=hO=TwB_{cfQ10G?KJd1gZfUL(miKkw{u5y_bJQ>Z>$8s&acD%7h#7t
zm+0Fq=K!w)Q1_V^;PWd07Xh#9+i2hI#f$arC0q3EW%~f9_3h>D`u2(zz$Sfr^?7}J
z%}U*U{t)nP;IsPnx}^Z{uRE@9uSeMpD|GjT&6sI+0WRs=n~v$*FSYCLH!tX$Etr8e
zpVGItp#Ckd>DyaZAPxG!|8Fi_qHnfBpY3b(?H#N1?VYRi&9<HT_HLx@S*vgFJ*aOk
zI*M5hy6lI}``7B5%P><OMVpQ;M|`ioeR93NxdOB6N$7qOWlw?k^iF+q6=uWNq32of
zpIZ$2l)kz8Wqtc1+H(o*dh@)#)3R9KS-1^w41K%_eSJdTS=6R)wyy-n_&RVJzP?D`
zx%8^Ox$dC8vtk_pc`LT+TPsci9|sU$)OS|y0qoXyR&CXHR`1kz)*MEh7<p^=>O1RR
zMEVBAR{&N4w&<H1A#(#{Y=Df7FX%g)FxPF`3fK-n-plO(_~6SZ|MGr)=M};-eP_!W
zeP{CyeP`=A#P<P%_tho(&THHCoo$$NUqt$Lv}-%+--&v6LjRZ0mYo=j>)+5fU%8}j
zZpM}40C)~U&m++3INE;#a!xMPcTR1_RpoVk=k=BP&Y26q$Ml^yHtIVU&g#1u$9LO~
z>${8A0XFNq%aFG6MZin??(z%z?%H$uZu=&E_XYIt9^%*a&Aof{-OZSL&YaM9x1ewK
z<9e_kSEJW(Z8(6mZ7Tu$_1&F2^vy#j^<7*w@9x>F@9u2{K-Z&d^xZ@2_1)tw`tC_w
zTTZS49M*SF?*&Hv=h3FqFX+2(pl-}hcP}gktOX$L!W*9a9{58+C4c_=g0Fqg;(uxo
zy5-*uuKSh2T`ixN^vho{cw3Xj?FQHV<?l(pckYvd+XsJ2aNV9y2rl`MsqgYkgX?;k
zbnlY}xBsE#d(4z8`Le;=9DdZM_xod!H|zQz8TscwC%EM$Lwm0nT(rvI)M|sbt+e^O
z46d_y))_<3USn{3yXAYv$es69gS&Rx^e=r@>htOh?y~q;y`fuP`;6pYPJLYPwzS17
z|3K)vc7tcXXRx=y;F7~O|Hn3cqrtOZHTc>xgHy|G{!a{UNgDZGg$B=77Hfk`erfpb
zSzOf1q}LVM{5}TH>uqpR%;4D}n?Bg!Yqs360fzQ0p55Qj+xi)tDlm9n!r){12H(pw
zcw5}yc3aOq%YS*0NiVXvZlIyP;RfI9Yw#?K+pXU1uULDmF*vo!;90L3-2S5R>&q`0
z+!8T<TDQ;Od%FzYw%7WvP48+lv~POb3tOx#PFkF2v9`FE#Sx367Kbdp{FWI{m%~kx
zGB0LuU7o?-|1kM2KWvozl2Io8+AC(9rCu|*<wb+<HUF;gwSV5=V_&fNiw2i`=C@4E
zqaGAoH^|_U!3MYAGX8z9zm?}1e0kHSg@5+T2B$U}-1YuLl0I*|!I!^b((fHIc-vuv
z>n<4i*IqL8y!8f`Y%n-wanV|vZ}ByYQ|%_b-Qs%|&t7NJk6Bz~<<4?)XPSD8wpu+c
zp1sM?$9`b&?4d?Z-7-U8`?#T7p0s$0#Y-(-Z1A?{>ZSeHS`6;8xUSXE#~!okuYF1Q
zE`QNrZ->Fh9x?fKOTK9AxXb2GF}VG4lRs~v$!~8n^yNhc9~)$F$qGwPG5Fe_8r=0K
z2DiLiC-PIZM$YU{7~Jxp$uIgtgD+b=?~{fu`IN!eES_!Kd+#4i`Fr0qc-D1;i@FW=
zerWKvpBQ}kpAEkEQ-fz+HMr!j4Zdb^QG?Y-8GWx+TH3a!?$d_8{H!TgWbwSdcKj3@
zd~dM9B_oahUVFgI!*%D)IJmaS;4Vjh&(Pkt44!w^jJqz2=dChy-4cU6OP8ECbo&{D
zXZ?x6MRos8>|JN^tj`*{<spM-ecs^I9~$g^(%@qc8hq`G2H&&kb)PnL`zH*Z^~V<f
zk;R`gxa124U;dQAvp-{S-E4~=F?d$Rhef|_7SFS|$YM|bw&WlC$nOZgXYs5L8G7DW
zQ~urzLtiU5^tCZo?z<n7a;YJ+1lRR9_}*ZP`x$(>zbQZK-%Nd;#j~4D`mvb?U;c&3
zzdXj2oBd&fuT>jdH_PCALrneiEN&TY=*xqR9B+uN&*FQdOn$r7>sTKn=dz`*^)+<M
zk>B$8+g4)qs0&&B)|hs-_=fJXxWwk)^GteCKT}WF9~wF}*5H!9CcUnYEpP30&DyKo
z+P9>y$)D%&k|xoo<m(349W{EiTe;T;&64~&+YZm-5{qY9+-3Q$^)me1dK)~;;;zRH
zJ$tUfU6$|K+r}Ps#YV5o<7|8W-lWgIVQ~Ay1{XbIX^XEl7`o)P!Lx_jdIlQ2?GYpI
zSkl_Z;(5=Qc3z8_^liOu{ShOlZll58Xp=tcT|;ks$l7P4DL3n?!7YDf<#!rfG{=<d
zYBKoVNQ1or1|QpG<lXze!Sif?&9;7X@8d>}XYEmBaoyip{wCu;*A^N)Yl*?fCR+O@
zOg$y<oAj2Jk9hoTd)eTY%?97wZE(?Ei}xFRZHK}0Tz^{ZB|j>1<`o!xZH&RGK?ZjX
zw)ts;>xLWL{!Jq<_1lKNTxRpT3@&-!(mgi+ropp5Z06Bx@7nykhVJ^Q!P~Byd3l!q
z1<~vBev8i;e6PR3*M{5l3WH}=+WbciZvTS8^S)^C<&PSCY?i^P83xyV*x+k6-AAoa
zz-WMrhip6ooEz6RJqFAl`NIH~cX31|&a(Wubn-Dy;E$L*%EnobtBdtGnXJpz%Y2va
zcqxZzeE^Iz-SM+d7boV=)yujaf5OHor`X0>uhW_7P7c%ZEe~~f`ct0crw%U8bf+_A
z<jQenna`iojrfD$<T2fqW1MB3eCq7VG45!W@5(wI9A-N8jN9^za~<#GySgdI)lJMF
zdDve5m_}ZfWn9uhFix5IsDN>n@ewed3zVOS1g4RnKgOj`p)BL%VP7-O_QkDC^6TE&
zvg{+r!yOCbY%hO|lRt{U#l3V64-#E^p5+&vZJcc^%84Ty$agZSo6}S5P-u9V-p}$=
z4qiJE)a6Y#ai-G`sRP?fy<MEfbGm687oHq@f?as1Gk@f#49aC%0pNE)FkJuvF?FM^
zj8kTTwJp>0VF;F`k9-~A_(?NP`91>1S&wTw;~Za(hnX(!^k<z;4(oFA*+)(e^>KYo
z9_m6lEbHRr30wJ$j{}g0{NDQ}F8z*7rc<{80LCR9f*5C6w%4VTk8#%J;^cRJ&NP=!
zI}pfEaJrG-rBMzE(xTfh4Ih1$`(&n52UnJ~<7c|7i)9JSr_3Y>#+gqibLk;ux^!oA
z(Gvmdpg-{Ec%q0fPMtk#2hsEAS($G9O8P@a4qQCYnL0TAg$J~g$v$Ep+v~<D^>@0l
ztQ$wvlgzHHYZrBMKEpWW5!}2*e##*xPzR@zo9`VDGZ?2F0^`(&;L6UlampBylg`}~
z>!nQU<8(k&;!LXrxVrFn;Xz&WXYz9{xzA^i=+coT{Oos3Z$VkdFFHcF)7jaL`~;@6
zP0p`qhkn*Kn2&ci1oCs+NIqA#x1Cp67k^AAxc;Ip&L0?e^@_c1d)Xc~isdNB*}>VE
z>8#VWi)E=e(;2@neRx(5g*ll{XUFT(>EMjh4o)}nI^Uywmrl$d`N`wPILkU+$>V&F
zX%x)%F^xZ#r4AJ8(m!U?$?x=Iy_D;8E4Fdg>+Hk$BLK?b_;O{bgVT+1%5e4O%Jk5w
zOlQ50kC^>MnY_NS4p){HI9X(HaaS*OhWki5>j~$`0U7W+IppEul5!Z2qcT?)>nG4|
zt}m#IpTk4N9S_^UvgDCA08@WwTc$Z1GVZQBjJvYLPB*3x0#H6}%OB;FCu;4$xU)0c
z?(`HnNN{aof6+z+4-+Uc<wp@?T=)?%E_Sf|l!-UsWO)jb5+@(W7cuMb@z2S@n`b0W
z`MR+#;P(`3Gj*{|jFV@ejg$8LtZree4|Tw+o`j$ApiPK>C`ZpQI-4>GJ|-Gsw#!cz
zO5BxWy6Bcu)*D_RJZwAEmpJ+8KZ04Nc%a0^R^$UPj=!T0;$DG~!@6?YB65*L>`liX
z2LrJ!t}g0BSxl$@I9-|U^&OCvui^nu_`BbdILqL*Qdu6%Cr*ykfqY`m&y#e@r2mkI
zz`;f=b>_r<8)sQ(2lgAm@w1SNJAV-S_(o60!)O_Kq%C<y2g;1{U060<+q%R)*5)kh
z>>%k_Y>}V#$<NRBwdd#B-}JTcgOB{u_JPJHS=Lioe~#z$ujeNMeOwz^-t&!~EIZh?
zSM)}MoIcL~r7rL>ojOGASTOqF59OH#;Fx9H^?8tvNr7=`H{bb&IO`pPLBcro;*W94
zOj>@*<n@~AlnHZ6oaxc18F$RXyOIK)-0|i4gC(8%3m?nn#3_>%x;*C_)RS5<U37r5
zF79MePv<|<E-*MArzd%a*mTqO>>T1ZH3>g;NZK~Cyzl|DEV-FRTlKMWNINjP7(E%!
z$3NzY{b58G_hQCxrCnHjFr6|z|F0#^vPn2P(@nkE`6^c**B8=Xwl63riV9hl;6;oa
zmLnh2#Ll+gS(lGaVmiy-H&0rdQwO7mZHui-<Rgcea=4FUoZx&_>VhLOjeW;!mE(`*
z$mcbh>8!`Kku(X%?|H)|PMOI<V-t}N!Q`R-_q7otfa#RS3kmbM24tF(dEYfFlJ#K^
z8wT=7+fhltj|9fWZxLafI^?#O^DXP5E%_sl=wR(8I)_ZZFkWEC7x^gJ$z*#NC+^cL
z>sQX7MF-oDjJtWpq-V==e@8j&BhSanmn@A7Sdi}KRq+RCPad{`A>*PyUPS5SP;bVi
zElFc%mW^0{kbFDeN<7D(o&F-<@;LvZOtzQnAy=2nqkK08jXv4&OJ?%3?S1SV&T`(!
zY&!Q`PG;ElFKJ$=h{ev>VK6Rb$C&m~f2V`A#oC;F?%FDSmD9g&E+W6XZj#5fon_g6
zVz!0AIQ2(Y2RgWGmb4d#3*@0Lacei)#K~t}oUEPf+`6>wN9M5-Cx?3<#wFciu|EQ)
ziT->CCgM_8PFX*ll627x4339;Z5MZKq)fJr>5S)N5$SlG4wUcaAJ*&A#rD=FQWx_8
z<ahR=On0qe-1Up-j|tK7dqayQZge*GB##%#t|h!g*3Qu!J3IejJGic<OzMV9Ul8X=
zaOq(bVBECZq?2YL$J58Qi)|sNOLul7?d(7~(l%hR54?u?(l3a(xU++_Jx6{qHreD6
zoozbf&fmlizOfbgSP3!f#1NObvA=1Hsn^8G<K`dA<XIxiQs+U~U@*?I&L<gn?Giq#
z597Rmxw78Zo|ic3+_IELeZ_8mUfjhwt{EqIDlF;LhjlTH`tZ8RIBg7>XtCutE+l!_
zUtpJT|G5yaU26eM=h}+polMVbHszRRb)atkpg{x4BkjU43ixqQ%Q)@keKw9a&su#T
zHHbqw#tB|1u875#AS{U6c9GUOHp$hE<B|E)n~E?leN^N#OJvS0G3nBe=t!m$JeA1W
zM<<d&*`%Kecwi02S=QBS`bEXEJW(l28agDX3+MQc0hlJb;rhZjb;EU;%NXfjY^{Xf
z>`!abOc#6N^~OP2G(O;0a)d5x4PN^Kek_I@ztfYn7mo%!+*eW;_AguG_(9NxWbgYm
z;2<6EW@eoF+$Xa@i5%{gUAou@gll`Vl|x%${VaV!Sy=aGZSEPH8~bRfmvZv0Z-^bD
zAr5(C6Rh`~Zd~%XbX1#_>3fAPo%_d}xcDJuMsWdSI(6e*$~f!g9LTuQ$M`d8Pa7X#
zI>#x~jISCwq)|4jPp)sP0+Givzztv|FY8KT(qY_;U!y1E@f`oeOIn48e9&3!K%Kqf
z;Zm33j|&g`fyO1T*ew*1F>d_op?*v^JVpoc!|Js7xouY<)6>;i-E#XP5|*}bt{4Mw
zb@|b#*jDUm`Hg){p9&ugO>FcZAmfF0z+O^(jB$K4KzLZzd+w{xlb=BG#Kvx3lKRs3
zrU01Ews?I<%6w>LN;>0((2P7RL-%K#b|5e=`h;@E2=;eQCR|KxLK;0LV}#?{m1Vu$
z$2mD%2D&(JFfcB5$gzo6l)&h5W6-t_G+sBHD<_D1LkCFQ^ij5dd0nP_f)_J$1>4KD
zF4Ke`o7I2^izmjZJAaJRPuw+y{7fOHZ9f4Z58KE!ypsbXhz-T&<q455{ua);W_iAh
zL6PZev7z*f{;<rM<acwR=$zAbG%L_KS(pg)#0FUE6}@p;CKlV;K4QDv+`>N1M<q^Y
zm|x=3*G0uSGPC`T<1X<r>gM{L^845^C^~~f>PI^KHt_j;Ty)u1j*B?{x%m5_oer2`
zxrG!Splo^}XDM^N7z6Bh;?RO+#cr0LI<P~SE^QgwN8&7V-&_a6$s`}+?jD5G$1f-l
ze~_}C@gI?oH=R2kuOKhD#&IPS)Ef%RTtxeLWs^&oZv9HyLjP$2FkNJ-NHBJi=ryLB
zdJT`rvHXnl95N_t=QQEBeZf4|M=WK({=CHLlWZ^38R!0&<*3iU**M4VByVEClaIx^
zlf!c!C)@b|<?!s3>6FceGfu!tIq+4?G{OAIGa}Z@bu@i|an?&coE&ekX(RLC{@HYY
z$RNkV^*Q6>10zR@|C67d#B{bj{%Cz2)98E7CSr387srErgy<&e7&<|EV`ClTEYHG>
z8-FunP151$Os5^VFJqj*vp!<6zbz{?Hf)Y3iNy`$re0sh3uzR_o79a>Xcs95TwI*f
z?-6r7wetVW$>hGn$%NfRH_CToT<XGkJ9$_K_J+bk+pv)?9nA{Ho#)kveN21#8g$cF
zj-NUVz+#JK=>rk`7^kg<U{U4xxvpY5`QgHt5zQL=pgIuDnS*j{#hKN~;es%T+w~G{
z4nLH1X;;p=F*>lgnEax%y@ry8O{6a2ha$|Ujd|Zh^2w7EhvBmQqCL4TvyEIUl3(lw
zB^akZND-YW1MfKvbauYM`tTamV6Nl+7pBqo--j^9>8rGz(+5VC^)T(`+DjdHz8%yX
zDGK7~Yj(Fc7_i%3o1|WAE5^BZW?9Dh;6hLr&O;cNc0ml|tjjCPlQ~WJaS?Ut?miK1
z_;mpDsed_uJk%NI=i?bS{bka{hC_zP{z&W=%K9yKCLzk9%+dJAva|<|<YipYR%4(b
z)1@C}*JXIzdV~5qpC=#pu$0Mr{SyE|*-%7mYx*v$8*XxoZo+5hRpZYCr7UH!7oDEG
zCrDngl`1M=oOw<kSD#Dgpa|mDmq=sDFX__PwvS93v+|KF{X%}MPqKYfJSeL}@4?bv
z)cMMCvj#Tuv+D=WpVX1|Jm?(=%I4~Zc_2GK<mzMBgp|oPQVz%WzYR6*X5YDS#J0G(
zi2NA7f!*@qEs{o_oOa=oE91z>H|?cuojt|Q*!sA#+?%+z&<~kT8jdXbiyZ6!)C+Qg
z`HlK9U+j!~J&aR6pCt&=p)=#O=ggTVoiwGpdNEJRTp@C>WC+UQNW+y4fAgD{v+3D2
z8$~gl^*X=eIC66))8YTZBjs(Jy7$8&4$~NS*L0Ts7$B%Cx9=imKVsS|NB1&j(JW~T
z%TDo1B+h=UzE6%BFO=&g&3=b#r}uHV&NSMGa{}XHe@rgKlu68VnFp->nO<zuh2M?^
zTUO?3w%sc-<AOTlerVRtA$pT(JNX!wc7@EmEpqV94#$I2HcdX`lbj`t&CU1^6)}bR
zB7>Rukrqza(9vw?h7IfaNJ_xZRSnCLpTKtU$GB+^4mm7MeV|1^v;J_7eBp<OlEKMy
zI+14mMw@JY6c>NWWxmLdB{;N&Ha5Xc4okB>?6K)ylFy7}f>N`zH>B7rv9y#|xN%`=
zTeoQJ+J~-_A8D!Rd84A!$2Ko$k3VF{5MHAkKhNDLAdqLffi(3sD+!Zt`YYm(xBNo)
z?>oWKVn18J)sKBLw}m2K+AnuEvozMXfqiWI?z6uaiWE~W<w;Y+X7A?Y>%zhW*R(F5
za}4EVY13zpA40H$Gx?^!@F^xsOM8@TOQbw|2A3p+hF|C*yrXGo@=s42t(|-<-Feh5
z<wZWuwq1QJ$a4vnBR?B%muf;Y4Rf&6$hh#E=4A8n#Dde;)SRtf%9!rV;g1h;^--QE
z5A5V~B)k5R{=>Bg*^)1`?B0zHM>E6zSYFx}`hdSjObyHzd*aNKMI3)JDcvQs<TDdL
z=CdWX`-G;XT>lk)kic~Ei{p5IFc*(z3C%Paj5+znIwoHf@w4NJG_J?O!m`w-5cfHq
zzZv~}KDs9I+5frvuzaq3>VsQhoSKE7`PdhU+D^WgSCB~M<hu#MwI{dz;vf9>Q7*q9
z7q!SQmd2~b5taI+B7A=?m$vQ@=!5YR_`kJhP@e4*!pf8OK^g_R`f}$B^7GpI=Qdv|
zmf${p<XYs)gH<NrfL46+)9|xCbYPyyMbzkG&f>^V@M3)8)WjuUXUm)Rn{wn8+8kwM
z?SsXYD=+ef%912#pSusuJkckHL+_mWth?mM<A^o-7=NjiJr>Ke|KjmjpfA$~@Zk~s
z7&rP#_X^E4yNwW9>W_!TftW}6#wMmb<rnz83zU@yLR{3z=bppmi~JAxdmO*qeDrUi
zpR}iXrd(2;JbJWiFERbq(Z=4{>!%0`nGSH}ZS_I>P*@bq=4WZvk8_tGpYk|=vfbnt
z`KXk3B27aV;0y^UkdOO}q89VTUWx4dW9*-`m)P4!huiX!Z`>m*FOe76OZvkMZ^>sJ
zT!`_C!MG@nfS5G(rFn@-Q{Ong;_2oC>X*#%57N4^v91x=@#oH0Qr@_i<dX-_cm(}n
z%h%W0@?tOCuVA{9=l|7T{qMiBw3PS#V0?<>wsfV-a`NqTCgo`_cwf*z;xBdyMp;rH
zABeH##lHE;fTkYc3f4=kFV`QWd?+kpDbMtmkxE(w0rMxi0~_mR+o!+%?Qea{=1cv&
z*=%W%Vcbi~v!Y!8G&Nz<W%;E(%fPY(o@2Ru(q7Tf;XGepTol)dV7{034IC&73g%NE
z7N-D5dx=8Xe~@PVaDS<QG!?;f-~;(AIBA;}%&$UogK6^^vEl=Lk{=k~x$9Tf=YX=P
zUqOz3Vh@}#BiYrB0#jrKOMd2){l4}TBoo~KGoO%5Mgsp5d8mb$c@%8b6I$}ap`bqL
zzlhvYk$l?2nqO$szcHM&W#vJaKp#oRAsBy7UqoeulQ#Y(?18-8{uO<&SLM&~8)=4?
z@gl7;wCLmGMxEuC@`^h(lTR6#Ebz@9LrX?TwpM|BOc%lR-;~epC&V#B(He@OEb8)W
z_J}14na+Hc&%IYJ`ua1vkR0U0%S3JRQ@(Djt8cXVw2yViEI*!U;*b2My)vx{ZS5KK
zujI!<!FU(>IsPb;p8ML@ojmGmj~#R5W#=2Q2fk|L+Gpnn>5@Pnd{B=2UD77s*on0G
z+XvTYsce4<KTJSOe(J~h6-a1lPa-L5yZY?%Hk)5~fBvuA&p1?|ABE%R>N8YMeW7q*
zKWRVA;q){1*BowA-sw+1$`k%j*8j+#>o3fg##w$7|3G^oh4*g*d3;dU(o!GBzte{q
zx$;;a9+!%_@-$rT^+d{J`R(*&9jGbTUrWC9Mo#<8a#!@Bd`vDue~4mv`Qqk*zUK0l
z%OB{^@@Dm8<dcT9WUfA(UfHHV9++G{aqfOu^pE%h-F{oj{91W)=FdDTn#6L93yeTM
zq*IR^I%ps3g8@Zl=F>jxEvKK@3#m>&(wxs+KFh$`+&%^ND9l+;h+%v^A~)a1`33ur
zc`T0`-+A2dk`{a6(Gkjb`Ccd{{y-gAj@Eh~1Zg_zTL4awjz-k`Ie_IUhrpkc@5T@L
zX{U@C)j>Y2C=cY3pWv0m<O1&a2U&^CV;bc-eMSFRMEuR=V*-*bl%ugc)ATUXVn1&n
z?g|;&*%w)oPx<2C$Y7lF(6cz%V|}D)5A7Y4{&ezvxH}b~tiAxRgh94GYU}i+4D_FD
zfEcGe2=pT-j~82>u#lGa;UmdBkRVMt?ib`2CZqz=Y#-Z8*`%ox>XQ+etxtxRw1*SZ
zC%jqY3hEaEf#b&`DU#&m+2Jht+&FItwHY-LXIq?(<d=9(e^Dk*dF3$J>FX6?{f-PL
z9~|P3)Sb^FL&op&0MYUDyqP~D0_-K#FwQdecq~VM)9cKa`a|YEvZHNrk;R5USRhY2
z+JkzJn6lic;JiTOusi|fg`cuHK4kF#OxoCotuQq0!{<!-V_7jA8qX6KM`OMXo}F~(
zzK)+V={&A(md81`>}Z(Ad?P)}<IY!HKK}kk&fH1UUPgOURxU)4Z~zrEU-ZM*40!|J
zwa1gc_Q~esKD9WU>o4;0$MOWMh6W57W#T3epCyNq%%gp&KFbF6<rT<&oV4^@cz7ZI
z-aDY><loTrWcs5kPs|2UAo*Eeu0GNp98mH^$>rm8kB?*rG|n@`#h6dP-=fJ3%eX0z
z2!4*n=i_BX<!C4nrw@=Oa4=E_#-%;J-zN-5AkFso>60C=&QtlfZ7$zy;_trlcvQ#G
zl<WG>@%QP|N0LYzdzkyEq|L}j1V7RQv`#k2lturnmOB|HkNTO}Hd`N3aHrMKl*i)|
z;-EepH_!)3OM9^Y7>ohzXy@OgStrD?8p&sx=Zz}QxAKGjwE3>Rl<)M-NA0YiG{?(7
z1NbA)B#D`TvW@)lniF+UKUjHy5ag!@_U(-!>u9&1bMmPZf%&5NaJWldmLH7|+D{!g
z{W*O(-);!W?HVaB{uD2e4YsR~4@g9Cz(AVz<LF}Dj)uQU+nC1r$lUqO)<3hFPy890
z`VASvr;80uJ@5<kp}qKf5*d^)`h*MQz7c84Av4Q4T9iTMq^SdL2gv%5aWjAX%6IqZ
zIdA(VQe60{k86+9e}Xq2sYaHWJ736<rhL{b=Cu0J9!%qp<>{~GHii6B#@d^4qrWs)
z^4LDqFAFT@i#*&O<%CFD`V+g+fptbc?K1&D4Vh1%zw%z6qn$pa>4!X?<KM438r22!
z8})%!(t)o1(n6$?X8Y|mPs&qYEN8?4D33hGn~Z$vFF#&DzhWM-vk>`hdtH~=Ym+&T
zclll{Umn77@_Dm^ae~;R&fLHtZRA0HROWcFmh`!vbo%GEhu1&Pd*~sC%x8a@)v_ti
zG%pmE4XmqAH#XMS)o104@xaD>nNM&_ns#=y>Ah_GM<9<s<{SH&6FAcBD{&7*NK1bp
zpocj9Mk1X*=1cpZe`@}-h%=w|r40UDd8{|Y!AMg-bGJQPzZb&!CNiCT`VN1N=6ZlK
zS>DNJ#L4G=fqFXmUU;bN_(@X+mM2m_dAK&&Fq(;3eyk-$LGru)V?ojcFFs1U>!Hy2
z*7G!*M}Ax`3*Gfh>cb;RB8No*Vk2PJo(5x8kxf3F?-scBk;iy*PW_RX+)rlR>{slk
z#6`%<@n@`K_?iDf|7U+X`K%A;W#Tffd;`+>qkQVh;~5$>pc~<Djam80xGx9n%x8aM
zev|Va(v*qHq?<_7=4g;0(vp#rPkpfe!X2D!edxT=oVO{9{<P4P3hX8Afgs8g+v=gk
zcw9tirg=pJ)0qlGQwHtH4G)!Ya|hX6`P}uNwBPzG`8hxHd2;^9FAd@9$<{CSmRzGR
z`-5rxkzeLdV}7AUlpl_ZUdZS8_v`#wv<vyg9>Dy$_D?aS<Ws)^aN+^Lfj(5q>SNn`
zUw>onmWNIPe#~}sfPhBa)z9)&*U`kZH&CFT7cWS#tSc|}wKU6PJos1vNxt;Y*NcPo
zpUKC3h76V$dnEZ+@Y(kEf>qd0<mI^f=g>bRG<{8by80+v<SU&Yo|nz{dJk4SQ4I3&
zva(s9_=M25y!b!!X*wAVh>&JJ8b4&{z+qY1<6k}X655O};SrkUAw_nOEHCX-X2KzD
zTnD=s>=6PwmZudOMw;b~b#v+;Qk+l6U_SK`;{!XoxOn(*KJiJKcEjnE;(;J(sgDo%
z6qx$NuIxZ01^l%oqeo*VbhJFL00z?19z1Hp6FAah557qPJ>=*Casx}2xTb!uJjL<q
z^0{09DKzbc<CQ2k?93-X;R3(j#Km5|j}y-<ZQV_HnJ?N~{bg*0qWSus;b;4>-s2V{
zkpFw$@8S2cfW~==9N;<qxGEfq3p8me3eggf7JE)99^N18U(#kQ&qDdCfM1@^z%4iC
z6a41prl#iRAYYcBRv(d<d7ySGE*RvM_VP(*Tu`Je%d>NA`;0zpvB?*HYz8CnSn@NU
z&)aa1;N)Sn2K-`p4}UXd<qI9c1u93rnf<fnF<$Y6gQ<`Da?J6{MfvQ1jyI+_8r!!)
zy}(GC;Le8~?VcBKwAeSNJl;<+uz1kGK%SgG+V&cImy}E{GqS~gzABh(`-3tuJtNH4
zZ%L6S?ajyWrj;lDt0MhFcnKHFO8e{tLYn+SqJ^aGctmMq4?~+8q;BxA`*?!uXm}rf
zW_&P>yQK!)5o28B<M9MOp+K52;4`23%%?y78HqdFAUVi~)gyI}WNCIc@1Qw($dB>{
z6=^eG&9iZ&*<SGm+uxK=U*eDXh88lQktiHazVKLn+Kb&!aQRq|`f*&C9qr@l%?mhb
z_TO|)-otX{Pu?EH5xwKbX?c<xsDQ@BIgTT3(&BH%owNB+h!b|epGXwqF<+tSnBx4l
zzsNI+3r=7sPgb``p>B?!{Y%>QFAI=n87T}*n&6d;81F?s@@dA!p9T&cg#EBQ*K5u@
zWq3$mbG=6^`*^R2<1a2QPI_pclPAry`iQ)uqJh2o^_G0vJ6wrhDqTt6;aK#&m0w=@
z<rQBh&Gm(;BNo)xPu?VCbQOOy=S8yU8U}vzyD1MXvHTcmMOf;SI_O~dQ9o%34s7{E
z7is3xRJ>*B^2I)A1oOC`{gC>QxFPdpysFTMnC}%apSqTNC;gLti|~`q)t}c5DFf{4
z!+UTFoj%q+i3CpE1NqQ0QB+hyTJo`s;sLp<FHbm)Jds^elp5O0lox)#*Pwi8<H~dX
z;X_lT+5cX2&PQf_bdcnWJ!E`GqXB>MuwldSH@T#(KhXyRc}Y2SF!f6rZop&_X8P|#
zti$_|@QZyhSL29Dp4p>4Jnt`(my^>ZpN188#`TK4?7vUpAN||u!-q2lLxyWV*Q_i@
zn*Qn5Q;wg*nf~wiF=D)>C_$R*ZO{8@<PQFkW_=$+kFhL)X&?080=Zj`n_xB{y@DH<
z#@}gg>dGJUt-V-%px*}b=RiRnynpZbS;m!T-L%gLNgEN=CyRU7hrH}R-Pl;yh+kG8
zKgPczcJ+fr@vl`#6Z-t@XZO0gx_(Ca=6r_Bdvgzx_qp7UywV<aHh{G8T|b_PrQ{he
z=`Un+zGOaS;=Bsy2YIq5587|@Sl^3S&2v3ZUUTjJm*_8|@5`Q_W91$B*BR)K)jJO;
zL>~2F`%#^gH~JSAC5sX={@8!!txP7L^4K=ol=>085^rR2uacHPUz}!Rfx;siX)oL#
z?KJ*R{b@cdh$4<3%@v=Z{`4Q#;qtPy@dx$~<k38$FL`-B<>Qb2S)TePQQDO^^WXR5
z-v^`1XC8l~S)OYb{#<?^tZli^cQTB>8d}CTI788g<(X5K=kK;}=10=Mhp|a3Ir*Nq
z4NV*@@>r9V7tCk0i5qY9Pv852{=WVJR{TaM+J`^V?5`*;2w20*{9)$H@;*Ax3<9>F
z52q1adDq`gANTAgY1*e3YUCx?wV#Ir{70JhABBGmU49a!SdQ{pziCgly?mz*f6Nzq
z^&P&Tseiw~9`1aGZI**mV3weK&Nukwh0zew#-D$`_wV=qcyCvqa3FB{JO*7|dD?%7
zJfS==TYn;^{UY;sNk(3uc%OLhz&|0W?@+vZjPlst5r7haqdl)J+8TXC<gu@?*Wd&b
z%=i4WXYvwQKW#^Soc$3izzpKOk00N)(T=>o`@MKTV=HnW{d4f-=6@E3`kRNc{7-*?
zel3UYfUIRGe;I$3&H6|`_W}A4(w;aI4f6AlpGyz@0DU%x|GS9K1~~boAI+h^jrd}~
z4^Nx=N$-Vze{#*#_g%>T2GTzNr97#hvXJD>ixu2Q-;3N&&x_tq4-DT=w_AD*gna?<
zP`=409Y&{pWT2r}gDwMn7>|U|KFlAKlivef_5tQEj7dIezH7nJKSKOGVC7d#KI!#2
zbQj{-dU$^}$K?Mt;`DJx<4-5O&ww6-6EN2A+W*-f8hQlsuONT_9Yg;s;)?+DzHQ{;
z&r!YQpq>5scZwea{qN0&e+X#$Skrt%lfM@Bcl@Lu1bqKFlm9c6eIC$x%E;$)kGz&l
zZ8r3L@V=E(p7bAq{-bn4^nV)kNDPL;PiN^y3<Osn^M3~ZrN5oc-vWEP@~-_|A2#{V
zfPWbBU3t>9;gZj1^G6}g<v)w~dceQDY})fx#6Jyi{Pg_=DDU_efUW^O@~Dx={NKvS
z|03w;bK2|l^S0+pd%uMIPvo@k^PtC}eC4az{6#tWu6(N1=;!ETAE0Y?-=Dv1v!RDU
zKK;?PZ#d`)fQc(jKIwjd_bkn^`!x9fTbs!z{e=(Ee~L6$p84&7-11*U`=4E#E&or*
zclIOy^&I*w$YvjW`MMe3qz?jaem_h1fxH>-Wa;UkKk~n`^iOm6e~EZK;G5qw{@024
zUC5s^K1=^G(o)@~ytC)GhM4^CBah?xi+xT0_dq{|^5bHLW<KZ7TzWUsmi}8d|8x$`
z@{a-jzRTqQPs9fUT>X?c5b_&NXY(iJ<Wv8>0H;68bH2@`+2&lDbGD-?pX1f(`wP&o
z0i3<Rh4@F&o-6xI{iJ^k{=eIsrLQ3WYx}eG1lT7xf7S=+M#%Wr%~}3oDDU_$An#Sc
zOaB;=@o*7w_P6&BS^5OX$j=OY331LD&VNXs0_4*F_yPL=u=XARRu$*}{@lBl-33?J
z1(XF5E-O`0RslssxfBg3QB;f?+ah9%1#7V31+ic>qGE}$V2L93XcYURs92&{V`9S|
zJC+Dy;s1PQ&bxQ^$P&N#|7Lg2nP=YV?aVo6&fL>U&w)Rb{Ev)S@u^JAzj$N9pT-<h
z<LP^tx5w^;eX2cw2p<r+S6kBfe9*B${v@n6^v<Go-o5xNxYv_`--4&g{dU2<cvOmi
zfUSSNg#2OH(kE_@w(!Myw1vMIv)YTf7c2e7>TCLCC-X191-AMZUjtizdm26mw(wtu
zZ-)=73F)`~Qq6oQzW&Tj@gD7)%cpb*tnh}Tk8N9GwdoH#27VQp=9hIFmpC8sL&zV2
zubUCdw-Fuz&%7wG<Qfkw|KbtoU(F8khcRD`{KX4P?hlK?yB~R7<o`Ta@?Jf{_5K3P
zYLB~I+REo&yfgasStY(CCFgl;Gxy5B`JatnU9Zi*`1KTj9`X5@cST$N#79N)!I&>W
zPdq!!7uEK5QGD-)`BY!by|A<Ksx|x|dj5}L{Nv8b^<`4t>5CHYmg4L2f76FSuDof?
zn76FNe~4J&Ek~d7aggiPfaVOAevM_9qU)!G{wLP;U^WYI)V^3b=Z4~b#j`=Kdl`+1
zJG@s)pUR`_sUd&L&q{drl|jy}sh@AmUlCX@I*&r%_iah8_7}_Fg)M#Z{}9(>lZ*ew
zcoy@=DSj6IN8gbCRfP2+y7%iLzG?W^eCy!5LVm=0xoUhW<{OcJe@u`MfD34w?+(Mf
zp~Ac)%zw9nr@^=E5Lj}xfq8!oEWg{r%k~ev8GIRBby(nWaDUjs+X2>iXW@w*`suHO
zd$Gze=57&>#~i0`C-|5syn0ye)xx*&#Jv#0H?AKacq80D7P%L{m|~4*7M|p9r1<?5
zFH7<FDZV#imDi@QwTErsesIUbL;A+RGvV#74gFvIuZY#x&x5W06rS#R%)jbO{`=n*
z!c%=ej{fV!5`O_({i%Ep#C@-dFkjpm*7bCo>c9hGUEg0gF8Ejd?g3x5GVq45=6l0-
z3Op3^R>)7eEbvIU8$9Oaz=PoSv}a52V0hbz$HKZlvHXj>r?_LpDxb~Z$rpz3m43As
zE8kmTJvhE|PFvsq#rpi!#s~53xc}(2FdkcbnR-KTe;e}3R$Ond3cLW;V#WDShw(vt
zCgH{Lsf{ig5UvLn-jD}^|2vSi?#h_7TZzZ7-<(gUzz%5@{LB3%aL>sl_t&&$jOPuC
z#xuz~R&r0$p~T!eHItvzhHKb{B{^NU8Ba;^qEz^uyRe5zeJMQ`tyjvg;xAA^e?PPo
z{vkcM|JtR*e@yWnxUV^^B(EWV50sa<KjY*6t3rJ!e7$=&xypMUe8ii<y*Q8icN@d~
zllTR$FAK+o@lyOPZ0_%dH>Cb5?+pIMw^ILy+!R>#y)pH<Y<Or-;z22X2LCpmDtz7J
z#`XU&a$|-6COqi6QvUu%`fYr+_OS;`zO6nVAiWdUF7Z<0KjOzydF({}ERWnzOYuWI
z<cizJ4BA8N{y)SY^Ue9@^)+;Du4j#<_{P9vhlcdrMSj%ZOs?`di}X#tBFJxtPe331
zW$>^5wGch&oxpN`S5$tIs}IlmA^2a4`Dwzp^1B({2DbXN^15_Fs9(u7XSr-~2!AF#
z51vXPsXWDX#Ap7+db`v1KcT&dCr3O1{)+rq{fe(fTY9b`?Ca2b-WA4Y@y#jL{e;Oa
zz2lz=?r%rd7j5I)6_};_-dqY#^VNOs3%rQ9=aW90Uui6_MLzFup+D-{@H}?wJQCdN
zS~Hpc@a9J)=2e30_d$uTNbw^nek#Q;r1)Pc{!5BgesO#&Q>?{gvHT3=aeBWYzcD`u
z$L>GF|HCUv`8l2TY<v&-UyjbLAMV%03-SNXJHfs9pDEsh_+$A+DgHRc`noZ8ug$Mw
zem=!-rg%k)e@psf|7WK7q7*YVXy*Q_6raoZ5r=m_Y~`o?FG<Pw!S0Q9O6A3)o@V8D
zPKxhM@tG;+QC~CvQ&ap*iVsQgDJecb#XOp77XI86&rk7VDLx{_Jo;)D-o+_?mhy?q
zb9>}*c@9hQCJ`^d?*V9Y&!yj;PW|^|;M4e|`ZyeYb5j0Qm~{``{lt>|v8eqGM7|h(
z%*jD6emG(qZ-$&7<Ql85isXv_6ZFJ`gS-dk0qF8K0@q_+h~A_=-0$_oJcRzTeUcu{
zt)wq$6XY^Kg1(a7h?O5M74F-}z4#v3+>5t>r_BrTwS`r_<@W{uy4TQnX89Wl_eS^N
zqN4D{JE8|BJQ{On+*^JW-dSi1Zye@-6JOs;_@)h|vGWe}yg4Df?J-YB?{apK5665f
z?t4ut@mCSILEcDw{RW5hiq-!<TN%PrSt^W^dIY)Z=h7&BLt%a0ZvNZBd!a4AG#%bu
za}7N{gs1kP=TRnCe4R+oT9=0K$HIDE^TqE%dI{RSjlSv7;9u@HSgVviv36J3oQLQt
z5Ak=%59cOXEdNKMtvtmiMXd5I62GOVAFTFm?M3o+@MPsL*7Nh2m4D-2$RA`p+PqIl
zkM4~gKz{G=5^K}AnEO)R)*j`4Pq=1GaK8ym({GY1f4k7=CM5Y2FRx*aaeBz_)^I)X
zS$$N)O5aI5lva6&k0!i92@ivH&tvJwsee9X<*oYAJ=m&aOZ9Ovb|&wR`CYX2Z}9<9
zd8)l^iT@W*4*5}k?EzbTw1)?wR~AG1l>hJ1mVR+}+*|#K$!b%1FqL<EqE}uV{BMQ%
zZQ_4(hmc;C&tE7XYY*bhsh@jZ3F%S)JY4BHJFv!w2^4~*NA3Gjbl>ZOT>d9T{#9Oj
z{%qx;_AwMoORwCoMJAUf?LmAZo#KWirSSTYzP8;0tNyMb{Z=2UpU=>TFDSYHgidDt
zQ{&Iev=?iy3V)p_Jn^H%KcXg-hstkT+TXf7NKt!`|KGsY{zk#4pe_C4LsPt4#G^4E
zi~ezN2wyxmV%0~E@}0JQsXkt!kSu>1TSgPV)wkTwBL91D8{CV>QJ#yU`g{ccubvyy
zFaIpRbYJZg+^hU&M&&R0!)VK&_$73w#J$RATxIk6xt#kA>%ZG0*E20+jlbKGJ{!Nq
zOOQW&eu!VZD{>ppRiDqpmOu5s+h8mIJp2y+t^X*$k0b9&BUJq;eXmnV<5z|Hmt6Pz
z%aiih5k4Ai_0<dW*Jv9b#$zUUH+R4Ayv(?^A@J{z9f*UWSA_e2@t-3;0@nP#|Ls98
z-Ynw7F>j3CdR|Gc=N++o)rqmj;yS|L`2OHtyb;>oXREDkfVTS+g?}U3!k4^HO1?MY
z-F-_4Pwvl7@oSO)M=|dZ`4{gW@gmHh;J<omC?B!Lub6d@V)s*$&xquY!>W(o#o+%j
z%(tV@KE1?O!IodiKgGYj?-945e$BnY(->^=9feu-WzTEW_pU?#^h(IT_`wwaJ>uVE
z)|hwC>%qPFpoleIFD85&pB3JFXbXQd=8uqnHmuY>dv~BuaFMk3+8<sL@n$LckVtOr
z@k<^`$^Yqu--Yn|RtKI5t2|>lO|?lb_wPsU#Rt=W%)huptLCit>9PFEl>41h^5;^V
zW&Dr*ubtvfDejSCJwu88ACi(Elj1^(|CZv7QsvQ)JjdZboO1tUikGGGziui#jhS(H
zGgJO2r^;teO1^!H^}ZwyPyH|E>r<?STqZvkncD9yQ$qW&_EVkkEMx`pGk!#niyy?l
zjVIz)Q@k9$_TZBHSLlEJeic~pT||AE|8w90Xyb!1>mAQN+ytrpiU&ljzN+;RKYbdW
zKa1tY_&4yTq<6Cmf_!&a*Vn@@415XvN3_K!-Y#OLZ4&MW4GPbTm<IXzt+Cu6f_&bl
zK`!?jMy$EK%4F^iCHWojCxc6TdBiv2{#n?bm)!!7hAn+pz}LY0Hw6FU``~F416zGH
zoEZ2@<QE`caA=9|OmSP>Og=iuufeP_Yts3FuYx~;I~)~Q&$jf;?waW({%wjiUz5Bw
zXPT~Kv7;2Gu)YlE{+j765<9u`>+lkh{L*Zkw$^0rB`rGm^@e<Hb$v}oYBku&9ZzV>
zGHdyTxU7e4`flyCAk!L2trJ8w(0+ABDGr6F&u_K9Udqy(VTtql>vvsW^XXDrShuOg
zppiQzkIeymvZ8o>ROU_|lxI^4&j-?KbUs(#zDoA8OOhb;N_Lg#fdjMIx`7)svvZjq
zn+|VuTMfik?o@t$oxe&Eb5nkOuzssv?@r;dyMtF4o9tY+IAcb6nWp>R&X)^yW+kII
zRF?iz#-uVWUcNW1Ztt=+>ooIQDpa{se*I_ENrlMH7n-ZivY<fQNBDSk)_yd6@!>bs
zZHgBQw)yiL{WZnQlYSPNHm$Q)-um?Elh5ZdpyW<=ZhGdR9$RKQPfYAoR_vJDrHgLv
zQF7<&!yV9bSU&5kN_Hwk6{gxH#!`5h+@cNZvia)7PD0;ygR>~ST*GEZAEV*G+bO^6
z>EVB(6o)SZK9=aW@s^6N$z9T2n(TZ&eBo!m`6h8EJGTDi&_#R5dA}+@wF4=P-cI?Y
zj$Ec=O-=jAPV11ZVJa>1OM29teX?Zd<E_4`*m~`;^`H;0lwa9|a$?Hi+|rCICfRH9
zn|ImzzCAOIh%FAb^I^v-zx>qO`LfT99W$mdW{iT7J0&3W%g{5;F61ngw@eKKM5oT`
zbWyvf?-!LNzouIGz*ke@w@KVucoN7?eb5(ra#Go;gO1IP&4yL6p|8nqOV@({Ly&SO
z|4sSEY<A2x-5=0WQM@F`TX}bDVbpccl-&8mGmKVNut73zEiJ5wU;C}Km+%+DQ(49N
zkUNDZmGN(rO72|!pe^{xptaf|lRKrik55SW-b?ZN%Fox=cFojeR34TV-KXKyH%+r6
z|6U>S?i8l#O{}B2(;9ufSCF!Nw9e|!x3DI6VW-|O>d2k?m~(mFfuEc`J_%335NXp<
z?kEaWj<n0Zl(!CWuqmZQY4(m1cfqf|FAND(cq%`Yktt=U2YT!U*QpD6rM$_lzq<KD
zsSH?P%~u>!!7fR2Q^fM8vJbILaRp2kZznb%=_nCOaVTydJegKFau?F9J@(W2?LaO<
zKIB(*>4#Gt62Bo|o!$CwNSU6c$esG&fB~%hPEu&;>*4Z9oIjT09qp!<4XsqikX;C`
zo~o+Kj)Ki^nR_>*zojJ6;wWS12Co`|yHLL?+Wpk-$9CTlP$|6cnD*(ri`b5p?32!!
zRGbvTlZ<kqnbBUzhx{tM3v)B*I?}<NN+`5anSz~!e%p-XV@mn8K9i+%Ymzj}-mTlQ
zwtdH1eMaQ-5ryZQq50j>ZAW^2v_37$^C^Dx80P9Ri+y<2HD#F&9lPrCBMx;rM$1^5
z^6MuB?ya?7OZ9V?uOBjOc>e)C`-JfP*y$<{J}k#Ko&=!q6wlb~2&X?OD|=TMz1@Lh
z##X9~<j%%5jcih8=UlPfY3*)rcMkQTGD*rg%mpZC*>Un^s)GgvbH{J$p<4U>(q*SG
zy_G)%zv}VB2M!!qkHYBv`ugybDPrSaepMccH#uu^7wmK_h3A%j`om|9OePwGozfR8
zh3CtP59Kt8sCN0LG?xu(QqAKf0!1RfDg%mxOD0`9iC1Y>zf1-IU!KZu=&RwB_;VGZ
zlOPRYg%Z!u&qwn7r^p9V$+gyH5B$Jo9$z$i?}GfQZG<mhF`#4@{A#QVz2D+ciQU0W
zK=Uw#r~J~qRg7NAo!SER>({ik$`pLOzU<{H6siBNC%Km1<ge?9O7V90>vQI2=6b&>
z=eVrpPI0#`Yh6~E3`DY188SX|MXAnchGqHndnc)!k;+cxM<MHLVkvSM-d}Ta<9FLl
z;wUX+d3G~~RvvoYx)O$F;|=m_6Y+xEcC;Hk+J`51#P^q;t@*#Mr{8>C<-8orCz9Qv
zl;+ScD_l?4pA{#ej(lGEe2VX%bFEk?q%_N|#%P^%7ORe!J^QjTyHExpKl+-{+$lBl
z<vAJeLcHQ`?z(Q>y}QtSR#s$v39axqM0)Ngzdx4w*Dy`tC7%;|sg<*DlS&9FRJkPe
z8mbOQaauBz=(f0#U1%?=ok66h;5Q0Zm}AkEls&64BEJokM={fm6<FqXLzm|-DA{T3
zQO?TT=(^E$Ar5OBj<(UBHYj(Y3^MxGfo2?jJ9&NYSH5}YvuacS8weqNetS0eWZ7b$
zzECb9mMXV*Q+`)%ssO@Kc}T|2Hf<~N^-~&J`AKi+Th*+Y=t}9o?b9N=wUS<^5G-%L
zhRaT4J@v3AJC&4a#o^nt?^im6yeZASTo3QA2PTClw`K0ys<~CyR$aqiDGq(=IEa!D
z^TDLvcJ`%!qu?*}8Fd)>v+xG;Wug9517=r4j|hJycVQl;V+c><vu`g+qmkcG&eiTE
z=5Z>2#jAD{auvoHv*U;5t1@d>t<6{eKHkuF6{_~k2z^H7QW}{;cna6T<Lv#0x~!u7
z^^}B;$I;J?mO9tyToLr{LcM7`tn_JBn$?D$WAqI1hu^(P#x<harH}sQPVG<MEQioT
zc-Dq;Jk3@=R#-|iqknSuoKsS~eHdp&B_;RjT>P49Nx`yLoG#y^U%!EU25hhqM$p3d
z^JG6kRVxbiDwnj9d%1|p%NM8YRnnv>JgC4dW${v_!AtPoWY2F)N@-&wdH43-P&N1F
zx&5!XdTu^n*CVkHbr;enw=yYw<u_anl`a4!dzH_?4mF7iBY^BwFP9*d*_6zoKEhX;
zq3%K$YF{?)C~afVswbKGeZ{rbQX^pMp~;8Bk$Zhv+$oAf_Hx#pUy1vHnduMgM7N5x
z%09GlZi#)L=DjR-3STno4<VPqPH9WmjfIbhaw+3#+?f$5xVN$ID`vYZ+bwUmi~!_b
z`Q@rmUhA&RbZ0encS!L@eWa<dOW~8R%<lAM_Kry0t3mpkGtQ>uKD6a})x{uH(j(Ye
zINYX$cEnlnnR~qxKR+{@zoL)Z?7NdX`%@gU59O9|_wpw2hR`LO!mse5%4JY;AL{hG
ziXSRgR{T`qyODRV`f{#+>%OfwLbHG!RSLhzI*nP}MV}?>rto|D^ec(In(RY*KpuOw
zVdmY4(bC^LQ_h&KILn*zrHEE#9?smI**w!T(-Vs0t#EVr;&pcD7CxL%UwPM~d}+np
ziiau|(4iH+(tkqoMR1tW1pAQR5!^TS<9ZhEGUeW9(ED4PF=3ANTVI}%YrG5R5RUqi
z_PWqtsI6ch!qLc=r}RUMl)sS9Eakm`bT+qFxoNx$r61Z_C;apo>-vmweG2|1Agnf#
zTyqx8%senN^YF|J249Ejcdq!%XP^DpSQuZu=(%%1<yB$&!sTpA;Ur@(qVO+S6n???
zWO>f>qn4bK`5XzS(T?A3oe8_G<HOhZ=^s+**=xCW1`4wx&3jP<J}TpOSMLkyQCQt|
zaimi8Yz&hRM`ctRKV=N*Ny0hGxrU!INBoreHv@$7rSSZ?#v$<+rynVar*Q74d@R3X
zvyPP}sBrZ5dVs*5YT*VIvkXx=P|Z+M@v=`IIGl8uJK-`n^)hV2n5TB$$?cxCzu#ce
z7^8a87xvuWD!Iy+Ht=e)@1Aj;yLax~87KZBT<9-ZH<J6;(YV8ppQkBqwwCjXXW={y
z@7mRmwb)B(<mpVUUQg?iz1m?JPq7B@MTh;#UU6TT)8A>i>Eu=W$;m#XKkQau_ZcPk
zr{#+JbKLVM?$!RKY+l@zS(@C3cAisvVRq8mHDG7<7x*zOjJ#F`az6;IlnwHxLEe3E
zrT4|5_v+!O!U^$S>V0UA-oTBv?8A7a`9_h|*Li9`*oXAETpxZ@Z(+r&`jJ3iKEZt`
z-ztsDYcKKPgz_)*@8z9qEUO}2mVTmPGh$a^VaYy>=Q352TWyscc6?Dd;TffBFer*H
z8IgEzby;s(P;Z)0Z{J6?jzFqE+I*-C)W6t+XV4(spa(TreOF<rG5JP?SqAx&OnyQS
z3%fz#&d)z2Q%d!ehMEfx_Ap6F7W$MA)CcVYPh^U(tg7khRa?ChP(M^V3uCHXLslkN
zkswn!q{la`d>WH>Mq<LCJx`0JQ3_LfZC~3}N!?0f_A)6&wft!gJh$6i?h2Lfq<@a@
zpWVBEc9;Iyo%?4o2Y+e{R<;<Ml>BMDUA42UbS(JaeiSJkp-t!!n_7*Y02IrnU{YKf
z8Z?|~KvRVTb4ZKIG^nkA?f4(|>p=3SIH`bOp+Pe-TA1u(<`q{3Z<Ir&CA7C3t+JrJ
zXrm0@RU`{-x=6se?6~YH*&~xs6<3lLVj(viHJ(VxpL8$otn>a)wlak@CUsQS#$`h>
zv<cBD%;cI-?^AW&4Xw|;q4ha85Lom0mUeePXck3UQOcj%;1<gh_2CnZjg60gxO{m?
zhw7-#3IlT<Eu}On0cvZZy@ltIU{k#_z7xlY5P<|J#iw>{b4EK$rgSFxqcKq^R|mI}
zDZUVo_A}8Ka9x)7Y7%*Wy6@roT*3bsS5a_f1xbRxP!BqKQ>$HD?bT{L1#Wpz+f|xW
z4ys3`TCy-!Wq2;rA+rvD9k~a`+UG%O4Wqw~>twoj=hadYrW%08^V4!gOhwLNm(Ws}
zxm;DQXRded`rPKZEpp?@t-@2;pvL>JRwwvxgU9cIMO1%O9*T#f*!i@S!fbSTntn%e
z(c0%Gl%*dhl0wE>gOYFMDrfbT?x&u5kW>SI2Tk-3pnV-A*MD3zSMsM)*MJn1H+iry
zd3?F)rglfecAYiVHNLGVtt#28m`~2iJem1J=BA9+d#N1-nPWy>$mA*KN`AMHoq7E`
z778R%yYFU7{z4}RNusQ&;W}5yhWJ9gKf+A<QTBK#k|lM(ocCk?ie&{}91P*U*}vZP
zGWBVmY?iH6)`q{*QGL{&v-F?LI{~!HS4!c9_A))Qu0{pE!8*dVEw5xJq}ZR*WF@C^
zl)rEdt?tmi{RQoJX}?+f4(-=%&z|qql7(~@$r*DYH`5(Q{SGE0C7Je|FJm3sK(5w<
z-QC%IQ(DGR8qNPgc<M)bXQ#grO@Fa$Og8@01WoaU{>LY=)tQ>InhrIc&>g5;l|dca
zD>a;^QVGu^WMx+>ZD;HiHnLCVlN1Z3K_`6S#oUq?bB!-5%t+1v$qh@=5SF>zGQ{4m
z`fRUWt{2ZrapOx?ua&%#|D;b5c(W;Dlbo(3we_z%@ITD|2OEy^@1LizMN8|lV_TQ~
zzIEBjt;?piE&~&J5<W!SG-B$K${)X*QWE)x=+F~<ZZm~ezkx&gl~#36^6q<S*sW0|
z5&S3Nlg;wZvL(#waCaa4tDH1L2pv+U@NfQg9Yx`6j^CW<BBzH%S9(jOuXIh!J6H5W
zOGSO?;=VnHdVj7g{55i3l>CM3jm9RmV^gtN{UP)TuA2T=O6KBr7piej|J|!(p?&L_
zXQpgAKMgdA(Pu4Ra=~xt8$Q#yk-1U)?T{Or8<QJHj&!|K{=+q%31y<37NU?jg&+J6
zs~%Q6tfSt-4P%gchF+nzTuNVqEBF*?pUx?+fx<45F$+I5*wiucuk`<pRaFiCFOR9O
zzm8xXg|GW9T_2TNmGNBe3W8i?O=th-+b*Qa3`%1~D8I^VK?R#FW=_-eil=7PxjeZD
z<0ikU!$^8lW<G!OqCfSGr2S|>Vj=Tz_wsP}jn>pDDUv7cLqYjVHIpsWNT-FVs#}`}
z)AZabCQLt~e@G@y@)SH~Dmz#1SviEkZp+FAtvgq`N^YJi)wg{6E?p>PO75Dvb}jj@
zWN{LkLgHRu<UEtjxxS42CLfTDJgPH-^?w?TB-eFgFmJ%aAK=xd{wR3}vzA8!om*vE
zb!pYuY7sv;G(?XGT1g(pG(FSq!c*-o9lK<&%<Sz>Mw0R2C+&}`(P5cmGsm$L+=09U
z%4KsDp8SXQs~Rg(KbrjI@mfiH%KGx_io}#$NuQWl#O1poUs`U2{d5I5H|vU=6}~ig
zjco^LhTrtZ7=u|d<$tW#df%hBnj?t2;LnmP{X4mxy6LZizp~`daaR57nvME$P-dC`
z56F?k$$w~nx{5pl4fDr(S4ATYdl;&HF}vY5RR4fi82GpNWu?1*^@1#BmL<7-x8l#r
zXYIL;l!rQ73$x0H+X%1ZPer5lq%xGU@UP;ltjnpruGq-Vl+2-iFfhOrGt+5Rp^gek
zD@w*c6@^!feMCX$BtrRD`EEp??i<AZSc#45N^)tX=VkWvi~nAt!zj?w^??8j3%LiE
zb6RD`VSY5&7&k%T0i}GJFRkh9AlK-RdxtgL;&ssR9&$Uv_D!zj`p)0v9WiSS;y?Ea
z-|&j}jrb{I)4mM1J`lneZw%X>N8<4*`7SB>#FTteO1>vyEKT;*P<Xqc<M6*o$yGuo
z*ZR}PkxyS0zA+Zx6)~S;_%*PTkxPlSCg0pYjNL!rvnth^`1T2XIyG$HxV{aaioE~t
z!yX{wVv3JQ@sTOkn(;@EDEZeiHsenT?=AF)e-3i-C+JyM2mTE6ZzH+*NVM&tB_5HI
zYxZDrh1VvMi}Prc_a-eT!8QA<CF2&p7u^q5`|5#NYuG0(E3q1(G0(%?y6BetOTHuF
z+Mai5*7t<UZ%h7FR(+7$8eVaah~<AE+T`LbBKBqdU&61&eM|8li)<9v!gvq6VG*B*
z{11e0d)kRFh|+f)Tt|6bHaWCU@dhbA7q;|EejfbMAtm?v<|gJRA|6j%cyUAKR&fmb
z0gU8q;Y~%@fP0HyJTb+5Ue?UL(qr+-y}l`pna{nNSl{b?OnguF3Gq*cwVu-AKOWXM
zdY7Lc@*^&wO)md4aX<cVVTk=2v#x)(C*cXm4}$;A9*9ya(Q<ElB1*37o0Y#<?Jed(
zDc05B;+K29V`?dWjfFE9dY9Z9*1U@^idbW3uP8im9KPHSqP!N(FZt(l)+X+Te1G(h
zH--KsJ|N<*n9m^mcuzmIuk}t3?$<|tG;H7Ch^I#UD&`T`y}Wf8PsHjU#?Qm6;48z=
z=(>AgeRF>wto|?gaPr&I`1lXxYJ)a@i+4fCd*ppfc=k=uOUShUy0P4IwQJ_Teaio0
z%FFgRlYi~ev_*BukC@MWT1>y>8XsE9pX7J_7x_QeAXoYPhx{G;U8%hE&Bl2NFGgNT
zdTkFqF`sicW3|5zFJn%DdJ<iO-g|cVW<&1h5PwVM{{V7Ufj8}$C)S=n@t%A)Q$DsQ
zpT57kHN{g&ukE=f`N=81miS{ipOZHW@2{!w?uz&!!qfc2z9AFu1KWH>JO%e<TZHlx
z9~ZIG(*^e})t}^Nq38V+uHVZ4F!a5!+V6Y#Jq5Nski;|KzW)h(&U^s(h8G+V_N+55
zOb+}Oa*c1xf2~%^_nGiW&aW*GdxE?Q{|b)xyxTJ3M&$Ld?Qthod^Y~5?_kA6B;08{
z1RMt19(npc|3LVpZ-V><_<Gp(#Crg~1h)P!z6!QI2{l$+j<!AP#PiU{UmCt45<i=g
zt52AGFy_CY?HgqAtr4Gzc@TOQw@gxE&3&zZi?>3rNv`s2NuDJ?SEKuV6#BdPS+wn8
zC+?JDjiDxQjalE2KbY(xC)OBgd(6rIQ2I;dXO*Oab`9^sd0klTM-y^w_Pv2$AVE8Y
zM<9>)kkj?2CHXYm_eWd(h_{S*E6g|H-}XQg-v#e?TWFud;dkHzA1SfMaNAQ%-*YX1
zPuM5O#p(lpOn4`FE^Oh8Z-f_T!u6;gzA}=FZ-5u_BOS`W=KA-*5AGJi7k>l4nDFNC
zGw?>UHOmawmiC-&&mGC%gj<r2L9YCod-3fN%l`{&@Gtp$Ymje){1)U3t_$fK1V0Vi
zcrX&44O@Q{&xv?jxG&sN`nN}Z{2JuHMy~O^CI4!hn<BrMJpiS2uk|8ltFKMq2K3$U
zgz{e<tIgi?R!OclZhSZ90~t?k&nWRE*z&soW;;dq(YI}V{D;8XVA_|bAF6-JXV5<;
zyb-=x6Q2ejo$wv7_JCO!?TK~=9Pg3FZ!|QM&xd3AAmWdCFx;U_X-}@@xPN7x60d;c
zJ+(ee$v;ZT_pW0OGb7|r>Aj8#>QS)rC%&OOc88bb3y447)9a-k+;f~<lJ`i-cR;?|
z2_^Yb;*b4rlW#eE)khv}dzOiHKW}^BiC0h`v0RU_kG&<N|2E9Ms88EtQ`{T2J=OjO
z^Gvs?{>6{Ly^}rm6#i7|bIy$+Jn<i3i|<Z&G4Ag_C&<O>@5XlhTGG9g|MZ@CKXxgN
ze=2XWU7y4gD9^Y)cT4dZYjI87EQGK8jYiv^jPk!Ra@*rg+!40<sOEP4N$;@Ru|z$F
z-dg3A>=}M5a<*G=r+>7zmy3^x<ZADoxU`vj@p=(!Pc)7H_IyRWGi?1!ygbDkKTSRp
z`I(V_@ho`W=b`_J4@Sp(tm&S~_;k#t;(q?};9fi<;tBAN)Tfn)xIOu^@)Dm6$MVxs
z@*VMS*Dtx(9uk&*@eR0t`Lt5`4uWI%dI8ju{A$vAFxvKT6Kno6CE4>$d~Qnq=SY4j
z=Izj%YNIaHpU|2q+4baF%nGmf-@|;z*!GB1___y~e|PYI4dx!``(TX^f5Dtb+n#UY
zUJ>7bd406SC+-ySb(rU&TMB<shWRDh%2T`&ZF|s(PeN~VOPFtp_eYz1>wnekX(x3>
zqE|go+OzI1+*|tph5Y`A&HuCP*(RlHeZ1$Io`-2qHrrE6{5fpT$He*$DwgYh>~%J3
zQu#@KJVBqrufiA~1KXZ+im!q3GT!s+kQD11`B>fvAGdL754CBG7Z$(5I~BG)z7+rH
z@{&BweUNKDXnT~1HGeej2x~rVd%B3{M!Xs3L(%45JThV~Eq*?6!?R&e81cm^`F?OL
zpBTw|VAk`LFJBM-#a+?1hnPk!-d?yT_6~cnh_#1=aXow<y8VD47oU%|Jv6E@Uxv0l
z!o=!d#y!Q9N6hy{EcZ{Kcl{Pil;UqgdD|W`1^6;V8*~YKaELF5$8`;?vKoZ8J&?p(
zpyNGlmS?HION0Ay$i9PZk1@@fh7q3ac_Y@CWP99*-(o<B_c&S#TYSTjYmd=*53*My
z)>!fZ+Ui%V>#?!sZhxk{Z4V#guYW4-0dyq&VWWdMpcLOHQTRjQr{D|Oct`z1{33i^
z!b<<+l&7Uv{4{KPM2Syf=(RnU#HUBR39PUEtv!hK{LxtPeT%j|q{J)H7M|+!d-7*{
zIEl5Vsj;rg6=dySdPs)yS80s4hmz`Y2s(Fh$e(yibdQ8pURvI{Lw63SUg&e_|I=ZW
zhxmQ?;D{fEt$oP<Y_#oRB)&Rg`PcQx_J|Wtj9BjVn-{hxk$As|`@q+t=X_41LMi`$
z#Ax-c@;(kr^DmwnaTPoU{r06He`4j|+K<ZnJHi`vZIFv^i{$F-+B52TbsCgd&vQP4
zRX&PO^R;C>Br~23TYFc2E@)Lsud%hyt&mSfXU2y9B|Z{u<DL5dHpFN773+DRaSgmP
z+V&(9AAq*}DL&oP+8%IX-D6pKDZVdB?{~YE;@2L4?S2zj`KzP8EkEMHaNHlZgDpJC
z$H10;wYSUBG0%l<Pe1j?+sKc#SKmKjYfnnwhom>&^J@ic;VHkHk=~PMV2Kj{9&Pzo
zdd}m9*!DORUj|!wh__A2cZDrKYH!EpO8r%Q3T)*s|GN>X<wyJ{*wU~3JVnxMPciW`
zu=yAN89k9sp!Ory^8jOoS4DjB9)|0Q`vms`knf9rX9o%awHbN_+VZdQ`cdMu{D>cc
zE&n^hPety<3sd|Lcqo$&rBCu#(c=^Di}_}B|1&~*#MeaJ2lK<|miq5_WF*JE${tTr
zGtoz*ZBM6DF{?fw)JC!>vD~}^D?MVx_r!N4`Cs9WV97O?7oWzSJyPPw(BqOle8gPZ
z+;Jnqe98Ff{Y$L(Pn$>n|B~{r`P`c1&;1v<#)mlm3t>y&S;VFHKaUO#=@GMiXcJ#V
z*dwvKb2GKfupg1!d;u%}mmt3@#dpHC2hgR7f4lz>>;0wi#qc87_6QO`4&S(S2w%^l
z&w#J`Yl&4S#@8d)zCc~(2f0}Hh_(liSkF|~zo{e_kB#`Z<TsX!O|GyvM?bnS_&5GM
z;`yZK_J>RIG@piiorg+t<;VC6!q#|c=@svUzHL%)e+_26e}CW)CD#1smN|jvVm^@Y
z+7(MY5gwlKmB`<Qzd1a}#qYpd98uzBDfw3^`DXC;hm_n8hi50O^s!y7tGzh1kE`Ir
zk?#SkedyWlV)TNugIw|Vi~LJ|#D9^$fcqDwl)`U-wdYc2&gzv~ndLh<=CqP8jd8ry
zFPob!W*f6tXJ=$*lx6i+ij_RtZ{6JV;mLj8yVapj)1OFgbZyr+)%vq_NIKhkJh=&X
z$)qOJkeQM>D)VLL-{kHvxhkiad^p6+a+FtEH~-6e8$?ZRFy=FLJ?i?^^{wk)*R!s7
zom9R~iBw$DsETYweMLDdTr(AA6>XrA6*>RmV3Z#6s#cWC<jTs+sxrA&ReY(hw$qvb
zbWP(PfPZH4O~+u+++J?lqnp<GU`~`@_M_F!77q51|I}9NC>s2VLM>Qc8otF_*L-SL
zw}g2O6~m`Xluigk;UsSIez(k5e<*wHhcYe+jYv2q>FMOj<$3$EqN4ALij7uO^juNV
z@LfgUAW%5EmqSt9#E<%|UtY7l--NM09OWy?nqRi$-D>@k`mN@>q5b4o7}P4;Dswt#
zwYqIx1+&?8s0F4Ye%{83dSyP*aeS*<H@?*qoaw!-WLXNQ=!#rH^{w8eJUKX*Uv!$u
zUlD(DLt^<2rtX<C)>k$ELx8eyB%>&rRBYB9l87Dqbn#Wv>Xp)*NB72KZ_X6I&lM-n
zI$K;AwRDRJ%NdJjx(41rpTHV9l|r0%g&}_Z#X*@@(TmZIXoaJGagaN+BK#Fuja{rb
z!yk(k(>d!Ii_)y}Ta%KTjnM2hb3sozEXGG!1f}~pX;ve+{HUIz`j6Up)XY&ccQ|9z
zoKZ7(x_DG^gco@?O50k=Ur4EjleL`st0}dCq+P!6?dUX*@t<+;=iG;`%@?lC`)Vk1
zr{;{RSlYeJ|GTB#PwVdZFLu{joT(DZUDAeCb+yVky+)U-&|K$YIx)CQ;-zUkU*=}>
z`_|6o<xB~zF7vM+oARMSjn6n+P0yU0Sv&Js=5)UCV#dbWHv+_@GEuufmD-rdpDewg
z$$XGPZgRI5J8JKh^q)N_%fNOF?v$4>IyUm`xRI~4lpC$F#ek_EsoF*#IcrkBbV<>Q
z3hH!4MW(3Bx-S=vN2rPZPJ{kDH|H9-Li&L6v%So_D~%J3uKcT)7s_1qFn&)ow>F7I
zDc)W(NKI#xjOxpDI9rD+btvl4tegvs=RcH<|Dmjq)zAI#M6Q8dA4sWGv+!UZ1L&KK
zavd_^>kRKs<s8Q6e09FIzII6Mg4+9P7j#~*-o5L6x88&6-P?UZcfE%&clJehd`9fA
zGYYU9T79dX7B;iGnJZqR{8DExlLg68;rnZ1xGw7Am>_2vbyV0IC#34oMHYfir{Ie<
zh0JKm!;hGp^T?Fvis4Oa$j{X9;X@SOdT1&2r!Nk<%zcP{H_@_Jy7Fl1+a+JxC)rR+
zQA${%h}ze&R{6I47xH28sy%Fu*88o`S3QwyL}T=!Dt%o9iJHK90y8UJdwyefg;qZ8
zy4FeM)#B(Z6_uIYD>MA^F{NIyeddNSnTj2iQspygg9WE1irQc6vt3=rZIID>&e7o)
z`-0n~T~G0)%f*R2p0+eoT$-t^)fRNM<*r&q?ZZvRhLNs1@2Y#sssFF8sjRN4tznl6
z_SDA4^*}3={;LYB->4iB1zS!^Z<05<;ue0O&+~Igon7zFdI**eKWmSxFelJB(b~=8
zTOIo=GLDq~WLu;llrM!{nlY`;gaee^D%@7=Y#P3yzlag)BK~xoja{(Ss3o_`BdXvi
z1{$S4=*$QzgAvOjjke_Wrr|fW(_d&y1mbQgyQ%EPGMP+SdX1?t!YopddB#*)O14P2
zIVV5rb3M>r`NYV#|CzL~Hr_Wr^}66zeaY{G7H@{;rOgGJOD5L|OvJ=sv36G5IrG&M
zji@~tz|9hQ?TOBz^?mkgRnooHfmFX?+yScPOSu?=9zp-hxap3mMJ`iW@AAGLtWPx7
zJJ*P-#poZ<D;tNq@1Gg&R?=x#z)FKcT5bGTdI54dQr?oe7efpy<!RLoRC!~&9RE~T
zM*n_TiQO{f<QWdzDF{@ae|CXb){g3F^aY^2X}q*=m(pJ_jnL;^xR!nM^2L(`Wt#36
z%G|;-t(jy#zAlzwo&JV$;uTh?aQunfvwm)r_E!4I9~G`|0TL)5e3MZ<CQ}%h$&Yuf
zM`T)!&J-Km^t{A!n~V=3IC4l)xY_N?XS*}zxQf}rJT}eBjBt;x$sALY8Ca9qq9!xF
zCUaJeK0?&KYt@uZM*T<kK2mw~q3Fq6dyYf@=iTnE082H{l;u`)E2;WzN9S%w*N+~Z
zqn>kTqsO6XFFE#q%5e!u+K#%KzJfT+jq|yvr06QSnDa?T?Rfgecprz{tKScBw^iI&
zaTc?<8=1>#Ha8uU{YiEscHvtCm5IamX#VzXb719xRogK=oJPRgRX*N&L~aDKk-0*y
zfGf4*q#e;}C@TIjRIPG7S1}FM7gf7y9<EVVO74?!)ALmFPs^tPQhnu=9R4%9gUDZ9
z!6!KW`eN6PEIy`F+vjrrOlEY3aI2}oWDN4x%sTA7BCKSlyopTZZu|vA&Vd>K1%B%6
z*Okaw*%pyvJGH@so3Xwom&G8>qwJbYKHVG|y!7luU&Q%x^p)s2$aR0+foxrm+1^i!
z?}Bapzxc+K{0=g^*&bnispJdb_&4a6MEn$fe~-53HDacvP3!Z;r=aaO=C%HQ1U%}e
z@V;8SH>~yf7=N}tU-JD^?kBIoy`If~K>7wWsAbcpU|sJEu)-Hp=WaJx<#Qq23O#zG
z@H|3XiQao@SpOu}dYYJz#Q!f1|3lnfiY}ZU){`0U9Pwqyje8T<L$Ixv7r&6=*CW>2
zx2@q{nx0zR|1R<`J_^?QcZ@$<|KA16f1p1r3+34cv%1rI{Lqx#>%zG!=fSYbvoqWq
zw%?=|_k&vse?8<Yk=t+9i+@~$`(u%xMdP>jCY}S&9TD1-_+og$$P!PZd)xbR$xll0
z)QFEmt~N4h-!Kv#gIUi%zxi#6)gQjuBZPkf^83*7dUHL`iutc_9RC6Ecz%dW<)!qD
zL=PEOO7A#$T*6Z^YrV7i7rz4AZ_bO~j^s+u<&@v$$$ES7b+GvtUlQ@Yu%5Zu`WEr^
zXj{KwZ1S$iUS}L^X+5sV58{Wtl)qPr>t(d9XAu7jZQt*R--_gF>vC_ufi9N3PruNA
z#IL2e8)=H&Zw9a5zvO;c#1G(C<BhG479W`6Nhv-8w)N9;KQ+b2Mf@P<Luh|3t=E?P
zFy!%i>f@-tHM#!_a{CQ<`9G2Jx8FP$ADq+&*=$<BVe9wxba6QLR-fWM;fsz4>zl<Y
zkM|OO89oV)f8)CdpB???_u24O5r2?!|9Q&&e<FU3@HKv~_g-l4;zQy3JwtmDtGqW(
z<PXCq!}rXglcHv!Z^!Q06u%Fvz3JJ##!vgrS!4SRb@6S;tv@^q>v|RQba=%FVf~Ec
zV)K7K=Go|9njT#{ev5ni&1&(V;OCOxuofQ_vBuK_;7eC9IYHU@8m~7#82gyDU&@-?
z4@4fjzZw56tyfljx2MAY5xdxbmhiH<P+xN2Di!`T{I4lJGotWUVg3ht>(@em6{~;8
z{6@sni0>NM>P!50*w(X&HNUa(r3mL?Yj5H@*xHv^6Etgo8as4-wD83$@0fRqSnqzm
zgj-tQEBUv`?KhKmfTeByqRd(&e9*UH{jPYsh=*d<JlfWmiF>A4b6S(@T5>#W=@skx
z9<$n`@c`uNZ@;uXD{UL$-r^GvNOAXw7a;G$`1HGH+G5Lf8P-zztDkJ^FuFrHsJ%48
z>c5h2_kVD&cX<zWE7iAn5gh-9^NX-ue<WX7&ibIXAwKbs@GdY$|8B57_aat4lAl3(
z<Mqw6;CQ|A+3>@iO5th4s#x9zj^(Z4_agUKrrckZa(_8&=~4N-$WZu8>r3gM+J!ZI
zqeA(Mci^T>>uE8%+c=CyTYHpzFY^CEO({S8JXf>z%oE}2_9gi?+$8;LT#2`Xmq)w<
zyzZ}q{8qy6j{c?TUy9oyr1O`~Z?)bw|9@~l0r%T6e$6{6%=g7x!w*Hg1#IO%m$23T
zU%x$EZ^V7k)*r;{qfI^^vz|#Tdpumf#2ce8<u`qZ%3sgo-}t!~yEe=ZY(1m6Eqw3S
z!M%86_~L(u`0s(Yf#cuc9Ul3Yya3yJNb#;I_hO4r^2sUpqsf0P-yXj6%ToM%McfPj
ze}%tap96}Z*fGO3tv8fh>j&&N1vOS^PG##w#7oc@FDb2;d@+)5i1|IV{l=+S_v5yn
zMZ7HHwK1Qr`O>@)p7=6&|H)y!i1^R2`5y-#8@U&s0-y4yu>M3mEn@k<hpM&phvG+I
zTYo5i61Men!{K+xf4tuC-4wqUaaY_QOd;-fi&{&#|9^-0RbIyL!kb?i@>hf9n}}Lk
zk0iOS*Za>Xx&H{em>+}XUopu2@6lF2;=>TwdLHqqDLxan^*ue2|AF+`dQ<T^@Ef0m
z@O#7U(O<wC|20aDO!8;^s}!?TttmadaQ}_Qb8c+pUc3sn^<v^O#w%NYCDw1q&Z-Ob
zFJ2B?{fXzL!s`mh?l(+v|A^b*e_ir#;fZTuTaP8~0b6>-pOU_K{o~oN);mfmJ@I<T
zYWN#O@o%QCgu6PwnVNqV^(x_4tqSEK_p@MY-{Nai+z8umu1bDB<q`YW`k<J#KFHdG
z>hnnaTmKUOHpLAQZ;Jd8wEd=}_=yyM4qJI~>GIEiEI#9t{uJ^jo`kmFSRIUcL*ldc
zDc(56^{}<ip~&Av54$e32jfE+FL36^@><T8Kef+Al((%H6u$;*yp#JJdJ5Xw`&i68
z{dNjZ?NgkCt^ev;5r;3i9^%IC^*o{__i8^=kjL%qDA?BTO0NDGw>LiJX<EN1`Ro*5
z5V6Lqsra|`!s0VvYfs|sVJjbnr}b*_Z^-Tm$LVQ+t$%KT`=`(?t&f#l_xx7>3jZP+
zsjWX0UjxVS-3O0+Ka{uRC#pZa9_m+oe2Qnl7M{lU9QAqZ1*P#`<K?*#uLIv0@fPIA
z%3uDsjPfVeei2sw;>#JoV)s|VRvwaH4V(L|;X~2Z-o$$TsP)1WyZ<c;-OpP2w8p#(
z0t;U}3AW$379R*(_<dkq^Ub~ZesnB<JYuD#5j`gPK3)7^im!(4`}IRGYdkXd;uqmq
z{&Y&t(ACWS%9Q)BBKhHjw+;HIX<@yk_(Zh*CaYM_4~&n(d=T2cPZmr5*wewk_=uGJ
z?<syI#UH@mKU4BQD<wZK#d9O~a=Rn-9k0LK8`gSJvboyzqB9tO*R-DWOyqAL8s=wb
z5r)Q_c>SiHKRh3;=e#cB-{H15d`au@d`7G`5p%zYwZ2pNx973q4`I9i7XKTz`LkH}
z!?F97u-%_Y{(Z{7p22q6Hawq~{CM=v5l>9XZ^FOUhe}<HY)j6z-c<f?hHZW7Ww6@A
z^?QZz#hUNLd~S-bPx0L;ekNk3W&VBXpID!$@n4)pYrP^T_PXRf9Ow8qA~hej-|V~^
zc_X|!_vP5@`j#kl8<bAP`Fc(-m8?18G=D?!I_Ng&cD$|Pwvsbjg++f@c_mp`JrUM<
z)p!nvjLT=L^F)v-<}w9xQ=2LGnQ86ilKA(2-JAJg9tOA1A9a+I9(vSKRh-Z1anw=O
zoTs4IMXn&UJV<}q^>598;oeH~$FNs;A<O2T{^cyk<|>Hvsfky*CsTZ=S6%(9+`yJq
zy;P>9N&LT5R`#z)-I8{0X*;*D9U}K?2e(9zVf?*ZM;TC6Axqv6Y|2<g>XuUedNC-u
zmg_8&tP>h5cU$>+<!7nlq&c!Bo_>HO{U^Epyq_eUGE?-<<@2rcS+_LnxCVeIE->}}
zKAEY6YEHXg$Lj|GDrLG~TK{%N6VN{Xn3+Uj)n>A;a~BLMarskPQTg(Qe7U=(qIM=5
zC|9^kE8NVA@@vk_6uY~|?tGww$j$BJihU%~97a7(znMZ(Q1!`K=7Bn-RB#!^SLCiZ
zSy<#x<rTRzP96P0Mb8f^dh>r^Mel<u`W#qMabN`@HP0WlT3*O(UdWVpbenfnxozi%
z@q%-OOm0dhr$-#Vwp2O;Wd4~7sUGI-HLKye{Rtg*Kj)8|!fL-6DLZ>;W`o2FDQ-FQ
zu{x!9b1!IixM}`|V=w5L52xC2stl)g;e>Pf9aQqxIDh{37xZksIGh%RQ)2l@poQUt
zpU!9=^*HVMsC>tJKd#PvmfCHi)ZcxBS5cQ2GZl@lqF5|1jwqj7C@;G5nKTVoKBKz4
zSXs`yi&<6W#Vj^n$*;9pYKEpoAZ)a*z1AJ09rG!!P+H@mR-<N~FRzCRRI18&I{Ify
zgJ-Nl(Kd5NFK`o^*#Ni9FDZ9h$vofP8iU%d%1f%UNDrEUzL51Ur@`C{FNS5W@ktp{
zdG<}t^2;Nxpz^HHL6;?GhDuk7Zpbq>^q^#Vvq&R9y~3e8=EJ?O%8NY`xUK4-a*^tg
z)4vSC>_td%6aFQW(%7d`42sgG5_)UM{!g1FDsJkZe^MRB=0-EOSvxdIS#Of~_NT^P
z`rL;j0ddqUpjQ=zjd}cpV56gXQN9JcXLfJ5d%I5jmDv)-a9Ih|){lfHY1aW)av$2~
z1{RnrTRw=6ql4qnDErgYFUy+ZyIpq0Mh?%&<QvlN-qdu+S|Q@EWNZ@q(XxrS)oEJ)
zqB>Qp9KxxRvs!B#HieaaB`IKqi_hy~m!&w1-7C@Z-xV!|J1RgrpUt6p3Z11(>2fc7
zSI~hro<*zTbW+%guethB-GB$veo0ZXz6k%}C)}Ey6n7YRy$|}2yoRf0unA;G+1Y4Z
zk6B$x_m>MX$7@0!OR?_3V)+{pYt6+O<Z!pO!W>6@CS2bx%yGoGz<Wo0Yvf+<08S^o
zmANqI6rTaF#~vgY{X2p~I1h)VBv+l=9wl@szlUJFX5tg%F}KD|OPoixTjXB++yBC`
zdoHJbkEnSchj(J)&+#wD=){|%ABUx4R{3{Eb}07onu){Vmex$j{VB-H4-WBZ&4TVR
zv_?VUiD!$GH45S@U|W+Qz7n=M`AP7>@GpHPFZYV?-Nq1~=HuhxmiEx|^L6Cf!;fnJ
z*&crT;(r2yUmCyMAAoyHzxWoKeM@_MNPcS~SNv+*@g5-iA-|tN@9D?FI{@*+8U#-a
z_jKZiQgW>vj^*4wHuIln<ca0_yfEfBBmdn9|4wvEYbqpX?Wf!0wou<<y+=7d;aADe
zQ1tX@kH1mymrKK*YLbsb-xA5Uf^84LmoV>6`Lq<j<PC{j<#!J{-XriK__a0om;9|Y
z_}Bgaak#N}wBi%s^O%9FJ&R9<?H#SS2-`bfvGNo9*9<Q9KN61p{|dHu`VZm%QrN;1
zp9|X_Y~ood*7#)d3gkb+H+~h~VT&{9n6<{t)+9*27TO&i>PHud^(fe`r-t?>*5lvL
zKMCQ9xstf*NWKwl&pdRmmqVx5Xz3k1)~<}huAJ>1zTC?$eurNmyfwYE{}pnr8Q|po
zj)=lro3I{6ORoBg8S7^5!DejkRUWoRLjF6V|H03gnS2zi^jZ9Iex@PY3BB{%VLVzL
zPei^?B#&9|!1c`fmySPj|9f<YhVaf_)0J81mi8En<x0Q!Y0kC>nclg6(v3;mE~R&<
zpTd0(D)DD2`R6J5UQ8t7cg}mm@jK^zQoJu5@3HkTlO0<lr1UI-<9FyU!1rxZO3yP9
zFTnj1=p%j%*MITb=t=LC_+5C>!nVHtZo}M-@$k+$A-uccZPB*plz1%q;@e8{gH!UI
z;a%Ph{YB~h2bb1(&#hPC_#O2d@br9$U+xEze%o_O=~>A5Wce4r58EDDVm>!_+a-Hu
zi8Y?t9$mM?$5NkFFNOJu#)>+|_dJZqj~x$j9tx}eCD%1bYnar&=VI1<r(GY!1@xPD
zl;qpOv0Trzj298fi3I$>9ZaZE;yLhJu)-HlPvo3_CchWE9Z9e4$s^tgws*YZ-Qal7
zpIuV!^-j{>5zGAt@YP?3^c%~+%0t`(|Mm`B+#ZhouM6v)x6&`UIQAdE1DCuT@m-L-
zlNQ&(ar!q&7?F?vR0<-Fe<1BK&i`OI-m^&CTgK_zDdPJGQzhTh9!iqySy<~2Lw>}4
z(H5R~G<uz0+;gFHecgZ?e@ma_+oB~`{iWsNYw6GN8i4Cy3t#e^V5QIe$9p_UekAhg
zTbK4!Ito6yE<Dzg{6e(CQ~inOplwZo%6mQB$MxL@Ufr4noUXS1-zDqq+K2oryyq}l
z{>5J;a-}~l*L{@cb1m&bB>9L$F8{h;iuWkeTw!wrwfl#6KH_cR-Vy7;p}k{~T-#mP
zI~mpee6;O(B)$o4?!|vi$yKK&XJ~SFqI>J2f?{ZLx01+Vux!M9-tXUO8lMB(9w<YR
zPeQk}hm7Qt6FJHL**hc2HJ+}?|E`IAb^iO~U+ZqVB=6kB3t@XlD1HjIH5+2h*)0Fc
z-wyOAdj};R2gmOWFNN)$l;mf?_Rg*sJe>YA`QJ)iD6dC&sG@hk#t)^qF=34_@~=Jr
z<9G1!J9o(&6S-m#$8x2o3-w{|ti^qk`cn8}ZI5B^q{V|Hu7Y<)xAYEF^4$};;umj;
zw(?W^eiDK0=_A%V>G+-f+i>?)r8NQXM{=d-Z1n%y{`3rDC`E1Wyv5tV+OtSCAddGe
z5^G(h?HNQ-xKZ@)eOL&s@)G|##k;3?|A<H7ert5uhIDe2Smk5yq{Y%!UNUREHSUS|
zm9kR%6Tb<YfAJ@<wLkGk@S&fT-ZB50@{H?Wdn7J@JiMb-`PL+Im4{e+bjR**AiS98
z!~Ylm2c-NT_<!)PveO=Gw&$2wdq&#$ChkCZt5_JN`Z0d=j=;*#WAs1mK_w-=js6wC
zbAJuFz2laA0c?8;4TL{Huct{2N_;ok>PP$~T5`Ea%Qb#of{ynv`!gJ`=@4s8h5WCN
zu0>n@j>D`yz#cxo^v?efI9>yAC>*Z=m;&1x0F?*ZS2Zg?E*(wvDY<yd&qMnb|1Oei
zKKL=(_S_Nc`BluH!tp!eG^?Y<?pMdLf5~Ikp6jvy)p6Rr@oxz0CCX#73)do*dKMh^
z7(5(Sdy)Jf$ghPtdAY_=lV5^-DLQ^<`~htD<C1@vlIwoL++U1&1mW2`Uhz)<g-1s6
z>v4ZK39Gn0+^>iqh6lqK-3=TL=N#`LMAvo`6Zcmle-pi!jo*}C<H{3C{1I|{$1C~Q
z=po2E5H4NCD~2>4C-cvQf%mgJy1qNQ{En`EN4I2*YutlH5iVPBuHdS7bglfq&!!Kf
zqYpucMxH72b6KvkQ7?TevxU~K(7Lg@vazOeA);($$GS@W3S?2zz8JhxpHROX;B%~T
zJNyOde>-aXk1(%La07WIrUxK8$?TOUEc7dOSm^9sNSM4<<Ls|(8#IqDQ|y_Usq5S2
zI$Wy53LTc}P}IR`;3@N?kHXM=i`!$bGAdjw^?YPHIz(2<ehroGH1u@zme}i=YG<5k
zE{4&Eq3e`aTu>{~RnqmyHet=)26L-Eoz&TVdUR*^!~UIJ2FDo<DpI(UV#?t5@ut$j
z|4?FrZB^ij(lu{&O8HQ)8tnh{vt(utHfEo9c_dQ#M9VDKp<XxiCLJ~{X80ZK8h_0A
zW2L|Qq}`zw57RL;ib}l;_isHyxeSpgC>0SZX*_JdR_r<Ug6eRh8A~;&VmR&MPsPNC
z$~Owf%aYe4-W+}zG5LW+Z}WqiR@1wXAHpjUzm6fPT0;Jx|NXr{Q+sPvA{VOA9@Syt
zU=Ep_4w`a>gNkXP?0jWwD&W7z&{=iZ6qfseD_ofl86EUe&1s>i(~C8i%dwqF$5tHX
z$dr?5w4CI0Kq;(V-sBIDuI$u$8i&P4ayVFrsX82b1cxy)oz-->RHk!ua0MMgSUoJP
zybLsA=e$*&Om)ilH5q=k?;8E+ab43dAN#b9`#0h$9Z+hE8+%i7SlXVS*mfMrWRp2J
z_ry<hGdGpv!O=0;;1ieO9kIP9R+1=W?XJKpIBGWE;OeHhx~Z=2WLI~vt82*CHMnfS
z6>ty~?V>D8+(n_nQC?A(>%XBv#{5K?t1ov2YKyMa%{6q*V6N=y%Dc&Ogj>q%+(K=&
zpQMH^;KyT)1zx>J1%AM@x}`xE-zP#{d_V1#asTd>DWG+3ljuBhN20u18pd`D>!@s3
zcN8f;DqG=>lV;SMLc~YE-N79_9sMUXt1FJ4+0LCPE_QHV!OX0D;j6tjjY;ZVqxf!+
zla%jll!$MDnjq<ccm=DO<g>^D*?5dS(XvulmM(ca4P8V_iM^sS{7|O+P`$plbMV>2
zQ32~bTIF84{>W9qWeS{7EXd&~AHB=VdY@6&JD=&DFY8^I>0MdYyE@aG{fSV;ENPof
zY)YCRwGNYE4N9G;q`bE#Y)<})>iRTE6`@w3yEAmi>Cj3CeI?+w)q%l3Up7~VjvoC%
z_Q}AmVLKYb8d=4`KihifR2ELnE$f42WjN)+De(~A;p_VA6-AX#bg<~+D_3h$otx|H
zQ^q2CdZP96PNUKIA`KkPtL3J;E!2*7Blj5Xwv*m-v^#J=^gfu;ZttMwhW%yScyyt*
z;1<JU(XN2zPDz7bvpx@pG7cq^U3d~UZT&Hr+k5i`3r~9P#T;giI6xik?G;`>&pPB8
z`lO1B9^>L%ItCl|Z^6E+Kf0+h7f;pE7l-#3%8ybCs{I7^Dq^96H0Gt%6IfR=!DY}6
zUAtW-vj=)_^vR<$nXc$A=vp)%La{hwf}g{kLk9JZu{-+|NQozL*1iSC2c&p%!kPoh
z{ek$meGYbm_1?waL5tg_xF*G&V7&uYDa-G@==gW}j>g`?>w)Z8SicK~(Yrs0v)&1*
ztmI#{sqgj`9+R(T-|Zg{k3-utW${jEy|d-?vv;<V>zR?>`6|4x(I=wqciW!Ftb4eY
z-YH6c4_e<nD}DE(^$f<IF-v|QI{qCoy(6=CU@sx-1%ERw=hL?@tZSy;i7CCteUo=)
zav#5Adl23Nhw*pSTfy;n+4^qWzWbK@tyA(LkzDsD({W?(_{1~d{SU47>3Idd3D$RP
z%CFX3Y{OamQmFjI8dGdviWlH>;bW5DnG*jIz8S{op5w4BXZsx}$uEKJcd5jGf~`LF
zPEBcQ=^dZsx<_g09h>Al?r3^Pr}lFoy?RaG5g&@&-Z{#>epf7Js-_w1J}-VJc^hos
zNz1=D_OHEAV~+h#Lq?BpdZ#1aJ1P(Ho+;Lv4l6Iobq{H*zMwW~zndg}5w`Cp#V@Di
z&#r+7;(kBmj~*A^A&S*sV?I2^O79Di`&}d65&s(Z5B@2HC+-OAyJU>MtxIm-DN3$u
zhU990>I<>_R#?wGe(5_=x!(Zyzj`;^^NKZVvGP;heTCL{ry3u{ddF?=0LAK`{dfn;
z$@hmo7>2@9l8;7Pd5h~w_`KhRcj)4NaPg@U*TJ^VT=ETITW2n2i?pWS$<aH(-I?54
z`o#Oe%0EW`&Q9<7^v*73?K`l#^vVB0`BMJH)8GfnOYcyNaQx2qjFfy<B-i+O5b3pd
zI%55<K>W^2-z~=Pyz~r5@3fR&xsTs@^@9IS`Nq$@*Yw?)+%LubpQ$v}pZHtYzN6AS
zQP0HenZ5XM*xreVk4f<~xcm2|XVRxdtouami&1%Ekc&@{JYqdA+<Y~RQ-3YEij3Pk
zh)uEMCl#8~E7mg{dnPY_BE`?7So^TV?tg_JOOO1IL9aC^l#h7Flw9LUET07TkK7-h
z3Saq)<2xzEr>A&o#JW%TC-uLr9%iA$FTw}FvJpQG*IrrTXJPwY0m)y7-@Q7NKQ~Y8
zl=r`fC;wW56^Ez2-u~D0DLlP1j>9|Q|7Uo*K3RCad??SVKZpE_pNHdj9QvJ(m|uo-
zlqcEr<*Pnt<*9pyW4LLt-whC-4qN?-&w%Znp7`PvUkb;+`%#Od1s@YBO76=!JOQhI
zb)UWxt?;BIui)@c<Vv69|3t^}pU4Fu=2PKy_^~L3Apft{1iA6+DgIZ&8XwgD^^VEj
zX^557nDx64F@Kuk4<g<I|C&=Tz9RH5@%gZor})AYUzB3a56r#tvnjW#_6||J8Eokh
z>v!n%4u)j-{M$Pm<M<uUS-80x!S<uWJAUysDduyHX7cM&d_%+skybr^I{b_941IO1
z`Qmkve9IK;5x`HMmi%{4vF<tJ@Y9?}9*5r}VwL6Nusw4ZKMCJIJUlZOKa`R$X@T{;
zwhrx8QODc;p{%i;tIu+HKr@wdWak>t56JL9k=}5pOpof&s0T<z9gr?7;})JL4iYpe
z3O7t~{PXhgz@p<W*mYE0chqF+a=DqH10zB5T(750L1{j<o`G(G{a<yan5oXpWCO<2
zr7LQ@`5erb*983l=Lf25GPk3bp{FGJ%vN$+ozV>9<WjiJO=FrKFJfQF=Es(}JzqVE
z)t_DAf_5EJth9EJ%&UAjQ7`<XvaV4%^<Nor&Z)?%{XeD6@Ia~1{`KH|rr+ckUp>57
zw*L81Ul~$Lb8bz%Crl5f0!vPI$Eu(wws{GOBT+see_)&;ro``frBBcE)E=d@O=)``
zfV8j3x);z&dq?chZ91||<4a+yMpdJCTU}o1X0r*)GHt}7Ow<-!E$%x@S70?ajOks7
z=mWIfLyP%Nr5SfiaT%<8YL$6>PfgH2yQlsdyIate3&J{1vF?erv9rcV@jWSCkYZg!
zV)wcyHr|Ky?gQ%?fmHe#f#j30w>h|2brJK<DIOhhH{4$dTlt8uh5y%Q4Dzq?h{Myj
z)OHUpd1qM93^4k#iPsrR-UGSqEhpX${`3!}b<w-SmcQo-<9A7T7=IR?<cktHr`5`z
zMsUf;;hsY7Z-Fhn&l3MI>^^-@qfNL+*q(+k>d<h{H4D4HplzL>+z*H4UhPM6bFcQ3
zcCRfy4#56@T~{doQ}Mq$>kcja{Yby<mDU>hUC3K{CLsCWklVUkvD$CUDw79Um#g+H
z`3n&bfXBhV^d3^~cS_t_`Pe;I%$9zwGi^ZIJ)4-@fu?V}#k0`X9>j;Fcyhu-`?GsY
zxz`+~TeLUT7x37Km%;nPoc!Ka+I)9r#M(AfdtIsg756mGw%3*J2{&XSYwxkeL*T6@
zmF^L*h3%eI@}aPPOH<|X7<v!}Tem9tRw@6VbT8#!@=Tue4=sh?0oHHdD*ci(G&NgC
zI}rH~N0i)ukqVE;gU#GO1IO!bm!#w`z|&cWtM;P!UQOI9KjL^@?jrb2^x)e<|GEM<
z7o&HEvG!xr_MA7oEv##tf%z?T*{xv?CjU>Ot^UQ2N35|`-;Kog)VIU-3{vttQ+#)d
z?@jRoDSm;9kHgcG@OYi+OK`l-^kq1{hkp&eELZyN%vU1+x^`&ETm0LYdY@tWk^F1q
zTF0sS6<>&!+;|Rb>o_I<4}y3d>Dq)BhhLitzYA>XmH*zbrPtWjaf;VN9_RN69;Y|1
zQ_A0z6d#x3-=}zLiqC-K_|GRlUGq#8QHo#JgSdSD0>|mQKE)R%Z2pggt-RDe_918s
zPrPr6=fZJ)r}_GnJmv!7eSwaDJ9AlzHHR2ZC8$3YFt3jHisUPB6LV|&Lma;55Hahy
zZyf&WI1aBp?v2+bu5FpzeoCP!ed1rkw$4+mU%;_vG~&ZxTW2TUH(`wana=&RA9Jq>
z-$&Gk?$M;gc8_Kp-=j(XM&h1enz=VlyPu3FTel_u(>ds#n{0ajcF(O8#P{4Lw|j27
z?P~A2FX#GT&(IY9^|02lntxlzs`8Wky2QQ7ZC$HzV@<e6H}?za5B5w>{-1&4dt82I
zy4gMPGWe^N;TeJEDqEBA*58NvlmBm#TY0E{j-!6!`aK1X>$eD7eaZbFlloNp#Cm+H
z`j!&M^?N8h9c_EZh)+!Maj@+rBl%G&9+l$FBc6r%8+5$x?SElg2WR1lxeVKS1Wd_|
zXC4E$KlRRG66jv6=x<T7I_LepnQzQ}y=@NX1*e-cdWx=;oC}^ZnA)TJpo7AVew4!B
znbp)>U0qXC^Y*$rwAY~%hmSgNcwd;8)E^XCje?b4jZ&SDX>NbJ<42XoUNHEXzy7r9
zGz^<QYX-CF@nmB2wu$<g=xQ@;U~a-aYEwS?yRnS0GdbjRV77uTa_A}S<pp4S?0UMB
zM`Cwa1BY9yIk-v=MfnIX0sU$&ia1dnIM*5A4z(0r{Wga#@9Xd%9fV$W`HWMS_c&B9
z)!`j}^J2<7KMr@t1`{}5rWze)>%g^)Lubx;v{YqzLy=i{(dDKV&wA`+^eM$z=qJ%n
z!HcEeKe_ni``G{Il;XMQS(wj~UU+J;vhmd75b4FI5{|-3!t-bP4socCPW69NTm$W+
zz;O!e2&=gFWi244APvVO**_}&+le{%PLx^tFL}H{*pg^wek4c5r*UpSr=O5({-=UA
zUoyu^_9baaV(x=Y@D<$pB`3Z$Z&GsZO$<S(Femh1_z!oCB2LHg9GjFZrGoo#9Pj;&
zA0K>=4-OKCB8^KONyh7#pG)?n7QdL{2U4tg>A!KW>xkTckjRZcPPxA@;y>d40y^To
z9m2aa@n!J45$oCE)on|1Jv)rQx1R^=d;1*W%D?VY^}W4u{Jp)NlRk*M_%{t2;g<F!
zmHYRQ$G?%F{OuY2X2Rl>{O=L#xym)Lecvv=0oHRAjLn{-knEp5N0IxRu(x@<m_eu+
zKOC{va<)Ua^jt*pb<x9;J^01aTTKr4u`(-;nAcBnK4N`O&v@OG9<lmK{Qdow@H%^z
zzR%wUj=#sBkn%qu#dQ(uxyOm<A8#r>_s}=_F`t^^Vv47ySalrxpA)g#N+&9&rL`QA
z_e6g0PhlP}?hVIlC;FziKOC>Ms7=W~C;m0X_Z{-s|4KNHkJpOL_{S7yqWIrKrv7-&
zjPSjr_&WHfhOl-+d@HQA9T=VXHqOh2hj;Dbd5L@Vx7fXL>|WnKss7{d)qexW->dHl
z$KR{(1KWCd`9B1<=LTZUeR@4v`d<Es$o*cJyP)4=ZH$z{8j4=s+8K?1a^DGUYi*46
zeL7M7Y;BF?>!Iy?^uOU~bF_WWYrNfc;l5wo9X&b4v3vE;70-s}ZgT%U;p@4FhU&-A
z>E|8;E1Ext=m)Q9Pj7u+DY?dHJ$Fd&`MpUZSA46JuTO?ox2LwsPwu-Va+;a<Z+mVl
zKCL|%jn-NQPR-c-m*d~YySs680`9E5#F_`sxiOTdxCmSMiO);%nJJzK+u94cKNz;}
zwZ$Ky<M6&t@i%ZBzu4+m{(nH*_u1l)Q}UN!`+j-?=H+PnjS=xrXnU?DUYCMg6SqQc
z<t6vJkBeDrpJG-U`q$Cn-I&~``32-3Me;ZP3olQ}W4;I3`rPNo&r!y}t&{J8B^R&h
z``#Uq$IoT9NZhM^%76U5@V&6cyTjQdTuS^ld>YKj^FJ}@xrbCNSNjy3T<uZJr-R<V
ze5B=FvHKSN@?{D=SzEx_zTcAkNAwrS6`r^iPUCm$m9XR*p(K9}9sAdF3uE0UZbU+D
zPg?Q5aD1PswK7*$m7Y87n39X*J;2AO<l9ADAp9YuFWa^BoMi_%eomsblQHiL$Infs
zrR2Ik*G1tK;c*G~C%zNmpLjW<@)AqFKAnJ*%cD2OVC5nCpWwmBNw$}7k&>%w?0Yx4
zzdYhz@aq)3-M5S1hV40w_;c9y)D?f5;!&-5)*kJtt>->hMEqtH-q!e^i;llHTmr}6
z8|oSwvogNpjiLPI{|b2jh|h!V-M-{qBma3=W6-t_s&qp6+yL(db8>m~RTxyBQhBt=
ztvpSx`jGs7oXS7h^zPI0CCL9@#`p4niSM!h$MHR}hWNH3&s!m1v_q&5@i6$!h#TPL
z5$}|e_l9S)+MZ_N*Rl5F{3IXgt30<uZ;0N$5W?5odKvmtT_jM|X!&oqBHSse|Ld1g
z_5HuDx8nHwe)<0r{psk?pTv63Q!}Q-y7PZ#WZ<(f>pk#zp5v&##b?3$!Aij_wBDoH
zb05hy-#sgGFaA@+n*YXfvB?i4(2WS=_aBGrky!V<F>jILZBne;-q`)%H87vS`uX2+
ze+~DO;vI2+Rm7T)#yld$!%{pX#VTX@Ux#xabfi>$(!TB;zrL8<p{prqxdDe(!*=SB
z%jn>ASSm|@pwwIu9sD-P#6&GQ$RO1YJ;<B<As>uNkz3^_PMln;MjDs@OkA|Y%QzI*
z^%3aQQy!$MmD#3~T9=fZl$4(LX^t&5BiojbOZ4<5ho(grxfaz`x`)cE+?ClX_Yk^U
zw$l9(eI@$Yk(F*o&c0BT!)zhw_MEHHP8y}9NcwAo=1b0M6-$t1)lT1rjzm9tM7WO?
zPf77{@avI$b-X;1AD?nBu4c0ki*F)q^QvP>&q4-FTXQRZ3byx`;w35ht8km0s{D29
zDZ(0oo7jIDt>Vnl;l5e^S1P=SwPw-yIOJM$YUvRloZ>xGtkpiT`<+tEkkL#&G{plW
zKA!kAZ&}kmcqYf&&%T*3|N7>FY_Im43;CCv;qGVhJ&9jqv8}K8UwHeJ{~cf}ABCr`
z5VQKd@hiwRKu+rATe1`Hi`6TC3;Q(1a^-(@a=l+V8UJculCOuplppvo-Y6y4b;aC2
zNSKS^_&LDe;rKa$uFJ9frIh@slw4_u{r@w?Z$!Kw@z<h%>3z1`Ykai(Y~z;hvnAIU
zWB1wO_0c~h-?(f|TAqeaTM(X0h!>}LQHt+RvC1&^e^-icOYyvjb>Dj{llM-0wZ%5v
z_x=Hne+%kPcqnq!r`#`xbstSPZg!t+@&Xw=1o!F>@qM$&KgYl1#+9uZgF2LW9r(>2
zC9V}m@-A?;t|af8a^DT^70G+T@xE%kQvUDHvoFN4rTlNl<tg5m>=WeiHvm7u@izeN
zdj$W=ugWLwKZ`te|7_%6>s1O23`e{f@*^Gx$LnJrP4Qz1tNi2gRsW1x<*V@aNW#as
zTKUc7ch^r#@jnSqi<n0`&E%iMar(M49T2DMJDomDkM<q0_;g=dNy7hM-uJd6Jl!{I
zUYfq|73+Poz2B!P`h7lZ&A0ea5+3tmu>H1+<R`#(A16K$UekT>)Wp5&M}1%8josI2
z)Xh^d3z;XYe8fHA=V8^CxFZI;PZsObZ_TR-w%NQ|<sZ+hmH&8N4SK#4|9w`3_%_Av
zXgu0)35kz^W4YGYTl|vGfNkC_{v-TBG7lGD10QfoDg3{{zlN0_rT<ytx8Fj_!@r?m
zbe}AhN5}WcVw1~-I4$2Bf$pP;#>=-Le5)V1H#yy)nY=w5%{iH#c~uooVLVWJQPoSs
z$sdzXp2OTPJo=E6;B<C4X-x%cvv8{SpdWje+Bux6lh<MXdNLrm(2?7OLN*(Yo6GD9
zWjc~p9c81G7P3X}rnrgB=rSGMph8yVP{=lTsU{cRzOkU}x>4DTx6ceq?A@_`Yiqg5
zBkwLpUJ*x8x(#|QDqXsr%RbVMAA>?OozIV;$P4HO^mz1B?OZvs3Uqhr$J@Ca=S65e
zg|6b<Snz?nMVyNb)l>P<cPeGanL;TvB5ZU$II3SoN_9e{Rnj#3YP8N?>5ML-2_p}w
z0HjqFMRWn}$Y3Ilt>p}fe{+vG02ZMwH25{m{bcV|QO=o+=uq(9f@dx$sHB$j9`atI
zu8#5{yNn`EjLE%`ze6g>i7OO!4Do6%=_3jGkN~Cep*#K;W48IC`0wy9eJ>~XucZ9H
znc{a+{85U(j`(@Z7gF*qz4wv)xkRo4({s;weX!(O&nN#X+||kdhWyZfme%uX69BpA
zGV=ei_a1;zRBhYvY&N7ofP^NB;sT);7ZC+TSbAs@N<ctyks?ToNL4Y51;HASYF$(;
zJeK$<V#Q!V1k~8TZm@S^M@0CqYwmM)&m1-h&+|V2_rBlzIdJDb*SYTdv^jHT=FFMd
z!|Y!}{VqiOU6;vo72??z<~+Qf=O(`bc+t0U``dx}T$SZn3i%y@JAv8$v_BtlTo24W
zL|(54W_gI$L-hJ#z5{zN%4@zO`y8<O4(toS<-Nm8f4&2j_PyL+qyP^^`t^WW9`bA-
zzSGO{5O;?*(>L?yfV3F=k*@EhJ?qp8>!Xp48y<%C;CgA@KDxdpuh;w1|62H!oh#S3
z#C&e2?>|lk9uIt^<)Qry*z0#niHm^sJF>)gSomgOoj-ZrADMWpVb8V8&jRb`cEpbW
z>-%A1USI3yc*GA_{DT(%5HQz+^ZduQY>bBEcV>0}*^D@TXIA&07lC#E;q}U27<$e1
zid-CF;#$Dw`o`M8=K9Q|fX(lGHUZ{$K3N{7ufNO6{Yl&i0lmJGnCX9LtoQs1b>{UN
z`yY8ecS`h}!sgjOXwUnxM9(pFdCKG2KBhm@=Xv5*q{nyoxDmT$!eqJTqoDZCq{i!k
z^>1&|{yyM-2LBMSzJ4J8sD(EG^SKGjLw*OuwBHK8qVl{9-YgHVhs^T40c@7%9bhy4
z4=wyAa7E>bVBoE&Jd41a?@(R=Z02_*uvwmKEuODnnf6x!msg$u+Uh}+m-Fo0AH;0$
zMDzMK&;CPuJ#UYoi}k!e`%eH;9?$({@=SjT;`+f+k4MCOE@EQ*?3xFkY~i4Vvn^cD
z!kHFMHt^j(JcEK<aF5LMYP`<C{lM$zs^rgyyl(Ksra!Uif39UuY}ymkJ_l{VOO|SE
zc=s;@MDklDZZu+uFhs>-HA|jh{^e$3GhWfI4gbiS67f{LAz4FtYRnn|^fzvt|L4Ya
zBJL*Hx>tt8OPaeM@p00cDy?xd!8!aEP`~9)Ri)FEmc(M&Xy^n~J{&i>abAdX{_%~i
z=UxKtOT8(8@IG|G7Nx#@scUIN6iI=qA3=-b94{(ERE|=Mg)26d`*WV~5YBzj2ozxl
zcQVDV(^A)gG2B?T6Wx&e$9>B#4rBL0yd7$q<`PYX4h=`=$7Oe}s{#_4ty`G4m)Kl|
zU#f7oDj^@==HwN9nLk_NBFUNVG$i^{7dIv(`^Hr~4v#@;`F&<{z1bPSTo1;IRK=es
zAo^Q6w4VT8uLmQZ1gzJ85p!HKF~>m@Uk;qB)|1ixG7EDY)cn!ldG4-gecDR!x;(UB
z1+4QUj#_vfu$lfH7G7=H-vd0$SpT-cu%EBWH-0Qm*4Qot-h}e=_hmGGoLK$74DERx
zrq{O-^V(alZzHY+G3_}Ip~pq?)hx{GCX@fCf%$B=1@`&88)W?(@pxcf$0K;ybv*fr
z;O{7m+w;Ahrwoiw*?MqS;CBsv4eD#=$Muya&v&<Vdc1DV2R5(MF9bHPqvu&Xzx819
z{8mRr*XgUlf7wjx!~E>@?EFpqIP6!Ve&)Q}cNTub!n|*wJ(OqO55@3c9)C>#2W8Le
zQl68`Tkizg!_%MFT>KE5d0jdfSkJSO9|mk*hvr%MOknf(14b!~)1!M$XJ4mk3^SM4
z*R8A{^V68+W8Z!a1C%Zw@#_|@neOH5Svb?e?_2(#TX?U94_WwE1NTOGdP4X-om(GB
zD~NucPQDl9XN;Jv5AhgC%U*IOr9B64)BbE=y}p9>#Jyq9{Y(1}5YxUtuwK7GdlTaf
z;NDm3Z>JE?hUjm(5HGOs#lZTykUXD5nwaB{o_8eA@ssm}tRL}h5Y8j=w8k^3Id4dw
z<D*WmD#G<(R1F6`{fV0Z>-S!Wn*p2e(VPa%_jcIg<n?<w8r$#jbb-D8{x$7G!2Eu;
z&aV$Jzn883?e}^bVJQAje*1&>ab|h=3xBK+_pezWjdguAHp|D!!K)y8o}2h_h;H9R
zxJdC(hs|r#{yGTLt5Ocn{cq;C0+`>I=l-_m$r~b$--ashK88HM6{YWEi1}WlE<Z89
zHD%%s7Uubh_bqH6`@T;5*ZwDd8&dIaLYwJve5<H@!@-;7<L`Hw{-Z5C!NMF5D=HuT
z%PU_`l=W)}fAgLjuUYdU`dc{Uf5e!7$z`%0CkuEUM3;{|pVN@1Zz8?`{^x?{@j!b7
zJ(%}>=eCpai#+E}G+qka3?1dPDKf7>+{(hOE!@V!Z7rMw+_G;xy$Qg29*^ly1fBt&
z{f&4tgul_v{Y(5JM89XY4rS#v&(ru(57v*ESJ=(2jAKqgJbra`hb_!-OX$KWah~_3
zs}1`o@F_FmJnv)a&;FOle=Yd44F9Wu?^q=3b>ylVj@Wzw{NWbhpIoKU)`2i1fWxlB
zkEO&l+QN;8`LT+Rj1xO*(&Rx?yAaxiNdZRU+DWGyAcBdj8Fn}EL6CPuc(9?jhy>WH
zuo(*Nm@H|aqTFIij1&~ESd{k9RM78goHW%INp^RSs5DV3oe)e)#cYkJh$!yw>tS>@
z3N*)fpJzO<`F;-`$vHa=ejl*O{{d{i{}Y7&FNXaP;55Adqw`})`F;@lC-c|u2Wf1+
zA4Hz_Lppt~qX|Lu^*C{VNXOe`y&5t5)4*{2{g!8d=NtHS;5!V=c_|ZPsjjp5thj$V
zu$kX}*z5ZV=EweO^1MgUcmcxOP)~h7Li_=+_9x~&fr%ReoBq6CF){DyOnj7u&HERo
z|E-nZ7r>_f+ZN_{cgr%VKmG5r(!Uv4Kc^voOC>zV2Q$Bw7T#dt=@z!zbBw{CgYdaH
z0(JVti-5<zB>jQ-5{oah@O2h`+`=DQ_*Dz<w{SHKbY^+ZGx%rF);&-rbKMW`N6d9S
zeSypS7A^hBoBlbLKcB;z>GAl`--)6BV9THD$IbM(eq8%Mjqqde(ch9KejZpqXCmGW
ztlw86e#gS^TA2OcwBKXleHQ)`ShpwBe*{=R2O};r@Wa4QHo*H0L*nabo&&BiLi#iL
z=ZWzxPmV{#F9GvgpBzkU1LIQH{nn@Ew}I!ka<Lmd-^$he4)BAG^xm`Z9$@Cj^B>di
z1g*cV%lkFHA7H+ZF$Y*bryxHU*nHoD*u3An44Ch0@a#c*^Zg6r%PoIm)BhUf&+CIk
z{?{7*oDnNS9s1%&YFK~bA1(Zog@3m2FBay!<~Sq0Bn$I>8k0{2z6ACxZ!1U>2ziaO
z6=wN(y*mZ@m3RG0{(SKIdXRV;u=yM#-{LO-HlJ(o9AG|2xY)9fSa>cluXodt7xOcp
zv+#QSO13vIl(3QKJ-=SJL!Qrx&Fk%@z`Fe8uLjoTA->My*IJnSx4h>X+Mn0oy1eH7
z!6X!O2=dVH?-CES@GuKw=G9}LXW<bR9%<n-Ej-4;XIc1c1M_?^5A}WY>G=8KE?|8=
zBflP4k2l0N&*#o2e}{!{w9;Eq3BTIn@zYP9^sfMZLzS273bvq36|GBnN%1&L4x4|Z
z|C@@}<AuF$fxP*hv6q!Sug^F>*!G%d|478MykqfkJRXnVBitNz->#5#wZtue>#dAq
z-e2@KFpu%&25t@fp@G`~w^|kVZwoxvz*tD+Y&CEY_^8!!`}V*S4SXW-qXzB>te?yC
zd~rV}A@u$yei--$<M(JE12%u3b`$U);ISLsb(FVR_T-zM5I-Mb$*dFXBG=1Ie=qQv
zRpb1Rz}rIA-SKWUcwWzOojS)q;xD239AD$FfOUC!E<YL)#qV!&e<Z?O*K6`@&rODX
zBFx|O<oQwWe|<h<`n3Pm@b3;xdzLSe{XE2*`J1>pxHNQJ^L;w@$0<|d=cBs7dR-sw
zxh~-fgKr7k4mT;RKlzRpf11UIEWRi39Y%VcEZoe(e_+S!@^Cz5|24;JwvUNh0dqX&
z@tf%UK!1+M$j0T(@tEl!2jTgH*Bgn>AG9&^3jpi$9l30aZwjo>cjPa&_=OhcI;4uq
zPydR_KOKBU<>xvXv;6tMX8AdPYw~k|&GPenWb!=!n3(6Uipo#_ipt*`d`0E&W963v
zY?gnZ#Sa2D%YUcEueb0Wz!jCB{uPyfCHRWUzskyQ4X|1MTP*%oU|oLprBZZE^Zia@
z{jF*8dw})tGZNRtiAR5zint!I=}&C><I@Q4x8#wGLwoc0QHke(*WZ>Vo(pWgUm5{6
z(<e65Uj(enhoRVMjX&o6dwbyj<afFF9m0Qi{+s1%i$DA>8N(F)T{4Z$?~HMN=@N`r
z`uPQM76uyg_gXpLnfOa!z3!Rz-&%O4h4~#q)BXWqGrc=3{soJ_!s1T^Hoxu9_q;Ub
zc*WHO=J9>Mg*nGm(ebhtym`G%%-@r(g0wll-jDpu>+=i2^Y}qGNjUz_PLSRKOuX`Z
z#PZ$=-n@S2x-PT)C*s6l;xjGG_rfZwPjB#MeTXZn4}NB$!ukXfq-WNL@3EQn;e4Q3
z{v{UX{GZ7e0#{U@o57p)A+D%CbHG=$f957g&#cdS@MeAZyxlBssfE+gKTQ5R@D<hP
zckpI?h%2hkPVg1g=M^ix*MZIQGkvpuextnCp+Am>JdiKfi^O3I^Zak}5er{#;l&nS
zYGLMKrnk((_W*x*K^6CYl(t<h{vV3325s|vzVSWc&F33K5I1pF{CPz`VDotd=f_OG
zGccb|@OWi<dy$@L|1Ge|e`oPO0h`Z9{s1=9uVJNs2)y}xrIq5d5#I_TTUF<%AjkLP
z-M{`We6fIkvA!7-PWZbIfBk;2P6z!LJ37ea{Wuf2f0M+QHb1*IKRdxp*vntC2zPM*
zx;8%dFMXZg-M=p&gqw|stK2_-y7Ai>Mj3+FLc1xur1T{OkwUTiSHetC-V3OTx_$)F
z_veZ5ci`>c7UQ~e)Xw306kf0C^(^$~JtyrseiQeCraiA0650Q$?0LUp+Vg%lk^Mns
z&;DoHXC$z{4RNC&nfJ3aSo5o-1u**;`LiJUJHo_cA<fixg^ACB3;<4sz6|mO#N;Of
z&j8Q*k^jKr!@xHh=}iRQWZ-eY9~$^v;ADK~SeI|Sh0g}&caX_*?&>pCP0u$H@3Sxq
zX0E5Pu@Aidt}p%Z31W{uezwhn8vvWXMbyaRZQK~VnLegcJ?XVnnCElm&-GAxewNoz
zXJOIC&SdsB_Hl%><oZ(MR~2S^kUvM+)5Ema*tVYn`y;vj)9FuxJ+E(3Y&U&#Jp}W6
z5WKm*gIHhRlIJI`_4O_1zp~M>^!x#F8w<Cva1{&lHxu;nOMhNZn(5hmWw?gr{}UR{
zO#e4vGyR_}yw}2C82A~~pYQdU-;d*WXZ7<C^6i1m=Ox2|P5V5HKhwfvEPOUFpZDng
zbtR4u{he;+N8ZeDEU;Ogb1fXO><^+orvD2D9)<LehHSi8-is&3;|dQx*22eIIAGyM
z7H(|eCKhgMVa~Ui<vH2Hr&t)LH;;X*3h;yIf4_r2()V&`p8=sgn$2B5!Sx+{kHy6L
zy&&4BLUjKl#);SI_Mu!a5SIZDH}H?Zvkc7Z1Jj<@6DEEi*i3(yg<m)DdkBw*)O}9I
zV`9#qY&=`uvm)kviOF-m&BTj<cNzA?CVv&MnI5m_OnkM4FS7iXSv=QEndx&r!c6ZL
z3*Qd>n<`&>g!z4^fA{-5^xs4OUNS#OycakXH%S~{iGKoaZs4CSzBZ0u^SxodXP0Bx
z^TNYSKNXno9rJo36H*g>gx?e5^+I*VVIb%Cgczon-xJCP=6B@vd<8M@Uyk`)?k9<P
zKcwHwCg%N$p6?*OAGnQS&o?1Vp6k=}_qJ$X7ud}2D9au{i{;7hb_+iTJR14&`iS-6
z`lAbs{9mxj^ENQ&PwT^W03_iS(6MYmwZTs|-l59YC<&h+b~l97hIZ#6jg2$OvQ@`E
zQK7nJ_%-r3Pa5P@ucAZgF}7MPr0sERx_ge8wUe#7WI(`EtZclXbhpe{2v>SKGNeQ9
zc^&=@QDR=VYRvm`6LTJb?@MZ)-<Kg~I=oKp4sBishb{YY7Unu0uKVVBDFyzV7v=kz
zysj|QV-uJdZXOKR3a^7fdwA|3`?~rB#C;0+caLlOe@1_GTod!YtUg}GV0#h&3eofQ
z#N2168+;Ama}0bO@Z|>11UAz@*5b2(&Gc>iCg4|BjhAPlVb5OO9u2$V2RW{ZInSfl
zEfa?nM$qkf*IWMm!0Yet)4o5jInOr;*pHhX?qBkJZm-uZ6LTKN{Ef_Ez+A_y$E{ak
zZ_ewDRO#_JPn6zhD?L2Ichlqkr@fgTuR*fG>v<I7rWS5#Vf>t>$Nm&x&b#m+r~eL!
znI4AV*t`pQV$Qp;{}Y?@e8l)9qC4-x`V;fsK+gjb<I@eE^o{}6^Dg9>zMgj>=6gbB
zc?KGoV<guN=yhqts~~!v8!?~#nRpYhUiU`+aSQJP*4Gi_zlG>^aKt&t-^{NuuxZco
zo0#pdufyrzsuG^_n5O^97Un#)UWdl?`27=Y&q4GvjGC{0D#we)-&k0$1J-=XXL0*>
z*l}EE&i+8YPObRyL3}!R{w6Jtho%toIRg1^%HJJtfqy}HXwUvYd;J@>8r%LuK-^Oj
zFVBncH}P32eI5^q%J&=W^>Y#SpQAC*oBiiF3pWJT&uM7i3YhbTPzn3*Ss-}4aD1n|
zeY_mN{?PN3<bAO3eYdfW9GJiH%KE$hz|3D`elN{DUXp;#@^c<iKR2R(ipAHk{Hq%L
z1L!Yd_~`yZ{JMpATKIVjKWpJfEWE+OcU$;Y3twyDB^JKI!t*UW$HKELJj23gE6lb#
z1Cnq<A5t4HH@T~E(s%#jPd2-qy9LtS+ZKlLV}=rkzdGc8T9C1!m~UD?O*%QTP)LWm
z$L)@;sgtW83uVSansYzeqCl)vd~->qi1c*YI+WzGQz^nO9+LX<_&ps-_k!s6iimq#
zxQ~VVS~$nT{Vd$y!n~F>^BZX4K^EpdH0=jlIM>2MEX?aS)1ULACg!><6OS}-BOE_9
zaJ*mlqg-DS*Re3qhbGVSpNWsM@Ua%=D;%ahuXjz%^N)#}SeWZJO}>SN+gP}*g?W8t
z`t$r`;?BTN8ujP-*~DB&Pt5rd?mKe}#6SQoCtFa5Qettbv5<;eh7ab59YShbmK=<+
zMX^xO{oWRSi5Pa-ZpsLSB#UM4mrd#JrlQ%jm|a>k9T#e<Lz$Wly1ybo-;l#G%1tHe
z1`zjXtOUhQ#Eqm~p$hq8HA;$wbg5|4LJH_w>puYm?Do@KL<jWC;lPpZIx^ySFB}Pd
zI+Wyd3iI+-X7{UwdkPgwYNSJW;YY>6Cmy;{JVLR!{8$L*6lE7mj(NmGSH$9+pt4Jj
z#U)?i({YhlXo>c~&=e~{h6<%cbX;1@4kgWmV2k*ZVj+n!|8iV=9PK+AJ>tx_W&Id2
zf1CUw1M@p*CSM4w=cj1TKBMQSh;Iar8vevj8Td_Lu9xO@b8Xmng$@Cueuu4pW_tYH
zL9V~%a7}w2$ET|G)Z{m*^mu|Y)6@0a0$!izY5%;!y!)m-=LhwAYx4L+rKkRvS(x*y
zX8Vj&>FNB4HGdt_PDh$Lf8zQUJ_<ODA19+f`D1{m8n}VQ^S;rvKh45jE&py7&x77f
zzq^I`{(;H&wEX)6oAnuQVb0;3<qHFw>5a26?_*7V3b2{}ObZ7LyaesV_phJF$4c0K
z#1~tb>tjuxzps2O-giT^J73FL9sRx>{kh)nWbnM$SqfPX(eJ~N?+$(}c%2_H-=|Ac
z_M4&kJ{_-P>Hi|c^ym5*+Vj4bytZfmO=QpYf-DcO^U2%g;qw)y$3xvrFRPsN`2M(A
zeq#F9vHa^={(KHF7h-KV8qH1C*~em%B5aoOwxo!MN#dax-;x6E`<6N)DeQ%TB-T)G
zN%)O89fnQ{1U#^r$M>@49+(tJHjR6F^F7xKd$zEABc^Xsz~_Y_6V{TXx~n!*P#1f7
zBTvdzz4^N9HYaFXt^FA|_2>;dGQM$mjcqBh5CZ-h`H>jwZ)k#A9-uz0Lf_garad0>
zseR(LPY~R8_mrEQ+Cc;034WaM2d^+eBo45D;w4BbOgBJD`r_YD8dRHkI!Pry0~DGd
zVgOji6Ts*e2T_wjqsN(a6QGO68Gl9y3C6ZiEW`lsm8N@Q1Yk%ick}EO&(Y%dAbr-B
zg!mRteB(Pf@$Fj=LcEcM*RRxLS?bA;_s{WdyaypZ5a%5F#rR|oid}4oxy40{L}Jt4
z5*IQlhP`cA-msxAXp}R@;D!i4iqh%10pg9ooLgX;=G=nD=G+49`CG|)E`b=I>GGtv
z*}~6Scnh$eJE8w87H{L-mi<1<o@>I*`tTXFiNCZk*EDi2hOOh)7uvMnVcGArFrNXN
z_CE9|6TfKjTP^&Og?WxO{f`FzSN6v-us8QdBP+ee7H(qUroiU@Xm9a0=9+%fp3lt9
z@{hMLzkO-)11#JQxT5`Wf@L4H@MH^5wJ_gNF!OI^;no)BHLPiWIq<)-Ke(pW+#lCi
z>0N8#>nwZ&u-U#hTfB|=?PSybIm@2c@Me7;weUs@uK})Tf2_6aZ?f>q7T#%L-s70%
zSz+Oo7JdfDC)e0><MH|?#Pla`;^!^A9k`-3`s7Xj-Id^Pz;mt_r$x6s=CcZpXWv@>
z-vgWb=SPeG3E1o}zX9uK8%%GXWq;7ZT!X>=g(>%h;~D)~e_pdDYQGZ1oAuvg;ZH4G
z54)nG{XyPLkN03EZle6Ln-i9YylKxln~HEx@D=S3z7uZx_W?Hd2k+5Lo@-Ri{lRy<
z&HceOuBQD+3+Dn?v_I%y(f(*@rFW`@yBL`JlWVYad5HO8y(1m3X#XSZb$yA=^DD7=
zekJB_wV3%G0M_kEp6`^Iyp8LDH|+;n_Jb_k*}|t<xH+)iKg^$N=GgwcnIPT)G0T%;
z`KMZVsD-%(&GhFLq>0V*Kl4jcJnthoPx`-aLkIj1Z2yy*hS$ct9()-S8Rq*luL7IT
z;oq?EyO#ZP*y*PK4q(&&JIj8rg@3Wq=lWjL|Da{h^}1$$bu8S*%0Fn~nU?)ri$BTY
zJ6ZTz;EY4@brd&P{AvrYweX$5`u!rd|J}f5eIK-Nk%9Zdz8&N&Olooe5%)=e=NtSm
z@cMl<+MfeC(%-Ao_GW&Q;IDu0kUZD>>F>)CPk}If&d2tKw1n{ceVor?SzAH$_w}^>
z2H00eJndUU^!NP8pAXUR#}RW9$ShB1;1}S}v5)?3As-p_KNXne;hce49$p(HDo-P2
zU(d2XssekKpYva4`C9;wfF#~9U<Nc3@#$d12o}d<L+)D;4z@@r=Eh)gDkB-&LIs_8
z&>uHI&`|~qstqTx1Y2TTq^na1=bOP~ey<l>IKTL%eP2$w>Fy~>2)-B(z7PwB;z1`C
zyvRv@Nm2;qJISh$Iq{&|kK7#a7(i(#BZ%VY%?Ji{97@(nr<)my6+IG4(ao0}@dX^U
zRnY<W_~KkN`;GoS1u^@Li8&8yV)h#ov)`DwzJ=LuO#T=Pb3L`m^L%UK<1EbUXOmwI
zyrfjVSHbeHvG7_8-(=yNEqsfGZ?*7k7Uud|GykZC*ID=u3*TwsyDYrk!gm{(ZP^u~
zuU&|{LH1zr6UR^D?iSy};(J*<k8#t#i-k`I-fyHIvT#oea||-=ImVggWk)vgi55P|
z!aP5i<vRh`OuxN_J6O1*g*hIZ`Exus)8}|@rr*ZG%`E@s7T?I?8(X-EVShaO?*+hm
zofz>fV6J0DFt!e~!TfZYltd)Ye;t9jziEG=vd0MQvFDNRPhdY=*>jN6?_)82&Oj!z
z=lReq-+blI^PlO@=Q)Y|7btr^&oS+}?j(`@MarJ%KhvJ~#)<5gAl@wBQVVmuF!`G-
zybhS{&2h}kkK<UP{O(ou9LG$1j$@`h`{4jce8bLATl`Fgy%3g2gwz<15Kp$)n#Wcj
z^^HwD<6bA^k`C;$V<C1kY=~>5LP>5HVqB)%c^HzPmk~QL^Km?Pw^%6C$2A+=;-M_W
zCAo32P$oleP27;nW+5)bP^KGVq2i$|Hx9=;qG)%j8A24}FuJMGsjeB~!tqdjmqc9Y
zngGohipQO)<BDT(p?D}w`-UV7=B7h6W1-Y|$k8m?RQcXsdZtcg&l(j1d3Z_PHh=+k
zId>6{8GDPwy924n7SkZ)g}uCRcCp8pus9{=PIz(*Iem)XHQ^av_Kb+fc(50~7WJ@w
z*KA2Wx$Goe@V-mDFye(*czv&m!7@DX>SMvnz3d_{jF*bOYz?!5fad0fz1D2$1Xh>2
z*Ag#`c;G;9%1-1ZGb3lsmSVT=DzPPA81cY9#hyYsfad1i`y9*p9fSvQ=sey-zRgGc
z2(Vropt1f<UE;^VoA^V^|4EC#*TQ#MIBMZ%E&M#N`5VA5Sp3Tt-fiJmExZ!gtnVs|
zzuw|+u=p!2yb$<7<2Q(j&GwmX@x&%S)8dIu{yd8(Hu*6Y?g?z}KVs9KYsyWY*yOue
zJhA4VL3iT*HNR!a{Zrm=EzrI>hHL%pF=E{2dETAOvG70(p8{;YJK4qJyIFisi|=gl
zU!lBadcOdh?{fZN@nsgj&%*mHyvOqY!s0)*_&O+`*`8cOZkDf}h54?R$qxl)`}5ji
z6NGDRo&@Ic&GzQE!Oi;d^l4(gHf^TIch5|mVcByHxapr|;e%HF@Yx$rdfOG|HS}nR
zy@8HxNIJIljD?)g_*giZm!OAjA#Y5`^yRgz+CpP=$Z<lP(@`7jqijxh>!AZU<;KD&
zSS*Yi=2$rF2}fh`SgxnTkz^xm#50>7Azd9L6bpk;;Q)d<9HFm@$DBvR2*=X7-0`Kw
z;^C^pxWr4+>0svB7Yp+gVdl$8cG&`+_<V`SGs{@Lux2q9cGJ|JVJ8}E|8&QR#N#79
zR5;CSLzF<9xEgJ(wve{RY?O|37d0$W2v>K`@HnGGnJN&(E@V)apC2AX<@M%+ZQ?CS
zMZ<u>GJ%H&;}=I}I=CYVDO@8cL6k<vO3<*6l_=;iC<RX(48+`m461S^3>tOg9hBOv
zU_hdIYwiYXx{FJUpz!<~Q9-2Z1|{#qgMoM!0p((;Vqoc7PCS^{Enw7w_w%w9$Fs<c
z2aVT2-FL~gb*y<aGgPkVAzc`BTUugOqq{e&u4B**N+lBqIregnBNK9BNIGyIgn8ei
z=WWUJeser{_8#)QA2fO1e_jlpB_hv3$>eJT-v~ZM@yA#^=h^-Np7+`G=l!GU&w01!
z!B<s0?<Y;3^KkEjXG_xmIE!a}IM2-cZ1S8pGyPegYM8fXJCNr+p2@R5jlr{?<O2|s
zXMH+@XFbR_vUt{K2zZv0d}E7eeWrkCImkD$c-ChTc;-Vs+u~WDwcwc!`KA`n`aBGt
zcI2B`d;pm9_SED#&tuk)_1OcS<tE?8;u(JcJj+F%^YW%Y>r=aj-_4hNJBz1ZEAYIv
zCx3$CIZrSJl4xUJjBiQoB6^E>P_YM<dQh1M?en1ISPniUTn=K*jm?KC<m90`!iO&)
zc~Qz(lS?ryaqz?tZIW}fB}W<);SsROMZBCh700l2)NfZXUAIQw{Nktz3}Swbip{z=
zDm9VMi#(PNP<#u;gNKD;&FnG}jsdYPy%eYOm_d4Jnt^<!n6Zg*9HL@~Aigb$2NCM!
zK@KY$^K*Q)Jgf(~Z6;$RjDRxLmwdEKtSpG|)S@_*FF>k|$1>N9{JUHK*cBhvG8|Gr
zW5@|dV~g1wJmlN2Y}zEWDL(Y9vdJuqIAYUcqE1TEF>Fc}9huFT=18Labk;DP%4}Xg
z0-N2H+Z58qt$X?9$@JE1#fd2W5!ZeF&UhQ{-cxyAyVo9pP32_{mK@3cN@#<Ii0{+d
zN3bt4BbAp2Urr8G*3KbE(h0R}U2Y#sb`q8udn8_FUcWJ~iqgRuv(k2U(vCbY_UHBL
zQqArgC{J=_b=PIC=(xyXEg}ET79U~a-WaVyaddbna(Gnm@F+JXVLZ~$Ph=l(PcVrX
z#(Bm@!zf^cbugj>N2V8*W5z{G<!$8^CsNKJ9X&kW??e)|k7RlHo`F5@R}R|}#DBw*
zBVP5qn2V0rSN$=9fduw0k9b~EaSOPA)gQ#`@|PEHnlpV5)*uwnAzR1Nw+WrEy@L|Q
zN6P6t<;5Fkc5l9EnKA6ixV(7RIui5IfwYhgK^wcdym)18SV~NtcyWvbafM;To87d$
zcsT2JlXT)2Fy+P5&P>|%!*T7km(=XPv5O%^M3hGNz@n-67A+^<z2AwO#Y4Q$NwftL
zMKbQN7A?=v3Eu14ZnF)_ix<1YS|}X%55$A9(BW~x!;%nV)y|Qas|v*0KV&n+k;5W`
z<+MTYa8uV;rGHqdRD8(Jz@4nIBY`6c;v8R+Ke<XuYFc{LY8lmQ)XdDPRl82zdPmhi
z`j`gC9@p^rMvb$ZHf!GIg!U(P=y>ueow}UfwOjWdy>t2v7?OA9=yN7c$-iLMoQp5L
zzHs@<+irj0>6c!4`<)L<_x$|pAv`SfC#NsZyr^z!-Mr&!Huh&HW!G%#Ynt4m-wFQq
z$F}d+$=4~RQ@c*>JEw;lcTehFrC(CNTDiVFU!Fg&N?zT(yopJZk|!OSK4zxx!i+gd
z3w)PlU+F8%UY5KpZMlC%>gwQ{)HMZbeQVR#HoUFb`i%9pHV)nFf3fi^{u1At$?y0}
zyM5;S)xY2WXYzs6gH;YTI^;X#Ka_Q-+o3}aUYe<ro#doq@ooA9eAgwC?6mB6qI3E`
zt2o_jWjo!Ey};=g@HzN(b!X`EWM_C@6(=vx2cgb$@~%yCmg2>(WlNSgYYr9QZMt+P
zx}lYG?}n<*h7HNin<x1ogPh-fN_P(WlAMFJYdHrG`5}1s^!VDCL+^$?@%2?OP6{BC
zZd+eZ?YI1{T0`zW@ol7^H!|;m4c8sDa3S8(OX8b)8#Xve8#WyDKYcKgg>-B0Ef|=B
z+km8lhfpK@^epFv9Q+bI50z!v%X1n-uR&Y^H2s@FZ@@+#>7XR|7U<><KNBN8zSiyR
z{_dP#KY~7ZqojkhQCiGR{Po9x<rp2@Uz*Rx`_}G;cj?}LZ2J31AV0ZrD1v*O4I88Y
z%!hsZwcG0y@gO>QND^!;o6~&z@Vk$hI9jDs*V(&aRr93c`mp16y!(8CzozRBR-xrJ
z`{8p%%ZE<(Nxpe`OrLGxn&S_Oh%JAJ9y;6S6c*;x%FfdFl-f@ZaBLTDY#VNpp0o|I
zw$D>D6vC^<1%KrNT5*%%bZPg?uIRNquyjc>N*dc(o?<p{JiR<gF)KOJ-TiTUaEl=q
zF3Udp+!JnpXGil?hh>cA?*?ofpEjv#ZBncFUtLcfqw9+-+)dY8YqzkPgw}pq>-N(o
zI$rB;nozn_6IyfWfwAdmQyVn;TM-TkwENKXmi;cnM;_1tG0h*_z$E%#8Sfq=G&1u|
z6pkfSPQY$2+stk+o98iC(dO+32~Z^&tY0y-f6Ge$lwX2IS7i1`JAyyurEo;fNWVP)
zi}ybB`$zx&AK&}`zAy8wo~Td!D{%+@72^c9_QjgrPL=T?+rh?5{CtF6{?>naqAFDA
zg2Y09SarFoIB^yUkKX@aWMj;J|9AfD@;_or-1dx>^R2bB{slO=u`z;`{g2o>&H8NH
zvL<R=O!|L!b9Z`W=cn>}#^21}E%0{>{NLXK#`v6|G6mLHUr_L;H)dwc;vpdlViCl9
z3l6yvSsjODW!1^*HKb0xtVRXdjW6qcEVfRNE?v5ID#*^xJ`g#yI(cd7ndxhXIH3Z+
zzf~Y>Y(a6FQ~XQM$d`i)c$+9Uk?tv};OK5xWU{D5JGoI>)FG|sqQayCpLHo(U|(Mj
ziCwNnoJHTK7Gz-+g!!+)z8EOzg=dTAzk(%>_g_J#&-<?+kmUVW5K8v`D~P0d{}os_
z8s0`kJ03yA@rMd(HCl9LK}~BbXlQK(_BBVrd}}MPPSp7Yd%WAYg6F+k&w{JGTdFF@
z4Ndx9e{APkIL#I$TU$YzwH0JqTS36u3PRRa5b<tKfzR3s>@)m-Q#pni<ydq>h(8j6
z&2zAnx1Z-MJaqQie--5YI<gnGf+gN9t$^<Z3>lJzBMe*JtgHexi{h$Q_*<}Yc-|i!
zI$YfAlHtRLZ@c1(<br-V-mRd}yJZ$MvbKUA)>d$ZcS|lvx3+>>*2d%9vlVztk(2ZP
zLpk#D3N~zr`cF0f7t9W&dj1zgYJ7F?)f?`;y4Loc8?N4Pb*qB9)5qlH4dL|SkB1Ho
zbJO4)$T!$W3;yyonZK~W-{(=zZVix|?ki<CWG&M(B^z252(vD#wm?C5*<v#i1)kZ7
zrP=+w5xCDO5Zj@#JA2f{v*}#&^7Ng2fqh3`pc%Q*uX4!|bvjfuz7<>=54$1G<6zyE
z&zGC)EW8-&eCD?E`9kg5J#)(9j*(UM2Q=S(=D9G5AiRSEw%gZXkNG86QV_u-fH#WN
z#5zuE##1<-L$TvEueDB#nzqz`A!iEKXwl5+J9y~e!NVEi7MoU3&+Ur3%<ZzE<KE8S
zoGyG(*XzFD82x=~QP-Q+a(kj%uc2K(uJz+{-EQAHza;&p=evF6-?3^!pO?BlH2?bJ
zUc6vuH}Na!HtNR4E3*5&(XE5Kz1b~!|7!TZtN7Ax_`oQ(&w)!1_GtG-w^vRpm~>n8
z3&nreZIZkFpm13?$^S={-p}0*Ue<bI-@3mm{-DxMNb=WDs_H15t@No%k5anK)e~QN
zr8|BJpxLieGkQAi7F4>lXYSrlc71ltfL@5kRNdab(hc?&h+SEM+o;Yyh4CO#>ig{8
z&ih%fXH~k-E5Ad^?~uN)jNgAqO2Wtg>R5f1!hLFPNY~A~nTq6EJZ}Hf^f)P&bixGX
ztD|_f6N9Wb!-Jo8e%P?>^_|({UK!6g-5#_tx9El*F4XO*?X)&+8U9bV&p4HVovw}#
zl*4O#MPp`Y@@Wje$I4@VU-}6ihpURQK76{xHJ{v$6zhJY?WwtGZ1ewVtf#eget%<c
z`~P>hhm<DXAI$P_>@oYxzlzy)O@ABnTxI8H_dmVNkLlpN>#-;1T5N7M&%D&36XUt)
zL_Z^;ePx)(T1ECYZ(}q4^2*~L^vH)i+e2@*eInkr*XIhRL3<n1UVj_2y!3r)hw1!G
z%<-o(3=?<L{w8Le-k1&7hu^4ncp}VmLqFv}p3g8V!c5QPU92)ap*UFFy0}g8y*uyQ
z$t0<D95Kz<pOV~=U|uDqs~$l9zk=cJ*;F&f;+Vc3+ZmY%tM+iK7z_l{Qc_yHhWEnS
zCxf89$rH1^@SN9u)T?p2>e7kq>904<YaDD8Oi!uOx`sdL82sRB9j9iE>KWClrl+N*
zR7v*ZRi@*fnBkfRl*6iD1h-cBucKzVp^geK-z|Jog_DZ~H&XZ?-wJN2@LLwXYoYM^
zJo?aL!QAKEo_Nli-gyTEb1gr&X&nUX@n_f^!TJgElkW)D<y&F-Z?Wpv)GGfH3)}V!
zt@g6*|I_><4W<20k?K3^-jMobD{Pm~u8+;{{6hR&DF2gI3vQtBC6(k?nSb#iNw1ws
z@5)mJqyM_wi&pt<zA{|(eMwL6-|eSK`wUR&k9t-3CJJ}8`iG5Y<%)d`WpCsA@`T3~
zox9EGDfykP@aO*&{&<D6rU};Px61Igm&CrY^0)J^3?KcW_%~Djjs6haM&X6S1?%!J
zy;m^T|0miyUn{&`-rup8V0}JscZFcS%fzkaI>CJBhufTHg7rAr;8DT4eRRB7JI{U7
zQQEV&il{M3>~;Iyb*^B&4yLYk{MvlqMv`79mEM9G;;+ZZ)9w<i>)*JQV13SQX64s<
zknq)2df6={eZ6qj#%=Bwd%okut!@{w*ZuSNf!_3N{PZ=#>-PUoV|#zDUMl(N@wdRj
zt6B?RMXKYh>mpbm&o+L`k@~h%_I7@|&lG<>lVRfz`U=l$Fm9O_3)bfg`*>(NOL)D1
zpYADG_gDWW!MguRs`0-gn+wnLCbwTt6s*rL*I37Y^V5Xa^)Grzu-@PO?-8u~S9XqI
zU7s0~1?&EO?dO8^cx<O{m(Rw!+|qwTj$Qx7r%3v|2IOYrm#p@Bzm3@I{XN{mZ?*0<
zoX7C0x}R;OE?Ir_9O~Pg4es^XNdeja`h0c&SKj))_LpFNK5tt^>`y=%+<y8*_~rtg
z_g)jM$Mb%V3D*0wm4zR^LwG$N?Xc1tK0$arp3MABaBG!cuX6;u7hj0${es{|imwd6
zV&(s}g{u}xdb+=?eM_)DpHH^x^Vd_t2UPy0*7*I&b;9fMB7eJJeLlI#s$c%m(%$-d
z?tryF#`=VBr}A5FrT5qI!t4EehQ*IPR``>Z|CZ;aJi7g!vFiJmb$xh}b-hshz4+_v
z$!Fdbtk3_SSa^<=zTMw!{Jh<sR(Z24+5eAP^?$6p)IU$v-*5S!WgQP!Soq!jQa^qE
zey*CN*IuP}nzjFe*8Z~Vw|lLmr?2nMd_b`7fB#iH_dW0aIN7?s@A!f6`ufD?dkqo3
zhN@rnn*{6f{$!Qk_TOb)zuLI%Oi53lABqYD>+6^9DHpuY@vD11-|y5N+Dm(PSLMme
z@V5VA3y-=}($nM3OQ~WXRQ`|sAiVCsUs?Vid@8&i?{1$eSf3xBc}8$RrI*rF((haj
z-rrn!JwMU&XYp^P?4Pyxl^+SO_s<Pi3f9*HPg(pz>v}*X8&O)T7#{ewq^HksA6xCg
z^B3Q<-~v_(_kp=ht?F(64|Yp>`uIQ9;ul%{ZT2#;*Y9$0k`@a9V=~@4zb%?9_PYIh
zTjS61*7XtY=QC2$S}o35{CoAJD!9eg7dEOA!M4HbDe2+GIlhVh<fLR6=$;}5!S*Ka
z10OJ}?*zM>d=hxwvy}f3llOxUdHnwdb_>`&O!$xIsxxqA$ae5x&Y5uTgmWmIOR=%X
z7{GljVEobZE_xp3sCsql)UK74d3?j;j%{$v(e>~6VZr8=1G6u`d*(C!ZdtIl&#3RF
zw(k7T-Yo(n-u-z++dY%2Wz<NiS+#2Qs;R!z^crc&HT~7nGpc4J)yzooCsj$VnYecG
zQrYFTaokcu-&*q_Hvf?|p4$9ZK{=lE^|Z~m?J2yzUbp!Lrwh+HK5h@G`%8`++>UK4
zyuMxyx0>R{M{7@a^;I{2@DKyx+Cy9%ZY_Ld|5O*>Q0IB~Rxa2~@yb6iPW<OSHU3K)
z1|A;h@wfTXdlj$zotD#F`{6nD)-zDDL-^AAs(fEgcKQ6%8*Fd`v(9jpE`RY%;UlXy
zpG2bgonan6kT3jGJ5xuJ$nBxZuhI{ECH(fcKU++`WS-&!l7C>X@H5x9cZa&j)#GXA
zgcToA{P@z;#~2^_OVv;DrHXH{ZQl>%b1xo574r|xlk~T>*yY{|760kwql*79aLjY`
z%l*@vzB6C^8%+Cf3HjhfUjMM-8?~uBoP3Gq)&7kxl>K+pBS-Ia{ZCcxtLuM>q+jQk
zlB>uUZ|qIwgqutIlq!CH=-XVz2RENf6{}w$EO!0+R&C4p;G^F5i!PM(Ck*c6CL9fm
ze`!1MD}G0Gv(8id(7$k;O237~JC}-o_Q%iv?D8YLe6iv;eep{-@+CvPe4s%5o2)yn
zJ^4r*Z~00UpZjS3Uh+;z`Rn!>C*^2z|5fuzmyF1va&-R;Tqf!7sCVtDjE`<~s}bW%
z6<=-Y@>S%E9#gzZKYFgDU;m4LJWW3LSGi)={Vy<H_{VmqK0&_hH;bPje6^p3TtU8c
zua_^qQpz`J@1>uRkN%=~)jtC5rGE^4cetB=X!i)3IpMaFZfLRi-??l3nT(Hq;dZka
zA60y#7cbsNzARa#ul${>#Q*cnzq{>U{FUYZoA59E_3}pgJKrc?jUSOmWqfM1ci*R^
z^FL7KQ|%YNTKu1y`=)!vQI-^@nWOtxpuW^^ckRwK8DDr?m@3wPi<SR7dCUG_e5OB4
z72AJ-^Q0X{EG&`uzT-T6<QmDpZ*qaV{~`m!F0b>C9xeILyR)n(iPDqKae2LeokH>N
zAIjQKB6zKrk4};NXRK?NPrl@MFCREx_$S`!<nG_Xj^6Txn@j$Y1$$Q0KU7okdi?iI
zW3==1vX-UPrTfpOiq$_lRni}{=&QkuFZ@CA`uLb8{Ed$v^^D6mbBAH4w57zCE|L6u
zZTz_d`S6oDRI&7JzUXentMb`=;6BBx{6lM`{oa~-%ePFoaJ`q0I#P~zHZ0vlzT|o@
zAMgpE@#&_&$Oj9(yt7u)@9@E!Zu{mgvc`v9(th{c`D+UO^KVnUKE9?)`X@iy`$Y1^
zcX|CIQAxl1h|`kDmwutfUw!`UAn7lx-=aJD!UF@S9DV+dW=Q%Ey?VNPe$K5uQ1}iK
z@2r>fyA56E?)Y$OUk@Kv{FC>+xrRiU#TP67iBB%SntUYP>mRsV(tmdN^jYKsRlR&f
z@k4st<d#2@rg**o?h*e!XP(}l{^1+Fe6+6A<F-GlxKmX{rK<m(B=OODqTAklQiT4w
zhrIpM=_Bd)eDakQ<O_Y?@jtBi{#!?VNItsqEUNhUp!jP(N;;kKfmL3<^f$@>jcKFY
z>x0Z!)c(=eA2$nMW%})NT>nh>Fp8xg=qu%0+4i!o<fGqsuYba~oX=?Ip$}HM<4gVu
z@A*5T{O_6lzI&@1`OE8H{E6g$XSDM!rjvPw_xh()`PaN>vs>`|3~%|ITP6R$8u;A(
zTe58olZll-@}`u3RsQBij1Ru#<%^TV|K}bzxgELWH7_3>I+botok5#kppGnaPc!lK
zPnYs{yz|OK<O^@~@}b)#{d;Q7cE`7}6&9Z(<!k-qjWyi#S9*EpGf98Yu6Nw}Ijbzb
ztMGr`_NIGd6tVd5Fe(4_3zn{B`k^&m|ENm8`KAHQ$md@&lqy!g(C3nV&%f?>PcVUn
zUf$^^<zM*QT=)D}_NzL+)$!wm#Q((>FT3Z5vhQSkDOJ~Rk=vzxKA!kf8uN|LR^yMl
zz6yLP{sTUH*zGv^{nhcI`Kb6;du#Mk`WH4=ydIx=ivO!cZEh!Dv{_x>=<|!>w+uMu
zMe@;O)%jhQzqk0mF!tK-Tz;QAzbk*|YvI3pcf=a<nN8&UqOZTAitql$6ZexZTM?#;
zonJ!Vi2r#*COzsBKe@wTj4xIEtbw<??GsoXcFpwpITV)muQqGSM<nupQ~s*_;SsX`
zzwS6`3;AHOcYJr=5`KH+%h}`$lPvxYY2PbGKQ)iMli}q9=Suz;N96{vQ1SZuBJ!=&
zuc$-&OuA=Q_xeYaf9fxrt|MPo!^@W{e$CF!i^=EL^zwn*CH<f4&vE-lZkF&m|G;;`
zZ(RFKHTs8FkEM$D@9|Rpv7e5Alku6gRr+fGMpgYUuQT=@^3gip{EJokPp1!ekKdB|
zir3@+hmwBNY8TTTA4UwjN}nIY-%I(@S1)~oL~*ir|2aPh-|_3)O38;BsPuypA65Ly
zh8NyNK5(qJe1TT7|4x~^v6y`Raf(;RM`*94^GHfw7xK=au&Z?cDpmYtb3b&ie<KaO
z=|@%j^<6*J9iPg2c+Wr11gU>=pC$J(;lMm~eCYnE`1dcJT}D1?@qv%Uf9*LL?!ZzM
zk?W7r6Q$gNA4M-5Fx9<2jZCw~p8>)@J>hG2d=B^bp1(^cOZp>k42@>~#Y1waV*R67
zrN5!|no}5`nd&`%ho*>sy)9SmAzx_op9+7<{sm3QM?Mk%=UdDmbo}mL<ZEG{il;KB
zrQG$+j2qH){DJ4TKk@Sww;grQ1N*;tTH9!Q=m5jm+~W>9%|-eTKDxpWuEhK-TwXjs
z)<Qp>%)hIXEJqt#v}3jhxry`h$IX}!=x}1&a~I5>7?^5fls`6i%z0#8AFY%8jxQxO
zxk}Y)Y3Vg;W>mK^=p@i7psRweVdF?==~v~>UmYdaF?Ky-xV!itHvhC!`fu(lqGR?}
zAfo+SO>>#l7qTWWkUK?=ztTyfEw?y4Rpoz|j1NB@IRA5!`Hv28ZK98fjyqT(<zKA)
ziyxltj(<fji(k>R75hg{ll%j@qT9AP!Ob9Z@)@oUC~f5$gW5l;{9849p%%%)@!}s<
zI_6*nB3)GeLq(5zIIqMtdD0yQobWTEEw>od{!!(BY1#?y^>u!U_yyiRGXKCZ$^XPZ
z7k<XXi=I<{FCLkHRQb32yp=n?6u&Qi!H<s2KQLVK?>gk>iOfHAsrZF&I5PjJ@}K_k
zDLv`$yd-|nZAa!G$dmj#k2&c*x<_9Yzswy+=>N5huetjle1ZO@pNL=Xr$^==Rrwcw
z|MpDR|6}nh-g9LBfe}*vhTGn7`(KGFcgd?q<{wr5(d<``W&Yu<;#aCP;}UJU{{==$
z{#$mZ{eyOe>%>3v!6VFH`JYz1ntOemTP%KMTPpEa_Z`u_(*Dsun!5Lo`HhCU#Vren
zPE>ZrMS4iN17+ers@fd)_zRTExEFc9lJT#b_=k3h{`lFJ>zQtFy7)!&kIX+hTKq?@
zI__Tjm(CHt+_^{Q9~dM4gRbx94q#=o#V=o_!!#3Z5mo-E^7lRcKmqMaE>QW;I>P+V
zlKgib%!$&!Ow~JIrNg*HTP%O&zo*g1?)7)RDu0R6iF_HS{R3x9{!><eUCQ{v3#Htd
zN9Z3_{#^#V{~i5{RK0^L9mXZxbpIJE`S+{EUth)kpCsp<!1<M&f7JOi8Ww;5!#BA7
zCwHn`--gZ?oiJ}k_7cD7R5^d9)!VblwS89RC!AuX%S%A{2h{xfplgr0nx=)%i(lZm
ziv1%x|2|XQ90s;&>t5eFkvta%ly*UaKiWUsSNu26JJr2TEbJ=xw?#@PaCM`!e;`Nv
zzdif)-6TrS5q~GFbU6uV|5D|je)AspQn+Y=_?0MKj=K|4_vL|KW&G&Zp!OizMt_z2
z_adb$^N%Y3kEh-+owoVEiGM`t%KQWB`M}tJc5%nQl5fSoRO!n6qt^3<vaiKoKWC`S
zKk&QMzjl)i$I&+WovOdmmH9`NfAr+;Eooc)z4(_XU73GipX8sB_uj*_E&M_Jqe@ri
zA65RVe{0~*KZW;-f4<U{`3L@x{QG{L<<5VW{w)4wN>}C|RsQd89C8_LgFlIXNa=F@
z)%X!vBmMt^->M!%+vxJJxGYs#&|!b|^}GH2rnuiY*EX!4;~eIwB4Yl3O8uWa{z13@
z6%JSP8$(4`>VH7|&pGa8xiLLM^3NP7x;%fUuNwdQN&VBtO@E)Zp|@4}cU9t_lh{A-
zi<CQ}bY=O6`%C^=qpx#sAwxS<{yQtlUzI;}zl`7GjvDP=|2VISU!dd&{U4M3*Pee#
zKFgZFP5cU9uEbx}KV<nAej@cRQ@YanPnzbMj2%(7-3@G4<yY-cnZNUZ)PL%x4)@Zw
z_!aRleYKMEtM)5a{;za=+P!`&ena`cd1U^90n&aiZo9+n5E0dHqPvgG-^rKqAGhtV
z+uXXoC4K?b4=byGc&+5$t^3#R{cA+^o2Y7s%KRe_O8!mqomXiaQvD|U`jM4Cs>=WR
zl!b56Kcf7isvQ}ZXp8ib<0o{Jl)uO5Ot<5NFOmLJbdBglzKn~FAAia5pFFjb+keAf
zoa4F_e<r$Ie|7y8JtY2}k4krM7)pMZVI=UY=yLtl_-Q{s)z4q`bJp_w9X<bHKY#pd
zfa{WZP;|Ne{iXc^)kU{!x@rk+i<-#wYiYLV%KW3szxy|*x#PdnT>Nrd9-;qi$^V2)
z3Z?z)iC^TXBl8c`5dR+k?AF~a|FPm%6sXugqUs;b6#u06&T)5G(JFa95?w30-1@8M
zUQwU)zptJg`zvh&ugdeY!dFCB<{!C4j-PrxAIqd|?(5=LQc|&hMBRS|{E~l{?3>&U
zAG}oVJ4@7as`B#J{?6Ode?MD3$X&k^C{X??oyz=6kCXPB7;JQqwx!CyQ0dD2!z%yf
z_kMmAZ8I;E{G*F1xqnvm4>y$jPa8Pg?eKximA^`-viwVxf6F>=w4-h43h^&i=~U)l
ztjd37w_m@ZZSYF*FIDN3>mQPGm#Y1D{`!ONglTDecN)_vI#G1F{_6NIUMT(Nxlfz@
zM%!pZxqfrBE-wK+esrAXS~Pzq`Emw|Q)S*ZH%)YT?y=+NHmS$vAG*2ck9_s~u2|`E
z{nhyGbe8;ErDxwl+oBs}+|E?j5#{>p@)t<`do}CuFl}>p%D7#!wUY5$`Ioj3|MVAL
zb?=`8>iJdCQ5E0+>hnjqyBvS}SFUk)SY|Wv%WqnVzq<Y@-Xq7~?)Oe9WBE%4%JZ4P
zAkmEb-?&|Fz0dYvt>YeR{qEcoX1GbZJ2gS#<4zJjRdF>s3Qkk_L-oF1-2}dj3apZT
zU;L`*oAa*e#rVt>^4uY;w4>ImkTW;!AAU{zb21A%k}q5?{-sLi-zeDhWjMM(`~rhT
ze_#00cZ@IGcm|bI_?YOZ!fvGTNBc*Wf6bG(x#L&qlj2wWl;|>r4Ocg){X?%y{>MEi
zH@qRWJ|?2q$tYc(e_)9CFSxn$i?k`-C;2*ms{A#!6431zJxBZtp6mH1O>!5HcP&el
z&c8~q<?ck6il5V7#-Dz_47-yyr9EZ-rL3=-zv-j2m4MDaFiFzsUffi=&IvO9W}c|D
z!j`)ey-xh1kI4A(bxHp(XjAgB<X5~$bkVJ9Jhu|i{`UII!uQ25@}cO=Xk!0Z`6o*`
z`pvk02D1qLsK(EqMCU4OW$y$E#V>S$jGrGr-{*ST6y7G|cZpn%I8lWU^H;}DKwbac
zeE+lsv?=@DJ&ijh`$UJ8F3&$&AmzBbu;>Qb1ahR`WcC-GuW-5ki^czzKdLpOO>~L$
zmolY`mnQB%y8WWpivOM!wcLg-+OOLEfN1AWrL6*J|L|&QzxPJ(x|Js3KcwD8N=Nn!
zw%p5w>E$wBB6^dQ+p(U17H*UL^mEYAM!^B~TvMl_{lj4?f5T3v-%c*@pxB3$&Q&_B
zwC!&{KMl$<H%C85Em8TFm6N|SPVzr{*6r^25!o*JXYLRkQ9Ag%;8^}@-CwC1zrIWU
zW+%Dg)zWXGw}>uPxJ+r=KXPEI8@0aO4!8d}3&bzDP;{ok0j0Hn;1+5B;x|R_sN1J2
zxss`J-5(t!Ix<FdFf3a8M^*U)6QurwT2<dbF0^cvYm#}R=v;-1l(zkgmH*&f8|RWM
zTp@l%t3*c?c2)|G`Rnpea;J@*;-xpZ*Y73o^mk2)lrB^{|6PgK{()On|JxwtKP7F_
z3*-U^<ajImOLXv%(tmi5LtX#kTc!O!U*2IJ{ll^h-f`}cb$<B@M|3=mu<7=Xs`ZnP
zFI@Z;<BN7mI~Q#iow-AFnbNf37P77{j<LR%uw~i|*RGEH7yGqTaC3!=)w;gWxl;eT
z?mRx5RG}l!J)%lSlnx)1{#15IwDu3Ikov!Q^Z9=Im)$M?L8VKT&b?1PPq|05_K*A}
z{w*7Qw%7H~QvOPpDxF(L`PcILJ1fQifhR_;qknX$vKt~gU*kN%MGEWuOO=1C7LRXr
z^Pf75%88z*w8Hr_1Uu72YyZf2X}?Y9w{SaD(e0|AMn#7eE>SpF>BtwV|J@`0^Eb^;
zXTF8K+{<`8hZG&0CAv)EOoe0qlf?g`$@`w5e{O%V&sBDXIfC;ww)~4#{<oYo>Sg*D
z4HNq!WfxSqMBy^aKdSOCPCu(N{hdkTpLwCmSLvYAxk~HuNA6YqZ{`CV>0UHN{0g<7
z!bJ*~SpK2=#DB-A6WsC_P80t!WtTf!l}G8I(mMapdE#ID&QljM|FY?-+{&&*=|ZK8
zlrB~4a!Zwe^%bSt=%4$V+;@fFP+H;Aoq|hth}QWBrbzy4{+Qf|{=rLSoGD(Y#v6r8
z70y&x`xh(!fzvK`%O71NenF-4mCjW<qBQd|x61BcM!g~9N49dBZGFF{gLOZ3p~bhi
zc>DV|qb>Wn7PfiYKi9Ii{cYZ?JHyW_|0J7GxSv)2a?JjY{@>C9`_=gTu$*5;tytpD
z4~1`#`L+D@qC;1U4k}$(Bslj$(d9KqsHPnErOV~|<(JLRtfXyd>;TuLMCtH!!TIA=
z{5a8}u;}vA4>ywZqm`^r2wk1$CJ|U9x>Vt!YXn!8er4+yN^<4?BR{0{5YeHbqAN?k
zvh@v-3nZQ5aiRmWM3*UDS^AZ&e+Vs=^fE6JovW~Owcv8oZ!PT~dPsDS6MmXX+u~h0
z;<8(GnZi+}OO*~PzP$7u)jy+qW&WV^<fMVL4W1*{C!w(D@L18MXN%4~S9EZk=*rSB
zEs*pdc<yYs{}+x?{%48KRM`1N`g?JT#FwO2oPI#f8%GYh&ElM1`onoFOJsyP|D7c|
zkS97kQgmd9!ec~-hKVk>9{-mT#p=D9&^#F*)(zeH0;>|JtJVcRDc6^!nS#R#7b_il
zO88=>qw;t#)*3qf(mY9j^65+GlPr2y`gMuYxk{HQo%x>dL8Wt*jwoJdpwqYCAI?|r
z4;Lz(sdSOjB}$iR{vF9rzjth>Up!LEzwnw%k0V#8?2D8RDqW&<nbMi6yg{YID*mwa
zCrkQE8-F#CT#2f0nbP@6XR3LxpwhWY=PMmmb~^nob?&SGR`AOOzQ?{l=fKJ*=VUfL
zcV6oY|6H&&@09g(&nc{5b;Qb7M-Kbx!?Qj+`pM58?|)6xpBsI+Wbs#TTzU4Aru7e9
zaHUTt1g+Q9Q|oW?8}#471TC=tBDtQemw;o`59)o8<Z}2Y)%P?~%Hb<Z|28%MpH_~4
z$rveLRyq7frwCu3|C`qLK<s2HyWX|!|Hgl}!2ioFFvhySwA<pp%G>GvtJpjr{Hwl4
zVqe+)b7lO0dc3JDzsh)f{=ja7wF@pAU6HK&_T3p3$p=q2xS=B1wdLIH6-oLc8Q+hx
z3#M>%Ud89H%KBrtllZ%njtTO}8YF!61RSG2s^t85>rnBp`EU9^SxNqt)vq#s?nEhH
z?efZ3$@zJhH6Bc8E$LNJ>5a4aS}ldw*AwF{zJ|ry^Jk;2^oLvi=U99>)%rX7|4<7Y
zvhtB%|A|N9Qauh3;<dXOL2O32*oY7uk5D)kp|OsLVHFX_5@BFB!o-a5U_^Maq~R&Q
z30!|~1pGY_OwWvP(>EeqY*+}6M<^VN&{#*ru!@Ldi7>DmVPZyjFe1EI(lCm9SkSic
z*49nW<HPjL2sb|?Lh_GC2#&ib9E;FcN5rs-h+~N`up41wMtCqHyjaqRm(FqQ7r<*+
z5!I~-yz=d_sAfe}wIc9JyvKs?$eR(VRz!*wQN@bDtLGjIzZH>WMc}o3k45o8nKuiq
zm-&NTFL(IVZI3zqTvhr{(PbAZyjXPPQPIVZD1DXa%%w^z|KQbv^RE#dxK4EG!=j6?
z7oDs83vW<%%0IJEaM=RUMT-=#%b|It!^$qaOxZ0LoqMI|QdN&kr9&#8+*!h#eSzT#
zD#D#qL3onF+mwD;>FrAIP<p4*uPFVh(yu99qVy+9w^0|yZIy1P^a)A_m2R(e2c=I^
zx=`t5N-tOXMx|FMy;A8_O0QOWjnZqCzDenumA*ykTa~^|>D!f#D!oqWJCwd#>3fvE
zSLqE(->>uoN<XCZ^Gg4s^sh?)rnLKUXSCfuh5t}`ztVpyeL(4hN*_{MHM_IsgsXcj
z>vhTnul-rPasB%nzqaw1=SFn?G3&=scU{(P`P*ZU{fCX$Y)E~_H|FwMo3Cu2{rtj=
zJR8qGd-JS=4}TQ7C*^~iXa9Kf78`Gwa`R`4`)=O5_0}ylcdpCGw(-n1U$@<G#q9nc
z+*fqgdrSV9YvZ9qx~`eNwf()@n){1hDj4;wjeo9Iy0!1Jd)^*0etXJ!EnC*H@s(9K
zHSg4@LAwLf+YG8*z0)uo55KVL#HXsBKeye>&n>#L&8+1%Uia0rcMO<x%)R;740!I&
zA=6&6@zGx`e?2>8?XD|3*7zkqdVZ#j>utH~=(K64G#ofDr}@UGi%zofBN@kb?!V!k
zGX`(JWz5er+fBCd50~9Ad*=A{^Xtstc12p!OV`?X|Dnx=-%iWD>-RhV*!<J{3%1%=
z_k+Ln-!1TW3;f*z|EF8vGi!eSgEQp*yM`*ryVm@~R~GKmU+ne#$8-z7t?s||dXXw!
z#lEUazovy>8X>&<k`-*evC32XYT=Jo{)N2-XDHmPonZaEVX-w|u+K{GYKwoQz4+_*
z4X(HNJ1l(WSz@oBKRjsFziAKQtEuumW%2D!7G6J}SZ}pQoj$_r`W4yrv;5Dq@_Wy+
z@7+z()9ruhiGp=~8(8ai23z)F>-%4~3=@Ane^q3a_h}2OW{9cA*80rtgC)Hh%Hl~Y
z{g*Aget_8P{x{Pq->0jDZ=li}Z2dmNPRrl1)`!-dEdF}_YxS9eb^pA_!VPnUuc7kW
zWbw_d^au78d%b`ASnbiQmGF8#>|_h)TlV!kh`rvQT`l{e7CyszKIR)M{<=S3W|cQ(
zitxHU9<%sMt@LMD>1X7KzpihF{rgGhd(%%-<CC5*{L!l4J_~<nfB#>-Z=}bAjv+~3
z_y5ohg7tXPRn2GW_G=UtUbn{$mj5oRzFV#S*IYfH)cqya@m1h@>wTvB=XvXY$Qlp+
zu*TD+)_66-O7Ee&Bt7?`Kk|IYN-y2&|1+)QD_|YJ_gLfeE-U}@MoNCVzEiC6@fB<S
z^}WtwpRU@Yla=2=i!U1|_O+D#y%v6@yYPCvy~|4PDyw{FS?NDu;Z;`p1Fi9Cr`5jK
zS?#yj+8?W|^G99Fe&-}9zdpY1v3@`2#p%N9_3HH&2-eT%m;6)k@v41VS>=DnI$utl
z;Z5&a>wMw2_TO%+{cgHY{OhXxezfeTSmil;z1Zvim~Z*_u-fA}YkyX;j*k?}eng?9
zFE6<}&gs_giOjLuZ(Dz{*XNHmR)1-2m0wjeuKe8{A0!FlhonKOLYn(~;-i_p!Sx2$
z8}Yq?`vLa@?g!it_Gch&FyaOyZZPm*#AE%vKM!$vh|2?J7;BXL<DkbOZXE2!A$}b4
z8HaqZuFF3W+(d8_5s#T7{}kXUz*B&yz#et<&qUlz#LWbriTIg_n}fJHh?@h<@B-)s
zPBO}$jI>jrQ=nTww}AGcPCn$91f2w(3Y`j_0iEIMUeFWZ+Z!?wzP%w6VbdEj5oz>>
zOoUBu2+P|Savp5@Le7ItU&wi=Q(wq=;Bp|7QC_yy6r|Y?G6lB%AXAW5KgbmLuuc0z
z&WGOs$W)YbAY>ZC10mCp-$2MT#GL_|fw(guGZ1$MWCqe544H{^2Sa8$)u5|E`}{*8
zvtT<EG7GjtA+r!S400jz90s`%+%U+6;D$knheKu~JRC9`<<Eo6K^}RKImjaqG6(xG
z4>AXN<w544K6w!ClaY{lkWmosmr=-XG~^=GcQoW8q&pgNk<$QWZGf^ifNul%W?+A1
zV1H$xT{6%<8Q?R(XMoQDpX~ntasX+406BoT4<HB7A3lH_0QUmqGf1<fWPfwWR)oKR
zO<%})kO7dXDCc0vOmN@$lKtQMGW?q$%aby&AAGR&!Pas6_zZ+!gnSO!3i$%^4rHHG
z6J@Q5vSvYNLDxjzsENLj1)T+56LqMGI%Gj-LDxi{HIZi)bQW|??2nq*A6d{@&^1xV
zny6zIbQW|o?2l&HAI-2Inz{QU2W6j(_UjJe@zWbJ5p~!F`3>?m<X3QmA*@?F)c*v?
zD1;ZF%=bc;`F;MCkkyd2klP{aA@@PH`_mAY=HiEeH$pZ+o`CE?{1cED5q=gz{W9bY
z#J%Bn{B@JlAU=O>=oIK<k{y5j<P?7s2z4jmj^H|i>i|6h`c%Yq0@oA2-836A2jO~<
zlOdUqAnY<BL4@l<=>HDnT}VC1$&jNUrz9sMk7T5k2A$^WhR|IhUqQZxw1o_UO%q5@
zgquKmCRc;5=HlkSeIczO1CocOG*21sN={0itNR1L4cP*DBc)4vi}Wt(K}d)6&FL?t
z?}m)1*0)+$$VkZUYRju_uC^8O62e=njmYSe@pi_ukgXZJAkRVG&e)#OwR)fGU90!4
zJ`#F+^>?ek2H9TygX$kcx65pr*|9;D1|1uuLee4CAk`sRkW(RDAYCEdAUzs1MZai@
zev#_$0Xf%c0^J0<J#>3$pZ_Jum*9FqCV=Y&nE<XAWCHq9FUSO^Ep%IG$6w3m_-p%o
z(AclOw&-td(cgm5LFg2Ji=-5P%cN9)AEY-4eXK9!JcM%~laY1~WHOHb9LQv(odcQd
zw1aL39mH`F#Bt&CzXsV08336Ip8=4mDANE4@j%Elq<wP3WdA7*+XJ@;ZVTPk9Tx||
zZ#wcE1ep%oK@j3IATtm?12O|XXFz7a=L`ss>$f4lqHJ$Nenou;qP~Mr*MSh~T=4lw
zBNswF6fz5G4Ta1?c}Al=V^E%<NOu;vVUP>K4TD^W@MvGEe+(oH83#GHA<j9F;oxS&
zW;kRve1}73qfEmgvz=@l|JgYHgU~_fw$N>%eg4TP(-dEt|9r?)pWi<M<MLdjF#<9d
z<sS)|2fLAwd8pG!$UNjV5;6}qBO%0RLgs@z6EYv+QIG`~t4BjFg3V~iMJUr~2sQWN
zY>f5uAPZny;A?`u)&zYm9XcJ_=YI}@Co<3ubUJi8v>)0Jo#c-;O!BX5=);e!`TTyg
zGk!b{IvqM4+7IoAPJvwt?3$pDH9;Rshfas~L;ImIMnS$o9@`<`fZGoF2HbYYH^}F4
z<nu(sbo8xs^sOe)O<X+~dM4rqLwIg{3-Sxncnk6i;@*P%f;8TO{DO3LBAr)I-YCku
z4rPr()}gFX$U2`N+7I0Xx{0gvkp3K`kq6<vdI)|+@WE3V=yd3GXg{<cx(Rd>m*@4-
z0{D)CEP(GQ$O6X??T4=If7o9K;`p889l!5*AG8m;2XqhU+8EF4KpcM>_;he-kaTcq
zkaX}H!EXeg2|f#4CL{~-D-pjE@%0gZG~((*jz;_@#BV};0P&3w7l1TES^-ES@T<YE
z2HygFOK>e9Ey1;bv;_YI_$R;z!M6t&gtP}2gtQ007W`W9oxpbn*9p=YTqj6p@XvyO
z7JLYNcW@y{cf{Y0_}dYmgZO@k%YpPm{ELWx5%IZ*AA-1C$PlEJ3mI~J9h}P?|0u+b
z0v-kXmtp@h;=-^WhxjmL9JnxK9Qgad-v@p&_$lBfL#BY644HyB?hCdj+lcjKS(*RK
z{@&Opy|GVv`;#DkNHU}fBn6TRNrR+AszRzkG9c9<H6S%10Z1cAV@MN7Hl!(}8KgO+
z1*9dU6{Iz!4Wuok9pnT^7%~oWE@V7p0%Rg&668F{WXKfA`H-oQX^`oV8IYOBr=V`h
zkly}$VCwt*JzV`5xMkqj&z2#68RGACdi!U?ZWHi>z|>pOKI~Jg5oRBG7H#(|+U;5R
zKLLNX*LK)G0om?PK|e@#`vUvJLD(LI?LpYSh<LW?4u5U`7VM8LuzwM<13v4)ai6Y7
z{5ois;}VpE?f)ulsDDE_*jMgD_&$Fpe_^9e{^gJrkP^sSkT)Ry#-03WkZO=7kfx9>
zke-m<kQ~VAPAC63=s}P!2zP}{KzJf#7UV+6T*y4gMUaajmq9LvEQVYKxdU=9<UYth
zAeTTELY6_6L;eYQ1o9|kW8<~K0l~GwL6E_aA&_B^Jjh7MD99Md*^qM};~*0tlOU5J
zGlMrl)&^%m&w`!<JqLO|^nB=xp)ZE+1GyFQ56A<Mhae9_9)WCxY=S%ic?$9j<XOlT
z$P19IkZq9Hkk)I^Z$Q5R{WkR5(C<LM1N}bq`_Oko_Cm@aKSF+j{1tpMb8Y66nKwh$
zXEx7jpVd6;#H_Bh`_>)_d9uzEb&4R*Kpv|5c-@EUKA~^ZWB0Gc2yKDjjN?2Hc>(ew
z<Ru8#7;t?7&JqsS73_p?J;AFGt|NFI@&@Eh2+jb`+mKz5cOmaV-iP3h!ub$V3fTj}
z+0EeskIx{VL%xK31^F6+Gm`Ty<U7dskRKp>AwNQXg8U4@*~Y<DhVvWb56FJVpAg)=
zIDbLh6*YLq?t|d$h~eIGk|9+fDUei18YCT36;ch70jUnD0jUYW6`NBVQU_8OQV((z
zq(0<m$T5%xkYgdoK^j7ihXf#vAdMkSAlZ<nkQR`ZkXDe^5U#c0It#9`;Q9)#t>8L}
zj*ycfr$9PGPKBHX=>j<&(iPGZ(hJfX(g)HPk^{k2moo@*24pZK7cvAg9Fhka0T~H7
z6EX@i8ZriQ7UXQmSjah$Fk~F$T*!FH1jt0lWXKfA`H-oQX^`oV8IYNfe8>fmS&$1M
zvmtXJb0PB}^C1f$7eOwDTmo4LxfBwGtb;rR!P(w<1@bE7HAo5Mb;ui#Hz999-iGXg
z?1sDpc^C2?<bB8okdGiALrNigAfG@!g?s_|67m(~Ysfc{Zz117zK8q(*$XLy`~vwE
zvJdhHWIyCj$N|V-kb@9+Ek_di8YBtgha^L)KvE#7kTgg-q$;EuBm+_%QUg*Gk_pLz
z)PmH8)PdB6)Po!asSi0Catx#aq#@*ZNHa)tNDD|yNGnKdNE=97NIS?0kRYTz<U~jZ
z$d!J_SqxbMSqixt^8c~--cfQ?*SmIUB#mYiTLKA@3z3H01RD`uWRcr|%@_xoWJGTA
z5NsEDFsTg~%LG#-Gvo#vEP|l`14C}Iz=R@;WH))h>3jBhcMI{mzTdjvUEiP7TCYw$
z``sthsZ-V6Gd-o#(V6HhR7Y2%YtXgmI&?j{0X5J==wb8-dK5i|o<dKfh+k3+L&MQ1
zG!~6R<I%!s9aKTzMLVLM(T~uN(NEA3=ty)ox(7AU6X;3w6nYjthh9K`MK7Y4(97r*
z^cs2{y@B3DZ=tu*yXZaiKKcOt4gDRp(1++F^fCGbeTs(A7ib#4G*}ufgO)|hp&Z?V
zo<b||L+jPiTIgZ)2%5nUp0`HZpmWhf=wb8-n!ztUa`XTiL=T~d(N_HMaci^<dI7zN
zUP3RU<@iB*C%?SvLZi`GG#*Vt>!A%$f;K{%plAus0qQ`*(FimWb)r$I3w5K>Xbc*Q
z#-Z_O0xF@2XcAfgEr=$gDQF=y6)lVwL5rfr(Bfzbv?PkrQfL}l8ZCpCMa!Y(Q4d-H
zt%z1aE2CA=s%SM-MysPW(3)s1^eyylv^JWK)<Nr{_0alg1GFLf4oc8QXk)Yq+7xYu
zHb+~a8E8wi71|nYgSJK6q3uxxeHZP3c0@a&@1gIbol!6P0on!q5d8@K82tq8imGTg
zv^&}Z?TPk6KSg_^nP?xhFWL|7j}AZwqJvNk9gGe^hoZyK;phl-B<e#)p`+0;=veeK
z^mFtJl%nI%@#q9}B0343j7~xQ=v4GebQ(Gxoq^6oXQ4X!6*?Q8gU&_2M(3g5pjqg*
z=mM0XOVFk0GITk*0{tFci3ZSB=xTHgx)xoBu17bZ2D%a5g#Lj3h;Bx=pg*D6=vH(a
zx*gqt{*3NKccC2JjqXABqQ9W~(EaEEG>9HV521(ABj{1|7<wEv(G%!N^b~p;J%gS_
z&!IW!dGrGMD|!*VgkDCkpaQ*$UPG^=H_)5tE%Y{;i{3%+qW94I=mYdO^mo)kAEJ-Y
z$LJIEDf$e3j)u?|h)=E2Fw}vDqY-E%>O`XupIW1CG#ZUTW6?M?9!)@eYK<nMNoWDI
zAexN$)EX^}7D0=m#n9r2Pp#2XXc}4?ErXUt%c12FpIW08(28g!v@%)+t%_Ddd}@tW
zM{A%p(OT$R=-X&*#HZG19kec553P?jKpUd(AU?H58=;NSCTLT%8RAoGv?baKZH=};
z+af--M&Cs{pdHap=zHk<XlL{T^h5Mxv@7CMYqT5M9qobkM0=s1qP-EHS|dKCM*E`u
z(EjKEbRaqi)zBg6Fmwd!Lr0@yQHqX3$D<R_iRdJBGCBqIqf^l@(P`*(bOt&TorUV?
zSLkeX4mub88l8uJgJz-MqVv%O=t6W6`W?C$W#|%gDY^_@j;=tzM^~Z&bQQW9U4yPg
z*P-jt4XA-`L^q*7pg*Ep(4Ww3bSt_I-GS~#_n>>xU(o&N0W^pnLXV(F(PQXw)I?99
zC(*O$IWz}7k6u78p_kDss6elx*U%g2P4pIe8_h-Upm)*x=mYc-`WStJK0}|QA@n8s
zCpv#A<_leq9z~C#$I*ysTsvqiS_UnLHbR@CEzp*zigrf_paaoCsD=(khoQq!A36%9
z=s0vDItlfoQ_;2PI&?j{0Tt*~^cs2{y^G#M@1qaUHf3IuPzCLPc0%7ry=WKoBlHtg
zMZ2TD(B5btR6_@&L(yUA2y`Sm3LTA(ML$F5qTiuw(e<c-ZbE-Vx1ibRHgpHN6Xob0
zbRT*EJ&2m<3G@_t8a<1iL(iiZ(2M9L^a=VL4WTd4m+0T<{L--KLUavUb>gsSHMBJ!
zzP3TPFE}i^1Ko*kn+&6Gwr^(On;H0K2ELhrZ)V_|8Te)fzL|k<X5gC{_+|#anSpO+
z;F}rvW(K~Qf&VrG-DAg3C{3EQz?8+7Tx#01r7fjHk74K@ZO?z0P+Buo8`ja$F?{$)
zZJp~`Y?yu3%(f9DM)ItPEfnjpq|sxv>4~N!hU%T2ouj%(|0uL)t&O1KNP?Z6dxV%Z
zNjIUV5hG@*y-=A>MvfXYX6#`hW_3ett3UE+)m0zf>MuNxOgiCs*iLG<7e>g#DModV
zIXlFLkL(Q3wirKQ;>1Y{{9biK#W226qefk4F>S*-Ms#*{jUGLEwy}{_9y^|CoH+48
z&#~jMA(Gi;--TdnABPQnWcZJU!?E(ri;<)3IT_>LP!<(!l5NDDo%X$lFe^00fXVCb
zw(mMv$L(XYZ2P{01;5%l>|5Jm3lqa3S||2B2TP+@8tby=M)PB}&_x(AeOo_MJukH9
zCuA|@4GWX+vt!?9usH}Lrajy2y9^=PF`TC8bj-N%(=8UxH@(s+-Hx&ED(HmU99Xwq
zqqkFCYcrf-8?}8uA>`TPLBa|eGtRz$K+qzitSx&`iG9ByV)AVKoRD$j*^X15t!NU*
zaF)iG&YssEGe2g`xCs*%m~vIf<5%_c8V1b>Z&D1_kgfK;URNt7tn%^p-2>}bD{>S=
z88_a(R}cp6YtNdn?-O{8lNr{~n9oAYPNrR3dR~fsUx4<k!7we>yL~@k-p1V6qPFh_
zSbM{4_BdunGtRyPK&*pqyGD<-ZQMBfy}#uR4`+vKnr-^L_H3ec`Zn|!Ez-5Njl4aM
z*9JGfG-<)fJGb*XMuY{)r7(Ioi)o?R&=~TVu?K`$xS23IZHIYX8<B0pMvUq@HpDs@
zbGV$Xr%@-WJr2~a0^3G)o!+j?@a%YP0iSCz&N;i>$0l&~F1X-;=h-aTl-m5==<V53
zwrvFQTSH#B2o>btJCw)4k7NxoRXjuIk&s7gBfIUUW>Y%udF9ze+0thlHTrdr+5FiF
z;r==HLyOs|v}3awq{07$_QE-`TL;T(;-pFT9SM@e6WB_nr7iY9w*Mu@jb>TPqqHu<
zq_B2Z3w3Q-u@GR!J#Kxqr?bt7ZC3f7>-<}|ZEdDln3&<6-D4Qu0=rmjIBV9fw9>={
z7F=lIg%1mP^lQg3j-@eqp@r>xBAgF9Yoo_<J{FifW$J*%SY~$odPSKyg>QB83zl#a
zyP4t%lO|1?{7k4DPQOkX<9^v<QP=nh3r=2S@nu$6X_eK=Yfj?(7c3l`O>VoT1tu>v
zb&*vqW;f>UvFdb@#g^PoF}tmh#^|Olve^D1X6uD%x5d2B!i$}1F}prSa$C1WG<our
zi!H`%*tHQ>KCgvWd!8mnYxM@@amrZ=Tt+shH-|i{&c>RuE9th7rxj^;M7ujZ81iiC
zh2>!jq|3h3(%!s!$J2_1=0bzy+jm`bnTIZIh+XzQ7Yok6*>_&-^<0~cuCw!<kQbH<
z)wut0HakXIo-Yb}k!BlfF*|Wz-G@d`33(P`R+(1L%jA_U7H%1K+QX?EvrdTV2<$Sn
znfXp=&)W2jgV`v=G)*?swrycCn<{Og?zW*lTUeY-)>^4Fani1e*+SrLie37XrySXC
z&(0e|v8g^W<jp&g;r@J%w-?fQ3uMdVT8o7nd$>i~ZF21F&>rzH4LXiHL*1{>bKcJL
zL$jhCvsDm!=h*K5FM0omv0)E{epxL#nc?3@Ef#KPT;g0vOv|KKJ<k$3ANJ}v=5HYu
z)^nI+J5Qfk%wD&`t5G=Rqa(h%G~cG>_Vt)u79Ar!rUbk2MvpF8%r0}TBF4e#SZLvu
zLQJ<cdoMYWH&`2lx;87ej=1M>g>I&pADj(wRQL9wZn$fV3wJ~+?-ugx($cx$6pub2
z<grM(`fV0$dHme-xEAdG$JIM#>}eJYQ!s*;MtgTKp>$EG%LT%#C#xU~`wz;S|1#>h
zS?$d?HGCiC|IZjlbj$zR-mpJ~n9p*UozBibTWr|K&hF863|tCqk9r=NoK5bGob~4|
zrUh<mz+Sh;za8@0hhgVn#EADo%&x6@OQY+PujSc%cXWLAwHP6`&lMAde>*z9@K{*%
zcK4<0k)y0n5(wIrY3Hq^m|f_0joY<4W-*I}iuSUtQLm^xTP&)Ku~vwMrD*3VT<jZI
zOm7Lpb#Ir$wiX+1uTWg}6DBS=W$MBU&$L+A_$iA`TVb`e*57c`tt#L9@dFm?9Jj#K
zc&VOM*IH+zjkm0PZ<;-LV^mjZ%A!m4tg!m@^*7mi$KEu=x+gBQ*t8Ybn7;m|Gq&1#
z`^PP2hsNdyGxF&W3q!VfwG-0)lEuQti-m=ln0J*IZhhg^khcw=D9;-77lsidhC-fC
zu*KQ_Ij=n$4c4$>|C&GMz5Q=v;abpZmYw<Gd`I!CE%eT{L&V-K*|`YU)`Zd`7PEP#
zsvU)0T+4=7m;^gZ;l{JFVm2-FwpA@=8%M`Mb6&<z+0^sGyEvODuHuTv$YCjupTOtS
zsry*W#$u~G+?~gcJtDN%5#FpZK3*ColuijTbz*If=7umUw5KK1UgZ~uSXh$bmB(JW
zuACQZFU!u(8x*sfgst1~X6kmeXAOo|DZ3fx7PA|SO_#kTVtXvaI9fYlBf@Lf_!li^
z?=M-96DRTlI%Ud~Pt=~j;%O!PLv=%&cFEW_d^Bi1*auL16TvNYvc>ELIGhf>3@m4{
za0-Wq!?m@xW{CO9)7#i_iSlf8Y<5aVj@-=aa#@DcYty=e#rTV<_FA^p@Z%6`uRL3T
z9UZ$WX36um{}CgrWBBg>CGY<&7Al2P(m86M`RWo6%jgh`wa<pV>T#luwwRq>9hc3+
zsN+56mk=$E9C=EJg*3Yf+3jlVxfZi6TvygdXXp9tn4Iu$J7&jDo8iUm66LicOj%dg
zRqdEfv(D4lTP((PWLH6W1H;?VheMv`G8`_sPlY@hw?TA`=N`7mVyzJ4Evua&Ud;Fj
z&ZG{$NBq?m=A~<_#TXn5%Z6e1)X`HyjN#g93m>Gqx|UGgFwHChTWwv-hrF<wc`F}2
zl9bl=JWY!obI0&?6=MQJJzHwy?YquVN4QeM{lRV?J1Xz1Au_U^z8>QcM|J%q#B4IT
z{n+c)*a@YBEM^meZ)<NXuhhqfn2sr=aq<7^>+OZUJQjxB{^#ufl4sw^=Kf+!$L=sT
z<S`fjm%RV4vG#Rk*Vg6j_QI!eTWsUT-Pn$WE1S>lW5!OnCyd1|bo;4={U~F?geTj1
zoX&7zQu~z<<FtjV*Oqu^=UWyFOUR}$+%`sipt@h3Hu78Z^6V^X`y|AyF{;{C#LYP3
zd+6b|rrU!ZMrWtR=565`>l`;<j2m94KgD8pDrqh(D;iuf<XIixIIGLfS2qlvAuVq)
zU0Czp^RDc9;fQS{Y^%>#w|#!sXy>&9lxwzQTpI0ddWeNfb>1ATZ!xbI7C2{N6N`nn
zx%${Rb&<svuZBET<Lct_>h9jh>vC=Ba0wo2v3Z*g=t#9^!wA<J%Wd3=o@W_0GuFhZ
zAr=Nh(57+3$TQpR5w<jI<kuF{m~F_^A2ITRc3%5nX!xS9@_c4HIxbNxbQ(??7r@nC
zmnK77wyqkA&DTpu$4#C$@9^09KaKsd-LH?BpS*S76=L=xA2z#PjeSHh4xhzr3zBvJ
z-2DCe>3e?um=8!X4Y~dA3+=r2Jo8fgmc>|QTy1<xnY17uC8zw$V(m&^{<~e*UR<>e
zAI9He1PrIlUVH3Qwd!iwbJOAn6H}F^MIVfjBNw-rQp34q{yUcmu`uz<<=+)l*Ln<>
zrY)PY*HsG|=^FF3*B<(sit&l5z0}5x`Ho^?p@db1x!Jt-RMTEuwzC*ZfcJm)@u9RJ
zGqZ=cN7lUSa^}3cJ{pSun^=3y`^;-kYuVP{L0|P7dbS@09BZ-g{xtkNX93&J3VH38
zY?K`xXU}WT#;1GFc@|@r3uu(R>W|~RU!y$gv|ky!M&Htog=l#DIp!Y4v;xAv!-wB*
zF`Xd0B-uJUA5orlI&XXI>#;D<$3tx1m_v(CD6bt11AW$FA>v)LHlClauH887;wikY
zWm(8Z^QK}pj&_^F-fG8emh7jNtp86H;}*s{6D~G;L)0-o)KX*NE<~=y!lnUPFJtG$
zFvup<IZ3g37mPJBIkXo>7sh6DwP=XhU>QYtK_5G|M|t7OA}74rSu4cCX;lM^XC1HW
zuQcH{v9aogcZlJt<ScJvv9M_kFgL@uSB!(Ok?CsKDa0()j*J-5>oHA&o!(KSsul}F
zu{?Y0(A~YSx5v?s=Cg;rM=u@gd1P^<`Z#)eh*<|LZdL6*Z(e)Uwhik-Z%;=YTIjmm
zVjR8QMnYXWzRugT9_($BowwUV-Ed$wz_8_t8QYYSH)hPkp{|`rJ7;#=9W&;6i*XaM
z-{08h4BOrdb;B`Ra+sgL&x_gV2;1<F6l-%RKWXPtebo5Li%na4+2t3XV8_9V4L{Z6
z=gLzST4cJ#!utmX$4{Rvx_yX+m7y2lg%)0Pf3M4I^3HGKBzt3gip6+$#E&Me+LWnm
z7h8;tLD(TPIh~`f^jI)-ARSkEOjiQumm7J*V(wGl=CAV>i-o4FAH6rbFVwZ4`}^r&
z1|L_<7n<h&nXk7OmeTVf&sLGGM%zY=c&T02X3nb8@N3G`kyxDV4UdH(+Ua0>YhGR$
zdg$XFi-ixN?bAMH?581S=liSepYzqFh8=pxe?p#mu=Z^mRx<bN+y9K&QtGt4uMRA%
z!O>sUZ4Z0cn6F~q=&)hqEykSK?I8S)gwHrjDUX)zQVTx?7`Liop)HMW#E3O4Hm`N<
ztf@S2U&a4b%-db-zqI%NV~mwHs{1>kkFYeffH+l~{+E8|#VnQ8VxJGTv%Fy}NV}MM
z^|p_2Rg2kcn}5FH!`1kjw-<WhcRbuT#{c~5ePDHTr1N67X2LDD`_y@{ucp;w;jH`h
z)_IoYh1F?iNQ?ZO5VOg&A=@hCGxq%Lg?aAixbUmkyp?qESFw2=e=VkS)N$!od7&fg
z`wEXKMe}v_S9$Z=yXJoz^P1krbzjR<H#b<!MjKuf!jFu`-X3D|eHKRKp>Ftm9%jI<
z#QWxNk93=`!TDo8!v7hwmLF7mwo5(D^P}_C4X1#~e$rx|6Xu>5k>}^jvo5TS7d+4Q
zZL@K|s5}kKDpU9Md3mAJ5Piqn3)RAvKVrn+=8xHdv3+PUYFJD5ImotudmfIx4Yk|s
zgz@&E)v)sHLx8r0EEYz}qPCxJur28^8*6);X0fn(LO-_DI(tH1`*p#(AKAH@#rSce
zeZj+i@?h7;2A&rVo(Apu+Bmdlw<ddIY@g02OxPjhDa#i0D1NWBo7ZKC)U>`wjMz(g
zVLtUwN5|fwJ)5a;f3}yXQ3r;Y9hY9<`04eOla;3v>o@MxLVIBnsICk1+z<op_0B#u
zF|U`lV|D;G0ldCl<+0E$W3%<wu$YZk?UUElH9O?lv4<Z>gjc->Ld>q}@RqY{3@^fS
zR5u(1U0A<k-wb&io4vmbV;McBWigvewlFFD^NHHS2wRwp&*zKTkSzZn9t(44N65hp
zn>4QuNp=(r+hQC9N6G~9v5sva<#`WU9SeUIvk426u!Og#4EuNZ@TI=WvvGuedo0F*
z*{1^gIh?&uS|{Y$siZ01+3>@;1-A8A7_<Mg-B;~tJp8Lz_~CjuZMMpHZs%D&en-pk
zbpE&<^O|N=)dxe>d9+#B>#ICVu_^4>TQOTJBWXTdafi3-hT5Ti=dl*^T45b=K2P#I
zJA76GYk%Chvn}THVQb2^^Fy8u&ZaJ$;gJ`I_Lw?m&gP44%+(>r@y;7^XXlNI@teDm
zc1ha^$Nt&d({RFJblmk-jBCxZ#*Kf%V&QBt5<>Rdz(VbXw+w#g82xUj8`=qd+nlz%
zJsY*He>;1hsjfQIag6wK{yfk9XFJd5%Z@o(AhZ<zv9PV75f%$q%vVR;-Of`IqwnY#
z<FQc90#u#Q&f@@S-X?L>LLp{9n6h68*l#)(Sa2nag(al5Vsp5b#X354SF^XQY#YyO
zuRWs9&KdK^!UvPi&h6&K!g&fObH{nHaCm&vt8>&YU&U;h*`P=KWWJakp3Oq_tJu8t
zwR=0}(_~le%n;LLg_{*?=HPZ-=+=&N*swz^MyWN*S!X-8ou@Mw?!3p%YtQZ?+D;60
zeY74srCqn(2j#rjydxXgd1lDtAninOkF@Q)uh$JnbH2xh4YO6IEo;ZDy4|a~x+gR&
z#!-ZKVBuRv<Hr3t#C+aE+UU^_wCma;uvbjJhViV$xYyYw>2LKWyy<!K9Y*wj731gl
zW5$&h_`=%bOEUa;nwO%57F{x4YU#xn4E<WS_H~*m3oo+xk{c>!pK{0X-J$UNiXSOv
zZ{=B|`Yz7VA!eUI`I(!(inGLTEynFM#Q4Z*-y*o)V*g{i!D4!O<K2P%q<+kp+m#m<
z8JCNlmaco1=NC-)v^%yLVt&)69^Yr0^t!iazr(Q2Zcp#4J^KjK-bQ|?n6D}ej~w|~
zh=mVVbYLGnOOv|oX<Bv#Fp#i1xY<n(PuQ|$YJF(METNc<*%rFJc#l~j#6o>iX_9-}
zS{Ab(O0_pu-1^GXEQC?>eXe%hu#nWrRu<C|pZ8gE`*xmYD~xDoi`gi2A=w;^-Yw*X
zpiQUUjl1^^?S<Qb-FJwM9p4x7Y_N8I`4S4>C_X*J=Ifg=oY{^M4jYGkw#DrDIc4_R
zVQ&#GwAj2iAU0d0x-M6q9f?h0xZ<vBx5xBbkm(;YyB)I*?0RJ_{5iw|gr#Bi|6(z-
zHK$<)AGTOH7gmcTwkN%ASOj+1RGt%J);vG8W(MrN;+vsv`(2)$xz5h_RF@XRTH!#t
zM}Hb(!^bSJ=weI6@w8=@UA||<xc!iJ8*_VG^{~DA4vSVj@SxgZhwQoAVY@}E>fhZD
zJ=CLNZ?FA-s`w!XsXXkc+FtwbbKri_s{0(a+wR)i`=CRQIsl4R-TR>09{V2{cH5yt
z4?9FW)AuxjhlfS^1AIYsa9ET)M2QmiQ@-$;nunrCh@lka$R5y@m`85Pe(n$KN_c2j
zigIKR?@CaLa%2zkN>GY&WDoU9P>OP75BN&0Z!1xb?15h?W64qUARbDsB%WBm?C18y
z+^1obq8!-+!V;9C9NELd5|pAG*@MFpl%gEjL&Or4q8!-+#d3eBSW21jaIqBS$R0A5
zSd217IkJb2B`8HXie94RA!Ipaf>LA;B}-6>?BQeyN>PsNL1hU_QI71PWeG}Aj_d(u
z2})6p>|tgJN>PrYH(->a97S(Zq6DSL9(<Od6y?Ysf|j5Z<;Wh0mY@{n$R3WCq8ugf
zvX63P4@*l>igIKRP)o?M2dJfgW8X?-4^hiMV&6(+4^&G~PEKkiiatbE$Haa@UP_r$
zKR1v1iM4_3;cN*?QI0acFdE-ABFa$0mkSFN|B!vYK%JtD{oKAxJr=z=JgTDX#1T=<
z!^Scc^T4qLFGU&qF%KWhP`oSkEJhh0PwX+6y3xg>qPR+ohnOXNkvaYD$S8Z4KJV^~
z@?+?OSn@G_m}=coei&cs_=I}vbnv{eQBk^RXOys?qGCO~k2!`Dx}s{wDC%)s`_lds
ze5vQRd_n2O;ZaH~A2%w>DeXaY2})6p>|t~XN>PrYSLo+UVkpi>L@8xPnelM7oc(lv
z+WZGTiWcgOQv2fNvm>LN{fsi5%Gef0&k^UrbH)3#_bK_v9!6IXPv?;T8T`4$$feBg
z91&HU#Np@(a(Fmhx-iF!652^o@&RovLZ9U4Rwtp4A=*YM%2B*{cND+Hylplzs&Xvp
z#x}1U2jk6c+{2l_$@KA0_ECy*@^Z>(sZmjZ?16j<iY^!xWsD{FhwbG&WG|jUdmK~D
z!{jo~VX-Om+|9Y%yerB#$L9fZnLR{~hw&w-I<7lPDRbk^InNJ~`!G2ueuNUmk5Z!e
zCB|!Fu5#0c9D{uU_I$>?A7jIdYh7IT%!3^}bC}pX^3cBor6@=C0Kf#LC`SeTCi^f>
z9txO0+ZDyE!-V~!gRxl**~0=8l%gEjg978fGZvKXMn0Tce+$_8CHG1C-=8+8a^BwI
zxOg~TmHqf_j-7|x#V1i7O&&@QVjjP+b%pqYf$FlOqAL6O3ykGu#zrje?~1a0ZH>`q
z7weZVE64v}AI1A|{>aI;;#`nl5X+6pN&d<B@H5JoFKWkg*ng05eTQTC7v8O%QS~;&
zevT62)mJ!&|K>V=rz=V+lf^iu<(Omhp5^>6&UJ_iy!dw3N<qJP8SN+kp<Xw~WBr^;
z{UuoU_!)72AQi>WlQWv}zmLYyRzjP^6UyXO+OeEr91lvi=2&bWFFpY7piPv+8SP}m
zqOr6woSYivMzqC#LYbnR{rEt{0}OLGql`z8i>klriVDhTWBN6XBu<%8#`dtoPTHq#
z!I-M-#~-nN@uN)`%R%%(nW7v;n^GU8uQ7hkZN$B*nsXg;ZZpnvx(xHheta_HU=2ie
z4_kyfC`CE4hfOASP1`y;n6=Eh%Gu8tOJ@DGI9DiLoP1;tri?!t&hz)kM>(<wRVFA!
zxs~_@ielQ~OYqt59M8MV`-6;$dw@L{v#@&soV-nm5@OL@&LPTCY}eyEcqel%@v;w?
z2g~7FPl*>Oc^4lgQ#khbsEcxxkQ03fBYUW3O#eCiG55;&B-ZvWT&s*NMLCL=V*DsY
zIf|yiC`GxIWn#+`Ln+FUJ(x2^3CfW@q%&O_MmdU>VIQR^w|(<bj_hHc2}+SY)HC%5
zdnP>GGiN_HkNw2rD^a2xPOU`t@XrM0C^fALuR@7(WDf;RP>#YwLRX`-u~DWdH|CfU
zl-seb&OS;}j_e_#2}-S86Gkb@;oNvF;wVMA?SG4X6rtS8Z^I}@35wRHL^(=re>x?K
zP>$je+;@0A%u$us(;Ox1a?W`mXi6FLP|)N>*0}9|%33u2koyu}vM%o9eD1*-BPXMb
z)+2{MvPdWk@`}In`pXxu<4d^rT*4Zh%{B1=*PxYiXoKAN8S0{#2am>kQui6I1M6=Z
z_Y*j!t>iQMe2M!BWwtce{O63*`r3=SDE=uWiua~O@k~k-??Z{wWvH`0$3!1h>L%>R
z+*h+vy#D{1H4f**<01M%Ib2Xi+*_j!=pUshw|(x}`J&9<V(g>nDUM_Os3`df?eN|u
zJ&b$ivE-uYXXL!c{R}1S$LDhFmSg)naEz4p0NUyc_>>v1<+;6<v!Bnvx0pSk^>3UT
zl%s+#FejTao^7bp#WB=q4~{P7Jbu9Oupb{xoz1C>pDfwQYb^Pu@wD4bF0b7QiZ)|T
z-{6>Se+KUn?2l&t$}wjg&oShqjQdx%FW3J%<k%W0$VVA@F>55doBIo#cQfCkslNqn
zql_`6wtsRr?URFYxcUb3v1E6YP3z`0k3M_4qhdvP6}Zg%wi)zO>W&i16y?TSaz1#?
zNhq^Pc#~<<Vhiy;kTO1mzU<4?ThSj%QEvNV7|+%)?^|+v@A7Zn3-vN5lm)NVDP>|l
zir!?tDKpxNwxKRcQ53UQt=yIvN>R+ia5I#%A8kh*r6@<y_W1mfO+uNX97Pp!P>OOC
zA4(tJC5BQIzd~D-nZ<V?j#3mKMn4=wW@Ce+9q~|Zf5bDEV`e`+g!9gR&VIBLKFX{;
z^ABY$!nwun;6D95e3YUbMc=27akNiA3HzyWL0!sdXL3=_@u!sOQp^Ko)Jyy=)(v?D
zWdf(PQC!OUXFo^L59sf2qoRZ|KAdq-R{3L#oHE*l^G1F`nW7v;KO~>Lgfc}rig{3R
zhN2&_|0-*1dF}_437lH&NMf&%Ls{L9`5_kln6aT~d(JIoj;jCQ-t!aUC`EA}$443M
zN(^OiN|_@*EJO)PQEvO=>3=s$l%gC(yTd3&nfVhK$5D)dGPfA}@zIP6MSIZSF~lvW
zM2vA|uW<~-Q<S4<PufHA>-Z+}Q#d_<d)7$qg{ZnE$FmsuDB26}ZRVXaeuG@zcP9%H
zJCJitncF^nMLjS%1@Dz|%IK%`gQCm04<AcEs30%?8T%${3qSrj<F(w0#89+1btW-p
z$`s|sGx1IP5JNdi_M;>g?Tai%nV{5Uas1SBP_#cKN)8}~5@X7Yz9Y)$Kw>CGIjYis
zbP)b87;lOwb7HBrLEIkXUGPUl31$2^<3{oGtO*pqNgg@zoxCTtx(lGWcqpkbuW*4^
zQ0A6*9Q9FDqi;Jml$o_bnJh>SWppqx_7ln!<tRD?AEhWq(V;L(QI4X+sB=7ZD5J@&
z7nGxT3T>N+=jI*G7*1desNftXaEc1Xnk-Jq`{Vd^#@~tmBVK<;(FU&p*<Bp}G>(I|
zl7(n*JMOI~;=P3j=d=+W!I)6aea{}Oo}d)vh#%nb{*V6N?urujQ<S{QeVvjY&P55z
zxOc{zFlX$?_s}ki@1;aJvFJk9)?Z-6&jb1S7ULv8VL#^l#P^Z^H21EHSeq960re=O
z;k0eu{fwRc>ZauUj_VzcAD}%H4^on!S}yzXF4U#1d@}vmF`?+ljwnGX%2Ct@qZH*R
zItoS+^O#e{FVY_KSD@%m^atn6ZMrEwiZ){`yso8FXoLKmGTx1I_YBwZJ9a<fJ;H0u
zk&W3(WDloLQ2hGvC}WH%Wr316hVvPOHc&K@9F(FQMV&B8QI4WfFiKI5>;d-)N>PsN
zVfP72QGOqMKa8p^7!@DVKT1Agu2A$b9?DT_-Y1l(K*^`%py)GlP>$ly@lk=2A$$~l
zfsb+&e~FI@l>7r9MgPP{Ig0;<kK%}9r%e7$4vPLm4$4t#9!iEWPl#U*aQkHrQ9PWv
zLIp}j;G<|HKFU$tiH{1DjKW9!$4^le<tXmPM+Hho<0Jm#zo?3G6pv+pBC+x0u%Du2
z9C@fpEJyJK;;2AL2@mm~-SM*nJpRZ$MFmP0z(di3)I~XpC*z|6B~$QGv=Bau7bVB`
z7okMS!sHSwP_h_##EPlZvHiu#Lm4?aWxNE!ODPMKEQyDhu&9bsyqq##ihWd|WEwdr
zTACb`qj(v7RG?&8e8hj;7gbS?;^pyCfs!746s>@daulzKj|!BmgpZ<?@llTARq)p&
zzA7dA1xnbDRwD=HC@$ln0wt@Hi=s8~QI2Bj7bsZ^4@KX?Lph4SO<h!=WNr4>A%~Lx
z@FuFF9L2;6l&p(~qV@1lj^g#Hg9?;vfRCaL@llTA@8F{XB?&&tHzEgBQM@reDp0Zs
zK8iNQLph2!!$$>5HpfTN7WgPf@eF)apkzyYRNaakl%sTOJd|vMhoWt%16L_?+ux2H
zRG?&ga!^#kM>&eWi;oJF?0}D=9r00);+^nOfs*gxqv-qiC`a+m_^3chFFuNXfRAz%
z?}CpCl>CtRkI12nD03A57#|fV`3WA1b|nwxD6Zn80wufQqiA=0l%seLd{m%hPka>Z
zg^zL+{}dk;DA^kyMKkeHj^cgrQL--{iuNNHu2SYG-X9+oC^>)}6dj0<augqgj|!C3
z@KJOy{$co(@geL}rj!Lr4kZUg=A-y<JXE0M2s{)WNgb4<xDOu{C_aJv=yBX1k4L{`
zAC6D#h^i<<1&U9CQIS&OXI95@iNz-qLm4Vid<u**RG_#YMj0wld@3b<RVicZ)7bVI
zLlwoeTSb}mX}-lyV;>bLL-FY_%20vgGuTH})0ym}0>!4Yh@rxADC0Ve3idNAQT!`n
zDEkeJ;#ut9%08-Ec`>n!eUy<`p!jSUWhg$E@*H#_`xoG|AO9Bpo_+J-s)<;J3iHl~
zQHBcJpUpn1UPg%u6kiUb3>7H80!A4s$c=BMv_3B)jxtoB_;)bMth8f6g$a&1mMY3j
z98ZDbONgNi6)3(GMj0wlY-72Nn2G)h`j45Xs)=LF>^M<;C5$pu*go?T4^W~E6)3(6
zMj0wld^L<RRG|187-gtH@wG6@P=Vs>V3eT(#n;0qLj{U&fKi4DD;wxWVwACo{ldh4
zl`_7G5)~*z@gFEThgB<4f#N^HC_@E`Z)X2o_EG$6Jd{~!^~^&Bif@5Yh6)t_2}T);
zIe&$%72CHtrG9)KKFUymq6a#n1f?i?kbRV*97PYoD7TzJ;wVRv?OPm0596T}<tXF)
z#m8_DIGXF9vOw`|!})y|_XrgIjC%yiQT%gqP+=uG(UY`=Qk0|UDHx?FN72(T%2D(T
z@n>NxQH~;Gl%wc5_ECy*6wP7Z>RXAbDg7_Td*M6i|6JZ5Z$5%K9uXzKV4Ns=o?Mh$
zK4to6@=$UoW3_t3q8Ze=i(J~Mq8LA?-RJ~FSsX|H@wA7c7nmFBCX~q*yw67|`#FlN
zjlXg}Y@Ti>9~EcQ_Bo6TRT*DQTPe!PjdS{=kCZZ}Osp>Z$=%drZ1IVBs6fd{w1@0J
zYs&DWdx$MgyBurP#(y4TfukkZCnrZ$_EXwS@1?I(Xba`Ua`NLX(UR1sUdnz>UeZt7
zs7l-6KZAOa7^<F1J!1LG948$9W2l$#P>OO?&__yp$zSN}m+YegC8yD*iMaj8QU!fQ
z_t6JRwxVC#C!V8}w&OF%v36p{#eRH0ag>o8ZOwRXAFsem&SW1|&tm@p#Q0(x2W2!!
zn<yh*rHmgWjtZ1K#8{T1Z|cQ$;;2B$ugJ&CD5JBfXE~@!zxJP8Rf*-OU>@UhU}7m{
zP8m;QJ|Dq@lXGbUrEvT)$AMR{AN?BdQ9KmcTr#iGGPI9!6fa9IDp0Z<=MzQC<D=Zl
z^~qU@98{oWWpYq;74lGy;#Ki_$U(^p_$XSD9F(Kfe3Yz)hoUkbidQF&vNedUiBFlE
z$9_sYUW*dta6y@Ti(C|an;5E^)*)wYe3VSbNA{n5<tQc=uZwJKlm$xGBL_tsSJcJN
zJQ|2H{x+Yf7a0|$7xOcN>3n`g`J#M=C0_J(b1&v+2l(0Acsx8L=D|ZrH+3ls%6xP;
zzlS1z6K$=_&mf*=e?4+-e|<{!)6x8l@fPA6z{KJ)<kDU|hjYSKZ5$lR>>`!9mxY(n
z@7(vi*tz<k$Gt4t{$q;AH>#{UXI@r4UN{$CKYqyby^J6C_S^YhChh*)e!HH>^EqDc
z36+JHY5O?5jGy%Wyv)2zUQ#^1$$c*~FAFc@Ke+E@@uWCwkE<PbE}Y{(dOa^QFAFc@
zo8`w%&vVYa%zgZYm(j(Z?`7g;)yve&%*))%qTSCe-jA1=mxY({pWOE{YqO89aE_n%
zaXjVuUS?hvUdB(m?`7s?(PnQqeo=Wvd%W#+@r>8^l3!|s^&5Mcw0XAYIj3G`UglmF
zUPhOAJ6=}3e&%J;j(b^nJoV$weBGq(XI{p)s@=l#a*szZdw&o6I6W_U!P))H<C({E
zk5|23(QfZj)yq5{I~QI*zRlb9GV?NN=Q+o>d!Cn>mxY({9qza5d4FlUe=l<{tDc{E
zS$I6UOzjjNkN+%=AMy5`GcSv_f2aFiW?mLv#&@~zW#(n!Wt@9I-hb6O^D=3V%em^~
ziSPDy-A}#Dyv*D6ysUbDbh-EEW#;k3x$0%w_Pxx#jQ*<nMVqhi_PmV#F3x<MiN}lf
zc%9RBy?c~j^)mCa@G`#F+w=Uq-JX}x@4bI76EBPQ{mMD@GV?NT=Xn`j>Fs!#cv<x_
zZL=SL?q%lj+{?ntXu#X^`+e1qBldXaoH$p#OxwPfxtE2P(N*5Amx-4}yZyh&uX>qz
zS$G-W=YG3v*Z1?4w%dPHd70;B9?#qPUPf2@c)Tn;KfYh_#N$<Ouj-t7nYDe-&z%b|
zqiei<FB31TUZ!4VUglmF?YOraUF+?5nRr>aA3q?!>haXe%*(u;?`3qIx94TzW!1~n
z%goEX&5x>H;av58qw5vVoMY$2%c_^Dm*GWbzJLDlpa1-aU&3@vYk#-7lms`~-F|Nq
z@w>VtlyjXc&NKFqUvq9ar_SL&9;RmIT-{Uo4d>iBcaHax-*oPCE}War$s~;@`Kj_V
z=Z15%fc$uG`4#6`&JE|Tncm-m%Fmr!lf^Ulkzbu6p5xqfuI%gWPnAD)KW}eganreQ
z?%7{{w21uFId-1ooH&;c@cy0qo$JnXopa~pK;^fbXE~P_Revq#n)8f<lwUZ{cCIX@
z{Blix?mXZeEg`@6VEM_C;;uu)jaZyHx16UQ>iJ8_?|06e!+$s(@%4;p?jNT7`qJXk
z;o^81_nq@)#qkmH^X0^Y&gCBQ(2?>RE4tq&uB{{<I7(b!SzH_~uC5|Zj}b?!ic80e
z3+JYDb9MQ%e=a{?L)`xhar`ZDmWu0Zi)S4tZaQ}zFD`8;f9?t5<U8WpiJtG=a;_%s
zpXBv75%-@gt~d`lM_b8n_RG(=7S~S|$J>azeko3!Q|HXNaL%2R)4aWHRez3ic{_1(
zy8P<)?mO2i;@TNre+O~zncn}7;=(!K$@9;W-*hgV%R9@j*X1Y9L(aK#-><yBbK%@_
zo^iI<?^S!VotwLf2hNdS>?N+8D{jmbPye;JypOoyoICfNC%@_3?_BJ!{8_W)R}K)z
zzZK`sgU*!$<=4)apByZ1Uf}IJ_g(1q50yV~k+^lZIJsC{?i0_<#FeAP{g-(DFU09(
z;?fD?!OPu0Nj&!oarHED*MK-VL)?3nxPF$ne6{;^ap9bvCmy<1e)=16^E$78zBs#H
z99<xeZ}5EQ%(>}2wIM&bQ2BM|)H%A*+js7DZa6obE5B3yp_`On%EaYAit|gvwVTE1
zW#WNb#EmP(gR{l)wc^%o;^YQ#-yP!WP2%WIuYa?6)?MP}t>PJXi(9vQ{d>fvJH-R{
zdi`7+-6yWzEzX_O`^2*!kYB!EY=7rtTk|1t|3l*RVR7YQaoiO5J}S<i7Tez**%m(|
z9&%2e71tk^pE*x&ikmOUuRY=I{Z%~mNpbBZapv4~j-QfWeOdl2=fb)4wEM5f?{_Yo
z?QfK9s~7U^Z<TCIUKQKlEZNp{w!dAnt@>JGMKt7Gyp|Y7wdds5UKh8V<2S^$Io_Ug
z%Q=11{pa0(OFZP9zAd)Df3hu`E4IIbvaRxt*!~vEw!+!|Cd#(zyGbbP&iQ-dnJ>wY
z-WRu=vk$}rFUzm}O<aCOT>iVb(dL%e{(j1~;zRL}bL}H>?N#~l$L>3qhs0g4%ddYa
zZaKI9DGq;E6-9gpW+VRP*Aj0lKk5?K=ZdS&_BT|vHJoeCS-0}1zAL}wTz9UFmS1{L
ze&%d{b7fmRR(|+9D>!%V`oQxi$e;c<aat1F-(=aAP81J1S0;&jTk;F%xz6<k<j?%j
zedoE(@nre4K9Zk1PyJZjnj*j998DF^_(XoqIs9!C<7+yHzdwSrg_S?|Q|0H*_0Pn~
zqVlVsiz|zX?Qe^0t1s^U7vgxDxc^IWYguvldm{3S<;8>com{r^isJge#nqL>jsJ+F
zmBoEghw`1fhKY0MhI4BT<<A~2zxr))F+!ZK?d^>emo^lay1YH-x^w&;`CZ-KULqcF
zE^Q<(kCtEAOk5u$u5B)!K2{vf5ciA|m$wuTITy}-<K>sOmOpiZINnA);M~|&Y=7?*
z=5ssoZ0FRuJW+n(Jm6feD1XKz`IQ~SE$8}9-rfS<{`bVw7ZhjC4d><$<Y$xR=evmq
z781vMi2J9C>wAjJ3yW)ei5t%4pSr(@x92?IT$(ArcTxG-e&Xqii5vTi2c4@2i~ARs
z-#SFxTtZws-2GTwK0-WoDRK2^ae128|Aq51;`DfNysWr5L)=_W+&EKgf0JTcevap_
z;C!C*isITVukRfHR@}Ri{M5PW99<y4wzB-_LUGqB;<|IcbL}GerByxuVsXQ{b%}Uz
zHTmVs#IwrcmUDS^aeBGuJJ+rdSJsf9{9bH-+Y+`b#RJaSfY)D3e&rf*<6Gj!_3nRL
zT)ja&b8T_f5YLz{E^ZQ+))6N+i|0C*ZWR~ndVS}<^~9yy<@c`d?cE`+Y#^@PEv{|o
z`Gex>cf{!<;yH=)V`BUJG}}r|ufMT4drI83spmf}t~*zr7th|@{g=g!EyR^q#4~4z
zYlV2ox%#T-Z|V83dHz=7%(-xm-jLtFwfx50;%pmnJXbt*TXFP`c(!x;k$7fBe)D5-
z*LTJBPsMYcYoCc{?I1sOZaKG{YdgwseXjh{PU7MV@t||_OL6Uc^7DUq{`bY%KgA8_
z>c7M@cJ_SdrgQvn`ITPz<!Iw@9?L%v*PREPTh3E=kzXCA{8`Sm5#rt-$}f);7tV$A
z%pb|mJLQMJb)e^Fmw4`v<u}HOhjta0$BXUn8f+^~5KrGtTq}v^I>(d5+3xZylb!bv
zCsV||dy3<Q#6!-}qT<?5<yW0s&dtT;&)r*ovV`Z)6t|r1?+9$GEF*ttUvavuc=mqc
z=5pe`{l%>n#PI>*`buK^8w1-KD~o#%6gO894>^}t71s}vUoDH9HF3IzxOK2N`j)tK
zs5p0SIH%v1AHMrf|Hay3`>wxj#k%6!5#sWC;=;M*+;^nsuP?vUCvI#Y&Ya^7#pR>q
z*PZP<@3u8JlHWR7T-jJ$JH~zImUFU+`^U;JZz?YTOk8XxZaUXD7gv5RzqEyT&^dFi
z{z86bOZh|2<*me7DnHvsJmWZVYg_Rg=VCjteP7YG#`f+zmn-7R3GO@3ajt(?e(#C$
zlO4oO=a%z~ljPTTbl<tQlem7e{CH<^;}mh#d3wLN-Yeg}k7--&2jad{#ZBiS=gKbf
zXaCake<-e>=J~sd2Tm8~yNPF>;r{O8@|ogz53zku)3(&vzN=|lYft$t=lWjazPkMS
z-s0p};?hiU?p$|H&USwv_nlkLwR7Y*_mw~7T-{IHcdq=xx#e6sQ2xNL-FNOkPh2}l
ze(5*PHF3kae2BPzmi)$H;#t2H=ZA}X&KE~VxbIv!Qat?v`Kj}ObE!{$&xP`<&a<3r
z&O^=(=h{WekB?UU%J0Ov^Bm{o822xh-*Rp`SC5sSWb&KN4d>)%^6h)4wl$n*ImbVj
z-*u_{x^tg%(|N9Qlq!GlGUZo}7e`l!o6a-ae4_mF@8y?I5tptM*PQ#E8_q+{t$yVX
z4k*9)rMPyL^J(HC=la>=nb*kAoO9=vbI-N%<8zch%Q<!Kx=w!X+~-_9SNTKEjbDq?
z>y@AWMm+rnadLtC4RO=C>qc?wLizT+S=(wCiS4_xwiV8^oXZ!>FaJS)>TKViwXNw~
z`lC3>l;7{%yj0wGv;691;vwhS<(_|w{K7f<lel$-{8`TB--}DL<u{!h&e@gndv29q
z84wRRXIG2+Z<8NiFV1ckmz|?K#Hn-5Iln>qL(VPd>YtTgy-|LAr?}}n;9S1R{k!Dn
zH;YTTIK5Ro^=@(ITy-v-o6hlV%1`c5e$9EdbHlmkUimHO%sIYY^}GHezj}vwz`1s(
zc;<cb%Xf)~oa4L2+5Pex_lm>!npq#oU&LL5@(br#&b9mH_dO^-en4#Bfwryou(;)1
zc|=@$Sbp-Dxb%p)c*6NnasHHe(7F1wxbm3%mUGj&`JDW@kGt=jG{uz{<j;IUTsY5l
zF1;wf|4I2Z=jbVM<7N3x=j1i<(9`luuZ#Pi5jWoySDzKfZ;RvS#0}@!&h>ZX+xMq!
zOWzgGd|sTqCmwRHzb~Hsg8bG8;{LyitA7)By(muqE^ax;ABqQFlAk!+_hoIXeJnqE
z#rZRFPa!UxGw19J`RS|j>tBk?uZbJ~5Dz-X{}R_;m*4E#B=kGyEzj>3r*DgEqs3iw
z#nD)C=^b%(f_ScT!@2sd{Q5-sGv5=(3yN#+i)+qvopa}zAIL9FR(|2!m@4l1yZmTj
z@hs<LQE_j}+jkyxZaG&zlwT~S{OBWbx`epl+;X1&vHbE<^6l?7ZL3Zb=gy_2#WO#Z
z-*WExOx#>n{*2GX$#P!bx#m25$m=^doa5z{-}8n1n)85j+~fY2^6SpCoLj5NPyQ)C
zDvK-s^8QvA$Nv^5Yl>UWP3P=C@=I&UpBfDh^N~2)-;~-`b8b0j&edV^o6dvIwRP0q
zV2Au@UGa?J;>>xDb7ejGwGr|gn~4WI#qs9i8KcD67GnDwRoj|dif20~TZyN4%WrKb
zZj5%`Q9Lw8T>HMbHP(ISbey=koBYOjad~&~^a<kH9^xVA(w^e}lKhJE+&1qefA&QA
zwY|l2CW+&j;&cJ`_Yu!nP+Z+tJlDDIT$?Pv;XLGAIQLDFAML05E$6y(Z6W!&bKzX<
zul$))z5W5>+_~m#e|u|N?mXMMcA)YH7m;5*NSrO|`G<-ti;K&LiCfOe;o{m7@+;1R
z&ebF2+u!fnR(Bq7j*gTc$MVa4V*A_Pkbjie{>C?K$BKKVxt}^OEiO(F7tZ-f;#tec
zPfiwhEh{elQk*+iou@A+zv0|)j!sj4&+_u?r;7)j(=)`?9{JIk;-NO5B_3Eoez`90
zTTvYUN*u4`{@LO=&V_T|%JQ>w<PSO5&lTI>BHLE}wYY0laqAlK^fkoEwc>_z-MPG`
z{G#nUm#<TPc`f-h=Z169_P-^+e7*8B=hBVN-<Dr>F0JkPe~{mDt~&Qlm*4u6{A?X@
zcDwVs;^NQZnd^ypC_|Wsp7q7CbH8)x9?##v{d>hzHxxJjBA(-1zfWBKj{DAYoJ)_&
z&o_~uJSL7d6Stlg&)q^?enwoGAx@kJoJ-HipS7j@)OqSw;_4jvE$7^M=GLD7lKh@+
z#c?4noO9>ecJiaw<WJvToH!3SH=W~({Oaq<pXJ<gp88$+l{e(qo#VH}wH@SFoeSs8
zxw51D!rA_o+qUZ4sy}llapr7)-yODh<j?w^IDS{0eqWqBPu<!5_vAO6^Y_KoUeEtP
zY=0AOTlTTIwTn3VMBM*FaqK+TIr>cg>>tTbKNr`3EUpcSdw(LXe<2=nu6-%4@9O@)
z!~<1v7Ht~FHG4O4G+aEmySOq&+_k4Tcb?_k7%P9qUS5Bk*LSWs_xx0THeP<yxtJ)<
z_m*FpB#vi_%S(!9?c?=hacy65Wt!*jCr+K~&gEt0_wVoZorj!D%gLX4fc(1i9Ou&V
z@+$|*&z%eBT95qdLGmjrh+EFZisD%{?|)@+a<DjEMLg(STGjnS++R)HbEvqyx_Ihg
z;%E)=K%3VT_Z}|4=G=77)^h&{`SG{JP3Nj}a-{r*^K9pqb5EcA<lElAbKQB!IbK(O
zag>i|eR1Px?>`aGI>vbu@r+}|sdMgJ-dz67pUJN~7tYDH^7Eg&?_B<cxU`-80q4xQ
zCzW3~*PW{sAJ1`K|NG+fcyHgi=LB)Qv;0BlrgQI!@~c0P-*u9>a88{oKa^iOS$^~*
z@qlyTTs=j8_7iWf-}84B_dBP~Q%{wjw|(bQRry10-+ADd%CGM(zj~Uuwx@XN>Edi}
zap?^AXNqSzm-g}eGv$}|6*ruV{lxY+w6?|ji|063ooCeLH=P@8KEUh$N`C!7@zk@$
zwS&dAbHt59#9il#tA~mQoD1g}zm}gLF28)9I5|R`x4F;xH}YG~^;zP|QSzt$R$Mz;
zJmlPR?mOT8W8}A-E60jwUm(BfT)t3T{+av%=ghh1BKgtJ<!8>RbI<R*{x9S=oJ*-V
zxmbS9Id^Wh{Y-xIIOXTgwG+gZOWb$Pos$#gPrp=t!@1#{oFu<|nf&Br@oeYJxqP|&
z^c44<tNr5i3i*ZekaOcy`F+2a-#kNH8gM>K+;YyY70<d>e)W2Ba-F!*5Dz)GZW1@H
z_xwMI%QtxY&JE}CE%IkJ<d^;=ZaL@9GjEh%xlR7;o5Za<#OWWz`CZ~!e-t<G7AH50
zqkF|go9`3%-y%PC?)sCsdcXY4x%7azXSV#@x#1iQx__(u#5r@0AC_OeO@7UJj&tKN
z`2)Ahj~*AtcZlOB#dDog=Yc=VFPvxGDXu@I{2}M;Y4PA)?*G*}7f0`jvwOwO_r<+`
z5tsia?z+$Ge<ZHnFU~&}_dFm@J{Px~;~{ZvP=4w>*E#w^e(!_wE6#(?xpR1i0Qbwn
zdEg=CXJ2~%4~wIJhzFb#=blHrf9K4(>0EkLe*90>Pn~Pd(PQ!p=RW7kzmz}ZT>ZB=
zf85*qk2q<HtIoM|9Bmd}2dYoF?>xu3<=p$Ew>M1rP3P2k##8bO=RxPVL;1<m-oA70
z9FLGc@QnM;@w48ZbJMxe>HR<F{wQ%eM_ld_4>{MJYtMVW^IYdjxALnmc>U4hmUHG@
z`>Xus82M9Q6vt!5b?4N%>m~2c*`5<`TX~%FhuXe#-^=pz3Gz#?h)Wa2E$3{K_gA>T
zfakv|t~&QS#|z4jUz1;Rt~)oJyIz+cO;)}=8_>4gd8o}(<oCVd`3s3#&WZEPH{~Z&
z<<E6a7Z%sv^7a=I4>?DRy8pJ<cb@B<I@|NWZ7VP4?K{_<YwyT!Ioor=ZL2J<{N8uP
z4d+4UbP4(CdtTqU<y>7-e)WC%ne!ayO6>jz^6Sn`=VB@OgMah(r-^6$-Fa#8fOE8r
zxaAx#C!YGD^2^TQndTf{-PxXN9=7F`Km8+d$+_P-caA@nU+wY!oomiR&Z%?qiRZ7V
z{HAl=x%{d3x03u>&UNRm&*Ud7%kOh;InQ;@R*~QPx$-NkiU*ye)x^_><TsrMoU^k0
z_zU^9)y1=%lQqPpFXflk6!$w9&e1>QH`bEh=bU~^+;XmbTRiih%8%C;7tSr`-hau@
zr^|0T*VhqO{w=?{uKUjA_1yoD{Ahjmotw^;Xhb;u*#_=A*EaO}!{n#VnRDHF$hpzZ
z?@)frdBC~x9ktgxTz;O2dq#+x&Nb)4x#1jbr2MXt%8#9^&WUrwx$12HAA)U-%~gL!
zm$>C@&lk6?yoLNB=ZbTsTYl<1;M{QT8tv`PQ2l6(xU{9X;#}EUY|pf|Ep?tcPTX*=
zIcM7`f5rs)x$`XN!g;Q9R8jt%lJd*W<%!~obL!muuJY@X<QL9!oLkQJtYO<)J1D>D
zT;54MdqMg6&f;hx?{62e{of(Bm39-?78S?Nvz^P%(PCcTxz{;$Za8PoU5hKf>0EV=
zcK7i)SDky7P=3w1&$;eA=-hC&XJOgabgntKoO9=N5A`=AR(`yvc#d<$dHPb`zjNKW
z;XLGAIQLFdeq}GUH|SjYskpYZ_vf5D*PMHnk>7N#J4bt~{#@t8dB(EJuR70it~<A!
z<C)(7ay~xiLFdf5XL<RJcD{4dx#?Uu+jF37YdQBhm-bPAP3N+6&kEkZbLw1c=R4=l
zl@*nr?5p+$otw_dO5Wan@@G5Oo#U0|m-d%mcdk3z^R{d&A0WTaxpbg-$hq!ZTUGhF
zbJICJNcl5Xlb_YZxpRE5xVJ37>RdQCo$VQ2w#A1iziSO~%Q<y!9xC6S@nu_jn7H4$
zI9yy>OMd+b_nj+8di`(7Z#wrmSNi0)oTH<}HJ%S<TgAEQ+;E<;w*1o3%Af6AcP>x&
z{+#R1m1C6OwT}GUIdx8sl|STMIM>!ye*I_i=Q>w@F0QWU{W;HZuKYrNWqtRZ2c4^_
z{A2_94d>jsdYt^;4doZkP3QD@`7^%bzH{!JoFIRCB0oA&Jli>Up1zU%_$2ua=hV4p
zV{hL%b52fH{?tw6XU=u!rgO`=a*Fb2ZtCqh7tYmw`MsOTZ#g%eYp2SevAO){m*U*H
z;XHi{`IXb;H=G;JJu~E&PM4oK*PW+s>HZn=>&~fj*H-SIDZk&j?p)qlesq@nInFib
z{%z!!>++{>D{eT?cCP%&{q5v8o##52&i4Mdm!CQ(70-7roJ;2_zxTWHvtNtnIJca8
zcaUE>Pkz(6={#dc`L*B3&z+mj(|3|zo+W?4x#1jt&;8%ZpXJ<eE`8tq^X2zD*PWxC
z<+q$`&b14aKi4_BP+aX*e(F5OIlf4K?+@f>&Q0g|ck*ZK;=c2sbLC?9e<;7{oI6)D
z`N@ymcb@H>T_S(_kLAagiVNr5x&J5f%a_S7?<$Ti_k8D?bEWF-T_Hbrt~-}^lizgi
zcTRq<{AhRY?@Dp%oH@6gD+BVYdniA5ZaUYllAr7;zi@6i*RPgu|KCyAt`X02Za7c<
zsr>j_`TfpK=OO3hI{7pAR({KQj&tRD`L&tyQ|BS)=mz=CecX2**w_2NQGT^1uKhu5
z|EG&>tu`O&_5bL8pSW<Y93@U}mY*Ii&YfG%g>&yQ^6P){{A0x}=azG6w*1P^<d>ZX
zoa@f^f1!l&I@g_>x2pcYFXYF!i)W?crgPVE;_4mp`<-jfP3P2k>ha32J6E0KJ5@h9
zL4J~pr=IBT-y<G!Zr&@NbCUe>ed2+Wz5V;e)l<aH2gId*ap^(vpmXgZaeAufKP*mu
zDXu;up5q)nE}nIo{Ok#FcDmPpT0C%uIG!V}pD8Y$7bj<V{lAJ^&P5?E|H|vXC7yA%
z*LNOtj_106j{N)`@m%NXd*b@J@{^Cn(Rt$Pkht_4as40S!8ZR#+?XZ5;avKyxD;(3
z)=}E#Vd9?i<u^OTL(Y}qo_~S-+DLJ7p*ZOj&vA}Ni3cu{Uw1D5P8@g1A9OBvi?fU6
z7o)|!nK&9NZaFud`!A7S87Duw)bmT?xz44D;`B22CyBc*7iW{j)2|Sh781AGyqGw-
z(*4E7MVprprvvhH=h9W;%JS}CEsj?b*RFA1P278}xV473dYw35$N743v4OaJgE&dV
z%{Ff&P8;&88;g5x^!A+V&aF-5S8kFYZ6WUZgSfnnc={imw-x8k)$fXHH_LDCAWm-a
z{9VPf{v^(vyJm}%s{Fch;T+#8zqXtF0q1CUarrj+(H`QabG(nZ{|@=pgT?uu#dYWS
zPI2iF`Lmqs&ZWEL=ZDK5a!!vBr@8#}NO9NQ-d>;k&hb&==pN5^?sG1j=Q<}xE5CZL
z@-yeAb9{{a8Gmu#Id?7{E5Cf7{EBnGbM8Fk9Q{oBmHU-na~^aq|J?g~!25H~ougmK
z?-}&^&i4Nz+17N99u%jk^81|&=jb8%$#L@goO9<P=caSzVQ>FL<=g+$Yg_A7@!Utn
z*)P4l$HdWT;vwgXbKm3g<6p_oo8tUzaqS6l^Bi&Xq_}jRc+k1w-20UL?6>l#KP^tr
z7dP8{fw=mN{Ny6>kaOdAV*CFhZ7XHs+H>N%b2LZXyj1?6bLk3k-}CY-&U2mX&XpJB
zx10x^>%Uk1%3tM|t`s+&o6fy2x__1Y<Rx*{dA4);YWXu?mR~r}bxyC5-}{RE%C+J_
z=bCf5kY9J6<=k){a&9{JzN-A_dbL+LXE%t`*W@P+arC<Pf1|kJ+;Z-DLw<I%{FZZi
zi@5Ji`3>i$b9Srz{<qw}O<a20+xxS);T+#7?wRZP&Y5$3m)Czse&Jkqj_#H}{ayL>
z`@}=e<p;#|_vE(*J^y{@hs1-<>7(L-59H@Bis$@YoV+aVYl$1Lijxn;#p~k2x%!s4
z{*nCF+v4dTdwX-m1J0#)#N|)q$1QR7Q*qO|<y?FyKl@C6`jOZF+}r<B+&d&L|I6F^
zLYzligzK*VORqmn9R0(&!+q!fho-xXf1B?2KOSUTfdLs>h6OJ+f|m_O@FIgCV`aiJ
z7^4geUOae*1{=kL7Z1AP!HWkkZ~<Xh@!-Y(=fBtcckVsU>;3)Y_kc4tu5;sx=E2tA
zbZ1^1%duSgM|}{zC1<kzFWnuiE+?|}AKe>5kK|moj6rjL?x3JP;Q4T6F1j^8PGwK7
z%uV+fq`UKAV_}@hsfmMm>G?2R7^L@$;D(&b#$feD^<Fj>)B7RxSZ>JP;_3yuy#x;B
zP`2jNd$}ejaz~Dq<h?sTd#i{$awIzo=zB}i+j1h?L+ROYbvalXI}6f{WpP)|<my6n
zZ#i|@S{}O#(<3>R-4*C<lWwnso5OIpGWHh1=_<IiD2`Xfxty$qlf~$H2{#tU+3MI`
z0y}GBYf0>{g?n<eHjaz*WCRYD!tpw|GF-N?ximJ{)n4}HT=v$Zx0liV^>JfaoNj=t
z%jw=m*j^s{8)L)5VHu}#x(RNrpnD^+zoI+}msi5ZX4qUA+oN$$b~eZDRp_pR8>?b(
z3tU|dXItV@N%ywKx$JL))7ABUTO6(-Z-=XEVyA*LIgzVt>HhY*Cr5H+ZMv}oJ&`@x
z89~qFwjAuJ@2^A8<y>}mqWd;Im2=q|L-*FDM{-v-cBZ@Q(LK2%XL4nIy1NVej-1NQ
z2K3OSCvq%X8`4ubkeyxG=W;IBHqy_t8@(%=yW`5n^gwRQ_8#<7nQo57eL0uoP4x5Z
zNw1B>`Ba>4iv9htyBSWV;f@?1fa{~xr(<Jt>>Z3_IrDMNq1%V!T=p);y{+i!Oq^~l
zU#9olV6%xka&S3zx1~E*sLTGV*xHHirMNFgujAGjy7eZm>@2^9Q#q5XyU??b>Fr&0
zKf|Tna4JW#Ia_^qbvc%UPu2HOmqR)EjBbvlJD=k~&g8!AeL?s4WFN_y?DXi-IDJpH
zt2q9O-j%bjalDuMH@G?;XW!zUY<!QK6X@;_*qw+|xg*;--I+u;f5e#_{DM1s>)x-r
zHyInh;Z*j1#|@93{DFfh*!mOq<w*ATq33_m?R|0hH*U$+f4Vo7p2>YVG%9ocT-Dr<
zp3aSH({z6xZ0wJ{LAWhDgRxuFd$}h&3(_0Y>B&O4av-*bVdo$m%ZY3*LN6ao4;RD6
zA=)pFTXHTJ52gD>dMX=BVb`Y{!*%a4oXT}MUV~mcQuo%<{wSP`(!Dx%Hp5*x-W*5A
zs&9q8<8ZtUE*!7E15V{cuAHF0BfTx>a_L06yA!=B$8zB$x;=&-$i~jNFUPy!`pNp9
zi*wo775f1_k#jlRjovtgZtRZxaxB+QrCWQ@yK*MGr_tT9^o|_MrPK9(PkK{M<-!^C
zT=r#S9Q#Z*W%o?>k=&Ehs_vgf_x8f222RK0uAEQ6^%?YVBDT-Q<|G`;vFx6szPIkl
zv0Oh_eKOrR5C7kPnI6A>Wly%wr^j+jcBZhmFHo1;vb7K033Y#8+>?FTzmT5EeL0`X
zzI74Z-%sDW80T^#`_t&|CEC|;^HOXbfJ-xRD#rt!POn}@j}OGT>>h%x%XRNCT(|;9
zN6J^?>}cGTqhoRVD!o4*`&VP*1Z-S`Jvoq*lj!AZ>G>(R5Xq<FrtF=LOV`n@GjJql
zvUNQ@m_biv<9yt|L0zuhh*LS0;|thVZlc>EPUK83-%R%|q_^c*F5N;mE}}Q(R4%mW
z!Nv4I_AkMG*}N3{x3W*=zHH4@zm4w8nVib*?R4id_8mEv{X6K!RdoAK-IF6Zy_O!t
zbnklk9&Fx(<9qd9F5QPiIgsO<*&FxMty^(lHtxXP2k5a}eGuDs(XCnPaznQ7);&3u
z>uvT<tS-lL@DSa)hhBJC`}=Sr=W_KCdUQWMm)!?&<57Al8;|MUgLGfE+PLsIJ(TOR
z_b|Qm1U-|Z0Y6GFCv@*I+?F%B{3Jbkf}Y6!Q}R=E^J(3C8r#od^BKLD138m3*?OM6
z^DKK`j%A}mx1OViawx|y(p%4~zpQ&5?7WIoIe!g%FVN#uT~1$Df01s#fjhGI7WQAF
z2k+qG%Q%vKIgvYZCVQ{2&*ipkyvse~RefLfWLItv_&xTG*Vrd=Urs-y$0<Gd2wSgX
z|6|;gbJ=`@?q=$;@d-BHq<gb*L(XO6ExPd;y)JulPfq0O+w7gs*{5<K+wahGxh2P6
zu(#gT&+{d2%6<=<U3w-rWbZ4w@gCjy8aHJB8(eyyo_vcta{e9mKG6Fga4!3@_dk7K
z?#gb?-u;js|A_mtxzqM@{=DMMrssQO>vJ4U!5!I{isLWzz3JHOVdp^Hm2)}xif$fE
z_rBKN$JRIMhvAm&$=0{@SZ>P3;q1-t=&sz5%_Hdc_w-Ee%DHU)KsSzJpU9?c<#bC9
zWJm7Eu3Y+&y>~44>ObLJc7De3DfIjo?4E&*->`KiZpoQk{$2aC=p8wcy*}NXL9hOS
z?Xz(%`{&^BPkrw^Z2yIm^Kn-WFVOyP-4Ai;9~{VSIhQN{(!C3HPqr??jsNKO#kgV&
z=Kn4)(O%9j#mQXsTrSLwv&-nI>^8AG4?Va77w5&{RoEFMUxSUo*uNEfL$GnD_62Oq
zv7E@(eDwGp_PLzN?*ISq5B|UZ$?m0h<>WqnZvlF6Kkmt~><-oaN9pcD+CPT-vh@UR
zE=)IH#PKkkzM{Sew%)^q#jrgayNhG*J9$ZL{EQn#9Lc4n<X`ArIsX;chSS5}a8LGr
z$MvP@Ngo%Mk^jUk+4~DumQ|M%Iry9IEJt_#!HFEqwZojh56SZMa9*5Qx;F?1E69Vf
zwW9U~TwV!h^Qo__{rtEs=R<LS6}r6;j#t%t*<KC13#-f4FzlDq7s1x**pma<Sd3m?
zLwyNcToe0CVRJ3)49875lFha0(bDwpfS1Ak2zt0IF06yi<#8fg7OvU!K<>%j3iSHA
zbZ14~TTfmIw`6N&Tv?y)u7ZsXa3(iouS9n?q(`gczHF_5gN^9M+Bn=8+as`D#`!w9
zC%fz7)+TgoJ?%&0WPRM0jWUi#(X&mo-xRwe)n#uKE^S74HpM;J+YC2G>-}h4*c^vj
zV$;F-*0?2GJK)-ubYn+sZG{s#m7|^L!PdGz2AkW+JL71;yI^};y656Vws*zuc64Jm
zoXNRduh5g->4oiaya$ftU@W$G(D(MliR_NU)g9?h73Txq3paLBACIju@&w!-@I>tH
zOt&WCo}BKDo4e3W4?8aQ<XBGR(ynxO3j0Vl_rb;8^j>brvD}x9ec9J`*FCu_`%~%7
zJ?NQijm5_P^tSBD_MZBFO<j)V(m1+(06mgpxmZ=7P7h^Y?#rnh?8V+akbPfHWq-W-
zLG+%S$=(EdbTGXun}=d|B0ZElvgOmANpweU$(~%;n;ytDIg&eaB9|t!&*V@x4&!^d
zY{{;t@5^o3my1*Au^h;$+>>*;vJZRnaK0DIwp`qo?#gx9m%DN(m#6Cca#K!aV?TN>
zd$M^1-%n&)wx;R(azpmzTn^>x{`$V0$mWsUFW2b4+>%4NaDd*+H93_#axRyqvp0|8
zenYn9Ty|ymKz(11<xnmjL{H?pY#hz~Otxg_VD^q2$)0Q+LJ#Dc9LXIylS_xPw~pa^
zq3p|jIgve|eI_TeQRlsNnC{7e?8uqy$<E>WdF4osWa9{WBG=?hPG#d*zF$64-<Kmf
zlC7iY-f`?BIgkrS(<9lJ6S*sAvU3c3<9P11WJ@mA>5d%8p4^iIxq2-7SWe_zwvVHm
zC-A+dY|F;+bXTs)zTA~V**SrIDz{|wMD7<)q<eBhj^)0b%HB!rbGaj%Cvnd{nQqHX
z*_Dle?#neflv6pDom1GSaxCYvbt>IFneT^kD4VCz-9TOT<-Q!s-s$XPxg)2teFi<3
zo3eQd_X}szZP}Myxhwm!a~AtZZpoQkY|xEUxgW@u+>;&Iox$Fd6FHDeXVViol#SE4
zZ=6GSWnYfuOitv=x$HAJmW|W7S3Hky$${+1J=v4p^VtV-TaM(?1@uI2%9&gU>Bbp+
zzb*%IUv|z^zmUBrXL2A{E}}<rEGKgDVtOVAvT+vobJ>!sm#}x_ME2y;rSwn^<y1Ci
z(sQ{cn+?8~%C=m-jJ+$jWM4L$^jNOTx!jYT8Qia4uAfit$gyl+K~LqToXf_Qbn|TP
z)nr>vWmhg=#om`AIh4(->9HKhshrEX>|LXK=kWbZw$H`hwRBhR$i8ex^iXcfv20vN
zPvx4N%c*Rh$M?$Dv$y3)cICni^g#CIM9$<)uH4ApIG_8mY{|u&=#Cu7p4^io*}a*4
zCMU9e0r%}&^z+G)9LYwDp2#&hlT+CU_1EK8_LdyUj$F8n?#aF!$Xz*-E4S<Wa$C-1
z>ki$!kncybbrH7iq&sp$_T*d+<mz4QBRP>1xpX%@lbf<}G2b&{x+T|SM^0s5F5kmG
zmRoWvoA=Ulxh|WR@V!j7W%oYzuH2SG*}9*e%Assss-OP>x-a{3D0k&pb{^C{xh3ba
zIg4)2<bGYY<xF<vN?YHT+j1zE9-_x`Q%>c=!*usDzSoe=CN4Zew`E^;<*w|@&ZF!@
zxh2Q4`4~Nw>vAq<vUxe*uRN~r%dzaq#V6>I+>jGFmovGVus5#Yej;0P=}EdHhjJkI
z<wUMM#ooM<dtKR+D^Jq{xg|%k`3yag>vAS%vT>FEdOXYCl4IGCi_g(LIgkT6mm}GG
zUf-8Hawgjyx^Xq%Z_1Wzyg+y4n(WD`9LVJt*++6DCvxE>dM5j_agF}^%9iZBtnbS$
z*^|vz^gX#QXL3)rujRh`D*HfA<Vdz&qbG78XL2SRk^X+A>@7K#9l7{A-IMEbAZKzU
zyKm_Gaw2DP=}q0cj_()W!p8Nu@HV#On(W9O*^^7}un**h9LYU7k==LMXL2kXH}HM4
ztMALc?8>Pe%H{Xi$8u9n<-VND)%V$(H}btiwq@%Bx-SQEEcayNCf>XMWADms*_VqS
z(nGl}$8uLr<?=`DbGa#-H}k!|Y|GV;^?f;!eYuqB`*JA9a$inm?-PArPGs{IzHiN@
z+j1bgawhw7<x_oMZppD+_>7*)zHGGkUMf3s`E&N3+>`^kFGq6q3-*be$eC<?Nw;q0
zdx7l9Jvo-$9(&_9_HEgci(k<lxh{KhR}N(7Yxa>G$%$-yL(gPSHg4zp9odrYZ}ok-
zDSNW<o$kqX*}sE(`9PPw@7afU(o@;I3)g;7myI09a$Qd4zU;)jZ~e$Vzfb-NN3(GI
zXKb}``4^l%qW&w+672l0{v__o?o+thSAQP6e_*$xy`0M4pY-HKy73qGU&6tFU&e*M
z>E_!w`bT~jyZ_=;F8+tZF1;zoaxSNG#TYW@|F7%6$3Bsx_i=SDdinwG%h~^MV{Ur*
zAuh~=gO6}1dmm$GUb>gzj%<H|D}(6vY@Eu8Tp3JHKc$z3;OH~mlhZHd0zLd57w5;u
z54b6Za&ZCO`-z^()-O01O80)ll?Acc$2~bWcAWFq)mfMx4932x`}5;q7<L!N;UYLG
zVq-DvIJj0+-vXDG!uggsk<G1fbvQlV1{+IbcRSpYt-Ww<Il3_cmzKxrM4ZXa-r8I0
zvateoJbEPivaurFokDNOsa#lzZtp`6<XG;@{=Ry@vhGdA<|;Uo8?wD0Js<Eiy<e5R
zH60gAIF%DQIEY?do$eisGub}`2W!xsLvdkEoXdfn`SjvibpJ5ilyli!o9-S?Z^+RR
z*c?F*j>ehnAA|jM)a$q}hsWZ;rl-eYb6sqlggbH;;QD%W=X7kXkMlEeDhD%gxPkiF
zxU?a5&&3_txB#~{qQ{}$Z;b7WaHXt!H{#Mr-Mbmba&!xJM$wHHZpof(Zb~<ArH8V8
z8!m1}kL8B!-A?bz<{j7{%|4NPvU4ZBx;Z_QQ`xwSUUu~J$Sv8Di(AkgIgnjBlReql
zlD#iSaw-?LqUW+Fr!hZIE{FHx=GN@p`*2|!Y~Qag`*LAhy7K@%lykYb9X)zb?`7*D
zT&?K-<G8dv_T*5GpP-vN(31qmvilVFcGSJ6aV8tj;Mz{QFL&kaS$Z&r?mUP4awPjZ
z(~alpJvr>?{VsIt1-+MJ*>~xwoXWXu?@A9|<b6vvU&7XI>T*-g<-+djFYD)#%~$mE
z$i7_PgMBj4W%E_NA4`wqzHGln_xGebDbD3ou8mWFo!*sWxl*NDZ_pDtmCJk4(>LjD
zIerV<<LSmb>az7NE>EEQUEGm#xjd2XeoQY;(*6_Ola1N9v^U+78*(5Ulj))C$@Ztb
z@5;ICdivgH^hD0((iFP)IlU>zUtnt=eeY}Bm*a16eP4R;t-2h2hl8o~<a=!FhtnT$
zC<njd`ZRs-cWmvCbGadVeR^L`<ywus_Xj<bW7$1`9{j2Ivi}zjr_(dpI1syk(|tLR
zQ#q9FgV=}vuuo+3UtBqup2~gMFm{^r=e_13^hB;4iu1YXx$Mu4Jzx95*gXu}LvSjm
zvUj-dEkqBGz{W7#I1;;yV&^CvEQY&syg2rcrh7}^!ZF$}i6c2%TJP)hco|$fR<^Kx
zoV=2JJkD0ud)ZhGH&39utK;g4*j`IM3H$3{=VaZJ6FIi&^?;tPhpkg|Z++a5W4UlD
zJ=uWXl<f_%c^W;G8*)^p`=`^*k=Q;12b<#JnK+Z1a=JOadKTSxa7Q+`z~u%#+zRKi
zu^n#B(D!!4!Pz+46=&yQV|Vp)aV(qXX}^c=$@W-molg(trtI!XFJ3@5$LYQ7%VtP-
z_fnUQ@w$H@J(eTcnxOj^(X+|8Cp-J--o?5<6?>Q9KyJ%!jh<XeHxIz&nR+kBav<B6
z(KERvyVH4ZHtDI{kb?v1#^rS5ARNenY+OON52iQd$j8kq^?ljC3g-h|_77uUyqccM
z4cR@MUbu!H%YkekK{u|Yhq5o5N78fImur!}CwJvsE?-CYkK%n>&Sd*~x_dM|mSeee
z1KmEB-jQ9obR#{JTe5!~`_fIie**5y;mNppGd-7!x9EETy&;FE;984ror;UM;#BU)
zR)ZehMt5i6>g_m^yK;Cby?m$oOq|K~W!Sxo9?G$t%B8#MNt1m`PA}K{m~LH*oqMns
z;Z%-f_g=bt9X*lb>v8!$-MazDaw?bZr-wJvTXHNL577OabYBi-^Fe*TMYm?*Om4~f
zt#r3dH*UwqLpZqu$8vBdE<H@o@4~qp-;JA((5-v0`zUtr#nxjulRL6?KfUp|x?Fw&
zM-R|@vh^UYC3K^WD^KD;PGtKbdig2sAI2Tod<1(>(-S!x@S}A98TH3-;aO}wt}Yvi
z`g8P1ZphY?bmMt?{xnWx_c<JN=&{_BGue589=^oB@*+;;mYmAQOZ4<*_Mz;)f{QQH
z%~x?pc3;EZE9xmWU&YSrxGkr0={5B?=#d=A#grb)vFyFczWh4fe+wtF{Wf;rpnLD&
zTz22ZjW_AW``CXA2Or?-+t|wFcX0LzHs95LHg3w+SGeD$Ctu_2J?!Q<eINTj;_e4H
z{27}c;#~Fy{42fik>3A?LphbrkLmXB^oDHp^*+=4KlEO9|HAc8=*~a5I2$Mb;zTy*
z8Z+n5>-nepp6q^xV>y+xdDusv)7^P-=?k38ZP^@5cfZuVA^M)|6>!+2hYR4~E1V9+
zrLVEG2yT9Zqh)dNI~<S1X0AR8$FeyZhd<K&eR1{+&ZesWip~9T<u~;MaOroPAB4?5
z_7BDl**Zl154v}Z-v1@nap7-lABTH#D%by^yT@z)uY3Y-%I1mK`H!B<UD-K_UNs8*
z=kftA&4n|$Bm1Y&y}7kNUHf@(+Q9C-*q(t?IXVYNgXqTjxH=enAubM4zgX`Fd<m`<
zbpKLZm{0F#;+7m<fxGk5-D}hrz|OVU8H&wFd)c@F#|zT)n{ag@?B9;d3uEg}oXSp&
z`=<ImI2?wJ`>?$TcJIes*?9nai_)D3v9TDoXW@oyw6VQ7J(JsV{t(?=LiZlgy(Mw<
zsP4(m6F4a9d(Yr-DIC6lTf=eiA}%ehE;r=-C3;~Qdh#-E%GRgYS&klkj{9=@6)swI
z?`s^&?zgzU0^Rsd`xS8@#{>R}-dTxm|BT(0wf`O0R>4^xTdU&aFPzJnTwRTB{X_4|
zxtx^f?%X@i`E^%WL!Jj4Ys&NDwrmz~X>EEax8!I(-5WvA=hwY;aJ&ExWq&BPY`VQ5
zj^$i-)}?0)(Nj5C7`yAyJrifLIShO2(^EN@{YB{h26Sst+?PYSz9HRNOkK|9`bP9<
zadp{U0@pXD8%wIov0N|Hy&~P%1e;6YKu%<1B;6mbE(dZZ8_Uq^qu9I4Vsle$EQedN
zCl@!Pdn?eB(ef&|yE#r)!=Zz%61KL$(VE!VQeGREw!+~E+>`xvu)j4uv9Yy{-mi-j
zIbRRgwxtK_V`DpPZGancvLP;4=vf)(vat!SZcn%6M0RC+2YpYD<XAR$q^ELS&gD!t
zNAf*)Cw)&&WKS-Q(f8!09Lt5B>6z@y-YD)HyQs^d>}^W7Ty;5?z0K&(uIh3sd!y;K
z-RP;@m&48Jjos;?gA03Lb4ztOkPBn!&Q|nLj^x6gbZcw9mt(mwjvj2I_j0~1wyJc0
zJKU133NG)ZF2}OD1HC$)9?M<X-jVK2pl5PV_I9F26Y0hn-J67iy>Q*bk(|lqc<rZX
zFQ)^ZKo9q!yAyGFUu;goZQ0mceX9CooXVjb?nie#x;0JS2j_CQFAnynM{+JZ)97)H
zp2*Gt*sRf0*^-^<^!OmUbs)A6*1ZAyxN#8OI2@M`*8L-KCWmtM5bckpSAFf}M7HG8
zVRZXM-9H?sr{c;HI6MvaWb;gH97T7|!c94p&7<kw+4Mwq&%xm_bpL!D)p2kEc8<kK
zh<mbsAr6kCXL8|qy}wBJWanaRpFof0SoSZWmrta-m*PZD<?>1Na3;Mir?PW0J(puS
zxs1IN&@;Iu=dyVUJ-Uj$c`Ej=$JS{$Y+>Vc?eD^wY~HJWrn(%+!F}py>D~jlDMzx=
zP=Amf%E2sb&7fxw<F1^`&e`<j5qc_zk7Dl}y7w6F$=2hzd9LoumGf|%(5vUG%du=f
zNw+Sb`*I)$az~B__96RJZpiUd+_NvFM^EGKfS;8wqUSGQ^Ac=-glm^!=WCo^jy<`2
z1rFp$j^x6Xbn6@5H{|4799>2Czr)Ve+JBETIru^Euc2phE?YmUUrRTB!e*qs9Lnj>
z^x}2&=vVoAZ2yLvvLhQe=$;(N!SC#i8`b+blylj*iEjKw@5|;tIKP=5$lfj5|4Ywg
zPp-7+`G4wiVC*vI-!Hsd>7ks+kzBfsZq3EMB?t53+U@jA?#likdi4%^JQ(M)IRyK6
z(i6FGm%dk^*X4Kt`EI&7RQF_GuEq3R?#af2>?`-s138hSh1Bn*I}78EY?;`-kM7Hf
zoXPh6bbA>4NcQBy1N2M|<y_8XV-en0A7t+?hRs<xSzPz!Xi3~|)6J!@`w)(o!Op|j
zSPrLhBv&7yTkFxAk79QhY(0ikxhY33-F#g4cf}1klnYO&??w+~U+&A1>?Q1Dxg#56
zb^l4aKMt3k!ueh}mxJ-R{xsdX7#q*wK(5P~oXhT|>>JPP{Y+f!;Pgh^c>()3;p&Sx
zlRL6~Grjy0-IF6ZlS?ntbGacKx9~of-CJ?%752ex*nSl!cW5u0cjD@6+RGi;dyt-`
z`o8SFj<Z>G>kS;WaZ9!yQh$?fK8zzdmhHFb#v|%-B$wW%=L22#9@YJK=<#DXmc7Su
z`CWB6l8q<mW|tnwP1#6v|2?`dx8z(dzfZTGV&9d+r*ZOu`ZGBAACBc*PM=l(Q2Xa_
zU-o7HBf9xKy(b$T?0rlR<V-eSP|xVji#V6PS8)3idioj;XY1Zuxb`V_-^M-Jd`Is;
zqi1sUbL_lJ&*WIHenC&=wj6cYSH7fs@8LoZTkqq}fIq^;uj%f`+JA#%xiR2R=<&C@
zKO6hs>HcSW|2;Op#BDj~;l>a2{3~3^ar^@gf5gU*>ObN17u@<8N55kG7aaVC+p^Wi
z)nDo6A2^eJx%wO3n%kZ8`+K>MlOfpn6Q@IQF8e0#{H6Dc;l|%MD&opN*syTxU!2JH
zf7n}r-j)-&WXw0`=kiykC$hB~uFgeIN;sGE)p31pdb}n!=E31wIFzk*aBE(AD%*o_
zE+=wqv#$--{dKW91pDjZNcPspr2;+M5O)SV8YlD9qwTT1AWnABUJiG}?n3l<49?|X
zXY4Pm@5wzm*@a#+>E1XT4a3%6xV#9?<z&F)>F%O*cLGl3d?IcwM$aZ;dvWYf#(g=H
z{Uzvur!Hr*zofo5g`UagKDbe&Thnl`6b=u-wc&a{9rxw%Ae=2tHxAK$85|sjE6d{e
zaGc875xBY>Jv{-t%VYZ_?PX6cTXb^<Jy}6M7uQylLtI}8Cl}%B%GkP0UIn{NY_5u9
zxglpa(EXD3H{$Z@IJg=2Wv7K(YtU1<xF+^y(bKhX^fWGv(7iWtybd<s!etwWZ{xn4
z%l^7_>m7P3=bzx_`gDIbE^dJB9u79d<_|d92xqza#_GT0Zdv^=+}T9^A6y-Y-G6aU
z&gEbfJ^YVe+!R~Ju5<o57R#|**-ZE6q9<}7JEQ5&-1J<|<>uyedmg&s;8?E9=DhTt
z9LlvV^nMUMlM~t7l5P!FmowShitY|kmlL_VwR(Zxl~cL84c(uQp31pg*;eo8rzf(x
z04{Gw59C<R<x+)i4rSk#ZMm|&-Y-b+%bD!&K+ok=woLZnj_Sj(w-fdj#qJn+N!-{O
zJ4IaHMepT~>@H33xb#Ra?~3DP>BZf!W#LSASHj)h>F&zd+XH)YBHOFdgR%6Wr2U?H
zzdA0A!{(YemBSG@uhQ*xu)h~JM&e)sPDbJCMC@&j3zO7kU$z{2R}N)&Z}!#}^o|_K
z?qs^VrMm2Ii;GkA{q1mD_IJSfKJ;Km+}Ky%37b=~H3o;WxwHCy^i*!j*6#Fl8r>d?
zoBQK@9PZX|G6A=yV`mbs9f+eTI5-Gr)39-f-q&y@`v+kEP<nU>Zur<g632((^cWl+
zjx)J%g!*xG`$!xgj}zHE8Mlt2+p>8y&I5JXJ`=~s(1UYu{a75HhbzZn^L*TqoeQvc
zJl(w%H&4*LYjE`>y^nC|WVwZVf!^PZ^HXpt`=_eM+RNU(I6I9V-jCa-V`~;p&%jX|
z2WP53go|fk`(Yf*!DG15podT3$_)8wY@Ut%=Wrqi&*R`6-G2dl=gKeQTy|c<t@G%{
zo7lVnXI<=s*jjkEIltc-GjS@Xa%j@4m(k-zu-U}sQaHR^eOa7cffKoMB{r6$cVttx
zuhM(DEhn;dHQigD_boY>?Q7_{rTenK0<K(3cUQ!j9LUv(ZmmS`$*x?zjvlT|&*gLt
z?B1a7uZg>|wHB`2NY6%K<0kE8Up8#@o9T%h%JI7N(k*m%ecT`L2Ds6pdmCcsRvd1G
zyRxw{_HLs)W!#s8O>pyedb%kN?!fM7Y~6{Y3a;LT!|icj_NL(U9(r~pw(rOOQMe_C
z$6)sX?T^RB2em%|N3wMyc4pC2Ig{;^==HX`TzCjuC({Etl#373GdYxlfPL{1x^W7Q
z<VY?(N;glXx8z8+AJg|wqsMY0mmjA)r_<YVCOc2i?K9|!oXC|#_s^tv<Up=GseTqc
zm2<iJ6y0mkyRtb0SD&T_aw^+r(<{%=9l1T=bLsxGbn`rHKd0|qfQ!##Kg98XZ^EsY
z==ROH{4#d$!tSd$jB#H!@4?|~>i6SDik$~>>2+*8gmc-E{WsJfr5E1B$>TVZ?I&>Y
zEqWw}vYF`p+jRSB+>&G2dPn!=hMYdjzVa?T?O?BqofmOm&R)XNdvxm+?7T0(ihHsv
zyC2XKxg!U!v9JD*?x(mfXRqVdhw5)&`y=divH7v?zmJO<c0R?GPjL7pF3-lP9Lx6C
z^y;Vd=v!R)413?<=74{|rO)Zkk2sT!UvT{kx+!O}^&h>`qsOxGm2B)j=l9!|?9YYE
zU(=JpxcLoEhp2yx-T84Y8w=sqcl1Cme~-iAdjA9Vm)CpQTL~9`r0475!q3=SAJ=7H
z?#i+3{=z=qfW7%Ewl>5~Io}B9ztNpdaM;K8NL>2^o1?Jxr@Sfd$>HYe|ImXivH2fP
z<v`B2rW<q3Kj-g5xGgTvjk7VhG%vPx#tqpYi?cy=a{?|5(LK2#+Y{9b^jL1l_9XTB
z=$RbK-rn@m{B(OVZp)5`odwjV;8b?^!QN21yD#p`zFb?79?7Yk%H@UV)>PiN<w$lG
z*8BbRec73&@0)aEf1JyaTpOnM2hgoW^u6i0DMxZ~QS}4W<w!Ocqvvu%HV)GFW&aQy
zFRuOJI9LKZN8{>}I5-CPWUG$7B0Z6NayE<J7_R;-Zmxhc*;o<V&(mA7`vP`X()$;2
zX=NO~gxhlV2DVn!zKes^u=O4`O4xlLhjJ>LtJ8xI)Me{`*j$4i%b{$4sJ<pWl0(`4
zh+bTap39LOeXPDV-Og|*$FezsZhb;;$gx~lhwjf-mvgyb)8kLoW%n~&SeKs34cYr#
zeLZ?AH)QV%y172x`Vu$gR5mxDdp&w6XR^5=-TjK*kaOAGh@O0{`*QT7?rp68w_L{Q
zf4IB}4(Hp0fBzeaz4>t<#|z-%D7s<dR1W3prg}e&p2^W7INFSEFRFW^ak?0e<$MY3
zZm#bwsV)a{$)QJbLr&ye_Lky(a|`y?a9rFH+e_=dY%PQBt#n_GWMf&q-<s~pp=>Ni
zH@DGyxgqDWu`NAZo_$?5R>GC-=*h}Bmz`B`qoVt=u|0NHRhO;Ru(<<0mP0vMlkV(D
zH%H*|PS{unw`Ef<j?sQSdMw8q;oi>lXk#4if@3+C!!o_*()~?vE_)+!eOJ0S3LCrO
zd{Z3D$!J{Lou0~V+1{L9+JkOwi8DEnt7GZL&h+j$?Cpa6Dh^$o%f_zQ+e`O%$Mx|z
z+5;CR;ABtSm+eW|oTT@MVq-GS<XDc5qgSWs{wcV*4|dMRoqe%?5pGY#@fEnWpY~Vc
z@-!S>h5K@RHE!%rHzQoDVfQB7IY7Pxw+_U~J-B@k4rk%s!8mK<;1HZYf~$vO?@^q|
zvF!PD_c3)jdI~3p(W9qv<#6459v6<l_KP@@t(UNUr1tON+EF<FO#5SS^ab|nIO*ZO
zoPUKI$I^|jaW1Fds2@kq<enUTORpVIkL8Y>d`EXrpr>*yhu_of6X}s0%H9uj^CY@2
z`?CF$`pI-h_T}tnx)soKIgq1Y>BUp%v0Rt^-{^fgkgKQa=lPwU$-y5uK8<evjl<J%
z_zy0gq5dCk$&oR3&hLNaGqs-^cjbIu+&GIK55c7dPKL@eu)R1gpN+lY*gOa4OXH60
zEu;OpbZc4Mmi-d0UZD4KD%)$&TOmDO6Z;oxzZNcEgxwLia51*l!{#M8S|7)9uo>=N
zN;e%G%*5UnxNsQ`w!x_!Z;NY9dcGYtF2~szT)G0AuKJbO-W3P3v77o;bZ>VY$<7|Q
zbT!=?i`#N4JJ-;oJ?W{O%B5@R$vApT&SfK_o8#$`98JdIb-M52;`P{?qAnZzV(SKa
zI2Cu~cp9$WNcRtrZ^GtuoXe41znN|ys4hnb;qVrEdN3}xa4t7x-&em?-#Y@^w_*1<
z+_)Xv$7AyjYy>!!E!n=4Zk<9;<VbezqC2P4jk~eez`5+4jT<pNlMDCY_#AaPKNnZ-
zrJEsk?!&=_xGVdY;N*VYm+c3zdnrAVlbN{mAU(Pqw`KEc?9QV5a$C;iQkx#!#J>3u
zc5cSShjDldj%4#*oIgTO9>D!aaWo4jk74s6>^-jj1P-3S-jlePVB=Yw%CYP{sotR*
zPswlK_R~0f6IY(W@!Pm3XI&gUOZVQx#piJPKWscNe~6p1_c1PY=w^mvIhu{#7wFdK
zxG%e3;^;-X{S|gz!oJ*+W4ZJ)J^6-xS5Cjf;Vbm)2V8j-M?c|wz(3>qYwEvXBgO8o
z>azWt`s;K@_GDL1<Ww%d!9J5CIhPA>>RzAwP1%+EvM*QPVsHP!K9hsL<+thaKe+ym
z_Wxn?U7X3GY#Dpb`Te;sn{(q<SNnOe`=0I%!l~>HR)3#v4#6Ecm=D)Kpd0h!Ob%t|
ze{^R7dMq15vGpO{T2Nii7Q)U)>I>th?90Z-^hoyPz+_*@^!;Htl#@lU{fXW$hP$$}
zIIhm7r?UAe_KWnE91Yk0GrGGBHa^Gk@;H@U3%g&?gB7v;CH7Xul^)Jk!+qIV3m3np
z=W-;+>(Sfa(2b37=UeSJ!QJn$I|_&2V{cPj`2qWzVI#-kXxx@#x%i{@4n3B0+5SoQ
zx1#5ACf9zZ8{5*$zu<g3?Parq-Cya}4%qw+r#s{RfL$E^PWN}k#Xfd+!%aEd9asL)
zeh-|=;aK%Q^}Q-C|Ame5xFd&h<!^c}C$c+{z59>8HwhR1#o1(R|EK#N4&`JDE*T5V
z`E~E?gIjVo71!pX8wcR(+&DNCJM+kg;jU~Qj=g#5xtz()k@Rp7Jv$ng2V=L6Q#n2s
zH;2$uIg`!f=uUxd%aNR(K=<aO=K*%-$H5u$0`i$S9q?JWI#j)ZGufGeYYWm{xg#5A
z(<=+nEx9G<=cq4CPtU_W*}MR^Ou8?d!?c&{vK_L|<WR0G!akQ{*}af`aZ!3K2eNsQ
zejeGE-No2j7t>SOmP?D%9XXKgOV}5d(ECeqQ%>aKlJsmQJ(1HU_KI}(a-7QP71&>j
z9$bqX!*O^cj+e&y9k{m)j_$<uWwCcRE-feDkIm(=@gQ!=+2gpd0zG*O7gxloT$jyv
z>D86#jvULrTv&x3%AOp{iJZ#Ts_b()kj*aN>&dq4uEySzTXHBHC3-AZ<y3CVxm;YG
zz4;#BtIM{W$*x>kgMA=JaxC}dRCd>7pUbgqzR&l}wdl6&%dXs&ec4%?eIz&KRPM{U
zTphvQ{DAMZWm_(;LwDu6?8})P$`zZv@jvb*vM-m{)%QN6$8sQ-)>Hq8-jXA^v_9Sb
zSY1wKYXiEI(VKECn;X*IPv{Lfk&TViXVU{YlZ}n({-^4)`5ErZu3Rs(4+pyJe9peU
z2|bo`+5duG8%ejn#F^~(aCH>j_zHLAM6PT~cfY15vhfWrZ>I0dv21@!FO8;WawL1-
z(TkhY&F^t2+j38i<(k7j_<?;UM>(!;LAQRy9XXaOThjfX=xsUq8QWXY!(VVqc7DUw
z*7R6z%Kq<ka~pal2XfS>_ht7F+}xIZBp0{C`9PQ5KXt#N@5>F@_)GU?^KTq(uf1H@
z0lWXu1KIi)8#~fd*_Y%0=snpn#?AS2leZIldoJ9SUAa7lp3AYE&CR~Fvwog=a3m*k
zaTmHbFFlk~x!|e~qBrDRF6>GV2CK`~5Nzy5kL0>+7U(@WkiFg6+w;-8awNNZ(4G0|
z9XXRLWA*bapf1}(v9qUs9yylH1?ko}y_cJ^wGiE`(nGl+TMN^Tz38zV$d0K#o}S5d
z*&9ah$*EkOz}{Vip313QnMijQr6+PGmnYGK#ptnYFOExl(<8YlJ4?{b$@Exm$nKJK
z!=sx;T$i1ta4u(ZZ3_EjI6af?rEzs1dMc-~vkcwYS3i&3mfdCP_Eg=MTe7<x-P(_y
z$&u_YuRe`#TDU3ua&dopDu;3|=d!s1@7)^vP)=lHMY??eJ&;?nxsraK>GW7`%I?Z^
z^FVqcH{@Uydf^~?E;nR%ReCP_a&|ELQ0^Xr{ngmJhw7f3%6>`Rr<<$eR8HjTVRUaz
zdf{-K$$@OIPwyN_k7Va4?Kjf<qp?xOO*z~Id&khzk+?6rqj6NH$D3pOSZr2s<#?Qo
z!L1XpvpepdsP}td|0KQN6BkaF$LYOnRIwA#y@}X81!r<cHm1;nQ|ZZmxPBUTrsL-6
zIG3$6uzv{MI1{IGUG{vsa~3_3+p={Sz0{ybhwI)9Y#oW4vUwD?&!z`*Q#OyLo9F2L
zF}NW|a^YO{y1Jam#(DJUSbAN~kHfj_pNMPcvyV@~-3zdPD)vI0%Y_TEdm6nZ=W=`z
z-8hS$U847Law#@v&}%cXeJ(CthMn_pDn}RMut~Qr#^uX(?-JaRv&(UOrS{k2?o~LD
z-K*6jdMYP3;r=!B{0^K%dVe>LuEWNCxOTnv_v7LXIC%iKWcM*_-b8nw#63BF8izO2
z?G8?F!I|u}aP%_WxfNS)WA8R~xp+GcKBe1t;`kfw@515lxO+EF{>0`z*!&x}Wyh$_
z`SV$HFWs37m+!-=+>zrU^yGfJH6N}&fb9ja{h&NldpVNrS#)nfbvcmjHr-f=9?PLz
zeu(ax^jx-v;pW5o{vx>a2=*7%y#X(V-AA=w9{W$|zTA_eHR+Y7>G25cJcF}!a4P#Y
zu0BimHpczuusHz-FX3P!F1?J?Nw_T=ld<y(-SBW%&g9yw^mq!rFNgc!#%uKaAZ)yj
zlcTZo1`f`{;ak|h0NZctz1)`lQ19PSmpgKBA-(!8J-k@=yV}de_ppBny(#B%@qK!5
zDLs;nnYi?Ux*W@yT>c+Dyo`M!J55~qke<n1*}I%x{YdZSj%-|^_aD;}IhFHk>7`HU
z{`J`U45xA;M>o)GpVQ47abNas!ksU4Pp*E61Gy&~x3G_T^t^?=udsD1&If!Ow!Wcf
zvi~i1@1nQA!{NQS`#p|k;UvfQW7zo#8;|3jY$mw=Gd(WsHRqpC)?e~?T%Kp>od10)
zx8+>6=cOAH*oU$=5%&ktGua=E<4N>fw)e*V5bfn$wkOjY1$ro3^WkI)-I*Vo`{KSF
zPR02G+E2rsp*T87UJyH{<6aR5XX0=;4$s2g(%5fcXBljsjhoA2_Z)03ha<Tuo9EJt
z%hT=ia7%X2$7PEihB%j<3vqn~eNXPmkz8Am9?O|*Uaa>k>Ha0yTp34lAm_5N3f;Jr
zy)VZzadB08(8P&sT!FpSbpJ|RE8$$uWbayfxH>(S3u|B_qBmq$HrAx4av;0cvF{Ib
zxxN;A>w0=FXE)$@ZGG=XTo{2pxgjS5eI2@e6Z^Vs-HZ*J?%a-Z*}e<+)}?2%zaDn)
z)?QBK`ug<XK6<zTP9MPbhS+%!$Flhl_BPU9?#sr*bbn*IC->w;u9bEF5%#&9$n{Os
zAEg^3arhXHWb<)c8bvprz^UxLh})adt(UPkT7Daco9n(@ba3>J-pk3mdcOrd=;EI2
zyoZA=>9K5Vg|qkRk?ehdt*z<aPq?-{Hh#hO4mgq9vh_Q?xg*{D1DAKg)}Oc|hsO9h
z|C}~=riXLkNRH;inX7vXX}=rJOkCVu_ZP>tJ#esu_G59lByP#+aGdR_{j#_@4kydw
zu!_wRZj8tI+Sr_kt&MPR5)L=U#$+6qaVqCkZ0)E0-Z+?s?aAu<V{01r55W0!oKM&L
zgK>5sPL9Ct!P*~(+lOHPc<daC(-Ux4c22@|pYC0N-6L>#9gdF1=3O|hW8-1mKThu-
z!@c9No8ayVIDZn?PQ>w3*f<Fr&uTAw&*8?&^i0lW<9Xc+=urpv2mAtVo<cWY!q%xc
zmE!@wN)Jz?`zfxSj;*(G;|!d9fb%o4{Si*j!r8|-YH0rnuFX)Njm@*M`zdb9zFatm
z?)B*Qxj5?M;sx0M3ztImf3bBT4wjxU=htI(CN@{V;bque4Hqxhes$cF?Gf0%lJ0Db
zv#W4Y#?7m-y(#vu!LHnsqs{60wRFqDtq2=i<Mwsx+hFf{>}-dv8?e6vHgCk~PT08#
zM`Lg*2NQ7EqT8N)tKJ`oTX$ghaBSX%jiYc!&X2+EyXk%%mtx&J9vAMx`3blsJ11&?
zFWn7rHsCXGav$9|3pehU&%wb1dVe0aAH>o5xFZ{v;CL3@n~B{vPMSEE!z-}yFg?8%
zJCESt23&en_io14W7xeNS02Y<EI)x`IhGT-n9x%>kfR59-+NN`9>o4r*qeoor*&Vh
z%SM~tmtDE>4142Yy7jE?$&sAOrRV7WbL^exaVSS}EEhU-`+4?(9LxQI-l5lDV4upy
zi#U3L-jb~sap@&`EVpFyC3^W~dM<b6_+@(d3O#%U+pl8lRUFIdYwEAj?G(4<KrW^9
zbfC-b>+G%9>G>NtlKnT;-=G_BsmqCMzDbYYp|=M733lJ6ho9r(JJ|jLH|0z&zDrNO
zq(`#V!)BKr$boEpMbBmXM_hiNef%>HKEVEe*!mFX#zg+TR(9sX&PQ}-Zgtrlgxep}
zt@&`C>Hbi?pN)e>vG*y?<V4Pwp!Yu0`z5vi92?8x(ib>f4kvQ7Ja)gNdlt^*M6UJd
z_6qb|4&?e*^i(#!#@34L8?rB(-_Vnl=xy0v1=qe+mvcE?jUInT4@%hn9-AZd{s(NV
zgPk0^>to|5?Ki-ooQ%TB&w9TZj()-MXx#V}I}Wb?CU1eevL{!5r`uc73w@l+P1)Uw
zUi^ce$PL-wn%<W)+5eM$ye-}Q3tQXaKu+bpY-~?&{H^cFg@16gBRv`LE;#>J_jknw
zW5GGU4(#1<Dx2eQZ!UUVRi7Js6L2;U&SZaHoXcI=oyguDL{H?7>`YQ0On2p2PGx%t
z-PxOcOU`7wK=&roV>z0Njrr->G~AQj18{!<x-lI$hT`Nfy<Z5MCu%=T_X1p56sM<S
zYjODuoXGK6I9Nh`26mUk*4el#N9W;wksgKeQaHX4w}#{JB3xb?XL2n27t^cD(9KJ5
zE_-rqS-Np4-C7Pua$B}$(w*h$shr8~WpvM?2XaUDoAhV}-M<`{R>bxdIF?h{UP=8b
zdRGqR>dN#?PG#$A_RcEwR8D34T6%p|dL$dGVK<^TWb=9)mgtFGTpe4t&<kr|<2Kxt
z?R(|5=<zIUj=*LcH)Q)ETwF(cxg}c<(=D5x$}Ks3gl?}(j~<oR!~T;vUSItwoNR#I
zr?I~wj-SD`jd1=fwl~)M=Wr%x9o#I_(-(1d6CAvRbJ=+rha+|G6<i)Azl!^^@fvPy
zN_XYbX4rUx?vKWa>};<77CmsV`8M{p!0Ed<-V$f;;r3QI{~r#w#^EQpv@LdL<F0If
zCT~ZNzQC=D?tO!;9kBTW_IAXnZ0v;noF2;QPq;RQ?)-vFJL5o(<@{H=zl-kwi5o6<
z|HhSF)&IfPZrGV?690MB?l_X0axxFy+k@`Si~F)O2!~_onQZTg-NE#ZY!1P-ar96w
zRIyp0x8y)}_M*r0(X#<BfWz^0Zz#4WXumKvCShYy?f1s6Y)!`b;`D65OX&R+dbFgx
z502%AY!&I&zPdjghf}e+G`9D{p`6NzT%AU@mto(R13B2Ap37DZ2g|bW$nJ9b-gJ5@
zmkz{<MeoYyinw(UJ(g<+>;B4g<4|m^iVHqYOS*R$HrLSp2pr0h9IQ#N9!dAs!o{Po
zy*BR1$p{=CO^?>W?lCxD7dv$vZ-7h3;Y4o9&W73_uP%3Ge`9**1iDeiwG**765A(X
ze-zH-U{f5POt(kl(kVE0aQRf6%CYQiMQ@!(Pqvd!$JuyXoq@wix_37A_r}gS*xDb5
z=i&SS?4OUl|3}$*07g;ee|+Xm+1ZxeG_px3OAmbogouc1gNTI{P@|%5gg}tCLeSXP
zhOvNqh#Il2ST6Rp$8x%-o?<)KavIUowcW+O){FiBee?Sb39;P$2Y);7v)`H5=e;-Y
zy^YI=>n>tmMI1^ouOZGeM_Py@8%fWfNZiSsI*GXDV%AS4uGvJKJdL>R65_;}#C4Yu
zXU<{0jkwTCT)3P#dLD6dGjX0das_dCJ?mEz$5X_eR}p8Jo318~{fYF@HGDmDiaENG
z^tv?Z!HbElYl$P55_d5tnOnAyo@cJPjyQH1UEjv6w6TBJlb&R5V^%IFJ#qu-(apr2
z%*qwSO*fLBW$tEHZX&(?Ce|IknK*wR>20?Xr|u_?+(w+~Ans(&K0w@ZJNx%AaqAt#
zg~y27?j#OBPHf#p9DklTbPsXlRpP|G#2IGmKH}7Cq^Fs4+lUMIlb(2kxUGXY_ZD%}
z1MJ`1#Gwb7^TZv@v3H2;9wI%<+{v7Lm;HN~bmcwbZsrVg`Y)u%-X}fz2yy-c;@U^~
z{(m!PS!a&^l{nf(di`U>3FaJg@FUXO9w$A?9Dag0^$F<(=KQC`>A$i58FBnc;>;Js
zO-~W$z9O#KN*w!|xQjXb4RPz!eEolj>!0E4yNUD6+3$$AK1+J)d%pfT;w*EHInP}8
zJn6w7==v;kgt_+bq{o>%m<!BxFOVMok>kUhWlrQskN!lu@*;7LImMj(ne@<0q{n_C
zPBRzOqwMii>SfaNgNdV^#PK1-S>_yb-Rq>MhLYaN93Mv9w2k!O2;y$$#7N@SH%L#8
zB96bw*N-OdVvbGb>)$3lTuYqF6GwI-4!uJhWo}{4F)Qzq9@~}uXIAznuK9rVImDgJ
zN{l%9FZTZ+;_$zT<8z5~%&GarsV>rk2NQ=rB+ea5T=x;{i-`*#6Bm{fCqL!uR}<HN
zMx0qg+{GMjCT{wi^ypgRV1ch^PB8~hAU*O0U(ejeoMjGuNqU|+$(%ch?yvcZ^^=Kn
z%<)r*V_&n*+{K(Yo%F5Wke)b$xb<7U{!HSU{}9L55eK`8v*!|LnKKs<r@kXSx`8<Q
zJ#pqD;yiOCMV$PB^z@~~O+OOHFC*?|j<yl!ej+`5IdT2Z#JSCUJ#*@6;*e5gKUZny
zB(stxy+$QHb1iY6IlF~8AxKYNN8HVvxq&#PvHv#`2X*4apNZ4V(RSimgY@7{#9Nv3
z%=ISUe>3SJ7jg0y;&$c?bI>9^cPr^R=2(U}<t9DD9QF`r9i2IL7hT`xW&iFbj{5li
z`-l}kakPVYD|7Hs;`#vTslV~{#l!{XBy(ab=^Z7c2cIU6m9qbTCvGnzj^v1&%K7>i
ziR1lPe~Is}ATGSZ*N2FeSBXQFeE)02?acX3;?^qCqpuSOtBKRwhzrc&w}`j)Cq2g;
z8$cY(lO7sKoO+kIo4LT;I*9b(dwhMEIQ=i;#9-!6iR*?E7d|Hr4`VJ6cRKtfar<!6
z!(S8Ejv!7l=a|#XO(RK<{)euwt07J^=b5w2Eu%;eeoxo8jAs6kI5mbi`4e$`EOGv4
z;>bASoOZPRoQB7<?j_Dgh?O#8Ya(&HA93v@;tX?^S*aksZZhdH<{Wc|xqfH%Kg8iN
zCzxBOkX~R8P9;uM(e)|jST%95mh@<U)|ul2h{L;(9v?_tU``AoZktAWjybd|ae+C>
ztc2<MF6JO}{dBrM@9502p>%!wZls5Y6USx{r<ilh$_UnXCq2R3$sDU8y)8<5j=5$J
z;`AueJD9Vh*}pwWkBlYmX3j7t_aa@HKzi%m#2MzAeTb70(sRt=iNvXyr019;v-ti=
zq~{%;Ox#jOdX~AHInUg*FX^$J>G}e5u$H)cHtDGu#EJchl|6~`2N0+CB2FDhoSaEq
zH-|Vpi#W%ena%gdNRRACoH&TNo;W(6{X3jkIhZ(c1aTL0hB<Kv>G2~;uQ`-BdlYde
zb0$ulu4jD_anoVM`6lA<;l#0}#O=)CQ;4mjNKc+dtQ<|8P7-IBBj*#>H;^8=kT`k_
zad<uPR_4NGeE%ZSQ&$j&7856~BJN<$Uqjrvg#AwwH#HF}TZqF;iKEvM=a>`M6W1S0
zdZC>-y^J_@4{^;3;&2CXawT!_apJZFaqdat*5im{&k@(IAx`|AIMPg<{0DK}@q9mX
zCv)sI_U{DJ3!TI@EyTfX#GMYmNvxd2{{NG>i#hT(ar?=n$KD~%p2Ge!$4@0ryi0mF
zbAdT^8td<o9y*;k&)m+OexLM6lJqQdnmPV2((BG(op~#B@FVvBEYjo5Y34k0?b)QK
zKBntCnPZ<2H=V=&Gj}mZK4pC!>1pOXbAh@3Tn_&;x<1F8DiFt8NsoR(+|3+gj-N+*
z?n~0Um=j+SH=WP=e~4=?AWr?j*E1KG;}?=1{F(H+^~6ynZuhsH%mwDU4Sc;IJ$Mmu
zoH@;$VpdY5XPM*7Ip!>LfjRsq_Fp6aTbUJ|*xJbc8N^xUh)G;~G3gnLIL91u6UR1@
zp6*B7b}4b9f;e;;ak!FrD|5bzuWutgHGnvEIk7U3*xF1SAHnxuK^z@P9KVt{TSKf|
zMVuK$oMR4;Ca%Al^d$3E=FHA~eVX*d6yn6S>_2mXIXsp0rY)@R&i7wO9GOiVypcG`
zoMJBQM|$m_NssSO+`*h=4!4u896)-CIdULz<R;RChY)w&Oq@HE*t(TCbtG{&bN(p4
z{x;H+i-~LQAdasf&Sr?SEySt2h{LB5civ5$JDWIkFL8VwaR;+<9^Zc->5=n^!}k;C
zFC@-0XV()aI!F)xiMaIv;`Bzo|3TuyCcd9Ja|v<$A=1N_5qC4^nOh$wJ$X6lvA?i?
zR}m*3Ax>RQY&}Yxzm>25D{(MG-1Qh=e>ZXdapD4V(-XwGd)U9f5y$Q&Ze<SNM;v^T
z^ymY`oy?I3iBnIJo@WkkW&a)`J;R)Qf;jpt>4hhWmFM{SXNl{cXPvo|Ir{?X`M;AM
zev!EK1>)38#E~4|{|d44BC+xgaox+r8Ri^w^53KvULifJHz@MRzD^uBh-2G`V_xE|
zZxH8v#7%Fq?k6rV2aAZ4|0F#cAhzD(>x=n%<{Wd&+oY#T`1(9?u#`B(oGK$uzC(Jl
zoH+C@-`|fo%bcks&b-I|jV5mT7hgY?IQnnm!g%6v7jb3+-_M+%M4bMR@86j?{t;i#
zoMp~3*L+NRjyc7gXYOJy>_z^iKBMd7dlQE~Cl2mI+|C@HNnBUp>t_*nGH3TCZu^4t
z=zhe}FWJBSiF3@#fyBwL*gxiO<^*%o*Q6(zJDJnWb>EPlVQy#6GF#u09+^YowKC^p
z#EJiq9z2NS$DC!Z>n1%hm-H-icph=>cckZ-Gt9~Pq}O~;dY-wBIeRecKaj2*Lfp<A
zXAb|!_a91n@F(Kr;l!QHi8yigXVQbm5GQ`&`<X2zK+oYq(%YCbP3)h_I&+;M4jxN-
zo;kCO@7G9AEhnziiK8os3(T1{#1WJ9STk`KbDp`?MS5~AUvCi?PGEKuD<=|nGRK$`
z9@5jy-OS2KbbX7L??0Ki#>adLagI69obZz#Je76k9CLjUhj$w3R)9E{B+fABnL|O+
z6KAl_tei<4EhatAoMn!jMS8r1^b~U!bL?!=TT4mLG6&0uBj=EwW=^alt}7=!&zxfp
zwvwLgM|${t;`$2W6mu7Ia4YGF{-h_EyP1PelioCd?`Q5}&M?;xBt6gE$*ep>_s0g2
zo@U<49DbJdFzHd|EOVYYGMM!Eb98-%ImsLzLVEal(%YER%%P#AXPH}><A0~?yP5OM
zEyL(~<pt8anA6Pl!#TVh>7C3`=DHE2=b1a0<1f<nwIfMSGPg5_Um`tRLwcIIojL31
zqezdxOxL$D=b1yJNmpJWy_Gr5tc)Q&{14KT%u(h7bDp_rEQj|hU0+~MGB=H5|6U_K
z&zxp%8c%wbxsy5BN!Q0Fke+5%BE*T;N$+G1ZzE3ZM0%WAnMj;rPB9mlYbKE%d4ulH
zGAEd$llgw;PG;pzy1r>=($mb!6!!0*q$io9ZxLHlNzXB-m=kZ49;_ujnkP;%XPJY$
zu>KC~%vt8(G}2@5vd)}iwss|5d5`oa<|K2MqrcDkbh<vp+{GOIfc4!-&oUR7qyHj3
zF@y9xbDlZ=Z_?wtv(B7nj(4#hC0+TDILDl1uG@p}XWq&j{fMrw+mrMx^H%2Q$E@!~
zdV)E_TwspuO?v7Rx<1Vu{FFGn59`bs<{Wd~O!ogXx<1QXV2;irJ^VT8Ip!2|td8_p
zfpuo(3*y+mq$ioTGAmz_9-YnMGj}j&nIrp=9{h@~Z)eUj*X+;tf6Y2`{2Su<0i@@d
zJDC&Tl3srx=>_IIbLu~=&*AX9i94B7%=IzSmG4+*PBYgXM0)sp(zDDd=IC73e;|D;
zbC$Vw9_i5^N$+6JGS|*0J@OOl%sJ+ogGrD5OnN(WfjM*t>4{%RZ(}YnhYuw^t{h{J
z<Jy@Ol{j2adXhQKtO(W*BR$2OW)5ql*BnlInz@}hqO*Pk=~?CsbKGEk0qJ?>cIKo>
zdgw^f6&G<EbCNl96zLI*b><9n=xEZTZq}JI%%M2x2@mOM<{WcP1BdVB`<au>p<`J0
zvCf=g4lN`-=qJ6MImsMZM0&W0^bB)>xwet?M1b_I%mwE9#jFQO?_^eriR+h;9%C*r
zXP6UBr01Bsn3E-Re{w15!BXPjvBW9nHs)X%>EUIhr<vQC6Xm4WE+;+Qk9aF{nz?=j
z>lLKum@~|ED_IYb-ocz;u31HTjycU7t)%P23DPsnY35WF={3iZ9<3(MFlU$}t2zAs
ztTX4BYuB(ofb=YLg1N4l^c-`JIXRH7uU|{LGKjc~Il)|iJo_IeeJgW{x$Xqg^UN9M
z*kHOo+`|43Ax<$Tn5`4p|DmKOnN!RK=IAie<0sMe8RjnL#BkCRCzBo=LEO!pVoshy
zdUPb|)~W0tbBZ}%Lwe*i(qp5DGtBWZ#BHauK9)F|WFALsok6TjAP$|$93{@3LtJ1^
ztRv3t!PlQloZOSRjXAa#aZM}Vzc+CQb7mjny7O3{N!-aCpT+w5qzCKxe&zym`~uQb
z`;y+xoSs8mzn=8mT;j+EzWxy6nu~~)dg45D{xIULDbnLd5I6maIJ|&Z*+`r{lJ92@
zAH~;SOnN#_+_H%{)j%A)g!M(l(MyT*jl{}j#L*?h?G7JHT;E1|Y#DJkbB?+7a=w2#
z>7mWUDdx1pD@l)DLAtVvILn-6uDg=&PmsQqIkK8Kb`|Lv=1%6s8q%AtCOyyG#hh*?
zJ#h`|Yl&;p#L44{Gt99Qh@;n%9&I7cGRK%hTS$+cOnL`%mN{}A>5)@NZ)c7&E7y~r
zXKrCmoJ!YsF-K1$j^9An7fvVcWKJiElQ(jF&LFP&GxM3m?aYyLh@<TsK692izK-<T
zn@CqKB(`oQPB14OUeEe1q(?6%&NFA2<F~TDiFM}0)x`1JNzXBNGDo(MUY8*~dp&XN
zPU6B%#Ob?;BeyZ%O`Ks4-$R_clk_}u<Syd6d)Yr`>ptSteWZ6V=a_5nXaDXeJ;$8r
zAdYvCo@dT8haV(8`2g$81?JpCq_;dsdV#r<IruQ?wGWY=WX>>0|3Z4r!=z`J)69`a
zNU!?~htI4$LL7aR^fYrkOWg7(=>_JREOGX6(rf=ptUSg17;&7rn>o+i_BiSJt#p0;
z6U4b^IlRBI{v2`iN#fWG#5GS5$C-1?S?0E_q=#Rm>r+qj^)C^}pCK+Vho2?RzD#<a
zIrj>2`*WnHUL{UE&-cGhT>p3C{2Rof7l@;86I(fA<z2r2MdIMUiGwc_XFepZe}(xY
z;_yF+bIcvgv5!fQy-IqXS$U1P@CoS|=Gdpi@lMjipAjps6Q`L|%;B#|Pi`YU#~gZt
zIPop%dFC8*)0?CR|3i8=bNqYa;9I1}ejx5(&N4^eCO!Eh`_CNznYcYqdh{3K`ge#6
z%0m17tL9zeluDdt4hrJvd!*->JDIZ@=`HV*9`+G;f584Tr~XA83$XwHCRR#`<6Xo#
z<}PNXob=>}q^FpbkBGzlNN;71R1gP0COto#IPocQas+XKSs6*(@)`Tjtb9%!sUbbZ
zTwqQYNDq%Dz2gh^e=Kp+mwbPOxc)0*WhY|gYvN!naq=7DEOYQ%;^=hJ3(Ud2i9_G<
z^>xJc-xDYH<?9`uP2Bne>B@e5|Bvkd{=^xF=MdNZM0%dN_GjWujP#mch?55qcQHrj
z5oeX4U9Z9i6Q@<;<RQeZf;fICalOWT1nW9+b^&pdL7Y31IBF6rM-vBK#IXkA8jJ5g
zhB)jdjw~WBFb5YCw|hv>FxPq6za@M<bEJv5&By*PC9d@o=a&<AGiMXT^#Rgz%sJ-7
zaiqtCq${h53(S!dh{GkMN15B0BQ2yyO8Nd1iL=b%Q;1v2NY9>1+*D4SXU;P#r;%RY
zkMtmOjyb|yS3!E@4E8TX9AnNiCz$IiNl!B8nA6O4Rji*y{spVq|FenH%xUJ@{-lS`
zAw9>OV6GoPdXBk^Ikt}DJCJqe;2`3}xumx<r(22RVbTlCUCi0@`1--5C(kFYA3_}8
zKpY&({$Iq`Gbc9@w+tga&)m(Nx|Q@$4e9CIi949XcM#W(B0b04;c$lZ*l5zjcM}(w
zBli%e#*iLkR>l%1?jyZ}Ie0&D%Q(_g%)#-*!M~7hO<?^I;xu#oQQ}C1^mvvy%ba7b
z-HG(rUs-3)G1pDx`yV4c$DDtPxG;(I;Iqt=iL-wv?%J6+og?m;LR@%>I6aj(`6_Xy
zmN>^8+l4sx8tHlF#Or+hG}2Ssh-16*{cjK#n3Hc4=cbchc%N9AL7e!2xQ#i*9NwLD
zrHk}DbAdS-<?ucty=D*M=*Prq<^pqQPtqfwlHS3bW{&Pfdg3$EJDKC%?EgM||98Y&
znZrL42WOF<`iZ!UIr0l}wvP0iy2$P~w(d)u5yYw4#94#5Z9n3KMV#E9IPM{?KY%#w
zC*FD>ajJ+oJBRNN^8GR50(1Bv;$$i51?EH<aob$Jp1Ecoa~0{S`NWAq#9apy$HS~2
zLL44S96OXaI)XS@Ph1#D+|HaDMI1kj{Toee9Znn^!`CzCcOq^(g7nNp;@SnoiAltr
z%!OLw`lCpXOec;WO`M%U+!QBP_GbMU;uLe9Ik6Av>4l_+XAvhC5l5M=M&dYg8*{Rb
zuCHIr{xf$m$7YkBS;GG9N8HjxoMjF#C64V+dX70ahuB(1dL~BP!JIpYII*1c$UNfc
z3cjAXn>lqD=`{(`!wZPJnX?VVk=3j>5(n21D~pM9%#o$UwQD&%<}T*cv81;jPkL%O
zaq9`hi50|kEyM+8<wWBAO42)+gU1nXJ&E)jbJNLuKXW&8a5Y_@I)(HIbNE!^7;^`6
zg1PQA(o@WN<_vS<bkcLoR+6~DoMsNLq3~<ZAU(pol{v;7Ka=zXbAdU<+<F%28RpR0
z#5v{+bAdT}4(Y*W3O~mjVQyMSdW^Z7Il-Jdm-G~KxRp4=+`*h<t~-zP0&|`@zLvsI
zo=<xCc;cE1h!e~?=Ew<r{e|owb7Vbn<V4c*%o*m?2GUa}ksiH>IM3Y0oIaWKwiM~%
zQ~3Hn5i6$>cQMD9QyWPSp2pW-OdMzKVh*3q{%;~Zv5vU*a^km{)67aRYWF9}V^k#s
z*OGmPs#n5&3+xV<ithyMRk-ERnOa5Xv*^6$#FYytG&HYTv2@}1n$d?eEMMC=YW%$B
zRjV6uUqx)e95r?dZ2BCJqTer+1%pMYPZL(yEGjZ9glCLL3=<w9%>E)I4B;soxa&X-
z|7YArJ)kZXG3lfuS{$_<p@pha373rLu5izQ?E#aA{LHo<XS;jHYp+!+5)G>x_gJ}T
z-U$tfgO{#sPBgDZ^bEx`lw%D0`WXA)(#!wNa9;&W_wqmUKlwjpGQ6)=%xYz&fn*s%
zrB6jka5#DRS%#2hI=+SbJJ^rC!b$x`ID0HwwC~F1NfVu@Csjj9vVW09J^sytdp7I<
zm^|cX`nUa)nPGcap_moQI@J)m5Qwe()CF!#v;QghCI4ccjPFfw-wL~<xBu&Yo$q!v
z*dBskG5yN7b_kmEnT`zmUw~h-hD!h4jR*@CfXPFCX8y>3JG%pl8Bkj7e70k5->PKU
z{}}vo{67}%6|h7v|FeJOf3NDY3AIKZIrcXLKb+_0F}VK*+sgjR=caiBJttfFd0D-7
zW%JS%jpJ7|u4rml(-c8jdKJs7#0_CefAj2baB+{nL*O0-8w-<pA^n{Sw><Q=9iPWO
z{@3E_(%6hSmV*DUMbi+WBmYOLE=Aczuhei-q9sx3jgo|aPC71zdo%1Rm=j(*-17J@
z;q5e~cYujs2bkvY3h>VfPhX-cURV*#39l0F|0TSMJEXAX*8!GBZGYnM&k3&u?$cps
z!kq9n!2Lgjcl7ZMtCu&fL?ZRr9&=R1nyH+r7U@2r8-_VlQO4=Aal#Sfa693z6Yhs_
z7hqq(oN#}ETOPlcuWOoD%X(tx>K?Kf7bsbEh#u4oeV{DB>0FK(4lmZ!6W$uQ&w^b5
zlXXUe-2(UBu)g7)ttMnN6sP_yo-~od-Tp-bqS7EoLul69RJ7?6VB_bY_U<nBRxeeR
zSJV+g*Nb%50Kd;?TAE7~2~$|UaeBlx!G)ImDOInNEjnLshnFjh+GlHNPrNJP9tGP8
z=EVCTxDSK%jrXR$@t!i7^Q$7Zd52i;L9zVAj%7f%cHSYD!?wrrX^tgdZ^uqi3gr~f
zcErIc&j;Yn!XAe?<@o~K^5`2+CmR=Tk6&qY-tH*RmCD&-h;E`hr^)i1DEbTeWXAhZ
zc%fr^!W#|uPO!-^C%h=!e;D3Q6KkCc<OI0kw*s_%LA%D`w!vQ~osYr&7VKXzr#y^h
zXrE!q7HWUSUPb3u#E$g{{YxX)U?&TfuGxF(>c)l5`z~%+Xpa)o>Z#YLYFgdL{w%dW
z&sDEcJ$Srymv*;M+QbN56K+!%F5!Mbb-k(zF;kyeTIM-dEk=zxPXCuG1{rY86fPAv
zD6tUbUmS6C(s4Z88)2JaPCD*~`>(LR>3Cn;F&!(HF7K5TQIS?p{Jl8uNpXId<BS-8
zp}M*$#>HjUxoQCMT(LdIdvc7a0CJTSZ)<r^ysP0J2pbHOhm89l^ec_Wt!-Ey!DXgm
znM$7f74|pY%ilF{9}hdRm%rV=-(T7O*23Rv#i~}`M^D=i5vhveLs2?<`THE)FTh^<
zfB0*69Q_rmzw!}0u2914Z*WCVJ`96<By2QH9x@;PTYT-oO{HR0Dh2pkrbOA_re6M@
z0{7{#Gyfm{+CvUIzTevMjkCYmUjF_A?oQYn{||rhxFTU=6>F^WBRn2yClntk_CLI`
zCqE{_y)&#9CXYYL547iY`QfS|iZw(zQ!~T>+>>R0TYC9>KHTeJssF{_DU%(4hbq=k
zr4{}Tguey$H`mMGcj5j3*7ZO5i+0lScNfLlMcDv<F{oA|)lqyZO3kXCeApH48L&NI
z^7x~CScnXEJl<8Yc2zdPV+>jn>~Cu?e>cN@1FRh;eU|=a;Fiam8-IJ;g-+7(zBD!k
zJ!I7!mtrkbHfuw~o^s$-ulr;>pXczp;a>>;$#JhQp(+)yDwq@A2)O?!JiAf)%@ETF
z(TDbOg3%Ky+Qt4++rI?-b;3Ot?v1cZU{1K#!u?0#I_=?a27U9dgU)ie1^63=$1=U@
zajG%^HXJ7NR*p}iaL<Od_vu&m?$ggV%Fd$^?;Nrzo@Y13qwUY4-rYwnI@WGgxknoz
z4AT<E2g3XWZ#HA}F~tEi#9lPShv@fn*HJ4>6&Ld{Flsx}h)WnQ8Q(kMejfG@m=oVG
z;r<cUH@^4u?FW0u_t4*q?{tdq-|hJ70x>>AGg~z~#-#ytc7DY8@a-|4-V@{KAc}9@
zYD$5O?_qE+h8+u&-^w^|WZiiman4TX+^~Gf(v?e_WxhtQQg>IQx2wBji1(RL?$HP9
z<2)|Brx%GLeTeY5O9lREqG*UH;eVcyh~JH>ctl0#Z6BF%)IR4CZV)aRuW#Z0NycMM
zPrUqa%j1-b=(+k;yzD84HF9DB9kb9QwG;5du$wZz)PAQa6PiGXgGGPa7qmYdZaw@B
z<2xDdVz^hp5-=w}PK8?@wZGHvEo@jr;mwrc?WasDwRD$Zd0YVxdcVP9w0$?~?ck{G
z+6w=ibiNDshp<mzPI%wJEsxA)l+Ld&p>yx~3j4h|w#t6AWm=;L?2fSKDhnvB9)Zl4
zVGj`jCC%YRn|so^5bk4PD_~BzC&Mj|W)3&c=icG&I8V|m0*PbMN)@fb`~b&5HT1n@
z45kR#hR7p0Bq~qJR)iD5S?2evaDM_Tz?^t!YbhT6ucve`x|YsP{adl3LFRWwUVT!1
zTUGPw0Q>XUw^gqa{6Z*^!6N8$ixW-17^n}`7Y{;C+^*^=Rg99uKP5FZichq22*)Xh
zINZx%t6)w%PJ>$>iK{96Vb}DD$J&(?lhXJBN2~F{M<e+4s&dExw5j7oKra;@*?P>y
zgAkAbhlfRN|F**48n|To--7#N*yk`O+>+xd+*i^RUZhXBtDBErvvf(r!sex`?6=IU
z+We@hX4UJ2QgWrHj4tYD=@nw?;pO|fg`vAm%NiYaThk}F`_~UO%+UsBCl1w*Qlny}
z7^#(@e;-cqYC^b9dw(9>7sD=tIqld3aA#ppaCz*{`J(q}cNZ>MwXk9N@}3vP#+8fk
zovfzuhgIa%6s7Dxs`7|hB+4vzuml~DX%>Zx@roRt;u5YgzHrIXYFD+Q9IYRZp@?#c
zDvH$kN_GUrGk5}CsyYAG!F@682AC7iH{gB`cIB0ne>%tW!b?zXa5(jd<9STO!evW(
zzFod*;j%gN<~OZwl*<gxwTo8$_V+cTm#oD@h}oY}<JUBzO>}Ok8NFghLFifaPGJ|+
zE=pNMj1)fAg?Ti*ugL!ACD~+(vUQV7_i+pF4-<VqPjuZmQQS3AzjLDNgpsJvZc!}o
zC-HniJ){p8p1p?3vGx6`K2u<#GJ<xtO!}w`P1jv`m%w*5Q9Hf0Ej{@)2kvFCRWPT%
z-3hlmocxM#zv?8VcRuYTAH0Hkx%RoL7SwY4bDaHo!slqu%f8i>v^E$iDHUE3GK<8x
zlAYxc!)LfcmftKXF~pdG-u_-)kBuK_h~QFvs2CJ<53De)vcdDbr2}1q@ubx2j|z2f
z;Zb+dXKAkO{lw^~9nav2J?Ys8?gL;8U{3j81ovgId-}{ncb>ds`LA7h!qSzCR`irv
z!@}d%;<dBaH>(?$H#V%1--wD}n;P&cWn;_=BVY<+kQp&T%GJg&;p$S|n4s3*Qw@*q
z);(gIDqdGzc=5#ihU-<`EdnSw>u;D>bMK1OZBg|iIma<ZRHy;efMUH!NWT(eD18OQ
z-D#H^PEwUdSToE?-@R}@1ncTEzD(b~WBO2T`>vU_YI`H?l;_fwb&U;)IjiS2qvrQc
zee=@e8xL5uXzlXGH9cQTUsld-Sh)o6;f@ce+-njID@Tn#2APArxmqY?#g-vT-OH_n
ztHg3C@45})yG=7DyD+M9ovD?I;!vO>81h#LVf8cp9<TU|7PbZp_lv6jk}6-@y~49a
zGll6g|13wpmkAx8#dyIf)rOe?BWU?u9!tk8xlhbS2RlSX!(rEl)L6>5@X0;-HUsX1
zVTZw-dfp7TJe+*1;dxOfRY>VxO^pke9lCmHbK{;3t5+{=luH15{BX2c{b5sKZZajj
z6_YHbqS`FMqv=Ccb^AQRV~)2lzLAZ6h1j5qp>}xjaZ&r6Mfgs;|2o{CzzQ%Ye%dJ%
zzdC;Y3Vr5-o%kKlxMIbs<7K|<u{n5s*cs*~Q^HrPN=vE0!iiaeE@-6ef@E}tiwdzj
z$441Y@u^36(k1($B;1=|SHhfn_8{Dk!^UzybUmNHR(@5_?0lQIeCfi*y;dbo?5QXX
zi{xaWp150Gr6$}xCgWLd_M50&jp0IxS#4HY#bTIh>DE=MxmhhU5NR3hQKDKz#aso~
zVH`Wr&PFBA@eiHaGoIN1_k*y{U{3s-Ps95<EOsOH1D$u$`IN7JJO1-eOf)XqQ?~Ox
z324HTvggv~H8WSO#?lI^gHu@?Vf-;rf8*<wjV--;gEec9!OZBwX4!n|IrTs43#yt^
zXV{+`g?&1}{+wig7TcdLB|KZL5aYb1zMwbYD=XLgjr0m%iG8+wdx`$YJfG?l7AB4i
zHHh!ORh4JdQoY<Pvx+ttm{u}f=NbJ)@%2{eb(ZiHZMFiJTS71Sr>eiD>Z*oj+P}#X
z*H|SltNJU>H&<KM1r{1KWPa5%nl3^&X{BkycZK2mNH>J`hAxI1BZAin{ZdTcPW1_Q
z|LVQXqMZ%*VBz-~nr8~0%TF=j5&~nc$r|eXY&3P_^inN|2e}Ln??^PDC1@;1>Xx>b
zufMmn$mjP3t$-*oii2f(Dbj&?#+_vC#Bq90IS+$-9Bc;6Dd$yiuZ8`1DV47?Zr%Ua
z{k>gJWqJ0L7^>(ovQ(1lyDB^hPZ3syuV1y$)M3cbLzSH9hXIO?S3~~=s&%jGdlJpL
zTWA-n+SO>$O}+AUp}&cYm{1|AN&@&38=F=A07Zd6!lzYZ)^->Yd?=EUofws=QF1aE
zoaJ-(G2B&2v<omNJxRFN!=m?5daRr1Tywy0*V}{FEM2)oR$e3ngW_9gP<)g<C_dW$
zyqvx&w!v+GR=<sIHGG{~uJwCZesp8b6R(thkE}axOEXJ#qrX<|7e3Q<x2APymZ{+d
z3SG9h(iQFR*27TU0^h!-X>ayYhr0HfI*jUp+cTtkIG*BfRQ+jH%n>u?4F7d1vi4zB
z*W{?jKEgXk?Q<8>?2JDHXQ)bl*f^MzFKggV!g7D6{J8KgI@iT^%$F4n%NiFpHDGM)
zJgh4kTBvcN7l*{BvN?K5tnw(s4i@F==W3;1b)gE^LS=)T`!|DTiRC`XBfPOOWu_k1
zD?=_cpt`5r>#20P+#bse3*Q~8o>9Z*ATgub>hC(Se1A-9xvGt7H&S`0s-GjoBC(rH
zGKHb*8izs2R#H<b-JM8N5Z~GL0q!qh-@s({$h50xQbsxNgPnc*1*CNi#@Ke_5}$Uo
zstns*`JUgyD&>1%L=V899ETT!e@;KN9_~kAPr;mgZa)hQoBS^2@80jz**bp5e3p4E
z!|loEn$agTENwn+)cD4g$E|H#+iS!iuRUh%VkD?4DH?uJ)ugyewNEc<_US!39bv;X
z`|}xGfD-z*h0@7s%4RWE6suy!K#aA@tqQA3_j-mFg;t=EK|_bHity=24Yg$3rIx|1
zp$!{|$JMpbrC;m{2=7Lhb+M~V*EhO6!tL|oGCwZSHRCGRPG-4Ti5JImG@2#wsY)x-
z25ZIckXF6X<;BBnX@*;RjD<YhQEh+Yy&RHfqsxD>E2xHD7Q*st#xA-?zd^PBq3S=1
zp%~ZTG0`m<#i6rAdG)~kP{Bm`bLv1mK;dO>F>uZVQ7zvT)2bd9HR5(5PSJKVzZ7C;
z*8)$Kf3AKvMwW_lFOs8Hp|uZ*>FT{gw5a96uQtGI-9Y{*!5LAMGUh$c?kV3XaPJA5
z33KYxF>uSHo}Z&9`0P9_RHmXLej3I)t?JPzgLa{8&_~o1TYhBzAmmU#;V}klmG1sx
z;uu72mL3%W^&ow!tnSg>qqhGUgyTHVPr&^w>;;$;k9XjfM`knCFXw%-cRXkr2-T)E
zz6|fz!_HHc_w^yZB2nx&iUJ}mJaTPkKfDmxuh_PKISxN^PEYuI!@VDD4$KL^0q#Ev
z9}7^&|3>)V>qAi0d~U;2Cc~H0Z99e^k49~OJK(<smwc|@f%^-Xwyx(nI}Gjwtfn75
zS7R&aT-*0KTfS;dp9al&=^Rhn4luvjp<g4{$7ahVv0)1_Wca7*E%x1~dJP|fz0epT
z+*XC~_CpmO;`)myy&COVk?FVGXx7IXgIy(JYFJdc-V?>oV0qC%0ZU~kqe?3d6`2@|
ze<zF|QI{)RWyhh)dhIPZ)Ad>6NX&IKiDSeB5y5QJ9;L{Rg`!l&2%}iLPc;n#!P61k
zD{4EoBF#a#WWKxs_q(tUU{1Mw0k=H<sJ)YAW4Cv)$Q-nHJ1c3E=A8nvy&GY-cQFnx
zdakO3;hzj|F5KtAHo~0t?yOc-`7^A&l=6S;I68N(rL$8XWg8~LMQt3E7VY91p{B(W
z`|~x;K0QLGX*Qgt+NUx0XX7=9*RU7VN?+BJUL|Wz4HgGPtyv_SvC@7+OMJTiynz<O
zce~3ltGLaO@BG7ycREiMTkIw-{HrF;!YtcByP5L{*EXTQfk^=GHeunc>)WI^y&Jg?
z1T}JQ(<jQ&exbQ^Y1RO|P`Ol>F;=UVcThvu(=<{;*Y6!jo^2xdhA@mG;Z=hg#*?bC
z-)u3w5-(|HjaF9PFHnw2UazRx4JQ$POs)Qlil(g+CDN>)h?&6YVyrqzze8Z=X@U4y
zi1Ed<OqbEFng_{t<0%z^`?QZSro!8`WrWP#jCNt3qZ;LA&^S+*b;3SoN9|Jxje*mT
zjevU+Y&y&-*EMjT4V(WowJ&-no$C(Tv0S-KE8;iF$*E862JdE3>8?V}ea0FgO01&V
z{^(75w|oJ^H)(K@{*8$;bH8aB)^M5GXy;1;L&qU4tL+AHp1!-7EsAB^z6I~S!mY`N
zA-f;NKZm$E?c=}T{uEY#$=WZ|@FU#v_}z6ROinCpUU>|+*QN2jj<yv1ze*l+(-xPp
zaxH0hJtW_z<q_ULYM<-Q?+N!PxEo<jFelvO;g-jL3zze)G`0&ioeZ0=e8S<Di6R-~
z&Q8cl4z~mT2H~%K4xfhmIoJyvmP~K7@4SBFVwu44^0}i8H3O7k1C$3n*ez$ed-naM
z+5gZ5J^qh^dn{}MOdkKu|AqF*aG)}5pz@6Ezo*ClEc@Tm%m0mVUj@7NkNoF-T-!%Q
zi?9-AkBTsvbV5K49)|g(VPC1r&z?aTw#dy3Sk19Qa9RB<QRyif?nk9@VbqNV7!!pi
zri%<!xJu;Hf_ij7RGyUJg_K5_uVJ`{!bb3SGTqKPiF0<^Gr5Q}K7zbyP-+^KkXOgc
zCHgcCA;`H%I}GW6<iMyrDM|S0Ja1RPeGBXkm{V__g<Br?@O*XO`HPy-3lnQ&t5+>v
zx*QuoX=<P%qkgR3p{g0R{0{V7qqhj<K6Nm*78+`$g{cAI)=NAqOtd`}<+7(8DrSk(
zv0f=77oQWA!6_k3x`%O=>92)*PuNVD6R$;Z%frX-hkeJ-zlzs^t5(iJQ-M{L59IPz
ze`WMKp?s+pVH2v1)<C_#I9P-*h2{4P(`}&fL?MVS%u?IoBw|tf+<|bN{=W<E?_lPJ
zp7yC0?tNf!p6}`6dFq<|c5I)16~BF2FqzOZ>R!Bd<-*uri0_~bX5#J;YDOe+LT-L6
zN<(E8rIlrusLG9Ef?lEt(<9bkDBDl$VtTQowp<UrrG?(mD&Ev8-$s*;fBL~9SXm^i
z*zKzLK!^dNNM<*h>yTQ3tz__vj_h1YXB*PsJlD6veLw6Wn3Mmn!Yz*{`aa+Me9W42
zz#jFnxpVfKhcr}R2a+0{i3P>652ItpQVwR<f`)<F#Y)w%2Ab#`L|HW=G*+ymCB)=B
zibwdOo_a75?mF21Fee@jaLXgh>jKYlzB|vul2uC@n;Tck{v89Vx3Iei1FB;CbBG*P
zjlV}IAvw1lGzW?}GO)yO;e8KL*`(^tVu)QSrT_DzG8m;D;W_313f!;3ws9Qn_I*9|
zM}42mn$hxQevdV48du9Do_$uYUWL_#xs+QrA%<8&Q<Z6Uf^r;QIMvgx?*sP&SRCf0
z|17xW;k-Y0RralCzZI?%;E=3-hImw0vv?b^Pp3SpdzHxBx-w%LCP<1+zv<T};@#vx
zHHaJ<q>dK*Ntgdr+5KS(;2u?+D&!`=$e~d?9$OI~r`~)7_ouJ|$5H0b@70$^nIZF<
zS7X-WH*;kXB~yuVIJJN3sTcF$J_2?W%*mG(aLZ%=KJ)2Lz33gDlN+T;^~lpLCDNia
z4G;q`4`je<WJ7SEK9oD$EQg<g|4uqzg!>iPYaHeur8BX-VJVgVZzdBf0CeOyoY2Oe
zbWVhOXIL#v9x|N0e`o!=S2#}c%9TjDavG(|-g7MdC~!Efy~4Q??(1MT!kqlP9d3Cn
z_?_^YQM<7R2E~VXl}2~Q7RN{o6E6ewu`=gIh@mncF&?Oo%9GL!|D62uT&yb9ut6{<
zytCkz$FK+JdD{C?Iy>c;Kv2yMD={rC1{Fky`ngaGB3=ABTFA(mrI@apD)zA!xE@mH
zW1EO~@2b6ugB5{`)w=PsipN%u*`yAu9$HpgJ#~}1|A_rcqXT!pM4cYmH5jfMbn4`a
zNx@M6ip^?l_?&(<p^-PJW!0s{k?IM>{rgvs_3iI9P#Fv~9m*oSD)tux(VaY^np2Ib
z;t`KoZCtD2tEtXNBi9hM)6vE0k^R{Za2uOc#SL@PI}L7m<aiz^KXk|E7%MYN7oM=%
z9?=X*8rxjI=t${0OF3Um)T0<*$O(=U%)!{E;WlTQZha2simp;M7bc8n8uPvQ)Lhzp
zxdm~C*i$^KiVK98Dh9c7LMBDYH%4XfN*m%4!CA)hDY*X$`v@lM8m1$ZLFg$)!-nxX
z+^{^A%c4H(2YX?$Sgy1<<yA9!ja-@9rv(XF)QF~!cbg2!m|tmkm}<t{#r|A=hv`)&
z-lvw1Df?WMjw_puMbwE_h0F3xHOF7B;{8Narqvn3Z(bnZEP}Azz0)p(pb5WTezs~D
zyUMnyS*%yZ!<sCH`&2Oo^+SwPXXE{|DT-7mN(<89jC;<5dlT$3m{T6t!7Y!bO_aXA
z;|oe3rkpW}F#>NG(=be*c#3kRHUynoNT1?IZC}89w530hrBQiO3h>vd_sXT%{|*bl
zoNx!gEsx)8Cuhx>J7>;(8EkAHEDsIFKJ1Bj|F};ZfLSSYqWTayQ@N9vZI>$gEe<yh
zf1Pkog!>fO=^WM{wO5OmuWD$XGI{apRV!#wMEI4-e&txd9ZS?#_CE)|!uU?s8}DW4
zvtaXJPQ4k>hW%c!zU^`Uy5nr0oO;5)kLam5a>@SSl?}_6E?L>QNbbILu3WvUdHK<k
z<a|LztV=^)oF$MMQ|6A*$7|!rOm!&UXE9r9Tj>~m?7}g{<2AKS9b@1$b&N4~7kp{p
zoJ6%BECS{LECOTw!bN7*W1G`4dPC7+o}(~Pw?IFl=xEO(xDL?|E^71~3s+2^qwD$!
z`ca;N?nAL;?D1G0kJ-<QS4Xc9M;2S!bog<aergeFXwgafiSn!;udl_TzR*|e$LX~i
zp3!1-w<YIcFr-byWv!}yE_PDjg0ofqEL9(13^pcWrCAhhQ1$g{QK@BVqx8|nD5J(i
zFdk8Ksj6S17I{6con)2&*g)08c`l|k;R&1OFAnN~BHg38O7!9)Y-Yl=DOPDbUROW8
z+zROx3#+iSD_>g%6%Ww|4;rQqEgzu|_txkmYe(Z-WS%~*Jfcr<Pc(MwKUtqtIYr;u
zs5PdJnx^l9fgX<h@+h5A*3NtIS8#s|`wr&R2YFHX<*L%!XZ*NG+p*o_`e1M8U8+o3
zs@#gXT7kWrn0ZH*6^+(M$*hxxK5YVCsixTB$5uq`a}&aF;;{+t%V23(?|3{2?i-Kx
zmfwuW4i&I>&9o!9Seas=`U&+2<uTRxvufUq!4irSx!Ws}_HV7U!5H%*s#%U_aC6VN
zasu3wU^8I7;~59n^v$ndsC{ytiki_)*uNy3*M+NBVnKN|9^e!3j9@8XTG52PBBc}b
zNR{%iW?1gCg#0ChTa$ZGTuD*-ld7MMy5cSMU?8d#iM{OAhAKN7mDozk&kn>PjIZQ#
zKK2S#*$s9e%!y|T?k%up?zf-d^ZvOV^V5mv%El9VV%d|3W9&ryzJhHzza>)I7oyE*
zZk*GT_=>FhFzwPgTYD4@<Fvyk7?BrLe0+!(sK}nmyV?kS>;cwK!uVO3hqw<YKWezA
zNc1c5o59lQE8OR3#yTy~T)rl-vZdc_<G@nG8#vN8*L+RWJGK5L{RiVwyH(Xclj~u#
zwLht5nQVmTqHi)(6Z;^_jeV^FuIV0Z-BJVYa!<hBVzps2iRm-UBHh0y@-uoI<!|W9
zUiAR(DX=|YPX0E)-30rw&wEB$-{%JFWyr&$*Q~I2ZHdyzstI0Y+PDe+h%sSeq`#8Y
z2Z-Pqnjag&zrlK-^RpeTfC_6*yVr;#WFImP%Mpf{sPYEO9LF<@I5_p-XSlsrVGIXz
z;(03E=fUdkq58QgL+Ab5cB}_-T@Uf>Y1U=2?!T&G(M+tYuj(~`IA-m_WsS}AnwBoc
z61=EL+#{F!+T?QIwB0AnirgSdi_3~j%gcPqtNMtb*Hd(d)~k98eG95Qwg7K)dp`GC
z1#jsaZeeO3y`;=P3BOfxxrd?Yz`7BZ&kdY0^4Hv3-GP6*2YX!?V`;~`Q7>Mvmv7L8
z97188Jt|g+!{iI~?qZfIHwam3sg_msfL3D_yNa!Hmk-6NWY<u+7LXTCejSee9IIjH
z!<_umu0j6{>%N2X$yo<oAo}!=4T*+@3mez0LC5DjE|fI~G_2{h$H95N)-<eWoVWC(
z##yUnGvM6OcznacwRlE)E%P<6N;p5DN~-5-r>jYIs{9x(KdMhhHs7S;S*eB{fCpzW
zY!Ga%k}*b<m768lm^oCqKNRRy-o>y?|BInNVi@<h-FIRJ%=MI^e=VEnSA_Y2Txt`p
zPteWyF^t1P*V~4XH?YK~PY$?BuvGV<VSHrBJ#W}p_Oa0Ir&4<rQwGM6$}xt^s_17{
z%gKV{^cPg|B4)N^F|1Q{OLeJO*~Pqq+vWG@Sg$sV0{$^UBd{1-5UR^`6suN>I)$UK
zHfo<+k>}1h@JhJvfjt3p%4KpI&mU}WUYB;trR>AL^_a_LqO6@s^+G!br_0P6y*&pn
z$0V1XbHi{xU1>9W<=l%Ja_$+eOt_!3+)rDk<$VY{&CG{2^LgynK!&}7PLDI}Dbv_$
z_R6pqP2(kOw$k(pL%ghUhCQOm3>#=?Saq)q%kP+B12EZzB|w*nR%wjS@GdSg{NbRT
zRe@75Zf&7_${-J%e0l=zZLp7EPCgxSt*SJ@7F|L0cmCyczW(>}X+N1yDYaF*NL5qn
zZuaMxi?G{w+66L~mcd5J+)~bTjSy8-yROrbM_1~|qwihr|G1Dx>varRHt6Oxx}8Ti
zVjhX}=yI2_*#&Yc)pai8dV3>fe?#1$a~`FzJ=GX8Naj&-e>q@Uq`$0+m+h6=6Ycs$
z+2h-uJ<E_i!#R5vq6WoIqWsAr?P0L&7yEC)9tT(*%*mgs>r`bI*zzK(H;antJZ#9X
zpYJu;3B0oBVRatmC3uAG_iN`VZeF$O0K5V_9o?RG3n^bo2BpM@+C@T5iE~^R;f;9O
zSL%e)h^%y%$xiPSSi3%<BC=j6U%RFXcc>isi(PJdzpx+At_QgiywfVZ3p3W}vL3RG
zhw)P5*AJ18t6BAeWxQlrbNwcM<cT_0ZHS|H!a5f{rrQkv1S4y@elUt(F@m3a-34#?
z%Z3ouN4Wor?eltvp}lIlUN(!&z`c0J(VU`{n5lncc&y+ThUqCS@p&w36o#}x-Q&lK
z6FQ$UUOG>}^Xn=O39PIAVpSyF{;XlWY?K^4)qBvDYV{pzb%nivd5Zo|RlK5#b5!jG
z)!bF=Ee`iC7CZTl6j8aZ{FVGoei61G8U|h)4Og>AcGH@>q{xNwaZtF`^1z6GmWrKC
zAy>tKstPQKS5-eKu(P#fkRSV*x>b~O;dCnZtteAxeEA04U&7qi_mukvxUYp>{~|vZ
z&(nGGN55)67Gde9+1~GyQD4#Q`SSuzqfe33=+hpM?eFvnp2!wih%d<xbi6OQ?M4KP
z_(PGs?#u9|tZ#5>NyGJ%?lrB?-TM2;Wwaj~<kNuVVM{m8@_5e1V8qgQ5iYY>RCs)1
zz%?G@YPmg3lzMRT$kO!;aO;EJ1Kd6g5Qml;=eYQ(>Bdr{rIxuz4)Cn3UcyarhbrDw
zu>yFQG1VF(-@sF{K}LUy#X$UaLIm97@S?Fr#q;xbl^-CCyMt#@J_c{-$;aVvPl3&X
zInU2Sa6bi`em~{k*SFC*eCMz75gR=*ImEwZ8IFnPzi9Y)P2C-N_`Nz|PrScq5o^Ni
z$Wub;@{I8LMZkysA8IkSaJVs{Q}l&dYzDir2Ppi8o5m0p7A?$I-1>`d?IpMM0lxK{
z9t@mIu|-UO#qHAdzhZ-m)?r~s5w_+Bu!Ra6NU^8Fqk6tE=NL0TGXw4-WSSw@O+V4}
zi5Mw1%5H13Dh8{&>w98@w}uT@vkkAu!mLe`xI|U)va1x%q5O&5*fTCX1MW81eK03~
z?)<Z=JO&H%zR2abQ~vBd{8#OZ%%2^1GCD2Hs^yDlEV1G@#}X^I>)gn6>2@P?lVP96
z+D(l;tgb;VJ=;VDJy+J*@(JF^EZ73&8Shloty0tN(a{#meLXrBgN$fU*Hmmnz!a8o
zh0nMWyKhT$|Fu5P^*+zvh5LD728*z+p?~Z~Cco>RA_4;|gn!sbtUepqXRTu)9e>~e
zJs`HIV<d*njV_P77}@O_GaAcq*fXS$G6Je+($Ikmu#>24q!qAS##L^E2K=vBWiyOj
zD>iAabG1s3zEMN`e8z1)_ai>-It@#BAA2!+!J=Kag=OroyxueMr%d#_-R^tbhF)S>
zUMy;*G~+DI{e##0vsVn~l|2#EJZM@(Wwl)8dQ|8r>~B@I)xchUe1XA>q1NDS+=DK7
zvR&-A89q5bYkDI=S71OH9zpB{a2r~&uL@64wK>o`z!i268dYYLx`%iNFTi@)1yny`
z?LGa^dbl^k9)LOZqxvSSAHw?1zs!HT@AI>)kvft+R<Ca8wd;5Fs<kT@txc@KShA;U
zvcHradHh;|Nw7=hGW)b6#X)NQ1S?{q=%?b%!N4veV?t4+5<mFxC{OrDyzcS8?<w-2
zZTQ$@ed56{xE{cwn_o<Q(C-$Nn8Wn=&|banx7KOmC6E4^Utg#Bw|UB5_qd<*SZ?E9
z|HOOz#%=z<?SA7NchNdGHmC+&_ha9KYm3ZjH2?UoT=wVK{HT^=F2`>kWYk-lj?!@B
zPZel>cbUiS_L~#&=Nkfs5iAN+n)ZrVbUo!~8hI7O^C$cByWoBt_7u#?&(fQb->@g{
zrsu5fUOKnW*)c!mn3~4ka<uagVUKfi>P50ae@a)9MI$_(7{8LtLE^CPprZrE%ZbqN
zILPg~^7nwIUal9LWuh7b9Je_|+t*dDmX~5<hiX(5?{5sP-WiEKS^tv|H}mi=f-V%V
zB<fcALNi=RT}0_>L7bib>U_8_fn5%B(se)FSy<nF0{J_3OqU#t9J*>X-Z-$j*MRnQ
zh-_ZbK;Ir1QK7qCK39M5(?07FpW9cmldIMz1`gKC5XS{#vhdm^gAp4RSv9X^8E&=2
z<8qHi6NoG5h^8pMHMjJ{cN*OL!Pdi^_?~tvey<EWJ4^ZhbqU3@u-lI9p7X{dM@M<_
ztmkc^;-tPUM@Pq@KR61N)j)&gflZuXM$QuWvIO>^oFOQ|x4+0?X(^hqd8pg7@udaB
zU?&n)-U`eY1O67!ek{`6Zl8sgV;B<miqG^6&`Vwm=$!%MwSciLfM@%SfbnL)TIyaI
zC^1a`e*$KA0BwZ*4=p410##q3y0@s-G)q+I0bf5n79rG%YRm8O{1ViX#puM(DAvv_
z9#rbnkM#%ihT@T!7c^cE>f3^7P~Qj|ZwB|<W0V*=@ZbTn?)PILk2eZ`weVM30b{+N
znmqk$pGP;o33$5$#zwWQtWuPh`YtH8E-jW@5=PyoR{lGncLgkbeiXp)=;MI#Nx;9%
zl~Y~&R_}pAI@gc`<!f~8Y+R!bk*(Qr_9UYl+x_uVC-=@i-D{w$_u%ErDsdMNF2hFS
z@&iNeid)qxt+E9Bj4`6p2b6@3L3fKGC4+Y!CL2C|XrKl;H)`Hk3|Yp_Mo(=`)OYev
zHYWM;#}&q+Y9ueEdJ(;?r(U$ceKzbum{TugEqVmp_wNL>_u2o|u;}=Pl?xm9p%-GT
z%pTAnE44GkrtXkc`MQi<9`~u(<}m=%0MnME2AqR_w|E$4P<-+Q72_wD>b^kuZwXMB
z@fiLVilNJKbUzFz-R?jD8%`DFXp}2jbmMp#PkAISi`wVV?LFz*74ACN{xBz9=fiz5
ztnc3$dH-js|Eqa_&9CNFmSQF-v8+)pm{r6-lCAYmLblfDnM$%`gkFrF7kWabIU4U;
z_**1$;ny5shJ67uU_}gUfcCpYwF@TQ27bur3cD8I8>Hn!{AR#jXxSCr)f0xD3?;Rh
z(vwGA!}v<JqhG=OGYo@TMUJ6mny^CzpFO`%-M-GUJstdBjmt~pb%?fpv`d+`M0vG@
zHblua+J4xFRqDlx%QSriuhS}5L~VcL@IMTf41W#WC&5mIIpJRdw>;YT@0e`g-_k35
zejme<%MsWVHSKuiqh4WSOEUh33w|afe{PTPQK)bzNe({`|DE>sE4aUh{RDHu4`e9(
zH~II#zmfj!?*+81IxVJr+bev8ER#G96HhYS9EV#Ef1Pkwz}*Zx0p^5zF5L2P+Ii>q
z$UXHZ(Q6!C8k;XuzDh}!4!~An?5)-VqD&^V2ETcff43%jWz_aB2Y;RY5g)+)3G8#2
z6Yh6#%cJk_`1*uP<5N)@9y|!)PFFUR4nZqtrxg1@5nhtRtG%<QpWYwtIk34fdC2<p
zd;8DuFv#@L15t#zaiy&kEv1rTe^b5uO~ZX1?8g7iUuRp}v;oQ%_-Pcm@j8@Yf4kvF
z81a(zanxOyKZh-bInVcB;eHP0{O-l651&{&_GgGc&jTL47=NKjE<ZSJR?TRdJxAK)
zIK3iz8oKA5VfabE8m&e@J>#%R`sCr0jLBu1jt<PwjY;O@gS3ENhVKn5ez_;<5uZLs
zsTzTwj`%H0H-~7u=`&31FShnD_AGmtXXT8)3S(DuhVWI78YA4d%gMic<>cRReT4B`
zk?U!^^0+3TA;cuj;{vbv`01oE2(x$cJ-mSa17j80<sXLO`*7XRFnNbgz%UG-={+cj
z;k&;K3spv$tJK|37ru%)m~Xi{irhoF-rX}Fbp+h_HJWlc%*n^^;WqBUqF$f<Vaq+g
zlaCX(=Oc3LT$xkTV0UlNvLiXmDtl$wA-~G9`O2}BWj>i@>s5V&YG>M?RP?izpQ!W(
zZG52`7pT}aCVXL;ac`-}xDT*agjK=gjUWB4@32SEbvk9-SD1~WjKeIR%($ObaXn|;
zk(_ary)y2Q-^jT6N-$0N)`C0<BmZRmyBO|v*o!bH-=^G)`A%5h`gg1Qck*o~JKyX-
zi&GIjLuS{nt6I(fP}Lq(d(|~;G=B>jhu=lKqZ;q3Wmh^Gcdcr?p_*?Y<Lnx@L1x?~
zGUNWH>QAc1t$x={GV5MYDetb^o_Ad7F!|HF($)NLl@9rpy_WK?19{`jgT4%R7p(Zc
zp8Puw?o(iW>)lxI@8loVJI=rJf4knv{QGb9?tIa!;@u|n+wlg0{JT>acZtgVx!xUQ
z+#*c;6osnY3}oIu$h%AAkN%7|eXiFruj9H#P~Oe!Q|-<WJ5)QFb^pEEDaq?7-wMbR
zC*OScV{Qkw8Rpcx!#nVID`4|GXdLsz<8;nV`<;BFdWS7XvWd&7XNec&uP;OP=M$QJ
z+Qt5yVt)>_KO5~&x~TdEyo1eHg_h62qkWb-$(lT7lGlbAlRT5>_IkGcc5`Ur8w;0S
zC@(Fsn*mMt;Qn2~(@;b+aE>Y4wig6uG5#sccZKne(BH*NUD%A`#i-;{fj_HKVpe`7
zy!ca3KM4Gw$YcMy)4N{tT&j6Zx8>?LUbvT`cov~}9@X@$X58g<-GTW$*V7sm&mra#
zds+{FXcWKJ!#bo#A7sv!{=cVL?`tKEJXu%o`G;n9YDQWA0fx)Jn{}>cwQ40{(>Ktq
z-=rD0YGXyoZJKqvR?<*O?aQ;Oex^`gQsvv^a)BSlDatDOhw8Aha+YdY_)`vEjO}&*
zj37F<;<=bAb(NN3^MFz1s`U3qJB@K;V30LLAAF%Y%o>WpB^q^YxM!?6X4mo7xM_IL
znlaJZDTb#C`*HqE^&|K|&%UFva4&&92y^Pk84qHQ4y=sp#n-$aEI$2r>IXen+v~>#
zR6oLY1$d6?#~wD&4|Ye`?iKbYUGy9EW7q$^epL0UAA6x*%;x$LS1#0@2Nm_>BHi4i
z8yD;PCj7jN>&G>^mDa1w!8hpM+jZkMUB4Zg`~|1?QQfl@le%0#u9DsDrLw#ILf604
zjikr*lU!^2L8lthD$L9Al7aWBG+qL=^9=ob{4E2nB$pW0rA8Hgk5AL~=L^rdhIzhW
zlntY5@_=qVs8^wyjBx93=*C+*s>$2BmDj5p25+w>8|`XxCw|)Y8`Wgj|6et!>Qznl
zLN%Gq)g&%!iK2vWjoRnhhkE+2xo|hYHo=^FA~zV<!a8}sy7T+91x3HEC-%6$SGP~U
z7EY>{>!+h-xKBlq4S<Cw84*0_7#0P!G1&X(!%VG9AFfs4mDH;j<BGjC3x6m=c|`so
ztEj|`m~tgW{sjTAZhUMQUt|5lFGL-dI{#`Kk6{hP6eUla*lVD*YWQ;rXS-d`TfrNx
zfW2H&dIQ#}LkGBjLh+&?wasqVWp1xo>@#Zhhb@oge;k|O3^WQTS?x)!_%_qH4;!fQ
zbe4}6?n^D}2Fo{VCvV+p)$7%2zr7+7mv8FxMO1EP#%?$RyD|;@p$0sah6fWbK_7nn
ztd@F*mSDm@pkcT*ykAARE99*xt}-h3_E}yej*sXaR1R6>aTwppal|&bKZN!FOHVo6
z19ukIw;aX>{-_+N8%(P2;aA&9^@^Ty82CSx!%QlNOY!@jUzNk-mhqg0J%UsYm%EM4
zZo3?=b<1+d8z_fcP1iR@@b3nf!}BOMl*2#dvek2j_L%8<6x-|Va(EwoqyJ<4-D=}9
zjJ!||SDVG>xQz{NjFhPy9x<%vjbE3;mL1Ds;Qyl>X6{f9@w=!T>K^GSheo)YVYk4X
z=V9MR@i#MIP1jL>>O2oW{+Dv#-yk|g@yPELMX@%v*CSE2{gD`t8S+Uej`uM=;{J`|
z_}p!DySEp|-#i9pcI9L7yhj$tg)S5amav}Ii?`^sidcFr=2lP~XUGMvZd1F|a9wP0
zadcqjEchtqO^wH~tbpQp##MZ$$9T}w4}ZGFaCu&Ki6>oHQ{1Rq*XjX095Z)#IG)nQ
z++GjIj)hX}lS_g-J{(osACB=MQ85VxgJjZ?xtGc%k34tAJ3qkf%i{MdFsED!(*0L_
z-%jOHxP{Ko1^?*z*xsF;K|NRjJ0Q?hJuRE6Epk{gShMg#r{QOsE?7^|RBM&GTdUHC
z;KE~3EEdKx|G;0?@YqFTO_D9v5d2*LthySO>(5@}W^aXX=|^L?i!lRJRX=#GAH8l_
zK<Bu5rS}QTHwr&dcKt~!{zz~ceTW@4p+ntwU@=U;(bBp!*9RES1h2#TAO6(B?UoVM
zlN!qET+PIv0txD_Prb&MUi`rrY}#=7N6Q~0TG&GJxfQtDLMg3Nt1olfu!Z7IReYnW
zp9vj>CFh-<mMt0n?v91MboLUiQH;jy*X32+ud>`7s;U@*#_U*>m4%-)BJFhK9-#6{
zp)8#FlAGav2=-5yQ(iM3!#+1y$IVnu_wc@^AHUskUL5b`G+)!JUy<9C)WppyKBi#5
z(u@mK?n6p3nv^5T6HqGq+P#b$!^xAC>wR*FP-2ZivAEyBqL==X`~O%w4>&8TE8x%E
zsc&Ad+bhdbr0mi`fk!VcxGD-(ma-J3tQ4bZB4UjqMiaZDVlNOyqfrwynh-US7-Neu
z*s;W5iP0n`-~Z0cWnr=8`+ncRd2?Rbx#!+{ZadX@NH`A&c7XT9%=^(284twFpAnv>
z4qaA)_BFkjRN0oHl7Bj8?TFPxdOseMW9es+$WLST&tl0)eVNx%F~L7WE|D6NdU2RB
z!1krLKiEfED~DL*TNr~(NwG$tE3vcR3EOM;gF$<3qb*c>y#)Rq5dURodo2V1KG3zj
zuKLH<wO26z|6jM)S@FHv>tPIV&8?pClI}dO(_TM{n^(kXuPfu`Rq-!vub;%NyW_Oi
z&2iaYS9y`k<MvhY|3B@O`gzb^yJ?GB+EA{S(Z_VH9+(Cw{@Moqd!QxcuNk5KHfHQM
zAMC|n;e4<~zsT4u{p~jMkDG5Vun(Ix<@}?|TfrP56&=CRC1vEyleAqy`*}XUT^FVO
zE{hr`J1c3u&*Q%R04`*gMQOy-6XsepclGupayL|%CCIfyTY)mp-B%{us}dN#{U{o!
z8H}}2@4s<-ZNk;v%cHps(H<4vjEZR?2i~KLExK4}4E-_|6uF3t4&g05;l}IaK|?o)
zylCfBUe1?9Y}ppH>*U8f`EU;S65upIwd>X3Hvvk{spM%*TlVEcrO(=H*zQqljcPP9
zX4FXIYUh}}(bRj|Gl|CWzLslr^siB=<vJwO+v$duYlJz8sp*@wTy2j8^t-?6q`wY)
z0B|Ot=%4g!f)4`oL;J}YVf>ETA^Y-$(r<OrU$afzXa7Rz+r-2AFHm!hS~}2Z>SZ=F
z-^c^64@ShS9Ow)h#{C?exCa#m8iSUHU#@3&81jiXXa;M`#PAC_W5sESKH9Ftp`!BX
zL>Il+D^c4kH`A{s%-0eYuWux**AwPj2`d(Hq}Gd+-p<-k>&2RGR#!wCBAGznm5X`k
zf8!qdGO0Ba=@*m6OUV(vd>z+4Npow`;`P2{eOaRz<5{=HLPq;f)caS$Tbs1n3cfNc
z`g+p+An7Z!zLWnjVSbdbc>N^dew;8rO~gH?w^QaTvVLxuHyOyV7wEpL-_m`wSk1l`
z%ZytoGijm4s>FoQ$PYt{b&g(cmKD%qEk}uE)tWWy`FqKvbspy!yT^>)%*Y2!>}U41
zloBgYV6AyP=yz><XTO($HvmHc)$hlE&j-5l?V7LS+fa%$2O*qP$9@UlUXg0Voj|H*
z&(Wjz#wF*TlDS%UHepp?jkt0R+ll{yd$9}rRZx%Z(5TjdSHV95CjO?g9{DGz8_<=1
zw+#In{`Knt|K92R@BDj*;@_(zBDs6(H#6{-6byW6stW_(gmDiHd~3?QEoJd~N6NZA
zW!{yt9@Hb-bf1NPlX9L&1&Ujrg<sbr@9T<*^LAY(7O?T{Y4Z+Lw&^?5#$D+Vbv<)d
z51*C)l`{XGvUvSZYI4BJABL(~<5zL-mnrXwl(i&e<)5bAM+3d=*?Rtgl=-ui#p^>U
z_ra9;^Hls{-T6olx%oB2{QUoco6*Sz+<cWDvh&vek)5?2PXv6hgFaS#@Gkh@0r$yH
zKIjWR1nA1oJHC#e!{zPkCgKm$jn508p<fo!bCZ&xpAwl5vDINSTaDoDS*E`Kfuq+v
z8Pwx4XjJvM8~m3*;i=Ag>;(S^Q1%8dhjCtt!@q`~gL>5L5Vtu`3w?*!u0Jg&<dggf
zd9cr}7A)(adkH4w;oLV%J}v=H^M7Cux<BA&mY;#~L5KS?rC|H$@|VGcye@+w!h7j1
z{QS>^Z;0?k+Wb%2`XX(u$yonQJ8Lu6g+}BO!{_I#GtM=cPD6z1pBj;EhRdYf4I_lS
z-QDyj<@Yk?`x#<p{54~KkinQT>GSf_8FNR*dOBl2lbHrD7d`9oWN2n^Mbf)86Tc>7
z9Ua;je4cUFW&LS+b=d_ObA86;bwkFzFys6%6TirCer1HL{E=a95dvvNPtoyp76w@U
z>@_zJXKvmsxw)j$tT@eQX1nJ8fSFByZjSUg+@G7LGB>;a-0U<f;{pvi(~gi2e%rZU
zyA}M`z>|PHH^@1<^moAtVo4ZZW>$DtN;tgE7q6N#R|=<h>PP-XC!+BW4F7hw@NX}3
z^R(i{5p8@UVIlHSjMuOcs1uinj3eqA^M{Bdh3J;LMC3D7DJ<Rc!gB|3jFM5Xuy(`l
zjo?#$G;Tr#Hk2G%lCF@tv{SGcs^?z=%f55C2TC;4$8~37;-L7@)NC<a2J=Cm@oZ7v
zv~#FOEqA#ueHeTj@M}P=L-IFo@xE)E>~r>uXCSLPW6s<q?b6}ASHA^>VeQmO$}cBl
z3N?|i2DC|=Rva+c8qy1Cl;uWGi>}3g(=H{D!6UkLw{*e4D%F<KsuWRaN)VFtl61(c
z_K!vXKJ4jEJ@XXsqk!W8)j!_>m)Ev%A6*&lpH%-yg2woPEHTR(f1$KN|A{WGvWk~t
z6{^>vvMlM770GVRgxje>ww-bFW-L-s15wk=W?X0cSlt8drC(0*xuSo6fpSw|vOPZq
z|6J0sW8d~{<bBt8=Zn6nJ%i91hik<_G+eoMJwZicy8VuBzc1Uak+yq4SU;AUR_xfM
z&!3*A<PzeG$o31pxCloU(zym2)I7Ht{BhtpK=u3Z-_xc*F|?<;q))J4K4;aw`{tg#
zWlJh|Ue&tG@H*+YcqQJx%UAebCW6WD+F<gV?oWYvIRh4t8f*-Cj+2DGj7qIFwKr&2
z8Nw)$GX8>4j`o$}oIbXfsT7q&qdH5+<TibWVc%$^lU8c5+3g30wVt$MmdN&K#sQ@l
zoZp?_l-kikJ~F)275#hF^~0*Fmy>oJCr|ISm{;qBwc4&Tzy44s{#=2-I5M)>8;cPX
z-ycP=l;<!7HkM%_4o$(e<E5gH+)taxOZM-R;4cEN0;=7NXNZ^%sB?yjTlq%Uya2Qs
zAsz!O<uy2vOMzzuxpT3(uB84t3=4_4oZ5s72;n{n)k!lX^m=TRE8Ubx$bg(OSjJE>
zUoVwgwq{~+@<;IdpNf(^Z5A}B{#_1!D)2o({zlSzKDfMcp*{K=PX}@h)q}pj`TXUp
zq+kC8Ig4%7*WsfCeK#7~PTb`x?c0Qb)<>#`CYo}-d4p+4IMVc+tK-i_|GtxQ6dnHn
z$GJkY07XY0TweRxzl3o__NHSBbYzR8*xj0=u{b$S`^2cn9@4~<E#?Sm{xS|5D`^G8
zkPFLi<N39`m;H4T_$k150agC_;PT3ae%^cRV8Zg}Enjx>i~+I*vTchARwv_*Z8GZ<
z-R(%$%6WFRH0U140is)AyV&+h(SP0xJhv81mir#~r@-fcD%W{7DEF)4DTL*QdDUb>
zk$xl;DW0Z1X4a>YsWN1$c*Sel96DascxPB{E6-Ks&I4ZtoCK(HPXm|NH<atUvu0Zd
zQEneu?sv3zDL3wyYs+$H6IfH0+xC~De4MtO=hkwU_5Bn0TfjSjD)%4Y^7@8y{hfc1
zKqaj22J6e~8<tx{l2^-fWw|rK=K>1=RqiTqd3{5<?9hVH6(y}hsq>UWVD#&;uqPyL
zDpeh+Wr3xi+r>aR*yOcgXVJfJ<N38<vi#@3Uj^O-RQVr+%j=uUmtmIWF!OWA%#g)n
z)cP{TC;j64%i`yYQL1>Y_-fIAZt=O!@{a^R4wwU|@=pSn*EjI@vgLumKijrMGWmJB
zw$_HpMT}V%CYST(K+#(<InUb>mcNbX*YaN0|M%c8051co{13q8_5Q|Se%TV<)jSjM
zxj(WyRxGFJ4Z3!Xjj<PnN7BR-wyR~;4>B2HazoJeT2Veu8}@u>xd($E2^<Beau<Wk
z>+9QnO33HK6rZ1_y&(&S({ltqCMvF`9WTn^^qsF2<>Rz1Jhzs+tnV+ue+N7RsB&Ke
zm)AFx8}j)Ge_YeqXJNhS$byr8!ErgOv=IxMTX1!}Ui6Ws7dp$I1b!HBB%sP)04}d@
zD1R@0KTz@eO?W>#=mX&R930<E(lB2P3uvf)qv$_(3(v0wllA`<`0s%~0;>Es!R7T$
z<?rEl*#w75e!mmO@r##DP%D~c@$*D6Y=RwO`Asi&>Q%;ow*oT&RsI5SdDVVJ+z!ca
zQwB(WD<Q<4?$2;(;zr2Pe!bghVw7!{nU!W)IwRR_o;f&}*VnvR^q;$h=PSL=FTwu+
zJP)Yy-vyV~rqCZi`6(%WpW{b>3MuFqj!Iw<@Dm-qK=BcwZIdLBQ$dnYoxVetdX9NS
z6lf6NA(|s^cDz;epFixSPJ4+K@MD14fTCk1xV+YF2*#b-kL*Xs0KX|l(G+sxE6AqU
ztZO@irpQz$i5n_PA|<lyMdrw$F?jBpw~O-e+BV8j?ePcjzW}cTijI%K<@NRLF(K%Y
zjwyTE;wqu7jWnXyD>bW~pdCi--3}Xf75(QH|J2zIGr;Eo3jtOBso?VZ`gWlFpdAkP
z+aPR*8*sCdG}xpl#$2Yv@mpb(c?_-4`cBb*?lzuZ3ns_IGvI#)UIkS7pM%S5#>HLw
zA+#@EynuXGLG`n3$6(%^pA9FhM{yDcUX=FDcmW9x;Ce<5h7sme%HJ85Kl$a(bI@$?
z1;A23?MF`sKL^l4K2ZCcPxjl7wy(e;e74-pORLdr@pwWw6^F4eKS<jasUqt~{LYBA
zCF0;$(jcST936y$9EQ~MASSDKi+(*{pe%L%srobdJb`9F(Q`2POh60uXG)KD%YNsd
zB@6tBLB0BQtd@CD72}2<x9*eXBK+`(Wf;Z!E-7vEXv#lIcck%ym`2YN+Mq^`l16zh
z;nsPak8IH+db=+CxZdaKtS+lXZ#mco5p2~p_<eY7doQTh7HC%W+7A9C@C=~pC4c@p
z@4MO?ui7s@M`yj3bCeQ8webWo(rdIC77<O*v)BfbD?HHT;a7ehUhfxur0JE;{vHK>
z3@{r|{B{|*y!NxN4)?P`CIsoBex`rqm?_U41lwPur{s%t^q+jCp&c)EvKcH@un4Tp
zd2xcwB#Dlbj+W)D5ci^`IsES2Ud_=yvB6fA7x%pZZq>!Bp>?XHW8+_o@}}*AE|<F;
zC!c{M3(*`v(cKMPUSCD`>Sc=Zrepi-O;h?qCu))BIH{w8vT^x`EMgyvOgbB@Nc$1|
z*65uRR>ucL|M?x1qv%)%ej#u%py;>}TwY&A$Fk+C+P_823h73Iq3|FMBPWc8mTkIr
z7Go4YQj%UIoPz_`h>_;0;f&ezx1#^t-8^5FZ|o%Y6OaW|`OV<+Qt=~|y@q0cS^ml;
z?S3+}lC~`}xNQ%(eDdeaRg@nQDL3b$1CPq^Lj^jmJML|MYY-vmFwC#vD|t2TF8cR1
zl&8*TSA*XL+zlvt-UXM}j?h0r%^!Qyv&tuEwx73*NKG`1*>;bl><{v#el}h#n+@#=
z-#arxdZ^f5<mKF)?YRYE)!Q{yb{>**c1os>5(%$RlFKJG?Q|VuR-Xu7c79m&(P6K4
z(%k|+6F3G?bT0;%S64ro{pt26yCdjFX&FD6nfE56igv7W8-sQ`6gw7A>-ebXKW_`q
zRqgdS_zvJ%K$W`-TwdQ??n22xttYVHRIvS-e6vne9@&907^o6P%0~Te8%abrKYOzO
zSgrQsqK_0`3(Aq>X$E*Z@GU^iN4voP4ybis_1omGag7KMvwU7Ch#=PJR%5e_HF}f1
z8TriA4Ptbnc!zwc0M4+;sMuemUB@PZs2=fBZp@9RB1hIF(#)V%ESn?_RW5<;LOG$U
z`4=^Fv1+`>iAj2qo+vcgeR9s6#Da?U#0oPWN#GIcmJ;^gIxhE^eh0Jh(25WB7AEBt
z44;ZJU!GYMyM$=gue0UaNA{6~eup5{QU&gs(4#ed7PLp}>z(~_BKTThJ)qj-_uxB$
zuKm)pg@Mea_<}4*G7AiezfN5_MmCM?r49NIkqsgu?C@V7#EX;0nMjjdZj6o<7iydA
z#zgI(^~77!du~agp|q+uoSb%Jb~0LXlEwBdk)qi|cCs~LLIxA-*d|&hj>@pdf#PV4
zT&NrFz(<QF{nK#roJdVCH%J-^pKxvXXVJe8d!uu|H3PgISO%zi-UPlC$UPeDH_V5E
z`z8CWLrdq)nYRc*t#q}SxT4)ZeQwmx#y*}1sav>F#dk^Y((gT?J%&Y{6tdNj|1NH(
z+`dsS=b5F_HRKG_T*t!Y!MEkju|930BHq1BzWOP?T1^xZSP@^3E4-$?t0TGQaa_Cq
z9n{BtQ`c&FFZuWk@LPc0fU3{TxAEBmc7*cvH^MmX2UYE>Z;@e+md{&Acd4FSxICy~
z=O?PB6LFa7{B+^G87meqT-d&%A2aJ-pGyzA!x2A?Tf&~b^XGGyFJCf%sSdtixLlz7
z!{x$Y)Z881UiSPCm-<8KbG?6AQ$NBkx&4z(ZKK^{ul`L<AL_iUKy)*eTt7nObkV=E
zsg^KCp9+4F9PJcm_Vw)z`kiOe1E&k^yvTtf>89O`FYr2uSQPl0ikz1=BM&oac*6c2
z%U{9v9u)CMh5Lv|Zbx1k*9|jukZHzWwcOoS)(?_`nH<_3RtD0SZ8b`5^AUm@c<el+
zJAUaygp0P>@M6Yo7EafV$MnoW4D3?xzbfU~f6RnSQa{d#mfdKZH`ygO*rr$I^t#KA
zZMMaucJ2{dJZwptBG+5Bml9b%NkqiV8mn(r_XE>*UlHf;V^ZVc#!AG@e7yKm6d5uc
zK<qApCPdz}++BnN^4_tW_bqEg922K{Q~byx&boP)j^SV7L!aUxF-YnAY?&fw3-)Zu
z`ee-nXTsYIJ^yL1kkFwQX70zZEr<&1VcXnhkA6`1x)t&ci((CGQ(|KB?{XcN#%ca^
zgCW#ACJ~p#TycWvZEexr8x1iM_X2aJ7@1ruSM$&D=-2z1am?tFMjJ8hd$~<cr8hlt
zwjOJWu1J)`r;_<dByz-3sZ7>pCZ%D70g-&p%_a*@ekOVjT;EFym4{S3q*o5CxKAow
z>0<xdW{>gjwYxg!vq9iRpaoFlVg>m3fK$5c>wC8DJD)9?vtnWUo{5az4<{^Xgf{gC
zy>FzS2XlQ-doI>!XR%{t3l+<lLxgv(8`<D`7rN#TiNum~Dk}V)-SMJLOhX1u6WpL<
z6Y1fv{k?!{UfqE19nh5GtsKv<gTD*>6_Bfyr2X&U@>2QQ)cT}Gt&9gZ_XHxu^Yd)$
zFuV?@9<HsA*Nfg#+&FMgM9sFayy82Z<;?&;1~?v2<t+gJ((=Od*Xm^}=PYQSJ-wai
zSOiHspg#pp)GnjIDp_EoDsW3!-u*mJt^ZGezX-emsD2Ue68{D0y3TAh_U#wyNisSa
zV1Z4*0yY6MnrAf|fvF?Ar5l>M<r|LDu8%je6G}fHBmCHNgo-=h`B?s$m}B&|tL1Fk
zZhlX)<46+dG$D;W%CG0f$Qb`V3mO!iCxM>=d<RhNayGcUy3(oqFgx2Ni~|t{^_|+P
z-B077fF#N-4b&7i(C)C@9XwZ+`xf|Lf!%;A*M2W3x2qk1>VJfQGL*bOoBKU7M)t_D
z+O~KV2Tk%1qWP5Wryj<>6kmnL$9H^f^~U)1Y32E9e?1@kL|_@9%0C%gUR~qosq*C-
zarm629ZTeTxQ8EJh*zcRla$vp6t`;|!}7NCJjL(k`?{6^8Ue)*^S~DaUE{ef>XHve
zI&rq2(y?OB-da=n;gaPG5ltxa!f>o%C{{D|Q-Lq~5Wvx<){h=tOyylNj~SCWn`4Wu
zeH2f-=?6%|wpW0^$6_2ZAB?;GT{}%2(1e*0gWrfVBfI?^@n*bqJ3%<oPs$Vi$2hZV
zTD=&pr)-zQ;hx9Rezmcny|+=fTHed?{v!CRz?*<-?=QgRwJDUxZ3yQpRiTdd6)P80
zb%Hso-PRiY`=>><sT*;wOUMmzJ>6}EP!)t${2p8f>vL@j>1h3HCmrj+F9YrXR6oQ%
z;CrAU%op<Plfk|ycKN>JvI{-UolW1fH)pRYewxiai4NB29}0PFe#SpbpL`m_cM&W3
z0qhKC_pfa-`d1S+Li<mmF_s`85I*&Z^wpeHSs8C~+5CFuJ6_^lBGsh?a@Uwk+%5MP
z#DK_r<Qji-(`Ni3R{R)o8xo=}QkhR-8IVInYNh+=R%1o8?}sk~p1i4>cj}@UU1p=`
z$4*tw4vP?b9Kc3-Hd)OKz1o5fd2LJv{kDd-P<*=yd^7MfK(*H^;BNt4=jonZ;+rg-
zx0HYh-<msnX=h6<UM9EDa%QV-snKhf*B~yNKCpdI8Fnh3b`8hWY$e+b&w7ez$#uf=
zbFP*B!H7l@FB{GmvS&$w>&Ii8&VcvC0Op%AV)*XK8jJif71U$$-#Y7YBKWs}b%3hJ
zX7GCfRgbn%4(EP%-+up=%nv#@$PbDtWOm1jcK;(7fK-<YSvAjQ>C{>igUg0Q2R99w
zHF$*ffk<4zu86(Y<z{q~+8^Cuk|aDfFlkjg=Y^kTH0@U1JXi)*Ez_fBlQD}tvjP9E
zNeA_CcX!sK4!j>Q0Fa|c)@3@lyeh+U_*GrTQ5X6p)orsmeNP0cwASr16CfKgJLP6#
zG8u^%?<Hqb@{lAQ=IhC#D2B+Dy)_fia~b6+{`eXAuYo54MbBTr<)zxS>pI?ro;~d;
z32T~;1g91#*IL)>+I9%TNq`WN<R`I6#B1d>ZM<2oH}U+PnSh?2A9k)QqrfKt2Lp<p
zqrm0$ReEHp$DU6xVU=XHt%Zh}t+j4pc|yA$$&n~aH0671+E6iB)ayzAX`H*VLHW1v
ze6_Cq9Q<)$JD|#c3H(dT5BC{e$`3+0w6<!OnDx@do%odKx`dZy!d0Oh{O9e=2IV(>
z)Oqfk27VMU2T*+eJ@B)E4PE@*T_soj5;{8Okc+~X*OUbEnzq@D)RQK}Cf<(_2vekH
zGS0d;nz7r^_E*t9BeR~BlU#D4PW03Ma-g2X1WhK%pz=^$n-A!H0a|K#FV}?+!T$;T
z2arFMG{-&;{-jTsCvH#NjZjV*?nCCWDyS|i&O%5tTx<O?yGpE|`f^H1S`9i}Ivwdl
z9S`N&7M4GY=NEY|%kKbR2b=?_@~;P%*Ck=z^RDIl{k2kRspk2~Z-u!<KR2+h|8a1O
z!aPFzr&+-%KhZmtazx6jV4m)gZtYd+AevZV9)yF1WMZz}g)zaMa*JS+F832%s{-l(
zMb}7hdA$*i?>*yc@BZ7HE(|lq`$zWC{_BEk38C3aV8<75Ml7JtvPfs_mL^KfQcslk
z5Pjx0(`!gZ&(MPvv^1dW9LiPW{c7-=fLj4Y*S+BK`l|eGiofSASs{mbaVUM&sI|`3
zt|y0EkXo>jV8UiE-4Bbab%f<=fA1`}0=ypR4ybYmg3Ifx<{5@GMPgbOX2h1d3$xfV
znyLCw?IFsR(TkH<1X1hWh|<)!-l6Kv^HsgC2fq{83aD}Q4ERexSGm6XRdOR7fP!4K
zgxNWYIp#3*>Gcy!DodAWw}{4!NL#U}iEQi&QF%EB?xZ~uNsw0sc?5N+m4ge(5Ai7x
zqsnVz*%<%c^l2xZOTd={D*#2O{LwnzccpXk{&WUez8PSPmn`v5hU26lsB`)5*?ZwU
zSp_nIpSsEyG}mhNwc2`v_$a^7&Bt_+z^7QyFA28d37<S|TS(^)Xi)9B8{GW|K5l^O
z&sK1GeN}(%$wID#HB(3zaSEMU(za1blP3YAfdo*&bXEU}(C#)GIq-9SwQ+<p<APl+
zP8vx*DbL$v(v(pKlQR0RS0>{HW=v6LNgLFP3O*m4wEggWCkW2<el!xFzG6kt?zcd1
zEuYBoTKr7crUJ78)$SLAUk>c(5|{ni{o?AaI8iq0emSRQZyd5<@752~uyYI!>#p|7
zd)h{Bxx$C-_me$+w^&;0sXq-$Ibs<dO&DzqGliKtf@8xijJULwwBwdZF!HE<f;Aqi
zH;3rp>FY)GW8EA_l>JiUm8|*ug88X%U(QDVl+9!#W+~>UO`dg)sLeIpBdo3Rr0_2q
zP-b_Jnx^g%5sJJBao3ARGG-kjk0$u1Hqn4V2|v<WD}(lRQCz5XwGO;5&<v>doeF+9
zuxfp<UsrjRF6pAbRH?gZUn#Vc4AXiXN9teboT=-7F0iGk6ZKI;<TA*?$d;Y3HX(49
zyRg%BagU#LY8;0<qAKgp!=f9i!v3f1V%Yz`1b-X&JD})0`k$OJf!*Q0QpwqOeT&xT
zQXQ}teTOLd22=M@{-k}L?%#rW{9em{b0(ib`OTbn?Hh#^vG26BH8>RzWQ+q@5-p)=
zR|xAy-Mk6k4bMH$^O`19Sr`h(MNc>Xq8@n(PcT;Jlf-~X&;C7HB1plqKf<^+w?+3z
zWh_^;x@64kg*+~bkd5GiV;mV@=1F0$*Y%f$ctGefVxxAm6x-g2mA&z-VWR^_<i)lr
zxN7TzcG^K3sD2#&FZ9sBj{((Av;NIzz=rFCe!M@76Wvg^uN-&o>Ln+R4YuK}E81tu
zU3q6CcC1G5%I-YKklM9rF*pqufzH1mP2b$Hs~1Qm@~S}WE6i=Um;XZ7x9KPPugq!S
zrT*)uL6(4rg753K`Y|+oKRo@9GP34(t)mzl1Y#gd?6FOe{zg-e{_AuQhtSG%EXS_U
zo^vaRVw(Joh&+QHx%>;6;nQ~3alR|XM9{m4Y16Wu4eGs}h}u!&!96c(-Jan&$o-YD
z9vAsfMeYxl^{kbB#4ttSF$4YU(|WX8Cfp)mixaubF@D76T?VH0HaOyJxI(NK;zGyT
z;H0ckF<kaz)z)_TYhm8*MDB8&+kM|?et(lAu9m;wB*cx5brZiII@9~5aDFZ-H0?!Q
z>@-NIBt{tZnl=VGUq7?NILgji-xbqvZYSa-!ls;OMY6H-Xn88Cn{gZ8C?nG&jjS*$
z3ReE8a>O(xUS*`hscfhqfp(Q3&flS&-zXrsc6Sf>#{HsmU)v454=^53d~-ect-!W$
zKlDbpziqv1-|@8<-!L<>2+JvMjsA{t8Z%ryJ$Ak9DIDPXPY-)+nf5{?;pMKgt?O+w
zf?YlT2<LE-Yh6N8UH3<>c?HsTRyvnBzQX$0iG1o9AJc|}?GWAvj>yH*2ifKqPGpVi
ze4*O*GjwB9(j<b_w2MjI$}p)%Zq<YUqlU(tN@RM&?d41-_^9JGM3!kgdj#!}`cLON
z(-(XUFac2QunPQa;QTv+@$=Zt!98d1+YWLcCYOe>o#RNh#76zGV2+7gE7d#y6k7dn
zP3?Y9?#+n)?j{KfO%MoSTo5rXi{LA+n`UDqfkX94sN>)U^l_SYosM+43~k(4qtR~G
zFQ#@&5H7r8AP4Ln)Z+zcRP#XJ{}SH}m;$JJTmXJ4u<D|Kezm`S>e7Adq2^0JPgF3Y
ztMR^P8C){w)a9%9(%7tAJ(nDc^H$C69RFC&%M*M_>#ubdgKj{*Tn`$p9`^kN8ne4=
zKa4hB$;>FDby(NnM-C&fJ*yD47(Wn&)r>wZV?K+ABgQu36%a4OjJzH(-XNND><_lJ
zH3+QVA=V*(ksInp(L+Cl03jrouqsHZQBLo7hvnN22-@c}>fV$0az8PIRv7_|0#y6R
z(b3MkL0$F}_kYED;<wK@xvI-e!M+W(rwtb@UxBn)uKJfS8i40WVwQ;!HBmQz8!>(t
zu@E*1nd;6oAD5{teq%+>^K4D)PVXL!fG}e5Cb;?p_1FfDsvd8G?*iTf_O8blyz5$z
zbziY=_nU{%cSV<qh<;jqKkcm89%8?U82^ccbOjVOh4i%QV$Z&FDfmgiYG7}Ai2SwR
z{`jd&_T{@h%r%dA$E*D9G0k=^%?5k|B}qaYn72pGJE8_-q+qy2UN`TFnp>k%5+no)
zxhRE}vo#*#nhxCOU)w@DKZAx^K9T*O7D77^7!4>omm5O+E>IiV$!-eo=g0S5Csp4b
z-o9!ELtgUuM*R-cAKgy`JBS|sn?e3-Fzl}j_7vB}v`6EOg=9nIR)md(`&{olJ$XXf
zt0=Wa)r|>zQ-X+pIree%zMSqH!%hqoWu{w+sm;d;_dkh<=_VqvBpJiyNg(+WVWH~T
zgP5cVFl_U|wD}Nq<BuOq8xN%&{;aCIRfg$5+j3z(nRG890K7Pv<HLpN!u6b-ZDga2
zJ6wKjQTFGQxie*ql210zOq*w=GdXKY(zFU?%+N&B`$5`VpGNx_B~DINQpP{RL@?TH
z&5R{nG?BKj|3>iDB!ODW*xw)O=B?!5vUIc6GifF+O;%o(?6%li*z@tYiKk_~ce@^`
z&6^(aX>9`E8#vS8;5OU)xlvJf98;fjpmVMq*K0iUE{3>1OuiW<8uUeYh}@*J75X6|
zZwZoRL`D-^qBK#6kH=d$gHWeEXJ#+Z$^CSVPCmg_oYHO*+U^0t_|Z(E4Ga082D}Lv
z4k$kOIrwjZTf#gVN<LBA#eSm;A50oYF5ZQb8@B0}n!k`cn|s*PFy&puDqi}6(0-in
zC8|88_Eec!<2r<vviu_w>o_$+1&9>RB!WG$vXQ;2&v;MMOG`xgi5vV1Q=J17DU<jp
z59eaP)s6Lqv`8N1MB_DmMf&?z37S=ssrnG%^?;Z|i^lyu_Y(%$Bqo!d?Rh`f#+kBX
ziFj>6U~sh!3EHXF>Krczf*%YV0_glq{&p$2yxPKc>S`~AK55~M<>9_CNRcD$Ii3vc
zIhv#)NBz}8+gfPEOr;-Mh7A2bid8XdR2amkMnz1AABAbgcu~n|Va?Ehu5Fa7=0EaV
zXs-aT0jmElbA)yc&{ZCH(3pM4F^k%sJ~LDQ(m9h|fWY8_xb`W@Cou%1Bh1V5#ua&s
zRL;g3dGq|d&6W`JE=Et@+<*%pv-Sgd<Dq=i#F5dB47Wa@9}y-p8!-lL^9N<dS!Gsr
zA}!OMOY=R$FkSQXGW(yU&ck>ZSuf^|m+~@spkLaXdE>31w5Rjt3wh~-MG|S#{8Qe1
zIgfp`OhbQ0!B|&_ndmYy3}v>tj#++b!MLIj%Y^SX7mT|Lj%yaYnD>i<_ZTsH8PTTs
zWWji>VD%&(vgakrP&WH>!rLXr&Jvr|lF@vcxmI^DZ(yo;vBZ9+1cNpVh*E_1C-(bH
z%Ztl~P!m(E3flrZk?7_gV4Yp!?e>eIY5q|#b{D)`IPQ4-+_|UJ-dY+Lgcujb&86lo
zrQ})=%+dH!nGcjkwv@UA&+a9%KQW@nIr>C}`FW}NPyS+%{EG)lt)KaSQD-LPUp!eF
zdo=uu2nm*7HryKbVGhAkA$k^lAotCNj=6==z@{(GHee?6!vvz5W)nudF=ZsP%nyys
z54{UUzO~dS8A4F(no6%CU2Rm&s5NSisJH9h*Bd<Y?-|{D^|X78BGFyHJ`BRX9XPE{
z9$+<(9z<q>!C1TcS87zim#wbYqyKCNUkaQAsPS?(xV#pH`!97~Rhuhc3#SZcFmPO_
zkB(|Ha1FQ$OUo28;1akhp<~!2l1WBJAG|^)GDNn8<?rD6F3*?i+Z*8T0UrRW{C|VX
zOW9X8h395f{sJtK_7tB*jOc1J4%6<|aq;5dk*&ngM0$e+!H#)O?dYK1lOvt$|6K58
zzzRT>dkwg}KG_uPJG;&ktoxxoR3I3WQ)ugBa??1A4dV<12rtk8<oU8Jw0D-5C#H8y
zM5Ox4Epa_Yh{tKCB3ohk0TVCP&7;J4=8LvsK;JIPSM5T&ZjHR-8Up`4^fiLZt80Eg
z)h>I}$4+UbwCRvEc6QJYaevIPW~NaBX36N{NvEB~%3~=tCZOXK%1Kd<?4PaRzX5&^
z$kN%yYxCK>oDOUX<16MK4%%zem)MV?v|TZ0Nw0o>!|l8ET&WDF`pJY5^8ynpX?6Sx
z2eLKzSISqSym{J@y@!ht>s{@zM$_D6i5skX0^di>B#mU5X;G8#yb^!-TWwjC5D_6W
z^Rdnd!qmvHM+`7t%_Q!*$&wN$R+0Rk{CxtGBC9+hY8t#$)=jXeC4owjb**HU;3Hmh
zrCBO1Qu#-S8QYo^Ifw;rlJ{e5ft)LYY5y2;3L&RRXK}x-AHb~<ALUlP=;oz@wKo=V
z&>dc_6N2{LLEEYJ{Sf>M0Qt<Ge(nw~udkA$%YIhvim$Yk%myt>S9c&&KUb!)Ir2(`
zo^*3mCnzT}wpwQONP%=T`4Xi44KB&&tP1If*+)zh-StCJq4UPSIwl5mu7QqPK9PLz
zQ}8E%X8^?q>}s_Npcsx9wg1@qHGCk)?!IiWXE(igSqoZzpJ9>B7h3^oa=TJiX7q4p
z#G_=QqC%vjbU28yCA>0abNs><xJESEEC$lsJ!hBjS}$_l@CMFTBz=Re<!FZ+^@Lfk
zAE1v2DmofL0}l+Y$w7TPsEg{C^T4kL?gUhQUj%;>=(r~2_i*2R|9<|?o&6(Y2FWU|
z(Rca!|BPhngyiWy@bnq_aC3wQEJDMHArH|EHgkB6iaLVCV?9ZJBz7OX{y@jbDxP)N
zE=g(Ig}OORwCD-hWqshWGuU#GBF3~9$qF@13F<Q}LEd`a%l>NxKL(f$=zJ#Y)B!H9
zu6a$>e8Rza1%q^6`)t{3vKDO}zF0k~&AJZNb2qH+4v@a&jGJT~q>w>NQnxcK|9+m|
z#PenOPl3M->;zQ#kz`Q*XJI>boo|;SqM5y5@hL%0g$?>*-?H`wwq>3+>n@=kjYyvf
z-;#35y`a>_6DLZB7<;NwL*85{njt2L>7s{GkmPCPzL3?{W>LOspA*2p4SXL^^j!%q
zuT5dxe|64M?X#EpFFkdlPu;b0)2Pkbz|;I(PNFaDh?v05THQo8(oNK+vLdHx!|}^L
z8zVva{Mwd)o?Vou`0rofcyVh)7TiP6KyZ0|m0kpTj###OWzbx0w@X#X{nEW<)|m!N
zbFcA96WNs+i^(lxJXV<~5DKn|kRk`<J;xeVak^}rt-9HuUlnLMwoD7?T0^;tu8Y90
z0<HyAJKYKXO>_lRWsAcZ(bafn&sw3~ChE(xOye0*(TxRrKEaQ;aWzd3%KePzs{SEW
zla>OqfGW2exV+r2&=1od69dLIo5uC0S0-z(FqKQ5kvWrmeP10jeA0gk=eMxj4p|nT
zNxoeRelBo6pvt`hTwY((4-@CCUgDc4c8p){YO`i*yO@(?!QFxc1yeeACybY{++94k
zmgmZH{|%nZP+vfmI}}`AEumao&9{5;<6-S9+gF_IkJXOvVURKrm<AMZo1OI}M@s@v
zmx>Xr1s125oMB;IYmiT=nNLbF(N6Y-2k;@r24%82DzraoY8~U3dk*E-f=T)=1K$kX
z11S1l2A9{2M}qnBu`o{eUi3{1Y<|e;7#yw^`h#YjZ!ACS$ELQ4Sup4y$8}0c;$@dr
zAx^~o!%Jbxl)TKBGD>@<LFO)<HtoTvUgMt+(H9*S(AkvjJa<h7p8?DQ6rHz$%j==9
z@c%q%b^B^GpE9BNw`G2Mc6mQH*ySD1F7N1{oBlR8k(2WJl<3EC3AZ<n6nRp@4#a+6
zI@LJjpOnX7<hs10u`wT!$13#yB)OA$tjM5X5H2|F^s10s<PqWmL->}%(6wPkP>;``
zQ|$-6oY3+>8KCOXA6#BvwNIBmNK|7XHOMwC#g@kHPX&<3{!mnLA}>G=E2+eyejt^e
zqA2QEQksqk%0DH1zU=Sw!7l}_095&#!ta&7P2E+02RWAaP%uPV^YnMLqfgYfLO@?p
zF0C_<V<8TPy|ytdcX#+)S+1TJS`<hEs@!wH<>jsm_^jd2!CjThokBT7i}E$%T=&1s
zYe(PdYLAJY#KKHbXW1owMr$!rSXS1naijAyb6mt%Y#}nG37hSnhvuwG#1TAk>enqk
zlietVz!4)!XVQITXXs8rk4HVTf7JkyJPgMw|M4};;fX41LB#<TWsV$BBV{;|iwv<-
z7vtdA3DI8uI<(`cpq+P7pIYi8>pQ(5v{Qjw09i}9-)<=p+A3iD&Y+%a8awz@)2{k`
za98z4&Ns1>Yt^ScdoN&<C}sY=`Vp)n_}?l0-uvst=tRHl&wL5GsM%(`K%jYjoAI#l
zZ+GhcExFh0PWu-y(9!?WOCqJYlI&1(m{nR`k{N0Y8&{e*B+)wO5Vv)DiB<YHotO2Z
z#3_B<*4{V!iv$*@5iHO0G9K@MGP{R-pDJA)`96MLH|p63P4iLHx`{+>k*oF0Z%yMl
zL<*i5`k0R1<yAfLnr`SM<TDTXn~s^>a4-L+j`B7hv)TF{B;s{(ZxRaZ?myM7^YtdX
zw94vRQ<`W0U+Vu$)uei*4Cf*JX1$kVpig~Bca~KlhZ<VpEVKMrl&29TOl;7_5#k+P
z5XvnY>n>);d;725cwH5L8-jcVcSPsZE~hc0+RbptALk@uiRc`T5Yx#e`Zpbk!g`V@
zI8@!gw#^CnU^jhS%O{c#SeCRhpbwz<-~{jvplg1<mLKoS2QdHqJqlzq)rP!i0WcG2
z0212KvC)O%w?{goCXX~ml^<fZ9<04!#||q@a|kOXmB$S_Qc?y=g@{}z%}^}6!9tWn
z=0)AOiliI4FKlzILsr*(Z7FG<h_j2o6$V?PpnscXd@_oSawMKuGs>%WUQoa7(5}|i
z*TFvq{sHLxM%J-gSun0wg?W@yq5f(wmRx*_FMPnbR#^gfw6MI*0j`$*@yGsEXlr#2
z30?#Z4c;Sm&M1|UhG8x_F-M6RS{>~xl2zRT#r|q@f#_+}+oRYfZkQj?*%8tq`(X|E
z`M?H1(YY!7Ud?yvuIOB-eC0}-*6K`p1DSSPFc^4E)ZsXj@<uSZq=lCpC=*n#7PI`x
zfckf|2j%bP`D)%rnxdtFJfO<&0WPnvvQH<q{rrW?rJoZk*D@Bav=33OWh-;PQO72P
zG!9tkWFme5gTZ38PeRjzu>RrmW&PKJp9@?7sPeB4zgK#>uJWOUoK9tsFUrrhE+JY#
z%Xv7B;xXBc8C8lOJb5;5X7w)7<&Jz?Snh6~tN0^U0sjMafa3p2;D-QR?c`VOtKaND
zzkTlNh5c5xuR?0tzCs?AWlMBihH);=d2mU~Yx=;{pqbjwX$vAH!5f~aXCIn#&FV}U
z@x-vnO-xBmA7<yJC0rkIu|Kq5(?v?3$@yVX&`y^@i|VIGz@Gu015`WpsSNr_$+1*>
zDL#=#RO6N-AX&a-N&AY!SK(WaPvI&oF2|jUs!I~RLBBIde*GXf2tUsu_(&c5c&=25
znB)y)DT?OGg_9ybAL37fp^!GUk)(ha<{M~WOnID?dFPNsk#w(xd8r47#UApo*qkZE
z4;`ahk`M1N#2oRlkSEHGCx(0g{i=RH0>2!%I;@kd*;mV<zNB6&+D~4*Qr78QCNSU<
zgsTzHu~U`98i?^;ju1ANWim&7l()uIc-7?Gl$(F9ElUD=+^SCg=nq~5#sjLozY8v}
zuiBS?X?wRXo3C1%-NHYd|LXc0G`0W5M6%_&h_*4(Ad*dGVl0~gR(CQY_qT_;1#_?+
zGvz;wU$Loh>fCchX-!SH?rwB=k7_AaA#oF@`4?pnuC|i``gcH|YR~#=p&bOw1QdVY
z34RaIm0xD<CtvuI_HAFb1nG%Pw<))*ip8XNi1ZiPYhlM~y?trNs^!aMXPBv*1WUpw
zz}*WRt)*j3e5^fY$XH`cZ0z8{RYTH)3q!=<+>pWAeO|gCtpOrPT{!yR5Q*Ouu`iDx
zmqDeF7S1IR<02BMx@Tc9VVKn-wr&L0bpIXBg1&A9n!vM1hz%p0Sp3QnRy=`?1OIAS
zLe4a#P`m@5Iolk9_QBL$eXw0+rR{<x?3^`N+r1)a$I_b4bK$e#9|BfwXFDDPz6jVJ
zp4*jNLF-}<@}>MB7th01FY_m`N#nY<=fZi@P@&6D$DBN8@sePcQ;jX3C%@{|Pc|@a
zTb*C*3FxrjH(%0~Uq(VdxrswjjEL_hY`cmV>%5c!4S)=HCOy+zrey}CZO3z05-k2^
zkx8b9X=fn`$=aE7vd)=h1I{Y5Z>aKatFrB~GqdqVGn*9E8Pkq7I?ub-OKvGTyD}r!
zi|9ULu$OSHIDUxnY#uj^ihQKv2X^u-8<%rAM_eJyY5Ets=?4p#$ecbvN3Uws=xMjF
zQ^4})P2G(<gE{67(>hiM{kEMxQT+cd_}_ug0X2T(b;0=ks&%b{d2*sO-XI0%oFzfm
zOgJS7k5@YoFOu0c4BC5jZC$Jm?v%c&q^qO$!)17=I&q$F!H0a|<ba+w%2V`g0KXQv
z6Hw!^w4U_`=t|G7>HF@t7S59z_P{~-usKlI+4BpRulyE)80H6~4JqKAzEt~J3khJ$
z#X9bu>*dQwmUe%v&McI=iG&z!I*)tqcF!&_q&z2<K<N~7u?Z7NFL7zqy*?`N>?N2T
zGiaOxr#x7CW+g^QvC&nL(sa@wDnO)<NN0;WAvefT9w8$Wxf90UE=0wlG{r-P_%r60
zm>=nwcdVD`5uiY8`*zSSr%>lw=25x+-v_=Oco|Ub@?<xmy$IYN`k5&GOzfHc+C?sA
zovjfp$)r1G>QQ3@ThxVeOkv4~uYsJCN?Knw*|5ALc)7xm+lRX5vH^pdBLj@){D21{
z%{>O>v@O}Xn@ItVU(J@-pc`V5O)=xTSlo2CVX<Pbu2_|grB16@#{r;>JP5f|-psiX
zS88sN8FR|x6v(UG?BecXraTm<BaNbHi!#AuS&g4bN_Zvk&ph@A7p0_DApKYYmB2+d
z^3DX_&31!bF4AwNVtVwGWTw04c<DsUs)|K8;Uh`=zV)rxDb{k^D=e_)*&;UAI>r%|
zM>|JBo|&DI`<}PVS{Peo&E^+JT8HzC!>ofHQ8P6*#s9_l<l|)A!TtLBn3trd2y(mD
zqD4O9m?L?)Odo`;rD5jbf(omfTjAVicn6AHbfs4knNQLuLVp4{8Mqmso8#~k!f0U6
z6ay-O4A4j##R@B#=n+RIx%;%R{~LmFDEt3>@T-B_0M-9ach2L0+V`q^tc!hCFj<Zd
zdB6BaId6R-=dHAyt7b4yy-e^b_ffX&g*r23ce^|v%uPQc|9Sx{tEibzId00Ohk9BF
z_FekVyRg8Igq^?EsY+pY!oLHhYf#J~YX|v4+=87Pnl#eqvRucEq}*xt5j%WtpJ94>
zjs7tC06Bf$F0?gkgZeI_E@~b)1N;);dO+28L!;1s3Op9d89u8G`24dj{+U62XSA<a
z$|+n<QZRG<24{W#LPy`=T%ljc8KdP&y}53{o!REe12z%NtYiSk66b=f&tMz4C0?ge
zh!5UM4Ph;fBCf0z{Sti(eaE@y=)^1~18)Q1p{U~E%a_O@P`Ag?8e~M?t|mMR@m%3x
z)E{mXwYH5E*@oYvY+fwM>C7Z4)MI643Cgp>^@Ny$Fb)>!!31-#d!6nOh(ZkTx`|bZ
zoAh`+?Ap_idX~W$d~k5`1$4dHMf$)_@=!O5qL+u>i)>c1Z0YscrYH57<1J4|(wAl#
zAlK(Au9j?jfiAEUp2uSbietrtmYAboF7OdvWAJjTrO$MH?Z$X<pk9eR_?=mMm~{$=
zgzj=zhn)0+pub9cbn@pE@I!&40M%bh!B+ulzpc(EpXgoZr(o(~=e;7_Iqen1K}ON>
z4bJ40)N!kh1hwUdy3x%nXdjf<**)o+DpB@%X}3>GV^UDM%A6(_M#9B*(+fVmTh<5k
zZig1dU!Q|}J%u&^Q1m_zz8iRKM<Cz1<eA|9ewTcZYO3tIDe2i;89j4+XqShbnhoM}
z`$C~_5O0eMacgOLSZ^-TlY`pX7ev6^L7&Kx*N0P((cFZgK#5*H=p#eBsRBt%W`GQ}
zfULUd-kjt`^9CbYXRa?z#U>O}=ayOLl|?SihhMl)lxB%V<1jF@Ua#Ymcu!!?%(R-$
zWr$~D|E)3@(WB#!m#3a7H=aiW=}&9V7OZ!`{ikQ^oGVJ5wFFYO`7%P{K#!o3@ksZ-
z>M^723c&)^?PC2HLCB^HBpZF(TqUm1Ij-dNH+3D++QH_1LhiXA)?t3^GOTvwED?0V
zZuAp9#h{PJGpV$ZYsy-M68g<4qptXYT^x@8UY-4O3iz48rGV<6Pv!T$*;970hqz_G
zeSloZB)b$pG??bzl6u&dw?w8-x;NI(M9RpS*Ag(ax(@kb&US2z!JjY(H#ki3mdQaw
zkSxVaFo`8S$E_BT2g>_ARBqc1kCaEAD!1$e<2GUDg>xWVvUtgrRk`!3vXR&X?+O{5
zqN-x4uh5+;utH1d_X*5Q&-b@HZwb+d@fy(ylawPuug{&-|Hnc7+o+r3&y&DU2hIfK
z?_?W10xqwv`=HJx{BXI+@hkpUIls$@SI5b^UuS6lu93BsQdiE{v8c$KHft-h5!QXS
zp2Qk3;~`naGLTOJj|AeiBQcVYgK32Lvw!mTi`P0X3+PQ95YQvnr{3TLfFXdQw>A7;
ztxM|ONv~9stdgDOAG#&swP)&b^LR5J&9!w9h!j#p$?BG33Y8lLPo9zch?6A$)m|RZ
zv4L__yWI``Ft9BwTT<Bde7y41W%K%lM9f~%zEJwKuV^J!%s8wymif`bvZ+RnVOhcm
zw9L>pAp9uMYuQjhz9uX;)u*%m4d6|{AVAfBZuq^bx4NtP`?FdH<w{4mlG+CaTj#18
zy6c}pyR43tIF-Vx!bL`3MyRk1)+>0th<;`v8F4GgxI-t^Wy?s;g_Vuix>pBX8MMom
zuzcA+kAnXWcm`1PeG-1J^jF2uzf#e+5QBy#IN3|;T7N3-YZ?!MI;^5UsDqhc9#$JB
z->4ieB($nx7<pDEo|D!rgg%7%kL`?NMn_x~&^5VlXS>Y?KLJ<<D7wBMey`d~-MiA|
zi)bJ&i)2r48X~28XJh<SkL3wADX23oKNiX{xClcK`kb)*?L5E8d)Y28g1-*D4XE-X
z{Q~-mKMdx7wSKAc7q41AXZ+%mDcMYsV?<BoH5u0P{`xc%F2Q8P0hrG*lF(3~*1&dq
zpw8i1Dp?-aP5h-ht`6Fvm2!rKbj$-k4LAc(bX*56uZFJiC_}&71xr^=KYYx}X@|=W
z+MwSTsPabms=Q_XtK$o+&NZ}`>ZL3;M;HT_?Tl$e-I>X>=owvt|2u7Sjc&dg`k2ZB
zuMOz?jPg^wmF?8GKXMXa0wAf9^Y(S%TY*7O1?{vhj8DEx`7wudVp%c+Stx<J7B53B
zy4OLZXYW<=i|NbfBXR4DuzrOhtut;Gr+M1k_w<>gXFXtOZy-&Mkj9F01s8EIVo4Lj
zg$#Mrvatc>_aY6K4gs!+-L1QG_KBj=it!!)43mR`N7hw4AE_bj?Od^35SW1hr`@KT
z2o*=reXG!8E|I1R59oxkam~>NWrx@9>w<PkHFdVjWbhflv4Coqv%oh1UG0X}?Qf40
zw#$lk={PN$q4Pk7LTHbaUD<s!y(Z<@1K{+zWM3F=AEfO-EmldVmNTKJoCKTJh+wBK
z+((F1<caiMI?*h;`;+)m=_%x!$UZ_0D}AEYbVE>|7ob(?_df#Hn~~!HiVy3+{VVhb
zQ*s<N9y<FssE1@n-vBDZ`Xl8bbGH%XgAJ>6?~Jg8^#lQ>atVxtvL*fyU2YclnkaUM
zbaha!;=lFaKLRcX6kQL4%d2ZUe-&M!aaOkJr2bKD?uEMcD}yl3=-p+b;bX=A9NCzk
z+#|w)oCpWf)%Rp%C)~K!Yzo?o)E-(b@8!6t0Y3of4=B1OfXl0^en`=^a^9Si+n14b
zMDo6DthS#>8<7m&$8+D(wfAYMh)sMDJ!y8=Ej?*uB>|Jf{J?ER>$owXV*}-=_PGoE
z0pMXk(eWX;y#9ywSuTa%E$s{BrnSV^QHM;Xtu-5MLt6E)xs<O=X_)ZI`HeG&d__TJ
zNjbgg+Fso9DuzPq76ejZqfvhGrhwk!z)pH+gP#B_0~Ea*!T)dQJ#6v9MFGK!)u?z_
z*Pei2X@-O|EMiefq$K-m$-N^a_vV1k-60*af2R%NTm#GjBz0;sxQq8{T~hbrW_puL
z^>c6zJ#6{%ReOXgU-^}iE2<wz8K%FR^F1P$tzJ5oka;J{jlxDln?Gbi$;45>W*tr6
zaIGUL5(UprzHIqEjIUZ!nc`%l#D9%E8+`VM;Iq1DJ)e2eqI4!exy}(#AD%q6aEz17
zjf}*tGWcnTJn4}`FM<Cka&+f3uMin7>$UNgpnXz<gMO0jGYb4*U>2a-=OXZH0JUza
zbKmwa-KWd;@qLLp8_rjpvAVBX?eC1FN>T54+gR>t^VjRs?CG<odDCw-wDX8glk-vt
zBxDS{!dtHWCdMj=8(7*ZMCt|CdtBxv6fx`fIy>5ms$|WPfwr+IO#pi6fAsfEXb5b5
zHbPS#>0hn42lf1nI;ipG4Z+3|=nJTNUJL#cU|nc`yXj}aI(SMKzmKJCa92=EIktA|
z|JMJe>$~-zn}1_hGXG?H@dlljSMb=J{u8#n81u1n@c*UUc-+XP-oox5*VOln3Nc=9
z&Ki{|Lhr~=UiCleLn32oFpIY^E~E_xQexicCm1a_*~~O%v4Onbv2S*Wb?fz6Zp}|t
zq$XJetF&e~X2nuQ>uUrG5I7_Mh@>F;NV)i(3=7<#<Aw4HLCq|v@~<s-h5bLY)2^on
z_yAxypxR|7`0>E|UHk^e8~ctA)h<43%f|7Qq$wng^Jg4o96eRL!|a8R0xEDbeyeHR
zhL?+h?kS0+#+Su?%dC}?%nVffQze0In*;i`P`11zfBqKy&%j>+MPIjJ&<vzPyOmg&
zcW6<UczlXJX}mUx6G|}tN?PC1*$P(z*+b~TAL|EOEsY0@7Uy86<pgb~$;O?Hgj542
zNp+IYomX}1HH;!SFJiLruFk9TzFt5U<Qa1No|P@$M+_DXY#hg0qvdAx$1-1TBa@iJ
zM0$c>8^+(3pne-9?P2|H2EQM81W@(+7~B|+PVVt=Ul!Vd&G?G;m+PWG(01rQG@jP=
z9SEYHmdyFNKFOT?3;d9*y2>P6IWmFV&rX#WV&$BEBMJ9v-MmJx_Db!dU3EzLi0I%+
z*br98Rr6Sa&a`3cIZ&MAhqxkOgGp*jza~5H4(ibgjq2RC5d1s9X@JhJ<S(BEmzRpK
z+;DABA2mlVoHvHF@GJLt{*`pxZ7@+tJG(|8f~08vA586TLSL5I4M;Mf8O5>#A4SYw
zUXsWYkzDk6aa=Oiu-aOS2riG;8<8$kGJ>{MT0jZlj6sH(FFRVCh|ihfWD5s!-jW@L
zrNtC|7`-#eY!2=7iuVTfY8uhmKa;^{11A8gf3|`D5!iK4P@kqSuk<<l&5wK4&(}F^
z)DQ7p1b>6@0N3ENxzSCx8a19<Q@Y#GE^{00def8iV|bAfrMTSma~n9B<=m>&0h}SJ
z(zR|N3&JA_0S`(HG8{`OW=!Pc4Ut^mL^?e%x9AMr?lu8g4|`2*3E>9_IkisLFJ<Rw
zUd8w$N)}mZ5#v&7>Vcr%Jr4}}OOCs-;8TEBK-GIL_+mh<m+J2B7pH6{7IQdF1l5<U
znXO%jSYZChgBw~J2)AFw;7MI;H{8Ve(~}aXp5kyhY(^q{%@_?n*Dzi}y0%fK;<M+#
z-vT}d6kUT4652?ht6XKne(QNFGkHLioUYoQmfN;5z(H)?=FdL3kvSmBTo7$J@!(`j
zKkZralBC>(ugi!$Z8yGbJAbmHy9m@S#pReG{>_elLKTwsK#}R;{LxOnWLt!eOG?Aa
zKH_Ko@-!Pk8JUs@KG4Wwe4>|(^b6~kdN64BjnJ;@_W=0gz>9#YUyqSO8whljo9(`9
z-}!jqyopPQ-#>QYxE1a519e`<%Yu>AB1h8Ma-LgpaAk`)INLJe;7rQ|ZL3#D#=8QZ
zwNfkQ$Y43YajX}dx~hzwtai|iMO?PiA3BwvIjHorYg|Ma%pAVx;$k;*j*IKV(0mdH
z7+K?)Vv_i^t{*FV5}RyGU%_dQe8O(lnc!t26T)h1J0A+_eHnF9^Wg2^+kw{sRqsKg
zgf<;$3&+>2JA?7ocK5#ZW<S1+-G-lypnjwMfw<PzH`?FzUz7gptLC*f18oXRv<Lj%
zU<0yQS1%9f+N04CB6*-a-Wz96Pi7)+hFx(smc%K)LiBN4FgC>Gv}9Pk(BFtTb}WL4
zVp(bsPDqQrV=uv$_Bih_c{|*jC~vYcekIJ4^zYza(3@kudO20jG*j5FczAaHT_$GV
zj26Y&tb1MrD#EMdk)VCHP<M5%`wjT3z?*>lp=_i6qvb0myl)5XV!pQT{3_dJ!3xsD
zeJiwPkWrLB*8PCV+i{T4w}^XO88~_V<#BCmY$%pq*mosdv?I+J!sJqs#t0_^yK-Df
zH<=5~8$5=4EQLTgDTW<V+Od|TiP2{e)YnNY`FpB9feIpL?qIqZWlj{|w?-4r`gGm-
zzBf>Bb}rKG@Lg}-DSPA8_MpDEP#?t)&x7v*{s}04*jz*|2q?d@r^55B*~QO&;k@xH
z=Im>OsSFBMtvGcO)}2^$$O&Mh{%#P0`vuFNi2r3+mG(3EGTHa)#2D$Wolj8Aq+1q?
z#Nuec<G4ze_Tuo=nC)fuVaTHd#U2^s%-qn(Fx1DZu-mwu2>NVDGe*fh9AX^ZoH!(w
zI>b5JzL$VFSZ3ZAji5ozdTEjVj`{s4ZdC-1CilFh(>mtF<n$(C{YZ~&&@JhDai*UA
zz8kk9&71MS&fFG_8_ki#p|ywc*#xtXb%5F1ipFD3H0@Y__MB~=FDN))n5XOdjk-9?
z6n>`Ve;EX*d`6I5>0TrVdZ-4{);txod+nG`J{tf&8fXPnyI%u-E6{Xfz+Xy!ko)p>
zpDvrW^>mc1tuM=nK=UuhGRppwZWZi)eye_zq*YTg!FLRw&(xDK*)Yi$Vknk9Y5D8X
zvR2PRMHYn|NgiYa31f;kUi9kmd(2rAPsL)%`UhjqO)<Z^pXlaaFkzQN>vA|y|C2ma
z_1n9izYFT=j_o}6SAcg1`U0w+v%wbu=XZ^NWbQxT%$3JES<#*PJK`@GIn6(2j5+oW
zm@`$Eh;f?EnXw0x=0iz2rsN6R$_Xs8$a2Xjs}jc%QFnaAO(ta)L`KkNU%zk+dn_K2
z+7ZxuKeVXvppO$;2`~Xr^gaRp0&wi+pkH1N?L24f+@D?|T={{X)!qw#q#)XQzh%qi
zJkfc0>$JY<jN?Oo=npJEKlE7twOJ-PpFep_sZ~F@VUjyJ!9H`cRcaq$<?SA0ys_0|
zD#l(R#@J&g$WT3#oXMW{Xu3ZsOfqNE+4<}B`cE(=&ARb3<L>$KNX$ATX0D6X7JB|S
ziA=&w{W}>EEq~{r;C+N37=DOZ?_oA;zZ=7D`PL}fuBQ0;QA~8uRv%y<GuRq7m4ymr
z$U7<fu9R!I2E(EUTHg}uH%aHQWW_%`=P8e-zFU}A2yuZBz2p{XG6&Ck{DxhNU}g|m
z8acwtM|$9LP>r=nJbncOJUPL0A{D+kWaA%#ewjSJbG@Dkz5qA@(3y*6->d<bSJ(A=
zPunk=BL#(W{+a0S15fs6pI6ADkZlyhIC_-p7*tSr)QU?w2aqwRO!uQf%IB_mHlX7L
z$|>?*?$_o_z*7qN8KC%M&P3<}`dk|DhdR%<RPO5+zi>tSsa^R)o}FZD8v;E|1C_o|
zihLCYfv@(&5c$&Y(G7j+4>~;+m0wXw>p60|SOS~^M1Y$uIdzO06Js_u$GR|;H>UU4
z2#jTpDIFWPO6+PYXWL_PW5t;2vAHn~W0PaDW4%en<O9ZJ#+vZmC8W^EHkvUn_HiQi
zY_^=JY9FQDza+fZ(CV9SN0XxBt!U)!s99}`^p2?cx2P>LA4KC%rX>$1&&pul^51k+
zME;$&uZ!hgi;CYwtGAO5H2J4!!%I<;_5Cp!ne1&$Vozb47bJ}J31k)6BYUqW&8LO=
zjPQP!G#^hp+taw)^d(|2VZV|U-DKRblkC2BA8e{B>iiH5w-N@-7r2e$0l3OLE*k<b
z);k)3>r2Q2QJRcrO48MtT-r|MkQP<PbFqeKQtFlS9zN{{<d6qNJnUATH1!Uy))xal
zLG-BAhI~>09|#--C_Xt4{5qgdm`80<cyHK$eqX(`V~<6A$qxMk$3Jdf$8nQW=Q975
zkLb87#iYpOb*^?_u8t6C<k1%0aqx|})vqTbZzLbnv3Wd<wXe#J<4)WSQ`?k#JzGY*
zr_nt^crIiiG10f#ijTw9&&#$8FHm%R*L>U5Z{X-AN{yW8OH$P1<-C8TK)pw4!L{a<
zpx&QRC$)d-J6UK$fzg1f_e}8PfUfcG2JKgGIU4qgmaj&_o<S07L4A)wv-JuoUue|k
z7snW5*Af~#k88A@eK=)o!^5^5(O%w;rU~)XEJFloMZ_QcimUZ60o}Jilf2}(eiZyE
zU<V+7B)@q#{9egF9t-!yimcFnX7RF9IfE^q=Zgk*>wiaX#WHm%&&t=qj5NO8%j~Ah
zvvPUT%lHX-zil1?r>5nkgPv<=Ku>W>Cq1*k=K?1IsvR!|zY0)#NHg^7-PPq>C>2C|
zCIp|VjrvoB$$_dxEFdM5swWSf6l1NprclRzoAGjQ+PptqvN<gyhGB+yTYBj2>DVS2
zIIqK;Ojc-+MXZ@6X0<UCVM|U@jlAL2fbP$rNnWxY(^HZE0lfi5cMJFtKv%jaPuq9>
z^!2>|6X9DF;lECsPozs8QG`E~9{O-PcHcJ;-uhbD|Ino9{ss82fZqVB|6d5dSLbha
zSN)IO>*AG*e1l0DDxAZ2{~A|on~IUQwCeMX1-v}!%<e&6fsJ9gJrC|&*M@_S0VV*d
zy;gvK7wBqN{g}3Id(B<wmn~Pgwui-R47XoFpjaoWeZg8@3}i=y8<>&yEFA;EO*+<6
z<na=Nos_V8rRDK)Dx%?ce2pgFiLTD}L|$(M?Xv?K)Oq;}@O+EVdH{;f)4?wQx~{*I
z58IbcpGx1VPPN>=Qu~hO{9Z=)`4eG%i0%_cEZj=OLh5vmZV#|tHSE|i=CPHyPN9S)
zXobhzjXi0Zi+v<aTQ)?7QHTwdd;TP;KO&;GP|J}5^_g?Jh+BR0!Yv}QdQUe$AhL^K
z*)mP{5R0u(ZT*?-X7i5JZxY__4Fjht*)-?q*a*KW6W5t~rB1opmbZg;*-4#MyL<xv
zFW^6b;u~*Tz*nkWl)b5{eQ0DG*coP9r;-q)tzBEsb~Pdz2*n7;Oi(#GWOvl=3d)_u
zb5*$~gP#jr0H|_r2bWh@zES1w*$=cYTe*5gJ8F{-|9IB=9p=%Ja6cduceSCVzXSO?
ztw;+xE{3GYXVVUvz6c>fq#$XP=qUy%)zv!zecJTSbzmd-Pk@gA#V?{&XjQ-)F9rLg
zw)%ii8fy35C+(p#WN$_P{>#Ah<;%vbTE2Agyv|+Io<CN<CVJ}FeJptQ{KEIi`l^_-
z>d$3fgp=nin<qDtH5-iEqZb<b2ICs%LMq>Ow;1UV%QQO59GA7-Q3s8Tjj9=Ej=x49
zX^yG{YDc<&JxYu`dQ=%-%muF;C&oWy^5z*EFYBqWY6CVHy)dFm#mq){vp;GLJK2+9
zjAr3H-FeoJQ~N`M03PPcx$G~pF2cp})`2#1@aS!N>^eQ-7S7Q*isBAUT0@)|#F0at
zTx@J&ta)H1qUVizwGh|nNTE6P746Zu1;)|fx~`0o>SBvsxRkhU?o@M%feh^+Oa8`b
z$ZyrfPxNwVA)*MUhz5Qd6@$>BSKB3+$~6+1EOCT+q%`B0IL;U!A7OemM)PsFN!24R
zJ;pq~!j&F*mQ&ZusuSg2S;K*qztsC*!->(sj9fGh$NsJ2BHfw7n~I2^w(@M#Btyp?
zrZ`LtHSR{Vs$XH4PwG<8b2kn`zDCuFm?o_qIVcv3)+EgMH9En`DhWPRi)DIk0gKYo
z?nZAjT2e-MvbmLZMP;?9ddRFbYiMzKt@$Y6*IVGl6z}D_^-J)lfj<ChJbex>ude=E
ziXZ2<&tE-n6~m~#qf-)C{7_ny4I3TR+MW{Hdb>`Puv0A|DrM5mWgWXrAb2pN8Dd<O
zvD<Wfv!s*6@BKN)FHYO>aX??|p`G+C0sk&=4xq-<Z^2&#)`Wf|Di8JK{p?Ei){zFO
zM@7jN{SWduyhR_4SWH`Rn_zzJ05V!fotbr|DQ?6Q<&`CogbX!fAt*Pn(`^=U?AXmh
zvxq#Xo7;4kUV#&q$2tg1*WA0=Tx>3LrT@YdL0rHIqCsvRZsSa@cc5d=$Qo|=dr-fo
z!#ee2)4-1c<^ZaGXM<k|ywSz3XU2Z^A$!+vkHjEwW^6(*zhDgY!j9oCcEcr}$-ed$
zV*1Ibn8bril-fkxix4Q!b9(qz7PshTy`0*{Ks0})b$lAoy8~L}CHZA1`0K!1;b-z2
zwLegI#V2w<)=%msNaLhygLq<atqGsoba>~yJ{kOQ;7CCJP(F7NxV*aB=c(s+N)kfT
zplt1dn8-zI9PRiy+BV`$rCC{Uw8QEw>ae<0k^PI??y&qVJYS82UxPmbJO`-q(H#2a
zf1RIN;75ccL$2ga-^I@0Xd3=_qKLnMeh$GCR=0#W6R8x5%wlDtP$eA~=mNHzEGy+s
zHyZp}-AwAk1KS%)-2IQB-CHTYmiMyVmw=xJoB=5MehMzH)NR4KqVz=jw-5A<owI7*
zB1z;LBF0MdsUa%D&GD}q+C!KLB|JnY*tbRy5R_O_>gU9cMkh8dO&VQHr^`jAPD(Aj
zMgo9zhwLMmVZ|*v_Lp^bf-U{d&jY&MBRbo)9=sVC3@Eyf0hgE3Z|(0tystP_Qe9lY
z>@o?c!d~cjk^!y73WnzObtl{lF;SnzW*LDgkpegoxed+%(0B&PXT$+U#&&`;hb(u;
zKLa|qK*yf`2Y(KD2~c!uNB*yLVyp9|M82{wk>wCsvJa6x9k`_{k=y<i(AP@&YTt7r
z__u)X0E)irz~%ML<758fl^x4{ug;R%Yf;M8ma*$Qp54y%#4nOjG806Pl;J^Tv`_>C
zNF1cTFH;dsCZuP^XmQbA^Yq4l2lVZxd_`Y$rqIfPYCzF93|wAcy)RS!Ja^8LaH~<$
zG>b7*0W@NSbv*VuZ%Go#<n9q=Fi+Mb!Y#A8_2fh~<^NFjCh%2MXXF3OnVCCxzc;zb
z%^nhxK-j~kpeSJz+)+URQNj`y1rpf=>Ox&{r;65E7hYFfs&U8GSE*7(r5Y7mYOPYY
zA6i>+t#;A>_nDcK3m0kM|Kamwp4=PedCvBnbDr}o#EU96>txp|rRCo~Uu&VO`ML-E
zQD76G`FaLi%KrJ13yoP4YJ9dt<6X>-)pr!cl(g1k4+(RUv6=X08AWJGI6;BO!!Mfy
zKGIWid<+0T2si}Le2fQ|@_*&y2btKmFB3K2`R#B$@9$~{@LvJX1430ySz=S^FQ6#M
zpEc(VUyh8;*H5%A)1*-;-s=aS-sEK!J@s6)($*+7`ri^Zvz9=_sEJg%FkVTX^+!$n
zG1KBoU=yn)7AN6Uzk1R-NaVrtI<bLp!sSl6sw^u;BxV{b#D^QJl98%faX(TSu2ZgT
zxzA-evXn9*;g=?3w1>3AyRP4P;FkcG1G;^$2bZ$H_C+e{dS#jpAvfKrQ;cUq-C?H0
z&q#;qq@R(_dyTO!pu3CrYP#PFjcM3Z0Ge(J{J+qhyW9);*F|>w50Tv+(3`^hG`)r3
zX9BAMP47~0Df--{?Wy!Sz@-!dN|S6JhZIc`i}BPpeAKHD@M2C>WT#>b;6^mojd~=v
zn4`V-?%@5J{zu^70qW!&{lmcj6a5_VlJ=LyRBJU*3;aX1A%-pv8CSYo6eG;J@rt_Q
z5Z1j0_rDM(g-JK*WNNu24if_q`-D_9TEGI;5K)zVPgZrsKng1ax#sArZd7WF`MGy1
zF8s9HKL6LlpO*7?gFgy90qFL71zgIG;2v1#vDfW4AII#rxpPIrPrOWYZ|<?M{RpDT
zC5R}D%N@*t9B7JMZ@|{lI5=)8z2r1GJ|8vHeLAw99|ArBI112wv;^PleUyG`KJW+^
z*Gn-sl5Gb9%2RSR&GkeQEZs)pa-vw$emHPQnAK>?Q~&l=i$q554EX4Pj&6?+z;^@R
z1Hzrig}PJF)dJJ={AhON>8-@-_=L7atta`MXf`=#ip7uw3B+i7>9|02mP{N?(=Eb!
z>(psz(i=v_M;D{OtTb*9i$#<~{7F3&%REXjkh=S0@oQr!Yu3lCYhr~xz0N&bbrYFC
zO=Yk?j9bM7X0Mc9!#^hEx9=Kw*7aHsemk%c(CzysxRm%KzMM<v={1*-A8N@Qxw(?A
zUT2<fT_uU4Tdtz<Dla6SlruQgVD}6a*mWET3NX;f5M{t6^ie%yvsz|Sq%jgLaOyef
zl~u@L;C9nqhv%Gs9n=~2`D{8hr!Tk;{5IePK)3%xGmzClem>9p%zg9)a#x})<8$qw
zGYt1P#<_3y>=}0Fd#Mk)VpRsa>5}FS7g2GsV#ifEp!uwkt^_D`n^ypB9-Mwq!SM2f
z!o#mNo7c!+?R2qB{>pQ6bP@ScwDMv=gdE=$a{nHDPB<&BD1*;G4!PfU{rw)Fe-d*4
zxzFdgPX8_B{`-eMU*kr^n0F(A+aug<#qW*9qwWT5mm;^sIP1LNV)gz$7cTMl3d8Tp
z^OjhgQ+hWBU5t%wH09pp5+F(<NX7LNeUJBhMGUdS=SBSPn$G7~dKgc*_H{~z;{bIQ
zk@hbzF~C{jxZyVDd|RXttHjboCLK!^6c%vV7PiZaS4R7p{mg^SQD$$wU+GBr<6&4!
zZaka>ekw2%(BpO~xRkYdc?9<8R(~9DO)zQ+F<mAHQT&=tWKrWX?y+!p^aV~b6)MHP
zD_V!3Z&C;8a9&1J(&u9<boBgr5Bv+@pMV~h4KumV2J+8C@9%Ri4f3uN7qZKCaN^A(
zIpyXpiS(=-S&%He3<-)s8XI=3gRo`zxt+Y3T_|U6v4A2f${>!WQ6`ux4nudDc28;X
zk*MVOpOkdU=X)hQ)$qH>)$73T13CcRes6<IX$ta=<gbqiEWiB_01Ia>Sfs<7t~2L)
z0^ngz!^nXWPY%3}E+SHkWdTm-s=g+gF6);e2o!<SQ7I>gCxw+kRk)OpeFdafkwXV&
z7h}z3bb5Q*=eKcIuAN7N&j4lvn%`@{rR2BsKK&i=E7EF>dB(XM>K-)Z=S2AtkslJl
zwDNw-*cKt)Eqkbt8qN|rIN6gB=u`kdMQj~$%Vx5o^^6XVCJ7TIOt&j8vAy;-jG989
z?_Ka!17Fh4YBs**Kn4(QW!*R*{5oKLVDDVN#h0_&_cuN~MWlCyP}2UK7?S-;Y`80L
z3mG?KITlgn1R9H`<xE$Ep`!TlmXhMgIR+oZa#q_i*R4D}LeOdnYHodDtFOINi^QMj
zlWfHqc<Zn>OC+N-=k0DuCsNW-hUk&(DA;)%!kym;cdEBU9$~*=nuBnpTVq*eq3&|%
zc}_N+f248~i-Y=8H(h^Y4t)p|0lNOp;70&De*K2PUvA5PtiQk3+~be2N^gwqLVFMs
zHMAtVaRRV;R)#TMFN%gDc99$YK4h<P(=s(KH0|Sk|CkrWjJBM<kkXv>`Mw^WYWQ9H
z?J@ADfM)<b-aZDG@>alae*Dy~`Qi1~(YQbci6);iv1_c{Nj}ne4`zVma+c)2MGPwL
z9K3E2kE@Jbjk|179h~+>OWH=tHc-Y@iO*kiYmUEF;8y}y1G-%gnoGL^Q#yimJFr7}
zva?-Y(`7iYH=o`f1S6U~O$Yc3S>E-EiNE+SWZ3=N;zuE{Oorcfmk7%JQCv#&`@&1z
z@WrlcXX+Cq&`iV=-4nKYC2V&RR9TdJVO7g|RItNwUv)yEqTvMbcpz+dgx$9s@fNb*
zajbXIl)HjcM9y(r{jFm^7>+!`B?DItb_M$f`NC$UO!l;I3ELZRE@D5?CxbAoW#SSJ
z+Re<ZNV&xbL(8qgbFq)N)m&!3XR7a&wcZT1$h4i#W!60OjnhJ|Ga8!{7rRJ{g!Ohj
z5__D;%89Mgs1<&@chIK#{`$Az+kxK$dR)8*E+u~-vX30{#>G*Rou0v*X+DI*MdcJ@
zccQy^5pZ|PdNXW~i=CE${;+vD`p1IL1r`Ik-+u%CJ0RaKY}Y<<mIC>$gE((6-}CM6
z?(@&81I7NOvPVI<@KM`1FWKW4k?=3kA{5{(P*q;}90v{jx}LY~7fFbb*HiZ<BQKI4
zNV+<O^g#oRJgHV?eIj(x+3fghQchoYI8A@D8lrZX>J`(f^rP*dwm|n=LWHD2M4A7T
zd+{p2-5clU>OBVh2;gWyxBF~xDLSwEwjfW|KJD&p!2RuNrseP%wE7(5qLd$AUlOcK
z#O1>NQDS)-$LtZvwz=BpqXRl!{SW>I@CQKi@fo<3cwm>O@3DW7kDOQ_4=|hj$_^4K
zrh3qBX#KJO&2lAD$3XThd55Y=jO>&z28`VSKNA+@<iP)ezYM$u2p6)x{Lg9F9|0>L
z^yR?ycl*!2;r;B3b^9E(uNd$b{8`JFuJTv=ed@GesW+fSiu{0tkvHeI33rFQ4Z^jy
zC%wP4n){7>-fV6h*=ZZ^OB0}^>>V!5I3xw-Fi?xG6~A?xtF5b8V(g2!l}cW0mU_Vt
z$({4RG5e`l45eHR(ev?FWpIjTdqc>6N4YzR^HI*q;9ip|VS63FK2^_<lxPYV1rmVB
zzR(I?WRVX;{^oJ-Z`>zSk)K=cjnL{w94}&{b<5O5#*|fHmK`fOCvutT^da|$<y>I8
zy-0U`aPft)$VIU?yvwP=iZaIb2d2c%-=WwvjyK0)bllVY-V5f-U71TjsS0Zdaq8|i
z36|Lu?HBn8IVECE$;Lz^?WSr8sgN#;WHQ-E@sY&BnN%7n>F@^D#QM=Pyo~14bNzlY
zcpI=3(EWY~_%DEbf63eTwVU+(COxNF-&q#L@#}IgC7z}NX*tW>tBgAf=oY)5ZT~uM
zKNA;gAjyj3fRU7<CLSuH;WKtBk%?uAzwbreea*CwmHnp}QErndVytQK`8O8k_|JlO
z2YLXS|5L%|0-Arl|J-=o-s=~3k{<sHIXTO&pye7h!*~0v+{&)IpvO06=qv2Gld4D9
zzA9m_OK8TUahxr>x!p-<2;-$zp&jn02BpS%j-j8Ke#8^v)|<_&4LdyM;lHzo&;KTP
ztKoOqAG{9!KClbWav-xvYGQQdtIOAqbgjF(0>XT!`KkSiSZ)0n<1HHf>X5OiuvVOA
zBV^5u;f#z4H&M&5&=}6hEw%`P$eruQ$~vo-Rvv3(U%Ws)X0fX6?&b5@0w4N(ayIxS
zz!iYzvjbep?c061aQpB4=N@z0+Z1?;iJU8P%L%mdO=3q<d9@`beV!LQ7p;o;pG>}J
zBoQgVp*&(T1iXtfZlsA)@BQnIhH_mWpFd-9j=w7KUO+!U^EUxp%KAXxI^@Owz@K)7
zXBbR|zgs0hJXwZ~58<yK3lO~CxUb=A%ME3I%v2Rw%093s+hqACe0B8o`MMsuy4{`t
z{|)d0p!s?q{QoCkqkV6Pl9nm(_CFqPKUc=3MZz0vDM=1wJ419UqN(`2UA#AMLa(!*
z&tG#}j=xjEX99Bo;Y#GblneO%ti1E@)_v}K_fT&v^Ie1(ic@4W(oy6b8#>;_po2Zz
z$)UN#^+jfeFrqOF(ivKU*o6cw4q1aZC-(RG+5t_yK1SQol>-9+&DYPs?*is*_4{%A
z|N754oA;jAGv}aGYMs46cFlW?MSlre*w%LX^7f-=uA1eU?5-gmj2zsKlON|vQkBZX
z%}RBLX%1CYz|T$N(&An}3l-iRN?w>`IaQIXlS$ioIBh?Y#;U>Q%*6H^Sr#gel52xa
zIQ{W!j{PYPLE+8GqT0wE`nOw?saHa2uIimjqV}axcYVmYCRBcXsN!cKa0b)@MEx8h
z6DjW&sFx~a3t4Gpko8xZ;h}C-bSNPf4nXCPUIaZy1&aaytEI_rztS^u?Kc2?3@{1M
z?e`e?b3pwoe!DGu)qjqCX7Bd%r)pOd%3=4XUL#H3yOD587)mUUq3r#PkBfVK8!G%R
zl>ESNq|c?1t|_qB7tlnURlFv`(S#lNg{h!%&P$brBR|o<U75=K%H5-Jz6?2Egv!4O
zReT$Azw{fY4=GtrQoqKyOztW6Y@X9-o$j<wX5ZFf-5BJz&#)!zZ5i7lcaH&Y1<nR^
z`@94GHPDgv+vAY}|2aWI&`|VPVtiqemy3eG&itK!ntVoi`w}94FpU0Xvd<t|fQsP-
ze7uP#Ch>n}8=aUG%8d-6q%fgn&N4x`s#Z18XmwFV<O3|_?e|m8dnv-eewd1VkW!zJ
zzmJ?zMAnLZ<TX~QUHE<~mQKG~Tun+vw-XPw^5Kj{GhrqCxNg1i_8g)nVETD7+vl<B
z7_n6Rmx=U834w*EGLN^%TNR-p&TOgJP``bqEY00JoB@6|Z~>s(=VtJ`fyyAyf<Cv-
z$=etB<7clXns|w?jbfjA0?p9h*ib^IC2?N;$gjjMDuL0LNYw#$H~gy0WbHpe4Ke#0
zn*;uKLpu$-(tpuq*a-q<fR?L+!KF;ki*Ks?4RswU?MU5D9AwU^-kR^(q=_wB<tEd3
zuB5APh~J5qN6d*=`tDzntE)i`_IA)~4)EJ+E%da!x(WOq;88%g*Pp@v2Gr-}A#BX^
zE0xXd9<#0GT5)5%(-ZPDXsqeLLB>uR436Rv;?t!c&3ZlmNVdFSkV@a}|F$ukjyaW{
zx9<`5BsIdEq#A_Z88qT_dx&+A*Esyxd7#h#gyp&RJO}*ez%790KeGbf1p<HU=0Fc{
z`Sp9x2P~<N4%`cJlSGU~#OBRYkoM}&o!BTHnjE#6Cr;W#oGg+bC&-UB5x!qK#=lBy
zanX<j5q51wZvs|^-9zdRjo?n?9#?;S<hYX4l2JTKxWlMiiZ1O`HQ7>ylU#8_XJ%DS
z=CcXTNIp9>dR(-bPlof!5T_5H^o}0l^ewF8-o3^tu~b3U8C`Kwr8tr-SHCh<yIQQC
zFdgrLdjy_Gz3qCGQ}s?HT;d)Z#@&VFP~!->i>xQxX4JvrpYwJxi?3r9;-XJPO|vG9
z%E0@_Tm7>0AiupkXiGhQp9B9b&<W`Ay8~Rx{_MbLXRi&VSy^W@O?^b&e3<b`S$Ebd
z4xK&lDiK}t!9Km3GyV6;d>ILTBycRC=`9Mr*Y{rfspre$)|Fl`Fz9)`IIg{I_I%lE
z)?6bt4Uum2*HfmkuH3r<lUP2YO~!@`eLp=BB?BmJ&=-$$S*5VE3HaIsU46g#I{4eb
zyMX5FJ8&sC-srDS+TJY3*O?waEaH<FYrn0QX-t~aWYb2-mM6<=?Sew$VA(`?4W}B?
zs1Tx|63dSRXAj0vyvFj@PNB1Ngx_8hSLWvPZ16T<DWLhf23$(Mf59GnjqVaGE$7KB
z?gK;fUqP~P292<bL`_skgniECSh0~x4eK|5i#t^<^c#uycO2sLvkQ89ynF{9S;g;w
za3TA&?%=(Ee7*IMee|EcyzA9}5fhhj(-hcL%x^lyId!1%4N5|+wmwkKE_4K*eZ>^t
zz5)|MbD&XksL#(zp$}adPgjEf4A=l@ejWmU0?6m5e!u+8^7)YrC>3Z;<{#kkbE(xG
zUn%?V%K3-p=Tx7c13Z4#1^k3p=i+q@0-p$+3TS?|fWHCEztbN_`W$un4Unbiep|YX
zyIp@l&>uDS)=kEjGUPkVuY4=U*USgRnDI#O=Xv}>2cM@-u}^)#<j41TPFPsR7vg4%
z0COFul3O4adAVzI?OHSjH4j_%?^N-rC#!CQ)reR$^Su0CzHERuD6qKk|7W@o)dagG
ziI-C5M6$yNup2BGkenVE4{lcW>Et3Jb?l*`CYfjFalkf<%^SG=GRq0$8bWbt_LX{e
zj`I7j=|{Qt8U=nlFd5L}dmgxy&4K<)`<LlPX+2}<!UdjzvYkGPFl&hb=(uIZT05%>
zyt$7ANF+nZp+yq7oHB8=ProC0zl@(3z&nB00ZsqC;Cn5H^i$JcM1J16Gmb$j>B#h%
znp5zEn7`8Kun9pR1}q|Xh!Til#o=A|ZJh!ArnCI|3H@>46M+)|O}{nxUendjz3F>C
z`7(`a4n+tiF@Bss&v;Gf2XPv?;SuA<Ml~$ppm~g6|4qUBh5qN@{{X%Nge#fP<!7VI
z0Cc-+y@hS<Jzo8G@c8%vO<U`t<Gp)zuZ_g2TymF}OngR^g!A7wjrSRaT(n~0QTZ7I
zOk(6FcB@_qZ^PAW-{5&^%*7|+DCs*XO=Erj+u=>m|BJw{18x9x`#lLRMcZ}k4E$L4
zZoi{F?KM1g-|2j--f_&Gj{6S#l=;7~jC-6x2*<$$8F0eKz$K1Wuve_o@#avv%DX5#
zL#;6t;aIQ&kx?&Y=Qy9g^f@{H>cRU0O@QX_FmNgP@@a4W4r4baE!KR6q;H-702$vg
zE5}#@ZmQu1n;G#5l!dKS&6Hj0y2E_>>v+FzpWDG703HG~{indC>~DSdEQ(uENy*OC
zPYKt9lyLJ`8#iLE6vfrPR(v*wszd#Ol^!3|``jGe9^k!!p@2}+=lRL}o=<mszMqe*
zrAucnYG3F%zMXFx^D9p|<kZ4b5~s$D4m9=b$xP=nJAv{JZNBZkZ5O^{CwAK0#27{;
z#=azg#`|kSz}E(7>izL1@U6f$K)1)o;8IrZ=bm^e>bbqzr27Wvf7LCHxxpE8OE6-d
z3Zd-hMyFN{z+&kbtbnTNpLAkG$Q2tUTo_icDLUI*TPGgww-?3}UHx<v_!M9^pxf(W
z@T-9Q_If1j&qFU>sqQCloS4nMMlymAIpttlD}L%|;{q%*ViL*rRSbJYo1C;`PdSB8
zJMqm9*VqY17<$^|Fvjx`;yM?Squ1w-`F4bl?Su#2eqVw+KV}aA==N&@m-5In{`xlL
z1^=nXGZ`*sx9Zu3+tW3c=l1ld=kGNCW83&JE(4pup-i_(XbZtG(FhJp79kcG<FTX~
zShm7HP&U!9=bEe7=k^X|2tXyn-q>)I&*xhB(BuB+;I{)C0nO)g;8N`1+_)^rYq=Mn
zatM-Xx5m6xoy)x2Ld;bXA9(Dkam3;7E4+mQ-u$Su)#@P$OVZo)n$g&Ow9ilJc|JXn
zv%SCv0z(1K&#}Sx`EqtIe*82+%};wm0I#e~UCcCcD^-W@uh&R&9o&~OcTT{A)N|)C
zJ|7zbI>JW>_|w3%fac@X;CsE!=%?nxv*$-YriOJ+JM@)lX6Lk{UYQm(PWvqZUqcfR
zNHuDp@)V?JlJpe)<FP^g&(GDrFZf{K06^0n8+^aN`g@sk3Bcl?GA7Q(Z|t;ljQfc4
z(<lmyP`y|#o+LYHsV(DmqEB}n@74SIJHQ_SHUXOM%ivP>XE!-lqTS>YST{{#TNnXc
zwuYyzA(9{*RC*jpcqB|!91dEBaipCzYXs>C_()%n<D)lte_#+GMSkwje!G1+H>zIc
z=jhs_yFU&1Izn0i6ng^2bi5C8Bi%qSeVGeV)*a`!!}ZY8^WhiZj{&~~bUSPTm$Kh=
z=!8{EPoVh^UyOD}+1zfK&F#i%w-O?oaLbkI6qPiL18w%DerZ15r<=YoN4EjIKQIW;
zbVq<o`EPW`w)%7>Ts3s>HjUS!S%R~BbPvtZ-5t<f%X@XdZvej+cmU9Jp9hz+KfB<@
z-e=D8!YVG2@Y7T|(=?iHm-JxAla=uXvpbz`iPcQDydp+YM$&cE(dg#|VItR^;Mc$O
zqFntC1D^~`1%$e+gJ*)D4dmB<Yn~se$4#)!({r(lM@;)?&s-vVD!b_fxRgQKYk+AS
zPa?C&*i==di_6oYXjz6V4OJJL=}XOMae8Tb1^gavUrCdYTO@6k+v%=hW3*55`QHI=
zx*h)tZe5J74bc3b4Sp5yeqiVGeh^RYzU}_Hq<PKpFU~-OIK0pPR6-mc;r%TB6j5>f
zwQ7KP6o#Bk$ZcvIU^h8Ktpk3kjEk&Z+$2OSRxDLQ3XqaY2@X}EQsp&rjk>JMO;Byl
z;3MdsU8fxKFkfOi*yml#Lf1q@lrsD|`%5q#CpEhS^D&$WrW0|w)!VV1ZZB5PD%O+X
zWQX#yfnTdV?v!v7X(UFZle7|W<CmI~{Px*R-KB^;&924A6Q}|7IO_{8MaxnBT(FpU
z;^=D!NTQssK;!bu36d0c$>E-5rpl!2Qek7^p~n3v)*b2}kr2@pgxU$@TuZ>mO6cfy
z`Fil%fsKIX<7IFu>w<Vj3vcn)<^A(<Y<sI`1KaXjQ5qb8(qQ2o_(z$zGb&U}p-iX<
zuPXV6jft#@m}pg(1@W|H`DszdTHR$Y;nAJqw^z+2x$!g#{3u`|p!u8+E+v0n?w`*w
z3j?o~CW-KR920cmTet=>GDJb0!ZHWjPVyh}Plopter?%foKN-n+5}xKA72N56ZjLL
z`T7)G%KqczO5cr{iL*$r{=vQ>Q!|Q_;KJ#~%_uY2rD8BB{xwnAFgMabDHf~FfPV9(
zx&B)Xem1ZM5UP5=d@H}_+kdYA?7#J+7e7CzSXhk08BRT?mewT_w|$kda24)>&Q_Ip
zmX(ytqA<}xVKcT>WnNNhoA*<0#}eitSY9guuQB*Bahl(L#$`GFYrqEs2LhV^1>k1@
z`TRE`&86(We@~j}hnZ_$jOZT)B!Qu9Z5LigntRpbK2>lR5ycvAP>E}qB1Jc-%uTrb
zdOy>ds-pW;<^kn&ct2${9<P4s>HZ{DY=1JCmDw5YP%~C9s)aSTnezB)KiRKWCp_zU
z^>^^_<>dJW^tiYPT*@~YzaEcd|66@dXk9k8b>^If3%sOmn3%8eP0TkrS8+~R_{T8v
zj)d|uT(A<$hHIlq{GKGbiOYe$jNYkb#U~0Q`;MZJs5cyTphZrR+udpCmxvURx<W)5
zR%x<3KvI?>H`w}fzfPRW2+?9I3Y|iymne;ihA<+MP{X;}_99jewK4e|jKIW5kL;`A
zvm$MA4z{C}7etDBcFyqIWf%3<>q6`b{Jwx{K)1_L;8M2y(I20W{NcZi)5(jwyjO8g
z^lVsPm%Gn}pIXM%_<xl#pGDe8y&L#f5H96<o*7Qv%gE$3RO*rO?!brI!-)q+Es6-+
zu^#gj@uBw1=9xbK9q_07^*Qj@fIkDmwamAIE2$G;=f(Hmkr%f&m`)Onm?Uys)ITHA
zvPPt3%L&e;UO*I>WptwAC?w5vQdOYNf6C<fwCQXyqc51wHnQV}>ENg;Azwno@z&uJ
z$ydEX1XT;iiC&y?q9Mnb6;#9MoaNVJK0NArTmXI<a3vr`etr|g8Pjnq^?Dre?KS!A
zwndA)IcC=!*3C2)9%-y~NMED~5-*uzy;3vVr?-=LYdQH1`1b&p!(IJe1TH0iKa)py
zUYl;QOw*y<7%ZG>-0YyPV$_QTX~Ort8j~|vTNBWq&--<K&jJ4la4jHIrQcowe-ki*
zbxy~TyWR5VWgZ`U47p9-keed6J_pFK`v@a)rw4t4AuCoE*hYuCbz@AaVNAzRD7!o{
z*PW4R!Lf93+WV=-lJ%`eMYjq$2;O1Z1Z468#&yaar|U@<>c>6jiSW65j^Cb*>vHvJ
z20sp%3`mim`SLQ4|K(ki#;%!*>aQ>W2kB@UpVN)Pe<W<du~V$Fp~4JSBdJU#l1+F-
z*0uV4Y}$j5H^4stJ_7W7?)ej+r|m)fim`9`^Er>7Ie}zbfWk(mL;H(jTRRmvpp7>D
zmu1|C$_U}c?G@6Ca0+1z*BZL19x>IE)F9x@5W<wpq#mvsNz7ir#hZ#&l2AyTX@=Ur
z$C!k{$>b*D<v6)?m$Gi2Uyn8LsmI69z;6fc0(3nd2A87kD)o6YuO53y=uGn%7Mx0y
zUJF+nU!wHtL+mzh|24txqmP^9nf2)#SLf(gfj0tu08Rfu@c#q-<7vnJ@$j!7;$dAt
ze+}=~^}iYXZs0yZ)87RCf1rQTk_F3J_s75m?!JwXUf|b1d`(V1)Ppwx2LeJ>=I6=a
zt$>yfUHaray&rk9a{H++eNoH(B3&Jku4m7*XH7CLN2ir0^Lu|rxqFFgUygN;?L>*v
zKwMcxNKp}>ePuDI7VK;c8zy=6-yQJV0WVTy|Na~B?Z6H|x7Vk^_j=#1pLye@%U$YN
z#!3X3Ix=c3-cH1WTG9g9SiXuee3Wn!2N7=vP8!v%-Y%r`G{4=3t<Uw_(cqJSDS+l<
z5xA6={oI2D^1RL8v}fASXp0%-cQK|&7H8sAa6jx2bBok*qM=@hB{mOv-|0U6O}t;r
z^_Ril0CoVH{s-Vv^7W5-?JzsojAz=Xw1o{KhR+rH1&H*XGF49SFN1l{&VX*ywK=+@
zz^4Gy0ZsQN@c#o{WKH)qWxrM5my!j%yZ7@#^ZQcz;8xo>YY_L~=*Puf51CWJ7Ak?<
zu`rX2+jTL<%RqHRdT3wSTwtQl65PAnNGDcV?<Qs|Pnsihe(k%IrWgC|wHv<lJR8YI
z^cY|&Al%A0Ujn`o$hVuHpKoV@|MAMD3kjo=+oF^4X2BxQ`ohZ*H)E;jK6FFpe@V6+
zzE$=*bK+Ivp|p&jMteJZhA7L<p~ew}K`@CU$PO@CR59I|8l9CmX$YY;jl*zR6DJ@3
zl5OyzUNajzgZgcScRe2d1pW!I8_@k?|J3gnJ&$h;^yQk(xl*q)vA^?DWf3Iea4!nw
z2!0yvxNb>;#5ktuRWy1u-iQ|j934n{oxpLWz0GguiO|ve%(>v_0T%(9kB#6`^!_G)
ze&TnGea-CIZR8oEnTB<)F|RXUS%XpP8nZfhx;*jB`rb4)niC39g)2LpAv}s>*_cZ)
zYeQwsor(~)ZuEmXUnXvQyU*V@(AVu$aXt4tzz9INl5sE}d<n26$iKQXh?BW1FOPsk
z{#z=X=6ZUOW*Rm5^XSKk4)&U-CU0LbH8Rbb>Q0+IH8br6)3{aD5~LA(i}$U_dzSUS
z<-TXdOPo@Y$J@y}hh}aYdKTib&aUVQ|Krs(waycZ3$SLju-2Q+;fJ^QrD=&@uTFT@
z_4*3D>Sx%o0=iy50$&TngMF5^yIQ-NflSfkVCkx*_=I2@qCeob6*I`&+`3Zc?1q91
zty>Dr4FxIh=N#|n!Fzn--h!D}`}oOLiln0_MqBN<*W1RG)^PR+XgY6G)>M01=vE^1
zsE~D;WnXFaiTA^1ceu)iMLEPe5ROZ#b(O9ts;LmA00S<~XEiE)G>+yCG|6gvJJEW~
zKY2F@<I(EbCegDoaD-IHGQT}`P}dsjCF{gT;9mjX0(u-)+#oIUAM*Lo4$D_cKCqJJ
zKZrGYk_Dn2rNY0gI$M=yN@`R|5@&bDTO`yUIbD*jDHBH@`0KBp#k|lL*qfL8{LByN
z2|p{r&jro{G(VRI-|P9HpSl~`mIg~!rluApMf(WjR!)~}y+lmoW2f~?#)_c+yid!!
zPr=pCl@S6oy&m9F^5vbT$2>e<T<8~#ow;nLw89#5m29>D$J=#_i(>mr%DA6HQmJQC
zjafUcpWRTSC-~jds>@dIL=L9I%+pj=uzVR4&-D3Q8PJ#ZSPOm?a5bR$yD|7)w}XCm
z@z>V6c!g)dlrBc&*4|`1#|<7^XK9ZL$<X0d&sY=C+r|5|T>1yNb0ha)fTmXkE@gju
z{Y5zP>mER9Wj2+dxN5&huEKraoig^fQ8QsiMQ2g3rpSYmUg_6&e(-*&@0sA|06zva
z{VRg+bv^Y{*O#=n-jOd;Gf=w!DC2ABIz;I5v{T%w1Ql)x=<NvJ=Z$~xPk>JWP4BDV
zdre0_HNEAFHN}w89x^U<9Az2`Jb3@Gn{wmpXz)qENq~O;Ja8$~^WqHa_b**APo(Ff
znM=hq#-4cav8*%A#@9}vvN&{!Clq-}h=*$X`kjt|?k3)=<=k7~9|@hCb8@aP_#i;X
zL1+*30Ui1I0a};ALQc%_3r3v_{ksEqgSuVaqRb771nY;QW-pzZo>n!rW?BOReEQVv
zG}l-ks+UMrk2>jRoKhzpa_rJb4L(CLRglP(#?g1ABNYYNLNYaRgG@qq!#I@Vaw#vX
z3e}K<DdSEj2U9Rg4WnkYKTg)cyB?=^fIk9k0(84>1DCSD^^*!v6|SDVNaU>Jle~5O
z5N{p-sY$F9!a<?dXn@lwmcI?s$RpJh@1^|M9Pm+kORk+8!G{0`0-BF;;8OOtzeIj`
z?W<tnWRHakqy0z5n*sTLp(2ZDw<FaE?=6PW{G*`$yjS<{J>ZW5PXL<k7H}#1)9d2;
zwP3avm$l1Aqy*bnvw0%&d&QlmQ7=x)J=Kxi{ToZ{-dZm04(O*h`0tl_QxDz;=nrW6
z2L|8k`J$hCTzmBOa+zs5nrp`u^9&+>R^pjWZx10`taN(IS$=)j1n(1i>%o5x+ze=X
zcLm>TI{LX6J#A9eMQ`jr^g082yMy-$J?DSe4*)4Z(<=p+qUq@8Ui9WHSh2v1R^CPM
z_<VxRXZ!VQ3En64&ICUP_%WdAT^f9^>FDQP^vI*QWbVSYGm#Ws6kGBsdTbjV0o@(J
zdxh>N;9me=1Dfvl!S|Y;e(psVnlt^o#GoG+??bfa9KW6uZuQ$u=uHEk3CsaBy+y(I
znvQ<%MQ>577n)a(nzQzyhTbHgw<&m^(0d8|HQ)_E)B98Ky{4m|n%=VcOWMxVYf4jt
z4AYUuMP?Ni%M4FaeFW=CXF#v%w%oit5qu`F2#{LKzWEp64+C5C@+54#cJKY=oYuLm
zOZMJ3dmoMRHk~X4IHH;puQiPo51Oaj3+sU+jrC|>t4M}dpm6AB`ikYNT}ei?1MPC>
zYBPM5iD3~My!%bUg@!LPOJnjIIYSE)Rz(GJW`z2LhWQ@}8;p(~<yzP&=N9Zp7+>S}
zU;6f3|4jmK1<nR^{kDO>0qAzr&uw{jpvzj9F7qn1biwM@J+{%_XGE%4y2oeB$k4d3
z>yKrVwa)y&cmH?+XAtDos^Lc-)G&PHL5h$q&gqp4UpI#*4~ohGf;}=ZQcO}`m{y-y
zQ*?lpj(x%2i(K;8W7UC`zn%EG8hN!+m#Om072BQ4pDU-EU6UFRZY(Og0Hxe51TS>g
zi2VPVrGDXQH%{c*D=OFI$j64zNc^kHG3%-1me;ljX>UGkhLR#UxkozBZ?|FGF-nnf
zI05_w;KblF`9`;sUMKYUlcCptus5NPU^kVN0l3uonDeEJQju+qnUtGTqcfn>!8`T3
z@C<k-upQ9-Q+_8t1_FVf!Ps|wediWy@A1dE&1-SlbZj;s@`E`4is44q@(V2PYgrqu
z3(eSChMdH^X{;o1I3_Zg5Mef?*-=d}H)4%e#CBrYvU;wYoh!^Rd24#}xy+isD0>2)
z9wY^>raA9oV@!01&I|nZS_zMOeZLI+7T_*G*W+*C{{$vI?ejnBS^pW%*F#|Hq$}dC
zQ&*zXCnNp$ruS$zR-B0y^qZEk)9Qv2IUBP6V#fZ)8L5c07>&b1Tu-@*sL~ed6K*mv
zmNd^NX+1TLTF%h=NNv<fr9U#mADWI;>6946nzU~*aR#bX{BjJ{s^)^@2C3RG>3!^X
zF81p;@h+)}KOW|Tw*gB4EtggY-|KOqpL$%#RjgMpZz1)@M<ASDw5#x0-b*+^r#+y%
zHF&R#!#{z)5Bxts)BQB~UenXhedx}WOZ1GEh}-jtb_DdAH|F|rGWbGZC7}DU1N;f#
z#(Vw#dn?Eb7r$=r@#xicN$axZON1_3p}T!IunYZ1M6^RIUJ+3^6c}Xu19iIuLLnU$
zw}xR7Gs(e2v<XosZN_8H#g2WclP08c!4-~urBfDjP{=c7&$hd(C8{4cE;7Q0BK@!m
z<6dK}-*4f&bM>hKZvut@y8TWBm$IePug~^8KV6A)wuDPzuiNBYR<hIlrS*<!?le=9
z3TMS97JKGe)qp{+&F$s!_Eal@LH?-lR5yWtMY<v_C#E6lWKQ~h)Kqh_eUPfrw*}}Q
zFZKECfDb)?egobKYzH)-pMXorw@1+ZoX2F-xd@*VIm)g0yJ`HAtByptF@(aA3yrAL
zfFE6>h`Yh+NHv;BP@p?6^Z97LCnt}N1D^$)4hVHw4+q|hZWNeQ==ZnX&wsAX%YQJh
zO%HVPaQ)Kt5^z1`NCK`EABX7iM?&nG#jL+5n<OcAx-d!lDKQ_ew9|wzVjxIX8l*kJ
zND%*FZ!pBHghj+0GfoDOD!cM$PW(oPFeL=vPN3Ni6O>cdP+~sfURuGbT4P$65fmj#
zit$52^g92~wcm8fyflS3hl{!1lZ7RHw^_8tlstDB^Bh<)qYs*L@}-pc&qj6V9={Rx
z1m#3US@1W~kN?EkfFRxKGqSX*>rFyp4^Si26jkaBiH(TQ00zjl?>~rQZ@!O!vZy-y
zovZ!!-auQX`CaDsgW!(<j{{QVr(R$3=QZaLG+4B~VhqNNkHazVzZe^W_kP1Ww4Nk(
zpE8m_0U$+w?$1w0E<|U`zLY;3Z>$(^TuyKj5>kXCsDwyk<h_6&y8}A&gLex5XMvv&
zTm<NGdu8yw=3hVcxaCB*#GhOcv}@|P_g&FwY#_`DR<?#wrcyq|nrlXT$PV78=gCLl
zyMZqNP49bfDcX+G2;x?2dULwQr7iyA#)?yndm^MASAzivj<coJ*gggHCj27TKa;>u
z22KSuz0<&@X#KOk$Mfu<z0D}~$~4u>KHyMea|CleQ~+^VPn&$d9q+#zn*(~Ac%L2*
z&x5}Lybfr3pMw7oJzYOd(r&uS#PV*%dNB>fI3J=ySVSrt0QOii@~JO&%xW?(Y+3KO
z@38xG?Ry0HiNG{K(?1hj%Kqd~FnW9&gwto3El-NC=86}vB8v84GP|Lgv{+9_EGBN(
zOW3<sq~K$j{gS8l?6}tFV{<@9#?|k@KLkDoG#@=4@cGc~t?%!2JLJZdAJeP(QBiiD
z0h}!d=I1QzMQdq_bW$P%awUdJ*3ZYr{s$YBxD!b`X@_Hdor;IE6;YnVR<fO;{X}x!
zX{y^ywN#(7881Ke`CbEGdfq(&{vxmo5N<_&9^HXV1^yMp_iPX1KCaD+XBmuBVZN(M
z3+62*!C~%$d2OB*`>Y`TL8tkK{fb1n_$7gVsN)b6B3G%CM@;{XN$B;r&67)~59Jud
z1ts5J9V4{F8_~p@#FlCfKWV;!=nUaLi_i3S&;l$J<CwKHs$O<1nzqY-9JALG4U?2l
zu8WaN<$xFoDUgM+5|X_oRnt4su$$f%9r}l8#cNUL)u{Wjc#cl82b#|*d!D$5on}q;
z17G`m*(0pq$cp{8X_s0#zM6mTx8qjYNY8^e!QTcx0CYRb7&ISLMsr>qhWGRCZ%Oy2
z7a|NyS1gzjYUyU2$Gt4EF{yBxNDI9$Gehe+9)!$D9MQZ0q?^$h@G$`zx<6aM7Xs~o
z9)~{xm$E;7v&@GjbI5-&Q4~1Hf|8cc<nGvIR;<1OKQjUzu;P&?kGp~Hmc=^NliQG?
zNd{pmh~WAMlKknBw);lEeRc+PWqy1C{+;mjP>!!+a4GwnAKrc;@DI&2jbgV@iHKUg
z(mN|BaI+(X8i&u6QzE*&R)S~optRrQ({BmhFZ7p#uK~^ny4of9Udwy^)Pvchzg&B$
zW@?6d1|x7V3!CODrkXev6^gIeB=5|=GoZVJ_v-%G1^zFg^Kg!C4Y*hG>~1vOd1s16
zf!7azkbY<aB0y65V+)#plX>AqIjbXuOm~&AT(?T{_7-slk_+?kY8i`rPye)t5WmH5
zkM@ABw8xLZ*8-OTx;?H9zSr%bpPDbPJ(kLPo@wffA=2vc#x~l41EYU5NCkR}H37Yy
z!TW^XXW-ue{{%EW=MldhG#&lii{4_fjp?Gd{fFpv2J|NKKE3YF244)E0cd(>gG<?;
z{?@DCthP3v;!wt$IJK@m-FVBa=K_sOLFwy*Fs1RwS@Q<JUAOXHP4_ME&w#H0P51Oi
z{||JvzN@6=J4Ih_kdE&T^d@BB>Z=^%6SF7TOd3K-Vx=-0*@wD^qG?cJi<C#oOM=Ut
z1U_E2!`!q&4UA6<%X@a1Dmnv04|b2NA#!79r6m%MRm%M3_6|cq&ZH!CBSPO8`qC|9
zKslCR45f=L^_{1lpxrue_3OKd`e?cLGWZ+79{^q7zko~G-@edmXAJ4^Q(NhEZrcFr
zc!g>F3l&5)F*l<?BclrXRcfwm{k_t1n@@k(W4ZP|68vOf2B7J$0+;e1`*}GBCWv=i
z$3o;C+%s3P*I0eIGA^(NaHW&LP;>w}$_J?oo`d9ekk)w9<QvV7(SEzn&sON^{(lqv
z17H`R`S}L?zw+a=lOc@1*;FUPZjNy?e$+U2(Gk_ed}Yk_!K;(U&VX+7<2ky=gU<ry
z0-EmS;Qy8Ge6J5^hFAS&DE69R9a6>`U^iL`P9iRr9%VFzgbfwwtI`(gtAs1QWpA0x
z2fs;n-{H5%4(RIk_#60Fz&C*AOKtM`+TZ@n8z1d$o|&_Z5AW7>^$6oN+Jn{*VbddL
z?TCE4)2BOy_v&$Z7Wjq0C4f+qea-)XZv^x{`11Asd3tPK{1ac!E#pW%FSn7IwF>p3
zaI?-_D#pjFe_|SMN(Zr7$v!AYHx<3#LJZ5OT?u<UMl+gm;phzb+YN2KF4#|?{|C~5
zZkH->Df_cy^!W;0xJxG9DIUSAx0=SgR;_&@x8DAY9jYz~ChUg0{C1fyba=1G;j_Rm
z0M-JU?hW8l_Is}*%7xasI3rU3lBNqxnXX*t{LR8sp6Yi8xObKs*W$w2PY@{+H~RE<
z^L}0L>R)2#2Mh#+s`Sf3@Uwv(LEJ>0-{f}1T0_z60Yh~T2``D|K8K#rpUz#rc=q9o
z=eG4<K|~+VS9&uJGfztw-Kb8srn9kKYu8qCuZa#;b?=K1j4-zwLy>p`IOgD?%%zTX
zu@h5Inq`HI?`T0;{}g{7o$A#HJ#G&*(7MqKRf`NDXud_xZur`8k6*t|c$XsW`!@Jj
zK<HPw`kf7aF_6E{iRZ;(S>z?jR^*Jh!tt){>b#$~ni7ta6kl>A!z9+``JBVV<7^Nv
zjK|_6>wI%aW*irw{~Q$mZjk%nAob87`@uo+-<m~X?sAFB6Lo9SY1={Dh}R>z@PMcz
zS@F<9&@Og0+KsrRId!RiJQ|LNqOpN}(j$vXysYXDnbmuedW&O;ajM;FZuI<LXQPoV
z5~lF(vhBDFQ(mdL-*1;4)LDwO%ctO<178K7$v1kv*Uz@4UCuqTTIX`eAGgxGcQ=i!
zX>7A(xO$~2cz^Sgx%W>5KM9xy=y5$K_+GzXKlRA*^x#8ePJ5A9vWGFDG3W3l41Q3-
zGH<L2=ye3|llnXl{tECqpy_=Ye6Q)~r=~}hX1C76n`B|Tr@JU=`Kd(F%OVz-!Z^98
z(!PXIk_aq=Q8hMZ3c_Bpvr+1=-i+S-fZwje{x?_e!@(y4Cjgp{lY{Ryef`vYj3>kN
zd_Om;r_9JU8dpNEOPR4dptF(pG|}Qx-%a3KfKEWD%e)Oeh0X?8pJ(?!<;=b3t?1d7
zh^awI)8&fgtr?wPwidI>4W`{>%`xt?Yu^&Vu0nrQ?v7CCbv!jB=w~kmtGk_Vyija!
z$aXvCil46KHOsZi4=`CPhLS|0yT%MPIS2rw<w3ulTHviQ;C}`9*}xh=x6{qwQkwQ-
zC+hQ^I{>s#!cH^W<^_wuMadKWe%M%FaUmLf)~2a?ZR!m8*aaOef4>!)PvaX1Xg-R;
zrRa4j-#%~;2Y`vAj)jHk#+!lVi;(AfME0eJX|hJsLw^0|^Ip9Up96k5a1$WZr2jqw
z{}#}3dP;*hS6h$TyZ>g+K4bX;@<1-1)5e0R>`wD-{}7K}KPv(5L;!qZ*+VVa_}Iw}
zUS~$GQe2J@79A&WdjR}~)n?No=K}`q#iSROtTDwv;&ZNhydM6{ER4k?ADe^^<+4GV
za)$l9i9xdYu2KsvE_IUP%!dfn#H7`*n|Rc(@088C`Yr}P3%Cl<_5B?DJD?_rCo?I?
zYq53J-t}G5y0Dc@kX`lNX})ZG+Vpp+?<y<+C6a=&{-Nx#)}K&^IvMUp<D^{j|DmnD
zpQC!@F4MhDIomAmLmNXq&|64tozOrl>|{ynCo!yx?Pj^`lG+n3|4bLtNz*By>IDc~
z@xt@}8OEiS-K;h!^%7%d748u(`*}rTvd~cH6RDn8);!_2!w$C6dcB?aYh(j(A|OS6
zYCjh(7gV*8tu}5BReOKIx)!`=1OG>lpNGJo0G<T&xZMISWq<qZSu^M04IU)!k(;FK
zNaId2=;U2<8#@Df>1T5E>cD#g{QymGDER+{9+xYK^nl>~`x31A<!J9cYl8QQe7hd}
z7T{Ju)4M15UbmBeYB@^%mbA`Y*gAVzS1lW*mZOcwAX+WU$B?eed?>aDbiWDSD|FM(
zDx(A_2Q=O8;8HX_{oI4@B34Jw&}d$h%*crcV#1XjVLTT~+V!F`?I$|vj)30$;C({x
zLh#Fhs{l>!r@{A{j(+|iJuHiG#od$Wj=hM&_wIo1&fvX5_cQRXfo}m#_xs>`O;11f
zpgVinN;#$3O$|o27wMO{*D#Fkik79+{L1ggiReW1IGqW;1Xuw`D~g<32YwTff8Mw~
zPY=gXofm}LS!b^IF9Fwj#sFEQ_8PaxT03+h5y{f3S+ue!p60urpX^9=Dv_Q~^b-<F
z*x;+Z4s3bS=WiFZrARyc6Fl}C?0x{<4kv(1(ec8^-r%20bUS#fbzm>T=I|lQ+ZGP@
zc7<2i#zQXY1f!xamw#BYdrvU5b%nvFqA`e)L^hk0D0>9Q<|@4~8V?=T%L!MEVZaQx
zXPbX8?Tbmw(sjUXf6C{-Bj8W?{|$I2upJPtrF}mH|0|&TPe1F;z2z#Kj@hT@EVY~a
zpy@uHEoGL_jrWn%DD>EX<f8)$)lq&>jPYuou+o#uGeX%=nx6Lg8TMSRzmEo=2Am4$
z_FM-pCBMIQd&0t^MQw|9i?-Y>3YR<N4j}shsU7hdjmQRBm7z`{^A0&m*yUnGEw{hP
zXgA{2q)8q-wxDppkf@hQYn&o5xo3Xt(XIKl&*v`q&~iBbJo(OnZh&sLN#JvV^}&7a
zBSBo(qkgt`y9MrlnteF~iIw59<#HayIQUPVUGQ4#Tq<y}V_Y4nRYhN#p$|;iQ%NR}
zo>V2q5x&rk*Oo3#eyF1F5rXM`75y`L3NJ7{XR+mWU$xlkAL^+#m}-?=8V+S3qxt4o
zi5mcJeLpd+2Cse{&-(S-4DWj0y$b#ouoKYz@DFe)`&%F8%@$)M?@-;;%Dylz`$GJ1
zwnnN5%8ME(M0`=OB33)bv1l6zV$n4`jpi*r9}~9b_?Q8H8n779d|V3tpZHje*#q<5
zXNM-uG@SuAVc`a=%}<D0qPdY-kKu-$l?xbAuQsaI96vh)es)4nx660nQEry9fN&x6
zWjgp=K;QrAd!em)_tSDvkT5p7;}>zEDm~uPAp^Ea#_Pp$7$p^uxyV@S-xXPII98Oh
zi%Q(ARU9XZthH@~>{ke4WLeLTz_(GA|1o5}6|(;ra^DWg5fC$G({+gUC@p-D{k>_9
zluG^DRP|<e(uQHMVsXb~v_I#!_a=CkBJ!XUd<XCrpxgVK;Cn3x^i$VE>`Yd-E}M@V
z$C8EKiM{C}(J5p%()ZLN9aiarRFXR{%oXC2If&WUAiSwL!dT7oJ|7ca%<ZdN!IuJO
z0=k_a1%Da1Ac&JZ<Yiy3ZrQx|{F*&;>D(o4i)M@`GRWdRC)Uwob^nel^XlcWaeu6#
zupo>m2xXB9=a~;!nZ0LH2L^BFnLo|{_<GB`JzT8rmD_ijUCzB`STJjqC=_;^oTIzu
zn0b>K-s4x7DcAmzU*D#ea`NN|@X5ebK)3q>a4Gw{=b@g<+UD(D$)>Rk^%XMI2?X(O
ztig^_!?F-50_7rMx-DMS6Sw*FJ9vLO==Uw)uL5rXn!dBmr(YTP?=)V&_c{jsoZPZI
z%quLe+&autjqGmAxD>s1RP~P6c6WOem_6!<i(4K=%%;&`RHsVH`ZlpSKDtkY1k900
z0!yev)Iaermijio?DIDT`kKFa;46W%0O3mJ-A?c?fG?l&`5N-P|J;@*Z>5Fgpo2-^
zOMbk8dw7U6aE;p&JxKIx*Y|u{g`QE#@<{hcyskP*JdZ3Qp@@9lL=TAeJjFTDTRTR^
zqXX)qJz{8aoue2vlgUlfjTG74lRY`dJnrPl;(N$bL$fnb2+M#<&mS%_EvF!iU$TBc
z7)!lg4eI~foZLALd<C!?(DlC+yaOl-&Of(5<k$c5y!v}v%O%UaCTOWc)U2~a*1TaE
zFDHBa#tLn>QlW6DguaPA9m=c0Lm}^MKG{CNW8PXN%0Sr?9lS5^n_u_&4!@l1w`%ZS
zKtDi_t5M)m^!Zrp(X>2aRJTu>FF77PX_Bc~z(rlW8!Quj=yLMA;Pr}EWxZ_KI9I|@
zqdJT{v>;w-+3xePE}$cF?Jn?#fX4vM$8*8=TAt}=jt}fa_F`lnj7XT>Ecd!M2qUa!
z_!F9pVqs#szjo{n=$F3Y*Hh?E0G|rX1msg0zt4g10MZxu{nj_=$Hu()M|-x%Neh<E
zKcRKe%-kx{zF^M6)?g*sZ2lNcDb8{ac+PU!3!Fhk0}nFZPO$|Fm#{QQk`&oTy7mBW
zj=EuHV3ArWsroxkH3R&jVO~%{?gOl=hN(Ea4a|H)<;hSVFv65aqv<Lqtr}yh%5l3t
znk;%T>C~ssH@!H%N7+x9>T=V%$qWr}PM4<WRNN(8s))+$#k%hNz27f2ow;@y2tEWj
zF!)Tq(fy#Gx<ANr<S(GA)X0_^-=xK^gwEU@ymu|{(DLFb@ZSP&1G>EreU-a!K-;zM
zyw7j<DfxbTVjraYecuKT+>K?s=_%dVvE5?H%5uGg?8pv3F+3UjPKP_jh{=v=O#ymc
zJNi;8{4&#wOJ>q7@jIQsdKfOZ3klL}f0b~)PB=K_mVA|ne3vLep{=5s$!ba{NlgAC
z+3aCQm#8U@CsKn6m6381gmoTNaR{wE-fmZOxyRp15Ka@12x<A@Sd)@f-LdLJ5hvKT
z857_1+kYc%AVtRICh*O`7C_I7cZ2VB`|D>{KX`^N2vpH_jO3t-e&SA&N=7hlQ<yZd
zwId{7AsQiD6%=CUVi;#Aa+U53=r_KWlWW7l#{q`}n*LI7Df#=Uz3F?gw3^q!K=U~x
zY4;9gyj#dPw~N!{UM6M*TmEn|<gngE-C|XMNv<2oy4eaZLLc$=&2rU%nICx|{b_5Y
z-}2jMYd~Mx=S}brfL(y*@0;Lz-7fmMH-C$oWb0Wo2$3N{X|pGjTBVAZHgf;RRC77=
z9_WV&Zx84;zn*KCW5HX1Ie@17OYr~LF0H<Py`=f?(kfMem%KFllx@735nr8%o$gI@
zgc3xpBcHIUI$WKoBs^L?&B@47#TUyAR-sf9o6S+NXg7AE2w5}PEs-eClAs!q>-`<q
z(B8^6#{Q#ea+85_M2#ovA6<=};%&bjOSk9h(;NI?;5a~PA@Xkv_#c7#xBYoo6vWB7
zJkPEdJ^Q$sv*%BgC495_h~r7P$9)M`i~6p}j+l=5xNVQL4n*FqFs>`Ey+YDntV<U0
ze93a&F7Vax<srhO5f<4=7jreu?mrw=#iZmGVc3^&!ItWdFw8pSt>`UcubRu2G%c0>
zS<2Vy6|PIA%Mg8+6&2l3<eZT`3%%YdPx{TYA7_0xv-T1!I96NlnW00(1QRQFQw-o7
z>v0?9-YBBh;|S}Q=6C&e8uo_YuQJ{yf=>rp0NwAagYWe?(@#C#c%CqGZtFz3VLi-?
zTUK+v$*`;F#vc6Frtxx?17x_AwTiw(W624@DU4xXBFUVBHA^^3zvuJQ2|azz-3k6z
z;A=qlTl4R*#RbL&`Ch&Z;@&;7ul@zEMCrBm4=uu=+-tTmPoJ=mjbE9@btPg8CkI-&
zw91M!RQ;m#3Q<qxJT3v+Q>tgU(vICx<lI^0ct>85f(1^>P1xg7iAY&PMt0ou?WK6e
zj<xSHNv$xSNKbsG$xyG(5Bz#<glBz@+XntS;7vf+EBbr#c>-GQ+#dK_uD9B~4%6)|
z=gU28<opW-qF^tXDKfGB#}f8sl#xa3ZZ1u#@@xk4a%TK`D|Nobs7%Hg57HAc!cs&-
zl7lxoqZgWDBtl;`R-I|K7{)2gx<ASQpw#?7pa1#rCPl`{kH9YiE(J9Iw}amc=<%V?
z>D%|=|4fft>6(m}mAdb-bj;-hOf0LC`%=#85wkd&d{PxY&V2D~kcO!vWOmOXkW<#<
zf_WbBW$eiDl?Cqs90X{-)`8yw=zY$xAP#l=gL}7Y+v3(^TF)FO4SBSTnsw$){&u~a
zw_CqWc^9S;^Kfnq#G-J5v7@Xup2c*!^o30N#f;>T48y-~>FFuPqNSM2R8t@K(`@|n
ztb0c`vJu0|NIZ@9$Nf!KZOJ;%X5FpX&}(Mpx7<Y~`ccV7UU{vlE+bg646jyPI_@{c
z9F4{Fa0w_vp0`jm6&dU|#JZ10dr0^XxppW4?*{Y)bUPdgJ{i#aT|K@w=G$Q|X>0eU
zP0RC=U^IJ^Nq3AfJ}j>d7s_ynOX_Wh{Wn#-qa<=qNus@|m8o<fydG^6qJb+l!|?uB
zg1uMwpu3DUANzc6goiXA$~gKJ_!eL*pykbOa4Gw<_Yo7muHo+KR*o>Tn@wYLMLLY`
zf?Z;ia7#|M9L<_?Q^j_&fF~;l(M4EwxN=sr<o(Tm@%d?fGsn*{;HLr$0O3N`iJyVr
z2^his&X<Ax>c)NJNO;XQ@e1*Kn+Xh&aXk)&<GFO<Y~z{A9-c)q2B+VbCeJIw5P1+2
zvVsXn60x%MMP)HjpRha^#=MB8L+n|EOq^hj5#5mY9(;~x3-40aed6<P{4pn2Qs521
zKtS_98~hAl!#(~ww;}Lf+4=+gd%K!-CdNAw&}5AFv%(wx$1(avbpF*e&a0|Ld|)s8
zm$LZhW!7h9&X;8|Rr*D?^vkS64J5%+6fue*RnczVey2l{FqdO5;MqOtchzAB`%oZd
z*hl}>ug_L^l_KNg1MuCz7l0lg=3D;vTF&UFmXF@{a8fJwU^ADsPMR<3PLVWC<4{dR
zurth_W;|AfouPQ#JKh!R5ngPZmcRM*CkF2q`saXO1Y8RURT&Sz1%C_B^GNI4cIEBk
zm*ugb`CBBmV(rV8^an)FG<|7`!ek1Kdl1lzJ;Vs(E!tSrgbs_7lXR~scdjdssifn?
z)0y}s<<6D-#_&$N=T{c3tz-%7mR2N`77^Y|DzLtocJ-8L=)IMVxP%-G9JJSb>eq7^
zmyJ@Sp5wt!0Hy=Fp6kGG0P^ekh_kocl=GoC@NuMJ&v%^chQBfgB?gi#?Ye5&5*MO(
zEn<O<A~aGeRb0%aLb0k)u_r1MPgWLkd&z#Ur*}Ik0&kZ6rD+}_+>`Y(Ve%TU)O_ai
zy%V0K2;X0Te+_&ad?w%M@t~hw?Y^{q!D7_(qKGIqvc<-m)kSiCYYyH!;q9Cpm;$~K
zSPAI%*a5x^I4j6|)Hl#~9F^xc>Wx2NfNm4B%Ts`b9?&pH(!-082*{I9Xd8*Tm)zac
z{r6~R%@|Ls`um>6+k0BC_6!xKLX`)r(Hy)!tw?@ZL0Gm#-%+YDf;tad?(2GW9hD#N
z6;j0!&eox9INIB5#X9dEp|3ieNU&9El)1~x7CKfo&t|z<jFR_Yygz>w?(IHGtcEZA
zcAfA}PL50iKNq+L(DnZoylCgX_g-uB>@(&|u#vfQ86=GD@l3i)#Y*F1d^0ff_2DF*
zCBOkP@RuAAFC0`5a--pHL;qn-C>ozKp6k{F#Vu<}DD$itzp!l3MP;Ges-pK)g+gVU
z%y4`FQU)ms_}j^nXpdwxS&bDx5+_zH|FgjVDSsCYJ5FIOpK)l7TNN*q7rj{SNIHPt
z?DAeUnRNsN%P?z5ac&;0PLciF654YRsa2y^H}fAB%UH^2|JrY-`Lux^e`kW92V4kf
z`E*V2y&ix1smGy&W|GE{@QZ;&nr%E%Q)QPCR2+#UrkP{9qIGd@4e0I)-Yet&-{4%g
z7#TqK&k5kO0lm-J5ajDN9^QApdTXfcBH0|jW3pj<Oj5sRZ<J|!rEP4jk!jm2l#Ui)
zX%Ty`I`Lt3>`%p^oyD;z{z+tMW$T!(d%iSJWxchuqRNx^r`fxFb)&Q1vo*R=CUOj`
znl@CMUCL>vS=w>Kw|={Bg?GI_ejEH_;447aui{<KYJko+w@t@C+D9ItKiQ*#6EBnX
z_<&<&s0H?JGmJI0q81@iU8qVtJYKC*uT|NvR>gl;CCLe+DW;Jq)n;>zb%d<Gx&LXb
z`-jhOJG@Ad{`fKY6~IpbJq{iZzR#DRdK}D~os*n*%ZYh{NX~08DuuU*oy2j`WlEEr
zwQHoqnOm5uNO)~L2dzw#nL9vr{L|+v{9aCum4P<^y#USE$>37Hyxrdq=s2C4uhx~V
zvk4(4W5YkmpD28Niok-ejEo2PNygk{EYzJ?PuP4j!(xP_=3vk4D@+te5@yQE$Z9m6
zLy=i%ms>}QIQL7<zkNP8!AF{pr2XpOXWs=}4+wX%&i4HfpJQNGwLgC2C;87I^=Ei5
z()^NHa1Qw5nX?wcwEncQ_YyDY(YVFS7xn5dxy$zV-5fUl`+j%qk~ytQ2m&X{IGUo{
zX0_XVTA7>GD{=4fk^kEz{^L63eHi>!?ftTj&uF*@RcvH@o5U+Pw!etDKbQx&UGnbF
zChEFZ<;UCd7jKCh_66pI)cC6%<Nod=R6*R?+=r;>clAbV7j81+s_@R<wko@$cOT*k
z7F^t&3$0Mt5)aLgveq3HB5G5Ss=KLoZB2A>Kk+Voxz7D)Z1|J0l0Yy0N?qx;I_rfx
zlna;C`{MLX!ttf=tCN_G{DEcNU01@s8P(=^Mf^Ipbs^^gv-EYx-CGK8C6<63>FdJD
zXbDQU(i)rlVTs&c6Hg3t-lz+ITvt1&_@|bf=djWugjjhr6RnIUAFK_(R$EyfQe}mi
zP;of%wpm1|a0z;g^!~j29^8J>y>xeX>#yD2!X)~SV*Vl)>TMN`AqCc*b?yUosgh(B
zi85ib#!k5E=nABNL##$Q4UEv=*M#4!k^j+TWg``Ts7^hEhPgOWql#lrZ6&+Y;BCE1
z*@#GmYYMtWx<z`hRusG4-zRHs#ng&E6>s)(@9OQY?@bh{$K@`CtSGNbi06@3i#=Ig
zpww~XVpW%#;@Oo7osOwNGJ1g-Apm}P;n3Ll<eO$eUD1ln;OvZI^4|SOX2J2&9@Z?@
zno*&V>PUBWluUvs_DiEyq$nLVyCq5s`xjhe7P)!_%KX_Z50|}aR)#BnZ&D5Zx~jC=
zs_HNc-GYzJ?%~=C%xtRo1G%|%NlNHXwa)MuZ=Tfrznokh1U?Qp3efZHH1H*WKCkQb
zswm%%ov5H(iujh73t75)14$1!B~E4xuQonxK&+xYE_}2;{A7J;JcTL?gUd+D^|T`6
z)kWTNFqtZ>_L$>GN5toIGdxHUdGLGicYzN9Ew{c4zSsQer=Ia%x`;jYcqLvkhC^hF
z@i0*jdmvPaS<T@}*__(l7zW59*%y+i$ZN3nsL#j5UAgvJ4So@D6QJAcL+~$vIl(#V
z`bT{^dcm*vUS}69J`G#0d44)^&E&j=ZL`47XkYH#y|=$3+L}lk4LFOv8Oe&w-aHTH
zuq6S}=Nlb8P(+EcK!R1=R_EMaM|?V4-CdXdWK8VWHKn%uaGmp5UDf?Hl7im-^O*R@
zW1Nr1Wcc}TjVv4`W@R_emi{=qhuLCJSI2l;Y#|m(n=z|f*m0}u>QJ2MAQ{(@<7GT(
zhmUgoF$??*U^$@s<AvaRz2DIH8M>;TozZfU$zoOVy=PVOq<t>k@u!gSu5^dZolvrP
zadI|!GQ1>G5duC&irjcKnc|y-$`of4#j$ENFm(Wvribd5$*2L5GF9nj8B)YoF2hOn
z#EQc!ii2Ip%_ecVvP3Gt$-fSN%NhPT!W&mDDZgHgALsOohk}m-CIGr#$Ae4RU%Xeb
zKK7MvGiWSy>^%tMmK|kW*C_rZl34(Mk|KHdr6Zubk@xET&0oO30qnoz#?@%>$v{h<
zAK&IYJ(bYk(@Ay?`kHyU1&pv^M<3I6(&)WD8Sj5W;<t^m8M;=<ZfH5PkP9IbTdP|e
zWjlnHwjp8{+)*FiSfBW!K7B(&NjY1NvItjoAqHd(*F0kJk;Wde)G2b}W~!iGhSQ1m
z$!tZ=H8WW6j__SKPFCf17=NF1gx7mzU4h^J9n?{`!*9S}13m=g&n#fjC(0ND<liel
z8Q*)|pXb}1A0EWJZuv+KTi<#n@Qb{f#mvDN_%<+)cB5@=?D5;G&}&txaOp{V)G_vA
zL-G3RVD40YGA49WwYV@uUvFRvsrL@eyN}*f;|;W96jy9V=UqwnwEY^#V#Ud7CS%$P
zCAt-5@TueIp>3Xu8;qKwpdF~AZii>VUj|+U^f-J6T+06J&Vu@T&fb}tzG&QCx#&5@
z__|T9hS4lJp4BsP_qbznjrM?U<6m=h4*{P590_Q;Q^Ef;T_S{_+gP?Q<(qr`AZ71$
z#^!+j#^C)T=br%I0z40B`fmi^Yx%C9TCU7%lZz(NRAp-V>sn7V?(bE_E|l}1Lv9%f
z^pO>fHYHu`w|C>;a`m1BJ`-30=yCUN@F?3{E!TB^(E2>N?$d9|&94PZ$<TzhXMEd|
zw&lx$<Pt5<+6>40yy1A<+~KWn<1Wc;i<$44bB}7BW^C!@ZKi);?#lkdR<D(#%^^3s
zgyfK;Ey1+8`wFYxY*fVd!^JE-X1m<r6*IPCQTOlWp2PT)9wl5RRUcwCqxw`Smu=g4
zaU$dT(+Qh?ERb*{^@noNSC_bv>nd<SAJ5bsZ+~q;@K;La@o{RnxkYu2<M&JwiB0o+
zk9E4#Z^!wxQJN2>|5kvn0?q<-|E&X;vOoQ;<ng2P#u(W##xuQ>w#~{DXwInueKsO6
z$Sw2f?cjZy-fr-J0^b9g-gsuWlwr5|>u@~C6RgJzgH<yA5Dqu6tF~MItmvEHa&`Q$
zZQRp`tL$);@LO()Q*Bo{XoV#HhuC>^i>K0=XhmEuP*Rvxv2nwiOkBE(RXJ*`ss#JU
zg5q##Nugm(uxG31O!FDxOG<Nv&;RxCr|0?o;Ew{E0L}kqa4GrwFU@~G_jnh<d6RKZ
z-y~y$UPBuz|Gzz;7yitDpY%@ycoQ%f(DcRy-|Km$pFc!z2Car|t2fsUVXjq)gjsGp
z)K^-EJ8sUSG2dq$8<=3e?bh`U=m;N=g8v$L0TAvi;4k1`1NrCUNqKg@d)9x(yxC_4
zNoks{5sgxlZ10A$o4MCCw)B-PUhLvt&gH#033wN(MIMiZ5?n>jqvPz8SP;rZ!xQ``
z^edHqKQ(`z>!*{!=K~7?-EKF6OVM$l*1zMAw;yUZo!r9SZ2rp+Ojc!NZ?=q2=rgfI
zWDk!OFvm7-93?JD+P3Xuz~ibHcSBVKLXVckG7PFSxX`UK4?^!h$s^8>HPt@9y90it
zeKTK>0|uxCG`|DErRe_E&;9Z{BhcJ=z1>J}*Gq5DGoI?lnV+c{#i68|Xs7&Kwz~s9
z)<8#(?`y$t2Ob1;Kf7O|rvkKJkj{U#HSgX@r1~C{bmBV2PURKZu1sT9ql>Rl{CLwe
zcJ}idv5=JBv0wFep6Z=FRQwR5W<|0%6bs=FR2t?)j1a9TZ*UJOB0qfWrQXiA-Vs$C
zPTEyrnZq#~_e7*)x-J_jFCg~$3HFKVuL`paW|L12y*cEXYW?<Zp$@v9tH7@Segf$B
zejHqizQ5g_7ngmH`pw03l2*3cuM^$d5kLm$+s3@Uiv!01j9Eg3$w64x$B;Ym9;rG<
z^)F|0IRM#SfC^oBe8IFiLb6Zo?(-M^%BL^mp)dGQU<9E1;Y9H1fSzyP{KOx>%kt-2
zt{;TY8C;<F9$RvaVozL2hxEZagdO2r<8Q*M1dqC`Z|KUt9I3NaiEdm_Li0whEJc>f
zpLr!+=kwVC54s&+0e=U0572xjzQ%tA(Cw)2SLXZ|K0Qk`SS%6qU;kuUE7F04jn_4y
zYQMU)OJ#05*ObP?#cNBg3(2)ZyV|J~u{T8H*Ovfc8Io;zhJ6FkT-Ty4_vYU2fd6)Q
z)BIlqehqLJp!s+Ij%_}m{lYE}?g^g!YVY&m9^-+{1Y7epGT@&yWote+*eu{IT#4md
z#*7<JQiqIP`gnNHW&fUj>Gw(J;wg8qtad&qL1i5-{#}XndI^!(aLQ#b8^Lad?5*io
zOm*9s-D9u&VAgq}pX_sA$Wrt1_RlcUCi_b!6tkMtVmTZi73|_;k#u}OtRZg2t}wec
zw~lOXbNQV*8~pxVOWmc&IJ^=3HsDS`&y!8T_j(-a{?&5Hch<$~Ml=nXrpa<;*KT~?
z#FbrC+)-qyj#eRtCfK!d%4+W6(<O0z7u`zmI-m!j>Glu4*K$xl1DVt1EIitC7Cy|U
z@5krDrS*n^Vy#b;bj9at59qE8-YfOJ4E$=~T0qmiBlv!Q^_@AF-APw<PnGJfGHx9x
zH<U@cOqPNIYI%a)EjUu{4(RR<-Yaxt-zuXJC<Zj$DsU;fp8A<z-%&z8zq(KDQ(dE`
zr{B)=gZB#EOTm8vtOqpRTZ8X4J^kD--NP4;nZLlZwY6);5DhIm!FYdQGK!l<xC#|L
zZC<Rfb!ZRh@8bP>KlruK{Rc7N0ZqRGT#DWgHV1iz_4ryebKyLhZ|y^oxhJ+U+kRmh
z8wTO`tL$`9BCZ-OC(4mc_6vRS8kT%)phit&P=DU9>8}D`1Dp?N`d5KVxjc}s^?^UI
zrcc~bKWZ-We}Rbn#m3e_$<P7h->eKlXhskxeO*9rC-1A_ebV05|5U~R;AlXoSitw-
zW&c8#@SZQv=X~ft-_JX@1avt#X-+snih5hN#S$y?2R^2q%Ganb9h^AUsHg1j(UhS!
zaLgCX`ErZcZ{Fb?Z93H4V_Gxw6Z0OhjJF37Ox=!z3+zz5I2?O+fb*Oz5z)jYjiIX>
z3&XCRNr$^Pu)lUy>C^qvoBQF~`m4eC9INn_wDoLStY~aieg9zDaid@Udwp;~`jVhI
ze$=Q;xWHS#GYaRFP{ywJOtXrK(p7&`gMYq>eO;e<cyQvp!F9<2g^5&FRgh9(Xv8@<
z%f3F7#B8p(q6F_hk@)9ez`9kbGu0{+5Av5yw>wE`=1T8NP3yU|IxCdszOWekhklX6
z<HKVeDt=5X6HP>@Fm?<5{Bg0CKG5Uhr{K2%n*rTV<^Sd$1{e~IM}6;d)KA-a%O1@?
zH&6~XZ?L!(I#O<5a0bN0(KT--1*C`c3!aag#v?;|+}kU3e=kBp+KIIL=s@?efx%A>
zENqqdN#xjKqW;q8bt?S)K=tB4_l1G(wt@X#8mKx4x~~j$UmJLEEKyWm%OxoyCz0{&
z*)co%r-{;MpzX>O5X1Z462cF-nQI@%4Y|($N7<XeS5;m8-)HZ0&OLX&H}f2l0AYqO
zBOrts6(IsDDk_jLDUg&waHz%^6%`fHTC34&i>(8#wE9%5RBh|@RQfp4)+%jjYe#9T
zK0a#e`(5Xpog1#u{@<O?@7{H9lC#%ddtQ6(wTAFi4~rx?2~$%bkJ~A$k;m7e9|cbX
zBM<jq_-6#>9P0M)p5nqhKOHMqn2So6qR(40`E2B|HZ1;cwRPEO{E1<zmyDE46c1ui
zjnLPQ;MLnUqJL2tafZega;Dc0!%76<+L?hkM&R$FwZ#>^=;@i1H=MFvtMxH@ldh9;
z_INr)Iy5{e&nkE|^ZxnJmx5b?DbGvLuY-Jj&Fs8;SSzVtB1_8<RCl))BgyOYYjvgd
zHl-5d0I4{_2vLbt+<%YI`$l-LjPU+v#E_qk&~J?JULWD@A2EiCV`}OJ=Y#d9M3I;6
zP41c8rk4t1%nMTU$e=vqJ`>J^apfH74PY}c<+&dE7LY%0O^+PjUISg|yamS8#tb8E
z1pbj@*xYZpcsqxc*(Cp3-os;M>6nfrj>F|GJvcGd6ZgcI`^&~A^wx2lnaUmVeIdUG
z;KlI!iO;8Pxr~5j+)eqT;pgW&!w>hX1BMv&a#lg%z3#nZKX;KlJ1UUVqVTyg{;r1Z
z02_eGcXRlAGtZfKlkeFJeC?1dX8ZsrY~4Q`+ms7!(j4ZqH++ud^CtA$;8(!p^V{(E
z=K1EmJ0DCJ{lLc4+5?aNCby4z=Egi4=GUa`Zh4*nJs+G5On#?@zc=}q_wM}WAjqTT
z`Ef4Kt}s6?sCDP}5cD4K7%=%g5&qufW8S;-n?-%(WcX<=2mi6wzA&Gxw!8gwuz0t|
zfr-Gh>wBTU1B#8lD2&JaQJ&uhuBJ0jvw6`CyW@X#ABn5o@n32Gt>h70J(k`avu+r7
zqTGYns(M9wJLA%WIRUj*QREn16g?*%t1Q>GpNy>ibfnGIgsd*Rd{o61qf%V1p6nE3
zv6YULT|KH|>!|uvd`O(7dW^Hj)k98-q+ItgmEEPi8E7(pA%{~3wBBmdwK2<M<nsNt
zKfolZ#^UwlZbgi&XDM9AF+qF9g<H3rYoYsrLBPm)O89#tU-NF{9F}`-`?^^yB-rt-
zV_TB7O1U-t)_5#v94TWZzT+f7ijJ^0Jxvdk9LERwZ|C`DoZJPy2Rsgp{9lCL2h9G?
z#N}F;Z^seH-{+%6sveixHNHjSg<_Oy{R?J_BjvvzReo?(p%Zmj*xbU!V!78@u1>(N
zB;=>gvAgG?Cg{mvCNTUgfnEvn^_9i>{169aK?{78HBV+<9s$ym8NEkw{=UZg+625P
zzA)T=c{t}E=y5WtPb8Db$O2;^XMDVIcUIx)z-pNg$mwzNH1p$cp+5xmZjP^0BevBE
z_N9aIc4Ibpf3o!Oa}Zffa`s7(f*xy#+%e;-!2Yq<A^l|LJ<U<bht7Lqm+)OVVC0lS
zRfq4_yX-a7zWc2r{Ax1S<DE^t?^-)2;<-*&MKah|6|<7^BION9t{J$c>C^P$h{h_*
z8B|}vB?eD(a;aPJ4lqBK8RuRRkNho`<uXq4*Rk{`(~3H$CqJ8(y=uDtO)UBI!@h~U
z6H7$PO4HH$$g#}M{UaQ6Mh0+7AH~kJK=e25rKrNk%}FH+^pLW0UG`usw~<Z%X<EZ`
z<K1V+vzLv3Csx)krTebSV5i*Rcnzi4qdF9&T#kOXMrE^%72?%V=Y#Q)kH$M+nvl42
zLTO1VolRH4Y0WHrui-~ubS#zrf+?meIa0vlDUrqZO!Yfx<qH{w>JpP8Q}jvoZY=en
z_KLh3??SIHm!6Bf3f^TEakhR|=`reiO24c1HIAqO-%!qG)cxF8nUvb5v#psgNW=Ii
zE)&s8rllTG^l3st7&_wp!3p=<=}1G7Tgrul)F-NZK$%k+sc@<jRn$+IcFzdfRn*J%
zze?!7pg%DEe;l-={B?@y|Dm>r#>N55apr*KT&r_(gTwKxE~Z*M*^)Nuv8YKPf>bv%
z$bUP}H~s&s(2sy8fa!0)gMJU>=l|}J{RDN$Nl)35OU_nH-tnC(bYMQo9)UpB)_s%Z
z6uBu<`iBY02L1C1&d(+|Z%ts!Si*?{f96KGPE?ig&+ML5&i8zO%N;aP@i6AtJb~0D
z^9pHpG{^Vp(C2~;!0>%L^fy59OTqri3GaU|%(IgS{r!miaIf)AF2b>|_&FzrbUHD|
zebKgF_W2%q(?s`<iM`mvNNbbDd2yn|V<C!Vf}F;@tZ?+-kDs}^Uu=!El<?nucCCHK
z1$=)5Pe$IEm~B;p8er;s7__9LoiD6j*D7~71B<!*O8;=OX!<dk2u{}I+E{-*(bx1h
zA0Oo389rauEw?~_7rX+D+}6cy>oQ>ck?igY<X8PcFrJxq=lk=JD8?eV?doO6AM5M=
zR|%f5T?MaK@e4%xUuwmO<&7(*Ebn00YUPSTCH;r<oEw_!qqW&|H1gwU!ShifutwO4
z679lybvRp2HmCY0!}ZgnqtB1#7q+WyTfaHHh{K&?&-?puEP)v1(z@abrZ?^k{A!vU
z3g63~E7Y+);zbS;3Cy?Ewe4SuMc$8(jlFm*3-Aw)W&Ckpji7ML#Mf6Psw&HL)v!LC
z5uKw4_uE5D6bmAzaNH~~7`&yNQu}9qY|{l?zd6|%!Qpz;t#+o^bE6G3QVx(K15=S~
zpG>SUR!~`7lyJR=9qZ8Cu-=iWB$0bGVOxcu2^hIQ5B)mGU%x+|XQz%{COG0@r~i|f
zzs0}B9#J)X5f(io$5f5}p&pYQ?fMu$nwwL5rpVQ2-!wg$W~g@~g&dHj<MlX>t>!nf
z;}i=4=D^Alj$aZFG*|6u9uz6U&@z3^l<2l8)qTo78&<WgsaLjde3&!JcD?>iRS^=T
zp>ciSnx<rDllzBZ$v+Nre>2R}Bi|a9>4(=;9j}e2h}5Rjy(`DMiJFP-<eHi8g19c|
z<(u;k)3>rw;-p==$}KjIp%!6+Ffvl*{!oj3i;wXxMex(11%Vu!leu}g1$q%!42&FK
zhW@2|7wU72zH;N|`u#>Md!_Mqyy=KV&;L2ro@w>btmkIy(P?1*&J-Do5ax%@F5y}d
z@p)pv%yktk?N~LWMTP4ywa#;!*|jH=ecgdQ|DMQn-1~QQ<+qgkI8Bmh8_DQ$uf&_>
zwq<n@rZsE;H*t4}J4*Ypgb_LX!}gtO_Eyb7saYqU5|n#fDmQM-fu0BE15<AK`*nQI
zA2<5sl{>Ts2t0FLWR+fIJwLrpN5xFBhH-5aiku;OjF(JJ(NQL={+wsAt!2ww92^)P
z3i)}Syv#WE7W6;B{{q9$Wog^`GI;F=!T7P``QZKelMWw8e7hsxO+0ncYqx!4(Id9n
zZTIqD|An6o29GyOth;6mL+sd0F|r-^!&K>yQolsGj1TyesTo`#*XuqJS-LpC$6Ic?
zn2Hi-jzhfu$LKkcctzbUZZG~>ey|s@xl2dnK$*e0TC1xu<i2G>{J{yg>oSQyjkb$F
z;^L?O2O50@Kl8w`|55~5wT9{4uD;RLpDFz>?aq!~qr96Osl5mAgRZ{MiJ|?|?s<OS
z(xCo6LKa3|k&JDnKrt}#YJ?sF^5@wr?8D`?Hc&SeWhZ4&Jr89?SY<swvq~5JYHId(
zQ>CBB#Gqojla{$Y_`S4^rey&io#bKeYu*ZdKX@1zJ`O_v6*PtZSdHGREnm+Qu33$?
z=TBnK(*VSAJf`VPojaBFqghxgMe$0e9c)Td9OcoEBHquYyKhZTv;7hk5RskSWW1nX
z3^&I`5#JBZJIa}b4Fw`K53)L11OA({IXTXUJ`=P7!~YiOOF_OIo&0_vvuG&Grqj`L
zR1Jgg>Bw`kb;Ili%`KQ$re|N9&NvtIwQG%fad6BO{7tqk;Aby+Ws$Fp>#st;0e%J~
z2~YX{|IPf#`xnG4M*>ld=1|;vYPOq<_yUPb6qA<l`Ar46`Z^tY9XKDD^4<^q5O6|2
zoMyb+n%B=HKfkz!f&K$mhF6;g3~gO1j+n|iy5xYf7Q{eCl<jjEqL*>JHOBgMc7Nh5
z6#sTc`rR3x+?1Eun(KSL5Rh}-%;*g>v0*AJPPwv)LN(hWdM*Fo8P>;GEz1LWS%tP$
zhg?Kn!=Pt?(|{?@!_bd|HKAR|omT|yKbsdvG%U{sKRTf)QxAL1WlJ}<uA)#4`?5Rj
zSF&nfc7Xrd^h%au{ati;axHWfS2xB{=?krAjvIl?BjP%dO7V*xW6191ltvoxuHgM_
zrvCX%_h&P`{WBfiA1^uapQ6-eM7ec(Mc4G~j~F4!e?K#O*K~caF0W*akKt2E4%;5n
z&T_q3T5@-m$2+ymidj2rBTxpT`ACCteq|t^x}sct4~K3BCjcWK`P+6r=lh9Xb%gp3
z`leGin{B~VP$tJUy(#TDN<YE6`FOgUj(spQ`{_)g5D_Rk!pbqB?R#eFduMTl$z!1K
z|D36Cf@DmpTNUv6JUrC#S?clU(0>Gf2Zqn4V%s_fEY6Edctu`6lzLpbe(5r4e@)lO
zQSeZ(Q9MG)_2Hl4{P%cN#;^u+{G_;7r=0>FePUMO!C4-ca0<(~lbJ4L6X*wSVaJ!W
zBhi{u-P6-&BKKYR)A83B;p3zbq>j}=Ikv)M9iOEfUxt1JJPKslA!Yd)w4}%H3g$1f
zE;db0_{W^g_lj7y<a!we)1VMk$w)~2!|$EY$N<Rdm5xAkKpn*>%*8M>1u`j&t_!Ow
zV06B74f-N!Dw39*6Y$qmk{j<%g+3je35=ZOZ&&j<f8IYB4f>5A=O<+LY*9Y6tnP7m
z)cu9-W0m%?9-f0O6)r~-<q?a8h#v<k<l}MjkR)>Y4fOB8A3#q&-s7{;Pnq}kkH*Kz
z>$u>T(}4&l;a9<ZzrFC1v{-gXO<>O!^3hzHlgF9ROF%2=$wxb%^X1{ha`G6qbYuJ4
z)veuU$VZbxQ@0dQ>V^65<=K)%4(~w!8vGXY%>Pe(Hsv?(#s4Ayqn7>LupN};=9!t$
zCxg>~X{W29CFSeI4y%8BTP^UVj&8p<-Ar!waVNmn@c(O05%W(*^^P>MKFM&KN)P6F
z+r#{KhtHRC{}B3R@Cq>bzZw4Cl-Il;mVaBj$-b_aj75E{t`lWdN1NwXsn7r3Fu%I;
zTzMx!&jxdV$?t4vNygupnfFY;G&hREn?e3{0~up>D;AabhcE5Y*2^byy2LWFl3V{f
zm7S5kce-A#Pi5*luqKdu7x|d^{UPYx;L$K|sq=h!oBUU{%FY-&vKs5!xltLuloOFv
z;o9K2AMp&c4y&lJtp?BtB*}C0$9MDG{sU>PE2eH*F<_`{VCLl_^g4A*7~>u5GR{4o
zVO1rgCF&ns1F@iumnSO<<hdPT{#(e)l<O|&d%*oY@;}<TrAPj#BGxZoi@{$HCT5WR
z4C~K$96-m58;(khWs5W!?+x>{Ds$yt3w<Hz1j3t?{u|J{LB1cm`<@Q^?-Arct3FkN
z=FDF%p^S1vO2FzAzpoD%N=V@zzY`%Ix2|pZ7Nodx8fRZvc$r7H%EtwpmQfK-_8J@{
zWK+PSWM5U*+jhZw%KKP(KU0a~#E(=g?!2NB`;@F~v37|>xC>ZZmQJ$x#-@tb0=AJ3
z-XP?tJP}JJ6NytOrq!`7Xb0J<-25{ZdImTi7<pU)eJz+1uJ4R~z{&Gt*rQ&IJQi+l
z4@4r1J16^$l%y~$$*+`kvs3U@?LDl$>oq0$Sf%35<vMW%yQ36SY$_6sxlE{0mO^nT
z&W_V~eXB_$2tuKJzGMZIY`e0Sv<KyS7oKNRP8ly&R@>GU;2L1cRZ_z_2Uz&qU|zlb
zf#7}cPmfy9VPqszO+8AyYUzet8#KSqRq@icHouBDOj*}94fo#bXRcYg5}}yCJiMU<
zi(%9&UkVH<7W?KDZz%t5sc2j-Q?Ev?Uvt?s7AbjDN1oJ?;^DX1-aebXtGC<6X{AEm
z$!hkXC_ti3V#MuiWy#5+GRgHfjXpG~%P)6gH#?bE?d*`$6@*_X)+N0?FSS5chlMpm
zp3sF)qBD?1c8r#FTvcitjyloc;-r_K7(3Sl^hv%|#9IBaMu|YsngTW4eq1?AWh^_M
zL1!#cmmRl=BmXCDoF`^*pp!~{L$S2_mp`%Y-4N8*?bL<YpFR%#Ech`n_4P~WgCKuj
zwJJ{!+@n_H>hz`#&K!MTH$`>L3{Qm^sa}S|(r-r^o^_lTo$P-(i6_yh7wEza4eM;N
zSFkJzLYQ?DHWN_O#(=-3+T6G?6Z#Zz2I!s-pe1by?KsVRkZ;Gdd>!GAnFsa~QyI11
zUN!D%YV-=sRjoAumCSlQ!#JnndCi-G{CDwuBcJa>?*-3=d5Vnk*Bd6^S<8tYxiUQP
z(J69DS?g2m@51Lsd*#Z7g@ZK!3<aiKBcLVam#as-4B~7atw>uwSEME91?B1Fxu!ff
zK;H_!1Wdm7KubDWxn>0J!<@Q0Ch{v(U#pV~`M&!$>`VE-?O{Ie@*FeId??SaV{8W|
zpCV{U$*|tc_-6WMShykrN2sPEJgir)vo5G-J}s5u*2W*d*oimf4mLIi<y#d#SH_<$
z&{u&QfoacQhkgW@b&7dkm2dyiZp7P(Hx=>RSB2)T@(z`8vN%DyO4UafGsAf`_G!-P
zk=ms=81tjzP1kSvyN=tGjQ=X4u96bdp0@=2MeBod3x74xgTOdo_&W=F1u%S>_ig$1
zNA1$0&)&3d^%iN?o$3zV&Ey1lyiypw5f7BAH%Db!6%6wkZHh%tlEb<Q{-=p;!nQbl
zU7>&Pv&}KQ&-FzS|J}VN;GTLtKj42ayh#%N-+=xN_&qT7TGJ5x-tcYSO}$FI_F!rr
zGfEh5+Jp6O(+wIeOyxm*8eqvQ_S9T^WJg*OX&@{J3$@5FVl5O#>g2+2@DqeekXJc`
z;pqKipMT4`DB!ar<U{zp1bRF85-@U3_qMHSVD@#*_XP7$ai0CMf8HUCcB#AFyXBDR
zB@Xjp_Ai>-kGDmvn{|CMio-r}oEP0VJsyR3QFv8!zs8-I(_6HPKeeO(W0#>~XDrsE
zc#ZNJE3Aw}qtU{Ww98FP&LX_3f~pG2Rl(UrLdwU{7=8{yB&u!_mE#)c2Cc8v>R$wA
zw5-3#wIz5VZSM@qzlyR+lJa*#ZwEVosV8oj`@i3Jc~I^>{}sHOdgA`#1_FaG+qCjL
zC<H*Xu-hYk(6sc8EZi&iMXaaXVce34J5!zhoCy?1`(r3HG(ICfQn%^8dKh}WYF*Gb
z(-1E?X4G(&``JNEUDDc4#ohZ{&Hc~&<W{yfixM5UJm9;oPj1|p2t6Cj0fz5up(P!~
zFYGX%<)I6fZ(O*Z*j3BI5Tr|vV_*J9x#m^*x^3M|WDfj{a~YSj8??vqRH~{sD*Uw4
zm7@2^R8TD3wTgXz?*cc{JK8^mXSt+TFh!(|o1~AF>Mhm4`u56z?|tx9$7hlEub>Zt
z--o<Pn=8)KhZs3;T)lRA+iKkX>CIN<W@~>WOWs&*65&OB`r|49oisB!kML9TRY86&
zebLqOjpWw~y#ZVZO#8kc`Z2KMiJ)Fbh5C5sv#_3nAQnS6p5L*2&FXdM`c=H!{(Hn%
zzz-1pd*v|Vzkd=T*1)h?;)5eGwNTH-mL;JV=oSoaZ_w%?6=}wg1U7Jij&!B7M$XZn
zQ2Ht5`7Seualpeftn9S`-&SL8-YbXh1sZ^<-=WZw^7jE@(2b#N=-Stuw|p)EXXmXD
zv!9~ok&~lV<y`A!PnHi{36lehq43F@Wi1Kw-NJLtzH2-5ZQu@I^8FgLr2mlbLd2Dq
z@BSm^yF1MH5YILFM*G=T1{4C5Z!PryOTM_q$jkTO5%aaK3*@|t=bHKV66ou|jlksl
z9cW3P>qlX`VC_6VAcJhnI@-|<9}@43m6xLO^F%q9jgOKuJ3OJ$SFp?+r@Txh+v<!e
zPzACQt=IEdRgKrZm2sKBeOtg^w12L@)ItvgLxJIMKD4C#{g3H4$Yc4sw)wvI5E-63
zzOUdf4SVG{Kid~?<j4qRtFrxdFy{H043~~h(HzFbS!;@8p$@kEY3b0CI<F7-+C{!*
zee?|Ue}mV7=~usl{tGbc;ifQ-cX6IyOY{(%*W#dM%YdQl<<Q=5smD%M&GnN#iDi3k
z$(mW#^qS}71~45a(#xrrh48t-LbwJmy|V(wZV32l9+2Z}G4v|X0SsR^LEjAwUuHek
z=il%Z7+Q+-nmR=TyO2rvDz)<5;cL#aF0N-3;$B{H>SI?ltc5q?-+<Vo+&U>^K0<07
z(Uh^Bs0(|(?uR1;(v1PXhv3Du`?7(y)f<cghTqemmxBEM_Htf)JnZ2&5SppA$38vy
z9GFsJ=Cu)_UZ*C<t*xr*i|LDNzUW?D`bFpBuPf_<zM8x3zq8YC+Hu^r;sIx^yN<)>
zcBi94C1Yo@nxGuGK;9y)pg+@b+OCPXF79$X{@qVa+k^7#g;!Ia*PsuAzW`I7%plt;
z18;?X@QwUm%hP*@%+q##x%-;$YGg0RP+Qe}m}hl)yK2PYbCRQa<b9LEJyX)Zh&ar~
zGoR<Lc>ag2xNtq6O(*|h)!h{Exe6ZY;9TZ~i=elGTY=&8S?HI*gQ1^(!{>8H<a7P<
zR+*a0n(mbLF`%2zQ{a=p4bOD*$?Wiia-RzM#D^ohf?{q`vm?&&{P&ROQ}~+y4&-}t
zz<1r?T>BmiJrx`e4BsoD*Ma=@z2}I0w-LE=(;C_gtgnFUKE8CP!*#3mSD)!9ikZZ(
zlzUKi<m{effi=&ULl&pQVyiHCAms0H@;3AB3(&8Fp93j|@c2h)NzLJTfjK`l;}!KD
z4g+P)+Z0XK^II&Q-L~t#7@F3hvK#CA#{iq~yWV{s&~-~7pK(KS`JVuNDp(9m{_CM7
zO%LOnntJV#e~<3|q*Q0x7YYXzU(=0+WqJtPDm&gE2gIltWPHR^?vU;Qa{G>ekG<q$
z`oWvfzXrbthL3+j`zg;qMh`y3HHJjv@#8!eHMPM?#%G1-s{3?9GE?kvWvwVp981wi
z_l1>3tS|$SG~F8T(K0kQzg-G_Gk6Y|_Hy@d>_Ncd!5uz3+n)>GCw>&X_uxnTzpyAW
z-}E0SmzTdVU})R&FKk-A$qxy~SgaemyhDk*J=NuP)!)sgW2?GNfARQ>9mbq1;;qpN
z=i=8L|Ls+`wX)4=9o9Cnb$wgPr@yV*9xk+Y+T(FIjzjNAVcj@3vMlQ`wus-PQ^|A$
z_b<}NFVoK7l%2BE(f3t-aw=O)H`&*o#d@`<peoX&3)8Xcnhf57Bdrm_6erXDD$&|i
z;+!BFFC5%Z=_UtayGST|&dRuBh&e+tQd~A9mU_!RiJ8WBN{7ZG4R)U)^{eF*%Hj{)
z=<CXP*^5Og*?7e;t4!*XbgE!*^NZ>xH+6^0#YD$_!1iiW$7cJp4da;=qusCB757Bs
zKR@#D5$XS5g8y@8zNlVtQ~R-wwqrQo9~`YB+X~qf@i$c*H1=cjL%E&)P6?YLm^kQE
z{>E{B$GX=|;+Pi?RdDs0GrV8oKH{@RxebE37vCr4ds`G^F5&bt@9+=y+fL;#9p}K|
z|7(}}f5VA%_kW3vs{dbqaZ2opSh-iyG*C}>=J1c6t|%_y(ZL@_6^`@pZa$c+Nc|Xs
znVy}}axt!(!2@C$3`7WV$QoGGb1s)~e15rkQ+lJF4!%cT7@o-$r>L?YunWFnNAar{
z#fC&ogUaRG$LxZ~&9~VCIpSpD8dc?NL88k2f$eQOLJqk1hsi8<F5$E9w+p^zo|1d^
zqjtd_^X=!K{fM2oNf$m&yGrz#qf=L^vYJe)_|%gk?)8j8nvsyJb(QY>+FR?zsvfr|
z>)Nk4=p84sbrU^g%GW|NQ2F}E60hDX@->mKMxE~}jrm*$_O~bKjcT~_j?$|WYoZ&l
zp^HAH^ve-_udVNi>Dy)Du%_f!imSd=+LQi$n|6-3#qi3e{1_yoRrg-!j;wYPue#~V
zl#?EonwVanN@XiiYkXT}UUUmjFGv@zC@3gg2ezsLulNa7R8YJQY*j_~nGMsSZwBMV
zmJzx6<tFIc!JWX2TlYgt%Aa2jJI9is8o@1V#)G2fVQf6ERmWQ$4HU@tQ9H`<Jqz)i
z<_Cj(5Aj^Ho-7<`TNR)Nn0y<dkCd+;2%DgL!#Z&2)qP@l6b3H%JOkUq{5yDlmJDP)
za1Hc!umhO<?}e6>zYoYScW5sw<;JC$lzRs1KiP3%c@z|WSa;!h-T_m7o^SF`kFu>2
zPytN-{h<F}@(<;HqAaO>;mfY?S~b_YA!Gt$F4^&o3z=woD3E^#&o}bF8Tw1$E5PLc
zb!bWX^?p?O_Yj01qx@Pmk@cE5mGbj9LCQPA{15SbQ+{tWdp}SLO#XeKCFRTC%tn43
zIEgQ^5JiD6{jtoKWhg|i<-D&;GLGOE-z}5EPsE839?0Z*2Tb{SzA66|(AR+*fyw_%
z(30}YZ}Q)8<R<?V86Vc>n;s72{VvZl>x1+d?ApOVVCLnG(A$6$`sFD8WuT8Z__=kQ
z>1sW$!otk@_I7_+w@+Qc0i4>WzNGxOs#nm*T&sTJT0cUC7~>XtX>lpz2nO4Csc~P%
zD_<d!ifvOBSE|8IFQ+O!NDn7+fY{1s-0BMPfTzo9a6wXUyEWK;$<|<&#(HN6+uGsI
zBre@^Ma1^))UHx|*Nh3#bAj-XU-nx;`43PwBk%X2KLMWsBk$PQ|0wSsEv%{0?`l)5
z$GORYX{}W9Aisq#3G-XT^Gy3%3w;f^0T_9|2>mvg{y%}7`-FD!?|)w2VZOd4KiW=g
z;n8-s`L8kmwMrD9*P;Nm_UZvnY|f}Dda5&}GG3-L$$re~MNXPImSqjwmh3UQSx4&K
zGNv>yR*&oBctLz{)dZx<{hxk%H0pwKJ&xGGqr`A*1VI`2NA-^IEvf0zK%V`_<;pi1
zdMcO+B+1_%?Yx@9(8HQ;KN#=F3XIE|zL|W)_0^@;k}#hxo>|B9WSo2g`epDYFmk-=
z7~8rDyc_C?jox_F=l0i<?R;A4fT8~K5jM-3zGu^EA9Q%Rgq7~K>fy*GCv>VC3C(3U
zvY?P7dxw}w1l_}TxPuS9<XqAHC6<dx8mA02<60JZl{C^)6qcoQ`AUQ=YaxD0Q&r+a
ziWLrKWp#FuO5vY4YgedhRqCdiQjtPzdmN6c#kZA*JHfc!=Lr^_DHfeEImFP;0oEXe
zI9}{UC&8FKR)bcLyJV~qSaRUde5b0tO%$GQd*Xk>Uy45*(I-d|f^_Jyu>B(=BgcP2
zC&$}X0Wj_V7HCNa!utg#{<Ily`VY*>FI<3&1UuEA{PT@2=aPiT&$Hfk8j+d=lopfT
zh*OfzL`sMDL2Hq9vR*oyLav3`xU6v9B+E@P0xo7nC_l(46Lb1S8fO(zZjq~tT!UAn
z%e9nXMdqnO_JMB9bNa;MEXrA<tCXGb`o*fna_e_oyms_787Zu;C&KbmKGPqq3E2CB
zLSV{&I<%zSVcd}XeOk}*uWu*d=khtrR|Ff`tL3C*yPT9<tNzQe{_HkJq*BqVvwxH(
zB!z%s^GYKTv$F=LAkr(<Xs6sFia@ilONn2@A&cz}u99#NyCl}5ltI#g?+4}B1)ruI
zFF?NmegRB5dQJTQTaNjwSFQ>Q@(<a4ULF+WcFgawJPHbuq$bPr3-h^RWI6qlcw|z9
z0z2E^FT~ZR5PJjum%yLl|03v1z~v#&M;bQ{TkouE-?)0k`EyotRMjSWnj$1#WbO5e
zEUPYj{=Od1{{%XDEbSba@!|yNGr_^o{(WN@|K_zL*~R7ZJJt7_Wje!}<s1AH-tFpE
z?cc3=K;4K9)3xeX3{YMp8Wy6A^mF=0@HLOFi&kD1Er?VxVsO9FpV+G06qP;@X%!_3
z6AZ!<&}X#sQ^nxhU!CBLRe0zmjy%J|ZGMGjp9$+9-pxGrBJ>;J7r@lNHz}xp<A=}r
zZZN+bMUHcQiB9q3f|o6MPRu2H6Sm}9BEMPNqm7YNvM}M|OEm0vM3uu$K%|V0n$k`9
z4`o-BiVLUB&Uki{YlZYv-LnC|i{Qubdja%~U<WY#z6dSJ@Ox3{cm3b;J5PL0bFJ;5
z@O!zul!2Jf_=DW}6vm@v9F-DPxt2Is48dHJkBaC~jdI1G$ak@nGo+L?#tHrm7!=_O
zg~yWbDEYAOxq$!j$vOVVKu-ZPf#H8Xw4~3U%dg8BH0IjTGzq)xPd&BtwaxyRf$xX!
z#TqeLUK}Vs#}Gxxh|${q!+?)2@-cFJ4EibX3^07W2>qY=SSp+Z>(%Z>@{7dOEtkb<
z_~t)`xY9wsb<Mear%c868GIF({xonJ`eTs4PF;A~;rDDMQ1bfahg<n@S6X6<qlsV2
z-obP(M%wQ0kNOYGj`9z!NBO?(Xy30sa>g5u^8K=oqx}6*z8`nwKR@QkUk`6O%J)6i
z+C9ZHe8f@ye&kWUA9a-PM<4n7)ki7SihO&m?i!N_(nqMs6-WNsx0C60K;MvlM<=Xp
zYAg+L5_fiTD1sK0sww{WIeJR>_vUYc-v$3$!QTg1VAYL{N97_;B$=ATiGDgYDH4tI
z>O_;g;$SwBnwd?cCaGv)IyJ?P7W1teE#(_8TFy7IXeF<SXf@xYqP5VOXdQGxw1L;6
zXdhlnqJz^#lggq^>5@qm(GdkDQ>vn)c&&+!DJVIH6LvcEJiQaUF`3cFI#IDcQ%MCw
zD(y~6@*10z<ux^_II0o_lgfE5nN-a;6;tYXt(nw^Z|W!YhweLNFs}oqH1W-lNu!{L
zPZ<Y2deTH*kD1iW>#>uj^Zk@bvw58{X%1Sh<EFImdg7FYyq>fm=;iE>{yXUB(doJU
z;Zo>!a6K^n{3YmDfw6-%cD8T*gEm4sLZ#E+Q7JEPS-Ng@>k<C|XUk`=-*DtM=KoIG
zpR6$n&WWMV7clhMrWy$~Qj9vRd{fDm_-1=cl}fL**9`{4t!0g4ql5JzJ=iPr7U5zU
zzex6VD%u>IU;b;S<R5NylK!r1f5)vFntncN|2R6>e@z$Tifts-f-<aCM&8D-dT{*W
z7RRG1=9MSW<0`p(=%pG8?SjF@b`gD&)clh`ezRxf*4H0H517flAYkOzIt!ai(C39<
zKHm6j@c!qihmVu=Byl9UX8HOfi;SVscTi&F&EKPqI-A$_^%Bw4eBWc3;7>Y^QUR-1
z9!31&G0l;m#u+r+>9Rv=PvkwN4ypSc|E=DCE%9I1`LC<YH*sq_8Ua+uV?ZHy876Kn
z-qIm=LkOtzhT7Ekyyzz9yzKeu3pT3?z3}|V1$V1W(etj>{JH0&5ErSk3Q6nnd{bbJ
zN1LFcIGGf9(HKjuay+qPCTmyqA*N4#Y;fUz^q5={jz{Cs3|;{e@2leXRQgPNMMR$*
zcWza&!8+-lm0X=n#?Ioh$E0ZHi!rt=4i_)&3!;}e9Hr{?N2AjpjE>iG0hYt+-Yn}Y
z$Hu<SzsAbEoy3W4`gSbxE&MOUqh)SP7kCx=7}vWndQN{`ZWnsTCX#1om&h8a+$&Ic
zLa;L!PQ|jG;5Z&q=Q%7%`W3itZwy!qoI;vzWPpx$c)PjHWcy}0KT<^MWN7?IJFD!S
z${EY1yjIV5JGFDYzgS`G7gJ-Lm|YmDbte+0vLhYC<kih2lSwC*c|#TUEr=F61=-?s
z(dNpSibcGdg>{i$cdNo^!PUAUR_`^&`g();&48IB9PCz|CM={!kH^Zmz;EW(q1S?T
z-ha03e<AzvQP2~>Bw*Gdv%=pS`!e&6eWbL*)g8XFtgbg+-?vP%M){s_MSId8;{;KV
zHN76>vo(B<<a0apm%&}(chaZKbIrSHsS??DDASo%))s|ntMDbMIehLRo?+Hewa3}k
zU@#h(e!2<zLXhuYC7KuSP4b~YxemvN<0N4Hnl-c9XPX|3le*h&>>uR*-T-UMb$V&V
zvIp^(r)qR0jnm9*l%T?CU6ZUE%7yPiP6W@>Ho+Tp`BP5C_nn45g=5|671J`)%g>A}
z`Fl5(EJjS5ou9$*4lc#3#aPsEJrZ?q1xF-lb!<@H?3;lc_fr;0BF7J){{__Xx%x^$
zOEPja??#@jVxPUhA7sK(F_mkl`P9iAm0DX`t*7iPi|Z<OE%4Q>d;3qrZX?Wp3C}n3
z{xb9~@F+0yeiQl~kiUL*KJPy!aFI2w<>VGF3#`r?A!S*6-qJP1oMBSgv|)K`Fms$G
z6USmEjxCqqZ><==DC4bv+4Y?J;KD-pBG4?_yHxCM?cJ-3@6plw==${;=71JW+u{8Z
z2Ag8GIerjq%C=<xG{1yRCj@d6xlVze1LgtK56%pKZ{%s-ja++lhNk{(1xipTZaK}m
zg9t$q@P)BPt_}CmLj$$3wKvRnH_t7H1If2|j%^JGQ-P7^-=LinZENGJ!Tj=RMKC{4
zeC_agn*6Z?U)$01gcZ>RHBB>aJy*Q-baT6W<1GGznP!3fD)$S_zBV%P9R5q~?bDw)
zuV}STUmCnM_#ZO7T3fiQ;o<bhjlK~fKE)jCDUQ|S=u2E6!En;$rOdVBx~4kYM|&SB
zoVD8@Dfh2#%&Fkp0{j-S?PObBhK?-xzh0SkhgLcT$&u8h^PDGtA!eV|Kl3Vv6{ABc
zNXikXfQV<$cs-vI^`C++nq$6#pURUm6^Y<4;{%E-Ds}Q6#~B>^2z6YR-FvnuYgr3)
zr%j~Sv|eS8i+t18vn}gmRBx;eTz!|aw_$qc?o!dODHPmkP9YO>q``FlGH5res2fRA
ze-}Vs0k#6uZuW)0H+sx1Ukd86yCxV!g9Vki`S?Faym@T7!?g~&-0ap>{zA6~hkkJ{
z*@vl<rWA>|V_j~ipILzC4dzN0oo{uNAU|GGrH6WUUDZ@wS29(LaVrgeq|7zF)G~Fc
z?_8tqK)`q1++05%3q1wQ0EX}7(30}|vEjRI_41kP+t&u|OGc2U>qOhc5ON#W($SbE
z#a~fcT<&s<1C5DLZYlj>0{x(b-snHx+8groIQdZ-z8v>K9|Z3K(+_IqalQePp}oW7
zVZ5&X`S)^{uHJw-YFp5{Wzbmif+!SXU<{D!^II+`^-4xBEnc?Ty4mZiW64A{I?Te_
zzeK#hMq*Li-)GBTRmHEN#f{g;Rl$JjR6OmQYD~ePc7|?Iz8>!a8p&v4o3OPc{W_5A
z7I>5-?cr+Z8^BG#$o0$N@6GsO-i=&a*Du|$3bu>5!N&+P-ulR^sYGg3{^$|Rsq*~h
zFu!+so*9ongO0S=Rvei8%AqA4tsd942UQr31DrapLy58FI%WMmTEn`|;dI`=pI@Wf
zWc=J0=DURFntV4yUkok-Cg1JQ|1MwZ2VK>?b)V1oGV~Xp&v(gh0{QOexhCJgL;oN6
zCouUYPWq4eGU`p=w4TtHp_|`ak#`<3Yrh<a!u%KUeA7<Ph297@1C#&N(2|aJ-=b&J
zbeiOhvBKJNvbBo?F#@MM*e-BPR%}^?G6nOTmV;rrd2St_rCt3IIy;~9U10jhY0z!p
z!SLL~^p8>b^X}@ED>k>uEWui41<RNTU>LYm>^l2_G^h#R>CTty(pbsk1TK%s!5)?q
zc$AlWtZB?C#o8kiA>u++rcW$d{PkGu+p)OlNU<!)xD_#OU$e@|4A01QwyTwMQ0e(H
z|6MLOwRk3}?sq}?cEh`=*Jq$#051b0*VmvW<?E$PzgbIz3S((F&EqFCFHN?dj~8*A
zN26_WGX6jFvLwu}Zb2@;(a;mYWMJ}}1uf}l{YLT&Crc5fIKZ>EjJ4iot%t`3fBozK
ze^;2__V9U9fA>N^03HM;zdhma&3ItmP5H>KJB&i}D9P*?>q9cDm&^w0?(!W7^NTLb
zm2VjII4}j6_OcNAG>~7uQJ?c?>Ss&#xkUmW*fO%Zkdn8o#UUc?q{<%Y^kL<HEzZ?r
z%6Tk4@~L>Gjz1lzzFRe6%B%E9wpV=e(~{o@^}Y)pB#B&}g8m_R9vHd27XIGI!@L{0
ztd)iP0)HtZ3)vzJR~R-&TX!U?WWv!g3DJQ2mT=i+b%pu%KRK80ROq>2J}~mR4EkDN
z&W$b#?Kn5u9X`KD$lnZQWgRzY`p?jI#?iO&fSZt+yg*hr(c~TMeO)<A<EJQG_7uyq
z=OI<eEsm5N8_ahu)1p;6Pk&jd6aCzH`9mPD1MnnC<kfHrw%p(tVEA4Ny&4!fnfI-E
z`<)(gJ8|iT9xFh<x+QufLOra?+m^2hs=Tb_prX#x^C;iB_Go9Z?KuV3+Z3}(XJ%IF
z$SaA_TN8S2!3la!G7>o{8Kp<ulJI_#@Q$Nce^Fc=;Qa($r$^gj38mTYj27c3zOMUY
zP|oKmgDK|$=s$qJ08>u)RNG1bQ$K@4d(4HOYrj28>Th+HoXs*|gtZ0tIUmth%db_=
zCT9yCFZe0B5p6|<xFwSjs}c2tqX%Pn!u^wwuO;MZ#;Hxv7lEsR;p=Yb`+ymz3}4ef
zKMpewZ3tH1+F5eO*>vfqa3x)D?Ib!c`URc*dc^xi#C{;+J{Z9cgrGz+lr;s*Q&n$S
zb$<%vb%;F8yrdQ}H-K7T`q3h2Nk-3S+J$My^yv-8So$?t$t?zD0RII|4J-+6R(G<p
zRrL-Q9+6&|ST@aOD;X`za<xZSRI?Z_aCI#afXcK^c)jH_$YjP<4f4dR)16wMNB!>o
zbHMK|_-TS4X~$1M{}{Xkj2z#EJ_K6w>}>nw_dhPdZdkLr)jvRLxmp_L0vcxHr^-63
zG0813qHxgRQ0G+Z-hE40m)3f<8TeW6boveu2O#I=TmzWxi^tmgmw><7r{NnW<nIjV
z_24mJ_}h9qIt=h!Xz$_dV@f40{_ybeVdeVv&E5R%ReSBH6_;Xnc>dc8xf|Q~6;(Q~
z<VscLRL8+fLe!OxD{%>8=~ktyOG{5E8OLWGey%J%sbqEOcz&N9p03`ZN(Ywo$9-^P
zVR11o<#3?pibZ%lRviBm3)qw%eMnVK?8}<AhD+zzcD|{d{W|WyW>jTzaAs&hz3%q|
z?L4pRp3vj|sNCPE%t7Tor_;}3`;dw_|KvF_J^Ev1+w3?vH!di1f2GEKsPua(a|rKi
zI{g@4SLEd1xrQ85dTbMNe?!JP)leUOMAiO}(wFP;mudGCeEB-*Z)$ii$hsvZZhYv)
zwGW8rOu3OE*rjUa?%EHvo~Bpn{;WTL7}4`&VEl^G^VF5>^zC@WabH4P=+$8$#EOZC
z-sxCr@`S{=<T(5WWjNzZrz*2t!7Lb8SX-d8<1=nH>!gczsBGF!$I?pHR+75@5!Cm%
zGlKph?ePTYx!`nQ>RbNyJU*L#W8S0l53g^(N6VbVWVDz|yNTBFwvyJ0wuJRCmj_+#
zyr0eJ*#Bnb2;TW?7G2BVvI)x~w5%$TJ71EIpWYAn+Do3MU%v|d2KYIUB)lE9Kg-Cn
zrhO$RO1cU@@M5MtY;rLDv?I}oRTn<LX>soPv!PD~OMxl(J<tz>?)VYm`tpkW@l5jL
z?$R0*X6>zHikkl}-<0Gwg}SDb%iyg}+YW8Ljnz#(Mien;pl<_H$hbx{VdpPsgJnNU
zU|eiST&@jp*C|?ImygwhtID{Q=~iJGODovuT+TAmzQR}MJgpd`d8%c77|6>yGgqD_
z=!xJsV9K)r`cjbZzi`LV%CmxqX}Ni@|G>4l5bh9n7wzY6qUwoM^R5g!=P>AWs`}R9
zZ8zywuPtuvvg>yz3U#lC61X~}Z{VFmm(&eql4%+;dZ0JJ^Qs<9c;AwC{j73^s?qe?
zCMjRN9<FY}CzjCY8U8mY*M4|5?I3m*_MM;>m~u5k9}n{F8{3XluGXbox8<haYOxbA
zGr-DLxu4jvas5!>7wj1+nCBO4&LDU29m;y&t}o0MI0WO(UT(Wr*$JnYSBOK=Mv8^e
zTs<rg)(@jSk@d?QdO!aYq>hh*a@-D&rW}t#KMS4*W}f;pw50rU7%u((74nZNbAvzb
zZ&&YQuz^ohPt+%!>MPpnavD(sxzXN?Mq+S;F3PEg*Is;v*D@~n5S&Ub#s)Sy+y5`%
zZ`|3r`F%e0S)dgd{;q_UWaf9X{`fq9XZxyF5#*AGL<1q3hfbUxTR(Ed4JOSSv&niJ
zZG#M0x{iPzIKwOQZ?_K?ugIk$#Ey>xzV?%^(G&g|+Fn8%0H*%G2z?7^+7rw}2f{eK
z{qy~sN<Z!Hqx;lP1GCNt?N`Le^8&H%>{NT~)@WOA`s<QS>GNJtIODG8=5=u-kxo};
zBAj$Gju3PaU(_WW{*)}LT^=v2W(G*;26S#|t|Ji4T37xx75z&p7A<jH)>B=|O$?&P
zCyGkW_NJt#bFVSdYeiKNVLC@w6-n==w09`|ZKVgQ)171NevxtL-J}=n!QzGhwvN3d
zl6GN7()ND_aydkqO?$GJ+Ex`90*qX)gYE)-9uDNv{Pp1d-8{XK->!nbF3u}{8aS``
zUvW*lSKY@ak<0tKbwJxb)f#I%fj&OVdYrwlEF5iS)>JxOTIkEhw$u3NE?{?Ds4Lxg
zypbFBQQgPuvyULXy?)@OFkBgwF5~wDbjebpEiOvFpkoi}CSCQE=e_EA$I2aa%KfO)
zUsD*5lsU8QS=e~46Jfls^#E#$!=V!xBWC%+;HAr&9+1oIZh!w{pl5-Tfsw~f=&yl;
zj|Fmg|Hr|5@>T{jl4-|F+s@gvVPi+TZ=cP&*?hmUeHk~^%qK>QW&TuGwog5({U-Do
z4N7EnKyd&VU1~2QD#@RtETvh%aEhnw@;c-tW^^eW<!0)K42=9O>U<iF&bDV%rQ^Nr
z!Q9@6)>jql$2ks}j3bs}O8v1$S3F$xa~5geG8o5FY#aKhGn^rEx7>}Qf&OnUGx&Q5
zzaVxXk8EqM-%Nx)9h?n}Jf4UC7;Ntqlz&P1enp<WX&{dksMveV28RiWo{s55r~Qsr
z2lPY1Tbcjit=Ky(-8<FGS?l@ORL&`4Q7>A=ecl@8KrddLjSa><*R6yV<Sx<UEVar&
zNkc!UroK0--E4g73Go3eUv+gn8}G|)(fP-f7u7tdF4MX$!OE)Ym_fQ-*Y%RmDNN3)
zPDEl4D(6jw2l`3+e2t6cMt!M@U6>rHhR3#~kJW@}mv8I~)xgMbyHm-E>z{n59!UGr
zvsw~?{94*_{i_XnB{&xt`N>~j&F7154BAomx+pK6VIV3o4?<3@2&2`yJ;4&_1HaUX
zzp_ksu4iRZpp%C<Rj^{*bImvnw&WveZ^+L9@-qGXL+F12dwGtZ;n2r`e15jbWKA+H
zH{gf+i^M{eF}nFVMfieF^*d!fo@jKk7%*pW8RXpK^OU&5cD@==ciPVV0kzXk%9z!x
z@AOBhWx9c-X@l)V8r)KAcQTOQc6c%TehvBo@DS)Jzo+?}&+m>Sw!aOV+S+|1n;Eb=
zgFUy)>dE;*z|VJWrlvZ$@Mox0I3BFX=?x2^OF#vXBs@$%iob*vtJk${Sh)(_ww^~`
z^Q?~(u7jqJ*5?~^w}j7M)#Le>LEivw0cO7Z0kot;yMp$S4aZ+o4`LS>)J1pM$~xW_
zUF3;)jqX%G(bmpnqb}r($Rpw=M<U7cWO-r6e2Qmka1-hzIbbRtT_iK+GN%{r!{;y+
z@xkg!2XZK1nHvYDK+gxK0#grN&<}(Bd(x}&+Hq@p2LWsjJ2MN|_fK)8DK#93eB`_n
zQ3oPlR__qPtW)icSf3`xGe>w>lov#*3;SUeT2#eGU{qSy)eVT(>e?%{^C;EGo&G&;
zN|)mu9DnQl`Ql`$E}zyvI(iBYN~CyOG)}B%s#e_~p9qBF=wbGifsiThfr6mCA5j+5
z?xL&Em4FP8BxOF@zJZ|4>)K?~&>O~kTiep??zt^i<onj+|FVU_^H+t>lKs*J(AR-G
zfRSg*YV>E|K<M}6z+FNAi{{O{a_>A4r*7CD`Bvn{h}s@`yy!+>aBnA>KR#5e<L7)Q
zVeLteVAIeiQeK!HI0&;1|0iBljrNE;k0sG$#KAdSEM7dzTPQx)E2DLYc|e+Lu1K=Z
zsiX0f@Ld6maa)(C>!Q8+gp=!&GVCEZVPnx!Y?n`A<k7YE5A6CeC;QnrWuH0rWo}>1
z)#3eWj;=b1>G_vVe4q10eXg#m8M2_5|LEu5>@e$()BQ&>jt+;wsf@J1yEKL=dYf%e
zj5Mib&Nf?ff3H~&N_|~9Ta|sS&W_TL+V1Ma^x~7a`653TR!xwZ{_P}!|BxUqHl=Us
z70CSnGBx_A51=c~v8@JR<bFDI8^~Xu_Q~G|tl|XZTqF82oO`I|+vUD=HHhV5%w%cC
zjjN;QJfW?v1&yD%QHcl;B`jf~lS1<GXgX5Fv8)}56_#-T5HBv0qq72B|HrsUkCPqB
zvq-bNTPv-W?SkS-lDg`Ga_xp^Nz$I4hyEY%CNSej?A+k@#*fazJU=?JbXy<|X#pM4
zAJO-!t5CMc7_!T@t|+XhnYf%n;_-!_s6HlzD;*sx&2m=hIk+Uy6J3{k2-Rs;;c|Uu
zFblGw_^KQhY1F5A8L1IcOGCi#l8_(acO&$L;1Xc?y*m88nGemo8TZz5%I-_QmA)3l
z)$Bwm@uNa%x@2VnYj%eD?dN$-p?u<N@MQ@G0aNcQpw9yf_XgwabKei%N9FrjYG=IN
zxM8E5fAv__1z${Gx^ZdlNUm3x{*8UNR$Y3y|2ootZMvJa%ntQc*BW>-Hb^Ll*cxaj
zmY#AEj!N*mABjxhj{R_Z2)zQ`Zlo?X>f-1nnM74NYdPgrRLPxphPx+~#&<9wc4Vph
z6NSOa55&Dvn=fXosc#_X=P46Lw|={L2l{v5kHE<JZ_tvu^87a%Ik)yGuMBHN9VfL%
z;eU;_u0c<eQ-P^YZ;max!u-aqwY&W)&VxP$oDNKWOQ9v*8SW?Y_kTU}8|mk_(9f^k
zI<FxJ3O?0oB)@E9P`+I}ZxPRvcJws#kHCw-<o8o(N!!DH-M`Ckl%L<Jetzq%iyQQD
zLHP!d-}W%S@^#okh4~GG9s|Y$liyTmNy%>o?dRX+CuUhi9VWl4xT@GAL;oqv7yW{A
zZs)nC{eBbryWk06@_iLr(!!(osq=NH%g*1pd?Rtzr16q>S<6xs6ocm_sL$Ov+*AYD
z=*JrpXh7pcwv5MWdu3#Wc8)VqMjb!x4f&~S&$X*D&{M!nVE9=CEvZlFcP3vB>z6Wb
z2_GBRGO^(oXD&;Y5$)17?!}8KX013MV>dIvLzN@BpW_Ubw~qdSJi2(kk;fCzFMyu_
zlm9_zN&S!J=OW0wy<0BAM5o&7Th<Oj<F-S+?t7d-UCWhSLZ}SFMMxi}KA70xjL|_D
zSF2?}z)w?0j-L~t&j3q+;pZx7NrOW_qQ;-7>1UxZ0)F_?*UNONr-Iv!O>(1ghuY3P
z2aR5ad2In_v!%K>!H2kxZgX&?j*V91!i<aWvKKi^KZLTE%Xn#j700?}V8G{o_%L$&
z2ekbK=0jlkY=Z8|=bmo{?YNsyIV%wUdbA^4u3c^CT(0d<PZOg-4=auqx#flIw%Ohj
z;_Wym86O#Q;{9T^jCu)Yu<Z?k)3thv{({E)XuxUL;DFCg_^5*s>DRYFe--QkhR-LV
zB`pc<f%5&Bu<y>b^X(YD`TDI9qTkw~UQ^aHc4MTBElLU%L~UYF(vunXTxYZ%=wFkw
zI)?;&MAzr!RR!Gu`T@hoSZGPR{!=@bzTUFR?`ybP{G&ZiSBp0YC*%0BfsZF(4;)z8
zp+UY|d2St_rTlk6e-pd}%zX73bYcVhp0Iu27v57`l^1uAekQ%X`v|4uJF+*pRs3V^
zP-9O$anamslyj|WIJIe!dunD8jug|^D)-d%BHYM2V}FCQ*rXo)Ya$yp`f*V+|7$yk
z?1taiO>f)on|5Zu?Q)Rm{!-k&9*_dym}Zt<uY7-1WA%w@E^4O+-4q-$pnhTt;;#fc
zhXv*ApbVy*S3%zjz5`4---G@H<d^gI&zDnLWp_C{)zAH|yj!&AJJbS7y4Wvi&F4zm
z7c0ZDEM8-mV`fNcJ6YvOY0Gu-t&VepQ*)`)^r`KBU}rwG-4W^G?k7^(Pi=oY@tAT>
z)@#)ODf<G-yO{FU<dwHC_1H8#DDR?;xqZ|*(4F8)VA|7{p#5|dzcdnM*$m%Z>iQra
zSb=}-*$W1V=auy$cTTb6#J}%gUF#J_e4Xe(y@=b)-41(31pFK#KRL^hc2>BFn1P@X
z82L9t&jyFC55@tr4tq{BY?I8mz;;(09+;1KJm$K?ioogTk`1VD=Yv9Sr0r0jDC-am
zCNPHSUmoN1qPTQSnHw!i`P<LClwKe$<O^6qlwuywB<ZJ-0l&Ayi{bYh(BA^z0Y-i=
zKug+p^!3cfrK|lFZqbr?XUkIN9BZrFz!nB`hY)>a-k<KrNbd;qjh>flr=`%9pcjxN
zvO1a`09XE^1GtB%=8BhH(gEU0rv^J`T)9LtQSnH}D3Hi_nOY~p8E}^2J(9>|ydqsO
z-1Rbk7FO4&u>9m{^w_(g9|eyAQ~n=AOUmDen~D*BM*0i6mKjX`rSn7ro2{!Nfdr~`
zp@VK;On#bK^;lNj=pf(h=G=a`0lF_308G9Upd}sc+(Gmq>o)oKDkqcUWNRk}c<6JP
z%E}^<R6I&%<1iXn66V**^GrE!hrSzp6`1@Uf|itj|HhQl^pkb%qH&-GoR;bH6geMf
zJs&Azb;BvIWtC|};iuhUz8{6pmHv?3g0D1C2~58A(2`6)Fz+VcWtdL-5qizmu&7Cb
z0>>v?>ko?wd??Is70=7^Jjw4W=<C6DVDh^QTGHp_8u~w6yL@fyn)P$rXLG97(yeXA
z3~|t~s1={di9k@XTql?M#FEReR;zhTP_Ii@sqX#o0rL6{_+6N%wCjBPCOzGXPq+4}
zR5BSsXUs4Y(XyZ39zL)6e5@S!Eaf>H`XbN?%y_aFdLP)`I~YHvhx@JRdHOo;>&R|&
z#um1tZOhjW7`hHmid18--TLqP5v_LXPlLA={s-?7c2%`kd)B9Fvs2w1J+{|~QDgP^
zlhdakTaNh*GI-guU-IhEFf!n<uWE=yo!(A)*7eRRldJQto?q(qX54v7iObrJ`n#+<
zWoPxNIQ!WeR08Fy8z0E6{{^}BIUV{`a0W2t{0j8_z_d@(PTn_uP4VH6iT+Uhk+<dw
z86JGI5Pj1>`)w6-{d1VXYJcqD6rvGU+{hU1?2Xt@M<S&*(-osgZ-R@(7e;#1rpsiH
z6scnDOlDXMRwdIJcPxv;cmhiSabIzr9|>#~4|>ZlQ^&-hJcr<Qc35x83t97kQNXmr
zPH0J^4hHi;bHBsK|HI1>R#wAy=L2=4qqaLg*Z$k@gHOZ#59u3;uUmV+XZ_kf6D@WL
zo~)*^@fc%!@q{xf+Q;put5GgU)U;7(7*I2yd}wmLG+Gi}?GEIKs2oRCTog%+oG_x2
zm2ZY3eyH`$N?)gNwA{V;h3~rNpq%?DM;)J~ef|wvUxdvsFy$N#EosM3f^zN|ba*+J
z`wep1%J!LZlp%_eUI*-L&O5d`U_Yzg!2qH5W7m2T8~%D!stoo{G0~Z8GNW|4w<@01
zC5cnA1;tqPJ7WiIQ>g-{pX{(!IDPPq-=J^R_FXEnjIZjZ1^jM>A2SZ#3;h6i5Ey><
zKugMRXJ$O=KXB%zb*%%2uHf~!bt@<oW5YPchS~*Im)qbBl;L0ij!$K<Cv}GTT3-yF
zD{?A<?h6J0lkdsl?~Psl*3hoO<h!=LZ4+(*OoQI5{@d}70!PS6VC_Awbtj%#(J7&=
zVK1d;>vQo~(NR}Mbrxd(T7oH`1Z_v*F%0?mhvKvK9&JzYSC0&2GXweT3i%K|pMib>
zybKJV`@`Rx{ipG}e>k6QC~k;Uf-?nQJ`+Sfr&zZW8IBQ7m5OkN;T4{@?P0!k7w7bd
z6QJjS7GUzd16tCSf}s7pHt_Iv6v!u+FSjRkuTJN>*k`utbpB?4#)7i;Ybk42bZp$l
zJM5Gs25nAXG_s9OLu4C^ChW;8^u^wgVw~1R?^ftiAK~aq{GK^g8Q}TqB0SyR&)3p3
zzNwuyJxk3}LnE`?Ju3QNTDReWZ<PKi2hl#WyfmK}$kn<eH!l@ISArT~%GVcK($Vzb
z((14eZ<!_nZ61UZtlF8@)>uQ}_PCMDSwVx_9_H7<^GrLx3i>9n1DO1}pd}q`U1Qq0
zI9!%2TjsO6DPVO|dx>>3*}9R*cA-?@AZ`QkmYo}v^Ie{6){`7QT5*sDCf{mkNe7Rz
zzccyH<O0^5)&91<s8g-DgmK^sWqmu=5UD0sC{-l;@J45$>=Pt)h50Yx`B^?o`#m4}
zB5+BVr_3csldr6&a&3sVr6*do6Ro{5Y}n{Q5z&E4IuPcwpJy8R{t^0PpfAnMSL2|Y
z!N$Dvto!oxpOUYPC1hCEbWjW(hk{9T(%LhMoMKFg{*3PiOqk;m<~RELm~$|eK)20A
z<!}!}RY#oSF<#~5!r6H5#Fr_Jw7@Ha*@60L|ANgKfkD!emY{yN!_zp*A@aEg`X#U*
zn0fZ3%WP{6I2exC2g7?_<MQ^09j)Ak+ayh+*FL?4i&y*fKehkX<@#?;{%b$~^&0hx
zEGKTXizXI3MTz1UJZpb^jLxE!&*1i`K=-~!*$=98wik-<61x;vCUX#Z<+1i`{Q)s_
zx|c@p#+={A@R7McR-dj)mR_hYs*B#F8SF8Z<=@JZmnv_8j+XTPq8^ou_U`KzRNbkn
z%Dlc<btEQf-($=xgsPYG=TWFIoXeE`h;qKE^d^}$x==}}KdZ<@*NNCFYQtytlt6CJ
zBa^yNZhwLP2z&yJ+%lKr-wk}aGnnVh_&9s+;p3Fl^}53j?OStS(X*#bR?T&|imtub
zx*^%{h_>(3iF7}&4C5hg%(7l^rb%~eaBP)O{d5^t2aHgRqamLi@L>Ai_0V^ME@1fF
z1N{VO%H#83e!C3$luK1I2DFDx*H4DO0w8W|YjHrlGuiN%wh4*D!EZme(DB!JGXn)@
z1JYcH%p}#F8pttwMUKA)=;2^AF#OGeo(uB%d+rGQ$t6wcH_gjosMav`kg|3q8(+}&
zPjCf(qTMTC>2$~Uj36sM#u4_jAwON@W%|RT(64}3f#K(G(4T<8VSHgzudf|}AMDkZ
z%e+I(h@S+Cgusj1;G8<4_8P)nCL4c-2UA2gLr>;9_z=4cuL2DPL$bcAaf$w((#vIB
z6J`$xBcvs#1@fEC(P|T)rT?A|y$mb|W_;ZQEvY%rAGMjErLhU0u*tZ3$|VfwU$EXF
zKD*hkkCxUn*%>6QjC3H(cQ4O1?do;t--15?ldp4CkZ<RMLHpkk`q}B3?}iR+_BSpS
z31PJ4Tjw0`t#fLz$$6Vo^@Oi42(D`4o-9&nzlkL+LE4;^9AU1OA;0B}Kn{z@&&Xjd
z^abEjVCwBQ=(|DxJiW#H_Tl}pqt#zCgku>Sh2FA7I78-}xkYaAT<fpNzU&F`t{Cxt
zk#yfeK|EEqF`ddOlRBD<l4Gt2YH`5VA@Z!_qtp*tT&n=o0mIi!=oYa5?m$jXxX!!%
zyu<mDdJ@k3_T7iJJqw&5ovx)QTAXBRu)#UjzkK$}RU+d2DH;8%gp_?R>3p2D|4&{k
zz3Dbnhh?Fv>!*8(EL%9!N}^P=u~IsR`VIN+623ydABKJ!JPS<yegZ8i`t8HVH&egF
z#H0Y6JN#Pop?AqkbvxWX%@CAoB;HdDFG<|Oiu7em;>1%<0>AQj(Y1?lylzKE#6~8(
z#4xXSA0{w19==-b%UWNotAiQ7>#VT-vvsV450UR;=;dG)FnnGFE$L|S1H`W;kxfu%
z!>yBT@#CY_F1Gfks_`lp!BrL^FLWgCho?GOZe4`w>>&SrJim^wB>&$*{|$TuO#Q~`
z-~}K*|Bd<Q-Le~ByR;*$<D#Z%O#4-6HfpEQ?1o#Hr7>=a6up;n4-q=LN_t}$BVZaW
zZn)JM^0SD%q9H%4p*z4vVB~Qzw50s=cYm{tN?`rQg>0MGBa9;7W7AG<m+V&!oT2&`
z#En~1Yj2p}^E@vb=C>dE9q=1q^7|9Cq<sBKm|uHGcXqxz*`12$fv8lfWz=bO%EM8I
z_2iO3-p$wM%J&86^TEZy$oppKuK?rU>&dWvZp_nvENyEO7AUA`vHb`7Ukn(!bOV=7
z)=k~idai$itgPj7#j(Opb-%JM)AiS@GGgGcH7KWDU_Bt4OKu%%-+x*?3RS=NTYE!(
z--Q<=pX_z$e?cQK@|g=QX=^w>zW-3rpYpic5U>MtA>VU|B_aM-dQ2|AV2+8y=S#M=
zQ#Z1QFGAlw7Qdy14sM8Ky{LO7h>H^AJ`7v^EfSxY6YkS>wLVQBAD&}vUlz!@3%(5B
z--iAXcnKK3W7`70_lI^<FNf!`hHn|!!-iDWaR$Br2^j(|2E7>ucB)@+oXDc9pfpX>
zl8ro<aq!7m#TA4GUBULgAja8<SoL~+b(5EL<GnKdS=rbi<|~pWu*^H8^x3Mn3}YQ_
z0pCmD%e4Ou&|d^s0n<MI3T<D{9jGuKPVrNLyr0YKk3RE+5Ns6@A5d3B-tlGoq<dm~
z?%CFzsERNUo+`d&&^1K+>GX_JLQ9Cdx)du|m)}-9gMvatQua8v&`l-!>aimTjLD&a
zdxiwjAf(Tng0v$e%+)%6Esd!947VUYE-dD7inY-hsIJn^bIM*8DR*n4)zaXe<osBj
z?Kc~%Yh_UG7RqGGy$pIC*Z@p@T@NkE_!-IHr%QRy!DpHjx8)8otS|H%{VV8nv8yY@
zD5(ZNE@JdmqcYJ<iGP@IqCQqn@CW3MRRJIS$j9*UF7%(l-@?454)XP#roEW_yW92M
ztR-pC)*b>9V*sV=aIaUA5Eq{KtH4qXn`;S8DRnO?yE@2!(G9urcrEn#;9_9pa4)o^
z{PEcEv0?R!jhng$rLycE#f;FK?fp*me{kduz^kTCdYFb{J{=i^){I!05|9z=KOowZ
zSCtb^Qo`3c0bhs6w~o&;Pk1-lRuL!%hOb4?lKvfEZS9-aEi|1f`>2Mq3w+LAv90g9
z0~|OT<qc0bF$C5aa|-EFx-WqR+{o0B&s0UiE433|b}+n_`CSPGhJXIQ!^S2iZXGx`
z;I|8YOg%mU{S5dKF#P@mT2g*}9?@U+T>JnYHly6Y(b?fX0PEHS`Id7AZ}J@oJsgY%
zCf{SBkCd;pALAbVbJ^Ygx$LYZVSZbAp4qqG4E-hW6=3rF8nmSReY>CEy7tXdtd<t^
zAh)Y?t;QN`28PR=Rf8hPUn}ej^ZAJ9m~y3VBIX?E2h6y19Q1sU-#=I7-QU8AN-L3W
zm!h+muIl@8Ihm!xNy8GHMLeV~Rb`i{q1O8xyC=C-Tt<%-Q_Ui~>{oUSO-byp_|GX8
zg}^esR#!;h#gaiT!o~PE_Cafdde{XohTk`#e+_;Q48QKp___f3>xhH-<EZe91D)2H
zhuu^1i!qb)s*@zNhF_9PC`E~13LI4Kz^iGD^<X?wp7tn#7xhZ8d&?#(eD9z0oU?@U
z#VCRCnW8vp+P*H}dkH-CrySDHo`wE7cn281r`>|R6zKC>Fz!2{AMElA8Tv?O9Pk;O
zaURi)^S&eWa*MfxWd4|?gA_CPmG2TL_fNUs4Hznx0#epP>K^+&ab)&K<-ZMhk8$G;
z^`>k64y|oraScNov16a*Fw=e!*V)`gU_oD??P!9LFY`Ta3^|XXRLrsnDN^P2cK?Xu
zad$F<1z{Xp!A!|~yE;>*M^;4(+(d@?HQrKH;o;%yGxRRp;5vmTpvAvhvEgiS7dzu*
zTDd|oZ`t<Q`1Ja|jVCU?VqX11AlKc<tclMe*B?Q@4t@?yKlvD1lCcLe_7X-!zJM0U
zBKJ5RD5gNS`t}1?iv7SH>Pc<=Ix6?j@gGJkT=>9)anu>2iwb7A$CP@#VCGikOc(zQ
z{(Q50eZW`Cj$Hp;1HBn^0#n~Rp}zw1<EOrMq;@(b2<kvRVs`I0%6T-(iGHK3zoep5
zZM3$<>My5dayjY>nk9z#y1!_OHnVHztscEA4TiL2L%`o5@;3b_c`N6gpbi-RMnO*i
z`QzyON8)cj5wN&Y*3Dm0T}v2K_YO7klHr}I!s?32#ii7Z4E+S_x=Q;x+4evuG?F_D
zy?yT3=Y{-jCvP+U-3R?BcpMo1B0Jf?fPDESzkG!LGIPx)-#HAm`*r_(?dG6%S?ukG
zFOLgFiAeN%2-Xo%Z!0U*%x9cayW71eCsEE-xS8YjWTh@2uE!8n*)FWF<=U3}6`i?E
z_p;q@EAKW{RfC|vubd@nkAJU$7?Y|2lM>ghjW&2R>5S@w^?l!<pnEq3_0T~XvV0}&
zcN_Gr;7h=?-^ZXO<?mBW`|a6{d+ZmNF$bq<zniR=<KhNNR%R?%@ZXeR<Q3z096X4N
zhm}rnai#gZfS>4Xxp8U+^h&S>7`fjIy&Fsn?Zftj_LU3s_Awz}e$QGcZV?6y?by^~
z%<B1jMkeWi(y+VKm4q)<U8=YLn(|+Jn7Q1c{*FCZ0!?#dpmQuCN~gwc4)tY7c7|7u
z!M&-H>jEiEm5Dl3&pJ4fjuoc7ICXQp{swLgxfwl4_7wMP9BAGv4y*WJS<PF*^532t
zPo_i92d4s4{tKZm1^IfbU7w3Lof}!g@{0;RH~!{+-92ox&%a8Rb=k1;zJa}1qJT1?
zRCV0b;-_oerKkB+xS-$^CY?w@$~%=hB%nK$*pDh6>lD}nePzI*usr+V)%2qepg#rH
zmvZeZ2`%a9=PNlz!*X!-z^_*7s|Y=ClxB98wGGu=9JN@ZEH5UR=$5E)&JX0egnSGi
zUC<AL$AFRRub}@3^7$ywyMGk6n<;Wznq6mbX*#bn_`jUWADoM5!)XugYnMVbbqcDf
zJJiq{RcgEXrLx{l;pFtTSn75R0aB4#=5@OwQj4E*+6C4*Rb}Ndt|Ryt5|$D==vWy{
zhqACfmavVs%PrlG3xe{EyCXNAo&>!JEC!|@p93u^e>^p;`%<3OzIN#r+1$zba#6=A
z?IPPRSofuA;ds;-6WDT`!ARn-;pBOT!u%f(pD*LcKIk{WFM!Gax8d)NJ%V{ZEPq)K
zQMK#or)1yiXMeHvAlbJBS+DBOy5qvI++WU>dmi*6upXFty#x9lVAf-1f4AjG>zW|{
zc1CcSh`+1QZr-8lFRATR-lYoHX9XOaT&6}{GQN{eyC+@$O;2XL#BR^~Ag(`*7km)+
zK8_F3o_z1mGdrcHU+lC5b6_n;q}ndPS;DADlQ@eawOkaG<0E*KB=Sq&$$c+S0gU|m
zLQ67oGw+AVZ`QP&^v?99x5au9=}lv1iOXnv2F{y<s@oUl+Yvrj^1Tvz8`us^zITMb
zH~E?OynLs(2dZ*>wMm;f$$E`!dk2*^p}W%Hzv+uXdEe!^X8u=Sfd)xn@~woH^zYm2
zv;_-K%@tWJ_U};b)?0pib@j*~|I>Qr-xcP+>i=W!P2l6I%K!g+@7$S8_Gyzg={{Xa
z7us}BX`yLLOACbtT5JKKNt1N3X%n*00u_cuD0@V}0tyuoD-;N;Wl^FcRzVDlS`o1*
zDk4fiL{x;|`#H<p$z*B${e1mjzyIs^J$Zd*p3I$jKIb{xJ@+inG5W>s1oGwJDq#6<
zG}o=Y_C3vR_`8|@MvtanpzS_r^a}64kR!J-_X{lVU}OoF&%USgZmX?rNLpUH*bIu^
z;-2q(kT)z+NMpjDRJJ3N+go%mN2zrZCLSB%vFU#?@-^UkVB>KIvV`>Kt{&sTS}CbA
z4J#SOn!+&FE$qB@uFoIIVgZgBi45a_1?s`IuAig&sG_&@LY*F+hDXvP>vqaK7!GVa
zW+6+k^GUY;_7o436Zm61POZ9bkyY2XxUaFEUdM&A{&-9XpTvE_!!ZSMy4UsNYVUC@
zq2rS<d=j7C$X^Hd02`l2%ypYD_B|~=Cvt}40>(?5nv<E7tQt?|_fRz&48OBm+bjGd
zkjH@u!1B*9*DbGo@0Gt>@qD@`dZ)wMkAB-9{37yh@HJrhA3>JTTYu2pM;0-Epr7dy
z>}OEz=-*xExqRlXydnN^(w@uX!D@Nb%9ldXagk1c=PQBz1CfsalYr$v&Rn;4+xM>a
z*V|ObCBTogOMnNJFMwNI%G;}|G|0(4{XLGV%JCNa8Q#iFH6{C!>wQPM&kdL8__P{6
z$&Wjc?*aD%8=uF_bsG=+o)(|Q>O9+mWEuD{Jrg<%pL0iw{m8?>NMQM<nCq6uzNhi6
z#8F6%+(j!-Rt<8UlfaLV49n6e%R1XnnMSevQf=pUqgU)~MgAhV6<FSHnCq6$zNhh4
zFq*NYLEXQT%vbls+-7(?(QC_F_^ZfZ0I<BHktOuD9>tWm3hJ9OcOlEYC#;ofe<kMx
z$C$5W8(>y=f|Rl2yg9nFjlS~FX}cSQlmEr;%aOkbz631)eaI3HQQlA8DyOzeBiQO*
zqW65P(XG$FX?<cm|8fh?@lK+koh<VUSG)cO)fSdtrsMIU;gNX6?&NtG3;{MCW057;
zbhqzm>A&*arbTp0RZ`en@sp%~w_EXU!`pyfdmq?|d_DLgu)N<umeBWoxE|ic+qFlD
zRy;(?DLl8Z6T*2qHqI+3=G<0FUZrd;b)4_WlPK>xBrezXJ6{XpF$j4Sm<Mb>t_FEC
zNbkoj?WrGkoWw_Uz$Hfx*^_%KHuCjM)sy>uX2w0a-rn4P_vB`@<<gUr&s9(EIT;D+
zqbFCnQ`^x_93@CT9zgyz_${#M`Db(8=AV7<l8>^eT0KNaJ|?^2iGI?PQ_HD?F8D#i
zTXt8#dm{4bU@fq`o6U90XWzT<p2S+`;}+>OJ6-1Y7pp<2@3?Fp##gt0tiM>2q1s!O
z%)quQjNL}R*!^?l*TJN(2l*#y@-+Wj-eb)?)1@U{&s|XUc^yyVW(DV{4*$;?Kk>7j
z9Tm01*N?3ow0=ZwfkH9w!_EKlZsnrd{>ksz&*XO^%lk;yBuvX1enWWp7jVQp{QB^q
z&+}f~8ZNj_-meW8T*G_6tHT9X@m_Rgc+eH{`Oa{`<?{b!;X$91_e;ZrE|JeK4i{X+
zdn^&|{|U8w_{aXBfAe1akzepH-i!X}5Bi7v|Dj*-ce(z7Kj?4r`TPE$zcM&E{4f5X
zKl6V~X0<ACpgWdl*AbC|@Q7$ZMsZd_=J1?B*(34_a)-wT<qz*asNaaff`X!f{RfOK
z9#k}9aKWJALkA5RF}z^d*!Z9k!$%DoId;sT(IdH^UZeA6&7R=7_iW^yU>C6U>P6&(
z;0-fRS!mW-@9C*tNxmdqZ{ReggYyVkd2_pdJ43vs>}d7Q44u^v2k$4H?Kf_79(Sj(
zLpaJVerEqTnlH>SY))|&bA1C?t5tAiG;}#@((=!XZi{+Le&G7gxcxKAy&*EL$=S)1
zyi?s{{gb8l$Xc|J+s}`NPGUjEHmBn{ZC}|pf_=CbBHsqufwk|QdpIj;FaEVI;i-;L
z`F;Jq<3;^$%l`&Ov}LSXOiURhsc)!X-=qhJ>^E!cHr3RwZmeo(sBM(CR_|#YwL9mR
zxwq%IyK_Dsq~6}kR&OtaZ_goBZg#7VSa-D~%{}t+xe>J^*MHz6-JVqyTbBqs*W;gh
zaD*WhZ_rDw9DN}URa`uadj4>6J{HXyC}T`GDhj)Ea&mE5kQp8F?MUc}NTe|4uZn~d
zjD^RihNf|_&X2v&D{MB%^alUR3q2f)oEM73z5Y4jd%e(oEZNAu#S49b_hLpHWe$YR
zXM+Y@;`d_%{i4{QQAN*X`K*NYex4N}647<hNDf~e+P~lnUg!odGCW3XhI{?K>3OZ;
z$Y&<9ADpAK?{&$yP~j0d#UuJ}8hOGcZgjvE?vYnVK7Dy4i{bbYUv^nwp3Oq8(O%wr
z;o^70g@czzPUfaS!KW*f$H;bB#^~5+?=$Qvn1Bl*w!cRAgjanvoS9t`S~YsWfMwi5
zPsS_Gg?_mdrCiQgcq^Ry^Kf`%)E$xi>6-D?Svw;SxPQbsSO2NrwCu=eyi2U|21HJf
zeXIOsgqfy=XBFdF<8g*OoO4h^UQO1}d~a^d9XMdxPrNm+c;Srr(V=PK%zk5I-q+l!
zezg7tks)`5LthQAnw<5H>pky|$s5BCQ@k9_4#oY9enmy$JINgVH|pnEp*OOIXNP~D
z6&@7xRua{yH`$*SsflJ6O)uy_Aa_V6W=s!-qLIkRIo>3;fR1DuBNiJu;7@Msad+7J
z5qz7mtsXZNFSr>eXUySX>4J=j8QX^3?+&RSG7_f@(sB4!$iF4S<D{G?Jn=d9Q<tUe
zEXy2DF}liiKb!fEpSPI>3`20q^?;ZEO*XE$g>Qxme&r5qcfHqKR{hU*cl+)i-N**-
zF?Z}<x8xZQKd?tjGsH0_N4QtB<|uTJ7YT*0@}d(nzL$~p>CA7rS;d)c?D@!im!(OW
zPq<kRxS4+r<&4b!z|RZi{y7vqFC!EkopC+8$y^FGVfS8LPY+NB%lKdJ4{sy?6MPKp
z{b|y@`u^2n)_bI{o7hm>yr6M|*-5}HeZJhD4tU(3c09(ebk_c6<5Dm-Z_w;vO#QIS
zb!JI4JT%5pmC-2~aZZvMF(VwFw80x927ZPn%bP}ln(CTuw@&4KI-UvQQEKA(W#oIo
z1Hi`fPskEJH2YrH+}d?rO0p4QtHz@Gt(?Xzo#9cPnSTwvlj(M5PJV|w=#J-o=i;ns
z<W7{O^+)*e%$%%nJTzjkH;PgJ!3CjWd=5q?%BVS8(X(>PS*cRY6#tN6%A0+Q_jlL(
zE{^7Sf^BQl@h-nF=s&GN-Uu3iZ3kPCzYb=+rsMm*d7qJX&TWG%`Kne=Z#C;=SHj?g
zx9}6!O?W>GeZpOT#|boA@30>{YZ9wy3Ti_e&+_VM063n3?bNxEL7`)^IcA5mmMM_4
zR1(kgN0ZQt{7=irC(w%XbEoq`9q&%!6em5UT!ijtECl2No8F_5C9FzYhihBoWO@_T
zg36^l?Chv^-pC5pY0BP8oSMkw^NDs78u}_9()<nRkMqCqUygh&_&l)uUq_a3NPZ&1
z9VLjvhkeJP!|;EI{u0BV)5h~27z=E^twgQ_yVKUG`f2`>lj$G}Ye%(*Z}grDyY1nd
zc_Y(4TN_z_fC<3tY5oa*WN1G3mmEBlmD9H6u^=iIJ~DiELAYNwr)0_r5TlF2(#E_m
z&BOrrX0<;4vtGnSMd_nD-S!YC8}G-EzXyH*Y`VRUEMemfy1ea8TjyHMozuARYIh&!
z*_<BUtFE&@dnED6^j2iDJVPOxH7ruZY7Xbo)a4^i?3+3sr4I!4bs_R8;8VcH<1Aze
zd(+mp+VZoZOGL!oDSiVpWV6tYZ{QCid%W^~?CikV2ywulnc;0iueJX*<eUfDrvz-i
zU4(ocC`()Cn{!Loen->B`fX|6={E5w)llEqTw8OB-mFKC@>sc8jcMKQskc??^=$Q;
zm-3n=51l(URSjLo@mgm+<Q8-Ibg^Hwym(U4SKO+sby?2u@%Np{Vcq#|&aEtlRcCB{
zDLapw`)ywK0B?9CZ&=>EIo?sR=*$~4vTn-oZp`rS%ovv&%gfKrxG`fApM>*=jP>R)
zpsaQe-<q9uwT$JkBmI2u8P~himG0UmmMZ3P2YJYi;MRi`N#inN(R|kCPYQp<Wu`_Y
zCh1x6xXwrCp`iU5gj@njflbeK$jzWKZGU>R*EKyi)Z+=OnT6Z9do^o8)O~`x#h2CH
zVq9%>{U3ejV9vOoyU~L#=ahNz9C{@bv&QlMr0hsGql7#zhsTCjgiA7xabww&vXv)n
z3|!;R@J|VC^Eg68Mi0dw61pUGKB?{4PaN&@^y|p)f{cd)J8F@4fK_Il#na|}c~A4k
z(iyF9#^tNb$1s%jExnhmMitMIRpZxP<<@4bzuu*GKjEp|y*qd0ukhof^EKmDHg9En
zML986g%AFgm+@^cve#vy8eX-?n0^cs=VkT(i5KZ$8)Vs#@W2u;`%5h2EMgsG_!<s{
z%jevlOmBKP{L7rI4!W@pPMjZcy&4`<CV6Kuy1O7_xKxXgINP`i*XyAOJG>T0BN^vM
zmWP{FF1J6W)8zm*$4Mt?XWx_bc!aTUVC(60WC?eg_To#ez1&xq)^3+GOeI0u+`a5d
zp=Wc<{Zi_$_MP`~$3=ag-J8)2Tmfce;av=$MtNDd8(ugtcVsTd0Y}5x+2L@Wl-S2y
z?<3bcQB~}Y@920Yh=<L;TaoVp_X8Wx7my{`a+rSqSNBiu{i}k936FJ>H@Lrcajm)e
z*V4}2;W=NzuT@UrFlPHlW)yniEII!wXLL?<uKG`T=Gcf+kYS;-Y)$!|j$i!IARUiE
zJ`tP@Z2Yz%OQ<vZ#?r^jRs1-&H$938_fEAk;XYZJu;YDJq4u9h_2n@^?h#&Y^w?+#
zUSQ|aoz0Er=U<R9v0qrm0#0ThUom5>ylhrc{l2LO#KWfJZ;}53-UT+EpCC)H<2iPG
z-?q!rEEC6-=Wbb7U$^Nzz4E$z!F;!T6uW+QT;N<;FpPur@D|i>l-%2w;iiW-Ct>)P
zeltj?wa90K7GU{5k1S!Q>A$^i&WT9!C%bPIi&X7PxSy3S=R|qQkTiOcfxUu}939s$
zFDq0m3oWvU&5%*ytU|T1jI9J^x|tB3%4c-C9E8`-L;nLgx{rGYu<;s#EFpa!+QzG7
z!rJC@8(7T{xZ@~qBvlH4>@`|=zw3N@9E+PXdF&|UcrWs3Dl6Lb>LAu#{y@j05}p`5
zQXkJpz7SkuxTVc4PxA}fjh}rN^;@>o%ft`s1QvoinZoWjEj%@Jj5j%JGz0u2@uE8~
zYi;;=-sfiJg;|lDH6}}r_;lJ$JUR`h#3PfQd<+zTWO^V=u;WJd-NpxJA9c0W%`4Wg
zZ;~al#HK(UYPj$i=TREE!7|-x&otDEwEY{6Ug5n2`ATpNu)JS1*DarY?}7K!tuoc0
z%KWr9jHMxJV}Ru@-*56Cy*B?pL>}-sb6&vm9*-=c!}!}AWBmOFyiN6W=hVtpGi;Vt
zu-&ayotA%SpU3^xKhLPyj)kv;ofqlT$&wUK%)n&=r~Pm{K8mJU#uCnB3gkSue^%kt
zg2`h?FcqSFyj|@2^EugrRUP-cp$FAr3yu?iR>yxg@w4%N9QixoX<*~ufh^&W<ySWM
zX$uN)Vi<K6p5$DM#~wMkW0+*xWX8dGYcRaUPXxTB$g98_V0o`YmN3TnMQ(no>-__-
zeUfggs5>Uz+T3rt>h6)JUf*FGGq;jK>h&3}P?z>aaDJeYk5zZYSy_XpF+M{#Cbw`<
zm|Lp2P|-;^AgkZVaK^AQm4rjaQ^0q+{uw;~6i71O?S`II`?H8&+w(dd-z2^^9la+*
zPA13!)}CTy35QHaX${iS@wFb((fNtytwgWoJrDVMa1*e+FCk0lt^6h1A9=DhDY@I-
z%ZhXsO(pc&sTb6Si-o%*&hOa|kfG9!qX9`T+0YR4vis*o`;Ckg<}K)+idjsXcthq6
z8BH3#;^Oa2rQofSg6cjUe^J{}`mLb-+KPNO*a2*RQEa$@|I^#Cr{C(@UzB1vxw&e?
z@>*IlTglXi^3wfNvk&PkXW@+5d1c;gzigoMGalMmN}4(Bkx1U75$}<R&ufhJ9YuJG
z#&@OfXS3)q-;?#Y2^0TL;%4(9^lkb=U;s#s|7`wG_pk7F+PGyhsx$>_oQ3^~kVNVT
z(9iijLtx<_tLUgm4UN+k|9QlJP1Y8AbO1T8EW%164&)f>X6O02{hWg)eywoZ_}zhg
zFL)Bz_`QbwJMePae$VG#>N$O-r7E4vGKEE~8eO=?M04ouaM^I@;*7~OPdE|zb4pYn
ziG)8;(Zm}m4n%yl({qiDZB96MxMZ=@`jRdW<xd6i{S@+g&;o3HzlyvUq}QiU_Y~iT
z%^NDJnm0<ED~@E#$6nd@5ne%yu-HWWG~Q2jZecZcuGjyP49Ren!oyePt;{`z{TB>$
z=U$iLU(ZUQf!+j0Ycb+%roCrLDPC;M7|tomxo(_<KUEpS%kG!8J+XFO59R)J1oF{f
z39$CuhWr$G)A;F~^t4X*G3nz1G!G0>Z?+yWMzv;tIrqA3w>5jPdd;|wp76p>cl3}k
zuV*`tXKchV#`e|hyoqFgst`X}+{Ow{WHoR9tl4yM-gEm+DK0poBr<Wr1P?#<j9pFi
zs=P8k7FpJBGGhnJ^ZMr=F)%zV7rU-=XNEIkc!R;>-@E?B93;fU^n6Yf@IG|evB*i!
z54hfTz0HChOG8{@(E3Yb|967^+Zg1x0M7H0_UC+$wV~k6Qf>FnJM{a@2fLO(X&##v
zpWRX=bE2bK*>itg*li8p6;f|c>Hmt<Kl9aVi+a5^tlsp6?ysxV)$`TsEv|YyOTC_?
zUWcgHYxRY@eDz;<C8?i`QQsM<ULV)LOTDb+tGPgC{n(!!Dk}!<E-xp8-xWDeM~`A|
zB<dG{F?lEViw(?VAf-66#EZKlSXemFD=N&1#BiHC;RV0o2|x5*KOENYqh9upqDxTx
ztl$5~e&}aD!#&>gj6h!T9PaM99vSv4zp!8a%YO0jSmY$7cXWh#9B(os_MBoG9qzS6
z&WlWE`x=LCXBLNx2NsWyPrIB01@K3c7pctHk{!JuC$b`X9DQRsz$+FRWE4%KuQr**
zAd%xE7ve^U-^yQc@%Z8|xVhot0Sw>s(0VN6QK-fvZE?Ti-^=cz6<}D#kNv#w`W*8*
z#~X5uEaczjul9})P2>RBvgkg~YxlgH-0Ug*`;ePAi!pLergw)^awoAwY`Rx6>>4kA
zmy26{_gn4=`P!}Sm>E3MvI%gkd$$Me^zn`HtKE^Pe%xm?5pPJGLK|{Ng|BwmKNzA=
z%j+4rH*>sVNdCg^FAMY7l$XiA1|9yS%k@FZYzd!8y?!4#|LKrZ2<-j$L}UrQ`TeM=
zm2>C0QK6Xe?#pGp?f_5+u9JU?K^{wTpJ5DmAg7{=lZXN@+YgrxI?@mMKI47tTPyI{
zDxv<%Wj<vH(O3V?9h9S1W$z1_W!X;0+dAI6h?kA`UgYn9XMm0O$H;xfyOzg=lz7i3
zmh-_WpcV`z#xHpI_ri%XJp=|J`IFPDkT_c)pZ}2a^CCHUY~zrJW%)moxe>NN(@lKD
z^M@+_(!c2VR(wC`AG9D}32p?o{XBv6Sqa*{sQZcb`Liai{XD0pseY}@MXz0thljQJ
zSlfg*qqVggYt%-F*l)wc{zFOlV}NXkyUktw1=qj9{an=P;NZj%WBk6Ko5OCCXI=k!
zhF>C#Mtf1b&v}__;0qPzb0jBIK%O6FYR$)-=rkruBU#j6zAF_vi^B;#k0WNHxfx-O
zZ;RxI*~C_WhY;z478GR{XW<kbhtAx~<;0>BIAtTsOb`!%UZ!kk%aSRuC48FceToV*
zj#Ul)r{J1R{=(tx%o@JKDNPykGZs_EAHqeM+@@C38^;P2THn*@x`#Bg{etfyzXaX@
zHeGXmKtBdtnl}EhGi|??N>^Etz83#SO`FtnWKm@$t9P!HLwAO(%_bpdf58pi;0{yC
z`8=l>(XwPSqvQR~3%yAx2zl9m^8B~iCZCa0G@u^eT;a_A67g2ozfN@*XOsNH*u>9|
zO=$nCwqql4jPaS&!%LCB0`3B~JRd}s@a99he7u>q|5(MJH9t+YlnEK5P%gRJz2Agz
zC)4gdDPCpTy?pgL`Y9Tv+uV;LEbf|(1!GHc2G7My`J|{cwG74PWDUye-w+)d9x#3|
zzB1>#BiyOpik#T|*s6@oya9Q$vFREdpt>HXhK!csRj2&#+K$rwfgKBxPXViewPO>q
z1bc4QjI?tcsv4^|R<&&BY#0x};a_rZ_wXB@f4e8i&zVQN{MkNTvnZ<(yz<<b^kTO8
zr;^6;4>f-q`fYjmF7l7T3&8TfiYy_$-(|bn+Zs1D*Dh|9%2ZHMMmLKl-P!G)?i7#m
z;yk8OC>`f$f1n!NK~KW)mi$obmHeBBya+4-mUo4@ZtHdWIM^0^3Ml7fGG9{AAgiTg
z+nw^c+!NGX(W&fJh1qfbq3zsd^a<a6$d7=1!16s|uG?_}`)=*r(z3M+W9j%QFdpli
zj{3<d3zRDiU-U<TePfU(g2}-0%{JG2v#+svExYxrs+*}=ft{7hm>}z4<6JO}jo8Z0
zMgCxAXS?Cuj$WzqV&{#>yTGl6OX_$@FXKYh8|r1qPDZRZOidCNIfX^ek3wM<xMa!c
zFzl}~JZ~DE!jtnX_drk#tbHSqCD?Sd?>0T*TePvZdh=>2KMSiG8#mQ92DBA7xb)WJ
zk8qgeWN)252z$D>ooD*p|J3=p(dZZcE0I4BZUC15Hgnzb+V^yR8BnNEOU;t(1r>8w
zM4dQ(+!%%{*2!F+%;JA({x^+&;m>-Gy=0&eSpK2Nhhu*l|1>Gh%JXM@zVk4hsv%N;
zrUom(%MJfVqhI(hMZOAL3oQRl=DM}pzNg#2a8q+rV7X=fXE)}A;XP>d3h#%=p8)U2
z0dEAkPrEmAOaup>2AuJ6Bcjfj1x_Ng055AcojVL)h0!N`8<FclBd~U!W3F5K?0eEq
z_!?`g&*{$hU`8rm{3D&O?M9#Q{Ra7u;B8>}J}}oUkA1g%98{=I$<vNUWpi-A%%<k3
zbNnLbK$I~lU9OI__BI&)^5=tgV-50Junt)MI&;0Zc4G^bxW0Nrb--G&jM993jdMqK
zve8&z8%OH1;oWESirqg)ehs`1EbpJp_1<_{OeL%3S%sw{5YVeR{o|{hw>d_J8-g@e
z<pI4@@o$~(<v$7R-h|u&62SIL?n1r~*z~sVZ>IH2)ct6kZcjKRZ7trU)ki69TIr`4
z#<<d*lI2uvoxWm*H+}ewvChZT^-*e=HS5aIFt+T5@t4--vaQ9tEreI3o3-2SwcgEY
zbLLi7a{6u*uVk$Flk#5qv9`nM2<#Yvd<2*XY&y;~*LzFHwD>2}u}C+G6*P%^L({!8
zO`GT+;hwCfZQ`G3{)Evl`M3x9e()f${EwRJHvR0oEx&2}$@EJ`M7K^A^PK~s`6(?^
zrQwgh5ZFHoc><UUY(6eSJ_V%P|FGNjxnIte(KRW_TvU3a%iz<hwb2<FV>o$t0*?{&
zuJE`toWZ#a_N8WtGychb1KoLqwYa_;qZ%V#;?80v?uJ`}q|cMc-viG8n?4=px=k1R
zZqsLFZS#^%oFFYzTFICd#K+Kvoj%|BO_*i2x{#08HM`RA7QYzq&On|I76Hq9qPcGQ
z?0c`g>Q2#cDm!+D)Mq)TU&~tUh&ujAI?$|8Q>B7=ZNtCI=oh>1M}8DM1}y*g%yr9a
z-!1<Jy|FJanWxsMv%J)Kxlj&#&y;#S1fQp>&qeyiad;#l_EKQ?5y+FlRA71Mn(OK1
zp(kEta(Nk(4a-+L`v#0-eVl4fN>kbsIi5|zPW0M-(4ENlfct>ueH>XrZ}XQMs$~n1
zY`)PZPgecR_-yid`6<qUfuksVvO^1d$1yl#ykpaz8vf|Zf!(8!$Ad}0^3O8YZ93cc
z!0xX6(l1aGW6O_mo*OtUCl=+%(v+#OxToz-7`>9uUqRjj?g5tf5p&)0+4ruzt7;oL
zzP+kz=hM<(S<KvbEURBCy;EuUqdyJo9*;Z=90hFsPat0d((}7yTi5!p(?2~PQUZ!f
zuM+p6*LpPI%bA7QT`Ubj-j55iDG&XAQxN0C%YLjA4gakG$3tHKj|*}xD&(AJFZbfY
z0T&f!@?@Rqa#*#S{c-^d^cacAml0})w6?p<|EQfNOE})T9OsTX?DHHD>E{-@MeYn$
zUgEw^=QpuIf~0fi&v=Fd1;D0r5wZlEzV^NEbe^ude?#deET8Qh95h>&X6Vhjm4<gC
zdhPStWyn{6UBITVa6ZoeAEx<Z-Jj-nZ$tIM4N}5Z*EeoXX~`O$<<Y67({iWN#!ipT
z$a4;|%`Ws3j;Cc8MfA18+((L|-!0DgZE@@kTxdtaOhIt6vYX4`B`t86edIbEH1RF|
zd5})CkQai}fQ|2+$oqgjU+m@Y>*w|7Zb~l?-QueXL&LKkP2d?cfy?i5r^npLtm2u&
z$y|n8TyNGx>{%N+UG^_A7&Dp&bq-1R#h}>Riz3%eDDc7w2KMp6^7^8jw-$MSTvWj8
zMH2=@`yUxTihe(<t0G?UOm7-q8~h=1I?fW7bl?@4X`zhC(V5yS(p|0(t6S_1XLqE>
z!hg?&)oF|9a#DOCu)h>}9yk_Q`!^yt0qYNYl{uGYMyRX(Tga=%`ugT%16<Uw5yROo
zo8{CjIWcn50oQpuG?G=lQ4R>sY|V&Vm(kDjiVJWd+|L^`WSF;tfg)_!=$E=<{Ig_T
z!4g>#C<T^qFhj?;ow!Jla{VjhH^3i&E!Xdw>$W`G_n=(sZIcV68=8!4fqGo7Io8>e
zF&5VgY6qKsYA%gx-m+f=<@#jgHQ)?jc{d?T=xrRLshZ~sS?C{dsyju^O6N9QN6IQv
zeA&res!WzuIIV`a&FB?-e}w!3co|sU*Ua_w_9|&_eUohEP2ML|1wN7rT)EV_p7Ad3
z5kfl7SFR07XTw|aN|4Uw$j5=>f#qFguJ_7Y+bkRP&JE11JZWvzIct-%lMQpzH0zS!
z##oW5(|NbiEB1a1`5EvdV0nLUuG{ihXZ&|sd)0Y=^;>FJuWMN!JUFtT`vKV{de%$$
zuBP*xOC!q|FYeeUW;2F~+X?pV%D7i02e>SfvR9g=<5T*}ARSIZJ{7D1Ha_dj_1@AU
zc`$tXV@Cz4F?6%@o9tPP(5XCF8l(pEbcVmp=$G_(0r_?CJ7D=UU)Ax8U8>uqrN%Fy
zO^+nMN*Fd$Co_a4pYJk<#_8z&Wl`tQuW^K9{sbHd$nba`E35OlI~Cw2FUoOJtj%Iy
zXaCWp%qc#{HRgo|N7Pa29oaga)|hxmJe!fv2NwVv&z<JFt&jHI#&Zk45!SCgF)fu;
zwcL2D^P@1;Qm2v`%!=n|-VUQzc;7;P7rYNF@5ko4<+JaWSFLMKV^!lT8$abFa>v^)
zTylIRVR)DRDkv9K$Q!|CV0l~2b<1bpyYNb$B=bWL>p;7w2U^yXYJ1y_Ua|KT<k!I)
z!1DgZT(^Ao-STc*hZiH|FDM|6m(puI<pk$VMpam1ChfsY``llet9i>_3+!Eqd<Iwx
zEbk_By|;R>zJ&!H+p0F#wgkhXMHLr|htCE!^WVbL(t4;VU(<PJEH_UFv`2=2pV2RN
zcOV}GZve~B5f!Tawe3Q}?4Pi9<J3j%EK6F=qRIP0YSCndxR^YLd;Cp2xW>Fw*-I8>
z!%K)I7j9VAS>>w5ZO8cUiRZ4+Koz(4d{gcXuf(eXc?bABu=mgX$S;BPbcv?<aqkj8
z)pMx4TP7;bUrXHP%{k$y<L8tf<;{sr&8y3slXp~>^JEBr$oIH;d)@HuA(_dVd0S{I
z%c>X&DBTtEJ|Bwh@$+tU!(Vg#yWH>>LrfOlBFW2op)a_uI;?Cw&qHDVgwXMRDQ#fP
zlT*xaKh0K~EGO1a+gExp$oFN)r-IXfP4~~4>(;)5X1>d&yA<)Xgs=Fn$2k0?6&ThU
zaxV5K`=$7!8Nj?}I5IvI4G-x*fJurdS&_?;$6?p&N8I@%^8axCQ(Scj?(Y6NejSEi
z(*G~W{{SBW8^6fwI{vmE*moO0#$VKuRa(YP)xixzj&^X%IcDBDr-~z;hT$Al-5|wX
zJ=KHf#sbY>Ve||C2IQ^aY+(7%H`gt%eYgBI^@=%JEDOq~&5t_goX8Oi<4F-!8ReiG
zMG9}F;oXm3`~3I@awm8nSl<4>(RTN?uX>|i=1ljxCa}7w@**j7d6c>H9&nv2naGX0
zS$-J5n^XobpBn)~WSL}!+$-4@HY{0B<ApjsDh;osM>F#I-~wRdwbNX;>0sY&dTikk
zvmh}_C(%<GcpUzJhjBwvi7{0tMuXw&KwmN)klz9C0n7IhvV`8Aqmz8<;XO8#NmizO
zoq@+VZC;!rh^=%6SbA<Upv~|u{cTV$)*`P5n}FqQGS{tr_TAdaJ_0rnq;!wUCzJ03
zmpQMpW6R|G^pt#e2I%x{H+m&~UqSv2_&u<^o#wjbv+tI-x~gdd{m|x?lw7a4US=}}
z@>p<f&Pdkssttfs)pUl_Zg|Vy2<$xt`E+m=u)Lehb<1bpd*RhB+^a4nZ6F>D?xYL+
z5G!<~j+Y}Pi<Q$pP}{xF=oh<RME(VM6<Gc^%yr9a-+STL53+KC*}(ZudrtRx45vu*
zmi{iV`$XhbU^TG3XPE1j&%Rq;(i+#^8*8a(bt#hyrSc3taJKWM{FG;CDW~OzcaPC4
z_CACBJa`dU-d~yPme0OhUYcDt2R5>vK&H)-HL9rcmnzLaa-A0^j`bciX+A%h=H<oO
z?vmdJb}vId1$+uv{wj0b^4fRHpUS>Y)-MN9NVs2+oiYO-=Ip>D%e|kNIGpVLA|>Aw
zgLFLF43DJ43&^j4*MN=3AI){kZ{Pclhbn$4@wns2$=>Td#-n|(jz`%ag7jF4d^$K2
z*m%^M>z3cXC*y(liuBCTL)8?(&Lg`Qz#+zdqgU*I7WqZ+Q($?2Wv*L3``#O`YUb25
z8oU=z?#5egcuU?4>|KO>JU9_p-c!wW%V*zv<Ly%6-ssMoFuc2sUa|Kn<R5@%f#v;`
zxo-P;>F0CR2I;)MswrhSqT({?YYyClXX`2Rc*5b>wP=<*Fj^$Xj?ZJUR!K-k<x7W}
z^8d%c{!@@o1D^&q9vjVdYqx#x!G4LyT3UPU<TRxbh?mjt9=Os;l#cWZc?MMr`b)JB
z{#Fx@Hp3(7@ig+Y;CW!<all-+{jYB85UT1nB&%LQ#nCHZT;uGSHlAf_>V7)OA1n8^
zPQw>}E3kVu@-bimuzV+&>(*ZTZtbQYD-QlrDCY^~YUlZBlW=~kC>NyM*D8kT^xkFk
zik<f&KMcMJEbn*B_1^5<u$~><DXhl`>uJuDGsn?&Q>;fSL)#2r>`#H6rO0!^alrQ5
zYmm<d_PM&%JXi1R<_EKJ+ZK7Y89%wPYcp4|fL?AjH`dGC^R`5`mK<GpOqR21g7hg^
zuULR*@ccw5@-Loi2Vd_N-XpiXQh%^}6f5V{p<3rL`c>lh59P>h!AT6)>C{e~BuF|P
zK>juOEwJhI2Xo!#i+#8G(}XMA>gEmgK~goGSRZ9O!A6c`+sM<s$(v5YSNe9qw-k8=
zSP3lOYIEK4*!Ld!RO6H6`+X{3<p^!xZlh1^dmQ;Y;QPSx{n%W$Joer4ZJ}SK#@SMe
zpla^e((ml=->tpdZFr0S9N0Mpc|KSKEbj_)y|?mbw)rNLm6LTo$C)~Ahnw*evUbOP
z+;FpJvZ+y)9Ff%*vD;WnDm$HuxTy#5#7zF~Lw*8$+i*+S?9)$`td24J7n2d0=j@p0
zwB<$pJUl$hPT5FCBouL44PWtJg8j|wkuL(50b38+kRJnk&Hixve77fUUc38xH5&t)
zGiw(wU$S=Ps<o?5tH9LsPZusbi3wuahrCRUNv&0{ThuEXkY%~pevhf;u{@Dvu<11O
z9?x%M`C|S<p8udXJ~GBDbcbdgDQh`1@@1O!HkXCq(w|()GwlG@=>1l*(m6O%r*rh3
zAioD9j{=i{&F`blbz8pdyN$PTA5^5yyZWv>Kij#(U9x55s*1dVoH>raBsTJ-60c-`
zxZvxNIgIIQr*H6gj?(-MM!%Hv8<2N_FPqOKo|dO+^QMLh<$e0prrJex<>=ETkLXNz
z&YgHpaFzoTI!9~$9a>jH^uLPyYw+6?{c9VWOV?IyshP#Jk(cM(<>onfv0zrpDjK8p
z6nCn0QhG{|XMj2SGxbdyPf@plAxQ5d#t&nWd^f)zN^kO+2N&lkvi=n1oMsVKGM}*d
zLIQIVID(Ots2UmEm*t8~Ze;X^DAzdl17|h-$xbu;SO?!`nFLqFgDrm^Ys2t)tt45!
z>TwlLi3PJKY&Pe_YFRVO`E7iQV}~LvTlR6u&ervi(k~oge#M*(lIyv6d(YOZ%^W8_
zPN!4(yFqz68F>|0V?L9FvguUS#Kfg?WXASRm&FpkDwa;E(X*4^*yq`skZ%RI_n>D(
zy-IDrbR}w5J8#G;N^A<TvR9|J9B+bKAC=yej#i`p%@qBANB$Ui@9DUw#*?)T%FWx#
zSZ00}6ziQ<ImJL_o)Ag$$$u(|C0R*2R`#3!aXZZ?%CaML`cxVYDUUmlF9etLz)K&Q
zi38PwuWj14skxea5{e|L4unw{Gy2;2txc!zBmWRQ-?u&#-6NWKIT#jSQRFl6mAx{$
znD8n^hxsXGpSF<iNP!7)3<}rT&9Bal;g!X;OsMghst4^RUQ7QPl!G&n*Mb`JS(o&+
z_bFm^lf;Ub4@`=(E}P6GVx*~(s1Q<pe2Fuk%Ad^x7GSIYID%5eqq0P&cZcRw_4X~~
zKZAGsipN?`6mM3}WF)(@oaZwr_3V!{`r_{gc1=c}3TB$mlwIcBZc}W+=m<NV8EDWU
zVe~Zcn>ZgyIrtp%72sN<M=WT)tgF8^v;WqpW#Z#5Il|}z93AKLC*An}<d59d(Qzs#
z=yZzyEwHN}axoZcKC|DIpHy6;<0TO}MV(LOS4`yK^}F0s=dEZSr9?FoymHGSv>N>l
z=!)~d*qcDU0$c;cR?+`?WC?Ab)A}usZ7+n+oNK>oMYJLx!V8>_q8B*M9B+y{(1}gd
zb{s%Y96iGGCi45>LtuG6LY7c!(zhobbuTDrb#eX?ZFM!(#{rf4eXHSH`a!^V8gec8
z46uCl$P!|G*fn)p8Hq5Y)oZ!V%Wn1hV;hG?CNg<(D!c`*?6@eOr0v^>zBvDjeLqD0
zDR>1~zF#9tNc6!sZRRZahPV1H*ZJA4zVNlV&c&I$I4ccbr{OF4d%!mbc`-O1SiTj=
zD)f<_Gp9<2cX(^G<+^BgYt-;v+J$fTk=njp=!>IJ?7JKJQSbz?eC@~*4qn=OIbmUh
z+|7r###*k6Ww*u*;bp0W6_ZW5|1jVij64oZ1eUK9SwdxB=~+5MGH`fnyyd!hc5B@5
z?M&r!rf9zH=!>II?7I^ACU7gTe7lh)9PEQ{M(G^Mz!|OOE!UN2x0VavGYnH_@`6Jc
zRbV;{-<#-*qfhw$iJbWl&OZj0uK-y>Wgq!hHg%3<;EdLU+j3pP&F0-uUY$y*^z1Ix
zc2=S{&L_g#gnTi$99Z6~ktLM(VdvCY)5|0yA*O01s2d4YIWY6ubmE4on)d*D<LDLM
zKOz4Ud;%=5|4+@^-UsjWX|rcZhQdn~Nl-@;s*=Fln$BB3P4iZu*YZ{)H-c@z^6o&E
zP~Jy6&zd=Ny3W`HRV6`PNvO&K@Ac`tvFVz3KYA_itH^%>oxt+`4Ov3G4|}IhpISQG
z<S<nxL7hpcN(1o?X~YK&Z~4Ch-c`ueU?Z@+TaYER_Q5-C*0iZJOa@bR64af9syy)C
zl*ZdOL)*I#y>awP{yvBNOK=ca-rpfhi1m@qGpEg%R%SAoDwLoOC2S?ymByQxsd-C3
z3V0VIuLhq6mbVI7LT8`t(u}g1vrP`Gx}+*ovNqk4!d)>-^X@@!9KB-iw~&7VUIv!;
z7swJC`by{0IkTtEG#RX_lB!F|%Jiia-uP_I8~=B}I}`ahupC(4laVEK_Q5-2>YN$V
zOHBr=s-)^tvNGM4!rN(hccC|qUa|LH<fp*X!1DeOSwce}`CB%<tZY`P$zWBLR9#9|
zrrjyL?Pc2D*vA3yIOH;LG_br2ktJ00VeiygvuDqqHq~aZR3%lHl9lO>6k?@~`Y}iI
zx1vAJXJYqV$os&zfaU)#vV@L4_@_^wIdjGg)k~u3N=TJbbt+k@?(EKAd6cpLlYoC5
zav3-pSpJ2`5-R#g_gS;2mXh)|!=-Aex|OV4cXj74oonnze;oZ{|JRY91m6Lc{~2Tn
zrG3~xb^45HQ^^6F^SX-ZI+m<td(z@C&)DzyN&X{{=Ya*l@-IP_u)7cbX|u{^OrJSJ
z^{ylXbXC)JEm_&_?#ka`_*>B*N58Tk`AP5{VELaxmJshF{keOT%`TmzdRvNL?p_I9
z=aQ9fZ&&`^M;rUyfWHL!Xs{4i{^O8U=)->QBGYHjm|CWKUn&A}8%yZQm#lsFb%{X3
zF`9q7(J%Jn;!F;)aIUwU5ZmVf8B{-aQ*B)h_vak?Jvq+9nLKpJ^QU_9OBj6}Df-?<
zeh2*3d?q%nG0!ncy)EnNHdU*Y)Ml3(1p0aVN16Pf)#$~)a&la98uCmq2iRcseP#=X
zi|bR|h7rwS&MTZeq#s|y$%kcr)MoA1Iuc?(E{2^;z~w1=H`F&(ol{GkW}<DT)5*?a
z`}oU9l6rtwqcS!goks5gbQJQT=w%15(+U1&^h!E3?CkoS$+(Q!VhGpck^sEigfFA8
zAHv}sDGlUdTM}F(JlA3uSMX-6AIIf?JxHMK<-5es9W2-7gfewaz4NJ!Z`*ub4q8J&
zIoyl<FnA0|kmtliZ{<JO7s>dWoL0{F{nC$Ef{qOrdCv3Mc|(Kvd$`Azp&2!lFqn~|
zm>De^C1YO_QyG`jaSbtCtR8Dgg%ATD5`Xm#yvgabQ2)t>Y0()`55Dc?+MWvEPma%=
zg<J({fep62G}Sh5Aja~rneXh!6+@;@n+~IAm;Q|^A9o;s4SXX-kNke^hH9}|k6XN*
zt27)mzdvBUtI7fLJK(P=zfZ<P*5-1kg>tkth}aBrK17q)rYo5l&T<xL`%1&w7SX#9
zc`;aKJ`)?Q-fB*T+f==|iTK6Q8h5VcTur4BhX}ePF{ViSX7uhvN1We_-kXuX1a|kJ
zx2m>jW0gAeuMo9`9Aah0ANZ|=a-;76zb)o}Wk2#e;IF;w!|NL{9f-<-&OTI1KBJiD
zB%_ZLFO`1LcQo<>u*7^O7p&bTe(UOM#L4gXC2x3nK9AGh_><8y8DNzluRa5?G6)-{
zQc*VLGse7RxK_TUEu+%pMAT;t)~XRPm$5L8DdboDUdF{#(KYFy#>w!FptxihRDG_r
zMHpIBMHedb?QZYpI(`nU6ll`Jsz#%UT^MfkDmxf(W*FIMPF~knldp_Eclk^IKmGUr
zK};0C#6kb1Ya)$(hReJBky<*w_EQ^s^FOg;q!gDD|IwdKRhtGB^tL6s{xn2`a(M~z
zW#CF+Ls~gfoxAB2qUp}7Y+;aCh#OyARhXu<)9BrwqW71`uYuq6u2*;3&^yEFRC=Wu
zOx0U@oQ`ivrtT9+xjzc|Xs`fCkj6Zbc0W-~$%2(9Quy_K@VP?C4w-pS^}WLA-Hwhy
z{9g24iF^(CywNMVZ8~hJ-BN4342>bWW1Kw$B#Y#3q_T>nR`-;I(c6KJen#&fk>3WL
zedt}w;hJ^gqs$wP`q9pJlj>E;u<D&QqrWsOXa^P{9|xA3&$`9iv;yDuP|eG421tF^
zb)MDbO19-sm%G$D7sxV66H@g+S`7V*;HpUa8+<2%R}=MZbIVc*CBM~)Cg0#XH$%Ba
z%dOm_me}9mDMgR>Gc%wP6@xmLnsSisC;imSMLq^B1UA_Gs@~F&^q@H$vxhs+6=~bl
zs}ozM^=&u5mHfW~`5JJ2&-zR%KIWs2mk*1iFxi{3v}kf0rg$mIri-MAmSsLcY)-!N
zzx-PMNC%Uy`hQ6QRk)aBlRx>UwAu14c@<syCdRk?P}l$L#9QjGNMZXYdV^M#nyk1a
zR(;9Z2Ki3dbhzX$B4xmq1#OwKj=KW4Een-36({KQelsV?zfX`kb;gMR8+4{MO~!Lf
z?e>)$ag)7L-4aKV=p&t-LvXjJDxA43Itin<934D=sd{`W@*42z6uoi;b#Gd~G{lw+
ztCjw-(Ys6QNJ#m(ANe7$FGa5{Z|U*<i_F0AvTul#64K3-im=KZ`9w7x$+Dt9m$bB>
z>)+Y`B)7wo=}KGhspKZVQCCubo&G&?st0EIHTkHn1izL~yT*|8QRP<V-qNqgcY~{e
z7WrP6@2eIe(4=dISfc8Cik8$XT1)a1I&Dk@6JMED<{DGiQU;|_4@>i&6H(LBQr4w5
z$}83>`*cgP`y^cs8}fs4coFiYU?;FamzQNy3K#0r%Ztg-V&{$#!lc?h_0@Kxubtn<
z`9#XeOUOS1ucYX+<+{7Zwk{eE8hx>tii;|DM<7oGrTR0)+ojw|WKHYzMQP)Cc@C|r
zeo6@w-(RYp)7q;b=_k1^^;Ev4N}Wux=jm3$l~hb=uXL%DtfK9p7b3sV|49nVXR76s
zTu|jiw+i~2iiP?X`cv9GekGR3ViXDed}k_el76|!F;EC>(D`8<{f)=S@y?SYB`<_U
z-i6!Tg!xga(Ypp6asC&*n~}GI#uU9aU#jcz#or~Tf3LLLoUSnX_UPZLe0c)-De!cP
zKASJ8`reZ~;pNg%sd<voEmx$Zs$7xwTrHVUGvB%gOm0a%m$o~ZH=KMU-(XJK<SHj{
zQ#(lK;Ma7_CCELZdp_x$SGg-%ZE5i3PAr<${Y^8gUrXuG^{C@yop1a42j%pK$j^Ze
z{h7)-n;wm|%`J^vOX=T4NQ{W{;uxJ*2aO)5K<BmOQw+HP6q(ONk=3)IURIc*CIdAY
z&ii9zr3g{#G<ufm->CelMBV}#d(u<AI>ob)=u3DTK9O@!u9OG&f4I(VWBW<Z-K;ps
zpj^{|<dyU$*`&0Eyxifce3-JwXZDYc&r%bT|EEh%=P5e<J~VL?yR!;?Cl3?=8?4<m
zE$i3gQbJbvJm5KdTweOyx+`Tya+1IQt0XBYrK_}^2aQc)=X=N>fPeL3XLWspJhWbv
zft|b@U<H#-_WybRe={8@NbRe2IVvd%#zB`L9}iXl8*F{yd9Avx@uYe=YO$i8Gmlue
zCuJ(^-0ku*RBC33_D=3)0jy*{le?M$z22_1*^WZkcm1@_y(r?-`bs0Azi&UcPwvtR
zt87$-TJFqUzK8F~)Ni7Q7F~Kgw3l)#=hxE4>;EO5uF@dC(UNGh8iG%3-0c<nu3K|%
z!>8-?-B}!r3*3zSWpD?uAtimc)T@EvCvu&=E-%L_ih;c)sZLsxn9^OqP%npfS@I?Q
zJEE-~1l0{r8Z%5(3%vLq-^FNNrHND5SRtst!?*agbVqbT>5d7bg(Q*b%&26uNoNx;
zNWiX%DB00-V%m&KCS5Y?Y~t#y4qojqdb=*S>h$mE;g8_;P}emZ9bic-IuMeckup+G
zZc*xnC4+2gk(~^2$v0%MPEv<rsADGSY9&%zrJQ~=kWa0>6tEmgtFE7=6lIm(+$OOq
zBUxPn3niv{)LzoQs}>5iij7>6lA<etu+aq}&Jr8x`qSZ2cFC_9oHTz*v-*y<BPGTW
z6`PcAcKHojMRT`bF^^xR>%*=gs_d)&#NEjEf(P_xs!9awc-P{FyJb6VOxU@PwRio)
z>U!MhImmBBlidIQg8VM{TZ$fAuT1YI$7y4VX}v^D4}6yzJtaefas7G7^T8ruL#m!t
z8)c6pF&culAx?9ctQYgKH@Ob4!stz)!_L=Si~M<TV-I@k8`L1xI5du92de4NqED)@
z{AU`JgwcBd9kPQ$?EWM2+n}=tz14N~O||PKvcph4%(;WcPHaz8>+CjqONaT6tWOiY
z^N|;VCBO!o4$5B{T8}{M5u7n5_V=W@!|2_aqW31`o57cR&}&jwr^E9qvOTGFoOQY!
z9n?BhIqF3IJNQ=*dRv<6a2G;^{n9l|A+@<@a!i|ETP(?;Ib^U~{?wqbN+!MN5#uWj
zU&ZjCyj3DsgAKq2n?CH?Y2GBsu1nl*r7f9@%+nctyY+8X{O?D85Iow0zQ(FeO|_^S
zK-32~dzCsHZ7CY9Mqg)&zR(E9fIt?o!NyPNlgZbl&Tn_qDZgnmdY7WZ&bOR_d=^;O
zgI?yXHZ^bBqRt%}NL&Xx9V&5E{h$zc7=63=tu1HYK;8@5deFzJ@@ke86H8s$4iZcK
zC)T@8r_uK&zqR$@pU58rjv2LPC!ce+vF=pjhr%nQ81Qm&D5MrB^Wcb1S}j^kU)@1;
z&C|&&Et=d3)#HjPG5S%?)XhY-E{_dx+V$HPBVPut>LDImtG3pgc-$!Q;N{iBiwE~1
ziA&d*Fr{Qa*CxknbbOqVK{^*94+g`54axG*jN4l&4_m65<V>E)#A&kg?UY-wZZqr#
zfeNF)5?y0ZChf&J$mfF30voJ;*1xZ`esxhFM}6G+S@NEv>mUWW!RXzmb*OsrBJwZ5
zuX@lc>xdU|-c^cjzjThO;m0^{soeuoT-4({xhD4{Rj1nwPkdA`j!}v{8_WeZB;&tn
z!}@JC#Jn(;n=ctQ%DGhBN~ppp+XJNSrw?S?>4QdpLhDj?T#tM!xV>lnxNK49v$4Nt
zJ;%bpv6*Soyp%Kwt6_dAcX}Y(Rs}4osMY!1nZg$y?K_zu57=PsVNn2SW+|T#HeP<l
ziQH5IHOj%ZO_4E7UR6(0C8PaBeN%tV)UWP@;IoXc>I9dLq;y2hH4}l@dL7SQI!-EG
z?m@l}JlI1#DV2JNgQU+UlG)CC(y>k6XX8fSn<@JKf&7vDKc>6gl*1EoD2=uXv{g7C
zso3gllyNR?sdR8<X@kordg8vp@Kk7>D&Doob)caK9#bw2mtVSE70HvGyEEjbBLzou
z>VheSNB+-pIt<Ug6rN|1p9e4Yz$5l37ui^(@5Rr_1_vo3DsOCkbvEd9kBtqU^Nv8C
z45k4alI26!tE6tfbf&W4DCalEg4CF2Ips!wgVv?e=OW}w!OkA^Z>g#|N8izk$%kU+
zpDNb6Xv_Vq(&%eX(f1SN7s1bZ(5L+HkOn1aE5XZHkiwE0lDfJB)oSz>k5e|QcpiZ~
z5tQoBR8l0<p$->g=)Fj42rqXtf+wjfo4NRt62t96=~rECk)#IjPB{(pZOTzJq)Hhd
zI`NIB{HO5Wi`)ht?t!23Usczv_6;R-c$Zpw)HR1IjNZ-^z0MK7lL4}U4c0F1)6L5F
zzR%uiv2CHVH#3j@9<n$gP@U}m>^Ax<v@VryRme49V-Nc4o9wEtD9WSGi^N%a+-=tW
z6g>|iKMEf2K~EDC&NXZ4O;xSu)PqgUGJvIf0<Wr6=$gB%r!@LMOwpfPLYW7Jzy_NR
zxR9%>)8{s$IYwM#GM}6*GY5^nrTVwZ?z51qKyBap7<M-b6Y8lgD1=0!)9BruqW3}M
zN5Esf>TQ<Ocyvd;RZSP_MkGaZY?CfuAExNd9?v}h^anO{v42~Y8u}fM^~~w2$fheU
zHF_(w4wVkI$Qwaj4|>&e2UTZ#t@JPlqj|9NB$}mg>5`yhQepJ&L5J-(eG~a{@a-P-
zHmz&iETi3pXe@ND&eqy!sf}R`Mqg|~pl>enLa-Rf_hjAKGGqz8`Ohhtu&KFf-Kwf}
zb?WT9@smqzidEIrj6ZVy7St4!PM8vPSdew8N1{(rr)0Mq{#Nwc{_@?(4}eF2<==-a
zA>FT{oVzr6vMhm`Yzfzz)o%stx{vYzcY))pZBk=Bb<&?w<CK3!=X-Qwz#B)N2ugwF
zoq;Uj)wFY+HE-?NJ+L0de*aST``_X2bR8c!rQSj>NA@67-wba8z1H5ZAnyTtf#tm)
zS;Ar1Yfs3OC`l^!Xm-VBZEq)fEpPrL$~YJZBuGA|`(y29XByjV%$)7`c(2i+)$mlJ
z)AF2)oB)>sYv1L_5)Q*YDOkPQ6|2*Bb)e7k{Q>zs@By%V|3H>-Nc)m(r;&|5hlJeW
zZg>3cvd^xJiJn%&SAJx`w-$Ll*bFRRJ+g$uuy0F!O-o&^S;bdSaSrZD?%*I_hqHa8
z=q#Yv;*VsDwsRkPt(`wbJ_vpXEbkwYB^=VuF04hA8Mk7kDztc7^~KxjH7+};lJ~RN
zR?S~FIpF^k@|mCtSpFJh35Q|#x=qdJ;De%GRvPwPXwlPZc=w>!+Wj>055TjA>#)jg
zD%*Gxc)a6}M}ND~ADa^BpMX3K%m&u3xyTX@!!ETgADfCQZWUKEcW~O5;{)et+~G@J
zN=Ve}^xTPFYu9e%z2E_0c^^TRaLD`&Sn=ZJR@ADzyxDVnz<F1=+Ec{48#FIIMv}Y>
zke7nx!1As@me7a2Oj);7H^<M9uf)lGyoI@q>C@)Mwd>9%_5Z9HbK^_!KxO}nf40}G
zj-RdL)e5gokDnmF2!3Yb(q}&ZZ^q^*^5-bWKS~+POQnfNd}<JnTI4#=0Brg+AxlU<
zH#6mabjGZyXZ~--s-S{RzQnBF@tJ8|;2lBBqeF*@-#++lI{gdzW8h8Gaq2Uj{tsfc
zf*7rE{1p<Dc%#m*rEuDK)FN*IjlibUImi<FC`b0bePZpFm3X9+>9L}UJ9X7zC!7zc
zI_q`S=`_6U=(W7RME(PK8(7{>WC@47Z+Bt6Myk$aRds#^Gl2O5uh>*t^mR08yUV8s
z{2P$#K{K%Y+mR(4hTW^UZ{v)*wo%;Jb3~PD5R1yM(9T5gQh<9;$C=@+N;V$oO*HFx
z?1#su!=I7=2|fWf9-$eBnGQY2qT-8^BD7=Doq3to1UTPv{o!uCZch%j=y+7XW8<+I
zxe;swHXi3AA7*;2Rh}?aDY#IzpI;#f09m2$g`%hR9AiIvE${2dZ-aM%<^3D7ghQ5t
z6xL;!e3G*GF_?jKJ`R}%D}yVxnf#v_@ScIZ4y*^3cN4ON!^r=&cB4$MH$n7t7~Xy8
zwf4S%{3<vIEbniTB^=t`fOR(ZPEb9a9ge@lVSh$UT!E=jv0d9+IxFB^fxH@g8d%;+
zWC@31FGDb#=PtV;R37itHJyXqIlx*n`S{dw?wqUn_n_a}{e9&9;5ozDXM1N`moBVJ
zDa}hAe<|aDMt^K}pnnqbbTAuO`;J0BT>Bbot2e20U<)e5{n#DuX^wvy9Y}rBxKiV^
z8Qz`fwRYWs{0(p~u)J-^5)PT4O)0G6-R%x{jpMHo)?&%b*m*h~KSZD98&JkrH;4nv
zHyT;OVdSH@`d^4Q!(Q*{qNmmHZbYx;y#)C(aHZioto%!1n}>1iPn;+EJB<F06#aif
zeh+*AtX=;=mT)+Bse`flw2E?bzE01ja{{}nkn2DLu)Iyk5)PSv`Vb+-ia(KxajHJn
zIX)v8r*UF~t&i=7w;jDUJzqh79sCYh-ZzmY9EQCcIhj!w{P)%TIORLEy=6xQycNi2
zfJ$I_Ymg-z(%yh|5$5XW<<HXw03NlH&&vl5ZyS28y+1;J5&Rrj-d`e1I1GE6T59Sy
zU~f@HA5Bl|XSKa0a|7OT<P$&zu)M2~B^=V;fVCWZPgl2>C$Seejs7@udvPi*(7e0R
zYwdjs`5EvdV0nLxEa5QhW$Rf5PW3m{)%KCe9fr4fUcfsOxf~n|Ebnp15)Nr^8mkP7
z=zGkCj(?#X@1gH86&GrIThVLny$AV0@F=jnk0DDq40~(VZTM7`eyBWMHH0mW-y%=a
zsRKYAhBtb2z&jFo5||1s?@VL~hkX7@VO@%?B`SkC?aBwvR!@72=lLR`?M<N9j^BL^
z`9AO<u)L2TOXz*PtyX%9E1MfPZQU?_@+qtuW|r3W9&<S%*o_UOojlI*kK_0=f1uLF
z{IubZ9uwF-4tW+h21r{R0*jHCgY@)1_7fgR2==yGGNDU6Yy=7t?v@MPgqv|;R)P(k
zj1iqZt8oV7MC)hOvOoSTe?o}ePP4sP=C~rK@*<rsyWq6t;1T2}K|8SN@;zh;>G4W=
z?y^y1{9Ab(?xWP>XU6cx<_EkJk!OLq!1B&VmT<^&--WgJrY&)?ws$9bt-aqsZUYYk
z%ll1a35R2EePea)hHB<MnroHKJ#{_~8eR@JO!AIE9tS1>%X=iUghSh#&e}ug13l%J
zXnVJ#*V=m<@?GE_V0rIHmT(yMZm3>FH?ooWh+67_Ho8cBn9G>U!_+)LchWpIU8?y%
zM8D-9x`4eG;7DNkry@%@WPR_M{d4lTl%wiCZq$7_Vd-eEjwgq9!@nK<mj8>$w}Cr=
z<^LM8gu}9br5x$QIUc>{wu9drZFeVnEpP5Z=5|0au)IT%B^)xpIbbi9wddS+@V}*b
zHwq7WWxc~?$k%|+1Iv2@vV_C3cU9x24I9)_nO=L=2MzB*^jhAJkVA`@+XI$23t7Tp
z*qh4Qo4HQ;W!l~~=(W5p$U8s+Sl&yJB^-vm8(A`(>|gg(mqpKR!@D27miM>FzXxv_
zuEXkIr?90Ak2)Pjf9bJ-{^OBP2B!jR*BWFAhhrBfDfc<%D|#v}*Xg+jz1FUF<Yz$#
zu)HrLOE_eG-I!!uPZf=-Dta|l6wu#Xrbjcl9~j>F;(+%k<ON_cu)Ir=B^-vmc-~h_
z(faIPSMJpI?n1A%w+;CT&<-r`)5sDIX>Y*Vr@ftqH?}0;Jra2aC<B&vF0zEa#yh8;
zX>Yv&`D)bzYjk{a{MeLn%!Vtpy*trs?fok9ec&NrdB2G)p;vp)=!vzGEY4H+fosTO
z;H>s0=`6ld^E$@`yhD*kgA!nQCm~BXjQriGeQDDO7gh8+VAW=Lx1-nEdp+`(!5zTz
z-i0jTknK_mYx$}3-SYACWr%J!<^tyep8C~zf5lbW-cIyd-n^y0GXM+%mUk$!gu}46
znKh>kC)L-~_Ho;B+6?bT^jh9ak*@;R0n2+mvV=q0+m*G~b~tvmw)Y@<E$_dP{blsG
zf#uCcmT(yMZmH%Fi$*h`)7zACtKnUPUd!8rd;z!^Sl-VeOE{#xU08d2dSYDX8f|X}
zdM)pJ$o~NU2A0=3Ui0=<f2SquZ`w`1hslV9;a!Se%exV|32X<JcL%bB-s^9#tY;=G
zF<aq$;H<Kh7`w04cJD{O<u5vcwVGfQu>50@CG?Tc$vGO^dfB9pr++Xv`AI`nP5g|q
zGiB1N%*<-_{H)n(;@LnvY&^e(ydOLVY&?I0ETPwQ`tQWDyn?2}=Qt}nw^XWTwIRMv
zr)Tl<Af9!|O<)_a@jMS%LSN+wKV-qgS9%&IlhCGepNV>^x_vY_J}VH*z46IuFsH%9
zcR%s5={opCo@2m7VB<RlSwgSrdd7b(wndef>Ql4i`GfP%ec)7i$E*8JX{%1(?Zn5%
z_sht4f<3^-_a0;keUw+5qGrUG2Tpy=w`z`iE`>bz8~zW`Z~2FuM0$aV!17N)mT<`S
zsYmwXsIq$c><icroEA<ol^apT=Z*d7xBM?49{{fc%l~U+34Pe#ttK?3&Oh7K*}8=l
znf2AldFbTlauS{Sw2%4d4in$_iXgt*kk11b0118etN+WfOrNKYU2odIl=zLUVEhV{
z0-K)GktOt1UuVtkUS0oB)3k?MhKfhR#CtpOvgP0<<e!08OkDd+*E9b6u}z)V?lAF-
zpB%(*F7hI<6xeiKjx3>%a%xMQc(FIL+F$Tgr}PmfQUOB)KXuJySL_CzpS#d&)8zr=
zZ-egv%liXl35TqoDXhPfK?#mMk`CfEA^O7%@Ez^_+V!TmW%jve_l=sr_>^E=avt(x
zunbuK<;W6xAD3*X<LEv$4)`AoOFEr~e;4|#{f{7j8+;d7{_i78NKbd0*d-HE`R#CI
zZfu4b57m=m3zOra6*p<SV=DvRNyyW|Y+!khLhgyThjB-95Rht)d+RPb9fo%&dab>8
zAm0lf1eW(vWC@4N?^M>_haH`UFKT<8RRQlX<T0QGSl)@q64KMT2YZ`pw^W_Nk>7ni
z4mcf#cRPBmy<b4S1>6QK?^lo|9Maw{tlb|6N_S~H-$b9~^G{`MH^>K;uRpSc!?API
z2G+N(>UNu*!{NZmm8ETlw-UXU_dMj!fh&OJy&74<q3ujzm6@aAYGUwQ$7f~tx?rNd
z^k!}E0rXnl_mTevJ^_~3`_zA8@20Km#nVF{BNuIkw*tME_cO>X;9OvNcOXmXwI60H
zFbnvTtUWKmRC-Ep(e~~~ujTz6^4p*jSl+)POE{eT71xh?uS>7Pi%zTIEngk*o`Jj$
ztOu5N6S9Ou=Wi-&_j256_}b8C?R*~jr{EXB^1X^I;c)Df@!OiJ=BmDOw&7Ntz9nk{
z-eZwhfK|Zqu0fV?=zQ(MDg!in4DK>Iihwb=Me1JkCC$4Vz1H5Rke>lR0+#p3$Py06
z-gCFCtFK$TxmNZ<6fpHFizCwK1QUk0__Tm`CUQAg3@q<5WC@4P*HqS`ig_5kK;40F
z$6&xJo58M~6?B~Vm$luy&~NSjCi1tzcY)>qKC*<vuv;Bz&cujXXVY61-feherw6=8
zBA0=qf#qF*Ea8y(oW?2-@ln-eC9oTi(d9hG#c$L0?nJM(cQ5io;G4kmK8`HmKeAVC
zL+Gn?Gj4A9qh|#C6Od<uqk!c<23f)(^E<HHvKLjX#`tL})9ot0D_k=$S8=<sAN|(;
zJ;?Wihk)gO6j{Py*nbYLMOZ=DcR}wkyw0Zs-r>mO!DL{0ry)x?WPYc!F2-g(`F#}`
z4xG)&$#3*k?$&lE&~NR&9r-SBH?aKoB1`D&xn=5%<bYMm?0e5o9vz1FL-bnS0cZNo
zNH7jq-U-MOdbRtEo>+?-ZgA_}hP--t^#49~1Lth>=&$tc{))DHJNhmE)5y<)p8(7M
zBC>=&^1IuUWh0%h<gkkE7o`oW%qTsK!76y;cj$P=&kExC8RQml9<cGe09it>_2Rz~
zODRiwIKi$AYBIwKPP>Wce&S)%bI@AWvVk$c#`6ed34N8LX){w6YTJIu|3;$rG+0&o
zRh^y<#KXq(DdcBC2e9#c8CgQ_<?g=|%c9B~gF!00y1La323GGh`Cl2tcNX%|U;(i4
zJr-F)pXn;Y3M@}iE%8cq+uiE;EHx_+CW0CaUn}}-`rL_pKX@2ezJ16N`beLEt*EkD
z9bYfC@oUsZ;M8jq<6qPE;fOrRSByLYj0To(9I}MI?3+IQ%=LBkRn7XmtcnU{;bzBY
zUF*@-!dAn#5q;La3y?1YpEDeNk9TxonTbU+9e<|NVf5}#(fbziyWnrY+VLUsA?-*u
zqfM!umI5{eNmr>$o|WIF)31D8U{57-9XK0U-WFsDz312To>_|;9t)b%x5zx;oae1K
z0~MuT*Zl41x9Rya<X?f;f#rV#Swf%r7nGPDZI$2eHhiVk0pGF6E5IsX`PLvy=*!+@
zZRn$XR_xLC?M9!q?@{D$f$spz_cXGEzU)(@@Q0{>?S?N_6Yz~eo&sh7%U6ahp?CXI
z*!r-q;Tzh%1p2IfHz9u+d<9s(JCP;yW#7!h$iIVzuM>Ti&#z?+02BhtSBxy7cl%P<
z`mnF{Zf##B`Yc}p`Eqa-uzc4dOX$nKSu=wwk}?X=a|h=h&3gd7miGhUTaQm0V0p8U
zCG>7*kE}(NpG~%?9AWGOXM1qdV1B{yuR*`%--_G<&IOi#2eO1d?LLfrjqla=?nj^H
zdlmT);B8>}I*}#xVQ;|JN4|C#zOoGg-$}@)g42NI`!uqIzU-S5F!tK+l;5lE+k-x9
z-;>Bc0M7x-*MTgdcl%P<`mnFl@D*<i_)bTz0=2;MZA6yvpY%_w&#kW0Q!cVW&~~ua
z*R?d^t02CvzP`>(#PqPpsp3A94)EG^coX?g;2jf}KJTC1`k{vzn-cDPC5~UBtaY4(
ziAUL{ARdn)w}YpFO`jhi|EK9wyH&Q$>y!x6M@=zL*S+@O)2+3&HQm07a~hS5!Pl4(
z+^}_vPV`wb`k3c(?$_xX`%GZhb;!4X+kmy}E65UhEoa@*`Tr}cdLAT97`xsi-nQJ7
zH!z0-P6XDjlaVF-C*^s4OI=;E7}u?5dZ&7Gko2`%8k*1T{W95F8b4#!jP#7%wytIU
zN_M_A#k-{>)0mr+3b(X0*KQBk)NH1$Qd>m9@=Z<6!S!`5O+jRm*W;g^8(*8;vTJ{?
zd|RK$t{w`QtZb0&yY`xFzmZ3xlWMm&cl)8eczpdjz126ho^KT|S>1jjE?OF!<7q5g
z#j{4Y?{2NZF-Esfnch{O+Zf^>tTu@6#@f1u+QwsX+qQL~N<V34g3DW%Nb9qx3U4W=
zU{#YuB<1R{jE?s7`NEYed-_<Cy~od`Wb|;srq{7zSJ#NCWLe3KN;iAuNAiOnFRt5g
zB9~9W&0>(-T@yrqLowQ|+BW5I1yGyJ=nd5;@^6q9Eo@9(B5S<U+o$IGW<2e%=^#B5
z#qA9H-^AnX@=fR1HYm_o)zm~0J-MZ}rS?B7>nu^N3F0YMG&DB`dYh{@1=Vtcxhy5!
z+Sw#S(5oq743zyBm{V1&n@abx-_*QKO1~;zsdZvY)%G4gZ&quoSJgIdNl(;f$=@D7
z?D5-+x7MV8xuJ@zJZWW*A2Ukay)w#*;8Il#QyT*LbZU>EPV4d0<LayG%msBDDysNc
zPlE4eCK~Xl-0lTCKI0GQ`_XRNW!r9l(8BudbC{O~w%yJ_mT>svPyf?uQ(?LmLfxeQ
zPpjRv@uxEUPpjRnF8@!fJ^BCXR{LF9MD)0)X0v|GdTKz^{U;eYe#f<|i10`HkZ!*#
zX`gNT9o~koSr7xZ{VqV3@SpU%`|1a8t=+aId86Obt#2UxN=CxcI$PVSHU}M_uHB`L
zoHn|Ou6!N)%C!G#RU@WP>+4wxdpfQC*k|nzZO5M+C;-;}B4i1N|2*}7m-Tk~9)G|-
zU{-gDDg=p#P5xt_wSVrp_>%)mfVF=avV{L6|0Rc#dE7O-#0ziy4E?m6dXL*y#fb|n
z)$V?U=VSaN_jswXw)&i&enQ`z2&DI(YijH0<;pxqw@Wx;Z_*w7UI#c1n)GTVJ#2by
zIu9QLpc&Zo+J-FQ@cTRe|4*&%t6`WrdPJA6cG4qGddR-Q=a7F6ehF-P{RUaWvDfPT
z%KI<T?`pSl)8vzCx5=zj>8dGiY0i`k=Rx;;r*N3JS{9g>c*}!z=Iw^B<oqCi79%eO
z%Yg(Le@Y+kGd#U)k1m3+$Qc**`YQ#z95g(;jZU%ahseJGuL0qZec5w%Fb@Z;J@$Ra
zAbpN8U76ZO7KBe>|2>D-ZEBv3_s6auHm$6cwR%OB@5)TzXTa38+0MgmTgVwR((C8v
zM%f&+IBSW&AZwvNKg-MW^5*$-vX1g+XO;Ogvu63zvu0#WjYOjpGKS^g&^0g8&&!MD
z<VN%S?5rF=Gb_u_;8!D~CH`n{OvdQ^@mU!x0Uz)Eo1-&i6Nm3+;Wssl1OLWF`DzwF
z$>FDYer{GQBR{WyM!#bUa|)sZ{Q+6Ueo@w7e^7j=Kg1iJF>JKc`c0Gnq=5uUr<agl
z1HS<_|9@w$+w`&TU6X?Jkzx=V!s^g5`7+schU1^XetB=SDFU5_FaFse|7Rf226KS~
z;f$GcKfCBB4>r|6Fa(GHL!4sqVJxmk^`HET-|f@(B+zC30o;hZ3w$X>f4nFC+wt?d
z?i>jELD0`B(`QKdKB`NN-Z#-<+m-MI+=oF7*mNpDme5B#+{L8rWwRv3Di*4#!80BI
zOu7Lnj%`{EZzXyy@A=3VgUf*By#iT6ukBe+tmX6OOCGIu{MC+ArX1UJ8omSQvwX)~
z$o&SK1#G<$uFLtqIjuc-`&o9D5Vlk`Z=B3v+IId`GIs}d5U{hr{J&rwj&9VIC3?;m
zhl2K#WlhVrvI$#VUDk9`)k$5yxxTS}i~hFvn(I97M%;W-tUq-iGZG1fy^(I%oyWq4
zm@_64&7U`Dw&%r$`y(<7BC+uCd0xTFaB(i@Q-(7NqS0(`TH&0S6N!ZLqk}T~Q+G1`
zNHm-|GAEonFIt!pQ`X=Y=P_NbI<eWNOLl^JFE9<Hrpwv<pPnwOewmUkb(}tE(`6Bd
zVzEY39L98bVoW4IG|127{Gdz@PYHWt{b)EEx!LuiZY)&jXJC_`Up{CqC#H<@M`z}X
zP5r%s#gx_jXkmeu$yovsFW=ASJr==EZ%DQ`Gdd<aGd!#C=nQLVX42BJZZt2Nd$Svh
z=EpFY23tb>32pBIY>_mOcHy_ke*u35w%j=v>2mk<bzScZD(~v*H%!B>qKXytb&qDL
z{?qRLu2XV^Hy{%8;{Kdmny*RTxzdVt7`~-OpYW|jUI!Y0<vZV8x9yL8SA5bwOKno^
z&obH|KVR19A3LVl%N^T)j5j*V@sBMWThPDID}Zw<HzwXxsC-h}yHD#+2>;W_KLF1f
zPKiUQX*YDq)#cj@J3q1~!!#H@&c!NSl%5>qd{Cf2Q?`_+>RGPK1A3mbdJ;y@(iA-_
zkv|1aPtjA^MUPJJu=6}>io;@9tI^Y%qURRm+rU>-^i-tjAsMd@IUO!9)9?$AKYBSa
zOJ0@CZ7K^t%06e;O6#kR^Wo46IlEhbqFy=EN&knyRe}7Ug4F-*x8-|Ai<RUItS}Hx
z^Qv-<a{6tZZ;4BSb3boJ{vOy5Y`Mv~RF~5?zM#wL0n>kJ*}AEk@!2UY&Fjl1A6qN(
zDJ@%TG2f5f;!=bvK`AH!gFxK8PciR9ofq93@iWSeKA#i3^1ST-#oBkkS5>5apPAEc
zFKPFtHwa095C|;-5_*SFRICIc2ucYM6jqej5D_6NDpn$*qM~3!Tnkxcm9<9K!dft^
zsI0n*%KBni{r=C)ncU<;fcN{p;rGAixk)%rnP>VlGob`rY?sV^=|&#Oo5oDbW1-Q<
zHQxc~m1cDJ7MW>wu0PG|=AFW6{cS(~QNjCJH|S0hN)?S#uc?qb2j9sbmw~<q*a9fM
zz5z{XY}|Ru?dUaX{$v$G^uN<@jsE{vzp59ceic{6@@)y|>wp^oRiEw#{U#8fZ~MKn
zK0S(_W2Y~!m3i3am-HhsFH1F2%@-6DlK^A^X+ZJ<4|4J=u6?5y7;c=YpU8c<7RyGS
z`M=@z*SM9!YmKJr)JXB0=@EB&7vx&R_M!%Pk?~cGC)38frQBv;BXgQwl=|hYjOE`j
z&}ReZ0!qL2pf>{X`FH5}`nAf-NY%U4_e=oNfixg_8tL;M*Pb<w(B}?r-%ht|SOXk=
zcw2oQWBjUC`n(T)O8+YLIRIH{4VV0pU5&G@fpkFm<7Cj3;`6IbRt&?PI<3lC9~7m5
zz$Bm=pd$4aF2giKmWPLU0{7vc9~T*ba)o&i-#`ZgmM`GKw}AZaw!L=HHc^b8<SoTW
ztA9z#-2l0AAQ#EK6Z8wf%Yc&Gz3K$Y5xLM1x=>bB4>xegnh#n3%(Vk%I&LV@nHyCU
z-O0v{ASy-NlLJ~@V`6mTnF+2iUDcK4gIDn^iyHwq<TY((XG7{+xRDRPd0EO^33*gM
zqXzV!fE9p}_c_p%;`^Cx?A#)6D_1c>t>u2qO2-{F|Bo`09HGBSxn0-9?3@AmBw!$*
z<X#4vQoO&nk^5A16lV$>AEYW67v3BJvim-+U2aDWw`hvU=BRv81^X@7+HeO<Z#t}<
z!UHD$+4$F?#ono~_cOxYHLpmy8zGmn_XnU41OEk-+<jJ`fW3v>tt!~#N&mwCtMu@f
zSEc-QkWZD%TR}evYy*`1uYso26xU8*aeT&t`4^T{FI+Nx?kF*bGejP*VuWV5vb(Ll
z!|IvVA%%xgC~=7quI=;S(+~sJKxQBSlOh@)pCVPgCgqA=8}o-E&|`o~K*@C#XiD+^
zpyY}j!x^bsLv`FZAOeg8uAm=?pB7`p{SLd;)W#N2Lz`tq+%C6YM<MIN^H_IRG(YMi
zs<$mZ112veAF(~D;#`kqd@?_aP3GN!dL}klzbWP43;A*&AJrQNK_{+(p8!h!n?O_g
z?dG=q3MGGG@l2dvijhxI39dX5K7A$m^lqv=lw(u>g8CE11nALVYL~OH<u*;!aA9Vo
z1dMQRy^OmO(d!TRJVpYlLvBQ1f1k@tgx_<w4;}w<eQX-?#_dYxZcnZ&7gbNtO2FMO
z0aqY9;I_Dz`*jl~!xs$n)BBrd0K*2K?b8D*89E?d{426Ek%d1QMzK&!Yj{iAp&5EA
z|N0Sh%5|vs0cD3fKvRmZ_mv&!UOh3;6DGKkOz;|+fVx#3fDynTU^tKu6WniU&+@P*
z;7VkP87SA>I!W*2@o>8%)c2wrh088wH_;A+%!rX-%yLiTE*N2eUKuk&kz)jxMR!-}
zRzB|Q=osnPVv3HYztmh|RhVYS2|+WU7uPF8jDs1jw5UoJsp%bQhXc?v2R|Wyu-4+-
z7a$E#c326T(h2y3h;?=jq>9wBA9Xt5?-{<r1NECMZKYA*2_+<1!2~;y&RxN<5k;Z%
zMx%mG2kmovqHa&f*QI9%PXhWK9yoP?>ojyUQU|2+M5`m3pB~&a^-v-YU?6FSeW~fp
zWu%U9agWy%M1Os-JrUiOx%}_ARS1rsvsdcb1U*!Ke-2t-hxrsh>Dd=FrM=g+9rvmH
zo?g3PR_~tGOQ+9}PTxp5P8r-ENOVA(h?Al14jm1skLOt_He4DtjN5}k%)43vjN${X
zp7>#zk(3|tr|Xd(wvK+6rrnJ`HuyLHL&{qRd2;Zb^5rJbj{`daCGP>yl$zqksjcNL
z>k*UpS(3K`IGVhV>e^PTjl3?Bx7hMSUVltpFXSzC<h?`6+wh^3w{LySz6(L$3_Jm-
zexY$a=9Yk-aq`YyF8jT0<<>OyebMy!=c!{W)z20$n_oM9soJ}p*BtnReG*{Jfva@!
z*vQ4>MfvFTNr0--`#E3Bn3q4vSUK*k*vI78k<<u$Yn_BSM;Fg@1-lgTURD7vr|t3|
zYc2c1@_ujiwpSdq%D=M)?Y4Swi=mwQ{JfltKl%`VwAb>!Z;jk-_41f@hr~jvY{&3_
zxoIS>nD*u?^m1d6z7Iu=nO<w839d3VH%t31g>967t^)lq@G79}mwp5G9{}<8+i(>7
ziTwsJOP#cUW0r<CX33Xk+0xc5*z+%}G?L-ivuEui&C>Nndo63Uy}N9f<$1gOIeX9z
zcDz}-K7c>E&-UJHkG#Q_X6Yc!@})3~VyevYNsC$Nur---zL0iV1)WRrBPs`XfW9Bt
z3aE1MXV8=?*B`yTs+_)PakZ+bBUNXhfgL2;*5{eF)m4CsIG^Vm1Kh~1fyNTiQi}IA
zJN#WY#`;nDpt}M+0LA|#(3DE=mHca8mrv!Zg~j8S%oDC!RH8gKyNR#oZ{qsB_t^7X
zE9t}kD;7vc^6q>M4qY%Ii<Wah>R*rdEB)^Q{W#DFD8G0E^anumJ(BOx+vKyS-L_nv
zi%yW@AKA|C<=YtB&c<(po4&`E=a+YQjpchfc(ma~d~)~l9<Q<Po>Iusm7f7$f0dC;
z%Xv9_jd72dV`}`Dl&^GsOupfuPX%TGO1_1lF9G7^n-VYIoLagj<U~Xq4-w1DPkN1&
zd-@(rM3FC5UrRanLWaKh3Hj02pbIg_(G^f~J_dRZ&>?O<W%CPd?I`@|6ihy&-A5z$
zFHVizdyGEc6`#L~&k6K{y9If<_>=bqeTVq0K$G|$+ZWVk6<7gZ3NuRsNlDB~$hA_e
zKoUB7F1jw&vx_a;%{srxwz3_p^OLO1UiJhlew>wULc?g-COQv>*SwuA+scX`VrB2K
z$b=9&ScP8G@8PF*4Okty<x2Agyyk#qI9j=EY{18jtZ*{7GEO~jS?}UrWowvyHVpVJ
z<8>~M8#15e$l+I+Xg9Ub7$!11^D@3n?`+`HEVjzb0@pIT*i~k4<ep{jVo#ZSBl9iu
z7W>M)VPS1etN2mcd*sbAd!GS%C2%dE?EM+&AA#9-N`HNAlYI7#tIveJM@e%xu^aiD
zj5V>{OgtWtkN?WYUGjHly(wJ!PLK9yUf>Eq>5Nc+l&oBy&U-Qsi?VJ$k1L0}Fwu<O
z1-kv2uk&Ru@IHUxeH*#Q^gYd&J<Iz%!v}2UX3#V`>E`Wx*&1GUEic>3^NV1x75sa~
zuVw6di?RW0`Z`S22M1-P7|ZlN#sIyywahGoxw>LM>tSh+%3EUf`#GR50WJqrJ+c!t
zrS|%pgK8JdkuG<K@Tb$r!K6FAB%G>HIMpUgyIC(lZzB`B1%0N+=MJD-Y4P`1vYtiS
zMl#=HW@?viJj^qUY(16nt~O?sF|EuG>HKmzSin5%uTpN;hF0|-=#zkffRg)0(3EPn
z%lv!d3HglGe=XyM$!ex9(#W3IcQMw;cFV{3UC6V&>_=NGp&B`aX$FXDl~~zU$nY5f
z<1}8AZ1xzF&e0P*3DYJ9Mm71a4kmj1z4*+ot}bS$ykv7Ix+c`!m7fex-Ohz-Rs252
z7x0t$S^C|KPh@BD;e0qPIU?2nA@w`}J#z4!>W5!J{|@k5rEcW2@$1A&znM6WqV|mH
zMbMh(K!+S{xsMj{n9H*8-?Z({`z!G-7rxW`&jEcNZ~>s~crj>7@#p3!KCm5Kk!OS^
zq7P?-(b-x(3xku*3NTY6);UhaXf>n_7w>7r`$C|I--n>T1ik?jzqH#VzXR=zpIeRd
zaQBQ{&xusNL_t0Q#Q5xGKQV1H!*VdgS}vAmY}>_?(69CTyqF`#rI$MTQ<!VSWQH5l
zSma@EG9$C4fekS!=WNKK<XjGV4RAf6<op^mrS{~+iNCXJC(oWUOH{}?pYd##lLU0g
zCLy2KwS6e>R+`C!=^5M?4J3PUg|4o96OxUv#a%9p5iq0W^<jdW=C=Y_{;*5TaM3Ib
zT|<vM7IE<?zD>kn(`^p76EVXTwmU+hZ@4j1Db&QJK7DVGwTF{H&j8K?ls?NqQySV%
zf2C$o^{hEdM=c&(y?F5ydGCS|8izbrV{6L$CEDdi9^^Bz>=ZTwz5q?O&lhtQmAaGv
z;G^vNchLU?z5tXQrFR_Lu5+tr#mrjAUK4}4uBc=7GQ8yuBbOKPQ&EZ9+;C-rro5-S
zS;H_{vQPQ~efQzJ+Y`nB*K36FJvhoNwNq_3%*Zgpqd6A-8t46$9cxS}e;wpg^4|vf
zUf@AM$-f6QrS|-ymH)PQN9i0ya}4fAI=s%b!<a`7qjrgKw{E$j-0e`|bP<M7$@6$e
z)=@TwXxA($SI(U=xh8_H0;&Pku3ZcI1|VLp%~p+&SC!{h@=d}F?9AARXYuR>OXkiL
zKRgBhhet{?A@(?6yb%3EroChqz^p;$%T6=A9iq0LoS9*u{{T%wdJ0d6d9z^JTH|ao
z>u~6i&NEpGmRvaxkkK_Q$CmmWfUL^S)?J1c29g0~=T4w0#p~0a9zz#gL`%PkIhiPg
z#n~>{dWN>o%#-rUlH`TAjuW?gqW*Q{r~w}(#~RRg0-FFOM<eL}jU2*sMrbNZPA1@T
zYE7IsanKC&6pvqcCawCpeLC746!CnwhvrD+oL`Ph+9$LzCRZ8gLBMc8<@e>FR{`<%
zdEz+vT|E<>nreAixe>x02rRS+2*6$|xz>P?nPiW}qp0EonDelixsI84u)yuiXC)e5
zj3RGgdMINhb75h_jbonb7*9-CXfKBbhnW$;1q|F|0ba~Z)QG6jSQ1`>UzWP1Ud@m>
z2L`3~;SbQ>2IvVWdyfW9>8!YTh*-X3qmLL@6_vD^_$l3kW8+Huz*RqBck9~aya3Ei
z%a8d5ou}gN=1iWAh=eG<>8`F=(ARwlSoCmlgz}iCKM|{rSVkNGCoSgx79~;0(d?0O
z*F&zU_zB7VH0bAm7aUnBPohr$U9F=ZO<vic4OuX+279FjQ|Y5Sif-YM7$2X)Cv;{S
z3A%|@vl5?e_<0)crw)2`UkCviNr^s4+ru`6T$)eHRd{#IPey<q15^T(NUn;wd5@#X
zH9i(n!vDq~4L<4-GGTKc`~hoskfgm&SktnZZn(=#QI$41ay3GR9PlT5?F0Q!;PX~;
zwb!pfU|LK5j$49#JT-Iac%+LV)y3Lg2$h7$3{?JBlqVQ2!;@}e83@i(>6iAX*c59A
zXMkP~Tm~rr`Vcgwnww;QQLSGe%`P&(u$WEr&JY6QuJfq-TPGT&0FgH{G)*6{ZKk%?
zD0F!Z53QS^c}k!rNB1Fe#AkIgqC60G=Z!^O<o5)ybcOi3kRM%2k0+I9cwG4VpdL*2
z^$GA1+?{Hq+1<>(s7t9wN&WsG7{5j58M3JgIr)B1tbaTV^hDrPK<QZvno|6_*3tA7
z;YHm`NyDoBv=m@ZBc-n6+9tCgshFo*ov{Ff>VT$-Z965$C`z}}A=n$t=;bt^p|F&z
z5qxvNm-78x(4PSZ043L9(3FNgAnhNzvTeWJk!9TU`IPOjxEy8Rz7|OI9n(HV6O_o$
z<h^+ky4h4(jVj)c=Q!PJO-qn+jNBZP<9yI-fa?JzN5Q>PjvQzH;-C}9a5Vc2pR=@j
zW-B*nWZMiejQErI42#ck;&T>_C_Z2}*xFAJG>n;L#7SXL9YoI@)oQ@>*lsNM1bpy`
z6mIzv5TTJ|8}MrQG>@W3ZLkDX0|r)AD7*vH>{yq>gmuUbk3x?z*~D@Yj;{4t=z%4K
zj1FB<MTAko*{+0ebX-cVE8i@_!YEI8f!XDDBr6OzN<|f1mPLKxp?r(McQ8InO!goj
z8j_{GmckzJ0FiGugMJX$1}J-d2AWcP^Ig+tp1)*qErkpWrICp+8D(JUvkcX8M<4)9
z6xH*7u6=5E=J_ZaAq=!^C~czKp3HQNi>XRBTtPkJ3Kj+PAiUoWXPH@))z@%iqT_B_
zC?e%9y)QPtJq7eK;8H-z-R*uU_eV}Wc&ze1dG>-uwbjrdR^pr3)w&q-Uv7xUlXA>o
zCBAg0A^!*LkXw5YGkQMXeDv!)7?T*zn8fRXK4ONq8#0rqVq`EvOHp+NjAS@K2sJCZ
zM^+A&V%#p<@FC)b93|Ou89|rnalu(4zI>jAv1tVV6EPIXT9-8fErg9R4^|&gGBaR5
z+l9q^7kDFv)vKF^uIEqmU(m%CuJ8o2yHU5-J`-aIuPD0r=zPD<KjSU-%#il1gT2&z
z)vchn0Z#zRo*#gw6hB|3%1xXfzy*xZ_0-Ea8Bk-10Ic>0)7E&Bcn%B`;Fg}iQ>}o@
zG!k`}E7P)#Kyn}$$gq>qb@-n86`@QiU*VRRpN<B71~3g!{i1oGmjL_Y)>HP!^^34|
z6rpF%1g#Pt8)?XAx3hQHHkzjN&@|;otd47E6mVmU<+<N_K}?yB;}3{uF=i!SBhzT1
zEGb_jcvs@PsQ*BJLb3qLe)<E_ezn_<-u?`#si~gdvcd;Z)<P67gxJn7ZHMeN(Z3=f
zR1EzqjQ2sict7f0*BHH3c501|JX66>$ukf1UBLZ-ve%RcF&_ZbXVj1ynlDQ}_r%SI
zomV{{dkJO?uU#-5CdzBDn)ybHHCP|(;&G|?{JSL{E17sK5uc+sT4ci>xvsodL)!cv
zqg;~`c`(Ul9Z;QN5`m{!SZ8If(6208PYIYQNp8dN`S8OoF4Pd*DsWpm!cpPc0beL=
z-Nf`2{v=+A^|<Njy2Z=%-nOOt5!PauWw=$=YvzXdBD4{Od?40qbu4w7+`HB+`G;Yb
zVFZqKF&Bp2Cf3_St4;eF6ID*|A(nYHv*&xQPG)klZT7Z1W+lU*&vRorN5s;boL_0O
ztC{f|qcEi&7|^`yHA?jUmTg|;)Qg>D{_lY;RX_0`puYmX16u6;kfF^4_P;0dfA{V3
zIrNBm>GPDWn}b&vp9EQR@J9U;)Zrho7j11P)Gy&a9X%l3Wp%*N%Y}K_0Qv})?dEw2
z^Kjb+uJpD#>BY8H5XM;8Kts|=FXXJqHdFiZc?fhDmeF0pA_>AG-tC6#DXPA>oe4#k
z@f#UJgZXUsrKl+GM%}~GgrDSemiq35E+{m@-`@cJBXAf{`VQKPGl_shZ%aK@J9}lE
zzOzJm6m17}iqq=&bEqOv^nR0%C*<S2mY-3X_}SL#^zNKP=@4Isy3=D>UAa3^&$8h;
zo<#VQbv-jtU=sBt6D#}rYkK%q{W`3LW&2BRVf`@SZ6vd687;$XWX3NBzZ2_pREU1k
zF~#(QuH|%-dTxLYIgXy&Kz|H;3aD~D_F?G<2b}y=da9~r5q0-f14AXKG3~IiD~&a#
z<+l2~NYK5-XP)>B>`J37|C_D7qMu}h3zB%RPzf*QrAcUUxale6op>&m_c5)+Q?Pm;
zMyn8TxjP$Oyl7@HF!x|;B#ORhiiNKs+kwBhv(cfzA9Uw+3b@b*=^8D<{O6z0;k*RO
zV>#}9#+w*_8XQD+YX^HsJ8XfTD!*R@{SNRCK;?J8N6;4qj4xz<uXpBWXU6CEyjo0v
zD(lRfLxcD1dj6@tj<b5c+r5sH+D(3KgISJdFBele8AcS1E2d7KW$ve0*kfQ>^&Iq|
zy$H^5V|Pd@JUJ;)=pT-O)L1*{8iPBOyotWE!&S*c!nZNZTbzPPx3Mg2jyFyBOlIa`
zGAIoF9^w2)#@{yBH_Vu(|H7;Q^(Oz00WLe_mFjDa<&OT)jcQ1$-*<q18F&p)`iHh*
zEr;-FTm5T~)E_S-mDfp?KR2Yxce%8c7O7n13I|frq9axXG3G&|BhNBw5OmTtaV(Zf
zhIn07?z5MPUPU55J>UtCV?wE7J6$OCS8ja7*w2ht@-y_oQl-~1GsgDNb{(yGfYhf3
zva0ssQqb#w^?>s0=Rs3?;-6BV&5y~a%DGwdY6nA)NHfFoH)GB0HasZnKE%2f#ti|U
z<r-z>VpxO@EcI@TzD75DAj2Su`R!5ubC?)6Ue5RmelDNR$D0GGDbp${q<qosv2xcB
zbR}>KpzM7<=tV$$Jc1EtZ`t0<1vDl5VhroVxUP|1B6{z`#b<!}@cY;yrll3|<g+|h
z`Lu{p$}?<!t~~>?q5F&l9Zl<plYy(zgps&f#ULr~9>|h|@8lmJg8m-(2~hF|A2qZH
z5HIhcqxMgn1*k^0nhDV+h|gpx;PqT9E#O(hJ=TCx5hL5wtq6p4kG01^A}pASKEY5v
zf-O-(LawU8QqI|sA?nC^A?Qnh%K(+{t3Xq#ZD$^4l<Ww|1F84nCh5U>yp$$-y2&j{
zjSio^cuxi1L-zO@G=B{D-2uuTok8~jrfigcHTEv~+#P2R*)NjzK;v*3|AQKbcVw$j
z_=m_b3@yiZ;T;P-R!L`HmxRuRT|AxdXGT|8CIhQY2<_=&V*r9BM&o>Tfia!xwux9i
z^YH{$h@RZjw5lO;6KiWjrJXiFHYNX7&@Tde044tc(1(C{`QJIJ{LTU{6gVs;e^oxB
zQi011?c6RrBMAybe9?qRVbl|W0z)7?M2m`!`v)ZaxyD2ieq<}*8yw+BNV!Ko9_xpk
z1-cek2B`ckdP3&!`ghveU6l>l9y?K0+0Fbj;}g!B(HRhr7xhn2KksAPJlYFbfed&`
zygUIRQ@&sY#|YPt6^sb;SiKP@XBZKeZXoy$E1@34k7we={CRX=4IcRm<9k3Y=M&f|
z)+l~bqWK&%mztg|)bkkA@Q~>e|0Ck@;QwXa!uSS;RmM#2!|Jjp4eKI?2gbth(w=1I
z4(7jyna?wfaVQ4Qjqy$xpI&^YQ4h0ch*9LzhH){QZCqoBrmb|WwAWJDL&d>d3;HJD
zHbB|yQP7myTPIz(1e<_Qn^QZRD#Hf$A=`*vdo%kl(=rNpC3@^ZfO_wQN#tcy_(VRw
zrN3S}PRgM@X=o$ChssMD=*~bXpyW6kG^HtD%6!}4%%iA$n=Zx=6G@txN}Oi)x%COv
z%^TS#;M~mab7@_QFojZ%>Ntv8BOe`#v~YUDVz!u_?YSs8BFT>!&yks<5G5%ZlW#cR
ztW%K4IK886N~$JGd3QpdzK*=#g8l>W?TD3+PN2I1HF5Kh9pdWe)^bz0wUqtHXlD8y
znYf;9Ve1&8sP4ssbQ<mV1|DJlNZ=H0N&)ZinC*SQ9)K=SE<1Uv9eEfoAU1+u%D)sN
zx6$0o9%1m(Q-nFSrb$wtI>@T@xgGRhfR_Me|I40|_HTFmE9^fE7Y)`_&s4%5WDn@y
zF?NvM7Zi_oxOi;Agcg4I9sZF9pG39Uxo8$$Mm`n<E$&M|r!CQKxJ^8LZdcefOf>f?
zC<O_fk|(f;uebAqJDGl3q&rrQvh1*H6g!)p<}HtSqT_<)w#PM2M~~JRrt4`|5O3k-
ziJqi!b~*OM4nyCtJm?9H^OdK2GKO{S$U7k4M_H*6j(|v?JB&ccnY=$cB{>(J&0;o!
zO`eJpMVoABja&V5i;8JK$A)``ppNs{OJO*QtVm0zNxSZa-Etg1`4aTEzz=}3>+hf`
zwHLoEJQ^9FST$yv3&xrS<cY%6lUkkruo)hh&vN*U+!?F4&jvjUxByW6t^iGG&-Jn#
z#m@`L_C|3<iC!)X^j%E*27}hvI9!g$M^K4Ar`7noqDt!B1U?nuL*@A!(EkB`0hAmG
zPoJ<HQx*)GJY>`;S;54_S&5a7<BFp-JMvV4pYrczpf3Yf0!p6SKvQbZzgyYG@orqH
zeclSH>#o8cQn+AD7K0BUvy3;owp4Rk&2(v(1K^|NaQzu;7(g<h<R}9DzmOwlo7UpI
zcMNgPm2%X8PZW$Oe^!FN3%CbRa{L7}rS|60hfJS87{~I6>Ys9^@@fiI=qkb$C}e?E
z+7qa7|Hd#>?TlEU477u^1u%$hLl~EtL0>RkMDtAGcQ_$Xg5eA)U-X%n|MUlaF;EAn
z{zvt*s9S-GxOj@Bxcc>!`9j1Yv*`wU)mSW<Kf8LVkor0_!Pq;^DtouWXwbKjI$P+2
ze)CuQvwpyI=Lh*hx!Zl(KJ4~Np}8Ey9D6XLOg1oSW9l<4^uv6Hhq(~pga}lMvB7*_
z5hCk79XjNKN(XuXe#7Oxm6_|Ycvyrvo;A#x=MG>)t;_V$!kqhdERBWG{G-OhU)+jV
zG|vqTgMK{MGEX1_%R;6RJk2}<zwHPFJtkIJnJ*WwO1u`0ZURDM5=~bE4<jJSHW8K-
z%{0?YBR$jfB)H8$g5Q;p7&g85zux|41|oGp-N5XQsP9fg|ABmXp9cXzJfFx-h&N#U
zc@mbkli2UhqMWAX%#r!F2YFJ8j3mGM2k4ULaCZ}+{Hg&orP`Ne{j>gg`BYis<QFn0
zyOHlSc5&8-jilmHDL!{F@fa;W`?mVLM*h`Ft$x({*U7ukb8BW#hqUL-K1KotX6aa=
z^5+DsLQi2dgy4!2-jk=eLOk0OHU{|5@Y1YGM@$I#J7=6epnH%fSw;x64nAJSuo>Fu
z=Px(QvkR?4qaR$`%P(Q3YogIFQtmCc%WLcz)cJzFb}@c{@sAi7Jj2lcI?LW<x}HRg
zhA@LxwNTpaFzk|pACcWW&l{Q_2m_SJ=i6I1#O52Evp1jSj!L0ksrCw%F0sgtH7kq$
zZ@u&WD!fbe^A>|%4%7iEUv2<Rsl9&Qxr?i(FPbsCJDoOQglaIUZG+u%tr>IpAxyM{
zupypX0SYx(LV+=%MN+T5c(3C7HRwaYVL<Wq>^dR7Wwa062+ec&F4KOuvISqP3@E;f
zh;O~aw-WCSK_9Z`bkKJJ_W+9TXP_x<eo6Y@=I7e_;i$!xI6{VkoG@q^AqHJZtv;`j
z;}_>~yZm;We3Xd4%b=l6Guvuu589ov^ns%Sj7%fho1Eq4Lr_1P2sRjCb>aQ3A#fl1
z*3<I4qL?5^;(hI87lOEGCA2I2<lhW8^6&<%hBAJZok4Aj*0@C4w{K%i&xxR`fNDVL
zxdb$&`2F>&yv@N;2_qIwubDk(1|3uieIr#DVJVchg3@wmGkctAx4AlEa<m8Uh1n&W
zHr-F*rwA!Dt?oi8N29}s?EMDleZW_MlH+IR_bN_6JzM0ETkj*dPm5LFPW5gcs@P3z
zOwS9;!aeiKu=9RQLO-itBpeN!VVb?_%byiJTA`j+cafB1<X>X#S~cjoz(PRDu>>@w
z_;#(;J!(oM6-W-7Bv#BDNS7C=D^zextGXv}siQyMtJ>2KL4N^!4Jf|ffu_{%`5H&z
z8mX*>9p(u;T!AYJ0qr(sWU)bx@$tT#Ws-lz3o-s@ft~@J2PppMgQj!>de3ZG25kS@
zEv?SsyA$tKdcO_&AHc_e;@b?G(sA`}&Gje;4K+Lb3SW%z8wPqTPzfl0lR;BD0X<c~
z1?6w$QI5J6@2U8cv~L66tMq&Z^b5dCfa3c%(3Fm=XB)0ZD%#-i3+;~aD*@dLC<he3
z{-7zHfSwduI0VOpQsHiU-Bzoc@^UVgdalBIm7beHZv!3&6yF`7DIHhOwp@q6k>yQ!
z%Qa&;UA7f+#w`wC?XNMuQP9~yKA`v(fTk3Gu2ZXWduI3U^8OFeSR@|({*Tadspo9G
zPw9Cn=*xhs93Ir(wtEg-TP{6ODfHBgo?4~z-aW0}+YI_k;A=qX@h#}%>Cxi^?lEa}
z_?5mC(_=X3QNTEW(y{eu!=>dO6YUadpZZqseGK%|z;l4oqY*TvW93J0agC4I9^BR&
zj&fr{jl<XVa!j8>&^>{2K=B;_no|4u(+<~2RUL)+1h5%t6MGb=<N?~nEmtO#Uh4Qi
z-mm=P0npolCjiC&DbSRTrFUO(f3MsY?F4m+qIVRvwFZapVZ2xIjqJgmP#_DSbnJXQ
zI=9oI<>{Jnx_AM7tZ@7u?^JwNfnEpP2q^t-22JUh`q6y}C#IfO<M7>!_bR?Wf&Llz
zufyv&`W=m1i+WAY`z!tyi}#-l`b?k-P<kx^O{vP+_oC+8vA1zXNn!Dj1@mVXmC#w#
zFn6SK6~kdepRxy;c76f+V-Z9qxv(IG&Fi%76;Yk|QBRg?V8e%atESb}N&D^r9~XW`
z{h*IQ?*|S5N{&OIDIKxzptT&65&thD?-Fy$5z_l9n}Yq^c@V^p4KwKEcES8!P}ZN#
z4&RDbVtl89o(9YS6yF7)kIQ%Pq6O1u&Oj^^xoZpS^+#h}ahcS2C*G^{{X6J=z^8!X
zdk}PMzO$WqC&%tHaC#NmrWqGhFDfd*;qUTp#ESBPtfF9`4bA_AT@QH}U10+eCi$TI
zTm$oO=>IzWOJ9xg9|n3PFczRhe)U^iJdDG4{sKBTtEglwj`GJJBEF6>oG!(*Cg;5y
z@Q#*oEa-zk;I-KN!)(yYfuSGBal@XR8o~3hiXV~rIc|ClF_}ISlMnbwH*9O3H-{V!
zM?Ea5Zv89#ta^U!BFKc}%<$(tyMh0X#YNV@%f#m<9lOA^{cPALEZWTO!E$3tGuwto
zpqT~4XApsjSd_RPOA870teB7Cc8(FydBoi*6by2`up=FD;dX_v<j)iC!e5L;XkI3T
zy7DtIQ<32}Z(?*H1GdY${U+i*h`t=Bp~1_aXU4;fWA{KQKO3Xqu`~=AhEYo$Gt%@<
zh%TROrI_0=1T=9}5eo`q;G^kE=_dzZD>V-EypDVRfC_-}h!$q=0{t>j*g@LSxJ*8$
zULv1Pz6pCyuEj~A(x4?cXLcBwjSSYLUu(RnvnKs1Q#^XSi3yAS><Y~O!(yB9fW=<L
zk^n5$Uwn4bZs1FJ;9auVJFE+zhIQxAKgl}HtQ$XzM?C3K{3P>YYjzNmJiciwde*V2
zD?D{9!F2O;ypgc^zO>TY%;Qeyh+%$Jet(IDaH6Dk5`TqZo)QDMe2ntK{2YEUpM(IN
z(fl+-vgGk-xTiUVDv>J~Y`GanHRuh7)zh46c_=RedVd(R6YO*F8fnMEH)8c@1?UOD
z6hM`?^FdRJZyz1|IW7i+IYvZfM{`;<VHZH1w;!7*wRa$~j*}q@FiGO$*i2*x<*M6+
z*tnx%wNw7VF9d#6-@OldAMh!l<oOCTrTBRLw(?+cV`<G2>^!IPSWVuah}&6R5a%rI
zH<+o6=DG)n0|v$0@Nuo=-}lWJ|H+`w0L}pv|GA(kZNEj9)0X*eSw0<mEGCbN@h<J!
zjd+jLR_l2PH=|t(9;$SDIGZT&zDkFGBi>(u@1*}fKpzAGO)<Y-3VIVz+EMy(#^v%^
zcoe^;dSb#Nl`+`|^@oh_baqgG+Y*nQ?}R&#6yCf=dh^vT;m3<UVM)y>bQ`c8GW;>-
zSra}&Ih_`O?|z5Uo$xIuZ%(&HX1I;s`S4~hX0v=VuH`+~@PUa5DVQ(3mIv2x^6Jz5
zBYAGn{9GK(Vm5QrUyc_ddg|}^31YV2;39J2b!Iqz-3v2kS2E$)L*UpK2*)lAmn2P2
zoh|()ibX4U_OImG=UGAXQ}XOZm_H0^IoHd4)ZU8Kw^^Wj1N{J%kJCU?TJFsE9&+N?
z+xijwx~&l-Rc}$Rj}Eo!1e`2ra`PK-WQ0y`9<tnl0hpIACTB;4dPg(EE;SRpc#`nr
z5J&R0+N25ojW<Ynw?iJ)?(G5nA<zscc@KjYsb2cs2FL$e*JJbMEMDB=bO`x=Mr<t2
zp!j-<``*tk<JxwFQ+si;#c31=i$))3ugJ)e6~<DUj%~V8$}{rqm^{-#F9a?JRQ>ue
z=x2c`yQDl*oqBeP>&W_b=A1>fu%lBFvm5j`^o=@e&<AhS$#heM18&lV=VfcV%|1Nr
z@~t!Bb!*Kod=w&D65tSKA~UZtMH5nojiVuw_Bm#p%ZH)axk`kdO+lTv32S~VTMOMR
z^>F<?R-Ow%mjQhNW!JHwDOJR+s~+J8!;Yv>=whODQODiLv}SCPLL4SG)R}0_g074p
z#H+-9Y&<A!cjVasekz~0f_?^Q1e835@3hV5IKLc6w*$3wGmyt}55=n-D@R|jZ%yq6
zmTPoO!5&VlQx<j(Q}8=>bi!(u7r|YD;r1M>!19D~q^NHBJMrQW)&Vl6`Oimh2rW{g
z50S$`j>v;-GcS2$u9-QoFYjg{Ak2-<s@sncIE!}_UDhkOF@p`}&pMIM4Yx{rFNOR{
zzqO$62JQote!D?aYNx;I=y%Hexw0b_sW=Z^H#d+DbROt|mLI^{JU0-=l(ee@4~JZI
zj!*)1q_c8*b)u=f8e<$wl$Ni%P0AH|H|7VqpnC%4fRbwxXiDoJbjp{C2axspg!wbj
zyBdn$VLo#{O8qDxDB#r&uwR%q5;0DQQ!juIB%37&fC=d#TR7=JqYv+eD9D~v{_Ad+
z@-%>-8oxXS`UT)+K*{qZXi78Rkn*g5Q$8KPti)|cMJ1I>#PFh#&ECaWBYS}FLa@YF
z><JymPvhLFlthGuBbE<EeJl^LMc!=gXP$_MN)DpOcxN0A(T86xVsR_(lydcbFDBP$
z(5D0E07|YkpoLs7N_l$jIf`5(<N?(1PEiBBMw@%SV&8J@7gm5Xqr&LApatw;TB&Fs
zlJg_z6<`$z8$1FKHV+~EKA#<dki~ouc711KH&343Mefz#ewUQ<0OU~i3%-x}9iRiC
z>ZeJdtLSIWy3p=trJOU{)=$!oIA(eB+yyu>Tv&I`d>ns@>PqfaYG4g~BV!FLX(K%9
zD>}gt2NPg33GE`Vxt$b94D+s!u!M(L4p!9M5Z8m#T%$M)3)AgX3-rM)**MRuhzDeN
zELPCy!djU^4N{+-kX7}2UIG0s@DD)g^KZ~U0rCBw+N0@HBf>xvOUtoUBm-TKuh>HE
zD~=-tuo)U>0A6Ze95ga%OF$-;s8XpX(gzM(MiSLK@{HUYljj`J7Xx*GlILO2&jY_b
zD($M`Q?G1C9%)}5X<~QsH|Y$BkK_)Jp!gDaQ`i=3#4Gh;G@2nClNP|as}#TCc12)Q
zI!UV7{}*<ueP*&Zl!Gx_M{*EjH-ih~)PpmP5(+j&xUtO!K#!(P(ypO@NPngNR37La
zKp#NqQ4P8VQ2n?APCKx>wH`GnZA0c(PoKX8jT`N2_(R`D`x=tB39)w=+73N8kd2^W
ztHjkAo2jic&5<m@hi%izKJ2P;g_6U;XepLa0}<g8S8`)NV?(KmIt`I3@9SFVUdIn0
z3nh~Gub^K8ngCV)K5%}o);rYG@mzTxJO<nO80UY*PS(EFGht29+bl%v6tY^TN{3(J
z2QhxVK=%hK0L5>V^LxcdJ!Aa3Q|~$_2mHQa{j}Mc*oq@26*>xb^$wqUyhpVQ_k(^6
z*a0X$yFgQFr(KwIn$t2&qJD(nScnbEK^#>1Et{lG&Gcj&K{|$Os2t8~2OYky4`Y0D
zL3aVV1B&lp&?m&VrAbOGJrl($vzrH;Z)V!1nZ9Ji{HJ35Fv;(xQS2C;Rw62XdT;%G
zGGFV#N9lhb=tqGk0VT(apie}O7WK!qsDF{Ro#pwwMzWF3gH);uQEiGz4ZJXPzf%rA
zit#T5T?X_86#ucHPlSJq86uT6=>K%UV$!!b-v-^d+yv~w_t*#pOListJ5c?7Dn_aK
z7`TFLa^z?LA63safo=vq2UK~?`Pk5kf%tlEee3dASWGi(Bd`|$vmt|K&U7m7Ha`}Z
zc~EJs*u<PJ#6ol*4q~|<lW?7Qq24K2>`KB}B<Mh3V+S=s2&=$}5_qJrlnAz%)A<n=
zuEgnJ4$Vr&<~iC#dOO2Vdk8h51)L*{BFGRv;bA!3MWoOJ(%yB@LFM-b&>Mk!0A=ro
zK~rkS-&^TNSNf5|mlmTYKgfn*S}BjZJ5+6VYZ*XRIefK!F}_jIoq#TYvTr5m(}4_U
ze}$U2+}y5x)g)%cLdT57!i+C7%nlV?%fi^pj!l%<0Fsa%O5m=5r=#ay=E3>HeY478
zrFjOTAF1bqZJao{#lwn)-lY#pJ8gk1l&HRY9P|so8-TLY$IkCny`!Ej^$%rnX%<T4
zDL@#d5^KDJ3kIbR4iBO=-qoz&8kWAAg|8tm?8~d^fz<5qFZ?9dk2o3hFkm#G_>Tuo
z=~(Mx)J3ETUlOJAVvGnju{*IK0N@6t0dirt?jfn~2E0%8TegCJ3V0S!{2D=1il1+h
z>r&MVON8Pr+{U8}PDL5q#P)zApkd^E5_GKGD*0*6F@MMboey*ZD3MPT9(~+HEuQEC
z(J2RX-$=`tBN@DsHG|GNq*UYZnca%dYS7mK*Z*JfX{lk_aH@CsG_~S$0QA?ucmE4M
z?dh@Id4K6YWA+*idK@qjpmZYkDk?d;{7ugLH{e};@h<ZBEueP*&j2d_-vmwRzy{f`
zQv09gEGRi`5pK4e+;Rw09a|}S*MGv$?+47^YP)f$ix-niw68If4>vBR4p9Yqc*A)w
zR!lV(rAMS+<a`>7k1hp00vHP@ITnGYwE0~rhdSR2a?mZLgKEcC%XxkDhTg~4O7w;{
z%7;yzq8~84hwGJKI>a_k!4~TvHrQbwohQ$XSUwZ?#xNf4=@Jo5@Ys8>H%`_P4cnxA
zjo@Da{$!`uLB9ul2q^h}1Wl>Jv6Je*Ir0t16~4%@#0Iv6;!S^G7^1Jm5Iq)DDeY82
z)xqS}@uu4)|B;`?_@4`U3GgRC)uZb{-wAAqJ7;(E_tIXFgH{B_<8qz_C1dBzn^Q|>
zt47cuZN}dwa;|`8W|A>B`hm^}*lgzRV8b70eKB^oT^SfXW^ZTyCrQ9A7^q!B8JLS(
zxYjWm#R=u{QTeEp_aJ0Ze)TiSxgYyO0A;Uq(3FP8&09KhlC8G0i)f4N59}sP*~ZyQ
zTugCFD?1%@_|C?AEAd{+r;9+Z2W|xv-w#1kdgpU#m*`V1_Mx?!!AoY%l16F5%#9ce
z)XT?s@x`Wr!4K>qItL)v^5W(Z6UcS-bM@w4Uq9DO?#V#g?d#+nnLZK&FB}5xN<jA$
zJ#X9N=H7n6RPz*jLZR5NGMul~`S~~yZ@P62j=d6cH9RTpSNeI(expH81<nSP9t%NJ
zs*H<shW!eQMgAg8UF2|)C?GPQuMqj%O_b1gadeGEr$L+6$(XRnz)r5tl&8~;^YN(L
zA?4T(KBeG8_IwfaOTa4*Z}PqP{n+4Ny<nE)tQhBMhghDLl1K7xcitQNBBoy<=z+jc
zK<T#xG^PDpj>xCN;(2s{NW6C2*<ZOR_utA#fXe+Lw%?>%rjiW{XDJl9#_^D^BGb%C
zadoo$xoqsU?_!nlSuEf5c+J9|bcj?cZ150;GhWCCvYWA@Byy(VX=#r=kgE`Kkv;Z;
zJ^=h1P;whzI&wSb#;Ex+*hL(B5-W9$>|?q4%ePAidM($^l@(@Jo`#+NLBJyqbm)hJ
zF)ol5=Jr2JIVv4KB**EX&j*$RN{;)T->d$KdO{B878n_dc9Ve?dp#3P_L#~ib)(<p
z@RYEA1^vVr(|e#bFfh<H&@*tKHIVna!tU26+&6rs9cD=%TS@LDJIRk|wO+7TU%o{w
zqcuDy<vR%es$bzhU}#A|6j1V|gQj$hehfry<H%GeRGxuVlTA3V%veIJ)E(t)0p64I
zyyQEZ_~1L)<qFVifg1tE_ZHBU+U?IAmFq|tsZiKxExI*;HXnU*DzV!gzRh^As_%XR
z{Rg1`E5_FXO({P99_+9%s!B{tS@nm8A`~<Qs?OGo*_t-VND=>C%h~1RKi;SKO$S{A
zECH0BmxDeUzs1Y2g=OyCl0~Q+oLz__9+HlXr+CQ2Y$x_dcIE-!sqUyp1Vb*w36!L&
zNX-uaCcIyjgU>+!0{j6e{v}^Y{zt^yw&g!|7*$NA1JPIR3={yJfRnnBBsX)~@`IAA
zV|`pVEHA351i*_KJA4{ARf&cjv<*zRqgk}G{cUEPB!&Hpw9`_^Q3c7#AFcy^53mJL
za()JyQfVfpQjlu*%KApxNt_otbj~6yq(M@|Z2!v^0oZ4W&j<xwA7)p(5x+3UnuB?v
zEKeTG$J~%*74wLdjrr+b2&^!%CC6kT&-pkGB@b%{5l=?dfGX2pV0VVl&CI~I>@RU}
z9ph`T-H#$L>i;U`@B6iskK`W(`gGtNK*@iJ^Ly1VGn{>vN`7k8s^`<4Z8#<KBTUF*
zUN)U7oL|_jx;8o&N06jpteIwX3yet4=Vp@II~WJvCq+d)n2WWJM=_&?6EGbQD1BMV
z)dapO|C>SoMlyX9ldBVGN~;`slzd7qOvyT8)okauUM9mq(0SSmNW?~6t7j!V1A7Fp
ztk1g`17X+#w5x93+sX`P+95kLNk}@(_!IvhajdXls~z0q<Uiz4^}#iuZw2lGl>MFt
zP3arwoa3FF+vfkU`4`Svw19T8M-H-A^zUe67dCr&A>41eb~EB+GsNs*PfW77`BMx*
z@`e5ojV~t{IG6fNmLuKq;44xd*S}F#!H@E@1L%{0fq;_ddeD@1e=6lT^l)2wuz&M{
zLGx!0TUtG1)chf{=ggf+ZrPxJE0?f(h=r_S8^QE9R&Q!6Ss%-AdMVUXIUa_<zTto$
zZDo#_fk-zhaNK;C<e;~UnU;}HbDXa*?7v6j7-n->Z`nzPymhZj{SH9>RrpT&ncreu
z599(Z`h6$$TXU5xZ@*2KPvsX!>PPc=dG*Hq8S4yIZ#>S#1IO!=hK*S$@uRZbzOJ59
z1P@^j+{QUW*bb7Bke1-baiN`kX;Hrw3Z)hJLeY?~Ai3Bb@^?9t59a>Etglh{9dm~g
zUgy5UIPET-3MyXF6&>DwSXC~t?S$SqYQ(g<<K3pOE2<qcJB@ovvss$Q7xE?How$h(
zrx%#GbO1i;!VzySGxCYy`pPgPo$<f?7+dthGdW=9il@haNmqKC(cMVxML)p_%iN!0
zCU(YzJiZn6!Eu*37j&RYOz9W+it$swf!}%j*xW+@*Ke6&ES8yOqVu<1JMnN*l+Ohh
zzt<lzi?GO+G+e$Xne1X(;dJm4Z-7+v{-XYnVFKP|xe{;_47TsM5q^auM9SswlXJo+
zd(Fh&SgYx<-axnLMk7CHW2Qx$&Hv1BwI;$mvak@ruhnt39E!mdeJ5kTa2NK`48gr|
z7Z~G{Z(>oz^-oHDi)Y-!(yu~%6VFc-iw;<4{z&>u^kA$WDFHng7y&4MnFE?qd+iAM
z3l)aSIW;sZ6{)E~1@aQZM<NhFE%F=tm1}RH)=*=uOe-rPHQ39lu*z|INRkK5M-Y0A
z;LVJWRxMq{J}KW$@K^2ZTcCdg4g*TQ{O_fFTZ7V%H%x8o&lk}kdDKwE^<WX?Jle*R
z*J%81>@rxRktRL|iO&(@Gkcfeg}?_bbj{^q`Ncfb)05x9S!Y)#te150M0t)?9CY*k
z*gVxWIfrVRvy3_D33Wu}4%0u+umC-YRvks!{!gh#9pucxPpDjO0R0H?IH2@+3pAyj
zPTWCr%X+@-F9<zwk?VOh$w_Kt*X!Toj0;w;_Yt3`uEXN_Z|p%#rQ3aQ<U<Kh!McgX
z`*`}JV(ev=1^f8LX>R@a-JG9{$pX=&G=C=L%lRQD-vH2O0Mh^^-wM!_d~xGjRc{FS
zPMI@v#GIL}Y>gPRks`S4Eb;kw8E-}plJ$QO$^%*b0e4DzcmU7Al``k?{=6{tJYIn@
zn~-(||CI5en9Xt;z^X5#yiJg&0`ibO{|#FI5%V;FlD7afr9*ei`diIwDtRZ*oin4l
zvUbsM+|?=PP{^p5ytqt`UdD)_OeT$Cey2+Yw_qKe&i^XI6!w`gXo+rn(s@^wh)p!e
z>w$a*f1BYdCzbC9zm#$=CAl0quLHdv*Z?Rw?*L8d$T&io??dJ;SX@0}J{2*@msnG_
zzy*QE<9Gl}CG-_bD&qfF9FY7D;C(sx3EAbppxuWMF9axl1)wR#pOevIm+IQ_3+A6Y
z*I90_SxH4XeSsHDcjKU1EF%}A&xalW_quX<lIe0Mk<R`3r80v;|B`alfX_%rj>|#s
z0(JvRjsgFXay(lk%j@Al+j6Vw6)LdXjc<%?2HS4DEgx6ooIrfLMn0B^FP)G0jBY~{
z^*gH%XloEL<TY^0Ck}H9<AgUvlVC{>V;8GGFS7dbqJ+FadQ!+5KH85?PJbNqlsM!u
z%tyIG*y}b1ZE=7nSh>EA(7GebvPOqZbCB-t(79JPZg$GVYM$xu63*m>@YycOU2qsi
znb+qwsS4Q6j4?QT1yeLLa54pNVC*T*SJUA38eASk`H*u^+N%NfsC4YL19T(sS3ue8
zGtiWpoj3$Fztxg&wbK{XRxVmF1LsVWBR8;XFabx|_7H+k^;qpIPdTI6E*CT_q55{3
zF<4c*T9YGB=}$2~IveyHU_PMaSqGZZ5&O!W@dfV5sIHwmXZ{5^__(%u60YyU0f0p%
zwF^!|Uw*hal#0Zxd4c?^7|lc-U(2=r1qeb&#CE?V3^eExsZ=^$PyHhy2jC<r-ZFU!
zdwehL*9>_|ArJYzhKj`n_yHwv0cc9`^CilDi1R#(z$9WFyBPB|b>OQ_q7X~!WZ(=}
ztYP2;0o=gYo7VVdp(+shS@(nE|KO+Ett&zA1wICpJiQJ}c?>6x<1FWVI3<q~X4GIR
z0S(4>Yooy$jB(;~bgR$dg8rF{#~n;O`XBL`-0CNRjVKs({HdUJ{zNnrbg@JyY9RPH
z*J#V1aTCLAvD+#!@_YeYr8dSjK6Q*$>BXMo+z6K4-B!>_<kQgI4q_kj0CSQ##vBkH
zU=J`;^Z}*FD{Q6HE-(;px{9$?90z*px9iqwZVqr&*^fBUL71og#qoRCp#u3r`SufN
z-_O{W3UK_4;&x94JqCE^K3R|d=G@CtIJs?oA;yW0(Z-<+Og~RV@XAVbzH~+B=OZ!n
zu3m&r{LtyO(`l*D`J=h>2F*oa{DfJsI8J7H-uQ&$WR`j2Gw=xpnspqLSzod71`p)<
zJ(#fTkm^Q@bt=x{zMGkS-e<0Z%x!hdHA7`|gai4-J-RWTe~5;G8j0n+6MIHCT&#pq
zQ5UK7ztRp{pri8N|AJ2Y1u-muvcoLU3xN!0e5B^zM;^ltqUa5(t)-pmO37A*l70g#
zh)D6+Uo5Jf-pULO{6<4G-Sfm}qin$QDN?+Sud}rWc^`yj_<1+o!bOG|uu5UXZKa_<
zn#TSNo20m{l;?QlE)JXIy6Kc<%)*v<&CswUSSS(DMf-WLZak-R%mQlKy^I&KFF3~X
z5&b?=U!+EDgm~_O4b*t@J<y*42LM&BegsYFi1U>k1I&@<E1^^`rrGua6z$9TvrG%o
z3G7uyC(5TDyiRpDv^pmFR{R>{I|1}GU?!mWt^j>3zDpG2?d%1)E+XbfFXulnEi0F1
z@NtAGu3f-+jJV~5Po{e>NS3D<F8#w3n}o&t_kfS8S3U>*EAjm;CPyM@N@|`<&3`Hf
z7`zN?M%4F-b$qCjYhYC(sHq-}25Vp@#Wr2ZH*jrMSG0OAUXG?RkN3t>17x|L@e1zD
zNj2zFt}5_V^AQ(=z7DtnQ1-bGG^O^&5hPce?ii%PkrSs<CbdMYLL!C<3At>Og<(~O
zo@wCVUrZkv=g20k!jSSD1V1IuAE2%O8kz@C@??TOmOSGwK$I%UP*aH>*GhhYb}CwW
zXEn`41b-)rof)K#N71%Bd}rgmDt|5ny#lxrP<(F(O-bcXd^<h?$CMJ=dUoDAG~X)`
z$*Rq2&6!$mLmrei#wcxRw<}Dk_W``W0`I5#^cT?j?`R7F#Xlc3rP}!WDxC5`^W)TP
zlMD@P8Fe96VtWC?T3Tr@*UG3TA<jZOt<^eEvm-|h_~d{O$*}_TN?<jh<hTtqrS|#{
zljbS=PZai_tF2`*5xSG{2e%j>@2RvL{qf!$d?&t#LH_~hf5iAEf~M3SU#!+T+Se$?
zn~ue}(cxQ#_o{qf0D38K383`71vI6o6R#bg?-W(hQ)c{9nem7v`USySG_MiBz{3RK
z^4u~qXnu06Q6cia%9eWX#ru`N{|fpKz|c&=lPb}kN3841R<E#lGP?THXU<$S3aw;M
z+yd%+g)CPy<UKytW1EhT&M3!}6rH#1Mk|*VE*9@T=<uHkUW)(4pjQA_{;&D>Zo~gN
z;*XE*t@z`P7bQU=Nl@pK`Zu@Y&vCna5|9cg`ws$5slECqW`|Se&p||WD>E3O%juxy
zzCd?zKEz7?GlE?Z-Dl%iYL7(%QEwUtOJlte=jr0Wh<scF-NWobm(KnmE}*D$OF8Qx
zhqBZCpdSLZJF=ZvK8=Nc&YixDHng=865g_s<6{F(XThWrMWVt|bkU8IU&%7Ray(KF
z9B<qrM_16LKu>_uiOJz~w%SNh4k605J&=L&2}db&d8)0ZRXKcDwc@)G^d8`KK;_dw
z-N~m-M<2K2{Q4;il*>X?G~~D|0F6WueLN+|jp9=@9X0e*+U&5BUt?)|%>wQ(@pQ$}
z_BbZoz@1d4k>nUCKdtyQ%*6X}#Q=6=hO8uB!3&t3=2_@T@EEu-0t&S@XnuZLi<0@X
z)!Pv8q~6!nJ{{$BJpTn-R~WARM%M?nt?^6y;~t2X{$2y<M}ZxHvcub;DRpq_3l)c|
z+VMd%W>nXRC6Vp=M{JwUw(A%cV+v>`7PYmntZwK(xp0Ir;$|&eE#x}e?2IYKGHNR?
z#0&?Yrdp1mlqbh9Tk5awphp7Z042{t(3I|Q=6{YZ57l7Vjrvb)myWfAtK}nW7kI7Y
zFX`GUTZt9LTzD$R5(zQkf@PLCN*^PKXEDExK_A(xDJ11<1b<a--Ua<RfJxpK`F;aU
z>4^JYopufD9aLK8PoGy!GB)v>*qfX+@riVA<4TS*Kex6B*M)aBCQ&7OA-`UA1P_L#
z93#z`oz4P16POJsJ1qxIsWL9ELggE^uPw`2=-`~af_fKAwN<{h!6-ebg&T?!zVM(_
zlOXw{Y_-_oL(rcAUjmB%|A3~{UOk6a6-#NO=A(2`|LP3Eeu-A!ihVh;9&6+Y)(0KF
z6;_Pzsi4mR&IJ_TMWBz*cT)9?xw3x~W4)n0*5Z9NiBj)IykF)2d!YXbd;uu_zkxnJ
z|MAo3IsB_8V!<^sjq)BXTth1vQgC&1RF6_=J;@M(o#MqwQjU?hCq~I}D(LCJEI`Te
zC(xAIYj4#&xj6P~G-3l+A=n8aoCT;%^3ZrhF_?1mB$^PfitQG{Op?QY58kiFiSL8{
z6!;QQ{C@>aDWjeCp7_&QN0F-DFu)WTU=@Fu;mA=XKweCM^IHi}mF(#6GF!%9XM?T*
zmH>+X)u1W0H~zwfpz{~B+?<Nq`$kb&CsI9aqMlyO-@qnmNQ3jRaJkUgX2cYi22J9N
zM14@2BIVc%J|Xa-exA#1YB(`V3j)-3(Yyhr2)@UkOElD7BYvmKqm*Y#^}Lz|i>A{y
z-?(4QnOBVoEEsGOM4N=LW|Q}EAr_!NmjMCwjy&JDl4mOTo(W6?D3MI@a_}s?FAE{^
zCQqfm+3vij0sqH^@1)mLp#Ka!-|9W>%@fNl{Ut3s`x#!38*%9hACVfJ_v5^{mi)^G
z-2><YsQeoRno@iDr}(rAJG?EHgC3EC*pRgy8=q2Ia!^#|r}K-DgAEaxfA!#_`pb8L
zz7Kd1P;xYargW@&R90bBgRVvmx*G#jwZue2lhkNxs@+nD=0qi5mp8^Y0y-PW2Nd6O
z(8uB{f-c)K-p})}?uq-`9i#?QDe7KU-VF}lI=ola8*4$|3fu)KzFR?4a<$WL48|@b
zVp~;#V%r(Tb~WaawI}pEOyWXUqZ764-D3B+l%`63597UxuiJ-yF^~!<zMViHi!UOJ
z=U0n6(&Jd~K0510hi?tutN308`X=BuK=IuQn$j`a>zZncG(K8;y_(wVcXZX6I9hw%
zoaX2cKB~S9`r-RPCZOc#1)5TO^TJNQVL=VrOsWPjFu#b#XRFbH(7vGYnV1kZOiT&`
zg;-=oMx3LjgSEPJDMuanRDutc>l;9C0`3Qt9Iu0>bZCd{_r{M8(Q;lm3u{#nA$z<2
zFWKX(q7L6`eu!&_T8t4NZP3FCSOfGTvy9|=kQt56X5&mL7p_ifS*Ixk-3RCoD7i+1
zru2jp_ZuHaG8wn3)KX^xQ%I+XxubJw&R{i1C9np|<{jak*~U5Ko#n=SUL-ofcwe)_
ze*@mH@@E_9oxpQ|;{O(CO6}zjmPDyv*E)Zy*D<OQ>X^0}w`!tFFbrq>+>g36*o1-(
zPF0qpe=x?s5Of*P7f}3%gFYsIFqgX<Yi5d-4ALD(|9pYn>j>Q7sip|(oWQ4w=1a@T
zmVE1p4_-|EunF{oz$1X-`vPc6HF5FGs(B*2&zdv0np{%$BB>5sZMLn7deDg`t$LA~
z*5L4uhD@yj?<f8zfgS@?0jmAH5%gU^ofDUn)FAz`*3-8AT!8s1I{8b<RZZ<X8db=J
zgAKo6e=r;;e={ClEW^FTFib9EMc9*vtu??Y+Tbq89hZ^H6RjymU?)S&$crpsbbN^w
z;g)iap@8)a3pFxp7t3U(T|{0yz?h5PfCzwoiD81Ij2AKN(qSRMId)pB%$0W5!ZH6&
z0^Jcf2~c`21br!x<lMus$606C9j7P7>(R`RIOPntOI*Rlg&H^|8{>yH{BzQ*cPq_i
zYUg5RTxgc=3VS9P0i3)Vz)V`eD7=joZ6w|5nYE6E)-&ry=;pIcZx_;Tq*2FkXb3Lz
z#+T1Yzuv9%Ln9zkX};928M3SL^8@LXU}_OS={E@USRm@$1EBJ;gSTxyE)nxyLOTSi
zJs~4wm+unUb_Xd}2<5nwZ56nyp+J->%D2AUJshe{3>axsicaIBtx=)z*0?mr%`{S>
zC*u9jW;1BKiGz4uxDlWTXS>SWs?h2?NIkYdMpYi30{t@Z5uo(&B$`?xaL9>gQ|li+
z<Mg=5nMXsk*bXM5#b$knlD7sv2qj8e<xmIhC4~H#_^BTV0tH535ESVhF!IWZN{~SV
ztdm3K)=9~@>ITv;GZyf%MBGejl(x#04j89)lzP-a#;8-SR)Ag$Yyy-XZ-9Oei0@zZ
zjO&+*b$_Z>>si%0I*<LFbwZ8tkTb7UR^(!KEEnRK2o!QZfa7uaUDzp`bUQEF!1=x0
zx{rtM=GG>hsVkP=`tjSvh;}^wOJ1vt$aUOG+g>2`=$jPts}Z121<nVQ9u1(k0P*#5
zQe3&2HDi9QxC^9#T`HP~8ML&phR=i^#jSE97o$0;hgzUcG6MfJpwD}_(=FrgM$sFX
z1>_$a);<G!c&!g`zmT{@X9RytXfzWV6}QS0N2A70QXg!>Z}G1*(8a*XfYN6!=p{f;
z$G=p($jrEWL4RN-2GCBh$SrayXAy;otU>>_t%sFrJ8k%sr<W1fWkQoDOnBC#X3<v6
zkMU<r>sd4OlxgiWld14i3wZ`SY$|!!MR5*RsvRtpdNe`C9LK-*f&MqZQet{^2VD-t
z$9L4m=`m)GyrQL^UC`RSPCvrEUUSE?1sgj5YD1Af+i<a`?4l=Z{ukSN!45rVThH5$
ziw$>N?DV6$SaXroV*_MV_0|KRp9bClRDNg?jOl>*dTVo>9%7wFRa=j@skY$h@zvHN
zo>;Zjhr1tjL7DqpsJQNN6*ai{!!GL)SLgwk^`NU&^)*FRU)bsyUwvs6ouxjrA*-st
zE(E<2xD8PH>;e525bs}`<H`%QGgR!iv*Y>J8(zn^-gQHZSKRQem)%7#xZzuGxvjU|
zq1WBk8}1YFEh_spU8EkR(U=|sK~Df?07{SRLEi?%>oGLG9;Udv6I0}1&{5=nC}Q**
zKNR_wzi7W7iu~xe4*5gh`K^Qg6I7(3tJLE#WK{m;PQ{o9=n5!3rh%RfDF0IB{fVRG
zhnzA(mRu`~`z%@9=fl0awyMH9X!l_i*^jE2?j%9=b$0;z+#CoP**6A?)&`)@odN5v
zK<L(hbz8t`R3@S?BN~<Y@U5<`>Myh@lp0H<K6@Z*4!%==Z7=9AfnNcoPv<oBU4i&=
zKQm6Bc}wQcqmW-}SdLTj-ww4Y`LB{TjnF3Pxj@mM1N`NHwI>jIF<|Y6E~0TcR>|Mq
zP3ln(8I>LzK|cb#04P1a1^qw3s<{2gQ{u|~aN5sJYKR?utbv^)+m#tdRA4(2WTxbC
z_qGsJ*c^ficZZ7Z3h{?R*49wy{*bjL<fu?-oW_Sz4LswhwHM}TN~Io^>9Kj5D$uim
zxd1~RkuDd4rqtei4cd|O=1@sT@4X*pFxK!>wHp#MdA<>(6Bv6_<P-h>P<P3%5$|*1
zJLP{9=)J&4fa3QBXiCT6w<Mn5j-&9aarpJkh~?8r(5C?x04kqu2Yn9^?{8Pe<r5wH
zEoOX=?{Axu+W6b;3COJa1Z38A2}P?D_$>+6hJ?_K3D)|A6Y#gH9@1`FW^5iJ2s#_+
z2`D{gfnEsgeMF9LRR4c{ydKKmn%HyfO**h-`J1A1eD9I1%#Ng3D>I0@pC&~ffg))S
zB@}H*;7=x4I}$>VCRmRpv}$F}!Lf%ksK1Q(mm^vk)B|NwpC-tv>a~5K{|&ILm_B_#
z4+P@-WlzNEGr78&*7#9;j?*pMfIDhpaSx(iyD<?8tx80<?5f0~x<u4#>k_T{#L%^g
z)|y1*4V9ncbj!4+o>HF%$g0}S$3VXTybq}S!NF5n3Q+5eLsdP!KdxR|92*Zun%M*F
z6S|ja)+eH0hU;_McFa0xyOR;ok6N0#|J3!*Ko^a)dIDPIJ(^gwm9%;$(Rwy9^i-m?
z6IzKOz+5#1z&Vvi3;{&>3-y+IErrZ#{%a-Zn}LS_rPs%x4*>Cgw>v(coNDd_+^#;-
z#_euQrd&#f+g+7hba^sgmu%H1hptVw)+C>}+i5j@q&_2aVtzLj^lV@`p!9hJ^i#mr
zxbfLLar#VG>y{X0ZjjxzS-V6oEj=QWevcq13z<Y2RcHi$CWXF*LU~^&7k!b84Ej&9
z^;2@_`(*2fWG92pR2j6io&2fqEA@%y#{8}bbU82{Q2Ja6`Z}P}@jEr%+<#PkdQwq3
zff48WXl%rpD&1~f3beX11zKH}QuG^Xb#02ZCM9%rinS``L`I&%?X;$Hsn<csto-hG
z(EdDA%LSBP6G5K=+;OX{?^Jm@6sOm@a=!Wa&Fh0v)#ov=X5+qx)Y$-al5R>Vx*>&c
zOtBhLLbs<_cR(4@OE`8D+jNrDV<%)(di)LaUf>%*>5-9-xf~!~4<oK#n9(wSeSB4(
zZ>!2vq{>!O<$;u<`%?JhDb^Dyp=~MF_7hO0sh`xN4l=6xZ9VACz|(-z<9pD*0&|`G
zP<}QvPLK0i<~hmLa4@f|;m(mY+%55qP_Fh{i>t|6j%vCt-2ER?>MJOf_GL=Z{uKUw
ziuFTE=-(;Uw@RrinQ^x41L0KJwk=UEd~JZ#Yifs>UUNY&2d)Q{UVj7qHqg_FS5<yy
z#Elacx6uom{$=BO&YPl6Sbd~k^{J}nj@8~6mtGTrUcZxGzorx&PT^NYtd)__WfAN0
zh~sw`DYX!Pf23NaCriCbJI3m{3eXdP8GzF3R?v3?@$G9;yk0Hy!pCi4H>V!a!fqsO
z)<@97ULPr1gC$UYd&IgU61pW~Z6JM)-@;Z5l=^4|v2v6Qx+72yD1GLDUIY|6`(%{=
zbvV-hTCK-mEOdn&3!M`i3w3NWE%ioftn$w1?w3iUXQ5H#=}6Iz2!AnR?T&<YMXW}Z
zKW7?eNVlVrP{;VWsmcnePZP-sH>7^>=b--sxI4x4DF;0mh}Wm*k@~cX2RQ+KK5eVd
zhonyv>GOJ|=#>b6KVt2Tg#I3}-Z?RSss>4Y8X#+>qt9cYUjW_*RQ{NSSl0%Iz9;MJ
zrA}PbJ8}9fimeY}-hH2(cVF^{C`HdxDQZ3KUZ(w&+QkTa78`;8k{&-mkB;9(ioPOG
z`#EC$5()h$V*M0}s)?z)nX!nUNnVHTZEYvq%Vhi0JXq>e16fBp`qY802kr%wK5v2k
z5U6$TM^*lIC{7>h&&hSAW}I6qdUNN?y6&F%I-#q!A*~47RB`v6QD}2R6t%#*XwjM|
zzcp&z77g7LwQi0kGdFIhh6eRizg3bhIAx}7MbH(2#6zVXeT!mx3<rHGZ~>t7co_7P
zz+NXFN}ca8B~Fid&S<*{w_=K6!z@{|ttBnmPDk%gYh4c@Ko5VRfZ2pkNVj*OTi#pI
zqSvCxsSl&pN72yxQEM->6aCYLbO#tTTT7b7%}~pHsu?Erix$V`sS7~&0!9H!zlEUx
z1ZZ(_cvr^hSL5vaY+&b$>0M_SJ{7XJou>W;mp&J9_m8B-0cer*d9>)$DE}^M9gK#)
zj#}S92hl$mriS2Cp~De#)K$Z!{Cgo=j^k%vg8m8cbdJg28}vY+Dz2Zi{wVT`c$nkP
zBdkp?z*%;<NQ=9#PK6S`krF>gi++moD^jg1Q$v45t-90`>f}J~su5C;4Umx%)o1sC
zeiHaApvLuko!=|}QctzsrVbOS$iiuC7XsPXBfJTRfc5aD%?Qs7c*CdRAd$)*JwEcM
zT^9(i4Fo>)hr7c?`ttSUDitH89HB0;_B<DK2cQt3M6%?pUMOhAce0GDLuX{6wiYNr
zYb^dz;HeD?OFR?_iGMg@6#p2e?@fFIMK5Y}_^tvERsY=v`cB~PR(u<d&bK!hUjW7z
zXlE$K>UnI&rK6<2TGyDqNuVP@IzWj848`%CH2tEO%IAVJK;uXJJG#b7U!kq0H8^~i
zf``)gI?(mN`c{1F+vQ6tp9RKeY0o;0kFIeX<Iz&zgW!<^y~xkpC5W8@k^o91V$-U&
z`MYTPMW@mp%$U;Mf<~xF@c#<@rP3;^k<(6gQ)ZI{ZYT1n%HdxJUTR%z1L%8!2LR$t
zb<S4Ml;Y2$QU3OSIQtU7sH*GlckkO~pGju25XdTIBZRPpK*S{MI{^ZsVo88Nf<Ph!
zMXVZkRFtT=f*KKVLyU?`6$RHKZqZt$)+N@ZXszPXR{yp2`<;8=%?v|8`(60WJ8zQQ
zbMC&Kdrp3#(9|mERvimhjz?{`E9}Z3>ie0R0du{>jY3_jWocawUu|GiPpl8<e!w6=
z^>d>^PXyxaOS<CjRdw@^Q5EC<&@d>3&j$bg4c?{xhEYqCHKYGunD-;*{|n1=C4bH!
zPAhEFYg&KUV)NsoU9yz0b&4#PcJK}%-Bd15fPM~m9Z>Rp0QzGfUcSC@>$RwS-5P6B
zy3B6r+(No9nD=w$|AM)NY*VA6xk*;-kRw+~NwmD?fnESC0#tb|0Zk#kykh)isiJcf
z#bYmmqRfxt60Lfw%$E+tuj<R&pg#gW1r+~-peY>Hj?gc0p9hmd#tgf=?u_8WX~(tG
z;a@T+y5Bk(^lacnK=D5rG=(GWb#~vY5KeXqqAGd*&~d0OWK(E@Mz@6qQQl`wbLs)&
zQ|WyI^zVU}0mbh%&=lhHTO||s7Zg9Gns>|=((dq09USF55_A<X4p4k2g6@fL59O@1
z^2J4xqn7Y=ncg<UtJ2#6`Z3^1K=FMVG=-!4fpZkQkK}r!(>ugd>+p3AiSjK5Jq#ED
zD89#orVyXc$4GDYg$$AAMZ!SVxteh<G@hacvbr4p>k+?7_YTmH0Z#&o|I?r;{OWWc
z&b=75I#<-{Ce6T#VZPxbohRr~&XD=;8XDza0J;Pi3Ml@=K~wl2(oYv=MACb*4c6)K
zZAH8)-M4|h7kB_rd>;l);a8{I;hIuC2}zzlgC;${gKaQCI~y)6rFAgO_N!&Oe?a^$
z#83Tf!Z3_|Kq^3i`r0Gyo~m|CGx%n@ZR40)P5`F_%}5Y`s&zQ=&qG`){?(w*0M`9)
z@pl^vjpfkk#J?ADsr)+t`a|GjK;_?Oped}6)BBF8x2FsmGK74c!48Tjt~sKnHfu(+
z2D6}0p`yR9oGJ6Gq%_KJJm{IgTtM+V88n5X_P>X7OQ}5rdaKeo-d!jrKs&wLIUeFU
z<nX;4@v3z00sSJdA5eT>1x?{t=^QdRHkq?UGFNH_?p0RGYn%A{+F3H4sl%iE27oRD
zMgfXn6=(`aPiHK*l-ic=WZsEn0$P(uW@xtLw;u7S^xX>jPT(Fu@!J8K!m-jP-2bUk
z>^XT_tHbXH#HaZA$}rCb`T&Yw7HA4bPhSkTqbE-*sgdbxMto{MvlaCHz*9i?d<OJq
zfSS)JJ2w+6Q40~^6Is|79@qkV5zCvF7UQ5)7%DsB2UDAtE|sQ2Yv&`==PdAOZM@(L
zp0t6_zk(-h;Q3lZcF@(!=7H28?h1!JL9#NNZPP*ocbfaS<YvGK(oDn38!A$HY?zV2
zGH3-Inj_OwIU<^#6G1NoRskwK*Mi;*#HXj>Xz6h-_@*3H=rgj@V}yq25PD#@(8<RV
z8u@p~k^2Y8q{<;U($vy`LO{tq6?6>{FZcSR$vxXSh&rm=7qRUAF@om`!AErq-uKvo
zcg~gh-2s`(kPhmn{|0(xxv8xNl-%2oN1X!V?@u3e{9UzR`U|IRYg=ZwEFROahAuLT
zuNqg6ZCpy;7sVS6b62&jKC!W-VQSNv^{d9zt*%FxXoR-vn4!@{PlXAfU!>cg_tVG4
z^idAf0rV?X&ilXU2lT~dI86-ob6%$4c|QH*Z}hE-lAaXp6Y6iy#tY31|HR-e?$$oq
zHf%8jxND`g!We3u?BP{bl{L&7Y>nb@2#<eb;Gk(lrH5x@fvvNo1D5%YrGEhHjIMVq
z-$%^+jCn18f*z@~d4lf`43Y3b!_2b!;qJ+n7k|b_8^^=x&++<*Gz;#*k8d)Pt>569
zBTSQ5T9IrM7ILh#pw|rKn#bE#vV{vlB~XQo3>QBs;jWAVvuK2kpZZ({<{8JYF*+Co
z<o(Y!&mDaZy>yFQ{t`1^VKHK#>f!xQH0M`XqxBKFpf6_TdN#VbuiM^l+3&+y5}cBg
zJxTf(rEHiLA@stxy6weJ@E)Ld1{)GIaJ`UbAp5ir(X?TMKg@2kVZXJF!xz}aUT7P?
zOx>LbhZf6v78-^94SYlOtPkh{U;v={#c`l1bUOaPls>+wJ}c^47Bz?pQ;Tx*12&3o
zov<kF!M#!sY`f`rCct`KAPn(V8~6~RxnA;bL;ThFhWOtC`hMUcK=I!Tn!*n|<i4-6
z;~@AiZ)!SCx*lm`Z@~aG)I%rJrG#tvGhEwg=EFu+HJ@osp*xIcN{#=$OC(>{2~oZ8
zRL})LF`)R?fu>O7=nJcJ8^M<*LMt7!rO<)?Mi)BJe}oRS2fPnqv^L=%4mC`7C8H9B
zO}d91ft@9Tr^A$z!Fu!M)|;$gIWvoFKZ=xW{l3mQtkl)AEzC%wU0E4A8l}9CLmpL5
z&w>6E@ByIY{Q)$E`1_7h-j*i#VIWnfHknI#BCiTIqKCf*D%{#dR<4n5qyi@I4-*{l
zFk_^o6wrvU*tm{vO6*-G<*2NP?g!5V-2kirlpO7#DeQXr@N-om2R2erWv17OTbDSz
z`#TpK+8@b%?E>1@zJ}k7NwJk}B<g<Lw2$cI6mXEsYr)%1st0DOl3f`bR?z06O?sG_
zNKO-l<%`$3aVmC}Ro>OEkn$daJSyLKC3L5OR6xmF4VuDkN3Z{|a;~9HwA->g&J*4@
zerBwde}iKM67@Sv`wDj(3}=ISkd+5tVhNtXW*+V^4#RDvfU5|Ve;7Z-$g#)TBjNgJ
zUeFBKy^*gA_&NL#=hY0V`|?V(kfW<v%6&KFQvLrEp!Wl>14{0XK~q>9cP~QZvyi*n
zxD<@VehKd$Y%d>4W@4}5om|^z!yYGcHkZ3xv-x;)Bwe(8h#9L{HjVn&|6e8LD62BH
zd3dMxxfApr;2@yJp$o_0zBZs0%X!O=0rJ`BkMbFnr%E&$C6)NTZsBU^caz_m=&w=j
zSY40fYAA(?Z}SUlPz(jdEAg%K75?r-=<O`7!#zduJI-6Qta1)n7gl_2!Ghs8{A-I6
z{fxoSVsDXs%mAEi+{}0#d%=W8s}IF@O>gv#*u#T=yo2^Mab3a0m4&k+w=+Hh<4dlu
zzbAQl0SryjuwkD*z{=mpJQc|>02M$-i!+RTS1~TFrokL=$aM;SE5QhPPWv4*cQX&H
zX0Fi3vNZQ}a}q1|U%_1a*&WQkpSd~ipPOiso>FWRrlBNK-~y`*y}+l;|1M&+9%8P*
z8_b_%Cwdah$PN}xip(~8^G8{)q_k5yS;_mh>jOLRzHM)?^;u_s&Jz3jr{weA-|>vS
z`ka1Axf__v57SkN#<~$^DYSn~eceE_kKgc55Wki7qV9V^H(t~?v;Ij%8<=}twwbXm
zJ@a_~0KXp>NzfVSMmvL*qIE&@gmt6LO8n^<dzOX!Odf09spdrSoMDb$SCzONKSRO`
zSNmHoW^no~-_G;5GVz+UZiQLvM;@)KH<ztzG#9R`>u;CY^O<=8FS(kxant;s*%QbN
z5-`DjLAUqn_8#5dMTV7!*<@7tH0bp6zv=v@ME(i<<FX~lM++9G{>ohsG5bZ+a~X4g
z7vXO)cAD=uye5o4aY`N5Py?3Dbp2-L8pAW(FPOeDJk9S582)Q|2hat3Y<DJAd#(0b
zS?^26M%N2-K`#ZC1FGKN1bQbB`Gf4|hUUxqUj1-Pz0WTc=D4t9+k|zqcsLdI^fgT_
z_2`mw_FCtgdn~rs+RgS@G;;mT(w_E=M5S^0$A|3Tsfn(HQzNeMg2X+{3|a8Q(`!tc
ztCuIO64!h}WIGQYWft>#{Daxe6?U~}AdPl2;1B^Whxm9@V|>EOKnkB||CM>hxLqEP
zdzsdGy-a87xac_84|D-g45)Nco=nI4ytwsreoag|p_H+54PD9miKcG&_{w93&D7Ea
zoi1V|c_XM8Fq%9t9fM(n`^q(q<|nB2jKi4Z0=U2+*JL7e-XP^_2hS{gL;cPJpdSJr
z1t^egW3Q6=uFio(H?U|;%j)L3MU=7S5TsmNk9i))X_X&YD?{i;8NX|MG~Hp)eSrc%
z^{*2^Q`puMpVg-|BK2@;vzcMj<$C%chnE=oxpuP`J`Fjn`y!<&W@#{B<zcrQ77<hX
zWTIf+V*DC9Z)&|s%FzZs6Tyelxdrrg;66afu?IAT^^X1J!{%S2c99@^*=FdFkpxfS
zx}h(ZZu=pJ2`;{Zdh|s`HI3$4<;{|BXhO7K-wgU&VBExLxo1wnogHAuZL*we-jUBf
zCGvbk<acx3Dq1iI8lCa#N!VHtFO93=1_gg0UQ`FZ2K!^PyZdnUZM0V(-?+AZ@yWug
z(_w!H)fj9!#YIN@H_g+U#7rWm)%CdRXPdRUE;Yns%kkoIky||e#Kq%gCLS;8;&H3|
z&F%7M@5wL!Dc|<uH)+UNKN&*?`si|&0o}Vf##fv*vhg_BnW!&>!=y3z5+-EJVTQ_&
zmwGmpexsgEGHP@*U|5!gTD%Dpv!7Z9Ch2Ubw%ymk3db6-8#VzpReHlTNx<qA>URJ=
zbU(}xSM$(Vx8>%y>*gnVRT?JEo7vag`~tRrxVaJIRtD~pFTxVugF~jZm|MHW=hzea
zaxdJNCgX(hV)imO;W-!<T}<?8NmwQo%=Sdo9}F36mV12aP5im;ca>zA1Ear_>-Gd>
z^aJKx4&M;w_vq~DBy%k~rQ!TqcCl`5(9eV+rmR2_r1ilt`nBwKJ+at7z|Ob$c)qH?
zS%S|&=Fo%?#)}gy<1tocj(?1eGfRi^<l*O(@!@F`6DHVLcL`1pKyvF|Zh6v>(`WQE
zC+EOX#!#Lx^PE|z#M8*(7?NwH!2lJ>epZ5+>`t;zw&)n?)XUj#%v1e~6FdoU>63i=
z<!qJd1+nyU)?kJbikv?-l5q10N;>94ERk_vA_ld?eu7Juuc@ER9EyCz{o&vZy20)1
z^^8l|z3g&ER=MF{+0-+Ao_p{U>u%j+4A*sQ)cq{*tWHLAJp2YdGw~CB{>QpEBf*v6
zO3ZQdRd)q4dBo>x4`kdH@V5tGATTiKk>F_aT$tQ&<-tW}VxLKosV<)4cU=+~e`UbD
zpLsC3Ewnt32lF|mz~1bC`2*2k`rbe0fq=_pJ{!1-O<KjXFO~6M5HQXU_%8@#^PG2L
zfBh~07~OqY48NGDKJZVvHW;?Utgq#{JUH?SiuREI5|%w6)qGJO{;_UHd>*eGmTvdx
z59;>S`qkb*X8>cgjRj|t{W`OM$Ak}=_qcIB<3Dm#UVc93A2I%+#V_HQKK<zCkDI*B
z4a2YOHO}8->?^-<0mpSUzTPB{?PLZ0T>g}<54SGksO#Q|fle;Idr~)>X)^Q{3%}2b
zE`bkAZu<ufKtHx+AO??T6ES)`s>6l*+lDKV&u3oy0Tvj-T;2?y-#aJt6^HHAK5&1X
z$y^EJ6HPWTxG*)KzDXGqfIhePcAka5NH;S4>0@%bf0#WrAAjBbS}-ZUCU0aGen0&Z
z<{E(cIu6O~Ppy!hYG>Lu)Lxrkll^M#)aba?0(uK@JD~dW&p}g&x4R~KJkg)lV74oJ
zLHOuvCm((3KngGrH~|>uyl3N?1T}|i_?IxuoB)3Wt^!vtxHUGdM3<4ulPsR9<4I;*
zyw(WggaG_Nd%aeHQIyD2dl`w|-eDeb<36#O3TwYuNcBV3{)1z_N<)PRwVg6uWz(Yb
zp$VXyfEGZdYYS)!N1T_?5=x|N!n7J1s@m8NxdzP<YtY0aK5e-weUNLdxUm9rEHEq<
zum)r8qzACkgGp(a`K%PGwRTuKgg{S=3B65Hx4$9fJqUR!ArFnKKZ8!0j{ROh$$J85
z3Y9(WYY2Ix3lVY2v33u`?&<&_3m6Opu+w@C{{|M5AZI4ojD;U~Xaq3R%1$V@v+V%y
zXP}|b@Oy^wjkGtA^#>{6dhl24yPH7Y2Xp{RzI~u6#P9EkdIFcLi?Q!5Eio9OOKAs<
zOtKAkc3}PkLpF(N2K-#Z23pYN$51iYJ=m{j91l;h!VH_1^_G+)G$X3#nM*V<3{Y~+
z1Wlnj&Q4;i9OGBjEox~L&MA!0gCq=X1JO(*+!ub9vCgy%D}vQL76|Az6Z+|eBQ;!|
zrp=%(M~-&zQS0<wpk38CX93hav~VW&8i3u7f0TwH&b;Jr@+su0ruoR&HLL0zX>wZ4
zoz~9=Yc*eG;_<qCd?_E!mv76r{apOY%kr&Eyxc8chKZLEKf_+|HT<BtptQDpfn7US
zJUzAZ77P*ZYYzL~u3aGBgS9U+=La>;bA|H<%d}6zBjK-G=ROQiVHgxP$HQd;4CuMN
zdSa0=1XBdu<+nz_PPf}CfTe7m=bg_I5|ceS7(<F|J>m+Om2>|SDgAGx{67)<+sNE+
zBBkF(%D;(tK8u*<><=SDx+3KtM(hKTHSa`94@An}iP*11=Dr*$eI-)<a>VY4xQ)3F
zM@n}^${&sdw@1>A{yZNy@aNtTDZMdLenZ5*JQCpJuZWaxh?HLuu`fxYt)b&?U}L@u
z5BWY^{$1GqDxBxf)lHa}^V;WAUB8?gcXF(-jY7VSu|i`9)AOvo%q(<mV|JnEe&#Op
zZDzqs@C$*h%wHIKng#O`ce4axHU6Lp`vK)>MRQ?Ivm8r<dDalK96O?GT&2QQ)?81i
zyBu?y1-?>mxi9E_nFUJy<ygekgi3?uSTe0h9FkC;XeTVAdfWA(tmi+V?u778{eeEq
z)B->vpz3)xXbSQ6iA23Rvq2i`${G#lvMHG^?MA*vtIR<^3-g9n(3?tU%XxePc3^9}
zB)<m4r}+IA^rgTRfZ}%pXbS4w;jnqVoEu}wIJ>0@)f+xehr=0B#y}g4o3)!6uJBn|
zdIoVFf?UEw>vZ^bAzsDzYta8DKC`2I`+%lUc86R)btrol)K5>ZKeGl;GFp++{1$^9
zkK<vH{6_u|`Z$)&^Ic&$t+lYI80^Zi{5%akurO6T3_JDcgXdt|GV~WG{os=dK9t|*
zfL;$=38?hn4w^!VW5@cieYfuP&#K4dpQNch7aeW}I@}xi(+r-D$X{G4v<gVCF6_;q
zp1%xRGyQm}vvu0($Z-gKlpH^U_S8U+7*KMgfTpnT7MUOIj-I|KcT&Ek3=#RU6xop>
zvIB><SMl7ynPdZaFn0F_#%$oVe(a<l@v3rY0ev=b9-#PM3YtQX^{r|N4*x{C7Z0S$
zHc5L3MxC-~gFhEeh(viid^!=2N?#Y~FM)3W#mAf@`P4f4xrgna3qIr5ti<99i`jNs
z$L2zV;6{FsX?uCD6^7TIJQQ>v+YeVSNNphua#V=P!QM|~I;#=C;(sdW24Fd$_^$;`
z;Rt;Os&7l19OmK5k(kT$sh|pex^@7Gg{?*=Qd(j3rwU&AspPj8@u_j*WzYwJ_W{N4
zE6@~r+y^HkEtIXTY|(kFl_kUI_042TIbT}LD#YlWZlsWMbd@npBvb2h_?FF$j@M&A
zPXT5Citj?u6yoi4iF)K*W_JwK+|1W%Wry47innrzeW=f5dOHxW3-MArdK&Z#z)OJQ
z`zB}#@%LQ?-$mp!V~Mz3TbW(qLSm1nZp$s5B*V6xs7m7R+Z}%SCq~mb4D>8u0ied=
zOF&-@#HaHu=iZ0l+e`_joQ7SyyE$cbHhm<}hp=!LIL`xNzGq7ZHS}H@Xqcr<#MO6e
zB#hzY1=F#r!y46XP8c+~_oTq|h$}HA**5#wnJAYD{Bedg1C`D9WD&eK55UbiLghi3
zUk4$ZYIpwu&E}b!1t|IHcXRMw8MmL+;OIFD`PJS8%mIrH3l2|vo9N?B)DUu0hB3OA
ze=25InO@Gq863-CnCLhBEP+9ZnnI@|&sy**!#kDVWuUJFt^s1@c>?ckS028fwP7<l
zegq*;4K)_kDZD|l;G<K|yP8FK<a(yxfT!nXmT)HvY-ir<m}?Wml04}eD3U|94nDn^
zZe-{QSjF467v7;b&iJX(B6NH%^DXP7sGNgAmjdNLteofIJzh@Zxp+B8*Dq;WRgc2I
zpF>c5e4^*w$>7T3UZ&rNr{`W4ybs&%Uc$Z1e1!QQW!^iPYdhn2lKTD*dV04r^G=q8
zPnm=wBq2u+!qjkx0a$_IOwH>RZpq>B5vPpsN`qwemdVn(zL4qq0Wz!ncb|-VfIuP;
zo34>~k5AVtN96yw)7R9I1s6Dz-b5ci>3L64{y)p~=P3W5Wte3KUSol$m<zW<o?=P(
zjLm<zuSNa`;`0A*QqCJ8gX%}`1N{u}BB0v&pFmTHx0fU82ll~Q8ls0EDV^*+9EIU-
zcA@yhGTj52JGl0WK?7$3eAise?Eccta6Ny9HYA<U^`(@j<do<-wgU7FpaxL+_FK>w
z0g<@<(S5P)NYq;#)=*E-&YqSw^+(($q`8S}U&7LjiF4AxBStzlNCG=S_eR_AV`J^=
z=8s?t#%#x&TPvqMeLTk*gIIu_k3ASBoP3hZUrBkpAd4#JZ%NMire*_5-eI6e0bAnQ
z*})^^#er0}$R9|Nr$~`sMuoN^GM#7tS&IBN>?h;!h#M};lL)=$M1O^ke@BAvlY(C&
ztaeJlAC3{c`fDk78)Pa$GN^xO2YnB4KcLEe4`>Rzobmgxd7{W)c<-Rr27`R_$l%*1
zzFK?Mjt(yw(lu#?V?wvn;R}nRS{C9ZzNw(IfqsDEI~+8HZ9T2~1mBbD>%<(Tjg6Ij
z7ih1=@Qv^wjoTGQFEKwYIV97&9`UO5-URw~U^}47=|#}50Y{`ac6<^1os&aMTpnTA
zeBZ?1VOpy@y7iq1zf`@Uz2WDXL7WpO1gQp{U~CkF#}q6wOemz$a$VRR4Sgf!%lb{U
z9hQQg2FwCfzB~<@LXYiGEj<rwiqCP;2u~HC+jQ9$|7vMBda@0_Zu;QwnCq6$W8&=C
zXZcb`@?oR&GdPVg)*?5b;qoM>m|4M0)5ys;jWSHfdSU+Ur=RmF@FHU1(6Rq%`f|@{
z))G&>HP<!UJQqi1bS~}%aHxiK!$IEDqRF&=FVpE-5N$8XptFE}fJ)~i&=h*ye^|1j
zh1UG2b<TP}jO>4jX%BhxU43{)NcWSub%Q7B94DA2D36hhMgoB}?MY??Fi-l2l%oxN
z)O_w1(A$Cg042u@pegh?pMxA~52OXV4*em;Hf()(6O2TxqmwWo*u0-BoM7+>d@O_a
z^@6vE@Sl=@YHc(h@<0!vcR<z0m7vcA;`@#Dv3gdbK2|NJiB?L<B^+zD;(^rTzK!D`
ze>SvG{GWS*U*IT;W)A2mgli`pL;u4QnQHRTqn>=f$7QD&_-P2cy(q668Q&$kyqTD!
zt*|02Nv{=R*Zxb&-AQud8*0BFg7(*8TmzKc^Fh}G@#C6rOZ<2}d(A?UyNxZ_ND4H)
zV?JMj$FA<Lk_DYdyK|d(m!Z9hlx3kabYcI(Z`oF&-p9<m&5MD4hgZKJPtQYMSdV_p
z8+hF7w`MZSnt)&KWAw389`L&E_L_HjlkiEZFE4NyGNtB;Jz+V}=ZLZLCq}L;F{%f(
zy+6uy??sxjoOHhe`Yqr9pz6z)pegj&Z_RF8xu~A{%2qZGwq`c*T5WwG9qU<jSZ4AJ
zni9kOjB@Cl^?#CY*}^E_v7n~{)qvt#3;L*h=d5gLq^Se=)(O79)i!}I+{p^w10>H1
z#gpP`clbVzcqigrlr!kBf$srT&f!J4uLTTs^gz^k==vkZHPlZzRJ71+QdC(StEsIr
zSZ%nKe@$LxeP4?beg$iO93@PGBQn>2ysl>h$<OgY|MA-Y^^SRw`(B132`1zJ7IhS!
z$XvM3GYEa@80gvKC(ytAx6HR@$X4md-wOItU<07?tsOLl8{_=PM}=JMjBm{?@V>VR
zr>9zHAUeE-k%z+h%1C26ac=ub@;!uj)j0EC(4obqmISDLTLF4C5PyGtSL`^0d4Myz
z8liV}^e|(9c|ZVyTyARb27J&NOhGT>_rV`4o*qvc^>%o((JVYhc#J;T{g%=Al3`gM
z17}BlGO)xn6HOg2IH3=_ld_@X7s?Nt`;DSEjDDq}kNgR)wKVNtj5k7M4^3i-mi4nt
z*Ivl1=85}3{}Ff>Q2F@<XbL@!Pt%)lISi)?i?G-(t)Se5$EUkt-io|gL%Y!!PJK^y
z)Y?Dx&m6v$_0jyS2E71S45<8U1$`-ScijBy?j!1<I@@St=ZGG~mOaXLIPOTu{(S)b
z$G(93$$)=%pcn7;LcnzKCjyYFLHhd1Hj3aH%FhNP`>4xk6RiVsf_Ej-P3`1gpo2@W
z-w!DH#)6&$#MiTnV#`}JifPzHZm3&6dG?Iylv$l@o19C3Bp(~`pdN5`-JpeKb%BL{
zhtXl||H}h+oZ)?#IOwy)vQHBOUnUO1aqVp6>tHrs9~(p(s^C!$YB-Hp#Ik<W-_6Dn
zwhT*HMB;=_POV+j?uM+Y{yq=-UEo7NmGiftDU9u@-Kh2J9N0KJEHUlu_i{$tS6ou|
z$ayW?TWtzM0nl?X!zPo*#_e8eN(+n!<e3HWIiyRuCN7QU^8(P#z&U`*=gpw+0pjy{
z)6w#|20F@=&wJrJZV!W3@U23VVH2-*GWa&8?F_37hI!AM!h^Pi%QlAtTf=#LB~{oH
zWVR0HRU~$`lc)GQgj!R|{R3oD`59?|z6VeMsQjz~P2tz&rxLmy>H#7r{W2#%fD40g
zHnfeT6>PGEy%JvWgnr)y<H~4uYL%9h>qhX+2VbhU4}pFZcoI<gNiw~U_jvo@+hX%m
z-T@L_CMj7^HAa?RK?_xUyayXjZVc7voiJSEB>#Thvr9K0*8RKm1h>xyt7`1Fk$s^|
zt<#aKq%o==G9L7az<fZ-HF6pBMF4H5+_zZk_-A?VhnV?A%y_dBs-INMhgh3O3^Na7
zw4rwNsZZM*p|cHRoR1Gdr|C9G$<E;6ppOs0dl1J)8PuubJ@)7JFT8svC!jO-;P5Go
zL<ea?fdf*H)$ay2|7K=Y8KaRMSw;#i%ae>mUoR}{h`Za;FE#C}O!G=p7oYyC%)~bm
z1BtzGNRPFj-+V1`s6W;A8@+W8a~)^i#0I5?++L4@U(n{|%$_1PrXO|jR)hDWx_JVr
za$LkXj>_@>V&;B;`R04CVK}`o13KXMCx!wrWgo%CEi-rp^I?li{7Yp?Y#{1FrC-*Y
zPUO9s|9ubIKF!p8fGVFN(8GZEdF$gx%v*6EwOiM6IXp(zG}Nt}Sht+KKVtjt6LubJ
zWi#m`58I`ic&n~ml$`xzVyeiEr2k8FTSbq#eNSM<KMUSs@@fAa8&98znL#!V1|lqt
z4YPda0nr}!2BiFLkWID6n?c_R+zTlAbC;W15fDF~xMKCr7B`*&DUHw;8k_e}b;rDP
zYqIa}VHf;UN4)kw!zfL$6oDTm-&oIZ9RJfSn=a#%gDMN3wvVhZqcWvh7zM4~F8l>4
zKB68*JOMiHN)FroBE4L;nV!KTQ0BI1<CI&r$FO^upN74kgv~+>+cb-N+2BcV4vqOx
z5j1|j*Rd-lJwIh7$aJ?NO(CbfUl00rU^}4tp+`Yeh~J+SjXS?k&DaWxp>v0{hq2ON
zC1nG>+V!YTSl`g0l+Oz4$C=4g;ZB0}2|TdR=kV87MCT8^KxYAc0mZ)vG=(0|@niXS
zt3}h{lnd-<X*<DPT%XG|`iVt9;t3_nbgxCcm3XIq?rPBY0uKO+?{}an^mra0%Qvd?
zU$TQE?X3(SRX`1pgk{(D9Iha{=!D2fNX$<hke`Bv9f2|xx3W;&m~x}wi^k<k8l8*o
z8r2VrQ*KyAUelaXgGF<J-5<GDXxzb})6bKTlWh^1j>?tM@>>Xc9dI6?(s2uD3P(BD
zi<X~E$N0uot6S8JsN^b2%Mc*ZK|rJj<MTgZl)JZQFqZsDJm@3mI6+T1FYJS^ES*9X
z^0(nzl?uEgNy^y;IaEE<noLaxY=8o_v0toTOO#}DR@c+Qb`UalkhT-cu|CKv%d$jN
z+98MEJjAWq^BU0C05<?CU!DR@;U{Oj*wi7%jU(!{%ojK)ss~ft5je;{Bol^v<Q;)@
z@e=qDmHK)PSH~~vxjY<7LpRd|kLmqv5B482G5e<XOizX%I!dGlTxk3j-hH6`Yn(1!
z&}z-8GM_@t(RE!R=pjHEpyZwannI8II^=j@cH_Ewq1mhSd&ytqD)RlX1%~al!RZ+P
z<uY#+wZuinaa2s2)=Tog5%H^XdKUB>z}tZ82kBS8!Fzmp)x?hf`Gr^{)lHgFP`t2l
z=}_m;Ao``Ur5rjH-Q+-EJSL-C_&=DotZz60dF3MI44!P1q`N(XJf_>GD}jA6kE-S)
zA-vFFNptG|>CyShOwjXzIzZ)D6KD!O?$<0Nr>pAXZA$YJoT#3FMco$udva$gJ*-w(
z6*Q+i#aJlvsng-R7x7jiUg|%-C3+R+AAriI=U3xCC9t<wGqKlpEt1bI2{HPrQ=94*
zs}@LpUu#ar45jXf{30<?`EpvVZTin9Yqc)%h({|EkBj8vKU}<x5T8HDUxX?N{r*lv
zJX*x(@9`aF_Zyk$AmM-=8o4e9p_6jZGx_GHED+Cz^ju6>JU(|KPlhKQj9Yx9&vz$I
z-qC$+W%-utK0*6-vfzXA+nx07W0HP?`JNJ#>sjV{K~T75;Cfa5^ffj!c^ogsJvP$}
zTM7R_U!B5zxO?V%4Q?zwKjR&u(EHnLfYqXpe1o|<nfVVktdIE?8~GA*?PKQO*@!;o
zel{{=9M5xNO5(>sAJyc2>FQ9rzYq70v`1#Rtx>M6%$0?eB`t_?O9DEslf3<zncP2f
zl0Cs?o{lKpybPx%&*3>7PLiL*bLd0Nd>GGBI~cSe-Mk71KzHFeteu&+)Au*SnexcG
z(pu9!a!zTD`Cle(3}j=&(`{dinu=Lo&zO!%^>1$6V)2FiUnZ0euhvQV@O+)WNMH5g
zffW448a|q(zzzI!%o<~sxT@?RH0DcuW4yk=D8DN-I_OFqlW-wV9><cy;k3~#IpxnR
z)s<qV4P$1?Na*RC$s?E<e%75>m0*S{aoJ~--}H_5nx4sS({+MvTI0<MsBBbV|9N0y
z0H+z<|D@tVN1<$Iceh0MeO>_l9`F&M+SzxYDfFlpz8v+uW?kdTB~4Vz;bw2fs*|P0
zdOM7Wi3Q8!@{vL7mMwgjE_%|5P(hlj&oG-<FY2qHp|eexq5_}hA}QCzHBq_F0KFUd
z8BpzT`k7e!0b6Qi`^zFVaD?5(G41eh`Gja<9Kf7L^<E%xlFD-qnIG}5O?Jq<L>G^Z
zZt?h={BoBm-WG_@@8x%&GV!)pd^Ub9+TNACamcc%jlpIAWR0bQ_}LbOz3gN4&0U80
z9edg9@|W#pr#ip;4D>yWlf*SI_-cfv%YXDC|JA4dM-N_LWF^mp{>R+SM(Gw~>SiN&
zK=+OITm6RnMy5~lP3<?uH`QfKf=Bs2C;2YNHH7r@d>63vtC@cjOTUmo(Kh{J=3md!
zFJ=DAS^7=PzXiqv2lBfZPLwZ(@>yxCIrV45-fo`Ehj`{bXqG-?PJPfME^p$rso!(V
z_dHAB=`S$fi!7NB8?Kj?TK!&SXw#-KlaJ%GpE8F$ZBBj4w4XOm`Xe*;G5_z$_mO`O
zGoEJtR~dhWnJ+VA6EiPl<^{|=pFxw$JkLDWypkCkn0dCj&Rlo_d&wNK-<<lAX@8(&
z{bCNAd!JFd!<c%X5&S^c$NR_WWBo&n!Tu_KyqS``3kzPfLWXNQ^cnp(M$mbvTFapD
zz7Plfb6KUn&NW#tv`#X=VtS45YJ)#P3SuXDr|30_lc61UQgAa*ToGQ9JUN_~JU8iQ
zo;o+>N|ts~uTO+$m@7F<`c1`*9Ey#l`cxyxedb`74;O}f?tVU>_X!s8Ar@aSJ<*?#
z9`T3Mll@8Qss5DoG=Hxv^**J&r}nXXf6OvU)2C+Ok2447__B-p`i{GY<@)-4#qx*b
zP0hFSPQskl-`6<KpJQbEvv{VNX7n;s;gv7hOfn<5?UHDq!JENLS>cd^sfBiL?mwld
zwExtiV5aW%dvv!SJvweQn$RMku(w>cr?$1x_H;Yw$AH~{YUlewQ}~5;PIIMpwof+d
zX3@f(ru`$=elT-+wY5w?LpJMcnekrtPDJG>DM!{>(eZT%=*hr|fNIz0fxZ&hb+??i
z<vaILo{yb}P`g&+D<r~&$@lorjJ0CFOFV{>`=c$qQ*SI;HmuQJHblG18iFgjBQWaW
zjtuK-ACIk*tbp69zRoJS-WqnDWnW_z&=J9{%(#j3zHs(Nw!u4fT>lz|uHLb_h<R^?
zOh*@FRO{leK_{+*?k}M7b1Y~I7yVhLWAVE&^H7>7jhD`($~s2x&>tAhI!2EYpVx5l
zI9`0(4~(W>^CDY&!fJB*g@Ba>B~BNg!h53^^`n(oCnTH&1D*>KlJ!x^;?5^5V8Le&
zRFzLf<His)L_e97jVM%(k@B}Y^3gn}1N5uFn}Cx4-_Fm~Iq){ePoC&M$p{|hzi>3u
z!5+o#6zgEK#OH-vJjxzG&weZatD%j|_7%dfOpsRvj>Gm(5-v@6*l~K6_eAt@LvaFv
z@7QrkkZ&0O7w7jfv}2FfF;2=k@obroB<F0<jlczflJgno=St4Q^v;yAzBZPzkq($%
z#U3yo=h05^RyL>kdDFl&kk3Cm;kN-6F(dk<CK&IV^M7VVyHW9kt718v6Y=uye^tCH
znD)D1#b0^FiunT*N&+h*2YKX)VDf1RzjGzrW+ePbV`~{lS8-5hZ;O+r%E>Yvq2ET=
z!v&yAfsuep$0*Pgj<OzBC%&YrsSL^-(;(YkhwpmCtM>741$`%Q51{z&0No?svzqIR
ziyP`zHx!E^UnlNM!HQT<Mu!kV<rJCD9}u77=Q{^&0_X!Mep#R?9M%3wEVq>E8mI~u
z&7jiS3iB?2b^+sLYv_=}uL1EXeiwqi9JmTl{H_K~;fQ?gA$>Kg>Q<5tNl&KIs;A2I
z9YB1F-#4It0Db}#zn?)<I6@Cm@T)&PnwwE>JsHsIaQIC;H_Gofpicvu0L5<=XbMN9
zj}G7R3x&qcudXzRr(~K;=U&9C()k|fPk_$>#rN-^d*mCJuR>Mcxsi$!p*tClgSO&y
zKr;YsC~wALr0ANaOTK02MfuJGy#QDYD83D#DI7b059eC_1Vc4?iHUl2rw%hgIu3Fe
ztXAD3b`L4Ojv12w<A`6S`&H2I0v`g3|Hq&y93{VNknOSA4W)fnYeR{jj3!=&R0G<i
zsM$oVvRd*jX^rk{Oa?t4r~?$=de9VlydR;?Vd9RI+SnPQzeBI*X=90y0FDxIWm<!$
z@rimL5uY|w^6x<WCHRK=+5Mp313m&2|4%_v_%;01sl~71zt`bkc78P9=YVbingKO0
zI1}`_KzzP0j-40e7aq1#(tQ=0<}8=UIg5>jNINVqZe<ngrkqu-85Jc{2I8Xd*(j4N
zs1flg3~xB!oh9>SA9$+z@FD2WfG+@*FMkJ3;aK*g2K@^ASlVpKuk3;-ziFW70jC0r
zUma))N9{jPiRE^515zChzq=8iO5Zb}_W`c}ir?#?DI7C>r^a^L;p(1DWM$RJ^rc=H
z<u?#?IZz2Geq%vXI7a#o<Cao;72TJTmd>y>Zvfg7J_AF92we`}HpHvaxfApw!0!OX
zcQ<GXzcQWC&bz0?BA)6wGQHYGQNDdZX9C9o6sT_hs&p!Db5L#PV1k0b>u}<4h>8DP
z&=&)j0V-V^KvOtYy2^gpe4CavSElCx;#2wfCFp+vKLLuLcJVKjUktaSS5K|e;a7?H
z6u)}V4Zw1T2jyS9{z13dvgW4c%P{~_hYW|}hnq%#FY$I@9+Z|3IehL$oFT+V{om`L
z-vr){;S+y<;@Er~t|(#)oGk5RXBQg`PITJAB~gA=pvM9e0Sc6^|B+wRpSr_wzQZx(
z@N0|V_aNxKzzcvXw|7BPh(Aw=Pv?@w)7G@quPrEsiqookI=l;)jK(QK0LU1Ki5gBG
zwT2v+W3piQ1$u@&=nuLwf@qGvHN?$H!A5I$<jTJ^nh!HU*8xiaCD#Vf{~vNytz6vg
z(X;wZ8vX-72F(EY?OfZyav`A~%cw+XI6`6FNMv4?>`TPe?4T={7xZM1$%}KK-7c?t
zYMt|(`VV<jJ^2x|u^#>q03~m4(EpRXi|f1dadLMaUc$8fj55)ULt`ILw}qGMH8B}j
zdy<r=0sK_^xD517z^#CiXFq5P@%NvOTCS_kTrMo-;AYkyhK=(apuUOn?Q^aj#5S<k
zRUE<@my33e!;wHQy$`qg>OnttUtK&i;_llw!%H<m!yR@U(Dsx2jh!bu_5QM`yyc)L
z08;@a?@G`V;>Y=8$O~7xj>MIl=^FF=3X&Fj-_LTAHVxAD!u3!ShGqh$4$*V;q~3i!
z8QG9=H#267`RAciq<nk9U*+dNNv_LLz5umJ%o?@cpmTuu{&eg&a(y2!=lHSFrgHet
z>Q}9zD(cvkESZVI&&K)cR$j$8pRTp(<Z9mfBj<1P!A2tOM&$DaG^|y@FECVwWN4c&
z<!**dO70DyZvZv}DqrscP2rdFmE?_9$;#=-&jj4)*~-t>wh4*yAPWwl^RcTx42Q3w
zQzic&5WnJ|d<FEpfdW9~TRG^_KzzQ{93$Uon*`eo<Tou`ITw;-)8YXZXDELjg*3Pj
z^KZ_7Qu#AL=Fj-p{ONGyYXff=(og++2k0k(J%Gxemq1g9w=aEondKK!{*YYV#$&^k
zgCJQ5SIV}+RQ!HOmCwC&Dm{QqIH}`lE%Y0iPgxtH`BVXVGB68J`Lr1HX+V5FEj~s*
zok_kwkD5{M%8a^A=k2;vk$T9e4oAMn!CU3ipFn>C90XK8eGB^6=97@?C>izDQ8FsD
zK;~2BmC^IkTF@(j)qs*?18545JO0lOUD$K`qiMj{`qhi56_Pnh(luExbWN(DX0i<y
z%e0Bvq#+CQML0fnO)z0d2sf7!X+x?E$4WzZz39PerCbNVSLM%-ppC2W4k)=&KvT$%
zyZ04ekD_vk%X3u4v$AmOHzU&psZQ1w=Rmi^gRAvWCL(S2GTxi?KD1g#j#}c2cdF0l
zgWdqN0ZNWrKvVdo`W%&`{*1;&Le)daktpPtuAL#}z*RmsNdYU5Bn9T5jvNQUCm-)5
zhj$}<2LinTB}V~h3i0Q(N6!yj>VsW`ddiXNd<@zXW>7g{JNqIW9b&*XQh5pOW==Ln
zqUWxxljYJ3K3U*Ha@+v=R$wcj<k$(CLj3vqFUm0sjh$qvov?sPW}&tTVvvWtJSvYe
z9J7lI>2T!u0erH+hvdj=GqpURKcM6o4w}OMEXRqCgWsqiTY3^CYoW}K_28q*<!;aq
z1A73~&-@Ye`#^lTv>c_MiPjVH_)hJpdLasDjwqbs(+92UeR^QkENvU~VO$&8plev~
zt6AWBT*DJ(HNud0DT{H|?_8x^B<0M%I+|ZoLC*$G1XO-40{y?`7s+=-q3!A^uPEMT
zM~)8g$-+C8+aE!{2Xp~SjxRw|`1R#RavWJ`yN@DBmm^2zHBmWE2E76}15o954d|PJ
zBmBVjSZ*+Hct-syTK!Oom5jw4gKqdI05zDRZR2IQ(72yz?_xe|8eSW&#QAn84_G|M
zPV|-X3{q;@&Ug*YJIXMw;&){@v{;tkLCB)^jojCoS^|&+sC+8`O<`=@{jT_SN8{@3
z`j)Y1ZOa>1)>DgXW%JLYCU+)mi9{9g=@P{tYI@T|(`&Amax{aFlH)qiw*a>TN{&ZB
z{||Cd1?pLrR$Lj6T0J{V7K;CnBagNzDo-xxVqh?!<QWh8e~?F1q@D%3{FnkYFOm6k
zBlwkpA=U5yfX=+m)CK^mUabJV4rq8lj-yi_md~;k%|gz@%L~>LlrWQ4G~*aZYygQ5
zTKX1GT77c;DnuZ@QM;4kC2EH4u&<@jO>)Ejt~@^)DNd1s;xkixrqGGfHq_AIl+ceX
zm=q!-DTBJpB0}1Co{T<OJhIhr-*4DE4SNqXFZ)}$IA<z0vUqQINY8oPFmExuw;JZ_
zbZ>GJRL}V`-1VU8^=6oEW^SypZ1y7zp+SSD`|>CHi3XXE2ardqo_!0NU5|U;fGXGC
zpea;dC-YC8OC6qnavnL!nUPd4K~I_l*jS%#$E9R#d9DEs05VDI8f+Ro1$v|q@D!s`
z?v*3{tVStM1Nf<V_r;*E1g-&;JX=9iQ1gCe|Gg)97Q+PmswUVvg&m9w*a9zP!8Nz_
zEY}M1!5Dg>A5BVtC9o>zD3{@c)RE%{@KJJvZ@?M}=nts+H3sxFAYKlm$9_xZPxlJG
zb|$v?P6m#HWsdE99F}tTGOZnB4OU3?e97=oqAS(sa%Gsk3Lsz+4iUMqBQXwL7Jd_<
zbD7f)AcK<gcc5PaUISEqb%Ca^*YRU^w0Wh|UyY`vr(D9N)Lu(FkwKuB$h!}j_62O#
zrK18Gyi^bAX;gZHjcPtyu8E0H$7xcovKyoAa}(%Cfqj6=KkX*my#uy6?NjMB9<1o8
zeaifkqhNeVM@Mp^>J~1qkMROPUt!mbQdi%!r2E{ajcwP(QNlX$nI%4h;<Fza!rqPp
zc-Rfh$60P3w9a0KNhUrV25k#@AT-#@gsw3BavMeUfhC;h-oQN_JnsSS+R2ksa&_Bn
z>bYjNKcweU{*)WbILx#CMKsCxU>l9)!#GbKF6bdv?5nPH>OJy;DC*BH0euJX2%z%o
zQ_$Z7Task{41HF%M_0VP{g@O}evu**HGnSmqW&Q%gx(|-LWAO^^h1%@cPOz?BV-eh
zSlq?9L?0&-JJ<!Eh(^&%EU+KuYx4fhJ?r%em+G!d^j_XF-L!|J5)7wAPBP~6KQKNQ
z7M^J;`wk^@0FpTY$wYhzS*Oc%R^J@07pH-~8Q2D>bbbc<2l_6qUi3XiyHc|f+=cnG
zzK7v1OrH3BLtcy-D_(-)v%mPX_n_<D&TrF^>^F7oGkugu?m&+Rni95A54}4V?lTO0
zk_UEk?lF_}J{BzG40ca&Wtl;}P#<8sY@fRb$uCM38VXg&fEPKo>F;AOj6%IH)~5l6
z$eqyM;-r6bw47If-U!?TsPsPtdOxtOOO~%{7ejw3{WbV~8gDMpA0Xw0Jn`9Ie9BP=
zG*#?JsI0$X+Lwk*^kCOKe%yU}U<dU5`?_$q+sIE538QkQWc{7-c9Eh-s8sQnB6OW0
z)04F&s{e94=mkI{pwhD$^bR2Mj7-n>`<&+?`HXMP)KaTre0+DoJTD6LAz74VF+~ZQ
z(sL;l;#OGZHYZRa8iQRW-0eCJHohXh>U)g9CWAv?D$#b~_JZz8Fh{vZm?2#_?U;hp
zJp(hPd@YkB=A~3-hzp_pESWy-mS}y=0zCv61*r6$0=gcU7}vi>j!|A>GS;}Nex<X1
zzeSjO37*GVSq>KQ+xe#qDw`KE?N&>4I>tztd+7UT!~Gu8lIzP%3F%_IDmT7hd<^xy
zpE8(r#2=uYoh{|=fJ|9<r~c$+(0>NH0Qw!0{SashUpn@ijx{cfhr0_QYVD@OM}#iS
zv@JOzl(X*fU}o%ip#4_LQ+aE2oLT^S39t-M@~i?)L5-)!nrECCyAr9cn&Cp0&DRcD
zInZdsM0&7V!%}>;4*$J~U(It4fc_fz9#H%XZga*-$6smB`7s-YtsF%sG8V#LCu1RZ
zV|>7)|Ldra_wqj&T83y@M%c<R{8kBdCS2Eb*y7LexI@EJ%AxJ*)7^T|4Qp(=iCJ8c
zY-@LLK9H@0Dj-U9@3}JH)<UjIq=U-wD$oxCj{-{W??6+S>gbhqZ11UE)pfV1P8hls
z;#P{!iQ@BZnSxoAf*t&JOUudT!+ma7Uh*jH*juo~oWy4vRo>ZVfMHuHTle&F>%LU4
z9!RyPn>y^#=+J(r)-^Z?*+-$nz)Th$#}-aqA%#Qd%k)fakCww}pw9+c0hOMOpegJ<
zW;w_a9qTLd!Q9mBSTjgz-a$M3L7*4Z<9EVxs+LxaULhA9b9eP@6xH+41yY^^4nNA@
zFG2qVxNncj(+4yKbw6A^5AV0sUK~zjSoK$QJX4CP?^d?p+(+0s3Fnrc12wD#ITfyQ
zSNWiX!3lPP9mz(<lyO{?kr`Bbk(8$a{M5SUx1cWrt^!p4+yt6J-)m(#t9H_~nx;9>
z!7C`H?qzYKSRuEvh3BzWHW<B12Y-xd#qg<Z&CrKXeH&r4;E{E)<lBXK72h90TU$-d
z3n;$Hpno0TmAHZ;EZ4*{uQ`G_BJ6Vb*CKw!zXkN=z(zpve-t!@ZSTo+ug#J3pqO;8
z>P~lNyMD;T=-#f+6rXvwA*B!TYi%umIPR(?STmuhSHtgM@QZ;xNoyxe8@kdwm2T65
zU*vwsoYRe|xZ@3FzT^4x3^ke72_m#!Ci5%xj;OpRgI)_<4ybYAHPC+n-g-{TTl1uR
z?wfctxt)ANg3er3*F0OgCv;}4_!2e-5C4v5cJSAX2RQ5Cv&831Og#RE2c`C9GPyNh
zpJ!xa-3L|d-wcOug%m5vGm7(^lhC5w{rVgJjNINKV+<xc{R94Ny)a}|>hqX+8B433
zj~n~h3(OkRKh$W}?c?n#<iRFpZ0Gz@j>|=6J97ySBJqr5MqMTIscc(x92x_9GB6!b
z<@y`Y6yo=xkm3oB=PvA3o`}85$N4H8!O6{vAZ{*4O!W07xP>EjEL$CZcOyQv9@+)^
zNnj74`28L<h4^!J@Ef=CjK)>M8fzG)f{9@@jHRX1jYKkSAs$+%!zXlSlusV$K|m>>
z_>2TiA$~jqAM$R{(jZDUMx&>TJ%*XNS9_Gh5z$z3MpO!AGT};w;_28Z^K(7o4dI>o
ztJ^{E06GB0_jjNv#GiY|^QCPK=n-Ht5N@804l|+22J7=Qm=GT#bF{)3fvw<@Hpy4p
z9!+l==)OP!p!f~|O`*s1##Y>zB)7vj_-!J|JD64rAjy-QrFfUacP-*o>D>hSHsB6G
z@!bKMLXYV^obS<+yd*BkBEH(IWx9Vr{Hi|LcftNCkO(OL8K5b|>+d1IC#{~|)G}^u
z<7$!1l|xab9_2G&qDIzXTyIDHHG~aRl&{0D0r4q*XMt`7E&>$4Hqb}qS6#nqMdRw#
z(xh;>o8$JLI9?;u*NOPD5Fyp4Pe308{_gOgzHEM+oid~g*PiQFEk6sp1Zq9~97D?R
z@ig`_PYs1&HJiIqaWynmm%<{RPKV#byQAql5%fY}DWKBV0-8b(`PmqopDESzG0G0Y
zDEkC|fN43{lK}Gw7q{Pr8mH3;N1^pvna;h4SLN#)px*;N0u<k`K~w0F?_v3xQe6wq
z%LHefwiPMPw~4y}Lk$cj;N84Q@-4e3%69_j>A-A2@m&a-g0cgk^u3YKE9=j!Ue&Y+
zSIeoD)~>-O%x)-f(ACHsq}9NRJwj8(d_GYro#Ni`b&_uf;w6g8^%>AF1D$~4`xR&k
zL!EhJ%sc{~`c}0>IYZa*I?+sb(+pxiHmNA5gSa+p!Y+$~%P6O059MR9H3Xv5k)!P1
zX!>V>o(r4|C^;5_rqE-*;Rr!f8kp{0T~GNSy5`;Jn%_mO7H3wuvGe_`>z(u?URB=D
zgMJx!9Z-DV0sYH-r!+1X_J_KeeiF~L+2NOUU$h+!1ziqQ0E*uP&=h(Y=P(|~VlF7A
zl?^4bx&n)u-8eR-lLB!%kgM#_IsDoXUq0fa^4$*le&9hs@p}d|g|;~RcXAw1{G`uk
zQN1Q%h~3Q>YZt_9zvojIHBw}6<qa}lLp!4RS_ygrFauEYo>M?C1mer{`~Q>kpIH9n
z5|Xrw&q4+7;rrF}J@R6L$cr4_4@N4V;5nOFzgt;^By$cc<xfOv(T_TEc0h*i`Vaa8
z;A24LPwM?Le>7(v*_quvFB8rkqxBz?$?bA7`CBoW#AP9xSq`E(<<tE4F0FXDD=~SX
zo`St2pOFA}BDnqmb2Zj)V6N;RxLg%3?;Ya(B4&aQw<U{kaq&31sJoR8s<5f}9lV|J
z8ux9?CvK!`TVy^rLq1i1F9Ll9un|!5Uk{o>d_KqKV?pt0PW`Q&hSGhSH)zXqcm-wM
z398LBJNynJKE-e511LjaGoZ>fy#xE-faa{rwmJ5%e~QTaiLrcDxjHvHP>zf0unnu8
zRLSXA)?muD7MdP7j#fWX&zN74RrFW=(lO&1)3gdE?&<VLF;UN0X0RLH{0qFsz-VaW
z$~C|6TV#P;wJya-J!2R`6SjFw-5ToJ)KAqj=C>%DWR9Uhz;WV#VO@c>@%xO8+>2tJ
zG~8ci4UYh6Wz&XdmdziYP-YMJ!dr}0)@OLIY#z?{Q?NmF_Hd)j4baanWH3!WoV$bW
z4cz}Vv%Y6Kd<DXF8R$cb&a$rLlWgOk>fPu4D}yx%edK4%mE!)0*?(d1t@Sm7MPlo7
z76=FK<-uF{bnZDA_Ww1Uaxm=vG<^2m+_;Oo@p%uo-(zN9>oPtGd&m80l)!T04jo!f
zyTq7T3CBEs({j17*=*XDOE)YS4KZ=2b6UuayVfT2`sYI_&mFXV_yNwxtZ<*?VA4F?
zN=!*}_c|MQ3*D(kitREZR&S&bq4PG`p7x>cX5pRs%kMyk9>g3LQ1yEb=%v8Wr({1B
zc|tzRR(JOcG5z$JqMwef^999phA1x;VYB^uERdp`?dOP>AvC>z7WN)Zzt!TM=_~i9
zT7C-`C@^{P!|n>adbz9!bPh2C4_IcBKc^h_Kq7r+_Af6=9p#6DS|B0UJCyQmI6sY7
z@D~0stXJ5JX$#>chC*&JX2SG8tXyCLM~O$M-Rh(tY0JkurT<&dX%C_A22}db1AQe>
z`=Cs>+IQY?bx-ME-MDlm-IhB%2NpZYuU&^Tqc>=)Fb_xp=)9`}pu;4h$py%>yb_8P
zZ7dren%dy!$h4kj>I)cU9i?de(4#dM!&ahMH)wJ8qCi6mFC1=;w5)XK<l-3AO4IXQ
zsTZ?BXJoGluQK&~J=8epH`%8KPDZ{=F&1J#o2p--Q@&MVFwMpuZxv=PPcv(fnGGkS
zqg;dRY*#?;RE6%8`E>|+q54DnVa)r1L_qbw8K5Z~yZ>Dkowrnv#W40PUw~bq9K(hc
z+(c49sxnffzD={kw-)g#zNdq30oFRasI21k=tK#~eILj6M{n(U-dkJj7<6uP;@uk)
z?>nGB0zLy&dcFo7o1P8##EjQd8&{qdw_eTc<lnN_(fvG+O+M{ebR~ZlcaJ9UEpRtY
zc`ZZ7cA1|OcSZM0E&{z7*aoQj_Xp5jzy{~s=M%@?$@(MrOK5+~sd_TuiyG<|oi?{_
zdE?<<(>4mEMwf}b+E?VR=jU>#GyFR0)bntX6JU=SS|`ih!2<WdoWqp=gR|K*>jHM6
zKI|gBzj+)PAu$L1i${Lo=6~ROEKF^!-l&6~9hMzbWhjms;}ND0Gj3se1Qlxxr9A5%
zneNI*qUoLmx)E3fsC3^CdN<IW?)zlE-+g4dyN|gJv3vBd$>ikuTs*>Gi_{dL2f(cM
zW?rz+zrc-qpm4s-3$0Ycy@iLYOzUEH8|*>w{_yWhsTzC}Y@c&n62~5N*h$$k-pHq+
zH|Niav{8&5%s}rv%(x3(G_>VrI_0YEkm*Z(G`gQ#0(vA+0jPR412l!AJ7l`lzIsf(
z73u1}28u(x^*HRIibZGQdN%q+C^7;|Deq4(iiEF<4u^j`;?GC?)UUk)`d#2tK;^Ib
z7;G8>2Oa$dr7z%`)ZMR5J5B7CLLz7Aoz}D%<1yZ;deKWUEdZ$=wX**TUCUY6P<@`~
z!Iok!gZlkWJ@3!Vyn==;n8qS_-s9Ou80O|fiDVvQG3Iy&#2DB8HzHTC0kBi%V=ZJ<
z>1YIfI<N*%`FK8P3i0}Fkkau85B;K(&vQYnHQM)3Mx{mC7@F!;iIqc#!)G7jQGEUY
z`p>|Jfa3Ev&`04j1{<s`$QaUOQk*U^j^HHzTq}7%rmO7nX#F1tdKxebQ2ZJ|Q|Mto
zo6<!kAUUoUS$;LsZgg0x6{ukhqVA>y#@Po%`<+gQ|Ko_i1o2b-=mh-^@Ml2r{~9!f
zczv#z`WdIjh3zuR<(1mIrcApsgDX}`W1We0Wrvgg-$nV?fIbCS04V;eLH{y;>hhF=
z5@koX3||~e28y@Ckz+6TsC;-I^e4bUK*{kF=wFuO2(_(lLH_#-f@D1?^P~ESs2s~c
zpATFCsP=j%=tqG056S-G%SYtX__utbTqrZ3QwKGAyew&4I|hdM#PMVotR;w<*8TD^
z@k8_&FY?=P1E1WD<zkw}%lOc1411&DfrHgW=BLbpr5a6}h;55`*n4~zze-ywF#ByY
z{E4PjJ}l*SJsFid3-mx>D4^sX3wjC=UyruMu6yNh6{BoMeM<8nY`;zdLQN#?{Y=}(
zbBB5cVK>W|Y=)@QYc|A*4II_6b3`fOJk61-9XwUJ?gsrb&<QBHx<LOGh?i?uk8;J;
zvmRtSz;pY0vX3rX`!1*6?~ckf2lQf~5m0iS1-cc8m+Sc+<%+L&JqUJ?=SJY|`DmF|
z{fLxnA9#k4htwau1Ntw(XMk!4{{T&)a-*zo>bx(eKNv6cr?I=rDsiNz?Z>$Uw93sy
zuPYgjGvQhfyF5ITx?Y4%hi~Om(e($+%4je!qn!vSzDq$<@Ey5dgOeZC4c1P?I(|Q2
z1hXE|zDI0=jdA=1R6Z)x*@5`-5g(;<H|SS^Hvz@(d(ad*o%;sH?cMDQ`;HDj7&qT3
zO_^Vesks-N-`26on~US3w7{B3m=DS*;k~kX$i`gUostkPP6$);8Htl8SnK$J(TfaO
zk4w2GJ{_Iko(Os&umn(YHG`(`UYx!m^1r^hvAJH%^{5LBO@u)<m>h&q%W(dmg_AmQ
zJ7qp8JYwI=;kOs@l_5ULhc`ig415Ksdg$L{YQ2C4M-So^XMdw1IzJ%qN0cGco0c~%
zr54-H?x0Skonb~LawQKZY`F$3#_Z;Kjfc+z{)?G$IJt}U88-=eu?BjF|75%`<%^sN
z;EzP8eM06>17uP2|8<}*1}+0s{#*x|LXYbX*}o_?!*Jy&amR>i%sO%Z%Crjg9Lk+y
zW1L)eXk8B9F2t+&ehXUPi~AUW;+qGWg1UEiqcfiq?P7^IcUBiaP;0J}wdP5u)_kXH
zx5D6{8%74xtSjL)loz?n#N;}NiD(Xu+C%s#sxs%YIyr`S?Uwnm7JOCtT?YDU;5tCb
zbsuO7)mO{<8?%qC&ciWn5iPbAhvAeL=V;GkexzoVG<x@fO(NvVBxjG6;;Vg1^8W$x
zEB>Bmum%K@0mZ)vG=*dEKU3Xwhzju8FAC7*@L!Agvk*Vk-wQ!s3)~1O{*QpBu-DNC
zQ1e@q%dGkpO=r}LA?7BI@nxkr=A%};Ti13PxgNu9dLl62ing1UWxc`7J}HTIA{})P
zg?F}>gpO|e9+?lWXQTZ|0qA)^J)qjr9iSfuK5^QQYDf9eb|mK6RkWcF;U=x7L(tiD
zHKwkmNi5RZ*gjcp`fenvHVNW0EI#i=MZ#A#;xlO@#>7|nI!tk4-<aKNXob0kfs=?{
zJUOvXrjccPQVQTi5xZGMJmBkxZ6dPnnqh`<J2o*rQjlW3!}P?yFg@$GX?8vo+q5u{
z#C~8#617YbGh#%{TJy6q{n~TUa`1yr26_Xk90r4?(8K=zLY!RC;XX>j2%U>wD_wgH
z8ZufT+?^YlxUUO$xt?BdOad!kv?p){#Lz;|NxrR!Hw*Dn`CkV5E?_sH^8Fy_pMcP#
zvi^5C^QMW>e6L2gNwuI0>qRj=YLnBW%jDYvnk98Y6Q$S8w6VQX(@u4sW3<$4s6h^~
z3X(0?jqLcDRbxk|&Iw_f9p<6xnbXEjPn{Hi>`7r4?PpJ;yB6cgTIe+ENoJPNyaftP
zGuc=;&pj0zQ)6))I7TaZQKqZ<d6{37u2VoS0hR$OKi4=vSL3gGqUw;cO)=&?I13tw
z4laPJif>{%-Zvd~UOg;8S(wfzJL7M=!*4I*b2<6=GUzvfw*kfPPoOEp`-1~N=pn43
ztp(g@%g%Ix*YVm3a0r`@blF;$6MxnV(fIp=9t@NMD*h3mj~@ThxcFyv$Dj3kryk(%
zmHd~1-UQqTsQB*$eU$iV_gF}ui~D%KOv<fk+FCRTIKlClKDzzd-?@#4`tI;Mg!t6F
z@<)pMMN=~Y#V-*wg?RfZ$S>NdCVtJQK?&<EoP=npa<UTS<K#*$l?$z55y3v0zFNem
z_$>o{I&cP{_+1G4DEy|bK7wK4Q5m*5{0<;KHQwpJNBaS?0oAT91-%h4;`|&pME8R+
z>Mf@cm(ojW*0Y^+EV>u68Z(ueCek=SPNY=74h6L8`^aF=+kAD^iKC4w|L8k;m1}fF
zOUo5Y^<pRq2A&SPaR->}&BMI5us6RsWNZofH^Wjd)RwUI?FzZM7u)27q&&RC<SgfC
zfcSHl?oIaMJ~-41(_l%vw^t9p7<RoB_E1wCYQW$io~w;%D0IW}n|H$bmL3tAijR){
zvK$T~&G~qzcKIV{|2~X)fGUR~&=ks?b=l+2`7z2}jkiwu)5TPw*eb857GV8;fWNP6
zS(pe|N!Zcx;5aM{zvjkqJU>`S!i~g^+yLxp@e`HWpw{+^l&ckdRsFaM^liX4K*{wq
zXbK1KmHl9hTvR=}=WcDd3nNC6%f;N}0N<`_$7f@{id`@<h(sXM2MqhO@GV4FFZx5G
zzu}C|k*M-DDNpF7s63fO1H%9%&kWE<k!SfY3N-823v}ppDNj52srq~m=tqGk0VU6i
zpegjA_te<ZR7bV6m90LHwX$3k)Vt*1BpLd8yw=F0ln>^u(zH}Zr<4BuQGRKlOMqd3
z;#ULuDE!tahVASPOrSB3hRH>I25v(|eV4b3mAczXhGlUB9%9|l>geSO@YyMu$>eMu
z(!9ucHC1Ya&NrO&gI^ZjsovfXdKd6Gpyb&DnnL_NL)6=eO{-g+@mU_czlVeO#B^Ai
z6(fmwXeDn-KCYLee3C#92aX36pHo3oD7#tKLv>CHJ`GVmIc@HZ`bIZva~FxvB=MOg
zJ_8$Zh2jIg)6gR0uw9X0^+N+0i^+4owaj#z+3sXLI}L_H$-3i7XwB7Fqscil@vVJJ
z%Gm)qRDF0J^jpB603~Pem7|sq^=V?)GrA|+#a`9L)S)j;7WVOL4cM&{ZrEG}xFr)n
z>+!K6KC%*TS+J7g&4#gnkkQ*75}MV^OoI<G9TvrDn(#ZuJ4xrY^=&C<HRK3EZYsA$
zpqBv49NDNZj<*|weC(EQ(rTFKMa@lwM2XrHjGX_pJMrF)I8^$d0=*Y_J|^BC&r#5$
zi{8AT*f~o{LCh)I0hXfeb>a=Z8kM&k^a;RtK#dzz2D9)UzkhHrc0WJL$4P?dJ)_^s
z4QN>O*~iUPJtY8L7dZ9Q*E2K2t!Z$wz)c+lg)T>~8^KfM<NcsJfL#Cuk}Y1IIF4kE
z9lsdVx`4q!>@PX-=ElT(2=sTrzm5?v_ah3wHq<XT<KrD!&SkGf+f6m-*}#ba1(I*<
zk$Ps1^)vL|1;xk_XE4o1{MlM*w)jh|N1ga@L|m%8cYuBXcsM5hUnp-ecJp+^ovxLo
zBkpP^UhVa$+&Q2}0Fwb#-lu_H3vAdS+q>GY{3LcCt6RTkAziN%Ud`xqU*1*YnTPZ*
z*w;Ecq(37cIbZ8u?Jv*+?e8us>t9!t+&{IbS}Pgo>utdHQ0N514R<UBx$b^tMRom?
zi&6(3=Q^$*+7=Ad4u^Hr{o?HAPjn@ujMu@uaVo3Us{bU*VIO48Li(t^9RU3y@G+qJ
zg)cx;=%Jrny1Z#&aq$wky&i-z3pdwbAN&*Ego$_RloWK8gZOY~(v830>+mb<l<^V2
zD$uilW<c?~)A_lY->WC;=V40qUz(UfeIQL9F5bjG<-UrX>dZ&r{3v-VE6wVc9q~3@
zi+;seoK}IOarv)sY{dYx*OXZmWb$-P@)-&6GaQ-OZ(?K&p5h<Ap?<WCza)(HBi--I
zd^!ZVRDCkufG#``0+iel&=lhLVOpa0B9R1Y(#Wfn>hoY%U@L^x3;-7-s+7iF>j#ow
zE#g!BR)IbTxByW6E&)v;UO!RtgB{LTZVkw*d6;Z&Wq$!j031){X{@g^Xd<5G4<+9N
zh*$Cb8uU-Z=glZz9W;gbbc+6Cyfae7T8OM1i#3^DVONrc$Tga=26k{`>_Z-M_|8MT
zs=rzZ`b^+_K((vOL2m@&^?KimZC6qLYAEoB24jIu<`4^E0sl^xrx}HhGxISJTBQN|
zXoZ+~g4U|Lob-c-O8+;Ye+2#usC?&t=sEp|mvi?4ITd#0Wzs0<eaL$N+Y2?Sw88iz
z$+sHuD!xlWw*Y4Witjm~DIBZ3593;W16@1WEL+H1Tr&XeDKZM$M5SK)7s+=Y;#GV<
z0(}tpJD~V}1DZm7c^{tMZUuJg2r5@pQ00clECawnTv<$V4>^1*--_}*5%fY}DWLeC
z2AaaL(i_V)rMd;lT_Gy@g-9)+!A(g9t8(i2Co;W{BVLu>*FnDxybCD4?}MiB3+avO
z;Z~mjJ&vvHB+WR9?$Agty~tmOU;ZDX{6>Ku3rqwQzbT+895bCU+<LO5OMk!D;ddkA
zQ|a3U`bl69p!hutn!>M2AFbT#sYt6AiA0{O8RsIAydMe_9Xy4~Pi4Nk-j4Fk0o@NM
z04Pu!KB^r^bR5obsJM+pc8=7Hk>YP#o%ow$;@<%JTHppirR!$U6po!P4C|zNsPxps
zl`|`-@Rn-^b|Fi!{_IZIA&2il#H;d?zk~HJkO(Ng$)G75tNh})rc}>FRUIv=>LX|*
zfOaNoDw%!OIzE&6S&MiT-?gC611<s--}Rs=96P;g3Q65i+?X?zPmXDpTJ2vY-vfwO
z@%;+){{cS(im!g)m(zO~*Gs7zsuPL59PJXooZl#xCiF4x9F%;k5wGh1>p(9DngPZ4
zY|s?q=l}52w}><{sKZ|>_q8gEFyiE*U_ZkyU?Pl^@l-5YQD0|>9Xb(>*5&Zshj<m=
zcR_y&d=4nS{{Ve#zEkU4TIy-p5r!{N$@m~&t33+EGMnc}&L?$quKir5xAIR>zB57B
z0`-96dk*Mh^PSyXx2T>9wz33l!vMJ=J;-li+J9L;7%zn1RQL|p;gv0DhCF#>@bPTO
zfd_>z{vUg98W?4DzHvX>JhNmnGuZ<P$s{CUhXAsOh+z?-qDIAviV_3_6eR*GRIO1_
zagT}>mrA5s(YmB+6|G8CtZ1vIZpGHtxKz>FnkrS?-`{!8IhkQH!6fhh!~5Yqdd=K3
z8P0W|`z+77&norU4$nY7ivHLe$nD^NK<iQVSE)zpIumX8r7K5{MF}T%BG1_YAQN0}
z@=^}+jE}8%EL^cHuJ8=8MIp$6nd5wsa86EcJd?dzL92lMq@m#GSS0HCga#w|40jv#
z|C0JGfnV!)Ci2x_J<$3+i7Z0b`i&mt>31~hQ~;sh&p>}5)O*G<zD2z(Pd&dIvPPj^
zaabr<z@3LalpCH<?mkaB_*y=Z`UU=$s4wNnW5Iqv>vt5g2&wfnVZQ@cFIaZQLUzy0
z;tt`{M26OF5Njo?z+jNa+Q^T^p`LFr8kWK6(-BS>mpW=!b5$Ty1j5(fU^?eXpTGUz
zQm-a>tKk*-dJpo`;5nf6`Vd)!)cfJJUaN3lET`trCgmyyGC>ybqsvv6al4&k^$UwT
zuZCE;<rt|lXa(|1oUB-6|Lh2L?GmOhJc3W9KGkm}>@*R1DmVyeeU3yHVO5IXr}goU
zGsvkw3LoQRtKJaD>p3|1-s1Hmtbz_lqh9ef5udKtzeRo=v;fW5iY!7`?aA!rN3rr-
zR_h_8Tg>c#Y%Mi*vjEK}HgG!;E-@jA2TSrc#asCI1n(f^eZY92d1oN+op;vqv(oTh
z<)r7WZI||KBwn4~+mTzqvq1BHio7@8BbRc{(W2?gmx+mug6d~Yj?n4@#0`3VK_(El
z0)A}0Lhk!2t&Bh{%)}2Rps&T*sBS@o%e9=oSvmcR{1Gvi7WKw=p7dtYxbNb>QqS@K
zka~!6IUV@~a5~U>mc1+gZmgC5^Qu<)uFHXT0$a?IttJOS{N+Z|dw;g?R$8`A=JXfL
zM{YEqH}hXGTlzlFSI+d}q1+xk=l|fp;}7ybKIZ=_vi}Q({=XH+@i$uj){_4l`y79u
zzbVcbZ%3{jpW(lo(;~$e$N2pJU7f#swa>@F#yn}F8y#OpRyZU?`QP74eFtVuPx?at
zq37?96#H(pvTkA`u_N~XUrM&X|Mu}6lr`i3#yp{ZJj=$jm*Leyv&Q*Xon7Ppqri7S
z-~-!#K&ZJ`j2Fjd&Gg!_b+i+rMG@^t&U?&nfOmlKHN+u1P4D}R&%m^~_1^C%o-f~*
z`Q`p3&h}omXu&GZ0$x<lQt>ku9eDZ~Vh4l%-usSTrCLV5=hsu`pEh~nLLLr#etqy#
zaRIRY?xbb&7qj6i`Kvw2I)={58+=Fp;Ft}*4;=5Uz<d22*Ou|!U*y{c%lkCddp+2D
zy}<U~<gcIhC4G=zCBJ^}-|L^bicxT}U{bujCL`Y0`;hqq2g&`%n!w$@5zFRiVwbZ`
zc=mDuFo)7Obe$aYjza$8f@ea;s0nXG-B+WL*P`~TQR}s+`{!sS!yXqn&f9jR&E_>Y
z-8nq#2(C%z<nNzyCI>4{3YUb=aH=Ce-DVzH&Ao8uc=sK%rXmpc548%{gkqt6vRQ`i
z{W8A)Qg@BJ($)Vkvyj`v3MXY-;_EdoHxW*=X5SRCZ-}@X#Oqc|M4u&o74NgiiaYO^
zi>tZys4TL-b8=`!S*+aW@1GO!MN8v;?>M~mrgb1wJx^H9VtbAI6YilJ931cN;~Wtj
zA3nmGVIRQVXeS0AHu>`|hnL^`Vl9@n(AsR~TxrT*1jpwe&1RgRaW}On(4OfWI^yhI
zYBf1lJi<zwAU7gsIZn<Uh52@#%b-4{6QTVCS-$K3ndtYfL~aDv1O1%54_Sou@5txl
zw-?CrtxMlD%C#!eR(Z4k;QRe%v;S9?_x82vy=C6dOx}O2+c{v1?9I1kI0tZp*vYsE
zW$wFX)U(DFV&?MzR>O|9rkM+!1=jGW)U#>6)HC)$;yjuf<io)UK-a^okT-(&w@N)9
zdP=^(_Pu=9`kp%fltqUuTD4^PLa*i}s?or~E5umSpy9H1iObM_Xa8WD4IGH{1JC!*
ztVtYFHk`uuq0MpUL#^z$LV@Q({eu~=gzT3?cAz4h=N5-+%%X^sSs9t+{3L6LmD#U<
zmUpN4Tyn0j^?)hP{-_j3l_f>y+1FSo)47{8XumlAA!Aiw4bbWQEAsbXt-3cgFh=Ib
ztn2p7mm|-bFZ-1`;T`EyQ!b@#_9OP&w%KNHGrhN4<Xek;+a%wb_xRgr?}sJc>y`W^
z#68FJnAGR4v4E9h+Sc6}M)5c*YQQR9YdYtf<pEqTCp&hy<2;-Z_+5t0EM2HI!+tI!
zduYD%yg95N^Si-**6IkSp}3(OClX;r<%Ombx6Y1+eAyhg(I863>T#v^fZ&P6{mU@j
z4Ci19$|?Nq0~0UQqU(oMA5wD8&xC_APb{M{-GDDAVEfU^XggWjch1g4|MgeMzXo>$
zZC{ZYPxCo--fHd6J?$$dZila$zj)RnTq$j1?@RI0`CD<}Z{mj>ltcIT1Y;L?!7uvx
zp<uuJf{}ZJ)_p;T*BA>V3aow{Cd=x845l=rmg%jTs5wQZBmPmMoQy)=A4~x{9Sf09
z0k5U3Pkig;^y%<=<NMM1o;o4}wU{mV%s-q7R-aYybwFt3=~aAR(Dz>sYvV*s;pUHW
z771g|aUGi#TmIs(FSA6JW}{u{xg8yJdHyf5`7vkw0Ilal<O6~BTjwf$U;9TIJ?l?d
zEXHCJcI+^?P``c{3l0Ckuyeg{d5ARJY#EmY#M=Ap_Y)~7;R1`yLmj+upOd*G;QTod
zq)Fnqawd^8CzM4kQ8`cNj>B4!vIAAhN_Y%qnsI9OfLKv<7-@{1D)XTU-K+U5`Uk&7
zei}Rnbo=T5mux?$y(rtE+?V%kk6844s9dAR{@SN(Z-4Dp>uOHY*=61B8V?1=v5YV?
z6hzHTRu&Gz6Dp?UPsy@#<&wAzYpfghahjLk7sE?uAA$E;bdK*FkpdnwTpn?wN#lBn
zX&q_~cS=R~#;B>6`q!bK&Yv@oF9BBot^ZBPBBc7uy2y*xGI5t4YdNNgwH$NBi~l^4
zh!;%bzF-;dTYu+x+Z#lvv+8J1RfwG~_1FndjPHaUollte0#Ts#C_ok=bzVm6v0~B6
z<;%`obcF0~DU;?@4;m3bhiS$Gp>ny@tV(TstW&&o#H-W)GvxEZML_djgDiqBpL(6I
z=Iv-!MNvHLB<~`Zn$bA%ySQ87Em+0qfp_G}aBs}MS@G^5Ud{U%@>k$Hpm~G;?k2Bz
zXr=PL-<j7~A?;jCyqfo9<kP_!K=YoD+^zI-dCjU+-cLI7)+*js;??>4FXT_bE}+{1
z!CCR2&h2jQw|mx?4tp~ly!_Nty<?LeG_kgL3Hhwd+fDy3&G2A%kTcdA9_k;;2$i{^
z(8SQu?iAkl3q{-_o<S9%Ar!%E#<gw|DW^WKl=fMT4%$A~Am0Xl4YZyu$S(k09`t>l
zPFH#+7PHh{A%@#>fS;kZU2MoUc4kyr{jPMp#;1WcUL3HTYkOOPMvD6C)t9N1Ts9ra
z(5CbZ(g)D?jD6}eazFtPLFk(L{9=j9F0eZz;{C*ESMe<2-{^SGL%tfU2RglXB0m7?
z)qahkYQMs4wJ)kuJ(#j|m3InTlR0UlSY34oORYp|FJk<Y)CP<FIUzUSzQpu<9iwBN
zg<`>zXsSk#8{XNpo`z@0{MZe*)-TphIza&tAzeB<=`(p5d&c=~6dj_*wc)7uPmP$0
ze-3f!_|HII4bJIF{L_~%TDEXcl3zd)SMd*`Kd0m0LcG5RTlW$_3yOAuo5I;r&l(kv
z@!v!|eUOVm9Ei{@J9N|*@pxz6G)$+6P^;pv7xD2~w7-8s-U<E<bUB#x8E5E#ihs)b
z`2Gj-{ZH4{i)cE!KppjS(dzo;D>!6BcD5-JiJZ|@cedBxKGo}uC;h;Cs4rc4po)O>
zm9|-p?%S5xW*z6fPV!#IzwJFGuM8M>het3v8nCz$A;6ljC#<Y(+;1_>%D%+syUgc=
z1MWmN7-w(v`8N47xLC{dMb5Em`><{6Da-!Mwg2lzo@8m$fZzd>iuW%TOYx5sM_=#D
zwg795wSX-m7g$z*;gMX$f!O8}Hd{Yqx<21-%d%aY!ztN3r$XHtS#DdfmCkqLbDm`&
z7ifD9Mji=LpJy|E(uF+_J>yhq%4AD=r$L^?{EReZ(r=hc9mj-NG00{O2=$NlF<gF(
ze=g@-SUFC=haBe#Co0l<nB$!TT2A#lfNpaiFD30N9qZ7sj&DS{cm?@m@F~#gIDZ#=
z1HcmHhd2wQ{<nPAMLIesLagkO`ip6aL@`NxFAt0>Z}Q!5ZuFT=zPCf(+gf`g`tPz@
zqQ+&JbC>&9xXx0i$jauR>})IJ8J{m4wqg(a20Hoc?Y?gGdb`@1ewCf;=3ZkDqhHcw
z_vb+N$gk`%x7ayIvD@sy)+?rSHhru)&P0du6bwCN+j;xnX@_pIeHC_I@m+T479?j_
z<_&h}3OjbCJ%77x5A)q@hZ=3)|E&Hu*^y^#?|Ap0amw#wrgfOrWC_Qw-Ly`y<^(5%
zt1Rl@oXF4|uhE-})pwXqnLWuJ<U2Dk(Ep{$d5~kmqcXNT5!>89BNX<r$D}wI3i&u2
zI@2Et#QgJf?M$DKNh4qXFulFtK<0DLm*sB!|7fdKejSbcGjJZz`Sm>VTVU<mvi{Z&
zm-*Cu?_Tq3${N+BDsOQcoUN|e;vVk3&h%cNF}*kcR#)W5dcW~f=HdrU|HEcT)W^5&
ztPkuy&Pe9-vw!2d_u&L)T*w4n>;ktRF513$*i@nkU)r)R`r2%tJ;A@t%=UK4oFg`P
z++$jgT09ZuHrd4(t<1@?&o>$B$O;tuZ?hax5q<W0kxmh6FOv3{@kQc!ej@S;a2C+^
zxDNRipr7a3|Jc>l^Q~6<Ak3ew6%X_*52A|E)%`wGtTM-Ka?5_}dXM$n-4dJKP2vGJ
znnm`@g|L7p`Yfqu{9>u+PIS=yjvtUCU-GO2x?eT|Sp=<Tm;F$cPX#q+s+qLN0U}Sf
zn8qy;p<52Kqb%9S>5PP`bFy<;+AJ2Fk9N)$ni*|Mp9c71d=~ZoCgeN7T|nFIQREho
z+I}tU%5GDa%s)*oo6V^nj-OdF!jD>ujmIM88!i7PF2c+4m59|I$H<M8qB)vGK3*d2
z6Wg88XBhH$FcD~dW+5L5QuTSLD}BU}>x!lG7cO1E116_>OovLR881Z2@3;I9pi*C{
zQe8r&14SkfT9jU!;nex|GV;gZQ=s)4`4ww7L2AA^Pjpe=4qUc~BOi1txN5m*8PTwy
z`am=s4MrrPf|;^i*2|Xh*GSb?%l|YN&bW^AZan->ysyt;BbxJ8Jp8wKU-9i5@$l<X
zYK@0qmeLFH@bmG$PDy{V{z+z1MG>gN@G&QB4|K!6ia^+35ef$@!r_c5Ub<tK%KT^|
zO{@7vl#eaQ+rf)Kr~4nsAA*)UWIMB2y|3yjKfHdFc-FVt91Crmt#--FsI$wu)iTyb
z7ky;;Ke0lA29_cVB`-0ZE4_0q7NP9}RFdk;q+a8{=FT^z*U`v}!7`xrIv4q3@R0Jy
zwO(uYs@Ie?GdX;c^om8ZU&z(6C7*igJ!u*1ql><>{NJKplTz<C)48rgy;npXuD@LB
zw*zji-xtX4H~6|h>sO3i3ABC--;?%R|0DW!G|#>_tgSw?#aFV`dp6!?8@ET7Tx$ET
zu(6&ct@pI)yzZ&DL|9Ky8}Tcpeyibb;Imink?#ig1Fc^R^7CN5+JB?<yS*FwP3J+6
z3Co*(f3WWNna#eE`#l}6v5kkKOK!CNx1eLYGU4w`=ami}<=OZ`&z7sCp7C!J{natZ
zHQ+#?^*kAQ1xVc&IjgJw>P+Dz6jU#yc1`zc)t^jbTeRvf+kcPku86pq%OhWuhW}Su
zbh~K}i=5%-$Qr-2<}Xc-%Tg7`b&Bi=6{jd*+Y#IESoR2^HT%M^R{4)ky1n=h@>k$H
zp!LrAjx(}AYI`xTtA63Zi^N4UIn@WCc%|2-o@cxkEq~PZKW@7L=Y!JlKTC^bGj@8S
z84FRtYlL30MyXdloVvZg82K7-J<xjHfqV~0ZC|%_mG9mVD0(Hg_3uZ^pSS&gLa(%K
zz0jvY>0^AK(5DEw3JeBXp9#p5L8?Blb)^q|W8K8;sno7$`J1-?tuB;mSNb%<rR}pB
z`9bgq(E2=w{1Qmj=l#9t;}y9*m024r|H$@#(uFeEr|ue6{(ng5voG>AFcWBfmLi`H
zQuW!O_7Um_OozXQeGc=^WiF^bgraniR|g(8jrFmruWbLfwmY73Z3V|gXWM!C`}?_G
zz&}+t#Yx4#za4dLGoPX#wCR=_@oS~Nt>_ZxvuIa7K>jcI0%(0p4A-avsrB`WuIj5+
z_Dqyr=_z|T3r1p9mpc9{oY25*l+73r`9*2?`qH9lcHYQg{<yEyKiogsQ~GsNIz8fH
z7jg!5)Y*|J?gM^LdGxKmPU^o7-E_TeLVg514n*57($I=5LRaIYs{6CYQ0YPEnQExC
zL`WrUfZJuQwT#`dsz8XQ(6vgP<1<Q~QZXjIz`8-~gsWMv^51kj{Ibc&M}xUQ+w&IW
zJHdM8ug_4=-*6{;rudNBKeISaVVbvN@o9D}vI+hyvHg7)m!BHfW*x!|K-A0*<XM5I
zf?hZGp<wPiLHGS&I9#-$Bz!{&f8nHFi@6=9U!Rx1c|2HR`oz4!&l&VN$U0SQ@M|>b
z3+FnnJ%CoTE>PqbgX@I0>t#CMO7f$3lb&zD4?qNw)=uMGa-3&NR@D26(XQgD<vwrG
z;}YfXEadCJ2B7V=1$i4-|AKtpzW<7RpVq1VrnOgxe^lDck$?BwX0u(8^y<Ig>nnW1
zDJEI-*-|&0Ifs6qN~^pZJlZ-<OdSW*Mm2HU^9|k+CVv#hxmc)ZwA~=>5wqQn`Gx_=
zBfw~&%i&C95$;LZKdkFJ!;xn!ST&m^18grB4~_=&$n(T#^=Zb2Y`J?`oJ=8*YcUkb
z4k_<ssoD*azmfRI6Th(I-N-HAS)lnd9m&5|-Akj-W9ZC3Yx(k1&LB%HE)RO%zF%A(
zROY=F-|rQ)yBy=b>>&YPz&5j7_9168*kbl`^L@5EG|)$EJND<%-}Tvc*rl=;IvI!f
z-I5ujICjw&?&m9ya@$4J--qEw!}!W_Mp>)GU`NAEG97j3Nq^2u$D_#4gO`9V4~0J0
zs08o7FUx_U&c|EWso%a*TGSiMQcoD2*nxxPAHA;!4WECS7_RQ(kIPRwi36I1IhxF`
z<uNad<;dxUj&V!QPpwkdv3$1{$9`EHvx0xj@M_(Y8M#}-zNf=c%lS0J-<}b3IqBrp
za9~F`kiEYZ>KFX8{N1(;RvpOR%9WNgQ=FCP7q#!_R?O@}mnD~>gq(oiKRpx(&IuP~
z9AY%yBJH#e8|eP(J;;xPr+~K8KaoEN`;>^<#X3)Ar;1MF;hpT1)TwT<p0~GJW{VZt
z>W%4rXB&UbS!7u|i((%Zk@2zFQL)=I&PC+qzKK>zI4{pzHo(>B8%*nR(;6sJvzXLe
zY<p@LjkikuXSi-he|9<Y#o%(F_3z_%jRV0gM@#*0zfHb}Q|8lkR?2}YFGFRW*PYsy
zz~wnx17=I$D$9Gz+Zqtf<y(2iy4+K8b8`Z@fszwP7LU!${uOtn2Yg(vbh4G_L@&?u
zu?RTl`|!jcGDB-4oP_&&Ah;ut9UkadCEg9W7X|$n2VL%P$>PqVX@Nty;^t<{oMrCs
z+s_~IA7}Xn9Uhp<>8)p2GkJE^n)~~Y$vW4cQ{)?E&**cxIWpUKfmxX4AL$?DKMpIs
zYdWlO*=$=arggn(U13?P>|dJhXsgb8$+R|^_8(368`H`Y`_ul;tt93|E>z2KgT8tS
z$fXf!UZeglY2VG*PM42ABJTwM2HL*G0oND`=Bo7yo7Fhsl1}~EH047(HBEsFos9vr
zDexQ1dn@o>^EY}HzRYjDmA8^pdGo%BL>i+uXBp&K;madp^e_AS%-c-vJdOn2Us-l}
zfzR=74tbhIH{$FSjt=$aT9_Uc_r~?Nuako;B8~T|@{jIuK8p5k1M<yaBhcv+KfR03
zsrMD^lT!XgxjF14s&{`1MStV6eBWbz!jJS}l;3BC&1|Du@wF3|=KBFT6m*R!(Cuph
zvIyU%oY$pWmD*J+<PzqZ8I1q*_r`uW3FDUha_e}SRb!kpL-;C2i{h&zz8IfH`c@;~
z44Q!EdktBH*?*Vq;OsZ$yXNcYKh`Va(iZD=%d5**%PM`O_hFFtI$Kuncl^ff`P_&T
zstL`usyWqbqBS^F!UXpmE{F3+W;%VHiL8(J7nJs|3J#uCJft|USPW8~z)B}J6fU=x
zSnTIM-r_`Qx7gQTwCl~kmH9O=<aVs%AB(&%*dK@>^2|v&Urnduq|?q6yGuuqJ0py5
z^J6?&I3vpKC=YEa{zl@86OXXhy~ta@6F}SRMPw0H-5~AM<v5+V?{(3s+{Nb2metgg
zTl2i!;-<UH3dBfVKX;y8A{*@ksPkue`PTM;OlM(6LXUCCQ@}w$>v1%4xAd6Iy&W8?
z%=MM>Ccm1a(WK7Pgv(%V^)$(1;Xr@e>o_0E4MvBcNy~#$k0yBH5D9y<Apa4x0<A|I
za<}y0cyn>Z^3sGNhoi`3PmzaMLx3VaD)}(2$WNR)VUUK0q#p5bq8#s!Tmz;75k$VH
z_7io!ca-0$%TE<&LV4GCveA1Nc(TA}6?-vIz7)>};?#b?J;?8Yoj|t-uVuQ1FT(R=
zuzZfR{#w4jmAB`5P;VK$&i?Xt=WFLv$82|=x4gIQ^3x0Q(*W<gf~42tPgyLv%lay6
zY%iE|Z-&1)BNWJcB*VWWBjOIRI6asx9C=p89WieTWJ4_0Aq@^@hORT8jk()n{=S7)
zVV@kfq(twPKWvJXb9gMDe<we0j^#NamL!ky`TV|kA>-P?-$k;XjO24nSAU+y!^Awx
zhw`_7jm0{o!OT`%Y+jP(UY3<a@~QmcyRlM8LhOJEnS<>CU&?Pkjui%>_$Z?00JcPY
zzQW@R{e`R8uCqTFNoIdyI#b0|zz9w%Uuc~vX2=hT-fCvgwC*ykqxfni8?J|&&zP*>
zj`Zgr%)z}Y#hKe`x@Eptpv?b*8FGUshs!dKij-yEV8*hdJIw5|tXOVY&SPf2n|E?y
zS;1{)-?BbqVs_Zh@I|SeUTA(?ma`4yt<L|4ke>nDfzJOn<bQ$GeR?}no_8Gm%d+5Q
zYZBFua#~P(H1l<pV4yc=x7{?pE*!%0fWlA1IqhM5uE3CBUeKGh+lOOA%gnfF(`T^2
z)o(LuOlWvQ>N!4|@Dq+iJ{c?rx?Y}-EW+AHWjnP{t((;KV#)k77tLHq^R$$WjCu^Z
z(H!Zyf)`4Uu!T3_vTm@AoB9kyiAnA(E7x2QI7T>m^SJ<Qh%?+i+2u$Mj+5XkLVT;#
zuMPe<pGCXDS^maNU?b3WoRQ@kSAzPe>W>YP@6)!*_q2K*)p0|R(wI9m*4Z1ywHeRL
z+cOHh56Q2mc;Ea&T*}&HAMCwe>3VNBboEb?|M?~IM<cv{A^&it{EEwKM3l)tj)=QE
zc3JP`84vV1!V2D)8M!?(7%u1fSE_^GDRJEj9)+totWdnNp17cJRpF&(JoJhgTw@hx
zzQBO!+=v@;v)t%Ev%R{#BRkw79qtaL=2LzD>-{bJ{p@guwAek2p3r79>=tq-{h5}x
zoVl>DKkpgq%p%v#4pG@6S6K53GYW%+zYr_QZV-j*Ta%+52AHg{9AJKIIs>U;MSfn*
z3*?74OfkXv5zAUl4kj0WKGpm4Xz!;-2O^>@9LE+#zugw37KW*XkD08S4Tt+@v;;(%
z5Fz%0EEl`Ub1`lt%0*eWYm5YAfi4%zkuLy_DzE#f_bb-#SuR%5-&#3k&5`OZ5M5ln
zHNJA$QfZ_8oqM%yHrjbtd)e~1-?*=6gtd=*I6cQoXTSja-jMx9=rA|i?wdQ;%07V4
z8SSB2?#<@N{jI4X-_U`X{sMeVF+4NE`p~q#G{xn8uhDrHU(vI+xq$N{)3vP(|AW#o
zX?;<qa|dadq0+e%IXA~O`T$)&pG6j7TAfT+#o9g7C)|$1PNK~yZ*jI~Y<0{Q=U&Tu
zyFtEPVS1nPyw?w$t=<D;TfWg+a**ZH*@|0EC=}5DW%9TP4vUSS7Vx>p_-0Xz-ZGD~
zPITSTi;GXT_-YDYwU}-;PG|-*h?(bE7qCV@9GJ}Vh+=C@IA#rHJ^NfChsNf{>6}$q
zGr985Z%y7ef4>8B_Q??!|M`k}?dQwoHP093HPh$t>dVYKdXq^fub?E@KdXOc$xOfH
z^)}u#9Sn+P>7k#+@mSVxO_p!)+$po$Om~=BW{(I|S|?hS{-d1n_KIM2?%+P}n#E%?
z?l2>jW#oYoe^c7KHaF33&qrPX&H}nz8F{WT2;7q^?YuBwzRyZ2S7K2Dg-RH{$=Q*)
z(J`Bx@9d49buY*^9*B?P$yj6uzKUkMSzkv_W=Yo=XFU54J~z$d-A~MnMW!z|>j(ZC
zwxVB0vl$-C2}Bw9;>J^c`LJmpYx**re3#8`)9tB_ug{^DWu5N$K8o6T6L&>J=f`{v
zv6+91G6}(_AELf{VmuxF{%@lGPsG+%u>e$*zUM44j>H0lIo1S5S9sfDS`C(UtaY08
z3)5O}W&I>JUewLiR)6!~evTl0&1K|vBB$;9?3n?vs)aSOW*$$^D(qPOuC(I@Y^2A3
zb|c5~T_X=@JN^SXv%oc$#HIb(Z<p`8K9ujeA__asn!m<d*`dE%Dps;E(IyU8(%%gn
zeB#noKjl%md<6q2ENM^P=hD%6t6%Po%89OYc}w7li06Sn>GR&cF{LMdd%p4YhzW1^
z_rKde+x30e-@mheC{P=#EZ~yu%S=CO2{w@8LC!uFr7iRGQu6P!(t(t9zsVL|2AM|t
zf+1fh^uJQEScJdTcz-MK{&tWrE5CxZ8hNzkBNp3B!U1t0)#GMhynC{HuNAq%v`)$E
zA3QZDb8&Eq&&fW;UgrCz)XuB<q%`zZDN9R+`H;RW&0JS@)@_ycx{4gXFN=Rvca>Q@
z(tl;#zccQC#4PqVs@XB-oSwC;3oYv$i(d`l{MzLXr^Su4CYkqIzWc1uE{lVSPZdk+
zgdabFL==#d>o|9ui*A-O<=;Q}s2Lue@kj=%Ols6B6A~E8G|vjzS$A4tQL0`O&5;-C
z{;l$#yw&}mdy%(+=Yh`u35B$4AfV16o2Awbu6=UP{AUHcct-2hg01FP*305H<5s`-
zHuz<pJ-e)5WEg)M$!!pU%y_6@l+E2m{Q@-2h4vCwdsQ-~m*rcS@5G!^tD<N~;xB`!
zajrjLmGKKJ7RvjxIni%bn|=F7hPp$dqq503-@QY8_YH~MJ0x)55ZZSux?gCb|DgVi
zC>Vb?ooD<ebEJcXV>#Ed%p#5#wdUJVXQ9oYysyaR<8teGthLl!;=kGq`!XWoK*p>P
zwNL%Wzm(x~X}4Bv66YK7T>B9D3-CSAcFXPK8pR;huV3}up8mGnFQ&>n#XYBbG7}&<
zpoB?~c54Vj>2+*`=b+(tL+(2vznj5QxZI%EoU)g~o8lkB=BhfBAv7ud>fzSU-3yVg
z0yhAy-!sTBftKG&ea=zmzV1rdU&CPmryMBiF}fAh&t)<G*~^7q!(rZLa^*=Gr$733
zjPU<)1m{hLG9tddoP*rIkjD$Ex`F=w!M;J3TN1^9tGRLEP&rUJoC3^0N8er2o`roA
z<!}u0bZ{`x&(Ar?BBaivCfXIxk}0>#a8~Vw@{n5gztFdBx3*ixA8@9E)-vZ;-uYH5
zoMGmfiThF8|0ng?3||aBk-v{4KL`E<v_5Yki;%hxT<arOL8<{SvH#qxFIg@WxYp$O
zN^b2DdokPrcBvTXth5%0u9*mpUr7Gyq6Ghe$hF`op!075@@b%BeUm!pe0@s(og{V>
zo_fa0Ra3ki^iBs@Gf(8;Q;Z_nRbQFGZ_QkW4B?;3qmJ`#g(_HxyX?`Y?n|l97Pv&`
zPT1ph<bQ&Xfwsq2$RgZwi!4v8)qH`rN0J^%3qi@B%C}9k&AiNd8`^g3&z5nIEk*{i
z?Un8grg-q}k5)6y^PEyqdySUeQlA;c34InLp9RhVTAxN_PaidY-KOp{PovKsE*sm#
z_Vsp&-Nt4yq0tXE$9xa9e1WiAkg+ntM9vMS*l{sit7Wfty-f7zjFzvZe(msA^Odky
zUO(CjPziMYjYF;xNI9Q=TFN-1Y#;XAHR{=N1$JhA!(3X5a<8RmV);3y%W!j^wIY;p
zIleQ74uaQ4Ok+s&Q1bH|soy%d<4V6<kbed41loQNB8!kZ4yx@Z^_sGLIeTAew8pY8
zqun~(_}VVFvP~ar`Iu=M!E6_AUT9IgMoE%gkmH~dXx=f%BBa_Sg?G&=c{g~?8U~e0
z7*uL!1kqUMRC(;xfeK%VC@!NJME6o}G<+-5-9Y?0U#>@P0(St-|2yO#=U;KgY3cZH
z?V7*lJINm?P523M<dI-1(B<MX<hwxaK>2(fsQl!CtK?^G2id+Hv1q}fr3|x?2VA7}
z0~cwTt=6UP%S^hoTjOY=_owr>%jD%zmPrN2t+)O7Movi}?@iP9S2IGP7MDp@F*_J4
z8CX!nC?#uczcGE^vJ&$Mr<x5uH?pul!|&T<`uV>^RLIkvMGP4(cKcg*n$~c-B-fbE
zDfT#btk0Y997oeGX_<tAR)z-iC!P?9C)%|U$Wy@yK&St9<R`&S)o-uPk?DRvrN1GL
zW71RG+9oUMR4zJV!I_>pnynW5esQV!#TNINH(PzM$mJHR7+w?R$YEi0Ihe-&+6|`B
z7@B64iT%6oknhdlQ@HPgW@Lwk#bU)pR%xK{3fFh1o3q(<?sQAaoEKc@d3VIjsO4@S
zU_Up&a);Z4CKPA%Hw+BHHLDg=SVM4^rqW|$LdKuNUj(x`nuGhii8;q#&Q{(LR$j;s
z9%CLL4AbaH`wT2g)XV*l4+FD-w$EwEXM)sz#q6~0#?<*(kA<yMS<~t*ZY@KId(Hnn
zmT^JGptpn02f>izIvGx(Gd*~KT^=dQBacsU9`P1y4Pw93529|g_@sW@;nw|%w~_w?
zJ_lOAV7Y5#f$Eg`jD_j-V~}>4w+^qMW(qa=bP)Gy^B1P^Kt|QoA?Ft%l(Q<F>HeXC
zBGHRD*}1?|O`Lblnl2SuT&dp@!OeG~-Mt3+4)6%j`UU#q-vHgd=;!CQlzCv;zU{eq
z^NiE>=nd5^$C!P=t0pf~J*yr=nTk-Rwwf%+x{Ur&#-Mvc&O@P4u}FpOh5}BmlNqv|
zY&*&+OBwN?zwfLug_b`YdM?N`{qA7!s!IF2;hfO(WH7Wf6nUE8;(pS1FQ_iUGU5=d
z1G(o?Hfth#hAPV6nGC@O8KB@chHxZfsWePuK-#5&G;2TadgM*u_dwfaH?mQ|++NE5
z(u$ONC+(u<#W_RjGI7w)ji#4pC(+>8z@mcroD43p3)*bQx+y&9%aHSRC>qEYQ{ExR
zW|XDS{-5Lj+Ob~u`PzNHPkn)FL-uV>?uWi$tB<n+oQ%?WffDhYecp6dh|Y;f>b`;i
zkH-oyejVU2onUS_nBndCY75GAE+GwZmH+1=UjeQGI-PeS-v?6b&#JWLbNaI7^SwFz
znsFra#E#PWmT5F+R$Uo()`vyD_Mvq4lcjT>vr=d)3a41cYP5u;UPfiY{#D5Pfw@5I
zwGH`2kZS*LjXmcXr2W<ERo(E-U$J8Tn#oep29Y5rgX6%{GGmUVL`Enkxx7zRGTC5H
z1m{~U?jQ7<u+tpQaKvy>c)e{u7mc)soHtC4e1FxX#kAQaW4RfDf&eQZpN=@Mv*p|S
zNxK>P)U^M@i4NWmh`|1<CI0qVIE&k|fIBavB(J2>dvbhksawrOW)5SMF^56;b1B>h
zgosysiiTo#bYd=Y-sfK3ZVyZQ)l?<&^+@E?z)GO)cO&v`AT?jtrp?!x@}e)MqfBpp
zY#{IXpa97B=RwQ3J5qH?X7H*^)?k~C>*uPV={ec1D;i722ny`NaFIBsVWIP^YL9{@
zi@j8+j!3=R(J9V%qCE-^aE$^`3`F9@j|U=)kgB)NTAAM*9D>S=R%l18dI;UV6TEI8
zCxf=K5x~b;5GRO|cc^oucxzMq^~A5+>r0Uv!Fr(iZ$}m(wY}bxKbbtI{!k9nYUfO=
zosq->qhX?_cYwFF$cwKwD$~E4_;q_68|WItz$l>eZ8q|Jpxa|Tznc5Qo__L~;;fZq
zHCWEJf%ys+vXy$T)!wUE+a~%xFWN>sR*7&GZX{grPNws5W=5dg9b^~9MwU*`Iw33_
zQtKp+J+H7%7Zy8?GWnm5{EKHv{kNc7oD_-tdl9(}{1a&XGY9cJ0jc@7K7F}cdFWEn
zVJ`4WT^^;a9GvB~o_ATS^BwftNbunZ^9O8J;CbQTO#7lfC)dyQo0E$oT&h!4hOQ5q
z&N89%Al$SsMOGTM*;3z^INwI=y9B*X0n35bSNwJjpHutww<~?wQ`s)|RmOauMx4)>
z_+mYSW3o0;#lM|@tK<J0@)zJ6pyMwa%(yE^wZ}tg?I9Nx7u2of0eS)$1jIeRlYs1|
zT+fwHu|eNNf(<+`L#7k(TN83;737F|=+bH7e3k=Zo=p~VJ+!vTdmZ^`<Vw3VpwkS}
zF7j~$@<ZThp!NO|IWWXEUQ_!Z>(u(n?J4VPWqmwke!bp6fWz1-&lMTq`Hh3U*G%a=
z{!?@~ZCc(o(|9Sy86##Oe+`f6JXZZ=(bnd?8qIDG1wU}?&2i_Bcow%e=U5Xm2K#)z
zp?;sp>3ywd#8k{uI+h!~@rqY1#tw*-g+)Ya)aA?c)uFqtXJ;W_0&WC4eQn5JfgLe=
zgoJJCeRo&sV;#B}er5T`?|t4{k0D~MN4vF#6vY|yVcC)2{?0OP%^D|?<%Ss{|2`VJ
z(igne7r(|AxQgv<KBv$vvZgqp@<<t1C|Qx6rT)K_`Xk5qi#R}_!3<9r(KqOu;GarD
zIey2gVbWo&^#lpFwzE{y@{958<B6W$vLfZ_4=MXE`p9(G4o#HDrO2znxj<A3@w+RL
zMMy1=d$w=M8!Zc}N7A?!cQmjsnZ~u*T$#xDFWW4GUL$*mBUf)2MonL-#}0Vn@QCu&
zj{GI~253F}!=xUm^{$g1x@(nFJ>K)Fk2G3Y$B9qP4bz@a?HxW~G%4OW#H-u)tB`*Q
zHUXXQPa^*Tq_*#yQ|7N_xjqbE@}y<U&r<y!tsK{XCBF8~#Vn{ffrhIPEc6<$@0i)n
zuKG)s^N%byJ8FfUetEHcE63#;#d)IBzR`4Mi^?hbMJ`i2F`oAq3fnXlN&CfzC(^MW
z@^o-8(CL_mycndWV_VvGMW;hQ=a+XV`ajdylvDLXmUA&`GPZB^l?vXFq~IS>tf^S)
zwFORX-`9}e2JZu{*KTBEL}$HT+pAtjEma+mMIDO$%QPO(sk$-SY4Q}S)QVl1q!>eX
zjs2uvwQ%b4wix;6;6kAFx*z!wkXr8FPpen0oNp0Nrn=*3d#8aCa8^e<%>9D@$r<#=
z?BFZeA!ZDR+FVX-W#smAeLSV2(bB$?M?^TJA!}%XQ#6i@KGwOuqcwgGrDCO0??82;
zohm{eB0dAHcP;X9V3j(TK;QGcE3MvKsVj7DHXmcMngz$h#8TsS>r$>#&J#nJ?69?c
zm*+a`bEBLOb2x)zm3DE^C&pX{Gc<IB6%nIE2T~|oL}4Vv<5JJf=n&_#sLxxG{{UV9
z;%7qFzaopU_xg-}9YbW(yy`s9Xw569DP#jF1`LVgg{!Pl9m8ZsgW?}JGGV70<XPZw
zp!pXgi%{1n`$@Xrq^qo~&w{^WsO%cy84UKS>)%bI4Fd@^eC`;=e4-rLP$JE;N%@vu
z^hRBow8s|s^z)?^`7Q7c(E5Cd{NwttBKnAqp|d^p`J#LJ)RaqoYDXpN<;lorg0q1x
zN7p0Y3R2q(C+++Tb`tBw^iaeR80uo_I(=;#S8#z5w>*B7>+H%6Gk3s(j10dsPg-k*
z<+W@3P=uZqwy5bZ^=pSa&Sz160;63c2NVLW-zen$Kx+NW?MlCdD>@bJ&i1mg%``Sk
z<u1x|8uP-OJj}6r3FYP_l-n$nBg8ADevNR)`7HGNHSz=C5uo+^2>El6s$WG{`st=t
zEK_|{+U{4Du}!LXTVC+jd9E9?GW|{{Ov7P0lS47fj#}9<%gXVwKGQA;anDakRLrBe
z!Bade_QC8QD7|YdrQS9BB=r6%@_cX-5I+;T{|s4#RJ}XZ3%#H1Fdp=Bs*Otr{=>3b
zuTlh9xXt}$p4VDM&qNL)6K|W+V>>*$KlvW=SKxb~^%yut>hZqX?|H=od-^jS^)sm}
zS<q_kv|kpprpJ1(nPSqk-TKTiHWv&MSBo({>I<!5314O)E09lD%;hG^Syr~spEbqG
z_WQ)vh_T%FVm)lqliHUN&SGIv5$Xm?`>jK-IG;tnZ$$nLXa+jpKR|8=srK8at9<Wx
zl+7aJIrdp-ywx(^6$?#G-`4!#w)~LDcn)Ep`Hh4{raO}(iEQ`vCG(3qGXFG=fYX_O
zfn_uel6sFHo2c)HBhLkOK-+r-vIvi-oCDn{-}MS2CN1WW^<lPHwp-^Jw{o|jY?bpx
zV<@^>Rn`%Sb~!#+>aiW38hC{L{*L@9u*N0qcOr5<nENZ4-+I5yvXpb$RQ@kps%BPy
zFqt9zk9c|3TrO<*qRHS)5ZB=wlb5d;a4H;hWr4G)fMG*MVS+inNh3m~0agmqjS1bD
zX}89LuV*+-f$)a~nO_uyO;-%bWcc06$r&tI3YPh*qRt>T-f+|AcYf!4zaM8kJYwF&
zlAMy#5^;U$wWhP)GS6a&Mm!Y75KR+0Q0g2;Co_ZZnjDvg9x4oz_SivMb^qu;$j*4z
z;M~iO@>GIc1ybALY3a+8THYl#&CJ*+jvKm#<A!+SW;Zc;`fJO$sqdgK3!QHZGZ}@6
zbDwC2H!rx_VH>Z~+S9RmxYTbo+*-dYkek3=K$rKIk^cr#^_!hmKfQ3WZVeryd7u>B
zWX=;AHU)p^6U+EVUvaH<C=&cz#QzTtLCgw_Wr<$U&9sIMiu+F(S`sZ0e%&&zG8kpO
z?I}Hl8591c7urWiy{q?4)YECm3&0Yf^}ZJQCXiZB7pB#_qmmv<B|RR9!7g##fp{0g
z5OUD#ZR%T5)pvb@Yx`2B9M|WB{It-satiEhhT&aKv=Ref`C-rDKHYiWQ(si{W~IJS
zJ5uVu6W!vZNYoQ+0&9psHqiC899e`^{r9Y|N1e8E{z;4E>?f0*qo}awc%xpe_|rvI
zPKYH2(clTLH&T3*<Bj8Z(HiklQjdCgbiZXC@&@orp!L{{EW+%^WPN?@4|}%L-nzp>
zm_I*c{;CB_c*c}AS#=vNv&p*F+UPmNx7fx##Rsr@_cE`;dm_gSjbttJNXy&i*)m${
zVeFR}|BWD*f(oGX^JmD{fNf7pen;uEF2zrqy1ZWO563OPS8m7H=}5nPYrtsfH{qAX
z!A-@vT#b->Z*lP9Vvbhl6oV|5Zf3H&CK8Gba0X^OZXnz08#^x}<Yq>vTA9&dWu+CF
z(Hv{apxnW}=wWt^8P3S}O)rcW6p5B#zQr=LpIGxaMDZcho?$O_&J<ryAlrx2zkZgc
zk}zJTvyC+9d4|uCjft$E2io4{$llM@eEdTX?P>2rIM4M+-741p!eZ_8Ci5^+zy4|)
zZ^WytDmUT=-C*ES&T}#cGtKM$C+hxK77m_j&9crD&%CyMr9SoW>H2>@@;Yz@(E4mZ
z79q9%>vAac;Sr6=bLx-q#yw9pZYq=Gp8JW%!@lye@7f6}{lurs+gHfG{n_&aG+$q2
z5n{K=bnEq0DSSsS<x*>TmtH|_leh|HvS$RYC;D}nFv4h3ueNZEwT@xxvQp#;&-wjS
zy5Z63z83kH;0~b6oA_-jpO>iTrC!GpPFWx6J*N&kDY1ZW(aHt$S&EB63aZbeK2GF(
zQ3ivV?pkWRglfT0SfSMKO*i;VDU&@(^I2O;%l_&Xn$|~dk;ttP)<84J?X%vDmCZ$^
zW~I=nW}?);dQw9FNyvwSqk-0c1@gJz+gtXu<Mx#La_l0xP@?WSF-cbpCVQ>*bQH#&
z-X%143*N~S({6W0E$e8fpWR=st`esjFOzni?y1S|jk^7%e%s;J_I(}s9q<9r`TPa4
z2&ww%d_Hv1S;B<1-ZeKeZ$HMnFBj?zat^Xp-cDm4`AD6&BEH&5lE3x<)(G%fw69B$
zF9FvBZJ)Q0zXD4}Qg#W|h4TGRDf=L0KV-hQX~^3!RN8JmZGLK*?bh{{_x7ax^ckN-
zHDn~mvCHV2eBv4pmyff?h4M`Q^<|m2mIdz3cOJ+uw1fBN+s*m5)t4>r{i2cVKKGY7
z50_<!4`7XQzraL))R~eqJW!KS)aUR?-<y*u3uif>u;r7TAZ9g(Y#qe#-#`{Zj<ZU|
zRP<#gN3{kN=_wpb%c&L2mrqf4s7dt479+0)=K`G%jmRSGquSHlZF{yiGW}|^5;?+f
z?gcEQFgY!nH<94C9Aj<&p*+LJFl2jr#_Yg5-uj<4th-&xeL4GBbM4`-*VYT3_GwbD
zc6jx=N_(<v{1jXSbpBLMagA|chbq7Ne%Fbg%Y4%1WP#j9br|0=HuJhD#Caeaye&S6
z4v6?dV`h?kNRlj806eJwwGu?dt)kb`4;%~zfcb#SYW((ca4r}P*ns1=pJew~|EdcM
z{1?*&&AFt&e?<YOJUgK!mEZ7Pp&Kr{rqI8>(6#be?VQu6_@YApy21=rmXtHnQpAp<
z{Kfe;|3#uV7x<g-_V~|I-`ro|f5`hL;(b#z!Z#`UOo4xU0iXLu-z)HcP%y))WIc0i
zf$t>ZFO9xj;D1GbcbM-8zB`(-a*=6`Vl5qKRS&jzxMUxlc)#hTkAdR>Y<Qg?@(1r@
zF>J>2h(Gh(m_Ir?+n@D}nd{FXeT4W=Wd1diH~KmD6!MGUO`!8HV=D7L;BnQ@*ZH?C
zW&NEvpIp1f7l;9v5uS&13gtP(DEbk`wu&lN;N-Ac(y}uw>%l^2TVd##!oW7Ra*0_-
zoBloDXIK&DgBZmkO=F#yb)nZuKZQ;@S9Y66aG#9SdkH#ez0XFz1Y8HS-oHbB5~S+=
zP#V1xLk<@T&9gntmnqH17(12bHamp^e<^g@3PW!f2HFby_`(#R4ow#em6s_+#|RsX
z(4zD$oR+A+!;tp{2Li3{V&v1o`deka)pou;jlRi4IM)h|`*|9ltu(GN)>cYe3yljt
z7hXi@o5H}ip2pFH#^-ysJzJ?<<LTQpOWL;uUBow{-F*%DAK*Qp+Z*#h+1?bYdcEcL
zJ=+^m9y(l5yqxFoZ$v%(h}D>A=TKjM!a*CH6AnTS7c{d=FI)6z_F<3nH2IK+zwr>M
zPc3{ils*fPPX#N0)@MDk2(LXa^+=~r#}HwY`I=IP<u`YG>I9P1>7>#)=X9-7<DpWY
zHu$tYpCf+<tmz4TDv*CnpN=8IJ@nbqGkp$|`mBbp211cv>yS5qUjkje?nZtPG^+gS
z7;jGTqZXXGN>$@V^JY2k?8vERdIhgkR^3^Vb$5ll+kCb&l)K8vF@_3F)&O~-u2$+3
zI4Ge{ALKz`IMDj+hdd3W>a#GVyrYkH>e49mR%O+1E3zKii$c|hOMN!LrR{Ss@)O``
zp!Infc?U?<XIp3cc+EwJk#3VlVl};Zh;o$T2bER7ugH3`;!<(!jWL_0{1dd1uER)2
zNPPy*Na!;O`A~2q(E8LNF9oUkyw-(22_xMv6=Jo3P^jHB+AFJ`t;pJ5!OVfDP>pqj
zR*1EvDzq!TTHw@ndL8+n;A5cm`V!fg*;y~AbG~7sj+V92ynPQly~sRTW!1|SS+7)F
zq0}0au+uM0qvc3xr&_qQJ|`ic3C;#upLNLBfK)rJ>a342QIbM;NrlR#o&IeaYpbf>
ztjKz+g6^4TrwP_k+D@D&r9$&;sn<?8wO(H%hkn9&2SDppj9dv)^?Im_{1e@tM)Q|@
z80inDaaC2-dlgw9R9vKV8lEuH)t*ibM@fBF!=?4P0{Iqj8_@dPhx`ag)n|QYeUct8
zP3Ao`l#EOHH+rS%b<@~TRrT+RtoDla9ah?3Tj^Fbs{5(bCvb2=pAzKZU^LMB)F96U
zsrux0&Ns?Y@{?ri9vbarp0ldz%ZjY8EACVp9b$E8^xKYnt36uk)dZ)u(<8{wfj<GQ
z*PF=if>gcMcGgRjr@bn6PgT|Vm04>m_oi6Q9I4m%SqZ&rk?X)Bp!HgTd^YH$SLgim
z9&^cxy}F0RzBP@9tEw)q%(|-b_sU}P6Bc_`S*+$5saGqU+Fm=6cZ2VM)+=-fb3Pzd
zuYEe(ORCiI5N<Z#kdvAI`@OQo^4pfGs_QGWHdH>T^jetEi!J3|s5w^ZwFFMBSA*aO
z*8{EBCgk6U?^B+46`l3+9>aUJ*9%ou8!NLm?bTk#Nxh6i6M7XQ4+O)2)@uUtRFJCI
zw9a}-l{z{JY3%h{Rn=XUS@-PKUUQ{h8{pLT`VI2K;P*i5^=IU_z|Lmbf7+?`N!{ML
zd~q5s`x-qz?L@q-!{&+S%&VsHkE$xC*opkUGV(%YWw6jHa&pAFma)u7ms@eswX0>J
z8uy!v5I<h(Ree}OuNvf9a1_vborQcUn5O*N+m&BCyR*G!k7DbA7*W3w=bbj|4B2Ki
z+s3z5Rjh#EIBKuAInWx+V)x>ADkJY!j`N3|I<fqAEQ{EOGq~Ak+EuQ%5tVaxk`733
zJwfW*hAuVeFZx;S$Y!l;xIpVW0C^v<<w0r3*joAierG$*l=?QZwC`%MzVA}rL>KvS
zPG%h-yU5}=vqEdYzbhl3Rc5j}HJ5d!=X-AXB&*CinMFjSg<V&psd_}k>ZG0x=nzwS
z-hg~7*aSp161v`jEP@^n+kT<cQ~TrU9;S{v*m9}|GK2JmHN_Y@Ma)>TU(oyab&9W@
z_%xsYaK^wvKG1xn$lc`|g^D@V1H1`K!C7Zims@?<Sq<e8in&GcE+Jmcdmi#-;A)_G
zuS4!G?`XjrJCuuW`$WYRQ5TuUp}<%LCsy`C?R-@Zh*$G|iEJI=8h)U8Gmu5-j(ztL
z#Wr>(yk#CQy|SN*p4nzrC}`r?iIR5?@oL`X$g9CQK=Yo5++ALrR4yi-2(Pg64C6!`
zn#q>RSH-uT_%z?!$UDI&K=XZy++99-5%PG&H_ccwP3(G;e9ek){E-R1!;t5Ixj^&H
zL+&o$xRmsrmXtnYfwbpl;?wEdio6~C3245Tk-N*scm(#Gpwc(pST&uc!YX~WiZ4Dp
z!8Z>1AaFF$?Z>&umxA$Xyro_3FT5gUJTtj|?kmcV^daRGqA0wla{*V-8sH0ZAHWI5
z1?EU=1jp(IA1h)}d+@zz)GFLk#6)V~9YhYh%=9+eUTCrdx!fKmO5N$~HV$&UB^MX_
zPcZ5iN_*`<H$C2G9_1Qg5Chs?xyT}Py?=FO>bZmRJi0_nQ#*udfYQUnG3$$r@AKHt
z$&JpU?u*c-^r(YJ>v1OXCEyC6^|%dLgl{*?cI}?K_iW$fITRhFTw?X1b+u(Sa_HLC
zjQ{SkHaf-y@v+Wi9%FxCgSxrM$DvB1r+b{Zm}<B+-aOen-1SZ)^oSNq`|O5Sm#6HX
zayAC&2ee+5$Rc#rE+ozu=+I5>I^4ys!*wIetU;pTtz@aJs;7##Ud1b(OFu`x3fu}b
z@4f2px}DeWy1m!;2G^Eg{ENjz%t$6;HktEYG7ovt%zDWj`67kFnfG+&Ax~vyJ)Jr7
zDRHpbcvfJDvO>RqiA;aH<Y^Fk1drx90P=wdqKsExDEE2Ps&~yV_xX9F)Kl5=#*Z_-
z6XT;?zBtPm6?d3q@&1$7d>GA&ZwYbha&RGXBUle~x^F-hq3iOfPPiSEIN~;^W;%mv
z{sa6qQ7mwl;V^|Uj*-@Uq5o2u&NkxJyt|Qob65`mG;bJr@4Vs$vTl+RQM2NmL%f=I
z4RQlm3pDQ~$mw{+{O<7KOXja!GF+RSlPtWOsMKVCPVIuj0;KonhVyf=9=p=&L#3-e
zS*CY8@oL@=kv|6iQCuQlcc-jJk$j6z?}}|4OydlPCR&Di#Zz-kqW&C>TnA1Dx_w-U
zyc(pQ4;@IE4;whxD@z^MVrIswX_xb19r}{#yl7S!&d^&;=a&e^B!`?8+slw!l^!i{
z=z9DH@_XPzpzZuIvIwbqXybP9tMym4hf<~dhxuzokvh+C&SMnCiF-xLi>LM!Y3K3B
zCU|Ef&j*Wu=3Ro^E#Bm%-Z@>fw<_Ld;??Q>Bk~UL7SOzJBX^g#V`+ESv_|bRncjiN
zCCb%g<U_%cK=U4rEJD}ySLJhu1D8`b2d~6G&tE4@%^8voz}T|>wkh5w;??E(_sGwH
z?LhPX2{|2antG(S=Q7KAt;zXko7lE!IDl^Q@l>Lah^OgPncl*=3Eq*&lfYD<c@IJs
z;YaIJ66<54xo#Az2R4cIHI7(g!?istM9UmoE_oY?SEu)W<cGmyK=VF<EJCWC)1=ok
zxOV^rt#nT9v0kfjhT-7ZRjXEmaeKuZI6lE!iChiF0L{BEvIsw#-W1juBzd5h;;S$=
zFix}bNpQSgrgt^*>hin+`DU<Daf!C1>vI*8`zN}IB%ysVZePRc>uJlsS3GURsqOkb
zvUvi}0w99mS=Yt6oqL|k+fjJ?z|zNX`WSU8{u<)a>6nW=4=hNEzkBIWODvMo(4gXP
zN{at+<gMVD9>=ea!%2$2NyTr>OX%MZISwj-womu;*Z0&V2wGJ9bxHAGfP4|Sw8!y#
zEmmg|lx$Nx+mm?SNB$7}tH(V0j^?DYbh<3B1M3oYnvOgZ90Gb~C;326F0FAD|GK33
z??S!@H1|0E<cCTkFNBUYil?18>-a4Cf06m@kq3D|1W_Lv*2{i)YX5W3`q0t1Rb#1Y
z!>KmvRs6NYRZl!3{#D3lfwPn1AFs}@?N0n1hu@EZWsKqA4;#&jXA5!adi@vVzk+`x
z@pP|VCobLUsMv6b(5iUiCnk6%A|C*z0uj33eyH<zl1SQB{0+pV+mDUNo4~J=;_qJl
zOI(7rXRh;nSs}~s&Lp1D0@gu-ETGfTJ)S)-w-TMTd_(lj2-S+GmN<33EJI!nRwnUu
zFJI(&2b`6mT3d!DRs7Aw6^BohuNRPC1b<G7e_BdEH__iqer|X-q$I`8K0XzHY+*wG
zA;`nQC?G=j^IKk?lT6U4;;$zzo!^%uUj?pBiobjLAUmzedEKnyZ%vB79r<(cWsl>h
z9nqb{WD;!9s(8jPN~Gf`<T+q2(01xxI^glLB0<uw;@^-I|HH_Sf+u<tzr4?-gCMq2
z)`#816-QZ7j&e@I2L^qC*1vn@NJgHV&($jaImD&o{~7YR;QXZc$9J!sCLiX#M}4bR
zJS|B)?<0Q*{?%ii#L-jU+PfsCdc`wvaUwm3AlHJ~K-;T(=}A3|J3-W_cp8aQ*N+E~
ze+M2-;^|(w5>uq}^`YAd5|nLLJjRklJ@1EH0R{p(s$M-Gf-FKe`rBeisKZB}<n^|X
zF`Q$>l3d}T%Me?o`n|-f+sEsWZvwXh&3hZN2&v~hck<WwVBOziontt21ZyFz^@^{J
z__RI07d%Vp{{j(2d)Bo*HNl|a>3Z3XD*hVc(&?FtJP#~LiofgjJ`sQC-ZlB8;%_1@
zt^Z@lPk^VA;_r_BoqN}`V=8{*<V5^^k^6x%&=dP~?p@>Gsrc)X;y)Yt=iq`K#-Fa^
z8#_amr<SDn+mPP_ANDZ*u6x%!*A>seQxbNXf_xyD33_6uG`(x?iI(YDmlXf)$ajL@
z^f3O;y=$K9D*l~G@%xvt9t1={PxSA)ca1--cxs8Wj!4CGWf}5vuri6K>;843K6LI~
z8%B$YznQq|Rs63YzYg9^iofgrb!z<Sde=mJrp%ARQxo-i4Dxs|5s0w&eo%rZUGF-s
z;$NK<|Fy{1gByDof9GB`?U{;y2XX0k<A2Dz!M92Acc<M**Q>5m@sB?(5&s<I<G?(i
z?bDt3yY5Znhbf*W;?(WyW5`c{r;>QO)4q1@O*7u5;y0EvUW?MAycQvsfO4SIF}F*9
zFp<x?tGF-S^?eP8=`Q?o6@MLZt>d$Z{{rNTz@<s?uin^|znKz$;#Q|*8Y6y|EU(*>
zcs@e@1hn^#M-{8dq-L_=Octr39Z@{h^@)3*jzXRT<^mB!y@;uEG&}pZozf$Crt@s&
zA11h36we0Yj1!-*TQl;5;E^PruKTA6p3Ytl`J&?AO<cNMWu4AB@t_ch(B1mo*~{S{
zua@~Shq!e8I~{oySe+Dqcj`xHFUK(AD*i1=@xOumCir^~<4@=1)TsCiS0wZwjXV}i
z0NOs?(Z92I!#tdde|1v)>yd8&H}^dL6z_(1L&d*?xZ)@)%Fln1cY)nW@pq^EboOp&
zH&p!NS0>`0gM1vA2ef^<_6L&6XP4d$&pXA_l*IEi^0VOi9`bbU-B2GCPheFdJwuR(
zgHfO->FL_LA(l0=Uept(t{08S*MS?7c)C-ry7q3UABv}qICcH@oxwT)5ChuJ$UzpN
z2ma0UrK=Y$964${4MbP73X~7UUq}3!|3c)ez;!_L-+(MaxBZ+X_JZ2Q%q|S~W)~h|
zb^)+XWiHoBhK#zONjvW#er@OP1@D>oJwSx+`8}F2z5mmocxs4Kr*k3lVsJ_l&yPQ!
z6FlkspeDt$nK*TNUO;{k{5gr|$IDF;kKEANF(x8x(xP}`XC-(>A&&w30ug#@w{(6{
zo8noW#B($9tzc6xdD8hu#@VtQv?cKbR=Y+9h=SgvXK#K|T=CTsx6Y>($Y+2xz2r;h
zFV!fXElE6YA-@gY>m^S*zo|~~#MdO!a}e@Rz@eZw_S>8P)S&npiMx)-#dGT+<VV2o
zllXqze@c||bbeH`;@M4{^@^wbXY2(4gMbL4od38VmCBRepK4cpONd*y6IUWPg7ry!
zJ!vP>`BkxVWO;8*;`t2uf8eWL@}%>xsuj=pvlHdwc;q^;5NP}Lq&-UKXVog6rX-&2
z$bSSc_mXFC{#L!>i=C6mr%}jbz`j7It0(!C&hKheJgbRwHIa&Pelzl|U{ey$kNaJT
z@|Vv4YE?XK#HszS(7DX}fGnWX^W*+k3Qre)SnOO`{%VO^^Q}QX2Q>V@<4fz0)hWIf
z5x=tIzmeO)t|Y!6_s2S=FRfqJtoW*bp6DmmA|DBk2HKuK-mgyZrSs2P70(9Z)a}Ki
z$d7}TB%Yp>!*qUHyW%m<OVr~s<O(nl==AiY9;fryVn3JVVo4IuRmj(X>wC$Q&Tp$$
zJgrGQpCf+(zV1Cw%Ip;Lkcww~L&9!zk>`O0pf`3SJ)Qixdd1U3oN*!*?Zi{a+raiD
zo}QGqbpBkU;t8Ce;HgF)4aNbTo*(z;lFId7{JLhvw>pV$6Y?G4u3qx(&A)3^d^?l)
zaxP%L5A+4SN#EZ5ymrMmhq!e=umSl(a7hwhPwLg){Jq$D>bXzcy1m$i{0;a4Xn)JP
zP^PuV{+`$r(6zf~G%EgD;@A8ukk17d0L_0fvIsr&_XPXi+&!bVL8gB@@oRhk8@V0q
zQk*^UTgIk$_l$bQQ@u8k&Lfe33XTOL2%he?%kZRg_l!oxvw=8udLBi79JD0ybhrEn
zo;2>B(X4okixNC#$Q589(CO&`PdazcXjME*l6Wpdz7ky1JD#-eUc2IHP2%|y`D^ff
z?|Am+?isQ3Wx1=lIAOo}$P2*|&<p#ebN7sD#j`ny=a0xQfmeFRlg`~UY86lHl0<sO
zBJT_K2fav7T6eEr@vJ7!IwJM@zsR?OO-Vf6_46p->D)Y{N%6E1r}p!L>lg<EF`(1a
zT|cjbC%v0zv?;z?;@0ipD&(`k*-3moXdlwKd4_R;EO%Ryc-};Q3$*o)C!L#T#1&8c
z(nNWfhI|k>7-;+TpnXW^<{34LXI&D{{m2i1hkM7fH#g6yQ+&ILTjx`s%eV^z#DPv%
z5ArFUn`bmAo;u=OO{AinUx0iOxHO5UyM7+!FP)obv?!kK#HszR|03@KyOVgj>*r~n
zF5EoBxKNhA@s}s~>W~+J#X#Gy=X`11Jfl|eZ6@vpWyjZ${{sG&#MfOvFOj~qZl2Mk
z__%AUqu)Iac><UObo#p6?}jg(n`g8ro(AI7<**6)SK!Vho*tCLbZ(x}rg(M|r|wS#
zu4Eh(M1f9E59)C`H;)V7Wx1#&PR(-$@@jBS?|9O=c}86EY)RtzEArpLJH6)V<mMSQ
ziYI<mB0W=)r-Pq>Uf3<2n`hK1o^`|-CsNT)Y)1YKxIc-f2jwlDn`bmAp7tc3f~)a?
zKnc+4>8_tA%Jp8{JflhR)e*N&*QLl;fX3eO?aj@jZ!F7SYZBkr$ln38u~+Hao115}
zDZU!w*5!RM^2y+|B)%ThtG&5-94V)s`^2r=i?@*910MqIXMKz;LQnlX?>3FS_<0SA
zfBZEG{$r6Bfs=veKMh%gp80w5E|0xT>lrl{%k(!Bzqa@5$UDGWin9lP-sn+X_<41T
zr|{ZDI`>1K1f~EHdf?{?p0s{mgW_o*PMx0HkZ%W@lX$vWemtIZeqNK}*_p%>ypDb_
zhyk6R9`K~~^I8;7t%#RMMLV_v`3$h8cRXqRyf($NC5h*4<afabz2n)dpJ!Ym%iX~B
ziFD0Go&{<_FYK4r&x<Rb#w4Bxksk(+^^Pa4pI4)Jb|>+aT+f<UPzidGp0s{mo#Lq@
z&N?C$<>5l)i@{|{Jl*v3MEOqZ=QS#x?ZjEHc>asL3+ztf>878T;OWB8YgK&Xf01Y(
z<|5An3xEhcY#-A4dF_g)DT(JP<ZWPk?|9Psd9ih}d<Skwl<%R)Bfw~&)6;|YA+4WR
zt$6B_cy2(x3EbK{p1t~cwTiEexb^eW+`zp6AOLi_y4k-L<sz-0SFd<x5U2L@PDVZz
zoSwwfO+QcYr1kTf6;Cs9YCrEy<hMXu5>Ge%t`45A{JeI>7r!yVHv{=#a2U|`>p5R~
zKd<IeSq>YCyMf3>d+|8(R`5&`UpM`{r1Yit^BNVOaZ{pyT8dl_s(?;kH~Za!FRh=~
ztaz3Xr!I%<kS_;UC-L;49H#a2S`|+#aq8!9JM!n?%Osv2)Z?^%Uc2HMe{+K8c;q^;
z5NNygfG4e=7rRWBho&T+r;(op&-a?Av!7S3cmlU1(lZ2kI2Z+bm!3}3c}A_`sVB}j
zk&5!&h<qKmA&I94<t?qBSFd<>B=P)!Z2gjR(11=)H~l=XT<^`#YgBwQh+C)YbmUcF
zb?^B0>gP2pzAZ_7?;`&beAGL>z502rif`bpiSlt6@)6*tK-;qi<$bSyUc2IJB5vJY
zJcIlKcnN4f>(9s{^wiH2XPNEA%`@sRm-Q~bF~L6>c@{VvX#S&+Md+EI=bfasH#g6y
zzC!YEAb#DBJ&wE;Jfk>!;OFhrg_~#8DjuULk<N1DN-zkB(1U&)JZarLqh9eWAx@p1
zb;y^4tCM)TS$+ghIycW~R6MOoJnhJzgD-o<lh(~MnibFZ+Y;$H26-;11KMugPfuDm
z&uCRVO-Vd|Kz<&)*ejm&ZeF|M32aKFXCU$rFaq>EJ!#!LBX*@M*Y!y}*CJmJZtN9L
zTKCSVRy;eBc)k<y|BAjZ=y`h5x_3sc;;A9dIwBR%vlEdQfu%`2-SqD$*J<55qe1a(
zCQj|&wIaU?{*uJgP5-WgrwjMaXi<EHw<p?#{g5YtDL~t=oBcKT(z<s>o8oCm;%P$u
z6}YokJZarK!?;S8yPd?T+n<a(*!u{wflg2N>uXx~&WJ0XTH@3^XCkiw=k|&xy?a-q
zc(xFyem?F%{u_8ZiKqMdlh&;>>J(4>*9pIFGV(Mq18BQ-)32i(q;>0zCdIRkIJIBb
zjQk*YB#Eb+ewOCx%B?fn6yNS7zS2AKdq5S?>FP0GdbiG~zFL;QCB)r8<f5Ip4*3`0
zrX;>@`gMu)rFZL$2F167xZ{fN3*@iBcS(HR>}SKbr(4&g;vc^`QT~obJ{Ft+MCe(+
zA+0-Sv?!h?;?(tNEArFe4@o@TueWL4IipSS1nx@k3`HIRMgyIm?(?K|=hz^vo_|R^
z*C4M48+yyr*_|`uif2a>&)3M`0rT!&rl+$zXVfU38sdy&BvG#CA)g3NO5*8$IZNx#
zaj&wp+vX&mmyrJqUQgobravdjb6R(<LGi?XlSt2a<o&<_K$nB=^X%1)Gny1%LlWOz
z$oGKeUh(bKjWb#lUpsN@`jmeU=f8q}K&P+!<vhI`*QR*th*LkG)*@dHt_IqFx)xc4
zp89WNf5d^SyGE9mHsaU(*1fFz2iZXL=Oc^IGylzF-|KqJ__dOM4)JR{pNrf8)+){(
z_-|t=u<4E;F=`Y~3vudnzK8q)_&ABDoBaU6lh%Q&Q#=FjOQdHe@+?pbMCf69(mHSr
zil;G&=eNiYfi1n`N$bEhDW2U)Jbmw{4uCSyi}a**;93+<9dYV%a0&8d;Huv7q<7#v
zjoHVm_*#?r{)@Z|?Cu?3dPnX$S-!_NC(?Bs@(JKX&<p#eb>!lTrzwf&56I7h7kkH(
z){(1GJb~XP{J0^=!@($^)6-2qPSm5cj$FOssVB~QA{Ece8<B4TO-Vf6^y3mdT{v>h
zim#2hb^G8vz#RY}1L$=1pnXW|$h9h-8N{i1mLe|$^}XXs>&Ue$o@V0I_31U_zkt6b
z@pSX~CG3~hk&CUD<-72~1kVA;Q^0hf?bZXH^p2bt6Xy#lzIDW{?ROXQJ)k*>uLt>*
z)}gCaJnh7}8g5bkvLE8?OV9`Cbam686ZT8%&^0QaImD^`x$}|NiqA<r-Sn?Ic)D`v
zS{2{+B))d!&%u}fulUkCbn)v|`}ezqKerHhF*pTiJ9g8bOG;mQhpt}nZ6@wGk&AqL
z4*3P}QW9S```LnTPlwLa823c+#2!wR!)oNwU>p#k2Y#L4N$c1(E1uQFsq66u<eS09
zB%U7Bue6R`tKw-(;_*Gg+&2gVot_@>q;>4t70(Rf)af}H`BZRvuX#E<cClZ`a@U;1
z^D6Qi;IF;r>Fn55E1tqFiSjlcc|ULf(01!Vc}wfq)heEbB%V8w?*{iJ@pRMQ^2&8u
z$IjE3^NSQ;dlFxtM_Km{;y|aX2Yh>V@ER3gors^vMZLWY`ATq2@A&rW;5940R^ry>
z@Jr;c!S_jgJt*(#9X!ucoFAz8W;~W?FHS*T0nP;4&su{lLQnm?@iaGko2RS2LDq-u
z#IK*5A0h7oUjfbk9kK{L^YaAzUfnz+wn6gO{61mtg~*G+DL{lC_(kKpaPy36#j}|>
zbvj=_ei8gRiKm<W19;N9c}A_`i9Mc3Pc`yrFb?!QJ!#!Mqh9f>PU6{sd^6bCE1tA&
zp3$gy+LCz8Czt~Q0nqdGq;>O*X2mmuICZ@{4f%9%Mz46%yLqjOr#XqI75P>0mtOIt
zckkL2PvMh^^h`kBA4~>4w_95G&WPP8>rX=x&mG8{!9Bg=N$cJj)rw~)an_-{Xoo{v
z84m(kK&Pjh{vGuvt$SzGDV|#5tXDj%k^dj&-aEd^BKre=W}bHMb88AIq}@<LfDl5H
zP=wGy5u$+7goGp%DTyHnSfipMixL%;wMIq7m6fa&cl~MX*rTE%SRx`~SwWU{(RK0t
zo@buPy}8_A@O}SyhtKyu=O*NwGiT1soT<-6z-19~+Bv>!k<-TTPN{d~HG;Qn7rq3&
zANV#xUi;gHn8Q1z(UFte7?v|0^y$E4K-#bUa$*kelx9ax9eB!m^cd(Tfxkz{X=nch
z`^6mIDavia?~X>u$$TDjKR{PN=BNE~Vh`^^j+_$kl;u+k`byxM2s!PyTg+jdQsl_l
z0iLU%Jo)!GpuYzWMaXIAxDIxUIjmD^9XSOrgvWK$LC*r_0@7~n9M?%XZ4K*`Mn_(K
zguGWlzYe_p|3+TyVVx4ZUHC=t#qhXp2<TzJNI>SVo#VQ2{$da7uwT$=|G+y0=2UKX
zfxZX0KSEwR<7~)lJ*=yB_&0->^uOOg^Ovv>4v_h2zyHM?&MEbdobli(>+J&2=K;$i
z<g~v&#T?EljgFj#2st}Je+2CLLvmsc=agngPRh&S{0ss;6et3u-P)fY$T@yEr{D$H
zHm}+UIroCTA9(1G$~k^Gr-U3i2f#A~iR5SIE4cp|@B@@6PHn%R#T?ElMUI?e@C<<;
z$+-aZYT%LxIqe)@kw3>A&XqWFwnxZm2K^=Q^&gUR!eN|J>&VM}HJq<AK~Dvy1C+>q
z?a$W<hjB{1BX1LU%lh;z=;wi#BjmN;|6&j08XY;xj<B50pmTs8fXr9ha`1NXit72L
zWfgSye_O*BrP-0Q5Iki&bS>!hKwX5Kw%eg7IkAT?igKr@Pfg${?RF6KVc@3-Iql9*
z?BR<Na^w`g7M61k=$XJA;H2#qd-$RhIdbYF<TQeQ5qR~F$ca6CQA!*+uGho)=>@s~
z=ntH9eqs+_lv+nlRfL=kpl<|j`6F^-4_}meN6xMYIX{E`m1Ml}2l5kp_@XpAa*DuH
z`t>}}6~LkhIqmlA*x|R*?8w;?A?H=luLE!Y5jnBLZ$-JwiGSV<`$1pO1AsxmN&7(?
z;djW9vnoQ)ouKQ1&3{Br?C@JDa^y6Fr!1e}K=Zc{{{S*S?Jl3#;kQ!a$QciwtH6}{
zy@j9`1C<eS+K#`Y+PB!@w^HxOX#h{TuJRG+-N0uNa@vl+W65bV{8pMBd7-z%^2UOm
z0Gt6x`<<-3=<vJXZsB)p!L!z}-=m<P0G^JJ({|h)J6~;t-Ab(^?<jbO9C;nyfsX*`
z0HqVhLs9ZthuuoO!+$#QbogHYdNpuK1pjvXT~yfJ=<weTUb3J25cJ2urxE<y-OojZ
z+szLDl%_EMA)to=BLQijcJq%NX5*r4C;p9)QxEz+;K4sACsvppa^xI{kmG(AYd}B{
z_#^p=5oRkzj+|of41p=N1Is|453Gog({`L4<yTQ*c8SBkA%g!0pmzbEMDTAr4vpd;
zJG@qE9XToQh4V2S^hjVVAnny|IVTRUm3l|s+6Z|KpdSOC`XlmA99}Dpj=ZDbE$dIl
z`^YQM1(5k`w|~bDua#y;&O-2%?ZB^~)t%Ub0Wb)ncE$ot=>+Q|%k3A^hb{`qclj;C
z%dkQ{<hN>iHP(=pU!Lf9^m^^k3OGW)zC%KDL$msyOJ54Ze~fn%gl6?ApmgqvWy?$F
zSL7F0+Kv;t1p3B)1-Gq#$vvVzPe*=ae!m6%Z{Qa|=JyzAN^P#k{QoJpqj1fB!DM=E
z@eR0UAHZwJM{=)fAp`e{{1$x>_M>w_mjLAeB`V*x{iv#@`UE4Vki)+oyrez<0s2|s
zg$Vv__aiO*V~&`L9RA9OVf|A<rvoA2B=nCtQYvxymqhSi4f<lB_T>1-93j;@{2L?q
z?*{!T@WsjTk2x}`cld`s3fpHm=#ju!;3VwR#)!yfp)@*j)<(#=2lQrO%gM=!IU;Iy
z_#cSiukJz&3|PQP<RkV-=sr;o#)Fq^Pv?VP1S~x{{xKJDLJt2e;8g-;sb75&^ee#Y
z5&YX;ziFulF&A!%9saJ5!|OKPLFWMlfV5BB>o!sR+gPxvbL3Qkr>xKGL2m$VijdQe
z`W$nl*x>MQis1hZ=<k6;C&xeL2(iiGU$8q|&J#gT2BrYgPVH##VvY<CIsEG)_-_OK
zDDdRT@o!^9Xsf6MHw%9~3ZAkY;`ZSEPe2MF^U;oSh&duGaQIILuT@}1{#p%s1+Y4T
zf7|217JrI460CCgZwD_q4*VGOCqQ!q|F*|vt@*b#0&H;Pggyz&DFQtT7zao@wO>y3
z$j@e>DEEu<SPP!D_z~G_E9h;&V-a%N9{)w>C-%s%*pYJxJVTBg^Ha2efFGcA;&ES#
zoTw3>{ijNm!@n53q+cxry%?yB;NK3viW>0={&f!j2Jn*Y><-Xx0PjTbZ%6%$8u1DK
z4G#a{XJP)mKo<c00ZQ$RXJU@{njHRB5&YMIz7DwIr1>8|(mUkvZ;Igm9q1o`!za!E
z_z_<40pX_wpNIWtJm}Mb$$+#^+vB?y|A`ve*?+1OIQ;7(_-_OKDDY$i|F*|nE&SUU
z*$Fwtj+~<ra#EWS_W>b5=A#{QPB^lwa^#c{UofS5eFf;NfNM`q&Iw0!b&i}J;3@0H
z*Py=zeu$9Mj(X9?NX|Bi(%{G`_#!N4GU&5_vjIvct{=;nEc%_b65`S1$k_y*vK@H>
z^mgEx2sv%HBN1|9ME-{y{zt(}+ACo%-Uk451SqvTA2A~T;De%`Ob0K?e>vz2fD2ES
ze~ie#z~R3=g8xp?9|3z#mVb=Mzu4iQ@?}{6L7;~MMZihf=LC^|l_RG%LeA}=?*i^U
zSvfHx|2l_%a|HkY5#N2-0|%T`K4L`v4G#Yz@RH?R0=f)XaI*YkM*g;nN|PgJ3wV~`
zN7RnI40;FfW`vx!<Nt{I5NiamMfj`ht8o0^6Ldb%7obG-q3!tpIQ}t507Z_RD)5x`
z`g+he05?a-X;;0DF#;%Y_%}uH{|@vIz~PhSA7cbi>+mnwA1?1npw9%R0n$!wx3dv;
ziZKGHclg&u@c$d=$ARr9%l`x;fJR5oQSg-IknlCyKcFKZ^U<zyh%o|acKA;RuT@}1
z{#pZiC2&y$|F+}*2s_0X0fZhB{<<B!Wc<Ge^k=}{2>xxy<<b0Oj{r&>IiUk#IU_-j
z0VV*_PA4NL)(D`%k+T*&YaM$%0{U;j6A^OSj{lF(Ps|a(UxeKbfoI5(<NgNg06-9+
zMD@Jw_$@+Cj1fS{;a?11(yz_~y%ab<f`7aGD#i$)$l>1rUb4M?9rRnkyAk}`RsUj)
z07@MG!EeL-dxP!^oB~Muw2Obt5rEA?sdeP6ijcDr^sT_{e?U(3NTA-~zbk_Ozd;`b
ze*FXdqelXb4*$aM!hUoX=xM+VK-#HYeiUOQ(CqNv6v6*#(9Zyk5&YYZ&m;Xb<`ybZ
z5D$y`pnM<BM`zGEKo3CXqg`@NFcJtkau!C&Sr2*xaMQ`kIl)Mv$dS_op0a-Y2>J+c
zG(t|h{PzSSff7ef(LclWd?x5ppaQ@ef!&TQ1WoA#>pF4)=YmDc7uDdeS|4{A#M61I
zYT8Wj(d@|G4!*K|X#%|mXa=O*eV{3|xxR9|)MBi1bh1}D>afZIDAih`y~Y7PRa=Fh
z6#NjDI}Y?D;4DDOod%jxbo)k&Q~CL{@RUER@4$1hy0d860z0!)CcCh(vP{vIDM}IV
z#za<|9eMTOC-eCP=tkgWK+1a!G^L~0SK3eczIh?9;{4Xql1pmlvJ(GX4<z1?Oae+J
z&tsNS_g9g>;K8uGNuZ|zGXN=XHfTyGD9__ouI7d2RaPzuudb~MwXDI0F1o~7QJZO-
zVTGctpw*?8G7ml?^x6Ws(hmDT9|ZmdNWFdnO{vZD{$pB=gimBnHes%d6zw8KDc6F+
z7wa6o3J>8N4dhaMvkdh4zzTp8^`p5PT9?a$%KY3OExIgUy{s(%j1@H%tHRb<8WKM(
ztqNVzJ%3_l*<x^tg9dSm7N;~gavLJ#9svCvaPa>_xzm;{iIQw*NokV#{xRIXoC$g%
zuoRHx@n_JKj%*hBpLmye&R<#s1K_iJ{>th_H5J9B<>jI#BsZ|z**3-+*k8oM+y=k=
zg&*X~6)cDQji9D!x;Nm;<(#X`Wu$N)^9H=`&iIzdCkCvL+1XN*uNg1m1G%Y#MvZC^
z{&NWWgz%lpsl#DI=>?1fsEkx#G3cv-eP0PZH-9OfN6)LmZxtm%@2b*r`F-As`SUBP
zyXT)nSwS&%tmRL!-x#aqA94Hf3m%k-3H)Lf&*!i+_*%xg@-mjmk1+h^NtVYua97&J
zneiEOI`!vqURUq6tZ&yoWw}Y*)%^%dK`w4(+G2jDdO0&jW7&0tyUaVE_tZPM@v9cT
z+FGV|)ymXN<8#JLZmK4@BOQ9o$v^TY>reK-u$K*(0?7QY1briL#L2hJf9~Q~`Jdu6
zU&1P_tRR0CVT;#e+oCAS7Q2Nl23|Zke$bp@-N+WFuVs_Eo>4X$wit7S^_R97eL`Cl
zwPg#kNBvX69!HT^**^x47)lzD1xWwx37XP@8-*Y2y7D;xMds&H!&Xs>mYXLO4Ij>m
zx(+u{+LtNESQl>cURuaRb3R(@-_n7FwhQ^S;4kGr0{S`NTR@h_ntvlM0HW(p{~u!N
zv0~YxvdVI}phNUtQ8T|V|Ev|uDnyK%+{`}b@Qh~mSM77#BloKhvcML0GkcI(TbTYJ
z^Vy#rB53^Nb*9wu9Bz0!8X8ZG@0!FlovYk34P>vQOXD56s&UQWhOTpsTlh%;&w%E_
zXCeM)=D4At(suB`%lI~iyLke>_iE(o6Po!w)8FRCQ=0iL)8FGA-sSp--1tAuJizqb
z-1wJf-o{gPD=^NTd^Q}~?fg?gt7cC)!yeB2@#|GKK^soBeZR^B$Pl-fj;2B99h|3+
zvf-qre>mk2+ZNzw)E)$X!n+QEUO-Fv|3{SnTBrRw6ubPXBU?~Wjq*>fW4qN2jMcGs
z#p54*gKg+*E#+!87un|AWf+D}^YX+*Ki9N`TrJ)3`naz7xLY^KY<@Q*198o(CUPC-
z^i9wv89W7a;9<sJVE7gHC&A);EEPi<nK{VmGfCCoVme9>LdXCK^fym4zM1LwF<pG#
z%UmA)R4v_Y%d~V0e`jU6IX8l!O`gb8jAV$wPj$EEV;Ya|pm!zi=_E}{<l1nwK-|UB
z)uhg+x;qE-W@h?K9sfLb390rsAHLDQyi78I@}a7Itg&LPmWei*ilVtultV4-oa>as
z&7dCywgR#oc7Uejx=;9hjB>!Xpk-yHcKe%L%PKBowXB#v{FhP7yPqkCwH)r{2JeDQ
z=&EXj^n8D29Gut#<!)wLk?brWr|Eg2SIW_Fd)WhYA7B6=^_l>hQkOrssTZ{m%c*53
zIcKg5np7*->z%lUveAK5l#r#Pbr`I5;sGM;RQ!UFzX|+{@DuXSt)O27b^ua-(a%Eu
zk~$&3jrM8zyj7xG`o^^Tqq{^?JW=#YKU>OedY+bQrMpz_<9;m;RXLE7?eg;^t-#=!
z?u=xftR>(#=`+-smf`1d)`v{*<rzL>z)XFHakj;(rl`gGWFV9RGbibB-PSNwHwR_w
zmZkaPb&t#NsmWb^y1o!zqMD`|XPyqb->30^s(dip&-icz*-fvCeAgjg(jV>vy%lHx
zWWHYqO=<h46X%<<olwVSZeV2k70O*k*z`$G5m?-!c6qKAXlb66;vG);{}OH=dV=l`
z6arF@vq4kJ{hj{7(PNg-;{s(1^zb_J$qghNT}q@bO^zP*kR$u;M?t>`>;R-52S8K$
z9X~vuTBv6BB(wW~b?6E_Fw2*!@}!Ximvli77hKZoGSEWL(#isT_)=65l+$QFndkA|
z=$k|8GET0FA1X@Y>%vY&{|)zJXMvsrlmSw|6`(0a_hS+96xEY5(y!_oR>`W&N~*RE
zO!?5r(R@Zcs%;*cbkhg9bG1HjF;bxF4I#e~{AEA-KIkui{eYDJ6KG1m(~qBTD^Sa>
zWYlt;VYeKInev0Jf(H%kH0_Ky$Sr{`-C+x}WnB2C(4+X*u-{$=`aa-UK=$Xe|A%=!
z;7wnZt<N)l@!WB$ct+V{{*ua4jD^KdTg6u+SKBRJR)cz%wM}JsaQiXM{`^#YS-lPV
z{lcGc@h)sEpNNKhI7{IN8M{;CCL5xxHwU5{@*1;w8V`88T3tG(8*zrm^d)t+($H~u
z8M=Iz>hrobGP8rLmU*dXH&lx+G3FRPqZ>yI+2toAgLl8ioVeE1t}%zNGgGcLFAgq0
zhQK_Skkqk&2eYSnRt!jFacWXBIuWgd(G@Ll&~0%~oGaiqk^=gVy152T0$PSta~%42
zpIywiGJcK9SMzO*ui{T~#EHCuFW~E#`!=r64;E5Mh`ebNRZSbNrf3(l<;a|7szYq^
zD!~s#xirJ((m#F%9XN(PE`aopp`a<n_Rm(9r)Y}Yw2A$Nzr$D)8)SbjeFuHqul!%C
z@;D;<pp~F;*x1cyYHnRM#`6LMCEkQAxbWOW6V`<8*Dzkq?`5n=^UEGF_>s_e6ZDbe
z$tKWyfUg1RN9;HJ9{BY-(f-Nt{*GZ`KU!9?vKZ3~IF=?o2!7N(f6+3UUWstDGK8+x
z^Ouw^pk6Aus1osO=i!u>sfb<!7)9hL>v%TL(cE17GfOmsn_1v?W^QEZ)T`(5OX)Ec
zQA1D-Aj>&q$0jEq(@9T!r~Ydp=o(-(Ankq~XiAUA?7yn2y64ZYuCUErRLh`Px~<r=
zOt}N$sEcPpuWU5m3CvA3@mi+!6g9GLm#||K_{(<l3()(31CC6xW%T@vFbl~&XHj|0
zLNW*pk*xd$pw!^-%~i}6zNdmN0!9OrPRzHsx}pp-T$MCf5WFA3v&rFG8^N~@^hV&%
z?czHY1qhZmG3bkrM^Sw>1a=5CEt98sJ*M03;VHTi^l*Q`Z7Yh8s*i=8T$pbv#CIyE
zRM6dld_el!Fwmy~jdu%wljHc&t;Qj?-JCISaw7)t&oS1>=00cFjEA}MA<ub=UHA;^
z_7665J9$ktf<cz6*@N^Pej)3|XVQ-`KHDwys)x)1N3W+qzY4qwNWDG*eE|5?iNB;?
zQ)BDZGAfOw-9Dc4f9%2+Shwfd%x6!i9sGNb(65l2O0lEg7|@e}settF3qe!rvQOA;
z%iqM4{A_F$)z10k2aW7o*vf;VThEoB;L-@&RhJeCOVy3ex^8qw&)kQ`{MmdWKZSSa
zr%?CY{E5(K2jmq&9+l%x(4PTc0#cvfKvSyODD;So7mHieX<&cC+zYAmSEj5}vw3nv
zh$2E27au|<TB@C5SGc-Qh5Yddp`;&813ecg2c-Nppec>MQ^;?q58Go(*dFz8o4aiV
z_A+H76d-%(utyjHUIa^Y5tb<8lX!P(Lu)@1dhCK6smDIhM*wsSEq;>&x;G&8*zD->
zc!b}KsjjZ9wu`5pZH79mo_X&^rhny&Ut<NYvz*tM`8vLDQ7Lu`$8cnz%$wALjcU$K
zs(B;X=Pa!YKa2ER%nLAy<xI-J4ke!peQTjh5x!Hotp|Mza62IF_B3cppFAn-b-W)5
zH)?X+2tmu=9kU5His3$e!|tP$Gz&dk7=g&RI}vmy&>4_=3;|7P-@R>>AL&ug9&n0p
z2U9+2ReYk@GDWfFq1ZaxU0=Z$LjGFtF9LtE!!4lef%^d||3%Q0+P1?IyJ2lazbq;g
zEb&YGEm5#n=n*u+?M?>h9H1v4^%xGCQgK`L$W{X*kHs5oH@+4VC|X9VdeoQd&skb8
zyZ$sfa_hiX`t7HnzX$#e$o8%SCX#3}$>r3a?asW!mWY0TK}C(TQZ5%a<n!#(B`YfO
z#r7EaGx?+dAYXo2yl5FFH#z2Fmv5t~*lL=C{gu!4Xx`1}TQI_lbolfeRBfYb7=84<
zybl%Uc&&sFWvP_2xtgZpPny0IcCCW$GJoqq-v!(U$o%~S^z%TMn}mPK_UWaFdRbLk
zy}V-Cilrimsi~}-SX#Y+VgxOCEeo(<GLQzKSKzNP<vlHlCmXt}gP9ia$8(-;rNpIE
zb$Wr(=REFbGnD#$LcgF3_C>jp|BVHGE-)XE`uz#?-9X|qLcb$ViKp^VIPS{rLH*#0
zWs8?pu3ScETF}o`%wJMbR?}i%Q4q8*W62`h(9P^YZjZ_SCm!WAJNGN^?oqwJ>B<jU
z_uD+`tsc+wYTldbi1*bR*X7Kta4j}Zdt3FrrIzj>Q?J&R@>OiPHc@|{@y>>y>R5M7
zihHy?b%asFGfc}hlU1<A#%XS!HAOWwlm3gHn!a}O?>1ZF<j$b`1LFXh|NB9|0gV1!
z<h#aset#@F|MN=A&#tJRhhoX9=Rd1=b5_r9ci+t^Ti?-W;w5zZE)5yP($y9EaBhC8
zj@zrIf2?+CR^zzum!SUl)Zk-1vc6GQy0Z7HolV!LYUrqH^5D<vv&>w&KT-d8P&;g?
zKU&5?^<j2c9sMKzYsL@ifPns~T4FAAm76O*A<NvscqKoZ*Ra2H?M<d{Wv(ljc`vgj
zyYFINKbm8ExG|QGW9eEK%$@5zXl7X}dA6sgKjcgH&tWBOsjBN(^$8g953{(@i7R<V
zhrvlDY+<0B%?M(q-HqW3)o79Geh~JYZiVf+81x0eg@9~F)`6xJdt6F>gh*i|W|v{d
zgn~i6SwU)V^6RC_Ry`Z>T_<K4K9eH?Qif@{=;UNNDCF+~{}lX;{P{c3{{oHzQa<8B
z`!Cv#gCW0QmAGcUmQ`LxLBVxQc>z;cK8)gAh)4#~q#$|H0&b58h+&;0e>(U}`O83G
z2wVn8`5%F%6upiZj>ADs2+yuojltBw{W|6b5GonUdpd@aos4XhS)$%Y%``ivCl_Uz
z{Zsq#cs)+-<l(8Et;C`PSCV1sJ~he1i;}HiQ9#eJxSwZg@jWf>(=jJ#3{yKXp5*66
zX*!kSB<*pXJg5G!uw%#@ZWsE4E&|2?G9Sx9Q<@la9>^)jv0^mOlS^h}`So%>mvZqN
zS2odr*f3C>LpiiGOy1Wt6MYG0@RWed;;LKos~F$#Q&d~G3ayTlZj?etgnm09U-sLd
zfj$Tv0c5?+@tH~=U|&?bnj6t?h;|G1ruF_M6|1NNXk>rpb`bwxbf={5lbZ63k!z?t
znY(V)d*7>j^qv?P_IOAi`G_9;t3JiGV56>bPol4b&Xe!d&0DBLxS#RQInO1nPs1eA
zB5kA^)TXcnY#@f}l$Da7L_XF+#}K}gzupP@A>a`}+W8aElzzRXb^p-HU&2v-$xs-2
zhcNU5s?tn`?r5lb2eqSVq^q6N%#^}p?st1E3?_559L#tYCRjmCXp<9+(LR!f4jvWy
z75Kyb*J#kQfl@%)c^A<E^bbzExbHKe=g!^H?ISd%IUE{uXVt5(YIm!wUfsy;$J^H3
zu*$D|XPmOmJcX-8hUy*^$GzX^H?tpf_g8x7Lppb*nB5WE=|Af)GuIEy9Cuhx_)-5q
z=E}Lk;I6@D5BlYmM)o?xy4JXzeWvT5>d)Z;ZpIci#y7HLgm2jCr|SLnKJHWE`00au
zr<4uQztTJGqZ0c&(=O&soKI)(GCo(onrRPmEL`5iv{`(#+TFOG>)nkknvAR9H#6qe
zI;#_nml+S4LDzJ3zA?_7V9hb-S~;Fdf40x^U&KQJJvc`#_3YLR^gK>uc}O|kF3+{F
zne^YgKtBOI3rM?mLT^3<*w-lRIrUlbyyNv4c6H9^lK&oJYZ>Od4zZWr_M^i=+l%uM
z$b4WayUo0(4DDGXiFfm=Jpw$N>D|>HXi<CXh;TronMm!%c^r>>(a76jOnk>^WIGM_
z`^K5BP@|zgXUs8Y>^3@oY`n%?rMuB@bki~||G<!u$gSrMTqX|t%;p35+l*K7J2-}9
z+GMkwU(3kp^AH++#f&_CqH86e;C6e@<RPDq&Sr+Evo(h;W~KTq%!|&6nKZ<+Q>`KF
zwH>wy;U`p2-Uj^@@Gn5xYjB*YOaj(CF6>nEfOzH|XD=+7lr1bS#loSmS3lcM&lvWD
zj7N@m6@m!wKrCJFFq8*e*?g!g_c~L%-i-GKtawfP*o;4A++WP}hs?>3m{{-R=0j$v
z!A#y}mYPqnb!P6h=4scPzU$0Ix0xOOY?`%{pI&?f|36OQ&fhpDb9&Ryu41ssKuq?I
zGt<#K5AlXP$=*^no6RtD{ipeS{<E>5?KM02?G79HueXFf8j)Ao&wLCzBi>Xx0kYjV
z4>Tq16JdvxPSJj|uyk4Zk_xdU+OCv!X!tg8R>yaVM~CCT{4er1_eXxgf3}CuZe_n~
zI1ji+1QSxQENS^Nb2El$K|YH2#8O?7J|@^gXQ;eq@+d6hjly6tNe?B^Z~D>yawn0y
zEar3INsD=!p2~~aVpp1(iroZ@tu%K$uVvP7_h|gD;()NnF61|a{E~ls4>~!)RC)l?
zKVAjBAK17@*kiNPPOWXV&QJYT70n8as9r$c(Xw)Ik61w1h(%=9%s#g4$3Xk@bP>5?
z!Z^;=%jB+yRfKro`jj2+d@LJu)q)+dpm~=U!JYS`u36lFmzUq}b!Vx0Rr7L<>9f*3
zJ}q9YS#PNS!2EO9S*gXt_%L3GI3u8@oT-oRGwz~bkASZrt@nklkZI*6cS{_aJmkDC
z9XopyJ0(;WCJ*$cr==wpB@aJ$bn>XUyyTvhDapy+{vG>yLupw7_edU>rSncM3rnq7
zpVYINkDB@hrUm$)ncBxF;@5C~3BQ`Duen)&ej}sEW+S87aJ3ib>|quC2l69QV~Vi%
z_{8vd@e<H~1Kt9py|*V}ERk#~>$?fR(>9A|?paupK??U@w!Q7~L0iLyQKid9l$X<D
zbEi7<XMKao>dfupaoBBtyDr{-yl2^u=hEy)E!%)9_A5Uf<xzp^+(>o$iyVA=#RT<w
zhH}^%ti|1^t2gL=Zzn$B3%9o4o%tk7MSK^~dhtRneuGQf=<<8ZuvujuJJq#>r*ycL
zsl!9w=R7&h9-r$X^9&yMg(q~tqkrw$%U|$Je9dzMd(&gR=*fB8{{2KA_mSrr<_hh0
z>mR$HXD@k1yx}>m$&>Jo=WB*R4)0WB@y^@0{y0y0jO%wXtIT`5HKxJp#`TA+#AmHP
zvxKQ=ko`|s6JD@JKW$xRZep(Nzgzm#)-7zS<xBEDZwcm?+9FELtJq!E&^xUgSiMzv
zt5vwg(jT<uo2PBI67I9UU{`oLHLL2Us-JtW@;t}ZdL~}uc}v~sDf}C=ZsFF0Tz!NW
z^8r_SwKZOg$N%ifKIZAibAR)!KI+kUPEZddeaEa}7Wckob^FlrrC-U?kV)?S!W#F3
zl?VqqXkE)(8HX+XN2>(N9I|wl_)lx8E41Izzp@tYvV0#o8h^r?tf3!S_p?td-yZA2
zI&a`VY}9~M?n_XUjIZ3a{0F!DpYEsF5jPgwgN3Pjx~2K~uxveZSVo|W!AE!1dyMX`
z=NY`Xm)^IyPf+d8l075%>AV*zP=Xp@`aAALZ<0q}&v`ej1YvUmpUV5`!(98Adz0#&
z<N1vFA7H*Gh}^`zE3|8wS;x$k@vm}@Eg8p{=Y8fc_cd{EwKcB8GtB!2^S;77tNhh*
z1I%XTnwWSOPy1Q*U*@}lW!}OvZscIJpZV`+@iP(%)N5IAmFK?<D>Yr!0!-GY0J&Np
zJQ2NXr{a04dV%>4b1fnzPsixB!qD_a=F-eR=~j+=KSP(GdzYc74EpD&^W77JH!$=;
zIdNaH#AgtGbkLLLsAX{@Qcg=wNIB2EB(RQk9Fv-to|v|tXHLi%oqieL#CUd=9=e5P
zrFIHs>z(HCP-neMsrxFHIyC17*0nIVu$!JcpP$w}p~rdZ%C4RA)SeylpJTly7F^5t
zGYla`@15)vZ9sZq_P|+%s|QvL?l$OWHgw#O2iP$DkBs4ZQ3<<>otipysSz5Xk6bvy
zH##&*A3eu?>7b!w??>!4_QEljv+=cjocpw=*o0q<L^~qN#3wWTfMs^W8hH@tf^Xw2
zrKm`>GYu)>__Go8JHW?)Y-bWuO(h+Oo<G?h(XOLCA6s3y)M?Y@V&_}zGHM-OqgDa?
zL0|DvSl@@6SGxUM-3C*=X>L#F&^E93sMqo)`m9cR9CqHN^Im2=_hqQ2?(eVnvnTQ&
zW!jT=fU^WsE0a-tVAnW8=)VxU$vE#~(3^le0ohMK1)5UyIEC6rd)^0HV>|skxz}bB
z+dzA5vh2@p_Gd`UxZTH<8~r(2qUFa(uNO9cWNTf~hG(Z@M*_`TZ?#oCG*alLbTpOm
zkW2k#2hiPtd_d|o9yFyjZ;1Y~_5Ks;Cou;VR;=U{j5}^&_y_?AgJIcQx$>;PC;E|0
zmQF)Fjxj0ks%LxbX@l#SwmM?}NpQ5#s~&QLj$TiIeg${~kmdae=>0(S{K0`%>&c`a
z=3|8Is3UJ+&x*~J|Az-Dcc-fC^5^``H||Ma(i6Tq{wPKEtFaov{S<rTU}_{uo1pr%
zv)S1+UqXE*rG_y=&+%ztJ?DU~1Zn`O=T)FL0MUAmKW_ZFbkXwV*a_-*XDmhc`E&ly
zH|_;r((_RC+4d<~JWl9&2s#u%Zz^Xk-BdaN`GC~(=?uiuKwYxvpIs^9xjrSjpDwQ~
zmg^;1jp~-f=Tz3H{>T3u%=Ih3h9Opd*Nu-~R5QhOST#MaXM@Ti|40`WxxKneWoZW1
zg}p|+w#^^^7Z};kX&aUiZ*VM-W0RPMO><Z+rbSnRPmM3a7**wQrExr7(???uQ_dKp
zYo{UIcn^*ZVI0xrfK!4lx8>n+hRblj5y*Z$VEmWqZ}~223M6Z8O_$69YSLhyjf#Nn
zWpRByx~nf*oN2EG&b%TR;@Z=}_)|cs#!{|d8=O!VbZ-d0$8HG*-_~51lDj4|>t;-}
zx-xDIo^eC4%)DfOqUWo`>zM0L%+&E`mk0N<Cj)0PG#=d4&fwV{3$dfEgU7`a(#Apq
z+5+J7d2;o~0z25cfX@@(bG*jAZfrc$xI5XCum8{gGJD(a>!l~a7#`h^Pp-x31~v?s
zK2=Y3o2o1OOW%#`6Q8=r7d+teeeH|4>ATq4pm|NuJRC54nlA_Z>jKz*_CLS*w%<%M
z`<TD^%zZu#J!#{>dz`=T;Wd0NznrOK`4vn<$XCydOE6gTtaJMxWqb<4oJGz;eLQ<b
z)3Q~Mc9D9J8)xcWT=D!&_X_U>kK6wq^96%09*oOMq~^cF8A)aA5`?|ip|eU3rp)r`
zn7vt{F4dn_JMLhqx3Kh=S=w5bc_YhEGlLmEZ2DC*uVrp*e_+tpGTnZ|Of*yd>1JAo
zOfv%mo6rp5zYUq;xc)`ZZvlG%>Az-{sl)+8o%PTfXTRL^i1uI1^Em#C)&RSeA5nj^
zmnj-)Vs;P4o33=_?YKhC^7cUZknp5NbFl|AI%#f|YiSP!Lk&TFTX5NDiRM#UJhi9u
zv`hIn_P)MG3YCNEcx<oJjb#|FrP~d~ETMlDbPGB4?<&wY1GfQE|EEE}0^D)GXlEOp
z@vG~&cEZtLEcZ0AH~2fW7h~2tc5}8vRlbkI25}4#^11){VD^rn_toIVF9faUgIBR<
zgV4B0yOCjg5g$t9&Z`j;FfWEvmKIViZ5Fk8c50d}^bUo>>ry>I4*&)OvVWKkno@zY
zz8h>1`cuC(c6ph-H8`t@|DC^sap5t(k1I#mKzqm4bky|lO7AHc37<+DP1aWOv-n6N
zDHY9e${%tH@txYQM$m5ndjM&_??4|0f>GxUY9iK8aPVMx_x!UeX#YAUmFHkm+27lO
zRvB-wK5w!vZ!rIxu;Kxp@h<PPlXrQa``^Q~y^@Q`AUra7AM6Y9iyolK(W@vs+^<gs
zeI8H=Nc-FXn$m%rg<YC&4cjNIkK9^Q&nDbW%dPY5&y841B=z=k<&eGW!_T{_KC26N
zTVA6;&!vMaCU(AZOgSmaC79}8(o%j!CBkmIAYaZ8d;|J>;E<ye*)I0{H`z(<1L+A3
zdSWdaF$6|K9y>SKKjH8%>J;w(rhuLYEC6KwF9J=ez^RvV-A;`ANDfx*WcKS=xgE)z
zMv=@h{w`A<z!EcU$ci%(ux+<Dk0-zA!G~Z4H;<~HQd}zXxdU=!ywD8#JK!K7_4prX
zO40prSdXPEme-JPILagx=i9fwnNVc4@`6g!{<@K@cB6&Z98BSO>_vwrNB;QEVLQ(O
zT>&ftr2LhjDYb3yY0Ii3q+>U|3zBCl??Ezlox=w4SRPdRVC92270eU)ZUkRhzVCwG
z1$+WXx!;4PG~4mJ<NdFKR{N<!RL!cS%&t(H)eP=-*7XOGw8>hQD%dCuj@+UyVY%mk
zo(n7jWPMx#`ck08nXi^|*Bn<LZTaDu>#B_miyX&z_8V;In{2vrK+S$v9lBGUMD;F@
zm+&m|am>WwcSu!bPWeMt5x!IV@G<DGfNue52c@gXz~<XT{c9b^k{?d3TwGx<p;z5Q
z+b~lq$pt@Q${}@NycNifw+t7ip^~ux5F}NmYJK@c+XYDtrMO(^F&=WHA5H_k5LoKS
zCfmFe)jpB`Em}UM3iqd@47AXkEEe*I0Tpl%?@=wDn>hF5MkEl>1KvP~fGrds&5qn1
z5pq8S{VDJTAoKqXXiBl<FRQGP3M3Tt>`i_*R@td#BVflLb>V4v6jX@(7375bvC}}$
z1<C;_=Tgv=qR+jGdL})*I~IgX%bl&9I5}{U9Kc{m(@#`>Y+v{Z%k4hz2&__NYUu$3
zyEp@=21ztPE}^qCcq#?+g<egNE5}!?8}=*!rGWIu&q4nPXwQlA*IpIRg{}J6uzqK?
z)WudOO2)2OvP8C4O>CUq_1-6X;FrbYU1tBVm;ISez49^M|6yirW!Voi-&V#SW{LKv
zpz*o*Vdmb-ny`|4CELoX9%klNoOQbeGx3OA6X=}C+gf%49TRz7<31dnaMKx)9cU8h
zh{!LR#|Ys^{$TfSRQLC4hGQnLtI+JJ1+0EF3S=r8tRzg+7rHTx9MHc}6R_908_&=}
zuV8zX&U^Us^UMzB9@X5fnq6U7Y&~6s4X0R``%dNQWb*#l!I_P7C7dS$^z^aCh>Mz3
z?MkLrVLdAj<q<khlt)Q!xP7=7^fkb(fGm%{f_@x`UjHm_)jovFqgCseTu_R>yGw7X
zp}p+BJI(I9vz2|Yn)#02=RG~`UERM6hjQZSkVBz1pIVJx=)u#_gJ)wOo1>@FJ=|`@
zgU$wW0O`-Cfu=Oui6`YgJMw4jGo6A6XG%@W;fqi0?bG+sjKVQ~ud37<`Mfu5*wIBJ
z7!5-J`bW?BWK+Auw3m$sVY>Tf3>oakq;`q0-zLbF{=5bBQ@}HT)aygglw!>nh`6F<
z|7Z=ikH!Oe!^vJBqEj`pHNWLUdzN8uB6aHlcc$3weu*|&gb*c5g&v_E*mDCp)UFNy
zJsOw*NIjN<rWAW0E48ar7B8xj%}a7g8Kwn#0~2uu_ZYu|E3X^bsMI(CWY9RrWk3-v
zDb37G?~q5GkZNzj?}1Y{@i;TshxN2;J=*<cLcd1HFL3mG7xbsVUO?*i3usC^oc>Sl
zs|ok}HL~3=zLTNH4^F1Cdxt5<j9l*Pm>h_QYH8SUr@MNjdB`~9_;6k*X99{Ug&yO3
zhTFw+K+gjf08)>Ypee;_7qRE4VwG%Fs>Y)88Etny*n{{Nvop_y!z8M`tOWAp^SQl!
zN;%}nZ3JKGC+~ya3w#Yox$Zn6cfGUE@A!VNta91%6-(`{#wGJnGQ)sOyL51LsL@0d
z%;Sw5H=Q6#R5RRayx9Q(320B8eHNkzCYgruaZXp*TqW!=9dbj+FZs<v(93~UfYj@1
z(3FZ|o-ZT6sj8@0OkqjM*-$72GfBtzdZz3%DG;-a!Ky7hhj+z^1W&jht~y`H-v$2C
zZ@&foZ{TM@$~Sun`EC0xdc`r5$C3s`g{VE<hEs5Kp>o9Rq$L|}oLzDv!DMVtKuqn(
zEe78Z@<sWc2YL~(6p(T+0Zl3PIzHvQw5+V6%DxAnWE9R#9piJ9wXX2t9XtFRuBA8u
zS#h<<?+);l<D=c6zXc8gQZCOIawj_bD1&Q6{}-+Ym5ZHiOW5E)!S219(UnmxeG@Z^
zF5!pqYQA+3<MA~4REcn?0!v%T6qDC47kU&!j*LgkL9Yd_1Ed~rfTk4P?uYfDL8G(r
z2gljIv|H2{?N7fr)rJEqqlkK#VN=dA{*kV1ap8P4{$ZlW7~={i8gXtqe30nj-LO3-
zkLR-4Rv<ZmJxu<VpY(FM-Tpv8j3@5myeqq$J_bAOOYH?BKcU{?`qdBg2w*HA^Ro~%
zrMBB)jBiGkF1PDfExX*#$OOB8_?{_8ptyz(d!V8EQ(UPXRDYb$?q6MrCimNCC1%s~
zjHOhq6#6tko^0=40sS8E5g_&X1~jE2XS{iQdq?&SPuNzirC_(h4!JjQ<u-RNH@!Wz
z(|vw)T%E}}<7ljfm1vMiwX1|4g$3bqo(OstPy$FjszFmaaXHIIubx%eBi;+efERng
zA9qucCTTqo<s_;rsOjs0IeH!t-IG$cTIkUTIkNrR4SGND9U%4i4K$^;%g6RN6cElQ
z%wMz$^*y=d37WuOV7GzKais~W6d0Xdr?@)n{W05UZ(JSD|Hk+jM;Y*Mx=`p-+$UWB
z%Rtuvs{yIcL!c?W>CEp0AB?Vtqz^WJks{4(vudv`e}>%x<m>n25-*gHAAaoTgRlfP
zfcFj#z-OY13>B}IyE`Qhc6H@hE=%u{YHK<ei@NjJ0PSvu4P#lXFI&d?80l29cDhvP
zjhRp-gdb45l@7WW&=-(;mw={}_k_^*rI>n8!xD>7{I9gXp_yF;{Ymi;bmehND&9kL
zyE+&>ZM8#EZTBf=AKu%tJpFu*+7B|?VADy<VkxZHsADW0&3tpM(04oZk?qXepqqiO
z0I9FL-|zXKeZ(w0==)4XJ@^Y%27HjpxIFx@g|jwVfvYo+XXI&lt~@PM>tmeWt%RTM
zE8$~B{aBCanw@8(v-F6fHA2r4=pp@cHRyG~20-fhC}>KXKN5C*d{?wT;L<(XlxAyc
z@6Tx9uc_NOYv5SJ!1UBH-k>YnJp;Agh!k8}Ki3#M3leZL-MEJ7{dm5f@5!O|x)@Ww
zW&BiZJzt7NynHoZwWPMVC*f+LZ?Jz@-(1kcfzg1}_d?K=b~^j8W5yE~R8-fr?D@le
z7V0+IOMM-)AN^_J<ru$SSN3_R_0xG*V+0Olcf>xl6zz1I3Tdg@05hIhzBFcK_JWUO
zs%gn)z}^oul)uffWr2@nX<_|quNC??K|g8luR;F@_!W@)Ck+t#7dr7!WIQk8W~zU!
zHUi!&HUehSw)$iIORhZN6|MFdyBc=IWgESCC!akpF&n4$3M1zQ4y_Y<Eri?<>_+wL
za?o|a&4ASFY0#8n@1vx+0C5`GH9S*N%O13Qlj}u4xQi<<L@4IN2Fe6iqEFW>W3tE8
z5^yLvp6oT77x72!H9(SAyxuAIQ^NHr7xZx83_y<8t^)mMpvsxwmF?E%R^v6&^ZXT+
zH5KJyHJjK*F*1HhJo<~EVmi(|{mR&4j=Kr=LvKI#rT8`XN1kq<crs`_U|FuIDEJ(;
zi!c3a&*Dap&oEs96SJMxq&)0konUtfC43q?PwU9;VQic+i|XTa-i`gr_+sbMgAF2o
zhoHNhmx&u_DqVpdfXv@{pjQCV^Mh+!%@0ui7FMhh6BiV+;LGSm3+!u~l1tW8w?W}^
zIdG=keQd_^qK`socebh}bm1K9RDE<UkdI|6SFWDPQ?L=&-Gz6@XKuRg<|)~rI_g>Y
z%uG-dDX{Iqv5kADU1CFd5=+CSO!H8j95|IHp#CJVK1xHK$mcHPLAHzk1pPn2Qy9)?
z9_WEUfwRsa{eR<e<%q0>3$cOSfzzm{#DlikwV)64;2iMv3>)N>W5^)xP<Y?#`Ow>u
zdkpPU@AYi2Hx7ps<F&!5b`CB?y*QIH(}#OlcYZy?HUV-!rQk-PcO7&J;XBoj`#?Vr
zyaUMcxn~gaH5l{PbF1jjl<)V7=fw5m**bolY@bx^RHtt=Ht4KQ-)h;9Lkad{+6HKH
zjBn#U%|8R!+(~)VKNw?AkLkiWAeXCq(#7SuH~6(%{8_HSclx!v{E6`vZ3Hs<p#=?~
zJMC)T$~^J8H?je~U~xdt^<x9=iax#`*f5D(Dtck3m*z+JyaG#%D@>m@M%DGJut{TF
zug+NodA%<!nnGJE`KU1+`uFO01q=2Hq<aT@?qG>|3F*@(of8W6%DR%J=cT2WteRWp
z8fm6tb>_0%?%mQ0dkwsq<@M;9K2dNOer9}1kK{l?A;!>&m?ID2HlPsW)Z8zi2xUB<
zjqNVO`CxvG@rRhF+D|j5{k6d?7wg)kd@MG~470zb*q_-LVyF13{inJn@;4ZtiKQ6K
z1WmxK0hp|$WuxKzM~0tnLG(lSaV)_9Ih~&|q@RCqLBR-!-G)_8bq2Prz^X`xHjDCI
zh_aL8u?s=312zD%{ksn|rI52<GsTIIs9fzC;_>!2MVhF_B7T|ei|?RAp@Q7Wl`DeT
zn9Rt;w!!)Q6x_Vffh^DidrwE<2h?j6Kj5?jkW&ab<Y#<{srZ2eK<d#4G^HcXe%qaY
zkM57lE2p4`AU&#X<_H%8cC_#+SMCVn6cFwzN#pTqniasUCKfi>W@1;hJz+dq8wrz*
z<XvepO{srS=u-=MvR%3X^d{gAK<ZNuno_KJ+XYK1=jG?)T|H%epbnjqaA664s&WN@
zMXRp%Lctax=K%OfIX@H6p_qFEq#PIM-<Q+3Mb0tEII4%`lsIyV!AF+!0?^gKN<hlF
z1~jF%$K7_I(~_&?qPZA+cNtFQjO{dsaiT2)p-mqg(8ob~D&zC)%LsxGiF`IW{Hc6*
zgZ>uy1(5Q6rwaKk=f)%MwGjuzc`|N1W5titWRSQHuly5s!5$X(3G1{6{-%}Jn?v}J
zd(60d%{Uf!H}yG%`~xu^trYx4=rJ8~WIMbB^m1S&AoaKqG^ObAQN%rY<oW=aytvH1
z9qv*^yOeH+>l(fhu)&eH1N@}C-Jrh$z6GSbA3#%T^M1InwB+Lc$okos2fG*Z(F!&U
zVVkCw!;+ABrQ~6ezrtZ*d1r#24x9@}d8ME!{Z9Vm1TR&m;>#w}y?pmTB!Kzm(~wQ7
zE0ls;h1>@4mHB)X^n1WZfRwujG^G>fvz64b$m|$9vzTww0HspP6qyB|Mn`TgrhlZ|
zVW7tV696f9B4|p#li%gbOD~|QfHq6C=&vH5o4`-X+Y0(A;2A*5YXnW{g!v3h8-+}^
z^#&`OPqQP}RTOR~dVwwg`U8}xFOF`95S8NgzMA~<iqi5Wi<VW4Syfh1QC?AQpCQh-
zKk<i2O0Alt?7&lbMC7juJY_p^E9l#RyCUR7-|ui@Ia3!ct*Bf<RRy<<sCXj~o+1Su
zdCd{>+#^iI3j_g5l&_PNSFyCJvbwZ-b&JF|9f=`FUNLyfamX^z=L0Ju<n4;Oze46O
zw+C3)tR7Xfs(b!u$EFaHjBF(<yPeAzpl^{QXFGVxcKtoj9{?Xm$Z4y*TFI%j!zBwc
zEM+h4c)+;8;h!=x?1z0o_Xi3AN@Ta1>qY-4+tXP2fEVCDyTRVAe2XWg5{LgP@RD}A
z3G^+%Z4vz2V<%_RxFg}PEuqTczYDx%JvsvVKfr$@_(!kD$I`zg44#WD%taR)hs$G<
zv?LSm+~mk98Wk>wNubXJrU8^rRBxtE9z7ZVBNd!el}7<59dh{AgNL-w<Dg#xUIS!1
z@HuEo{qGUw@c8@UDf4m8qMC)HN|%*Y&_T+qM*bmxj<ZI7=5r|KTJ>F3d0Xv`Qx)O@
zq&Yl`U!o48c78B_kI}dzi-LBfrUp@O3r2_I^a-G60&@YW&t;$~9eGpek@!JteX6P}
zt4bGO!K_6o=MD(g$R1-f#I98vRa|A4!#f#0a3xcm%V&($Qp~}6Zf1@r#jAI>XD#|+
z8sl7SQ%mGC_((O8I$=B2Ju38Uf*v9KgyMj2K>rgs?C3`2F}n@F#a`QrWi>)MR6-c7
zk&#MFxfjP2x!>|k4F)_xH4ewBX}z=fF(GgKn6SKaK`#N$2c%v81e#L$E5aV5o%Lr~
zPSq7lD=(-RwQ$iA`&e`xTegAr_l~5+@LKhKro7;sJx}7Mk%}2WT7ej3;to5Mz19sE
z)Q#YA2#5+E7y9gS<Wc?)fIbNP3y}K!&-uNqxAH0Vp;#!t0NGCnb<T1@g<&|1oq<C-
z_LX6|bUluppDIV*__1OCF9W>{SPn>eSAnL~@Q}!V$y2TUBDV*EYIvz=_(X%0Ts0T*
z^+e1~*Q#$ZWj)q*aU=kfE^dz7k|^f`wC>nX+z+K+^n_FHkR$8+x1j$G`~pZlT;qfu
z-#dD2a-K5Zt@IELS90-6^qv6(C$;KB3^z06Lk+km3sQ7)Dz2{!;q;&5fQKACrbCX@
zV+H8TfHi>BV?Ag}GG37TV`A#j(g5Lti7V|3CTdj#!&_mH6;xSQ;Si!Dzy3+5{J}p2
z{#5?|2JIb>{gHr_KLRwRmz?^kq*dA9W6BprLk&m+|C5+|yc=_mn1alt8OU1oUz)OA
zABbIA>AVBhs^WO6Yqr*1?dnSAaou=cN1kg20zNI<?1(9jpgWVaJx9Zhj$<((I*oTT
zhq(ID6u+W`o)-FVf__E#PWnFr`Yqr+K<cke5c-e)QutAEPHX+C-HYfyv+C3X+6I-?
zsk@o|cv3t*!Gp^6a^%98#PhB7j0c&4tq$iIG@t56L1Tw{GPWA~tSgy`1B{so{oIqa
zDdc{0v?mzHa#&AXJcO}bC$)wTVwduf+GtNt*GM}<1<#87lt5qEj$aD;a^NZ_57Zv@
zkJ=X$E{7V#Hr3JbKn`@yQC`8$jcoieQi&s{2|T6WeGmF4;J-kN-A-%mcMF|$@mTW0
zZg+^?i!(E1sF%3%Hm>5ifs@~j;^**sF_qZxoXBS}_=lhmmD>`~D}jpvDgQ3el={CY
z%I(OG=yo8S-xjw^uDTcv0WDJ1s#oGRCEVHP!MqpUH-n4uG!t$X?{ee#v76_)ds0;#
zqoGb>ERMTpM9pYy6#5;7{36IF{XD1Rd?3&TpfaF)kVk@^1U%!cbEG)!lxyJe{w3p%
z<l?Vruy`2;5ojkp9lQq^j_Qn6wqWtxZ3K4vX%q2Hxyi=6>_fl)u|HF{E5Ixb)0CO^
z?1VB5^EW~D0Jab_EIA_;zaaFjhc2=_p8@>}@CG35xf3)c*^V4vo)^&FC$|5D%d?q1
zg@cS#o*y&ib*TA}J$!wDq0-vbP$_s($PY~n`|S|WV}a8FDSrlNN_A1^(!>4~mfvEp
zk~x?lJp&V@wd&irrv&ojjbXS$C7pzyt@UH}6-zc><t3rV7Do=1+Y6vy1Kt9p9`8E8
zm;IQ0N<G4HP|MUpLh-2>RoAN1m7Rbx((cnr9C;~cg#CCR=yAYAK+2mBn$i*H9I2~!
zYyXIfb6SLE9pb;SgPa}WXCAbh&R@8)RvV~w(bDz7Jfwwm-1vm?=NP7uF~;Hc#}U-O
zV3MsLH)vK%q~@1}T^b!d$S$9N{u1~aka~XS{9f8aJ|pcS+sPIs!<M<tXt9itTl9*M
zTR2JNpX5#jJqwr%NV$ug-%EM&*`{23YN@3}He**%j)*lxxzsyy8yvnQ_f63610MlW
z?jGm&Ql5OaDYqZRI4yFwM(0;~Rpd8!ayY-IfF28+14y|w&hMo>`IK^7%`N?hnv2uy
zIft2_;Y8A>Ea@|L+NWqzwV99e;b-^YIlEc!ue7B7THMDhjwMb@e2j)=g}l*jcTp5|
zJDl=|T-mRD4*CG_PeAJRBWOy|>)%qZR`HH>1Tsm<jJd9o0On(^#H<K_dwTm}3?F*U
zDgWZI+^L|?1?B-#?tIXc+HMyj;yu|gB$Ui_gsy>50N0U(AQY*=k-G(agZOT@1E609
zUUOto8(!3&epG~)9g(??iq?_XD@_i6*O}q=HXC#oAQzxS{M#NchWjlMHl~7os-ig~
zx<d~CD&hw|r2n5lZv_4fNW0w$no`?#3(IMT*_7JXMR^?nUn$o(%TxkDA|U0afTq;8
zpM=}-cDRWWd_%}B0bf~O7lOVLxCW4N*MX)Kz3vwF&j`7q+!6|g_I4GJYtC0RTvIn#
z!&Lz`6MWP<a(98R>^FY|{R?mmkaF1+Ay@XBa-U2rxuQH1ipCCi6_MB~MMGmh*mliB
zj=b^Uho;gl*K*KHfoed?y8tw$?asc5Xn8HQA#&Cyq2yerK3s$P0AM5QAd%PFH=X(q
zzEbYTp!Wh_15)mHpefZoBI2yJ<%Yd!jw5s}gaXP$EvLo6!MB|HKQ(OM63~l)rGS)M
z1)5UZ_AQS!W7xfA%Fq`q#8qZVF!yXlo2@8gHM@+f9QoV9U;5Qv(BA<E0V)45Xi9DS
zRU7iBwoE1Zg1L?c6BTWuqMSk+G|K!>3(GGDy%abfkn(Fl|1tRyQ;RV*u-PiXx1I8b
zoK^S{wI{nke*x?Vq#oabrnJjhPm3;p*_z~si@)3{{_9cv0Iuo_7r#>P$SpiOT>jHQ
z&jv~XDYpVNrRegHSl^IUO;&K~b&8e_r!{~-K{TKgU^9hS11NY$<hKEQWxaj_^oPJ6
zK+63bG^IA@#bZcKF0Mg;ywvWGF}%<K<u-;OYy=H*L@H_$@(a!h-+OvG=&8UAK*~QC
zG^LHsKFer(%gnZ}=F#0=A#N8HO<I#9cMJFyf-jZxbD(zsZvs;8JD_d3H^;8$VY#vq
z9qcrs<yg_8hD9`@MemAyrc4iylk!0i1cm@o-Z0RV8aDopJlS}Tb{bFdqNl=^e%+C`
z7W`znZU+4@unmy%9tBM)y8n&vr&;~Z#rCs`>iIZJgZC=gab4_}OMy@5J&{jkMp$k~
z&|QHZfRvjLno`^EmpV>r+b@{{pC(7{D)5#0T?6`h;3h!IeE>A2om+){r*09?<(1Vn
z`BUf>!pI+1!au+oxJS7{{SQ;R<k-8ZuonqS{=>x0bp2`bCUybX`&@}%)B7UdN5MaY
z@8nP3nK%y)bOfaQ?w~0}&y(8n7cE<kok+OKc?z^4J!;w0v<YdAx`!$Kv6n|1h&!v(
zaB&Rk&onw+sx<5ra;v~s#vzx1-T-U_q};!PrnE3>e%6+|e9`=x(YRZZMAorK#1#nV
z(-i3%^#!hs$K|$3xd{Obx)Y3{JQK^bi7Y^4rb+x;XMI-r(8)jKgdm6VZ_dKp7?1==
zJ-UOY6f^$|D@v<m*6Z2->>0T=xam<@(h~>JbFl%b3*955rqCJcRs2pV8~j2a3HhtQ
zU)o_k=uN<#fRz6fXi5c9<7(RuODoD3l`fk+f9gW#j_~5uXuuw0Xu;N~Z*%1qmV=w~
z#FfD*t|1&3jqqN+T$-{PN1JGS$<qrsN3l!j<C-1TCk1pC&>4{W^af2ScDbx9tvai8
znSB>&Lh&4os@JHi@ouLq92zKK$uw0wRU9T$4mt8xfnNdmk^Qd*eJgMWAmwT23VG4{
znC<-I2=t;0D#`P*>iA*9zMtx8eFKI_Yt#?CxZe~vPw|fav_yA8e4?h!z`>F;v<l5~
z;STAz_;ia0^L^e@Z8m=5)?8`|_v5E|yjORtS7&3mHKC)C>hn+Xrn~!TR-l8YCk|lv
zy83#i;x$`Y7>@T<RjnJj)eQ_ATltlY?bT#YQT(~E=XB^V%XcB@)xf2I%-;i`Da9<`
z^H(e?TO4+<SGc`7`ccQvZr5-exBxSf305a8+{EK81bH}_i<d+sXK*Xsf&=2WMz?;@
z5Sxx(XS|f1B{xo2ec|{&<jeR;ontDvvrY*BQol6Nlp37*LD`Sl_IFfEsH&`_s&^eu
zDB_fADm6OfW4$pKD)(tCdxg9b@RRZ?L01D8I5KEl6}?Vr%UN2wYBbJ5EJQ(PKu(6z
zh`U>L+>N6f@*?+;!+!^ONqg@By%*RI$o%{Sno>-AS65(X<?@RBi51IfhiyXfXxoM7
zDnB4werKkUZiiP!X&qFXQLQ7laBjFAnFRVwU>ZP)@)dpFN7&DPeVE;fLnbw6WJV9p
zTzc$3#7CXOzaG3~J$VZB3&5*@%-5TsDMjDM97B%CTgh_Fz0t)iYt&76$B2dxWg#Lw
zlpCdjFGYE!l!Wcs8}wjcI3VSY22Ck?ym*}4DQFvz!Q|it2&S_GB=>2i?9%X|Y{5mu
zj^IO%+&b`;{o;e5w*ij<QtnfrDap7p&xt>dmn*uagj!a18MQ~3DxcBjnPRP*U4T{l
zL_U?$uslELB%mW8<z<5Y9eK9PgvI<6DMmTu$XN(J(*IY0z8I(lq?~o2DaEdDHKp^G
z*xN>mCg5238ns+`9rw`o5ffy+(I~aN!KdUak*{6gC++wZ=!3u!K*~#+C*(!PHMSj>
zOL^#JAI42t<ehJETsoU;czGwhg)m@s(!54*yuL%XyguB6ghL~Ro#8?g`F})b*RWsc
zQ35%#URHv>9=HjRdVB?%Qp|d}eD%^ZD#R7nXy~0w2eE)dmlIye?Z*fBMn1L2#H)oy
zx;l6}V@bFNPt+_cpW)!1H|WjP+_>Tb7n!RG{(LkYxZ)gp6zPRn7GBYW7=iaSEY<II
zVO7;KI`Q86Xnk6Sem=5;U5>wMyf?Go^kM5+_pQiRVOcm|V?a*=rT{WuOF_4puj<P1
zk<p(-;IxS=JI#C?3{|lao-RqUv_ag5Gv8JQ^tc4qw1_6P;X5IJJNSnnfcnpOL4OQ<
z21xn;1WhSs{L(6Zn@bxAsfJe7)4_+U)fbqOgasBYkM)-^+&F%|)4|n#@8rKcod1cS
zX99BpDSs7cO0nYwCyr|oUCTDwTiNF$h`d_8lPkFt%4ImATrY%j1u~Qy#hb{(>i;S9
zXoQ>)<d7Y9g8mHn5|DcQ1e#JzJIFY$MUQ%R*zRPn#)Y)XBm{F<0_?`JT<H|dQIEe0
z*V@^ZX#7FQFRBRJVFu_5;5<OezY;X1nEu@=j%!h(s0=$E*D!2(yjs1ME9Z%@o)){3
zjRNd`%;8z?3~DxqBC_OJB9?19DD-K9JlS7-3Hk`|Ga&V;m@o7>QCuZ8L7iJ8f~$XN
zRLibb@9`)%ir~tdhNIuO0hOPQ;A*&b4sLMj%-w-_+%z5R;?t&RlkgJ_!4+;94#cP6
zf+O4s)hom5+*#{m4T(46e6AuZ)y&l_cf2P=0ak`DwN-#c%clsizSgkD{g;;bs`lR^
zpWBfS*{-|=`ZM55K<3l4-~@JWiLYc%v99g}S$8<)f0d@(7#U>2?oN=EfFLUcS2d!Q
z$uhe2gq9-6I-89PM?Fg2e}tYTjvnNni$PxiTnI=#FL8b^*9+v+Zik&kg9Q6l|1JS~
zPx359n?<|mF>0~>>X0L62l&YT<x|l6fo}mR=bxY{MbC%Xa&mh(5fI+DYlkCkPqCI9
z75OS$817#tfj$SA1xR^wKvR<abgTF=LY@;IL{F|x!W$s%36Lg7-WKo+fgjoNS<r6)
zO@NfQ6Evmh^E1ci&k2L3+hLGtFLB@{6}aw^?)1o#6P+bLi+qL_h3z^B^hjVVAmvT~
zO{opLiX~S&(v!CJ1@oL~#bQM(wx_T0_YID`P2d;8cgp9Zpc{cEfMQ8npZ*;5*FbbW
z*BDj!t)e*jjgo8UIl1H-I-ug8Yn9Nn>gc^}!WS%lFEhVj-4t!~d)kC|wfOfm^IfeQ
z=Fu5m&=ErX$|s=Wn)n|g)&3&vQgmLp{AYq*2rLJro|k~W3WzTMjVI8vB~-kg!9uwK
z%bxxnyBDWsZ57Av)GlZ5lXi^^<6CGqmY;*JJrmkh{a5JK1er4K*$etR;2<E&>o90a
z(es10-NNGlipdiSVo#CTf8XrLD_R^buPLBs10{fzR|c9=^m*@A@>(iE>q)YSvJ&9$
zi+>gQ+X8;Fo<9fr1>hA&2H8G({cE{B)L4#pPScGh^sZ)6!@DYL)viikx_JRt?V-FK
z{;nlq{vptvfo=e$_VJ&x=t2rr0}v2U#s}=b#CXQxUj<%;_!;^4TF{$-I{|60M?q8C
z7xiAz<MToJp|GX+9$HQ94Vak!SgZcRl!-ZX6Ckd!3-XS*E)egpp`!w884kRNTQ;E2
z|Aal2rQz~R2i+a$1xS5{fu<B)-(u_I+-Rc($HIZT0yqG#u2L?ILtqy)3<P!^Ohh)g
z#(_R41&;|m>L5q@?IWO{23`YXeQE~%HE>*gGM##VTseyyQ{){x1&eWGN=|PN^cna8
z>+>N?`+)gBWS!BU)BEJym-V@VrCrYaSL3yJ_LV6kwS^R840Ntc=`7S$njC!#mxcS^
zsh}4CO8{xNwV){-H$FU0Pbx=w4!n2?ig6k+xTQEB;L2vG80XTkSH{J06qkE=T7rxB
zGwk=*V*6E1_;r+!h?N?oX2_TJJO<ibX)39Jv}YgCg+R1DH~)@3rKSaCuxC%(p1mXN
znTyFMZ2I{t>(ju}wlV+XINXmZ8j58GYfH(Xy&Z#6@PgFn=(`rW6yQ76i~B%74Ll1-
zd+r5I>EfvSGLH8{`(5l)F<VS?q$BKIq<<1Kr2{q~bX}`%=1MJsNO&Yq)9_L}ycx4I
zjw*TRt`#Fy#r8bit}h#zwu;LaG#+BYt_4+LyN&`q2{;RodY%oMQuI8%)N@kBO3@HO
zzl4J6Frv3NRg%k;NATKkoLVXtflU<`^6J4a1b$?fCqVB8J_n?{KIaR0Q=NO<6P<hR
zTgj_hf+Yd_=vWiGQk+6PDz0hTA--KHzLnE;P3zQmTuMQA?ss*=E!HVUrfF!G`CWML
z2gl4)oaI5#t6>`>uH?Y?uEtCw%Lrk{oxX+mJZ<K<YZ=o=<3`H_AQg98#@XAwUSb&8
z%~Nk>#!P)9bIs!CnH{Ye?(yUl@B>5Sw+{J{aqVA0KMrgMWPV=)P3gGtL`1z3*`=Ef
zZHg?7<ESp=Y>Bd-b+X?JPVYISU2>{mrxch%ey}>c?$ZbKU|={P<xc@kX-o9HbPV~n
zCr+_{K|0j26*QHwPQ_aqZ*kP1Q4PV~b3Q{W5XJ!iCP$xo$dmoW)1aGx4*;o8<#M4<
zqO%X{$fwRaNsB%pDkkCG@VHr}-0m=%aW8>=Il*%t`!S6!?q8?g>Q}DDTLt~Wkbx~&
zxG^h;osFDdggxIljO*{ji?F=n#ctIBxKjl8u-o5Ud;<Ox%9+K}efnkx{GA^dm8}l-
z@Q$Ep+%pI-mQLc!Sx`?t)pc4b4u+-})#?gYCdL$JAl3;ijl)Gu8g3Ld7n-;^6z^2R
zz0!CYEW@>?Zj+ACe#5je7?1petFw#?`M;QXl;NEu-com?*nfG*FUoHh>`?^!QGM~(
zU>+aH17y3m1oQ<!lXG5RmGeHkoyWC%3o4dXR4*!XoCtx#lFG`(E704>sx`iJdHBwZ
zW^7`zt$7VDejsyR!LdiP6tA@$hS`}M7dN}$RqshY)gSQV1q8Sa%a6}Q-201{8thO#
zud28K3%l5@o_&8%XMU|FXns@AMdoRM^()t^MN1UH6`7<IC-S`mc?#hx<@+np{|0^m
zq@NV55Ps5lhwzU>cenPFrKO82#<k8de6~}A`&V_Fn>D!8wjqRAr@o{qd)2;p+X**3
z%%$SIHiybQ4lf8Eh%KBR%uah<(=-!@Y*X>hhcvfk;HDwkk$Nh>j`O`tHmJo3LhoAW
zCH;Fd=*NMl0jc-PpeaSae^eGiZjaKcs)}Xh_7KCaa40GJ3H761_PI{Qt4O!t9KnT{
z)Ue+-S{?BkQd^8tn<(^3xggvhjRbuba1J2#Dg#X^`u(H7uUAWh5KFtq+tRL~gV3u1
za;3fA1HA`m2Bcm`K~rjuy5~{qC7!}i!cJj*YS|i^j9aHZz!Y4$$6Ze2WZ~Hf$cJNN
zzyAQ<gH}02DoGN0jb9mVx0isv7`Pmedffz?(iUeO_i<-GhSV#!$8q&7+<aqt;t=K~
za51cpF34F&OO5-XAZ9ahxm-VvK7>@m3Ks6i%;N>{x7uW(*8#{af?TQ>-B)2BD=-m|
z?ZH;iF9JuLa{!y0M7?<F_uGS3&AZG8ZaWeN6()ugW;OHu{|{&10a#U${e5R{d%fhP
z*O!n$5(0z{0U<zWf)WG~Y$QOCC?!%9T}xC{RD{T)qM~LIUByCF7O|s?ipnn8wV`W?
zZABI(Yp?kI&di;><dLxcztP`)=RM%gnKOOn6!QblT6hof+{DDkRrsKy{L7_%W%Nn&
zrn}NiAcJ>{CL0;L4kH&gMhS$ivi0O@@;7MM+0!!?;kSrYhG)<!GfcbC-OFvJ=!Pr7
zALc_$n5yeW|LU2i+qupFN~d<yaVia0o(O00M-G3QI7;kB8-hL<p`_u{2==lCC%?VW
zZZe$qe?hE1%Rr9<CIPBGXM(15ku#2}II2nxG@eX@JNJb(QXFa+rCwQi8SPl|v0J%T
ze~D?Y!;FL6pui~tm>Pgp!jf3~YRZ)S+>89wy5Jw6KLZW{il5{QB|r0=_0RNoI*xDf
zZPE!h?bis1R``r{Cq*kfPdqazWZ|{?&+sQ}4zqlL9Nyc%91(rs^kEZYwXOu~1o++<
zk7yQf-Az*#jdHV$yBWWgv2%@|$t+?TpT;t2@vAjOWjR)Y&vJaH_INkw=YSUh)gG-s
zV4V(ZaqI%-Id=G;9Mv8>FHeU?NglpG*MDQIp683_T=6{hH_?gyYig^k{QH>~VG-{a
z!4dDrd3RD1JkIpUfSU)nfu~k>9G-4i?H4EXGiX^*@EV)E6Q06Fc_(sMfYk9189xuL
zDnKI0Z);Vh>=pyT=V=?FHFcBauS3~XJ>CHN&%gtKs>eN`DRsTRn}gtKsx`H*Kdkl-
z$aQ|ISoGVp+P_xc%CWZW3C}t<npi-1(i!D3;Xg0Uws9MW{U21z$F!}xTJoLte^IQS
zjsranm<cF8uL4c!0cSs={D`RbUs&9c&yMv1&sLA=ACQBneDTbYYlhn~yIMt-&pO^f
zgiQ3!5)8IFFAOF_jircZ`U-+(a$bfhV}p^?>*G0&i0|S&sjbKKko@lle@f23flj&@
z_j-Whe*$Pq3!Hgkud@#7$bZMa+d<l`>}UNj1z1ZH&%j|J?H3GflU;6^h?i*^h@We@
ztqSP&leJ2U%Lg;4Qe4KHf%1&>L@e=opakm}wjl6qDBYuIl|_>OM(|e-{-~e43i>nP
z5TN===_T+*2h7|m`}q%!-;C`?^%JUx_;SS6Ml0Jc%aSX~a-n$6l_h%9)ZVmnf92jI
z-1RFr#WRDaUaogDdcX*AH0meW1FucE`Y%c`qj~-U+srf#8i#vs(<g7$?JN;?U>rhf
zWBJN2qJBcPmD|=&`m-at>L;ZoPWe$b>Nr&XCqTaf><3i&qn9F%HSmiwpDKSu6|Row
zAz~aBdx3G}W>aheTiL^=C}K4gajpI)XKp@-jpgrfZB8yW!Y*qw3vg@#d^Q5w!7d~N
zc8><ajdeR{x<5w*!ftl>pgHzm@ZWPHqLvlurY}0NbhKEy)4<Rd#T&tU^T#+G-b*if
zZ*uGe2Jx{Bc~GkBBg<KjGN^WXJLr3Wt$=E$J3v!vj*G9U+Ude2P`g=1kt-KL9c#sW
z>B7zkRf)r=wb=3P#8xZF5#iCsn`+d#Q;U<ot3I}F?hkqtFb+_1J{xo$5PyF8%~9=4
zawMf(1mCzTp`W9;gdztfJ|lED9qfjI0K^W*Pk(1&T0y&XuESW6Tit!8*NV6-Gr;u(
zSAvc$kfuF_!(L6h1l2Jf<7lar+fMML&P!ef{WkDEpycMiOv>$tI6q&Cqned<3$ZDr
z>9~pQ(YKLrqe0uy9M<TKhSpuq$cfmbR6qqa6G%m<N1KmeZ~^NxVW?A}d(y(`wm(3F
z=m5SMj-A^NL(TmppEJRSYR9#p7Xoz-ZzSWc&Pf(jFIzBeIW^a5U}>5*GhkR~h(Q-Z
zsMr*^)pQ9Jn9}|-pFQpJc^CAjz~_LH2ftj(BmTTg$-~L-q?+?YMV%v>&l>%F?ZPlN
zuZW+86V+JO;V|9?m(QpVC;tg}ziP*4f?f<P162OkgFaR}p1Wkl;^oc;j4Gw>0S1%5
z-hjP?DrFUXQ$njP$z$UnFvkryQm&wx<}FUJQy_l~pOd(-f!#Gg%40wBQ~VqR{a@f)
zK=I?g;@JF*fnSSi+>?WsNYxY^o~+T&MoWzOVWm@xe1?})2<P~v17*IIcyAO1rEzOM
z=taP}fXeqW(3HA5PgeOl=ZulcF;GQXqo1iYx8-ff%fBHa-v%e&J$SDw@4rANt-^c<
zsC?&urqtCqGP!yg!VSX@F$uqct=HF)`FVnP%AgGCf*#WD_rZdWh-bHTqVHU8Y45P^
zmfHv#h{pq`u{vDWCqPsQaGRJ2MGOQ+gre9YIIGG^8c$*2!>R6E9x+ng{q@9tbdVwr
zKWJt=4KalHUGjKCYaAlwyA$Pzq8wsg1pOKC1E9vM^ebVr1H{WWF>YQEWmSi{^{k2<
z%2v>00zIPi=!3oB8vSXgw%Sjy(T}sh6YK<SD|Yo>xOU1%IfPT@S4{gkbM%X5;AJy4
z+><7@>lmNI&!!dC(+o#Lqj4Z~f)*;1{I3LWs-Erz{VLE5DE_spa8?bp#`y;^I^%!T
zVmKgCJs2ke%jVYBPODiid<Cl33zO}Y+sIV=ZE3OnC;5>fek<Ju&9gQ7e+)zgg88<~
zmx!G%=JHg%lJ&-bJ1mf&GZ*ohtUKKP+u`Fa)he;f6!OEV-GkX&N1bb5=-8aeAW^87
z`r)#iGf@UrPfI{w1k?knJ+1{!DZZXmY1-PObAe$Xc(t555K9u>;dz~A4!A+JL|BYd
z4EZ{(#mRp^-ai5Fr*?7>w0$*f-~pBY1kjW!96uHD>sRc?r`0W#j{Tb0*K&ezJXl7z
z(QMI8&K94U+I}6!h9as}z*Wvu5Ys7<r~6ZJChWJyVr%DzhrUGDARKb~vIdwF&D;{S
za)dkz6hM6QIsBYHz*(_zA&Iqlq?F%A@K+B0i2r**KMd>u6#q|xrnEdx|6a*YFn=PA
zUXAR6J8|r~1}D$(VSxuM?+3N5_v^}Key-KAbCnd(QJ?@&`4xkvG(0Yjc8C0Ab}M9d
zIOToQz=I5W+p>et9j71QeX1X<2E7ru9Z>mw3Yt<^_ebMuYZlI<(K)4V4|#4q11J_V
z#aD(_Zw^N6EGUZd2sGc#ked(0NiGiS;iWGL2ld>TVBi!VzoeVC&+GRjn0y3=({O>=
zZ?reywGoTZCiPhaK)71xr-1#2F_Q1nYhvq;3eeMmS%BjE2GEqYJ8>qqJNDyBPLl6&
zQspYI-t)fso14{p&ioAr5^MC&E$xumFOcC+OkK#k`MBH0kq+)GtuqiBu^ag0;k*ED
z5_u2TM4TwsT7}_B*iHn-fY*0%UBfQqGx<*xfh<4=9F)dOz7K$}A^1w|={wLl*J7Lm
z6yFO#Q(ErCm)^a*<N3kyOKRy(JO{2&%-=Yx*9VDbx_I8t#K#}RGwC;+8?4cPbYb6#
zNKY0*cr!ecv#@9hGQX=YpTUdaup-mY5oZRD6OM;Y-kENHP7gi9^59ruBeR!hqlf5r
z5y}7+yc&K2xf;BY@n>{Ztoli^TzkN`YDaH?J_Mv(7aLFi4Ei}>mx@p2*x%*Hji)CF
zEmaJbSGvT=m?NIA!r28C<|F<%3qHYKHy>x7Cm5c7@l0w*<CmYgw!!Y3JQ@R&3+^BE
zz*tNY<f6vq^S#7_Z=&LgTp93cnq;NJM+Suy$VxI(lYMoFbv^^fjlLw)&MTSHH~Jx`
zupg^!^KYEueq3dnFY}~VxcLI7&>yR8^EpnjKX%yN;NUkuyxfhWO8<zZ*m{__bxK3b
zHxvJLgZM6EBw{F0jfdCARtDuhR%#8QbBd2>WAi$BP=FEukmP*&sT^A4R4L!+n%Fqr
z7xY-*ctEwA<)A5bHI7eTGI`1Qa@$pRA^PYYw5*E&a#{B#*VelGz_Shx)I;1(${UjA
zvIgQz9WJ72Pl-zr+bD}9hD2LfVwAJle1sTHrb+&GA%9i>Z-V|5I0z{I`1O*%&~36k
zD}TkRKTcm-yJ&LF{N+xMOsP5-Dl%cA8$=Zk-*?S$0!_zrwBSpGd(*y9dlUDgV~m+?
z>I7Po!%rphQ~aC-dMR)|p!m5NG^Jzlb5iYD3)&c}TMS{%5+mE^2!GIlnJkxXWV?I9
zM2`D#2uE@m1Cu><$3XcsPIvl0@>P8OMEtC^H49LDC4;6kvy1y>l9MB&NYy#BX+D9*
z)Dcf?L3}(d2Fl<KryI><r6<dLtMJ|^-b>@oGSC+SmjEi?wV)~O>|%c_)@f}SSBQo9
zZ0%ZaEMK7sH_}Mc#fuu8eD~wMs=WUJ{R8kTpz`&vlljK4vsAmF!-AEnQPi`uX+c=(
zEC{tN-fp;y%fJFKTSnzL6DOf4G*aaZS?-y5zsi3J=u3br0G0nOpec2=9$%=|<BA8-
zdlK3@&JLzM1^3w=-qT2-J4YN;Mq~?^0KZsDs~+v_6v<Bu@@pIaLH`K+>hM5o&$>9f
zc_jxrKN&S`%*2UUS7Q7>6ZL+k_HS<*H$2_k2+xU53X>=NdncdDhS+|00q9l0H9%Xr
zK~qxxhYjcaynTLSRxDpu)7Al+*+=qre$GA$bSR$*`^0wRU0u5hzN1q-EBL9dx#79g
z114YvJB^>JKPisWD`z?FANi{Dg71i*8_@m%#aAL|N|kYb%@tqN{%N&QRf4hMB+>ri
zq>?;=Q(Rk*RY61Q=>}9OsP!YA>a>5nSLM4D^u@sCfXcT4G^JzZOXJhgdGG8xZ@jO`
z$-f2fkK#M^zpp|61RMcW{+{(R|1QUGlv_pbiBwGz{cpbZF3j6#OdLQP;Nh6e<x7xH
z^faga<GmA{d}~2p30w=Pd|v}i$!L+|a{PT*yUVW@HbWc||Irp7!^Lw6ofxmtce=F=
z{=QfWmAFQ@^+3Q=W!cHmq(E|*M^d2pk7>3Ho||w!FrK;me$RB@ay}I|6JgfJd)#oj
z497yl7Dur+k&9&hzJWWnRm|*R6{AjDX3O#v{xQ~{hk>36oB^ov+zgsh(_OMW@%xFf
z=dP$;IBtpZ?gqb8w7;Gup0CL-g>no1x}m-6ABZ?5exB#?@stF^lk7@Bl&=WBaqeRw
zD-|wcB3@UPI|Xjv5Q@6*^giP;{?kd+&&)WNk*bN)49n*@?H~N9@d&FFEfdHE6#p|o
zQ|f9w664`X)pKeWPpV#uBUU;j*vAF?@?hXhL1)S`Ty1DCA_lbq8^rEVdy@wMK6q}k
zp}a-W46k9d_jg57Ci6%D6@Z~jXmbtV4<g(cx^d+^$@fNwFR>2-eLt|x`HjXcr7x{M
zRex>sUze{n==oZqm-`Gq{(iml-XHJ|B@g>Xtl@z(0VR+7K~w5V9%5c1F*LD1%gtfZ
zHrf>?i|2*nDSsIvX!(@C3~TqNW$oxp+EF&>f5%9zj!-NkWCShC$U-2L?1V}vH5xcn
znSenj(@0Lq^cO>Mt3*#O%osVeV!)&f9Hrp$)D7eD$#xk3nPS=0z|o%h#SB8<%EjUd
z<IMsoU+t!t9D<<JfgC`|p(p5L$zcqg+lj&HR1A!RF)%jh+Zk5v-4SnYm@amHvy7=u
zu9%N%Wxgx%-Vk0)^?DQNJAu0ZmG6C^DIH}OD9-Yi^`?0#Hczy9E;2&Bos-Kl?OJTZ
zyK7p1PH(Do^8EqtRrx00jJrl43!t_{`qh+r;Cp<&1LF1zo#fvSVkp6wRHAKwEs-lJ
zl8h7D5cd9bP+RZhUx#<A{MUlM5x50V<-Q#>rTF|+yY3|4{>V2{IZB)po~~{3!CA&2
zG7Ay!X>syB;JlaQ{T=1E(bh~r<?8}XN%bT3sq*b$iqKz}BAl%mXOk&HKgz1|Y+0|B
zc#k^oJ_qzt;5<O(a{*{d@#oO(?D$odF+IV`Q&G6hY=vg5z{;V$`)jS)$#)OltMdI2
z^daECfXeq<(3Ils-DJKs=k`7-*A$_MS~7*)VBZA;0YJNgApnDz-|Nqj<t@J@mTxWS
zI$$}V@;x6krQcEB&Mve?)wVDFP+UfcrS3wR|1P{=mHRW$Ujg3%D*qorQ;OGjKdRha
z<~|0x3fWU^NZ}&QxQMQhLYVIBo&3vhjjeBLK(7EU1XTW)fTnbmy^+(8p_d>isV?HE
zE=?0ZQQ7O+B3gOdmwM_Mx!zIE!KWJoq_5o4MN$sU$VZLmKY_Mx!}$iF`t=gfD}i`>
zwAII9GDDibu=*@0$<JA`WTEhcg1CjW;01GV7;;|k%4*mLtEgmH|FNp?OxVz_*SjMO
zMh50GxQ2ZiF)f~A-Y40RXV}$bu(XqPzZ0`{+9s@&5Y_8$=mO(34h|y?%aeX3yPSD1
zV?)vqqY`6;VFgS&*gqNja09A`28D63E@S38X#JqY!4>arlZbX1BKQX4vJa7&iBe#{
zS10Asg0iZ15!eL(20$91<UxPE8@|WiKP7%C*DsyO!>JS{l5tCxE~;Mc$fPes;lV+7
znzn~|Zef92L22>_$ykfS*8=3J#=omTUjtkZP$J&q$GxNZn7EAc9EbYCzp#+6rR`<d
zfymVA<g*{|RPEtQ(BA<+0jgbkZkKtkj62VC@`EFh_RWAA;+dDakl6*=m(E2@DUKHt
zO}u3^)K=xoz(U=*QvNgXekK2NL9YZZ0#yF>pee<V3rFYQ))x?lkT{s89bwZntw^rA
zo1Ogj;C-sREuaqohX9q|FQ6%PUEV<hx+?K{?5Jq9-&u((m&)=^xFc5HxuDMm76U5(
zrJyNwUEWy!Z6y|y+IszTZ8OKD*023Oqshs47v8JN{TApCfR6!{@7JIyby4mW$EfHX
z$0)W|x=fb4{LWapPX%2K)Bq~~TF{ibD0ln(k1qC$v0^tk`8DBvs=P0Q{s-^|pz`|^
zG^JydHzsJYrEk}?-|4!<q2;o?rH!%jP6j;<I0aDop9Y%JG0Gdu|L77QjFnitMyqr3
zZNz(3xgQ6;8`$IIMdL>NxbE~LIk|Lf*ut@xFKDAL%|=v_0&GZ<>E2Of*zDvN`ctf&
zC7}BN{Q*jpU;Mb)X@07FDaa}XE5j7T!*Slf67N#wSr7Ua;C4XC@j=j(x~NAHye=k4
zS&?<8ETI8nsn)2=4l5$Z(hxP&=;sVkbt_~&{($$Z@hNFD_JcqaQ2FPBrqo3}#^tXH
z8mXHqSXihvLGuJ7W829<i<561-mA)e9q9GIO@PYx9?+D!DEGV-ORLH8P{$fYG+`?E
zS=w%=;Mr<yE>&Z5<$1E)t$4pGci=AElLKjh%0CM<r7p@HpMP7y+Xm;?F+i)q8SiOw
z@?C)UM)952-z!0{2CfHGzS}@k+WoSee-EX%TbGcr;5bZpbl;V;OW$QYtFv8t(zDoA
zt=E4u;5TG2uQ1NQg-Q})5}JW5PFgGTjN&9S0b6T2nwrVy@tdJ4$N0I}gp0kl$glJQ
zDHm-^OfJcw(||01(lOdQafO9aQSTG0MF`<kFqEoYg*8n?{8O#cdH({uOU?V2gT5A6
z2dMJj2Aa|;M?YWb(>ndCEuR^+%W9X8T8PF)bMg|L$gU^<GxwT#(6>rvS+qndhSp%d
zbN<od<bMF~SNZ=2+P)k2!GOv?74+}UKQ8m#U1g3J)?Fy&TZi{Y@tx}ba?p1G_X8wb
z+IPMM`a@u+a~?X~(MP<u{ra?a*{L;4mx#6x7N8Y=z4Qz;^iI+ZA0nQENJD(RJ}N6G
z`*WUUW@Gzeb$4a71jz~YV`-lEg1LN<>r{`4+n=7WWU&$Y8!>YCBPcwbADv@#gOgbj
z9%3?L9qM79lOi0x%T#%hEYFa8V*Pj$=sCbyfRg96pedd1=p~jqdU~QhPhKp71fIOC
zTDXjYHt1?tjX)c8w0Jf{HI&Nmw59F0y5n*vfOGC79OdO8g5`ivTISG<2lOyTY$n?A
zd(3#4@dh2Xl{h}RRPwhU`MZ!m$@_cIM*#lk7=IzqlvEt5QfD0)-`*;hVuesqGrxMp
z!sXQcB9+6j7hSKPqHVUba2N+&i9w#hc-JUH_+V*u@}KFvpYmS_dKqv&pyYFz^XF=x
ztv*HmM`bEvFsw%mhE=Y(7!0NLvb@cBpDM3)FZ|d58GveEV?b8|yBt5D4fo4&W<mS*
zRao5C&*sS@J5>}fl_@Kh*NJdDDXr|h!=wfK96K!P>}_1=k(;fXb^opUa5!c6{7DaN
z)cGxX#vQr~@tM!RO%H5BEK0Pf#i-I5xUI;dFa2-{IR!fi4(0zV$h<o!>Zjo{S-vLl
zJ_NszJl_TV3Gg|f%ICfh{TrAUcaOCDiw^slw(`*)Vn#Le>qOBO*PJhZfU9)bxycjB
zdL1r^*SdSWXY===b4M4X%3h5=J#fDR#?L{;<D&=XaL%AbFPHpQftPZJ-v-dP1DgTG
z?{?5n0ej-~H$LftU%4gjz_I#C@(dq*7t>bRcPVw9`<b@h+w(S8#vLyB;=0piZ*qah
zs~Cif&z?MkO^0d{$YzJ%(AJoI3qTJ7h5?G-rJ&aVlau7U^vUV+^P4XC6`b<C2IF>p
zoxvK6%k6arF}ByEJ>x4gK4sA8wi4aeWQf(Lk3iV#2iR+N^1HVAwjFrKHue5!D?6G0
z3YLIl%c-Q~cRXz55R~R*gdoHn=ll4d^Qll<${|JYJtjtfD7dqK8KT`pSIc@h0G?Gn
z{02IBKl~m8s$AuuCjrBq@u}I-r#3q7gWKB8{Oa0;^J(yHW{2dpRO&v_@L{KX1UE9I
zwQjaU+SRV)YhB0d@L0xs==^F|V6_W|wiG*J3C6Wi)by8vb==bjaKfQgUL*P52%c1b
z-Uj*!;2A)TAFqI>q{c7hUn9P!u5iZKNVFh_MZGz+>Yb!D`126%GN^lXyrq|sLLV|U
zI{BwQ5Sy?1fxZ&B7Et*g0Zr+E<M+P&OW7Xc^G7_LWi?Y|IL=o4Q~j{bTJ3k4__)Oo
zANBIvRxZB1EPvc5za5l+c7ph${^FS@p7vo#ZoU5R6m7G=jHkh+Q!0YP8a}Tlifa>!
z%<JJ<R+?pCS%5I`P_`JP2VMIa6n00XCV0}JnsN~S^sR}!CkyJM{QqL!B&#|rGnFTK
z;o|QzZjFYqP+za<w_j%P00=LcrfGJwyJgxrsIn_`<9PDPG@GBp&w@`NzJturPve*1
z7ij&B^{;0k{8SCwkV{Fqe>TjIx{>dJh8t!5u6!_dZnh5eoxm1A$@g{8luDfYB&D|y
zFJEymMeVWjF)}I&135UdT(4itwPylCb3t6g<Y3j8&N&=h;mX#q3{-xCS5JT^ti(V{
zH&1pb7p0m5^)N@Jq46fkXY?V-2aUTWpa%oP0mbJ8=g-yrr9K6pin$14cSwy7@Wr&B
z0$IjM6uE=?!P#j1_$a+u=C|5;ALVx==tf|R^BeV9^?vm!@@c#5i6D|Hl*`55Zicoo
znBmES+I_%{c+1ZFTid<g-iG*}Kmwr3lL?xVdcXP<`5+YcB7`BGj5v2{?Gg!P25CJo
zSi3g}ho{_4U8w-34e~Wwvy<-vyf=#XQn@YweI;-$pz^&HG$nNp`;FtrSL6$$`Ehcg
zO*LJ<0nSy+`@uiddPEG-wg+>qF>n@^!m@NfE!;}@7`}u=OKI0eDc4r#{ggj%LYaXS
zK#hZ?ppOGoJ5%e={PyEu$AF`l`(MSZkI6q>&iz+&?Fm;dxBse#ck8zymI?Q~pa-7U
zeN@3qjWf8Z=NZBQM<Fa`x6+6wog9PD=36A68^MDb_nrp*ci=TZ@#%jUdvTy8MUFQc
zoOr;mcQFrjSW2~B6Xi7PUzq!J)~q)f`yi_I`b!?{fQAT@l#7`Q0ktBq`X1}MnHeKO
z=6gKjeU3P|q4#*;U2ggljVGALG<UG@u<$Gz!Ot+x$1pIP4KxO0@nS7OT%4;JwqSS+
z^Dm;m@u-10_gO0P17d=T-YLslkFrprdbtktZNLM7Y8ShmKUeKgeYUlG(f27}=|1ZJ
z-Nkjq;#M3kA7;s|tUJ|=vAB^9YxR#`7ffylh7bD#t$uqQE%t}-Z=^RfO{;2@{DdBf
z@iPSUNMH=0_!;l~x#B~83VzzH9}C3~?N^aSz2=h!MI;){p$;=ldnP!Hx{8b>*68Hl
zfcLBY`8}W?0v-ia{*QsC6u&=jcYh>u9w*O-Q_8PlBgvyU7DR|QMV1=Vg-7wqKgsfH
zkH+##1f2_X2ULE=pec2Ef6^hh%A2VYZX-v$n;F6q8vwMx;Yxf7^#P=&%`)GWc&{qw
z2GF+wcLFNk&7dj8pEI>9=V|@^FaECYlKHmcy((YNcAS3z>43^N8#JXZ@5zqN_1ONd
zoqQMIy(-^&(CdH=fXeqzpee=ID_O6R_oC4-Z6fbQa?wkTzV3X?DcR1va+Cfn(=LKC
zj%%KtBh~X38gR{^HEfaPZo&IQct7>CZ$bY6{Nm(EV@r9Q{!@Iuj$btGCOrb@6%nn;
zdGCb3#NK-W=+(gWfEuqJ1pOBv-apvtL2~?x&u98ls0JfEA|~UwlAlxqr6?+R=>&L9
z$pZ@dc)-si^0wUryBMAo%r@boGf4N(+{p6yY(1L{ps}HXy%OCE2U!&H<A-W>cT2g<
z0dH!&{Q>mPz;6I0DnntMTzERNOxIq-T3h77sREH2ocGP#5v%70&<_HS07@Q5K>HrU
z+9xjl{Dk?P%j2x2OU^%97R#4jFdly}`T__=`9g1CYxz1-s(DC$B#AG>*P-Lxq(5xp
z-lqF0-ZMQt1>1p4o*Z?#GCf|;s6-b$3njq4OByDxGhhhF?X(owJm3y412=QF9bsla
zvTw${XV@;X6ClXX7~jkIbBy<=8JEJ5c?|dwHSaVm>0zq!UMb%ylvTC6^FUt)Tm`6h
zzY#R0`1TQB`&3*SJ<G>q?k~XHe-o{wcHzL@19c!c@q$Hxa5FOyu6;yZi`Qx`4j-+^
zX9#|x_HXaBwFr<3sCwxSdL&SCgWNBx{lqt)$?x&}i2GV<jg=44kT(J&-c9;i#AZYG
z#>J5CCAjjm&e6N;rpvyP*%v}gxB%^g%d-Hr#A2uo{0WkFhDELQJ}Iw_;Gxvv^Dm&E
z16~9apPztk1>*0M^A8+@&)A?5$L*KI?TrlVLia1i@9oT9PmCRl;rk`O<&VesJr#5v
zumVu^dpl@Kdz^K=vNMjCCn-COTe?K(7&gPD{65lktQF6}`$QAorE42--E8251X2Ic
zPy_HE1I1r#Ec@C+d7c-WAlMy?)7~-sJKA$(Q{$9r*8`H@R`3(WPt*?B6Sn3D5&*?-
zHfWLJ?nNcPq<tbhjZn?kU4dDxE(o8oH|c*tTh#j*nVu8eA}Z!sV?Na~^j;p6`PSjR
zs$Q=FeK)WbQ1!YW^v6KFf2(`D7$-&hQ(mrSiLQPh6Ccw0y+HQ+kGb|P3GF3PpSN$8
zW7bZdk~@n$Ucrr%p6K$Jb`N(Nf>Mf}3y)pc1PKe}Vw_Fb7%kz1Rcn1nmSf11G5Jjc
zeI_s$Q02G+^!0#R$E$v19IJhf#!ycZEuZ5o>~GSc-@6{ZP>jc+bDr=7+9pm*c!HUy
zbC>-bw|BrSLBr}2-c@C9>JH5T>P$`BB%dwdp%C(?dj1)-_bH4+fa0?ZbOjJ^Uz2z&
zK9#*(-FsB?rvgb!sNWyv+CxSG54nu@VEd4aa~W<~r{c&q#YQ|q+s`vXIII1X+y5lC
zpCD%m1BvaS@L=-290Z~dOTIUPCpAvJ0D3?09-#O(pT-#u5bqzbu#0v={p#rXL&Vq?
zqt|Q<Uc~@Kfboez>_K>9Cdt2~C%mHbbvn%#?)AC}XK6j*gDHe<jbWs_-E``Nqvw%w
z!(0p{M-C<QH>o2bRX!rivjDtC@tx}7a?tC54S*`oBcOKz@$F^8G0NjK7wKhisL*%2
zNnb;eX~Q=dfei*if6(;LlRg*B8|VQBdi9m?whn(u*n*UxQTHM)HLb<rGxSWXy%d8!
z4j2t6J{N*MABb-+3y#63YA#g^pf58U7zdE+`J42eTzlT^{-}|#1G+GNZV7(7;Tp?}
zAuZ!(Lrl^~^#1TI0x@r42(loR+7T*}!EJn^ULpC9ZkKXy25)M8c?k5+fcM!L{{^5+
zfcW+0Ctb{M(tDyRL1{UbTa$o*SaQw$nDzaHWqiy6pP<XN!heek+PXGO$`U>|`@U~x
zyk`d9p|N+aF@@UsOvmRR$QFm+dhnw7-30o6;7LHq`wh_V0`dI5eoTJVK!ONq?fISF
zf#0<j@e7a4;5gxGtM4yn#?NNp2jX|O<ac_E-^Ra4`4;Yq^~)ik%Yh0&%^OvqDea2$
z3n%9dWz~!>hg-XO(4^T2kAJJN7*Liq?GM%q=<sBw^i3DtA@gs-`_*{%9O#3<FMyI)
z@pCw{2IAZ2^bX^h(Arg%+Q`V+GcL{&#Pg5xOTPFbZ`1;Gm$nf;dR}1O7ok4;0!w(2
z)o5QaX#;G-O3A~=<76$-6**#hzcpR(QZn;9GvQY=HECeBog!K<?13L+{3>C{{1U@b
z5eM1{c#TXuW%*WvcQx+a0{R}{en83hQP7k+mv4JlY!GlET?8C=DXc2>dW4C#dhnAN
z{`n%q*LKib@8qjJAImokItR!HRK6vkkC|_q&k0;WT+S$C@1-QPZA{x?_2d^qg4*Q_
ziU9aTDt%m*cO~Ad%DV>iCg4wi%J*r|lqwzn4eDG<wx{WFR$FzeX+lZ|$gFImz89_~
zTo}W#OHmDrOt(hp8FFuUg0WbcZapFSas4&MPZsE&Kq;X3nGX8c{B*F|s%O^<S)49p
zv6^ci9mP(8%ViY0`@?5=oAK5OP%?Flw?a=!z8aCQl2a4t$AM=6#n(SUQyLOyw-S?+
zG9ao)yThf{M!FmNC61djsg@=ngiJ5BV%+8AAKe{WxAg^G0Zar`{&PW7s))PClKID3
zQC%ivGRe{C1S{Vm`mnp3;Y%>W0qma=tZbfU4hTfTVimgrr{~I&Y1dOy9!<zkts`Fm
zy&rfFQ2hK1x@&%pvZ|_Q_XwUch^K(4tgo2X>V^+jtg-!w8bQ`o2|O8L%OidmDNr-6
z<7dld7c$!QwB)P&g;+gJ2Ym`~8bFE0sCfG-DIZ!-cd)M72<xgw&r#M@nihS=DL>w+
z=8YFYe*}C6sPcagnv&XIEBmTgele|iS^#xzUA0k%b=5A|8y>^D3K{K^d`);UcF#5o
zbTu#^P<&kono@I|ePOJfivA-fh?Sz9-o&)496P^Mrz4k9J1s>!EmiHb(aC=g-mlul
z+n_%LJ_S_%--4zTA15c4f18z4J)12is0(q08k?X-&<HvXPSNFiqR%<?{!*;or-EJ#
zECW=&4}zw&-O+1Nc0n@V4pu=;>;@b%!-izOc-|tv1h$De=y_9H>l@4a;9{#7c0lO~
zZcmmgf*>r(ZB{{W++ZYo5icYqpP%8+<rAi-DyyI-Zd}FKH@H?;a%=so<X_tp<3Aa6
zfBFt6{+EEJ)cL$~v{le9_6vWOv0W@lJg>%?H@;*(D+;mS(0=e0;XcY`m_SiG(;zHH
z9Md3p(n+y0QWo*#_J%>@`G2Hgkl+UO_@d;0C-{rvH(Fo61o{==?+(w@@8aVxNx8T8
zuCoyeTTT8h-0NsfPCn6>r5q@q-k|#e1D)R}A9W6{K4m^_7gPD#t?jLlG_A#XZ#~|j
z#`o(%w*a34O8)&`IhOp}tdN@7<;FfbGDs57WbwQ~o+8MfP8L7Or~KuNcK_h`c6274
zH{7Z};MRr|Ii6g|3@HI-NZpMgFhe@WF+)11%?znOcGG3T3~5Hi)JfUya+o1yyT^1i
zL)yd1)dkw&cE*2Hc1R7c%6hCvIYUl8-Uxalu*oSq$+xTXS!pB^^J>3IFVF_Gd9_Eo
zb>837?)~3^{t@`~|M31culAdum~wnjYj)mS{%WlLW`Ld#oCB!(s|QUfe!nW)N6ag~
z+^6C=?H)Q#Q{L=1>Ax|pQhKwW+0mQ*^~|VNYZ$!0d9RdXGxCe#JGIk;puY!x1{6R3
zy^^2!{bpzUjF!g|?Y-G=(pN%@q-%HfTIJs)A63Xl%~KbFz8bh0pt>Y|w{4(z0P*{q
z0Ug%sG5K`i&3=<U_;c3xAj|li1rD-qFq0t1=I(1)-!&}bIu>YP$989rIJ%Nw*WY6M
zi#*T+fighJZ3bvc@%xL;<fb+lRdv|!o(_~b``%6Z!(3}}yxBto1K#Xu$J@@E{R7II
zedRvM*S*MB$#FO6eZU8RlH>QFj{xy<tT?6|6^CtJ>^JFs+R3pH-lnhudXn{hhGjg>
z0?*?p{Fq+sVdvH?`K|nWY#y!!eJQXCP;$H%G^O}+zIZuyINuw)j?VSh$@9H|bh5We
ze*lVRIK71zCLGLU<CdTHUY&Tczmpj&+Brlh|A*xB2k;REAJk9W`=Ap9qydW0Y|xZC
zpFcW!v9HEv+lPaJP5O0AdxGPk74li&5~<nAZ-MhZ%I{Lp*8*z+mET6^&(-{)KBZjR
z&RyGXup{L?aaP!4B($gXMbLZB!c9OATAOs|<+M^M|EDZx3*M{7)n7oH&G0V;sC<K<
zDaG5}#PW@;7uzydR+by}GHo}U<hNN_;=I?%w+io7`ECS#8*nF}+AZaIAHK)uJFi2#
zrE<sR4=YR6Ryy@}Rf26riS~C7PLSGLU^Y2?wIWZ&m+v2_b08Z~^5_kk(&^4Uh|<I8
zQXc(j745hU8zk1Puu*%{GY|)%2KIJ^o*<oIErydw(H^Q^ll8LF$%op*D$pB%Er8<V
zQRmN9J5ZmJ562oa1%`R7ax2Xkc{sb=%ufD>o%c0M{)Xj!jpk>ZJaZTyHY@qmFbki8
z+=uX2)pfsC_qyam`==}~@sSL=02l};J}R6)SNW^Yn#FUM%!5baKClR{UV1_A4ji2g
zhQgAeU)ZppS@;(g{#h`zmkoQBh4-@XtJFP)$m0Q$cj+6Fp9bWo#=8eWKMp(tD1JT!
zE&hJo{b7us>SZ;92J}V`9qX`26;!#0gftvHHR{mRn@Lluho^edp(fT17pEpmwcv-6
zK`AaH+ZGpT^I-2Zmlrq-=BhU(f2FU%_8-iUyk>x&1DpjY{{8@(QibD3`)GMd{uFb)
zPpMtLpc0V@AWLGj^je0|WH?5XMpEu+VAVKW@*+|ptmxg@xTJvCO86sf^;r3q<ZBP|
zRqMz@ppO9h>oLCOf~GXQq2v8tyxa<l6=y}g1w|JVMyOTCG4lz43pfqD{n^yM!#cq2
zDTC#siIYzw;x>lD0>KCW)p__Y+XuJFt^~+8&5H6o_^k3_ADx|JggCBMeLMnRNA4c(
zN?Z)s*jL;5H1U~)Px_CBvb_eyI&;!HvYb0nj#B(Y^7p*~yA>c8P~*x_&|`s+qerjy
zThkB8a{ur0PG6#~3;*}uohQ`-;K}|Lx$7B18=Xe|YjF|!5KG~G9%RSyp?vy7toOrA
z=+R%s_~~$sT}=(EJ0HgopSL$@e#%t;FImowD1)lcCqRD$d<Lj?HttPXpN6BaI^EIh
zKALCo3#m@DUD>v>*Q~>&w^b#c-Nmz~c#ap(;=`g8x4E@%FsY__a;S%JLr*|IF>uYK
zd-8dqHJw*m`PqGvJlGtR8Vg`vf_*{2EI}v?JAt~C3sH&DFnCt~5~xd+g-yHriFA*S
z>g|SS7y{VBp}E$?+1b36bMm(lZIR_~METS>@I2^$0&fATp1%ieyoI(9Hx8`ovYy-I
zFlOPBW#YQ6f%RQS3yY7TFhI4oLx(HB?uN^g0naw4a94f;?_F>jsQ?uBFY=*%f?+Ht
zu4Zhd+(^Uhpq#DX{aKdQ@}cCr5<DrsF93ZRa225HZ7pa@%h$^G*wy$jX35f}E9&5q
z6MFVzmo8nhw6}PoGva)AIp&#0eLd4Q8F_p@jii0ldZYd$$;W==Q-yq}pXmG1CxGJt
z#mDEMDQ$54AFA`!qub9|XBaK&J+B61e$CVs)r*&}po?n6hun_9kO;;)Ry=pg$gE$>
zk9p#^TJfwF&z0giPCQSdfRc^+20v~N`xq`g55Dc(i8v5|6|@194=c-vdg&Sw_d#6u
zdJ=tD+qo#-j^#@9;Igq)XW4KU2Q?H|FP@(6!H|>4YndAny$57@;GZ+qLI8BT)^C9}
z4Zk}WE`sMSGo{vEkYZYM{BwG_5&fu!dC_W3_i?tlm0XYd(J*tM=HZ8;hg+!nUSk;B
zbY8*M3bpO%=Tg4qZ^zEN)`Q**{25T~^LfzwfR&D&h4ODx(PjIL$+<$v`S*-M@^3n$
z5FGfw&hI1#{=#*CqkgNdeQ6HfucsL4Z|lQI4f%w3b=L=Q$|9Qb#R!&A$(M0))=F`{
zHqZ>{Xk_j>D9agr2X-S)JE{P^7+40VcC-^TrNmEVd!F~;{~l*0*VKUO^^Jyb8u+0u
zJ`PJqf<45SVd5#=2{!82d$l`kxF`*b;J8D<;Vh!y;6R8EgT8mW9}<IRLWRdoSNP<$
zztHO0)1P5_drW{A@(eNJJi(1y7~4xvba;zwhA36G%JQcED^{;(gI)#P0H}I>0racD
zCvo%Wyx&o;vj6nQ3O3fu<m$;;M9rx^YwY5AwbhGzSFTuoG7OLC?_&0a^FbE!$Dtd#
z4>V|kY#c`9Ozm=47!jyUBhQt?U}(cLELcQXp2yK&+&is+I{=@S`0sYh-fp3dQ_?Vn
z8{IUm-CMM}|2p;lZcGkKL2m-?1C$(o1+Bk#v>cZIZaEAZ@cZRJe;0B%h|(S<hj_V+
zgk1K*6*s#Cav7rSaOBd>6=jCY=24gmv_~esXIQ@fTAq;iKuk_jT6W+smVHRcOG=I8
z_JMAU#QG$bi`MY9l-t?p^J@H`0QpP;rT~;kcJcb0d<NK^q3w24@Sp-KSNughTAlYb
zI{%i&@g1P|0`CE;|NY?nxzaOH`;}M=lj}`qeV*5B7Vk4zv)RnW#|ir|scmKpkFeVi
zUpwUpJK<MMC&t2OSbtZ4&uq_(w^_<NEbLBnC)$Zm(@Zmk?_!ARbh)zvZT(i3d&2v%
zaxVvc8E_?__*@N|Qv5kZJfDTdN6ma#h|&ZI`B9WuR&I~9%gGnW`I-ThxWPs-#cZwn
zPV&)=e3bmZ1^o-<`$3Ek9du`Ww9~7NXK8F~9}$6~8+oFcr5Urxs@icnh!-|H`B&oo
zD*t7mF9a?DlpHPtO{q(L;$!B1oXCBqX3V7AQ?W=c{a%)P58kWtJp}q2;735^`zvTl
z@$x@LxdkWEb!X)+HifjPKY|uD04-`<YNyd&B>IC>|1Gin&jx)ya1o&LuLn)(cbB_;
z?og;^m20I|^{ddT2DHC1qdPm1TBJyIKT1CKBcCDoh5Ae4hqjgn^Z?YjH4F57;6Pm5
zl6=R0piTT|FI%#>_sNSF!G38$^}=>TmH30gVmX*kqd@LOZM)xk_IFM<iDzMfwng8s
zYr9#lE1kRDCR7DXj|n95$ajdh=)xADC-3n!ulNQ-RVqu=Jzw)g($y{D1Nlb`0;c6A
z)L!motb$Ks*|MCKKg)9NL>W|le+>E?;735o+x?N0x8~Rp?|v<AUUrJnR>J8Q)YXW7
z7VB;>HDAkxsrfectWG65plfSjap&g;8S`6r!6~t(odOQ|6jp8YA%@F;mHf>_{))e=
zK;I5*1{8mff~FMT9y`jvuz2F)^Qsrt&TC^cjz!o&KPB}xE|VYG<a~MyRukIuI2{Z@
zqZi5t7khK4t&T!8_chMN!>%KePuIt>bKgqPX94wqYA;WL-Un=V;wr6j;wn|$TPOIB
z=eI+%SkZO!SvI$NG2-hL^<Jvfx|`WGd>>umIH4(v_KA{Q#rhiqa{FYIp4%r}+7sad
zPeoY4bZtK`3Hkj63572+V=wdYlv^V(@b<yL`?korn<C-cBLyyNY!2F4Hg;e}MG5ac
z(XEGzVbKjEBjZZO%lTMZ5*G3@YIQITHS}Dp8DOkqo@<58o>1jH)syZ{7sb><@L^A>
z@RQiN=~&PcfXM(Ql3DzDX-D~-xMI<qnx!!%{v=dY5*%YBX{FBl8}Kfr=koyQ?Z8ez
zwVU0bDaD_|cbd<{#mmLY0b8ciaHYFNKM!ZL@=CXY;XR|<u5)oJFUuGDG}dl=fgTS`
z22}nxfu?lqc3Zm)M*6k$WN{%FBlMwKy8OXe!X)7{0G2iz+C6&M6TmfY689t~@}$H}
zP#pGL2?2N}fsJ&MX}AmzzWWlx0n?}ZGWl_cBrN_;jz8cJo2DI@Z1)6b8w`q-g4CkR
z^0a_o)ent-LnjUh0;)VYpeeoU*qf<!L`QkX4R<waK1O5=99!zO+J0<Am9|YU5^b4L
zsMDJ(4avs><fHg#0DT+K2q-?bf~M5GQI1o;i;rd1=gBb(B2KBw$1Te#&@SAf-wsE~
zP~l7#p4$=CeWW~lrT4cw{InuJ)y}d%v$ftpe}EFT<Gt5QK91U-cQ*Xv_)d&Vq~<2#
z-td&r7Fx3p26BVM(w!V(?((r=>0=~gLz>3W5j|OclcmThEM!SJHGqdG@;?jn*Q22S
z3hV)toIV0gY589ye`;TO%=(hScsMqQ4RV8c8pU?oqTi@%Yt6w>beV(W(2xfk22Yt;
z5b1;11Q-%9Ml8X9xnhIZWJ~@^55($mCg{1q0zmP1IcQ49?jLdOi3Y<{7St}3O3-Iw
zjn{J|@dr(%r_5ZayN6s9J39wa!GcLC+;7-4WX*t=6Qv%cRk<X8`;mVX`IG#90iF0c
z{Fnf0Jg))05?Hle%5OuH{QM+--_lt<V=5B<0bu#q#KlS3pXEmrqZ6|&dQpFUz!6jX
z#4Ot4(f{NL@L3S77p6Hl1cPIZ9O$)XhCJRJc(TahX-V0Uf<Y;Xh{lF^N2ASL-4iMe
zdXh_%%p@F;QJcLKaZg`nIP1t~)2wI3bX$a|1<0boE6ckJWl{a=An5Oap8-`LX$Sv5
z>O+)s>WU@HYoI%g!}E)<{Mtw>z%BY?T-yu%QOPwT+$Q(P$kpvodeBZDY$RrY=l<}x
z>jb4mJv93ypLO7)%Bh#XfPM}57Etvv=Ra680=tzzV8>s7i77*i9J75x4W)Kz&0JVV
zEv=cq5Cmpb`H5k8MNRK9)r*BUKMqeL|1mxwPa{Lb^B+un?9<8N$QHc>Q*9YQpLzWQ
z175N~+&~j>6>zfli&gTrX?$d+`=Vc%#+Rli<Z-25X&F~p2|am9;B6jw2U>>3)|kXW
z;i{p$+{;ggalue~guRw!R&+yn-*6f4bJ#S#!YdNJ`6)a#Y<Tp%|I#m+!HSo-u?L6b
zgQ4pTK{hbs?{JgAo-++B22VAFXXz45(`7EhF7X-Oyg<PJk_Fwl8(6ZDRF!I^oUD~6
zNO`wFmQhFE#v$wzfHFYI`(@DXFED?n$#u+x0rJx|{CBKts+TUUM&ucu)2e@HAJ$o`
zezjYC+|R|wVJ1GVl^<D$(Uj40NRFG55KV4yn+6bR0rleUQ2xu7@spJpD&h$kh0?8r
z=m=wWD8<yVAh8fEVVG+~t+6nGc;p_0Q63-Y$!}qHS<fB?WeFqri12xk`m2nO=2LUc
zUY<;k8zu%O9TJ%t!GR&a_aVkpGjPr>f9oGK5mm#qQuQPnM$RHD-OF|U7UM05YiSJB
zOW5POtDk+QXNr4}ub8i3$>tPu2(JiK^I@j^J|~c650+ulAET8M$|X}{mXv=LWUJ(V
zCFmD{_W>pU8HcfE2bwAF1k&(`Z0Dcs{2lUNGUsg3+Ie29`>&D1Zr18<@QRP04DoTF
z{PvV7zJ12T2Wo}>CTfK~Mju8fjV<~UtiNx-Z3e1lDu{>jF@W6|)SBF7N7vC^F5eE9
zC(+YAobDf8fGeC?xC}^gt;GJt#374|4=9ZG&<jg?q<-o)4nT#n=hK$&6)O<h$c*vf
zCm3`2azn%U9V{>g2e&Rh*@xJhuFsgUiU%g7;O;)b)sv68oe$uM0zx`&c)g!b#=64G
zkK=*U&;Sx=ar0f~V~OU7DbuY?-h`vBvbp^yngJKCRVMR(UVkVZA-n^K%U8_LaW$|U
zchD?;o$*|jm^8`xEogfFA%5w9{$XYuV4235|DjJaA^IaTeqv@?l{q8mXGuN%rO7_i
zja4~rlPCEj;~p~g`%TM&C535Ej1--bd8R+yJtx-M3VPwbBsqC<u0MZXN`h-KZ)<cJ
zJ&wmLn;L2Rp<OFH#IrwT_8)1^J)2*_X>W~KCs><*!PrRSLJFMtHlul9Du0GiB$RXc
zMP|7^$~Ozf%!|C;T=NjG5WC3%{3MLMn;Dy~_d<M_Kk!<6uxB%KPuKH9<IF$s$+-uN
z!pB(FZWcW~=OjI~yJ*YqDS={C3R}r9kc}HZlpC|c!#whj=Okvi2fIrs9L^IA8sxWO
zF=|is_}mZW`*bfFi%3mnvfWp<#@hXPpsxb11JrzU7idb$Z<h1!?^@>}4pYri+JuwO
ztC!?P&nDgcEqW`{_WQcS(R(I_iUdDa%7OW03`v(u!}$jI>y>N2#$l4bACUhL<bM{{
z2l@ZSm<UV+RKHvZ`XXSJ6Srr}PRVEC?->`#Rcy`D<!#G;grEJ4|3=|wFA&d~-^7+~
zE$fq0`UC4@mOjt4Z+s=tcPz$em3pn)@zHgi`v<nhZC>p@$t%q0&VXl;adgZ*pAV)0
zIB<U>eRKT)g5f35zZoIRw;#NhJLS{Ag0BSNBtVt#Z(rj+{Ttk2-yz4Dy))#vv*DB9
zG443^Fm3sgrL<JbYxaM^_xV|~|88A;JZy-Mk1X-={t)qzzYnAA7X9lm#+b{!c<f5U
z;}u=+Yy6R8{69#){gG=M{bh#Rcp5>*a4k~`t?Lr*4upAPF3-0DSQ3Tc)jn6x^oJ2H
zC<(q;{>ih4au22g8p->e!Y5e#9q#d)V^XbjtDk$4o*uZAlZnZLoaLDA?|sGwzsK<4
zuzLfu_-1ajFn9;K*f_-8DM7^DsmuDFA$F3*@8+HvKl_a%e$N1mBqI~9<NQ`wD80h*
zS0m?PmWlG$+3;d)%&y{aUXsg>bCpgp2X*{mq&Yn>IDtZdAqG_zE;-S2lUdZ7-N!#;
zw)&@eY>2DhY`@)o(o`P4-*3F@_hfjWh;Ukt-`K(QWFu;v?6U7R-B-8+tKI3F&7tsq
z<abTV@Fz#O|1Q(D$@H7@#py*DBaCm@7mV*j8QvpFbUQhG7GIpoZ^vb<9{$*8eCZ4D
z<+|w!oHI<$e|s2WDxg8#z>H~pDKFr&?Ryyd{rPmrD}TYf#|L{aX94=U0RHBj-!VwZ
zzmS?zoPKV>*uuViVo|A&=)J6j{%970COLnnuowM4bvTB#3|@oR7w{1njK}e1lV*<_
zJGNk4`)@-E2lOaEap)-eCzFdO78Q<L>HOW(#*H7_yWgLfJ+i1!<TSPNzl@(XwZ{1}
zx?pf|H7}h=|MC_#lbATiTO~Lz;KPPi7mfD~_KJX=UxzWjUGBw5wkr)QsaNzsU;iIr
zQR_eG#d->@v2L#HPtk8<>+2Ih*8pb&YCO9fv`Ef5TjL#ayg251RjjXZI8n27e)U|j
z>8WRT2|I*dbb8p69u+V~*rLOJbwdct?T|;e^dMY1_BKlVxjdWJhyAgN8Ny50jbvHW
zGEef`41S_c|Nj-V|2x?C0*c=Oped!^EBTB%`^aPRE7p4*_-$otbg==tL~eZG)Z~#+
zE}DDT=q=Z9#(XOUYqtbG&?-z?<~K<TY5;B=u@-xb@p9+dO$(hR`CbjaLJr?MK)(d+
z1r*<&?<L<AFG#*WdGUA1S+0{hFy6vG!D1g9fS0lKCkgK}wS(Xsk+BV|L0m!DPLj!o
z2TB_TK8v{*x;H`3a#0$@(X}#@e0EQ>r+Z+yyH8vY=VCy>f$eBM3?Y#)c_SK(hz}*?
z+)^vcw*dUBecH{Sp9FRRs(inIrZjJ_Q@%HTNBNxbxP1X}C;yGSe_t&>5EGnk=og7+
zfNtHl=xZ$P#qeNEnmL#>Q`}zP03+zaMWG+Zg?wmY&^j5zLqEN@JusM$JNPQSG;COY
zJp<-1BFM-Iq^&U=`i6t8Gk7@<pl(|i%5qNlA=duR09^&l11QlPbnNrNvuc*FpsT(M
z!6eKt5SB0MGLzj&Ud#+`uG?hUs(X3J?J{#j_*<=Rk<51w@+igo&%(U^0qD<xF99WA
z{-fj}-u|OwyI&z4Q-TA8H@OP>rnKd~7q;yQF=MhkoGWM1QTGU=O0F%aY|+J%kD16v
ztuO8a{ULA|Q1h?$GtMM{El<h%-R`U}COCc=JLP9IxdPF&6^m<00i(}~<@5Uv>OFDU
zv=umqJ4-kV>G($#LV>_h^3B=BUofBLY#0Bp{OB#d+{MMm0VY1ii|17Fyb?cAEBO!H
zsp+%eIrs^;wl`rgA8L)l{Ndr*QYpje2Yap3G(FpLjpkKwzXtQDgaZ6IEK99W!15bV
ztnlNT?sZ$7_2E9#Ku~S*O9W0wZA;P_?rewZW_EX|o@Q@{>TeE8z!uSOx$lek9*B7P
ziFZcAIabunvZA5JNRl-HyM$iQkGpi1XM*YOGpf)0L>w0Ras99V!M}?22YKGr%&Z%J
zei<L@O%J$e{vZA)X4>UBI$|oDrVbW$sGyj^KJSncS`g|VaGDEMwD!r1Kk?fIfIJ<$
ziSu_D|JZ{iIF<odGFq4Y$HwuwBQa_eNLA;{c2S2qSMA~s&<_L80jgbm2KsBj<=F8l
zy)~oLd#MxDt&~!QRqk<|mO>h-(y%R`<`RTY(6;K!B0Un#h@LnqVkdgwIwThk;V43n
z31o238?48>%={PA-({J4!CTC3rj-Hi4JcTTP#9Upd%zA$XQPCt0jGQ`W%(+9!I~03
zQU6;6`WoOiK$Y*Wp#K59o+#Iu-#F{*#AB6@%v)r1nO63cJZUQxvyOb)H1}-Pe`JxK
zFu>IluV$iT`>_WjH;mn&0+f!`hUZ(>^B3m&nd!f<0==)h?-$HIKxHd4M&Xa&MCqvV
ze#90E|4L^#4rp^rqLp4K%UAeoZ2UeM^clb$K#ebFgQoPq&OJ|Fylh2X9sD`h%<JUF
z4Hp&X;p%X!zJY1YxT#n`Yz{DH#KxIsho7CuPt7O)2K^=Q6`=U}3H1MwA8}R|cfSUP
zs&I3%RsVzb5%>{i#8YEly>Y((2PvNkM`HXe0et~*384778nj5xI!U$fj^kZnvD30^
zmc}uHle=cj*d!YmXg1(<ACW8}oFUlvp3aMCJQk_)BFRq+@^j%AYL7=i`+tM4D?qi!
zUZ4j8zr>yMS9IDQ;U9J^X#v!T`(BzJ%1^;5bvGarC)Hc^$&tjwS=s|eF3xp*pJ5t>
z|Ahlkf6TWjm=$`_6@uHzJQ2DBltLFvKI_4Qnz!x&{Rr?Fpyc)vXi8h|lk-JrRp;vh
zAxFtx5rQK*m)5uyxtrlyBsiM{_ZHKhF^ZBsk=*2|JT*mJ1&%W^u@vv6mSbA0!&fS#
zr`p$W&|`q{fZ}TkXiBI5k9~XxzS{1MN_+LO!O(c^ecT&m(|yrUL#X^}<(EjgG~)eH
zyr1gtDbODP2LM%nsSJM({1WGH;6SJQ^x9=(7u7AlK(uhGy~+tV(H;c!15R=1(fAw+
zkpIlBdeKm$?4P>!Z=>k1y78h8)kMRSkQf}S_qIGngqQ36f);Fd`suK_<UNzDL@N@Z
zs$OaQDz2Ex%n|>-yk3@P0eDsSO@9P^D{v>E<oP&gN)2)4iSHjB<msGpt71i}R*HIt
z;q0|$>^^P~25q{VgD+-cungNSU)zAv;_w&ZF?pAO9t?~Gl)R^aMu^&@<h`ZS{vtLw
zV?~b<dON}jDoHSxH&ib>hy1m-c=Y!?wpF2v6Pl66c;YD!<L@~nhq}w0c7QxpJA4xK
z+rayPl3Ri<<@UO>Uar{JS^pp{ml!*U*|u;S8QNYcO>FOA;@diWP|d^Cb_ZN~jN~~u
zOUyz1`pIc}`XsE3^IZe5PjL0oONVj9*9-SZ3#Yr%%>2w;(aBH1K$HtDD#&*=<K1Y(
zqiN-<ocaf!QGBQNd==<s;0-{PW3VC15#OFW)<4D}F>AC*Hl^}$=w4JNwZn1k=t-b^
zI^Rb*pY&ZQ)X+Z?L=J9tw&Dn1JAz_oqNSu--EHpj`i5G0X*}KQ>%r0Z4Nq}$k7U$V
zGJMEdVWZgQJyP&32xq!3E7$1l<t5%8HvTkdxq`fhoe?VOJC%>KGrUvzB;AztJc)n7
z;dz(M;HLxA+S+0BYAL4%$U*g!M?pUUJOd~>?Ey{c*!TanQfoxcXl=rZ)D2lebJ;Yl
z#md8`%|kcT$4S5KrPs*(Q_WcZLqJafW&)}oTnze;K*cuM&h|R{XjiA}cV{5RY}UpE
zYz6L-M$tR@vyAOx)z6AqtpwxEqlR|CDtW;)_LxD}2?(s32os8I{suF9dZRq(?@vtA
zRCf}Gzp{Lor;IfRSUt>PR*(j8x*NhPL~6WFmZt^0DtTf-t|bAeuQque2b$6+&&%@U
zce<~}1^3d}%p5CAEBg{RpRgp@h1D4~qJJ1#gDsa|r2k*Y3tW?+m+f}t!eO`B!w>$6
z)A5K<-Ur(&+=$QTqwK-1Ag#beS}XZ(1Ye5p-Jst9-Un1Y{0cf`yR=VsNxpYKAwLT{
ztp~c5?~MNz_IE5Qa2jxs%e4j7!u>eQuuIli#(LaHOvEzMW99Rn=0WBkq~t#nUY$=A
z6>yq83|3x_@bNFJ8YKTS!JFd09`p^sO@M00kAtRE;f!0WI@Ql2xliw$cWm?@;9^t%
zG(Jf78%%94RHT&$aw+?6*gEC&zUCJUEht2?KUv5gT2a$cfcd=2OcINyKT5tst{C4v
zK@S3k0gCUFK~q|Fr<C_mb_3$xd=9+pw`=ls7r-;i>?Jg~{=~Ecb|LQTdh!A{PYClA
zv%t>-wmXT0ILVlSJqF_G($Y?*4U(^Wk*|{H^Pv9;yagz}egsXaVvpp@=(HWzE?(Y_
zt!DOww2+^$PYnE9IN~dG7s1e#5RZpbFWZW`xi8G~?HrQS45NrwLv+ca$(G(I`J3R5
z@i!OrGGHa3_`4PK|K^XvK^>dHTmO#?R^24|YeoKQof+}Cw0z)1K=r5lK|f2sJLeKg
zeodX~xry*U4x_zm#CU*Z74%CQ%{$2e;XSCCP;FOz!F;VOe3<bs*?%xn!1K6nwz5OU
z7tHvQg}-3IRv1O4YTI40b{qPe?aK}4@n#$lyagSpyIrPjh0J?gDLfa0iQ762UhiD}
z`EZXF9mOlsG1C<Iqo(Pe&5~1wd~O>D?C?H2m}@q=U}ywGI<)xn$$uE`czf`hISWuP
zsNy-`$TFFQtGq*)-Q2ip04EK%N_nMvWA!-@^a;R8fT~ZN9gF(h?dS#0`<HBYLKtKh
zDf+=O5g#a4qdBd(qd3f2EAEBF$6j_=2x_OTt#QX>P{Md-fbIcJYlYs&HLFJ--pfj|
zimV(SGGD?W1+~4CaTzd}Ph)+JGCtDmYvkaLda$chKgn9h=we%>$~$Cv4uD_Pe_TG7
z76DQLRi0ANA|10|qj}0R>sXOe>gJ+z*TM_rR-6cH&*0uyDT1Y9xC|PnaX4AUX&DX@
zO85vk+ZU{r-zoX3N4|=$dq8go9tRX(e*;ZP&9~bfdzy}NUJ<vej?GZ@aPmb*APM3K
zq#1sp+A(-8{BVh(W&|dpF+3LyBh)DQiuz;yWjyFpfNDVXm$jfb1FM|#yP3V5bB!+a
zh|m&N%vF86DAs54n#>*MHj_1(_BM<zTlM!j7RcA=T8q03;dfltqm0jLv~<{QpnWD;
z9?ux8K|}l;cdB=IIw(_|L67BEa-qk-cov&(WK#Qp8%CYsO)}jj%hd{=)p|M<z?u{&
z0F=DTK~qxe={=5KNJn{N9SZZLSb@;_QIM|;QIM&!Ag!i$Ev!RnBrUY=W5x{(mq*58
zcd;e3w<h84qBq~haYu7K4qW7F8Txs5OFlP(4>evr1^S=BTY%y-1zz_l<va063TveN
zJMvjryr{a)X{#NDzTP8v9o$~@M<9QPV_LlAxKgb$9P5wdr{Ze;OQt6wj(Cop@5f-3
z%(pNvf+~l32F^rN`(kbl*+~%kOb$f^T=J8y!BV>HSb+b2Wh}#(P7Wiry8C7MR)T+3
z4>y9|4Ez~T<$D@5rA>|=)B_K8Hol-9PG~D2ZEWlQ%g`IIXQDg)N!LDs|EAtN5;_CR
zZ95pm_?b*Y!yxSW`=C3XZ%%b)+USFluhdYiKTZQZ54aFe?f!Yt?*jQBNPf1wEkEz=
zbl)v%qlOM89j~!%)iXz$rJSe^R%n}u>+&acaZ$blx8^jUyusXMo|l-r*b{~_@`>&q
zp21qZx1?>2lLL(r&a!dE>ND)?ZTEA!d$(S=29EsUDhXO3{@d;1)wbzFq_0!&wFmOF
z`|KWT>?jv;5{^d;97MP3ee`5&Cclse+^1OZtE6dfFkS{d176I+#;N*=1}-{8W#CcX
zB;_<D9BZFvg02M?1FHV60!?XmTs)#S0XX`F!hQA8EmV%GQ$#hs0Z)3~_)&FKY*d|1
zBWm<v$yYP-Rqg69@sQxsOhECK2AWd-UuC_0;(T`Gi~2YD)pi)8mes)C#DX2xvj4&d
z)y?a=_M*4DQRbV7w&imVLpv8sqW&DaW3;Wa%@bWi?E<xudsOmQhx}E)z6o?Aa5td%
zdkHk9|0OqZCE1DG8rhu~W{AJ%xb|;|ErdmfI^|Br1>Z6|f&nzkg_{iOkbOCB{hc|9
z@~zzN^n*xDj)Osu0VV*7&*`8k{m=e6ige}L$+4=54&<_D(^wDXl_OwLbWV~}e}g*Z
zOj@6m|3&iAh<ud1c7xsrybdTn4uPihy5nEE^YwUPaouvY2W>YF%2sx+Xl38yR8_<;
zk}ebF+&wqe%1Zb|1Zo0jGL`R;{FNuh<a7q;T3|7t_`47^rT;0X$~Fe6wZ%!P5u9}<
zCHReaO!Co;e3YDi1Z^a_G(Vumtt`;_KzzG;y^Hx8syy>XVfWQZ6BDj%D?|l$$9C~H
zraj{8{;h5NVB36>F_LQU9HWv%MV%IZEYeQNXB~J@{c}C&JAk_YC9iFuDJeUtqwM*_
zxPkr&UGw$~lF-Vprob?yI*s1Rv=@E3xWqo4B~sHW0a*i{S{y!pKt76(gk-D%fMP)L
zF&Z?bczeYfT3WTOZyh^_>D6aZ{`H9ILTjx)^azN1jO#cwfZ-nB>SyFL3sf+en;Ogz
z9qte03rsbr*2krMHX`2%$d}H^wu9ac{2fsBcnI|OK)&N&W2a-swWrhhXMSzX!g-@F
zXy+!)v9ZY|<C?AT*MkathH2mV2EvU+mR}D9{RMA$js4zqSQrn|bA5R<NE~l0!rf3c
zRq1u4?TLR;{-o3XQ(SHLdZ&S|0nP@L94`S)X|fYXp~3O1-cgQpJ{e;ZYPF<DD<(jW
zSY4xFmp#=Ug=Lgq&viv<0zVlJ-i7QMpK{ti@=^8q3+U`rmsSEOxy=E+7*PHalplKE
zn$Fiv&e1Y?Cy|Ee!cu9;!t)%@33XyF_)1O*=ZY`O#j{`?_}Z%Xf?%H~>B0#8A%Ayn
zU+**4`YbG_;8Wc?)nni3GdBAIaA!D!elcfYDQ<hSc|W=iNY3ttGEU}y*Kt50t{!_q
z>dzxCkB!%fRQ{|i_b!wvieIR`d<yzo;3q)Ie^r{4|4v6Qr>pT%)Q7r1k=r(E(oO7Y
z_cl5z9x2a;54g2=P#R1s;5-{X2jGw0uX{3Ka6K44vMiq~f`ilSY%DDX7MZ<M4NnhD
zH(ne1S^@ZKH@t4FRT4}Dste$ku+Q(Q=)=R&NMf(B$%ny@)d-$q1bY!(2+Ay`_hPD|
zTWPHHaWl<e=i|nchMB&6uM6)x5gUin-A+3|c?%tR`~=#Q?$UyQlE*EeDXod~tJ|?X
z78Z9RkG8wzUF;jTIJzA9tf=cZp#FhSW9^0Fb%ZkI|4S$d6|nSogfhLIP^PyDW&E*(
z@;C{Zgo4!YvXsjKl)D+<shzM4m*xfnfRal(Xi5tnk?W$)?SAIhE?hW{#uREBb+5=}
z_93R-5t@RQoy7-JrsweU+lDo*{uP;j72Y4k`zilFfW8E{+{u&r=&|);=Exzew{$l{
z1A|v<3VHGG8l3m<!Mjwwe**d&;734}?+9p0pE&og-~2<Cvtzxhe5RdGYUw<uiT|5z
z<1luayiFWayvw!iAw0B3jvX^O6K#D}mTy94Z2p}GdIfMHpz?13P3hSBH!A<hHOna2
zsu8-#v6jolXC{jMH>T|jC1X35VR?Dj4ETy{(#OC#{=>}3#QS&cmHg~Seo7u+fyRnY
zvjN3V3usE)PnF}}o-;eMGof)=)HiXHS6{rk<hLSLU)=4tA{yiNmuPQ>rdz#Dm*pbh
zpmmm2V+}R@uBRBzhfQO$H6L2(xDAFT8IYQ8n8tC?A2N;6yeAy!4B@?uDDN3KDK!tO
zD20Ji#7zwihbjh?G8U$t58ag0OK)bp?nV~42|LnO&MatyPfUj~AsnADf3U>J_qv(C
zXOu_H2;yq`?R;BzrKc6y1C3sW`3Sp#^-kn|PYo2qkApX+r73AvHMB3Y0@pDM8V>;|
zhr-Y}m7idghcUXC_EdX{eGXdjbIh2+YxoY%_b|SXLBoaL$FK-H!1yoBeMI+-^A-ha
z%%v{yH=V!8B5$$ealAaZke!@3H02GJehcH*bN)St&L2Xj!MDgnel5MA+feG5(T`<4
z)n~i3)%Z^R;&#x_0=ofKPlrHL8t|5Euk$|ctliFAvIvee7B5$QGp9*^oNv=vlU^mB
zmEt);Jfqt%k8jnF7+Pbb#+3`lMIJcVLKF~vifuyUY^ukyCh1c!dSlGZ731s&h9Qop
z!AIk#lJD}ISo^91eIBp@Q1k6)L`PwB>X+@SaE|<3(CIp5ZuQ&+QXwSP+IATqTF)A6
zm$5=Tqt7CK>Q=q%ZawcF{WW&Co_3G^rg66(zDGalZawiHxFtOl>Bn8$A|ameP$Um0
z5Mf^d)Ut51`)UMUFkgw_9)RwRmK$|s8qJ5B@WsT;=OQ*N?98Vkrk(9CHqE=mcUNOX
zc&kD<l)*S<TnI&89CzUVDL7{Go<`$b8P8*{F^YL%7-9V+98U#d@AbKqPbJD8g}kU<
z7l2*}oC{F;-{al<B@5>{e#;T%=phPqR1w0AYgsxEx-p^R%E0AD96snT`r+HhuT>qC
z`8FeuAx^$uf{x~5Z40ROv;Z`vcz?zn$HAI&S5z+?2PTwLYOHNHinVQk*0xf$DqSvf
z@jaWUNZVIZw|YqbSl2G<2SK|LY5{6yP=xb9p*<BEa6zjO8mBt$_h4@At8fSX@NoqD
z#$X`mMwJu=$C)@c4SMadkn+D7KZNr!T6<EeJS5Ax6Xj6ld=vD4fL1`2)0g*q$|*c3
zws%5pgyv$TO>stDa;<_8eEMBXdzZly88zU+k+cW4KL|VH!Rjq5U}5atBqEDQ2EUN}
z%|!l+zl%Yy1=a(Kzb&9C9lIWu)h?=ASTnh1IgXt>vN=7D#f#vWKysMO!Ixj~wZZ^%
zGSxeL{eXNGU%_rJtvfInQ2ll@=<UD|CvN#(=lpGT=lyocqPl9bJ0wTyU)lS}e1C*^
zK8TwoMB~xBr-jm!+|xYuE_c*3T8nl+FLZ9w8aRh^;W7e?qwD!d_y6PVO#rJZuK53Z
z=iayEWqa8OYj|ui0fey1;u2O-5yIwzS`#4%3M8^9ZZ#?@uAoxIJt|eJ)<)|>TNmn9
zv@X=GYN<x6Ew!yuwMy02-{;KS$y-P;_V@e$Cw$*MZ(+`vGyBY$GhU8dDl?UV&KR2M
ztnjhHyU7d~#X(^_%<aM6Y>pfDp~Ot}yJvS*gG*xtrA0m6yh~WUDBx&lk#4=MBR$R>
zI}_9{S3MzT-EMW=F;Zh?j8@{$@tUH3!kefS)AXsyuW0{d|J@t90_+QHeocjz@Odzg
zY5&{~^U|eUjw<?SaxakU23ov3UFVE)24r>-CPu-}q3I|UiH0(So-Sp(>N6w9Civ9A
zN7{}1pq~b>1Diin2SlBD;PdxPKd>sWi<;JM{v-_ux4VBf*;A~u2j>dO+?f~qCQR<&
zkIXI4iszMF=GyFuUFuFEmr7_Ym7gCT7|+YW9-6~zSO8(bS{jKBFC7-^QiwHGEU!?_
z$`AF7s&L+bL9vQ4^w(trqTLGz^knD$0Ny1+UFLQp=ll9)-N`eVCy_@u!~SK6P3Dti
zKyNZ=p7%|d4B|chRKGNOX(7#3fnJ`6eh2&sSiMBcqfQ~%onenPvR(TedYc6&V;!-?
zobP>F{Hu%v1)vi1C%P8pj4c1g?M^wxl1PQWbt`xzIA+yN_4Ipu#6FI8>FKb<JzOmn
zVawGFcZ;hMdhpx2+sM5bnQ8;M&xO7T+y<=Ne}Mh~ycXOaVaMHb+m%}mvRiAX(wbk2
z>B~HDEI1le10(*cA?Jwlx0B-k(H%@KhB+DL$5cf8K=o9$Q8`jE!9OnAjn_k4BuQ_H
z@FeL5UkFLjL!=sd>(?ed75gOT+0&tCf;m8fq-pQ#B^3kboW6Wj-I`3}MigGkwUVXy
zZ3y^mBF;GRNj-QN`g!m&u=Vk;&=RVH`e^l*-j7ubZ1Xcx-=ME8udZi_=n`2cD%8k^
zwOqzTN0l4qHUYU$E?nfT2^B?(FcwA$GZe>Sd76;;kI_SQMN$uELvH{-0ybaofqnpF
z+QV*aH(ytZ8=Z;uCoWm8b9d$nZLXK;bZ5y*dq+cQa1EkKMS>NtJ6Ikt_v2-8Cl7bx
zmHU0Nin0@O?fq1Lg(QSCc5Z!8Je^%ZI--@ybksoK1a1R19bE=8egKc&YuX#T53}hc
zGoDM=cSbrg6OfV}jjLDU_LaNQ+bl|3+>`Z6L$!XLq+h4$*Wvp06#e>uu~nO_-<Y48
zFD^D;RLVNV9o{=)=fpgtcW#0)Q;hBdcZe~1$Rand$m<$0R9UWm7KKOm3BJQm4u|^Z
zRnG5vblnjJ*<MxK{~F{~Wt;z%8~nCkp6Y&h<?ODr>Sh!~iuzQRq2nzI|4`~4?oHFq
z3I<_Jah`|o<F0-k*XV^SLtVplq5i6}tw7bN8M<I?K*wF7q`W@@{XBRX*nIdK^rs-R
zJgxnX@?;jT+6oklq)RCG1A_9uuP!<N<Vtds<u~LuO38_mOiE8~(JAF;=zYn>{yC=n
z<hqy<l)DAUS>qYGrwvNVy%_pT&;+d9H$&e6GUZ;?DY>O1t)0hy!8A|^Dvy`k{f45B
z1$5|QH<u|D<1xusaxuH;QnzxQ==LVppC>X)2C(s(qHo{G?F>%JJq3CVI2%~G{{tP`
zcTc&ubzJUoT^O{@>6Ie2)HgJy7y8=cNYo54A4~=Z0ZFi288;eC59mss<8<O5XGBWk
zbC^UI(<POAMbYs6ZterF!qAN3jY9;S24L-K-tET#D)}z_4_6MLg!$6{$SwLCKkxsM
zYkp&XA3m4wgJ1mDE&5h|@n07&b6>iHOE?n|DMhWv`fpOJ^g-NQ_a@~J^@=zrbDkS6
z4;6)nhw9kHiFi^>oOsmedojAS<@<c-E5KF2w&yoPOUNuI>8jN23woa0K<lH5YKNhf
z%Hz2$%v<ejz~na`?dtUpG3Y%pFsF7l1pIdrzvUkq0u6cr%YQ6%C;1<;+*B%EI42-M
zH8>m;V&Hp+cY$(l!;Um)B!a@3$8)q_B)WUq^#_aYOlZzB`dKG3@sZU3yP$sswgM~P
zE@%mz(2tdG%E|>=#5sX@r|`_vMd&HzaQmRlz*v`wn^w*9R3vY7ZkAc8;g&WJKNLYC
z#5keZ6_259a_@>6xvPgJ<*tKX3Qhr5?(?C)zufb*;8Gus(mLgG>m3Men(I8bBsN+^
zV%nvB@JakF*+!o2@UwdS6#73vRVC#qhW;Pq8MdcDa_wQq0yX9sd1~Qj<vAbv3UD>B
z`uQ>R|00h#MlIDXMw^D#;+LjFfvR$iJiFj$<tZK(b$WyTz{)ck`hSvV#GV3e+KWKD
z0(qL?XXV)heJ8jVSb3g??xZ|3>QB@%NR^xfrs<-?9`n7(VXI?Xk1q}q@S$i6P-~vi
zPkeY%o^t46U^KAuOoi^GJW^(gswdOcjyOmf2970c!|vKj&_^sSR$2j?@(uqD#BcR+
z2lPYWm%#FW4Z4&3nJ&@YPk?_l7^7wQqwBn#qK!Z+ZY<hI^nrg1tB=~aktZ=CDbE<_
zNnjeV@*D--NqHtW=!F7ZXieU5N8%T4WrY4)G;*1dAzonkHxs|r$1k9_ffs@0|0n3q
z^EWCvM5{x_&XO&UxXvXJxe+u)8QFT|e{M=ky*-epYGhKLsnD~)5x~l`7`l`4Owr{-
z^2g-OCfC^<;XZTI9!s8xK31D7X)HAQXd!;9kLRIZ2X6z*|0C$m@}INh#O1oiNJHC}
zBU@00Eu*P9qN8;ZMMjP>qmpvWgq{z60IVD*L3dUT$(5q&N)$2RAV!PcNzO~?A&Mgm
zmY-$!Iq7EB*%0vGLi|<_FG0Tr-T{{X$IzYRKUeEOS`DLvdtK)pbYSu!D3ur6no(UG
zq<?gh|4iul;CNv9H$Zomzu112)}{%tt0Mt+1^l-VzfJ#k=s$o~VEONY?lk|^dkSzK
zcGm4_pt&SS|9(mSGoX(KKLD2ha_CO-pSmaajU8}j-qFSI-$ML0{Vzkm4c-No|0mF$
z<zKg_0C#jKKxvTvF-iV4(8qvUVEH#fcbdQU?2}#qwsassOTd2%@!RzO4tfW84_N;H
zgzh|l+1|@2fzNj!fQ}XW@vcS>)nk)#906Si76B{AsnDI2g9tN)*wLX7@ot9yR^qpM
z_&xOd;4i@P{}Q^h{M)GpA9p0c)_{NYxFr9hpcjC}!17-M-D&>ql!GSBwcD$QjonT9
zw-CQg|0~e1gSP^nGMDY}o{hjhpLHj_7>Dj<X3gE?(&@178pNL%pWNrGhOPngfKA^b
zXbBHqXV!;W0=tUzd0Wa9*q(vKhvfb06FECI;1j)Mvs*bgXH~M=$_^{*`fh>D<K>W1
z0|wHvR&GMiAl>k_>HZz`KftHJ$`#q)$hG(MpCUdUCoQhiEpUtbwpl|e(~C>yHDcD2
zFs8gWi>pz>(byPv0ke9CdK-J^gV|&dL2G&$xoY4WM^c%`H9(&M&H+}g>!2m<{4TrL
z1%ZF$)yo&6SuRGJ&b>$@InHs1cbn_HK(WYWV-1(NOx9yuyq&{g34J>fzKq&-%V1Py
z<Z6Yl)z`nF{R5&-6iASAviEgcJ@1}fuO%spkC1J#e3^C6bKcKNAV7gwFKK_bwE@3c
z;;tZG(Zd(eg$H6^2kiRFh0q&8<~gbtE^QQ%k~c&IcEZM`2mYcBv6mmLYB;&xETc|X
zy0qamap9R+7~3LC{+30Bz5K3W(V~_0di2`(l81r$TyP5L1B!s$y8QrVak-H^FW1K{
z<t=Vrlbbsv4||P;xG#$Kxy#3S%e8)2Hs>lI_acvZ-s7JCn3wms*M*Ue_(C7_6mF0Q
zUnRd&*_ZmoSNNQ-j;JGZ@b`z|>94)wjehKHRrK%hf(VxpBqIGNb`#WlO8wepPg-io
z4^)9Wlic^P7R&Q*alHe=JwqJKc87SyoZ>5r+$hCRhuS`-TtpdhCHO@0X)yGm;7DNe
z>F3bTg8pxq`u+5q=J{X;cB5^oT~S|Wm%|j!3%=%nA?FNN=+`fULx(&>Z$q<}=iC|2
z?v+#EJm|7ve8vC{mRGSM9638XhL2m-jjiDvj1=}&BeAp|%l2Ss%#ee*l&L4z-E`+J
zEfy>CRnB44s&eAJS)h#MkLCD53~Q-w;ex6hui#|uw&w!n|6GZyqW$G)kzU#ys+PNV
zhB-5$7pu@i?Es^fuGPu<G8Xz!Fca8%d^)s*2ZM8$tAcYd9TqhV3NfCNn%wHXXO!{B
zApNbrb3Klg;#8xf8T@C*D)Np~-TdAK6FH<X!3`CJ$}sWi2BdAqg5i2sE#th-eA3Sc
zI&9s?$o(dACHO@0a~Jey;9FqxQ+}L3f%Cf=_b)AMcRhA_!*aXjFqe$tC^XrS$O&`x
z2V39==8R`Ia9m<U*m1hk0I|jALh6vHF!C&hmu&|whQ1d(3#>fxiBYF7C=TqgRt4ul
z7q`348r;q%e&eUKow{pLPx#tMYd`&Zx3Spjt>5H{-PQx%Q*Mt0yLMfAmh~v^d3=u{
zJ@4>(<n@d>>%9F`FE)KftGwcpM^xf*g#*4WkF$7M5ax^?hD+k~?ofI6vKsQ5nxG0<
zdSx#ekC4ZDT}u;Li5pbjCV1dw`v7%|C%$4Z6B3V5&Qr1%=;QUS%rEwi$4u%DFH9pT
zy#>o@gN%OGk#^fIZ-M?Dcmr7d<V=b>-9YBL-_G&h(N5~7t!71iW8I4SsSPV^vx(W>
zel%G3xIydnQ$u8<q%S?^ZNHqY!B}y)OJPx0cH;5mr8v{R!7KWQS`aEOmCv%|v!WQE
zo$K+L?6l8OKTwTst=R^>+NC}|=K4k6xm1?seN8$WNkf8kOSxPReKWWl*mS-G{U*q~
zmv{4bwKI+N^*Bsmq2n0lkFvQJVNc@$Z%TGvP9nR1&K&3YNV#~>R<URNylpIOM^x#{
ze*ZW8P`IeHptxIsws2~8u@BeX<`k9ZCKUdrC6}--9Af0Jn4H{yu7<7w^MGv+7C}qc
zyL}&-v9dm}7O%b3Wy(1KL|Bx4(0ki;`isGQh)O@jFUQvynmt4{8RM76p+=4t_}KdN
zD)cAdb71AjpJL>g8{7-m_*2tfr?*S1>Q0>5xN1qm@|8odqhD3GWVxOJG`nBAx43Sz
z%PkVT=IPhSEtJ>?y_b|TrW~uI9<-`?YJ@*c^@^xCrtEpz*XT0;6m`70N=xfuYn73=
z7I{P>$@eRuZw9vmEARc#5^4jxOly~&E^mgv^tO8?+HPd!cuv)NIh}I_7TMywtCfW=
zyip9J2ROphC%gwL90s~m%-vs3^DrZyGc_sSVCen91YqTx2Q6XY&y60pJ=C5)Gwg)}
zw+Bh-THGo<rrgZ{Q>@sYSI$;nr0a{X&f`NklQXB#MaHS_LR^dKQVHK(!;PGGAx8!8
zMUT%xZwIdfE9aNc5*`fn*uH<E6h9zs!WA_(=mRj9yUr^(z|G>kP)^_#OFUx<#B>Gk
zDKf+u;va$|vzXH~!pK#9aI*b633@d+16aAvftIlMad>;@6q5qht_&*4-5zUX&&POi
z7Sqj3Lz)<A<k$uu+m7ypj!nbv8(29ip(U&d?k#KoTuIX2wT(OeDz0^(5Jwd&^y?)3
zip3G1^f30{H(}zB=eKxtv^vfmh$oyp43{Qn^@-$2_q;(IqO5VJXmOpbql~<30(m4q
zFN3}j{2W+${}g<0?HcSey<Vi<I{OD7^N+K!Ub)RZ&pl85!3}R#7pa1EYI11oxpYzf
zdG4eBK|B5V?|T!kjm%f`H+W;zm~*oV&dbVk^VWOCZt<o_@q1qJU;Kh!VQh(Sso!fG
zNYPvC7$bMZA<6m8q0oneSwMoc<=<tGq2;&d42(H<cLeV4_`yXhV-24T#5soeL_a@=
zei-~Rg-=Vy_$6I08TB!^T)r=i`Z|7Jk+mw|vzs^*0iWK7G8O^lK!T(vbDZ>@eB_h>
z|FsNWWsV=*T13AP@LNpWtaqAz5c(=`O$xuif8TUXUD2=%eyM2_*_#4>ZxVM!!0%gV
zby(C10|}D8k>6oIla^ni$H1%NK+-qR@dxUNcxegvO(SlJUGi-ybOTtK!mr}{@iVio
z0+<yzzKqeg2YgzH)7JObq2B~MQuyqBKATZK+V*q1!Kj<#cca}6_;j6~<TC+!GMEM=
zi2lA8pLxq=Ruq(wBrl08KF*Z;bt(Mrhkg)j`M={A<XAets({~a;<ojy=i%%Jf_^}P
zr0;vxGke2sN@1)G_|y_-g7~Cdtb@K3tWV+dz3Q3f)2<qwrhwme;<okdE9n0KcSbT@
z4_+Sh=jV5#KiB-)3Q0=p&`-dxnz${$MbJyYvJ`&bt6pn<a}g|Aty=>=EyP(7=y50X
zC*U(+`;9N5C47e;wNwWtl|w4hTQyVXEB9R_4NFmDZG&-uxHjudmPm}dD5rM3DX-Nt
zlk%JaeJ;2FSa~jn?u0x8SEjmC_%4a&H;6>5of~5;*&eSYY7OMs4nM1(NDXJ4Kq0X5
zbb;=SJgI&Y_O2c)%vVWaU{Jfi(N8V>tUT92H-pW<%5xWVXXHsgC*L`V-pp=OkJB2+
zvkQJ!p2}I2Suhe<dB#9@MxONZ=be-1yqu&wwFemeG{Mix^9c0g;7MTRc^0}e@}!>c
z?wmB6Q>0;h6UY;vos?%f^c-*`u<{%O-5GiII6vJvp`K3@3P!aD8a>?wU)$gP0s4LL
zXJF;}E3|~nbpjdD4jHnzZsp=3rivxbOwf|yx+KAS4l<8V=p#45yTsX2<*R40;>WG1
zT!hL<2~*+Z2JH4go-uQh@+^T~1x^Q6p0lAP*mK<0Uf#%4e@f@2DXp2sxOSo**FMDk
zo4`5EFLS%-0riH1jDEJk&+6wR=ug3yz{>MAw1mCrC%qAzlJucd^QyW1^IvcWxN*NZ
zxc!rMw%YKYHaE$CG4yJ12C)2p2rZ#QeRRxyi&&@MZf^hl54V2;=N%Uf$T7?K#322|
zZ`1!z=-uEOVEKOwEuqutPr8e<m)*5nDw+cR)8-}lH$a~O&H<MH`Op$Nnf^Vv@4XZ_
zPW2?ChwbpOde{a1Z}1;r<#3K@Uk~Z(uNY|VFsV#l)tDO}$+kxqs)f0JcA~Fu3U3bh
zP9t8+cRBQGa5}Jj&w`fFY5k`d%1f23nNP=do4eZaX+x_x!5CD@#N;6ViQn@7JM@>}
z8({f6M;iXSGv*g<^)X!mncT%+Y=y3ZS5OInvz&!Z=7=o;|7pZ;`LBjP8=MC${|lkN
zSNhv-Je^AmX16FyYwj~u5l2=&pemkj?%{2k668O8tQ=oMM~}h}2C#AzKuhRkIqX1+
zyQE6qVyfg{sgl5XNvh;ZGs|cGFxALY3qLE*2Iy<S4ZzBCGqi+Gmx~k!+S=OKswTaJ
zjJ1t+<H1Ibo$#@8bU8Ze^a16-$}tdHLZ|i8=Egfsiqe|n&`h~5DL*EUfOEdfP0bV)
z9TL-wJZs<==M$L^TmyXzxE)w|?tqr?UHhcLiRsGVXn1aXa8OHY9KS|foa<VO->HD_
zZsN6iD4oxqBp3x`t|P7$4uU=e*n5NRIq|1ESch)opFA@DAF}~5hpmSeC9|$$*Krc~
zBE@w1*p~R^>Su9g&5y_d@{&+LY^l}#u3MrGW;#uXA8Pco2^kW+7yUc}{WN$ESpB>R
zEg^HgJiQuM3~ZAxI8t8JSZDSt8|4b|ACX1CInM9xG3h0=1pK=mlho5>=)=HFVENC6
zmeA>PyN5%KJzBN4GAr>`9cJ{<3?G|c&qKcs-Ue2Vcc3M7vfQ>O#a_#7YamC(u}L}3
zgT5GC4y+s-pe5`@A8q5W^gKFMu4qiGJbn3sp>?Y`$Gu>Pu2JI?=|5YxTK{Iq;j3}x
zYKCbY^$8+J?R2BRR^+n!8*?1?n_wESa!-er&|$yu|61zOnwhi^gLMnRJ+(e?&Nh9C
z7Ub|C-;pc92U7k^e-L$sf`!1=)2+v|PX;~@_FXp@HtPR=Y>!j)v$1Z~;-T!gvj4Se
z@sLSN>+6=&2&8>jF>q<!8K<AHdQs(&y2i$OF#zcB2i&k(zh*Dro3S)Snv?e*6zX&K
zcl-MBm@DV)ANKBcPxKZaf1<y5A8?7w%RoNZ9fk-)tm1i>5785Z!2O&bbN7oD<VE7g
zJmhjuVfZ4qAU;4v*My=uK2G8MZTM#OaDz~Yuj(93nO}0l;i1u7ZVywK@8>>7qmnm(
z<4B<%p&Q&XPA0zRdOKYXyZ?fSFnBF6uem}$;6{6de(VlW*<7dfh|9eYS<sKVp@%fx
zTV-!?L-z}Pjhn-v_t)I;t1eEKLW8@$Xkz34g}Yp&{B<h)x|=J4KI`VZ?(VB{_|=R2
z&s7rR3vTEc=#vicnpDqkbqpq+iMf9=$%}Ri-|W8Nj(OP~yxmoQ#kpNJN%#Z*>9DMQ
zRrZB$=$r}agtJ1WKbXm8YBrFg9$Ass+{iOxgOU}=%Xlr~{e5z=NhorG`NgsHMw{5+
z&E~-Ixt{l=8y?Dzr5r%L+r?*O*gw$gfnU^p@V9efte^6^0;w!Zyh-Nd9fY5g@ddes
zV=;NT!*$2zhvGa2=7#d_aC38t{h}~G>(%9;lCE4w8ty)>TTb_}-9p{T!LcQwF88=a
zp4*dO$TcE`Jr6|Hy~dOc?xlKG_6YU7%q<<mPRs4Cx1fv_dAFonq)Ulc;+D91US3v-
z_QB9}w5cC0waNPN9P|rdJCGoCBy&A2y=2Rx@tmbh3i)vfg|ozI<v5XS_1OLU=73M4
zE;%0_3tbH+1KWPoKugH<N1o1aP9s+}O<%H7OlXQ~524;Z>@9S@kfXJzVz~G(sWNww
z$LE{$Z6e+Z;+6V;FZ9pBBf#?g4fJ>OJ+xs7)joygW-jrt?pZ5@?YQ7FkEVcc*AtR@
z9SnUSI1Jc!=S=8xL1w?Z^AOYiq^El#ULN7^$8T{NmK1^kKr}v{D&7ll(MfB#fPK}T
zzX^NW!uWBd_EI)p4|{KL>>U#qTs)Nd-Evj8vYy<>lZ(uMbo~;?8PCsp`JP;rLTEb1
z=<Q8pOYmOw_BZH%1GOM2e*(G^WXeDCYqJiTF8|~u+A^-my(w`1AT8NM#9oKbANJL$
z6iAVGZp1q;qQVJ0I!w!wibhR3ilh9)WY{;6U-0uF)EsN%T!RcYf3JkT8QczR{@w>I
zVejQ?WlFi?#Qj0yf@0=5+0GX4e%CpW6M|}(f0)$k(f%oB2pT`m@ZU}RmVeGde8Pj?
z!15mq{oVXeGUW@_4{8M!Xx=+rXKoeOoX6Bz;X?6NhDqMxhCMb~LHdLEC7&*Xz7ezl
z%m1n1d%N#vpXvFNw*PmxOiKFdj&=SfE@K;iwJO-ig>(hi%I4qv#Q3lL@z;e4t`8Ob
z+b`&iSYy<0+fFvek2i94txxU;90z?8SPpFYKOcG>$n;xL{E;a?3s#)oxT<03%GD>V
zT3SB@;{r?vm#><;WLf<r@f9KWW_J7&S<;_E|4oIdrJfXki1VoTL#I0jJaL|uM`MxG
zHLD=6pfHDeaGJQcn8A+qKCHt8@^44BF=U+Rbr<y4z*&^kYYDW3kv}r>+I6Xpg__jR
zD0e-VR@GyGIbdiEfjA*>)F9mEgvBp{$``|@Y;Ajawm%@q=jvLc&&BYo3go#G`d07&
zu=;!n`fV`nMk7yEuz$bsuW9;Ru%vNu{fZ&t_i*B*HWdb+E?iC9BX(t%o2&gMi&@>{
z-b6+LQS}4NY`G*g<_zZQzPZ^)N9R|mA+xS_-NQrO!~3ZC?9ee%Kh#RhH{R1$gc<)&
ztIMfA!KA0^#H4;_LLUzn0$XlZLQ7cKzJ3FVXXtcHS+2ESuiKbLZHY9G$w^s*NY5F?
zqsp<5*bkqQv$C{yN8nL-V{is>!vZ7E7Wl>CC;9yz^ao&PAcN>Qb3Z!B=Rl5%feTJp
z&?ZLZkcmqh7Mwh1$r;jU=OaYEvov2)gB?@AuWE5J{l`F`3>tw=|E<sxj=I(4pS8o-
zJKsrCYcz9hhqK+i*ne4kshs?>&dF;+PGh;65YCEL`YJvyKg&N=9md^WBUE-2XTDen
zVH+qT95<3%h8Iq)E$(Y&gm{Lu#f0ibMqj&-FTs1!SIH7+&>vX&heJ!qyoY7)@^icV
zAxEIIqUwoQV3i%j9lP9^#cn%S<aNbxq)cps4>mo#j^5cC$kPNrTVHR1{uy`>Sb3g?
zme85<gpHf%vBUE8JjSIR6{z@Pqo3$W$?`M|dL$SFBy_SowTaPQd3r~jL=h4Jzb1*F
z_mUs?K>r#%3vBwsCmY@)UpD1w@^8(vo%~4Qn_ix{Dq~Azz1)I%kbXUWJsra1-nm)M
z`yBl~5Q{z>Q7SLInwy>KqTTV)h(&Sl_`^6h<Dx+yw{BhCetkkkaq$R-=fz03wnFw#
z*MD2d6>_uHk6m@Vm_3@%vef9a7Wor=B<Z^VdIQ)9Z2E44me7gvmXf~q%iDd7Cp#){
zRm+S#yWwZ`owt-VFfbC>_P8GU46r7+pKs^GM&EPWZI7iLn>*VyzMG6u^RG=Ce7?5r
zebPhWOK~FS#?)kIavxe`aW5RjRpNYq-)KcFR53|a?lXbwv<}B9OKG&w+sBWW$A<Nc
zl!@)oBz3SF@8a5TmRhSq{fvd;dZm`S_@#@vlNmNQnsjYLX3?bR`9tV`fv<qobLBFl
z=LZA(r;L6t*&eRKwl-<2-0Xg<ZV_9+L1G2?r1yg7oK%jDay6E*2}Fo;pK<TpQnf^U
zf98qrh}=F{D~p3pJb7so#uZ#Zt@_#FkF&zay9Rk|KHLC(4`=~a-j|^z?B5xAkD59A
zu=>;ItirlNwyZJP`n{(Ov`WN4>q+kl-`VIM#`*SacT6@;&%@k{UWIXeFS#MZSXF=M
zs!NozUhY_jTV>=-EKl~|qoEH36M>a;2DF6g@9OUko`mBV#eIUup2KRMcbc=A)={P+
zQ)C)4*56MbpKvw=e4B~a>ZhFT?ulRyu;sM05x*>8Yj9sh#SNyMzV>@F4@qwyD5vlj
zXSOpMmM^F`JzV-vxO#RT*ISGpnK`;xQO}+3E9)mNSw-KJ@qZR9o7}Magr&(rT~Llr
zT(E4yLe^7cQ1Wj0U9tRMrC(3buX!>+dD>eaxl#?gN)5hJ<z1zgIa}Oh{V0$2iT1_`
z?5xLqPy3_r8O!Ux+~A3gc9wjT3tSF7><Q)l!Vlf&r+y#hcLM!;<voHs%3ge*=W+ST
z18z5tPvArC=WgB$ZjN}`Q(hL=1FGD=;t(s+BH!gvq6%?I_pZBNzuaHA!|rnj|I}sb
zKW{kYXoRk@80SA0QcvljR0}0v4RMEIQ#sx{l3VWgiR8sbX7%Pqv69?E{NYWG56d4M
z&&#LS2H|v5?lzFOc3jf}{d4dLkkFZah#aUKl9JgBXP#y_b0JF9ZFD@~vpa=P=_$;E
zKpC)np3bn>N-qEv12vzSl#s<(HX)kiYs}eTm=H-K;L}K)O}v-(=_k;?1Wy24p8pG7
zx+3b_HNceLk%51+$?dkg0pB_Gb!<?li=+)DFnFI3Ea@rkocSj7iQGB!XMNes)81v6
z+~L!)Bs`{-rmP^=<6Siolj|dyE0w*bDqdBw*HrXX4p>~}`s23YlK99MRpb?JNsYX#
z${5R_z+=>@wBfVWf8|mSH8*Q|&PcqU@dX|tC%X9ktf0k@x-`{4a@`0M7Y@1VP<6J+
z-zL(!A<)MS&`*G;fz?O;O8i%YildD_*5(I#*_%FQvWiI_^ltWk9lphLo4LAKKQ8BF
z0`Dg4*AcgnfTz9dvz=#ALa%5nJTh7mHVVkXuiG_l(XeKtm-TA$2Gwsp9(F?EDWR@8
z)BX9o-0|x4pK|Zolr5r=TUDe;D`c5E!Kj0EMos`6p;qDVwABrbkRicNAEiuISb!`1
zy}9`8$#aJqeQZC^=wlsejR*R;4f<YiKd|lWd(aYEGW@%xXMRvFmaUe9Hh%o4vg#5c
zvA=MgkG)=D4igsnQD5c9qJEUVD$+xm5Y8F-CEbJyi!Y)65tY@0CiwyF)N#Z4M!u?5
z$@PLc(8q&?z~<Nc(0>Qh1Apvx+`o7~lW*<Hxw>(o`2CVehaUIW{?)_Mxsl@lPkUc;
z3!Bd&sA%6v*4vzK!gCu1%JU1`L7p4^lN(k=Z@4(9<aaTCQ=EY~@4LI+d-(q;QoUNG
z-%I_=OMCZ6+GpoI58u3vGJiNh-Qc?2u)OdN@W;@a@lpIjqnGN{Nxd8gy$q}XHs97k
zOR##e{>S&C53&w({=l_*iJ0?0?fpbK+c<fXt0uGN6s2e#=rX>Lnz)#G>qyl<nC3Xu
z7a6(Ugs*Ux_GTCKzrlZil`HF1BiG)?L$q#(EMG8UxGqim2Zd>x^FE6^*{YCIOgWjL
zoosFh_|_0_b-;He^jdH+uzc@<mhf~izMTAI`{Q}tt}bX;Ef-Erl39&tWvlx;Gp>0R
zi*!-Tvms|=s1Hhs#r9F7vd5}fSe`Fd`COa`r55Mvb8myWjZA$c&W;zWg5bnh?IlJ}
z(bJOoHwAhQI11Quy$bpqaAV-N-;Nun?X6rdtY5L@R2F=+^qCEG<Lb77hIq-GDr<J@
z+;b#3_-ff2D$mR265%{Qm*WvE`>4<n*>gg3b5@eqQ~l{|QIt!zKkv#|nx+4Itxl)r
z(jebOem;_X{|wq&LpcC8J!e5*3|<TFPq5{&VsGiGTfJ(r(f_3(J+5pt>c1)M{2ld2
z5hTxxvVLxmk7w{`I254J@20x=MSiTj6t7#!zmj2H`xlc!`&X!n_8qTcgVQRa%Wg($
zHFYE6J$iv0GrP-E=SZpl+T|`Lx2u1r>rJ6{j*;5QPSq7gAFZUdCeVj_dekWZU4Si*
zL!l-3FPd^_&)=liPcyU@^KTZR<RRK<J1-rPLoLsG=PRe8oFP<H&u~HvZF}Jad>C6U
zNHky7vs|H9hBd#Y^+vuX_*?mIguWa63|RSEp(RY;WaP8!py~20s$02=Nr0>$N<-?$
zzmk?;)(;cTHt&Ar^v7Kqr}(m>C4PP|lH@{LMvl0l#VxqUb1Z&KySgEoTRGe8+{kPI
zzFRjKIV;Xc%2^G4D3}SXoToxdSQyL~Z9Pesb4|kvD<kT=oYO$r$cG!8Q_J-s8++i!
zmZa2YA5kNINc3I1PUDqEuC4H$245-fJD@)Ve+5>q|3FLF72K=5SN$E?uwtRn-wC>{
z+vY82;*`TeHg1m@4jY9HhMPh|I<y9IOgl3vM=kUcupC%9u7Q@|-)Zu(L;YA8N}JuY
z<szeP-Yu?kmz${{*{w>}IH8M0KNq@K14{*Hx+*CD0bkM2=g{6+-2DfvTz#P>SiRV1
zdcLKtv)8lCUZ9uRYi?8HZ&d}ise)S>@cK26tMQMig2z?CV>137qgI=`DDhWcZRBZ$
zUsv9XJl8_s3~mEfo*zR?*oz%Ox@f6YlcL{|?Pg2Be;4sv{v~I#HUkC#%fAv@LWlMg
zd*%LJR(iBc8;u^;z{k#SZ-o9Cco0}Qwm?f5eC6KC3;tyFq~Ekml_^crHPkJxEs>^)
zi5p9iuVZTfxS#w0FTr`79~n8EA13ut20Z{&0xQR0XbGLp4?1qihK_7Awg-II5U<UL
zjnKD%&A{@#3tB=a^TBW}tvQ6UIYXCChP*y-&TKQ4)$wh(#-w{U@e2njhY40B_5p){
z<v$!+!Z#V`B!cYM7hx{1TRPNC_!plxWWtm=EHTVk-PqW$LT~dX61{O_>Wz2GdZ|(w
zC<PB4t+PFlqtWnb5;?Ahz6M-xKGU-7y2#jbbjTOeW?0WS1f>@{FL=dHSC4jzmP-Fg
za&*`g@Y_Y)ReU1+ikjH-1O0(b_b6xy_8hN0Cm8Urt6w>!Vj!=R^o9&6W|plNSKwb-
zd%GOzjWK?I$$Qy#R`iiOVK`jAj~ZmoeGg`qw4ZLDwq6_51Ng-Qc{V}c0B#9nkTFXK
z`xizIa(%+ejCp<`ybEcyxfnpw(Hih+P2uw`v^tk_U_gTK>0q9p&L?f2{}SoAxvhcQ
z74SKVIGc!1^m_&LEnqXS<F9w2zX4|rYUEdr6U{Tv{^|4DbiQfxeEDk6N&a?kZRlms
z-R^zuy^LTlc|XZ=o@I4A5iW`{_VW9wc-|Ohw?|Kr8ULi}0%p83{fSvk?!gn({3<3C
z-6IFn^(TS}{*PUMv#Ykc+-d)itM&=ajILA@vSWF(#7`bKi=O0upk!8bh0JA{+&AB7
z^7E+klJokN(AR()fKC5S=;-;3C5|%b_5-`6;=QHc&g+}}zlOf`+$R56{rYE5KPKzf
z5#Q=$znsnD3(00$Ulc8g7DYzoq$K_pS;LAQa=lv+9>sb`D13M*o^yCflY1-nHM1{q
zQA2O0_H`&?O)#<lw^qcnuA0mi;ghH$GBb9vnvlEEjq17m10F~JU+|dpyH|3Dn4Q-*
z-e&YsOIoJ|<>5@|3&Ewp*0)cgC3G+@kj%you5EklV0r`PSFg)vo9Qyw+3sDJ<IFA!
zAIduU!D<#RG;;ZiNBjDr=%K1lR+g$$HR?!Jk~5tpo&(faKaR_sVw`Kp|B#D4Vs>;*
z1=W8g!812_%BGt9InL$TJ}iT<;VzTD>b1%A9Rs}xoD6LGUWJyhm-H<(+g5rRz@)G0
z+ZcPzI(-{*oO^L?++G4_sqQ*~vq@q}&f%<6RjW}Xu$UzNPYGO`lECKsO!_J=NT%-u
z=ti&_*z)`#^xr^c`WByP%6Ce;S-+;SZuvqM>LrmWpRZ_Gbz0g77!U9Pqxjpy3`3(}
z7&-lZ*tuC1hfDM*G)JA}%N#KmpD9C>-y^~vL;;3d1*~%5!nV9mw2;f}vP1cUxOFV}
zoYj+oxqf~qQW%eh^8Bn^X7JrqqdzL7BKfTS<Yi?Q%jOo43>P=T_lNyqdWIEIGrXGc
zp&^`9nGk;<$o~tI{rK_FCxWHG=Ko4)37O~LQ_?S67i>9eL+&AM=G;y0$rzKo;$7@I
zRed>EPP0?4j&5sjn*;t^iQkT+-hloPd;~22FQFy$&zQfb@Rv<2-J79v7G4%<KMHf?
zlG9hb9o+O+9?Pbk$Z@BMA<blr|D^+K`gxH4i<110gI)$!0L%YEXwCmYGmfjc+dNbF
zFSq;;u3yf=!2-nSy<KhbURLgQRrxYQ=~ui<eP{kqj4Prn`tNX6Exl-^h%ru$qFQs$
z$1z?^-a8u}GIDK)Z=Cni4}Avx1^6nEMe=a3{T;22(Mb9Zt_Tuy77H7vIp9;hE}8y1
z=u^O{z^4BqXbBzcW0`&~g<oKdAX(AOvdAs6_qP8nWcw@LpIv8ZrOFRyhv&$ax><<E
zwCFHN_=bmrbi>b<hkuG37t_xJD^FMG?;}sJ>1yP;I8C0vxK5L61e%)^h&6K&sOb?S
zPc8hcJf}im4K@KQ&lAuR)&~3AySwhuZnTvTDHvPTdjARKZdFI>*I&E(5qW}A@|yQ{
z*r^)I>es$*mU_z#=jY9&dD!TN_bbW{g<{!R`QEV5iQOZ;(AOcl;QY;1w`=EFRnZ!=
zcis9+BX|6gWce8lJr*1QBy_&~=+RlKQHe+ybAG_RaRHwu;<WnN4E;0kAh7!R4YY*L
zl^@M7r3lq5U_LO3`M_)5HrF{pE+WkikCIN$3(C(@f3_4KXX~$mbYGg3XC(ANU^1}s
z90~nB<w+?*H4EG1c}^BRv^=9z<yjWUv*A%APjkRe>hb;1Tfr;9%JXjUy`8t)XG;5$
zHhEu_oV?$w#)tFoR|WT~f_wDzefIdu{Cx^$7tBH-;^j{o+uFyB99`KoBItR_Na!)(
z0P~rarFw1JJSB77LdH;Ta5emf_!};^dzc<R*v&*mdNq$l7TM=yDQHj1ev<Kw@Lu34
z(TL+D9yjuCOOf{j=$+snDe_kBDR1gHBwgN9|G$&BHIR4B<w^Zs3H>8*z4=V*w`Nay
z+r|?{*cUyN%gftLeaxR1>>cChUWM5Q7F~z=?)!qZrtkbe3U7Vi{VRTh(?-d4cA)va
z$$Ocw3MDz%veo2Y(-kTDfZhl;na^}SA8%5B{K@sFA3tn3Er{wv^84VE(Z(t<N{UUn
zXbs|hGbP@Sp#K5>*-^Y>hu0DDG$Njc)niJ;C{~K7{zNO;7GuK<39Ei>(lKp)G9B}w
zj{|k)vpv%>cK8YK8x6nF&PN&iQn|sUF^K=Jl=y!M{TTRl2k{RdHCoaWBL0wbg&z_D
znu2(CrNpB)aQ6qu0yd=Tn|MS{qwtLs4wH?%YF%g@v;^_im^gI1u?TtzSQf-9Kden(
z-;j2L6%E!EOrh@Oyy^Agq64$0AzHRghUS7llz`8c6h7ObUjuKY@TuC954`9qbnirJ
zSQ~rO<K<yneWb#O@dSUiLbdl~wVw?+fmp6vx{bnm9eWGP^^>MN)Lxk^52r()4bC&4
znR>pboU+PMzj7+g_{zly`mqSg%N<Fv$O3Utl_larbHqj7@flmYy5{N|9{D}(fc!7{
zjZn#_uDu}yZGOtg8NDhgXK(0!pu&8n<*ePaJu-40vV4gwe|_p9B`^0<jD@2p6Pc*}
zB11=iS$tz4%CvMF<%i`@r=u+`#4YM)b6BT7g2LrbQf^ai+NHMC>Tiu6?Elm)qhyoQ
z{7jJkt5ebs-49fl&vg2$JIbfYb*t(~|F3b$<MDDYcRlMrbS*hVTa27?+aqTixNJz<
z@MvjiQ1HzcM(WH0C!ePOrMAc>rPWIQrkX!^$)Efmd6x3WQ@FADAEu1>qDAv7t<O|#
z1^+8qHngn#fBsh}N<|d;qQuTq-i6S(>+E{Y=&gDqe!$VAj8~2j8q@;`qTl$%dyErI
zxuGhew!Rzu4HfJCY?Sv{h4bgg@ROp{tdu`ts*AcL%(Oi6Djf=zJ*tEvj|wqk5YNEv
zLRSq@eDLRw=64-oEZ>dQnH0uiPAFxbew9{VvM`!Lmhv7+jrvnQ)1S1xCx*0amFkN7
zNhtzt(ithqB>tEFy{Xg@|7;|)IN#+>`iqa`TEezs;Fq%eLqQ;Jk?jAM)KFmBQcG@`
zVkS#f2dl%)-ySlGgu0SY#8UozTXeJ9(q+H>?nXnGl(r(D)nSp>6@`4Gpkw|PMpKrD
zd44A+$s_3lB`2l2py!~HNLlTy1XQT_XR_EpsCviLt4-G?>(zbGTfk#Lg48Rgqk6^c
zgL;Jt^n0c2mDH<CyE^aZ4;`6Or=))EwO)mB`%1Y4h2&wo2+D0{iI(>oX=V33mq?N?
z>*Q_v3&mHi@sdB=9{t}I-?XgM85F__D*aPi$fN}}6^>S0eyfvV`;(+ZQdmO>pB4*M
z*7jT-^<q*ObTOkn4eLRZE-*Sa;Vad@<KEj8)Bk}leSl<#G@*)=$M3OLLylAZQPA&Q
zpPcs(fgT1%0SPki-|K!1BdU~rq11VQn~%fVfKMZF+Ijy*=xf0ZDST=&{B)$uXEXPo
zlJor(KY2|7pEpzZd;|S0@NP(^=X>x;&f`<~GzWa95ocHQBmLe<(5Hbjfz(aW+Yg~7
zWbUJ;r7LwM6c5jBj%TK7x4w~TaanMh<Fh!-eRQ7o?2!1I$+zvqUqk%DKYk;3yMf_A
zczfVX=!?O^_s#lae64xzOt<@4$oN}}6by^&#S0K#l7^nZ{pu@DAJX<X5r^?h>Xr|&
zHq&hWeIc8F=eg|uz3r9nS2AXcyI-#{3-^nR$pbN`xctv<z90V3EuipYI-kux1r@8e
zw(HAM!{hYf41kKBcEj<~zhE>f&ZDEOWL3Q3MqZa=7q7UH4`of_Alz!GL)?S?p3+E`
zs}ioA<p%ObtfBH$;9q*{-;G{cN%OQoFaL)2Zesrl*nAlVEg^ILKFAl*2Rdlme<3q5
zT)99SuDmT*8y{NUcAi!&e&lRJCi0bDn!UmeOfxjU#(x<3n&5BcyAJwxa2K%h{SNv&
z<V#(**h9X#|D$|~kBxj?Z%&?H84O(oMga*@wzju#A1!)YRL_Cuda*=(TTvu<`2mL{
zFrz7OxiFr?`*Any`LPIVlm%FjiNPjDn%pZctshF`4)iR{3}r_v#}Adr#E*YD^5n9<
zn4Z2mO`jM!w<1#o@<{oA3wj4=O_9^@SkA`!70YlcVJCveA?tCRPAH;XkE>oDLm1+1
z4fs^uV$v>rCPB{uM**8(X9eHebvXM>DNnK<H>65(YJ+=?(z^{2vGRP|dqQymKtGjR
zR?w{{)_)_T-AOC=t^4^sxFOt&tDK&Z-W2&3S6vXCTuuBlNI!h-dVeeQ2jH)PERs(h
ztoKVk1?iWG+mgDaRt>E<koI`_fCB>&x{NO2Y%-&3ceWQ*aaaA?9gqE8?1A}DjU3aO
zlX5JAJ_$4c37wOJiSC|Ke98c~0Fy{~>(^4eJY=gLTCyUA46OnG?eI##OY-MK=zoGQ
zfX$!0Ta7GxDYqxDoZTSz5lap=ZgGvf7?klIvtzH1+K*Pri{$wGVBQxCcMC=2g!6&w
zI+G#WKQnr$g^!ivM(BINFMw^2{|z0vjk8xzn|9cL+&tIq*&d7Y@3#Gz6J?JG;pVJ9
zfu*nHi4@7m)yuhzUOR)|inY5o)XWn@P178&^>j1*s8{}LX@{S7hlK~I0Tiy7Kf0JJ
zH`paK@cc*$%^BL>ex#dU`IZ}bQd-~R`~xwreSv*{F{PE(_Zine-J5D!-sXRq^dCjq
zY=3wf^f_QHu=#K)w1f`!1tmGDy<xI5H2Z=(WM8nnoqfToFAV?f#Bb}vXV71OuL7Rm
zQ4Z7eojQn#IXl=Zm_e!?r#j$MeS2~oQwMz#XaF{yE1@NHuzw-xOyidv%oH`dr-=dJ
z4(~^<GaEQ(rF0;z0spPUZ^u#ZL4O230ha$~(BFrDa*&h8|A<WfO<x*4S8q=8KOXvI
z&<HI5^Pwe-dBBwK&A~IJJ!JoN?usRiOY0|3nUmazZ9JNa*XrV$eTTP0Ig82}R8Qf|
z?;!jtj8he2hBDP3?N<4xt9=;;wC*<YY=fW8_kTiv4t57Jd}qGn5HeMa%-v7P{U7Sw
z$DTCcH|@vC^fy4C2`&S+p1%qG0oWGYA8yB8+uEz=d+<+|hSJ(+<ZMJgMprw$^06i3
zF7n3q9al0oGA`zv=a#RbMxSN|Rx<fCL#J#t1iGIdMrC6fk)$h`-crp~(NW=eNq(eW
zd{#sjMNT7e2l<~XE|2MFhgKJP46R}etx8M<|2oL`JCf->5qc$93v9Z#L+=2Y>AtH|
z=}wly(%Rpor~Be$y16W8D(Rk*Om}-}9ZovUATwK4*mQH-4Cx-B(>*dWMW_3Vv~*vb
zp6>X6OuDP?H04?PmkH3*K@G6weNOPb?f307rMyf3Pv24$?}25<i2Nvn`jZ_0B*z(M
zJi+Mt(iHG(CO+GaJ_-FYcokTFZ$L}vU|wO`m(-TDlk*Dazb3tjyOQZ01U(vz1D5{*
z!S^<u_NhItrlqvMPU$g@e~hHGpI8(TY6Cv&h{v{Lw?f|!9tM`rtI!fUu!mi|tZo4f
zsXXvmxmq?G8C|`TGP-)lyU26qm-}6C@*`&EamMXs9Ix0<%~i*kGq7{jzg#s^ZwEWO
zz75j<lcZeZp(lZ9z{+(bbZ6zV?!h?(y9nEscf7S&H1x&ym&_YNYJ~KzHB9VyU_&@l
z$GeI6ZF}|r^h4km0Z*xG9n8nm^<f-3<iRn|S(T^b-4MjTJ0<?oyE*>|%7BE<#-G|p
z=EEf4S(C3L;H5d>vzRy~R;f4VLthHk1FOgDp(S*19w{w7v+Ipp{NOP0I~*oHt1oNZ
z`!Xq@R1H_dnI)Lw<s@9A$DPDq74ZKzbnG7P#{ic9ENBTMe_{HmjB`nvKOL1RSLcTG
zsQqDm*UCHITVdx4&hGYx@4lP|PpIiwq?N`-aNr}#-hPy&tf=-yQt0oi`sH(6CRC-y
zMRMI(2=t{9l0p4oQZQW6`2N*(8+<*uLY^ky$bVNLpXl$G(9eM9fR+D+;CoyD>@#S0
zwEUf@j!tX9uj{?Zc4t56gTQ29`5gu=p@Z?;iUlM0I(}=F@!ODg#&3-wlip3lZ}aOu
z=*PiR!18||T7tDx&NxpY{K>B5aH94ZS)G^y<O=v!?^nthSMC>tOIgtO-0mEPVLiet
zR0G4MB~#;hC1l7%v3wn8nggdLY~-r?X|fzohn@qD1XivSpe1D9^AO~N$W<}W8dtRy
z<f?H)nXYo3U~OM6?BS}JEQ;?iu4M~KG5aPF!@q_2Z9DlY^!wm1!1DhJT0#fo&2;{m
zegpKKep!sW@)}~!``$gS)3cnto;-GyVp%b979d0ZGyHu5rNC!vAlJ0}3|}dqM?)_J
zi-DEv<luW-F6}c#FP$l#P9hrA2NPeD@cT9NGvN7vhwyaPrR_6Gx;cC#9ijD-urA_!
z;PG-qa`9I7^x5;(`wz0#z!n|r`9jH}sXS%pL@z+_%E~RTVP5^dq5d&dp(^+CSLVwO
zl`Jd+;UJMS9Fd5Le=l6P9*O^@j3Glywn_h%pC#+(8_<6Q?*Xgt51=Jvjtf%!p{J<6
zt)3Ls95_=3Bu6{`(c+b%&GC6WCn*0dNxsve=YS)D<vSl*!grn9kPJ!TdVuC?JWG$o
zU2a>sZw&a}MZ9(#^gQ(M!5@I-`wp~(%=D%tvSQ%>Fb>)k@K4;I?1x7~j|B$+3DQrt
zzrHeL8a@W~%hc6+e>2<pvzP5uu)CoDCoj21uj^9czaIL>;3vSQ?;&Ujd*c&0ZYrue
zNPFsv!0Q}mgWH#;ZC@XkH4Ycm4G5Z)rhu>WKvJ&-(0xETuzbftOR)DwZ4S<#8@-zJ
z1^wby_ej0waJxR7`)BV)<=lbCp=`bT+}Df5Zggd-q()2*d)pSIIWI^*eC#;qCg{7s
zPl1)=F=z=n?fOIE;M0k+*tkOUO@<UzO+y94hQ?6AwOpBn4#Ie!$j6bSKCQnv>8C8;
z@Q?o7#4qhh33Puj5?KC|g70m+WuJi_g0`y^=Ur~&IiP?R^fq_i)2ikvRq(VbcuFkn
z=3VdBT;~>W{NOqn>y44&DNhNBxRGN6e5@XR0{sAZ7+5)e0WBfZFLWSB#X!+OWonVj
zjSpg;AxFSwI?}n1)h?kM1AfkfNq!~JeL*>}{3@Y4!LP08?T_9gLnBqPRk6(R8Hn%a
zC)lcJ4fr(%@rj<-LSG8j1Iuqy@V(WqeFpV-<>I<wLqyqn0kx=V@K8+qyn~(oy)b2u
zNwYDGT;@?#VD$MW@kt7V-@l-DgKq*JQg1uxr!^lIW|o{-zjBqFt1~0cp)ecj>~ITx
zHX4{$x=wAtr{<xg9_yeNgQY-t$o|U@p)UZL_1Dkv8z|{B^{J@p1f96Eolo6fs-%>A
zb%keP4;kZDs2P&V;i}T@OYE$F26AkJhb=!JK>r2&4M^y?of?{v-XJ?;Bsb>#SIX$F
zApVMnlkpz{Jss45?-zgSjKMHDkNTlQp~<&R#A(Ml4?#Z*ehX|l`4(D&AK25!?`+WT
zQ_D#*|Ln{QoANt3Pm4|YxtMYb=jVOrLRHReFqgY$<Je9QW_{Vm$?d*=Obz$@dm*m#
z9H>enC2puI1E2^lcV%e=GjA@Ut*3Pf>s_dtVk39WBT2bWhCUNC0W0@<XbF?=F!F9}
z*_+&ECfj?f_o@4Y=Wg|8K0$u$^!~;^fg0)$R((U!=nn0;ccI^)7P)<VdvD^_5+lz}
z_$A;c<$v^+s52ED25h-p4}Cqz^oP3ekwy{Io>R#v9}5=O<0nw2*{S+Y@odn}$J&bo
z_UkVyZL)s6n5^&g-te3!IVGPZmMJ)B*e{1`4dTCb_w{q51wO0H;pbfMc{ltU7X$9_
zGp_fn8-B|5*du(x9k|bk!m<LK8;j-oeXhDV@L%<)%dx}58C!YbFbAW#b2b*v@^Zr2
zSCa|NrA9BiNwY0qy?=p!Z7>qpe3}F;p>z3^>gTiLJUh=Ds>m}$+M&H8rRG_@n~`e+
zd=v1M{Az*T3Z4O0u3^74a%~O#Wm-QgsR~b)dv4)bxhhx=+2w8ye<JtI&;3M~{Ocpm
z72X)Uhej#sA(qH;F%Dy2jV-!pxF0)nVSiw3kYAwsMnjPTn%4vy9)(jP)3X@I7BOxe
z7#raCjm9HA)Bx3ozj(O6JuH^boHm=<B7X(=?3MZLkClJ7a{uA_bH(bQrKd@66X~((
zy&C!!uo>9&J^?ME1OIrsT%I5fWMpPu`)8TtO=W`jk=)nXzmH1fMR0nP<BwA_Be9&y
z9!lzPDf}6OOjq;lC<F#&MxOYu3_sC-U+7_A0<iK-55Bkkl6|J?-wp=!0^bq(2$u{7
zW^Ysdexpjasqk-PFfhAkzaFJM!#xmYlsVrd>1+<<SO=d3??sMg=)1ws0^TCahIISO
zq#h<5K3RO2DSw0eaXI4)=kMNU<<2%d<CuAln4L&I2Y-4dl6*G=yRg0dvGr5U-$C5<
zZ2tBSp7KuU@%nw+r~VXclE_o&$@+cr(}2?Pwe$aVoGHAJ*2-<>UNSGTpP@*{Nenmn
zxb4xT{@#V&1^xvji2j;8)ZY<DiMyM=8@k+?wZ4nHq05_9>$}9z;=SXX2fGZ{ev`!3
zmt}S>jj?&wruMj2x?}9VS_}s-|C(3rW6AOLInWn^OMop;mqSa)oVV;bPt#d!1|-N=
z#L*U+sQu9Kf5@1QDrlx^+XKFD60e;v{Y!W}j!iePe6ye>ba?MUYJqO!T3WM|^CM$8
zP;;C6EC=j?bAURB_N2MSq_-xBSIX@o=w;v(VELXEd~fTGeJ0sqU7k9^o5CRIW3Sdp
z$Ow-yo{WBm;a-e~4zmp3t;8!S629+3{|W32cu8N^@i<TTC0k58(z`%BX7O?x)h617
zv6uW|p5hKLw2ZMNYzX*Idm=e5ItKa#un5?6uYi_t?3E4rnQ^Y3%oRC;kze)ngCx->
za)om*)g5bygc<V{sR3;><Jm#FiPw(z-hloicn?^<pFnqt@9^Q$Y7|x193-qyc6Msk
zzA%@WV+FG~Vcr<<t=gL8I|F(am<J??zB^c#4$_&_cQDfI1J6D<#7Eg-Z7tIr@Y$5Y
z=U32=gC|q?WR9oP%Tba~`iS#m8veDq@ox$EM1P$e59}i}H~?5Zo&qhQ<MC#CIqGP{
z`LT>R*LnXBMx0t4$C+o!!8VbZkEHy62>p%7{$x`A5@-n>k7v^54@NP&yi3(5p1X^K
zu=;VtCur?sZ>NtRd>McaQe749_;<KmJVC>^(8r8(k$ajRiss2Ux$#IN-(vVz1oB-1
zeFJC)R=@8<OUU$h-%)-hN1$?8_IKv6>;<lzmi^dk3gLL;PzIIVDNr(~6syPHZb_J7
zWvn2IBOit|`H0>d<b+3+hI);t3Wh61WhKFo@~1ABW2k9njIiryla8vVjGUt9$<TAa
z0$|gzJow(WYxbF*j$njfwg3-fgy82(lRD!i)%8VH`jTRh%m`sdylZ|ba}v}zjQO7K
zSeoV=Iqrf_0)2@bk3qi#UJZDQEG>KVZ<4=uq||q7^hYzFh`L*&FZX#On(ch*U3H4{
zT6DM=y6PUzj1r>st@56Cseg<OSE<!|`}3P!^}YTv9OK^|>HmJ>s&@a~>#Co9zkhqC
zAvHZhGbW0%MidWY3yn22?NG2rE29e;YiJEHLe`@wANOX4Vi{Ne`4QHE(U-P&U+aoF
zGd{{L<VqU8zevv5@`f{&`uznRf6t-<d7xuCMlDba)ncs1!|Dgnb*dgQMb;pfpyfN{
z7MYP4%J;&@2LG?^|0Hv@z5hXFXiF98HtECEnJtmDw8P9(@xRH%=!C@8rW{s3n;d7<
zK`#bNfvpb>&=NW|zL6r@Hr8l=DY_}(yM=h|_~!S}?|}D#<@+JDgzs914mzY1uI(>H
zw+4KxeiL=35wFy{snAD&V}Rv*Hnip&tV`H^sWwB}#`<ML@HISr$#QLA*6e;`4wcW4
z^@z{Czbj`((qyyPFYrTo_q&mV8)N?^FUtCZGzXKE_!^Oxspdx}AGX1_Dv;|h(4T?b
zz{-`s&B&FxUzR4<iuz>@r`8|2cnNOgFeNh<aMy_ioNNev?r~<h(fBCdH%#-%MpY<0
zz(_P6hp-}0;u<4QE&ObMv>N(R@LOQl9acPtPhU{o->fryevElO_>Tsyzcjfp2WeO+
z()4ZhcjvzAyRH63A^rG~s~`88$Jwc$J!C$6&^$gikHg=k{C@6T7N1i&_X>YbbZ#py
z$lT%4v(<#WW7OnuU+$v0izS_KpYTyW)7{u0EERg-z$nY}{4({q8^6}|b8-rDMq#0v
z6&>au<W>5mTv_B!j~y88kBQ7a>mpg_XNA{gb-y?=QyqoVy@Kd6zdHX4ru-Ws(e=!R
zuW?I%n179%H63r1p~{)L{j;xe^Jl3ku~2CGZDxt7l<9MiNJ*rU>9crdk*@S67l*R!
zEFaCXu{uu8Q(w6liN5Sce(%O`y1c>VNdM1W&H>?I*1yh;yyj=W>E>MR7X8>QK3q05
zFN?EWcm>UrOR9sgeY450=<`YY@xIVQ!AM}s&!Nx~s()(or`>YBQ0J4iTgSQO$>Q9y
z;2cr;&91XUl@IhQLjyygjG{BzQ!-mR&_BZTu@ZmdkBvN=0)A4@?ty+7{1RAs9t*y=
z{i}VZm7BC~c1*s^ml_<O1PoLA1rvzYfM4{tCVj%M2XtRh4lKW+!S|MreFpvdvW25k
zCoQrp{e^e1Q<1qW?Nr@i($`3Q!cq8L2E86!9q`!8d`0*q2eo#xQUS9Hr<PS|y(TSs
ztPS|=Bu+a&*bV(H@LovP!xHG8AafkOIo%(V@U_d*$LPeJ%DO4b(s#NtABt>tgJtQ1
zMX$qEU$?JF!Mb!HM=d<89A`rR5S#}jNP08*r|31A-nM1wFDNiqF+^frI*5O3O8l+R
ze*%B`zVW9|5`@V$nu!Q`r^&af7nAMUbm-&23BZ<<YoH}`Fi%L&zm6seU&tik`u`Wp
z(oW4!jNChs%eKerCGLa=rNGKv4lUu>W~v9l`h{&jAGCp0?<Q|E*CV)1-rR3d(-+=t
zI4NdXI-$C<Ed3L`EPWI{__Wv4rn`f34<FlauZO+`Yz9`2_n{?Zju+aMBYhHZt(gRz
zDRY1?yhnZK4K<My1gUd?u4WDpjj9~FQm(M$n%E*{0KEo{C=bT}S#9Hg4w*co?D&7{
zy+;0umyLW<Z^uJV1XF|0q#WCJ!9G*umeyzp?v#|D*uS^y?Di%&6?u%?@(@9avJUZ|
z8a|s+`1}O=L9hi_J^d>9-tw`}41RDklZ^ITKkSPFe!Gb;fdrDS*!HNC2a13M;n|cv
zpOA8FCll`$IA3|Z^f!Y?Gnft*<x-ayWx1?-f@S26|9Ue(<yU3ps+<)qd2R1+fc&a!
zFPfj!zn<yugfsm5aREWce|<$J`O|#EVjZgg*w=g5<U`_j$$B#i`am!V*nBtwT0-W1
zU~T=-;`%j1rs%uWCFkR3G1<#=zVX((&d9!EUc#x4ez^52kfn3SIoI`#ecrBs|6Rmi
zLHv?0??CSa{{T|fWM47sm8eq;J_zp3vikuW|K7m2j?<1Da~rUM;Y?S%UoM=kUFdVj
z=~;cq=^L)hbe_bz4R6!ex!#RjXqkugWIl+g>9Uf4pqj}tK)H~^Fr|7>G()@ph|ymy
zvPls6S3;i$t^!tnHwE9@@@t=Ia@z&<nle@&PipgEGw*FR{w-DTwkmjw3gpk5HvZs(
zX$1!($QX5onJzocTZ|k#;bYsK|3Le%(*FW0M=7)fYv*9s=a$KpsVnf?Cf(nhhSe+d
zsJN*52$sqI>z(4vl?6JkAw?U(B3&=NPL}vZkbdH|d>f$80c(Nfdo8qtwO5<`Y7Oiw
z()dzxux8zixuLtk?JsAA{_B0@V)tz?4B?7IW|%UHs%E?6EQt6o4gXf+xBc#J=*VkP
zCkI&m31|tK_5?}(6$59Je5`8g>$Tf!7AM{6au7R6<iI=e2DhAbl%8@LhG}wPF1P)#
zF6H-edk2|7{4IezjqtPbTnxPdYy?)GP0*c_=MXMy86oXk)rg^z7c;On!De?D7QR#@
z=T|}ciO=%;3Oe*Uwx7WA>jK?5e#w)L)niHh<b$$d+U#;qg81bx^QXudeLQyzbXD3l
zn~v6L4&+!2A1lW>&=-PBfR$q-bm!zC-8$97bgHMbwbPd_q(l;3&NbGOcET>3e&V%!
zzlK(C;13O0zQxcIGS_SO%>SuN8|w7+IB2{^^FEndQ+xFdslIIe#Rmz0t|bWg*FGAQ
zf8w{}jy2Hh!A4;D-wrJydXp*t`~TQH_vCNgu5WcWVqoNMb<Z=8*b}-wa9`e9Zb;~+
zmazsIk_-QwQ~mQ@RV@t@<?k^g&o1~)<Gr*;&hKdhKrXQI4272P_l-sl+a4w5Sy6A?
zzgJ!44wWMC6W6&4#^OpO67$(;#*{BNMwZaL=g1mLsci9`pbpTLq4sej#~R@s$Z-+$
z72qmh<+uh~LZ<)Wq#U*!?5p!)nzPF%T@|XE$$^%DPb=|QKA%B<1^x>xANA&U@k!11
zp_<pB&NZP!g;x)o+X(uENmmW=+46P@^crv$u>3B8maw<>Mz(Y77n;Vla!6Y}uRd0{
zxu-dwhA45W4_g!Xs}wng2Af~R+Z4$0CVZ?MUkU%WsQbXmQ3U<{<Y=q^MQwsKg*z5x
ztI<a-e5@Qz&=-MAftBMr=<g>-&<+<>&DNQ*%(<dXikMYLzHJ7a#z2mp@Ui_+_S=mA
zK^I`<sDPHRD%hX0^ZR6Z<GS#)d|63<P}3mp@{6kGYf)A^H)>IOdLfok11shVPFN(x
zadrjrtbyM&_(?t71brL06IgkE3oW7lE2bW9zrj2^mM5r}-J8_6?zfzq`>(fIIroMK
zGrF$CJ-%-*rwE=EEY)VIk<w@nS4}QuXsompi6>3ICH|1iw^`8hz<glGT_W3Eyw7Ym
z*DY_9ubfmlS1do#7G{%q$uC8TGP*#Eto$|kylli{5;vOrBhX;PXVp&?4)Qn#AC+@l
zG%GCD4$K->#POB3_e1;<;W3f1CHDK#ICE76`B_CFthHI{$nwWw&Jhkp!Xra;nG!ZU
zWzrelkxb_l=$T+Hu<2Y1y#i#`*Z!aFnI9?X3@U9hp%nvDzHO^Ye!R(LKpY|Ec>8_H
zE65R36fr>w;TjR!^WMc})bI=RRYV1<)-ARdFC?Be@|Po<tzTQAp93!eTaNw=Eg@5W
zhT>-goG%oIS_S%whZN2XbK!iBzTAfY-xBbv`lE?Y%563D9Iy~reyf7-ZT;DEJZA^9
zO>UX2j{VA&*M6*#-R9QpP*=KtPz5_wzdy)`wq}cerTd6qu*L89h^)Jh;jGd)ZaIeB
z{)|cgR``iTBF_%!KY_mhE6?AcC3M`6*zujtvV9lH(W#=Ufx1FZaW3<xI1aW2Z4G_m
zS;KeCJ4wDrLjM4q04(1{(BHw=)QQm}gC^dxwtY-X_)y2$m(x*tM9~=VZ6RLUj{O$;
z74Umt`ThY~LgxBGiakZLP|Cnol3R1?%xu)pP2#@XCSIi`(4nAYLi{%-y%p~!`A&eI
z4rT$%cOJBa4(%!S;96SKz)a@InUe9$v3wv)yc6^=frSLax0!ftdY^)R9=rrB-`_z?
z=u~=B8*rWO`7>orbhYEJ78{bD$!^qX3iu~lll&(@PY1Jr<v$NvLWlb-$#n0*{ZP_x
z?(4pU^aE$9xy6L|;?D)?Cw`m$UqWvOuLH~f1850$-j-J1PFQl{kO>PGtX@&K;PfGO
z(kqUIuP}QqCu&pBJlT0U&%Z-CUCSA+`Ra6TKRijcv(I<^OI<fla-{lsBTv<P$@%!9
z&~;!Du=3mjEn)4p2K`+4gn4Q;h&-%j)-PDHtZr$gUN9yb=&`<{&vKj82j-FYEgaYS
zSB0I%!G1wuw=M-aBiLW;7hV(2XG=TB3rG9q&+9f$<(5_;a4dWrcX`H2*a1|z2V!|Q
z0eOGuv&lHm9pq0{hla+w$EZ2J-jA<+(WGNHa@uw?{61^IpbxO=xDZ-GX1m#zj+Kk`
zwbk3*%l((-s^$Xy+V5p8`Uk%AiaV6iuQ+DS39&B{&Bk#@#LJH6MGNHKR17nbJU0g?
z=5nGYRw#STk*s1_w83yQ679j(W}J(ibL10sy&GjbF^l7L<JbZ#00Xq&g@-)0MJH2N
zx4&%CwH>)_dHFlE_b1vZVAE9%En!uw$(N_!>o|YfN(|n!{;2fT!T%2FN5Azn&ujh7
zSs1VGr;2k5bMmsi_$XF#PKnRUKiHk>&dOP=CiV`6YdEYvBda)eaKWH*r1muA@cMNw
zC7y+o<J9!Xq}VKeHa>D-=oZ&M*q`I-)7M(grq@im?n3S{d?M}q<Ivl{i@>JqkI)ht
zGyI&i<yW1)4|0C}3O!_FIiZ>5glrP=r0aac&Jk--ZniqY_|#dWs-@5qYF;<|t3F7U
zmj%!(z-hpa6Rv~46=ar|RiAdO-xXYtM*G_);>yJhtCudEEuYR~6vdVEy*N#94Cp^p
z)cph(A$bf6u<*|*E$ZqOb?fP?u6|)3*6(6o7u6$Dh|uS`{s?Kjr>Y{?qvslei7WmV
zgY?ATFzMNithW4@e8^r87zC_7XF^NJOi!DzDfL*VLrd((S23ul1md;7A2M?d%2oy!
zy>k+nQE(EJ<|T{U>2m$7$}CxO7Ax6odboRCzn}1H4dmMde=FZ3&`*MAftBw~XbGK`
zZ*s$F%cadv^y=*<`uAoP%0CXfkG@)+;+K>9C4wBx+8&SU-y1z8{+#URheD45`vWUS
z4YY*JbGvPNVyRJv6n^|DG?E9`lbs7OD$Y~A!&x)}N)>oCS>jeiFMPHHd^Zqpf_SC8
z-wAy;xG&%(Wp45nrd*}X&!v53_i;wuj5dEEC2%WoHU&ql!_M{~e&;Vq{T4x&fl6S@
z^M26Pz}oBCb5CnC%QMS@dWJ0JwQ(L><+Ir;ztG?3IpsgE*z~-^-DjSElpj9O(~ic+
zsYT}S(>~NUzHWZg=y?OYY`gUs^b6p3z{>M)Xm@ASS(j12KmVuELz})U25NC+y>3;_
z3UU6|_SLewlk4dYb<LVVtr`rvQL`@eA9kI`S!(Ax=BPNn!$V?uWB^^EkEiaud`>FT
zI)wARZk5!lW>@7%Wjcg9waBS`%gA4YY*zji(C2~+ftCM3=tn{3IAvQkHJ#8VWSjh)
zxS6u1al&%bAZVe-BJeOUl!ccI{l{GAZWdm0{qV2c$fMMCE;f}u#pldG<oVz|OEPpH
zY_Rl0<jsK#uCa(d2$vRzIZonjBY*s_$?`BB`gpJuSo!}2?R>On`*v4{@@KYg%j;I*
zK26r{xD@&i-n()s^xLj}ylNg<`ptxQ(e8!*akO$9xzp5L==?WSPAYQqxQ|)olt<s;
zuxR!lLuKJ&H855{r+<V>WQWPAF5ze_H<qiq^$h>S&%RrZu2$^ZZ>pai3;FwphvkHN
zprP)OL7^Vy%yuIAIfbzT*|TB!x(jp8(rAyE8_F$f4HbPD3iXQ>#2%HlX?!GJHi}m2
z7!-KFtG*7Y3DUfZd@m|L+j|uCB4iK}?-+g7qN@a-N&USR`cAL~Sbcs3{Taxt$Ne+w
zS892XJGjNTJt!=zRt}lYVjNo;x?9s`?{sXxH|yl1q<g#2pU%v`jA13-D`mCz%}6-~
zTwHsyLUDV<zYjm1-S3YSKM)DuABj8=Iar1v6!o4QU_e{>r1WO7-jWhOoeEN>id`JE
z(tDZ&*Su@eJMC}D@?Q_V6f^?cPM!rVA+!ANS?;N~ZS&)znsJQKFZAa*>!N+>$5`i=
z>CmX;x!jh3|90ZH_3s;@|IWDuVD)`D^d?~W+xG0T%R8!n$kDd+CsGcXv*g6(K>==Y
z@4y7lZE;8G*K++j`)9h~j?pb&w{U)_@Hv&U%gz48RnMzQzg3|Z)J^VlDu0(7n&05G
zL?t6~{uJ?dMslS4xhI-`FJr>|w<0-xviqv{apLP^pxOQB(a?j@8R^;bVI;p#=)Vy%
zD0{XH)X5^Q8rO$P$B;?g=)($e%{2)#&zoGT2JGH5`Lr7yB*+ITmqY%6jW3u2te%d6
zUH~%BLq#WK=xNdNh81*dZTYu+=^1VBG76?t`DXX9Tjbo?K{DC6(B}{)PUb$2mPd<T
zjCR=`4doPP4U4H<ZRoS!^^2s6nIB21ah%%sjr=XhX7hO)^jqK^V9VK;&=PWjb#%Lr
z-zH~UeOhg9iKa37%rrl@^3a`u=iFCZ*+rE^yA;t+FOE)8xmh{>Rj%9{!Udcw)pB>D
z$R{E3K~VlbPRdmaeF``gSh<>^_3!U((9h2UJEC^vI%PFK;iePsRZky!`;fD5BG>yN
zXGigVU1O0r>q9-tZl!UGmZ_>P{YrXuDT{=oc!%p&*liS@t_b?NtL|~Jo2>TE3S;bJ
zb^(}I{>8}ae3C2&70~;G3BZ<vQ=rcT3pX2i2M7BTuXWhp9xj(|w<Txwvbr_;#9L|O
z6)vNK9-tg7*Q0~?l=F1g@*GUau2NA<`ND;MA^Qe>3Tc^Cek7}q*P%tKOMbo^>K|6K
zhmoM|E;k$ZmUJA*THp;LD4}VmNzZm<P4HgI^<SXB2F|YkL)&}6S5;(x;CJTEZLi$-
zUfxS@F9``r2&q6q54}t1QBepGAPOV`O0h*n3|NSYh-C%WhVF_{QLz#`R<N<Q)vThT
z>nbYNRrr5r=H4U(@VEcZ=l{QW?mh3lc<0QScIM0}9rY;%J^;|QKKoBtpGl$_;v24Z
z$<J>m{{U5PNfhMoB<3T;CBIu|^0S%Mr2_vrssb<;;n%@0CH>8ytrDL({jI=%0w~{g
z(0>;2wSebZWqWLVT0SEuUN7d>K;Ug}koJBrg(6sutBtzIn0FZwk9u+6AV2gMAIiji
zintHpY4w`fVXPdU2Xtk4Ib<Ts6V!{T<=aSThFyfras%@V%utMvs+O69th#n47o704
zgXvH)U)T-P5~bZeRa#CshF1A|(E(ZbGp1!(IzK_y{Q=7=f~dtRLIVPoYS5~<ilil`
zUCvjZx%3ADn`<O~eu|LQ>;sige1~z^L_m(x@~!0KyWo*KKO6+Ee2+X10JmTF1l|wu
z`!>nH;DhqXPRPfG`W3zT4Aw$^lsQF9c-G!#RtrXaLX_WNrsVM?d9YvC$_!>=(l!&Q
zX(6H@P4Y#uOL>nSffVI~=@OdA)$O$)8ULemeJAN|22F1JKMVW|K->=<be{qId_cD+
zCB2d7<#YTA*RQIYrORM5dTa;4!Zv2fd_Ki&rRQ&<WGh`y#N#343CE|~<zvVe?D3n~
zJj>%b7ob|IXUt_}Miaq3rHMQRp&+J-47`kZnn><t#Arez{iK$&o?mM^MWVtYHE0gl
z&+$(+b-$+m3*RKYMP{^-F;`;W6WOG8V?J}ZF`3j6XuYpi4eGs0)r^XN5zpHs%h0}~
z#y22Ad5wZ|h_`q>p<7@~#hZN|!U~;>JulqO)G_)DZH$>>JVnhIW1#NQa$(wpzmeD8
zLz2G-z`J66#mAR&2xs7c0KlD}(}DBrJZHXZyiM}=IP4SSiuZ@xgoQ{md!8uIK@bnn
zaj=6(p-H^O%h2LIXr4RmDqDY)bTptGmyQj<Zvor}aOt=YIKR5uDIZJ61hntMnnhD<
zR|=VWD>+jvu#<Sq#B12cM0phl^O{+$iG9~eOxi~@{v_%61?9MOB>sr}4uD*MOUEeS
z{95F!qr*Qt5kICaS$q^F=v7~%2XP`csR*B1#7yVN3EN$k21voG`Yd5l?zen8()XQ(
zd~QWflSO}#^lj$!pnTq5Ex=m=&jVcg-U80AuKqH|@~MMCPfM+*hl?N^*?)*qorBqo
zvA^NGoUiBOF-EJMg+2JIq$B!M$9&Qc_z=JdfJ?`C;QVssO84C3SUTFZY2n$!X2A%6
zoz8=w_2%+yFP7yVST;E2ZpC{?<GsB8{{)`)Gh)vH+<ELb;7Pxj%FRhqE{nV_+h^fo
z`T5xLhX@5&rwPH?kO_mQ_CLq6&1Z%dOtSY;(n6nO;&D)Z+9@Ab$j5b5{PwndoFqQ1
z#ZR2OFRR{i-wx)reK+e~!*?e%w7!tCvYbU|9wZf?ehX1gvn>{m1gVGlUO+a+{1+ht
zhEh~p_gXAn!=}!o8#YD0K{&AMnYJHdk0(}5@alhoJQJ(NX+BF=cdGUyD$?DW;e^Zx
zV&vYA#vBM2Z5D<Zcz3)kPc4A%I2M8Ib)*2vQ}Zdw@oMo|jPC(4S*s=v1%Xq|>qBQ?
zG<Y*JZo;}^C2R2$)rrZAi1rLIT213y%iw0@>nXd5QlvuNqS5Vy)WW4)e}GtHb=U#(
zF8#8KBgY+#+3L-@ZfJLM<y%N}65OJ+N}!EsyP(s)?*KmxNc**;eIEe+8eqSppB<eo
z+m$`mrG3RVd&)v2T}GsiF0Bg{LYHs23Z&Clos@Vrd=^P>QxEGOtE5fM=ybn8;G3v;
z#D0tsvXM>ot|z{Lx4^eg4V)BQO9NK$apJA<#iPYNFoP{;v1#TJ5*p;8J>Nv*_P*K-
zG((4-wZV*M7V~NekuW>Y>-8Z|Exna^QZQ-jX3Ph$8qr|Tqa8pf3M-YRc@2mRSbCr)
zOMrSK4yhPu&~U(CoXX;IE$w4!eMDn>^fxp%2;KsT#C)2>l#MOb?j*tS#(u+o$V9s!
zWW`@7MRbH)D9#z^J%o-_4c+Ej+^LAiUCxGT0a!rh8T(XEKJDgRi=bcD<2*ORSfY`5
z9{#I+I!D|u*^Z-s>&Qz{3;Z0wxd3;Zz7G6zz#%8@yes!_>?&`}U%VVgjUD5#j%zD1
zm%gcrMfqBtFUK3%1`h%ZmcvWK%kpr3AH&#B#P<UUc{FIR=X?C!)m$F}r65NPk060O
zFg80)9Zf>oDPF%dsJl1UAG!urA`6i(a~83*Wr$w@2Edg9jDfB40`)hdFV*k?VIvgf
zCa&y)+Dh5$ll86mFXDYW{dN?`0doLueQyQ+AmHtH<$QFzV^4jctDXq;9m#9hjLq=|
zN}B0ij2|j&WcQLlR`3-~d6*TkL^}_C2Ei7vsSQx?2DqSTSFxpLPw#jTINqDkLacic
z%S8M^n9i|1p=nSOi1q(6%Kk~nH53OVWyp7k%D|y9i@ZT$qx2moS6mH2SugYVj`M{m
z@N&QafIH7G0nV=-PdN2*;v}{=Si5|UiVa1@aH_T72tU-?qKe1w=ySY!+YDGL6(C9P
z<s^nHv^-2V(IQ3AKU>h{%~Hn@O`Sj{YyHrh`>C33WP|j(2|Ja1MxgVfqv<50nz>yu
z8j<wx27MKvkFOVPz<&n(4shu&{6o?|b)TgF&@1wJT>9}!-Y}1$MbI#hs^W3FY#zMx
z0j-?+;%rQjDiTTOvMKa!f~W}yRnKbF@fa%;$eCn8##N*nhKy=tfc{?zy@O(z$Ch+H
zh5urv5i1wktqGF;X3!UP=zkXY`+)rbw_nvCMw}Kvo4)~n1^cw1d_H%={o6?BC-|gx
zYz@aObL8Jf^(S_O8}L78ipN>pj(;P&UiIttqh1&mmBX&o52cJw5KBc3bt|Qo9m}$`
zZrujZuvzda(f1SElj*gC{So?Mg3bd#l%@K09tNV!GB7JflKpxQy>Hlu5aXG#J(DsM
zE3H0xIN;N?wA&~RdbLy<_2cZ)OH?dhKHT+Glp3-;R;&><VzoZvJaZKNjL^*lK_mv@
zsBD7PpAKRJ)pOZoEWX|fbCiBAeT6`02VP&#=>_@nic0<-0Poy=5j_I?CqO*F?H{?o
z`PEgw-idoKkPupRZYa?UJp`)8^-|R+!uM}t4-#d14)Y-l#0(5b9HVe*PNr4p_e!fn
zM+3@n>9`#DX24$nE*;x}|BrOEYYE|KwSpUw7%(E)1lL<-Ne)fIG*E%z1uA&)W9fMQ
zfF3DB^5Ykj6U1jeUM$4|ZYdFfOGi3zes%TBY3B#dJ-`UCAzV3PF!H>!*~)qFc5+pe
zxwJ$WZnQe(EyVkxcpoqCeBf6Bt_8T|Jpf!>o8-7WjvOiYKV%-a*nraNU8%IX3yO4J
z>sz55;>mbnirPftU=JH_m=oYWtZybb3GgMN@|y{}o{*KumW-j-&`t6|LG4|-Vu9xX
zdH`Iy#sdFe=t4aH6VbI6Q6c|lx}x1BU7Jy^OV_=?p98!EaOv6){C}ZKXr*ZUUSzlz
z2lOw<hnJtzZ(`S}N(;^KB-4fHDzU21guyJl5eOwl7#ur`-9^YU(Q#UHC0$T=w9_>L
z_%y&N0GF;af%9wY=09)8$+i4c5OVhSQkM2|v3V1_3nqJNImJp9hb{~<c;VX!J6q0{
z&==)NI(DL*VwA)C(_Y|hfX@If9X|mVbaXi{Ywy3g`Jz8T%hgWGzoZ~vEJ=A>Mbh<h
zxO^fxTqcQ-Bu>g>g#Ikf0$O@VIx5u;eoO;i3pfMd($NH5Tu#4M96SH6bPTUMhxeaW
za-+0r&e$ay=$`~}SaV<xh_KZ<(==Gv+we^{Xp$#IOW~qhEnC8Q(_A3wc^BnHQ6T3_
z46~FhKwp5nj;sK_4sg4(U;2AugCOtKE9J8*T@&g%pU^u@g9fG3x>B>Ku7;a|A`ZiP
z>4Nn-*&|x>TH+sJe?|PK+ChIIz;E+o{K?pKreB0ZaWkEZ$NA~`H0CfOpvJ)p!H24b
zJy9*;TN)@ERjReoU@IxyMR4~&%NyWz!r)h5NNb^fp<;qvO%ox#_96qwb{y}~Q4k-3
zW}y)@{d`LuEs}gWfI7SL?jOKCnxzB)ZaZZG=NG%?&-?AL#o!agj9boU+!<oVZGlFG
z<@iE~ksFDnY&hzmaTAZr2}^eS?OunDl_)2Oa(Me}1%4agE`ZxUoQ8++xvO32)UNWf
z(-iI^(B5u~>Q{)>DIKFJUHJy-C(WKlp$@qiMfkB5gE<YM%0Y)77{RuWqb%S>fWZKl
zo{7M#0hQMs&6nXPpa)%}eWM@Wuz~B2eNcICVi{MG5m%9sR}$kYv}22&aS<D_hK;<0
z85eWY#sauC7jkB0&=JJRCBk{pQY_nV8)zuTXU@0Xz&`?f3UJ#Gp^5pQD;xih_QRHN
z<kI@ZQ=r5`A{E}0&5)lraL1bd;vUbB4L7l$iSh&tP;nwIVzcx3?1^SJO(0o%qBnsP
zIvN(}YlP1YFSn&c(pd#Ma`Bndc?R&+fC~XGoi_mI*Ggv|IMF%>J`P=lEiI>TE4f^1
zZVaxu*~H*twGXuMC0^#7I%=suos9>14W*KvHk21dd7Pe~fg7f!_y8_FalrXC`v%#*
zuK!qje{%X+J25TfF{uVN_;KGR_9;>XftV3gOhd!yP~>%Vg>(MiGD*iml;iT{eBf6B
zt_8SsJPe#)DYr;E<~h%<bigElPc>~YnfsWMHi{E;G1VMq${M3wPx4u`FV=kQ5(2)c
zu^N#8EiDcf#+nu3)4_LyK@?vv!taUl+Ima+f>uZW>JPjca4x_d2W1{hnFE;J1Lfn|
z{j7YZL}Z-lu5^wXHoVgm>CT%tK?U`hTa9mhTX2SK+^LGk6mg%k1r%;#j}!kGdxd|r
z{iNz2W<NswqwJ~v?}&Xp^?yL@i>UI1(eGD1@Vg%Ruee7nGyM&0h|TmEu53t06#Tt<
z_qW71LjAzMd0S7X!&o{^VFS=YrC(qjiKhF+-)GanH#%G-f53O$#CIj>S+qOxL}SaQ
zm6|lR?6gw<J-S*-X}PZ1Wf%j7#a${3{lO3Pn6e4@n;85h{w72#!b#K*JyTSTXp#Tw
z_D_1?M{(zK_iqFyT(EGaABp=+SoKjHoh;>n3`Wu^bOFSWa)jlJ&>>m)^L{iyLO99o
zt0%G;QclXX?mj-%1M|K{WBM{5&|aaD2?K%kCsUCkY8o-MSOnAahp(r044r_FG5FGN
zJPE%_H9&2WC|VD8R)b`_o8FG`(HHnwz(#=E?l<`?<xxN+B-`6JPd>Y)AHUrf)h=9I
zyY%SR=ZZ$mJ2UE+a@jSrQQs9fqLD`ZW$g$QDx270)$g_Q{VDcE1V~T7!_*u0`Md#N
zGw~<cntw9jE`k*_*^cqAv_GTh6w~~xZPP#89_wFW`|v;a#F2VGHk+De`a?$MQ$`Bx
zc~fYSZjXf3B&;1wnh5hsPcYl#d(iamKyI<%OJ*>|x7|$U%Pvc%SuFNh)B7BbZ(^S}
zy)T%l;`=PxgY}?eE+U!1%ty`e6Q=KRGw_62&b=qp_(JV(rZ*+<l&QUD_OWRq@Fz^|
z6^{E)w?o^_;ESd&1t<G4kDF)O{`bu?s+|R=Y{TD(oNqR)b>gvcju0eV)qB9Y!4uzu
zYG0TsPDkv4R5rXLR+suyrMQrX?wpzyQ&v?PyUBo_#`wWZxyCfQ3)4zs@RQON^kzo?
zZP2sG)fA`I*AeJY>4ivIHIlE&PZKzaS?Wzx_iFi`An_R&5uexF)AsrwrZM4=FD4Lb
zCK0a|@N1DiSU$a0z^ldeu_!s6gp6Q<F9g$ugfl~a4VDfm3Fv#V)8b-jHSx!rX(3XU
zJT?V~dn7j1XN&zm)Mh=Etz%?=Yw&mUw=00(47e5G&V!Et=U3I;avrR@Pd>ZOFObW|
zEIFrE9C6Y3gJcu=mdEz2{Z>rMf1yf?rw{dd;^-jL&|}o>P#n$Y6JQg;3{Z(PX5jp4
z9qWt(yMwM&;5`AQ0GF=e!1*=vM0R)16gPg^LiBMQ4&8FpD)AyRMEi2!yr4ld00U0B
zD?Niw;qwB&n#V~xno&*^pZR)q2k<8VPXk;!{so+05ywC8MC<2dNylFDCKdah>*T)2
zko%sinQ|E91leM!6XwAC8yZ6zqxw8&i>KK9zzX9R$`^WZwM>xo6$d)#8wq?m;8cK1
z-+bWw>S{mIwf)>vnPzf@ls?k9+_9OxMwEOUTj{G*Va+m~EtVuSo+Qg}!TVh~b~o@n
zfVTi{`R@bg*Poonh<#7HkS4<{ZAQ5Nv6-}(@7aqwPGc}nI_2gDJJ#<?;9~(30dBdc
z1LxOs&iSFM_iV5CilvAugx%<Jo?=UOkrr`&xS7346r`!NurLK^4$0(7=8<eVE#OG&
zL|N}`cz+b{=l!A;_-BBx0B-rKL$dr=;~O{`N>hn^wwLepPgg6(GmZbIZ(yXE{Yb>)
z-&8#I%17S~kV-eRYXeFn>8s-ahS`3M?qEELjVtoSTCtH+FlXAJIur;0TWo1m)gMVA
z@w6<h0-b6Q`uPxSXtJ|&p?@$)OiFAxFN0==49s=@G)*%T;MAm*A@e1C|6?Nl>`X1$
zlWC>kT!9ADku}C+Kyu+KvUq6!RgY$RBFyHya%^)JV9{)%C<LnCesq|zlWHv_xLW0E
zup0?Kq?tWK@~sVgsRTbb-+lt_i?Ngtz~x&ZaDGJ{zw;A~r)Bcg7h2sbpvZ+<x4*bo
zaZkI=>?swYDhq^<T_TP3Tuv~?OIU>U@&=9Ge5x5p>p?KOa`a?L*GiP@%7d2!-vqb`
z;L>$JaDEj#`{rZ(IygbxB8_*YhKbl_Ohl@<&FpDz&7Q-ue7YyWZ;_BM*-O<#-jmAc
zshu3N4?1)x;SM^|fENPF04^OPfb;8jC*JZ-r+>Hit2vO;xodLmQbdWbnaAa1*}JFT
z#|`9g9*8M!GdoO#?K*NX=;`VzxbA6!Cal*r98nIQBKgvc@}l_6+p7imBY?*NE<Miz
z=U3Nw$j75++7j*)=};7|><=~FW;R{fsb<oia-c`uV^^i>R9SvPq(cra1U?)v4dBW{
zR|3BYux7hlml7V4&t50m4?5NYt>i_i*r?w{;JZD9t2Z{YKgega<a3(w8MQyB195T)
zD*|FT!%a(BOp{=eDn`PiYRQ{w#v7{rn2G~2ShSik4C6*q#gHhYGZ0yOGNSJB&h`i5
zVv!68djrAOnX+C7Ky$IfS1lIu93T<k^0gaqe*KBvftWYDSRFKzrDE4OiO=3Qvd@V!
zkI&w-q_Ouj$LIj>Z97fUu@dFDbX*U7J75>U<?nmIKLf0B;&}v}{x<If{OxLe08QUt
z<x=;6d<6K4cO%O<KjQ-P{GtnfCFgsP!*F@V3nb%tV!l9%o+Sl(th$pRx##nIH7=lM
z(s`Izc(+7YZ(`CSf<2Rm{|5h(S+X7#aUJ!T27D%9Ho)cQLg4)RANe_U%EXf}Y{Csw
z>T%A&mMB-?5Of6Zq&aK|@1$)`xh;6F%fCIqKLUITaLfG;IKR5;E8540vktWL%_%v)
zVJ_y75Ws-C;zkD3{7oc>CF%Xucp}7rYBm7#SL1A_{_!2_@Oa=e0H*?6I_3c9*9q5Q
zzA2cysJ4ddAi~1YC9%j*n%E>|e5MR<JPa1gsJXn_oN`<6Ubp_w0)G{-7vPrr9&mo0
zkng-)X}SuZj48q=qlwK|suNizkKe8+)xr^@sz%l`H^FK@SE~d*4p0Sf`|Et*O90)v
z=rcwSX%KX@^WE75x%w(h+7)1S4Vc}8EiV$N<pe@;X?ejEuT4|2dw|OrIvj+sOfCTB
zAVqW<3lcBVM)x6>?2EjB;2cTkUeGWbpZUD`32;5pQoI0{&auF200+}0UBf?;^VVjr
z&%<>Toi*Z+0f)~oNW-v?<QcRy7TY4fOX26yO>7;G1Ib{I#VkE^Y6KhVg6P0>TGqQ%
z%l9p?sJ-wa60atCp>klcY+~KOnVNsNwwa`%X;ou^F%osVi@?|)2ZK0k9*n4dFA-AB
z502&_BX%D$5GP5!air+e<F!AiK2ZCK;Oq?R=zLl4-Kf)S(9i4rKJcFbzXRNQmnT`u
z1i;E<S<fBL`DgW#<J5bZIK;pj{~$c*vBtlsipOekAA1B`Z(^V6%IBn)tndaBM2+*N
zmQUd|_79BQLM{-sg%6f(PP&y0Y=*GYHz`d+Wn<HLt*#?D9J`euI;>i(Pll^y8MkMf
zfu=1Z+@!KM;>ks{|L~e#!~1k|ovi0J)S<$u=VQQM1iT7x`~5-S{OTHq>8N&{E0nh^
zcn-RK4j>uzffvaw@SN~O(B+^RP4T38Y-B^#Q(;0Nu{48cW4ljAW~w?v(o>lX9g#!N
z4B(3aO93w5{|5XC!0r2GKXdbZ{Bpeh221QA^XAQ%!3BrCq*`oPK9~EJ)A{t>#C9>|
zZJNhI?~%xdB>!6yOi93*^QWY*4O>CW<NFx_0=&OKBhAKqM+Sb4ZI=BrF_Mhe`AFGC
z7$WNqAQM@hn!-m@KWw=3!SV!*roP03plA{8B?6X*kt{<TxhTzxWIdxPR=XWm8Sr8J
zGr;Bh$-w!=?vnL9Mt+=Av#f5ea|+c$wo@S$#d4tteTgdH(-N%Q`G}y?isM^O?Q|T_
z;VcT6xRyvdT2M|CzTo}*CE)J^J_fk_&PzrA0Bm*QiSBUZlIOavn|vNxT)$-bf_ms_
zR)OOf=1rQgF?kguo0D}|S2n4GJ!KC;y0;&L{YyN{LkQ3*&>IYe<d#UsK$+r$ZvxzB
zVvLaKp%G0Vs#d>4d$v$54&6mHo~FjbRP=b5F1*8_E=#2ScvoLa<H->Q0W1l-f?TEX
zELp!MPQO#XEx_*s>;SlYZUxS-D#xDW7`y&6YnIk5#{jNDPvZTkh5QWB6B4K`d5x2`
z_tipJlCGAAY8avy&{QFN^7pnZm2?EtI_T&Qyc{q9;L<S~IKTdHI-C>H<Ir*7Pv~e{
zCh6FWaz>*Z-rj!){v6;XfJ;Yqx}@VkS%aXbGDSYy$9p?Jz>LhT?5|`CBU{;jed2MO
zx&_<2CiYDTeg*w}F|-cJA5#Z-X<ynWVP1Tnq}z#EOY3}R-~hm+i|uMWy>ym2mQIRb
zD4mP$TF+*t`ePSkbLaQh_k*G*46uv<;=39~BJeS2>=x({2>pa$A;Dm!uM>)-L3qJh
zLhAxwl9-h=6dozM`rh+oy_-=lw;yZ;-U4_C;MV&E;QTrv|FL!r;m7hgO1zT_SzF|Q
zZ({qX^0t;oL-Y=UFwZrZl0o1Lgw=^&P<(+b-;8#gPo)FT1mpnt#mCwS?E%{PEd$6E
zg1d!EqYev0s8m!OEr-QBW;^9H;+?bc4R7CTfIkU%2H=k8*%>&e1WcVF+jVD}d^X=B
zpY81|#xr-l;5+)O{9+G(r`*H;RTZE5i~AP2%b&pa^-XMhta6P$6ss5<FHWsq=<%c`
z#lbP%qRGpWFVZmV4{3fn4w~pmX(6)*&maV~cPWlryx4RP(a)foXDD5T9sX8=L!gi!
zfqpd@U;2YHuP5q4^GbchSDHVIy@6LHys3?$Q(w|fdO_2cjb50sVA|=|5Ouh^nOw}R
zgZxlk660sh_?|}q{8lqQWcFCJ%=d(StU@8)gU&)h3jyaM(moI<&9l|%h!Bsx6W{6A
zL-V*4+S_>TJ&!&@3z-@4c`{Ej;CgS4urfS(Mgh5+8{8mzG%Um9^sWTg$@W$<JLJhQ
z@GL+s!0m6-f%B`v(MRssA?Nva{)_p2%2`~D#Y}pKoJsTLMEa|yJYy8WN6=)2;7|be
zguS`HrfRS}9OE*mWk+J*+4u*-_*^uVeopDdgf6FprG_$ig`~3ubhz`uGr<1?_#WW)
zm%&-k#Q}D-9lhS>9#_th<Tlg$i7@SIlNNXj#D{hAyT|1tmRo%_u_K1^4UU)4Utoo2
zgs(AF^o@z@j6Q1(|AVypDTI#KZ#66$dpi!EeON4}>I(yX=+wU$BQ_cF&(dz&>40?x
z+7_#Vh~N!5XcvWD!Cr#fGz5@V#gca#d@1MCJ`jSck+CXGTc@H)<5@R#fR5gwhLm8l
z<VP#&>dGH)0sjv06Tsz1em6@Q1lZ`vADf-_+kHIwV_w}kT=szA_qY`N?vgs5wenM%
zl>F}1l-JDy@F3|w2A6d69x#U8ZwSfnVI%Z|5jkuG5DT(^mi}xE{2m5gBfM$65w9j}
zE=;#b0h>h-ltLIMPK0n<Mutg&4@PtmX!0R{ELB>sk@edO+MAvE;Q`=#0q+3Z`bDx~
zrvqrrZxH=+xMOeWyGnj;@1J~rK>bAbRCmJ~k!)4B$_G{f{waG4X2K@+A&gYbavCyc
zUu#AN1!?j7M*Vxx&_S^M#E4-_V7R-{9DSD=PKjM_X5L^<vi%#)9fVe1YZ~7hBCRB9
zx0J$|5uvz0CfsG?D#B%6*snxLC8@_00r3_>8f5v=W|+ikndT(o*A8)!o-4y}MXz`2
zkGci%na_{+18)U94{+=ME%5&WT>o@8Ughmw<sHPDKS|g&!)BpT#2UJiz-plhcJ0dT
zRtC$07TnT(FLB53-DWI}C4nc+(x(uPBgN1jH;t#v6h1Hu_`H)tAT26N9gOw*B3FGD
zB$ymQHP)lelJ2S;OEDd~Yk)5VECRUm$!g&II$^v3B$1Q!h7o2F{_bq5@`RNNp$T!J
zWQNB<I1_B&7q>X&?!|kXopS#GZg<E29N_Y6Kk%4b>=_yxMEQ+b@;UQ6`Rv+X#@8%e
z(AiRa0aR(oFFJK0cPgWqd)eFe9!B=EzZrYPg7Te;!>hl<C~sRM80>VbZ)Aui^#_c1
z6B?};8oq;7Z)0A);BpJ!Twx`fng6iT-nY6T_6&}_ytygc)!>t=&h789h+Iox#!u6H
zvBPkp%`)_4*fYn_*i1}}vDBNbJ*7tXsQ#e{Ezibd4Ju&O0sGWA#MM2IYS&pk8!hc#
zHhLS&xQk7EgZ2L2)V8py8<~Cs8x2L!4Q$0mO~|OKos7^6d~b%y*A5uhT72>OfZ-l{
z1!|>yLD&a`8@FCZ=^KRpi<0wLHkP1l+JLYC%VVnPSA_n9(kq0=Wfc~pIF_Mi>(yF0
zR-u8uH1Bm3hnAmecGQ0<gB=P^`8*>68NqxjoAgGUGc`CN1bdX25#fwTCMgbNlT%H@
z1aZU&0s_urg%)eOtxB}pPPAbZ7#|l0f&T$OD2?`Z&IX<j=z9JV`Jv0Y#pi|POKa*D
zIqu`!x4c~q00-Wwoqpq17%VsmJH`-zYiWuh5W*#&<SSQrLkK3#w~qF$9(Iq1-R<$;
z;|cj=bo9}MJbYNk--7O{+hsi(K_kb6`~!R&;9h{+U-tpu4><I(q}!dp4|N^iydKLI
za`^{Fk)L7SL0Ewc#XaR?vB|oPDR+AFSi}=U{jYeiO?=e@cj*jv(u<zatuTWs!zrcx
zipO}&gBJgY%Y#)&-y;V7Ozab{L<npGlMX)caW&p4>95T1pno#(g@DBXm;TFv-vH=J
zKRaGKII)CU$yHKfJy*!B2G<ccu?JP<1#bcRzx^*y=xdKkSF$Oed4{$j6Iijw;3vAU
z3Cl!ew9}=30<tO)2--sl%<C1Ua+{>L4Ycqnmh<~Z;J*S61Ng;h?sXzNLBZeUb#u?;
zd&SEM2*Pa#THK;On<v%t=-pt%?nwrQF|*exZ*~vpT<~6A-g4k~0$Knre-;#2%H@EH
z!Uj%)674CUJ3f=oqvoU9l?^9x^=Rf^<G%17gX~4h2l04HKK`KM(?oGUUEIIKFPwW{
z^Lgn=g0k1{cbPSPz2);2`7B>IpLV^S$``qB{HJBGOdH-rx}Efgoz@s&w9j-eojA~+
za(eO*IzUeylRUN5lWJf&%l0;m%Q{Jm8>6c!Q<Eq2AJ0lYuj9vMS?6e>N}9@Mbenv3
zBH9x69!Bba{90LUsa8_m3@e6OTC8f9+uoGm=l<Lu{UtX2(BF$-)*8Lu%3f!U-|8`j
z7+Y-P8D=-}?J`14+{h?Wdtwvy7Il!dlx|}5S3=%bdHeUH)5&6FO7W3OD2*`dtO@HH
zt%cUCTHQi|UJ~@@21^L__r-)WB9tAI8|X%C8_9G7ZnsuuKO*}{LeGwN>jiu`U<|-*
zw`YNW4@hy^t?~}pUb)B9cZznKQMY7X{R$B~IkVNfE`FDnw0h6o1;L<+-JhUr4wl+!
zv}eGKF+(oIMc~U0i-ix-jp-`GXLhGt(C|;Ay`BxkrzAWT7+(QZPZNB0Dhl*b150U!
zISGy<`q4M4^~fv5RE+sLe&pEegEhAHOu*O`Ft!DRBiFr@J<sh~>9d49tuo|PI>Z%o
z<aD0C=`bOO#lH1qYm6tBpF7@(B&|>x{R3VOU@i6%+^cKrvyyLBg&llb0{lY28i32U
zzD1DL0PoI`{PO)rJ}Zy6pA&qW&{;{7xz+b;{1zYC>U-GO0tYLIYw617&`?jJX~iUC
zEFy{tT-kD73YG+OUk=Ws5XC}Y1|wewgV<u^>c|*~SOJ%lEN{2I^k3)-w2_k3OGA<7
zP>_zkIuzLyGWGE>*YIo>No;s13C4XJ3HQ{%e@JDJ?8C+i3#`U912a=5dm9Ozi5ci}
z@=~bx`jDw=mxg+;!QLzOU%?S=!8A{7*$`MVnS@%Gka-AJ_Ce5iIA~;njUN)Wh-YwF
zjfE73PiSKVF}s-3%cxV_-wFANuz5H<-b~aQ?(|UM9jZ=_S)Mv2dO6AHo|cl1*I;m!
zkX-UT4{x!@Fe65_Ct}@ZdwN@bv$v6oZNmqh9q$_7lI?U5ZQ$w`Sh1z}0WknqJ}U*z
zuRqnJ@-t7lCN9HzXrna{LvvqDHc~`sJb0T1K?X*E$g>tyNx-xXtmrU#<Od7Ew<R5o
zD97E;T@U;=z&3!}Up@qW0I>gMx&FEOuKmYd|2i2<He5t;t}sQMEBr*2-(z4Xd2I}q
zy=!7ZFo(&76zNBRBd@^?sdatO-(pIeVze~u!&T!iF-9{FA@(KIsF*f|uCx+sAVx{4
z(AU8s{2fVuMM=l`&lup70n-64A8Ud0Yx#-nW#DL9Rlfq0Itz{zLdDH&vQimh$vhQ-
zruo7=7}q#A+^KTVDR&#*n}GN7b>(5;j{=@_%Hq5`VR>-lM`1<E&8$eN4!|G`#aKMp
zlkU;+|3&x7dL@)vN`v$M9>5m^E(EykGNTN78NfEjz9QFozJ1(wk%zyTE$laTA0sWW
zsuhn%sCYDM@*zLnDSz81AMh>b|HFOw%>$ZmG`^(czM|Tf)c%UT8Bm@g{a7fNK|>)m
zP1nn&&NIi;iYS8Ps=<^Xa{j7%nH`_3rXanaxxkpkOke0bqW(hCVn(f_Dn{GA>bSqE
z+O4X+T@88tG(N@ByX$^rPg`hpx0*<q<{!*b6DLtE5v+o00--J7au^KxV;3Z7u|9L2
zF@+)Ky5&C^aj5fs_AGyexnLG8_3DV`!Tg$O$FN*2+)K-w!r<?VV{Oe#c@hQPR1r`z
zR<mZrQ{4yivH)g@Bofx&5_`o{=^Xkg<<6Oqyy5QuG(qOS)2tCToIo&dt<Y{H!F?pK
zU5$Ymd^*?v+-T5o*c{meY{7Z=zhpbUi#Bq{`M-f50{jYa`=`H`?4MoF?T(T=&R$+$
zgH97}Cbb&~e63j{L5PFQcB^QFi^7f;{d5c~cD7^<pUCoO<NcLRKUxNSJ>VXI+mA-|
zwv^KV5$8PWZD*WcalHL|oungutNODhw(Pr^cueOz_nX=D@L-%gg~Bn<vhZ~z@(u}`
zk=0=%5(|Kaot4u#k9AP@)6&oM!SOT+VTTY8D{#LW-l?Y2beKl+agb=3%#RAi`4EaD
z-XDz@pOW+>nu?jir^#Q_>nXNoSZ)IPSSyg%!z?{py;V){jp$XeA33ggz;}{#0|{c8
z_*FFzVv*FWlea=L#RPLNGuAL9^-4Bcb>mlEs0{9cGFYQm5*RQbzQcLY9&nApbUGLY
zbch1<EHh6d71}#QH?`Gp5st+Rg{GkRfaLRT@Nl-n=TCtj0?<Akd_E6&GvJ9ZAJvGP
z_ne$hcN}lLB3(F43WcF6pWf3O+5Mg)Drtn1;1R*;ZCbcI@)cCw5f7Bf<t(K4gr9O$
z&kAB68%ETF?BLB%oaW!4@jNO6^`W>=^-T)|tk_aNQbSnYM4anJXjaJ2=2L$m_eJF^
zcWN>c`>Kg71DmRzmY*#_EQ{>3wbe$*4rB4e`hg=v&Df+FcXMULy^#MXT~FziD!oCa
zr*T1Xn+C7*ueel#4_IfumHat?x>w>epD%w0?k|Tv8{qcC3BXSU6g&1kuHD-B<Ml(x
zCE}0{ZcDFAw<XM0&=20s%EN((3AmGlXGOH|Sbz;49oEZ_Xn~7$^CBJhJIOk|Bv|;H
zrtxPYp1*4LFT6qz5L9^{OsshdJp}>Nk(524-bwTlQmATXi3Yzqh7GZ^2}6C_4m#}*
z+TC&f0r2kup^A?BT?zbdz>XJWyU%;ZSx@hl{h@ulLq}G(tbVCz_hxmMXM;+b)vJhj
z<ZlqI|ArbK9=Vi+Ya$cEGb2{GEK(j`6!|wrcj&1!LD8Fo`AjEi2;v>2-F<y@8_7s4
z^Fp|g#(t)A>-5}hkPQ6lLTZ1h`v&>x=zH`Dck5c&(9+l)y0ulcX#TBg`TejepImC*
zf><VJ(tHv~W<#l&s}&7n2nbu2+WnwvJi>!Ua=nFD<d(md(0AcsD^6IN2!V*TT>F8L
zdd{ympgSR@&^($xGEJL+oxxCO-Yid<RgR;*$;2f8rm(f^38vx-{w(>L(6@uHMZix1
z%mTRc=iR{hwcm+D#GGe4Ke>I{h?NcXOKOFeB;1KFmm1|p=~cW|ei|-x&acW3=WjsR
zkXzVmFbk&TW-+2fRA}A#B4PW9Kdsmk2+}k&J(uR&zF?i-ikn9V#>ODf3fybyFfuSO
z!Rni8GG8)HGvNImLx=W2{YT;GU>s>+bJbJzk0_mBz|Me2%#~N$e`S5mejRc}4)6hh
zApp0&CjsZz3F9n_u&vOgz%aS?s94L5WD5^`wo=?htmUojZV_wQ)Xz{?$*{!V5SB%F
zpyl8nlAg^@d3@a71^f}fivX9N_nqI}_@C~xo&Ro__2M)HjC_gU)~ASv+FsVEo_B<X
z8r42WFml<lm;%Uzxv`<R5DAe8-%eKWy^qVEs>4oy=r8Ku$mz)iUH~YO-wB$k)_3s-
zz&YIX>6k=sCd%y$x3Mxi7KSn63*t}=Ue!+8)nlHpN5*&11wxeIf5rc~->F!7I1dgw
zbhUJ%s}=ZjfR{Sa)!3CT91$Ny*G?>X;@|%_gf$<L{2D!=gJ0FaX98;EcY<Fn>yE=O
zeh7gu;J5Qw;I~Vv;1?*_<ua?CAy`_R?>ezdu&SL|l2xMLMwLn8+181!gTM~~e(gk8
zTUWX`zc^i2a=LK40t=SIFVT$uD_xvgEQ$`T?Uc1RbgdlN!LKIZmjgD)?*zYEkD+Vf
zqUqB>*Qp@uROHv>%P6*Af;McvIB%Q|#DC%ccxO^6fvGY&P>@J|9PCuCGRRU?fC1na
z?`M0DEqAFXw+7|bD39SNxuaYdI^z@X;=C-UT%=f&-PkEvyc$;3vit^FmKaxSfHwiI
z>{Nb3*ZwPQWu}XD_z~VFxUGSgqx%o>Jdr<H@LJTG)4}V_+v&tO)b98dmw3uPhC8Pn
zH3TCnsiZeLxTBqV0j~fIl-~({ZSBf0%mc7~nJ)U!t(;!mes8B2lYyWOJOr0G4YCId
z3?)l0@^671her8#?Nnl3aOm9KiO%<ce+X#nMCa_TeC20=g2+<PSgIUwx)NurWC~}I
z!wfWGu`2mdS=q5}oCf?1z!CuOJ6y&(3pl?{Xa|{_??&iHa0MqX9py0vNTo5@s0=87
zCFdv%=XZTrz8a^rIOXodd)<BTo4`K+d<<~Q{RH^`QLc;>o!1^J+8^wNjd&aitX5dH
zq6}qm7$-2u<X7&Hj`GF;pAI+$;Ffn9aDM$sJv*<E|5IK0`<k8dx8eP+ocBENy?}QB
zZu##4=U2hiQocLJ4l6gm!%{s@n5v_J!i{9fh0tYjF5iS43;@`F=BtTHvF7ymp&fej
zA;8B1CIZ}YrvT^IpTr^STJGetMe6JD?CM$OY+mxkC>fyiW2I<ed9^y_Z^irF^TcO>
zzXI3;aLa!aIKNJKo_KV<r<_^WFvUr29gdc!n^8`{Ooh$l#rxWeSE9O8|6v{bhe5!{
z0wx07@}~gj*YXqlBXzF-)cP}Je#K^TK1{}&Neqg=AN2<)lh|-IMZ692y;J^Hyx;BT
z&jNoHuovK#{}yn5{Yk&;T)uP(a9f~q<X}^bum*)Sa0W!%8Bk?7^&j3*{vhC^0OJ5|
z`6mJYe^LI7x_QeN@{Y%YhKQnNLgs$RTql~o)hTx~-W$b>xxDo#@D~8D0Nir-0OwcN
zbG~-@@91`)+{qCF{f^8wW*MUItpo1?N+ps8a004KS?`1q9rf-Hd^BJJz%73gaDM&2
z;`>nP91^aYh|DL(M5Bs#zD7_000n%0+v}9S8Sk&e`+5Bz0RAN48Gu{<3&8nRd7?NQ
z9j)GJu-ChT9RevAN|ouXCk8vN220jEII_bYs1SHLU;w}^w-PwNPH11>rChhG&7STI
zcDK3}a<CtC%5B1XgLtoy_kp(nb^zRR9|6v<mJ|6Ybt?DhL0;?(@>3Lc3WR%SkXLzR
zeU(uidgx@}-2nvvx7=dj{E9e!n8(bkoyzSrxG!iQ+z)`$0A(T@#RqrLE6ZJp_eSwv
zUf<2YZw1@|aLe5WoL~RDpO4FFWTuoOYl#9s3RGAO>PDyBgLrQg@8#usM??PxNC3Fy
zCIjc!|59$pU>@caxmaNc>r&wkX1wR1Q|@fM*PX}j0)7u*yHggI6LPzpzb>dprkrKV
zm!3U$dGy@qvQ<mw7EU;OdF{&n(e@F(yk^d#+UTi$dY#t(m7~Ono}X7Z9?9x3(S$I<
zLJAA<I`J#$ll(u}iJrb=(8mFl0Dk@dLeI1%Jpa)#6cs!4G@)#FeZL#{^MIEDZo7N|
zTwIQx%8k=dw**!xOKKJsEn5YR!=gn+XD_K+Svab8InQlX&tvQ$e8h8d3!W&p;Kkye
z%EP4I$@WmCUyf<%wjKlH#w?)-wGlHvDZWHY<7%~q(7oK$5iUV#^h^F#jFt58el!*M
zEWliVOYeN=cXwazK95hYvsss^s=EbDG}@^Owl&BooW=FaSPz|Yx8c3+Jn<CprvcA9
zW$||F8aHLm+4JjoSK<pm?NW$cb*s65UO?H#0?JwlKF)Q}d4F(RM?cL0J`^wt;MVIR
z;QZ<;Z*(nZe%&HrlhI6`!C@bwi=>NtmAFse0R6%?_BRG!&K%}P0tX*8^*B#FoeOgU
zFNJC=s6#0g2MZGz6UTMK(^F&;EhUH}2gHQrI>QU;x0H%ZH=LemP`1mvpwI0`#(11l
z12O=dH!5HZ@F{?<djI8LNV&0VJ*sMJ(P_JW3uCBx5TAMPiatV+Q05ALn+~wkdCgu?
zmBS<lZhAJ!H-mJ#g{W>tI6v*9nKQItc}yWqEX#+LG(T4EO%GG4_k;>Bmn=eX#tE1=
zLb5*FKr2^x^M3XL@NWT!0B(H>CRj=@4qfJt1GNxnaCN18cpZibkHgUQhoNWBpI^IF
zrZ_IXmFtVL0h0mw$TqT#eSyFm6kf`@g+Zci<YC(_(}%{w#!L^bGS5@bjX5vnT;Dke
z+p5{kH0DaG`IEICT+{Xw;!1Lj64aQaFTw#sBdMlfA*#@0H0<H|H9IWpyBT$H+iyGY
zcLDzdxb>ZI67<!8{Z9OD*DlD{bo~1AelI718Zqt{iTl6ggz%Ysz{`ni=$35}z4CiQ
zIm}~vUq?)uwuxk2N9-F(h=y(=Nw<)!zYzPc#IH|7r76zC&4=(;DLYBGM~L-zlC64@
z4D@D8r>{YipY%G(eT`Ue60cbUyYnP?O{5w$)J+ZMX~Utt4FzKjEy%-f-b2|Tl?Q4N
z&cekoG|a+*RwheQvk<rAY68!+Zb%n&Ju%aaT+@OPt>hZ`7BBg>7d(mLOWseu0{$!D
zFu>(o=0vRPfUff5niKT<P6A_mbOk#0007rDZ$nf~cvA3$zZ56ieu{&|q(da}2V(tB
zpr6LSI8B)N_ToqP!peRoV)Y>A1R0?yl?jsGm7v9y>o)?w6>ulOoo8Bs^Q)_T*|pmq
z<>SkOeXxU_4hVtH+lcZDqHJ04;Y55zBqv5#cKkzRMQ)XLv&gBb9CYXjR&|WCeBc8B
zQvojjwgSHg&~=};yZ4Fvog<ON&wiai;(m(Xwv$<$h4t@HYae}>z5`qDeKhtRYV5;G
zy_ID^3u2LBd#JUS+B(wNJqd!-o}$@LQtKJy825plBbg8JAsNl|()VD5?K88Gd^_V!
z*c+fry+(~zc?8s*u7lSNAAR+BWfsd(k&!?}{F#dh;iqUJ!Cs{*S+<8VsiQqofTshp
z0Q}-S=o%OD`0e1-xC&LQQeK7r#zI6yOGi3a{1Y$R>Xg@rce~^KCg9ru_X1pg{|NjD
zpzAz+;7|BHWl`N+;e0;(G74V*Q}TK(Q-0%&Ew*}`X<I?o-yVRV-w3*52YF~&Q_t#|
zLD?M$NpJpDjlWgR+@@-GsrE({dF@Fm(~5bjJ)Ax9HK#j*p;BQMfkRN6Afj+kjc1t%
z`);fA1+Q9CB|obtchqkw@C|^C0Jnd?3Y=dHoxB<=9e?MpeC6YCe4S7jz%}j)>C=4S
z9s<Mpr{#yGd&IQ$2~+lKIk3DBrt#ddl{hqkF{<uk<!W+y0n5?-u*=ujuyC@fRfxWl
zXh6gf*62m_9*Th9bO^7byrNNAkK8F8`=KGg=K<;fZaX~!`~`p;H{X@ZHlAQ!nZd(g
zOvPHu1CM<wMT5ygDELao0hu5^ByfN7ZR{Rhxg80M+$dy;2)f$WSLsVKeRkL%!%BpH
zFwv9nvu4ty!&=H8TIeS&myRS_V%S^EG<YW^271b;S42S=#9MF<DP%VYq3&80?guHb
znB2`PgsUn`);nQpN4-mdR{}-=-1eIRoL_FeUHhD_?I*&13_Tm2g9pvKLl~eJUdZQw
zA2B_lZgoQ9Nz}Sa$HNQQEEwi^l&Wr$j?E~?mG`y-zaQ|BQ#L30MDm{Cb60uqU9(-@
zo9(<`nbtAx<AL`D3<9|ITm+n7ZoZ6G$N$Bxr(4d*MQ6*1Gp*!dX~depiy+WJH*pV(
zyKuzXhS2al@ehsYetjH`(G$41hxvI7i=}a}Izkw58UxdX7%dWq<4r%h<as>iA!1^R
z44#4<r8r0OXE*3`=aJul2d7&~EWqub<A7HK_B-+2+;+OXOaFB1A)X!5k^A+Kb6_dW
z_glOjTgiVgk)m=r;vUQGbRqLGrNzpiaS287o^V{GJJUP^a1I<s*255@qs)x)>G&-A
zVibz)Oa`Mc_{*Vs`w4}0=X@H=hhGCS{ywiNjk&UZ+dz91Rp#sZv%vQOJ^;A&`w{qI
zK-YDB$Dh@2s1u~4ayqokeF0&iZRWK={GCs%9O@fkj_1KPxy?d4P1YhF(GW}NSh=E?
zLXx|d_mQeRNoUoJj`6Y>cq8CafJ^72z@G;c+$QC0w;i7QGdkP#;TSq!QXX(JmEU5;
z_(9B-Cp<lw;R!=9@!U${AeX_`ktYF1RySV<x0Ar_M1<zYq{kUtL7OS8O$4*g0<$0C
zBr3rkvK|T59rYLw{4BsZ0Jk2yfqw`{xl7h#r86E9<{vEwxE+Vj-#p;rv0Vz2f-7*t
z@yJPi>-ZmCNse&;^Bd&DI3haOAzk^zQ-DZrtt7_w#3doc%pw}EGTTO?SWI+T+FQhY
zn|OU%)CX05k0ZofgXBCxtDB|;1_pRSf{4`%Mw|J8fj-TuPB3_$s8@vPK!5l!(DSrW
zY#?V*0cPB_NY|;J3$q*8pW|vSl>8|^xnsT<349V@I>4PT<^ku|iR6VTFbhE7Npb3c
zvBaY<k*fYkKYb6|Oq7Qa^&+CDXo!f)C6@&}44-(NQd}g<---9T^C3OOQu+Y~1KjqB
zKNaUufW4`*J!a08&y*LBZl88KIMUHL?O!8ao!H>H^IZE6HS^A?St7&?c-4Mv33uB2
zq;u^XRD2pF?)NhBcvt?^Uwr7ty>9PeFUKlt5Vpt%_Z9CoWI03;3u%E73ZAAFR_q~Z
z1N<=B94q$3v3e9g*m?*Syk}u?M+OX^HnNNkA>6Jxw$DspvD5qnCVKv~CD~^tEGnaY
zMwxw06835F22B`p5vEN<$)`C<MUN5_)?APelC6zIh0O>xg9(<G#`ryI!cI~K!%=@Y
zLepaMA0^sj_>9aK-r&6?HjwZ#$$pX~JcaMdULnOGgwZGhgJ`h{Hxi^H?rvnI<q4Z=
zbWbd>=VDods0jn=uZZ;z>cfab(uMilhpJyZTJ$zbE67(W!XKnUIf#8=ww9pRY5Ry-
zM2oCSQ#EQl_YqRc^1YhxcA^H2o_4lB!JhB`fp;{1^^^T!H`=-iANl<F1@I#PHnXEY
zlmZ_BSl&f{Y4+*dA9(9>DGSy=vccyqt#24MnNRk!AK-F(Eua@57mx!H{vICk=^lt0
ziFyIVYBfEbTA5{8Mgom7@-hl~_n@VDv4s#rxIvcD&548#k4GUquEIXQ3_n=#7V3>7
z%$cxlvZX}c+F#adGic@)uh;Fs9|F7raL1W)n*80>E4fcezH9tZm4?x^S;OrKGLc(<
zRIOEiqcC&7Obs=uW69D>G0a$1{$NDjz`x~#U)BeIt8={n!v0^9&{rh109GL+a!`-F
zq(_zkgOx}q4^3D>-_kKSXAhS2Ryy=>dZz-P1(@r6$H%5ipZlD<bXCLh`l6-K(uq9a
zg~fa}2<Bq%78@{>zvBQhEg3r=i^K{ASgTXcHoVi_H$DUWdB97Z%ITVazH>QTH8^J3
zh#{kfjN#rSlTgYer62(okh<oDaT%vGS}E(3aC!&-3xJmc`U714k92-_>*GE<m&aS7
zu!PsEawrzq&|pK^4wZC5DlI}dp%AZE34C3Jey`anw;Ats>vsq67QjOQx7=3X{OUTt
zb}n~L&GNYmg(fFlJOc`x7#RL+M<^zx53D_5?lOQ+s=0^@ibr&atgkt%L(b?1yado2
z;FdcQIKR5)EA3n^TrH*66+`LlmAu}KWF}v**@e93=PENZ+eP_In#wI^hdE*Lm8}jP
z%}zO@-vhr7umj-I@woH5%WwDDnGV7CQj{NGJQvl^MD<(PT}0`ZVV=hwatr8L?y{m(
z4VCo|&hC&Smjb^Ia67<VS3U;*J0S9@T=#RGedz85avteiKF_Li4qy2BI>(>xtb&{Y
z^6O*1kZM_Xv2p)j`FUwA79-Rqy;;4V3VXymn0UmB`&r`d=O&6R><QKAWo8>K)O>>|
zvq#dAkl}h#EAE^yED?Q!65&Xikf>`&6p=(rawZ|8lFt~Ns3n#4)`F!*n$ef`g>MUZ
zbQ6J3*)%$lj7J2~0@}t^Q`0bMiOlRzsH_*%3FGKCf~{{E(NvTsuZEG5pVc)T=Xa}t
zuLo=Zxb1i^aDE+h_PuUgxz2oCSU0bB$by=>C6XWRIUYiLG|JE(BY9|#7IuIjw?Pi}
z<4{aO9miur$5O1A(3wFJ<buRhHizbN$wrwyO46sy>5%hA0-pm|1#sK@dEom18=X8a
z%N@JnUyjq>2#nV5Ik^D3b`dBI{**^&*5b*zxicMqB8{vJ69LKZMJ8muTygI%?uaVr
zQ669g$$^w<$)>+N|8q4toD!F3<mW2;NWrxvunAg~BwD&rGn=44&%fTXJOPH-_-4>=
z**%e8yqwy;L1@Bmv{$Ggq<J&fYuev*yO{*~8DE>mZI-aUo`?v!f2DL8{Rg21{J5h4
zrnl3uV=31@M_NWKN^y>BcEec7x8k`S^TasdrvhdJ+;&|7oL{Y7&S^Tgt1~|p&Odv}
z+!8)a8@9t#wILpmThFJeW~x*Sg>;gKAP$2Nk|$u63VT=CFQ+2Z18+)kHI9>X?RLuL
z^TzwYzXJRQaOu+KNxIzm!hLq8%Uv}q(=c1#O~jPV7tQmV)nOadXtNsPgN&VDI;<pG
z8Y%$|6-b#Rr;^6;l8!2r<Idkpfv*Bw0C4HJ7&yPW>NS_IYN#zNTv)SgVPR*I+9wh|
zn^v6zIr*<-BTiHS@T(m{6M66ES9F3be=pwemVXfVe|dSe9py9N{OY<+%JOT^I$`PY
zRcAnqm?5MH#60J5&oSyCeo6v@Cpq=U`z!E%-VSF2zYK5%z^#8XaDH{Q)9GC4-25&h
z-<?Id&S<sJ5AlpM&4k-3JqlU?${Z-VqOjL<=x9SZ)hLJ45t@&fmVlE0?)bh1_yd5^
zPF$5LCq7v9!lUQ&Wi^E(mI&gi#toZNa!v_yfx5KfH>|UB&#V$*!+81!eGf%8jzQu+
zT-*nW`&6C}Vh0>Cl1O|i26VwXJylC9hjcT%hf&~B#+MK9>Gt6GJ9Rmp@Ae=NfhP|!
zlO|!sghwh##qPk?<7hWzTj~$*tPx&KD-VsjS=VmU%ZFPdilV}6{AQ1FKlfw)T;w-9
zkDi2tL>r*8<W3c$bTPKqA(aMFd!TfTZrOg(DYE?%7Ig5f7x3wTxd4}M7Xe=nIMgE7
zLDwGOxi97CPP`dj+l6o3Lwl|C&>r+L_tP%!bRYaNdeROAno1(Sb0v5s^0nnz;EJB2
z*NWVI<JG}hiBUo-B4Vcj1^y>ua_{uNU{Fkx^=Jc)Zu@sz2>l3P5x}j-y}%y@%yaT!
zx%!AJ)*aLSUFtEVcG<GJ`X%FP;SlZA7B;fW7u6OHt6#EgdCijLQ|lJjjyQ`?YzN5;
z>bE>Db$4-3?1V=JKJwf4TFZ{{B3a>C*+$SilE8#MqIbMa^2UJ?qvLOJru$nF5F&~I
zO}2?3=~x3>h>r9Tu~x1($;#iTX*X#}!>pl2xkjU9+|8%;Ybgw@=)Z-^ld~&cbb}Xp
zXwf!ALxQRsWr@CUaE9bxv<^P)&iL5``~kq10GEH$&ww5nus=caYu+B&{^xyr4FBeJ
z?FXIu$fDZ$%d5D6bYf0Usa;e%7Ypo(|6)8^Wa3i6afIM`Oorg85h2ZHihC9h$Fqa=
z6GQJK0-JPVuTWQJtO%@BSER1gRs>gCE4(X<!FmM6MjjQg-=;=SJ~XevQmVEwIWE6M
zfRKQv8edsv=5Gd9sF%=Fju`g8iTVvm4(fl9z{ONuM^o2Q?GF;XhFb3t@B74H*#t==
zJ-5)DeOwWB#F*%}>7@6W_AGa6X*7*0<KH~q<EMo6rnS)PJff<xy4W`MgF>rZ{fOu{
z6NE5QkxngOslG7vz{yTCy#Xu68!C=?!Z~_S+m67)#1^4)<giv+PnGR?0Bz;Y%f^{F
z+X3VP+<CbgIKP^@*i&_Ct0nbIPN`j5FGYN=Lgc<Ou&%g_ZsEtL(yl_<SQuMGxBf3h
zUZR|Kncq#;5usi)5KIIIkU0sV@L_rpmz0|15z5fXbTiKC++|IvJWbNy0{UiyK0cqn
z1pI5j5rEqtCoe*O1w^B=|FQRFe{8Bara$ti$sLn9MJ|m4n#iTmj9eN>sWDaD2a0>v
z$D-$4AbQS&eA1pGhUCkbK6z-gEF`^F3A;s={o@WesCCD@or-fjhGVt>YoMpI)6rkx
zou!YbqeC!a2#wmTYPYH7QM5ddg1Ol+9^~7S(L72T5-%>qq~Dt!qBM)^zAq5X|DcYB
zoq~X<PO~aoYb0NGqs~<hUp@t{EylhL;PPb$@I8QpT*-&wPX3M$cOS!->9tGi=C3-6
zGwN&R$2=QolDJojdycqQd<;@{uuF*G%oT7bB_xC~Wn(P8LNSoS7+ec5n2NzOD2?S<
z!V1W_mMgiok4monQ;(%Z=1e+@X8)qW5`^`lwZCei?^N}WYX6`H52-;o4^b$rQh!xF
zzag3yxN$@cG%_8cK61m-LOtyx4ddz}y?8H$<99S4%3kc~#lPP)KDu<lVJM<TArjXL
z?pKQA_P<kvUlcJkE+K-?S5W<4v=D}w4KoL?^$PWQykR@wUx3k7j5ZkS46e5MlK-QZ
zbnJ6#fv*N^0=WEt3iu0v)+=Rybmh+7$M(yHGv_Yj0>)?vfk;q@zlUUe9hZzB;Wr*G
zHm}|brjNQvExB0jeUTczSRL%*_QmQfWgpJ@EHg~CJ*?zS*82?>-p3F@^&hO{eb)Ou
zW`D$b#ELWsW%N3gOKzjE|L%>LTZ35%G*LEQ;asf?W&NV{9s8sKz()bb1KfFI9&mmQ
z?_&SkY2KJy->_;%-SUOw-MOB|SFVC^9Ujbk&~}0(?uC$U_=qv7!TQ12$AY*I>JXz*
zM8C!R8|oxIJ5e6*xqKdY6Zp3Pe?teqX8>OYsLqi6d(C^2@7s>$ckSY3HC0olK)i#?
z7MPvhiU4!FC~2kd>*8^axL54L6tEMq+AdW~)~bUpRTI{#ujuXvd#&0_$uDQ=EE2Q=
zp%hPfNxwmT6Ds@ic$Y~D$n-gc4$H{OnMjj@>9pE+nr93|n*JHu`6Y#edcv{<9W@r+
zv>eb=G{|IRh#{zX1Kq>pz|BTf1nXvzX9?lrO2{At;(J9$a}7ds^-`LbIP(DNJlo;R
zC%|*hLJkXn+fJK+^J}w{@9a58?&;J{4nO2H!1>WkFEcjq44^%axz~tqr1Rdfzshe0
z^U!fS*?V5)2~zG$$Cyurb8)UOfo6JY>>*|!X5(BwR%b{pkCTa<P%r_ShLPc{I3A8A
z%1ZTqda_zLqR=Rd%f|#-sK?X7afR`PUi@22u#Q?r1|U{QzFv_hbrj+P(z_|7p&m#;
z@CM^@uechPOFsPqKCHwyy#GX&LeB*l4sgfoa^UL$t?9D=y#1l<KL?KOKg;+!GGz+y
z+EZ#42@TCw^*I?+?KT-<t<M%7V9n-k+B+H4PyTY-pZU0!q4^QJM_G$SME%-XI@U4&
zmnx!TT39CdaxoF1@h8&LLVZ71we`&SnXeE?jj){7U~zz}bZ-h7UmVH_0ReH<9_PL)
z?h3JYg{<$ps7uhP?|*?G2GC`)FYr2dJwNW$A9C|iyNM0UA?z;8E9A4%NNm{AF#@Pe
zK-mYEE05CVlv9Owy7J;W;9CI?0bIWR1l+S6{&|l6%#8=!bnJdhtj|-Xv`c(TvClf1
zmStc!^d}31DLsbmwW=7Y`{d|7Sq|75huvSR8CvF`BF^wbYIztb!xKC(3sQe^Rv$3_
zXWA=S%}F-Lz?XC|`v(aa-%#yZ)tBHm<I>dx_^>w_#yZ{tkfP@z)Y7X2>G!k@U06>b
z87^XTLr5cjwHMsqAL5!5AISphYu{h(T`k*VC3xWOORfTb3*a_@%cmCLI{}ps%6{kW
zuiid(f90&#oKqBM(sz?x{7hOzjoQg`irmTaMxeGsuN5i^WdAJY(nB7o{R>fA&Xx3-
zXLrz(2D~3&9KfaLBH)_<6<KmT9B}4Uv#<QzslUK=p34t{9)v1rk)aAkiy_eSn1N8d
z*Bu5ekP6gioYr^=*>b1S@wyG^$<`~u>m+?vSdC0k!&afc_$kT<!)tsohs*3J*zcT0
z4-ncP5kNb}g1Wb3Bm^&%^=v~O5}a{B&cPWGzy$D%*Y!mDblLZo)}4dsci8gf6=Jgw
zGb8*@iO5i$sBrhu2>$<Kr<^Lh(;Wx(z}EsU2e|X_O~CoJ@g>>5?!L1VAJNx4mB&W|
zZ{Rla4<fe956Opz@0TCOVH?7K<-s6q8_^%fV!{{oEd+DNbaD!B?t_i8{s&R6OIOSa
z#IXiU1Gw#cDe#*CQAZ!L{2!9O9mn>&qv>;Y#~=|3kmpsQ?iefXeZ(Ev7`RSkiMU@%
z#pCbz&I{t#>zAk{Yt%uPsNps0Jt_<#_{QpFj}H;1EA>W#Eb`;5!S+q$M^bW_4ElqF
z-$j5T?6v&bO=3lSjIgQv<oZTRzb14YA(v3T-CeJXg)&U=PUk9KEBWvX>ge`^s+Gub
z2Y3MB@*!yz#sJ_vCy!3+EZNT&9V;&%&4=ko13C|#q?0DNv&L7b@Z0V5JO8q{=1eYq
z;57LlqB0{!bCWzW-X%ZfitjF!-&ODf<cHbSBs~pD@&-gNBZ7h5FH!9^YE~!wecI_m
zTF<$KbCl<3zsE5l**i(RC+9^H*PbvBhwU$rI8V0Klcn#XCC||APgDD4n)MPbd6jm5
zh1wq?)OQu2Kg=tlw8s~;<SW`8k!TLmv=2z2Y+|Xll|&yT)&sB_mIHGIr0gW5yh$Pt
z5~y_65Qs6iatWRXZ0U!u2eLGg({6xz8S#`@-95II<ty=a_u1a}sa@jlZrlDe9pO}o
zrbVHg=<Bv)<K?m)ThT_9_>!;V{|5eFfU>%y9SeXD0Q9;?_T#BezLrDB_UFY5=9g4Y
z#9?ozF<7@`?y&l^xo-g<dwa=0)jizg&e$Uc9ZU+Z&@vEojM^chG8GAmd}V1l*^u@6
z;LrpHXFcNdINi(*Xa+y-F5rjZi*e*#%fyOt7R;P*1m258mF6pDeVRaP)Tz(Sz;6TG
z1#st$$AOE>$p_@F3!P}Lm3m4L9G-ppEED}?mGYRDN#o&b58qip0D;<Z=$4Q3$3!Py
zP4FsNzIkp(`RTxm0KEWi`ICY3>+jCG^x?gdubs+Yd{j!dR<c_zNPTy~l<#47J4Mn?
zm`9;s#2}Ba20#eiV7f0uOY$c3xC29>`nZVDOuo)SE|GL?L%AkC^LBm>_@{v10Pc95
zc^>v$fF>s&{F*#DUUQF?D~=woRZDB<)-Oi1RU!H}tDnn=A5+9>S{7IIKg{kh(({ps
zvLt#BN%#9}Z8Hi7QKZ>KD%3L&6u$wm2!TsxQX`TYPJvBCch*-;MTpRNmUI`Qf5<F;
zrRfD!yB&33O5*R({n0?#m{Nbb`By#F@@sxA7Fm3PX$a-Pk2nyR6tzE<orM_^+u(-~
zU7NxT1Ec6c*m2NU&Zj#JnvYn214s!$m?S?9&@qtyOzyx6d#vju-`c>F3WslpfXAN?
zITzsa?Hl0P7ho^v@T<*<<HsI3W?gsmcYKa&WtUmI7-?ls7~;`a+^36s{w^^$ttaV$
z=<^h}J6XCn+9TbL-b!$LLQPM^oK+q@r)O>9nfT&-#Kx|MjgiUHP4#jka0T|^6$AX{
zDfE1r@J}Pq2HWx?hVv_0Mx!hg6Q$8`Ax2m>v@20)0u1l(2soYjvtj>aAjqn((nzK~
zE;sG>jevK4kDfFQNj)Pvwj2lqax(3H<meQkhjo~VQu9+iP&U5Q^Ck=c3R3%BX4q?u
zfM(NzGteG<YsR$*CxhpUC^la^(K+c|l*b|*2+jIh1O%r20=;4?!$afdKvKb<%rq_`
zo+CVoxQKNJfjvN;r#zMoL%PKtx~<)cJR0f~s_EqPG|uq^cy4;@Oq^eykNBdu$oAWc
zwsG6<3E*!6J_We#=e-d5n*bYkI_va{^11)m`ORs+Axq{B<EIsJLc12bOH61*;-0-n
z4AIx*YSL4zCX<ym7->q&TYjdB^qDwP96=L4FiSo%d;Zh3KQS{yIeeRb5}QVoF|O}M
zCJscb<h#_Ks10UR*wt;7^=SaDjZS}T0)9W>V}M(q#zvgC19qM)``<?A`QbOm^hZbH
zm^fra73z}S2F<HbNp16r$8d2UBklvmy@Bhh9%c*EvHvREudNEKeu=G$S*@<}0(3zB
zYHO8e_3tEIi*6;z7LBB&R{53iZn4*!@wYjW>Bl&O(b!~?YtDnfnrQO)hDmnzOsNE}
zn}ztB8>~PxqUt2!FZ1A78ii)vi~OGRSx?`{m>JMonY*l*=PdPE%e&iB_gMN~e$Riw
zvYxa&uUoO^bZvAB)L6^<K1sDZY5Aq5wZ<%JMEFG`RcvxqV>WbIU+`7-Z<L;aP2fCO
zRoPf=SJFqgfmIz$v$iv?)Z%U>9Vb3FGxKi<MGDpNOUxJJRgvryE>;0GCQReQmd9f~
zNX($o*EtqC+2oxcFF^ZklkJy#k(~eeJlq#}6<{I2T_2utem`)D?1wD{$F!S!yxK<6
zgdqEcS3Iu9i4Z?!t-D6uZ_rltS~av$y^@eMh}w_S*1AoqjTxci-z<1A1dKhXX!jgp
zwbaT6BYCyi|0O;2vThsp1`^tZG`aYf9U+NrR11WH9unyE&vQK&jVoYdHxyfkp{&0;
zRPV11HTxSwJ^ihrzW&IDTIwGf93FaK2-M(1)qRo=#TR$1lhc5o2B-nJe3%EEUtR5S
zu{hVyLwKN~nq^B$c%TP3cAmYoW)X}G>zB5NV1U8QX&0J^DzZ|kTFD1ima|MNd!6!I
z@ct;?&)eY*;O_zc32@7A1J1Aiqx@A%me;I2VcDm5lwH;0)ccYSJ>Y!cmjIgnANJk^
zx~d{u13p!!&Yg4b%|sF)<PxS3AcQa^AV`=81)>as1169FK_C%=f&&IcK}Crzt+WHA
z6~*U7^wBl~VnkF_l!!yC?T~iF8E4z^|8~`>JCP9j{cHW}t$)3``OevQNbOy_##6Ox
z7oh9!UeM12`|a^o?cH{J^qIQHroXxj2e-mZf=+6W{YEaR;+u;3YUtI#Zc(-#<=g2n
zmuz``1|NB#rE7(;i*@gS?VIi0jsVW6z_t$4@&)kZ4Ig)K4>*!{ap$CVOR@qZ8M@gH
zxOS2``XPhg6jb008f<ijclFCT?}kUYaS{R8i9BqV`!$htj|5!-ECh7AZvwp)`0h!S
z&W-lDJFgr!-TezxEBq>x?QaKp?HYA`247GLw+iD3>plS~9P4-FVsgmE=ZlW+ZqD2h
zLHO~qiml<P#nuE+r^<AdiJ4s5l4np;ObNRc#?DAos-3X99V%VMm63GigPsJO1?Y6$
z4thJVqe-PJ<rQ_m=Ok6HV{=XB=g7+WEn31%u9#1$ZN%Y6a)x50y!MvY7coYpbZ&x6
zyskKQyX$^#tmoYqBf$&Zj;!V8iuM>4a?Dw{u$Th#wbK%3WKHL1X7V0saPM0ol~8WY
zO)a+;LkZPZP|oJ#sAJ6XZ=e<t4)<shkW`U_a)A?R63r~wT%I4L7C1f#{axuLcvYm|
z9RPYFFa^-{YdL5N@%xfu^#S7_WxJktdgc5DH6s?;5Ak*E7PaN2+XmVbo4P?J{zq=S
z$7#_h+m*-tZsEzM$#9$j<>EbE9g};}#s?gff>c~enJazd)$dgDHbNdfPWTA)kH9a0
zmN#Lok~iL;ZLGXg<}Ab->x6RnYO9=AiK9HnoWHz`_V0?|sj$dQu;D~b)foHCcCfDU
zz<HeC<qu%B5s$pIqfUm<qe`xs;G2U_sGYhD^wq%ifR<}3XbMOEtjd)>zo8AeB0B;a
z*%6c-FC@B#8*iC84xeij_K|pCg6rYMp7yl0wnz-bE(Pcq^E11YTt~sT81G50)OE1y
z1cm}yt`(pud}rJDud(-;#>yqjd%V)9kRN4D=2x`fKU`ifl-H&5ic`y|q(9>@el>e?
zw|}&+81*>;lf9j=uSK}?FwzY;Jmy#&noyXL$}<y2bQsC|os6tcM0bqsL2`!s6dd#U
zh~UNQIBTQ!F_o?Zkh>UiQ@TC|Ew0A70Dw-{K+qIM+vCNW-AeB*q-$i^vWk8MMY1l_
zywfde!s(E@)yPiUNqzP%u}&DxVu&Ldo(eIXfT4;Ljzmqk74|y@m?N2oTWEs&cLFk`
z&Bj+uoW_@<*OiYsBv0MrO8#|_uNd!1{;i;&0G<Z4{NIA6@WFdZ?xWpWZHJ~$8$}iv
z$d0TA^KW81D!sX%$=fP<ow*&||1R;1)40Xzi;XO5cuPavPS~Q;&XwaDNRx`EnL|8-
zJ(H}F$wk&os(rID?yJFb{I7ISA*SG0y7O)88KmP$m5!2YBI&3BeI;-Wpwn?5XbNlW
z`L);Ex0;S|71$_&S*43A$|LEySEc7#q=(9Wvt=B%`pTy$3r|vnPNLjZ4EY_WIVW00
z)D4i_l}hd^y&zKkw363#ZKVAe1$rtl6VUy@LeMpUaht98Ep~lvy?>j$94E_F&ec^l
zwuDtKv%jX=Qio&PH&8=3nYR1w5^K5flZ8izlwcy~Wl1jYI1(53!>99Jr0J8eo;(*B
z2GMJuQSu*vY`Xn(uE*RSkO^q{$ALZ_h?ie{-fH>B>?=k`*z46=3c^27X}CqD;X~Xg
z5qFrzX1Ik-D)6UcT#mAym4{tm@)f|dI$o}T$2+bU?-)Rm)-dr2Q>hy+Q@4dt@{Igv
zRr=~7yH4L;&@Tcn1G+qY2wH}?{E5}N8gGpls8d9$zgmesR!RL0GcI>R^;klJ#5j{h
zO1Df*RI(ZQ&nbC|u8YWX2I#rKGC=El1L(g1@%`g~*7ZGo+SsCqVAbnrv3oWax_60F
z*P8v-nO)YJ{&nVAMnlw2(Bxa4{Wd$h-0t+>;XIATa3`aqhcz;&Q}OsoyXWCO1EKhN
zCHGOtG!yTseM!9DZOjI$04?|1pnnIp=BWC(z@8WB+Pd7+%I4#lI<gMcWZq{UGSLA%
zz@l#@^37k>XAh~{W9qh*%kQSi>s9KrE{9~}w8k&fK0~HG%lN=K+~vkZhK2baZ1!@c
zwsX74^@7JEV333Z09+1^z0C;;KJtj?5tDgo07wM7yM5!`BY8#PWPYwUF#*@K0r-7y
zPrwP<J^fo}zc-yT-f;RGT+S}A)1XrM7RS0g$KSUMXQ9&8;H#PUHs*hkd~(wq)EYmu
zJOf(Jl3K>)Wu@nt8zSq_8$mw~><6@-)9SD;4b){TJ?G@BdrIqio?3DKaunx^DcD3C
zTdXUWTtKt#;Vj6mwVpNq5Uke1K03NxBCnsR&kE(6HTZ_g*6UuQ);&bp9E9Mu*)t&2
zzq1&H9@&E_8+WETz%empgagw&!%y~3=!$z`ng<<Rswd!u^J{BL{y07qgY9~(*zyub
z(HZywmBUj6jvasz4_scn%=p`!kENaii_$3=iNOE)8}>k{`E{kQb<jnvT`qqF{o)Nc
z+Y`|Gs^5rt;6I}c{#@zlgE{9*jqf?C-p49L*7LEI6^md|*TOd=tEw=lYvGG&gZk+j
z*uuBr(Jb1#?1s#3e0wHq$XqYvZ8MX%e_8VOr73T3soRt4mk+4#ZgI%(hRf?K>a(ZR
z4?j|oe5!tLzq?+&+oSm0>y-cZg!;ed)IaP}w@+O1yB_k|tp4p)_0<&l*>~#Aed=~Y
zP=0ulyykAlF34TtN8htdJjb3o*I4hl1e4{eFYSp*!&4mj<^o^W@@Xg=Nh00R6Vqbp
z%yc+>K9q`lv(S~p$0v{G6Y_d<M^X|Tec*(Jlx$aWFcSylxXv|8+wJD5hvAg7%#-d4
z27~@!d%)4*&pvTCTt$1{_IZMW`<vimz1SN3f-eE5A58Y9B}`^X%{~i<b55WY1!lDy
zpFGCZ2M2Q$CAWK!VG=U`G*5e+xs&99#}zpJ%svD+4>^`&yg9O44|vV);j~hEBwK!m
z>F{};appekw0u3h)<cpy%Lo4@E;bI!6_a_9s|&oE;BokDo*-U>HyW?y&-aa|hm;`p
z63k^C&^4J@zR4-}U@gaTjkl(F&!_gGcrEr~a2yN?(U;MoAUV7^5jQC?el{$t5T2EW
z!cei;x(TuI1Pd*Rl~DM-I|IitdK{B2*HJfpyP3YVzH$fn5F826vDs~X@1D$DKe;C{
zD}Wdm@y*1!2sVy1U<(YVJquWlUxyVUG<8L<@|3;UUOkDo_vD!03JZI>64G!4CA<m2
z*}94IeJrb8nw2WB+27(JN2=eIkm^kcAd38c<K5+h5(;~9tAp9z-&Mr{$*_z#8P4Q0
zP0P%m-wT%4?q2N*aJoX0XQ<m@If~30D`%J+Yd$IMJgGP<{bi?HC+eW{j1HX#S?}XW
zz<&5FwAX39>_mEAbNV`1>F1|exyZFlk>ud3k}Vu-l9k$fc&{uB|1pa8JMJ^PKWG*P
z++r2-aTTWGJn6`27{T?hy5bNQ%eTtwHWSc(7Y+2~<-BJ)fAKgEyI~RYl-qf)(@9$s
zu+?%2EvF3NXpqjvg!KaJ3g-G!@M>OxEI*AF<%-#4F*ajnN1Uq(W4LuJHOKcd_n~B+
zNv<tWB4)!v^D&zE_QD@Y8K!uP`HZYhEPD){<66e&bXd*2mAMmmVb)bFZB9DgtzmhE
zohN#4Wcg*hxZicmcLmGYNWVQyr@r>VFBT2G5`#P5xBq@VsEm$PyI-F5Fpq!D`5Kdt
z!ubMcy~fyetaK)hftWvPVFN=AfV2B^c{9Vmj7})=pH^NlclNw;e(wCjh21MpTU2n~
zX-i5L&#o@0n!U8({L^Y`_{G<<TpA7h<iXU(rwj(~DXxyrRjz+9=UZ-1uDhQv*ZWJR
zzm_HZ#QZf0mVZXVgI+Y!&jf?*0`K#r>cmTv=Hqzd8HtS|rF-&bXV4eu3wJku9C)0F
z7C01;)7!@Qn<Dm?*MR;Da3`SK@7<vH0nHDq@upt4D_Yo6`;ArN(G~N`mM^Noa`JLK
z!o;@5*rhtY?1GBepYXJj5!jhA5b$Gv$SyHdwqy&8djmL{!<BS{UwoI~$qkr2tbj8>
zI$0^;sK_ve!lA9lnk~B%qsdNB@a9N*dV=l`6ajj?Spu4ZD=s~;f=*wu7&Cke<P-u{
zPjAI+7D<M)#vcsEE-KJd*E#frK39~GP<272*G=G43O+Pm+YS09;59(Y@hfNwmn11Y
zmfQQYT9Jc{v`WgBmMtcmWf-SCpv<(CeU_8#vv!F;V>U6U3{=m;K`Jf?q<R5*sv5}?
z9COS<xDkMm<HdYBt$r5_u;}@ULPL_0d*-Id^WP<)*8}$fx;)JN3+&H;HTzU~5PQ}A
zK<o2rvOkx?S71F_8eJb{_xR+bf}bW8_K07^cIIth*fWjm`{s65*}yhok`%XUOp%V3
z!<-4CBY9otenF0q68IR{uKN<Lluq22YNZI#j{7pKj`01EX@$CRtjl(VccE_ZVx8@|
z&GO!ivkL|8*IJG&(Yq6Ojj)1Zz(B-=4x*1J=*C@B0+X$NA_uFWfIo-#7x{QL&9^#;
zr2f29p=U@ox7Jvdk69vT4DZy-lZW?p@_lvyD{aYUz#TBHX`U=JWMm7u5dL`ipPX=s
z&Mw5@9#doZ@E6SSG7rwwecu$7I7FCNB8gb1$WZ!!9lF)?PTpIvz6q2ATK{`MzX0UN
zt)p*k@p%?ITBk3mgkcjb&Zc39mSHTDE}EB-Iown@aHw2C&wwS5G1R`!Hu~H5hxLbJ
z@xjzq;KYWiJ#dM#oegMUW4E(znD9nsI+2;iW}H%(DuVijwM>Wbbjt3KZDxBMLCm`F
z?35mXA&!oZhyj0tbLwn?lZLuIDzeiGc(&C7J`m1Nut;m5@xF)ij~ROh9?PlLJ!irg
zVJv3Aan_uZYNOGRsq~qCYs7xA5cCk>WPk$cH2ys7*!oA#LB~k@+NF7F!=uO83kgON
z3mF=1KI;%?2%k`WzZdj>1Ahl}eQyL!!55crt@BfSA*Bd*$NZ%ej0=qMaO4Ja5)8t7
z*;AICR632@BK$+3y8t}^3Y5<Heb2}8T^5^AFZg+lX*du>#u2pnR3pxOd_w8G5%gx@
zPC%#ge$X<+`Kvh&zi>j6Whv`|61A5$2%g=8qnc6nPJmIhy`I-#%W)KZ(rq~sZ^yo7
zARVAU>5aFCi{-CsK}!i<WGA@M=2MC|b$wg|dIPW#(CNJ$G=<=;svXq!aL41<T7qj@
zNN{PE%HJd469OO7yKA%C2mmR7mZLjp3XL}^Ia;2NhV%WJ%GhKlmo7S&@)}1rtYJOS
zv<8?D7VI8JfLg0@FbI)l{irQRHTZ<{AM~BTJ%E;D4`>Pt{!7Wx@Hcgj)klmRVRc|H
z&U4C@q1=D7SHM}uM%GJo;v;y9>BGS@?YKPG^a>ovjMLr87U^h6>BqGtQqOyX?hh0K
zTCU-sDIEEel1GnYV&%%ottp#7zoOh$5xme!Z{NwqXW}U1y<)ksgJr|o0o4yjHu4Tw
z+^p`b_^(6!A;eGlvmNwqpb^mgUjt1c-Y;(({3E(4*+I=QHMe`ogW(?59ln2P!?=YB
zmHF_;AREGIc+N<s94pCIa;4Wt^il-+Bw#o|q3!k$6N!Tc*vhbVkq7>H#&akjI4X;V
z89utIL+B7^t<856c!cnt^syWC)4=n9*2h0VQ#gKm7{foJi~I}V7Qxw<RI!B_pF$N_
z5yKe4&xg_+MlP%hv>kb<i_$~ruMs^IgB}Hp11PkuhdJRTh45TWE|}*UKSTXasKR7;
z+6s`~ZGM{&x1RUh33?y!44~8hA!rKm^Ng|Op{%;PVo7=If<_~|0qc-dW&fKS8?o-@
z7b$)-AsIUc@R&%s;#iEs5wkNOO&_vaJd4UhU00=tqB|n(+3BEH0e=NZ2V`veE9g#l
zV!UtfLpyb?8lQIEsqV4zk?p5mHs#sP7{|RUSTnqx$=ez(Z|l`<f_!r~z9QL2^$6tT
z^vFmU<3A(k7qf>eVYc6!^NERJR{+3qlsn*I$o(w~{0gI-tjFQN)RmQp6R2{ta=B-0
zmlfGCWuo)=Tn;z?D~Da^qP5J`BhY_hfmPwX1<wuXJi$|LZsy*>H*^0+9=MVFe_#P?
zF)0HF4zJ=1@Dw=*V>8s4$!JW@k#E0-gCDXy8HHvr$B_Xui~)FcF@G@yPW0jv@vv@s
zT;5Mi7<vXUeF#BSXv$Ukt%L4#zTXe}5nwl<^ZiB86sqI=-Nx!w<$JiS!DGbt7!8x&
zZpIP=%(gO7-m%RHC)GQ$X@V}7zpvH_kM>e>1h+=YdvDNvf&Ku6w#)k>xj7-szcUzj
zHrAV%tW|a1r3M9vE7V)@TZgzy@Sf`Xy`Xmkjet(~m!K&K`@BHyXR)Pp$4yM*0qiMd
zXYi6qRt0;-PRrPgHApYRDl<-X42bra-N6vh=l1v<+16BNGG@~Uvnh#F;kvV$Y<90?
z9LM91;v>!Pm7bdO?D}w5q&}Pt`dnZxK!NlW@0U1MUiiUK^NwR;28n*i=r>-$1``z#
z;yG&bYe3w(eEb9S`@j)E>*)v36w+<KA}x<6j^V5LL*%rQN2#C4mHot(w6fe2mVL7@
zj*{bI7-9~Q{uzyYmHy(pBklBT&<lYoK+AI_XbQ)-$Em8+U8dbjq?KG3>8>7O#+Puo
zTY#Z!5~iT#-~#4}$d(CYdnyMQjkY{Z;HSqIUy~f$+=c_t^0Wsn!*R!#QSwAIQ^%fE
zOGZvITi7c;$Id;7RR&8NI=3(Y-%wJhC1SB2ZQ?nipVCt`_-eUs1ick_2+-~3+n|pC
z9k;6S#YX$Szs2V=YB$5HaC+vN7PW3x5`KUi)%M|LP?VbRWit(D6k>JDFYe}8mU|3M
z-|V}|Ib+PST%yN%j8CL?AFFa7My<+~;%T2vlWHsJZ<qUfBI%h9x&l}TXg#k0O+lyU
zS9{$ww)|5%Cd4kw;aogg5uKnCfMvNo5Zr@BhS{!()KW#3<di%Elsrw~r}g_a$?;#<
z7YS(nb_3lPh?i$atNM*w#wG3EsAM}$$##-dt_!+tk|K&-Echs#%FW)zTn{lRZ0yo)
zDJGni7GYmCP{~~jnRI=w2i*Yt4bXZ#2%5r)^z&n@mM<M$Ilr<-&XF|0HOO|d89RNu
zEUpi5<2&p(bYU|-`Io@qi;ne7xrF?g!G2Ym)!?j9C0F{rk$PPS`ea}vpyiqdn!?t&
zeXp_kTeZAq8JrlwA_2SR=aWf7a>=PvXed12xXQ}5&1<oq1ix??6c2%yW_x|eC{%LP
zgOAqFZqUyIO@Nl;bI=rOZc+87eshb@3n*t1vj|wJ{GG|^qcgse)#M>=)L}nEKjEio
za~oZ-*x1d1qmpTHbpm?%0T#&OA|+SReG$3N0(~A(4QRR6gFZ32jx}>=Nxr*JP`=v1
zO1@_Bp9uk|Kkaxw)*OKXK-Y&^pceoGY`eDJwjbtoEzZNK@kCgIv6-yCoOWSVr0g}b
zH(=EY4<|31?@A3Hau|E8o^l$FW;_E}R|=eQ4VzcXDrTISG3zQeEiiRz=`vbc9mio1
zP{lstqL>tZK23jN{bL5pz$xQqKuk4ZCT=thRq1R*8gx281pNc>3!w8M`2m#=DIcqH
z(O~;QY$*vX<U}LZnI31@R(Q8Gw%RLx<HnoO3Bml|3b;VLfQrdD%r~5aqA~&x5hW)p
z`4)ixcsn1~fvyMc0(3sOAB3-Qpft6bii`1zZO6XnS@pgpImsGkRMq0eRkSe<Ha_1t
zx08*}yQaJya*=t@Uh#a2anw@Nxuo)rSFpQap+EdOc9(ez>*dI&rCUGtqIew^*1}9j
zr$^yldk=H&X4Q>s*yHR2_AuOEj)P-LI0C@jBNo}<jB=bi9gT4+Ykxc2jzhbU>goJV
z&Ob2u-HiX_<S(1fVf5)DI@1{E*AI8#zLsH6xBD>nt!G}RzdB)<{{pteyN!D)*$TFr
zu}W4>|3jgEywcky=tQ^YkAgk~yaMQa{TwuflH;~NG*43<KOAgCD=zaiUtZ;g(Y>%j
zF?Klg+`I*2M2};f*$+;NWyaoMd-6BxCMfxew@3C9-U50`1MEiuov-5`f-OIA(0=}@
z8=%&$*I(OGzRKsIs&aVLiOp~NJlZ_u*l$}f!pm+-e2yPVWKD^ynY@+DYmvM@p+34^
z-B!uZ)b(TaKW{kXXP3$Ay{5dWfBjPZK)rcLMEz`!icNiUr+Twf-LTJsBzaHWK35+;
zu5Q)xD{!acdYIwJh!@!peT@AMWtKptwkwu2gFc!9?tp3Yr!6cOd*JS8HG2Rq0^D8s
zU@>-{rvOK^dpxEGhVqyBy8X>8e8lYUyi8oUg(YDJrC#P;&3x^7hHq&{FUN$uV-z+I
zJZoZHQD}O6OOx+3&B0lH`Ba{ro{(DLS<f;?jPJ(tU06}(Zu&XQaGxYw2l?~VzcF(}
z!fou*zG$7SVm==Jt#D4eXyW;Yc&2N30~hHQKHtj{@Fl8Q6&vB0pHRdHH!x>EXGKR7
zFK<UGTQljP_nG`Jg3n~@I4r%e{5Tz^h5`n5r=cliuQEXkmZdO3Nxhk+U(APR%<Fgq
zgG=c4jdJH_B_Gq}bJl%I&mys!<xJ?YEVm8|(B_05^YW%x6I^5aRu!DqZ+6bvJyubB
zdYEB#|8C1sXsyX|o$bsA9zdU4TBgc%`oocO-4FC;-~gb@_22#*``CBjY>3NMIX?Ka
zy02;V`QA3i;Mw)=XE4jg>fJXBd8?GyYni;wk=I{Md0Qc`>$tq#YRTJ0@_L8*Y>WEc
z_3D2&st;$&UleVDR`-e_FEH~(*6s!7dy(}q{o)61rifQO*P8v-n+4aBLDdE(R<|?m
zbq#sPY5vpM?rNv+Pfm}^<H|Vf@IUJ4<{Q@WG#qA)Q#oB}t`K&J;E~;R7I(eDlhXM<
zWcQ?yj|Y6Y;u1_2B%?n|^#!|n9oTz3(CpabekL+SPfrr_V#U9Y!?Z5;4@?MP$r`hx
z36{5?nUJt@x4Yjh?t;I#{d;kAdh|#<G0A#_pPYhY=()FBLigp}60DWZ)y%n?ql7-o
zu<tTcU_<3{oS=pW4)@Z)+YDZ<M`TRL;I0Snf~|5vD`5m|pGLULu)6F#_a@eHR!4Xn
zF;JH77vyGVG`7~6qa8!7Q(V*V21fE@_!XQlPrj42TggkUd9G1>N{6DPe=y(K_<kjI
z7Bjnz$ywCn2bNpS3VM9QdymOzw)eA|aFgh>`rtT}AGjyQ{fY-$SqprAw6kugScc{r
zRlcfGcJz2|E$BMn&wy^%{|cHyynnpdmTyvcbv3!3owr2}F|KCD0a%XHj;(3bn-t-|
zHIGrfT=6}Ecy&MQ{+ruq4`czF?-0-wQfxnX4K3QG+I(YIQya}~{Be^tn)}$}FiOSR
zgD_t4sGfHS+A!>s!^R3&W_0Fb=m};#7E>3%9JQQF^G?ausJl?fS!c^Z<F>7!cLOf~
zTFyW0@0;v>Mh9%a1hM+Dw;E;Dnz?^)R%<@vkhcffA8=U#hmM=f->sX?v`yxNjJ5)a
zOKW+L_nZ~{A{alO3R~ILjGxR$e&tR(>ZXlE<o4Kp{mYs12Wj_I{B|<yEzUG=XAb=Q
zOy`4~K5xEQrDNtJk@c0!L2m#y0y-U=KvRhK0~wo+oZR^SE&AZp77ucqAdgWrsxPtg
z9emQkhx8fzJDzEPTtK&H{XiE1@p6>6_*|Hii-+y#olB9^W3hE<G5Pv+UglBfsTOWB
z2i*)0HKOp;L8oA!&un?FD)yueVt5z2RLQpvytRDygWdx?4QTmZ0R0LOFJDb-@<nzw
zosev24w`k0Y?LoewtP7|BlCb$K+go`09wBDKvx6t>mqAfkuQGcNiUHk1p8u<k{nw0
zzRfgmHM<(3_hHj~34}3>4&v>NIdahXtCZe$f@jFi*Y`kw1N;c+^7RX73T>^I94pTl
zITc5bs<rIAm>k7g0j(Dp)uNp`G!yYR+478kG@_@4pqBv`0$QGnKvRg<Q+#=kS}~5O
zrnjw{5(CEy;VGH+>s+SvZ~*a!5HFSQFF^l5e0D|h#|hd8#Oq;WYxxsdu}1mPsz?YH
zLWE4@PX29X$6IkusmLGOaSY@bBQlXG*q`La!a3g8*>cSU&!8>W#h}*!>j15fYe7>u
z5q;>D<>M)&+2-4XctePn^zj2|b2s+S1DdZ7G=+G5w3H7KzF|cqSI>cUwzJApO-Hxh
zgaQE=^CJbKwpQiKOz_e5`f|`$1J?msjylj3j;YrXKe(|X%_FPU7%Q0MlDU{lxr41T
z#45uWjE&*isR2d2TFKE2K3Wdf9=DMUqyt)xj-V;L6}PS#_J`ZH6r(U-oR9h9JJ=1-
z2LM?{a-W=*HR^3S7J!c~57&a;1l$H_IkteN&{lbfUeVL#Avu4jT+egnQ>LghNDJ+=
zjDwdeJsd&&A;eGR!vC1t=m3NO&A%&X3T>5(SpJc6QBopTSJjcetDy(Ln2vIRIzge{
zmZKVcv>t8*T@P#pv>e+&Q)o*M(JSC#J(Nt265=vLTt=o3>P+X*6-p0B5q}8rlOEdb
zg`EeG18DxeK~rc;53&3sdT6VDG}>~k03WS~zkt3QxEIiJJOG+PTY8Ah)SrkJ45N6B
z(!)=PKZN*64;>$O8$E$MK=UsEO`$D4MDss!Enu8v%TWtHS`S-6KL9)gXgPL(rqGri
zXr^Pyd?f+A?qlf<Jy=4pg`Pu3XXIb0^k6hb^w0zJ0AMhn`40n4p)Ebc@sFsYbQX>b
z(Wh<0NQ4YUFc#7kqtTXQ9r);WYCGshfL(x=<1x?_PPn~<Ax8A>6gp^!8p~ORn1u#P
z=%zAsmC}Rji3tBbpa%d&faZS^XbLCTP9DR3nB+dwz_}jao*tg&uC@8EL;O1Z4WR!H
z>;W|YM$i=glk`UnQRKvXtoQW6yeQ&5-7rFHl^%loB617@JpvdDXgMZ=rf}kVh>;?#
zWDc6Bv9h;#4ut_Q)-lnEwYMh#kJ@r<0w1l9$3X7~4ggw?=Rs45x6_L9BY#%GITbX3
z340xo@8q_6vJ|7zppM8c#xYBJ*`aiu(nI=_5&kEE9t)fTX#P_`Q)tzX{BgLamDZq6
z_+d762fGVO0B}fUZ>fRc)r$Wn#IMu81N3g-aX|Cm2b#k1(m(JV^i~y1=atQ^2wjXx
zb1c5JmTaTe<{R7};hPJ3ATR{bd`|{Vq4jhh!}WN{HS(`f>8(Y)x*gmG`d;8cn-@K6
z6vx>+*nXEP7A>lThsL>ZkT`1j(hDk-jWfK|X<KKn(Fl8y1=<YJD7N|igt$Y9m)igA
zr*JMC&=1h*JRLNJq3x>WeOjKnx50P9vMEcXAka1(GaiIvMv~wM)2QwXt8*6?;M$2S
zx66}(NyyRg>l4BhXGjd9lgQ>_s&NoTaYKMiY@JN!Ikbseh2r%}Pdg!(E*GzWei!%_
z(9dImr|~_Y>!-HkTM+BNGpx6Z##SvI0XtrG!e+^A)Xp)eosHt8p5EMnfU~DR*9|0N
zM@47eewO!a?0gp)W!|%$)BQ8t1RCk}hR>DRM4SY(ih(dscEZh%8x}6fO8($=O8ym)
zEgv6|-tPnb1n?rD<^K}2^BMT6PgnXrVDFEsiS_FfmOn1v%VbjMz`2QKbF1c5(%ELP
zcjuRF;jEtj!sRV<3uZwYMPbiC?yDw}mVslq3(pHI!Nd`!g)wi0)lk~I+K%U5=3fw?
zdO1V1=X23wwnyINAa@4hdMX))6k^@~Rh&@9GE_QCH>h;ZL>h|hbY24bD&Sf`m#=!z
z6b9Jm2<UU1+bCZn%CWPJd`WyF*P|N6wH($+YS{t~xKO}Sur-C|c?Uqk68MwtNfvE*
zX020l{RF-xcu)H8dI0_%fVTmy|I?qt`YLenDW(5|r>J#{&nKvR8}gNvmq#f+`>5}T
z^_7nu^&NJ}+xMyRc9SV@*YK}=lo3}m<V5G5-4Z7I7uo2aJHDqU;Ua&wjgGk)$NBzp
z=C^XM6+PSMz9<k?60nis_ow&=<UUNqWdHEoFU_6_377d35Mx5_d}R9&8-bpQxmHgX
z;Li=n;_wbmUOQt83*5mvpXHWb%o6y(tO9tXXzg7dw@SyCc|xiE&na+arSgPhsDv?r
z2U*7a)*^_F9MLTrzqqyND!{_JU<%6T8E8$;#hoza1=jvBYmYNUlld9q47lLxgzxD(
z<uexek|lk?0^c!L7nrQT+Q|WD!t-%xx9y{CAZC_v<Xs2+o?dxR+25#iCmg_zVtQo(
z-9<0d5B0v2DEW|4TBjGJX6iI2Jj~{Q&HP`oG_%Vm%zuQXWpsIg`46(d^W;^jiCKr3
z3)g3v{~i|D#{9Rzt`3EC80u9fzf<lj!Pb(e=$r!jgUb)RjsE0%*rwnSvlko~X<P`O
zXcLj%9PIBR%)z@_2Gb>Mwwf=c9f{?XlO@$1W^d#*6Fb0`Vs&Ocs{nVLuo_^UMK^es
z8_C8wV(<L}<Ac~pg`GMsmTDy&LnR~yQZv$H|3}BszsvZpt^IEW;<M7O6}d^=)$2u(
z7wD6eALzT06;M>e*?@izvmzDi@WL<6B4Rw9rNS|s5+$ME{Ct1kA$k5jLwfsr1#%O6
zTDh*C7W_w(ZJ}(Ds_#<u{>bwYJGH<;^btTNpxdKfped}e?R2!=SR3_ybQRpel3fRu
zqi$xGQD29{Xnuf&A<e_5@I}-m3_vr~n|Gl+HuCRQ^3;N#ZXdUUZUj6pMB1UJLH`b{
zxBK0qzp3^}e4y@a$W<=oif)RU#2?;6f;GX*=ppRDXcW(KG!s`+>i`djxwrG4DY=`e
zA<6~j0T0oeT80LpFbdQ_WT7D`MI+KdHWq8l0?`W%Z&%d8UQU;b?ipT}uj30m&;(0|
zSv>OwtQ$u8Li`g>oyrt_;FV$$>Z*sg`+}!@PN&;oVIZA{{>=lwV)Z$++6=5QlN=qe
zZ7Fku8TgYKK&k9Nbx?%vGy`{=^dG~WnSV9?^=4XP=sMHC-c0j`{^0)KaYR(;M_8=#
z!1vt$5zo34EfV=%bY&&1=N;hF^f?}&wTLQIW~xYcG1$W{=BKkU=;#*GS;Lty`n!*z
zyQ@IAH=T{NV1{u$^UdHrdf@+_<)|%JGFe^Vh|#>A)_pcJU%;D-!vf|71K3xZ6u?f{
zB!6OI&>tv-Khr|8d4;3XES%UyJ{w)|7Y(x`RZdGDROO=X#mN4#-JqWWo&$6_{S-8X
zki9>ktG!OsMtPVzw`@__(n;99K;wa<W}Wy7OEryRmoR=Z`@*pEG&9ZR;R0S@JMuhO
z#!Yv2;|WP4$(DDnctf^EeW@p{Yfy3)9g2)&=7X*VmIGSOt3gvJw*C9){Q@T>CmC$p
zvL@HDiVe&KQEQoTi^vWe?UUht4n4NakWSKq4=K4`2j7|COa1%zpuJ5P=K{KaKNEB{
z@Vf2aeO+f&pT@T`K2$a_()TlIu9<(P&I%d#E*%xp@m)ERTG*33yIZ;2EHps=LT3>j
z5IT{E4%n^(uNKx5WNXcbh~e<P>i0}_baGT<N8!j0<)Mk2xb<H!m~`%PIA12m)@Q<}
z^#;aYfE5tmPc|yj_0vK+p8{v|ZKFL4{_sg4bvsnL4<JptJ^2^tuYn%`ogeLAQu(3%
zMGmm-Y~u4Hva*Ol)@Lx3hwV=``RHnd;~C=vfxYh-+$O-OZ%8C#fR&7$#RG5vpaqGL
z1}Y-`;TUx;8HT4~CA#<#CEo(@*YaHf`aYlm(DJ<wn!=6`l%3MFW_6F3FJ@<HJsdo5
zp|fW$kk`(~TvNA5$@f~u8ml|{z7$7SM@O9gQHAQ=gJnB<JGz?LiP=`RAKsOm($=Lv
z{1aV>gk@vdcOY$xP9@VO!+2DsBmc0Hlgifw&?Ue$K&PYJ{yu!phrLc2pAK4~9I=R8
zY$XS~2B>@wH+EPZuu`gCZa0c{2cD@P%!_UQ4R-v*|2fdF0sjOv|KIHIPlSI-|01k?
z;gFGC0+ae>Rg}q(S;juAvlzk8g2e^B&PH36V0z$TR=q;%X=kl=jJQYXW&Fz#z03i<
z1Xu=Wx&CZ_e?oE%Ea=yQT(AEpay9N%ay5f*5ZOoi`T_KBB-1MqxxAn$#P4H_&##h#
zfrBWs^2hb1%$j3-XJw)r%chB}0a5cO`Hw5UGZC-my9D%dU?rgSaRulT;;Zr~!gmd}
zfwsW6-sanccs1XTKz{*z4QRf<fIcC<Di0!jH@3_-*l6eft5Nw6dI_)$(0p&Pzdxb;
zFDOvu@)pZ3m;1!+4kJIVSYqygUI|`RFsX>zh4W)wI5FOOQptA&{Iy<w2W`Cu|7d`g
zFA4Ms=|#zwTyicZ(DsRojA@h|LsT&su4^mo-fg}!5pOjjrt)_Y=u3gsHZSUvUbpuf
zYQ4mlyK3;06DrYDI{PrCQ|guSHrjj+AkJEw&ljM71Nc88=_>?HVZZHnthMoNgkQ{5
zPOW&t{KI6mBJB^18}^ASgfXu#Jd3+A@Pj=hOolxUI>e_N?+t@9IM6|9@gsARkx8lW
z!QtcSj`V?ONYBOy?s8KOg{3@APpSN=gM6Ft3F&D&=tkfpK=<1{U&nq#V0|KK6Z=8z
zcGY*adf&R<)RaMXvvs$4*J91qz3g4E-zR=!y#l>w0`IV1UOYbdd%J<OC^`f4lLau|
z6!6Rfw?IA&Zaq%dxq*dlY?|rByPqGZadVer89(z<Z;gMke~BANTjpKppX)Do19A%}
z9AC`GF`;}lr&Rw&k6AO}5E=)%!OIF9Lc1|hl;(n6D9ndw!bnY|G#yZSsYjaE*?QRr
z`XKNUpv&!Npef}0WA)OyKEjVI7zRGhX&AUqe8P>VSzkUaI;A*=YXYA_ogYqG?1T}r
z%(UX?lw3t`VC@ckDZgfeUH~ixv|KlWrtnjyk}J5T<^DWU-eQKRI1S+|z6Hg6pSaC5
z-a<B<5hvTY1ef2k;o+x~oOh6%7xOb{5Yqg-lCv3d)Y)=+-o&0?AOp~H_6JR2|4T}~
z*2byvaz+hN;ZEX49QQ-AKE{o2pvOX-1~U$&#j*kU$kg#ICeEPVlS1ePC0{N02l1Zt
zcpK=uf%^b0-`k)m#IJv~l)n>}(fNGTb2hL;a=+U?@ijB<;hh}`-0ien9{8o>*x%~t
z&9iVYy?i-@rr@6%4zB%!A>jydxAdh3IbT$AhW;6ucO49RC{PSgpgJ15Ug__6?U<^G
zeW9nm#+TU4#Ic>pR)<ky^QnvC^IxDJ1|9*lKK6m8@Kzho6_j67<+-dPI8$!_-zUnA
zjV7JUmxRfkT*EkrJODJ>d|huv=EFOK?gJD6nr{hc3ir2sK4N%2miXe)g)$+31J1*c
z+idrVoiNTbbHLlfQe9khfCPTii><GI?s3cUJ<jK8hr&^NNa=eM_@#p%m5Uvq8-b?)
zEzf75DV&fV;LLTYoTSLVmqbeKOYPsknDMzSQqTn>Vfb^kc!p^2g;*&N%ZmZM@;Zx6
zZ(Vh{t!`5C6}=rPx3fUc1r`8WzRjR1G~C>Fy*j<3eEHmpQ_Ggh9Wo;LGMdO>Dn$H(
z8=LTy!QpSq@8OPA%Z*3%?r;R0gyZ5;$tM+a;HfnMj_G}vY)Npr`(YeUo$%{iq)PtH
zFDZGOA&(26kUoDU+1|kz0H8qSH>ZvD70Op7Cw_lDgK)SULES-pg7pss@j#q*4zCk?
zDzTXoU4;ve(Ju6fq!Oe0u#%%1Jav6v5BetHRzT~`d{@adAkH5`i}ig8Jd@A^eRhMj
z+q>PO7U+oA*b3JlLwGMi{Z$&z$74@E)J7AQxToQ~O*}WdvHu|#^}idaK2cN;`?FlQ
zS6AQm#a;cr3w9t9orwPko`Z@D&rr9!@hp{!o}u)0mA(?luhX{#^aa4hfKH#MS*36P
z3DjSlr(3hMjLv?=iGhC?!zq1l2;+KeQ{Z^|4`HN{sC4hbPEm5n#=R&Quo~t;%NvaQ
z7T&zPA^mNzJ)H3~hr<<V{V*l$L;BPU?$rEVwBl~W=7vvOY>UD>Cvp^1$KdUfFVCyg
zevJ^<3tc^o#y6E7W+I*1-gYJE4Zub~>!HuTlpe-sS5xsYT*v7j(QZc1<Tbhu1|D~@
zMpv1<c6l5J$L<rq2aWHX1!5a*TcqW+L`ROu5xxvp`_96b>FU%O2K>G*uC5*Fj@kZ>
znE6V?K_wiHvHdXL?jnlhCmFmqT7wjni$r{qiOFO?&<(%M#cxyKw;)6leHhz$<$Eeg
z^cz|cO2qVles$vM(<j31MAj)#5suwl?+bs`o!`P}@{L0A`$}KyppSgKr}}w6=tqFv
zfYw*%_w0IM_tVC4^rc2P(JHI8wz$ac<34fFWo&jA@DZpVZdpIvSd2{LK1^74c63Wb
zD?;4^&Tc_!_(1qUg=Ub}L`pCE$5f=>PQ85R#vvn#aw|QJdD~&CFog0FoQu>w!N@~h
zC3#B25D*hNspLAU?qj<hKzelh{%6pefZOaeQhOA?zT8s%ABBT8QAf%v>4-k*Yil4<
zIMBET`^-(Wl4zR3{cDrW_b7Piav6LdcHlr3p!GZfG=)7kwB4V_jM%d3%>Nb}<S6KE
zVch2F%lokQ5W!6^%j@%qY&Z>QXLg1|!R|cd9l>z!6zzAzI>+_$EK<og|5K%(O^_o8
zpHO*t1oSh&K|ss-IcN&6*nYHL*`?%dNl(+N!YjPlP2yc9r@>$4hh%|xPZ&>o3b1;M
zIczvsJ=4*F_d#(l;N38o?7(MbLBv}a_QPjlspJ`K6t#Nu0yz|x{Odng@{a!?GH<&O
zbPcc)(DL2@nnH1$ongGZ@HkaaG!k1_X$^PG5?bvPK`axI1EYOn2Q!X(vK)?-ykvN^
z!{mCJ6LVU;b27TT2N;cKO21I@ybgZ49sVBlAAtBUB2OpK6i%caCQ;y}f|}tv_PR;C
zfA@)>O=FW6vw>K$FN}KSa1Slo=ZdFsDi-1|{YuHR0Q|H(SAf0__!FS@^BQOhCo;~R
zR%J_5kFyqO^TR&z57T(q+ZkKqEsSER$hF5~DPCya>E7W4-c6>4>Kapwl5!V+t>g}U
zq~xM<I0W=q;1od1y~zGvk9+k!K3{3R&z?iF=i6puzHPtQWf_y><~738ZBa8CYr-=c
z-zm8oz*p<@Fz8o-H*8s`{b<Wxq#E;C$IL72M~x^~rXoR`PtM1YcIp(+X9LRt;z9mS
z0!QE{3#fU{ZZGWpBaPdt@oo4_wW#s2<~xB#FUx3Hn%$i6Me@4|tU2Lx_AWYx{o<TH
zfxMhP842V3bMkIX>f=h7<@e|1;e5bz{>lPdnOkI)kwcRp9GdjW!uI&Fz0zHdzW!_x
z<T?IqJ`Y3eW!MdeO+v|zAUbWl;M;c=hHBC8TBGqxM`!rMS%N6W^N!e5GYg~8k^Ic-
z*sRX39!dR27Fg%{H?zPx=A4A#COt8I%5ZKU)?N3R@Keg(^odi<RC*3Q2V+@sgc4+h
zc=a-GOoAhnB#yHxEI-RLjL;t{KkJ~w5cEam>~YY~0fzyt=TAX@3k2iZkBzO^h0N1+
zHhkt_PVR&yH9hmFZGp~{^C#j-pc|e9_KV)o_US14+1&F93w(n;UxN8~J9mahdONJf
z?2U9X(Hm(|(qde1%U%3Qq~AUlbQMqo==!k{G=*2}eaEA1e^&AJgUaK$iW=3WP)pN*
zoyT(femB~_zhC^qjICy8o`t~|ZHy$KcEhDgXGagXvFt|5E*D+U9QDy>7ZKkEV=CQ@
zBalPa7x$-_2LLhvEoV>A@^^9ijhAzA*~&Q;>Oo*qRe1?XS~40&Llfb8bH8|q8I2G!
z03nlkia3RY8Vnb^8R79^HB<7`g5OLqr2PH>^q0W5fX?r#&)mjkz<S&MO7C|%wbl79
zU9Ye+dJfE)%GCl|y!^}LLZF^0i2ruEH1F2m^6YxoEuJkdO4&0W<3+Ook6I_A2aGrg
z@YJ!aYgvxy5Iq|s;3PQv3N|Rwl`;q}WM^YsorE%!fF<7%yaJEF9z37q@J{0$vT>FT
zHOAOtx`%ff8~52%k2s0y*W(NiTo`1Y%ztyxTnffhS!^Ya2Y=CWjI?rGBb`%Z{xv$3
zeqV>~@@@U{&#?ytNCb3#_W@1eyEgJW(oU+P89ncFlz+g!f_>Y5aXmM#7k#0f4ww%m
zccBE2$ikCV5sms*(bj$3v0uii<XZv$#duHozZvvBzypAm?_JOo*4gJNwLX8Q^F4Mn
zR&Tx{XijRs_+1$FEy@OG#h(6dmv0c(dS(lqN069?Jgcxee-ixhQVFI|;!$$ve-Y^q
zN<l9KssJtbM$j_Y{&%+4w>&P($tBH}RH4B2%nOrIBQ@;nza0DeDFydCjZcvRG~T8Q
zM*@#Tb3BWm14leVu#)b<SscURt-cEc#cJJ4oHxVYab$qzS8_K)E<N7%e~I%Dferu#
zs&j3Pw`1fzcHk|V*pfqxLD*%+Cd&_3!!DF)8iI4U#!1vxfbj2T%d-N!b@}`==q<oj
zK<ly3S4y_gar^t@Yb>cQswb_p-c8$piGclLeY$Z!CIUL)TsIML1+6%E_)4r$7x43O
zg(4+28Xmd|@fdSHEHlHD{4CLNmb@oBrrPi0@3Sa7<V#WZl?QL6N08eYZ)ykgF^^H#
z-Y)-k`l$Th2>MRo9zdu6i2c1DPw9Jn`e|G>jSlNTHfGm5uXb;7vU+ESEhxA91=f^5
zcNFkkPc{q(vf!5%Q#IV<8_oj0ktjAZ#0(Ur9^&FIek@VAIyr@#kL!~RmvC0zl2cMf
zI!8hDVf-35l2Dzc<SsfI>8CFNy&kv$(Czlupnn14_Y35-VqXwbt|&7j4NQDe=TueI
zEI6YO3C*e%_c`TqOzI!d>3;F4)7bCq%R9oITcSudO&mVxJ}(J%BfyguCh@FFu`mfo
zhxsvU;l^{A4|g9Nr6&X@-US~4SlZx8^&n2e?(KTkGtuo!ba|8E{g+pYQ%#%+LDgw2
zztSnQ(11hkVXPkp37^9omN^&u>337|Whm{U^i=wFL{Be+ejhjjXg&ScH?Z*scG~`G
z^m@+Lo~_wgh8qdhUPL!{@tQhDsZ(pJmR88d=GYObQtLojenO9T+7e>*q0}uQQtRq0
zqs~<T2lkgaUC*-4Z^4nWeEo~v#=c~;Frb|EHCz5GL&5)zO}+}Qux730lk2D&+`uQ_
zLf_xYCqKtrb2>Q&T7DQI$tk3ytvt<Pg^CZMTXaInf#;9~IBr?cy^Nm+LnK$vj^PSb
z=yv;kIQH$N_PUA<fy2mQR>EiU|ARd6IsN}<T+p5Ve=ZLW#N2JBvkdw6F&wYAr$#ZC
za`Aa=pJ#Pk^q}(-c@Ous+$V`ZO%m?OyI4Ei(rVh{+Tmf=3Ae1u>_MH+?mD1LpRS_I
z{qF8X-THJF-HzBfezZX4_xNvBdqwqmHt0%VF`(;nwf()W$NC<hb@tBf<X{Ip^5(%X
z;tp0}2-NO=G_J$*WPio)9u;3L@p~5ZL7>UzK|Jf$wp@;=6rEaGQ?sZ-KSf%`)50=J
zEmeN2?f6~a$@IwhdxGu_<g3qQnyQZzKb}sfRVgMYRRa<KK(fHM1U!Ax3wQYnzlXpL
zHs9JPzPE$^D{yxd-_X^qr)yHx1vDK5o<B1%#RaC&(w@YL$pQxifHQBr=rg+FlVh)N
z3Qyn27k(dp;dAw$_(cB3{zj0tA^!lCFU8+S^mY#DQlMOYru4R^b@_2npe=tn#4k6l
zC+>QJHms~T<w<oawUQ*Efl7`8QF8nX^oPKwQF1gNC;z6NzZ5!r-h>diG)XB;q*-N}
zy5nkpBB^Lv{*HbX_YMBTmR<cqztb_R-zzRLH2zEe7QVUZbM@c<;b$bxvHwkRMT(>P
z1%3sIlty)d#kA8PrPt7pk^CJDdKfTLeJ1la|9It7u8Td72{(buHI^(vBCM5`bQt-p
zh4g9-M>L|e6V|=fRFpRDUmT;)|HW}dl@rRrmh-20u*#ptpCbA54(RuQkJV=~e`=3Y
z?rENH64qQ$_&=it1ecqzvJ!5$u&N~sOjJR_`xaDrf}h1Ftc7A{<PTBl+Vt;8x^{rx
z2|T7glj&+aPP(R6EW+uQNYy)(DqMEDRne1IYVI^=S?tkRQmXA{&Ta}(DfF+^H<8BB
z#C%Ek9sWx;h{2PT+$BFp<gNx?1FTe^Nx7Tal$!>Gko|X(9hXNuN;WM`MD|#@NlM*}
zQ}ZA7U*UJUn(J?|wxv^IH|s`ls7gorFOhT%09^zOQ=iFn6d$MFPgzQn5lF+Y4y1uD
zI6@1r|ETIaQPKcvu%fBszQb=3{%6g@|MAn!Xjtnpoke)1RM#EoInoUqb;IrQ|68Qo
zECO8(ELWe&a#Met@{e+(y5bLMjE2jape#2Y-Sz4_l?c0GCn}oOB}SH$sBiE)RW9t(
zq2Jm6Yj+3ozhi0q9=~m+bjVnw-t73G5l~XL{~iA&^+0KEMan3>=$b?I&R!Ld&ugh4
z2elQoBUOGE{SnFU37}5}O4Mg^oJiwu*yUg<x?-tXvz&;$ooMV#iDXBF@v$QkHQK~H
zn$7Q?D1MKEehk<b#}AE96u;YP{DI5onqxStbdi8+j{jL$iMAS}e;@l@B%avMkN56B
z{GXP_b^pW9xYOp1bZH7%9zW`!JUBX9<#!HE?;!i>IczX!a(;<}e`Q|NMdtVUOQZC^
zg~rvmyp?9>cqF~Yr{Z*`^GL-Kkyn?aNG{4;(&@4D>VK#q8B5&%{s&sabLm*6w*}ZZ
zQVRW$-Zp^#3$PiWK>95?PJb#VGGG*<R<%bgTa2zXyUul+e*>oKpBB&hjo;fBz+5H#
zLLS;(JUZR*)1B(<X^<d)>(rIouI$vrMd?yCg^|*L+)&LuX;)D;KWxDz;~ZQu-)2*I
zAHsV;eS<4e>V5R5$uOXxZzj;){$5LAe`0@1<~THC7k-iaG_;9<Bb=J>APDix-_X5f
zS~hsJEP=QwHvMXqj?yppiQqplDQAb~Np?R-=Pudx<ZRIA0&~@8@|RRk!s{+Wkc&f%
ztFq9~IPAo`goBEm>WfX#c0(ANtm5B^xUd=}%hMa6-v^G^@zYQ9uW9|cJ6xVrNow|N
z@xSY#l625-e3?~%i9@`OSBAp+p#i6zA6Vv;IVtlqTq5vJ()bTM_d(GwWl7QB+W#rd
ztnA!Yr6T&8B4gH{sC(O`CR|#Ovor}Bm2*@JMDR{k39F|oy#}!(OV85}0DUqr3ZOuG
zZ8*;OMe0=<BdJR2tP|_K8_-=oEjD_M*Rs<j%V-gzD<|z`Cp9I*r7~3~dN)C4gsN_K
zRgu4;gsWdoK%!{pDLu8>uc%5JspMw3FsFb6#hoH!kcz~AyYT;t51CfVswm~5f?$6x
zf;hM7ETyOMm~an4AJm>L27Li=5kNYkslrP^Q>bav9#pSqMejdIE*Uq)RYKma&Nl=K
z@+f$aQI4hRZ2kuje-Yv*{vU(>2KW)s{C@#WVP>25yP7{5ScncMc=Im9!KTFfM))cL
zj5Dy~&~|rV<ezP)A4YiEUTGodWx$1i=6?}r3UzVkm&MP2QahmRGQxKH$)%^C>nbGy
zE-}O<l=v>%s}{<i&Hn)6*XvtHLH`K+0%-ofgQjpC|2grZNHM~WM3PI+#EzFc*m48M
zIAKw{qw=<ve~z7gEXr#BOF*v#Rsov-<)A5OzZ}}mKI~`h_}rD>oK927%i0~t1^_EF
zr(i`;MQb$Ma=Z>cD3-Du{07?X@fgW~UUz5@It$QtM)%yM)+g7rVn;zs3HA=0D6c9B
z&20L+<lmhfHcqNHF`mgW#H6#uSttW@$v@#FERRrmD4nhJvj99pwp?|f?*#4vw0`af
zO`)y&5hG7@70IgOS70Q8xqT<b6Lp+6ue<<F0mkJ_<d|J#{Q2i9d42*vU0>Q`iMkI^
z0BCsz(Xur{TlFPI9#v)F_hk=zoU=yme4Kk4r6gBzLjcA$CWcB$ic6Iowcw-c&0U~(
z0*?V&jwe7<Xsh1D$PunO@O-j~NuMW9_&lkXqPz#C0LE1eXR|4#ApZO^B~K6@Ig0U~
z+L6JaPX$f`v^>*6Q@E#%dK@E9^ja0qYT^gkA<mk(6JE2Mq)azKJ%I6dtsbLfj*_Py
z{B-~G0_bMoLqN;(31|v!@3W37$H$s7G~j&A?VL4m=XUOCkTT)u5dj!ChGil?C3BTr
z`LNRp;XUbTCg`((a{&re*NWQM4?_B}Te_Zk(d9S|<u=U_X)-1}KiK^05w|X{`#?Vh
zJR8Mt(|^KGmD8@^1UIW)C8v6ukINq^k9|Pr0|NjGl&*u<*>-NN?CXt5SGXKTST)&v
zRv=E@PTdarZs1-(=j#KYDd=`ex0mtFWDLJ>W1SG}h2=A9oTeB8hB1SwNs=K{uJZ3E
z#IM`yP63b63+M}I{so{Z#JAVS<sUIbNG={boE1BVJBz8`y3i08lAXMA#VF&gx8<k>
zpPBfC%F%tG_X1A>T8?KxQ)s+T>HUQC5NiTO?t&gsCmuMllf6+k+TWve1IArU<eMSG
zsIRc=e=t(thJl_4OaZh!Q$bTWk@^-c-^bLq<m&P$H>#T;3jlYSx#4j|@jSc!gI_WD
zk$#>9{ZF77(DHl$n!<^+M{)8f12MAcUA2LZ9HL{L>ZEdTPBWd=Y%Er~kqqYB^`1<&
z5lEh~peF&R16rOk`+L2<tM7KX!I{tl`xWHTDsLW|HJBk@*w<?u5PxPyP9}`3)yqSJ
zg?>1N++)<+eCrXf%jWwy=qG^#HZQ7|t?b{i`Q_x6SI)0k22-QcD{#g(7=LGiD=s^*
zLh8g*3-%C2zlLJl&Pm67+QsUA%x43wA#wjZj+T<^E0w-VlOpwe8R(0ERe;vlHJ~Y+
zZQI*xe`T@ynp}bU!;_28z%iN!#8P7y_OW%tlUB&Wk~l2scsJUBOd+&T@qHcf>h|Ru
z(EkR012kW^?OLr(zR0d~F#?KVf1p+NM!n5{CgRupmx5jiTncFZSA(W-V*J(K`*8AK
zYn^}SJUjh}U-SPG^!LEO0nOh^IYIvR{`)ZR4_fA3Z}T0Gcs1X7peupJHZLltt=MHB
zQ%<K=UPP-tW0BosjiaVKCDZA^WDSmJ@B&hKxE!_lHb(J%AM{7Sr%`-c@o#Vp-;s-|
z=ALIWM-9Ua!Zm6ZVUb<`;q*=S!&5+)0u_MP>t8@q5ZZ2Wn`*aX%X6eYp0TvDh7yXi
zYoAiSJl5a{TjKl~c6y2KIF&pI9~A9)lB+kYy9La)`oNgKNOUzVSa;|0bZ08F(xv+j
zuXI1Mnc?YxFCf4C9qorc$Wy&U$$u2`Y55b{Vay8@0$ToaK~orgw~~9K?VqkS`KK<I
zvv0MI{rnG$)jB?6(YLqMyYfF^dUHV3!lkJw5P7g-%!QL3+Hv_R)0elIc#F}FOSR_`
zselKSc{u4sUoHgES?DAkU8>U42zkdtUTTlu1N|-V6QI*GF-@iCEjvHr`p;wXf9`?`
z<iAQ(o%m5;wxUkl%Qm1891t%$jCaI2Fdypx;r)CV&P}p-HcNHni=d~SD}!U-T_6RG
zcou-eW+Z}+fmv4O&?31rlXhpSS8}IRB$Y<@aCCE{;N|K`uJ{6#u1%0zj|(0Iy%Ts0
z(CPXIXbMN{^3`&>kPx(AC|=o3RvkYC!^i`)M|+1g9a~ngcQD$Lna`%uf&=A?_+0%|
zi3z(4l{`7=k@4;@(BpwgfR<+_XbSOmf3f9e4%IGdN?|X~O7f<7jOWOKI=a3fA0(u!
z!YN`HaSyFfeCzFaDSvl>eiC>Y(0t#qzt{b&zQ^*lt*X+bRn-g(4P6*k-N8=3$LzAr
zOuNT)Yy(emdZ<fQTF61>zXRdwO(v+(mLna<B8HGYlA{3hP+$Z=fn;fnwd=9Vl}zu5
zNuvi*|B+qq`Rvjym{>e0Hmx%5fXOLMEMhJRGfFPZRnauGJ-4Lq4pYES9Zt|X;XeTb
zH~hUA`}YzIgIoH0MefnVHogBff5+-T>q6f#ISt!lM{u>AsBHebDknSJNAl+-&~F0o
z0y=-1j*~w#W>OV_gRNIPT*i<)Z+5`pgnm?QylA!$y^bm86Jv5mxExL#9!%5Z9$`7$
zI3~>!K4hj(&Maao9y5qEAuLxvk-Ib-X<zN71@#V}tGP;L51{{>$^|C9G4U;VQ%sip
zB}rpSnG|KeQ*o%c?D!}JB(r^oL`o*Ij38-LEc!~)k|c3b(Pv7gn3(8SEy+Z&MoEMe
zNKWcgT>no?TKE5_C0ROACjVcQB`kscU!7~K&Y_+P)jp{@D{Hx|kyIA#T2JkiuB)1|
zEtII9+y4{3>rYgh6kEqtJpZ5lmu{cz7U}<gsZ)IrJ^jd~NPR_H>O|Y_z#6IQ=x7}B
zl<E(gI!ETWz6JdQ@H0Sxp2On(#@pkiin-;>%HT{Lhf7~jCcQpl)*mijE9c_hGK?2R
zhEa<dgA}9L=2M*QF%}>`8W)v;UJ6_Y=<(StpegJ)sGcWwZjE^!YKh;}%K7BA8^^Y9
zfg2yz#IC~43*HAf47$5xVS%<kq93uhLDIbw^w7_-meF{6fmp&9=nYW$&nSHyfgJj|
z$JqtC0WtwC=SiR`ta(exw<%OD-^b`>Y1xu;d7R;xMHP!Hq@gG#`@c|={a11F_5PyR
zEU-bO5bHx{au`y=KZ3;vImY4y$8<an6w<JLoHz+fH`C!0cQRjL&*7FltK{4SIr71o
z^w|J<FYq!zd1ey2dW-;&{!r}mnJaF8jm*adWy=;!tAgzbsk4?{#pyV!p_gGRqd2)x
zy6h}^iWOQ#&N0rhC?e2p`me&Z4!g>7;j;7Ja0QD=A;^vuRY!`MX*rJy>wDp>bvxJ6
z3{`*FW8zWBPtOe}qfnB2PIxo0aKg0QFG~t+d`_in0m+Q_l&&?PuLo`fwEnk&rm)d|
zo{8TlE7LQtVkx%sMrK*DNfy)gvTQuZjN5R)9`^dc6(?rVEXyIi6!er%+k5j2`%$>=
zc_ok0En+W_40<SV4xsgX81x^&{@JP=tiN2{H_dOMT-YTRPP?{ww+L1*HZpk|Bd^os
zwNPH2TLfwUA68+Y=xdJ4Ppr^eR95IOas!VrT<T!sik*FZ;csIUoTa)wA^3|Jh|P!t
zT)lWkaGuNS4)FFatV%!11ABPThkc<vJw-rop7}2x_<$#RCh}2O5QjVM@45FU9_X7e
zWXvzz{|$G4&HeB2G<T+VXkhH$x&IL!$SCSi6m(L{FadsjcrniZD}@8lp=`QX%Ro#3
z=Q)UKGVnI@Zbo*~1JXa>eSv+=;mGYLa^zNKJ92vj{#r4W3jbq=?R@VZsdtxx{wwed
zp!J;F!(*HQtmtj)`F3?bxUK~~&!|{hId3HjGhDZ=V_%u<s5w<$|FGmOO<s4KUzw!j
zOQ7Cvz;05u1vOs`?ZOjr(QDi$(4d(UMH=sLgBiF9b4;O|>7L+#6J~5$pXeCDdqewO
zuvfQ(YZl+ho-_l8P3tAod)V~A4a{IG{RPv1&<s3J*EIKVY+M?iIc=NiuQLN1<dv#P
zrC3D%YzyIIgANa%=;q+z?*g;|9q4e#;b;m*x@Y(%ptu>AK&{=N)!mjOfRo6*&Wqs|
zF97Yn#^EO~?AF_8d|m0c5xUdu+8dxh0FD5<UVR6e!p>IwJK631ML09)^olaM;-8<3
zo$>AaI-$aIjr*~4&~kLNQfc$isqi+W=ULxS{EKr`{8X=}f}RU312q4&_V@a^T;F5b
zRsDEg(h0KyjSQD;Oby_8mix^W_nC?Jo7wjvN5zt@Y*;Nj=}w-wl_y@7cqaqvBK|K%
z_mVf2JWb%I+nH}c{|x*NXn9yqCGQE?0Z7%T&hL~8Ds{0Y0QtyGeToq5F>U@Oh+p$R
zAM_=_YC!Y95;TSQ{kF&00UX0Utz<eB(_1R$PApIW#uW_ypk;)$|FqMO_;q>s3iQvw
zAAsg><|_WJt!vxmA)M@<d1|o`b|6c%9muWV4j6N=pr!3VLT@SlC5S%<>7(+n6!gVF
zEui_Y0ZpN`_3UH$hZhl(OV70JK-NG2z?d9aQERaIHzEEI;wS#!gZ>@hy(0WA&=gv;
zGdPxi^x|xC$rRfTXQd%fBqobg+Y}}LZ9DylKWOt`3i@K;GC-&Qa?li7Th~06e|S-o
zj=6KmBktxIVxBw)GGYf)Z}V?L{P{NjpFx|wv2Fxt{yxwYT3f$6mVb+jcdlw$*Mti=
zasy|~jO0W9J4z2T!KWB}C?8gVz6RI;XgO{KO`)}QyVm50S+w)ku_TD`FvI|GE@yYM
zql^{n0=68@;8TLnNRD4YJNtMHAE4z3f~FuIP~)k%c~mt%4cCT9Wmv8&gSN(*3+AW{
z_3zs0N4&*|m-t=?x)!(+(0s23O`)Nc{p~XS5x!BCV5VIOE=Q^X<5a2q{AR_s3GwRs
z{|)G0fIk4um**+I8(Z-|7sofY@K3S}zgo{eHC*^99X9_G#INgr73dYfC4lCC8E6V`
z+5J%)`i?66L+rv|ZeVL9PIp!($c6r;(tQB&>UDsxK>q~%257#lui{&0kDJ@z+d`qQ
zs8WS~1N06^zx(Zs2AltQ#6J`1qWnG&^a|ioK=WS>n!?$(|CbZuA1Ult;w){HcCu*D
zi_;gPz=e$J_w4i|e%<eU4*FZ*M?mxc88n3x?)SnEfXDCnj@tak=STQ21ic)%2+;gj
zfu?YR{a!S8W&5U17=;5casp;-)E!^L`*!*fzb^MjKz|GT1Ze)hf~L?`zZYhFf*oJU
z2a5mrevxv29_SiiC7}6V3YtP&{azIRs5;+z$JcE0KY;i{h@Z;em!N+HegQQ9-$7Go
ztKW;_A6xfZ>G(=Nw9{V@>G#e9T?4EDH2;f1Q)sK-i{c+u_gnAynr!|D5WnvCz6Jd&
z@$MhtZ-J)JR=*d;zlAoS+-?Jo?f6PRQhF!>pJMQl?LO!$fOUY@!+OvZ+Uoa?kt5O;
zz*?pCjxY4FlH+yo(e2Uq#B+ehumCNG8#INKhmY6qg{6ped@FRvr%x`NCp*3-n{Nr?
z)$MRK=#{`KK=ZvEG=*1AkZ)8aXu0E)vBA#th)Q=8;xEQ$r2lV0|4RG@M);ecDRgYb
z?~&^NBI%B;1g&>~%{KoM#IMU?HRzSVrGQR<EocfUt=NIb^N*?oEp~t<pQv;nK)iaK
za}@Nyf!_hmmk&~WH$HM=`Q1X{Ur^<hqdwRwk-ZW+Ksn-($uW-Fa+H8iDLx|o*MMFP
zTm@)3t^rNKW&1;GxgU(^U&#?E{Ocnf;eN;gz*Q4<gm!5B)Gq(vqsJk?fles&7)gMZ
zV*zLiThprLJ-t-j?dQ@J1M>&>tv;`EMc(P7Cr_<7e>u($t;m}y57|YBh~@OV6AoFd
z$#NdDJVujvGr>50u<#a)a0tJ{^1vap;44IRV!-KP_=GzGZhpFRO72bUwC(7+TqF5l
zo}5y_`wA<qfG2q@Ck!2|#FG+IFf-tEB$(&S4wXr_GaoSV1ROf?a(+4I!*~rJ=pEoW
z*(&EJx!~?;26v{)gw%g+mw%)yh!m0je+TU<LfQeH?u$TE5YMV|P?XwAx^r?Tmo2X7
znK!m_(IVOyAEgH<AgjszB=r!yQ#FYj+ZpRIxzU4XxG-U~0))dAgrqLNBSBzp+QA27
zg%MXQl#cQy`u@tqq(EYD8w-eb4%5RYB`2o9EP6&-V*0%dznRn_vEw#LWF>|qadwx)
zu8*>Q7W-Yg&ArYc{=mU-K1{H#Wp0%mqw!Ze{Yc+TB$m?u4QSV3q#w}f&jC&0tus}+
z#ZIM%WAdF+pI260U9qGbNnb{3uH$D*1M@l|Z%b+4T9dfiVf>2pTYNk_!!;4JWvBD=
zSip4<2kIn%*Rybp$oaR758!mZPSYPs&J~a&Xv=v!=m&xS2DF?XfTpmbOv!nmZ!7sE
z<(yU(n>}z`_i$i~i`Bahn_FBY<wMEFCbNM1d<owB8GquKzeGo(<7LKob4QN%6J~wF
z62bpXChqid7zs?o=?(l7oDoJTlA+E$P2P)#K*x4EW`kY;ECzHsE&xrTIz`DJSKlM`
zOr|4J!5YxSY==9}Cb19Og&_G=a++thI1@8L2&EpyzY+24ao-o9e*^eQ5&l8Y6b9Js
z{r*^crU-u=<UL`@h#J)JIm>G*rmd{5!12*D$`&mr>nzOjug3H~O#0JklD|nj$&JJ2
zV15xQAP)BMg2#_cjD%<nUM1H|n=h5aD$upSp8&0wr|j>wKH}^iBXa4vvFc8+n0?EE
z%QjX;lVj&TXx`~~z)XD5+{PZD>9KPQdh;nb@i6)|J<-`OakMWnF^RLp*cS~7icnv#
zQFHY{C3kRWWE@`vdJHfT&~i@(O(Fg{;+XoAlN(hedq$eh<kFc@2ZCRXHXOh)^|@*;
zqt2FN6Zq)onMXlC4>SQ<j#ogRpd6|lixjPTacOuiz8(u&cQ7m-$djngvo~iT;?hK=
zkDOtV@x)1>Cj%7#$8TsorWW*dz;{omc0`{mw&QE{zOt%sW!3VU%0+ogF}<ozyuwn<
z<#H(|K<hD1tj8P{FR|UM#~x<wX67E2yPG-pU|z3#A#dN_liV#mT@3Etql?wm?9x6n
zIMO)*X&)(i!xP|{aAAcvFz)Gr6)_V&rJZU%us%u2-wfGw{rDF2uK+taqDLQS3cYRn
zTU{O_a?`Z1eNtB)tHjt7(ynF3nb}x~vv6V{{(rC-t!gFqktEyYAMt9wi$GrvtOa!b
z)q|$6{&uA&?I$soFFGIFIPyv^4>ubkuleNk_^`OqG!_n*Qe<G6s+%Xf-F#=Sw4m7!
zU9vF=e%>du>AVXYL9#WaD7lV;ua?Uk?lIZ}S%8*nC};}b?N)M?*#1Xj<r-Z{9+I$=
z<vq2NrAgfe9YW)9SZox=KCA%JIwc7<0jp>hABsr>J~B{9vW>^;PBDiYxjV!C*U@%L
zzIEUq0)J{Z?gV`|aIY;BmAR(4dHjf6ORB0zEvi~pu{2NKARj#F3Y;Ruq(_1@JN;4d
zTg8|Q1A>4~e+V=MZO7Mak5eOjCTl+6kX${x$^|YfjW1ayjv$~#Sqskbut+dP9!qG{
z+I&k9uh#oY(3b$UHZMw7{Q5+MUwOp^lb0`Al&39alff_9xEw0=<NxaI_!|*dKHihw
z-Ua<0@KIF!uDJa%t;8R0B@~xyY%W;GwE5(Zi10ZT^c-M5p!IhJXbJ}(ROROqyT3V>
zAJr=wSV4_g>b{c8rS1}W?Rbb$o3PO|>anKT5B9!eAV><<0TUg)t-d@v&=EhtncL-9
zL%N4?Y4<DH8l@R3pI?U@L3~8|_zLuI03R8V(+`?Ly#0AZ&iRX~=H%tgTfSs&KN7K)
zUCkoR6{cG^LbM9r0oJTil-|6A>RG70;y)AdyKMgFgI)`)2eh7U2TdVl+Zm_tQ2L7S
zx7*8z1PyGj@`#+eov{Yip8O&o7Ioan>x{MaWXC+7Zv{N^xWZicupb5KB8tiHV3&XJ
zO}FK8kMbC4Ku18!)fqH}6?IA;-7iPvqI^UBkH}Tao{ZAW=gfEwjv)=>G;tp5PP&mH
z)KT%Tw&SOKsRey4umRBg|73r!*U9uf!rvYcC=Y?-q=&#&hFC=#M#k#ZIn)cAUo+y<
z_3l^D)@bYr1vEb&XbP>j|FBh8HLz#63MK>x+S{vU8DbXg$kp4c3?tLdf5fZn<3*sa
z0M-JU?=_$)#Lve>(izV;Ts2$dUTX7gLcE&qSD=3-o?{|>EzlHJ#O+^fk#AHLZF$Gi
zDPn+L0qdmFU4r<vz88aD0bB~`bgu?Y;duHEx8#vE*%nscX3E`C^)}xFh*y{Ek3fF~
zd<$s4KY*qXKW>XocNAaUg|xbn?x@YTcx+^RbSCHuU?HISE&)xUIBws0gm0K@cmcYW
zRq08l+b}W%FxSvWDY`C8>3JvO)%pA`=pTSz0L{10IK_AC%c>r~@}k|o*p7GlE~{KJ
ze^JG}MV0dx)WG0r+|sJ$)jjh@SB+XwCasT}*%e%Faemp9x9WFMmtPT|IE*^hnP=dj
z1r9&nZqvep(|Fj<4a0V%uI36?HBJSb&i!Jt=<4>EJp)Bf2r>|+KWL|C@u_Be$MxJi
z+acXzlVZB4^sIxtdcI;i=*NNmfKJalped}`tI|<!k2foipPusnhqUj2ud2xYzcY94
zeJ!t~_g+XsO8`TM&;wEe0gMGq3;{w(o+K!!tI<`&3L?5#$s#IiBde@n1v_?B)<xIF
zsH_DGsH}^w<^Mf1cX%Phb$_4#gmdqCFJ$JN>2v0krZKfL$|{zaFVqs#mll`3;tA7u
zk`*B)dH`l6gJ7|61}lI%b11rq=B!=<F+UJLy)Pf3PT0Hh6rCj%k$!dx@VS7q0GiGf
zz$xY3r0CRsZGVH#@l6PR)j~Up$~u_Y@5Oxf9?OAMKpfP0D7tPC)$4U(Ur`7FNq`5*
z@QYG;zM^ZlQ!dS`2Y?>}d<)QYedqjM&!_s`JzdAmu@s(m6Fc1yr_&sptLE4?r`&Sv
z#r3#r03HS`2k3HF0;kk<+^PG1QqY1ipz;NEe3yiwo{Cl-TX_zA>u+M~F%$qs34-@T
z{OOk$IQ*j=O~)bNKLCCKXgbVEijH5sfB6k6)Fn*SG&*_y4U_;3m?n(U3tUzYMMovd
z(R9=SZv-?0G##zLyQ`1J`j$S;P0LzFubeS{OxZwXa3{~a6-{szA}(V_S`O4ugK!Hh
z%_Aov>QK;BnIXe=r~Ez0U(XAl1OJiAJ~>i;0dPujJ5~RzaO4svlz(nR%fhN<byD!t
zW?o}&G+7%$zidR2Z;R($M)64Qu?Imi5(S6TFwdCJ=SIE8T=7vE<}4p<d^{OM+#Fuc
ze`FjY7YJ7nxZ@bTtvywJtp+`s-Y0;+3ivxfpD*JkdyQPcr;h#7)sEbJ^_Z~aL(;vh
z4oVu!Kq`GIEUs&6Y%J<Cxv8#p34MS3*G*)9gV|uGkXy~(G#k7v{>l*w?Lz2ot!Bo|
zY{creu!9<l<I5192fZZ^=U=e6YTNd`h`~2T#F;_n{elI)X0gm4SDIK5aFM)dD6F~=
z>*;B(HeP?_A`UW#3!%7#Y*h;NQGBlePg(ei#_KBJHv(<}=zel9a7vTA$mxm0hA_!#
zra=XQ%;x?KHBp4XMyPA*C!aBRdniEDREr#zWl=~$V=-iJ<+`i%RplQ>{voG)dkXeM
z06%~d)qPhxMOCwB>E4Ozt*2!oh$4dq;uFa~#3SV7UyZ!<IA{Xi3b+iQ`MU!+r4q;g
z#(F2--3jGXol6oxvf;i%>|}^W{uoTTsmWSx<34cu0ppi2tT<KNZ>6(~Y;9nM?Egip
zQXx;XfQR}ye52efluPyQn(8&?0~P}`UGD&=RO6gqo^|dEPM~XYeX|@Jd-x4PdUN<%
zoq-eOhyR~vmds%goI`-ib#P~gvvfbG$`xWYibhui#CU9vWkv-;`F47rXhbD5DP~(B
z-nP^Hc795FMpk-X#4xXbU5?F@tfXu}D!`xQO6rSu5P)E_NwK=N^c&1yE5sid{`h(s
z`=Px|)f-(uQ=)pC1pG9>B7h#J=K;SApx3)7XZ_puFE!7|e(P9$(>#aGjt>8WKKy{{
z!!cy}`L<|&gAI6-^>~AM-^Ay8L^hvMI-p-XkLmBFTkO+B9z^Qd_?6L&*z<_~0<>+Q
zqH{NB$a3i15BvkbKLM18*0EjA!9>?tE2q>pFGh!6(6Z3!*EE!T#-jiywLAHjR7UnG
z6M$C%ssXzH%mGg6!1ao6El)b39Nn)&Ybm%_c90l<i@`t?4>Y;fAYMC2@wEl{>UnY}
z@RtF50J_``;FK!6=+m4~uG4Q5!}l@BQUgs??t9F562bq*LU^Adtuv9=={R%u(~}0|
z*MpsYFg-G^M*yD!m;umqECeo-6aS-^Bi|xAmM(8@88dP03>wbuY??g9hUpahHU%Sn
z4Z#CRq6SrV+qQ#dhBbo*?f_`I@l3*Gsu`l_*nx7&@eTFIH-Uc$_ynNo_!n?W70x+U
z%W;T~a1-?TSIVdnkQLQ7H!G!D^uvc$Kg?8f=~0HbBZa7z{=Bc9<wJ(oF)>HgNzG72
zNBN9Mf2#uC1ZV+hI@*9!>TVvdbIPu&YYIy-Un?6!B8Kzn5unFZdQ88FYG|!#thZDR
zk&Fp0yI4<zDdgVXsH-GIVuK3+jD+4%E|;{b9l;;vh%u|{?eH)~?_tn02=q|BSyf&m
z8IS?c^v(rNX;+u?A=O)5)6%6)jg`yl=QpfS(|=<487_Mf3uoe8CVSIMaIMgZ(lUF9
zjYu;ho2)o+I7oL{JT=5^(<HMUNX&T9otSU=b6jzjmEp2n$)I2aKccALHA2zd=FmlS
z-v@jv;34Nb8rOP1tKUQ~?PB|o@WyStE8IpB$z%37`5ndIYWa+NCTt1-u>f5UX}~G{
z*u~!q<=ecnxut$7T-DPG99uH9uiJP}%r<6FB=`h!#4v!wLh{dzl97u3g-(7%|4QK3
z12zD3d4F?$uj$us%?Fi++ZY-;t?X?nZ}~+&@0HI9=p*lm&n@GOY*eU=1#lwE;29!r
zP!7*Uh}@7Xm&cKFxwPT-aGn&CYllpKY$CMbV*Gx~drGO*lgV{5o9~jL=CVdBy0d0Q
z_6Y-lj{uAYXu2l>r_@!ih3J+$vH3-P>S`NjHP??>fEf|zo548WyeDQNVp<OGN!8Rx
zWNPmfxKD7(Z9~3U$d~HtGvFI%dyU5cdc9eD3O)lizpCchq%^f3EF7)goy%X?)Z8+;
zscG@@Fgyy^JNv<Ad6(T>QQKU#d_Fp~+9gK5RoxsEBfR%%a`Sr)How>dU#YgjZz1G2
zKDDY>j{LAtKC|VsSU%PF>Klct=S7|VXXo!Xsxszv`nCGwQ%?A%bJptrRLlPppe_1)
z;%CkWvCRTgLSH_cz3k@w+4t}uiP`oD8^Z%J=3QLeNxg&(xBJ++R#~WIMraEkbT>j4
zrHhJ?hflQoCnd%Fk@2B%V>_7l8Rqg@cJ4Md`yX(PQsV7z`!RSkpqkHJx$(2@6y9K4
zX0EHZX-!VTp&H8i2y>ES=9uJW5q<*PxxSp_+*1oP;}K#u$&253a$|Eh@cv(8dX3^9
zs0rjU+jhaF10=rq+gvlpo#PjwxI|du=+7dzcTO;;X9^5~EKkCDuDiJF4w~iWiL)Vs
zAHe>^MG60zn|&b<-N{^i?KheAZ^4!$(mhLngaZH7sT$!m`-<6S=c+-6o2vSKQgvjV
z>j``mU_3zg`x@YsDx7^{o}*Vu{cb_i*!r`UFPK{20^JE3vF+?XN^)B$*Sr9&dGCq6
z9Nq}};hd2bmy72Rob6KRjL+l@I9^P^_39XxD#oaprs!%%xq4sy6!2F8Zvr%3?*pgQ
z^}J1VH8jgJ5e)~Ts%9ZBA~&)#iIzWc<2z^lJuEMpC-O5<nPWhxN^2`s`6Z`D${z`Q
zJYW()mp>agrS8k00GqmVYoR#KV{0a!N%O!w;}T2Vr1hh@U>qDfs+n`TDsKz&t3ZA<
z4?GThAK+gAJr9gK4R?}&!iUs6@P%_<Gw;#JJg~H(acWcJdG*VhW;QI93vCCxMhUmh
zm$I!X@|jH%t`0HoWq$H2y!Xp|>??c|dzr_)!iT-gGhe}Wd;`uK$E@x)Gx##yBs}*E
z*8{@!0yZr@ZpT+%{gwAAi^Dm_XnWY>mUWwO-!81@tYOa+9uNFQ+R{AD#cMJ!+&D1+
zQ7z#RgZ1_nOU&!q#1MwS%`De2OzCiPBHJRXO4Z8_@T}`)5AY8F9|Lqdd<UG;*jQB$
z^PW)kqvpl24Yf<^Ve&E$viv0o7D(M;4|_wI8(x7IRm6|nco+;9*dy$DX1OJ=IL{EL
zz<37-V||iuo2lrjJUycKR1f@Oz&e0#r#-;`4#;~$(Q)fW^>&9N?G&zE)&j!Db|R{s
zz02j8nIxaR<THcDk8Y^<_{%*06&?+FS*OOS>D)HIN86O~Xm>V+z=~Sv=f07yzL!u#
z_|OpF3VC+Nmb(dVAgEO$jqx5w)k7G-qGe^`v1_*CchDITeX~ix&j+*uj@3VKO8asY
ze|dk8)Ia!auE*?fZqqUnMnJD-r}Er5PwLfdQXf9G<)<?Fyia|XM=CcR;=?Fo15|G4
zf;A4u!8quwKr9g$=&Sb#J014q$x-#u!nUj^07t+lA(Bl2p)EFG(o?>`?y)Lxo_{b;
z!gnEjhvO8Rm*Ro9-4e(`lOQp$+~w9V%d$o!)W;`q?8`F2(G>n?y0zs{K)OQUei>RH
zXYha@XOlUqUaIGy9>6z^*Smp#0{9W2`@yEUUgI-B%f+f*DmSb5?op9`0M&{5=B6b$
z9~MDtKw>1vncP707Ik3f*RvWMR&*Bd=+8xcB9)u7*81LDW3jc?EnL2?Wb$>p`tr$W
z`Dusx-I?;k>*`n46i2T^e8u=m26rOq>=KjT!r0F##(vDz$_Q7*Aw>vqyVPCudo)J<
zDxT~UF?seC5RkvX(|6;N@O#Fx%!<o-CL3c9bn(@gLQajVM#n186d6S^FS4Wu7{ACK
zgF8H*eIK)6Lugq8leouc50CZ5HCl*uX$1!+`R(E9zKrD-Butsfb>`Qs(8K@C#n6E>
zqVu9=`10%-R(TK0n!-{{dCR^CCQ|$^*<8J$l?JaU&|vx#<7)(3w+PNlAxgw9dlUy_
z6}*Ed_TcZZqydRNQqa2R;OEc0H=5k30FiDUs{pibR+DP)3M?Ob9ts0L4{#YkxAz}`
zZvn)0(RZBpZDc$Y7VG(l-f*Cb7&P@OTKbHxty{bR_YyLs6$C)HK=MOPf{8k+gRCrD
zEkZwJm>lKByPlgXXsQgWNY2@?*~5SBaOgb>TB@D?*|P>XU=cvmdldLdwb0|5r~2a_
z#~w3kP3QjEnO^M7iCWb&Bdj<bm-Hmi2OqO#*LqaQ7e+Jn$PX>~`dWQjj~5N@m$2qc
zeT9Dz^D<9*g%=`<;}nSV&frP^hUsKv!MT@Z1ky9++#vj$$xt;J@|vg+9E1DK%URT@
zKs2A?_P7hY6I~R!ya?lXuyu0uBL8e(oNpYo3|-7EPJ#BJ7n55S^QWG~(*wPHg#jyA
z7A%9hWj-o2!<-i7x}9O33}Bx8Gd`nQXN%i7{}<yOj6cNqogB`RhS>Rhs%wm>v@d{`
z<25XLN!%a^kWymDC(Olkl97CJLbdJ6#~;7M1OiOTb#4Q5`(2MmV;BTLLLr(&rnd7`
zziOj4z&A9Hybjzt%WHT6x}D|&UjuLtQ0-E3mwM0aByXCB-bDJtOP185R~^6d&BwQA
zp?{67Un2J-Ijyd5-M`qZ)wM!CZ)frqFQ1w6*&v^{s9*43Y-+6U{KhUD?c>hnS)p7w
zP0Sc$_r=NUq@RTUQY)4hyM5kF-*8^wE%hb9mU%d)iV*MbPQnH{(Lc%><Qe66L%NrO
zyL(F{_)@XlXXH<g&2Zf)_XUeY4umqR5WJ5MVHt?p*8(MoKXCI@dkeFAy9c|x_Ff*3
zntf6r`1!paqwQi<e;ufsN~ivQ1fE?7KW6}4f2)8$0H`QY_2w>B?|EJ7uL>r|G$yI`
zmez*HEu#(%^Wz_dv^Bm>Ss_oAAO7u<uj{bYrn=c3<tlN1kHdjG*HsAcxr4@D*K~WC
z7~rKYmKvHFHIb9GF*>JjHqXaml@T3XY}uvePF}Q^NB4S!g+$iF?0fzfmisWv{R_hZ
z<58CT2=l>jBQ4c$F>xBrX)_RKxYAYP&0t}%lk;~tKZSqFJhw3K)r_iVcN8x{HaK9w
z{21WV66^9SReibVMdq<2;KKo<0eU@O3!Ks*$1lQwPU|`KvnqL=in>W@<sU&mm$mXM
znS5QVK5et)r^;V2H+6`+L&iPsksJX#VW%D)lfp+QczD<y&0$iW6|~|Da9|2sE&+!G
zX6h&}KKNX?Z7oIsoN%-&<O-%oXJc0I^CoMsOYRI8h!+@tg7eEbdx*ioF}sVi+qqrm
z3W)J`I#y_v!s`^jN5PLCU!orCH{c|I=C>6%rNhqtW$!zY`MS2T`CK|i^UQYs4jcx<
zZSXb9d+<x@bq|+cKBr!da4BpY5RZk783XwMXoIH~STH(2DG=mo(c@!A;dmI}6B7MN
zr$bb2c~i1IIqBJ%A_>de3tWt`Z{X8$zvPAV=oHuB;0t_mF3Ejn@|)l{j&ZD(|6sVJ
z`8#JfaM#1!oyY%#`xnh{`^}2qPr(mOGBlt31UxVw@*aTZw-h*~J>A^5K>ZyzNmXMe
zPMlnO7EL8wgcd?*>vzBf?y$r>jq_!+4LU)q7yB%t7_*xlNDsJirnv$#UBf89MbWbY
z<>_<WmB8-<{28F>`4Tv#?$1$Uo0it%Py-chNz8L3LN4t@Q4H`{=W{fu+s}=|EIMv{
zAOYJtukd)djlc%NMtE48?g&zOQoy!_*ADiuiUU?4GtiIbW!oK?63e3C?SK>Ql-h1p
z^bcAPsn3&vpAM)2X!_3qPN_RNc<ouu$1wm8wAaI|0n7A^H5eTS#O2&L2se*0-14UK
z7{r(zFD%Oi5xKFNiP5Z=3P&&VZ@*2^vj^qr_Wc%k{6eUY0`z=$GVs#?yPR`+$rjb0
z4;+c~YiQgwHdkU%sBgidjw?iboI%@<nadh5JJJ#9XQe}s|2p|)QO`LNkEb)!$Kpft
zA+vOw+4~_gu+5A%<`&=z-)HB!%dt%#fWDB)=S1a17x)XRN~iXo5?ClV)x|jCK$Q*p
zkPBVl@k5iBvfikEI&_5E6o2iYUGw)AaCZZIR{}JDtAK9-3~<Kjdgq<gq~>+C`hg*+
z5!Kg{@bX0dFm-*VW~qL1uBwsGGWk4RJ`3gZPBpQW(p2`bxWkexmq?cLJK^85P9J(3
zZD_X?9&#_|qur&v7F7|jr^+fBZfEXfrBAbxr&!>5mj4_peVmm%#sb?|A6Fk&k*CNU
zcLOV3%SzU;z@xZXhJ@R4`J|M)1eddO_z)AmGB0If0q)3>p~LT6M=n7wm(~(@z%dRh
zL2c%XQnLhCvEMSg)GC44syB6@$~#s4h89K6uXBN419%po>v#NO_;Lm8?yu_e*4x#4
z?8lw!H*#*NUr`4|ngtl2Es#0%kq?qS^r1t_)Y?Y$I{95;F@0O4{=;(ouBx6~4dt}i
zU%NNjtj(^H&!3rmmC9$ld^X7Ew2d}3!Xx$@eDa%o<Qx3-H~B^Wq(DD^ZXm^<A4vCG
z&+ybYdEpy8=S@CWw#Z=FR3{q;*gQVQodx0iL|193(Y=gki-kPdhGKO|j<eOYA=`Kh
z<|~7X@r}<u63Dzh7>_-OWk=clFM;o|s5PSBT9La(q^!l^GWRNxezmYZFavJ?(84zb
z_Kr!|JN^~c%KcmkpRv+)eDHNVu!jwFOD%>bF$OCZzYyJjBKDlPIX{VCgazH|DgMJm
zS|WzSBep2Rp3#PEWF%tM+g7IQqEJ$>Unn=263P#zhb%L|{GLMWB$Kd{oEuXbJvb&1
zeX^V$jLQ2|`yNKyQA^SM-*XApcEHI1-M-fYzZVeBR_%G<JvA?EJMNqkY2TJ*E2lNq
zs~Py%*utoq->{&l50sE`c%3$XzVbDlxz^k&)|hOq`GX~2@oTU_`dAFaiToz7@gN`Q
zi{k!(;IUXUdhxO19PY`>cb^5{D;2Q?d^OqnPR`Cl>=7~Co5p<tf>%!}kG6(KBQndR
zQPV9i9l?!fxVQkOE$kD9jpF@`--s&|`rau=R>-bDtNJjOM(z_cfcF7R0qFX;2lxvB
zw<AA#{0vnu13K*wYjG%_QD4`zY+mGOKC$wg0n~px#HGIX1?v!L?+ZCg*f7>NeempJ
zN(h-BlS7wjA`Mls4)!fWaZ+w&?qW#1lCj&}%Y5lkS25=EL<{#5`0YR*dX)Pf;gBZp
z;O2IEKg`X);O*bWUtnemRAe6GfgQX@OyN^F-pHSJ>^zKV{5=Nsfa^KB*nB7q|Bdr8
z96AGOvH0a3Hc;k+*BMhnh<%J&W7DuT!*5})yj|5-VPoXJXe{tbz$}1X@6HA;Qy0Bi
z)i?BEP<Ie*)KYmrIeS?-jcN$qz4n;d*aKT|t>dx#xlh85-s_4ot4!R`7)Ca^FrAFr
zlBr{dqH7n*)%%DKfSb62a|1M8!+=wY+o$^T5y$SWd%Do8XNBiMNQ)-KYVbF;b<LHt
z{z&<Z(N7;pUS%8Kn0Yv0yK!&qc4yf6IIf&)_p*oCbKQk-Mg>NAy6N)7TDdN-8S9EQ
zV?Cf}iipNO{Z3}y%<Mc~#K(H_y@Tm~75mM{6ki)acL<+pygmv1MZl{7&DT4?DRqDE
z)V03B*QmO)mp3e{uc}{K3+7_Wha)~g0PfU377NJ94+LL95%ge}GeGo$2)gERMMqXR
z((Yq`PXbH@XgaEaQ`+XVd*}Q9!s4!UEURBqk8rM<h>||II{a8n#OW;uF0Q>K`tFb6
zfmgdzejD=F?fU@mCjd_abop-rr_|j(vGyDobvaiMHMJ1-$4bj1>TI_&V=eAzEj!5`
z>In*|CtfT1>)wTR@d=0jvm^7wP~dX`bpT!doxmx@J+J!LJjZV2ggLPhn^iSUkTuy(
zTUwKSsf@}_k{{HQV#a{Lmtgu~DG_I8R1rob=QiU}w!05M-95r%;<9LreG=CDo1hE`
z#kfNAS{A#US+UDKrKaWS;gu(V3jU=@zJRwe9F!*8I3bY@BBi#c6@SLENd2Y(?+GXY
zX#UE9Q)=l(Z=}n;V#LM^ngrDwNh#|bQY83Te9eqab~aChm<pb;#WLFEjpldKMN8W=
zijLJNN6V$|1-={bDnQe52souP9DTh5&b+MZIkGM-Xi_(w6}aSaZacA=5UZ3!w#}Bb
z{F*GEN#u*|WATK`c-9_*Z8k(cd??Fx&xXi<Anit9XQIM4B|3>_!Z}oj)%;z?uVc76
zacU8IQZFd_E1Dzw(>cHw0G0qW{g(r$bimn{?sCqRM8BqaVkOx-Nv*22<}Fw%sqUV$
zj4wbA$y--qaV&tv;bq*kys>;pG_tG^zr(k%&K$!h@R5F12+ApWNzv7Tax3wf=8+$P
z+bv$h2heo&08Xi}i(UAy)$2rL#uGc(v+RA@v>!8LwF`IdAdeu93)2mSUAGv`rT@Kb
zzE~QDWWB8D38OrH?!FQDqkx?NP0x_!ik|!CsP#5)qk8{3J!7VhnlkQKQ@6Ul3H?H1
ztnu>s6XaC*uty24TqLymSUjF!talCJL!xrs`8b~h;X@DS6mb>fKA!EJ;mR`SGdm92
ztt+sb9_+S6yy)TD!dyM<e9MZ%aDs_bdMGW9o#OQbJmW6pF_VY8hY0LQc#0k4uCk_C
zL!uJmvs`{(^r%qkHQb-iGu@U|HPeL~AmcJ7YWaBRTrc3;O{~b91c$;IR^^|hthxtO
z`jW3=X|8mtiJG@ny|trW^gMU~xceOFD+2U>CE;B7(F3$)sQPkOt9R?Yk@}<K9PXCX
zBCJGOP(aof{ZzyCjm^uK)z4^ZYN;nzaGCAq%Y3WJ+Rb%|@^!uXG*o^l-iqn+Q*lYU
zF?pyv9U6E6?smDOgwGvCVNA-Pe3-#u0fVhbjJFWWTxDQ1&Ohm}n9a;fjXH@>gX-5+
z%)Xih&$llKHu12i%jBY`zeM!4u4Q6r9~>PsdH_9nC87DLgkHh=aF;hDXnB1$zi`4%
zoRNe#&E1P%==TM1?&%%$$E@dm|2bkMF5vTKVHF<G#xgdt^1IlqJDJ-I=Fd$j$rL%D
z_CD6<UUvS2tnAOspYB<b=AI+0b45ygvcHvicrkqDW|+B5aCpA_BTEqxj-YYpN?3t2
zSkSeOxi&Ia8*^Pwd#&*Z+*ya8nfzM;-TK+A8gLr9Zy#md#N5l+Bx@aW|ADcCTs*_j
z?!Id{OE7O?adp89Xj1tRD$dNt8VD6Ii(}XihJfM>djb<?oxqdT^9iiY<<4-GyJxv}
zGH)Nx`Q9?m_ri@+p;yoD*hd^t{pM5j3Egjg2A;A4_KpDEZ-xV(1X%0ntF^bOb!>g7
zeJ=XV*!uakP)Dz-uU%G$;Y;eM|G{kp)KP2YGetfFpa(r-i-|pbHV(V7*v{s~6~xX-
zDND9QswXwY6)V@Jo>;if<15W-np$sV=p}P_85@ditG;M#`&iN62HG_J+krn1cp0GQ
zi_d{m>Kdm>%@?4&0zIBC(oU&eA~l~|*`<uM$`0|1yv7&e24Oski_^YXny>-Ej}1|e
z@J?rw)DP_l=J4O4(ho|#fL)&|x(2O`&@~<SnSgl!P1g$G|CO%k%Mp*Kp$Srm2xZMg
z*mX=2b{99k0Aa&GSPZ&>5Fm+&Sp>y|2`q{#j?&@J6g|68UI?FQo_`Pc`+$!e8mO(i
z*Jq{~VaA!diqspe>qEu(jB7E^*;Iy12UR&G=SBFQ1pHLMT!7~LJm8dmwLLnO7h(Kz
z*(7(WCV9;?Zp1oAoKusaK@g48X%JNd%`^sNa~OL*clbxSn*YB8-w*iEq2;&umn%q7
zpJVL%!M@*k670K;4k!P@^CNtZ0zMT`1<-t-3H-PCcFKvcJ&f9WrfhB)R6Y-;Z7_W<
zwQU)1fN>G#^Dh*CZOC8qw*&ZNfSpd6zs28_>JylIS272J+nxN~7ex5W0Nx8w3efzG
z0RCJ2Q8^LjMiX<ltIm80H$HT@dqK8a8E@*`i=kKWrQ&ln%F%qb0lx!qw^R0S@j12X
z1U`>wKKD5JA4Xn!KCyoX88{#bp!v)L{#$%fIT1dOZ^R$FYeZzY_AABTLgcUcyBPST
zfYnZ!zr|nW%o!&zc&$mj6#IE6|2@b{^Y;nxBY^J#nm_Bp-{w!2^J@&=Xm-;}u}?Xq
z_^Uwvn!j4$^8gE-GJlJ|s%fK6;BTA5U)agN9eHW~UI6}Az`Fp=A59^@)qb*^2!Acq
zQEwA+7(Qefk2?&e%H_aW5_}?XY)N3JFx(u|5QP`I32cK&<F(`)hks;qjDO(s01E+>
zevAK^)iY1v|2>EQawq?G<aLaH;2!}#1!(>Qt*Wd`9sPT4zkF;x#QZDE(fqgLx_v9z
zQ$s7S^OM$qn@!_@Qya;M)?`K}Vo{&q&U25)aWvZsx`HvmbZLZDh9&Y0cCnh1iPw&A
zRee;09$g=218)JWaA^Fk`ly;Q`-J+q6<12s-w!+a??PU>KK=&$pMZk^T_5(vsy_bP
zdL+xy_0h^^Q-63+twr~k#%AaR(zHzdL9In|BU^(q1f7j6Mxd+hUyAQal&kq(0DKXk
z(V^wH_&#wIJn3+a`P#{U2lCQ<zY6?a!21Br_vgSV{Wrc*PK4{@r?KZ9rjJ{TD8KM`
ziocReBK%DPJ_RrxK<PL68#U@g7WXL@Tb=wjATP~dJMdkA=Kz|&H-S?sbm9qoakJXD
zcJAjWrW1?pY?$ofxT<Be^ZOi1F%FmQ&YCof%=t*x2tNO<_{{o!#Li*>@Y#UV0h*3G
zfm5oyLzS=Xe~6AS=~r~Vsf6nK=W?f$KwYdaJtS62SUpDZ7vd6OY_JMMkvB0RJ&LCY
zhG-U;0+MWzNdX!W#l!8#-75DbTInXw^W(NPv43`a0CM0&e>oHZa42!PO7S#7*rO&+
zrMbjW>-UPE!=Seu^wK`jz7%)ffFS_Q&qcr~m3MOwyu9&5j`pyppe~8az#{p~lh3!+
zS0m+zKJqE=2fq;4SjIZLzc&F&ATIp)6Z}!QehtBcJQHq@9T?2Z3h|5ll>DI{Z@|8h
z#af~KvS{0~dt0um{C=)@SE9TKz277!R`JB7OrakYe|tcGIldwOI)EPr{0pG@^IoR@
zVwiIey2bH3q1y}BgUjn$=!8@A6N9)g6)@~fYMFm?;}X{#9NFf%K)u(Bv11kwKu>}j
zjvP#j7w{{fAa1PvNzqY_ax@)_fS(7r2%za$51dkWbf|j%uaq2>lq@<%$=N4TBC|I_
zzbJY>MR{5Hit6Qi;GR{`0RU)v@_<tcId-P*`y%5hybQ*{5pvqt{mL27@QrdHU2Pgi
z+}Y3xOyTtlt6=&OT##Z$tD2!NtFXS1#80L+W0ricKzZfBh@MM<-wfCY(Db|joKp4e
z-H)poGpLQ)*|p|YTDG7PtDdxMePtS7cnWa+X9X+?ZoJ*N`}f)BKmbw9r|?WqrYn==
zXZ`tlj@y;9EQi3gT+x?wd4#?K;G+Q(0Ghs)z$JZ--gU+HNPVgHQxqO%cbJD5JIwmY
z=SlL}>kwpTUx>eBtb4OXitxGIZmSc(5Z~R`Wx9i)IF&EQ9=1&M_m>5GlZ1exhTMgl
z5dKf9)x$#3yBqZA`SN|>Uje=aXnIpuD|&x*J($wGpkm%}=j07?s`|a!7(HPb2fUrn
z$=z*?aAu|fIfrDV6QC=AKG5z`^esgBg{UxU?+bw64|ouu=?h+==+pAinVs~Dq+SB(
zqX6_Wd>}3q-%%He_cD2*c>HUu{H~9Dy6CDA(<(fW`}*>9+lG+Njeu>CR&{~|cRZIr
zP!N{k(!3Mhqqy77z~wqeV3`bldN=QZ_VE6F2e>Y$u0Dj{PF@<fa<cWtKd9wMNyn}z
zhkx*=`M(hOp8yX4H2=|8D*i8Z<lBcGzf;H7Gs*ufIRm5TXCCH{*@rkg%&#^(zb;mv
z66JRlhvZ5A!;rBds;@}5eYoki9Owtzxe%=ALe7uRJ{|JN1$@4{AB>4@2r`HB5ztOJ
zh?_<C3F!OGObR58@iY4ICQ1i*Lolp<;mBeq!>tBn<op4Wl#}0!cUY|A4*TSIRUa$B
zukNqc0^bPO4AAv)2sot!kEn5#w<|KfBK-lA67<ffK05fv=KGv=@aydNIkos7;cv)4
z5c-1tDER|<Ya;q3q<LPJ?9PfGgqdl*`k3an@bTDh^~WapfAJ{@QYP}tIj=`}8?n&5
zhuQU38*@)_4W_1-sU}77Re4o}uO-0O18xFnzP1CWr1ve8o%!wfcAf}9ZF9J(vAKRG
z*d{CYJJggLkk=|FJ|Tl7rdPxC&|iRSqBuJZ&IzXBRv>5xgFy>FG161$k4&5oWp+)r
zaX3}c?Y=rfcPj84KmkD0-5WTi?(W$Ni$VSPu|?A05ah;&CpWo`uW+$=Mh+iAW-Y^&
zGcf#pO`6mG$WM=lYk}Vk*a*<&wF9S=b)9PW<L?!n@}ORz^xt`6<z;k}oHPwHAI#*9
zc|CFWnhL9;pox$r)JhO2_rO$;m9EM+u8G_?B>+DM@E(ApO!DjZ__gq%0a)w!2`y<2
z6FJ7-<Mdq|I_jWJR4;c8keI(|OX>KJOuk0R=dJ3)$LjU0dd16MZBrj6$q&~k`TFPT
zyF&ThL+V2{N!z~?TcF!H^<8d%$%0?O?c;Xt*}+F`=e0X{!giju1D9&sdG!uHaXat7
zgP#_klu#O<n~)NppO7AJC0vU?PI{Mr$Bz5npK$-NKT6%f%ZycQv^&vRj^K~B-%xw-
zIh|FnZ?f!tEcg@)*#*33N?u}8QYfViPo9()f*Ty$>-Io%(@rS*jCl^SQ6I6|11#Yq
zmh~RX=cRs|#fq{wSoLl;@deg@2OGc(zA~Xl^R-#}jhXwkneq+nVspPV)4wvUPs~xX
z?4(fkNwHb{tQ*N<g*35mvr7Aqf_NT(d98)Nyv{0JXXRdJrL42?m)BV7*INF|t-hGI
zi{hakkq}o@T|RMSY7BySGC1WijB~^z9CDhee6G2L+4C?DxCYr_(PS>N2Usoco0)60
zbp^9e_Fl)L2gI~+Tr2c78|@~mk#uRd@MB8cwmay8?@f<ql(*KC;LY;f$)c)#6Qlb3
zP75UYO9Q$7lt8{e9ovs<$&!XNy}x5n-YGq%yyFkv&tj^hC&r{kmr?%;7pnfbVNGN_
z-Us|4z;=KhAI|}&^k2uL_Tm&<c`A%fzY;CRS3F%h_ekVLbjv;jvwtoj#$l)2q_q+I
z=uyC@0~!E&TwDYE4}b$Vsd1^}xm6rzcj}A_x@}VTOy@4E4OgvfhDVYmP@!%j<ymar
zE|j~ro8^J*D>0WxJ;J>^c<FXt^C*vfgeUF5OupU`K&Xgs7Ek_~N6qwZ;-$Cnnp0w{
zlWxTSF(!%mP@bV#4VgfXpj6bbSe}FtQ&Ozz^Dt<x0H3t~a9xMG1(X0ZUo(N93E1nz
zsjG49v$k}{7c>Zux$Zm6HZ!@YdjKyQp)C#@CvWGAB5bsoMUWz>OH#Th&Hahkcz~aL
zH(x|-Y$7&hQ_SltB_GHIe4H#6IefJDRDA3Jje{IMUIG3d;0QqTk+cqTH=t|#EbNXC
z?Naf7Y>FLSo8kr&JUq`!cdDj%^uIR+s762QrTAzCjk-N<1b#PQCqVP@Iq-i0^4>hY
zpY86Bk8>%Ax>_msK;-;7okwrRi<;xYZhO_U$5@Fp2{lXdABm+mdFjiFrRRyIMaOy<
zGCQt!;oRRx@l$zy<a`wdel6e*fad32;NJlTIQzSn-fBImI8Hy+88@|cb@gE!Lh-Rr
zWBs|~$I=dGt$8J1LrQd?sMmV+%A^hMSK?e={0N`3gAd=%(;kHm+1J8&&m0JUJRa_O
z!Yn>*&Otu>GoE&;`$;o7s>dy6h9|@;?=wsA`?2sw3R9M{?PlCM<Yf$pY#xFA&V}j9
zblwwpbA?b28pfx^;&&*9&oPG!DDJaz`$Fpm(~gsyiL8E3J*<z^!#v=vfXe`S-ntz)
zr5b1c(0*TuRcRME8BGb36{Tmei(Moy7B5$KjnVSMP`YLOMtsMOi~?MaT6QvwC@8$?
z2yvk&(JG@EegH0?NAO9knHZwf)?d+g*eRdpfnR{<+~75O05pB;fK%%Dz3O+DI(i61
z9}RobD<KVyoDS=%;QJQqu+Edu`?!2H$Y=cfsFQER`?1EteyG7zahg3A#xK#(eJQf1
z@d6Po5DXF;z!`QaznH<(NGi0W|IPTtCR>{A@6`a6jv$o0-Sz;y;grovu;QRw0cU6|
zt~3<=1VfCz5PUCLuF*V(Mdi7Ag6e*J5lJJXVe6I&S9AT?V1aYkQskV^Mvy<Zr522i
zE@!T0G0%RLrNZKK2Q$w`Ey)d%WE=jBRXru$7}=lo0X_~e383p~5pYWLobfqtkE$=K
zrzO(YKvhd^OG6#i7xmr_9E#-r{ARUHPkSF{lW)Yema&J8$12nd%VSbP@8CpK#RWK!
zm-Ep<%arb$ri*%Tk<V5_ZKAK$U+rB(<%-T-phKS{-UR+3;1htR^GD#6^!;}EA0u>*
zUsAiExs%q?9_+H^+~KCF<A`{b8_Tjqf7GXCPc_GRqhVXhX%yVb#HoC$B&24PqNCyu
zk$ztf{9?c=fTrVN;FQL`<;-WrYW!1u6&5#y&nY{tsj+@cZQVjBLoe4lh%hvI(LO|R
z4(G~ev3$lKf@aVWalIRs`~z`@%ZC68T8BJ3YAVdmmctlm5I@^a_LKT#G4xI{Tz)e_
zxxyL_-2@my-pR4dz*cP#6va;Q5oN986d$1t5k7hX9||Z3Xg*E@PN||B|0pN$K{{_}
z{KT4<NR(Cth&z)gzn2>in3$Syt`0#HU@&ysGR=4^<dX8dN;t#T!`5gYujtx>a<fn_
zjoW8|?*+UA&~$wZoKn>PLRUlMy!sVHSon1Yw=I1DN$@gv1lvO6B@;0>p{z!PjRavS
zW(o+C4)<o#@Tyj%9iHH{`%TzKICPx>{9?d806p)23EXqD*Vy*4YWF-Rp6HfN^S*Sw
zH@~*7Ub^G~T{-R6LAKRm?bbI!z8>cC^>6iM|E=hH--&Z~^6FiD+D@Lji~rNw$xoLb
za(D5b8pki9jhue)o0U*qJ!{(R)agBVg7-qqC_dqX&1(z>TeJ<Pdc|8gqy1}G$?5&4
z4agmX-&*nGPoFYvYU)sFp)m$k@f^dYh<J$ea?Gtq8GjTKjvy-iTwV=z;Z*idOPmgU
z=3KL<eY!QxPPL>eN5>RZPhr%7KJQ%({8qpp0lJ<(1%3pu(2?W6;^?D1+er@vOX1{(
zMrd)!Nd}l4z|@ZI?5L6hO4kzKi7mo7r+}N4u4(3M+}Vf-cpA!hq40Ta%r_}<L2gA2
zNR@b+3sn+5)Ecy8pc_6rV=Oo$7!LLp^XEBKE&?>#i=d!l^4@H>X@n{jUvWz#{j&TP
z=-L5h0d&7y2AtB48&v!2`#3t&zplJ3Wz*UHpjgMrdCgF)y0H-S(@(Ys3RRe#@k6DL
zfZu^d%+bp(nXby;h5WOSKaGpmfWHfPAE3)W3Y=0`zu{Dcq^nMzzvM``f<{7G6H)R4
zGgiRuw6sejI+7I)OkOFBfaiM3a)v6u{MJajP6a+6uo$4r{{wJJ`?~QXM82?e`TAxg
zg|0&6BY^vmgW?Tttc4m(BJ}D4EDnc0x`d-!5BL`J2yYDD$*HMUY8q}m5>eFo{1thb
zQ&Xkr>p=NgD4*)*JK*MR(47Nl`jUZD>drsa#L7Msn`bpPhwJMa<~K-<INabYCJLuW
z;@)MjAt``%jxxW7S{E`q3l1Wpj?G`?GZh^RQBD@hAv(?nehpw9K+~}WIHg~u18S{d
zGT5cYa_%Uri4qDQa8T@Huv3pvk_=0hnWocTXCo%E${hJ;%~JFnMR{5HO!P$E?ln>Y
zSpZE>8E{I!N)LtPX{f7}t9xSjRCJzvfKPUy`<U_ban$4qc;_M_MnIq{kv$F_tyC_`
zAv$gWeh*+PK-2LYa7w>Q2h9l5tqTl`j*&ADq?`l@N^)Li#sfI+>t;&k{l!U|oC_RV
zy0+P>Ufdfa^uz;C0;B;b(OlJ?|Gb9g)8Jc$c7?@giejUKP6?1Q!;PD<$H{jg^3dx<
z3-I3qRs%Gjw*#k?*2TZS8mE0`HVvSLhw~^_xd@O0m#_!P+2wa&%xl|GS)O9r>hoe>
zF4gl=zD$l%W7jFpI6(ec$e-%@bKqYAzH!R@HNJ3IA3q+&_C!%VjeREBsZzLkQVKil
z<XherImb-_UJIBH(0pABoKj)Cn*Tb>@i4x+4*zuO(w~vi&_N2L@CA-(8Fr>S)-H$q
zophkHM5Zs-GZmh*yjC$hdjylDw;<^59);Cwq@RaQbNEL2dfhn$Job-hQ-G%LY~Ymi
zy~D!3k$oBHJ0@U;LC;@=H0b$+%U7!@U&ZnnAS0iHF!?cV6+`T3@4%>x0JjAzwUa#w
z!e@s9sZsrGS6p7Kh%1VfTYBM%N)_W{Pls)DB0MqGFv}l^_UAVFdSWl!3%c?<nHdrx
zf6p4%U<z7l)biaXJdR-Ht&#tu7YW)=^EfW<+Rjw`?g2lV-}ixk4mb?Z{JJ+e{5tv}
zo!et!{fcA!I$I-`96)dcc&(+q!a|V6qWM5rr8=w9D#nYCReW2GqN5t+XgU@HKL>Cg
zK+~}bxUBbX=x7L!TN-Xzd5o6WntW^>hrnObL2<sZ3I39(&dSIe^mHv)&Z>3zN519A
znELqv;Qyg=?ue8d4V=<UN50ef{3-k6vgU=gOJ+)k7957T@Jd03xeuw=QVM^9+14~3
zhV_UCuD{PV|H`ZiV!sLzi*V(^2C2HJQ}ooJJU#AL0>1%pGeFnFcHoqD|4EIH%@3-#
zIu}f=EP}!0Quxa`j;N86CdX!Ynfy?&hEWf^)-+xtyB3J~f-DMV4e6L2;5ig)_c|6t
zQLqxtfo}ku0#&(d=P5efn<H|i1mJxE0|1)NNx&&}=NA$6HjYfhX@+WL6KDv}p+~#C
zK)i)rM0JMIeAw!VIt#&aGS2)ngF_AFQ)wgP^?Wj`=d(=Q7tUAow4ppL=XwtKUjgp|
z^nS76POni0807fZ)Or__*Bm!~m)5q_Eu=ew@wH1Emca4WvH7$V;#N{)o+V`p&*0L4
z>hDp~PlzlPgMY&LJNpsL<tNG66*KI8R_agKICuSW#zU6%I1e1<qb1@yiVING*a+G^
zf-^P;PFnDJ8Mb$|W~$wv*Sco7Ef%mw3yb;KbXmE0gc}t98^Bu@K2tw_0QgS8vjE*5
z2Y^%RZe46{SQ=hZAMxo5Mn!0mHiyUC1x{~d#_e`0RBMHaZDzpa+_d4}4$h$vjxG=#
zV`Fr!ktX}HoX{dgSIJ$GaXkw7WWaQQrfV^9N&~uG$B3prRSoCSsW7&31{Sh3xsYAM
zjCbvvV=HtJd%QH^bqRNnggHa_M5;TP+8jD|pd3BFybSzpz~2Fyj!%G7>dyXtVx^)(
zUmnKR^po=ob<?XD%x!3b$-@MLEaqZ@p`1z<JN(}r>6ep$&jr*0bh(!SrxfmnfAl?a
zc{O$U(zEK9A-b4e{K9hYU5Ne4XuxEgL=TDs-1q?<acESOK=i=4!ssG;<3hGiCX6+4
zs4sG%pppC*x@1RcTcYUOgYtE~d;;9ug8eQ)(^m|fQkrA$v+dsF=bNeZEk%7`A<_c>
z3bdoa2zjfs@J)%}64Yqf%8h$m1+erG(o4Tv<hT>z03r`w6=M8p9-Ny=T2d^g@VjwX
zB!Z1SOBJ1A(4plvtAJktxW=K4#&~!3W`)HQD<yq+IKIOYP*n-WYp!GQM-Dsr@9UKR
zm%zoJa1ICPddLJ$Dencv|F+}&!#U*~TY=!{qglH2_=9rk@if~C@zp_bR2chR6#LN2
zCqtwcgngKJM25~ADlTU@LJi|ntaI!sR$tkPP+mB!_-{q|x}DYl-vM|6pyxOLJzgUn
zaKJeS>viftr}MCsmpTT=Xs6FqJEhABEnhxcu}6T7hWe1J8to>_IO@uVh&W2Pu$vMY
zY3W`baAOj%GejotivwncFWa=tj0}&R_kwFE1c-_9JQ{e?)#Evr^|UMF5%SVVKRaBm
zY*ZwS<#5wq!Eazp4wr8@?C0Q_8a|X@NG$z0G&}7Mp2|@VG_PF*{8hl40NpOl_o{Z;
z?8LX2=iL8e>?rv#_?0vFVfLYQh!ksv$mf_&xcX*_{N@pU!Y`)FZz|+-lf1M!D7FQR
zZO~z=VBDSR?Sa7N!tD;sLUkm1`}RrZF@4QJHvGzkAjM6z1)Pstb}YOe#dFVM_jw*K
zT+_HAMPN}pM|kjthDp?@<e@PhF*JK<;zSr^j`4U0C%I$YaBF54@ofB*+E#F=YpAQ-
z^h1t2#bx=1MfuZ5Y{OyS)fZZBRK<R$nv-1vQ7t3*SFjVa`TYVH+fzKUqAJf*^|~AN
zru)-hfgc1M0_b|R?o;*J-FyfiQO)&A;J%hETtoYvljJi+ZFl~T?Vq<d`Z!c$prx6^
zldZC-R2te<;zFlmmz=NYs6;usea{5`JHRCXO~*sPDYd+##$BG{XMoyQ(&0GBhJwor
zN|$AgdTroRr=|ZPPV4lm9%F}BSw+GFpxsksm{}so3t-S^K{q)BTXB{Ov&k2@f298n
zEMrt#Q~1*i`UnS^m<72h!ZHl>JkO#WS2?YUe)s*6c_|Zk4xj))>A%fOw8!Y|cQ3&>
ziiv6Rv3V)W$v@mF|5d<m1^f}9>*qn>l)Asyomi>LIW{ptigc%vBE@bbgIn0S`B3r?
z%&4UOX>W*1W{NnU6aZ8}Fg#n&Ls=IqevJnrdb}yX^8rNwP0s+}l)ASw*Yq?rpVF{o
zUR~`nvKox7?1zOtA2-fNMYAzK2bxtuQ9!%(na8}F!cUhfe>L*2K>jozv;ltt@Df1J
zgP#EZ25?}n>MwDQecGkp9=~p3$$}{rT{uT#sy(1?0(-qq_kn9n`ErqH|EMU;jLUja
zWLjD9&Im~bpAk3RwnstEZ`p&*QPvaOHL8-_gX8WG`b$UQhzCblIE{P}LqIOL<(De@
zE4D`HUk?0wKpQ~Q{}S+hfM*XVdP^KV!PTQ8`&3%j6#eo-mM$`BIMCOsxtqfDrq%c`
zWRHhv*85(~YxiOP!Y9`u$yHBq^^!|+^)~D+xhoDqc$1(+IFToP%|b`mJ_gB016+rF
z0~2Di%wyT$s|~?-;dhJQZPE(e6I`xi@QJyFCNzAZQq5|`Z%KP(UpgB2nSgl!-CxcD
zPU*-)ir-e}Ttf^sH`Oh!1tT+?^klPW4NW#%)ZvOkJL6LVon(HXGgd|cpA;2izKI!8
zgmLwyXw4(n9&_Yo0_Bunsp#5`azpq`{b)b%F9F{GG+pe^imw0OkLNq51gJ0##8#{?
zAO_p9AH)V`^dlDqu_7H1>qlm%qAKCa%qhPD`Rj9D4e&5vIY5`+3Y=1R@d+Xgt!qea
zyslFVdNO%^{6W0RjPW?x*%z8AG>98iB;59^6#sjWzn=g94cvSXJ|_XX9~J{I0~~eQ
zV}tW<=`xN~hiicqeVulDhwD5kc~p&7^9J4JOgWR<r~tm?wliGKk;`?jF|*)iQTPY3
zo!u_-ZxhxA;krqH(%->x3vMLk{;$hlK#p{^qJJ%DD@XlM`#k~tHNaZ{O@Hh|n4183
zuc>}@<aPC4--UiPjv@*gvfp8&AEtfMF$=%UHvT!=$XOe26&taj{2*?yjWY(qhBl&z
zo6D;MCFb4C6YI_NSfVn<7xY{Hv?!?F!%v&-PY>oH$aTIu&y^oz`e}Ws7rV(58#Y7F
z;ZE0wZytf7K1+cxhvNty<m0e0aIqrl2cfl!?^f`n`Thg&2Lamwy5GDCoYLc6&bfMm
zQ2cgMfM{bE$d#Z$KKtt@^`OHX8?^$s%k|)7Vey`#-Z#J+K%J>ltl)5T39R)xMOW6g
z$h<Zb_*}pefNqaA;9CJL&b`(J_pA08+i8DFegUb|5UseoQIj0HHg?mWs(ti8xv3s3
zpY7OF!;{_s+FAb~p5)j*7BUxqn;V}Z08D3pvxV4gWx1p6<=nfD^|*=^Ud>!<STENQ
z&j`_MdaPc=$O8TdoM7?0IS<oZ@gzrt+(Oho@}m@9ulO|n67g>m13Vd!4$$>q0G!f7
zM-Q>&dc~*gSIfg;gmP(iw&1aqm00tB6pM`!>2PToPkL38M2b|eGCG{{!pP5!{HUK_
z2K;KkT7WL^CgA@|dGJLkms(xq8C{C3yg~8Tf&BD2>kHuGVVr{iy1WeFl)BRkZ_u12
zhA*MpA(|3L07e14O;|a_C){W(;Ps)PIo!wH!!b_}SMxMnFy13Cad+LQ=vaty&=n-#
zt-!AYtN~~`?gCCJ&goBSjvWHkGp!lqI)x4ZEe&KeO`T{Le+ZYJK2Y%w%h<~%3*2L7
zL96>IX8PT`nOz=_96usD$ZN+EXTfN@Nzro@<<+1(YKN%pknsbu0h*p6z$vArqn?ot
zIB%k7e!~*zsL)KQ9lErc?^-hWz!@8HHUFddz&4JuQ37u5JRGhlr(kG#uz45#W0C9q
z9Il|CP(B)mfP;*t38c_%imtUNw*;SwuG@j%3HTF0)AeWIl*X=C{jjtA7Fq-Yni@&U
zh4pJ3RB(S3H3-w14pVA$#UV1xMA#|kDDu(e*gL#NG$0<J%Si|RU&<*vRt{aBXEnJ{
zR)cXn${I&yRf-tZ?TrqnyfE@BM~1}Lt-wD5d<xL>$>c}8#u<Pkj(&#Li{ATpRsU4)
zRpBKKEu>IViBYGfmE*pOgk)Wd?Vj9BTqvKL)y~3sJ;J;B^7#L93hhCD6dQxa4qlKT
zpgJ3eBXVXR5AW-)vB$tqX&g)9nWs;mIjpK->aZyd<A;q)f&whUQgM^{+!h=FTfWrN
z=>vxKZx}ReU_-&M{D!n)sSSZ){-o1zw6oyFk04!MuMg%AGWhUf5Bh|RU46I7r?X-3
zLO$Ib2C>3)YnYv6-N4+_UBhsIobDOs#S_OxJpIE0cm{_-sdOl{SL>asAMHb3>h}E{
z_;-N+0Cf8XA64z!-F~E5*E6Z4pfe@HLl>(|oJLgwJN3IvrFI499`0Vy)s+kTV7^dZ
zzm(sl%CAQLy8K1J&jVZp(B-cMPU*gG?93)LH8e(=nM6>Js+~}nc0xarUe5Cl4e5Lp
z6KB&H8qCA|=7`?N+Pf7U9Vn*;<xs!lkHOvzFa)6K*ae)@?tZGDt*(pox6XdpRd__D
zZ|;oxoWr8sJS5m*ak+Z!w&bUWn0#HOzATd;_Td9n-%oKyhglsJiYtVk7Eg@HIVH)%
zKVq<~nO-o^F0^kz=RsT%Z|)F2!8;=<I({>ES8-pI<rzIH8A=%<F4^0d9u;TB+PFv(
zSm5GJzdgxb;j;n*t${8PmlAtAIlL!l_nbo@!Lj#%lY6L(30#_OVlC)*E5Y+FMzc^4
zz5$*iIbTbMM}eISf=$h)ScUK@`+FAqPX+@kZvgchdQjEppvNQY*J;4RfZqf3IDQ5A
zhk$vGzqM_tsy>e#iL9HXCj{-Vy2WE^!?kBMU{E*IHy8B@FKarBx?AQR^Be1RlkG9%
z<@18qu|@e=Jjr73V{uQJu~uAlY+4+)vwe9VQ5-igKoTlPXCn4Y_!2I{okuY=DGDGi
zEr3KjT6hu@GLm~+xfu|lCc(i6)VO*%qLrSgi;1M+T|vvlF9_u5D)6RJk9v{}dDv5=
zHD0aV;TgOB;?%<vk@c(+cne@9K=-RZ0jJdF*zxRf^a<tq0mo#du}Uk5zL(&MCF@yV
zRx$#R2$%pU1@w15yZTZcylWaA*uf=oxA2pHJhW^K#lEu(%_L8DoEN*gB$i?)xzdu8
zOhgi)Bh%#!K55D!+Uh4psw+E5*LKB+@g(fA@db^KIN%w8T!7|d7H~=joc7fBEX0Q%
z6ID3Z$>6PUnfElR&<9GfGgyZ(H=@&qy0e8F;b~mJ7%9&&NIHjh&{r`5uf~J1e+xaL
z=-Yzws~!3t1^zMMJAm$Q6L!M38c^Zr)9nhX{`TqU$T)5Y&uk(ZX&*uTs{^)LQWx<x
zrIPqBrIPrZ`m{=YDk3wYpT#;W_IeigmKhrz_X9UJ;odU_YkF@S0~6r&y*D3;d+3XC
zm=46ifpy+!FVF3KTNL<?CD^s{zqzc>;5HU_L{TFXJoCK%&}VESIKGA<T+e8}1S7G7
z^F}_8*SUJ|tGH*Dy9WY>Qa^-MLvKFcd<((C;P(YoP-@$$>Sq^t*XO>!0sj*44M4Y_
zf0xsK&c3ztenIJJRxWF5X{u{lGDYqvG1)$)gvKLxlIR%nekk!;+f1XCWy2w(B}y@_
zMnb0ZM~16-9Q<greHwq!xqYvBO3_t~atAr>wix&&fXe}zu7`nBs{D(Z7sAf@f%=t0
z7Z!O%69R<1DAsVcmJgB7j}Z)nh+6M5HsfgE#W^7qC<jR}2;rx?TRDPxc}*)?z}-2w
zvn-F@!<rT+&7YtJJC~n|7@FdFZkF2WPC^p$oT5AFsR-SL!21D)0d#+x4!jzW*QGx5
zI-Pr<s)JZtj^-<L)2?J&F(z6qcn@~9^50>bl+9hFxufGYOk=2wY9Wm$>5TF_NYovA
z+E7*{2&D1(IPkrIcL2H`KL<`}uOnYt@90@jJ$7Edj;Co4Btfr}RBW4iZNQ5t+%1fI
zco8-+hZ*)A7r~`yG_tQi1j?sj2ME8kqEZW9cB}fTcsfGgdBEEM+X1@1COiW@Sip}L
zsqwhvZS~$VDl$G#q*DpL)D}<mhKZFk>RXmCqn&@wVOS*|ve{w#BlUXHEk9wwr7s^5
zhalBzwO$YOC@j2+^~fzO1JbjHRrm^dp+PV{Oi^MGhe6n6sLW2`v)sur*K`NGnQ58n
z2vv|aARVC!(#DN5D`KI&y+9PE_>u=@rDmEr!R)xap%A0`dRv)pZxIju0Kaib51Hl&
zpFP1WJHm7S%@c;2!~8=-a9m>Mek(u4zzfayxIrEkpXE8(6USma>87<T<M#}8dn$r?
zA_US9`(9?1yBG0Mh`9ve^nCQ>0elC;RsA!J*J8jyv`|FBXU4IdSQsefW_gP6=U@6D
zU>F4LOY+_thsB(Y7lkIK(Ok0(NKd%p+sv_e!H2n%-c;>&6m3$1uc%*npM_sAKqf%<
ztCN6JI_k(<lVT$6h4{OeNt?%!$|}vL?dJXFR`L?(A{(_<Yrkpy04-V{q#Xlca*3!h
zAVtm-llkw-*|EfB_D08Bik{UduM%GoJ)40)2G|AA^!x)jrMBPjQ>gm6Iv|i<=!+P8
zP(&CfpX;50_&hvJi6SXeNZ@u<6eNlwCpd>g_+u5&Iy3}^6MH$BG1~vC=qr3ql~42y
z1%3+P41lKZa_9HPrD{HV){#%qI3#J5o@J$X$9DdjC50XFot`cV6L5)juWc0cMWmAe
zoXJjvge`!jCfV-CN7_rF$2-Y2HrmQd=$T+91mxxF7$_7pz<t>W3e+=<k2SL`d0F1E
zPtn~0y7WAJ1o(f5&gUa^2Z2)xZ#eNhsYafr94#GNQx7GaORQEHSR&XX76ZEY?MFww
z0oYgd22%5mDz^st>UH}Z;OhbR0Q9`@4)BA3SDb$JMZD@?n~#&{Mf`e_EJ^jXUz9!M
zjmlK=T-os+#CKGA@3Eq!;+{ph#VJMk#py-CVnn%boE?hibG@;*lBwWrR?pk5+}o^_
z+sRb$CM*4BD|myI%U6gM(LMR{L{tVu7cj}Vmho1TXHaK=_v9qj6KhEdB%P#JgG`M*
z?<qdZUx@VEGk`AvoDI<Z;!5C@e#^h6s%yPw>_Wel%Wo_#zn54)GuRw-_Oj^<z`J`O
zVA1rPjgwCu^;JrH{-NmFhjR6J`UbeU8~b*ErYjXVrT>jCCHn1P``P;pfs-!B%LlSx
zZoCcKQ6FwJy@49uFMhQ=fR(}qVV`ppt9f71vk>KJdM*Wi9pFZQre_myN|!qJB%Sw}
zo!1AaPf7s*X&WsgMWgtOsFMD~AO?c*b5eDp)U}xjhmG-;Q!k+oMaN;3qxVam7a{Kh
zWB@cB<-jR*cTZY@`>k_pm&tv5L^BXk5#AJXF^!`|^it~z%SfTiw*d%FE8v$M5vvhJ
zcNJq{^9*K1mB&gehbjDs$w%mBGul2>^ld=-dc58P{3*cm06lI#0RA~3e2W^d+Wzv=
z<IY!g$8N(gW-tr>$mRU^mYNJ*ThXcZiSLE+E-&!JMcMWUOgOL5-OzM4$|}S86O~Yp
z0F2MT(X3%WWX#%yx(&+ur=qj`r3jr>z!w3U0GiHKz}Eu0(z&-AIy;#mu2vNOpy+i7
zy-yh5@B%EoaKn!akWzC8ca`N^Ig-d(kR@v(KccgmYQM@)6rG=fh9tBn&D;M0?t2+$
z3xKAx2k=tBo*Pts>Nv^sx}j5>(<auOf-8`BIUcSvsV4t!8dsVHgX4zTHUf;mY3Nq&
z${TJC0Vxw;Eb*#bNvIar9V4*hGezHxCr9X84LYs@tO02Hs4w1z&#SxW6SX+>@gXRG
z2xKzWtWY&<u1(*m_)`nV{aj9Ygq?B@BM)5<?pII`fFPiAIqCS^wVd_c)WeMWrEm~S
zdjRw<RsN%<)eu@D%U^n2`Rz{mVdP!nw8Is^?*!Zf(B<z0{vu$Qqwk{o_2zEMuR>r^
zEU7wh<68EblISg8L-&W-@`(!pYMC_x20aBU<1Vmq2l^BjF`m5NS?8f$7Kq-s^VA*Z
z`D5*}>vPpES+7Ru9S;0dz+8Z)_gvr?1G>_?t$TXuV*39;bB9^5hQ+NzG+0gb^~_pJ
zUHjMQ-t(oRdmm`h_52<1nAf~UB0$q!0(=OdE8Wj_Pq!SJ{|CaqGYjryaWJYsMmS<w
z-1T1w?>MCBUJaUb|GXXeR=_rZo|pFlrxbS1H`}(U@v6=_(<m@k6BICx8JF+E4Y^!F
z+wk(CCp>N$-{9KIW4oX)5)G-4pO16bi1|FuGs+b-7h02CQcD8zhd!{K?1R~Fl2r;V
zPJ~B5(QV%-I!j)U+%s1IKLv0GK-1X>oKpAq%*W`YpeIes$ucq#cStNe1(4B1Jr+y-
zlhCP4N6__L(UbS|$Qi9htXB(a+qa629VjP+a%f(A6Zi*!j{%yFqrm?cI_j6=3afS*
z-5GR4$-ZBur0s~JqkK=K-A)Bw2UrNubSwo<se64Esqu4S)2+hhhuUll>`35v8&*Az
z7AE8c|8n?8zPi8c0scPV06>@f9q?Z-m*%b$i-ln^Bp%CE*>5r9YB$}t!%G?Tl~2*V
zLzKuhyW~4X$DlVN?JxuQEWoJ%N;Kx4?J{qx{@SVhNKdfAv2AQ}OP{;tPW~G@<-ZO1
zcEDr*r~Es$uqt6Ql~C#AZ@d}N=g0)!1JDzo>#;9zO5N!h&uU!U*mQ2=RHcn6>+{$E
zj3pg#H#k~h+~;0_u+omA{vM~?F!I&ycOCHcfDKMrRBzqse|A@1*XnyfRiDw}l(Vl>
zIsXCvGl0JpX`lbOoD-_CU6yp%DW?K?YJScH-UMg?=z3fYoKpAW06{9ccE>jMv{LL^
zxKWM;TzVWvfArX6&>trtn7uP!L7c^BvOzRQQ7S*G`sE&!r{{;yfPVov?9f2<+r2;N
z2py4n4WJPN#<iY+%)ipfzhrMD|C51F1<U|Y`k(UeRG;Z6A>G*ENyp!Yo%}Z-uR-`s
z^V|Kvw*wvr==$6XoYIP0)jH7X_+O;)wV=KcQ5)+zD}%McAB3vM$C<IklPx?_W0?-G
zP-z56tBoqri#zt^CEu%hEc|O^J#7Ns3b+hFJmMH=JOcb#K!;O)mLq@O+eseS*xX#z
zw0v1zeV^u*+QxY}MT{ZwKLSfSx)III&KFIM$NmeM&o6HtRj04J+sz~D;JaCD#U1l1
z>lxb^(idJ&_(=t!d^gYOg&>N3?eYO5t??C!!tQ6edRu+y4v2u;r&{OcOFvy7nc|;}
zpG{kz0}T7bVmNNK5$oLImoYr{GnNCsT7OjhXT2Ti*JZ#b1EvFXJ1hWBDeWQE4&l2a
z>oTtE5$Cz83OXwDDY6BvF>B%9TyD_j%V&@@OjlX=aN|nWSL**KLyNjbq=BH22U!mn
zeRv->1p1vyg}VJGMb{3LtH;|*z&`+d4A6A_44jg1;<1eFsz>b51)6Ycu>qoa)(XuX
z`SSjP(X`4s%5muKC8b2UAZih!)7PGrR4e1I4Tk`65h89>5RH^deo=H){w;FPT?c$A
zU>QKuwHi33G)LajS)WAKSEOrDWwoNRsDd^zT&MIy94t##5;?=kC{F2#yqZK2El3?s
z`FoJR)-U-8_(8x|0A2pqz$tYfuLqh9a6eGDq^X%2E4Dlj0fP36kw(c#7(WXN%#&rz
zmVZBJUu4~w1$;3e4AABL0XU^soPFBnPW~hdi&Z%b>RVvFSx*X^V{2P#se2q|f8mEn
zqfu#Zk3EEz*e^aajR8f7&=P=l)k(GwTeqPwfh%JO-s_Ev%69d^H#{f>{IG923rAU8
z4=dSzh%0(O1wC1yhvt)?fycdrvp+!7I}A9bR~)-Aeg07EwW62gctkJ}x{IAFcMDt9
zF4IMFn*CyrY0N7?AlK-)B%T#Lk!+_$DqK4jLKs?MS)SA=X)<37lZghLbP>=&n=E#i
ziq5s5L(3;_27V7<D?rovG;m61+@;3Zr;a?7=xhqtlYAWK{m;}fddyaIp8eu=j<}Hp
z&gcr*uQM}?M*jdY5?kHP$`Y)^Qssx<jr89X;KhKx0A2oQ;FR_{<!{&;8Sj|g<c@Y1
zYms$xmE6Yd7n``T!6`ojH<V*>@l3;JfLMesUEz`$*4PgJ$Y1ln3HUvLtpHvAPT-Ud
zcVkaphgg*@qZ(I^UMT~3C5A6%P~O~+FyO|+3_f)sKlPg28}uWKMUa_NP9c{n*Zud%
zdXoaY7|<7>%dH1aDcnUrh3Z}EON?rvVx`H<9=2Y*PPZ#3y)Jvj=fZf!;h#(c2xcI5
z(+Jc>HJlT8tPBK5w_+>^|Apvnd0}1<@XN?`Qz_Q`s|edm?IlyIN71_j^yqqe0r=~H
zw*Z>nzX7Mzog53}ZhS-il6gcd_GxpmPunk68b=sT0pkQoagn^LoTT?6<>UY_0Q3Y<
zqBXEPJFj^yO%3?%B@Ef(aS7DFQ!s&gpm~V<X+hf(W37|_ica}o0(=$Vs^7?eh06bK
z${&wS$lr?@KtSIaWyE@b`B0jGnjm*uJdR2%_bGl3BX7NK`~ckb53dmg(DjxCoKkoD
z!iJWnS{h%iOa|&GfL-H$f&Ii+xU8|TX!W43+z(4K^{gmWUJdfo<t+w&F<=!ymv<NN
zUn_69F0hTgq4t7M?}wfS+&|J})5hWdg?5Aqa9RrHEiliMy#Zd8n3(|Gq9Ag9p7BcA
z&$Ijv|0qxIt9}6<zaMu$08LLRa7tb8H>sc3hB3j+t5B{}cCj1P)Hhs?^)YG!e8e<1
znT0$JTIaY!<5y!x;qDQ<fL18D&U~4%Oi2yatAL_s1<K1pc{DHo9{4K2l@1Nmzq+%x
zm*X4_(GQi-&v?>|L-WJxM%txk1y#QLI_3Kz@XrB<0GiML0H@U5xn_y-Y9K=8(pGZ6
zm~8Ad$z@Z(9UwD?aR>$+cFGy_ex!Y;0Ivkh1W+RSyUNq39+xyBe6)<Gtf!1#;G~yv
z&?F0c*qGw)+MN8iAg>a9ruumn_-lZ-0F*cFKfeV2EugC&*X}W4{8sHRq5izI3a-1c
za8dCM&CUl{g|4Q^$x~4}Y<#YUuW(L*3=^W_U3P2;@u}@3?}Q*Y-YX43M<UW;3W8Rq
zh&%=_dNTjkkgD&BjtHHn178Ga0_gg_3^=8(bP_?!AWuA}eoWKSrS*++0ja5jXtjqU
zUfnOY!G8m8!nFT}ObAABpGbXb3~b@m3R)hm=-7jDbbWmQ{3ihaAVNnDa7yKl-&L(=
zNOa6^!U|uvP%rUo+1F~TI#zB~qvbQO1|4|6z~1m_C~jm)`)Zg4@En$fXR@a}6yt$r
zkq@QRp}+HTXXf4&qv#8xd`;gaz;6a@1n7Et5jdsp^gA8;<lL?1A;h}H7I7>+qUk|C
zQ}&B@OvI3m)K@a*#o@6@AT?-@^d`7^@MKqc3=}jy()4Kre}nUKDbzr@ZE=duqz@zW
zem~&D0iyw$&Pl*2br&zZSsK<hSJXCFEuTNXVa52SCDJaaW-*%7cP5dz9@DnfgV!<S
zvf!9-2l<u9tMc2Bzh2*-2mUv}djQ?<e+Di-g517~{@|8Q{obKN+NLWSjvsxf!>)nM
z_fsJA9hMWw{27Kg=1(&(y~Wemb0e6!KR}kzDww&9P>KOjhI(-5t^`ebew_=v1+WsJ
z>+O2rl-56|_DwUNkL;gle>r~n5_QkXufr_@^x>7=X+2#IquSsu&B84(ru|Cj3`Iki
zVVDb_%^F&ICS$(E?fQQhwpBV3SU5@5=cgz)3+2*0@*m)d2cYu|&~#M*r*yTmPoL?;
z2d5fa&@{IGtmO+LMrR$kP<o#(0#BCDIQh(dAB~C49@+V4W2=>eRUi+m0A~ySA9Y_I
zA4QSA-&Nf`(=$nCCU*!VnGhi1%0Ykx0%SN1$T1uuipUuV5Rym&g6k0l6%aKlDxzRy
z0a;Lqh>91)V^?%t%__U%u^L?uJXYh1E4u3bp0}$jGZ`i!eE<6upJ)1=B)ms;-SyU6
z@RUl%ut(L>)&9<8E#6^|aM3YGsvCoN6C<C8$sAXtqWmQbeYZj%FZ3aO9|V0Ecn*;I
zo(4@RT>oIsqofN!)gKwwRtEz&&}eXjzFSqi*jA5=<XMqk?sOUk7XP^`5(6>S?!qy6
zEiM*g2i4``QI1${?`AK;@sD2cCrTm(_i(-nhWfh+J$;`FJxI@KpeulCK<e3G{a*S7
z#J%12eNV?#$x9cCOCND8;!L*yxCo#})ZelxUUCbFwq<D(QMp~{jt~?H=V}JqqH(|^
z1$XT^j93hOra4@EL7JYMPyi=^9>`_4<tUJkxQ;pSO23z3>YBlZ@L`S%ss5R%Ax+rh
z`7BU=yMyin<N(s1aiA#;3-Nyv<)n@G1%{SuF+|#=-_4Y=fV%*#wh#uW;4~2Pxc)@=
zz1DjNe_4O_fPNA92O#Uc^K+D4V3sxS*=yb7kQH3-F-no^4UIVNX%0|c5RU=omvkDf
zY}TJ+T@iBD@poSQHyLvF?+A^d^hviR!&4N4NCWZFjRK4>?7bsrIC>WMGh@ycWvjYg
zq+|N2L-n;7-EL&Ky^)FsLNi9<;;v#%1fT^ok!rgO`_@2r+5X=MdOvU+koF~>#NAuK
z7P+2cor5T>3iRjIYq6eWxm@BZPDG-ix_FYAkMqpW2JvO)hnN7~qHp7G^Qk9z(c3)b
z1oufg=>)$Zh%SQJSPnAG>x{d&97ZOLpM>FMJg)P!Wlil_)GH;uFOT<5O({xE>e4;d
z6|WlIhfN(`G$LuVYDDWP(Xjsla%D%TxIr4?a1GU7H8W)!hd+A}Phmc7s#=6YpcmMt
z>P7HrFH+|968W+LHXFz)sz>#pp9P)=WVt&Dnvy(+Bjc!1xmz)R4Y_2~s^2Jh6_-~o
zq296TGphJKfh53fJt?3~osPRa;`#_D8?;O|j8?PI26Ry|{)vpT#dqnVd(<unM+liC
z;9!%03AI&InlpvIzAplPvlBtD1GWS5J$?fES72|FcyG^I&w>95)PFkdXZp?JEXzOD
zqntJJO!M;&7W8Fvm@kO%7XiP}r&z{j*5fmlq4hXSAFr^C9z9UxW(3YlbwQssDk2pP
z+3ab_-cpP%;TQHhZI%uG&JI3A%bJVzk_b00UZLOQcJWN@kr0ng#XLiG0e=n0rf74u
z4?>BmnKr!JWi+(G(JBn>KVuk^!ADJlw+in8uMoT+Uq6vQ{x1XT!%ILf2dV%{lt<y$
zpYb*+j{JOV&x~7Du@HZ{3kzR5K3+xdtHs&SFyr{WW;1XUPsP8))}L_myG~_@Qj4X>
zNyse0ceCFE-SaCrjsx;NT@HF5(9OEvz1(_gLF>1z@$ID(QZwJAnGVDc3t!<h^NZj7
zyjQpumr#7u+x0IU@9`P$^TPLd()+xR@-r*2B_zc165C>1TvBhG0eFl>W;g~Qm?8qS
zW_tB3SC2S7+MDUqB0Pyvxi0tJY{q6*coR#yfq5OszH6DbkdMRqkrzc4mn5QeW}CFv
zF$|rpH)^D_FP|B)IAMBXVe(Tf1^?ws2W=3*hp7+pp<#e{Kg!pEcBm`pvA{w==F6R+
z9|3w;@vvuD@m)8J3baG5`BHAyK8z1a=dYlu*Tf#-<^sqi=I5=#$#kE1h+BcWkgv?`
z`f>IipZY$}d5@>OkAaK)g3KDByb1ey+J<Wm=jbok)UR32S1hH4j@_X9^Yi4yfgiD{
zpRk;NvZN1KvTh!V&BnsuYJL}Eb2KlCYo6ZUc;57(KF-hr;r<WYT8btp2TjljDkVsR
zMSghx6&P>!2R#c|2FUz)2=vRqn2$vLJ=H9papB5|$PZf6T(VN;$lrwZ;qu}$ky(kf
zT6DYqgc_6!J5_UzKRBjaw?Uc<$9^p1qX$0Dryk}xPx7RLJS_#c9oWWF-Jt7=?RGqe
z+d1o@c8_;cy9HNQ__KLgrk1Dnw;^z6Pk5N~B3dALf{q&Hpm0DErIsNgKfK=r%10sS
z65vum=0`Q?Yk(egA|IsROpoC9jr=sky|HNNDyz)E$yn5`F=tXoF}XrNr&s)gJ3rv5
z|KPJf;GTc*ln;0T`A;RgvL`zyrOuc=-7_QQqW)C&=fY8*uKgsFDsYVlZe?K}ywd{c
z?Jp8~pMXwD_)hixG-%^n_;&$P?;OyDz?u-fwXk~2ZiTwrfc_Vo`rmBnKclVwNgrUm
zmfK6q9^)LHI$`#B&xE8&(043!Uqb_(8Lf&Zksb4f3BBu}lhpfB(9Z*J15)pkpuYn`
z^^OaxcWZFQb5(q3FI#q@vmkZE?BO1C>+LIEHC*Uj(h?Y_UkrK~a2+7^z8CZ^K(4dM
za#GS}yjF95X=&BS@};Y-J)-iU9KK7xxF=l<(9Bam<g=gV9$XC2j66PxCDkPK3W<MY
z2-&_mwQ}}_o>@uDpz`^cOqh9nF$H2&Q#C3kNtF3mcN`(~Zh=lRzm4zU4+XdZN~C+Z
z^}nn>Ge%nx872osAlj-YD1#Hs|B3e1;y(+#B>zg#*8`gXIi9%>G^In<{#1{{fpI~Q
zoZvavJz~yvi8;XQK_k1ZI$TkQ(h^_+)<2IhZB9f_GP4BEBl9t`&g1>qWV<P-%4gXP
zxgN-+`VsMOr;-3915&S^pecp-Uum_!oq!)(^=ic*HsD8#C4UY0=UVb_1HBh`9FXPZ
z@1UE3UDkf8+=n^d#xEFph=cFbXv&QJBkFbP*;o92S|9z3SS&T~#M!E6703DR){1qX
zQ#pnr14qob>*1f2CtMzLOqa*p^-RB!s^i6Q`+3rIdZcI{cUw-6(0ATwk$<`02lCGc
z`g~vtAoFhyXi75wg2$;i18*q~bz@B@!pOOHyv3`P^=b;<7q*LVW(&&;SqQU_h^gSy
zY{_i^U%4LgG3Xxw?NlJ&(m?kHPKNj~eiE8*vPtWmJu>K)0kg;jepM-A0w3lWHDlV$
zs(J%7bjIC;$d^}yyIif->w6aWA7o|{*1lfhT1G^_ADMoNGI9*oAZ}NwFb4ex%9wE?
zA8VnjtRLGzKLR`h$Z~KT^antwU*@Uy?FqPN?kCsGRY1D6hA7njy-<6b*6U^-SBGJL
zFUuwHHm=`-76nR^Q=nAZ`g2km{o;8-@2npJdXEG>1}Fh2k?!HvdqXnUa-8gn%<QTh
z(z=@e*Ha?+Zv`(|KMsRF4txa2eEAu)_MbET_p~<tdnjgsm)U7|Ns&vIFXXdYuLC^p
zAaY5%AU?+R2Fj(dE{NU<LjPINP3nI&==*>N0jd8Rp#KT1x5kqLyHuI>uc;JIn$HQ<
zVS`w&4r&ft1K}Wq#M5GZY_|v-u~U3oO{*na^(*e?_N{!Uft~XLZII#mj@eJMe4g}_
z=6P1TRz*SW<H-Gk=6OWhr{bIrjKb;HseGGC=U)-g<Sld1cm<APosUR3zo|Blj-3rk
zO_PP4g+B)Rz4Jkr0V@F64qOA8(kW{mKQG8%k>-6g#hFoQ+DIF=%MQ>fm8ZnE?RN1<
zIDm?@P5)U{x>F#WMD+tqrnM_o(;;v-!@(h(P+cmTccsZM^lE}!59Ct&{yFIX0RIJ~
zUe41(FWEi?p9c)e=yn3(Y{Lx_%HXhpa7=5lKRVSa2auC%>2Vq8Yk?a8smE=gDTUh)
z2+~7l6}9h;a2+{H9(ra#oNYP+;!HRrAdYXEklzgcvb{VFTKfrmU4SfyeL)uhq498D
z3T<Dgw)W0$4Tyuw4Bn9eaJK2aQnFHyvXq{wdWt<2lZIY*X<2t@N7**5=RKOfMYG?j
z!OW{@$t@@V4&wI8kU2`-bfNDC=pys$0nm>Cj{!2j{sfxRn!Cg};f(ht`a^RG+3F8#
z*<9KaxBzQ#+w`{?mReArMWk|saMNZ|$r*{z_U8Iq)eNDB=jXtDIR$ioU;rTX7!I1!
zLr<Kk2ThNy5?#+WicYwiysozC_ajh9I;OidS|y3Cz`iZjI*i9I5OV9lSI*O)0R0;9
zS3th6`2S+=4%ArZs@BN3h(YtOMU`Wu2GopHSFKvPv~pGT*vV67jGQ@g{6rKYth8)K
z)DWz+6q=tCkD|TUraxm-t_-Z1&<1@p-~>hujG`-35Q)@Y3jJMUdg1JK7ohian@i`z
zw0vKJo}$N`rw@WXhp;Zfam@ZNOj}D!gFmQz4Z8wo_S|GErKVZJ-Zikri|<rVH-fGQ
zb^|h>p94*)=I%4|xw^D`F}-ea<s7!7%ji8%5*t9E#$gv|oBl8-uLI4Ml#H;2I={s3
zPIRYcu#9vt#u=w7k^joYLLcLofIb<Zvw?g->N65FB{_~iqx=Q>8+m&X0>Pb+xDh?3
zPyx7wDRtNq=n73zw4OAZ>y7Io=zcvRe*^f-@xV^de*hi^r2NN0Qwr}t*`~h>xGxpL
zeQBFMU8#rUJ~XcCZF!-hKeyy6zXtqW+@RBd9)OfP3N)oM>l~zv!$}3K++6k$B_3y#
z|BYkGIHO!}D^`BC>Bl)@hn!iaN)Vf1rfROP?PG9Bxtxj#lK&Es4_hJ6i|<q}_JTeP
zGy$?6d=9z=kncgxr^?#SrzT^|rhLBX)m_JeXH)m-7x$&v)Mq^PQ#qUZ40Qmp*38M2
zhPl-A)Qioz6n5%5oJ*13Rda;i{@((6uLpe}@G2nn{uOlO{}7AAy7y_bHNJ1!Uqx)p
zjcHux*g6mN!#%PRyM{Gzl+QLl#;jV23x(hzIlXjYWrgXyf-d1<;e>FD=oxOt!>R1h
zCu~&D-=t>tPkxHeI>~!}&QqV}_UxSgWcf*+{<*aLBrNy#GLjIu$bKp!7C}*MI8N^U
zA;QU1)Z~k2P477)^&-17$AMfKn?BLZl{v_jT@1&1o@8vQwuau{1b#l&R+9NFy{9b|
zE?qeW=ADjor#bJWvW{{5T#-*@$OBo<YeBCAZUiV%UWK1`UN9!iyt5wj&S44W|HQ{U
z!M`bp|L3581-KH?TAt%TQwl%tY?agTytAI>oxV=ZI~(U)c0;Zlm#hPQ3vfFi>)CeD
zl){foTJ>sY-dT@%=ghG4PTv9{zXkkd|KdQG)C<T5Wcl=io(+V?ne5SKTn#<WoOfci
zQ>^Ws8ECRz&pI!z<Q45ay#(&5H2W-zTM`;*a<RS??|)hNK$Fdjg#HcCP3lim|6c(o
z8XBqpK+vOr&^VJPM+WLwR-ab=Ljp~<=5Ol&yTeG6^?F~J^{U-8s}bkYv7L&2aVyf~
zSIqNGXr#$V^AcSQvd<c6a;dPl9<~&sJWxCMFzB}cT2hzxdf)@y12}#}^p7>x`QhB4
z_Jl?Qu#CF>7DSKzmaa=)ubGcWnfchMnvd)74PCH)BZ2|i>-pz~a+gZ;hUjOw=Lr89
zA&v|mPk)hn{=|1-@(`c<8223JF;CLx5o-dmlWAL3tUEuU@n;!=eo?i*3j1k4BixKS
z9}|clRl{SCae5qop_xQ&rLeOWHh3*N?*QEZJPycu@iJ&i9nT|#l^x9^cG5h;45-=h
zJfik8p;wX?sINJoM*yP%sn;~nl+IFL+nGn~q<KX6fSM*(Me(k*$^qo$;%8J2o&x;}
z@H!y%cn374@bie)a^3zsVkgZb#+@;bXtCsH=@G5-2p{N)z#Kr9!)nmi0HO1UxX^Z^
zgL%YGy;skyUPoEap1t&*h(06(X&yZzkY@Yy2w#oJuO{f?Lw-<xeF6Gs;D3P3uS}cB
zuO3#s^W)a~BaLT*+J~Td1g6@!kC<FhuE!kP3BR3fI$~v_R2$gG7eK7c$U*8;%${JR
zVUD^$b;4O3$B5|^@n0y))XR)lnH^#CYN6*E=pps21HB(;0HmIO0!=A=+)KPy(GGVe
z@a0Y&fiE|s@$D$^rGJf8?(Kngb`a>Xz%)R<?<+yy031Iq+8sF_tO=fn$aaS^6^nkB
zw$u*QA?)<6t)s-9`kNFbox)rWR$dB;aw%sZKJI*$Wj@Zbo?!N;m^pGh)H-r}6Pas<
zwH$2b7S^BF3OjDWFh!0tnxOAnz}o;NvL$q#iYF-_Ye`BjB4e3<(`4~UG9p^}<buuz
z3IIys_*mtrV(A)D;9Cb01HgZPQi%DdEk;dHJXcud0KDY5U<>HGfqR4ahu<g0T~8MO
zHUk1LWO$WvI`69FTKrFfm+UvWBSJ|7`T_ENjt4yh2<`U=wynRAcTOGu$6A&n&iM*_
zyPb%KMjd~7-15+lf0@3b-HyNMN|8T%p_|nI9ne1lnlqq(Ht1nMXuofaYSZtx>L1$i
zw`OGLdj5~KzOd_6yJ^?6)bq#0MYs0+zcNoPB0sc=G40V~VdPnR{+3!{?^f7ShO%YO
ze?Y$pd;-Y#)jJ|WDF!Ac3;Rx4@qot!?Srj?QMB<Td@EY`QPK5xH~acx^Yb&&@&82(
z1EQ$=--Q!Z->LckR*Sw<-Tzi!XG-@1TTf;r<-+Nzi!ItS7jxHsS_WJWhO(}DiEWUs
z>-Y;@k12}RlSdcl`-+O)S$cE|yn?cD`Ni@m(>-V#*AP$dI)-RI*pfz+mXZi$$cr|f
z50@A>gB(h=*9-gWV4D};$^KoS4*^dBvR!-`G^Jmxb)ew=1=-2XsHFOV`kCmvj}<fD
z0Ki#H7XFth%X-0G02jL?>gGD)RIT1ziK)Fo$oE7B<Y$2{1cn1r{`sIgCtq%ThtXk8
zcpZpu?TuDBfE+KrQ$8F7{Q~eZAoch=Xi8_#2RJ^9k`OL8Za~!xmmNy&2BC*HD$xGr
zfgS^l2c#ZzKvN1gZ>z4XSzCpBsVAESF)_CovHVh7LGR-^rfk6)jp@>YTl(-XGBp~d
z;~|EnIy@D{w^8U(4>_`(JPi67;HV{=>PGl;#({RSbs$D!am|w8j&YO4-*5%SS=~YR
z2L=Gr&Jmy~g}a{)<A&B|M3zA+eYs^YHYFzl5^;zdM{v;gU!o?`!qZ@0W@)fV*jEew
zS>R9a`ySBu0ri$lvM<~@lVG_)3$zfIh=UK2SnGt-q{aUvc=;^;+#R9B0!e_huK+Zq
zHP(GNUt8y!0{xk2|APibI5+sBI57AQ9+a=ot5|aD7cw%+)*_7Y`Xfwt(|G7&Z9jaa
z5MIbyw{N*g*uMeteUMM~KLGj&@FF1f`v+)BpICkiZP(u@|HBN3)`>OPr^I8pxjBl6
z;PgWNs+t!c(2%GH&RQm72f32j9acQ>^En)5_EN*pbhFSe*AwW6rhuLclmql`Xg+g0
z==*@sanbtFago_F$$^ojHWii@1Q+_2PX6V6Ybtn<jm#X?eWZO<u5t+dOmO^fIWo%T
z&M}$8yN|Gs>_u6-g+@ioiGrJ2ChLwWl&g4d75blqZnFOT1X_tkKMKhFH9%7eSC5vI
zS1!nI4K5s;J0!<YzSd?Soa+qQs_jWDi&d5!Kln&F^FfyZ<$#n^1^VoA1|UZQa()Yv
z(`3mx3_eoME1;Wz<A9WN0`%GC<hPMis|W1KtrPj?jS0xf16>FV1Ed@u=(Eci*hbEE
zL2~LWIUB%7+H()+dSDkI<?IE0b~%IE$XOpGr^S-f0zOg>i;YkWAQF&rJfP1mXK))i
zHw4M?-zM^H7WhaxOF>rwHGq_}2K3qGz_Tf+9Bc@Z(_qPI1Rp8qub@u=?*md!Gw8F+
z!AeVzoJ~P;Jhuybvf=`AhJf|~V*n|q1oYYE3~3{0bC8@WOHLj5_`!(U!JVKV0v-jV
zoMWIVg^ODjR8Mmu2o53FqveZG_UI2XtbHIDm+sVq;HMd>Uz<c7lJ^c_rx7psll)}R
zDL}gQGivLOtrPP;`J|RCNNyhFB0{##lzyZ!&V^fi=LPXy33?T<w)1?cq9Sks_;wR~
zeHP!wAii&d{uuZikoonS^?RwWe3ITvE0)%v*H}DretB!_mYC~Dr@cA{r){*87%ir2
zZur6X*LrGpp5f+k8L{Stb456qYIfkcTSUH<Bm~OGa?mxvT0rWt0W_sk&x-sT*k;{f
zA++e7U53!^;sn8zm5WMO26U>$vOab(-`753%4rNEsB6EA!L<u7uD_N8Kc_q#y}}o~
z$2)~SCm>JOi|;`HLb@ad^oa&dNv>Z7kE5;gE|cNDIC*-j7O_?1-~=<ElJvldhS#({
z*vg5pWvVH<sYoSa6d-1$C4Uz9d%>T|(OS?Ofm;BXANxR48u)jSA91~_%<uGGvii`<
zWhu6u>4`T~gX>6J^+5PygyG|?nMYHI;%4n0Tw1Re7~S-tICx-aF`8G8#YJ7IOlKP9
z(0STO_&RxU-q=Pn50RSh68WSg1;)2YptFGffYfseXi8(Oc~*%PC!O?M1nm&P2iF9b
z1`1I3M(t+xsKy$#fk(0V-K>41D$TYM9*^TcE?bE<fenZIX@;7Bc)byrQAJ0^QkQ)P
z({__zY6gxRBtp%mtwO(g(h2e@AD;mI9Pm6K_4^}eN*hAXfl2+QFRfToUfP;@u~qYN
zFG90+rSi0KC0(KuDNZ{p{(FQxPnW>D^Dxj8fvJF$Hy<>m&DQwvwcX<ViT4(WSGfc?
z=ui}3TzWEj<fO4}3p8F~qi_?Cr#0=*v|3d;X3s&y*R==%ouDUB)tbx~Q}9&GIccca
zv`y&O0QquV{7;~N1$c5mzY5Tl7FqS|lc0MIX(ojAm{kh{g$b_O{}P)Qd&Fbl8+35}
zD)aLu;g?)yeyJ6|_mh+I*V+MxvL0a<#v~)SEH+ou@u>}snbW6F5^idC<>~!mGBbEL
zedJ&_ZfSSm@|$=>+;Z?)X@-|4W~$?GfA2(iDaVY>z=`}g+@;rr<CX<iVpQZTyK2v9
zz4(qU!K3wqUpcDz4$j7F1#B8lm8iv3Xpm~}7x{7wcFTNe2HmYI+HF9-w>v;n+VZ|t
z-`)+pw^bG4a;Aly=H`Gj$^5+9{9I{%US@s{G(TSwqt=JTWAe9V_S}psh3t8J#yA|R
zz{P+?I9Eag*j~trUYUBoXu2LFJ|;?LL<FMu$BgXmjI*V4En1I^v1jl^eMmwa!q}tU
zz~c@Fywmign8dtZW(N1yv$|y_&qOwLHM1(hPP4`jnRW%g9GlK1@C-uyGi|!sN3@FY
zv)Co_=``{|=99Y{#&W><fE>ra1o|D|lyy!``<uw8Q$geSs+EZR9#W7n8QQ7-kAkS&
zs+o@$x%s$3JetHr>0^AO;<JvkQ8;LYW_*2=^0SeLqT#fy)x5mde#77c4cjhb;k2Zw
zk^2pOuc6uE5Qe$RHeoQ2TsbnekJ?+e`H?S?`jDaOkiNatp2aa&VD~yMdOb_Bb3e9o
z?b`elJ#r#`7#Wd0LLHuwt@iIbK+Ws!hO?Ji>glF;b0fnxGrAq-Ya1WLuD78;W>EXM
zj`LAC%YyTY&`oK1NaR~qN}xR-19}QD1CZsb3^b)N*7?b{_o||GpmQzg=E!NIwKYnd
zHwO-i{pKP>3#NspM>DSB#M!tZu4F_EF<)vQ<O%|bSkpzN{$ZidVaSv1;&ITQ0$&1B
zpU709&#n)}`^y>_+`oj;ho&59^>~HmJvMjXL0UblB78%E){PD2UY8@<h>3BdZ*j%&
z{%Ee^_{a$J^!0g&T;WC2U5to0z2V0iNtr9syaPhtGUy}AT^;BHz#%~D`wM7FYpnKk
zgXLco+OEnw2WWMfTuuUc*@UIEH>mO2Dw?e)#iK!`7V8)7JBM<MHjI0miMS>tLc_fS
z6g9x+OmS#vzV@JZ!q~736>tx{edzWK8~RWHmq~*5fbOC{!8|oo(JJ_xDqqcZb2uO1
z_zku^lzE4Qo&K~yIjI4?9@q#-JMRKbX^Yi9H^v3Omq7m^dk?a+)yA|Y-pt?Ntcl0J
zfqtV_uUC~@)Jo(yF6uBl4V?5SK~NDK1yU143;Bf5s|9jpc`>|L>j9<%vfdv7{Uz|M
zb<a^&zR>GLkY8qSJf~Kjx;Jb4TpwzzSzBy=E;m0fG(WS<&psbw9B_mFebifO{&6+u
zEw%8tn)#OMI<8*&mYOH&Dau|pu63GU#M5mlxJGy>N>m&=n69=I&25b2R~gAkeQnoj
z>Y7B{Y;ODxvCuA6r@zhePq3V~S>fv}^DoSGm?5;v;I7}Yyn2>-KXYwmUB}?gomliG
zi2%L9McN5ebN&a0oTI4f_c1mKcR%Cs&@;4MwUn)AZl9-~#p7?kkHS)I4!83>H4}%u
zFU7H<O!$6HG2dhJ5$nCD2l96*=ncRgK<4kKpq1{J(^~u01FiROj1Ij2Hu0ZYGZ=T(
zJ<aZ?yXyWR9y?U?+a7$Qe7%mzT+BJHW=Oj0arKaf%b$uca_^?uHuAj9Jo6@=Q-?4B
zw%d5#7M^(r@4A)e;s|-No`!H%%k>$~u8xh&9cAaK$fh)yj@v12WxOl9f$?g-kndx9
zFWW5LMWaeAXy>s^94OAfp`uK!D~UsDe8I{O*y_c18n>+gT?NztlqgS{!p23k+NJp@
z^mP8OH4hv(7v(^J8i&$k@jq<wBK|Lceg}xm2-LIwJ%lWI?)sBI2l{)O_dpA5m!}>e
zx7+`E&Bw1ca=6{et~#XtS@rzNZP)9@kKA!kP58{2c|?6&?fL{F>u34mH#6r|cI3rk
z_dV<}<b`(COKQF|Khpf?1V#T&F&7_=o|yhka@g-iB(dQral!x2i?+X^6{FQO|Gk70
z+^J8Z=$ijN6T~{zg|mJ|;-4cq)rB(xgV{tIqF>3MhCaJYwcFS0p25X7{Nu%2Sjj<F
zv^eJ}N7ttv(WTLkvN&95!s7Hez00GzZjUycx-%_dy^5c)xKHVW{vD=|7vTnJ{rgyp
zjE;`c<yZNvXOWI*XX}rDV9^fiUqm$hb40&Lg{6=`sqybQ%hHZ(>M@(`ZuB8WKEHwu
z<PX~%e>YEbnMFhKye-O49p0bpFLs083p`}KQz}0Vw}|%{JfAiFhA~~TE`r4??vB^l
zUD3KLiqGPEGKlYQpjpodMF%K#g0H!K7R<QH;_CyCB=Df}I1}_mz?>kyq5G|(UxV+U
z&{v*a=mLeiC|Vb#&f>c@i0?trj{{G2p09b0C-ouFxs^BB+F<cN9mGGjSA>!PBm<Nv
zKhC0en^4ff0-7xTv%o7Cd?;UPKwl30E{Ok@u<bx=zO+5N5G0_*;(s`Z{|V6V0Uw?d
ze>y@m2C%|O2g#s3@SG6k(VH2tV<hM?KnXyJ^6Bh$m_?^uLAjQk4d5xu{dUmxz^))U
z;mduiKLi;QTs)O|7T@L|zW)LJ6Yy*2`JPek>ny&7S%Gpt8T3@(0zl?V`0~@L?-}L3
z!QxvN#CIR)hk-{s&$r!j-(>M`3F05oJ3?^*F+eBvZnxaGSp5CqCChy|=t`hEh=2I<
z(wZ;rmV3`TqC7SP@oxhC7V!2t@$b0Y=UQ@-`ULD40(uzW17tp(-HwjSz2A~k3!bvv
zZvlNbaBq;D@a10Kn|(&HS86T3CxZC?3v>%`s?&VWDE3N&#W%NapxloIT>?x5WWIzi
z_fp?8ioMcg@!b%__W{tmfW4jO+itN}S}gu2gZT4)==%T%&^f)^E%u7%T~RJez)P0<
zg`gJ$%YyiaFE27*+Aa1<uEl?E5dW7!zY4s5F8n(#_KM$<<LMu;BNuc&Pyon$I;$NW
z7kj13lCuUpWx2lv^liYML2|;E`@nv0Xvwd)_%;Rc{T%d{z&Gc>_so)Snyxfi{ByGd
z<^Md;6M)Hp%%AY(KcM%SH9+uhvG~^o@!t>n5#ZoC@Ncgsc-|A`v?YjtWKM+Q24aEE
z>fc^X$hG+U!AsVI6`-qtnjrq+%TFMG+N%kEi+@89|G$Dh4xBhQ{vFnYDoajMZorPA
zpoaq^0hv#ou%pA8P-n^60G@LEybJWhz@va%H#r2FQuy;fiz=$I9*O89ZAa6wzH!Bd
z&y6v4m7-PA706z=9*Xq7C<jVjK&}^bZ=gRQ<>rE>)G4{ag{~dhRhHZ};4AC>9iVpr
zzXzn;2SHQnXWcvA*54z<UaJv6z^#gFB5HBiY$v;yDL8dVw+i-AyMT}9A6B^sUzyL*
z12EPHQUNJ99W<p*+1sWPgg3a>l3ND8vOa7AeFv}=kaF(>O(|U5!>m3b_O`7Yu~myI
zjVdx4hs+S@gp6)|&z=v2-6z3c%6H{QD2YHfK+5-mJ{S2Rm8V@D>Mi+Y;4kIh3VJKB
z9gy-L0DUg<Ln~E#3gmuh*$@7*ylDf`-T`rdl%E8eQm4wB>>N5Ma7~undEhI{+m)cN
z2Q~sy?q<-G+AVK>(|xbg_1f1g>^%X#QtoMzHwa@LK*}{hcUo>I>UD!9*AKojpO=GP
z4g3y}a<2hRsoi`Iwzm`Y+W(QT_Zav}d%pnvZ{R<Gl=~BCN}bB*PSop0ORjHlpj<Bi
zy&R|lq}&?Nl-jM=!S<d*z4m`B>}~{qS+70={Vi|`kn&H1J{S3&t=G+#d|yF8{u0nt
zz$!q>UkmzN<af4SSN+qnAN*x`dmr@Yz}JA3-vXLar^;I=>b2(+A-Awl@TGN~IiME-
zWq_1hZv9@a&&j7)_gYz6U0J@mbS0|w;-yP^XJ^rmX<4>+|HTx`CD!XrGq5jSq?}T5
zt$k1UNmDQsB)=v9u*IL`{}c3=z&C)D|DE-FDOWy){IK_rn@X6Mkhjs|7ii&YRiaMX
zKP2D}IU95-unds$D?wA*{J2=BY}<ba_IXU9<(8{}B^L|R8xaD6Hh8crc%6z5Wvb?<
zg;d4&smTAs;4ka@o1otT{sBn&&7diT)_3wq&dx5IUtNZiDK*)&G-%#DLz(WIiu2Mt
zS-GMi1Z^(1^bw85WP*<dOK$GafZP($(}7ullzRziO7DmGV+gsWmz^Os(LWW3#79k`
zmG{Tde*?<pa9%ODv*1_xnXq>+_)2@92mK20Iw0k~37XPb?3EYXz}!Ut?QBW}q$0eu
z1|Syc99T@5jFkJikn1f9$SnXp1{e=WxsyOsIvuhe-NxQFQg36h_j+a;e3&a5pkN!Z
z5_=CwRVRhqt>7!|-3R(f;8{S*Z3Imz)Lv1($NPH+E~t#1H_HrzW1mN3q>Zo^P{w0m
zm;eS}2zkb^Ks%NOIu95ONO?m+Qwo31j^s_kZ7*dA00Cbm%H2A)`c}G*&weX&*0C5!
zeiV`cWs+8+b~BmbqtTMT0sN)CJ3#LT8UQK(5NJy6**j@|_3}>J3_kuZh26^VfZSxz
z-GNL%%Iym}oZOIlgaPWL>Ln%SI(wpjgD6=0U@)KzN5JORg7uY<y9Ruvy>+1P1?mAQ
zcNb_%9hR%MQYWHZ6`I9r4+I0WN0%&$mC|6zZ2?~?H*y5#yg(u#<tBrs6q?Ux+B<bs
zX|;7ZQLO*sDb#YTQnXdna`X(e9JyZ$d&|IA%DoQs&A{z|lzSIwN@ue-NNS@00$AM7
zv=~=>&@~^*I)-4aRFRr3xy|4!<^Bp<D~8W6Amv7YrgV0Dr%jt%g4Oj>+Dd8P;CcTN
z_Ra!dDYqK*)xbJH%DoXZr4HLkyx(A{iT+_Qc!Fs#4ph+fc!;EuY&MmiZ-m@q;49_6
z5BfvkpO!4zrwGko(O!sx)I0ma`Q^)DUIN}_f}$nh?{h7_S-t?@^FYr4W&zTk*`O(f
z=A+;r;@KHoQ87hlK6|m<oTgu{XqPKWfz>n-zXnVGUhtQ89R>X|@ERcHH-V-UDnF#$
z3dc&b_1`5b>7S6104nL?KqZA=*|#D;y(0s12Z0_5j02?H37{!;_#T6#nyvp5^A&DG
z;}0k=GIV!2Rz0n65puVJueA4J&`$$L04eu*(3C>$75P1`eEyQ^PUW)qJ0Z^)6_D2h
zbRIAmkn)CtZeL#T&B(!GJM4K(ehrrV4d5^B-2r+Jupf}}4}cCQKji(w{BdK<*BjEg
z59c$?*IV^(Vee`1lky@*g9cInDK8x~r4HX~KpF}Y^IvVg)|c>F0Tig48Bb-?#EWhG
zUdXK?S>Q|K)(xQRfI9&x_a4xcLf>nMoz_L7WT|gAL;c>#UPeI%FpQ}RD#&%Ggxr(h
zE9L$MI${j`qX8*54m70>?G2LZf0`_QMGRvQQeOj<W-7_sO~-KGe}vq5;49_+4)k@v
z4S<xp5j3T<*b6t~>e9{(R2wY0C%{+A{SNdmBy(&)t`3?~hxWFS+VMcO>PKO(AAF_U
zrJ$>T8bI26IcQ2}v6mKtt!?}8!}4ZJUL*KPd2fUM82B8J^1cF1sY5%1q;+g14)UHB
zcKXHz<Sqcc61WneK8DVNT@QLQ5NhX`kaN{%+#njb!xyVdD=4Ow{TioO(=2#G9sIaD
zP|*tZ8iOA+aH!}~vAS6RpBQ|j<o`+NcLK6K_)hig7ts27*yjRdzC?niB>n%}&d<W!
zG}=2ma3yAxCkxl+P%k-A!R0{8V6&?<`PEzUXMw+ze>LbEftvs+{}#~aDnIDT%yu<s
zk@kbXEEhkKtP;EnK+3m+rWE>qLfV<C%JQWP*Up%~puBW!MU8n)aIAlXIoP{M(JoSy
zA)1&Z`hT{{Kln<ym7rGxR{&D(RiG(#SRTVl9d1gUrD(HAYLYcIZLs7X17DfnAA$Z7
z_y&-2zXMGv{QF+8mgWx=ODmStl=aTW6Af#Wr=Rtb{fg$N&4UDD@L#L^j}O>+G3YX&
z8j$7xD$v&hq4_(bP5Eytclzb?tEffy?4?_ovfNIyh>bg>-U~OgOhp@a7)$z3YMF}i
zE`uYY7r|8dWh@e%Os3-bMd;N8nfQfS?!N^6Bk&6#^Ff&)@<GNAYg_Ky>NByl+PoqT
zXC}<(ujU&2o#<u&Wsa6c8w(AV+!FAW@4XasIdB;u<*ouvDKtMq${VgqZM_N=SrO}B
zZBEf~T@YOvqzvJOR^R6TRoL4IzEbXcpg#k?0;Jq;K~w6myoE?j^v_4%HqPwLUx8#m
zxskdyIhg`K?{8K)I6ol&0??NL^8qQp6f~u?*u4-7Vf5<#*O>M`0I2}R5F;&nn=E+^
z;3w^U5%lZ8TY!}JHfTy6+S@8^F6^9T+W8J70_Gw}GV5WDM)7|CC+y6c7?3*(^mt%0
zAmvU2P3bIl$|FPOBA;)CIdHiNq5;es<;w*hpK_teuO57*y@x@+2pj{X+}A);>d@X`
zsfqqIFxqb#{Usy=FnSp(k!f@;6LLM10_%I3p!)#X041v99_#+rw(E+mg2d4+{AnsW
ziBv^PHUA?%{1*Q;;3e(43-oqiCm`+G1DaAN@)L`RtIBI$c#_T@hE|wdS%6wBxh>!;
z<wj1%+#l!$NV#6nltSl;qMlmocVuR;)I@&;^7KM8Pd`VV0=PPtk3=bI<|04Kz*ov$
z5Bg@{HbBbV0-92&y<$GoMqux3={yjA%hBZHSB2bW@Rf2E)GY@P1xUFb(4CgsiG83(
zOYSW2Ed*m4e^i6M8dwKNxi^BQ)Xutma0d6z?!-ROJWbf!1isSV??C?y{02z5%zqB{
zc48l>$&y<FzPXmY%RpBHYXB+tO3;+r*#~NC?>X!P&C`Y5$G~68{|5Arz%PK5uS`8R
z`JLSdYO&;(fWMSq33?516(Hqb3;JB_@9aKMt<AC@{AGFj1oXGSDL~3U4VqG?%3CM)
zfxLDh*EcOt-Yx-M3M>Vr+;Y&AI#sU&6TI^*zm3Zj?J`9v3hd|CTXGMBueA5Cpx*^P
z0HoZHKvNnMCVp<4)+DGg8Dj~pP&5nx3r(ROL)e)$Js@u^=*hq|K+3xSbm!!?ZA8M!
zBtEs4+<Nexh40jk90vU&a14-gUjt2Pk#$d4@OZARoq<MVjdT*(jkX$4F4FQ%ClT<;
zbqITtW(4dV47wN?4M@4;KvOz<{)RLn?HF8d$*lulKlqZp2S6VNo&%)Z=Rs3CWStXh
z-`>zhq^vTc%>Z^L?)2-T_?*IC<AQ+PzMuyJLjWmvIOtBxJ)`jmFPr!^Tk<!6zqI=y
z(2oO815*AG(4CflX5-PW0<{sA{WAmQEFE+|AP<o82Z5$^_Hq`~cyv(EawCP@TJV+i
z_#V(Zfjxkf`v=gJ&R)&}jYqg5R&U8`0Y5MJQTcLQ2%m2t0g&>#fTkqlO0_9p71aT6
zg|oFAQNq4?;O7NDl6Mv88-PuKly@^|N@thX$#%n%djfoY;7f8_K>wHI%nHcWKvVKr
z<Jk7?473}Svfa23?FOLC#AV^+T!!Rz348tE>&17HTLJoV;CFzu_iE6T&Ten#+KoC(
z?lJI{<>+(JEx-?el=~BCO2fj$Pr~j;(0dJSHx^jVWt(9%0Hevd%<C5R`YsB{T?o1y
zxD1eTSAp)d+%wvZ@Un?tgC)Na{H5KWfc_WoZ$Qfb59m(IKeOFvR{@{Lvj5^hIlBn-
zB48;X<*xuu>Fnh!sNLwGpfy`^4})(K_)<A*0{u4d9w6m@0Gd+hxFck}LF}-NG-pm>
z_b}&03p=xB2jq<aJsy|@NO^wHlscX_nfrOBG~Xm_duhdXOb?~M#US!=X|m*P1wU!u
zW1yb~jsQ~L^Pnkp&c2Z&J227Y<Bt(`dM*jb?G1V$Fa(fthl8fn89ObhzBw?}FiovR
z9Re`bA8$GIG+A;tfUmT77wG-K0YJ(<2%1u->@`Df&^vA4qs131>{aFj<R*je3G@M^
z+-%U4I$mEe-)pN>|3#P$r<${2xmuRX&*vWUEorvot^r?Z?`@#B0^0#8_W{t9I%V&q
zSshLNO+K}8!rm6}m2&NuqW=RD0V%gDXiA;1*OZ#*Ukqcro5o6ihk-bO9%nhy<i-oR
zW#B92UJH5yuo;kYZv{=MQ}#}t-tNn-x8$7wKPm59&_4tJ1Ef54Zl~=O(mHyn(A$?F
z?DT`Ll)DV{Wxy&x%3TAx({}o2Ol#LrlMDI*OYSl7m2#Uwe+9GvQtm0xlsfTVEvX$F
z>`xT-`sM}XUJQBxumq5DmxHF%srNd4%1GGTp<|XONyt46zS7<%(C-5u0aEU#pec32
zUMclz6yzJkhUOmZ;R09~yb>NXw1w;IBIM@I56GPWdMYpzka8~uO{sJCPQ&7A`)hW@
zr`eLb7ks6?jiCPwGyziXanO`HW3MSS(NBxNQ_YI|CYogc=1xT{NH;D1HYN*uy$b?z
zhk_mnj0L3J63~=7W$%nxGtO3?bGr(;TftY_+W`6*pb?OAUjj|36ZTqCJ1);nmR!%m
z!1%Q{=mEfBK*}8gno>LC*T5;1v&;{C-GrUB;O7ND8pmu0y$9F_NO=!~rgV0Botqyt
zSaMH;uMd1lu4hq%(iQLmQf?2>l-e1$1=-oT`GG%0*jq(%z?bCS0{U*?UO>v-0h-d;
z?d{zBpwW_h5_}6Sx%N`*6$0^ql-mU~rFP~ALH2fTe&A0P_Ra%eDR&*{&A@GdlzS)W
zPRl)q`9ZTKzZv|cd~Gq-zJVA(%1;2@Y5C_cKd4Hx><51z1kn3l3wk}U5s>n422JVg
z<*ak_1CLk8JpsP5{rCm6x+Fre15&ONG^Mk&TVWi<%@#Y{7P!f;%91||{H6RWKwk@7
z4@mhNKvU|l{c2Bon62<8OYSl7HNcnh`=6jc1HQCmp+i%$!p2)zTD5xc#g!GMqvtOy
zE5!ylf~UjGXiQF`5ha)OY_a%fl?C{Z1ziG61SoZy{{<E0p%Ogl;=R>@m&~^ZK{o)0
z0GV%3f~FMu-o!r9%J~aRSHAG%fFLIlU-+fuI!m6iG_cPX2Ra2v2c*0npv|=ROh0}p
zExY5TC-MKg3;U|TPuh1Y=(~VzfRwi#G^J4cLguY)4^Wsza-r!TakZjdP5b211-I6c
zdlG!5TzwhZKOi2Ea=U=0)M0rHBefWVh-`BZaT5j+fU-iPvA-w7s{i0y2)<_h2fZHH
z2uQg%gQgUIU*htWOKVD3PN^tg3*S_t$<hu^Ibu9)$vpwSKJX>E-+=xJ_zjS9`EnsQ
zT)PvH8Z5MfMG469_Yn5_!B^&UCFs?_6@Zj`6=+JK=c9w(@9exeRGP6g5#;O~>z`r1
z-%3S8K^%$r*5YVJqb2tk_)58-g8mNp4<P0K44P8A^Y*Y(6X)GZmtDFrdDzJs@qz(m
zG55E+2Pm~Yh216P0r};itAWb_DgO%4lsd9|h-r6N=b!1O@nU1f*J?cYwOH~S!C%_{
zG3ZZ$FD#kVF12rWyHaPu=9!8n{2%<igq>L{0`1@5LB9k11E3VH{aaFraIV#6&`s~}
zywz(F)N0Zy#B(k3(mP(TcJllcrQQ|ut7hYG5UO;}>^Xvvzb7Za_J3cxrfTWRQm=VG
z9=WH9|5Y`=rpz16W(EC0=wDSYy`t2MaC(CWdapXO$*;2PO{xgkdkplSfj5Bv-|Y?4
z1(`P0NxLfp<tZ2RP@ou)<#{w{N}=sE-fGUOmF0NpW~UJ7h!UIGlZ<X|+o!|NW*GU}
z42Gv}Z)=^TDpQoNI`H*?FST3yKtB#V1xUFsfTk42kFBlTfVX07)pYo8MOWG(`WmIA
zJ1&RMAn&<iZAjpJSBoXzQx%Zk4|D-g1W5T~KzB}lkhfx64K5C+K~<JzKlpngfb8E7
z`Z3@zAmzUVno=15HPimF)eGlW2~Xibw_M9sT|*gv2gAh|-4SF^=a*6wmaAQ4WxwL-
zE#!MH3&_s}JrpPgr2O+icO-v&#p?OxOBa<Ol(ks^T9rUF@=c7Qk?+$VV#>3KVohpP
zlNtlH3aN(DXz5W0IkG+519~5Dz>-bvOqlydO#7?LDp!>+61jjDX`2dp_;{V^n!#->
z-f+g@wmwjiPHx!j+;G`!_@;Rf7qCa~KDPV_m(A(Q;{&>CHp6Da^$<h25vSw-s@#a6
zzXuZasEG7<H|4{;z9QdBRtEeZ=7L@VEC*!1T@IR3nDb+%-stL9uDzh5)O>xSm%rp1
z1Ik~noIw0X%B!)|<qgpa%tG62$vp<Xh2Tr&<uvF%)e%Y#KzT%d$fIf^luH5aA7cDw
zWK`j&m|wmwp0d8KY85Sivb4Iabd7m2sj1+q3iB(+b!b219yDBs_IGhBTC;dO#LXWb
z6Tcf^ei=virR~%I>{5O~9N=igMs;f5-*eY4?)p7XIKrLJaV^QQhZopvFM_fq0?#7Q
zWdD41m{zP8j^PWK8&{Tc?Fp_wM$dyh>PdR0XveLeq!aZPcj7a4&hPO%XFb=q)AK&u
zcg|g!YX^_z5w-<?px+qxa@T#_80LZ$b!^lGkIgnkpD>o!GUj$g8Ius8I0FAS78fG5
zSf6oR#TAD9a}xU{7thbQ{j0X$om7mt%TT$RsK<DmQTShKn%-+_UVfI{ftb#OE{MUI
zh)>;4VTrF*wYmIl#y?_wKSLNx<1)ty9{CuH!tb^*?qV)2L4{C+?H|rHn@t5AKQN~Y
zA^csAD8r>{sxCe?r@Fuvr|UqH)=jNNY<PrQcCiQ5NM}T>%Ndp8az$~#9_fnUz<w$p
zlydV$`88Gr>U|369zYf#%kMzYl-g@|%<|h>?PBMZ%%#G+P`OVNg*Q(WUbEpPKJ}K|
zT9SkBRDSC~?*aA$Qtl6+DHU4x4^P}7%CRh^trZ3VnE$MsA(wlYpBWTsd7pmRrZi~%
zv_afJeBMOv))El-QBQCgJ}nEuZId`&lx{cT?H(tB`toGn+Z_|<<^AKMIPSE{?CHhJ
zV)&=q`{K2%<@a*Fhw~aM`Zm@l2V3=jb)dak1iA)T3rIU|0&OPi-tJI4aF<UtuKcZ7
zTp4tJ2>1KWJIXNdyaN{iP|JB2SL$qZ?`(fGUa9IDdki(4B{<tNftz>0Aftpn&5-AV
zK+4zeK|3#ppCcgKg)yKf0ltuP%3FSJo4-p+YpO9PUO_VtaiP&F+>bB;@R}g4wzD7A
zywhsdkE-jminFy3K|L4BZ47FY&eK)5f#-f(-XpfGhi$Hdw&6y)Exk7s-^;Z3%-grN
zQ!v#m6j(Z$Yo@v(!j5|ASYp|60Q8H%F+k?)*PtnFcv$Eiw2v?PgQ{{7>~!8v8p#&}
zJ<SolSva`zF|v~ySKWe}yHxJ9^O;(aqn8tPmO^5e;8HjI9F)>DROnT>CQxqA1HBBW
z1f*WKf~KS$6?)YiYn!j;(Hi6_ZbW=ey_If6Txx#yGd~|?=3~sQX8U={hG6prnuf~_
zCZaEJ*<x*T_zz6W(4A_3{cH28)ddKHdLEyN=*VbK(7O0XSmgkE$olmYXvbQ_`U9k%
z>7Xf{yi@2W@6(p`%hYpP>1A}-^@3^RsT9<)kC=J1`NCVxLirw79<hsDOhr=*-~2>s
z-iGi2{4?|I690x`q0bt~%f)vpmp6ib4H$4mpj^HU`Zr+Ln?j#MRvh-tA^lYq9f+d*
ztLG1iu)qg&Gc0hX`PtX}+{ewwYV-3$@n>&|pWPt7Wl#*^eflZBo%?q1<=Z*+7UrjI
zJJ)vbr`7Gecn6O|hq8kwZ07@a@C(eso^KZRiXghnc0POuU$vc&-N7#k`nhX6x9@<I
zKiLZmgcio2qC2k2PUpQ?bmT?0qJ_RPn^C&fRm*I-Q3sf-f!Pi)oX20pFX0KE?znL;
zE4EP0)Aa+axP+I*9AM4{mT-U#ypB1v1fId%!}%Egy*=+g_WU30t_{Wj<h%1GBd^ZL
zztwPUHsT`jUx!~2WzR>H`Ak(`GIo(u9mL|J^ylq)PuugKvb*jx?8EKL?IZBkF66f}
z!~wXQv6D=@T>X~OjeXZMHk;qW*cA19X1kJV#3{~wY&i~L#3B;3&8F#3tF~f2&T!%e
z)PeR3oOzCX^idU&c@g>OZMtZ~)m0e3T;$4&%11AR-dE0`Jtd-C)cr0nj(H6<yAo%!
z0oh)af?f~Iu;RJDWIc`Qw&NJHT#Q^*Q&x%PlC^>13$?EP`PJ2zSFS{WP+7X^r&NfV
z_*42D6jywn`8nA9yiSA~uQ0!i3Hrs@H$<T^%(pzkED5;D?oC5nci$WB^EA!nP(3bN
zD$lSDkDScM*~UGt&Tdqv9#y*>RtxmvsBzDz7rdalo>#jbQ42mY^4>K@ykoe)LoasZ
z#M#~E5Md5)VEh`K3pk$-<u7x6sPQ=CKe4D(m&=W}a75#?*;E8;f0k(%s4fJdE<kYZ
z5qKp~N2JC{B7a+uce388S7A&KTm;Dc-3|Irz^>Osy<2ZRvr59`FOBXg+nRBY+lO=$
zOCR&|fM!0bgMK7_aYFpn0`nL6q$*cn*0Rq<9uD|XO?a2(?%=(Y`yBL}dhVK#%lm5i
z<Fk;Pqj*-_5FQO*{#e^Z+-n<$Zl$kQ6Vcb6pQ;zU#_n<C-R>B0n<L?*Ew_my)H!aK
zuu}$=YTFpQRGX|GV7A449n=58jJuf~H!mdeZq%L^pwIc-Km_jrS^~>uy%gVckzYwy
z2inbC(8a(QK(?EUK~pLViF+YS7W(sP6MJV@m)7{P8bQrwEqjsCalY&6DxZD&S6o@|
z6s=|^n)GCzYjo8T)ku4~maQ7hsm9S5V>sVs-Z!K)%n*7tK(3q@y$1S2;1fXV^&4nP
z?a#|iy~IduQ9!rFq*^L{JSy~ihbxDmUsPm*ZIGH4)eCX{ov7Z~yc=D`Fk3sH{ecd;
zdS(i}N??@KYXRsLz)C>sbsuO-q3d5Vzsy<V*ouXfi%MIy@?U|))!9=hw@#yaIWu@l
zq@8nI2x14gtGAoSxG^$|z&AG#ttG~}GojrgzR5g<3wfRkg?=X?U+SmUBJLZI21xx1
zKvR<W7IYtyIgT*(n^HvqA8_eU<w`35c%{{pV}t3#B|b=59I06!(F-p%(l!v|PPdxn
zbVs>$Hx;;hn0B5ykeDU(+5ovyulqqa0LK7XFTK~IT?9@&CF<p_m&Nnsd2Q>ZRo<qX
zt7xQKJ^MhtpRsy&T)W>K3183e;Kmky<sJN@E&N^W4sPFq9gbHc(s>&97}2<&CW>ch
zQAV_p!ux&bG(K}W5|XrN^yodcnENAiV@7>MCT><57ZDS2DT1c=jLl?j`)GSNp5#bl
z-PI&}5>NTF)4o2!UJOI~@iKmt^J3NmgO-<>{yj!eRHCov++bH?;o)5k7e$(TE0pi^
zE)n@r2V3QMWf$oEzyUzMr=y@LeR7A$htT(Aj#tdd2r?nIYE~spL#mZcQ7JG)$JHWn
zJXOa$It2r%{+LNOTXK!-0&=^7?g!)nQto2Vl#YL3y@&V2Q<h(|-;r|D8u>@|qntHz
z*HN>vyT?%OiW-B9L<aM0Bc3PP2J=EpjF92B2sPTsw5Ukq6i<(}>)GB6d$gVE8H!6C
z;}>C_1b4OI76OdB(Cg9+alXi}W6(>MpASL*07R_|l%MlJF9v)uqPz^8Bc4V`yN)~1
zFvQCiH4s_Xy-|P9II6QoJ<I&GAH~btryteLLUaUW38iSfS%{p<2T{0s%hnUY{p)Ei
ztEC{keOK;tO!_F&_$1Q7a~-2_3qS>r`Y95{=(?!vo?YLIw4aEC8Iuvne+7RPw*upZ
zbfrPYO-viepJaS4-FtLYM`=02QC!BOwBQGgrNZt;*p!R+LF33TK(qA`N*6%Zn<b#H
z2G%?x-cyV9ED5pO+R_mXp;$An&YrPy=?eeK(#7T_!Wd!h7DLPT#F+6_JSZ=o*S7QQ
z9lUHiFWSMM!w3??yfo!@SAo{W<1j|^RL!Hspr?wm^>({FH(-3H4b%qw)$aOQ=U?gC
zH+u3Xtn9D$qSx(ywMSY;RCHvNBbU#5l-b{B_6U25IrX?)`;H-d*b%1r)rT3I%yTIl
zp4T)Nqf3>NS(#R(KF84{rcwFyEfe{30=CQi`3Ce)z;A#o&z|c=dG7anD}UCtEzeea
zVpb<=PUcO+tSNggHE)PBbJ8Vxt}ZaIyJlXpG*BDE(_5#-N{gk(Jjjvd^IFh5fZqdB
zk1s$|I{u`PUlX{m%WQWoJ#gBN0;WwXU0k}dv|^z-8?9$wVL=fs+%@Ls7u<YYEn2%D
zFlTb7<L(+A!{Hd7t~reJd7L8#%ODAK(FCqWipM`UX8qkUF79r0$J~D{PgFfD)*h=y
zrN!a;xHKB2_Ja@9vnu|oAB`fMG_^shsu20?yCJY%JQMUBU_K!2TMn91`|H(ae=J*$
z*m;HK!pU^yn49W@n-=@>tuyAtr^%Ar2);63-vj+M@GBt8fBKDB2L#@?)=PF->nH0&
z=J&1n8$81k3l3O!IF5CPz+mkSww)L3;3Jg3yL+KubG&D`P8u8+R+VURx=Ww^g;DT<
z5zC`Jo<wBQ2Bs}#!?f;dF6AN(wBBI6fQ=w4(B4;x{HukI(vEvT*8{r%nST#~rX>62
z(D}WkKaEH$u$4rOK7y%Hqd!MkkLlAuT6fCVTGyQ#ExD(`SIUjrfLNeF5+LPzL3cu~
zH4+HOtP7Fpy-e6y1%6&Ir1okZ=(~YO0QtT?1pNgNy1rHx(q2&$RVBwCRZlYPY?J~i
zKzt>=s?B&wIXifkIaeKRHcHXTR*$H!aky))A9w6_IAt4@c392Y?HIVvk?Kfw+MiMF
zhsBb|5WbD`cxr0U@i@(<CJon@3{*#>r9rP<ztSrI8v}Mt1HBBW1Y|zm44P7?U9J5l
zhElY@O>In71DR6|L|br~CY{CtLy!Uae6%*$Hbjkyi1A=qm8PRZ_=6Y^lD6I&q1Oq>
zmGAdk&_4tJ1EgM=n}l8+jz{H^oY??YpaGm|Hh?(Z`?DtlErNk90t4%^9Qz7x2R&8J
zRaMhiWPINq?w-&GcPsUy^6yz?l><vIm4mB6Zv<`zq+WH_@8!8_`IPx(-Q5%G>532u
zg>H&ECbq=$P`6OjYb`k^z(?BuZ_qyhzX4JXzbSnA4%&y8A_LwXD~f3!{3grMq0M=9
z&uU?xAAF_UGSJn)8bHdu5;Ucb{4C6dUrJ5%*I*W~VhY7aTnD#Q0ITB&MnI>l6~%kG
zkb4Y#rQFXze-E4nq}*RXQ)<5*5mTa&UCUVi6iByEvHK}@U@a^M6ki}fSG^^_WOG3N
za?opls{kqgTF@QK58XKnY@K$bgm;Z)Kln@gKL!0Y@EsuK{{T9i{4no3sMNQ6oL*_P
z<oa$7$ej&(F|Ztvaw|boYS;fjma-tJiT(x1^y%g+e;Zj2pcOKY(<}9Bg}sNtSK8YI
z`ULO~K+63HG^Nn@9nRiq2w?-S>jycenmgGmC}aSff&a|{fuvfl5OQ;G3CJA>dO9!*
zka8~pP3f%V8{NJs^#KlB8@Org_nM*s%F7((d%ZdFuewUeZ2;dw@TGR+MbKXZJ#G#3
zADciw4D3x4<NL-7#k1-`@m#oaZB<QW&Z6r1*)y@vu$UTLtlum#mt_3r=f`4|=2zAH
zHp~3%L5npH=|k^i?z>pD`8mq`e1P4_jHrTL>;XhWiM@-t?_{pKSf=^u{ynqrLhY>6
z3T*0Is{6PajnDU08wOoH-c#KlgYvR&#!M_}>&LjUL5t#j{)~&*QZ&Cd7I9bmV@f(0
zyM=V8V!Bqei*^rO@2l?jRM+2Cx1RKd>Uv#upS0QkWkVaV#k|4pd4^>&`Y&_=<6!LO
zo`>Pn4#w?W@FzpDJ`k<B)loLL{s6;>rNHrkX6VeNyRn9e^%o2T%>_55;aZX3Np<2q
zQhxUaT?mu_@;y(telOc+`3%ZudCeM*!Z3d+5N*C>|0b<yqZYkMi{6NP0X6@GqVdra
zqQ^taLcYpu)2RGZT_^OYha9i<-roiNDexsA_4o}mrBHw2)uk1SDp%$#sVtvgv1D%L
z$|X5#axC4%W5L>*Qg~^I1p^UcVdV75c_<dK=;p}h$xt5AYnk$m9n(2%pW|I=eX)V&
zcA%Rn)`kk-i55%GlG_4$UJrURPzOjo>p@eh2|17cf6}vJZL6xIO*Jo7c47c8_i?&Y
zM_4REB>C5gd~AVyxvo%tJI-VRwSXLd?Et+SsJlzdL*zKKN2I7f{}(;wa*<HBa~#C`
z$o7|(E~o!CWBwAel_)~-$p_phLXYV6O!?U8#qH_#?%27)kOQM}lx&2F?itn1Y&Mo@
z{b)4QAA_~&Jc>msEml69hK({G-nj#Q?^|%j4UqZpFzBa&V+Tb(R9W|sPQ35`mJcgS
z=Px=J``ebtQ7EJc!PL2|3;b6SdhY*g`tqf)k@mOV7W-SH%w4YQ#Fw|k!)5-gz0aNq
z_KWwk7JXF&Zs?82^aDd~(|6+=3}T)6Jlf{aaE~BvRdr|)e{gpFhPiC<y1L$B{~brT
z+8>=Uaq1^do8kV^**B6$*uQqh{m;;`v+w-P(7$lze!?RD$()ZkolLc9Xw_1Tp}cow
zw2_2+q;ZX)Q&-&)ZabD63*518tmqcl&qq0UP}5#QQ;4N;d|9h?WxZI05yMnH-sp?5
zz1?nVspUdzrwUDxZWQ$<>&`&EUJQB_a0MXC%TCbyfYA15;Qz7S(5t(kqI&6)ic-8n
z!~$E0ac&fFvD>LM=>KBMKGx&1E~_25R$Ao|Xp<r}4E^1%%XB`lTwiX#!oC*U_2sbh
zb*7mUm>$?5naGFWE#Mbu>hUZ1O<MLTcLmz{exQc|69L(7&9#0n+jsfwT#;<k1w29#
zBgIL<xtq0BH)+wEweB}jA29c%I_=VoKWfo`(xT@?e@->GkiTIrVS6@;_pldw_@FoS
zM}GtTHSirE^^Cq-*wN3rf4OA8sJ~X5zh+SG5VZEAOIOzTD=W);XD?n_vB(?<ET#2!
ztf|ycs53bC+@>8M=bl%DSC5N4cn<1!*py2Oc(k*ttv437X4?j<x3NfH{6u}UqbL<C
z@Li$tEnIt=7AVzS%+`8cvy!`6=wAl?<alip=sm!GK<fWIXi6_VAoQ005$)-Z5MDL&
zmsXI{sIV`dSvl=g6%Xp0IEIe!m@rB(mKea@2C9YAP7A0P^F`P*w_8hAzMF-fo~?oP
zoIKDaz$8HGxe_#`E&mjH_OPDq=?VW;%5=)xdj67nKiy;dSIvB+(lX*f{R2aJh*9Qd
zU}bo)mTHXQ&oYdZ{Psf3YV9{MyT_4AMPe$hX2w;iD|ihXrj9Vm5&Lejww9Y4T}u6J
zLjNY{C)@X5K-=y?tW!Yh-xoBcG1j`DTo-Cr|EemCB*=v7aVslV_{UD79B*Xraq>tx
zsQ(HV3O0zRX_;67j=|>4`9^PCX799h=k{1VIf1rg79eaNUoA4)dxy|-4fOCr4=T^w
zK<@$e15(dtKvN1`H)v1K>8lnj!`0$ud8j%{>j?Hr%H5L;mjL&|n@{4CX&H^QDCS$y
z7*dvEUcSY8@7n_Fr2{~h0j~nGott(qVjBR`FX0nwfAsh}ZN}GTJu??g{pXLKp66e=
zboKn2((_Br^^F$x7yVntTG%r4GspaVn3<0c#UtPRvc&w1{}v_qkp2iF%DQ*3s53ry
zbMr@|uGR9c)B0blxjx~Z9qcbG=(}qNb8ly%pRIpzo%S$OE=k8q2KkogKp(tCml0)X
zgWQ9og5WTcH4T52>`aEUQ6`4iX;a-ZbldRjS>AQ5|Fz6Dz%$wH!4?ZPW*u7hG$->Q
zE_bXWYI)wG{tI0LT)FO?Ak5FZr2lN!j9z+KA(n8MJs&TlA0J2VRoEa}&-fo1+oo!R
z)OhN#9%1O|qA-4s!YC)oaNBotr`s_K-Ua<5UCiUao!5C${ar5IWp`uqo5u9;<6&-3
zp1Z%t<%W?;^F87{pT;|s^Qh$eu%`<w1mt_(4f+LOuS>kw`e^YiDeB-o7q)rNX)XLU
z^;^zb_;B;{-QX|JF!N`9zU2|h6Z$4~otC>^D_E!5*K7NOzx<vnLvwJ7MZTE9#!P0@
zvawV>V^Hqkf<gA7L$wKRS4=AYW`wPXem*I8a=|3~w4qUY+yU0VFO~G6d_2F4VFCL+
z#z*7dF#DCxKQipD&>i5LRGy25$IkYvTCQ4v{S^rH-Y@bgX?wu$eGuqjfDe%Mb3ABD
zzuYX^LD??`*U##;)itFnrd3wfR8yyeh9fq&D92C^>oXN^3g&qUG=~_7`?c*#ttGe4
z;!Ewq!=MiX&jC{IG3)nIo_q$&rCxV>KsL$sO+gHXp4gW>tl!R*J}I~%-pP8>P#}db
zr-!%RvU^9MpPCGM8E`ou%f~CAKL@%ciSjUPu6U05>dgMOymJ1cHhKgrIl1(5*&9Q_
z?hRU_<ABB*w0!fkulYId07eH->tpR@#tRO6vf)%Fk4=f@7k2N83Yc$9MMaD<q9WoW
z^LUg!$wNOaw#`L##$GN)m3iFd90{)njOn5f>`9M|OVPdgaK_894Jn98kIG2y2Fu67
zv7#FSK<;L6A1mPl(Xitf^fmlJl`elD%gfjcxFVhMh*INjkx#z+1NCSw=-Ys|0hv#i
z)MITE*pMpnXN|QU@zRrL)+2N8bnNK1m8edA!FH?4>eP>!`8X&ZmziJwDZV@*9_hED
zEq_+O39-DeByk8AnrzhaHfj0hEc+X_n|b!I4EdvC^B1m7+CIKf%iW|EZq)3XG}mLy
zeh4<M$3^!+mChFLbnq;ri!qaDp|omRf-MD^tFdlC)Dc}QT|Dm?hps!ucHZMG?;y*6
zltsUQS=S}lbckp6`*hE9*foz}`u!|#8_U0k72m@0Z)UCyEIVp1(`QuY))ZFTUtrkr
zJ?yamMEgrrZ7;+zh1qZu8^E7p{7y!WKt<SFg$GtdPRyN5ztC7@kEd#UlZM$}fqIC+
z^(WsJt;1i-!!nFKd%oe~!Vha7kIaoIjI>9%#3m}<W6MM0Jt_|b`n|rO=K-aFtZ#RK
zru0yVpJ;GVrgFS=@zRCp>8wS}5ZC`&RzltprhAF`aZ&5nxvi8L>w3EQidZlDwYqW(
zMs6M~K4>=HJuNLwO@ov53?nVpmVl?025)j(tdq}(o1vzqBPagGw4JKx)|J`=!oFtc
zFULb{CwxAD9)PrO8fZ#AEI-XdFP>SC<>pdbtFX!cqI#4z`PVb^afSK08DE@G|0kRB
z8Y?g~yJ2{>?lw09z);VXj#a5iNjhJwUC(;1V=>9LIMm?rq<#s%nD^jV=v=^`;dXeW
z<7bNUn6P6n^vuOqY8U?s`Xk^oK-%H>y|CjY>pjI;_a+9vCo8IVt9M*mdvHMKPy9p1
zn%R{fLi7>+6IHp7_l5_E3%yGsCW&gyn@me~%!*JW^$1%`bhJ*H{RGn<W9%}at<rKx
z=sOGgcrAUe1icx!4Uqb72Tdt--WaTJP}>=zYCSd~%-!BpI#F^&e~l@B;=MGTuhG(|
z0u^eTEYH)%$Avy8Ay4-Ej$IMT#lT!Z>T?=2rCra8_rK-HndQK2r>2b?J)m$v-lX|U
z%NJCxp}}wqdlY_>7}gCmKYtM;xgqA4SH&0c8}WHJH-A$r9#04Vfs00bNA#QA%03ld
zghrtjpA=_{!_kujd^$C!&1ppP_^z&GzwV$$-WU`;D9M(ZFxow4QdhVe(Xj^}DgHSJ
zRp@*WOS1KJCK`jZQI0`xvElRh0F8IecWJ8485z%=$+awTkP&14za)&2>0efi!xM>d
z;2^ahzrd-d4EhTj)XeM|cG?Su!v>bcpV9b0b)U^f#}vedxc@nk&;H$ka#{`gF5q53
z=JV^IDfM_k<nQ`Fo|(^!Dpz1?H=}Y|DXvJXE}b}kL20=;JFVx>2~Ug%g(pUiIgiRV
zKV3ANI->t#R~q$k=-xB=ShR!FZOeH!ThE+{PCYUi4Mq+wK8WSroVuQqkei+pfw3oT
zAl5N>NwMFUc7*&ZrBTq+|Gcm(Yfr!reFEtDz+yn!bv0;8r#=<-{1RsVy<&dN!m_cj
ztsM8hVIvntnr>vx>?vkeygNnxTk@e<sNd0)>ukN@TWi3L41Kxn7N$PMT=Qr_dkS^e
zy}6%1%+x_t3maY(dY*tDvYj{$I^{vc>I7uJd;{oRz)P<SJr{Kq{jss^%zoL_7f#=8
zw1uzi>*^ciE4z-Fj}zi?pYWD-k#Fn~{YLgE_Z{S(N4e`Dw>`>>4)WKy`OqKbLl5$~
zkMi*c`EmReevhp^TS1J$V~s%*eB(VnR}NfdoCQN%SWsZ;#=_j9A$so6qCOm6XZEa7
z<Hzgz8_e%2h1pfwF^1Ltjg0$LzqZ=GkPqjhY#SNe5%Aj^@nhz}Y`})eOM(6xw-xC+
zR<7qF{MK=1gPW+;YT+ErF_C|sy@7Tj2ec0u3&{6;A!tgCA?w7!?UtEu=9S)om#lfJ
zu!t3J!Hz7#?L{BhqIr_x#IP;FNQh1_FdBY<Y52r^#nPu9@?^X9BIxgd(}2{c*B^vF
zV=O=U=5Fo0$1!H5YWpgi`Hf<;r~8NG#VbBh7U|2o;vs%!|ImD^PuP{8Z3Q-RSWAkF
z)B4-ecmzg1QAQt3-7<`f=nTh8EJ}}ljX5%g{Xg2i1F)(h`}@w^`ucl$>4h{%LJ~p>
z5SkLIpa>BV5gP%5;0A~kMP1j31ysOTR<S{>6kAkOY>0L3qN0ngyI^CH)s=PKwXS@>
zGjk{JB_t95yWb?|&bj5yoH^5H&YWY9L=K$Dmr+T@1nyl1L47VN8>O%1HOcQL(BFi6
z>en6s{wd&dfJ$HA&2GJ#A=7owi-)F9u4}m?kltlDt}^R46Cex{ODwe>c`bH}wcche
z_SH;ySLnj~k;gy0NWME~y-oef_hD_9JveNHoN$p5jRq1uQ775w9L;Ay9@~R~wZ-qy
z?VDJ*AEstu?<79e8ttH=b~4PLcw{Z}nD)87&LwG>V~h%ZA*X@d?GSC_)sXHVi%MP3
zU*P;R$i?_h4r11OF7KO*kKuCOmHgR=^ryP~*$e!0z?T43pXpoA-8gU5K@NFtC-c?%
z-z=@IUo?N-k|p)CM_@%FzRb3NS2kzqf?2c|bT*i9w)TcY+YA`O29p!au;ugPB$^+m
zC!OrDrlsS=oDb7ShdH37#ie@&XsW?I<?F@3_W%w86y2}ggR?02`m}vzGCwnakp8O6
ze=&dOErzh-JX#&jYx4fAAM~&$?>1X_XNv1hX57uGakzZ_3>S~i5!VyM^)n{CKH`d?
zs0sU)ZPIHu>uZy*Fe+9Vg;yBCRmPZ2dg^90!dkQESkzn-GGi0HexCX_E1xIcW_a#3
z?E4JQOAt}7!D>D`)iF>+B34p~UKX@;+klvDH~^b?MP3J6oB?hJ9izlM7g&B^49{>1
zf~i;nNm|sS0487Xv^p>ja^XFKH}UAAe=wt!=Qt_c;HEdjUgTT!07vU*M+2U~O)MQ}
z0s;ur3eQ>=xPkS!gPC^D1?Rr%so3Hve8>}Q^#n`w(u}n9mvK50XCe)A8$Z`q=7<W3
z8O9!xGChy4*QvTr<Pcj~#1At5h1gqN#NVR(X&ei@n;DA!3YK+#&MDmPjl%jZGpcbE
z#nwG+Z8D}Eg*YNh0{TG+(1BB~Yx+c%=SJlDO1E5G1N=3>TL4wx``;()d+9V;4*IqH
zVtHuW&(3S{T+h~fSc~UMLwMV{@NSZKJLJ0o;@Kv7Gitqu>iNd7w$(q_3P1=t6@%T;
zexG9n`(OkX2@XMz;^D=Phh#a6^KmjJcw`{c_zOc{R9&qnB;jo6aGtGK@f?3De~|Z?
z=s3PW06#{ht`0?b03WVk`J-te>vM+R^95|a0e;UVuFm&N^n=;+126FK6=GRNGOYD)
zZv6*8rn&q&0G!>AHC=$JN6Udf2xxTM$A;S_zlu7k{~g-NnM>z2%pN&cuA;}c1$AQ0
zcgn&s5RRQIJ`l~PwKHkG#ab*Jq{6oQHgivkwiklGsQ3ItBVa)~c_eo{XJTe-@FK(X
z*I>mxsqkn%nO7I>Wray)%b5{?eRBHDt`nctpeT#atl<!heu<xO6u#~|VHt-#vB31G
zV<*-G(wvh5slim;=P?8JWV@eTWrxK+)<k}Q@f$e!cn04O1ETyY&Tr+sfx4PA`F!(q
zXEFZ`f0d&+=Tob?-o$`|?Pb`Qd%=NG6a8jx1oYqIaIcP?F%oKnYyMX9J*PD`Z>$Br
z1aLJ#@%=Br4*))WLXM-RxN`Zgb<%!`@qn5{qAS9v0IDvenDOMLbEKFtre7b)QQ%{8
z6c`ahLV0}|Z;0i+AHZtBgZw`jN=<%{V<<J|L2f_5GieO<L9q8*_Q-Eci)a1ItRX+}
zDfYY)nCT4TgN<}2jVD>BU;#YANk~bGn(x|^ciQGV_L%Q%`$BI2%e4P(()DdBs9?=e
zbQ0_W^D^e-(-6P6F_Pt5H7trHe`m678e?=D=jXBcBbL&){~-BR`#@~ow*dIXfXe`?
zes2IyuDf;pB@4$dJiC6;$hyV#!zYg%Ck`F9vbWj&jJ2|;xDLNx@B?x>*M;(NgwyZ$
z`W@^%&{Wl94UQy7OwV8%0-kF?q+CegiD+RbNYeQo=uqnd`43``2QUes=)4d(Ipb5A
zzfQqnwnHkPQDw5Rc*Vtf)e>=CA#ctVH%)TwDxcP_&;U8w&QLXU4fHmSz)7VNo?)GD
zRT@3`B-ECS@I}l%5xc;-y#v@e#*~Fpb{jJwCBKl5HG4Tr`K^pk&`a%O<iRiveJ`~d
z7)K%<YW!e71YM_qOn^#fF>rEf{7~ec1C4JFCSy0YZpqR`^}`!Zr(<<<=f{leVin|8
ztaxA*r1EJF6@}){Ok1n><)>mwN!k=Z=nIVZMQ%w~!z5kH5U-+ZJ@Czd`vHosCxDYv
zbal4QTf1~7taD*=r4zcMH8oiAEgVK9UCOkV^gQSQDAbE+u2jK~X`^R{OOLY!dp?Md
z#w!)T=K~f26g~F<CwK84SsuRWWSot&(ucB&cFl%U5zcNh_VR-|Ycev#^$~gVx)JwG
zzUd{N$Sa;u65jG@*IIosXuJS}$1E!obJ?SvY(74Dyf@cA4lUgA*g&i|>Wx#JOfyr@
zMc)hPmFdaMLW0lXf5GA|8)MAjpKx}Cf#TC@%Y4utj@8#<;3EJ>0aUu@0Vmg8eMPzt
z%?e8Q#BrmLa2%6b&1qdPA?`wn+Q+pPyFdsQ(aD_t%x8@?ZSPnQ_eTwq!jDoppUH1y
zd^+VDxg3wAdn@Qt_4kj!zX5y?P;}=$BI#D=gp@o_e7Pop@!2DnE;_5e9kKru#72nN
z+_(!-yxP$A9zwAX6#If>13a8(B-nX6{v_R4NZ6<jK$rU@-Ho72(cKKZ1#l-o(ftr`
za_T&`I^PseH!Mt}&>z3J?(}%Vx3h;Jtq-C7EZUjfjssWP8=hRO>0@`+>OmE89W#zm
zd@T1%dcH$^ik{R*ArAz|29Tq^ZdW(^I}7K{CdQ49k%QmNLe#Ugk3E$b0w!50A|PB^
z-1r(1b}H_vp4|xi4!|aWO8<kv$t`pB)T{I8@#!D8U~&Dd_~xj?>R>Co8GQxuU>j;a
zPU5W*YpG+629<i8KM1(#M|@$Io}OD_`x;OJAV=wczJtENcsgS9%c=7qXGdoP+f$MZ
z5|XtKeaVo^cH?VA*ed;31HTcl4xrM17jSYN<wxV=?J$lTedf|SvANd7PQAcEl;>z4
z`|_Zq3=0X<+YAK;WqJ=Fe3jnJ$FLR-=nYWuR{$s1@w`em@z1SWJbCy8l!AK5?JOkI
zfx>bn@&5{@?FT8RQFA*Fq(COrrDGZ5$w53+4mJRP4)78{(Xj_Ox$f47JMdv7&HLLL
zU@Dm)C8d?ElmmywV&IS~uD_MV<0)O+<u3?k@^o)97FG+r3nPV|sXUKPo?*JRlCi<6
zqo@r_{*^x-vr}>s@Or=*07ds2;N<pflKn(y?M}CJ6V2P%?WoGcz!xyp#M#?a4CJJA
zql4{`_E1J7Ud;@tNh>EJ>D&Q2R6ZXB9(n?2Tma;#T-Uhe`dZiiMfdr8=xPd9y<eA0
z*O9LTr5AE-ZJ;+s-$!x`FiF5hxbg%^&kV$^+L=|rZwA~NM^C@Qr-!=P_T>%4d?Se|
zlEggCwR>D*206Wnn8v7E{^RJ#eG+vYP!3S}R|A|}^9?fpPQFq4@%$m_G%+4(*XtcS
zZ?Rn9U9@N+DHXtg{(TJFDHnfa+IHmPG&kpj?yX{M=gs21siz><m?-I6i}(qndhsLh
z^PfWAZHvu2z5s4Njk@EGM~f=uxU_-nM8U<=DHg)oDujAhCO;_~Teo;_+3>Tl8co(s
z)!V*8f~D<8v60oh#girvubn&@Da&gyKR4H#ti^nm39m?8uaY-?#LZA~eSiz^mp<Do
zf4L~`mok)N#gmERDxcWv!LjY;=iqIh57_1UCKlSv&@Wf4F$z~3!8L{<o*W(bBx4f`
zZe}5QjeCAO|1W<0HLOLNAF#9EXZ8oEfUgBAowKoEgGFrJ40;UjCcjZ{&B=ezAGY$1
zL70CXJ1_w!WXBs3OJ5NTtqhtE1uGs27CsydZV4Lli8cDMV8xTc!Y6{k?ZJ%I!Qk>>
z=t6PDx2?g#`-8!If;sjPgZd`7h4on=v^QX06|A^6Sa?k^cy-W_Ppr|`2P<w27TypH
zt_x=TEfCxj2<;YEe7h!Ch|n*muu}RO3Ez8z%YAE^vDkCOl&TXm0_8UZ%&P<A^s)_p
zdkr1Z-OTv}%t;_gFb-P|%T4n1H#{_^z=}p6WCLV#Ozb}wLi)zQF6Yru08$7AAQ@N-
z64E#j)hUD`5a|921x$$L6hbV=NC-uaPOOL)CI+J!3BgDRnn6Oz6-kB3!K8I8HJI|E
zj>hh6%y$q^dA6({8&UREyY?RN_W^$fko%?n`uGKN>lVyzz?ct{7;INJwDnnSTIytv
z{dEvMwsf^_yye?t`zqsszXG`6nOMEN@>%H50IW=x_3@<&>EE1kXuTBsh;3~L=+54*
zuhgH`*>-&k7vA+uc#YyZP+arG^=<iLll*M0^sbYh{H|Dh_kn!0MBL01*VXc;@~fHR
zQSfQ>$mnFas1=o~jpQ}ZrlxL&tugQjRcaekkMRB$=zVCba`Gp#5(dO`dHo(A#p+x<
zu0lev_saU05cg<78~!P$-?!baF-qca5FM)K(+%%H@6ZIC<?Tglbe8!*xMEAV@}Y3@
z)^HI|!(=+mKOLH9ieC>`JRh!nE<EhXaOD%>;C<neqWs^uzxijV;@_dle}$5N2&r&T
zLwAQldqU<F;fgik%GKfIRblxgAfC&s2Zs+M4wO$|4Y<k~Xy-uS&HG6x_(3T2{vlU{
zv@%?|A{<;EE{RkPs&!=S5l6p06uKkiu{`gFDt3h`{}>8>97@Id8Dt)K*r?R)k3to1
zhbrF+L4s~wDD-Bi;+0V4%c0=&p_1o96<b4<kA{MqAsMaB;^$+fpbu7Nv1CxipJ8Sz
zhp28JtcdzY^4h>_4B~--<($t5o)S7Uydc!9(>f1!A1YWSPi8y0P=W%95wjANcpJk?
zZl#lK-@+hiXQKL6`jdS+YHuJM3I$Mezh_isQH@2lMO_b}Dp#T^-^-IjNeQVHDV3<g
z3(_mnD$|2{Fe#K-kx`i$%qZzmkyY6vNYhesEhVyEH$NAvUmJnH1^5_1b(-`TW<HPe
z%z%sCeaj^;%YM0ECvsPF7A_hMMcx=BP~B>QM4{LrUMIb5ag#2tCx~mG^<w4XpdpHw
z>_&>UZ^C`^AQ+kN^fUnwj5LA}aGi_OLw@YMX5)NO8W@~o=Y%uvk5pV9DZDHayfl(i
zh=dKscGy|`Y?R7+cAjw_wUY-8Fq#e;6;rCQUt1>A-Gnr)#69)*>w#|q+y_wOk>`Pv
zGhBJoq3*t8d_OPRla528?d+gChP;()uSJ&d$!%jullM3}{TLAScQtCnc(t#j$9W+(
zF3$&E2q*=Rqr4c^VV^0U4tHZ_TrC+B$LARRizz@$LePRfI7|pF64po2_A?7=Kr9=I
zH^n-zBZ|A@x3tD`Nk<FfB#ijtebJ}&2b>I0<>5)-?*V%5mF3_L*Y{r`+ueA&1b;dV
zVcVMi!#yV=0~DvG+%r0(=QomuDGY~<H~D&lwHO%gkawjeydmP+Ag(LedWiCEH<#l?
ze;6(7Al0@mXL!&r?!l9ewj*I;PB|pK!`K*hHih-gVg6CVp#2GXt9bZdiNQ}3jzGzB
z?hos&VaqA|Dq+wM33)#;desyi{VAk)tmiq;_lC_BOJ@l@>KmqKgp(sPad0G*)F1hN
z1izm_C>krHH!yw<n`OMg^?w^QIYtAaGY-YLmDn|3&Me*R=L|wa5VS!Txf#_me`@{^
zD<>BKFL=qPJq=L#bLA_TZ@h~Ay{R%kR#nJ;aOlrn<WHOs8T2-hA|R}h_pMvJprTA%
zMnI-hteck&C!vYFmV_32eFAGqxYRGaLE`!xkGpv({^k{3ym{4$``~6KZmy95$q?H8
zXrKI%e6z(H_tWp?PcM_6{Gdd<?=P-*;{|2-Zc8*ORibZw-E#@EFJ&c{u#+x@3?L0!
zaYa|SN_M*P=BoIc-M+ZbzPICU+I{wb9{1)yp17OW;zN57s@y;Trr}AII3n4T7o)Ej
z!mEt4jZzkJ`m>NVg-0Mam}89K#~J3mNfoV0Rre<)Z%I1Qh@jW%g>8XhMhoN1tYf&-
z6JuL$?PK20QGb0q&=Wq(Uq`r8j3nsQ@I4&0ABp;4S)4x{bsUEd7h%)f<^}ge15R$X
z`EF9hr%6?xBn9^*m43?TX8~*K_ssl(*>9#)yp~e+YD(~>l+p*7cbL)Bf>s%P;Dl+r
znHLSAUtgMBbxCq?d2(s;gPfaA|6@wV4A!R)H)dKs@A0^1(oZ7JMa-yj&VpF%@AaD)
z{qDo$sy`(McO{qh9?c6+G*2$Qjd@S-CVCU(_lwYv;_%QqXi}uFH>Xr>N(tVTQrb(B
zc+$hne1zFoq*Sa-salZ|yf~$Fiuj>*I^vjn6?fKf?<Xl0ds3=)rvyJtDNP?;S=dJg
zJ=^GEos4mh&*$I3_zaANxAU;MA+=(8YSo3Q!Jkt~?}tj*PkHapd6WfSNUC@|sp_$$
z;3G+;o>JRuSL)$FR8M1>_)BJi{oKAY$=-^BhAQ34`EniO^gfUh#ZqrCd%5L>FyS~T
za<JDiYn*XC^E?ROTFHEmG3#5yxm%}o;k7LCJhT47f)LWc=wTJ-D_I)-Ao*sNL4N9!
zJnIDp>7(=?a0r{fNV2H<(X>U}*bCYUkIQ?C6}ITKN3`2QCs&2h#Ot&lTw<K0R|%oi
zpt*`mfmHh{?&=2I?Q@j_es8;40k7hi7*t_I@qnIC5vjuP;y)gYDXK80c#UITP=$HH
zgS1<Rn6&UovK`uvHl`f+)KB~c_&0#>0jmE@dQJ9S-?`@*FLv!%#P<)iq)W10`$Lm=
zcQ@`xu?^QtPUNv-y(5(rW+}0JIxk`J`PN`x0S%{0F$OyxD<CJ+jc`pTOFHL*j)5+n
zmjM4g;6{L=a}#iK{apFYmJNrlJ7B$a+=8}_OGv~u>8trc&YJX;gJKNxCf9yW8^o~}
zJC&zesWkGqh#MmW%S8A)PLcF{hxl^vg!mSD9X3Az1pq})HE?oj-M^ueamT#H<A(Q_
zjWSwftXjP(7odmAwX6F$tZ3z<pK)*oK`-%(MWJQJ`AqBvohIpMLOhBu_W*wq@C-oF
z@d|Kq9qr%7=U<2QG<O&xWmw88h_n{APRff8T#v?Yn+bJtKVxnDb+ImdF*DAHF=&RQ
zEA@>SU88^>2bc;_be#tLzoM&>=xSo;(GJ7F3y7$9vDOETdv^+=PB&%?n)bN#Y(#vD
zPdkC{27C%o^n3~YzoMs#=xIC)2d4(&;M6vA2lV)Qb6sj?y3}CYS||B4@XZ)Kvw<%H
zoDER)Gy(sw=;<f<bCJ-QC>iu;Ncn=K2L*!`N|KsqN_uu6KGhEV0K94k<n{n+JkkpM
z?|`}Ga{O_}BhpXoWd6`yc>+~=tybgx7HhTM*M+y%5Z(#mdYim?m5IB@<rmN4j>JqZ
z^~A{%?e}W?JhV;fWkwFK%{X=f?{7irv^5(?zMu>tr*H!18J2f+yN6$TD)x8^cYA`D
zdcBzmMyhi;hSG6A!bC570)$x7f^*D!MKFQq*$^}X&qDDauR+^{X8v@$$a|`~8A%d9
zr>i@x@wBq+qP*ew@?I7>FY!WFf?r?iai=e!TDSuZlJ8@&GpYDKANUP`y8(*t|DpG9
z1A0q-H{U7!DV^~Bka<j-7+PMldGeJeYc_8;gtu20-o4U$Lq2?jUun{6>qi(em9H^M
zR~w-<#!r^^M&xM8<sk2uUvUghzdXtGA6N({Laj%bzKtb#lM@Ut35R&C$^VR$e-kPF
zXC(Aq<Rr-4rg`sTb|&`Te`5AzsQ39J%LNA@^WKX?@5Gr<dAF6J*I&&clEJ5Wru(mC
zD4<v+J1R0F5#mxautVQBA3yoXhtpQ2IL8Kx;I^M7`L`0hQS-mYfG52J+qwY7zm%Om
zZ6@G(R}SjKk0k%b|Jr#@jF;OzmwKP}u<f3WTzD&__k<<x-fQ=8uY7o;eE3IGd~&nA
z+see<x#DU+jRC-RSeU?c<{JNMqk4_89Lq-DHO4NCMq_tdu%;8cdkFFy(bIUpm&5ui
zVG?^Vc{%T&45fbsPMK5gFQ0|6)=G8^@9h+Lv%E=0zO@d!IpJ0|Rlkw503_(H<@O18
zCsyB+xSZXc=>0B=O5?8yW^sJ$+{!Lw;pJ?qc?-TZy*@~9@xTc`Myr2{E@wYRy{|-z
zAbsnFM#%K^9A_mz&YW}&GjGKqeItTXbO+h6W4MZUEz1x0Y>V}T4bke22xLRlyDGW?
zvMJ|XhVp@IeuW$NaQ*{_WalQ%Kg7;8|10wq1+Uj3r?i~w$6FsVl#<6ef0vUi9S%HR
z#It(kKuoEg|AVDX&-^pXxEMlXnsyDtT<jV@3_d_`%B%14Sk<r+V0q0gA*b4gy#TKb
z{<*Gcwc8G&tdOIA{bS%?1AOns+T}vv<di&x^5gr{cBj@4kbas06G{EjN0{3V(}(aO
zw-}LiMg$sF5@}Xze8hIJVVANYpE^Sx^F<!_MLuyNm$1Y)Y29`pzf&i_@k&WwBjQhW
z>AMm52Eg3_)o<JfoLon}J@NEG(SzE7Y1^NO)0!Wx83WM|dzf8AI-AbcjI*JB&M1b_
za<~I79p51yMMvIySX%;A0TdkrfRpQ<j<!YIUrk42v*bq;;!$+80)G_n1VGWT4R~jC
z#OX1LXHDEFHvT9UdaY<}ynXLMIP!<n(BOwlhx5l69Rq+52aEwII*tZTuH(M6q@(^!
zcUMVnA9Y7XEsB#=g3t`rP5^C@FqkGn$3FR0k}oZYPx0jq;JX27yJGF)$-wIY9rLGW
zC;dvh{yd&7F%?@FiPh6c>`Q(DByW>ZZpPkh<lbZ?-fSe?WQ4_)-)s!H$uMs=QpHu`
zc#9`v)RR)p7`uvvd1N(9gyK9acohp@$8cT`)2sp4Gic|tk`r!a<{fOn?abWF5;igF
z?Qx220H&s`Y{31jRMVhBznSYfbR;Yn3PchRU;^WO09Np5CzyPQ_3<$R$M<l}*GRtY
z08bR(4gz=H_i28B%Eu6Javk{=Ux>i3w(}|NB^zQ43qbiC3lpPG){K)iZHyteOb)no
zOhY`1j^6>l1aKKZ(Xk46XLNK?u9Z}skgw>vG^3rlR`OvN!dLPC1l;}r?I1wK9|TVB
zu*&nHv5!P4?lF<9*Z)>CeoKnR!&IA4pWOJTA$%48Z-HM1SOZY;Uk#jG_xaE+;u!Oz
zGp0d9lYN>!gIYM)%rMAq#yHi+QMgUNmwecRcoZFhKSA#`pa($Fkqew$_jGhFaT7;S
z*G=wql8(8EN6~R5@S6d*0u&v00{>+?I-UrOqu>`5^)<P496&sZj@%DnF9}cvP;^uP
z|7AM5-bsv6)Oiir<I=GV@hCd(0)8*xL4cy;5#XKC(MA2}^k^sQNlNVn6G^GvttcY^
zEE5fvI_;XTm-(XoIYvh*@M^$NfTE)YIJqwM_r*6HT~l#9>Px8@L_mA60njdxXUc2V
zN;*~|9>tF>z@GuU2vBsq0-Rj;<+M`*Vp$SxtdojC8mZp=9+UvINvJnzB5+*xxb&p{
zB}UJ1;9~*f0g9f9z{z!_r;GfVS+{uJtXQi`Yd6u_&McPBxIyxx8R08_JPQ1Az&1Bd
z8uT4jesmIR2@+nS86|>vT$<hZoZYeb`T`#S7z|M9Jpwqn!%Xj@IkVcIl8x3JH;j~(
zHfRQ9)ymcI1G+rj{73jIz4rp&3U~^j;(rD>xx;F&4~abmhTa+U0@En=VPrc%I~zI{
zlWAxw+;*3a)IBje9tHjkp!B2IxPv}^?qjT-b=U_xd5qlO=uR)xTx?3#RhGlR=Q$Ns
z<^B8O_-Fkhm=oxW$Kp-dtc8mpiPN_GF>~I6x<%)dxgHD|EorD9y<qmdx&>v&<HuE4
zLpq#qYnLujpL3YW`j6)zq>`RDOK;^3xAC9!TY2$q+<z-CiMtlu#__!8ZFHg{x3eqW
z;<>!aZ{nW-?<IbPkiA-u(%B7z>=zl?RtxcrS6P&dqhUi(=h$wF!<{x<KBaHy*`d!p
z;>+0c_Tj|BjD<rOY`)>IeY`LzA)a=8E@`7*&==|(ddhj<r&-#I3`-+AM1Ju1J3qD<
zB-+IMmneKW^RIAm=VGQ~hKRYQ!+n=BY>iqtsbF*8O2$_!{BlyC<vz#C{Z$Ibx!-FP
z-pushD;(!Du2=ZAOus?lSZ%#Y;cJ<Gi;IVFT6?{VCoV?8FNMWAoZb+BI5vU2fl_bs
zQ-0FZi_`p>B^mx6C0YKQf^0pnXD;uVi`CrRUc4x`kQe9n)=P77t}V9@$2n@fGPgqS
zms_O|=+&PO%&Kma`#rE;*6+EW#Lfe50scJTWq_*Rflp=qZrCE%y~7tv|G%qG(<V-W
zq%@YO>+47u6betb8@uUrYZ4u3ecn81Xdm*vP;LO-N0wujdriw=L7rjSeom~=b?kr!
zy*Mb({JbD#03=ODrJLCLC)N9Y-p2=}9U*Y?8r@g`!F-{tNVX@9x5;$RaMMNe@jHOu
z4|oWm(*210Ud_Xm|KFwCoxw{j(LIHh=#w<#Bs%(#Ph!E)Bk$6ueHL54D+N9PFa)6J
zn+BYmafi&00~h^bzNq#srf3%H@3&+99X&b;v<}Xtat48a68cx*h5XnFBn&y-IFiG#
znTQmZmfIyCH-Zi&Kl&E%4*`1siq5ZqliTC!y-;$u-SDxE&dE!ua71fIp^q>ysDB9p
z?0I=u5j3&q=x3Z1o{lr3Vt^mML()^UH@1H=75H?(X#jFWQ_hNC><`-FR|tr}fu>hX
zT$(Vo6MqJ^OH@TgONL|YmKCyohi8OQYvjJcE)+eJ?H#tKfYI+vd_$P}6JLoiiAcB^
zcgpl=e~ro29Rqv<U=n~FjW;^V!FR(~)tjkgLGNJ4N4?7?EQA$@$uPl;;2}PV3?D1<
zywRnnIgXwWfd3ir(f>z!CPLN3T%k79C8t&v!6uiUqJ6P*>I;DX4sa1bmA`9%lS}L%
z_x<1UX>z@g?T4AbW_~4^2^>l`0beu!&9$l3khIQlUSnntTPO(ph8fG+HnKLzeBA@O
znn4$}KLwv-Y!4U?P;?&;oZM_zf52hXn~s^;Y5q=x+CXG26iPnM?<a+lqr`P6>63iT
z{7lytfqKhpWjJ3j-)Njq5h;KIjz7y2GY2+G`deK3i2j|x{{+|#Q1tI}->Y_0`M-wm
z)LNF6gW4z*G&tHDX1O*v1J%z%H9i9}Tkvu=NqPqEm;54nHUobQunj<Ugyhuz3H(QZ
zqC@$s-j(b2zlN^a^-G}AaAf1sG4(>+9J7XB^YeL&C)W%8A~Wi-S}+z+e3}obgEacs
zTqyktI7x$zDsMjnC$@21+lnOk(cIw(Q;5T^g2TO8PJxlj^Xy!ImX})O-uxx8^)>~a
zpBKlrN-e)>IW|T$wkO?h_;}C`<bVg{ayCnT&HY=f-EINC8E^og_%-kgpLQgmqu%8w
z^<Qj14=IN*wzjl!@)D?_LS7o-wT!fFAi))PbAAuk@8<g9UDL()9`U`r=4xvhIAa8D
zGl}Qvxq44MUoX&m;XGlXUaVs%q+=+g_tDFB!-kSIUw=M8=T@~o5Z6KaV4dV%=ugvb
zfmT}ThhZzi(8c&dcXY@!=pNm#L&8!I=wUsSp1>oXL_O+B){}CHpL<+>ZUwKJa8KoL
z@R!(^2FwE}ey#!D0!U1j<?S2So=)On=;Q4$Kk2kyFBa|5uPKI$aYnO#%)&*(#i?>?
z6AtM2>0jyWfc`TVUhpflT5p(J$;zaGG4&S4ZfDp#!AQ)DeapVk+FHUV_D{wU$A0BT
zU%h+@uc;o+XBK?Oa-lu42u1UDX6(gY3!7-{X8dT9MZvb*Nf><V&;|#U8w@)!Li2C!
zeX?9?e~-0`V}Q>BoCi>R+zfmhU~5mw$1Se?R^xxf$Az+egx<fsy3qAEQ(W(pH%X-U
z?+xt1vsvJX4{8P2-HiW49EoTjLSUCTa+HxZnRqgEym5?g{Q2nXk2S;o$)^qHXVm<}
zhJZ7Z#NhNUW?aOvRk=`~X#EwMx=1!<2jjEA9Ul&pleo}N#GMG0v*rgSe{#Nxm9uw%
ze+o!F5aZ98z%K*r>LvMe?Z@u;@S$Jd&UH3EpmKIp{Q{UOnDy&gy+sR`E|@)KVa0%7
zH8&nW;s)7!^q=kBI@_Z|_6J3Bhq;gGBcMb&2aTO$tkLh~J?`WA5OBT^f>Zjn%<$jK
z?fbYbt`KrYrWN!BQyrs^k-<-$OSzLV9~$f$a(-hpIKLTUL^DQY_UD7J7g#hqJ#3tr
zKQke0%=ba1#zf<Yki*OwL->hH%{+U$U1!g<XQ9cMjf|w(+8M^9oIe6BIvmG<XWQev
zL-;_Nd+cL;1T>B3AUhp4!GQK%oWXW_*!kXM55&8!WiWM*Aka<+Wfh=o)><Bw`Rx27
zRu7H`J|D0apz6WDfQP?^+(bW_uS?wX@GbwNe5QKPmd|t$;!#^1O}JN{R`>xPWyFQ1
z;(h*RJ_5Ut`NmI7hq9zxJ-8{B2ie+G$^YqAlv5r|Frvo{8;{l)`V@=$f#bvTD?{PL
zERi$4hZX1dhFG#S8uca&Nx9JpL-?G&Fuv*Y+UC(<n%{;LJQPka*b}9Z6_j_>@SCx(
z%P~8LdPXRc;<L?x)ZXmkkaSAZ_cN;p<i+#(2+uHYzUL?Ay_I=#y%<B-P?ul|8*Rk@
z@~0&Ko4{Lg)Sf>G{29Po05!h((0#AQ5z7BHEpWU2+=ZCrNJA9IZ#IT(GLknNkxjIV
zd;A$g<|UsInTNCt#0hA4!flguhW{z(Y$7^)0xtsek<Y|uG}xyTWy42}b62%cp)NMG
zw@qAHbvZA=oW+r|5u0DgIO+*jAbetSf?LeJ#hgZb+kQS{dGWnNJPB`?^lU`jb+{*b
z_5=SBz`l{Zr0;5P`1RulHK3?<7wFtEY~Bvzjl?$%w!^sfw{L<|Z<{w?#bDUJQp}@h
zh06VdIt)tytTBi`6RE&3lH1lySf3=oZ~$6nFt!4i;@h5(n$5tG{tVpd&~Les<EPLM
z3GhLYb~;u{F$M#V+Fp6Z%YN=lgou$B*k_2zVJ=UCfx8R@6omXZHX_B9{AB#4wEd-u
zNhKzT$Pg@MAaoEfz;qH3oR~Mp&m0Zpj)A8%-=uk_0eZtwLqODrkV4Q6QFFxJhEQ5l
z@y-jYy(+~Nkzx77aR7s&p@}ImNnUBXO4C{~bwwmZlXwSJOLzkyYN;@A(_buZ5uy_i
z=|@;Dn~4)p%VQa-ct)v{F~lapcqIbJkwJ(6@aTDl6hvJQxhn$+BSL6ZG*URMBp_%(
zvcCk`l7nw(Zca~h6$sK#fg~Djhzf`(N&u;XG(rS>u(vCMPBKyv0jU$BKhxh<FhtO8
zxlaWnRxH{*_Ck5Dd`0{tZW)$j4N%K+iv}<+iWdDz##qR-2p|_32(9fhdciX29`p*^
zA_&Z)^BTAUM5%U==Tq?u0!kptGyWWC2BVUV@5x7r4q)U#{DF~h+)Kc{DEr_i{)!+m
zu6qN(GEi81LU=6<oK{LB?w^B%C5m@cs55}azf*cE={NNIe&Y9Z;3WPl`c)WV_r%rP
zA%uQ-PJfg^Ie3={iX0sFITOz)FH>PwD961A=Ki^yLIsLd9^#ORLoR|BBDG@01-!b4
zxr#a45c(bJ1^zseTf{Z>2OCAAJ*3(KI{f@h@K5{+?h~d8HGJ_7N)G8;^&LW@`fB>A
z;=|&)wVY}w{k0)7-$-AmTKc7&bMsG8(&n3f%2DJo{xBe-;sxL+_Y~(;_dDggTye{V
z0cm7W72Bwj)Pvy&1y!`|xuV)HI3rtDd_%1x@`nmG{Q|KIz8Fp%JL6DN_-F|l@hfyQ
zL=Eu~T*C<h$#dkmLAfjP5&Eja-~#bM{)u$9#Tpl{Bf^PsQwFQIaaFV%aj_$1@v&2j
z7(#7}D_NrCiAwK{s}U-NmMr;HC*sR9McersS(an(P<D{+_}|9f#Xpt5qg++o1Fxw;
zb~y*$S#7nW1O1{-$fnCMKf!^7R_8=9E~xzxI;Guy`fA{}12zH3Q9nK7vj4uHcGt+z
zPd_tU^wZ5VWk3BhHkvO_Ii#Pa_E)q&Za+;m3I^CkFN}K9u1yu~DfCaHF{iF5*7|}k
zqD4i^DOx(LgkZfm5iJ%Paa6KommAb$Sa_bud&<6pp3^gGZ3vvUhQ58whuixjcc}NL
zLe@<aZy8-R^3*_CAP)orqk>L<vhomtR6U7QRsCs)$U-HcNZZCW?g#`lQ1M4$qw0<B
z1D$k^`qu4TU2^4}s4VoW_MNP#<nq@%SN*=NKXoH(yLV$n|B00=w>M2h0j1uQQbe?f
zR3XH}9I(g~$S%wsrJ~<PV1{ayW&4FEqCGazrgS@+K|@T97AiIIo3;}v$7pOq^byx7
zK>DMAFx?cbEQKk4CBCC?DMAAJeYn%k*)Q@E+KBK+owUPOqLIemH1y8014uxteCR{a
z)7Jf=#JgQM@c=OrjV3ru{1e@wTfAkb8AX>!#acpJ(WY{P=8OIue38{@w4FZ0FQ_Z;
z(C8rpXv8W*q+x@NPN3UigWGue5z^re8~jLTe4}_c!-hD%Vb~!1gSh71q6S#-tlhxD
z5?_kOS@IGbr+Oyqnk=>GXhoTzeE&ZUAux8N+U?dk1ct1n9#$44B2^I3?U*9=t^Do(
zbW9PB8&iNGqEVSD>6K%lsi07_Z}Jwr7Ufj_3?m-g)1MiZEr{&AsfM_LVNf72sTExe
z5kzqEUInMd1S+_;ae*5=nleNn#|Nq0uL57rW#Db&DwkGyuL74{eozG^hLkEI>NrK)
zq~0Q;xEiA(>a;o_?*A`i0MUfEE7Ty4N&)qNXx3xbHufVK?QoSOFTVB~<|U+2Nx0VO
za$GQ1_qWOW+ys0b;5Gm`8W-$Y`F|J}G%gitfio~g&(PKu6UnlLC5%GF!lxVmKEy>Q
znrZzY)9`EAfP4Ts`trd4A^v61Of>T>tb0U2Kt#K*n3{Yy>H{j>h$D>fDc*~LuK--(
z#!G8%N-vXI=b0t#oYgPt+c0nO5-iD&hu6Doyx3g}X*<o3b}0+thbKwC?m}2OZusY!
zer+XSH9)QB?F9ZIU|<LNrBy5C`d%0D)h=B;7aFxlUws!}G}N7Y&NytOb@>5|wZTpZ
zR5vdrWka1OOMcVkYZ*RIDZdS82+OZweZ647AGvlpFF46xaAXQqI0I5P)U~1^hq@(j
ze@xQ2Al78L89{yV>E7hPEcKOhBXe%SS0>{((t_6!*kmOi`b2U3X^5F*jfdH(EST^J
zsRNxePL_NgXvNC!G~lNJW&x<|5U=L|C)b_4Tzei+#^Sf_<@C!TaU$gO_qg%4BHUDj
zOXcSc;O_(e0#NaO44hoo@`0Vkno_$M>w^7+fZWRvkON?+is!X01Gb(b(_L=I;-3tB
zI^a}*ioXsxxx-KQ=!W|FFh6)m(%X(Gi15l!mGQSCe3kyUfPV=12%zHs3^=*2<pkTO
zKNh>RI^9FC;5M)TfC6z057WZ0w#SXX+=<0M6Zky9e1MAocfdvbt{&CH*-s}8l$HJa
zR}3nf45dVMi;i8|AlOmUA0m_QnYCJvJQQX$y#P#IX;*qM6fVKTI`V0fFE1fp)vo*u
z-1PW04?xkC44ho+udu({k**O?$lFF+wV-X1Rw`*rmUInObTzwl%|*N_zg__TF5m-z
zYL9ZgeytSH^Jck!r0hPX{!X?>-K}%S=$qeAH+yzHw5}cA=h!HgrZ=FI^*{PS(#dKc
zL^kg-?=!S9eR)sjSf!J~25jPCcN-e5xPNll_+;EWr}<N{^^KK$QezT8?-E3Jp5enz
zr4H+d$wiPR3#SNsn1AHPi!gXV8|Nz+#;Q4bnN?t3M+t}9UMKUd329gSc@X%MfM)<I
z-}VA0ce8tL{cz;sVtiQ~U!I@|hg9HT&kjbnwcquHU0??qhW!}t+SoSoz{r6Y3xH9c
zmE@#Gd6?{soMM~?gOhP`ZQ)sNJK&3zw^M=71e^{aM@jr`2fdkxmoZBhG}g`f4MO;q
zgGyXl8T42iJ_CDd9vx#v2fOAS!N+uu(ZxIZ7VmwKYWUT^72yUcBjB26yXp4F(tR@U
z*?@Tfm0wQ*C-?mSss6jEPib6jETnw8-$37%i(|k+!?o&z?7|<6GR57uzr)*bH*cZn
zLenN2Z@Y%Fw$G92assh*4FFyP7!6SAdIUJRemA-MyuU052o<fWU7NQ6;#Jh9<u%z4
z_zqf>HVCutgLSiiViy$_Zg2<_%ald<gBmU)Bgss)VHeP26&d*$9}`y6hUH^puj8}M
z-sT&$^qFiVqm<|K@Ht5MHrhPB)8R=<!my=5rvE#nPmKqQgMO_aU=V;D@!-IvzdRm|
zrB^mbuzrX}jOXn!J}cX8__PnqtNUu1m6(RppiutF**#t5keROPU3*`y4s^WIFKL)5
zR~LQ>>+UO>Y0A))AA53m7z8HUQ4&v;T<=iV?tB`&(J$2>ae<!DRZ`YHM!)NtE3uTQ
zuVPOQ5BuMyQqEVUAUjbVUk(%p<dVCZ*{X6Pzi$5v^)B95F|_w-l|yoX2FWp8J^OEc
z#mlZkj(ris{<~NYKWAi#>bw-nck#TB=TCc_xZiaORcd62U4Iu#e^+0|e{uMsc1PX+
zl2@IT#2Ei#m|9zoFP-tVTZ%Fh54y(ax3bKuujIy%d`2-yO!=`Vhld?LUpg;66niX9
z@hR<^>dsQ4=<n=ZEG6oz*ptJ<{+FqYPowOyR9?`Uu}Zai*1b<}DaGn{hx+PC*I%kH
zR4zy!#X?ojm9O3_YCHOe&np>o=jB3CrMM-QCgNIPswI@B!}YsvO=9hX!n*Q1YgO8R
ztG-aainS{$|ChXyWr?nspSUIB@G#<ae5(@+NrpyzCXD)3iT|&BqP6=FV_(FuU;2%F
zuc+<l|Nr56cmr8~*0h?7<@h)?EjCXb3H%s9Er6VuBK`7tm$>=B{G|;T7#rn}7=0O*
zBcCv|%%IFNtUasjie;0kSoB0b?ao(UQ#kVLLw)r`g`@6c{-Idc-^y6z`;N_ry8mBh
zQ;bI<k0=kCE|vMTJzeBU6Ri(^3H%>`f6HegpLYDJdCaWEXV=jbW);`|V&amBYK6%Q
zRWFhekd;jC2T-x}zyh!P7sJ$(&i&3pp{4rf6*4`|8L@fUHsH?!{s16H<!;ZfO3$1{
z_4VS&(OXR0W8%`oj4N<nBn<thc%m}9YoFL4_r}RT6yz^sS5>S<ZP6N6%Jem6#^&AY
zfZqn#08r@*|EhYm7^Xnz1TkNyYag4q^q>rj(IBa8pQb~f#VU?^r_x9FvA6WJ<CDXA
zcKB66#ow7PV^Z;}{hjdTlCQh6V(ryGfU_Qc%>oejX?-dYIJqwDOD$<wTvpeBHH(;~
zD_9b_URn}4hpdNuYC`!^Gb?~9URanjmXZwcF%S!PSIld#kaWyIJZgP!8So1L7XcI<
zR{%dOI@&a!)bzv3>!;>Kt%c?B0y<LCOC9P&KrL>(yAbYJ+*3R7ci{g5d=F6Z`m$xb
zA8wZGIclBSRp&tIpEa*>ZvCQ3Bm044(Z&f29c`~UPuqo9)nasr_mGRxMRGA3@r75(
zbWcP0D*lDQ&j&0AsQ7OLPHxJp?bnkIiN9*p=*b`e3VN;=ssN{50K@0z)m-}+yjO&z
zkpK*=5S~c6aHKH|=d0ZXp7Pa_o_&Z<(epEKe~w>^02DpFfgct<!@D5o>%$^Pt6d}M
zX+nJEh>-H<THtpAS^;WZ{4L<00*sxKKOeewnpX~%>*8^InqN0-^4Q@OU=ob6{gppW
z#@HY}kA>d7=J5Zpkw3F1bnRl8ob^W1Qvz79hMY!0g`Uj&SUq8j(zNapb|=R}bLm-7
z4>H2+?^N@?q&jpsggtue_%+(&W=VH>ZjA0Rz-s}=0~8<U0VkKbUedkQJvV#^y_NlO
zLW8F?vsLU$RHwaAgQT@!trJ#e#YP8hb_lycM;p~~2ZC#^l615po-pDe{_O((C%|qu
zZsK9b^Qv+27Zt<eV*PA!0(JQ4;iEbpM%{~|vlAzegsXMqE6R(-Hxc+$z;u90_o=|i
zbzwJ&>eHd|#vMA1miOyR6>OsR9-pXbl}56xQY~)$EeKzw_f6n$1KxAv{MG5LU)G32
zS@V_%7Raq+FXF}qh)TBB>c*Rs?{7PAHWK(`z%+nL_dMX_?&!K6ADV7gU=N2{H^@V+
zUOLpe*ZdR5ar|l=jdNfc`2z+ccF2W#Sajhd)p~9C8kzrF5pOf%rTqUB@V@~L02E!U
zr=%-0DC>(lx87|zh#gw}gFLkArQ@o5%^$h8w~ekJ;^~^D=xV-J(lr+Gs(e}i{7k@7
zmzH15r)3Klbz3TbZp$96#f@)!TzsDa{{nCTp!o0&aB|(2%l7ehS}L3L_)<xFu4H-#
z_KKyq9{5~91AyGGOmCN^ayjk5{@$(k2)hYkQ@+0i{3F0#fJ(2YK*s&NYcHYGd~cuL
zSZVxHmd2ngjd$wWrTRGZ?tYX<+U^S(FF^|%4p9Xl0aS#oL2)LinH%SGVQ!w%+<Kj)
za~kMS<?|fimjTuQ6rB$MCwFak<+DAVvC_F(7l)~XvUI+nLwcq?ox5Um4veD{JNk;y
zrnQnztq^-Xpo93C0=y7V3Q%-T0#0t{cG;dUc}Dti^{B4CZZ>+wqedP}4SFlP3f2W+
zsC5{bXx(dm&9z7LSWn#p(|`m6yNu2e*pn$?Uf5Aiw!>77jx-vfH+3>kp-x=8QPQ^&
z@z>y%==%Y<r^v7M08rVYerXKw699L-De0Q++65VVXg^7Gj+|SE|H^W8#Hafm<BkVn
zC)7igBn?IWCWa!b8T2;qH4D<bHyAZrj4kXTBXXlLCOuo*sTbU$8%dU@=2<=J3`R<e
zL`t3K^hiNEFI@}G7b49=jLH01UT+rQ#F#L}U4R|_8hs0cdd)Emr^Q-sa`}KXmb-j-
z7Wm76*8wV@-UUu>nX9L}lkwc*#SK;E#||G^=BizYmRE=_XT0{Eo&^FilI*Lx9qoV{
zZ%%K&w$+Vy5b$w;2>=!EZ-JAm&6n-$4tHNLu6(q`i@0T%zrnhav1XQir6?i$ENzvM
zYZSpiaWx;vM`8>z97YNHK{rTGBZMu&Dm*<S&Gh0Jo-R(bRzVFfhqjy{{3*^SiQ+P2
zz2wsl(4*SluYms>@B={6`!jHI-L{9bmdrh25m~`r1ht}4M@6)}N-%4J_J#qoG8KwZ
zt!}(yi(~ON0ACC^8=&Gn5BRT&cSOTNvSuh|tFg#;w2PbqY?0}H3E`{#%YDGV0{j!8
z;{O&nxh<|;%}&Y(j^W0ods025B#>RvoZi_qFd3!2ZNQpqh2a+ilUg_4ni9y8AzZ4T
zGl0(p%m=7=7Xc?%+CeW%T={4p?+LKYMKf5~kgUIeB5q>ZP6HQhBJ{KgnHLIgha3NP
zgs<ZN3-G;wzX4SI2Y{11?D$<}FmbWJ7ax1=t&-mZOJn&x4frg;=>Qe)Lg3^Mk>^`<
zPUDh=eQ7+np#JQUq-V2k!ICNS=GW8dNlJJ51jx1}^tF-n^Ry43f#w9NnMHg&dD;#)
z{;ddK%`4vq{yyN(02Tjdz{z!#gNoxjXsGDCJve{{TIdOiwFf!3$#j?Z@oOyzm-2fY
z@Dl;20#v+ffs;E>EZc)`-1$pq@w)9nE9NVr$Cxa8jE8mYXQP0Jm}x{Hz6{k&P_AiO
z5l9J`fG{o*h~$}oFvM$8JdU>zg3SZ;VWc&g?3vJCKi-7Xd^C#@ZqMzK{(YcN@$CoT
z{~_ATB+b;Pbh93?XmQ;!!;wR2$eA>4Er8q|GTgBULxo!hd@i5?p!o7z;N-dqzkb&2
zx%Hz*j+#7NL=!C^En1uz+B!4KN;7dbQjZv3Qxt{@Q5X>33^)Fl5Wb3kH}JiH{QwpJ
z55Ny6ei(V|5c@sd#11(oH~yNw{x<zgrvk47)C0&7UzL5&Ho4YVJ($0A2@Ked6srxB
zm&)2d8$6y3jrkFrT!XnPtS#cyqJ_*Xzf<yiE5fctxKs}R2>c_!UVuvPzk!q6>B_rx
z5-&^u{-&NRDU+$#5$7zaC#{T_LO(6$&il;InYP(En%B5zX2aCa%;jgx1)iL{Bpo&7
zv3B5O;PU~C0E&)1z{yRyTaHf}TtBWp2z9%2=AGWVY-Gd21=RLoR{WAJy2yv15e{|&
z%v)fR!O4Zb71PQ!=@bj(wFV~PaJpGRCzOiCxePj+L4U=Nq6uQm5r7RT(odI**%Z$H
zi@PA7S&>+oVn$72U|Wx}L;nJ_^gqE!M|b><;|jjk+%3~Pup*Y;CBUx&TnA9&v6q2=
z0NC=pOz+O8rQdJA^gB&A1cM<T<Vp|63Py}Ei(t2rGN(ze6xL4u!-V&?w0$!2Am&B;
z%mb!&t*077zF`*ij^-YJI004^Ai<f&60AS4G|#Cv51cf}AMoJhvYyHcA|^EtQ~6~K
zLP3KeiNt?LdHkTk6WM0UK)CYzWV(wgV{+BwfFB2#3Q+kx8#uY`t{h`)OE>9lD|uAn
zQf6GtpqFQ#c^A{(_7w0;3wg_nh_r!N`sgEPn0s70S`kkU;-PZ?D)9FJ9{>~`dx4Wv
zc3V2_=h5wm^0oxs4k(Zc(>=p%5OIcfvlk0|Xio={+OrC>K}g}%-Y@x3UKNXfGVoIY
zGXX08M&RTQD}K4cDC#_MB3d&XirbR}9cRM&NFEN-nO2&fL~Y*j(8B?5hfBwH#8ZTL
zh!39ukM{Fxy#T5lo(}wcz?5fYJ}5mnJ-aK1kl&9}T~2wkhy5NJW!N4zPFyqNuBQlm
zmbk(^5S73O%!iGNM~prX8^K46OPIC_w#NfJFBoxByuEmdGtfU4RkKtKb92nJa9LJX
zB<mVq#pS*}m-&J}c~f}`+V^79%gph1q1_8bU=1^-LBGe%%=nJ+x%M0<NJaDk6XrPj
zU?z%4q-%Oe=FbkKS*>$^P5kKZ*KB~wpG@H7auQ|#{F19DsMC6RHjTy5K#pH{I+&4t
zfL~^O#n}O#{uLG%_nB`P+A4oF4?8b%oD4e}1}lpr88laajv4Qgsi<73iihIc@vx+?
z5%H^jsu}q8fSUk{zB_@F>!zQaT|cJ|64G%UhA2GclhIx7GZ$!UVf`VKmr-fy$E)0q
zvgQ#P{{c6ADmRG(P-Xzd02Ti+z{#m~gHGx(snZzMDGgZAT5DWMTH01JT0_`pzG7;(
z1^dG2Z(i{Ue2!HL#Sewt@3gX%2`m!LOSZ`zUtdgmU*~)sV;JMf?nMhfCh2VfJ>{T>
z=zR|O>wvcbir)Re$vyAdjoRnR-NxnT(gj#qfg-W`*~iu|UR-y2z1m8E#ikpDjmUlG
zlT7<Am<x$uT71PWzq<%4ELC3?vl5AXbm=Ouj@7^Ez)u0x0mxAuG&;!t#?b@4WJ?<x
z7cK%phuU$#ugk%=a;+&O`+mz3_ENORB|lmbhbljB0Dl+oK0xu~BjDsZo<E3-Uvw)A
zaE4|fq@#z=o=wKOqculhS7pCBP1}q8jlNW9DvTTyp&4$xMFV5;9tC^?U=l#ZJ0198
z#yhEg{=y~oheUj!eZ(R(^e1lo8xg)L2QLAC6Yvf|#s3L#a-*)5?Oj*xKGF@XaHFsk
z(lAeqHKL6tEu@s6rTq*7lH82%O&pjgI3NkBc|!8Pd{B&zDZtU6YNr7d9SeaUJ{^-l
zN2j!04ng!zY1!`5u@&(se*78ur+|F`MaOr*51$S(>Fkt{wOtTW^Q7cQ&EQzMm<N0*
z;9P*BV=ZuU-Im9>bq#aSCnIm5f@Z<#^={LKN{gbIQvL*;cAC@Ihg^D|R-y}V<UAd8
z(O56pO0qprbO&pJP(p{s<Vj}y4u11flD<8NU#$xq1nwQ;*FpeAUoLQR-L4D7=$p4-
z*5rCfLSvd*1EP9in!2B6=ojmSShz~WSRKbx5_%+|^h_~&q5g!oNjl~t9@Sr81pF$%
zbpS=jOTfu}dQF$*w|?1@MRl{5)Yi==)1aWi2tP(D{_+7qka2)%cj*!CbyBz|=<|3I
zq%w;ns4~RlAsHuYeI$K_ePb&r+ssNSu(Ltt$IJ*)#7|2)Q-{XrYyiFvuo<An6~8&c
zuiXH+HdXeY8!M&1Y@YPnwKFlk&8`<OaI!5nycL?tj>pg9p0!Wo<jLc!%8}5#9p*o*
zH%+#~e258eu(-Zq3U8#iz9-*&glAqbV<VK6S@-eHQEj6!*cf4D;P7??`_y%M_^c%E
z_mVDd`zq7A8VU_bO5O*h+$*>-Lbst!s2>Yh)kcZoF^2l=jM8(C14|<?NmhuH1_@RV
zeg;M{A?|}k0p80RQDK%13z?Bp-*E#{ppmo!KX;ZEpJgmH&k8sZj0+|j19|jT=DmYu
zO*W6p;+`8>qH%o48_FCM2n}5)H6t?nb!J~nxCi+XfPZoi7%QbBy_*@+`6eAk${uFW
zuW$qN^z&cA`Qt1!CE-OD=oh|A=hyH^KW7mw0Bpo5K=x(;i$yrBuP=uMH8amDFu!3q
zv~!|1;}x0D-ysick?qv4MvuhVPe2hsmB;bG$r<m-@~F-w#pP9F9rVn_FVm&$U|;e#
z8LT1od=uUHe)Az+`_Al*xtfmISQT%?=7EFW)i$QsChS;>KkDySGaRykxu;Ay)~9%L
zUXygTfQ}s86P??EzXf;?py)hpn547GEsrZ*`*v}378S?JA=JfF0i-h3Z0@wKB%5mA
zdao2k=DUb?wKW)7d=N)6c)A&K7V{xiu@&L9w&A2019fK%bbaD{rH%2G$0(Y3qIVQa
z!5k&RqXs=m;)QtUGp6S!C7RLWin8(MXx`U23(wb(a`Wn};-qREJMx&bk-;H=Eqqg8
z<vm8?-WErunmGnV=fVstKh+%POk!h=FS%#9zaM{+@uj4E?RplS;G84Yeg(hYmHgTP
zeuQ0qeF6Miz>fgMFJF!1SGViGGimL$ciE!)#j*8Q1}*2**e%qqv-6-WHNd@Qx&dl2
zH$pOzmqdov?9wp}@hCc$0>1=sIY7~|5jeR__ngo-uHP=-Vsy|18JPw}+JBISEYnGy
z_I~qXuH9u9@MOnpL8k=v@(1!Vm?sTkw}D5!RC((82tJt*=~~`%%Rk~r(;~`M#&Ew@
z1sDiW^i2g$uABXYqT)9C>Sog#%JB=9%xfSjo7gL2gCs&GmBb~8os#|LI%v1H3ycIW
zE$U2%Mg|k@P@<KPn-D|+h=9o9`~~b$f!ytXbjv@{<<j{$@D~BE0u-I^11I<C4YHo9
zaeHTcq|pYES9=-5VOKv+dhRzL#lRN~oB{<A>AHt1W1}%Zp4t=PHtmvh6pe`G=Q!X~
z04D+z9ZP|eYh2f5dl6p`vGyxk4kD*!HfFv3hEaAt!L&=A0<3nKRx+9j6Z$$5O*9y=
z1lN<=hFL~`sCT5yta)G3wH5KIa`pl6&j6phv{0Yb@f=<|zQo!E5{y#>MZ<&9qb7u?
zw4bis;pAW*XFwUU57Pp!)*V~j_-jVS`pa3s7Xy|76ko0ePA>Bi$(L(erQZb|iy@e>
zL=low`ypjiCLky>YZKSDfITVDo0bh}l?0v%vF=pb7ZTDcIK;RCrAMq-?fF3RXAk06
z;|^mK<bD8QfTAxEIJs`d9h2%|mSgr<6rTD;V(L_;CQ#U;I0btY`^{zAht4uuGs}0I
z0d2;gWc+gxeh$K?_WO^(M~sFH7(k6DzCOyY4Ihg+dqpFWp)LDF`rl2I=gr#jNsbX=
z%wV>psol^azIb8lM$m{U&Tr~b<~s=mCGe1hp)}@gw^lh%TWq`a3K!mI@@}8JdzOiZ
zf0o{Dy12VTdIzL;kNomh`AM_9+bQqdpHF`pOS${aR{K$-VyiLjQ6pumak2dl5AWpH
zr#)&6+G?Ems1ey}R4P1etC6a3JRhfh?F@!Kj<nQlXv04vHNzkBW<p&|o;Tvr6RpH0
z$#YOZf>3=@!lV8S!>1cw>qzfWMgp`^H~~D5JcLoS{WuzKFAu)yt=PiL);T%1INpb_
z_zHzXm;k?mrJKeL&d>vnd5sRecx&~3H^@5hCo{a!>1ib2?eKe?gu9)*HI8q!lep3e
zu5j`$cYK#Q-X<scpv{|{goAeRa>sX}<NeM~{?_K-*$Lm;#oySzf7%IKpwuw=VTV8B
zBs}aCZ*_c+I^Hc#$ZP+@6aLzRcTYQfyOZ#=Q~a#sd&Wt4(TQSVu>56*zv3jk?8s2k
zUvhYA0<4NxFEtk>f9CMLPQqtS_FgCFGsoWHBtTtGuX=NiZ6?3t@SRS=J5KR?j_+N^
zyWjSE1JUG*IKP;CFM`=k`_E?fr*_UKcHl$PhsNhfZhyzJ-?g*fvkTs}z4Xvz;jdXB
znr`*y_A_?Li*~OUY<s(%W%+&iJd2sWB&;&0+`uyU5o_5|*tfACuyY@@a~`n$H(Ib=
z8H8LOPgwzTc1K*wj>2A!z244kv2)hb`-Ejd{t8~7kGH=SFMn_6UT5e0o?ZsdK)~}6
zZi5K+5<B-&JLeL56Pg5KzO+idwtD@;vcIshES^=H68y>;^tEF@Wfg6+a-On~t&uMr
z$4duegWo%Yesb(TSVb>cIe(y6Y5SaH&Odhs?RV^lt)fS)oQK6Pe)i_iw~s~Zl4Ku?
zHuqj;T&?rbkXbU{X4XYsSbk+cbMsl|#h7G*Z(;BVeom-w!gdCcP?&hB#-G41WZ4Vz
zj=<=LZ^U<n9~#B^B?#^Vi}zu@jS607=2%{q!jjne&QJ_~dVBhLVe-!&?B~7&e;!Q5
z<79at7|aX!g5E$f)X*e^i$lJ!H<S!5;Ry-F5nn<=BqNbW6B3J~zC>>{IXRq^fyKmx
z)Z!FhYC_8Rbe@&~i!Q$O^t6jvCeKL7%+AQkv@=fa!Lt&26leK*c(eNE@N92RHP6n?
z$qTS7V@Q5>L3Xc#0x!$SpH);+*sI7c+{lWj^_~j5FFB=tX7+AnWykiJih)s1xt}HU
z`HEE@TQL<@U~>BTS)iiVfNA}w4$Q628R%!B{zC_s4C*!59(4ZDK||~#i;l=S(#s-4
zDr*J}vquyS&l%xmX~R-S4H{{WDH@$K2Jc3WqxNvd*RmaL9T#gycLLuJ_zIxf(Uha1
z!v!#^gI<%_U99(FuD!T^!R+BA<EvUp+IP7D`2^8~;o_P`n=kv#>vZiEUx5K*vyNpP
z0nJ*LxA7KF(K=7!EuO$SPp+954Okeq(&%9xzg?&h`4@vkMIsi|rco;3zLDu@1dTbk
zrT$<I@EZZ^0jfW`7dW|=du2bl*0m?mNekXaKMf*gtYJ{_AHqh$eseq1zV?-2j9vg!
zkwSe%4K{Q$_#pI*+g&=oLp(W%hv>*Z#;=V590O2vTn3z++Ru3HwodwO*&ofXTUJ|l
zPQ$`FEa#m|n%>nGK4gK)?<Y~9y;5#ELEQXZ-t@R%@b-N}+vdk+FB!IU68$}3k2eLH
z&2`-@z)XUB&{hYmP#{`T?WEg7{UIyG(o--pveSIg${t66<2#vgFT=3d5c7tdZzZ31
zfqpe^{2I7tyk83fRQh@WCztq`OxN>&=rVm`6`XjygYAZidra^4NY9qDyw7#*wg4po
z;#GawNzOR*DtSIJbG;Ew1~jchOSJ9IRKnj&`j#R79K=ujzZ&>$fDHge-&4TJZFkp0
zI-MU#{?BQEavq|unLP<vT9n>0lBnHpuIAcS5LWE;14Y@GndRz!k655z0K<23PLT71
zq$hlAOwMWm@EL$J0IGiN1+GoNxYxBO@VqMrwxsL&CHN-C7;QBSE9BSOVugG;R>-kX
z{;(9eJ73&ni|a|WbiUtw$%cicn@#P#zyuWJQ5J8kTv*~w^e1OlTUl8BGPu{9jvb;L
ztb&<PsqW#G!Bg>k6g1Wa%>kwpz)_XEp<2z{Y?NakAX?~6t4%eNLSZLkCJcI~%`yCC
zo>V@^F;}qUCYJBP`cMS(IJq7Xut%bB%|QFS+Ts&fe?Ar24lY))rx=YeU$P+=2=ZLl
ztW6hKEqGJ|jPkV+coX0ffXdfvfRp>~;a{xZar~p)ZDDW7sb5G={hGM;cXT<Z<;LkS
z83B?eqLvTh<Hh*5nMr!~AwD(!&6$Y(IzTf(<?ETXe(h>N;$I{^-+UnbDZAu2w3Bv+
z#-C%cA-i~P-ES}{ok=_A5N;l^bj}<Sn3{k!EYO?11B3B5IorXD#r3c8H@EBJ*}3BS
zu6*;pslKM%Kk^;kb0=?R@9^ZEe8xLGxDyTYJAB?w{s-qBZtjG9?mOJx$uVlg)vGNJ
z!A!)Lfu4U4kh<wCUSgJ9A57jDtl^oCaYZn=D(F$qZ}-}N(_w_dgE^MXA~>mJ-{Hli
z%kc0_+dKXYV~90e&w47rw*|aU1+upV%AN|?-}y6rrjZG2U>?I0!FaGo*4+VqPr!S3
zAp4#`+1&xVIgpueCT2#>aAqi&Y=%vqS!h=Ft1#31rFo0Z-uhsRXAUt-GfT`KW-8*U
zHghtwo%_A!b(jx7z-YMijz4#&zvLaiy)|GTV{h`>tGxDxpnY`^xeH5i8x1}j8`b^!
zbo&B`1zo_m=&aiN5##x^@O32g)-*E+rp>T|=9SE`c{Uqq@4=AA=k;g%%KWzPtRO6l
z2eSiZu+;K^4iTC+SU5LS61GD@*ayJ50NE&@e71OG`6)Us){c$<em-D1K$V|ez`p{_
zcGt;vzAej7(V#BNPh0n}oxQC;&DeJKBX*(S{Z3p*iff6uh7Q38JuRBH&m3)C_y}5r
zfriIQZ>|HW2cw7MchWL@CSnolsUUwc7~<wr!PITR@~49K=HTQ6Z|DdN_wD<G>8-&&
z_Xk5;f)yB%jIvA3uwCj4n}ey1UdfD+(0g?qGfu$D$>WS&qSNDRb%+2%sVKuh8MZi#
zbiEH$9sP~iAY3>o`891)Y(Jn0_#J>p0E%D#25wA-oVMGqtNHMhuG>*;3CwP&p9EtV
zr!QPGuWre_g=ASNrEwi!$Qm;N6@YnwVJ<!jej4=0>^E=G#SAO=Q6sq3c%5liN6Mgy
z(&Hrg{g~u<VB##8n1Tkx;MG>1ZZX>oM=LQ`3f>>7crcRtKqS}_sq|EPg1pj~PU{Yp
z#@S%bNyd#jwKBKp*oMx<HZ+2E-JY=I!wjTR^}pu;e;Du#K=GkuieDQE*y73+U;CUa
zH(Td+S#H$wO$+-3b_`hyD-zca<;|nAaU39?p^3!%_^Z8M3^#5<tASbOrIxlgGMHCb
zL4PJM^m?%;pXb;=hQmLFO)D#8CiM38PE6V0t>@wUVEr$V+bhsQ*ekuhOg~QvW*!g0
zgsI^GRGRWs$M>+;$Gt1Pfy=y3iMiR^dqnlTupRb<zw+2$P}w=sI2KIX#thhS`4eM<
z^b3sN5&Lf95LH2qU8<K`eaxNAN-|*^fSEd;shXIRB>A}!yh;U+sb6^(_y>U90M)M?
z1Ws<$Hp$1GPfEX&_8U@0i^XDM6MIxF(`C^z-59#$UO=U04|<k_0>{EYH`#GgQy`KO
zB)#ZHk3edmZ(1HLww!JhL)ZLKdcHM6jBJ{cC7rd$$LMSX{#(F>07d8Zz{#od-_7`T
z7STBYMSjjXRNiM?Nh91-#R#{VYdfPf!Ywv@PLVkjT``I-HC{B*#TpqK0~=Pj)tXZz
zT?Y`a;$P-e=r#hJ3Q*;-75J-wi~lV7w#DraM|E8<<NCnG=Pa0oj*sLy#R_9H`@1ei
zVsy9(Sv*u+F`WP&QctLx+rm~D!&Vv_^%X{VrQxhF%$3GU4Bw+=Wof)H-GjNd-%9x^
zI&68O0VPn>$_1S?$Ir_g4|I=t`~jX~6zai1z)XsGjU&@iFG~zBPjoI!G{1<Zn(21<
z<Q};_=7AGO7|R)ywCAy8<2<Yp_hZ>?u<;P1jsq5whB0iLgvHK3qKDg&F8P*o0?wu3
zp32=Q;8Or60#trp2Atf$bXjl1uHRX?!wx6J5YT)n8(rBgdXuqUXD#~K>vbx5x0%{?
zN%bgLy)b0M!UpysJZP{mpo8BNf5iYNVPwb$M)WC6rW{{_9RG%6e?jDTQ<kKA59m_k
z9(@|-hJc{}mEUuLF98@2$^2I3a9`K$&r}#Ansbga$u64UT?|d_ae&iY$bxS#q?|p#
zRMR_btAPesUeOHaYWtJQki=pfBB8&N{+3j+FDdu0Ny9!)%Ka#5*oR5Ee@Y7ON(v|1
zDI(wU_*}k+Q|b;d+1~OBJs0QrD$HE;^tpon+p}f5cOgwVctZI#^hC%c1MUK-boZW)
zeJ?;$ROXkFBK`3%OFu5(=3{s_vSA){GmfoqXaJky-o-@oF#7{z7K=`)(+|Y4|Jp_M
z7#w2vNeWpu>#wpab=It}^$PDfdH0R<&J@prS0Z=6z}WmTqvCO+>M<kuxDkK^>=jJ!
zVO(MBVPge<%&2<Y81k55KaSF^z8j{#_G%-ld4@L$<D38w4yqVhH6%DT@OMw-6OU;e
zV-5Mj)8lhbA$B?Qq6UA8d8?r!JJ%S1rfwQ`Q(%C=n`-4nv#><6hG8*@dp>unU^UN&
zU9o(esyX2rR&^~Kat*VaSu`IO^2`L5;HmVQr&JtWHEtLV3<OJ&X;(9217jl~M2>09
zH;m(K&R1lT43?P!)5G7g(EDO41|5MFtcng7LFyUifqR%&*pP2t!M#<UAu!+sW5N}_
zDnD{PP!$YPwG}R0B=da-@>I2NNhd*f8Q?^K%J+AH{~fU96ItHBI92BNYnL68?@B&q
zmdyLuNWatUoj-3uTmF-(vn}>+gY7ZKiR)%2ybq*TvK!WOzA)d^^-PSNl8sjxGVyZ#
zF{Au(qf}%fwzIag!93zOu%8$~6F0;QqcXHk>W^BJp$paLWI@c#ag23N<}FTWoudb%
zo3KWZ>QCj>&dJ<(+eSXUV-E~ZvwEGTH>5ckX0b0PY03s(zLA%1;PzcSnFVZrAgG4|
ziFUFlH_7J<*g26BYD-Swuaa3Obj--2voI<+fxpc|c=4vrGg%1xxKWf`h@fAtJLPsM
z#>}8txC4D;K1@3~mJg2sFFnPt4FRZp*b4kTz?5AwA6j}#{@>AAKhq%xM6=nujK+iR
z+^b!V%z<Fq;<@#hn=PK(yKMG6D1XGZh5A@d&(Lb+wHWu>>kZaoWOsXgn|J$K{&+Pz
z<fF^wqhbG#voC><qR9U5s;)lfp2_4sCkZ6s%0W27Aq2Ss0!9HvMFlwo1rj+Fk9DJX
zAflimqM)#Np(5a_E4r>k78Q?$c%ZB&Ag;KwfXXWR+m-+KRdr`3A+Wpu&gXT%>6vuB
zdR_IZ>eV~kFMN3AD+T-s5Oyz_ZPc|RSi<<s@pzLSZ*OlqyPciRQ|uM2ztIEcEGu~7
z5_FUz;YYIRAa7^3Ge?*fuQA(qg|ENJ>K-#<7QiTpsqfmEAtYxR#NGS2?qkXK@j@RK
zSe}?w<w@m}^h^sl%~VE;pLO1o9bquk)0c3up0kxq^ug+qrZp`Hr579Pq26oxMe+A~
zEAR&a8vyQm{RH^m0Ir?S9>?xHy)C<tw%=<#?9s=J7~R~PTD)A$ETqY<GL~=t4XFhd
zsR?klob%?;Joli{T|W);ecey<NOZc#$e&`lnG=k54EzPMjl95-Qk;TaBsH4;_f6{q
zlb@z{HQpo}dw5oL=8s9K)E)jOQ9XbOK25P;zkoevQgdocdn&%vTpZ`ib-)(`9t602
zc>(yV0GBVWUD|X1eS0UqBp7?jxnLvB1v>x&7gKc?E8(9d2Z>5;E2=w|M>dLz-;1ng
zXzk<WDL%LwYT8*y1-DREZ7~U4%I;c8?|D;|s!#faczt#Nzj>lx^Ia0Jk2M+NDWKZ|
z)o<sIQTueA|J8;ZZTme>t{XCM#*F5U*=k%>w(u~z9XwwdgN>X6&w!Z|XQRu{X!Eyn
zbRGoHfm8faQF79!A}(j-m~lMJ8Y0g}<mDKXmm4g387t4z<argBmp9c9)~ZXMy!XC(
z#24z`@6_cDby1J#EPto)pVWhHQr{1j-@K+iY*&|&^4^9Pzf(`R89$&G|BCUV=<$*$
zdr^d55`%k9=>32NCCz<Y4A$Rgz+!-3IWJ~N{KV$Fzr}Rn6CK~}^@wF0W6-m7D%1Cx
z;y%I(^zm{oQT(Dven~tcdKL9vr5YISq`o9zj9mpgDX0qZ^djv;aUpD8Ak9qdHrl0d
z`y2^VCD<?8BaBpj$+x1%K~eUt2>pm}%J;&)CZhM-BYN>_kq7lfF7(?~Vg<5{`!j+A
z!(FrSAZ+vn?euT~wj8=bmzD4Bi0N=}ot^zCHsj|YsU&_A%;Mf$<Xd~vQ^AuT_Qbs5
zq$`jsC9=Vj{gfxR-jn@=r^=go5z?$o`y(%Yi>JTI+r0uquS@=I_4w5)`?qBsv%KdG
zG%GQ-_Du~3-(kFiEmlBFoN+&g^|lA*_v3gKA{&<*os1yw8QH*~Jjy{9$?}{cB$Zmu
z(t`XBmKNLK@$)X2E@eX*+a4JgJ8kiV8$BsH_qDuV`Kl+p756h=gFc}=B?n$91#tK+
zGP*>Ad^!}e1)?`<hFrrI6<ZZBe6sjQu-r*}e(4|W@XL0J9(d7)p}a5VNn!y{@F%0<
z7o+%RBl&LzteA~ho;Q?k2ceVq1bpZFb5LY;D99^~q@P96=fW6w9sEFoJB^C>jN*5V
z)b}6|L4qD@@H_fn)49Itu@-u)Z#>p>wsYsW4Fk0-E8i-EJeeUTLkX}St|Pcy$g#%i
z3}t&Zzl-x3)*<G-m``Nm#MOK*LUM2fGC=N$0oXX?4{-T=OgFkgCqQ{UXYrpH-@uJ=
z_GCVTS7X;;Zr(;#u$bj<WbKwRUfp46=Yme_SZU9})ivYGuIu<2>#~vcc!v$!!A8vB
zH(?RSM}<CNm7N3Ejp;dhuUy)_Vqgmhno%}bOwb>&%xvR6ZV$HJXWnd23@XiEd9XN;
z9&8twAMOz<gC6h`Jt-F1>+vt+zOX-yt>T`rx6HHGH1Fd^*eo!{Cs#y^lar&52vMZ3
zVyP7=#i^+&tC&BVWy>U^R7Me&D&v$qoi-&dPqzWz1vm_F$A_U)VLuG$_Jy+!D^hZF
zT3h<Vw&m#*xKLh#><H5!-rxz)V%UsZxYW;{Qjge3Elg`+?C>XL-tZjE6iA+|v>1Y0
zu~B4lgX<8U3-~946%5T;R$|Ds-eY!qI3){~$!p|!l00L6ZvDg14;jWkV6juk3lAFB
zVS^trjKlbx$MX&ux&MG?M-<A5@P1<q4A`>Jejuebaio<(yO_!wbbd2lBTYD0A}k?n
zu}3ir_Ns;$f;CSL>%c&YI+k9f_}d8Hg>j44dp`p=FU5ETpx+UX(}2@)N_)4q`Km@D
z_yNzG2}^yr4mgU(2G*Z+MW?}}>!9%v)0*reI5iALh6T`l6N9rRuH_dy?;qvIP(IPO
z8u-_Mk<;SuKW#eJ=>T`1(Y3SupsoFfw&|>&U58~QlAV(inX^>o@NIZbY$2`k)$&{?
z&+X)So;)`wrSp9G;c<BV;kW8n>Kxo6XHwq_ITjSksYNgW@0Eb(CE#fZ`0HxeIPsqo
zALP|O2M4j`DFVp<2KnnxN768)fC7%Z?1t`z=cleGnIS#XOw-d5D;w?0f?02to###U
z_rRu4FP<j1t-PM#pFI_?dkP_AU-ATB^i;g;Dg2`+_<K(p)~EP(rKjQ{PvL`};Ef(V
z-AL1eNECXPr(&6>@E%XF!9y8HgSUDr7I_M9^9276^WA*>T>yLG;CFV#QM>R5JNUUB
z{LHS{V;6p52b=8RPP^hgyYO8*xZTEkf0bs`{6>>?;%~?X@x8z_s}R$ypr}CB-k{#g
ztS}0px5%?AtU@~oB}av)&>Qr;P7B;Zf6x~URs;&M#0`ckLWSWV^#;ttr>gd}8EvK9
zX;1#k{8|sdc>q_Q{2q7{V0=i)5pkZnF8uH13GHtUan@3;#EHAaYB|&51)GdF^^FGG
zWb9?~a<}@_S$@cq=io+kkAucCEO(*Kz(k_xCDBWy>-Ay}ErZK+819qd;}H)ejR+dH
zoklApGYbaHP|#(F-~w;OE#Bgry+t>Ado8unZ?$B!bjI(rFav-(X$bFhpA}wVrLfE=
zFiOke%oBUb!m#x!X^%#ULkvc>YZxEOtMt>&1q?G`-qW*4YR<61QNfB4P^>MYAkQyT
z{4c*eF3+a|UjSGLaOKTA!0B-H(A!>Da=nFAZo3~7-yJbCM!M$GOuv!ctIMvrNp;tl
z{1BmCAV_ONdlGv2D3YZStJ0B|E-Rek@p}yqrd2Q>s6;x39G~S+@>xmghR=r_b}Y=o
zMh4~=V=&w&`;tgl4Hkp=O**uq=SW>P(Z6)2s&C1RczZh!_;r8>0d9K}GvPx9&>TOy
z%@pz-$GZQ%y^$S9yuHEL-~2@EG+C3`PM)7N<)vJnvv<m23c*G4^>ooee}suoY3J~7
zbmID5I%cF^ZNGOc+R!;>I5P|O(yPq;`_1$R%ntXNonarG3uDsQLonf@S=A6;^0;X~
z1{-;rVbSOECro>t$^Q(Ieil@(g$VRm#K&V!*52dy#kSM52!o^b7g{J{lME>?=Hb7F
z@~QeQ%$z`mPuS%^LiB7}PGf^8pC!`iWuG!=nK=Wc5D9WADf!hnNAY_Fc<JhG-v)jR
z;GGrc_szf`11xj&m+xGl_`U4EUr(Ok<yp{Z{88UxutsAIlb1t6US3e2zE+ndxKIyX
z=yA1<0a_ern|(Aj$VHk74*zU#IIFe>>V8BZ=+wOgX~>d7dO?~$AD-JCLP_nf#N<BJ
z-z7S*Ajg-=Uu2K^D<AXsdDI_R?DrMvg&uC`XO616kNGomz3H%jFxW_T9#2k7nW|4h
zT$o<IBqQWA+QF5<>H_|*X99*s_v_S=Ymoi8n5LMg>6e(-7~AFiZ=nYU3w>aQ1VZI;
z<Qm22W8k67=gc~^VL%6f+mE{gr(@~K<H@LA?DW`y6DLiZf(aP<Y_z&744Nz8Pj}Gx
zt@ew*0JhZ`q6=Bdk8AcQtG`y!(SUMlP!7!xRsw$p@CSfP$6LVZ_~3mdN9Lbshon>@
zwX^Hy)=jFLK|*5_dtMnC&E81nM;4hH9W>rWyv9HYhSY2<Y&t{P<PG*FoAasSV<%4w
z%4xbz(Uo2wpSN@cJ{T|@;L<e%I32C$EeUdNTHTzvvnI}*GHll9QLtqrv-sn2v-s|E
z`gDM68v;eJ>h2)AVt=Oq=8MUmG%E=~lHdnJZV@D()-utF%@gDvQhmLmZ!^k|p?u=o
z=fHmi{2#!juX2u}?<Pn7COdJF66izRmAH1l)rgk2N53uY3!UxJ?=|IRhxmd9C*!^X
zZGKOlj2&caj5QiI6WF3b%;;8UL{e?O;|ESjc0G{F*v#?MH}(Z$0`{+X$Rx3ofrTS^
zAtfOcQZA%Uwfq!-_f7<IJt#UsA9%VLP^tGY@!Jp@leFU$g(5u2ho@0&1N_lv`H7rV
zD1CGgX;*{zk0eZ{bSz8ALCt5!e}j}T_)UO*fyuUxJ$+<XvO}ryU&yDx-aMH~ZT%cj
zPUTWs@EBB@Rf;P7vX5C|ci=rdVfZ~&!Y&r-w)9lohu}msR!Ol4nFXR;4}|P8*eUg-
zCs}w-08i?{2QmIA`aa!K-ZlZA*)dzX`<=$IjWCeGCB|bT^a=dRM;non9pp;Hq|+2)
zlA+<yCqp(LWz6J}pOv=_eFtMjoC)&*qpQN{zZ9;1MQ8O#&sA6_=NIb#Xm+8u_%HWA
z60do=W6_LP>7-u&qs|`*@D)1SE5r`r4!9GRsCK;q?bek`jlgf3i}4oVj<;7{iF|p0
zc1~Q0M_yBMVcRL>KkZ)0_C0S_vmTAS*$?>-lQ;Xt@|-5mc?o!vp77xZmhj;yPx$b*
z@`+FU&+hW;-^%lb#D7$Uoceri!n5-e@QxDiFV7F)q0}4i@qWpx_VYjUFL}TH{O;5*
zxwW4UL)4(2@YCyn2HFvwEX^E(X65zzd96Jat*Re7S<q|`-ID>`(-3rFSXvrsrpo=^
z8SZKwu)0809qhkkKq+L5X;<vQuXPyDWMP^ml0%WvwslF>#OOA5{vFtv^+G}KMf;2)
zH7lhD_QF>%g9nS!C-j@{HPU@qx}m3g(k(H9^MaAqC}U(&tvBYa6L1QHQY@Q{lJubH
zizRg?6L3H@&>LZE#d|)^qK{y^Cf!QUgH;O19fO6AkC!iCHWVIcdiW;ai#VoL_89zc
z7;`>aw>$qm9d2ewB$PhZyBz|-O9h!Jm;xif2lrs1A2a7-U*buoXYFOMzrZiwX5t{D
z9IW<XW_-`mFUNwPce<VV7BlZK^j_0D%ovhB4Yo6;2Z4zwN3#Ks6z^*+vW*2$)$|t_
zPD^?E{Tx>#-;>U=Sd!uQc!|^qaU<6V=(z^;S9<zl9bq2Q(1ikUh9m34ki3Shan^Kv
za|XIr2%VK#832mP@`%o#H~DuV4t3p83t0=P|J>u{RqW54_hWaHMVqvnUiv%LpZ1`y
zxZ{L*6=LTB3IXmov2?x~C+6;R`q5Wy%-5ABKrXFYjS~f%#M8+e1=}PZWb(2=--!K&
zBgX%wYac*ol57jFUu2Lj!vxFZu%JspNy9(@El`Ima{#Z*0G>2dj5^h@K%zET<Q3~3
z-GKm20)jOYtvW+=4vq+fMHK0FVThXn6JZ1S%;@Vv$ar;)$SaJEF~TIsY@x(#u=!d_
zdYEb$1VReSn`D6i=LV4v!;9Wl7)jEqAgD93aw0JvDnv}GEMLIxj_4c+_7N`jW*MQ9
zMdTHzgf0m~!bxb-)rCYMO`=x`VE2E>L6ZKc1rW6TSDf1ijbJ|~;rgM05$71^cW{oa
ztmT|9(AD}myg{{xBY5Agd`-U^zRiG*0JlBtxkj}I@vdqIH=P*2tE6M=_RvbMzHdk&
zwNnX3CG939NU~Ll;xkbgmdYO;RdV;4|5b2KmH(Y6CPykM`DL1R6r1}eNJKM4(hSai
zQAh^tP@>y+NfX&-L}Yrgq|AUi9R`4DFS59VE400th<9(o+#q-}OYaDuB6#(}kWNax
zcJ}3*!vs|QJ_RxcesktoJObM^2*8ndu)spZyM!q0qJ(6?gr=W_Qkuv#?Q3TSW<jEP
zNK~eGpkk~}MoD^mABaohqj082>O9As#$)Uerss!@(zqys88k$ZHP|<Zq)d8Gz{@QC
zHIhe0z6CLp9@NwIq(FlFS%}J`Rds-eO9X$+DznDoOp@kjQ+#W1?0f%-!3vv?q~#nP
zFR6A^b!}X(Tm*bB;A()|j&=d3!<`?uF>lBG6V4aYr%s<Vac--<D~?=+j~J^tTf<M2
z=aH-Bc=uORdoqCOCk(%J=JopUW^ySoEBdLI+=;-T048h6JP$p!(0hi5dTI((@|EbT
z+)jbnlebq%H`)E%E~UC1lg2jpGX9Rv;nqHqbeVKa_>-z{$#wC5Qw#iR!1VyPzOMtP
zW3dzW$<<@FoNu?PZ(_f}qUC$FXo<*0%U4`pvgA1?&xN#(Ibs|%v?JtifRLf^+ecs_
z9!`a2f(auQ6Ajs8A{C`olzItL)n^zUs0JsY0ebDEkhhSOfJwbAEW9zUbU+nf<Kh=+
z6W!Xvm$^~ZcLer6W2g_UFVcVG*Gd7E0Jpvu0H?!!zixeL@%5A<y}KkjTM@ll*LDYs
z;Oy&>dpR`a&*p=%1D4OCIuB)#12FwjGaFAjs^2JY_#>|>de)#kS8nY9{uyAOLj%nX
zr?v9?X~B0TuUhYZw%~qv9(-QY03pcBBgQKf52u5SFP{poR)B++9@XU*vaI)}t%|Pd
z>*IWy0sKb5tpJx#ZvdyGHJ@70m(UN$#$(=`R--I7`F~ZL{B^6zu(gUd`HvXeg|<Ef
zo_Yh=N{c`|&@hJFh7c)1%yUw(cp47t)jVvEA+kgJjF{xG+ul_u)ye!@#xG^HqRMFl
zuc>;4e;em_Kj7y8E&$N+ANk#OeOmH+7lrO1h6e!c0cfA7(=M*<4=KiHV#a2pA0vl2
zw4k=x1%^?U4u!E1vdAVu_RtBhD|+WAwAbyR^L@Za0QWt7<<Q>LDlQQ+8(bi5_AC_s
z8*NpXwk09^X^2LeUEY@|zy3W=IVBBozKj8WF5m)y%a>EcJ!&y-Ht*LbawQ2gBx&p5
zIuMW#q|+O!erqSh+u1sl_X^<80JnbM0;i*OJ3B>x+!6l&=#Oi*D|*Uri1Xnh;Ijc&
z0qFS8?L+DvPTe0LNNgXfZ5(CVp|IOFl&I?>J7zH69@f06==%oy1ToM;@@qHfIt2Iu
z;PNYS<H`87hW%Tal6RMVEvWk1mt1=+0)8R93GIngV@D5?i*a9u>wbPNzY0RjjjtVk
zThTEN<+yU|H^3JI?sCfhk9=ye-H_N&(oPgtjgeD{E3L_)=LpJn`I5W<vCjZy0GBV<
z0H@=f=hXaf#qZl#4<Mk}T&ZtsC8rQP^JB4v@=x@W=c+Ao)c!vVSP_icm}>=XC_r@B
z@M7!V&qIc##%vfiCz0N`hzHX`>9D}Sq}pp4`6Wfpu;2<UvWSI`Ka`$5`QI3?k~Y6Y
zZ_^IN?<Uai^7}{Nxi?|G190niE^s=^Pp;Q2>DaP<Ef~L)tyLbP!6jtOt<LEQc<K@<
zo7d>tx};8W0LjGcFbxZj3{2bxBC3^b`mola>`5Ur6iR|-CFDysync&}I^Sd*Ds|WT
zAMqrbRK3=L?ilE%_Ph)Dw}2x6w_aD?-15COI`8jf<ILGpu9%07^VTnL6MxIv$k`@7
zLY}8@lrQi}k9KF2rd<Lr3ie+R%UBr2b$6njI33HSAS&g->e<GGECXqX6SQs!ZAhB9
zBJU76C5vJ8RgA7nQ?gDh(8V_FG$W;Cyqt~FyN)ZYl$wdA28CeHvkV&=e3jtq8J|us
zKekKpXFKZezW1Mi55L8)oe6OH^C@sT8lO?^d2w6qI$_*O<WFJ)$ZWvm<Tzsu{2q_I
zB+GNAJeMZi$xXo3Zwlm{4hi=&j?1=kS3vt$v>VzAwy}g4zUV&e<-o&)r|5#`*=Is;
z(;3VK+i};&gq?3AH#PQLa+*~grC!p(r1E^T5AR@RV=uV}<dj^Mh=AP#N|U#lk>X3q
z%*{(O3?s#p67m`;xaR5xR1`MzMp8UEhIf>8CYXvysJ9z@2Zw(dw^SEv{6z7&{ML9o
z91nap;3|O2=RX0Ld~TJ`{bcPBmW(i}Z`BMjhkRF;v&U+Au5u>6LVGEN<~x|qppkim
zt2_=s8V6DPWM~1>!4+6mVSg;DL$#Wd(Gg9DnpC0)xq?5#Y0t!+^gtebuId+F7;i`Y
zfS(Vz7~t0LUf^_`Qhp?~qlEe;Hlwug?_iYEJpajZ=0O>94zwO&qf(r44($Q@5kL@i
z%s?<i(smejCe4N5i<ss!te_`q1TtmL`IWlsIJD;rRi8beHwJo1ZuoBVYx#g8fLovQ
zfz#1?-q7NGAy!C>joH?(YYjXzSJT8)4VfL)khx3OK1`LbOTH))_G)sPj8}xIzkEeJ
zBO@Iz$Ni)InDKl&P5%)FmFU{5>ahlNy8Zhvz`p|g-J$(Ij-zeT-|}@lpE%v1DXE%r
zJjk^h(-L2W#|~o)PfkU_e#v?{5#6&-(OJ7F&hM*$Uk|tu;PQJBa5`GgLtF5B8fmN(
zB~V;#9W5V<FsDb1OSI?Ga-i|U?6d@1d}@-4=hl9y=x9PYF28;T{x2%`c2zd<>y-1<
z6UtBIm71i!oTetJ^-g&;c(&_*Fa!8&fVTi{y$ctsvSSY_`Fq64XVs$K%AeiQF1d#5
zm`@foim&u7f;Eb~6VBBq+<BRwaO=c>!yTXYy>Y~&o!u4Nwzk<`bcd;B#B2F5vWa{%
z-=FOr2IF&!_b^3Q7@qfvk=eN?pT`2Y_Q*Fon8WZbyz0#!W(*GHxJw4-bRHUuqVZ0J
zC+VNCO+)W{!U6SO=7SG0e5U@m9(dpm$QJ;;6CH5po$x~g)EBFL?Fl!jYxWU!ZNaZr
zoO1jF$c|!Qd}mMb?`^+i%1n7)z!EPvDSkbyE|<x#K2;wsmmls?KVPEm9aNXQ)y<)b
zk2{#>H1C<7Z10_9Fu20<q<VXA5fzQ1Y>P;36u|`ixaEE*Y82PFc(_qCzyubKE=k^}
zg|;7FAkwB5u?vFUlw|*twlrSf3$H}XKH#D){$OW6Z<9-01g46G*xxW<9BZWdq3#e5
zkr&8n3z6x($=(RY3fSYB1<B+|*3~`>9XQ0hnKh|3$+_Mrt(>ttQ0gDXdwB!!2Mr1F
zn3?*h=?NDGf_I6EWuojJk=h`F$MuREMcEA^_3wHH?;0tORtgaec%qoO<^k37;lUm7
zN1;DTDS!bE1{celGBP)i)rFU0N|R&;qQS3u#ou|^H@xU`Nc1WrgG^Wd!Yi71*-jpQ
zk{i)5H26WdX2aqNR-yZB|JSy4z$WATz(4H%W(v$!2k{H>_}V}!zud?)N@xpUn7GSF
zYVTEKOE?(8`_4xgipzMK@BH8tetq->CYG`AjL=KW=$ig}{EYF-`9-`>#&2nK-@zO!
z|1<4u>rU<sdsbNfR9|n{VU-0_r5#pTI5l+KN~(yIB^5=kfemO`ayZ&RsgaaZK!D+;
z(Xr;3YUksY#O)H70Dlv(1K`So^rcE34087G208w}|3&+Tp~0lf5oSbMCf2*|(0f>;
z{sl$qjwGD(6Y#|Q7s&h87ZBaw8?PGLE3k3VMY{J=ex5h%M-sZ^@!0$lP%V-@sEPd~
zZd!Jdfj^)e(<=#{Bu`Qr0AoiVE6J9*X-0^%d1v;Fjy-*f`BDFWiXZi;uPYxP1HKi|
z1aSL3y9+VQ0j_);<JdcV(AK_Y+x>nrh77XROz<qgE~map9M;(p{d{@Oljo6#v6uh7
zv6kzF;ualVB4=o;jGm^AdRZnE<%qjbQdkHl9DW`)`g@2h>?xPQ1PIbC*I(RI_mY<G
zVJ4o$GK>vjPjVrn)2)Rjk=>%BQJkTz`Bl|>8tUZM`!(R_+>Ouo#OqytFKj*l|GH4g
zw+}ihe~Na6ZNxu2S-ns0PcdiurL&+=n>~f%6E;Vi9*rg>Bi|Ps3H-r-IKYks4jb}v
zlaQC=>gF;gKXsPpvGRP0Jin?Ze32*d>*cw-JgYnEypPLUW8}F>m2y-)x2wFTp8hCq
z(L4Ep-pLw)AWbpANH!QD2eM!mF6CtL77=U|TN%E2P1lQIJ?Iy2Ko0k96!+uOLyFsw
z93?wIwtm7wpE6^MsA?2A<3EMGvjY$7(<pEb?&rZz8EnRJ#yF~e2XTE&_oR7yczjqt
zlp~^jqd>tB*1I@cMlS1R{2NnYFkPmP_fQ+^$1cEP@jYX_G-b_#^LQtS(tB9cP7Oy3
zbE!3rfv1-Rt7bC%A7_V?d&2zR1D6Fm`zbrN-p+o)uJWerCx?cOp7aeKWO8`gQ)9RD
zV_XiVU^k{f<Y03c7OMAJ6)UXb`>fzH%S24jd{|0m__KIwgD3kZJ0_;WcM#qRGg6bE
z;Kf_@^jCHNddxYcF=aS8wIW<0yiePG58C-yG+c7n?s3E}J8Xx3wDbOHclZO$y9dK$
zL%+)o-EA9xva7b*#;bPl6<eq~UL>E&5yK08PuP8$Y`)VDb`37JL$}*>j&|y7?y{>s
zwvE5qsr&2?$@pXVY3)PfqJDn*FW8&({nPAm)D))mvuXZlnoO9`(?i7Is+;ft4^=F(
zi*K`wesoMYt1`%Ip#UBj<wsjNLUg*r6TXuiDwbfZfVn3e+{*KSA&#Zt!z{&$buTsZ
z^b%}S+q_FS89V&rc+BeFDYl{YleXC5Mz~b8cG)O@)edjP{mj?kN>QGHz`@u~DBxot
z3yO?@5BmmItk9p-%P<;z&K$m%^}IWocU>s%q7mv-hK9?(WAH%#nBw^kU}uYs9Bx{R
zncmMtl%#R|CjsBf9M6URnfy$=f?=MYm=|{O-F(aR;6fH?WZ`F7+I5*dGk%jjDRREC
zk!4~D*E8>4R?sv5bEZF{WB;V%V%A|J>x_uH)s>@r6m(zB{e_*YC{EN5B%Rj4u~d)2
z7HA~AAkw{Ao(&vU$HlNZ-pYd6f!FkKG4xOV&>JkNZ{&Vt2*5xWismJCh+LBzN-@%_
z(v0*VHtRweI}pqzi)X`#F(Z^3OsUST$}w_NbB^h;w7ecMU!EB&=N0+I1x5M0cyJjH
zgo9;)Z%lI;xlyDc%$T(Ky@!NlzhE}jrtqI2Q?G`s3)DEeJT5oi1O6r8-vD>KIOjgU
zHVbgmUNxWI<M>S+Xv^-jZMoUXZ-PQU?lfgU$2$diLws*M4dn}*r$@ohmE$_Z&b7MP
zdv$FU*(k#s!Yh35F@L~cOU{JWH>Un~)A$C9Jj}KZnAW!@KWG}?;xoJ-4w|{&BFdc?
z@*=#?%<=WW=-SeO;<p*7KHMSh;k5aFtB#3`bcz^&HL><I3<X-bLnN~p11-)G&R2Zf
z4W5+a9?h>kD-eqbFbUxD?LFW>1Ex8C@6#?;<Bok|zQAUEy}J@gm|wTB*ERO)J1IE#
zUKN7-ZuP0Ny!SMh7xf`e;_x~m=B~$zrdhQ1f`eK;1(+gndY?d~M6b4^*%Ca@4wGA0
zf-U&JJrxb!;^Us8e|dT>x6*I799!_a<F?={t?(+c1>fihl30#<1ji=vIqp4Q>{Bu<
z_>!i9qr@!~bom7P@Co|BFy2JZfHD+c-=?AXeV7VU`>icj?_u2i@%DQs@FxKq0q*>7
z7jQc2op`WE|JH_{x$SmK_R=lX5m@0MGti^@an2g_OnJ_8aa!a(DzwM2|4(M(Nm%2N
zRYw=z1wOwXY@v>V6;M_vmLub${mR4`xKXK!O8Oc)sQQ#Y5N}r#fnN`J2;jD>?|^$(
zA`X%hH^g@0aF_h|?W(mMc!T-2IBu{8vz<Kupvz14aoKvl=PVyngAU}k@+tJF4BBuT
zK1(!ffJ2FwmQSPXEWVAsWahtMrf)VoJa2Y`V_}uZg;Fo}a@+v?HPhafXaN3(X}@mr
zon~x@YwZ0#8GBzV;H35-))(v+CZwVFr3T_<Y1;SPG4kHx7^62EdB@^5-sPo=kMqH!
zYH*hN=d-}S0t8mY`M4PP7Qi}Z{k!>L)j!v@<wxCi`*8e$24b^)4o&;iT9}r>M_^fh
z*knh{gQmQ^#pI<xp5Im<Zs79M1&5^sTrT9a3Ts)bQB3IHySku%Y4vuGdo$D^imFSH
z=chL!pj*%)bm3=+QT#fZR^00AvC!B1R-bhfqIl+-<^P9;Xhct6=qtF@SNe;$7au5W
zJ`|>Fxh&s?x3agRnGuY5D}$v_iCcjbjJUsJk;1@K>Acv-S770xPy2do@b!M$7fLT$
z>kFLbwdJP4Lo&?ZRhZ&jNZnU?ARc7=eP+GDy)!uG>HV?b%SpK~{TY@fLlG_)a188?
z+1LcpTQ3l$`gV`m!{}{>SdmV8qw1dOeWgDbkK=R(@Ns|(0d!E?U*Bp!^}krZAvkd>
zckb{<q<y=Eg{ZeSAX&M;9Fg+FSkrs3J`cj-DV!AS1;v}0Qk8;jgFp(0X|EmdCMEN5
zo*h6Mz?$GNG)3qOs}$Y4L1P%7sh#;B@@qMO0)Q)jCIhGAsFR<(&G?pWx32`N>0z^`
zLTn*6(NY0l^yiVVe1Zjs^zV(sruH$yT4sCU;+vU*!QTjE;Jr{x*q;0{(II4|W*M;l
z4TtsaH1y*SVJSQouS)f#abGAXqoH3Z4j?$4R3Mf2RrOj2x~rUeeGYst;47yt^ghBT
ze;<^;aLUyKE=8#CnF#7qdMP4`&4%gCXz4hYup5gSC22>o6J4F8)jH*tua4X4PXWFV
zuo~dXzn#E81&ndz_=@#Po*y_-{<WsV?XRsjg+T^_2)?F51$Ny@p#*PGp#smAAI{u~
zEL2C4*uj_Me}KO#Dz=J#uZrMSv6^W^dh%RE<wC+YvrJU--1T5>>Z2aGS;MF_Tp5jy
zt{ByCWbpJe48s~s<5nXR<N0j9QN}exl$IR!0Efd`Ka6U49P}Ff75}T&#Q8rH_<X=Z
zfXjzvz*hoVzX$Q{3FF&I_|Vqth?b8<wv`|f5F9mfWKFYVO)dCa=FF_9&#DW~lA7Q%
zNfQhc1{v6Zl)|xUMfVZVRO7UpqTeA7IiMEMOgHeS0BiD<yxr!+f!zL|-=Eu#l$>qZ
zj$p_2tg_=eYc*MOjg{xK$(rk^aWC`b`OosD`(HA&#hCZ>q758`X6EVtXIJycF<_DJ
z>`5|i<2aZery!2%SaLHp2I^6QOu6RpWz*V&Ug8Mk1|b*ho(N}+_21o`%aow7>dIqh
zVYQ5Mv_Xm=+S>Sdo&r1%&=KJBqXzhBz%j?3%aspyAH|;pIfuXu6;AS2Y+U^tix6s-
z`M2|di#Y=NZ)W*@Gt(&I20{jOv9NRMfdz98%QHvOx~MZ+-5{*+faYUsr-P1vq4ze}
z>F=PS+<9+}z?%S{09-o7!+tFl(9X$oC$_70w(i9DHgj_K(KQ2_N!`Q#t`ug;qy{@`
zO#C<N`zu?ZYwuuYQQbT9aYP~t3TrY}*bc=7=2(6;Oz0>(m>hTd!Da4pK9pT55Hds#
zD-%(L0v!*j9;)b{2HI*J`tJb#2f!Num;N7s>yN;nt4YzF?C^X4iF&VTh-(A2Ut9eH
zp?U9OJ1I18ojkwI<)yDY&z0xkPFc&fhU`9rWcNXaHU>kwTo11o_4)nbKp4b$oQBrY
z&g{s02TuEfRqSSiK4QW5Xp?8W_&Z}um>A4%=hWQRQWm~JaBT%%KU~#!9O~lA=j(y5
z0&E4i^^H7=u?SG>#D{U?q3k|!e&fW0spv|Liz@EwvS`F<V7sI*(bMuglN_>(=#-8K
zen*WOUy=W}KEL1Z8wmZ)R#EV(h;9|OtU7SW$iCVGP{{bQ)Ak^gL--4SvN;?BP4<U=
z7@dCU_wVuhV392hcm~i__X!U)6VLI2XL%F}?*&$A6%X)&`+0CV&(Jf-asiVJIG_C}
zW2@A_kMy@#+WPrG#40Ng*ouYMZvni1`%>e^(KJHws{y=-;WLfXtAK9=JO`joKs?(H
zoQ_lMm&pKQ;LpH$Z~z}Rh`57IGFF}nD3U-d*#Sp&L=}SOMVP!;q*=v!F?G5sC?N0x
z*Njy3q(2s)pN<B;9^iRA{{FOee(f|sdV3`Y*59D6pSBhMMP~F(9CJIIa?mZ<WPaw`
zXtGV_Eka(_GI_Z|o|h(m=%s$9Zk-`NtmcXL)c-8P52$bVM%>DU43c)g>5KW-V6d#*
zD*C)ClDCQ{g=`g-uZsR#1<q(2c_-X?iR0f6uoLdz!nCD&?;Te5+g3VkT4csP=mWgG
z{6lPwMRu9hb}l?2!v$R++R4GIl%H;=gzx0M0-@A$VMgMCPgpTRCGd=0MkAt*@N*v*
zmFq;G$3^l6(H_?PQ($S|7aoLJWK@FP{UGmw*(#Da=r)5>Wgz;ns8}j0mx%srMCED`
zTrTqN6%`MN%KJtC8%5;}B6v*i92$x!UWQc`3U>)uomn)D{q(J%FyjUDLYgAzUG<z-
z^@`1U<qLZM<$C44dhkZwkC}PUK*Pc4LdFBSHBpW?%sLP4=0%3d_FBeakpg4;EBM*`
zT7>W@=I7G@G>%W9bh6iY;8#*$Zsxuhm~n3I?3`IiyO5TL><Y6P0?nrD`%N=utl@U0
z)yGb@o)qwfuS7Ip8R^ZJhYc9SdgB$LO1Qzl#1Wa}0K?u(WisxiR6^?n{yRs*1*-iv
zp>4YI*82o(b^%oYw?AD8oQ|-wzS_U%gn3Cx$2QvSsU~R+`gFP6{y?SU9Vb70r<UWx
z<cG@Ra=_o@(GJ2jDS%)R$ynZa;UID$LTTji8d%n1B9@HTf)^fvm(Nr*m;Rzg=bph{
zc*p3uA!(J4I8?LoA8#@J8oW8;_8!J7p&=@tpz6OH^{YnxNS-7;iP+YF?5E=Wx6^vW
zx(6(C*6HgCRR3N4Z*@%=*H6WVwgw^WQtvk9hN;?aK3C$OsO{3%)pqHn@}BypPU2lo
za^9x?0qLk|-+Q_|_euDzdWO1FxCK5pM~!DV;wQYJ`g5_A_@A-QSm<-6#ys3Y=N9tL
zDA|?i4z>V3XQ9s+&SmaRj1`Ih@+3nJ3cqitKji*k>{jusk_PIb<J~V%zy;a{qc;>S
zeluBQp>rVzv!(mtfQHci2zQhj5cUHeI8@&6378qUn~k&+|70_b%W^P0`28Xlfqxn|
z`vkLmu@}vX=gi_~&FCi6$fNt+;kP!z)c<LOel(2VnH7(i#SfdowWd&a%wdn46;GPQ
zPngijA2C9Q4La+w2hED*X7Rmd^lsC*%dBWLi?^7;MP|%b>M6BKmwTX&f6(K9z~gn)
z@$!nuY0-y0MuzuIqvCa=_%&nf4kHt`$P;;$-|&>`NxPirLBW@e(m?6cM#WmA_;*Hd
zl~H<;H9-0pSaKP6mm&U0p?%;df4csFZH|EBw{=KH$AB49A$vn$rBRGQ@-t?J;7L?r
z6(cT&@P<62lyaH{Js~is4Dz5j7!4Q*j8P1UfDzY+A$BMWVPm#9X>8<Ik`Bem!RUAy
zmnWEVf!1`n>K8}Q=3Tka>1o);0WJf$^OCoK{{Z;ZiI-7xzUmJ(C(cXS>=&n61QaY4
ze=wE^wp3gs&-;YD+`;5!z!KSbpQ7PulYwz&rE0;$Wph1E+h_LXG^CurO2?3Lzg}&3
zMMLN>^4jG<&L;EWVjSEHLtPAGAd8X&xe>q1_&0`~e6v={k)dJ?<OtRa|7TV-nZtLQ
z!3Rj`8L%R`ogj>_g8&+i{e~gX1(rjT&6`-@+%Tj#i5GYoE@p_%PO*Ampqh>tAMjyc
zDKMQGj#qLT$x=FMXDdF}Ziw^w65z7|R{>o4`+MMYq&xcOZO(i>LGIMMi-{xb7UM8O
zs6y*7W+;b@jfPf5wn&tpS3xc`N;dqYZMf7`m<HmNA{sjHh;)6SXh-m-E4a`TOQR9w
z(KANWAQ}2Fb}bD}ZaxZao}xRv5jh_~7s<_mz()hd0o?X+2k-|0(~?xX*zd%bK6>Ij
zy?*x8it-kLQ)E^zgn%76an9T+n7~h(Jw>JnSjrzTmT+W&=u9ae4p9d8OUi7Y6^7ME
z4}SiD5}q++GOCa@ENggRm_B?g_TFhynHfTq>?G?<yu{O`$H+Lmz>E3U93c?0X;Fm<
z#sKyb<5?_#eFNA<1X+Z*jyNV)srnv6UBdWG_4RJ@Ybk&Xfcu{Efzwfaa(xQbvnyts
z(ehE4WhP;9e#p2M@#Aw4nqMx)N8nOFUzJyn=S{%#sJt72-wjv|aQXWc@LvFfauk1W
z+NH+j5sTF4#P%_Js>}+Cwe>@$Tu-Oadis!2b~7Is?0XC$XtXt~Y)tc_v%p=;jVOTs
zxrMevKDPrAC%X&J6CP|hN6=EbW$3xfSx$)C*%=YI8`5@6Z~Uq+rZ&GagfT;+6$DYF
zbk$g<(mKyVK~2}H`qexWpT|!J-T=56;PUf9;B@#;Zg&lS4wxmQmtr!X5aF`?GO)KZ
zAh#K)w)b-FC@T_P;TIwJh;$KMJb8LvQZAW@Pe7=3TA|^6U#I9hfbv~C1pa%>=>Y+N
zOJ5dnIwqWwz7~W<YrCImgOFNn8TLd47R4bRBCnBhk>RF+)2e@?%Abbk)0?FCe<$$O
zfJXps`F{pZN4YZ}5zhQ1;l0n4y@xc~ZFHqZ{s(1wzkzL$jp0sHTZ`y7$?%D8kMxG;
zh%?}o#d}-hSPitkQe840CP0(;M6w2&#A`hr{PD2DT5W@(JN7K-0+B@b0N`f>&IP!1
zKThA{Xy=R<ZP0x=!m<(7t$TkX|G?Tp&H_mPAW8n&qrKcr@@RgJ8HF0FiVVJkaAfyL
zC~&T&xUOS)sEzV!a`&9wD;bbe3mA_X<|HWOQOB=!S;-4%v8vVHtm>yd7jL(jz)uGZ
z1-SK_51fw8PJT`|u4}@3nNe4F`Mi2WZgu7MCP+|<JF-go^C{=Oj`CJ#c`hP*=0nEs
zbnPG(;mNRQ$Re|%r2CL}7c$E<;4#3ne5RMys#zfsgb_B@tv=cbT>w)qseO=SY1*x-
z9!;QgK5o%_ItW~U-mfJAT={Yq@M(aCn35+WCaUY0zn&mpU@hxzZ#p$9I3nKB4-0lg
z{7qdVhcRX!G7jrEBj8VP&M|fy*B0s15N5Ri6SN>-hX5AM;wRXQH4CCOEX7eTZRUqq
zBtmcMH%Ka6gpPCvX9Hn4*_S_sumGBNSa-yY6gkiV7KBh3Y*|&k8&M}$-?9(*4}fC;
z_x)x5LA^imq>`sEw`KS5`q@x*JCru(Cuw5alpYDWYvc?2i_o^~$iD52zG2=+gb*h4
za<k01z|)6U+ZHYE&ZCZY8{?Dpp{8R!kM?$lqPHIOG&t|+4&W;RYXC02n}O5O^an++
zs~<{eZ;8~Fj-EG@6dnyss(}8$p#C{zyw0@)I`VR$3qj(u5avsCK9l%)wy0&7@=7Hg
zq1V1s(Ph7Y_TkV~0K6-pC%~oaHsEv|=%(7s+{_c&jY}6uQsdK7e!o`^@5yR-{|IS%
zu>6Z8OkhlA!;)Q1VW_VUgFWW}T&pm_>y&1v2j!>u-JW6q=4ds%w^Bk@phB}a_CKFt
ztdkf^*Z^LStdHHGQ$3r~ZqaBUk7cT!M^KLyxIz6Sx*2*?KnH+Z&pyEE=$x(U_sEIu
z#jPi`mQuADq}~GDpLRi%L89&ATd+5A$k-*c*F_oh9?vmz7{}tZnqI++Oq_?HpsN`_
zT{%~vya~${eM?ckOW(7=w*lS+xb%Gj{C}Zuj@;Zi1%03Ycl0%`Q1n&3i1rEsh<|f|
zF9bXcaOKR$z`p`K_g2gHJMBb$bPGPtnKA>pA=DNE?c6piI|t0Tv~KqFxzn6xzF+D)
z(axdkq@==!jKM~cc^5N~O2Hsy=gXqgA4TwG$fqAgA%dNIq265Wt>Xo&yijdE?DemK
z+xUs9&4Z%Tw<5R)|3->T1ZcgOddOhtF_CN9Rb+NjHV(x9r4J~6)V$=^Haq;d2KZBe
z*8na*B7elb0-&)(wWs|~9H#KPllC9kuBIuSZ=4~HpFBEy-X8u2`+~DQ92T#1xl?_*
zUVgY#o_DKT6<^4Kb;ciwFT=r?ZM^?6*6U_I<Q9J1)D|0M97|1Z-(XbSWDH+m1ixoF
zj$lS~!l(5dci*B>?}c$#Bq0mQ)#j}%BOUu_XMn%G_`FV0o=d#CO5DcSH1S(LOaBKq
zVJpzdx>-)bW<X0m9Kr}m+l*eY)a&3u(M_ur{~ExXn8UwEfIkO#5#YA><d;=@U+nBB
zE___Is|0ySb~-XRsbilLcb32md5M}KUq&<JAB~4GA@2!exHQN^tg{i9Dk9aAaGZii
z8WtTQ1pxyxL?PDQDs+Gf9*_p(ir#rhr$TW%=#SQqD(sOv;h?d39{D7~pZ*eliQBOo
z9#-|7hI+XE7<U4H39tp=)-&=aRnJrU6}7BqqEiM2fX9XE6S8CAluRG<)t-QRF9kj3
zN8=L%DPJgn0L4u}Y$@2m6!VzKuniMA&dhQ>6BfS$mNH(m1Ou)Ck23@NA*n214;dj(
zC_5`Z;0sw^BNPe^vM3%Dtrf6FctwZH8c-Y)9&_rAdb#8CBH)h$UIDoMBlHUPw*avW
z)gPLiJoYth*|91A5GRLybBxHmrTU|WOd0aDE-yXYGgbC07RU*{$NwxUw}~Nt7S=Yg
zTxg51Mc5ImA84eo0<!d+Utr;e{Jb8Bk)Yv06t-z-u$82aUcxJv@*zvOwG8u3F%mbs
ziosbuSu_a&duWyk<uIz;NA!nQ2U-MJ9-hx1A_pcpP9asjuaH(vU(ufOdt6lNLr@@S
zP)F@kicbrP54c5g^-19G0X_n_?W1IiY9E7wiccfLC&&*sZ^vY;udlA3+sq&6C5KDJ
z;qPsEfwmAD#l&+y=?{N2Uhrc6-5W-`otf!R!Xl;*>}{WBd^pl>7D9Q@gZCCSaDawE
zhKQUd`lSNW^p40l=Mj0LGp6pvp?02jkxn6_909Vkq&@syO#FpIX?q5&TB=1qYd7<b
zri~(`D<Tdo-Q>st)GzGRe>L#6fXAFVQ(M_~@^$#!=`*L)%~J`ln^SYAYR8OJZ4*nS
zLU3$y$~k~%+W1U-_B0|NI3Nt5gUb2W9ZJ4zUvPq)X;ID?RVe<+L`kOhduGaKG&<$f
z;+bwabAVq7xaR+-oGCNw>t;`!O@S3vNtjBYq$a1F?RaJlK2v>u1fKjVVmSib{<RYL
z%Yd5hs=Z9>s;>SM^$LTgPn>ZsMq0W~ncYHxqlO_Gdm8k=isNKw*HNC=DwY4Q>^S7>
zG2@~y^-=rvU#u_n^!<87d!6;Pb<u7{Ax~Z_JWmU2gRqtuzNB#QES_Z}q&<=@Mi2rn
zeG40TH`DK8ek4|=G{#s-_b|(&h?!*%{DS4&%{+H8?>5BFZU+O&NWh484i)m*(GHvp
zYy681<3SO8NEn|9i!6PQlYQ}puq7@hOHx=nl373|j7M0FkQ2g-L{EmOXAtJcnLQFV
zu72xQZs%Btd1f6z{4l7C3`b$K=6TgVOSZ=M6?y?52&e(L{c|#KI{vj(wVMx|{GJKp
z6!Dc<*o2TeWV&+9_?l@Spx0C+Oo(00-T*8(wBIq&*O8}7|DfpDgmT<|@*(j3fNuaU
z9p3||WBgr;jyBe-Sl>aA&Y3%L7Gwmui(nc%b>6H=6(A1d$O<{PO2SC-H{%_qeJa|+
zv52TC!JPUWha7Ff3yPlVKdbVn{apflI$$QirRNIgd$&Ki*95-Ab4ejH-K;6iv_#80
zz}4}9F-Y5HV^_Bn4zrfF$ticU^IR%-AMkGg{{Xn<9&x^R%X6=-%awVcW#Dkv$~U3>
zE-3$dqedHt9@bSB4@H2gch$Cdy=Mcz8t@x{TmB8s_inlFwMF@Aa^CE(lVD%0I-HES
z)&@O`cr!t@4n5mZ-UPgN;>RA~M*#l>xb%cxQ}k9ldgpe3JVCxmeP(lMX-C*UxYRzU
zDed!Py0(aQ#EwIlCQAH#F`EYr=wX$C+Gs%<*lTzZsbA@MN%3idQ!deU1Mr1_#Q>MC
z<<9r+I=7AX+EOkx6Bw;M9qPAZ#)UBA$j6e;OFFlqNGwHWPuc{h{5^QS+h5r0kjVf)
zz%4%$I33+qDt>Hs>;V(rQyb+=weN(H7gPDuv?rmp$N?jwiiRQ#g>ZJ3kJXwSI;J`0
z5Ff4vz6kIbz@?-74Mm5`hc@y(BP2O#&C}|05wPa#B%F@vbzTIA{fKQ93qmF`m|gj<
zh`cAVJ(b22`l}ez#YgO%3M_+1{SSY`%KR^d`t$y4^!_(T`|v(pBBgM0xFs4{tw&ho
zwvfLpQV!|(zx<txHc`d@j^J8Bw$3D3qSe2y+Q)p<+Z`wG1-=5X%Hai#VI?OY_e(m)
zvpZ0NY49cjZbUQzUH?+&`MVRI{}b?E0Kfk4&mTK$M(YyP``zS}Q?os;U!Dy73cx&o
z`+nyGr=xWqq=a@>(vim9xgAPJ&z(Je)}^RUw0bZiDO>%m>JTb+r6#V_v>u|Pj!8}V
z8;XC8cy2nLOYQ0t;0FK)0dBd6f&aJV4xT-`4&(l*iq$qb<yO5JFLxsFX@D63x7<45
zZIwIs>iQ|ANMS~*6Pl&gmCc<or&MJLuYu$8l-bQx)Si$2y_U_>#5~j&T5Qs)mv2|~
z-i+tF_5K3*-vNgKZuvg|r{h?wxL~UMDOdcb($i|sI+N9QK9l+v3_!`IRQoNKK#p|N
znjAW6-ip&v2mD6BVt_mUx)=B=fcxI(JM)8^PTV&u>39MgIyBE`VOe;yQYTwb9@D&b
zEgQC7RKFqmXkyrIyZR%$kEUIN#u0-zFt29#M8}#p6~7LE2A5yKx3S*^$N;$f$_7q{
zOQ$P`+J0YCr_Y}<c~l+JISv>+fGn<}EnZeH#CCJGKw@vH@~7eXZuyIW-v?L)aLZo<
zoQ_ZLR&uyy`7Pg98>NrL%PNpB>khmufL14xX|A%#DgOYTUybKeKgoXwIvGGIz%9Q5
zI33lk%1>ydB^_H??4H`1D-iAmqjq{v<1{f&(@qz(774$t_%R>l)#5YJvkCa00owsC
zJ?{XgqvYgz;5O(vg_RCs$lZsQj36D93VDreKp%ov0PSLNE;SoEjyUwi{u1ZcIN(zN
zR{-30eI4)xfY$ul-qyPP1im?Rwq-?=Rz3~ed?{t#@+7dX8%!OtVCqn)iEc1*$Vv)E
z3N@|2I7iRMm<_XuEU4sgN89v{;%gIVa{21n0oxxyKEUN`d*F2ZZ+tzKb;GF`J623|
z7`yZ@ioSZ3@6Jc=0R8}AHNd6sVc>L}GGEV}IWsEDM-CW>p<?<ql*&0;KMvCYtIn#Y
zf#Np2R)97dmJ06rH?~8Se+188f#*}Z^Y4V+GoT&7Ex!af9o?M$XSW}==m+ugK?I7&
zs&Kzr2wGSNHs~23VuP*;fVPE;5qLvQJDvLD`K}ze8~94VYJgk*THtiFmP0MdPh5$|
zMPwjc<#f35ni#KXL#V@*H>q+D;JGf}{Y{X6fDC|JZZ>c_PRaL{<;GP2fpCda@(4|g
zpfTEIyVl^8KMl`!%fA!&eSnn!xBQ2I|F7jIs0L0-L6cj5Jl`$fco%zvfK-56eg^RW
zT>gwX6)oFc8xxdj+3ITFReYa-=eq6fI^atH%K&b<D}d8+%JzmSf>W;3-kSJ!E`30(
zo!r~RslDBe_6E=%R_*P`d#e0Bc)r`-#Cyn%1qcD$@{@qm(Yn30J?_n~oBdyndYIq7
z@6;d9cgw#K_#J?|0dD!rfz$EdjC&`Pe$r775B$KXKb~KXkJR740e%$lGr%pMy|2nY
z*lM0MqwZ2lXpYXER(>S}a=S9G_KWc{)2`2lN|UBRow4=XJRQ;+o$_k&Jh#5*1HTMV
z2XM<<4xEniN7Xp*#*L-&rq8XLNYZ2}-^S&>;csc*@E7ABy7mAo!#-h(%}oQT9E9Z&
z`8>lwf*WjpU_W*SMU11ZHN5?6S-D6dm8?8AeW>_w1m#xa4)J032N=5m%K`3qmb%NY
zbqDNs^sCz=_45B8c~M=7zLJh3>Mp%>%IprMQ|o5WoQSm8G+#vqa%fRX<%vW>>DV!l
ziSlDfN4n8LeFwKUtWw(i2J`*;k#)1c5&3WOME_YjYT~TAIa4O7tn$cMu+BV884I2W
z9hQt)&%e?y_?!Nn=PNx47hBuP&gRHHgUD~Zypd%OOCEu}j)4DphP3fXk?b&1SWu+J
zJpYy0@F=DnuM^lcp%mT7>c;b+TvLCk_Ht&l<K?G^7F+sXtp04GF;SnGlK2yt*G$x}
z_IdUCF|ds$|C|06HHJr+_*lmd?7N&#=D+9s9?mvcRu!V^NK44|9EL~9NImZd(f$zA
zJs?^hoA#>rv=r~aZLg03{}W&<z->Q21E=EyCtu*0{i+?cd_QN-n_E9mnwV|kcZiJ?
z(C|)OUV<AX=RUBs^-y&~+Xh3rm>I!dKzgc;Eo1EVc@W*9C(=@0#=5idDG`CVYj*c&
zYA!0-9#!lOe==;{P9R2~1vew3D;wsm(A$xcAM4JqR6WLh7~k)i415OQ3V>UW+kw;3
z)M~y-^{B=2Z|+nY)*INB*wFvQSjMy+NOMm%M&x|sLQg0hQ0k~=Eg|~V-&Fa#@%$1z
zpW6F=;Qs)84{*y5esuEkhfJJ1aR!wSZQug3DEP&Alxas0Bj-c{0tmbf63!OGlxA>`
zQ~o&T`BeTTz-I$)1i0nj<$Ukz#oQ~^zlEaX28NkUMCv&v?-m0;5|P~^@)7AaCNE_J
zm$1lE7Fj|~ugZ~2lC4_f*NP8&P)^w4!*{@s0saMW>9BSyKD6Fnm`UAl`kXPN>!(ao
zdfRC2X;_c`%NVD@7e5)HfwIZUuNO>0N!1fOpvtSo^W5?-0X`FO1;8zDK5#ltR$krZ
zQ)UgEHc>9a%iBZnl3n4yjI*_pe6u4dmHH|@WP?*)BcA8V+a19F3iu4*mUjR+9j(VV
zw|-O}wKS}rSZ$T8;FVextVWP%p&O-asug)sqxOxeU)5jZ?P?V8s{ywITsit9@b(|W
z)-6}b&Fz!bwc8J>pUQG!MhEdZa?0fC6URUwfbt6(jDz0ef;AW~aCt$lB>Ge)&$p=$
z*~jtPe>HXnzUJp0;2*QEIkfe8TIa6N4Io{j=;7}KmyIl5ZB}Dfcc6I&IYU2#;8w^x
zQiD6GyhMJ}4tu=;Gf8xVgE8!@JRZb78YX&JRmnqnv{PZGVUG!x4>kgYfnu{-&pO*e
zWG5JOhtSAQ<JFLwuv9t^p7mtVaRxT}%JAt{GB*7Ri5D23pHgfN4`<V!=*|E?58+N=
zaF-|F0{Z87ijNK8Q4IH}f2;w%17Lg-=i><A;{X%xSA2WK@r&E@q~fRKql|>r%*H{}
z=hWBDneGO}TFQ3ASq(92^W^yqc|K2`FG#q92)4x3^S|T4?|I+1Ma4TJ>unKyM<ls;
ze|abUW7hS1-h2~3@M2U}A|V5w*`AM$;QNMYc1GF)<9Dp$5tj8Z3$9~HkF$!0Sk{BA
z|8kafFH1jQcKygmTEZ$8v8>xz@FwcI-Ndsx+|kb@5pq5@U-~)=yChgyXCduNg_UKe
zL(V3_JthmOBJs0LKPWzK2al>8K7Iz=`qZy=0l4jPD{%1{#{SNVZ^yQ&>*iSre5^%w
z?J3QCl+Dq8)H-gl2Kx|~my6~3EuXyfkmr=+*yI1z_$#6`fM@+A&tCF;%`ZH_H^LM-
z{Q&<87qrlHZ6E6`&9>Xg9k27?#gt*^2XnAL)efBN%*#`IA~<fu9^@Tt&w7?uY~uYk
z^57#FLSaITNIOQfz5je;LRAhwCpC$J9}j}%f+2=t1oPPjja_C8!G*&sv6DY$IiEIg
z7`_>F54M%?hx|F6vrg;IuNX98BkMWSTF20qiG>r$Q>lb6fTJw7?vXbRM%1&7f%a%C
z-`kBNfAD$XD`05?D*un8omY9LnXsa~K>QW$IYp-B{Huw*tA2Q4FL}g;7+=kF<13DR
zH3+2o<LdoP0Po##XfE*OfRzAOKD`Q@j{R#}wsYCOv6Edlc}mx=l@)_$Vdg~1?jKh=
zjB}(WBVC?L<vDdV+-`q0j&tovnCQ_!g&iAz9{3v;X?iMxIvG4oWQ5Z7v;fi|(2!M%
zSQblMJ7EngMjYYK<MO*b@Xmm8fJ<)`a5_#Rzem;09n(UDcPg_%)evnr?D2AGq-X~@
zflD=0<u%ar@jQ|P_W*w!upZ!+w+%QQwaXNL-1WHX|JcSuz&BYUv8VP11}Wa&0Se{&
ztMMa)EudluQi;N(w7*_t6nUjItA?4T6KlGfD|*tuh||*v_!z)cfZLx|0e=eM`bE3*
z_d$vB9TQff>zs)*=8<rR?s7S7B4H8xSEa)2CO-_8=L~t4St8Jx&|}bl{;5QJL|ceC
zN6_>mib4j=WJ8(Vy-8+F@8QW7#;ZEo`YL@wY4K@8jLcG`H(9A$D|G24b_VPX;HtZt
zi8=J9|H}D=$eau*9MQsts;9Omz8**iJ^(NS;MQ|9@OJ^vIrGeRPMoD_0}|whQ%@;5
zAVVgSjT&r@ZWOD@*Zm$QFQ?1%^$GZJGDiB<m?TB6`5hPE^EX+-hsX8rIArZo+`}au
z3FdoB@ezBB2Os9<BV4S+c6K|AJL%X)@35E$Z{y}7E*9V}g;opM7g?wAfxeLodDpx6
zz|hFGyz2s(LP}SOF%%|p5S$g!mzx;hid0ElcIHXw$0o{olR>3sBAn&py6CDS@pxB;
z{v7itzE$mww~y(-Zvos6aQUX~^J_sswzH4+@&l^fzH?^+-|DB#o`eV#HB;t~oi%07
zq=_^IkPRA1yr;}}@OiT&&XEEZ=9G*zvU_xS$(QHCEppsyGPOI6ayXfVkphLAS=GV*
z!D`O{J#6;y2+v?N8uJO(+dI&%2@JK9Ja#`Mb@E|(6z%4%BuK`;A;ni;FBiS!`82C4
zj#COWox|!WwI;tH9adjDQonnoQST41Yr*Ks#g){=rh|DwxKemTlKu`uA`TllHyaqj
z>O^5vkOOxv4zOTc!~xGUt=_Nrxe&Z^`~Pa-+W;Q|Tz+PK37dPsILBXe+l`8kV-out
zmX?F(&z&-hGIYBWs!d{-wUH8Yt>W^sK;`G!p+03(maYbK8T)~Uj`BUeA9(+xe1!HE
z44BBjsF24tiO>_G$nGfK!?qoRe^F-`Rdf}(Soq|d|6;rYn;0_m)aXb!VU@Aeb)x^%
zq9`}J5X?A7z-#IXm{|2==c4KMV_{K83#%a<@i*jWHXKe}efUb2F)*_S>txAZyNqFK
zyT`}-vk{1c7FGONfx6Q{^6^pNn*h%__lQUCy1~7wW`v#6QgD?=rD856WN9~=<Fr^7
zI*f;<ko?`_Jm20Qm-mB!PXJsGaQXiy;O_y(Y*X!cVLQeD1Bvs88FdpUkHmsu$n+U#
z$(PKVI=zmRC!;4#oP`i8?wyj3&W#SGV~{|BWW^r+Yvk2Lmd&B^oFdP;lxg!u^JeVp
z4%^MLK4SfLBVOD`tn+SG_z^4F&Cb!fDS?3WmS${Ph44rHXJsv8{qBPAQ5U<TeWBHv
zXHU&G!xtN7s&0=fIgjV1>ZwKH02(iusMm;c?A9am3xsct-d&`Sxgu<3hOsQsPrsj=
zospuu#5f200jcUelzbI`4}E~24j2k>$EmZO@7?jq-M?;rAH<)rv!<hW^XP;r*g3z^
zY+%~79LzwXET3M<DA7sn-P8N7PgCWtah^->|0&=v13m<}<!1a%(RI>tQJ&f{|IWrj
z@?$1flJob8$wq(vllhrQ{akEjEMi9X(wcI9@BSCHFYSL;XG9<z)9P<*)S8pJkolvL
zWPalAcWvZ$7U=~xR`KUJe+*Hkly)pf)ngjybmu|00ACJR32^K23~)L&uTbsG<=?C+
zbIazUwP43&Ze8ifVIv1CtyAfM$&;ySjqFw>94C`Jyv4jj*Rs`UpUZu^fx4knNn7S_
z<f?uZYflqy=qYj)UE0@ix^jV+0xAJ6T?2vBanP~9UH`PA@1%5%mactiOEHctq16X+
zV-Q^nxYk+GwT>u?5*6J<JH(qCB~4}5<SBZVqCA&R8-V`_uod9a^FDAo+&o)H96P;}
z(lb=iGhrHHGi3rI7yCfY3rwp<+D5Y%W`#*2OQiwt2j$pUlIA!j#1uWT1M&5BKj4D_
z!vHQl=L4ssowH8+kMs<hGK0E6?O?36Z!srm<CIz_1rt_Sqf!Sb2N})wBaIFn>rhS@
z<xoG^4tyuzeSk~HKHzk;-oI$cmy(XP)9a_qm_7?i$x%uMMaxHEin`FeR2xo-nmt%D
zczCi0bd*3P*zCwwp0D^({!N^YalkJIOai!c)C2$D=z!JJ?72>`d*V!ag`{VMc2NPw
z(PpmnP?kLn4jr3Oj?0hFfqw<~2H?{1Bk=!?j={4gw?)NeZBYTeokK_U-{W*l2VM`D
z3vlVU0r>w$hr<u7<!8;I*>jvBSGGY)tU$e&?I_3P$6??<0)7FwblBhiuXIR$v_Zv<
ztPL`>dWVi$l;hGd8~F8r1pt?hhk?_v-|>6i=GdXNZl`l7KMm{)plp{6Az4?C@IDOb
zx_oG^J2-UB2w=kukz|)ZoihMy>m>9Wzg~rqB8a?BI}~+La;HJt)0e?qU6$KesQ7gZ
zbhvb;AA}DOpcLTJc{XrK=POFyO@5;-xks)C&2)lcMCDSfQKjU27#A-{J;=4~E~%KP
z3dFbQ!7&v?&fEykwmMq9J-H-xI%87a1!n1feimE{6uDY?dqwX$(BsO*w}8J7*bQ*$
z-3wgO>#U<)JGRz*J$nl6S#*HK&BVzgAP1;{EoGN2!Qy$5xsYi!FlFQYNfA?oEtZ}x
z8Cs)5NBKYE^VM^K&jnl!aOqeDoQ?yIzg>Ns;{}<zC^}|4bc~)ceG(Ca{5q@namufA
z2a}gddA5#&m5a<pLYvl^hvBb`*KH@6r-u+|!XD-s5rQn|<yJSpwC^p)+!E_OSp7Ep
z-!&C0J{|#m<)Dw`s5peR3Lpw_=`RFMN9*-=OFm-5hSqu_yo3T520__crfp;C6dRtU
z+U?9iq^ezpm6UuKP7Nih{P}pkTmEan4*-q<-1%nT!+z~Nz!7Kv>1d!{K4Rfeb!|yU
zOFqJ?ckc9A^QOob>oBzC@2AfhFnZvyVI!u@g&#gD09T^htuM%j=v^)^UFErlJg0nt
zW$GgH%Dv3q$L@qC2?;9Ua@`Xf5gs!V*5BjyyWE@f3N!Q2W+HI>+`thV)I2k#fravU
z9+_q%)~J!^<rhaQjh<D=FdDG((6stshv*XMn|3i6HHnE7kDwO8b6#iU6L2L8y3-c6
zj?$oyDOG&i1fGQPncmy`z&{5Z1-N`GI09V_p!N7S=$E$pt=s<QTt2;ibp1rx_R{1e
zVcf-3>q&c=XCF)6%Leab(1k_zq5U=TLSZF~2+~a0h%2y;c^+iR4>9aYa?6`Wy0$Ik
zI_4GDUub&MpY&?d33(D$9mxoK!{PggFXU0C>a`FwS2^{10{BaS9|3N?-uMoE9k73$
zs>ce)u6*4|+QZ~JjHU4|j&}@!w9t|QX{{7Ui_D);q3Aw_q}SQ|n7)?{+Q$&P*t?H)
zIm!Jd{6mm9@OM#^p2RCD43j^Isgr>F5Tb$M3^CkZzYYm?FUObizTw{QqbK<zI$}Rz
zU5#IQce3arrk@?{Z>(h5z;1&p7I82e988+6kAlw8+k{BbNP2soKHmG4{Q1=A=(c};
z3IBw7_mk#AQh|S(r(YSGr_T+|(UT01{~7}crjw9sC}<%?`L%_x)J1@a>#Xlsa6H~c
zoj7J<VJa6uKXEKY5YwCKd=O1MSQo@($wI(zT@1oh+N(D~RRD({dWE%>>it!JAGcq<
z1o&*gRRC9>+y<PE)^@Bd`(?ZzPnv-Z-$8Y9b=aUUfL{fCEkeiPF0cp&zS=6JXP`LH
z-0Wgx7-5przk%l5tA)EMdYVvP4CPTjIR?Do2ftPfaOqhJoQ?)3&O}Y+spSearueFZ
zL`H-7)H<%S2C-1cOPM^+l;>4UUM3v}VT;VCL)w#8PlU57uq(~}Nk(RYS?Waw`A&U#
zCuqMj>_BE1>DqOcYfcn{xF_jdW=764##dXHMpFGAmJ8L?Bt0Usk+k<o7AjB4hMX~Y
zIdYAAl6<A-W9K;q&`G+V^?~Z5BcI35V&mbc1${Mqu=X?P8_CbMCpK%@dWf26Zfc=)
z32yA8_+=lB%atnNV*nQe-2Qhf@MVDdhgAP__hH8T2e~q@ep1~`Sn;aW8k7Mv>7GN~
zv5|epqy{S}&q?xZ(duoHIdCuY?PG_S)@T=D6`+5q`~IeTAYZMZ;2lE9AjnOB$Vm2v
zGNP$cl=eWSuS8T#DQ5;^K7@ak$7!m52S9raH>f>y{ik0W1sDx*>o*7Zb$}7A_Ms=Y
zS-*j>N0^0t%`@Un0^#l8gWY14dga6!(<iHn51Bq?#^lqlo=ZbJJPJN%hbf-Th4LJe
z=i<Y1>hZX){bE;{Myi#9DN@&*GSf`O&d){0MW|XyawZKMPciYmRM(${PP`O;I;@?x
zsh`vCQ3rQ^^doTdN7(uR+<Nu`J{Yk79`znweZkx|>j}k8oAtyT^eRk2AEkL{4d$Vk
zGU?juo-V?hl7{3$XW2X%Y3EYS6puFy@*o<K#oNyfLtuv|Sq!5@?K99ISuHQ5zS|Rt
z`G#X~fFqD|R9CC|tN^Wa(0khed^6xr0Jk5%>3r|j;~i&ztL2-Zoph-PD`@b&%Z_`A
z;$N9|r?+cu(a7#+Upg8zY+zyt(V~v(0jm7)Pw{qB3A_iOH-HY}>7Z8jLM_X!C2hr|
zx*5`zyV-_0MO$p9Xp@!wf^wJBCOG9SO(^em;5z{y0NnR?2>4Mz>vp=m&2exH=4Y-I
zeM`!m8IU{Vi}2N$zzqdquQ7PAra~O0F}tI`gJnkB`3sR$JGZ(JQ@K}|z_}+p!83(l
zPZ2Q|Bb5~v>!&Mz)f|hzukpYy2V4tq-`67Ndsk2CURzP;xOl{J^H^*KAcA(kmd!aJ
zGQSq72Sns+Qc}&i#hZDvH}w{8<Yq5kTou1g4oO6gcEq7)H_C(BUbdfKfm=VLKLA{M
zg23r$Z5Pmz9_R}a-(;e#Wn0G0cwX&5#gB1#zFU4B@GAk=0NnC_1DuY9t^7L@?Cvh8
z>~-OsW><*X(NLJIWwSH^dxdIVtk|zLI^}K0^W5@21AYMT4}e?Vcfjd5sXsuA($Xf(
zg{mkBRnb}o(-#5I>X6n6`J4u+`c?fBf8V2lU-bW&`wsZ3itPV8bLW;<^IkfkBqRYs
zPXK8_2}O#cgeI016G?z*ATboNM+HPhiHZt{7!eg+m0(%1tRSMIYl$5ztQB`%#kv;M
z|M$$?$qP?P!2N$dzscvkdtUPL=FFLXD&Ta0uCLttyY6TGBzb7hv*uRKDKD!gGoRAa
zD`97%x;-gEc_4cyP&>~s#2JQB0OgAuX2wph-Ujb`X<c|4_#1#P0lHrM7e$v|7qlEv
z);n`<<(!IYh+A}xX(jE@&U-mt{(@ug8g>c$LJUT@kU3w8=x))6C9~vz(~!fZe{iJT
zHa6!c7X6v^d6p$7B)6Ai56ZQkSUws?D83Y<e%%ihz^egs0GhtDfm1n9zxO&7@^f{H
z#bT4R&z{d3sp{K|@6+|Y1^h$6X8>K_zkyTPf4}ct+x~lAevQ%S)!TnhY<(OCd@|rK
z0A25V;8fz*tLoA@GkOdym6Dybl8p?UPXcrSgwX@b>^r#(3KVuby4`sP1Xaxx?Ls`1
z8G-1YwD$A)jfjU7Td+qfK5X;qqjB*X@DBms05m<ndVkmBP(LL-+Tg0V9aP69fGAYQ
zYuK^hiNbG1^g9v#md3!b8HKH)8Bwxp>5pV3c%W?d>L2xMj2~wKzZkFxpzFUMIF)#Q
z;FMHdgYXSKr&S^pJxnaiDyGgEF7^J9Qk;#*ALYZUs>%Bq_n3tyj&XIY7s*wY+i#mj
zBjhSU;X+53#{J2ptDD2EY=?JY3A_yHrc=6y&7>|)2bnwgdB*?S#Jc)p72n+76kWu(
za^Q0TO8|P`c>?$=fJRTwT=$SVFK6AUo^kZ+4L9!BaJd~dciOa>rL%@s%#rbhaQoix
zXJG6Avj@7LXE$`d)mh(}HFWN<zBBA?Y@B63;S7qKi`W$0lY<<Z2xFVC*FwbE&EuVp
z{e+KS#moo<xsh5o^A-1^*AYa0Fi(HWbzgUbuetnHSDq9fhbjO+A0iMhuVDj8IM$2L
zl)pP0UcW5Uf01trw4aE(=#!E2>c=X6_5VF~-?;(!9e@o0&96^^e*>7|`5)``Xa2N(
z@=H5bj39@iG3e}?(n{HU=>QkUp_=k}<uKF%3vrN!0ojb6rvt@GA%9)amj+2adm7f6
z@N$7Yh#%LbZ`d_F=UP6)xP-NLE(l^w<R|n@a1kLfSJaBu|7AIsai^^#0ubHER~tED
zdL$3?7vbh&7!={Wma98odwu~MfRLs+)^WHSdhrCa#worO8=)pY#`A$M0o(}Ce0dP~
z6M%TWtZM;Z#!j0?8eSR|$}bSD+^Otff~uAGt5yzx466O;bB@QMlRICUHd^;R3oxIZ
zJjpr6Yt3?bf^N^xVTm}L=2&?!i@=}q$E$WkSjZ^CJf-<C2>5Y;@c=!K-vv%3Jw8re
z{5+na#=AF`JNH0W4Xc_vi@J_yH>TcUznsb%Qx}^rr&2e)iwxrkCKGkjct<x7Y3<Jv
zL0IS^V+xNrj%z!eg2~WJg#86bA=d^8pfd$b!Fd#VX@n=CnVy>F_qn;;pPJ>iMLsp;
zi*gX8)9%qZr-LO<;U}Gk@X|0;w%So_!!%suLwF5QoI^+-(7{emfF&c@Y<2hySjNaT
zHZoc9C7*|y<TNvY&j(xz(Ea-m@Xde|Z&mjTZ5Okv?>@&pd{^W6Q;HBa(`V^UMj%Ab
zwFk@I=X86Ox#o#g4{|x8hZ^4?^admW+!yW$tAkt_2DA&_ColmUEM%Iyo3+CTIKDN4
z%A%bV0`w^+VCWSlsqPIN+kB2WRQ4w9=}uJbOgBSK_ox!!^8ptCbUU8}-U#^4lkaZz
z;_-a9OSL<0%KovPddB}@{liCT+3VZ`W1VJlBaF6RrjY&{nS89kgWA8=GVXv`P&Al_
z(7_f=UJ#HK#&4}**n#A*LVRsHTzrA_YAK?X$hAix6MDjssXfs5Dqs(ptCOn$>~4_N
zs(_DR1;h`83=Oa=;XtBF$tj8-St4X);a4;th5|nhFb<&S!&Kl@_8e?JoPLhCyrF?r
zHPphS{Bf}F4Z^;6l|A41S#*+CYpIC110Qxe_MJe9H|4j(UcsYh9qP-%?}(mffIkO#
z(W8O-DE?j+*B?z(^cW-UegmjGU@Wi#UNy#Uuby-()Fh|w2fPR{9H85M3~(y(a`FSz
zH=Cxuh>XS=mzq4uSZpE2H|hP+$l|{!e%Il9^*w$)@Qr}S0lMDJz^TOF<M&(dgtJRA
z15t0OSMN-t&YDTdnI&sCd-b|@jIW)5_X6|<=z2#1r_zFc9#K<%)_yv9xwXGeE;?1U
ze=+LGLOs;Kw*kKcaJN@?i~5&p->Y-i$j&YHzJE8qE8qM6pc67$0onp|J39lXa?pPD
z>hU^t5||tD7+hoAfsW1NZA6r`AZJQOH+uC~<NJ00E&+Z$U<E+ee=~3@2kl>3|2{hR
zK`Yj|_@1IEim$uyz51RIae)Kc0(8B(z^TlMlWW9{t6^0&HFK-yjGhJelD&l+@YR?D
zSBcd~Wl2i3X|$=rFq|G#c6xMFqn<3hr~X|Ad=;P`py{{`IF*B(lSj|OQE3*=O60QN
zBwzszr(WcOhWW+`^J!w`G_4;crzt-Ci0{|@&-8_iL4dIUy}o}8{3}3w9I|Z(*~glW
z?A~1>yTN({0jm)%`#n=W(&X#O>#^3Zw%;?a<2lRtO?b3h#((9;zu3Sa%+CCMkS52n
zUHtTdm?)Cv^S8$uZ*w2wks;dyyqLPV$eGzO5uZxHDc9dOr?-Gq)J=AynTh@mZZ{|B
zz%&x4IV7yibe)0ew?U-uM-s{a?AlJ_nJ2fKj4$A(o6T>7_fIQ-QhNLJe%Z+K5O9)k
z5=_9-+t0~ydZObRZ2pwV`_n<-JrjZ2Z!(cQ57eU6mnnW0`D5q4Gk~85s0HZ$Yy?i_
zLC^1B-^=6174AK_^Qfy(6)rxrV4N}33ptSnb17D`kgke%bKDVE+Ybwb<!O%~NyBgu
zb&%8#QQJt!h*kxKB|<pTCBn)v$xHyoZJ!usM`55y`LKL#t&9MPCM_p2F2~CCXZlQw
zjs|`BW~5qWa}YRtgmNpAbnl#|+L<4SoqsL_ejVUefF3t*1OF7D^;8c&sLlhg@9$i&
zcYEo!zmF5aUYEfdd}c)D+}ShebWrjf2`wHbrlbP8O1{8tt;T*DO|zrMYKulrhe(>8
z0;@mgEts)8EDd(^e(p5#K~8o;S0tYeA{9)w6GE0`?rc%o;%adthbodoUxZT<@=f4I
zfq(VR`^6QCAN_-|^<)b03cxIY?)US7Q;C;z=uVE^clYXdL_kuaf#NZ^h8K>d1?6sL
zJYyl3oSkiT;fXXD&w=<04_VGo^lU?YdVTv2_~=l`I3A$s`2skVc)!bo&_g`;Zm!@u
z)Ws)B)$r3QyyWddzT2$coh;wXm9Lrdb*WM+Pn2)epT|pFy>=l5^J;rTg7JaXQzW9B
zvM{L=Y#ZaWRS+ZEF`;L~nO^?o2y~W}08L}E%Y2ZT!vRYi6YLG&AD<nDlb+yKV!)2t
zoudgIJIVjBF+&1oq8+iJkwgx6)3kV-Q>+svb)H~nCRuGVTU(+>>%5XzStN}MJ11q*
zSrfWX@J)b+gb!M!_E-&k4w>{F%^x@U4<@e5=67&#q|6PQ&r*CJ6^_mSg$W_!9Y97T
zHZPV%L&jP_@*QeEXnTnBf7#EyVDEY1-4eW|;E$cvTv#%v<{T+nQ1X%kf3|d9X+@<M
z==i{&lp+|V!TH0LyZ^za?2L-ph~!Ek3jSEhUgKWHf^AVVCFyFt;E1@pM1?(H&o)uu
z-6z!JJ@vR>J+`RF+42*2aQRrP9^>VkN7V-wnVaN*goXk}+9`I1m1&n*V{D&wioG3M
z6#{Sfuv*!RkgCSM2dXOk;WT>(!(VS<)>YhgtvqB~dcx@!#P}46UohW7hc9x%3lUrr
zskIk4Fq>HKW<Ka<d=9ylFPzMs4R#KXc1{1l_FZMQiY-u!t=4!GfJqZ_pyPfTL=0LR
zIlF!N6tOfLCI*=Zgy$edCiXQmQMi;Wljk-4K6sZU?uOzC&aH`1q<3-daud0;&b451
zWceo2|K9F8YhA08AM&$Q+^l;w{V$Si;5$?7)|pnW{AAA~!l6JWRO1N+R#%rNKxW|b
zNN1}DUVB=7@Op$b5U+(+QNrNRDEgm-J23T}SA40j`h5R&ve1@fweo)BbQIl1=0ADl
zLkKY)GvOB)87493SJABXA3(t!*Lq*?g-!=I;3Ab@E{wf!x&733zqS#PwUv_*zMVO>
z;JooA6AKdA76x<k99q50ARY_DJv;+GjAeEoo(>7>DZcGURv+jQZWTi4awl|y9f4;c
z!U3LU)+9tCxd{VOPf3B84PnT^y=0sT60r(28DvE+Q1iYhF*fhd0DcwVHh|s_qe&qn
z7m(%6`|}$-xxnHU&HFOA;5P05jc_59SKwQPd<>SaC&<?nx)iUr_i*fd1FU4*!jQa<
zTL{r<eBkSdV~=AaP8&Kn2rV+CR#pzrMX+Spp79{WD9&9@vwd-m(`8J;%f94SeO6qr
zWm2zA@K2;ZgI|#!2MO*^BRQCJixd8tn13471+eD17m8|YIIP?7t33$(3D@%kxXW7L
z@0rM`)5g4nxs*-|f2OjtR`IhAymIlL&c(sxkkJJ&384A;7Vysi@%&u!Y>W6g6*A=E
z;OV{=qULL;T<tv5sXs1RfB58ar8N|GENv%ymG58>%GImK4eBv$hwPl5Rwvtmm-%XD
zMd>A7t|%8+A@tTb`!<H&0!P5ZwSFuMm-;#_@;M8AS&LxD7`D&E5)i%A7hQ~Z)Q2J6
zhqwFEAN2V?a+*&ZM^BuPDHjbENko5!WPf4-*n1ZCGvPhn-TH?Ue#UVw^EsDDze*<h
zvU{2M8@5;KLd0}s4zfxk#c<SI&EVnZb5C(*`4d2hCB~UGKEFTPXNA!Kta44=YBVlT
z{aTU|JC|Gzd>LQ`K%Yw<22MrmA)Dg=#mf`--WO+9)p&AXsN^R=8-G5u@v9;2HNF53
zTSu&r1#Y#&XwP8CodD-C*m=`2_Xr&Nrr-?KxKPn&q{i+;dB6t&h5$5uX91@YZ*Ts`
z!LiqVM*H@Jb7s=mfFTI0{x4Y!3;`s<|6sNK3Sub+I{Hnll3^TG+S-ZOApCqNH(^O&
zrTY+Apa=8Y5%hgl3S_x$LHRNKAB_JM7G)%@G8!&Z^lt-wS$I$L<|E+W0j#vxyy*#i
z5McW)YW?~6RrTDyZ@Kf#(lg6xZ&lWT4e)iAQ4^kmODpkr{`aiY53JMoY%LN!b}^m_
z^pw{s3R>Fv6Ms5S_?N%a`+j(#bsUE^I_R8vgtg0`MMu_&6!Z6W#s?7f^F=4K6B3fV
z&X{F(0rjw_zT8^}Kr0n$&qm;z08asQf4u1ZUF)y(Gp;{mh%oQqIvhQN295TVtoc1*
zU%uKt#&|u@mbc0FlX|}ogr-s)WMo~T=*UWs$-&P6ejeazfL@PY0=^S4=S{`Wy1{2j
zx<78|eMd?;<EW0)etB2v{+mZ^6`Mw|%_IKJHjSX+Q^&1WIT8on!{DexOZ}ceF&y?>
zk<4<Li@P4e=Q{2F8bAy*J5#iQ!5$r+as5M-+(6cyfrL<{Rd7$B+f9&%JM|Q}qEz67
z3m2`G3`W#p`VH)BUga!{-@{lp+#T^7S?aG+{3&V`8+RuIKND~XK=bDX;O_#ydqDB$
zd{161K3DJKS`GuLreOy=p)15!WGD1G%!R1EmvO5vmdL*|yS;TYv-8zr8N>w-wy45!
zkrAvfEWI6Q{lYr}eLoC1{|xj(?#On+u{-IOKND#GegN(MAV5o_%lyp$a=_U}ZEcTy
z6Q7#A!Lt{>jKiePL6ly^6-DS<+8}lFjruy({{9)UaXJlnHDE44kJA<2-}U&^&$xE)
zXPh<#InCag`w`obOLMP|8*idjIKa^!00qb1uR-{cM>0X@*Ax(^iQa~56urAVdT3t#
z3Ov|4WV8WjdV2z=qUqGnIC{MynI;WX&WC|YHmY31Dt;DyeiErai|n6BQ(W;X%itNW
zvDDYePwEw-roR_Nxb9j-&wSJuL48Ee3gBx1cK|d!cLApoZ_gV?PhOWMiFRjC>KTf3
zgCLUP?iCxNnBuiiFs_|my+7i6v+$nk&1e%casa&ndfW~LJ`xZwe|vC$^LnrPr8G1Y
zISB-`1p$2|L!v(m2h2ePyG2&^LMyt+auy;sxiMX|rIja}MKQpLMk>|UDgM-h27RC3
z0{kC<HvpQ>4}gCJ(EFyAD{XB7ou1S*6gewK=Xgco5^MaGMB7D*wxPIbE7~H<6kYjk
zWBqnK@X3Hv0J`6%0H@M|ep7OCrH9yer{Q}_ym}k(y;*oq{q{2O?SL-<njcoXkl_c!
z_uI1l^F!C~by^vik*zwd;3pCKS(rZw-qdw#ag+$(ZiVi)%)2bU)^ctmHl3~5R3OvL
zk(5YxqhVaH_%#DG>3+NncpYFRK+}C2@O6Oreq4Jnx)0Ea4c7Se`|L#Uuim5UN7Sk5
z%E^Sh7tjZw`>`KzD)DsvVgCI=A|5jmODY=CEPU<RhCn#6eky#ek#&RO&tlZ0=~xeZ
z6W}?3=1(K=w*c{UEZ84^_L7V@qs7aR<Xq&3cLKV(-yYHT7tzNM{l@nl*T*oXfUs6%
z;@6kqozdvgmz5QxZzS;J0pkIhPm_S}i%-q$*y31LsjM81$C(7j!=&P=(yr}7LtIGF
zgjAGU=wEJB{8^6g*ZlcA@Xdg&UY*3F{n|Ahu-49CKxadAh8?(9Po%wS2hFcxz>f!<
z2GIR*Dex-+dSB4bk9Vv6oFe-6oLV!rcds55<>lq-u+{9Br8QG$3?ZQt8N7`?`skzS
zXq;aR1!xT<?e%th+`%EHV-UDn*e|xT_V=;WzcTwC#_xpRgvI+Il@+o$LRcVhg}Rsa
zlp*l&p=aFx%KoTcuK2eTH0R?t)UI!Vo7uQ$0(Adn0H?CfJ0ENR&1R%es>W?x8ZcL1
zPRIBnz))N_>h1O1xWjA@MRO2g%|?nNL&NBFdlCW*EobtSj`_C2TL(~27V057E(X3B
za1}t)aT{<d@#|MJI)=?CpL!<ZYIxjBg0~70fgI33nmEZqo?^iUKtUTibN4}@b{Pa0
z-<!Wu(XrdBhv@L-KrRVr1<-VK22MryuYNY8gSwLXSJRPyEPAmgdU1`toFN~0Tb>H#
z3dtIzHN`+a5uMcN)nAS8*ZQX`fv*PK2GI3C3!KV~xOgXV^{YP7<EWPXT_!E)L)mTy
zUqqC=#*KQjJ<oxoj(`~KC{lUwEP>PxVg%WSK;0v$Tg>>Gv8)E*(<;TM^xW7!*9UkZ
zU@$<_c?@tWI?sZ(b81HC?24JymB@K|X8A-K^fcLvh7ER&we}RFV_R5Xz*?LXq<IKT
z)#PVe=ha__@7L#}2H+0>9`@>_Ik_!PPx*&>i>s>Vl1ZJedj#qo0hKmH;UUy)3!iO8
z6NNT-*y+{lc8JZF_P}!ic>pR@Z|%YAZJI5EP~jlhFd!^G3eM9=s$r{37QQFzX2s`P
ze7A1r&A@L5+zrrteik^D1MwNIgRqNg&gitFg=}yD1l-AtdF{zY#1s%iL97eWrXRL3
za5(ZOP$YzINGwlDEgC&~A{}Gx?*e=vU@$<_b0%;q%lAJ%XDfP|7?D=}B`q600V%ls
zueIOc#xe+i!w|GWX9q<_f6Nx-J%QlVgscu3Y{OiR)L{r&1R8JQq8rU;D*3l4zHI~@
zdLF$7{2jmt08QsNz^NQy9_e+u>9UbjJ+8{dic$%6EVPSofzp8nWvIL35l5-1|LQ$D
ziaM!!XgwJRyaZ4U&~#kn{avpk`q^x}>N|zZ?@A^yQCdsbq~ApLuOj-Ji2h1<ib-2p
z_ERjnl|`STHNQU+(h^IG>pgy`dTNP|mw>+tc+0DsXsNqg-OroXi+yU?nByjm!N~r*
z2}=vSY=y2F&4%k5UhyNmA6vNi9sO8PwaOpdz~s|=?=<~g{U?2g`mtU5U-~TG?+b(Z
z8no5;tNM(t70Ge%8@$8+xX1~rJ|R3x=-U9OT?jNVvPSWtF)ubQJ_r6C;3t6YkA%*u
zzqEc|uUk#Wh3V&3R8#Ph*mb<R5+k=YHoSGDihLA9BLm^~)II}`B&3@_M|8ve`#22J
z%^n>ks7H^_i-6Yw)&TT*;w|7`0&<^J=ZE^W)ihj<{?pZSZ+c?>apTLCd02Ks!Y}6f
z1lEx7pje;a2W?kdzq3xYywC4!3rsc(U>n>ELNphy8vWhTJi|q>z5;fNlXwoqROk1p
zA|cf@DWn?I%F5_{gjFqds-H0UrY__VgqYoI_z?GYASZxzm<5qlABe0TWoUVCh^-1F
zxklEVitnSk#M)a4{A$2;0L}NOfy?%Jas0G>;QrcKQ(ju8Jy=M-{HrPD%O}d$T>08d
zzJ^K0yw3i>GFHJ{+~yf}M~Fu#A|G6kd_tT69Y7x}z=B2ih2mIoQu_{0?^JTdMYATs
zvJlSkPcreXKCs-a+LP54^B4rvd|C+nX~4$--GB4Cg^Zg3gSxB!+U5Bl?TMGi%kdQJ
zKWdk94QnQfm!Fwcb@bQ~hEeXBxx%)07Sdk9Zd5*SYMxVB4j221(pfzw!Er*G`ywRn
z0{#_+#H};cL%qA6$#+wmy<Vq&^^5wz*LX(*`dPlvv=^Dyb;4ODg4c=AGO^BDXgZ6`
zrLOS-FGm8Y<RFGox*hm0vwvpR=8*G9DEMe7^hhXTr}Cb{ZR3XVlk6a=_Ki&BICE2G
ze9MDB@Gjr;oF90`_uRh+j(pttn7e+<>5-OgXPa3G^0n=Z$9V7w-u>@9=Lz2S@7%uy
zPK?L!GoI$bZM^%lJZBqk`z-grfM7J;3bM#K`Z^{Sn)py5WW{rxe*84|Jm1eeI4y8q
z_$J0@uo?8BXR*=IUW;UQA#0sLcB?LKj+22vRHonY{hJ4af$qVaK--`{@DmFML*2tU
z$dTs{k(W#U{a*ifkJ)=11^hg~WdPm(?*so1ko<_6zhxWM(>>_?B|{HV+`g?eus5j3
zcBO*dsvgs%TDF^fEs?Jy<f}sp+I9Bt=%U~vbGI<QG!d!Sodb7I<S`U|&4IxS9x{_R
zn&}wT$q$=38_leT&CnLpyv__RGX;`?4I*1#*R>PuTrtLP!KHh8=m?f*2F=mkLsmCe
z21$eGK9bh;V|Ov}D>H9m_Hr(jBTyu;888Gw{7~2vV7azHgDedXE4~%?h~3w!fX@S*
z3()Jpg}|xA-)Hx?4rqgrq@ts6bX;ejWIQiUg0Vh=tjoPPvQgE$&HG-OukQi>0<Z_5
z>kaf&_3HgsKliRzZ^hCP<PioF6qQt?Vv#jZO0FQkBKh7?g`#jsbZFF!QognRh{Y;5
zW3(&(5k=35s88QpF9LoA;A()T=Vstk;^Ur^|JjT=bE@UboEkXh_n@!_Fo#kpu_n^5
zFo2RuPKMc!IL(1|<T*xuHoUfB+yVc3oHQv7lny1;;L)?otB?4@@*)2OL;#weB;Zsu
zU-WYy^mt5C-dg<=$Xlz*5E%Xi7%}>Ql=Z0MLkYfD^WjS1*8*+?=z4DgP9=UkG?O3f
zgM^V)Fs7e1YxJyXs1|V_FM^@a8g?r@)d0Bn9fJ!6ItHcDqhlB9(R4%$Ao~Th2WUDv
z0H?BFc|r@QD8YEiA4_Mq`#}l7KmY_UWlr5=iXZb)kEY{O;NJj#1L$=ntrzG5=y9RX
zC(D9rpP5%atE{S~=k%(|(pl3_tE!pabAC@vTCbin5Xs?8I=y&q2Z$!og3rV99J^9^
zjdWI)_odEF4su0LFvzfS2K$YB?6Z(o2bVRLY>aB}@8+}onZYcc<wSX!?PtM&U!8-F
z=8L84K<v}R*ZRl3_M>e@cu(W7LvPp^1Bw8;{g(n?4ygC?k@a~^t*fIZw!Hm$U7EZu
zq=}DgS4&yZ^slpLRL!j{8$GLxA~Lpwjm<p1bzYLp2D3q|H(7)EZ#;;H>mA%8erLus
zq~R4ooMEB+=BL;r5t_935|(^9v)w2*UH>2$c;;C?o)k(Hcd)?Gi`h}<rJbL&l%3)8
zTNRc?;+2JTR@=<@IulE@m~9r*BD9HPjb1Hq<4;4Bu`g(RQ>lJZ@&8BSH{KKf&+3Cc
z4NwQr{J$Ic1AskV936d5D?5bo*Np$O%Sl?|-N9SJ#C?s$N@=Q(D5~33_|&}h6iXF>
zQv+Zq+Ammzu@T4eQ9R-vg`=Kxs+iKA`Q40!3}VxX;&^@mA>K!c9Y*~Y#Si0%*goGI
z_)x$|fL<3$fm6wi^P6u;TS}{|G5h2QDyK~!t}N#+B~KQFBcZWy8{%2;j!;~xyM!Ol
zcChKiWs|5q4#ynnt0wC&eoE215%iScH`ITbeM3f1Kp%kazhdC006u<2%^NMx+j<E7
zr|8Bia(wAb>@_WEsywxpQ|wJ0?4X{#qFl5p$wliPdj~f*BI$yEB@3)znb23BZcbo)
z4P|2r(zrca41!_8a6-F6slLS1CNykS?QTGuW_a!X4ETQmdjPuKt@?$GY{2=RzE$gk
z9z5iBd;O)_PJQ;V3TM?rb=rg6c$Igx1OB1hkBmd<d}<OFJZEkc`>)LLP{vQ^WwiTT
z0(C080MH3^?|xdfqZ%~!_u6qg@CN~p0Q7i!4LFs<A8&H9#hj<kX+Gi*rD^wGBTh6Q
zabuc|xcX-ly;=QZ>&1BB6@Xa)P4AV!shk++$KH}bqsG|@r7%s99#8e`7d2#FQ;$(<
z<UAsb#b!qe(~C$ph^GWWT3aMvpX-}s*2-Jk7RLX>Y2cvj+@|Q>4!Vl)p5{ry0LY#J
z9RQl{p}?s$dU1O7JZU-IqiC;<T~V7{5<da)G~hooje9^gMdC)BQg~q%@??J}s}O-%
z;DQBe`yg7&JVe4clH~~Lk|ybSUeUjtXvQyy{#Ss%3)l(J^nV7NiuT9Rc0(<pUmAo!
zVz{^S1e_`_2I&D<{bOP3(UH$4md=9@1#!0aABwL0fwA+;OyFk&&If3^767NB^ZXqO
zU885o$SHCH#?jWmR$=WY+MZy>Q5})>hKL&_D!pT#QS^eMuMzd@`Q;XZRzO>Trmr(_
zDkpmJUV`4b-V(m;wZZGa3<%hEFaMnaw)uVsO%3+D+&Cjww6T}KBY~)!Bi>i8l(OFX
z7ZshgL>qoX{o4Tialkf!Ue9&{{}-Ud^Q+V6zy*h}o?!*|Y=3C;DY~0Za-DIKYp_pd
z!(rFfil-URv-b9Yv$A;ZJQBU8o#ST-H6hx5y211J8cF!chz8Y(w_<73fclrbaWE(*
zx2^<!HsCw}6>7uzhp`^yb@9kW%tQG5&a9X-0%@7?eMylXP)-LC#<&4)bHA}HS`6qO
zi;7-W^lWQJk9%auNB|@ObiZc;rxLH1Z%MzyEa{wCr86t0dS_!u;EpSuuT#%u<z>2{
zYnbr@Zr3K+g_2UEyO)T!*rTr+_2;90>hFI8-vbCA73=S#fENSS-KX~LWuL0&_6rZ?
z+`BiOr4%B!Wexn}1pxni^emXvgZ-Ix<`3pllhq*_`ce$(2D_4dz~Fvg#!GOTfk@&_
zM3_3_BPM*p?_xcpfCP*15%*nIwv%;#iY0G_d>=8&Kf=e~qnUd*6G&Y39D=J`1$-z?
zlS-V01$&d>pUYTxJK4(QbxpTwFz!{=&l|xb*W=^2z}euC;REP-(-nAcfc7_f!Sg$s
zaY*-vz4=%^4~DPc1JVIqA@yufqJs(NLZ{Qq_?YKGeBJ#u7JVHny=nS?WzKKF1avKa
zN1o&$v`VEWPR8{-5w6L-K>ud1J&QqWk=LG|fJcfTM+NBiOaVR(FwxV`zUS>%MGqdz
zxM-SJrD#XXMnu!U%q*QR$GvwG;-dO8Qs-PkFJTQ}#{jTn9F#d70VWLrJkKx|n4O_%
zb8h3#TI}3oZYL)KGt~;Fapz$!HgfY}?#fr-M+FiB3F#2c8pgd8lpfCkI6jTD;k;tz
zxZoTjGQft~cLo^tx;O8^8@-PH2HZacHcbG{zu~}-0~m2}K}Q|ZylP^G7DuI3Z=?2S
zLMzZ<cUfUZR+_#QX2wUX;5RY;R}ubAv@u?w-Tz@8*~onhp>Tuw;X|z8adZ4*W_Yui
zNSEaqViK1s^Da<*`4I4|z#0$Fi#BLp<PFunb)a4EXCF|zhK7u;0NuXxfL{ez_NZDf
zCO)m6^AE3mo=Xg+tawvhwr*9A-tx}%xq9QQmpk2&E6mVJ^D%RUnZ42!D@=2x8J53t
zSD2kvntfN8&Pt5?_rQm6#P=2tZO0nWEu0HYUl2)#3flJxx3W9)Y-?bWKjaskE;X|k
znUL?Ai_GvsGqlKb@0EN@zMlsie?t53x$^}U8{<wUrt!ZZx}^C4vt>}2BO#A`%oN$s
za++pX!1~+nWc8&116In?_?F`5kKmOaFGmgw8D)UE0L{;vf!_s)A1@ORVc%`Gk0IF5
z?DA&khVkXq6xReR$&Q%DUaIY5FC9sXua=lOzlx>-g}7y}!tXy>1pHw?d>8z|&qcwH
zV*Gza_#4s5cZB@ugj95B^F<g~N5FuT+CK+spYhl(@&710-}d-`HflZ$91fp;zzG1o
zU!Dh?O10;=F{t%ntv9m$QvMRV24~lcYs4*r)r)(Wd}Q7tXc}E<8#h=3VXm5mm7^Wc
zh9_|VK0G|h&gIWD7Q*i1WRXq&N&FoC07uxrMX+s`RN{X1o@&>2(5>}uR~#KO?giWr
z(Ea-x@RSj-A$s21UpuRItvkH=5^J9q-JoU5YXwP_=(Y?w8!(a%v}9F|{o8Cxb}^@7
z9*Kgp8^vntWx*Q7Me_A}CLb5d*IqA6-d^W39t3Zbc{&^;h`T<Qg4Sk{&9iL}3{OP-
z+U#4Ixt8%;nOFzcs}c)l0cKXp4a^-&S(dE4>liW?SgH$3`6G;PV`MU1!Y_h&<tBL(
zdy$rYC}hpW!nUoR=$pEKs(zUPo)_Ugoquix-T-(ApvT*Dz^N>VizCqzwlte>Q%fr=
z>EK9ntYjD@<T-$X(`dVXlo>x*@GpU%0UXGn0ZB9qNC$|pm?E}L6o07b%^De-AC<r_
z0W1UPar7wgX91P#)HwRsJGTx06YIqAW~WR#T{c-zAS3AId?`oF$9eKKe<_rA4faYV
zmxn38itOJ+9ZZi9997RApB-Fi7c91?TxMr4!M!<)cYw){oIWQ&oi+(6+b*QZ1B3Sh
zgi^}J!A$Z$|6|qu^iepE;y2V^qkxwIDge5_ZUj!{yT5t!$cqovlKvtcXzbQsyp2O{
z-T^QGFcdHh&<=9+2Ky^vY_<{W#17j?Q^Q+}j{epnnJ^4x8+HRWFLgSG2j&b54OiAy
z2<x&9qNAn`t^ZWDXE*3A0ln0ouA@W7bifjT?$3V#H;)M!FSJqX!9-7fwq(^|t$Xq6
z>t~fi)U&44StrQX2J8WFnJSjAW8|w+X`d?bE<5BVdo{M#<dx>tY=t>-rJ1tAEWn;B
zf3+T4E;iWi#<fl{Smf~IAt6b$yC#^ah%VcWr;bkQ`Cm9sV#5CjvBQK-_QY*=%0lSF
zUEY4N?Y~lD;x}usm0o}W!Uv0KfpOMxR&U>wrMB~^-6nucXohhq6G-XPnw5%C&^DW6
z?77zG<N|D5Z9>$1H4_uzEr}R1&;hTf$UEI>T<re0H}AnyeSWzKcq8B=faZJAv9PrS
z4D#lW_M2aP2<LUrNmw1yXy(_kUzN<Rs}z1MQ1OGt$u~%riLsvB>@}4Hd-vNnA-sXR
z%KQ(aGT^a?8D+2m@`sQCsTEw5;JV8F5jVjPrFQ@;r{(JcOU(`mi7;M6h9vIq=%mtL
z!mV7e-e+gn{xlbkOkJ22L1<^u!A=Zy$jq}KB+QX9+8<%!HO6;y<!2A&wafm)5%n7t
zQ;B?~_*W0!==;taz&`=}3!vxWx4@~y$JJ`dJe*a2wzd}btZ^X&x&|^Jgb$N}weGh!
zF=-36Oy0yO7?_vl)M)hRD;lHfr+HNgd@kTzfTnMe_jj#N)X$dCM~cQC`RLGgn<Mi!
zMFQxgTd;_;9&R_B5n9voRgGm04<Nf0zqX^k2;LJt!Q-Ik1GER|@pdfmlL7s2Q|nf~
zcQ06b2<tYk#@>ZMvu!t9sXTVtd?m-yc8Dw??1sf1Ty4Wxlzj+akkR$RyyH4W^CP?~
z5=>Q-Q!O0rK|OY$9{gv<rZ7Z$HVl}gT*!{YUGYC)V&gZeUF$$|k=L$&0{<HD13>dR
z{dm<6tGxCciac|O)KhrgVlj#4X7(80#E^H)*(4kFF*ojm8M5E);Fy@}2tmTnge$Fu
zNYyydBRYc&$ov<9AcM+B59As}-zoY_K%YKut^mFYQ18)9eG?xiq9x<QqgZL|;72ii
z4m1S(NDPxBVY?EBeL^bCKvW8XT91z1sIv(5(fH^-He?(L7z)sQoCcgqQCvLeme8Z*
z*`xrOSmn_+Oj)^OUe&3ve7#9He82q(H-3P)C`xhMaueFS;V94W3%AVf*df4?Mge9R
z(m?5Dj0G9(a`*R&j~hXs9^bzL4;Mqu1<>PrGVp3Z+52jIZ|kA<uNMw!AN!*?NXkIQ
zR+g2|rn6P{PO;P8A=pmw0^b4a#QW^Geb9FdObccNa9Tea<NZiPu#e)160pK^t^UCo
zy@P$-BLaObUIw)%#UYGf!^RXaao@KrM47*w)2973Jg5=fkr$ce$lvOo1TQq6Nyju?
z4A|usf)BfPz<M2aZO(Pn=Ek2DU$&vmMR-sB>W&K;nSfk??$>_6sr2#mLv>#M^_KMO
zzI2jGu}PavJ%mDX$!sfMai@Wt`ab)=92R)(d5V89?~VwjwTySCJ#z|zwZWi2m*vts
z*l+Gp^w)ttJwILp{yE@FfbLgkJo*{X=*62W^85+s9KyP_uXa?FO{|hvGc*OF>`A|q
zBs*EY?nVL<>e}BCkrh6WDL8@!uVms1oR`x@M&RG_c8T=DJ^0x?lNRG*2=M+&1fw+m
zs@gRJH0%9q74Uli8vwdp9|Qjp@VaLQ8S(PVtviJMANv?`<jnEpvot*G#A<t~V09v6
zsT`f3*v2BW7tgp0(G$Ag!>@o{;|fUV1WrdvT6sBJ#;t4k=WID|y#c}m|2h&h9ElbD
z1x|OQ>lp80o<&_Y212gCGx1NdgZ!MCt)XV8jx1uQ%61n|h|SN7fiDIu0qAkK6gZXm
z{HZM&htn&oPVW)3R?Z*L)5TIU(a4%eM)Ww}<9q8pI<|ZD(0t$%Lq;N?D?rn60&psN
zKi1Ed(6N`5)F*U$uas6VCtnR0RX)kgfD7FcD=M<tfUCeVaq><!_ys<A4;%c7Rk)mG
zBxd~1QfqlM8oiN4U$v5dVafmCQ9ACzl&aB`{M>9Re%6CdJult^{t;joK)2%y;8YG^
zKh%;YH51Wb{3I36lLkddJ1+o6J|ChDib{l{tN)}JT{XZj09*plbS(l-Wxw`BhfY;m
z@#$do1j*{RKpDVT!Vs@Yjz3G$)rfjEzXB(OjMjiGfTk-KIF)#QwS=6!F3s3Pd8rV<
zdpfbJmYwd&tdwur4WJHSOi(^$RNqdIzG~F3>AMg3Lx4vBn!d+@Q;DaqnLSubNUbid
zs38sh30?}`q@r;!A6&yK4N*z`*+zSu6x)h#?&KI<!-0<lOay4UP6SRx+hu9{0!0@>
z4jv9wX~pBvqeEqnA}6W<zz(7v^K8bbzKEmfTZj5J-#!NZHQ)z;rtfFqRO0#860$t`
ziPi`=a~doj3;LX~PBD25)`CKSQRKNW%KGX&`bM1?qi-?r>j5hOn!Z)QsT>}Cf6xp!
zqwxSvmZ&e{D*o+4{hEJyC&6w8&>NuX>kFJp{5iDQxI3k9!Kp1_XR}En*OG~2V<wVA
zpmwEY+NkyDsztq;t|x%M0C)wU>3Rb=mHn<Ghes6z&|gadbQm!k*RVC*5CG#chRsf{
zCk;Nux2%&@{j`sa27VIY41lI@q4#&af9U7F7)4gBJz>*2YxcCNnwd=|hSJ#fecDD&
zku#zATI&IRjTODtI^`PLK8m{ycIl_kEj%_lCW`Z7GJc|6<#zF~+AfTSfTFh%^k{za
zQ*b^8Bmp$NIl!sJ$GO}uy>pT81&4T;<Cj(R7*kbs=G^M>b7kJRwCY8q19GbT#^3Dq
z%&5h2&*iP5g9!7n>Zs5Z{?aH3D*EQ5el4H=1bFAagp5%DeI9xj_&)*h@ju;*)H(i8
z=-jtZS@yzStwIn1G!8jK5PY~&woosdB62MycuV)-^5$>om-om2LVuE;d4K}2=2V`E
z@Hu#a&NvgHoS@PR11MS!6#8&!jY4mX9|-hF$Y<hwZ*5_jkFnNfD_^S!1h%o?Lu5rp
zlO~RC)*6<16U#7L1@Ngh%|GR9{;B5pyv!<mXF&c(w^rq?%+9Yf=Nw$Mph!Rrtvi_W
zHqFjDTfn<Tk&Vb%A0WY-^$s*mRv6MPMYhq9p!##vsWCg9^MP*$>;UNgte6rqssQnR
zt^E(9Kbtn(|Nq@`AFihR=$7G`M;@e8ax>c=QkOWH;kYh2!4c>Y*XiWsIj6L+H!z`-
zy!j7a>-({J8uY<{FhI}$RNz!va{m6~Ou<cKs5ez;Y0vMD6Zl4Z6asy<#gz`k=D|)z
zuJ6SjJtba!w0<rDz6!7bpy_$t`@23*Xgi;l&2xPcmuXBk2<SRGLDvD_!DUt_@veEJ
z6<uy6naS7DGCC=%Q?G8kGh}#s{X|p8MaL%<BxlOy6z;$;!-fI!+Z4smypq^@dJFLN
zfXx6szIOrt1`xlme|La;spRYI@~Lxc)UsML7dc>tSJaeGor47KdX%?}19DkLlAh}F
znmHBavwIAyL?C(eO<KtYij7L?T^z9FajCk(!V$Iy!4Wzawy20_!Hb{_GC98(FYpSE
zgcrb+-8I`@&-rSelp?hVr}8VYVi8Mlg->IH;L4ke@v}SCoByRT{%ivN65us}=FfkC
ze+P&^R|qe!<$hZk&mSzw6-^#-E&i{(E^ru8`z>WXt(ZLm?qoOtBP`d+*t=Q-C?eP6
z<k|QIB$h~i>{%mc^MqdE?%^JZlm=o1KbcMiHBciX%PgVwX{!DGPmkU2&jx-j;6eZu
z;z3>u?7;Rp9^xq1evin2ZU<pl8I(034wy&BHm^>aXFm}>6=M>h=UF0fD*Ak)pDpHO
zlQ3H4<9XbkWn6+Nln$Ihqh=~i`p*0)HTS8WtaQbn8K_t9_g?}Jl))YmpvT8qz|RM0
ze^k8=tebR@{XTwt#PO@NY+fnS2Oo4Y9pq~&W{;mZMh=&|ImSvFKwAH#14#mqL-*tM
zIhHGIGueI)XGb_B7$1uqn;&H!8HVbl%e~|X9I_+HTSOX63<Jp20{?T<g6}B;AqK_8
z+`j;NyyO(9rQa6*CqzEaO|&37ZzWpgC%1ySgvl(nSD5gN;3+f{&w;)YS}DId2#({Z
z52ZLm@w*Ycq(bB1ci`djkkJmH$3bV{RCNFA=OK*)Vu(Doo`FNF$`w?+(kfhGrLMH1
zE99AVO5v%gQ=+GW*#7)nOqfV(MPD`Q*XPp*fj<V=1km(t0Zt`;J#BUmX)&p^uFB~T
zOMxn64cl+971USf(dSN!(RU2+;{f9TRA|iZ_a1WiRCUFM)zuJPWgVM6I+i!1V+Zh0
z0sjJMKK%zcmH2hF8J|w+wa@F?K3AK4u&P*I+s-ruB3vG+uWd$t8`Y2b(_?&^3w%D{
zd;paL^65`eH4>~EX^4^7j66CvH>1NpBV<GYDFDr<bl_AD#HYTe{wbo8iub{)-5z}<
zs9%rwb-*70Yy@cf9tTckzvJqZKTX|9n51DT&qJsf0f3;IQrXE;+g9~wq#{P=TfqMX
z_yM5T>DFh!t`HDEFGrnlkab$$v}Vzj7x~iXz%*dygwkoaYf+H<7TnR~e>OYf%o+px
z2?%SBr?V20*&!#?;d~2Lh6*HQ-TP~>uKfk<N(7_;$O_{LyAW|OklvY1Gp2MzBnBLr
z?xP4qzEr{etC@Q<4pd1ZskO<Id@`oYgGd%h%e4GIsI;en)5Yx+pXY;z`h5NaaCRo*
zbpkY>(}1@F6vdqzau0T1isN%lc~uQu8iyhdDII*us=Ubg`(36E{QpSNCbRM+<xfC>
zjtFwrJYio5@2zYeurm^1+L;)3BIJ==NDkI;z{M%40}Zf7uiZ1yCf)9vfd3WH0MPT`
zIp9=wdHSi>?^61^meH#;k2*O3^f(W~#}JB~Fllg}AXk(IXd835pY&%qv%J7Xid4R#
zmwsaco=Rht9RlKOsea0;jGbFf2VM=B3()<v4ESn5{JEvipX;Y-l;1!nysKq5AkSMZ
z3tvQyc!nGA!FS0KNYMl<Ps(a=B^wLYPeghr<uX@Dnbc)&z^gbqpcD8R$yV*z1zI)#
zd(4FXA8;f<^S>0h<bMnFzI)vZy?Grs-YRCz#)V`o4MFMpCn5_-RFZ;rtcD2#Zr2Xt
znb^UggA7i{_5rB^bfyCOCLd+yA`gPgnMlF;)}y}x^o;_6bgnsj7HrV~cL8*Nybt^{
zfa~Q)*XKz05Z9-Dw&RfIPP3H?!Dh%%VrF#}87tBeq-Ddo*;mB<KN%*IClLHUUsR7y
z@=cg5lAo|AL8gQV@vIMg2;h57VOt+X6f7Ui(No>fQ_LYhgwP5WUCH`fgS;pvA8|GF
zi(`1}P>82qhE&TC1z}F~<E6Y_>Z9d1BJ^_~QD$DtL{s9)+FUiRMpec1&Q}3n4Y(hm
z`{hI6y8#VeK0w_sdH;)knKWxQHWE6GHo)FVGU7u#nscHPI8iMb@s4JM9r`D8K4i8C
zJ;I`ovQ8TmBkltuCI%8A2QwiF^O*29o#<twH6uEK5!Eq1WOY=0D6WpJ7blzryGX!=
z0L_Pofo}oCuNN~~DhE5zJkx_@e|EI{ny?j=!bm1tBZG~@*+GXQonIM3v<xkWID0>S
zvVW|(+1SR+Ky;V#*+bz-cy?)xbP;Z34~v&6>sx2}n*Flu&F-Swe3aqVvyj7;B#MA{
z9l7(gc?2(f!E_LJx-Dzx3&a1}{}fLe<P^GF5mNgyX0?IUUP7?-yC&T8x0?>d`?{a;
z4^1V{=#C_&k22&XaF}Z%<WDN)cxlY@*8iH=xV{DWUjdH+bbtO6_*a1VaXtLct^aD>
zoPc8q1&nLiYLVB)>q`o9@5Qc%yW5lG?sn>6nhZ0=F=hvG6eJrFFmDyC=to{=CfJ3S
zm==5yLWn414nhzdJW0U22zFVDQ|bIzq!^V~&YAoe)&UoM3!WNalM(5n_*67ICjYnu
z_?3XA0KKoQ08T~wBkB3y(x&ZmJsvjl7`n~XvC^f?Mf=V-)*%q|XrwK|zA;UDp4EBu
z?L_^0-^-a3G712F0h+$!fm3OTU)&!Db6%G?`qV*0D@bZ_Igf4NyP0vn=qRwk!TdM^
zD@i0_(1(!o;m;wLncA+3uggJ~zBjxJ{ByvU08O_$SJ54R9zRUJs_c_7y4N?Odj~VN
zV#sjxJ+i@KD;WbRDkz5oB8CZUNsd&cOFou#Q}mw*`ZWDF0>2Hg4xs6O95|K#5&bn#
zNez)!@733kQYs9&%oFyL%4LKoPeAT3=`u+)V<YQ82XvJD?uuS_UTpmy417FbGC<RN
zDR3(Bda0K2yUaTUl#fExlDSg;Sj(P~hr7hs0J+>mhTjfQ1qI;%;^(=DFd_gJAOgYd
zDL5e=O*akXMUoEGmou^s8z5V<xrb^;Bk0uQJ^gIhfB`xKbUTIsr}94<@B3(2(HdHK
zGUUSZ0fTf537X*AmFrlD#n}PrBa(Ou8MMviCpNcJ@2Tjo1ASSbkIs2-0{<BBIY852
zFkjIhuTN@OKm1|7dRtKQZn;WOkF=3z?tcj5O}nFLjk9(J44s3xK=_fUDuCa#76G2<
zh9N}HMIKVKRZ1&=kM2nheiLEoPB_Wxi|HLe5-E5jN%<X28Q<hw24+S3b{DAjE=GH_
zec1GKkW&_LJwWd>zXEs9jrnux^>fV4)%cc{ZxM0plsc3i!WI+v|EJTLfhJtb_+Byl
zn9`Y5C%{gtWuN!Dg-&*j>`iqbNRtNwpM1?x$AU|c{FcqcyiS6**H_F~>vTkBn=le3
zCBKD@ZSZO~=uu_|k)q@c%lD>*;CP688t{t<a*ZW~KM~<iMbam@hqR_`?Nfn(Xuf=I
z1=@zJgmfN!l371ut@e-h4|Ot~SD14%xm<51!?<rb{{m)ZH1kg3<M|-76;is)bi+=P
zdxW!wAq;P40WB}qnub2ApG(k(dS2cLd?jEtfC}~XA?xGfr6Qg?b^s0|0b>jNV^rDf
z)xQgM^~bMhUbQ_B>jEGTpyyRz;8gC3lRLDmzm(RT!ciSRVi;}BB_*f1pyWK`3Y^q@
zU~e+-Mw{~hUZ`{gMMo&U)S_NZ*WZBu9q=ST)Acg&{|#No?oHUTeG|6XqbuwD*#1=v
zd>Y_PfS#8R0e=h-Z%0vfNasJAhF%aaQG6BzPR~=!wT=Mt2TB14Z!?XpW*e-aHdY!a
z67b`~R3IplEgzKi?=TUBM-U~%gAM_=JRB-uTmaK_Czxs{hl0S9`*j@Tq#%iv^jN{2
z`XZcoZ>ENzRQFT;;9d}0cZUK$7Elb({ZI;=%HgiN`nqvuMfH#g!$yzBAQ6#cAQBj4
zY_YFo#zaKXa$DKyfox>?llT7%gtT1mujpHc`t|+)W8l9KJr~C4%K%Pg!6!;?6!GkY
zTQ+{1j?n7-)^v#84YT#HC=<y;SYGfr<10+*E%vJd%FxcdfPyJQGPsn9UcO5>3?!u3
z54j^hWPCcj9ApwKNtRJEP_?5PbY|gKG!O3q{y5-Cfadcnz^VL6K2M!d3gbjQ9n-37
z=}>fvcQD#wFX0fRcjT$|U(CPIk)IZ_x#Fs3aXP9C6}?#(#ppd1_)I_zK+}5(@c${j
za+>ao;D!SdTsuh7yB+lCbLZSz*d7Dc0rb564Y+ghALZD)4yJF6laG4id4_kMYuPZX
zn5_>QhxU1`#e`PB1Pc9PKnPF@n06Ws$PyR?C7P|o2(!KDEb(*%h|Ch{#uKcg$OvY=
zW7=<-i60;WrcG{x-1!f}SGK{Tk|@GE@eeQtx05ato$G{sl}KDhQHl|97@xZh5r*5;
z!&IC;k$9KDGD4<Zw=uCtj+PRH8cl@J#|Yk@b%qi&5#q@#)J=UrCI2XI+=J&?cu(X0
zZQ#2B-ve~Nw7CR1-vA{m)cif)i+{K5kk(VuC>$D#^SX?N0zt|_hF3|mHb{@Zgylb^
z$FFhuh>{R_tNo)ew#iEyTsO{y@x-|f?C39OUEMPn^5yaikjJnHfkmZn+s#be$k?|`
zj3i!-goi0i=v%Yb(b$F}j~{5O=0`p7+W>b0s1Q#Y4{IN$_Iu4p1j&iUE}kgA(rEPR
z{jpiSoi9afbHG@D?uUiI>j0ZqseTx9t9mX!Bsmq)aopU>ITdJ3W+Q*ie3`RGK1aSr
zU&aY)t3CZ|;eI1tXJ(GTUi1y`C)$gION4u|fLbNk6<%ZKaQ`NjGzfN&n-QPYw2OIn
zgi5o*nS2;rd1b7zd$_oi^J9q1)1jbwouoM~q&a$bL;jdyir>4@rYx|6#$Sg8@V5kv
z0O)ov2EH7y;2G84M$Zpp+abv*o7#Omv|VU>c7yoAUN2aKSi<C^^LqGWY_)foX10Kn
z+$wV<Qgc~}%aM9HDa_C1{*TaN2(UgzwB{%ui98axw+>+tlP5>8Yg4+oVJ1>HGDL(h
zrH9lq4hsT4fUh!nIXTnqfEtP<S`1&0vU#M}ezZ-u|ILMn1-2+;Tm#VUuUL%O`+x->
ztM>ocQQa>p6VIZrY2mqDjz4|Z-H%iMzN9GLYI+)7D_UBYp1C#UbLQ5}^0w@jt*gys
zkTYqNPAH!~vs}htL)!Aiw#-z%gv&>*%3l7NdiRogyx_{e4VSNXs^7h%9>1&4UyTQK
z^mPp91O#W}2pW7M;^ZORnTt1H({I|~=wPye@TZB$C;j106S3W%=4P6xfDC~C=UUhM
zpP(5LTW#|!NC$B11oQ_ui1tBvy77!TP*9FHq<O>*HDWv0nHhG%)d(4bNJE|70Ee`o
zt4MTnA7g26vMyH%eznNCN~GCC7UKp~#D`spTg$OagnOmnU%+$)iJzV`lkB{$X5O>r
z0=CWcKWjSAn+VT%vEY{oyr$J6MUpvi5Ax29{v9I3@NcI1t2wY%xOn%4+10deHZytV
zwTP~5hWD@>?p%*p7I}3%?>c@d{EhtAaeggc&9?Z+PxyPd75;n$&$|kLzMA`?!%B@V
z;K4^&+M}!$k~sSKu=lz6fakmqGqoYx5h1ig))Bn(BV@|<I1FprBfxfI@)?Mn)6s5i
zx=3W(dw^MF^9n2&+%5_w4=@LY1_X|BU*xT~@EcgCVLOl*;@J1N`!46Zc<^f$`G(nc
zdqik~+o}}|AVIH8!aG7{(+oQ)V+O%DG3w@u4!%&UBe8jA*#pw8l%81n!#`mMX!9L+
zzvt2MZE;L5hLRY*qnFe9YKcI0%->1aS1TOw(R8jgai?@}pX}%CKrcG)apy78JWK^#
z0DwiV>HJK>s;@b3;BeE5!t)IIMa7HEx=GmATYM)2pL_^Q{uUP-7{X1O%bEKC9FPLv
zasD?Mj{<I6oyo15W0gJ8T+Bo<I*Xgf*@Z||yZ|4;nY9}fqHWwX__Pjm#<>ysbn&}<
z|4|S;g?(Lug@L@_r7Ymb@bW{{ZiNeYVM1QyQkH-a^DG()CZ<Izkl;5b`NX8fEVUrz
z6Or0F<!zQ+oa83+q+og^ZMT(C*vid_I%h?LP@W)Sy5k_yPfl_e`E|oq*cT3m6VO;=
z=gDfls=qw8UTp`y3-BL+Uayj`z#0Zfepanldy>_9wcwD>3uRTbP&ZefP>%D}Vh3kC
z`7}yTzSX|ZGVZemzz>RdaL+?_@~*s-zuFhItoJdxqpzFp8)o!NQ$`BdO#42sXGojL
zrDyZ&g6BhEiX?b)5yea0sj7XopgjxkX+QcF`0s$gm9h491>Oe`e-Bu9$omn5<xLH2
z`P$mtPGed{jr4j=tFEVOL^5QnTkV;YUK+DytnsD=Wef>dVGbC)+zLL=+~=6R#7gIF
ztSD{G1^i?_gsvDf$?}caY%K1bQxqQ-qm7ym-vduxg7XMK_jArwIHLe`Ki73v{e1pU
z>e;ddpZ29;QV-j56<M=QqGI+*<+DkAkiFUd+_%YQo9+K_`B=r|W2w0bSva@a6;REe
ziWt#rO(ge)Y8!!EZ99lHI?+rPtAsgSfFY7?FALU&pXROJe&b&VP7_6j8YHy{?J;c_
z?YjtOA$SPUkg=Bk!^*J3&sfQRZxL@7c98pu2S2w$|FWFVEyM>3fahOW!3`pOKaTam
z>qYVnBAvrO?lw9?sCBGJWd*(tDM1Avd4;gT!Cx%D>aX7{*gh9^?;3VK7p?8Qk44^R
z;!3tl_&*c;9ns3P0uHP_EatpuwRzsMHlVYk_X%sgh^`f`&l=+_rG-u}U-i`Qmzew)
z#&5=A#QFOixsRXZNE^!v$XB)kPNt`dJaesy90d+8(%_U8#B!4uOb)CP!Rdi$SaK@#
zGfNy6%}czJMg569IsqA^t>pY9D><5!91PpxkWxu!O;_V-JI0D0PvNU!O9RLO=<zfT
z_*8%%PeE_pm~$BGMr=gUs`0Q|HD;()<2lQC#~vW8^eb3O54V=~UO(@O^y`CpK?vNu
z9P$04wU%|U6<%q{#p4Mk)-Zmq+1Fm@tsdXg>OtXNv3l&TQ0?0Y+I9QB1pXT!ur$`b
zuE37~=ygNK|66=G>xS1r418RQHmKWBnz{|0>rMZ+nX$kjRaO-9KgSLJ-S*}`gnzs!
zkWAyCAAgVWVp;&s^%em9msd*8^wt5;tmS}@0&fJo0iX|3-?2J%H(KVc_b)6ul=(k`
zjL$qhH=Or_o9rDywljF1d=2ji`i*Do9~|T4UJy@W>Ul7W=Rs2!u#e({IL<2LSx;tJ
zMK<mp)RwQfz^(2M4pWKANF<NnP${WW?Ku(jYP;tvf!_+a1EAaU5^yTRJ-_e6Xit+=
z01bLYHE34z2L0j~^I{EZ-k2LXRNuYOn0(!s9kMZZb3`6EMmDBowrWS-HL>w_2k@r=
zuK@IXid>7o1Li!g_Td?~sD7DvNb^bd&*<5-8JAY-cC~D2|AR^ghHBDYN2ajOt_%Iw
zSsKFVNt3UaG5Nr+sLOX*&QSMC?qs@W8#|FMsK3|oGtlu^X>I!>#>>*%VD+Rcm6doW
zF8I)Wrn{|ELRbnzX`NUnGhIpjZsww#<H-6~p|<{A79Yy4<nZ`H)=S7i<|}?ygI8KU
zbsO*p02={%T)YgNindqXewE^D%b20Wm*eJEOr^B+ne|Aratp_yvHdMj2s~roZo<i-
zA5XWTw1vA46mVHE980IsyoGVHbuo6Hqv%Y(E;fFT13n3GGC<RL25>5U4ogl^RyD+n
z4L?hEQ(DQ@49N_iu^V6<2Elw1{E6C{mfM4Fv?KXxbPiUf?p#IRM%1t8*O$P51DMNV
z^tAy_Mdv?jbMK+>QI1E+#tGG>WI2xY{bnvtg*dL$(0Pd)H;A6RSF`0}731kjCw>!$
z6i$)6^E|KLLC=Yxht7MS0#Cjk`w~FUqw|1Y3UIx=a@sC`+aby&VTv=8Gzy)2oJFHR
zk>9ex6Mx_tj&?)+cC{&0Ztdi2fB8B@zIJc+dzTb)&tQYMTze72%Qj~0gha<OLkL#X
z#kFvzal{ZFN^I-*@w9-2tV;gBn(jR&;-Fw}3{A!v(Qa#UH=~t*gX!LHx(S&9$`}Y|
zNVijOIIN3ok=@#&b+(4zCTK+9IN`EI3>LPi%`3GRDt_+-FS9&;UwZ>&?0}a5n%}uM
zhKzoIWn0v^SnEA!9MV47r2cM_ARIEQwH4KnX^=y<^nAWoSB=ITBGU&%$-7KN$!jg6
z<Xvvc$8qv?f_znfm`LICp0PLBRu+=TbNg&#x6@A);%b<TC?|dK>W)aXv&=SyWk}>1
z2@d0l!E6zBCnMPjf*6O<S^eQdHh_1*cJJ?!x(vs+cGuhd3On5wc0*Pxob}pJM_s}M
z?13qG$cx;$Oopi6V8gN@6(VA8%5|~&64hUe(HHq%e?1A@S`ObufL?E|08XXodevWA
z58g6<=XIGiZEAA|UmDs)b6}^?3(yL1Ml+n=UrR;|`j7OB=FkD}+rYqKo4v_4KInot
zMt}6+MP#EMp^W`|@6z8BGJF{=^W0UR4&d|MGRiZ|jwj;~lIir87C4YLFPD+li9Zbs
z6+gFwUwVB^TY;PyfD(Y_=T6{M;_VR+lb?Fe{-1Gmaku|VT*di&vEpm~%9tMibl??$
znE=h#xxlF$o<1M`wa2T0iUF$JYq!C@_Wthi?zKkI<%*uos863Keghu539)Vfnx0(X
zRO0p2huP2CF+Qzm2<AX<fFtJtjJhB1-T{Kdo^}99Op$_+4*qj+zQBXZPLJMd(4*)1
z-N3&Dd<)R@&R+Fr=lPlczb5*s;s1w*WY$$)|ASw8o*OrZjNyRM0L{<mfKxgAdA>J4
z|K}6^nWO&?aTWKsI>p!Y)v<YgEb#Gw69Ag8Q-D+X6Z2d#cCU%Pdqn(1Z}8|@hx+t9
z{|xvKfL{Qbp3p6ScAoFu&j*<3KaV)TL@&NZ@vj*4xZn?+cP|0H5OBFiBb~wac=sB8
z&TZLxB+upA6`C2(+sw!&4xrz>dK*!P=2N&H@h<`G0h&)kfm1nLyVKb+;`PwVDx_l9
z(L&ILBC?+RTN0#?%L_K-8^=fC{7W7dVTke^M4a~9mhJj7B9SEM(8&mDD>=9nU90%D
z7<5HI7xC*k;O_u-05sj~Rz>&W*=_FQe%%yDO=L~aWLYBsVFDZs8<8c6wTJe_#&x$F
zPl%G*F^YW0CJX`+QWFrG5#(=yHwf&&uT%7o^5`S_=Kx;_SPRhfzv2B|pW9j-=V2C!
zZgiZ7>UNMnZxDF7lR*lNKo56YNYa9Ioe0}A=1wcR4mSTsno)7&UD$ubq=B81aI4=k
zqsR8}xVOS7_s-}P!27;qrblPAIU>r^gUR>Jh(0+3SaR|J>{R{v#hj03S9w8o&>#6X
zsP^TpiH+w|flmXR0nqK637pE|+PPB?b?%{ub|{jAk(7!CDsR^Ukt)9(ey<)qn^B)0
zFFyk}Z^PaX(D$2E;H?4i<0bi!<T80(VmA#0JVQ)wjP+1fKMWKiu3)ug-E4I*M8Ol>
z`aADn7)KMK1(1yZmu06%?+nnQ=j8>!7XTImH2<yyPDRT-^t#a8pSky`<ux@`ls`bl
zAXvj@83MQSq9*TT_*vel`fEGBPuKTv;6DI<0qFXE2To=Gez&pO(n{vQ(k2W6#Ttej
zxq|ZKR%sX7<=*&T8#~v`0)95&Jb<q63gA?V<MPJuYu%%KmK9~QN_$MK(zbH&btofW
zhnMV&jFa0!SdJv)fFZPw3=#dvv{IE?kDl$QuRnf8^U-%Z&V+z8fTpJta4Oy6{IU*6
zj~ouuDk|Z-yBBHYinLmUU^la25~qk8PQ(os0~K*A6rZY5ukM$6;P(L@0BE}Y0h~%p
z*5@WZHKQwbKB;As$dLOv221Xj?9JS0FguDge-Pe=uAOZ5w~DMW%pyy4EFb;Z8S123
zv{KQTen+f7M*<%QI02yPJPkONJzoB-gXQ^>{aIOhdU<7BX0Lj7y^NUplKn6<wutsn
z*$^d1i7F*Qx=GQq4)tliy$O6L;1htR=S$#JTAFuE(nDSoapW|xmGGbofMbs{qfvC=
zS4nb4=uBgqJ$j1njQL0Lb%-$r=mya1PyStqF%LMgZMCG!?X8|4|64s<I?k$Vs-~7x
zM4N;BgJi8T<tmeQTrK}RDF+Yb`?W80=5BLY^edC?Hh*`&LT9~X@3x*a!&}S=Pnu$j
zd9nGV*=vjWP{epo^s{qel-@V!vwQPib!O61Gk~)})K2}I32z8k>!!d&Bbgt;Q=W!n
z@15)$7XF<1^AZcwkIIBn`7?$DFAzHitSB@{IULbMdWQNJgc5na)oVNJ^%gVRwVBT6
z+xO$F5!}F&9_2}oz!o@<_m8+d@pZ^kW0myg86UwNW*Li)fncu4N=(gxDsdI-nVcW$
z1?ToD(98E^DXtYtu`;fvFMN`Bf1W2j2Lt1wKgN9(e8;B1AR_GRX!7IQ@GUH5^h)M5
zLImz0)wqOvO^3GDhq$<f^V>O+?1{1L7?Ht-3P?;l@b#QO$jnlERKg~fxCu%z&Yxsv
zEl=&AhJS+uJ&7GBo@3_Y41`TU;IoTOyO-4o5xA55NxnK3e1Qd)+Tr9-_efI0sKiYy
z`kLt}21)CFmzqDjF&4A%me#`&cSD{Hr~v5kx)k^gfM8tyja>(c!z<?zS=u7D5QWA%
z$UyQwc^nDqrN5($X_^6J?@UB!cnP^41j|ixARP;*_fF!;9mxOW8cQsL;Ir+m6bFvN
zG_A31p1^{3;=?w-1EwzE(_k@=9`gT@VYfHFL2kjDb^Fn_BCq}D{S|hxfSUli{l)h{
z{tU?T^4u)b^Y#Gp=ce^{9>r!Vol`z!RvB8>5*AFwr>9p@cC~}dQ=C84hBLcjW_4x7
zG?|aB!F)AIW);5CUN0veB*6)67wKf)^cmmSBa{16teo`3;PL#}h;ZJp5W0Dd<A-rn
zvgvz{1=_(gCu+fLC8?u7iuhKmSV~Ir5*CD{^7Qth><R4bwtX-wlXyPFnHf9}_E=Uh
z%I{*WQZg=RV7?4LPj1~NJGs4;ZNqLal8|(hW4&rw&WI?!;&{=@j`R<U)YL&q$J*t*
z*e$dsnX^WQtO;zcWu4$8;rvfdT+HbTFr5_i-1kg;!Z{Sh)7cFs{4W1R`4O;)AO}5E
zRHTloWXl;;^2l{Rfe)s+L9K@S*Q%g^nVD=l<Sc(v<9$2&Qtuc3d$IQe+5q%^kq4a0
zA?~xymRT%=u${wU46!uJX{XIVD9x8_q*%Sd#g(3q5Hdr-$?!V`t#uD8x~fsHrt4PV
z8vuU;Xu4hk{^#hDBobN0qcN>+CWnfYv9vm`=Eho37UDg`a2U$LT|$haBm_j>4GdOd
z<mlS4QPG)xUyRO?z$XL#0?>5M0#0SCXCJHcL?2{0H{+iQsDWG^r!A$79JOpI_WhUa
zi@EU*QE3mPDQ?by<rwI@mx*CAtH9<*6n&dfzn1%a3p}_U=Y4>l&lSMu0bDQ7gU*ML
zcPR6DL`~Jq;<>ZVp#Y%7(drK<2-YiP1QZ3F3FwY%*h@%C3M+*dNgeYZGwOYaqvo9f
zTlt-coe+j4Yv3ct<N=z52|PM9ncv7p`Z8cP)H*#oBBxP+hY}KQa@-Fc%ghcZw!W76
zrGe{_d^_WB!DpK!ic}HrV*Zth`7m)sWt$&Y{Afg5H9xLz2pMk!z5!@{oVFokoC9d%
z<?C7I<@E|4z>ltJeQS2U)JxqMI?5en_0o%dRawQfiv1~fnktc>KBKB))<opRYS}lR
zP*GDlv-G&8@26n=%W#@x^{k(K-Jss=P>)(6e>qsb-mHFirhGF*zP7nVj=*1##FIUY
z)E(?925dDh{p?O|JmW_iJJ@f)c{WW@0)q~SV0JBIS#IX<u5W?QM&>O0Xn!Q5@C~0x
zckl3>>d#-{^R2=k(u6PQ(r0n-PO}0?x(uhhgj;;hYM<ZNk0-W*wY+5|4#Z^iL9Njm
z9eu30#pGQXW!d6v1&0YeTn?mC$s-R*5nb~t=Hg4pYaIm2vU`g+9?;i%o%s&<e*wP$
zsL)5_@0kajx23bER*)%sR}A&8#ytV(F3I1@whbfeDOF$b{jvMPv%rH7AQlxskH3w;
z-v;z~Rq3xLzM!6a-e|#jnAD6k0}n`~`q1!->6HEJfS;_!l$OVSGzp6BYi+66ZnWg%
z873ba)Z;VtI7j|&jC@_Jes!#T(}lF*ui6hL8zcJRJe!B{5_D7TBe2tkFl;(u-(oZU
z7A)I*cHjd96A0~qdcX(U+#n7!k${=%!;v#|%4Ecg8!*km2U^25J_$M0y4bBSp!kqu
z^MpIX$0nUMc~;@ftm7lLHDU7b!eM6*EF6%v9H&#?N6h*ZT6o`QEa8aBy$TDm&Ohl?
znCYZVPArUO`Ex3<!v>rJIKVm5WndbA3EM1Z?=!KG%w+ih=N8+4E%QCk{9Pz5^<x6=
zER)1!vrr5$7YTc^RR}F<iaQx*`B{9juh5_6P_pwVLQ6~z6b7>bt66w*s4$!rnhZJQ
zi)uWSJQzD~Ed;&>a3?^Ihb|8xzB*v-Kh-!W+o_)0T5{f0+2*PD8q5bAc@nB~<>MUr
zI)hF{uiA}K;|10e!U7iuBbWE)BkkclBtney8j;}}o9ObMA_CX`1UAi|z=LjojA|qp
z{|B4=5-WU>WxWZTyD;N8X-~rMBmQ=FC!9|gF?$Sr-^Mw|M<aII4l|E}Z_wl;g|&fA
z-pmR&v8*fjxYH&wH_bZTDF;JO;>G+v9AEf97=M<Tmzm;3%<Qjm)WX5vd4l;*@(uMn
z3HapmHcY7sp)}fIOa5n>Ptkr$CI3yu*9Pz`g7<Wee+T&Ifd2sWzWgh2DlL)AH!Z!2
zpWf7g-mR;QamDi6A<osS_FQ<;z>-10j@OL3?MU`H9b;RGTpB#OM*S_e-c$mg2RIL)
z>AD^`m6qt?n&>JmE3KvzmWbR%(&bzb^C~lb!@1PYGhFD<amTYv*X^GWiC~bENSQ+>
zOQr5D#jl;HSMQ5y4?_<OC;@1?b^@o;68%sUU2vC#c&fQRJtlVf^IG-SNvpoj`9Gx=
zG8*4e{LJ4N>*r~}=K}s8Y2N`~Rk8ekc2Bz{x1@*En?f2Pg@hy&ArQI<ks?S@0tqA%
zl9(dk^F2Wjv0<JSc@|VeR8&NtVvmT5Scp$VR0P!68!A41it_*N?%8|8B|-fCm(QFt
zHwkxVXLo03XJ=<F1W0~f1)P<?)XyjKv-{(hJuG<Ee%ncoUzEo81)cjq#~9GT?SD_;
z3<Qu4kaV5}oRx@=gxryN=T5qCa1}-Pn6Vu!qSRn;!bRv(%3XoJ6R(|wIRouA4jM{K
zCXPOwxCy(FYG+fAtshd;IyD1VTjGs@u6%u(o9W+dF9i2-rr&)=v?|=ERd-Q?y9p~D
z2Sj@|fnK?ue*pX|z+r%FPw11PJ%4dOb1KI<d)aYL{iz-2C|eE+dZ%0TF#i7y_?3Wv
z0VKWmS-+QdZu$Nb{)^0>-Z)5u+nGp6h1k54R6eTDeMI*@s;54}jy)=;<kF(4-m}~!
zax!?@ANCYxQsiaJAwl0Ss9*9k`ziQB0R{skePzH|`HTGI`x~xXbjeWBSc#1S(gZZJ
zEE+e!fDTY5iQFg^9}0R_qdrN`)4*Q<ybO@^>;m2$JzdTRPRhCfVHmPKW<$Y!Ig6f{
zrvvni13ncn10d-+2RJK#IUh=pA(%~|lVw3!_K`LIQJ>_`yTCsMd<l^Bd;^@7zt~@X
z3vie2DjUJwI?OWGU9F1NiXjw8dGfKKr}UYCzPlLsO2Fj+NzYBdIX#xY*2&KM*t$|z
zy(F)urKJ(?T#-P8i@@gchWeIDM8%rYu&^3OJ<Qm!R7A{iD*IT}?nAh4kp~ImF+5Cr
zYteGpeqPyP(fK*(@ZmF?hh@*gHv%vLAoZ{s;Pn9MFE7t0SO3XAxhuWM1GH%3w8=ed
z-Ch5<wweDa*7T*AztLy}X2TyO%0Urb-4+@WW*XtqAu-elPw>WINk@KBJdxOz#3FcQ
zqz317rg~I#ihgJZ?Q(tp1Gwio_?7}>KV$)CrQ;OhItKScO?4&WH}ZZsp&J@sWLAJ1
z*n=ei*=MX&l{*n*lO6sf(hT|{VFy1<q!-a6gihj}0y++TBIsTQx+L9)fd2yc9U%K9
zxgGhs0Ks(E{FQ!TV`k*}tt{YsPr{*V*VHvEu5OYiZqbcbu*SIoW30Dm=sK$Gz<6^S
zsniyYSg?uVN$iObQ+kBnKg<*9ar2D^bg_{lz)>acx`bopyNY$nXIA^sHaVZa0{#a;
zeZEWkf%gFf&*wcS$tw`tf9Sc|sxH}hSVE{%<HT4o-()<nIWuwoIgFoyigW_|jJJux
zBB(fxUc0fOi|oLjB38|GcwC-Wi1`v*ZgBOeRJ4B_{GwwiMT`LMugHd@a>(MtYP3=E
zq1SfUX8=Bc90%-g%kVjPzdq(KjDui4@DY7#jHqocXYt=pW%SfGk7qJ~PQhfDqI{0a
zxDKj)Ph1%NKN8hrUr8x7E~PfF{V0LqAQppyVpnB{+pUe**^hWzKNsVp4Q-Zuc?Nhp
zU<ZH|#+zV%oEn94aQ6X?eUzh|Mq$WkwCeS~5RmJmfX@Xi07!XqIdE3uHweA)&+MLE
z=a)1kj%jFasc7In%Lv@rf%8U$GabpF$^2Q&P9XOg|5TN0akr3(lz4cNM>`x^3UxSi
zIKz&z_leX^?qpv?7vX{%qCGOPuXw){{M%>I$>cuW0pAEfC_uI&0yryD?~?CR;v@3%
zq8Gxs8kXx}*{!M-4O6QC5eguiSy^V$QG<GX_{`|I3iz#ndjWEMzXtq0K!<fdVamsX
zult&WU5L$Twl3z?*26!%zOpWNLiOVEn%4S-)m4+Yd<G>+?Q|u1j*@oz4t)*=nfGvy
z;$iv{-AX;m;5?+ZHjNqaZt4k%r3L9{!fY2}7WdL)^ZPqebv9KiwZ$X{`Sjr5jZa&M
zRzq)R`5p6#L-nxMU_be_;A{Si0Y8{?fiDJJ1dx2a0l4@Nq8)PGKd~K|+4H(KBP(}q
z^@7@Z-ZV4`>-+~i24N&y?PJ&@90&RD;fjGWD;;)>Fyl1Xl<c%v55pG1tGZbK_ocJx
z13WItp>G7epMxH0FGzmLrQ`xi0h0fx1D^yq!B6H_LH{Yx&6^>_?63<EQ@nC6i`~gu
z&?q&P_l&HEsdFn`q+FCv)lSv<p{nDGOFxb4EW@>_Y<bLrrDl;}9{ByOpnnsi7e8d<
z=S|=r0saS&^pAZRXA^*s`vtv?);Jn7x~K7T0^iv%V)Py&ABrsP*Qf_ED&8|Lc$nI@
z(!=UKdch{W|2=xdCOsSa$RI59E^2#2wY{!7LKcRwd|$c)DZ!nIMMbGPBH-DL(THf^
zLYyim%)`-V=oN-5A}{<(Qm}^fznVl`L0m3<1Z=&hq1oGr_Pk1$!*am}-vu~2IIL;~
zYJV+4&BkE--r@t=m~Zjn72ux&z5>W`7rFCzxwOraPbc;tOHI#5*?7dBW$oTVt`s6@
z4dv1&l|M_F40_MFSyPT6@K6RK7lgp--A7NQu>{xY`8{}-kpllXc7G+!HJ}%$&(m;D
zhim$;`y(lJ{3z&e1bveJCxO2J*a?vRxDWUTfMEZiq8`T~(>i4g`)M_`h{xAhIS&mw
zvBkB`T<+s85c@qe&neJ6GtjtY1Ug$3jd6##aQVjOW2UX8Ox?_dx|zf-hba|D1pS$>
z1nij=z|RF#0VMw~0?tZs-slslX{uh-a6vWifsspEs_UCYZjR_V3!z}-0a(7G_lzBg
zI%?^Y%+o1?Iz#%{^M#$ToHh#0LQ#A_3Ho-TemPHm03N#wIgkO8z7fD#>D(mdNz2AR
zo!`@%z*K|=;%_!k4wHM;?^qbHk^Gs*pUM2$n?HTu@iB9sj%>SGhTXP-7}Jd?+b|>2
z$WRk7Y%)wYO)*pSbi{?kaG9cQBe(^9E>5`EM^-w17VTLJdgc1R9r!N58vxm!eZW}>
z)(=nQw|~CN_LSE(G_!Glw54ZVYy+#$N09IoT7<K4bp2>8mAxu{vHJbhz_=X){A@rg
zK#tpcfj<lg9=A0;${+4PJEnTcRIF%>tNCkjuQq=<d!*&DDL0eLo3wj$_a;553!bd(
zRr9DGj|-LwkS$?|XjSl@n)a^h-lf8BjYy4nI`tRSf<0>5TdKQLjZOtu=R*l&;&mp@
zkkW8WnFQgIh8PsdoPX{A6YaFUCiuzZtPgk|U?@QHdz|%qsVB(yiTswnsysnX15Tes
zf}9!K^g)m7q1*J($C-_0M&_W5(9F;b5LSvfuvYIw?*A(2X+wQdUc3l=C*U=U2FClZ
z*NE}kGaZ@P{2DC3SH@?X?0+Wj*~u=Lp9<9_Rnbym_ps`<y&hOE2LK-oC<Cy<>MaYp
z?|EYTd#u-TAB{tuaf%klzfw75)w>LJ$oab!_`d;9bg6gC|Gm9({stP0s=dDnKL3I`
zeE7`zJ@*a7hX(Wqu)^9q;{UT=cIh176pKd3Dq5_PZ`Ip~I%NND0)9W>p)U148ss1U
z7x>KE>o>?B*J_+k$#!?CKYKTF!2(JFa=Z@)&dQP?f2b4b=ysIBli5GW!W(Bb*tqRa
z=AS9o`l^;g^I?mgHq_@ueXJjz1^ztXRe+Q;jFvt496bKgdR!m7r^_0I`RI@6RjPKW
z8mVZ}du-ZUHU!3u#$E$2R(war`0#ZE#^prdGXUoTB%kI1XC>H=_Eh;K2PcH_{EM9;
zee`uOkph%6z@}dO+c7^adbXfGAAZL8^fB<S0fzySo*#j;5^T@<OY~TSHoRi=L|X;3
z0-mpE2m@A%r9t|km;EmIQ}$+H9Jd1h2Vez2(sLPbR)X(s{v~?+gSqFS)M3%nf%@dS
zc@((%AM95ElAaLYtOT!{UF^swlEyXsF8i(Mii>$Zr90430HnwA=SN@mhv3U})FbJ*
z1o+i}YXOpu8-cUZqyPD-P|<|drD!5M0l)=lja`CXPiP`vOe&5EIzC4|@*F7YEtfI?
zFb*K+RUPoZ18U+MIXzQ$iFKv(PwY(a%U!aR<#S>eVftqweI-w;h&UmS(_<`nVgY|<
z@aIb+o?@?KAZ@>Ky>_pjf1h4-ukN`|_u!Inj@I9S6ePy!a1H9G^>b#rGPSbi{Fb6-
zPb0tBdIQ1fQ9k_uQ48oIX63z}MMf#29^&Cd<8hdr!_j?ci(E(Sdk{+-aKYPw_S)aU
zSv+9RY|-AT7p!)tV}PUdwEquo@4SZkdgSYbXiw=d-=e!s(qY~i%3oRh`3d2#C&jOR
z5U)exhsVV0h<L5g_+P$Y@R#*N>-CP#fB4_y{=>K8(-SKHT`qsl-3<+Lzi|t_S1-Iz
z&*Qv($a}9|%s-g-=^IFw54*d5xT5R-StS1|{676k{FV4J{Qt}S{{_9)rpiByzE9t&
z%MZu>*>N9|?$h_6+x^tAul9ckd^P^hs;-s3=_d`pf%$YZ83++=gJW}+Ee6}nP&)a3
zQn;Dq-A_D^k^%6Z??X!+gKbw3BLRxH7m@IK(<=B?Ptm5}hqm;PQmr^F!bpabNtHHI
z8*ICTIQqlc&hBu-9%oCm8_C*A;<$vsaph{Yc#WEOwQ63k#(6F$E7anZYTgP&Wuv)~
zHr1}{F;|lBY4Hy<?|W)~N*nMsYPjxQMZTbgU(&oUsOLX)(VMjRKQ!-68s0&5&ng&c
z3fpPkbJX013LdA$+i2e7)U%aNR40@1WQscBZd$yN=G{%BuSc5NWXHS2US+H#uBrBU
zD`@dbnzw?QN6F>nH&T3*<o!m>Blz$mDLz8-ek4iXl6m;IkW3@9U=Nx1J}KT$^4=%r
zUhHt+CdGS6-rI1_#{bw&iaSW&Zes3)H^<AQa3{%onV3(LiCT?0I&|{gq;Mn2LnfSC
zi0?4V$CQes<95>nECFsbEcB!Yhqk)Oa-*KEO{H_NL564Q<Ah#iqhD!s5WR#rv)wBR
znd{8<UJzdFt#)RIts?dX+FWNw#G@oUJL*C^(3ts7{6*|)k}%P>f~wi^7t_B-o*lCg
z_9rqnu1U>KtBuAVq}TSsGZWD;n|n`AU)cK-qGspRB;iYQYm@Pt{MuA}S--#cy%Bq?
zqJI?5W!tG+C@qBhi-$bq)r!?TIEi6DR;=eCFxPHkD>n0Nrg;T*6x#C~9{Zw@VrO1R
zxbsTlE_CI&P1ohbTkOfhjlMQDtT;3ezQQ~8h~n@(IKx~{qKYH)qRhz4NlbBcUQAN-
z9xb-GS6-~y>q-(|9G4ew#$8Slixct^&4g9NSD2LNGn3w=DTT>-DP}T11~`-~<khl$
zVjW=X`3B$*0UiO!b>cDW_fpT7?~}_ZYY!qUl&5hEWs9OgS`~=&Y|sN!ME%OUfpsbm
zcrjogK-Pa6a8^#TUY?wkVXZASkdi$expr7|tVTU@z5F-ucEF1ONyjU|S^3N7twL~H
zRGjpvm4AO*s^Ck^djWdJ0zVUQ7C_Q712`-HXTFGq6P$@IyPFJUSIb_;8V<mLStIQw
z&&%ed33@i6KFObVfOi7E07!bi0nW<*kv{=yDxPE>)2|S&Rv=)I2EZY!mPl@8UIgBB
zK~L%X0X?(=cqL#yK+<y|a8}BK{B5OLliO5{#DvvNxc4}95>8lHgs~fhns75-PUV1s
zaLJo!j-%X&qxOgleGok@GKMYw&D!Y@I61;%(wHIW=|Fu_&oTES?i(N#AoZM)z^4Gb
zkz&1%Xcu};%YVh&PgiDkd0j1n!LpFh^{|U}^NSXiQo7MPz&K2v5Fz5PCENxS&O*c=
zFqR{82tq}<=m>Z-#^uLkOn`f&-H~giAV_JEnX87grc8v@rHNJ}5YtE&=?H<}Vh9Y}
zD9f@$yViqdA3ihr@C@)>fZYJe=l6lL(v!Xq6-~CM3R^NHytGU|)0l0Vx$GY>+KBQi
zV*A-?nQ+<f0|&D))&TTo3p(;YfQ`qZqYe1efQSPD{(cTT>LB(4(=7g8D&BRmLa*|(
zF^H?|qr8gD{-(954kS-S_CV%rl$Fb{dVX%%-ES+9w`egET{1PSU3*x2P9yEwa`D<?
z=btVoU0?3!5P$iA@gjLetJtNr<27NI_6J^lcWJBX{raHII-c&$`ZD^8ma$74_z3Cq
zDEUmgUoY6K59hzJ_kcT;b?QLoXo+riIlL)hjwo;b!w72|ai?Z~Kr<iI?BBy@c!E|)
z?TPvCcm0L=GNtZ3y^!=np1t1G(@ynUHTP{AE^4`;<+MR@u?;?^4*FH4|5M$E)nql#
zqxV&FjXtq-cDA0Cz7DZ=wV2y9$8t5_aJ11-Z|w6_O))UMp2Vz8j-|zkdcxosJx-0F
zbXa&ST@Y%&T`jm%9e#)EzEQQ`pcbrEhu@^SuTt$-ss(G*;a98fm23>WNVOp>e%}v-
zwo$r@;QHAb;ylBBHl2X6U4k%jZG^r=v~?;ofaBP|gxImv+DSWc2-GzHAT}1pFxFg6
z-Gf}z?RHJ|BLA3ou}Al&yL1eC2N@U^iu5dMBwQgXBK4@jk%&tcT^_TXMB8HvdJT_t
z_p-+q#0`&k$JrAL5{4(b6Hp!OlttG3$Ji^g#^+bS=^@-n1jzY67x;w$uUCxAwSB~U
zNzgePW_`<~>hoKxn_J3R0&%zwz{{3?rawf<7HB2>75fkl*$x=9UeQk9rCnmYqQ&gO
zuzFT2;eNI}eBg4Ny7@cayn`jB(UMgYK_DZwrRg|CfJ!=u#>V!IjEQYZP0H%0I-L3I
zt$x?<!uKn06L21yXe|CMfXX|OuA`y&`7Eu7v)Ck;7&v@DkSs_XU#Z0hv@ze}LnrWW
z0Y3tyyl{Oe<i+M7e-QutoLkvkJI`7!5kT$`VWHy=7+2u_teyw=ZsAKDYrP|ABO4^R
z(|55D82JMP9Tlj@X3;Spcr9R&RX6LC;P?;z`YY=eS1xTHRawVv)CjKxFZ=b((_WM^
z>-)FiyW~FaJ>Z`Jz68j2{uekaRYCEh{PhIn;=G#bc?&01SJgI&4PAI+6&yb7@M<|=
zAT!CMIOIV(F5^rlp{L8hZXFgKV?GMdaT)OI0P6vA+`R$(9l(a5d)9mY7qspmPbw#1
zcy&$X1-0y!dlyoz5t)_S(Au&9S40+!udZLf^{VJO=i<oZD8ZS@0pn4MV<|5ZP=z2g
zRXV5+3yTRi$0heKHX?h`%+uTsEop#$g*#!l%N$@1q<dZ7w_S7)+Vv^1vVU~>3eLZZ
zL6-dgIN+}{8~AO29RS(Rjh(<haVfW)Bj#1rN8;_<EZ$ujBiEx5-~juvCGsbY&&nO!
zJZvuR`qGqT#zV$2oh&onApG@72!CBAKHWt5r~Mj#eJy^tQ@o}hgL(acahdswHh!1(
z0>rp)m$pHDgqV+#UqiX<F1%ll+N_UP_M3BPLP$0aVteDHDIw(VX>tD{qhBSiJINqp
zN$g}?cggLg((Iee6l*RU4{9cYYlqBoW@uU9^?5j%vj1$&TGzLTW%mHN9ea*MTNdr*
zD6u79k2vf`m@U&0YCJ|D@&~w7x2}c7#@nVEQyno8p>&>>p!JQ?otfA)6%$8fSa=!D
z^%Nx!MJT;|J%Y~Bv8Qy|+)k26XGF#l-5h6z(B7)5t-+BP?IZ<fCfHvw3tlq|Up1p%
zG97EEnUy-g>~A)sUr&RKE<giwSwKbH`DF>?KBTxpSOinbD0(-$`sf<&ZK6{UVeb)2
ze<k!`0&jh?f)JOn1RBik)KeZdA6iN(E^!smR-`0wJx>bo-ItkKF$9r;dyFqoE{I%Y
z1H!JGzlJ&r?1hdfJM=nbycj<<7#mW5T?70!z+C`2U!MZbO4>VOUhH^1Xnq9d>!Qkq
z)#A7v-hqw$Vign7JB5gzE@bmAL%9SUkYtR+0q2>Bpl%z4+sP!9-7Ol5RFQpYGp(ns
zq=XbBRw2{HM5&l4==FUXkfTF^j|0pA$njneycKXHNRICKC5Y~->iLzpCs`gOWTNxu
z;J_;h2VMt^96l=JxONe*9K}5=<1<IWmyWnE9PV!&VNB62(JGmI&A}N~93*}`7Cu2|
zJ7}l?=}bR-7x<Te?*Njop3ekdcYG@7lK0-anU584%fZ~kdH5CLJbV>ijJ`*xvfY_X
zBQV(6Q7pSl!T@3ZaPmEbj$quIr!7H}ykeo0gPyW8t$s)SQchnA{06|?0LjP4fo})o
zTmB1@zN((}az-Z$m%?c6ATWlpbg>@hbAG@W^|m^8uX@qjs$(zsbyWx^=|TJ0L-vaf
z+8qa&0Pm}%A;#@UM&~F*dbx-?@c&TeOcL~ZKM&B`5BONX1c2n{65y;H*)RC{==(wa
zjpJ6XH%zHrg!JnTRZCe^7vW&hLG}n@*HBJ#{BF+PJ2mC=5F}%=*cyx6wKgQhjtj{#
znX^F^SZ><U^JW5bahahNVJe<MlW7?}+nmFG#7f%~L4OD6lk@CH;J*U?07&{BUkLi;
zzE#Gp=rSHopx=LBjJ3uFCSRyr<w}92%|;VhqV9g6#U~?>c&7?F=AfQT(8b2(UBI6L
zyakZ`9{DBm{Qy>4_YaCJzb9MJxp8iDO+#y46-$XO=KRF^z*6ley0&>l!y>o|Pi&gp
zI=70WY;?4f8|ZTcn&`cRzuv}+jgnW$n`+U2)S@@l{{K;*qi?F_e=u6sy0Bz|*@-kK
zzBf&YvA<#z?M2Y0*o??WjQ+cf<j9aHSBXZG)59`w^#+$1C_MP;$?4<F_YJcR0pOJ)
zZ7kN3I|+={zZ1w9p3|Tmw<u{5Ng|P2f0E4Zz>z-?;ahkxbW9WcY6CBP7QgNV{v6;<
zfaKR5UqO!mtW6c`sWwx*$Nw{EeP!+~ldBQ!zF}c4OY4kq*V^N82Q_j?E8)-hgV0q!
zGHwljT|4&;ZPx1=eM387DpN+nS%+Cx?GTx7GvCz=s%w+r-;#hkV*_!l5Ql!&F@0ib
zm;)C1bZo*C9RuhPtuK}dr_E884%Rt|W0>a75ST|pP7Jhn_#Je#=GI*yWnn{&%u(U#
zPGs1i9#wb8&_cs*AmFI!fOA?2wYy{16W`c~@irRm3b}y{fjdwX4mIv4BOq;t+H9c?
zl94e_Ux12UAWoYz?7V-GhO#8b^(6ByQd(zbm|3t?vJ3T1u&}blYz=`kGDG$fdI6n_
zO5RlI9;&{os*e)KFN9n|HDrbEOXJy&;?{5jiaR<hM4big8jKOeJ74ru>DPhzH5vGM
zfZG7FpL%}-nE{w%?K8%BME_KM7SvBz&v+LhtP(tV_)QvQN*cGDB}%gLC0%J}sggc2
zUIeXYzos4_uc}3_srFaZ@Yhrg<iDma<v&S#RgGFsX1<}V#ZMz&LyG6y=s2(|jwC{N
z9SlKTrnzj9zM>G91L+8i(BBZDcgnA%P|eiy^?ZBkPb6kK%Qz6Sp4fjQ;YW$~8&Qvv
zvqDq9kiWT}q<u%C*3o#`H%ZG$?^Flw#L-kOmG*WxLuts8q;xv+0b)kF_YyM$+`JG%
z>TODAVpwgV`pp!6dkr+jUJ}ycoJ8FrZnm9yQKe^-0|dzm;&r<gu4<a9E`@bJ-kxTQ
zLTXjs8LqYP`aotI+~E}cakx(OM>}|(j~_8PvlsZ+fbRiP-W7c-<lX*I!T(#Ve({SA
zHeUjh1s5v6aPT{nCH#rYm8=K;<5X}Iz$ZvQ8g5I4!|6!OhIC^rvVW$)7qOU@YpF&a
zrgpKB#eSmgr=d}%%^vR3OEZU-rf_!5(u!GxhtJsQ0*)nM<DN?Q5c(;yKQT_Q($OT^
zwH9<sIsPc{7XUi}vRwy&vm)iVytm+Q*9FY^TQp3_MkWxsBligI$n8Y4-o$M(RS3Np
z9GFDt1#n{bFh!#XJ5GL)VoS52C-b|2d>RRSJfH#~>6rtZl?_4ht-7OU<dQ~gb(m}l
zuNX7Y214d3KOiBN2A5MEkiiy{fm#ZC`C3H%>+$`PAI|`P9`KS?C!2f0{?Pt<;la)4
znP7r&fu}c6REozXh**kKB<#(T9Joqpa~O66hH%&%8jhAC5NpOT60j5_WuC+EWa&9r
z4U&x_giI!e&3&e><1=ryqLj4?Ix7wb__PRk3t$OA@@X}2R(iD8HCMvB7=hLV)fT<s
zb56&~`;jqU`Bn==|H@>}#)E~w))uS&4t&24-_Pd5x4^aUU5Xtb>+cPml~b(Wa+PO+
z1rA_mgTMk~_%r-=s4gEFA5i5A9jiar3Yn8$IQX@Iq#KELp7~)a{Rc8CjKrerT`c%h
zgZjM|eU|~h0<gxSiS^@-9{h`PyNqW}l;xw)2UPS?*6TV=XU$T|ta|q0JAL@f`0x|(
z-vQ)@03SkuvvP`jsHhaD7|X~UxXgWo#I~FD1b@4EN1Vw!qTQ;$0^cv&Sr7btK&w^f
zskW0<YBe(sb;c==qM4Qh#v!Yoc6_JQuipj!9pDH+_IKouqMe#$@9x|dq_4{HHnC}1
zWfQw$g;i*|&X=J){&a{%=o4LeS}(w^HyhDDOzO26B}n|94*QSp80G07$`9)6pj*RY
zRf}91<Fs0)Z+BcM`n?f!NI88a@S6d*0pz;*H1O?!U_Zhg!FCevJ}4%K9Gsf>VR09d
zc(cH#6;%0L57&m_(l%~joEbNX(wNDP8HvbTiG*ov&LGwfu1T+8IT>TI0T_mHaOiJ>
zPVbR`oXG)R0vH64{2UFOl^*4;ls9bVg1}m4n+~r?!I?@a7j+jXmtaxGT+xb5kW!%~
zan*UwMWX&Te823^=Ya17ybh4{e+ZnFli0P`b%B2K_#p<aZPiyaG}L9~j)qF;{}Cgp
zja0L!eVxn+c)c?awU6!a1~Mj%)$&2vA&aiep91#PX}~W8TnvzOJpi1QJ(fOS^;yt3
z%gpYUt_4AK!3%wr@It?p93<or8OEQr{26}`Qm50nMpw2vvzQ+?b%yoAMm`z}c6J<1
zaoYO9W)nvXopw4P0mgWmt|fRd3j1pPn1^{Zoq<j2EZUCDWt>{%p}JV`-S*#ryci68
zJm5@#Y+o~QR;F0-JFee%%I%xnQrXnP{A0$$S4KqrT2J<})qg#?kjc?b<40Bb)tT<!
zVfVGofiuA<m|J?`Zo_G6s_J3;ya~|dm??N1_81M8$)a(&pnoUmlk4N>!2b*Q4It@{
z`&rOmcc-9R#sl)NlUDy!fzI;EI*b^GVW8j|!|(he#%Nr>=rlg1%G!{0&0#IolcDKE
z!@t6Agi(iH=!{^>!&qizDx|55=0leV`f5;r8TiNK@y);=2Rsds^c@Dyi>0S!TJK=`
zg2#1b6_lL%`mysTR99DV=HejneR7PsAng#ZbpGK=m3bd^8b2G#_K+M{yCQJ$3c(Y!
zk$m`M8k49u%B{uW#HF{Ek>qmB)5g;|#G|H|L)dm=kajWtaHd*n+)ngZ+dO(6RKOup
zZByo~678(`C9v;p0)7eLGJtI7L%>;Sc~A61)w|t~BdcAaD{xDf^+Y>4D)zBuY#ZBY
z9H7c->{-3owmFa~!v-T<q7jBmmu~8_^~X$bQI9J`%VUGRTpLQ~;YVSh8pl&g`(=V&
z<$r;3p9g$2U_3z5y978ZRZj{!i=OSC-X8iTFys%zq{t6QKNmjqZ{gIGHR3~4dDNAK
zp)ZU|4!#G~VQ+UCp~g3a>Bk;YNfxN(dN~W$IStAiok=bw+G2GLG0JH<TV|9kSBmy@
zfL^)o{tDdjEAGSsWPADoXJw@|f72{~w?7+aXH+&V9D%I@`T==1-q5b0NDUsz5@~cA
zYjkCgs|4GuzEF1t;+7w~a@C{_gb6+>E{e^FQCbRlnBd+!?5Ksb0CTr&ji7fK=#ldN
zF5r&<wgDu)yMeRvsLaQETM+-bR7Hq9TveFZdc2IsfO%5bKfGeVe2vNL&et*^E^kA`
zr4XHFLd*7sgTiNsb{mWm(wwAhxkk|E`z=7<B;Ydva{!XQ7T~P(xE^u(>KmB+3oJlv
zO*;9K)b8$aN#gb8w+Z^%QNIsAVRGdo;Qs^s0g&{S9ToH)iEiZoZ&SW_`}<q0N)7e%
zYZtUORpUa9|7ahfk-io=-EJ{?u%m%2*ionP4Nh0wdDs?2VzZ|rJxza%)H95c#>DtS
zY=_SxW=Ot063Zwx&b7PZGE_t;x?0u8=|%QrL)Y~v9^h&qMEPv`BBjL$D@b7wI>&s1
zIFOiW9QuZG3kD;2{f(lXo6rtvPkSBsyMO}#+0Ji)vl6jRjE@uKJ8x$buGlqWq>Py|
zrD8HdE4DPuYv4kD&MJakp$8$3JB@8bxzm&7a3CvPKN{ooVwz$A52Ah9;Fxohpr`Ej
z06qT%eg|M9z^~5%e-Uuh8n+Sa1zi!r`dpXsF{a<7hSvHj#FasG%%)ubhb~89{I6?~
zD6G5^$97!w%Scw(qFgPuC>df=eTOK|dc^KF^T^EP?`Kk&t23FjDAG!4C2P$zWGz3J
z^Q~;HXqWeoz<BBhd<dW%Ao)BII4i;VxsM-D&}v3hwp0#poew7$e))pQ@3N~{Qkm4D
zY!G4Vz0#YB<;HIN8xw2QbS~qw;=5VUu@?2n_54ZTuL3#%l8%pob2{!3e2uZ}=f~60
z*xC&pkY6toF2A0`ixIO$Rn~g*Xf_n4rARlqjhI{z+`%q_E~ZdWnG6%9W1ZFi#{zQU
zI^g#L9t6n#{{gt7xRv(X1%2|KuoiqiBJ~bGyQIC`-;!?rVlHk~G_yM_qgZNE$zU|>
zMuRtO0DqQ>)@?PFH@qb@!<LmDN{g~0G2=otCw1z5sA?Mwb<sm>=tRui9Mu!9=M?qT
zeW@7(eb_0mD4ljQ+pU`Y!GKFCvm!pJ(o!~bE`y1btkGcDy_6t)uVhf$ZGt})XuDj8
z&IjHCSOQ>$@hJEn!^v8U!(RL+4?4=Dw1r}A#Q$G!)zgmel<UXGz`qCl7a+$;ED?3~
zbUy*kHhfMYe5*BFyIgo%MjpW3q-Dg-RX=R@*M;V5W)ye_?xlqzl^3=$XD|;0<R_13
zSq+$`bU&f%aGTQ_GwTIEYCwmSUpE4O0I(Gx>3khHE2Wm4kmKcKe5tFn`hH^5usUR9
zU~{aUydiX?`^3u>E8m@}vOP2%MrR)lvn5cNm2rfM9Lv_&uAxs8Tq6%Gf6A6S1l>La
z)ROaX2=EC291Q#Et^&?VaNKP_-JH9SQRRr>7clkWknOC8*tPdIe#X{mTuzmZVaYTa
zrwWPK8~&4D2rNUS*E+$+_B#bVTTq{*=WXBz0i6KJ$8UiDIXz5ehO+~1UUKP~>zAQ2
z{C6h{|NV5>3E{t$Wp@cWO4UGro(=pwKm$P1@ps^??6=}<?y=(B9nTk-zN;%29Zv%;
zv)_+f?6}PSI^3n%f^?Ur><`1CI#x;T4bB*7e@L`E1uLgKaNKgYpsNG*%5nA`aQI6p
ze*h$1CfoU=*erjH&n<h?@pLio{^O~_z<L!UijngTLSKX@v(sb@_Hu1Kzg@U~qo}_E
z-|xfsGks(+@a2G209pTaz*&)Yr#kC?)$#Q=HdnV+HHZVR6X;-vS&WWXv2hPi=SQ;0
zegRr0$(Zr@{>FO*J%>=A51$!5Ufr$40+Ildo*dw;oSdGjR>WSOhnUS3r%2f5o(L=3
zB<Na#dVQ#u(RC;A&47milCEcgvvP8}YM_zBhqSi3u8P@PPR6Qj-BaYfSI}cK0`wFD
zKMgP(AnBP1{4deNjZ-HhXh*jM9kS?IkNV{L@d5D90p9@R`l_04#Q``WZb1+0>wE;a
z$;xek>qHlA%98!!ca>dY7lh}JfOkSl9#alh66KPJ6c^&KyER08wbQU@>P=))sTqEL
zc%@+ZOT}3zn|4a$eS)9UL7S9QOMqVnxC$WoxfVDpCzqR}5Z|_%#lt;La#nK5`FG}=
z&}krE^5KYdq*ad4{=tO7>FjJJ)mnVuM|;0D4^W>E^|A3rZEgi&3KTnl6~@z(>vNnA
zF&(YwRQO*Rs69hD5S78cV~bVKbbO}|pIJQ@0$&Zd86f-Z5#Y}Owgtt->J08TzHW4_
z*MCe1i%h2#8iV!Eb>ww*>Kkgx>#F$%n*C8!GIkcJID-oRDpI#qd>WbZNu;@-EzCJM
zhP#xIQYI@9rhF<%2?XTn*ev+uwFmmG82D(wc!2D;zX4}Odr|0hE!)NWc=^?p?#1jH
z{fO$htqZ_22=_;HF5K5bxHIy9GL#>p^0*Ph4&z)3LdB*ctcSxu)Fhe|uE#t~oG}p|
z13M$HzLxX>?E~pS3Nteqf{eSRw3YAwE4B#wJ3yb!;{X4EYYuz{NczKovl5)A$4|dC
zC%UvCE0=o+`i;5p+7Y2aJB{hersx!Cj)}~MI}XzUFHyEw^h{^<<40^fEC;?4u-c-5
zjfu>j&O5rJqqhD6E7Cq#X$SM{%A?VCUSYdc-#&cz7^^;?)2$Q(&H%{qw-opafM(e}
z<UX;g+kF{39PPphY*XqHi5REVd2?&)E1Q<)`d<r1*27>}pUZCb7xn{r&~R>|e4>`{
zXXHZ|cAdr@<asr0yE+UZKensqKd+kG)fnZy=pk?}bGzMFMtP`uNmLAMDL9Y5EQ($c
z<uLQq(qob4RZ+Ne#76D~xX(``nF@~Zz+q$<B+vO6$4uCuRBRRFU?18j<<GCcogt8?
z067kdfwR)%xnWoSBM1cC)a6xOY&4${8_jiiF&XqLRoZ){BVe)1a4{DWoMaj{r)?zF
zjb6x;?zP9*%hVJ$PN5sW$k*zQM+BYAK!+S3cLIMB@EkzW`6+N#G|TQh<&B{E7DQ)V
z!va5@?XcWFN8tXlOjv=Q!6()SALz>0z0zs4cL3Zo?9h9|h}SqsU_^}Th4fg678GZC
zke2}T*3nzx8bQ+F*Rp{2L(q21?5u2gOwd2Z70|cV0AB~V9U#ZsR^ZP7_FLmz#skv2
z9dC$j#E0AQ-md{sh>n17%NdnRCdq+m-RF)jyPRTgJ(KUPSE<T-vB~bu@SjdMBO^Uw
zDz_Zw(9MKy;My7zDwqV$Zi-U2O|--74z!~c_``r50NIXS9=9?C&|>*1RUH)l@JnNm
zJt?R^{DgK{c6oc)g=5~<ipnP3ap>~vpl|T&qD*{lQQz0OW5SvI`Cr0c1NrkE%3sC&
zS<0W;{5gs_F?1TQX%FiqTlH(n!@6s$zTQ;!#+6{tA8Ithd>@UN-6e+pu3rA0J`01Q
z;N!TGw)kY4)2A>y?3#GjmvIC21V^snF=A<pR*o2EFw`dN{XDwb#~h&dF{9OxfvL=u
z_;#Y<9^ghoW@_i*VgPNzBtbQk=pynzVlOdFHV=NJw4B^Xj1qDNa+M%hIHQLZ?{lI*
z)`QoX_{`+yN5EZPw=xJI`(q36Hvt>0d&`^Wihg+QwUhS;7v-Gq6Putqc4501Wp$Mc
znsdiga>uC-?Ps!EBOTgGmA~%M`0FFeUjz6vY&X2AaH^nk-mU;|Be&}BQvWA#`WE~U
zd}qJIrxNAS_<^{7ng$y^<{-RaY+>-Jr1}S@alpj542gry!SsaFg=FG$@#uu!G$+T`
z7o8BfEj}G)MF*k}O{KHdiH}&n_4$%n7rlfKUu($A)(?w)CG3YA<Dm<&nS3MBu*WTd
zfv29%hn;#h!_12ucsl>aX7yntyeG>ky5vlxXAXmieV5_}$C;+jhW@eNLfrV^^o8Jq
zt3+vgQS?(;Xh7eo1YQHE14#LG0dQ7&ilZUz56oP~y9HOtfnuzO`^uBp`Q$muEeXg%
zjr}@C2x5J*vq?~E)xQ(pUxCkToMeW%mD2$g069*s0{$;RTbLLZY1TPLOz^!A-u?V=
z*-uKB!C}qG`Ai?>rpK&Y%f`ov?(&!Xd)T^Zo!ny`d=q<oZ1r3DGmSs@iyxU{QT#zu
zHYOy~(D$kRTg*rO-!|hhoBMjF{Te5ZHf?ryI<n1~YJ;cmwa)AtoC&J_J&pVlp}!k4
zxn=5pia<gz92db+6g}Aw*EFKwm+dy}`fb$6)|rNWDeDpF=Q~Be{Q{npT6~KOcPnXt
zEP(8{k-%9QY~?pQ!M`X-O7TU<>Nzy|A3`}_Pn4??)3GEXL_9_=1L;9Ll&$59<aG+g
z`--4zE$Ws1Nh91!I-n0g_UBUIR|B?L^S;PB$Eg`{@_Fy4uL37)?3~cA@bM1gdX=z7
zj2+SCmqD#;W=FaH_4N?BQ=C!%pdMsL)z@kKbq0S%9^`B7gAQe5VrEu&4mtyVVzDqb
z>RM)47{zV)*_&|wNNF~+Wgyi?37JFc)r%h1b^QDu{U4ijS1(=dALB^&(Cof?70hew
zzV+iOtV1{nJ_qM{Z>lPfnwE)6hH%N8t?pqSRI2t573#9ibfU611YZw>XOgdBk!~d$
zkOz=_JrnpWfN!f<*W@}qqT6+v&l9Y~El>qvhsC5|8ehd~3O9!=z!2-5g)kYN#%HQ>
zG!ed|KiZ8Wc6V4vM6qo;O$*6X``KM;wwWEC%}yv`P@N7750h1JfG1Dk+9^tYhoFB8
zXp{QfG2osk*f9W-{?ma^1qAzL?CfD&97lXsF5j)6qIz3U%o^*v0#2g7C_rQqTLBum
zE*t*5s&7}vDm&o`i6o6$D5Z{gI~>MVB$}%daYm~e-zVrlB!t_dVO7UJwq?y>z0Z;l
zDF|zZNU=J;!270X_a?N-2R<<Q_73pR0KWrdy9=V-%3y%+F41q&Zo28z+6_PYYMi84
z++gi$e1+il6HD(C*}&R$A#YdY^QyXCWr6y(tIf)%R_j8j=}vL!n&YlSb7NxUHHqp~
ziQ1Kk^s2-d!(oJ|5jMnTG%;?ORLX&G&={e(Ux;Q#!p&1dmNKlgtmOa4n*V4^K0dSd
z+GE^GFF+zdwzmxU8GxfVAK%{T=bys-m!0181YgWHt8x$H7ZE{H!2d^LB(#%fG_GdP
z6zcVpy0XTX{)ut+mj?Y&4?Uvi{ZB78HW7r-xWvf+-kAO=a~0o4HAIG;O)|uQKN~4e
zLe)H@nBWrd<wVb?)0u!&4)3wXKiVwE|9il{1bhdOd^rZ()(d*Jbw0eovZELMEcnz@
zTevWjd>J-xAsYhgu~^*Byi;c1&Slt2T*UUJA2TXen%OJN8Ozw1y$}&uGT0_8omP-+
zI)f9-I&!a|cRFa1^5z2ImjbQ;$o1tm;H(788$X?a^|%5;CLm+RLA0>AH$t?)Y`)W%
z4r_r8Vzdve`<bq6#?VE$O*M@n-gg8&hf$x@Cre_nM+Te$ko=nmyb-Y0;+y2(>K^71
zCrAbdWEB3%m}1%hQz~Ic{zPob<Zf(-svPpAKW@&g8}pu#|E@7};q*H5H8w={5N#I4
zMJ&D(ONZ<F7&Tv;Nv6x#hm3!R_KEiG1noY2X7lDS@Sg#{0VKcmxKq=^MmG$@{Y&0D
zXkyH2bAmdyCiz5lOeuTU>UY#5`+W)U)qvXplFz$=zXQ1HCNVB$Jd4$%g640a|GSXH
z7+Cf;J4MY0WFc%qrvX!fYrC4wMN<fW?jp+CWT;by=b0qeYf0I!CefWqAulJ<T}d|R
zAa;No3#Ls^#bzX1=L6<!c8MQ6A4UzZHycKU5C|uHlU3HgC)!sUAJCg-1Fr`(17!Pd
z0KNgBJZ#A)>wNaLYl7MrBvbf26fI?q>>!Bl!|pZRi5C;YzZ=S9$>~?y=3bC<i)sIt
zImLb**=&~FZ_acaAgvfN$gGB_fK+3O!KYMY(_mvJN40B-IP$y>+JkK-sUuBfy1|zn
z-ZI|-(Jos;px?597XbzU<oFp2oR#2y>t?=AtzTH*u(;koW%K_Ads!H_B|k)z&(Sk%
z7sGVH3dZpqx)iSti;lIZM~<Iofxipr1W5iWiLm7WuD9+9{$j0rQ+n1@rq$M0H7uUm
zScUToKT&O@;To29Z&sIQziYTPr~mV+v0Z(EDt{y+HPWp<V}nnpA#Nm4(kg9z)trPv
zCRh+9xg0))Oa%6ax`IFFrQ(p_=N!=J!%x_Jyb}1GfJXqb9eaR(2zbppANR|fQ(4El
zwnzwUT+?O(d#&&)j1hACMQln7w(4;Y>)~4wXzS6G-dgH4_PG~iY_MhAWjnuh)<1g{
zY)FZ_D<%BS6z;x@8|TC66NH@28aM`nCqvE9&L^|90zJ+M$5-H<*+<qqND8!XA@C-^
z1pql-mH}tw&-Q)7s4jHKEX%e&9A~);(NhZ+Ar1%H7uX3NNC_4_hb?+KP@fm|F@7Hf
zehi@c0{mvQc<?#++<in3>tlCxHN(a!{5LTnqm|E7Fp3Yl^g}L~VC_)1nI+cyvDN>m
zOOE4z0pA7K3y}TaKiRE}037KQa-zc0yGJ}7BqsuLuq#PjRvZ2YY{Mzl7G`?gCrqyw
zJj6DhV#`^<@tOSj{BhgQpP|=zx2u;@Wm#&nmac_(&8ywU8n^pt-Ts80e2v>!>o(eT
z$5VO?(zZFNV}owLLyyPKG{i`yI8IP2&E6aIjC+s(wfD1n?4=pr9mzIT*ZV%JXFsRM
zBe!2ezB!D~^~+Rxy~;MKOkB;t#BpnOHQB&L3Y!CYf{`zfIx_6pwph*U9EhwVEW92o
z>pvBI-3FdX`}UX=w=y5F5Fq*b1#l%5{hTcL*z$qk@1FfZeC<yDS{x2$ZbcLB<JYz<
zg{7`?5$>qZsBXfS`Xyh`H*xJyZ2tX!!u#mBJ?6wF@h!}oaHr1QRjw7U{gi)#Zy`4<
zxs<lFJZj!xgx_cwwnzkTR}r>f)uQLv&ZTo4=ek!oXI|wDxyzAtpCfvb?Myn!ai$Rk
z2Mk!<PJ=4H=zYW3Wgyue5{wx4IQl*4us!9-X?NJ4b1ZQ;uSedu-0_jWITkOdTjjK!
z6MnwS^w9j941KQwy&dLM<sDVKi{N~%9=?n368ep%^DSpFR?rH~hK$4x7#e2kA+{_t
z+F`@Vjl;eVk+Pj$cR!cSo8z&2myl-HX^u#;nAGVu-0&JNwx*(AzY+b~hCY+?Wh?Mk
z0Ph22zy1N-l@^#U5t~K7ru8iMWw%M0k7yR_aGjm3$6Cl=EiAM}r?H)Kfj^XI?cPq5
zYkTL>Xk;b)fjp6Fyp&o*oiC?q?FekHYIb`+S1S{aO&YEhPF5cy#y~cZw}ZE2DAqLm
zcTo<1C)!m5nq|AL1ilV%A3(Ni2k=(`QV*7PmZF~9HEHq`VX2S}i!K`nZD^KXBU-@Q
zBQ&BJ%HiHZKhC=;&A25k`(J7Fmb7#`S9+Fc=d;Ev0P#%YnE}!d9~N}`dI#kD7~tmu
zssNJiRlxrV2wuN3Pi6h`w?Hgj`^4h)hj^J{@mi)SSEcv9#uk39&G|{l%nSPb>dg3`
zb5U#Mry(AicAZUcvw`&2*^2cUUxj;PKsvRVw2z))EFzU^Ax4=)IsAiY&*z|3_Jcd!
zt;7S80dl>{1<s1>hg;gj_&R<HbGrweXJGeetz_;q{w`Ps=R@WywHOhVIt^qa-JG5b
zVY!m1+<~VQsSarYnC&|v=vjjLe5jADS6hHT4tNS6>3I=2D}T0ro<Pi>FQQMT2QQ+i
zXPHG;Oh#ZG9SeLspaLNKozXN4pM%%Yv>w*c9_b5OOn0PXF?}jje>$|wVv4%fTXbzf
zozh<UKJXs^KLaFPX_;=N5D=_)k2#h7TUR34kUT`*q1=dft$4W)VkC7M>)_{|p81X~
z{5_i+r)5s6Kkl0OtP6>5O2|3SxXydbh4Az=`+b}KrH!Wmx<aVqpI{5e^h9Q*^Jz2H
zJE(S^T8`m~yR2nDi}A1;wENIrHXfb>{t{ppK#qq!z*+gT@les)Tm#46MYYXB*ZuS1
z@JDyUL0NCnm6;V757U9q1e^<yd}lN*#OL7gu(F5o&=Y+@!(nv>hQqN?eOcJ?!$E1c
z=xRruay}mdeiUHK4$yT5@M!=!pQT)Vt*w!f99X>r`c)Uw*dWM9v`vyf01yWl3up$I
zd>?bA$~C5qL}|-l8j~|dzdOv>80OqS>~|2~7UH;@KtD2^nhl3MS<sNOo$;GUFK9;Z
z_14YgjU@XX5=C@-b~ayQbLdLkZ)UQ18f38(Dv{4{=<g65DSORys6l6OqVe$lD#lAY
z+9vH8d3|v10XQ2V`(+966#$w4`+6&$N>va2az=GaWmg3=D_6LBS%%S`Vmxy0<<%gw
z#KK(h6koz!vY;x7F9AD~4%5rj?<hG;WBD_gKh5vBlCzf-CKh#&LcJ(Q*`8HGm(Yw4
zGZR0`G>jEEI@A+B&eRWQ#+lrV_!ed6Z$6)Jp+6B@WK5(S#d}onWgpt?1E1JDvgg1?
z49EdUzKjAs0U-U#(k#E}mQ&`-r0NB&b(O;Dj9GM8;6i$g-8ahQPxBZT7Eh4EgreDn
zw5Y#wAS(x_=jp#^Cj60!47bNJ>8h+WxXhxv-(|V0@kXBO1Tq_IaDS_#m;El<vkA1y
z_Ur@xE#NnRY)@ogw~_z|ZqJlcZjb09-eFdAeiZkn`k&C8L1@l!<%np`by*45XBo8r
z4O#S-tOC)T9bKC<2+bL8HAgx0hiFeDXq9%%^}wG6ya14L&YmmeT#+?iHx&iVS4-PI
zalG=AUC|iU4urk9RpkLMzM}lKTzu+#P-83fr*>sk_CN%&&|@ybX=r5}!q>*qY~qd5
zBQ=`tILE1BTrn_cF42rUT)i#EXBPG&3K4Wu97dd)%e;|>Xq^O64Zf!I4oaVu4iX)z
zxK~hv_Q-i!ljl}80uBIV|NSE$`XFFVZ_&=q<>I{=Svgqo>mNb847TB8Jg^jyp8jl6
z<q|O=$K&3I@Rc}~shpWTq8g4qEc*#;!y^~fwv4Q2X^py`n*|Z%uSxi+jjyinIhb}=
zsd0Q&aP9E_e-Yp;sY88`>{dw!x{trUQ2Faq%3njfJg0Izl0UD<|6yx(6*qwlfNSYi
z{a#Y26-5As0|o=0f=TCQ)wNEw->k-dOmesCM@<N!5z5}|v#Im>?1CNH1765>@5(OJ
z5?&4UycTNGSj4G-8`9gE+RA9p#!&s$Ol?`#@b5FVA2J8yxh<;<=X|}8ugqtp7?Em8
zNE%h|kFb3bu02j&+o&B0;NU%P{u{|A`nZi4j5#Nrqrs2ag}+RrPE|E#YxfZq_Lz{|
zq~X{)dwP{QlShvGK2!f8(-rEtAQjH|N&~_z72;nkuJd7|SAu{u^AT=3Y$<|z-A8a~
z<6L?piEHPlX;lasH2_Zf6`DsKXK0#-IVd@YyEWHfz$3WIjYx4WMDmKIxzR^W#A(3^
z=pm;VznKLA`7;XmG(aOjj^CGoe-H2`i*XxrnRxH))}Gtkx@b{l6QUbPy*Z^_zgK-u
zC++%<kmn!}JB_#K>+0EWs1M<V6jK`=mRsXhIU{lF^>o!{+(@qLgYYGL`{b(sBqKdY
zGBw;A_0K-G>-)q-M<&K-ZsUHEp=T#igzo%XKc{gGDTyq~FVqJ=MFvHb#UbVyIdiDz
z%0A{QHhU}JnsOI~&Gbb=r!l7p<cH~xT_U@LwSfMcAQtb%kz7>2MG>duA&M>UMh6=L
zmSl?%e5&Xd(336)emmePfaH@=2)PFs@vgORwcg$b1i$<fn9mJFn4MQWx&cvq>M@P{
zzst<_2Lfa&YxNRl9fJX(j#~`23&X(@VK^9}Mr$v^edY8HZ6jXM9a_l8EGLdfd9d$@
zdo!aqXNKcCXaXEPVqx+QCk}kdUf!o`)XD?tZo`eMQeOM;gXst`>by-e52Tw!zct(4
zmd$ooN|iQ+ajp#aN(<;{c9CfWjV3P=!wONUZX^h?;lvR}h{J97;Qm;Y;MWrH!Uh(y
zb^2!D8vvUCavj(ToRuE^Gy{B^hI?!>ARPD+j-<%M3ui$LrjbfVUmu)oxMSu(xaA2a
zBYf``iw>nIKu0R@TtGj7q+>AfQ=|j^Rgj-=?In1W-Qy_P-#sPKf*-3<kL1T@;Ew~I
z0!TVu1b&KiOslLtDIuSCM@WT5hqr%VeJ%h#7*Ga~bc_Se%Ko0>Y6kU-HDFo4<flV_
zj?H8JGE+IyHwA&EB3Xx29M>-v9cxjK<j1qXUje)hkaWBQoRw1;AN-EkB&0`csBf;e
zymF2oB+GJ793(N8{3{O3>k+^w0%il`ygncJ5<svY{-$o_Uz3O|i(97i_y8#@htbA6
zl(8g54cAim47Dp)<)&Pg6@EolIQ4v&?fy0!$2m;T$YR`rUpGlX`YL8@MrpL@+zA@I
z_{`?hr@+4l`~;BvQcDECg7;~D*~0s6UR^_d^_20GF^F*=mUr41beflUTC=h~H-*Uz
zcoR7oDd}{SaK=Kthb=lPta=z7mB1GQ8Ud1yORV2}R|+|}Z)K4DW1;JF^HFumde<BD
zb{A9Dexu5h1^wov&mJ(B#j~1AeASRN>xh<*<*t$$;Ba;;`m4kGepdg7z`q212axrv
zrGgJ~KPdfN{Cwc`7odK)**{CTHRljfUh0>O+ub=dL@Qu%sAwqjSb@hROsswRQcw{m
z>aW1}OZ~PU_!7Y10kZy8z*&*^9=gAOWF5$Nx%JQvp(?KZe1<c$!em@nWA&D6>-ZY4
zl*L=^$M?(n53{-k;I0Ee)*lAEYyBt0|KsDps(<W=E);AbbNSi9wKzLqopKZMAQz?6
zGF-gC*&=8e53fY)wi@Jof}p1c^+|f#fZqdn1R&?n+rSS3g8g<@c5DCSCiH0t9@S-+
zX@y9No>Rx;T9M-t6?YmFoCzUIoo0wb`5M$Zjf8s&RT{ggkiuoaqa$ar*Awo!qtLvq
z5KVxCu$8lT0`_AC(Dr4{;yH<;J*5K$|Je9C2lxU&BS5xiIq)k0!Q<=t;P&uw*00Or
zjxZrDt<6)!qK?6LPz=7|*pwhc_?rIdH2$l8+28haSf`HX(6eYc+dEo+!MjyyOcHeN
z0}WCh`~duS02ve*2QJ{O^cZi6kAp?6%`N;`iA{)bTnLgEA7(1=6(_?{+^zDf4`)Cj
zf<Qp&u<EbC_sf270^SN(YSqbj^=E$fta^TXDv+2y8iOucSyK|t>N#xHvkl)V+qob3
zLBPjd>giG5S=*N`^{|MYh_8&6;>g)>E7x*S;uHMz4Gz>Z3iw#S830yTdwS$!H}zC6
zLh=CIp1}V!P?MqDSR%uSDPF6-wO#6a1o(Eq%K$l#-v!P}@VeudV^+P5wT;zTxqLSU
z*NJ~%xrqUIxaY(x2yR`9t2Y$+T#Yof7qaMLIQ7StVkAR&Ib_j;;L(2j>j>bLfcXGP
zPaAMnimZD<MK1-}&yS;L5_Yd>Jv@z8ixcbjh3!A{c6N$ANZhLUN>g@~GFRzr>P`!b
z3pHY~wQ|{FapgJ`yYUi)Os>+i%p5^>nFdQx1|3ExsQ<EZK{I+PQbqrL4*E**nax{$
zh+9bkWB?@nBZ0Fr=4L^+ycg3wKe@LCYrrz{8aMmTX14!)_VBRBAii$AqADu~l<)?)
zj9l>8j_Xb5*b6|gMf7RR_46x6uCKSCvki2}dGi?XX8_LwB%Ln;XQfB|>o`91$gR_A
zTWa`J0>R;P#v+g$w#CYW1JDB#uq71pw#};FJ2X&#G4Rs>!vM1Wk-$&A{^2lFEbPAi
zZO7NIq+9LB_xn%*>!)Xc?*Qxs$ogLc&dTPsmj1BfWaA9_Omnrr{$ce97*WL)uQ}s5
z8>*G|0r))8&jzK@q9dj(V7D0p{4BssfTZJc;H>z9;<|S~UXG`O4V<#I?7j-~V)6h6
z0TTJ$mA6%8$AEO|HrTLdqb39)Fztx38H*>>Wfj2)RIkoQkj`&m4x}Fvx<zOK81I>a
zkNZHM)Sr(5cMNkYZh)je9ylvK>d(iGBToMa=!X7yKH+79L36@THkewK9|j<ONJzHk
zadE}46kGLBF|ax;dTLOg9M>y=UkkViAnCamI4kX^H2*N1ITM>fLoz_fGbGPhGcZ@k
zGZ<=8OfJugw9#}pv$gWFK1=ZD7t|-$jfml}69du!lAbc)tgN)`!$%%C**IgYVFXny
zhG*j6xzjV$qYVR@a78z|6P*Rr4$B0!ha<2oC#%0U4q<b%)jqh^2;$nat?`d~C7&Jz
zz6-D$AnE!FI4hfi;${2C9bdQS3%6dOC5^1Bwj62T7-HSYOXsSbU1)M&QsvQV=A|zp
zIQF;IK*vwB$54mqV6+v{3z6(&0*!)}m!Bi(EG-YvIU9Htpavl6Tmqbx4r`y7Z`~vC
z(`k(_f508wvV^gN1qNbbs^V+}%j+~+l&v)h$VH8y%rIKTvmrHFOJ}bw79BfLj}P@Q
zd7+KKeE~p!fYit4178Y=I3)V7#mZ0cdGI+k=Ue4s?47MGYq^#F!%s2)3+&*!m|m7?
zZ_{HcS*D%FpMCjrB!5O8<MziAH5q10zOM^a4%e1^Rh4|W%8P)b5&CHA(|lU0JsdXz
z5MUHBv<IlU_C7T3?fLFsvdn#h!TO7|32<ul;XdySxMNLbyN(j%5!tOm^U{&#K~eHV
zf9ymX<#_%TxIPkd9w7T87C0-*EI*@1gX6_m{UPFb3IBqu-0t`R7x7{64liq9*1Efh
za^rc3tAQRWz}Aq5d>e#4Qo3;PK|fja)u4VUkFE!P2Vf&W()TQIR(u;pKRs>H>F0j8
z^v&aaB&cQcZyA}(mfuk@k#-tz-rNA%SfF|*B7eA5Y750|jAk+0PSbkB+!t_zRF>rn
zK6*z5#&sF+S%6A_q;olNR+jx+(3zRh$UpxHog(^wb9KwaCQDW%9a2}&gDN?s_T|t1
z{E441(yvpM?dO$f$T)9}61O!<3>v2vtNCnJ{*!2IWFS}%J}AC^g8mNBC&$4t;EvI_
zD*=%7Cjn>W$Ob{byf1Ka`f=BZM=`7pT!O7=gsAgyQFkX%_ML}dI$(4<LTYk(b{Zm{
z_0oKPx!YmU*NFP1e7hU?!+^&ClD;>9vogmTpHm(bbe^2P%DKqKWzAa_bKkF@RkRV1
znLUv)bw5!)#dvUI<Ch508-@kdqnjpQL{HbsFnkAaR`U9{6bgR&#svJ$MgpG-m;sRV
z)&XZF#-j5Cdjgjl%`LU_7B0oA#R+Q)q?B)ix_b@tLmeo5Pk$%Ms)dN7ZVbb%a#$Ah
zbf$?nASb1zk#8vybZxQfWpeLJ;NJkgw|>TCpY*GiZ$JMyJ@vuyvv5?)VuJPSF0d8>
z?=Y1XvL-9-R{i;71LJHO@EL$}0IZyJKh#70QbCPEWl_qeg)-0ZA*;Sk`0h-6H*4=3
zz~2VE3y}Tr32;{Ot#~SO|Lt%0iR(?5_+m7?aY6%IaB7vk3q|0$61Ji3j||L0Kd$I6
z_+C0La6e@#@H#*nK(05tfPVm3VvUExcZ=~`)2%(Q63G#{YvHh}DyGrkEcqvKmOP&y
zzCMhTST=NjBJZf~eJV2E58kJ4#fL%rRQ(;bbf4Pq9o5{2vGLKu94z2AEEJ(yA0tg0
z_*0epk1FH$D$P-Pq>372)dfFQ4LVY#|6W!4OI4^dUe!OSGT*CWvXJ8H)p|m4@#F@}
zQ{^YbZ^FT+MoUqfHb~Xs<=Ky)RC`MWAIeS-@Szs?^?;`Uk`Jllu}22vCkgp@_zv+N
z{CfBDvWp(z@0W><Y%`7{qC*BhBKnc=R~~=fL;0&s{LCv3kDk$R>am}|lv>7@T*{yC
z<Ki>?pbH<?y;~uWuBaPG3v5FW`0ETBWedlW;G_9a&hlxRmhs4f=xqz4^)f_`P1mE?
zZ9VFFd_nk=3(9V-#i~qy&cf5SZfIPD8;8CFh;H=Bh_>$|4E6N>X<@-H3k!c<=smI!
zj9o?Oa9RV2I9i*7aG~QM9n<OA6yXc@6M7MC)@ym>MNNxV_Y+&VS?0hRWw`A&@|NZ<
za1|m?8e8FcX&WN=z70Gr#ZTBg$Ug&X6JS0-^8Eqe&jChQ`|s;_i19b3+xxB}xyGdG
zmZqha^z34g;xiR1EdRANKmF5*{}Rd&leS|KkB_~B|1W+$y1GUDhFxiRitJ`r8m<zr
z&Ehqe{|vck@tfZKxemWzgZ@iHIa-%o+S^E`#%W$eZE-s6cMM6sa|p6r-9JQoY=|Af
z^l=;;ZXkIy?Trx7>1yWVLqgUKNzpS&*kD~ht-qsqAiFb(3$mp+EyV~&?CL6JI8CPG
zNjfyCBm{Z?7d&d!S#&tgzy`A4@iJWS+czP=@6&--0_Fpx+_@MyD-ll!J{Prjzg~42
z--wgZB@`x8TRO-J%9}n#vVj>`*Q?4)i<nx@)~gs}H5^?Kz_7xZ&KA`Y1l`TS@R~zs
zvCDPJ`f@>U2k7zPGaDcO1MZlJ^&cSV%>~X%n&n@S_ST=$TVK7n>yZFt6jE(5f0r*+
zA)VgQl>>{?5OD@Ei;>I2WG)g~f*PX#K=s*%=>&awh-9{mP~_P_KzRLZ8~-7rW7#M{
z_iE53^_I=R9|t@QkaX_^&dQ(J^Md#c!Wo0}XToynL$ak#<2EF_1XpdwG}Xh_)By-4
zi<fV-pd+Rt;8#`-d?DcP06D*&1il-vK2FH7)rI1{p$C7P6X_XI%@aZ~$+pGlR39?P
z7ULrR9L=Be_%mBR8O?VH0oIRuG5kT4)%79`w#>vNvN44kX-2f880WcgICL8!*VPx?
zSl{o4diT2efsq4fAG43%hYg)31aTk4Wd3eKpC{_gT!FkpgO>oJXCpNY=ku0v*7!d&
zAm_&cp9DAyAp2!La8{O_`nroCAAv})U_<yaGW}w<_%<sY^?|6bd;uOR7vTKU1wGqP
zpOk-ppM-S>@CHEk&wZ0&yaoJ{Df(r~hvGe6>E55FOaEY;ccsfO>Q2-gYOCsypP|0q
zZ!r%3TPvbg6-;b%Tj$p{<f6?&^*iAQ!YL>C3%ZcycdQAx@L=RPZV7qFLAE$X^XFIi
zz(nQ-b-A8#iEdl2M_r;nN}i$vpQh9KbG73sdWb$v@j6PLrs2zV=OwznT-Ptre^-@#
z_5F|=J=9q0ap0Z+`#1m9VJ>R!9TsZyJW-#qz25eGebn}P?TZ=MO8qe7X7a)OR2sd1
zei|)$s2<pZ^=Sy9Iq{#S_j=Q18>tNoiN4?TZZ!uYz~)ezaraF8w@ou4t7#50MD%%J
zrhWa)5NFK;rgO6y=@|(jmk(%x8;VVL++aG_m`>s)F5<YOK7kgb&&Rcg5cBk2dhFo-
zwg>ASug@P#7JI#(443|c)7Ck|`9i&Od%gaAz5aCl!^G6!ZLLN*2ir<nPSR0O^+OTx
z`#wtHIe3VWYgG*gJwxfW$n8h(VM}oyy^P{0v4rj;(KnIU<X(?ZCRGnp#HIEjABjzi
zQZ*x5znM4&+NZk*y0#P4ejf?*hVCa3(a44oVGnN!bB5kcy-rU*_XOK3#I8FAn>Lrj
z(N2()F-NuOPR+@~ri0;1{&X>(mrV)Cy?cOf13Uwe^Xn7ftX%)5kkj65F`k15Okm`)
z#KkTCn}kVi>gDP+Drr-%CD*7-n7pJZ`x<z(Y7J+(h8L`LXeOcnY1$c%IQY7nv=nw9
zf86Q^h*k#<CeaoW#g`gR&$1bU{xMSn^lt|KIN)i3oR1yA-v<QmH#<+v@5WV%uI+#Y
zW(oq<VeXu$oLG~x>z_kaIsVW6#>(i5zhM_Rnr~J=fswGW58J9bBFzYQ673br?QzIA
zLo&4KOhBH81MUcDys>C$<4n=c%(DXai^;%e0L}r(eyRb^%AeU&yAs?`KNf<-FGO(9
zEjfwF!NJO7jVv9rIAj;L=`9u=TTqX*qr40JFyJSEq$6UQpkt-A?-*~z-#poP;nv-;
z^BFO0u{=y}5|P?J6fg5Tu8tvu>a&emm`Cw8lfvyv3+FNacau;%4PpLj2;QodlT7Ub
zT1%oBA6c0*Tkx+2boua^=_PA{Zvs33kaWKSoRzDrdp%z3-t5Wfp3eeLOrF<N*)p$2
zgj#0gZ$YM-huF2ZS;D%Bu(e+|rlZ3R=qE+c=wXV*#YVToPDin9ko{R$_966ivG;F3
zN6;HHJwWg2z-s`D0FvITfwMBpqPOnx?)9jy{f%hM-0!U$l3y1j$8o|Z@#od}5u2}H
ztIC@58U5K>1`Jp_gjFP#Y;Slu-b-;3z}t{Q{-HfY=mcSXf!%G6XvZPYDfi9B*={8j
zkO`3OI2|}Eo$m_zw^@FCe!h!cKm+{tCRgM73+~V&KzC(rU3C-lvPD3u<;FuQ*`jVE
z{FTC=JZ%;N<J**N=a<0HhEuK-ZISUH(FemV59eLT`AipRy?b#dvUzkN^jL&IKb`hN
zv@)bou40~KytG$|c5DKj(r&a9_@{uc0J0sn8KNC&FN=1pw(`6OwS(E=*vc&|<Gclj
zX$R%b=sU%0CjW4Ze8(?`-ELF<izbvB$RSF|81Wir#OaClkGM@{3POs}F9;g&FG_}K
zODqw2s7BB|2XsmPUj}>);97vBdp&Sg{>*OCbsYIO$V_=^9Lo(CRmy!$LU-!Ll7`?5
zh2~UIE9f|kdh$^Zn}4^=gnXXmR>A>NPEVMPcv^tf)na|QWrWa|ru1-cvMW7JGHQG9
z2C#BoODpy|%vG_z1!vIQqu1XfC+byIwav`SxV&LeBl3ea<9=0_Z|p|m<Bzygm*~xa
zAWb<O^0EE95OO%=67ibLKU~D0Rs8t^;jc$1e_bzLuZbV-7N4FLpKez9pJegpX#T|S
znYMMi6W62v8^&!6E0D&b>1>*2MB4fyEh3Z_hpk+{zdU(!xowoqq3(9{>2TO`X46z8
z8uM{uIW+L|w1hL%3NMTUp)?Yf8~05095-BtGw38&B+af=FR;^o5fPu&XB@6yL-HM3
zPE<x%beP8xH*y#)($d5DKS$BXC>$?2!uUT&wlU5YdaH`yEF07?WWUWqaLpLip-;n!
zPIaiwHoKSp9Z`QE(KO%TqtneynjWWrK-5FTgrel;KV2+-`YKToa5;^pil6eob;Zz&
z`d{=`BkUlq9itMC5mdB{I^4RGRpmleX5Tn{s2)Zl?MTa$cMfj*CZ+4WGl=IcNBk;B
zM49=0dD`dYb~?_LZFlQ~nE;!uwIMMvVv-_K!9oNY%*SQZIY=?e0=wqX0mxtM!*6EO
zR|rdDjGZJir4%8`9D+b+)8t<1@u$VzP7=!#ru%#(G@-%QivJKw(|gyXv=Z@?s-$Hk
z^9qtYJ1sG5TFx1L#^*jr>43Zuak=p^Ngx5)k9DL2uo0)xM_+BjE#xPRkZ|XHA#Qj?
zn+e`<&pOSBS0kWarl|<uFN*IXF~2I#39J{F0>2Y*4?xbZPk{dj@ZKlnQ~oCLK5`0r
z5I=>P*jQaZxvqg_zV&NEG`bBs{x!^ge77(o7xEA3*YFkl15H`m%A&!>;*zB2Qa##;
zScZ&t*<rRQ6B?Zhhm#R;{k@5<1h>oM3AGtvstXHw$}uhesD`sY7MtP!QFa~hRTWwP
z&fK}>_5RX3sf3V_&|3&anh<HCq9&41q$E-lbk%@}SV2Vv3!tK+BBG*V1MGl>sH~zZ
z8eLQ@V2tc1x|Z)hGxz3&0J;vpbLYJG!ksgH=2Y&mYJ*BA@K0#%j^txXlSx=<xJ=f&
z{9NdVTI<UBz%K?|4zSm^dx7(`%987R_o%FQ`&FRrdU6qW!qaAjUI#x{!eBRktuPn5
znJEY6Phi8L`t8PMVSrCL)$L&YBU%T9AnpvYr7BE?KA?=pX%yzl>l&<e5cJsh$Mh<%
zasl8%fK6|(+S*47<vO^k=EUdi$s(AREhiHcTis&uyCC1$sSBCTeMDsQ#q)FdAzOU-
zOcmJ`^1Jm?9F#7;iyZsp%gvIIviZUa>Ow55KJkU2_^=;_;88tgXur}zmdA{sC*WXy
z#3IRsD5HWVc2|1@Fnt2v%z(#{V+@7&-)=@Z?N-!bL;`+yBhFzK)q3R&=xvmE6Fu4(
z$64ykoM;-Bi~vMS1vqR>GYj>ony8KQq^6{Sb?KmKUXQB+n|Cylaj72m$3@3M^DD{d
zi{Wt^8;{vI5p2;pbO(V2LPuz*WkbL{f-E8Wx!M%-awzDelWbZ;yLc86ZwF7YKb4Ne
z59y&xtw>76*T{Zahkmg4%|_q{0fzwge9Afx`x)SXb<VZrg-1@phdH*t#EcpOm)Lx7
znj=G?)NiK{Yjy%;06GJFb^QGGgQ_fB&`pRD3yVDY32>E}p&O6Zm^8Sl#$-X$3#YG{
z2u;c!tDz6oWNMiRsw!k)r?O1?GJz2RpF9U)UqsG@M&S)&=_tNV*0TY1u+KFQ0Dlbd
z6u=&j&jIJD*sAAF%Rf>3`Ewqk{)#xVf>GN>Y3>-m^=~hL^Lk}4M$k;_fS!K6q{Bbi
zt4u^W{CsdG@S6cI0_^r4S>shM0~A_uhnwD)^J2+!C!QZ|=d*Ac9GlRsq>H1aQ0bIr
zTUL<8%yo{hwY3hi4&iS_b_)~PB=KA;KkO#r)3-89UW;QFTmikMroFAMcfF<dcw05!
zQq{NBTj>XCuYKyj*#~OwK9&2*hIdUaFxk7H7d5WG$OGB1vFswaf5+f<qr+020UGyJ
zdGa^qN$KOw3K$P;p$Jxs$UW*l5`2~{CMonRXOi=*Jqvs6TWEf;P~Eq%o8d7kU71gk
z>Ypy~e5dI&_s))~&E;mICoVu&QuYS<sl4cLdGMzTa<3^#`m(&#D0gVzUS$00G7fS<
z0k*VC?za4F#IpMrQAg`%)BRv_(+kNhDtn920rU-mD6!f`f~%Lo!xRsoY2;=Cjfnp^
z^d6dtFhsW^tQYCTQe9UvcabaT%+-?A1v>s*-fNm~ll^=YeQ2+LRkc|A0IL9YKYt1Q
z7r?j=<T^d+Y}vm%PvYnH_<oMv4*nNQv*V3MEswsL&DvW1dyO<}gT&ML9wXN7;(eqv
zP<E}_rl0FAJE31MMz=n>P;~3&g{C<M+e3d^teW313>;YqpO^$@i4HRyZ=P=YXeP-p
z`XOL1%`&gOxX0Fu&8II`w_e;aGWhO`jq5H(J8vTFT?(Dx?xZ){53^Iw%jRvrkHA~o
zwW`(j^}4VS;`4OH9kQJ#PKm8wi-6w*xD8;>>j!}I)O43@=k>e(*1pKEUQP5}@+l=v
z^aEtPZQfIrO_y}0J{>m_KdguO!D>HYGc1K+QC|IBl0Ic>jBhg>_*sA|fISZG0saJF
z(5sTJBbFTLx|8^^YC8_VNVQcmTIafTdY6n*FsS$?j4#0a#=ZjAM{#ahi9-yp$d^pn
zc}WI#rz|>38}8Jfo9d<J^HbTkQ<ICl)V*UW`+jOl%Txol0Ab?!ajLVMd+Su!p{bs3
z=9Z};N1^WF{nQozJqrhzr4(##el0@)pD1B0nI>w?OfhOqCvk%*2c9EowXbekE88c2
zTC9Br0UrSv4Y2#~Y~VcomHutpc7axwP^5rT<Sg!Gl!nTSgaX|#<(o_R<&9zE7EGVg
zR)xgkb&{S9D9_#}8iDTzd=9Yb(Wgs#)?0qvYxe&2c$zDsuT(4)w8YgvL$K$y5V7gK
zttu@TN?<zB5{;U1(Zo;%PWLcr)Z-j5T*q}nFdq70#jM8F1vZDtBpzm0Xl9x2k#tvq
zE}LJq6!@)xI{-G_&jIJ@h!sa*@6Nxbo7=vQtgFMq#NFxL1-l4v4KA0~5!<15_Ye3Q
zg+h`B;=9wZGi)T{?%>xbaS}oFsSNH%@s$_x&ux0k@0IlW&yUU965zc7<p7)BQ-Skj
z$B&tITRVEirY701Vk?ft)@g!w<xd4m=U%Gp29ZJd{Um2_>C;g5j-}vHzh2U@4&~VG
z)(qS;!>a@V_WYa;{06{Qk6fRdCd+)wpPqmCtmC@Zy!D`PH?y{S_I&)m)>$fupFVf+
z=pm!$jH-o3O?8c}n32}3zN~$(l4kV_Dzb?E<cFj`z_<KIcN~&Ru-X<ek2i>o)88?o
zM`&gT)19V|ar<3e5N>c>SFN01J{$;*m`8Kr0wIh+@1?0)2XvW{9e~Aa_d;JsXQ75*
zTv0el5RB+^7(C~{N9ar(T#NDNT^)B3_Xt;i;&WGUr8t;yjwG)!dMfe3jXlIJ%^PGp
z9z+}2^QQky@N5B-0d_mK08g9+8;%aL{Z?#|`GLRDjv_o~Ya5=Ftudmuwtm3O=@$w=
zkeQpcSJg)~vRPa15!tsyWE<I|VxPM`PT6#6FX&XM|M5ou&l?A~Tjg*lk*%o+M;_4~
z!3kYF?zoG57w5R#dV$&r&Qw2zMG*CL%`2MPsY{V3(mU>=!gNoMlw5aj*Sx}X(jz}N
z*gG(-FiGo?oeQ0g?mj=ALW>+52}z=w)-%-C@AQ=6Xz$dgsd)}f-9W$vkGNd_@oFtz
zwDGlsK_CJ#^g@2`K9#<2V*RavFqraSs7V;xv>!j4lw*~B64BK8z*bglk^NAQHcrQ9
ze!koT{C9vlJJt`Cz~=xC`egfmY{~D;!SZwa=AGOc%s4il>*v%>2HU9h=GgxKSU(6J
zEDYOa>?zBo8?0#GlJ>LD5n)YxzIf(}=NR$qWk30VUv4PdE~{WJ2<H=N)UED6i+$zM
zUz<+j1GJmd7xqz~vw$Bd!8+`M1+oIss5LVK>rMs~xbxFS#5ugs1dc>mVn&7t0LW^<
z{pg8<U?Tq5ubpN34cLLZq3#-CLhyo?XH-{z)6k4c`c~PlJJDvvR=Z}^!M6pV4q%V(
zqI&G>fTLN~xVFdlNzUyjYS(GivmqL=EhyVB7ud}0pT;9Ph-BRfH+h-sj4foXLDm_M
zxJ3386<HG#*&OjaWv#*6bFQtTlk~VY0IKoN2JA0jxIakQeR(fv!sk(K`{gAsU0(X)
z<w>ty9*=XJFBo|5(*8}CMvQEPFSwk+V7n_uC1S~%qc!l(+%44UCMq?aKAUYlJ7Mh%
z=RGqhp;$poI_$m~>W&!{Y7|+-jUe{axt!oOkdO7t<t_CL#P(5uKO6hpSoYFbkCq7C
z_U;+IADE$TnBk$02WO}c&Cu|?X9g^yvm=_HB!?onRU7b&>-*>BCA%*#-F3Nl>*c-p
zG3;E(&o0FUI-iFSTukXb2wj51{!P$_AP*6CkU~%B0SacDUY&5a*b3%C9$yOGp#iMF
z3V-lSOMrvC$);*7)|||7F98+>z$=;YFmac-O5I);&J_Na<+x}<pWFB6$OT@d1kep&
zkBce5{{bj_L+)Sh1UWvY{r&kCJMiO7s{W!0&P7l0l&Y<G@-BYXP+A&Dck08zTfO!i
zK3|T^(4BGaD35^Jh3=)S6GW2fn&B&Q6uFA{-aHdlm)p2t;7UR-ArskC!oS8uF%kB0
zqp8N%WPKY^7yDlG3-FF}V7mga>-#ZqeXdv8Y{><htat!bC$qnoVPNf%&6zqye5K)M
zjwbR17CSh6U&`0qCNfVv-;%!Ied5C+`C*9M@0$=00t#qn3;m5>b!F=!(wC_$Pp<`!
zGJrAW!O$)s&h3jx$+L^#IcUIhV2`}E2<v&gJL<$K%w$*3)@a<a*=}n7dzMMv2WQ2F
z`O=dQjWJz!=zivh>xwS0EeN`d)w4~Sv}$$)Z}$FYmY4c|ou&O}mf1YZp|aJpX_4!b
zSzwV}HCt<#?Kk|sK3u;@81=f73i(0#PQu_+qL|JDrzVqMOfzXGSG+qPTWe=mrTa2h
zUoxJa&iki{Vwj!{wUNtl7Y*xS?QUvj86BM|kbavEk4cG3^TMI|kNo_^Q{|hozZ%dN
z_P+cu@aF+90_^_M=fSTHAZ(py4>ZbgI`8Kboww%MVSA71uYuh9hj-X!xE&HQwJRZ0
z;}?wEnDXpm=zp1DABHgI5@;fpYL}+^!AyK%wuhSAW@oSnKbatibA$$W&DNfp?R4Z*
zw?lWrXQGbym;9{To1KYHm`A)M2fqCWt3#zy(Ow=B6iuj+Ypjabzb)&%0Ch@7JMew*
z9pG#};*bICdVc`icOlMx7XPt_#eW>P|8MVu(s6V9O^|<kk{wX}mM!O+0#86w0NI@~
zdr@Z3%50wa=^-k039f)(e=(-CpQ>NivTtfVhh`avXC;Dl;pi6c$LI_uQ{&%tCe8f3
z&P5~s1gDcy3LlV^eO4Esj?e2-Xb$+$E;F7>KbSLvW;(B$%C0cAJL{;Pr6&4D;ANfv
zs0&fYH+AWF)#r8evpVCWIwRz9IcV|Mb<W1R&RAU|q=%WF)QZ6wqg(Z2kquB^)Cgxm
zuE7@7ITzQdi$IBgah;c?VC9de-Ye_0UuHWaooNw|kyeY4yx0cbB=A+w=jJ3VKoxX~
ztJIuMPs4AcwbRTbTq|(JP9cRDB7x9_oOL-I*EbI|WVaE-+o&-Ujk|~w-h*846K}F7
z-D_e<8OEt_>eayfPM_*e@?GlJd>1GU|CHlm8T#CBjf<y&Zv(sp;KPTHjdy_awAs3E
zoJ_y@MEf^lSK0S*Sk{yZ%bHQjQ%guDwiS&_@eK$Jdx$${qeV~rMX_-@68I!QHNd9l
zLf||xOTS=&CC_L--2Rjv`)&aa!242uu~0GqexS-rOE5n>psgLOSRWIJr|0tdHU^T6
z3ffm2Ck~e=zw!gwemg;reP22P{C9x5AVzN#I8XB|dHr51j?;<hmCeOXlIj<>-QF71
zBlHg;7ha<(2bN&u^N0-@%+zPAqd9#Su}kS`RG^|brFoyEZyL%^$5(vb-vRs~z@q@W
zJ$C}<X`gNPVEGR}F@4A0<E(RUtIiM1YUi)zhO`&26|3EiR5^;)#BNZaYP#RVw9x9g
zCK6xkyRre0u$^aL-2ER(deaxi=)DB^dccDKd!70h@Mgfgf64Xul}}_o^zWY^##(Vi
z+8ivcJCyy4wO$RIYXvA+L9jM)saLLezAHcY#D@g&1kR5fKSFonN>YTHV-J0&mObs%
zZ>Tpo%a_Ju`z@{T!kjn<vp7QY48M_hy5QRn22-Q2nE9D-n$$}ZT#bd|%+bv2&y)XS
z*-k?*j<wSw;I{y72iWcO7VwV%>;>6AODsOx-oJ6bwEDNb*YElxoMF=e5GR0F_*<$h
zUWy8PaM6gETxSH1slnG)7tL`})-Z?S3htrti{`*94?em4Mm+EN5m1lLgq}t%9}(ER
zyks=|5SF2y4f|z1^Dc?ivkG`UU_QVezbk?BRQ9o~=a!FT{x`-i_HJ%wGzZ)<zG*j-
z`Fprh_-%BL=*ve{W#dweVz?l2X2vJFLg*nsofy!<@tQLf;nnEJ3L!PFz*(|4EtD!G
z#h*(0n?YYX=;QNm;6I?l4VVG2`)M`s&4Bfmzvu(jxX%0g<N3tVAo#b(kK<i(=nfNu
zc8&bdqwNU3izyqfB1Qk6!k%&I>*l!RP-eZ&c+E=-jR>4~CF7dXg{HAG!_W1Z&cx^)
z558z;aJVvYh)dPZ;B8YR#_tz0st(r8&t$tOm&V$q2zXaOFM!>zV}bKz>t$`(a^ij+
z*m@t&FA~yF*^#18(VL;Fi_Yca6P_#%UIpiQ$<*b7c^klsxd&A@zK52vUN~|2#8T93
z(YFre7hC=I67XGsw*WSM-vQ^T%JSEHvVE~FeTb1bh0|0&L8#7Lpj@+z@KC6BaH?1i
zO<1l=b5<)mR;mA7wp)+OVsxDa{5-%EfKAtx!2d2?7am90P5(1t%@$paDA#VU7T~{e
znl6vg<p%!0(1l%3-hlFpVq~RaovEnf-ij_!ZeIpLSR(Dq+h<lR@@f6QW&2D-IW`>&
zfj0n_0POZz3!JA7f6;Gk=&)O-)rG<RymewR#bmcxU1obWXtL-zi1KWD%m&;m00{t_
zo;=_@v37BJTh}ka8l5|D&R7J(=E~pms;AH9`eSkROZYPE6>Re-iSqa|l858y5Qt%X
zTnaIrRd5Etx&yLZrlB00j+MY~1KeSi&DWwW*UR~JV!OTCIdia#wCaD=*Ul+w{Qz20
z(KD&a&SfN3*<qE}gm>HbV!8-*2BZS)diMs-(|1-JjjfhlXluQ#t$6Ci)9d;Dm%D_t
z@4@Tf2UDCg*2rwQ^xJWZs(ic*3w1>IcqhBg!u}J4-iXt5y4+e8Z;RQ89rTLjqoe9e
z*)GdKN9%nM_~U@505+Z5f%DYfPtc#yY2W`s<$Z;iWukJFj~Ed_u!N=ak*n;m%J(mh
z*?p`9{sQ17fW1Hb0^EV?PT7~Te`Z?evx9@`1zqjwXftjh^Wp3RssGQt{NPUdCx2eM
zpuTo8mydBL<1y{v*8d>};yinL4nFZ;bD`RcQZs0)%q%<8pgdsj(Uo;qlWySJdi5+k
zFa0{v^XUNN{Ykj9bjXC?$<A=$U+h2M%r=sJZjT2yerH)hUnf6y7a~?~SNaK|+f}|)
z-%fGbFx0!5Xb1l{*8E3X+2i~&;8z2#2iX0&3OG;Ulig=THP1V?-HM>%J-Jpm2q;d0
zMUPAPB^#(5xEgCw7|t`%qg~}%RAtf8gmP>;v?ZALfCPX|M*;A^Pe<Ksc>3d8$O>|n
z*sUGQ3D?|iAWAc*#p#5?9Cx3<FIFAVT0$k0m(yg?wE*SXbUg@s3*Z@mP1l>i|2|!F
z;RLs4{><9e@x~XZ@*(h$(NlQ*fu;5}P=SNCUXVgD%n^kbb97-3@SQ~*GVtramHiig
zW$Zp$4txZl5@6GJCUBlkD*v=ZN&KdQ;S5zyF&o>cuGQyb*_<W32y7+FL)T!%SSEa$
zozDjGRYIo9?<74NP@c`td;$0?fSmxFp3i{uwDn|uVI=dv2!^)2-^3nr5N>da|6&K(
zVU?e^G**6J;DZ1|0e1P-!2g%>aiuw?{C<B?e(@oz{&;_D{eiy%*a@)9{{T2oC)Fdi
z>JNj=W6B>BD?g80JojQ*VqIKkm79K5Y+ddOybqupV3&IuaGpNCNv?~>oxiMd2gzw$
z-W4nHLA_F$87tS?v3rR_R<l*^D!kXO@1ww<0z3<_%iRT>rxho&JG06at1ho`{TLkf
z4(hX%3u7gh@EQ*kHLf}=+u6S?HtutQcL($V*yUCN=V_dEk9(!Pp1D=-WbR23<$@!A
zL~8jN+_l3&{XV8#)*TEa#8l~lTjp$*=@OE%Nsta)K+l2zbvnO<t!S3?tV4PB{{1rW
zHv#VeY<j*1&QsIvvi*<qTZJPFjtp}1k$wkoG8ggcxVwxc+{xTQ9gghZ#<E~qM_?!N
zOh6G|?)$<YZb3{={)42e`07|YjRJleU_5{)zGwcKou)WOjD^PrewdK1$$TKfryM3e
z@d7+5t#a1ko%Xq4JMcY#y#TxZ9|9NY9$Ei!cgnnVyTtkBnDWM6R9z1ep*R3@a;`XV
z{&v*zp#BF{nh74teH4KNQ)SRS$QN2<ee<q~-IGoMJ_c|)z@}poaGq>G?8nW6_H>Md
zq>|H7H6LyZjdM8(FimYCc;J8}+&=L4)&D5V-+=eq`^7Hc9|ArB*yZcj%JNrP^3$e?
zs3lTsJ6Pj#E^qdl5w#12V}DLTW;6TT_@0qwHtc)EvOcKqGnFN{P!@nadO8ckJsB+5
zKZDdJ%Go5Rst|56L(@pI7#y%0gXVS_mt?J{v>ai+xp#g`nG@wV{v_$22KsFJuLOQ4
z;BJ6T|2x2W8fWnj>d!ba{bC@Goqrx!1)TN<4gL}sY0#cmMK<vdQH7@sWdkn3Tsq5b
zW0PP$T>>FXF{+hAySRpcI}#7ap%>HSXa-G66INdrLvvvsWQVB9vlN1luwWpp_^;Lf
z*TwpOFz}IpN`OuOIN&^;wEtnuRyTY4<m#ESBhUk&KUCQt+}MNqnabxB(RYfi#TV~s
zw#war_uA{=KY<?tv;gdLY2NjSdje=|xBliG=Wn8V?zp-cwX@p{iRtp23U0n3-4Vvs
zKhKq5hXDqPOAV<{#twau3rr3}pEszx^f+&x8J8MNp=LN5ia_?HsrvXVEyw5WZG=mT
z;Zwy|WWcWq5@$!OrZB3c$$UqLOYI;6Q-{<`SSm>&%Xr)Qf0ymM40Z71Gw08&0lo?F
z1i)_JoxpiI>AEWxT-mm0*b^<gPpSXIx?8SPiE`p^h^;#Xz`Fpt18jPF1Lx_a_mOGU
zb1N~|KucWxbzG_H8<;;SqX5b<EdL#>BTlnb-U_@g9q;4ye+c-qfJT7b&p!hH4bXmk
z9c<svb82VRU06GKRz2dCS>;#Wz@6Zn1@OWV&Nupq{pu;7s0sVko}Z|x`&I8Jpk+di
zxJf5(*83dMpdop$J7JUF^Fcjzo!j`2W<18@k(SZ7!5ZX*k6?X>3;un2s;OY5@(31w
zS_SGAW#aN!Kh6SvA)o<Z*W+5?D*)~NWv*{8*P9Nf67#GPOPRj}KD~Jx`UBBmIAAC>
z{%I-=O$|@uXBLWwA6h3+D-uNDQDxDy4`tc=$2Y(a0e%4R#A!OIAJXY_2aFv!Y#9Ek
zBZ}>)%!HXN7*!CqivPR9dVh}<v2|?}@Y4X}0X*^dA2`{4eztI#Vc(@QQAVb+jbw`d
zh{q1={j2aUdtN*W{BgijZQkF$9b4CX>;3i}*nt8Z$_^2ukeAVDz5giQWv?%R8*x7Z
z!~=NZ^zZu%`o(%Y4tp*QqJ*IG5($d`+ibmmB7Yyg;p2KC@P7ar+Pwdy?VneGFh=w0
zCfCgrQld5*?Mf5ez@8_(z@ppLDpB6fHsyQ+{0QJ@0Ku=k9=`+U=}+|N|5Am%Nr(3Q
zdUC7^J*yJ$9ePu2{!RyeA>a~#UH-$sc{*U(C$6;Q0j>Sj#<xFrSjq4ImMh@;jhw;s
z4Z%X(q;FM~m0Auo!6GmvaAM=lb2{8UM+EG8C*&Fo$^(pagrMHz@sNDmLnJI*Ya!6=
zNQGStr(=g!#WO{@IYxI1@D6}HfK7KXaGu()J13%hU|rpe=|a0LR6hcz?IwMS^1cRH
z3O{Cdk@kqidX;$J0=(BA*S7(G0I(5Ym%9x(Pc@eOe`ZR(_<W*rai^0-qpQ;z=?!cT
zC5^Ov50s*t^rK8!taqpPP-3#abQNJe`0@G_oCF4d359*WI~|WZ@Mg10yx+evHXk|y
zF9Y-d*mMmA&eKWn9c}xO+cAMAa0w=G{y-CAx;$^ht{+`_yPP8T{9;Fyc<(B_zZ@8!
zFK+_xc?-^(06vB}?>_BT=*a;JEk6KnUMbt9e&fm8=ORf*YtzBxVty?g(Zw8*G-&%h
z;{4P|M3yd|qs4QucrFyr67f7sJR`?F56J&Ks?87k<gx5D@l}W)&YJW`qEFMFTM;~s
z9wJ-m_b`6)HX$s<0b}r|H12a8))M1$AbI!b>F!P}tt;)(kqu^^;B=?)Byl`Nz;6mT
zVGohuJw<o;`+$Mfmj=vJ0Rit|8hDaG1|J6l<D6YYeV_RBfV-EsE944(J*st}b@-(x
z%gD%fYmSa;94r(wjEF0Xdfp<5??d-ANz)ubBkJpmwLa>KI-*8200pD~O?8xbqOMF;
z^Q6-RT{8!g3*Z8xgGUS15G~SI)qEbK`!42vjfv}AEusT2CiFQ%;cDV$N@2wTwSrd(
zy@nvzNM9&}btPxAZt8h@$TdRG(tLWEmZx7!%sYwE+YxrIBEFKuuSin=;GmE<oX`DO
z3`S&)y@)}n9toH|q4>3h`<2M&*7+i`1_lSxx@eWi_hF0_1LNc9JK#S9eh1j&*n68C
z$CWGPed)OS%JiDq)%FgEi()1Bt2iE)#U_0xQI<G!!YrhPLlB-$;Ix&&zfX65GN_M}
z<xj->)2;Gn0>1%pGr%tY8Q?tau<mQe`5_d_$wTYriWAgk@}4x14?W5)`-h2VfAI`(
zjh-fWK2f$g<r$_FDm}T_tTVxRPGzak^Wgd56sQ+-3Wsqc(s8s*UTM=4sstVWRWW+A
zfu91H2(ahfKY(8gXul2~Xn$^z=dUv@hp;QiRg(RhBG`oT887g1&WUZ(bKX<Ed(~Iz
zdupe>YP@pLne(;k{Z4i1c^KKfp^RIrrW*KnNbR(k;Y{sA70%`{e{SXKx#BbipN8aB
z3U`6nXqysceVRb4y|4clc<ySfV*tB8^}rhd2Q0s=cK@$G+V1|0pto~txo^M;u=p1i
z*_>~1HRa>sGXChuAL*@+F|AlUyl^(@Q$_t&tM92@_Nq0?HLe_Iz8Zfc^WMpH)X|}j
zM)zcpkUm7@UOhFGVPxFJx~yb~tVgtD)R}7)uO={e;ZYB2Wu>R0(yLWC3;;h5X+=tv
z$Qw~7`@Hcb@E-vG0odd2H{d*-^xQ7&(GXc{TAg4NR%YSY+-bCdn#@qPxiXV0lCWr>
zhD!`Go>HqsR(U)4fx!5Ds|9`q;BA22-sj(eIRH4=MXuB9ITr$HNBecVt+x}Jxq|(y
zFK1*0+i8ew4-r{-xmZbWg%7~cK6NW>+|+$)=a<#cE9%$eWmSDe?Yv7hcdKldTDV)y
z-=(U%Rfl-S?NWog)#dbhI^qU;1Kp(>yD=%2xO>rvyCd9V@G%!L`+EcI6h}6M&BOIl
z7N9+@cZW8)5f_ct=5X_Mm)X(bgV$G2ZscLNy1}ib6<q5Mt-)UuV9C3~t*&xwfr5u!
z=4KcBr>pQISN?}C^&^)<JmWre1wV5646hk6a)?V!(#q6iXHFn!I39D3*y7ZTLSrBC
zXt%hGm7F_04gB*#xR?*8KT*0!rPmRP!Em=q5gZV4juCZOQEt@`7G*1?Dg+lHv;kAq
z&bkRRpF$%a8nO;RoEbC_8fk>%2Cj;Q|07aWPL;^bJ7e>u0C*XoC%_&zV}bKj_LQ6-
zD=odJ)=jm|z7HO6MfKe2lLx@NBes8tVxT++9fl_Eg7kn#u2RB61w1y+Yr7C)W)L)#
z4Z>+e%D>BVt3-M0P_8|$o&&xIuoqy{)eM}ck1e}$dmgvaB|_F(Z1<7VrJL#o1QX%Y
z^cwN>ih0_gDu*r7I>4kyqa7f!!&XKYI;>?AL9xVgBg)&6S0(bHcg4<emjS;Xuo_^G
z`zL{K2eg+HY-zu4!f1@gzJRXFygDgpl$;8F3Km~-A6oVg5Nezbp~e6}UVpyITrxg)
zLU_C}AxBy2&4BpT4RH`G_22U3?)8M<^B8Y>1P7v!TP}#|Tmst@?y4?F)B<{S`LaI#
zH8DN1PQZHr`T*?q9uAzRllu9Alb7S_0Yk5mAk~3DKTUeQvdW7fK9IjSRR=!-p2pxZ
zLA(@?^nxmZu0lEK!1#Ky3HXzMX8<-GF9PSO{eINi@4TsE(w0!wpmX^F^ju{<3h%~?
z?I;f94OV&nwXyO458%%NJ_gwRIA<Ns=zxh{xo-Vx@fqDW%FnIk&S_h2>$g*;FQ}YT
zJ#|*~z-ox7_~k}eUAO+;X7)^<JG9IA`l)juYi`4<ve=i9rSe1mI=aXuJOT_7&#$C=
zfKKAWHW}l4qm1$WfXrr#pE7vB?<V~>_MYnAtA0-1Q(Y@ncMEa#H!F<)koVNGz3PLS
zvei2Z{gY`9_6Hr=eyHlhXM$;xcse-olq*g5QUp17nP)j5)@DUe+;-^c!R|C28tT^(
z-3&b7p1RT92UFQ$n)}VG$R`M|XS&@i>jyJqpPBiXyAOSeta10&*k|6})M)bdSE2o)
zX1d&tY&iTKe6?A&)Xb0DM2ts>hSO}3FREs8UgQ|W09eF#K{Al7Cn|(xpA&Ps(aX7?
zk_BuLap5F%snLavX8)pWy7~a&|LHe|W%_f<rXpCLeihMr>KR%lYayzvGGb|<!bqFD
zR`E=UzdJUc`vM;ZI1ONrgKFT@0PW}V%H#c5Sfek$NJ_Nl+9GYfBvxHR!1mU`_HIJk
zRv1H+6=AH4PlV7SkB9nj*79g}2455l;Fog<&XwIHeVb9X2|D?_*aQ3{z$XBEUK|9@
z(@E!Nn~?^VAp(L4$EBE|*_fejF+)cxo5Go}Uvu+mIY34y+hLVod{1m%jsiX&a0b9G
zzZy7CC!LqPeCf3&zo^ZHxpE*F!QbiUKnRhEs{slw5c4y=dzE<KX1q5K7_ay1z>Rys
zs{z>kaux8W0gb70J{~w-<_FvBugP^mQoyHD6NO6(ZbkgHDzf+Fr(H68l8P^L#q(GB
zVZZ$8RBm+qo!+@R?L4#EJnwnG@(}I(ElK;1nBNk!h4eGCaffp2-82~C61Ou~??h)n
z9WfW~NSrVjWf}PSAwnExFSwzJ{UvoKF-Pjugc9sQg?e7F4;(LLJ0n|2oC%*YA@y<G
z?s9M_Bt`~?$8^>o_GlG23#fzjq1?l3A$f)vFesVptN|~d%xCA3&j^FrO@v=mpdb!`
zfJs(6FeR=b>^q{q#_!cT`pb5XUmt7dWx(GA(EDQT{1EUD0DCQanTGpiJ5PGE-8$H|
zp9Pbw&0;or+WgrwjtQp96&(i5ggta^4II44P*83DL)(`Lw%7o;Q>qqsqs-05cJon#
zY&H_bGfh0#5|Q<8^OgMJc`Ckojfw1TeBzz>n@$Ik9|#0~Rp={RREy!I!%Oa<d(=^l
z>TYC-jp`e?sdsEr;kpD*OkA}W+y*+JIjRR6RA(k^ty9ZVorN@jjt)3+DTi)f%A4xI
zH&m~;!r2MknQkV9(gTzRHxe(j|H6-vel&BZn)rd5?n*b(Zy^cGNc0!A_-7TKmyfF6
zKUm5HKRU|;QE31)73!Lv#oS+$QAfxf1fjV5I0k)75<enZC@*lXv;R`n@g11g=|7s;
zOVtjCHRD>&>p34Xs@*CbNLNtW3&!%~Fjf1QGwB3!6Je{kQ`*3}VVIYSgQV3GtVrc8
zQKctnQM1^{M!@$J?RVlF<=9P~iH<jj*FiE}+1?Js@?={)T#ld0`(x`<J@88amjmqe
z;cDPK{ptE-uMa0)puW>bDyzU&J7$4uu*z@5`|bPB_rSFW-~$+7m!AWir<2AH`8%OQ
znstN@xiyM~8;96195MfC=nzqE^N1>uF901joi_u&9k2#q)A<l^p61;k&)di8!*RtD
zp-dGEQ5UKljYYIsKVSJKKLyMZ7=ZJIv>$v!Ba^9WWR*ag@&0mPd_8q-Kx`a95Wo{(
zQwvX4E>!Ti2PUowXEX0pmBUcG8{$BL{8TRl1PxX>6Y<U-cpookKJW#Af3zuQ^U2D|
zD>!fAJQ!UbqjGl%O1eaupn*9Ctvbdym&23EX;x0H5?N!L@>+n?2eDTG>~>8D&Qtvz
zvR#kU_Y<0BQ)=h%eeu|8!i?%}$%Q$G^IQ(=cT;6S4#Y09+AxEq$t+WilA(Ox9>+a;
zmA2{)6pyMB<t{+^_CEF`@HYY90PKBi^+WIr2`Jkt>09!=%s0088_(|xTnP@OiscpV
z^IK1ovvGrvbBNbMs>lh8RG98PtbNLD_I_}PEcH`SlPxL<(Q6rwc-Ih*!}|dBWP2YW
z9=G>jRM`y0h(xn@2OOke!&?ahT@x~|0_eUbzD7bX65|Mo{76*O4Th7sRUi1Y4hyGb
z^LD*-wNA|xEo+rt08e60k8VDsmp+JJJ^1HauX`WSi$5V+=lIv*m;elW4NujXTfh=^
z<2B9ksumIDq~X0NbxA0DQHaqHeBdU~1xrHit3vR7K|&+}lK3dX@FD710$=V5!Q`g<
zO>UR{Hl=q8&lg)DD}&#%h}u&hs0GbZqr&u)L@mQv>gWjWVKI1?@wg4T9j*tcH{0_F
z@wz>zI+A~a?6=~FW9Pyffj<a%7GU?=cfkJ-klapxc3yjaQeJ^Q!eqC>UG22G`7>+A
z!b)kN+!w8bqdb|lcIq4%J5{n~#?OUg!I=w3R!^QWSN<L6O6BlNt%v~Q<=B4-ZnlT@
zQJy?_?Cs>Go;L~X*x#i&2*l<i4&7K4bkfw-K?aMM1h;QV&`%gmSRJIRf(+6XN@tKW
z?hT?zFQYAl_U5B{6wM>Oz-gnf5aWkbrSWvxK0`Og*8TawmjbQ@*z@jv;5;pe%5y^V
z+T+d(?b`*n-t({kTrj_OuI)rWbDh4Ot<}jo{Z)M}M6!qV$6U&-Y8RS-LrqpN&KDm{
zV;xh?w7#??H7hMub?A;%r}JuJf{m8j16=S_lS?sM2z!O#ELI;W#-)Ovsv=1~UY{Y{
zm1POGaxfTSZ~g?~hPMmhA^CJ;A?L*?E6%Rs)lkYGiH(P=fnN`}31E*0{x|R7b9+6Y
z4eigPe>xtx5bOk=Bd5<DR)g=S&*M52uTeAu9?ghSVeVuDUk6{&qw8iIL}H20vb-mt
z(#lK-$Q;ac;U|Xa3viqFGc+bn6q@-OgR5T;jzE<xPaV#5HB7nhU!I!IsS<hdrr5eQ
z5%_YzYJgqe7T~@|!Be&G$5vdRWq(~?F%M#z3p><r_3bLzp^g*JpNYt3i|4)2xy3JO
z;`xL8#jza&^RRxSM;oF)N0fCiX>|uvz2;GM;7<q><$<;?{7bdEUxil(xL*w?1>*IW
z2+hl{fFLCEh?;o?8v^T$uog(y(j)9;wLdjpQU}lqzvk(HP*dppQ{Xuq<~6?yKdrQp
zN1eZvPVqH}AE%@B);gdyww|&fD(J9M!xY(m^=KP=-G3JNHvoNeto;@OzYS1xK(6;Y
zbL9NEZpB~D6VZOhE*71qW8lo0T|JXCjjUD0-X*w*@Es{4oFD{+cT<tg70)#BTr7XD
z<RZkw`iCUcH+-uR3Wi@N|7D|oWzQh<{mROf-&uDj2Gk~X;3KL|!Hnp;0ai(o<O~ys
zU#EGH4*81e%mF!8x~B^moB4)ukS6{>ld#~1=wxz%s~q2^JJOSi9;U&2=y2lm2kDrw
z^L{ewNvLN#%|Xy2?)W(IHIb6XRAI1pfFLFqj<S8hM&Nd;%Za0>dol4WRe2|kL_Z8?
zebr}(K16$&=!x31DhsNw6LXaD3^9FLiPW*HnkD<id@R;4X~2gA&I8!vy5HmA`2d!@
zFZ*Sg<(DJ*?RNb#2PYMKL+1C&2KI;f2M>+*nL}i&h{&?VGfg~O@D*?0qrU&L5x=sl
zWvjwTaD{%Osx<1IAvrdkRq<|q)WuEGjcu8ANu=@ID%4znEsdHvUeg>6ABP>7PW@Ac
z*TN^^m|>>@|3i&yz;~&6IsO9t?=BFIC+ex12Nv=kUnaA^>%lGNRbRfj2Uijg^Sn(~
z(JPsD4eaAmeOgdA-Oem+33-r=SVyLYJmJV%-WQ3J&FAFbZzaB}v>9GkdYt(NSm(xW
zJySQmTA%}rztbJr{hjd9DF5{Y)-{k+kjeuMe?!?G2bL~`I$=#zT}gFV*^8^h2O35}
zlnqm(@Hc-SGxLm9RM)i62sqbQ6DJQ@Y`XJYKHOuwc`H0<D3Nw7ko~z2ePy4kOP+wu
zE?^44?$3?DcLBD1F8gz(6&J7O<omRJ1_ck#?%=_2^id;}NL#n(*g9_iz2Mr$E~;re
z=oi{{N_M~-m&kI&^JV#AjQCJ0o{{Zh+U;{HubJIxIh6OhzDy&#!E_r*`#DD<SWhQC
zA7;xvv<HdPsRuH9L7y+37-o9s7826plHQ;RJ7`iDun1DbrS4pKrK~~#ql>u+=`%v_
z<B?*2A|%2&WKaT#kd3eqCB4v+>6giNOy3gohgb&uGQbr8yB+@xoIHuMy|qqFvvPAt
zyLo|DvppY!Z;6$0txDFZpUA9MeAq5OWQq?H#WP1dhl^*0c>Yrr*=GDLpEGxRlpT)F
z2q<8(&U)}uEp3_ZErF0k&(+fDOT;V%lQNeC-XlXlA-da(>jD>p7P5{k=OS$9@wrBB
zb_ZAfrzG)hl7E*T{zfaJ^RQLmJPZv<R+*2MnS{$Sg=><d(CsAj4sjybL})M1c)rp=
z`jQ5p0BooVKdXsqKKSjwFr{&cY`=+U8+*N<4SWgUYJhzndKfrQ`z*cP<K(~cRA{R&
z;qLKL>)itqV90)5XoV|Or3v&p%~7<AgSp-CkaLEL6*Gdnh?%Hmhl2djb|&gIgU%9n
zk*cMVKIN&{y(|K}JD?B1?%#Ug{{RfK{B8Qz$oaCj{XCJgg8M_~tKJHFKZI*!1??%G
zrQ+E|Jad+V`FvPkr725YorP*@7mVywc%Sfr+gwUIB!={q-{`<4h*OxZ_PI*+HmHz)
zs)f0^obpL@7@bU)svQ4}VwFD!3>u+ADcVuFTGp!(G~4&huYmsspijrzJq(<u^_Cyr
zRS(K~wVB7~;m#B@@>&6nWFfCUT|9+h^<jMjReo{tAQId|P8pjhL#+;h>1jW@fD6}(
zuaWdrp*)+OOM%}2xEWxNgSUY56t?0iZarSECh6h(ODv$nX7aEc4j-#>Bs`=kH@Fdq
zQXk0tJz(Bq7HSCyW|E2{uhVq7l6oRM8gnG4(uA-t5=lt$>TGNv06o<*K0?lA^XLsQ
zXrirh!KUjZ{pnj{=iGAOm4NX8oBpZ5d1`;}X>HHBwYB5x;T8$2<)FIx+`IXhk>F?Z
z*w>Iva4UT;H=8@G?<2}l)F1-)y@PdlHgXB`!9lqDaSuW}u9x&|MS1r6{yuQ+8Qi%5
z_PCt{`~pDOitEHako|jbV7qk*`~}g^*1l~GU<7x1nf}3pJ53hPbHsDGjQ7-8d?*ml
zu73!ke<qWYYIf4+w36qw4$o=c=e6sJa=WLH^`pZ~=-$L<nryizX$72ya}IB=)|r-?
z{oV0KP(>Auz^k5;$2}b$^LTIfWNM{Gl*aQbY+pDJ?oTQZH4SXro^XlEuO2@WcthGr
zS&7<#c~ul6lK)28E;~_YKfd97md}9y1o#zT_ml5g*-u9;JBck;JeAgdnpF$ujF8;M
z4&sf_Xy3y%$vTLqPaXyrb2%xF*e3ME>#)$oOG|+zgw3W)Eu%)zvF;{GR~5>&`)dL4
z<$#p{o31y3^YqGg*-zt+_kSq+sdXi61lw{CH;n&-ip<B&;}7evFy&Tnk(iNgr@I%U
zDcwD~ThD>Jn!#v!4_1q?R;ULwBcSE<=?*^-nx@6$^uya5^R_owAEbs&QoGS~%!1~X
zlK%APV)M5b@KXRI0XF>;f%8;&qon^h`7@_p&Rd&ZhKu?Demx%rZKA{a<3zdB$9+?D
zWWsI6B@lanq|LX;^4H=0_CE3g@J7Ht0e1P#z<DZLF3UfTPblQyLYp#nk>tFBFA1k%
zFn=TpLcXTTCJ<t?GP(1%J0P9V<6KF6%`Kx3L*Y_MzfIEB<M~*-oCSO;U?#w(>oVXx
zEwlI`Z(4Rrt>bOV^x4zrP8%?H;q1v37Nf7Vf$A4?jn70VjUU#x6J;;R()3}>MJY@0
zB=P1si=D|c+)pifcA`8JpZWMd3OxFPS4jfc^b7>flg)Q-vg|Hf>B%b)hr4>{jOQ2C
z!ORkKVH9NVLfl}f3JQZ2VKjtRyHYgZaNdCN{NX?=w&=I3%2qXlPSpL-OLe+}{&*Za
zPDO+vIM9dKC&0`EsPj04zJo9#y;RntVRe<DZx!fF2gd91H1MwgM*;TwHf$U2CxAhg
ze}?odxvp(#zb}LC1q+AFshc%;_Jz~u)Xla+VB-|Jk%?1gu6SmO=gn<Tq;JR%r|?r~
z3%r(X*GhJ1rQ0>{4sD>afpuqPy2BmPyThc!;ho}9<8=gFV|kt|j|VYka$ydkf)x>l
zM@H^(RHf9&)pA{l)Q<(P^IBGN4=cT!c~`NHM5t3NCk$FFiwT@DzDbP=9B1aZgyGe*
zhHwGrB?HkO&39GdiFtv#+v~{(z&{6k1+e@1XW%?_IGJ9Zbx!B~+$x}jF^y2N#<mnH
z9ty+SqRzbPD~WPH<P2ei-u7~qnU>EdLJ1t`_T`93E7nwrymEVNo?Za_U4VZ_tlvHc
zp7kQ){&bf8wf>OIUwKyMCmx4wjoULD98YV1n54n+3KiJ_Lu9yE@-O>|=OgmNB=KRT
z{P3B~Zj;$!ncXelak2Qrj6Y0X-vxoV-~+}XJ^rx1+tsGmKVpaU@L|1wo39+L_}j$W
z0`1jpS{LvXO`N&So^j<#%wu}ss~hKWdKyBY#nA_CC*p4*Uf9!c5gvR>%cK2MXr9;f
z>j~Z=JP=tRI38EoFtistnHhQ~f7r~R<KPs-g!Azph|SPBl&yEsqK+)BB9e>sX<VFx
z4l>eRj{j;UziXwxY2G7HaYaOE2V|yjw^~l}(r8|aVW`?88UxeI+yD*N62pQ0dYe}I
zg67?#IiAo;p3+L6)V$ZI-g_uK`zp!|)`@H(>~wf2Y?SWEmrxu&XV5z-bd{1xH?`8d
zhjRzD5eO2nn+N3Z^$S8NYd49^iHCmHm6YEf7C;8`fC256-7dXEE7iT)M~sD`c~D}M
znqH`)mpDpcDD8Fmu#Rn%<7gGeh`ru_2|W2FuTlZ9=l@3F+W>i1e5fOj$aR0@@q8k9
zN0>W(uJAN%Gnr2k>9mbb!1TFeYU^iKFXVA(_$h4#c~TyKH^?keoPxWFr&m0Gmp>qY
zGaM4(E4~V5cw7h?q5%Tlk%5$8hk!q51f~WXNFWl_0`HUHWaS1U<Ng}geKp$sHJW$^
z?yb>-iDon$z15Sl+|%J!kN*~ranzkfjVC;gEgmN=_{j}b65WTJj?a~6`Xas-sN4m9
za%=yGoPv8z!I`ckQ%G=;#}`+~e1?zfi<ZL}{W*$jA;jcbF~7WJ-~uAWHUTmcu{t|2
zziQ~%^GKQ2K=cUQf<YU4GWh?SWxo`^9P5{f!0P~u0d~J^1^zCehhNU;=Pmog^~dXl
zwAp9I)J{bY)y@%{3`{-v6{>+9Vt;VP(E#zhM=*(6z#kD4b1~*(;IRHW;$(w2kU+C(
z_$>po=}n`Mc7+pvuu&$l$<P1;@7t%nY%nl#%x#87qWV2T6oNYnu1#>ZS_5aoqi{1k
zk922g++Y#^HJ&U+dlI~T#S^mL>954jm4ktg1XKd-_4XX#JpGAZwl?*J5g_~*SnDod
zZH3xL3)DV7F{NEVrt~;7)b=>jY|*g+<)ot=zAwH7{6oMe0Gp2g1J2Wu=j41iVEJu7
z@wzJgD8%T9tG`>GIQTNSA3l0a9&juSA7ROe8sdO=d+rGsZPb;)*(3agF@8+vsc}n{
z$cMff+n1_=PXo*Z*!2AaI8Tk%d8pXZJ8nZ??d%Ijqj~a+EF1O8Ga$`v(dQ|f94Sy@
z0z(cPQ8L%bIR*BymPEJm$tv;Qop`@}{`nkuGvGe}yL|06S-xWVn>j8{dtO0n`8b))
z<8!|Of$;dr#xG7byNR;ZkpU~3QmnjAHNY3jIc$_Xz9{KWNjfS~&QMUq`{{Dvw*l@1
z*mP_I&eMu)IZrlQe4{q)&}O_$hL9WH6Qs=Rn8-iS+xbQ6;k-yc<?1^R;}c(cZqk+a
z9TVs&dMbFH9zTvH6rxG+3;Q{#v5ojP3h%PjIPni8Qy6y<bvh5rdkJ4BkjkH_5_$UT
zvHlzkd?H{nz@G05fj0o!>rv+&?+@jeO5_)TEx2Hzts2_^?gDS(fPC-@^nRWAc9PqP
z@~ea2=N;EG!*4EOGg;6hxH)GtabyIqm6|I4Os3*zCEbmnDIH(&_WupIvD2%#0e1U`
zf%EjMbsj(N96ZnVtisut{QNk!cFu*hbHw>5=F5E@S%k|wC-+{Wyo)p2T)wJa2wNU&
zUNl+sRG~b-Mb9<BZvm_Z*z`OATqG;L%W?Mm$DGTdTsnG=xC!!Lja&snEF!(2qn-#I
z^%lKO`3Rag{0@^xBYch&vl0p}hf?`ml_=&Y%1Z~v+vmV8;Jcyc46yrkA8^kbUZu&B
zUk!Rnj?)gu`-^TfP7y!6a{jy+O(!1Bv#J-^e=@hSc8)aeX!EChpo|<dKEG&YE$Vfm
zAEa@`=$SPTi7E>Io_k@cozr<Hc9EjI0v;hZzo-I2;gkM2MwrK*^k?xRSqfS<vr(_!
zqmxE`uTx|jRgo<sBD+vLBjQ=w=9#<)lGzshRr4<5TSMaSBGcE9ZR%ZQ;2QE4Q+~&F
z+y%AEu%3$Rxr26wdVMxKhxPCW+-?MKI%9+x@z*56o2-+bNjl)-_Y^tXtSX@Kuf+#n
zjd!e%XJ2Ic4raz*pXo_RheiUF45*f9F3ZfhFFqfJF3`h)hr9u>sc>tX$c;`DFM@|*
z%|$#tSyQHw>Dd)O&4WPaT0gDKnBd3=MO|fD+3)emS8)Zo*{q13hbY~pd@J2S;5V0^
z2}3P<imz|*v{0w$5c)j?fC#uYDe1h_NXllhocxm^#@vfs(B#k=&cX3;GB^${s&lke
zs=L3+h(SE+%?O{?dT(fWMUKY?jI|!tc)Snz^MDrt_WU>ioTn|8U%qA5{h`h1XfqC>
z9&C@Wfz!}|X*<-1q{#IDq_8w&J6ut>=!clH)IAU`y1GHHtP?!r1@zI-+DL_}A}+H1
zw5XBEC-OOH3)pL=!f)n8*bw$ph3%lAr}?!ikq><n=K)}RK3xTTJ>Y48J)gX9d6j&C
zVy*Y#bLD)Rc6>aY6W8O<CITO#JJ>@IW0M{1D<ZOpcpBSbAkv~g#qJ{2Ysm8mk}+Tn
zf#KFh_joAzaR<EFtQLCBPB?YG0x?lui=(f`d0va_P1)ME<LdFutk>gG{RQsRu6N0S
z<itP<9(FoiE;`oeX+-0Nbxt)ark79{_)mdwMO#cD9)p%dDVMJt#0?l4eEp&HGEU7R
ztBF2910`0fe4|QW%g{#lI=Kn>Gk|RXdmOwCoTvZooF!+lJrwvFSw0o&y}tgu^WlT=
zs5=wBBXclQ{E`Ef2flSS@A77gp7gh4^o#_4HlPk*_v=%@-vpGsDbHIQtT^zi{<L3@
zrK^>lo!Q9V*Y+^d$aa!FqT_BukD=p!ME~_%Lvod+o?Z|Zuw`+5kL#eEtK&M*a}bX=
z>`X+olbLiAiTLS+7p(p=_{87nisr#9x1wA?VLtgfq0_nlnc+szDP)clU<=E8CkG3Z
z-c!p(JMY+2#hY76-xE6r3;{j{a5}*5mkWUN6t>Qt>^0dQC!U{RG~m!FPr*W95?8;K
zA3QGwtE)xdN0n_bLE%D$C<Io0U>{_#0tXk-g7mI9xQ}3|@T}LPO`MtZcdA7BJ3&V}
zFg_1kfYV0o{Q#TJEZ{u-YWc4`f!w3b{F}q?fRnlM%`voo$!Q%9;E~~4^nX*O$-_fQ
z7vP^ucY@+X!_BfC2nN6@<{_o)SQecDe(H*Mt3>$=K*vO2oX(ZNHv+Z+>~Ylu{1D)P
z#kaTh^S1oyJ*sAUHNQJSz3pD<c>WKWEl0*F-A%S@gLi0DFtMJZ%3^O0R0tz5tJ2`E
z+V_)Z@Gl<vv&XyGyPgD=i6#9)#7?}I!0wXQ1XujQxLJA${;y2Ud#eO8^qtuHHx>93
zfM$SQpIz^ImB@RLN34<Sp1V}WmHqVx`T4}-1nanUxXEnx{7%33kY>+XQ)J((BC8h9
zyNJkoisvTz;R%_YCB8dDJb%Pjd^x<81WJN;>tOS&VR$?Q=iR~bA5<`KHd2u-j(u~4
zh;PP<XN7V<ZuW@A!tQgFJmd)IGd0x=xxrj<O-jt+LD|>@*e}#Ndur*<AuO(2AnM!W
zjC<dSxGiTOQfs%8XbxEMWoJaOVLQ)Ot3rB5b+FgB+8K9`Gmg1Dr_vlVhm|=4afsw<
zy6$#{);r6ua(kD#DHILedLQge=|nS~dY?$IE8O0tZY|y!b?Qz?i-NF6F4Q{0A30Q*
zKX8UVa+bf~_HIL1)*$VbfG9C{5Oocrns!o8dBp8~*6p9{8Qg8T%X^(m)B18@%fE1E
zrsYtgPtvX-W(v2F8boUmys-?bU_8+3r-Y8ip+Lr5J&SIKFqqQ23C+|VBPJBYO7UZ~
zC&tOGP#z<9>nu)P!=S$K5H&+aITQ>xQbea%OuZpbx!>zMLW17F*swQLfg$vn97oGA
zM(lgjeZV&Zo&?zQ_f_CL*>-Nno!en>%ZJP$%mirW@{CW2s);Z&$v>CRf%QaL?9V{h
zHVqcR$yirFZy$CJAKpltEjr@&#_Xnh0G|Mu2C&ETGr;!)hNfBL`EHq)wdX(Q6&%BV
zs;;RSH*zdU%G_aW(zY99hw%j!S)F*^gb#d(K1LSiUF=@i>*6m=AaTkTe=n?g@id>s
zAM)iL_PG!FdbRj6V3guviOI=<`0#MA&pjV@n~5}oyV-;|YKS`1aT<oj&_E)-FIFdI
zEFwSo^1gwEIx0H^EWC^8RD>ca$H}IFVlU_o^h^pT5s86^MX*YU-SUW=_99=HK;qCo
z4PRC9W>R|mGq!$x27J)_Ugc$g-9A(Iq0c^qEd4dvE=SIi^L<h$nV)#R^Yu$k_%^@e
zcptm`f`bRcv032BwfT!SE4KZHqABxdPcCWmSI`q4-F9f;mIh7Jx;dSv*3GP*J@s6~
zWb3@3Gk>YLm==v4J#fU>uDqj~{cq{t`$@C^8Mny(OGS1C5m~KxE;mGWtNd=B_;9`a
zUmwUne^V7-?vdFcCO+MUjQ94d&ew^tllY;YwG;Qr$P*;`1ldL3AiF8sMa#wW0r?@g
zn_jewx^`1-7d=-zJ-g`_YGi!$fVzwJ+6`{3&6AGq(Biji-F9fbw`*xTv{Ae0hjcex
z7uc@#-Jz|(CJ^4CZKcXhf!hgUAM#nv|9wk*W;pApign{_wOg+XXy6occ%Q*b$&l#a
zzQZ%`=Re%1rX;#?DCXz;-VeHsjc)%PZgY)0on<|WS9JTQuO9vtlHr#tIO&|O?#zeb
zCaNT-7Mfe`WkI$)SiU02zHkmB=X~R2Ups?%f`NxW`QGXJ#;JYn%znV=wIZl34|<jc
z2jZOK=?C?=LFWc(#T7vhNpf}iC7>lId$VDJY=Bdq0$rEUw6~tDk9L+_AIze0Hw0mH
zWcuOzE0OBo21^bHOAiI3Ey4I7g56qzy?+R%H3fsT&sBo1DV#2&KQyZQboDd@ON=ZM
zApy-BGT{0QLdqdy%?W)@TS~@6PwP9O_ZjA-KBq4w6QidOo}#T#%?DMJIQuT3fq)tA
z<6BDnQD4`v2djJ#X4Hi+GIi;F)N$tgkQ#OA*#&04p^i|`4TYd$nP~VP3-nzX@FkW-
z7L#Z+()G4LczwY6jcOiJyM}HdzRow$tm`3vQYyit>}mB-4w?!v(9VVTf`#-q70d2G
zoMI0M;ZbM$e*}!oD~b9f(TBp1U@qA8sdPRZpFmR(x;kGHeAyk|H6XXfOdkd&-hXkC
z3yh@+xuv}p_Pmkw`I_{u>-RJ1yO)$Nr)XFx{RGui{b4wbH%gohTt5QN-l~fVj835J
z2PmVHt%R9sAGVaJQ79c|>LKlE#3(iV2>vqAJqcsd^8^WwqL+qPxIDz-A0TloJ{WgV
zyem$N&sKZEg@h;ch3XyeIiM!@N_v8%mZX%XMpNR`yQTF`PfHt>JW79oz}H0|&6Bi9
z?O<m0>9CY!MLYD(>YZa|_sLmGvZFbJvo+Xy-$C-s+&+0rNp3W+Ywj0XL0{_YSXQ{0
zbc_~uCE<MBg30}SnG$IStCq+|vHNEx@B%<*fW7Yw1kO|C$>iH@R(YvmDxEB10SPsb
z3kBy8a<tu{%vM8*G~E9a_(d481+3i%{;D)d&nlE>%l94zeh3ivuh{x}74Z82doBO^
z^Q^cFd8f2HPtBiOD@33mByBU@q(4f@W*Df7Y_-fLi4W(AXLs?8JMM{j%@?Zg*%xZx
zFV)g7)UIEu6<?^OU#eriP=|i0-lTq^8egi0c*ZLqhq~h~jqope2R+9PQ$KSsVyj*b
z`GZeS*F(D3bbHj*p1vDAhzb}1)^)QdlO?Izqn^^u9?j^=;ve=5-QaP0ifM{g-XW#y
z5Jx;buEZPh8sG!BvDsrh>M?Hh7y;OS!FZZJLomRHL&L8>eV&pY^fRgrQRld`_}%k+
z1{Km$)>W-wrRo?ul-#6p_rS3G=55SVrAxNE`EhI<<Z>L)7hsQrGl28dV9CvUSmUA1
zZq#nSnjt*=!O!HaWIKVM$=8taru-eMQ{jGG1Kphfc6N!w3$F!E+RaQgPUUBk=Ly>?
z4&9=>Mz^GI1Io9@#ZKVw0X_iO^!*z+Pwn}!C#Mf560Wkwonw>oB)DbetoDr&7_rb?
z26F*~3}F3jHoH>kk#rRAkI^v}com=)VAC-dxJW0{>&q)>*G}_h&b8gVa1S$J1`mYU
z1_bX!*%rycF(z40Rr~SzGJs73FB1ro-z(|af%3}nnct^A2mT%42Y^k_FTi>Fhb4D7
zE?(y`)W9oa%$y9jsU<l2^0On>jgKQ4?7yO4hO)h}{weoKIx0Vjji0-KZvi|5u+K&N
zfFA%%v*OPzu<oH9{^H!oxzKG+Gwn{5;HXM{CEMP~3Z4wo5gVA>Ijxb|Y;Nb&qAy~~
z+c4Mjd&2(5VgI3*W3mQliNT|f!TBqnGBd%0!1gkn9~HYn_W!h0Fs=;9dKP~g<BN;|
zeg@!dfZg78z<D}i`H|mj=})#9hiz8O{G#b|E9OYIlo*NUh*7vuIULQzAp-HCAdUu8
zk&nePmPXUS$8NOf*ot!O`S20&F9F{IY&w1h&eM06e&Y%5`^V5BC1TP@tg?aoOZ1KA
zJrDJyhPWb7lY@h>xYd_Kbdn=<r1<++1ZBGnZHl$a`M@s#%m>)?TmhUXyIqdccWu|R
zTn>#TT=<|VpCH=h0_BD{-Y$N$OGvf}ZU$%*p8O$6$3B!(j?a8P(9dAg2*?81<8T7-
z8o<gOl221($qBb!&~E=|N6*x{R?aF;-IFcZ`1R7cQH7LxH<JBq;3urxe&+iG7BzRq
z4Fa_VkQWBArlfuyPNv~|nDz)WHZkKhKh^zehu8h|F6LUp=r+G-+zDvhy9htm@TIVk
zuwuykuwug&f<k0XiEWp&A}s5>19h>-!B@b41RMp}?e6|uw)>yx!<=9ow2_QfKEww@
zk{ApJiLxaw2bJmwh4Tz9V39+j2N*qLSqWd78X}Uei73~!`e7;XTLE_fY`UHR&QsON
z*U4k);=T$7;zl%V%Gi0+XU^ojO|0H=^>1*Vl&_U1bv;#ff<y;K2|_m`tXc*|h(Arl
zHR{Udk{s4mte`8Rl1}B{v308>@G3wpz^3yS;5-eo^d;xLdmMl77&>QF!_hYU$&Q;d
zz24R-ifcxAukQ(I##$t@D)G!0&uZ~Z70(3m41X`y+?#c!IWC`@b|6|z97d7DjCZ<O
z0j|RtG^Mv%u~4lx3(|VvCZFa@^hEeksvl0Zd0<_@n!B3Tt2c|wte}5$f~@aR)W`0Z
z!~@`E0xk#G^W)7g5GV6XuQKjDIUn|(D(|g(kB`51OueOgavlB?q(=Uif_wa=(f@B<
zWP6#&BI5Z55m{QBujCKr9&sf+z&TTk4Lm;N%&0R3|7o{mPyO31K0Sh+F}@4L;ifYP
zepBa6EJu1gGjL;%>fsk?cn5ArJs3_+P6rg5&0E58w}#UZByt2C_<G~P1L123%VS<I
z(4gKeD;V*ZUXLf6p6Nb6xdZj%D&<%EVwmT^65mm1YQEnhaZ93Ux-X-W7KJ%4D<=cL
zgu#Jg=2g+qvS@|s@cRA}=lw1Yd_tFrlMM|8&>0>u&AiM9jR6V+8;3s$vH(LZAO%{&
zJ8|BFaT*Th(FmAGBXMQP#X=D@3e;fIFjpQ4cF%(@(IsB6>3Qte7)4IMlWNfJPI9D^
zY*kCkQ8P3AhiJGN8n|W;{9(C8I@~MKC`<Br;SO{3qNw+mhz5qOgC=>jRW$k_jdn`q
z!{$<$^=3mAWD%j~!@_M6E?613I*q3LD1Q-nBNxyj<ow@Rv^47`l5=kMDLIp9Y1})6
zY@jd?O67l-*D0FU+4N^UO>%H6<KGnc7L(v`bmVE#)KgH>UWzUCR{{pvVgn4a4>^PE
zOfblHa|YRF(;N1zW#EvZhppr<kmGhU#-zQ@H39zt@GHO`x9ML&76CY7`O9R<a{LbZ
zi}Qs&ZYyhRXAG&HKC@LO0UtYGNZ&c%z@ZM`3P<ds=5G1`Q`RIQ;-k)9j+(DTF)7W}
z#2CtQprr8x%%GV^+5)^mST;1*Pr;S&Tyrul;MyZ2a0SEv=V?Wutk*KoT#3(ozuE+R
zH((FIu9tBT_aDF#t6mGN^>W<*P%ryX#MjBq<U@!uVL4JFp5w)H6t`n<(cfXpD@pkj
zZbcwt@z5x4?6|EsLl0`<jhca8)XXgG{!R^neQ`*_R0-s|dQ&f7NXLMeHk`ltRMLa1
z0N|P(CLh2WwMf>l3bfn(b~W&ofYkur!Mu+50q5!H$^8Hvv(8*pJ$)V&L9i2u@G!h;
z#kJ7bEa}X<=oz9cOXkYL7pNgVu)EQPoG7Htoh3cZD9>L1LSKW|3Fr#2=~)Pzr-|`$
z{9LzG<|jM9UBrEh@^JEE;nSYe_GqM0dw_~8BA&o`D{nBBt;xM;nV!?j*Sjw*>y^_x
ziV$TEEY~SfhaPgn(`RR`O90Hy>_C_%nVNPg6e^vLE?Q|oE7NIoKs>L^8C+Mk481a$
zyVLA}iCF?xN4}$nyI3o-v{;}|SSst=g!=eVA3nbHZ@fw-AQxcQcNlP<YTlCj+L8Rf
zs&5_l${>ugQRTGF>K6K_N;a#RZJzjs*Z6)_xhADM>z*EFaau1ZxTk9&*dpsVv_Y9E
zL(|jwA!i(va0X$qNC%gOPZF6{bd~h40)6)Qc@p?m!1ET(eEj^0|70G4MQp)seJ8iT
zck->Naq#yf-+vVEvfC%_Td$G`NCoi3-{0PTyUjRg^Zs$uXVuot=SoxXPOp2FRjKj~
zkRw{<RN<X=Ig5ZV0W51%&Pn}P%lK1PJ;v3}g5t9DRj;EYUAa9~xZ6+~t#Wo+@8tdc
zKJX6#``eUb+XvWrYkg*mA&dwNI<%fs`S1{_$$D?`cQO6Pb-)h*oQGoTlzABI7+{&@
z-?1=No*Tw}^5^4ej(u1<=8`urri3I$8uy`v@8n$%TKKJ0x6xb`I+QVU%gjdSGwwZ3
z(&)UJitHX$WO?E_O*}7Y^G!tHuWKUvi0pCl5&Q)WBnBJ#iR4uShmkYH@uNi**(W5B
z8QiZaFQpEHh3h<%vt;3rlzCoA2<YtDgn&O%;Cd$^@!f=g8NVnI-~FCYieOXe?p!0@
z^m`rfGH@!SqX<2OMc400yox)&Rf+F|#JG>(;{qNCSt#8X4R;?vOVV?kS#BXj8ylqw
zX28t$Y4PwrOTiWP!EnW77ZNS%bUNK!Di);blS!eclExA3wiNH}Db#?G8oczz!_9+}
zPGR|JCN!(dL#8?JP_lPhGIWzozbp0X!~sVW3Tcmb5;8X=41!c7{LciB&b~`H_4|Z=
zdlRB0?wy1Y8xw+bgc|n|SfBg(ax@lp%U~Cms+$Sye_<7$z$Ih-urSSoW*t2L=7Q&X
z39W(e6!>Vv5ktFGH3w(?NONY;iLPD5+nuIyMi#s)Mo0-aq=feEP0WllUNxK{#~C;m
zw7`Lqrzg}VYT#bwX5tU{PWAWmb)q9;;#j45pq$T*7=!luegyb`0e=Aafader^Szvz
z|LeVDR`r}2v72b|u+E%MRHHPd^P8v}tG5VoRR%8-K5-MR8YJnMh;r<8>muNb0apQR
zI&K5b)Bk)gvtxNzUfOy$f0QWym(H(aoH1@Ga`3BI4$BsI9R7a)U`fwGlxNf9X+{h%
zKq|ndrw?$R+$Yz=J7ymiu9;d7OL67n!9-g@;ES?FzY6m84EW^L4eCx!hJ#N>QU_`V
z<7gW68N_)Lyq7^1Co6r3q;DC@x9M94d^6xlfKA^n;5^k^_K|Ns*6tn#28N6;GC=b6
zpt=5%)J#8fImT&=z75(HAS;FT*F$hCT&`9kiVFr_0aQR|z{;=_=lCd9r$~C@e~8@+
zdjKB~I1^ygvjjL#M=U$T8Y^$JGI7hV!J~(aojw(g7-9ycjW90U!|m5zCn75r&z{_h
ztwsMQQx<3T#T-hb4oyRRP#0Lnlc?s8c)YmKI`j&)SoOO~v|fDc9LYM-Y8(I(NG9uv
zx8b`T!zBItK%d>7KLhu)fENO==`RM()1UB%+R@)?fLH%GzjB`s$Y{NGBVhIBOw0NX
z8gK|LPV)39?Sdw5V`Dc264g%hEZ)%NBP5*-pd$}-@crr@;Ew<v2iSDJ0-UF#mY?nu
z=q<OS6AaCoDYG%#<Emys_+27|-!CG-Q)Uj018Y7G1{`h~7+@6KMDk8Y@{g4C_<xM`
zdne$-0HXjlJ+p!H^#80~2VhiH)_(WC_ok&xCJ9MsVM0wPDb!Fi^ddq8RO|^5AOgvl
z5Cv;gM8rZAR4iy@E!bmOW!Dy!MMadT?8>UYW?j~0*A`t=mUZ?2&Mh;ONhXQAd-R)k
zCJFaD_uTt#FD+{PGSGIvZhKcnV%xghuUmqqvOd83QrZ0eyJ@t*HXq&)FJ=~#v0^{p
zD)rhvH^wH1*y|~iPD3?OMh6=$7r7J$%#-#u!XBN@A4C5O@Har)`weuG4#veJ?bV5#
z5-1d7ZVQb&`}LK_h~<cb`b!jV{?Twbdj|Bgfh7P5m9sy_x;KM{yGtvURj({vr7w4s
zYm38eDA}@kvLCf<f{L#`g6}QpO~Aqbj;~Ey>S-|6D!!!e!tJ%O&?f)^fP~@~v%MBG
zetI-04X=5c@l3xo5mvq8t5spsdvH7S9l$*ie7e1+pP_PQIs7Qf;i_DEz&hE6+tZJ-
zfYG4BZ;lB6N9aET=J(<F=y3J3z3@-2SRKi*mlzsV__Gj}Zr_$dUkwBSoewXDP7-}?
zYKR9FN<|r#h@fY;ynF?sk&>T}eqBFN;Z_<=$cDB98+B+#W(ek5<*=`jKfhFj+l25n
z|G%Moe!%`ufYORa@K1n#1~63Z``7n4yV_r`FP33rhN#U#X`H76+tP!3sSJFP?j-rv
z@pmj%9DWyDDAqe?8-MSIb^ERYY{!|vz0CRVzTFZWSd#9<GF#X2zR7$H^ZdInUChNd
z^~<Cwhxyp4Fp3wM^~@m-=KecQ<lw!{h1df_MWc}BVj0g}h=YFLpNIYu@G3w;agEs@
z66d-X%Nvn$VRWwXWdC@KD!Q-=7B5=TNizJTV_`oIgq{zK0(3f#gHCd$n*STB%H>cx
zu2@~UBv-FOp<VuRqrhR>C~(w^4-8Tk^3XnkM#Z}c;p+6e3;HhLQ9$!P3B8NF!zqDU
z@qXWyH@HB?*Z60cHx0TU7yxMA!O*+NJE9Hmv9`Sag_3t2!qxG;0s3}e2cUU(LhmB)
z$Tqyk+wwLk-WG(bc^${01Kj}4+XH$Rd1;YQYd`<kmbZ41jPFX~LcmnMT?Tz4uo=+2
zH$W$eS*}LpD{^#7{#cX@M;wccV{DOOWa~37n-$+76&~^Z6T0hPXafP7uP1a8z2785
zwR=PPST5D2v*)IYO>2=^`pmoO+zNbpjE@~3U;~U5uo9D2dr~nmMU}O6Hdf4A)H^a7
zPge0)d}PnH&~E~60kl20tKaMLS3f(pXLv4_dhry$zmE%+j5mI?#$%;Dl{zAF^l^&h
zKcd1Xe)o?^3m_HH{29<m^!WvC_NTS$4|>()9ey9<4!<9*(<$;^Dw|6b?@ENL+jkE_
z{|)d8pv&cNp*#MKaoa!2_I$S5-*7bgeEfF#krP4=${t+07RQV%ol;qe);9ipQB@61
z5%p;@Z^Qw<tjP=<Kx^+~#}hm`-8aJ6Xpix@oHMx_W46gyoZ<Gml9CfJK!x%!k$3-?
zr(-3B=`j=V7Zx=WFK6hj`_XG3h3;)4bJJke6C8VdVTI9rs`T?>#Kn*A<mVdb8-Xo=
zj_<S3_XE?^ehy2;dr{l<%~MyG<B-3c+-a4eyoW*Q7tFgktH=K4yRk6kW5+TqLaN8E
z8fOu@3Oz1Kxq@Xl`Z$WwkG_ksbVrt%=gzj%&3>s)uekf_c4nP`$-7CozuKPU>ctbO
z0#bp%Y@_yc8IO#g!tJ|h&`$<V2Xub98M+X)4s@|v2O5za+Ws|Yp{S9Ysg=QUtWH&H
z6tPSWXYBp#V71Ploj+sK(8rFi;*5IFoQ&lBbyyTqfQ2p9SdZ&xea1NXxcKC_EX<6K
zKnlfYCiKk20__05ft&MqZybnr!FWXE4o0W0PRDpOE%TbnC!2E}Xf)qR0}^ZS*VAZ+
zkC0%AjHmH)IDckC9}7$ZbUe?7PV)3YH9p!D)$bJdJfqKnMoUdqS!hLOD2|x?`<<Ni
zYrrE8mt=3p2`Y&rFib8l=j_fikOTb=o|tPEB=nZuqf%=u#&-*_U@b?Ei6$+P_BOyC
zJ-+cF^uGgN1KQqyLKjje?QFA7SlC;o_8rr`HVehT88#n>O|ED8qJ+DUO1Q(0{kZkb
zn}va#3+Xi&j2WUr-EA_Om0hz8ui*zV<@*)TF90qEv|ZOhC)usmp|o!oT30iwN^ulT
z*p@nWqwK~HqDl6{jt`mfMUMfzk7F9o!CK$$WXWmPI&DznQt78=@ab|Vfq9J~z+6DT
zhqpt22H2h&6m~5-Lq6l{<TD~43y(>&a&l?D2-{Ih#rKeveOhpe`qw6FF`r=Kks&^x
zvc860hcPYjzL|IkHx`UYA9*t$;U3w2gf;Rt{4o2F`7t-X9bCdQ9YY*Rm-kQH&_52#
z<Ax^3dkQ(fesKB?gI$=!JO|s$Ze}}j+}m<2-tFcbYg0~AHyl{%GWk%f5Iy(C{@FkE
zTW5bH*5%xaQ{8FaZa2fI#tF`uo=cH*%P|KBPhqhbotlODx0`VwsNLOVIk6iio52bx
z4J)Ppl6csESV)L1^j>sAWg61o#=I9%j#m$l?Jue`a19KGnRgFiMx)}}gs^qH_7UjM
z11|$Q|GW#GBwzKr&x}5|OQceD%^D2Ym0wuaI(cxa)4${qPW^rsIr>#@Y#&;H$x%0!
zSz$V&AN8@zsqDa+lcI;6bguM+A7@(>f|v63iO`n<D*<iSX6PjQ)p;WyZLbvHqw|j}
z4AHr%KpxU#-l6=1W)vnHsZkLWpIP$7yUjF?R!_!_XU>e?d|)@Thtt&uGqZhIJVr2j
z@M*opr7p{?m+4y4Gevu&VU@J|5bW~960$qRf({G-wB6&OlPpvFmHMl7Fdf-lN|SH%
zgJl&9S69*`oSFs-$D)=^r1fhxSig4IaS*fgH8|La*(k>{F`$)<F-oy~ZHzSme#W#m
z#;fX9OM5qwjj)I8eG&Q_z}tYf_fzO36YiG&)$O)udzXqz6IXnfm9ELj6|-~7%qbX-
z3!54^7Xy~PF<yDt@gOsvKYt+a$L#o2x8?D`(B3qUHqA=s)AT@UV2!l1(DsJP->uN^
z1s()+xxyS?BNJHr7ip(U&4*Y&$nVkiM&^q$I#p6vmD<$MKad$bbXGKCh1?W*JTONo
zw9z99p5Jg;@cb>_*tNbUJ~Ix-c%m-x;r##cR-$JYwy8K0?6I!VSoAO!`ynRAkBg7P
zpeWAb^W<RTV&>S?arPPZviN!K6AH`txlTtaPMaJ**Aai_gKU&LkKA(?voI04mCn@Q
zjTT?&zBs-x?pBsKntu7Z8%JqiA>9&IA(G8#sFwa)2jBSdBTDB7p+5yY2WbD%Uw?@2
z&1ydQpjvO5`XBj^${MSIZKJU_r1beCd?S;MM=nebtwq+iP~p17+t&MTUyu1#Y>>ba
z7|CP^q<F2gJKGty`!wh!KpDXBH)Q)o&`A!*K6gkYV8`h#dNvqZrHXD73dakFh`sEC
z@D7os9(hmJSj?DuRmN;q_Pq{%-M`{4uaN*G1KPfR&`E;o9LILn-wFHV`$Of_0@QRg
zv7M8<661BNG3hIhl-C)Prvz7F48)Bgki(9fn6VvK;R$Oe(~v(EMq@E6B3E0XU0Eaj
zxDIyca{ejk`+x(0PX83Q*XRq}`>cFl4t10D@tzpz-=4kL$g&i-%P%Zji!}l(szV0%
zsWowQ5@)sMF!A{g`x(i7n07<&x{3vm|2;VADZzuIi}?cPz{Y6jv*#so%i(G`kLTFA
z-7SZwXI5_JRcuVW%i+W=1l)o1D1A7%R-6I-9J4Oq*E3uNc@mAzU(GSnypJLVX}Lhg
zKZv-IQ2xIU`s2XUfKI13)bEov$oM~hzkG&@0ad?-8k#w|*epn8n_PV_uY}MIY^;NA
z#-cOIPFLV~w`<s7<fEP_;G7r+UyHQ`Fmr*m3iEgJ)-@QmUfP-A3EO!h^hLm8K-;-g
z{a*J|_4Ak8Df*E4!_b>Q?3iU7x`t)p@KO);A?ZXZ-H|O;b~S)EU-|Dt=$`_g0otz5
zp_8PlazpoLLw1Q=PE!Vv{;I4f$j=Yula%}+!kQVzPuDP<Rhcilv?APkWk(?nZPM@C
zY0yi6Wq`J$0y;?t`?XcQq-v=M_R(N(cARAV-PsrILNUQO$r6__A;1e|`ZOYZKfY2v
z`Vji(z)ygFkCNlPMo+-6&U<`B-FNYN^m*)Pa<{3+>oGSa+9C1O4rz8wc-5T!44ZTV
z&wAB#?m?4wUwjttd823c>`5PcvbK7hb(k$TW?F0b7%G+~V0X<VGYh*6@Z}<DZ;)(J
z_FfD94&XjO+xr{ndw`^8WPZO_<@*iM>ztzOrQCz5z9(fLVIWQQH9LaWa~M0<I7H`(
z;#8=Dzj-Eo;mKlIWKaPPs>F$q)XEF;No+2RBDq-FnUN5-a|HCszzKl1^9<<AfM~yN
z>%>kf*>RxG!{W3T4;o0#j&fmTzVR8Xoce=j(s558oD(4|Tp`QNa@a?i9n!4q+eO^?
zPU-$C^u547fP`#p+9Lhe=6#Iv8x0y}!H6uQE+Gs5F6j~(e=NQW<?Er)#{d%mrozW=
zOK3P}N!4@r)=R$7`$Zk3HW{j9B4*-FKZjzCC0hHi`x=+UShM+X$}WSg={%s@Sxw50
z?cmY%#GBAR1eyVD$1&(6dcOLo%HJV7!sl_z7hN2@)9OBn&>NTD#O{-GvDN|j|0~Cv
zIKvhBw~v)(yRb_<j+@qS<QQ=}?oc#c=kgS7Z~djxZ?n8%zb%En4!8u+_TB-Vq~Ss7
zuelFI`7L~oa@ej~_MXTu8^q^B@;Z-uE#vmMLQ&IZVwAvzqfSuYI;-$G%)Er`nqjTy
z0sb{Jhw5H2@<pw*^9bzF<yJxxbRZQVq5Knb{I%6NJZgV>$Wl4w^hzQ#nibDtgsIc-
zGU%IuEr9mNJ<v%S9+7_75IvtClTVF#mYj?%)eTwdTWTpCPV9|Fn~kM3Hkw9aDg9)e
z-PMDO2^H`JFPHIeQM~m2bn~ID4)g=GT?NodbiHv{os$%iuUc2V)Kn6F5cOCc3(_#f
zw~ia&io^*#A-=miBi=(zVr;=;=(3B@@o|N;rxtuVJ??}42+#m%d!B|)qU(`1<0div
zB-)b2ljhTcmD7yx6HhaYso{#OMDZKR;eP%A=y||MK=T(vCkfsw(<wFjeUHg6rX^a~
zBVyF+TgThXIG&h;TUBu#WUG-cEXJTrTWw7VHEO|^f2H(Kz2c|z+6(<H;2l8Q_o4c|
zPOo<S(`wxc=JYVh7|OUQ#Z!cX&NB8TVf(mjcgzgC$*5CyWT%A7-FeW@07?LD$6Dwl
z8(x!svR;wTh<p>v4pD{GvU92HJP<X5*mU!55>97v;P6-n4j{F$aE4yxiD>xu#v-%O
z>2v6xY><9>9sGJ+@GI!w0sjQFeP*h(PoICQ{S{$fM80mdn_Oh<l3C|aMp|k#CJ)A{
zcF{gNF~U!c%8p|2=={76`eneCfVN{Rbdr&(yl$r--^x!^olq|%oMM4_Vr4?P@k&Nt
z@y^r!8VrKbX$Dw9q4opiUnTw03_fj-s~g%xfFIEIjDt?1%jGYA-Eq3LvPY%dZK8NC
zr}U${guit>#f|+Lxmd50i4rK;>TZu@Ufe<8H52Ka#ql_KD4(CqEXwx5jnd9dutVF~
z0R36uIY8U_8gvpp@7m5fnAm<3ML}SZ@LQ!(--9miO6JMrs&Q62OGhiaS=oVI+=d@K
z^u85BKM_~}Xgh+?NhaJT{ZyyMV<PfVY&%4eP{%IWLPv#;5uYbfiw%pTx$#I3+MS(l
z+BoIe3EyNodt-pSyPau^(}0&*<Jf8|RoA;oo21_wVUN!DUqkn$dyO<e+dBz5$sRS|
zvikI(_#VsNsP*NcY}dEm`ib9dVXmdO_{<WY-NYw;PI0)>GU|HGMVb%BojCFCnY7^9
z^1H>7XDoWoG&8a6xwkWe-sCfI#_bxh=-JN;;wr+`f`7A&*LK*g>(7^=?+2Oy9j_0d
zlYDfuOow*f=ho@aX3Q}q;KvZyVBGlnt)t9%s1IGJIDoocr_zQq5jZ~Tls(xQl8^Gm
z80hnW?SQuDr=Ifn$F7w2yj~LJXLYC~t^gS<F7kL{sdyYqqx(E|vTOMBb`b`YlAmYZ
z?<dp9(k%DmR{Yi6+TwEWX0Bb#`rLiM9@u1m%gxbFpXViR4vIU^lgh@Kw<IQw_Kh=B
zpF`%buHm~JMK7}}*j8TTD*DKpbe+5CMV5!tUFO92Z$VGzK32qwN)`<qiJr?zQUA?N
z@vcromvlCtYtD7ilm23^b8dVZpT_25m0RQ|{ngAt-bo`d`*cFoe=}0NPufLKW23hC
zZ<}xYlgKTZKVilH2^chx|ILl__QkJ9W`1iHy-Q}%e_zDY5li^5Z_zHZs6HJ(`rgdL
zvXOCJ`!A>W_pE3?u8PHfd#$1ttH@DwU3}4xtmti1{BZEe-))4?u4c0`i_T0$z+>cp
z?jFxrMT=nM{jBIwr}~ABJ5!1tW<`lb@d)S1grfW7i;mbc6GrXEUhb(lA(Z|*(e1=~
z&?dX+4?Od`g4|1MF6mY}_{F%QdRBCMY9jU)E#jxy&iDK{=Z|&6B&!QAzq8I+^pK2k
z<Y#=*7b!)2{72^ae`XClp5^<{Ol7H`r=-T=(fYp!dFqWAm%%QT5B%}A&tWqk^WBk}
zdN=dE5a(Os`@SIc_uO~D_FaX${(K(sYx<MlxKk4c{?+!~7oYk>g3tEF`4W7OFyC7&
z?J=kCKH^yD`?ZyJhOc+(CN}Q-jm(#We}z9Veg9&<Yvb`xzP5b7v&0YIw0z&O?%$dC
za(BA#0n?YIto%G){GR#VVZLw7)DigBEj}(aK4b>-{fueBv?sW|)t5@)Gv8C(x5JK4
zNllITBl#QFJ>4FZnr(x$yVJu%NbtDCzht-#kqkPc{eSHnlzI++`zVX=ncAyu;4%n&
zzJ&O>Q$MtPPTw{@?iH5$048dUxxCTlTU_iqZr$X-RZaOgtc2zBzj1t=AAzqJPR{td
z?QSyTzcAyTb0+R}Cw${dx|MtX$dVsqzSphPzw?yOS=v_CZ3oNv8%yus<K*s_$M-tG
z`9?3#%mSB?q}OG+*w8CnPyQeD&w#%Jx*YlvI*D#Cw<#CJ_)kS89gq|ri!H{Qf!q_Z
z)O#A58|Vn7<d4jA<$F;soo!fW(@3V*l<W0^%8vZr;qv(u=;r{-021m)#axG_#_!aG
zxR|HP$(7&mFB1Y6p-?8`?F?%+nUVB{jQ6exzPF*j4}1vdcz+C?q=R*yBId1mF;60H
zvBDybIrCk`#Jkq8)>0d#pNw#w;`e8U>)AQbPXtZ^NGQJ9vBn+Rjc<8{SdLb@mKJFE
z!0IzBp9rf#@zo)0KYl{>&1=y20dGg}O}n8|{C%5o4#h`vw5{VRzfGYfjPUvjbss`M
zkoPmJej+e@G%Nn3KH+>8fIbzN36M~HJJ}aBJQjcT^onJ2mpzEn4U5i}60%RG^CocU
zdjCo2&jF1Qyq)E%SiB-{U8?fd9mrb%NxkBA`NO=!p^pcO0G+?4Kqu)ef3@Y0$YUp}
zJa&O$VHM>hoyRC#|C=iQ;L+{5XQ2NEctLS@C7-qBZ<W_l;q_F*N;LwC?-;_?{_dIO
zHTnZN07+Ng<7uU8EkH*vF~VwAd_jb*`L;s86Q~EYpMM3Nq%%K9@J2W|#!HOwO7=_t
z9zpopzuvx>BLdO@lCJnSg141pTfM{xt5)$XM%X&OmqFhITpz*LS$@`&IGq-hA_mAu
zZ^?Kbis1bjx~rephzGQvz0gTI^K%q`r@pRN{KW`g`}rd1mjYKP&aU`5iZ`aO8x>z8
z!q$HNGxRTjZzA|Q^K&ukfv)(t<ZbES!v0~tGoUX6Rs!0;tDtwqzY)Bh`j*0LR{RYJ
zU;Foc=pO(dE6%R?H-a~&Z$$(S$oTpPgyTCM`aEDEK+=_RVrJ#!3rcYx4;D9dSW?t0
zzU>iwFF@Z5>;tra--1rkS^jOs+XWB%n`C^G28R7R7WxDr0FZRWzpZ#X@Nhu!)go-2
zfA5F>IPi1?UuXIE<cd`ll^0ZW>fmO@cPxT0bCA~<1PlSRe{-RebmrgIyq!C^<Q?hX
zAi~%A_jc$zfO`~YSNz+WH@1Uo6<;&L*8Yvl#+X0Q9U$pS{ynuEhelp-a&Q^iY@Iq8
zVfx>d@hky{=DimBHefrT{d@;>lFt0x4u9v)M!5CLj%M&^e|vLK?*VB5Nmu;c4u5Q?
zBg{s{yBHig{+B`D1Y94%+gZLYt}3s@5d&Q)IYd;9lJ}(F4@L0)4Ba&t^&g=9?uAa$
znct)MJN0?9;x9({+TRyJzZAGaadySuQM|EzeNe`?5n*dTAA$Z2@O=bdXMSF=a1r8$
zMPpsb-0)ky;tdQ5^R9$`9#8{lKd*z{6+cJwcjjpS?`6DqBYf@W!_fZ<e6BdV;^%1I
zSdI=TzU-ml_%4KgCQu5Hbfp}jHEZP+HKl9ID?2Z&5oWXE-4((69`uiZW<dM-&(KLa
z%g^obcjjslZpj~{zq5yh{e3F*(}A-AlCJo>9sXD@7h%>a-g<E8{JjtQd%&Rx-p=xO
zaZU9~Ec9MeUfreQ+wi|H<Ll22^Ui_35I7akem@;LNoRg<%ikrp8}-VLdhqCc{x<Y?
zfZr?buK2wzfBSB4RD2nE-q5)`qoD_Y>41*+Z0ID*9;g)0h;b%d#6qJ>WmVX^A<uPQ
zi_<HHEnkBig5xl6!#S8VL;M^w&IWMd$W)Ag*B+Ao-i~l}JU@m07vM{P;wVodG>jkc
zJ$irbp6{g{5%U_6+hMXpKQE_saXG@8(9c?Loe_TlTYcD%f!)YHw^46f2f6hgcO#uK
zdy9uruk4+LQ8E%5r`ZMlDPT9C?cD?YO+foc&s%N#p^d#_d@5oRGQwtDNJaDPG)&jV
z^yq&^6Ak*0$>V`>81<+qqJ@6@aDLs&0iFch1HOc&<jbv7X)<O2*8Y09oP-JfQKmyi
zfj4v>`$^Ex07?Lz{$<cfnx2yJ(D94#X|!SC_|Wt!W}&B*EibKEtrCNdXu1aLRB5f=
z!#JwF0w1`5h4Kc8{{v}PgW@HB{|$Nza1_vX9aF#8<6`<5ZC7~gGbcA}SY-vBtEYBi
zOHZraWrwl5?07|ZcUg(DConvm{x#4q25JFq&j$5-ZHIn_?GbK@T9DV;CalfVwgiV)
z(mKHtjfbjFG>kFf1%eIAo+iad{_%{!d?3&b(Dw9zPNMD5&#*m%g+X#%scaHNTC=n=
zxE^_wu8XeLMv3ir<e+^USlB~?#%NJ?tyH{Z*Zt5R1)c!3UB6bp*Y@aVgk9~v8nJGw
zZDkuS6*F)edgRu?{0~c|fg{7|mkm7+7y)Rz#;D(Gd-OBHuF$=4;e15zU>ge>+z}Q8
z6@RS?pZxMX^jCq`0L}lV`n~4W&j|ij^PFKD#0e!-5Ja39*~X@C<05P#hcqa=GDd~R
ze@}$I2v`hgyUv6z{{GfV@oeY)k7ZZn9f;bXz(_GUKi}A!IbTjU=o#3LWI8o~PuKr%
zL;n!?3!ux{ub_ViMAyR`zL)kz_=|iZmI>#C&-zU%F2S)f&iS5VngbZ|wms}Ed!%8F
zIFd8$uQ`~upKlE{yBo#`><z#-NWHQvFgk44a_DP-DnR?`eCQ<6cCB3>EX&2p^6Hhj
zA=8$^u+VLPIEomhcS>Ll?kw8LuEmHoVB}-(xY+WQ|9{dijR;@+<uLTGfun%tKL(xT
zqno53bUI1?vhzA*PcL2zudJC*6Vz97!vYL!pv+{GLlgFakEI>6#)R!y1N|~!1EB5L
z1f3+>5246MoePcVM<!1lJ6SB3aBg9kR;4uB2#)|*>^GQZYMPWCP2kb~_y_dkz|VlT
z!z^syj!x5q5~KKh90R)(+bIkSFvjY{K)iyVl#2KjBYe$&9`uWW%K^=Q6?Bqcm>yJ-
z7cW6#%n*rzirfMW>}1PiJt#2(&62+f;cNcyq5qq>$A<YW=p@nU&|dtj)Q*SA70dMD
z9Vx}9W4+i;R%2K-<bYntjp9vhRQ$yVU-Pepei?8jpyR(0I!Wj8Z<l>4T#z~62@5VZ
ztcwk!jP9+a@B)8Q@kjWY|0wi-0Y3wppO5<`@fU}$A^KCX1w>?kr6Ts18rG#0`vE%k
z81GR0#Ry;XS3$o7xB}4p8=;d#pZD1IeXNp)3`VjqN9<i916+p;0KkUX@>MMURK*|R
zYyPjHe-9i7H2=S$lXNBhMMGfu>PkBCBc-_gs5dFz!1yrlS<p*>WdI44(VfRPk}U@b
zoMTuy_=kU%@!Ay;{+rMb0UrT6UY|fGiH=u9`639!@Wvt(zLBL%U^<$}&LU@k3YPN?
z>wKJ?DT@`OR`F*~2*+<8^pk<p0L_0U^!E7Md#}QVgyy|txfdI%RQwUXPS^d=-v>Sd
zG=DR6k}mpLxFLd_YCoB?bh$bf_rs!GsZ;#f6T|!`LO&Ha6VUu6&`G-Fe@WbG9-x*X
z3A)4m4<Kg)#tqCug=+-<qT-M6b^PCg{sHg_p!xp{{TK5`biwDt0nYhOQT^A#1i%QW
zJV4<#Dm(Hgh3z;A`q{t|K-*CUouo5Apg^69&5o^d;k1ZcC=1w8AqxVZDL)|m0K%vC
z;y&o_0f!VPy=Tj|RN^z-z7OSpk?A64B_h{ctOqe={aX-mfTUUR`HRAQQ=p#!%m;LQ
z7eFVOwN>)!_C;*o2&d0d^Wjy7RfV!Faz4D|uQI;%2w$iBUg&QD?*N+rAas&wf5&|9
zP_1;OK5JI|emF++PlG-mSO{qTQ=pS{UZ05sh-QyjpOqYu@!yW{3lTo0_ipGf1A7%G
zrT3lJOTV}27YMr0Y;`B8je!0p`I07w`SPKU1ttPIz5(bY!R?Z_{qzp=c9z<;igy#j
z)qZY({w(kupm|?}PSWLc)&uCprI>RR6&P&=*vU>aEbIgrYpHfiv*LG63G?Sd9|epB
zH2(zXBwbABw(JuH`(nddOzatYg=ygL((juPzK;LH(02pR1DgLO=p@nc54~q<-H)0#
zpFOQr$uc9NWRZ(c#;B5|QSrN`hWQ6WF91dXn!gZwd;BrqGi68zO$QNP;By)OT7<9T
zUl09Pzypf&7qlP3tPxEJA_^*=mIxl-H0*x?`T{zh1E7<1(a){Cd}4%`WfO5ysQhkG
z{3{WD0O8a7d@b~Cz-@}N^YU9(oYkWC?)a6i`$GD)IfBoejyW(O3DEIPflktK`Q3`Q
zvsYS#m-MCNFG2VL{Dk7W4f+n?9zgTo3!Nn6mP+w#zdVUv)uiGcy_hYfxOI(^XAM)!
z7L7V(&oS`jgNf`JFavvkfZ+i7UXL$N!uO}6%GFsjqSkYZ@->ECp+#<mC~(qWvE47*
z8CdG}Szqgu1pBIP$mi)e49_;9G%34k!C9#6dH{L@@N0mCY-_kd`ltPJK879mr)?Hg
ziV*QWd?nMzm>K3B1U(-Z3F!101D#~(jlU>;BJxQ4YqDAt|0aZ=jqoWwo`U`i@B$E-
z9<Sp2%Bc7sJtpl5m4EH0N2^JW!7?>ckQ5E+DU=8%OA@g&4FA{CA4#*q<<Lmz<AEYT
z`(p}plIZfGy>f6#=`!huQ13Z#5{9{Uvekx#+e!1oy=Szu6@MMV*X7`o&|d&v0W|+!
z=p>!jLv7g8i%&u$cZ%pg{u(Vkz_<Y82WiyKFK$uspB>H*!=O(DrU06M26U2``5}8S
zjb)1yIhTbF{l!&y6|_Cbd6}n{QA=|t_yOZ&Yb1@ULB5gvbqHU_zXAHQz;l4+e-S!K
zSNu=Y3=7JtUwM}H-NYEVs8zhKIbq&`&<lW3faWcPPSUyGqgZ3L@V=Gttwp%{y}t|k
z1Hi+8=6wu0N&i^w>+Hd0RaJBrP3bb4aib@__DK`HxRDZ`E;TGLonXo3+eT3F9z(c#
zo~_#ns0V?*faV<louq^Pa^aI#bM(=x2}%7F?M%a(Nqfx|t<k7>g9umiZh^iXxD(L4
zcSHXLyrCmmV=*WF1F?r3LAW|!x#oHeFOUjo-VEp@UCCEiCV?&9)tI`1r_+ls6N7^H
zAV&kZPI<B%p%uXyjf#II!q@y8q2CDH0%-o*p_6ppe~)5cgm-$Vc&GI{btxAkf|5UY
zRK~vr;p=>sb|Uut0wVxj&dz{d44heCDgI&V4*5LTcKm!fW;d!=POe^Gv2@CMx(uT<
z{Gz7^i*Y8((n?Q|^4_%lcHEnG_x<+iZ`v5nnf9(X?j3LUL*8i?4*B{&FNSxvGOGY5
zq5E;#5U%&?&QHg%kC2k@q}}zfN&Br4`fI?OfcD$l&`G+IZsCKTW0wcbiZ^3kn0GYv
z$-oRi^Ui@z(s_9h#afK?>MPQ#4mk!es;pEs$%*iS-^+M!NBE(5Lw^f+2hjWnp_4?%
zJ5(R4{s2vOU`_$6O++OWz6vBI(9v*%(W30gm><qJ0qC=Vc>oFJosRpTU~j$JrQ=2`
z!mIm1#Xo|#5&9dzTY!##6LgY}`=M?5BN`^H+lp%RA?cXp&%j8K_WuOvQ-PU)=AQ$d
zB-;P&wF5-cB(&hRP2S6o97nEG{M!+}=Kn49-vMs`ntwlZlFrMEw(NmobW|*CeB8+@
z4XaYjDq#z(lz+<jC!G{-m*qnr3rqq?DBWY8f7hC>)AX)ae48Tpc0qpv_%)#8yBj)5
zS9xQnGZs6bQt}^{@iZ2M{hSRw4;TSx-qFxWx}MIF3l=G@+i&yLDgIi7uhaQ{=uZI8
z0Gj`|&`G+Q&TZJskk;{7{jn1##26NUcIU}*&Va)8|4aE{VK}|}LmvhV2S~b*-jTE&
zrg@{{TNlB1C-nP(2LT=LN1&5*lHRR&J4<s4FYu#`?=gh0{hqZ5aR-J1nm-RZNte^T
z^+Lj!FL|TlUx)BD|J~3Z0v-c2{}a$jx|r^5*#k5hAzyOc-57<JJpbP^{w)aKkMODA
z)$L@o|A2k~38i<;b9BV}-I}hW1aDG&D-pII;S%5V&~E{52XuUQKqvV{yj@7};-6%E
zn-PAY;<rx0`EWooK+<_VriPWeF!0i%_!c8<&37^MtAJ|&9pCGqlXP5vwdRc--SEhH
z@Mjs{LkM5zFY8pV5eIky&7TaNq|5oc%>wY4SzLtMqU<OEkG5ko^qYa(0By&e&`G+O
z&)c;kMphT$mKaOKvl%>oXq5k4i?J>WNCQYZ&+lz$JIeAROoK_@5^(tO6XM+j{YKzs
zK*xVObdrwqeOvz6c|q21wTizP;cNdpPD8#2e1PUpg-+7td;nss5)X}N#99wva20=q
zulYAX-vVp{H2-$!B%QaTMZpuzJ}1<g-i+D}!2Q*tHC?Cpn-RX|w@ydgfiyt#_kd0k
z9slTdbOdok8@gmM4q<Yh<1C>ujcZ^5V9X8;`XXGvDgCe#Jlc*Mpx+GK2539(gx;PV
zG24@JDzDRYs8{?)5WeP*Kf`OJ1HAyv?}tv(#dL^fkC_hnmWn^Z*ZkK(zYVwx(EK~0
zlXR925yZbJ9U7G#N5E4E9(o_WXTm0+H$cLHj{7swtEf9K21;xde{g8tEzq|EcLF;8
zcS9%XxISpZAG;V(RYJ4kZ$|i<-#iQR0Duo5={(+%yRABobFD+hcQL}&d>29A0Bizu
ze6NL0(s6uS@pc+l5uj7@A42#U_yMK!zo7H8y@mtO{BGzZ(fKXr`$ofhQ%hH4+&0!w
zq6n{6@h?XBntwg?4Zt;k=D!{~Nf+O@2zI#+EVI>+&qN%cA`X2s@?9$a2w(I61l>Nz
zYq$Z;9}k_R%kjs-VKkP|nF|^e|6+u%`7efkHE<oE`RkyQbTR(X>@i1C0&W$5gs=G-
zif0!P4`_ZbbdoN|zs+!Z`yIOm#lINgYyQiiZw9sintv;Fk}k%-4SR=!`3N`Yk$z|f
zkG3PB6l0!12B7We37w?NerS8(uy`Zdom@w_P0EfE;>CA*AFqXe18|e#=J<IR+kfq{
z4?*QS#IS}S7{iED=^w%OBXo0#*Kh(l-X7>AU5__1f2XxA_WdjV#Ry-=_d@7b0oMSU
z|2pU-T}=O_t=I!-^~hC_>kSLbgqP@5kO(kd#UJ5o{^QV{OOgKp&7TCFBs%`l?Vb>E
zWNmv&M62g&w0Z!Xek<1D)+zqQ2w(GG3w=AV1JL~UK<^6wvYO!P@}<~xTU=dMv#e51
zL`M&07RO$_m6Ra;aRhvNo-utH+T=igK-)72I?3U!mEzfE9$Jm3mQ~S-F$?r*Vp!vj
zIT!s6Z$hkzms({<5Iov1H$%S@xChX7+y|W`I$dJcOHsqityd`LhbANZiP8@(2w(H3
zl%d}b^aC{iAm}7r%$Kd$(~HkW#*{0R_aa*W#s+5fl{1VYSffSRu?{@ij{BfL2|NpE
zJD!71677fR{JB!hd(9{>TfJ-^&KCFuIYZhL^h&?DmWS;b4Sgyw3()q=h5ifeIi+-U
z%`Y~nMcK0*eA++HLw^-`4bb-NgWjG!G4ly^pV}|KT8%#klcYZ~R)qP-L7xuH0W|+S
z=p<b%w_CH%L^jD54VdeZO#ovJZX}Q!y?l~?JHprVgujRWG4Ls%`Tqi)q=WfM(P6Bp
zoLahcWtnKZsLV0Dny&pBJ}>$=;_Zz!e_5>T%3m4w%jwXU0xJM**SXM1I?K21*rih^
zA*oPJqMm73XVMM_j8``({#^*4)+|sxdI<W5z$c26<L4J|sU-T){;ufvrM;8Caw3oZ
zN=9XxY*@)66x82}H@iICo<9rv8lVc$@jf3q$+DXzf2{Jeeg2tcYr`Azs6El?dV$(x
znNJ$QtIPFop#KDz=Z5WaLMO?;r7L#L8XhXk+m!4nIKVsH+1DF#CSw5u&2cBCNPCLG
zr{CKPp<fML2WUUlK_}@fe+2)t>dvTBb{qnawu7%i+aE{(v>i#%+p{BP`BA;LeCew7
z$fNQ&aZ03CV?V7*5%?oj`lAFq+Kx@ow*uP%ZO5I^NxE2$v}eVvP-$`lN)y1S2$d#A
zy|Uv7cnZNo?@iKb)OkQQpzRn6ouq?xEuuV$G9V{cxC7q66-Jxor2$S{8c>fprk(5!
z*aH}q);QBIf;WQQq+iy7Pup`J^j`zN1++acLMQ3Wp0!n_71cppYl;O4!ODv2GP(*Q
zv<#&4_sE|n?QyLMr_*TYQ-PU)wr37>lFssN412=&D#u=mD#EW<_G|~A&Nt6Oe-U^E
z(DwWedVBW7%D=jBjg@Kr>Cz8L6=B|C&<lZyfaaYHouq5|HOv~T%4<-(n}`eHQvSRL
z`a{5DfaZMyI!OoXfGR3mrF}xuG*ykPG^~|$&k2=N{tOw<V+c?CH@On$LIZsO&DR$?
zNeAhz`E=SQBn?r7^9^f0t#SroQ1PuqczWIC2I$uVHv*b(8+4N5ZI$BLPW_?z#2dE=
ze}=~PNX01ERZj^mH!_+OZ!^Nx@pJ}JcLJ$^=1qrA(qTN;u0)%kXmQ<?NYaSTP+&%p
zD?r1)LBqll(Q%ev)CYm?($6Ib-;eMqT{l3#9=H+E{M(?D{1~f#s;F$ko*T+mSi>R7
zD+~)8)Cv_j!fR0c%?N)Mz7xN3p4UhLG62or3pz>a<8UaX9lzsVY8v^Oh5;~rrh_c+
zZi+7N-a&Z>7%Qwfre6eS)b)^lSP34TzpsbB1K0^@JMM>0(m{C_v7cDhLE*x;^KvfG
zQ`*r29-SXDs=P)PFaXeYWJ4$EAU~*$dGxZ;+NZ8%hz7+UMEHJ$Pw8<p^t*tafabps
zI!Vm@&>njiGK9aEia)~F?_pZC*BA&40W^Oebdo^qc3ibMG__R{gokEp*_u`hJ@vA<
zMQWjEld@wScyv4Ve&~+_PXXGFXP}eBye}R1o2;&$Ra&vEdL`~xRYx|cv{2tf36ZTz
zh`EM^t8PZ?62jkG`omZowj&?<SYRTc?Fc~s&+RB%gQ~f-3PUs~tJ<|BsO;DT9-S|r
zhW-NZGNA3)1D&LUd>Pvxy1Zz&XCZ<$nv@+$HR1Pk6!hu996;MK4?0N)@2O}4EHA6l
zFG$3))Xv}2+Dw@)+rgv#@jCS110Mj|j*p>}bmWh4)2MXW44nP5u&nC*va0C!wS&PU
zBIqOS$v!`9PZ9JPz#Kr^b0Tz-=yQl7+9PKa<ew$q9b|`;;)P;EkSw?Ze2`jz6;yoN
z5uT3!qtJH)F94eFW#}X^+aayk(o5E&?~-^9?OwkRg*0GP@}cN*`~5P0t_#9^!=R4@
z3IWYG9y&=!@f&_tsJAKF%Hhp8DaFMiwyO+l6)lm~vBi2n#b1l?b$ovX{eIvf#mPI2
zXKdDKi0w2iJ0-iD6;De9k8_>ZNCc7r9nWsiNji$>$T6L#V{w-BYYD>B@v4Dd3tR<g
zzH6Y9#7@UZw%F-t^p$)~2v75U0sSAq4}j)74xOaK_?=abi#4m3mo6>yUvx<anHAv#
z74NL|VcsRs*8o+3<~<)eNeA(aX6+!dhT-og<J*XEb$s84{xR?=pn3lSous4qjvCu}
zde$kv{0qZ;)1emwCj*-AH0UI;;~B{oJBoq+GJf?4PseXR^!I@G0nPUTbdu<DFrwT+
znNzcLt^Xo_d8ODMP*ydbRMBj&@{9Cse~luA+o0^oz9?+R0_bM}O8{-ha_A&6$BjF;
zqQfbz-~j252JjSuhuTjcLH{f81)%L{fld-#Kdq?5v1Fat(7M|kCwHpcf#MP{7Gr(`
zJ5`bfN;?WK4*R1FdIeAgXgg}4lSHRW*X+<;s+7P?)xbZ`u+F1n>1FQ%<)*Tu5j@4<
zA%FZ0`cdGYfVSh`&`IK-trSn)zK0#1ctdX`L7iQ5nR15SVsMHzLT%d#43hqsbxF8g
zSq1$f;4(nlaRqdeJvaSgJHpP0+1o)rRdzIiN9T|4pxc*v4G*C0=mVYP-bQK1h8N^>
zMdj+!iWRw)RV(t=<xw?;i7z^~E^q1DbyS(<PQ%~PO^X|`juyA~tfzZ>zIWWijnQ;b
z)ij5lnC~8gyDEEn<7qYjNmd3wg-_x==!#KDbGGzTQ1MfG-3omta6h2!dr<ve@AK2o
zPVH0o%cLarM1!}`OWVxk;_d=I25pPt9LawS;p_H)pUZHrF)$C{u#xsZUJ89P(Cc35
zm)+`lu%#V8RhHJQT{%2Y)D{(`t8=l}y1GmrTok_1yT7<e^BLJ!%%%%9k2&sRzq1SW
z+Jk;)C+@XtxiNU4xX+L7`1Nu(?`ier?)Z4lhZW=x%1a#C%jt0s<u>2Q9H}Wbxpxw;
z;>Q_3m99g&54Sn9LAci)0U0GjWIPWc4t~Uk{Oqa4*apxa(0(2Xon&sC{1}lBqT`1?
zN9C%ria87C&&$azTNf-BEqi2&GLa{Gh|gJc0p4-P=M1Ow4CGEn9G`CWaZe|!3#|vm
z4fWtH9xCmug&jIQUW9%S_#>e0{3mph{yU}r^}WTd@<UrYg>mALQR)lj<eprCd*RVj
zT1~dgjQoJi$Qi=u6lwJL%&2F$_>o(tZP~y8TngMDp6_mPo}7?Mmxd1I6L}6lU0p;~
zJWR%;`0{XhxDonJU=M&K5&5bG`p-bHLB^wTmwdin6cq96Fh01@`22EgZ<~zlCTD<8
zt*lyAP4TE_3q<~EmicRr_(CJFNP^-oP4`!(|4VbkS7zy#=CH5Ko?n{7zcRgFn$E9~
z9*^KI`Mf5}{T2>&%-m;<c-b1lbGhqvYuIauZuh;`@TV;A)0Xo?TyJGu&8!jpLB>Zg
zaff>`Zt(QuODVP(_q2waUR)Z5zcP$G>5q~ta0U*(QvQ1$I=>R_SwQ>avkmA&T;(<9
zZj|vq@@x6L^XD%3V?i0Z;AQ8REu!3r;cgUHHC3x~31ZT*Iu{cv?fx81a(Jz8t^K~^
zXN%R^uQBnsQGOdOzTD{)k85o4I8A&Oh|f3WUw>@=438Xl)U$8Qncte1n^)U2HrYGu
z11zP9wcsXEvx)UQz!I9+MDf}0HM`(-d*W+$;_LQ=18im!!=HMaSee$-npnaCHedWa
zQ~X;;6I*zI1;kIB;`1!=*++a9i_hdHcFexoPS|AM$-gm^zcqUtU{5g-)E@ch-h_Pc
z0dA|J8yCCr#3X;w%)mnKb4=*YdnG!Gp^fAd-Zf{uW9FjRd6HS(9A}w1)<n-VD~~Vc
zzT4d?H@bV{eyRlC!|uxm@xDCgI=6YPJK5ph=uY^jD~0<8x#s!abtN2dS-5F8*>Znk
z7JO<>{F9mZnVIKK_=9US_r343KX!Tl&*d3##*eN%o^h4izRsO?t=r|qGmrbXxb0iq
znK!%BOni4->rP{ttQ+%ecaP?to89)EZs#3tdmFwbID6o4?{a$+lElBEpCsJqw(Ic|
z6Hgl#%H|H>a})D<j??L~o!ww@iB({Yot`u$!yJm4_yl`+!I)>vg!jxebDZ-g<{URQ
zdAQHv{@(o*`_i58m3t5S&YkeRyZhyIr|}Y8QhO0U6*sjF;nVn;`~-H9bt$jmCHx8&
zw}U0V&v+$2(Rmef1=ta0eaYbLjf^k#4&gJBim}1@dhV@f_7I-ON;3+1(SU*RC#NjS
zugP0Be90(;U(fhVcDZTIFn8FF6g$C{<V^6yxu0XWSlks4&0)Gc2@{hNy#103d=rxs
zeG`&q;(}AJw=8jHf}NO_kPtsV&W_KF>*;XV3q1k1?Qyzo*HqTSwq2+RZQD@{B-_Vq
zE5W=Ir5Njx`V>n^NbSxaX5A9fx_1+=tr3v#ZPLbYIW`^od|(lv%i~h$B>DHL@~d7x
zJ1oDl2kSRBYVZNa;l3@7!#(b3Va9b<7EeGG_!L97HD=+?-PQWKKchw2*8qOqANUCR
z*T7Lg+vmPo+85mp@6bLB?^0VwPQg;CS~3H}1>JyC0p~d$<44E;F=O~ZZhPYSAS*3l
zn#;CR8K)v|mUR*vM+OUNnk@aeSlL14-$l?j0@niC&MoTqx_zUc9onhdIO(E|bFP<0
zGj^eQ4j7|&xv-&jisV0p@U@?uo3Qr*NCh;126U3>_IX6VsY6p#(TnZBk1?_Tw+V&-
z#z?+Ca{q7fRB6vj@M(K)hQ1Sc0MPb444ou8-K0G@r?HFHyv8sa`Y02ND{e7yoD&*#
zUovYjtC306GELfZ41C(2A=hBf8&C*ndnQ09`A_{5YA8{5D!xhj=xO)}fRE17K5CdQ
z?b!rAZO?C@?*-ljv^@u)lf>*-cj%wi)?80Mx=Q-!X&h?_7|)>~BM-IAkoIJ34%?Fl
zeKar*(DqD(PSVl1!iW)_k1LeSRPjf6I{rJL?*bkLG~W}@Nn*zTj7YZF;|fW$B%g6@
zc-_Px=p%qh09+y3YqOy*0G_|KQt;|?tM|n22jo_ltre#&ks{h5l=i_L3_HRzDm}(e
zj;!}^9r8iA`2&`9McgCo@;G>WC@y}SM+He1-^`eor-+Q&qU@}P4f(Ku%8}nee;arY
z(0=(GI>{rd9lvM0w6~q?kc-9-wIEMkFjpT6g{J#O)bjnwv4a_(qUD>6;+J|M8WYKw
zAlB03A*61$^k3k*@VPdtpkE9;25A4W>%B%U;PT7%+}zXTGyeLR?K=!mpdemez9J`=
z%%tPtU@Cmrr;*?4c!{${zR!M%lOtcW|7xCg#GLUSPE&_J-(zV9*@XAlR{5ntK6)Nx
zqyK6;kHGeyZ~<svTrio)cQAfGvwV);juhPG*^BjcOynu9UQaOFwdfHx!cJ-M+{T{s
zc%Jv9z2=$lx@RkU)#KUYX<%=7Jo`L7-}Cfg>6baz!5!oHFx=jG4xhwIta}+>fTr^j
zeuCM}d3xdn3H_56@#VPUatm%|r#pXNwE1alhIJddKUSJK!LgOu9!GD!l{r1Gp3c$S
zDH0tXuAeXcTMyp_@SW2Ab?AQtJ_oda<8MI!4!HLNnck0FDgC;(gZvrx@AP#`aiZr6
zx_z&2lk+O;fRi;je_#jDzxm1Wq!sdH#z8j4IF9Q;Pvo~Ueh;+|m%r=Y%HDB%-gReu
z=+0v4lryTWYCfKwZLLA;XA!@FCE#aIT8JHvRnI^OkfsGPUhBwi6|eiCzX}`#biC{>
zn2QGvekkJ=RPox@VZ227wxDb|j+a|W(=EDo>f7wxz&>%ZX6J7$@z^fE6@DUOI`vJv
zV81=$O*?VFy~$yGWRBzR*UW-_=7=}U#3oZjIycT8Uu}-@_#EAM4;uDiv&{l$FP2X4
z?mX1JoZ`O1I)gvP_}wDvQ_&wEf&MsxH0n-~@m`5I>3H7?{b8U1(C_hn=p@tLkn!I0
zJNazyJ<c9nRaR3idp`>+YpRx_gR5hl9{hyLn*zWOcq{4UKFp1~tTDVhZjjA(_;IIr
z3Ln6nW<O_^DRxcFz<9%KKAKmn!5T7Tv9vq8E?iEofqo%y8KBeaLFl`Ig9oI&+kP*f
z_jZt8^U5yJO|AB#w;(EVq7>bL>M8gz6VZ9sG`_b6@<dO@(7`#~m=mQ{AD(57X6YQ=
zQ0AF5W_-c~ug^1L5M|COxc0Ubmo1m@?v!M6`Czm;F(#D2yR!nL`7{|%*Nx%&X9)DE
zz$`$g&pFUZqU*c%B9J{;qy`cN=d6<TC7&|1BQske&Zu?Pn#TD9`9#M=$5=-KPsK1v
z9~=LX)pPknoXUifGo*dHz@G$uDi01q{}}i)pzZqxI?18ir2jh@CqX%@>{Atj98w@d
z8`xdq3W8c^BaMU%L?_?o>u}pUEE&va;7(w#YLWZTly=R!DQs5-^s9hd0G&Txfc^#$
zyi3}3Y=?aATHR4SpzIT)IP$j4X10la!dNppw&Icg3A|J5ocy_U!WY(G+2>ZbFVH7H
z29tYE^Yhf5mitl5`IzPWD-GPBK>O6PcUW<ES@z#(FymEbE#gINIK>Mq7@3={yk>u8
z80m>)Hu=5rEEzxl)^Pl$L7xvS1hn7JfKC!UPv2p_K;xiXUNbv1kL9Q5IT4eyjZLVc
zXp6cr%}UY7BO3m*r5z36DFhFt|8eN)+b~86Xg{A0eK}Bar}Xc=s$ceWi~Qc6JyorT
zQQG^HwKT#)bH}r3Mhs(|luMdfqfCSWA}NN6&*!*Ik#8*HX^f9$A>+`fLw5q)>f^(#
zT$}fE=JxH~Ez~v7<O6wDW?b(y)}8gD&UqSKe>t<z8hsdjExc|VRbyZN0%LLVf{ywU
z>5turt8OnIhW-`s4?w4jakEU9F7#9JK6KVSt#zV%`Vof9Vs%fAx>9M^V({wqxDP{r
z8~6m!>6CE`+C{+8Lo!{q{hxfUj6DuW@2j55Z?)N?y##CZw@XT^Mfuajc9{nlUY#8n
zoWi3}e4Zsf6AvJ}U*WvfK42F#*~1RliA`|)oPj*a(H$+L478d07Wzi@<B9Rzkd_{#
zMzNXc8sPL=eR1)0FP?9w#0@MeC>%B>aU@b~63@nX(R_2TV>bUALuas*S_2O;?qeUB
zR)IOpN~E{0ewp;wCip^^YrCPp4!i|ue|-x58{pt>>8G`O<#R&^`MQ-4rbb@3Aj`N@
z9%rn9y@HaCV*XohTs*LsFJ%T#=c8bJBF}WE&_M58OkbRZuUT>uV<2L1C7C6pxlGz0
zxHX&)S3_S1TmtBPcq??0)aRt#ma@Oov_l`_#7Z2qg;_6jB6d@yehF&7E1ZY8aW9HF
zs?5_Iwqt_T&2*ZB?Lt|Vk3y=PU}d7LE@VlFMPP-r^9bzFe)eql8a;qMfVQ&;I?0|t
zN;?}=yS+U-m#)T=I9OIwR!yU+eVWW#`+&)s%$Wy}v{yL4v5i+)9`<Cp9H_&1o^=Yp
znekh=<#+nbp)QPYQS13U9^`j2v@O^0YG=Af{M0Z4=Sq9G!yaAUy$rnx_&uQQ{SrD!
z{KL}T-3{{Dp1s+Far)Ez8MIg}Vl56Ty9-4|D3kf%a&8=kU%RQ^PY)jND6q%!-c$@N
zw3Z@g;EHvlc$KuT@V0QeFM(bTtO2xr>!FkA@q^}DyKG-*zOUq*b6jxeg~n05bb~QK
zn`xtVD8TeYzfk?qr0jVed@k@&{csfe&wzP**d8x*A$8IY-Jk7(zp82~X4F(HMM|gm
z2lQe7ygp7?RcX|UE|tv(l2rjKTi6s>E&a1t@sT~7q2CDH3~2vsSHIWeUi#U-J?)i$
zxyxZx0a+Coj#DMCaGq!c!*>GJDLa}KkEl1Hd+tF00?>AhhEAgS^|L)Y^zd6S6EEX;
z)F7RMZv9Sn$w&5G{6pLKkv-=_<QD6a;e$7@MZDNk{4(>s!hG&jmU<=g6(A!O@)u2N
zUKn*1(oePE*Y((g&>MiK0d3#2&`ESY((~6HkJIJimhoUE<|T!D+C6l$Qt}&jhWQ6U
z9}bKGH2-+$B)?=_E|R^&MGXkIQQ5HxJlYSBL4O8#4$yYI1fAp;`av`#;e?pOlyyPr
z2iJ};|4`^-fk}Yop8}oa7x^K~-r2CEkzXb4r~{Ao!^_ZL2lfNnjswt1exV<tJB*Ys
z+TFg=pzO%FD{RM1=nH^T0d2<_&`DyB$F=tYwPQtkaVZ8P^Tl}WQy3lva42GU|4Oi0
z`ehgRv|rwVehByo(Dr-+o#Yq#1+}am3u}Krd$Z!tzB|l6ANuLQIe_M03Z3K^<&OyV
z&fb&ywbBo}!K3T(PoaNDy!GMsk_UP>z<9b+*t2Mtd~WKneW?w}X*G1&z&=D92~DLw
zs39A~j-GQiS&y)*twDx$&Y}26*!%H=4C7o21DM?D^c%)GID!UK!6_zwETy?d+PxAs
z>GZo5`dz@U0PVjApp*Q<^b`G)(7=z#)$Q*9u03Dc(E=WANAG*kRtJUw+KvL~B)=#f
z+gQ>0PT=ATq&>CZ)Arm5eFv};(Dpn9on&29y<J(IhasS<+^IEHRb`@_PcPm^<NAe|
zjoIM*ni*+Xn0`!g1Te_i%M`7cLVgY7{i*eh`g)z@Kc>Q``q8x$=VSq1fP@3OKGaXm
zOLbvxKK{mKY;?Meflf{qV_k;|cQL}y@hXRY8L$D+@wyv2$=Ww7#dA@wpm^%=mxkii
zr-?sf9pJ2q_Z6S(4qym)qw`<3F*Fa0j55%%e2}pd3i~*oWoE(H5qt~{^I(>l55)*=
zfBpx~-)HnAA;lM|c!OWRNAbTxe;VisX!{01C)u+_+7}&vW#7rOvAPy55V~X1hgQf&
z=L#%)>5X1PKTmQ3+C{x_jSL<}qv8!BT+O=y`W9d-pn30x-UZ&7?eN|yd97q;1aJPu
zGQQ0!TuSE_=>GtIP(SN5ovD@OGBzQdN9%MBsBi=KN_#2XQ=u;bRscFatJLqc|MXL*
zv&z2_jk)=7<$xj&GVx8!$N=EORie#AerZ;`yH&WvyBGR9z#jn3`+@qs=F?Bj+iJPk
zDPEdNtwZ$#pn)B6K4kC`>A&pz!ufeJ^x42XK=UntPSQd7rKwNGdkcrA2kv9yZoAjO
z3t(0-sAmQ7eqJhh>k+PgkDi6T2Y3U}yl+7#iCJDnvljoBN{Kh*?B9KuAq9+Px<_pX
zO}n>TCV4aN5A&8mUk#iGXx<v=Bpt*zw7!x~O3s~Mv9xTwUt3e-AFNe!NB9?IRaJhV
zQZCGmeYkXet+cZdc4+^^J%F>#fS!Q1vk!EVnEv^nSV?V|!J-ZGC=wH(<x;(<q%FQ&
z+PM;TXgh16Zw9si+Rj^{3)xvI9(w#1UMgExwiIJP(Mu<q**h48i!(Mm|G|vY2l7|N
zs)^B<hB}kyP^VQ$@fDK)2*O8kE&7N5gznjeavsq9gP@b7?w0)h_sFN_pIW(Q4K^E5
zzHMS(a4~fBE*>86H`_)7&vHD(t-gur2?KcnA7SOj-Hs_Pn%#Vw@wI#zf0x<QUCz)1
zL;h9Lu3GTw@v`mEe+BFUv|Ud_C;3Q~!@B>Y?Fy~bpMGAA9Gw*VSw^51-0Z|QkFPMo
zIM7jKCs7G9787>UWc}By_>Bj{^D^B?2l@k=KOZ_t^g2n+k2$q9IQ|=Vpq?)(f<lyD
zLr@WHc3x)uhz_z3O9zKifjk#CXyQ?_QO0{6aUonPzixp36tEl6yq`lSIr;~g4i|^(
zN0lE0Z}r+`<#aP&p9cO1^Ks4^_;LB@E55wI#N#<U$RFEL%$Z}jFF6h4dOcldVY2Qz
zmYSXN5@Xjhb|tfiy0e+>&BnU0g*+SgJet`w5Oy~InqhR8Kg;;_jK9L1A21J=KjAl!
z>tuXpJrs`5Inb8_=K?xDRnSQ~@gw3>StEL_!ILV<i>r;#%)YV?EyPkos!D|f6>lTL
z_2Vbx$M>QC75D<syvL!Fbk2)XhjMrDY8q;r2{_TY-|RewJY){!bNEQy#Vpo1o`q4t
zkun!yZv1)`|A)ixS2^?>fUSVGV=r_P>qD8I#cF&lDj!{dO}1rK)5@xsR+R_WR+2?X
z+P}**{V6hO-)^0>FUJ`_B5B>pnW3buXP#{LvkbH1IGRx<?b!B`_8*Ktj`2Ch|G@YM
z3@h6(Ko{65<K=%O?BB`IX905o9k0dEN#@=x<E6)yqT+=i!|Jkdv}oySO34BYZ*6w2
zF`lvd^Azr7erhQdS%WB*8x(&%!q?^I)6ic6_5hl{2|7u1Jru>ipoZQO*-jgRT6Z(%
zg^iCe?U{l1a}Z^6Dz?JQ9E`v=8UO4@!~6@OUj^I>aB!mHG?E^}Tp_S$kZiyDe<h#0
zX3J-k9k_S53fVjAr=?XZsPyPtXV=+VY*uG~=MayZxp@516pvHI=Y32(oLf-3Zg$?5
z{Jvdq$R6~*op{K8kQw*e(|J;_K92OXb%>hJ^Br@JLMu4m^#%J2AM`CB$H&+iSdi^?
zR>r&IM_JP`A?z`Gv&{JTw4N!G679H*css%4?U6wLY`m}cUwF=EyqkS3>zALL;2nh#
z@+mLa1r7F~$L+*zHhs^X<~#xZ+stVd#2pMjK~b@W-^#HZ0*eNgvMCt<9mPLnSm$z9
z&&8R)Wxa!bXBPg+-A-(TyT{3M*flgWFbFdPh=P>hUDE&c@U2e&=b^s}yawp>KLDL1
zcKT0WSH3o??o0_3iXwWU(d@v;DrLJItZ|{jrAhJn9}n{eq2C6)4Cr)EXz&_YKx&iB
z_xB!B&*$4s_ft#DMY5wFFRrRwT2@`HZ(y!jO5Z3;wD}!=RIPtavu@3%m}$!spM%Bc
zMmZ68j`)&DGjN-ox0r8Q=9uI{bH8;td(*P_TZ=>{$$H-|I%MM$S%v<Nrg*##Czf?5
zIeIx3@acF3ZO?Ek@mCIW8+W8R9FE7ixy!-%BFB)&9rpc>0qF^5-)o!&SjqHnN6|4y
z)(?)vqYk9xsc3zmj-N>7NDlwCs2grEEz@$acxIZI(X-7(o&tB4Cy^J#WyL3k`eXS!
zWjfcvm-+BNmE#XUe-Zc-p#9zN3EW2m%z8rlx&JQt+|>SiHos<VP}Cz>;k0%OZCH6<
zF89A1OL8dkdBP<_g)`Rw!yIzdwEtn6N6oGLAExuDIm~z${&BzHENFBNeaV@)2P=t(
zSn=F}70;eHGv4_x$B>Oq`zoio(V6M&&(C(aY<SOoqSN!a!&&R>*Bf3LXRX3q%x~Zs
zHkS>i8Y2%YLxy5y$a-rCHW!#+!^HD2%D;{GN<VBz91E2nzJ_i*i9I}k_QRRbtAK;=
z$oL<9OFsAC7@hBeRb|V|*Db7BPM@XN_!~MdAYA&i^Eb=O>5NbPCu_<pF!M{bP$U0A
zuEDz2q%~NZosW2oZ{1@oYxscC@grRPE==VVBx8~yj-@%Q{=G-X7wlwwY(F>30w2eH
zC+0v$JWq1lN#m0)XUxT1L%QW(%=$6AyOTNl0>hm7_#6v2?Ppda=YMAAXUuUw<L4vK
z;HTqpPeeRB#8?0;r{Xa-W#7#mH!`~$zn8H@N22Y7XYqGJS{{`CJOW?&@e|5d@lSb;
z93TK_f3AmqJ+OAa^ke_u%V+Ap<WoB$dvH6xqU&G8E{qoTEA}<R+W&_v@fapPdwngk
z+U>|$gN~Xmk-uh%?A6EE?a4t^oWS=nR6^K)fxde#nyM3lMSRSk-Ge@JyZ+)fKXdo!
zp8KZTdDsotct!L1DrPO?Bg{O<?>OJUcrS9z?KVnM7q0V~h3WD><beD~W&E2FH~n6H
z3;j6o6QIk_<fpy#=WWg%(eYkZh7$;<SBS=KEn9pU)!5ZWi>G&J!xAkO94>3_i1t~7
z;x9q?IzOKeeIsx!p!r{dPI6e~<M^{$=VQ%3RZeC1ZE*bA`M85MI1(R6!L!+Um&^Fk
zGn}U)_SyV2v%8~2OyT~DIeb2z+6}AwCS%Up>6nDo?g_n<v*Vm{LEb`SOJuEW4D*m!
zm4}Kdk4<od%cZ6#r2jI0E$yTHlMQ_YFh>21@{k@^&`<5R(D+!2IQO8N*J)hmTx?|a
z<Qd6s9~Lc%SR<XDlst6^(~qAK&x_FC0^SFRgW4HKq5lX(w`2Q9<x^Zvv}`&$j5TXZ
zm#oI*Kk5+tKcjqg8D^8qa%WdhE0@jO^U%W008%iie1o&(cb2`^I>X488__bcMl5kN
zvoT)i=!^F%*-oX-+(_#Rv45)sE3VFfQIHm8|Ey=i`RsJ)>wrrDoz6R<3wgFuJY4t7
zr}o#}%F0#6rE6DGQB%jam|HljL&Av1pX8%-3pz13IB#_tGsbu<x63m$u^*OQc5{_s
zpmS23o%|Hb@?*sFab}M9!rHU=5r!UEDU~9hV4<bpt$RlL`<Swa{GIkJ&cFt;0B!FO
z=p;H_^;6s1y5AWwe3d0y788sXPNRSxYE%qF#j4Z0N%5~k_(=$#__sm77kCiR{4YT#
z>HnDY)9z<l`%CpZMgK3vjw$W!a>Tv}BldVZ{>hB}W-eN`Jso`=Jy31+a>UzW17We1
z%ZquI@(S8L&q}`}?GD>D26_OP4rsehf=*KSD{0RoceHC)bU!9!VoC#B|F{^nxD~Bc
z7*QzZwUIcpP!RT`TqY#ATiR0(KJBOHp}z{e255VJ51nM>9nucHUsI=(@{?$HhmF7(
z0TpED8r#wS%Rm9vL#EUKY<u$3bhgo~`2D{L&#O;>J{LF%(EO{Qlid59<Ui8Cb@|nX
ze>mmv7XBUknzI((>uXV$KF5vw9k`O#inqsczvZ`6xQ!9HBxX^o;Y5Bi_v61A+#MP}
z@&8u(XE*qD`}l3>?*i{Dn>g%>o}bfxk>yj!BfGKt#)*&Y9^ApF@Ij_!#j#Z8WVVPM
z{Gs^re=Fll`F0ZYdBE9#_D8w;y?$TxGm;k`NXPlTjJ8FvVxJf{Tla-M{&PF+3)}ZO
z@_@C@KfX_z-`5ARFXTJL$d)vu={Xti2Jq;3zXiPsIH<TO-qGtcH9yAD!u^4T;v^rK
z(*wi5Jq)V{$}<&y(sSYP2SXnQ6aXY$4}U$i4#I)s-zGgT?OzuW{!P$t19kw~kM+<=
zqWd)w^Zq(YqH_bD_9rk!C^(l{@wOmb?Kju+I1dZR05oqe=p-@6OQTsknYawRAmh6d
z;pQV;$~RX)zZTd6Xx^KklSH4p6r$6qmK#d6l)xl)IDkChEl(Z!FT!b1yhjkO=I!wU
z&OHQ%0hESRua1U35s2n}J*r<3$~CzQDN$qe)<k-X!(NIpjmL)E$p+lP2IFY%+u4BI
zpkT3SKRO<5h&8~(H%R`A(m$JE!z_F!{~Ute4EzPq{y7Gn<nYs#;;F|$SCp?^S+gW}
zY2}){nU$3*R+nM*P|dR9)un5fS5~dbTUNPrRaw=rrB!9iFiVIN%!aL4T9sF`wtRKo
z(lyJ_<HVw<)w9<GSK~xCv>K3$(t|h9D(gCD12c-zMO4e7sFimrwXPRg3#d$LR(1zo
zly;Hb8=!9iwgTGjTh#A$IiR2ao!zZwZ~BYP{%06yzF_XApR8&FFG;^10lyy}Bl`+o
zLOKJ*fKLBX=&OL;H%q@3Zj;XqU(4rzY-jGmWvk?N7S*i5UdQT}7?#dn{1WQFo17y*
zu?w2*fuGok&Gvd@Zk8*N+eHOa22M_#QAy30EdD&>L&(=7(QCwVcZOrMjFLtfuida&
z*NZ<x_cUTWAJBg91)U^%{_;PMPfbPnx>=QL%47qQ&TnGHJu%FFlM@FRFQLYc?HFVB
zq8hw6U#>f1Ey~^?><PdgN{7ABKLw5gIvvtp_8NnLxsOV}*FG+v+y3ixkgtH;aBxal
zRW+`HltqZ@xqWJi&e{s`IZ}KMq>kH7&Kt~6?EGeX@+UT?I9_JP`B@k|;BMDIN3Ls_
z<>7NK%dcgVFT+scnY~Au11ZWw`Ol2cVg0S!IrmWG>IReNv&ra{;op-qzADpi9pb9{
zMXy2s4mb|z^y~YIOuu~9{wsb&`r|)OziFZ<XypgI?r3aZAsgG%L|c1aj8EqlG*oVK
zKJ73b!(OU>ytgYAP3^u|Av_$r0uo(u{A9=Ug!ysvo%7xEdpN1$&f@`$`^_<jJFc|s
z&<3a1RQwS?oqrEP{{;9mpyU5JbdvvF{*9dvLam^b{DM4|ACL9;H=(b#3H#ylsWj=&
zhlSejCCdK7SEYTFpVvXZ61W=B_HS0d*X5ml{^#k}s?3`y%DhVr>ryK7W`xW$nw5Qr
z!0(6u$iDu2aIYgU643U|hEAf(z0ms9|D--yDz@$666DflG@C1nJ*rEvf|cRuwK!v&
z6Gv-QWnq}#j_=6_vYzgA^hXBL8<NE@!7hPOs=#P|UFMH^*r(emKSIy^9ok=jE-w~A
zKNnc`r%DlzbpwLpY5h0lg^I^&#KSPkDwbAaa&1N4xz&{wx!AKbtqea9Q}-AQyT%e5
z5{HS;!Q!((e^PYcVt+EneQF-!e=-w3H8I(+na#k6e2OELCp!FAkF&;=jNzX%$LJLa
zr>B|2ojACFPC6fgH)c5YVwLjc{It0HL~r{o#>cTk9D5HCOw*gvKf4ikKVnSjo3s}?
zFaXf$I|@399xu@IGXGKjQ+~-FEEO6}P&>}#_A^nEHnJ(AdaGwtzio3~#f_&?ZMiXS
zI+2g%Luj0;5_8k}RHYfs`(-?8VW)1NeF*&r;735mBmFfQk9%L0>3mSlOaJfUv9N5d
zSf?3|3d+PgWtmtaO2dKTvp1E1+nk?U#y*C9P_DCG0iMU7V6MK_1k>pofze+?>{@1B
z$cy-+j0Z(ut@wb9X9?n=%ez;h?*;Y&B$THETV(wHt8${<bedMSycAb;FRGk5b-`pY
z*`SxDCL%hC#<ytMxs4KKXVUB8e04tbOMuG(ogUXhC(-%pziNlJYcJ9xw#g}h$rxYR
z<~-9ljw6puw2x3ekHV>7)MqDYRPktrox1!edIM+F0i^)>n%ey}(60bC{8swCSBfk@
zQvV0#hdQXYog!p9l_|0aspH?sVXbZ=cMYJyt!>U)S!`f8_6E$=rJ$@BaPGLWQ*l<w
zKq?@{Sz~!Qiiio6w`!?ez+VdSza#Tm6XK-X6)F2r?gJwMoqh|TlQiBU<Nd!#KkNjN
zOD{^EqkWEv5%5E&^E0+NpXA1N3~sv}nT|NeAewA)coV#KsxyImlbv)3$uo?v;_4J3
zqvTx~pL*D<)A1<up8@O5aC|bLlSKFT|99mB4wlEhd3o_!{#>*V`s7hc;jYCO#Sov3
z*$9h!&3IFck@m)nCnD3L>@R_R`n`V)`U}7-fKHEhp_80>qfC#(Dqa2?`<IoiE?Y}y
zR%0(cmDN-e*Rcg#Xc}x0ZTH{i#Hsx6Vq;SV+Ux<lA2yc2<Sf)Vg`#kVJ&o^4|NHlc
z{a*q7a$qB%?cWZaBzk@7e`7y-tN%~ko4{3BtbgF|%)6a)*bX53;sF&Aki`wd4fkCs
z*IXgRrBFz4sVqsYtSqU#WmZbISy@uqt=q4gR93c1Wo2n)UF}+#QdwEId;Nc(nRhs-
zXs-Xy|3CJ9-{%~N`OY)@%rnp6!lR@4SF-CEIacmLkN8EDhNWElMx-I!)qy9wx`YTL
z*CcrAnaTz^!wIc!yG+ME@brNv^_SW2!uJ#~7*Oe$2$_P{S!dn<w9JpQN{7e+XZjag
z$q%q23{Kjv6wjO^A|q;bZK>Xp4}{f*$rl+{1&K4Mow05m&Weqz_)N8K{jp3(jl+}D
z@e^e8J=nYfDjoeHQ>b4e`PWpReL9?xXH+FiB<*i7=~=vpj=s!1gafrdo1ury;-685
zjF}UHF@DLF|J<?7g86XlXN@xL<doZ3=<O^xF3=3csjyHM8WA}jg|0KUjhArN-uP9V
z_tfe?mFZlCbf|js3FLji4}eOiYnx1G!?{4G9dDFha=_oj63C3=5^AEe{Hr46@QnfA
z$W&44+2b&G!dBjD?C5#4RrbGitwWL#%5Pwn+hy`%9_7A)q0h8!;Rvk=*F3>J7WO*D
z?%eL3lK)unD?mO_KCOkk6?hj={C|T?p+lX_p8;!+%cs-gPoBWB_|w=*?-zO4bJR9E
z@>wdLuQvXwc$-MyE=wET25#=!nntkKTEq0w_GPwVnPwnhdD>zhe6;IAmgw$Jb?P2w
ztY!S5uD6jjEdNWH-hw*+IPMY1TY%pIjx<t#+wOhX%mN)gchZ|B``dSx%l8@Q8;qoo
zZ<oxS2A8g>X(Of-&7MtL-D+#Ld9A*dZ`N6@{s9xOq2f7eGa9;8cGeF(?f`fFz)kUt
zJ;39C;CSNu>;rt^UOn#{{Xw=@kNQS8f8ZGhc!)MHD?2XBm2DD?z;Jg=Ea$^w2S>B0
zJfG#w4TU*LYgg>xykVIztr<2ds*l+&Bgdo#9b5(0olZO^uvmB%8_kPtu~?GD<FI*Y
z0<kRKh{eWkwz<%iXFteXQMPGin6jXJE%p37beIo)Qn~sCa`Xow+5|x9c@yN1f#;*7
zUc0W7?}cxlot}k5J)T@|ZQ=(lR&V`kidVLHHW$xH2eBi&%5L`qPZZj8iDwI;(}V*Y
z-$SR<uQetvHXdNt8qMOnf1_V5K3>m%;OPgrd94w=7{~J;WbJq&^Z^?I?lMBc1Dip|
zzJ!Em78?j1yGh3x9o?>xoqPs7cEI%-evji|O85KO)noAe*ekIeZkoRE4D6YkWNXnj
zI1xE;Co_7&M+Yxv1C3u9uVV0dF$~+l0dc`L7h@2A#4V5+30S+xHmAEL+7B>KGwd;5
z?b5ArLDzFD-86%3({9*4)4czd`7`!Ie?7Ph@{_>70F^%p+i}JYFr4|!j21FqmY-!k
z=sQPlkT<V^ledjJtI-cL@fx-9#3emSm2{aaOPDC*$OfCT;X9VqJFbtbw@IL)J`UN?
zDk>F4{Q_h|SCI`@LEQ^|SQ8Gk&7K*(%yN6GEb3jTs2A%4tx0;kA)3ac3wo3&=%m{v
z429fuNoCf2EA?0n9c4S^{0qnjfWv^&qw6F1EeF=$E8CN)@5}f0gYtc*?a7dt;!HDo
z>ye_HUV=V50HwNgua4qcpjF{iNfNs1giE?l>_?;UuEx!bXVCbm6s~{@Kv{&E@0{`g
zj$V92_4P@}PXW&Y6eukxS>HOX_8-=(y&D$!%ZHU#^rK4|8!pC()K=S(T4JPD=kPl0
za3EftJ`T}(0(}A1KMjCPLCr_i`%LwE)aq3)v3e!%?#$smY4xh$d#SG~#H+^pyCMG@
z*bgXP^^hr?WMAw|DK^p{@+LfgmN=cEE;`G`PIZhL9b^5%;hX=7pYN@Z?*`TYitjqe
z6i&FGc5c{46;xn3ewNrug_8mU&{or-j-Ilc*6R05{nmqz((k|>IM)e`1{B|mAyYV3
zzh_D_HLdBA>Ayj!=}S2Zevo{t!N&(aR8Dt6{s#CSP<#(Vrl8g%O71KbpJ8x3cPg9)
z(w3Om9h+X7g-tRT1r}$`Dy}G+T2xV#iE4tShMBXA<s~)^wFO%>kBU{Sd+oO|&BH1d
zZGYV+wxKUFN~sk14oH6apZeRWOCgs7^8v;0M#vP7z1QiK_{mN;yqaCImbtWh?W?tq
zVJ8L;HG)qfd>*0Zbj9UrwpQ)%sY85fAMt;XQ$NFgC!qLDfJ|Xuj_h}qb&&5<;xoOt
zqVLF}>8Ks>`A{Q$KI~w^^}{V(ycUUPgm|WI(*r=dG5~%R1_id@q25x|p&t0x5vFe)
zc!U*XO+i!I+rWb1t=z0+SmtQc2FjgeJj>v2mCh%O<dfihtS|4ckFaj!e1P49hEmY~
zA*ugbq$eAnseJqh`48X-pwb(%Q>OP=f8M8>-jQ==&YC4%5LK~7G<m+)#+^P-VkyHw
zK9H}IRBHS?7#T3F_Gonuud#?%ool%b@_OJ2K=FDLG6mxwrQ)speVr07EX0aSJ%y9O
zHkrs4nz>ZLBvQ=rZ<ntS$+lY8Uf}Ja^I#qe3(RgVkLA^~%wFzfc_?PI5y|s0VH?i+
za3A$(B9#3q_3PW^w|^M|c?2*9Q0XXwOySR4WI9woaZ2eJKD&SKzSP!c=Vej(9;NNW
zl1e;>M-$rhj77&#=kQqX#6$VK1M-)^zW~MK2j}N1e)T>j9@IHCaPcKKCobKzpTH$V
z+65(GhXRxkyuUg1{&T-x${;@oYy>!dhvqv!($BxZJjj{vtk0D7tYV+k(<$+Sb!h`H
zOl00S#M~uGJR`(2K|H%3_YI~z9wcJYJ%)X+@s$Z5ez`{LWIHAk#~o7Rn}sK&m_gBD
z0WkJy$t`aJPjk6od6e#09(jyJ8$%p3GAOZKkIN%%AC>UIsEZTGqJKD6SbRJy;49G{
zPQu<MA}IVr>ZJf_b|L+gPs<_S3)~N=e0l;hg)=HI<yVwf6vGwOw9*lCr%#7+%4PXM
zd%XtjHTKriH>1D1*CyxlMv^BLZOz5xZKfmN;Mfoq{73RU3?4r4AfBmTVx1Id4=A3w
zkSWxyID>Kx6aPz#r&P!@x`l%$Q+b-E9X6(ETB^8>0PAZGk4nU&+OKCIZw9siipK|#
zDHwl~Jk&nUDU~0bZ7jz!T1C;!*<y>PY$=^>3Wj;dz4o(A`@%|vFPVO{5=)yiGmT#U
z@lEBQQcu3!{_(<S$R)t#fZ}%tWD1*Jll)Gr9cw7x4Lh(nT=)Y{6=K06N<1^Ri57Re
zuC3IQsF~7D%fPZk8n&EsuwEI)EEWw5a4#j`BG~$7@~*Jt?PH8{TC&3b$#m=kPgO1x
zze1k~v;$N+`au@ysFLYW>*A-R=cCg>7Jg`qCyTatjBJEIW!eTLpe^^n54#7xy$5oS
zESNa2j(z43rTP3LlJ6>q50%eXA%6($1r*<iuO;7O*ZEF~uUgO(MtJ{3%U_TsMvgbI
zKg?b1cQf=4GwXNMd0cG2oWV2_&e(BEhudByx8n9%7P<x<U<e$0(Gw?xkOQ6hHGBxH
zAFiebLxg$_MnwoSz&9UnO3xz5%Ya(|m7d!nQ>a*ZwEp4SAImz8?_O*>Z5DMI)$EG3
zqHMs9^mc}aHq^*hT7-WcCga_WzpKW(&HojmWdJ#Vink+V3dfFjPf3rdX~&Ep{iE7&
zn3%Exd$?UdhG3OA6%4>jQku9O6a5I6{3;Q@;`dL;uK{lXir;&Xo8s5V4)BzyHX1Nc
z@hrGUdZhj*hymzqr^(q(ox>}7kDu2F$diC6fZ{bBGKCY)YtD$(Jm~B~Q53%gF+jVQ
ze0Rq<lNiKTt4qDrB7QZ#Vte768n_7H_#GYC2>DZBL37#f7F;Laef}ZeO}MAYx^zCB
z!RlR7G!s|lRnVbc+O0#G#1$f$;z5^*;4YDw3!uZ~YIBpd)@0S@BV4>bV&b)0zD9@-
zIpVoje)TI}9&L^NFuT$0d6W5i(2ZuFo6MLS&5k#j3EJ$Tu56r?iQdBCzcMiBeHI8e
z#i6cD9_mWPVUcLhXluL`&o6~DghA%V4F9?BVF9DD&Xw*yz|4U!u{ivH5pT1YEzITO
zc9<*XLuU5ExsidWj6?Yj#;4=vf&&a~WDx`$_QZ7sBkdK;lZ$O^{wfO+#~&VMRtFZO
zzaA8r#Uk7>fiAeY4`VTU0<@}WzCfw}&foa;e+lGLpaM|k<9f&x_S{h_-l{!4vEHQ@
zQoq(Y_8TVBPD3B;_N=kDF!Gu$CO<7OX^1!aQVZY7SSoBJw0eiv4#ca<h5O&=<AHoY
zm5Vu$7X!^cki53PE8nhJCodP$_yY^gbmWJuL3-g}mGtAVn>`{=;k|;BkML01?@P2x
zYwV)$&7A#a+waZb{pPG2j9&4b_UmK6*F)kw%ZzMoKT9zT-DR}l)=rkQo56`@@E+EM
zM_aLr&0a5ConB#Wc-E^d<Q2<votZ*Dq=y(dSQ!iJ?7sYJ>h6kQ7T6YMfwPQWypuWB
z3Sk~STPPckf)JTcyOGw;_)P7tXCG|rfDAz8(;&zc`utn!VOhtM>p|{dkAaoYh?&!|
z(vFINx!|w5nDIR+CxL0=1D>RYhiq*nW)}%Kf{=jS-`^M?hwMu?Hu9i!JDvK8E=FfQ
zpWFnrg}2C_@DnIzc;S+NHTWt1wUFNfJ_Hp1FCkNy>Wq*6s+>vw)C5+tTg8rI7&fxj
z*sn0ml9G5A&qZzzwKf^NHy?=Zq|V`y`mMkJ8U}eRFcDBZ=0K*<=S8VUW2=0hsJu%a
z4dWiHH~v?wG_JANaqUH@0;hLTJWRj~r{$!lwnl%PfP=euF|>)0`l)r|rTqN@^0&YN
zK=Jy?`MH`8srQL^9kot(VF>v}Q7d3MyujZMS2^+Lf9LNfE`vM=m=CD<uYyeB*#5Oq
z|8*iN4Q`1~wiM@!lzP~TcvL_7Bji7c!}oq3CS(dH?63Zk#mSf0vZExAv51E%A?3%T
zkiP@k?Dw}nUqJ5g1MFNU$$Hi-0}ehBTJAkry{pK)bbf_2P*R@0o8XJiOPKcHpeO2Q
z-vzjcminpMfM-0L16Xaq-*oYMlZn?OT)du^U%nu}{6>CRE`IboJ_Kmh_OsS6@V);l
z`-(qd_IuKN!ft*Y^DX5!oAJxdYSz5Jugeo=(3583FD&m@b`QJR?6cf--)u%MH*uom
zX*LxdPK?#w8qA}08zs7{k!;{TAq!7yIQ&}X!Yb}!9(~AD%MW^bz+miAX5d<)Jx0HO
z;e3#r{~x)XA4k^`xmpGGgey^3G=`%lR>G1|BRcVbD-!TGa;^-rg1l`4(8%Cd4C~LJ
z`2Pg83z>aY5X-9w*S#$I1tVy$k+{#3_qzwycC4k|WrpZ6=elRRT)|hxoAG86e4-0W
zylaepu)=Fio#t{nfZ7hrP~G)O)--gSW#S&7MaB}w=eUOj_U0uR^G-3saK60-e}qLf
zkG-7yovy<6NArs0j#xwZJLi!-P=lYfXj9}trhmn)e$b=qItD9-!1#b_=IU>Ev4YG*
zBMGCOdsrCy-Vk?~iv@>3hX}h{$?{c$vO|H&*L#pZ1-<}Oef!$^xvJ;t-9&N0c&8%s
zsQNx$)c3z(=mo&8bezAwSEk7Lvk&;|*(Autz)V2JUjmuJY1j8gMI42;Y3GFWhg(Y?
z&m$gH-}gX12pj?wkHe5D9DDvrwmT=dPlgoIP|*a70T_^`iUH}Z&<dc<mc9wA93J@x
z{p$!Nkgou)0ThqLkSVD3>67<QG}mb$;CJdDUUmuQ?eIrZMw5v<!359-I#-H|zn`5d
z^-_oUlwPi@#~cf|9Z-DkgiPTi`GZvhd0%QHYe65rge|NunT%ocCL|XLL&C|z@!f>v
z<SstZ@Qj4N`(uAo{K{lfyZF6<eZ+4b`&%=oHu_tA>1M&=@`1B`IAz(XLqnv}9enxZ
znX~by#Ko;AzFDW<(Z_D2SLx%9A49Zi;2}Wi<59>IPFPO<f2ED<=|J7J(zn;6*aiZ$
z8U|0bXnbVwrO9$~80qeeuc#eq^AqMzKo3CaWfWuzo1QEc@9g#R-Bdf`?6UMM!$I-s
z*i8{REPE>&Xw|XDbg`IoJFHJ&G-Q8aXuXo)bmAJ`%JnWYqpaTUE_x!(-MhlN5zXrN
zOpmu(iOu!O49Ryr`1rtt_<jx9{26Cn0L8ZpWC~k8mOMAT_m_NA(~6p4?5}mO^4=(|
zyk`r`?hNsa5YKxUIYC%wKWuB)^y6MwZ*}7Vt_Y0P(s;Uc2~YLR&<$4}d~&;tW_CNf
ztsWVW%*O|bR2CV9SdYa0dKLUbX6N&PmQCY%5wf#odRHMm1Mm%{_YKG&13Lkg-oub7
zEPqy}^JMLclRphswQ%Y0&z&kZS1eSup@pgkZ5&g%L~d=+mX`u~@J}|<XyAE~Q7l$j
zawN|Ihy3H>#~|+legxEftLrc5BY<dU9)5VL9OtY*u|Lu*hi^X|Wp_9qwKaQ^A_)5@
z+TlC804CQN@9=E~t25HX^JQJU*30kil&|OHD|wqiTDaNd-CHN7Jj`0<rFvUOrQBg@
zx3YFt79WDq#mmfS;cCH4jW|!77ZdjDS@+#M@k{+8J;!KqK+pSudk^5UQ1e506=>dv
z*D$?<5fjwP)U9ur-Xab<?1!NOJmpN&i>*$)tvS}!nS2pE&G@8{i^J0RpBPy1Niq0E
z;=vPj+*p*yygW(=4<~p#Oa0eEw_bcl<>Wiahk)M!RZiHivYaUU(s%Co%X%@txTIw8
z?9%zOmF?(mcCGL<_aMw*;3_c5vw#Xh63*VIG%UE)I(!NcUxCA?67o9W5kT?T4w*u&
zI<Mi(J5Q3Sum+vlr~o*u;1=t3Od?qgpV8=<E@XQnD(8dtFP2shQ+>LIq6H?_xZ}p!
z!gzRKw3t{;VmUm^%+R~(8FogXxTR?T%!BgzLhNwl@`t!t;j+b4l=$X%mHO`dn?HTl
z;Seny7zL>E{x0PGz|=HZ&iALwclD$4eUfxySI=+3A<tNd&QsOZ)B9gBjF1+zC>xFM
zc6RQ{rJ)Yix}5vAj;b(C{Q8N06?1?72H!@`S-;lB>k&)5UXx!2Z$m~rY;QEp@ktS>
z9b0!v_9XdIU(#E@$x?G$4@<3LKbtv+%yvJU!G|!#y%T!3W8I;H&D_K_EVr8#ZDU``
z?q!U{l)=rD7L8wLM6A#|uF<<}G(0s%SWxi&y3b71^Yj)O(WVOqixIHzat&HI3YMD5
zMuy?RLH6*QS?+Qcs0ZoM?u4tn_E@ZL#ofqr*6?=s@!(1@)V^XyHDj4*Ct!|R$?Z>>
zXAsK4*PKtIm6v~WzLoRw@PpOS>Vg{$eEL0%J-}UWGCS8b%&uZ^ZPd;aOtr$>N0yVq
z-~H=QRghl*b^)rKwD<%4E%4yivOX^TmwfLy@x3^zU3APCj-C#Zo49*qeV8Tcz+NU^
zRq|CPJ_J*}co-Lb-DeC;%R8ihVf?IzwehSmE)dz!-pPhtIM)*6im+y3ViwzX;P))=
zMXdh2;VcE2P{`bY7m0aX1UBV!j1(5}HV@m+JiR)&&22pAE#Cf39{f6KH4BTC!?9vD
z5dTW}Y<C~m0OKVdFr69=tOE_?d0=3KF%P={S1q)M2Op1CJ3#7h6?Ef8y`y&RHOSk6
zPXX1Ad<&VvarRS9ly#>+nU4D^%4zY|e~LA#U^E6yaX|R+0ByaEn=~u+BqP-oZiVUb
zwlL_IH*1y+l)SS4BjY7r7eX!q<^YP<HO|k~yi2{Cs8lLH)ozS05tl1G!0;fy2kYR-
zqtc2!Vun^)p+}$@V<VdsJ27-p=tQWmvvWzRRyIiT+KPC6&<FAQ4`kP$AzBcic!ffy
za4Pc<M_+W@OLV8Qr1=L%;e{8AV;y!OO-FDL0$#t-LSj0CqwRwwpRtHfjk{Msz6-b)
zP<*N(Q#i>y<RmIPrlF)!X8tNJ?6q*6iveIq<6o?i!B+kd$*UgmDqgMri#<Rf7f`&q
zK&Eh7>qL&inqXD%0qw3`tBWb*FQ#Sy+F@L`%{~&>dujQ@C9h?OSMiGdUx=0jqyUOn
z8e|G5(bpNxR2t@5BZ{ZcbgSvf)~U|##H1{|plKKEg8yzOy$g^Ym0s5o_@Mxz0hQi(
z$P`YP5C30D?O(WhuPKoEI|J$QAw5(-pNG5^co$IV-3gh3I*)r+=YYz|C_d8}JLA|N
zjh;qGLwVYnUMcN^0#{%*_86^vKaGu*3?rL$;NnO_61w3+XJl7-q2!;6);QbYzX<Z*
zfYpHF{}f~j8IP8V_lq0lyOG^se_@Q*`xN|BNd9s>BzU)>3*CoT;BH4s3fVGX!Td&?
zwa0OqPU1O^%yb{KYjtfqJnZ4tD%azTb5|>~i=Jr;cgWdBTX;OWkxQHH{1Gx;8uK>f
z%NWQrfLVY_*UgYAto%@>XG?6E_<XL?g^k8z)Af{0*HY{UQ2u<T<Nluv><qS|^MIaE
z*Sr{4Vjj)|b~a<(fs{?tjCrt@>&F9mZ#&M(H{U3kzTM!j_QUeHR~rqC2UPmzLZ-0i
z1)08<FP+<b>m$yh9hJnWYBp#sW7V+P5wCXQnLxYwkJ-C$RV8feqT$Kb9UK*qi<Q?d
z5m82%kx1qeY1p~M9vK#WyNgW_9D*Dz)43Jt@F5*kzgp^Etv!G%u^Q4j2r`AjyJh;6
zpQv+{k2oMWa>mR#Q*oO}#TBZMMwQLSx?Kto3!9tA?43+|Pb4mcM;YlxYb!3C5(U%2
zt7wBq@Ear3Qw_d8d_n0s1Uc03YRP~aKTd-@4;cBPOwS=F|3)4>xA}*9N9TrdA1`&X
zwd_F{Yr@XzaV}mH#Iwz2k#$wpZ)VP6v-NLg^kH~3`A%k|H`Ig0{>WJUPv(ih?YE{L
zfh|mf1#u&yRkHvrF+{USa|sJKf8;se@z&q+=+B^?Oe0NXIF?Fc`EQ0k+nPo>US(m^
zvo&0HkuMYqh2x$4hc0~hO!|s9QRacRfGXz~L#D7}t<;b5uYRubAN9DAo(i|qLD=z=
zss6stwWr}g8g(}ec8wzak>Y3z>__!xf$ajqjR5-0f-v<FWjqzzp{06=ShTC1Ak()V
z{8fK>1ag?=)uI5Ez8uIRtUEvDTh`-7Ni3TyiZv^1hj)S~-Y`1<7%9a`#xNI;<QdFu
z#YZ)&yZN{txVux(>n6%{Rf4w<#3|ptfP4V>8BpmmZJDm)#;s@Kr=p2|1!FckYuYgJ
zR%;$*?~$ooBoHss_8`~(&{K?|u9jE|8)QTUiNmIy#Kp*>$(=0IGZuVRdY*&)A+Q%v
z_15L`YO%o5FJwMd?2_-P=eXXI4~st1<4Z%@gbm<s_Ne|PnJKgu&z9nuP9_VF+0U@w
z^t{9RQvRDBbXf1Ft%T=>P&(vH9xLF_VvpVx+geuk_j=G5SlY~>u5^qcJywjs&h#d6
z{qZw&E`2HatLO(igd(YzGNf7Q<vqxIfO<gb#d3SKaA5mCq(0Pn{EBm|mvVR)XhJP;
z`S8Evj^jTD&qhKaIAp&GMiv-VSgl@Td2g|X1Nr@M0IlIbKAht>9LTS|M5enCX;SHa
z3i2DkJAf+RUqGhdTP@SQ-FcryyClyI`HQsjKUIerrC5i*Ts%|BwDK`~KiA$el5hYS
zu36w1d`?gsD$X6n0p$CcF~+H{*;8eDvOWHBU<KssfSUl7o>h=3yz{tBPfNAFcjooA
z2%Qgn+@b%$8pjd2p7A7J#D0gaeT|!~-Ei=!!|x}U-^7e*FlJle9L@7ilf3siyr`XN
z6X4Z402cs?cQ?os)O=mN&mtdAX=}B{;kOL&tM>h4$e#mW1B%}_kSUyG{&yBs#X2K3
z4=0?v6-;;XKhV!}A><o?<$&T@1)0JL_tVY=%cz1Wm{pGulj<E<egHI7zMkkYvu8-2
zJHW#S9+clkkXQ2p5rE>^7BYoqj=ia}t8PS3&g!$u=U#$!5W4(C*nMG(fn;g=m0!tm
z-^Xn1?QgKFbS#D>c}Bt}E5R59lh|Y!9YpZf)Td{Vd+ZmfeAdpC{1za7H7<Vw@@v3b
zfa13oGKHnD%6hcv_;Gm?{Afkjp@*A-i>Ko-qa<3-;Bb^qwSUdU>p^k2eS^Km(rQ^7
zOf6=hCktccf!M9cbOqV7j1IK$xtJL*!Ee9b!+L}9t0*PAOC<mNV2rQ9kM#R2<WGSg
z0o9&og?P1oz@E<~{|=wYceGmH^tT6pl@9677<QP`N{XgqCAuG87;d%69M*FV&LSQA
z?TNmm;*Bl6d*qg0B{uM2)bhQ2wGba{+SA)$ce&eetu_+xHo{jMAM?A7z}3bLhW0D%
zB>ZW){$qK9o9(c|KY{b^QM|vE!i#aMjPacn_$_WcZfRWM?&l6;op`6jKpx-L#p9(j
zG^{X>z)1ELafQnBxFvxNq&>eb82KgQzPyh)9P=U;t+q_+w+g!RIr`lU`4!-GfCA~b
z&#h9QO|(-@=<|{*`p+qyTQ;l+=Bq=B=_-r>Bs2gwbq9#Qh;t53yk4)reb0wH7$^W#
zxf}(V!m;PsPF`=0j-ReO;NgX(j&GO^_DZJx9jnW*;xp8aQrYEF57mfI)ss5NJAvJR
z;<Fbrh2!i@Pg=ej^BFO}sEqh{3qqJT1{*#b>>HT&Jp4Uqm|-b@G};`=r*o*k{aXt8
ze&7i}mHVF{d&9h%D*=BLq4E;>-gEporipwys{X><0j9{vtYb?!`O2P4oRh1Jt@a9o
zRblr+yyl8$;tHJJ-e9k@?}p=1<8!XnVirw@>2m?v4eP>O##r3WoWgx9&I)n`d2V9~
zE?<miId^B`H|$D1{XaZ0=r#t2{nNNNGO-oP>O|v7hWYno+{O+YsI80-#;X224Eu0<
zvxdEJp3V@L6SC(^eT{`Kvhf|Y6U!jq46Fbs&@XR4t#a%%#G)`CRge#<f}HQfy906L
z<L^_v?r_YNfOtTan<U5-wmRdjCgy`p<j*nji-HV8(pq6iYA+(K!)X0iTzsx+!*KYh
zO~XxG*$bpT$`G$=H}8l11n@MVcs&Q1LRV*>wqalYq~-Z2UQU6I@>VgF=tNPX>ljv@
z@z6Fir$}ER`Do4j<v9a#H=q}w_!L5>(C01L-V`3c{?&w@oT4l83HjW-T7Sb>tFvmo
znyrOZ@CN&KOZy*I8H20{-qqC#`%P;(ONCn~FUp+TOXD~=XDEW<U>|;v@oav*x^Bw1
zQ1Y$?FCTbO{_+UShk+J=s)v0cj{?e`k-U8y<-1S4e4o6%I$_mAzteEF2$mqf!gv%*
zkP);}x4~YE&H@##+uep|HELkBp1~(Hs&V;$u=HP8JT}sze`22h()7M74rW#|R)!S-
zaS72{j!M)G2X62)8EUVV>8(au)cEi{$nOIm0Td|B6{l5?Qq!al9Q2{+67UxyK|fM^
z-Z`9tzqi|oH#*WE?;yxSfeQf&XA|#;D`uCLmCvM}K*s%o6ZbVTy;X>VVxjzf1@dda
zn~mZ<Zr|^u^~0ZDWFU<nC|(@NvYGaxPDNewI`O)q{OQewoCkCVD4b1tN0k>%_ba-#
zLDAVNy@(?paZq|+hP(s#FF<kXKwdO-4{Z8Cmfy0NGJFfK`6cpw^78CYf5Tu3o?rF-
zxM+b@>37N3&=sO;=H6`>tBn=xZX;^7@i<->45i;~M65RI@Bt-z8159vU2hr>m~K}X
zEGsVj(}?=rm~3V9_``<l2v)d4dBmSa#P`O7=v7)`2=txd`Oyf9iR1A!D_g>i7C6HI
zOV|<~u9whPWTdfz8BzM<%y8-HR)kr{ERQ)1{;{uh%0JTHQ2rsm4}1hrIFo!S5kuo+
z%Krfa8<;W_IPpfu_~RV}c_?rpK;dlSJ+A!M%ec#&c&iWx#Ujc-<kx^V8^wFN<zJ=u
zxbpv#A<BQH6R#`QpWa-^c|dpIY}0#m`Tw;+(bX!wh$G)g@5_+i2X+Cf{Qn2C9fvie
zr)2qm(b;F}a7yiYYMM%aqw-(Jmq?qH7Td&dSQh*{b?tvf?yovbBSJmN+~&_SmdiqU
zm@7UMMVXdEt~Pqm(WyjLa`C@tl}ltfEdWOflyCDOUkh9hsQ&bJ=jUqNuHGlFzqFK)
znT-+`RWKJb-)PKyH`p7|fSF0SWzB;nbkOR<i~RjY_EO1bH{$a-d|dHfEd&S$6rZ+`
zDOB7g^?GXKjYd<;aB;qQ1I{<UWcqzmD8oUIJU?GxgwT<GgldP^0>q012|cZa{0Q(k
zpm@CjnZklQPluO3cf%{$<V7xM=}PUJCU_CQL<UOZj2OYpcb(LiH$lcr`PU2bKwv1K
zcwOlHT;-d3pFIC?UaVna-f-q8Jii@$nQpL$!bEo{wSja?Oqs)Dl@kx~_yF>!z~_MC
z@s;y)6~B6)oX1h~3rAUgJ_Wso6Q7CN?R=u9^%s2V96qUue!UEVJO&sKC_a;%pDP~f
zeR4iWEs-_p)4Je#nJ+c?`^13s@h`~xfnNdDJ{*B;H1}%zZkOfdohtcmc8cvo;}LWl
zXKE2tI094DNG$6Ny~#3fv|4G#(0Xnj<gIY{j#{vx*u8>Gq0Zr101iHUCZ0<n-wE6U
zC_Sx(OyMN^8BL6*g((g#JBblB@so4tDt6fl^6E*4I5FA>)3sO*1GMQzb3F#}l-(fp
zSC4pA|Jl;#)!G5w0HweFkcR_meNpMJ<r(QuO+gCZr+u(ilRZL<lW(%tvm33}nlbqh
zU(bH#t<i3B-1_L#w8=CM_MlGUI||jyB=2f)Qu+P?<ek8mfYRsJkSVBqKehHNHLcMK
zKtpzWGcaGG>@LuZ0&=#CEUtHWWGDIabqeImfolP!zbeRg0mtU+p;MgqAHzq^EDM*A
z`hp$x^|{IFd!rS0lVuAX_IaB3eTs)Y&F!a1kqdD<u8%r_zAOwbIUF@=wKqEX4{j>|
zTO_0H1@ZvJzc=K;fXaWRN8=Rp|0w<{`@Mxws4v7Ll-m6!YlI-)eG?z?3{l2Xy~z9S
z*wb~x!wPY(yh-w11uly33y^mJp93o24?(8zd{~)yFB~u5#mZ~@l=694E5vqud9k=4
z$A2^*=T)oadDRv2yy~ygg;CHp%sZd7zrcZ2to21(F?<I%s(3&aCeF;HuJ!M9Fs%!Q
zt#jZ`XD06xG}=3nccndit?*XKyP$=?Uz-K_YG5&-c&~y?;n?-FV|e3Q7A!H-8ZNn_
z=P;Rg5LFvC6Ft^~$dfjltJh<HJrLvQ0A}C-LL1vQI?@8|NGx2zK$SRAC|e<U?L)lT
z_)P7RyCwD@f#!hXH3~9?KHtc8bL3a@eF9!&lRX4SJ-`hnz`LZ;?+qAE5xHADS`F?Z
zPR9v{TNxHfJM-(g5otsO8`vu}tuA(YXsVU#$_a`Hn$MDw?EpInz7%O>)dxrGis3_|
zHJ_y~#@&w`YfbDjBOYrQPN-Zd)AKy|`tTj4XB*^?fzJSyp8b$199ticO3&=#1r@j%
zm{Jj5*bQ!4p2W2ezv8}Wa_vMzgkT;_qk}xmOz@(x+lfEFmAB!1#vPEK27U!peVW$V
zt33;>sw@-#-}ZI#J@Pa8K8lC9hDYQ#>GdMqGcc#|1q4)-=M|OA#A%3<nQ(q_)c;#j
zJbQY@jA28NhU7~7TF()SRoZtZi5HF()2A=-qI@aZX@>4Hv&3^F+i7}tnX6NFnt{7a
zbEg?1o>7fteDl7((+uBbCW+@gFpkA`XV9xW_AM*)O)Gp0_q@u(lpGKYhmbtTWwy`g
zU<P}G^&#HDE-ZGq;OuL%m1HEshi;N5C>Z`XJI3jW9%OaQyqLf|Bf*L^!udFui6jOV
zxR;`?S)4aB!jk%gL|hG5ySQq+M_`b95Wf;-JuF5qN-4`M<(C9^h~iPOC<r!Qz}644
zEC4nZp*T>VV<+R5(fLN$6D;R>=5_@d9h#fIMYsx*{(vW>8;@XD=t0l1u%}rTShU6Y
z{qTx*p~fS)+y$ouGWxdd*8}cwW6TJBPGq1bAHTndoQ}%>|2B4MFXLIm1(&cR?dJ^F
z9^D)pHO8D^|I=`Nt(%4R&xUKI(LU%RJ}9KE-QDP@hw5fP|JS(ro)!MCl_Z~A4HWsF
zDEjd6YCq2Gb+~KIj)3gOzf!vdK6s;1==U=I7RP~D{xqrr$5B{51-BydsR5S<U#C;;
z!oJeGhIu=8)p3rSW^sysWWsXhgD>@$8NZQ*{~wEdN#`3mFH6Ut>yIsnP!`TSRv5j_
zv7QWfbf7oj*5Kfjpv+(%^r7j^3Hj0RhJ|bl3=9k~14Do)=N%I8j&7N7OdYS&Gl`{n
z?U1x!)LxHp@JR)|YJ;qwV^d}QqxyLn<g0+?fU2L5J3m+BMD;$ZY%9xX;iu+DvZNi4
zna?^lb-DEnzu5|1ZjHYgCEJ*~o{?L*9=way<rx;biG`Y>xV^3!3w?x|?ausdUCoTD
zpOpL#BYxGt#J9oPA<!C7{L&y(IJQ5O=SOE0mCumwLFj@Is-OOjh8mNCaTrOjV{<iQ
zuBKf8k7ja`fxqY5DC1v%zpvt74f!G9F+j!tBxDLFw0}KHQAfodRd5M3l_)f|4#Pn}
z>xRX8v8-C>#D5rnU&Y@p4PybI2cY8b4Vl78(%)!kf0V1ztfI1+S)`}(OtKqOr%+&`
z{W%jR+DAYNfQk0{1{3YN8mX5m#H)C1h5Qll8K8K50hz)H^>W&*3M#2!J;a5+-Y_%+
z&>kie?cXsX6_MfLdq(ohPWP|h4}&}jm;xw%*FvT+@;TXmZgtk38__DeY<d=)VwTP+
zmkuZ46^!HN&R1Zb!D?9YMnqa;U(a#Uid=-4SWi=M8Hs$b9%Tr3v!jd{9>eE4b`IH_
zB)_eQU+M1<<llh*IGm_&I>|i=jd-P|O@sGXEDghV7+noVY>6d^Md9X+D2!j6`0_LS
z{qQWvOMx2!rH=<8Q)sqT>f_Ms^4+vPj)}J)uCOZ-z76Zx)!WD`*cNHQ@`N}^T4Ud4
zX#ZoWk#4j{lS4f4#yAdJ37)|9EJBRe#=?I<JN*uZR~N@^M%mw`p0u`pJ@tY-6u1ab
z{r42emjcJGtB*W>Jlsfc{pQdP>ojraLenXfzd@U=JiKfi%*zsCUiP#N|5a(pwhPyz
z({&Qf%;q#2%H)%&048Ja4!yn%-sdF$T5u!HQv3Qf<R5?^0mYwZdNnt2>^kApQ{Z1B
z2X^6Q1>hG}>H@!OwESf35E8v;+>jbhccf<WfwY1`^hRn`4zIC@)93J72zfbh8=!b?
zgM1h$2rUx{DoK^^0X^jVWLj$|4)BH8O}IR~!$W=!pSJ(-XqR^4da|Xv6ZGWR%k<ev
z{F+ulzOAe|F1JYu#aMJQPj4G!C9~k6u8|nlSsDBv+?*PC8;T0)x&+RVvUnt%QupC^
zGTiO~ui*o+{x_9h#jgtJtzS$9i+-^fw`^Z$VwL(jlM>+lr_7H5S^jjFLcRjH22l0j
zHpmpl{!NzuChYqgm7~<O@`|D<m$k|CC%KA$!0C>dr|mzv_BHEdgc?YUk%UcIJ%a}R
zg(&>bOJ_)kr|KoiYd7L`;WL$!Banl#u~!BtUdfOt%(%^|pANsK^I=L+NeOOFpr)Xb
z-7R)K!?El6wEZ6LkL5{5EOtD*<1+4GYLznZVFrdZ5W#M<<Wq+DeE3X!svzGB+z%)|
z&qAhf?6|#YK4_(;%$7S?QH9%_$uj7mcOffs8pgN87F#OM*TqKuKpHOv)8weIR`Stu
zWPHRY9&&3S9Z-BSou8}miF!B9=cx6p&LK1gDAf#THV1p}Vg^y?#Jd20*N1dcylWwE
z0BQgg?=z4ooMc`0sPZD(l}6<yykHo5HRXS9k!CE?v=K&R!@g6&%TD^+`P;!v$Q^+T
z0L7y#WD2J?4roNFQ3pb8-BBZ=Y~D(Zi0T|3%Mg$1w>ClE3~T`ukFAg?oQhr9Nm!iF
zpGV;<QXk&-etVNb$TtGF0*c2wkSPR)l!^DkYWZ$d9-P6@l#-cQ0^*Eq))euguA$*D
ztvus9q<DJKlq=}&ynb^^XUT~_G?rZJ`q0?yVzsW`;yI$x^Lt%<Xt~)16CV4&9<4AB
zWt~nr`*0NwHUuz>>44`*%x7>#dURY=OVekMbWezf<<SIu>4j16m9{U~>>^#e8k6}2
z>=s5dshRu^PVQ^&B)hNSWP>ll?l+`<I(P8vXEEe8z(zo|@9#n012lU_wkO$Bq<$Ve
zejV&|^>n<3tTpCli`81O;@Mn0(>7y9u*ojI*66<2*kfF4L@YL%X&YGa%<d(*E=-_g
z`eXUkwl6R)Dt%VOrOjx3+#UvS6B-h}LfjW$43GYM3{3x;Y2LSG`m;Ow)4u@nO5kol
zm5(<eQ`odurhoYjXInl-6wQM}gE4bvN>je%I@dvSn~T-C#)@Zzct&n>QL68^(KSrL
z_7w8D1uhfB!2<ldo`t(&by(!5!3NFbnfO6UP#g=45;wu$OqOY0@<%WQj)!38+#Yhn
zf=lgtGTo`2{PlAN<ePvMfJ*nHkSXkU_T^UA$n>9iy`XecM^nYtak0n^f7V#)j%oB9
zL_RAv*&pgSIiAU*T>Y%BDD^44H}mSTcC0;^TKZuIl9mdMh>>!2olK9G>rYQ-$OC|J
zfGWp}A>R(vJtEW5(izWhIfHU6rfS8`85(T6*Xd&0y@2-HH`%+`9Y)WU#)o+2tTfVK
zd6tXQ*8_PRR&kSRnfqnky+zO34BvqHd~7Ytc@-B8ic?+~qhS67BN-i@(~;0!WC8mj
z!(wV0-9IMNxesZ`N4`)$<Lm6zdIKW?mCl<W-v?}eSf+D}lip2dkj|-CxSHCK&RV`q
znp$2jZ7in=8_Ra$nY$SynN4>8JB&6fjZe)xXvHKCH<H1U+hu=extF-DW$xG?u-MQA
z-wnrb&27zwv+7bDNaz(b-E9Az<@y<?{l)djH_=h@2N>VY_%-Ya;VQ2`Z^J${F)+=e
zGD)HGV@DrIE0t8zN2d$CT2G)aK!J3!aD~)E6aD;YwpWeot$&Zr+XhSGfgv_hUx3Yz
z0ueDDbq>EOhYRt01@gPV`+%xv+nt{)e(HTX_3WroN|U>8nBRRO_2tX+Y74-R_)LVn
z2v`azK5HRU*z={-+a|~EzY(9(GO7T=3pL%kH3wt1tdf~9s&>B0nu|MQGfRX~BV8X$
zmA-~;;u~o?+)g~Zi)V<E1GK-}cNtpp0E2E+ZE20;ZjZ@_y4r{Kfbm!ls^|mIkY%uB
z<5}mtXW6GRJ@w#Q=A<XH3+D1bH$bJQFJuZUSIPA3an6gKc6xfxoihj1XD30)mF9kS
z1ioedZr{zd(Ic^vN8@7k#(4cR$*&6WD}BEM`D0)wp!oe8GKJla-TE2xlSZVYX43Wo
zT-n|PAGXBqIj+qc2_rNYJkk(Dc(MB%33WRqzwEC5{;ve`5?~pi_&p1m!b->9d%I)*
zecJjfqn#VI#Zbj}nkzV~;vwRBCywfPwCC-|ZEaXC{Nr}utt@w7B{SOS>0UR#BGeUT
z8+k@>OuA=)J1555c?C<b6Ofu|Xp#6gjLfhz;riTe7~W`=U&{1Fck{QG6Clq4ssPnq
zz6bexpo2613%s666YLa9<omSKDVFXEiptC9PsMo9>Eo+hpSxDLSe2_nJTF~=f!_0W
z?_2Z>Z`H@#qG#W#yKm9E->R>%Zqd_k)i*O(@#7|}xK4CiR_7S2dz{bmM!R`;%+{lL
z7##fn#G1QWy7|IZ2`SZ#4QOE+xy{oP&5XX?E~CC<Ej$eIj~L7u`8y1EVhx5HF86gT
zupgZQ=*=%=V~lLwZFM)-SeO_izWO~<U-{kr^O%K@mjE{asyy5ZnZmJt^iNw)IEX5>
zgz_3*I2xNZFW8rBX$gENO{{V-eiiepvb~a59pasVc&XhA>w&W$Kny^E^0LyI?>5nX
zo?3g=P=6ZQ_6Ss;2yKDEL-F^k93F*EoW$cU$d3WFfYQ$n=jV!tdY`s_)LOZ7N#o->
zxlW#o$vG}*Txr2%`*HR+EA&pQ2kUePt(ngZ>w$4%56|N)DKxo<8*AlyC}nnMzSf|M
zzfbDXm+v1ZT>|-1pcGL2%OO)ZwfW(xsaACY1#d|w<@>Q-3}C$&^AhI{rh128E#g=6
zMy)5-H-Ioe@r#5^;Z)X(Pm|p)a<=!0bhh`At{H%~nAVLS7cHlV7WZvQJ<b3R#d9g-
zn}HR8;(0q{3dgR`Hrj6(pF0r_I*R8^E1FX5yXtDH2RH*oYYekB1IGmNap|3?1N3+D
zznAgu#@|)({sGzS<<&fZiZ>WCg%i%JkB>D9H@cHm0{I4h2w4MYrRZ!?XfW<{;vI{>
zOMjWl{bI<s19t%`-t~|vD8FP&oqgv<<^JeR1)9{)D8*GgGv|;q2<o+}%rPrWR%O1x
zR-o^C5yyA5%yyUro1Qd#q02P0X&}&#7h?KAZJY?%KS;eCcH$>~EqZ&kOrRa0_;rL#
zLDfg~J|%uf4X`rBGElK*U^bJ3%|@9;)eetJCm!PQDCB<tF9C|jR_Eu+9%G9$E;*jZ
z(d!Muv1?{F)CAjs=E8Jf1uO_W+DmpF(>f$!HYl}{3pZ}v8q}ke9gzBo?&I(0dq7?S
zECUp;&moI2u1vh9ww8X3|B@FibWrBid)_q<dRV>Z16{m+g7aT|>L#8SiD$NWJ}Q5(
zL%w|CyRHX4l#;K*VXAQ<_Lvi~Xda3)^W|<=WI?1aLXZD}x#sgEtb+veRoqC$Qe-fe
zPjTZ^rrtRyG9af_I==WHbAIw1GkTa@kBrE*#m2!B26w)f^ZOZG6^!7ev@&c@!fG(~
zuIWQ3o@JMLNa~JhT4y#1>nG~_(e!=Dgs`YwQRE5_JN3V>)EDLR3dn1KCjq6;e>gu^
z<xIW*QlF~b7ki}FphXInTcr0|UGA|W@3n&O5j&)5UD`yZ1-AjG&iv*^?Nj#elApJq
zzaRex<Trs205$G8NOFJ76F-sT;*}F*zIQl&p4k7C{k-7t{Zx4n0c&E@r_7-<%LBya
zys*g<7cm~6eAz0rrT-Pf>zPF*ZJWBzcVId8to%oy8!ki?CC@x$95h+IIqV>sjaqwh
zD^JP|Ca!1A!?i}{g`SHnS1`O>@DghdA7!P+45wxPfkp}{3JyRmf=P<qg(}Qs7~bOl
zlfn0=)MEj3<il5#&ksX>5qKF;`Me!6g_h2K*vjMg!_JNVdQPQk29F(o$eWQuH#1ht
zdXlS-TDzWOMJxqX#^>pbk)9Fe?nPS&`9?Ne<Ye$G>4OYa|CQ-V9pG;du7!LTa4(?J
z^%P_Z_ij4jJn-D4OFE*E?b<KWCMr}kZ{_4brq;es*R~>QwDccu^@3F)5?4Xl)q&@U
z#62n&g0hdubh!rl?RX|Zz81I{Q04wf$eRJfS<l;`)`QMhxtDz#8tqE7HZb_g70<OY
zrQOAc$ugzO7!_PY`@-2Lj`wun?&p~2MHUe0<KvB9F?TXopQ!Ovd^_N3g=YLM+*HbT
zh!v7$j7qPe)iD$k1lJ({zV;Nzvw?Cz<?pqSDYQKCxwLbWzfLnC_L$19!3JbDHb`sj
z_ZhB{NWrqT$%h#^R6f&;`~2OyR>NgF>cCT-7ws?@HjO|5pwh7zGKH>AIjvQGjs53`
z&QUs~Lm1&FTe#PxA`4f@@^-8F+h{i%UNX@m*TSAtThCLhO!PJ$p27@I9B&)w_OuSY
zIv`$m!xGH^EX&6;aUpb`IhUC<vgyQMXM7f)$UbMr1hKe@bk&+t4?B=fA3jq%lrjWm
z92g2HJ(NJEp!`nM-z)2FqXzek^dLM5&_+hz+4CsH_3VEAARRm(BA&y=v!!}c&OT<6
z&qZ7==XS-wZC9KtnSa7qk}D&qz;5MkMWuHF*5<om%kz4!Un7T^TA53xvli*dcGB5w
zC}f}`pwc-6GKHG^WcnVgKF8_oFD^P7(PuEFwuU_+m#q>v(&E)H@k}9$j#~R)y7r`=
zWZ|}8x2rpf@ld0A&~Ui%Li#dzF@K4R{pCWBOjk9f#YxwoVP0)IFdtCu(gTp61-3YT
z0j4_d)E;Fbz2__+3+Bw62M;;I4I7HnnN$<ycE|A^<T#R4Zf&Vn+@o)!`Y>EPTZ-or
zn0Qd}D2@nCf1C9>$a;?Hm4%aMDL8HKwxYN3(Di({0WYtvQSnJwAdYfnm<49r=Bajs
z8QW46oA$;qoKGI3r&#07&qZ5Nj4tnOh5~7f(X)h}d_hv*-r@dvQX%BafyIE*_ZrAg
z0A<d;#yieAq(0}UADCI*6Y3dIT3(^{v&&X6w0=*}1D^k(iB0SoW7H;N$TNn$3CBz8
zp$h8dnj!I1Zq-NK0#C*vx9j#@va{=lkxCby#DrZf%mPQTA=pqrVUwXMSf(3?`y0yH
zV8|1IB0$xjQpgm}i9eS{<2^ZO!ypaS=2*8bwdB^N@}zEEv@)+#{~dnR&RG}2PZ|&b
zDE`rqDX8(ZdY@52Zp8nnDP9w6==Bc28HnG9_=(?*kXHi_1FBqYg}f6m9RGsr6J-5e
zKS#cC|6SIMii$Gvm|HQkgzlaiQ9NfJTp^auCQlB{cVnscOU`!l=kzbJEc%MQf#0pa
z&sU=y%*N`dMGnYA65#hbmgl4l#uc!EcBdFKwtYu45XE5tjL2SOd=Q3x?_+g^oKkGy
z##OK~h1pqqxG0lFrZQaWJNqJkdd5PY3d{tQzHf$1;T^}%p1Pm#_;jSE`IFHmbHL0?
zVemq2X#N8XK2?%oDfo)Lk6~Dzi`~f-Y-1YSr5kt#;!s|5-GkE1O<~j6&6v&GQ#*=K
z)=cu;0Um1I;|OHW2(K0lD4y|<DIB|Q^;bOMzOtOQC8d2uD3)Jdv9H2a+sQCK#&y6L
zY+`<&VhmIE;`I)n8Hmq^_^2G*3i(^$0HF9x8!7p050Uxa(ktJ8#YY_wsK;RLAoa6%
zF!6d=zS@fqiQ@SW`Bj|wP$Hfo;yK|2GJZ;#a0o_6tTT5rmj{<PN5@2@#)iVqJIEF0
z3Bwkf8%qhnR&Z<<+SWA8#hV4k@pjA(N_A!M4lK|%Bh!&-!7#+>$ZV@!fG5Tq5rb)S
zD3;*kuvuxda9nkh1lL(!JBfEy&jc?m&X2_o&sGKl+AO+<rxTyV?&3x|o5Nmac1Krd
zAX~2C*T*{f4n3;z-x0|DMtQZdfU0lLL;eV;aLzXv>ivft7yOmJ#XdY0(>k`-*hZaJ
zmUxDU=gsJ}@Ku6%4r}y-p^aqut6ivjd&U0ITw&!@S*=%C!By4+F#6>1<j0%YCcGlF
zaGNOg0j^*xiFYtyo$U(sv~amyX@=Xl1R71jXfckrVu6-n#9>h*C@AR&&snUuzE%&e
z)V<JYCbXHtQ}K)la`Q~u)z5`{tge^_tYSt>y%iQniusQmp6yELhd-Lay<#w&n^WaL
zC~GeDnmXEFpGHD11d0JweiuQeU~G|ktf)OTeNy>tSV4~}yo+qO+D)cb40rg}Vj_pD
zMKMz`jUd=YcIMFm(L932x;>0ImTttsO&KnO!WV@;$+OPkLG^4O<ikMN7(dUhkSVD3
zH0Af{_<UCjE3nXHWor#QCZZc&$8KZmtPeS^KIpR63az$6jbPUOep+L>4PNkr;b|oo
z7lFsV!g@px`CLy4?Q%hAUT9eG7kaa(W-qfyIw6B47!>A58GBv&fF?e^7LtDz`1$ae
z`2QX9XTX<$()0fyQ>b`W>UXL$FKyJHRg_*nx45FXv^;Bm@g<kcDV>i!)y(18gr&}+
zhOftI0Nk4JjC7>dR(v3LYWNNx0<^96ZI(7Di+h{34s1>Pl&u5%VEN4Cajwi38(DZJ
z^#~()1?>x7VIUz7(}X%dMe;8gEBO)s1(25kw*ZR&D(B~_Us&$=U->KklpC4ZNCCWV
zj6Fh5H=f33l?QA$>e_PF(in~}s1GQ>DUI7<5#aO(^{pkZeTcWf(W~!bua*OJ0u--d
zkSTQ7E%kcn3HkmjUXFg9)4iF_n;M83G{zfg7H}P2q}Elqh#kJR$WSW=bAWK8w=rHX
zbc-249vwaz!$+%WoL1FF@~#H20S@nvAnyUb1r+ZikOgmtuPWE4$=fL&AiYp<&XAPf
zW^kvRgej>D6HuaU;@-BlG)5>gq=)FjG|6+oIDh-F0P+%G8K8KshD_nu{`RkU7SAr9
zJEs^I-Orpl>LNPi6qP>-!-Ez*DC=<@$v0U12*Pck;ofH9!3+*&Q8tZ!&Y%VHdDETz
zcjBjV89d&rwE}Vh#cwub3f`qM-<LUlWB!VtY9*>z;tDcPy4@pQzjK_(MPo7bVQZWF
zAuH}->kxlPEW{>a(``X8?uk3<zu#E^Y{26lWM)8U;82#u+KGQ@SA?=q+PLn_Uu7uR
zZP~HNLk-2fbWb^E4%+S<ncf{pPd3s+=?$OY)lz_TK&3YeGKGA{-uG0?4NlI=7R4#)
zZH_MTH_0MzW6E2@=qT-**dPM5QX^0IA-<Y+lHUTvulng4$gcoz0E*w+kSS!J`22s9
z?cDMFRMD<x^Tg_zja`sx76xulfg7M*hFh8AMQrHr+Dm@EiT-x@EyxFep8++FNS_4X
z0Kj&qz3AYy!`lxW*KVBpItqEZ#7a0Of<sDikyg*?SmADyS%57+9E1>GAw$n(2Hx}^
zcFJz^YRnhlf2o?6i06}rcr_Q#-`QI9SZ~>fJ=kg)7K1w$t<czA%nC?OMq`j`&1jvL
z*etH4fvu9MIKPkzUrjS?j~*Xzaa5++$?Qaj*p@N_=h*V-X0K7OOWnqJn%;s9U^_*j
z9R_QYoi4swZc5a5mik`>-Kz5Y6J*z9?Ck=oe569A(9*FpNlhvfpU<Is$e3;P%%TD;
zW|h%?BfMC>X9_P?oy0SAEt;9P>{?6P!E%jO*e@D~4FX&d8Ovw$Y^z;VC^bWy7-lEE
z_y=&M2HV;jgoj)(&F(7GxeV!0^<W$1y?{~ZFK2m>hXP%l^|@X5$nv$X``M;<dT|Bq
zu@pO(_*U`Fx-hQkB%WntVe^(f@JrlOwwvF^p5g&d<Cf?zxw)IS_>#x(#*hEN@yXcx
zV3^o}yj#=1m25Jut~KFS@CiOl&owjdVdlfE#eH<Rk^Zfs1&BOMH3z_dxQ>B+Cd0MF
z*j+&^7+4trIxeC%SqmOd-%_aUF7;Fc9jNj!un2ZJzypA)kB1@0UgFjIL`%I)t(5P;
zx6f8jGvIciq_{T<!$rmAWu>!e`gi7~3|d!zrdR1ycrnMRUGp{Th`}n&FJK{tSBiLE
zBc2iBnN5~sZ{bwKS{_u*m+3DXecxhz4)eh;8>8Q1-GvbPiV?Y%=T&nP6}FnZ7cR%D
zX$l4!NwE8+3lYLrdxGxvc)ZE(Kuj9~al|&%=!sGFvn-}>w?5;%yi3C9Zrv}zyH#j#
z<Z@3Aci-<Z*LysVcuX_Lj<j=VOf}IM%kya`Ar+;19=1LEnC)CR3-6w&57Z}8iH8kQ
z5L>2OeR&^yuoa4T_n^Unp#hPY;?Y>194q3ex6Ic{<QWC(r)nX;4b%auo^N-4uGVeT
z`^<B|Y4yUraj?W39YR(NRp<x+Y|oEU<*v%%=bPfU2b&G~8ej>a_*FrsFw(ITJga*J
zu!WE2e@aPl(VX71rsCY)g5oK-&W=Vsb?kmQw~U~9<2$&aN*hhC){A+h5h=GrD!9lX
zK}Rd=EA_h@{M0%~)>Q0=00n^Je;H&7RgT~IrEi`^|8*??-jovDj6jVi%z^o4a=F?~
zJe#X0C8kE#W@I5T;n)FiyQZRO`C`oE3qpNvaXcXlCg~&ibxbc&xua>m{xW^fgTG4O
z|0rF>uyFw>P}^{<J<S=F8z)_qC62$mDD6F*gv`f(4v&1qsd(H3`4-@|^T?x-|FCFq
ziPrj2>^Rrt@Y&snPwQ!z?*N?u)n4|2JOohV@lDRYo~uWh_&aB-C*|)8)3x8(5fs_?
z>@{2)k`Z7BdvK}SHqqN(Zag5C<>5k<d2pl-g}QQp%-1S#qg<qR;WNme1786YC=JJ+
zYdl-NNBKp24}JkhQw>4AaQLK7_w!i*c`<MUpz6{6kSR=X_L-XSCwl7RK&QNk6GNgQ
zXv7XX`m14p8KBkKFY4L?+|`4{5zd-%9D+4EldFJ!+(Qk*2pkP~kg>r=h?o`+l6tKN
z&wTJCz4n;l)rJ8h0F{o*AXA9HU$z5V)|`EN;7>=R22I^NT0j$}I{V*DyB;%5H#1!>
zj3!!ecYaitIIAPMmd!O_cO&*OG%bIyQ}4l3m5={Gwq|0D7f|VlhD_m{l@nY@TwEdB
zvhadD*x9tk+HakGwe}e<BFB{%=uT5<?Kgp6OeS8n4$ngHQ0>BFke>x!02I%ykSQE{
z&iIVWGgvlU^oofDYKx?sJ)DZnjZFKlfv?y`PvDnOt6DHb>NWaO|Gei)$W_2&fND2B
zhx{|}pfleYTU;ji7d$H8XT!VEEtJ^)7pG>Fdj)KIG&&h)zHe?eS*_VzJST648Bd)(
z@eN~mHO}l`uXjs+nm?j<!aQ%Qk%m!fJL+1phyRn&2FL`l0h0G3OM^2I*U&VcV722H
z8Ux(E%RAl4JZ(jf(+*3`!!b;~nPZ4Em0!kt((33$KHM6NA->s7f0}zb*&ZCUsT(f!
zHsCUUd0YYcZeR_d^7#qK6qKK;5@%j}#`-G5ecTlz<_h})WHL6|Yp}jgiuizOt7*Xw
z3pUGO<v~NTu|^ra5NZk}-^1YJ!)Iy-x|Mjf{=g7G@tq8rf~#8A|CSG(Wji4FDn|mC
za{h?HEU~?ZYwNINN^A+Zty=8qT+6Tr72z!6fk)kil6MVw5i{a#%)&WCAO=vp+d`($
z`2oqd>iF{;r`Han<n@skhKOctM8j<Wr1V;Lle`G2?PgS>5A095R+!|%L?*(_hx^EA
zGn&)lv{qouBCERwXX2RujgaZ71Yeb&k0E~nd=04d9E41v=EVLPPcJ>GY0`oYyNA<e
zPCvGHf!oAFxJ~>3ds-FAs30cR+&#3HRqS|htZ{hf&-V8t?Mkr+2wV%Oc48;wBS1!2
znc)B6c=_IUnS7sdxo?7hL$7kif0Q<M2MEK%@)2{(%1Y-{6eD}i>d%!6i-|^m4X133
zyU4h{+E}iOS9zo7P$6$+;<ZJ-^4DUU{{wr@Yew+v#uoOPVZ3g<>Uzy+_qq|SEo{g0
zE3M%FnpR*u?1fzXV&0tDdradKGXU4##=@miIG+d?LAq&m)6KNd7FJ6mI4Ip?<ax&O
z`1r)O*}j;8E3vm0gfT<>A7;BxOuMzP5V#nv9}d;!@pTMaMHTR7jzbm;jMo^pEka^E
z!L;KxhX=zM2Ntt$(2Y<X8&EvRe4bf}W;PsZ{=%^XD958!7t3-!qs-slY=HbKuoY0{
z{A<V*Mt&sgZC(0VmJ{@YvWTOeV&&#KU98!_2AbTE_oJno4{W$__=)AhbYwO!3~@z9
zW5OJ7Rq&*ko>XaXWyWecF5DlJ+@7@NO~E%orl<4e{&kzbLH<9W7EtN&&XMWq8Y<IK
zG4?Fe(?q#P66N7>e?n{Zb;f3$;l;#j7glxf=^6RyUc4yX_XcRyJlEA13;H2Cx8j)|
z$b+zn+l<!qij0<U$kh^k=EXeTHGi;cn9GXShlhsgLy`gm^swvT`4&e|aW_Cq8@s=(
zC+kJp+C~j_D>lfO0fpiC@p$*hK$xAZV?nd1>!~HHZ-g@F#fLYw-~WL8Ch#7h^!5{E
z3VpWAa<FyLS?Y~OZ4F+C$f_{8&OTypvss;;z71Dkd|>aew8eTmEMHw}bb@~fx62!k
zdyY#X;$HSxq{((gw?Pux;an7!IY;1B;Ycj@jbI&^a9%C=`l!J`C@A-ri@PA-4?GO0
z^lgDmVeEr4eQF=<jN2N2zgj{Yd>9A3D8>OF*k9mcPZ-uEIz8(k=S{sVx#dNQW*cMR
z%mo6%G|4}@!r!iMhWt73J)qk4(78w-FmjvZzdTOn&!Mwf_m=aW8KMC`dg0^D)Z#ZQ
zNAHb6aPJ0VaoNaIlTZs^X<`lHIr&;ES0}FAjD^kZ_MLk8Ue@e_@Hx#qT0dHvaPt{F
z1<Pn|<a|nUUcikkFgY%Qw~P%77#<kf9y-k8OBwvk;2xq*XgX_{8+U}`>pOM6m$3`@
z9QuHMpAK9iEPxKFBv3tg1M)WDLqL_2-H<7q!+yVn_7qOg;eU({e?n6oevQL7b)LUm
z%!7PAa5JFzu7XVA9Ik`;`8IU$$F75YOzU7%Pqq$Lb*a?%KJZiXu-y45zre+S;y({E
zg_du~ay>GtOng4G0w~t;{QT91jx2Y-$^v({e8u_~!alZt!Hho3h|pa|03B_1(Y$h@
zmB{B?aZx_%g2uoB=>*<Wzu3Bz=J;5jD3R&g3jX={OywzR0sPni8GuUP1&}G6+x#h=
zTXA%KJvM`O{MABb*(}L_8ThIE`4sXVU>~6P{{or9Ih!ZLC4A|0#b0I+J|Tzvv-=&G
z-Cx?&<Q_cg9p3p@`1M`|c{Q*WP`n?7OrhRcUz_2K<Ikd8!St_uW~r>n{+fXs47cD|
zbb$7meE_RhS>z@%o*MaAnUO?q8FtT>`qr-W`-K_>c^WVuQ0@Ffke>%OIqSg{@5y?x
z=j_}0DgK#<L*H)zRD}&=v4Or>Y@pZKm)~b~T4UwiXN9k^{*JqWS$l4~a)Pb3tkWhK
zQ-nUt!mDvRvd?nyL?h9i$^%1vun-P363H#^LR`ew8y`FJerAQ`p&E2K?}URs;S7I_
zg7<Q%57$*PpQ!%yhkOw*22lAp-ub!Oe^Bo;&PQc9Ahsc{5Ze&XVH*O#<%<hsX90e7
z4!>%|uj<G5kPiSqIh-gZ=W?C9VgJEd?2f?}NsMNYJ8`Yv;gh}4&u0<j#lZCdh4aRz
z(V}-_P86q?Jmw;7ZN#hD)wuTwhyy5`H(qM7yAi2uhtF8VO|etCdIa)gz>|&moW$SA
z>CWr@`$i-Dm)wLR??N?$j--oF;P9#k2UVWBUIX8sKyQG;xz>}vz8_zp${aqGh+FZg
zgZv@z$$95<;sRCW@QPmK=T!`O22cW=Up*aPplTdG>l^X;1M+_XR(W3d9Jfw%eD0xr
za(Lx~gUY`<A>R$$_x}>FrgE{~;kBa?uk>qi&Kqb4oQM27PG868BHF2P*-n*#gVNWF
zkT(Obo*!O~=2ge%V79|YTkPjk0C@y31~?CTYQ(3hoD)%E9xe5>su8cfkoN)m&pWT<
zbFR$cle)y;o-crW6|e|UdOC;gd1F1DutBeKc-4Y~Do+7Ran=C{0~D`wI6m;tYmP5Y
zT8+b}0C6imYay=#9zNfEPF$R{I)~T3M!Y&)2OChJ3vgcbbbN8r>K#4{5Vz9P7RYY^
zZ=W|lYQA%P#(688aq#tiK4T$|2POmOM?Z?si8C(S;Z@y;*AI~EfkWq=*YO!w;PA=5
z!QT#4LS6#g04P13!*-z2JoUr_yE2E@R&Y?|DPkF9ARbV>&S5*ycpiFOfvR%&j3o|;
zoW{S8Lf!z>oPRziEKoHLulh#3y59&tfIwg1JnQMW0#)bmsYKiqJL&0t$lHM(jrg3y
z^3*urPFSGo9bUeh{P{N%av4wosCn^x$P|<vk+LIi<hSUIr^r)ijfIEjUx;hc*0B=J
zfFT(!nG~*r3+KxAsuuC9@@3zQJ`acj6u&sg6i&te)9FpPB)h1B3t<b=Yd9JEKa2T0
zpv{L5s7Pl9@0%xi&HxX^^Y4)V3A_v_o?9SOI4^p1CiFs?9fdLrG@}5@bS}R`yk!ng
z?{YuS36Q4)C4k~t2ARTn(5Ii}Unv#wXU})?AAFQvLvBId1Mz_3>w`?;yy#U;Y@yhw
zf_tR1vVWow09pq=P5COL`0E|MW#FUu{uA<Bz&1ef{SY#R6Z+#i^V)P2+uO)_*>%!+
z+4Ed801eKO%hkeD_7zgUzFYl#=R#fxR04|c637(JhklQlP*L$cksEQX#^GBBK1#nW
zR$#sdv<DR5T*ws8y?&2pD=%UhA=-vdP%Ho(RfCgWEJIdZDfL?kK8o))$R7ir0gCVE
zkSUxG{WeT6PSP;!c6g>%`FYNTTnStUD4sV$rf}}tg~lxZx?!lkO6qk7_$a-m+~(EV
z0y%)<+W|6#^PyKYK{{E1^(}PrA3PM#cOZWP>;e?e-H<7q`|{d|<;e=_)skoG?S7u~
zAzuS51{BZhAX7L``jiuela$i}hi4slD19c}fxT*=EueVjK&Ei+%W1<f9W4L4oO-Wu
z@*jK@-#W;j06PK2_Y24r&WB$81Hlt3w$S03y3)^c9^`9*>jA~{Cdd@dy<U%E`In0I
zEs}cO?eL-TG+TxB5MU%gYuh^T736OLwU49T`%US`a8}XG*_rgfklcUbZn|)7msQ?i
z1X!Lq09FePr+!cVtIn^LH}&hMH})hSAQh!^iW^%aHj4YS{}`N(ovT09cTQ3HIpakK
z)Xo(#wF!T2{~j8qbM*(M71z1?Yop~Z@wxhQ;wVq!KgOfVe)Pa8!vE>;im=O0%CfT)
z2=+KvT4R`#tTcU`F)-i;7MRAy@r01k-sGKzz02qyk{O)o9_-3wnK(6!`zwYetvBt5
z%!HRr`~S>@*a*YNTP37rig!+0FY)f1Hd?$dP79%To4~XP@i{CF=8xhVPn&?WIPqO{
zLIS;$ViOGW?{rNr&MCHN1}ku&Wdd9t$3_4aFbxRzBQyykw0yoam_}+zIGmDT*m{CB
z&P;QSv(r4|+-ZU10@8vf1*Lh%g$xY4frX|u8yB7sIXWUa+K%cUNhul(sDHv66}66-
zXI(Gbrv-P*_LADCC6I3gZU<C*`Zwq2s$EiV(JmczgssVIhBVj!Xp0Zx%q;NJ0r)%t
zo&{C_rNAH{9S8vq{(w0M@HDUzr~pO*7Xb0Vulvz20WSb|0}FvkKu@3rz<{s6_iC>J
z_XA6T8NfiGCBT6_-@(=ocoeu1xC|Hyv;_iz1K;AV1K>&ER$w+T9LNAdfFJk4A1Uwz
za0^fjbOU_AfB)^(b_1J%YG4U473d4304`wvH&|N*?gJ`-kw7OP7WiW??A(BtfwjOj
zz$}0Rx9!0_xxnN9!tVo{zlJ{sARVxQJHEnQU%(`wFVGeU2Y%g+aU4(!tOMEsuY3u+
z0$|S<*y{lv0d59LfFVFO&<yzPbJ&3cuLB!^JAf;JNkA{4B@hDqwhQS7UIEqtmB3^m
z4`>c(z|NgmZv&PCg}}F;A)kQ9fZKoyU>wj5hy#BA6nD)7&j8m0ML-uI1lYR+=>Z-C
zRsfd+7X!V46d(ln=@aM~cpO*>%m*d|y@3qC3;g^sbOXEwtOu3@^MFF256~KL1A9M0
z{|r0|+ziYDh5%VW2=McEtdjv#fPp|Z5DonPA$+C)uLBPOHvlt$fj~N70Y7|zdo_S(
zfz`kjz(gPy2nD`>AL#(r0gHg~Ku@4K@Si%=2jE%Y4xj`W2qXgk-3I*u&jWV>^MTPo
zbKt)BuwMj>2l9Y$VC}o$1Ox!zy@T}tU;}Uy5DEPLHvS&)B+woR0d~KId;xj_EdUL;
z;m!Ytz3+gJqImnC-RnJsl1}dEExAhw5NbjP5s4^WNJ1KcG*W0PL_h>oK>b+|kRS*o
zu>b;!w9pYjqS8c#fQVuVU8%YMcXnr!%asK6)!+O1f8I%+@AKSF+1c5t&y<C(2Gk$a
z1|$bvIEXX=6@gv=Wq}5RY#;;Z$^oPwXd~zqP!8xZP;-zL^xA&h2h<1D2BZaD*oQIz
zS`K;&GzJt6Y6!Zs7xfJ2J<vQ*Ea==G=(<1)Kqk;{yYWszYeADh!$I9aO+g0Gja|qa
zpc2qZ&@-S|P=AmWR1b8s1a3e(K}$h1Ku>^rfEt0+pi4VZUx2oPR)Xe$5<$H{%|L3<
zk2{b)pkmN`P%@||s0By``e8fjB+xq0tDwoCt{@Kd?KXrBdJ{AaGz8QRR2Ou8s~0&8
z$^u1z{`dsv=7So74sXHtJwPWuMi~Q51GNJ!{|IFRG-ET;XcO`Xs57W8=-NiChXAbw
z%?FJJg@d%9OCMss2(%IO251^69@G=m7-Zjo`~%tqS^!D`MS=W59O%dOIHMT!JSYy-
z3FHsDu?}$s4F!dRw4l-tkS9Q+L5)Bc-$z~rWr5m)uD$0))`N0Dk)Voq@s2>VK)pa(
z(AUK%lb|e6SCAg`MG>A2lnWXHY6ofnx>1Py1lkN*44MKO28skV0Nq`SG75SFG#(TQ
z@&^632IpdeR)c1OVnIDYjX*Nc)zx0)d(c;)-Jl#$E6~+<Q2szGK{=q_AYV}VD%8iI
zLeL!07*Ge$-IXZkpvfRB=#RH?U(oxYXF;)`b|Cu-lr_+K&{v?npkmN#pxK~_pm@-5
zkkG!TV67e2L|fU=Csg{4vvEVjVW#sX3|1sZq8^G4OK|LybWvP$hm&+dL~ADtho9-`
znN?v4ONs<bdV+{mP#Fk6CnaShW@cL*#vJZWV{tryipHexpuvL%J#Nj(PO!S1w^en(
zVXZC`^U||~SkxFE9zO@e2l3G=SA<(db&`jN5EDoIY#;r6pP({jtY$CFr^8nYD!*1h
zpT{-5G9TotNJ#O_33*wuc^RowJly}m!Vx~P^!Fp;Ar3Vq8~x&;m4XMqRUd1#3g0}f
z-C2_O?PRBH;<#PZnvGNCSnhXCdDlUFwE;a1S2(d2@xc(gT6{9o;xkf0GqY2yQ>>Y^
zNQ7IZ&=My+pi9xi13FGjN{-J<6Em^&B%UJ?pM^|?MgFx$di>;EE2y?ejGvqXXE~0}
zgwu|3Au|PUG$At`&yVtvo`qv7tm#R)@rm)d@s)z3M~A9{Wfzgva+1IJrR@KSfao4S
z@rwcC1637nsge*&du3jwr>$CrBUfpb5Po6K&zgioIfVE))IK<Ck6yN>ITTel*3?Z^
zS@z(-P1v;bx>N<#y*oO|$;}%pKBGrB)e_WAhRV&3&%j|f*|la7;k@tKLKBNhZLWlm
z+hoM2Ss(c3RX#E&B#Et74TYrAbuH1MO%pOlZqgL++$qB8yNo-(o61%!*(JRzt*Sqb
z!yBn|fwzm6-ecH80Le8tz|jQ4xkMgAppW3$vZ}6h8@b&0+&s@uH!eJOEIt*_s&{t*
zB%ldP6>B7S*4arot&){MclPK9q0~CZzS?V!6)R+#o>|$MQ>I#Tuwgr=owJ|H^sdYZ
z3FGoICL|>~JM<KITGAAum*T)5)N5*DMm+MhYdUzkm*^pWY+8~_+SlkMD=%XzJ-F;o
zM{H7j+Mn`6BlsX5gkpsL3yqXD1LxR1a5A{_iCT%Ch4&Y4{J_cSdTSbU96~wmffCl$
zJN<a?UyF2V2HMuY=9Q*YYDRMAU-L~{^~{{qTx>OZ-~e)PUR8FIb!;lW(v^pPpCmkR
z08&Pw9)*nZfZ4KIii@8A+RGOFq84$fFWr?o;jUu!EN1LKkv*l_DBL<O3n!mj$K@p_
zr^i1~QoDGi0X#?&JA2H1;52gfDfG5o%7Wxds3nmu2}!gqPjGQZvlbey9Baz7)GTXC
zUIv&D|FQAYlF~vjr(&HD8Il~IlRGvqH7ya@C<FZ~6d~F>NX?8DoW;@{mJ^HqXIg4T
z-jvw*^u+cNv02D}u{o$|(G^Za4?YoJnw>6;ILF23jI$<WC$tS0QS=asE#VH$j*BB4
z!I_ku>eAtJaVOl}`5idBa<;EbhvYPTV#A8EN_j1=SVoC;SIavEC^;RQnj1S=_<(pV
zVJD_0<i?7hadxS$vf`luNRQ7=80Q>_U_-&#B0V)7qXLXyQt>s{T&w#iI610xUQ1xK
za-)L{XJ<4I(sGG1oSRuC)$Gh+yy%b_st1*onw5l{=JI-~yBg=VHzhoySY{F@XJ)(f
zI0SpTWYX>Epwia)A;hG^ClTX?<(5t(V!<{gJ3c)<-sNRNlS8#R&H*N5PtBsKmX<@Q
zCfn462}v%^l7sgNNmFCvQ?iqi(%tml9Nf{<HFL(rPe7q{+Y5H<G#zzEe2Qz&$iZ<|
zc5)5Tuez)I?xjOO7zwyk%GInZ6=n`O$I(G**0`kX*ql6c0cuLo__QQ8+WIFeL3gbf
zi!561NlD@D+J$wr=1k0sM>Q(eX{aFo`!PyJPMY?=Dn<!8ljF1gHzg4&&i_r(NsCW}
z3J&KBJ0y}r33;%L2wilpkR{oZIn{6v76|lAE>%J0x98KKB1Q*-4M6`}8GT%Q!npWw
zTUKV;)UdX;c2@kVcA@IUK420$`F9P_L%*h`6s<K(w|$_$6Qc0i{!8zq@?GTQrT^LF
zcjNcLb8e+)NpQ}*e<np8R2^cDVmTq!!~17#!IXBkj@GQCblMlBT>|GQI69+lYqE!G
zD>Zp)O)fBM46DgLJ2NxaZO6zl8q`rufn-fc$ce1YL5<N!Km#3{m6`cKdJ+~jk&T^-
z-aQ?ZVDjL>GlGNP_?!$+QA^B;w}PC*rM=R;Z0N7EU7|~^#z86PHc2H*x8Y$HimKL-
z2svy%%Aq<E?wFYMKn~o6o|_=}&CGKDu4(WNPCQ0|x$zuF=D=MPXx!=jJq9j05JsGy
zLa5n$Y|VZ#zv6C!fj)f>=3MFIgy#^b!rtRst<>f_y|auQmu@M&TY9`pt4S|APe?ii
zCR)2onbcZxhG_5JXLkJLnzL1E7IWg(KUDeI$xuUhPB@{Oq)y!VAD5Yv>o$pmiAc|H
zJ2}zgyGYE)NzZYq3uyW>MTk?f!o4_MRa1!KP^NYl?w*lOFw-P<XNTdX+d2ee`W&|j
zMx*L3poEl6sAlrUy0gQxySt1|ByN(Hl;C1p*|O!JR!vJvPD@Q0hce>u!#TXvOz4h;
zX*`iR+dH-<SrbyHSSfgLl$1d0T>%9b|70hH#S5e4c46UGk&R8G^>F0?%^|zg=Gv+K
zap(NsdZMJXwA8HJ)C6l*c)Rwo@j34MSuBQ5j;XTG)4Qn(HoR6hQn1cpRW2u>O)o0L
zY^1wODX8uU$~S54jKlk=?xu!@JR2D*%e5|Mk56qu&e3$Rr5&8GNntM2UXl|iTB>HV
z9U|yxk6B;$m6nSmx2>3?tEBi8x`o0iyN%6DMlsAua8-1RHUc_(sw(PJ;WG`L8q`)+
zd`X2yH#6O#TK^}DAyl8^povbg#zT`j&TZMNbdocX>2e&>xzaK_6BDMWr_wPaCa9`i
zdxceQp>NI1nB<%ymG&96*dytLyz4OlIH>Uku=nUUIXBZKLsrHtIW053mU|0MYP`FU
z)Nb#elbVtNwYFP3T+hLqa&5FLBZp-3;4{T4#LA;B21Kct2=r(lp8!2te8SY4UM$VF
z)@%=NU9^M?=UY@(B;)8bbduOI{gWA<mFD!sc2-cWEsmo*=eSo7%GtK^$uQ!iqfWv8
zUwAT9>1cRpiwaij^LcdbRK>Apt>*k+e4;S=JYf&=G_Ec^K8fhm`Mt3x71_V_h}j7d
zR*>8Jmqn=3Nsh}xf$A<iJkU6deXJBb*e53CSQ7-behm(UH}G#IN<3nelHkyP`WH$M
zy=N_bHtIx7DE7MCXRs<~9@3LKs7g<VHkG|jAu4n(IN@KbJ1YAm;`5E0Tw7YWdXRk9
zm^Pv#>y%8FDLnS<%t5NlDv#>+Qqs649t$8Lx0XAI?mWC9DUh+A%1ln)*jy|KL2Hjy
zz8Sf(xtJPu4ojFvrW%e~rkX3AP<L*}yVXOYznt$?+2)MT$;`0k#;3T9@T<Fk_AV*j
zr8=qZCN+aDFs=Dc$(d;`ExXVy5mKgRzrx*IQcYSilb4$u)*d~4V9mkM-ZvIC)a*!H
z1mMvPR%FCyPo)bpz&yLcR^av#*0BQf>`Dx45;}XXsYg|(IgabO9Wt<JC!qT><lw;h
z?#v2{Zd_9W@0#{Xt?{{;F1iY=(4bw!co*f3sNT(CYTg|85vp{A@8Y?xqo}kMG{r6%
zQnJoY%1U#is;aWCT>I{jRyj}&TBjxFWh6LmDsgr|T{)+e;4>#J)m1r$L=sj&G4AX!
zIUV{KHzPfIUHEE&I}dbO2kV^wlWkZw6h=@gd91W0dpgN0?W1u>EXms4vJ1&B9g7-h
zdOJU*WRI0?c`k)nvP?`$%EH1}*MWvq+TAbRl5EqGa@{OAlx(pkBx{`OnkLCQF%@g|
zony^bxaSG?jm6@c1lJ|c^o#THbg2;_)uon$ElsW*w-q)lbEf7vjN}~>TeNc%A>??s
zSL59)!D%>H%<TCluyhk1eO7muu^h-_P#zm5#KB!_gv)|vAFseg;|Mz;-Q2`M@Z)x}
zf(7WtkH<X-NPj`OGELlHBR-q^Y7C(Z!Fam0yBQ4Xhi=^Q^!k%rwH%TccTXV%<>~%d
zed_5puyPKrvS)?~*EC`6IOc$AcNFVks>Ug}8YgY4yTyco+b42y<u04JIHFI3HIf<b
zdRi`y)3JZYCFeQ2a!wN(vUOT!MiO0Q>^8xxyP&J=+=fAmzPo1<yyv8$E_CZny0u$N
zcaJTE=g`79R5F#%ita|P<LbD7vK5kw934gp3RPCzs;^0vTuoy_HK$G^D#@+n)Lp7N
zyK%g8Ey20f`Z|T@{5C4BU2AK}3X?wwd4l`uRB}{n#U(hXF@~sP+~zas7N{KDbl{<|
zrfWZ)p9`0TwW@BeyAH;3re-7vjbjS5zb?61u+5(Awh)ST?u)Tt=Wa!UV3C>O+GP_g
zJl`ih-hJHA!*eOQXnloV^2EGM*EP$MWvUw$v1I2?eJt5w0k2y<tYq&&4J%or=bq~P
zUL5RPW+zchg#9TPJw?(XRHWefpDg;qm=E<#Rf+#M?iObIH}992G{s@@-#`9*SR?9q
zKZnX)NNnUM^gdA4I%f>QR`BY<4zDT9=GIq2X4X_X6XDh}jXu9yn|RmlnL;Ey&ROJT
z<isbt)Ij26(We&f@=qpkW%HPjm1hOTPKj*qv~|L*6Q}k>>{^N)L2-QhPez(`eyT<m
z|4!zYZkwHJtJYNi!wadU+omUB8hX;dv{u^TrU_{%UBa~dzx1GqP~QBzcdVxF{x@<i
zt*wxnU2xPurm$iY+k+CjRok&7y#Zl!O)LtSbB!Z8n3R~4>Ar_0xu|UT9I8&q&h0*~
zN=pm`+%4>JwD%M(G|QL^_h_4%g6+X>^dw@32<v@PuqP}QjBe?`7K$1Iq7G~5>q?Pj
zK?+&fWk^)%C@I}#>buI$-FhX-)<ZY1(%OAbPqKzGA{lEWJU(Tvo1K7?U-WW?YTKz!
zmaK(0Jhle^ZgqB&Z<cEA#v788ta$XYJjFbdDStdIOqK${ff$lYx692XcT#ws?uQ|V
zFhEYCSc@Z1*6CE8<f5jPVt_4<nI2zMdJ6WBU|d_nyMz-g-I(C<<|zqj@!2UZor22S
zvpdw_A3M=J2cMie1xsyQRbQ3iCqr%TG3C$*)m+!4Ct#$NT|)o~Sg-E+;U<r*Ddon-
zXJf0q$GU)SEJdF#yoRLlXjNmH2#fNP-KkQfR7*=14!MbKAK_;4ijyNxad4}2X7ypJ
zyG5*0xO6)zMtHIG`8@@mp5tbZyHfz3{N^D;pgvAYbXlwJ7=Y`#J;~PXh)=Q<_y2mj
zwa~HjXo+FJTg93bc4E@lJdaHfdb>51WLVSbAP*Bh(jDB+pGcP2>f<tkknGZtPuz^k
zC2K6HMKN(*w=3D_OihQz-c!P)W4Efy2u1SBxW{+N>^+tucY1RvY#MEpBv0`Y77C}P
z#3#5re83@$SZr<e7=P#h(o+-g;)Q{Ur(4m&GyxO0p6uP8r6WZlK26Lu|72HC(AbF2
z;&Hah(M{E~l6c_k|Kb0o!2hMd|E0kHrNIBH6tHs~ryvHc6|w61@FR~uHhAdZjJ&io
zqR^TQT7%XOqlO(l4?Kh#@Fy>C|KkjJ2BzG=NWtnqR#SV@!rp@NXrIS?C^!2=2)uNa
zeU)HeX1^uyQ}(lzm#FTjD9>-Ov;pNYfinUrk6t@@E#+iwYk}vh)(h^)JFSKLT(e%c
zQhUAGV5YpcthbEvrLt`@Gx#Q4S%eQPv@o|2>|2^!3Y-}H&22jNfeS+HoJ?g3j+zlf
zeDK{1KO&RyGEPQh^#ogd7e|Ny!eGB?8c@S76OH&2DA~l(q_Pt^<Lee&2@u>w3s~^`
zEP><8s{$7s0~R$9FVpWqP$Pw}6MqtBEqpJ6UeXFLq4y)b%%X$*odrAdmoM6xzfk-w
z+V|+)xBnx|g?JrLY!{?n9O=`CtGo{h7!bgbn1H8%f*Hq=$njP7B>~rAb1%Ry+4~3h
zbEKhvFi<e{X5ihe^S$XS{x0A-QVNougUC5D2vqso#*xqnhu;d0GzV4Mw+U^-5nG!v
zKx%Awvk!qJ`|h^a5W+Isav(MNUL4s4lI+PkNTAB!g&~C;u@+i^q6voG46>ZL$VXh4
zI>a}o4o4<|B-hdEQEHBiQI7#qlds{(a*$*nho?^iNx$>8um?%MV-WXg4)KqJ-3$kN
zqUT6IkmNoN_n85bewQGfZ-J!Ww!+8oB(a6D?0E_r{EWMoH@F29j5-9qZR&1PeAn(<
z%aPC5ehs812Jd2q!}~agXT9O@y!in;@uo`x4+td@9(?pD!$zNaLP>^yzjQy2WclR+
zsmU+eUBr=Zip~P5;f$S(9EmoL0t%+!g;g9`v}!+4FnE@}4$p(I@obbtbH#cUW&4Kp
zu2919UFZ9k?{lOAB}H@*XUVj1WOI|FO~l{Z@$M-}{x4qTh#e&T*7+J}&a5z1uq&LA
zTn0(@i)C9-XY2^x5iDM*?RPrHtV!8sY!%N=%0-lMzKj_YA2@Ie=ab>LH8E)tHaiO&
zg6I>;<T8a!$;mkdr{qw`#m$jsC@oTR#w8^Z@wAz$-yAPjdzqv21KOvZDjxWzmE(B9
zNQ{%q5S9#~Ayi%_RU7nH)Nu6V!31p4O-r`M=S`VJe&&Bc?pB0_hH<1I>=R&hQ&9J2
zUF5L3_kmf(JByv|&&w_&_vW{`j`DcBjh&Ussxa~kk02+O7JdypQ+Sr;$|`#j*a11I
zb6|hqz`#LLuBvoUR`fe^PD$}^xbv0b+b;JfUd!=z%L*$Ha$M02mdh%=lQ^F=<jf48
zEMT@z4$Gxg_O_6e5RPPqWC3S{%m7w5HqsG!p*!gVj3>#J`9gA)AG$b{BTGWB199L#
z%axKXxR+PGK(j5niGYD-Gh_!_5;M5Jxs|!!<B!K!!$WPfMSW}_Mahj16Qow;8P+gJ
z_7O~w+5_&M=s>b3I*zmh(dX(29>rwIzH~fCegjeaE8sVoEZN&o_a?CVHxryvwKS^3
zkq8jI)*ieklO_M8sC^O2d(l8(OwkD76GgGWN~4L<aO5#f0x(%K16a29KC6qU8xD1K
z!}aW**WeH2;G0CF9vcFp*M@<|GFb{g4$qs-o_PxR45#Oh#_u8Q+Hmk#C;NP#?~rH8
zd@cd6_}r$lpPkih!ack>QU^ruUl+U^lcoEw!|$KjwJYGao$Sqc;*KEdKMI_Z<MWkh
zIdTz1ul)l4JCmjG$xj^F3!?T1z)vu_(w>;eeY=T;iSItxy{d&z&@S|1?Nbc+2qsJZ
z^VJ-A3q-?T1O5S%EA9P?ks9m#J_VNgod%xqJL`}>=Q24$iTcmNd%U|rlqLTJwMS#t
z{)K>BnJn2C;P)PO?I8GZC;N41tG)u!@K1r?WwPWyAHSEeYX#tiPWA-p9l+8&7@QIf
zOEUS$&qr9EE(Jf!<VySc9N7e-em(~Oj>(dJDQc&mSo?DY{5F#%d!jO+?`l##1RSUu
z1dLOUM;c2eAMfKM_D)K`KXraT^*C|>M17Qkf6e4d|46T8EX|gKQ>qFbeRH&a*Ff}|
z9h{P*eV{T>iT2lQGIOMrITV;|P6bNlBk~d4KPP(*;ilG|h*sjXkP9UHXMN`&L|=<9
zTIEnnC~%2wsjbRCQ7RDrcgpX8CY1@#e_nmw;rZ`g$2$d4ANRoROqRkolLC^D5dtxz
z=VjI+W>#~o*@liG5%1#H5V_Ip*BWT^>kN$ciw5@c8w4c8>^}y*jX3|OfHVB(0T=l%
z1{V0g2P9;!d>(Sl4*&1W!OAn{GK7ELd;yrXI(s#>*AN3i`1s?<v-p$Jss$TU#F8j;
zS#Y%ZadSP=wju((jDZz{fKm1+p~te7_?gE92bnvWgNQ6t5y}&7s3BBFf{<8p;UUd|
z(UEaY^0NxkO8S*OPR^O{M}Hl+FaM>27fTAuHhKB!b+USLQ*a%PGQh|+Xy~i<CW;^*
zLtWlqTR#x#>0qwdO=ume5!#jfTXy>lfo3o+{RXGspreMiDtAG&r$x<u5RISI!B7aU
z2nk}m4&%=D;xiGVti@hx06qDa+B;A7QoKFcOY!w&uc{?}QhV&lzcl{yWG|%;axd~O
zXXec^v)rsOE6pmi+N?oNrumrIq;ObtTp3y<KM;M-LEx>KYy*#Cva6@6D`ASEXwgR~
zVuA6B=YaDS^MNla76R+u^|@Ou2UU5LB-CdES)Dc*Jd?>Yz$w+@n?!RQSpcH$3cx7|
ze!k>LZ%}Ri%TQNbV{Ot6@S9A&3vOq!6jiqz^-g<~5_+F#@F7f&15aVHTYv0g7J94;
zLDc`t;A@y%2)>!gHTf?<d-D-%bGCsWW%8Hcb|%;4pP+5+#oE^x@aarm2)>-jHTw7E
zP(RCk<v^vc5$NUX2Q>Rm2Il(~0c$eR<1zXLQCD%`sZ7oQ&t!5<{t4Qv5v<J`1x|^E
zH5!~!&38xTg|YDlHa;!^zsBS{;C3e0bpL$x_g-RszQy26nOq3|0h4R;Pfl^<`O{)N
zmw+#4@(S<|m|T<p7=Mn;0@3H31HP2WZ-Kwf<eL1K;T=;F(kY80zdpz0xk!uoOs*jS
z*YS;)-4893#oi3q-QGuNr91~<yULONAbS58@Kh#efzM;IXWxVr6JK+BaDX|`jJ}t-
zquHPEp>ni>novDj!N5>6YXv=p;oAO-Ew58Az>{}EE<t|;65<a&g2`jRW0~yPGsY*(
zQfhBzJ2|#E{dWFYoBu}69-MyH=D)F%d*`3d?UU4gH+6RC;WzF7nDIyZJ_Y#8Z$R5K
zEi|hw(Sp&pKwB~Vc`{OmKx$A$^(R4)qKRhQ153uy%4ud{TD_AQ^RZ?+UrSd9na3t!
z2SrllHK{}46wV6U9UDjP+w8zAVfHYLV!|uJk*aNnwMAdoo{9WF(Z0-MDcHw-2DR`t
zZf@{vLGywa26N<%;N`%z!5;v(1s@LfBKLytLH1xweN8AqrZnJ0)9b*+rft9-ro+I`
zO~-&=n@$7WoBmvXw3s={9JFJTO_Skns%a{4rOzs~{^QM=W{$LM+^VrB|4N$*Pj0cb
z1V-9A0ZGKBfxt(8UJksSeg}QsJ6{9cn`mP%X!1&odx4w$K0=@R6TeS@n~F9Uab!!;
z7U0&RZ9w;CkZce}4zYFO>TqPE&nCn<$()2ZCx#{BT@=_0?07HsTR``wyulTWh~g|W
zE$Dw+<^okVi_M=ja(JSPt1k<Eb@w6UM<KIyC*)ucLZ<a1(SdzP%$~laNpAoA*L(+<
zx9xbi#e|GUZu9kH-1%?SJjC3gZM(ph;f+HrP1{5?w6zEeYSOyBN$yuy!})tDbUtdm
zst#!&(;Aia0_Z2StC{wH(p2+|A5Z*A<LqBbSE(N8$11YO=AuifcuMu#gZl64<X^gv
zC;w9TM&>~JEyYW!mpu8G+<A(BZTENfFU4QF?#Vv}hl0^Cu4f*MjC(Qe?I{5C5!I}p
zs0DA&<Vf(|OpXChW3uz}6O@(3DBVKvO`z!nQ8^1dm&y6yJ)1H&&H>10%Q1eJThZIk
z51fm;v<_+=#E~gMQ-Eb5c4$PSS1(8T39Yb7I&z0F3cU7tK?C7+0C>df2(Z-a4)C6r
z9Y{i&!hiFS=0G|z<t7mfG6VF_20hSd@B(@pdI9?w`T-v@3<5rGNB|}qW&oW{^aR8Y
zL~Xi*_hj-bnN|H?+CP$XP|p4d<`yVX|2%jwlk>stOuoWFHdW0DIEF#TFS#J${;0|5
zTofI%eF0vnt3vuq@5RxtAoIu|3M4+|)Igh06mprs>2C!uhrL|E487!Nc-&b|cr!df
z8XgFabRVvllV)ZaeuLY<^>n;T$(;$t#m=CSpedl&L7PCwK-WR2ngwObBjD-uK^@FX
ziUWvzsp4ng6~zr;(B1YJGe+L+0_=9T8!-BAcVN%Ey?}l04gxwDht|e;$AosK&Ye2I
zx_9aUgYN_bEq5%y#&?<ko8M^(tTKDK{TxpYaGwGXafg9dx$D6E;OEfhE((4fSP;Ah
z_+juKw8hthuS2dfDw9ueb8CkvrLjT7W})r7DGc?4nufIND%aNw<TQ2sEG@%2@>*~I
zMy<j-$#iuC8n<rSxk;OdE>Z|mSnTZ)ss4F!t7s$HOI&jISN%)%@n7}toCloaRa^We
zy~|&{zh3gl_@BMM;cxnP?go0gzf}KA>FwMeNzwST{-tpKs(&dywfXmy|D<mAU-d6N
zZ*Bgi^pl=f@+axlB>z%*kh=X+{*&DI*d|KSb4%AH{{;5qLG*eS_)|>I2cOI2Mc|8>
zycB#nlZ7zKp!Wb#|7vhwCI^69nA{k=36q<Fw_-B&Pv@2k5Z?F2gscEx$->V00`vMH
z8ZMo`HiKwAYXP6Z+7;?QA02}^AnI-|I3+622Y->t3&EE$c{z9?lc|4#_O3T;^J2h9
zFnJVsJd+c^Co}nJ@P$mK-b3)mk@xT?Y5tVHO6YvN%yrBh@d@<_h5p@k*M?cZiUhR(
z2D`zIKDs>#C>oxeSWR0Ym^D0!_(+ta!Gk^)Wi$AS&qaA1c-b$^J-oQ;&*>-<eG!Z!
z5vHKgmqzqf#E6b3ab42x6S{t+If&lhaW2SFFGS}!c7lXBVoYyw7}vLeUupe`<NT4M
zE~x~5&ocjw;J2rPfBM)|hfX=wp}X>1_CMTS7u~zgA1iDMq_(QsxU4g-{JC)%jR!UF
zLDl{kRs+ykmO#w1?7}R|dG%ME(N|}_uhN@MNKJ8GC(fJ*IawGn+AD6`?~pst_zP(!
z2IUq*pf4V+*r6cxdKi_yUS_Sjj=4U<@d@>Z{-#rCXXKyg&_LU_oXu8X%OYVF;mAe9
zk(YEVFS!l2>LOR0;W_#zEYIR)ay+L>iT;y9#cNawwM?s$YL2QP9i`gppCsm3s>h_z
zq~DT%$1ojb$=*}_<|%y1Uv23xx%;c(Oa2|>>?lk2e>Hq5ogBk-l%?mB+)497(sil7
zB5|qxklah|9K&>!C40&JpABDne#bB!<-Z%g6fegx9p%3pzLZ}b!*rDYZuruBaSYQ@
z{=4Bz@5?bvNBQrDFXbo4FdgN;8@_XY%Q0*!|K0Fwn;-nE;Y<D`?i_FFw`4EnW9fZK
z*QNX+aVfoREC9)!6rMAe?Eh-`f3^Hd=_-vkr24Nei=ebF%ilS|&c87SsbKSvYH&*Q
znY7^TnA`z8lF41bDN#33;FP2^a1L7h{Wtnwx6ntsQ`Hx97yeAcENESxHM|CV)36@+
zp<yd<yJ0)9#IPTD$Z!aF)Nl-V!f*n3%5WBV(Qp}f&2R(g$&9Xxc|H(zu^($^4zl$#
zZ}>x#4x-n4puZ~VbsTj$z0eQq<J1>(zE2bKHknRVl6Mf&LWNHG6uG9ku0fwxb5;90
zxvh&b_Tj(rDKPI-uQ2a4<2|gscYp7Y)C#$M2`RImL;vRo`^6f1LAy?1bt{PGgS+7M
zPl|Fo@Ig$@1fR#`LhwCIzEaMSt02#*gFy8%%wj6^dZ1D71@zXp0JhS11a{T;0`}3<
z6~Yhc2LgxahXRM|M*`#Y3BY81CUA;=2GG?sB8_nW=J?|<7gr42ia(5l%)w@?OvAbq
zj`RrafnJ>6W<oDC$QBIjUeOD^INr`9WmI+*aI8JSZ7NCk^i+PO_DOQrfeF$$UGgV!
z=O>W-N%qe5kEigZdO`9pt)u^+3co80ND5!#&f({4W+68|t9b#qP_qd5ie@daNV5*O
zL9+q4S+fPWO|utxKywiIndWogNzF;%x0>&OXEomgFKX@s9nCY^Sz3gzeG#}&`x5XK
z?OI@wb{%ko_Cw$%?H1rR?LOcE?We%cv`2uY+EQSd_Iuz(?N#7ytsPj+)UiW77;3X3
zSA>Nv2!m~S!*Jxi@aYr_pDM(acUL0EuRFOP_}R(3zykXY<d)s`1HeP}qrfliCxNH!
z-vX<fs`dDPZ7f4h(Oo5;Ml^qK{9eo2N<7GY=!PlLrz*orYf4m3fo>p`=?9(!pULEB
z!JlVx5%_yd#=`k(>(Zq(%Gb|Axqepv0&szT5%6XGT40g>L*OR;7T`AhUf_QHLEs_%
z5#VwC3E&z18DN?Id*DU=W#CmkT|ZIXa72d~)2no)TQerN0Pn=)F5q3690fj*$uZ!g
znVb)Phso8#$1H;qM8j8uYnZG9Z_ngT;FPGFF5q3690lH&$uZy~nCuunr<3VWf9mu=
zlg<lRSJwjAN@oLx>)Ha_>FCPnF1lX8zPf(E0lI;}p}JwfCv>BMvAP6cvTica(d^Ld
zK#3DeVmDnk*bWnX?a=Ljd{TE3xLdy)sVb&<H$ykHhQkcQfJY5SfoFxbQg7CqrE>I^
zeR*Xm;IuN7IE7XVG-<tnb+s*kt+X~^xV9~@owhwNQri*OMcW0~P1^(5SKALbKsyll
zsP<9d2<;QVG1@V}WNjXhfao3QQz^ieOxA<fWpaIRA13>O(|c0)k>H(}90lH&$uZ!=
znLJZB3n}odZa#2<ZV~Wh-K)UGx;KGKb#%SWTe{`ImAX~HwYnnU`?@W_9lG7X{kns|
zL%JitQe7!fOx26JJCM7f??8#hXBapoDzC%ZAxc!<4o->6AE19hiONYRTa>7r0iMld
zs;iT9bk7)P8aXoCI2-t!aV~JaaX#=x<BP!m7+(i2HZBLQFs=l?V|)j=#<&JpWGn{0
zXWRnZYTOPK=gIdQ_d`BtJOV5=ehvKAcoyi^WVv6{Q++M<Ki3CLCF7AkRt_6YNPoUR
zYOitpIN&mV8E^x?0eD?@9kX3S<wK!M8!jIX92+ziW%0G3*MO^nRsq)rtp$cO3~7iq
zpy6l0iROuB>}|62w?J##=BYLwo?n)Uu%DIBL8t?iL!iaVQf2`k)eJ_tTj#$6eZ<nh
zF9SJpEU*lCKJX{tZ-Ku7Zv@@|-U_@8ED5@e``-<+1I2xTrRFQRe=A!ETCT;mH-X|V
zAag|s`Zkg&B1L%qPw<Dk@gL)9OZZ*DGX4Tk+*vqHMt5+v2^x>E#d*^uK|3LfPdLLo
z1NT{EUJA^z%)rx@Ho4S<KJ(Lf=B2BbVQw{RP1YL3bj@wx6UDK`RreS5v*Mb}9niDE
zrXF20CuwP^uI(}NW56fPPXeDeKM(Y7<lRWp-ugomhjPj^anX<iZGm`N8w^@vXywpy
zGp*ckJh`KuS4xE%IEoK77|Bve{K2jWz69AVz}oF~=^_zJW)1hIR{!Pui;wL7L8Q1z
z59G|<`>O7$mZwJ$4-!iCFr{A);<L8<JKNW17o`5QG)|TlzIZcxX&f!>r<KOn(z@u%
za5-KklVkc@sZ^=dYK=y#)#>zlgTZJtnY_H})bWO?3sVoKK1>4`9~fU4KNx>z0+<P8
zCWx7aPA1sNR7S*upp>IFQYv*ogVG-;?wDw(YzWz`i~@F7J_H=9%mhwUehWOKv;$*Q
zGqA$AK)n%T{LSj^z+>uj!0**`<#Np3U6?8V>TcKjknb-9zI^`x@XG!Bz^sZ~l+{TU
z_Z;dfcQI^<9#{l<nshepFm^R9Z4j&KW1en~Bn!-%#!vD(tPBe#sm=46^JIVXADdgq
zrRJ9*&u;lfOP+k)@*Cj&mW@N3$(x3@q^mM*b!<GTZwml66h?yG?)z4pChajE<VnAZ
zkrm$LiHb3hHTJId2r?R@LTO~?E_U>q8atlp62WK^L*hsl$tR0Q0a-^%NGT~JS5U&u
zTr?NQ<#PpG30H<;XEdMBm+(ZEFC+4Ntd7W6U^{^d0crBJM4zwEHz3Hmq(1S@_sjPu
z0SLY+I<779Tj4hCNF;96FaIIjZU~9XA1~Yz@o;a%{Vk>Z7pU!{mC<->cZ6N(eT;q3
zVv8-g)>n(!p`N}yfouHNphapQNZ0W^8TcenoX-ifwL?9-%=Q-Wo~;5{zo32r+M?C^
z)#wQp9>qB6V&O$#R#8?FcEl8Y2fSW%1DIvcs_YLs$8rqPj3;Z!2S|X8<YOWyyZL>H
z>zDjl;19y?&foaUSX6Qa!*!12$!5z;<XPGF;K;z8!MlR7YA5(8@Vnr%z~6!|1Mde{
z0NFmBH4V@vnb%l=^VZA<jw;@8cUa7aLhkHlkGAvVd;9lxGyrZ*3o?qdB~Ox0rk%zv
zrX|RK{^o{eIq7YF8oBUAvl_Wj+qfli;kf3x$a(vkUqmkasd+i%SuI~j{yWw3H1J-_
zM#zOtLR%mg_6Swm_H$aB7jj`en?Eqf7InYT5ub{76%9#;ik`@SeJe&FFOI4h4OwmP
zY;Q|O*<-O|WvqQ{wYWOhJ5v25J&dHkmGqX9UQp6ANO}rMzbUPckn|4HdIzZ#Ncu!c
z{~)b*lhV&5-I(!4$FTARMD2%y4`cFt@aLJl1AHfwuYq4@a<k*m?0~4>k>I14ya0S5
zlXrvfVe;?be=xZfbXl!I)bAMZSSG&={tA<66s34e>5xb-!u-S@*sHntyI_v!GP;NO
zg!!+%AzGZfDJI>aH|Y{2LN4eY7t-dZN&SSj!|R=6Khf(2*^l_r#E+ilb)7C$%HO|g
z`it}?yE3oMX$(Gp^pxHSxJlxg4>y+~nSYumZ+u|Bg;){CPAKwteli9ahd-1}Xa&({
zCu@L(_@mmdcY*KY4?R7y9=I8Ql0IxF*$Me1{*Xraqch~q&FDp$y8*ikJ+L9>F_0Ho
zV$r)JP4k*#e9+w98gl3i^tw2k45eOeGXurGSGW67sL6X*^r@i^-#|XZy|$2TL`Jrg
z9guHmZlmX$EsR93=&oT5G(|rh<ICZOF&Ir|8KwYRnc89vaBAJBFd7nft)BMFGQXzG
zHBUth^Ud>sF_u^h%Cse}$w@xG$r8l*=O%XGq~@<6=J(sY9QLaGm9SUCQ2N7LLYLDo
zd=T)_@K|7e_&nhH@SQ;0+IDNjcZ-+cV)Udr)|Pc63%R#s8g+a1Q1x}STw4!S=60`k
zb;{6uKj%Hqdx7^`-txLF>xR{hs5`RW6ZMw)Yp^eTZJ;Vh8`L?dTTo_`*zqGLjGZv#
z*s^2q9sA_iwqtvbDUa7b9(26Z@u=gyk3V|6;Iyi&QCZV6dAYf~ae0gKw&juKoyz-_
zKUDs3c})3Z<-^NImOoKGraZ1Zp?pGlPWhDbr^{!Q&o5t9UQ}Lkr4+{sMBR3YJiUMv
zl(8|T0$k5z6Sx<X>w>pnaw~8flf%K=GPxaiM<#ax@5SW4;Qg390DK^mW56lVlyw}}
zQeAlhyPgc5#^fyUTqe6d#}%w`rlv`>z{m)ZM=uol+&v;6e@o!`vqQTRm{RWqfzLkq
zy1<i;9HHDCTfp}KM+xmf`P={TPX~|wVX5tH@I?*xZaV=U(d^~~eNU2K)?w<N?mbDt
zsb_~pOzKGvK9Z8YtGFlW`cmA5;pcirzp!aa&<FK<#aupr;)4HxUN0XXs62WlzZb$4
zOn0nGq&x4Y0UgI;CFBIIoFcyiZxK2!6GvnusA&)#i#-7x8<Yf`5HuM$HE0KrG_*H#
zH!f>sX^pZFZV3lIVtE7@C#)rpYcm65v_@;5L%a9<n)iY0)_er~V~rhXD;|lF+7rcz
zKyp`!-kQbU39U<a`^ai-3?3wZm#}M+ow3564Xj|V`|Ae}xW9hqklX9gOFwseJ!a1r
zZm&1Fam?LyRLZBEuY33N#@vGUKwymbP~dRy;lPpJqk(bWbiLAiZ@N-xkvHAzzQKDF
z@MG^Cz!L8g;BN1Iz=Pf=fTz5@kVn1i)(8659SIyQ)KU3$7emeuc`XF};gHq9wIS~V
z*M)2bejKs`SQ4@ycrfI1U}?w+;Hi)^K(1Jc^w$&{fpv--0L{hCfGvtcffaZY^lT8k
zA;>&ralWep{Zczfye@|<XR-n^T}w;dD<LbHtb(j!vKq3Q$r{KSCTk&UnXH3MHK#Nj
zJ!CzT4UnlOm0riXVvs1CAdCC-E3il3&i3hN$#S4u$dgS5PLn+ioFSV5oQ-}QR*uQ$
z0O!i)17DE609+tj0bD6N2fQM)1Dgf4Le3u@6c0=mbQC)U?F0#~AB?vU90W86_XhS0
z9teyH9tIo{JOVf>cocAS@MvIc@YBHj;Elk|!Fz%GgTDfv2>u56ozQc<7JLKp??V5v
znWY)ZQBrXd-hyZ2xF<i^t7`wK<6e1su0#}whC}z@f6Zja^Auw0A<iJd4Y;%q-tkNW
z$Nlqke{4q(bzg>l`y~*S>00{{AVEfoNjl}Y@l|^p9oN}?j@b-5NN|4%?m<+RjJUrp
zPMM04!xiOiV2SEe72bp<6Rr3~&1GP+Hd9MySS|yTb(uQIy30Uu=1$biCmS*ixGv17
z#u!In>>+9n&8C)U>7%{+BkdM>Ee48bRfxMd`v|+-OZ~paj+}gl-R&^}BLYym0=597
zg|k;;0_jtmSGQb^kj2x03N?k0g_B#Z6yAm`p5Gy!!XoYxtm^+s{a-)!;7>C?kr#z_
ztRt*p6JsG^Vk$}9zoaAL4v*XXtAdB`jF$wTk3RIG&_#YVXLmnpajE;^3DoC{{qOtJ
zKDpHU+ZVd+?e+Nm^`&=1rl4CWG%rvlgq=8_w{0jPH$yW9zP}#lC;Z%OR>~AL`R&!+
z3l$?<krlrk{ybp!SET7GqJ92QBl(sHS@=gc-mAAv<#p$k14$|C1a04bVf-hyFu(HU
z7)|9u=cmNJ>1gGT<Ok(Nyw@A5n|QBxRQ_r+X`*hSmXnE^KE~tn{l<G<?fH{FJ$=(K
zI-C;t1vfSDX{5EJFI*DTm@H-b!Wm{G(-ex@!OReAXbDD;VYW6TTo^%iwk@-bC2!g8
z*~VbknmCTUwd#BM?N#?z(b43L)j3S3=(8pmZB*8pxodoxX7MP-mp&L@epi&vMwX(k
zG0XmzJ(MhWm~}uxG81gJG-}+WNz<mynl*3UyhV!^EnBr}O-&oY&`lkog0WhyHd|PD
zrD<DfA|l$s2>YBmRGG+1(@`*;oJ?mY(}kL@Ri;~|iE?YA-I?xHrbjJ?J%7Selb^gc
zA#<ONOKDwkvUt*=nV&v=XGGsC?;U&lgQcsoOFp{)O0)J+e;kf@=ZC8kPleT&A85SC
z_cg_vD)0RBzck;Fr<v8pKOkdd!Qjp(K5Y5Db@pRlkl)Pr){h$h*^Z76Jv{tq>E)uk
zJqNaZw)bs*MogFGYad-1z3}B_kvF$(K5g-`U;pxmzV5HFulMrVyJmXV#L<2^anB6;
zwo$7^bNiHkT<^>n-8W_7owWUxO`h2O)w^R~diBE89}jj&fARPug=s@?{G2rHef1|(
znuZ3h-njp#?{b3&Y=3@!R<}*b{bauz<J%3}GG|xNTjy@QQ78551^-#n@VQH$4{34s
zg%$G*J1_Pa*L`t_Y2D*n8w}QrKW=OPPUOz$m2W+B{p8)JzVA45iPipG#Dbo^_MW-)
z+2c?CCw%qp#$C%FepT1w&Ynlqp(~PGeBETjq)~78Pk;W4rrEcCPn<LEjRwb7J#lz+
z(&m@bviil`|82|ZG4=ZlTl3<w*^5pUlNYvqrTyc=aK*<T_Ewg*X}IuEl!@Q<!FCx}
zcm9M<FV*QjDCOIqU%z(r^D7%K=DhZ9ZlfRHYxnH=+Z}!i%sZRW_p1NIpqBgQWqvf)
zSme7S;NH+~1NMJ8)%@l+B^6VSjJy&2-P*QuRR_Y>dwY#&p8soX+@muJ{Wd*h2>D^!
z@>f1xdbyyi^T798-CTF@m#tl9J+?UBr?q_gCzDS!JC|B7VTeWlG|7)HF&D&@c`b@5
zwXMs#qMqCDV2icme)4@|_^HT`r`(dy?zOkcs>BQR{`2^;h>f{7^e;SoxXrt1zXmRS
z;@d9Up1Q}+?6JGi+hfmrzdZQM@D175wDTW2)T(Iw&;D<YJl*M&X?K)!`s{DEI{9LQ
z*M^>Gzj@N{#s!aj9{PSpdBeBHoawe>dIk4P_g$71@#pHi^yn91>nC2-%<KPY%fi%4
zev3zZ-Eqs*+lps<?`!%_(hv1t9df+gro5Ym7Y7~*c`yC9pk<@K>$?5v`?6U*_cUIa
z@O|A^9{Z~8hdI}E&ky*lb@7B>0+x*Wrt{V(@2Z~bd!YH6lplRwA9k|CN0a|BEgW>z
z`a$O9;N`Jrqjt`)Lr09|wK)3_L^ZJzr!v*cI{%igQ#-1)t<B!qz2uMjr8?ig>%X?}
zo$n{zm)@IdoC);LSX8W1YqUDO!D#ZT<6XC2{RTe1e*OW0K@G*~v1zmBs25we2?@2L
z3TzwEu6>8dj-5Jp>DnzSx_ghFy?XcQ+pqsa10Eju$e@@<2S4`skfFndj~F@XiP2+X
z<Ko9A;9CJH<5I^@NK4Pi%$k^uqnsyAo-%dXlTST8eMbH>GiS|ycFuEi=goiqg%=kr
zT=de*ul(oL*Is{P@taGQE_-Wv!HTz6u6k$nnze;R#qYlN{s-&UZ}@QIrp+IHyycUv
z+qUo6S+Z;Qp1u3_A2|5wq0bH<`TS_<7hisL?D&b3r@lV@&9~p3Ia_w_{P!1rxcK8w
zmwx``*Wb!7U%7hi`i+~v|8eW~oxAt$SJ<U?K%6V6{8cG9_H`;R{(mJv;SAji)Xb8S
znP{;hLQf2sB{o6PT!(l=*<26m<_7GnP^xkc#7Q^}vE#!`ETj=>OqvKP=;k;tv?Xap
zT9Y=|cM%HRl#PUuaA-&)pqOq?IzTzy5!$NGqzhJ5bR$tDn#7Z_B!MK7B%D5%LdFp~
zBRhelk#v$lGNHVlNU})|$t8JY5}Azsds8u19z~vj-hT{<g|4eR=|OsuUZgk9u<J|u
zk^bZ%(#rBMR%tv!20;n_C>cy<aF0V7K9me2!^sGYxSu3XVa{MWX2GSoB2RqL%$YOi
zf+RM((%|}B*c5m)f|t1^9u2~s>*=<Y*S+XnaG$wz%Vy3cRGd9~ZVB!^yKE++;_3Et
zS*$$WyfRu>{>$d--!|g;ke;xv%)vC4$s*)(c`t{18hqG%nQz0uK>UlQQV3LPwR(e6
zt<!4NI<-=%#5PqRH7d19sn;4%iMlgtmD*6(U{soDHBY@LR4R(7brFK#!=y7B0_!!X
zSC7u<33GZrzL?fS-Am{9PzU3hZ-e@<#xI`+4SaFQ2NQsheSAbu4Sf9l>(zxzIt>^Q
z;P2~Kw?5?ozV++-`v+o5u%0h!^ZL}gpP#R<zYmVDg##FB374%=66*+M5i|BE5j?cS
z>roe+gbvtDewQhgUc5@FM*qK;c`$nK)67qqp%F2^0Q9v)TUwCrmR=YK53nq<^d>J^
z{sZ|<%MxILWwk{{-nV>iF_WW~FCibZ+<<)3VsFF|b7M<m+_CWz%#18;{2}CT8=nJy
z)O1%<ExFay-V|fyW+lxZ<#sjS+Z^lmn*RX2(%cRtEoZjGnueAqf#0^g3#@2qZv}l-
z>t3y~N~iV1z?OH%R&<mlRwP6Btg{E&>yRLOLp!ut_A$_qoVQ<suH$F>uekDHX3_lx
zd0&09I?A{1r+0o&*c^3X>ggATzfcnO!il>b{Y&;mz47bDkTFLOMd`=!TN-RT8r4Z<
zELQdUGHQOnkpWZQJQj6EzwC(R{D~;7Pw>1?0=|wam>K!UFMYp>^7=Wv?6H*ZqDqyY
zjeB<5*{Ic>P7uYevM6Kes|~|;o{Rc&T2x=z$LFI`ECqKyEdD;~c_F+DQ4!1DXf|{9
z4^fBb_FX{6UyOQO^~j0f0Y66NWbHVvY4KCk5uP--NG?Tf^oqIv_3=wl$Li(ZRIm9t
z>U8*!h5yO@C2B~)xwn^g`!(t{b+hy+#cxq*H=~LdAN(yUXZ+X?_s=bl8lpV<d|B_y
zOs^{GS6$PJsnY~TH-}MydMbix#eN5aFNUFG=OHk34!!@&P5RThDC(Zhm_#o4K9UZE
z55v%*bm%8Py-nwuXgGB4<<z`or|9%Z6L_SY)`WEKiu$MH<mX^04?Hk2kn$EEtk_29
zu##aY_ni~(OS#YJ+%M=@zDI)%izuh@q5PLeKW<3*uX`W)mCkLAv#!`qIimS8<$Z>i
zr&8VvhH|eSY76D`{uqvXG!|lkz9bZX(DC38GZKn<SmhF|3`UtcraT5DDqe-Pr>fh)
zL`{+g`be(<&~%KgI~H2Ql)B@984WTTU?rSSd+2mzzA|WYG`<>OFTdW<eXR8_#;okf
zfKkwQj0uPZb`I=<G5B=hMDZ@>t|+a2&HaINEQ?iip<RHyjkiI&Bb-idTy0v7nYGo|
zfqw|+nNJc<A^&{sQOtgb=SLqb{In3-GU0sFD@9j}IPy#JFU1@gTrn7>Y-q(WAZN!P
zG1`s5V0$ny-X32=DSMARFMCn;w#=r8Q_NK?QhcY3Qpc({;f%!DnnKNb%^8hc+fo~*
zjnH<`cGZs7&ekr_zN{_OuGenV?$;hdS4FOCsSDFZ=*H+~>t50=(Jj+`s*~#t`a1fS
z`ri8f`eFLn`WN*t=?nE6_51Xn>d)%0=;a23p^l-qp}%3aVS{0t;ke<XVU}^8@eN~v
zag}kk@m=F5#(l;E#(t(ZOxsOIO#8k1dk^y-ftj53-aEZ_d7t#IQ#ZeX!6)5kqEE12
ztpA;$;lU$=p9mfkyeW8J@VCJ?gBO}VZEbB6+ooB_nvf4dJ_^|xav<br$jOkiA#a98
z+ZKiehugzHSo3+Iy|8()wYbCGu6LvE_PE>o?qd}x6?qju+NBIN6gsnEAX-oLMV{yf
zqVf*#T}<u{ePK_gGu#KhpUL!GPw8yWGmxdTJtLv1?g*mcbO!IjWV-KG+Iu?yI>v{Y
zzHxVb%%Os)`%l47GPyf)WDgL%-Ua!x8;Ht1kQaM`sJsMRI`gYLa%2w>y`C|?>io2u
zkSWpY9iaV+1W~ycI3+66J<Za-=DDY#69&=i^wb9p`l|+<V&4KiPb+$t{n67KgI;9{
z`jXSgOfrwWKwiPA4@<~0oO`|&E!>A#NwAgdBL~S*v~;J*x8w{dBR^oag~w6VT29Xy
zIWNwetH(9q{J21_A!p&5a4onHu00pYb>_Nq{kVs@k=$r5flK9bxhdQ<?kR3M)^N<^
z=5jA^3%Etx8{ATEIk$pa$-Tp^<%+m>x%Y9{?`Ccbx0Tz?9ppaePH^9H=eeJ_U%5M+
zj92m+UdJ1GFTNh{#|Q91d?UUE-->U;hw>482fh>E1M3qX<_GbQ@+0^s_yj(gPvbNA
ziF^*9$4};`@=x*8v2tW4zmQ+dFTwi7mHa#WTBe^AlFAL(W^#>e2BoIeoPKluFreG1
zAhMa9iQu}HpUH9L^_3xA-a4Z=U3Yh#7nd#ge#U_T(?>4<&_1>}=U|HopLiwCe6H@1
zVZQbjpO;)TDqo6eIqQpSds=;S>YGR8hsiI`Z+`9DZAEtmPnPfc#_z)WOYe7iUUqrl
zHh)>t?Op4mvgcfjEb@EbYwna5r}Or7Ma-9O*_AYTQj>?@_#-_m^6obk-*n(7t?+$)
z_2DySP5<^yQhWS<p~Kj#Bhm}I{1&lv<$`a%?R4@FZRX|BQ^#K!Iqf%f|8eKLe?M~3
zt~o>QJ=$|w*@nF-8$SyVYkKAJ<paLR{N~tq_dXbtHf7PPXAX7hw`FRVC4MLJ6a}~E
zp4|1*JDLmr^}l_tanXjn7ZRF2cj{Kx)w>TT+uunZHw3BymeJg#p6ewsPgY&8CHXP(
z`g?}9LH|ud+swabj2K@AVD#7yqr)y3!41V|Z~{htxft&~M;4OT$YN4JR-xP$q2zAD
zT7eRw<bFwxqugE~KarowZ{#Zat7@UV($Z??8lk*4Ly2vLGHc_)xppYGUAXStLnya{
zxJS7sxD+mro5j6?61o;8b33<-+r!awRt}?Ne!+c((s_zIjS~73ca6J;Moq>mcx<|6
zWz-v`v;iN;2lI{jrYNJ~d?X*u_d)p_%n#*<^CMA0$MA`K3O}CD7Ru%f{uzEA{{sIC
z{~EuPe~T{=%I6xskT2%n=htDS@kZ$4KjV+^NBOV#Q&@j{iND6*;_qYgw^F8+`O8|!
z+RJ*$9+EwbGsQ;8MhRJG0MhC)jE^T^%$tL8?k0Q%WFKm>v*fLYKakcI8=gK4e>1qp
z$X;$A{`TW<FP`)u{yxRu0qzjac>4^`eHhYJJnc1{FmoMJZ`oqm%d!o!S7n=IZ^%Bz
zuPw4SWuM6CcSZ_iC76lZC0i-mEn6+yFDsON3YVpDc@r+bfXf}hpUAGj<t9=hI{}wh
z;c^fDR>JjhxNc@CMd)A1Zs6ByxF~?@H{ogpuDpRzUX^*v!{znl5%PxeZgPvfyS$OS
zhrE^iAzaN5jF3MQ*iAk&u)BO#U=R81z=z~>0>{b|@b_F`exNsO>%q1mY%Q>T7JrT4
zq7`h%%I5|?v^uU~JpPv8FRtNR4bS2W2)z-bLRl-z0HoSJ^3du5_?wFZhOx#0M9Xy^
z_!K732Y;T)=P)~e7ew8dQC&#qeGkVf$5;@(J{5chlO4|)cRa_n0eXJYS>5!k)a@YZ
zw*=hXxvA0U7f5>&o`yUfMBOg~m%hP4&s3-LZuGk2`R|Tr#XFt_>Ugeb9A@FBgQ#D6
z_H7dDZ#aH4qZ8Wv&aB=48U0b|tnHC#=cO~f9M9^A`wHt5Ks3w)KjFDRRK~GJL=O^V
z`kNWC|J(-pB&ioowMSB4db(^n()&5#bZ)U<y+^SJy=%QvkA8K4G5}b;r>#XFTd&ds
zZwdWv@k=4%_f5pU_ekN}9cq&r^Nt3SH&E=2#|!=NbfF*qOM~Akd*jD^PT=`Z`<w>y
zz6zv)+C$HLH0zm1A#G~znRgHEj{Z3(^v^4V{<(qm&*_(jTzlpR9D3$wg>R8K_RnL4
z{`un${d2utU)f9dw+A@&)f4TBl|A-9dwz)jF_ae&eUFcTKh9*jwl9UrGr^ZIc{BJH
zCT|7b4x())UGukxUEc?Ol*vDX%Z`iTHw5p%<iX$*m^=r3Ig>vD|BA`w;Hnd%-$vk_
znLHFclgabJ-(m7@@Y78G7W^EO?}67lDTdPkJb=mV!5?9A4EPWxXMxXU@_g`xOfCZ7
z&E&n{pECI~aC#2QFwE~Z26sM>MJgMVi}UZUtLSQ;kr&t4xz5XrtL`oetL~(IwRG*B
zI7ct8z)KcZ;JKTrr)%;YXX?fEdEyC{j$fFlK6g*Qsqi3k_gUs#vz+8rTj3|3iaF1M
zl{#)#_^E7Knd8ZySn(Ie)w0@8Tp=Kys41@e`!lNr9N&ziOxNMu5?0_`5!T+6+2tA>
zs058W)=Svs+9Qw^!WFp=iZ85nMw-A)M|xebmFx3xU8!n~D{{kR6cL5sQf_DrSy-!M
zR|xKvniT3waIX^FE3|`fMX7y-Uf0b73hQ|)l!AMelCIfR>b3&a3aWEasha|Ybw2l0
zf*ZBqMkTn>2yWDZ8)5y=EwvbqHjMfbL(sOQ;b`bC2w`2&6}2V+vRZJX6WthAP&bAp
z^t#|uST$6p)@S01MsTka?`zzJD|#92@Tdj%I^piZ%AyjTny#!+89Gom3aa~23+@eq
zdzEn@y{@7$5mq1NLvS#T-;5|lTS5s5EqrT*es6`!j^E929FJc?yLywgt(|melR(tH
z<2l=O%r2cD|98jip2q0|>xuVuJYSrS+4q5HeE!aueFetv(mCC9{N58p!<-0CiOP;=
zan>}h@5sjTp2qdhVN5^2a$JvqVI2D)q#SiWh~85H9?WD5cq1k^0jEUWGzX_d<(A;#
zOpXBWz~qkLl&G7|;FPG`1Dq0-`+`%Va({42R2~3MiOK`P2Qm3k@WD)e9Gnt$GYp&(
zl}CV6qVgzkN>m;VPKnB~;FPEw4?dR3iQtsz^%U^&OilyOW^yk0WF}7qe~QV|!6{L{
z`QY=I{5<#)Ca(Zr$>evy3z=LDzLm)jbhZQTLF9k({4%ufeypvJ03XQYap2D|c`5i?
zAlgq@4*m{^)(xw{3z=L5{w|0<=lkHBm|O~eiOF*G2NWRcMg^{AvH`pvlN*2sGC2~w
zBa=IWcVluicrPaR0e=WY$K?aSW7zdH@MoD^0KSFE$H0GMvKsvg3+rQa0UyHTEbw_u
zUJG8r<n!Qnm>h^cLj>zT3<b|%@*?oHOg;oo(4T0Jegy~acupLm>(-1B_7s%LzC^uv
z93wTl>hdb^21aNcX<%+(M!7Oa0He*(z<A-5wWrO~A-`x|04z0s3p{5&2mHZ&5%`Pw
zGLX0MXtz}s6;Nxb3#@Oc5A?GH0h?Hw09#mE0^3+ZfL2Qwu&pH$*u@eB>@DoAeburU
z@>0uk;0nvzz*UxafY{OlEVR4_TxVGi+-&&>xXp3|SZetK_?6`=;Bm`0!0#;I0WVm7
z0ID178sog~#+!g2HU0=#+PD;WzVUfrLDLmzq~CA48Mv)!32=YY1HeN~KLZ|Z`W5he
z)APU!O)mg{Z2Buu(M;J4snjeQ*rQnwU|h2VV0yC*;J)Vjo1>qF-D&t<0(Pfi^)Gg(
zVJ}t7`@r~$c<9!}ovY(2#zF34?}9#hH+#3rp1RxDC!EJ1oyqV6+A8T=TU*dBeZt0b
zZJ`^MzHycVnG!7%CE%2(d<gt7liNX0+@9%-FM&(n|Dx;uDN*-yoxil!-_tt&9`%qC
zAnLvkI3+6Y2H(Tvo%In15WODN0BtOY%A3KZ??%yY!bsnRi9mZriMr_vPKnC&n@5y{
zaL{hiF&LG5U=1uKD)$2K&EzZNk;g&wy5qM-9M82#|DtM7{ezrwQTkKW_se>r{7Gl~
z^n)yYqXD<8W=iH~3%^%h7I$(<yp&yU%r>G*Jg&(s!9A+!YCO&+hC{rfh3jYMB#I84
zf9H$-EiLB=_R)-A`Aqyx4vW0s_PK(69OF|ii@zmKo}MV!7fcm7StQ=?kI`a0N|%V&
zSu}-orXKRgi1xea<Q|N~=RPA|M?n&d#Km9#JWBEWAHNfanh-?8r+rb{{|tjnze7m-
zpFg3Iqy5h)kQvt<&z_*)QKfxQnv(SNn%_Y*9D3SEZGF+LDEr%3`FHG>Mx%^Nb4j_7
z^H`au^GcsGna(MF1ETY_-+?>MD|Kb{0-Z;qb4YI^LUbN!5G&8Lk2)Ge+wT3~yHK|8
zLZ<yy$9bimtenSzOW&7uoMVbYS?<Hi^PAw(9FyaBWoUo3x70@ke~|tvoqy_q_|Q41
z&JO)mI`=f{QOq-+hTacE(|HWaZLQx>!MnvGBf&jpSN`u^|9|$bjdBCWn{+scRjF5K
zFmN}i<VN1W;ipcckg4UIQEgE2I+I?bl4%vhq*wED4X0A*WJWDf8cdwpsMN{i8WnHQ
zW2`ST$W<m@ZN#WqtJLTe#Hi9~aSw%BuhhtRlR>TJWF|SUQ>x(HsL>LQQ7JPiID=lL
zlk;kWifCkVrIuGKjC!4kGbrU6wMj;F9IsbsjVexSAWDr|B{vymIt8y+8H_Sq&~osg
z)5{UQPN6j6v%M-_&uJ09QbY7Q72+u~DtNUVo2zkzjzO)F!?_C6m3ld+((06Ih0KH%
zgBqg_S5$~EPV>QrNTr<TbXo(}N@?^8rHmML_*w{u1j0QuTDd}oo0v4bQcVmpxe=+N
z#j~mO8Z4|e7>Q1%))-B=tzM=ga@<y@l*@S7nzTA2r&2;2Ajg!c30#KsRcPUh=u}8w
ztx=}X^CqlYlIslcZPc1@4+ZX|GpISaR;57%jl4{6z%waLI!>#>^FdF*(G-@c<cO^f
zkHaHTIgQ@P<EafMnL^ETMwMKvHsE~{8Fhm?l&6GzJrjH#C=~K~@C_hZPkaRaF_YV%
zzMKidmJRYD_$Cl_vlCqEYqde$8OrL>aPYQFrv0um5Y-%=13%BM^XO|ydpPM?K~by^
z)*ZaIeVBCbC0%7g^*(gpWjoZ#UqWsV-T_4877gB=$-TkXfhOSkdhiYG`WEo5Aes)_
zz<03gyTIvrMCG`?4tza`hDpCAx|PX0z-_4KX$v0)9?t6i&fr~`+ztF)PzKz*5B>qW
zPWypo^#8`=x&^!$h|Wo>&?cxs^j;mohk+VG9uEFGh^|qxqD|-qqU(?7_w3e#Xt!e{
z_@kLP&0sL*J;0@J&Lw?;Jxd@Oreog^KWi{*;)mJI=9s~Vz+DGmP3jn7hI2B$C^aAJ
z5>{fp-FEURRv}y<zhJMY1}hH&FmD;j_27DO{n>owXl@*r#ZAI0gJ-xo+&u0@%v`>~
zt-{RZM$G9Q<-X)jbKh}4WA5&E?mnmB>tlG;m=EDQ^1X%i0%LHh(Nz9velBJpUlrB{
zti`<J2mB^}3%{M;!yn>HG3R)e|CzsmIY-Q9;j`VSuw;6fN#-XDl(m*wWf8Itvd*$-
zS#Q|@*`u;JS+Z=rY$|48=ExSwmSA3QqinnEi0riNg6xv)ciA1fI}eNGRdO9>@%%B1
z7b=gGca=xW`^X2%2jeuQC*<++@$yW0p8P5KEctx-0{JWQ*W^p&Yvk|AH^{fhcggq5
z56Mr<&&hv~Uy@&uUz6XI-;&?MQe~yWqzF(nQnXgIRdiDHQw&jzRZLK1DxOw6i#0@x
z70VTC6zde9D7Gs;RUB4)p*W-XQE^@IJC-<Wl=YR3l&zE@%5Y^nWu&sRvWK$2a-ed!
za+ES&nXDYIOvm|4Im$`Osmkffxyt923zcsvi<IvxKU99K+@{>6Jfu9X{6_h`@<-(_
z%B#vhl=pDfiAmK!<);c%nN`hHt#Pz@J5{8rt14R6Q`J{BK=p`fj4D%=tD2;mLe-N_
zCK~x^6o~^q$@b}QfxOjaKmHbW;>9J*H2x}_b&)H}MQ>4@1AA8XEM&)-FuLs2-Aq`t
zaLR}HMOyJ&wBo#1lrhSPv9ReBwD@<u?xMbOoaN$$HD?N8e(S5iuTVnH1)c+53j7sV
z9(WyiGw=@}G3(6e8wz@WWOEkeTtOR<FK7b_gi}a~rKtsaAvU@f$MpkoWf0r5|2*VH
zmS)(kAKm03U|bV%-Dgf~%zm|g75GN$Ex_%q4+0Oh{u20W>&rkA+CLP%V(VQiWSiWE
zvukWhpmZ)l2gqG)Q9$whj{@O*sJqy2hC7BW4?`^+_C3%noC7c;{Af6K1h=)f#r1*q
zfe2GLDP*p2QiyGB$F-=b3quPr>K9Hp8C5*07<Gzp?txc@AI9l6Hupx?p^mGV0K_L|
zft=lpk$Y#HFM_u(d~HBH1w}j?uS__T^(T8dY;WURw79Pa<2XMZ&HcIg>F&re?!M<!
z0G*xm9qIqy=CGyjw?4@JTgQ3szq=P#nj<fBm?L-m?p3w(9g*Xu?<slOm+NUx-EqIJ
z<NSII#wwM2cdu5>waYY}HIby7CK}_*{+fq@k7xz~XA0-G?$FS+2hy3WhasQT$h2*6
z{vus_FiX2b+nMatmO%bg`<a#}hqb(}J(1y@$j&5M*H@<^{d5C#GV(CajMU-0!<{;e
z_^O?Hco<i3hNQj~;f0fcy9+1&&J<4l+@UYQ=f-vkr+Xe?r+a>e*+}uENnZG}RyRX5
z_6<v4(|Q>4FvCnkYcdOGPd-da4PW4jcv|x{!*$5rOi`%cW|&%gy-V77g?TARq*rGz
z8R_CR)XSd?^BU`=BMDxKUYM=+N(avJnhku;>jmIKuQy@4#A_+!%|1JP)MTg6KJ+&Z
z_#6Z__G^Zj%$Dp+++mR0`b7fi(tPN0{fGJUB;G#(nCPGGuOS)!*|;tbXcrJhItO$O
z;7PZD?pV3oGoTl6X26PoV6r-34dkML9|O9Qp96k{Tpn;OKu)d)GzknNO#@q_zKsZM
z2Rs*eEwB!`jv83bPOELawh3yd=4<oUjv&vh-MF?b*|c^Kt_&`GtPsytxUn#dY%2Vu
zP(ij9ZZG7?j=~aLw-(uo5c8r4;J~6Mi$clMMZXkfkn*C-xN@`T`{HtPq4;7kPkt=E
z1pK-9SD<IJ8f_YO0pP?Lp3IcLsL*i>6h>t}F)7a|kCIEu`^tKxLixMu7P+Iz(oN#7
z>uw=O+|kX@KT8G~rW#ri&LqPdt81!n!jg8A4`hE+FfhUti7Puy`yd}+Uz0ovS!}`H
z@>-6!v`9F2A=>YZ-&^FYpB--_K43gjF*o2TAhB?0XJi&7P;Jow>scCDc;aJe`2W~D
z3%IDdt#NN=$RSMxRKUOj1T0LjySuSlv0E9tyHHdt(m)XtvAeLlyE{?&Kl{wg`@;Bo
zulIiU{=Xc4Ywb0A&YUyMoM)f2_g;G~cMIX_o|~GyT%%NEb}!{_BTBp1aJLt=+;vx~
zDek4kRQLJr8nNJ)BhYf}c|*GK<_qlYqWe4QMQ)4SaG2W_ohx^KbfMhC(Iay&MsLo2
z4ShHFpVz=JC90xOMxD1Qqt5&Cev-pr%J^}xM;Atp=jGdt7Wq^2qYD)-#P~;{D(KpU
z{{EHof#*|Vf&84WMRzSV^~vaCCo&P;$5s^gkyp`j%2jlh?`*D?3({OUb@7o4`c>u1
zS<f%X&q1{F8;w21FAlv&pMCVtE9$J(hgLJvA61BRvv^bqbjhf}G38W4Vuo_YegA$x
z^^wWr)ECT~zfAo`G>Px&u7|q#DTZh%H@R~XCf+70;fJTLN|ZFIimriwu1X9w8Hv{7
zp-XfL?x9s;BKOfMF~vmsam_H9jh<^V550gpYetkzmZFyvl}(OfMX+V0Ni<se@v6iI
zla1(2Ch@$QV6qi^n@OUHsp4bD`G{{F_a%7M;el;(jaP4)yhKayI>wc`M^}kYCZDmt
zn)s<yqLivMcXee|<<R9-6{)F&FCpIEsyf(})xqjQqMv$@+LY)R6X**YB4W%?tHez8
zZ1fy`T#Q&X_af@cYAbP7{gV3k>QBsrf8lPN?^0cuD|?V>h$;WI=^pf6)060AQ*Ses
z&}B+D<U2g+U@pQleV|7ua?Z=C!kh31+S1kD)euu7ziVM^f7bxCF0w{**S4-I(bcsN
zHIshI6}!zfk@_QKjHN|ZVro2geUANE$sX(BUeMhX&pSWJ8|yAS@n`e&=6nqDZ11TO
z9XvZ?ck%3n-P<!5yPxMkPqi538G=2=^DgzzJYS&SdIm<+8CoHtCpnu!A{L`_MS4ea
zK1B9L4~-m&9u+wOJvDMVdRF8d^n%D3bgVuC&gMwk_el5D9!+y8@os+Ix-l=SMD9tz
z-?E^%t&i5jqGDk}L|GM{gC)?V@D^8znkIwM!|)PU;innGZ$H*#Jht=~Hx+YC=9{QR
zsL5jLmzk`<mVV<zzB5_JSV|ndJX0Zk$BB|<vYUG8$H}*e|0eNf@!TYrF21TNal_;l
zT6%EOTAO^~T`4B6oI|-)MbKqb0V=f!#FLx|a(I%fL_Jj_&a)<}rs(FXmejOT1*uF$
zJ5?v_&h#2pq8onZcu3)Ct`hz5HCKy~s<G&a^d*VfNN>_wEK^lhM~c2gb5V)G>fxNJ
zBa~<^Yt<V#^ERqap_B3Uq<vOjLSIq8V$0V`WZe(y6wXl})3%(Q?M$_tkyA}~qxYGf
zLZ2pgCs$6h35<w;&h(u#QkTbbXpWINh-s5^KIi3<oGWsgi&aEF;#%Zt!CB>?M1OH}
z&4=ydS^^!Y#DJ+!^cR%~a_vG*uoCel&UGVpl54VSMsddVwyV9k<NCnWlsHM_+=~kz
z&o-Q4?L0eqnu^YzJvqbrdk*5v(|X>+e(w1a{f@=1_^#-4fqHqFi}De@IP<g-OVGI^
z3v+H2iR^<O7C8bvns`epF)ea-q?wo-xiHdHghobFlR)exm1r0n9GgS*jolqfTkvzF
zC8Lw^uiC%=td{R2XXoj3t=)TSKK^z)7p(5bIWdU%KUPHknS?!AANl83?c7<;n{(>(
zoKKhkQ(L=jt~)u0j<_C2r*GR*s8P9FxSI)UcUyPPOZSZEEbdP3rovf2(_PSAMa$<!
zy^nhlbUFR(_E`6FLi`tR1#_*>e`!(SDHTq3dX;;2r4oG$m#+Q%bjqHD#A}naYpx|c
z@lUAsuI0WaC7qJZw!F#krumY(P8(K_37C^j+w1CuHrZn<sMM<##aLWU>Jwbqq~+L*
z(>C3&lQiBp&)v<b7xs^|Y20V>@V5h6C-vL7AZzI#8*hdb%Xm0%r1|wF^E|qp9`I(#
z-m^8{EZf^{$^CnI>-tZqn)E8+!nCP}mhQFh6t;Hoi4`_^2C51*@8kKzYwZ1q-ZA3_
z)Ht6~e%JNrxK;@bGmO1D>C2$lTb*Avs9$c8gWqPaUWa_60^Cy;9m%JTyKna@>G0_0
zyZ6nED*Mj*_MyCynz>bHM_%YNMt!?}hhyf!z3ntz3KYovt?=0@<276Jc^vg<<?rs|
z{i5K37T<b#*1i=#e`zLL|Asd^Y?#`pzot{vrom-)YPt`4xc)^|@1y&)rHhTpJl?b4
zoQ~=@wN^adz0$;|LSoI%&QY@$eohXaT63RIQX}(K^?M%9*5K7er^j>7I7D}9oX0%$
zVnMgQO~)6rd%x|>PQT#r?hZ$i&u+`QcePW)*z)x)dzQ!<`fSFnT7#?Qi>kKdPC{Z_
z(GD$+9*noiUh?>q^7m@QT&~mqUWdVTkA<~dwQbYIcYVCOe%th_^~*6c2Lu&%tk|c+
znj!sSU$4kK<jA<^B|AD>st!-fpR+^muc=A1p6nWP^I6Y&tFsI}wCU5TFG+<O_Ph6X
zNZ&(Y?L3~IDwpq=#lAi6hqp~Qlk?f_lNU!`eLCb!@0X+Nj{LBrk7K`>F0aia79Cl6
zaAXI~dfP8ari%hHxKz!ashD+NmvJLabAK3oE&tp+hXaSl9`j2~I+{h3w5&`mTZga%
zU2;_1QlZ@Or1J-B6&%&+TUde7&7Xh0SSq&9@wSf5s@9n1RH>)C$j#MOj;|6Gl96|n
zvI5K+AMpTuZ~}=FkX^_qnC8T~+{!k)886$dny7AJcFv@wSzE3tlg;*+l@R;Q4w<RN
zJ0-)fl{pg$_>kM8U5In6#)rJSIV&v~8<cA{g$3T|7Pc0wluYMC-qFh3q?1*!m9_Y8
z^;+{zytl1u*HY;G$xRhc^33+*?fZ)4G+FO!IMk(|lHw4Qsgvq&dzfEVJj{hM0%xH_
z<khYH%<1e(KQi1o0v+YN4&A~fh~CXNmsE7=?0<Tj@5z3cp5nReS=}nC9o^jAtc1Ip
zF2<+78(X@SLzj1}h_32ZAKlQcv71UXQKEi+@%+Yh@P}tAI+)N7v$)MR_cjw2-j<BF
zS$o@&4bk2^D|R+-C$x)qPHJ4e3wm3NLdu#`AMcXXm+=ljm-ntnoZCvuSe-6zXjyV_
zCW*AZ?)@W1MOcfs%39O`Y1X2Cj`~U;;aik<v>)qI+eZ6{z0oJ>x!#Pvg>I#+PQ97V
z2j1aF-Ub<dWM$ON>4(n`M}0)n>OX2xlh!xBt>R_V^+)#~D#1uy>H;zVsZ*IxP%;2%
zSktN!_NmT9y>nq@tEq6q2PZr0TRXA>IBmwzw3leZ`AI*P8GyoQ!}<l?xNmD}+A{K+
zop=;0L>|u6Sk7DBxhltiO*vmDay@LJKUb%4#wKybs{X&7v8C)ih^}3hp7nV9Wc!-p
z%-=kFMdn^vd#QS7U6R#Hgk^n}wXS&n(^?6`nJlA9|Fh??gIig32L0J9&)CZPGqw$O
zTJJNRCszUDfHVF|9Pq#AY4um<xm+>rljdBtBuY4A1xkEyAD^=Hh{HL1TmGBQ-g4g?
z)(`mZ@Z*fgkZwd-=MmQRhneWEj4PYy&s7a)tWByt+OV?24ZAe)%9-^_ZOIwinn=;y
z11qD>B}|y-L+IxTf64&8J(O~?-kwG|LvPQbT%xyS&o~+J;k{=lzv=4-TQUxf$bBBs
zuun$E2D7NYOb={C*2|o}GFNd^d@9(9_<+cIb|gFyX&0dEsJFXQ_SD;BDaYyUX_V1=
zdp+f2y)Dkt${@<ID8)HBr^4U>WfMd>)@4THujuR&S0NLT^}Q$u=<Pw2WA*lU$_aW~
zyk@)xk=y%F&ehxDl<W2OM#|lKdoSf_y?uuAgWh&{!wdqV?1!?4-VUZ*tG6Fgs^03h
zaiA=%w*x7w>Fs)y_4RfTWhcEY-Z932DF5$!u3jH?_HD}NdiyoyXT8m^gy@gR?L#Qf
z>uvFwRvwY{4wO~(c0J1GdOL`6qTZfGxlV73FT58~-b-0dZwFG=(%bbYd+6;D%7uD+
z4`nhUz2DAIKGfIqRC)Zm|1Epo{z}ig`rqt%PdAxE4|~2zsEMgqY$DI?^!@J`_7h7l
zT$QdDzJnE`YLP@=9Pdy1-|BSz@7MId)qnKAWzV}PGqGI#{-Xaqm-_k4#NwayQ}20}
zdaXLUSoa&f=Wl8s)1t!n@ARQ3a`i~thZZ>s;qPdOAiP-mJ}Uj`1v!`IWbErV`qR2-
zs%iVvA+8f$8F_VGhz@s+M91l4s&2(ja@|MYdcQut>S1b<^-)$YVc&Lrgf>K3{e-P?
zx1*<IkAJW!9>68t&G7v#>&}S3;`{rnK6+oz{`AWS&{JnL!gDzHEV};seb48fmg1%7
zJ5PKB{$_vOC(@Tupdyid>5=z~9D<#`?>>Y2*^zV6^CIW->cTWV_^**ZvBlNCO7!F)
zB|dDh(wo=CP|lR%nDS@Oeh_`vVTfeIgtqcmxvK1WO>SfGH<7l#1J^x7+S2z#inOH<
zioxGRWT5RpWPLtLKfN77IYw_wKNRVIBDaygCq)rym!Om)?Q)b-q<xF>vEEJ_KV15r
z{L0^?7O%<orj7M2{Z0(AzNO!Z!N;T`w)8WR+e=>)=|duI=|_^F_ZgA?Bhqg~)?cT*
zp|_<UiS!kb^?{U9q#a9{pto~4(pNxay@@mD7$WUrl+ss3+NCMW>FxTIE%o*kO6fl$
zw~_uMG7pBd{VAm{iL~cXM(S<pSF%NK`@+}n<a{fy_d%{mDMjv6=7BThg7e|pSzLb|
zm3}G)|CD8kv|WhYUfgEp8<DmpWj4L-Lg}uzb5rKg+a8n!^>)=K91D@}^?Ad*AR_I0
zl-=~Uygp6V+r0G4hi?5qkmBDE#TtI*L-=EUgFigDiNitrpsE7__0&z#t<~+(1Jnc2
zy1Y~46wijSrV|+*Y;M+^7HqcJ3iK+xJ2-F6cBA*2?L!|hJAkff-hf_OQ#?BGOf|oa
z*2S-VYW^JC$D)RXiHNX>LqAg@+GewK;$G#R<qvcjt1?#1mRQwB*SBhf?rYT-ooFT3
zW1qA-iPmMHtF2_6OVlL7<w+%*<aZ@^WEtx+*6cyauXj?(=~i3GTbgK-Xv3CDcEZxO
zWtfSqZCe|y%Pm{gu9h7$uXc6NN9<0Zv)Maw$6d_67`lXg33N&Ol4#xh<rw>M*c0q0
zq7T_0LYHtT0re#vN}(q@Oh?ajn2BEOumpY7@f_#-4aXbkl1`<a@auIR!C5@oc{DoC
zc^A5<OHulZm6X}X9xnZ{V_ag<#mQ8_{hSihH~FXRW1p1lW4c(s2XdU|Ed8KlBKxjn
zBHQJ<i#Ggk=V5u}`G)qnuy<kZvI{DCHbZ^Fe7Kubd@}k(^od~gQp8B~Xrlje*QjI^
zdmZrx+fnb0F^LvfmtE{Y)PX3jBT;YAg%r<>hRS?rd~|#?vroz#=Y!}6*u!H+#_-u<
z_Mtz<d_=cYGLt=zeG!YVSV~S>X}2GR=_Be^Sp+J+8fm>W{#ITX0}%4w`hU|s_1=sB
ze7<0D`JcZZPq!ZJ^?#px^Z#l0<A(FzQ05^Ps0DFd%F)j2ayjXu46YOr)I=#BZ)@=n
zU`AERNu$g0q>DcIdzqd-s{8)oSum6K-&~1SXl;&L^j~-x=(1yfwMwBSf1?Su9xdJ}
zc{WGe)U{0(Lu~`>4*d%}4z4){I(0I+`IE=NF4x`6KJEFNd8vMmvly=TnKR+O_piJa
zvQeM&FT523xm(snXRMLVXJHogv)y&x2RgrlpS=up-UMkQFa8{J@!#cBp!3Z8S9unQ
zpE7(Id<~@c-eAScpk-`<lv8y#DLKEsDf#Ex|LDjlU?(Mhq%K=}+9;B`ykNRml4*VQ
zzNPa`P#8F$J_d$dyDIOc<oZ>)c2(LdDWynTu4R?$Sfwr3vZh_bnl?^`jFlm`k?}J2
z>+OS-|Hyh)89(E9*0ahrt@2oMU8`X|tBki{h?9|aO{#Is48!_V<CqzSwW`K3GYsoi
zjbmmQ*037K%#g7%<Y!Ck_x6A5#C6}ve}#48I6?@+`nI&bs%h_w(vB(0@kGNo;vL3B
z3~`mh>DR0>^lg%VJzm)PjP8Gz<AuZY_HT_Bp8IoLFbLZaqe#G1+88$fQ~CW%j{ZgW
zQE6j4InZbPo$=08wv$}rF!diA`~2^Ce<jB}<^L|nJq_cXa<!#Sgh-peTbH3Z?l1bn
z2e}tIY<3v!pyX|>Y2MVF9<+H|v@XZ=MI~439rOFtJTiZbeqsIsoxvgly<;DXfIoW5
zSuGvu9lKcOM(4H6hc000i9T<63w_V>3Hr6AntQ5J_!HA(O5;h~*s3Wt?X5bXwR*4O
z1K8=kiZ4-f*XkZxmk~aFhWA?ZvUM5WgEf7z2P(PUwVJWmNt%P`!<wV$<C+ubyPA9G
zubOXY6Kgg7@p9Ic&{eIgp=(;#LN`&e*tb`*-jA^!LrwZ@>^i?>ncbeiGxXfcDSpXS
zY^q_`u&IS^Y|{kY-lhXutM^wvfPF~sseA%k=c#<x<{maH+@$}pZ6$Pif90msw72bm
z9%DNeecJXs`l9VcbXwnKUprq$28!C1Lf5vdjoxUt5xrTTfjtrXq>^>Luf3Krf$8=O
z(V_N<=t2&~9q`t3kYk3W9m=7bI5bDMaR@@U$M0EsJa<L+br^si<1hgo=CBmqHd9+h
z>M}ZJV)Vezu?V_>V?%U5$NuOoiud#QY!k9E6O%0(?WXsEmfp`Y;JEaDZi8;;JOC|R
zOc_-u=28(I;xY!k!X+BL)@2>~k;@x&9>u5mt+J}*QI7YFDr`}_UvGP*dNDc_F+75i
zu88I6+)??W*iV!ey;<>ZJ{WZn+atPQG{1Os19V9ASoG%T-RJ@_#bX#%i>ZjN6;m4>
z7ZZox6tfw<HD((+DJBX1Oz-jh0sCI;(^$ip0AQwhxDhjb1s-q1@LC$DZo>G~6tn42
zmu&Xb>^0s5=ER`OX>M!bz_?Rwi;Wh0EWVP-*UQq!vZZAk%kGxp<V8MjIn8RO)hw&I
zR-3H0SZ!yl>424_<G9r+t4sV{hl__+-&xhD(b#JoG?_FdHDxpvG*va#G&LEAl4La3
zw9#~i3aw^4V^SwI$^6}hgNK?onlBnwf?7LRXR<EI=u{>A@}*aPZEMLuD+uUJuFWyl
zQ><rL&$kY>UT(e0dbM?wb&U0T>+RN(ibITJCG&TQzlZdegiT4CvW#jqwrOD##Q85H
zg$=RU&Is2@8+pdx<a~c<^Oh76b!{7QUU#+~jZgjp+r_rKZ1>n6vXx_Ar)_W9${1pA
zZQt9Pa7G6Zbx&(I&TgXJ6uasC&9jTNi?Q2fw}<mtW&*ozcZ+lsJ?;D2UnMEUVTY6a
zB|Fs4SdTn?LFDI~MP9ybWa2xLF-s<yc~9oulUetq538K<5ShcWhG+du3X9B+ZbZ=z
z<O~kt{0(7DOvWaYSwuxP+iWs6nOnBO*+R0#WQ)u8A)DY__F=><kiSY!y_|xb1~`Q{
z#X7|~9d$}}x{7DHi*ruK(ngbgY?gDVb2uItan4Dk$f)U34=?i&mv=7TTuNjwO%}4+
z*(YU}J{ZZ2nTZ@(TxD)LH@p(1_iR0U5kr^>xk#S5x8#?T*;jq=ya;ydOWd<CH`xbF
zc6;q6+^4$Bl~HnCR8XG&h2&}|xfW^{YoO!`D8byu7tee$Z<UviR~N57Ucp|Y$vYVC
zRoy$p`yDAcE)-Tgx_uV-g!-iVnE879`ugthm8+g!`zF-hQ~T+15k76T^vX_NT__?D
z{|kX%;-|<$QF6UgAf6Z@5O#_jYPX}l(}8b@55|b-5b~(qj4mD%2vahTS}VrYuE|lg
zSo2t!yHI8>bYm_gn9((vVNI-Ebt&%Bp-aavrCbtUdVLN4dgZH}ACa>oIp~L-O9}Wc
zvx3W<;4&k)VD8(EdG27D5j-_1bzkb?)MKfqQ_rSeO1+wTJ@qzgrDX3b4VsGio%_k#
z+(+Ky**`kh;;-R)hR|k-07@A@B?9{)rJRRxW)g|Tn#%fLxs7aFt02-IO__E+#t>`8
zcs?d=+!Z+|BV(~?Dbvo)?BTiGXWAGna-Jsb+>D%)S;01PeXt=OOWL^^8J9)Q&)^@c
ztPlRxJdGh{i}AYP&b(L6d%IBnRZdnpe`AQ>BIj%j@mq}NYz(nnjOT39&eIs;y2yDN
zLtK}%^E5@ciu~0)jg0jo=W1lWfCiLl=WGnIUySE$3~^w7ch05^*CP2HmZc2P+kupZ
zxG{2$M#hebChXiBN<$2pU(MOb*fMhv`TH)Ve`A=xk!y{+A+kR0TI1h|GgIL#<M@bt
zueizxJ|gYXls)zKK+185T>HF)a=E^K1?2|4{U4b_GLCigM|>L-JMjupJ{!lb7x}(^
z!%pQ#?O*Nayr50KQpbD5mVQ%tscUSruWRS3@6~Ml)yM5)uR-f(4>~a^Z!Oh_Z<ij_
zy>z_b!H`PDJZ7$HpHRKU#+zMScH~`T_q6hzJwIBj1{U6*@pUcjs)bdiANq2x$D_70
z)$_yVWO+8M*Y2y$8_f3_n{@u1`+#Nzy4|i`>B!L;-6!uGIArLI_dUur3%${Id%i7o
z?<6^{oAkQ#TDPN{OPv~-t;VemV|<+-1Qn^ju=41J?Qak6xN+S29y_y#Yk$luWcj68
z*J{B|-z(3Y*z@MRt)GWC$bGJV>|IsOeobe(-YXc}xU)t6XPeaf5(+OKesIDX%M$0_
zPR#GKY0d83JG!e?t;S@1Q7HTADRVXtjePyq;@yh7-Rhitf3?$vBr|i@_C?Q3`4Mqo
zX+!U#;f>#|^t&^~Y~Ztxt4lr~YaR0{DA0U)-!}Cfdhhx&#l2iv^BW7+o0Yp!W!J;n
z3DX<RHfw#LZ=dt#rm0!#1?5Ru<h1a~u8Sus22LKl>`Iqi6&}Y;nmXCSzopZoYcG!s
zt*RNZ;)#8Q5l3^5`^?WF#!d*as`jFg-`d~|IqURm(K990?t2se@%A|{tS_6dq*w8d
zSL`+J5v{tOY1DE_DevNWHg?h2*gtAI_w0g~o0rXA;!^kEo{*Jp*V}cgIk-hu=Zx7k
zJLcYfP%wN?#oM{c<ZyJ!Xl-j{x9;%Nx7(w(cpZt(nR&d^o2Ioa25#7SBlP9>pwX+A
zdzgGm{Lrt}!P1>86&;n*a!`SaQ?DP&eZ1?p7h5{Kxxek$b>B-4<2zIc%(XC+TZTj9
zM&_w8{&U%#XEXSHS>J0#fx|TmFU#@HXVdlP4JOzo-`hL5XV&;aq1%I_zgC-<Ay>yI
zRS!)27Udl9I{dQd$R@9570GqDPW6d<&-h>YvGUlo;@0OEoz{Mc$bWO#8jl%Uudd#`
zF5v#sQl7SRhSXbfqHXu~RYo=1mudRP$J;K?YV)b2_lFJp$0UWcUOr-Oa<^!&3w`1<
z<~?0HbnTJIk=Y!2cL;ktd}rxvRzo~azR%XYx5?JU&!ZOC9own*{D-3+rp8#FPIQ0x
zILoUmOCIewRlHA)^H$5BUK|luV8f=>zP`Bw3i`}jb7)WJmBmUV))^3SY|OW~<XN|~
zT#hVKW0C2bPgkFpx2tz@bm5P)9j9NcJ*alvtBQ?k$DFujy5Ro3gfq)rCUvj1&DC@7
z==z<im_BW@v~{s*CjAFY{OVoaI;BO9F7XY{UYk>-iNljjRWJ6M*6z~cVKysD%*gz?
z`Q$R0p1sT$eX7{ec3WRO$bP5H#;U`b-#Qx>(En}Yp{Fuu+g;*t|EDKEHEbF4y=~?`
zWp7QmR%wX#-G*c34s_k_Su~G-+rU-(`t8q=)h6%V#HrQG<S#$pHnp!wRLPt1HkM)c
zH(#E$w@Jr#<Bksx-r{#*K&zhBDm2}e4F2`NzajYV2mb}&e;oYZfPXCb&jtU+;QtZ)
zXM=xU@c#z>m%u*+{AYrHb@1;3{)@o>4*09UKO^|B0{=tc{|Nl&ga0$|zY6|d;C~MM
z3xIzm@b3=(L%_cW_}>8kE#U76{++>pGx%o%|1sbn1pbx5|2FuK1OM#cKM(wyfxi>@
zPXzz1;GY}(?}C3*@Gl7d7T~W2|Ha_H2K?WG|0eL?0sgJPzYzG(0sq(FzXJSEg8v2Z
zcLo0`;J+07!@=JV{0D-6N$`&We{=A!5B^`kzbyE#2mdPIp8)=5;NJ)QQ^7wE_%8(i
z6W~7>{C9!>B=GkK|7+l175txo|53?5_>TquYT&;X{Of>!3ivkx|D52T5BxiVzdQJ!
z0sm6qzY+ZH!T&7yF9ZL&;J*_5yMcdJ@YjI<1Msg1{yD(k8vNIR|90>{0{-K{zZUrK
z1pn{gza0D%!T%um7X|-8;C~(byMliQ@IMCr4&WaM{%+tu68t}de+KaH1^zX`{~h>0
z2mfU7?+N~);Qtl;bAkT>@OK9P%i#YC{11cwUhw|`{>8!nH2CKSe-H3q4gUAR-xmCr
zfPZ`N-v|DW!M_doe*pg^@E-yG(cm8s{-wb`68w9E|8VfP0{{2mZvy^N;NJ=SM}fa3
z_&)^yE8u?${Lh2`MeyGM{=VSv1O9u!zXbS4fPWnLX952j;QtBy?ZCe<_)iD_+Th;^
z{BME(J@9t{|83wu8vISczcu*x2Y+wyZvp-dz`qFiX9E9e;6DufXMq1?@P7&Z#lZgs
z_?H3y=HMRy{zJikH~2pV|CZpN8T==JzZU$<fxjpCw*~)x;BN!|Q^CJH`1b|>o8TV?
z{<FZp9ry=>{{Zl>0REBS-wFIzgMS<F?*aam!M_>!tHJ*(`1b<;LEv8t{4at3aqzDM
z{;R;h1^Bywza9AR0sn#E{~G)kg8vurZwvlm;6Dufn}h#Y@OKCQZs30e{3nC|Q1CAY
z{(Zr}F8Hql|Fz&>3jAw;zc2U~0sqn9KN$SigMT>q7XtsT;Qt-`dxHOG@IMFsD)65P
z{;}YnAN==$|8VfP1pkTPzXtrfgZ~)t&kp{Z!T&Az-vxgL4K5^se|zx%0salazcKjV
z0sm*<{~Y{Zf&X&wcL4t>;BOB8X5haI{HKF|Yw$l0{#n331^l0Ye?{<L2L2Vme=7L5
z1pk-duK|C1@R#9n1o%$?{}<pN4F3JVKNbA_!T$pImjwSS;2#10jlka<{JVhvBk*4U
z{<FdVAo#n1e@*ar2LB!4Ul9CngTEvA+k*dL@Q(ujXz+Iee+%%x0scYY?*aZFz`r#3
zj{^S!;C~4Gzk&Z7@V^fJ<H0`{_-6qBJm6mz{Qbax1^5>Re;@E~0RH#DKP&ie2mfl|
z-x2($fqww_dxHNg@UH{@XTX0Y_*;X&7W{95{|xZo4gO2Pe-8Mc0RJlBp9%c8f&VA)
z-vIt0;6E4qy}&;s_=kf3Nbv6f{yV{c2>53M|E=J^82o#K|3mOU4gQb8e+l>(2Y)N@
z9|8WGz&|(m&jbI?;GYQo$G|@s{4az5BJjTo{`J8BBluqg|2Xik4gRL!p8)=oz~2@8
z>x2JO@Gl1b1HivL_~!usv*6zZ{Hub0JMgyw|IFZD2K@7Z|55ON0R9`n{}%Z72me#x
zUjqD3f`1J7_W}QF;QtQ%4}gDB@DBw4{otP${HufieDF5`|9J4f5B__>e;oL40smIu
z-xU1cgMWGOcLe`@;2#VAOTqsu_}>G6AMhUp{wKg+1^y4fzaaP*1ON8mzY+X*fd5nQ
z{{jAm!M_&xR{{TX;6D@m=YW4N@NWSAN#H*K{BMK*QSjdf{xiV88TfAp|2yD63H;r_
z{}lM&0)J=luMhqW!M`K;_W*w__*;U1HSn(t{x`vYIQaJm|C-?M3jU43{~7ovfd4`8
zF9H7f!GAaStHD1j_@4&<q2O-;{@uX;D)^g$e^Ky{0Do`re+T|k!2cuoj|KlA@b3%$
zy}{od{BMANIq-i7{*A!@0Qj4Oe?9PD1pd3gKM?${fd6CgpA7y^;C}@CM}U6?@E<4n
z2mcW8F9iM>z`q6f+kyXh@Lv!9Uf^#J{;j~jCHNNye+~FI1^<`ezXbgEfd6&y9}NB(
z!GA9Jhl77E@OJ@!EAXER{#(F5C-}bs|AF8i3jU+P-vs>ofq!T4PXYgm;GY}(Ux5F8
z@b?A(4&c8K{11VD4e;Ly{$Ieq0QfHh|4raO0sQxZe?0gHga176e**sB!2dP)j|BfB
z;9nj5{lWhj_@4*=58yux{I`PtI`A(A{zJgOE%=WD|LNd=8T?Cv|9<dq4gSgCe*ygS
zg8y3Z&j$Ws;9na2J;1*?_%8<ky5K(_{8Pa{5&W}&|0D441OCgwKMwp?gMR?{uL1v+
z;9m#)$AJGV@Q(z4Q}BNd{wKkIHu%>D|5xB21O5xZ{|xwd2Y*lS?*#sBz<(O}PXvE!
z@b3ct*TCNa{4aw4CGcMX{-41=6Zl7ie>?Ec4*pfa|19{w1^>+8e;E8ff&X{#FAM&a
zz<&eycLo1E;J*s|bAbO{@Gk@Yw%{KH{x;yh8T^}o|8em51OJ}jzimy24u{5#81XrD
z@ZguzhY$Z~`}S?>t{y!uZtT<NW}|}#XV>%b2~wMwsG_@cIW@9Sp(aj0emrV_=~BYO
z*x1^O2Mu~&`Pi|UOUI0H4Lo{u^2CuNzh?RR_0_ZH%{LvbT6Ko?>(?pI*R3nx<^1{h
z?<-ffeY#;o<=tUnxj(I5-Ecv_e)n7M*|TKd)~y4xfB$}G{oJ`_yL))lYEis+&+-8Q
zqg0<heW-il#Mo9vi*|j#W=;K~4<4MceDmhZ+`fJ9_P=~NwxO?Y`+zK23fh>OS~fU*
zcz&ncxvR9<zkg}|Y}tHPELc#&-povsuy}D{D+>#|;u$mMSrQWBQuglMTOQAzo$Qt`
zU!9YiHjQ3BaNtuHE31sl#*WP~z|*stx3hCmFBg~Mn|k-Y{<1}j%_-sGEk8DBu)22X
z(u3MvytwsLeEi7a1qw7MckkYfzJ&|7SvYQ7rVkApMsz)MX1iq9^Tmt3L2hn=uHU}h
zJF;=(&=)ORZb|Ci{d|?<$EROOO6pRxWXXOvYt)!`zE-V8kDE1%t8x1D_#Vm0I}5&g
zb?`w<Ox>(0DK8FItT^FP?b?eQ7b((t-uUquPFJox#o^1BC*~@Zsdn_}AFu1x3$IkB
z%#a<+m*>3~6;<<H{rW3^tXkE2Pheokl$kTl*3Fp{khpZIdo_RmVABsD-rPz|?67ys
zmcawBUfs~a-Mxa3gM*uMYU%^KckjOUI(v3^t&=CUnQd&c70Z;#qww?R`|q@Eo3wJ_
z!eS>XRhm@N(b2o<fdg~jMn*OsGiubgs%6U#TidbYkw>jt?<nNt<Tt;6|A*m0L3<Wy
zwN7X1)?GIG`t?<vbLFZus$juJv9o5C9y@80^|2~drWJVk^6<HB+j^AAoH_r{n>Qox
zwrP`?!`eFQpljFGmA-xZS`$CNj&(|v8jw??$$YJP^*I`IbDN%d@>ILus@1mE`}QsG
zeeT?@S8LZ+jA-BfK-BEnC0Ea%?_1*j{c}@?4t?wQ=+T9WM~+NwUZO<rt-X3(oi=^C
zNyiHpHlD3hC+v1~boI?WdtUz9q{&)~_wV23efsqDhEAQ1%@{W9{gd_Ut7fybbhxl%
zN1sVUhP>{RH*bx8-rlY9WY6yZCL*Hg;mw=-*FSV<VeZF|kB_)<V@2420gv5XUCZ65
zS#!blUAx*%m^#&V{FEv7vx0+fS14C*#DRo_zA>FUpSWDD+AK4*+T7&h$4?pU?6R+F
z*KS|iV#T_DY1(vs^7ifBW>1*l*lh3K(0n;^l-j;*Sw8<ecdlgm{P|h@qD6&@WXO<f
zXSZ%=gRfkPo;+iQMdZABMYb$i;*~3B&N6c*PR!!=<jK+Mr%p{wZQM9!NdElwhTXcg
zX6CeM>dz}yG!L0P*~-z@*7@r0-JN_NKD>0OLWObLx^_+8U%vd9xX{o7gT1_3WU#l-
zc|0y|__s!lqAu>-*{f96te)V%2K>i?e<=7*2Y*}e-v#~~!M_ps*8_hw_(y~PNbq+8
z|MuYj5d0T|e`WAr3jTrMKN0-1fd4b_KMMZV;Qt)_yMX_9@P7*ayTShx_%8temf*h+
z{Ii4qdhqWK{w=`2Jou}?zb^Q<0{{2mUljZ;!GA9J_Xq!m;2!|~HsId?{5yev8}QE$
z{wu)W9{dx)-wOPTgZ~onFAM%2;NK1WPlEq)@OJ_KW#B&m{Jp{73;Z{M|4Z;s0soKS
zUmN_}f&VG+9}fQIz`rl}F9iP&;NMm95B{Fu9|Zoc;C}@CUx0rS_*Vh{E8t%f{BMH)
zdGLP>{x!hA2ly8R{|Dfo75oo^|0VEm4F2=L|1|hJfWJBTYr+3D_*Vk|9pHZt{NI89
z5Afdu{!_qz9r!1Le>Lzo1^-*%zZd)mf`13__W^%r@V5j1Uf^E~{4;}pG4L-8{&&EC
zCHS8J|B~R}6#U<U{}}ME3jS-s{}K2X0{{8o9}fPD!2b;Rj|TtF;6DodW5Itc_#XrR
z0^olR{L6s<Q1HJC{yD&Z5crn{|0dvH2mEt_|26Q}fPYW$zYqSc!M`{7zXJaV@Q(uj
z)!<(O{HKDyANW@U|K{Mo75t}xe@E~?3;wske>3=h1%C_h&kOz=z<&n#KLP)2;C})9
zCxL$-@b3rydBFb-_#X!U`rw}%{6~O)82Gz`{|)fJ4*nCse?0il0{;r&e*pYr!2dG%
zn}NRx_-6$FRp8$i{J(&IGWgF1|7PHy5B#@-zd!hA0{?jMF9QBM!9N)MCxd?^_-_IK
zT;M+k{N2F6I{2r8{}AvW2L3a_|1<c9fWIU7Uj=_(@IM6p+rWQ6_{V|&VDQfX{>Q=p
z8~9%Y|5D)J0sKdR|6uSR4*qY!zX$mD0sn*G?*slO;NJ!O3xWR+@V^B9vEV-l{EvbE
z81O#|{v*NvEBH4D|El2s8vNIR|9S9V3H}?vKMed=gMUBp-vj<z!T&q>&jo)E@GlPj
z0pR}${7-;?QSe^_{tv+a4fyv3|I6U-3;tQa-xT~0gMV)D-w*!Tz<&Ywn}Ppg@V5Z}
zjNl&v{&&Iu8TjV||4raO5d5vce=PWWg1<BPyMTXh@NWVB;o#o@{7ZxXMevUY{{rBD
z5Bv**|2Xh(2>xdj{`Y#m0Dm{|{|5dW!M`Q=cL)FD;GYEkCBeT2_}2peX5fDs{FA}|
z75K-1e+u|l1pnILUj+QegMVf4{{sFh@E;BS^}xRj_%8?lDDbZj{;R-05d3F?{~YjN
z3jY4!{{j3H!G8<*Uj=`6@OJ?JRPcWX{%67eB>3Bae<tvM4*qSye<Ao+0)I#FKLGxb
z;6Dod%YuJL@NW(NPT=1k{DZ(>3;uP%|2p{R0{?>GKMVXPfqxb7e+mBEz&|ti-vs|Q
z;BO87*TDZa`1^r>De%{Te|7LT2md_a-wOQqf&V%1Ukm>2!GAXR&j<he;6D`nAA$c7
z@Gk-Wy}*Au_+J43I^Z7-{yo9J3HZMU|EJ*J3H*nF|9bGZ1pgi2KLq^qg1<NTX9xcX
z@ZSvnhrs_a_}>8k0pRZn{x!jW7x+&F|0&=f4F2W7KLPwZgMT&fSA+jY@V5j1cHmzO
z{F{RRcJQA7{(Hec2ly`o|2yFS8T=Q4e+KaH2L4yTe+Kx^1OFx9pA-Big8vinKL!4c
z!9PFv-va+>;J*U=CxgE&`0ob)hu~iU{JVmGdGHSfe=qR22md(mZv_53!9OebcL4tp
z;6E7rhlBrH@b3ZseZc=9`1^pr3HWyb|3cvZ1N<+6e=PV90{>&+KL-4dg8xYH{|f%i
z!M`f_zXtzx;C~+cSAzcr@DBt3)!^R`{P%$WR`CB0{&T_K1N@7Fe*pM@0{;`>Uljb;
zfd2#Ve*^w~!T&P&`+|QK@HYkj!{DDA{P%-@Ht=5n{$}9682l~3KO^{ufd5_ae+K^f
zz<(3?4+MWJ@E;5Qp5X5c{x0C(8~j^<e>nIz0RPh9e-ZrS!M_0b-vj@`;6D!h8-l;W
zKlr}@e>d>|2L2ntza{v02mj;Xp9KCT!M_Ih*8=}$;C~wYlfnNL_{V^M3iww9|JvYR
z1pLQ?e`WCh0{$xS9}WKXz`qRmF9-i9@UIX4tH3`H{AYsy9PnQX{{G<q0sIree+&3u
z1%G$&cL4uX@P7yXXTkp@_}hSgCh&g_{%yg3A^2AUe@E~?0REBSKMMTIf`3QwZw>xV
z;NKtogTP-4{&m6sI{4=T|AOE@3;ZX6e--e53I5x_KQs8>1phYRZw>y}!2dS*`+<Kc
z@YjHUb?`R_|2*K|3jFth|2gnq3;ylFe>V8f2mkxvKNS2Qf&UTkF9H6&z<)aUUjY9)
z;2#bCJ;A>T_`e7Lr{LcS{D*=6dhoXd{~h2z1pM=Yzc=`22mc80-wghT!2dD$-vIvs
z;O`3lHNk%u_)i7@Dc~Or{^h_w0sK3Ie>Lz|ga1eHw*&un;9m^<n}Yv#@Sgzwd%-^k
z_%8$hJK+Br{1<_L2Jr6&{#U?%2Kdhd|0Up`6Z|KF{}b>(1^$h}KR@{20{>~?zXJRx
zgTF2K?*{*e;9mj!yMljt@DBxlFYvbq|2Xh(1pYh0KkH{#Augwm7I#xq?e8J?kq5{_
z<Pq{1d77FkzNMxHJki<q-?5)zKSy35FOgTsYvc{`7Wu(8?<n6RACQm8C*(8o1^J4k
zAep&ve#Wuo3-T3bh%bDeEV2&4Q%`)QK1IIH^A!1<Ql{K-M6x0BA$=L7PlyxZjL1xf
z*%6tSP!6iIOX3jme&pL|A>5?RvA)S;@}fJ>TO)0dwnz}t4rz~cKxF2ePDp2@3nFj!
zyCE{>y^O=(6X}J>*!X>rV5Bc1<LQ4x`Xk?w6pr;e)k1uu{1zZYE?GZXD1JS;u}zUY
zh>V|~7x6&yA?C;cWFV3sk+~fUB77aJ?!vDM@kC_od@IBY8H@};h9bj|;m8k;^^G@u
z=h)v}vHAWVrrL|MsR7~<<zwU=_Icz2a)tBaBIQ-eYshuv267YO_ZPP)IR^yifVjkV
zw|UOFAns7!MeZT@k?X0hoMQpv0rnNjhm?;H&KdR{z&>5Y6OMfi`#SQN*Pb9Zseej&
zgSwjt=NHFxMFKd!Joadg>B{k3DFZmBE1zXF&ja`za{r@wzdiK<e3k${i`>U(K8O4a
z0pbnz?bKBD9po9?y-Bs;a|MXE)IX-=e=~s#HC(9SLVYte)#4TcA8O8X`G1?d<vsT}
zF1)DOmj(N>fEzXMvw#DR>B{k3*<Y#}e$=odIkRAYaz7T&IWC;AFMIYOzX$nS$n9OJ
zm!Dt$uk!y%HR1a*fhPe^)TgT7^E$tSnq#w{R5hPR&9N;wmIcSMU>gfww}3^-ss*oG
zupbNdW5IVRZM9JMVWqcjb@yz&7yDkK8|`B)H&HI}q*eXlzpnFKzi8fBTv9yOZ>8~E
zf2#Lf_pxvlzUkI@zr%|?tFp#Bz5lwGCEoCO;Yu&|JLr3sDl6%~UdBo#%3D>#u5DG{
z%2YH+=f9q4Ra)%DKUb~>ziX96;IXdBDOC95mJ;Rh$;IawuUx#$mG$BEHNhHJ(HFm5
zQ=!$2p*~Twmn<;*^gin{I?hSWT@CxueAPIL6lD#$30}IyFS9Ohtr8U!&vogmYb6Zc
z>U*rqiIaHY7Qrh$5YKXhS9)#i^j_(SHpJ()Ib>rYPADtS4W8&Gc$Vu{p_f<u(QDhb
zx6L9t;FsG)oVC??pZgNKOy_G}Rauw5(QY%TViMB$njcYo%?&HnOA?K_ul*=|%|p_x
zPEYHDe#qX-p^NZ#@WD6IFU@-OvWh=?vo!wb1|RhCMCP8rYIX~;)S-2zJ*qZ(PxQ=q
z2KqS`MW^*d-|Uz`%~r=<=tGW29o6EPe%-ruHg92rcP}xl^nU7YPJ@NJQ!YHz^Eu^5
z`#F_#vJj<|wegP5*_>JJ;M~NyH2FfL=X#KHd*XI?a_))UU%zrb&e>ONR94Ol7d1ZX
zMO}&$!@Gn_DeN*X6<o}PZWVoqi<X*|E^E+Hil=+5;_3d-<uThoad|;J?^lY~yJz+y
zthCpyw@=P~7W;hm+vvOcRrl|+TZqrfdiy=f8v7JwjlChi;sZBR@emJT^1Ul7>PLIs
z_G%~YC?4|#eY|{F3E;CB-6vu|gqawqtf<%d(CgOHtD?-KOoeq+-Y93`!7BP?;vgQr
zF5-@|mfj=U3-9@=(e=?G(PPl@(OaU`Vr%qv>_k@77r?jPJBI9KF@ES`dO!PGF;-#(
z9`;3zJnVO~&EA;jF@?knyo9a9gV@KhYVjgAXNqrK@xz`~_qw(BhW24H(I5V^+XvnH
z78xO;oDw6ye!7-nEcJ<2NwgljmG;4~zD352xI|lF{YP6NW4x5nlp|h#z~5;x<ocFG
zqU^KJbgNuWQg2x0l8UWc<x+;Y`|LB_T9?{Ct#wJVE+clQi@|@AZ7$KC6c8qVvDW41
zR%I;hOrlMa4WCMh&2L!oa+3O=SG?%jne^*kWaNvcv^m7uXJvpZ(fW_sR{dk$%Vk@Y
zxWf7XA^|Be`+e<-(()8j*1i0GTcnGW(f5~aQ6Yy;WB~YiCCs0({|&8>E}Die_P<;Y
z)B5kULg#3IZaDs`%_&4{BUcopUmFvYu2o5*ozbn6DVio8hhephTqpC8bp>*rjEv1;
zXe%CLzaS5Q8F>KSW9wpbq;D&J)jkwX(?0ZLUCn@Bwhy_ZvWYzDR^7<;HoAx#hE_sm
z7|^Y{iPuNmC=gRg6im}5=yD5;P-1Yz#cYaEiTHFYaCGg%vzUV7xqclEYYFu0a10ST
z#E-iwleBFG_n5|yf0zHi^!s<=M%mcsUrRl|ortI0qPNrLS~d3nFQoVF_oDpOT7WIQ
zR*ZdarA*RqpLQ)kVSN655qVr0yGiC|mHiR9K0wB7lK1IyeZW0L-s9h=OuI(F1fPES
zUb#jf5RuzRfB(Po^Y_QMKLC;2%iOJ%^tSZ<k4I!bWHaS9ef<u~-H7Z{?4gvoUFBz!
z>jO4r;aY_qPictjl!(0xk^4`Z`!(%)fg;3lDy5I*RF+cagq8c0YY1eVC)p=jM;V9E
z#S$AS4Y8l(+5)+*K=!3_Qo17YSh*<k>g{}#Y1bW?L!;criqa4(O0Gfh*Vm_w6=l2z
zp^1K*=9FpIBP`I@FQPQ8P4I!)wDF|M@?0KQu2GQd6B=UAr8LBriouRU<Tjfq<Mnm|
z<*#B+{VUcl{A$fYmotB^S@@r}PJyrZf9S)D=@oBNGf~*b+``h=%C88^XRM1Bvk}Eh
z_=}P%H7_X-UbPaMO#k4wP^z>jQ?^_{VEGCaD+N@pQdLx|UZZ9$QM*pvdi5JLY}B}k
zXeydDZ_!fOtsEpt^I%MbA(6Ja@sRc%gl)%8oxA9UKkV!sGGxq@IZIZ?LAv)4J$v<b
z%+^Pad;E=u91@X_ehi4n;SA+5(8<|lkbbaYs2r&HS3QQ07%6u(ilty7+A(8=7&o4$
z6DCfYJZ0*%>HkfN8UK=RBYTdVu5RwRa?hMKo8WkJ=gnuY3l=U46=Lxc{Q<%#mx^V-
zKHPF4!vFHs6)VN6F=F)^AtC}I*&-@BhG>6l`-^o%75ekBA#S7cM2>}tO@G$^16KUz
ze_-QZZ<_G)OIx;X6Wf2T{+*f~e}AK$BJuBUwCnG0@=tA%C$C4o`~?aYlH-HF^ROmP
zFiYj7V!f|J25F>uWK3iK4>4QP{<fl#ZQVw;u$s0()`T2r*WOli=-7z_EdRmww@X*i
zt$PpJ$3DS*d-m%;Knxr-c*syOjOJ;Su3;KCUN%a~mpLW<S2|UQX+lgFvK5f*+UeL`
zu+Y%>I%acP6uNkcvrE|0W!ZBq50`Jx>AFG|#*dY&#A>B(4NGVv3H&9ZV`vj%*XGWX
zcb!K*p`0UL-i3|d_fJ1xzafr*Vw>W*9ZisYiS0WG0G+riY4@JJ`}Y4gDGvP8|9;vx
z`uO@4DO!xndC5|x|F{@)Ek4M#SijvN%ERJF+IOY5kFxwYeU1Lv@e|_YR&nYy;Yxa*
zq3-Ot^Fmy>cu8CqSJJ%U>b2|2vrAInNb|z)n>TO${<eQ(%iBM{cIWOrlJ6>y2M-@T
ze)9C$^A|5`zIy%UZLOa-PG9pb{nNjC_FjDWxtbfGKPu~e{3Pnj38#O<L%GLl${p5k
z?)!gV`)eY*jyz~+X@GSzSQ={^Tiq?DY=7namu|L8SZ2tWF>@B>`R^%iQE4TeU9#uM
zuDc1!<IENDkLFII`R9&`78Aw)cveCvyo$1-T!4`G&!Q5{RuiH+o9MZ%S?iA*=|+tj
zHEG(c5x3H<FnP3Y)Tm9PwsLok8U?jes@iwx$WyK=qDxn<3e@%NC3^RvF1W99ZBVB2
z<XisTk4C>fz+gFTD2B=_6nD>~Lj-rve_W%Cu28?;%U``Rb()>>m~Lk`W9BTo*>mQK
zd2+k?jTS7VSR}Y3HGVASu>=WQym;v{`NZ&8t~0{r{pad65!`y}?>yIW+sWM~SDv)@
zi(G@0UCSH29XpMW@>|anf4)ac`mHyn-)MLGr}EjJy`s@R&XfJ=UOI5_(BVI>2uF_{
zPxqqX$q9q;i;{2Y<l<9?FYV8gAL6upmfYx!a>WoA<awIzaj{X4Mwc#Mxhk$*zj5;y
zyZ?_~5`KEWl|~+kTQF|I1Z{vc(mZ4ug0zqS@blX|%*@R0$nu|gr2R11KYgA|={NZ4
z_4F_Q^nRn4|LQ68q>Mn-Lu4+S5acUji2G-V`6uK3$=nLzdXaJd<k)Nov01{9a3mSI
zjmVgPf?46*h!-MrRM$gfocs`EKXL@QfC%P=mLi6n)p6M8kjqF4B8Y#M5Ai`dAbs>A
z%o%HAW;hUOj07QF5W!5a8Dfd}BW3gwK)DQwL^dF|kq<};;=&A%D^d~(&`SvARz$`P
zKaHG4%$cdNL5d)T*fKJ%OjV>F(hLbgmLoE!vWzqH4Ecx%=4gr`C6UHRGo&9f1euM5
zB4J20vH=my#mHD?A;>0V5AqiIilibz#0ndQ$T&8&kp_s&jV<HW>_w81$H;5s3nIs@
zD<bufL5Pf1a}r5L-XnrBWjWRyf<z;6h#X@!<jt0`XlxLB!~w~Kltkp1vy4Sk6{&{Q
zL}Uz_dU`SB3uw)AnJd6BE**?L01=EMw?;yc!$>l6MLyS$Da$+oGB<!=+_w@^4{44B
zAw7{0M2-pXL5?DVv0o>|5PQZ4Tjs9`XYTkdlByTMxUC%Pt%r<7CLk-3J;-N7Fa}#0
zG359T#-54Daa=hzD~J;#a{-h>WXu>t{%_&NZ<(9d^YH&6AxOo%Joh1PVo}OU%=cHJ
z?8-URo%0vzhV(}IAj!xJ<TdgE5k2@ENIhgQG7_1I2x87uLh2zhe}Ej*U5?yF?jRzV
z{4f(KC-Hwzp^PK`*+wD<A}O1Ao@gSvBf-cBBm|j+%tAsDncHVMV#w`d$m=6>`t(EO
z_^`~?BlGlBM#MQ?{LLUr8GBR4-IVch4Y6?zadBl#T+IdIBq1^`t&B-4<Iu_&v@(XJ
zi~~FMDs2rS<Jia;HZu2t%zGg78;Hl`2|x}b7ZLG<eIWG^nIF9k(iV|1Wb+{TkkUv6
zy;P-agfvBDeAO<<5@ZFk6EVagH{=I0<OVY21(G>|WbPkBOiURMQ|A1U`4nWnA49Gm
zhqt;sKZYDX^>{Ax`xtWj$h<x>wxuDDk0FPTA%Bk{caI@&k0ED|AzzOnSC1i2kNBd?
z(c?fVbMhGS@fdRP$e5H;3^6IC$J<4+n~F$s+iX>dKqSXDm2g8=oFZ2aa{C#tf2RH`
zr9SSD@f9RS?BJra(`1i{nb>QxpDV&VRkB$b^%>&l@ok#DMZ1{?&{~%_uYvAu-Ur>+
z{2cm%`Ac&r@yh(Gxiz7~zEP8E?qHEYWV9$uOJ3Vz4SJ)+F$*Vg+~TRywr8<~7|Ukp
zAY$)9wdH2?7Gm%*>t!X|@3L0)tTKsaR_(C+S;<y>ywx<cjL%1wC#xuQj8z<3#_BVr
zjo*&Fi%5ML#C5A1*te|ipkG_PL4UI{(^%2&Yc#ZcMDC;A)8t1N)cBzNH1bMNOj8`~
zPfS0~Kus%j8%;k=X3<|W0DHV<I(nvNHhQim3LT?~LvPZ=qZ5es$I*%Pmr2~#+`;~$
zF{2A-Zf#@D5sCT75v}v13tIc2{j7_iixCHq|CHE&uA;SdTYLtBtlLr3*LtjVMlqg9
zfaLqKo`s%6L_m3MS&R;|UdEO(I-seL@c~V_*2GXRqXcqZSew}t6XrHHTwCmH9MBnU
z@}mn9E0AN^G_!FL&50MtH*eDp9bz-y#!O7GnT9>XW)^ymO%yuDCLWzYG(r9^A_=;S
z+ctNw-w;obE3>T)UIBKt4(N=wrO;(<>)2)xjcl7>x3z7D9!9i5zBl3xlKsMVBRbx8
zCtAiHRExdDA7sYN&c}{#!>$NA(5^CCYc~ch;}5FEBw`S%gp5IGA?DjHq(0PcIeLZN
zD)bs66RJdvT`cxGyEybFyLhyWRmlGB4q(e@g)nX(Xdfub+gG(GhYGO^X(8>Wp@l<1
z2d*j(^%&l)@6Z^#g+ps}JBLmVWEpno?O@5ZIGCD&4st$u29XXch%*jfvA;W1%Selr
zu{OG1#wO@y8CzsjiI&7c<h#u{2|a~)h_u8R<u!N{aS@q~&6tGVlW`wg?k7qj_fHuw
zqAzEZ*W!$svY=(uM1Ge{GtnlQ<+ZU-*3oEf*2U=XtWVKzh@i;lceLS(Xy=##?dIr<
z4s@)K4sz^??(G<i4snb}Uw3rNR!O*LtH4#W5>XYY&o&M{F<TT`Mp!f#8;P>WKAmzp
z@gEUkk+zT+i)=}hMeZYrv&gH?S-GaVIX6O^xfH?kp)&Cmx$?S%qu0A^K<{vQfEL+v
zXNUdlb<r)d4@N)9{v7=>`y2F!>>ts^-2L6TBP2Q^M<F&M|D9I^I?8K3I?ihgdYe}g
zdXLv3^bxO9=wz>p=*wO=(dIs7e2R<m#8Bia<+H*^C06=;#g_3D&4oEJ6`7Iuoq-M~
zwj!;8Zz@_8O{k5o^K>~nJaagHi9}jt&#OP7#Tx4f?u{Z`(FG$4p?gP!NBD^q5f89u
z5`nR+NQpFwVop2C3~dpmLEA*-LI+0mM~{h$N575wgiawgqe^I^^G5TZMpr=x5v7qc
zJbDxQcJzJpqv%)YuhBoyA|`(f`-!Q5t`t)f9Td|C-8W_sdRWY;7;?|YY{1?alYqS?
zW_yfU?1<S#%^qSss>HRJ>)5wro}%9p_t9Rci2Z0HWb{X33KRd4Uoh4Koj=way(jiA
zTE>CoJ0}vPynd&kWi&|60pdY&7nb6h!Zjr&e+u78N^!J*N*Q#yltAjsr&L5&N~wab
znzE7lb17xNa~2UdlJ<nik$m&tQ_#Ub2H;UPNXCv7om2ay@_(f+MTZkf5}yQONs@_&
zXp-Eg6Hn3vui)!w-Gl3*(9N-v<6C&>?fjIb^mZA_vU)p!Quc@ByA6FJX&d@QicSAU
z_Iadj==Vrl_IX?pY0G|3px&-PSzT|-evr(Kr0j=ssooB!l>H)EFZ)KP^>#f|UH?eg
zKi5*(7m~K2Kcv)~>-s{{HuQ(2ZRisz+gR%QMbegiBMrh;U072VLu7pkO4(<Uw(K{_
zK9lsn2&8PRuMeUeq_;yTWuHoJf1C2H-hNLh`&P1ESdlFok+vJ9yhck~UYTY8O4>=3
zyY;rvz>pN`Gf-wi<ThC-9rd;orM&XWdfDF^p|?XQ!}PZ7e;wA_GP3l2y=~}+$@d0Y
z>-u8Kez0YKOxhuovQH*$LqAN~YT9p^rAgXjDL3eCLtjhTCIjafB5m2%>ZiA5pKB~4
zXU4`+ZqnE9r97awuTow|<nJQ;V;K;+pG=g6^tSAuP0-uAYlUw6snp4<hTMK8<x;)9
zoH9yp%j?Nay=}%-LiXq6_J%&4axCid>+1_r`si&x$|8EZ7^Up{$?eNh%D$c)r;vTT
zcKUkRuPchkZK_h%(A%<~w?S_opggFzW#3Qs`Q$XJmU2BJ-+P(zn%<Uuz`}^EmwiFm
z_bVf}r;O3p8~T588`;;B{X7#2Yf3+9Q(uZw_WR^IkXDqk|0nBZA8@kXHuM8!z3dBG
zBGT4Sdh6{#%6^C+_5CSj|4`XJ2Ui$G+Ln}7dfS@PM{if56mDGg<gGQO>@&*k4gE!B
zKR&uXqhjm(jf&kBPP^;2m;J{!dOMj?_8paNdhlH#((XVh`;O8!^dFUN=qJiPq_kx}
zQuZ0+uuUjs-%;6SlCJ-#*m1f(q_hqFNTohe*Oyf4v1NZ!+J-)*v<>}AW&6jvKAd8|
zq>VwOZAR&;x7{go>1{(lPPRn_sPog;7o{wrw@XsWex77U_Vr{xPddI-r>w27uR~cE
zk;ke}*+6d_`h#-+&8cgL$o;gZlzl{L%YI^aM83BtWk0<=fO4?j9!fbvZ;zr3LF9Y2
zl#})KQz>PCQ|?FhIalfJHI&hMJC;)RMddbzewt$I`)blQ^w*?q=(9=N&~H<=*Z18N
zo7ev8F-eu(GW^2KuVq+FB_D=u2JJ4la`c_`JDM8TuWjt(mXdX9Kco7m#ZI-ZF}cF&
zX-4&4r8_l_iR-aA(y0DcW#_W$)6Ng~8r2^=wD_>&kKowrM)h^CCnkN{I5_pAQN7K@
z9_3%nZjzLN#YkyCf0=KiXRUKhp6+Q>KX!3r-~6rWpQ~b2pKvr{-OROpm$oyiKR)$k
z?!mdjo(?yv@6~Wf;Oy!r)-N!sZ+dD=>!BITjM->ZU!qA$?c(zs_8m8>ue+$4f1jrd
zW<4~jKU``|-s9s3ToNq!N&A1jU$}eW$<q_UU5x4<tS#ucNK^DxF{An!n~D`o>Eges
zo>6`2fJ0|*oj)?Jhf)2GljofCRl0F-yixsvqj`6pTHa%BxKaJMHSI^{>ACjW4x{>y
zSKHb)>m0l4f>FK4oBcQEe!lzel~Mh+kkpu{bqNU?78|Agf2Y<M(bKGL`-ypt>Kpp(
zEgF=Xcr?JMzOl!S+0(|?S<u3$e%Gi1!FdLMxi!G3e&)6Z+m`RT6*1GOe%{CdlTNpd
z{v2&oe|kyO%(=mpwjVI6?~%oR_vhD^Q*Ig6Z}Ii*)HrY4$uCCrYex@HK6E!AG_&sC
z{ewI6(uE2haA<Yk+o=BBoc`TH^W=%CZd7k~OpJY-F!6f_qxxsg8Rm4fe2_TGsQ$#H
zdVQ=;Bu)!8s`u>Vbhnw~)-&-&^}6;TFznP{)H|#>|CqI6%EQoZ&}yzd_-x2J*_Nh#
zjI)~ec}U3sZO*in*zs8`jt)PyaF4%HeQ>L%!%z8*n%U5(zH7*n*wy}LFGxS-w2#WU
z7CU<6tGj$s+DhzvDF@E`uI%t)rBQv<x+By4JKc;ko|C)QDb{(0<>9fHjkaH$qi=;T
zIa(ihYgFItkxPVUx7u@TjT+gf(}SJ4c3jP8R9|E8tHq(KdabNrR6oAQ$j!rtSiNm!
zR6jV|jiD><H`+YdsD9tUB`xPnXgOhyQGMCg3yvIYSnSAJqx$&pg<o53E;#?NQT@HP
z;i0>hSGjq|s6OwslGlpvTe9YxQGKiBi&phpeCT6Vd0|WQIF<CIQN!KWxB42@-z}f(
zt>e3IlWG~&uNl(n+>%pnCpsI|-)iVS{9TKzi?l}drF>i$UQY<WyTqt|LHxZ|4bNPO
z+G12+rc&hUD<hVqBpcN`R9YQbtJa{Ma%eN{!#ON)%c~i&Q%O3Q?%_GEX@tWo*JL-N
z`U1YQpFCLYu%xt6{ZgB-6)8&`9yK<qFYvx}`zvnw*9IHak3StbtWC{IAybX&y>6^k
z2i|wzy~e11W@@E2g~Phc*ke>*e%rLLrH)0;Up1<acDc8C&NZiHAB^g+48FCa_wEJH
z>`l}CyQ0U-*Go#PCT=KbRG)sUKcAHsEx1o<#~NYo!9@an?HytdD~|Vyi_}~eAJL!1
zUV6)iRA<n)Rrk@)RWHe@9;_ZfFL#i7FnXAJBzm-Zg4#k%QcuC2rk<fziJ9sZ*sIhZ
z(4W*=dc#vp3)2VoHEV)yZr0AsQnWXlh%Ga={5j(M^H}o(a|iK|5ogPPV8r>ol3|#2
z<d){b#8QqvJ6q<l)QJ3+ftJ}s`QILi?)!fu(f=z(qN~{bt4E>_kvS);xbZI@j}CXp
zC{{QebYP5xJUr&i7R#~eZ~tG$re#JS+5~d?(8Ku`jZ<H8yzXcwWZoZoUH{<`>PTlZ
zmo~!u9~h?|nVsX39q6w{t3{68vag>riz{RFWDH^ym7GD$mXkGzaR}F@=;p3%$txQ~
z4k7mAx*5I2H4&ZUy3f^A>~}qYeaQ6$I++|p%zV0DL*I6Nj(+R<9{thv8@jLCXg51C
zi+n@$Jl!qa&4k81lRG1D?oRHe!r46sb{_YF?kZ8p-3z<0dr5Q|_W*Qd_v+|6?ql7H
ziE-}2lTkHKZ%;-nJlmjyJny5QdA>xyB}Wnekyl<u(q*P1bNyI+AFmLv3_|-)jmQ`F
zHuJe?V(#PXQ%Lyv6!W1s&lo+khRPWIQlI76E0i(%Z)829Z~t3k^t#dc@5<=B4WsaB
zN9O}0dQ&r6$wnTojL|zrx<)eU5Gk{fPmNrUjw5pt*PVaSsQu~a+tC@s9cAqP;olj%
z|NT+>8!>;5+P}w^8Jm7RYVQ-<f>&FS$%#?*-x$G{Ih`2YBdgQDXEfhEwNxs<a%u~7
z=ieC3|MSknVEy+V-xq1d_YJ;J@|N4+|D@c0b6@j+<Ni!BYW{P^{S7`?^0zSfVM+V{
z<^yzNl>c4k1EdewEkyoy|2H?F`yK+B7pREH@1z6e@5~d-Wv-wi+s~tvK4<d12EQ|D
z%Xx%<>-@p_-^=MNea>XJH-b|7ok=@}@>e<8WiEC(ERaO`@6O3C{oZ63yC&s-)tu}G
zUpwVDeZp^!C^mBw|2JoY!w28Pzkkk#vt&h7l+bS2Aheq|3+=XTvpJLRRtaB`xhiYq
z!nd+8fnOzj&K#xGE?R0XGbj>OS%i-tFTy8J4y-n1N}Fm^ryedoZQ8Bk)29!rHe-g|
z{(JGcte?O|K78z05k7IE2%kDtgioKoro^mS8%xZdy}ZQSxgvbQ0!ROa3-6Q&3p-k3
z>C$&4mMs(En-g;QZ`qRDUw3Rj?bwO(Y|f<Bj`7ou8|S4RKi*c${`eez+F1*ow2Kxw
zYePd_w2K#)_g}fPs{g804gFWIuI;~OO>_T<2oWC1@(VlB!#^ZMe(tvZW5&qO*U4WV
zfBt+w?Se2r?edjg+EuIkw5wP9X(OY&v@tP$+Ss*T+I8!stG}yu_G~|GT%4D7<3>O2
zrg$&DD?e?*7BB7A?S9%FJG`_z6aBQic6n)&lKiy0cbgGa!%rI$;-}SWy;z~*r5!ik
zOFLnrmv+)*KkXFOsi=89cB7Ye(<VP{e7uaV$L9$3(=OpNtcmo~Msr;J+qI#rfp*}v
zc`NjvZ;h8WB0~2Wqoe(_G4eBR$jWDP<g;bd?JvPgyJd@?cI!4T?e-mh+MT<V^-1AT
zQJ2d_M~m>dxZCA6ZWQ71@sG=G-mD5uOtfT7%~U&mx*z|imv+t^KkeMP9CKdw%8QoE
zIYN~-F;RpjCCTmNZ@J8K>NL5%2wk|aRpqdyJu5F~JGGcsIX*tD@|G=fdrO|nZ3a{h
zT{5jQzbpTbvL8z2y)q&o``Y3;Y0`SnsZ*0Yr|I{(VBzY@VPR`4FI_74DSxX&p7Z9(
z<15hy!zWBU<vC@_P2O|ykM}HGXp)U{Iefx|*X1TnlKXel&R_7yXAj@acVHzRdU6hg
z%HMy&gqNNZCw}DE^$Jg!a@lL@RNeohdygr<XWHZa;COayWA0`6j0+b&?O`EIL-{R3
zXU-Jip`oA4EneKLa9G$qucb?~dM#7Fw_Mt7+f6w?<o}*qJBcN;^pL5OWnSgEDZlZe
zP%mu)zuDHUg|ypw%|TT17(2G6$Moq9Jm$=4?y+!TkVjZpS&!&w4}Rl({Kn&I#K-67
z9GqSwAz?G$w-~c^YhvYX+r*gd+w*C6FzsM1@^StxsG-&RasHXYjUVS<Z;!ci2YM`B
zI>KY+%CR1ikyAX@uI=I>k15Z!2@{m)j^S(8<n)4@(Dmz8d?r)QA>Hfz-fSnrLv(Gy
z_7yBv=Xq!p->ob|#>mo7yHxq#O*wx|Wt+nJW2&4}^7mwHRT~{`N}V_Rg&S5osd&%A
zg?tZ-<nL{&4G)K{L@zkfaS^wf??;};)a~MbvlN}ZLPC0b$u?-rm_c4+_5WXNte1A}
zT0iYNc#`K>OswwrkBBgZSy?ClAAP$q$Ar)4rJWCRi<fw5!<PGTTodg|*k8BKPvM*2
zj?YuXG(;=-d;+%R+H=~R*(TaKl8=QZ+C__DmiA-C3KQ)b$z`OMHYy5!qfIzIpJ#(?
zH-=YGiESoCZWl4J76Q+K@L98zHZ^?SyzT#wz3+f)D*5)G&~gbSp@+3#2W4FXp@$Mc
zDeBrg_J+MIYi|j?NtGrohyv1)-tE}d#@g1k7gToFUeWb`&drUo{C3~(_sZ{;|9g|q
z$=vU`)91{YGXt3s?MiDEm6T`$|BPry^hFWM)0g+u0@SyGfp<kgK|~f7_E;1ij=J=j
zC@PA`a&q2^_U!#6LOs{m$cFMRc9LbsJMGSCbSfxTfjUR3;F$;TJBMNEaE=1@PbnOB
zfbE0ri&zG}D)}08o~5*~PzY`K4YYxUw4@aKBMW3LYeZFb)`)sKeAbAV9E?Y#CD0yh
z@S$9&kEKv%DU5Sy3j#7q=)Q&V3vx)Lp!=mTFVKBm3T;ve{fK$vI6)r|V8Ak=45GZC
zyvk_aP-!8p3spcTVHhP^Ut(BD7s`$8`$Z?$)LKcKp`0jFQmG2)L5!n9>v7Os_aV+P
zX&Si?ZE-B4hTMlSbF7Z8KRG5zAooGf97`-E_sh!2v2q1JlH7;3KDHx|+=sdH*goJx
zy^l!($$hB%vEVFnUnV2RvKz>K(38iS6!DVDeURy6sTJftjDurU3VsZ^4{dcUu8`a>
zDk8^<75q?gKP-$K3(q0<_v|6Z_5vT;@0jE>Uk&6h)*~as0NPmzZdrKhQBe4DSW(f3
zVa3JX9wp_AJoZ;^^Qfwh@Tjd#@~CSl@n~$U^k{BYgE3R@A(0;Q2n@R75fc8vBO+ph
zM`Yw2kEp18j~zQMc*y&PNcZd|bYFm_Dox8E0hvr+LwTW13Cy!3U_Xp$?0@{pA<kp6
z+@aDu7&9m@D!>nqf;6E2(VnP=I$&5SoE3n673dNbkg3e9tPwdmStIu5W{oI-c&fk)
z2+bN15tB6{J~?Z|u5<$PF~*UPdGw);0b5C{>%WHZL+SY{CdLYE78d9dxjbXP@1^HR
zxg3RrApdtG=r7RG_U^lO5m{QAyF2th=($nug@tncrUvmqf2HQ-Z5vur5;hd<AzAr;
z6)7I;f$}JkDADsaK37#Kfm|s;S(KzWwlM9`(0G_1(!0zLR?=M1MP*F<fB+?s?di)v
z22(+{WT10X>+8#gHZ<f8ZEUI^in;~U#&BRSLH$T7mZ7%p$k6)wGZ0QOUX^IM$FMlh
z%55YS7`Ft<BiFa+qkV)v^cSS71nI(<3Pv7_E)zZG=&`}VF$*@%X_%ug!933Kl*#y>
z+1Z0Uckj0L%*k>0+_T3VbQ?>Ww@(1$$Xr^oAM`f#t2*?71Z=Y4@S)O(NU%kUZw+r~
zcs#tZaja)k({i{~WR|B~$87S%v5I*H1j)y&B*aP@mIAsn+e(@PHdijKqlQXj={Xzh
zyl{DYqs-vA|8u7V<AFtFvJLL}`GKUMV1avS=|DKvVY+)|<<G3DsyO%B+Ww@jE{oLH
z_w3i$$m`eCw7*|-b9Wn8nYKmZ<KswKnK7%pJdy0*zn4^0c(5v~OG!;l1*xs&Kz&!b
zr=<A1r|wE}PfME(G8EvRk)g+u$x=ynb{^TC<Hv$=`+qj?|Jl6%Yi(X-(sxir#oyY!
zO2iiUa@$v#wtdaOrnLZD6!n3Ia#YlRgdO~HxZDo@H2j}$2XmESt_STy{ukN9@S73X
zn=2|hPl}6&ladl2Qda%|bmbUQQ9qkBHa;P6`w(evUPw^yqi&W&h*aX@(%h4idyzeR
z{P}zL&ghW~e;F$+jRSf3-L$eYWl(iBWmZ$Og5TJ<#J#y0b-K_vG*n<57Pgun9v(dy
z)^;Q-t1sy01X5l;m{isofj;+BX=o5Zo;swdIRo-j0=?UpNWzUsM1-G8WTc2hMd^?o
z(Sam3Hj==81Bs6>CkY8EterdKNMd3#NlMKoyLRP~wDeSCu<Ib-e~WF;hBdLIFWTf^
zZ1%rr)BD5k9siC^zX$CTwCl456&2?WDlP44hIYeW+xSXgi%lVt7^v^QzAzV}Y^Dv4
zikc7q3lr6&vT~?#6+Pd}*8xf-5!!AA^p|{I#x;Qw*{)Jrs<1QU>jK!T)WWqr{%?Fm
z1)Km)k_{vQr3Qh4tp-8CmkmO~I}9SCJ{j!T!8VMJ<{HMt_Arb~FgJwTp$rofRbb8p
z8Ib(R+M>h)_M9qIs;fh(+Ilqzr>9(AZlt__zX;YFJ(Mde-C)gOqFhtcU%9r{RJpG1
zTYCM0_MKw=piH<*>FK&k85!Nz5hBB~GEK<&GLf&f{~7BF+~2S>OwSm|%FOgIl(*6U
zFY64nZIy|Xw%z~F{{A!j8*OXUasPAeaMTwbM3Ndvc2#(gO3<Gw#Ft2R1d`~T2_z}c
zgX9BG1CGO#NCQbgng>Zw_ad2DW618^lgQrOnPgv)A1SE{B-M30NJB#$X`<6eCX&Ex
z5**_JdI)TC;8CO$cph-Zr4I>>m_&B$^dm{>fh4oW1IDKhX#kzC3g_2Kf@YJD5I+(T
z8%W{{VV<GWTSg?ofg~i$0~Sqzq#k(6B!);5Jjl-CKvF`7$s>|b4-%FgNOm`PkVZPp
zNFqrLBuS+nq^t!r1?;~_B(qhd(gs$*E?<?jv{qJn`Z-oc#w8fP?^#({9bm^lWMyaj
zvv%(fV^vh-vMTFm!yMDVYJ~V&q?IMv>8p|m|KpmJbdHsre2JBk@}8BN+QHhj>me&G
z&7YNC6viqp&SjNU&Q__aYG75<@vgEY(Y`7%F|DlF*mJD7xJ#_~`1h=YgbtX89<mY>
z{aH!5VXVBoTvmR`Y|y_AEG(}U>0n91d{x53TUiki=UA}U$%=}4&)Tu0gB2b9kQEc-
z&x)0WL3wjoyYpwO?AzDCDgb%J{g8ibZKVV{cRtLQ<BTIBq{gszHI9nfZM<X0fgaJ(
zCB`u^n~e(!wi(OUm9ECIv1Sl{o|!~4$V@5~m<0q3GYbqFZ5ABjXcihe)hsM*l}2oA
zI~5oA=PR}U<NjB*0G#RpS_<}6K{nLz%q-ZikieLP<9dk{#y1>f1b-a~Ab}(ZMhTAu
z6F4J*gpg1Y)+HVrV&Mnlq0gaX_JSLXdXqk2cl~o*IQ;T2f<(eWllpM)k|Ery#D{y7
zzJfcHdcyrlc=lv(xId{6=!3o_mc)^Gl0f>wv0aIzKN&!hNHTqF*DjJq(&+<avxtmj
z6F8HL>>=`_CbP&NKlx-I{HJjtDWXq^ErnmK!7-5pPwT28)ue{dCv@Rak)(+<lNNG-
z93+RxK=|daDLD-HADO}ZM`q**+<;^bw;l~8-w+FOln96=IR>S`Llo2CbAtX(gF_Ro
zh>%z_2;cn6pHt*Cg!lpI3^_~Ak@Il!yBVAccY(B#AK{R!OJMQf$%=3)7WtXL8F6r!
z;tg_>+#(L}d*s{X4uJ!g@ys~lO5p5)Zgu}-OZ-nm`=M3-r<M7iTi(0>P<z}X_dkbw
zK-|G5XeYzSaN<cGl1Jn*=^($5U&(K97XMT7j65eV2p(Dan!JJky#HsG{~djs+P_b)
z)Wh!u{(ty%!cA=-$?wFAe1fHzHyrXff{Y}i;J3%$lF?)goFy=hD6z(a4K<NWBJ`>0
zWE%W-LYbw)$|9;PHC7s7vnUp}1zbtR(qL)AB~RKcF1+QjbXdA@$pgMq^rt?{fX0R_
zBNm@!%=!vY4^~fBFII1s3CoxCVfAIrfbjiT{aFK81L?5xb{^E_xt^G^%vgh2Ls;gl
zuUSJ`->@v;t$=08nh8g@V|Xi;kY&xXq2t)H>{#|J2bLpC#B%DAiZjdQGje5#S#B)%
z&)9=Cj5QpPC(G+IPhJlBx1v6O=6geoG~xp-fS(b68oz5=|CZ-J%eO0U<Ub|Xf4rn!
z%OZas^<P|~KbF0F`P^CGLit9s#<0e+#{CN=%_8Gj6Ic_OzU`jMKZ+;)Mf}PCLe76)
z{wb`fUDBHN56AywYJZEe$aI$PzmS^TnwY_w$(qHQ&6)#RU@jdxjm)F{*<=ox3pYv5
zhg&4+gJ0qH$R%)dB;1(*ceSj9@$tvceAWWi!ha#Z?j>CGuL#>cF5-SH{P?j}!GU&v
z_P#rBHQa3Z9a-`@>{6)lGS+eyUg@xcwUV_K4z|NMf2>t^v>IZq0s4;R&-$LV7GkVp
zt!HguZTy^W_k8~f|D%%j$8ejv$jTqz{AZ!fObNF9mzU&UU*oO+X=UE_ua<|ul9RvU
zuY;RXH<0ZtIFg@8SewZfde;1_(0|MSd)5=K{BX^u1FJb*Sk>u)uK{Z<4Q92aSoL-F
z<ts2Yy#~Y3|D8WlRsh{cfh_z4{nPuadk_43+s5Rd+`4~HKK{M$AAd^e5RQ0r)OU7L
zz1xV*2e_ruQ+h{d>2)M}<jv?*84-P!x4viK!@R=>?P4C@o4Ivg@F$P;XZy~d`z~wg
zB(+oS7cM^(pFcimrR=?qwaK_VpGjkL`}wT@b<K>Sk7pmtnvt>CgEhjTu*p@!I)2GC
z;rrD}OLNbR?&Ot3oNtWW*O>LDNRsnS`RO;wJ<MO6+<7^URr>Ya0oGPaUCs4bCh@1;
zk1dwG7?Ty!FT0OJsi{s*`QD_ALrw4Yuzf=YN(Vb74_SJ9{H8b8gnO1|o`?{w?7K5?
zORDd<qx&S+mb^Lj;>q*F%9?#Y{bqTu3a(inoN7Jcxb~y-yqi|~OTY0cKR+#X-o2)A
z8|~NGk4p8MUy?Ry?vDoA>tz=n9Z70wdeP^nr6Kdil(i&Z^ECV^w(q7yE51|cnz18e
ze=>F)D{?UlZhgKt?5=SA!*j+(8m-OWJ?-&!^^$=kB!A3n{fP5#M*06(x#8W)J<)ll
zmQ$WtY{>0MyU6J=fLQoGGMVOc^e2a*qr#rQPn<i``bk-ndHUquccR8R%!$-!xL`AJ
z^*VzmZ>~Ih#fhEO%kIbRTlqs{dvENx6|-e?zwIdv9jtlU8|~NJ?zgchS~^VJ_S4v-
zm!_)iO8V~f&f1osrok0=-NpsydA8S=Pd2DX_gS_0ol30CX-VkVZ7cN0YOX#pJ>k<8
zn;))BG$^R#r`(YJBwX-u+ly}}-`cNQ{3!0#V3)VoG&=l@o~MqV5dYnP+Ky4PrY8@7
zP;Y)%G{a!S<6l-jESfT5*5J`pL-CkhOJgHX%pdl8DK+-vhfBsEi-MJlvmDRg-uvT&
zhIHk$8ex|D2b<}dK?C}2xO(=hi^Ci3M;p0}zA-V&;_U?OCl#Tb_gc4?BztWB<*NE)
zow1`%w;s+Mck!;?5pJrN#vR`?XSdyAyEgYTuBknDVej15EyqnB_a1)z(z7==W{o|r
z`lu&~zPz%te(}p;ww%+K&kY{-%{9wI`fbiTV|V?~^UnE0F=nrpcrU7oF&sT-)zRy(
z-<Ova-W%s;T9<d`p;yu`H|92P<-6ytbJE`6Bi^xIqIYlkA<toJ;x$&c8z1oXT4=Q5
z%A8&sDD7KoUR`{|<z`J;876F*x6<oD<>>LBG}lD!O|{S5JNe;&UHrf)kz2AR>Jufk
z^a)go-^6kIf1CE9RzEj2DDqRxi+<ys9ox-wU)g()G7k)h9DC!f#p2d1-YZSlqcffr
z_iP(9b(vUQ^}B=blNx#B*N{h@32nAEzpJoEbe5c6nKt8?vA8*2&{`V#IDEt9)T*cK
zw5jiFeK<GxPq~37){Hi?xE}1cTT-*SvUy&4|G71}efk9+{b4}UleqqaDh7?M+1z<f
z#bj4$Pv>)eAC)w!zk9k@Bf4kCuUiT{-&N1sl$m$sgTCv-M%A-N9FN$^DA~rN!_Vn%
z93LGvL2R@+%WS_a=Iu{SN_}RQc8&}3I;oqld@o|`o-8Z7-P^RN=haFrDz2x5zdA&?
zEJ$iKUf_E<^K$&hqK8xWAMd-kujM1p&7T~dA1yVn`4AOcX6vW(sXfbSR>|H&JslDc
zzZ|k|UB@c+$0HB?+kds}ta>uG<ioXT!U5Y?T;pn6i`x^{#9u$Q$KT{t%%Xig->)1w
zVW*qc<vzo|TY4Z~RoA%5@CU)qm%i4Vx@`E4Cxe5QYBkQAG0Wjm?Y`09d*3bznh~J?
zgl~Okjbn{f?-2*g#vd_V^&2<)-i2GDZ$^7kb8ZK`^lRvE>ObJ2Ta^y?a_Nw*n(wxj
zeC6=9e$va^6Tf$VKk&7-xR+k$8Q!8KwbY+ZAG~ZmZFs*v@jul#xVt@=JjwKRTx?cl
zQ-s+9=VfsLvQ=uW+2_V*Wj~GTT)t??g23YWWxY}|qDE}1o;r8;&G|PE{nBCkyVIFZ
z3nuI}@3>ce-e|p6rqP8}*Sz}K*6dzWCpyZzIPmQKYjel@`xl#W6CyjdtFW#oPM=;m
z)n8m*EC}R{+OW>6a=Y3@cE`(yeR^Cy&{{2?ZThn*cXRIbw?qAdj|UwowHs7z`8qPt
zC*;K3soPBjznQ4roTOhgRJC7Q;-iuc_d-<KHVr?2W`s#UKdahBHeai<Q@rYA+w#Uv
zP|9yhH~esD+gI)+Z}7M>N7E_KJ+jtxzPVTL-BSB-$`#+9(_XAu!ryuEC;ip#>BSM_
zT=@afr)v*;jH<aAziM*5NlMWHn~6sYir6uYr|fxQWwZV3o0m_j@_7DZR=Y@$r9Xe|
zfHfu_Hws>lJanph%H9j3zPqvH;MygPeXXVIG+#!&IhkdkJ7V5-r)Mr&4n0)P`Cn9f
zSS-34`FP3mxj$@hE{&XWB4hD($9;UE&G_b~o@4Wd65aB&s9`I7D=nWdI=N_}@;$qn
zJCDX?)}CFQ)^lR0=js!7gJ<TL-88Ez8@6Qa{@)|hNB2ME;dW?njGEGpF&jU=+<M>O
z=HjQZs_F-J6c(ox-&5POQyNe{$<6iqPd}OpJkJcLep#&3U#-pI@PQDY6jsS}?Uc#3
zDRWPMrRrR&yT7t})9vM}M?5Q7Eq1(-c;b|o&Fsk!A6>0gnrB^ftr!2XPlVf<31)ST
zc@rF0WqS_PE7(2H?8M0Viw<5|BTHyJv-DH^xW~))Nvy=1225WhjS=yuFSvK$f@G9=
zzg)-qsoy$h2G755aVk7;cip|;brWkfcLz3UR?IDnyL3uDtLVksdWW#uBj<muP`)`+
z{nvm~M|KW+J*O=#v`+chxhad>C2xM38eC|VIj_gH?Z<Chgcx45-*}n)GR-t;vg6&W
zu_KKvj`vUvnQ`G{$4pV-HJh~S=a#L@57j>zSUqUA`-Io)WMXrtnbw!yei!j*!S`+(
zMn87Bu4J)(!+7_H+mprfdYQ-n_|?<S!H-8r4oOcusboKam%ZiWlB=5sOquUvyUc2T
z-i!t8E!#Ky-R10cJyv_g%VG8RA8TYAZ$<qqD>v!Ce&vZ8cVV@mspP?B^?eRMT>s^y
zvF~D2{cmgHqAx5@PoL<hrM<E9V4O~MkJ_d-zim2qUWaRaNNVfX;ZxRGv~BpsZx_Bw
zOTOLfq}j}=dCNU!ZoJC33b}K+ZMb2^S*PYai?Y+1n{VgUm;@XeeD#cpxw)3*f?0O4
z)2}pb?Wbe7RCwx#)o<%x4O}vR)|#M^1JB*^@QUxde(h0hYR%QosoZ<BjBYm;``Vt~
z;GAd`8@NuE7&Jk&)S>M_cua2Cm9U=qY4fFdGuEf?D0NLR%NXaXb>#7ptv6e*SpLqs
zc4@1<vSfvFGN<3-H+|Kj*rwE`)A^UC%~|XDcF2^+Lk_?Dc*2$y*Yi%Wp3d*rU0QF3
z=H%|K`*maI>!Uw!IzRbhYmV8ncj~5ZmY&(+{&dOENrs2wcQscwq|fa6^5p9hyD=&I
zF8{#O@n}2Q>vYBaUR#{57S5WNrxU31b?<!5%AWUTeQ4=*f3dH<$EV%zeq3#`v~9+z
zGSj-#k5As?-J0)Ka^3Y-?-TjsCvMk1rI|c+qUGFeYe%W_G<pU^Qffi(bj}Vt^6fH<
zIe9g<1Gm2$lzlP8NSJW#yTH{y>^t$(xB(N{)7vkr#4R+_%D%s+^g-?0Qyl|h`wx5}
z5pL0=X1mYY$JfcR>TNC&&(&DaG`pwyvvW?{lJe^6w?7Q$DZ5cF^%b2xo-J$Zsa1S<
zyXf$=n#EUN?r%}Lpz1SuZP2K|_qOwfXyo6z>lpZzU+vzI9rt58%);huG-~fVCF_*A
z@(sgnKi?m4K{xToTjK&E9}Lc+PEl(|955f4Vdb4`^ENo&_?P52sixoZeto{~K(XU6
zBfop=?`*XRU!LJqUBcd2YU6uN<<_z@rdOW%UNuu{Nt<7Bd*J5VmL&u0wkBq}Kk7el
z@iwQz+1iQ1X<036Y#$H#nrG$U@#Mn(gU7eG_P(%9%WGcrONs96$L=LMFMjZ<F^Ud+
zzfW6@bt~w@Y2T=^c}4TzskjEo3Uc<gbv)ej#^>Ggn{FR(EDP<oCG!D$%y$D0R_0E3
zey-)!QXBg!wU158VCRL2Q(wlO);a&ytT0<^lJYg{9_BMnyKf*tMLTWNYN)SQz6;X0
z_+3lvE2`t|#??E&qf`U>)+}F=chR=!gm2i7x08S0SQS>g{Np{9@w|YY^H_FuhSbI<
zPLmhvH4oa9*JPG|U0*LGrt_?CiE?etZc1!vb*}fm<83a#_|?kbz~=kc6UyEle0^_2
zphn{_%c$tq533F&k6WAhR^_?%Z>oL+Mh!B&7_c_J)k)8D?VioIEACVl%;=%xnlo#l
zhrVI7^X_!%xnUJ%&%D3wQ|Qpy@BH!t+nD|>yumZ-(`Mh|6_v!E9CD9aRy{G})DPTE
z_6uSjs@r<8X7`zXWa#nQ>gZn=w-)vP=%E!q@cDv`(unEBO#=(3v+ACtH*RzGf4nEA
zy|>ezejC@G57xfh_jl>7qt3c>7mfDY$U7MFb7$RGb*{<$@F7tvPEPvmM^aT~Fn)y>
zxj1CS<2x0L$9@Pt)&Dwg-^@O~>$7ZiW~C)xe!Ot&_um~iZ_hY5q#&?9>Ebe38!vR=
z?sks^!>gT*O8)bf4M_drw=gATr=dLrBm1}fVyQk;eXdi=uzM5kJnlTm3%lU3^5WaH
z)uzE~t!61bS+RfbG0_#NXj$G=|7VWc-`j2It2sALWqSSQ)sIFWu--r5u<lvu_m>{t
z)W4z2&Ohj^dT-%8)gL^Q`rn!Pd$8}XC&)?tM8N~=15J-?9`7rkv3Jy2zJAfnse$i%
zwQs6^&~hxrASh9?^v17k)ZE<fC0<cSSc81bI$!$K7PT+j)!StG?3|oieV!j4woS{h
zDB0Bgh{4yzI@2#U@7qx{{>InMO@lQ%?G4YZ^xi#n?CzNBCXY6cJ<IPq;)L3Y`##kl
z>Yf`nE44qlevX&3V)f$o?Z%fXGv;>${kY;$ezxJXw*eoWCA&RGEx0_4^OfVgg7H<6
z{DEKTH1#>gFLZgI`j~fp^q336<)>{I4s=*y|1jIUGjr{>Icw%D-{RcRJKkbRNDQ^C
zK565H-yc67(zL&bSNP(_A<Y`|Yt>~zx;@R~KQ;MYJM!b@-UDQ^SgEgT$=NyEhQHp}
zBd#}pXO!g(*~PoUvNgF9>q&X_owE`*uDx7#?A+@U>rFkrUiA7<U+$2`w2<MAl_7_G
zF04FWzUYqgQFrx+(OyZaJxU&Y6FIkS)%wRXT^!kzYw4Pmz0P@U(Eh!k^GK=G<OlJI
z4eVoUng{evTB>rh`cSX4%ejdOqj#QTi*tIb__f|Swr*jc6YqMAA2(~wW%EtTLfmXO
zMmeob-gIx_hz-U?KaKBr<G)2ir;S}R_(-Fx>9SnT#I@6p4;2{RxHp-zx=noilkd3?
z$`e8_g$=yBSMAs4LdT`^-ws+BvDUuNgNHwDYG!d>9`S8$t~_!0U>4`hl1)D^D7eOP
z3U+;0ebFI$VXb#_@G16-u+zfvD)&77CP%%L#_Q;~SeUmzxG414JhS-j%2{`ZwQ$~c
zh`zQ<8vNdQjMbRIZ9x}_dhT(fTW##*inDglCv()#JGFVtoO8c*)9v@h!-}<6@eUks
zo-<^#a(+Yj)=9a#PAREN#?AlmWBC4G2KU<$Mjdt;{d3-Aoh?!P_yN4>Z+mV~TIe-Q
z<6wEk%$d<Oz4wXcy>2mBnEo`U!EEW8X99~8>~$|M7iWZ8Z-`aNOkI5~G5M%YZcfBn
z1CQ44cR5(C(h-kZG2vWtap=)q6UHB&7XEy#;a4UD0yF2n+OQ(3_|22~_s>2X(re_2
z`?~!yTurL&HhVfNZCm!}x5DCeh40VLTNZzH=DV}&u6@@xcf)Q+zvIV^?-vH7ZVP_(
zY=_PvYsqpwarHX?_ZByH?H+Y5FJ)W%`ftnhvsPq#{TiuK>^#!as#n6j`<bIS&M!Rn
zcD$?~bk*NqR_eIXYFEVrZtlvI2Xp5y8e?s8_mt0pVLvzbe6BokR)=i-n<ITx-L~FI
z?NNIDaP57W*mPR*@?o8OM}JVsZ7=oOK6PdBo}j?ZdS6exF{8I&Gxq~`$jgYC9D$c=
zz{UexsY4FO+N#ZWt<K-#$+=<sQ{}P-_dDy9PxPKpwsFoI5B|?7XQNaPmgtljRT>5L
zSaAL6nCmxwv3ls!-z?NFs`FvHVOYb{i!Tpd;d+m)4ql<LZj67y@U8mPg$cp#^QIkX
zUu-Nh*A|mGZ*uC4x3M*q7tD>BWYjC`=z{~^mTNb9ToFBaeqsHtRkvB8J8D-hS{!0#
zeWv}pN$g8;6Uzg3bWCjS_$qJVq4n%cmsQuVd-;S++BjqW?>pwDy>tE1!Nsp%zgJPM
zE2wSr7o~5@T6EX$H~WXBd%PMh$2Zm7xpuQK)8zcYs^?2jj<Fit!*~4n?0eI+zhAq9
zb3Sg%mBf?V9Vcu#eXTsi|4rv2-KN9mJ?j_kTKv`OssZI|E{**5KuIR&qsP~i7T&&R
zWT`*3f04It!_ldMM>%&TP3vD5#B6`M$Mn0@4`XkarO!O=o$r=*udMeP&VmgNCws|S
zJ}d}oUG~YMkdrd&fqTJNzZniMUnC}tdc55%!u_?6k*#6k&c0cx@fX*hcso1c_0>h=
zj_m8{5wlzQRo*YW=5dE}+QvOfGBcFi+W2aKSs!2fM^*PVkCjau(YwBry}w}a)P*<l
zzp;;O-Jx>h_T`(KPA5&D@V)5iEdR9ZDcg<>JYea_kvaT(_s#y@@n!IjE;2e5`O{y2
z6FTG{-*?Uak8l1K{k`~I)A~<;US;vUMVRMCi)7DqPa@0pykpUBQRvxeu~OhK*dS=}
zgx{iBnp%EsdBXFI=XF5vn`p~g%O*>%mkl1fO*UIetc<;at<1cJdJ&nO*KbxYtem{q
z!tKH!VYqOt7n~e#ZEx*tJ>6@z*GfP{cEb9Mb(^)!Ype|+OKi4TL|E<c?Cq6qk#ALI
z(P&j=anP#X;+R#7#VM;378mI}$~@h?o>_dfdTpU3)ED#-stR<3Lj?{(JAsGLN#HH?
z6pR;+6ig9fdA16og#m&DVW=QQSRkktMhTD$m)Hsp2#*V{LYNDJyTYFZzX~r49?~)J
z?I!`xnr}JSTHDgZ8Zlg_<hj7h($d{pWI2lFOtV~S{hei?^?b|ktzUbFdTp`XVI66i
zZr$k_<+aDM-a65;kPfHnmE^_oO7l8odBys)<sIwumhIM0ELClEt;}p3ttQ!wwwh_R
z)yB^%)MmL=lno<+m?8Xv7Cv2En8i-3B*AW>*m9ipCCgu|&pON!9e0=_y5z7>bkJd}
z2+o?ecXixnZ|_)Pa}?T=z*$}23Y!IIg}-=i^@?>c5nZ;qZgZ5WqnW^(etIv^u&%N9
zbS$=Mv8l5;WwXN~)hga1(~2W76mkVUglU32p-fOD9Bw(;dW5B~^<vA7)+;QxSzoh!
zW_`=@wRMPPvUQea6<ycqf<>QO5c7}s?C(|YInryk!*7mG4yPQicrNjp>d@{u%xX4W
zJ`B^{S*3pdNIyTxdGNbz;3z0n2)~(<e}qzV_&vDdGgvxUIy6=O8Js%!%Nyj$-#}QF
z;`8}Eqzs=Dp9&wV)LNf4BWxird7AP!_)Oq`Me(D^%StLQg_YD=Y6Bm|w>;FJeJkn<
zN3wizOh4Ow;Xwaq+dQ&4L)f-@wgYVm@c^1+>u*cBe3lUz1XqwEW><{Q=wx=bezw1R
zCEJ>L@3UR~cjEW88w$nfAuozd{d19K+6}i`g-C`;GWp8DmyNSyc#3z5_uYLNGX6IH
z#cuJ1b~T@KrDOczi))u)XJD5~hcLA(#JIA-_7?UIc1?D!c86*HNV~IkQ|zwU&9`f(
z-`m)W?04Ad*e|jB)o!ibJG;$xpX{V|s`L@Zp>`VGk2?NCet!#w(h?w-0(lRA1M<+d
zuNBgP{+DpyNG$=WO4X!nDJ4~xa-<qkO{tbt8$MhqPpSh_pvy=?mt1A=EHjiEN%>M^
z=~vPo(w@>@^vFPI{*tRAr!F!7^s)Ef=J2QCFxNptiR>F7TOb!8&!Kcs*=V`{SMmNK
zzLK=d?Xa@RkoqhjBKy)_-Rou}9Rlq+xJ#YCg!s2T386<UAx#|B)^uMDl_p!{SY=xj
zTjg5pw<@%#u{v$<>v+WCoYfhNpRBH1JhE!DxM_98;-1wL`)!V|?SmbS1p|e>1w(`?
z4hfF^1r|apfs1ggV1{tEV3}}|V6Je1V6||GV6CuJ&>+-s*yUI!I4L|V_)++S;D+#s
z=Oiy(hiu0Of;Yn3g6F~x!3W_}0n7T8K+Rg+@+)gS%K_H?EQQv+EWfd~aX8}W;c&rm
zgu_+GaSpc}$5_s>o@lwydY0uX>t~(;UdaxFMC&cXtfiLm*2F8$E7M`9Xs?5{sK`Mi
zinYwP-ep;4U1E8}dY@&B^<zt7^UjiM^U{)IQ{mt)s(0`a{cfpmqikhtLs|8<(X#4q
z)6>ez#>i@@O<yY~n?Y7?Hs)5IHa=DhZ01=7*sQUNvsq`AWV1<_Yi(!a54!yPXMLXS
zY2_7Y5o5K%p6$5Co;Zfs8#r#a*LG~S|JHG*eSgOt_B|bU+gm!O*$;6%YCqAj%G1+}
z2sDMiSiH6R$$p7roBce;hxY3oZ`-eS{AeHL7$?XO?iG{^+dVgU*;;y8!`~epjUDnG
zzj0`CG<B$U40qs*RycfcT;%Y|akB$Q^u2?!D8NBSbl<Ymy4CW!^*slF(RGLAqUR1$
zQHR4O(L0AQk-%!C%~Y!mHWRE?+PGRx|6FzyTorGQcW)nCpFut@KHvCw`V@GTc}08Y
zdMA08cxQT7dmDQ9^saS2?tH-coHK^6_G<Kc==9d<DgKi%xNp3zy+`{j@|o<j(r1>>
zI-f&c$Gw`pFL@vHzTthw`+>Ko_b6|^i@>Fii@l4Pi`eCi*N<L&XMuAcXM1NeXR-5m
z@2TG2E>m5`y3BFG^nUWX<>l=>)p@M*96J34-b=kDE-5ZyE;5%`mwX8G0IaCR@NPBG
z2Ino_0p8nul6*pZGJT?ba(#aBdhYd`x0=suZ*8C7y$yZddiC~*vmM~k&wGeRj;+As
zpslUPRa+;I)!yzNn4io!-#N%_w_CJZkz0yewc8b^TTbW1zlnbmzZKsTE4e*%e(HR{
z?S|V)w});&x;=NJoO#ZgZbRG*-K^dExVg9;a5?Vs!R;$|HTMDTJoj(hCC*{a-foNB
z#=EU{o8h*}E!cLuZLD*oZ3>i@=UwLf%I1m9U7O$BJ8g)xjRpT|F3q#K;+$c73*I|=
zzjbEWzI4~JeeZ5;8zV{*Wr(V5OKpkEy<u3^23wwsrLDQGi7g&~wntPb+Ar#`y>GkN
z<(FYU*tXd|v)$k_*Vfl|jIE}Jk8PUGLwC9ID|2~cTMI20=6%k^*;dVCg)QG>qwQpO
z$Q_&-UST8Ca>AKPAHI7aMkk}c|IXJ!3z(1S6uO7+=QPJ+sfEDF4pWx7I1Q)$QBD(R
zA9<Mcbf>vAUgxxx_Jf=v75OW2W<o09pZKyaJb7rD%qh>Q#HmW27V`dnDnwo)IxQLH
zN@P4BK2RSZGavzwJ&+j48)z)hRG>Mo5J$Eco>l{GK%{UoiE9|}VqH_<TjrV%-({|~
z@O{Abc-L@>@PF-p4y~N3oJ!luvU8t#Of=c&=(1ao$3vi}KyQKIpZR4J5D$nC)Cb56
zNC0FnhIleDJb43+MWk@Dsp2`nTP$7;-y6gd_zn}t!gq>TCRPOc7krtb<*(3X%@>!6
zYsClTF=fZWU$57x*`}AJH$}Tc?IvYzXl|&%nXT`k&gMMPILn=_ldRjO%hv0m@2~Yq
zt5Dm6J6qRF-`{}CuAoA-&T1#<9yX}ptk(|IHPY*^*`RY%*F=M>Wu)DMYpOqn-Oips
zMQU!>I;H)DyIv<!H%GTs?}>hnL5qPoZyB$@j)(4M{Zj@b^;*?M8rOJfI-j(Kykxz0
z{ln@pob_7f+OxIwbVNFN`eUd(ofqsU>|~y)j<0U1zMr0{roYw{y*Fy}ISCpT+)}PT
zCF0Fyuh+P&)}fW7$<=A4D%3l<^L0gfHCk`<?rPa-_RyW8S;#eK=dnB36SO*cFLb>0
zeD!@PuDTJ&LZd}<v$iWQS%0&^S%Y>1JL-jIj#h_WC+D)p3yna{W!g2`e%wf&g-(Lb
zHN9oJ%KF>&xs-_Nub!v<0`lmg5vegovsCLcuRmAB-mX5M)5=NKaOL`Pm+3_6%-6rG
z|3crwU;=wPZ;bva{Zb7h_IkD-CzMkPwK%MOio0IdNWZ_~UCkVQA!VT@(&B1+X^-UQ
zaZPy|IwFHowz6i0z8|}gW1)Rh&rhR9!$Zr0+n{emeWH>%ZJH)pv$bAmd2t)KQ*_?w
zD(g+rzpNifjnr0FZ`EGL4b^SYFEnT~u+uWtKCDy2JIrh68F90;=j#dC=DIy74N619
zT=NBQ0!LZ<iDtWAyKbR=e?3!;P`0l+%2g?R-_*pXH*6E`U9J~zKF^Q0nb)b`!CR$+
zca0G;K@Z=v^@aNA6EenNg25Dn1_N{bR{bgL&FmQVNNNg|OpR3cQ(vWCs9vL<z)9oe
zXq?h$)9BDh)@;>m*PNo&L)%W<PrE_;n)Vp31#cv80&fg&3eT4}o9EA4&r9Q#@=iey
z*y*_HOwie^b4uqEeEf8|dZv25db9O%^z!sR>9O^%>6;kX8Ki0SHo6O?gR-mLW#_O*
zvLo3wY%gj)l)+BjOMSk2sd|gLGKb4C=ZHA{HOw`9H8yJ$Y8=+6fHJj0so0vcHJ54n
zYo=-5)Z}XEX_;!}Y1Kf__-appQU*df^>{b6^|&V7+1$<CEbd`$E3{5K_YGXy%I4Ye
zDxkD?c|CM2bVfpHEp(^op3>FRGl9~&>P^t|fHF_f8w2HD2Iao1r>8$sf0=#_l)h7+
zYhYqv4t0n$FgL6+EHk`g$X2sZ6RIsRiZfE@8yT7!V!i&OT&LO#HD$J!p%;4!+m}6`
zy^OsIdd#0)q3UZG!%ko)vn$x63~N-g*e&eIhG*HA*>>!k?7M7B{wFq@YEd<z`cvkV
z1$9`}i^5)>Px(>HD1Rye`a6p%rD~`K`m@w9LHjIqnObFdm+GKiP(9Sy>U!!%>L%)@
z>gMV~b&<L&e7w}hs83LztsV%H5~{vT-CtdUI;)<no~E9qo}iwmo}=EN{=MO4^=s;P
z)t{)pQP<;aG~8xr!s*X3<@DfKa9UMQsoHT|;S*@+%bCrY&soL^GxX=I=Zw+V&N-_Z
z338Xm$>GEsmU5B}8#pzb7S35t8>db6E~kU@g!6)PSvB48nkrXAPs2#VL}NbRP9xVa
z*YL8Amxh<dP1O^IX+~4v#@)NB{&3fBs78!NmPUtayK0U`p<$jzgGLKTP>aS{kfFO8
z*EDWww1Xr)(dg9pq+z6KqG_S&p;>R}swvbQsX0N@PqW2vmF9d+U(F|~>ovD)hH7rs
ze4(1GnWcHe@Ra5!&1;&URNFN>Ro|!{X1B7HwK_Blb>^#~EE;K<YxUQ<Zm6v0swLDK
zqcugV-OyLdOKZLsTg^{vnbs<;&04=025M=j#b`Y<Owi)0WoZ?H^fqX{Hr!#@X?RVG
z7`1CX(YmSCsimRaLz}Cur){F$Ut86Ptu4}a)z(v+pgl&LV<gmGrOh?cH}Z#Dbpy4x
zYa6LWYNx?{x;fh83@fyajasz(8@0jB1TVDBjM!Wa?ocBuBU7#&w}+aDYocbNHi0_@
zM#p^aDsF$ZP_CU(4%f-3l$&kX!gVw9G#Y7Ss%EbChC9h<tkHC%*+!qZ$~<MB22ZHQ
z<=Lr;)Rq|a=b6Jua#dSt<jeCn+F-Pqm%#H-OXFqna(G*f0^rlY^HK{nI?HS0jZ}*=
zdcqr{_KEifu8>YLGSQi!X09XD@z9x~CNtV=<f~R-<f~I^<fr2g<FV4H&L~Ew*(h1(
zjNxpxQk@DNKeZYiA?L8saiccFE70H9bYAE!Q)BBY>uTt_Qe0g<T_ar+-5-p4==RsO
z(-rBO>bmMq(Dl<5>U!yp)E%RH0d63;Y_v*km9D?;X5FVo+jVan`Kzs0dtlUIv{@|+
z=Ds}LLfsnO3f&gn2G9kEbz61M>TXxNtb0v2P_0AviS8?-PTfzsp=ug>4XW>rJ{d)-
z#i-eVj##F*Sx<!@qnDsps8^$>&7Wg<Sg%Fzl-@$a%cwc{e13m@3w=BNUVM?hpT58T
zdi_=Uf%>8P{rCy`32JHjru<~JHvPk#4*jqBw)`};EHym?5kE&w%r^%;BQzM!A8C-M
z=4;?*u*zV)L800RexyO3L4`r7T7_DT!5Dsx+C=^|{w)4Ag9f!H25$^H4U`Qv4D}2b
z^Zz4skQ*d2ok^$<<Ie?u6VNTVSqfR`SAmbzu7n)9e*pYT2*CBBzv0|;@NY2B3f?Wi
zuYtOz_ZIN)-FTQ8(ncV3w9g{M0tjv+{Y-HE0Q^P@d4xDHWwZp0#Ah)2R)Fp3a9`p&
z0QT<28v$5;ztfj+8-Ry|E|f`gBj9Z`?@PGtfRTQL`^7LU`VzoMhmipeeJNlhbQk0v
z2>={S^S-1P0vHM18M#N`a90x6EnGO@2qxSQOt?tEQQg8t14cqOM(&Xqz)0v$$~_Vb
z7zy1exkusv%kQ`PQoaP>A)!;`yAv=Hy0dbRBmzd7%V6}A03)GmlY0aXuAvFxd4`t)
zyi_{emwa~tM#^Erpq~yH37sOn48Ta}F3LTU2^cAW!RTiJMnb2MVfa4{vX|z4$u}1;
z61tz{9?1io-!0rez)0v6;feqkcMDen7^!QxQov>1!j%Kw&xE@w4^AooS9c3n0~iV2
zHMs}pI1p0TEnFkurf$3zz)1E?JoJwMMnZ=}9UqUv7ZMDEPs}TF3?7g`+-bSTcddYt
z&?({`2aJU8nOEclJRo(AdlE2G*SMzuBXx~?8Zc7VxIX~?8K|p{xDFVp93tZz^lt!u
z(k<LGz)0v6WquAAscXJ303&tH_a)$0Kwa~F4HyYs7L)fIz)0whGrYHeO)$eQdaVy&
zBy`)DaQy%ayM=QEjD*g7h};(ecIp<+888yMnM`^vfRWIdF>zf1i-BAf7<@Ot?sT{>
zW5EM35;|uly<vcn&<&S+WH?|XboeJfbe@36(7Z3{jRlNk!sLtoIKW6f86NuM0VDNh
zc<4_6jD+_zV*2P$1dL?G@X((OcnXk^;h{ebFp@39L*ExLk`2Q{e+FQrF?%rwxjzRm
zQrGn60!A9ighPKmU?fW>J@gj>Mlxf<p}z<)(lCaH{$jvL7EE09mjFf@%J9%%3K*$t
z++~1~-VBzP8U5vek=&R(&|d`@scU*`03&^5;-dc@U?g)UU-Z`kMjFEK(BBFeshx?7
zz63DRASN98fq;>^@<IV44PnZMei&e+uHnJ~BQ-GTp&tP_63CR{p&tbpsgB{H9}gI5
zAj3mH12B>SlP~(2fRS_=9{R(T<up;=r0@%J*nI__KTy~4yAJUBZoJKaw*mz)anaun
z7zy3?a*u=nMnX48?!i5LFvl~zfebGSFcLa3{SEUw;24JI%JAX<XEVG$3@-<8VK-h8
zV5Fazc0nI64=n|{#_-TD2Ye9d7Q;jT5MZR+3=jRofKPP`cN#F#0VW*!KL9=hbdcep
ze-<zjIym{9cIN;i9b&?ve;zPWE5k$oB4DKR3=jQFfRRozJoGOEMtaNe(7yus2~gL*
zd<qz;fC-2GGr&k?3=jS1fRWhp;?n*Lz(`R{IP_lvMnZRl;p3f<NHPYa{|4||I@}jM
z`3^7=x_3<2_kcUQh5HEj6BAA`f54$OL~+ODSa}kJ2RsWPbbaV=u%`i!0lLMckN#M|
zvw^zScMf1FP}jDK0Nm1zcK|RFI<DL!2LYey7Va!yq-RXN=$`{@p^A~dw1Fky$utkj
z%A_|Ja0t*jCNBCi9@r{C=;rj4`>lYH&?$I707mM{lfgdP6M8QV(oB}WdkXj!!&AuQ
zTfiTIy2_9Q@<NJlm(NG&O93M#Fg)}F03)R{JoEzr2LWX=JoJMBBV{l=^g{q6?O}N6
zhXO{r#_-S&1B`SiTwVwCH};Z~N`#z;{#M{2J%FPY(b0Zyu-k#UwtX64q@zqbqn`;F
z37y*=d7Wi|KheA|{RW2*5jK#b?a-$HbAiw)+K>m>pj$XT;9lLr^#N?!Eu0x(i*Dfr
zfbF`4vj^<jEu0we@NVI}0e{;q+&I8UUF$IcFj80EB)~{rc~bx*b>&S1jMTLad;ueM
z<;?_))Ri|IFj80E9Ke1+UGrEBcvZJ>s{yY88X=EP``-ax3pAPGp}!9BdY}ai5B&{*
zHv&l*9{QUAZw6Y;@X+4^cq`C0hKIfca41mM@`VA80YaycgIK`H-NK~+&gvFU1~{)<
zxO~8+-NKatF7Fnu0x*)gJZsvo1zZP&PEnS6zzqzqnvwlRz)0xcFuZ2KNZ0Ou`h<M+
z4+BQ(n#Xa#r-0BY=9SZck<cm9I|ukYP}jD)0{AKuPEo#}0AFKx=}cK}0lp2?HST@D
zNL}Zshkzdep;M&y7;p!}i)GUL1uzmi#oY4(FjCjLy#@S^2`6FVz6adN@B$d#2f#?^
z6!jg{7i=CNbUBPJ83Gsyo!d=$yP5+=LRZi5tN<gS1C>X+(SVWeF?pgt2k<H;9HaKh
zYQWopo-*Ok4+I=Uhx?+#st3Rv1%&P^xkt_cegyP@iA(!m!#V^Aoj~rv?VW_o0>Zfo
zS?JFJJeLmlC69T4k<h7Ml82oS7zy21FfpRP05B3dV<y}}z(^M_%EO?)2r$wWhKIf%
z;N?JFb^8jyNa*e{VOIi1LZ{5+u?jE}y4y^+)qs)E-C=m&0rsbPU+T6N@VaiiZGgAa
zJg@<oxDvp3yM^lj{98BPbHFdU@!%jiG7w0{j6w8G0V8$g4F!zUl_$=HHUR3{E)u|L
z-FW@-V4eZ$8qNyvs&2fEfVXtxZ3T>k?!#JnKWzgX+AUlp;HYjqxK)E7p}R6&9yb<n
zLbq^9fcJId6#zy;*T}>z1dN2PoZ%G#MnYG`@QMK=p=)7yC4iC8DbgzgjD+qtCR{mS
zBy^V;-hRMH=sFl)1z;p}GRAhT1YAS&zR1u7xV-^s&Ift@(O(U?1xT=1&O^U1j1otB
zq<pb$-2hJq>T25(6}ZzA2%Q=I4L;y8Kv$TtioW7b(5~SWcY}5fr?{gM!-??=oZ_y^
z15A48;~j`CK<N6=-w+Nk-i!E$@;zdazCh^uG2!|F#yj9{FzLyCxGm?lB#BRwlT~l0
zWSYP^;1rQn^Wjbgiqy8?T}c$2FWu{wR7#P602}4Nz;Bg<f)*;n9bvaZLMRd%s&y+Y
zj3VLTTDKx1C=wZ|bt@{0B0F|y-HMK;NDQQ*foYWbD3z6Mg)^w9Ded3CM5&_UTR4L{
zQMszB>2`JXMx~mXaHZN>iqt`P7NLX^@Ks=aBZ*PH9h;S*A}gifoLQWOf^SP=hO5RV
ziAiz_MN(7wWLK6L{yl^u+3=o&d4;f4LPNzQER0XWBg7;!icfaLh~b=aN*LF~r{JC~
zVGD%SAbd(9p@h-^J{1^934?<96x2yb$Bm(=*a9&rETyQjN-?Q|@NkO-M-obDhNV)R
zU4XT*oOJq>=8hc{Cpv}FOiiOW=>?Q#VG+eCE~7Nd%PG$O{gh@!CB><#p)_mjC{8`Z
zRUs55*-Hs?%P6Y6Tuk-@4^IE2B;gb%qJR<>R!~%B6(7$2<x}<bVuJU9Ks!>BL`s;H
zN>RIZQNpwwirTY>67J2TsQi3NxUX1DN=o@uS+kfqA6`r(SrkXMkJ2nCqNw6xO0%Sd
z;*?^!_EVe+tXCDqsjj6o>#$r+V$w{P4dNwG!kyV-YWHqRm;*ct>l#1_pq)ri9VM)<
zrvwcRlo0PBYignd7>|o#B$PlJASQvqlprKb401sUBBChKjvZnW9YaAMh)G-$B}h&d
zla##_$t~rRGNyi7iui$I5)?#{;3zT35k;agP8>zz^TlM}K8h67iAlXYUm@lT?IM&&
zDM7$r#jB@84PDBq0b}eB;Zc@SDY6UuVLwGG8pLpRJJw6y9`qOp5tGnxN)&<p9Zd;h
z;wWMKPBENw5B-7hlPN(8${}4RF`U~^3HDd;NhKpY>X@g5f{S}7A;<*e^NgyfpoEom
zl!)%%W<K3#c$1I>WiXmgVz9kXzSG1c9qOrx?}Ef6IGBQSoS{6SlrT)uuBl=OH&;D9
zJyks;gMxFUp)3$bK7RQ`N{>xv7@IH_k||*dJ#JvE@8gq#N=jITvQ|wAYijs#7Yik<
ztK*Y;reD?IR9HzcB@7ASlTf-(_#}Fln504a^mr?v1R(E1kaq#pO}M{?5<nWFI+T${
zO4tPV+TnPE@dD=|^GO8OE0Gc;(dB@4&!B{vG8n(vlwkKB3eLW!1bM|2DZ#d?r0B5+
zvVnaj3_uwSqJ+UAlpr*U64LU4{Xw@CCD@ft2{SVIpX*Pzd&o>xdQ3;nRQ)W6^?W!}
zTlF^G&rmkF-JQsF4)~d3k|pE!$;LK;cS`s!kKYIHVT0#Bk^nvlq~k!Dz^C<_T-Hg1
zqCey^K~hr0prf#kVki@|H-x9#tb6z}G2FcXa#1BF)u?-!F^neyOC(~r;0g3^u$Y8|
zQY1`~Hl(GB?-k=CQB0ssNs5AxeT40i#fOUx#H0!Mpm*R713t(V$O}^*nn&k5{8nv~
zT;}OIOF&*B4&L4)DdLmj5;$p`PMeYCU3^GiOftHrQ@|&MWfUo|71O$$ZX3lo#xavX
ziFV?+!8j-@6_lv5l259t#iRz(R>!>PaAL9(!xV|(E)0|fx_uzLm{ihbfN&LJVPzF1
zpyig4RgiaqTvkCo!YE;Q93_g6r-TU!e6ll%f^o_xDQOg(wT^Pa^vOOkDL_4hdW9|n
z$~&}m2wy2QluyDU4hSO^{VH!aCG1Byd0k0TBc|s`x}W57sT7L3cps%yAfG?zc?(Zz
zmtY%1JbE0XjAc<m*=|aZlS>Kn@+rZ-LNO^Sr39cmgrJ866*vx27eO30${@-?ARo?o
zhw)#Gx*q04M!(Q~B#%$$N9&Prv3#thn!!CBAPYDy=(M0LNt6)gPeCfqBdA~KF(a2x
z(Bnk1lM={v8|rG%7xMCoV4fAgI2FRYAjrYFr-%|1@27+nC|{rFRfzvNZ<I5Tzg&vs
z<?%_ryxhXFCcdzlk#QF4Mkp8by-*TJ325Dqy0MZH!2Bev{xa7HP=-OK1fO+5AZ1U7
zj}((AS_go>q~}l2y^PF%o*x1z5~wKuUP_RgM+x)yQT7D|l&G+f5*DGH$<rtF+>Cli
z9!3E3rx4^&0Q0A?w4Ac1<*<Rz^bOQEhZ5|;G%6?o$fU3u<pOmKq(_f0Y!9@Hn)vh_
zt4;=MOC)aEQt349fPgjHfq~)LLBZMDAt80zp`lw<!%#m!Tpsp2+A=YeFgBhK_p89X
ztf)gi1$P9{<sv2Yd_%Vxj3r6{_M5Plk!O$%p#-1nDIu1J)<2=cZ$X-%hf!w?zm<}~
zjD@`6xAIZ0YCso2SY_;+7``wT#~)w{%Y*Yf+5tg)5*&7LKsf4jy8S_~Kp0w93!e=r
zDjGbnxR?+3*lZkFT3SA^tc*{mp^9l_Nx){~lk8#%+AOrpsvtlAsQSKr_tgtfk3d?q
z9?BJyJi09KKJuU$J%<6N)2UdbU0FF~a8*@^b~W0qig0OegVWRbBtwBwZ!r3tjz`xU
zbOE+YBcIld^gKuFWvEZQm?RYPVLZZIPUnSo=PTvdti9T@5;5Gbqp(Mz@AryHE-l|;
zl3zrDzGB8E#G}Vy9`H-n-YUg<VmmfdBAgHDen4H0dJgNDM?p9yZPbTd<^ftS%IAC%
z7A=<B28ww=p-U8XMLo^5Dcyc3dvqP3{Ze5(qTbHDuAPPBQW0nWN9_t)xAuX#uoqX-
z(g)hUmysmqBR>|NS>$7H9HUAo4-)yjK$i*2kU|MlcikDBmc|(ZdX;2kS`MMpmdR~$
zTK6?C86vj<AU@i5SkJOvL(0pYhwR@!b4W$S)*+RZGlx`FWelmVZW>ZkbA3o{-NzyI
z4ZX}8n?4RfJ5L$qBS%d3&}}b(akYDhBxAZDldk`60i%<N1obW*9{L97o*21Y((;9E
zh;q-2Lwan|>jU7S{)Bk+oVu3}wkahnE9aB_jE+~ux>r-sFY0}2Yr|K9%}mc1v|S^&
zP0;QY(d(iJN*EbQktl_pq;(1CKg<LB2IWqkmy)EMV$pUd+KWtHFlJH5kpR>u5DxMX
zfNq34O2PKQxoHR3U|0|APn<{4c0k*$o&viD^imi5m98VMHE=9;m0Pqk<0t{lk8oEr
z%(t0*lEvsuS{I|Oh2tFcyF#zkQG$B8-B0UckYTv@8SG1(A91~h<x$KfI6t60%;<S~
zj>NgKgc86SL<nmT0j!IJin*V*RRbs?oo6H^gmt9gv%QAtrtwKSjujl|*!ErLg(iyD
ztFTUiwI=i%+8{WOqWy?=Ev_w_D0;m>&u<b~_t9%w&}F+Q`P_(Uqb)0+3k0-Y!giI<
zL!xRNlh7BMiZOt)glk_MkFgZ2YyM&^LmYan;J8a$2=~Np9hQ-?W^iWaid*!08}&zN
z;xN=RDx_+dB<A9<*sNE>WTh8r9&Ilu<VZ1Zp}l}QvXBxK6;YzkI){-f+8&_CN*CRV
z<&EHzNZO{rF>Np$$GI{w_*Sy>;)uk=sxe9QSbsH9&VMyS5;SRYaB$+x5a3f}(lSYm
z!HU?}Nh{(CvsV@sRjsD;rFGWD)nyPym0bKzQf#xZq$F`eY1O1v)zxb^*0h*G9(}h+
z0&Z^(3{2e;)M5{7#qtbE;Iz!3;JD0?&=Z+q^!gmvdEv77<m~K}bm{Jl3b%~P%JPh=
zs_?w(h9&upjqmcBny%)fE}+{J=Nz0<a~a)<>&OO*G&X?^%d9zQ*+<#Lv62CE9K@yd
z5r&0ldM?2E4A(ZO|Cl+1o(pI_3%UdCBh-~LF}=s2g8h#=1=lv17o<bCclsAw__JM(
zV-x2&#*U-QgK1&k;9LQ5X_>__gz|`UDXuZGytM5jFDD%@1ImwM6y+4+(RtvS7uN(>
z9-PyFuSSO7mV_R?9TqeEc5L#+h?J~fBV;(Y(C=V;U^<w_KD2v(jVP<R7=d&BAL5}t
zz_kQZZn}Ork1_g#E)UkBgb#C#e2%2sl^G-Sdn^y;gYh7Ju)`?Yt`4Or+P(>=sE8`C
ziK{892G<J>6xG;B+mRH`6;MCe?|?Lt_!P{M6pVWc#~-9k(QC9^K9$Ght%iMqVfKsR
zUQygTfpqKn6!tN_uad~8lCU4;?MKOQoHX<4eCYI0?>6wM#wLnl<{C<ZG8xCG;vo&t
z8S=d%Y;W4mhp~h@3ipYyt#(pWVlwP$q)=2U$`RUMC}YfA5AsCG?KnOai)%tGYa^dR
zdluT3lBDyg3}($vV=R9ypI$?O4IyubWImOmsACPE!ajq&GD<!#gU{HEO60n-1lvK8
zHa_D%5{<E)_>_#%$<W3EiCh;7U~NqTvD^@j-tVF3G8h*)e&YBf9(6gkH&drS*wwgh
z!Fd90Ph9)cdqiOWHj0&-n7Ni7Q&KSrK-tcRy&RM!Mqe@eOC%82LUNrZgms08*`uP@
zO|)H!?T_*4ISJ;=DhlLBu9u;m<oiHa51d<Y{4`SnlqJ|dfO!h+7PMKzDPaW8`3k*2
z>t$RMg1t!ZCBk@R)>X9bjT6J&h7{O?pljv!KkV($wzfUJKEZhx=N6_-={Trsaa_{&
zBqiS$!1*x)$1p{*^7*irh2u|dN76bVlM=$%7QmWNn6r-(6)4t^U3EInMNA(-ozO-Q
zLB9!MPecIwLa;{zd$OqGv5it0TMy+P>xOwlThQ~cqQ7b>fxNF^uZCH_!JIDN$5W(@
zHb5{R*2B2pORq)bX+v6cxp6+nxfW#>_kPem!1XvICm>^x9_TmJCux*0{m;sw*emK1
zkCq9HN3S(t-%C*^)StL70QuAN0Iv5GGJ|V0od2sRd-;Bre0@&qCdLj1xs}_&^xg=x
zH?C)KUPalX*Mjsq9Ap#rz#tFW=EXf|cm`cTB)DgWV~Uw$=>EnrgnLrB=YV@{a+?YE
zHo(4-x3PTv)hyrVqt{U(l<0GN;@&jwi=r)!`xB5CT~3sDT<@dI;`?M+i>FW`dfyx8
z8??1{iwW-0(sg9^UFddE$R73&wh4|Cl$}4eG1&9a#%NR0?F;K?Y+JNZ(e_c4gVu$x
ze}lRlZI6AFut2fjhqhrCJMItik8O_af%YEePwNGGo(37A=V^K`9%K^N{vx`rXqR@A
zGrDdl&rlxPj;C!7C?hjY>G#-Higv*Fif0^)@Jz48=(Pef_tEySeD0#>53GMNy>=6p
z;hq%AGsL6kKDzzn>q~mwM(@KY+Kd@z*<!f6k0LoZm!SQv$RFDdp6U4-_ir(uSV|Db
z=nLAOh^B-wsAE3Q0rY%EWSFKR9Y*Hqx-$Bme#Sb{VIWSaT%XYVt~Q54m*D&gVL!_U
z-RF#LjpKoy9}g(g_6eOPthqk713aUxg}MvgX%oO1byb;}tm>>RpK6(`ygEDExMufm
zX-!VfqnbT?_=3H;d|@7rmm)sw6N!~8>iP5@1pMs<{+<B)s6l*Ta3r5Z!6~r?*dO)d
zY8x6-Ya1JH*ETiz)HOGk*P;GaCdT!&oZ`Fzn3e%4Ul@S;9A#I*OF|nQ^aJxZ73e#m
z1Z_HI?*qoKklxEw?0G{xdMx7Ke=seyDREDXo(CvlHqLhthSrI4oh}T+`5VK?`&*c^
zM@;tO`ifb1(sm2>a|oY;wWg5%TNR`MGR^@R7Y51gJBrrN8GK5yS5NP?(Bn@2_aJ(`
zt5`2WeA-q;TLbHd^8I-~1^OMwFv?jhpTsf!MYmDR!GkpKv+O`vT-!o=T=J+@B5^n_
zm4+V=2)KGYFmUjRprDN>f`d<-2njJh85+9eBt3t{)SZlty?QbZ=RwRH*DDa8p3mvM
zTt**b*%|#q?>nF!1mWms3<uA2ov@A3UIk3oi5}~KaeQO?z^BWu;NzH7@Dy=Bj~$S~
zC}xe1Z3W@z{LmIt#F4<hDdvZ=OTPylj&h=SW^@QW&NCR>7~ats`?%|vqSpX@pzZ2z
zNWwqvh=_Q1GcvtbbVi25oy^_N(K$I+@9ZhOxUHz@>fPefnbBos4)@Bdw?^00y}MUm
ze?7XP!T5e-OCQ+R+nOMeq&}5~WF&+}yt^71Iqg|gQm>uK$#u_Da-4VW$#r;{SCFx@
zu(0lBQBl**;^M0>OG>ZrEGsvDwZB>12gd}hHzZ<ZsT6FgEU_}S8|<YjqdmwX2k5_{
zDxuHFF!}G}WCTCx<WGP7{bwQQh|Jet$CSVMd-1!b^`HLyzv29}na1tLe|~;iQ4i~$
z*yLT$Pn$t={&UVx%lq8lzYTpk^!?E9jMo}dUxgY+7`uG+A9a43yYX=2v&R2-ej0Ov
z+JA%d)AqW{yWQ?{@5BH1xNjczUvYjK6hX!m<FhaJp5@(Yd((EEHzCcebFBZz-j@JW
zRjqBGfmsw$DGu|X;&DI$QIAS;*2V$L%1n)J+#*LDBeTLpWu9eF&?BHC0y4`a9wt-E
zE>@VC$<er1N*S8H_wyDN^*?LxvpMG=AX@kP{_p=gFYg-O^-k+uYp*@Bcd^iv8O8i0
z>=ddwA0Ycw_?7Tm$i)cx|E%Nx8<A7;=lk2VgBf6}UE|7{x2Ex>|DEq|i?AK-@RY-1
zhkJXdru>h*zbz17!rO{3Bj3fhPDkrS3S#jsVm+au&_tL7w+`StayRkq$X^AI>RIb$
z<IBNC0%yHR!V)}t*C;$Id`I|`ut&I0kPCVVww1G(?UXWL9|fkOf!l`O^0OcsUk3d|
zU?NNu3>S_RK7ucI+6$e8lk_&=dz@4CHscGNuK4ceOnht83t!ZH0^d{o8edFYF0|Ks
z4&M{37W`EhfG_=hB>eOJb^rU`Uw6~`ntBg{|B?Ii{dIr7zwV*lUl&cT2&2hS66VwY
z`|DzTl6?;N4E+AO!#=q_#XbYSzwR}kw|qj`C9VJW*F8@XFpFEPKeJvacoxUpoz`Dl
zcY*&on<RYem_iEPM6e9t$G&>gUyvxF>H_dB(={y6+7Zd$tWSWx9p%$lcWJ&-@G+Us
z{^xc)zM;GXl)qpNw-8y1tVMRBeW)L_?!;OhEIcY)rH3l}^JUlmefYAx_RrO6w$ryx
zk2oE2a&kKAblT}1rwL9Mou)fAI(_8ysZ+hpGQsnb<JPMrn*~LZkE|Eju9XA{Y9yan
z`@z01?CulXl33b&BPkKQZ1sfA3%1`&$^~nzp0-h71&_tv1=ld<BKh<EecC~PfU>h-
zoWMmO6->fEP)rrL2|NU0mXVe*mhqN*EmJJ_TOP1HWSM1|XSv>LlhrF$uUWlmwbN>k
zRfJWH)gGHjn>d>!oBcKlo5MCaHYaRKY$|MaTjp54XZe+-nZ#0JCmAc5D0#_xwe@=I
zP1dhizh?cW^-k+O))Ce**8gSoqt!1~0&6{MBWqLZk=A3ZEv;>=9jwP%Pq3bBJ<WQ$
z^(^bT*51}W){Cs4uzuS5S?lMl83CP@zU-WQ3iEpzzT|zz;0uHA41O~(G#qVcZRl(`
z)iB&J!?4J(&hUN18-_m{{$?mPnrZZ+(N?23jNUSeHp(%|H#%c<-spX!8%A#!#~Z(I
z{14*}<FAZ=#(U@(lc!9!n!IJQ+aw(CsXAivzR5L{f0%Tb{9y8%iQzDhVKax#8^#QK
zeAu#KtA_0!_QSAYre>x|ru$6uO^Zw`P3uh0n_e>g!PIcL_3-%N2k^eK%Hd~*zc>8-
z;g^PA8Gdbe(uiv#z8KLl;;Rwgjrd{2&m+vtCYgDdZ8LkrY`0msS-e@2S*2Nx*%h;E
zW;e|KVfHVxM@L$Zv>(Zg3?CUiGJj;v$TK7VF;Z;4(EKU$RpwjG-!R{89&R3Oe#AV-
z{EYc~=9kQ`nE%7P!~84r@63NN|JgiaRN1I6Ms?u5M%JU9M^75<F?#FhZFrN>?$P0+
z%SKm@t{Z)6^p(-yjs9Wu&!g?f%p0?8%*rt@j)@<WH0H>d^J6ZJ`Nx<a#{4!$Y+-0I
z%;HfCYYS(Kc@~VtLW>tIR#|Mc*liJR5p9uVvCl$hsvYgE{a^n6$j`{<M1c24R*moV
zm==!q*8Z2gKeB23I`Jg&RI!KnE%8k89PvCcBVH(eT>O-HnRuo6FX9H@^S({Kmwd1K
z-tcYn?eP7^_g}u<zQ6hEFCMnoeDR};Z5KN)mM)&U*mLoD@r&YB;tugw;_t-&68|9n
zS^S%LqgbqGsJB(TP5g#<w>VrJEshr_iT8;Qh%>}T#5v-8agn%8Tqz!=XQo#pt`naT
zzbAfQd`Wyod`)~q{15RLVlJL%46F^`H+akVl0k>T6@z_dhK4r`&Kvw@oMb%Jus7ll
zS$Njrd54!A);er*c-7%ehg}X44sj024(Se=4#ynEyG(VN<sx@k?6S<|1(!80TU_?I
z#JZ%qWVjr6dBdf6(l-+Yf)fsJJ5)IsIbLwM<xuMIcZXVs?;RW*A9I}LIN5QB;|ND9
zM|a2Zj!!%O;^5=B#c_q>mku8|h#bc_E_VFb;Wfv9JG|i7;_x!Qw>Z^UJS^Xo|1Wb*
zXWp?cuq?JLv#hYJwmfZFXW3|Z*7Bm|hn62%Ua|btQe`<>Y%R7IyRf4;lN~?J=vlft
zxK41L<~qyO+jWua)2=VMu6KRK^-b43t}(7xTr*ssbH)EZsbgzzSZ4U1L6PAw!)PNz
zy4GM7!uD)@$@KBz!-hXT@@FHlS@h@^M>0l9BQwk%H8C5r+px&!hv6<3jNui-jN#na
z+%WmhXt&WylgCZIGMi_ZF*?KOU&fzV{=@Qf%iEUUTHdkzFUub+f3obs2ad%O1BtO@
zl;ncVRhwHj|FRL;n%g?qPPKi^Ho@_*<4MP7C3-d=OHNq7uXjc7hTa!?U+I0P_b<I4
z^nTX+O;4<Es6R~KOn<cgqx#nR&iXF;lk}(Rd+5*9pQArdpV42a|G55B`pfiJ>i<Rm
zMg3L!>-4wkzoEZdKU_arKVCmcf1myV{S5sh`Z@Y|l55flsm-K46K=W2P1rwS!qjT%
z;Rz=uR806x+9f?Fy(BGg{kK#+v2jw}_{)=SO`1Gu<isB)nM}5wSU=&ygc{e06X#C4
z>-y1z>l0>9yfxw52_KEWHvY#6BB||UpNUUQnl^dq#7Cs2(z#RrI+2;|AbnxdMCqFo
zr%NLz8cf|danq#KiGLse=+wugi=;;;J|lfWx>mY#Qt`yw<5x^hc1@V1ocONmE7Bd(
z3lqN{e`R9kq<@VMoE#yov3cL-x=okOk2Z$3kJyg0oo>t6raB&XJmq-KvDxvuW4q%&
z9e;H+aa!Q?jMHD8HaNZRG{)wFWQOFH^+Kx^Rv$=yu@>08BoVrpx%@QV$mQn5#a8ZC
zFWFdG{Yw%kc~i1T^1bylwo9x$tybH-Vl&?A7s*PAjm=5xOzRJ<U$c=~HA#Mx{9Piq
zdedgI)!P!0)m)qZvL0hK*2dfBN9#weCfIa3{o<4^aj>bfK5D(l<`I_?7e6Z>tDQDe
zt)8};WwqYM*6QDqP{}f@IaZr&9IUz}5t7L^r>&RR$|SXt2FYEg{nqCtk4xGlPfEU&
zY?5r1=vxi58euif#@x!;YL<<UO|oRAZN2qA$qQDwk}ApPPM<lQwfV^AA2#3G^w^l%
zTH8*vmDxr)9&{{ptatpI<0p<c9lv(`(NWLI+vy3X=bTnMz2dafDa<LxX|L0Mr#z=(
zr;#>)zCZWR_vilk{@nk6-=BL`(jvJbF|skWdC}@cE6sjax3t}Mt?fqJ9k#D%T^~+n
zEJ8&-Q$!Xxr*#yK6}gBeil&J?M2`x-Xa3Fnm(MRgi<l>wXPM`jwag~wRc03x!3YF#
zOgfXv9AipRt^(FFZzH|He1Not`8#uq`I7mCd6RjGIl+9)?6y^i6ry8l$Q5x=B;w$R
zh=UU%4l+d?ToQ5cv513m5eKCr4yr^P)QC8ETlBW50dO8r3uppd09;kW4G{-zA`bp8
z;^3C(mZ(DwTYR?od?VuEOA!Y~Vk7Z-pY=Yvv3!_Xi-?1Ni~cS87oZ#Pl*4bL-$dU7
zegWu<IY<;GiVDXSj<XtXHNI<H*Es$0`s05c_v<**@uuTPv+(^m3L-HF<>O9|`vmnL
z#>Lw1wcTfX%(mS2lx>~u+qUo8eq#HDZKv%ww!hd8vm0q=VP|D0wR5%evLkj2?N-?R
z#qK4$4R(2U)pqaLHQ6=Wwb*soeQo!%oxon-evG}ueuDiJdw2Vp_H*s!_6zJEw}0Ax
zx&8C@FWRrR547K6zs>$l`w;tR`vm(G`*i!G_PO?D_Eq*u`$qfo_J6bg(EellYxeE-
zckO?&|IJ>{!PsGhgQbJ5gOh`sgSW$c2M3?=J}>xG`qcWI_4%96C7(}yE{yvS{kXyQ
z<e+U9`jOA}<f82*^h3q=<e#=bpf5r@+8gQ>=MnD<=S3kr_{_cyw!dPnzu@EIFd0^7
zuy$#*&cM#+z0oS}jn&_wTN5Mg2o>qX=-vp?=xE}?$0VaSB78KyXJhfS4<Cs+4%Cxl
zw#DcnwQhj%*lL$*cfgMJDII<I-rmh&j)UHO)A?iO-?96*or%4fy`8<Y{cCo?cA0kB
zb{=-K?CkBv+C5>n)UMX<j9shU=XSg7!tG+9CDCq;-ATJEb`LAZ>)8r_zE;l{jz(vR
zk&n@kwhMFT@qj7L)17^tpLSm9yaSNsobFuVeB8Onxf$@D^Hsoa0PC?|IDg^%ne!dM
zj{v8!(*QF8kByx__KC5}0MCzIKlb&pTgQd~QpYOBUL4yp_VU<jz&`-(fRW=K9cMT0
zzs8EjjT<+49Nk)f9=m5;^f>=<tH&(@JT)$O+^gd<0VdA&&X&%^d5-fM=f66~IB#+e
zbyhkXjQ!GCI`;h7Z^ovL+dD32-0X2j$8H>#3QGZFOUKH`d5o(cn?JT5rEShh&c@>+
z#)_Tu;hpu^x1Cq8_8w-17)WN!*!Zz$Tu!-s?Q-4aZ!TZB+;tf~cIV_@CSG<KNJ5t`
z5rpeS>v;-h;#r`1cuU!Ny%(&tIds1yr2Qo)?rz~WOGa;=-fqEeyo+qKphi$9sL`v_
zE7B{|+oyLxFJ3Q6FGKH$UXETqdmZ!*!CQhr!U2`pEui-4PG_dT6ZXXdMo(LhA)acs
z5Iicd7Rc~9nK|GK#&dnc1oB=N3&~`kGF<1a0xF5SPa~P-bDlir^Ecw-^C4O6Geb1O
zXN1ofzzP5k)_q=9gG?k7%~iuZ(L51R!+a43i$okeF5=)x5eG{}OGVEDRsx;}_^aV1
z5eKV89IO>_5GdkclZb<@A`V^^aj;#)!J8ru-V$-JOT<B_h=T|b2hk!9;zV)S7bJ?3
z)gW*cxEcXQ0>bRW?70wy;@)E<do4I#kSIvPHE((a`T(wYX9%)z)jC^{gS(6Q?48FF
zL7AXjP>J_g*9ept$p*n2dT(KN&=CyRE5iBYdwQ4juIc?luS0L6{x<!$^zHS_^#4<5
zu=)CLF5ZRfE~CYdisvl07RwheTx>6P#<hSYi<d3-Tm0hUHH$Yc9{l<a7X$69Jd~n+
zrH9tFulCS7cg2U6aQ#4V4)1$jP5vf$SFjLsc%$CqdQa&s(_5*xRc{+Rr#ZfXQhG08
zoq*m2-i-UeL4s|#gYYmT(kl2TYhs)5b=+6jDcmg#6GjSSgz>_?!W7|t;Q`?xVHWN;
z<bakZEWk4rWx@(!HN97i1A)Kjy@z|TpW@!}S9r?8Kx8bU${YpvUfuqqX>=P~ge?X~
zhS*jf$F`7+`MnEsIs)6xR?PiXnD;BO?GS8tPhz`Ti|yo9(LNk|eIQDQ9F-Ta??1&G
zWKrr*UVwMba`N2UV(A-MH9soP{Wy8Nc?}fKK79-Ao2b3S@;r%@zHOGu-vZuipYvZJ
z(Dh%}KIcE)TLuk$|D&<B^8Kgwb>;8vKkqTuf8F>!h<vc+>y|q$k6ONC*=cDiv5;6x
z93?L7eJ;*If>pBBeyf94nN~-wj$56uDz-XlRb_SBs^02tt9PvaX7z#9M^>L$wOD;-
zb<^sWRj1Y0R^MCMxh%x2o+~Mbp8oDRti&C)zX<#VFXCQW$@p{Q#kdYN(9g_tp~)4a
zcjj9gerG&&^l!#4hSyBXMwFSl7;PMO#<0e8w9%vHxcWc(it#YxRU@oT7n+_ic;8^y
zm>VV?2HzRYF|8au+H~v4qLDusF(ZZzHynPzY?9GRV`dC*@6Ydt{Q3QmKffRH=l4VY
zr@kLDjQ<%K8W|h%6)rc#7mAEcO!V~hOiX4^G!Yw!4GcuRKLZo?$1h~}=Fgif2FJa0
zo<iG)@s)?oSx@`;t=$U)>OTC3BPJ%pXlFzsS~L;SWI*=@ahvt@e(m?~POoX!jot+R
z=c4oDtns8ijUb!;H~*+Vy{_Yba@6(T9}ia3P!k<<>Ie)~b|60J#Pkq8P&|dE;Aj7Y
z5Bbw)e<miw_4I}t4A&XY;Sc!h*K<xkP4)Ekq0saJl|CH1+7*5E^n_Vcwm5uv@A4rU
zK=XYZ?6;E~aR7yX1X;^!A9W8f?7d2aLb^Q<CP`T}Gm)0K+F&w$+NcbEecT=1hwHx8
zzVbt<Q|~oDeND0d(m)&Jedwlm3kZI^PPVM6(<=8fW!d=JJ^A3R_poaddhPSXes%S=
zug9O2b9vupUe^$EwSCG-wIC9-G`QeBJZ$_}`2l46ILLdi4*dP>4dxB?nN`Cx_4?jh
zpdHe#@SIxteVVm6`zz{5>s0#VW@+5cSdZHW4NYVqUEGk-KI#NQr^`B(UPYV}I{U!^
zBGtb<uW0aAo~z%S6Q%QqZ|*Jd1e$A_wW;@(d0{pd_cs4g6qund<3}~}vzem|)z#nQ
zORs(1z;F)y9>uz{gLZ{3ou;!V&Yq|%Go%_HDYe6F#&<=ljSsRG>E2?mL4NFe3ICY_
z^+4?y>+&E$;+iObpC7A3o5l_(N9fDkx2`QVlyX1j?<b~S7m(eLlWQL$+knc92W%1S
z*f4P0AT9Un^!?ihQI4j2hjeiMdt0G_&I0`SHg*nhBn?%szkOrh@zK=j0rEqh4r?6Y
z9lAH~_4VGS!6@qPXjxDzQa8}~Gt{{@n4SLHw4yUWv41&k>mHzO2xQFwqtv^@(DWRg
zr$4j|L75H<C)k^^6G?|*2o<$=YU4w8L1R?QhStDpQMHRyjNNM3T)SoHW$H1wS;vPi
z)t8g+0P9WPMs=M!$@8%}U!(2nP_eG?WgX@Rsc?!1aARm>_Ck~vE9SUXjlC3fpSr+U
z^TTB?0efcI-=<=0ID-BR=+!Xxa+nsA!J#;<noiM}yOu^pxe{&}3Al53vDoBLoVrXY
zTwTXsR9Jftklc3!`WQgOsKYvIkS45LUvQa<0`*2qnu|5d!BSZ@tTIkYEvqFlXc6qR
zU0e2lrY!C|yhCz>9t{r4s53_fjl@tJ2R8S|M{z)(w4CUdN2`6%qUO4mrqr*(hb9hc
zen^eKC#-aSXrPZdow?DcjjawSNn3YpI22b~cqneihU*h&U!*y$vvLogP>c7IzCTC*
z8t%W9-=BkBEwt5Z24}z-LfHpw9ISz}LpiX#su|U`2NN4Y8?S9Z*88pJYBvVS__;F(
z3)?iH3xhTctW`501M@swi?&1kYtZJ<Eo<}B7Tlj>Cj}oRI;Z(E%iAkXM*{Pbt*hq|
zC)&%QQ@|B_%KLB=PDj%~6;?It<9(8W6x^5o5SvS1R|c~&Soj8%>tjHhk2Y!7|AXZr
zn!2w)_xRhVdqb`MF<t%7$B%AATK8P<7oXnM_K)cwwDi?@{{Roo^gRPPG%@Ot8u_!U
zegxq(^;5g0_b!Mwafs!<y86aMTMZpB-Jf>rP|LiA0r`0b<OA~b+wi~wY{02GF7o{<
z?Mr+>pZbckb!w6|N)78M?5*?``c-f*@j>~i2K6NbwFk%^K#9if2N2?na%LV-On}D&
zdVk{H(x8Q*++Y3Uc<|gopP%-#GyRoy*dfhL3r(t7kGS#Hv~VR&d;cW^69a(>eYA)>
z55T!Bt}9^az=J#N`k`b0_g98tVPY?c;JE2O@qE)yU*c#?cje>aGSrm4ScAn<9W6oc
zn6Ly~@zGgThpJV>r`F45AZynt*Y8xXG1Oma2-}mX=5+d=QhzFkMq}q9%R1=B`1>0N
zeaeGX4_D{|MD$0!Vhck^)T~3}AG+EhSXQ&BC(8W<G|wOPTM|CV`mH^-G*((attRam
z%$K#Ab&F7;OBh0pn(f^O4p9M>(Oj4wf{{U3bUc0t|Dl?7hjmF~hdTHl|FK4BAUI3+
zwMZFwXZv-I*VJ$0eTb~``|xnhY8OypOGA<woJrFulpb~?7~I4_t(<A~5shXn24erC
z>C`-@lXiTt88B$$!@I@xpDMqPeQJVVLD>A^ZBj{gn6-m{Uv+GxsKg-CPOWh8Na|S9
zNN57A83wIZ9jW_PI6-y#0PfsZu?~YqKP~ArsVi!ZK3VTFLOttWus>z@(m1`Kvue~<
zxQ*#v=0Bdo8vGq<d4~s3L7N9?dI&Of(c{&JknAg>?G}FstnLckj=5i7A>BIV(WTHD
z`^5F{ILOsmA2gMF4LvyJ;l27_D|yc${(TARp?}bfj>dz^Xr@n}dDN%Mk2I^luNA(L
z&(%)!Wuvw<O<a)|(aHNBf2)Q1k_W9nj0~^vK~KT^UUATDGWRdhj^Ce4_iVcl|2+!&
zD(qYDBd@M%hCpkA>KfLt{6VFMQ_nd(unYb6Pm5ir9rWJ1ny0s}UC@%hU$L*4cKt!h
zyd8}UN72*=FWoEOA3x8f$+fvCRl7cfvM&F9<TX|`rGac{I0i5E-Bk>rZ*V0K-OBIE
zA3j&FT|>_LTG}J{PXWH22i-L73%VBd+a4UWHT2a!l)6U#p@;4d67&}QJ}|)-(6qq{
zH5p5JTWl#<%$5T2R+cyc{mzw<pis~xP@&W%kO+N+mV)6ojsBw;EHuKKW0v&VFcR3p
zq8E_n3ZX)%T@L|GDg00Rv_{9i3f_hE`W7Of_S5hs2QTDCc%w)wz6(M98!j9NPA_~*
zf%-;aIKHJ|B-pIuYow6MXMxVeG*Z}udbRLFA=O9q+}6mWrVU*}3Ozy#(G<LA!yoV6
zp!`&x=3eSNM5{iual^NX@z%Bm5%v2j-jDW2$5vlFR6jJmH5Re`5lclJji0|74&4&p
zPV+-}KiqZEPa-SvY|L*<L5bK;tP%!_-(_nWPWnYXiuZ$7ajV$K<E}VZJY3Jnqc6OD
z52Y{1{px(Y$LVo#qFehh#Eil@v6mjd^~VW57B6pGt~aI4t8Ge~H@=_iE!eCV38}$X
z$1J@p=%A@C=tgkxni=Ls|M2e3YP}Ej8gAab*>f}NW;OWu{tPw0tryvr*oK*`*NPFM
z^Y>~Sl{FGr=uZLkZ+Ga_q53fxA7)DLI9qyHdJM+<N4I$oxP9BQQTn6p{dep07TgsN
z2Hr**V7FDH-jpqAMn=12Y2-c38{f0GG%_+VGBPq%g9&mDO^{R2wD6QZIjcdNMm3md
z+qzE~=KKE819+y^?4kC-NUFC~FIX>IkJYcS$l2rl)a2TI0TtRzbv^M$d~_((4a{RL
zD%FN9?H=H)Q+^Z9)BaPeO~Y8L9KW`2JVnzFzQm6J->=>+OUG9YmE+^}@zT6DO-@_5
zA1h1OP0Rv(&y@B;4KzmVnDeXZ{d1#f_xLppGzxRrR5!*RO?pConSPLd0hVQn!BPV@
zwrtet{^nljpQ^*>LG7R?eSrE-X?)(deV}?@O|;I%ftO%4dZ5PjQ#}?emGuM?T>sT_
zoHW<Ymtzgi8h8u3d;8C}_UQp{ufKgT-8XZ(*!cJ9KW~L<7)&#7K|AlS|89nq8px(<
zjUMV=vg6-t53ykF(U{EPs2qjo@D^knstnDIs1{$$KW)(VqPI*nadBZaYx8sE{`${J
z@IB%4UY!HPSyzhZ=A^ZCP`j*GI^$3K+3O2C{w$wP5Bu?+`oc%8AHV3>>q>F_tR+?s
zC3e>F{_;6z{f`-cs)g6fk3Z^k?0dI=)*kB#czgS=?K|b>>!C(Uy83W1X#aJOLV0=Z
z9C~&9<2>ZG^SL&a(l|P&hx(x@>6SJ9=1aV7wwG-5X$ku1T;*p$@BHuO=GxdE^E9<@
zgY;j+$(8!91@LLW@#p+i+u$NSgtUKtZ7TJI#+)5{I?^n#G%gObesBNTHtqiKW57jC
z+X5eHo<mzox6E4N<IelR=GgyeZ98g>({$sfrVbK+U4E{n@lN9(H)m)I?FSnn^^D^D
z<z@QzlCN`8yd<Zk*E@mKn8t_)@Y1r{3gx<Ne6N0E6P_mTEd}?M%6m&Z7oT^jTlhFr
zTaLqwJp6{G3~L%DF<q*C9EEYt=IV3Q$4#0U*6Xj4hpJab?K|4chx7gM?Jb4&mXy6E
zo{P`#s9SLS0^q&=qjQ<y@`$bxMuP4U#%2;TH#1+6+{{n3)XYyDU>0O%glj;dW(u=F
zQGuD#ELbEHG?}%TW$AZ~p#0rt<|Cye-N3cfEWk`YQYG*kS*>5KuP~$BS^7aEV@H0d
zuNYZAvT0=7$nKGH=uw)*j-(WGb4nSwH&XL~+lJmEH}^9SG!HeGj#QWzn4dLQncp!t
z9_2Xdw!UoC(orF8full4DMpo#Y8urxs(Y0AXz6JAXur`xqhm++=x2{sj=ns)ZFKi&
z^D)vf|J~<9zsDXQ9}5Fd_P9$v=E2X$``YJq(wuHF^KWW^TLrW^D9`+x+Nj%Vq$5u?
z843L0We_kHm<?0{F9W;AQ2jy+H;Vv^6pOPKcPtzqS^7xddgvqNkF-5v{;2%XphvSG
zz5Hn3y3o?iG5}wCJBzRTI7*gE`qrs`p?DLjN<vpCp%wLMiGkmka>-f)H>)UvJcGqn
z!Bz!Um#t`fx7E7_L1S7CV#gF%O|*XAI?kHwpVFF-1(m;RkPY8IwiemA+i>jx>YVHU
zaKp=EmfYN7^Rc+lhRP}Ny&Q8}s$XV1&QLkVLceQFm(62_f5q`A_piBq)3?Q9yldNA
z>^+QLq1CM6y9_mD-4eA!R}?lELy`sl>TsZKwymY$j;+*=m)e2S;d`{D+7;TJ>*e8j
zHMy!!n~C6UwI$@7ZJPGl_ZG|T<z}>HseOQbkbNk=Hjr&!Vc%eQ4qq7f+&;)mZr_Br
zF9-K&zp8Hc#<gr?GnF7v+>I5CU%eD&Dq#Vum0LqK{-KZd+O_+azcn0T<Yztw=h9Ca
zZ80(*X(>oFqN^nb#tw2bted#TXekIXb9A8k6lO99?v3HJ=Ic;m6af0=(UyW>b-vUr
z#i472pSdM`H#Sq4dkX^4hXRMQ4l0K`&}b?6(8$=a9IK_V<2T&(4ruCT*Iv3x^Ip^a
zzoX+)$52P5W0#}E$=4~^slZ9)Wb7<+4s=#HH#v7Z%gr3e>Kn_(#*SP%cARnG*p#t>
z;)1dBjp4I-_Xw=sXkVjlkL+#F?QQ36>E>EvsTtLNOZSeRaJ*!^+j!sc0po+mr;INc
ze|EfT{GIUzCgV*On5;F4GRZT!VA5`4FwDfo-Q{_gFqcA?k6nIpahkAr!mASwO&F@>
z@xvAjTRSXjSl+M;!`g=#;PV;_OxK!5ndX^ZFl{$A7(RaZg5hh2M-9&#eqng~aDx%!
zM=Tg26VOqidpL!8-#wyAJ+5?S(S2F4C{P?Lx;*+}WaJMp2m7v{4_5ca>VVZ%+Atzk
zN+q@L544$uj%qTKV}DC|xcdki?S7)zk=atEwD11lVe7hQIqda)YLz{PqB=F>syowq
z#@o7hx%j(;xMaCBxU{<TxY$ncn&3YnWJ1=2h6$|`dM4OPy`=uq5NVcFqvMY&(G~Kt
zl={TQM%TNCtMNyAmeT;x%)_`gOF@IQRoVl4e7w9S`A-U&lr^bgQY#BRlQ^)QOu=ii
zKOkgc$V4`u9HLYALVFgV0f0LOlY1uHPO+WhHN}5Q$ds%p4O3dD^h~jJ^#b_2h5)i$
z8&GO>?E(6`+D`SF>OVDPYSz@A$*q$crnXM)nQA-DYnuPGkZD=d8m6^Q>%lo8_1)IZ
z%gx^{#4XFM!L8M;$IaH=%iZ72-#x@V%Uv_09;Bohzhg5#o*|m)KC{8S)xF2v7FREI
z!OJ6HX7J3EnFTY?&Q#63Gt+pM<1E>%rLzKOh0apUDxc-=5#o{M(csYv=<%?f?ls+i
zddT#w=?&9cr}s>^_4M-e_YCpO@@(*I_3ZJqo#8dZe@4iRtQk$SgtCSimV(w9Ju_@)
zdd>8o88S0#X2Z<ZnLRUYXL-%?pA|AIYgWUo)>%EXY-L_De_4nuOV%K3mG#JMXM4@|
zpB*wgYj(rz*4aI?ZRdE+@t+eiCuCICoQ65Ab9(03&h?t>KR3%cWNy}6nQW;nP!=jv
z$jW6+vNl<_%zU<VwtTkV?4a4Pv$JP6&Au~RGDkiqa8Ak`<(#%T#&czJ1LrE{Hq0%b
z+d8*ru7%eWulZj7fcakAy&4P?y>h)8ysmnE<E8(Y?PH#gEqQFsV<C^F0ZIVx0$Lxt
z``GY#<K}q*mb0*VUgW&2dDXxV=iQ#Sd0x*v3vUYEf~L7{UJ5VaV@n@XK4v`6Z=PzN
z+&jg)&D%|`kPFFDl1)@Z%A_#ejGIrnkMI1Z`H}^S1(JoK3okEpToklOwaCx+tgrdv
zfW_sDyB0e>?)P}g<86<-JyHIIa7o~jt|hW3gPtsSQu<WNQ|3<xJl*!RWNF}1<x=Bk
z{GKUz#(Y`8GR3m4WwK{upS|;}e0d6PfCa2*S|MB+x>C8)@wwRNRL@EMg8kb3B+myv
zfBAXizr_AU^%vm_(ifJ#5d1>+3r#QFc|qbY_Yd?}_&51?`%C}o_t)6JD*xK`SILXM
zF9yF@@S^HP<Cms*%U)Xg(h~2$mqK4sytLVSvv>JRO)m)pWC1||1p($SOJ7d(mcQ)x
za?s1MFK548;;nqS?d9&5KlJ|4+kBODm3-AV-oxcn<V)n6<$kMzR>iK$UZq@>D8Ia_
zYn5<yiTp#kWc4@l;baPNTfKz%t`1&p{_<v$NJ_|uq<r<A)v`59*L*_)*MzQ7tQpRf
zuW4FSzNT$W_nIk;`C92(^R-Ku&5XA|zSeJT(AwCw-h#7hRcr68HD2eqPPR_Cdg;2r
zb)oAL8O6HTmrIxrneuhsf^V3nb#3dq*O{-EuJ>CXyS{wAYP~Q}8n`qtI50b~Dez99
z<A$XhLN}CeXxm`EQNA%~WA?_&8-<(PHU(@-*>rZ(olTCLmu?Q-T)w$&^KhSsUGIk?
zN7sLPKMkPX6Ywh|m(x{nD0=$i$sS?8h1H^7w;yEn(dN}%ZSGgomgLG*qCfw58s*~4
z{}Xx7&AvX<`-*h`Jf+{U=k`mqUB#ZM^FBXFKcrivBhQ-4w>XaS7Wi!m+9DgZq}P^a
z<>yLQSKnQ2vBq=F@-^Gnq^+r5b9K$#H5O|<*DhbXeJ!<_hP0Y3U0r*3t;IUeb<5Xn
zUzfJ7dfnA^ch})A@_Ia90yGjVU%#ErA+x@E{nhn%*INX71}+cW9+(zb9e6eHZlJ{m
z&kf5rY~PT!p?bsB4R<$KZ1miiwxfE-)g5<tSiI%=*7CQuzm@h@^;=ipy8D*JPS2go
zcQ$RgvqiFX`_8nT)jQ=|1GlDZy}I-6&c1#4J$2>Q%Uip)T7-Cp2wxGtGLR<8EAm$Y
zUrBjIsm0OuijjwLkXujz&MAC@0)m2rQi2MC&IVQ3tAd2DN?#3lRq^WCSG!&{-zM7@
zuq}35`8L%yoNvD-eQoJ$!LMb%hP5Af=QYW8tUucWk)~`{Zg1Oe{JPugey@kVUhw+m
z*SlYLe8ce#nHrY9!9m~~9E85Xf#MAg%HQCi=?xCr-r%774GzrT<Usl+2l6*L@O#tm
z%^*N5ARC|rTn2Qh0Uy+1K@!Y?TQCQ{!M?!(Y6!+JMGXbP9Gne48>|BKe|J+u9VqG=
z`ki17jCUCCz-N_r$N<55OLr{Y5eNtcDAZ8CqkKmb;0{3YmgFrtAP|rOP_oeW76s#-
z9CSxIM)^hsMJb}rMs-D*N6VrEqGO}WqgBzu7-`JXnBbV~n5LLJF_Kt$Y+!6ktTMJO
z);P{B&Mz)Bt}yO;oJsub_zm%g;+x{{#0Tw^B(%My*eOp4Opt}7Bm{)ShA0!-5~RC~
z6PNA^-sP6)m)Nu`H1W<Z$?oj%rf_*gU_?rUTclrPXk<Yo=S4xHEc$X{ccL`LaWAzV
z8t1z=Xs<F>v6tF)-08dX?B1ZAU3<^&?AmD_A`3B3Di2YG2zN<$$&#9O$#)0tPT8&8
z-L~6pkKdlqJq3F%@9EwXkmMNZ8yXa<2t6Cx6)Fo02#XCX4^xE+!=>R%!-K=`gi9in
z5p5C1k<^#Vkz7n-llX}6(I`)%u}~%Pkq{<RPpA)^b!qbDJxh~=le3el9^WWwOnH(r
zR+!wBEKHH51f?ia&Zcywn5W8815#sC%TraU!hO<xOZNru%ih<t@6JBSe);~u{VDsE
z``h*hCmW}^rTL|Wrai12uV*RzF%RRS!O_gaWMKtq1!;8Op_ya-moBFnryHls(}UB?
z)4S3g5BLF64m2GQ9+VvnI#>W`J19{|6iWfIinD-jh1(&wLxF(oLn?rIhIxi>MrejI
z;|@TY8IY;SyqsyAWt=6?3eNH^2rW<+WS>xG#47F-NDKS-;^C<Qg^I$<g_5FxqJpA3
zMY7`1;-+Fz$*9tlQm*fBdkhZOOP7au3%)EpC;q9_q-=Xg8fx00dqi<>&0A0%ay7)N
z%&LrDZ<<&(yX<a=#V*fXcSDx%+P-V~uC!g%yRHK7?xLfyxa|3|M|RKHy<+$4yQz#-
z+4a)2-PGPW@t3gwQ)%^XUQZfiHk9osiz}<JSCkc&)s~&J_ZD0%yI%HX*-vG>kDu-~
zKKbw6Mn;e9@fOV3<92ez9>0^X?+HDbzNg^isXdoZcAqpaH!qh0<N!ZFkQ!pkW6QJE
zpe$FGUsgj`IS2TB7z>gL4%{j@@U8Hz2mk~FQUC>NI9tJis)B<%6&x5>a^P6Wfvl2)
zrIj26R&o$p$$_GhgYrrankqSHtK^`&k^}Q9^D4R;N~<`KSIMga0Vx0_fJTU3HT<dc
z^QsMO)OM8pvx-KSM)Z2AqU^F%RNde8K{^`>5$)PCj7ZtTT%lQ9b`c{zs@kfo(B@&}
zCzd%?&n|PXzPjh`p372;P>WE{(B+}qL(@X5L$8M34YdgK3|k(yJuEG(I_zrL-7t%A
z&+z5p+r!hstHZB`-wn5js1EgvSRP>!wml*(qB`Pg#N7ysNYBXSkyj(O1JfeYBC7#c
zBP}BDMp{JOjr5GNh*}QV4oCx7L|KGZM_rA=^Hot6(Vo%Ef!m|gqN@Q{0e1m3w}|nK
zSst@JCM~9#g{v_fP`>JDZkAd^-;KH(L-pK+K5v0VEHuX6jqyZI>&s)e$8JZBQfNIb
zwmLSAE#b(a+OImO`qS9h>g?*fpjpIu#w`bKk4uZIj^p(ANx7@T&_kj3*&X`a4xZm(
zpL3!mBO_x_c;KJ#G1lSds2n$YhmN;oX`%+`(+0j>le5nY@z06z`e?3xl8BZx+_c2&
z)1_)^mZoZ;KJ<A)M8n0G*cFStv)uPMopMkbpZ9GasLn}gT6rzn6wtW)-}F8=cefeW
zdO&48;c}x{oMoEwpn3j*)2i0VOKIIP<)50-tjN3$-TYy;zW*5+%yq3hsDI@3;)m-G
z&aH4Qn?}=(y%$37?$TNi?lsVR6yAb?u4Q`*=sgMDJHnu`_caER`A=Unr!m0uWa?}4
zv>%$g)&2K}-Wz(j>-pMtG-HZ*!72sa7(Be4|BibN4;zC&eS5gM^M7mHLTeSZbnced
za?fQn)wb1k*Gk8@S((>K>*RHQbwPEpb;ge7=F&0Qb;`QSb@VxnuDW0cVg3DOvg>qZ
z9P68)+Z;N~&2cC5Pn-Ww#a3P~ucvdVzhmz|nr6{v(dG%DIW9i2IbXlqc2}p~w_QJ8
zKfYS8y6+S9{ITMYa(a#>#2J&fz`QC2XHv$M(kcbcY?^R3Q&1tpxsR$Mv@#gyPM2}s
z<%aXBI~9&NGxDqV4GyZ0MVzQS_9&G!ViJ`4lgD*^wLGr4foCbpO(iH$c@8*vY{h8j
z>|<{P`&6ECxFO}`eS^IP_uA+D$F)5j|8?zi{^Lji-t+zMuGI9O+Sir8xBtAyT>o|B
z_h9nJ>TByiuK%)L)L_-%-mtjg<%S&%nkyrz4HXR^H~h0<RHJ+2GmWn{rZ!eIe%$!a
z#!+Y7&pdPH)ibGQD$aa-=AUOqz3u+?GjG58cIw*|Z(n{JPlt(u)|#JvxP7<uZ221b
zS@{@0TtK9rJSe1`Er4YX?kB4{Ykto69M64k9(XSHT*0}fb6w|*&r8qyo)0`9d%oa&
z)A_FR#_veq@qH)oo!EB@-f4QL>mB2FrSJN_8~ASQy9Mtyz1#J!@dfDx-wS~kVlNb2
zXu8mK!T3Gtd%o`lz8Cvm!Fx^b@s_$TO5T^fZyWFTe(?K>_m%If-tT^2@`3CFzYo0P
zgFjGwp!`7ffq#7W2a*q^?}Wt5KJ@!A_(R2q$`7;RRUdYLC~1~8`!&bD7u>99RyM1e
zyPGAKWS9Id1z%EJQeIMB>b@lTNX9}#yx&K`A1OX+jaPo8`l$OO$z|DPzstdw6_=Hl
zRhPRjOFotX{5}r;Sn;v)W7WsqA4{&tuJ~OEzM{CIyrR0&eMRz#>=VCFf<NhrSA3%U
zMD>aB`R-37S8Wr#5@c8Xt_ELKTvc9GUG;Y8zAE`t@~MA<>{Gu_gFjV#8j_&=RP`z7
zpGvODuK8UHzNWaAm7u)Vkf6HOeNECLYw>FdZc(%-TU0IGEfQ60f=uOy%f<?oQq_~7
zQrRYYC3dSM*Cp3w*ZmVi68)|RUsqgLURPc3zAm{TyWw{u_=e&}R-*ET>PGhs$!Fa+
zWS{wc7W|pwGv#Nh&$>U8w8~ojT7z2^t;$waYeQmptK{#pzx(|?`0uTWioYvvD{rfA
zci)z@%i4SP`n3nQE83Oqs`l=7+ayVctivnGKgq8nxI@vQ>`--dcSt&AoqnAmNx_|2
zNs3Ny2W6+Kv%9k)Nzx_jYE9}%^6LujQgkW1RDkX-$(OP({k{zTQt_qoOWS1CmtM);
zU-~CYz6wdsN^VG&edYI6@K>$LJ;}ByUMY&NlmOLN-Cs$*mVNE_wSP+R*NU%|U#q?j
zN$LJNE2SYt@{Q~pzi)!SQGBEPrZuG}#WvO3LG_JSYWFviZ)M;5r}}*x{H@|!<+rMD
zLsGlHm3$}r&hNY6?-bu<r8cB0ziUlZeb<xP{hj1{+4r{ly!QEh@4qkjd*#1X|L*>`
z<OkUgwrPGp1plD;LHUE~2d^~$wC*1yKgxde`!V=O#g8Fr${$rfcK;~p&Pr=YlXd%b
z2Y0uoDY}*27VCS`RNdX(lAmnTWk31-6#SFoC*@D7pSpkYN|*dB``Pbj|McLW6+bI~
zR{iYxR!DmH&yrtczhtHR{nC&g{7djJieFmOmA|Nd>HbC1BkS?&3GV4hSM(@*R6X52
zl3!)N+8*%x)$4%&fsg~izbbxJ{;K-5`&Y?tvfuoE%R0bsL%$~%$Q|U4awoa7e5`z&
ze7xL6K0z*(Pn1uRPsUwmSNT-=G`XAHUG5>DF87qrkk6FQlFQ_?<#Xh7<zDi~<hWfg
zm&=Kqk^9K!%NNKO$`{Ff<%{Ky%b&nK>nG(;$)A=ll|Lh2CdUnS`3m_;`EznV`SbF>
z$X}5A%l|5WQT~!VK>o6Pm3*~)jeM<qoqWAKP`*LFQN9Uxytl}=%3qNO$zPRklfNe4
zE`MGA25#8|%Xi?m#!h*Nd>1))jGW6M=W@xpJaVp>oU0+{qsaM_<efb7PCj|3oV*)P
z-rYwo>?IeH$%P{Fw`1gQHKZw-G^LQHRMNDcG^LRy1!>A4O_`+W2x-bDO*y0~mo(*(
zrW2&8fHW17rXtc*LYm4*(@D})PMRu6QzdDtB2Cq#=`?9llBPOxF_c^kBNxNT#aMDN
zj$Di<7Zb?EWO6ZuTudbw)5ygva`6bcs3grPq&bx|?<39oNpl)$PAAO=Nb^C`tRT&Y
zNOJ~h&LquQr1>yuK0=z0lICpEoI{$AljdB~oJX4TN%INPTtJ%3Npl5ht|ZM>q`8_j
zpCZjQr1>;yhKX9zTt}MgNpk~fZY0fT$fZ5xQYg6;MlOYuOA+K!B)JqtE=7||G2~J#
zxs*vRWs#2>$mKY4Ie}bDCf8EPwN!F#AGx-lT+1NWGRd_pa_tzoc7j|hBrVybC7-mM
zAT0%?1=S+bQcPM(NJ}YcDI+Z>NlQ6tsUR(tq@{|qRFjrdq@{+moF*+w(o#!Qp+pr%
zRN+JwK~#}M6-89hL={6+u|yR|RHZ~!MpWfQr6eja*AZ1CQJo>z_mJ!1<az|T9!0K4
zlj||$dIGtgNUrZC*Hg&#gXDTPxqh5n&m-3h$n_F(y^LHhC)X><^;&Yhj$CgfH$usc
zNOB{J+=wPOV#tkHawDGHNFX<o$&FOzW_>)<7M{tpMeG5F0>gmezzAR@FbWtAi~+_1
z<A9KfNB|}R_X3lE$-op~DsVqA4R{Dhb!Pz&1CIi;fyaP3z<gi<un1TTECH4R%YYTY
zQ%qYV{ECGANZ5-!06Yj(0HG@iK1RXEDEJly+flF`1=~@u6$Lxdkc&oJG-RXUXY@WG
zbVNfw8a_oI0hR+{s|x+DN(Z973O-k%y(*V!tFB|(PDL`G?+F8j1CxRKfcu%x!wQ(s
zqfm$K&td!XD9~fT7ZVKxEe5pxsHY!gK0gr8e4YnAc~Q*g)!ED!dqRO>z!+dGFb)_G
zOaLYV_X3lE$-op~DsVqA4VVr*z<dz~Jz>XyIl$w<TwoqBA9w;-04xL+0ZV{oz;a+E
zuo_qcR08XO4Zt(Z7vb<LJRBGSi~_>HaQGGu-@@TrID89-Z{hGQ96p7^pYVgg4B%nl
z5#UiEd<%zf;qWaSzJ<fLaQGGu-@@TrID89-Z{hGQych`o!r@=|Ng#X-uK>c&aQGHp
z&wP;z-Kp?374?0vu^)CbN`YuQ44;oeHXHV`QO}76!tU`*U@h~-3GfxbMiKldMt_PG
z%oinyd1)5&#Yy;Hj{a1^)+xlb7JRj*nJ?<mpELE$EsW2tJqLkG=2mDFb1N*JxrIL6
z!W_MYvAz|P&)kYT%G^o_1y(V)5*5s?q%<J%<ap**N)dBwKQJu|m<>evzyToi9js<<
z9cpB5WkfT#@*tC+$J{C?1)gGV6;?2}iYu90WqX-hl@v>Wr<q&Tuzz|F5cW=o17m@4
zK-fB+2!!3!&~y3(5HhEs=QQ-4hU{tBJlz01!`xCrUI|_${HjGiY9oQ@Uu^<#KM;MY
zJr0CFwYAKxI@qj3TODZikgZQ)ZZ&|X5%fmLHNt))cpK}0XPDcV+qd@=F}Fi&ncHCs
z<~HWb?eIgueCBpUArL&+wr@v90uzDzfyaTlK=4GK02TnDBeDco!`zMne-!jafgju3
z?Wi<hI`9AxHliRO1^%dFU^Ngj(Xqe;U?%V|@F);%G0+tg4vYpuJ|+tYdol1grjEHC
z8wG@&*a{%@#6eG71~3O$39Mpn$3r$A^mzCZ58d&w9}nH}N+9$kpl=D#lK?*xU?Tzj
zPdE*P{si<tF%%d91YaWbB&GlnheYrt!rw&rlXwycdx_AS*Z_pwUc_MUDdu(({7;Gj
z#sSgCq$5E1mxLH5Ar47pz;Ynuli^1)c$3kmWQ;{J`kM@2lHqF#^rfIJ1u@5Vc02VL
z5VrQg#{OjHb{hE8_5sn4H0V!<&*|uUI%1v<J?XHO4jbv<KY+L%fW8CJaS%2Y=#v6^
z6^K^`VvvCtX2519#w`=|O!%CMJ|2!|ZXekT1m98kcocpgMeMVoFB|d5hF`~^=NQKJ
z7;NPn1VT0kwsT5>(2)cF9E{a**gp>2#}Sv~@cB68u@>Au4xf%=ZXHKlbJ2%f^f?#)
z<s#;}Xv>A(eCW-GjT7+m1b7QTFUVtV7b5;xJ8l=lhvG)&b_wEA0{=_URtg_WF@~k6
zmtjoGprZ`3W$>#EI?E8}GK||v_;eDnJPDmAK|2Xr`B5P1<(NC=7`JlBl%wwzh(RUv
zRw2gK&{++8)#z(A+N<lC+o#aiQ?<<P8u(e04TO#w$k)K18pzjR{A%DQ)`8pD=5H&}
zXC-8mh_4cIO6X9+el7TG5xZLWS&Q+j!#u1*-0D(+`+%@thj`RMt`7R@5jPw&+^$Dk
zJ#03>uLhJG;6nqg!%hSIY=Azj3AY<DFB=h;MvOrt+8Rrk+h@?9Gw9zL(9a;QXOv7k
z_HXTbGMV<!YNkCb6u6&h503^O1ZFesIR0pli~!O+0k{`<6nFwy%d|(Kj(u@E)`0e?
zGGGPMj_ti2`}X$eQ%pOy_x2db#(*a#16T^I0-`N89=H#f#k9wz0n3?oY}f7aNkGu!
z;Y)lyu#ss`fKLexOnV~qB!V{)_7m%v_Pyai__McwX-|TmNs&PKl8injA7k26(7zP4
zrPKhSC-o2z_V$5yKm6SfU$C9Er=<gnfv1^vY-8=|2Y?D7bfupJB31{W`v7cV8*4w1
z1I%UG55mubpef)twzc*{=<A^rAnYGPJtGPT`3zcy?o7lZ6FiyV$9CABiI`*}&Y9>>
z7GjwNeOd4&3o*<>{|>|EVelQP1R~x?Q9gPESje<zqi@GBX2-yD46@ix+mG*O+H=F0
z_B{BP51tb!pMcInv=t#Qg1ut&y%;_h!)^)qOVFPZ@RwlBN@{@UYbk7$VysGGw-k0u
z;Y%6Dt1J-+nKJ0XHr0L-<&#xRJND)6<@ro|1^QNThH0<FT&V<aC1O+w+c?H+uYyb!
z`c(z~DvU)ne6PmXRKw3|*sVr<aLm_U13NVsry9^};LB;0Ph+f<@TV5>t3_<FZ)~r_
zIMso-4)Lyo?t1uB4}Y+IwAZ6Q4d6e6_@5~PHZmQ1GJuDHN~R+;4p;;{39JD&Fdf)m
zcHnre1IJz+;V9#nxdZ#jj>uSGDbo>^$#md&wj(;3>A-yMz<lnAIRPvLLRU;R@D#8P
zc!ueSjRt}*7P?}=8+!~0+i`n<X~1G&8PgGuI_7yt0`y>i(~(%qbnJ})LVho7?~MoM
z0xOt~B>0bgN=Gv2nBN^K;7NgBnByHO<xEE^{7pq$>OrPsANsftZTs?=j{T6?58D1C
zz~eypy&rww51soffr!C=_`M%-N`t>?u$PARbl6T$WjZkDI}V~R2eW|Cp$G%QrULy{
zAa;ikpF`+#25e$q(~*$_%m;#wx!;i)3WV?2?{s9LzgghJzNh0bc#eSo2=rr)cVr{J
z*@)$_1Yio&kpsRQlyl(Q@j@VCa~!cc4nMIU>BvQ2bKzHRIuO3)!bUE9&xJ2}u$h+#
zgwDJqAbiO?4TNky^kSdWkq=uZ5TgS4Q~+85_zK`}0qhh)z7R1jf}cf@EyCDgyXhze
zPZ{{j5YsZ)KM8%<pLCSN|8n?Qfp}GbR*Ae4epMnCmFOq7gAN=^c2q&O3O-k%&s7-z
zYQ(Y{F{lRLDd;%`*&2*%4g5HbHXLhqoW}Uz*s(*2@vTS9>%r52_%vYr8sJw0{B1;A
zBl^&YxrKGVqY>kBrk3f%IZx-FNMHgm6<Eo1;+VQK^eC_lcoNtMJi~N`#RB7jCBO=%
z6X&Fz5on7(2+RSV02Tt#9t}Ow^-O0B^v6U1p+5$E*e*I_jxe3Er9kM%v0P{DX`qtn
zjDzmD6kryx90(n84NPZzE-;VjOaMIrb`nl8or&-@aUT%%y|A|zd`a*R$6cK`?&?g+
z1m*)_1IJsP$!JeOd&&W(b02K)18pDl?}Lx~)0xh+<4os)L?B{<W2DZ5(0>qm52D`+
z&=tu*=u|)_=60u|i0Q<7-gyY+jAKk^=3XHBp9Ojr`f?aL4nx<GY^L)lVt{qI6UR-R
z+3+nJvCW3xIbpygAbiR>3<PfuVvz&6<FJ<txm@^_ix}e^wKEU#$%C)?@GT$mC!nto
zx(X5VLimZf*ja?OBJdQ!_af*jf^0GL6vL+y#2?2+ou!D;$r`4!96HO<hw?Nacq<U!
z3iwcgK2@L}m5{51kCo9t@Kqw-RmibccUHr%YRnC+&7G$Z$5V(S*5=L{#JdLcTFB#=
zrL%57(^;Pfgpc*GQD4V&;+Ukf5jq;t=SJ{0Rs&BlU3+qXr<pFSzg?jPzzSeJ(-oEk
zOabm^x^SM`g>%|2oR4;eH!xkezR?wt!E|9A?!q}sS7ag6h4YTCs4Au_ItrKognTsk
zaBR^P1O2hE6$`!b2Y?5eu7n7tD-kx6luTE08q<|l!*r$Z0mcJMfT$nL1eP*g3eYeg
zx)jww=u$w>A=o(t-w#3WA@Cjo{Sb6zgaeNO(Ux%ni1rM$XQG~ozGcM#;TQJlUD&60
zWq~&f{XPO4SogY)90kHY*1oPIXP7R`qpqWoK(rr)-$%iFw2tY*ad;Q@?_D{N!SQ!j
z4)o-d0pZ(m&~a?tg?ZDJhq&bB1B;oi{4gM5nBT~B6(D9f2Iwk+&LYScrvh_<&`}IO
zi=n6F5D@ip#HIWI(}jI^S0&<K4SlB&*P2?U>oojOA}%<F?WzS&Ep*j_uNFSmAr^Ir
zTOGy^`{b@V#HSAOIDYM_N1y6J$3D6X$FN=X@U<R&$6V=ZfLsH{rU5=RLcS4vjTnnY
z=x#j9e3_Zge3@0od|6z>d|8s}^Zn6?V@URA(j*s2T0D}2wMdReAjvt5<U}!&k{qA!
zv-cfGa_9t-j6x*&F-VFJBB_E{b`5Q<$@BUCSX4Mojvz@WN0PB0NjCHy%Z@`*oPeYZ
z4LN&I&51jWBoWLxd-u@<zT_l9K~7Q{l9Uo8hhRMCSU!@%L?lJ<FQ=j&NfrFdsY^l9
zKue8#eZD^)3+ChTrAYP`Avp*qk7rgRISMz9pFD-60zE(8m`xKH&kcoZx#1NwsYDW?
zpb0I-#v)11LUIt@$~|-lNk$}+To}(SghRQdu#sD_2T5fzlEx^X@AIO;mluOD<;6xL
ziHE+tghnL$Xv2Q^mzPdk4?{uTVYrr841IajwY*AnI<Fc^^Xd`yyhem6KOFAnCm~k(
z3P|K1L*Mdq;ZS}BwB*+zYWekLKHr}>0KO9k5U>-OU^!8SFrBEb@%g?W5<VA1Bg6$U
z@Sq?WstQumk)*?9LGekS?+e2by21$X6~@p~9Aa9y7y1eh?jeqj#Bm;RbtTg#lWDHR
zZ8C8~I*quw5jS_@=0V)16E{!dHiNj$ByO{an~b<mCho4peHw9hBku0R-GjJKC+?oa
zeFkx#N!(`<cNy`ROgvnP$28*MMm*e!hX?VPPCPt`#|+{zlX%P`9x^h0GMVm5rcWc&
z-N<xzGTnnrpH8NGlIb(Z^qFM(EHYh2JSP)RSK>L1%$Q7OxRRNZ$xK%=YciSTN@SCX
z%$0a~k$H|}-aH~-PDl`8e2C9t;`2Q5*+CW(vM`t|dYUX+K^Cnei*^uSU*fx%_%0{D
zD~RuN<Z(hCf1EtNggmjBJh6c+A!G?dmiUk*E69?S<jKY4$qnSmt>o!N<mqR~(*fj}
zZDg4bS+;~MTSk_>PM%#tR``;Y3|aX+S@|+~&X=rOMOLjQt2UF>gscuAt2dF=DDNO^
zR*<!8$=X1&b`x2<nXC^Wfq^7&0}0$h0$(SAZ<392vT+63xRPvKM>cLE8#j}UuaQj~
z$fnI?(-yMnO|sdYZ1y0V<z({;vUw%h{4&|Rj%?mUHg6`Iw~;M!vSk6;vVv?`Nw#bt
zTQ-v|+sM`x<P|x2WdV5wg_Y!$RpgazWZSD`+iT?YK=NiFGr>*DOmGK!0H*^zfir+J
zfwO=zpd5&Q_ng20eSq_U3xErOi-5ks#lXjbPXLzyp9DSyd>XhE_zZ9v@LAw;;0oYM
z;B!Df;Pb!$;LE^Oz}3Jtz_q}2!1cgD;0EAE;3nW^;1=Lk;48o&;H$uGz}JA=fv*GK
z0KN$f2JVnDuCA_(+ccmX&>iRjoDTE^&H&B?&H~C@8F%o_p6$hWd3iC+R##?${5fXf
zq8-e_rvn&YUti{lXMLC_&ebqWKwARZlI8;D>8F<fS1?aMJD+)W{u9izXj=i^=YRoI
zR{^&%0T&yYmjhm9R!!Xs+|H~D*u<>b><;u`RwG}He9f!tn6+yIft#3hXkQQgfq{X{
zM(Ep!@<#A&1m8y3+_ZHavk87|4&20S27NQ=o40OaUJY2yybhT+f#*&#zy-|3`YlXz
zy&SjzxB|EmxDL1pxEZ+3XM)=_DH1oDxYNXgCevx+Ns}2gnMspbG?5{3hs3mwFr|;%
z=U8yvaLSJ)Gsee_(%fm)omSmx)q_?&Xw`#Or_<_mTAfa-p0w&otDdwvgH~tI>I_<)
zNvktybtbLOqSaZnI*V3iv?`-j8LcAjzCHo2n_Yc2BE&wg&=TSi=yNsq(=eZ_RabLq
zQbdyynw;{v+KA*@^0iE#mV8x}Ps@pxVw#lDq?9J*G^s$Milj*tO`>TMOOrUCmO?5~
zNF@rXL?M+Zq!NWxqL4}yQi(z;QAj0<s6-LvE24Zwl&^^L6;Zw-%2!1BimB3K+FDF$
z#gtY;WlJcngwjeVt(4MADRU`pD5VXhw4stVRMLh@>RKf=SxH$csi8{BS4sJ*C|?!j
ztD<~Wl&^~NRZ+ew%2!4Cswqn~WvQkt)s&^0wpP>DQ&h_-%5sXboT4nJD9b6za*DFl
z(AFACtD&?SN;^%fN-C>lOSC~r8)_-7meOh|trj#@C}>DZXi|y<tw>^Ng4QtF5JqWX
zlom#5;Vt<zfmk?g4X0w^stB5ZFP!p)Q@#kw7eV<VC|?BSi=ZqKhyfDtMNqy-$`?ub
zA}L=a<%^_zk(4EpvP99=DB2oDTcZ#NBo#;~Ulc|f36w@ri6|-&O(mjfYc!=rQ(6qB
zqbiOz#8FjoR8<^R6-QOYQRX<RDvqj(qhfJXEDmBfqE%J%C*TgMl%`>98qTJXY#PO;
z(QF#artxf=z@~fIG>J`<*))YsQ<36M51UeLxYI*ZWfo0qsVwf((6laxruCt0N@a1+
zgiT9m8dpWrMB0jb3p7nmq-jb$O*1lRnt6n#C3#4(fzvcIhE1tOToI({(L$P@q}p)3
zil(tjnr2YzxC%nkT<Tj#F13qub2hD{X+<_oD`^C9ZX}&Q4QrUke79*ZM$^m~q*zbp
zyU}%xrj$Zgw)t*!X`?Bn(8X=O8(rOyvSqro&3B{A+I%;<t|4X1bWxk{Mi;dCZgfRM
z%9iPJHs6gdW%J$WT85M@!yotgbY+ECNT;)@C!5Y-)0u2Ki%n(o-C57wS)bimpWRt+
z-C1wlSwG!bKiyeB-B~}~SwG!bKiydm-C5t<S+Cq#f81FgXzDrNgSFzp>i1y1qABP|
zXU(6^mOYWqm`~GL^JlWD{PUQ!&GT2V>1L$c7SJBKO<RE5(P<mkEnsQx3+SS&ilZ5p
zt_3YvRaKE(7RzNU5z8N~VF9EWmOCzESvWbmZGuR*PA)5DGZkf_o96<$tkN3IXpQ4U
z#u7Oen4xVjLy0s)4XY{DiHs7ltWrZ*Sh*T&9g8bV<aDA&9mMKN#j(C}HP$Sa*A{q&
zj1sZ1Qq{;PXEj}J*z86s%~%#JtdvMIuwaFya#%{K95Qu{wqY%$HLRw5202<o8<tZ_
zq#1}bi(5dKQV{84N^4=N2$-eIC{)vow$Ti2STkvjW~gDcL~m(Ei8N!0w410=ciD_3
zvKAsZoyaIBLPagmtdz~D9BNz}jV@*9h_utFVNb_q9Fc~cIz%(9xl|c4+D0>2ry1ME
zYQc)k5m{wXkfSV|IM!aO8W|PGs!Qdt?y{Mh$Z^K0_P6At4H*Pz2D3CnA81z2Wfg43
zDpT!OMRB!gE{owZScd>-VgC(|<p#%cgJZdo%(C1_TX0jEc=L3{f}6EPH)|DKmc8I+
zUE<AJ5F7T~Y^+8WcC)btSpt`(a9KK+Ww2ReGRxVR%GENtESt;nxU7g~pYN%_AF^uv
zE%-d92!F^*@wecM(7G=|;}?7p7V|||9I_HTDuJvLe{2>Wvj7ii;8_V|ad<QXSq4`-
zf(I;6E5x%F$cph;#sb{_#2uCex0RK+5w@WH;NJF%I%FlcQxg{AXqK)Q3-OrAGCXFo
zi0;waBD1Bm5XKk6`9dULh~f*;d?A)E#Pfv&twJfQa4%0u;tR=qA%!obvIVtU?u%OT
zaX5h^L|TXdL@#P7#{pH0DguQY36#2sZp?J!TZAM6;~l+-o7633i&QaS#<t+g1sf?!
zG~W30<wA}WB^q`7`63S3=OPkpsWw4fx*eazmrD6o+&xs&+S3m3rOaY=3A-4+l)<%z
z9m6v%c=W{=kL_Tr@X!rPd3at26_hYy7+xh;0^d=Tidfb{l**|r+X}%V3_56ay;`_Z
zj4vME`65h#M|@Di%u%q`!uR6Y9@IfgV)aF!l-k>h(jiPM(9$qxSYN^qva|-!4zkv$
z1m+j#y}Cpt4zv2uBb2C(B(4Ov%TPiu)e`6>I!`6aIA5OV9S;<q=p6_Yo?uzg!!$hU
zgvtrF<EYo80>$VPHipXH3c_)itx(@-H@OOU5Kt;p!pg++mGIo&mNK>lVn@LS#~=fL
z6H%$A{h}o5&KZ`CM*j))kVb~GMWDikj$@<#=CCdBfCdnbLgoxtfebuI?XA#}MkRw~
zL+7Xr8%)*@RF3c-p{L>5oL<%)+AZ2mt^!fk3G@^PYq#r@Zq*;caoLmDda)fA;K97M
z$WrN3SZgC3Xu@tq(ND24?(IqpS4SkdaX*GSU2u9w3-xMluCb0BeTt0(+d;a*6rm2u
zG8!s&#8F4jFsrzE4*hg~pwBgU5)1{@v-!cKix}$Y2!e_j(mA`d*L|!ZxouHJ(r5T_
z#0*f62TOvJ)GmbRF!Cg=fPtiGXTw&>l3*~bjtWvAOP*mn#11T|blZ#pDV6QRF$@(K
zZ;&_#!)Z^#(32vN=z`0NbMc@g#DuD#TP=01GJreWaNyT42Y#V);MXUEoB7c<^BRS0
zo__%O|6%V<psOmfzVE{zghc6RYfC%zacD)vHqNx7ULinGgg7AJcu-JKgvg+Pwq6K?
zFiDt$10G~BD#8Vg#F6U^8Zgc{9~Bk5ZH=}A?b~g?Rki<{=RJQsPvXk=tndBSXO`B!
z^{ZXGcI~QDRp;D+`=>-JZQjWH7eHFRYEHD;%GG7jDqC)(<flk}?fU3}`G!AG_FvN0
zuP%!owE9L?+xpd0B)@J^wC>Jktv*aI|1iDE$d!{nTv=`96v(NN(;;U<&W3yh@-fIK
zAlHk$f1;H+^|L3fG5_D~Uai$vGpE$gp7Dfb_SMXV_SKw+&HtGluO8X)>T&yOL5=x;
zwR>gs%&Ru8rxQ(Qo41K<XJ$p~rtMK!ctP!qjfI8dZ92%N_MCM0TXP}jLC&x4E*oAm
zBkg`?rQPnVw7Z>^cC)k6?sZn$t<Flj(?PDX(r$QG+HKBCyUST=H#sZq9%rT9;+mPY
z5ZAzNy<F8*&ftU1bjfmy-EJmlrjofd>;+|VSXAxezFQw@>cg^it`GM#GuNq^&1Ru7
zmztgRyBT0EIoVkN<Qlh2lbOO+LoQWJ*hRaUtE0-!cw@je>l%`YZ&o2Jv9_X_Ugp1v
z&B`R`&02J>t=Xl;DK<IPCa2e?H=1OEO-gMt$tF{6GQ%dbY%<#>%d1UNwY)`_+9?}N
zvb5SHYpPpxwROAJPPB<B=xVDK+E<10%IFo=-o4x;_uE&dMmO7JH(RZnZL(W!nN3WM
zZnfn$F^zY#b-UTdyV=IO*><~G1Knyf)h)VP<sQ~R58G}J>vIolrH2%lx;<=@MYgoa
zvLb7_$QmuOju%Pks_GU!tuH;Tsh(E3r*){Owb#?y>uKxuv<~&Ob$eQedRm8iS}Q%R
zS3RvmXV|)DS}SK-y)$j;nYN8HZGU^&f?l?umu0<dKYH1MvuwdxwvDrFjo#Lm-j?;Y
zZuGVVy=}GLQflh<wsm{kx_zv2AFJHQdfLZ2*{628O-zkG*3&-L(_*VqY)zeGU!5bb
zjLJDy<s7SWj`ivsYxG>(k8`ccxwR{7))bs)v*%f(=UF$-vjyi#f$`-$TdlA4rLQ&L
z*Ba<+9qMZx>RUU_CdRA2)<9p|WMA84Uu&vw?J}E~AojK0>T4r;zU}$>wzQu$+Rqy8
zXN~r=ZuGOm*w2>sx7q$SJHYA<uzCZm-T-T0fE~dBR%L*w7+(h1Y8P0&3#{G+w$v^@
zCUFI(9|NtafmUUpwKC9J8EE@4(CQ7e-Ve0i546|9K<oHr*2-npz-2ZNm)p9RTl1IO
zg3E2SLH5-kd1dql+0YHL{T*a$47N=Uw$%pPCI{Ql4YoA~TgM06#s}NFgKgu3ZR3M&
zyMwKP!8Tx5Smi6Nfh%phS6ZL1v{tT^0#o-&+vE^iI>fRe*76W*bcl6)h?JUZVTg5T
zsC8(lwKvq(7;3#5YK;!HMu%F5hT6JAtwTetLqn~Vq1LOR)}gCxwX3Yk)z-?@^2(@O
zZ5z7UwlT~W46_BpEE{G!Gt3rTV+*daPF`b;4!6Dxw`{m|W4J9CZmSKKQd4)htvlS-
z9buJ6SmhDc(-GFw5q9d0ur)?lcSl%vORP$XH8s+{8Y!=g%1Em+(yENKUX8RyN7>Gd
zvMQtOydPx?M%(OY8^qDp@@VVJXj?j3N{vIKZQU`}p)t0NG1kf$>(v<R)fjtKjIpkb
zu?EK2cE{Lu$5>Ni>{T(whI5SV+ZY?u>umS0v!&Ntqt{!b*IT34TVJlXzFcpOUT;;#
zS~k|QaaMVpRUT)R$5|`m>{yPoD&s`OI5f`I9cSx~x60$K@_4IaH)NBzf;H7GpQ@@&
zzhKh|Hr+Jwg_cj3nF=<YWYS9adIeHTYV7N0*BetUpIc{awR~ZYO*hXrj@i_dn$&2T
zw9KZPCco8k^L$r2-<2+OuNTT|SGvfNMUE_Tbr-q1i%fS~Zobo%-swu0)Xp<xxg*OR
zS?=_gJN@NO{~lL*k1M^$*<a&y);OItj#N9HYNxZ#k%t|5*pY{w{=-iH;Y|}wi|bwK
zdRzL^gxa|-HJ-dQ*>aOwKH1hXsp<7glWnb+rdrD{&2go3tZ#K?F0HUSbrtUQTw7Y_
z;$u?F=R3Z@y<Xs6FLY_8ZL6-*wqjDNS?Tz#&cb5%dZ{a2>PnY_OgEZ$yVv)*^nRCS
zoKD8Qe!y99F{!I|yxQ@H-0O$j>vb-zaX!?zR%%>njpL6v3s2bBFPGX<lNt|AD#ZBk
z@)Y-ax=Uxe)b;M=2hGLO^5trqzUq4PsvGxLtE|qe_t?}OA8l%4ZqoVHEzM&H^V&XP
z+Su})2`-)E()lLc<@DN#W?DNjK}4yDsaBLpnVIL3b7f_<u53!}Bn!($OcRx*wG%Bg
zVSQnjuC;et*iBln0y$&F=8TnYwUcZMR=6@(y_>0Ls`oUe4eVu%nTGm^6)Oz1!dS7w
zSm{$+D$vAJa^+Sy(^j|&&fPxZZlBuQY_nFlvfISiZDQ=U+NBSfGUrR5+A3@F9C6~@
z+6lE&UfAW_+8H92TG3Zp?`s+|&Gt1d7}Hi5(^i=3R?M)%HEV?{bIsbE>4O!f*@4nc
zD~yU2rkhq6m4PxGR=Bb<DRaXyu-5f&ptLuz)(yu%>4Oy}o|nsT43-wGFjlNEEm&b%
z7%VZf!j-uY43^;-Dm@w|kr*LXtT38Z7%Ns7D<dQzR+zq9Vd64EOk3e9ICn>gyCWnn
zR=6@37n^g&TwF#-S4PNij1(tE$#9I4;TUD08ICd1`WVxYX?Bch!3>8L#<Ug2B`eHu
zjFD!oaAmGpn={Q?VTR+wC(Ls8f)hr?<jk_a%ZKZqaL@<~*FRyQ`L><8p)g{Oh<Q#-
z5jaKQ6oKWXuB^OV#B>o$MJyNbm=jY)bLwQtNrkC1CAUPxG7(a5>RQP?AmSkr>qI;v
z;!zQ3;c=InHc^DMH?2%^Q$)-bA$^#3m*lEM+#}*X5z_iJX?@y*0;`Q^WwyAvn<l?)
z<vb_n*UmLTY-P4Pv#dKg5BYg6zYzKhp}z?FR$6@{P1voJdR7Xb=lGq_x6<-Ep=YJd
zFGt==<Xydc(C$5GcTH{D`Maie0;Kd~jh1hk=y)~Sv(nnDhJ7n-ejV(rgPnC~XC3UU
zgPn)ngl)CiN?XrJ=hwrqZ>4bQ|HEj<O5xJ~_0YG{^7YWO(&WwNYcC9u$lG=dcjMxu
zaMzB>yEr>3+_m%4ROy$IE<Q%O_!#NN*=+1CKGCwOXxU?JT1Cq;kPnDlQx>gRFu9ex
zKcBXHtB)txXT!T0IURB)<SfY9kaHpJ!!E185Yjv>b9wvJ((*eX&9h3EH_tPiG>=Z5
zG*5k<G|v;9bWb2mJtJ?m_1A(M>GIXc8|m^j$Q$YM_IaJHXQa(fMEmv`y5;h~#7O(Z
z*XGfldkSas=BbF|Xh$A^7;YYRI1c+0A4lFkXf*XoCqPbuEQ55<Moc;4XQlPaJzIx#
zdBo8^Jal>Utkl^x(&Z6PdBkJt!|&1z^z2haYY*`%b^hhp>)y_gcjT3sBl6153iry)
zsvWPi)XXf$%o>1F`$|gfx}c?6*Q^mcO0}-Jj#1aXlDhWVmb&KZ-chP`?G-PjYj)JN
zucWSdwWCz)nl)fYsn#{uH7wg#QrEmfU30bXDAl@l1#s=!Ye!1mD_7TDPg;t)_SzE5
z_LbDFpFMGr`TvnN=IP_a+jhKK?p}3y>cM7ReRJ+KNvTaH*<`X!%4{;lCgnDnW|QeQ
znQN1IHo1GbNvdq}Ky_E&oYqY;`K_-0Thj-aWX8oNnK{rTw+uGPtf3~UxW**2uQkb>
zF<no$M(s^xp>Jo1O>f<;(A`EAn%Oa7W1-mtY-(?F3e9?MQ+o?jxY^#e*tFcF_9mrp
zvsr~rYHvmg&5CMMdmB<{RyUKHwaKPtCE92{$o0m$qitGqyiFfFz3|Q1NZ0o)d~=R_
zJ=dl4Tsr@ahyPso=6v^hflDi0y6BAu|5*6uBKP`Mm)?fd+PU4mUhLA)rAu78)TPUi
zTFn*i_1!M5a_K#izB%En!Z+`EbK=>BZ{F+3TI;zvx=$Zq)43aMI?tu^s|&Ye-pY(C
z+_J`|Z>6n{NpBf!(^*4pT5*j{XJ2d6Ib#ann&LF=EkNO0Q{8KOBT)E`y#*+I$KC>T
zGh=VI0w*RoVKxGjGjmadgJuTXoSA|m95j>9<ldU`*6fi+%oK5ph*=^kM9h9GGrrqL
z_uXO60^PB<bvNT>_qgtFnn=7kp|{A1=X5uoTN_qdBUV}~-J@mm?Ve%e0?37sw?i(0
zybJO^$kifOEQwaw`YY~&TrIL{K~!aV)k4VIA@74+3t1y_<&tQn)n9p+$S2lDPo(eY
z9zF4Zlk)!NZbkKXOkQaIUw*%RRjIGa9^Ucl5%;QRWa>Y@##CKwUOs@Ay|j*zt5*G=
zxz({;CYD<h%dNFJX-}=}$T=%z&VwCgnp?f9^mOwS#3W@lnPQW2n@qFGQuCc(vnZ5y
zvnuA!%_fGKySC+}=ALb1skvjTF70DW&5fB&j7lGC#oT?_<hJ`w;#8`Zmzq1P>e6$~
zC2NuyHZfUqN43!;rdnTHqpz)D?twO%#5iPbb!=h^%x#WMObv5yv%J*Y#B4N)sW#X$
zbKkPO)ZDdfEH(Em)ura<WTQ!pWpfW=6Jy2Pf7ryBH}@A-#W-Z{EvidLS%=Jhg-uM>
z+*52ciK%989c*&j{gdp@w$Y~ZOlnTCF14@C4&_q&+MH5dYG0d^s7vi@bLupy*^gXm
zUz>BLODDM0a<jYG)GWA@%!+4;IZK+<oFrXpHO<cAQpcU9IWHPwPKhqH+?)ViYF^tb
z&ZUN!*Or*`n@f!~^V)K=r`Xh3E0f*(1(6d(noHj1?Lr_@xLpd$Y~LNX(sCogMc?hz
zj*GsDfYZ0q>Kp0w&0Y*{b~?vJ-|fsM@AhSpPT%gt)*maazLAcb_&9E*<wk;wzTJ<7
zJAE4gtM8=YR$6@{oxYR8t$r61yJNbTsbZ438;>!+{IaB(XVSY|y40o1T)Nz)D_nZF
zORHRZk4x`$>3uF;>C*dMy2_=iU7B&}8keqh=>sl((52NjEpv9toP{!Hq0H4PbG6D`
ztuj}u%+)G0wF=!5e2n>ll|{R?FzKzkwJ;wXS`$6KcJZO|;=#M*g;|~s^_qGA{h!~p
z%qc`&M5bOASy4K|@et+d8ImuDtbk0NF8cl(kcA>EQ65f#9ptMZGm!pdDbI&&2N`@U
zc1n&B8NzM=89}CDztb<2A?#K_W+1E7POY>XJt{K&DP$S^xf=2Ykr8Cr4S7hvyW|7N
z5Hf=Fd!QULgp5?89luEQLdXcx?}_@5Q6K1O9@0NUcyx|Pzc1>6hguF9^oQP=&{KJ#
z<U{2BUMPq3hanFcf=7^{mX8rV|19W3hL91Ye+~3{Lk}{9j39mVJJ9|^`o*XR8A3*o
z{@Ex;I|1?`@{zVb9D0x;^dd+faSb3tmC*OkMSaK+GJ^EaLpfv!8A1A(PXWd)gp44y
z+&>?7AVbJV`Nb#?M244(jMUF7!H0_U`-u!7!$BxVK7#ZyUqZ-8=g$Dqk1+0j3G9J~
zS`O)7fO3^1(H`;<q_6W3GSd85(f2Qc9n7-;`4BSF^6OzA(jS5Ph*Jm|LHd`#E@TK9
zLHd`X95RHAAbpKHWPtWU$Otk(oI=P5(!Un=RqA>Jd;UNv4^bYe9(bhvM4ST12r^VX
zNPisKgY<PgG=CY|1CJp6QK+Zokb$mW$oo3~v>mOd9MZ?U3m_v%e>~cO3{}F8KN#hZ
zA!G#UUx9MS5HeD(*8^k(=?_6Y$Ph9@yAkp}uA=}l((CFf)Q9v(OFmSNe1v?6ypR1L
z(tacF-vE1%5!UDMI^hwdkMWPx9<GlNGJ^D>A3%m(#E$<l+IhTO4i<M`>tuku|BU2s
zro5Lfb$VBxKitWDsqL-sWdHvY^3k1AKRR04Ip-+RZ-w$v+a-U5>W9?+y~sZy{w+C0
z^mCyf-X-N;h1gFoMgA1YNB70;1t^a?OL@N>@wWi>g6HD;<L;97_Cxu%(<J|U<aa$=
z@@>_h=cRt92@;?0ZkF=BQ9k)j$*aAI6p!rvQorO_@lW#=ln*H%P(Drh4DvtaN`H@r
zKU>F(Kfgo1#{kLec+MUn`8`qI{c_3gf&9C-NM7Snk{174q1;;~`AWn?^C9J{kY5>y
ze_#DU3{;;b`5(|=YKp{F{ZXmSrDsaH`ma*Uw`1Ps0I1aR2=$e#)N=0@vELFvrIx3D
zJITE)22iQx{&X2vjkiiIFPSX%e*>UW%RR(N+f}LMDb(K$K&6%!G*F&yp#2QWH7+XE
zet`1U04lXSJ6Za_3xG;34;m=<K9u+ziW?!7THl{1_S*ue)bjL7sow@brIz~*lxOd2
zpne1MBU~c&H7+W5v_D_UH7+W5l;8E=*AE(~A2w8etJv4;SEaTeHB{a}|5A60eT}<H
zwI4Q6?o~BVKm70G<J~IrL)QhBJKAqx{89~+M-7w*4V0%FC{N9j{^@nEQvLTDD9<)v
z-*2FPORS&G(V$9ge@~RFUn;dcgY`@IZ<Si!5%qQ6tJLy3)ZZ0ArIxeI;JJr#e}TkL
z+f}LMENiHK7Uvj!4x>`*1vkq4(tfMd@@S!y9|)jQ%UM=VlKoG40s61)s?_qRtJrS=
zpi;}TSf6#?tJLy>C(GSS<tnw@Z=gIlUE0@qp>jw4GAY+_RjK8vsZy@%f=Vrq8W{im
z8km1-M`dMMJiY<W7ww>+QuPDOAN5<MmbYr)`grU!IWM(G1s=cOe=p^F9_I33j>KnQ
z)K{tPd$Xln_dS(b9>V_)04lY7>Yt^3jr;dwR>h`J*uea*YhZpw7=JaYQrj;^eLc6R
z)bgmZ)V<6DP^snFXQf=v+bXp@!1|{1TBVk!-;???090yu>KQ3NA3)`f@)IVxmm4r}
zDtDCMEafv$u2Rdr#WH@U0I1aRsG;-86sfQ03YA(vm?`DDZmQJsRQZ2jKb-O3*N+;Q
zAK7M;T~h_<ze;UCyH(=bA3&v+vurn$u3t~$n*;kQwO(+C*lz`(Qp?lRq<=d9Rcg71
z`(|C&Rcd+m1F=6FK&6(aKbG>v04lZo@E_&+>j<#_H<H)u^dDbH{&19U{5oE)c9Qmq
z&fP>`$Nh~HB(LZA-*l0@URRU5#`8l@mAvko&z~00cPD$doG9gLU;R^=#rp;u^!)?G
zHw76$rXjT+hSy7B`~yhks;A{cP_Fw?Gbk2O{T5o0%C&woRMh7q?NQ%{EPzxqEPtf?
zXZDx%Iltq1$1ItrT;5QAQhON>?dNs${Nd0erJVOQwR=#<c=@hmPxX@Iz;mR&-q-fK
zN%Fc*Z@*shd|%A=-XTA@JSm@U;Czx)PkGqH`q?JdPv0i%+m)C&D!paGABUqVd3_7o
ziCzixRHnDfx^yVGN?ixE|2pqAud=>@bE)e2k4rl`zAD47gdYq=m0C|_g#BClrBcfq
zl1ct&aqiRgLFG>NCW@b0u5u^61W<_cp<eeY^I=!>D%nhu|4}3T_nYW{utxgd7LKW8
zKa=uF{s*^-UENPrvYiO$!xkt|$$Clo;BcA$H$g#VaH#N8!By%$r}mQk_bbGI^+%=F
zQ`swF{I$FxS<uAsJFkiDr<&M)Qv8aWIRCwJiN9WtDmk7>?fZ?apMsvwPnFzGV!o_#
z^CYQ$y1C5Li=dz~I7)aCxJo|%`%P>=DSlxiuitQn^k2^xDwF!l>tIs*sr$vQ?guK_
zZUjH|JgSoQlJZII2aTP-O`JbT?T2?YF0M)SOB(CHzE4O2N;k5;w?X{$QC}sQOU(MW
zOMM+Tm5CLopaOpC`k*puV*J8J_CG299-dq1xmYE+@1-|N{|`ig%Ak?^PqvBsce+~I
z*XJfG+0UeWdacygbA!qVT-Pg=IzDPIST6PTT&gl`<n`|-w6FFXk{2~`|4bVHu#w~E
zFP8r6a|x9V`K{%dg!!Lt<o=iFe<SOsYs7zj-&SSn0pU9CD%Ee5N$qDF*?v;}sFC$k
zP24~06XLJ^W4Y7(PgsAmja+|1#96O9mE3MpKEm^39Uql-jch;qh5ctg62}kglI{m8
zxxP15=9!+`RPLmg0Fv7GVOPgXC7VgApK4_NY{L5IFO`1jc}gX>@2wL({rrZ?o%9kw
z`Z=kOk7sx)6VyFEhXqZ%ezL#t{K$SK#XoA~`kPeWdr;z{*MmxKf6)KX{^6BM`+8nh
z$?YfkA2f3QCDqSwZ2L_-zxilKuP>F{&!qgYg!pHh*#C4B>-)21{93?qmE4b{_y>)g
zf9WP(e@X3!P3(Wr#QqmFcK#*opJ5Z*j~dzk2<_;)s4~?=|NS|Qn?Iuy=0DG~q<qr&
z2TP@W-FH;7o$!BX{&~}+eO(V!a{E5?bl+FWdP(`j{x>rIH~tUBKh?<oXZN4vx;6$K
zROx>%@zeWBl^mZ*P4s_86YD3%KWt?Dlj;YJj9*gy;wE0dK@;nzo9KT@Q`>K3{Vet=
zz3)(&biFZ8ihtP1{(GBbp0|f#l_Ab0I^R_`w*71)+fVd=Y2((<r1}+&jDJ%7u#xrW
z{SRHgQ4`}AHS+q;pr5)wsN``@%4eHczpjb(qbAl*8h>wk<Mz+=WZ6IV!3~B=e}?b{
z2%Jj34@qjj9{o~%l{^kf_5DWrpICpc^uGlfRLSj!gQcHqQJ^yVv+%RPRdRiAm9(Ru
zzftK;60ZGL$@P=`Pc^asK_mO04?p#~QOSNL<!^85`hkA7L<1_5+GFlF(f@1{&#whd
zY~Nof^F*I7sN{Yo<)bD(KS?#w|D^ewZshz;JtY0t_Z?Iw^_O{4`(Y#Je|ojFub)d*
z$?YWNmo;(z7dJKjO`Jd3d|BtNL<dy{UrSsL23OgF0ueRw`biwWM$Vt4`q@U-U)jX*
zOKLxAWcxu=$3NluM+xlezN3<c&-3s(BOO<jJLv)JRF3sW*KL(a^_iz1E_G-x6sTl9
z&2vA(g!!LtWdDPMW&YoQ22@7hieHC-tJLQ^>W|l2>JJ1^nfgiU9|5j%M?HP9Ui9?y
zk}3n7E3`e8-2VvcoR+Ip^DJ8sh?YwG`nf2Tq_!i==YxtS&ff={c>P65<G)V&rSGSz
z+|d!dc&v%-`}qEX?%OK4ouqu25WnmO@n82tm24+_jLg5eC{UU9g`W(rlIsTv{zr|x
zfA;Y{oqoPSWr%%U-?vlA?R)rsu0CH>xszT3@PFa@!`Dyh7uMg&4Xj`KzPHMq^Z@w!
z@&6&?+#TgAgN`zODR7nSe<or6`18bW3)EMM><*EAO7!&m>ne9B&<h=3#r`iGKlUR?
zh<~<`>vwvf#3=)ZR7OLEUkI*J{Z<+M!t-BCtqAG=!u^w~dr9Yqx<>Xtcvr?xzh9y<
zd|$YJ-%TaQ-^1rO^nGKM=_jSWo`+TP{0l!5z0=S!mEM=a4+2-o*LRTc`4@kg)K`6#
z9KR@G{?|7)erQMcJ(b*!=6U>|Y2yBo&69b01sYHpCiK6BIs%z`QR4JR<W&YQ2-opc
zxzqS1#Gjf;%%<A@y#G;x{~SLLpa0f%QDtI-RFL1q`n63Qzt@^r-*2M-VZ#3H<9l%$
zZ<Q22Fa5O46J7UJ`kxBd&x5FJK?YL4aQ&z1p1(rc(a-&<WWA((HsSjxN%}nhvwxNL
zyP$%~Y)hHf1>h<<jzJUqA7Gzug?3aX`OiGNm-u-N3RDI^O1};RSIOtFR95u#_g++T
zJDT4qeo4<iwE{`LzQct3pES+|s;{yI+4J5K|MmV#rH_4G<EfJOk)VylZxHON^!62g
z61YnBL){2};rMa<-fiOgv9*cylg=MeBhQaX^+SBGOUFy4#w|&9rtcqqd)RQNs`WP<
zA$c9gQu_U<VZEhX--rCHljQaO??n22s{!<V*9YnQvKzWfeSNNfIq82sOv?4#zxQOx
z>v`*`!IJ-NLWiqrrNF0hZ7-ZK!j))$NzEIJa^{-9rvdwwsGoG-+K~ODveHt%HVD}g
zvLXLV8u0&!tQbnN-;n<e*)M>7Uz*vGvj2Mi-JyUN4cYIQ6-6KVD%8IE&-YcT*O2|g
zvZAT+@ljFp8h?GRR*rbrG!S=~@qU|?S87k^x#rcru4`&P(@6UVlYL*B^VGh^N1uzS
z{l@y=hU~NdYG2nEwcl9(_k?}*o9#C>KDiCpZ>s;dd-A98M%L5$S%-1dyq2qMXnx)S
zMPDmGsy(%@>m8|i4cYIE3hKX4d9|<OqT}1x`EwN6Q#;z8+J~B__A`x~|Hq@E5BdMJ
z{XMc`Sob5fujfFXpK18rSpW5YImtf9=a<^oeNW@9{v%wT+Sl@mU+Dkth>zB1`x>9!
z(cmw&-?{<&dj0D8;FsEe`#CvZ90dQ~TPJxR`L<&vuiwibPQTBvrHz~~j)p#qayn1-
zy+iEjed0-E|D!<4^?5@b<=OriobU8peacBvU(ajT(eI5E6iK<R7kix?*Jt||(0P)}
zo0?xw=f%m-9Gkn_EeA|2#_uN_ai#dD<2&Gmy;^uL?3*b<`OM)`uJdlp7sv0`ZfV!y
zY5YEF^d~9T`<G>uuR2D`_59YF;`apoeoG<MUrgm3kN>yZFQV}~gz{%o{&LEnNqLX*
zT`14}=X^-NFQ(;H2|Sa)YZ7=ifghs{LAKWe7xD+|hKl?FdO;z-i!P+dx1a-UGd%#I
zycs=+X{Hw(%2iy}LFS(}{}5fT`yLmcpC?j&2<6qT$_`{-xyn&A-<2oHOV1O3^t|1d
zeh>GVp;E5b>tXc!xx+7$a$Vob>H6<CTFUjjJ*`6W`y@Ez|E0{8q#+~7)J?)eNbhFJ
z2as7vKaKj35oBrt>O*=HQ6Dl3>6fBDWCWR-g!+&ke#e!&vGr)_pRPZfkC(ijFY4)j
zJ*51Bbp73XxYXDAw1V>W_&uXmaO7k9eY=BcJ?u^E+bZ(!H`M;W>3PEeRQ@HEv;TXM
z{vMS7n(B9>@?$AqK=~i2{{PqG&+{pqCg+h7$PJK{kQvA{WDR6FWEQdlvI=r6WHepu
zZ-FcTZ?6*Ehpd_^`XOWuWCk)HG6&Lw++HsAxPSlG=I0%M{r|PT{fuMjgne=+)vbBw
z{hwRmAXaF3^|yNVaz!uPn)Fc#uGy&kmOiqcwS{)-sdD$K744IS;Fr+vw-tepr{C@C
z1s?Vg`?@_BgYQlI)_LIP7svhS4?c+aMc`eI6@6Xb1Mqj~Ip`qpduhKO0{$HJcNq9K
z>Q@Q)fhlQM?=MG#bI>m#|9+zVVgaq6SCN0U^t*E}Q~nLgZ>IVu(eLXO6o}utKb=7N
z&Xn&)=bt}Ne-5SmKsxVCpmDf_{5^pD?N0e^WbZDD*E-7YP5o_0{W*a0@6*4hz~iU+
zDB*X^^_Uw}l{!_uFI1`5b~d40kG1|iKVM(Z8R>*_JvK)P<vPx(dw<@(UN>Pvxt^1}
z`+mN@_A^K**Xtvdk@}ifsmJ)>E-6=kRO-4BCe+_?o3Q5R?d$ldyoJ`UuX%pa{QEtf
zw-3Btt{*)=ze4A^?qu)zGSS!PPq$M0XOg`u28q6&-vcV&o7SV(>3n}KtxIhR#h%9b
zI9iXdB7fh!K=k!_QvqH7Gp?3$z5jUqTFL7kb=Jsu{sDTPvykF3hWa;dqSV*t>0i+G
zxs`rT_JFfQU+2LwbpJFslyZF@^pCG4-vJY%-xSH~_#9R#`F&B|VUFbW{%8d0zp+Bf
z_lJHLs(&%%uNyD=`n>Dt63J`)#*%&^wLfvA=pTgk{z2_en=a-0KKX*Q<TajKKa+fW
z)W7%<$@|FfIY#n2zb~Qo^Xd0w_xro(ACCGHDBd%uzxR_rtEj(A$^ZPj#lFV(_@^X)
zAljQk<1v>0J)kovk7_%FuHWArEp~O?@$dZk^+@&AfUfWVr20Vv^|f9L7+OI0fnfvn
zwVq0@A0+&{8S1~*)BWYQv`<G3w6FV)%KfRnAC|hFX*^YG`?@cwJdElG4b)eAdfor-
zOc_7ThYi$MzuO}I2miwQ>i2I@zu*_vSN~P6p!@!4k;G5iQOWa0_vhc!?_@{#+>-9k
zDz(1$U-^kt-%pr7I&W0!K3+xZa+DB%t*7nlzVsl~_m@cjH9jh}zQ#k(2U)5gG*Dmd
zVfc0uI!`Y-ROXfDRXz@`@l^iIVWO{oYWW8V{1Un!Q2mKVh#ifS+MANVx8U5XaZ&xR
zaNgDa>h<o^dZoNO%|qpR^c+k1dis2e`nxfKFF9TMrQ@#pMKpfekMk1vAI=avdcCXu
zvfjemVnnsyYZLe_=ZL;u$Ett*`NH)aq<qzd!u9<&z5doG@NWar*Ylj}zdl&Fo}=_S
z{9g(D-@`;-&k3sk%}C+8U+eYQdeqPJE5-`f^M~qBrgNI|qb7^Ko{x0gdL-~4r;5Iw
zKUDvq3gLQ=((AT!0<WJh`g#si{cGv{Jstm<3H*R%Vn@#ps^4~{@B=VUly6=mTt83R
z7Uh3W;QwAH`abkj|J3!u4+Piwb!h_s*K?wO5b2Mo6@D<d&d2Hme(}qqe+cRS^oH<1
z5`X#~;fI3jy#73aAMl~*A4d9}KM}6yN}cb65_t7rMgMTvQT?U$!aIQL^|6UKig$?T
z`$;{GkFI~mFBY!nf8{S-BwYKe>(Cjrk557ia~6oc&PV0nTp?WjR6DEaxmr2w+)wQ)
zKcz<O_&a(eFHRwUbe~y9^H=RWw^r=v{8jy@NMHHqbbTm)>l(46>y5_k@5D6@f2DP0
z0t}^TzV8nH1jRwST|(=D>U-nFA6>VUFG;X}F~w8={f$Y_iyghrw7>V$_$q&j>?@Bb
zo)gf4GUD3q*)$K;&TnoOfAs!Ld8_5Zb=_(S`-hT#7JS6XqObdc^0CC#{)7ZRErHKX
z;I}96<q3RM0$-QFvk81-0)HiezmveXCh)%}@b44&e-e03=lHm2{C7{_`y}v#6L`l2
zetZHyHG%g?;Kd1iKmxxkfnS}#M<?*VB=E8XK8rXmi=D*&^n7WbnKC|lUiprmA3a0Q
zEBe#(k7iWA3$0V*E*AT`&kVX!^15HFC3~klCgnanzm@ELbxGXb-{|>YyU|jv=fUS`
zz39r%52uU1_W!41$+t!OzwIk|J-^&e<^2Xox$e7vy;t(OZasUo<h8%qRg%|p*NtaO
zzAf52iR`zc@v7?~`g$IGd5q+>zthMbKQF!bQPJ1<_NkJ*`n%^XlGk`VbeZJ!eDVy9
z*9T=%uIJ;TA(Ger9*1+?f#@HL1#?AT&&3Ck{ogN?ay@taXG*-i=O|uJ_mXlw&+c6w
z*Pnlv<n=ssBeh>c_O7S#{gIvr_NMl3I#KNBprZpyB(LX)Z)yBE9vg?p^^d1`K1TC@
z*jb{l{p~^hed2B@*YTZ0^Q8wp?;b+spPei9b^dpw_WIEH>_hV}r17jBDE4$deNWf#
zdGAQMp3{qHe3slP<vM=1-za%K7hU+S<n=s%{40__1c6??M)G<-tZp&Fl^ligb#F?!
zwtrNflpl@qr@xc(BamN3?^je(|DVW+zFzM`$^YkRetoezu3t#~yMXfF(e-*9trsh*
z#Ga0S%TFcW9{zWv_4VKfq+H|kChZ5=8>C$0-TNiU>;2g&k4xT%{S#?@cxi@|>-y4R
ztK{{5YGqyA-bw$G{E@Kt>5G!r^Xt$NlGp2tKmWCouD8}S--l6rZle9H<~p&j>+6ZQ
zzt{Edl3S%**QaC1-ZganPoefN93u5~z5JBoJs8hVbpPB&*He0))YtWM2GxI@+Amua
z_qRn#^7_2v2kP&rx1?OJ2Mogw@!l!%`a25f#h;EAJ$;VUqP^txzDm_uZ!<j~RK3|p
zNPWHEyy#HL>-jQCZvj1jQ@!KKzYFMn&?LQ@j&VO!uQS<u{;;3#FYCR~NWD#s)T?Wx
z-m8t&d!vzh?<VNIK+gp<UMwG>eP;;mv#P(5^pvw)ex}4<_en0-{6R;Fo<2`i&hlfr
zU*>Ynk4Tv3TCTEB!aUM)m9>rRhnEm9wWIPkwEie(xv;;)MbEihuKBwgsdqrJ*lVj5
z6Xd!^+B>X~{q5C5+ST)OLbG1?M$Usn6V?f~dqN}iN*dX2yJMvvx}I`-nm@IX?Vi&}
zz20=b)pl4mqjM^kYkp!Q$L;(^w%cl`#6|a0ZHMJUjcoU(M#g1$BmLX8sB!aeS2|a+
z|C%3hRpa`bbEN3$eyR0Ye%;7<wY`yg?{$@S^?eX-Z%4jB^cq@skEip>j{5W>HB0R2
zIg^TaWDlhC)s6ysF{_d7zR}3}@?0bLg~KkCel)c1lDq$v)i+fCi~RcP*9iO?fnOu=
zYXp9cz^@VbH3Gjz;MWNJ8i8LU@M{Eqjli!F_%#B*M&Q>7{2GD(pGUyHkJ{4v`ac{7
z`+h@n&y?n;Vnz1-cgsI08x-UAefnmm#Gi1j<NCRnPT-a4IPVQUg!HXdYiA4b@!<Ky
zE5K94SAbU%e+;~i{CNeup7=J^Cp$lZN2I@}37Pf3g!DUrw<n$gFCczCcst_5z{e7w
z2%aWh2_6t%1-^m!GvNJ+zYV^fcs=;mn`M0U^SeKRSCk3Y&+Gc;Ikk;Xns`s}{-yDG
zG7`L`T)2LIVJ>)Pa@>9fynyU)0?#M?zk#QTw=o}Buzq@E=P>YSQoP;n-~rhgtop<!
zsXp0X3Z5eUr@^ztKURIR)4~jd_1`D`L%=JDcLUESJ6C|$Q-90BOUTZ>s!zOD^~wI1
z;KiiByLki4`d>%<IPhY!(+|9W^ltzUiQftClbxr*J<{I>o~C)&+Psm~%*!!;mYNm8
zESE0zynVon!S(Y9M}mh7L|?!Ek#gM3x4+B0GDh8BcjaHk`B~sqbUj`Uo*_OCynwE+
zJHcy6zZ$%r_>16K;va&S6aN7`BEFm1VC?w5OY6qI;I9!s96Ta^B6uB*%f;aSG>Myj
z4&Vmx5WFqM>sIi5(ti}Zg7n`5&rrL&nvKu)D@(jHcm?rG!9(Ju%4vSy1D+xN5_p#Q
z_uxeo|6R?3Z2jCu{2=hLw6ApnuOR*2;GKvM0{4iIS36|C0=$^?SAdt3{$t=dr2h(d
zhV-|AXNms=zJ>UnW}~t3*-pFzcn$Fs_y*$VgKr}~47`BGeKL58_+s#4;?>{*@lD|Q
z#J>dhiRYU)?rncV^7ByT6z9(1b#y(R0ltNJf5&sYJ=3!8nPuPoT?_pxYIh3sgDIk~
zpToQjycO)271RA?!1p8j&%%D1?7sv30$QKH22T-hZ59x_&X<7e=cM-sPZK{DybixF
zs_W00;2Cf;9PaOO@Q(1`Y&Y)j2FIIw#kBrZf~SdBgJ-73*S%N3BjR6yXNm7>HY__I
z>WCi>UPA4j0Unb6)!+f?PX*7=x#B+X?Cs*ek2q9=d*5Im#K1oS?yrvPKMS5BUI!jb
z5q*vSKfnu!w=)}rjYB|wb_P$8egK}2IGE|={z}0;;w!+5$xf}>r*^*sFCcz^nUL1c
zV&aA1S;Sw@C%wT_vm_46&j<JZCcGa0U!t7WjY;4kwOa*VL3|T<_EWK+hW$6xK8^dQ
z;KhsLejaZecH=_voCF?`pU;5T6W?Wbu@lie=?d;=q+K6=jsZ^*UjgnBkH7=+e{b`}
z2<yN1h1l0Pp9!8Ne<p#4#2*8%r}^^*cpb%m5A%UJ+isTlpTScU|Fgk;;unJ#Q2a~5
zBl71S@HFw)z)Q%VpTK>x-`+fcu>O~jo%6vfh))8~62Bk3j`-W)DQdTc`C@==HzfUz
z;KigLfEUoZcMEui?5qdRr}Oy>;O&UN4(=2G06bbH^GfIKXW&`lUxBA7{%y?{KWu;N
z=sZ~jUQc`qctrdua1Z@8$1V5wBX~aX<INX@ZMzkSr`ev|Uw?3KuJp@X&hGDG@O<Kz
zfw!ml3<j@T7`HPF+$VqT2G7#<yT$R=UUu3@=f~2o#G`G{4+?}YJW~Apm*XwH^d-Vu
z9xQw}bFgXV?PC7D0^veE?*Q-&>?<#D+^icFgA_S=8u$+v$L;h<(7!lAf0*OurUB;=
zZR95K0}n4#<m7C}+juGBi^1z(jO(v--0Zrwab5#nME{QRvySKO^zSpi0Y3Jt@|Zu{
z68N`{xAra{FXu_Ew2S%RXfv;s$8p}vaTDji$UJ!j=Z!<aAHn%n?HmUljuZWhT1ZJ3
z@PFMXT=mZeFUI#-lwS;fTY7{dC$9uwIW%r(tm8ZTKgDqSoHppt&DAe}wOQbqQ-vQ7
zz5u)~C0x%%cdCB2x6?cj`m4bs@FMUmc)^pRe**Z+;3eRCzWoS14X*b80q#A~-&tsh
z__s1&fZE;5^$Ir0{4q1t{T=VPdEWK9#3uzl6+9sRp5u95>PeYDx}JOk{pi)Wok8Y{
zU%Q)#`me?L>)-+L9_EXSRzDy+4}*uK-_d+=&)FyaI~>pT`r~@h{$`*bY!-hyp}%iC
zp66BJI>KWl?{ml7c>XOCw+Q+_LjN_=Z)?8DxVx9<eL(yW@b`$H1pXoMv%vkQCC+KI
zI}kiX{C)6i9nbahslPXXw<A6Uygl&+u>T_Yvl9Fz;*U7q+<Ot%wZ`pD*zf;Re7=1N
zJ309GA@qK>rTIdojhp_yu#U?fj^}zok14LFMYu2y1Rp~7PjEcPOT8oORSq2L;dpZ|
zvp~jO=k0}#=Xn|Uqw{1m^wYH8m4o}lZwJp3&wyu$KjV0w*M7Z>ueMtU-ihM#ckoRV
z|9^wOPJDMWF>E{|;)gk&>qV_4o<mH1`*)%*`sL(Lq2p#%`>Twj{<{t5K;I`n2ZI+7
zzYhEm;-#>kL*rNh9)2M0nr+Da-2q;|IX<t}fNv-MyyNEl8OgW@p8UN7?tK{NUxBB#
z39o>D3$wu5c-ByS_Hew7mpxYe(Rp>e<2j!Hc6=V52|IqRjJy6rRTnyL?k{M5mcUN>
zF|jiN{!9T6o)9jrd)^)3-e%$dg#JU0n{z4Ie-S()9)Z^r{|?-v`J8)@#3!Wq><9il
z&BFrlD$EC+|6Ray$j$}e+ldbc&nG?wyqxSWbUfEf(Y#vjc#ao-FLB$@Oak{f?D$(`
zyzF_}{%v-=jX5X8=V1i>PUO$m(C<(BEe@8rjV1kdjyLx_x^F!a`uov!bPD*M#Lsu!
ztcQ4Rrg6Ro`p1#}&5q}Ko#=X;4gH*~#6j)c<#=;1pXS3l*oi34FFI~&zfvlJM4Uf>
ze)cnoXQh;S-#|Z&->d8j{+mN=+;YA2W3rBIFlRRVx4+|NA9+UnR6ECjKST4d2;8Ii
z_lNyrio;;=6!DSZ9`OmVpT_UMr<|9bH_!1L?>KsHc{lVolAkr;8;EaoJl89tcHe;h
zt~9=%JD%eOG#~yAJ6^rSzY61$`$w6d?a0o4j+=d%#`kdWY$SGk^!G%^bG-i4?pfgN
z>G|`ej^}wVP=CjPSJ8OQ2CsmhJLae3xn2py=OO5SMD|~FJjZJee-H-meaG8);VIHD
z-H*O^+?-cSWxvpN^A5FfGjaYx=J^~L`lI7!|NThpv`2hSa@_1M<bN;d`{e({-~sXB
z;A4s34Bn1-h2wc%1;uj-coFf{;6sRS05@;oxgKd8-gZ34OVhZ21O4_iuW}BPxcM|6
z_Hx|Jw|B~%ecfjdb3D)MNOn$zow3yJ*^Zn2n#S=m*!MASb$oAxzIUp$tGvQ-vtQpY
z<L+Y|*FxW?^T4y<#l*L$ed1q$r-(N<6J~d>jh9b+FYp55hdbWf8$$E*RLAqY&J?!+
z;3YJ^LmkiY4xw?G0R89aI+_c<h34}z$4&f~BA%@zaMjTFHk1o6Tc7=V0X$9qYz2?V
z{`ZcX_nT<k^A4AF>=p9!502-0*{{W)Yzt|(19$=5A9V)ziC+Nwo5}t#@H*l*!A_Re
z&s!XC?iJ8}y43MDUfnU`r_TS!!6V}DI-chhP~7UFUr+kGbddPu(|q_H__O5y5#TLJ
z|1|J=8kgRVoAVM~cUM9`i~CtKeD3cCa1Z-t0r(8ZbIo~P;^2ed3H=EBK8^$4L*Oa$
zvku&+_<R7qh4^>i#l&|xLgLn+`0v3hDGnXL>qx(|<K{d=^WiM${|oVNiT+*y{d`)_
zuY`U**&hqOjrdf@&2vZ^mqpMoq`0ki-1tfHf7<cpUW(@J7U*aHGR1kGJykmJIrNK3
z|0l=uye!7O2>s3NC~@}4pM90TQ0_Eyux@k!kDe3W68rC|;IGnrE_U3!KSKTt1`mjj
z2M>wQ0<R#x%<){$|3v0(3jKNrJoTk;J$G$%+{A&#>pk#@_>bTj;=7sW=<fO0o3c-7
zy9a?sZ^ZeDj^}#qX<nTL{gCWjrgn&54;~Po0q$>!x4Xn~v%eoE^ThKdKpDsLyzO)y
zJqf;n`ui&Em(YH<4f^d!|DWI~;=BGy=378~fAC7;e*zE5&#vHE;sN+J;x{|q#*3!P
ze5k-YS>U*NeoNzWAGk;7mZ#JXUDvOIr-^^;c%D~F*Tr|>b>wHxQ4*gG#P@YP*UO>(
z@sHs8{zVS@bqshX(m%y<6Ng774*A&d&UM_>epSxZy3St-{qV;4^>w3iIv33b&k$b$
zUPAm)@HFu{@CxFefCt2XbljXbz7RjhVqMzBY;g8m=gk&g48D)!dEU!3F2{ktLA)pU
zo5U{x-$Hy8_*=xw!QUnxg1<w29r(M%Yr)?q{*mK3-Vi#c{ph$E_cDn?fO+zpqiuY0
zJpFfxb^aU%uKymf@*a-od1;!TLmW4s_n`G*GI$a3d5-6LLuh_3fxf@yTIXSV__;|r
zy}z&>JS2Y5F}7dLy@+@($IW_3?OqD~lIhZJKH41x9*{qa9dF~MkCu3<{yOM;U%?LM
z+dJSDWdAGhH1QV4TK{vs`ntINJsr>UuAp&0)N!*(-!1L>@c$g>2ha!hu7LeC-S>@!
zoz(KUol59$*ew3&e7Fnx!Lqpi<Ir!nDXza+^&b*_9p7)kL*ng@lX3Ld#r01Ck4XPg
z)hAvC9*~{;z(eAj)qZun-LD<b^(tPCkIPTs9-T8=nKv};`qLlpM{C@6cig;xH%sj6
z{5i<+Jg<z#_h`p+z0BM3c29%-VtW2r1pVx5as57yn|ZQI+SPe-HF%cBaT<6?d<A%#
z_*0IX`v~%LGk6{G_rN3KUpj8?XX$?Gd&kY^U?+<I8qZzK`&agQ&)ymD*J0q{^TKt$
z+4sBL^+oOW1NZ2<7z&<G{3h7Xej@fuaDmN)ewyNcFL(vDyAIrYJw9F=z%yhga@>q#
zX*>>JDSt<J5&X$NQR0(B`hRdd&nw1#qCSTyaJ-E-gyz-B(0_vFXOZJ(+{w>D;92VL
z7})XYxmGFk>u8;s;dqW$LHpWm(BDG(%b{OR`VWG4BL1}F=03Ws#J>P>`)wzQTR`jK
z@!%o7KYl-Wny%|_z)Ogq_-C1iKCP4Gj+^(_NPiP}1@S#j5<erF|5e~&oy-U0hWk79
zWYPEOIw}QkPkaM-0rA~BTRVB)RGJUPjvN2)kam5vTLSKH60UJx1D>INy#t;lzRM}-
z?+bA|MULlrbIG3)=ogTkwBzPJ{UjOpcJOmL^aG09a_|(bds)ZL=LG2beGT>lvj4v0
zX7zeAe%}5XJd6363xD#={k`2s(q!j%j+=81?O!K5Zmvh#r+R{Ch+hCZ{#z1HT{p%$
zp65-Wc$PVC-iO8ahICzBpmyep9o^UNb=-X3gYJ(WgMP)lxPG1E=A1^)^S463p7gha
zNAHTAV#ICN(`25ciTmIM^W*Iv2ObhH0<R-}k=j`hw^O2=;xHLJAbzXbC%zior~W>p
z_KCj*o+ADwcro!7DTz-&yd8K6@gu?0#Jhlp#QTA#wn}`4c=9*QaWg+@d~bk$C)%ef
zz&Ft6VU~kusoh7wGsIs4uOq${JR<&2@D%ye_H>Ec3*^tij+=gc9N$MyhW<v<F9!E%
zUJVA%Cq5qBBR<P<^Bj!gxfJ@r28q93r#0Xyva<=inD|F(hxiZRCB%2_g6od>f#4Oy
zPXNynKNCDdJOGb~k8wQL+eYVsDbUZS>-2VTkN6t!db0l<xKH};fTxJpgBKIur7NyG
z;`@MC5I+h$O}r4ig!lmP6s;#Cz(dlX1YS(~x2itz40r|c=fKm%-vuur{tbABcut{>
zkD1SOKlMAu%{ia+JAy~VyMWgd?+@<L^*$UtpZFxl^Sq~NA6x+a=jpm$>9{#h&XIK>
z)68>!PeDJZjPDn(I&Pl-({soV9nbUH(K-2R=%?uU<bPnlg6!va!}Un~K=2ac$AE{#
zyE>ldeM)gS$8mEWxUJOnQ_po5J8te<>Aq<wcm?sXj+^t?6p34jgw31ixEc4)ByMT&
zxzI16`;^<EpIRaMKJ*`jet4SL*YjQ-ctCtBc$)YR;3?v5x+Bi3<L&MP?$hV?k8s?a
z>+oEzKm0rq`T^M~0?#Kq102usqB|u1=5d7k8|rwjm!&x02wq9^Z7S>+ko{Z1Q^fCc
z+&ovDUgp}%O0(WN$IX2HRJiu*S;w1u^)#>EbUe?i$2{K^c0PrjI`aPq$IbHrihoWI
zSvNw`-wV8g`g@e)<~a;K4=D!ssK1vvp67i|^Z#1MO&sVsc`107=JR~;RC$@}sm}Ae
z!NVECHJ%TH2Q%aRMaRu^Lb~sM&++D-w<JCfo0)^XTUY5mr7d^?@qHaP@gX~>fP44G
z?Oy~tb>z=Aj^}yHDQ@GTACdla*bi&PzOE-3<#hkJ1@=EC`=2>(?mK9neDApVTq1p+
zH@Byak6C}{b18pt+<e}K^pAzUPx?jBZ$Y1T8sND3+!W2vs~k6<ccRbD-URy|`9B->
z{io!54{^OL2T#qN<VgD*DR@}<^P-=H{wt1~>v5sPIUoE}@QC=2;Q4g@wmn1EJ&*W7
z;6Cva95<hz{7C$1kNvS5^b1ITfaB(Rr#N2?o+h3KkBH9!4~gFm9uR-n@jP!U&8rt3
zH|y<6@!w1*_xAyK_F3UI;QvtlO5x^hW%t+mOqp-qV!5tsb`idx<0d{Q$T(KC5Pmdx
z`aQAJ4sq+Q`ZtSyK`YU}Q28^Wzf!PQ0v^l~?t@Qu+<e}E;=c$yd`jj?d+5Ii?i2qJ
zJRp8lFPSG1@hiZKson9aPoD={1D>Yma_>8CCjD#DFMS{LYsd4v5a0W#fd9?Uvi{_G
z`E<VeJ@_Xy?ngLoKJQI_p5}P2S5EuOncxAP)B3}HMEl(k@Dh3+JJ#_WuQS#YOcQT1
zcn-K(@!j8C$IUo?D&w_de*xcCDjds$_o(CMdCNALhav2|svMuM(0RTMb|Q-Ze!Z~{
z(7CHO_*iQ9a`5fMuU9*h;(ksCuP6OG!PCSa1g{{z5xkuE`{0$t{{bEn&*>xmts=fZ
zcn$Gmz%#^qfM<zc1RheHXMk@Y{UzW&#lKGNlO3-Z*CWm6y};|peh2U^#7}eFoPX|-
z`BRLE)f>E?-mec-pZG}dI^vU5f4<l^Z}qspd5-6KpV4)?%5n2tl>B@e`t9j@e;Irm
z+4<OU)34K|T_4xQcE@wPN_rn*x3g_L&AEd3LEu%yPjuY8pGfDQa~(J5fr@Kgi}`5x
z8t@Y0Q^3>2mw<=F9|f-<{yKPu_*agb^^?}CoO5h{+jt(mPj{f>=6;RroDBW3^nU2M
z;6sRC171SB%<(+$E*h`Jj+=20uXPdg5w{J{=l8)sf_|3f|Bv7q;(MGc*Gro0UjiNw
zUkUEh^XD$-!OlH#Kkszhd>)>j^M3;F(>!d`SL}H7K1;FVdEN|)&wR(t{lY6UpLJek
zz<v6>!85R*T^#rGZ_tm(&MxO$e{#*|h~oD51^0<}a@@=l^1r|1dEP|we+2C0lbxBc
z6TK#WrZDb@^b>#DZxVlWzZ>VcnJ2f$`}L&bdEPW?x3#%}wf!og>-3M{S@LJ3<L0`c
z@ydc{kB-MDXMl{OPwy)o4DQjoU8tPKWsuq-{n_B*lhWVzh)>3G^SudrUiu=qPxmPw
zz)nPd{>$+^Z#~7W?FACI6xrzjUQ9gYc%JtZ+3D}N881A?E`a}w!TpWWFXdYuH=paK
zIREiN>rb9Hlk5+5+^qAYzuNI!ua3s|ZO6@hG0of77s)uLh#v<Y5FhAxo;Qp9nc;Y@
zx1BzxR0aJC(tls=zZ{?c9WIvsPAC1*j+=OrKl7kJoAlps+<d=}=KsH7r<mSX?Q)64
zAs}AvxVaziEc3q|#&Hq!{fFc8bDi=R<Kz1tc=T*szxAck-*WQ*OvlaVJZZjN0{tgR
z{~GXnh~Ef)FY$8l`-m@ayp30LM11{O=D1mn-iY6)tb=~ek#YU!z_%5|`P<+TJs<cx
zxR;8@`9F@Ec3+RTyL%vU`z!f>u;b=?G35V|;044xfp;R_6}&(3-ryy~2Y_$u81L`p
z-~|+);ozN!j{{E;p9Ee^d=_|r;<tjA5MKsfMSL}QhWI1k5%Fii^Zyj@?@Qo5@wdTK
z#6JNqB3=*f9Tm6#BX|MvT?X3u(8lXTJRdwod|&V);)j9<#E%9aLcBBhSmHgvGsMpZ
z-$48#aF4E+E5UP!j|9&r{ul7=#HXko>=$~jn4@-x-vQo^c$MSk{o<G6<MJr<)AYW^
zM(}dtZ-7@2{}#NGc#F$qd_&@Uf>#kg1Uy6hc<>tHUBR=&`+{#EemQs@@loJgh))LJ
zMtlKyJ@Mt>+lg0$d$j&M2cARxHSl)C>%o2E{{e4Le4ooD{wd;zgBKA$0lb)a5AcBa
z`QSr{4+bAg{Ce;-@hRZt#4Eu=;#J^P#2*FE60Zf{K>Ty?I^zEX-$Fchki>Hv@qNMT
ziT??FJMmM%J=%B90?#3SA$UIVVc_kE{{`G9J{7z@@k;Ol;#J_Ch_3@r5q}Q6nE0FE
zV~N*;r-?ToEO9O;?t@nlKMlN+crkbt@k_xo#7BVF5Kn_=iO&Y#Kztc^9r3l`TZlgi
z9ua>Pyq@?6;M<A+9o(aR|6kzw#B;BZIJYCdFSt*<BY1n_e+CbT7l98U-Vb~%@gd-8
z;^V=~iBAKsAbtmUCGq>gL*h?^*AU+Vo+bVz_y*#wuatP!5kCZc3-P1Dw-G-Tyq<V5
z_;%tKfqQfw8wQ?3{6_G0#BTv_Py8<M0^+N|I}v{ryg%`c-~sVB!G{pv23|t^C-AYv
zcON40PZK`^yqx%{;1$Hr0k0%J3_K)$Gk6v8ncx}Xw}ICXzYjcz&Y4;8eB!Tww<rE7
zcro!G!21)=9g4USKL|V|el&O$@zcO-h@TCfB|Zpz3-Qt55%Edj+lbEtuP0swzMXgt
zxKHQpP2lZ`zXx7G{44NI#9Lk^@k|l_EqD>}gTaf59|zu_cvtX%_<7(%hz|xYAwCLx
zEb$58Y2p>&<;3p<uOz+-JS6@ocop#%!863)1+O9g1$dVDzrpK>x4BxzB_h5*cs=p<
z;2zyio$h$9mwl<svwt}*^}Ms8KbFq_L%}2BH-T5s`EWXTCGo}J8R8kWPy9*nB049$
z3f`aiN8kbRpTLI@-*=eAvxN9j;34rs@FLp327wpTdN>I@OZ*P-4a7Hq*Af2|d<${!
z8q5dcdxLKyeiV2;@h;%oiC+NTj@F-R!F}R0!App*1urMQ5xj!<Ti}(%zXh)&-gdae
zp&iZtgTO0@p9a2x_yF)N#78@x>(#szzh0(5zY|?w^TAWZmw^`%e*nCg_*3BhiPwP#
z#6NI6*Q+8wzlFX}`mIMu+}acWJ$M1}qZ~J%QziRdpda;-_;kX0(ogw0aXt*(?;Gb6
zz=QsAzCihfaeklL=@#efRsZ5Re@%H1=bwXzm&f@}YX8bO|80rHEgTx>?UfIT^UmPW
zusA;(+%JjqE5L)1aejl^9~<YhRDVpIFH?SfoIk8~h;LSXis#4R5$SIS_sO5#%-aq2
zxoANAAn=IziQxXYxSze$4)KBDA@S=}zbJ0Uer??P6Oq1s8`^Szd|ba;?GU$LqqF)U
z@ekBK@o&}s4RQNzMj}4M4*-wOjO!l@9+G~M>Jzs=C+_^DaU7-k#HWJ$-Q(@v2_6uy
zR{O+XRQtp~RQo;R_J2_O#CID7|A`+A9ufaDxKHEWN9_<Ftagaspmuu3{hSRR5WidP
z6MtOo6Mt3hpAonJx!NcGAGJ?>uh9~pi1-oUKFy!g!2{y`z(eBKsGVMMKTFjP@kMHf
z_-gQo__J#NthoJm)IRaA)jsjoV-N@8`-A(v<MxjQ4~X{!4~bu@_KA;C`?TLpSNp`5
zsD0w=)J}2S&rNEF_{VC8_&>oT;=j30;^UtkxBo}*fcVMaA@Q@pBjQ)8ecIpuqV|c;
zRr|#6Q9I|x{amkhh`+9Oi2n^dBHrwJ#NoWS{k_2h;zxpq#Jhq=#0RJyI?s$yJH#ie
z9pblv`{&2~T%-1hKd<(Qzo+(z|3mHfi`#EAR^k&7{{whP{CMz)_?h5-|G52uYKQps
zYKQntwKE`YXDN6<{9(0E{3W$d{1df*LEQfTQv1YrA1Cn%i5~_Y5kCdozc6n9T(v`d
zsM;ZZv)Z{RZf8DtK>R+nPy9)>Py9`_Pv_*ns~zGk#!DO`;=c#?FNynk6nH?q8+b_k
zLbXr)TD5;^-2N1`Py7zGPy7M3Pkf`=r~85r)DH3Q)DH2y8?ep{jQe>YctHF_@R0af
z;1Ti5)&6C1`{UF;@mXr0_;R&R{86<}_dzeKed3>~9pe91J9HoP+Z(aY5I-C|B7PdU
zKRDjszG{c~)!-rV32LACLbZQI-2VM)pZL>ipZHs9pZHg5=gPSKUH*dgg!sPT5%HtJ
z{ULEXJ-`Fv7pr~Zqtrg}scL^{-2R<vpLn&}A^xJ;xhihwL$yQv2k?;iZZ~0_A$~Bp
ze|6mcpTPs-eZWKFgVjFq8`S==xc%8`pZMKspZMcy=bE^kSJe*j&(#j`|A0rt_qrMD
z%<#DVBftaVr-O&Y`+-NquTlFW;`U3`KJi6rpZIFEPyAW6QxdoTj@lvqwb~)xI*mA7
z8@IDRctHGE@Q`><@QC=OYM-9Nj8Qwpr>h;}OVrM&xS#951LB+1KJky$KJkC5{n2sz
zznLKM35fp@JS2Xy<2hco*<{cDW%qW%J6rkIQU`)&!mos#i0u3Y+^6SJbHPL6_oyA>
z>($P6@qWDy9uWVV+9%#@BGwb)dxQJe$L$~KxcMIIZIfI_ufiK7r-OUTgue^k7d#v+
zykkp=&rtB_&%$qSA^b1k*}qCWXEYN&TX{>-Pc;|596V?zJOqCPJiT4)Y=E7YRR3_%
z{}%dNl^-g68~8uL!x>`d0BP21YqIuxI_b5-&jUXgJR;r+yndqS?+X31z_ZJRcLBc)
z++QlZGx+u3!|;8*R^Zk>>rZy7=(hu30zR7bA5#7OrN2+0zb}IOpNk!he+2Gr5?&Ac
z-+_m>3oiiAHD+CWCX4;s;piX0{Tae@T1$oFlrI!J9bl&?cs5`3uY#YKfCpcT{xXd3
zC~&W}=y!*HIe6+P(bs=}?GDwSDO|^QEqHpM*zsG6L(hXpLxmTDzYCtS0W^Q_i@NtU
zc<_SoE#R%pGUC4Hh41rffA<CV@jDC}&jRrD(_*IzcDkwlr@}`g4i|u@s9z&ge}(Al
ze47NGeO$Qo&hr+52V`fJ@_C|v2>f|k?d&BMZbAIFsQ!<l{~G-KJ9sK9d;#n<H_MKj
z&#QzNf$t3-t`|NHyd!uT*Qw6`)4{#BM87%OJs;d(9k*|fJ+|GTjriXm{-@Q>zQSw3
z=Yxk7hkL=_rR#1z_*UYtIllA13;8+pBeMTfg8rUUFt6~vY#o;lj_+(g1^s$_uTa;e
z^TB<Z55v^{R}we9?k0jq)NZBYJGZ+E`dRutglE7#S|{HIFQmBDgXfcet8yEMo!i~d
zar3=<YWEm$pX?NY2WzCiy3SvcV1Kmg)9=_!1CQ|Us_%h$8z$I!2>O17w5#J-3*L+3
z@DX?c`M(|fJkoDFRpv>G^bc`-=eV5&{bJHDPSC#s`d+#Cuh-*^3Ho!O?~{HNc#8NF
zYQIeEYdl{APdAtAv^}oVzk&xx2@hIe0L%hnuXms9{Lb;6<IoZMA&qaB1pWTdPu(wm
z7NObU;1SuGlwjvp=m!-4jB<+4a|w3dg?@OK_@n2FZxZx#rb~QEsNDk`-#I?VK|f9U
zXMlSfq}?py5P<u1ez*?2g6zxykI4VK9N*cW8t8{)XLEx7R_J^9{f!6V=a1m&jpF}v
z;Q2EoJ^@{)hk|Em-RKOSt`<81?3|-^=o~l%Jf!(^6Sz<3%z5A!(e-|><2%PEtM<wN
zH`M-O@$&@u`2~1};@Nzr#34=du$|*OxBDmPhooPqc50;Ev1s=K@YDmsbsa8AuwMrK
zEZM(3L4PguBhudho}%^P{RBJTLO)CK$-PD56O#Wvc!b|U?STHC0A5FSdZ|9~%N*Z1
z&SO=d=G!gc9^Ef2OR)0@^nKE=OVIxm`YF=?7r3`h#&H<>yT>fdpXY=>0^S}xp!lB(
zo~8S;^Bmtf4p%`xqIsT9&|d(3@4@(dTM0ghuCJ#O>}*jxrDA7S^y|w6{gxG2PbhBt
zIKFeg3ZS1)_PeVcT30Uu_ep<bg8g#nr^%ni3HlGJ{n^rAJ-57&pdUd$pg4aIo~Ci%
zb+(Pq&T%-%ar3(w<Y%V@{oc?I$j?Cu`s1NrKyj-`&|d-lknBH}p#KW=Bl3Tna<cOi
zc#8blbI#Alr-S3>oHHjrE~y0l^PwLs6@5J?3<D2oTqY*isf4~aP3-77a22>u{Fwwh
zZ$m#I|LehTr0cQO+@FubevX^p#iDkP0iQ&6ioj<Oza+u_Xy}LJ=d=X<5c&c6^H73*
zE%b|N+&@at->&vazwNxAkIx~Fo99~O&q)dT#n3My`&T6B->CLUe-3z-)`6-7J5NAA
zBtKtE(EqF2Cw*`J&&T0+j+^ylX?*^7OwjKF{R-+={{;QvYM=BcfzPA)c58y24D=)F
z*K-N_@2Wn{&u_pp<WG)yAmg6H5I+FCj`(rl5%Dt|-+A2*pzlqOuMgKH=+A(DJ=wo2
zLB9t2KH1-#pubi1=ZZhNfBgvV(etSMg%TfclIZLHeyHO+_qQ|jQ{>M%3Hn2zACNyc
zf#*}Z^T2PX`E#$@p?0(2KG}H#JWK2R7vKe?-@H=d5Yc(89e9fL|K#}2@hOCUn*6*#
z?brv`<}Yxm=anSbDT97Ual2jZuNFJKVP`G)GK$*<@M7}+eei&uSAPp0QQUGD{ro!P
zJ8sq)>hB2&`n{l^CH>35SCao@6YSgq{fO)=0}rUbk0jWsgMJC=e+us5IolqH^S_kS
zbJ{&_mHCr?SjNS?z3cwkgNGF7Q&peZJr6uMSf2BIgy%n3fk)qpef>S{G`L64lNYER
zy53i+9hz59DPJn~^}MtNyn_7v68u3Lua>vrI->sW1D>Y)rULNC$WC`~pWa`%2s|Wz
zMuKNIi2qr{zg+n-63>w>q+l_4+86!|;`|_ZK<&N&9?|_s1n%Sh^a8Z|J$Ojh`>wZ3
ze0-We2Z5)EcLMh?ug1cDZ?*Fe>90P=9t0kAlzw^W?|ASG#jQf^%o96@!2SyG>{G(4
zz#mh6dOzhA@PPc^rgo^^pTHwp$M(Df@uBOkgX24|w<+k?k^S?*gLlRM9K3Hb3_N^a
zxDP%N+{1Gly|1qXPd_R8#%=evO6`0md_3$tqjtU&UJ3p-ctFpi>cRbGqTd<zTP?<Q
zME%+iyq@?m-~rhw0)K|CuS>wQc`{E1Vg8Q>56R9n<>Y?|o@yJn^ALDMc51;rypN#g
zjgP?diEjt5CI8#rDe-xY_#xmv**VGaJZ}m8zSG%`o8O70-_^ewJfh#1TdewbUh786
z$9Qda-26V+tLBX@^Oq0)33!@#>(Kh&#>@U$^xHxIK*!DRlHDTq)y~P_?IsG(fqq}d
zbG?A<4~Kp|*(rCtjh8t(?&qzr6TKVvr$%`syuBxXuYwm-yI+Bq5dX~*+h6nVLv0c}
z>VHS@9O6A4H<Oa$JO(^Xyb3%Z{x*0>y!BnyAM@{X*)If{Kke6v;2!;M+u4pAuOF4`
zH0^46-qqk~;uBye`;pim0{z>-Bl=zU4dAJd<N6<|9pe9TJlFHyi;ve{OQl~v_4icp
zeCk(!)u(wr*6}=V5?wD9(66I;b)VzrdsrvM{rL#`A^py0hh^et9r<$xctrdv@Ot9Y
zz*F?QqtAn9i8ou0_z*uvc};vi40XJXS8$B<ORvXL$Md{Oiq8_qbG>5whPe4t{pY{~
z;@ec8=Kt?jV1AOHBfvfSUD*YW=Xw3<-=%%bakDOw{RnpQ$xiFL5g+1zay-vlME&gt
z{Va`d6?g&JdCBoyuZaBlH}u2TCH^TFJ<mI&O8kk){&2_hyj#hixsIFP6Rs<B7Bv3%
zz)syXv9J75=$DZGE8r>Oe+Mrno^ucUB>Vd~Zhqg4^p6Hl6Yl~Z5Wf&SpZG}d0^((k
zn}64U{Hb*Ozs^z35a%lBd-U({J_7q0vR@1ReA0g(`dQNd7WzKvx4PHHEzc{WdAqOU
z&AkHBKN9)_Y1~h7-29H~hcfQ%(XTTd&+(e!oS^+31pCpP_<R@(UQc|6<9S||+FcBO
z3-M3E=MdlPKA9&TUDw?m&-3P!{uR&<X}z5YUO{{@c$WAh;2Gj?fCqGawOT3Tk|uwA
z$8$Z8uHVk!+iE5LIf(y-;Pu4EJKo0gP8NMV|IBeb&s#z5u7G|%t;02ro8O_mSH{st
zyYIqIK=bMw=%?x5Q`qx<8JCdw$>1LS-fw@$^SsB&&#RyxyeR$@z@G~6^z8V23&EpJ
zas7<iq2Ghu?6`?r=Xl&cQGK$r+bZc-1+}}s<9Xf#<o{vd8Ty^`;~a0}RU954-xT!M
zlASZ5ACmrs;N`?eIBw42G>-GZLyE(Ls=p*Y?k|H!w2y!3xS6+ai2u6&w_a`Ilj~()
zkMsQ<Z|<eZekXA6eQCEp#`k>3&F?L9zn~vd{BL&L{QFSU?kwnM$^I(vfOxIie=qLO
z=c-Ts?~=hhe?;_koje>oAl}Py^ZU=_=OwCtS3Lfu;F;Tm>vcUBJX{smUkV=4_&x>h
zlRsM>H{<n*j8`$@{}1pjv@W$?WBZ%udHDB4@}b|(@#bFesQ9CC__O0}yezFtJ)obW
z{*G|m{CkVk?l|a26#vEGKG}H|+#~*1$J=<7G_QUHuOgnmR_1f?zQjl4{|Cp-?;+6o
zc|7!^PengKd`^RYL~%F^`V}-E2CJQ|VkZSVqrgMbuTXvBcY|k$KMkIx`<*(+&A%T<
zer^R1h<^t=A=zp1fW*zGxa|R+B7PvaN4&uC=3aK|wJriBh{NgNA<c(N!HXw~zV4eP
z-~sUo;Qfiu0Z+drc8bvM1K?lWEW9Q7Gme|z^QSn!>$v&%farSp0(K($cjW&Kp86!-
z-?k6hc$(kSp!o0WxH+fM^>R3PJ@FI3^J(4g?zlOR(LQyN<L17e_TN(Qi1@wAX&rb`
zIjui`1NTWkuiEz4oI@UyIOuxP5qt=Z*D2s7#CwB}C4MP*ns^C#Iq?bL6~yO&2ei*V
z;JDczH_P>_^YCfM^SnBW^A^X=@4D0a^BMHV(z)w@K|e$KxerO)Qg6rSZAZt=ztchU
zvlsL$sb3d^hs1}2R}sG%JVU$!JfiDpEqFa$M^A%i>AL>Nar5sN(0u+L`Zd&U>va-`
z4aD1lXNeyU{w?`)5_lcyp9vljzX*H_@oT^{bZ)r`Jf!hj0=|vxtW|xwUS0*ylKriY
z|8KJHJbtSA|NHo9RedZIX;E>K$UYH8ma&wgGAfjHQmBv-QAA@aB!)<~Od>mDiBd9I
zl6`z-O$^yeF?Lz6^EuDQ>$-09y5^7X@AkX*^gQqLKKq%8==|W$&%egrJSe&SXVV2b
z&n$P|Irh5Xad%(ZjeP2A?dN&UhX=<V-H*BD9))L|kDw<!R6R+0&cieHe{m!Fgz^6d
z!IhSuB2VKpV~>8%@BaS6eX-XCp*s&Rz?05jrKiMu?*#oH#~%H6gx&e`yV#@m%<g>E
zexdfm%6&Q>ZTx*=ZytQ;=J`bOxw*CZ$+1VruUqczcr$mNS%BZ~{0+RV^Dpqs2bxb?
z-#_q*yDo3`toD<%yZ_lW_UO68-9I0R7naqY&u_tlhiljOL%i(v=k>8i`?H&e=8H6*
zf_skJ1utEt^_swT>=%3VUhAXU^&N@#bn|mb?9uhey~mhAzOTzagr}V^!&A;z(Vuqx
zKj8uIoi=9t8!gs;RlQpCX5Jz8=)X(yVeNYLioGs)+8w{g;?FogkN)tX+U;@&o^t*I
zUUApK@A1r%+U>sma~v1WPceV4Hh)X((R)|7y&lKY&fma;k89`QYx=`dZT~h)G@cW3
za=WkVjt_O-4?ooTN%$_#&&B_C*O#mD@cG*DEW!V9`4yIT^H%q~#^1~>w-esjc@I2O
zs$K5cc*5nc#0xI}0=}`!e;9l8p4Oc=e!$Ca|J=Bw@n_sT^v2t|{^RkA%ioN*a`}g>
z-|bi5;sw{U-BOJwbUpjx9h|4}j5{u-T8}%w&5u1gPThXHl6=8!-_9>+JOwxYES_@j
z0gAEL1@ql;{TlhMZu}K|JLkW}9*xtTZ#R39`Ek!Ld&OQCJmr=<n0)Y;_P1)oApVSw
zJ?eMo!>jSG&L6<D&R>i@`km^tm&d)6RUiC9KI8IjUefrJ?tHr|9==$6Tnvak`uBOd
z{dO$*l<T>Ie8z3xd+@yLS&mO|<NO96<-Fm`_2ZB3ubg+nhdMt5ue$LJ$183;ms#HV
z+}NY{Jns9}PstZt{!cvR_Ma`6Y5ZxI?;d;fp73tXf5>(`j(q6W>s<1cQtkG7ntZ{n
z?+4^FZhNgKpL64B`HIGwb-s7(4TG%f>5u1}pMs~{dEiDo@ACJ@9=(Tg_cJe9kGnst
z#va`lx%F+oyng)6gN(aR>mGab9@6EH!82}sC*Vbwzbp3WV0P!dSMcuce6k8pI{%se
z&|R;ay;?v1=)T(BHy(_KOKZ3LxY%0+B{$C7$fw+Li}-%dm*G8~e`5V^euCFD&i*dn
z8t?0T7d-9!V0?)4p|MBX(d`f8$cOHDEW{rDKExd_OUM`A*Sw`TzE<EBw|_Q&UF%hF
z`{y>XN9RL#TzALwZn=Z$DY^d1<kRlC<CfT)2c!61O*6*12oH9e5{vnp^pxEF#@g5$
z21Pgi;0>);$(?6*h&{S*aqD#;UUGhn^|<~s$<K20FqM49T{oX2pL6~HGk5FtEuMDy
zjo#FHW!!V<F0n`F2RF|L;ThL+JYI0)AB&e=ekz`Iem7opJqu!wj%)XP_cmT~&k_IP
zfjjSYd5iti<@@6qcYe4658d~YPv9ljzaFo;aW;Ote!0=_bKLX$ws^`Nr+eci=ZD80
z9jESmGCcO^I_TDGDm~x2<=%-`oj-+lb;ry5^rzfBv?#OxxZ`xM*rV%(+kXb(3Fl|w
z1?N}eDd+d&Rp%u<aP#vC9y<RK&$^yX->F}(=)H~eF6Mk+GnDhpKCw3s+PZlgh9{g~
zNKeuA-xhnc9o>9>YQE;2c!~G3++WSze{a3-|Jcvn{+Ts*{deN2wYB|E#oj#l!|f-_
zV~_5`-T1%6bIyZzwg2bbeMKugbn~-c?9ulK?z}Vx58ZRk&Ga;LJ@YNkf48?Q^Y#Y$
zq|2|tQ*NC9&=a`xcB>WIPp)$3t1fun%|q|lqw|=%j+~7rT>lij;PMOb&~4uzVs8<Y
z+;SVfr~M)4?z;|(J^CKX-T$0QzTomR@sji9^rYPJwU&I~?oS%Luki%#e9{eHHd*^&
z1GZP+*z1A??m6*z@}avw85ettAaLt-8=i3fqPe@D{0a|UzUc?r?m6e%#~wZJxbf^y
zKI!_0;DOs-S$ZnpY90#A!&E%1%0Fa+X5+!X@?s<X1M}(6x#hl(=iT-9``DWYL0<Pu
z-?H2$A8LIwtK~_&L+s6h%uGE;+wrw$?9n{9{qwlkqwAo%uAM`^;`Xb%V*h`?mt(QP
z)AVHBar!1+;Cq3d`~zR&8RviD73Z6ORKLE_JnXOaZA;INu}ACWo-dAy{r?~5D0*`4
z`-sVS!TC(Q<ouD?qyJ8dJI{QCXWjPw6;C^F`LWh3<<5KEVvl~u?(zf3_jLKucwgsJ
zW3LOIb;s#k`ctm|C3^C1JAQ!|oChm4{-X1(V~?)a?t7ws=I(dDlklYThw+~7d&Bo*
zkFH1VzxTb@C-vj03ue0YJvsL1I)0~)$B_MJTI|vHX#3XgSEbln1Vi0&f299**WY%P
z=Am+ndJ?=JI|$EAlBZbi7(C^!<F~~gt(UuhSQUF+kaXWWZ~Up&cZ3^HkJy_BeO>>E
z*c%4Vy7T!>_#)>o(|?NV|AqeGdaak8m%4mbKc473zoyoYi9I^c94xo<)l@t@q}CVU
z88`k<@v8g#8XHwK4|lq8?ihRYy9?JpAol1v@f|HU5$JO^o^^gLo_GEzUUdE%o^ie!
z&pH1WFS*}^w*I_+y`ueLcI|$9SnSdByUP#57dSsN_PXFaH$RuspSVr^n+N*L!i(3)
zH^U#pljOI+m*HvWtMIJzU+}#1x-Yc8DVDn_{oCR%x&5;b{<8Biu}6RJz|Hf;vDXE6
zxOupXo>WEan_;=1&{K7Pe<xh6aaKO7&7X+poZl9E^!)C6R^fp=@3r|-`}0k1oP%PI
zo;O|o#@HJMJulOEnlb*j@s#t8zpC$#o(KO|yZ?8Iy)L-aE%(6Kqy5nRj`S=%<9s&#
zMR)#uGWO`-*YUv>@d*E5hg%+dUGRuo?kD(M=YP|`-0kNrzt(mM|EGCKF%LcP%!_in
zFB*dvoZpF8-d5i3Ti&()a;<Ol4f})hOzhG9*sYhxBeC<|c)Z~J8hXNaYWrWt3vN7(
zq7!fY9;5q|xZm!J+T-C~wSGYCbwS$w9_i@Vqwi<GQ$E{36L%*0th??^B47HXwtsf)
z(R+3Gz4m-O=ll(PsXKmG<H7x!hfu=_8m`eiC*1G$+u@<}B%XAB7@l%|lJz{P<#uJc
zcjA?&YW)*)m+!Ea{m}h=y5Z(e)b<q2UH_MO!TAo~vA?;VGx3b`C-8zB=l7O(zUMmi
zXWVkLc)|70$D6tH%p0+{2m*JWSxx>0x846FUv}s1&DLu?i(P()*rW5R%l9T<n67!Y
z>-&j#-uZa^IoCfOU*i1U*rWRjcYM7`K6Jkq`Wb)T_0)Y|zh2S(r|a1z_UOI08|R^T
z$@vNRD4y$^u-~4Cf6H<k<JaPE;0^J6tly1uF&?<>yCU{xK{I}@)r_9?u}AMc+;-XI
z2liXeZz=M7;AOX7hsPfMZp!tHu^yMd46i!BE%xa97dOw(;3?-T=qY`!{bv;8T!*K=
zsP)Fx`t@oSY|P)QvU%Pi_U1w0`umVixcq4HIhVgG_Gl})^Hl+_{7>Vt`Fs@*-TCu}
z*z1Ce-1W5akJ=BzX*!=5S>Fz^Hw%jHcXZwHz-{;bc!vC@^o+Fri`Cy3pM>X}--K73
zKa8g?sqJ|QFF5}M4<^^<f59`(H~xv^(fM|GSpP4Mjy^X2{qUUgA$Z04nRx2b+MX-$
zg7Z7@;Ii8MQ+USt8+gh2mw0%2ZO`9$&Uve!H4hc%yWpuSYI_dF3(il#gDY$E=fxiV
ze$U+>PKv!QxX<mM*Wg)q-*N{%>G#y1V81HjDd%tDna`E)N`4hyaQ-76I&bhx{ruDg
zquhA5h&_5Q<ko8^yySe}*qa9__xA$&(f_EMhoR&v?s;}J{Ta8u)9~ePx%2R{^A}>T
z3m$XJT^W1yp4|O?<lpeByDlVtt)HKULHWjW;u*H>vJ;+pL>@B#Lt<|h1n&1gXU860
zN8Ee1Yv{@Sp`I)kuzO;!3l_WaFD9QUDsS8UTlzC@9{#~A?(gkx`CI*ZMbAyncaOa;
zIMprpF!BZWoN@v_%lY`&qxV$qd4D!uaQ78&&~v}*`Hp<bT?ZTeuKjkL8)rLwq4T|C
zZxMX>wvLx*3&o$)@R0j|+rBgLg!9*8kKWThTD#ph{X_GabooPLkM^HimAC%$Vvqjb
zR!ZZs=bZvQWjD?hc;Nb5Y^Yyu^n0@t^&A>-!S00zAL@B6;5le)?9u-3#xpzi==gm?
z<GCuj)YpIBi@h$Wy7_GMXZ>=U2ib15^SNW}(fqjgei`x;T>dihIX9or#2#&>#TtJu
z9!(Hbt)KftyFY37SN(Vz1|yvx9D8)X<mPz{`Kp_T8L>yt^)EA@n`^<(;=x^4#*jNu
z{zdH3efw(7Ly~c}_*?T6@H}hVJ&7lrA02yL@S~gONwG)Ux1E-|uA>(4AU!F!ULVFD
zy{~3Gc7AB^kH%Bry`}k1u}9DK?!W6X#5~YE*n8lMWB>oZkC=!5<i@`u_Go{bTYJ20
z^l$xm>Vics-#PZ^_hxRr29p2T<<GbLHJblC^IwR)VUTwBnG0f%=Ept9tt6j%pmv;%
z{?ojbdZ^!y({1pA^ZjG53v%u~!@$_1^Q}9-orb5}crK+s*t>SQx8N0bU;Sk44THDb
zbI|K}%H2QzgIApI5uGUNuM0^xo+Dz9{{ExOpN|J_-sa&smwzkv=y>c|yI#NG;UsyA
z?YMb^`td~X+ub~OHFxu~A0D{=L3rqV6rOTE6))^lJI=fCoEy&~JaGOI9y<RWPdVSR
zq1HF!d`~>(*7r!f<ox{DqxY+BJKh$1bbfZ*<xP4**Yh1c1+F``|8JnD;CgmyR6qWP
zLFo2}V`7iqGr0cC@SO7p@Qm|!W3LM)x%0pp%X5F8X8&o}So2wO-ahu|-#dMmt}i{w
zcgHi%2jB(gr{NXnldZo{+ds?toj-2<&R?^B_kMM?`8@UaW&D5R;care9&OpAejcK~
zkLLP!!^1hX<2(${IM3jz`)Zdv5idBu5fARK%|B#$*Z&fpapPYVdvsHBn~q1j&-smf
z#r15~RO?%CJzepN^Mmm4W{uOXkH?wcT{}PL;u)8}7B4uz7q2*9Vm)qtKEO-Pt9bZ8
z?R+-hNb8$(zAavH-V0AXSlcrMFE~F74<4$`Pr)<J@3Q`)@^(Bfu)LekckqJCuf>DM
zYkL|+|Ki8`>q2;w_J<Ppw;f_{76hLwzdgPe9$qI8IbH_hB{%-lE&s6cc6{aVoby{_
zkH+J^e}4=QoWF`!-1TKu>~+DF?)>%(ev9*MnllgXdy_q4kG|)cR{Px18!tK^8hc%E
zy6Ybudvrg{zqhj$^EQc|oO>>tNxp4P^Je$wkC9Kh-><$Dd-EW4?+sRvujFgTzZNe$
z4_avd58u#oD~z*c?9u(F`~7WCJaoUe84-JQ|LMN3KbL&fE%$1?;GV}H#S?yg@xb}V
zc<8(ud$S<CRO=P(+3{!NI<0TQ`3`tn=Y3+2{ywbhKLJlW9~XP{J(~O7%jM)VE`Mw6
z&4R9Oxet-gy8Kf5OaJKjZ5DmCQvZ3Mo^|X$8;OIT$=~nZZv-3H&qIq~mh(;Vg7c2C
z*98x|{X7|a^!$5}#uKvKKCw3ol5V|Dpl7!0IV1My{>r__o?-5emq+Ni!1cV0PjJ4H
zp3r@N+I*Axd5GRKxZ^s+OU`@59!<LYKH_llRhJ(gd-NQ7G|$Bx*je)dwLaPWs9L|y
zd|0jDi3e|MKaU;<;?JX&?_HaJ&V2t`f5ZHsT3=~i{~zwG|1{SBS&Ikd+U5R*=iT=O
zb(?CQQ||p$H@xzy&R2HdH3CmuTYDb65D%Q+fG3^bkB82mkG(D!?e>#*$Y)-w9Z%EE
zH2%<eFFft~2jMB_qw$K{PcFqXE<Y>w=smL==OfnhxW;MsU2E{H>uHqG_)E?^;yLF%
z@Urux@Pb?JbiCs7_u+v%ewX4^mtTn|T>e))<=%^SX~}kR`2+EcJKoR23vRhr;d$qC
zV~?H(-SNJVe9`4s#2%dw-F?L`vDXD-+;-e}^ZM~e=ZEP!jzS$?!49$41!4Ir2^X;a
z$*2D2xZ}O|k$A!Nj5T-1<CS=Ye}A<-#})9<JvS|iJ$f(gj^EGmf;%qSZBf5ob-@{K
zeRqpJy1#ly`)!K#9Yp?YmmfvG<d%CK`Ey-<F8Q?E9~O~6-{s%N$2<Ruo}7En*|C-O
zx2*G{V~^fvuGDof!FpXyzTomp@x1d5vDXFb+<11`QuDdqc?SQ^`OMg(d3M*+C3x1&
z&quL04@z#oT}%Iku0Lq4@l15yHumVgcMDxFa_pab#vc8>2KOHC(Ab*?X?NdvLhRA~
zfIHqNo4fttVfvHqI9(QdU2v8g=PL3km;Vi~xN+9CsbAmd_m=Lx(Dr!F`Tls`c?Qoo
zpM;m3&%m?Ji+I}kt9ZfrH?c?a`Js-xzU-e3+G>B!xc9y7@vQT`VvpWOb*tUakFuVZ
zYOhDv;1%aD(vx>RpOMeG<!-=3_j~VTJI3#P3|?@{or@=L*EsFH+;e!s`3HE~`Hy(z
z#oG1VZ7YqZ%I{jOzb~F~zX!V<FS`6}Jnxpf0M9!AU+i_kC2l`oOFrSgpKa1!<9yNm
z&L_mnZalqWZx%G>`GUhbIEH-a=J~qV>w?K{JP*(l(8KL&@KWs2`)zmr`6%`l!By^f
z{2tFcZ`7fFy`tYYy6+J>#NHy9;PTyKkKWI(tUWG9o4e!X9(q#WX#XF@akP+p#`XLd
zd$XYAuFD&BtRH9eyzJI@``DxB)_Zk*Pto5y_UQP%L*oqb;dsvZ#dyK_t+7YPuUqcJ
zu}A+t3O7G*&=Y>9<z`s!x3NdxXSsRaXlu>?Shw9f#ojFVgYC}kOt3#*aq}|_58QjF
z@v%q$9&C60x;FN@;2gKyd+@CDh4kmHuf6YDLx185t*?!<{WdyY+B)xphtAK7y)G!a
z<<1~qao_VUi9LF6;O74eysz^nVf}cb-?uy8CiZC5?{I&}0oE<{X#a7~9sTjN^V9Ky
zdoG)0J<gZK9_>HB>bU62#H}G;a_if+Q~mg(_v$5$a~Atmx7efiEp9vmVy_EQZht$?
z^4pAy8^V?<x(u(l_e=BX8R@pmTd_y?C+@w+8a(H`$+p_h?{YmIV~@^PF25%}!FfM=
z@@~COBtOdKFNi&wANM}(Iy~+CUiu4eoX_Ha;5^m`U(nOnT`wAU*81M#dbW!_`g>~b
z_Z5Tjtn<t8l=G+Que^MfHX!@$+SsH2o|^lfeVgqxo?qN}2E`uTe@^6mMN{?%JUC6i
z2MG3&KS|GTu4i@Z(Z9#o{hnmgF7?Ze?(>}=5_@!2<hp71|Knqi&bRJ+`FmrJp8G!4
zc;+0g@w`h<VY$vfUBy9@=!Ja!d#bMPJkulg=zSEwN8+#xPRFZmoHyftIDd)$;1`z5
z1^zcY^;@lX-9ht^cH41i?9u#><^I2kR$!|6TD*<?8G6Dmb>6V|Ki`lqom<<}rfdCj
zqj~G0dCTplp1!e1`=RTZ7<*mtyW74G&{KI>{rB@8^|RQU2PL<?w%k$kUuvN9Opzb9
z_Qi9FTE8gvXuo|%{Woo*aXt}y^u4_6UlV)u_tD(=JM2`y-01r|et#0GCO9(oW<lvQ
zoj;?)HvU|S=T^)2!=I!lbUk0=Dd+8W)^an>`{Oz1lVgv5|KR?9)6CfGg3I0fKSKUP
zcl~;Y{(}2m!FoL9zV~Udi^f@U`5o|_%lE@W=cDk7>$w^aT)v2BoWFzTTu(Ljy5M3r
z4|TiNk3TwI+<i`0Jmb7Ko^yT*UT{7cFFC&huQ*?b2kyS;eLQsjGoEsu*sXrOS_Gkc
zzTQ3dy5LMV4~LSky7wpJ@#XG(b$9I1-;Z$bPgc<XgX?d+d;NGC2F?8WGxoaRdzYUa
zdvrhJ&TotGyz?LE`PKDwNNTxReqU$b%N&9S`H>va`ag%`W%qnHJo3$h=wMEy;$RPs
z>q&U3rJU1kFdI+f?NuK<k7r$e1)jq>JqK&?0?uhHXxL5TDdL;azZG6`{d?kNypH^#
zcm*GZAC0FrPsL(>I$m&oAs%d@d>?vlz|;5%_#C{5N00OI=W)E;Di#0#(PL)(S&CP;
zl#dk$@8Fr%wf=?m;5mAJ!P9M(pM*ExL-Sc~C+D^$XpdKL+m5^9!B)z52=qzeA>Ixj
zjHg`wG(3avLjFQLk8g`l!%KK){0_W|b9)s$f+yRj;$$!K&*NGA47`k2oUg{y9n@p_
z4R{IP+vammj+d>K-xqI(r?!!g#dpMup?v>9p9AnJeguAm^>k8x5Izzw;Ai7g@Wi&t
zpTlxz;Q7w->E!Rm!|mjEkbed*b&*FutByafm~SsXoBStuva9@j?(2TSi#y4mja!1C
zVRy}2c4v9?I2?c4;rU(U%f-RocxG4mY<wUd>?VI7AB9)&HH_zSyxdLs=&!rRpILZm
z5BZ7YpTNVt<iqh7@q7>YfpJUpdu;2+dvSn$jVBIJKDzyjKR@HC1LaqXgQk0NoH}oZ
zXHv@F!+3Va6Nkw6qGx|Rjn82`1M%Q+<rgrX<MGlF@{{Pv;$eUJ5d2C!hj+wp#tZn?
z_`TMT|BNp&ACQV=IQ}M{94NQ@&u{R|k@BXDziD(})?dG}X?b7frwd*hBwrlp(-Y4P
zmPeZ-{`9l_5IG#2hnMk_>7RuskFCuw#8dbL)d%ldzsvt@{rHyTH;yjE_3Kr|)A%-c
zYN(cbS#%3u|4HKI;i>rlZ`wHiKf%Fx<y84AjQ=RSI7&WA@nATf94*(=Q1stV$4j_f
zudl+(_@<3iGz+hssh-jFKZvK#lAnezwtoCF{A0_HRsIXc{~Mk<M{ei0jeBw&;oq|%
zJK&{rmEV@0-SO&pc{luEJUKz$3O^c8Unrl&jnV1WGg;n|d6<YNE|-5o&veUQDIZ18
z96U2k{t@F}h^MB@52NQbJb%6X-awy~me0#moCnt7xta1`$+y@?^On0s-kkAoh39XR
zpH6-kJh)wcK7N4p;I`kU@iKlk`H^_)4)yGZPp}?*Q+yhp$L;)c8(zc<%-d6VdbawX
z#NWab1^Hb3Tf8(!{xse&y3p4jkGZ+>T{*rw;>G*qXW>2Z@L{>_4@cpt$K)aNJO<A^
zAwLA4V*T^wThL#?%M0c0*&i0-)kU@bKRmHSek=KP)?bp_{?oXZ);F_M-jU^Yz;iFx
z=DXv`W%8TI_s7ex)#gvNp4a7fkiP^E%kmlcb$DroJQL{iu;t&Aw_$rN##8Uh2b2E@
zFW|NvzsJiTE5C+(5WVQA-|nTA@_XrTjb~TMPb9w!UdE^5`{9{Sm7k0c#4Gqkc*gRd
z)#k@p9>1IXRd~Ll{KNR2c<OWcHTV;F8PDS{;F&L!w{fn(EBF-hU*p-;%Fo09#=|e=
zkKir$*L;?78-FJ}_m%PoG0%Hi{%iST^z^a(H}VeThvJ2A<#WlOfv4BVufr$d6?`Io
zBc55S{BiU@h?l;T_aMI%57x<VC;t{+STBEt{3<;Ay}X21@#GKk4S2%?G;hhO{4x5s
z#w$O{ZN0kT*`MV1(bF3bf0j3HqCXgF{eQ?a4dvtT{Gak+_;kGbxBR8%%Fo72O%IA8
zx=hEP$MK+<+>XZ=@eJNa@!);Dh_A!H!3)jRW7n7e@G5=+`Bn#N-qJ0UxBeaQ0)8Rm
z?1hILD_@{zFkZs#I)0}0Y^MAw@{{pgLjDUr$GoN7o_7}F>CNS~9Y4k^c#)nT@cb6a
z+dMQ*X?-hrblV(%LOk43`I+?e#7lVeS|<J+iC0@IzX^UC9<-I8LeGVG7C#EV2`}Ss
z;g8^jcIpZ7xA78w9?Sh6PqkORA>K4PQPiKG(;ei|ZV-RA#`7KJQ@D=w#KUdnZ#GhX
z2wv?XxBJGicx4Cq0QUcD@Z?VN=rvvZxd+eeEWb${yn+Y2$allPvmX3ve4~T4UM0L!
zQ~kj<cy$l;oXPn2$1{7&J2p`MSUlH5KAoP?c;W#0JeGSgUcv|Ac|1H&d7I}4@Jy<<
zXBnP2NWL%g|0SO8EpOjI3ut_Z);HTneihyc5BkcZ*Y)vdUp(1QK8JB0g;((1$dAMm
zM<}1b$Kzpt`IY!oyf{EUj{aNl<Un~}{60K~pNucSEBF!gzivHg^|WTc`WR0Sk{^Ko
zi06mMXVBm9P|aKNX!#lVmUscT`<yO#d6@FwZ=`=<U%WJ2eryBz06ZKaKMOw{&ySRU
zz;e&Wv!}|R!l&ZN)8uv^G7B%^{pf!ZPmChZe!dbfoFQ*c{y)5UrhE?jTbJINpUgS(
zYsnvpSI5c6GtZae+41uEjQ?&tdA__e{fn*tLiy!fPv5Zq$?_@me}?BSlOJ8D1#G}8
z)8((T+}3?G{^E7=7WD6mmuAQ}(7&JgO!=G!D(a7CXUXk;;8Z-kRX&8}PQi2dh4kEt
z2e&K#ANdE(?~qT$OL!jt7%$`5JC(nh{x7WOF8ONK>o2@IM;^U4i9c-*WB;EkFVWu(
zuj1F^1M%EF%72ZI#IyIxm*SV=sd@6}@VoHfK6#;m{$L?qxL-bx@xOzoACjNI{`>`A
zd{jP%{y*@{WAa`N^ari_YJCeu`F`~8gjb%B55`k?YQFphmU}FoSSY`e<z}rP&o<B>
zTxt15%D;}^iB}fOujaUT49_l=-^z9873*0pA4&cLJokqDzXn?Fx8`rjr{RBEPg#B~
z>$OQg=I34cr>s|dJhwu=l;!S*r$3T+<@h?p@}J6IrssIee<p9!K!0!^o~_8gCqE6(
zd|vBwt>+8*;p7+M1^guXU&VtjmA{|${TMHPBR`d%^?3NL+>W~zhiiU<HS%-0Z|{WX
zev<cZprT%Q`Dgi4_%V3?SNRH-I}XqOCMO<TYW?_d^0V+N{s;c3`S0raoT69p$_Dv*
z@?YTPKWqIDy!4mc=3(>bLR^2}Som9R$Mr6F<{$a7^bf#G&d<QZf0b{-aW@H11_#Ft
zL+P20=bhh)S8;nkR>U(6)Uy%Wy@Y2Q%k4T_#*<Ctb6M^>yn_D^Zy0Up`29vx<!$_1
z;^k)Yk2qd-#*3TC&!MLup4?RaAwB|6Y$hMvK!1?KvkCd5_^o)jxx6#$`vjieQvNOd
zui~lJ@(TX7^|X<%pl722?EmfMwp}{o8GJ-T743tUJ1Ret{=s-^Yq>p_osC!V4Cj;U
z@$`1e@67r>faki%qtjaaS%R0hmv7GaKeYZG<u{W51<&s+Z-*xaYJH2l$lK#dyu7R2
z=3xMy+)chqLyaecXOi-k`1yEl54qh(O~Zq|<aQr57cb!pn9s%5v$ygmGR`ty=^_86
zq5gp{&G(h}p=Sf0>?L1<w>eVtP{r-K-wm(qr~KRG55bH3%TL3H;^6`EGx4+VJl>P-
zH5o4-r2Kj0ugB8|%O~LXSsp(fUxcR)QT|K(Jv@1+{1N7DEnev@e~kP;c)pMPLOhYy
z{3H&OUygUd3%K>~ho}1~{~`Iq@Z{n0F%9(x$5~H*d33uTf6m0K1LU96GYPK@l)s5j
z!;44CFTrQy$+SF&KVf;?#`!v)KT7$#$$y5Y2FV}5f5xl0J%6=0O7oT<th_x3b;Pqn
z<c~H~Q8zq1R(=5e$KV;f3-dGH`iCn23Hh6?f0*3fcRhxeaeJTnHl99C`PTG*Z#~D$
zkLNt!YLM2ee6sup@_XZ@;qu1#5tctiegxw@4G%}ihv66FIeaudH{#Wi%G-OY2k`u<
z^1sQyY<{}j_UBc2VpOefu)Oou(S@o0I+z%({CkYE8(zijKBqTc9;3WHUkt-DXUNZ`
zXDnX9?fb_|@Wfc<Un75m<?(6wy?FL)<?Z?FS@W!X5%co~o*XB?u%U`R!Heg~o0DIM
zm&VKYW4V9f!TIv&b|U_?9HMzkUm#DC5Ahs61@DF@CMe$@KM>F0P4Oe~ES|zg;6;2S
z;~9sC7pngj@>B2<Zr`)qjHfPAejfQp@hWcT;iY(HlJe#&@Uru7t^eZM{J(h7dCQ|U
zpW!97`EBt$ejwxQj+gPS%tIeM$f+mYQ2)S*c=|HA?Vo2_5B?K97n@(9{4w-gk0+<f
zZ9Mbvtn+8_B7Ok<Z{gLe)Uyu%3a?xv|DE;SU_MQLH#<u6V>EC18|A!K3EJTW{4jcU
z#;bT&`~W<hp`H`*fp`wL^Y$>jgx^H|bUbsDdZNd%_%i`7-Yj2+Pq+SC<d1Xza2KAs
zU2fkC6!9{?6+N%u)jO28`-+e7?49yc80UJtg4=cZZ#;RI@-}Z9AFFxJIq!g%@iXY(
z4Nn!+bA3bo!9kY4TRxrqF?eRKd}G#Y6rR0DZuj96@d}<Ge+^!}S9v>+-GwLT$!}n}
zPvT|VzL!~s7w%Ku&JQ2q>HFma8>;Ag%ReX|&vyI^4<D5?%%J5^&1Vwt!+1hGhxg<k
z*c&fBrXJgG``}f4Ecv7H%;U=2bLAMkjNARgg?RD_<*#A<*W;!6^7;5Zcy6J5YnxBJ
zfZO@uCA{MNeLQ?tJ^J4uSdV9M+m4NgY2J#?L%fRb$as=?xJb=*{z>7P#qv!W>K_<{
zXP3wq&~qA|d|v()^L(N8FO^TF=PJDTqTKEiX5p!q<aV8U6tCcy(f=HtU8el~jAsQN
zz9JvU{ae-YuggCn-~2euTlx)omHrNR>Mi*#Y~P*m$~*G+$oIla@5=3dIE`mk$nAV}
z8eYZ!*H8nx94~*Md|Spj!}9nr@{i-`kCnIcMhUOrNyb^m6Q3x5JpG^JS^NO{f53~M
z($72u$7|kFU&xoz(*{qhmOn|)_IUX#dGtCr{&dH~Z{*j~(+4l&pOQZw&#zH_4f)Y{
zZmqn8UxcT=llP|QD(hJ%k8XqG&rH0!UOtANC-BVo@-4}~isyci--&;Khd+|1XAPdh
zyEN1v{DEhGR{n3i`3aim>~HcB^t8b%_%q~p#tR#iUrj!R=l_&%!8p@+@h|z=cm@yu
zkw3}}#CW{i?2x$Gp6{kuPjmT`EcXsP+d@8#{vsZ1EI+Z4{(+@<W;6Lg^t^BV_-FKd
zh38u;e?>$60~_$Lm3$yQb<vBI`sbRg^KI}FZoePc9Zzhjo*Npe=s>*KR<8dIg8q2W
zPO>NC8G)zT%k8;f0-nXkGtQgvD*hE-#48=tGn;vM4bN>YxBKvQ)`K6&c!HBO56Mo-
z??6vmJhQFb&a1ufL}$6ZHyDOj@lWX)i<i47pJn`);;HTBcD=p>&*Ju+{wQ8``Q>=H
zgL?YXzs7p-NATY)-&Ogsc+-<L4|)7p-cPo{tGg<1*TF7$kd%MH`tE7@Zt{chL-5p|
za=YFghnI1?A2<(BbXVT?lPj#p`E7XC`BQkoc?mD$H*$R}ThBgP?&ZwSS9q|m{7(FD
z>&NHfbs5cPx|i}Nw9p@HjTd{%?S6Q7JnSRSF>eRqg~Q}Ku-^{C%l&G5M&YT$<qxu6
z7vj}{@}Kal%?HaT(mxB&9wVQ`dOc)$`~%i&30@wqyuHtP9Z#Mj@4<R~X8j}NcArqi
z6C>q&vD}8knNR#rd~@?tmG8*-x5u-m%kB8x8xKdxqt~AC=P=8UmfP>jhT)kp^6gme
zSUit!iC>8qU49N;arx)*;0*QKak0Ysaa-=UcnJ>~f0I)*Kb14p(~<GC#DlZsqw#Kd
z7VnK8gO~8R_yo(3RnO=6Y&>(ed@%dfGuCsi{4DbC<H_^nn=t<G@YHym{C{}bocv}Z
zw7!}1mG45n1D?n2{I(+=T%i0;^z_7&6Xen3Sp4a4Jrm_4*{_CM&m{S^tnb;D&&kt`
z)H4OITrRi!<T-fhO8Eth|8YDuMgB59FXD-7<aQnZ7|%HW5idG#7QGOwzwQUq)N?88
zyEUG_R=%F`?1|^5%k6s9-+Hc-|3?0F^XuiE=%0uu^YYc?uf@X~<c-MRW%(QB50jsd
zSMd4x%Xndi@^<`wfah<L+jIST>%Uq4Tx%8mi&r0#A5MSkQ#Eg?hiknDp2zJtIufto
zw!O~8laHv!o?EBmS=^4(xz>Z*c%HVNN7b{E{qr?E@wogT#=i>B;IA{!KU&X|%I`pa
zqtiIP@T=I*JK@!5lz+65{(=4R!Xo)TjOPTr@|?UaJ_!#>@-0~IEqI83&N!dM6E7&=
z0$*YI7v&G*zvAVW<j>H*`RQ7({L6Bi|E_o$@41owfqn4Ao66hwv%~PzTXOsRbZ6q#
z6>@tYcmbY#PtGudDb|CR`Gc8w;sfPJF#ad-9B$9=Z{wK{mAC8fXLt!;z;^t}dR8fa
z8{4JPD9uk;k=y%+c6bTjlW`{T;0xvVWt<1#DSR3}1TQ-ugJ)K&$MTosRs3jrZpPDJ
zD*qDWnTLm8%k6&h8SBS;(DOQ8!1uvF!7I3(_kOURZ`5!1Cyk>os_M_H1w6XVjz1mo
zV2$#v@V)SGt=zuP>W`Q34CBdI{yXLGpeJkjb@IQ-UuM2uzKZ+#oAAQV@)O9<!-HSs
z?ePV8h=0Ix-?sd3%AbdSh39^ke@D;1c=iu@NAhjQa6E31zfZm!p8Zq4RU`eup_czg
zz8QWDUI-42gG1P#&%%R7^8U@#b19y#laFAzH{m7xYy1JcxUuqfo?l}9o5+tO|F-qx
z(a#U!&$oDCQ{_{P|4+QqQr?-K=4WVr5}V6gZ=yfg3Quk$kES>N?1mRY`TclrJiV>l
zo;Qc$IeaejHrD#PD1Rp7xx)JKv+>*T#P-VD@1l!%-uW`i@1T5<o(f*V@5X<{vt5;c
z58v!e%};tqd7ky%5wGkde;z*sFYF?>?`@C9bGyo?(0@9f*i9b&zwu|1<#(4qjNgDK
zyUCZ+b2lFBA^!_6n(rwegD=IixZOv+g%`RjZ}*L>@Nh4=o%g=SGk8Dxo1CS2E4q9K
zyo%fR4*TG#z16S(4T8h*JU*5Ec@!S*tK?zqSC`}2{p9zOpKbY+{7>>vn;#+{%=q8N
zbNC$ctMOzX<&Po%H=f7mHPs)qj=m77KX0c7C~xcA70=_7>DeDo3{?IK{207|+kM4Y
zyn>(0eli))q}4N*^YiuAe~kPR`U`j-zZPGNhsP>!?|I(D%lOqS_cJ^*OnLjAUKOw4
z(QRS;X&k)>t)HLt@ygF(xoz>_1o=n!j(7#P<8E)faFX(N-RWmNC(G?RdlH_*|L=U_
zCEU)#7vqVHdhTUB*I6Eao%NcJ=TA|7CB6*Lj+A#{|NIayoGyQx{xy~#CBF*~vYNNV
zX!!=bmH8NYSnf`E<qWy4@1b~jX00EMXK;IubP`_1e`2}g%+FGf-49=d=f}!F;5fP+
z&z{3_8D|kMj*~x1|Lb_>T=~WL*LVfDdES7R#w$PG=I0!a$Mfa(dxJgAC&(WpKNzp#
zC*c?1>50m>W&AVn?1ggM{~xj*+>W~!EPs*m_P+N+>z^c_z;f5)W&9|-!8ol~@?z!f
zy4emd;FeF~!6nMu?@|uObND^<kFfs9%72Pa!V@{U_1}(XoiD`8`0w<*ZGNeGW;35(
zTF>RR{l8ltxBG{UqZ43!zP&<u^Uin?zlP=Zu>6(E|AP-OpHjQrk$3_BnEXX}ZmROO
z9cSQ~tK_ynJcw8DrSvSpi&rbZRb&0Z3cNgB{wwpd&is1$>m8JD5Zy4x&kGOB7m{y<
zXC9T??+222u_)i4<Mc4R`h<K0;~Zu^PuBX`co{#Qp3Cs$)5?EB&y9HE8TkYFT)c!&
zp=UmxepdNg@Hg@5V)={sSJv~qd}I7yyu4JtE%VcMyyh)<QT_|Qm-)+bJARMEbGZG!
z{Zu@&O!>!HuZ!`-D{?!}+=7?z1IRyy2g{W=e-%&RAG2N+JbYbwdoQ#B&*Jtw;l%k`
z-{M=f`5p1#ZF$Ib>R>$lpZp}oc?_PzhvK8~3O)y)i09u`PXp%pI=rw#zK;8-dn~_F
ze)?uAdIk@^lP{y^HN3n|eiXh6Pkt}YG*(Z83p5Y;pX57|Z;zLLmQP|H_Qq4c%k8=H
zFg*N2ejMvN6wl#yK0gBwHYl(E4T2n=#z)d~J6^)u;LqR{d_Mj$UieeZcE9=;9{eS@
z`}qzNG!H4~J@6cU5d8!3vh!2%@Ne}WLVgOK#cjRr#4EU+XBOe<f7H{E?Xnur{42Nh
zZ7@;e5C4<fdUeG!xZR%|WcfgMdX_)I^7wU({{p;<+xLdkt*3!{>^WjCp2G*xvjnf;
zc3gj8Jq^`k{yUz*7cmcQE@XWhE8m0u9(V?~=j9=I1z%3jIe4+DdbY!_viwGJ&1w+b
zgD0EGZG9KxdAu*<dCz)qd;h!+Pd8W3yX2c)r1eU+klX!d7rcOXVVu43a$W5>GkCbM
z-1h&8c+U9^cm+R#@jQqpH&M?$_)C_@KVUp7@zQ3>ABO*gCtAw$c#BC|-@@kd;q>o-
zC$^9e!1u>9_~ZCcJZ!~s@iXu&Zu`|GcoDbf_nYuwOZ7ZS&m(vVxBI1K=B<^t<LEQ%
zX(PA&^DjJw|4o0}i!~3aw#s*BetP1$cC|hfFKt!3+;Mo&zSgg`e&_S7AHSdRyo4t^
zsK@s6^>`k)>s@e(#$UycrKdHX?x>z&_)d5cUxxR?b6YDv3eQ--^9%6IHnr=U#|yYU
zPtC*Aq4M@T_%fcy`!fGu<CRXz+xKWc<JE2D^<Vwfe_Bsw9y-f66$hR0U^{th?pu<0
zxV@a3AcZG!o6iAw9zTu#<E?*(+Me_A1pW~DYw!|26Tbt`bX89ad_JDVo8T|tIeaB6
z@IId3Nj;a4{|Zm+T<gDB9=G=`jdL6qyC`q(Gh5+R=iA|hU2F4u;pyFKy$>GjF1P*g
zSiJ0fl=UZT^B3aTZnb_bp4y|<XXA-IYyEM&;`}AN*u6IY0iN5d*1yBkd)NAZc-W)X
zx44x3*7**2sb_6|KRmxrtsjMF_O12P@MN!ApM(ed)%uNi+4=o=VgK6v^LX|E`Nr&T
z@8CJyj<0oi9=G3h{DW8VXX!~?ruiuzsQv~N?TnXFa&FIqo_GasN6!&>aFFsLegYoi
zt?)DP6y6%2jA!uPP4ovd@M0hJ?@9h%yoz_npTU!dDR1+z98crhk^czK;hpgx@gjZz
z^V8^Z_N%_?-<tfEc%q-&zSr)8r;m_#BHs(oIX@CF;@@*#JryquR8L!a#^WXDQ}GJk
zhVkEt2Wj=}NY4X!61V<Ecp8sh*TkPU@$ymX;qfk5g;#LC9uL;xRovclHoAiO9HgFZ
z^tZy3L*$q8yw(LT9g8zR2jl7E<ck>4AUrW#-h}lXfrq#qUs*hf+xMH7TR*-%J$XEb
z+x}L-3%LDW;!(WpdKTfqDH`XA^uLB@a2w}GcoyH1{5N>s`3Ag*+i_QSrRKkk+xoW0
ztN7LQ?}Fz>Xq-3W`{UtA`EK}NJdKC=C_IbXee9)p5#N@49<Si`95KiGPt|f4k)Mwz
zPLtQ+uizn`#y`NbxV``U4lm=j9sj|D)75XkXV_wj<}-!canu>l;9Xg6H$0DDiXVuF
zqttK99gL^(gUO$Q7w~5IIJ}74_PrJ_;|cNwyyAR5Ud3%cUxp_}Yn*mI{18v#ThYG`
zPvdr7_!H0KY72txrfNP*xZQW{kEg~cc@_Ob@G@@s^YHW;%G>kHjd&in{DXMnOywug
zU$Q)Y6aFclJWKfx@jtC+tlawBT&4BO<8~h2125sv(Q^czJ6k>NI8UB}7qYeecjMtX
za@#*Ecm}uc7q*MO_^W@<T*i-Nxu@abIQ7{5<YjmjUq${7>p53>yFY&c&z&b9!uY?&
zE92#J=n1Z2e$JOK#M|QO3*<JRd*Ee!68Xa|KS6nWPdf?^Cd&JgzrymkJ>T7h7xAIw
z7vPBtYsa$!&*S!7_B~#9`DW9!zUhn9W8Zg#cnP=l-3L!iQvL?Ulg2B!t?y_&f3fn5
z$>;F&CAH(9jhFGs<e#<tWaY=>D=d%Od$x6WCa3&i<P+CweT%ql_g(SKrM2VfhgWc0
z-w}B3GUaW1U2b{Yw$~gyb-D6SF`i|3aE097ldQo@xb<%|UE>e0RNneK<2l^&DZJwH
z$K$Cfwd214FW`25xB)NYwm&?Gr>CmtTGneRUcoK@F`l`qHvc1D#qE9LCf8|wvsWuW
zo&Fv0;2ODY$Aj@AULb!wo}Q+>&CdkO<2Ii&@Wi#s+xQ>D^SJGwuUdY(@^*e(i|6ob
z7*F%-wO)zql(+r)SUitg&s;pXUimCNzu{SYK7LsAVzB<an#|YspMe+g8RVzq=^K={
z_5BJj<90spbpzwSQF$BZEqD&M^ZAc>8Q+WZaNUjc+@zjpH;6x-@xsk=JAV7%Rou4M
zDR_Ej?f5Uo%eWoCGx6*#%G>_%gynJTe*;g>Qr@=LH+T`B$b1GfnEzXA$I~7!;uFYs
zxBP9j<4NOr+{QBouj017rsCP#)iZ_uyYb+T+VPk09DW!1Pw?>0+VTI17w{bU);DQ=
z!`Zd@eeeQq*X85z^j)>%nTVJ1Y4p#;GX>>se|yUE_{-$WcwtU$fBTym=iPGKA4cLO
z+>WoO@Z?<O?LMU8O!Wl!$j7qWHh31l7vBjF?^XT`{2)A!?}Z<OmvQUA08h<R&sy>`
z@#KBA<9P@#;5MEmc>4a@{JVGwxBS<5_JP{`Uw8$#{HC{Pe)110Z`*5EJa|a{DC0jI
zFXFboC*$G6%3J?9yo_6ZDxP|zHh&vl#qD@siKib`-ky)Pnx*mQa67(k!-L0^x8t|%
zt>p0n=drVA%frW&AHaKqm*&c|Ps*)-)IIVlZqL6h?xp`J<!$_5;uYM^4~yq1pPH}y
zMa=UncnNQVuf{8Qk@5eI=bur}@#LG|$2f6&zUzP|7AW76d=gLM_MV|Xp2zL|{At#Y
ze@f3eczL1v(~NTx9xjqUMt+Lr@u_$o&n#BH34S}Cbv_TzIWOXQJi2X*KMV12iTbx>
zyT5~{O11tYo_Rq&hMrCC*F2YBlplk4!;>$|kHY)m`DOBb@r?DnQtOlP#H;d?$lr)(
zU#s<ptmk!ko_Tu_&%7bOmGylW58jp+@U?j19r+HtXZzdwSIF(}skM7R^ALV0f0}Xb
zidR08KaL-S7gov-Xrh6pEnkuEho5ZyU(1)UUgIo}+xysSE&r|Z(Pbk3%*IP=YW+z(
z^PT+Djg)^GPyH<K*hK!m<^Pax%lxdy^MA>I#{V(@Padi!*z7^gTM@V8t^=M3`oziK
z$nS05K)!_a>W7yb%I*H=6g=HX-k$Ay9-eI?f0O>{c&e#<B|Z-iH<FLQU&Qmc-4A?f
z`DV&DWt_o7THj=I`5b&}ywXD62JeFh8_Qp1xg+s1Zs*TS@$@FjKgRmbwVs506Z)UW
z6D{RG(EqOGH<#bYcKih|Y$+c}Ps@k3UWqpHUmB}uFY^xa|L7lJ-ccSs3dEn`=3C2)
z<j3PB{7PQrU5%%AQ2s^6c`F|7EZ=}XYQDStRs1Eqx`({nR11CwFYP1Wn)Uh=uk0_k
z-vNGyr&97?82`WK2gzHqzKKUPZ<&MTcHQiVm+;PP$KCPjp~^SF55|MT<hyg69*rma
z%l~0Kr<)IuZ_j$=@XS&2vl-`|czKZgWL~&GV?8I!Pow{3ynxTfKf+TP<;{P=EBKY<
zH-1#}lO3+S`ObK7iu`Z#Df1EX_D%H%L-264d>{6ok$C1Dd6J&-cpkU+W>fLRIOXkm
z>Q>9+yRct9fS1NAZ|_f*;<@wX|FYb-%rB7J`D87gm>_S&c4_>W<|mvexBX`uJcrwT
zS5Lg+@<Z^{h3c{VSiFGSd372dUZlLu&pgZH_8jpXo|vS3ch>iRcpA6-8oY$tbH~4U
zaIt#qzI~hMhOqv9LKc6V{sZvjCAImJ@B(i0HVF?V*XD1xe%$g4@G@@i6<@=1IrR)-
zJfGqf=fC2qOO?Nn{ASS&L;ZS{a5j6;8874iavtbzeua9r;XKd>uU;*mL;s0*;Trh~
z_(gayO>XajZ^qO3a{3>^!yA;3UOU8}*YMJfa{E60bG$r5-iz^Xz!Nj&_Wq~s6Pkx2
zZr}gzj2CWI{$s|U!gIID|HRYgx67YmoWt?do$|5xIJ`JpZuhrS@kBv>4*j$6JiagM
z^$1?RTlu~5CDwDV`~Z4h!_#;#{C(@k?e~`J@G5S<^J)B~<}E)@{TI;F4o}=Ce;QBX
zW&A+qp^xPsP`)?$6Y&iG3Vt4*d{FuO@JsLtekVQy&po94a(o`1eptRG{xY6*{xzO=
z{tsSs-a6U=;_r9x&a7`2Ja|;gwddvTc;PX*?Vl+;Rg`Z+Pd_~Uxcp|ue-vKDAL4p(
zvh~kb{yp*&@Z8h#ZSiaHBK{@&)g0?tsC*scDO&zn`C9S|EdQK*JpC*1aEbgn{Cn%c
zN8yd;Yd*v0m0y5wfmiU>HqUslRQajghwOvrUzSI&FXB%>Jo$>egb&55%jJLLqs(8E
z=ULy&@!Xs8)Mo0x3om^lkABV?f1biqpUSgruQ%}G=klHCUyWB*%P+wH!!uvYucg0z
z^uSoZA6CDS57c6V-SO17@|W;K@WdK<g6Fj%cvzJ`M1C}0#y4fTH{+EbmAB*ZDLnU+
z{2BUR!Bc<AZGT&hC;yRO&-^raM(b4y4vR;!nDK0i=Nia=!aJBZl(%J^J@G;#`7H8-
z@Kj^D-9KdTB5wDMXIZ|9^0&})30}eNd&X<=bW`QcZ^uixoo^q&GaD&CmHyZ9DsJBs
zt;ciCl;1#p(*>HhTywegcgMpP@_on;#WQ$w=6@`n-9-88n9qyxU^DqLd^%oE$Xnub
z@M=r>1eW`h^=~e>^TsmEJ6~z}EtH>1PZbYZ$>-w#;6>biFIu-y^OM<9`M1b#gC|?d
z?fTdQ&*NK@AAlEeRyP=dmvFnUn1~nJsNd#c3Ldtt^_wh@+xKg8@MJsX%^$~0xXu5|
zcx5Z)?K-j&&$XAI#|o^&gN||=|6kUF=a`3<&oZA|D{uGDAs%icxApCY7x24TZVFF#
zQvO|hFrMrzAB>O0^V`Yo{na?U+(lktoH@L>z1*IIuER?^$akjyF1*@R{vACJ<CPud
zgUBz&Q#;r8yozUcsr3)=!mjcy==laO?IyS7{)QKKm;cIm8ZXlP7nAa1@GbB}w_4v8
z&*IkK4bSYM{0WTbK)kf4+~%!6UhXdMM*c)Rv3G6H7(ClU9+IDk=X=U+J6>)5`^as5
zXPWO@>+{Te$#<uJAs*~6-xhxZPaYt*^;(Ii4y^Sb@N}xy8!cx4KS(}-{#JP9VEJKq
zXFPeRd~ZC7XM4--`>*}2zmMGJ;Ry4?<nOcHhvKQea(liQg_m%<-c7`l{ggk2o@?;}
zZqIiGJUCo=^96VYx95eo@d|F&qqTVMh}z{gdQS6M#qD`{Cp_I>dFwwCFXQ^tAQ***
z18Vb^;sxCL@5Y0H$`558mf{)w68vktg4_Fq=FyAg`unl;k?I*wen-5FFT@YS^J(Q<
z;wR%p=M$|5x9@ZFc<Lzi+(*y7conzr6Bpr`LCW7t{%t%lSZ?_*@f>dX-|^%S<=>@e
zv*$GriKA=13tn~J3ojp|{MMVQXn^HM$}gmUD4so4eh|meNW65KyvqIaxp;B3+>ZB)
zEk8zX|30qic;+nmx!f1c#w%HQn&m!*C&$S<b<#kWS<ejl8T5RHmuJfVX1%^MzeR4(
z?;G&MEP0mYHY#bJbGOQ$qi0h*b(_2^FV5QG*|+5D=-CC&l;w6l-xn{uBR_|H8V}!<
z+xy{+`3kv>XFOiPe{P|HUS<B7@^-x3h-WHt+t2UC%lICQ=Se*Ah4M?7hgU3*--o}4
z=T<A<53g7r{}%rNFMX-Jomc<DQ(wtvk#Dk8+ogir{m*82=4<8mBi{ip;04yJE1vpR
z`RmB<hnMkp@cwvljq<zFb0S_@E4TL~XIcI`d6N8O%deBS!>8lH_wpm~*?9T~`MHee
z5xk6_j4#HMRpmdx-@p?;%1`Hb`5e#vBDe3ezQ@zQ%I~4)PdxZdehlMm_JX!c=6899
z^FwRAv;n856CVC4pM>v%7x4b{AAnc?QvOEr1MvLc@@rV`an}Ezd@=bEcm<z_kF%bj
zZ!A6Nxe6~gl(%I(bMa~;`Dyq<Jkvz}Dg7((R8#ph{8Q`4Pi?9{_}229D4(PM54^Og
z+~&E#i<<wirQDvcTjNFCp1*d(6Pqi45$oFr&$p7>`krn*TgtmJ{wa7BKcAkv@oZb=
z^W+!dK|8tKcfD=CmHZX*pW$Wv9o`H5g%@{HK6?EXf7-mHdC2Y}Ka%`zc&V3sBKZUG
z)c*3b8Gjlt9w@(p<K-mFA0j`U{8^UoEuYSNvkNSLxZLiquE$HbouBWq{1M9E%{)AV
zS8=<)dIwMUSKjWg*5F0lmisTB9H6|-bGw%{Z^1x$^fRIOvj<*0Qf|L5>Vv1!^2ZtH
z$<}jJtxv#9_{-#P!t;ZaxBH?8t!J>@?u(Y-Mcnf5<KYnHpQnEvUcoKjJbJ+r-%lQ`
z{L$pM!;84(_rb$sYRA(bFXOH0$>LR<!#bFW2gj<%d<mYw?S0gzcmeOkc4_*G#$O()
zo+&JMdpt8tKAL<V%O5AV>&_^=dc6DwdM?NFC&=yh472gXiE?}HScDhx6X^Na@+Z~i
z|FAr6`L@foUWt>HUq??5Jjlq8!;i%?_(1#uyog_i--@S(tLGH_dCNQh8V^rV-rn0Z
zd6na3L~T!3JnOtaUcno)T~5WTBh_Qa>6O-VYOOzDdFO9g{xs$PrGK6ID7hU+O<vRZ
z!_jiPzIVdQ_>as_FY__Ve}*5A7tfH}eg1iPdaV3a&XYIb;W_fjoL3*h3+KtZlYa%T
zoG*U{|HASU<>Of22CuVT7s)G(vppV6lH2~a51zpX)1Ssmmnh$fah{4-FO~m6|5WqK
z<fk&8+pPZz`7`7n!NV(S{bjs@&tSP9;<>Ap&vAXJ;=y(DarFObc|46bc|-G4#y`T_
z<HhUMGa26#Pv+$h<NfgpZu!&k%niyPNq)TbJHHYSZdCq7^0V+V{un+F&&^QY&JR!H
z*_-6{J>W}t;%2$c{|f8JZGP6`;Y{Vt|FM4D&OeDanNNHq<LrW`Zc)!E_<nd1KaB0z
z9}n(OeiZqW@hm=s{b3?rzDs%g@8evHXYQ64*`Md&iF@TI)BlY1<L&WR@I2mu{dpB$
zoTr{M=wFYA56CO{zj*Ml{6YG+d`t6I#LuOFYdra=@^)Xez2%)JE&rJEcKzB9FXMI{
zAB?Ap%A1e1e&^TV;p57;VZCNr&y#Zd9^?_c>U=p~c&ax4C7zxyx8wIGyo`@v-u}T;
zPb>dE^VaNb&U*{wW5~D0^LTVxh(9~vnP-)^_dh-H3jQ<se&&mnznK1E*7IDgkFh)+
zy_SqW=i!Ctm4A)-%;DJ=<OTY##S<^eJF@@ZgeRBDZ9C4ketbWA?#C<6pTNUc)H8tm
zvv?M_``#DuV7c<<uj6^V1MBq#UVKgYRm{UrmVZM&5C0EOy;bX*l(l`UZ_5`m&Mom`
zSsv1}HC}#4Zs)6=@Z|sGyD`qa@yrVO7I;5A_r82{mU}#2z}w(w<0ahghp)gZIFDt)
zEWC<uLeIl^@PU@w34ak!;vMn#@ie}HdHCJ@BlVn3zUe!f&k|n8d3aO2yh`~w<U8TH
zPvu|Wd*Ip6<aWO5i&ybu$e)O(E6P8FkH>@0<wF?%G(7W#+}<0^wSK%2`GwZ=rSkTi
z__p=n_MEsHFX8qc{$D)xm3sDNoNfN6dCTGU{retx6`xQ32)y{UdTc&V!86~;TQL3$
z@a(s8JFchV72MwY&9a^~%HPRy@5h6+^5OK)xBl<shu|;ZrFC+9&RU6A*UL90|F!l1
zAkVVgAFUrBjW>8#^Hy=*5>HpvGl>4}@Zyj16FGpp;fenJ;^y}_Ap7FgljQes{2qrF
zhRaXF$Kk<9dUz1M46lqK&-iEJsWaqr@cZy8-k$L<#uH~LzZ2)}H>@Wse~q4s<<F5H
zivNXY@PT-%6`IeY^Ih>^oO&$Z2T$Wq(v!gx=PLgyJ^`=bo8s5uRlEu7dk-FrSC5_F
z7FoaZ5AYDT^Xhs$h1ap%Chuu|)A%NwueQfC6SZ7>?{^Sh#Y-EhXc%6+RQa3OE*Dt;
zm2%rIc|4pVU%+_g;T8OJ{CVq{s=OV)EAbM3B=hzop14~1t?_2jjZOXgndCL{1Muzf
z>@@it{17~xF24aEiI=XEzri>s;Q8z2_WUv(PvqscUU%a;=Zo>G^LO#g4eEKC<$i~U
zH_Gc6XYc{*J40^o2ioANo8<QWMGw4kv)uN#<M1lJj{cnGZ&BX1%S=2yOTHuLhsW^T
zZSqF=>v;YS`9Ji3Z$4Z8NeiuTs}Hqa*$3p;u)pn%2am`*Ge5oYBz`qM7%$<U(=!Gy
zKCYhK$zOn1aC?t2!~6;5?fLg{>wi-I6g_1;_msR7z78+q8#uoHGheLya`Ib!q<P3a
zC!fW<b;rZ!<*S*up?Kmo`C`_0EM9(7ekdo1i>>D)dBf&f@N_)+g?u~m1w6A}KC_AP
zPvODOa(kY74KLsuSg%jae^I_K>-7g-{Z)P=`MQra5BcBZOYv>+%<uA}=;?)*{*eEN
z4>SK$UZCep>-mcwe6r>7h4>6S_qX!q_u;93<a=<wU1IqLhsO=}yS{hud}H}8jB_<!
zY9jxQ<!&%<Dv!R-h(8;zWPX~-d*dNqX)gbSp6+<5g?wj@)4q6hWBH!+9ET@2l|Mw!
zc<aYU<J0l<X39s8^YP~%JZvf75no{W&E<ApdL7T;H<Mq52d$Jpn(_Z)`PT9T`+tj1
zIG?nWzr{GW#Zz0!2jlzT1^gfUX!G{U|B9b&-a-Byehr@QD4)pq3wUB1d2{>;JPhUb
zzGXR{!&lM&8J_8+y!mf<YFqiA<Tr~RB<rt_sm}5WzC9jpC-2O7dg19V@@eGLcm*HF
z{ExviU6ntOo*Z7-QEu1GS$MdU{5^Ue#)Dnu+tafYPwpn4kFUV1yUS0;zroYp<YmSm
ze5!c}_mJN~z71a5Q+^=F?{;|5Qyv|L@n>(mvXA^M`upJNedYF?brPQGCAaT+$Kt8|
z<Xg~xk>&T7ucd#g^&cSLlX1?*^9RdMU_PJ1tB1;W;=H{K4-c2WOaJ?LaD?36e}0RX
z@OQ}njTibWzXspzGtNr`<aQqGWInLg_cT9JzLcJW@l3kb2jR)1<gbxG4G#v%tN2BD
z6@L@I9xn}6em#B<UK}D{hR?@yN6X*Cm*bgZ<lo|}@bs~@{xhB$D*u~&iwei-F!_IY
zC-dWK^F7UvugxE6euCV#?{GXkQC?(!%i`se<on^1@kB;`Fypxy&)^ySA-sg!^Tkp;
zJzPC@-Tc7%Pm$~CH3-&QKYl3vjXu}>6kWa@9*j^=AM(57X}lHd)f>-_RQ^=*XW<om
z8;+yPtp9Z7k0O6Np26+=o%_v4Dc_%b2`}Oo;2-13(aM|uXnEY;x3v61^N<{)d=Gkd
z$FsQoy~W;m8MpKBad`R+^_Y*hyz}cVf2Q(Rv)ude3U2qqOYy>4%Ad*ne}pH_mfL%<
z-|;+t9sOIZ*7}B7<+sB3z*BfT{75|G@?-Fv^DFU!^Er6Q`3rc(`6@g(r*@ow;-T}c
zzT|kvlZ?Lyp2hdVkHd?&t?vZ9?0g1Z#ckdm#}nf;&ert*4^QIOzaCFJZ~B$SpLHJM
zdEAz}FJ5#$3@<w$k5`@Fh$qg~_-&jI<4N4s>rFiEyozU?xB6P^m3O`uUc`qnZ%5&Y
z|HIXths{*~e;hxgkZtTyYHTT_36-sk>YJiv3S~E;WGNHbx0477W7lfzDm1hpWGH0I
zASsC<WlN1UOZeUH*Yo|mt~vJ~-|PB5yn3Ja=X3TmXYTuT^<&RVyW$bt=3%7O$F2Wa
zR^O9fi6=e23r~CeAKcd~b2}_}SmO$Kyb>Pr_(OQa<6%6C+jctuPvExQet<i@GuPKL
z-0$)2co4UFJAsFBTfg~_Xk4zRPDMP1*Jgdy$5S2;<NiMCvjKS*k9d4Gp1^HAuCV$Z
z--$bYGuO*;-0$%`M>VdX$IIbik3WFBxb@QvkKs0Nuj2`iPsURoUy3{Z)W6mF3HRf6
zJimy?aJ!zo<(S45?w>gi4R9B?{yX9^PkuO_@c3Lj<?-)vXF%q1|H1tp_Z?^cJzfJ3
zd%Oki;<jH5#N)W_7jy75ZsXmE`v$5{^J91bxBa4E)`Pq3_tS7&FZbdRPo3xRC|;ZG
zyf2>g_zc`PNd4G;u@Mh@{45^Ft^Z;t)MwJ;HSsiV<7$fg24}9Xet5v+@8cnle}hMG
z>t`Px#ckfM|66^=Jzfn@db~NF_V^IoH$?s0elZh|;<jIWi-+9I@gBw_xb>g+AN3ja
z<nP4e9)BE9db|ss_IMQcy^+~Z91nPW2OjeHzjy?<{i0M_{l{?IFB;$}+{W7xcZRAT
z^I^Cjx9w*h9>i_^ZpFi%Iwx=!ug!i@@TB@oc>F%xc~kw^e$fUGd3+=u!>#|hR^Q|6
z@Dy(2I)ppJGS^F<Q|i<2@jLOL#~b5e-1_N)ySU9;6pwj)8J_U?0X*gL+^5y2GhF@K
zeo+~BaoaB%<H5Hw$J-qb<JSLptK-Qp#$z7ejwd{R3Qu|brZe<EBD0@bxZmR~@u0_t
z;9=bMiy3$nxBX%xp2Tguf8lA5=Rd1HeIqmbyc-YTwtk!8A>8Ws!XtQX_KPWa+~eQi
zY25aUKk(ov^<(Zkr#_>&Ew>sT_xO`|61V-L8=m%f6!*QIIS-5RfX8>@A>8^og-39k
zx10W@e~$<8xW_x=Nso`i)41&yi}A>4^>6#dc0BM-=D5z_A>8^eeqMb>Jo%b<)Z<O?
zxW{|qNsmv%(;i=n`^IGU`7<8y_<wi^xBa5b1@-UZwqHDgCvY3@OL)rT!*OS9W<T?A
zKW^)H3m(L+{&75v*Ji)ScTs)DJYF47;kNxZ#{=WkkNHsC#cjFMt-i-s;R)RKi(m1S
z$FJZ{G;<zqy`=vA9<PrFaqFiI9>#6nhT^WrKgMGo-;O6dehyFJwqKO`Pkn~RtAE=s
z>frtfnd54U2XX7)wK|@B40k=Az+)aifG0ej`?C5>dAt(tOw8=_aoq3mSMeZj`$ZIw
z;I>~Z!{fM(_g6gW@k@9bx9#WFE9&1jNqyS-eFP8SR=*=2!fUf%49BA$Ux+7h+x~yV
z{gbs^^Q(9Sx8;_(sy?G0uZPER8&@kl>G2_W+T$_YHzjj@t;GYl^>Y9Z;Wlr%ot)YC
zYY~s%jYmD+9FKc^FrLJ1zlh<Xsp`}Aiv;eQmf8RBcmTKlb7lR4%Iy0}Prf`J@%Te{
z)Z^{(xW`A}NsrIP(;nY|``*p$|2Q7NZNJE$Q~if=+b?S1G2F)63{QCcbv%XJ_A>={
z-cvueepldr-0JVagLrNBi;KAH@v>Pj(p;PW1a8}ZL)`bimTUeR9>#6CV{zBx3-B0j
z<JyELJbnUCdAvX__33<&xn8Q_e%$(b0uSOgZ?EBDk59v0k0<b$$N#_+xQ#3K_3AT)
zTR)X>=flkY|A+fM-T@DKd?+6F_*~re_;+~B<A?ABZhc;V1O0ovJnnpy+5aQBAGdja
z84u!C|1CU>*Jk^igU39+8BgK19j5WX^vvzERBrX};<ns-@tDV-#S^%#$L@H_<KuBB
zmN^e`-0$%u9>lGm6L=W6c`KZU{yly_9`krxJmK-7cnY`A^@`_J{qPL+Z|_sh#hsa%
z<64XRaqE9C9`xkTSbdM@zmaiyydoa+_``U@<E`+N$9v(<tjzu=;C|eW+Y9gzZpZB{
zcoets9>(JyzltYu+kQ&t(|FUkt>0R>Z?^ih`XM}k*Ji)yj7K~^3XkKqU(CmyIjV2I
z84uyM+yhqM<LB`xZsRJHU*n2<yb7N5_#=4Q<85)@+{}6Cg$Hn(w~2Vj<DcUZkN=2A
zJ$?$0<2Ei|0gWq(+x%3;)1LgJxNlzO_7=ti9v^^*JpMi&@%Wc`)Z^RnxX06Y61VL<
ze?g7QnXf)=JFkWZaT{-AJnZooaTm9F8;ZwpTVFHrgs09*JcZkKz8m*{tUk>z;9=ah
z=hB7P4n1BUcRtD7uAayJ9*^Kb+{QHu4|{wb?s|MJ9`pD<Jb~Lh|BI(^o41la*4L-%
z-@G>N_jqeO=<$Jg7`N;8$#@Ena-3O!M;2(g_CEGn%j0v%|Aa>uDsT0R7FPehMRNO|
z{!@4qFHD^`@wmso#*=vW9QqG-;K8`+FXBDS19<v#`3(FV9$PB6_fHBGQJ?;0nRP1Q
z$rbXvyw6q_PbK7k(*M(zUnB2<hw;!_c|Yp(wEPCS&D(Ixe=qM%ovD_`vtIMa{+W*_
zHYpz`zZ{QjmY>2mn{Sa%%A<cs;l5q+tjE#WKj+PN%k6!e+*x15yLP{j#J{0_2|W6<
z@+I-x@wmt9SRH&K`N#3dFRD|8ep=wMJ(=F!>ijCtPksQN+ACj3{kQPwZ}Nlq1l-*x
z-+_OKhxf~EKIfaK<n~_u=Xl^iW<FtlP;T!vZNU?GZu<WPPyVj_M*8^^j~$X%VLSiN
z@`vT$@cpTR#k9Vnf6MJXQa|qeBOgQk>XygzQ@<e|JEi;(`fQ2&&&cifmUqX)=j3zA
zzlr<K%YS4$oPwvF#@U?=XMgz=cW;oF=6%!z9=lP#5dRqu6_R($tAQQI6F13wR${<e
zf7s~S_8bh#d(dYgJkda29xsQdACi~E@56nM$Unpz;qm`vdOJMSP`;4^Vh`NkLcWta
z!*HjS{Cj*Fo@_1eh|k1>ZRKw>+{Kp1+mrv!@?qtxkpB^n;M?&(@z4v(_rot+eY_=J
zq=e=<&|Y~v?v=yi_?P5s;gJr?+xH6|!$TeAcK&LLr*L~e^94NcqVl%?_BVe?{tw&v
zMBLv+KA(OT;YoZZ^R^myyD9$@`5*A`EApJ=58{zm<=e=g!h_xAcD!=3zTkgt`%L3@
z-YJ5oBFeu*ow9i3HF<x$y4Atk;t%7Y9?CyKpH1;tPx)@%Q|*Miz2$#Vrym~aBQHdq
zv6k;Ex8w5+JlaoQpZwQ&vcJ3{>tze>43_VrpZ$2sl|M)R3?3XNkCV@T6Z83&d@Nob
zcSp%P&`)j4zb$W$KZA$f$*lh}?u?VqCf^^AN9BF-v3OvD{EH%*&={VcEpJMGF&>&L
zZ-}qOWAn(fUUuNl{7gTHhjF{EJCFN5R^E<pIZCnrej>N$3B~X@zJTRc#KWH|KLdXN
z_brgycHRU};8y=-Jh)JKdtNaBPvLf*JRNryDbH!pS%>>PeggO7cHMGgX^l6C-$?)E
z@et1G#i@&jJ>CqD;O(dr!IQY%7YxGF_;%KB)beqSD}m3)qf2n=C-Bhca(h4jM?CO_
z{6X@+;}Lu-ei;vbsr<)yiL5`AmVI2pZTqQ?$G%d&C;Qh^xPQ4k2j}+=c;FlP?bLVi
zF#ZVReIJjnR{lEtD?E{qzlDE~ht|q}vGL-8Z{_yAt;@Lco!s8DEs^yLG_H*|jQ6L0
zO+2+OGygOmT%YM(@R-Mk<IV=<hf;q69{pbaCjG~8|3>*Rd@~-$?SA$Up2Tf?`wvfh
z>Xay>@w%Hbms<n(ZI-{pa-Xm~9>F`}X?z4e#PVBIXCyw=>Ti{|#=pTMxP9N@FrM&u
zkz3Wj?+4Yf_x$g~WB6$5{|^srQ{J|#c6cx;w|VY|C-IKd8E5(J%G-VPY&`Dq)wq9$
z^0puSZ1wSfssFqAPUU~a&sqH+<qxs_<jVSj$+hj)`AL2oUIh2=mOq78#3Mh;?Ygce
zp2nMTU~Pbh_A8&Y`(*!wtj+<s-CwlCorCf+^#3yM$L%=TA9wM5<j3Jrd>TFn5B#qB
z%kdR>8n^Syc06)OdGmdi$8G%{!^3|l|0MHv4v+sS|CQ^ITz<`e^qBl6@;*F%T)vh*
z@4(%^<Yma$#bYPr#qg)_#NYC~_)B>5ANdT9w|%YtS$WpSK-oX<;L(5Ot>|Y8p2lr|
z{{#=8SKjvb)p!ygMV%ile?j>W{uds{?Ywh+S&ly!mH(Ukt$5^;+}6w8cnY`ut^pqU
zPx*?}dEV;d_PyX&@hE<g{BZNjs?!&b;l3+!drq<nPvW<;UVg?MM@O*5)H#bM@CxJ$
zmD4<=b0}}mugc<)obso0snET6;s$v)>OX@Aa?9;`%WHTNFUju>7=@<`DxdXnTlUYV
zxKmjE2)+Ri6_wj_n`5|JEYpjY*SO-v<#Xw?CLS&!x8v3GxLZ=*it!G{Q#Z>uP-nW;
zzeRqD{c(f2Uw)GQPn(yQS7!c;R#2a*3i7PeP4>_IxKl~~KfDbdx>NoWJ^~L^mDi-7
z7#_J>-i`iO;wgL+{tF%tD4(_aWd9t+lhx%-$X~z%HROHp{1ushJQw3FizjL---Ud2
zJaDhPE#451;yD>t3p`d!`4_0)75CMVccuS<xLYr?{scUQA0|HwPu5p{D*Y_MBSE=s
z=Ly``K;DBo+wkba^3L>s5O*5N`?0<KgS(C8r8y5?!eh_KpJTlFZr40JP2>yc(~rmT
zqxgMztf}&L{A`E^n#t|_*aDB@tEkfz4?U;+SNI#a?|Hec$0>LO-%I}stxgN&XHe&B
z+-aHVoAEeq=ZoKPe=FseF`p;!R6BW7*2`5q*j}FXae4MniAtK!P)B(M`l*P!_z$ed
z8kT=qc{@Hgz<r(Nb*R(U@_1EzfYrzCx^x<z!fk(<V|BWyzCG_+jVJM0)ZcCOyJqIE
z;!ZdDKpXEJng<uR_3}6#ct!ax%tJdo7LngWoxXSqXLEKY<7wQk13$qduc?k5XV&6L
z-15KRp&rWHyq(75xaITSsc{8*X6DP`QQY!%aNp~h`DS<oxBcZ6Jc--={zyEH_h5cz
zSe;&~-wj`dr|?erZamamd7GazcpM+X_IzDs#@kQ%o2YXW9>VSV`5rvw@rHP$zv}$V
z{@dK@43s~>_Rs~74v|04a!2B6{6YMEJm4zdg8Iv>&KvS!<de96sQgp>7@owR;JWmR
z<wq)S*Gt8!u)mLz>nh7}D&sNy&wN_I!+3PE@;B0F3(HTDzfC_K@xWC1b9lt+;P>Ni
z;Ys`mJ_S!qQyu#pXP)KXl{aL(n{oei`F-@c3lGQSb*cX!9>Z-u3s+@+W+-pZ2`k|7
znR2@xu8;d?$>&hNIiAE<<K6M-Y~_pMZ(4nP3H|{dnWMZte^_F5@WpKZ8}QJ4<!!y}
z#Z!1e=I0ci{#beQf_G^ioKNNUe5?|lSRl907w*U1g>rk|`!t?jB)9WsXFUFy+&+(f
z6ZbEc-$kF(@X!+ZJIv2wJcZXHzsc%+q5Mkne^?%0hC9_X-q@GQ+kHVH-2at)2la2m
zon>;DI(OqP{uy2$4=h)H3;wLt`C6Wb`Y++W6>{4?d*KQE9Ce19uT<VXmwDHGmE5jR
z7U2GG<aT|s26qzjDb(MN$MF960jsk{`L%3^C-L;R^5*yrce8)3m)r5Y7#_#%I;1R~
z!WVFza~B@ntU7id+5k`Bb|3m2p2V-xe^>J@s$=(|!|>2nxn1W>$9+G@?_qr{v-~!>
z-G}b9d{SPO{Bb<ET|SzAF5yZ16})gj^A_Bpyj@>a#a+BA`G$BLpMkf>!#h={0R6mz
zM}Cys{xTE~?2_Ag<Rh!|liZHm-{PU&@_DTHKXGS|yeG>oe2>QE{wjZ;^;;eHr{rIe
zZ-S=|$R{wa0aoXrd=eL4bF9u$`Fqs)0Z$y0kKsIW5)Y;2rO214u0A6t<ynshvw!O1
z(bIA}-?hinc-GhGvVZ!RpH;q(*qLed&&gZh>+vMs96y2w{#E`Up09@b^q-eEX1P`I
z$OXAw&pd*MF3GcgtwHwBt9bCT+}=-kA5UD7KgB$(#eF%R%>M6-)6YIUfcM5P;Bh?b
zv4;M;n(9Awo$7QZUkeZAl7EP|!_&Au-*^Z2-Jtwr#<d8K=a$=Xbr&AaBe&mYdmfMG
zliyFBviGXbWPW)kwx5Q0u!#Kmd}_1{9xEfy!-Lwfc)X50&A2|dd|i1r=4T)7dr;n-
z17Du|*giYR?fhF4Pj!@Mo$j-L!nm)Kd>cN-@}1@OzRC(b-A!)C|802W6}f%B{|D}W
zRbDSI1G`^+hWp6Rz$MK4$~Q32)$u@o`6Tjf@g#2V#f`>81C+P(;9~QE^5xX|0rw4(
z@5WE#X}qEJSxfx~2P=P-KJPJi<#yg|g{SZ+b$a8GH<Y*YX4L8oliS~CUx+71%I&<l
z4G)ZxcVIpKjmJjIpTP^)R{zdec`Ljo9*)W<;jJt`QGSvBdznv?+w;}2cwlm-&$s$h
z<drziZ^EPR$(M0I^(P+sNd6DYy}l0fKV6>0E91VH{22X*aA%f0jd#b>bL4~Be<$FP
zPvtZ0xPki@%1hGc7Cac2@1mcRmR~IYkvfIyGXI~;8{jqZ&=+z$4m^tozm)%L^KbrD
zW_~;#SSnvfemU+elmCeC!BcoX`Z<lKmn(0d%M`4~{I8HVBYy`TTPYvUJU6lYYWWe?
zdmlXT9d(%h7#`gy|BF7C;qE3mhgD~X<?+_^a{^CqR(>mW@;spa6I<lXOXwfU;{M;|
zgX#YPJobmY0{yqflSk!tpVbo&ACv!1KT$mNmwXoeEX17?a(f=N9d~hu`8jNUO8I%z
zxr_%+%O9oBA`fc3?!R(-j#>pzotN)qybt4vOY)M`f64N=-Dkat`!6fMmi&A?jkl$r
z^>`@fQ`yOr<o`0iPW~UBufF;Z<&uBHepd<i<&oR-zy^2}zn=MTgU9kJ|1drfPv0oF
z`}7a+c)m<ug-7yd`hGl6Ak%XO)qfhd{kjyMDyY1jFRI~gA^C62!^3#kC%5~`mbkC5
zd@1=JcoLt6kH8~EGV8=}e^I$Tcl`>F;tQy=84ngy-uwWb_V{@`Ry;FbpaJW*M5dR=
zosyYe2akLFSv-7GX1){dE0yVk@Px-F;gQnH-^h3u;x68o?Pm+_+@ic4&ky0DGV+<!
z$@!4R>)a}DhL^^}_!;)cI_71SKgIUn#=N3DOnwlas3dPn{Ykk04tam-e1XTR$g_S8
zMfT6{=6A`DQ76a4>OWddz6ZYvkK8S{_aExuiGVysz7rn1N8X6#PQcUE<zvV%!QC2i
z+n#^L{WazGp72FHaj(1-<1O%r`cKu8m!^I-+^H=uhllV0ek<M^4|(z*;4WU7{8~JY
z7smg<lXxjS@Bh?i+T-`&zB-JHd<#5)TmJ*`uqQtYcRl$nc--SB@f2>?+jl&wKErj@
zj~$0!z*8QdYWaGZ`E8c>c<zSOe;_me0G{%AU&}wJd^hIj6FiB3iSNOq^_4%1UosEM
z2eEyYeoX!N9?Go$5boku|7AS*u<~~QJ_3*7Hg5}X|0BwerJrqh9JlM<OSt<#<vY`7
z#mCux9+g}Drg)^Gd=B;B!2OTOL-<FQ$0t&MCGKma{ABWb@HlSEy}pt92{g`JZZ$lG
zTYdx{enNS>-`|HjPs)4e*Md*sZVP#F`nj>OmK(!6;^lB(OXbb)#a-O)A0IPsrTkXv
zw8TTL<@VgKht+Q*x94NSai^`^p1)1Ad^`DI>VJ(#aXZicf(OIO+xLwAHg7Mt>zw>g
zXda>+<n~;&CLY75a2{!k2VYX&_V=N90=N1x-1l;3{qJ!<{sz~9r|@{U%=#ssWIK69
zewBWzm`CJW*bW=wP7irO@||(t>+(L#=U_aFccPz|)#<0a&ChD9gWL7MZ@3@NPo019
zz#!FmkL&irSr5vty*HQ~D!1nkmGS7C@&WY!1nzrFekbF784r$-KgPI*SRH&lb!On<
zx0Sc+&+qWiXu18}y?uCOto%Bbdj)sL$?ds!si!rrL{x6qr2#xLUj8b5HpWx<bi6(8
zPEg*iV|(GjiE=xhzmLc9FR8N{k4#d27k&^AO_tkn<|>}VZM~EZvA;}F-aa>MfG6={
z)bD_&@oo5UJTX;uir};H6mHwqTC0P9%yzXGkA0vz+t{wo;gOm0QatzeWj*k@w!KB?
z%YArdJhn*Qp6j9pxNnKv-jiu(d3-PZzmB_~E1!?;Es96Kl-szLSRMRN>g=%mSIQs8
zPg(t?@|N_O`&o@E^>t?bs(2dzo;pwCi51Fk#Czb;mGbrYP&~X!ZrkC9xc{3>Uxugf
zt?VyJJibPG9``zb;7Q!J&;KmHR{6i_r&tq>H}<VO>(?`8|5P?#CvU)Z62#LR<qxod
zHp2t^<oP&ncEN+k<aRwg4iDpYy}AT<J-!Q%;dZ<|hx?DKzJ30Zzp2KR_)BijF)HAZ
z6PaEQ_x~+#$vixbyZ^}BFmIjk6keZvKdW<6`4stSxN|DgzqC5|0rDI1<Z0!T)IW*G
z&dO~+D%4El4V;tPesK>T#3xh#89e3j*Kqe=)v@PY<1BwZv;I;%ZO(rB8}3|EK0kil
zbL!J~S>A<yisCMA>$fKETv5Ii`3LbZK7#pq4o_cIei-?P)pwrGmV)>wJc`?Sc^)3a
zt)DfxKZokH;JC5f>gSSMp9k?2ZtKf=Uh@#SUirH8UmTC$Aa6#W0o<2cZl5bXizjef
zZhPFHNBNQT+288tleeJ$RI8s~Zub#O@Ca`6uoF+?_Pq26?i5fRd(Ytl?&7yF-n`8<
z53z#EPo<wSc(9OsJANnb_sR9Yj?(~-;IEKxhNp1*oaJRaP*@f2CO-@h<Ad-?RtLBJ
z>oYv<@ol(MMD??7AF_Xr<Dp{muFS*rEi?~_;_{#H3V5t!X1)>bD<yxA_1hVb-y*l?
zBm;2gR`~~v>m93)_vD44S-8Kt@>My(EXPAn%k4g5H=e}pe0SRFhm;Sq+&nEcUgsJ4
zaQt>Wig&_mS^in&yW&sc5xgwk1&`sjzTUy(xUH8@tbQ}qf0^~Q-s(Ruck#n`x`o{K
z>x;PCQa+)U8Y<XI<MmIJ+kRIKcX8YAp1@OhH@1ft@X%z{vFnW?R)328Qx0$w@#Jjz
zN6gOxJTgb#9sdST;kLgd@xWZ=?;w91599Xv`$emR+x!=6t$9d$yaw*fQ+-=6PvN1D
z<>i=%PPqGtydLXiIG$J_Z$O_@ao<9DcYL1J!T0CUKP<z;UnxJ1{1!ZoAHk2{sin%V
z#4qBpW%AeXf^FCymdlUfx8T07<#zv41CQf6yE#r{+*zS~j5;0h82$v_A5Y`9A5Fr;
zD^<ttyFbO_tK=V3=WEM<BYzD4-tu@Od=KudR^HAd7jf6)H@D^ZkWk)^=XLN1ZueQO
z@icCq7Z1SwYgNbgqp5iGTlqWm`Gw`blfQ-Uz~i{R2XX*Uu2cSh<o~le>*Y2NrQ2y-
z5quK)nz(O+^0r+)fji&JZM?7IF8(%k##)_?%G>)?^YGv%c@fSR2|T=2-jV%iE1ujY
zpUw6E5#0SzzLw=)#zVX0_BmI{tPc*Z-6#5fl5Znl15e?0UHuFm+^xKApY8BCUYt6;
z@FZ@>!x4DwXVv+N{0uz&i+mNn7WeOw|I7UBG2bV@o8!+pJhWeK*J(vw(0Jpxeco}m
z`2pn@u-pgn@Ikq~ht>@DACezry>!EUhvoJ?ouRmUME){;PQ%kj<x9A){|t}+BY&Ly
zdfYiFx9?@_!;@#^>*)V19y=@Fj~8vPd2r9kr%=BJ?msU-LB0|0yC83icfcd~Y>v+Z
ztxiroNuJ8MCgO?Q@<R9wJegnqKI`{0tM8M~$Jbl^V)B7(|G(j}o8-^sR-@-|$1ne!
z{tI=`JS6ZKekUF-t9%%*ZFzhK>-|YQQbBq17jS<ixxI(h%j(=Auf+V1!qa!kSKu)`
zUPb;J{d|E(tICJc&-b|hZh4&iUOb84hM&gMxb1fZvJN=cjt}vG>ikQ-s`)+gFYy22
zk?Qi_@m6@ahI}x6cE?lq$}h0}ylMWR{Hq&P=tDgAxZJ+ay9`e>l5b$STkvROd102D
z!sAcM?RoxL+<i)J*Ma$8)I6l{9n>$6C!SV*BHLRXJp8=;8`k5~xW9#b4Rv0?)A$v9
zuz5@6pTj@IL#^cYTxE&nTg&Y^+YflEjr=Y8`3sM<lfO#+JTEa`+^$P+$K9~<&ycTe
zdHf~3F&=tB`4xD3+}B>7m;JXV?te-CBK!L=Jla`q+vjAf-$h=Z_4}#iyHSVnuEL#H
z<%6le3wK|W+x~bQkN3#*9G#e-p7OuhZj0f`fpUA_raT@PEU#wshKKP*Z0C(|-zeoT
zFs|0-@5ryx|10KE`9ktT@WcdpYvwtM`=`q7ycxqo)8tL*Gmgjcsyt9wkEdoS-<|v+
zt20|(o_@~a?p*ojtd|?IZs@KZXM*$Pqp4FGPvWDvZ@LQ)FID~?o@YLW$G(;CEu=y(
z;_gnlT{rf{eLu>3)6ZBux=a2n{d|O{@w@R)asN-sZ(@E{S^j|BCBF@i9F!+G4<5h+
zN922M(0_0V_x&UPfj$d%W;;yF%aQlvzJKLgS?~8*{*v52S88JU%km)gU%*3G<n~-5
zf~P$`1dm=-{{OFgalfM@#u(<|Lp+Y#^RWfEFNg9kkY9nj_)`1_JeX7Y8TbJ_jaSD{
z;(_awxBKD(T{NF@-0t^p$9=gn^N-?D{C(=T#{<_ZKNKH|C-BzzEZl#C@{92Vp28#e
zK|GXOdE4)<T7BG}d)(Gl;|k?b-la|hJc---ZHY(nX6F0gX}l$MCR_a*m0yB?hWql#
z?fmis?&5a;c*N@Cg{f1moBH?VR~_@-cmRKz?RE<87Es={tHpQ<=kVaH$J2Nfj#t0p
zexK@WrheM;h2@>_Jg=zFa8bFvuT{ppq};CG?!$vO$!9U%XYe$hbsL`j(*+ORti1Lz
z#~F^t@Egca$Kz#`&$<lG{#l0m{c`)hL(=M(m!DPKIci=(Zu52p596Ddhhnd49s;*3
z-<aiA#@##QcHQ*|9=cO**GpmCS4I9h=evG*w3>VxeU8Ngcgr_%KAnv_bu#OJfhX$9
zCsThl9<DF9<G>Ef<N8;}Iga~-65GzN;8A=8eHQ7i`SCYUegJ+K9>eG1K|J)3@+CN)
zx5Xom%I&$t5Io#aUVw3pvwS1DkM;F2?lzWRV!2<NKOwj0A;04OC*{ABzli&ulH2F$
zw?;JHB;JVrYvcYV%I9G_X^ID$Q3vmbr=ORvXIzu;L@W6K#<c_wwvo4Bxts9V3-aom
ze-GiQm*n<+Pv<rDpLkimi1FTxM>@+3Q>P{#eO3Mo{-ot!mp@PcFXPERa@)V&##8tS
z=HWxj_gCKTN0#960rGa#-+=pu$V<`xVLX5@XWp*wq4B0&<?o~a+ws6#@+a}faCfxa
zjz6vN=oooFmisF18!NZxfy40NIC*ZaXXfLf$?~dsRcHn7ek31F|36v%nEVR&Whcz%
z%WLD8t^Q~7zVunPC)=&Z8{nb1^7&XVE%ERYc?G;D9{oZ-79WHAm&*Ile;ki3lfO<s
zyDYz4Zr{hhga^KsH)Orv_PY9aSIKSvdH|2EmfP?1X>R_lJVl=a@W^_3Zu<Pd>Ti(G
z#8=~ijq+3Uzt?<|JTLi+cyP0P8SABVFZJ*2l>f~3Rtr!4EDzqN1w4cM3q6|+^I2|p
zJc--=;|M(JQ@%Lk{TPoIkvC^M+=BZ`$tQ6<Id1tfa!xx=-rnjzfmf%W%D8i@^4u;s
zkK;bvj<;R$xF<i_>U;8w@bGP_Z`a{l@icy#e*Q7{D{s%Si}X?dk+O2TZmETb%E_xy
z=Xu=4?emd-xWByemB~-DI(QAXhoyM5g7Wt=|4BSqSzeO-aXei`UY7bd^i}`<s`6#5
z-%5C@n!F(SMtB;x?~g=qC!oANuO5RZ@V}_D5Rc!Z{73Y;4G-0jpCW(Uyr$gtuYCQ~
zfB0VcUDT<JNAHt&qRwNubHCi)(`%0hYi0T{+^sEtn&U<cPu7#$`_JFup$FxS+0cK-
zV~@#?($97M)qnJH`IeIUhthcX1$jR{*RGDIUYFbb%VT(?m%JG3@nx&uM{d^@1FX(~
z%sR8J&OrGL`rM5B2W9%-coJ_yzSsbbD==7j+s+@rlek@<x5fQKly6U+p?DOx{A@gh
zPa(e%cU{#PjGw}tH{|2-QUldz47dBNy0~ws@^6q2TOJ>R55@g&DsTPF!xOmWH{iix
znfYUQ3b*kV7{q)ISKf|SHSh#(&tqHQ{<oC3>+?ali`(&Yw&h1Czlm{e#M8K4x1Yen
zBbA>+zEIYK>+H|VM#(K-8Fz8ZKa2<7R^E>Do$(-kj{SOq`8&$5W4Q})-x&ErZ2$Z5
z@HpyIC+86L8HviT7E__S%;(7M`n(Aqm@B`9=b3Ndp+)jKEca798kf8D`3vq_Ebqth
z<gDetkbg#>1zhzR{7U`}^(*1da(R8~*S9>rihOg+uT<XrH9YZ+yghZ^!UL-_{e3*<
z@i^{FC~xmeZ?rn!%KKA)A0EeTy<f!>_;vJO{teATa-Hg2#v7P_FYnB}wa0^-<R9Q8
z@YH7c19%+wZ<U{<&&}pP$nVB~$3u8W{1TqPm*GXTK6tveU%1;;=Kx*}k0j-<(9ctN
zYP)<a`OcQ#AwR<P-Y`7;v%CfKGXqcTkq>6OU4sXImp{RE+95o8Sbi_d&GRPnkGG+I
zB|LCU`S$oDc<e9v7u0zX51)`<WV~;f|0CaxzmEq`%D<-m7r1jqZrjf;+=t)5Km3dP
zuPSfPR|^f(xZ=3o*WYFC=!~|Q{-4AnIpp^HwO+>)H^}YxM16=SbIY?1N7+AX@z9O(
z1sn%X;!Z(%PnLV@aJC;jKhN{);L*~`Z)ZI=#Ur=Lk5PXx9xg9`gB$5j@N{+gi!67w
z<!i{<+?@SZAGht~Djvr#Qs?HknCF_RWBbefxc^?cJwJRJPv0lE=VP7lU~Tzv>JP&M
zb>#c->A0`1+&(w_#=M?<AoKGJ9<49`gY|U=cOQ~BqJFLs>=$?$^2PA<Bg#)_d#->-
zAC*7OeOx0v^`yKG^_$`Tr{qtN?}bO2$tSU5rs2L;^4F-d5|82&@jZB;wekb;OL!c&
z`<-$lHQqoQ<!6#_h^KISj?onlw^iPrXHKv>?c_HwKcC~lu>2tPcU%4ic?t4Y@lbpD
zDe_fDsn1XcIhWPWvv>rrK)xp)^Y~Oei9bz#1@7;t`hD<})xpo=H@>ZYVlOH`4ZjZ$
zz9hH%?zXtoNj{l;PpgBUVIIbtcUHa!`B}KXOQx^1yvKK0zH4UwnC0<Dsh@ka#+Amo
z-Er>3oo=ermHnb29(h&na=hwbb$ZC3Vt*Wl2YbuyeElx&_L1B5_Cnm>S8kuzB=7`&
z6BkUs;Hjm`?<t^xowWQqc`3$Q^c{^ig+Ipp*T4fCl)shnK7)rg$~%&O8Bc7I+x7OF
zcyzP;VfOdQcxs2-o|k@Xb$*t&qt7+C{}*|Amb()V?UCDleHKsRv#3*ijK=H!s{H$S
z4cxz1J`8V)$8kFj^u+_eDgP4rckvi**Ewq~zfbuk<PYO%+>SpvvmO{;yS|F;SAHmY
zKORWQZ9i>*$8kF!wZr`flpjZ(;g-j3Kb?n14k~Z+xd~6>cKvhQ>in*}&F78d)PLxZ
z+~%_?p2BTDpTWa_C~x!G6HnqcpC4NOPvvbszs3EB<#QPCeyfAqd|t6SN0hhu^hen*
zaGTHic<89|b{u;NPvhUQ+);SqnDX}d{z5!<QeKqnx;>WvPo9_K#w9#?Rlb<#;kS)f
zpV7QcvzNG*<<`T)H_Gk(;g|7vKKUcL^dAhy9iQBu!_2Yzxb4^LtbSqT?fWvj@mLZ0
z2>LmS2a3w=d*%P($zpPQ&QoxL#+5E1XSmKCxKmPY+fO~*#f!4srg+TbJ@5oRiQ~x_
zJX}ikZM&L<`%BC1bF>wB;AXi!58P?_TjciK<{%!!ThQla+$p2H`K=Q*4`JNSv-NQ2
zR^@HKYmUcoJHPkB)3}{S#^TZ2RL6dQ`xjQfynGe&vj<O9klVPNN$N9LQQnGi-HgZZ
zN%+H-zg_v=cxT*SNj@AOfX8wB9B?x3R#86daFqQs6Zch<AEnM`xO2Ch+Xd%4%i|9F
z-5&Gm%1>Z_N#pVR<OivL36I?`xBEEXWX(?;-%0*<JX%Zny?8x5Qd@oie;g0jk)Oxg
zo7a^`SzoW?>3VYeynZB}cu>x5v@;P;;?GfkCLXA-{Bh=a3GRPLuK#tM?{OD@jfpsf
zJ5Q0P&vSVAX}P_pbi)+QTQnrM<8U$Dc}8BEek$SqCh~#Qe-Mu~l@}rZES`8y-k#4L
zI^cme@)LzM5pP=k?s7YCPQg?7axNU>c&xwj=cvEN{0;dBtbimQd|O@#-;YNo$m`<A
z@c4W3DC_Hr)p=jumU$>NRr4A9KyIHql*Qv8%G)tN597X={9f+MUc^Il<fj<dVDkm?
z&g9?46N}|r@dbEvsobtVH{hvd@*CJ6598?-@=lC5|1^y&yi)!+UJZ}qAK`WJ&?@B{
z(N8lxwpMP>%_8RC%2(0P1U$S!zK(gDiw8Ez|75vqaQ|j`J@$(~t<F#Kp#}9HoX69L
z<nvjN1>R*n{wXica?9h1BXaw`NnJdBRBp$m=Wyqk+}<<njwg@Hxs7l};VInCk2CPt
zUzz!3cpT43|6B3IiOl>VJc(QV3wZSJ%zWYZm<QbQmGJOCnfdy71pl0QYla6-W#(VO
zgSfqS{U)9|otb|hPvf63-o<$AY-WA~9>=Z!U-8Jf%={VL#gDUH<$GWA5cya6oQ&&M
z+`S;ry4}eBse$|cliPa;58=_vncl?mSLN?8t`2z2X_j60Z~RrOlT+S`<qp8px#afT
zemow}EzimRI2%vom$&D*w;T@?mzO2~10F6dA4xw)@$}7dJ8oRE{4Mg;%%|@I&8NSN
z{Bd@eig@G>`Rn9s;c2`M%WZ@QDwD^<c)W_-@;$9iRe4MDBk@o*d6MJL2e`kw+}>yY
z43E{2@8<$~74AMDx9g=HxGyMwlI8x6ha1R?a{Y7F>ikb$g?y<GHE;1p<+bsec)Fqd
zFV<H>JoTjf4z`mfxGy9xLY>xl;2HS_=D#!UJS%^Od~ZD5M81doXgt_d{xkj|?r$bv
zfXDG9z8T+y$DUKZGX9h0al8IJfG3_;z6$x{cp5LpJp7CMS}H$`dAt52j(hFob{$yM
zJS-nT{ffB%1-bn`@LIUjK|Ypw3*pg@a_grJ9)C&xHGRI0M>@;x`PC@g*F|ohQ@o4E
z@X_@7DIVymyggs~&hp*l_WgxDc=8o_3F`cVr}4h@dEIo5lM&^!PAl0zg>hd`dClDN
z+wf3-`LEQkf(Hi3?S1>&xZ}#LpQmv@Zl5D`G=D?+p41<N$MCG%itL|BcyO5VH?co{
zf`>=SZT+sW{M&N7e@x;j+@50}#^a-vx9<g9#?$Y}i*x)b7SnwCqVfpaPi5R4FF!{A
z_u`RB@~({cQ9R}GmUw8g^7h{Ki+Ey+{5R?k#AENuU!c!%xbH)GnB{(eNAS-0$9M{#
z&i1eZcju^%ov*jz!MSofe(uAg^W=lLFSv^PmdF>;r+<d#Gx4Q-5A%6H9$PB6d1!?D
zmdoGdI=q$TSIfVk&TDvhjeHWzeG_-q$?do|0gvO4G0zJv|Gn~8IlpW&-yz?}a(~5B
zJLT)~b5?(sybAr~nW=e5{VaD`FE``iU*z`pxdM1{uiQQtYi$0T+^z>YTAls!kEuTd
z_od`nAAe;3OvPgd<^Ayaxc?7%Rs3r_bXfi?<K2P>j>_$Gv4eQT;}`HaUWodIXR)0e
zR~_@a@Z^b1Z-l4*k*}mqJ3MwuZu8dL{B)*|Ge0Ar&%DjULucjoeB&EDa8AzV>FmaX
z9zSJu@V?ad&DMC6o_qjLdHh*CjobeCG9Emyez?tYTs(xAVY%<&5qu@S2oGFPorl?O
zx8m-9^2)6DgLwS1+<u?%X{&QpK9l;_&tdz=?R}V%xZlx}nWNONf%|gGllWs+=Q_E4
zU*;J+aJ}4qk4H;9e1m)z{dBeZx#eBieg@)hUb#JweH(Xfln<rOL_CVm!#}`-`INVL
zo?~_L%l(Y&Gu&T5Ztt<L!czt1)v3S1@`dD2;7L4!SH%zEG2G7kr*PM&I$w~_HCO8^
zSXgfBw-}x%BL9W{E8?+Y@=4Tr(CQSI+w+_zcoMhkfiNDqN%?ZDmmXHXw0sWBb@9+G
z@+NGz<MH@y@~QMQ)AD|KdFp?LyXEBe_nKGX;oIeQU-=`Rsw8j6b<2J{SXDlo<(|dU
z_%g10bI;Q}$Ez#<5dD|Mo%`fz`~f^&TW){9peY`zE4TO3d*b1GnLZJZJRrZB`J9bM
zAC#A%{}p%~x98{EtxiyRyWTsFr}6g8^L6tz-tfc9+w=A!cnY`YnN@M;QRV-l&;Q}+
zhVq-~vkmThOm63qfw;esd=~5LZ9Msu{37)~Fb~P?I&%pgc}8y6nVaz7vvPaxcL0wz
zk=y427pzWGx&6ME>p#}~M4QR$vfhj0$>#FA=(9ZTw3OTDi4RyEyb1I39G=FTQl}#x
zYOOl9J@mvQZRB>Gd>c=-lb4|W4BQFJZ97?tCti@-cCsB0wwK#+;HcH_D7X6p=M&A3
z(^=k&6L5aq?Jl?Vc&qtqa$AozaeoiFt;Z+uG;Zs$10H-``K-rQ**^pDRByT6FHFEg
zedYGN`XfBvPks~g_7$GQ?Kr;`_w`raPyPrVz-``ge5(0L4x~QYc_}>Y%E#h&;O=nw
zCF<8Te=F0UH6M}bUCl?z?Q?_ycyN@Q+XZI=9>VRq>r>o$Tltdo^DXYj*Rb90#nYpe
z-;STblVjx7@f-^@KfZBtJ^gc>!g$2vW$~oP@4*An%sLJ5sK=kd(;j~T4~@^P^BNxa
z_#3!yLS}wE9>MK8WG3#Ps65l)e2xb^{v95~k1+pxEI&zg4&eV;{mF7W&lX##c~0P^
zSa3}|HAQ)QzS<a1PLmI$ei#qED|e|g+VbzoKVy52;qG*K0nW2a@#t)MGoHI{#nTJq
zpR(K|cx<73CCj~Tk;WDNOn#E(RyO}a9wYxG?tCTR#d161sc+;vInEEn6Kmz%hC0*m
zBwo9i8l8drb}L_w{=dY79^ZsV@KWUW<57>F$KxI^@)^e&kKcu-J^lpl`&oV3a=YOH
z-1>L%u*WCkQBR#u@VLjn#giWY4NrUgJns7?v(J)ojW^)&`|%KN{Wrp0kGI9+o;p47
zq{rXJ(;lCN`}Sn^xe5<>{8v2W@r!r_xBd$))_7wcuZSl-b?V}2k2k}8zh?Fs!2=$D
z2M>9C0Uq)ARy>MFZ2!fby;`n$?j;&m1b?4=S={$qX1)RL;&y%2-tzmDHy?q=JiZVQ
z>{s5F`#qk-t<T@_U@EhpoLL|6U3-r%j$55u@X&$Gd_6pYTc2$#e=xKEp?J#U^YO^<
znf-r@`wq$LGM|U7zQ+rHq5h+|9dB#k!9P@|8+D$*<M@|&2R!np@^;@k01q6N*Wx%l
z-ttG}qo^|zcaF;Kdj!ky1aA4Qc<7k&pHSydt8-jF7r%_h@m}~%Uuqr#e<?o;zXwm@
zmVXitpHSYempb9TzvU&U)8Fdjeeh{`9AA$w!rgyVr!@1n7LTRnR_7<&e^PGqbJFVL
zwq9=div8}C@{drz6rMOO-#|YBJbFfM_xu0DgXiS7owUQ_xNRqW@W{WJ`Ehs(xBMJD
zc3$}z^s^ohU69-JmZO&Uc)_I_ZyLAv->TuEi>lL{`cL3-JcM_|olDB+VcrJezW?Nt
z$xpF5_#}J@9=fdjMtlqIzaqEsrtl>G3;9!4|Elu#Iaj`A8gI~fK0A4gd^tRjLw+k>
z3lHJeXHz_lA141Qp312@cAOk(b*{_wxp)G%<K${QoGUZG4^QHDoV;TB>y<Yzx19Cs
z@rJm2gYvfA7jS=Wxqa_r03O3%WxNw`UmoSn7g~LM4*75KK;F#!eyfk$cJdz{yis}c
zGFcyhUOT^}JYFAn^C@r3eGU)g&s^>+c+BI&abJPV{0ys)f55nw;r@b|`CWJve~0{O
z%NJ7Ky!Z-@EAH`Hc+jW3EjNUx@LtsKgog_&Z^xg3coMh#6g*T!d6zniERS2Ajd-xA
z^0r<M;wjwrmy5VtOnEyW`LaF`xwaky#WVZ71CQZW|3N%hA~XLy9>*>JDjq7SydCF9
z;J%yW_P*9fR=<?o`d^Bt@Ey$04|t+<W<Q7Vz|C^&=L(+0ZGS1TO7jrBMS1h;cpSI&
z{x}{glbL@BPvEv)4YT~M%A3!{Qy$-lM{ZNzmU{sA`Q>)L$n}l-kKlH`sE8+VUgvb`
z<7tn#!hK~`-;O^KJc`@=48@&t%G-0=81CYB{9kGH%PViky&v&7ZsR?Qhbk!Fo%No3
zwZ@yk6L@*tt*E^9`6!;obyjkmPI%~c<!ye7C74f-e~U+PJKycGd?nQxLO-YRw8sms
zq5d7pPb7Z_?z>aI0B?vV@b@^sx5mR&l<z~n2cE(k=hi>Gi3e&Z-+}y8JcifeIm2A5
zbD#3|eZ4ifQ%gREes<!~+H$+DK7c3d$nE!={ey=dl((Wz?zNhqczt<Go`)32eUHf(
z@!X~=o_JC|0Dlk<Hj#Iwelx4zRNexQSpDbZ=b4{T=FiLRx@8vbG?zE!InQ!D+*)qW
zvA5tUycGHUR_6ufm*Hpe#EbG?c;0U{Kfx|?yDzvEPvgB<j}PLJSCzNt{7vvAK8ksG
z1rJA*Z^Jwc#}giZ7x%xWd=Kh;ipP4$?eoEvmVaGt*Ka#;UoW}s@B48Vx8uoq%lB5^
z{*GIr?=(ODK601-tKu<_KV|v8%G-IT3!cDtQ)igf>8JeTjQ4#!-Cy1_r~ZRD9vLJL
zvL4ss@i*j4slUVWL**`>Z=J@K#@pfz@z9&f$MBJs$FF01Sc5wwls`fKiskXbjO)(z
zTCQ)D@<plB3=g~`x8Kv%8xM|=+uy~Wg2%?o2T^|w?w=?>LO%y_-z51)_Ur35sGrok
z@|t)B+&^7z$N3=c;uEOf+VU~wCsL;`o|q#KaQvKtrx(cIVErbn{%3OgeIO~^`CNX8
z@#guS_4tK+3;k5V6JN?lv)smbXqEgw=KmG*HS!kpGZv43E4T0GF2n=h%kBBVW;}&|
zMg0?aY>V>!I1ZQDsQ&%C<bCMB79PX*7SKPm!rkAMzk@o1@c40gDxdPR@#w#D`@Nm3
z@x(>B?RR@|-+$C+|GHt5`V2a{BDzAKRn2qA-@>28llXSFhyHjxxAHHu9%teHyz&Cf
z{~A1yPkx&EDf9gD4)|3(hJS<Kv043x3n*U#Z-TpcKm2vvDX6?1C#U04+&*vJiidp4
zucOYtxWBMG2ji`{Mg0Vd$nEdVh44sG`6cSO=EdYoZqz@#Z*^{y+qk~RL-^DAmH!=&
zRZ+eW+vi0*UQJ$>K5yEpK2vwgZ62!Qk%0VfJ{N9{hwqnvT3*ZThx=N|ZM{#y-PUq@
zzi0`bY$LBmKbvr;o%}rWbJjd8--Y{spnp7xH^$>HDE}MY8;`b^KgT>z$J5>9-{;kT
z@GYL`EnmzEIE}kw<cH}$*EaPN87J?<a__>^9)HgAQRRD)A8vU(iZ8+4@yg%GezYHt
zPL#JMUm&S|(zw;Hjz=abKahMg%j5POvM=sVR^G-n8+WG2UFvMIJZ}A5#8dbT@|Cu$
z&*)UunT0=#2dByH{&WzY!tH))4jz72`6|@eZ1wSO_(|M(Px&wL;yct&0x!q$tvQ~a
zuKW<@e-<8@DQ`ucKk+1P$Bn`}RX;XMc{{$<#(lHpcHDjm56_Xa**bAN;_(Z(i`(};
z9{f?ub>^wgA8fa8;_3PF0R4Z3`#+Z3@#>8EC-NoatL#$!6mEa7A%ce%DPM>4&X;&}
zi99d!oZ~0vXQ_M?{v;k)C11mG2jjkk{Da5z53BKb9z6lL@(lmMZq<*sl-~?j$CJ3-
z=e~%iar<7di#x4U=XvIH1|DuLxBV`Gr*M02{2Lx`lbOGY2inSK(&ueIGtYPk58;7!
z%0G(_$D?>Pw%gC~#0$#X`#FbjUkACpr&stFEjQXxem8aM;fa^z`&eI{@mM$cgpz9L
zJv=x}UY9!G;qF`V{LE(>kB*RUXIy3WsGrD4x&2<vM!4^7x&0o|_IPNt{Aud+!((`7
ze5}=ZM|u06(QG_0CexQ&{ju`;jB5)Xjmj5M{{S8wFSq?V&#xL+2)90~;W1CXH6F+9
z`M_Y@H&OKmFrP6zIw^Cx>#RO*%RP#xJ^A8$)u%IAb?kGcd-3=b`8t-{40or=?f$o`
z)p<{D&uvEIvG?UqFmJQ*H2yNzIV<t-bmgBSzXy+d{4(yulz)W$Ex$4UxQo}tlOAtw
z`5CG+fP5dz<JNx^_s>-ROXg=jo|+{uMV;liGg}_Ux8q@tAI1}SNAkJ$X<UIhs&f=C
zhx_Ns%dr1GfCoR7r`ev{Se-?3`+Rl~p2E9Oe<~jOO!?RF<#-aG$$I<^cRyGDDVBT1
z@?XmBxn-IC8dvZudDd-0_D>M^Etjukx$W^JZs)tvxbwC0I-5Aod_3&&^>_mBP5nRc
z;0o0-&y!N036EFBgDaJ{&vTpN(N%Jn`aN*pH}W+84(_a$H|IX_Q#`y$ZhvQI9q!*E
zKhOQ<A@g1G?$p1ENAX;2w>KZqxMDvke=Gg~p4cs4N}cC$_h<PEyf+^FMcxUYipTLg
zslOag?NPoj`Mr4fSNT=0+b^1*l24&dnS<)zIU`R{rw*RLTd-Yq#Qpy&f0R0daNh-a
z0ep((FUlj_Pp!bCPD?G3{2uch@;t1UOL#1={6(&#iv6zseFf#V{ny1)KKVW5o8bQ9
z@-WNohPx%?K72GDEh!JOpU%gVrR6i3pUqaMjQk$_1fIA}-jH$SIYj?=$oF#mse-5P
zlHX3gIqttt{t|t@jYsd7+k29$@OUkGJ-?<qZS|YWKVrFM|4={Cwm92E3p~(Hew_6<
z4)?z#U(Y<R#?xKo?=uf)to|$VYSgLlr<R-ODX+wHt>^G`f4O~b(g%+WklXi~$K%O?
za=Rb@1P>0Dm*fI>8y+4fuU13@K8HtV$OrJ8;pW4vuSN3TInF$UJ73G~@2z*j!>i<f
zF%M($P(p6MH*z_iUL&{XJb&WxwerWPQ}~Gban{N0dmInq;q~%CtjA7x3TL>^1go<_
zdFy8t9{XN?hC0X0H_AJ(9p*pE{A`w6{{cLSU!wme=07MOqfTEul9YeKb~PLK?~;#a
z``LjfewBBl{$)I{PriWqm5-^<)PDIcyeXbIATNWvmOm(O&pgb<L%+*yK7YU?c$)rC
z;^8C8-|thQ3dhw??7Vyp{kOy;m*nL*{*1Hy75Sc9RA(*j-rOo1-e$i(jr+>VYcp@<
zvo^?UpYMk%$t$wl=D2&Od?Edh!~@mj`SY?|Jb1s{W!}!<iCXgR^k3<OmK&%iw|Q%g
zhj9D*9Z@`1UwM1(@g43D%6C)$0`5E_x9`Oi_*={M|4;5`ycO_ZL;2m*c?^#<k~bm$
z3Z8sI{)48$8HvZ9l>fr>?X|euN*-rEFX4f({9TSGHUCkc$*%I(SzoW>p&s(j=w}G-
z^pe~4Y7|fRkq@BH8F-|xyba@Bf+q*ai?begSe=1#yYD`Z2M5UuQpcCoK=yX!$}ce9
zfcbFw4C+6QJ0s*LsngMXwERiNJKXAwkv~eE8F*~0{CT$judU7`c{A$l#lurF{R*C#
zCb!>LT>GTP6@5=`e=n&Eo}4b9MgL=Pca}Wsb~5{C2_Bv+KgRs*#6zFT@2CGWcr-5O
zvd$@TO8vxfHWQ~hp73~6Jc(~(xv%1}FIE3A+sR-&`jvbOJ_`>ol|O=ihsW{9@DsSR
zOnLL$PqUrib6JlM;Lg{|+vm$|@G$-|^#|ceJjQ-B29K;)9eb|zF&_2!20V`2{mVf-
zut9aq|Fb-9&$}v|(YONND?gn+8{tX(J3NBNHY#s*Cgc81@-gI>;c?vV*V4Fev+_TY
zuXI-Zr18agTRgrcGd~57Zk3NBzXbRHAYa7#+KMN)$?duK-*_M?x90$b&#52R<M-i7
z+~)aNJhWYPCa~OB@bnJ3&07?Y?3CNQEykT6<#u1Z98cgUsJ|AE|D^mS9#s8ien9>s
z`}-+8`iI=!6S#~A{*=#QKJ)ymc}U?q@xplGu=2Kk%i{hc@@L6c$6eg!tv>D?Ro*^V
zZHfm@%6oHM>WRls%a^eqjld&U<wKaC_wcl%HU235EW(31<md2&c~1GaEO!U)yIx+1
z<I+*wpI07Yo^zbnyhZZM3v$0u5_gNrZQjb`Dct@J;JtXdgz_$ZHnjRB<?nDDeg=2S
z$nCwRSMlhra(mBYG#<N6ZqEVc<6*x%%yQS^3EZ9o9Kr)-mACyU-v#y~j|cFi$D8B+
za+!4o;}QHR*6(yYQC|6O_&0c<qI@L%@3%aDBkTA2i|R93N%@)NZ^GR><Zm(04RK#J
z`9boXap!Ki{XL6Oc&LVa75PuBPEGkjwv+96qOQCi<8rcYOs-wGI1k9@;T7@tgYuDh
zBRm+CUtziJ%p1sy<8R<$d>#HC9(YK3yKh>Er*Ye!ci^FimAB`CNALu0$C>}|$Ro<z
z^T`tbX}l@ieh+G8JpO2A{fBUWL%G#&jwkU-%ujpVd0hD=jJF$}!0q=xOu}Q0l|Rk?
z{)ze1a(gf6C*1#xydcZXaarREJS+c|<4INA_q_aF@*VJabNOtx+c9{!mAo(gFTzte
zhe>BMp2nMzKZ=K1tIjKU?knmufm{8Gc(9G~R=++T!h2AsC7#5selM%jR&^$j{{T<n
zw%pZtxSjI$drkkqV;$x9Gd~5dvi-aye-W>ahdRqYVY$!aP8a!N_Q#=k;x&1Q0WZRR
zgXEjo9(Lm?SN;!v6;BS6pJKU{vVL*#wf#CdTyEd*ehQC|kQbx>mn}a^-iSKmaR1x#
z9xV3@JT^w2^?$Q}wwg!f_FVBI9v?5?PyK>9)Ms>p-0rig;VFC=`KR&7MCCugBe-u;
zW}Pv37`N+_PjP2*W}S_A47c|mPUHS5%FkfArE)UQxZS7M$3s(<zmt3i+{F*!eelRM
z<?Z*{jlyH^%HJYC0}s3>pN22TlXw&M_nnsiK>4=h|Hh-ZUC$KAdNK0a_LIWvk*|pR
zKUAH0cmq6%+jF^=cwoBn-N?U=$M9MBFgz4f-rmc47x&GS+y1o}PvEUN?rp>U^OWDm
zc76(XK9L9VXu-vEX}p0Ya(iF8Iv!st*HeAR3E{qF@>}e<YIT;&`!TLjRtLAwS!Uq=
zua&p$YBQe1?L2ZCkFHSOuDi-zul{2z<?EP-)_7!%{4V;OYWcNtoBxe?=v#R^@|W=V
zck-I}Jz2ky`Pz1pUMHW)cwfY0>*ckX|0#Itd%3+&wFOUZl3PEya;v_(S#H+}K|Huc
zZl8nq!DCzHXX$6I`44hCPaVLWZSsf7`}1hIAv{k1&2eXk@}HBRfG6;}%+Gh0|515+
zANT_9+a+I3{c2f%=pp;Ky<2`A-UCnlBF}f77W_G$-YcKTdOw3l56Hi!&#E^vu7mPl
z>9Y?WI3(}Ra_8c)Kjn?NUQOZY<MLwkQzWagYyJEFk*{XCkK#$(o)5f+N7BkSXSuU2
ze@fnwKKJ6mGx7(hUo5|t>*6nx58>&v%KyUrOu~~F<@VmoPCWFV-0u5|XWc+$ub0d6
z7a8wkcrb^a*fgb|zIY5T!nkJOiR+ZN^U+>BoJ+o&I>oadFkV}3@Ot?a{AoOe+i~?B
zJamKdUy|Q|`*O=&JZIL6qu1(3aXa5Nz<qg?x8s$IySV+nxK(&Ouksg||3A$0$v<Pc
zC45?LIKR9B^Z76yFO=!Mai^%<o~O;nL-@PQ^G-ZnT=@$uH-BL*H(f$*=aB|@tfV|Y
z`5|~5xBHIIaQ{upS7W(n@la{`O6rs^qUHK-mfLm0OL!EoLVg~ez`Non@W3sq(-6NW
z>kA0i)}xDCzCWJE?fPMj<;$p!-Ira&L$_x3SvzY7&))uVJ8pNy6Mp6Gx%2|uS5E#B
zeV)YQ_*%A;npwX{HoN}{%G=+C>5Kbsm(O9I6L|6td5}7}N-)or<pWvn|L`bo?@^4v
z-73o4b?HVtTvfh?I=M@#e&8<oD3<#Go~S0@M}8O{yIbCv{x{<3d*rL|JU6L+yr!Jn
z0_Q<Ife)a54?K9U^5*j_kI$mdpYX{2%8#Z_p;B6|Q%n9V{WQYEb>#M*-f%opH`CYP
zZaw+OEcahL@Swae_3tRnc!TmH^z%HP#NQ-80uMi|d<%}}EAT`^d6}Xrl*Usn<%_6O
z>1HiA+D85p%WaEC+REcxACAZUo#Y#-vmQ@(mcPPyFX7>?@^c*Ds@|gIhP%rz;cd-(
z$~QBvX?UQo+}^v}gs1w+<Me+8kM@__bFCU#f4KJA{*@XapHBbXad)u%82!w}BSYo&
z@qKuFc&6WStLmpm%I*04Bpw_kx8uOucnY`r-{Sr;ne}tt#=J!{>(|8NxYh50hsG<<
zYH?;+9sC#OErkasD4)drel6EGQJ%FKXa6+D15@O793FzZxSk$6&N4iO+j(RQ9-68;
z_Izm{?o5*pp`Yu@svj43@fx`EuJU#~Y>x-uliTyysO8_6+j(jgp1>a{paq<;{Kv}M
zbzO;a>L-C0CI1kf`bznk^w|@SE|uH+W3%x1GP!-fX1mp2F3)<bl>KvEd6v6Ue&-GH
z+Iaf^csmpL$f_#;7n_cQGQkB#9W{a?v`o6zB<+Gpr_+m_bQhg;g9s#*s+X$j)J84c
zofa{Sio3)G!99RF;~r6waT((>ZlJ~$)IS>Ba6t_^j=TQPz2|q|z3<hjbh_~~{h5)}
z_nmw0x!bwxyYG|CpNM!b2Jik9^W;DBgE{cYFEU?7dw&af^qb6E(DOy`MewhJuY%9t
z&hk$~Jvr-fZ0GW~nVb6gOz_%wm`_0dB}V?c%uW6LIQZiCm{U{M|L!t;h50qG=fRKX
zc++<=H{-)$@Fj3FK0E+E_kET(>3th`<Oj^nc<G1Wi{K{SuCoyD4_W?suyYiA<wwlT
zJvo<yNA70+4cPxdBM)xI)xQEC_zBCK@_pnJINlogD-drQyz6Hy??L}8_#F62s8??Q
zpTCFY2chQ+;48miem(RYe>TTE|4ZgHJk$R+fG^(5{Nd35bnxZhFrR~-26*~^n134l
zb>Q8<W&RH6`IOP~JLcw`?L9`%@0n*{|H<dDolAdU{t4(m1AP9E%+CbhXXL>j34Rs$
zN=W`g;9Y-WJ&%C=J>XGrqyNkeY|kXP8JCWOuYyOR=SuMIKePT<fxj1g3EbqvUEl+M
zVR@tfVNc|Em%&Xr4uH@7mE}JN{YCKf-<ZD!`TrX5)#EPJl6OCb1AGR2<+040(DPI9
z$upRn_IUcaum{|<$06|fGg<z#(9-~)d>nH#9=IO7>n!Hxe%f2WYfoT)9PD2PpF4;7
zJoMjV^lV_BfS>#$csj}aR@C!{{wv$x-Ot>tZ#)4!x`{d5bL1)D1K?)-c?tM3xY_SG
z2%dg2>$$#*4SgASWQ6(CVb4uQemC<QkgjDTpJr~}6Zr}F!1>J0xv3L-P(SxDKLh#p
zc<}jg=7*tw8+g}V<~Kur27LJf=KZH|fae<dY35%;2E7q{wZ#0ZSZ}$>=&3XR3gZ1D
z_+o>37W}8+-A(4^T+>M#Ib8!S=F^aWEchb$CGZ>Pfp;BbdE;*{HhRF#yyFn~61edj
z*MP5p{|Nc>Zt&&9tlz9>e%8o8i@Dj~|33KS<;>?`e^->#wE})M^q&V_dk)M02I;!Y
z@GF^{bH(#U&%ZH0h<ddIK6w>$b1(5-;7c!Hei!8bDaQ6JzJ&S9VNXB!z{{DN{pE{{
z{MF1&x?Tbvoo8M~J$V=S!fTk{f_zv8pS+g2Sx5Q{_`r3{P5pUvobBv>E%Qa>&(pw{
zU&s6=q-zp<{!PsP3GvQ>FMyl+a|3u}f#q+2{x5?sUeEji;P-$p-N4+8OS=+m=iH6V
z&qRJk!581k{1>oi7x=>4nBNNC1h4&jklzSC@E<{b8+g~-gZzKNSHPbK{ii0`&e}Uz
z-i%|T;B)U}{shRM555TgNaRBueED50Z|*I*7CgPk{6gsYxX}ZSW2%w6!I!|Vg8q|I
zY-jo=)^iyAEb!&`Grtr0ybXNuX68oE1o*%$%s+|xc_nz)$C=N8za4!3znSy@Mk1dF
zUj?rt-XDY4KF5*^Nbf)Nvi)73XWj!p83iBs5_7Xobv}4>nfV>ibHM2N3UmLxKO_HD
z<{ySVUjSeII&<@0%x}OW-(+s;b5|eiyq)={k<W4Pl{=X8|3)Iu03Y}klRc0>1itWX
z=FdiZd;@s*cbS{@)sKQNgI@tXcY&u@SU!Pto!rlM&VQdd|1TX20bd0_9r;!O@A?5t
zz7+Pn5Pads%zuY+f4AYkU~bN}e#z+n74zRf|El4u%p<V#^i6E%>aUrba~Dqm@BSa=
z2o-67&w(5JZv<Zee;xFH5q#ixK|LotiQ`=WH+tgWOW=dhb3S<2A6d_Dk^j#z{Ljqy
zgTEJi?k~*E{^@tYSN_WU$5<D7(39Do<r5}!jy(YL)&%&<$;=-Co(7LRl==Cva|V3!
zH0Hy||CfL-hWNXUp3{T!%iw8nv+l8K^n~Oe_7t{1^3SZttcOIwYv2voGYY;6{w(C%
zB}V=ctY-!CW$^SPncofmV(@`~VSYOFyd8Y<QOth}`DMc&&D{9&74X_)n49$e0el(U
z)RRX%74;Sz!@$T>!6V(Q2hAli1>ObzdDwF~_zL(8%JEw8^qH*Z^GMhG!Mh*NJO@2@
zfX|2cU%(@0vAmftpK~7DUjzRJ^zQ;spUv_u=x>5AgPZxw%fT1UVR=9Q!Iw5LH|^p!
z@aVbB&3tMVd=Y#r^5Ilkcv0(|k&P^WBkb7>z6kyW@G|&Zl;zF7!yCZ6<IHb>{1?EN
z!T%rlUyc3*%l`%Zi~+W1G07a+7I`N468LG5zY=@}ya@g_@N|mx+=TRg61=OQ`C(L`
zpMlSx$9zBh^T~tApUun{U{DHtVTk$d(0>W|+*amqf<1HK-P@SYL;pL#7oX1DwBN6R
zM|U#+Gd9@%Z1{!DO*x*ineCjri208YZyLPzOy*AkKMcMIZpN86fKOh+@@8E674W4?
zncstaIAI9oHOc%G_}jC=mvYP>1HKJ>rNG>@uQGVL$oz}g*mxCq_vOqlK|X&LeC`V7
z4*_2VUzlV5JPhm}vxV)9zL@#Fuz#1~FJ*4V!%gt+modK$^ZGY|uU^aiI+Ww*!RKGk
z{A<vEFL>>Z%%@@J>BDT#%A1+*K)GxNk1jC(67&?oBR4RA8u-h>2X173Cir{6Yj0ux
z9OVDE!B_u-`Rh*Rh>zdO_RN2P`PE2Q3cULk=HEv?6u`Sa#r(sNe*^gPXP6(tIP<^3
z)3-4{9r^Gp@Y<J{pKyP+=P}#Zp1E%@--Y}c1z!fg4C$Q%Pv6e+ZvuZO`05?ZPX)gd
zyzAS{%{=$i?Hq5{|6^|Md)xs&cPI1rns~vZ-(&tLq-zm8eHZg<VE>)qtKeq+?XTdq
z@3Xw&-8<NxRdBOzFbH1z0n3|qlmTA>H|t|_;0r%w`A5T^cY-g0UxRer20r;?mN)aJ
zUmAJv-6;2ep#>$?k97Tv<%ghu5PTAR4%`D@0lxwK8u0m_vmP@~|0sC+9_A*!%iv2P
z{zLHSFM{&F2VVeBBi;w@L_UL;!OsAn{3YvoJj%Bpe14Vr+aP}t_`to)&3ykLcpBWC
zleq?b`PVFO`iu92*M7tNLbTtn8TsEa{}A&3SK#x1V$N@UMj|JVAYI_5-8~At>#r<t
z(iI0Eh)n7fy$9(UGJ3$xe#FH_&+#lj2>BZLB)C}zyApgJ{0zvy27Cz|ZaeZW@MUnb
z-~DOuRd6$I{2_SP32cw?=O>MFK15Dre#>zj@#DdlPGUaII5G$xy&rS4|2_e}_z%oY
zJDoN14`7~q5G#5W_`+$-%{uwpz-y;7e+%sSPw?)CGygB}FM_W;0`jPbcZ1JAiup{0
z|NR*}@@VE`nAdde;(VAqi@6z(#lQ!iz<dtz?gU>toB0nS{4Wo_cn<R#_;bO#H!$bg
z6^UF2J_r89lR3b<jh+<C-vm8h0k8Ek9|8Xr_!9V~;1486r2J2JAIrZE={*B{>1oUh
z=)ax{9(_7<qyJ*?IdC(sJ`BFPljZkE_}{C+Cr6kYzxp1d2i*AWFMvlzS^lxe=bwW|
zcQL;c{owu5oUX2Y%s&YE^T3xcVE#Vzv-`p4FJW%Z7rhaD<x=Lag#J&1&rLJ`4#vYj
z1)nT4zZm89H}IuH%r8W|J?A6;uV8*X^bCS8KacryVgEkx$*Y)Ohx)u9Jn|yuXG4At
zJo;khW?%0O;43d>Zq}(j0>1Pz=HwRizdOLYUcvm|pnny7;g!s{z@Gc>;dHIOnz^Z;
z-QbJYFfT&SQ^32gW&ZI9|GN}?1>D@@^fK_d*Rp&Se*T@{t8ZlfYUue2`23rg51zsg
z?lt<~#e4(O`!8dtKa0$t1wI5m|9<AC9p%AS!S7`Ck(Yoke}Lti;5UM&Kgj$G;2#C=
zzM1)h5%15y2mX`!4<UcbINKThF!LM1p9H=FUIovBr$55-XFh-*ybyfu)6B~#$9I9R
zeulX@_x>fL=T_#|u$stkj6C?Qu>a9}+0Laev;2i9_aX4^uQ1Pom%!)0%6u>Ec>(z9
z*O?!O`Q2N=BX==>ON9S@0(=qtQ)qW9;B$Ag{CSUJ`M-fLotV+U)SvEsZ2#m*%)bvk
zaq#rX%+2~|8hrVI%uTshjr@a{f0(0<yaK%I6y|3g#}94-ANVKcW?%KoM$f6tXQ5{m
zd>P!dyHhV<`{y6b@}~cdgLgfIdHpz6^h_iFQ06~@{wu-f9>)AZkbjSnKaKfAQ0{kt
zFFu_4rCqG(58z!Jm>)*@o_!(gJeRpyKO6;L?P30(u%`vSxRLqU@B`O^uOyhi?Klqb
zQKLV_+>C$jFnYk@9wPq>z61{U969Y7Z09mK)JM()UjaWJiiW{ghdACG>@R>%Zejjj
z@T<VPhMC_V5xfJudn@zvz&~O1Y-4WP%L@3?4(4Xw7rBV-AK1zK6NvY*;9Voke|8){
zcq({g7xOX5Uj#l0Zt~}O;I$B61fK&p>rr=rFMuQ3$i3i;A^yN;vi(co#=kudJi43h
zH0Ayj@Rc<49@xJdyz6}C#((CF{t%x9uk8uSzZ|@KEXZ#JUk>qGz~{zUejN6E348_o
z+u*+hU)sy^PX_P0nDZgBkNHL5QSeD{vyPnxU%7zguSL5nfzMsU{Fm@=*Miq3nO}Dt
zNAO?ZT~o|&L%csR`oX^ge!ojlURmfzJB@=c7MMeQ<WeIKK7<EXf_Lp_dGns>yN#Y1
z=3hs=cZ1KDn7<wTUoJ)cFEcNq;*NkXHlQE!mxHI9%wGupF7OrbSAzcte6Gdvrayhm
z1joC2koob)aey)K$Sm{i(DMTDH27BV_kk~fpAY^OqvtT|`7QX*4SyE%KZ2h$iTZOn
z^V`861HJ<OSny5YUC(BD<A=w=m%(p^{8iu!SFrr!P~R4e{2cS+ApdFb6>yW!KLf8_
z$?`9U{3#jO|8LBn0UigR1pgBFKJe&sS^g66XMxXyn|^ZvJpDYD&qDsc!I!{`;P)8)
z&u96>as1#RQ*3ALD(1#tJqdgT+>F~Z;9W0ddGmhO)!^MPX6_;04}s5vU-49a@ZUzy
z=UCp1SMLR{fnNtbr)AmBuFtc)8Mizcd>;H%$mhTp!OsML9ry~k>1RI=9{B?6e?8=X
z4ZZ+=5d4ujwx|16mVYStcJKjkWB-2e6>ww!OTi~^V?D<Ho51J5jh;KeyT2IBhrfa^
zfEzt$du-<txY6@;@X0R)^_0L@z>S_)f=9m0@<z|i;0xd;UEc=pUJj<~_-VFh0Nm(#
z0{9BJ(K7-*`IVra7Wf>v(eq~T?ym;Z^?C3GaFedzfiHm@J&($>os(Y+>KOuG0XKTe
z;E}JhywUS&@C9&_u8)9se<PT#AA=8o8$DeGwr2(0=y?+O<TrzQ3gC0#M$aq2yKfJs
z>%-s+;3i#ngD-)91oiyHBHJ@}M=;)v;0xep{^)_%zQywIgq}BocYm9?89#gjd=h*V
z@(<Y0@h*nsH-oQ+_;bLc-wEn}8+a|m?=t$qcO%}1&2YSt|Hpb>4IT$y0DlSi1>n&;
zS^k9M_`zZDf$uWE3i59PUj{e&m%wY^V|kOGD@M->^A_}+RAM`qz%K_s8+_m{mcIgg
zr;!JLDR>Dy{r#Z)i@}${&w>2gz#~6k`2*me1D^vo@&3Zd|B&TPK6I7Y{(10!hn^((
zz>ipd4*Wv!C2*4uhm8D>S^hPUe=Yb5cpd!1;FEW=ywUSLBM)x!^Y{weIr)>I{>Oqx
ze#+eF9{`^NH{*dk_zL)iu;-=V13zOurr&uF_!79u&o3MKpR>FvmtTU{z>WMVRknW>
z+~iLbeEy!G{d>T>ei7u)H}c^9u>XDF%izZU+zwv*CF?PM>@VP};2WUl2{pE}`&TSq
z0)IOAJopE}XTZ~|EPn&|3&11yGB@S>R`5A+Q@)=t^1o(z{@+OCyWlnOZP5Qm@TCy{
z=gZjsuHUeR>mlC<z65UU90#xc56k}?^0VNRzh!RhzYcr_d>-;2G<yCwDF6S!SHVrW
zpHOEz=YPlYrrvG<@A`dE&!~|HH{-?%c;pW(Z}h(md;#3(e;0W7A6ed%@7Iie@T-xo
z-y8Wq1@%9&!S*kK8~x{j5Bxc3|Fn?@H}Sp{Jo=ZQ{zdR*aHIe0;OV~x<$njh3U1^d
z(PTSoe+$|(4896(?5TiHMy7NQnEbp3JaQa!qyMAebKs_)+-2mCXZaT+KTm9-+`(T2
z{si#u6IkBp83A7aH+rhz(GywT=y@gh61cJd7VycFg7$wGd<ERdM-H%^bN36%p8+1Z
zf6&e?MjreIq$>v={fD6Zi@+DbO*?uQ_`m~L-jvJNjXd}Vq5qHIwSQ!J<LA#h$o4OT
zKN0e2@W{zQdm7+#;Ioi_wUK`y%fA5pgW&VvbKrM_cRh&Zxz<G@4?BeX1UKW2P2k<9
zu>5DB=b7NE;70!oz-#}+@`iuF$b*~ubGwo6V)>Ur|L?&gr!qHwH95<6rok_U{3YOv
z;133WDflw@4d6@Qa}Q?yW}LPP-t`dXbC7@dVUBkm+}OVvyz8MXZ|3_&@CESCL(e>T
z?O`l`1NcY5yH8_o`uCq2J>VwZ`#+2A={}w1O}?E8z6f4`{wEvxe`a|zjvWWDft&G0
z6?_@I20hn+4?LXpRKRZmUj+XO`0e2Hk6`&5!2e|QJd(N5f5zpUu0?R8e=B(Rzp(uE
z&@%(R3_b#WosoYO%Nzb#@EW+OKfgA5z>S@!J)7;Bdo=5rgZ^Rg$YYorJD&+&1Ai;z
ztKi+;EI$MOD)4#mE#MynUjaAzZv{_3mh~9@-vf`F5wz!z;5Bd~|Bx$Cf6ffbp94M*
zZseZ|KJYk}H-4`Gz6fso-YdXsk7s$ae)3W9uCth5hV=dfd>;G;@UG{uodZu`d6N&D
zz!$+EdmIP21bpRemN(;&=YprtVSe)QEdO@!$tN;5<Ew8Q`E!~7FYGyej_pbREAxLx
zyd&U|jm&@D#Q_c)KEQkxdfo}X3U2mczX`rP$nyUI`QL-jZDzg<e%6(+XNdW0V9y@#
z)h*0F0Qu*EFAg(LLjD6rek*g6&tCwa+{WD0hwp-SZD)Qv^q=@|Y|kqA8^O;8pWngq
zC*O}B>;Yfc&HNnf$IXH-?_vHi@V6R0`<Ulo|JT4H7c&1U_`TpO&tN_W{*dRgos-XG
zz63kZ1Mj|=`70rx1z);^`K6G*%E({J{IcWu!GC}+Ofom+{x$IV4D$yeU4J$5Ip$A7
zy#M+<wsXZ}ej)gU-~)N)_a4vj&Kka-`EiiH9y~q6{4nhQ0{AkxX)nJudP*#B)?3bc
zKHD=79zncMGrYp`#y{l2BUR?cKfDZl3Eb4@n~a_s%bWWA4e)54x#<T_x{B>t1b;u$
zl>o0bg7!QUd<ERtb0zpfljY;cw|5x%7IQN$x&wUf0CO`gI`IW;Px>J9U%{S-f)5;G
z{tw`18hP+P9nTLEhChqt^N`;Pz7*om0FPcC)L#G}0DmR)TmilUJ`es9@Y=Ik&u77J
zG<vRJ{#NAAe}b<*hxzr8Kk0>>4-0e5-wnPSJbfke-+)gW{%_1zj^_slz@yJ+Zv4;7
zz*oSZ13lM+PhQ3H*PX-<ZU&FMl)0&&w}IEde-Az1H~eKR{|V?h{zaUwfmbmvL;ei#
zMeyf=r;PloS^n&Q<Ofd&uf2)6*{Alvm%;ZKe+VAEf#qLzJnOj{eCaLB&xM^gfv>)u
z`IDgM8%EE&nKxkPkHHtgAB}y_KY=g5kLAty@E>2y`4GK{`4aRz7JL=_TErU%pTC*q
zp91;a;LG5D0N-!;hgkkv@OkjsEzI|WzY}}~{K=@Fp8@awFw5Tp`R^Ec@E?Nz1bq1;
zEdL1b6JNsVT@CR^fp>kB<xRcn1)l>qer6PW;A1Rr#^=-Ei{QpTUk)DqFP2|~J-33d
zfIk!bl$WA@ew^hWjC|M!KDor)%opAOz6$=?<5|(Y;7gxk`6SBmX)j~_k<T(W_2G5k
zli+4u@mt_4;AR~4xR<k@mCv!BRmAIoFW<`iB-sB^BYzw78OWb@HS0-#nfWQmheP0#
z;AWhEC-@Th1<?Q4dDheY71m??e-?c5tIW;%#?9cX;AVbz!Yf$M($`r2MCeb0FMpl+
z68N>?^WS7{+WQ^gtKVXNH{?%yCGzb%%r8c{Tns+&J?0-jo-^Wg;F0e$zd!uLH^IB^
zX8vl(KlD|sfAOcx|APEH-|(L?KMnkC;LG4<UE&Ae>7TQ_nP10W4g0~(KFD*xSMOnY
zQ(m`&r+>lxR>b?@YgkYBFPT3Z{K?=8;B!cC!N~s)%U=)q>%f=67m&}(;I;o{`Mr?;
zlaU91D)@%iusvPBWBIKpmuG-a{*k$vU%VPT{U_$r(DNzqC2-?6ehWVLXO{mu?A$;O
zR-KEU{44WsLC*yEz~7j^8}cs#UyWq7r17h72A@BU`5g4z3Ep))^N)c){5p<z8T_Z<
zW8h0Cu>8ds=v)Eb{XpiQhWx*SuY!*q&ksHWp8hA6f9na%e+3?S2=h-u&nd5kJ>X{`
zy$SHh!&u(b!!-DOh#v;;K8@u~{k#D@dOGuW!qI#IeC6@XuYo;xgU_ACyaoQy*Rh?E
zCoq3G_|w4W!Oc47e(>noEN|v<kA6MtSp`4G)LZcG4J>~t@-y-VmY+M9`P)w5h&O>p
zqs%`6d-C9s81v)q&ktS;-qp|iM#z5>d<ndD0zbGHeBdc8zYIN3d?VY_wT1cHG2XZc
zd}%v#GylB`ytae+ZxQd?41YRv<Dc&UkL+Y_=2NG<iQ^p@fga?~X2W+gH{<-Tfv<p@
zasJesS<hmc<xM?&ANbt)%#EMF{{rG2WBzTF*CpWHdzoJhelz&oKIY#+dQZKc^-NyC
z{0}GagPh^dWPU#Md<cB$V&<kkKj;S5vwR8j$3cEScw~b47Ua+8z|$G#X5Rhy8(GiN
z6!Q}Fw7{b|=68VK0^T*v+_ab9gD--c{2zV`>rdyQ2l+4$9xX7RhyIU%FBO?T`UDQ}
zEAW*P^E<)MAjhKo=TeRN$<Ut$Uj{e!JO{jX8Oy%_^6vqU)R}KUzjGIO^k7hb7d1c?
z?*O>*p9A30Lo9FR#WnEAEb|ASz!AS5y!&$IuSY(70(|M&%uRp&OYoHtf6TwLJ&`L|
z9%>?K@Gfwp=L+yB_@7Zv-edTc!Fay|o(}N`{s+ff12^$L6?`rvKLfr1{uKmxy^((|
z$NOHC%My6>dCW~ed$-X8ZpPaWdOO?G{d|@;>mKKU*T64<{)6Dl;AY(WI`H&WtjDb9
z-)7{&-wZu}Gx}e^@;yjb{2gr1!V8(FA)f_b1vlf*YrvOY#PVjo^I7n@7c>9v39RTR
z;FB+BZpPauz7yqgHS-6dK0gk8?$ylA`2R`ZE8sVr&iXF~pMMwhpq^B~7v96%^pCFq
z?|v`y8<5_cz?Z@Q2L5xy7g>HA^q=uAl;iuE-w*luH1OyLn8VD-e(*H-snGKp@Y>BR
zZ^la>0`K||b5rhjfX{;;M!x;Y$bXFGFNZykeK*@V|6k0%gmgU(eDdSWO?odie2KYP
zubTy51~=;=Zw60)g5^y<-)7{&%{b(DM*k;S{@Jj9>wDPFmCrJdp1_7)4c>JtbLwvN
zzi)yseTn(kklu&Am-Q?xGvA4P9sytdD)W~>&vU`&zRBFw|7GxHaFhSXEwcXf?JR#f
z^gk86_ATZQhdqbE=fBOo5B!7R%im#6)lC0e1)uvK^Zm%5#QQkj)gLl9`x+JS+K-q&
zjMYTm3qB8?ft^1BkNkw??}7YTH$gx6H(;j+zWg(muRwkdeBkHI-wOU(qX+zH(DO;~
z=r35_gZw?<3*e?ddg%Mvp4u;2{`(K$08av+{5|t8LeC_4^bgF<eE(+f?msiH!Jd;p
z!20L^!u*ZkS@7uJn7<bJb_@9OaXB5M*?)ZS2U*YJ@ys7^0vpr<Upk5TJD}&2;I)5X
z{sYAOu$x)W<Uca^?=uANeh~9%$bT4o{uJhB{Bz=mkZ)bgO}*U#z6$;V*i!_bdkD+_
z1o=5{^gNXLv%qgQdcgk&_47N1KZ4~CpU44@y9M?<hPj!ao(n$N&HQ7qX9&FeOy;K|
zKMUXkXEA>-^5JUm)h95&4*WCV^XD+X754uTd~yTx8^O={Pqwq`iOg@iA3xXyz7k_@
z`oR~1FUFa_4|+ZhUP~}H_g9?$Vb;Ie&wK#ss)0wJ!h9b2a5MPQdCbp4KA-Rr))UzR
zdBnRJd>-7))2{}v4YT|r^5;(Q?rqFXKXt}OS^og|KSTcv_$2tFq33<zbK6-DaO98R
z^WY!FgB>4Z{pqK({N2!hE%?Ar=4QR+Ti{FJFM|9T{{=lGEPn;^a|V2QH}kJT{(az!
zY37fFJ-;>b=QDo>`1X&p{^%HUQ~%!xz6kyel*_%~^Uq-U=c62xORT5+V&-pv{5<$l
zhWUlC{|+PXG5;>?fAl9<Ph^^T6!InTXpy<G^TXha;HEy@|C6j|em~3q7U|t<c!{}@
zzY)AvW^T&mH{h$_zl5EeKgIf2DlESN`S2R>uFIHz2=ZSCUj~1;N$;mw&uWO5z`N?K
z$H;#OJPLj)^qlnHtS23kPlMM&{LSF=A^vml#SnkWXITGoh`$1SHN<}a-qi@&-}714
z6AkfagQr9M^WZgbliq*+9P616$xneVhWH}*a)|#4d^N<kexCJrHG}qF10D_WyTH@n
z#?I&$SWhh^e>wPkh~Eaj7~&7VmGvx#^cTTb!OgzO`@kn#Z2t#QPksm9eSo<c2X46y
zc7hxEtHGlOS>CK$-U+@6-jDWm&KFrvbe84KIQiM&i{Q7zo-c#X9}e2{s4uae6>wuu
z5q#lULH##_cVEuj=s)hutS9p9p#I(9X>g<e_26As1m%AQJ_&B*`<7XM_j6c&7uMwl
z!E0ABH}i`~zS@(oM(V9fvsm_en%<$N|HIS29yi^a>`6>dN8NuBrrwkbqfC?0M8?HT
zr>4E$xR;Did()Z3CT|)VroC*tEXC%v(_|t55nEz9=ZgANlAW5)CES0;28kx4sZFk8
zBRd`2WdCJ+>Z(l`>Uq7+Kc>m3l#|I=HkZxyrc8`RHl8#@{g-LKi+q}l#st~v;6INv
zB;q}Qo?p^+Z@T1Vo7qgM)RU>_8xxIYCOcEk)O?9-zN(&15uV6br(2b52f<ovs#MHo
zn#F2mbEaM|di4&1nMN5(I|!)w$k-0{&_k-1ogc>H{cAjpr+U|Tnu@IzZ7dpJE8=)G
zxmL`{=%%%z?vHI+Gw$9*|5}kJ;(fhq#on7rCDw{QmWW0B)-oX88;>Q|vLF>t#{1VY
zAx8O=>RZc*cyv==EVY&u$=If3BD$6t{fYkm-sqZk^!D}j#baw3l1QXd$>iE~urC&+
znAS2SmPp296xCYB#C!XbiBxj!TAAqW?~86aLf!03^d)2cooi^p%gzjrjdrO0)E7+6
zHoZnq(r@`bO0}cjNIBD(X+#=@;&ihCr`6|a|6&|4(?0V1?!O3JPEXlu7OJ^@nNrIe
zYIi@no9PofAJP_ZgeIP8*FVN!QzDw}otjR?dlTA8GR?MADr*y*Waw9ND%QWLw_mwl
z`js`m8nX@UEbEzr`=+b)nKAqh`XeK?uBYLOXaeua99%oR6=+vc$!^RvtL0+0XQ*1P
zW$NBwB{z03Q`=jtG}|g|V|Fd^TC*OiG_L$$F1Mr7Y-=hZ5f$y4GGonZ-CMuZno00=
zwOg*MRiL}{`%xNtxb+m{lxQ?2RJLRyAy68<ko!vZ^`_!e{WRX;%9ilQKin`tbDkaz
zB~pEx64}09rev9^g<3ykv(jiw>CHqp(MY3jIx&^anb@-N=~yhDn@)J-k&`~{OZN6A
zH}#ULM9#M?7f)`Y|4YW>n-Zx_M%GK&f1CU<O*XNKqRU15`m?>8{83ys+ZW5GV!3{=
zuRr6{oEa(gO=qG>@)gZO&(^wks1~Y7`oT!9(}QYWl&|K)T?ExGuU^TNHfC$B9{T@c
zE)*~za47FJrw)W9{Bdozce*bVol1E*S~=qSk|bx4@shb-FYZmJ;1Uw4{@z62l#-#E
z-5XE!=lbG(5wDW1=8Bd4#{G?IrN{T7@JEU1DU&toznMtIYi=wwn>8yL7g%3Rf^igB
zU?5F{#cX}H)~s%9mKs)TOr&v<CPbRFNvnBfSF@kw0FQT&Pw48fajHm#o6GIn7b*u;
zCG^8aYpU}@74m|$LUw*wDDB(ZF=V0M`C++LB4@Ynf{v=msL@twUuVN|#RC_#Jw<6X
z3K=yvohntcGa>V)OU2rR>Te@ENrd{`*7Wp5G`e{Ze{LDFg`S}<ypU;Z8yX#KltX$D
zlM<o-AFgCK3z0cO`D}U6YwV~Lo1GQ0%$7_ub0isx??@tByd#QiEmn$+LT5!(7gg=o
zDO)oKa^5-x$vI^zxt-o@ySk|c^{At&U?>~X)zWN)B=v9PVm+JeIaIAv;IU@i%XBCZ
zD*6}~{NTO|!>$dQ9GTHAZN1;li3>+ZCkFRKHjiB}n4TEhzIW^9iJ|e4$N{gCtJXK>
ztEEgOKT)mcHy+vujoCtm{x2S_k=?OGG}U8(N{9lxYhERk(f38&n3oC9F^@`};MI>N
zyy*0gMuEwmp=yOD$rT#)9!=<awG`_;+7SIm6+ji_P$^U98hJFvH5%TIN>*3gqX}jz
z`%#5Ca44=k%F#!r1G15*!M0N`)(T#|a8P-^!Qru8J3`ggwjnja*DiL=mS&}dww6|{
zYwO7H#O7y=4^M0z*^!<Y9UR*kQU5dX3~GiWyG{S;mB@29X$)Q?zfE0(Y*s*O?6UA+
z8^#Buw$`iV(Q2iGUk-@w^72$;!{Z@I>1g%9Iwdz3^W)W#VzXKD){!I@9IsNSbx4nS
zYC&q<f}1mq_1LhxuDa%RXeGh*6+ya6)sMylgVWQ+ir3yZNIC3>>C`m`N={2}snW8V
zpkCFetnx(Bi2r9y|5>f)b~2>Dm{dGdBg?szIK)`13AgG8ym%@V+tia){aq*%*B7!x
zV<WHLXnMyMe7f#=hr{K(zL;s$c1#vGE^E=OITV!qOM&{&EDiXJp63mXjP4x?iPYou
zSfrk;Cn9yVZlav>T3+1mef>XzD+y~P(hp(&&_2~H=-0BPN|WA6G{32q=G5w~%bK$_
zuT-qe_(DZ`8US7!saJC}*z-epq2Een!#)lEtW;@69t_@&g3klLrW%fF_lMTv0#6`0
zYgRaOyvA(V&6s>P5U&^dozDj1;-9pi(rDIc=GU`9?XBpQ@(q5JBvWiQ=#eQ8#HbdN
z_IOPS(a0R|A`P#ZpU7vkkqI7lPRw|-6SSfo{Jklj34^HsAm<R2ATSkC^<+EM;K40B
zFkg=3i_Jo7swZ15(-^UuFL@hj+C{(0)VDW!w$PSMtJI_wB=y^?t8}Rf(X(Oga0Rba
z^XliWEd;IW)mbW%_gJq^lgS6`#iobd2r;5<I?+R=YAcs6Wtz02SKgST8JJi9*KFO(
zd9*o}DgA3cTi=*16?-^cL*?9kNZQfGSgPiWmH*=itF7k$WsKB|O&9b3moXloo``m-
z{x74<mb^@T{Si{0s4dtYwd<CzS6g(p!*6=#nOCkgXNQ`H&NX0&1JUwIvC>1+<Yul~
z@p^oRlPTqCTP`!}gGQ@XtJa$nv=-3D8Z;%K9t@kqMv`EXIycZ(!=vQ^)g}6fRFT7K
zWD9hd#)v5ag7p4DzB)mUq=vs*760!>F`vn*jYB_Bv9gsG*S*|Op-AUrjH+UTbojrf
z>zT4wQ^PQ?KH*iU=W=3InJ}R;VM67CABHluo*BI$LvEpNQ=RjsT6tflT<|ir3H!5}
zYn8ml7;SD^J>|@y;gVOjDribb1N~;XHeoYJPc&-v>U6Q>)iX^S+6p^)>??@-QCm5?
z1!I}rsVP>b{V)_?)@wAX^?h8+cT}crmKA9=r|Fe^VN<Y~1BZO3ign+GWv^VWQio)+
zo)%SAO8nn}AHf38S1EUt88&w+-oX$ceZDU00?YmnuX4bK({+aWM1sD6X01wy+HC3b
zB`xb0*e1(nina8R`MFV7D7BbO8!@H}+*YkutM-7zbf(cH*Bl>LmCgk0IZT5g+RyTT
z+xTNq3yX)niDq>oTgo&V)-L^1@diDYh1D>?6o;eQ);9-A^(tm7j3a4l7U`xz;$=1`
zdgy0<PpeX)|M)Ra<r@b*&&jVI>NK-7LgLQR39ZhR)K#%NET7$+AI;QfE>Nwz?mVD6
zK%)=q0Mu_=52lMWcPQ(I7#NsQEmcXef@*XUEEGjXs7Ln`pxn@G(R18NtuWh2XY$@y
zAnX11Nb5Ex+w<8Pxiecnl$;W|Xs<FHazCS9In51!kK6ERC9#;DakDe$O?&lm8Z`TH
zs9H4TM&cBft=st$36%y*w1Vr0BuBToNTW6K&py+=M7co``^c|ql*iR<rA8^Y8A$HY
zadY{s>Qrd$iX509o~CkjQkeB74tO?lsw-+W*_TpP$^Bs^DO!5yKBHMdS*@a)Y^KMV
z5*3D;NujeLls}l6vDw6+Xj7^{KzxW+Tpg#Yyn2~>gmTL|n}bvh{V-Ix9@S(g^T<+r
z5Jp#fUl^61LKLgEgCc#UT*E8d`H^2ks5(%GO_M>BBK%h^hK*B8@i|3Gh3n*Gty(Rq
z@k6C$jUgvJq&D=+)Rz2^RQ}<dERRvik5N_jc2Q?(i`l7D)~WavgZ3%PnS9X}8Kr_|
zFN1aJWvz~>7S;SFH9_A1MFQi2GRxR7hr(bg49H<j2a>NFk{?C6MFS%x6Yf)W#SH{h
zp0qkWF*Gr%GQiqETW&NHDyfWj1`J+}4*Ht1QO~oqJZ?(`fx;sP8o5wMG(lx%!;;4v
zY#p*47Ugxl*`n_@&{BMPi#vI4)is;Qc?bOQoiV|y*Q<5fHK1C3uKwGPfF|<Zp<(sd
zM-4SN2_h=PVlKp}L$6cj9t=tn$uxtA3bk6F4KiD0;<h&<YgO-%R(_3Ui|(LG`?`{?
zow|VZF|uIJ=8Cy$la_C70nyfYE>x0v^5RZUTcd1gZYIx5ov@z?F5IE=$bX{8cL9ww
zLZS3zX9B&g8Z%N=sk_yp9OdC^vq0V?r;f+fn@lRzW^sCU0_7!)HH(c*JzFR`gQy~v
z(^NfEw@v_V#JAMRWb6B;GC3*^PaB+%jy7zP15c<flG}72tMTtxF(2@)Q!N@%V{GV0
ztJl|D|4E(X_Do|~kCuHY9z2Ko7bRjn0L^krvlLh@YpAmJ!_o+_yj|7yX*-7W4td!T
z*VEAqKU1O=Sf{h0M5)%UP6)YGB#8IAU2-*Fb;cDmhHL6ULUzWXWo4iH+hni9NTL?9
zj>=vQYWzg0rMkehfPi(H^usy<I$G77INWQ8U>Y29KyE63Amg+G+g{w!FHTSGo}RYt
z#i=w_KlMVvHseUyF(2ilpPFo)W@>IFm_C@J+T%YjQ1Q{?VBTdEp6Xm<_fB8RiN=mr
z9B2nq7A9<6ccAq$1hX@$8+2pI&WunF+rsdL%64Yql>S8HV6mAkI0a0$Yaitzf6$jm
zxN%`>m#|Yas^ep`<*BM3rbwbr9$Tei;+-<Hk~Z)3FxnROG!23Rm5|b1Z|=%e>@3g8
zLp#aISG_~UrjyqF<(eLRI!Fzs>#j__8KpzNjzq>kyX!!wz2k_m^N^f|KAOW0RM#Pz
z75F)pAEPw48r;#@RFcYZH4+W@kXo@)@p5XgOe+UgmR3^LGN}brNn3~FHm{W%46cRH
zUM@`_E4i9&tqRq>>;Xc0hN%MaU&>b~-=lGG=HO2^)L_C-6X(A^P8niqeIRKoku9jC
zEpG?fp_v1v>XMXdThiu$6FlLYln*p8RPm&(F{NobOyO<zsE_jY<eCkeSI)A5lNc-~
zO_hsIbGEQu(yO}*D3Gi+4(XL}GY&Fw)vC3uGc-4tmZaJht92?%X`=1S9c|UKnUb;w
zPfQ%hHL4S;g-uY!@-qvZPL8QZ)#+SjR(hUQql^hi1q3S939MBKhwRnJgW8N)$!k_~
zRewOZ!O(1milgMN_%U(U<vYu&i5#`XcD35SxLP|(9?)lXg%w9X)>5_M<y1@ZlVUSD
zx{j#*1R0H6)KHN2SBDQ}Jz9=;mO;%i;=0;mI@kQtGiejp#!ctku%c=iornV)(iuz2
z4X_Twth$;fdT8p{qld^CpBot)MIu5wLWB?WklffT?Z+LmnP496YL#6r)ke=)lSV+!
zW(%RMG~GG3Snat$ZD`aZ)1^#a9qd)xG9zS;)vBN95q)n`pRGPu6a8mMiiXfflp!Oj
z$3L>7BS_?ErlZz(k091sk4Z}C2zsVysL&>&^MP`DJ8e!yC`$)v@WvUrw?RuF{HHCu
zC<9v+C<uk#Q8_?M6FH@zq=X|>D8swA`dLdO4%J^M(MlB+!&IUT6ljc})8lGgc$}uw
zkDZ=TLC?6)*r4G<v@xd4p+~!_P4{P-9Bi?nwmQ`Fokg0Y(tq6~`j&aho<@)U5BJ3(
z<4n3}@J9o_b4d^Xr8H8gt&~p<wd${a(y+dz$DS%R?Su>s+7XLTk@ERnHSty{QT3g6
z<r-=@N-Bw{U!-4UH?^e#ZCvQKV1udwHBAS5=>PN7L@1O^Y0@trRR(J9V2sL6r9wrd
zm&gP1bjT9rxRq9j^ejNR$sYQP)^|zNR*N>%cU6tkg5?e{TB(K83K;3(KO9V(Z{X@L
z=Ybc_wSIT=_9%80^>&+C*B-CZ;^kPiMeAM-n@8O08$El-`_i5(<vIUlC7i9@qllWe
zP<eB8=xF!+>^Ak$MQ5u(>=?6)Y_>|M4?8AH0(rh|XwM!mPpy{Tk)upMCWQg35`PaR
z@%vb~t!9yq-<NZ$s+4w=YbAG&eEo&yt6A%K!1~pxO?=*%=%Gz~S`p4E_a8h*z*SP%
z_UC{NI`Cso0yKI!_}?SL$tT_SqEG!jl=L3E66**3u4Jk;?K=#?bvTL6x1Ttfn%zd*
z-Sq9=vUe`+VK#eqsGeb3?MbX1utOUaqOg+W64rN~CCei%ZQ9Y9W%Fmc+zdDp^}AN1
zmtx$(n`Y;#M`P4KIZx12Ir+&Q;ob_ZhSPaTFQ*0}Iu5ln6KT<UY&GX?Y&EC*slTJ$
zvmnZ3v$R)0OVVoZM+a-Po1#`c_p~Z{;HmyQM#J-p8hw&|YKTQ0F|9$XUz9<$l3A4Y
zGnMsnawsS#Nx@FJLensQAKA$%%V^&$hh2;|DVptp@oR-cym;RxN3-8HMsw#jMw9F|
zM$_pwM$`5-Mzi)dMziWRrZ$D!p-rz-QEl=ZD5XX1@wV%fQmA${+a;y+#H0kpq!g)*
zfi|6Sn<Cns8da~Bx64Qgj7tfOOKFKqsa6X>?GZ@{Oh`HtHi7CW-$=DO)2el>R#Fxv
z#JD7@64w4wW>%fQ>QH@qZC=`n&@1J7uau*`QjV%6=(c?7m9nH)vc1pdlQpSN$`5*%
z)<mS{aQ(dN-4=DfWKX|jdB2p#e#!DpHfn3+CMh#FNjf)43Ew0}BpFX{koqZiqL(r*
z7L|;O$;~<@WeUCfDMS{F$$D)$<yz(PtQb<XQ*7!nr>)zB#^RzyPV=_?fvF&FXepm#
z)a2DG#!g2OWkCI5i+Z&j|5DpL)KfJ^TfyJqz_d~m)D{neSQx+nYrCEyHk!HUp@{yI
zW^9}3vMK#Hy^CGs?o$7x)x!oqunCPa*gHOChb3A#O}j$8k&8LGrVTX(R_}lmxKGru
zRITL0Obc$w%!b5*#F~)^+m&R{YO1}u@WWUb#2Kgr^2#y)ro0%T(F9HBX+Xz_hA8wF
zP%W$=6$ZTw$||YIG+JcMlq73lj()zIR!cdkikw2|1BN=A4%0~qGwIcU_EGi5JTftp
z8$V2E>Z<BBoAJZ?#E}`)XbHW5K&K0Ii3SRVMr}9+h-_=C9=^b)a6)5kNvA$q$7f3?
z*4IY*-8GTT^lGTP9!#Uekz!dLbZDE)(<90lwUJ22&-up%1-0UDs~=H%eWF=x3u|&i
z1*=ZCJtj<9!z(uFBAsm_U^9ZB?yAy>m^|%jyXy{W#9#O5ltQC@_>ZBwo)z#Cl|GUg
z9*^tiHZq!J>jl_a^&l-t`RlP*AytJOW+X`?GZRh=CgSaaiFi<uUTvU^rn7q{B;|k}
zU;Dt8qE%n=rfE}>&MDDV8nBcXL4(Ta7v;(B>2W$CXXF}X?c9V1ekCL)2BkJ`@?&j`
zTv;2lYu7ex%F6M*AML?t<qWEdjkG$YL3P*?TA*x)n$Xs2yI25jt7mEjI+Ns!`MY|C
zSVQ}KDa-l=wn<=4;oHE}eYVF!J*@zxjHCWrkkr{pF40}7be3T#gnpR!Xwp^8?(u4L
z){vGi46g&&_G+G}t;eGjAJdT?MIf~_tCmrfjh%xTi)>EPVwGvhNFU4a&W4{j7w+Ks
zznQBWotYZFpq$fA0D;M~V1vY$X=IB<Is->ujq0MkBjUn-T`f8DRZlvmjTzzgrLp5f
zuoi3+p#}rI&acj9IDb<!whwd<<ou>iXvTkDQODBF!v^h97VIy-0aFcWi<=AwQzu2o
z=;*3CaMo<r1Kfuuw>OwjV`POo!l||sXttp$6!e)VehIaO+2u89H*Tgqgi+ySks6P2
z9$83ju#Hh0Y-7}Z+n8#C?NE)v!m-e}xE<;NV^}gF8A+#6+Jn=15CM_{Xp5aDa~<=1
z2OT3!t|#|sO4?D$-b(RMyN-_HD$d?^dBJd7vuugcG`L+dX|s)n5VUdR%h1o^UAu>O
zjR(k%UHb+{0%UO8;Er8B!6_pDx2lL<a|<1yqeFi?(g!5N=xQ5d*o0~b{;###ZBnX$
zba=vOvgxM769VkBUc~HFQIjwmRlbMO&#bO!D3pB?-ubdm;vK^zJ3dKte3A-3@#vji
z+RLOvD?y`a&@!&hH_+Zw@PW0gH}pgg^S06wNr(^XCB|gOC&B|;bbf6PS^?Y0N`Ln>
zC}7Q0F2vqyWw~my5_cDa^=%nFd|O5}(`pvtJx#Syw#TD`lC;f9uOSK|&R&{rypmwu
zqvP9-^igO#mK}qJx>~D8ZDQz)v5swDhLzCPmD)qmdi*px3-d>{l|sHkDdTr68#FZB
zs$O(6`_9LbQX1*gtAssd<yf|=-a{60AMd&L4Abc^_3oIvudx1oCC(08tB!GFkk!~~
zPtz~HJSyAJXGXTF_f+`6EpMw(&F3lJ))wvN`>iApu5G;_@KkA_7u(NoRcU`A{6wHs
zN;vbdh29k}+c?>vwvksrW#^R9>AoTjCFpJnI>cg?I(2FNg@Iz{|ELZ9W2@p&Lx+j$
zL%JdzTh)M?F+R`c<)}6~ZJp}meW=;@xx&FXTP{Ki>Dg7K^z&h{`(W$tL2{hi$H&uu
z4`q~zT3`IWHCrU#W~1Zvoh>%qr3DUPZB&O^dgyQszbIjxl$nz7)tTHfonu;l`>Zxt
zL5<coi-*Q&k%s=4-uKsMD==kog#F`QYGnn+7!?hASy7)F8LHOshK6}WP1|@;+oGI@
zexGTWtp+u9>zZ2DQh%t$8(O)f(>rR$6bU{XqxiQJ>mh129aHsIyZ(Wt+`osGV?6Pp
zZQ+jW*xIUA@b}FSS{1M@5uGeuNT4ny*oZpK|4}7#L{VG)1KpOa*9r&n^GL$$u-Imi
z-)E@z9_ey3s^7!t36Gc>q+iutXN}RxgQMt2Xf%SuA~w~5EIKA#Hl2PG5Bm#VK^4-<
z+3em$AstF_V^9~p1&6L`Al_)G-8Ne6r9L-slw$oUQsdzJ-bO=O^u3ln2a-D~`+C#b
zIa<#}^VXj6p)}pGR6ke!t^R0xI-;%xq4hB>VSe~h#p=c)&1J~B(0wrMNX-!n<Ku0+
zI?AlDncl%?I@M9%b7}+VpEL*9Iy%UAqtf4FW5aZ}0?uvpY$;L=_J7eEP;_Rgsg8>o
zfe|{0P7D3!=LH2?<DcM#F2jbXG2w)VL0Lk(>vR*1A26d9$hKDLZD=E7%`{}le>Rl0
ze@@#!tM*UFLLZKl?4M=(rwuh??HOtL0;BdX8||onwxwsZ;tTAuf7yiWveE9caix9H
zwAD)As4<C6+X&J&iRq#haCF(!j``2WtlF^|OKrl(tb&XD=NDOHFREE;BN(FdK>4aZ
zGH6U4%+YOszU*M3>inqCj$^5qsZ4CAi}>kcpV=C1p7{amnJHRHw?E5Xg=8%_Kxb*4
z-<#>kbH$^V>`aKw8TA&m{ncn>CiZ0t4ryj=+BbWZJZZ2`3z_0fqc!7@YOPwX(q4?O
zvYsiFo#$${K<|J0k6UytPQaj6fevMx$8?~d_8KYigHx1aBua;N?X$X@)S*m^8ikgn
z7ZwA#FjUCU`_(pJ!O3iT`MORk0@flmkD+tcek^J`$mZ}6ot`Svdo(uBhGyw?Rk~5a
z4=`J&6gok+Q1a@uGiL<0cn2s|bcKt}l`XAWsXFVF({P@yK2>Rv3VoQ;*KmcKg<`el
z#JJ6)6%RLWw$WP#REgY#Y@=6o-5~S=bF*OcXd4}8v*o_6wLhcI{rhRy)~c6VGX)E_
zJND4u`Iapw`q`>fZH?HTp%)@;25<MK>fS+L^Y&t$@}^=fp%bXIX_6^T4ASeV8OP)u
z6)HOY=C{e&9hFA5uI_29QazbSX9}gv0c&FTX`M2_vE%6(Di*gU?xeeAoD}Y)BXgOY
zwQDE6|2^Xxx-&DIDNKym2zM4T^=hLKP*R|qH2k#gEL8V9ZD(hpmCGEY`tA#iWNfyL
zQ2yIo8}VxNc8(P+(hK^|uL`}sJ24mrn;p<_#AmZ^MvTm=7UzqOW(t}8)Setbn++M)
zVU5zuD{jfq?;=@87acf(=nZPxlQBg_H{4N;Do<>q8!a8x9^DXAoEW9e3|sj|X>Z7z
z*jb#(%(Pt5dR0~EiJ=zV0Y$H7`<kge>jzTP87(?FI!Y@vHW(ea(0<kuT8j3S(&l*}
z52&%yjSc?uU70DW4sL>Xc?T!PGsTIKmNku-EwWuRR{gFPT?Oqc+nskE)b7#*-JRrA
zlij7<#CAFvLk`5rU`2N{$vInJrO+<g5i6*sGZhxr@00|E2`L9^4Iu?|x}t-E@m77t
zjjdjswW-^!-^4N5x0|-OE6!7Dnwf)ziS6WQ^L}jUOsPCe7gN~$N@rRVLv;Jo_KeM(
zbRk0@w@KTW(uFGZd4U?7Ze&U{rfTy5dpxShHbOcH>)1a=-i6$Wll-v^z3fEow{9aF
zqbBV-0s4Kw&9Sj!F6S1WdbLKa3eftPpU$yjr9jQc{;t+Dl+EPkT%qc0m0n7=LbRY7
zbWdZmCAzm@Vpk^bbR=Wc`DARNj*}}@7b}=@px@LrI+ak@P@CcE=eTRX0{e<i=QW<0
zaiSZ~l#ABUk1M}#`?+zi)XLj}BfYM-q@T9&jTfgpH|NKTbO%f(Z-*h{#d?9>MDi1|
zSJi&EJKN`IyMW4w?#Lb@0YAVq?4K8r8B>|V<RHiN&7i)_nC?8B!PVH%jvW)*y+aeh
zLHy=ot~jCA!st33Kkyc{?`!gTi%082bWVv5ulb0|C1^6;$)G%&bt3ICZKuJW<1}|{
z8JpNl8B?E~pewzpL#9L9M!$MCPFwi$!<<JabokVT3Gj4UGjB`92;EXhC$c8=)eRHs
zT}|Da`myY)R>-l_``oH|4bi#u34OP%|9rQ)|6^jXM3*a3i8`%|AK)6wi5>Y0ReIVI
z?5sl{67lHWUCyRZ3_G@H)9LkaTX{JOdNQW3_Au#WJfhCss7X^u(WrW{EhxH|P9p?G
zv3@o&#xH&vaf78P8%=@LnFcSX>{K;@hVe8kp{|Xt`7sLABE5k3&=5eqoo2+;J4Sj$
zLwBL5?{Yb%K1O>kwC3VXjH@>U-O=$_b-FpRrAl*4TL+EML|R=R+tN|{vFxo-qa%BF
zn7ZOW*{6CMZ9QM<?8Hxp6DYF+^Vw;df{yrM^)H(g{nNS#{nNS#^>Z{3)R`G>rH7b0
z%?4yb19qh(IC@p2eXywXaf|o0*|j1%6l-$dfe8twB-k%NI*rh-Q(|;Np<OW1E5S_y
zq!;GfgVQFv043HZK>AWjd+3xDj~H6YqLh?HbSl0*9y-R=4(Y7B0Hr+Yl_KhsboPk}
zk|OGpl1YbE+D)QE_3f}<N+z9_7bK;K=nQ<jBpr7bprn(|@d=V5l#Hiu=Lz9sQK^vW
z!)lVOSfVj8|6+8Ow%ytoy~!d_I<ziPsa#_8`iUef>ZQX)f~?p~V|3m}l9kFaMn`f4
zS!eOk`X2gXpC~Kp6`L!4j!)8%67{BJy`sJJf{Ks|dhbM{qF%8z#>D0r>l5|TYbru)
zVmph`8z_>jsJCC#OYfTq8a9bJxk*g%CMhT5^vX!PUiuiNNTmiF7u#E$4%`WP#r8&D
zQxs)Id+Bu$L9f`d;&kPyAS<@4xY)AdV#|srM7?ybO^7Wim3*8|jY+biUb<gKkWGnt
zQ=(q6WyR@}ZGv90WyQso74MbmSzK&c@jlUB`gEOOgV?g-^ahw9E4HjS9nh6z#T1Jz
zD=xOIxY)AjYkop(iKvv~L{zdY5tS@U&=K+WR3yaSDM9ac2(sdsG9k91gxH4Y%dnDO
zu?;2Y#Jykx9ch)Qs8?)539$_&=#ZtLm#&}^sMrtDXIe#B(K32ZQqW89L`qb&tXH&5
z>~ZL0tdd@F2$&GtMS@;$6f6@5d<n6&(3fx}4Pt9ah^-|dwifzIrJ$F-{w-1|C+S<r
zlC0R{B*h*lDYl`c*oNq%!BTAExGzbsCAQ~!QfyiDy<<sMY+3ZhP*GN@ze##?Sg=7H
z_a((~AAP%6(jd0Cq}bk)VxN^1$9?qmVktJUcS?$rwWQbzlVYEh6sKlM`b4IXXJRX)
zFSLrXVrhzPGby%B`n<KIw_hyHez8u9^RXnoYAmE}lVop791W(#wwV%VU#X~MZ%Ukf
zrNp+G65D1<Y?~>ue@lt|8-34K$cL2Jzoo=hm=aqdeHmTSE4H_kxK2VJ3zsyAW5kr$
z3RCoILVFq0SGPneweFPI3RB{WNlNSsQ{u=mB`%tXeUoIXz@*%kQZKa-v5OE#S@h0b
zdxnZNQ>>U`?;uu7u~yRU6Ya5!H8n0JQ>?x6;7m%UIO!346>%aYj^X5vMyiQowHIr>
zSn0+7NNxyH>|z%sw++$JNyQ;H7qPX79humViBm6egei7y;%rP@<`8>3ae^lHbz)a1
z&e_E7PaK(w15>d_6bGyHQS$c2C3ceH_*LvU)g>M6O4WTF5|s>yiAydqak>~2JK2~x
zELL}S2sX%0PxgA^@=Q$hdogja922`~b+d<HndlH>qDPF0E-@zh#F)GlB6`J`IAx8A
z9eqsnficku#>DPFCJwh_q92TjjxZ*A!kFj^W1=sNiOWebae^EZ-C;}|D#S$J7ZZo^
zG12?Q!~sN%ZW9vfjySlFiEc3_`o);&7-Ql@ASSxTm^ev~iF-0J(PhR&pBWRU?lI9p
z#>7cOOmvYkac3tcP9<WZ>x_xMGe*}Q2_+<Y&$#G4<Km`IT%3%=#mPuq^pkPXPsYV5
zN?i1lanVo4#o=LG^pkOMGbt|m$#{psq|}SVMei9Gy=PqXo^jE8#zpTL7rkd(^qz6i
zd&b3KWn7#*#l<mXT=c1NaY_{zy=R=R&u_1(anXCm#ci&*xV#t_$CC6dRVg;nd&WiY
z85g~0T=brC(R;>4?->`pXI%82anXCm#l_6H=sn}&XfrN)&$#G4<Kk9ZT=brC(R;?l
zF=t%#o^f&185g~0T=brC(R;>4?->`pXI%E4;>KP=9D622pPCTIo(a*XCPbf_5H|r6
zqEAhTBhrMp7?cn_Z9*K8CPbf_5J#j5(WfTF<=celQxl?3O^A!S3DKt}M4y@v7nu_B
zoLuy&32{W45PfPw^r;EarzS+7nh?jS3DKt}#Bpju^r;DPoSG2FsR_~3CPYu05It=|
zTy9Q?o;D#)-4mjxO^B2CggARoi2gSrZl@+h|C<m;uL;r9CdAQeLY&zrME{!*{cl2?
z+$Tg&n-D#1LL8?iL{FO#J#9ktv<cDECPYu05It=|^t4IQ(<Vhvn-o25QuMS*(bFbH
zPn#4yZBiV)CPkl`6n$z^^r=a4oSGEp^GVTrCPnX=6i1{<(R(IE@0k=wq)Bl^niRcf
zQuLllaXz0E{bW+~lS$D}CPhD)6#ZmU^pi<(?3on(WKx{ZC&l9-NzqRx#Sv*z^oU8(
zBPPYMXHxWtNpb9%6g^^69D623kC+raVp1G?CPm+u6n$S(^nFQj?3om2?n!Z!nG}6r
zQe53kioP!?ZqO%1-<K4ZJ(HsEONlf0l<50XqVG$IE1W6O%caDbdrBNnrbOSD5`AAv
z^nEGO_oc+~WJ(-Qro{1NN<0pb5<Ox{98ac1kC+lYVoLOgDbXXQ#8GBSoTH~iKbaE!
zWJ(-mro?s6l;{yt;%q!6dc>6I5mVwAF(rD$l;{yt;utX{juBJhY&=DyLI1`v`i8yp
zj=z72#r{UM61*tEToV%%!L>?z)hmGwdbf*iUGZ;d@o$O<2JvOpZ4Rz{P|T~>>4i6X
zYbA))l|H@(kH0z|l&H|HQX}dMWAq+L@QFQB9Pjuf5qeT-m8ZmLtg>V%NP)iE8;n^0
z(w}Sc)J@*v(>mXm9}I|G6%9~1LGRS4To<3?df;Jo2?@Pw6;zBXfz87XMdhn^i>ZU`
z-U>cv=;ich%Z@HcxGr>vL??nXQo5qZPb2PNVR3sw5$?<I#X_|_70RSSvs@a>OnYPW
z7GNlhO#M4g>1#A-FTrqAv-+dX;rpJ0Lbhi0g`@Q&=np-i_m|W=Lh5VZCgu%6t^5X;
zTPnflHr7p61>f<~b~kn~q`hn-$gM`|?u0wKHX0|?Go|h!sOY=4^w+xR-759r@4CHK
zTL|7mcYf0~ahbAs^`KIw-qPF6Z}ExY{oJJcafG`Nt^ITn(3;QfeZU(eLAocd(x}nv
z$m)WZjfG~j*0V=l6G$&Dsu%8Tb_;=RChhU)dSAL%+$}=Ctc8&D5v!vNP_57hc!GtE
z7USEE*BJd2i5X)ngk+X;l~09l@)7cOutxXA&{qoS({=hX_qH2>%oT|G0%diPhQ6Op
z-^aODrZ~ZdD}FG(M_;T*&b4<^T8%ziSH!wx#4>EA`jmr^HDRf>WNd`$`nQhRW5vWe
z?8m6Cp;p<kmA-&P`g+tyfqT}_t3H<0YT^R~f1iv~ji_Tf{9>kxv11F0xudjAwY|q!
zQojFSvxolwz8Al(@qDACN4MB{d3tm70Nr6u-_Kxb&5D9hTQ+i`8#4WYRh`0brn}H>
zh`=NDO{+HbF%ZWLeL<hqF<z~Xs2d2_FvpC+9Nh&%P0oJ+KmoSWtq(q?k7Z^`x^aNn
z#Kl3JOd<Q-3*ssHnozvT5d8^sCRPijLCZL4;H(VkqS%-OZ$J;LOF_&UMHdLtl~whg
ztnM|<ue|znoBH%0y?{+G7^{zgvY53jDzKQ(Yy`)2f1A4KOMik;)Po!A@SoaDej{C&
z<mHNWXAEyz?*=D+B}o~nK94%Bu2WEHqc5Op<lflk$l3V)ULB(<n-eiR3Tb;5UE`TE
z$ZiX#{1m&NaJ)m+dc9R^?x>LGp_=2*Gs1G6E#JFmWZ2xv7Y?;2bI`rAPk8KxwwJO^
z(FYA?wpU9$vbWq?VHw>9p3T(l2cYefoOfUs&0Cy7t$k+mTlFoRH>yK!)#)>{q%b&(
z3QNFSY_B!~nP$W`_?ny?HO!{L74Mmv-LrM5w=Yh&z^jj)>`)&i(4RM;aDho<@V9eM
zsd}(?OXylW1?$sUrI;=sFJ@=Q)jbJrk|}1oJ!gi#aFA~n){Z<LQR?Xbw^j9D>S{^-
zEdzzs51OPHk)b@x&?nDTHdUy3=tmgr?C~1a65Vqeuw-v#rcymv+2u74(${s}>KMqX
zy>!q08khg6M;*iN5b}pw?5^rqOLfmBPlZ<Bo>57n2czmc$(6jJ0XufrIz~g+6VgQu
z6@B@j`a`QzA0pmPpNpfZ&rZ*)4VKhBLn<Cy851U6|I_1v7*)!HdV`O*gklXm-Lclg
zExX1#CMH*D?Ab#Xm*{W)Dtk5XOHS2xMiWE321kc=qFDr)sB$-3P}QI<5Pe?5%anDR
z=p!AfGom^X%#&2;x19$%F%LSi22#z&57IwJLPbEOOf`^Vp4R$H`a6F5q7wB%EX^qF
z1$1kd{=8?K<&-7q@jW4>Id3{ccRTGGlf;8LNGWe+n>wC)eWE<m7D5ycr|tX}RVup9
z!`K0>VX@Ihemic<q(nJUXQ^`1XF~PhPvr_V*9LuLfo`cI59HH|{dBbwG8I{sXoIdT
zDd<!b)Gz&)`l332RZK}!D}uiaIyLpNEuLL>kkZq7t&mi39SUj?H2Y;oUx!HQ&p#;T
z>QfOdnl5@-eJP37sTdV{ZHl@Y1Cmp8rwf-!mcG2w*sMIGeyD#A1%D3uKWzi11?xcG
zx81p}%yGn%TDt@K!=Nvy&~ad@pfc+2)1Xe;!Bc>mvmT$0S5@oMpMup~-4abn9?I0X
zux#A4&>hmm?nvd7pOrL)Y*w@M<vf<9??n{VC&E=gZbIBz)Ni_}Mvv5K<pDtgSwj^u
zO@`2CGK{ArqW%shnCq)?5=w6;F=~-xd-j=@uxC%39ugS6aP8;2#@2p5e&M(y5X!Ew
zr=oTLkVIb?go~S&|ARs3g%6W!>cK&}^vSF5u9Rk-VU2pwET~D1{-&GOU^0KqEg@B7
zJlm{GxFdHn6@$9hOX*>T$smu5w3~HD7J-WAx6M)YML5-df{oPHFFK|YOdIWmhCo<?
zb^%Q4wH5BQzX2<3EVM-s4x%fV{RWiIF7(A)=qgB38nT174uXc!{y+$XO{cwrpagA(
z1_AAD1_5n>1_7PW2$&ui=yXUf?O_JOP~%YTV0XB?vl&FE=v1^BHCI*NO&P>U&3JV)
z^iWx&CCvl=)a?$=EIW)1rh#@u6;SS%K0`;J%5i_vJdkRyCXPMf%%<(rkj`+kq0QKk
zM7TKUph-}I_E|%~E@P;w#Y>3vHR`NaQn^y!T+Qh=rp6@ZPH0RNvUR#nwYsrcYS4%!
zTdmW#<JGu@Jgz@~@-<?-J5(yt^e|9V9HUyf6ax~ZFHVe5d!n&&ty-a78((Rb1}jBR
z^>t%(jbxL)E~qn=HL9F#HO6Tt!v;{R?&f1`mg=Uvn?~U!`rM|koDR$$8m?8d1(gjJ
zD?{UC6nz9jP44OIBd(`*vcz}i0SRBd)<Xjds$HBZN=)tGD8Fj+Bp!U|=Uh;T^=yy3
zOTSi+OKn1I&C^YmqojnX4;T!V=sSemTiF2GV)e1lp+c)NGe)^Rqy`7v>p2$tBKpg+
zq41Q~swNGWYt7mAM`~5w3|(v~@)tvOb9JJbrsesNu(nWhJ>H--{$Mtl0hz@%6LeDw
z$EllS80wbo7(#irRoUV%Hw7c59z{P^$qpN2p6L;a-H`|?;JE?C;<qZ}>4I`usz67U
zQq_z`K{QsDWUUL(dC3jBq3yTzNk7ueua2Q`qjc}&v4&M2n(Z86Fv%Wm<nj_`IA{3@
z&*p7$Ys={oXX%bDo$RNnsk&TrjfDGl*czl=ZMd>%ha865kB6c5_F)(rNAqKyiZt1`
zj%>2#(fK)3Z$hQDtvYxxGkbK(#O6W=QaVI|C5@wt!}-RapWQm`7ZfYG>cPD=@-*Jj
zsSLN>S|)c9-E1t>9=dGwNVSAM%u3g%H;*#sf)g31ME8u1bBsrqq~JP$qmNoTRbsx6
zva`w#1(v3}lc@_R7wIbu%DIWH-!B!XmWi!^&Ka3_{4lyCb96<!x_r}1H@sG^+CG4g
zgVj1n2bEJpA1xkoHLIfl*3E{R!5R*$pa(XM-Ri?vexCYC3h8lWq`X^O*#WxWv|6Xl
zGqnRX!Qa?3$%=0*(5G5wdbZGLOMNSR*y$6DOpngjeO`U4O2ejV-l^KQlz568b~Zd?
zW=g8n#{rsj&3ul|fcR<kqp4Jdk)i)o8?nWkYUQ_8)o53JjljBL$B=M?q|HCNzFOZa
z%jIE1X`TF>#^%+E_?$NGmFL!jh)!8a`;a=3^xvLhLvJ+ka&XXm6`vZAP@^P`xDVAA
zanfKbH+>MclI<C#(Y^WtDgCKFY3mM3bsDH%>XCF#efyg?&m^@@OESUKCt&DXz4**y
zC~LG@HM~|^0o=>e9+R(G>p=E2^w6GG!$OaXRMs6H(N*eAa=MickLe!dtT){%jX|tk
zH<`!ojnf{AnVzDmQAX1a8Er}iEw=(`br1dwCC&JTQ2SHk&&~Qf?;)pEqwMAf?Yh}0
zRi*8-VfxG$0s3axV5vkm9fvcMp3}UCFUnW`QZUGjqDj;ry#>=Xm7%j5^z{y>jfK)f
zAF-lBC9krM=|NC8<=GzZGPN{nCbKqiw*K;z-RU?en4NX(t+e!KW^G7Q8LbR`^@7I`
zR>)EB4BQ>6w&d-8lhVnai<WV-GwQ=_x?$M!RiT+3&k5-Kbuh)8S7;`F4519AEax`e
zxl||%#+ua{<({em+LXZx9fDHR;!u<%+Oa)`b+iYynb@gWpaj|5sV_LGnU|lmVDh;X
z#AG>HFOD?n;AT)4JNOO}(e3?w?8r>Yh0ef~Zz%Wkhl`Z2dJ_d(9XjPs`I-u5bcd4e
zo9QIU@s$o02j6rK-`8Mb;=DKU1-*dPM{gwgAswn$RKk5Joz<6Qondo9=fN2Dv0h!D
z+!XT55fQc|(PXs{eFQ@tcp9(rH?D-ZX|c$};5=1b8(NxA530pgZXs^pWs}T{TO2)A
zHuXJBwGd-dT=y>1O6jWmQY+`7r*4a$#FTSV`K=cPBqvGD3!9I6<E&GkUd&Z8)Z12P
zTFw$qjgGK-w6$&xQwLjXYGs3Kpw4$c-A)3fsmI!GgYp4(sxPeC7<K;8Fo3Uxm*R4o
zW1W_`<UDKWZL;oXb^F_cPgZ|&)9HS8=&NmhG!*;x;(oQg;B;Q$B~QN~O+gG!Q=QbR
z{VHP{@f4L-r|77#+E+oy1~nw6J}f*PR~a5!!XaU`RFCK#qg6_HEZXL6X{GKmHQ?J7
zSnIQ;sV<&rt9$e*jAElOs77g<>5z}A4<=P&SF8^G1l^V+=I1wMKvger@uy2UfFHS^
ziT31WR;{IZIW$4DI1i85X0&#@)4V9#(HJ3?ttA?saH*>JLa{ln*UdDiL!ivxTk#Ij
z#vvVBGQ$-=(Yb1iP7Dm~8QE&9y*e!rW|TPyOJ_m-O!3vIilxWPZbA4@m8+)F)S=no
z$^jdVqK$TJmg@bLPd=||hm5{jrz6Ycw$g-`Yab=pAFs8QLZwO{pJKO3wb~W+)lyR3
zYP^HS)z)Zws0&z8HLP=HM)U~%efx-wp84k`8Z^dN$26P<LXWBK(MO_Y+hTLLcA~DC
z7tj~V+5*s!SFLVSBDcqtg+bd1Y}Ti$Emr%YYAM_8FH9lOXe>>WT2f}VQrO}6&uPP4
z6ll*3ZA)8us10<oiQ_-FQx8FI|IjRbI5KFYTj8CRl(m(pJ*Y-%eK8qp{Z`pS$FdtV
zj8i5H9>*^mM{IrV)fv}Rs_kupa?@0}HV>+Enzl{p9Dw?UGZmFBT2oAPuGqKDFy(_(
zpv@kAyifaIMf|31)2!MyHG1{oCOR7!9QU>7(2<9T#(-gUKFn|B)<Cydol&3(rjE1F
zXiu4L!>9&CTRpT|VVSGP8Dpvg_oMD+5i)RhMK|mm=~jK|dNaapHBOA;iY<B2^&R;4
z3ri1jj}*+8rj(4)M+&9R&5V|*diYsRwbahCU25~t1mlG`-3!sTcUmPn@@tCTk6p|1
z$at%I?L>9!!)y8CaDcY=gMz9_mzt^T^8r*<)drq5)XjQf#6bI;Y6L<rMa`HM7}qpE
zB3F&mhX!_v*#kO~^ftb)z+{*?Ua1H8es-)!PUk|qpkE1Sd9Xn{K<yHUk_6R?gwrt@
zo463$pSwwM8j6GYNQXbx)ILpD20b{jrr03r(kwqyTrAGR)MZ*m+K#WNghuqdh|i=O
z0d*`$<Te_0>6b6=V0x2Q#2wf5Rn{G`qS!S=U%AfminGmpBqi?ptz$5~qU-B)FuhwX
zVLma?UOzi1v3;hmY?|5!uY1aCpso#0pXFk)+|`Y3ek886T?Eo*>+e~MGte!qvi0{?
z)>Bhh?XQh`=b755?(mGtBh7ue8qW%0%{s5}jKXqPAwN?q!}<lLcCGDx#9B*QrCMzT
zY_{3Fl%CqsmY$Mxw4ViUR%sI7^ypoNgWeRqZFjIiFFw%dHCI&IbF|xX1W}a}GzO(l
z@2OFx3ca2n>iEUFqo~q(x-xw$(~eAzWE9eYVCNo5e7%O-vOAJSTTp7-w*76Sq8j+n
zSgP&)#w}I)oG(o&)(qso^2E!J>NNJ+0UX2EGG^UYTftZ)TdKBl^g<YYh1;X!^JUum
z+DQLV?|^MA(?J5Yp5LSXU}OD3!@9!JOoomgQ4f%#dgf2*))ll`*)}w+&-Jfge0_<b
zsmOjhe6TLHHm9OT8(^JTYs>a14eC8wgZhs)K>TO}sCB#c#-iTE!;y4<DRNCI`b=h}
zsWyu{s<WBaDZ)U(@kzOQBcqOir)jyQm>oVur`c#xY^+QN1S2>&rX;AMj?$|anY=zx
zq~4@+9<~MNH{2u%`Ve!A)_vU2q?-1Ql`(4c=LDh$G$y1|;aI119??Y!bP|Bt&>?s0
z+!08Rjq#h%jdPjysA(RZ&aKfoct>uknBPq=6b6Ypec>XTuZ~=YthAVFy3JvWsrpDb
zA>*WsQ!-WqAE^!n-$gvKj5VG5C-de<r(iaBoc@Ep6<W#C0xP+F8jWnM(^p70mWoq8
z3cq7WhjeV0yuQFxJ$6;oblC4;j%M8Ss(7GVU!M+JEc9-`(HdX_Q+If@fwlGeJpM5o
zPb&7%c?|LgM;rNlC^CxFx%uMgqqdnwmGx-twt=0SBBu10kbA1MK2NuN9CTj8<Ofb-
zvAMgUOz*{PBzKzYsaNuN8`?4kewXe@m(<CLT&Dn5L%vj<%9N;ZauEwDstI*Cm}d7D
zTI0;%X(O*vPnU}MLeqK86<$LfY*wp<O?`;itW|8lQ(6az_2i0q+Q2$j`N*E_>RZ)D
z%2Cm1loHX=!6A4@eO|hp$*Ok?v>O(JP|UIQ1TnTKOO=DpsV_-;gTsScOk~+2ee1g3
zqmXZ#8|qM%TK0OvNGqa9Bz?P@{x2S-H!Ejjbf;=h7)Zv1Gl<S{`mRtVN9P(r@>cD~
z&8eH*>CF!2>z;m<+UQr|W*qJZbyMtRa|Lf*p&b)B8`aB^<oX<rQN>V;wyabq>D9>>
z2SpC*S5@?xAUC9^CYH1YJYDqrcV)gR3s>wwhI(xMGTo3a$#xTLLk;Gie*=l%3+in3
zvE2@K(xa>Uxt<y-yH?mZ{7y2c%<m+Fm_~@)0SB?ORN_46vm4tzI%`9xhuktPQ0vyq
zZWtGd<w_Gra!bb?yrAO6-pjE^PxXrSZ^_=gcPvV>>Z{*+5Oz$#E8f8|8adL~Zd{#^
zY95OTPBw0#@#(Rsa8jWMm9zIz$$cml-sSaj$7F#%cXc02ly*(|Rf=P>z*dJb{Wi;y
zlsK))Hd&f=*+xiB+Z@qzv6bHBVv-&z(K*tb3#}||Py|&EXX>R{9YQbfx=)=@9UKy!
zb$7Hm^8R=|=tbz}Cs)2zQ@b)WWKerd%~stTEalbl>_S;BhVW4{me)Ns{EIMG3B?j{
zZS*V_^J5sJ{eyDQ+dF1=aDMc)1lMfeAJZ9WnFmV5>ZjFSQJ&8B$~>6ulwH&~8-w+F
zX4Va$i(DNzbSl1|f2JQT=ThxMA34@Q;i=lE-L$J*4i_w3KbPocNk_g+uZ4M}GF$hW
zBbg~Wo98^7QNFlFyJh4L+a5ak*rA;0rd~&x8jkS#6WvZj2S>=IWb(zVE5iMkdE6c&
zY2d^gkv0wNd(Go^4K^3-c7Z7pRco`&!Uc7;wpU+!MB3zS&S7^&%(@6WPIlAp$4$5V
zik$BDmU)NzOYeb-^7I7@nFq_m+S4Ikx=&NoL+{ecyhFR87inerK+U%GiEiPP<vZjX
z-Qh0FcStYYS}e<VNH5)IEXvcdUzvAEFWvVk%XdgG9VnIMJEWJ+Wzy?#bSXei|JT;S
zGS$|ea^}!xy0No2NoU9+nvgHSZsi5^>M1j-(O{!=b5TZL;YWKDb$+UX@f#ql()`qK
z8$jtHI?<yXMkD;2jz8#7Q>`Ms-(AsqoPgEF4tfK1lvJ`<lNJxvK|tsUrN-8lm=@ny
zRxgdyaYcP!fwTIjudh<^Iud&3pp(YRoky3os!fmY?cp>#&w?g653Dh~?dG46bT4So
z+f>pM`&OCSs<IMv07c(+;5wP0MBA$uHZU#!(_0`|s||*-*76RP4P+B&y88`$r5H}i
zsXYZcVA<G6uYoo_v(%=h?i;i9Y$D#XV|aL&Uj*?*)kze!APZC4_)x*4qd={4B>2Rd
zf+nCBK#Gmw!EJ*(cA0jeVW!mF<~7y&MYY`4&uR&}zX>Vu&wl!XuKEI9YdM&wRlqiB
zSE`|wo9WFp8n;jp<<#9PfycgI_1y;BPPIEn^MRh=eq~d=_Tj9YNUH>93)8&4#3jfX
zy&idL=({}XZ|Q_lWIgg!Tzq&L$4yObSWj4Z4}Il|TXWYFmh9Y@q4U&D^(whu9$QZ+
zTc4xrN*z^ceQJ3<y6e?yb345WLtCG_=tZV=>8Dg96A*G;p$Z&}dR?k<v;mYyUr%am
zPQ{KwUe`0T?z^67Y}@T5t<RdLTa{UQ3(vlZv0+W|k{X?^r$%YzYKh%%<7?`r)&9T%
zDM?tl$c=PJTA90Xs+cR%E-S6#S4-;PGu?}$-s10=quQSJWPM05zP85w)na9ge9aow
zC8RL1wn8P%Hzi3~pnQ<lr~XHujygh$l^nfFLGKT&9c`J0+jJi82-;|sbqnocudQmG
z70+6Bbm`bVJxy=_t!;uW=j3_?`_?P?|Ji%f=C+b!ZLoieK2nT%DUn)Q9sWddQPY-4
znxMKp?r<<b00d!SYaBonedGT3d7i8-v#QPk)%MK16LTGI5hu6Wv#PSPvS2LeY?+ky
z+ouw~X(cpQJmb_AW`gLKn*7APAAT`)hRG{YZf_<W@59sBISI><Z|@zB^vNR2$@v>z
zj8N;eIB5&~4CjKY6`c0v=nku7$xT!&F%D(FneXqFLA?FCKtwGjLw9VAo%>bqFsvC0
z+{w{#j#U<Im)l2d+Gkgon;IhqL2?2d`7|h66y0iC=ZVnc3CjmNPcp-}L}FDH2MB^c
zN~SeG-D%|<I*Ly1^PFaAxZEGXsDyL!=}FitSbMpMAMwDHA;f7rt4Zsb!bZoG8mW(+
zz^LOAZeUwR>Eb`n{AP7Qn!-SK4Ck5&LYZl*r8p^|wP{9^>(m;H?$G=BkS{%E&`%#u
z<GxaA!co4$m9dNx{CvSAhlb3dlfkhdoiIutWgJsZS~jb?Zx+38B0j`JcS6I*L$d@~
zw16#(qp+1CC@h~x(ULLcqV7J^i{s+#xX5qpJH5^AKhc2^aHptaw6i+?jn>R+cfvsu
zZir#+zy4(cw}d>ri^&<L{tYhO$qkO)<zLQxzW2BjLe18?;2FX$;i7Xgsn+^nrcUI-
z+6FIWXj+{SG+V5O*tyT<cMBKA-Bc%ND<l_#X88oNv!>b5nOP^ERIY}mIVc&UGj)=6
zS;g_nB%lzs&nZN-kmPCDVWl{tO(^GxMxh)LtwI?hnU8aX?Z_!{JbqTMD>xXpAlgcv
zthjmNZ6#0E*qo!S<nTAI=L(?&TM%s}#{)wx9Bn1X<3lYRZEcRH+FCf;+8oalwQ#hR
z98VY3Iq-T>3!<&$c-g3hqpjr0Zk)AXGWh0*wvr=YVoTy}B~M1*EDgNDSr?VezBxx*
z$&=wX<46|R9MM)+$#$A^yiGIWax}wTvRQ8pvta=}nGY}S=nG!MSXfep#_fzNU+xnz
zlf4+MzwtJLGW57g^M^o;NYMCttSm+qDAaZ-N$Hu;BF*M@4VU1AdFi});7GW4gGmCD
z%i!?_v7qp-gt++-k*HrKAPxlSdRQTX8mvI^0$PMF7Y}dN{o6P%?qZ_lj?Wtqd6|t%
zlHQ<?z-sVa_eYJ9-(DQnq>+R+qn7NY`xUzs)Rt-#m5Psd)oRcmt58+mFL?K6jjHco
zBa~`$znFR-DpoEc>Q4r}-&Yk>WUHf7zMy_9`NGR?5sKCl6ITQ%=GTdAI_lp^EQ}i6
zn?xs%F!1mIJJ3jaBX`x%j_{Hl<$VZo*Ape)z`9Fcj4!J?QW`r^a>^`DplZ-}KZv_n
zVhvp;9Oc2)1uN^;16Get=|mmvF-fvlZ61y%DGq=6TiOqW^!n&l<H78(nFXgC?KS3Q
zkSHY?#_<aaj`It_qZM3$VcV+;h<PUEdX#+{IqQ*0Z9R$#SQ5Woe6!?m8B<BFhZ)ui
z8y3P09)tf|9MVcE*7odrdTE=tA~T2ooZD7bvG3{KsB@WWHckmrxVVe8*^J=0Xt30A
zkwGw<y(!NYh{As^e;<xMRkPSxsItR!lq*izHm7llx8USiV&QRqCph)<Je$7%4sHi0
zb7?i4i2K&_D9I_uerN>`PYn^fO@WF1tH8v*Q(%&}T^Mzq1bOr>`F|jfv9lEE#g0*6
zV&5n*rCVOe<2tWC9Izl1d28LNV9d7Kp=Pp%5YJRgl-eNe!ivnM9^z4%x+xj*W<y@C
zMmzwcznnY=VzZIDmxZhB#rnsw$KKtDam1(Z7vDm?5Q>Z7yg1=S5CZp%*@h!{F^@jL
z3jL+IS~zTl3#N+u1tQJIj+O)lRMPKC=o9o6C1GWQ*lWipy(4ip&6>)LZjz@O$_L;*
z9Gv&~k8(uu*%4I9>9MQ9>%B^56*jSYAZE9HH8sU?EATMqY1$;AW{~!jxev2Sp?>_d
zov&^HZ{rL7`H$tXep=F&R_fCAW1BWU)^6`p)e7Im!bQmU6e~4Y-p|m+Fd}v>m55Ho
zOIpKo-uxvDO%EtL3?-x-_;Pt_B{>dBIGE!W7tYFqWCvh~6nDH37ZhPC@B|X<E+Yxm
z=-l|7+AR(#JdqQFe#1*u;viykP!z&3q%x>?wZz=&Z){n^-m3o~2TyW6&Y~D!y8>Q_
ziSuj-r$W9vl0B^JQ(B{JSdLfN>8(})kMMjh9^z#{B3{(9IYG|P{0%;fK<;5HWiYCy
z!q#3D38Nk+ldLC<dimEC3LCc5(-R!RAS!-rbekX9)OnKs!=mJ?l~Fu~x*4rFru6cq
z=g6unl_9NDEH{m{t{~r)OSf14Bb?Y1zkS`!Xmgm#pll>r3#nIlGfZ0hSgE%Y-!cDK
zR#F&|^klB2yzY<3xRcyjr8Xz2d{AO-sGnLf>Q!IKKvD*6vfy9cifXS&gvV&*N{<3r
z5_Zj#KUNj_m{YYBw@kR%F~N=30h|c&j8RaQ0k~8LJCSm!&T}G=Ri^LfM8uK@VPR@2
z<O3<EPhm9`*#sK-;$#pqCTQp9*TPyRh4ZcUd>p*)%12GuWm#J|LgVy;t<xoJHZ`Vz
zP7b57#Hn@SDy@Pm#U{SEh>v{fs5pYy9=MG~pF9K+h?f^4K8Y*)2wVg`--SB3j;v|e
z<V8<H<E|ibC0yKnRd8|7M)&%}5{pdmbh3s`6xQ8IKU!7@Px<OvSn-<L!J9YxKhcth
zS0$ljI~QV!{$~GR|LxniHwXLOD@(<3aM``!HKh9oI5H7OSMgyTF6l_eO_?fL?Ag|l
z6BE6J!qCQ;=#J@pJ>_oXM?M*a<47tRtTd9#rlN69GHoREa`SF9-mtfB@POXeceD>@
zNv8HgliLg@R2r?j8O`mZ&u$*~HB>^$aEh2WIdvvg>cRW<Nf3FpyvRt~UPR5vxVDkk
z0^1A8HMgw*$%Y$V7LjU3KYWpK4`qPTlNW9iHk4dOnFfXO^5xT9{qY>HfVxe;LT%(l
ziK9p$hFb3&JQ<BfhpWLo-|y9M$3xd)4JEaRcg9{NLyE1^>{DiyI#tGj7M;MaG&q$N
z14qWg3pmukO=U{gzi)f=;$6&?L%|Pqx+MN(3q?w)rfTH82(Ae81|b1w^qubU_2gr`
zC-@!Yz15(d-1#DiC*x`Z4S_Vg56{zi`psbCJ3wo;@^qwB@crTKfG0COp|*@`CjB$p
z{TNGEPSSTc0+tNln<4Q<Z7r_JyLT(?aw#?WnX`xJ4!1QK;b6ydWA|zFPGNMkStvx7
zpSqEvs|5AAvE*=T3`UTAS_$TNgI531Qu_Sv%lD9{2B<rImI)+|x(B9k7#$$T(eS6O
zdwQ2CpukTY1kz?8f9e<r^c~K<wd{QP&is7&-VA*id{>UXV-(vG|FL@Na2_seD|HWS
z2A|f!6-(WrxJ-q;+*R3k7Adg((K2=P`4&Zj70~xq!@KY1`02Yju*Uk{Y{C2OyIG#9
z6jdKkmWO*h(t`=!-{pyR1A@~S@Ov>j%e+{A!D^?!#<X>d%^!_?^sJ0$DTxLqt)s;T
z-jI)B8*6a59rbmhwtxnS_?CTa#p;~2(vH^Qt@I*qNcR#hx_I|d9X}fB7ppPexcQfR
zGN8t<3HsB|uuD{nfa}HxcYVH@-C~_zlXE2Z>~hajSA`w5n_4Pv<5T_<GVbGR$hfPm
zA>+2ZhK$?m8Zz#$Ysk34t|8+|bPX9#uW8y(>&@sAA8MEARB^ST;+w(!q2X&!*{Yw+
zKzE_15vS&;E7meU-<$uG!hT&fh9t5uLGen(i*VMqrRro3NXv>5m;G3BGMGB-`R`Ge
zGM=jyQ}W8TB-jp~!jtL+m#%mykqUsF)}9a3!}rb>eA|5W!y3A0Z}$gJ4KJ5(YiudF
zf55GwANcabi~br<><#vIc4ZEGzJ~{caLZAnFhp?;X>>Rr_8$7n&)BprA-bCa&mw68
zXd;voPOKS_!ZN6&-v!S^M|x%|6m&M4afACZ2fWJxSRQ0N`|w)JKsN}1G=&>c0HbCp
zJ$~Q4I<VhwUz_hi{*5#Y0cv4nMb0OPy_*A3Dm+)ypPFI`#AI0@wqOE6MTZguNvO*l
zq|1+j31=j_d;8h~P_zsHehWcuS%4JGf<kdER9>1J{T@@F@Z~x6-Jgy*A|l>(<%S)2
z8G$gi*q$yOMhuUbl5~Hx{X9^_`r(L)9~&7!;d8aV!IhT23#Jx;gE435Y2@+Ww|EL?
zTm|k&=w|)^pVC?U2J2b#VUcGEV7dJ*k#64iSGa<dhCo1m8sQ@Q*O8VbOg#hug|=Eg
z78ovAhR)MMl|`7|PjF)@2YznCscFE>5PzE?s1hkY8oa=fibymek)-%=_o^Zu8`iHG
z2*F~Z&GK|eXwxCY$cZ1#XbN>Wzs(YNK*u(^;}-+U%|!>O?}6$OJG&2f(c$;!i1LbH
z)SFb_?4f&U#O~}4mK!YW?hu*b`CfmRDxkn1D&B`h%xZzg&6QO@qCZ@GI{e$^)x}XS
zg2sz6B2VD0n$RpeyKLIS20>mp1z-`eSUumna#M+XZ6UQZnEe+1o_k%0Ca|o_DJ}{L
zsLrYImXQ-06bg;!p;XRJKTrJ_d;H1Z0a0io$q~k(8XE31b>t5hR~Hx8ks250`#AZ%
z!&5vsdrf41Qi*i_+p1OSb){8zcHwNae2!(sU^S0HD?`=;7E#j*9LEq?ZzNhmO4C8r
zH=bifxW6X#crZDTQuhJ$7sH4+ZR0dX!8gQkz_XVjdw}r3!su8JV^A?g_XV$7GTfVs
z<rMf?7YKU#5DCZlK&X^25it7NAK-c5lw^PSl`kBgI5;}#r#{L3p!0R2zI{;*#1|{_
z#9}2#Dwc)0Vp-Ui5xQ0a>4iY7>iwHLnCx{=2sM7tig7%uuS98%r-pGnT-k*>&X{tP
z)I}`|36Z6v5oSq+5+z)gj_Wv;bQHp-qYzqF=pnhN&{1-@p;svwdIdN1I$^`05zwI%
z9<GH7-`VA-7=NivpCjt2n#G92Vz-^zYJ8GYIjBVpL6}e#MD*Ekv8L`jiIO$+EJCpv
z`FeejsQkBD4SI;`s~)0i$wN>LTG0k57Y=!X^M&p!jxx{HS&`;hk>*)7&9kOR^Xwpr
zN5903R)r)T=!i}VHb6k+$G5C7HH{qDu5mqstr82pvpc=Ro^$Z!`QDPR?xwzx;CR<5
zfW_55d~D|C6EC@q9-!3mXk?%usF{w`8kUf?fN)R59jzH^hpT|nEXkNVi-GA^JG(Qy
zbA-tWd&fg!qX1y!%F6RSDny*>ruKGn#)%e>D2;I|SF>|E6NkH4ubX+(zZ>1)iO`q^
zh_GTs<iAk&iN?+%2vESqlH^};e_QwZe5N^qsDbf7AWs=1435rzZ*JK$c$z%nk&OxG
z;r1piz9o9@ty^8Ali$ESLqLfsqll?z@W>enIHHGGMz{sK?}J-`*o?1XREtu41#+`t
zR{A1HM$SN%`C7gLyXD_rNOmw)lgns^&!78^-+AZ};QJ2dAG0Yy*J+@dp2H~ttu~d8
z!H4`(J4K4nx7;yH=>4pJN<3Yxph#0**i}6oHutn_QSb}j>3oT9H`6bER|Hp_Ul{~B
z)|tXVC<+lVtOus^K5<7}NJ}(!H5Y=BtrE*oCmEnKuj(|hZU!_9OXU@b_eSnrh)`i6
zQy%`|2)m0k?lF4C*J0=QiQZ>{4}UXS86$4wN2)sv{tT3~gKOhRs}U$8JhRpImq^&i
z;QsP_Pn3(P9F0X(a(0+jJhRk_<OClxgvoZ*V2L=oAx{M3A)e)pcz{Gup#lNmyW?=(
z3iU-u_H8sH@TYwQ(bEigg^$5THRzM-YqC?s`T>S~_-02c&If>|MnrH?ERqcfxx)AF
zkq51RS_lHgFdGy*yC}FcG<KgxYme>hfFy_5K_*2%M)S!X6<;AQhNIgJZo7`w=tiRz
z8#m@=XLmd}auJ@e@#^6+2^LD2F<0xOM|A&gI=C}U5cDY2dsP-J2TzbRnonVw<&Hzu
zZdD#@>S{BW0)9BkI1p8SdWxIA+%)&64#`I<V;08)4!+d{4z+ls0c08@m!m^r#sh9>
z7}i>m5Oj?zIcPs7p)l{q#G(FHz7$CVj|UE!<<%viMD!l?N@6@<m&D7FA{7de2CzM!
zyPMT$OiQ*r27ZJQJXfm{(OS#J0zq0*VGyz$Q)vN^mX1)ktoDy5$qaEfTc7t1n@_z+
zfzf}B{wDimF6AnS)rfPO#E=WgCoYF<<ub|w4oNt+z^a}J)>wG;Y4mY)SIvbWulQI)
zWOX&pU_zK>Xeh5>MB7LB47E=aeF3mWw?IZM^8tMTVIB((7A--?0~mMEg3!BaHD{n{
z)iNIZ3Oxf-$D^gd<@bw&#stR$c_i`u_-KW=rYY;F&N-SJcS%FD5OTM|f#-uAcjLh^
z!^1>6|9u_-WV}Vjt*Ee)^piSnz2L@VNDI#|JZ1zCi#PT%t>>0?YF+B3xwgBW%n@S<
zDW^K%LOD*+32dkC1c&-SMCOJ=O|2Yn#{!ADl`k{&7X=8N8Z#EwPY42wa5ue&(K1zb
zL|VB+xkCuj(K2ft>N<hH-`o{@6^*j>&eHFto<b>9Gucixf#KsE3u&P5`|E+;9tAl#
z@kYqe3J=C*1v;EGOPG2q7(Bc}dy&Gh*C9eB78wkTI!AT$nTu8ei$(GlK<{nC55OHl
zKt*{d378Bh|AyswxVXEEEZ9I$O>kJVR*_lNk+`;5%tpT&C@j$koyL9<g`g{N;a4<C
z*wWD!hxyv9SRxPBKUQ%>3{rw=cJ>iUq)f^qON1;WRL76v1kpl|cfxU&)q-U9KFa$$
zEd=h-v7iTHf@b*_p<Mk@VkwK5wu}U>EFWP4kr~TONCCq|N10T>YK#;U)Z8way&JNg
zaCl5Hn-p{0d#!*C@7n43m?)OS&2lub`$s07LqQ0wmaR-(E=xF;6n>k2D|X<R9P2Qb
z3^mO42RB)f4lvQc8StB|Q~;FDe6n09Z9*1y@lXB7&zVhS^x(|VQTz_#Fw;K$d=JmB
zrcM)pw+Yy+F(64A$wt3h>(dPTt2>x7zGZ7!2X{{iha?m%>qQRp$qo=tjyj8}i((#O
z#gZ~4phk=zYIlNFjiQxhon^z;Ymiw{1jHta$q7U)`ei0Kh-lfEVY*i>cZUc5?z0`@
zas!)?&<-u}toPVpC9{UtM3fm|xD60tI8D2iDGNUKswo6$YdC@Sle0J%>~T@ckDfgF
za7L?YFrd9Ch$K`<J6awUQ8^_45jUzZ0kaC*Ic3S+f#+NB9cb(=j<Fe&$9UTl`JAnt
z5Il)F<TftNejX?t1veFDY9Z%Qc(A0EBNpD%Zt6)6eP$=Trw~ShXNd*L;8);j!-?gl
zK<@0S2C&1(r^UXTr_YB1bC?_>=fL=VhZVp#YmOCAX0*km4-GgFyG`Wfg0mqwLSQ6-
zy)@}Pes8{|z0ty&{vq{BZcT{qb*QuP0;jr324l*bvSK5tN)A^A^NmA4W=U=$28kGC
z0H<8ar(M<~E1Cqe>0}@)<V=SN0=sEM#0t^{WR<9ZhLf)d7;njnb5Nm_BUwubvuOk%
zB+>#N6ROa76>YRKH4mHmTA+=D3JZB7*WRlr2`wf>5x}9{0+F1Rgm<Zf2_qhc*{l+b
zt3Tc>bCnX=Yq0UcCV?hE=Sg!F$LfF;7NwxcR!(vR4ZRSV5u~Cb%6@rSNm(ReYH8=i
zDF}9LHk%Z*8p3{i$vzTOlM-T+m9}>R$<9N@Vl=l*aNr5eB`ou#R^<B@RtZay^%vGR
z)E!O>RHr0xga0gN0f3vYrC9RLqN;PrLUwHBVCK+DK;qF9#X<BCdsS=#hH5l(kG#O8
zKDR}^xgFuM$;g<Sq|d&NVt^lv#+ZnVE#||b0VpjH*qPMHyZg*5KU4nw!S5SHH|}kQ
z%A&l2lK^bH7I+7v?d4I-(rtf;C4t%|1wdL#0HO{q3@36Sx@Y{d4u&4W!c^lB9Wb>c
z(j8;<8u3yOMmwNl247}YSL2f}ei%AC6^;i~D5<69&<se&fn#cH2DN~q{`l8ueNSr$
z;@E|L46ii$m)v}y(F28D<CSEETQA0S#5kiRRnps1Z>x0zz!z?Lea~&CN?XQt1)4~I
z#hYb4c%Q^9VOMENWki(Jf=<lxnal|@`JSc5osG0H72Wv+%c{%Bk9z6h^ia;APLm>)
zIX}$-Yz_VOfCW0NP*DmD0q3KK69PX);Bd8ACK4(q;fi=n2MNuOR0>xGFb?o3mutl2
z>!;SG&7cBiYb0^7^GxRGZ@RUhy%T}A8zkk&B}e+AG|90lwqz;?jt4g3(Kkd=R%c<f
zeWQ+zaet4CD_SRFRme)b$ns>)*wJIN<CXD-Tal5KipOc18#NsOsAiF|Q&)1gH4Fp~
zGgO#9X^=56cAwNRSRLUz^{xgxqnH(NQ+Z?AWz^GF;0-vS9ikk~a5Emz_pgeRm3BMk
zCbtbS>qX`gjAz_QnuWu9@AY-+h)Nt;Z<Z5;kFN<x)#c_J48kus8<1LxQ_*{wicWQ}
z=-;6>tHg)I2yHGVV$SAA_Y<X<;9HOe14f%!zxi*~&Uf1EIKIQ`D3)vt9JZkG+x5PS
zUN%lK2RRHb!`Kmg)061<QNRrphg@lv8#AGU-h2dO9rGbghHk-~?0^2-x_4@znn<}Y
z?_I`hutqQtv4V{t-{wg#1VE}OKVv5ncq6hSI7Ja9$*joDTZEwHbf?Ek78)pG{ZQ1?
zybOJ@Aw(($z=$7wDjSveyKXD#lbVPG*62z|PJ!=+4}gcZ$i>R{N;z&3fWs{;9L$*)
ztMn2}t^)XZ4*e|Pa7V%?1wW3&Qo|+AICL;g_ky?x94-Xr#o`KvyCE;Z3}_M5rjPL;
zH4C=BFhPlZgbi{L9(ziHBA$My@<4SL5i%!x>?>Kg#~M}11d8j2g(FI<6-8y2?izty
zZk96l7D`37vOz_Bz%Cl^6-WnHYhc+j2bvS8y_iR{nI12)Ps+Z*jmWfu=PvM2ZoFvM
zGcE_CNX%9^=I7Zqu6@LE`qOUMVy<aNqZfbV;7uItWuqq(T}WW9;c=b!xj|blrZ~RD
zsTl5j=HP44*T7hdXfW2AS5BTl{Sg+3a2W2a1TjbGN)L$eIQoWe#8F;FWQ%_&SmzEO
ziQQ+#Hy%5@WU_En*y>v62Sk_A34<z24-hU4GBcEuHeT5A$i=AJi?rCu6oDDYfP3xN
zCeS^LE?YWmDy&sdafh)bTLP|luhHnLregjAVH2~Q6fs~SH;T-I5*bEY;*M$T>=MXx
z=I49%ih;)D*AFxf?;(~)+exTHyTff$iEuxh+#wnah7Pt>EhsT!w&2c1z#;a7odg%~
zifAD?k|Ao5edbFw0{7DJV2DE&3Kg>|w}v?SbZ2hXA^|MdU%VOsWy2YGf-rueWn`EA
z#(aV#e#=pCPj;d|J0U4yC~mjXIJ*3N>D(8UjV4P6Lb*{{qR)q<nH6I@8BTCqxR|-*
zA{ma;8)%{-$n}1Bu+o>)<_pKwvxoGPF&gD!UO*w}ctf{ev&<_KL7I0Da1e@_nE_&!
z+5|xF$#p_iFuNl5CS;H%L9F<m6e-oHm@pmCW?3POcbm6*=5mk_N{DTe(usf>9miV+
z)>_F^MGFxL##SH@JRh4Z90H-ojO<in`6AdHya-f|OfYA_anh1|gcx2bm>cPg7Ewvm
zB-kJR6L0W%V^*qY2NwU0D9^#HjYYV{zM1njv=${GcbCoheiEf|5Icz(CB0Oo8Y1Zm
zUXX~T9(oUFDBE)P=&4^UjD_rxif5!L8?#_kN;^<^sSj|HB~I>%P(xGF8u}_`NJC#&
zp-F#8|KV-xHTDb~V38gHK^<hR4ktZi5!oWS!JulA#u8dWiX<?-wIv$mA{)$}?dJee
zpao)IZcAXz{iqc@=B4T$_cBxS^Fv((VE347hl(J4zHna4ewjlJBwI4y+J0e$Qvi4<
zpD%ufFGS&_%q_2R2giiKo*{3tBOt1CZ;us#1?wQ8%;2^tcS|U)ztGQyN8<%N1R3NZ
zbk?0+hStW}ApYf(QV}u3lec)4*~oXWAs%SNS{`$4Mw}37kwEFt(Q2<4Qj}l{c{Wbr
zLNAZ81OzKSC7bq!gfq`E3(LXR{#0FPByx_TMuGs~48^n;%GZTBdhZ)zo@AzikVMWl
zW6l6*cxemIRR-8{Aazh=gwRNY-CZgN7iw6*YkR&lK73z<iAx9PlFF4FuFAV_7(wMT
zB#cEjF=_hV*_ChjhdYOYK=6^q!?Z_Z_6?tWapxGbOUOU5W+?!fsAh7v-elP#Y`A!s
zUrQR*)$2LdN3K-9ED11I`)1j#U!k&883l%g%it8sG-Zz)pA+MXAcUfA&yFqKp<AwF
zlZt~li@I_L2sM;F+ecM1N!jRTP3cjR^fkSb>D`vLg%vdWb<9TvkI6-(<uq8eE-;Mk
zbSnA!u)ve>Y|%96W5q#~a${9sbuGvVIjWF;I5Hl>f$;j*DsAuj*D5*v0qYEcf!c~?
z4Ji;&lSO|W=MY*In9vpG1$+{*?a0zv)C4U~R2#WGEqdk@%L6Z+6*!l9iEQRD7-K5X
z-ebdCz&SC%#=H>n@YuXJyIFyA&XL|>rO-1-S^tET<^rSeBQ#q=jbT_W><h4#9j?Y^
z5{X2Zc#hl?Suq!K(g?E;Dt&mHrjp1K2_pnQlokr<ClyUwIiD{KN^zV6@JQ2xT{Gfr
zda+qU(ZfrzP%W&E1<u5j$e5R(-JxhqOG<-MUWaU14EBswBy$Kv?{RjEIGg%*#UR$$
z<xwiq&h8D(HoT=^7H1KTNl6X}WAfg%16xc(g<XSxwti{3709n3ViKHHwQ0xGNApll
z&kSq&D2Q=hG=hTn5ONeDtYS6=#(yjXR2H!OGQRAulM^o!72}re&ww^33{Dcc8S@Y=
zuNSBiJIjK;4x0roHBQ#JqJ#5LtnnsTEZvOm)zvSdq5i(X>Zs8-Bm^S{J8-h4Q-d<9
zsd23l>m;HH#0>HpkSxzqN1sVtj|`}zdt@l|C3ZCS=kb1t6RU-oR{cG+7816wi@5PL
z0<|ykAwcLine)Q7!F_E7O#591hSR8QGSijMi~xr-P=Vt?2F`9$W>~57+TF=+x^8T|
zN12gv=jRHMAz-vU4X&))P^oI+9?wZUW6)4d%PEkPpCeb!^XbM<A&ETK>E6$i@Ohd!
z|Et)&?FFGixV}9k$Rv4&d`So?F3r>6F!x9@dEQ%L@Fjy|H^((ateBKL?`faW%kDk+
zzh}7U&MiH$4Ji_^w#o3?-!?<Z)Kilw2+GSClFw;|P>z8a2CGY%>AS$G0hnfuoK{Tk
zXi&V#ARq7EGb>9$`xs@Y88+!{pp+Ny5SkIff5p3^bR&|Sj3f2ahNCRFqh!)h59+u+
zLu!;*6`zDpIZ}t?IcGXq7fd@(Du$9qyF<G~If%#V%x#cz^~^Kyj2C@}yNnDf2i_Sh
zKlaJc;cTS~oQj$(W*NO-{AJL50hgi6nK~md%ZcX8WO*spPF!F)!q~*T@9ir$tM$v9
z{%oku?+8(r=ze1zUU7?6Sznm@sD+eC>85#@=*vn970F|jl#m<PtHcS-8>UP$eyM0+
z{7`l<eySqzQ%7RsH=p<jD{y}E?Rx#a{}OL+Xu!csJX5RzuV4OTMZDYpDU<P*Z;@!8
zR|h}7wNl=`d4s2-HO>C3{g*#lK?iRS_Fr2`Zw_7`ytAVAk;6AXT44t-fBJDBZy)Of
zUhn_(`qfJ-?%k_*@7})5<h}jz#~<-bgkgU5>dl+iuk*V8asMUwt;qdXuMhSizzRKh
z`|kCtH?Q;BfA#j=k1u~J+Th1mKfd07r&@wz_i-{(elE++EnGw8uCHGg#{B+s2E&)O
zn4mNJMP{T?i%xWV&e0KtgQv87hhiOk5vPubN9-}YLZj}H;t@*|iO_#z6BKzo=ysv*
z5qOxYQxDM<$|F0z%@!IGwpttCF97oRiUK$34Q9)1Uj~R!I4~aqgvYrA)a)VeV#v;5
zAsaQyGjcP0=MO<%f*3vumULYTZpRaN#GzEA1fCM&yun|_N^#z5>2sjB3lTho84Y{b
zq{av^_VG?bIFNF?Ea}c0Y~eQFqI^zX<|A{IGS?>LzQkQJrpY2da${yosExfi0Yk=m
zlCW}qnHYJR$-xpK=*@WRKpS77*x_5AwyY0OgQSQo^ZZbF#aj!MYVSMX8d4ds5yFmO
zGAIy`fV0k+20k&_DZ4EOB$zA=M4971CX`RuaYivz;YiNFNMl1w1}Y1k!M3eqB*?-u
zNuFZ89lwy1{uIYQPzDKxhERLuMPn6|xN+T}wfcA1b~DIy=+IcoPp8hdRD-3>f+Jj~
zsa62SPg433ate3UD66?$eMy6(h_$s7@&T*+^Z#`>a{+GmsKSC*)!vP0M4Bn~_C~)~
z!G=B<cF5u7DYgpMa5FGe$)%u%+8wwMRPq!!!+ASde}$**!pHR0CCgEUPgYH3Vj3*;
z&|!Fo_St_u<D=5gcrW7B!JnSFyFHD3zkU6uXQx<@hp%V<oy7hd+>-ilZ}<Q4Z^%G<
z{hJa@oqZb3u=U3s$D$Ku7{f&)4s7Hqwr0uSN@FD5$o{V6HgL<~77ayyZ#3L+K-0jr
zlZ$~eodRb${q^A@v2f4VAq)>K3N%rbX=ND8B^Id)kA@qLdx-{H<V=GNy?7v$323mP
zPqAA|rUGX;hqvQj`jx@!;X$wM?2b}Y)z;XohQ<X*tyDTxw{x~B>LbILjKZ0lw}~)c
zU^P^7mRQ4Gg#9T+w2@?TLfDF$fDD&$Ub{d%HAagve2k`0@1hyTaxp+)nbN%i8+zEu
z5XYjZRt*;V-}e6zx`f72(bX{~m3z0-FVnFI!z1x<B%DE!yBuZsLR7CZu?*wNbr8#y
z!jB}@-#XC3A18@WJ0X#0Ip9wbvg{9^{r2u3oYUS_C#{?{at7gBWVw=I^O)wae^;b5
z^nX&IX)~{>p$2?>hoZ?_DC%uMckQ@j2qi~=bRHPQr9*_%xapytt?}<mb?x%@$Ff=e
zec7_)_`gN6X(`^7t4^B^9x4_7Nim{!>#U(kS|<(fH=c%MNWvmaCW8xc$&_I%*JKRO
zjq3`NLF7C<9<1^xgyrGRha0c5lUt1C;<1Hu6v}rJa-yM7mQRi$Zx}SXOfSb7PBEZj
z-C0|a6}T2oafK-pPVAb%$nYnt^^BKD;r(s@b=2nh`lb~poP`?aaZ^;gq1R+;_w~ys
z=<q)z$d%^cjoO67ZvO`}_S=6>n$I1z7~Mu=x58v;K#uO!tAF?a_KLCqdfM20?)2QY
z{%^0^(ShG&fI9J2El)Br+Pr5VC-04Aro0T~=-$3bIWx*av~nBL^OkA6wIE0LlLb<8
z1`@iWCl46lvX~7eO3rBbjG+oTXT9%Wucz;Vbh?zX0rbj^p9JNdX`iVCgf&aDnIKps
zjOVi_P1^s@rCu*R1F=Ot;)8Lgg2=7Hb~F}>FQ5JP_H|xO54W2;@g{#(v^KrMqCmNE
zl~R+1PS7JUoL9o%Zkor$8$x<L`|m$JyD9pQn49S@fac;tmd2PU+8@``@vLABXZe3#
z+&aSz%{qZ|PQz%yLR;Z#{VYpmPTO5Ui^z8KvbSU9C-9gK;+LmXU7!jH1}R>3S#O(*
z6X+2mEAg^Z!;B>6`7u0xYw-8IUJcA@t-?9cRuG}S=*y91Osb`aJ6J_6kckXc<gLVT
zy@FXhwKi@psS0rvl43Btg_?s=a1@&ht|a(Ob%F52ykR{khVU8}y~Hk_HzJL>2>nLS
z#gCJ(VMHg1eF-1>S3Y3#eSMu?ekq?U1wy4KxwsFIhUM6!+0#QgWlhB^WH{*k52UO`
zi$*Q`ezTTSb?IJuOaz}^R-J~g#ppnHo4isbMqL$HrG}4dPQ2`+DbIUVFjj=+V5CXn
zrF28B2ngM;LJz9Y4~zcPBRc1#|52)0UkFO#f0U}#&9Zy>AEk;)(Zlk8l<MC9&y{L@
zt=hGAgwNM3PL8u;KIK{r`>AY!!uUXu$u2SOak1>$L?sf%|LUMq@&E6Y!+I^UoGpds
zk^eL7Nb^P2Lmy6sunCtK>~r8=P({&ay2gT4Au^CBf$LvbUva-)px}7XxTR%h-T!~P
zTyjFy?49GmAOABu*>VO*XiABy^8$xwaMzKS5)0T51_DaBkQmT6cq-g}_2v%gB^Lee
zZ8C)vm>DiNFo5f~<qz_63QwT$lef7AD9(xU3n$<K{V`E~jFkBGLwJK7p~BzoA*?MH
z?N_`8(E>liEqt-;RPZ0+O4`O7aCQC@c*@k$rL-fyE@QJ3!F6eP92m83GAJOQbL@+8
z>-Q_X5^w|LOa{>r54r+891Vx>on71xnc#!~_iYfiDS+uabjsHkBSaC3RZC9j0y(Y{
z^Fi8gc$p(I5QbN4D=<R>KeZqQm&Te=o+@4}mmd0j&vn#5e2Y?L5C$vwR|XWBpV8NB
zDrX9C$V<^dtSV;D^@V^LPR5h<-|6}lAi&S!hhpUYJUr(Z$Z!aHzwX`Ro@fNYeH@R!
zoHZZuUgR}yheX5_uU%MDCASrE#oPH&hT;&!F>a@}B0u9vUf*SMz7b!F9^oMsMFGQx
zG!Sl6vv-(I0KF2it_qG2=@YSU-ZOhmRm%Bdg}#SYt71Rl5ueF&`dCG}BrvGid#e<p
zOZHzzoc~6Y`MSi@$+yuk7w7^caD*ST0|-r&sEaHvkBG9dML^_*y#RX5cK5?2q9SJl
z4;K+JeGN|Wc1z^NGx6pdt^$xH8BFyoF&jdzA}ii}Inf`d`s024aJe%B$AR?7In#M^
zdDmzMF*006O}F`dgLMPr_{6mPQVV}2eAtShnyesCa7d3UT%xH%#}-LZy3187?0Rw7
zJ32e7ksF~(4B<K3QGfm(b}cDfl=XQo-$(cGKM9%hu=pKgHUt7ZiOd^xaHY;5@c9jp
zv*wbwQR4TcIh%jLRnq&(Kpv0?bTWIoV~encli4CD*)%%`jtpbC{LE1@S%l#UDxze{
zFouh25m)#y9mO-3kii@!e827QyR#S6QRFCrj`pB-PE!CKt@DnPI?EH56AwAJs-hkL
zJ2|Kpf~>q`Z^wFWo`keAmq>}yw6lA(m=B-t(Wd8uIt2(^W#M*UVeeOq{t&J)k(9p8
za(j|dI-C!?7dyv&=jG$`y^p+e>tUbx5Xwi0Fo2$f9`Yo-R}C)wQv+iteOqquDioz6
zii2g67)BNoQ@p_IX7ot597u-Q$&kV{n>2D?IHe-s;bgT2PbGE8I;mw&0+(g=;6lFn
zYsWrI7kD4%`QEXQsJ63vi6f}zdzXlo;0YYy1J_}E3@lJ!QQc#JMFWg63<DJaiHgCF
zj{Lh}!seIs>GysRclE2!|CMgY1hr*|@G7yTWsm!SSqNPshAZ3IRZtq*LpBsR_0&RN
zv0B)j)2Nmb3CLFui;m1;_3O7Zwq+`4o9jr>!uNd7(@z$Aaz&u$)`|G!(Zb>SBZ6|{
z6$$rw%7{An&7pE0e(*2Hl@GjuubthG6TAU|i3=h)()gETh~eTu5rWH?To&bovQ~0H
z^5r!LkVzp`V1WSu>za_R&k8(I=>U&dn0+n_(Q4-VBi0liA}j7=1S?lmEG$AmMjCW+
z{dqF~I$0s6ZxDf1!k5GO@C5$oAu??{iXGYIg>2-xWbn8Elsge;#~9ieAc%%#;JA;B
zh+>;%2L3!5ewYjkmL9{%U#?dY08Sb`@yVMc7jq^blYn%DmUW(=A=!|}M8s2tOPu~;
zD-eM@yXT`d@AhK>zaCv-GlzvGbmrn$)a$7%_986|R2AZg4!AR{?Q{!y_$MTbIG<IV
zB!0NYEuO&12L$8C#(eR%jZ{#ook&TXskeyv^abiRe#yHpAuaZ0RzbvG%``0rp+-_?
zypE(hyFDmyTuoS=%}49k*xUNg7K*o>6rT~dw3FZ?ax(2da@=+#<ZHY_gAK{`BIGz`
z@o+HUlXIay+-E8y#t;*ez!8Clb(Rf1)EP$N86pq`A_qbA*eQZgSm1eorh#T4@dGPP
z--odEo-e|d+`wquT&(&l?6E8yw}a4|Bh;-v_TnPMjo|?Gdv7m+<%*1=bmP~1+#-t~
zm<Q&#n-RZJN6QiITDX`La^vd_&!lTThU)mrxEGPEhmF`eRT{=JYdhm&o5^hLGY=k#
zu@%zdZ7teRd@-mz*=rSOBi&d59!y6TwG#R726Now3DQuIA(}R6jlVEjVZh4BQgWGg
zM7oP&fmE`k`httS5s6P}SdCvubqoVk;Ke7cfZ>z74JGNLVeO4ZX*4q+hN&wYS*29^
zw(q;o*D;w}-ROg?(Z{i=B0Wr7zV#BwHXWFXp5g_W-b3TF=_f3Q>L(0k64Q_<rlD&1
zk;aeA&jHnQ{Uh@EZ|wL&|L;HKG*=On$Pgp&7fvua?ar<Y*JwiXQX{w=vI*r!t==?x
z_As-kDJrchLe6VM0S7HDJCNtO5>N=I2P&y^=tTuzrdvbHCMqNz2%_$8mywfH<#3W{
z7a`b?G*)ovC5YD&SC~$HD7ar@s&fCf57$9#|E%*~0dyP1SD8a1H<vlgQObVQ%8Vdb
z6x^8rV|62->K+C=mu&@H=IsJ11Dbb2_pqm1_twLs`wgaZfxudY2L$Ekbg}q?*Nx>j
zYh^C$OZQ33to%Z+21|;YcTKT=;VlFL@GGMPa7G#p#%_sLX0aTH@gVdV?DGw-F;Xxd
z<!Ja=x%*-W1oul=-OnYZsGm&#@7&Ia0KtCv1ea=xlP~7I!3hK{p#sJ3Y>0~IB&5G_
zA5fmRc0frHVSwFp)I#@g4+Sf~c6P5J9=!+~U!Ox9^9U>>xRMC=!bE*V5=S8~K&YRm
zyu&VZ2%{N)%cWz1$}A$k!rf!}fIYiEG`T{YzTvQk#jxP7Sq&;J`F4+3C<1qfTNpm!
zM%;bb!2Mfac_LtnU7i8JBh8mf@c$<aXG%QgQhIbVE1^bB3b2f_@*M>}V#|my?qG#i
zzIq$nHKn8;?m_!BKjRYLRMCJV%Me`EJuUK`aOc?DC()@FNlKs4(eC@xKld)q9g%Bw
z?n2@GVo{pm8e^`7A)%bok{XFw6CqgobCXRB<LS!}>`_tSd>8%s9!5(E)Z<YT>k(eU
zPbaHpoeHf9?g9$2M|^HH+R4S5)mJK)6Y&JduT6c<QS<$?i|2bVoWFJ%ryr-zFs($P
zeB8oZ{~Zm~ceFU_7+(L2*BXey0{de1_n;Fjt^!UXf_MkvkU3>QR>>mQ1H}6d<hJju
z{+->>Svk&?`WO8zy#Ert6D~*OAWL_RFudyWXC(G;m!gcm*5pJdxudseTNODP;RIdd
zPm-fyt=-xqQXk#fHSHRewv^XRV*8cpE{A!_f5Z}}$r=~=a%e%F)thF~D987%oTwux
zPLsU9kJe=sVFhI-q;49|k*49Qq_n2XrQHp^!B3tfxhv#kco<^bE~Hfs%>6jeY?rfo
zm{Rk$@~<AS3#w6^9`jZ0s&JxO(j|(63&W{QG$8!~E6)?rvN>vH7HkVQ8{&A>AV{r@
z-&}Y?%j8*9NWzc4POyt@=V$maJY2q=;tKV!oyzT~+mqv-v_lHfTM{BkEfuVX;GDzW
zU&v=uVAma=o6WQ5@l1FdjilT{gsow~$dhNaWX_<RtN9yZVZ2&AR&n(~<8v+U_FQ(?
zlB?Dw8HwNwROPBwF9MN+O)%GsDwj7hwPnK_lWJ&Z7N}u<ZE0+pRAk1pOn$F#fiCCP
z>S8Hmh~c#mP+}H!l>^fj9}vkv+`u;)zCt}_q#hJW{Z<FUf^k~pG61Vl)j2dMXMy+J
zPPt^T2*q>OoG<W>8K13(1RU!!C?(uUU>wIc)?}mA^b!3=L=rSH43mrjw&7q}1}!#Z
z$<&N*?1h}&nUyCo-drU`s2G$iA=@^i@)kTz$E_bH{zs|yraj#+G+EU+-AYGepqR_F
z8+U|h>B7rC0(G537K!rB&3xG)sSCN>xNkS4lo$c{RT#j|dW|2l0mk1WbR#VBJ%mEE
zIIYb<5_&1X9N0k%WgL>E#*vmrL`|oZSO#vB430u_$k6GKLa>z#1wc0nKSwlUxnp3^
zaAQc!`2ywvow8GYQph_Qoo>ccrAAFjG9l526^_3s;%X!jvhYi)_t13^x_fbOl7g0K
z{-p-kd&yrIt+YbAUo=nR7e<lvR53%~+u0)V0~wk!(?n34`d%6`66n!uaeU*;#fNIr
zmmGXRk~;yxkDnLKI^^zN{bn+}DHK-jAdR522FjHg^$T1i@O&@zQ{+-|_#9fGLdbni
z&dii5Fshdv9LpTXx*Su<7M4Stf&9tCX9D+pd`NtX&Q(S!fSAv;lnwy=b@j<S#T`Hf
zbp^BH;_x&wbEqt{AuXz7L!Cn-wLfKxyB10?u#A#j!4}SwYeeADI^ATaf(SgJkqvzW
zZV+3Rorm=V*R$aCiSLhy8V0|-M1ae6FhhjzNds@8^Z_TB^l|cSFx}Ab^buS6c|^d3
z9cZvpNIyT*PN}{>E*{i(Z^Ea%PZtQO7+9o>_%NGTp^ujEPTh>0X(xb>0k#mn^z;dj
zGcSfh9^d8bJ&2(+eshq;_~|~tXMkCv7%e?e;h2>ABjn*PI6?@+GQfP8_bbO@$Pv($
z-3CFqAw(j&d$|!obR7XpOcfC#n#DXtS$>KM`ATq(`T{EMbOrQ~cZEyhQwG3n!Ld$C
zju34>FEAW+7Av?cxOPLl_nZK}V-8oMy5a91>vew_BH$M(>6VSP1wXqvRcDd0vj!2M
zCNRGu++8l}WIDpb&pA|Ttp)u4@r*$$Te0=Bh(uRVF|-y*o>dy}F9>E)5XxHud4^H<
zEqMl}CK})izT1)u(m-FK`LIE7K%NxbK?PmQ7%5se!`C`SM&d+d9Rb4vq4BQ!auN}<
znxG%uQ9>$1;}|4Ud36-HvK=cVY|N~^TBu_FSSJ_hsZlsWK*OdydcA^Mx(a+Z|B48X
zd0TLUDsRYE2Agw-=De-Mq@m#U*^^fE4E6+>^h2Ve*=KUT96;DI;c$KWn39TF<gKPN
zo<<{@?vw?tV?M_XjG<YBp?ME~KrwHI<XFwB-tO=TiYS=hAN!B6okb9Kb(CxLq0A?E
zL|yt<q{MXj<%AtJLUwlDM8%+Q!NwSJGLxCfjN`j0df^Q3_PtLc6bycXq8p=lg{xGb
z%OnmAQt=$<J)GI13=e|gI<>!pt>8A9U@p7xXc+P4Q)H+ARyHyn_Yq^E`o88NaNM6N
zmFA#EH9C+TR2~MCcxn>|vl=qMaw<4Yp9M{l<*0;z<+`E-d)du7&SGq#%<SgKwCZ#a
zIDOUf3NUnUs$xf6>ahr~RZMvK+4=n2%mo|@lw~_$#E;%G`FHj*2J9zGNTnlzj*eM*
zp|CTgLwgPeHLr7&y#k0@fdDSc0$^F?0JhXRFqKjRnrRAG>*9Tum)xopM`(19167jw
zJa77UBQqvNPkq9m|0KuPp)u&&8PolQm8{JPAt<1sz&9^1$Sy93k(?-nCwGkk61(vz
zz-75Fw~UmscVM_c(V`lOy@mB6rO&mtZW?~u79=EZY{If?C&>07LTu+5d^OzwpQftu
zElKPA1XxZ88k<cotN<2(yewdZu&gv*S_zdRmS6|5<%bL@ej9aBH&~w1UoEsU_^%Jn
z^yiuS^qZmZT!Yux8hQ{}HS|>#`nn3mGpQB12;*OY{#b>+t3rQ@P(J-B%Q(!`&tVS1
zcEm07vU0iUKLe&oKSP*pr<(v}JRD)tQ%U<3Y_v#(V(sj5c8FjO^gSQU+7~=*)<k(Y
zJiKZGzrhBeUs62ZGc!+wYE2k{<&>gPc2<cP-`y&?_Vay_Ujr9wM98$%nlmpKTnZP+
zZEJ>VP&KX_I~x|3*XTlvG7CD3%6GClIjOBKf~;LMZ?Wms$XX+5e74H6Id;fwXJbjq
zeXf>n)}fZM-0^D0>b6%Cm<67dY_^P=$8JeA#`bTGLH*@DIYYN52Ufi!wV7<kRCi7~
z&9o?2Gpd#DXVzj5rNwZj@f)eiXr%VKhH6RXzA%g;CIDa*_QcO|>{Il{gzVWBj^@io
zRN~3TQ$pl}C1I*#DWS8Gln@;`uZ^O_Sd5_@Rg9oSP>!F3%SKN^lw&91sv{?%vvHFU
zc`wf}rNyBjXw9yOc6D%y4x%(}l3_+s0^1>*;C8?!cxAX6WJ@x|P)$sBpeA^Am?m_~
zAWZ~qLsU~dWq`^pZ@&6eOo2gCq$me$Ky?n>MASNf6^S+b=6QI&*D|1!gtmd5C^`pt
zB5N7wiJ*1BCz7s#pQu_DKu*%C2ohntLP#_%BP|iMD~LqXsVEXzi^50*ZHgnKXjdQw
z;nw19S13tlb;KuhUBM)LUC|_bhr%&LTe8urfRd29B1-s9g_Ov)D5gZXO+jhOrz<KI
zRVSz;t0U6>Ev*k+Qn>lnvAl>hTa*-}v@ABFgiaL&{%#Egf+r{_P<84j;J2tJP;A#u
zAljmwBE=Tn1iEdii8->TTUpaS-`l2`AmRyn2~?eG3HWZU6bQB{r9`)_U{6&^kl3LL
zfbCL9KzHdQptq_cN7J2!Ey@TYx^xlHPf$gmdXgpr-P0725I$KC>0ldGJp_UP&-Bo%
zgY9~VG~IegC_2_k#CPc-;yd*a3AXDYQg!Je;=A<_DYoh%5_RjLMA5B>NVi1~Nsc=7
z5b;~|5J|S{AyReeA>uprP$bx*hZJ3x9?Hm0>w7Jk=1AJE1c>d>LqvDzA)>eGAy3nt
zg>F4W5gmGn=<RxlR8P@Eq<fMca)eLTL%881_FHA2HFIXNd}mq+fdaNIhCtG-gGkV!
zf`IPQKtOjYAmF#_9}sn^AE3Ln4+yp@AJBB`o=DKGdO)^C^Ds9ZiU;T|dIuES)eeZd
zv<}dnN+;mA=$u5hrAU&PtGO<X19|PE9mo!S18j%70d||VaU`9|ck3Dm=ukDlZr3y*
zdWxa}*^~5)&^=krAaZ55p5YVB{`4qQG;fj8HcdmCZdD@`9lD12E@eY}r?w%%c6CFl
zE`39Mx56RCR*gfVZk3ZLx^)iewkRFRQHRzcev8^6$#%U%sxHMte5dA#1Y1;(qU+K<
z8CjR|A!+;YC$>ZV5Z$4Fh~B1vJWY2Nx>XQGbm$<Ww<{r1Jw*$V?n!FM5k6TDZL?CR
z1Nlq~z1yyYK+>&)NYJ5zfbP;jKzAx2;J51^5Ot{^pu4pX2(~I8&~)pbNYJf%K(<Bm
zFgG2F2k0$&2Nc`Y4v4z64$z%SC*Zf}oJ6*zNRrt0<qqVvk9HtC^bN2b>IT?t+QyM|
zCf}`VAfQ9l0J~k&faocT24qjtGeQ^DOj@c;f)6Ios;fF8qbO8Fj<*^j!)6L1!{+)S
zLs!*9Mw4lW3|lCN3}24dj3DdV8MYj)89{ZhW;EGY&9M1Ut)a`2TBqtRO#3*^q?vJ&
z;p`~Qkamz}$jTTkDY}v_Mrg)v2WW<@j?avyWq4*(ZKJawi-Xf`G{jM>5%0NY|Me^k
z*a?u&cEgukC%|)Fe&f-Fqqz7e#?7<e(sO&B8CH{LzwN)||NgNNci27ea$J8f!?XRr
zl%Y^$Ji&{*6m6<2;tHjeFjiefc&4Z#JXcW>QB_V6o2jJ;FBDS5p!*i9kcixdDHbM?
zv(#`Am8pXWFSS}kRrOiKW|}O*a~)<8rS{74Z5eIXSW$ve7!hi<R0Lc76u}kEq;d5m
z3T+fwtR9Nsss@VK7Tpu^ZCXbWM17OSQp2FPt)od{i}9p!c0?&mHl`FNA5{uf9ajpU
zjVy&J#+Jg>Mwdbt<Ey|GBTP}0V@x5l&Z{uxI8(^#NK^Q1tSL-B+HzDm-b#x0Ot+6Y
zCB+O01-Ii)A?(Ogh|1Wr*tVpK@u%4A2vmsb7*zO{QK%@|#-SmJBM}pL?u!0((%?3@
zL#Q(j4VIO{ZwE1yV<awM^)<z9c+kvG>EE8kwaK&p`tQ!!e=F;l@x|jRMxwS$K&rH8
znLTsR{_@#>W8cO&PT$MqBQzn5ALA>`);_G$B?G@8?2dxtt>Ns`YcfTHpErCkdW5HX
zGO)k*o`YFkd^$%_W8F4K{JfEdQE*cLZod_v0#efao-++{!0!d*PVVZtOyX_jJ4Ta~
zxFEc#BJ2`EMjGEsTOyo4UeXE0;ODQCA)aq>Quuv|OD*W52wIb1r?@bwJ|&U-TUGq&
z5_dt@cS3QQe)betE-5$)M=ivTLVh~v)a62i_}_?L=rka+2Y+pZ7D4FGlvji)o#W9Y
z&Uy-Z+aLZiTHPuLIOJYk;>53)-(dGQkTcU4maIR7np8FKK}Y_6oncmWf`zT)b(f9|
zS-1+Afaq$2`^!FJNT}T4M*I*VN#s6j=yw#lWECH-bPEYcZhQzo@C=p`Xr$Kg0Udf9
zyE!HGD=^fYBUL$(utxK7kmt%aTwJEMHXz06iF{k0B6e=*XHDZ@D{!?CK4V{o+5v^`
zt^7uB$S8QPmw|IK@aH*$)?~mDFAV$KQJQ?4MkDlk@dZ&^nXO6VVs-F0UKUIrxU21@
zyYO{vWG^=%vRoxZmN$&r9_q!#DM_`V#w~NzLu6Z>0m9ZPr;KWlm3FY0HycFJNFot6
z`-}QSkxnj76~IULN(_rHY7{X=HlP|t1ffaZ^VPb<MIzJJ0%w*%5e8PMpgRO)wgNB^
zGl<+VOhlp%Q(L+If;A(ry$U#t8K#c9;7v<CkVB^INLIu}$B+l1h6VV3^i8!t1prb|
zv9K3jPfNf1S%$anj>AO{L{e%U%ZEiy-v_Ezq?rD49jWq=KZN1GwEVCDSxyiXx~3(}
zpphDnP<&O_Vkp3YP|0h=PeCLZiF!3c_?ppZI2wxb_c30(X+m_hEmZN<f<T8iP-e^Z
z<I(yX-t6(I|4>CT{Avw>JXYaOsn$4r3kTHo#qmXy!27~SeMB3cM$mG#SoX(QQsi*N
zhMcb*5c!YvD+#T2bU#77o{$FH7eTbb=guy=3(|1Kwk1;-TQr5pN?^n}vX~SLRH@iC
z!d0!>YCR!~gc7QfPG03-89YD|DdZ%SWlHt$M@Oi#tQ9h>F6B1VLA7p#>s3U_fDCDy
z`mI!^Y8hLao!wMl@(fdwm=Ly=6Fe7{s;rU)g|yu%A#^%1$K{|)s5}G1ns&eum(0zn
zWG!UZE(C9^VLpUe(KeXH3ndZiWY6VDZPr4np_EAv7ML7RmOKc-<6%nIL@4V|C5`8l
zv08Hhd9YhcDd&g=F-rD&H1PZ&KPU4B6B^d-Js=#Y!Lz0A0a4Q83BF~*%|^osCZN0P
zdu|6rLW6i+SA9I+=034hn|xh(QNM2{gD;6Y{lc5%$9U-m4?r@F)d;g{Gs1BlA4HNI
z$`wb+rySx{fHhKHfiDH5WZlS*X-M=N5sg@X41ec-Kf>g?3guZXBqE$(Ol95B!O(N~
z8dIQ9Z3<-SPQiVRDM+j~1rr@0x!|f%>dT#P=CD);hA>nY9@<ECYb0dw7KS7~wHn?O
z(#_~dBo)R4<N{V6zThh{1yo!KN-&u!)C9{aspN3W;T9zMWZBrp*MgKiE3O9zHpJv`
z#j%j(6mf;{sFf<6195XAzp6Nq-V-K;$2X#DGKL~77YgoQh4lilYxhC+L#m9#@xi?u
z8)y`_duKyNlq4H={ZAmta_G`?Ld<h`AtO7xMOMpNC`f9RArVMmykT5S>=MV7ay1on
zt=8*wwM2JzZ?O*xN!4Uoe7g*r={89@RZX5$gjB&Pf>x-mHeEpTHjL9VgARu|2RoqD
z4(^v@K^#NA4-t?E<u^qqi{D(ABPaRy)d)}cNx}_wKX|#^_pk^&!fL$_#aIB$h~i_)
zF33_4CSQg|AcyXuW;80ow+1FNsL^qH%PFj(L6Ur(+t2tVMxT^9_bD!Jf&I^mNzzLU
z+7l4h3m5q^e&g-$k9d{Va9;y>#n-+Ir~ydX3}nKswt-ATaSfC$FV7Pr22#u#fk$|;
z21YHJgnR=rGm(ZL%&q~rt$!#{J}M<Zr-b$l6q3uUJ|5rtOMjKB#_u2km6R@~;~uyV
zIGa_!9PU8ky)0jv3g@ecl<80{fC7`(&JF`hc@-WE;L^)#iXp9^0)Le%AjP%~VKQ=q
zV(m#Wevl||P$@7a%YqRm7&K%B+D3lX&{E=Tsf<7;p%+V0SpEf|kp%eL*8!7KHekcB
zQIZn9h8E<t1jvx!hQ(D|nI{W3EMlce;!?gcgkc)`N0iExa*Sf*N`{pUvyZE7exS*`
zk6sS^g$FYXSY1Up=%is>FUf@i_y@p0%QKugqnJaFM|XWZ`RX%K0U^|K$k))()}^uU
zAo6LEJ=Z&Hm>TS^KbgYpo>j=Entw49U(iIAkzdODSpro*y($qf%x*K7vk>}uq)LM|
z*QqP36Pb)y`(+xmC5OuM%0@(szK~z4=5_?2>+kvhy2FED>HJLyPLX=j2sucU$!`a3
z`>zbar2`km?j7LhYMX<3@|nY~SN<?5N4TfHawuN8eJEt$ZRQdvYO5gC%aB|)wXD2K
z;Ski+ZcmvLiV&=ytMK<UcULj8F32%Vv>+$2Du;-w7-crkQ&3w7hl-0E_bKz768dw$
z@kVEd$G2aCx$kSeVo0F0UPv&R$K7XI8Mtq|E^si`cw7}EkXjQsAafwe`HJJWTLU<J
zn(^ItHs3oSdpPuk7vTr2L%EsX{kA*3947m`9B7)9AKWJvO&SnI^Q06>q8cV4Dy<#F
z*}j=}b}o~#PkSwrpsA9#p$>eNRaY`jpy;L196{f)et3a(7GBYH2KWTT*~Z(~d&uC4
zr~4tt1q2Sd);Iuk2i`dm9{BY9Fq84usE|{V;E`fCIhN7{5>JmSvLb<d8X}i)v{<b+
ze3EzR-@@|7yPQsE3hzH5-+$fo=W86_c2OP+Wozb7VpTZ8PFXHhTxIV{&=KJvxQoao
zHl%vb$+Di{8hvNCsHI@zRI^kr>Lm1&xD4JxA#+$xBj4C+wh9RZk@26+VxAr;OeGZf
z&Tf3Z@EQ}W7-~aVtc0E2v-#KlbTW(#oy4x<<=m5=>;8$vEOmE~7;d)M^gQm23)YNn
zg0S((h(Ct3Y_u7(H~N%EVtMW);fa?NB}*lfgz+m>oPD@u@02N<`c4WS8UBg`AT`{5
zgP8oI#y3wP`RitZ7XZ35g=xe^Iql3?f3@mAb_-hE{*%E{JH@~jFk0ai#ZDp^+<9{Q
zl!o;3@WLvdTk8}mRfcZk?C#yPQrIWbx>7%p*k`wm8t3YpyjO4Lat57c*hAlQg_@!K
z3ypOs*8n(W&ua?7ls8Kk5`F7<SF{*!csoRgWX}cr%#2nYRC7OBy1`lGO+<!)TUQu3
z3zj*uV{}iN6CM{!j=PiazO^+<=|d-y)G8A~#aqXqcv7cTwuw`ot|F@xzQm}(DjND{
zl`6SPLcO$wgi`pV=N2*=M(Wv^%-3}UO$&95SOYw2ZzMU->a>y7Or0BI-AJyZaUH^R
z=xW6TH%Bi5&Ox<Yp#88i!NV5yl<+Eef4NlxY?XC(mn6rr+my*SmzQ4cH$48^DqeW&
z3GD2OHrp!VkP5y{1boo93b>3kSu^4g9M5VWqKj>nfmu`&W`g_#j|WCF#GQ*$?KU_g
zHe#$nj?3UKZ81D?yPIOh;yT=|J?YuiET(XE$w}oqC?VG`pF&g9&v-uy@0%g4b|&D~
zy;CDcs5be4k+ZrwN={=fiY50Jb&D7-X4tyGU$ByiK_8FD$txXI);l~UCA(iMarFD9
zKcy|&ZC@?2-wY;`w0E`0W<uvJ_g+>T4IRAj=z3ON7?xAmo-$~4ev|j`pkndxoK2nU
zv6`O8x$7fNO1^bWTF@O>s?E8j8ZGWJxj3O-kKT{QletL0SjpVeP1K5YU2~fZM^zJY
zGWU;m*|JL>fxE`r^cBn*oD+G9*M&Q223yddx8e7<5~z)ws6@$k$Q^R<dH>*5P00DE
zn)hmgFKYsh;TTb=7=WwfCpF>|KE7E+RApS(NU!syhSUHIj5XrZDzION=F4yqeA=Jp
zD@uW%*JPYmGjYDDN|w=-NzucovL}<JFD}{SRiN1L=;|U9D*3${6>z-OE}KA%S@$F3
zQ}`8ZRCUb|MbLv4X9>28%yF<QZ~a-YH;YhPoYdABDrIr-g{2avdA!`W+LlrA@3o1E
zQNNrd*ZuLulHNmj2Q{1nTgGf_8@K1)be0p#cbF6XGPO#o*2YzQZ3$H+OjBAFZLKnX
z0cCP&Y&kUo+8eVb%{CXL;IzJ-N{sHEl}1@&3Ee`4v*YgMs=7MMxU$H0Ca0{hopkOb
zVmrz9%F?G7+vVYeA|ui}iRXJe7As#PIV-Y=V)g%YM!n*HI+tC_Kb_C6-=EH>7wu2y
zD%R@ltQ?O18J0$NNVxTmo`|i|Gkjz5@TX_8iu7OAYiUoRw-!$swkLi==du9b0o%3~
zUExm~U72-S#AH-9jh$U*po-^$syZyCT1-|9v{Iguq>|}qV!fuZp)2F9lvSy5t1L6#
z7Qr=QTU`2N$yUsHEVd#m+Zn?Or^ePQEw*lL728HA6%l)_&Er>^wd9WDi~bs$rGaxF
z{?ju{Hrx1nkQ-Q7s-4@?|3R@!ylMY}j}G(4-jQ5#v@m%k8z+zVKUlapTYcnX^%gE(
zR2C%Hc`S%evsy?)SFVb@f6^<<lFC#(SUoP+ix<u2c0C<&(Se28d`)+5UckZn=7%l{
zJlf{bgURxKw1P|A!_oVr40tZUlev)M0K~Gu^l&?fNCdl@;<BooZg$fhG3P?uY>^0W
zle1qk8kZ-m+$g1<r-<B=Cq=g<Pl~cFPuEvjMo~R$EJ^)Jwx|-~{&sPNE8o!4qy8-8
zMlnAeeX0U!QaNAXqDr-{$AcL>bh^=eRuO*LxCrAqk?#X=S0!_AgfoOH<^oUN*D*8f
zN~$cI<&fKTc8#*NB{@ftaRYNUAK;*|DpdS0aZ!f3uTu<1E4=?H4tSM5BI))w@Vd9+
zT}yD`h!Md*8U7BAiD)xtc(SbD7ONWAbNsqk4fEoIqXw42tyHs3M&~eT<qjH)5}$W;
zHdjRFVW8&$OO0x3OM@s+EXLw_fBM4pqWg!v!;>ERZqM0>+sQCXfb#q-Q1rzg2>%|5
zN`eS<WHSsL1=2ojYMtDo^G<HDx|3Us?&QQ^o{0+U!$N0v=#-FjZi|6WG2FK>wk?>0
z9nnB!5fCouxDm*NsM)0CI*oY%26tm$>n_ju*RfPIT|wbhwU!S1b&}wfoW{r0HBd20
zI~009OIe7z6Bm+7`g*3LRNWTf(Yex%k)dL1WN>sqbg~SHWRO=WlNQfTH)`NOKEX;r
zwSj}5;UZxPJ?^jjB^1(2Aj+<Rs)}V8Y^!1+>aJoTsZ=pue^k9P_#yZb4pHZ+_lF!3
zs#`+Cbu(!A-3Uu1Uf*>6og$W_)eNgUQ`LmC(RnMgpkysi`qP5J3qs>mkYAcBcX3I{
zqb(*59JzmiIjXn0{laIC6`igbJ6@SjBc*7ef+B040-v=F@z4m@s|jrQ$0t3j8XPzF
zff`v+0xfjaycE(ZIbz%B8mjjmS^sO&`&oa0`r;p~FW|7`E7`!E&7+3V3mwB!)Vjes
zcTg=56>5^!d0Y)%Gl*u3f+iN+wiO73W0ELsPNp;^`Q$9Bw$LL*o<7zD%z|4GmWu$g
z_#8MS_U0<RTIO_#?BL$}8JimUM-H8w90yeO?EtCXP|7h!@`~KPu(}wi4`QAdf&*O1
ze$m|b_p{+HAdIXDFY{z|D!7yt$DU{l$q7~TlPnq2^)j65t{Fy-zS_}xPu5NalTfqH
z(YIVLhpr^4>YgG1AvyeX3{NfJ1r+#~za3PTbwc23wpiC`T#|S2=55(N1g5Gry&h7C
zwQb}f2M0Q*R!G)#7FlaNOOZF9#oEfXxJna}AggVHT$7Yz(igeCTFLCOm^9t#`EoR4
zoDcf<CwnV_E=mEM)Zlt#k2;8jLWY~2<-mjsSa$qFVqJ#W@J-f^gtRmwQK|(krEV#U
zDVoWmO&eL1Y9NcqTZdQ{Yi~dF`2f-1uBBpKBX~%0E|g%UTQ6}^cQe|CR#?ZgHhPQA
z3RlGqOnt%68id?C!y_;e1@IX>DqmILpRswu0Io7rpr?$RRHc{AY7(>J-Zgz9dG%G3
zLVYtDx<WG0be>&{uVmX26xCqS4QlCf(WpG_>{^Pf0B|Rnk3;SX;R;vgTp^2WXU%L{
zi}znr4eq$aB`7{CC%YY!2-yvia;?H;b(Ao=;5ANz7q;8Uc<*p9z@@IiV{qh+2n=cj
zAe;54&s8rbM{~b&1>%RI!fJ!A2vLB$AI*zezJW6O6)wN}&Q-&FUM5j072%R#3Naz1
z>#LY@pux`j=YEwPX)yAnyK0#N;80sL)>;LFW!TBL<>7pIm1otn7De!IFft}*7-6n>
zDLLJLa-2|U#=H4qrHaSPRv5hS%ciL;mM?*E8eai_suIKVxI#;xnF@Hhcz9C*yPIca
zMkHiX3HGNo^kb|DOGhGgd<$FN^<r%tE@5d@olF|6caIy1SQV!95i04#e4VDRC<{dI
z>)^`@7+wJ=yhcE!NN1yJd0j)~-2#0Uv;`%6^a>dEoCPdva!LMbWV({T&<Seb<H^@j
z<f2UaXl4egh|EjE`v<P@WlISL14hnAoVQkyE{3QximLu3e03-WZ6V^r(QyHrj_wgA
zsfPKq7~;kRL#Px?AF*A@vvE~{<z3a)K&B%fR#>2+q1N1g7h+rbkR6}=5(lQ3sarTc
zIK!;io>@mpv_dLhgUB0NDpLWH`Iez8xYmKIIse?dI8Qn8NkvYJo%h#!1018NxrQLC
z3<*Kk$-5iDaF$L<37sAy1PpY?B>)N)W9!#n6W?vWnGDQ05;{2Mj2GxRkBRb2f7M^(
z46ScQXM~#Z8KH?Cxjj@PJyOsWCbo^wV**I_dcS8?)Z~ES<f|$Zr2vwoVE=HgH5D$8
znQzbV5kV<cKO%I!!YyXZ`JCe=2DQm*bFbznlADEt0M-a*q$-gx*jUe1CyAh6CvYKq
z2#aFQni2J>(jG*ztE;64L7bQ^6mgR-af3JJ9J5^d5Ee5O2-&O`eM>VbAlQxbc8oii
ziNeW^0_rY?rkLP{yvipBG&I;^&O0EHRhA&AYiOoXu~tj#PgV>%(=WdyPV`FsNv!G)
z#Olxc=`WuZ@BK=Dx)Jh=&OgLqfc&Cmu)pc=o!zj=#Qc{jK=|CrdM%igVtKKK=Az4&
zxW<??nLmG0yg5$%w_5NifM*MVi)Gn@RE}6J6fRV13zB-8Ju+2!2$tin?$&g4Dx5o8
zjG{AyEwn;bO02M1aTTUkR)uy2Z4WXX^C_Xhp8fXr^*<uW4}&L!s*Wt(Qhe;{32&hA
zP_cQ$xSCF1Ak_4?y$^_1i~ZGN_Cp;n;|ZahCycV~rc(4k#^29@;$4~pFB#4?2Odw5
zfferCXJRS73VhFQkyESwkfSI_nmk9SX3J6JaaUSu7%?m52(iB~06|s`S<1ZM+(m>C
z!a2dzTL7L;H&`<T838JP>rhi0hTf}`To#MwA}aWd_MlhgDgZQ2Od|sM!$bL#MQ{AK
z^oC#_N4Lo=U}D)}w>oQ14nG{8od+9|Ajq7|Oai)PP-)C$S|lc6*CUbe2Ej(%nN^Yy
z9T)_}{qR>7Fx>7p4EK}a=x~e>QjWqY2`v$8GQ;3A<lS{Or4+riRZ1pe7Lu_+vnI5L
z;_Sxe&g<?#)AVU$W9cvda@5=Zy8kBT6exd?^aNB7fe+zDjZ+KF4~s^dX!wM48RHs(
zoh=^Vt&lJm*tJxDfqTf^V-2(XGH9569%7u$@8Wqsr41I#M>^jym=t0Q=p2q_P5-jj
zLmkjSt7^p~T!I?WFl)V@+>h!{Q^O*ion0WjJ9%-C@*<Y2*VFQRkt`5v8J5!mAs)^#
zIPpX+BVPUH7PsKEB#W0liYk!B`j%~Hhu7nT9zdF6Hon`(iI@h#TFVyJpjq0>wI)vk
z5WL-RimW+(cd3A26FRydrK1(rr7yz8;mM`ukRcR}$o*!%&qWa2Z((+uin-m}sxq2%
zx2cMk`vVxrFeO;VfY8AeBvnDYpNu*BEeqD}PKoZx)v&{<xep`E7jkX<jQ5f!cN2Iu
z$vv=4PC?{VvrSF%k&|YUTwW2eVgKM=nP0(vzCNOpVvSK;T+m<sg-dcRB=8DGmmaid
zP$EPzglRj;+2NaZ<mc<tckNhQ{6H7N?rsd<u}byya9I!F(S^FSmKrg;6DSDmY<!d^
z@ej^~#!Yq`oa*Bed)S$}R+J?u=n<AvISJ;j&vSUmVGvBO;q;uP!4=|(^8~loCPlu+
zI;sjgJ!zm1S1tSzT@}#CmZM#Q#aBgO-?N^yOEBoF07Q!JkH?6(?#hw*TuVh1BvnBZ
zj`;SR7<5$tYzBT%RePT^+SAdvI`SBIr>a66UsdE(dU+M)xH<;IZO}~ZMJ`CH#a>K8
z-B<dMLROhs>TZ2NiZ*pXT$j3Wm2ir4!Q;sorv_R7Umz+amP}B0Sew8CGh!FQw)lng
z8Vav#LSniVp-Z^V?Ql=w_nzVimYQXa<7(N_w#?xB#Zbj7i6yEjIB$K-67kSh^;MaD
zcXsp1Ct4S5-HMZ|o~VP7q999ibsI_EOY0h-q^kBuXCiPYY_Kr2vRcUqI)nt(*)Anf
zcrj`_Ffx4+>w@V}%@U4KU;B{;&dID03C0;!Ts>P_%b~(WrxrD!m2zE-rDze8bVFT;
z#<z$t6HHx7M&bpv)-)!Qw0vl(<_e7*7>`VwfhtW)X(P9tNMs>MqotHD9pP#Vg_H88
zE!1O%@XPnnbUMKuSvmq9ZB}1LZry?%h+DsGp*m|W=E4>h=~3LjaNcr=c+Y$t!0o>y
zDod#^RJ1Pqxj$IkB7pxkjzb(rY!f;hK2_TB0-LR^xf}}BQ)R;HG3~EDVWqPzqmGhm
zgetY0G-Ov;ND4|kuZpxj%`sHqj0RhSU%q<xx{i2r5IuWh8(zYJs-UilxU8`=BbUne
zOvz0SX%V;trS!74UYQ8mJ7l7%b)ST7=?;mYqiu7d)@CK)nZ(^KDv_wR9P;EVZ#&YX
z>r~-AL@7yk&P;tGSioj5a_3Mrkq%##Du=mc$Ckq5^au_xbtFpFI)2FPYQB@?2*w_G
za1P;ezJMXRn!PRUbG>L$OW1iGynBx|BUKT?gj9tShc$Z@ca3wq663mhWwb0YgtqkR
zKoE}4^M<->&CQ#)Fw47|DDpb%Ki=X@o9&MSuxMXV-6N!nON)s4IpU#Itw{sf79Exf
z+R-$4TMzXij|SrLzwooQu?+e4Uh(E_TNSc-uH|)=ymCzv%u(xTE+{+7$@GdAq4bZF
zHSUbo`;eqQ86)Js5LNj<ExvMORB?z5(~9GfcV2X+SJx?T-f{%+khsd!8!^082a0uA
zMPIDg%i2)PBr^pC2n&`RLdiE+%s1%bcdby;zo3Vl3g9IpN^RA|zC)5B-D@)AL<Bm;
z)kfmRc-O=f#!+4E2dtl%)H*gVp`_#&ZgC;oMU>;%k^NNLu>w>y?WHoJY6UX{Et9UH
z=@?WMx-ElMstP`}t?O5c^fmu{uPy(Ppd<g0rgcTF5^B>@CO4g0*-&m#%oSR#>ET5G
zX8#~Npz}Z+nzdX8A&YWU_w;}Oaf99!hIocZ6J$cD6={*Ic6l$5h1YvQ;SNWA|1Yr0
z_r1X7?(d!eEGS@BIOp_kQ_&NE=M}R2)(Gp-A$V^jjMTx<9YwXC6^$ws`n1U5dFCi~
zA->2?*BB$88_DYh6sZN{EoS%&<Xu$KD^sv%Yav(vf`x?#saCL5Nky-TXm=FGv&TZE
zWq4BtoQTO8njEL;@f+$VVY9(o5|mn^q{&8iNzgJD+X(eQbhQ`DW7LuGCseI03ENVT
zL{KY5!gduQr;_})wrT9XZH<};@>Y!)tCmAODs-(b>_KTueORJeomh&ldZ|%X+BRmp
z(zpp%D^WT&uFPhxcO(I|vM2#v1u4jMDZagV`O}N#7kC3*9iNBuw&0)UTQJcej!=Jw
z2jor}7Zl4$#S;`mA|~mcv!H`6Iuc|A*Ng2!dd^+0$PTQIXY<1~u(vp~zQ&;&?1Ap!
zub|c1J7ocWO{v(?0A4VMa{G)-7B40^keEzy!3^(_!!DB`RFWkG6*kI<7_%m^%@<2~
z&0vM7ISZ_`6XrZ%6bxP^2wXUIujIACi_8WtW|6I@81>sXDQRCi?-7&W6oBj(aH-=&
zCjL3hCmu?thqp>EM-_Qh1eNUW?8f@?(~?eA;quCiC^wl+qF)@2lBNi;%NN&RP{ngL
z8$3XNyg)q1x$=&yQVkbJaH-oy1*<CT6fIQwJX+5e?uK$ZA7|4}s`&_hzPRD>{_*Pc
z=<SbKz7>!M1`}Ql8i!d8Fxlc%n`DzEM-`6U`N3lpFT<Jb3!p^DDxebQSEOO*j0gn$
zdHeXO-+XbWpmJhU0Hdso6cM&aJKNw<!n5Nm`B*OCYx5{Z01TTxe4Xwd1u^g+J@^=n
z97G;6bg%00q$uWVUw*<bay^=1tL=)+_TUF}iJ&Dc^c~)5@6SIsqoeV{K<^jL`r~5p
zWwXRy7-oOU9xskZx0~@f{1MK30+}=)7cef9*nfY3BhLd~Dv)wb=7=)%FZf=GuLeN~
zw2ANx^lb}o2n*%1k9T$Z(_@T5c%8e_0oII=*27};MTqFHDbb<9y>h?Ux)Kn}%4Qm#
zB_zkcC_N&DxttF1&G~0KMZ^hm6VQX>i070~85)A^&zlEd3-I6QPvt$KkNsQEJZX*>
zGq~k(dT{i&IRt}$-dy%^hmx%@M+M9gb^?CT*Emb{nFR<+1HpG%DN+rLz6~&racb;}
zo)GKR<HdZGa)K(lf(z6NPlfqbV&rXCk?aqXvA+iB1m!4*`z!&Pd_ooc;Q){Du13Al
ztlvVkf+YsFmPpb6ifJx%BB_~>lR0WIW;E-BVG7SnJjUab?5RJa8|vQbpl6qysN6`?
zT_|v!T^3cCP)Fy7pH7lYwi)`U%dD^g;+=C4E@(Bl_p$)~8HDWUzxJo0{{s5g4X&rb
zT%5zNu5JQ@`<nzQl$8a9<PQ#jl9pldn1bWe->T#U7qsWSDlNeU?dA1Vl~~{fb?@S^
zN-gk$`ucCzRce73)V-@;s?-86sO$Lvw4^*dY#|mzq{pTFFPS>n%qu{GFx=sWAPwhe
z6ky5s`SdsFuiPZzX#IzbpHI#B=V8&?0Hx^+-i&U{paTl%v*afOA}J`m40whP-{8hd
z17om9LDcE7(HR~BM>Q&BOE!SAqZQU=z*D*<i~(_6St2Mxx1=+4Zq;Q#4_t`l+3ODm
zcr;xk%1i=dHDA8*qn)y;E}U9$k3;tmHGVQ6RJiz(VPjR!Wcl^&-*J2Ah*A1+Pgm>3
z3`afYi<4n++iCPoP_ov!!)w^i<j*qAM-Ollcg=Nn`SrEX@duX}^1+2d{5ZSBHVY5J
zEODP3&KIr%1qj`@ybTR65blsB1B9pZGQr8DWCDkiU&Oc<I9<hn@p|Dhftm93G_dLn
zsBVL}2<mIHl(72>0&)7Lp=-pm%jbLXkXWu(5)M-5hw49I>lxg$cb)cUlc`%@xW^09
z;>+ib0CzRP@w)HSxdG*x!bOk8<|-Bj*A_3&`FbhzyL+dZ0wNSBwHEQDs&vxLVxxtx
zw~{L?HJXv{d-6N3_b8s_Vjw#!-$7LZiFDHZI++gT(n-i7@{CD^qe!+v7A%9tkB|m&
z9QsHQHnlMGg&f?ax=m>XdMQT&uQBOj=@+3c{cOyhT{^HHp<G${lzlAQCRUmTAjq=_
zpCmN1&BehUDt9fXu0nyEIvCrmuDEi*n0vjL`+mX!7(XN^D+l={HWI=vVO0s?&=v>-
zv>Fn<Zg4vkr|M#Q@NHT`e+<4H^_O@78gW`DqXtKZtHrGod50wr)f987x^NKIV{i?Z
z9eCC)_{qXbZk%?yTrJj%!D5P+Y%~;w2oSg2iTX?Dc`M5G01=FR5>jqXsF(y$3W`<7
z<_;Otsx-g~el~sqbOo$t+@WGe#azVaVK7)6B4*@g+`oE&cLB3*b@m{R3!kn7=xM}3
z^qk}%(!nXwaN<Ti9(60gJ$h-Y?Tc)$Fd_lxplriQJ~HIRQZ5e!heJ1%BanM37;1c;
z5_mLQE>?IE(<4O7ROB$@-C&!5qQ5pte4c-qFCOMzYw7C_%y12>1y}J#KDLVIy-H3K
zRLj%UHlO1Wu7*tpMl;Tv#zkwvo98%uK<7E);Kc4vY7goKThCta2-_pEa<N1jn5Ycj
z&Ms6D76t<`ce!?R5SU3Y*^a21CFG;VaS#zHLb11Z8+l~RwXsC9J)A$vH97K$zB=@`
zoe6+&IX-bCaJXJfMAWzNL+&t>a1(zy6Xwr;AtFf#4{QuB)hTXduVk0&ZcLFKQ>cFs
zmtQN41IEvt$&n2qcMB9{a39O!za?)Xy^%?{`8hoO%O{I8LT3C3WWAii(k2w%_Mm1%
zX^*G?NQ~|KSG?Bcsv+#*B1MC6A+a%G8&N73H^r&R*-_p@hff!770j8>D`gnx+^V;a
z;UmHDSl|d%YR%J4MIN%txXp&vVb}}CxRl|FA8&XtQ;VfvmZpmzA$Kk4xU|dhe;JLI
zxbuStwOkgikE&~p2v*g*vm2qsY6BPyjeNO*wW~*@)I!E_Jd)PqB06ET;)Q^OP&(GY
zb5-j&K;kOX&z;wc08vFTD;(gN#B<mb)pV<<?HUK<uGG>oX=`Ssvgt!Y!^N@sYDUvL
zGNj!P=u+v_1|_SIq&}w7i-LIchjW<Vrrx}U&)B|~&|Qe&;#&FhakZ5r*tBwl7Of0S
zrIqnCZGh`lB?}Hj)&c<{Os=j?3jkkjfe5!P0C1%RRF3j>rb-{TcwJKGW|@thkB8e@
ziQuwYfU4I^MCgj)^<fT6uSh~yyIwHmyt)8NN+I@RQqouuMbKJ)y+A=igM*+}yAd2x
zE$FlQ1w*}pBciBbU_`1uZDBV|-v=4~RrdWl`+k#syB$=L_hW{Cmwo?~eeb`_0nR?2
zB<{N`DGRwj26E$RfMvk*y?g8s+&Wt9fr`S|#T7gmyE!^gv9vxbJXHslX<~!Uz&$ZN
zE1+J4hp7#_t7x87q{*(NfZDpGz{<v?pmAP9$*I1!p<D~=EQWmzdnHw#k&ssLu0Gx7
zLy_pERt^peE(MR-?fc1D;p7y`HDlD@S6C}Zmk_<{I=l?o9GJ~ajxygBD6!ebAY$?f
zOQj1Gvy<%rG^gY&!$(D^iV|VEC=sZO5`lS9BBI#iL`+!}jj9wyqiaP8CIVHG0MZ2s
zFkOxS%Zm}<MJWQJEQG>T%Al~dB2YiOzM%?{fVvn7stb~!c~KIkC`>|?#WA=_fegM@
zBp8a_+SQdyXEsCSInL0kMhZ+eTrzxFs*<2mw36rv<<m_B0koKhW4f&98dWK}M%$uW
zOj&e|uNFNcs24pWYAL#=(nZhD_I9W^sX^uWHm60ab}k_lW0#^#YF^O6lp_?%7mH#!
zO~_V1IRezca;J=lU<0t^5$bYE!?Ib_5m2)~(*PVvvz(zfxT6)DR1S_g10o#p6&x8t
z^Tad0f+=BKsa(qDcq&_&v=xPm5PgA9D$>E6XgTqS+zzG<YY~;z5hzcOZN@bymebp+
zETsiTTC9tjQKd^1@W?@(#(reQN2n`K#q4CwY*hklXsVM$+f`OM%Aex|*O8RtD05U`
zT{g9!i1kllUv;h~XpIMN3#K=VMu?Y6mJgV`{L%^6xg8GocbQxT6DxIqrLUz{kVq94
zvg$1$3Qk~Gs`w2rB=kEk*GPfRz%dn~Dw!OTF=CRe0K$QdGPr4C)Ey5gq+8VZw2D?~
z@Ej%A&<0&m&^f-QpL3e3dNxE_JKKV}u@R~{RE4SuO`cVQLB%@Apr!&0E-!tKEQ+2J
zl;t)Qsn7<jO01`7U1S5dO%J`9rad_)lhu9>wxu>aMX_^iS?-*oQgB1!N}i2eWD%3V
zVKyWTFpVJxhC@P?Ji#*#*+|w{G$P~q^tT#Agl5$67_(zqavGr-HM~Y@<O!V7!*8TU
zpTIf&)h|{02+ru?X;PynScafpF53>7meKhjG(2e(X5hR-DtVO-X|c5qX(_55Qjt_U
zWMv6xE2l=_)Nkesfgu`PQ!<PX^60p5i5C%q4)jdzK|X+1Hey!Bz0Kw=!?^?=<n-qP
z2gX=f@wc>Uf_k7z=C}QS_=e9`b(mCJanh-N`$;&9nLmz>HiGu>o6O1WBVGQU;ne)M
zMvhtj@!LP#k3T(gc+P_Dcm%J758tyjP8avM-f>)fRWv>(OffSO<WvpfaXo{{=k4n!
zMEU&RE3>Jez1Xa#IMI<=M)focRx7~_5!ZhxpP){fLEk?U?0adz;L;L9-toX&Qp?cI
z{bDm6I(GI$k%nFdM@&Snq|gZ6<NzVdSTi1&%Nv{)AaG$^&xb^Ckl4Vp$$2hGvU1iK
zlas}_{kmc}vu6GI>MX*=dS|~5@sK9nALMXa1Pf6(@)rp5b@dTvF?h29oi6fwuqzW{
z&?uDD;)%qFsUTc*L|9n8pNCEa8qT}A2~^4@RTq<${8^A(!e~NJnowt6pO}pKJd4;U
z(F3tkqYJ~;2p8B8Qzf;f$J;a`Q&Gzv!zv8EX1au?)YJn@16iU{sP1C!q%K3ph)}Vf
zDy<g^?UrIuV_9(c!dOZ}pd3;8C<qjl<YK;x6f;biwWTJ|os8;_Kz|j6mly5DKtiO*
zUvXBvSiKl8rf{*o!7Yau-(Gkw_lL3Vpe$TJa&A|Lz4QGa{t)B*@elKcPX31ktYCQl
z!;J7cL@Y_T96qhcQmyI^5-RTqQPeLN3*4kZV4k701Y8&~XmAD8+^jOR*nc|Tyf$H&
z<|tX;-7*3W<>3&LNNkPEllX)(uTU9MT=4%Vjz4T>WK>IB*mMcaBo+zYwGg<A8CQ$N
zx?%YZGwZ1*7dHfNaCjYN*oIq*z2vARMV1y0q61vc@WW0|Jh~=>K54^y<408JZFDN1
zZ6uOqT*5hccd-8n&kfuzVsvC_2?X)Rl?vRY8^PnNL39}0wy;ehPN65D;^7*U9LR0E
z3jyY)F0>f;TbZ3BcMHGk!@gqS_QSZbT!kfao8Qrw4G!vO2%9lNXn51MnW#yF*=7=N
zCaazqQ?sh8Msd4=lPGR`P3ATmQY)dMEsE#CaQr#KWesuu>B^(aK#*f7c>}wTFu0?`
z>6r8W{VZ5wbzh6ObUUfAC@IC!k?Jr$3oV5QT`7=s7iY&NbDS=R5^|x2#StxTX@73|
zWAWC?nQ?E0TqlXj$UcLk{6Lqxt@EcY^2-FX46lT=k!D@Pxkc-G%m^?E_72aH!x2<8
zjC~!XN9?h&c3H5eQ+H7!3ti(N%P?EGEyJ8-q$ioS{WNLZ*k7#{F<^}J0vUs`L?(})
z=eRI6oTBZ~BcThYv5NcxTvwDRr<kUZ1GlylxVa(A1}q${<?sXg>{7hVi<Gk3ia9G&
zP^#P@FF66UA>~qW6l#Y&{HtTMW1X+8k$eH%(RvDdU(-95G=_`VPWsA}s51kvpG;~9
zi$?OU0=nQr)7Bsr`pVKKcEG6F;$BOqgzNYr@Iy(c*1?)bHL;$`(@OU##G1xbvlbZ^
z<QZ|CX|3W4)GgT#(}XCwdS)$&P1WE+QkJBydh4|L>ZDH9t}p_9OJS>vq<W$2q_$*L
znk`wl<@;7?l4<Ixw@}G8O6Os9H_)rJxDD%|>Dm_DLw)uSUcv<Sxc}<qn-|Vo2v4~H
zESNpqR~>ckEVhd<4{HB=x!JZS3<U|>$&S<_DWm#4g)T635r=9EwAjStAY3n6z}g^z
ziaL_b*{YH*upYms57oab2v=sO|F)0|ddz=MPS~2by8k^aLj=bktdEwP(~&Gjn(yL<
zNo&K~K`<+SPolL(Z2l89CU*?}6FHH1uy`5d-<8D-{SjH)#%0l)1K`qYp6~8Exq$EP
z!Gq-n+q&<muy0r%-+ujJ;Oriw)eAa>V_ed$()k9opf2$a6PEPY66<NoilGoSHMAn#
zj9}3rT34D4>iDk0GRX76n>YJE?e(xA_d$xkhapDRdm7Vh+8;8U#nY%^zWlyCIWOBM
zN?*du?1`ikd2;ZH#IA_A&a!+W!wjJ=pH?A*hAt;hqrF>=MtD~3X~d0*4ZNN<d-PRW
zXI6s*cgsk>{2+KRS>BIUS4VMQkbtj_PkLb!kf4VaIO`93KOe@>(xh`B#9h?PyyEq3
zG?dBo@Z=Ep;M2USvQv`9Nwbp*r*H`WGQm9$OxBF)(n&4ar;|byoT2!(SZ&X|C8}rL
z(sXCs(w5n__&n2n+Nn=^AC97>md!)x(S0BPKX@7Rxvs9JnZA1Y>F~&11y^+t5kP7N
z%(v_NUst>uhdV(!q$88F*dnH5NrHnOT+mSIS_$r$xfQK~K2kL9R>@+%KVS0*@@K?E
z)S^MMUoC4yWM##JK7TpX5)jqzespql+&iqmuX5;Yvqlh{BN=l&+$xMwbeUJ!R^UAg
zBO2{V?)IQ5CJG`!XW+Dz;_;IaJ5i6q0VUR$XIQA|JSKchBAPNRKM$$voK8<jo?Cb^
z-KsryU5a=HpoAZBQ&5#{IJ)b@eNEMiNrTH3A1tPg1P8j`5X=Gg;ZJzx4mQX_(M_7(
zX368b(Xg~K=*&oM;f`K%gHkySNag4De>Hb)&2i;6dVY#4PnN6FitR~K**tk9+16%!
zS+yopwUen-yZcD$xYeiA7s=Yx{`dU=@B-e>;py&F?Sn1p5CB0CBtZ}aGo?DfBwrjv
znB+lN(cS%p0OoEYH{{55PPvSXR3Lz`As%kNoFbv0E^WSXj(0q^M^ESI5<E!g=tu9p
zk+!TRGvv2kAOa;F>K+kCwEERKQ8Uhj%1Nl`;n1K-zKB$~P$oGVe!_!m?(iod%)vkb
zS<et=0%kfS?aOJ|?F8T>{RBc%L`fc@j3e3&FDMip8wz;H0|qZj>6+~uTDvK>$3KOs
z2{@1(KE2vJdE%ok2p1XVG83iL#Dg$L;)Y)!4dkaVOfsw@cTBe2K5G4Y_>qw<_iNO@
zQc00t@jhSSmho+iY-i;1&vBo2zR;Bz*G#LX6#V)TB#|gCQ{2fck;ZfbR%Cyg!OtJ_
zP=C@hPiKocj%(i|4Y_*<Q+M@Liu3Y{3Yi1kvl{}u!di3v;}|^ZqYmL9Po6N;>>Elf
zk1}iN8hSyFc@%`iAdUZgbB9GDSOZ`Lgd#DmmK6^+170u0MRtDTw1ziay1<S1&6pR=
zOgH3fBPD)|<!GZGtL+jR!5gNod3CR0O)lKmS5jVhr4fb!PQC=OY8J#Eaal){7T=lp
zn9Jq(qdPAQno6q6NwMy6f`WNe({;V&fOg9)m~<b@zf3CzD$ttx!}>C<7^px?s)V#I
zOuE1_#XM+%uBx6CcqeJavZBd@7U(Jwox?ip<CX>P01Grld#YrR2QAP=)Cv!vGLr#B
zfeH-1Eh}!BObAk-qr_}t^2!7Yu>F)}EvO=_KnrwX$pmvsnQRuaK=qD>YOe$mr~)-v
zdW}}*7pADt%;z*?o|V?dJPIFO!{FgX0I#6M=0P57hQ`vOQCOZzNF6I$9;IVN%OjN6
zm^?f!7lA&66LA?SzmVnO&2o8$DVC$Zq>Jim()+p^44F)Liqg-7)8a$h@8;>vEo^nl
zo`VcNNIiq|fiW-RYO2!p#7MR+tYyP+2GwJk6Im51!piwF_DbB(eosEN_%r#Eq2`@D
z7`yJ}D?%n<8wR2Uf<T)G+97Z(j}P*Z)twz0TF57LQhxp-gIOc$F2v5ZW)Z7|zKTV=
zTHhesg))EWgA2eQ!QjK|7~;(mI~o>q#*PL8M4TzON2;i1O+FrEphi>+{unpYb?Ec@
z3iFphO677X7#4io5={AaT*pP^Ta}fUO6-LV)o5KjiX3US44*?e*aD)71YWeODWEdM
zhDT~Q1id~bgNEiCr@}7OLw8hA{hjoN$2CEJ8sYhijqDQ4f|IqqLXgfi&Nw=9=DjR}
z#)Xmskh2X5=?Y$hpp<-<l)FxKR#@(CQ7DLW+=!%CfaxcWZlV(XH<SjvZjjQ=c}c@~
z9hn*c;~kI%0QO{%6Vk1#IY7|@2a;d=Q$!w>>F2PaRpr6hCjX)qhjxJRO)DijU1sjU
z1f_iZ5(h1b_)L*_CiT&xysSz<i8o1|F?K-(EF?tAAum*CcrKHzFail`i&od_)gr;G
zTPsRvJu5|mR<%xGt}uroxpNI)79A4c-Fh{&t@Hz_g#el19n<i+8ACee03*jAI+qVO
zkh}p0HhG292T0kj4*-zhZ}hQw{EmKdN<{hvC+aO;OvcgAO-oNpnVjlj(Wl*Zh53s<
zBGi7lz2RTqBAMSpe&sQE53!Bro9i*<Wrjz={@s3UmN>6k2Os1Qtg)!`LxUU7*U0WA
zA9+XMzMapJh<hVxZ<!*8e7a&m!7Sa*npdx0zr@8TTMwLr*J0gLOq19&@K;lpeBnz@
z!56LoRUua)*NW4zDZBi>x$9{B9j9F`!qhi`<bhxth9IZz2Z)BVF!C2Fr7x7FL10*Z
zbc2X;Wnn07+tG*14;RuI{2WoS5T_M<aVd-WuB#9^^&(6}X3kg50$DjJFSEQEp;*$z
znDp1k;lvlTI;dPM;WY09GPES&dLOX@)P`!o=`o#Q5^D(=1pua!;w$W237LM{RGvZ8
zEdXus2w;p8Yq`eeC65bdoF1`=h&6aSU+$VB1<EESjBLK*J~4tN;yRG`zUAaumfK=e
z*h7BarlPP_&`+;sMLN6Hw7thElV~Gm5K<6MH>%osHd(fmPJQ7CVjB|C#G@<yKxXWO
z3jf*Uf!5|$2ysnmTKxq_-zk}~MGt~WUTLOh=Xf>A{_^@y<{q)1SJgKf#;5<>wK$Gk
z(S%5k*UB9_E<tF?c8-8*Nh72uZ#*AAZ&}H7PMY8=T|ORBfX{dQ8?%oNSgm3Bp5EZn
z1YN<K&8Ik2rAZGu%V#(A058I&0yrbe=&M~k-%?12c_0AOW-BL&A%y_;)6ES{cLh+`
zR=b;<`^l04h_5g7^v;g2wS`nuP<rv_RxqJy*qX`dWFMMkFK#%chA}OpJg0OoE+plO
z`RSsLLOfPfEaglzQ7P5@cHR85R4tX|>og^~3b`m(+gZC_?^bvZ63eq58WB^M=5eeJ
z5Z5J6s|tz-r4t=%(Zl4UHHWI9e4(KMAWb!~AY&MF)YnaD4MOil&-&;Yb*$oV23w{I
z5YJFOaV~2s20tW&2Hzu;n;tT+VRHP03rJzJ>5x&T>9~Zgc_RVSSC_m43JJu*g}an|
z6d@4i@<El@%~?n#uPAPW*=WsRW(o!<CvJ*Z3jlJe?*|$OjD;-e!gN6S(mdg0RM`b0
z;V~Fk7D_E65dt1apx0PFV%ql0N(T&iL~sLp`Wi0)Hw`YaVyCOVnHQ?m7rxmB6Zi7s
z;zC2x8%>0r`z}=C68p-?SMyAZszi!Dx2qj3M)HbFQk?R(p%B02?FVRfiX&wyl5Mup
zJXH;Ao&FmFI{Wd%Pd|Dkzx|*2igrA)j`MeKX+=XLDy0d>*cGm)G9YH(R01IuBE~!e
z(Zt8pxp`#a+-<ij{*MBF8h)e&ldd?)uIUroSP>LsD?Q8*de`!cZ0w^KNJ)$qSE%7~
zQLUErtJ6CQ?In2|10Wj&8-pWV0;jUTV!|OLk~Y7lB87?j0Z?$!sv1;z2jG&PBr06x
zkJ%Iqw2f}aRW&TAV;~l{q<Cp1&)Z)oh#cGwVC_A1m(lDRq48pa0j!OP8a#8kj-@>m
zS4I`<gbj+WsS^EUmc}Z1AY-*PrLmj7z)f|2>!7A4EVEBbydN~>F5^5dA12?byDmmY
zIA0~lVYLljfT-(x)mFT;QP)H#9hs;GB1vS}KqS76s(SybS>>-U#DhV#k7=;(3>oQJ
z0%k8UR9@H)FG!t+;xXsvO0h_x%;H!hNLsT7%m=E;YPGAW$e7roAXTkgHjmb5Vl$|w
z7Fx{;SJ&e1#{e?gT21{8XGSp=^?>=%V94?%$w{juAPWOUh+nsc#u*ueHIl$C4PA@#
z$9c1unJI_I{-?zZp$dD`kOg#a^f_XRd5l$2fC|u&k(o2AP}HLZRq(O>QzKh7+j!%A
zC}Iu#^B1Zrci5z?wHhL;$$U*#g?O%=0XH1A2E$AccJa3xojTNH{kQ0<#lQUF<*zl=
zl;C_H?Sq`Fj9iANu(FpMItnSL#A3J|oShi8r(fo?IW8N}L%dhG#*o#{62c(hj+rT?
zk0JI07=ur=mLnc9MX5-77jEo&2UjPajJNUAoKmhDk@NfXH6^YM4@cNu5vMn~GODZW
zSUp&9J+)0{4->jVF0SQ4wQ9$2H6qEEn=40Nog+KTf0h7klt*wgAI!$VG=!5s{CY4U
zN;!HEnW8N0*j~~!fKz0C&TKrn!KoNIJj<#VA+8&|KaR)M;I1USML<1Y(Wt9e%!DBr
z^uT#gA>Rn$bAh@l69Pz~g%BQo_@}T>4yGO>uZRmFa!^Br1aj}85B8P5&>-UwFGg+-
zZH~NDbQmvZ@BVXN0-_vs3r@aQ<iO<+3TrHPZ)yj_%*q{6L$`&C*A=>SBr?!}FF3<I
zj2ELwm0gGfM}!d2`?zw)wr)h4*F%uC_T$^L%9=FJUuu!4G3*Mg;|mY}(vcJV9XO?y
zlz9UYMT6xKeIP1sO~U9HA`-{0N3E8O!@V1#xwK9UQZGWFD;<@cOyK<f<xu#KSkngJ
z44yA%E!8j>joO3x(BTbW@od<HE({JtGVB?wO6DlIX(Ttn>olAZ`V7s$#$b%g4T*fR
z7=$U~@4t4q*H+n_S^I`PC6~B6nfJw|6FBq7l^~QQpRXuILZma=L$lGz=%2*k09>~~
zjGJ42p|?)*cuVhQO1mZd#CD}j61+iufL+>0sdnG$WcOd+#;^M}GDIBSO2Hq{%&@{C
z?PQ&kGrd~DY}nz-=l^)VUKY?wUNa-moK@CU-o5V*2K)0DR2hY+b?$#79B+7-C{yir
zdHrj{xkTMA^B4Oi$2~b)=d<NxblsNMd<VoqR`L$`Q1}l0a^x437`f&=i8&@?wHjD)
zzLJZ^S!HmnkTHV5SMs=Y13pl8W1N{IzUf0DqmU!|`~|o05)lKOa{(b`-NXX~#vK4(
z(kRD{Wu0%n?3PdD{OY3*)sz0W$ehf&8*8$e&U>Utb9`Ur4Ie6ZS0ym#^V^OC8djdk
zY_jSVK0)dgq(+BfTSi#riO%%|Ynv?JP@)x_vfa&u1EY3&Q+4#o#Aq9jsf<InbNcW@
z*E?}*5jx@Ez_8=o@>GIfG~YPV0Y69LRc6s|C_<M~hf9oj4K^Hu_n&?q7dt`MbjPPR
zT+<#EQ82sY!LH#8wcxcCe_YfVgP@s=5t-ep=FK<V>w>Q3vzbIF$1Ok7QPU<~ElEo`
z-eqpW8Y$-F>~6P2;uVUsfpwaKAg6(bKyYevJIA#IVAVh~vIz6d12XSZz;6v6$Ni+-
z&@n65?Ly7N29Zv|2|P!n_3h7hh#JEX){#E0<!ijy_s}q@3zzylt<SZd594jDO;-af
zpd9(96nRQ{-+cQCtYqjEItnHXxj^6CU{zzLZ8an(T3RxsiZ~o)k#bgqmq3J}2(*D4
z!WGwICjYdqZ1XuDywLhQLZRt-;8MFgpbL%ez%VUV#%0=g9z<@8I-9c(urx8iHv9HO
z{&^%d+Wg+Uu2~C=t3Z?js5q?&aaLp1rf%x=JV^hFCX^K{pNMo*mL}HHHqchCNL@v*
zF0HY9pvQsSXJkX;3%?Y#WNyUJECh+#?=y@_y6oX`LP%JR=5`ORe@xAFBBsG9wz-Y2
zy2;{kf@{%}1#ULDkG?Lx^>u}tV05zR0oLZr56#`=VUA}HGN|Wm?kj~*%Z!aheKl9B
z!pLT<qjw<EDm_o1u{PyM(|6j7=`!4HfduF-;QEJlh8OjMsUJd30K%ztBoCm`agA{O
zX_>M{>&BSg=x)ElldP+kPcE9kNr_jQ82o`u1Hq7&UOXjLbir@qsaoa`BvmXpY)`m)
zHWLKtAWBIfy2`|yaEPixE(xZdQApN3H^w@qFsUGq_-Xy~WWDt5<8@1zj2N-4Gf@@D
zSL}F1*bN58t0@l`7;Z~>zzMhOWTeoiUT8}6<OtM2^F21Y9c^;T#q8kH<l+nwW;j`-
z>y~kG%q>Erh|kNLk4-bf`Bw~Y%7r5A=melZu)tjm{b92HO8F2yS(Yg_h_D54!89iu
zhFG>F17A$C9~DF|-NYB&@f-~wqf^qzsLnM^KT6#2{`&g!7@O2>JH>lcP9Cb(_ph#S
zfoX<)9i>Mdxj!OcbS>Qpk%L~gYa#%gl@tMta=|ZP2&7X7bEE<2%7f!KLm*u8G5I7E
z7D!#eoPJurLF%BXC&!@J*HKWK4Z3x8aUrRZgnww4N(cjcpqbp4%cr1GE?sS!-K>>)
zunaZZQQBbmQ$AOL-$DCK=p2plGF=78b3_)>$n<8>KAw!WSZg8)zQxty<{Fop^D^XO
zX`tDE=I{+bWKNE_7c_-OdcF0$`Let9R1AX(%)HfwHf1Ka01lbAjjPJj<4S2cQINh=
z*M|KC42rxCGBN;gmplSs`q;?{M3M59<)8>58Kp@49J!Fd(MaS<U^3!YU(Oux0^vY>
zVbnloK144;P?A<X-}-8>l;b+^Epo+x*`%tV^kft*SEjZI2v$i$uQUnagrt=|b8k`W
zpx(%v#k}(t1!PHm2LE~XgSrSTspnn$1|}iHp({vxLxFlhDaeFMP>%q57*E1HClm4N
z%YUBZ@ykaEvW|dq9jn28bp}#~t#s>&8Qy%l0K#%C<tEDxj1BIo=k-R@Pbv@OVIVz_
zZ!j`B@Z+>mV?Dst_*!Q12qGsA2b-%2>jm9<=iIM(S_wp*)QV`a=yEJ;WY4vMq*o+h
z8Qjk|cn=SQvyPt<R?Lo<vBF4r_|R-8x~ES@vd-lvf)x6yL8Q$@V#SpeZ(5kb3v~`H
zuL0+2R&Y{q78)O1AjJUM5p_EY0QVG;zKPNuhtnSyZs}^9xqId%<BNWV*=DzQxpJVs
z{N3+NAFH`lQJBnoL8ua)zk;x3@?-wq&et34fF&hGxc}gKaMzojiH04joOgmhr8Mx!
z00s_`mC3h&JPx?);N}PZ`=$Sz>6)24Z&{ea%kz9OFYG^Kmo2Kr-5qY%xXM>imG?V5
zcMV_PYsHJvBw~q8B<pi`%%=c0S56m*%Z3#Lt&p5VZWHHA$TaY5o5}?#vNeJ--iK4F
zEp9}Czz<kgzxDy4Q#XwR!YLow&;^1aY!?uP1r;_~(m3#4z~_h}CoI;T8?g|i_w8dg
z4#Wt??VMmT!cgb;dL0atnLJ|n6r4YXi0lAm2{{=JMi76ApeM}>X&c|sra`P~*yJoL
z*sk&3x+&PGA@Ru<>>y1`$+Huw5=&!)+bmz7&<|X=maD9uX@*(0oWq$n;jC$+%MI;7
zUww=VdJ*%AsyeN-QJvTq>EFy|sm|mG;HmA19r06LHQV)5GBu{^!%m8_+e1}}Xqe1=
zn5PIp&s7n`ygJbZNhe3O+;sr@BEA9|TcL(S4F!kkH8zc?za&Hr-7YWjgllQ?)Q~)_
zT;33P(ryiRLu>AMiu9|~JMmj|g2REqt8@W_6&x|7_mgphZ2`9A@R{KF3JK~xSpg!S
zD;B+FVwq-ylu_dh)Y`ged{r4Jo`2|#o$;b2=WUJHA8A`%Vsy%SW2ZL;RkK9GO9;-~
zyoK+8ER?nOJ{i`(*sKFQ)=Mj^?okP6C~=!YrX7@#nvy`$B25y5w=h#{D6Bm^_hK!*
zN9J0$qGT%Gu>a_Xryej+n&I}<%F|*klL08RY<{wwx=~M71ChW|w`eBIouXy<%E5L!
zNIgxQ_RvcOrEbZQMxZf9uQe-u%R0C*wWM9j(%91NDe{9_nzW2X=Mx=(Y#$9_BizMz
zunjL!L2GhyanM~oYR4nx=}E=W!HW@LVd~EDV=#(tln$Iu??DG1hyD!^nPD;OeK~U@
zz+?~;x?Dxl+Zq_IyPHmchb#noL$vT@)C&+2VBOqo*L+)mCQJ&@@f>h*v!;uPZow#c
z>rMYth7}s3a+@%-Y0v<9^;fOIl;-ThHQj7hD=+i*#afM0Iugq^YCsIsF0p^@f!V<D
zo#DQqt3HCKBQ5Ky=Vl~}p3F-w!z8h5{8c09wI^rb-etboG?E&Z&ENzZwn=c7j3^g`
zx6m4EEM{n6>?h=28e{IFzKV}Mf<n&aq?eSSlygkEQqvsD4A;z%r;uGLN~KIW^ETdn
z!N$Tj29}#7F%%%1<&c|?qkIV*b2V|B1=5oM7>7JLC<)`axL<9b!h$(s`z4F1$F@;c
z4tv>>0z?zK`50-h`N|Eu4vx(~=Q1L?Dv&a(&mb|ng*-mkO4BICl@8A|WjkVL$O%#y
zC8yV}4Equ(&SFMtrD#5q7I_>BtCUbQ*8*PLDcH<IiPZl)P|DAE4yU1Qna%y~2(aS>
zzO1`eIT`ZyyK4@{5HdN=r(q-nJI)PE5CArU8FdY@VcOo}fr}uNZ3Gj%SVpjhpl)8~
zqmr4txkpn3=Op!r3I^)C;prtT6^~b@D}@o2qm_pR5ws|oKD0%d%DTN3G`sPHo4C5L
z9FU1m5{$+LC4VEQUT*ehLkY1mG@P=?)IWR`y)ip|Ef$N-EyQdk8|5*~7CvaDz$YF7
zM7;|Sz5m5}9s6Ka9W>&WTa$>yX)Q8Q2Mn7uTk(uk01K;MLuj`7xdvFFB1NGE<LoHG
zoQ}enM-%x%s^-ZG5!yofZ|FP7E<GQYuf$&LC)+g0n}dxhSU7KY2--Zm`tfZ_(6lV9
z4Us&zc$>tg#8x7e`l6|oK1%hG#_@3H2{G*+c>v+f=4m-4|1n80!Zyhd$b3H;@niPQ
z_9Ny9p0ACEL#<r+{EeR=y;wfX*X@!oK`GW*8;F>jqp-Lo1~qq|ROw7AEj5@|8-!5M
z__KOmatLWsChme+4?-@2Mq+_QBvmq<1u$YlWnh}+!zZAhP=tu)*nQ`aJ|z&v-&Bkx
znd9>=f&k<M?}|X$;pDCaEFrCu+nz-{>Jl{O_fKoqDRSPBXf^+eO*q~@@3uWaFiI`N
z*<FE<f+;}A3TX*d0mUOQ=r-sY`b;`F9N4OT>t?mUfk{7L9QLGWplP85vB=X03MIml
zKtFVA0)57DedJ$MgxQ}N^o_!mnLqaa?lujNN?l>3M|d!%qZAAUlVF65mjXh&CMbt}
znyik`Unr*2=`<+By{0u?Jkb0F05TNyL3KoazPV~317$Tu0Jp8vRY+PNl|_KXQ6Dly
z3kh}h<;@sx%`QlNi`?H&R&It%MrS})mKW`6iny}?pPT0ETR1<{k&w`{W>JwnI%UC3
zgw`ZBT0o5L-_Q{jarc-#%ajc<H@x6uG-U<fvn@@}?3P`U%6V*q_TXR`k-42(!`5O^
za9kSq0Q5(;Zt?L4t=$)&-tuEbh^M4wSW}LQqlI6r5`~WOH@gW2jP@tQ#C2IjnMO98
zfp}#MIdc(N+}bSPNpF-P)1E29M*4q)T3Lc?dQID3lNqT3^N5aHPa*c~u{Oe=F(7}u
z`UwYt$Z_f5c~kWn=7|5KbG<n@|M680@^$Xx_qmV1&wYHU@MVdjV|!Vq%xzxBNw)me
zNF9skA$+~ra>ap<KR<8d+I?9P-X4R}&g&JVj_`t=iiORBWg}v<kl66@LC`ubHLf)&
zl;^Tt;KyKC)ydq9FjS;KPWvd`nNS66;bf?QDc)J}l^VyXF++dABvL@qtOe&Zd%-K|
z7^!#D4|Ge^!uft_Hj>ki@Ytcin6w_t(b6Nr2$si~C77{*sca}1XCy1JmSq2avs+Hp
z5Hii`$5Eo-hS5x|>9Q9!<;e7y>A$$#J9T<WRP7Ot5_wdjW~DV`Z#ao7O84WCa^Mw+
zG5mfxE(t7fV;EP%1T$Nak`hD_Mv0^dql6QgFJhFZYzJ0@0xEH2?RTaW00oq&YiL;X
zR2YC&QVZlzuCy$Q$R_M#(b`%uT(}YD(UZMukzU*|qf>lHVU(+1<+4B-2S2S+A*EdK
zxuHfYN(d}}bqCj$u;Q@Ho=TForF0AJO94CD=wi=p%xO}uf+$p|AUbLq>+thpZ4p$V
z#t5pTRu?f|tWiM}YEuv$HOW~nTO`H00+>Q=0Zd1II>fwKVF*;HF$C(UQXeFDH#7rT
zs5}GN!9fs4UTk#)Rj4_F>ZsMln|C)l1}oGXgLPC4(<h8&FE%*?S*Sh(*};Jd8Sid<
z3RtK=1q`dl{W0;I$sKEA7Y^v(-URnwCtG;gr$69w-pS~>+bzvEm>5nXP+n`4ZKuEy
z{S5MQzp@&O)^vF6j59o2n>LVrbwOBNgqJfXb<5bYjBxZdQOFumP8vgpq{N6>X_UPE
zF|zY*`<Bt-9)kt8h6iO&2?<@f%W6@zr#{9Zl5E_&OUddYy;G1Wpm3KED<sZU=`1}-
z3&0V`0f<8uuYxYCudA;jQ_h$3U4?6NjET^0ah9aq7C>S;d=f|z;@Ea&SXs+aVF(b?
zU<IY?hZ%HV=2$nz4Nn<#EwNKljL)EAUzMuRAlaG(y*NiIe8*2r2ZE+B`m~&xRBLno
z9;F5_^IuL6nHc)6qh}Kk$0?UMn=8+UFYe>Qu7U_f!0WTAhH-5nkmJPkva!Z4&z;nY
zZ8o5#dTeo_21nnOGk4lX&x<2~h}R{i5gW~hPQldgLW%ACE?94D=b`FYRqJO?@L?=X
zM)VPY6Rx<L#jS1J)H(XJAmV6Y^nHf3FH=+-A1;x4zrDK`5m<pE7@0bqkN9L{e8D+}
z#M7~%9ClKy-Wo%C5^{rZp<*d>GTzZ*??lg3pbAw5+`qI)sjKYC8Hfc6ZN9upgH{CA
zJJJ!Bz*As`X|CDrb0W2L-}9XK;$9AdOQ31r2p0j66Jc6b;6|g{v&fv5Fu~9kF9{}s
z3V8|(^GroB*<o$wKJjqm$%G(%(oS|(rRJr8VGEP;Ja;KrABQNnX&XwsX%NSiU3WaX
z9ZJQHmW8=wMzJnvkhm&UW~*`_qM6YZ-n@w7y^qz;ke1$$=jj9xeNv`5nDVTYL>!f8
z>^^upY3k}Cl7eLDL<>z}0?0yTsHLX^r4|+;b5zmLPBo!DgaEi+Gy3RC5*0B3<rE?%
z3@nwHwOz~rHdR=btdG?+H`55U1{H*?AmV1+VTFt{mz4NZupHIQg0aBG!AK*fQ^p=3
zW-htccv5k((TG2ToA1b+XZmDRbWP{M-*skS5}YvOkM7#I-K#k1Os|lmTcV}05rf4Q
zN987>(_08ewp)AO0=Ctv#Y--9=9XG_JXaQAB^;roG+p|V^r8fwr`6l<QRD*>t8-Ah
zX<QhpzHGO57=v`qhmcpU%F5o!Dg%>7-vvQoCV`-%5F9|snPNuNW}{BBy}~HXGm`^K
zx!I`u5T+)xkSLx?!5b%|BqjuBh=uqO0H<LgUEoP~vcd$B(rMQ!rAi_pZGS1<`sL;C
zeiae;fsuUUnH5h*If=0P+D)pPS$iOa%J+Xv>x;h`$X_|(>J4Jkp8e~86?@<33Iyl(
ze@dyx-xv~Y-c7g9{`G9$a^O+3{xki`17iJ5)z$}i+rm-X17v!s4phb@V0(y4yi^68
zCAh#-DkIzlJ^gk{9f?(%9LlHD?KkSq5%M|SwmmR>dKo~qbh-W2sY{K^H#x|o*a-!#
zr|8E29Dn+VtW}ipuor=$IGGI%IokIkS`9H;3nJ288xHXw=2*%pWLP{PKey|zn{FhE
zte!UycrKK}Fnd~KfrE*t69;xANnbqV-Q-#5YRGod6?WZ_tcK-5(FyH(%#XxD@G?MO
zzfK3J|CS+$G^tzm$<Z%tTjiuh_vWa3k!n>OcsWW4<Kn=qlM#WEdy_J=c0*o#!|O%M
z+ok}<Lb+;g;KRHlo3yAcm?YK|S;+w7cDJTz`7$)ZSIVjZT8s$-a48o!GZ02DqW0aO
zJi-t#oEM0phaNy0yBx^6Z@_@<+HpcHw1yNWPiN@o>J308deDUTWZ4YBp;8}OiU!Jp
zPAROin^wC-1S**z?ow->#Q-idA<Hz1W(R<{?#^$b=V|67WWr5y2o=-F2)WNzE#(&P
znm}Tx($rzpyOWfR00Ak|i3d(McLnGob?89k^Uq1oLFEcz02m^ih(u<oo<?nHU2!u<
zcatL6c5{lEWIa0Dt=G7G_MQEkdKg)(?4Q%9*!=wyk~>5o@6;zI^3p+=I*eXfyjYj)
z_n*L)Z%XDX_kuHQ=mOS=E)M<qnT6dwdtrYiV!ohRub<&xn>Wt(rG&bgZ_N|~FIc+m
zXFNT2KS7pm`?oVlFaEj1T^9Qp3(NhC(r-RI#NRgC*?gJ#h@kS!S2QsG`p7r6&zsE@
z>2SA5#T`|ONos>6q_%hymtP^LaD;;MVT6ABj~CzOav9C;4}1}~>t|etP~iLxxr1?a
zN_|}+-}(I87_YA4|H%W*hrE632BGVBo@FFn+^sH_UWoR?*#wsqEmvO6x$AIbF}pw?
z?za3qgoQ#J;aARFZ9jy4=M~!YKevi|D_<1%LmrAn+gJ1|YDxspgUfOa#q_;1mYe$d
zvZsw1c|67}46Ai8B)Prv*#X%qtRFU00P=XU=Wh1}kpcIo@7nej*X0)NZuWUG+2X?R
z{pk#+RL%OgQzVbatORH4Z*QmT(;Y4Yolfs(y!uZTm-j1#s!)F&NRFknH%FuKjPfBN
zN}qLPe>!;g>)ZSGzQNnv`!@)W6qD%0;xkv^rLPYVIyQ6((SHkzMt%2};r?BTJuJEq
z=cAJutrpUw`!&*#T7c9+1UNbdOufamW@F)txxZ&u8oolZ<3`d`9G|iY=elm+on5_|
z(hUPK(e~=y67T<xN=%&9L4AktAFS%fYbt!e*p}kN=@62$X3=cvW~EW8gNR{rMy8x&
z5j$`KHR=%$f0+z3%gJ4{pk6-pD-51>Zq^Uj0{fL|5H{WOqg&r%<?Tyl46|&19&kRg
zH~$xFGK}`+`$r@b*c%z9>X}>VDPPW8+NB%+`o0{oD(H>Vp8cvg^R~~vOle~K(s=$N
zFE49x!;0U{Mz?HLv4M5l!a;iv6T3OR$MuUDQs$2!WXzm+8AuL1jI66rNy(}JaZ~By
zdU9J0e2q8L?%_15B9282Y4V#HZ;($$sH+a|)AHTfMI9(<&;W4kK8ApAp74UnJw1{<
z-re2;cT>$6k`ep^F;CcOSBVOHWX=)9N!O|{TvLoawg=LyI^KAc;s^mI{W;8h+Un6y
ziX5-1^!bZOlkF%_BfpA}(k4I52V-VDI;a15+@N)5i^=>Rwia#er<7E>3@Q%RUcmFF
zlMW~D;at{qDIUI*QiTH8Q)~@$eX3*5Yp8w6WLtnUzGLYegb<c^D*Kor&g}^Q#9S@A
zy&0~KEk)0FeV#K7T7r1~!m(%F@=6(<!%A7i&+rk);m>~ak4?M$kH7t9!p8F7*;V(q
z-~8s!&)9ChhJ!waWRSlTd4{_@XUG_8K2x+V<WaE8<uiCO{_wr4R9yC(zt5K-l|8lm
z|ITr)L(DRWhwm?zcrH|*nPfHIz(0S1hj|kW+npU1x$Ou%vZA70)x3qj$zTMQL1y$A
z#vYr+;xEhgaY=i^F48d0XNqPYIF?gyfysW8b*sM(#<b`ikEQ{)NX)SLNqaiVjpgCn
zA#B>nvRxyU+wM`Ltphn~Z}-SI%;#}JNA!?U;>O~*nbL5~560T@fAF9^Iy=h5eOK+}
z+t3zhWQGM?2c*TxwrD6h(QhWhnZ-VBamGrN_jIKQlL1vM?*9g=NY08a`@exOd<oZg
z^Ysh|R@<lJN&-6sa{1t3TyF^v>M{uT*d#@=$EJ!Yg1jPbGL?zf?>!Ha0(lgTE7nzT
zJOze>>8QlTed0y2zk6Ip+XM=Q!-hk2DlrK6?-*Vl?KugVvImn=6mEI8Jl*WRV1=V&
z!_A1oIOKP-<$YxtPzp|AEQutLw=##|$QfAR4a!vW<>?)=^sMOZAx`Yv%~S}z3DmZS
zI46egrXDmIrYv?_h_vdIl94R8p@RPiyte@Xd_@Zk)67l}=XLEv6frwFPe%MYRJSlZ
z@c0Rd-;f)$hX;kwY~L;>xAh1=Z6*{1)!8|oe4Q>nf3e^fVJjPJfvX$q5NaE15$YOi
zq3aq;vlxOix+RFm<5(g+V0AU>$;Y|^diqaIL8gu>M6vmMXzQ^hN#(m`!5amdMtO7*
zM(^;AQ7T3-C8l;WVjWu%LIqa=1~bL}B)AVwr<(^jnqbdu8a|V^uCNFo2r(;^(e9BG
zn+N4fM42K6r1>uRN}+fXv_@E0@Jg*`Aw<0D2I!t&zXj_Cknk(7BEd1u>0~uOr5)hL
zL}t=im#3`sqykMrufE=%!tdU$H{vV5(c?-L;zljbF0drxkqe4WAe1^#WC^{W1cxY!
zEMGDm-SDR0w>$w@z{OFhO(=9$Lc!;g>DQA{C)5=8-soAVyl^NF+!D<%6vx9`wcz;+
zX3^EIxAEB~D?w*FSkcy?if^L=xXX6R|M(D+qS>J{Bx~~9y2DZ$(YKQ+QiRK82+?}o
z&Y|RvMTlagu3Nd`asWR>W)M0L(<a{M^-5vJj_bi_VPEJrrwdCj53wG$cvlSlP7l-2
zu`r@#r>BcKtZ(y4q9hjx1lz4RGEr$!9j=Lf+z*)|&`>djOZ%ZvSMQ3}1D?wVqw>`J
zd9v9&&ajQe11`gBhbuq`3`ccsPP@0R<?*sJxc%H$G7W_ryt?`oIxktj{4sag2$bUj
z#i&ta^MhuzJ4A@h=4(!mUj-PedUkB^2~KEJ=HY1e(|wtTitBt=?frxQWG4F-Ouh*E
zBlp33vyb^P3Nknj)i+3ItOR)+qT*aSK3$Bb;}bPv4wm%ehylm)<X}5E_{%E=yItPm
zVQ-4<J+#{#v3GpZJ3jx*@kk=S&jUPx2Y9a4P{4~(kRv@35ZhLJ^^**+y?tq#F>FQM
z#pP4F{6|5$<gDUoDhi|YdDMOR^B2Atxuxd+fZ3TL6M~%u@5_{kky+MDO2WzQ9n>yT
zX7Ncu<0)?2A|u$gLAdi{^X1FBeMAuH=o8Eetx{Paq7+WOSujJ>?5ptzR}yJfgI2{+
zv)mx#IN#6WYi-`<$W~D$3ha(WD28!*d#bJlDQ4V=`awWGWGpNgOh2|b4}NotecH+B
zbF-$fbN-~e>rlEBpz+uF1o1j}814YVm_}*sYdDO<cg8^WBtJOaRkR5O4qz$n^Lk#e
z(?So>Yi?`4D3S3%?N98C$nGB|E3DB4oY-eNm?a{Tb1&{iDDfihMFodwiKlijA>I#j
z#~qp6!Fqs;vxkI8qwnbitht#W%NYl)?>9V1zd`7lF6BvJ!oG$T2(1tpv>or*fZCrO
zrjod#hIKub^mDld!Ww`_HK*zPJ&fe@7qWX0AIs5nDj|BXW}!QU$Njq?(^gOwkJ6#E
zL5RF5Lgr9qV>MX>R?E;{74z~~lRKUgo-dE49G=?2T7fes$C@=L4p9(L!&S~Bip^3J
z=J3}c+~FGLX5LCi96@wbzm6Dcshek*-W|^(Ie6`Nw#`ut07va`E5MN&AJ-H(SYloq
zjv_Ko?qHcEtI45lO$Z*N#R<`a+pQ+?LtCs!9iy#^+%a2uj3MC{ghOTKDIG&(p4!0@
zQ>)Yw+Gv-kBQ?^JJ7z17p%;4bJXC6$)-lAU=^ZRLP0R@{f08?Fb)VkPvWL9;Qi+2I
z2GTJL=`mOeNgc?SUHFc{SVZeE&Y}hC2>j(K9>%3xT8_Y9OzSYt><oSc#v)P&^Cgq+
eaTp6|9mbiTijKgVB6g1$ff4=p9skDLj{gH#Q)P4j


From fe23751face3f11f857fb1c1aefe7055f22c2295 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 2 May 2018 17:00:47 -0400
Subject: [PATCH 46/69] Add demo to README

---
 README.md     |   5 +++++
 docs/demo.gif | Bin 0 -> 3641232 bytes
 2 files changed, 5 insertions(+)
 create mode 100644 docs/demo.gif

diff --git a/README.md b/README.md
index a2c5b24f1b..dfbd11a5be 100644
--- a/README.md
+++ b/README.md
@@ -12,6 +12,7 @@ Please let us know if you have any feature requests or find any bugs!
 - [Kaniko](#kaniko)
   - [How does kaniko work?](#how-does-kaniko-work)
   - [Known Issues](#known-issues)
+- [Demo](#demo)
 - [Development](#development)
   - [kaniko Build Contexts](#kaniko-build-contexts) 
   - [Running kaniko in a Kubernetes cluster](#running-kaniko-in-a-kubernetes-cluster)
@@ -41,6 +42,10 @@ Multi-Stage Dockerfiles are also unsupported currently, but will be ready soon.
 
 kaniko also does not support building Windows containers.
 
+## Demo
+
+![Demo](/docs/demo.gif)
+
 ## Development
 ### kaniko Build Contexts
 kaniko supports local directories and GCS buckets as build contexts. To specify a local directory, pass in the `--context` flag as an argument to the executor image.
diff --git a/docs/demo.gif b/docs/demo.gif
new file mode 100644
index 0000000000000000000000000000000000000000..3adbd1d34dbe6c1708d21cfd7c4fcf7c3bd5215b
GIT binary patch
literal 3641232
zcmd4YWl$Vlpf2he7+?lSGPuJa!7aE%a3@G`2n_BC7CbNvHn_X{puyb(1WO<Z5G=U6
z1yAPW+uzye?tAOht^4EFsl94-b#+(&>8h^kRquKqMP&ssaq}!3YHTk6fDuFRQeNkk
zthA=Q053l_5b*cb4G8e)@0t7W0r=;!u)k+AGBUcqgOLRWgE6sjF|+e<adENm3JVGf
zN=iyH2}!X^D6&dvvCHamDx0#rwCB{Y<<hj{(sSi8_ThsE%F4>Bsj0ns^~%J=#KOYD
z(b3V}-QC~cpW6(<YmVfziQu;g=C_UHw~u+^nDE4@%+M)O0M+^=?~~!*S-<GpyX`x8
z=sR*46ciL49gRdKqLLGnl9DnrGouRXQYu@Eii#>LD?ik?wp5liG&FQ{bRawDP=Dv(
zde`#d@?h)6c;~>tz}VQ>_wU~q78V9p4`&bWmrj3gY;5fB@1N~#pY89RpP!%IVs0)^
zF}J6G{`~pp_5XVeJPZPa3=Rnm3r9snMn%WO#>FQjCMBn&rln_OW@YE(=H(X@78RG2
zmZ8flDyyn%KGfFLH#9aix3spkcXW1j_w@Gle;gPb`ZPQ;IyV0K%f#f@Z{Me;XMW7i
z%`YteTv}dPU0dJS+}hsR-P=DnJUTu(Jv+bnb$NAtb9;CH`ws?yjZdpoo8K1<CgC(0
zt}XZ&4rNx!R;nu;jG`2DSRAe^`V<F~jignsFCIx^e^p^JQeQHb#&0>At=v%hIZMoa
zZ*iodY$8u87@tn15&gADDT(v-Xk+>JGR-2D9F?Yu=}LnJho7TOl|MefKSt82HdoCx
z*nO{fJ=R>k(BgtwAI(v1srlLAeZKc|tmVUU4+5KjUahru^&^Ue%XGZ8Zv9g{vudtd
zTm9x(x}f9Icw58vM80eky?T4&?sxR7O4HBnP5VD;Eyr@zJDLv{THW`TK6kVnFZTu$
zFud$+JzXD8;xhZv*>=7?S)`ixva9{q{%nKe@|UiTtK*fAQ4AX0oj2z@-z&`~y1VYK
zPS(frG<v#!-(8>YFHiLJU@!n&_7wz(+-@ZZ%!*z?5{m4s1Va_rS3^kk>{df5ZP2S>
zw4OVw;jl3FH55y#-C6{DDS9oEyLo3VihqcGJz8kSZaqe93%wru^m1oCP70S}BVLZ&
zej`DNwR{7Us3x+zk))}>v6-x+XTO<ZU{k)CYT~)OnFbHz*h;rbwcpCHD=pv3bZXw+
z%5oXv*v|HtvER<|-YVbD^}pQR&O_jG?&OD%JM0voSSxl4qeb?1isBVGcZ-wt9Cl06
zZ7Oz4vpx5A%kslG_t3?u4twS3(u%!`s^-1D%Gx2${i?<phyCi-t&07c&da_1552ft
z2ekv_jt6zatd$4#<0AV94U-C7hmBKuj)zUNHkF6Xi=O+3Eh}MMN39#Fjz?`frIknR
z2hICO9VbIv$DJ25j>lcsTb0M%_m}&}JperJlU@*o(@7tgt?HzoQ1syBBUF+5bbwUf
z=@c_aX<KzVMC)~M`Uw`!eKyRJ=5#i~URHHB%H48sHpc&n`+QvJhtv6IvF)n!FHf%y
z&L^bscrGU8D4Z|8DzQ~xd{YxWy!fuE$n$GTN8kC^w1I8)uNf1s!(Tt(;XIeKR%y<c
zb9QCbm-9|7hnEX3pLnhoJ$^V}{q)|hzFP9XI=os&;PGCsgiyS>UPZChT(3oo9$l};
zEArlKB<sJq*-W>sx!KD0I=b1;59htzDNcKHyNfQXx!tR3IlA4i{lt5B(D>uc-C^r?
z&D~Mw)zRH?FCO3h$pFRM`_o~z5BF!|qR02=lZt%5FQ)Y0{{A&<`{DQHqSx{7tCeuR
zKbY%{w6}k5cFI2dxjkq({&RQoi4Svs@#8J#_x1J%%%A(K<G-IEVLkv)sTYg-1OZmd
z$D$bS#g#Y-f=1_q*p&M4jZTo1<N3Iv!+j5ZPl92D1z<&`e&WoN5O%c!eEs2m^7fNZ
z{^$ZiTcwZG^Cw|q;{^}BhCkBZo`g#g7DB_72AHT%QA%os#A(9=tP-aYn$d-%WlDpb
zMyHVm;}&{iuwY&{si@L61aYC%kbnpycFL?2$>^|xz#AAHwUP`?Qa(VzDnG`GwjbEb
zo`h}Ji>qRXgyAU<%TS-iqtuF-@C-v98c2~)8d%ayC`EusfpOMT(h>tG<;PQ67$UEM
zBKjL}5+R5<39VMbsXsERJin5ZiejPX5RYIi7J&H4;Sp(zhscN2#}u(xt6ITE^r+9%
zhX*W);K~rgm&7rNlTuIE%7Z*u;F(Ek0QM(TYUUNi*t2S-VxLA-o%NWoSBoFBaPuqZ
zbW73gs9BTn*Q#r6eam83M$nFoOa!cb#Z5(R3qEEHG0r5R!y4Rpx(^xmTl>x;cv2?!
zcz(>ilq555MT#@UCFmVHEZfGalrdmr=*{zFmeg#t%7}O{!qg+@FuR0s-c?ygPl$+x
zr$||YGcm5_qU@7SKQoVnYP7%_Kw_mt_IprJdVNAs_r{jC4?Zyt;8#TzhO}RYF+o$1
z`W+En>!#*HLJ$jS14MquPUlcrH_?Es(q(W%?X{7PB71MSlT*LRasuKZv;Zu((<@D7
z^sTx%h52oaBWb3~XyvyAfLXDe{s{V|JS`lryfeuBF5&yrH<z_k%1$Ot5p$JTQ&@7a
zJt?XJEge?#D(qb+QcrxN0nXIu;x10bNAO@4w8#guX9KUb=0ZfN<(eC-s}<x3ek@`&
zl_XqLTbVh`eY0@G&D*TfNx381vY2k;(#68%rNP;KX;B~b;0>cu)Cf~=Ds1>OuNT|e
z&q}0z39p!x!PuSg2To)XzV5#Cn&fiq6b1S!g`J4F_oYClKJiYq6NWK9Q{{j)q!(vt
zI4Cf4CE$x7Q2CupAV;OCbSt2^f$qSyC2MtaNd%v6Yny<WKiJ~A7%>sAYp^88H+BAW
zY*}_>e7FgS#zbncP_q{oskXtixH4SPTgyp#@Pn1W5RY=lHL9s@HD$;<+jkN1>g~Ah
z9yt?mX0V9hsVjhB2LX=JwId3N2i`DYVap7==L$=%KK|sBC>IY*q&Y>>?HEpEnmEcb
z764=!j3$nq<g&Z~wxoP|5LuVL{1%fK-pY%y5te=+Y3+nS;ti4b^8o_QPHf2!ukgHI
zTa$Rg;7YYW`hvR<Q0^RkCLKXy#y3U82g7R$Ecy94RqvSiF#ty^ksxs9mWRmGXIh#J
zNnmnKDfKyT2gTxcC^>smZIej^b}MXVNKFRM<QeLBDp3W9U$kA<&;;(4IO~+s_(00&
zSboQAsmcinP3Cd7*EBAid1Fm1fG|??>>ygE9{@U)Ypy%20Yp!1NoF2EC|2q+@nBnG
zStpK)pu6&GQx9e_#99|C);h7e%m~4o6ACu}lx{u1;OVuCWTqi>MQ-zf7|=c9a)F5c
zEi<0XmwjFQUqozyUZVsHsM131%0ICZFDPD~+tV)QiE3;LkkzXGh!yJ!sRcwP)!M6c
z!b=F`CFpH?-2yGTh>YU;Ysu7q$rHA8IaA0D2j0$NYGl{<e-lcskZ5`~XtdM>&t5tR
zyQ&)sio~nyBP)}>IC~IiL-H|#tjk%b&f}a~iO)wsYCb0<%^H^aiw(}G-Zvkyu}|-H
z{7r4+0ootxx4VTJgtQ=&>S`vrDlS0W`f30Hd}XmBnwwcn<Cw(>FbdKH;J$&|YpwrY
z^4IvygnneAP^^<HF$uusUGXRM=&d@-ZaYi~@^jnEjh06X;sM_5HGDq<oDX?s!+|u9
z4N&kmj%;4_tnWXtz44Lv4Tt-_Vhf0<1rCteN5O+AW<4o;efvcMKWhfA7yJ3903dMe
z-L1gM5afu0$MBGQO^YeJjccS-z*EIH!BET_^Z=p+F95x57?JO(&t|qAuDB*|cdrl(
z^Co0se;Mh89hVGDyz={_uTJR_lyl;hL>e3h!$wbOe=k$P8V2iwy`y14t9T*dwZ0-`
z-ogC-4FjQJy-05skg8Ikh$6tgR8!(aiCik2<JvpvLV?~u!K(#gjZzd?afse_iGc^(
z3<O6^q7+cU!HBRIV#dbr0DNMK7jkw-Ac%arev?;t>tx6X$U&~x4-^l$V|&?)r?NW$
zeES2LlOME>3n2<sKEsKy@<2tq0MR-YA&3YuU8j(hD8&|Vk)6XEJ8)%~vWi_~KO%B?
z%3OXj+%FkmJ?#<eWeU@^EDym1QKY$gZ@iDIwRDz?4$hDMjs`;zZw}bOLnyGe2)MRP
zGcg_99j+)#0r@?vz^fQDogSV(4N{f@(c}XlwTk#BSSN}v>rk(jyo0kRqpcck3U?4z
zLh<1%QL-n|A-!P^o?*|uqi<4!&uy>|N)?JkAzQNwl2Y-5@R-yzP^%n(A|9xis)~mI
zN<tHiy*#Uv?NI4JrHo`MSR!*<xD_Z&_&PM9HzK_ldrmhl+$ApAJ64SY+=NmrVF!0y
z2MLK2ii{}8)B+vKQ>o&uIXwZ8UMD%t1boHhD$v^|{!}MWN(3N6y*4gtCG_cbn1Q(V
z;E*x8Q7r+M?k<OcNQWz0+oy8s`mg^m_V7_7v5!leQ;?rbDeF!5qY6_12SvrB78TOj
z?BfP6)B7(Y;sKe~LP<&RckxsieJ-ii#fEsbSz*>d0T*l;ajlGul&lPWYGs1jo8&@q
z#Z(mdmvGoKyATp|81;$|9Y4g^P$8KLvNx>I?32Zr0+Qs<m6Y<L%}@1f%nF94Noaxw
zZ(^XAxyK5b)$!R{y=f>wL=Fc8vf_f~$gxL9fZ)Ja1`5|V;LEn0=&(1-K7Kyl*s{IA
zu^;i(D4=X_;5!afMWeenOI8Cs56=M{&koAv0RI+GkJ3yJg_?b`d1cN4hNwV{c5)u<
z5wwnAR8~UuMBqTu+xWf+wU6T3>Md{_6~nVDd{}$7onc}1P98^Qrs0UXU6_hWZ*efR
zD2czwTBk_FAwH)Oo4huL=A?)UKlWlP9B6>w2}xs}Eq$Y6`J<#bY`B<BLJ^~!nn7tN
zXa_OigczwPn9LK1wyVtOfvRTpDM#Hs=MsYBbDTV~owgK3;dU<MzNyr{tL$YxN@XuA
zz?>@J`awqpamai8ctUD)2S2*P!(H74`&}^rF{~opUYP3ns@ec$Etj_`f=xTB!Ds|#
z9xZ3zE7x>LU%QBn)vO?hR7Pi3n9i#_RsvA=CY(fAvd@5yHxtu03Nl=fFMd^ypfJiT
zqj@>hIo^?pBSMuS`BiZzWm=O}?fDhu9)U9yZ|jVztxMy=q)gEs#mRthE}WV}_L_c&
zG7bFvj9C?|O7MY$ei{CU7T5>0M_>;cfOQgSp_JU5={ZG>)93|3`REd;0{T>HK04H}
zQ{)d7S4K?M#;nvp{URqa)l?7)^Qm>z4hnzvQphd~krYW2CFNTDH3^z!Wj?jr6`32!
zCP5L(`13W7Xc`(}b?I_-HjQr}la-65$fVgi^~r3Aq!zPry}WS^>ZCjvX6%$4c#c~>
zvezg;-K5P$pcAF2=cvG)0g&ow5?8f|%&#^Phx`;*Rp!U0b^)TYS|d9!?_DJVK#uje
zs#V~qnuipnN2yUCAT5TRE$##a?-mri#uTbcTULu}?C;#~GQFaj8d6KzeXp=6r3%y~
zy<}7y3+<YT463-=wenh1oI%miEA`QUh8#(PyfK9Wu6CF5ccollqHr)^$er5}{H0ip
zqW6vRUh6x9T1BolWttLvVfSg{0B}WHz-Zgx0{$msg^@7@pM{9~=@vU%!*1`qrtPT6
zjJC$guAZ^3FQ`V2tO%NIO}rKKL)>P4hwjqRs$Cj_{U~E!v^F2VL)DK?&`BpMUqeSC
zE(DR_E86vXwpFXGD}JGio$DPiGL~+!F6z1&L)t>P*!$t6m!BNdM<TB*!ESNJWj+~Y
z(cA$JR#m8Gh0ICz|2FQ&>~{gx+DMfua|ZhOD|*L_vIGwBg%-Q}FO}X=^w>!FOv{_R
zF%E*^3^I21D0CJpMLPnb`!mu_?m1PMI64EuyLF@S^_@O)mM8{)8a##gY_)hY?MCq#
z4ZOc;wf3vGt?bB;jHVlZOYZ}As{%{k*SxFh7Od1Z^JpNC?jy`HjN5Su=I#$w>kp@G
zV^dQo`!wKycBsK=zO)Z-Q2vx+g70;Z{O7`Br*Q<`0hX8Ou{BZPtm<(VY7X=7KxKC%
zRW@>lgN^Q@=B)EFMIqf{V^x}CrA=8~gH7mEmA?Cg!(W&}T($9Hr}5J4;Ss{_F@JDr
zhCV_ZY&NIB=lj85?Q<FYvsCEE@}`eg{t*V(V`$n`9*3bK|A7*x{;m72q0BGgunBq^
z?^2eSL@9GVwTW{0gp_p(o>c72-ltet$kS4AT2$vY*XWJmcpSV@*?-hmGzZJU@LZ%K
z3>xobl|m4$NUi?082<G|Xxc3|<oLd$9;IwP4u0XB-?ZQ3P&MFGHOf;B2B>z2$2Z~Y
z77`w2im8wBc>?hPJzO~7-yaOd0uTd(?E<eA82r9{_Rmwy8QOeTrdl=rz6IP`;gz)+
zCA;`F*K6AI-XfnZ58t+=Z0sw#*)vSn!&~lqVl$?tV5G;+WRm0k<lC4puGQcpY8+V}
zaHF{LjkS~gvwGhyh>*W=pt3%kZpPhtj!emf=in_9TT1k^GN%VQ@m*6cKL?^}2aUZE
z6$_v&^*IxDL%rW~%3DA9Jk@AAzLp%;4v+;~J1fjnhDh`}uBlCKI86>mPj+M_{t@|6
ztCl^`gk8sF!aF%8%e7d#(l^+pT_3Zk$pcwyt&V_x>$ky<Ee2dVFVg~)s)T;Vy#5*Y
z{%1nYWYVGPxo3`}-I$FKNDzii+Y6+FVW)Cv^f@mTz<YP;auM(QI{d$tbv1l`rmTWU
z665eCYo3YCnc~bDZR#3T9GujR1SeH#PTpb~Ngv{$daoM%ihGu$z}}n}4qYE6UBi0)
zZQcJ{t0UNMzcc#4t1EhTN_El2WWBUEQ|!4Gqw@SA-Pam|n$~A-bSvol2McUVGmg=t
z+@BjyV=PE`y{iv3<Pg2uH4tah&ELsADg505j*urypsdud0l(93g*U=s%d$~ZRy9*L
z^!au*3+P68#N_7M6i61Z?OFpV1#OBgfj)#lypP6GG^d(hgTMNz{q}Smh3K&!g4tu%
z8gh1=X;YuPG3P(ZWp0^I3BV5kDMdBzcP{Otrj%eN@9Ks=-YYM;r32i%Rb*lCB;k5$
z%@lxhSY++n$ci04l^x$7*>v$}pArnVoA>@*K7fw@Xyf@&GVjP{?$KdqZa|aDu9wa3
z6422UyheX~_cZZz38<={dDDG_)I8pety0`vxp~-6)BC>X3Tyk}k>G0NYawjtvOLX7
z1J3HnYmZaDlS9IuQ`+TIddw+|;f(3U8H?E&Yv37s-Wg}l8TaxTFXoJ&;auRwxschp
zNZ`3x-nm52`P1d|=a_RTh6|Y&7jkA73U6fsy|Ep;t-3EE0m2~MKeYHRb44(0IT)zQ
zn24elTmEF&Ll9dYwr26-QcM{nTZ=8Sa$F(hS~hf<r|EfP0wF5VHwiNQ)lSfy9GC)g
z6VAd<9H^!aa#GJ11+gbcxL}S8p|76lIpo2VgWp0Dt@;%DOn=4@9Boa<=BMR$L3(sR
z^k2PEaU%Kj4h6@MC-T10$B@`SNTV~E8P!!Qe=6b_?8kMIcXDujbz`k_Yjgg^>cu5X
zP0k0G+pzfCoZ8#e$y?pi+YZ=WVr{r71AgmqUAu-tr<sVE;mw$y9c|l9zNSM|Pf3M_
zVb$@TLEnA*%6*)Rzm43lZ*OO&8E}4Rh|I-V`tAHFf?DL7-LD1SZ#)A3o7sZ2B2>cv
z@0o23Uxb!iW`3ezj${(Pe2$h1O+gxUj(qh$nQgvY4psC2Gqc5vji+Zv$fVJ#=O~X-
z36O^?=X6YIspscJef}HTCQsyMkkbiNbrnUFBv33)Qx1QKsM{Ha&|0}@uEYUq<l6E7
zYiRp5t=%q7q}Z)bNil&Y(~6WRv34?yQBJ~XpLMrChDoKHgG0bdq2TSRP>kgT5(Rw_
zF0wc)%@Q#|L(67fTW6_6oGD=gol2HgOiYio>t+vO+zV2seFN>AA3#IBgXR8YUsxz5
zuuNr+)4Ew!Jf?Y*Qmi6irKoMV_nfM}wg^QiOY7OIUJ?nOH#{qx^h=iJ<L(F(05iIY
zeOILmzm(r)17m+3TuFvzBuIS^qVZXOPKWtssFOf9kIRw%RcORehDqA({Y~|&Bqn3w
zruQ^nZ+<HBhAL4cIt*Xzit;K6yq<D1%%kOhJt<wRbh_@rpl|Y@p{=Oblkc%FDGAE&
zj5&biva;;;+Dr*nP?%*jM}h1cu?XfB#?(zVloD9a@}qw2g^oFs`ayoqV;b7V0#4CJ
z1pucOA(1j3d#pi-I`STGgfKN`cEE^dS91}SizZcphs)t6!vq&U7C~>MSc{lx4%k;2
zuO1_*9`kx&F*6qaY5=}_s*+0cc>P`ZC^Ft)GU7q-Vyz|VjeYWP3U{QToOkNv>}HJY
zLv|bCcqfkSl!R*z8xmO-@ny_^hPII}-=}*_M!-XNCL>&6{e|15vCw9=@Ks^-_ux?W
z-ZB{9)UYMV2-UZsil;{ia~4XMwld=O?0HmBo<af$m&$GrMd;|MELRz`IJsZ);-xRD
zI-J90rK~BGc+M)iwU)Uw2BlQ?c$5{(h|!Q3_OX6Z#=`!CXhj)A0H_t<$dqi#g?cb%
zK>(>6qxT!G=YC?**Vu9dXJ`I~MT=7(EAl@>+k$vgV(u5=RW$PLNv-14WucV2VBB*~
zZ8y?+x1D^>@bpZSF#hZ<$0zE*OgUvWa!0pNb#EtiX6o!Jxe*l?7&mjmWABtNTG4(=
zSfC!YBn<RTK`MU97cob0BMnqN<Q17)bVOH7b{2mAPtP;w$EzaFN~ywS0vBO&<9n#_
zAr9AR6d_6B7pU$V@69F(R64%z7Nb%~L>vpx)i)Z6XG)6}DyFDsPxpC*zHEGPoPx4<
zkzEe_&(OA8b?}|TYmNpgI(5`=*kphbuA|%KERIOyaKUI%y%TDzI~N5flIU~^!sSJe
zP_}3tH3bt=IrU~G(4J9{A{#fArEo>zX6q9L)i()oNEX)agU}VOEB9NfT&1QE$^ho=
z;8y5+COaFfjTt>;3i7!SiUQ7u{~H@;4mm)1Si(c(SR}W=tqAxEV}~d``3e-9#7GX2
znyZA0A?^t+QJ~os#Ito}VM;*|O)CN+#}s-$Z%uqtzC(0GgLi+=+QU9M0cGmXV|Mw}
z4<^p%s#U=P_mpuyUR+TP(L@jyZt+eV{uA03l9LR!tEj1(At%#ku?C+@&%W^l?wfEb
z2~=5ZvXDqpnF?Qqm&ta9J;`}u%oc`t{u}-QBBRD&`E&zCdlX7UJxk<9`?Xmoe(T-(
zjxnRq$Mol6rw;s9a=3(PBOa}PKTK_1Vis|*tU@2EIt!1PdJd!`&~KcczOuly4Sq;@
z6#QsIkqlz4+V(CHu!sJ_XL()!aSq{Hqpgc2$SSJ+5SdtBYsH8Zi;%<AoWjH7gDPr8
zz{^@E&<~vJ<e!wkxMiMaf7)4NxuC?cCzgs%Kbd95b5-yyO@Maatupc>`co2$bZ9uS
zNQ1SDSlOkt*H7q~tvqGHCH)x&Dr<*2ztjiP-}(*Bl`s-2KbL0D7b9ybN|3>iz>s0R
zy{Ft^EPe7YMb9EAWOn&8J8(>OIMD>Gjg)*)_kw@PkxvygN&SduTrS!b8oM5^fEOg*
z^rYW%#ekDhY!B?9f`mW+$#%IDJ}D<P#qw3I%;1yCOnqik@rlagp>+Ex@5qK+o6a&A
z)~6RG=)IV96tfhWZHs~lpqQsWg~dv5uz2^pTyk#*23GhcL-`q#5YE5&lFD4ks$8}%
zerHeXtI7vkx<?sJYJ)b+z*o{xwfqz`N2`RiGy$tcJ>Wo&Eut*aTmT8@<lz*hN{5At
z$N+`st6?mv5u;lI@u)WH^k|`poo5hY=cGNuGS#1ZMnBB=s!A*<WmUX~-c&OtaRFBx
zo}Q=_R<4}bj*)JUEO(7JKdws9aGcWAqOFJ8+*+|vi%)o$tkrrYy<Vu_1JgZg>Dos*
z3*X*?V}4zgs4_`m5qiOu(5cQ<Io6!ier;<A*TC-30i_38IvY%6(ySt&*F}JSGVE5O
zX5SMRcg6_v$H2z;Rs*JMW+ptNR)}3kO?>#@p!Ne>`VWlqnTN$IMl3(kS6fYNK@My`
z$W+rtdxM$F3x_F#_0|xFAug#J<BU!Ug<|Q#R*{<q3e4sr#N_ugi0|cQ(kq`o#pd()
z+cp-LMiP)vq{72oD=L*)9)wXU;RMkUWw2fdr~h&eSttLDBFCBgT%#1qReg(s2mETz
zBmG(yqqe7=bvs4CQPKZJ2R<u(V`&hJHH>S{r6S1W>)jP%+QvOU&DlbX$Nq3zPRK~J
zhkIr)mix}5lV443%-+{ukY5d7W!OkYj&G}hGh;ZNi;D(XM=O;2#WRAOr@>i$)}7g*
z_?br1r3>$SxrN+;11*AI6U(vvnGk*+`>PSL=`dVO1>VaOBn>T9g{g2?*v*E@u=|X5
z>N`fGjYFB8CqGhWo8D}ALM{{v)~*ji9y^l0^`VeZSc{Rn*rK8eJa&wuS+>;llXf<8
zyd{31@5qrEl22;7P%c7t1><f#j!|fx$*7$c2+F{}YtJNpy=gNhSnx^d5%PO1e`41!
zxn451yA}AOj@eItctg*}bHtBljRy(zGvG{LEoXkET6Q0*OwMe^rj!33pn|k>k{{JJ
zhtOwnU8n&5BnY@$pnSC4CG-4=#T$i-lviEb$hrcgu9_CWIZLVldPjwRcNQiy&sBS4
z6>>|n3$aDi$DYKYcspO#(opV$F7$@gMAwlQ=IzFT!#5le*dwHWmZ$R5r!&xrx5&*U
zAD*n-ALk$CTsa9Nc6iR~occooW7Wa!MnA6)8X8&UbTbp54YEnL_7R$tXG@Uu>h;Hj
z(3fN0_>RP2_vs)r7>IV17d;l;6(Omo8mLK#V45NSwy3`?IA+T~@^L_hRKRzTU+ko=
z_Yb&+zR!v#$c!1ZD~cWU$&X14$&xPLon|SCunE)jw<5K66}Dc*33gA>OM?ZCD<V87
zaQ244!e{TE4my<RcqhBKl?X#5L^Pg>VXL%;sLh7FOc(M@0>VX@lxwk#f7l;|d!+FP
zX2$DuCqfU31BFt2D8t?YD7{nRk_ZY6j>c@5v$tDJxDWxQ-=Zj3c_+*p9a7#4$CVC>
ziI<g14fjTe;tU8q3x9f`kBn?ZMYpoEwK8=nfVsht*(>;lu7(Nwd)G8qpb}sp*fmL$
zxposgqX@=)iWszv)KG*d8i3g>JsDb%VZ(yYTOo$v5Ts&oTD*=jKvp>k)G8XZLhfNB
z=HY$~=1HWX07TIsg9Fz+IMxs~!_j2g@&<~AQ^TfdB*GQ~DlykFE0nRvr>L_s*Q8l7
zN48+1Z3BowaFzjtdRr@wA~L5poHIOXi`e|cARMU~Sx#a7YB;*b10Vnc>3x4JxcQ=m
z^1U%S%0Zq_Y)A_a<@3=F1DPl_x4X8sPmYN$Fqkk1Ok|9)8%U^6dF!|pI&NUzxlY<(
zK(}_C$WN7oBORMC$u#T{Tbv$CO!0RI2s}y=XnPqeI~y_J9<;9)m%b8*oYcLz0<)#b
zR(VMtki^?uy`x-tD4Reb-W1F^Wr&~ZY`q?D!Rk`Ep+q8XNmiaP$PV5_LYAb#EOQXT
z^Mo=spJ*31opKjTkC-{qv<fJ4V+~6nJ_RoWyv&w_%1DoFld!OdH1{)<DM5HFBAnRt
zPsJbril<`iarXugVT-uw@VIJk$Y_~?$8>UxW<>uE1eqQ_g^f>>&n%lFZ0e((14xaI
zkFa#lr~nh>`(WNNl|?ujN}p3gN|eD~vzgA<SZ&j>I|g28v;k8+_2^vKhZ|oo5JIk#
z^JW&<Gv{^pF)T_vcf&9jUpX~%Qe?3(E4MrestD-c^2yls&)SU`q=MvSBwrgK(6*2O
zFYzmTH?0{FDMLa^xY!*9#1+hw-kU2?#@j;<Cp3hN&lsH>Lc}kW28PnZATgddd^yVb
z-MwiKQ^2ro0$Tp(TWy8h^Mxhhnb3K?VCcIvs9JJ)EZ=OBUE7lf9Led*$-rCijSoa6
zqo~y$>>O-3*q2f%u7SXd9MNP}RIwn~m3=Uu9#$IHvXxlPT9i`zg4`&PoWmnQD}S3R
z26lrf2y=1MkSNRnq>F5qjKigucMCmz%VLz0;(POh^Zm6n%NUC}MJtNL9l*ZDAcPV4
zJ66eyTYnGR<fo`)x%NC|UkDS@kcl|u`wo&ug+Ksm72Fi*q*e0D!PQ`|puo2R6fbKN
zsU>44t%_$`?!u4f;@%{cHbIr>GoA6Cy{rk&Rn(fi?vk3E4-kP?MZ;OxBFo0-tIW&F
zVxdk}N&sQ33UPbqr#HDL<t3A@Vta!&<=zlk2Z+21Ab`3u4xpPJY6{`BpUosMudRxK
zKIU&n7IH!ee6#c;b32Bshj4R}lJV2nz}*c#wv;tV{5klkpa_Wyy3A502<_=8hTyB^
zTLtY8i7t;y=GAjxAHLky!Bib4=fTv$u8(P=L*jLUE2{5aRe(OC6J0XoGa&1?C3hol
z%^ySX5YOIv)+NK$*My!AP(u`u^<k4t`e;NGm5bhd(Oeot-at1pRkeDw@xv%(rV1d2
z)QUW$?s_jf39nW*qSn*kfvj=ZnqjOS6G77+(psCAk*3A%uBsvuA=4Ut<OMF>Xij4{
z)tq)pfQs_dKm=%tV>KI+HEYytX(Q~KtnOZ28QIf&fVps^_dT%h6j77I7L9HGY8`ba
zqaPkgK$u7)!W`P;dSh@MqZc1Ts-}ouaY4xQ1H|;C;QKWe3+T6cZ3>bY#`HV4!hLYJ
zWpzu^(~)^dVT<M`v6k_L&MD#gGRZ2Z6m6^u@KJ>S_dC`&7eKOLtH%yH`=<3G9sIx;
z92wOxbgKKrU3xa7gB55apun#j-$^2XsL5;&lFSlTskpms?AYy&i3fBGDl9d2g}q`n
zAEg}N0xw1>M!NtOk}dG_pM<xy+8L!0Rigc*d$ufkevUHA-nB^bCrpM&`8v|l9wdPp
zdcQ36^G3g%<O1uuN>N+C*zpC(yNSJSs-GozOuwOmJ0Q5+uD`|wK}kZk7b=tLz2|ip
zzm)>kWIJOnYC=|Q|L%ZEbNfkcC~2P>i*wi7a+>&OM)j#ewC*rq&20P~6#*K5@Opt#
zf^s&Q3`mNQiy-=a@rsH_zEbmbEoEn=ywe~DauAOc()=xob@gRz5lqGdxVrmlp+ylo
zP3C{!pXxti5o)E<JW_ydqYf}8hrLj##fI5ElhNenb@88@|9G{f^xYju2cT)Q3`QH|
z3GSyRs?>;%_2TS9^z4A2zsrUn=wq>fB=Q4lfi~ZnEJ3hgnjI3O2pAc;P-Fx4r>EE=
z{G`uFqs$KsNsJ&5B~l&c%Vx1FUaw1!xTko3b?0?$;&Yc$fq_J7fmHn1xDl|O(O7X|
z;h$QJ15uUcm6hY$Z@>7{P7;!kVHJ@VgFMW!W#Cj6>zL4nI;v2}!>BTc5R1=y6#g=k
zV=5sdFuHF>$u9W%pu_pByh0Fd!6>sbdOgKWx|RE@)Yu)k`*Ngm{jTiRQ2&vd_-ia`
zpf8a9*Y_e0e%YUoZ@9q}lVg5~AbQ6RRhlw&)uBHN9{_}O725Izo!s&OQrGOq<h@hO
zg`mr3poKH@2*G44*W}kZ4#m&R%FZ57wewEDB~pOWxl8zEdyAQV{s^dM5A1Ld{ni>=
z(*Er!nfHF%{_totY|8H&sDHIjXummOe4GjQdqH`Ztko>!+lytFAjUHeyR|3PoP2pQ
zpUzr7e@<`e=&x>0Y}9-`otkf$(L0oxqi*X=3rWVv*6sP?oy<(QQ*<$b{KDRwl_{<h
zrir}<mv*tCdF+_A`}Xf<M?^Y4ct6d*`!V13^XSQ7aG|K#N9y!^;G@riJ<?#jHA}5C
z_`bzl2y`BZ!@iohc*sl<{_ar~-778i$2ssuy8QWEO&*i8cf2kWWCEieg)^Q)@@%r~
z9BN=n=yQoz<dP>-6WZju7lgZE5NCqchBAD%97|uIQryY1grJn}_yd&{?JERF!<djL
z@mhd2Hh_M@1wUKaWqtK-B^<$&s2DFhxq=W}VwVSr@F!585bG$hCf5QN-mNe&t}i~@
z)Oq=u`~*t^MyKW49E|wblcjFP3+V_V){w@G-n9VdUPJVcaxz>1N17c;D-W?d66K{q
zA3C*bAB>Bx1c{trWfwhJ_XpCz(p87obBLjQ`RkpCt;jE6N*MMqCn3Zo2Zsq;GJmu7
z=QtlsnPz2DzBfoFem6EYFi!$oU~;GFHx_yK*5<-^u<4#4d?z*^nAHt*Spwt51L;n%
zN_esTfBGJ+U}>9f4wxPcnYt+S_kZd>7+*U0^5>wv#lqy_;gsp&Ou*r6th{7a%iPl8
z(x1Z>`lCNEK1!jmVXmW{+@rnjqXS+7;X)9citXLP(S_;pWx(-FuAKLbs#NIlpFhU{
zh7+CK!f+)Dzg#iM**;d!3E}d|!yZg}Xc500|G^`(Q}V!5N<O4Oe3~1{52}Ad+qVw4
zB=P=?d(8iawt@2PU-s#wPI>;{L)*X$rMwH3o(r|*i<g)SO@?3EFMjEm{n88kWsvvF
zsOOi-@-I`&FF3>H-_X{|?9wLi(k}1Pq36<R`SK0s(uLv5?ZuUc*_CJDm3Q8iZ_kzg
z@>Kxl3c+xVd~qFOb{!UYjmo=@?75C!zK+FQ$1~g{zPL#?yGaeaNzc2<?77KazRAVh
z<TKnBzPK$myDbg8Md#gC^xRf0-_~GmYZ>n9U)(jC-8Bc^wdP^&+I#Lgm+!hUcfAbv
z{V(nZ%<hK*?}zj5M|<wam+!w|?k5?3e|zzJ%Ix<{;P2VI-}61c7ngr8VScYL{8@YP
zXT$8zR^XqVygz$Ae-4)a9AW;PFksGJU@pusmw}k;Jj`tm=6)IT=RZT+|7Jy7%>S{b
z?SIdrE$07N)Aqk-(H8T6tZDoIsc38a7y%I8UW^22IUyRpNM*UXlWM_F+$WWS1w63i
z8FDVZXA(XDd{>Zl7G~Af_<1pHqLJ7%qwB@v$!r#Ucrj~7q1`-Z-=aP|@6_>AWYNgh
zrFqfBHU}{yNAg~9$x=0^_n}|UiVOg_=r6jW!ABR0A>gyC{@b}_d*(rkQq*cC2-IKt
zH5owwxS5jlIJ%jRd{iri{lM;_6e+#GW*_Jgzh>{QGR<T!2o?>%!V!Y1f5c;shj*Tm
ziopR#!pyL~)1kPNJ`hxjA9y+`%Ll|7|L7zInq%PW!mFcTcz!{|z5ILhL3-eG2=l<-
zw(VEZ+JMoC?|+N7#EWM2K+@Sfz%NDMubX2_Ft`suaor7dIY!V4BCx2G`VK;S5zui1
z0M~Hex)v;$ddv(@arOn&s0zreR&aV?+aEy%58$j?0rStwga`43aYRc!U<?D$4xI!^
zTBU>E&-M}HYMJB0EC}tr2aw`Y5u6@UBp8xrX?D+(;8#Khz$$eAf^`C%ka88`0GG%0
zPk=w7WF#m&0Wqc{P>;mcds*{`y5$SNPkL8D8|<}@qH96Vq>ywO2yC(dL>!Prn(!4I
zBq_s)$4m-j0+z}#T=0N7vNwACQAmbaB5=l(RgcARF!QV{L{zhY{jOyAVMQ;*lN*cB
zf_+5yXe^G-3HWvXT7j1STk370C7yn7hz_S~T<^F(b(>hf7%PdHxs?sx=j(AlXRS=y
z3k%^xU3sU6(5QvRA0%CEQXFC5O_f=;0U6$3ydP-gYztaQ?oP{ke|v;FFaGi1Fyk5B
z7D*0&<2E72hmZ8^+?$&P-L+J1_tJ;6(ex(^n;1jn7f9kclJv7a7GLB<bfI9OCU?H#
z&7dZOgh%m>LmshWyk_#*zTb1TJXP$iPSQ7TOF@DNY$=tVjXIJtAQu3e-la<~Q3~|E
zGDjq6bgES1SGi_Pg-)5ubVUs_^gr;+!@uf-+XZI=iwM9B2>E-#@OLn?{gp4w?A)TF
zqJOCiOy2Zg>cXgG{#U!OzH;TzbLTYh<TUoPx3~YRT6io%c&$<Vwo&|c(SJz`+&{)D
zvN$$1D<T^mRaoCKINmij{pYW%003|bR$#GK_PKTyHBS58F5D9yUARFs-kJdf^b?y;
z$_=<lm6^?9Fxp2NeZf!YKg_C-@>g5*7(GI$HU;pkKAH1-S=q5wdG{Lk?X;!$Wvp4&
zPaG?0X%aVM9NHi%YCM96#CqnhsHv<79}$y=N#o&b1E^@?{pbk@329Pr=!)EkAEgr!
z=FwNXk;s!gqLD6ig{u${JZQGHBPJpm9I_+(V!-%+ksu~4ZJ;}LKky$Cgo6ix5D*eP
zB8F1Xl2cLB(9%)S!AO{SsTo-r85#fKL3|=CPb7E+MgJlpezE6&oe-^%9F3?dowypa
zs2rQP0{e4y21N^66$b__4@MaSZUqBLX?bof2biuepNZdJGo+}d@s|xLsA?&`GEmdj
z)6h5hmk{Z{wlFcb{$G&j{rmS!CP;P@#AAzSKIb$(mu!BE5WzR8JU-RJK4l_)mHYvX
z{D>COunwW{Ucra~k+^ZmxKWY#FOrF$#Zso9rT=)E^;0r?<!Qm@^OAk3zq9f}y5>fv
z``)Z;-{SN6zv}3(H_FJ!_*WYJYm8#c$FizEhAjO~nE##g_5QyCqxJRmzpm)u=xX%}
z^Vbz!UElxzD~kS-ApHLw35w&@%HWM7Nd4cDpbyOEHq9+o94S0jE#1vL_5F$5@E$l(
zG)GVK>zt4Og#?8WaKAFQ`d=hy&5Vz+fW51yE%}kzc#H1Bx5g{;k;t)h@$ZWNNrF&3
zIIVvFL4vfFk^@s$o@BAvOQ)gWxlc?sA6ul!0|Ot>{wE1?B71B)_?H9;+#wSZ6@1!J
zbIG49Sj+KbH=hB#-<Ev+mjvm~M-@vnI0&~jYU5YYGKQjYh*We{&6pFV`*iY$8~!Ch
z`g_=x#^-z1A~-y=`SGoY1EUr#Bb4Jpg}?E?B&fj%X8pl>jIHZW%m$N1I#D8td~alB
zSwV7lcG!QApy^+{V@sTa#|phMLrk$}?eWi086*YWCG9Q$ke~+IXC2~S_>Y8^w{!+s
z)_<@M|GAB>-+j0F4+&!6LY|+Kw)qEo%<3B`@JT6X<YGmu3z$iHd8u~)LxOxQ=zT#;
zAG4gL#EFAE&uGC**nHlnp%i@3QUiy5oPS7AtSCIlCjNBNXPCPd^7wESY0N}mKtx1F
z<tb(&_{8%c5+rkJ9;DjlZED8o&G;G_?SV@~dA=z&jES}(E&C4=G#v}N^j@+hPy-Id
zA60t~BT+caC0J?_;{T8!Luks5;chl5L2tw3$SjU;7IH4RhBh${|B#@XTA$pkhR~q?
z9QT)rg*?Y}78}pZSg1C05&w{&a_}B)LH)BjDSsOl&XGb!UuE!%tN4Pv+$HmWNRUdQ
zy?eIN)*yC!=x9kKw;rBWuAMgZ{@;a4Wp7o(bj1&&N7ofxIo}!2K=$fJVx_f1e@Rf@
z@Mx)%speBysCuD-j6+fI#%T15vXwm<3bO&OV~SVNaOYB<Uddw$omm=!=GqnN)$UWh
zAQ_PVo63`Z@H@Y`79;WRSizezZZ(+lN7vpHBqiKX88Xx8^gRlb;`kFrc9(+sQGW7z
zscxpRb$QY&5v))$t`FH00a4P#z%Sw-ob;IKjfn)B7{k5}k_ZbPTzp>;bD|oM@Trpm
zdH>XY;`fdm3#Umh`+oQnp|)HY88hnHa8WZtdKQb>C8*KQl$0!@p*y5Ntupp0%-}^O
zCsKyYT0<_3LQVGX^5ln77sa%g50MP0=cc}inSzE`W@aH{YXnP!G=PMX4_ysFx44u6
zb_!MH!qVeba&DLIiJsxue-J#g-?wom`upp~V_-)$OPLZ;a)5j$HpAZWpcKtx>j7kb
z30e{?8vL)Ou!Qa9!+ypNzlp*uJ+<6H5ll%8GyU=l0(PIAd@_q%_oaHF^^?fI@xCUy
z#+yt|C!YSU0<S~C>X?FeWoeNWD`)msu;(*NIZs$&t~|Gtzp-@gy~waMkZ6MNG77B0
zq?yQk`avfI3~X8y!Dk<5eG)5{&sU7-?$W6xqGVYPMSW!Bm#(l6UNLo#|JuhyT}N~=
zrV0+cMi6I0jpT^sHVeV{#gs4QRt(^jFIi=)BY0`e!ItAkjOB70P~=ua5=qN>hio)F
zXe)h~Ld|PHLV!2I*s##A_yka;9^x~)Lrs95rqGgl^u*j73!jxD2$~P`AQmTLZby^z
zH};z8%L2*bZG>r`*JAvint&erG@)kECHUM@ePG%MB*m;E&v8Q$w<Jojdgm*-8Gi<W
zcUcpOn-#FyvVdJ?B?F%k%Y!SrV2;HeMdb43nf22FDrseA`9{DKS>plWI*1%;m8+yj
zc8OS%?pW1M0-=y!FR8-zSbi0W%eOlk!QM#)*{KtH9JK-VxYafpr-w}ALhEc^2I_L?
zc%;9;X8Wu~--i;;y!GgvwbAmV$J%{#9O-Ke?+r;w;Yp;=lNFymA__I5(q!s42~i9j
zM%fcLD(@Tiibi0|$q)+YGCv!T%;>|3xV?yF5Td85Sc!!mB<E;)Xz<%OMA1ZAl#HYL
zM>1P`lq(+RM_}^z+HVcPY53u9d6TxEP>zBrmay?HUZMT^Z@xEUMHY$|WKvwWBJd6b
zxDav>0~7enyG;*@-z%I<obHdFA2yU*&;aGsrl*4fnmj`QuP>+z^s1*XpbxEa<$jLN
znfH;gjoxBuQE2|S<vxjsWcu97l=xXw?U+7?Hfx7c74>oJi0DzevnpK_7y(&}Detea
z%e9Y6y@_tM(KNG7BdDBM8c?wU1XCD6gYZ0<ur$4`aW#~Pm?8`7n@>ntjx1o6BAfNR
zmKEM)tJ6zJUFhEJAnCvmfxt@(M0YKg`_+O8Rwy<hqgF3i8~(v|U<7~uv#Kf3ZQf5O
zs2U|DjlpMCTP4l^VNIP?;FF<6qr@#$b&b~Ydj#aK7FgGd-`VHuSDrmQxf)D!JK|}b
zL{k3{!@+CNdyTgpipvn!L8|pr*r>`}3s;m_CVSgj(Vx232Ez0-LQZ*`>I>!x_K?9=
zsuR9_8Jpe6Co#iXm)`p*J`+mvSAXQg$?7I>6|gE&jRoE+kGE(f3~44Rxd*&wYUjQa
zR~O*rwa0r8j*}0<hjd4$`>EPoxg1dYb`NI$YJ1ujY2)K&N<l4K4j}hG^-X}C@wC!L
zTraInpi{N;WvxT?jDx~>(XMPtcb#~IM+7knhiJE)b~_p7Z_VkAjRw>acyM1LHC|AO
z3?^SoIh<tH2G%rjo4x0-Z8uG9h)>qOf|NJX2R0vJ@dak<B+1G3%pjU;AJu8_W@kW$
z^aSd+7p+>ZABZ`HHa9X5X`30`EsOMf%7H`kI6_tyX4O4jlB=)bELF@!M_LO_b(x#B
z8WW#BS15h0_SwN&?Cr5gNH@pV<5$@C8$e<)xo$FCu8@3^M|MH|BRNJt$b{3OTLbwF
zz2~`iCMH(~EsXPYZqimyznsr_e6m%j{`}lxBZ<9@NAu-74Emlv{tk<w?>EwQf@HYa
zB_93$)b3S$DvnOC;qbt)=aY)&H9=m9*0|56zFd;J#B)@S^Le=(^nV|(v`GjaDB@x`
zS(vdD4|!*UvEP)=_y0)EkN$JXbRh$!Tlb(qe=}1dDicK>C&af?0W@wmz<(%I<+imo
z5sMWwPjwS3j-T~k{v3Ekf25vr_mwBhBi8*-+)ekVZnBNP{h%J<va3NJo;Hbvj({JE
zLoRYGFC(%<%Fdd)J`G0Y_{gzjLDee2mlVKT`{niP9b5IYx2|KQ3cUa?c@8hCy#ASq
zQ}-_|<JUN@K1X96M_E?}MnIoP&47D7|J^i1OkKcW5rDyq#5|uMnK^Ki+%+QK!U5O(
zLn!@S8Q{05=}$IwPrLvhbJh(uf0l3rek;<g4*}ai7@I$PC+uUUAH*I4-blf4rp~z5
ze+^<l88g~}ms?oeHlWZtQ;l$>RvD6eHbiF?dALn~{tIwzEq-XFK83VMggcx8aJ74}
zn4w`7Vqux29<8>x3wTIOnNK$xV(i=v{aswUG~~Tkz)SCNU0^6bn!;Q*)S%C$Z1w3P
zLYh(LJ-Hmp28yeRz*_c1(t3v3gF_s5-ZLwOK!a>!!ZqXJhymMh@9PN7g78P_WbfIZ
zBhXIBS+zbn1iLKH4WkIDt<}>KKj~Qm;Eri|KNiy|iOv8x8zrX(j_jW$F7&2)1-2*y
z2bAv!gj?hG$_Ry%S!daW)n5}N%!)QCfo0jjYD~ci!k*3z!67G@sA!n)NAFmEt?0BM
zJr=7_5fpD&eDJ=E@hRB#jYv$KK@7QKR1!O~Mah=UlkV)AKzkFs(F)!|#o~(-@7YnE
zpJ+I{heiWT=Dlo8>~I@J!*7Od$Rd1xvxlS%#~e4YcqzoKD}@(OL=&_nYLV#pc~d>`
z&=^rl{AwXxM9E}bre18Gh=NAZibv6xyLP3CX6b2u^D@l~Pu%jd=AKJ-TuT&fBl{9>
zB{&i@<_*?Mj!DHMnox*&VIOnPo(z}`Yo(MvMM;iMC#i54=k6rGiFojUgC>hVNLQIv
zUs;>aO<P9<@?6<oYB$hgBusA3l@$%3L<_Hhou3IqNCq&;Z*S74p=taPT3;V0$YHyR
zUZ-?Jjj79R;we*=L{o!rv_s1QLUyjgSkA^mkZ_!g8u15-_R+;9k5la_iTW}=Hj{8~
zr364yrKvKJ;*ud$%r0B>{qo>&dxF&s|93Z;Uv40EyYcN%mZn|h@^3~5Gmktx-qOrv
z-CbvOvSs!wX9_0<+TcP9*L}L`QzzzfE1)^4r*Hy94!L_8t~}2{BG?t}|86#?Z8r-6
z$xgnG`(=~*X-dNP>hbU|IERnk(M^68AkUA{>UcOQEIwO(5KhAkq1+3mqsm{U%3gn!
z%s&X8`4M&EnHjC^aigdQy)8UHmu7|nVInk;Ta54PZ$#DS&pzUCIGh7Gsh#p5xy}u)
zMZ00y&EVLUOw0`dRR)b2s7RZ-Xn;ha)AOlYS+uZWo+9xpT}q4C+Mv$4VpqlD0*m7H
zh+>6uaG@=(xFI-(<B<{?Eajm6%C{_k1vwy#`zb>Fa)c>%yELL!oklC3eCnBJMTRwg
zp}a)0y-}*Y4oj<`Hbn@f`|V@lQFh+QvTRN+{aa}<>A<bCvckF|=1s+N0i%eMC+_P7
zf#qRA;`vsPc-#sFQXw0ZIZpKTV+}-x-E4WU1Y`xLLN>WXudSp2SL9P;-og`{Lnv?(
zznb^t0qJT50KXDzFRsBTKcRxK`W)*MDJF&S8;&*<hj#^w4~k<}N}fesb>zUdqEuC%
zpgkF0*h+>DLsd8s;R0~smLY7iqiEYbG_yo@c6^}uq!2}fmyMwR@onwt&bzY;GN4XQ
z0?bdcpq6+{YQVaBnWOfiqFNEZTscxMeI&nHjOI1G3hGy;CsJ2mR}W4sO3^Iusi(gp
z4d&zbr0+n_QWw@s)Hlvo$DGvnOx8>Uqy1KK)@JLWm5uzB6yFRWok}VxwY650Lgzju
z{<j=|e8A(8Vfm0oraQE(alM=@%4ml@PohSBzY)3*b(XBNav{poZ2El;p)@K)AvncP
zC31R2WZJ>zelf`<DahIwD*;TRrf)-Kq~nq$+C{SM)5ZhC;)m&3ZJEXo4|*fxpk;c-
zkdF=ofxiHnl0>g-IitP>aj(D^l$|16B!!i7lc3EJt--IaT69nJlNUPNiGY02&VHKC
zw;f<c{?6ensS;8~k|32(0ON2}V<@0=_zsJF^uhEU)+m?Q+(KEfRM&82t|zi)ZodtG
z5-aOMQB$+Cd!akULO%nBbCw0+iFen;>dA=j(d_LwTKFHV-DOyl|Nr>?F&K=}(G3Fu
zM>mXgbax{l-BQvavB7`=j_&T1l2+*k=@O9+K?OwxM7j8UzTe;VyKY{`|M;J`cW39$
z9q0CbKVOgY?cd*T0gQb>nLa$rKK!sgaDE?AZ{OW;&%K*I2xC9FOh2V%KXq6?ZGJy}
zZ$INkKl4pLlyQJfW`NytfHQ0WmOsGVJHWd!z<)C!$T%o0Gbn0#J18DD2+tps>K&BX
z7?isiL@*91$P6i24yl9<spSu8^bTol4C&kq=`ju)$P61<4x5Axo8=E%^kT`*Dn++J
zmNs$C!a$QVkZafQ@&VhFDug9PGh<ek3`~3;>AC(*!Xa`5_6vsTBCUQ__5$I+1SjG;
z2NCTmtzbr{mP{2&@AIjQV)bHnG>IB8nlWL-=)|#tiZQ&ovD7mk=X|0x4}4TFUu@#|
za^-kp7;$pFw5S@sbuUqg%*49EL}k8PbuVdtJ=BmAKgENn*>b$yd;HanVMlMw@%m&2
zc9LRT(gymvDU7(~hW6|PczQzACNot&3$i%_S?Pfc^lqoC^g%X)Y_@&VtCH|{X6#1Z
zqO5FIq9$N{gs@#$$=Npzwt?wbRYF660ObP6<ZL2CZ|c}!#Pt{m&ZM*zw5lkcIyxpc
z45hae6v;$@O8voaWxy~S(RB{CXTvRZtxunvLFR_1i)756Z26)fI0iPL^_v+a<Q<hJ
zI2W($%Q@(Rj!;kU-D~f6R@iq5f<PmzNDY~&<*Yz5cFtOGCUIwG^Y;Q&ae+1Z-5ALr
zLzH;hEHFw+&S;kEEo-gKNnK}~Q|$)WK+w|xGV($YXgq5}2_ypYf%)*|3}!>952w=l
zX5%88-`0ZZac6EGy2g6X@nLIp+}^|#FUzak8YLpM+WQ=j-F=XVYWJT&n<PzbSu>}k
z<v7GjcjgM}^K2C3TG3}_E1MOeFi*QQ;ddp(ukj%AA?)P%(|f8;*4_&-XBCuW3pnA#
z7)$WCA%?3o3JyNPAXz`flJ{|2N?A!@+`ZAaBu|5n5pbX7Piv;KAoYjh;I8}#Nb^K%
z0mZ9uutf=&^=v(>x(@8RSzj>-b1Vrdka(h09l7V41(UKpgUxw>&nI5qx)DE@0sDuL
zY)pZq3O;0>Efbx+r&zdeT|E6Oa${U(IUeE~RlkuwyAee?jiOb7MCHX}YuHK`9etvP
z<`UhP#~$<<UE&CsHMb`;ecaXJd!Be32RZ-vHpY^5Q_3e1d=XAUx(OnWwuHzH>SKX?
zP4n;eCf3;@`e$-nkuJdt>(m95H^4@Bq>aALcpNs!c57iw(y*vk#d+FH_sr+s2^h?;
z>-d_f=S1wC-vL%{WBm^?;3=5;`IAfRwyFXszEx_WR{#Dq=|_i=^J<Q7TYlj`w5$X{
zx@Xc!H`<F<V6z7D#J+uNIj|n!K*Md^GMC;=4DPsVH8BFUV%8>ufT|>y1oEv!PhdLN
zrc>j)ina?0k?*f$!9itlFdRFR#-zOQw_HssH<~-`v+q$*T}u1+(b%BL*I?g9z~yk&
z3-80!$n6-&#9N!)=q;c-<?Rt__Vdo<=U_wK@tp4XS-X704n%rS8E0<yJxFgOc*Ubs
zu^&{)1R}9JMG7jf>wr)BClI_Q)_h=+(o=D&PwXSmKX1g1o`X^JY-3?Y`vZ)BrwPql
z&l0c)*qtuP&=={@L%K@&h3CZ6p5SFq!;|@wu-DE~j*?!Q$k4?6DZxDyAi3kmLjJS-
z`w`zU(DQFI$H@rfCX;P`nWc}*S?U*J?stQBugsOiH&W#&A1fkh--<g1fZf|JWWN$O
zWE`bLN{M=j^oE1QLJE`m#BINVhqaL@<b;dNgbyEqS3QX>Znxjesz@u8BqETGsHp4b
zV0#+;@A>oV=f9${w?DAnMiX*h6Z*tsi@-DN?@`4<LLb4n<(~xeACp^y*M-gwza(?D
z<#>OcRXilt)BTw$0LB%)7z<b?koy@Mndr95+rjLXR}?QIPUv+z7X1A4+C4(b_>@?z
zEiwX36H)TEFU>x1+-gtK%I~_l=sMuuMWUW0D@H}~SjoQ-EK9vEx?vY+3EuKrM<e)S
zy^RKXA9NIoiNt?SZM$wMK6juA3G^bIV7z)QK-hB&_7MQD-UHhZ{lhq+44e|29>l;f
zPA2FybbNvXajYKJDm^w6lUkVm1Y>}<!9<s(^J4katub8n$UKbRt28T&bxcb_SNH!g
zPIn_g|8bnsi5*&F`<#r%dK2nmY7*X$u04t6!VZjna56^e*DiE-IK4qzVh{E(`jf?_
zTmuN<1vYbWv$1MkU+1w5E{6(AZLab&g9i>kD%rVo9U7R3g92lnOYCG<@&@%tw+ZHh
zggqa13KvQ@MLqa`9Vc^T(eDF#Dk5yEBO-WQIT^~=5I$vmUHvL~GPp8W<6U7%ZUTh9
zuEoW&C4$Jpj6tn(>rK<RnlSI49$ACEp~Bo^9?9vD!o?KHZ<qE}jCD~ZbDi74rxK4q
z^B9q`FRObPqCx~WW7~fjr|>wdw+eb`u0NfQQc9~wXa`Mh&y40a>>H>1@ZC8{sHh+H
z=m3AWm{}{A&csT|c<bNEFZV`_*YuoPHms?%HnUHI*pm|mNMhT5&~~rHx^)<4hKjR}
zb?0*1n+CUda;dBT>o`UH{q#pHju^AyH-($v*dAvuSYa}zR|RWb)<P9~Q?lEHZG&h`
z^jKreX2F5??To07bOo@eZ3P?KVw*%iLVeY&XA=(W%&dD{gO>JN$KsnD6YSt^VTwiv
zQ$A^G2@~^}Q!pVNeL#N+y6=zkzl;+H2M+blho>X#an!<xS7u}S%o-*CGESWAIgr%o
z@M%)KSgH)Z2Ro)=d`_jpEH%C~_OH8WKislGsUNJc`gf^LIZ!F=9F(Wm=4=(#NA4U6
z5|)}DSGf;J5{A_Wsp3}`M`z^oxi5_`(-^aN@BiyKiCU4jxCj%b4$%oY&IFXy4UwOi
zuo|~n)N8$EMsl$}=NQb68pCtLr_JU%Bcr`q0+t!H3w?qrVc5k6T8@^3AFy5s!iivC
zs25zjFZg{=1$dKotX>~ENsNI{XNgq`JE;G0oG4OHpotCiobEBa9$HPYv*QBIYve5m
zO3TO+k7gUhA#Z#bw{LEdcmX(`=00PK0PTJ-#zpuvvIbE$fk@aLKB8Xv^5Ww;kq|5O
z_YKPtB=)*-ZqnfK7}(HnTj=)nIj6^+<Mj36d9u!=^ab<@r=k#Ci{kw$JFFK1qB8M2
zA8vZhsy)?;jP&>Qh~Uop#mat6{T=p^UL<E4{xFR!2AQtyQTQly@lc46y5Vw7BUGV!
zXU5o^m{_;|!_P%r<ANV|j#FXUkUa~9LUdh5I!V;gc3m7zbu@j<*k~J;m)+`}_BU%z
z&7NOE#r2x%AD;{nUa~2(E^u!XlDA&36fRqHQGQr&fzI9w4d)YoZT95&bD_~@Livv2
zb@aE|nkqF^<v)zmgjzi!d9=-Xqw5Ke)E6lGIgN`RmQ;k+&7qay-Xm0&FhVw&+~JCe
z<5Y!H4RK#>?ChRLi_fjNlV~Hgy@JY1b{Oe*{T<jZq9o$vQugbvJIASfnhj4hZhRw&
zmR;YVZjZBdRhbBREjd9Np4CSNdZ|RZ_;}WATW*ewEqWah`<uTS%-mAy6a$C>6rA^K
z$<BrjkCX1~rI1c10eP8DwXCN4-q3cRCzZ86xtEec%HcTZ)D2Gvg~O6yeeY;pwD3Pr
zBIMb-XQIaF@V!D*!CyU6sDzq}JDq|O#hCSQh=YbjyF1&Ih(3pIQK;(l&C8ga!bl?A
zRq!hHH2T+wlbaG92Tmnq<3(X1I^E^Fe@6w?%Dw4c*|PH#XOHNUv|wS<<>Wnw@sUE$
zAdbSgUr@pj?%U`V+BFE&XML4KCxi`!Jt+c$e@r@8qixc&69rSql3735!S>TDWDc)b
zese)>8XSg!rwa=H)JV{TFD0>IPOC4IJ?tp|ZWFT$q1Z@)dSYp<l-91Nd&X(Gl)`?G
zLu{N~ZZIz$a5&f)%xMf+q+`F@g@G#!93AG-^X^o#&Kicdt0IC9*d@HrqVeHW-{o<A
zj7}OeUS}A{XZhzHNt~nmLSScc<6+e_vXY4)$}<nt^)VF4`9Pswh<5PkJ#7jo-dTqY
zkJ*im10hA26755-xKAy#9J{Efg`rgxQq+`9iRNbalaAbT)F#k0D_;FxsH*{EW%Jfg
zok+f|Ep&+*7N-&v^meWg&sAdos7eCkZmoH&#JMS>AyZ+ngA*+K*!tWITvu6LhrHx=
zR&55n%k3}7?#0qnn#X|=bMYPxC|7f`*9~?@Et!+NJeLHiX>I{f6Ys|S(tY6^Xdopk
zc-5MC^1~O6-6kTKjqH?J9IS7;8S_e)w!JR$%|4R+L9rnXIT1*T?pVwK>xoy6c(}>k
z7RS-Uhx_QU#n`<Ez@H_yG5ii|>WMaidTUFGpY}in+yJ6MyO%&4Qxjrc*5X32rya?S
z3BhF6o1YCJAK~TbuzPHJw$%fos#|Y3sDbkNdi6j(fNgfjuTg|2eh>|IWo?@aPxrPs
zI!M!CBZ8EN#IiaXT@8J8&}45&6zBD<xQ(@=AS;D8GLNPn>d2)P^;DBHu8^90-EM;_
zMLe@G{O5YKZ9fr_D`q`Y6>9skHd;roP=VM08j~!h+Ml-No$v<AArQIUdrIX)jh0T}
zbY8QwJc!OZVPDFts3tbb2GR)6^SWDM<}AH0MiC0u0Z+S#9e&PI*7n7)J<;rzpLx}&
zies&{PHpw2$uE<khnJ4H9l{Fz*#h|^`nZai<ea_KFbQUZuH~H>qV12Fpo<ozI3eyk
ze&$g^4s@pAA(7%&BA(Lb6}Ie9)nOEBk7qq~_@20yzM9nyJ4YD{5R)|Uqi%_Bk{bEV
zd{)4^m(ayBTTppqT_e%pljV5@#kRipXdO*u;&aq@gVll9IN(Sgg}rlne2$HJU>w>x
zk;yfKoH_)|QQGI310Iu(^SsZQ@gYAew8q*Jei@rnj)?`S=cA9{uem))e#OpEBv#PS
zwI!ImSUD!{H11p`+w3mY*#Xi18u;M$?b}0I3o8>uTsc8=Gk;J%iB*sUj~)Uv+q|zc
zr-Dy22KcPL5ly1-Ye<u8ki@#pg$@TNK7s%zAYv5$*y0{?Wzd$ojXeMEGpyq;j`e{N
zgc+?|->|lnk~u03)i)$XzqbMfcAZ3nl70+OdWVZ}H!+YHpIyT&Zf!v0G26tdAG*)b
zF9EOk{zCLlqRU1ZL0t`M{^|#_l*LeCSm|az-_b^{rB@=P6H259k=3<;fX-KdAboEk
z7iPp8+j1z8$(BO8@!be(aVx0wZ**)Y;`Z)luKb)Gv_DD#1Au}}iCF=l6MK>e*l-*e
zXv3L=*Cv9m*kq^)z;y=HgG5drlDJZUbc=(BB%;}aIMU|4IkKa<JMY$DqlYAn+76?I
z;Yd+4q&WO8XY`TiM9Qop<t~x)vpzOk&$dB?WMGt9HtKF9NH&Pl7VD2X0|qa-YMI5D
z1jU$DyARIW#B*8;rp4IM{<CH)`by#Ph>H;d^s4>V%@z{ma2e}Oi}qFHc_8T9xC3H?
zqeD8;VXNpOGEl0b@8tm+Wfm736gPc__xh0AM(|18WgM0^KDC;dt}{vii%!dq&+UxQ
zUyU!kj4!55D1|4Kn<Z2RB~)i8)OIG+uO>8JCN$AvTHu&AGfaCBrZXGU-HGX4#k{%1
z^wA~`z!Qhe5=Vj($FdVAIuoZ>6K5_HXK9n>;Yo{TNy|Y=tJz8Gok<(3Nt^$U1nt0+
z_so(Hf|8H2lRtGPpROi<xlBHzeen(c;==63&!88V*)Og;U)-#|_<Q*RK!*iNV)4we
z_`z6k4wk43OR|Q&cZG$}rI1UeP@3PSPzR^b=A_Vfr7*6gFkhuW=~CGwQ`yZ^IfGMS
zIjP)Tsl02c{8#^s1PM!~iJGU02dBYv(xkf5WY*H;uF?>6=?aqRO6KV*!RdF7lSWs%
z)>^vGRk|KshJj>;k$HwmaE4h<hDBF~<ywaIRfY{+rk!M_gL$S?aHdO6rdwC0$6BW6
zRi-yxmak-%pLte5a8^)GR!CP?*jm=}tE@=6>}bhslzDb+aQ43=LD`9G*~wSgcOX-$
zWKOzyPG)dUc1})iS5E#~PT^HfF<ow{WNx{6Ze?(8bxv+=S8n}UZsS#M6J1`5WL}$j
z-W|o%nUmMumDjtL_vY$0ua7Q&Kr(;GJbxrOe=H||qAP!DEq~@Jf0nLbUb0}(ykI%F
zU^S;;y{lkjtzh%2V2iGB=iiZ_gW$rWoWf6Cg{NzUU+zX$=!(8c7G0PZ{R}R;%qhC=
zD!N%K`g>Ibpf3hW72{bH<A)T3bBl?(i%Hgt?_C!|=u60@N+>N#s6$F<b4%#EOBmNn
zn6FEq^rdW4rR)}^oFS#K+*0oDe@24%uS*5#%Y>!ML@mn1L(1T}Wm4T`GV5h>*JTL$
zas{b!C5v*EkaD%$a*ghCt@U!9>vBE%3InMMBZ~@?kP5Th3XARv%k>KD>k1qCN;|1a
z2a8IlkV==_+e)|YN{{tQ&+AHW`YK<kDnE;=yOE%v+^Uf7s<8E{=hsz{^wrT))hLVV
z>wW;U4Xz9VPrVpVv-lqsOvVP6xepM#o<ORHi)g~jU#}^=u0iPGl6u!v1>s1Z)!d0p
z1-ZC1h}zOs0KB-irM4C>SlhTB58bM6?XD}T#e;g+<ptIDO4S$T;`VXJlS1)^y6X$M
z@!CV`V_k5R`|1}bYLsnoW-a1K1sj$u8kEoK*SgUY>kS{c@wO+>0~(DV-0Bax(a_??
zv+KIg*RiC<b!Y1h8i2;{M6t~wFFz&V{^pLQ*?ReFy%r}g=2)ZYB&5k~6+jgF@_M34
z-Ru_kKJiO2XtQx=4V7jiBC=U?4Dh!b2Ox<1*R6&bgJMQBYBhm0&v1b@_yk+HzdqqS
z#Gu3xjpjD^j*%dC8+=0u?k_i7F=CWVWb0-m)VdEx`V3by5>HL9K}N9cks98oT97@2
z{0RadXafL6;*dfBvS)3R8h8dLNOizVwOKrlJ0=<dvIPLFw?F^{0BrNJCl}B0Ju*PE
zK@<uA6yxyN;NQp60BlGBXP|q~*1=l5;7R1CT0C4m^1EBQsWU#4H}2$mr*vn>WC9+k
z9+4#gpj!!kSd5#WSDRSZB_7oN;S-)N1PDwa%k`lxU%^S3tP85^7E^omA@>&aWESY|
z$A730LTH0Gq|x53iBx{yW9JQ`DrO#V$2VsMQ9|2$>0gaYBPHq@)u6bLSyHrok5wN)
z!n?bMyKRjJ$@RNa`3wgD5e$0>6!gZM)M!0EiG~ut)DXm@0|2rBfEZ$cqRpEcx0YY;
zqv?Nl$^!tL#Xu$~4h5iZL#m!Bw2xn{`PceumZpA*VqAIv?($?Ejr-j#r|EA9o-%eo
ztr$<)8xJqBmP~ViBfE(~v;LHOkQd%0HdT+08RT7kDLqvOI2q))8IZrJ7SbAGzid?H
zt@~Cx#HTi>Jyjz?GRy~WG@PnAa2poxY%uS|`#3Qy0&6e~Yp~NoAjd<7W<o~9VZ(Tj
zhds2AUDr)-=tpJ1b$E~K0#1>YwT<=NqiWeTgj01TxkHf~$hg|-#81^&?wWMBzF`RX
z->A>xuH)nN2Ymxl04M?fjrvGPNXW_miTW5A82;a)@1K@WME0)b6TCa%a(Bo7x8;LL
zDvQY~+_ij68m|9o`R+o#yNd6w-_y|0P&W8)yr-|PZ*FdW7w=iyIo=%s0RbT)A$R58
zf3m&1TJNsYv+|7oPoyW7^iQF8m*+`ltxDzoZ=NUj`oto>5K;HzKZTxC<CWw1wbRm{
z=;-K-jEp-E`>xQdt*!0p?#Zp2L2ds1Pn#FJ{kLiU<6WUQGcz;$Zgzftetms??BmUy
z|9yITdVF$m*Xe!vb$xMh@qf3|yF0)C{||!mNU49KK9satYywKf)KpJ~7Qlr;CM9bF
zP4W3NqE(GdHKC>oyoE?v4H8owRwZRAaq$ds3SAQ*2t-AM!`BugF2RH_1t=N-baViC
z1d>QN5WvB1N}@1oGO9~lAZLtQ+MRrmtZPcgEv0U9?^qLHaA<mA%EBY5V#rH*@$0#z
zkk4>b8A*ZP9@f@&Nb;U3l)g7Qa-^71fE^-4pudv=C5t9(i7LgRP{kvZvPnfKw_!v?
z0dUtDjdaq7ZnP6*gFt|)2><}5-*qfu6a)l8QnqpMN<`dBW)a523B(VTxNC*V>XH~m
z+-OPh{=EwC9C`pR6vqYNk5>;wGcq#LQS#DoiSkgBv(gB$L+S3yTXtR%4k1Y)9v(41
zArWB#2?<GBIzw79HAWc&G68=HIs-0dXD&%KK{1azV+AiniCfu}N85o{CEzY6<uebI
zRCbb450No;mof=5Bq1?kV7+@^8ln<`qBO2T!ix9RwBVWwGEPtBl=YOQ6oTmeRcSr7
z#6oSQb+z@hjohs5jm;c=-Hmiy%^f`*Ouf7V?u#ZtWg-Q{OUNyA1dI~It!nvgkudjs
zA;)-Ok5m!wJRaYdyn$_Sn>t~SZn1z$@rb7T9;^4BZPA8o^ZTu`g>P$`CMauG8+fM}
z_}2Oc$9aa<Y5T8w2CgtfNisJJ^2f?Td&Td?7;vR22)}URd8sba<H0m2#y%_~IAS0$
z=&qZjqm%8e-C<}@`^-Jd$TP*)r^nEv+*@nVRAbmXaMH|u+>0|lLju()+Km;j?Iexf
zrjOa-iQJS-9FjnNkV=`7$zFk{Z$D}smMc9J7*3U3d?UMZm$D=o#kQE%CmP@3eyFs7
zqz2Dstlz5^gZLHQ^j(wYB}C=tyDy%3`O&k~S+}g6z`JqRx+8-rtl3Pf-(-r{a;^W!
ze8|wJ=La9+cqsC;m|hr)q&o>$T8Y;=iN%{~VZ99#1D@4e*fa#`RzCCIwI@CZ;Jz?7
z_-kXf7vK{g8dDOAN)BA94_#;}l1_VJk%kID*BB?)dNs!x*Chtjm07*2@kM{skDCvP
z+tPotV)bg{`AFKMpPd5ZnT8|jK67<u6SV<5sEFfs-JK54zkLFIYfpw(y^<5L=*;>T
zO=)Qruj(?A%JVB)DzaN!+mch4FnQZ)O;eb*qvjVY)rDIf`CIj!Q%!CAm|1MvbbaPd
z*UOm~EmIv$`>l7|*V$tyDSNAlhkI?KOU-kqZAW9B``?E1lcpO}$2;q{Q<8Ujvi9DT
zjOMLRHLXp*+S%#&u={#@c_e#rv~6`iYxPsp;Z)A?T+7$J&b76*>6N3U{nh2epGRv`
zhfBw2$4fUif55i@Qt<z1`}brbZ3pi|ABkJ){m%^0)aCB<P!d$adbJ4$JVZ(hLEUNl
z`+cNd;+^?idPuF@e^+S@4`Uu6LZXM7T;8DyxnsDEgSJ%-kb++P|Euj=oJW(%U<MMX
z9v_b4G`c(^Ck++<jCg4?Ix)Pv$hSmnS5!($-k$uSfqrv??myT*LDrx5!k&6P4us6r
ztuXK;i*1r%VOPLh|IAZ~|6==40lmygi+a_?s;k&P*#U|h%MBloVn}_FW~2dL-w%QT
zcV%ru#l1(gYYkuD;0d8+i3|c(_o<WOhHdn&*}kj}Vs7uW{V@5Hu|orimrGKg@3gz}
z(WmU9zme}~Z~}R5<i>WsgT``w_r$U?!)&>nKZMY^KBQ*;OS-oe_~9wdzuLa7=6Q2F
znvBeKcJ{u?Y5#gC!?!(Vi=gJ8Bll^B;H6~2O_}I$+JlZK7Jn+#^ljql#7(d<OXswq
z_`XYa`iJquTgqOEF{7TR+F)xx>g(z|Y`^7hgwdBS%1)j_E88YZvZ2%1Ih@R87IZ}Q
z!vQ6=9#ib>(%42{=)&2xL}tgtbr+m{=o(|9uZ?#!Gd(!I!}dM>BjfGN1Li;-`n0ZU
z33eGD*@6;luz|Mv!A}ZiVt$NN(tSRzE;7ft9WzN=u=PV!*15su%@P>*tjg;D(e|N^
z+}z562O9Ot1s1Oy9HH8XW47qOVt2bd)~MRY1dN!uS8%r@x56en5Xv2&%q^wO-rT~X
z<C&eGd?)@*_vxLs&x6f5x1g+ePR9xuV(^cAMZoMId6a4zozpqW<VAaDdl9(U3^9pC
zU#mc1nXXE`)5&g1{WfeQM(u>!b#%i%I2g!aAe^Lmi1D=v1o&u3CW{RA)-hF`4tf3k
zoxizXA3n%1L3PN!6a@jQgoQzX@{DBs`9YCfnQTEu@AJsKwphQ9Y+lnF%B$iEeY;Pa
zB)x!dgL$pS3?Y~kP<`M`>c)hayT#~rxzt&qm+1+%TU1alYWS6VlJ}jIRUa}f&)X^Z
zcj7$i(uCmKPX0LCCG=;neNB^b^kWg1#*%V?=;Y-3#8o!5Lz!ku=iu#VfoBSSPJ1lD
z5!LYc`d9MW5WO*cCTK4viviWs!t>Oo2dDReYM62{DJrU@)3vZM((XzYvbe1IYJH+j
z;ZnAG?#CC_Gs@4{%^#F}bn9Kd8QR$QSrw+}zq%q6;g!ySK0*gzWG>5l@l+P21~0OO
z(9B9fg*UsiU&9FEF$WqBvUh)?M2y(1l)v1a!L1p1H?n}pv^uT0U*I8lbs?<R^sQ@!
z^L+u{u_~-RCGJHWbnHPK;I^To4<+hJmH=VV;kQv_exs*7DKgWnLtDJ2JQoNg!{8G8
zRw4c70BK~i>B4M}a6YqwWm~iGbAvcBXZP95bBhQt4~r#W&5^T`YP9`<=t3q3-4~A;
z6$0R+QI<YI<|LEUg!7C6AaDqnFb7N#4X~Hhjy*16C6*Xh$GQNlj3jr?Hk@TJO|HBI
z_V#88YGmAUYF-boOIU{u#J|Ms+XO;6ev?P{Fm~^y+o^MSnq470Qc``hJ?!P#vkM=v
zI~a8K<8u9i)+yiH!&p)hAFNi#Nh?ifLVCx(b!KV~jPHBCUEfB2fnz1y*b{;y_v872
zI(o<C_ceHFM1DbTo1seDf(@)&I7mA6hg{`}w&O?y2&ny0yES(zN{7)ar)g$dIX-nN
zmF#JpoG_hgZfBIkLsbofm<^{AUNT1~0|hK0RGa^K$=JQ`ea()4ivx#bz*NWI3d{6;
zEJn*5Ck7m9^CpIKcPTWPD}@(w$;-Lm+Hs*Fs&6~I1<>zXz(BJHoQ$t8<Si~r#Yuf1
zX7KNj^1nySx+$mNb*mWB_w6ya>=#fR;DBE(#7PUWA-V;t9}nPeS-j(xjfMhnJ@=_5
zY$^=eIN1fO_uPw#CYF&~UcRTIyrzd0igcU!H9?k2Op9EvqAde_iN;}N+2ow4>?JTS
zQ=Fy{-9qZ^`p<S;zI_9u+=aY?ruNGe&F}X*mnrGDP{!d4HZKjeWSu5Df&GhS`R1&S
zKONA6VtsfCn&x_>H6BHbn9nT}@Mk{*o;Bd`i4*!(X`Oo*8My76`3=JN*c?hRXB-MY
z-BN~j`UAF?T=1(xM;CqymX?Z*wf)?Z7cW?W+Mnk^W8hDcwEB7}aSlo#j7!d(?PYBi
zL)n})ie33x9hCBYce$foYHH`h%r<b%3=faql@Ih`zFo|p;oRbx1E^Cpf9R+%=LTQJ
zi2Yu(9t)g$i(bg(lO{M=Tf?F3ht6yJX-;?MMC<0rY-o{hi$e4%&vNl1^ybf8GEd8g
z29BXyEz2*y%&aobQBcYv+T$r^2NDey^g^)xm9Mg$R?1^0s{X6iF<1GjbwX<PWC|W|
z377CL_2b-_6RL?SJq>P@mdm?_kXd<P*mB~<%sYGXief6?he8Zk&Z6bI>YVz=;?g>-
zhAQAZqF}%?yPPhIH$Rls3K}lO$EKJ5Xlu^bW5u47TM>{s=4Y8ZN<9pU0Dcj0;}Pcb
z(q09`=C;cRJmq=vAY^<k$Nw2i!RK&}5bVzWm>IwJ*OedUT=ryvO>cQ86ombFQ{)=E
z1zMJZU*<tODO#0x3KpBdk`+tsRDG@u-j*L3xF_1jo|+Uu#Q)^#Dl$(FlJRG5rgFFT
z-_CH=l-5`A+7C$=&y2MWWSk{gX71yj8(M}`q~PxPhT!0T=H($C(Q>3=Wmt(DeaB~)
z<j1fy9*|?@ob@$nBYyYC%ypSV#n-<aq821xhr<FpO!+ITAAypri$(P3iDp%0n)6<2
zKiLiBycpsRH{$xYnKC0IVv8AamPdyZJaW)W>zJeN{H%#DiLI!$2nx)GdLf+~gXmdm
zM|)aeBPF8p=ePA&tm~jsXDs;dhJTe`#qt}N>TgR8jf;D`e2f7N@0ksJ-Y(7tJZc;K
zpmM$%5G3zbl+qqbaAL42y&0jkE#<6aB2>lP9jp+R*!BT%q#pjb>dDR<_xIhj%`>-K
z<J=xqJ(kd`_%|v#>p?b;{@zd#3cgb=4a3z^`&}FO+@+wmstmms_vsg6vBUt5Ci4^v
zR_w5i`{hjMqeQggVmj|+?+ke>5t!y5N_zymnzI46;Kp^3YXW5p^nDUceA7oGNzEdV
z1L5q8zF)FfoHNNDbdqN&YaRL6JK{gLIS4X3cuqHmKoR(^lpC=|NyF`!9ypuJm<haG
z7C%!ZQ|lz>gQKPh$hnUm3QB|=bA}a}@=O`IF|caV;-KQtVT2`Opt$gjQB+-w<bgwM
z2?r|H)Sb=@E!PqiAi;udV_&2qM~FePVj^>m-R)e$bys;~2*@cE7=l(QqHa6MK?Jdc
zFu!x>=r967Dxs(o-=KbKRBl@g%molij>ILi8QNnig1O6?k%dMhvyP%9fBExlo9F_0
ze7B9@WVU)o?B$#^mo&ktYM}`zm%kD=b=9%PaL7+zjhzuR?>RbvHi==L?r)$i&W^(-
zP8i4*1;-CDfnnmyBR>Wu7WgWqyO4o7sJd1tIu#R|;S#L)Xo6;Tu5@?i;h0_c^M1}a
zppQAMG@8pSxS=X3;sQ18gr)IOI(nw`Hap@<EbO{UhyEF!iZ{81nQ8y7BUP*(2Ku5)
znUAMGJ~5q!S}oZ<TZdC6Akz%B{UC`yp7rF2yl&gUWPp6xha=`To9v__o<1;cfyO2n
z^58$Kv_ih-s=i8i!DN#0WI0YunqBNQE-&!NY;I_iuW5a?3COcRyh={#Hs<Lft0AW5
z5Nx0bn`E+nCQFTrMx8|J%5wPkC;}B|pl%1ovLZ1mmdu1Mb?`EZg9|;@nbF{^=?ZrE
zd=L<Sm6}M$th$(4LY?&`Gm(K+L7R}noI0LaJxVSokse>JAxf?#6=fTT%|1phZwI!0
z&+Ok17tRP~P00kNxVF0HQqE;S2y>Sgp4ZkSM60W7XU7L-v1neUY~sSX@pA*xZE+tO
z*X#2g;p7P5<Xw%~^24%|Vj0+1!%&2(n6>P!afa#J<7m;YSi0>OxIQ_a>5fEQ<T0yU
zMKyVB1X=IbXxqmV4r!FE`g3UybL(GeJm*TbphJmfKm8WZxO!QTa+L>W<@v#tzmv^U
zesy;ZB)>m4>`rGSn$w(Oqj`brTt`^ke3f<Q*%CIJuC39O&toxT<VSRcf(cA2;uIq0
z5Ha&&<Lbf(d%iM~E(L1^PlAfGD>53*a!0Gvu3QUQiTJWs^IC?B=vni&exlmq$vO$M
z6r^+;OcN=6GP{D4i6xwII16qGQ!nTQDP|$j3-q;g@!!!|Pvf$AT$S`J!q`J9qsBw-
zmdTOh<zAJ=ROh8aQq|S+`J$h~*2c&;vI8`3L&#jfSvIv0`LZf!n#@e8^k+Lv6bWRV
zWihzt)srg)&yK48#K#k{@{s003@j>)L&!{X3sVDYTBM{RL&&T(AShfPV2zcm1=*%N
zw115Xs3f4jS|Zh%w7*jPIs^-JD_N<j0_wYdP%Dtk4oX;0MddbB;$Ru{%lJ4dV!<y$
z-70Ig9q~%abaAoMz6{FTKC879xkS+i^tFZD8RLgVQxnCBt+hrWMTF<IX;)b3b33R{
z-2!**p?brHTOE6R)mtTal?Zj?<<m%&hPa;*2K4p6f0R8iDY5H7eGI7zAxK`gXvxFL
z5Uz>nhEv+jp|eE_w^bWD2P>q<nptm6G8t-{>6_WnuJypY$R8F}3&Hg+%hl8mTV4ex
zHdsXaXoT=hQsBLB_`4pGN9RG(@=!;EEb_34KZV8a?t<@*RthYoP;F1I;iIdI&~Zt1
z)@(}4%)><b?*44!eB2SCZ~x`8*-o6*STiQs2_T>LYT~*PAJCpq-MA5`BwJUfG)Y#b
z42k;9!b9A~YWuQVyy_SC-3G%;4e3`Jt8Lq~2_j^#-qet#bb>!$Q%~oxVCo=Q%8E@b
zIKFv#pdf}ArDo7ofi*FCC$5Fm<2DaW6CMU2z9<mJKpv>j8qm`#Ys;kGMo!`i`D2o^
zoAbPNvbyKGMnzi87pK9Hp4#D7<Mn1I8O1ls<sP!m?~d2zj}(5VJTPsi6lKTLc&<9p
z7U2%aqN>>meG5A2B5*Gya%#p0G+(H8Zi6jbd|v}`YHLFS<$CnIFcs05OxL<D;!m&j
zc{C)*pRQz~8zy_9y_6kM&I~>P`7(8imi~`-p0Xm`R=Tai4kBR+`w;3)8rCk7!u7?4
z6SO@*f6isp^2RYYp@r=QMJX7@p=f^G0S|dA)?Rb3rkCOITfc-ZswipKOD>l{hTL@a
zf|8_rarH?j&M>Ne9Lx~$dOg8Sy*OjT$17fR&Oj@Vh5_S1z$y6?gK)W8vk-QU#!KEB
zf-!qD|8Ws3fff6wiLc?e8^tlNUfSbe+SwGLoMSHT!$`Wet;zb<(Kr2j2~`y%A9=Dh
z8LH#2xDpOUOAPBy)Q4|1#x%s+pJSRxLl|&6N4(7^$Aqh@e(UT$c9D{KQN1^gt_=2I
zv|}Rf2K93ip&cSlJpym03|Zx^I#l}E<%(JeRB2Rq>^TDkWu4|*i&ASRcVFXscQ0GG
z)N~bTbLuhJ==hILZ+dvdhjD%8ffOFLD&rsqT8Gr@UUqb4e;L-f>h~!R?T0p-IKgp*
z(-UAOkKFxvpZi9@eub##jwcXK#+dXz&wNKGImKZybwTg{Qu3v*IprEJ4H3yScLDuD
zIe5*H!FOBLXUFXFc24>lsh(jEf$vJnejmr)aCR%ru!z#Mgg&7ianincR5mZo9=A~1
zve3U_m914v8KU`&TmWdqBA}>o!#JTGCb<mr{Znc((_4X_m{3`qe*_V*-p06bawyAs
z8eP~tA9yVLK#-ZJqXyGMB;WfOxn#Q|F+WWIrmmfYp?7rZEvrgnNiBC4?gCTqd};#)
z#g?2(3oe@-1^WQKe<bqKn1JC9FyE6OZzCYw)uk4r=9Y1)C&MEvsq_*wt3|FdWm*4G
z67*2grfF6+Fvz0tG4o!a$C|HKF-eHC$tmPRGV>tsV#psg(fc222ndt$JK`M}(dF|@
z{B^hZNVjZoJFgqOKtF9b>wfYsJp2Q_J>Fj<0+00CCvXvYgdlxwEt#ZD<7*tY9SCAe
zZpp5*H*t<CWwgVAd!F>cI!I!L?>QL1uM1P~ux8@n1-yu99Z*q`7QQ{rQ<Okc)Hyee
zCXr+2N*QhD{_5IB4ukr8zeZo^Gozl2Mum<45&m(LGU5}D!$z?t`_{6im|#m|Swwm-
zeDxr_RuRQ$Wx7^e^XS^I*we0up?@X$v`>r&3QunPO)#JS{`oLWF>6va7_)6-{RB9#
zik4=HuAY4+8Ny$fCFiGE#M3Rz2!$&N@g!@M#~=7AO<?M068{Jvk+%9d$o`h+BI+>3
z&+`D>mg7Wh(koEg)L<YY6XaUu=ofDeI%q5VVRV@@#zq6Jn{<P;?zzfxGRVgE$q7x}
zAoFMQak7M4KLdAdnNMVeaNhmV4;m(ir)kwjw^B5HY&d5vBvN6DV(9yu?7GU<nJ*(~
z%ZS+~M-*!`>W{APpD?E`e9Aw~mQ%%QQ%j-{Beo)TJllRpBRR}iMQe&Oeo@#j{Dj$#
zM#s6gqMxk3?@w;hJ4X4|kvTj1>NdrEvcJ(v-~QrZ`o$sD?9C-}%Q^h&4f(u&;8>$7
zXX)ErT<W*kC#*58ErsVEu{igm$e(N$uNX*keOO_=JxVOYVR~oIs(F@eDEf}(n?e_b
z>#YV`@#l4V!EaJl-=I+d?)%X~L3~2hIOnA6_{>i?=OGhJrzHC|V8D0TB39N%IGho+
z`bG2A9y|yyQQ}al81@T1kq?dge8Cw8n+hi|#RQl?!1(34$GhJ1^`G8ek6$wU12;{E
zW(5@e`nlW`atAlDBxS{Xj(BwGLLQB}gPS4*(&TCA<lTmI?%*codgg!NCb@5}Z&1wS
zURU`7WeI@cf;+hB9j#9^!RxE>XJY?_n>r46H&Gv%<TY5nUjGX>{g!JvJ~sZ{{U5i<
zi{6p#@WrG5x=qGD0O_sWVuP%y|F}&>R5AkJR_@%U+y4`|34)JzkKJr`OCCi?#qY2>
zyR8^U#-USgHn*dkNGImGw>r10ie*(!W;dVTQ%~nIZgg0i-`C8(>mSR_7Y?-ZCH=qb
ztt}kt7R$%n<FHsf(l1xf;CEbKJT|P>uh6NmSo&mKZ~n@2e|_o1w8?fjnd9;Dsd=00
zQlsPh<<E~hefDQ69<O|{>J9$!W&i!k*C%~Zp!=Mbt7o=D@l*m%8>{E`V<{ZEm6mJY
z9H(-`ybd<jzB|vBD8JyeTEB2ztTBG+^kMyn`)ae}yUJUu_dlO*bY%dyKD__swbdVU
z|DpB9rO)1YhJf?t#?`Z<xeDDX>krrdr)#gg4mUsi4m?})U%2;V^CtM>c<H6{$IU;X
zm*@NMKFTp)5IbL9d_Da5@iqd0OX-aO5{sT8@F<MD<?$K(&g8)l(!CXkc-qbsNJJLB
z74J!3oGB8$u<d&@3~0hpqBJz}QKo+EcdkrppYEeV@7|`b;!Jz@Ad{hQJ?E-WB&Dw!
z8%Fe-8he^i%Oi$>z2+vStaM)u?z*;b8oaHG2Aa<KVZMT!?Uc{7geOJ6Yl$u>wM+^S
z5*up6chjHgNS(A9PVv9?Sa`Yl{Nj9u_7=}iPk~tMLhttW+v2l#z0YyKv8X-B@H5ch
zd39l+C9>pas3ZNu$WTd<%HPOf+{jN~<plU;PWQ3@4`Va?j92pp?yr8BSpLD|H|~k1
z5M(mck_RyX_UU42tYcFM`aH&(qKQ37{G3eO>R$a^Hw8`mKlbeTVKQJCy6exs4OHS-
zHH;P;eH4u4z&E$e{CuB5@J;nEj5tX-Ws$uHz|q13mpaHs_k8Z>V-$r+wvL}u5DvZ%
zp5I9BpX4h6OP|qjcQ{~LXrB@*FFyRpHZC|TD-eDBf`PZsd(BaxG$VVSGdwiPCjZ&;
z6^neq`IU1q@@KGZDMmbG%)HRsi5iEEKl3e3{=xm-+e9&I3>+}0ZR%imrATKU7@V`R
znRUW}>{EYgvjvI*1Z{)x&vMd>Og#_>MM344s-6*mpAU1@|L8j{Sa`ta7W9ASFi<k!
zzY{G|{~Tqv;F#QOnXkFef9WzK{flwj96WcQQXw~3nkd+%uZm6~v-u#O#sP}>^r!k@
z+O56m?^pYjt}kERn?5r2cw}{Dn;V2_<zLY5b3B#z(+;|HW{Ch4GvlkB_}I;dmd^T7
zg3lzKfy0tZc)sf92>c>)^8O1(78u_n!?3-0VA0jDhKp>qtD=i7T%5CKxa>AKbd*wm
zrtBa`5VVYS<bA3*T*^5(zOY;gNthC!{!qWwtwjQE@w1qzz#Fc$@lB4zjFiug)?-<b
zoIikf`-BGL_L1eMIJm=CxO9iB{lWmjxKNohmP7AoS=ibAVCXLMLvPvxUPs&u$p<V=
zcfUzuFWVp9*i#EM$&;S>$l3I2(@CJxWefZ7qm`#wypT9@;;fM>diq4?t5LY_f>AET
z=eAeb$|SvqFN{v7eHVnyp8srrgfaJgg74t)fGLL+Z)cYR1sQ(N3{J40ihMHWA}=be
zCjDo%(T#}_;{#+L@GBX3bdJaw-=w;Kn=T(?BWNAzK+A<of_RoH3;?hjzu+Vx!`H7K
zzIS5_{6tzTp(l6;)5gg%&*(i$ks5q-dCQ8Va8+RZ+s8^evVC6*rU+c*iGqtp-6!){
zz(3EnEO)?(V<j&QwMZP1Y#DnIw)y~g*eNdq6;yf{w?k?X7Rw99;X-^Pd3FdP=$mc6
z-*t{O`16gW;xBujs*_O}!~Q$o(#T|US_C6|oQeoP^bJtPHmwNp0gP~M+QGK)R^maV
zW~l0I07r~AyCB}%1$_RnZDNP5kx1Cmq?L-Bs`wD|qg<azJLa?y(J^bX7uiF>>$~{a
z9aU0mZ#}iO$dH+)D7b}Sa>NvZQCN?W6F&-9?Nwj?C7}QKQ`GB-OI(&xI39VK;5&1f
zfkKPkK4SX5cR?P;p#|Q3?@L)Rw>|q}*l8?-A`_9mrv9P<<GzQpY)^N`c%)rrsDk;q
zJ~B>Qi`hD(e>m}hVKXBdVMT$J+2eqE_AWlka5Dg=u9xRY>eBr^8@d;1s|E3(c)9+4
z6wJ=`j_|CxAcKDRUS&{Jn3e(aUR@OHo)Ew%F%r@O@3S<AkpBKtmUc5c#5yC7BQdcM
z8YMe=|6)$vhOxaU!5=6n9C_c=47UYL$}SZfni#fM<%LeKE~l(fvj{gCpr|~HR61r@
zjaF`lmr?;#l*TrVC=KZH`zU^r-4EjAE4ghNmG6Kdx1-qtu821tZpKQ=0{KVP>ieM<
zeWT&4gSN|vonz=LWr~wq@3`eNRZ=jHG@YnCvmTZ}=5hTnji@clw0G&FY@C`2$vNi)
zO}BD~Ak95vvuXFjvl!JJ+Xg6ss^gcBxciwh9iLB)#h+&v{*h5kY%!lj{>;zwB5-aT
zlhn(WQUL;-01P*4#tZ2eMY!57TF&&gv2voNt))k_a{>lO)qXYFue)jpwU@G%{pze5
zICaV<77W#AN_E5CEhj%M^&I?Yu;V*1SFBhrnelH<ny#^a_;?L{?cY>a%1B#swYpH*
zo|6^+)MK({ZKm=^la<j^Z*-{F8fReF=#b2wchCDVvcR4Xe>{UmA8&rI41E1L+$;E&
ze)W@1g74WMuSf#Rty|oOLH(r9&yXj19|v^q4KV%nj#IVVp{NQPK500Mk#LkGlL#D@
z{o-b5FSDz;1|K^1@JX+-+~;u)p5zGsR&X5p@d1s-xYhG#`G=N=(uZAxwv8e=3t<v}
z-$+!1KKCnsXmzY9&|P_P?&krrI#O%ys>o-xbD&8qMcs7eJdOOJGk3Xd<s7m${XC%U
zJIQHI>d!c#iu;~JvK`lmfcG36KWZ2%K2g7l`XJ<Zp+!3HoGHy%ITqrN39p5$!B7+r
zvSNkOah^3-4?XI{sc}-8V97WvWaamN;Su(U*<KL!NalXc)AU`I_mN?&I$`)TJyr(J
zV?`9lU$`O*aKlsRZ|e^<B26@}fZj{FCLfcxNk#)dF)LM4N^y_gXo&?G9L3dFp5lle
zJ+8e@O;r_T?&f;F@p;nqVZ@ayN6_1a)4fONP;pNEI0da}h7RW*h(OG*UJA#rfnR^u
z0la<;yk{6ZmTH-21n;JAM5hZEQ%1~2Poxp>>AmhH$6dn2d^;zQFHR4Ep)_mI2*~UE
z7X<fE>1LO)p>cf?#k~;#{9ie&>gNPP0J&ZtT(zi}y#>lqN&M!?I*KtK2<;n<;~16d
zOwhA}UWF#zt~Un@{Shws(B5=Mth|}Ng0{J|GmOA_wO`X*`uoX1%WhVW<|7el#9njy
zPaYIPZ4hB5b9?<;y8UtT4G+-)03lS)(jxta?o$?Eucy3)u?0hUsTu1q8!c}6ngm4|
zyoxrXMLTsy-*4*^p6C<RW3)Mo4VjG=p+(-$r@XJ#FBB>BNgXK+!SyOm54}Y8()Ux|
z;D@e8@7ebYFUkmA4hiWg@xf3}vz2|~VuaOj4Yc~LFM4?$gcud^BfM!}(xcgPV*qe6
zNM|HHJj$nuAn2Mvn-*=I4WJK-Ql0JX(2wfBLJdr?p>v{$u~BjiY<I62ZRQ+y#dm<?
zv!$W!BUOjx(Yw;I{`u6O(ncf9Vy{vd!YpI^o6%v6Xzg`^5Wm=-X0*#0+FlPoT1Fw3
zMEG`6pOIUs*L52mX2kfnf7Ho4-*sFeSxeBtEY?+$z@f7{Oi%c)I@>D|1%dqWGEJFB
zHw64B%AsABNy#@>(UM_X_@YxlVweUW7&VETAz_pZUwr##mu@g#qvl2$(4Ve0C_8vn
z^l~?y`)Hz3YeFqP#^3_oX*lF{Ng$-hXm&Qija3@H0%<bhstF-mZz@!c7)|dw$~dHv
zsIn1df0K-+#nHq9Qkf=Qxs6*sw78$rDBo;LGXksGB~xy@_&NfC_BjJF#nt)1(a3>1
zmc>%lCIX{26_0$zP;lh8W7LDOI#@LU-C4g2EXs2OuP-O6by42mM(z)|g>jGOcI;S=
z<M(Jd;|z@P(e!tg*i-_xR&-Cig1T!gG!#G1DBqEmZCIV{Fp-jj<dNVY+7Ud{v(0jp
z4vT=c+}J2wY_r5Fl%g4RvqjaW78G*p-=+6RRc~nA;PuH-3T0Cec!2Rrc{PZu0es-s
z*AEbIkBQt+jWEIdU1EBpRt>4&lE^NNmvxG2wv*fd&BZ#IP&IrJH59p$<|rk)DvhAy
zhM@CwD55xKb+WK0Y)(T@UQ=?ocYVk>kuq2f_nnB=nj(zIa(I}%pQwJ)ZT-&v9sWC~
z&iAP<;u1A;qosxu)oK~*0@YUQ8nL1s_=NL@IufN;bN5FIt(C3amI}IM`;GF_6AnO8
z`nlk{HxWFv!1p<0c|KOQZC`!Tg9a-LMy6AKRVu|F$p4I*QJ9w(iB@~qkYD!<KR5{g
zOMd1TBxS6fLh{h~Yjb>uKE~j_e5W`yxN@u>6I&PA%=yKrT8trAo35$0q#%1;!_eSV
z4a`DTOJh4$9fkznJqQ_wRA>Si*BgTzHSkFjB+D}zP#L#*uzH@pseZkJ^kuDWz5By?
zd@vTF>bX{}$q`g~sM(xJH6D!^lJ*Z;2c<-t1d@$RcmG4c7}Nhv2<eL@c%xKGf;X?2
zI{bidp0XbCD_)CvdRaK3-gQn(?Mn9D4Z&>hJnwX5FA<K%V&3g1E*9-h+=6;E?==A#
zVj)6r0rn?W!_i37YIJ)+_3p7Ag6~H|SLGfmDcKv%C^$ABD%G8N3>>qsO}WQ@5GhlC
zRk{5b{|uG?nX>teWRbVc@T<e(Gx*Z4A@%1uBV%r{CgH|)6>!D%cljO$YB)W&`6#|>
zfKA4v2gJm!|E>M!cn9O<h6)XB$zB<)w**TQI&;96z0rX&y$*1ss*I+{nT*<09Z6!0
zkXkHH)6iqQ;UKt@U%{M3H7XQ>RJeQ}A&9){pNmk7<%7&YM3D%!*e8oC!VL4|DEW7F
zpz#MA<3D;uU?@=t>XRRSTMGf3v<hu@6k)c(4+AcqKcly34;;GcD7?NAd|DJuc0QRJ
zUZ@@pLr`H`Y7|{x;m6;rVt-<7d#84Z)dio$#t)6w^^AsDs<OG`7j-ctGs?8tsl~FZ
z<T91^NTT~E&2Pthzb~m4@jZwnRR1hCR;S4Gmry+xPqDCsIb2EorcEm&Tpcs_F`(Ci
zpt5s_qWsb6cwVBi#vIxMh9shu_k?NS{po2}e&6;X{*~i<6IT-ed+*=h(rz4eO`%fN
zb(G<KXodVj&0wjBxOCd*8`^VdCdSv_a<;|ux4+fIP?H#Fo};1G!?b_VoPW{hA_QZS
zx?MgvT#40v{pc{4rm$ksV-YEVM#?=#q3e9gY1enRQ&)p_b&CX^_TPHC9V?0kw`oLw
zOZvd@O7GINSAb}3y}`$`WG3&cl$c4AsF3ICdMOh%BpnVgd+l?yu#KgbP^@sZCi`Z(
z1GZ1oR_?7n4jo|Aut$DFTHV2WFGy2KLdUU9B)h(KOS6#D2cif302JF?`Hj1W;M|t?
z?5H(z?D*kmbI-{(Kv63S<^w;VkEJ4;+0TP*+dg-4Np^A_>9Dw$?dWun>wSQ%J8=Et
z<n`AnYxlst%gLjV@ag8k3r%PL$|l1HhrY@2&+wgt3!Ot64>5!LfinkI?at4?I7j?-
ze)Q}xEFeAz-vue>g3>wCAv=n4B0Mk?i%WL7jW2XbXmr86aY>wUN!oNt{^IiDuM75`
zYYMY#D!*&m{{ve<q`y9Clul`tUTKzYX_tO!jz+iSXlR=#XobFMoX%-~W@wsD37ghw
zpbl!G9%i2I>67^Bp-yV0UTT^wYNIX*q-JWVo@%N-I;Vc>k%;Q5-fFJyYOKX)taj*q
z_G+>&YqJ)(s}5_B(CV{pYqx%DYD;Ui_6W9yYrDQ{yaqb3o@<n->%9JJzz%Fzk!!x*
z2)`C=#7^wM<`13R>%xZWu~ux!o@~6{Ey8|mj5ut{-fYgMYRh(P%oYjF?rhR7ZJ_>a
zV-4-2j%?FzZP(6e)ShY8UTva#ZQBMoamJb47PtT1rnlZ6xY$m&**1yMzHQ^?x!)GG
zmn*g8KH*tu?pq7);}~w@X6@s?Zlr_m&8jr*c5Xj|?(Syp{@@wVrf!ZX?o+b{We^%V
z>xXf;hH)_EOz8(`z?6KrhHKcpS$PI&Xq9{z2LK0f{l=93jy~kfheoK{O=*O_YKI}j
zZk7vgGv;pQ{xk5V=JCF4^M(lY4mm?|<$rL8B|w5kSb`-`@J{ImB)F7DK!PQh0wh2L
zPf2h~;qO*Cgb_yq7q<iO<MB*cSV(aPBq;DtnSv$QhiO0p`G#<WlW-8%A8c{*Rz{vE
z0GJB0mJ2Vs3@`5u&xj5$HJ^d<NLd0Ihm`*okCc6&u{58QHHQ=xNAvk<hara)IVbWq
zhjTYy0x^Y@G~dBH=W{i8b0vp!H7_52@bT%{K~Qi!At!P|XLGSja<Th!CXYF|!4LU?
z6!aNzOZmR-t`vR%V{Y!c4B9L$p0p&UF-qHy@;UWRp|g?Xnf(~C-n<la;B;J_8~i~i
zR~PeolkV5*@{suQN(=J|j}$qdpMEIt5;yTZFL4)Vb{EI-ad`88Xz?Ym1GHL&GKUmt
zK&xjkaXq)D7awskT?HL?gliY~v*ho7m;xNncEy<n6Gs9@2=RJ9OBFAlW?uqkulIXD
z^nb_)BPa9x@rNkby+&X6YCi-WA9w$LSOOe(am8Wqe~@&7KZJeg2ZxXLO4pfuP@9Mp
zkpPs3EHVf3AtOlvhU|ls8F2Jt4;%)-CcyawY}(jO={g%Q0I-_{7_fmCU`6kF^-5U=
z6~OspjDizD2754^qhBNA?Zzq3L;m5HLBL1^z^3h+6is--m|yu9IEEA0;wpjxssDQ4
z-tyEIcDlCiY4e#IOsZ#~gG!<Ic~^2tzxX4MhCxsAYG3hb@bN~-gMXL;nEwYkN2|og
z2P9DZLHGB6=!YY}co}#1B_RC5hXfVx@5EntL024WX#9T&{e4J$#BY3oe+Ds?d?`E!
zD~c2$hXg7ReZS9#5w|8C&xikKm~%Ve@gygB(cgVYu>C>*c!GI>1E@Y^IDp`?CL96<
z1c(M;h=Q(S078%l=Fg)Rz@z82ep;y%f8c-%#Gy4pabJ%VYv>n&U;w+>CAn%sYnTB9
zI4DqH0Pk4_<K^^|t8$!|oPPj_VKV*^6cx=Lp?}MS5Nzo1;Xiy3{~;Je@P!S6_Acye
zxQqdeee$Bzh^8spxq%QRLOdt#-zRbB0R1~RVIs?kI(PEy>60hEphEvS17P$h(xgTW
zFm3AeDb%P^r&6tI^(xk^TDNlT>h&wwuv(RpP5SdJ+O#^IIm=1V?Xx@ttu3jWj|!uP
zOTMjw)NsnUMt%tb?uY;6-xNC1q%~TSZ^}1_(-1YJA`KrMy&acGBbe_R<IK;b^;<HI
z;2}uukU(0@+TD_l1PynL+c5PrC4V9Dv-5A-5=hr%Hv|>Up*tkX2mf;?4bl=M`}iR_
z{g3lMJHDqOiEe$0+<&V(t1WN-Jo@zN*RyZ$-shkL6Y|+$U?bmz1IHTH@Mhx`A(}LD
zjxy-HAkHU)<O2#J&d`w041+lHf^`nL)lfYM$e@BU|I84LGYl}-(}e^bbHGy!IMdK9
z7uZ0^KC^Hj4nN4?Gs8Hud|(YuI@$BYL;kdI+&}ejAe%olM0Qq*{~YszGsjG@;y?B<
z5XCXp)B}S!pg{kD&IHQrqlpX?ytI-|_}K75KIg!I&npNJ*HDx1+4+!ALlsq4Sz`J5
zC!m1}Iw+xq8X6U!eBQa}Lu{eh5O59|md_G-5%!H`m5q}rVdEI~Pj`(p^2{^)^aar>
zlo7PbWxf%%S!eht*9aA&k!BidkXVDnA)-EWjXQJ@N83NoIC2{#jm%LQZ?0N1g>v~c
z#E%UXHm4jCs;;6Ow9-*0+Z3H?_Zzn4Euku<BQm-!yY0IBF1!%EV88|cyl}t^|6E`|
zz66c(L=;IfFb+BjAaFrGvK%)<IStLwnJ3o1rIWP&3?vUoFQ~gyohLShz=i%aGr}Qm
z{=<(72u%NwBax3n^y5RH&_qxTi4f$^2nnIp@c|5+S!I~c<kJg~=<MJO6a;B<zz}Kf
z<j*I^fpUNia=IL^dwB*$RH9@Z`Zd^Li#;~khIUOB*6p>W_0|oQMqaVfrAkn8<4hAC
zKCwMxM@PGQdf43m<P+Jh(*9E#B<u)#_+I$9iWscFsXC3VrCFC+a)wKjPq4#E_YYki
zmG%vHq9Y+qZ_P>jc0(gQlpG{fuy)-NheJEv=ZJ~BU3Jh#CcCuHRF^jK#T$P-*7#h2
zKwHP)<IKT1opV4!El{w}41k=&<}5JQK!`jx+z7G65lv)|4EUS_<TB#Ob3(&E)rrpp
zO{xD>oHaL=jBqbe;6vdoT81Yd0m&cxfZCfRA`ckcYz8~PhvDS6lL=&`Asdm+mf!@1
zb0qB_ni#|g1W2cehyoc<iv~ZA5u+XS2zlvY8`sW;l(NyVhBmw*4hbbgv$(K4D-wq?
za&n<vE#VoyJ6WifAeYi0p%K|)9JZ?SDe4^J8RsGluY~tGXf-A_j?>I_PPZCbA)#`(
z`bTOIg9IZ=r*m%mTxp6}#=~{Tiib&^@Sfqs3N@n<uREO@$I&fp;Z8Q#8CU7@p`3l}
z3R~gnAtWOy$w@v$94d3hKAe%CpZ&uhEBnVQ4p9>XJfQ~pkjDrTfl3A><YE7a*wz0W
z@(Bj`tR@VYfCz!26Kf!#XY_i=IcWKT1GXRt_E5nDV8Ak`oexN_fJ876z<_~lf=Ko_
zfHYaiB#L3gA^hM-aX^v}bj<7|^|)RvH8KK_bYzwrn9~R;xihWBaEAcMAwKh|&wb|5
zo=1_VPw*iQXDGuN;y5Tg|8b2&9KsP5%7-Hy0XK*`f;peL#$!A+7>dH}AJAYZBxKVM
zNK|w-a3jx1J9CYS=0l~Yk%nxfVI66(^l&2@sYoNroPI!~qy!-kO&#hGP)IBvkT{J|
zJJVC)_+_LGk?B7cBe=o1<EYKiDL}KT)vc~eO%qU=_}o>e_0-83Hh76MLX!Wro`52u
zWL?Yi#%dn9Zj-AVqvxLN$<Mv=wXc2!i$9HGS7t7XE~gRRVA*AlD7ZDTj(sd-i8qvY
z(G@+Fy%Sygv8eeSV?Xb?EQumZC%gvsuckdMYE2th0EpIIU9`iJTFV}P@JP0{y)AAN
z3)=GRcCC_4-dkG>!@TY=wZ=Uza%s5Q+%mVh&V4R)qsv=H^|n3LwJvbgb6rUex3tOq
zE_lQ1r{zkwyyiVGdebY<?Mg6h?A2~|Untw|`cu62y)S;LLSFUqx4-`VZ&oAN!}o^P
zy~QK&bOHPp($+V>4t}tB_p9IuQ@Fwwwl3Q;tl<rFxWgXy@LfMF;t~IoxWr>MF^W^H
zVcXJIuMmDQj8QA$3)8s9Hoh^AbByB_7dOT}{_#F%tm7dQxyVL7GLk3BV;KUu$xg1J
zkdrLsDO0)1R=)Cr^Hk3sKe@|ZE>x7UEaowjxy)vE?vl^;<u$W;yn#J4oZ~F#In&vN
zY3^E^^Q`Bwyt&SP{xhHhEoh)H*u{H3G@_pp=0P*M(T;w!k?)+SL{mD^i-t6&Gp*@O
zn^)3&sx+wed}&UTy40pVbyhvyr%<!{%cDj$tYa<fS!1@)Ty8b4f&6NK`hy?7{xz_J
zE$m?vyV%9{2d$H>>}69@)n3arw0*p5d6t3{*1k5jv#srIbG!fB-7W>Q!!7P{Q`Xi@
zjyAd>JZ(yrqTTL(H@xF5?|IX^-ry!TzVof`^Eg{6>Hc?q*S+t76TIM4?srlEuJ8!=
z+29U;IK+{R@EI<=;>Z<v#51n(jZ1gpN3l4_Q;Ttqlf2|6cdW;k67rS%b>t_1Im}~@
zyp-RQ<u>Q1%Vn<fo%7sIG`~5}^O^IW6TRq052(4-9Q38zaOhW_EOYb05(Gc@#LcDp
z(KG&YrgNQaPT#6r<#7yTaB?E4@Hqq*JV4P(Bq(gTP&=HFzlj_pANJ@_)rsQvd^jp6
z){wh^Az}_c0`#)&=m|Qc@Uq%wecW5`I^@6h^{gV}1rq;xfoB^63@A<L5j>eeW9K?`
zwKoJAjPl1aY@ncjgwF=K<agU8LM4qvK^*8HDnzPv4%4rT_dRKb4Wht!_^wT8eW(53
zqfowS1^#6g@yRh%A9}U8W%ds7hYhALxR&6ZAm?~}<5B(i$di9ilb2_RDtHV8WZqs&
zS}f~l@Pgw&?E+6a;F@%1*@n#CEv9chj{u+Y`9l;C#4>c!E4+vS246y@gflP*_7TD|
z$iVWMhxK8S1t}iufe()m;6Lb|@0r6fL_wR_z*(IPC`7?B5CT6Gpp$eGC@7#p1Rp+t
zf($TL>X9Hs$ioXL!!kTU^UamsJrCcl2us+*^O^qxA)vz`5S5zPK!<!^O_<<m@IwqD
zgB8j^LZsdxB$PbJfHl~FD6vQNO$7GsLn=fcW6fX}%ENJ>L+~AgOhiEpj>8k8&=rOs
ztc_p!^`V>j({qV~{W*j)TmY5$!wbxbJ)8iIR7>~ZLyPRgCn$qIfWpS4MNageLzvzx
zh{N-=AU?>0HNf8sE<+Hl;5qmYI+O@Mcp@kSkqk7$F+_v*p~VFf2PrN?G`Qi(WCRGZ
zh>f6w|KLLb1`s|hLlltW+36xABEw>ZB8~VDD2gIP@Iwza0}zto5E`EmYQ*y$LnENW
z6X1hCq=G9(!!kUAFot3QX2~%g1PS^BjG+HR`3Mv!%}j6+gb}*M88XN_BE&w>BRVuf
z3%a6A3<5r&!$A0g>3ttRV4xnF8Xx*0MS8{gO;U(hAN_ciKd2Rk<bVN211MC?1?a;F
z$iSM6A-^@m&-mXABEtd2V26<6e#`=vs9yL8Uz*SW4D8|yJi(JxpbrruaZrm1G8QjV
z%Lk6b?y<;AC}d|9U@COPV$tM3*ktq_1NKD$mF$O6T3<sT5DZ8`ElN=F6`}c52}%av
zKMZ6idDiafVoF5iKb)Nf72sA5A2503TT#hAUSIa%o*U+6TQ-6`=!{DcNGA;hFg!zB
zsvg!wB%DoTMOJ23T;wDn!vyeNh_wIThiHT|QUE~&5boW>3+TfML_<&n;m*WUS`q~B
zJx})a!!brd_?XC5=FisfLp$i=4hG;jhJ-bO-%#=&E|Q>TvEFgmgD*0r@6Ezf4x>a&
zWlbcb3!dF9=%z&Q13ol^>3J4+u3$?f(3@yuTWsI)RS7~igj@PU5=tOSNM~Jk1V7lF
z3-SXxfa63o1DC9oUq%E!2IgrbWqyXEVY(o6DyGH!Lu0;$SqY_NIvQnKCWY!(!#UR=
zFu>(8kVBlq1^DD6;LH-Dz&<oX28hE8aD*(3V-3WX=;@<pxFjf8101S}I3T0N_#lw1
zPYoi2Irz^j<PtEzzys0*g9QI28M=ihW}r8n)d((SQ;z0K@PiB}!}=)16To4>ROt`?
z12*=kI*5-c{=<yIp*VC8L>Pz<mS<mPVmGR%L%1a<En&6jB6C{9mHr?cMg#VZqW|dU
zL+~I_5-0T$1&p@M%?PM+#>1bgV<T+kE69L2#6yQHs5+3~EZ9i3L@23EXoY^NqFtzS
zQAv}CU6$NTXPt>G4irJiB3QmC>5b6y2o3A8MMua3Tbv17)D~O3Y9~dBjYLGMV%O;9
z1Z_P8I>_CMU{Wi#j%++6trCSZoP$N+s@&=0wYH_B)M`N5>O@4zshVeru*9)Wi*@+J
z+bM+SL95~HDnXzFk0k%AUJ`_<&LXi+%=QstTXuv$NQ=8RE3R5Y`!uVeqN_Ndt3h#U
zrzRbqfvUqw1!g9hK;c7KqMU`WW_uvvU|Ahngil9dq&0-B$ck)rZDsUftiqm}r#|eb
zMr_Kq2g)khim64+HW$Ly?8|c6%Canlx@^w=EYPYf!%iB{7Ol?)Ez&0KqwQ?bR^-tt
zE!0MBoiT0G`r*?`E!Jl3m{D!jmfzKCE!c*w#0~AIb*;mGt=Oim+S(Y`nl0p^?b^nz
z-2PYFx-Hki?cC<A-gX?>uA1HUtf=m-;12GN_3g9$t!3gZ;Vv%YZmi+@8{#Hz;5IJh
zR_=M#ZRFmZ;#&VM=XS1SJ#NBfuG3Dg=a#PNJ{IPR?#gZM>9(%xY8U8Ioa*)=>%Ok-
z-md(_?#In8?UF9;{x0x}mF}t>?~-5b1~2m7Zt52A!X0n&KJV!+FY^MN^Fpuna<24F
zZ@N|Q^>#1gX0P@}8~1uI`R*<FhHtKoZ~3lo+@3G`wwn5~ul$Cs`@V0e#qa#)uhiDB
z{Z<<OE($tGOW^SXyP!kG&X@isFn0}a&GoP5`tDY3!UVj)1Y{#bjKV<xi7auFJjmY*
z^yg2YgHF7H&6Ecs9x!^?Llf|XFRZYae$qqK0EDWAJw&DgmoNW1FrxjhT4;jl;X@1P
zUo~oQL&X0?SdIW*iUJY$#0=mpTKK~WpzwLvLkF-h1K9%%$M6iNMK1{P4Sz9-Ft83k
zFd#<ONf1OYSVUWO5)H%%3IPc}%s>U#z|YtOao{B=OhA}aNfgNOAHW2@d;_&m@Jr0X
zIPk+0fWixSfV9X%3skVQfC4CRfZ;&#KAgiJ)Bpn@11MYo3^YtLyueSk>Ih(7((pqK
zT)+o3vM5_{l~nOEAj1r>l0*0c3}DQ0@PlZc43N~oAiMxAw<RzqL<@cb3xUEbTmT1D
z;S5}W47AAtOhD2YNHDj^1#}-6D{u~vv8X|?R*^~cjlgNNaVI6B!XPr40)qOONkjMo
z4?zFKER5s(Xo&~7PYA^^kL;fMtne#*gFS>0oB)D9d<Y~0Ne~-r6x)P72azWn0`_@g
z4Ojv?FhKr*0t?MR5Md)ssAd3JP!-Pt1%x7-wDSa<fDvfKF01fA)IbM_^f+L#D?S20
zq^7hC2|g&XhXm0qc)&i$LKnhx4I1VLgktt(^9^q^H@6uNr-dfKKn%V>LXh(bpEHnv
z9zhr}LHGg@Km?8uge)jSJ?IQ4_)!x(D1U;IKc4`-LID=DMKk<>hs=p3pTj%H^*@Nh
zDL+pQ9KtfxwLI(qKa4;@HA5A@!j8BF6<=iue?o=$0=^)?Y1l(buW*YJL?|r-1+f3c
zD*ysNxbQ#FfJVpw78g_`_JZkQwq`@YOcMgd8ud|&aZ-oeQlrHgS4jrg^;Ey{XUhgC
z{0uN0$q1G8KYVpPJYOe}btHelnxge0uC+W&Nv_&;SSEB`TQy$W!wX2r4DhvI1NI3N
z)U~4PD{Q7mU*#Awb~|$bOsp^#-zp2q@M!Wi2J|Y8cs6LOB^Dz?ul|E+E5v+9_c7K0
zU%K}EB6V!Lnm1=vZJ)yiz{E><Xiw|*C#)+YhGj6H0|pFtLij@oL_={C#BqDbOUyuI
zoWpJRb91vE6d+<1u837n_a#?%N8q)Qbi`f<(@PlhKzqZl5=BS&0ud+nES&#$V{>Q=
z2=u^Q<$D7`Cy_Whppz(ec0=4Z`XJ(znqC*TC6rqOKhU2z6S)2w_<?uXY@fv@T!1LU
zKt4|ZN`^!Lp))GM01TWUd%l1SG&7IHF$`pPmFP@}kHQ6b!!k@j4cGt!^)o-90KL*g
zGn{}7oB)s1fLtdcT@wU3%Yr})I1Rjj=Y=v#vJg6`fDFvvRl10pThI#6LJ8wuR=cn~
zD1b5~a}CG<lNb7)Yw#;zgfdAvK~xa>)P$}t=L^t8t{eI|4D_h4A(-c{mTlR&jd}AX
zIIPu{(JZ^Q;})V4*Rw-A^-BAx`GbJ3387v)xjUA&D;>9Ydl{EIyD$Ilxi@UO|67^2
zJH2z<yAy4^Z?Cu4JHJQmy_apiquadqJHZ#+zx!>#L)*X?Jj3VP!5?nIr|-TuJjF-o
z!$WSwOZ>W5JjVy^#fNUj<J!V^Jjut}$IEWWv)ag)Jj<8b$?tB;tNg^bJk7)0%M)+R
zgWAg1JkLAY%{Oq)`|r&6Jke*|&j<be4t>!ty}=zl(hL2@GriQ8oYOzOr78W?XZ^TU
zz11Ju&TBo`V;R?XeK$va*q{BtjXl{bHP)lO+n<`+ul<^R{oB|5kj1^+dl}u^J>T0H
z-sk<3?S0=5eue!#;5V7z6TagAm*F4&k0t)%M}B%WzT?Lj<V*iP=1UjlSN@A#e&&CE
zb8SB7KbYr(zUkYR=#PHDwS9SktFQXmwoc|T41)8B89vnhqaDNRi(Bfe{(Y7Hodl77
zON2E9YgiK0&!EGZJft#|U3++7r=?}u9lwD29(t(I<ZsP+rfIe!o?|N5AgCT}4#K=f
z>qEMS2QI_(Ik9LBg7r5F`%eot^8~t*U8Bh1l=Z&vGo0B^SQG%npnn4i9wX@Q1&mh{
z#QCeC;K@IPPnMnVMi660jT<>O8^;l3NRcB+mc-~x*+6{z@C~&0;y|N=QA~357bRa!
zojZA&bau?(KW8m5j=FFRL9~(P2=#RO6zaw(Hf;REM^*pe!5IgdHXAYFBhO_VLG1%+
zPfAp^Ycn2;5(U{tdooh$l-HExtZ4W^StB@0+10RY2^U`L3_xPViy0?2@ECGr$&)Ep
zwtN|LX3d*9clP`lbZF6|Nq261nz3Qkt2HV^)-oSHeEFO?8_3UwSxwRI%8F<Y!N*TB
z2`;mN^B=n7eu3H;WL%)UL7<{IoB9!%J*w91fwB>ob$E`)z{@5Y3K;|95^Wr_(bV2l
zYszgXJ?B1(S^ClZIsYymz>#b_i71Iwc;ug2b|5G|P#(eUKc<q~?jL!mip#?P{BaMj
zW!}muz`_PO&MK;CBIp-nMraC@X28P8I2**7u)hC)mT}L9e9WOr9H4ND3l#kF*>Ip^
z_5nqPxIBzvMj!WaYY?+SjB1c$@TtxkpfYMknV{6E(gwdWjBCT=_KEM68q37%q=9@<
zN}~M!Ifu<D?KBKA)KDvp&p!S96VN~f9h6YY^wjgtL~8=?AN;HgiXdPv2+OyDHo4%1
z3#7EMDS5Js5;t*PQ3{llju{7?{LaDYE`OB#=ATiNLPt^7$QuY5NF`G5AQ}JB%br1U
zLT5;ve2J?WLioXH!>gDZtXA;`#K;<=>|x*|c_xr@u9i}nahYhC(k>r<jFe}{9FLjx
zA5fHPCK`U4!e_>4opQzo+xD4?QG!aq%bx!i2SNvsf9yeK*>XV<XPKtXiOb4=UTMl7
z7VSgEpR9~LCoOd_%x&Td=LOMTpKKe%w%RgE#m1agEjPE>{8<>V<ao;uw<F($Gb7wU
z%y^)6PAr*dpAJ2((4>`Kn(3yUCiLjjik^B9qO`P1*K;OVuTpys7^E2$4k>7`dg_w(
zm5+Rx(Ia$ZI`|)XUH!+SIom66YN)itr)rG+;dP*!1~S{8y5wmtA7A{k2MTo9>@TOf
z^H!}cjDos0+ihKfVxS=1LuOnVnq#RsRPXLD3ilfE=auRvH;HfOT5=EXf&O(#U>jj|
z3A}KZ`DpI3BnBQxvoZ#{(KFLhe4zgv)0T)jzg`DPwv<q&cPIv<z~>l;!8?_E_rw8Z
zu)CVq=eT1)X(U6uSmzmep{Jjppgf~i?CJdV-=F{f1-(Bt^h=b=8U-E#&glg_`$wf_
zp}AKqs7P?a2i)2fjpwb6Zm4=&T;ztVu=s;7Bom-X+~OSR9RzT38i+cSQMkBm?<$E~
z92De{7OUJOa?l##Q>G=9gB<8r5HuL)+GQRc5kfoW`Ny{eBN4ucqdu|$5k4BWLycUC
zD(N#(5C3sHgXOLn2(n7B1`@7QNkmBldEVU0@{fBE0(nMSM_Pc963CrVCCgaP4#{&2
zaa0Exft=PTkYNpc?SoE58b|*sWFsT;sl<H!*+&#-laZO7a3HBLOCqh9H~Rt5f1woR
zC`su*04}DJQwqwh8pR+69N+~nz{@Nmat;QFZUhB$Nxoi@l2RFG9~Wes1`WnRIK~AX
zPv8qOQnjg6h6E_J3tS3O=L{K$!-cqUhH+$QuqX6~5Y5;gawPZ6o(!mR1M$QJY>*TN
z5mB7V5f>c4ld5)Y(+1<{o^r;qD!$x|dv)q0zOq=*<A~6U0UL~VoG}X^A)^_&Ib-mU
z5lrH>D_=GGWp1?7kT4x1EoY1m_rz#L?!^UV`M4T;q~xx1(8WXTQigH*Ssi!TgJQYy
zr@J!p3K`U9f;3@@g>?UDPDOq4ex+3EQkmM+(VS8-MimeD4CxGOyyhUasZCh;Q7=y&
zgNyiZM!o!DRkIL<A1c|0KXL-Xf#ifJ)hcWDq{@+&NV9$-l+9S3sFI<ygdb9xQCY14
zSGCraCkH&qF);a$dRZlV{AjCHbHb0Ywq&kE5vyjcT37RMub|t*2s#SHMaxQWu5gtS
zV6DLtg534Ax4EoJW)xeiyq2#<-IuNc_gKk3OdhR`+hxz1Th01an)tBBa`EBT<j@td
zM};Z?oLXJ$Ubni_1weFJ^AoUg7qN;3?|8{uUh_u9EpKsMNFH`x_YMT9QN!+h>096Y
zY4^SP)$e}!+h70x{ujXJjqlOyTVMkpxKH>E@PZlKU<W@K!VzBZfDeUW3tt$+mr<~U
zIox3ne;C9e7BN&Ptfvg07{wOe@Q7L5Vi&&{#xV}>bW>bo8)J9HGS=~qdE8?k|9B@Q
z-qVeVTx3$_7|2Oh@{*a{WCsfwX-1avl<zxTCtn%MS=REFtqA4DP#Mf&E)<fvTxK($
z8O>=9GL6ODW;d6H%vRjToatO=JKq`4dDiou`P^qe{~6GM7WAMAU1&oe8qtYX^r9Kv
zXh%O9(vg;Qr2SE8OJ5q(nb!2CFZ~Zj>jTuG4)uAx%$PTy8r7z;vQ&xCYFED+*0GlL
ztZ7|qTi^d0*SXg9u6f;SU;i4|!4~$giCt`C9~;@pR`#-)t?Vb*0vFMi_Oz*8ZEIg!
z+H5ewwz=JHZ-4vSD-id%#mx;;vpLo2R<~s0yh9@J0N(MI_q^#{Z+qVx-}%<}zWLp6
zfBzfc0T=kd30`o69~|KcSNOsi-f)LMoZ-*L_QWZUZEb@a;~C#JxyfyA0i%1}Ay0L?
zNBC}tpB&{WSNY0W-g1|}9Of~X`OFJ0@rvL4<`>ua&b!U=aeKVHrCyB4iH>TL3(({=
zSNhVK-gKuw9qLh+`qb%dbDUrO+B)Ys&wXC*b3?W0VQ=%%=?4X>pB?RKSNq!8-gdVe
z-0J^WmwUFiUiYrA0O;fuI{w7o_bHQoe%5IA;0a%N!yg{;iC6sM8Q*xvKYrM8pS#?(
zUiXZ5-3<Ep`YHY1`62^e&7l|l=t=M6y*tM9sZTNJOW%6ezaI7sK0S3+UwaI*KK8lS
z{qA}H%-P!>_z1>*?}=Z0;~zgjzYqTM>pOhpKOg$hm%d1p&wT4!*ZI@e{`R@g`|4jG
z{7cP#_sL&=^Pl<q;a9&X$A5nJzaRdl2l@Kx&%gG^AOHE+zlYObfB!q}{`OA*2ao{w
ztN;EF0h1;G3y=XD&;iZq025FG17!gf#hK3Q0<Ge+Hjo25&;vgZ1Vc~+Jy3)mu>1cq
zFhDL)AJ%{iTF?bw5C&sV24|24YtRO75C>hb4DxQgB5(qKkWVV`PD;?d@CL6;5D7yJ
zZ^!@)n$QWK5DKGE3a5|?tI!Is5DTG@3pNjwfY1y7L<sHV2+PX|lh6!V3~#s~3)heh
z+t3Z!a0@>U?7ol=;cV5+X$;A$49}1cKP(O35D)`V5VJ52gKqxn5D`@ks-!9p$7>J!
z5E3Ko4+oJFD{&ADQSS~h5jPPt!f;9&5xgET5=W7K#xSig;;wE>BqmV`BcTnNFcPrA
z5}|MsZlMjcfeo;b5?&DtF|h|VkrRV)GCVOv@QR>p02Hr?i_QrJYeEzW0v-SA#TlBh
zCeXne%1Sj>f)r11BQ#+GUSJ3Op$VE%6P|$}S^x&nVFvbL28t>pSn&zhKuY{U4Zy)4
zX3+`5pd9X@4fi1zuy7xYfe^Vcsf5uWD}xvV#2Dk^Cxqg!j-f7UBPh7XHo|8>Hia4R
zg<*2UMrx!{WJDfDKv-smSyDldO5zy@#u;*A8m&UO0L!pcLb+7SD)u27u~8=dLb+B;
ziX^KhU2=+AORO4e8>0^eHQ_Z_l5X(DFJ=ZAc4HtKh!FH4CEAg7qQD)~PzJ%_A8uh1
z{$U>MF$}bU9J+xFD4`q5vJJQ(8_H4*S}+VKp)An=Ey-aUS}+pGfgJz#fgZv@FS}t4
z$l(^yQVp~L8_LoyxxgRSAT7Ir3-U5C^RgQPvIP%QFUf%gV~`-_>mWNbG7=I%jPX%y
z<2$G-kn$m4$irEx<0|;3kqDv&F2Dv3zy?|%3SP<?PGB5-qZytcB&%iyp5PN;KpqZ2
z2H<2i58wb`U?WoUxu$U%tx>G@0Xk>ogwSCqrcoZuVkK{KT7XKqrV~5mVJPIGCD0{2
zqqADF^RbFj`i?R%%%Un<-~()c0`{Q>U|=@kWEL)f5b&W1{-GT~VFzB}05TA7v>*oc
zksk1}4eYTJ{z3EffgB|CAL79eEOZ`PP!cTEA1=ZlbfE>y!PEc#fgZS0^Cq(!NR$%(
zfh$WC4fdfJF2O?Sp+e098_dEijG+b9K=b|q8)k4b3CuH#6f~!5BYr|6|KUV><QS@k
zCMXh8@F69jYanVs8u$SL^5GYvfFIK21;pVTULXpTq6W_7mTcexxZwgwW|9m*2Jp%`
ziG@6&(;CE~JC#cu=mi>wWgNCsDDuHO^C~&+bR}1^Lh!*nts)=D6HmuMti*vOiO@Zf
z?<i#;3R0pf+L0e#03Tl9BU%7X`~e2`fgb{N2E1VgWMDRT2Nf|wL1C~9%ArAB&>qXd
zAGiQT{ecY1VID|SAJ(b`!y#8MLi5<51-sxMj3ErxY9IgZVOHsZL<gcmTNE4M;2&VY
zANOG%X4N0E0o4AX8-TP6D6<6vGf0J04mqz#J@ZJz!x#qyCr%_v{)lg|CQAl_B~qq#
zYTz6EVN1JI6uxN&W&|Iafdc-a2F8IOuw{%ir7fuERW*WG9FjUo#<C#Q83v<bH&z}#
zqB|SnJN1KPHa0mFbw<zyUEUEoDYa6K4+TBpgf_KYJoN?swFE}BR8Q3(QgsGkMNVNg
z2ECOH%Jm-XkyyP|A9&SQakUI4Azg`8S0$8JTM!NcQXc(bAIp^<`d}bHG!nWJTVpgA
zp0!;4;aRicAGF~gwn15WGzW*Y!rHYn-<36tu|5A>=R|<wNx27W8ijVmN+@IlQv4NQ
z^8py502p4t2Eud}^fMw}!2?7E25P`JAr>VkHX|z5vi8-igkoPe1v_iQbGvgKa1wMO
z%dCcSDCTM<S=V#@0z0YkWqFTMHDP82v}X5V8Q4h$bk<axpl8RS8Dvui5L9SmFcLO}
z4eT*&2Vxt@fobP~4+tV2@KQ?R!5gZ!1utSC=%Gai;uefHZ0VtTZ((fxF?@k^TG^K%
z;PwW!KyFQpZV%FKS0fpt%Q<_ZV%1_%Yd8N~Rw0vD2BDS=U~m!+cxV$Cfy-b9*WfK(
za1wIR1-pQOxnK<xm<t@3g1JC`*R>1lR~Y~AHyinDe|bV1)xswM82<z~GzqwaV_1e~
zn1)^OgAH*GMK~Bq*f8=Ju}+wUgIFhA7)c2tR%;lElURvg@P;!nhjn-pdAKlq*t0ZO
zh_9F@h!|dBc!|5%i*vAvfANW-7!jqIFsPUjtr&~fxFodrZn^l2<5-TFcz%bBj1$p}
z*}{$WSB)`{ja?6o&ln>#c#aEMj>VvkqwJ2$_zv-K1RoiaBUzF;@QNnck}nyPWrKGA
z_{=idlQUu;%0LT7nUqV}lusFzQ(2W)nU!1Fl}T9)+Ea|#b&=~Zk2x8ab6NC!u$B|>
zmUS7JgIUXXxtIU%mxURblNrc}xtRa!@0gVtnxpx}n7NtP@0q0;o3pvYsJWWM@0zt4
zoWnW5xVf9J@0-OLozvO9$hn-E@0@#L(&Aa3=b4`C*`DtipYvIt_nDvj*`NQ}&ej<i
z+u52MIh8h9ofA3|5gGyqnxMVepgW176`G=xaH3O*ogdov-gzf3x}rat0X@3Q99pBT
zkE3-$q(NGx^)IDID5Fa{^-j7bT6(2x+WlyneqI`;J5Q!f0;g>nsJZW_r$?uEy6<|r
zB$}}w@`0)Q;jNf@kAqsOb#JI&r>KoO?2wuyP_Q4Sffc^m9sZ%KznT@odaBRbQWN>h
zuv-1JdL+1d8sd5y!n&*F+N}T48n1h=swd~F*;?e>S|pUZ9|oHs2Ai-;f+(|C6(=VZ
z1t^g1YN&G}s!OyaoVug=EU%kvuRV#R{W_*2TF&lPlc1s*0HISoIv&{M6{Nv1G^vdU
zqa_KV9mZiA#-Se?0SO4A5%ORl8UYdxVN-ZYElk!ag2jAFVi_*lNKo3(bUC&)BC#_f
zx{F&N+F?`hL5EOcxLQ)HWVvUy3L_3DTT<tQ(869edusaHv(*i-L!uem0lwQIC;B12
z<vSxvMV5YL5H3I*2tghqf*(p16ea+UN;Q!{As?FI1;(*mD8L2|p;ONQEY3kDQeYg=
zf*)pJ0$ep7j+Z@@!Z`ol1tKK|E^;Cju(E#eMJbLUCz4x}MuA(V;z`0JZk%Hl#9_3V
zfhEl3Bdy`3<m4Z$VG0gm3LJqQ#v!*I>k%A5tUux!cBdI+U=Z}dJ4}azMg*d0yo}t#
zFO~rmKt~+Ngps_XTA1TZc*8k1sXYck9;PBcX5mb#ly^N6V)DsC2*E7Uq$#N*KfJs;
zG=w^c@XvHPxj7;?LPBs<1I7uW8C=z727(5n!J&fO8b*b^2*DZ_id8>?e6B=FYUsSx
z+SJzDq(OU!;F_$%Iv>0mtTW;Te(HBM0S1&o9(JHp$AOko#TgjD8%97?VE`Y1y*fMr
z8Gr!>oZ$r^T$cYp0S20(1B$Z|WPuRKV;M?yAmX8Weq~+mf-m$*8TLUh1S4G9oYDVt
zVe)B-_QAEerD~kvHS%NI!vx)pWMR-DJEqbv7KR}5VF}y;2|y&t8(|;zNZ@ZHpZa4@
zSzM2n<)5U3AY_Gaz`eD8=NQVtaqt14l*I<5VHv(*CBw)ymx0Z<rx~n4aeP4_j)6S!
zAr;CcC76gw8b%)WA~*V?%_ZJCxQBOd<^t<18iPx$@`26>eN%2E3OxQjco!(Z<w=Q`
zE}#)87&3KI;zphnC|2Apx+F}31z+%dAfg;DgyJ|-f(FJR9vJ0}tYZ*9LY$%m7%+WP
zBx@8-S7ZOeLLNk?FNC5>lma|pd=#RoN*IM7f&?eb1t^+A<f9<5(Yt8Wo79cY)JF)_
zr-2>jyB*@XtX&-v7U(J8W<fjw5PtSkVd5J^VGwrU44NT8Kj8%!;3*Lw!b{a2E&v}U
z02Brx3QFJ`6g(la*BU_KO3)!1B5Eq4VYxZ-cf5ltq@)?l0vM11-Bm%|kAz#yaTc<u
zM+RaPtYO|W<UL3d#7Slvmf#tXAS`lw8a5xe2VxaAKX7sbXlA}bXh<f02YF(}EPkiZ
ze}}@sXDR?f#=a=dnh`p-uUQlujhspQXK#=^LjU+hv!^TyGI_}OrLtio-#Kglko}Wq
zW8wcGd<$*hv$5|V!e#sLMU%Pj)j}EL{`vH|FX+BcgU&sXCj+0*pG=!NeF`<I)Tvaf
zTD^)jtJbYtpVIsp6CIR)FeBEC@-IrhfBX2M_32OTKavRlff_gK=3Ra!Q|*%%WnVmG
zW<jm>+3co`p671<0|w*8H=l0z#f^FL31)f9UJYtGYMecj|CaSU8Q32(e}gPX8F$Pl
zsC}buHZzIY=i0or|Dhwqv7$hyxw{%a{?r+O<;<HqUv40}^y$>ATfdGyyY}teyL<l*
zKD_wx<jb4?{ye>N<m|H+|JiTaw8KoNv2xe+1t5GakZHPU&kp~bGeHOYfMNtbBYgj3
zPXdQDqd+6)T#(Nv$cUmDD2MO^!#?(0u#YAa?9;*o_`DF!IUV{Gk2UAm5Dhxf$a9lY
zb&W#OE902<4?aIN<IO*L-Q|y8e$D2SJ<t5p3`ss7vlb}g5P6I~f&G(@Kl!*-8hy_o
z(ug#NA@L71ha9rRLtirG4@|7}Xwq-;G*a3)Z~7D(PG6Z87e%J=1Jg2UfkIJW=rnTZ
zfD%#Uk6wtvxD1_l8CFt7Xz_#3G10V{Pe}jxMUzc99n+JKO$mi+Q2C(RUaPLY3Tv#g
zPW6>f#~cI7SY_F8Yn;ct7S~Ug{X|-Ad40N8UnfZc5n-RHl3O#A-8JA%{&fFn4@E-W
z#E-VV9pV&BOoeujwxs$b53~Lda_2GP#AX+5r}g?1V8_5X%0u`7XRWxW&I)i;%BiQ`
zc?KVhaKZ{N%y7dFTSqX#0mu5DPw~y?lzsRy^@0sAbdXOc0P^5d3lyO<febB7rouS#
zj9_OAFxar#3@^N}A+{i%^TR){5MkE^HmrCONq(X8P%4A8R+m4&F2+(6jxiZU6ol-9
zPSt@yI|^n>S~`eHfGsr6IaRlobrj+h88+3JRa4G0xsmx3o%t-WgdLE;mD*>eE$tzl
zeER**C{>%ZXHUmwJxE!tH6~Nzl16b1VT{r>4xoQkZ3AFFktXP3jKlwwc59*DgwWWe
zF_miTOHB-W?6S{(+%n?elMhS#ETgNPY6XYP?uT&t6DZbXn$zuz&60GopDx>MM0Sbu
zBOv<NP)@b~T<bEU{w~H(KK8(ndrg1&i)T+#0=AjD6s;eayC~5%89K-NYtTz6u0$wH
z`D9(OiqY;>1B;k*9)`dKDsX`eY@ovon4SS5M}QYwOFpL24xeZ&Kc{&LI!@3*2};F&
z$a_jN1gMofi4ZGYgGxSB2rzU!0(P!z-3o7r!yLM*8A~(WAdW$ibF@Yt#~8#~oH2;2
zm1cGPD58^=#+aUbg(S|Xh)L|RsW`R9C+Gl)W8`s~E-t1=GerLvNO~g1ecWq|OyN<c
z2GK#jY)=_IDk2(}Hj|z-aS$Y-Oc9Sk5*|9^WPp1L3U#=Z0zwcv4s4_&9|_4wE^LwO
zLF82^D4(^sgB8=z;C-5+6oK{8l5BE@GpP3zQz0jmq=bqpoq`WkPVA7atfeh)iOXE-
z@+T2N;?$x-%UwD}k&Be1F^`GNWJ;2f%@O9mo|2El^dp+O$wxn&iOp<kbDP}krZ>MS
zJA9n7D#6qyF(IhTbgFZm>?{v6nX}Duf^(kqtfxKiiO+lrQ=Zs7rvcju(0~dQpzmBx
zJoSmtger8Q3~i`Gfq74VMr@!It*AvCSx^8R^r0N>s7L=l3eu3qj-SqyD8Vj@(v+(7
zU>V)0NM8!mn96jf93`nRO<J&(>U5_(#ZF7LX;YdCb*Mxws!>N8(Sr7LsZ7=BPqP`+
zqe^wERIRF2*^<<EHg&699q3cB8P%(bb*yA9YeK_{OPr>st88tnGQa9fw3>CUbgiph
zYbjS-s`WW;?W<oM3D<qraIl0etYHs}*u*M!v5al3V;>9I$Vzsyl&!2~FN@jCYId`n
z?W|`tn^k81b+n{?SYYpp+SICcwXEIcUJqE>*vj@ir){lmZ;RX9>h?IVZO&|e3taRR
zbhpGUu5pj6+ukxKxXf)X#D<I9=t_6G)Rn4o8R`Gr>@v5u)$Oi#zYAV_UKaq`EiZ7n
z8{YJ)cfIV@;dspp-`JuzoA{_ND<=pR+w!A0{1_mnsB&M~(I+aeY>zCrQeam;#UFWX
zZ$cA%)%V7C!hW4EHf1?V<Iu<_=Qyx&+A-jcnx!eun9NU>5#m?*Bg1j|B~*AcJAN=r
zDwT27h?x@LsB|kyYjaHHY*jVKD8w?WbMQmWRy7ZQZmtrhu#>xLVP_&^%2cNEfH7q%
z`}Rm2n2F_vKNXX4JOoQVIgK<rm=7@lrOf@H0wiLR=EIC*&I?_}AY@tJ5?7?YD8_M?
zDYL!YnF`CQtZ$d=dk%N~C<;EpvQM=9=s^F+5-#=qNu?i+yX|3SEn1Fci0hlKM~j0#
zm9BA?PpwKv`{U9*sxPN8y}e^7L(uqOaHM}!s%AI?9m-InGfW~Xvn(ScF@dp>9lDGl
z!SZ(Sie*d&{p<ic8q=m)HH7oo<R@!;sZkbYmA{?pC@4eLZb3#74?>Y5Dg;0jS;Zlq
zVTXS-VjTED#6PBBrab&(8i%mP6v|<Z$@GH>`Itf@_F)YqSYrv_fCmx|5yE^r4IiYb
zoS?qZM03l<R^w*Z7EufsbALuq<DMZ9?JPcxh{MjK6qGpZK@d$vZfZ1fhPYEfM_J2!
z83*}{5N+-<>SZe~gP4)H2Qg+v+1&q6gRuEpbWRA}$-HtvEREC_tqgpG?G<$VdD!^z
z8Cfr*Bb9q2GWNB-E7>Y03i%Zrw^w9z5bjFyF!8Y)N_9Hc>*ziw1QOL46L(e4Ai|3I
zrl|fJnRJ|?+1|F}SK94ee!I%51k(1b0d^u=N_X0GMl||?gmL793gx)l6l#Kqe7FM%
z`CvVk@)7WV^g{{%U`0=;5R-T0!5#Wu=)RmL8ow>$8;Oz$eU9O3))YG*Urxo2NWvPl
z59sB3#|TrhRT}D5=3FP<hcjk48mEogGAm(;HQpXRc?ew!!&*i(@IiQ=IDc7AiwTXa
z{|{%dMCK8x?@WqgJH8Qh_>lh!IN=)|@foSWWov;BfoEa}QG9C`Yx|H2hoKs9aVt|p
zcV%>U3?*ytGBwh&J)dE1q~Z{lp()g4Y2qXW(q}u(7jf98RF6l4DiwLUG<j53dD#OO
zeq$1Gfe$mbVF&?w&tQZxu>|^t5ASA#t;ZCxH+!|$6LcbbyVrXP)pi;&5r{#2Ce~+u
z6gJA&CGwzbrV)VRr!Dqi4Oo;UdY2@A(i6&87u~047x+e-G6>3`hgz2#>IV_*_ZG__
zYsyeXK5-@8a)A|b5mVz9R|j)?*lWws6wSbZd8mgnkt7IM5x>%PJ;8kraY9Ui5Kcom
zRs$DBRwRe9fgQ+Ea)kdFm=POxh752N5i+zrviK8VXKpP>g&pRHb+S;6SA)YSP&b%M
zIXGpiBqJ4}3}ClpKqwc9Q7Qef1aS5b?f@p=P;WkQ4gbJ!b1@Fqus7E*2etPQRL~RF
zfC#*|Q1v&0@~}n6@C{p-ik4<6R^o}wM-gt355sm6E8!Q}$A-;veSUHi@MwT^I2o$3
zYCXa(O7tYu14bM68^OXP+IM^;fe!3<E{QQ3vBnaa5`52A8k5L?+7gjV<c!p_F4HFy
zrvY<CW`HuXg{SBn)>46nXn!uoiu!ae@~|X`agbq`CFi0vB<YUY^BextL@#F&{1}Wg
zNQ_e%P{xQ$$aw#DqWCLo11~>_7IK$?1KAE!a0vEx2>Z|v-~w-HB70<cmehC%jZlv5
zumqy#mS}l}2vrYmXgf%BD^i3<^dX2c$3wTmd_`1re`80!@k3YCM^3Xk*e4T)nUJqo
zhbD0=iUyW+)I_&p8JWp0Z{ajWL?5GBb@rkyg&7T%VHRL{6Ozajl!zEV#4WdS8*gG~
zG6#>=z<r<MV$IMKz`2YzX_^|yb}`tK_+&3oA}qb4MT>b3srf^0Xqps3MCL|4cE(4H
zCzVv`o$6$jw`2{FNS@J<SF)*IzvvUjCRXyW7Uv+7Qc;gM=7w64h{-8bBXJeZP;AJl
zP{R0~0lNQ8&{b5|)?MMl6zGs*Rn?inv!5Aek6fW8_$gGph85_LfgS~*0?MHnMW7T4
zq9H1x;I*M0YN84ho+GNFE6So}RiY;fqYaayElQ&`YNIptqA{wY2s5KM>Z3mjr2pBS
zJ4&Pq)1yI(q)Doz<}{>5>ZG*wp-U>IQ%a@Wl%r3IrQLC)Rm!DZ>ZP)BrCBPbJ{6^3
zYNlt3rT`PBW6Gw}v88DWr*RsmYucu5`lfP<r+HeXbXuoldZ&5{sDb*UeA=g3`lo`5
zsEInFgj%RidZ>yDsgZhjjM}J0`lu^Jo=WBv5DHEHsiID^pbr{Wg$PT|a2V*|slya)
zS(g8*(l{&5U=5?{O8RFU@KP1_m1!f?VC;ntu?iKWN>-FwsXKb9A`}hcfUL@ZtjG!#
zs}M}$=%X^n6@Xz%ik20&DvHR!n~1}yQ9&y3Sgqd2fj@B$YcUa_S`|FW6x8Yr@|YD#
z8JpV5b5vmwskEOqXG&ASoHZ(I?Yf}YI#$9utT9@w5`>knGz~}q3C{Wt&wvDuAbZl#
z2uRS4(7Jln2zowY4XH|0jo1^;Kx`prY=Ve3R`Z#^0)6*lEyxfB{Bww@uyMYT5<5~v
zSd$WLw{BfjWOKM<{s0PBhZ<W{Bm{vvKz0+q@e{AH3>s+zTf_`8(P6%!5#LH0-}nE0
zOkx99BSy-Q5_Hr>+G1|(f()LaMu{gIRpTKuD~d3Q7NqDHj01~A>yE#26XkMZQlt?T
zaS&=_7pB+@O&b$cWJ+0UMptqxjIuf?i!N33bZa3f@kyav;*uvOZn5FEl`<fh2eSv}
z3{9IPS?dfv0T^2pm0C5h!&<Ndbg(~h4XGCm)u@j7@C=NwdSY^V;+PK*cMVHWa6KV6
zS0#QT$#b<PKW3|V_^_0}78l2ZHpfFM{ihJ(aGPpFM9mo_vWC1-hYpC7b=bSFn9CM{
z=e#e6d~&Bo?>BX&F~08C6ib`D=?1lHxDr|8GNAJf-^UO7cN^;KeOh~VgCzeG(U2u~
zW^>}Oy_PnB)H{bx0~T453eKB3<r^5FfWD1Tf0~jh;;@&Kn05K1Hd-fuThhTd!M&Ms
z5qEaLsUW~`XDbk_b@)I;Y9v1YyQ|(cc7OL1OUXmN0l~+RJqn1yr0Ng)=M0VD7UDoe
z;?P9Mt9A(`u%~OHsY^Sn>l4v%8o1|f&p-u8;0|)2vEc{_?J#DmFb?ei3H)GhSA~D>
z$0GyTo6PB#K$M8*(ynS_efU5pe6gHO?8C;Fe_mJ`fyWrA)RHn01?-oGDbh!Rmn21-
z3b&#W%aC;IX$|Z<D)9?BFFCrVc(okyW98}_GZcU_p%3ul51gqkMHc@jR2YgZoEB9R
zgy=FOsHA`!c)^u(1};*ce(V;Z7RdZSg`P}Dhy%6AU~`ZRz882WGK4hinGaABljz!$
zPNNKfAxq7`gYZ(v<8UZkQbfJBuDgiG9EQZoHh)5Dx=>uGQan3U{0~;_6Id)J(bUC0
z@eE*W#y&yD@-_{7qsE{U4Q;G<ZydM-SZfsr8_Mb~cRWL?Va=2F6X#MFdWMN#aV}9S
zfmW1=^^hVy_AW8OhOq%iu6DqYwzQUv5OpyUnf$F$cNpI{5z=cCplpjv8*BPN8mC+l
zsmv6s{E88M8g9W7vMdjaEDpAu(zk;<b{lET*~>FV6TmEh)?ojk#C(8DS!t`I%znen
zj)7v#DNel^qSE(eOcIA8t<b*X5RZn#5CKTe(1P0Xf{t;{PTZvG?5AbgP44Uty!#BW
zn|h6~2df7OtA}uq&<|4(jz|y_4qL+=^}y@{V>)NNbpemks|<4t8%9TcWCVB18yrAw
zfY!Xf763;;xW7HfIecd(9KhBb7vf-Zkz;d3dmADd7s{XyL$<Wg>n9r#1=i5oKo{CR
z@qJ7A$-QQax}AtREn}{1D@xqkau=JaEpy_QDO;j8Hn$J6V9Zfq!6|)qiUvgD^f*y>
z42@t9P~8?rG)S2;%z=D>Fo(n@q1B{;b0P_LuFW(ek#lwzqDP$n!KnR4pJEMwfwwIT
zk6!cLp@|GGcf{CTx}t^Geag<V<Iexky3%kBF(D0zus7HU4T#Va`4Hk|i5bz5msZ6W
z$bd#&Mu@%1pIkI$G0{i-NpXajCECZ5Rg~hK8@QOUy$*^F!fk&8hN0Seibj4C$N<hm
zT+KI8h`;6-{=f`M9u{as<yN#2=4#CR$qyNZ4<BpH&=<P=5Jp%2m@MfS83wX#F=Zk4
z<BvIIeZ&zC%H&sDMN*CoQ=<%RF5G#(J#Q=A&Vc9Rq>+?C5_7&58TOdJhDwN@e}RkS
zDmv%Dnt$3_MK%87@cC#{#<|8^Be2>G5*g#%na&Z;rW5Y}Ozb!nef`)n)vryAPq)#o
z-5OIjEY^~mLrH8E)ZEq&^~9#`ov0pHRN)TNOji7$hpnzx$e^h>%IvsKN)Wy4zh><E
z^y|PrmBJ3~+s^IDb=TN#se0Y*<4*1lcJ1I^gW6v1>(1^0`|aqiqw3!7^G@$Yb?)%)
zc=BHF`_Atob?^ADZTjBt15faz4&eYF?(bCa3(xRo_3sEzVFKUq6HoC>TIvu_u;O0v
z8_)3{_3#)EUlQN(BTw=-^zk5HULs%eE6?&1bMh#kT`J%5Gf(sF@$xX=TrywtJJ0i2
zaq~DITsq$#)(}mwM-{(YU251yF}Pz}5!&)l6ZBU9WsWOr8Qt@(#TWK>E4xfAO!n?T
zpY0m2O<1|044d@7G<;6s%UaRL|G*6S$Af9tkFR+XnSAxDC3o>CMVbn*V)gT2KU+f2
z9`2mjXL5Q4*9Z_NZ-+ny5Ni!_$q08vbxuw>JNHAWV0T1xE6mcaKL(kA1etdxEI;@w
zEW5A224>K6pLd^HN)d{OG0K~GE1!X(m7_+K-1+rMb;0>V=Q4KEip~cQ_yH>T$l=b>
z;LoSG3X{=#tEWNxu+P<ARcpZ)MY5h3VJ=CRlN(uM=im*H(=D+~W;QuT$vlc%#3gsa
z`m5E-f<n4X@(}m%8U6K=(t?7e!aB<${&SuGb{soT0O1V4K!ODg4m6NZ;X;ND9X^B@
zQQ}036)j%Gm{H?KjvYN-JQ&j8KawR)o<x~a<w}+<RU(5KGbX;0(Z-QnwQtqUe@L$7
zG3oA5BWW&;9z~i|>C&YBoE<wx$R8n+^`hBRMsitEl7sgBlShc36q53yHRDP0DYASe
z{UQ5@uh}tYgRGH67ww-vumAW(A$g4HV8VqBA4Z&5@nXh}9Y0Ro>?=uq&GeF#9QYqP
zs8Pm+4Z9iYU6THw9+QHv5y^An<cZUo7V>PP0!51am|OR5-o1VQ1|Hnu?c21Cmz0^D
zCdp`Ar|7)d4~aV@B;Eb%M{>$>?%h-WV)ZK(@IP}`;r=_u^<R{>=%oDpdhRT2e_6lU
zJHPk*GI8=t_WdW7o6w=^E$<FQFhK<uWUxWnBr^~!sxbRzuR+lJ>X@6N804n5Fl6m6
z_wX5yKeI^k%t6|0BhDb<UW7458E2$1xE4cF5wYZCS`ND@8foOYe5QEhkO~_a3Xy-F
zapV~#bA*y9)1IQL8A6abMz3YCjG{uk=!)u}r<@^VAJde{lAlzbB2BXZ_c4d3bFw1I
z9x(6AFG@Z4<g-sd^~`L`r_v%3O{%s`CdG3mJO&wO^5X|gs-A)hwqwww^UuRryb+-q
zKLs^ZQAhQy(~&eiN|_yD`mm(`$y_yQpI2o?wN?h3@zSLpmyyj@Uw;KQ*k5}*%D<yX
z<5k$gIPH{FXP<>OT2f6dNLg#I71pVxoWZtRZ@&fiKy(Ia)um;i$}?P+n7vV2ci)9K
z-j1jxNL_pH#W!Dl_vN==e%WnNUV#TDSYUbw@;70H7iPF&haZNxB!G!4xMGVh{`6n~
zBIdYbk3R-EWRVe@_%@7BMmc5OG#<HSmtTfCW|^@q88?-0#yMw*Sf06OpMM5AXrT$K
zIV7ErM*3!+hi1BIr=Nxz;-U{qx@xNnUOH;6x8}NQul=0b#jD3AJKC(jMmue_*JgXL
zunQ_XZn;4{yKTGg#yju-sNW`NZomH)u5P^tC%kaOJLcO{z!zuSBf$@cJaWk=r}^N<
zFUK6DgDK~{bI(85GjRYiC%yFHHU~X*)mLX-G0{zj-So$UwWfA!h&`#FYyN@epK=Gs
z=he8j6}}{N+BD1`<XMVvDSlv6(4Ssg@0_3ML4G}U?Ju7l*fuXqX^Em7fzEDw*gMIY
zT>n|-_m!OaD#eq|hyE~sz;B74bWK|3D*{papJC*&KBUNFH7vo$^{BTtd9>#dFU#Kc
zB>1=P{c2S(>CrQgP?X*6<R9)p1XuFm2uO5o8H2ctQ<Ra63gJT;)@WZz_@NACw5Kip
z$cH?lpo~Jj&?LwIh{9c5NGE4F1AOh^MpmH5EoX?Mh$MlHGthwy=%GUy;%Jld#FRwj
z^>18XX$M~RK_F+;5HCLDhc%or4txxeB>X7jUXC#c*vP|&aiO8`?06Rg{)05=_(~bY
zVH&&mg@zJShX0(nz>dw(jHM}}GW1c#$vlcaPE2H^G(^Tkn#7LWG9(YbGQ{HDD}ob5
zW!Wm|s|zBdN9{nuO;)oLSYCq)(&)z$uHmGunFb$l@y8CE(WSqj34K~ohBE+@EVD$)
z8vd{WA;h7flAKT+f0?FK22ses*rh%e+Q%H9GDy9of)L8w$2kV^l=1jQ3Vd-CxvI&H
zC`?8$=ott9I)r(laXlp(I;`Od>+;MsErTji$%j4ck|oo?Fh2^N=06(|Aytgy9IiZu
zJ`9SFzc^zVS@|eB=eRsZHY}v|tkVvcvBNNJNgf>n=p6C!3byD|8C!D8F{U|DVMbw)
zSz778ESE~6j%}5;YGsddNs?KPV-=3rB@%K83HLcIET$QUJtl;!yac9I{J@7ZY_Jbz
z>g5>m8&Iz7@r-}8W-n2|2Y>?em2dJToHwyYH13C<z)bTdrYVU%-q{zoYK22Qx#uP)
zw2X3u)TQTXMmhdb4`ryci1qC1EF8s*chZGevw&U>C%PYt9>W@Kk%u=nvrc95<+9PB
zW=SLe23B;|37ByCOEAA8k4K!yuICWZYMK`p7^Y^cuDOhW_I1jlHdkjytyNM>vebVx
zbrp@M-R}DFj3qoNYAcOG6p#^`e{j`HF$~N($68hpr3f8rWou#KDpwHI)hpEGhhFuv
zAHTZkAA+^(X6naSeP$>y`P}L_LfS-mu(iDRsVr-`m03qQ<1YSK>4g3<i?kRpLd*o>
zK2Fq63%j<6`G~D-9~Kp{P6j{vd2299qM8%^!z;ku%mbTuJ~XA~fUS8=Y?eDz=N1`f
z&_$JWNkZMGPQwxZxCSKp0f~LI11M254PB3+!)qSn8)3=eF|({gvMK|^W*ww^;R_c3
zWQ;Ki`k?Pw!AWNP>h~Y~T~t`xIhFvUW58d*sZQ~+Nw^MrAI(VQ@fwU72rD!n_z)3Q
zE*h68j`2dQflFTcDCkt=!_Vyd3|znrY4ltZekoQl!^Vu#|K9ek0ea>#{&|@jX9XQP
z&QCnDVkK<KBNf+V3z>&ZFC!OQWk}YPlCiS{rvAf&jX(mkmxP2^YHd!{bd3$7K+Oyv
zqgBHUu|Ggz17zq$pW;yNdjsoW@R}*klNsh9>RIQ#lD51omEm9&SxtL>hC_-4B58o=
zm9;YZzqZ!)Uu~cz4gosh{A>7#|2+<IlUt5(Ifu4kL!yP_Gu01kh7CeYl6$!STE?ak
zFIX;fR%kxr)-Wy!5W^HHLNo(5!<3)Cm}_jF6AamZ!iPA7K6Igf{7-fa>;8<sbWOcQ
z9D}Z^&WYS}sv8V-OuyS&N{Mx@?<rDrWZ2HDK6bNRz3XR3d)i|rcCxp9R6kdH+~q!Z
zd$HZ^cdrrL>ArWq_q|qj$9v#mq<6m;-tdQ45a0#B_}>s7@sEdm<Xty)##i1(W|w^C
zHNW}E6Wj8i2ae-8KYG$<Uh$wueMUrIde*nT@25|F>?yK(*Vo?mXNSG)b^j3B-`@AX
zmu>EMKYWGs9{9&cKInu`{NWov`Ok;`;g-*Q-8(<}*T;U_rceFYTc1JyFSMOX@}ZuV
z^yA5Cmj|kq64om+g&8S<BQmTJACj(wv2e67YVmgx)9gPfTQ>>zs~@Czi>-T<(=v*!
zyC<Viqavz5lW2yhOEm#h2~ZN6?c+Yw^S%W^1{zWo4}2s)@~)P!GPN@;!Z^1<^FNnZ
zK(|04x$uf*c)*lUEPP16a&U$RI*D_ji2xc5rIVOJXrp7$L8OS3Qo59|qOX*|hZU4S
zl(0dc!X1=QKch2^r}H)%1VEX=zzqDn4O9?hAcQd_!!hg;YgmFt5Fg)}f+Z-SexQOS
zID~vC!RCOPaVex`KnAa<3#dqobMdxj*rt3ijXBbbK^ufNvlDUunxmUYKW^F#4iN`H
z%m+dAsq&hmWEzAriMbD%A+X3qwb-VOONBvD2D9>uP+Sz`$OjoLuWh=CHfyW9=)(?~
zBDHvg9AuwCL<bu{p;U+hy%0osf(ogC3OWL!`jNRY3b-HQ3H<>@Qxrw8L&P*WtFOxn
zt&$i*oTE15he0qz^bjwN8pJ!p#7zt&SVWIYfw@6rM=_B%OQAS)S-NiowE7_=G}#A4
z%nHb|hDXGo6Ot!=0>_)E3$PnDYVpE_EI!P$7BMVCGCad2$cKD5gne*_ioD2YkcND)
z21sZJJ9vgX*g~H%jYrcdgG#6}A(6B&t$iSq9MUE%WTW8!kwLA>hnT#mxI)QSp{AE4
zlYJBnSyMq2gPy6Fu{Odde2_tTXtTH)G;uhztPl)A1FHR#!He3*`=URmd^FFvMbr3(
z9DJTJf(uvFMXh`(eb6a0Ap}oj5AuqOHq)V=e4~46BaZSZ40DaAgex1kxkflbLCeZa
z(F$551RY|dv%&|eNFx#JNA`&ZvWf-*c{I5AwbB44I_kes^EM5!qqr!^);Xa$dKDuQ
zF|UvZe84IV38ra!I^>Z`0wEEU?8|*TrhMr_hFm-_Oc02SNJ2QnCuxLz$cJZ$!+j{u
zl7J;77|osm56MiHygIN>e8pmn5Dn3!AOa87_^(0#(5GYc$(zVR_0bBlY71&Atn5UM
z#;lWQFczJ<C-4xAR5-?)!pdlnwYicr;EK<D;t*-nMM{ASo69lwp^szurP9cXv4A-k
zLx%%Gi@OXAAi@W-P`OVFklHe!NU27<xV9f^i@%Tu4DBEH6ceb3%ow^TWjaQ4)J(tV
zi(7LBu2_aa8;5U1$dCKR+tI0#h^)E#B_Kku&^RHsFo~xa1S#mF@^TH*P%f$SJl@Pe
z-$W4LjL6|+s(e_2aTpTi{EB{{!zJLQr+G2Sq^2{CQuJsGXJ~}H%ud)GG;8S2)ljIH
z%1dWtQ!!aN^z^vG^0>GV&Iyr^5S35=p-S}s$V*StFt(7v{me2sGY4z9Hmo9$({wo=
znl%16P)JqK^Y|tQZ5{&&pk%2|uz)L+%8RZF5OF}C2=!1w3m&9Y3#j|AC@9hMbWbv|
z!4>r%M-fh?%nt*xM={Ao9aK<i8bSgpDe|hZ^7^a$@==Q0HZK{%$*`iZV$#JzE|OSN
zeA!JZ#XBoK5G*Z2Ev>G7m;!0gpnb3gpO^xW1PUrBp{KbNkwPp&I0hSVNz@9WEy>Pt
zxL5AX3Ve8=Na2fQYA27&LLIV(Mq!@}xd}jZ*mFaVbMlN}vIZ-;&K=?_E8zwdG7XH1
z!K+xPD#6%i3Zh}kr##8Quvm+>s;LM6QmBWO3Q%oOvKTJYDin@2o*?oyvvL&nP!rgS
z!9hqA!8|LFy+nhWM6Vc^h!U*xR1+r}1bXt-%|M2~*jTC<*7Il-eJY1<ys0wLke#eT
zMv9bZz=zDliy$)1fxU^K>c1~43*n3kLP|z|NCo{|!n&h8acw?_R2Fj`Lsu$^eBcQW
zkp^ktiEC(F?BEIVV;bc_z~Gs&X)TE!39I=V9?^uOrz6DW_z;?~+;YKO&b6>nnz66o
z2jK}TXE?*#nX%QSG}kCtD6)q7allb(i?BLM3&V%sZKB`-s{s7n+c8~h$WfjE-Wl6m
zD1zS2g^e^qzyK_w*)3h$g)}GsdZ6W~9p25q+P$Rd4LUzk-r-peen?)=C6+Uk-P(2E
zQEDQli`@YvuBY>h-NoDxwO-V{osAPZPVL<1?3Qp9+_odv+B2t-yBC?e#F056Wyrbg
zI}l}3Ae7(>aQxeZG?fIVz6EwY<&jE#fwU<E8Ay9V3!aVPZ3-+hV0A%Y5Ux5AX5kyg
z;hvdc8tyq8&fy;h;*i;49yT@~4&oz5;)WSwA~rH3PU0tqV%-c}CjLUgjp8fD;+9!r
zDsC<(&f+fyV_Vr`E+#534&yUM<0u(pGDamcPUAO*V+2`aHkKeaj^jJV<Hwj|I@TUL
z&f`A@<Yk#+J|0&q4&+1sMr0M)V?vf4Lr&yJhUD&8WJV?(KW2=)#N3n+Q^;81p5cd<
z@CVpc3>0<=*3D#>_~gUD-;+SyTIpm4@dsT=z>|0tQZ}3|v}G<FWJ)GGOJ0onc|dD8
zKUOY`-QkB3bcs!FiED^qTM4ivT_5yPiT#YZeXyRT0Hhys9=19wQ#F?vJc_>n3-|Fs
zP&*1OY6@^ZiVOV{KurmBa4`58AUV>Dzc{S8khc_(X2{W}hD!+`oS8}HW$tlg3%a0k
z`HG4hhp&hRMEH<#NDGM0hlGY`-}#2GKtm59iF~-|jjrgEcm_sT+=z~jc>Rixz7|2O
zpEfd2e;8hAo{Ss+A}d!ST`_sfy->=eq^p?jKa)s>HuA)r&eNn^P{!QooQ?~it|lH@
zj>#Yvu%e0OkZRvSk4{qR5m}B{PHN6=qgSz#8$#;R2y1;}&7Jm(Q99+#Rq7J$YMoBX
zp#B}D_MMy#WuaC|s8(yWZi_hy>mM2=1+}?BJ4HTiE0C%q+yZF5p(X=W>u_@G4+-U@
z79PAN>bw@JDIMs$^JT?QHf#8XTsnkju!DX;l55DNMxfUv32ir&jzbuSXJ`cO`iE)Q
zpnoWeXISlhcn2f^5@asze@MgBzNJIRgM8raeSqzeyp}5jTQ2#ANZ}I5h6`sPi}F}0
zG}$lo;7n8hJO<Sg#5u|b98-;Nltq#Ng&krKg&L<|($@=7Ckj5OLlZIaVn;z#CJnpp
zV-U>EoDA2}koMu*v4yMDNQGdFf<e(IEICUz!|rulsa#p9pE48|Y;eo~+OrhKaZn~@
z=#Z1(5DeBK1#hc$f?5*KDpQQ$NW|cCpzldZ#8jZlb$Tgf=-a9elYa6H7DtmJbc+Ik
z;D*H?%it?;f>Fxh)Upt-ZECA?;z|T<6oYaLmeQ+6AyOMp>~9h1%wC+$PK?g}Y-yu{
zM=K#~DDEM_2Rk5%XOOb$z>bRS(tn@>k|>HpAc<*UgcAIR?Jx<?{s(p_b7pIVap;Ha
zpn|XeScQ(v4r_5w4N)kq_=X7es+eP+vHEYlK*~&epe?b%&I%FnUJX=B1tDvryg<re
ziYrHqZ^;M^zUVXjw)C?)hH{Wg{FrF45C?^-%tvt0WXZzkaSxJM@UFVk@xYb9!Z=H3
zwWO9yQN_%I8uDvX>Q_xn3}v|?)bMC{H1uFwx%`KHl(k92Ctc(#Im;3`QucYf3HJ4m
zspUVME%F+(lS@Q2rtAwjo1AhkcD}%A9Bl?^(5;t5U2R2C6S<5EHl<zGa-QRI9l4-0
z{Ot2vg-0t2YY1(Q<cBMp1}RH|G+%8&k8|7phx2O(L>PIJpz}SikZB;(XXu@L2$B;2
z3Ul9ihABX1U;#JrA}{mOif<E#%A#P&gfUFtMGuUSyz=xwbrW9U3@ov;^@uCiP4zKC
z)>f}3fjhLbSRc;lkQr)*kd3TeC(l<2pkSwuLCDq3P%Dgs9#(_yFnJ>rog)5-%!6~J
zyXXtSBCn-Q#15wv6e9#00-teVdT{3z^JJePkFBcgjBt7t9COfi7Y%SsIh8XBXxt1Q
zBKKxyo0k%v%=p;7KXFLM#+<?uA7c&IfF5rKSA<XaVq5sb@N)CR2{DJVCuxf}KLm{@
zi9*jML0^KenDeht^OFCElP`&n{0BVOXzKU}D$wYD&~s&xvv1^l^!Ty@>9n8!eI^^o
zbW4YeOj`|epp*0jG)gtMPnV5*;*b55kG*nwYWkn0mHNQALiWM$2ECAAy0kZH53}+L
zfB-e<A3rJomPI=#?w`D9=m`D$hwR`!c?<mw!WSjqzhmDbGK6?e8Nn#~BA%Nl4`RfE
z5#`w!hc3#(V<(%D1o@BVKWBtiMzooV<FRr0P9C#%ETO-X5to%a813Akeg2M>YX<RZ
z$EOMLA-e}rp2=eiEuOPR&>%mZ{w5wAcP`<}ghl^xbvEwb!=O6<0uC&AFyX?64<k;j
zcyY@p`2IFaXm8-Ld{_6Ts`~HoRi|_L64GeZtUZ$cHZo4Fdi7st0A9oYjxGDOf!elj
z<Ib&nH}BrQe*+ILd^qvq#*ZUUu6+3H=CWBskNy`K_3G6hN3`~>pQDJYI8H(I@0pz`
z(*EV6(x?%neo7)fJ9KEuUMhM1oxir^Q1^G@{~hvIKS)6GPa}35QeY#8EOA~tNQ^U$
zd<9BZ;bQgVq);=195cvX9dgJ~M5ht87eaVVG!Z{h*maCqd~vvyi^n{|7f*i0Wlt0?
zM&l1%CduRCAdPgiPcs$O*cCrBvUCuKFG}Usj3+Jg%s(To#ZVOEEZN~ceMv--MR*Mq
zq>CSo$YMtwE;J&OAYG-RNhE4{3?WW|w4;~!uw)ZD9C|2EjH9{#xK~7f@_3G(2{q$l
z6lxvgCYx&>69qv+?sLvU{6MsnPB#6M%09~&%1}aNxwsHMfO6zdlNQ1ntE{tjq^CD<
zrqba=jdr-#IV^2>Oomsv2oXBRAoJofgA76!t<Nsznsd%ASFN?zVw<hD+j85jZqrT+
zt+;<#ql~%dnv3UR*PQeWh0wk8jJ)TKTd%$MK8p@V&Ja0RW%&N1%uS`@tJ$pQSP7C|
z;yUB3YMKHZvBVOmm6$V65j-)#(t<0Sw;zKXvdANo+-=9rX`J$5?yUE2bosz6qRKPV
zY_FLD57uzR#|k^~#kAVfW<*Dgi`{BQ*POJ{hoOUvx`jFa!{gHRa(psvC1ahn)?0I}
zt<}#>9k$qGlU=siXQQ3A+H12-Yt>eF9k<+b)7|ygv9+DI-h1=ix8HvQ9=PDEy?t`s
zha;Z2;>q0&+u)Bw9=YU`Q(n2{fEV8J;+u2c`R0wkcDd-IlU};%r=vc4=HPnXy6dlF
z4LSg+(_Xvnx8t6>?$WJ3E$qJoAH21)?_Rv|$0MJ-@_hGBt?<u7A3blxFJHa&*JGc(
z_Jo5jz4zZgPyP1elV861=cC?ybKtYzzUShjAHV$b(_jDC>d)rB{`=Przy1FMFn|Ia
zpla~vG5#Sifw2P}0UPMR2STuZ28@jYD`-J)`7eV18r&cUJ7~KJ!sdb^9AULG=)n`B
zFoi1Y8wjsP!WY6YI3{eHGO8oA!n8wX8k9#=K!T2^{bfub0Tu63qn3*`qlbn;N5&ZA
z62b7pVaw2A*rG_bpb_RRhT(@ZWX2C`h=>_0+>AAV7?Gc8uY~}JAsgHHEe8568seCv
zGVozXqyc6cXd0l7sOXG69)ya2IT1)6gAa!x#u-Wsl@qOG6QUhv8ERpTKh$!LCZfY2
zAd!a|17i<FZV@i5k%uP52C>03gI-5sVo%ickf^DpX;Di^#ZuS|WJFDnUD=)*-RMg<
z&X8@^8K%+lag9bGfg^hS$287Eg(X;nUh|Xx+NC)3k(nrCiX&1>L;hh8Yb?u4J@H2>
zqCk?Fz~w5B;>)I@L6#eZsu^nfhdd|Z4`o!!P?b_fr}p8Dec%J1TMEh`boLZvFl!%H
z45Y%MFp*`P#GV=XNfZXU40GBjpM0r^GoqlGs}!_U`?S%kU}UgbAp;$!S_l)>3Cd%1
zlq9ISQKjfo(=$5sFC#5Yuh?0sn;?s%Cn1Z$E=rPfRO+OkLXkN;)Ua;;(3>Oy6-KNg
z$`gW0h)-crq+A-ND_KLGH|!`}bVP_QYDuY(>*X)o`odtYZJ5?Enl+FhjcZI{AI+S`
zeHy`t^!!JD{1}8jY;qcF1nC>A5=Te>Wwt9zEkhj3!iO^^5-Fd2DKt7u3O>wIF?=-Q
zDh^9UH1Ls%ag+uh%?K+^X0i`qb+(^JB8xcsvXt0@WU@XfESa2Q56zCF8C;6VZ}DM}
zr5Fhr_&~@^YWvVHWkf57?d%@4k`H?vgR%n|Q5~I;p_yEFBD3h{ZIkjBb9UC9Gzrp|
ztkKzW_yix!$VW<4>#Trw)*4h1hoJm92*z5ryPBPdGw?B!gVfQp8Sx2VwAd3uh$AUO
zrHelzToaB=1}S6gNU0v8+JT_My+y%Fs3Kh2VRg3=E8=e|#IYpCnq+cpbt{c62v@bq
z^*SK228EsxAtWpzBK_h=VB@#{lB;~<w-IT^H&pr*nL+dzvk*sBPNc<&prc01N|qEH
zT#u=!1+*MqYFzk|tRCgWF`D61kyhESV^kG1xt*j<ih_=Q{o@`EJ&Qw*(FkWq!zH9D
zk`Gz(Ty$(|5TrcR9_=xaTE=*2QESo@kD(6^?IT4IDUF~8L6R8TLkf!~bkw$lO{5GW
zS+A-rX;Xr+RQe@SW9|xNe@aBKX6Y}k+O#qpY^p-`jHn((N+&nyDUc))N2QjDiY?V4
zoD~wEQV=se`Ae76%D8(q-gW|SoVFZOhps)2(0ukXg^2ive#@W^vVcO*CeuZmXH-Ts
z>S3oSU70UhM#db);b3+DfO#`Sy2}tTwhTg8BQidUh?-BrW}B=sNpJ=gnDA|rm5>-D
zTs($1-jdxNDbyf?{?|V;8<9g_MA4Rd_a+}b$w&*z84PZTCL0wE?<S<Iy}sj4hAQel
zy;d1Y*$ZW9BCLKR8yQNO3S5d3nOFx!pBRyOS@2Y`C%Q!?x$02Dx@ojX@xzWwBDM-E
z3z@xeMOaZA$7ull5@#4}GS+a$w1LInNn%@aGv+qm+vjbxfm^vCdC)c5u>`$-BOiHf
zL>}~0<nuZBDjGp-6cqd4#)3pg{<gt+tgPw&PKL5}DXnKivkW3FBSX6+)w<KW@SY<J
zw-Eo5#1DeYC^Sj`w_8cYtJWc~r{DYFSz7m%LbDVwJ$FnP`G*aZ(a}Z^;=0lAs1GwD
z{Ko7BCaC2JLh^fF<u1kDLZSRP8fIE?{K~$$Ep4k?YmyC#Lo2)dlWLKH5!ITc^`2FW
zOPFy(xR6RM{o1-22}ImdXEmJ)EsHon5{xX@K(rWHn8?bR#j5xg_z}WsD1$t?*yTl9
z<m_GFiJ<iS-Pr^lT}gu@9Kv3>!(Lp2BJ=|_Ktnq`p80%}59Py>;8Ii^i}R_A)AYni
zgjja;#L2}HvYbShOj6Y73_l3o8667Sxrj6PTbnQgmB7>y1>r(nj6ZnS%<)Ck0HH#(
zM$hntTHK)jKUm3I>_ya&#34Z;I(Sp7kOUVwA0RP9LLAE&E}5`Q(!8DA$(;nTfKpS{
zAzfUI4*pY@Afg$z1hP<JO4QI^L<X|#i^3pbPrwvhxFJJaL_$#Er$ogSM%9R*or@rY
zh$Kr+bW;k6A;0OwEL{u&;*2`Lg_(>ME+qsPMME>3MJ8rj<BZ@ik{}%Q%|0MwGA5%=
zXvbhg10vv+%WRn1;KVHD%&pmr+F|3psFj5vOe{80tjNPvr3T4O<6(5x4P}uw7Ta2B
z8!^Ho@RVTXP(veJ!#U<nWvSy|=u5<S;S)v-9>t2f_yax$4nFK7VQ^6@l1>Q5<3o1N
zJR0QxL{el$TBKk&Bt&Xt;z;C0dgMofBnoBZMv~;*bYw`PWJ;>!|BPfwy5!cJ<Vwoq
zOw#1_wB$?TB+0~NP4Z+<`Xue#WKIg@$L!=!8s$+U<>Lh9P%@?07-LdGWmHO~I|^e{
zS|!L7<y30rR&r&^Eag>#C30kCSCVB}nq{nfWmu{ub3El)y5(EK<*cOTTGFL&jAdNn
zWnRMNT-Ie@=Ehy>Wnc=XR`R7^8m0jN=3px3V)|rZ9%f%A=FGU49sMC-=#qe#Q9r;(
z;z^_Oh+$=pjjtufHVVeB6{JqIg<%LJV-iqP{F?DN=3~-jWU5Ty$;^Nl1}k*tKdi$4
z9_2#~B9HK`NH{JHS1iT{9>ys}ggJm_V2~qg5>Ult+401tY^o(~rpyU~#4{iPG>nIQ
z<i`{=0wO3LeYC?~^g|xx!xBtEK9tdKT90uOgk>O$dCiE2KuoA<oRDxtI3+|lJxNs{
zibEv}eX_}EpyFoS=cgpghZGB5%t)j;7{ob>zac}XO%guXfQNL+oe+yzTom|C3UtCI
zhYZV;;8U|O1S(d9kd)Sj$^?hZQ&2Q0Jw1tua0n<3PIX!*SYoHfXlF$9Ly*10ef-1X
zorE%dL^JjS6Z``!>_s$`1AJDGqy5EatjKG91tD-sPdJOG98x!(#yCh4J$;D(LqLQ&
z$W)D-#AL*oO$^#(=!DN<go&WvE=p+A8A*+lh8D3BNI(o!T!}JRX~~7j6I~{W)=sNL
znv!*?j?hV#0Yz0w=T^Lm&l%TKSQ}mpl-|8#kAiA#{OH64=|2qVKfJ>d$V-5X!yz=n
zc`Or?Iw_R?gOpO~^6Z*UoKjh!on^fio)DZTM#O0i+9lDGLrBI~Jc2(k11c^bJ&npB
zZWmru)-iOMW@w7Bo`zFQsF9#uuVER%1ZsVfgd0ZG8CjyD7Ejdt)TY^!Jw?H`3Y?f$
zg>=@4ul=L7Qk$j-QQm>zr-o{ej;h3zDsC2OV9-Z1{X;Xl!+o&AN7yR=a30T4poBM6
z%(lKrm-@t2-9?49;+7OEB_gXgDXWu><Fg)#pvoyq=wSwG2BJZXyy6AW2^U^~>y?P>
zLO>K?bQ4?*)pM#V?P!tATItZnYmCXmBeY_@#?rlt(r08+rYgk85+~*WY{1Iqz(!1|
z9;t$?hj_$CG}ysD7~VMK0}@2TA<V%)u)`tjgRORl^^ir1js`y2ML}gOJb4pL-G#6O
zRmdKzlYP==Ji@9>8p>8g6hzImV%OomtiO3$y9R|od8^H8k)Q~Tpo{}qz@0cW?u)>d
z;+j{`=8oUmzy+cRr}72gRs>yC#bn5Y(`Fvu8sL-E1U><+;P5E_)(WN80!$6%7!^51
zKHv$=fP_=*14kfl`QU>N$xKnmOq~6N4r%7Bm{B|GQlcIP^#(@ulCJJ(uVt<Vo|I9U
znX2XNF7M)`??NXw9^3cAZ#E{V>Rhe*`X&3uZ~p49xP&iN-i`fQC;sm50244T)h__g
zW?L5U0y8iKr7r?+qyRVY1XJ(_9WVrkr36>-26M3JJTL}7qy~5J2$S%RUN8t-r3jbs
z3bSxNo-hhCr3$z34AU^#d@u|TqYT&Z4)gHL+%OJ{pbq!&5EHSz{4fynoe&rC5;HNZ
z95E7an-Vwi6jL!{JTVm0m=ss>7IQI1zAzS-q!wF<HIT9Yd%;To&QAj(MukBK8bJ*j
z>qI;34JWY%KX3_C{1ZboXBQXJ_*^j<|B@J2$RFzHYQ$~%h*B#GMzAUjVdy7oASXr=
z0vx+ZJGQYUCx+@NOw}??;Xahp4AveKaX3NAbolWX1F}X6vUHT{Jx0WN<bxy7%QajB
zc}7GnUqjs1GJ0MEByh6s$l9;rgFJ*HLCD-)$lOB2lvT)_Q^*|M`H)kniZe{o+${`4
zP+^QEb9NLnb}7TYEKDU87@RcoRWMeY5c4E47FzWL6)qt=%Ur3D1rVYGH3yMBZ-&gB
z5n~;Z;!<lK9|b?GvooWW9l7xt$=tGTu0wU!Ac*q+5Dyw))N_O(^j=JoJy?d!=@4a2
z5*N9b!|5~S{BbI`(JDtrsYb&`umd8v!xCHr6%@!4IKng_0W-NY5{O45xbzZy!-G5n
zCD%?ccT;9`6x*58MU~&}Ep!<n%d(70LE+x|naW|&$co_7>xypvDYaFL$dV-3?d70D
zJ+JdcL195PYW<f-Xaq7i^})#l?{&mgXUc_6>x!IHT009>M2$BrNi=i_^AQ3!m_&1R
zg!36-;^J;xQ=dE`5+p`}(msM+>w{J#BoTK=PWh1N4#X{W)UTG9+KCcIMA)*L69<Y`
zrHC{tlXN_qG;|c~eb5JaT!S@;N8GmO5^x0ncN{6YF#-)@k5JnMN+<)Cj2S*Cg<4F+
z<T*nsm=;I4Tk1|xO3a;OtXy<o1a%KpWS7*DtVmt(gX$Hk9f68DsESe)Zl7p`b93pV
zC<XfQn+}oKzpQMi7)n00B6ANEI(&nJg&o{ME4?bWN7O7AQDK}p17vqZRKQ^sOOpC6
z*(pj|Q8Y}J!j`(&Q8Uz?rr!52vyf`9HZis~YjEunj6;w;LnDy!J;p5+tfy0S$B^~5
z#2ycDe^qIG28Zp_izK(=%G{;3>8mV*1tQfmvsoaW1EXrh&_p&layLsf#6s~JoPbKU
zIuwmi+s6&ndOKepcht%SMO0ALv{LN<p|nY4A?<#{tFUZ#MSO(hnNu?#i7`{*U>ypA
zlh}fDv9HB>SImN^aj4=ZNk=hml}}s0@N1cKIP-Y;hmT;0uLjq$LxU`=c;v%gtav`K
z$9RYbee?r+`1bXjNM~V&za>S6X~Z}b#rbta4o06Bc7$47-%EJPIFeD922#^}$ws6C
ztVe?rLWWiRmp?=nltXAfbXI4bgr=ASqZIC&<wNSlmN|Rjm*7KZ3=yx>Q|^_kJ2?$m
z=);+JMurK>f48}%wOA1DIj)epohx`DTlNt-OJzY<iHUkgXhs)FZ#<OidNW{)IhwIY
zvI$ouqrar1s|ME|sZ($#ZvTV-cm4wvoCFmhK_hfWKTH7<^oNWak2=khqX3IXdB{v~
z$U?|d;;M-{-J6s<#YI(xt!q=I{FFMW2$LsaMX3lPy^~!eJE`wTWZM*#D6T>1NKOsC
z>dnN5MD?e5)RI*cW(?Iww6#Y?%50T;NnljEYg|QHd5w@5u{ZIG44cvu0+xaNUZ?|0
z%*2e=%DpWKA^0LaHGOIiJi&*t0_RP?;r$$)WA36(h*1`v@p0`4`$OxRa&;C^`^`wx
zy$BgRRIVoNEQ=-we(ESPI*zCZFZ$v~vE5I8=X*X{X1?ZUG3S4N>6?CPD8A?`P~)F|
z>sN5<t3Cp;zU$Ne0>gg)?C;O)*Z%J7@9pEh`{+LJ3qR@l{_nF-@DG3TLuc_D|Mwuj
z@<ab%GJo?IW8*~s^?UyGQ$O@PKlXdSTWbII3s3idfBAQ1_=~?hlD_$~KMkXQ`oj+S
z6Gk+ki{!We{Zr)o!@uju|6o)mK<u;jk6=NA2M;#dhmavbX#X0GYdDc&MT-|PX4HsJ
zW5;FUI))TEl4MDfCsC$Uxsqi|moF{ib7pNJN_zug=G58H833O@fd=(yfM`*pN0BB~
zx|C^Cr%$0ql{%GbRjXIAW|b<GYtWrv|5>x9EE++9BA4XLIOShWuy0!;V|dJMNM{oJ
zWt1neB3-zD0S6ZUJeY7{o5%2>BV-btw14)>8kT&qXV<P;F=y7inR92)pFt<JY<coY
zoCZ%H>^EgeG{@GKOp%!O-?JsOAO2gl(6;T`yq7$C_HUZ)Lkq33mN>1E9f7yimUemU
zU$bL_2<>ZTW6(Z+*CQ_*giNlpWP_>?>TWN}AaTpoI#Vz4*!jf-{Y8mVR{o&)>hnQ|
zyM5%j4kYOiOi;lE8HDSmfBcaPzbKB0LK*P>`3}2(?m5Ole)JQ^o<S;<sK7x|Yev0=
z&}mN@iTdNK!ILT*EvV3N%u&Z3dF&B18@ZY>Be94aC^dto_@<v{AnE6jeDawhpR}gQ
z;~#er`Nt9ef~eSMnk-@a=eTGf*{2=0n5+#EcaVVcI3~@^1IjFgEQz{h%EB{0`oz)a
zm}r`jOP(mIi)J5xKtiXiV<cK;9D9)22cPc#{O6;BoGA;PNac|$QhcoOhtYqI5r>~6
z>r7SERaq^qnaCiFLL7Xezy}|?N-fkLLh_LZJv<-FZctLi@h7!J2>~&mTSfddin>~*
z49FXOtk&9VvCX!#X}yXTAyiTQr=KMV!Uqy_4N5B_g4o*fA1d;pf-iE9Q;5sj)N&^e
zeF=JIAAgAp&Npu{x>GHA7JK%eR6HEyLcXYLrY3Z*YoxkH$2kY5QvG_6AauU5l)_`A
zAT^5rjTc(RLTCwY+2xmErU;$x3d)Zl>PX!OXMdEjM;Qp|diAlgY!)w4gPgfe3Vba7
z=Nxh5IWQF&V@9Y(Zne!?>#e!gmRq1=wq{vdISTimB^GMuTu2CV=j?nM3Hcwk4q-Rm
zkjE8spLNCj?H_pdwGyI#7pfA<=&DA@;K$@r7%^M(0oEV%Bz77ZnJjJw<8vZowByr2
zw)Apa%XMb4W6CKVy~J5>-Sq|$uFGapZ`OGspM9=fXvktMx4@d@QAVbv@B2ue$fkZB
z)31l>+WF_9kNzs=eF|F{^2iJ8pnQ<1EjT3Do<f>wx=*W}C9X+ReDcj)VjL>EKaS1+
zXOOVNZ@~LOVthLM9`_n+=Ab-+$OS%(TiDN<L5N93gFVX7Pjwb@jzQo96q(D8qw*t;
zW|Zu61@Tor*rP#0WH5oGLPmb9p%?+KkcBPGi9Kwf3}-l_W`v?$&JxHCS>-Ng65I#x
z@*}Ef_^Kwmy447;Q=wv|!W!aX;nk)kJt<C+ic+K=0K)bygg7Q2*SLn-#3c=BEW|PY
z$cGpSaz<&m?H|{W#y3L77cauij0EWi-o&^N#Ho>Gtm6nrAf%R45yTqK0Ew}zajSm-
z@*n6(q*{!%tcCDnCgs9UT@ty-N@@}(r}EBB`shMYj*^rWITevmW64Dl(vT4U0wf^C
z=8xzMgpy)2h)nPS5>RPSA~K=L6RB54VGfg+)w*KLkU<D#E>l7XX~Yu9CpVPLj|y}u
zrAk_)j8y#Wn%(r~H^B)Z^;{>E%7Y@1ikVJzt}`>oETucHfw+`(@fzVoiA)Y;Pkru_
zpD_bvDbHymb`F%F1!amm`<YOME|j4Sb?6EMIvRscl%fMg=tD7@QH^etqaB4wL@iTM
zk&d*A7xm~#QJPYfu5_Uwy$nfV8dI*Bl%+Mb=}mE((`dPrD>C)zPpw5$oeq_#MK$VC
zTf$SJ0F|jt4UJHd8da%Im8wQnDz%)NRjp<Ps#W#sSHT)qhF%pYTQ%$dS+_zxv96V^
zZFTD?$@&wt&XumBQR`drnpeH<HC1tKUR?n@*RJxFu!S}3VOio=00fq?XB{kJAsboA
zPIh_BYwTsS`dG?tmb0B*t70)5TA*q+Rmv!mEiod`e#q0PjLZ<rTzimm#&#sMm5gmG
zf?Ln>wVVkBt!RM@Q_|MyNT@Ysmh!O>Rxm=R&GaCl?4g!sNOMAc<i~vwGC7vfFeArs
zu1@k<kzIXEQX!jJ6eOgwL6n7ayB(@}!z&VgNQ8G8{cUjZOVQy9sYnHZ6+-eMqlGl0
zOnD*5IL5I@86mhJP|_pS_9+*C=mQ_oQOh!pRuIzVr!J(st|~YGOf!DqV<Ce&5b4Z<
zVuB3nm5h{>LHto+2ra}Plaz6}UTF};w74KIF35BjiI`@X$}h(N;m<$>H23BdQW?VT
zB1xxWTh(N21i{k}g~v!0<44M_-Lg4@nO`v%biXqKS3`QU1hzS53WpfSG(tv&Mm%#I
zuzAK5*!GM=_=Zhy+B3QOc_)Vr;!(+Z1*6b04pChw8XPXjF&O<}Mtuhvsc7_i9ENBM
ziH@8zWAu-sKtt~yV=*e?W`-brjBm`0SR-;EeURbZ*)3xq;&FzkVl5X5I+re@8V`jK
zXXJt;*;2h-GD`h{-TX8x){BvkGW^p(Qj3ZZkFpS{MTg=4nx%SCu_m+$y$ejsj+xx+
zEOUdz5)E~iC0yf5+nU3&oNv5CaBj8+bNPXYehBUvYZRQ6qC{PL-bo_pXavHXHjr~j
zL@hIOG|)KW9TI7ZSCi82F=%2sn~j%L(NJNsYbF<tI||4@HWaI`BbPrB=-`n-hCXaa
zYkmwzg*X(rgn0H3=LX6kqp}o)kIm9tRhM?6vfX2PCgEo_!!fzDS+3;C5p)pG%210;
z6oAgU`<9#Q!aO&F(!Fl&AtY~$gts;1-3~h0n=g*YH$kQW33sq<Zo=W)J{Pwuglo)c
ziuTZT9{!ILnaT!O|A&0Yql}At7a5I)E;nDLr~!um+<=E4N978#495QqhN(+=<D*tX
zD|<&S=y(J{B!>Bd2r7x_{n(Q$h5D=q9i_3K(9LSMv!4CT=({5tp)_=AQF&--O?z7C
ze-6<wcb)lD{Q82<EZezBBu%ez44nJnoYmC1?M@o-8tHzVItJQOYJt?=6+VvRHF6Mv
z=Lo{CJEBH5Eg#ywRE;^zkE5wt@;aydh!%oTRIfS?L@gNRbRq-GAmnlsM&?TIK7s~X
zaAp?7p}hppKYr}VXpQ!2s)S(7hHwT~B!Y8zC}_$8hzNxvjE*4MYsVZ1YIrXSSgUom
zuK8@xd7e)}#D;9jW_!9PUgiwmxMzGq#v0`ROg7MtAhyIB4&e~CWbO#b4w^8b<f0kO
z4;jX5L_E&#8Yb{Y%~TdcF?7a5LWM3UZB(!=X&|kUT#oV%&qK;$0CCMdoPmJKFxD;%
z4lRX5iVT7D5FI2?B2r-=%t0bVWn@I8Jv<};jg12_3WoTwCT1rD34}t{gPZ6ggitU&
z)(}7bE)2iWQuI*y#_a}8ai;F-Wuos}kb~|RqMpQL_8d`2YEC0~Xcj$-yBvj-YVZ_&
z@mg{)L3oe{8^Rst3=zsH8iEiPy+yYsg2b3H7d_<EM5z~l@fvv~7^86;xv?8t#u~9P
z9G@x`y|En4@f=?U9K~@RIYS%K@g3p+F&@7{9oexSwZa|cF(37DA4h^7?eQP00w4Kt
zAPKS{E9+|jG9fWTAPur19r7LhQ6VMrpvdtdE%G88G9o8(BRR4oJ@O+#G9*QEBuTO)
zP4XmBG9^`VC0Vj1UGgPiGA3nmCTX%JZSp2@GADI%Cwa0beex%PGAM;|D2cKtjq)gw
zGAWgEDVee<o$@K6GAgBVDygz6t@0|dGAp%mE4i{Oz49x;GAzY%EXlGg&GIbKGA-3|
zE!nay-SRErGA`wEF6pu^?eZ@1GB5RVFZr@B{qipXGcW~nFbT6T4f8M&Gcgr&F&VQl
z9rH0EGcqM}GAXk%E%P!lGcz^+b2B-!Gd=S&K{GT(b2Le_G)?m~Q8P7Fb2VABHC^*H
zVKX*mb2e$SHf{4ZaWgk{b2oXjH+}OrfipOTb2y2!IF0i-kuy1!b2*u_Ii2%4p))$A
zb2_QBI<50Mu`@fhb33`SJH7Ke!P6)v-~u+F2Yvtu(DMg+U;{2-0<>j3%kw<bb3NNL
zJni#7pNBlrb3ggBKY@TfeMCR~b3p&|0`T)d5tK&|Km!Q0LHSby5CBIO)Ili}LKE~t
zF*GwUfI>MGJuv_@Hnc-2^g}bWL{0Q5E<ip-ltO>NKsO^rSCm6r^h9a2Mu~z!V^l;n
zKr?VOM>%vyZ8S&|^Z+*hz(-ef0}dc7h}1|$6iJ2jNyGC1RFp|&G)b*ON~u&tf51wi
zv`e!SOS4o<xl}5^G)$}1OVQLii_}b;v?|t=O*wP}(sWLvvq$0dN2kJ0@6<tolurFL
zIWJ&OSJXvOR8U2fQ2#VhhjU5|wLyO%Dj2m<2lP=DwNimIL?v}Zp8``ewLwYLQb9F0
z5uj5$G(wqTR7sUWO*K?ml{WP>RsFM1mEu)l^+8+pR%NqRDYPkc)j@IfS6eesdzC;D
z^(cgOSpBnDfpu9&^G%VJKjl;@ob_4JGg_JTT1Asu2Xra4)jzTITR(FG_LK;eflA#I
zDa6%C-=JLg^jyLJ^<6RZSi|%V_#z6JR9Ou`USre}%H;_J008vWNAVS23HC9k)kqD+
zAnesht<@+FRz&%=T(AfL9`;BJ_F^To2dI<?AS^<tv<H$xV~vyu5*8m`;P7A|OF<T6
zS++4FwL>}fAn@S{!jw{v;$>s>5X6B27U>0&1_*jUWLMN?TefHqlSzxfEso(%lY&iq
z-~c${Cj`I%C{}1Y)M&BRFp;*yXx2=dHcWfq4PJmc0Dy)7z*c@@MYDEo1#@E|>{i0`
zYpL`Je8L87;2#*kYzg9Q5ujqdm2CmHFL8E7A3=5&)<=o9C<d286X74Q2p_5kAvj_J
zIMq=D_j2|B(rT%cUJD`>m~>^2LUUJ?Um4(!u&5zkpmGTmbTPMe=hAO|G-eMsM;o>%
zVAnzU^#ypg=l<btcb5Tfw_06yc;zx+wH05D_ecc*1`Oh4Pj+_!Ky(LmV2QVS%`#oP
zbwAxzJhSu%kd(Xr!FlnPR0KeJ{d0S*H+|1Cd-;=FyY~SQ0Fdt1ck#ghFko@_Q+@Rp
zErS<UYu91JbO#*ZY!TuG9Kd}0^MChufxR+$hn0FASW7qHUkjpoDE3epID^BIeSv^i
zYjy(w;01J70R9yKc0fcmIEB5ER(n-elY)g~v<Du*0caQlFo1>;*j80|hqDq@wRKgM
z!iQDowg+}#2Yx_3bC^GYn1`8oDpglkKb0w-xK^XMiLE#)@mEq4mnpKiQMdSt!I&u{
zI8&(?DaKe*%Q%eHxF}&*QeD_7+PG2Qc#Y}!DEk*q71$~6m`(Gzj{R6D%d}Isv?>BQ
zQwRBv5!omU*-#Iekh{2h$25^8IVhJ@Qk@hlD!EZFd6GF<DC3w(=h!Mf*+@gVlTCRi
zVH8eh^hF=JLs$8fVHqf=I7h2^GiEtPYdMy6c_$|nl$W?OdYP1ed6$V9mG>AxdqhAx
z6q$>;nS&BO&2vB1lReS5TA*1)r@20>A|L<&A^8LV;Q#;tEE)l50DA<i0*4$N92XQf
z7b!F-7ZV^BF(4oyBrG&0F*-6TD>N@LGcqqXH#rv=Qy4W!96VAFFLgE;QYal~C^<+k
zHEjTOJOg?|Dn(Z+O=K%Zb}Lb9Em?OsMP@unc|25VI#zg63=C8nAYC9AN;EfjG!|+x
zGD8hVOgKwIJZ5b@L{UaMLU<Z<N*ZlUHG5$@PfbuwRBB#hR99tkYgA5YS!HfyS8s84
z4l|7}HlZ3#nlM#}HC?JMV1X`Wi70EFFlC7{Y?3o@n<{dzEO)dwV5>50x-@pCHh-`V
zY}gig;VyL8B!1vZSBgeSs8eu}QgW(td5CU%t4(#-Zg<!kfjS+rFExifAiOpZg;FS#
zLNbqLE3Zg1yKEf8H6+J8Fve0b#BWcHPED9^O}A4~s&i|XRBn)Ral2D&q;N~aS5Cxk
zcgt98%5Wx#l{bXBGrEv9s<;+};wymOIgG?NgWNii%siOaIFsQ&v&KH8=|8COF2#~K
z)V@8}#!r%sREDxwtc+Esr+9^vc8#rWv5<7NvQmlHPm|+TvDHAN>OrphTBPW5lF(|F
z;&-LcajWQ3%#c{lvvkUlZ`P`H#?pGg=X%BMddcm5<^WPat-sxfDiNDZ8;?>mlx8ue
zT{f#`HHleHkZ@Csc5|#+V6AvhrgCuOV+rPVDfC%V{$N<-c5#V&g`s<dj(69rd(*O?
zIg^iClZ1AMsa1}uZ?T9~tBiH6q+PYCbcf$jh|+q9;8DKVUA5eP#*;tyxGu?-Q^u5W
z(W_X>s&?aqf9bYP;<s-9z%IbrU&YyPj*O6pmaLDklar;jtCfwUoTaj*n6tCAjgr-i
zo8gkM%!{<>v5?rUo#3pv%&@fOiqVmj&8?B*yRXiVvdp)y<+GK?)R@TYk>uBm=;XA=
z)v?j+wCTvW<@3dyjm@r-%DAlIk&WWJm*l>o$D7*Bu-eVF;^Md5<GbP3#+cN`wAkgB
z*y^z7%$e!Yvhd`%+1c66*XY*e*w^Rw=-JHY)#>o*)%^VZ00008{{RaJ97wRB!Gj1B
zD!ib<#}6MGEGV2vv7*I`7&Bt@(MF=ij~Xpx(D37-h6@Kks$9u(poTUYTFMkSa;D9j
zICJXEX~D>kogXhG!Xsg4N}xy;TJUky;L8k2qe`7hwW`&tShIq(P^3<xuVBH-@nJx#
z*_%SYmOVR=tJkn_>o8?2)dJY2W`TT_LpN)NHgp0D9!$8f;lN}2vV8lKu2_Nw<Rk*J
z(#O{#ie;uvba3<9%%DSy9!<KmObe3Xss`K9bZNa`J)YI@cJ=BucwK+g02V6S+PZZb
zuuZ)9>X^Y3K4!~%FG0&+i++UtHF?D%U@sVio=Cg(@8H9W{~te*y79Qu$z!E1JF5XY
z=WQ4Hto~s0M83}gum5p){Qs&UN8WO0!S|Jb1yGkBM%aN>2Y&-K*xh#7L1^KH7-opm
z0S1PJM-dQZz>p6`;GtT38tTNJS$3(`h7T6RIARfYsAdO!7v7hjS^K3p(O-uV7FLjh
z$<dg41ZvgdPz5QdQ5#{^k(+uFdiPv~K4z)qmKYvjVpv6>Sdat~9?0cQD`vIXUI-p!
z0T6k3xS)kP($(RaE2YL6o=Ik91XxE3<RnHNCPGJsX<qr2m3TJl=%alZ@a0#OS!6+N
z6G947qE_9PNF8D-#NAg@)>kKUU$vnrMtU~d=T-ix|J5W|b1Gy2rmAKr!B==3#2urn
z1}p5aGGQ9(L>=ZzY(<<>wd7<UNib=keMw+JsTQ3|*RdB_yJf3<I%n1otQj;YMbd^<
z>1YO6Q0qk&;3&|q%hqe}y$F^0ZbeYyhtUB)v>}IAc+?>Wh%Ipin2C7M(MAzFf|NlK
zbkvwf9c=)CBAG?J+pMTX3~ZvoK4F{Cq?mzp>!KAYOb5dbL%dOI1s&kS%W=&|kp(4{
zRO455^xQL97il1JA{Rd_=1B-0P(;TE9RP$8^1fNeq(cSWk_JVzarICRYdmwC29Ol8
z4;O(e6W3mwXh+!lZWQv@B>y0<a^l+hL&%6Y|Clkb8cizZxeDzXR-4%#ophK^0WMHa
z>k@Q<*KjqAxTrK2M6X39QrmRE1803O+W3}kI%v<v-LmRq_FJ6i7G;3xYIR)BtZ}tR
znCd|v8)Sfawzc8-L9Q#Sk_N07AUp217v$MM7Zhq+<mLhh*4>bmNxOilr9A7WyaWB*
z?5g3>{6smNm;26O5kxLr+!myEW#`Eee?m^52Q@{n5+uQ&>LXo7G60rCRWCa13(N2l
zVgT)_W_<<d-a+0Hxf0>-egfIdlr~3^4#iIbt|JcYPDjELM&)OTINwbUpr`myZz2}J
znsLmB5l_vqC_N%b?+D_+;>cwphD!t@|FCzH7y^if3P}_2jB~6I{zr97B+i2hP{4!S
z$skvZ41lDBk@OuA2qr54y)qy}GgV}M9~qVUFvvsewSkBN>0be~XgxZ>@gRD-9N`W^
zz_74Uhg*!}R}5H?<)rIB#zV-*IEX)EHLZo`d7%j>NlBUXF%gLbN)R7NzTH)1O&<E%
zY6LhDCpxGOeLGPO2eLzfNRL-_phG9Ymk`&fP&2kESQ)=U$^$0iTAjpL$d2PC>m|Yn
z4BX|XI*Er^5t1NREXbXVSUEa8?Ujj0o}gBPh**kJHF5iu4IOmHfuJ!XQA~s#z6n2z
zU~`$asRJDQ_bgsL3<ysH%xbhL|BxW|Dtrh`h!?+N2Yw1fQt@P_GY|3@HS+3Ul#2@-
z7m1~W9P%;<*<@U1naN6e^rIK4jX_tU(L5C40`!r9(cr?DiP+E%Vk5{>X4gyN#RW!?
zc}eBk=SyzMun48{!R($%kOP3l4pDh&Oxq$<xYU%DV7XLW5N84DMa(|E`Il<Kgrk)@
zsESzRsWfTjBEV??g#lFv09g~N3_ubO*y2tI?eGJ4W#pU}(Vkr9^rjP01g)4vUQsWw
zR$iIxRT>puLjK~RyaGy*v`WbP#HUrbaJ3*_1sYfj$)>H=YO<7tY-}jRvV_#rdt-u&
zNm1&*%;pWGu#N3Og4ofV|7i57MGav~5n{sy_7klm6i5i`a8;QCwmLmM$jTlILrfu)
zv?)wVZ-EG0(SB-3@w;SNd7D*>Tr?55h2Cn2>PoRf^Q&M1s;Ht=%CO)Dh{HvQL!%24
zyjG;Jbzq%#GldZ6-VwA!LCC8ng$FjSDZHGO6+p9@FZX8Ty9h1-C<n<<&4vZR1}H3Q
zzxPY%F3^U!z3oH}pj+9R_{59^iX$sBD%{5EQ(+`X2%G3&eyL``p(;~w!x~kCxGpI#
z=Aw;z?8~t1ws0t%VnVb<krhv5xtl#Na>uHg2xkyXi#4)inX5T)=E=Ml(Qa)GA^{Zs
z^B`ri@|ES-r-91z|00_?^LjnG;CF>^!xeF|t%h1*zfuIW#Z3^A6~*5!hb7Pj(DR&m
zdE!QcG@3~9)JR9wU|!wTL42&SMP`R%GGm!guacupBqZlEV!Ft5M%UpK!sLbc@gfFD
zC53ssCn~Qxc45I5dl>|lQqK!6h_;A*ClaSrS43U2y)Z_e6{<ez$+rgqppq3LxP<Jn
z0EJSs^ImO{SP!Ys+`i7KlWXWg>n_|*3CpCz;^=l$vRqM7c1Ajc=S}``ATPeE>!w|i
z7uOn)qb-Q*j(iby7nRF8v3ExDjcS5Z<UV6AK&ul{8$3^BP2|Nkn9CcM9ov-A&`m@+
zX<gG%@%tmg|4s;Ze4RiA%UINs9XCPx^cI#sS(eGWWX7SoT_~G-)9K9!#=#x%i&UH3
zga+JPRVQyyW7OSHFI}v(O+SK0%isjjQ^Zv+^Esm1A|dRwOuuds>Y#Q>!ETAx)7W)E
zV;v*xUUGLY-s_J{D&vqINTCoBk|+<P=@{7zQp@cxmZTgZ#inmYT({xW*&Qs1qq(Jl
zlE)-Qwx3wLx8&*`IKK-L-WvgnBq>_jgBI$|T(`PLHaXI$yIxC6y5-}9Mth+-t~OMc
zAHu14d5xf(I~IR<+&PRQ2|2vmoTtg4b@KL%eBC@-N61>aHSuUeemb7l_>`q=#*9oV
z-IM=_|40chlfxV2l6?QjvkD@i=*u_MuZ>_uapKSNTwbFmx5!#$@5_wCrS%06M8`*Z
z{8eU}MsZ+~ds(-8uh)Q&avuf;AUR+V!`FAIwi(A~5tBtqt^<GpSb;p(Vce&Ay0?Az
z;ei%`fhw_q9F_<%_I}+5euXy?t5h`Emv<beP9WhrI6@sBrx24BG2D@Xm$rSk^A$gs
z5FRvwDglDLmk0#6awNz(49H<cQBTGObVg`{vzB0q5PTHzCHY5y-a$=IHxW(<FQDgu
zY}hE5#76TKJO!~N&jk|SHxQG>e^IlBHCS*P=XN6acj5OD5+WOK2o!m!5=Lcg)Uk6E
z|8Ys-Recngh2C|8f7l_CByQU!f18LAkXUY+ScLy(YNT>JU@?J$sDmo8R&xS>qBn(T
zcs=$P9s6~F7O{pH5k&qse;Dx=c_4O4Ct*(2GGI}MkGF+wn2bKM8PL{GvSu7nn1Cz6
zg9FilD{)ja*M+|Khn%8|D=|<45_>>ljZLU}Aqa*rRD}W|iT<OG$EJ;XcZt{c5tD@?
zY1l16M`#L&5ayR)zo-&H<UO=ib&B_S4mVDp(gsFQ1SSECazznl=U@Z%g}LaC`~#1l
z=YsXcjm!6IivnU6!5#bfaxSNgCaEFfSbp(WB`ZN4R?>$~_iwn^iyT>W%5zjP|B{nB
zxsyB@Ba?L`K{S$DIEosPchn)2OA?CgI1rblhm&Y1RwR!$i4l_pEPm9JSjm$rNN7%(
z5dAn1iwKq17+Uucik~EU33hx48Bax^hev05TQv})f{q2zl;tRvUZ@gyMS!oAe`v;w
z=meN2IhgekL}tk<E7_45!9g&25kDpnVM&(?(TAKeVaBu?-V-ZH2ojA6c3?&wX=hq!
z$z5L&n)lI_*@&0i7nR7UfxLK`>Qio^Ns2_N5MfD#w@8-K2#}+hiWx{^#`H#X7g})H
zaV>b5E-{ZEk$r8KHZ>WDatV!^2%Q>{VuX2}145i%28HaWm{d7vok^Pm{}GTXL7B^E
znXqY`zNun=h?qv$O6f=`a#xxyCzMZ!cT!oKu335+nVzZ<jr^&X?THYvf}8J%mzT7e
z2(cv80&`^(QSlLMwseHb*+#n=pWt<uyU3jziHrm&7NZh<g}4&+h@B>?9*?PZi5Z|7
zQKAA7o*iUfGZ|9P*&bNvpFl$&9rA*lIiT+Jnchi^@=2OAXi>enjj9=s$cTd%QI%eZ
zqhDv8DCeVn=7_n;p*K0CTd{jE=Q|R>5PJhj^tp$FSe!q1ZXj1UN9ueS`Gf|l5PPYZ
zYLqhOahNQ*f<bzsdTJW?VV?_#r5>4~DnX6Hm8TUUhN)?#6M;g&|LAp5m6edHleNMf
z3c7fP8iv{lpGvW&1hJH<=zap$rcBDD`)O{q5fPD^s=gwa8u66_afcv5p8YhV7r`BE
z(xok<J$K`SWmlme7lWaSNgCQ`Z|apb8gd+XYcMFNJ1C2L`mD)uk3~pu-guXT7pRpw
zhxz!TREj@o*etcdqYD=nBUhakiJ=>&siLW+GB}&k3PhH;q}>{G0V*M=$zrT3ik3Q+
z-x-7NN)dXJ8@QT+vIaZk+N+)DW6Bz=`l)JdI<WkBtmWo8Ere**3KG}|ts3hZN2#KK
znvp888OFFIeo3JS;yTTURT3M5_ev21rxPTr64cQq>bjtu|C*d*IuUvTi}!(_^4gje
z;iQ}Q6~<^2QrfEXN@$X)guTa!Marg3l9o1cNe4-*bw-;{TY}V?EzB8z?pd2;I6-8W
ziVaH<BD=9@OByeRg68D460)?cX>KSqo4#|fI4i6gQ6`Q0f!a9}o7A$;AqNODxBX$a
zAqa~Fkdz6r8ESSP#j3EPnxA;eqRlrGN2{-uRf-l!OLtqc6ERsY^eP%qu1|S#wQ+CP
z7P0y2xF6v<8~V6-w6f93qH}~b`|`FR(IF|Dw!CW<)X_}5nS~0sm~D3-HrHNf_^Ov`
z5Mk+|iiwFjF)D0Z020y^#@o8vdbnH4uBnBDSDLj?|MqRP7Ppi8bCad0Y)89D3$(Qa
zu>~<HS2Zo0D{@bHWU)fJ1c9hy*SE!KP>PnC;A<=5E43X8wsOj<n{*?|w!F~gxxM?q
zS5X_Nw{R#VNfM&K_$Zi@0;+dQzXdT_4oqv#%dgC)6PSX6dYiviOQaqQa9e9BH+xXo
zs}Q6%QZ3}OwMnW$3z#pKtrT&&U%PsMH)NdKsbf2tH=87kE5z|Pp%;<52pFU_{IyAH
zkODfwTYI_B;+GeUzniqX5FExx;U$%uXJCN{r4nT2`Yg4@#$1@DkP#L|yJ)gojYrH|
z$)i!I2x~3Wc(%xDL%dD=3d7u+VAqPFLm{r9|5e4>m%~YW5JHPtfy`>Y1;ozDzVr&m
z$eXZ@{KCpr8#dP`$#)SQLP{?dn4BEN3HvN?RjLo`wU=zb{0hWta(rq`$do9?y6h~&
z7&`<;M4o~N&8S91R3>zgJY`a{p5lH{w6~Di%d;53`zsdwqybpdQO1nSyM}Zbp}58h
ztk&is7_>w<Ouiry$pwKaI^$9^9E=`YwhDn(k|_Z#6pA7SLuhp@ebRpA`W_%i9mr{g
z3un6vHWcHm8n1iBvYf^Fx{jYF$-OqraDl(OT+udRhC=~uv;h|}20V&oAG32mki<C5
zt46Jy$zQR@1|e0e;mm91AkE_gSfgg&{{@Bd(^Oify6F`vHd8s+QnSTW$kQBPWAc|^
zf;}t^7v(&@=ZwHI^aJ~n0cbU5mMm<KJSJF!2R`sFTmctbw_gzCJWdo|eR5l21Tb)M
ztIqnwO=}Tk%q#DrJ?p&Eos`f8?95ed9<bxl!?V$MY|((d6B0l^Mv?;}G7=>6pCdP4
za*#1ygH3ECrg(5L_ynOxRZb2B1Q2ln84xgl6*^eVEtVNGKp-$>1iV(AGZ9e$2fz?L
zbeNJ&*<C|E80^wQ3N1+d6?yOjC*cFB(NU)KA`+oe7Njom>d2T3g!x+230VaA1ln-1
zKvgZCAaMZC2sHN;GG*j`H%i(9|3gf8^RW{5K$@)qBGM2)Kt9w0aT)=|BSv7Q65KdN
z+%nXN#H!GE-OzUItAT1{j;&9A7T5wl73pLgxrd&_am=-9OmI8iZj@+sJSN8ljTBwr
zJ_Lsh9?gjB%|>b*EF2#(aopxij}2`Ari44HGu;4t)xOh1#X)t0ZA|w=Pw9y`r`z6b
zox%L;-~bZhuPolNoZsqe5G{ld2yPn+KHy3&6(9s4bRe$X3F50KrnEDKaTu2n9<?8w
z;|8(F#DPQ_@jFLUsq`Elpz>!79Mp;MgBTqbG;HR+@g>KHSFQ?O7(_<@@q?EH<qDCa
zD$(Y_!{_~7905(M25{w=|2ZWwYp$Ambw29iaS`XRyuzCd$vF;zG@8ngp4Lm==~E#A
zzAZ&{wGuW%<(Ndb8I|6v@gayiM;wt$B>jZ>*CNMT5D!WmiO~{2piHR(#$%%D<rC}i
zS?d?+$xbmlf{QMN<<;#08<zte9R=;d3(o{GF`{0sZGZ?34zIY~5*Og&K{LHNwHjkl
zuBj1WWHL*2a8m6H&iy7C+aA<g_dmpuIc|43=dKdczS3oSP$q)Dkl__uSL(ro>Yje^
zGV!GjaT3!@pw?nn8}jgijxHIn@bS{Uc)QYbv2YKcleTpMB+}TLodFb$KN9~D2XOH#
z0r9!W@?lomjg3>Y|0UYZ6C*6qF4f)fDz7UsA^{WsWDhR^B`<NlK1bG~O{dHj_m%-L
zFWec$EiNA|+yd$*<AEb(06~xNT3^wWy7gWkTcG>(Vn6n}{FY>Y_N8OEXutMsPneTM
z>}?<ST(Tq_EcbSQ_m2`8KNMz@jQ4)8A(;O6f<O3<LTa*S9sp1HivJyLfCoOj_>dp@
zuMz1eoyd}Z`Iw*iny-u}ZcXOR5uMcVn?L%bU;3txCy0*ZqJR3V-}<iq`pH2i|Dn~e
zU;DOy`?wDt29N_M{wXq(`@kRk!aw|Hk@D^`^u(Y1%D?=~-~7)1{Lml$(m(ywU;Wm9
z{n(%V+Q0qW|KI)I|NY<}{^CFW<X`^gfBxv7{_4N}?BD+G|NihF|MEZo^k4t>fB*QO
z|N6iG{NMln4-f?e4kTF6;6a256)t4h(BVUf5hYHfSkdA|j2Sg<<k->UN01>!jwD&q
z<Vln%Rjy>&(&bB-F=fuAS<~iCoH=#w<k{2bPoP1C4kcRD=uxCel`du4)ag^GQKe3$
zTGi@RtXZ{g<=WNjSFmBljwM^x>{+yF)vjgR*6mxkaplgXTi5Pgym|HR<=giz0KkC-
z4<=mL@L|M>6)$Go*zse?ktI*2T-owv%$YTB=G@uyXV9TVk0xDuvtQIxO|NF%+VyML
zv1QMu|6SYmZQQwWr{<kh_iy0Ag%2lQ-1u?i$(1ke-CXE$=+UK5r(WIqb?n&<JLjHL
z`*-l+#g8Xn-hA}#>1Up2-`@Ru`0?eNS6`ncVi(Tt?dRX$|9=1j6mUQS3pDUR1QS$n
zK?WOi@IeS8lyE`{E41)J3^UYlLk>Ii@Iw$QJZ1sJ>@%?>#A*m}MHX9h@kJP8lyOEH
zYqar39CNJE84?dW@kfso(@#eti!|~`B$HHfNhX_g@=5<{Pz*>aFIo&rEVI;dOD?<g
z@=GwmbY{vb%Z!MzFw<0XO*Y$f^G!IL9FsXS>r|+*IP=tVPd@wf^G`MBB-2hp3&K;!
z{~-aTF;PVub@Wk4BmGa%K?^0+u_FD^bW=_{_4HFvLlt#YQcE@UR8&cobX8Vcb#+Zj
zE48%D$1+XzR$Oz{byr?Lef3vhgB6y@SY@5{N5}?5#}rdgIVZq)hT(;mVd4o88!@QR
z;+g}U>GfN1!xcAIMu#=`Ty)c&u-L?orM1=oQDOEJX3P06o@t4hRv2sji^PjA0`4M>
z13kUxm>NLwc3g%Vb{N%r%2jt_iYxB(92s1AA)Eo7sfNE}0A#macacpNz;aAEW#yGk
z`A-;P^yNk0Vf@?13NLcbnG0?^_Ebv2TzGhBqKo#2QD>4?dTFMUw)knNqegO;|0bN7
zMF5VW?azg*`x}|$lI@Euz<KFy`Pu$vo;F`z{JW+LopbI&i~>8YVF4Ee0>A|q7PzO=
zeO{>n8Gqn`!k@qUS-78QI_*c9QfsL}MN~)82XIhofP7SZI<3cvQkOYq^l(D`8)B(b
zSAF#+XAxvSPy}g)?<eA!;hts$S*99uT!?{yuKD}A#IWm=jBJ)wrWbAg)LvU(x8aVv
z3oU%+^d10e==7NEJ7wW@O?2=_pMC%!{{>CyVWLxeo*;FU2ktRPg3C?Sq;pPJK;|A2
z4iVLy9(byLqq;{to^X!=8thZY*c1ahB{2j+kaZKJU<DiGy8X-|5a$R-|2$l9j}(Lh
z6wx>aGCrY<dvI-1ktv?>#s(mHvFvRAftk$oB@CNMPiI_M1A#i_0st&*Q`lPor|R*7
z%k={p=E%V^01ya!e9#}}&_O*W;E#A9!yYEcSm{7j1N=DyAH8!yAg0K-Cir6(E~o(w
z?r}e0@J$&<)Kop5v5$;#tsi`Q!96x1fJKlI3h=-|JS;#12}A>r8pFpdVBo%fqyllH
z^H#+4gSZ8TY;*>*U?)BKNeyA}9-k0|DERh4P#i-B2SWx6qLISj?PqwzYoT){BOn>l
z3l;x?$IN1;FL?ZC3_7Hq^*B`k0G#fa0N@lomN3N^JfRji=tl|2|2KfZIKhfo)FS$r
zIK=&Isto?vM+{V?iE#7-i8ByKKQN(;2#}8i;n2iAK9J5Dzyoxfl7%0pD2Vo{F&gGb
z<38|F4+xmU2Jm>m6qz83HmLC#vJix(B6+mZnIjwvJBL30whvDs%z>UtlmtO}Qk15&
zKeKqkIc8CSaEu@t&9H#{2G9gnexi0Fh-JhkQ%hSOFF@yz7qfy9AaksZ7r_M38nh5F
zF>J$!okFHEHwAzJ7!iH@Xodl%SxxfIAbm{OW)=fl4;yG|A2e`5MKx7}%Q>S4;b4I{
z{2_yI#6VM+2*efr!2){PlXmn#pFjF>4^b2Xi%$sXEE+*j|20~`1q@IqJkqMZPBegT
z(U1k<3@gcI{7s`A^(d%B3M!SRR<*0e9p7T`vDr0YuJ@n;$2=Afw#GnYKLu)UZaJWR
zFi$}7=+}U@(bNBYN=gN=s+5G5KV|g86FC3|HSej;vGzj*qXeh~8oAF;jUoqQv;aOx
z84vo=fDrK*KsZDo2w4~)uq%j$0spE<O%%c$6YwKI-RD?y_#hvy1O{andRZm_0|WPP
zMKwBWQAwU7y2rqWeiVmEkaB91oAecHJ^W!16KIyS?5$rYV<RD64*&}&KqUh+Qca~$
z0!`2dJp4(ui~6G;6<uQtq6-S&CD3u7;9Kby*|;NP|B(iPU_m4GQICvO1B<lN)Ea55
z#3@#zA2bj|?_#iocsL;*{@k$|U9bdwG{cMiV1}kd=f$L5&Z?UdVv4U9Vm#;h!z1=l
ziBWUnMa{W^AN(8k_GYwP5m{r1X7mtEs%J<?dUbs6v!D3_=o#60dk9!q0kqfXTZI$U
zjefMGO?~Q#QF=R;-b-a{M8Hj*W7M;zHR`<9G+dV&)w||(oK#&HR<|0{G17FcjeYD;
z_gdM@2G*~E9c;X~nnuW`cC}B%Y;0#cQqCp}wErS)Vq06>;|7(kwS8`Mhl$&R@wQzo
zGb3`xTi%FEcfIYcChk$D-F30dy#4)efCpUQ{{ts@!3}<Jgb#e(g4s7+`kioyM_l3)
zr+CFJesPRneBps<_*@>Iagc{x<Rd3}$xVK8f^VGT9f!-uL4I$T$DG%+Rykl;-tx+f
zT+k@zdCz_RbD#$u)H^p?%>i)px42yBOJ{o1o&I#FW1Q$kGdj}UqI80bI_g{Jde^=F
zb%alSQ~4nKxT<b-wqX5%FgBIg4JOh`y8UQ1VEd_r9CEpXUGID6JKvpA_fZualcCDT
zHVl8<e6(HgbiNGQ*P?bh*I@Cc%ey})nY7VSPE>OJd&p8X2y6_(i=I0}7{*Y#SWLnn
z+t5@qHq{T+vyTv=vIjO&Wsfirq93!@|CBb!;SX(;eh@V-L+oSRsWK$ci-||o!pwoc
zO+of_B(N)}e9<^?c}sD}aK`9QWe+KP>KvjA|EMzDsdIRiRP|U|`9Y<APQ@b{9WB*9
z2-oJm=U@M#IvDqpb}G&5l&LE`Y>0$G7=%dJ2IdPqDGC*%J37Zp3&@+h$>Tq{lPhJq
zhshB;4Ac}3GnM1glriv>e!v3Niw7+DJ;MTn-;0I%=?6gY6nYqhP@#uExV;<f2O89r
zSnvjWNI`!{J%0cO{~01q=?5^VzQSPxO@RgPBbCiLhPyK?6ELg~z`jrEg+&0D3)>yT
zqOeq9Kk<`7e`p3Q43%Y2LR}F<|55=wXCMb>n8Hv2y#1>~zB?FB`9D(WJYNA70vv=t
z2*f`Cy#?gIz-zn+L<`8{yj{^c(-NYC*+2&jK+E&IQaQk6NCqqrGHr-KO^FA6hy`(I
zhAOy07p$WgJcG*thHjt-EGUC8xWP`b!5|ES(j%WU7y~fq22ZhvJ}|5u3_@?Hhb-_u
zBD|g>1Or<PgHXJJLC^+e42M`4gEQF0Af(3Gi$fhVGGyq7jA1Kr$f8-u9(y_@6A*`b
z@F#!J1aasE377#FXoT0}n-qYYPmruM$`~22fEZY`DGG;r*c@`YoMu3VW010XIEI3}
zoO9s5V*p5RNxy^ihh-R`|G#O-Wq_Q7{5x@AC4Gno?jxLfh=zVR24%>|FLVZEc(T#C
z95(DcZ`lWjyc`B<$Y$6aZ;3;htT1F)25&J3WcWLLz%mBPqN6zmFSJ9Y>^jdIoxh<&
zP3b%a8XfM-K-Ag>K)iwq*h(z;1J+ZOL$r)URK%PksmVD@w6s6~5tUCn6}f85sH8hn
znF6|`%dgy&Sm4EeFuYLo27ds9%YlWuoPt!moL^|gFwhh-@XKa0#mjMpNvMT40LEVY
zMIFRTzoZ4a<h^4w!q-beVXOxx48qHag~{xP#7s;~(#GfWhjS1IU%&xPsVj4+sKUBJ
zHEM)<_{DW>N6@K<{{X0;PA~$)dIEaTtA4mb5|GDDXdD^vODRl;@Y|0ki^7BH9QngC
ziiAk*Ohf#8JqOaLdO%3RNkdL)h9`T5lDwQ{n4-(cqIyt2F|<E7yN6}KPQqaz^8~4W
zkTU%sL;PVNjlv?5%ul0C$kvm?rCiXT`@6Z5O9w4CO8mgV^OSJ7hCk5Ct*ihFzyjN2
zKn_I2u`CO<(?Ggw8e3yaL7TdWflCUU%fY<M-c!ALNCq-EgdY6M(hLW(i-*GWhr^^r
zf1m~9OCQG^(n%0PQ1L~>l0{+Mlz2FU+3U>X`^**`#?g$0E7g>7(gxGx#RiH>HBu~p
z_ylpNO@Fve|G!*@XxL3nVaHwA!t$v;5^#h~p@+lqhfIhD>hlL#kg`wk1}qCmO*w~V
zsD^s*qGbpN2igZk!anhI27B;73ady?p-(IV$kK^VinJ?Bl0rKwNih|jzjKCoc!o_8
zL;2GbjUq#tv^>OF24pCmcqpA_Fv&tihFhJYzsb)0oXArxR5fH!V*NQhe9NhvJUsM3
zJ0rSnh=ehq0BNm&F&Kmj2u9Pf#BvkS5giN2(?F;!6-UgZ2ckp)bWyoFmBE|>87-VF
zs2?y$QojUD($o}t_|aCF1R*7ZBJ~GaJVhdng*(uccJ&7)MZ)?a19FIm$;6@<q|ypq
z!7CL_{~l~X|3OVCeb+kjEN_WTO`$$CRa1&=Qw%UH5NOB4DWCe$1UiUHdPpOG2mwB|
zt3NGMZ&+1PWmSO0zK0}3Uv)Exv<LVz!%ytS@YGZtD^I(+&oWHUoOQisfId4))tJP-
zWw6iA;ZzvAPfLx%MWs(sHHTg;P|G_Qbo8ud7}jE4Ta>$`2n|;c3{wFFm2ilJETDjD
zO-yXK)^B;hZY9yO^cA_pm2v$PMvO7;<3DtDQBlEy81<CWONKHqMZYA2**itUiosY2
zgJh_JR>XoqxJ7vIM1MU}BDDuF7zE4p2QnBSCiRD8$O0S9K{EJ*WUxkvoii2`MkJiQ
z|5`Y`%~jpmD}&Glg!Oz)9g{L|d;uAdfHSQq7Qm?wSW}W@ff%3x1ZYPF2m}`Z9T7N$
zdPsp9_@29p0U1D_KCRh6)kfFkzMFJ2XF$n@{5ytpNPv{GW=I;skx9(6E0t8qZA{uJ
zA{=wTJg0Ra*W=%ZoZ32Cn45gxjXVasVxXH;$z_ehk_-o*bkNrP*`f@Y2Np=S9buHS
z#DkGLs&vY^{giybhG^ZvZP>~W<v+Of+rRbJz!hA$?J!f3tIU%;0$N<VBfGL=;d>}V
zO;J#?>xZ#pzFO#4Kb%6`tDk&0Vos^z`l*E?tkO{F2PziEBKC(c_6PhchtBEG|G#Mg
zHT)>Yxd(j6FnkcT^V2#x{*>>GF$G=W0j0cvTU8SN<2wAi!42X<OI&26+d<GuW!T#a
z&{z=NJZ`<=ub99XtH54~n5tA2v`kBRONKlqm3|ll(iIhB7z4)SVpB;56%3W|TbvY#
z0qd=`Cu}~XT*-+8ML^DF{fn5kTVc<n+YH^%ET}xUvtdaF3rd!^0MTVtsXS(WW@wJ)
zi2W3g3I}UO;$1Q3WA=(<mS%7MW^fMYgL7uHi{x$Iif)cLau#QHZfAFHx^)g0Z9Zpo
z&f%AnIegA%5UaI$rsu3k=XVZhfgWgrF1UX7=c@qdf?jBbZfJ*Qw1Y<I|Ef^vhpuRg
zzG#dtm57#T)u@bI`)H63X^|djk}heJK53LrX_a1SmTqa6ercGFX_=mBnyzV^zG<A!
zX`S9_p6+R%Ug><R435?ciq2@GK5C?1=#3s~s3_{Berl+WYG__+rgjRamTIidYOS_I
zs;+9LxazGAYq1{dr|W93Rtm5tYqef$wjMdNK5L{%>$aY2x~^-3duzBh3c0pxzV2(k
zrZ&9JYogfezb<UUK5T~xY{7mGdq!->er(7d8pU30pdjqXzHH1!?EZ*KbEa&xZtTns
zZP5<x<eF^H?g`5tZPi}wtuF1(KJBAOZPuP`+CFO67E9RvYS6B2|K9HH*7lF1dF|XD
z?A`Wl;~r;gi|2V$?t)`(io0#09`4VkjN`8EVs&m<8@gG;?ohkrgoAE<lWyNAZtE`Z
zz2k1v88!4K+(tw1^`<rO<}LA#ZSt14YEXuz5j1`f2Wt?APbL+9fCf>)2Wzkf=<Ahd
zkcL~q2XScd20w67QE>D7PJCDdwJnuJFa&>Khb=VkpnGox(r)!`Z|@E};5O~~t_j(O
z=u0}}O=*WDID$n;f+V=`Q{jgr2$e-Rf+UE7Bhc_uv2ajH@LMT_7(W6YpM(0d15!a#
zO=*WCknmKAf+X;VX*h!a_Hev&7`FrQUnX$@e1e53p>T2U|L;C=;ZAX%SaC$tLl@VS
zBmi=M*zrx#2O+cbPQi0c!SOmDAa;myP5E;v*YiH#^CYm-BqnrDQS|Y-^F7D%KELz&
z*#{<1^iKhW(Svd+kMumhyDPstM%VJ9>zn)#AWgv^2nQAVLoHC*2RbHau}dM;a%1)e
z6(JKf{-_^Xzc!LOnxo;57^BWmIfqpL@=HY^i`w-NA7?bjZ8axu>NaRiv#LKIAbybW
z8K-eXpK%_?b{;o!ap3bgPjb6j1v&QzX|Stjpz%W|ryh@SJ6#1NXM{OtcfU+<eux4i
zPl7qPoN1u(BTxi?fbkgjOB}DCY)=Ag2Y7*}bbr7H|0<931nP$;fIdyH_i!%+Byab9
zNCG40@yp3@E5~w(F9dzy2aWG`Q8yZVxEqrkkpPT`G%5%Bp(9QK2KUnx8Q64RKEees
zr^fjNbAnlMWy=DnyIFXF8gPMObRS;#lx0W(qW8upFacz!hslxpJ>p(@>}3Jmq=N|r
zmplM-g1=7Dgfr~<O^KspFo8ENqj>B?6W?qUfA*MQ^P=m%o_~fo_>_P5cP#&OD^CJ_
zhz3Z%@^H`bX;AVxXYwfE`3*k;yZZBvl>ErQ9EJA>ejt1+*KmAKf=Z79N5F9fr~He5
z^vkIR%U6AUp!~=e2Zw(KJKcOWGzT+!@gr~q|0%G1#K(siCnqGwhi3rvIZ*N|hj_~$
zen;?qNMHG(aRCERKV&d~=OQO00)+#J24HxCwORl{hzIIdBo;`d^7VeXcbpA)K_uEE
z8((%#sRo1*hy@rNWdf`+tOgl4fQkZz1#q8b0Ej>?@cAof@SeehPn<O|SkH;SVKEGf
zidIjMzhyxZa_oq(<AFd0UDPO8&w@UK%ND%Q7w-v;Xquv#o9MBlKXc*yeF|sJPfiIq
zKjJKE^eED#NAEFh>dzT~s8Xj=tva;;)~s5$a_#E%E7-7N$C52;_AJ`8YS*%D>(wgU
zxJu{Jty|QYGol6cKC@G>T9Ux{q$o0&|HRuWM+T#aTco%kV}3{cMTsL#+M*=*qIl~#
z&5%JU((c7EoHB{Dg7~aqF8xdzza-)c7IMVyh@;E6+a*a^P;$z?25Ub<ve?l+ztfU9
zvgX?$sAvh>9jX4<Upr}zk{r>u@5pR_sQt~E<8Rs#?%|{O^>;h9-T3n7)30y;KK}gr
zlLjgv0bdOZ)PRo!1sr1#4c*l6iXfUSVvaKBxDd`Kf#3s*AkNHyj|_o0<3e}|>17Z-
z2gHzqGXA&_jWY{eht!A#9b>>&3piuYEEd!th(5Dy5Y9fx+#`cHvv^R=P({_#P(uB%
zAe}$-Y~WizGjujrjQ$+sf-}cR|8S!}^(^qjG1buXLO7r}agGGa=%Yyt66|!-P&Eu>
z&I|Xva=>#3?e}L=O*sWsT!m8Q7NUtNx+tTKI{N6NhDr(mpp|lj7o7zymyl%mBvBY-
z-iQ{OIHN))j%5C%x5y&TJflxy9jyXdL92{r9%QGbc29MSNZ}f6veD*9HAfV}>ND1~
z6UTGF`ST1T!#T1D9HA+a++R^tM^Hig)DR+e)g3|WD%EM*-FLo4ky?4@i3?v6w0ioY
zrS;l-FTVNe+mQ<eSfFA7F8E_Xzy^)d#1mC6AkH}n9AE)HvPdTbIR?p)nkV4yRTM$}
zOcW1GF3@XKmRiz?)d3^+|I>^Jh2ZJWJ}Dd^L6J~q%F&V>eF9WLG#pY;KO$g6SIILj
zFlU%;I)hIy4V{yNGZ6WsNdZC>RkA<*d?Fnv2Gqdk&HLsjC{s^ODk-FCtGzbcZMz-m
z*>Z`EUtVOFZIEQ}J=@)^1yLu?H0|Bf+cR^dR4l5K_3aNnofXS%Y>uqMtUs}Na}TbR
z>3SZm(*PS=c(qZ-tu**7+iZ9K0G5*F=&^o;G}yL7P;7d?#1VClNP(MpNmQ<_cd1jx
zu6gK*qituq6Z8ytb36Y$^wEobj|B(hb<91^JWP~124KX(1p3I}hdBey!XpiW#8bnN
z7;EfLmi5GNk2wu3{}WC;CRD6c$@dh9l}(^ijUl-VV!e36JwP-In{lLMIqQc$w3a7?
z#N!1(lR*yd!7ct7MFJ&p2uccaCOtX998%LnAVk1GKXpVD$k19e_Hm3J<seDYtB>8x
z7Pq*(t%pARArOPes2#%PhVr>lIFvz@5fv*5&p;l`R+R+5#O4T#7+2-EBd)|nu@KLQ
z7i5gZywqtcGrhr_X~YA&+xY4TpA(ipYD1YLJh3~c!&~ZN<3u-BE<InI47Ql}j4Oty
z8H>Oj?B;kpaaAXHz8O!uT!)WF7E4_1F(M{2smV=pBpfqyhCZAj0Rtc{Yc%u6D+-a5
z12lmK_=txH{|*7m1z_Z2{>WI^4DyKu94#jckiZI;Qj}^OzyJ&I7e~y&OAkbl1wg1r
z3MBA?nq5sv4S9tllzD&!Ok@*Ks)qr#Swk#wj3f!!M+gf73YOsG96Xx|J;ImEFo}RA
zDcPk4`ouy`Vu@@zBw|&BDA0itw4gu)XjS+bsBkz#8O{g?MD^(pYZRgoj0h1v7{Lg=
zWt0)uS&cO|gQ~}LRB!%(MnxUr8-6&#qrcG`d{~+qYj_kNGo6hzd?StUNTa5edl5@l
zs?qE40~#(Z2z+{a(S(3PWB72yY@V7Lqc%q|EH%hZ{c#z_J*FK{#m-O_D%P=*wO;qA
zfdpp8|2}+S%|0b_Mh$l2jF#x9t^NRoMDO#~?Ag^WeGODum*P)CA@nK+JuG4qt5~!Y
zb}E6brlkNg8|FRMUiElFUMs8F&2rXxPRZ9_<rCWd*p(lZ>fbRAL|VOe_8^08tYH@`
z+u73gu&|9vYw=~qIb12X_~{3dd@J1H61TFW^{Z!}cU;!G)wek$ENp8l-RV-dZMUUV
zakH!4?Q*xf-bL<dlPg|*E!T#veeQJuP~G*ix4mq+?swxW-}%zFz6vcbIp>C7=8~7c
zokj0;-7DY$6PPRTwJ(Abtl$NYb%RFSFJSen-03mcwSxL*bPKHE4OjQT75*@YLoDLD
z|Jtp@CO$EWQ><bYlWfH<eld(=e7B*<xW+avv2X!=TMqNM$BXswh=VNTArraCMmDmJ
zGwkCfGdYMrJ~EV}EafRvxyqbOa$}pU<t<zHwpRW!n8PgQF_ZafuMIGl)2!x2J-N(o
zelwioEa&cGxv*=#GoIDb<~j4Z&wl<hp!Iv^9p|~wh6c-?1Fh&qGrG}^7SW)UeCSC}
zI?<25G^R7H=_%J4p_Kmgp)I}XQIopVrj~D~0Sf9><5|?Fel@IPEo-r+nux5vb(&p0
z>s|A@*S-c+t#^p)VK-UV3hl=}lCA7zGrQT&em1nB-H%^WyV};ia-_3N>}~Vd|JeL2
z1u4QU?s1d5+~z(vy3t*VYqPuE?gnkP?ab|Y7uegJECs&vt?zyFyWjr)H^A5Z?tv4$
z;PVM~+~}=v0o&W)4u3er!Hn>;Exh9EZFs~puJMhFc;b_?ILM`oagLL`<R<s7$I%w@
zmH*hwCx1E2V~+B8dz$4ox2?-%uJfJq+_*GX_05Am(2@7N=te&}uzzlAp)>uUIY&Cw
zqb~J7rQA?Wzj_ae?&i;C7at#iFv>}$U9eBx<W(;e*3-^5tp~QP@i+!DN{N$HP+fz2
z84=l|hY+UVWkl?7#sG1041ClhMchS5-Ij(aqErL$4(>=f4tZatumdUQ|A0bA>Ji+s
zyZh`sR6FS523zkU!vzR&focr`3@&}B5l3-BW<~q;yC(!0mg>hcYG5IMtgi;aJow%b
zpODLj;~Y)x$hXX4`+6-ODb1)s4L0B0#N%V}CV4{RpYT3|?Bns77fDi%q5If_w;*8R
zNIz;oe#UhKLJ2X)?>Rqf&%-73_8;QYv)iH%9^(M1SJ9PRR+z}Zie$|vSiqJ<kev(-
zeGtX@>4oj}9+Ett_VvRP6vQ%Q%`5B(2G#&(wO<T41BRrZAS^=+Y~K+j1SmNK=JB5T
zAc+O~L-I9WIUK_i;Db3p-%jiUC_KS32*N&Gpq69}C~#m#c;G#N|3VC4R_@(kN5q2*
zD8n)|f%l2lQ}A8&-N;AO1NfDLAe=)WG}T$vK#IU$PC(ym@L&xf0}sXkM&w=~NK`z;
zKsD5WD&dD-oL`fuUn+>-2g0E~)Pr=Kg9jdiPdq^pio+PjP!Tqt{KXpmS;hTLBBHRJ
zScL-us-OjcNk72e@R<ORe9QUVLyqW!Cn!TdfWpYsg#+%BKiJ+Y@LdqzLp)T201n|Y
zDA5m^0|K2xjO;@=B%u<;Kr<XeG^`(8=-~=p9|lH4JV=MP$e=hVAC3sgIWz%NT;KxT
z!!kU<Ez;dGL<1=z!)4JTkRZ@3)?!EOLliax72@F)W=|Hv|Bp$4-!Ux0HQqx%q(U%8
z$1*g+IUvyOlnFOl#0~ZXkDSB%+`~@10?+uD7V1U%=>vuo<VEO%LY~7S1Ytk=L?GP5
zIZT8v*dF}t!!kZ1tVLo#Q6fv~S^g1Mi|FA!EP!hD16`5G4KyPtbc_Y$g9yZco!sHU
z83fWm;1ME21QlV5+~R@E0-5OE`e5JH%)kpcqYE^_mY`sKDC2W@3-n>uGr~+s%pi{J
zL`bIA1*SquTozOMgHwv%F{Ix@$cR|hfF2rz1ib(hAR`A+pY??aP<o(0Xk^x?mhy#T
zO`xSe(49kEpj=8{GTkI=fk{N}Aw|x{Gd|{EE<!vE|BX(#pU3zEFg(Lx>R#TVWS^<z
zp|m7xnuR5b6*5S`^0mnS$-p;};{+7M0v(?{xIjLbfH>M+1MZVi!Vg^O13z%%6RZzi
z&cXnd%|5V0I6mP7Vq;6NWBhHU3O>hW;e%=Mo^;g1SWaW}&4O7XP}!(uPI#jb(w%cU
z#Xj6aGuWPL#pe&U-vs3eJmv-a{UsL?1!49>7nUGRpeI78XZPLWKAgin;zTo`NnJgK
z`N5Aws^9U2<$~U$M&6EF`b3I^=4kE(Txlh0W}0foR%@mxqP=8s1;PTHo&~+11vq00
zG(ymP;R)zNGhjeCxByDX0yfe>Z^_<-GLBJ#|3Wno;#q}5H+qZ|Hbng-Au^N$0=+^o
z0mBQ3AW&dPR^p*v1S1QcQ(W1gG*Y8(?qCckL;Yk#6A)s;r0Ep;gF8xTI<QYJ-c^#u
z)%kRUgh-)&PNoBDVLc`UVWQF(eoHutXEm(p6cS=Iq@OJ!P=j&=6k=s|A{S*+sAXPg
zG{A$T0^}md<txNMIKab)PDDD~;4BEqx0L9sov2i(sH}d)YmOC|WXao=3DBh0oD?HN
z6+|)KC6Useh#2S6@E%^IL_FZdoZv-p;f1hfO_vA>{P617&?7w(1#of1IRM^`fD$ko
zL_GM0NgnG{ID<Ke#IgdO`LXL@VhXZi|75b_M3?C5e#Xd0Y%BMLM?dskMz~(Na*MMT
z#5o{Iw?bw?<f<`V>+G?g3JzvU^aDW*Y`89KHQY~pPH4Y|L%%+htG=qz3EQlWtX9-&
zm@(u%@TF$yg>YI57d{r&9M}4o)FuI5HQX%D-t2P8rTA6h$L<=eMg_?ZZ2_3<&;E(e
z^3#dMN78av$2RTJrew$_9MO)f(MB!SW-YG;t$J1MtX{3whOO9=8rOR5*Rtr?rmfoc
zTG^Vdih}Lh#;x4WS=+j8Yr^f^=B?hI?9@`6-QF$Q?ycYsZff@J$Nep9;w|AWF5`w+
z-6Ad}DsJOWF6GwO<3jHJNp9tC|1Rf_o#Cn+=1!vKb}s3bE@xeC=z`wpnl9_M?tOi(
z)unFc2CnPYuI&yN>dG$Gt?upiuJ5uH?4q6Sh92+!uJIo4*aYwA4X@f2FY-Pw^s=Jz
z)*tgWFYQJz_GYiW<Zkr_o%3oh_+~HncCXESZ}^@s@{TY0uAKRzulx3{`mQg?weS1Z
zZ|lad{8k+O+AsfhF8=1P!tHPW4)EmuF96S*028nR53T_p@U|uJ0!Q%NHn0N^8wA_S
zIS|C-?E?m@taC{)2x}4rSMaS}@O*571h{|%ykkd<f<-WiE|pR}5TFY{s8XCmQM|&>
z#78H3Fn!d+5*&pu1hJf+{}M;g0EyZ~J)C9;5AX<+@T!@xd}xC0-2)3S;5x!^LG%P(
zihyH^f)*cz3_z`2^n(fb@O;z*2MDnR)q@cqaT3=>FJN&K*D;JtuOvco$VqX0%tS%-
zf=J+1LCipp#85-*gAA-N4Iqs<NWgPACMZZin}o>|Byu0{gaNpKH+YK*@5C&K!#*?t
zD7Zie5JWsg(>sC!C~N??n6W;XLm$w<0w4n@SilQZOf$H^RRXIBpdLi*0}WV!2bi)h
zvv8QK@iHKT4A4?S_`(Z-3^e8@%rpcI2m~_^rVB805Pm`pfx;_Tzy_qD3|K%6;GhCX
z07OX0HRp&07@i$B|M3&+F{SabUBHR>iNI_Sa@N3}#Dwx)`2qdNi9z^+4s^sUU}OH6
zNeAGM3L!F*C?EX<@hf;kJ*beL_(4C|CMh<=6>IAmH!?#jktY;F`UN8mP{KJZzyN_l
z4atBKxg$@A;{rLv8qdN6(BeQ0v;>$y5txKD1F=8Q00-c-IJj{?Ho`stCqX>PJ%F)4
zxHKttfIi4V92#{JE<!zc04=KDJHs;`ucSQd@AZn6CcHoqx&TJ#a}W1(L&$({aB)HS
z!Vq)>krae1C<8qV4JRDZ7>nqGq7p@$K*BnK8{<VY_`p;5i7T5!K_|99h{7*t4-FK;
zGBkEQ<iI|N|A0d^!y3QBk?4gQyX6jlLWuZ6CLh3T)Wc5)v5*!-DlNkV;Dtl(0}=bf
z446a=xUoZ(VlUVpY|FM2B()%<Y*%~rg+Z6Lh4sSGb6xmxm|%coueBlDwr_v}(g4Gh
z_(@;;!(Gz@_;mtb69g!DfE0FiU=MaYd<nBUHeP;oW4rZZ6SfO@hzwA6W5)w#n}9>H
zYrnpNY|^w_-XUoZ^ak)m5WBIm)({fwCS_j$v;s+O-!@>nF)~1_KlFA+IQV*VBMnG(
zaf5I?D|ewWH(fZlIcNY+?1VY|=yZPqz=9%PUb8t|0C!_VKafB)cy~d7_fzkL40MJ$
zK=(w~|AS!jo)dIp8r}$exA!Z*cS=CEl%&LDE7MMJb4GWAv_3^j_yP=v_ACf^X~!rF
zVD!ScrGo!J*8KQ6$WtxSwn0d^{B+_D+TI)wCYx8oK1fH<#PNrtZ-|R{tBtinZGr{p
z@(Vn)1OR1AERa9L(hIymToI}Z#K1Ts2_nD1e22-<@c1ZLKsPLd1kgYYSkOf8!wDoT
zP&9)H#DEDP2@NPV>@oHrr-UqEG!4AK47h;n<uXv#&^e?)3>09FjQZvQ^(^f0@x?U}
z$3p@r!#C4F44}EFV>*+(0!d7hn-|0f$xlvPdw9A4P+0q@i$g{SyAbwy1Ya12B{!gR
z{~L*0S#UiKy3adt%@}gaTf4ivpvzi6+`64yD!m81X5D+u<@*EgyTB*B;1WF089cGQ
zyTV8O$ua!WIlKiUyu@dG+ETp8T0E{nyvBz-#Bn^;dVC3EyvV2g&yu{~nmnt4yvoOX
zyRrP?x_lI)yv*l(+0i`c+We=%yv_$bukn2B`uxx1ywE3o&k?=w8vQ&Yz0ya0%rX7)
zI(?`?z0_xY$x%J^TK(0Jp4Nvw)Ny?td%d9nz1XMyqLDpVn|+?4z1qjUpRxUFy8YW@
zz1-(LyU{(0+Wnfrz1|0YnelzB`hB2-z2GN)#1X#G8vdODzT!tdl`($TI=-4g|GwmB
z{*h6><^Mh2Yd+{}8s~R@u6=&!08v1$zn{LNjXvpb8RnzD>ob_@uYR$a{_EF%pT)lH
zFInr`KJUvH?&p4w?SAhMKX?5;@N<~(6TkAqWO^MxlO_MX)N8aV8oct^Jsd+IV9(ZR
zzos3-^v`_rJHL-Xf2Al<g(E~YP%B<G6w;i-oS39C$X$NKAgW<&%Sx+*IpTcGP<_?S
z6#|4mfdl=Wb5@ODLW1X>DRlS{Vnm4(DOMa9s74@x$O0iu=nS90ea<XS?DxdqGJO$4
zmUQ_NX2d|qAcB0kPg%u&&X9%sc+6)^p+kul73d5=Ql(3oHeFf(YE-FHsaCam75{5i
zty{Tv_4*ZTSg~WtmbK~>ZCayi*$RE4G2yX+{an0wB_Uit8VQ>CquXSe2ybl@HWNn}
z@la<u{oT`dPhdS41{TdlIrL=9#G7L}J0{nkGspx-SvYne+Qf2#IJaK=q(+U#vEd5r
zC!+xCW+EgUhPmt^sFe@vL2-Q?;;|=BXez81gK^1ttSQclb`O+Cf3uX`tKl1Yc-KhN
zmS<`feR}ol*|&H9{=Iqm0L0gisSFupeE06*b4JpieQH=qlW3-srLTGpIP8<k23n?u
zCqg<WHiSOQ2ttkG2?UfUoPq5yWa_D~9#Cp%&OXkLX^y|qLP2H$2mPwynEx7Bs|U7f
zD6Anhb838Ir5&T`C!-Tnv=6|6M4KyxM*OKIhk<Yer4a#*T&<uA{fQ?wnz%HwpBkxy
zP{JdN!U!erA|&V+WJF*MlxBJ(2*MhC5;CP4Yrv<R*uwctLYhGN5uY#xIz}H*VxWmk
zp8(ZIxj=?9)1^R;xyQq5J}XQa(9*HA286z(Da;7<!SNLy{Ss3l0DVc#FChIfhdN4a
zg^9fR%7c&BUVZ%)*kI$+Rjpf%9SFrAF9mHNU@Y(rL4h{0zy%8?U52%IM3hv(a9&9b
zl$?$c=bR?=F-OAb`eAgiQBphSShiN&h*`g4oXgJbqNyj42@93b7yp`?5o8|;!}QKV
z@Zu#b$$_dFt)2xAi${Xto(m}zpO%ScwGr{z2hn&6-Se1t{Q)JlW}?}LwR?hExFTn2
zAW0wCP#lN^>gt(OpmY52rygVq{uq>Su$`5rOZ|C;wSM625t)AALew1N((!UYrnhWa
zGngOx&!0d@0-K;zQVI#(j|c3ppQ5=d$Uq<kOf+R!6B4i`sRdH!GOztslGt5^9h~sO
z4L^Lnz|s2K%s@ulw6S{4kwC_1>oFjZW>P3*pm7JHhcS0wIm{QI3_GW?paT?SU4IOl
zmB!H+e`(Wu94Dxsdu_W6^m-VJ=R$mZL8u-l&Z(8ikY1nNsQ>6Xk4)k%D~`+wfd;J+
znT}()@UaWYjh)CRYFwnBS3G1MBHJ^9tVY>!)|uy&28*n@jh8vBb>No9U(l7L*4rP5
zDvm#fCy+gj&MzI(4*D8%kDQ3jWlM_86Yg;g)|jI?<Emhd!T}2KOvixvh|n=Wv4}5G
zr+jt;Am11Wvs@|eJcyIw3~5-y!ojd9EesFY<`tSGnZpHk^GCF1F}+tr=}@q`hw4ri
z4Fs0Xb>vDNO<2~t<@EzQUDIK5VAGL=<W5E>5lA|e;ky7)&^y8-o)h9>oW^7(idz&)
z!;;jGCT$0aK&#%#TEr(ojHpHa$e4HVhn;Znh(9g4$N$mfh^g3&FgE8SNX{Y?zh*e8
zG5iw9#ypolfgrGT!tsYaST{9&sKYqG$Vu`%Cy+(T2z@I8iieO<%Os5g8P$;4xu`R)
zRPe`69&{xL{V^a!_UDV)Nk}SILMu5M>xDQ>iVdk*O>15=EYe)cGhG9k9x^Lp25^B3
zs56Vcm}3FkTfomEGqYFZBwP^E#}iE_MW9iUbu=j#c93xnS#k3rpK;$@bT=ap#ULDJ
z6p%9@q(-1Mfk=XA1_jHsJb;!2K+f}rCnQh<)JSQM6QvNxSa%|So{XX2u^@%SfiCRC
zt%9}Eq0Amx(+G8ql0b{!h@3GCK_R0V1L`EBkpD4H{+(=Qs*2};MwFLO9m6=D!%+n>
z$-oNIL~Qtg+>C~UGIKy@87Nt5OFe|LdQfLTE=5^FUJ--;ED<HE;gZ5GTAyf26PtO}
z>t3y?O{LT|F%{J1LGm+~|NO@{`v{7*j<LYTI3p-Ksm4l1vkzD5qaPu`qCi42nuqN~
zf`A<eWCltQn~e4zkoC)GQp=wJ4aX;v?d)YmYZ0>j#IY}HZGbd;kdTZd9FPGmYbBUk
z$Lg>}6|5-*7b3fc1?V8Q`A=tu1DSnHR(7NviAR9TTAys!m7`VdGiz2a+q`Ta_`qO1
zCJWu*Qg*zob!BKrTMhf(W3vUJZ*7rtSN|OH6~F-&FtGfZ6#g>oGtWIR`fj^m2R|6X
z5su4pmZRW=U{Jyf_Ad+v++h!Ym@EaRPliccViTVj#VJ<tif^@H#eo>cF_tk^M9g9v
z-x$X^*71&c{7e@IZpJ|ta))c&V<R6K$w^l7l9~KtVhtI}QO0JGnOtQnUm43;*7Dz+
ztSc#h8O$=I@|MY5W;34|&1wFKhyf60H@}&{1y=K%>0D<!-`T`no)4V)+-LTT8P9<h
z^q>h{Xfx?qK7Lm8qQwGeLq8hQk(TtN9fD}{FdEaD&WfX3s1Hwn8q}c{^{7c*YEz#Y
z)u~qXs#)D?SHBw8v6l6$X<chu-~Srdxz_crdEIMX_XF6$7WS}-U2J0u+aI^i$FiBt
zYzJFfaGI9(v^mYdAzT~V+1B>9x!rAVe;eH47WcTxU2b!q8{O$v_qy5LZg;;M-tm_A
zyy;zUd(*oKw!p={`Q2}S{~O=|=eHV)P;i4E9N`I1xC$8FaE5Q=*=(Nn#5G-Q^bJ7=
z8Q1v6Io@%Pe;ni?7x~CZUUHM49OWrj`N~<|a+kjx<}sJ~%xPY8o8KJgHP5%edERq@
z6I|gz7ka@R?r?}}SmG2{x}q)4JdEcY>QR^a)Tv%|t6v@KS=aj3x$g3v`yA|G2l~*-
ze(<6<{OAXUc3PI+c0M<KcK=WB`rPSWce~#m?|Ikz-ud3~uZJD*0UvwW%YOEUM_j~i
zSA3Y^&NwIZ9rBTv{NyQLdCOn^<$n+S<_AuA&l_F^Y3J|S(Xx2cN4fETtH!-q-+I@-
z9`>=9{p@L9d)wb0_wCj^=Qlri&kNn~WXK2N3w(Ox2RZeWR{rvt-~1*g{rJ)UaPpmB
zed}Kz`w=F+Q>5R0BFj1Z;TQk-$q&%&H^uwu2Qc-^-+uSMAO3AQe+<=M|7)^8{`uGc
z{`r3t=-VFvYY6}Pj{pnM0G)6Co+1DjaE1o(03Q$nBM{FLP$?MD0uRRlB~Sx5kOQxb
z0;lN$Lr_>Uumelb1piOa#y+skM34o2g#=L$24heL)$adV&<6hu{AN%GcaR4kOa*Tc
z2yxJ_0BTYmtO#8xxsp%`myijY&<URq3Yk!gdXWE)Fg%VhAJRYzwvY?E&<np148u?i
z$B+!m&<we73`DQCelQ5z&@5iiOs3Gm+^4jt&<=adeZ;^E_K*+z&=3C*5Cc&V2aym9
z(GdMm3y9CJ+>jB+0uGO)4i}6L?~oFY%zd=r5HnE|H<1%HF%gk2@fuMSz2Xs5BoYs7
z5-U*^b?g#5(G_1277y_gX)qK=(H1u?2e;@H`70Gy(HB{)6=P8thcOmsarA2N7L!pb
zO3^-cv9@~g7yqLXW=_$v2!ga4V<LhP5FcR;_V5v|ff)TT5^iA=uR#qAQ4+e*5RGvS
zkx?0yks0fw4r!_eoY5gt%P5?|3S9yk2jU!pLLZCb9I9a_0&5?o@%{Eu6C}U|a-biU
z;2<@jAq0X2Uf>*LKp$j)t`tHW`|t~fqaV=V8~Py}`S1(K!5%hIA9BGE^}!fqQ4zK2
z9cMBs;!!;2ktRIDhxp?d7~?-cqk>3cg8*bwm_cTYW=~Q=RRYLP;z0!ZrELr*6_x>(
zBBCFA#wG&t9@@*gW(x_cfw~$)AO5i*zp^pftAY9>y~Oe?6$!hd3nBMUA@d_7NTL~J
z1|ix88UG4IAc{y3@*yWQvV5LkBe8KH!tfjX;T9snALL;qzaSgNfg8j?61YJ!*FX!f
zK{C-`3%x)RB-0Eka~!l`3m;(|#z7zE;R{Za8`5ALZlN;KARDehGDlMjRx%ANlN+?a
zG;Px~xxpp3kTy?q9JKHYV-l}uawcsuJmzs(Na92UtCsL#W>y4YJj6R}2bcze1}vZk
z44?*B;0eCU8B9PN5TqHJz$qO^2Abd#ULYO}AO>LNJE7tQ?$H_@!XWff9|tnE^npKp
zLOTrNKjUE~K!Plj<gK>yKMf)tL?a$ZYd;>QKPfb|UM4Q%Pa(TwC1isIJfH?9Kp$w}
z1^>PiR%XEh1mPZ*z#lXc6msAd48RKA2MfONB<G<t*I*<k!5@Y%AI70a{Q(~MAV}q5
z3n3v$`yny=K^L}=9Fol+<{>eM4>-BuNhQG_5)(?zKp%?X5`uIdfOI9UVI@|=7`6}%
zhR+|aAq<i8zm)SGnG-pj^C$h`GXCTk94AeVK_^`)C-#d5q+uTp03Uwg3HBjXTp%2P
z=m}DT22LfNYQO@v!2&cxA8McgVxSJMvLNu`LHV;9!T~|IGPqvm9415@3^X+GAwiX7
zLP8ZJY$8G<v@tvtvYbI2F0?M?Fhk2vA!FbPazZvVavxma9$ersSO8Y~;RW<zAOBcX
z2D(88V&FUHCqD<GM!j$g$N@*Wa3sm0AGBaf`#}uIK^~qoA24eR!696`AxPC=3%9@@
zjNv2uK_Bd4Tj$|P1p-L1^cvj2A7Ei6^+6uCwI8ry+5CYU)^rPka|>OQP1_U{iw{oW
zF&B}m(f~w4E<;knfr2zbut4K6#%7>sz#IC3Pz_ZSAW8;&;vSk|0{npn#9<$zXNjyO
zF4E^(6XH~T2tYMsByts3{jn}n^)L`LFBCLLG-GJb;U40_CqzbM65>Bkt5@MqA+=*z
zKgL*H;ABZ)S)27)TU1&HV^awtTf5L;)u3VRVI<krVDo`o%@th7AQB>$UH`?kN6B>y
z-M}T&0JBiCVdr5F1j1eW;Sm%QV7W9G?zLg<)gG`xVf{fH<n>I?&`mk4Vv|u$k7FKb
z<a{pUGxD^8A}4^_2OmYFbOpj>Q5GM7;R%4j1!_Q1XQ4#<;uSi;TV8+$)Dvebf>V2T
zBu4fi4s>KEWk2;XwWjMF#Gx!h1HOvaxI_cAKw^4{7a<JdAg?z3<WLi|wne#CAC{q`
zQXp)d6<Woi8N4$FW)y9~@DV0O4Ms9?1wtFfVQ%F?4+a7rN^>~ip&R&i3*A*9<^f9u
z;uhLAapz%wZ((s)@_^TLUnO`TF1HM^Aah@Ab8oS8UBey$i&JBwXa9|YR=IZrd38?T
zHw^Dq47@NBTKEgM;Dudy48kxCIFkz_;S9M@hG94jU|0)kc!#wBgC}+oH`o?CxHUew
zu0j|l9Ahok(u6e-g*{h=hZu{qSc|u~3yYW*DHe%EQHeQ&i7(2Drx=YXqKZBEin-X0
z-x!X$(2I|;7Q>hk$9OZ!7@*ELjr;f^)_95AIF1LIkk4?A+p&)AxDD|*ut<!L{TPx5
z0+7jAkPF$8FS&~|7|0a)jxV-_Cb@}s7Q(hSk_}Cd2_p|NS(R5A3^e)4IN1#uIk2LT
zmTTFTZ&?XB5|?+GmwTB%NV${?&6kHcA@pGkumG8pS(%rang5&FnV%V&qgk4#Ihnx#
zLlGH_VHpTzIhecIn<I@4wRxL8`J2nxoZ&B=#n}eA`JCI?oy{zr)tLp^`JL<8o}Vv~
z<v9fD`JVgPpLHyr_4xw%`JW5gpieBI1)2c~`k))yp^aE36<P!tx+r|jqAwbwGg_lJ
znxi|~qdyv?Lt3OqnxsR`2i;Mk0g$4H0+=7#rSGt%<tU+3+WuBrC}R4hb6N*+dZtjC
zrq$1;V}hr3ny623s2OOce>(kw8YYgqsGnK`otk-)TB*B_sb4~>p<1gAFsm7ds;fHs
zuG%HKdaKJ?|H#^Jz8b8JPpnJgAo&3w;+h{gE3QG=tpD%2`q0{I)OxK=udOX&ANgS#
zSb?zH!5;*huvx*d@tU#8Pp@6br~8_%$r*hDdm1i#8Vp;oF?+Ea+q1Fnu@{D~CEM-(
zx+311A5wcDQd_kv;<#YKE2q&g8RwMK2dzWGuA#Id<{GO{?X%}BwBu#8Nqgx`n<9dn
zBbkXPn!yi>b*SN?R$f6G5QCXSN&bqE9mHW8#DO0c;Rps|5$r%97Qqn;VN%vA9}CkW
z_=T7#LM1E$QN}vex;Y>n;<XdvzJ)@Q*ufg<YB8WIAP?)B?*_350(d4ye6(YLC<VEp
zDYA)M@r-*S4w4-zoE<`fA1wUB6Czy5X*&YJ0{_B65aOXP_MurpK>}E(S)B<K@Sz!8
z03uIj0&1WTinR=S!yGCD1;n8^_CW?Dz*^y<eP<*!AS7jaa%q?YV+d18WF|F^AtY3S
znMT24U;|P@B|tJ_7Q#WfnPE0$rADgZtNy7PqM#6>fDzU~9KPEh!l4lu;jj<G8s?`N
zVjvLm!9>1?iZBAGuzZukJS9LOd%}TKe#u0vVJidZR172|nu$gNAs%1@NM_+w{&ako
zGHJepO9WvhQY9}t1W1;lLu7_jI%En}t()K5AqFHO#3(VSd?1>^TH!_@W*{1T${+0O
zTOxv1ssTKn<2z0!SO2MvY^A|l?7<<t?f)cPA}l+x4I3W@yRZ|&1>DMfHQ@!6As%v|
zSjEAd{K**>pc_O$T3_HE%-usg0U3bd1)RYJYMh)v;RTw31LAWLWI+&?0U4H|Sp@<f
zENDAQW;(D#9C}h8tb>p?22)~PMT;ibnW?%h#&LK8Qy_)Wt0CACrD)DUME(*Xibj%?
zpdF5&CD?os^a0MndpHEddF`Zv@PR4|=A|}dAl$`v4t}!k=NQQ0c<uqF2&M+4VHvyu
zBrZuimjTi#s2QqZczi)4j^RP?Ar(F*CkBavuq7U@V?eSa(sBMnDrkJ;<_JOUAK5Fl
z@Zr-^{aTcR=xt<tKSN{kRDGetAOAliC&ecxmf<rjrDRSwSi_uOWQNlPqRyEkG$JG?
zW<VU^Az6<0Ee>O%Bn21*0WEoJ6r6Wzd?OyVN12?#Qc|NisC*Oz%2H5d9|lE2K;|=8
z1L>dOwU6CahFjUGjk1}?*{5M0Fq|DOTd}F#5r$|lQzuG1!4G7>8;*4{yg?KKAqUE!
z8CdiaTwnqAlJ#r6S?j?9?m+@T0V7Dj8(zFF{<j)H0aMN)8iFb|q9MMM@_tMtHin}a
zRstB1A=p(xA0j?78e$e6=}!b=6ab=H4RQXC#jAl(P(M&lqWN2f&!5C;NuC`c=<kTX
zX^#9AlIU+$M~VGv=<65AU;jLZ@tnk4^iUj1kfZd)TxN5bICG1RiM#itMhtyVoHY}4
zOkcC0i=0XGS1(XJLH_ndtEcP<vUte$r9z0$Ts42lRMrR@2q?mPCJXArdCy_eS3zT7
z1gS5tzE6S7HHjDFo?eiI3mZO+II-fzj2k<C3^}so$&?S{#Ov>z6MrV7>I3TUNko17
zo`CEp+TYlu{y>SF<<RxMvZ?gNd!i2>GS8qQN^ItEpg(gC{Q-O7!kfg>Cvi)R*Tkku
zWv@~a9wn|`*_h99_d|x#<`Z$pB!bd6%3-sz(j`WOoj$W5u2qK`ZeKaS{=?1y`2P=J
zfC2(oK!FAxh+u*WF8|12gAP6jVT2M+NMVH*UWj3a8ZJ0shaT<+Vr2M%#LqO-_(s??
zth7^@3x3?g0y3I7R8J1WNx*?VpcHYB2;S6#Kq1W_u!uPp;PVMGqC^KuA^W_bPdygs
zqlpCiupq%bE<|GvloG*HjX5<$b51lX`6C!>qm1>6I69#TQZwE71Dk98)K=Sh64mpJ
zKh2DFPeBoZ5{{k6<l`JZ{oqsDLnuCD$Rg7CrV%uS6mrB<kP=qXNh#e^);aURq|;0i
zVdvImr9MHGPWza&jA)=xW!gE5*gBk4RP__vtz#|&lWV<^Rh4P`+;dDcCE-&;M76;s
zmp(qhS(skd=KqC{wIOcHZMWWj3+`f<Np#FHplsGz4dsS<%y_7s=A1;^r3afosYFB@
zR8T;*TS}_5*Nk$m4d+llP}V~goeu4jaAqGB))r0T*pu+ID(%~kLe?D<PI;}Nhtawq
z-FD2Fqdaxbd<92L*ofi2Ojv&&&K%%|Hs6eM&N}bRbI(1~3^V{Rf9tY8C7x)QiYyZ5
zLJTf&fKMkh>L3vdRGlM13@j*@f;jPrAQKBO)Bv6gF1X<2!Bd*!gFmkf(V7J{c&XA@
zwVm@+DuDzdtxf&3I}lI}#rXuQ`kYfZZvWP_XP>17Qr2xj?Nm75h(8g|osjz(FE!*m
z)1F2k!T*F$5=qQ45^A1Gw9MX7k}8vR{)|$1S*j9LFXDl8#y4>V?H=qC$LzN2YT~>a
zW#Kj4CNJxg>u%EJd_(J&<lD7;ZT5K$&3*UYf4|={;oO4{P;a3tlW6oI^Hw3tf&@x6
z$m;XT_yf(7H@^1j%WqVzg%c+~<f8`UAecW4=Cxf#Y#{q!)C<b@8QZXIb_5~RZKM+q
zj8VmcxZ&7A(4(Al$S-0?VGEbiGAp3q192`Z8u+*+v!Kn)XEdy#4R46U9R5s(A9|sF
zigvV!;A0x>n8=D+bQi;%!vsn6VPZr$zr!@cg^@v(6CuO6!{Eb;FFQvgxTn4BU2%+L
zEdL|7nz6U(1>zV~F$dq`ag0Dj#2JAQL{6@^k2nHqZv-(1K`t{EXH=yu^-xx*_$HBa
zAf!0)z=$G+bB`}R2O$J`q_ikmm^UFS5O<l)0hNKKI976RNqJKq12LB6#PJwoL8CLS
z=DNdB(TtLbArA+n!(8fem%Qwy&TiQuT0#bhCW=TqSTPMFE)67tNsKd6Da^t+!x;cP
zOrSv2%xEI!n%1o5&}OO4aEf!B<SeH-_Y?>^7DqAQJf}2)*&$!bbDs39CokbCAa_;^
zG5GKeKl<q&eDFh`1TCmR4~o!)Ds-XVy9YHJ)6Rn05}*FDr$sM{(TrM%q5wK*ME@BI
z(vXUDq$Dk=NzeIFeNL338f~ddUy4zV{>P&yt*K3Kiqo9xbf<|)sXJGSPnZgIs6@q~
zO#MSso+@>zOl_)DpV~d2o)f6>EUHzniq#AqRcHp4DpbD;*073otReMkIjIWFtg3ab
zY)#NslS<aO%5|=Et!p&RN=~%ivaNjWt5x6HRl5pyu!JqFVI_mtaq5+aer>E{H44~*
zCibwDt*m7)YtqSvbFngftY<$f&&U!~vzRTdX-|t<VUjkQoDCXiUkh8K9@V2^tgUTt
zi`(4lcDKCkt#5w|+~5j#xWp~4agU4K<SKW$%x$i7p9@{)lC-rzi>-C9`~S<?rgppB
z?XGvfYf$Ra47=nl?}bDQ-t?+>z3gpoh{QWX^U8O=4MMMb?~C93>KDB5^$>mk3*Z9T
zcfSNKuz?RO*Z#&czzjC;fDsJg2upav)7>fn8jNA=KA6HB?y!eHOiKmhGQ%W(?S>6{
zj}&KfKkZp9UH5^XeZ25kj9IbwP?Q*MZp)jK(Q%Fs(+?MexTHR&tcV3v;v{?a#0B*x
zH1l(&;qW*=?7;C-JtIx!fCM5h>&KH(v(Ci4>3jRwmtvU1Ei4np#))Cro-$XQ;gPFw
z#aYTpt~X?!nj>*jZXRZjTr(vLy01(oC^8O>Xhh@qSl3iBn!I_BaQ{TPHvSODQ~co@
zj7Z}y_?VPLq$3V~NWl>{>2#*W(L|HB4$=-)4x_ou%tkNgfaSX;qq&)4>8RKo93xzy
z7%dS;2b<QBCP|889qWh$**$1FcBHMG;tU2m94I<Anj4L6ZUVa>#}0OiBZBP%9zz+m
zzQ?ku^&5iRqZ!UPhccw)jIzW9D$`R&TgIH{oi0Pmg^4t>rfm~j2i(TM_VzWoUF4Gj
znm~hY_*x6C&qPaH+fPu&xJ!eKI3k5Aaa;<GsIrPeJYx?2kit(4;g2X-$_^VTL^Yy7
zj%p}}A4<SS6c(Y6Y8;^&N$|!yj!=kHlk{((A{R1Z<&8XMJpVQ1vbe@_f{)u|JSDNR
z_!rsOI(*baE8%DzG-DNxtve%Gzgs6xoKf*qfO6bqUj|ZA;zqQ44S)zkO(4uv@jzTU
zS7>ilI#a`TL70#1!(-z^2KSqa-ve^50A<`Ew~v&Jdl_9B-X@WevIEA;Eu3o?Cl83{
zbI8s)@!)s9b6R*%jx6tR7X%&qR*;S%<0$YNyRr&Do`N_%rwjj&!+(!eh`UqbiRPx9
z4p@!IgT7eiGoUk~!H<jJLki?5T@*fJ2z<2T2>9SWrtu+jqanc`tRRRKY~l_(w1ee1
zP1)bFW1W5DN>Cs<#<#=cs7bqNEGWsml(DiWs<$Vt0{=kFVKJ<u56<vK+VMBk<|!%m
z1l90)4HOS_2L-D05Ye!14U-B4kwJfB6Dt9L{@@HiL3UA*Vx@#1;v*j^mI|DA4qcHF
zsSpnO5E18K6UU%sNil!q;x|cgFC?)Ye?xW>(H8L_NvDT;%Fr?E6fg&r5(wuLPN6!<
z0#LE$3{c>I;-h~!)q52Md|^0L!go%@hiJxEKqO%uWq}&^U}k5M6w&t#b7&Juz;gE>
za&y>ygb{xHFn;Cd4=`ag>c@UJwG{2L6$ukC=b&Y<Ruyps9*6`H@h~Sh0YF5TF!fLk
zg%p5<fiT<=9;~rt38)<35lVN563U>8i`O0%sQ)kT@({?Nih?8&&cQIISQS^XPNgw8
zTc?WewhV>Q3^y1EzgQ4^B7=`ual=6n7UL9CL>Ni&H^RdzLdYpW$QdD+gi5GWp7a~i
zQ68;>44f1dUUWd>2ojN(aat&d<{)X+gl{$Vg%>7<_2^P$XijE$XxvmLRiO;ZM=Wia
z8o)s;{E!5t<`3-<Dc*1oDCZB>;14~g8sbn59bpY{Kz>hQa;jkn>xX)NBNd3GgHv%p
z*a#=3fhf%wbyQIr_^=G16c1@ZY2w3){NjnN!V;3Vf~2^7f#QC41Sh@LNM|A{u-FU*
zh$5_%85cM$#GxJH1{BBwe*yOp!gzxT6aOf^MtRD2iERWx7PEDD27_kOFs9g#cj6mI
z7-rm9Q_~U;eexSQDJbt}FNhQ<ASe;OBPuGCM`2eME$M|8W{-oJQTSL+`iOba*e;pl
zF>F{XYm_WC$qrFa2q;$w`oIq#F>*=p6#PJ$muZl5um~9G4oM&mHa7>LS%@`74+1DY
zbW|>XL`o>K4CSI8kQsGxbaxN2MxQ5oa;Ay(cRin25akjPqWF!@P>N+yF1_}fpp-}D
zauUs{5T+q+afBj7Xm})}h-(xL%;6co=@7w47{mA*-uZ~fupTqfI%F4<)o_5Ru$Ik0
z5cJuP)~KE9<Q(+LmN-Q+$B>=ta{ox8G#uSIZl^(=Dp7a<)H<lddxA-r5n4}%Nlw-9
zix(OVlVzSA=89V;bc7WT5n&EusTgS4ZvrS8xY(a@B^Hn23_0<kHZ_kDN~58rU38Uj
z5!OJ2aSm2ySkcKoF8XB5R2hr1qH*PJkZ}&S$y761qfe?!6ndmnN~KlWUQP<7S$acK
zYNcK3rC)kkSgNICx<fJrre}(#X=++xN~Ud!GhC{saVn>C8kk$<rg!?LH%g~_%BOw$
zpmvI<fvQz{>ZgTjsE3MBY$~XW8X<6ssE-P%k@_-<%BYpfAdV`jnX0Lq8X1&osh@fv
zn98Z6N~)#msh|p~qFSn}%Kxg5da9^usjAwlvr4OT`l_(XsIpqCyUMFwdaJl9sJhy#
z!%D15_^ZH*r@}f$7usirF{D})qgMJiJ_;GnWLC6j7!Ktd=Mb&ZG;oa;tpph^);by3
z+HWP8A0E>fDn>qwfrDy#57pp8=2}_DimYy`tXC8b;lQs<$gj;B65v#kaax3vaU0Xr
zYmuR@(TEK2X*<uF7(Nk`2%CW0n3oYT71Zh&YgrfvJ9ehm7<eg+4eNG{VHMWoqG&fw
zivgf%I&Nb}tqWVP5PGkvN~j8jm^wBMN8kvnU=tR>2u33fi*N)GIk4MzkkKa*)zGbS
z#ft>t3|V0tT7hr1Y5zGjU`Iq4f#NnMp!WnQWQ(c5beVA$ZW2d_a~3wy3?8RQcqWQ&
zwh)MS5QuaqMIje+<`AL+663K9W1&ch#0)m!j%1s0Ub7tvsDOTgwP;%d_O^_QlrR~m
z5Xev+(vo}TQ8-ajw$X?YTPJRar#s+iw|Lnu4nZ*<dU$_{6qwT*)z}O*fJlNgO;|fg
z&QUJAay{*mN(TXW5fLjSdZdjaWrR_6<uQ#8u^nRJ6|4&q&H%f6g0;@zfnO_Rc}24|
z8>=^)P&o?{){uSCaFErIeb1l>+czoKSCRM-bk>jrHb)Skb65>1m2PKl9(1|7cMp3R
zZ>S+ZmLoqtf&YR_5f1B#IdFuab24uED|j*Z5Xyio4&1VS<`3J$O2`s+_9uGMqJf0>
z5dYhCYuUH@%W;CciD`j2hRZtMpn&^Og6q-231~+#=ujLN4T=&7;edAGz`(&Kct9a(
zqWCv>p(v^FzsG~YxB&_qya*teEEe3F!sx&yggJ{RAB+;k$lJikauqks!1AeV+fl(j
zv3U0YN7ABonD?SyN_npb5_^e8nNh^YP(U=;#Ms&oCFl%`P#QlR4tbQnn<tOgi@mw3
zy$Hp<5)lm;aeg893{r3e?SPRJS&{5;X{#U(?BEFd;E;wjg3AyMZ&H)^*0Qk4Mz}aF
zV~05ac>fPDF&qE6d2&pD%E>wpk%N6yO&K$17nq4$l1d!oF`QT)sZcIdyLYTp4W8_S
ztRWV@QxIPBwbhuoTp?%XaD!hoW{2W2{Q#X9gJ+>4h|suvp;0()_#9?ZO*BY)jljgi
zQwCvzqV!i9(nibsAc)coO12}o$bfdkOf2|m9bSYttb-2#8kQQ{pMRqax8Y6AkcJ+E
z%Hm)vjS@%iMi|n}j(I6*mDquGdQ^k_srl+ehwKlDED?)5Dg6Y=67dWa=?IuC5tbZ?
z96?!6nSr3JdI!iFucTt8Odd?gF{=DU-=WaOR)5WC6S91am(i5o^tRx!9rVB@an><5
z0sqVeAwT4^!*J5K$m|x%942v=K<!F`jW87hTo%-v8P?2yhcblQ9L~)%f8gBA%kc!D
zp%P}&%i)mDOguj1bGpOUvhi$YI6=?yQ4L9o&zXS?dwFcvV~VB%(8U1}E$dJRNTvQ4
zWqv{sK|F39lRi!nY-|h_tdxaYC~3v9(KltU9u1`+?L#8n4(<C4;hTMnfCt;>2-}x)
zj^LRTc?3WE+m%Jc7j(@QCmcSg5;xoo%D~gfqR>DMdi+ZtMa_8%?ZQfJ%WZtaT3iqs
zh&iZ%!=@2OXm_{kA(g114EbPZeH*~7f_V`L-p-4{&D#ijInAJCj_r+$+FTXf9RH1d
z9D$-&p4&}!iU**3jCT4k3;O&7OPmyz*K2I#P`x8~$FK<XFxaFaM>>6=i5-JmCuwEj
z*xR9YQW<$T%r^jP4r>Rp!8^qXn;B^lNA^+;xA8~T$x1OP9om5`)p>N7gW!OyaDvR*
z$y&$<g_t<zz0v@Y{vZv8&=Cp=4TeAv_)z7QDIL+Unm>AIm85IRFm`v5#)=)Jsq~_t
z0_KWRfR`vpvw;jemd0ZqgF$)@5|PFs%A>=RO5f42&moI`6SZeTi}6+*{lE-=o*6fY
z=x&bZTro|g@nrV^wff9|(z_3iB#TQ+5|>yUPZqVLacEXH=X-u=yL)JW4*%v~BuIvi
z4C|x}p>F4`en7=h=OpM1to~4byBuS|703_~PqydrR!zM=M@QY~UfS#Q8gJDgNNAqM
zBN}Xn2Iu<h5DrxhN2wC0{-+&X<csRs2j!8A5!=-ZRxc~$Befo52eDzb#+F^IWduh6
zYZwSE+B~(|-7cZu4p)iM4hDT$`=E;Cu1&&jR|Nm=!bH@LamT*iq(qMIWUB86FYyzf
zU-$m-gBkG@ukjoIT^4`w^_cM-FY+V*XAb}It$pMquktH@Umkz*z!&l?FY_}mRxbbY
z4j1z@uk$;vR5pL}gO>9=FZ4riQa=ClN*44)uk=fwP)2|BC6@F|FaPyZe^w^{^cbJ=
zRIl}0AIN}u^)(vxTrc)x?>$cc^$iyGWUuyX-z{c;_5qgmY%lk7U#?dF_AsCI1XT_F
z1b&PGzX%qbs9P9rX0Y2451;W9iRQZp%6W93Ub7K`<?_xT0lbFg_IFQTao;UTei%Lr
zVKte;h9S?A0n7ft3?!I_n&*<^=@889_}(RYBKb$nDzipr_n6;sn$ImF?U|QyeKxlU
zK^KUHAO%5N4TZ1>ijZ1`=Mekcc59Rh{02wmvM*yNXMdA%)qwpsd>U+sh{EF=@n$bn
z?ccBOU4j9PzQKa3R4ys8q{AaE#%%p4T6pydnSYdV99#6akN^9EruzWlPvAg;1q~WR
zmQbO>djq365*S6_DsTSq9cgz&;IxV2EFJ_IQshXIB~6}0c@Uq!eaQNy61Xf{JwXDG
zNgJ4I<vA$(p6K&uuA8}NECt<zB5<X^e#n?A^XHW5F@6040rlz6YD%tMy?zB7R_s`^
zWzC*Nn>K7Sp#GLUxjL{JPJ4k^+7#E!Tfd*jJT@E%G#(VBF~h|x%GaY>#wncvfE-!!
zWXh5YT*jPP^JdPSJ%0urTJ&hrrA?nkom%y3)}1TAhTT|p!G*N}`-`@CRY!qGtl1&h
zuFxW!vyC4Q+0WUrV}knC^ha+dRJX<b#f>LuUs8XFoBu5qxE$G1txoSXJLW7<HG$`f
zUdQ^xCUW}q?cc|rU;ll!1M@X|&!7JMImVxJn0rE;?6NbEIrgSvj<7`pGUu>xVgheJ
z#vX&M!^v6$F+>qZB(X#jPdw2>6#>wYtlAd3Et=vaTE!!NFw)4McKqQdq85Jys~)KK
zaZWye%9%;3n+AGfr=ETaDw<|4><22K>XE8E!-yIvE`L(-=$x9G0<ugq&qOm#H49>k
z%<iBQu%fM~BG4naJX(s*pxEQ-9wV1I?7aln9E-yhJ47*2MHgkXQAbleG&Vv_dXb@l
z_=#eXMI^!}ibe{lXp!Lz@#h&vo*{M8N&88!IsX9#LFSmEmWlO=irQ<nrsbRwq^e_-
zk#(O`mV0o%FZC&BF>|Q%r=C`?%u-cpr=_;qYWt&gIq>`hwkBGW8Ppu;jzPwmEceOP
zpXHdl@Yi3h<;u`VD|@tFd+)_JUlQki4c>#4sdT)8+6s&yeF#3-Uxm@q%cR?u$#7wb
zC#JY!v2HVoOOqai*kY69<<~NOM<%&slkW|gGLKhg`99_1Z8>I{XQtV}K*%F$8Rnv`
zIlPo9J2_~fhb9`epC#)#X{DEDx@o7MhMFXhe=fRetFIpV=*Xhxx@)h$20LuAH`F>Z
ztj|U}?MBOHacsBWhC6P#=U#d0l-0&NZ~whlW1DWj{{}p8!3RIf?vVFJJaNT0>zi=L
zABQ}0$;CFD-^DM-9Ph>_=e%>zKL?%K%ID3zbkmF8JapApXT5dT%Njk>(`ToB<kVls
zJ$K!AS3UMaYX?5~waezcc;k;pes14a6ux=q_a#1g>8Gc@`k9wk@p<jHPwjT=zXv~j
z@y*2EL+;N<A2jdBXTN>---n%T0Me(w{>#>fKY#uA=U-j<?FZob@Mo=R6tEf?D+oWV
z;SXqhBzgBBm_HC$5@$qkAm=DnSo)Dck+_K~`?wH(`Vq1IRc{|83|sjS6+jj`Z-CV*
zR)7qW1e`E}H@K@ulM3RDTg3!tBLAtNKL%Bh9EMOV{g9zZS`w0F07Xm&d16@N(L<EP
zV?rXi2MSB5x_IoQ5ph!?Y+5+R;JuJq0TY-&o^b@6EU-p8GDLCk!3c<aZW)1ik8+fe
zjEdYt8P!+@dG?_UW$a`n{lG^&o}dhF{gEKYcmjL;NF8T5BS7rf22?`m40VO0k^;Gq
zGtPmG5S~LB;V9My)s@K%Ht`&BVMlxPAtq-OvOSL6M>U)wj(bc}Ap5ALR*n&f3&q2c
z5+q~<jmaJ>`r|?807@;x!K(GJgpdQNr4v25MW_wZmQ1OnGV+nl@Q_j~o>YcD(B&6e
zrjsDX<fJtj36x1%uw`L<4gVSSIXg2>3yrs7#}Pa-p&A9$8d8u3KayY#RC$h7_ized
zl+g@Z`2<)xjEORwA)k&R23^(YM-2oK4!;cKj^XeLNu3jjYT9HyRnp2;hPj++79|ye
z*r-0t5s2j&i6v05O1W-k(rrMAKzKRFBAa2CS1u<SiY(+E)dSLDEu$vQ!ACvTBP&(`
zGD}(|=~EZsCRK>T9LTuGG4f&6d-%i|%YX`8b2>~8a#Lw?HEIr(@s@761sU-Ogn|}1
z%zM0IJW1VamRLp7u`2Zm)0EX)YKBjG?bEWD>!-B-d8r%`R2-{d1VfLYP)Gbwa@k>(
zIA|gey|~9Fg1m<_YX6{*juwSZgE~hK>+y`BQ0WQx@RCh{0#mE#qonnS1`>}-Ad-57
zRRgI9P~%b|litZ#?1auT$RSr+#X~C1AV+kRvC~Ta#I>_17c+pG9*oT*gozxhR3K)K
zV^m`$@#u!l%4?PKMx&&5b=p2+o7ads#V33bOd}8zQ=Rf@LLQVLAPEDVDJ}R*TC^Bt
zfp%FACoZ$9+N?lsBoNQ8Vi5&gAU~dwgj8|vEl+sDUn%U3-1=}J&5<o_J+k22hDo=)
zrLGWx8$mh|SEe4>M{<iI-{u;tS<=;}Ny(8^pcJT1QT&cvopBi63g}AX<>@ESTP|m?
zryp;D(=5PaMgKQ-6q5Q_a8t|7-%8@+zW`<$j%O<nENO`^d=bb!7GdG5n1fGW^q^jk
zAt4G`2tzc}@P|4)>AZb-QX%G1XZ=y5X)wYc)^G$r9H9?(0Ecs|8tyR^iPB?uBRh%2
zD5~QzTezOtw$sGzkGq46Sw0~j!6ndeucAofB3a2%+0s!qI*{!Y*FZ*WqF<StR&gY?
zmsDv+Ix!fJF84=BTE)jb_*9d#N-&hOv<rot;+|$6BOLe8$vG|rG4H-9-0X2TFpG_6
zrpcPXewI%vKq?bL>l7;IKy;Si0hMNG=dtlf1xm+5Y)Jo)(icaYr3r;;g_3yF13f|#
z)OZAecK>c!COu3Io={RWAA>v;J;rSN0g4(RqbNxY2bc_`Yq!9-D!|qgMFY_nV=Gs_
z9-%0(m<{D;o3t%{nROtr3&{sT@+!M!?UxOta_81yR&W8zGPq8Vw+#E{aPiB`Yc5Qu
zm_y|k@{`x=#BZiGqXsc=i#-ag75T6##@%@jRYKYbglp->E3XN<1TiH6!5G6Cwm8Nm
zUp0-d=^o+0eC9Dv_cIwYwmjo}=*!fUce|WvkrvtHRWG#4i~e!qv8U^0uOD;~vuUU|
z+v;_1vewVu_rC{z-6Fqx;^V9L!AE}bl|L!mL#Fu8M_KfiKYi*~UscVYAM~|9Jgr&Z
z`~Tku|9-H)eex^n_~A!?`qe*@@t5EIB|885<v)M)xBvb32T}a#zkmKK-~RXq!0wU0
z{v*HwtiRz4zyu@>{WHJ@bigh8KLwOP^%=kiw7?5=y$GDZ4P=}O#J~>(K?p=Z4kW?*
z@xTy7!4zyC4J<(pWIz>!!5HkF5p2N?e8Cp^BLe~ne6Ws@;0I5Wy?D4Yu86Hu>I!B!
z2w*~nY5)pDI|=OqrZT&)Bq9h_p~91hJ%T7gBSHyYI|y^Juaby8D=P_Is-(JN6Vn2)
zEd+^pA{-X1K?%G;4M7G%0vJ2|CTD7~ktns<tFN!XxwN{%ks!l?u!?9nkE>V)H2(w%
z?79abBnM~sqJl7ohKM4s06l_Gk87L6lRy`H`jyxMwu88bD^x>}c*NhDpn@1eJX@@^
zQbRo%95{@_1f0YDKn6k3#a-0J+o*;lSOglfh$u(`h~Nh)NP<GZhdz{%$$6z}Y6fJu
z3iV(P@X#5TTdJF3m0>E1v<d`XbC#JJrX8cJ3#tKPx<-6hs>c$LVbZ8T=#?8=ib3iQ
zcMK1fg1b}*1ZA)-mas>08Hn*%L;+zbkMKe#q{hG+rSND3NpuUA!iRG>$7o1}Cn$<+
zTnXlI4(1>xNHQWwqKX5Fq(@qeB@)7Yyhq#f#$cg}+JlPK3J-jsCSKbIssF<x0*SG;
zf=FaT4|t5Gf+Uc4ag(%q7j+rBb`ghd%tZdF$*?mbY62F0@J6Wku4*_*8M>pPN-C-I
z2=%bNiesBvEWumUk6h%%UG&8yzz2LN1bt|SwQS30kOq9H21j6rId}#;$il#3m2h)6
ztIDcg@e}Z<FMZ&ZL|UoR<0S}MM4G^d!#peC@=Jm#slwzHsVoqg5JWo*q2~y+UaFIO
zSVZrV%0Nh~aL|WrJ1Tb*M42dvMLet0G_EGJ%JCS?g(MJfkVFugC8rojhm1|Y$_IC=
z3PFg-CSj03<26N^%wMvyUTUkyI<v#zH9xtB8n}>VScFexP1t0XnEzl8UQr}oqKbP+
zJSH?IWRnTniUu(WH>Zd=ridtFvcgw`MW}-c2*R^F8YY6VBsd$kdq}Ocdo0$>Ak-8S
zKk-ZIluC?}8Cn!e{3FZ!Fw3(%ih-zxR9OUlz=vl*Mt#`Ofe5H0*vr5Xl9-5wjzKQG
zkVk^lNH_6|b&8}D6|`mvgrwp~%Jc}+<Dr<Kt&H@DAcN6GGfzH?290qyD?8BwNd=DF
zt0a;M*9<l~F*GEtHn>1Zhg=t@V7$Tu6k&p>r}!zu(~@(zqVI4{n}DRk06cjUh+%;e
zD?*o*T#u7`q?PcA!SK-{RTt)<O1D^vv)U+*L^k<kiMT*GXa6XUWuUg2{7Sp3$pdmX
zxd^XdgD6O<HbG#JJ4&PQ7$zuaCILB&2hq9fp}`0RzzM~V3O!3-)KGj#0&(aR5CsZ;
zSjHr1D9PzFx9~5I*ws=ckd<(TMSxBiC8^S@1{$3ZtpY6QB*|b^m%#hcxeKznlc1x3
z4x+HrBy}RFD3D`-&WMB)fdr()pb9!EhiW*v)Djc_Bs@kcw=eZla}86i7?Py$ATo)f
zj$zU6_$?@L57+vVaL^$$om19?AkPdBSZtOj&{MaNN?kdM^z=<9Dwm@GO~o>>xR6AL
zBoJzoptPc*5=u@B6A<T;DM?MrmAjQ|YYS6~tqC&>3;zSwn1N7Kbw5?T4_4(xS0yoh
zhyrPt1`@3X--rUc1P&>vqsaM{xmt|oh&jT%uSlX57!`-6ozeXKqMEb{jq<6vGd)GB
z26BN|YBeIU#W@1OsRZGRYG^nYU8JLGxNX2ARza&_;#I90+nQ*&jRL7iqNr+%7D>zw
z@d%2;`Xaq;4mW|R?I2SEIUuEi69b7Ph_kJ7X%b=aFGUOlaM@056NI9gw~@LdbPKEK
z@=;;&q(CUDKaI9g@(H)C35~T0WJoG<sL8$R6~BngR_q^iLB#lMk4WmzrmX>wkSr^F
zrMAe9wAx6ilg?B~(NScXo5fl3(^>oASzSb{f&ajV#lRD3kcP#u2Jz*Q#puDu*`P4g
z&j<tAKpTkIVnPWDG<Djtdyq-MSc-;NU!2j;+mK&+s$Z6fpxAN-Up$~dD>Hh+yz~SN
zR5GG7q^FgLt<Een{FR{lRVR$WU~vP@4HAbFQs5A}jin%AExeFi3PUZdBm~~y1&%OJ
z`Xaz6pa_=25e6mrH8*EEpoZ|_U!vdw65#m7&;wTB`TgH5<2M85!WeFdTza=Aqz)DK
z-vfd>%=^*+o~%>7-kd!_85D_|db5}TNp^IbJ5q)r0^{S@sK={9mg>*b<KiyH-Y;I`
zgV-R{oEZ;}8*w|uJ5CD>K8b!nr4qH-Isc|(?aN+3X5>Z&8|zKv;#*`#rsPVN<FJfm
z3AJNO=HyO>8%WM%-J4`jCgoCI7*Gyn)f;6~X6069K15DsQQl-%rsY}|K1`0~I_^GO
z=H*_#<+91;@>^wJCgx&R3seqfN*iWlX69xF3uI2_4qIktrsisv8d#3zi<@R^=H_np
z8C=e0;@f6#CTC}c=5XGpaaIfHY+r-0RmS+^z}bh9=!XI>i&Z2E0dD7!m}jwQ;)3vB
zRf%T}=?9X)=Yc_J9sZuZJZQQ(XLKebbxsQ-V#I0yLVyN~1=@!_B#Cz(32QLqYH>DA
zq@q9)2`LpW5l#tcdZZ8HEvn$xod01&Pn3@?f}+WdX?mV%kWi(tVAC|I)`K{QE~}s^
z5~iZ?3F`tb#{*RBNh+{Ah^6$Khlc1Dl4!I*Bb)(>wG;=Shz3Jg3UL4rvBrn37Hf;}
z2B7#wJW-0YR*JJOh-Xj)@EvO#Ia;8A>xEe=BkH9d?FaldX@O{qL!vFT(qDBkPOSjV
z&m6A7wnBnPg<hJ+#dg-u4Ab&dip36DL3Rs90*to67y<iX`la8DbSKF+5W)bAg5K=-
z?InU~xI@xxrkHJOt7omi3VPaS%f2tw2JQAmZI<Bd&s>UdTWzTX3}+Q>*LLkd_3TEZ
zCvcsTwBpBT4T`ubCIge|;{Pcr#&d1sVr&Px?bjxV<+g0*-ePdB>dCw6v%s`!@CJn{
zguLVjQLzSvS_GvnmH95l8z}^Fc!ot-F@G3ZoWO}^;BS3!ha=Dwj<#=q07m^rs6w!V
zi`dWr&&!2bEG4NGZ$Ot?Sqd_7hNM6ezLFJW8>VU6$79H^r5YxDa6&<=NiP%#P*|iU
z(JGqa3qio!ol4`YN=-P6v3FUjje-*s-_H4L3;yzpKza$>{Vl>sg^7CtZAq$FsaV81
zapri79(oJN>MN#L@c^Ny+T_)f-6&-Utb%}xHdZ7o4+@^Tilz!Itx97fN~$(ChauOM
zZ%hSm<te~Y2I(b`zW-{f1le<7=|n>ulQIrl83K^ya<=V0o-Y-MH)pA!z$uw>N^-F(
zLmaH+A{R_8bg~6YU|#RlYj3l7@Awuue~^N3gNSOV@J_jhIZ&fe%Mn|JRgZ`RfxwAE
z*a$`FLw|^Zg0O~)Sch5{xkV5Me&`V?0E$(Z%N|jfBJ~TciU}IKBGa1>u`4#$^vrep
zB3gOG^`a1Um81z7LYQ!izqkkY@Jzk{t{nq%wn)xEaJEYn_j4r&m~58u5R7ops`hLI
z$L$!?10kLeh%7G(W;K$A;j^|&45Qj?IB{GuxvABpko?5pg4I;+5WH&>2TKY!0zt&&
z6l~EvQY9(*N&o!TDl^xRCAN~<2N-{N?x;ekfT=98FlS-MY!l76kVWdb#5jp5#iq8o
zK(NB}-<ai7K(R12K4kSyb#0zye+n31jBg-Zg>b`(YM5`i+y_&ehEPKSHRA7Q|8;+;
zA%S2ALx_8U5O#uqZvw~FXJ{aN*c6C}b&Gh0DB$R8S-BWX&epn>z!uf<O5-yp6LNn@
zJ9HD|ig9+&5G#Y21BsPm6SBA<l3-(t!XuEaFpwj!I-QadDmswB8l+~RTkt~o9VM73
z%5o|RgomxMiSI3eFscuCm0#kHWf&zu`O{`m25(}IxQMRg#I|o-^L4Q^K_H|6d8N%S
zw|DPRxBpnK|N2%0nazQ4LdPu#eH|u9k_wY$38{ctIw^YT0jvlbkOEmMX;iHnoe-Ba
z#8GFo-in71%4vY`CvYIaf(8#FOsH@nLx0WyK#VAHB1MS>E@I56aU;i$9zTK%DRLyq
zk|s~0OsN28K$yRBCCiQ#U&3rCb0$ri$Zq1qd2e7fZ~PbuT!rtRBY)Nm3B>0wi8z0S
z9PvXUP>Mc&Os(qkC(UWrXO7q*bz0C`QFe9&HdWg0h(9T5{qc)Zb1q$)$FlAV6faQL
zW8UHk^4BkwQi125RO?rxk-ufp1S9ho`P?FZ<&-7$ceimhbB`%&ZaVOoz-8ea`}5rI
zvA-wxjy3;17x->7edic!)*P;J;L@1$3VsrZ;6A129v>SHYWO}VjUSu#7cZJ@fsvQ#
zi?_R9pnFf0`W*;3_3tNHQ%4>zu(`l^HN+j>y}21?f=_lk6Quqw;n4T`R&&f_{hZer
zInSBHS3k#)(@bCs=JuRF_aI|WVDXp-n{?rrQ;k3D?Nd->jfvx#c*r#cp);}dMp|7j
z!Wg5BGd8r(cLg=`SUtlXgU^CZrNY;Qf^C-CXM%XA&w}C9gIPZ}(io+b4#89<MJ-{O
zrIuTA*`=3Xerctc08CltOgW*slR(z^1e8BQ`4a_F&&(0UR`^J<$Rbcl<<B#P6cR;K
zQk?&_l{HBe0+c&p6;cpCM-;Wl98dYPNFhmV#m*7pOao|9W`bG}J@qvfPBVcd*Hm(-
z78V?MO`+CLWRcm3+%d=Ob`Gi!-g*pU@r_oRIQ2YnYc#6~WL`YC22vSq+2KaoKE3wV
z7^=9I#+pD2-kQ}i&ye?_a~O&<ZF08tc3pPc4Y%yA-VF4lt%2;eEw%9;L#ugDDuv-O
zf)to6v-;fAqHU-KBF<j_D%q=O{^)9~ImHU-Pcye7CYim-$%pZW1DmtkKC@}7Syrj&
zv&_TONk{Q+_aLlPKh=g>v&}anbPUDa#G6WTkzJf>YQ3F$45{4y3vs^KE)z%~CFB1b
zbwLk}X(gCfW1Y3uTXP*|)iFt3b2ZA4T{hVP(_~FopT_9UGjDGdw%l{mUDG*AIa66e
zJ<6?2R?R#dwvc9;1MWa8+UyL}bA?>D<B!+e;Y`j53;EnsfBjO|n{(c|=bv+#`Ae3Q
zeo#AlvMnP%tG8OZ>#s}cuHOkMKKD7dk}5alpw?5bK>yvW=8M9^UcB)Hor4V83OQr!
z@ik*E`b3~pU%mC$doDdi&vW0s_uqpbzWC#lU%vU_N3T6Z*t6fh`|qQqzC`EKU%&nL
z<Db9&`}5C#`s%|kfC3z#`{Wmq{vj}d3S1xq8|c6XlJ9@oBOnDUXu+)+5F-B&+#m-#
z=)n(yFoX$|p!6<i!V{u!B^e}>2wUjF7s4=xGMphzNGQ4#;xLCg+{g-P=))fZF^EDO
zqWEl>xg8=gi6-nJ5u515CqglbQk01izox`1ViA5!oFW&y=*2IB5rS2$S{BP_M(S-b
zjA~pX8{6nc*Nt&ZXPhG)F_^(O;xUhU+#?_75=SxBF_3}`-5vXA$U`DBkzf3y)duOv
zN5-#^iku`RD``m)GO|jL+$1MKlEzDdGL)hm<@quRlTM;Cl^6Ns`ILbZ-z|h4txIG)
z4m6N+ERP`CAxM#Aw7Z&kh;q%aB}2{;IJ&S0A^RxVGG<x4Wpb}~3X%U6L-yf}R_&u2
zg<%FM?@^6hI%JBb)SN2I2}xF(FB;)kr!wy0PU0D48t~#Hv1aLvd6veR1VPO}c5;u!
zF~k|f^hYY@vJY_G1$YfvhKFM0A#)rPV$Kl{I1N${fGT7kBZ5&pCVITaC8QZ~bB1l2
z;*2L8sd*ksUh^I!xllF(8O_tDi=sHrikLH}gG6Wf(3BJ5;lmn>ID%5->5pk_MG8r%
zM%>ouypN#@UWZXeGq>d-mer#gO*@xE2J-~W9A-od%GfzX77h2@XCSF)21*6O*2wfj
z89Eb<&Xh45eUS7Xa(x0_15vxuAj4_;fM#P_by9U{j5`HGE3E&%3bA7G6=K;rsgM@r
z*N4^hu{492U`O)=WE^Kh5EI8(7k7-4V#Z%-)l6Gi%bLR$B(qHtT3L1Ww|r?fD;OHw
zG8}6ToeeIwkojtI6vr}L`lCrE6O4j3ddbb~av;5p25CyGvD73+XRw5Aa-SfGYql)7
zBU~W>bZTBY@|1i&)d^3IAPs9oK_5t+##t7j2t0*Fjd{t(U7l2pWqAW;;W%llfcAt^
zHSHeGhzx1+gDwRlry8%}kcaNEhy|4_716jyDu&h0W+di5htY@8UUS#lU??2b5s-<c
z+nxOIm$~Pu2a;9<xP82b#`kcJfb<d5dpIUO$!pBP?&1F+|GoyF<`4uv>TwJO4`*BL
z{Oe<z9GO|%mBq(s=s>>unzP<#SrC&jgYt6^X5hmd$S|_D^!l34&}%PvrPqQrGvyjb
z#u@iGOk>)Ks{|={vyc%;e!{V3-Lj@1hL(>~cGMSAhUS(?I@Oq8BMt@;)X*C~+LRYz
zqj1C{72%lHfX%bOn_lU>s?K71$G6^_2(KESdIqPCkOYC~Z6Em!BVZQf4H~=E8=)<%
zbV)pmaPTEovw|37nud&HK!KY6phq+$XW>W(i$oB6_Oa^Y8X*<TWVHc}X1HURYB5wG
zcYzJL{b7&K?q)i-TZA*D!5)<@_uSSYa#=s5mx=$L1E2MX%u7xEyXI9Zna9Wns`Rn!
z<SJt?fxwKZ>j8z1syi#q<LgxW5{PHhY{42<v#>;}?g(ipHww0GFC~{ug3L@HO_H{B
z+HAD&3a2j>Rb<5mGR%`ZWUiF4k!B_yFug+i+7<&fYdU;t@~%4SN^G_GUcF|X%$iey
zYKmO^u_!h!<0ko1PcwwgnyM078PT9e(v+>S+cX9l>kNmq(^2gTJ1cN5QrR*DQH>lS
zt2HpoO1Pf|_i}HhI@uypb_9Xxfmrhx-H_Fji#1s1;G1v$K-a#p({JuzDA?j5ctZ`o
z7iZ)L@)NySG@POK>(2b0t<mkp4Q8|eHAVly_c7YseU6L(ReMCR$<fJOl=5S62lW{$
zkjp(9uk`pVIfi4I@TBF=Y3W>)btVYlim#03k@gAoZjUntx1(w}0}A0@dORBHbOoY%
zdQzW%4yhhKs|!z4)?h~x<m(N5#MdI&!J+Kh7fIWKc*lP|L4eU2lyui_)WBA_U3&1v
zjzE}ZY}lV6$ud;NGUU$Qi9^_ZS>R>Jnk9|lMN8bB6uQ0GgQNn@sDs}SU)u%7y%8Le
z2#DgT%PyH)4Se4M4#bW$Ss>uUN!?O+^d00ymU|3KS~<p>6~t$K*?#ClDkz{hC=Q2l
z$fRk@6ONpSna8P^%4`@$cf^!pomBtIm>`9Ti$5>}ERBfDyj0D_osR{^kKtB?fKt<h
zgF<l@kPU~ZkxOG7m~IT7%$cAdJc%-})u=V#&fQP^Sp@x2;tAOw_*h-5Fcl*dLQ}Lu
zQ&<Bc@B=kK16Zt4R^1XlOp8n%$nAVzz$lMHWW_l&R4`e`O63b)+)6_=Pwi-wVHpN#
z-HJ2NUA-`ax15$Ok`!T4PCvL_>KR7!#A2yT&CQKja(PHUfQzh{)Xn`9p+QV?$;@v&
zBR;v|XXGOH-5x=>-o8mjR&dMW5Z7<K*2l=yU_Djy<jyJ*qnf!=Q{+g#;LYKrV=s<~
zK8hBy5F;-g$T1?<wxr0dAVdFQJX?LROejgC+_9s8P|j;0!|bHPh`7sk$<$+5Q#3R~
zyrtvQtxzSpqy=5#_vph+(j-k1L{B6{G#CPWr4FQt4}G*0?etRA7)|p)BB+R$loSs4
zMbwnUgLBb^=J{kpOqfh8$oCCp14&{;yku7nP)s%uH7tTPOr`lO7%UmY-OP<MULD=Q
z)06~EKa{2Z+yh!Jgf&eh2W{p0cx7J}kR;7zU<&475@ucOWqJ8!VqOne7G`5Q=3`<c
z)G6j<f(~Os=4E1LX5!IdQf6m%j%8|QXo}`&J`rbn=4slI0g>ivvSw>Sk!hl4Y=Q}B
zx@K+K=53BwOUmYMb_xG&;^uDxXK)sgWb$TlVu^1GXL2g%azYMl8s~GS1adOxbW&$^
zmWgvhXLgc=bXsS3dgpgG1a@lYczy(Tg6Dan=XZ)Hd9tTQm}h#zXM85-dbVeMzNdWR
zXMVOOeby&?-lyeg)9P@ULFkjC<Ptv!#54R~PYRJV4k-6PWkX~oLd2Y05(ic4ry>yu
z9r_S|_UCy1C*)+}Ks*XVumXd=2|nRN0R~YL+DKEv4usT%!N~+j2}C(O=s`qihVGH%
z93BmM=!a%!h&~Sf4a74X0W|mtpcqONEP^2bprEirQ}BZw;6oBb0X}@wiZ+pqeu$4O
zjfeC~!t~qAnG63BT1&-j)wS?N#C+DXfd|Jti9}AwnDWxIsmiVJ3dWp=w9y8}&>b>J
zTtnSM4J3@Y01VQch7>Z3UGgXlm7g^-7w#m-W4Md*xXaTNDw(26YpENaTFkY;3aVg~
z{sgIzJ|~enj*$vPiMqpC#ECvELRJ(Nyx?S1_ya36MKq8DmlDyy6@-b{2#GyL!HkSU
zXiLTX6U#hF2zp5O<zQf>LuxTbR_q9O=p4T72tm*ucfbmVn54n^sgE(n%uPn%G|n;{
zh&d<&ux_5lBvXMtY75DX!2#Q`5(~dD+jwBBk3I;^(B6)f2Ga!xjONd&qH1xfYTd9Z
zT(E^ZB*FjNG>SMB!Xj*iQQfLk=&C>Ps;>@F%n<}gWk`xJ7>N}~%83?1g<w-al*Leo
zjudMn^aC^KskvE9%D`ik3C4m!8@8qfhop$O3ZIXqh%!)<F@@}Igk41j-RvBsK+Y?W
z@+l$?+LJs9;VlBQ@`aBw2F<Z$(&<geMA!S}W(Fl}e=aQDG_0$_YC#AJQuzZ;wgVjG
zD!g<oivm%9q((PL&edYevF3+!X^5g-BwyiM%jQUEUDSj$LTL3`l+}j1CYR2dh-~<5
zSvAhpZi~TmUtCdB%ML`kE)UC$h;Hp@)P@i>X>M}C6<j@m=Eg%KT;$fSRM&1)<*MIA
znMVKN8Z7=G?Agj@+RjbG#z~~;$($5IG|YiM@Six~!x2P7A<*qQ6oNi<teX%KhRBtI
z7)`|#*Wa#|%$=5obnkVrEI__&a>XpnAe_yjnD`|}5RR`R3Q1XU$6lQ*{&ud>QlRhb
zg~Es*y*OF($VWTDZ;qm_2z74_%vkFNhte43?CQggz=!S1FT#cDtrTz`!XI%0FNgvr
z{kYP4&C+?`LxHT$K%9p@D8&kQ(LJ<ItH4I9_-sM64uYCVF72E?$!kO0@Il~k0?SYj
z6X=T+$Tw*lTsYA0e(-4u@1qW7&k6Aq6D6H)5ED0XXFf3%b8#2n3=ty`7H9EfZn6It
zoADWolLwEnah5R}yYU+bkr=PBU$!wE+wmQ{kQ~pkSJp8e`|%%(ks9xD@P;rT8}cDH
zksc4SOZG7$JMtr!k{~a#6BjZhTk<7;kRneq{WUTsd-5ljjwWxi)O9i_oAN1#jVO=u
zs+BS-yYeevrzEekVzx3Y+wv_NrYz4g9al0g`|>Y0r!Ma@ANMl(RKqcAlazq*8u_7B
zI%*A3(J~VRJJ3%&9A!q8%YcxSbRaM=|4tg~<}g!cEtd(Gl`36eFBfgpMdnOI{n9~L
zT#V2t?JyZlEXXw*CO$Jn?i^0<7E>coNFC-yH=FWSVT(bW?hvW6IGYnWPs#s?uE{{$
z2_wXfH5^4@9ECNw$x%=#S@?4d)fDx`!$N)t>S+k-;m21g3F@5(>ZRW;oyW^KLoK47
zXpD3?m>Nn81p3vBlPLq<AWlD^9}Tngl92RBH`IWEmqQREFD`XWi^pfp;!GC=QXkyz
z5F=HeR5P;lgbbEaw={UU(>oIy>d7nsn_wUiG$`X+S`wp+Ky^dagO8wI>nK=5S(Ahj
z9_neOFf()|I<%BDY&5{jIv7GbB!M+ZK~W?DBTNHZOhaNH0a7eNVkdz&Xv#B4vkQgv
zV+6@bg&$SD$AW=2hI~`LG)>C*m3K*(r5+1n_==6lR0YDXd4wHk%Xa@^OpBk%)OY0e
zX#605t@g0ci(hyLGNg9jh1zV)wmzuYUML}06}Pq|Nb_{Vv{2V@)PNvtgLwc;QQl#8
z5Z86|w#9hrr=FDTHiC^PLq0gjGn;a9d=~P+?{LIa8g7QD73D^8hoQ;rS2ZGr=?nuc
z^k1h^U`NT?o`s;$i8WLMQn*Q$CV^7?M4SkOJ1BxFI#Fjw2)nYYy5(Mgct~U<pfjWb
zhxJRfP*XFh8Tz?KA+q>(ytr<y_h!`w(be2O<c_<#(`J;z%LE8Ow}^M7xQ!h1pUGY8
zU>e_St3bRTK3wF9zX!y4gS71fl-;b>mbhPZpEVJq&pLy8YsUY9d?PM16r1^6L>?S$
zD9*5!*wGo8`t`={Hr+?pPk|eFCm}eE5HC~Q+A}P|F_Wd6NWqn!2T<f%hT|;|arlTd
ziHU?pU11A}iy!JSoVC)-G7R2tx%B$6c)fbZ@2ode-gs|J2Vu$F(QHP@Ow6+ZwBA&n
zZV3W=clAjXqPiW(X4ou2wMxI0imAmzmAkId*mrio3j%%>OV>t86C-f!D`Q|<ng24)
zEqiXv!o(e__~8a+1>t9btw4xvy|i`N8c?1m=AO?8@vZ}=#4S?bLsJksKJ1B~Acdgt
z!=7k(6QPEsW!i#NgQI!JrHO+UYKAHjp)+cRha{nRRLuWVPDnKzYhfjiZG49nK8Hr(
zh?3AtKbQup6Uk6K*{X*_IXp%)yt=yKg9n<}k~pJn>_jhZnS?lqbYX^ZVd@j)1F%>5
zT{s$aqu8-8oT$lSwf79&`AY1L`GlM^D91dNE!e?i8ozVZHPtXY)cma9hZYXpP|S1x
z;JLY<Q!%^RtHD!zC8(__g_5>KR!G4SECNu(#StjVqW{oXwHC$@jc|~ua9|5tiFaF#
zRnp+gdGr=vM0{20jBSk-t&loiJi&Z>e9N?z$Ory<v&Lrh)=Lx1d~bg49EPf}HZKW>
zTRlFI=+>yF4Buxt(0|C|V+PSHVX*)-v>!<1zq0?0<ecaW!er=uQ=~(09L9MkehvOh
zN}6|Mv8368Ju$21{mk9-uhUc}^as(Rg6WMnyAa2(HO#HqYizdf`t|aw8oDdzTeeWs
z@H6&@5Ia*P$LMAFi@$l1zxvbvDSv(Z2h#l4|Ndk0{o_AC6c9L&U_pZi5hhf)kYPap
z4<SaBI1!>hix)9w)VPsjM~@#th7>uHWJ!}JQKnS6l4VPmFJZ=%Ig@5hn>TUh)VZ^!
zGm1Zf0%$mtXi=j_ktS8Tlxb6^PZtK2T9Ic}t5>mR)w-2ySFc~eh7~&&tk0=ap{7;4
zmTg<NZ{a#T8<cEayLa*C)w`E(U%!6=Z#4fq7ie6=hY=@Myf`Z1pMfDqmOPnqWy_Z_
zV;<~yB4f{=L5CLIn6t#pr%|U?y_$7v*M2vbhB%sbZQHli$~OI)cW>Xnfd?0UI<{`y
z$B`#jPEdEm;m@H*mp+|(^^(P9FW0`E`{L$Qt%nyso_u-pda;-8zMg&ir{5o*mp`9=
zef#%ErswRQe}Df9;R67_0SPS7zyo{J&$0g)Y>>YIDT_v#2`5C*!V59XusQ_^bI`*N
zmxFM!YB17=#FG}$XC!F+SwtN2?x|^+a5SvZMv?AurWzGns^`S=IGhW_A&I0-M9HeD
zMww_VGV!D&@EIuze|Q`ZnT?LA(j@<9UgT$_cwYP{%NxlgubyM>IY*F{&XLBSdYCjX
z$g_&9(@w>XjO@pY_QZ&vD3XZA&1#Z};zcO^c_s-&S@dTW6%|!9QAm?`<{5vcQM3>h
zs{!=IX%?Bo#6_b_?HGTWIVKQ6^l7GsK=j#1)i{?41eq(HNhT0f1A(=kSHoE*N@sd~
z@fcm#w5Xpao?w#LK!)uVpL1T-CmvO4EK^(PeDtTEE0ulXm?xB()gM_`^~auLu-%8*
zaOw$U+!wD6WY1=LRq>oB0#WA0XTwZwPPFbU*kHEuge=L0N$m5YD7@k48Atdr1Rs2&
zzz51{?C_@@L;PXHA}REl24w$2{n<1cNAzK5%83&-q@5!!-gM%Y?YJ0ZQ~g<nNuQTB
zHk^EpiKdw=<9PzrX!Pla#&eiF=EY^isRtQ-?t!)Fp0oAG879xUI-V=9zNeagr1l5R
zeH`A_?cbV-)7u)tx#x*{?#c2P8sn}<5Pag<)#o=^O<L`6`q}eoLEObBZ+OdoLd(ns
zmg?ZkF=r~_z#MLypCl~0#}Uyng3?8crWDy9De#dZOwcz?apXj!e8-M<I-c|y6{o3G
zQl5qNC!RGW_a_y0`%PPIRCzo{)kRR9S{!pu+<VM!Ejq`Wp2a-|3bmi8Ud3g|o&4?d
zUpoiZi<Y(MRJHYazaRf)>QTnqEaQHY$@Xi#8Y5>^1%-P+&mZOpM?A8XihvO(Ktjpf
z10mRu%>kwwj>B7w+UAcWsE8e-bA(0Op+S5sVtf9W(#|p_h3$PVW%@W>$|mIx+u_b4
zDcT*Ta&|G*oGN%$^GET}gg1N)t{=N<hKkIAj2uC)8PYRHoTPTWA8D^=O2k{}oUx{3
zkOPamLf;o%GdwM|Z+Y;$9{ubGzx=_;TT1iCJ+8&0cqk)B0!-G7;t?kWs-|*5iQpdr
zDVOh1MoG82l|TA~k0T_iQb+h;6r?eYMM8-kNw5aYASua~B|#igSmdT=_KYLUA%?c&
z#}OhKhZug&8rA=RgKDnS!z-o2e$5a>)}m1laxsf}1q{SJK*2;-QEge_XvX)Xc#**2
zLzl)BL@{ltHe@WT8fpULHC6K~WjMnb>~rJ$@F$3EJON&5%#t~LwZA8zEgFI2k>B$6
zOjV5wajB?Atya^=!UU3^5uD&(I;Rmg;lmo%=%7FNAq{D$$W8vhhe9p#P-%qFAJ&kD
zH?|k1f{xIk7U9PV6{@0AIW(lIiBXKa6(zP=q#DkkQR1qRw>Mto95Ibj;vA=<eds83
z%F<Fy-^kOTo``L+(vkVFnbgU!ZDANW5lT_o(w9P&rTFMasYtZb3SuNj_n?v4jQOG*
z?I@oO?C1YkGxtxwAVUysbt||uvWO%|vV<)Or4)8{pM5EVmP+;OUtLl}d9Cj?`uqu6
z5o<8DrluX%7^zDLYK;QrsB3_=>}9V*R^AwvB8l~EofeB((T<k1rR|AXKbzVQh1RsK
zb?s|mD;U(OmbU+4ZESIyTiyDVvz@8!ZyyAo-42(y#l2>4B?4UKvgfwOb?$SaOCRJ$
zWVzMdPIIH1UF~l7In$kub-{}q>~fd9<uxw@0~B8M-e$b#b?<xOyBF_1WWDtrO?%^;
zU;XY^EAw@reF4lE{PLH;1vYR@{2O2e<4L#&cJPBCERzH;n8I-xaD*|OVF*vS!W~9f
zgC+l?42Er0B#-6CV{L>|i|oUED%J>6d&&|Qe`UrYsj-F&1mg|O*26u14~X@Y5fXo7
zA0Weriddlt48c{IN~=edno-wqA$1?g(nt}_*Uga}gUL6ktVjHoJ*;g{eNO-v`2xYD
zC*n9bX#TQE_VFS%%8AE5wzE<$EEa}cL~a_vN5E9H2$p%tBH|FoNdJ5hLto@#B3)o~
zuGEiw+@n-cT895Fa>Zq7>55g3Xy{^u<#XLbMM=xn6`O==izE%ID#jW{`ax-Lsi+@1
zl{KhioV{D(I@K77@*C0AjBv<GMaN*K{oHjwHvh(lp3d|YRgE_uS<oUr(?|WHJ>&ma
ztN7Nu=3|}j9PXmzIV=I)NTibRK{rLA5aO7|_N1@~xr&2O&xpbYpHT=&&CF){2HkXc
z*snlTjd8D#+Bw95wsJ*d(-%3$!aXfDSs^184EI&?#Ie^Zs!AW~Tlhtq@q})2`50@$
zR~pat@MCyGeTR#eGM->8WN?{`%g{%yoPoBPUkRN|&Jx;eC9aVg`y$EinU0sentoV$
zS;(9Dnuw(gXz8+C@)ShX$W`(xUYdO>kJ`)!E=?|%HNE0C`?!Iuuxdnu?M(9A2K{l+
zL4C>_?#NxctD)o~^CNf9m}u@YhA}BWhlejZ$0EW^y#l@{O6qI){h|~rd4d1!Z&}0g
zF?N*2_Jvt((Xi&y*>@$*Q|;FvXIjfub)}+NYY}<02r}~FMw{>BQr1-C;K4ONe=zxI
z7*QV8lKz{$d9&E}i=T?>=fh1m!%g*T<Ka4*X@8u<j@3S3oMQg%vY(y%q-hQz*WPwS
zZiIzzR5v2&&W@eoJxq)!vPGuhh<1F?gqC_?ba)sgza^eT=14fZRORu6r(J3w`-tUM
zl;QHY3>g^C$<ioppyu^L?@hpkOO6O5mSF+y=U2EW^%xL=ys6q^<x0+>5iH_}E)XM-
zW}eJU*L+WInke{sV{1aNjPyoX(8&1KNS#uyU%HN61c-nP2n2iP(KP=9+`2Cb2ZG$d
z!rV&4gkA(@2E|R@jUPniPw1`v_+e98WTNPg3sH>ldPe_{f&UiI^&GEwdTMy8EMBIM
zfUF8uW@OejZ6Ew+<sxwRCNN%#O&n721hXYdjz^2)<l5}#TkK|hMsWI)1%D>zeP$sX
z)=YSy1>~&k=w$FUq6yZ%$$jGIMV`p{)QCygsC`0hObUqd64B)j@d?84GB`{LWl<oQ
z@GC0lVst2x7O8dQ?feuelD4NB;>}R1q5Tl45DGzL=8vW302!&{N}7QT!z^Ar@BffT
z07-7x)<jL>hh5GlOC~ODv<`qCZu;T`uD-=0$dO6@@P3dX5W@e#8Di-hXU@{t<!9t&
zOv*7;w&olj@kLTWAIjlH(58Ff<yF|F*pMz0E#p`6kw?e~oUBD$e8rrujhsqRY4D{S
zl?4E|F&lg49?1?qX0ap-pccKt35ASP=x-w=D`kw3Az{MyNJ124l1#J=_zDXNP15X8
zvMVkqC~wST<joLtEE;<8CT(IUJ%ZGf5+~UO<y<2cdy@Np@+q-0E0c;UtI{XaPAkDO
zEKQ3myE5FaQY_IjEiZ&D%hJxyQZ3;!F71OY+p@>rQZDf_FU5l{>$1b{QZE5BFo%OL
z`;x-`QZNxSF<XN$3$rmD^D!YaG9_~|DYG&y^D;3rGd2HnGdZ&}J@Yd`Gc-kWG)c2G
zP4hHSGc{FnHCeMYUGp_zGd5*&HfggqZSyv9GdFc}H+i!+ee*YgGdP8FIEk}3jq^B>
zGdY!WIhnILo%1=NGdiVnI;pcdt@ApuGds0&JGrwvz4JT4Gd#s}Jjt^>&GS6bGd<OF
zJ=wE8-Sa)+Gd|^WKIyYQ?ejkIGe7lnKl!si{qsKoG(ZJ(Knb)!4fH?}G(i<~K^e3`
z9rQsVG(shGLMgODE%ZV$G($CXLpiiVJ@i9CG(<&oL`k$nP4q-jG(}Z(MOm~(UGzm^
zG)84~MrpK0ZS+QQG)HxGM|reIee_3xG)RSXNQwWnNR9MJku*t_R5~TV0yJO;eBcM9
z)CYDz11vxSLZeBaG)kwmO0RTD!8A-4!%3yIOwII6f51u=gG|x1P1Do@#57Lj6e<iL
z1KjjZ%`^iH050kjPyJL+=QL0Sbto>tPYqQ{FTgDd^-%pZQ3v%=A+-Q3fJ+(GPkjJR
z(_&I9)le@rQav?J?Q~NaH3Og`R7KTLN%d1z6-hPVR4Y{joT61-^-y7TRc$p$4S-T-
zl~eaLDROmJ8Px}R^;U^hM|BlgEmbLw6<P1p2a5GsZ&X&9l~$2LTBp@dYZY3x^+iqf
zT2a*~y473pG*!2?TvOBn#I;f}wIR?oT@U|tUClLKM|4@;wN0IMDCo6b&-7m9wO>DU
zQT4S^8v<Yh_D&tuUlBG#4WM8TbyyK%VHws>9X4SpRzkxyV$qab5#nMoHcu<|V<og>
z{d6Hj7EeL;WE-?yOSVnnwIEb>WzV!_QFdkr)LLP-OtaM>Z1!f;lxBUFKzX)J6C!BQ
z^k<FsKP5n1hd>#26-x~wX<fAqm{we!_GqmZKVKGD=^#v=U{+;TQfIXiLZ=A?006S~
zRKNCW)%HDi_Eeb$Bf8dAb9Nxw_E5z(bOZzd>XuRGc5VH(J$GPNhv3n^Wmk9LAOhD_
zhv04R!3DhL1%UN%|8{cQGhh95a5Mkn9-07I`IR6nmr)BL92Ve>TmXQ6fCqR$R6Cb)
zS=T&gl?bZj7`*i$rj-W_AVwfU08UZ^QnylD_jg^_RbiK_HkVmx7g>3r4P4+<0HB)y
z0B<0|cY$|$!&7h{EpL$Zcz3l49-;<nz#kUCc`f334`6T4lzP$EJ3seO8)1y%_Ec9_
zAlCOz55XS<<R0QfBVt4X2)0?%_kXoBaglXvFCrCYRdNeLfJN03!1tsCgd<#_f87*;
z0l0#v(|ko0bKh4~`?dfu_)aOoA6#H`ea|1hmxLGKgL~G3SvWe+HfX>0g<n+wUH~H;
z*KtW002KI6)3$|u*f^n<Xv_b!Y6&8UUDXFPzyP#Ngqe7Bk3j%>*H4M~hpG5Dh1g7o
z7Fd120S*AAzW0Rhp#Uymet)2f%@{dVIAS|kAkz3wbD#m9S0h}Y0e09;*Z7R_m^Wp3
zWqWv!gH;2{_9Eg#ZyB|R^Z1Z)^NPz@A($130l)=DSOCfv0CIp)5&4pRlVeL(V-G@;
zH<bq*paDer0xm$5qj+2~IhA!2VuN;K4T6;;cL#DH2Yi4^>)1_QS(SA;HYHeO4^|<1
zxnqBMmx(zx$=F@vHzAHWU6Z+(oq09=IA9IgWp8$xpZS_e)06d;lNmyr>y?|aIh;?k
zjhXe16@r|R)ttq7okNFnnYCD1F}9i6d7eS@R|{5HmBO9_7N6<4pGy;+H&va70-#^j
zpAEV+y?Iu_IVlp_RTui8A$l`4^;$bMQ{CB8tvRAK+A@P#REIe&I(kz-dZS5tGy7Db
zb2%+e+M!drq+L2Q*_2i@I#b(NO<($^MN><mv`negN~d@+bed9o`b&`_AOHX%`2+wD
z0000i8UbhkdjzZkha4On85bxPBP=Tx5+N5cBp?|eARr_yGbJ%PF)J%IEip4PFE=+i
z7#UL<Hb@aKbvGGODIRAjI!G`zYyovV9!qKjdPFKkS1V0qEJk)LQEM$(cR597JV|;y
zRcks{cvB1vR2v~zAR0<EH+M7_X)!WG4@gWnOF}$mZ9YX%MLI%w8g)k)ZcH_MVLMMv
zP)$^7USm~QWpZm&PH9<XZe&+)aCQ$gjUYULFE*hPT$wIZiZ)%UEntExY?(1-i85@G
zGjN+NcdaaUv^Zd_GHkjvcBVFdun%n54s+lbdf_f~*dl%5OIM0TOQ=(Dky3K1a(Reu
zd#g=#*lu^%8-Y0<u`n)%Js`X`4uw)FlR`3&W-G5rGrMdZ!!;zuJTS&mFT-n3jZRLO
za80*UQmS)nmsD<%a&fy;Y@~2Z!&gehaCggCYsqgWiIq2mxiq?vHmbM{g5es4;wymO
zIgG?Ngxxxk%siObIF#W(v&BB6=P$*QIn=&A*Tzwij#P%SSFDUxr>A*@lXi`*Zn2Pb
zwX#u(*H4t=R<YDTrtCqk`9i+@S)}N5lF(|G;&-LcajWQ3%#c{lvvkXmZ`P`H#?oxc
z^nT{uh$|DDOdXF?Gn8gBrd>9xW;KaeOptI>jCOOZT41esPo{Hl<6{fvb}IB)QvP6A
z<aTk1dxfEUgpPODtb5b4pF5L}T9br!hpAPLs&BD~RjZ74tD{}Dsd9(kQHaudh~QDa
z*Il*Te#VnO_P8&}mQ%)*anY+-%Bptagn#L_PvW<3{=hH5*<Z!jZ;p(RhnB35u#=Oe
zwX2nlq@1O)rI@p`w2qS1i<{w-u*{3J=&_I2t)1YkxXiG$<%`gelg+G_;<>NRkFw0S
zu;sIs$JCd}>yhNxi{|RI$JMdX?6l~}xaIQ2oQ=({lF7KN;gOEwyO-p?p~sur%&^(b
zwc_Hp-Q&IC*2b9B$F$hxm)PpC=ggVu(X#L4xY^m+&DZGF<=EEe_UPHn=hf-(>DB!F
z{Rsa64G0`au%N+%2ookefMLTAAU`%-P)M<&#fum-YRvfK&BTo$H(uDV0SLqm7!ZV9
z$+G3Z4R1EMoGDO)Oqw`z>fFgw=Y=CcdV<8TXpe-RDupUlc;QD<gD`I{ol3Q;)vH*u
zYTYW*2%be?!-lQ%;{eyQIf;Tbi+11zuVUja!sE0p)eB*to(%%Fj@_*q-rN~XxUk{F
zhzFDX+w$w8pmxU+JWyv*5SBl{8eu$B?V^L8*>WCDy0q!jsApcNEVuO{kEv1f1^W^0
z2FI@DzR?>S<c6>s?Bedt^FZ$7$i+$}eo%7T-+c*Y2746bY_QBN8VQTR;Pge^vy1;9
zPrkf)ir15i#Z&#f*6X#mBDkZzwGq+o4?<rQyzTJ(AQ@NRfXe0P99r~&wcK^>Wwc#b
zcmO!igW!3`orD->sNse>%_r9$Mnt4RLq8a?hg|V-$P;{L;icOT7sN=S5qZd!2Ywmu
z*B@H{sYp>^i5VtVkcHI&nR^Fv<zi6<F}Tqi>+$9uh2cqep^sQ*silSpC=!<uDHbFF
zg$iz&6N_7U*4J_eU65W;4PvOHT?u|>=1Q#DX=ajJ9TC=%0y&vcor~PDA(~c#Rpp(G
zHtOhK2b>tzWfxt5TZNB?geX?~%@w9X-+?7%esewt)*G2-lqaKnW+mWSO@{v!r$Pr@
zit2_EfThSm-z}QzufPU7)1{wMROhY2TC}NEOIik!1d={Rngkb&dQquu9Z)Pr)Z)0|
zs&}@E6%b(|JCL9iK`R!erfEAXMi+Q%K(EQxYwx`Xk@>DgQ1X`%0zkY`$5(scQAda_
zy(QR*d))Dc5j%!-fCfg~QR7^11d-yHM!dT$s74IzrNKa1n^3fyN$i-f2q}CA!wy5t
z5o`q^@Wab-;bDZyZkc4##dG=Wb6pl4u))BR;_+~pC?SM^5gi|dKoCcG>n0vvhNTD|
zfQGbz5pUoDbH>~98dE_=0}=8M7=b&}*I}QShr>ba%TdT!&s7Id@*@8vF4}6>ku}Ca
zu&mMGVWO*0t_5mjG}2%x4JK5E8}Jjm1Yr<%Tn)2HQAeNBdy$D<J00-AMH!4RzO1)C
zTC;XrbV2N5_Iq6E7in;5Yj}8m(VKGhKH;eceQeMH!0T4ILAIOgHSGrIj-2ong*Ffd
zgt~^gLCGW6_driiFBNMk$2wQ>kxRGxhrV01Lvqwpw4`X{##J^!Zex~Q9rrs;rfX5F
z$lnAa0YAZyZ5!E-p|~fjiZlyT7zy8T;zz!NI0kbjnqL15;29~2t|E0Rn*?l^8{E0>
zgeaT}(Au{X1msCQ+mm0klCuXE>SsVkF+h(9VmyNUZ+Zw!2;=`2p@{F{<N`B9P7To$
zmXCDLHN_%fePZ{-;0Yuw3oJ;T4zfi9P-Z}Q;F&?*hr=N7j9wZ@Vwo(GKahk9ej6O#
zfZkw41N`la1iFJ54U#9{Dei`1iQ~Dzctx;eks!`dSACp^KH6AFQ58V|v7Gk8<is$A
zn9Sr%G*GUp3^91?Bc4UnB$k4y5iCKZh!i1|Hx%t~kd919_P|oGJB0Fl39+3GX+p}d
zn9?<=WFT!M$-9SDa*YLfU~-PIkW<bjlzVv9AqUb$Er!K%YE;A>pf<}zKrc|O*_tf}
z7Z<zrs#EK!<3QS|k?!T8l_<JMH=pSmJQz`2%G|@lf&l+D!L;U^1oS0B{#Xz)f+Y_C
z6-cD&2~BA>CpvGW<-s<WGb4WNg9uTiW-^)^Jlv9znhdE(F@l?fvgDJRNeMwDaJ0Di
zg(B$8gT|8igWU!5AX21De2gZ=Xf<*X+e+fjc(uD}f-fw2m`Y4%N|2`5G$HWWUHsgV
zy<HjrTNXipT)>2*mO==NT)d`1>V(qQuxtZBqfSK(SgucLpptvA)^|vl2O!K&BkaV;
z|LD>nZ2_-;X?@KG8iW80uvJ$kYZXf0u)M&OQm=m+Xaf;azsRYRAX@!Wyb9vg$br=$
zV?pO40!Wa`rVpx3d?W<h^d*jdNu>i}X(eAe(%S#p*0ryp3QBKUGZNAkkXI67T1_Yr
z5>C}17YHnNgbCDx)JiPGb<3rgsamVH1f9zx;BY1DSuB=~lVYJARw*I@a`HBFtud+r
zs!5PKU23Qa2~~s?Lc-mU*SH9Y=pw9(ki1&tu<ZF!T(UdeI+`|z4_(A>1rn`2Y*0<-
z1#MXRMo@u}38afNFGYG;s02TCA%`s=bHjvD&c@}uyQK&Me0$p#yST(XnWRNRb>3Ia
zWsk)TBtq(YkyZZmQ)G&+HB(y<+bzY$VeGMvnJbnBXB24jO~`l^B4dg?cSvDf?vPJB
zO0kI8!~--)ka;B+lk!ol8Ue2;(*?9$<xBr85iW?DoLoo+7ZgI56^Li{Fyl^g*PA%?
z@<ysmtD+{@eikup`z{*Xg1j+e1tB!3;Oyc`kCeSa>6A%B^=4Y)6+#D5b8bl*mmeGC
zlV1j5tHL}J3h`N0pl0%#)73bHOc^0+6668Msa{MAWS0Dmo>;849*t1Q&5n)>q&MPU
ziiicn30c=cJ{f1^F1a9l%2Rd^V!$XXBwE`dD50tinrl~N*I1S?qDL3&5v$g4|J#<P
zIU*KI+dGqfUJ9i(Qm0gZQjiK2%d&0f?W~sC-9=`#-zF=N%t}ir|8|_fWld*=><8Lc
z1<plqlj;qpd&^mlY({Ly+fe1Xy<z{kseE11?Dz^)BhB)b?JBO2$`-uN3w8{$F>(M~
zLQl==g(aW|a%D&kIxHPmh?>+J&y0ZE)X6qFLFgL0eGdxh_s)9jUPW$~d?%?J`DC2(
zgmIUjmgweIGMafvWVfXKcUX5jGI>IFH?~{oYSl=+rL6Jly<8*F>h;>GDVCjA>a*BR
z`B0FmT7R{q<qMxXMr`+G*nuQkp5v3wmC{Frpi868-N>FVk9b5rdn4buB%`J7MMBwg
z(g%H3c(qRZdM$~+7Z956g=RS1bp0TC>e}o<V(#xG9j1FXU+Cp%=K%d(*s<)%@Hdk7
z^pqVTY?XK4DZ<uZv)zy(5BdLoNw4LXJYORvje7a<H28|B+3@g6zJ>Fxk?%M;+l|i2
z5MPbjyrcBy7twvzQF;SWPGKi5s|P_6kXF~{dm#~gwHJZFvL6pNAUmLLdLk0^=NU9t
z5tWrnwqs@i)qV!BEFr{x<+mRqh!GsP5+A61i-2R*#dlz_Y!*a<7NJ1lH&%=X61IaQ
z*CAvzw|xR(e=`Aj%q4`f)OPE|gnHM0eDWO*#uF4GWKN<?qlSJsSP?pifyYM?Sp$Fx
z7#<fuPG4AnTj)UaCxL8uCluIci<C@ZL0uu?Qv*?1-d8j9_evQde?pfcTEh|)QX6mB
z6L`214(B}A5p?dSc((sWgwZx@88JkHw|>7iDIq~2W5;kCp=QC9dPkUsz?T;*u^$(R
zhKm4pA;DI0vTExBa26pJb;KZ|78lp2ZnrpX1XyRQl@WYcf=)Ou7eY#1w<L5(ei_(?
z%9tgdv26rIPRFre-|>4pHemx1f-KR4b;gJSM1q?_i7a7IQgM4ifsHGnjo`FVAh9IG
zb!%cGa>NIIJZOncD0vuBS%4^t<P~=VF^!=}j|$<38ZkuWGeo(VUtz%}ts+_&a|A|k
z60lf=Yxq+aW&j2?T9XKm)F+RLCn^u<jlp<MTn2}WK#hS0E6bRYK0=QFxL{Pm64y~B
zzj$@!H<6@9kDLFZW_b`JJlT^z`I9kHSw}KNCaHx0i4mA~9Yra3&hm&g*ogLs5xZEA
z$#{v;rxBIqD}e-*T=|nNm?-1Na{7o_Q`v`Sw;z|pf|zJ}%?D=cp)<kubWF5W{U~U;
zlaS}gk!)F&Z3B{5DUpU`McR>n?L?R=d6@YzL}|%v(cweENN-X%laq&L4tIuB=9kOI
zK?G7C<?|{^7!s1HcFA}hHYhu530$Q~5c`pbY*~qX>1+3xf1CN1>X(|Zc9c@1aL#s?
zju;Y(*^w2uVw*`v9(Q)0Cl_6l9*gOgtci+DXPlpglOc&59msqU36{=?nA*u4cgGT}
z;gXLTo6-Llnrwt-1i2EwxG5Yqn{fdsx(S+NsSs_{Luv>Xi|LL{)tejHVe|N!@p%wg
z*^%t&8q#Q(jES4a^PZ8&pBV=hpV=}RX-AET5Il8DtzkpDq%3jaJ7iLf`uT(m%9hnB
zpO{HvazPfSM-hX_68N~CF6tge){+JBk}lYG<f&>kDT%&VqWL+X^@JaFB7;YVpg203
z;aQ(eiJG)#pLrRggh!9Cc@Y7+mp-~~b;)`t$d>`Bm+{z^YPOt6Dtr@~RT9t;fzukL
z>2UD(XT9i{AF7K?8WK~fpl2qXe<_T1shlcmpi+9IFZ!pbu^&r0ifsv)CCL&$c#VEq
z5n=z>nkxY`P#17b)RmOlle6+252_KibDaaxsNa{F8L=ey35m{SlNT|Suo<O^mVdY*
z5taI?WQL_5Nu&iaI48xA2B|-iN2e|GKk^cUa2J(RS8Eh%s<FtWIG3f7dZnl|taxd5
zhq@Ap3aHe|o&QOqg=zrc*rck6rw_M|{HR0MN|roI5V#?vJSU4hfvGF8Bwt3K@^hL{
zL8^!5o2W{Hs_KFHM<LBw5ikZ4NSJVUDxP7<i{43!BFamHgFC|(tV2g%#9FVihpZBs
zt+&aS30OKWl$zTrr?FS9AR8M>DV7$iu8Rj2$G9W_=&;LSJJ~s}<tlXjs!F_ic+mfu
z5!b;c@X8eO%ADmnuv~brP&%%qm4BXbj5zVH2dbseYMD!zcLI?owz->30-QLpA5M00
z7*Sz$`jiQgC)e49Ry(U0JDsvBu19LJqBn;j+qS1+V=IV1V>*B8xDj>YD?l@~#cGY_
zr=x=zvm=O0I`K&}+mCgy9C_<}eEWwXA*u=C8C{39J}9*QNvo7anA4ZEe0s4O;czhs
zuF$z3E32<@ny{R8avgbdxFJYf+qG@lw-(DUb2_)2i*VQ}H8Zp?6ymfY_p)yLyH{}?
zMYIyR`i_eltAY!=(exzYDiDa%xd*3wVNxex8WN!rw{-it0<j;<tEtTkj6na3q>DL3
zpE+^=@^L6Pw3Z8?gjreKXuX@;m+Pyjv}+NVXAldkfs2cZzx67p+o{m0vN+3$6d`GQ
zskeGKyRmx_c{PT(m5TBbarM`oz+1sQf@c8&G?zpnH<FQtIXDNoy$xFsHpg$#`>A2l
zESy@vnd=~a2*MiCDN?et3E{YVi;;gzL?-n@uDOFCF{P6MT{@w((aE$zWObqmfSm%1
zxN%8I0=Wk`w;8&%1kA$Wd2Bn3zWl4Kw#%%`(=02?!KnL5zH7l|EEHYR!WMxWiZCij
zCWFm_VR4KRox)o-hP1FJkl+idId;56H&{y=7N^K_FI0IcnuAEpxS;==qzTroJnKs`
zXj)Ecm6dD66amDlnaD7eT|`{FSgFamq{fuY#}tYi{5Q6!c*^pmpPpNoP+K&Y@-EF1
zSAD9*$x61%YN**YXQc`uaD2#T9L!qrK-8E<zVtnvvIoxiM&CmwcK|(PGP<2|i^-GA
z4L6dsLYhe07XY;Z<OEXA49&%6%{I%(UCUqTF@<w!%T(#Z8-dB@>SgM*AII0p@@vTn
zkye%|0WUPZ*j&SDRV;i$A;eiUgra=at9)j*P*uFgMbSUN^PCI(vt@gy_S`8Qm(0r?
z7ym2F9!(QvSa{oZ8*w2<Z^Br%wmbJzNt0s`Hp4kQBgun|T(|#3&YHO%8_+jDpke8f
zMEnCPyF+s<{V6Y9O4dTd5L&vdMN6~tF8^~MEfY#T+@Cdiw%Q7fK(H@p1<dMK#$QXc
z&scarAj|(#cD2|$@}fEajLLzFN<0HF8!Djay2m1j0MVidPW>f)V=3vCU?cj~cFM>0
z?9jM#(v?HfZ}-uPy%Z9#K1Q+wBVrRJa-uk<Uv-c%VAD+-bWD42F#JSOV$s2S8W%wj
z5oY=ZfrUDOy)7ITGeICQYSg{wc1&<N5ry?NtpTQ-?b%?nKB8^Y;%mhYiV{D-8X&bw
zZvZ3O`ZdtFi0=HP_?!^%yi(AJF-E{osy$%P>ec-P)(!tx-I9adYIKWO=-L8vp<8OP
zqJ;;gy#XWQ5J0d#U8A+G{ILHrIJC?>FESA<WdzNwz<=G{tNm`W`>g8MWSH$wO}E$#
zUKLf88z#A)x$(>xp<l<ryA3)=Xj{>w99zmoo&Wpb^|V12o*QR~)Jtv7r<NQ}IUq7Y
zxzC*u(>)ohG(E91*c8nY2k=A4L5+>QnfHTF1L`@eyAiFsj}$Dz1oGk(TeIr~xVp^1
zdVJFZLg5X5<+@eluAxUD!Q<#XkjKP35n1A`g|@0J5S0ZzlAIe$6d)q*OPR{gZ`nUB
zy2wHp()FYeUY;}kAt`j0R{@KV;X4o-P~EN}glhjb*VQ<`E#pkKsOV%aZQYoKXcOsQ
zA|(QhdI&qQxVh)+(dYGRtQ8TXBwWRXxW)~gy~t6xSl;TBSlk_DS1e&OVJ=uF72mA^
zA}f3V9pM_fj*0;2B4<vaFp(RJ;SxaL=w{`cxc(t6U7y1)m4mLDL2Xq9lp8dYj=nP;
zAjR#(`=1mO>v{GDih$urp3tM@<y?ckSEc1-k!P$?ZDVpvI<q`e>^PNS?n_;E*X|nG
z4!*t<?<?W$)>gG>b0Y6sGhb15wC?Y$?&=UfkQnd~D8cR&N-eX~(JF@VicVe{K=GTk
zQl{DzihckX&yzb*rX_OOrL6%PFEtzw5(xhg^6e^u)FOf!@Y<KH+|$O|EEFRxp)DbS
z04GoL8iMf>(DAf_^cvqZ8Da8wb#7CR6@rxW0+ZauLM=6H@milzL^EyA^7Kp}@nkQ|
z>{|9{Ut5)h?rGolZvUrp`Sx<(IwL&yc7ONUSy|DJ_k7PNOA^9;ANYdbD3n1L86j$e
zI{1oD9;d$ej{o>~;%e5F9tjWmmOmcko~f6=`J6AZd@kKE-T9(F`lMg_%UI*v<lY?-
zN)~VWuK)V5ANzM=>2hJ^vVZ%ypZmJMC1X+_dyx3MAN;~U{KS722e1QL4wuEh{LJ6{
z&fgX@pYhK>{nTIm)_?ujpZ(gu{oMcG{oeom;2-|tKmO!j{^o!F=%4=Tzy9ps{_g+&
z@E`y3KmYV!|Mq|X_@Dp!zyJK-|NajU1_TZySkT}>gb5WcWZ2N*Lx>S2PNZ1T;zf)Z
zHE!hC(c?#uAw`ZPS<>W5lqprNWZBZ?OPDcb&ZJq>=1rVAb?)TZ)8|j1L4^(_TGZ%K
zq)C-7W!lu~Q>am;PNiDa>Q$^+wQl9w)$3QVVa1LmTh{DZv}x6@W!u*6TexxM&ZS$|
z?p?fj_3q`{*Y97zfdvmHT-fko#EBIzX585EW5|&uPo`Yi@@34KHE-tJ+4E=6p+%1-
zUE1_%)TvdkX5HE~SpczR&!+!f+xBhTxpnX6-P`wX;K79tCtlq6apcLBFK6D|`E%&e
zrBA0`-T7<m6|HaQ-rf6m@ZrUeCtu$DdGzU_XUG2H89w;&<<F;I-~N64`StJT-{1d#
z00R_oKmrRi@IV9;RB%BC8+7nN2qTnmLJBKX5E%y8+YA63EcEb05JMDkL=sCh@kA6;
zRB=TXQGA9005r_(y%uY<@kShT)Nw~1d-U-~Am_6oMj0!MF-RnnRB}lsn{@I?D4~3Y
z$Ra0;ElMo2)N)HMyY%u)AE&I6vMa$f^Gr0;RC7%>v7D01F&&ewMjG2Zu}(Yl)N@Zh
z`=swpIO9x=HXHvj^icmq6IFCkMjLhXQAi_|bW%zo_486pGu2c}Km!%Du-Xc(bW~DH
zHT6_f7u|GKR$FzI&e{NDK%BomHOw~r(mCanRM4?c9%6dwg&2A4%Z3aqxWI<LXHr#m
zS!SCp70*|rm3CTc5$sepSqHoAzEo~S<yLd(lgHO$d>tm(`LF@wi*>(fgFi*_LB@tq
zl6Cf8eDkFgA84!f_g{e3L}!K<U=RntXRL`2nfk89Hru~&v(KDUP_fwJQ|KF}m~wk5
zmzepu!2%4DN%rDcgcTifwionu`DK{@!SflKYqt4jngiB(XP$GU<%wr#5#Zom<$Hl>
z`5b;2;=OXS&)aV?)>S_Lk9{S#mvq@Jd0jH}OVkDiUJwX?7hYfhpG5hA#fD`5iARcm
z(Duh(f22v&pJgJo#fA<kC1szqL$M+6NApS49w;JZ1{uc1X%y{!dzO51%6+7T5conN
z#F?_AkcS3*oFRl6YtDH=1_F?dPwCj0=F92&D#lpq`Kq?M+^n}InTwPW#fQU0kpUjj
z7BJt0hky3*2LR<^Fti>g61^u1NJ)7BpK~MtT+&SpN0fzR@F^h?N6+y=(d{3_N1iC~
zNk862kvUZUMEmW}{>t;$e}4flhmV#)phFz;cmY0CAdXN-0~yHx#WL`5v_Iv>b$QW^
zeY$lq+R0~Q9V^%WFhZual6m1>_({|Y0AQ~}{f+^MvIh(R=Z|EZV+YItz##5Xz<->>
z3HF%4Kje{&dz^q^j$@P!y!VWJnC=CG$YI%@@DEzNzy>wINB4qJwq>-?Q1*ZZKL~a-
zf0PXd_~3*99HB%h#A62ptbqii;l+aGgBCHMo<CF(H^wE4U+;-q{20c#c=1n=gCyjG
z{D%)v5MmT%D_|&)F#~xeqXp7<pz7emx}{BUF1xu82EUaG`ozOy94l8m=u-v|f`NDU
zLE)hcFaXFQ$^ZaBR6UxILl{KC7CZ2V36wVg*+7AZJ_MrkWSBzu9O?}J;D-!4v<Y$e
z!-X^$hd(m^v5W{PuLR=Q1U^I%O&i1`afg}(AaY2E=|NE%=XfGN@?j4MoZ|-Zct8%F
zFp4)o5gM}~grV#xGsm4n9QH!TKG4PwMa_$TimDU-3i(ioMpQnuhyprjVE}QEKpM`t
z0QL&-gh+zIb0e@MzjUL?x^U7y=;+q1gkhg^SgjYPtWO)b@P#jsfgAZz)GT9ps2H)(
zdHit30e0C-<<a1IJM7^P(`k<z7>XY?ctJl6Wdr3s!v^AL!8rag198XzaG4kc4h+=-
zZsG$3ovVlQ{^1XNjN%YJj6ynT0SR_O@d7VsfIQ<7Rp@!b0cDfMEZX+gJ30ex0wt(H
z8KqGFMoCn%lcj9v$|eJaaqbCQ#YYVemN0oxRR#^)4NB$08~scTKk`5qez;Lm`YdWl
z3Ha%dT1LEO_~R2h2nH`f5KXs2&mSW|BswJ^$8j!-6gx=b1@e(dd1$W&hLFbq#4!Rw
z%;ErPWq~x<_m4^PV-trs#{|fTPU_wD96!*<B!kh{c>>l6!N>qUUSSQx`ty$H$SpGR
z@t(Q$5uu0zBp_8)Sp+9o!TG`DY)lIm)VfGj0LYLYWwTI2Jx~Hq*hf6f`Lloi!yf&N
zq6~5yiqpOCZlEZe<KSqw7yGaVgJ^*q_hAo$S;L2&GgK5g48t5+!yh#ugz03^1bIOJ
zK_2EDF%)0Wgnc-Ji2i7Xp%zC(ngQ;oheBa1eYapRhdIFw&g6sD(i<0Td42^%+waI0
zvr@6RU~r~$3LPqDJm;BmWNw|A*@EUfISLsGu$KXBP-jvl6VY|Pvz{IOXn*m!&wfq|
zpiiW}L!o2Qo91-nl7=%-HyYBTCN-EO?I}u+#W#WObgNyBs#3>V)~z}<s#6V?RbTqm
zyXLi|X8mhm_o>#mF3WFB<mFx`TiIL=cC($0rePCX)ww3ovaNmXxIJ6j+s=~kdL!*=
z_XgYJCU?2beQtE8Tixqsce~MDYg>amE5C7fz3qK(eCJ!=`{sAQ`wee-<Jvd>{w8?A
z4SsNhCtTqRUpK%5-WA{+oZAzpIH@`9@P}_D;s#eU!#)0SkcV94BS&<{V+QYdXIv^9
zCwa?V{&JYdT;>EfIm}S5a;>m@-HM)h&wc)Lpa;F(H9wR-jP9(P;~XnGU(_=&?CX6g
zRF6bAlvbZUDHRu->O$vw*S-FAr&kKu8FrLDxN-K^>ciJ#M^w_4ZWX52&jxIF6we=(
zN18FNZ;sNc(-~H&LS&;5L_Ay?#!v>w$-)x<;D(``aVUQ*UV4UT)IG9Mse6pU5dNUN
zp|(+ue{93>h3N1ZBu{oko#A~%R6C{Ybq?<xDzA_$fma#z3%e~VS#v}G#xn>%se9;H
zQRrBl@E<kcM4{ubkg|u(jL)d$BT639C}^bk(Y7joUHjXwJKpK8vX0l>?Af41AqqhW
zZnXYU&%j}$-2Qf|#GT7?FO}UHrPWyCgKtE~zo85)sn;@;GEfwM(1OL22Q2`-w-N);
zlZEZ^2SHGjdMJcOsfR$oybJUP3N#d1_=bB(z<*G@e+UNhNg+h>2Qjccw{ZhQiG|;T
z6v9D<tb3~ycq<Udy+!c_M_85sBb~SMuS#jY;gi9Ca0VP~6lPFCQxQT)xjLCChi90<
zMsY&!t3t1nm$v&pF8e><VU+PJgg^+xKnOhbtGo3B4*08z;J82k`ZE>#ODGhQm;H0U
zz4O1nixl%y24&EKG7P;4G!%K*2U!>gXSjk3bigf&z%&4yVDN@|(1J4<g9}U)3k<<A
zFg)c+gE9~UZ%~wb_=C6Fz!3Zfd)R{CBf&0&JTbV$F%U#8D1>cTMRAaYGDrhX48dBY
zyeJeg7fS|zAQ-9|haaMa0O$}9xPTfsfpM@0bNYu(7zbaF02+7!NPxVuQGvVxg}r(r
zf|-E}kbybNA#tz=!eJ)BafW0-1|5?JWI#v2L5JQ$hH*?5<x|IhV21QT8+c@fys?LP
z9EV8S2X=ghwy_6k@CRgA27dfOg1j-t0URduyJX>qcmy2(`GH4gAe>~0LW=yaWMGD5
zIfrC$x_kgK`S~H4K?WbRLYDlwzhfM<p~9+T9QmP1K0>{C;RZ0w0t@I#EeM3hvy?OZ
zjWmou`O_-CNy?<GJNs~yLvua8kvo}8lq#sostn3Qk%dn5hqDvJZ}<l>0GwE`$|_Jq
zzyStF90Nl!gRiWmLj;^xumoF(gHZHDP}IPz{K{IW%FaVY6I4a7>Ogy7!4L!-S)faQ
zP)oJ!qg{l(e?W(E_yrv}t8qAoesZfDgd#|=2T*iIXiOY?2!QSJgd=#XD5wV+ut8}k
zfokLgyP1KnltFb6KKQt?7?c;onLZ%9$9de%B+Nel$fF;Dk_R2Lhqg&VL~({2g9d~I
z9A?NN!1*ELJQN|kJ}biqX2{L9ksstlD1Xqg_aH*=kspEbp@ZB`l=Mf(lfss4&yWi{
zq?DhqW5b`~LX#5*YzPFN>`4ot04=z@^=rTTL&Kt6Ir-B+8|b~8@ieDYvzp_Vr<^}6
zJQT950<84B#j^)xFoQ(sK(I7SaWFc0Fw1{H%S!x*S~$Juc}o<v1QBGEPkgIM9K}PC
zhcuu(zr@J}Y(P>ZOj+PjLs_P6IJ{1rpQ?kRx%vlCsLabW6cG4IW{?KXG?ZuLg&kZT
z+iQVHIFx#Tn}5)R)%2=a&@oW>1|TCxLqP}sXRro)AR=ZE2m0ZMH_APMYQB3=Q2)Y5
zM6pgE8X(7+PUPGp8RQ~_JkrH+x@V9FXrRtynLa}iC?cfDe~=&SOa{l12gh-SgiO<9
z(9|448{OPadsNgkRYLbX)sVx&_?*=5!$SY_GLz#5N+^T=qyP&jgF>(XQGA>`98jVx
z(5P5LRY}lOdBfm&y8er-2(7wheUu8lP`BBF?GXbP{mQT`OhdT`5_JVjI8ifD(SN8!
zL`+dx&;vt()_;gm6x<#&C<l3<OCO5B9PJ}j<k7+8zy>6r#H>+i-J-)v7RfY}+Oy1m
zz)UEW(hPX35P(LwS)T3LggdCZdU&G$e-ME%{f9AC(r<9oLVeV6%sqJ|!ceucdAx_{
zGeSW0Md9>Q5j#$=%FZHO&W?RNXNWy6VpL|zJ!Zg8!<kMD%T7Iw!Z)?fLOlmiJ<my%
zmt{OGXE0S%eOiX&qxqal|1;7=xlc;i0t&!Ywaf-xRhIVy)}|2FVWrx~*}A?<q28;z
zX4R@m(E_Wy0(3PzWjKRF{7N&RJVbn}2$Y2}P=+gT#8<?`c=*F`Wl>wOgnJN!Lde^H
zFoX1o(SJ~eE!fZuG=o4;hFhH1En~n@L_x~41;q2)#-+S7D1<Z+gywt(ud)Xn`$ZU-
z0SRDI@B*nPy~l%W0U4-)1c1i>1{j1FNSqN!1ba{c8z`Qyl7Sg;p4!7$GW~{Ke9Yd<
zNGp4Wg@i|^d&hVjM;&tpnrRz~%sa0lNP^_Wmd&BIIfuNHS^9ar@Ri4#-6DI*Nb2=R
zr}HZL$w-29)hI+raRAA%bIg%FNrs`{a)eq0X1F_)m#w2on7mpq%!V?cfDPn^o&?bD
z8%p00Tc{x0vK<v;ZMp=Vmo|Kywry5N*$1OLx<%0keCWgEX%wULhoWn}#Elevn8D23
z9v3b{7v3IQC_x=v6o261QDotNK;nPMK65af??f9HP{M<{8+^!z0m}zPLq49%;za?@
z3}a6S7DuKuH%CoiGp<7arz2KN=^J^0)kYDALg2||@LCJ#*8t@|0_EVbl|SE^P*_9M
ztwT_yjLK_M1~7&ce<%aPb(CW$gSH%ENKpm_Y!u<68x@cN-R-m&biI#EhC@ELKs;kn
z-adYTx>Wp2MiB@7<j*bGI!LacJl5l-@ZfW6%28GySH5Lk-eq2XWkfM3aR_D@HkGiI
zWu&0xUQT9ZUS?*-w_LuLVm4-@KxTe>=4QTTY|dtwv*u=rW@#o0YOdyr8)tG>uuk*l
zZx)Jh)@F8YXLo+*dPC=Q28wltXM4V9e9q^Ki{*I+XFk?vfDUMZ9_VM`=YCda;0QH^
zUTB7HXor4ih>mFgiJoYRu4s$CXpGKijoxUE?r4wxXpjzRksfK1E@_iKX_QWBi}tn+
zKIo#TXM&DtnV#u@mS>mV37Dp7o!)7lW@ekd>72;vo*rtVE^1W$X`sFdp*Cu!Zfd6n
zI;2kOnpo<mu4=2kYLAO*sh$a{#%izrYOuaHt={UG=<2XOYqU;lYa45_ehITyYq*YU
zxrQ^gZtIqK>$%Qrz20kLHfXz6>VM{I!5(bFj;#2oI=}wwsSfPIZfwWS>)5Jm#ZC#l
zer(IWY^RRw#GY)KsBFysY|z$e&Hh!+25fo@ZPZTf%$^UK+3eDGYsOY>*{<bY<K}U*
z?VTIB(QfJg*Iw+?o^9Z6N!*T<;V#xqEAB)~736lc-Tt=T_U(ZSZt1SV<$jz+tM25c
zv+BlfPHS%7cy8zxH+8dyWxyFV>xXf;hH?1hN9l)XaFl$whHHquRDp(R7?pe&2mRJ>
z`gWB2K0e^g2S;$)NO6R@YKI-1Zjs||_$j&LuCwiSH}5Vj@aF2+UbdVG<3n+WB|rj4
zSb`-W@JZ<hBxn>zK!PQh0wh2LN*QoQvF}kigbqgn6t@HGv++kESVM6KB>3-2nSv$Q
z2Wmh9_EvCzV{i?Rtb0N7Npa99u$Kj5mIxm@)|TuF2MNzUXJp&5C17zwIq^f;2Ne_Z
zL?LtkLm}}nPoH+^aYI>iA2;(fKl3HnQbQ5*8HDpXAM-OO@-!dw?coO;Po5bJ1;XQT
zAMf)r&$=PcIy^V>lQSFlKp#W#p8jT(>QnMX;fF1@W}<r_!>)AVW|ShnTF8ly?Wy8@
zVJMlAnZwRD_h}S#0Civ1^an(BRgv&2ckL@ji7dakEk~3!PoIAH?+*uYI{$DKCw3H<
z@o_-&e>m|aumi7R1ur+0Y49p&0P#6zrWEh+EoB87e}re(_OG<>ewYFok9NSJ1`tPr
zM)(H~@9?iA@$D)0B_Q^8e|JFthkO9?E`J|?h=SNN^l@+YL!j|(=Z7VbaTEs}1OJEr
zMep}R*oS^N_+)o<n8^pQNk|N-LwR^2bI=|wLX=>5K0}#-Lr-$ZV*qEe8&Gg2iVgKf
zu>k|PI$D4M8+ZXyq@E^U6lPF?nE%BnIDura2fhLNFaq9cG-clbBzYMGh(rKqioQhI
zgd<dWL%AYkH~}kOA{bbDtVg#AKdD`ZiC*6{nt8#Wf(ANR6n0;CB42cf4{~YX^C55c
z5~l_ncZ59nhbc(;e^_&`5`26>g2CtWd;f=i2y%#LadTgSzW4h`Ao2Sae1hL|z_A9y
z{|C+A2f+_~!{2vk*wV#U!gFAv4M&1Vpn}c6`+VqdW}@+YfCe_V0~;Ume&2lm+K+_S
z=W~qLmlrsI<x7SGxGiRKp-?~oX$XcWm?{P!1bHa_H);VlO5W$cbpqso2Xvt@67dF4
z6l<6lfnWf(i6yiuLTi`-1n8$wU;yf22H>sqj(hT$N1T5khSW5aQIOJpVg?}qh<^eH
z5-f<Xpg;tJ1ir8#(B6f81DP>^u}@x<8qzjNJ0}C-zk>+RiTeji+&Mu1&Pf0%5+ux+
zGH241iSH)Pf6oB$?CJ9-PXj`S5-n=<DAJ@#mojbY^eNP+Qm0a_YW1pBpjv;{?CSL^
z%xBMD3M30Hk3efn*5;$qXyB4>tRfAZGR_fQfp+^L`8S2mv}ul(<eT#U4Iwo|1F1~I
zM+dINCDR1vyC(QCv}yg8j1zb$QadD(0*iLHM4~{x63-6&3{6ShNc`;lqqZc{HPiz`
zNh9bE3GlrC+)azL1j#;rNIL(M{Lc<;YDkVVpMv&Z=*eKWbMNl`JNWS8$CIZy=zxTL
zHW=8*C*c6Hfi=9@fJJDNqjSs9y$}a#P(Gm$@(d06%rM9^FEB?CSp(IBfD9@u^Un;@
zJi~x+Gc_m>G6xjJz%v8Ua)Awm>_ZC&;_#CUJ~NC%%LmrD1d}~a6y#3}z5P=U2dMc&
z!(m-*_zyBKJcEn`A^u|z15qGjO+7G(6ABdQNU+R4o5&zRNeB)98Ilbz<Z})T_`rgI
zZUcQ;9-9o}bdye7$%z%6b=r9+o_XrIC!bBpDQBC379^IJ1ldLqU->NYmR{d5w%9n2
z>NO5u|4iqIBhWyz&s+$xqL@IeG)9|VkxhmVaE?%cnP!}M7Kt@T9D*q{*SJH6ZmRtQ
z%_FTv;>a9}$wsO*QvjFGK>XOS;Bdep0V*rN8H=29s7)~$bhSCF-4dWGnxUZKiaRd3
z<(iAo3kF>9&kF~<@XrMXyekkXPekz}1LL5h00I}}GfQtXlrzu_lYPQ$Sui2%&qwl9
z^a8jsec9nq2sG%AGb0>A=0E(XfPe%q>R2d9H5LSlN&?mYkcdG3j6ld&6Cc1pmrGvx
zOg_HYh|UhrKq1g32Mhtzn*M;&TPO$EfF{Z3miH!{JN*e%pH*9ZHP%^co%PgOIX&K3
zP{TRUX4>tF+@}KlHV!q{;d2@^c1RQ}rG2ISPd<mmitIm|MZylQeaD3lseYMS8>rN<
zx*2ny{l@n+`P`Z-a{s6$(PrOBhdC0{%r+ddWe<c=LBB;pg=oz!(YLY5RqhwI(Jg1}
zVW=Yu&2nGszB})|JB`l;2#kdcKF{>~(m4mf+`<I=%mBzaV$xz_4TQ*JLyHC@98$?L
z;B$_R%!nh;2?N*kB|Z`i^$|g#SkvOh{`wLHJ_^$RGO|H5+UU<dMwfYzJYdkW8SDTb
zd^=xEB;b&NKm;{WG7}We@w0zyVh|(1pPE22iewl~8vH=UiFPm}-+f1Haq5~+wx+@r
zvap3Nyc!C*Lc;BYNF2*}NrPgw1ZdE%W0zV2S~i0OM?6b#&RR~TlyeAZbW1O?!d>Nz
zHJH;74l>Q@Txe8<gvGh)AD{6H5_pK5$&syco7v$O`!*dW_T_W9g9Z^7<P1lYu5(}<
z$F!W~I@CBPTbs)VaP|=^XI*E8hCC!96Il>(fb1Fjc*c8b_78uA>>sc=#7YqGgc{^S
z9wSJECm8^<g8k!QO*<I_XtojtNC1O2fr&N$5HK@!733VL{6PO&5CnUuKmsrj8PW7-
z$w=4|0Sx#ECv;?w0~k|;LQ+^m2*Qtu?4~05Ku5|rQjg}Hl7S<rh(tiafDNQ6gNpQu
z38fZ80KBlB?tCXa<7t3(_T-#2!G}1Wv5aSkqo3vc$2AUdh(|0aACGv1*$ny!;Z)`t
zg`rel6l%7AL_?sFKutd)vC!0*O*<K#%rzF850G|d8mO5DbEYBEzGWz*7(J+P`Vozd
z3Pd|9C20E)mXAnuW~Y;xDQ@VJ(Se}!AA!MJUfjXc;lR|MPJJp=!-WqUNC0HmBiEY1
z^QC9lpd`<*2zj#lk5K$GJX<ZESizG2)_X?PCQv)!I^`+Xxze?+SD`0Q+8RtjsiiZx
z)2q1b5rwh>wy=ghtnPABuC;Q9u}_;xKLUk5WW?vOT1Bjy-m1<R+O@Nu{j6v43INQK
zYl?OV5^2Tb4;iJlwXS_FU>&R0#O_YEX1y(G(}`Em^0v3WWua(cE8O7{x46bV?sja8
zPTDfpT*~dHVRcK--%_`_*1c13k*nS9a<{wQJ?C=~__gp}_FUvOCuXG^*Xy#kz3yE~
zcE2m%`O>$(PCeiZ&-=>p*7kSy&Fq`t%Gvi4xWMg=?|&1l-~}^yJYst=gd;5B2~)Vj
z600zVGpykakIf|<{xFCi+*<Yj4%omZJ~3z!+~5_nxWz7hF^peKVicmd#x|a-ies$f
z9rL)yKK^kcXWX?L6S>GP%rTIYtmGv#xyep0i)MFg<SA3xYDj)Emb0woEpwT;LY`Wc
z!z^a(;<d|WJ~NurtY#8^`A=hhGn}V#<u%i}&UU^to&lVb&C)o|e*SY(=A7q26S~lb
z=5d?n1n5OGTF{4nG^8UfY3(L@D~!JMpB+8vO>?@_p0;PDwSwtUzgg3tJ~gUSt!g%f
znrfteHI+?$PJi&D*0#Piu5+#HUGtjP{#Z4zgDq@Dw)!WqK6a61tw>XpqS?-VHngKH
z?P*h++NKybwzIA6#YTDmy2$=Eij|#6Q;@sd<~}#N)2;4xv-{fHemA`1-JN2m5Zv}I
zu(;)|?|t(-$@K2Yy#wyveD}NH20!?M{~Z*8GrYP4M>xbIE^*^3oShB7cyAv*@r`r5
z<9e+)#zX#DjeET0CO<jvKrZr?)0N~Xe>u!!9@cKJm*qBxr^{uo^PThDtpVoqkZ&&Z
zcIKSPiWP1?M55o~u4(Crbb8MbuJWN%eT7ALYF6cejATd>B&uMw0im3~^oFE(V<|{G
zp7B1AAR{04m=M!-aub{p>Lu1tJAM&j4myImCheFBI;4OQd$2a@+MasV6OXm4pEDUR
zILHesJCI-)DM66`kjV@P+gPQGeIUsYls}kZ0|5QwdNy$7yblsJf(TX|=m^F3mUWKL
zhl}<zafS_|Q25J+jqV{5iD2&@h3zFP?}J|mO^`8q&ChlqO1hB^n2)!Sz+E8cK)vBV
zjd;a#pHGZW<b@W93<OA?T|p9T>1XhQ-WcryMe1LeU{*rsqxT=5H@%E-KYV{gK_JYS
zBrKGO|K;94dBigah(DAFGspn(amVxNgl^b_;FX^B$O!-agY4O!IUqw6jEN0&RmX%v
z6fgrJ@I(I*$s~n>0RDsM(N8GIz+knY@yWvrECVw<f$=q#+!aqg)ZIfMpE(c$It&8r
zO_dEy$n~xN#0Pc;Kd4|bG@%T@jOY!*Kgoj(Sc45<l6a8C0}ez2?t>~Q-(a!e^2tMQ
zphNB<14=}J3XX#jdXN)l->Ge1_thbp(Nl4WgZmN0GhBd@_`?gNi9MWviY&|Y;KPXQ
z11KzmKZHWW#0>o<jOSUBI24Zw;)6U`1NxyLGu#jfo&)`$!-nufC5FNc$$&E;gEUB=
zS3IC2G0+JzgEW|7$2dd=iU^CK1O4Db|J@HhFhdk<;@8O{A|``iVWNuA&n0FeLhwTk
zIs*=F;STy9_bdtWA%i2J!xP|xKd3?}N&_=Mf-YiW|2@esN`qkKgFl!EI&2R<SyIa2
zmO%Xf9$9>$fSjW}u%o^>f(e!)N(=%%pu<P}!slHdKfIzGb{ZYpAw%9(nGx58JYf1%
zmOp@%gXDn!Nkb?s%mwJf2*^N~XyLpKM9q-J=ZRi2^p6To$R@@IEjY>OU61Y&4GqA+
zEWW@K6iEZp5FhG>vV7oR(W0_o;5f{lh?ImtQda+|f<y>bOa8-4DjzZ=U=%1xeEeh=
zwhSo101QY0D<V+u_2BP41W4xIKcE90`9o#Ro-BHVQvSo&!Qv$4-tN_sMc$T@&?7<E
zV`rElRmuoj%7grognmrYM+5^joaN|2T|#!*LN+91O2zjfQZh&Y?OjOuRmeja;{*u*
z#QnhDKitC$=)(y}!%gJia!Fz}3Iy#HPxSS}FGj)ja0pbs51jBrJIEqJFe5bLgGD$a
z_VJ|iMPLU;R_XPIJ=kJV+8!++<t`osQ?5iXp5WKff^8lIKj4Eid|qW`Ckc+k|CEU|
zo*lCIpf$b(T22xW5<*)(CtOMdKe*iq@&h_xBS<)dl!TQ|%wyT@W%PljP}XNQIs)lH
zB}z;P!~6qcmIYVsWMdZEV@9Tg`pH8U*B~$e<OvW#oWlj&BqX?u5Td|7I70@A!wW>j
zENo*9pw{N`C*GLkSXl!aPL((SBg5FBjerk6ghDcy1O32)D+L1#9H2@Fh)!<*Az4%+
z15KbnD2q67AW<5nXO;v%$iOmy4+}m48s3YQ-rzs<CXcEE_H<&5qM<lU4?^&V4T>jT
zzJz(&1M&$(dRmeYE{iNCr!`>d4WgkmB%mhJk9`&d4d!HU&Q@Obrx*TbUrIwf0IE1T
z0#(9-42VNKAm~S^LkH3Vi!957Zd!y+D5xUEWP+b+5`@-0Ny|`Hm!x7o2}CMpWpd$A
zgQ%WZAd5VRg+$ycKh2}s@hYtP!;!E^NT{lVRio;8VO^qw+J%TCk>co}#zEo?ub#s~
z=qhW81#2m*lHBS(Xlq#=3963ghKR&!NfUDb>)C~4$J8pXW-DO!>TXj1mMRu2=S?3U
zo~1<iLwWY9v)-yTh>x@GC$NeGx^`WsKH8^-s=^M%sQMT_;lo!J7FmQ{xWMVhNz7MV
z&qRTrHFT`UdaP|xrShTX!D=7PmDs|jtWh*<$%Y5X5*vhV$IB8Iy3TCNdg{scnab`g
z!&d0c{w&Z+UCss_&+;tG1})MiErbp&m=&$j`mEAMt<(Zr!a6Nv9_`d-t=48))mkk>
zV(r$3t=Rrp*LrOog6-I*t=hI&*_ti)q3znnt=!gE+q!My!R_4Ut==M6-P$eH;qBfA
zuHcRs)4G}8f-2w+uHr6kTlMYX-dy4`uH;VcAvx~jvRvd+uI6t4?(Y<?qFwIQLM`Wx
zF6knc<$`X=Wp3%NF6(;7>7wq%sc!4eF70ZF=UN)<ey!-%F7NiPbKS0}<*psduJ0Ca
z>%Ok=1|0DkFY}Hr@+PmnEpPKq@8mu&^nRQ4Qm^(7uJvB;v1RY}hHu_>ulK$h_=+$3
zsxA4J@2H(``o8bht}pvun)|}9{YI_)&hMhtFPoqPvg92<hzmMIY-%y){T{Gc0k5m+
zFXZlSTXBK}ynqBmBSMe@I@$<9oP?>W-wWhtO`rozzyix`2Otu#ci2M{$iy$C@RwFn
zLDYbQf`vU8FamFH{xYzi@vm2G!sp>b3&<Zx@B;=9ga)_&%n0<KKa9c<&%_Ma>{s~1
z37Bwq*h2@XumIVE3%_s-e}yjqaSea*Jt?rU;jqo=a941IK={H!kkus7z=?Q}jqt+^
zOmGd<3`^(+5{H5WT*;C|!5sgANw~{5D2oJ_1TBn%5QoAGcz~_8zyu>pD1-tB@C_92
z!#Vsx4KP45gu(^Dz`!`e3*e-yjzHx73_sMs1$=<5hB5^&Nfk3gGR%M|5yUURfW!0#
zKXhit*hmcw!VApuS^hH2m>?*KP$<B{1#kcp&cFr8z?dw61pEwt0P~1kK=pw!0^cwh
zmzo1dm6j;q2y})UPf{QPj1Z3%Abby(48$++07B6J!Zwl*lz71ST#y{g$n1Sj3d6!T
z*uw>x2_X1Gg&?Ah{P0UuGE3C+4Sm8PBw!`hz$Ksq1H4Zth|mn&5Hy;EY2FV5RWU70
z049nFJ4?U`7{Np6G7A4g4Rk<Aj{_E$A|&ubX(CIG;DZuV$PLkg2kgTvP~l7OD1m+e
zCPp7N*RVEkvzVE2O>6=TsNf60%s7{@Ion9)2}BY9!!Hm4Lb!-P%)&C%gZy;@9W^n7
z;-@9`^9cxqJU{^!i-j}%0EMIpLc4QZ|HCMla`Du_Aut17%fk-v!wBq?GgL7w#0XhX
zF;tE)C@jb?xC;VwhCQHk3a_X@ToN-(fLOr)0wC}M3;zQRkR=xHQzH7pNn-XhzycJ=
zG$BB2Q5&@w*Ber&ZZ|^}8ZSu()U{N@v1g-3DAY_a^hgGg^*?xZJs_Vaj5Q>Gz?z=*
zAgVPK$U~BdMM+e(7e?_p&~;VcwLQE5g3Q2P_w`?&z&`aVu)>06b~IFK;bOBh2be?(
zV{xvE5Da_fUSoh*@Dpbb#Ah#w3}A6G-1k3_HVfLfbcX~p)WBV~HvArSY{%McKUHm?
z!v>f{NpL7n>ozD{o=n$_KLGPNV8C$0j6alsG!(Z$95;nb_hFpFZS!+;mmU-VA`^xP
zb+?RlW4A=yHIGPyUfWVh6th5k!z3~Pt3>?55F<7%s5fJ4XbS{%zCfjX1HmNCz&D@+
zH)Ude3&eiggA4#7m403qpXHTX13$1|I4k)5GI)a<nNrgPCtN@%!vH=@07zQI{hYHW
zaU}>21b@f?Gs}n^!vJ?LiTt5BDO`XzFoOitfDH%`Kl1|$sI^Ks!wJa13CKtd$aNrI
zx0Xx9ECe)y)4&T{9w>vP2%&=t$iVtRC5gy61Enx6j4)^l#0smm0xSbE*MJO2Iim|Y
z2E#%_{8E-<AX%<Nup{RSs06S#`Zx%*s*fR>+i!pgn9i;_!?k&jWveqqJGT?A^GTVt
zU;Bffnm-_Tm=tQar+Z-mUDJmDyTD<)y2ty*vAf~AyYh~^yyv^v();Jyd-USFz6bo&
z@;mPO`@iF%z$d)g5`6F)Jh;KT!bkkJG5i8MJhDN&#Am#)QT!NN{KW&j#)rHday)E%
zJgi~7$fvxgkvzbe{P%*q%Ex@nvHZfhy!pbs%;&tx(Y(dkJgK3)&IkRV@x0I9Ji-e-
z(#sst7k&HUe9}LC!7V-0)34J*z17Q`)KC5XR{hm?y|!h&)@K^mdp+3)8`y_^oB@5=
zuYHo8J=$~g(X+kW$D7-~eNvD8+~>Wd)xF(UncC|;;IkOt_x+Upec&Iyf(<_5CmY@)
zzT?-K;xGP<8UEu}zIR3czU0>!<y$`IBNygp{)ugV=a2qyeLm<LnCO$f>bI8ZpFV-5
zez<@utkM~woEbhK!yph3mfb!LCmAx#ezvu~>knMx6W0y>_d!^LuzI0B)eJgx$w4lI
z!K&5?Qkt>i7qH@&?Rf_XU4GOIiL%xuOrS$z{?{Ok9%~MQ_)F`$lE(!y1M@jCX$`{m
z4~qOt(>2QkuyWm?sG*Vp#4`W`2^KUs&_F_k3mG<a_z+@5i4!SSw0IF?MvWUecJ$cs
zU`T`iNR~8t5@kx2D_OR5`BG(+K`4=x^!EY=ED7TL)ll%{-_0k?PI!ZP)TFa<NSQWu
z+Va^llKA%FBWdsd#Q{e)qdeuB&udt*PM;yG`R|!klcX*nLm<tiIYMLU)@>TahK+yt
z^3Jq5<G@^JBP1+!%1mXbeJkxrvHO@VvM5oKrL-qQDpPrLU(%9>FO;>Cw3hKT3>kIm
zrvgQa{P-GnY}vDE*S39|V(ZqbdG}tH%xXS-`0_n_Mv|Y6#havUo(0q%f~BCgmSkol
z3Rra5MVqxT==w}~gF;1lhIeT)dwH$d3uU8nZ}~Li4_7NH8H4IUZ6LET*B-pA+0F*I
z&hamb#R!zfpYPzC4?>oXGbt^bRDk3kTXrZZz)&Db?m@Z!Ay71V@~X_l2mSGnGiD|O
zE5gSH!EUeryt*n0m}EwnD->r6GwC`T#2GO!xR~+JhJ4J)OB}PZt1J`*^I4H3WcCR~
zhRR%wVn`?Vk!+B~Viao-WbiT18naGvW|_0pDbt1$PYepdeFB7~Ksx_JX~JLN3M#>W
z&f#p#LLp;KH-m6nl+i{VeH7A16Aj7GN@0rc9|X-jtE6BqFzh*!IJw}33&i|~nYrXq
zFU;h`fd#Hmq(WvKbP_x#yUqO3@|%B1feRf=RYNAeWH=2<KbwU7$1{5d(QeA@eyPkE
zLiovUMZUT_P1xQhG|3vZ>|tOjc_a|?GOJV>k{M~_S}z}dtdwWUB#{C3pHSd(MjC$R
z!e_|;ZdbG6xP9=#w4@R^v*$;W&;jHhdy=^}-cZCzRnW@J{0Ek~{Nd5SWc=~V%5xl3
z2Sw#N{%5njU=$c8<Ng`sIGIgS1y!(cjaND1{IQs{5t~aexhwbm^Q7cp9GRqbZiE@?
zmk^y4p-8R18tbgJW|ZoYqK0`8wbb0}*mES<FI0OD7{nPB4k?M&lIqFqS6G(%Wk{va
z*-GMn{N42*r3CFyt*^yW6Q8h6@+Vo6{JC*%doq*9yL^5T%^oPwA+$lT1UDSD%uG6K
z+;Y#o3JQ{<^e>rrW$>;l?`kEy!6^K5#2;A910ANszq87}!V_M&VN`p)D!z7^SqgCf
z#5iUi%Ed-zI#W9xyPTvX?GCCu(Rf#BIH_m`xWcQVzz3PR&WVp!^!*bjl+#-N#|C|{
zLnahQQsgXmq^WoMdjUjC*9fvT10E282~?l~2uKhC8p>wGB8kle^#Y{*BUH3F9V|9f
zr9a`LZ~2nO_V5<CTJfzif1{RR`~jMmJrE|6`HuH&(l|hoL><eJoZrsJ7t3J|3i5Ew
zULNN;Zo$wi-$ILpFhq+EMl5ytvX7Dou^#*UV_l{R3TVVppy9v>9~eWTNzRm)``Ji|
z|4`UfisuXr?ZsInX;<8uN0RLUPBH(u2O+3urFA$a7*gq6+@`{e{lJh|$PkDBd6Ln{
zZ;>Jy)_8_;234hTsA4!mir-XP)}VcOkvJ#$84XFIip5lNj8U5!)fU)FSH2RK9%<k}
zQW>GMNH9|zV!#1j@B+@z0x0KT!0Sc;v8xaa7E+Pbb@oBRyqz#&Ddb~i(D4M&B*Rvx
zs^v<|BD@;zr*_YffjD-UoM&9;hY@>1g9zb_^JT|`+e{)!L`RZONWcbf;ZPLaxgB@$
z5k9uc*Ewx4j`VG39Jm6_(9lPyR8G>25yj36*BG(lt>+oEfKoD?p&UADDH+X#UcLyH
zr)4T<Jv@mMG8_}P0HN=VNJL*{XqJz$@kdPhItON4l&@u6C!yximpwfHM#=N(>m;y{
zfpI|C6}gz`i1LKsEMr+!t6tTrvjl)tdxJhnKEoQov59evV;Ft}Y*oleBR-xHFn@q`
zF>2w*RQBNyu(XgQU{OoB-daAcqQolRq|gh8)7C9cB`sFrhnR-+R%_^$u77O`1u29K
zQvM@gd#MmV?h010@T09(>8o1UN?NdT)jsHp==n^7j>4r8wBGBhUd5zXYgDBqfsHM4
zLOYcq?RGD@HLN@hb}Ywbmb2@V$8G%<+PDsvw1^cfKCDq)eBgCNewA#YRyirGeiyvq
z#hO;PtD3T?wY*%VY<k(-UiZG&DUzAY?pU%u_};g>i4yOA`P*Or*^u|X0T%Fp30z<U
z9~i;y&983!+h7Mjcp?B!@PsK`VGCav!x>KSf?ES&4}bW<64vmDNnBzRpBTj{4hx4}
z17a7y_`4!j@r-F)V;kQX$LggjjCtJSR?0ZXK^F3miCknOGlj(=@$r(GtTiAX8Ol+X
z@|3Au;UpiV$ywHNqn=!4FMk=#VHPv!uB@mnpBc@u>GGJ_+-5hw8O}&4b3xKvXFF?T
z%@5qip84EoKmQrfffn?j30-JI9~#k#R`jA7-DpQY8q$%L^rR_WX-i)k)0x(Erv1@r
zPk$QJp%(S1Km89%>jTxPPW5}|T);cO8rBfWvjB-uYg^y{8rQkj^{#o{YhV8w*ufU|
zu!&u4V;>vY$yWBVncZw>KO5T7miDx%E$t`VA{W`#_O`j*ZEt^D+iWnxxXE2^bD#U%
zD^T~k)y)l7?>N@+j`yqsNCY0-8{hfX_rCevZ-4(A-~ku-zzJS(gC88>30L^S8QyS*
zKOEu_m-xgfUU7?0{Mz8w_{PC4ZghVf<l|;HyWQ>HR##2lDZewlzi01@zZ~W<m-)<T
zUUQq@9OpUL`OX=hagP7|=N=FF(91pYb(dVh@K*WK&&+b(xt!-wm-^JHUUjQq9qU=w
z`o4V*bgzF~=tL*F(cAs*1~MJ(TXs6=ps;nfza8%XahLnt>0bAScm3;m54YI)PWBZb
zoxLXqK-vk<<h2{l8r4?(;u+s~$3GtOk(d1BDPMWZFB|WA&wJSU4sx=aK_6x(VBty6
z<HN@p^{H3=>V+)$(!U<Wr)T}_X<vKWBiQw@*S&*fe|z8m9{9mWV(xce{QdS`_{mrP
z@|o`~r5hjmS4DpFsb78TUtcA}kN);!IeqMZAN=9>z4p0Z{snqp{OMQ!`o~Ou^S|GK
z=x6`@>0kfWKOg@2AMY&f-+%xAKg!%s{{~P}_zwUN5CIb~#RQN58xS|-PXQxP0w=JR
z7|;PPa5f;&P_*g2IB+jg3j{+@1V@krOV9-WPjCcZhyumW10jS1^<fRTKn7=!25Zm;
zZx9D_PzQIA2YYY^%K-4w%K|Zw2tPst$3z9;OLzop1)DI%gog~kKnkaj3aiixuMi8f
zPz$$^3%jrixj^)~rU=I{0}XJSn9#kJ&<WRY#)O9pybuoKP!8uX4#Cjm@Q)1h5YNo8
zme8=h)Q}AW(Zt-44hzu`577(lFzL=t4;yhKjxa|2ki7s=5Gygm2oVu8Q4<kS5d#ko
z9T5~G0um!c64Q$kEfEz1$Ped=jDo8agR3Oo5DO)t4Wv*KuwfIckP>h~4zqy`y08*z
zu?ss<2tP3tkC7op5ki;{qHN$50V|FFR-*-x;uK2)9RlVVrV%O7!5ZEwHK-yLSuiCw
zK>}W22mGN4rg0OXp(I)W2GC&!_F)F1>Lf6+3fDkP{6P)C!5?yQ3d5ir?m-UsK^MAk
zAC4gr!;qDbks%*K8Rvr;E2AvXBC(JmGmPUb(C0YZXF^V;87Apsk_1)qBvXV$9!B6<
zeg<1q!H{~V6;T2mo&hYfaW9xlu^?+IsEfAtVjr&28*@@LsH?WVh_iUICc)^o*y^&v
z(fV3&6M$nT180&%<7bkAIY>f-2tgmDVjgoR3h2=dZx9^*0T(FYALfA{!$2Fzp&Q7c
z61ssc+kgwQfi2ZQ2E(8d*b)u@-jW=)K?Ws(9LQlG=phUOvm4fc9B|<+)j%7tfi3%z
z3kY%z;IbRI05BmFFuUO(WzaDLlN@5u1{Kn~8j>^@;vwaO88_uP;KQpLDIW-iShU4F
z_#$yKsU&LP0&L&_Y@h|AV5gqp1jgYxoZ$&hGHhnx2|xh`<lz8h;7@e(01f~KQlc6i
z#yIvN8@Z9KuoF9ngoa{rJLO?9WYQ<Ug{i1(J7ZEF(n21rf?m)wJHsU{hKnh&&nZh|
zG4!GZKEMVhU>|A#26XdJXyF0~0Uw&+ALcO>b^sO*zypOx3v3V|>ESQifFCX4A3{$b
z$RR`jAs+moL+3#TC!s_C{lO^wVHaeu98B#W=wU2FPcyq=MJwSS#*#(RU>}SD6FQV0
zICL?vVKElt7-UclLhm220S84>ze<xyPqV91qAW1-A8w>ckRfckLL)f^AEZLN{-Fk@
zfgcbcAAlhW_yJE|Kpf8D1)=~hYQRp0$p$Wf8!q5wKFI)NfC;N}MDk%hvk|Psfjp^8
z900}|wPPH_6D{(gJWE0*N5mQcwK%|{J=@b|))P?2fvv=0CX=u}o6jj_APS^HFXoXS
zUH~6nU@2PQPy7J}_JJP|bOyX(24p}tkLM*xB0_7h3(A2)XOJJu!5_HbMg4&c%3&T>
zR3GX}2E!p(jUx2_*gyum;2(}54C-nh?qOHyVMR%TLunKn;NTx(fgtx`9(L6qvH{ip
zp&O303pP^*5fe$1^bQ%3NlDX5d4m}zBs*>-Ocp6|$R<rlqAF^}n`+=2{6S2~bQIQU
z28IM5oM8gIbR77BT;Rx5PQtiu6&6nd9cI!`Uk0==^%+j1W6|PJmx4Tb!aNn^Wkz;H
z@IfAigkI>S9zV8I?K34lfrdskUQG1`4z>hVwN+o$A7XU|dL>UyB3Eh9T-l&q?|~ng
z)m-&~SdA4}%YYK%m05)~Ly1)e;ou<g(H{b`UFo3@Na92#fh@rlM|I&^+tnYgH5>jx
z8~$M%q;*LDeNagmtX}Pv4^xR5`(t-*#4M~7eaI$Lf`_fpVmLU(U=cPSf*}fm;RS2}
zO=%%OfdUph;8kFt28#1yT{5>)qGUm9VBrca2KH29@;cedI23gpelm463$BzhE&56(
zZTECVBPO-+W`mDYH(_TJv}gB$8SqI3gw|D?plHXz8FEtw9#m;>P!djs4fs)QNn#tw
zp=#%W4@x2){!&ch!5h3*291Iw=z&H_0vDcEZRz2Aae-|Ka($0<TkW?b@|Fj+U~fCD
zZyWMnRpS{YOHZGoWa)xZf7kywl@zBJ2eXz8YLF5l*ao{`f+e^NaBvOmat0~E2WQZN
zDR>S4D3}W}_=CBCf9G}d{+A&G_!|kVfSm#y>7pnVxc?Y<86Eh9cbJEJ*oSE_g%@#!
zS@;-T7&Qj?uVUDSmzXJV7$SA}hoe}Er+5Z~*c0iMh(XbaAp?m~OJkWBjGMxVQ4@-(
z*o@EE2d%gmu{etxaf=_Li=|45!<dd$VvL`(B$gJ9_n41uP>suL2-_F~-`Fnhc)R9!
zyL`8f-7Jpb*d$1}k0Y6n#h`y%Opx99ZvhttH<^<=*^@&Mus&IoN12p|Ly;G`%}QC7
zPhua+Knq?OmSb6#XPK63*_Lk^mvdQ{VOb0^>xzf?lJk&|QJI*FIrRcLm<e#0jhUJM
zn>oyoIhplunVp%MtNF;FIhx^bnys0eyV=IDIh)OIo4uKw%bCQ$Ih?s~oXwe?+j+x`
zF`e^oo!yz9>lwb#Ii8_!o}XgV`q`iV8K47Npa+_u3)-L$8le+fp%>cE?irr*S)4N&
ziB8#`E4mUXx&j{>qSaZVVF;rw8l;=>qsIuJH(K}hxhY0Eq*q!2RT_p$+N56(rJ2H|
zS=y%kucieErem7)W*RAS`lf@L{eb#=cABRN&!>-qsD+xT!EdR_Orwu__mUbWrm-LL
z0jv8Vudv#Xo7$^^@2L&PsHK|esQM*Zupg+Q71r7v{voZ`x)s{`tLNHND_P0^$ol=v
z+9lAM8v2?V+B&WMTCVAuu!S$Izh<oQI_31bC9Jw19=jwS8?s?yDV+i*4JWW3sFA^E
zsllSF1@<VkI;9D%u&L~@RVk_!yQe!^&+yfh#KIW>p;SjY9tZ^%rU5lfDUTk5CQG6n
z#(^5fp&uLp2};5d@_-~9ArcPZRFH};T-Ga`Wqw|Q89v%dXxh+>xwlcGvQMJBqkAUW
z;Z*S9h@zsoXp*da86`jqx=Dg^%EfkQs4=?bw4o-kRXf%gn<b{P9s0W+z@i`g`@c^@
zR(y$B2H^t4fe_>YDEOgOLqP)gs8uT|6!O6tULYOwWddyA5K8q73gaCAwju?_p)vSj
z1|+~%;~{$a!$|VP87z`xC<821;VT(+lHdXvz@oZMi4@QUFTNyB{N_7oK^$JY8L9$1
z7Q;WRVW$G+AFN>t4q*x&fgQ%7xG@V79>J}b;u?;}8DwA(^x-{bCxvE&qk>$HmK;?=
zp>@QeGW-FP-XmPP!%mvxJ5H%T20<S1B0*@uPPo)~Nm649%0viZG4O;c%OgRUp*$w(
z&C4SR56zgXTP2i(B_2mLdb}i@!B&NaBxpbyH0sH%0aogZ5Uk-eE~B9G1yh||i0Ip{
zu?)YrPrp}!ui?6_^FgiI`XpXpsgidSU|<>KVFyZe9DvDIo`C`XykP`n6$bF(+0Ek<
zk|7vi;2B<^!+j|fV89tVfH@su76^e@n4wikA|BF*S?*;sK*OMxVIMrhG}>j)H{C!j
zX4Oqex6vhRo&h)#MBU?L)vd&0&_O-4QZy{4B=TVi+yMz-<jNgk9}WrPk)xm*WKeV5
zkgjE+#-k*DC2`*Uww4DO%3*WxfuXF$2Bv`-zCkA4s5Y5F&(Fshtl@HgVJ47aJ@G*m
z;zcU5h)YsM9zH`kLSxTC{yfmfc!!1q`|KK*i>>m3&nEp;jwA|L{y&V@EZD_Lofk8#
z(JUm=cBJA+tkf)UTr%1uPMl?u44ovtoHEb?JEVdJ#vva6FePrzV-S|Yox&s-PW@Ck
zixgs)WDG+dUMDorqD<f-K6;!Kx~WVsg&(3MJLJVI<^txUpt9>5X6}2|SB|v>=+>!$
z9RR!?`Z}(AJrXd;D*0wZJ^>Jp_EfXt8%ALecHj)00YO3G1sK38Ex*HC)gCSYA0!|Y
z1|bSc;2SO+C&t$rLg7r%K^i&=FQnnRMRIxGBQM0n85ScLl3~?XVIT7SD%g=0%&197
zf)uPF;8Wy3RMJRZh8mUt8j!#+iklizpSekb6;j`El!IviLY}mL@}S6b^pDv%e}n!x
zB(*Q$IA#$Qo^yn39KI+vWbBLb%o!nM`<!uf^laMyKYN4Z5&FkZn!ROFlF3WPPn8WD
z`OaDUmyDndj)OMt#AhQSNs9Oel7z)k#yE#m_gUQsYS6hS@?_w<N;Rz5v1H4dJ&QK2
z+O=%kx_t{bE?J6I|Dl8OFDc7?8~;Vg_irD+C{+FZ{r8jPzfj|74P?wOsH%PPqU?*8
zY;P#Q4xJ6OG4<TQf5Bk9_~vl%KEn|SK4~p)8LWn3NsY4?RHDPmtCKNY9c3IchoSb7
z8t5!&YlnaxAGb^BCQOfGm&?75o$NCJ+`D`K&fS3c@#M>!KaW1W`t|JFyMGTqzWn+0
z>)XF?AH4qW+55Y-PE|kDP{UbR)U@J`ST6wof=>&{Y%-8NJN$Ew1Rd-XiV^sX@QpnQ
z9O8@uj+}ErKA<Es%4?w<!Ve7l*mJ=?n@F%v3liY-f;8v2=ukY?oMVGD=tv{bKVK<E
z%1^LNG!;HnIpfVgjxpxXWRn%=kUh}+<IGP^A_G_`;!uf<K9>EHk3abgmQaDvAmYe0
zoFVZ~G>06rgi3FQ<xf%!85tBh(IKSJpASv7R7DF#@sdLPB*n~Mp}b@nI*wRMVM{Oh
z^Vp?9GJ_Cfn*jwAVf^5Oj5K}b!_z;LG3C@g85vpKRkrSvkFEag%4@H_{t7HwbUB0!
zGNIt5mkq@RicD~Z6?UdWxgF=2tAI)WMvxRMW!BIt%Q=G@V-ybLkBj!aB;`Q-pljD5
zV<lDFIQO7CYqtORLx`csh%?+`#!dClvQ$-uOpv6ggimzj!YdYl!9E<;cKhvzU&R(*
zjB&;qZ_IJW?M*x}#J@WHkAMV@bzp*Fy<o!&9pvLlggiLZ!b|8#AVUkNsW6T_BP`Sc
z3^w>S!wWC4Xl{(>{O}JfL@WScK%c*Mfekzo^wVVMsHDmugUA|@Kh1)+Q52(b83m*J
zpi{PG-a?e+mV*rvRAn5Eb57Y?qaB4fRl-enYt@tk&2n^7g-||AEMZ3^4zXq^Gg`k$
z=t8vpLrU2}(WOwjc11CWUR#S6aOa^$|A9<qn<h5Sqm-3xLuJxB6e(zEcYe0r`@kCT
z>NVARYwskB41Dmy5APN;;^33dMz<roXg<;<bNeByQWc6dsO|&H@u1Oy^|h|riyKRe
ziSr~N`q)s;xc9=)^QH`g#!o)>z>qv&lrenh_`L0=Ex!6&wl8@kg%qekhxHgH5~S#;
zD3jVqKG5c{-w|(D5(C+HJchvxYH))b>>vj%sGkXDhh!!LOg^a54u_;nK>#BQI!@3+
z5uU|>*CUHFB-j?)$j~ipBTGJX2r+a(0(idb-42h4#3b^{8Cu(#<B;)^b8Jl>$QT4*
zo-qhQR3tYrsiK#(7MiKh<tNX8|4C5np{hV_%^~R6$!O#Our`9mNJHGsPNpJ9S=~`A
znM2heS{RvoEyGAv#G}@hG8KM!kt&KD1TucY#An#-ab&@v65Uck5QfKtob040KMBeV
zYLY*fWD5xg1Q>U;f*LABkXXKAmS_B=lw$G6GoC>{vN)+fu%u;KcB#u;ip-L}ET%D!
ziOggwb0veo;@HeW%w<Mwl-&uXHLr=yY--a0)a;Hl8&;NlaHb#PWKKT%@y&FqbDivL
zr#s&XPvPMMmuiV-Iy0%sZR&HM{Osp_y2%}O+B2R6EvP{ciqM2ARG9;nCO$#v&xlHN
zq7nrt00g?wjB0eF9POw_|33;%gg(@Q6fLPqPwGjFVicq-ZK+FN3e%Vduc6BvDacTY
z)12xQV=7%IO=SwypbB-UL@nq~lWEh5?R2S3Z7O?us?MVpb*faYs#UKFF{vIisT6an
zSHH?ssHRh^SS_nr&x%&FlC_vz)el(T3Rjbg^_y!=t6lGk*Su=9uC#0`c;X7!!0vOd
z(&VdN4~y8uDz=!0y`*0+DA>qK_LGENW)Uxo+01Hovz+a$XFm(t(291nq%Ey!Pm9{r
zs&=)kZLMox3)|Sr_O&7f=wxq;TMbrrvApfAZ+{Eibw1WRxh<}7c?!_rDtEceZLV`g
zHr#3+ce>P-&u*WK|K03rce~7u?k1}X-teO5y4)?VdC!Ypt9lmz;%%>cxtZMb%6Go>
ztuIK|``-Lkm%R4vuYdmwU|-@_zXUEWf76MN1ov`;bx|%qtiz89o+>R17G8nO0?b_r
z6D}FXFj@T3*Z?QA!*?BUfln;i1AkMPv&2r3D74}0wBy1p-HTYBff}kXgT}q`M~m+z
zwzOn!c>K`TSyaO-8;7OBW?5I3^fsE(5vy#YF-dPk{L;FWEyk}qtcg(!=D4a@n#m}$
znazCRQ|(g0MiNJB@F9*DPv#%vPzjnG0<dYcFduSqNNdK?4=O|=B7Ek|I1bHG#|bmR
zIEG1rcf8~^|EK0&$=juxftlbpC-@xudQudeq-KY(S=5w<^WqXr6;z8FdG~4!VAu?2
z8YfsDMvir=L4Bq*>l&D$_J^vCl;Bsd`d-LbMy2rqVp2b;NzQl%I+h`;X9T4w%)A{<
z6ouuMG9yZ3fitQ^?PglRBqEs(OQ=`9OJ9?Cp<fQOyS+N*WuAH7ypF;$ianTQRB<FP
zsiH|D^b%Ga0vdMsha)tCh<{AMPI>qTH4b5oDU`z+sObk2@-YQR?86#Ju*MR;0S_b`
zB8Cd}8a{GUx=4LPk@`LivF@F(HSV}F`ff<1?ma{(I!=By5r^Yi94T?w10<;m-PkDd
z4123$|B%HlIx|Mn5Gf|TXXHDVVFp1Ydk@0SnM!)2nt7O}6GC}KFC7#U66DU<8y|3k
z#UP~)H-0pv*v!C5>HL_CgaLUuiZMyE{&+7g+GTQQl1GlS{ZX?Ia$s7IIw7#gwSe&}
z86tt!Gg9TXmLm%09c}l!Kflv>D|6mw1}2p5WevGsc`(XT-!r7q4<w8uA5<uZ;ikYB
zMC8LANXSR;(UcF0mrM!&XvI{h5RrG}!5t0fXu`a98`?1A8<+}MfshgG-?T~26Zr{4
z^bX^hWNGnPY83fYQ!m)<;~7K5jn~AHtM6~b8i0?VJgP1Q)+9t4_^7-?R52B_<~0!^
z{}AH$56`d>MaL2emMCFiJkXI~s*pQ&ffEg(3T_4%=%5riMiSLWEL}qqs=yikkQ-i8
zbPiE?b%b~xRc!n+HsEqE4WVuskrJ$tD&=%*&maZhXFS};QJx2SL3mQ4mrSH*W~P@u
zi$fbhVHo&eWJN*}u?G!P7!ga*aQHBAQ|NnPA$<Kne8y*R4$%+G*L)l0cQxS>ok4v$
z25G5LMZO_(&ckgA@qq7#F7{vzXf%FdaW1;?8;YT0>xUX7NJv=65X*pwY_}Zuw-WhB
z7zt5q%TPur7!m72h%g}&V>1{*Hgt#xZOkAR&X9qF;E4f~B^B63_C_Iy0x&6Y|3hIx
z5?(_(jIua_S0$X0f-Bfkfz%nTF&vJQ41dHDLUb>{$VhO53_FMrFvf_wu~9%Mgwa@0
z@kLNZSZ2U9BrvfIa`!q-co?2RD*dnog!T{a04Lvo4+-}V*YFP?hZy5v4T^IOb5MLL
zK?PG`4T!*e95sM3C=Y9d4BwE3x0q_BVkU^<JTEaA`M?Z=^pE&3XU3z4+ro#9G7$eb
zfq~d)B<O2Kk}q0BE1d>MMItEA!X@W-eLsN?`8O+`fg8lO5vUS<<dzVjn1Sf>CFE0g
z+(<tDa}MNFFGDAI6F4MkSc`T+E+R;Y1o2F|s8O>b4_ne17ddxnGAmg_|C9ZwK7!&v
ziX?PFv5-G#Thd6D6h(x{WQ}<Ti_M}p{lbKVfewz8DihfbQ*a0gcL@8?5AH&6c~UZV
znU~^t2#!FH?XU#12bg+Uh8a~4<YzosR4ih2NCm<S#ey7i={!}0bqV1}fESlihKGwI
zW#vaK#R3?B*ozw(6vfhMpE*d1R4l8(n)&jGCTK;4F`EQII_SbgsiGQt@tFewieVv&
zo#9C8QY^{wCr?C`){uUx(3H+F71EiFM`?m5=ob+oole<N1Oq0xSvqP|NEE`GjzoUf
z`4Uv5Z#t<pKbBF@SeEgbO=o#b*5HZvDGg**od4B~utRcbB@cjc{|-ZW76iFu<o6br
z$emQ>6KwGe*v3-uDW4MxO7sa*>qcMk6Bg*eV`v4N(Bq))scdkeCJRbc&(;>`V3{r@
zp%m((9%P{=Dx)(>quJG>FN&k0M2$7dqdn@Q+I6EjDx@0|qd#h-M~b9W6{JJTq!v@8
zNeZP=Dy1H^q)lq2_3@-rs-;`XrS4RvR|=-^k)>Tqre$iTrSzp?s;28Prf2G=ZwjXm
zlcsA*r{>Y7af+vTs;8JVmUZf<@o}enDyV}>sB`+KbsDIIs;G<VriOZ`YnrHxDyfqy
zrH=ZjVH&BFs;QgGqn3K9SDLAuDypNpf}Z-RO&Y2bbe~){{}v)T7Wwd>Kk79d8lp!v
ziQV=LoPiFpS{4rqY-`4=Qz@s`V5`4`fY;G4YN24PHbWt1U-&?*y^2_-da6U3s>CA=
z;-Ia|psm_k7OY@N@ffAp`4*LNOP%Hx$qI|f;GCD^s%4Q8|9GzJr-D>*4uIhjw5k?O
zDHi5>d55<aT1lMj`gCa#6T0M}Nq0+V@tsIoY?s%e>WWv?TCF*Ht;3U+8Ac6A5DDP=
z572-Fk5Dqx;0Q>-j^fID;~0AmVGY4*Rhu{!&v0!tH)N1_H)dmkQQ&<ALoUg{IrtC?
zXOa^xXBR^;5mj_HL!q7j)<%K{h)(7YLHkCW(>1C9{}N6yWdk87R1qA^pprJQM$Hfr
zKe;*j)-$=me(c93HlRgvv<yQrNNt2J`j#)rFdMQG9Mn@bFJiQ?2rxrOY-u+;zIe6$
z*enAvFFGbhyR$BAxfrzQ3}71(WpqnyYe#2NESthb%`!`JbDDq=DFiB`Yyx8rXm7(I
zivy7xJ~6Z#_6%T~C2ac)0Z6r-*QXU*trsgi8A}z{pnK9Vj`^4m(9j6HCnvZUkNGfi
z*RTW_Hx+?nSMMj2Pls#)l(#R34_qm2hG9K-V?7zMfF>ah%9%G*gqu-PY}q?@=x{m9
zfGY0Wu%zN=O7XoyhkbD=EBse>2~oey(3D=Q|GoV-ws}|-Xmhr(^9}6B4+xkX{JVZ_
zn|G2FFw&4FgCGt`Cl2hJYGbz%aR!K9Qx$2V3g4SL_iGuUpudhVfT@Bi;?S6(=)MV*
zH*5zTYZAk%n-K6T6Bew&&<Plq_((FzcKAR=vLZhb?5yWicaTRFT**XsLBhz8J{QQs
zw`xoC<OqY|!Q!Au*&8hyMX|W+qPiPAyz3Cs05HfWaL_;nNZ<}~z_Rcd3GHBKtS}Dk
z5DEOCj%j6p{+l@ynSS31nNS48G0T?XhYtu58Q%HDQfz$($c71_6rqtz{u3}!kbifm
zBeS$G{i27%p$f%P6U@MMuwxDW`+<t#{}Z4SFg?RLw5YZ>A!YY!7en-b0izH7;t#Lc
zKY|x1%lL|chk|9}gu6i`xpaXkxWc7#20wzJk31N(rhfdejIumPmov7>kaVIfzrt)N
zLUc8-lMi4bl={k@Ub769AxzGYg#B`P!C@(EQbo`f7P7324)K%nz-<61mfa-A6-&mz
zW5)l0#txyzaw1M|>=4i($9U`zc5HCepg4B*lKc0^ix<d~%fZNoa>Bu_`+~?rM1tyU
zYE&^RiqUAMNEfq0wjY=pzL6XCpd(SnFA?#{0b@PLqrs%+wWypss{A8S);`S2el9V-
zK|#yJ=(WVA4<*RU!b}yv+>0g+|1hlghyo!GoGcE?OcMJNY>7*1-x<wDMiJBu9oB%N
z*i3<3iE3O#h~Eqe)wyHeIZx?Fqu}>qTrw3P+=3Zl7%3rYOuQ10q=P&dXQRQ-&v?84
z{HOsfG6U@n%?k~|t9y>H2fP;vyti?Y&<|4pk4O*^Ae+P;HNw0xWKDOy6Zntgy9|Y#
zD(W24fycelLDj0AHx0bfl-$G?j4Do%b$XLGNf$avhqcKelZLSj`e0>V8@`QV6FO@c
z7aSb4?GWt8m9q?O#Ms=IxXUon%dp7BIvbb7$=gM@c3`5#Nw*KQpv_UB!d;zrod!ko
z^f_aP431zAWGxt0BuVc}|0;CBzC#yhLE+Z9v2-#icNe@hU~&#j2e31$#Vx$se&j0F
zP#KF$EEc{-+kz^znG8Xf-e3Hli_O@7>evu7(Cdf@({K$DF%5{IIOZ4)h%gnfiY9m2
z8q%<sX%!jCfJbj8iRtI76bPcT^q?mviD`0vJy}LQ?z)rP8te<A=uq7Rcws8auC<uu
z1d$B%Y)k1p5R)ivqu~$D(B%=as}xAjJszN3eoKP!WB3rW+U$L^%MWpM=7_O4Jvkab
zCbNQ3W;7<{vqXYheiI=2<!W0-Wu6RUvkZY=-Hm=Pqe0~d_za9rPb!%jKXK@Q@neK8
zZMoFx2ROM~-lK<p|ErO14P}JnzB-_yR%WiN%>yw{*5C}}bLgWjU?g7Rh`OUPwU1~K
z*}4u>4=dsbl^mD%u0gfLc1@~EL`AInVGq0E_r>eI4ynH`Q^e#B=A2jjfQZDdM4^sV
z<o@imRMG(}ZQjmq*N*L&s_o}4@AKZN?*8te8t?S3@B3b=_I~fEn(zEB@B?pOVf^nw
zc;W=F@C#p727mCMm+%ZP@e?mp4*&4(7V#9X@f&aL{(SLjn(-Vj@*|&67XR@m7V;#o
z@+;p?CV%n;mhvnw^D~c3F8}iS74tN&^E;13Hh=T)mGe9=^g|CkKL7LW74$@}^h-}c
z{(kiFne<FA|MgSPryl?GLK^kiVGZIGd}#r_@)eqjI~Gm`7ql%8e4!C%2D-)O(p1k}
zkwJjP^2|{^txkXS(wOzwk(M3mv0(p9(>E5<3>S|456y6ZNeE;NDVzhr%5EQAaS4!O
z#HtcoVs?M`LYVj0G0>fTC%A`kjxcftcL-D<veqz|jlf%G7v`knbdID7het)lqAiyv
zWtsO#nP<U;!Gz7?vkfb4u0nv{?fAj<6|cw{x7<a=(hw?II<jKQw2z=>H=S}RM*7CD
z3T5<{KV6wG7XvK~6ODVUfEvEXdn&XK5Y6sr1sIW0C9oqC^ul#YxsphB4&DGd>r%{j
zc9eqD|IGuaeE`8P%0GXD{vAY^P~k#`4IMs&7*XOxiWMzh#F$azMvfglegvt|*}j9!
zq6{K=(Al(q_YCqoh-{p*Z~mg}llc!{LXz^N;FD5PoIGg+ql^og^y4!CO`Sf4+SI^Q
zs#UFC#hO*?R<2#Wegzv=>{zm8&7MVjHtJfaO5I9K7FVv^od=~M{l{t_E4)aq<w@x7
zkRz6F4IkF%?-?>=g!~aYSWlY0WhD#$L-|i0A$~zMOLK<z;NoQY5c*4|(;2d7gRC7y
zSF|8WfiV%^#+_UDZr;6pza5ECpR=MWQzH9^j`7jWo0Btseb66cWIr7pJU3KaNzuP=
z|1)LFHtl%w<;|Z*pI-fXui?XcPdZnA-G9;wPuYvK9};&+4!ZlNpM$1=ufUKf`-dOL
z2KvXG$x{0VnaiRu4IL>2BIz8^w)3YllI($yAPAWeM?-`%`$rX|(18p!17CzOMj2<M
z@uQJk)C@9}z9GmUWJt>CB&1A>Fr{-|vk)H!NhIo^qiPHZJolhtuSzSg#4<}Qvz&4*
zC@+$4F8cbJ!VyRC%V!Em4&l*}!4UZenn$34^GiDwnr<=3oFOC`WQt<O&nS3=jkU)9
zS?n1?_L**(KlxE*vFL0|aUXN=I;XOO>@oDi5bp#vR8dDI6{6q*T}(739fd4V|7D&$
zM@M9mc_u`D425hl#<oMoQB6y=NXjmy+Ok+<k3}|FD~D|hScaAfGcF<#N{L#Ys@<nr
zXSYp?ritidraNxOCAVC2lcH}T6DNu;+;b@sc35TSrMF&t?=^tgr{3kaU-%Te=ox<p
zCb(dO7eZ%{X(M8Wu}=?1DBdpdrMO~?FGfpWry%CIV~;-uIb@MX)=1(hF-AFMl~dNZ
zDUx4?IcAw>rnzR`Om=T&op<K>*p>mXIcTAWCc0>&ImS7>o|k62Y4d(QI%=t>rn+jY
zziZiPt+(d7E2ysqJ8ZGXCfn$w#p^n4wYUDdY`5QrJ8rqhJ$tRS@5X!Q|F-AmyKle$
z2Hdc^qsqH*!z<o9aK#sAym7?`r}A*gCr37M$1le`bIp&2{3*&m2mMORHz&Px(@!_J
zbEiUQz4fPCMm=`fXQzEs)roaIciqJry>{P!2R?YWZU<m@<B#8}cj1?3zIo>rA|83^
zr_UF5bFIPNnsgQF=bC?_`DfwG@zHjBiJs9GA#^6?$RG9}!to-0w)@Q=ai5Q!pZjZ$
zo_havS6-<mRUC#afhCW~5991XA?OjRB;s=j`u_1Gg)ESM9q|VNA;OP`C4?CyVG+V~
zv=MnYup;uf&O`9AKm7Sk9u<N_(fap48ip=_q>5Ht=mQNTu*7?O|M`bI5K)+XJR%Zv
zW5ytgqnKqVgGcyShBcTmEq*Lx85J^(Kk^}uC@f=DQA`LjqVO6hYU&x!AYePVQ5pIP
z>>1)X<3YCb40I%ee&|?+I40#jM6Hp1A50iY+5ww=u;>|Agbf(^VU1^u10Q8P2tN)<
z5M&HuJMsXdPOPXcOuhz%|A-DcNODMVOvg0|vSP%R0YW&o@MTp*q;$@>41F9jCAH!Z
z99MZOnHX}F3BjbmQ0YaIlren+n_&%=DY+YtDu>CSPdku+l<V+Cn%AJhH2SfGYtSif
z)4@k-Y_bez3`!u5Vqi&@@r;4Eizv6UhCggT2yx`3B$gCN|2-Wuh*QSIH67{^P6n}<
zQWixOgka}B&M{CiBBV0~p_RfA!VGTQgi^iiqB9JVu*FD&i&soyYvLIxW<aJf`LKs;
z{xlsahA5@=^r$0nw2E<@1DeRtM@jJ^kY_NXGCoacCEw@Dj{()9|5)HMOv0*v1WF!*
z7{^B|i4Rzm1|3}t)M=1WPnl*k3Z?v$Ng$TYWtJ6h%@ox$$FzilRC64xctkgmu+2z7
zkZhZo&N%F$Bbvk}CRD`7Gi<OAcNXPG6I_u4?E#H{WXCA@Kv7Ic0?^sy#2(VfV1!~)
zPozu-A@-2MY#Mt(lR)*N;|O6>%K=oULdY5A_(wgK|FO_B-o&r8pj9(M%bIl2f___+
z>4<8I3~QK19^OdKK-pQ4+DgNoL=_o70((>ti6}u)ut`rK(WKcNDLL1PpH8Is6TS|m
zI4U|AS<SlMuAwzlYDLI4+nSfRIs$v%>jyNJP^Y(<BnnYThI9VWS3*q@A&n6%VUg0L
z!#)Weie;>0CkR<>9hR~v$q7F&Ta*!TmQqL!ZD!Cx+HzbKNHIYzU&jH|H_C&t1OCu#
zl`F8@(&`zn@rOx9NDI-R5J&D5<35_i(Hk@OjQMyjbU}vT!EQ>N;>0e4@ZpFiVMd`y
ziedbcTAe9lM?2g}Z`Rm5=Jr~zT<|@JeE;EA|7twqAJ>RPKO(V@b^zvW)0r$XxG0WW
zePc6QOedbXNZ4iM*s!H^FoZRej6z01ACWCmKnI=S4gaIVv6`+!L(IyFk|e8J#Ro<o
z`6Fkna(yl~4pNtq(tO|pNszIrPUcuhgJ35$vH2vZRgsSoH#MrM`LnAd#Aoy+S;-v}
zG<BbBloZ9286GVTN-~w4EQcr_mElu9<)I2bmuApm))<+^tu^<83e5px>ze7iW+bGW
zhtq`Hw1pxM8$=-|I!4B{${A#Tgu({ND9TmEf!+sy_Qn2X6r>M3;FH{h(wP-5!yTn*
z(e}C|$BF7mdPxW|Mn{Y&S!}8igpPW5|JDY8I*F%C?!lA~S>xmA_rEEbnsd~9J4!lv
zgjjfNgE_+nK|aVmmTePC0{AnMl_w<7QSC6=8#1>dgfq5NP70<@%;Uy7&&qu#e2ByA
zU-vrCYlO+bc2MkRpAl-r5o)_yJ=|G``^vVCcCwM?m~_Xxfo^5Vkf}HBf5+F{^FDaO
z7vAmq0({~TXJ*4U-tmtonBNsYd7m*J@|VYa=52R%%6Go<8q<8}ML+r&N#66Puae+N
zzk1fUK3JSbee6?jdDqw8_P3vi>1Drr@~9s7zXyKib<ca^o5lCRM}G1LKm6i1KP<;r
ze)OdeUFJLA`doqj^tHcz;Z^_o|KGn#_PIZP@}tiC;75P;Kwp0Lx4(JkPyhGD?|%B%
zzi;r5zxC(;q9|ssA^Erri0B75%R6~6wu%U>Ji>@(U<gS{25ZQWp>hajC<jTpG2_x8
zJoyuixVwZ%zzd=X)VRA^DK3e)JLF)OGrBQTX*;6&z=jYeu))9lYrg$6kYunTXvx7?
z0ww-}h&mfQ;?f9#3$+ZC2oy|+f{+G$&?v%^z=qg3d@#Urc!n5Kh;!J9)XE66i<m(e
zH7lfuTREm)2`ors2z)TY@SzAP{3`QNhy#SK=~%mbV~B;jni-@);<Ld5Nd`jj!$0&x
z`mly2a0CMipD9>^BkBh#|5$=U$Oj;_54TB}Q*wr6K#A614AE$qeA6g}nT|>-iclK_
zM&p!9S`5=Nz<x@OlMshZ%m<D7ssXE{bsB_4IWQurBF&h^(cq_>Q-wiT2E$5_U5pik
zC=F(KjZQ=gMr*9sz(lC3qtSqbDr_o#;x!vkB2|cjqUc1^U<}7#3`-KD3lgIrQI0VR
zBfQ`sT?9s6<U3J(lpoo<%Gj%j$p=$nG=3NaP>c`&%PDKLG+C_0QQ{}0V2sMZkx=Uu
zUW`SV_(U#r9)0w*3o<1~*#}Xq4A-)TRMem(lBlcNN2F*Cz5_SJ%fpkLiamsnJ_N)+
z6vQRShkQ7MeQ<}E|C~u^n1+0?hDc}!JAj5f=)kI(j#k^Ml0vCPQ4-N0u6<CHE!w9!
zbR_aY#=XjirnD)@BFbvXiKSGOi$soRD?%irpT{_eN7@OQzz1ZM2S$UeP!orJC^gLj
zwXn)SWVES^#IOil%T_yzXq=93sKWUvq|`u0M2Vrhd@6m|Dn=m$UZW5J(+Ni7qO6Q0
z6g10x%CVtf%P7DH8<;vr5JOP2%U>x8XCwqJa-<)@ho^%;ObW<nBP?lPkyc9$Zj%mi
zvZU$osK#VFnQ%?=IkqIKq-sGUAwvmyz=ynY$gcu5_IXPdQ4*rm%!^E?g26+Sj6Id~
z4wh_5LJ-6{|8azU$OmX(#C-@)gpejA2+FEKkfxFbceyMSyTt+9$Hu@Bnc$@{LXa*?
zsjCV{tu#o}c!mNaEN?^#3A;}&(~-+sm#soU1VIi}2uG!=%l9mfA33ZeX;9QUiFTw$
zT}ch8qqe5v5M&4^>8Om(u&&$uE|pM66kHCVI0&M!xJa=m6uK37bPai%Pl51>i(Adn
zILOyD4Vz-8a12Nml}KuPhQeTmP#Xt*BuVJfNA1}vgm^8<3MVm2G3Q94(nyF?l!8wh
zu%U<!^g29d!OoM^&fnn9mi*4P%7-Nwhcq!ylIVv=Tmo+@o9c2;%YqOzjSvBK1hc%)
zdYVIP|Jcv#NU5hX%XA!6M7huc)w$6+FuYjJAZ;vZkT(Yfp~^rG6MZCJ8=+&ABH6%D
zk}wBrn6|uP5#m%jFN!r18PR8>q!T5G6b*{_ago$=7x~l-&a|l5@T(LN2L?h1&@@p{
zBOkIH4Yot7DEQH)y2xDdPS+$%5TX_De553`t|hHPYK#yl)rn9up%xObDjTrQ!Z0g^
zIeR0NQA-It3al~J5hgjWojaH7TvN|$Q{Q+~K#bEh+lMKb1|Hf6Yw(LH;7P!sf+H%M
zUI{9^Xbfbq0i`sqF$$FX90!Tj&&t4u7`l~$SSJRNPdelxYnT;ktyBpMR%;Nr2tlZ$
z|F8*b;1l{3BTyYMLf{4^nvR=7iDyeGmEDt>ji)gxC)E0sD%=dxXe_IWp`o=;2mvS+
z4KLzam77(cG1@l6q7@2(6z2-sL3kBqg-f1|#gb}8lt>tu0<DXK6gV1$ipofqts{Z3
zS;z>H`%H$bsz6{YDV(UOo6^_ixs@ffP1qQt;q+Lf5G&mbq#5;2`>dpK^aoXVPc!rv
ze(hJv``6wGSU-d&gvbZH7?Nq22E4ci)C~~42tcuMpArO4@gmo<M2NtGK%FSdeUPNJ
zyT`g9lAVa%g#k|bz};fn-2^G0GZIAYDa#uxCa?QVIkJWeI-}gh2h#|wvAnVD|J8{%
zA|L7UK<(8Y;kAY+#nd;l-SwrPbm_VT!5;AmtY>K6;DuiCf}<F!3+%Dp3w+*OTHp7@
zo^IWVy5I-$#a<6Y2u7-l<JE~`Qr}~nUl7FKomix`%MeXjq!PSc?YTLxqg4kkNj2@<
z`1{=CJ1C$Vm~xCop-G};s5<-04R$Kr)8MD!1R2gP;lw*(<a3|5G#FQNLz;257L?()
z@ZJ#AqxFnD*xO<KqrD@R;wc6k9e(1t>tQO^;w^p|E572a%VI7T<1rp9C;nnRjAAlY
z<24={FFs>&3u88x<2f!BH-6(Wi(@+0<2|ksJHF%f%40qj<U#fhKmOyg{|aP6R^&xS
z3`0I-WlCg5mgGtH2uFTo8j55}*5plw7c;)(&dX#@7UfZf9#8({$qQvtR%K4M<WruW
zR7MxG?7%!V3?rr*n1G-10f`}o2;`mJh`?ozpkRd{-cYgS0`Z54;ANgrh-z78%?Zk9
zHXBoRWx#{wkhq{Hv<3ns=8f<ke(=GFpk;`-1|}{Q(F#)&GO!8MAbG4|gsCw3VXPnd
zRfc)OFdT>%5+M(IXM(urhTtQPkkK!3S%yG|7ek*CqNJh_2qDplLHIAnJ?6%_s+400
zh>V(6uIA&pW{`NMg&~QU90!t+21Fo|aS#oZ&WDgj>G1gmk{HAx|2c?!c<GsLX@!7>
zMlju!)(?gyiJKl5jk=&m8c>4B-gW+ml*l5&f+pZal*Tk_;{{HCP-@*w2vr!>Nb1&d
zmFg2!&6(b6uAUa3+Uk@@7wIbC09M0ZDJJhtlDbG{uD;zzsun)UqOg_@yuPaBoGjXC
z>tixY<NAr&rR%axV(F6KByKghzQ_jdR<xe$xh_&K8sftWH71<HV3gFx`l(Awjdetw
zoDk8u#tFj?Y3caugn(?rmTIJ-=8cBCj{b;qvxaZjrbB=RJLm^DxrS|Wgolk2+)l*(
zID~P421n4Zf1rjQ`UjSP2I1a^cR&I&31{B^2SNnyY&wKI|Hy~w-iPD<$#IcG2$>Zz
z`i5H(6e4kvX9x-hS*i_8jY=vdU_=Jw(x^(x2k)9PePqUi2!$@9kdz`Qo8UNuSST1a
zDYz6e09#0nVy6*$Z_vcelwdBIn4-(AK+gOLRq(bbNR_MdlWe^zM=>m9FbM}T39w=+
z>7Z`{DyNMkOl}+pc3KA0N{Ex7VJ-^s#u_NL?Qy*V#ui>h8a@XG&y`VB1yCKRr&<Qg
zjS!~dsG}%yM*+jrXb~1hSq&l%%?c=QjU8H@Q2^to#zLsPB+*$Zsnh79l`8Ki>6Mio
zVR?aVP)=iDp>5kvH!5hgBeDkWP7{2vgM)yEIP;GH|A|RD{RcWY2$nd6gP?{+0K$JD
zkc6o1e_#hcXDde-hkg(cDj*3~$Vma=mLQdhlq!jDNY=kPu%;R;3zrSOtyO693D0Uq
z{l1PQQw1=4q}U)!n}DnZOYo6!j)JH-2uD?%C<n*{k(JgAaY!lIgaj3J7do6D3pof8
zFN#KG5N~m^O*IN<mckLT+S)WJE}yonM%L5xj34obQJZmTXtfAgLdZ<&wB%Iso^dM-
zRUkpta-B4!IA9ZbTRfrKx}DMD;FMS_wY1C(J3JjN955a!h^Ur{mB_B8B;I<}RD5-k
ze&!a9p7Y$1ZI8I~0Xzs+Xf>9w2HeI;ey}rY|A@0B5Om?*bVYCOe;~kiKm?sXh(@P$
z9-)Rkg$D4+hch`MJr5sfn1XOFm3;#+0VA*n!cuXVEf{uB>$<fVdSNTV5e6lrTkj4O
z3>W3_lS-Sg%utXb8HuHfiDI89kAq9lFd^lDsw#4Zo_#H8H^^#9EfMFCL73Kp>vjn{
zD)c^-Nb(G3s3Q_Fc*=mK*T@Xe5-?I5Mbpw1BqIbXBA|pR`&jd}qHZcKx2I5D4xFeK
z?^02Me~x`Lx}$R_2%*=*a`@7DDs2f4&C)1K1oBj$N3HS`>+mvppr3kf;<pQV#T)sK
zD0u=zd3-pcYp4^`K=eb1`GfHEZQArD{~!rQCy7Dl`G4^F1wNukm+Aia2P%+hG8vb{
z(#P755I<{?UEA7tvH`7^jnufc>o5mR@kUQ$Re+H851pfb$j1FkXfPo&am)msljcw0
zzbN<)4kTo7pR;}FASFcR51F`s%rr7w_K)A7fBvGhRLC#iK!L~x?F-eCpA?e<8~&3g
z4IRp4CilrJ>2DCeC^V6MQz%d4IhFjP>`Qpg=v0|KgW4E}E=oycS)Hj=Sh3_YLR~ki
zdO8kYR%F(Y3G|nhVL6}YaE>hJOykIfKL6oMc2A=`tR#bqJ7;ZWPkw6s88taBqEwp*
z3qM0hG^E<nrca|zt$H=<)~;W}|BjvTD!$Ur1lntfEZ<0ks&FE9X;!O1qD}XW6lYK6
zOPaEuLyxZZ8G!26uVb%nU_1Bj-oJwnFMd4v^5)N@Pp^JG`}XeN!+)QBK6dH$@0U)d
zfB*j439Wt8&m#%3Lemt8`~!_0Q%v(uK2$j3NF@Czkq|V895Mw$ROInbgV!u^$bj!4
z_|GAw^@Btt|2SgDAuBp^$Px{<gTy%0V7MZFJH}Q|S|*9(%pf-*bkmT|x#W~V2tDMI
zQAS;56EcsXGbCYCA_LM`C6T6?JyA?45k*+ZGvy!!nbnazAT7iXmMEDt<YR{^G}4q=
zF$2v%RZ$jH6yvyglSf4z|CN+WEtNTCR0+K#<se)NHzk}SL5Wp!ej-E2UJ8LJC_X5e
zRV9(~Scx2#2qh#cUgvZwkTX+8F&Q$9npqaCE19{^IVJI<5ngHyr^-Iepc<4wjZIk+
zK0^*dlRt3s7_GF^QfpAB-qfkeO-8*+<en%AiOi37W;zfu$vno)AcIg;t-G;NM<0Fh
z(Oa**_u`wczWefPp1ktD8*pjXEK{(-1#cSLHCaKUqkZo{6LEtAQ(Upd?xI7}GX<r#
z+r|GZb5^kz14r#SdMXrJz|XV`-L4<Q9COT)z4i=4Bg_18y#Hd?ug^aN9kkFx3(fO<
zIV0VgI}tj3Up`MG|CzMZQ&XI1$f>amGdffLsI$BFK#Ewx)%q7**;J#Qc5CP)Gq!5a
zgsC>gI~%PX(RbsWx88gITz7qP10J~GgA-o3;fEuhxZ;afOLyITLms*0lT&Vh-`6po
zx#pX5-nr+WgC4r*(K&8(<)@>by6W&<Zr$jw!ydcrv(sL??Vy*=^Xj|v-aGHDS9iPc
z!xLY;@y8=SeD44H-n{eA=M6jn$x~mw_19ycz4rJmFE8}pgCG9A(r;hB`RAjbzWSVZ
zKd<=j!yi9+<gZ`9{rBUazy72HFTel)$B%yd8z2D-Xuty^uYL0YAOjodJOLswf)bn{
z1uG~x1!l*A{~FvN>L6&r4}vg+A{-%fFxWE=qA-Pe^B@UZ=)xDm5P>GVjtXmNL!hxR
zhC19K4|`a>8CvItLLB1wfak*_A~A_d932qtM#LvVQ9U_i+%onPHr2EvYB7{YUlf84
zx2eTY3K<Ufo--MnIiriLK?lxc!;{qTqh-v{qTJ#*IIyV(GpymqGmyj&YdEJFOGJz{
z!1xcF?XQUdh$15!Ii4vlP8#Bv<TCJK$+MY;8jBj?m$dkdO`3#`YH5-}YJ-oKx#k&a
z{D&&ss3)_~#Wl>BjCA}lnRB!e9bZX^JPc_Xd!TZUnURh>b_uwbrN$W(>j)bU8HM5y
z0&bIG{~O#OLQ5n%BN=cL<*X9fKSzQyoRCx;f67_5d|bm3NT7)(|3QrgQDF(znAim4
zhN~e(Wh~2>BcmoGlz-U68tM|%A^o9>D5zvCnHfo}2Er?8G=?k+QH3*}nUIPa#UIN+
z#-BohP+#ri8T-J;MmuVdL1c{~$ynDu>=??FMZqY{$Vx_;;+80Mlo<#e2$(whMR_~}
zCRrH?N{hwOghl~c17YbHV~UPrm4uB94JI;zsuE;L)LInbC`E!gOpmH$Io?8tI5>Ki
zbMaJDekz$xRdNoFmaH_h!VE%h!m@vU5uhp=&Qg%`RUZyVj0}0^T)Fy>%t(fzVe@K2
z|GpGWnlvV^u~TF?E8EC%Ca#?PDVsHrFpX<WVIS|LMu!~HhzFHOf-KR8Szcm|GJRuN
z;s`2|xD^E;sS6*^Fv_gjGAP~J#2Ocg%w+K4h>^5R71F?mD#o!Kd^p1zFA>LB_93o|
zfK*Ln84X^rtB~Bbg|&y;i#-UT+i^GpP+=)AK6-)|jwAyg57`pij#4G)62i3?+2mmI
zVGm^JHYP5q<THLW7XKQB79j1eT}p${i$IhtW%7t{kx`De;G-G&*a~#pMbe8{<1gYM
zRY)JTTZ0hTyeEDJKE`5_N|NL+x>c%^64I8k7SdRZDr;G2lAF2=a!Fn^uaE{(|KV|1
zn3ZK+?zjl-h^vfP72<HyY_T#s%33zdM8quOG}|AASVKq9xDgVTkPwdXBefBn%1FLZ
z-iv<YsSH8VOp!qgap0s$dNj&M;)E_K=<y%*kOs|+E95cWY#`{8NLnlcoKJ0pnH&=d
za7M!rTAJk`1X0L6Vp<ZRY|RnRn8q84wUHqwM5Z3$)gX$Qs!iI%C^W0crgU4b*?a{V
z`WVtap48Z7kZKSrv9dj+;ObMu?N9ow%OKDNt=%ejD>qXnX}XD#h1l9Lo1)npOY^K>
z2U^DoxyV&vBGgkW@mC5-W0#UGmM7o#CRZ!vMx|ire>h{r6lw02zp3Sa|JRVqhx4+2
zI4kBGWe6ctNC=52$PE3Q>n+ZRGe!7m<7G&r9_7-rulxM)Ns1%T>L7G+(KNDd66++^
zxXnZo;^?eEI!zv7lSqbR>BEc!DTGL}OyK4X%m5fnE$xY^J@$`5rP{tqY4vUKy-9h<
znwC}$3QF7Jm5bt~zyit4a{O^gS_j40pt9~V?t&2Al0{q~Uw1O@Lg>sK<Tlj~392al
zjG$U~+mq?`Ww@fPo1pBUWt$a0Ea|4Y_%enkR!e$?gJQUi<0Yf!<ugi_8*4nn-ryQB
zE%_}wECW3B92B_W2p(UB)aV-RSb}K3k&n<iA`c)^^8o`rlBT>i{|d1+v631~7Jt~F
zK^#9U)%TGb;2LDPF*YwV3c`%8p?n+<hj7bjeJ=0Hyw3}Hcu?U4Uc#sXTI&dz+&8X~
zQp?)Bc(Jsq4Yibi*kBn!g>|!XlaHW!ktrvUNk`?eUWq;gh&fn%;l*2+g(~FUIIs+J
zMFx?zO8`dOc438(1c|St3R7g$Qa~40Oka%cT~9Pa*klH=%$klp97kwGHeCeVDUrH}
zLo8jOe6@s>H3pM39Z4(;c@bcKAyh?88Sf>Y=YXE*5g`MSUg4M?XHCN+90EeP143Mb
zBJ@KwL_<5!o&g1v7v+PSXj5Nojr=7{+Z<9>paU(PQL0VT|G8vEpwJTBWDP%@o{gnS
z<W0#lgdCSN1D;gX8H$uk*^ECFnAN2U+=wBNlm^_SMHvFrWcY)gU<N`UB4TvaKme4p
zSVbU$QZp2X8Zw@^T+<<?MP`Vhodi=|S;ZuBVISI4B+A6O*x^=G5klO?xoAwvaH1P#
zMkKnQK-eL$^hF-#6{CE{lq7?5pi5f(QxXwkGAvfsA;!5}jXGpTqAZp+2?QTWL%szC
zC-z(G6yY}l&=C^OK9FNMmZMq#NNPv}B7j!Y1X<#sMKxg!8Ci_Dz)cWVi)2O1$xKHZ
zNek53hta)bYYdlbjD-BrqwNeKI5K4Th~w;3gCktS|3GHWZe3AnWDLvzVjRK@CP_=e
z_ya|T4nAC@YVc7p63;?5<Vrq}5sBnW!emU!q;#kxOWNe_JmgI3<WBPB5!K{P0_ExC
zWKR-hQ5vNM{bW!oW#kOyQ99*QLZ$sA<x)~*^tfbHVr5op<^4=$ReEL7T;*1Z<yev>
z^>pP|qGi7{Wm&RiTe>CUoMl?dCBCfXTiWGa;w93=<y`V*eAH!L0%l+ernKy3Um7NR
z{N-RO=3+7?YZT^TLgslSW@A!jWiIApMrLM;$7EV&XL{yaVy0$_W_NJrXPV||W@TuO
z=4h5?(g>F&ePU^d5{iIPKUj$Cxug0JVr&LZ|G2$ILZ-&Ig``?o25WdEYLbv%h+Fxn
z=4xtYYa)&5AxVm`Ml0mzKd{0k<---C&;DJ7KdMb(#KzRQ1~MgtIq;@w{1tMN5Y1>G
zbNZWe%I716<>n-zLO=r&L_>mL$cIdUBOt=-X-GRDL_g#~J}ki$<U=8Cr~QcMO7O<H
zG#Hi)!e*32v9;n&(8NIf1heFdsKgYyMCeU~T&EbtMVJY&pi7ZRN~D+-qre?Uz)Hv^
zL$J{jKG;Bo28yPTi$lZ|iarW^o=@e8OP$EcMzPB_s$rtA3yxMOh_;M`%A%Yw$&dsS
z6UFCzYN>ZXXU^PbLiB@~y+eom1MFo5|2suRI`#t-{6i}sgfx^xgVs;1l?G>Ag>?zU
zr}WApwac%Z(m%a~^i4+Nt)E7y!&QMqR^&!sZG@@ihFWArF)am?M8-8vU7)22NOT>a
zjm*n1Ltj({ogN+Wb=zzTY4teE)V<lBe#xbLL|62cdlCk;M5?`gMMD6pNljLkZfUP}
zsmy%oKZNN&yu%Vi%!!P{Avi*Vw3C{$shj=-oXY9?e4APzlVf}aZ{^(>6^j@(m#N_r
zz6}L#<S8WhLo*QL`{CQL43&UwBr*URaO_IBzQkT&Do1?AGU!n=DTJp=s7fFrP1zVN
zo+@*~iVoJ;OVlf3I0B&JgnNQS|G2%Yy>ZO0cq@3~4zKpAmi}tY1S@rp>1k-lJN-jC
zx<iMwLR3gAcb-pNXoWY>OuatFp0>qTVT3>Eo6AWbLWJvW$Qdvp1|-NC)TwJnd@4W*
z7-tX#qmtFjEUZh6UE^t#9))Yamc&e%#y@37q^@VdQjZ=zEuDgG6fEqTB;&(QQ^XFF
z(%LFR<ZMM??B_J+#?EEO!c4H1DU3u2f?S9+*ug%m-Z<m~5=g@#%)vjf!y)X0v<`^<
zGzOBI%0}4)O3iFmHC9z&gt(v;xXR+V0#vy!3*6*aOlTL}2-ts#F4Kmbu)SzVloY-W
zm>!V|q>#!uG)Cnq2j-SV|0P9%G<mJ|Xs!()?AV&iJ)W)cJ*nC%1nQPcxIBjDcCF~l
zE#0Q2-F{3Jd6^dNMLulG(<sDV>;p}JZvo*$)F8=0APJ+&rdrr0wSZCLiIS<dM%1(~
ziu`W*$ggSSuWD>cj+vUUDx}6z?`m2vdnTm1-ERU{43<Ri=Lzrti)H~U@B~wE!0hkq
zOfLjir36=S2YawLd7}o;CkKCU37atbWUvS;B?+H!3%l?SJ+KNNCJVoC4cqYTq_7O%
zBn{ti5Bsq6#;^|aB@h2_5gRe%<ggI0BoQBR6Fcz*1+fxWZ+$*-6<cxbB(W5OBNJb7
z7khEVWU&?(As2sf{~4Qcw1lx3iyj%DaT~j_Y^1Ro0~{N_aUI(+YQ(V|YZ)E$h&A}J
za7D`nOArjc2F}_CA~~iYqu%E9l63F`pyY)}1x0$^@wg389_z7X@$rsa)0IX?;}*~`
zB_nEF+jOV~hDrx{VhtfEvT)!d>AZ4lbWO^{?HWNsVwgnRummM{@j%T<eq3@CXL3+(
zGJXW>L?%Ro<ijIO%r#s?fF{H<Uqj<QbAet%B-C>Dbd!$Z15j}ZA3@$B^`ccF$KCD4
z-DRE^?S-;DgBji(s(7=N-5r-;9+&*rGH8s-*b<A?i8&`nF9t<BC&X;^k&W458y2)U
zcWX?Mp+JX`|3m8*BH5up2h|^%v)J$hL7#I$TM{Ct%-xx*?f&RZ@bVS^FGkv7H@$Po
zHWqK(UDW6nE%A|X!Q9<pu`mzw4pVXF1gkVe1v?;uJ1oI9P{E2U!6Q%u61dY)BLRXq
z!cZ^4H`E9;v@-Q<^FRGYP(>a>>68L$)1Nd(A)Sl53=2vn)ps3>M8ry#T!l8_#Fr%7
zuzWS3#FTTm35<R97S{C`$zK$(mRUR3qd-MdBm-HWggk_wLAbT9)Tn@6MM4R7yZnXE
zxrsE~1pE;KH(<q<JYEVSMP2dMSL2&Ssc29^!kRp`J`6@ldht!flv<31>Ehd0Z>yBq
z<1j5n|5=%95B?rra1`xea!xx^G2h3>c8G>3$Te64f;6szE&)vlNSQKRBUmB+T(wPT
z#WL`Tkm18!OvZ`E$}^|}b3xXm$kc|lT~IZ}oH?yUSQ%<7RYzO}FG&MGbd9K5(r}oA
zvfRZjgGy7B_f`0Dj4@->B$>xNYC?EkJ|yFK`_wlCTH#gRx;iZG!Ob@`9yqUVRy@OL
zgG7>@QXS7yhppQ%jvM5$%$;6W!dQ|sXr9|Pcs8>SP7C)E?=<7!?GlWGnL&di`0+$G
zE)^i?UJMADQ8&w;&vg@@UU9~f9MxlhH#+Z{qCyKZ<ltMOGo*#mIi%`(2Q3`hMoXcD
z|4_Kpuhq$L%xg?#$-M<#q!PkoUvyA4T}bo=UkRAYrV5ud#Ct<{MuEvPw1k>O#qA-K
zId{ZL%ri@*iiaCSUxfG_hufhq1T6@gj`l8_1l8%PImK$li0QeEZ%%O6coY%0ec&xS
z%t*;1NIoD$kmrMhBnX0NNIytOb>B~uT!e3goL&4_Qy|$~NSQ%wVY2|DK}^Q}NyV=K
zWOwgrD6x%4I0XXw1eh}(ay*JZG(?#TM?PG{MP$XUn1id_@}%X%^I=zV0HR0WL(YxS
zvAc@*0W3tdO=IW-pXc0<kqU(mx~>JgNJ)CO>^h@^xF@&v8MVu9dBhC9VCDix{~xJu
zJOJ#QlLZ6D8n>%52GjVcZ}E*U4&IjOUgYO<|HFR%0~KTi6(E5l3`jpr0TPS|lA8}h
zkv6P=3rsvIOgu(KeYQn0)UDCVUg#7~G&?_Wlvyzpl>F79U&U){yPsGTn(sQ8K!QsR
zhfbyQm%KLCcg<K7$yoynOk5OB`9`Ehg<<2ozB}I1tHi(apVZ^ShxbL(oAJ_17Do{R
zpV>S@r~^uj1!;R!xwr`-Xk$g`>aK>c#&0mkD-Osp{v-`#10PQr>K4aTvh`qlN%viT
zS9RxzI^qveslVlMQjfaKa^)w_C=(=!rewx@{u(R3>BD~P??~sjz72uC|Lo)b5z~I{
ztI+M|{_pqj?(;qh`9AO)zY7ch@NZD@AAj?IaPlj^12MnzQ~v}*fAkyS>sSBw!~XSS
z|Nl%s_lrM!djI#!Pxz02`hRBmn?L-Zzxu;JWwL+!i_iPV|NRf<{L?@9*gyXJKS2Bw
zIFMjLg9i~NRJf2~Lx&F`MwA%w832nHF=n)AfMZ9GA3=r`Ig(^alP6K8RJoF6OP4QU
z#)PSnX2yv(aXOT?j3>{WKY<1nI+SQpqeqb@Rl1aEQ>Ra%MwL2MV#S&@WoFg7m1|e8
zU%`ewdG#t)qt*!SLp#yYzK7BNIT~k{ZbW=ZnTe~rmv3Lce*p)^|M$$A+o1N=23Bm9
zY(}w<AxD-xneybuG!;*@W^I`?fodl%$@g%|Kf{^*COe4ibk({29?F}$kTq)Cw{hpz
z4bdJleCP=ML^ti9J<q%AGQPaAa&za;p+|?j+$Qpbi3egQ*l)@bX~eB9nKD=OKWIzJ
z!~Ms~?fLWO+b@9z?H{%Chum80K9`y!J8IDz&ANz?`NtV#1|ei0XKWZ`AAS%#j+sG{
zQSBLJ1~G6D2knVs5OJ6p?U@bdLI%U&1o9_}C_Ec+5D_=b2b~7@kq1G&2Fy{%9eErI
zv48wgEyXC1iDH=u|A8>Uf9^r%Mt)Wl$DToooXf^RuybZZ|F_WbaGAMWoUO-&lv_@^
zGto>_%{2|64x=#z+DuNgv>RxOZ~B2Il70@!C!Z<u5sjKW{&5G9e;yHtihZa#G`xTC
zlO~dV+9^#>^AK?d2|w}ElhQo=JQU7^3S`DJQ&lWc9DR_H#u?S*iNZi>_VGtAbUZ_5
zE@sBDCz*Zlaj?~Y@*3zF&(Qf*9@T!u#~Och{RbIw_^ET$Yq8CCH)oCmG753<i2@&d
zSetfMdkD!#o(xSbPQh5E6~`a!ZY2cDe8`ou*(h4m_Mb8@V^iRP2`)G$H!m8sPHX#F
zLLhu1ftVoC<PxZ~ME{{8A1Y>Z7{9g@HE%R`@*r6t|7i9>xjy;c^LL<9N0TQwe*aO$
z$w7{stw3iCLkB@e4BT~`bJm)+wjTvT=Nn>)L`Di}qbS-fW{m9D<*TvI`YCiA97sih
z3Y2!Au>D!ao@Ib!joacp`+CA(33>)WDewXMpL4{K2S-)JbQ$2r3=UlI!39UyB8BlC
z_bzMyS;DP$B925LcN)*fk){7B?GTGMUb<mO_o*0C`2K;XWJ2Rg*{wnS6!2=8i&Kqe
z-^R_SU4Js<`R-%}1KJs(&pA%lqZ3n_Sl-8d_?h64DM$GXwT@o;>4lQHwXdZGdu+GP
zK3n^>jq~<l8x50ZnZf8rF)w-Sy=72aecSdMLVyGf?vNnGDelnVuEh%!DehXJKyi0>
zhvLPp&_bcO7q{XL#S2ujxvuMe?&p5@`|f#W&;Gj4S(D6~e95deIsPlh@A#i*{I=-v
zr(rsyKgj#Tw-YV^B9rpZn8;~PT81%tS_TCt%&&#$0NJncj7Hm9XkxIkbS_+00Q6aQ
zFgn2rLgecWDg?b0^^n2~$9@cMUj@-Tu?rWlhSKTJ98B@(zJj&oT0rl>Vc&`R*@&b1
z$kplB5%XyYxEF~~QKO>f<RUtIK!mTV#}*;6IUXhZHu>avc1<HwE3w=5i*-UuoFDiS
z#FEMs$2{1bLpm}bVnvgx`hn19^iS2Z3GtrI^m=FSxI$*5gzno1_+dX10#qz0oZu7B
zE+rL$7~CjQe-84OU&NJ-?<J&5mm(fEg{3;bc*Zsxww}3>!s5yeU46q%_AGJSeoLn!
zk%$OZdETdf9bvSgKKjvyB}%%>ZW;EK^C93XMP}TTO#SNgTyP_aX7mijJJ1Zzb}HUm
zFqosIIsDiw3a?uzCc>Ru#ca!_T{J!=cb89*W-}FAswO2*iYJmj-32j*_9a*ws>AI*
zQ)XEKbiBLXe})pxv8q{VKbu0YJC>ypmQ0wZ>M_V)PfqmAguYOS96O#hTQkmSR-o5o
zOVYMcBPre^0B83=Q8QaBtuD1J2&Ga^f#P`<?pP^D%b}`k_Vc_mKBukRL-iocyzI-=
z3R(Um&7`CE86r<AR6UP8urstP)zYeTT8>Q8qm$k_rB!>!9_jQ_=r+Ws)x5g2Me0pw
z&!=HOZld=*ezCbcQ)41i>)FDlxJaSbeU|p#KW*J8%U!P*Q{a67|A`rXj{Yiu1Q6m`
zV~ka;KdhGCn5KhiL7QXHEH~encXMJb83P@&OK(=&b+FOQF`T3DYA*9URZ;(7xHOU8
zs^@rW@5(l_xMxM~-nl1TzmyPZ*pjB$Xy}SXr=p9F*5Pl<DV_gfrJq%>q;34vbF|~d
zs?B~I_U2&G<z~7rpLx|8sJP~Yo5Fg`U7=tHBN{tcwA$bTKE(B1i>njr!HA=;ylqGn
zD$^qA{lt4lwJPvR6hB~$(T}Z#(+h4Sf4Xj^hI*JTc?o~gCS<Nvk3S?dfSgw34)TTt
zY`yvhsG@j#fJzIbz~S8xNZhHc;2(bTox{L~^!^Ei)+vfOKKVx$42wZ`)Pb=cyp=$L
zI?VB>a5tG2eLM&-ID{&BiI^W%`X&@&*diGYoklNfCcmrrs6^oBPBo$%KgtzF7+Lw*
z`y)TS-mv?Vp~QyU4e)n^0K(Ss&(N)WMum8x=R*BL6%Bl>LcsiOFdknyOxT8MOFa9C
zsEk^7T5Hn*+TBRX?hzL6ia1u7DZCg}^0zRSWG1iT;*W44v7@Jc+|#&WSlK{@#<omK
z-aD=JEG0CS-ao|tBAWnPITib-c>?**%qiZ&GKaaTsjiwJlCa2~PUKTOnX&$2&MfC6
zyt}Fcs}bCZ$n=Y1(pw6{(1WxjUw<*OH>!($Tb}QdY`(eB#ZLY%FDTG#BDcj}<;8Yi
zeFlWk{PEkSt`KeJANsi#P>4$rCqrHMr{Cmlx*g|%OX%2Hc)I(TC7+R~=knPlj1|si
z+?)KA2eYZ`{i&YejA?OucR5A&73-*exlRLqX}0d%!S<kHxJ3P;L%>u-l;Lc9;>a!D
z)yHVqG#yEFZ})Te7Qr`D%O<X4<>mpxAwugvvped2NIgowkNb$K5!L5&i2uwv1EP9c
zfz;0bQ17_cFnAzI)^Rn({R9&3>JSz9kk<;F?pOHK2(t*zL_*}LQ;8Qru-cylHqB9V
z7bIy|azkv!iXeHpob$7eFt(s}UIpe~3ql@(P^&~5M=cMNDdqQVY#;9>t0XZPK%biy
z@j$xvAeWgbv6_uR@nb=qKZ!l%;*D82jwTo{S6-Ddm`aZ-dNfh4d%V5*k=Jsz+xAm$
z5OlC(<;0l*#B(KBOF+5|PKWJ(4W}IT{$-@~wVxvH{S)<_fgpb)TPV+W&R2Wg<^5?V
za@ka+`nj<KcPLJYL5s1R`_U!#9+r35AbGhytIU0&Eo=qv2&>eI9~v@_4~!0vJ-RSe
zu1r9qQ#DK33Gd>WhwGUgMl3ml2V-Ujc>5J}J!%Bb!goI-zi^a)@$0f|---V<_8l_4
z^BAYjCbD+L+<FVOofbNweW(Z_sC`S~C{|N+{;&_lg=>;LRXgdy=2ha)-9#pveJbzY
zWB+c&ldw?1C=_Vnkh^1`A2L_WxV|H|XmkjCE~9`x%`3#UEU`nbGK80Q`XzTqyP|(o
z+lIi{7HwaO__mj74``SzrzF;|n0UTocV1drL4bq$#-m;?GF18@ia(qg%pVGUzH@mE
z#fw5C9DD@n=cJP|n5fdfZ<(KweTOk)YGr;W(kwajMqSLrZ#jt3%eFZSyr7_$CPOK~
ztcJo@gQlU99i>6j@!S-i^qoY-gJaw+==c=K5l91)o2CfUY`%f!^nxZ0lV;bI_LCIl
z#RV-253J-f#eD<J@-r<O51iNy9uy42xrDy}!pYs}SQ_c@KEvTW^qNw19F6qiJaBF;
zdRaFHp-XzzONMc726;C|@nQzeOGY!TPVHny+r}r3mrq=Im^|H>d>WbjFPVaPn8Vzd
zqZ*mxE}4^fSkl~BvKm?PE?J6rSj*g4D;rsBFIgLS*jn7!IvUx!FWGu|*uS{34>z)p
zU$Rg0aLl=JEH!ehU2<&laPGQs9yW5GUUFXWJiT#ydf)i;_vKR*UM@6uE=Us>&J`Cv
zFE_C}H+d5`^%Xaqmxs}vhoy;!<BErymzN*u&MVx+D}Kc*$;&6}&ZpSKr+USw$;+?f
z&Tr7fZ+yjX#w%dyE@0av;CLnA$}8yUF6h%F=zk>`#48l$E)>-y6n7<*#4DWUE}YdQ
zoOdN$#4A$fE>hVfQhO!Rz$@C~F51x~+I=P3%PaQ9U2M2XZ2U@Wnpb?zU3{rYeC<kn
zlUHKbUE;7w;?!M$aRVq&h!Fq)|GL8PHAUq_0E@Q)d;st|0FTHFpG+J7d;=#Cfr`5!
z!O|?XB=hVyuQb1hbPxi;f{OAeJ!Bp-ip?^lMYsU~6m}0;18pAY211xm&O#eiTbrGs
z2du&;?>P$wH_Q58%Qpd0UwJ54B8gCYfG957@@ahXafNb0*NR2W44j3}qMDTiuQ50a
z*#t}#JGA8mVM@JxD#Ady+GZ7gZPZpe#Sb2;inHMUYgPYifIyGRp|-T3sgxNI<t$M3
zK2_#>kK!hu#^Dv9qFD{+2IIV$kpY1B(5y*Lgy*ZR!FVGMnbY97c}A$i2o2Pvp3}Sl
zXfW|>PrIu<z0vxV%6QxST=WK4rbTBmMMZf|Yg(IeR$GU9PSu!SulEXQ-lEq;#MnBk
z>v*H>*`nXlr154>>n(s0iqOv^){f&hEP1Yw!mk@Q%V0NW;H+cV!7qYeXqZB5_)H4e
zJZC`P@?x4_*o@f7vW1}$*<wUVtoPN^Bre4`C5<7Q*d$EH=&<GG>lD3He%-hH3;~Fj
zVV(xR`OV&>Xrs<+%S*}N=;|CJ%vf{<DO>eqw*Yjy`n)aX;v@o$Fw-bga`PJ_Q7KgI
zH2jZnbL$%m<9U9RR>SY60>y>e81wXj2pw)FTDnajpa&zD7;NHYV~}EIk){hSwxT9s
zSVve}V!s6f%yn*XB3tb=n=s7Nz#8ld<}Daf!OumB-Oo4C{_H|RiScR#92E%-4z=yE
zfVBBA1N>Wh5^epbl2l}YX(k)`BxZQGg_^{Yj%cKO$}M0uRPqykh7nIZh7C^6VjvU%
zINET&_i*9J;Kf3=4Q#a<5-%A1zD2_X0cya2fiHBRLbs=ao=<u0HDis=h#7Kk@Yp}2
zJ8aOBnR=iFd*CDNI<!6gGkBKfwcwk+sk#Qz#ZJ^W1b<N8o^QHfZ*g)W!1H`AZ`*un
z3GFR)RkVw=yGa;&S~dH6y`&*;p<8J2rmEBPzH_g+;{*)WTD@`7^u>#9`)+CT5kSmh
zgq@%>auevSr&#Ibk9Nmpacj<TV<k#w?MRHria-YkI}E44MT6nZYujMl1!M5O!nxB@
z^-{@e!DR^i_y;A}QO}Sn(5<7{lG{7%w_C_lehcw73^GKj-Rrj(n}E{Ss-o#(K4ec<
z7Q(8v1D+wb-imvoDlEVrJ3VW7D>Ai4<Ow~+B8#jh3KB0i%}Wa!e(iIC0r>b@asM`|
zH<Pn$QRSk==sN&l0zl{NL80oQ>(p1g=a1d>=2-BI71j=u-ZG~4!~=Su3LwDog}_vA
z)m_hcoDPmpbMX;;@xsAIEuMJiuw*0&Ub?rU=v^ZBJ$t22lHj%Bny1Bmb0V)#>Lic%
z>0QhyS?WS+l43{N2cBr+tY~>UeH{bEu*Ec2a`t2W=nJwJ_CE6N!kL4Y5yp4v>U279
zePj%DGPCa4*gRwLTNnlSvuM-Oa_+OsF0+h<vW?9(Q^>U%gmc@p)M9)h^rY17@72Hf
z<h5A2WmLChyp&34(MetE$ggx$Iwe+a;WLk0%Kt6QD%hbX-ocjGY?O0dfWOT8l26z6
zn%iks*N3l&@qv|lRz=){2ay_?MkHJ7Q!Jj%a^?OEix`1+oy^pSz}J?PpOu7bOTD0j
z0RZrO5WpJ%0I<VQYyh618esV22{tx19w9LS0RfbpmV%O!oRNd{2^TS^1UWM|Ij1Nb
z4yR-0U}tBiXXj?%66WOQ<K^Y$6A~2@6DQ@7A>)%H=U1Q*QlS#lViJ)TdnU;!XT&V2
z#j0pRr)<ffX3M5-&8}g?r0vG8<I3^EM@B|QPEko&Sy@_5OIb}rO-twb^XIw-MlW8x
zFfuW<u&}VVxA*Yyc=P5ByGbCYX%MGn6qk7jmvuCkZ5+3K5|6_>9)~&}hfV{BB%Rlh
z)(*+O4#`hbJ9#48c~X1y^S>B0uKKpk`S$GlemV6WJ`HwA4h{~Ej*gB@O-_%EN={DB
zO-;_p$w@1yNULs7YiutmDXFfmZfa`!(AMzb!-wFurO2+Ont`d3vE9nC{km@#-QQ08
z`uh66jEs(sPEAaF{rYufWo7a7ZvEod$~|&t^V{XYx1F7x!=25O$GX@%y?HpfM<Q>J
zkiSo_uCDHHF8=)a^LUZ}p9%vRh!q?X8WtWA85JE98yBCDn3SB7nwFlCnU$TBo0nfu
zSX5k6T2}t9qOz*Grnc^VeM4hYb4zPmdq?MouI`VYdU`)Ue!qdiq2ZCyvGIw?sp*-o
zvvczci%ZKZt844uHa54mcXs#o4-SuxPfpLipI=;FUEkdPxVwM&`Rn%|BmfnYN};~6
zHv~+`YBW?|)E5DzSISjrDE<;d#%s4a)KD^*0F#cUQfw?8PGNptWi;GaHk!d@F_Np;
zR6d>~<bJd|-1Kg;01<*ot<+pGU80b}YCO_h`SqPfiBg_YOVwPpev{qWNK5s?d(*yX
zYUS3Nr6!xNRmP*OwJU8d$nB9l<+i%D58hWtYol%NzkLcs#iCJZuixy8BxExgYj4;d
zOr%%NSLtZn9nIvmUmxpe+Mg_xj-gTQY(D&2@x0n(ytCzaq26LNU-d)l=}No%@%s3O
zw(sA1La=Dny4o+chf>&HPIPr#?N5~`7pQf2-W)GB*?*hp{_x}bMqdoA`p2&OtAnrA
zFDE~C|NL>jJzAjt>ErL8cUQ;XCO<s}xB%$P8-XAan~fmwlZuUCY=MJ~5U3pUW+;)a
z&1M*xRmEmFmDj;$1T36+E0Q7IW-E%hykaYwz4c%#hHHR%JC<+WW;;%3uVOo1?Dk+g
z0fEl4lPE)CyOX5wq;dzDtRir@lcFKVvYV={YrC7KZ&kUQZsc{in_(KxvX}WP-F7d_
zro3`5+oAPvFUMtoWk1(r-gZCFd#`do-|zNtzaS8u^`J16#O|Od@=4V}ajd}6K}n(<
z>tSiCuH9i-rd8Epd9K&d;k&|c)}xBjbi1R<it?(Xs+!iLqw4wr*5jJydAsA<_Pwg(
zx~|)!<M%!2Y$x^oB=#o_Lr<zt8pi~VPnxFW*iM^gb?r}E7OkpJTUWh~Pun)a+0NQ`
z((TVW4$7;~I!{`U&pw<Fuzl~kp11$reYaQr{o}9O<L{pU80_agAX10(UNBS5`Dbjw
zlk+~PJo`mIk)Fc^@(Y=D&BXxK>ywK?SOoj!5JQH;<uLQRn#&RPwv)?Iu0i&zF}?+d
zt8t<InyU%1A17Cn2n>$vDH&47>uCk1+Upq=!PD!n8uA=Bv)X!&H*@;dwKwxduTO6l
zOd~jM7hh#K-Y(g^tG!)zXgj@KaT(<JvFfql_+!m`zxK!D5aH7w-vTi>?>2}flF+a_
z_043lLc6%+$W_P)`^YT%xh6r%LVf+jk+kMv<T_AyDQp$4-n(htMKcV_j#8%x%FxUr
zk>fA*MZV+(GG-Xm>We(#)K<9?!-O7PoMJqk)d9iq;gxCOr^=zdau-#4&wi4r^T9mG
z=i~#hZoJr^Mj}tED5b?u@-@_dvh!%aMPnRa!T-YZsaoRg<4n-EZ#lU`Q9j-PnrU_d
z_e3_<ihT|!U*3$p>jb$K`{KsRUNv$>0jth@hAIkvVJAKNdAJ2Z!7c(H)_=-V?eQf`
z4Li}cMw3dM#KrboV}j|&K$MC@=8ma<Uk^&sYyl(YEkejgxWc(&d$GR~Zj$LvHF0S_
z#m>6Rqhx;_b*tkH<TNtno)GLqpRe~N@{>X3YyU9DEgd4l0K!#Ph`H-NbBW4C5RIIF
znlp2?ep;V@$Eq22RQsNQBGjB@v`zM@Z*aIHXq)~?{b%%YE^?I$8p4bHKEvD|Uk0LW
z!c|yLzN<RY^LrDB$=xQ3ME^Tln0FDKp+@KSbZ|@r-wwOOVkBXgi)Ts~8k?$M6oD8@
zn)r3$_bO5`#ng?Is;m5obPaJ4{o(}4W)QAxh7t!sFvNna>}EAFOkB+zsKXUPIWZW{
zqYnp$CYBI)K|<I=H}ll|=)^Y3(N1-MNih|l@mo4NxnK3hW*6?#8TP32u3q4Cv;!#z
zmJqzLl3Bs}y~Ia8U^20@q{SU;)DMS|1h0CrZM7{JNi~DHrz8_&4qlQcD_{s>Utq3_
zfp~S~BQm9mldKMwu$I7(xMh^$L>s`}D^suzW-*FEg$3Zy6zz@F7U+U#^Q@6;821TR
zf)<h(uEZ2HDV@84sf1%j9vKY@dICg8uGrC=2CCq9ZsrE-Z<66^ege_)*JL`d(ia|f
znK~unb9kF6;Pi&dDe+_1F@&P~JZK*$=~$2dq-R(a5>-0aX~bmM!E(x)ThMI4$Ei29
zK27W(UFJ<LK{HkR&Y~<GDbT{v6>4Dl@M%%R98HtDmXd6LP@2rMsnT)78XteIm(w&Z
zHW1}m92=O-rM1b-g%xhpW@y{_-g?>3LH!0pqEN*A-A7~Ch15{^p!kn>ai*m&{Hr>d
zx}bSjHi#F`kBt>PJRf`PY@bls$uO{{Wv692!Vxy&1Np>{>FuY~rc*1$(SkL*#<ocC
zv1sJh!(2~@{%0h>2+S6qSOn***lz@kSxYon>s8Q1PzUv(mFj!W`S+_>l9|knXJ!)R
zIZ;Qvi6n5D$JUGtdcG_4((&^TX#GjQKic$s$`f6vGN71Riquq=?sFW#*dEZJw}sZ+
zgV{Fw#ESI%Gi9I9U`YMvctSHXB}_tmP~AFNY0f4f9gaDf6Nue|jSxtM5xM5GO>!D^
zGqFkK6p5PspbHw)5NQvZr|hH0;6{OUZcawlTb45AncdPXK@|f`?a?l_R+eU=95%<5
z1`d`B=E;LBXfS!g-US<p2hW`Nk}__`NP(E^@w(Rh5-hVl_Vdo-aLc|bZlvZB*Cl(^
zgp*7zVPqc}FR;2w)P^6G>{O;-eJWz8){&Sy=ze+gYZ&<E$(bn1InEn=9PiB!Oe;q(
zCnu(&HkiV&E`V|I_g!lr-AbdBl?0J<@2g5K;pxX<7`hSRkoMgKnaXnywyiMCr$IN3
zU6B=4o{66WWNMilM|_`3b<a25!DefteinOqCY_(R)5A@9vNspwB5B?6gLGdwi|)je
z`Lts>Ip>d%2L5b?4U(eB`00J_^E$YkNEE)3>CeKQscoevsuigWG4iB+3F4uxlN7X}
ztOsa!!1VK@ev+JT#sKUWY0c)r&7Nm5Q;!Yu);0=4@}{4VhQ7xLGD1q__SAb!Il=j8
zyyd!FzGn#q3DkBsWyo{kKg|^`a$JqndcXLcKdyh2JI3)E_|ezyC18bn^L8LbsxbRw
z9YeN!gpmZ$4>_>Yh|m2{)b`_Z99Gl9scOV5)7C(JoeZ|q@L?__9bd1leV)8%yzH(2
zdK`c@59{t;ZdT-``cuFEw%Fdni>yL`!$-Ob2?)-f$!*e9!22k*JEeh*w^ob4fz6QD
za(o2e6Q_V3mKdV%c>QF3+H^g!>Vfes;GH(`Q*FPLDFv2LxfFzJ6>31q<20!OPcJTX
zYwLh2X-RPm1lAMCa;ST}2I700=s*UTNa*b+YnLBaZf(-m;XO$25ow5PcwnNbCJKY=
zGkWd06u*#jHxFoVu)Ipll!BDEJ)i<i(eGL=3t`CsZ(2i?(_c9A`xSCYYG5Ef5JOai
zAiVRznwj9|%poAKpVREyP^k6V>o@ZZ5M@&*%MB0F5b4Ap?u(?FIFVp(fTYl!JLV!d
zqz&ND1lcGF;wyhe*$zBml(B@O8<?U=?m@=C>OOxJ;$-@!;r4Y36eUIooFxy5Y6n!d
z%N5^51fWIy(Gx!!d^7n4eIA34@tsJacj$O&C~>*D9r$f#n@tK-hp{w7ViEj3ER1r|
zYn)8Kw?)LD-kDF{<Q<{)`=*%49=*CDa9O57ITK`H2pK*QCOvr*6&I*N79L5DroXp`
zjz-2uaUBr{is`Vyh{lMVD|!2>HK9UCYf&I#B+_^6F0$AvF$|zP-7XrT;OxJrda-RC
zr-4{&2Y*{k5Y>-8t%$y60&9^V95!M?165{+z+nqu{2l{``go~rGkt5YV0mzOq2yYG
zv~6S(*L6bAJit;2G8zds7%~JKfN{=2Ga-7g%7~Z^IZM;W4UoxG`@V55NpfXLJ*}a<
zHqHSc8K5wjL?7}vMLrB6=cMsC`zJJ9BOy-1S4=LHlrJ&#RT>5pnDpKl1W6qq^7V-V
zv%yf+P0<YM)lqiPe;qi^hrA|XFpu6a6O2NFwGASYxZ=a=qXDz2SO_`IcK!6k=t!3Y
ztHQWPccH&rJ|2-0)}v<(aZ7_`g%qlWfiw1X6EpT>rCA_cg^5h)&y;n+QTN%wi7~?p
zS_$MCTkT1y2F~GgapP8yxSg<Y7X!L1zBy7+En6^|4MyLMlocetdMSQ#Q0H~jt2dQl
z+Ykubly2cL7-$79v%;vf6`%I;>&r@U8-6}$i($u)(smu{scVqh<2j+7Ei1&IzfjN#
zh75sBt?$4(2Dy5+DWu+E-Ud0oibbh~s^+$t^owA`Yy>Q$D4(}r%_og2EA2+UIN3&=
zNG>|8Jg4mnT*8;5+T^22s@HLk1cwL}VnJQ8F|!hTvd1mOm4@>P3@uPFqonUa?88=b
zUlWxL@<J0|L>gq6GZl*nXXr15^XY3MEkcKOit0N`YYp<12o<mZp3;V3NGD+NHrY!t
zH>o2jVK7oQJAH0DM~YmMdNvcXRLW_GQD31ykNR3f$TG<#k3*<f->}%w&?6Gy>A~fv
zfl-XkR1yg-(Mc)!5aM<x4AH<qokEA;P`qO>v{#FEX@~+-@WpIIB|c?HQB{a-!YH#7
zsi>leEc8^4@-4evN*ZiQ3JHu0^#KnNRVKPvn2UhfQnQt>-byJ!;zIL_k4h2%rNJ6N
zWJ*nHny;o#QZ0pK(GfCn>GoZa5?Fr!UFeP7V=KcCh6OudKME01lGh1NJypS`A-z6e
z9xfTV1HMIOYjsj7Q;}GghmxKnxp$p_7Lxo!rSfE#mkU`noL-qatwo7Yl<=~^S27rk
z!YHU<_qOtiZo6U{NKNQe{+hL9Rw)>NDxV({LY-Q#y#0J)2^?M~@;e$_Vpq?=3NE&c
z3HENneq(QmuvXS+BIyWnM0-WYBA=U99#Nmq)K<`Mm}SzgxT9lneOMUdTc8}B^)bSN
zHB*B^wlb7UY4-<TF@Jr$snvZ|3tbMF6HCkhipB;-eb{k+#^Tb?r>SeImHVSMe9GA?
z9ZfGVN(Yd+H;>dK#;WM{P?lqAw&aRqtOx0uI%&?;8HqN=`4-3cg2~^2X*)z@JY@D;
z^1=fvb-y|>heE=`I;)1Oqq$6`Z8YAzsW$l18eN|g(UutS>U}h<B^KsWtDNe-V({If
z>`Wx<qi^z#m$DyaoI_$$#9qBJq0ZPcxSI(Q2TGrFkGb>gf)mNDeE{R1H_Z1H#BnJN
z-+^L|b=Q}{JbDn8<tCHzmrk;lN2qP7&~%3b<1)F*8)ZYks84hZP4{~Rx>vwi)UMcb
z#f@t4RBCsyO*aRiea8|FL)Nr2$L#K>hTp7~c?ZyxMAxGS-K80#m6{(H7~rwt!E^rc
zj9lxY6dCyRw)IlDE-cW{NeL`Ii0*9&9<fA3PpR$i=Iiu)j?;MNSH;KF0}5lY(DVay
zoP(ZbYSq8dmNP)NGDSCoqV+8RXYIlG095rJkOCzpBNWv-cc31MqRv&yRH)9z-=Xee
zSDFGYL#>WC9VqMo<%WPW=^?(Y3S9LdYj#wPQ81$^nhvxelyEp%Y&g|uINfhJGj}+<
zYdCjxIRDphA=OB+*hs0-NV(rgMeayd*GSFkNZqfIdaBVzvC(Fu(N@3F_T16VuF<a5
z(T~4Id#J`fi;eXgjScvX4dsrFbd8Ozj!pa;o1z+@5gVU18lU$YU(6j}?iycR9bf;2
z9N(at*b<xAF`C%(n>fgwIO>`>S)DlhHE~Wgc_}t|Z8Ul7H+h#k`Or1_YjyI^uSo#)
z6i|E$WIToLKLyU4!t9>HUYo-GJq4wnCJ>({GM*;!pC-$jrs$rgTAQZ%Jq@Ftp%b5B
zFrInhKf|0i!`eN=zBa@8dxnepE06eBKI5+f{$GXizKV2z6<hl%@%t-+dR9t&R>pW%
z&VN=RZ&s;$R%LBg?f0w(^_-UYoVM|tuK%2V-kf3goYC5x$?rK+>UneV`B%pCR{rxg
zdGmJN^A2nCPQT|}s2AMC7d(s?y!;ou^A>!&7yQ;10)8(9QZELJFNPW~hWjr@<{=lO
zyBA~E7UO>}CQ>gYi!Y@bFQxl0W#%nqcQ56xJsN;Zh1AQ%;>)GR%jN#d6?w~5-ODv=
z%XPn(>#0{7#aEh*S6cm7+VfUAyH~o_RzCh->7iczEWX-rygJ~&I+V9M(!DyiwmR{9
zb&7gzMtp77cx~Q)Z82|cxqEGOZEgMc+6MLdmiYRP@%o<s`a$0MQTO`E+WOh=^>gZP
zm*U^9jlbRcf4j^3_R#(9*V?x~zrO)!Hh>ZvAd?OBfDLf|2Ij{N?DY-YKO0b*O#+Ec
zB9qOZ;{ft06nX@zU?M6_04g6BkU9|sdkT}RZj<V4Qy8#Cr?%BJ4xmB+StXF$e05t4
zJt&M$m|UFO{OjAoF5AKr%Xm<rgvkys4G@nDQ`%`qC4Q%B902Rt(K_3NL3eTiyU#gy
zbpn>D0#OYlc7=LS@}_oQa_*X$EX$be8PEW868G#lcO7V!aeKC%C3YD$02y5Sp8314
z|19B}qQ3dFD-gJ!dcGf&zZ<f?6drI8sdkW5e-O*L8})I?gXU064Va>FnC`TbS-0f$
z@z8|^Qh<9TN3)+Xj#Bz(*Zd4zk$?33<5Ai;z~t=6%4s(WcHC@ooKC&lQMVh{bKLE;
z1JhW-gPuIk--*^Z8JO4^;#?~Ec*5^=6nTC!6|j>s4w#$RX;lL+<|9vKKc2>}9j&i#
z*E@l?B+mFu&f;qi56(980>CHhXW!2jA8!Uf?%9pgcV67Hs63R?kEq(v19BJeACrA4
zF0@LC^Mo~&90`!ADTX@$^ky9;qUYQ*9^|EgVK#+|2>?*`91tNF>7j>)F6eWF7jGnh
z5nPv~FU4O$0bUva_JYeqRn(x5s3uU1`4V(3=mDP#Sm5QpNIjZOU;(y18mG&_Gvp%m
zpFNRtwE5>47E`FP0jLpE*FkC^BSf@MB$`?xD!&G*ozqQ1_r6#ndKEo}2H+^d^pJl8
zV1>Xy(Ey+o0<Zx9df4qt+$F1o+p6an=7^i5_1jnzRLMXj5C#J1ZlD7+&@BM~AOi5_
z<?Wk~sK$j?{j;E0wY#7*R1^S!J5e5gN*<sg1~5g3!hi<2OZuPo<xDT<n$Vxs@4tEp
zu6?;D3&21PEO4ha_bNo8;o5EawkSDyfcsv=y%6-~<8_$EFS~q@BD1I&06@X7#CneM
zeBxJ}_*IhAy)*2>v+gpy=eK15$Z-lt(4$z=uX0*qLs<Br#rY@R@!~;Z8~ze}{c@k7
z5Wra|zljR=BJ}b?;}d@LY@?{L{$F^ujpQ+Zd$wKVDIa=!gy?Y%kfB~o<H25<5dHz-
zzK;Lhw8g@nJ3ae^opSQMOOOm|5z6EBlh6X2#zi~kUETj`+RoESzBd;oNMkls;p+ni
z`i&jbbGvRPa>o+<r)ldG-8Yc)QAoQniVy<=0)VGc0Hzgk79zI)ZQ6PY<Gp(fJnb6a
zKwxMw5OiE<-Zba&?7vOhGI*UKjw?&u90eKc!OeNlXEeKkgOAkz<=M_(BRD58GALe_
zNm>lVQVKD*g><$5%d>UF4Yi1Y@nlJ;KIK3B+p|Tgz7RkSs#)3OdU5FGwAN++FVmL5
z=MQc=U&`g~r)>IvnYJ&M!q%0~%THHHeJ0iZHf<AVaT36m?`}@k-u+|R+EFi>CJcp#
zs6Sj}guJ~Y{@b)2(g@td2V;h;3Ri6WW7^gW0ch<RelbOduX;vq{$tuE1-@SPE~z*m
zi(&rTv`rsGadO*)8M6rHms`aBZQ3?**Jta%Kzh+hZj6fmc(yO_+7Hygxh-0|s`_gG
zc(#P7R1SAo5Gv+j%q**i;PPzqzdhURJ_I^-ETRu5Y8BB3rhWxrVt>8YVGS;Li!Nfr
z81xUE!38|R83wd(Kvw`i;D3fQFc^%EiS3ck&~x%Xk{K>8uD{5PxWxaB%sly<%rGG|
z{(>{oI{$_<tm@Wmf5RCz9hXNq^GIeM>)&KXQ&aPi%orFLK9U(rOG_^=FJE8Z|09;+
zc6i7AzhN29{|U?d!(`IZ(jJ*iR#x_ZGMTEXs=t9u*M9(+?UJ#B%CUp@e>0i>{x6SA
zW_*17k;%-=%&e>||IK86|DTx5!GAKD>+9?Pk;y#XgMaG3;7lks88tl*zhFE+4?Q&*
zcKBa#CM+^KHeN6>IW@bq6o-nTpsKonfeNRrp}eA|CBCk{u>lv}`mqX*+u0Y~^=YuT
zKLZCgI1vx)7|9x&oS6O^LLo3eDL}E5v9dPtZK-=_9=;iNa5!<?hg11|o?+(e)y?f)
zHZI@K&S|K?=}Uw?sxm*o8*27RAB$3iK~{Z>mtcg|P%NA~<wM+gxIgHgEuRsG;X_bN
z7|(7~S{Q|kyTMrzV-}x1g<blUAxpma+aTs0*a2^FW;BI(xJU0$S&fQ`FDCI~A-Yb&
z5>Y6B^?M_#u7|BamYPMwSEM##E0|vmTLqC^Jb^E&lZ!e$^x$+^^hyZqbgmOrAfsh*
zoMh)%(6+@(3}xzD@+|tnQCu{D0G~F)G-j4?A^CSoGuzNtQ|_NZna_JXdSp@D9b7|v
zC$gAOEcKHc@CMU(+`B3=>C3)Is(*KJspP;Iix1~#=NDlHVTB5t>uVUeJt~LC*Kdbh
zs1K@yiRtVUE?iI40)c2md;qSk57QSFyM8{L-2Q#!&vJYEsQ@Ys=m7Iblt2K8Jx!XV
zxkw<K0Oy_*iiZL?55{swz|ewRp+W<wbozwr5;A__6cpkogn4kLWL_CcRL~C-M}mo@
zAdE?bxu$s$ydl9U{9Jbu-&KK24(S4@2`Wi(FFo(&O$tm6A#vc-#j_1>zg5GxtA_@q
zXguM@z;;&vWP=z*=oL+>#jF%wp(GU|uv)UXBJ%ATt#-ImdMYtZ!@(qpIP^jqXm-Ar
z!V!d!#n;%3!2#wAPo|8|0c3?mQRN_0zKvd$LG4SD7t{uBtis&d0KmJ7FG+F`l3(}A
z@>acB>5Ls`7N`&~0ANT303c4PYD(vbb6;@OpA<0w0zYFCkhvflxb^9AbW9X2A#FQj
zE+}X_zURFl5(Ps7xYG1oD&r{)lQcH>tZ4{#>z_+b4Qm`(%unX`%3w9?rKyviQeVq+
zMTcG)C1rEr)p-5&WT2C`8Zl{bjdJBtqpK42)4oJaKB`zn8RayiXh}&%?WrN*j+&`K
zjJ3Xa3E?Gn0#$N#cUOdX2G4}tUj6f-DH7s5Rel09i)Ofr;7;@Oz)8y3SH<5(Gau9o
zq}<uwo7O@(ZbLa*8FSeQOqf%Qe7)Fh=`oZT9N7rLf0Jsw$6w*U#W3RW1Puf72&?}h
z)udFEkEEI!Mo7;|0e|wysOcXykb{?jTZEHW@KFZ2gd`q|icf}8P?=g-g<epGNm!0q
zSe98rm0w(nR^FUi$(B~r11_ci53ClIl>M7j+ro5wIdok)U--zYs6UFKtd_otmae*<
z(W4j|7#Qdoo12(FYT>`ckj^NW(LDC4Y2Z`Gj7Ln(Z5_>R8^`02%;8h}Z&J<g^G@JR
zHCI5hu~V>tL-Ie!S}^<rUqlaYR6l>*h-kvdBfAzzoDfYO7fPEG&R7)BToB7y6V2Ta
zE83MPJC^7^HjK(glpQ0guO;j5r9S?8MBG+&_m;yCR&&4qLEMj8`Y$2P{u^%pO}771
z(ayh^c6Rkd==z_e<==VJzrr{F)X#kTPrlv%SpR70<kUY}I`r+=qn!SymOirW!{h5m
zzP<SadG_PK5%*tmdi_5j?th8t|Nr*??FxXA07CF1sfS6T5sSrUnxRHWQ}W7rR}}UX
z{zd9ZjG#aad?uY5qXw-n5PT{)iH%W*mLvuN?jxy>3XzG3W_P!HrGYw}_7|y_)d~qx
z%fl9#G3w+Coi5QJG&+YjSLqZ=aLRO706<^gt4MCFW+zD|RNK72^;Qy)jG#2#p6Qw{
zI+Z1$`+7ud7bf$f%nfxE+pG;X*Bu%55ZMVR-x%aptY{uJRooht%&0f+C`8|x#I;vh
zH{68meSKD-ZMsC>Y(M>iJX0?2VR-LDo%_!?yDWiIMhcXDbk(~9vv19$FHg9-eAaRq
z5|zIhYoM&|bvVaz<mibwvb7O<Bfm&cfkvCwlYTG{1&ZCCqdhJCQRi9c@}r-hrl7#D
z5cq4+aggTiy7(8Wz&>$nO&pMtUI-!{en8=gem`62tiW(y5ZVV}o&u68wIR^JXNUop
zYI34rXZ?CtGce6YMkrMj8IOz;jecl|vmHaS0*#>y0D!Z;$p!SWIoPy_6YLZSmX$eg
zFQo=Dm<Qs|;B)u6i1tVhB}bie54iB^?||Iw!O25ZtPEP{&>7)rsEtTJ$`d+IP*5HY
ziO%L4iIY&`5H(wF(g3lRf~z5M$3=ZaLRctDq3jx*DGbe<iVlH-_NoT~kY&!!B#x6f
zqNnpXP|TM-ROJ2wF=apk1Igb4Tn4EDP!~j*t?T_jhVs@0npdild>8=GwIM}^n+iXM
zH*QS>(%%?x@4FZ<cf6vN+8KB!889>O1%_JF!IIhg<WdqhQm28@hxfrofwUvdb}Fm6
z#T5+lu7UK>9sqL{FrS^<r4h<+we?X3@j;eT&}9{KC;|aNC_TV8Nnq?K#Ktzp?2)WY
zEY(&8y_+syktCLBc4Fix4O1|HC~^~FK3rF(KNZbPE7?n~+==Z@XRZRPGJ!ipURl#T
z0Tg>^4V@#XCEUiiL7wc1A-%elM4K}~n)-=h9}O--!2pf!9e6-0RGKK#@_=M9fyD+I
zGGoviiVnC#dOxmxzs5leI^q@ZwP1b@DC(g>5eUFse=Z3k07$HuIIKkoseUnQE^yY2
zf%)P-bAa|u+p@IX?V0w<C;A=AUi6=6Wm2PUO3evQdDl$7T30#<i(K@bGhX;0z1+|b
zIQxu>mM@DzlMu2-A-mvbXiiuvyq35B_{6BM^X<(o`whB;Mvv_*#a6v6<H~(y$HydV
z(>C?x-SO)3=N8J!y84z2UsbeQ<@3*o_ugD-8f&iuVVy(+FmJfV<0wPoACbF3B;2EZ
z^TE9!21_BeLzrB7aBfZH)U&5Pv8qI`KL?$MI=q2L{}PFWhH)`GfhK`v4ZVrty+I6g
z@F+!e4W8^05a_={T(<x@lmgHMN(2}Tc}#7Qu?hXP5VCVKatS>a8Nb3~D2ooRN(VFi
zCz=I^JHz3=OtN}Rsy1+Ce>P29HUlpeI=JEE2Xt^BI9x>;{z4h<{CF6{y_I2ajNuB3
zib^WFDuxDz$|{D&D*6WcYQ}CVPQEHW0WX}K4V_*a`UH3ytGsbi@pUqM<6~%JW8>`O
z``XF*^=mIUJPEEG3scU58^=EWZGanR!j+2Q#_!<94UbVSxKkP2sR8Cw3HNE?aj1UG
zbg3v8t2o7~IHjui#H#q@JVw0qy<-f0GF5zPosBC!oD!V_16~I@`v?2c1%F_O={F3_
zR0%9riRd(pC^w95Fih@t4orI;8tWIC;h&uII<X?4@RLgPfJ*X^O4h7F=8)mzYss8*
z)_`;2uye(-Z|RVC^@301vVX^xZ~t*D9G?1k&>6-m!()x<GL_*O#;{B$c!dGH*om&v
z2j1XB*X#pN@zjj<ajrCeUF@Usxb#-~<a7tZGXo7{1D#_-ebPdlGot)*k^|bpG)khK
zi^Dxil6@MYog0#!8`6Ediu?y6-~%x#!^tWmnTE4jh67nH3&n;5h0cTT{1z*mmutOO
z8hy5!eIp_wV$w2GqhoTCV>2@|W3x)rvrBRcGm}aii?iYyqAJS@GaE}{o60gODk{pW
z8!MYT8*0iMY8yJ6D%;xHVk-t>3uhxb7BXrEGaHA~I+kL)wkqoeiW>*YKg_n*jkk3T
zqz)ce^e=Yx4K@ugmW}QdPh3>a99Jy<XdKz>oZV|$zU|n$8%T~FsEQq^OC4&=nJrFT
zZi`*$%o=Ph8}4YH?Rq!c*1X*nyVY4c(APcNSGoM9{-`f@cQET>B=dSEXLq!0Yog(3
zrgHCV`^7}@&1~6^m4=6{_QAoy(TUmdx$*It`MJ^I*@@ZtnX&o#`H7|7!GnkK3*^$q
z-rVlZ+>bx|OOv}BE58l~Z};bs7o&fEEbs5{?;Kq|K85Vw|G7Ngxj4G`eZTXVuX|h?
zG5%T_|5rccuMnI07xni>`m2jvI#u`}<HQ$jQ6<CC+(St*u78Et&~Q>i6$!V>W5LgB
zm35l-5qR7Jj=;mF|1HGEZ(H>id9K6n&Ck~Bso&xh7m0T)l3h?AKp`5q`pHv<seGIw
zqqe^TDMr>`JzdwUx-()<Ek;J$(Gu{V8MYcI`+SxI<d~TGj@B|L%r<<T!s47Q+8YV~
zqcT-%81f$d{cTQi{ppGochkQ!Y<TN8wZ>iM!gyBV50>s#-s;Ni@h#5I3sq*Ly15i>
zKOXamG01;HY&$s6R+G8QXZfh2ym)Ncf94MeEC}<*DMgVe50?9SfuWmC6C$i}vrCRU
zvtjH16=J)CdhKNHkVvpQYA-*!YYgA4CtI|OweKWD*DQPQ->umXE`{T%fyvLK-h_qO
zZ2l|6w!9l`MM<1tBuhrZM`y{DJ<FiYBJc_je^<Z1@+3qU4D+_|F<p6!>EF0vAo*Vz
zHpw$Zz3E_63BJ$1N}L%}U@2S0xfIHaL+w;7pL&>tuU6Q;2BFV+R2mSC%vyV~moW)L
z=%{t?pA1`pnJts-tdEXn;H&7nLqs44**sg0=Bq%pyiKHqDXR$PD+|_I+>Os{kh(?t
z-~^GKeMBX*K1}$%ekXq6>v)4|Y5FcYdo!>hg<~#VZJ$k5+v6~IDVnZE+{}29ouC)w
zJgGAx4KzbXQu*dL95QEVBZvQl*knCPPNb^-l$=P1dfKq+g7ELC{qXaC=Gn>|W~?US
zZKrd}286%3Fg+%7z;D9P6kGg)+Yw0bbT`GCXvu)Lvz&zaX0TrB3%4PsH2q!m)Dxx`
zMm8^uo)~g{`X|GN7f5Bt9J0I<$qD*J9RUq9bX8Oy_`p3#a$$Qjz{?w#mIJo^O(R2J
zqt9K0D&}ZC`yyiZLXwljqe;pIgF1QkTMJU9#()Y<!D}Xz)ah=M*h`>I`VWBsm$V2a
z!^_uU<Zo8Cxo@aQzL^ILCGO!_tZSs8SL6`~vo^%!bh~Ad>}5csRyn@W(UO02OO3GX
za4cTPt6zV+H1L3+E&jD8GD)CZBKze&?(S+z{^{>mrR&6oH~3%df1YNn32^GQahN0)
zetx^v5Xba7T}-mi+~K7plc0X<XES-wC1NegDe**~dSD$~NtU|OsV8y1B<BabSVNq7
zC7ua61FYVR7NeU7KDJhuyRw6r&<J(o`ksftw4*Z`Wzu`kWyC|K3nZ6A6ZP@KsbY&^
zLFY-5L5a?<xMk92=LHjQRd-}ShVnQ_2oI17Ckg(85>Ww-Ox%h)jeNPX4ls)B3neoR
z=hrqZ3H%}W85>up)kjZCMYoXNP{swWQbMsXBo}YGAM^eV?X8j=8I2mgpv&qg7GY!Y
z1NAGVwg!up_5EamA{Phfp$ZM9+b8lrHDU4g3hU@(a&l)$PCXVI-@)7RyDk?nkl~Kp
z>epd`zxF<27oC7ugbDvJB;zU)Ft8m$kNREI>fFJw<4h>6QmM>xjKYOdRKHPcIG0rO
zw*Z>Y&sfk^QqdY1pO`f(qVy)bh7`qPR^KPcYxPG7tCR^1Do&Ip&A=-gC>Kg)-WkNR
z)3Nh`z0P};LN;dH!55Y?O4>*&o8U`Ys%8c{mdKL8C#AgTbM%ZqG1M(+QnImTDa&v(
z6Y+8RlD>Nk<HS9mi1)oNdBC)i79kXf!K{J1i$zwAk%>uR%6P4GJ(0jGR*yXYTBH~?
zBZu6aL?;-?;WM@|X<T67aDo)4j425vM5p=E$k?l-Dqxc|YbP4sROz>9>})O0lDZO^
zvS<$l``ST2lbu)VY+Fhg`z8}`#Idl9WI0wvC%P-W%4faV!c*UERB;=Qa^^0fW7*0N
z6<~0zAFVPc9n}XDTYJ~`N7H`4PpDvZ)W>pT%|W+dEK$;`l_XAcH}X{ow3}zV+oZK-
zoFPxA=~wW{W9im?0WCqUk2xe#(<T{W2*pJ12=qJDxI`!$4P$e_4Vx@VNz4~Qtgh?K
z#51i|7v@@`TN53OHAfDrB)<Y$5eSYU5k|Th5pEB<Ma^`_wy$~lTa0a=x2jcrpHyxw
z|M+-ksS*ej(GS%~kNT2Q>@yi|(mki$)hK)JsoJmG;dP7{QVP2_y<7*Pp>^T0<eMQC
zhBq$py^nR2D~6&6qT3@rpe@Ptoa2A})p_@Y>kMLvm1Y#iP6~GpHS#FJ(v116H#mn=
z8~C$-9!1F8p4aX|%5AW9l;la5Qh%jt%qltKv)OF_umh65ncDNt{g+r5Cwac%cwB>b
zV>W6{vTj{VF%LhG?Px{p$}g1h(V|ZVO>x`|V#e?#zF<306;a_plCvdwOACmLO6}i8
z?SdX|%&uQWzNx8E<6!FtRIxT?3yvSEz5QClkwz-*WMmr{ul<pf$Hkec_@l{X))3aZ
zvgwvwMgqjye>UnmxlDzNwL~Nx7T^&SEOewUB9kJ(2`v*JKd~BY?<m;5`LnSqy}aks
zi8g;3RK_;sm~b|SK`x0ck%Vbdi5o)Nv16ZPppL_|ya29tuji=c+Ce$(5EAf`?srgs
zCAG8!!1E6HhB?s7o;?fnVc!nucJAhgYJphMwtu6xk2)C<pu9couMF9Lv(-_YDl^kX
zIj)@_Ap0JIWZ^ce?S|6l>27c(bhuRexd}d%@uDfYuiVZ%m2>tiz<=-c<)@gd@aDlc
zG(|eW3v9!jP^0y9+=fa>u&o;1!b&U9v#-J2AnVQVV}rbs`9zcV!Fb}Wi+ipmKSYys
zIv-Aq*+k?x;?!(2e2>oft_<>q&&}nH7m>o3ioz;V>&5(&(&!(yNWW{Q+?LgU7UOJw
z&*8=~ihKBC{wna8@L2u8IKPfh%)mcQ)%iojcQL)6Z%c8X{DDI+Yv$X02q*8BSJqP%
z-RSl(G`yC^#ZU3MS*6}Cd1L`U)pE|M4^$tTg)&oL&j{FFNo&EH_40RWoVSedw)!XK
zwa->dej`r@)&Jm%xMp}qfQ6R2&Sx=by=Sum_W0jg5~=(2dN?u1$UJ*t`@Z6MM#mNJ
zN5ETo=K)<C@=*F)49U@JX!?cgE@=>fzEIfBb2e)dk~=7B1znGY7Q?<@(6yPsJ_F~M
z08dg6przYyCIfX@%@;pB#M^uW2Xzb@BvN%4af|q&3Q%qr7(gfpK^FRuEIO(O{gxIW
z`r5Bj?)BQH*-Ltb-7ltCPecpkVX_J~UV8LGTk>`#&&s}X%wu>i3Wi`xI#|oT)_%u@
z<*j|m6zX&rZco5vZ{rto5wcnm+7ljL^x0e$BvLa=-q!?iXZBbLq2H!c5GZE-5b?}F
zpB@XjCC^mCF~P)N5fSl}IRrg2TrWH{K3t`M>*;hc>-xUp7Dhz5ceEt|t6rx0XH?g-
z!Juq1-s5x30+`d6WZT+wXeD>dPP)l#i@2gC$@_Cmf<64LV9Jo8Ncu&nDB6?jG<KSL
zh)6GttHO6m-fd{!iv2(bEm&kfT(wR=x<V*^N8zz?Fy64f`_CV57D(AUuDFI$V(1nH
zKY2q5W$nX~;(-@_8&W#R(1drIaUh}ath*p|P0vra@y{(Hn)Kpv?-Rv?U5N3+a2H==
z;loVsti79gNQ40|+qsC~Wapmr%>wjKxK)T<U%3YBQ>O3~qBy4yL5KEY%F18M-wLrK
zAvVsy0O(SR#62ZlNdkYHgK<O1Dn@|t5(jHj!u}U%U@vSm-NoSIDWG4_ph1j6%btaW
zEMYceke9M<Q~tp$wWw9%f`CV?lFc&6`om{I(S}I8mgr}~86JmZ)9p6Gkr}twkf($G
zskab%6f?qC>ez=#oad0>10qCFrj!qn0D%dO2K&k97;++_p%#d5$FmlpXTl7G1e%g~
zW&qB5NF+I`i){kUbcSa~_TygQy8G;U@|;HDoMwZZR-c^qtenn{oUWyukM}t}<hh@P
zbNdZ)2YhmevT{c{a>tf(C+>5n$n$1|^JWe5=6&)Ov+|ZZ@>ZAf*6;H+$n&?5!udM}
z`FlS32U+<?9r-6q`Dgd}=i~*K!Ufj`1-Cv0cUc7w9R<IZ3jW*|04NH9B84EsLUi9k
zaCRYPXCd}-A?`yVl%j}0q=?9{h{U&uEW3!JvxsWBh~}XPMo~;BQp{jj{KU7IIlGwk
zC=nBiN>q=JcMc*xhjELP5NZK~0*e@7;HTM7Sqgz9!9YYd*|W~P=NdSDnWai1u{9cC
zX<s7DsmBqLV6<K=qzi<S8ygu2!7DB^VufQuA3KI&$V#FjH}D)2bzYw1T~C$taigC1
z;6RH20~>fA075g7^7~*^qzfJi0`7P8E&#vcZFb&3V8TKVirh579Qja&x>;t>S!T>y
zN$|PC_lQtDkoZ-!j@8sVQW#B^FJ8ei6c>P}FA3o?tIY9zT4Y#3FjEzPQoU4Jc0Glu
zoL&0C1@|X{Y(j%5{ip(nQb_`@*_W(=7FWp@p=M|6<gr$571acfK>1+h$V42zpqe{i
zZ5;)C`G|B)q#7Amg~g51!9}*QL72{3m!MQhY*w?oS$7arD_&HCba|J%{7yiG>RT05
ztiJl>f#7n4<>yGPe`oCr?)rJid+;<si=s{<2~@sO-uv*Lu&92^tYH_wp1&6@s!$)3
z3)6>-25b-2<|0d)BBZEhp^u?q6D8(g%OkUgVs79%ur{C~69F%{z|bUs5de(NjS@rH
z1k?l;O<~sdV1_25fZ)y8NdN;4r&?1?UkxbUc`0fUK)tXT1V<^U$70>Y6k)@cv2RwW
zZXv{~!D%QV$N^R*mX?~fLNtNJg(y&NP<i5GR2j`NhW$MP^YM9uA_iEsfwiN7Q&SJ5
zN&>Q*LJ6jT7#IH+Wp^3X*1M>SK0$+K28z2DDB40PF2##`aVYLi@ZiC%6e(KV-MwgW
zin~iG6j~}+$>qP++2^ja_q}(FJ4U|cYsMTi@B93o2gC!Q^CG~6V6<dB^ygmzRlH`+
zSIxn(fbvYsKn4UZ0uG%4*m-dk?Qs+EV1DCI298@vl0j;9V5|_dSVKU+4wnN=P$t>R
z!vM~oX{p-A=@S7SC$-~!Z$MYa3Jbx;4rw&6Y!}08v*@TmmqZ)5#kG0@gXUv?K&=(I
z#y*TwV_><V@tHNNT(si$VRnUbM(20o6?7}cH2ru2;P9d`=3@kof$4eCK%!`Wo&Z}^
zJrTS;cm*KC3*1gb(Z(7PTOSVXY!Unw0Exx?{<R|_AHbdHBg}5vuk5|^hu%~5p>+Y6
z6Ghk)05H>mo(y6G&>{HA%C7(o*Aho{V8Re+-~gWamw%0E!I%a0Zqxj#gV-3t<oXCV
zzZ1~#g5KHJqMH{d*khK&P%WzW;~5UNxeY4b0lrElIO=$E>kwSGGU<R}JwHICZ*U7n
zV8B^hw_V$^1O2293lXjmS8lAN1RE)n-(TPxZ~_mRzWX}-umB(e6-T9tKV-o%gtarW
z$pB?|U-~!}z@5R{Vt{(o0Zw<kuADH73+SFY5Y7R}I1Wad5#dPUc`B3NnGK`Ql<xpA
zp7&V#J5V<SAfgP2osOmpj~H`~<7;5*1yJ4P<KvnauhIho>iA(hRp`89yS#wF_HgTW
z0@rQe<N8pHD_~Q{x0VD9pVEAq0E}EGB9$i|)sL=JjiB?@vA+i{v!}Lppr@js9V5QI
zIN%_T>PWdq)9(}N4!WS6E+7gB)m4!i)j=7imka^YS6D6m&<bfNNzx2vGH8&VsUii(
zoO3qi1Vj)^a)}`95GKC|b>m9S)&<N`sMO=Zh9poIW0!S=*OKHvLDR3E%;AD-`#|F-
zl7vSWgougH5Alk>O5{IyiNZCYqGv#FTovxc$fh|C<_>5%U;(dxmez@io@RF2k?Kbu
zp^zB)dQz#KC`iwYO0atYHG_`>n-A-UzBHbfr-9}8&7i|7@;av5<LC`1mmX=%A>yDm
z@gyIFv9O%R2?GJ$8>o5?&`mv^7(bR6fIc5XLh3~I=K>3N78GT$gq^Y+h`WmIR<=;}
zN!Y2-p9}DuTscuEJn33QFIcHFS`B9)eD04=a!D{EGFUjd(m^v><^(XSkUth9D(Rjh
zP6o{=uYSE4OU)lhCzx0knX?cBK8cZ!qvGd;t4DhN^7aJ+A9B{Voz@SzO44UG!py57
zXLC5o<-hDVW>*1#V9?YEXp1BH;R?Y>1{Jyv?IMPWV8vl>1iG(k!b0%Z#Ol+{%2Noo
zF{Ch9ayBq#w@?>bVDW8zjqM-ZbrvVs_e!6@o0ET%2Cxcd(YI>~jiGU_05h=haMGWs
zyhTOZfYFb6&oK!kZ~4&gpy&yNb3yuu$qO+M|8{Lib|*RlWA-ofDCQGO^)^QTw*Joc
zjo47wcLL#W1C86Y^D|}G1v?uTgBS&%Cd6WSJjp{Mjz6~q`hAt)tTZQvWD!`$;l&G+
zT86=}!oYh(4%3b?Sn+@NmQZ3qp%`H_Cy;h_yyR5Q{Ou4a2|$6vc1~=_4ru-a%4Y&7
z&eVDP0S1(W$;Qx9_5RxGV*O-%B0MlnJV^@yW|$PzRQ#dji-bHL2w6Q|-}sWJ3KZmy
zCvgJV-?m!C0ZrE-CrTK8<?>ec;Xw?EyVJ^__zftmZX|aPyZ*Ezx4nA`So`(`i|^FN
z;IwZ7pJ05a>eKF|eO;nBNRs=rbimP{nNJX@;V|<x9KO}9q|s?{@|Ei1^u81K7~uAF
z55xTYDhRmY{t7Vcqw2<HUoHL4AL4Yb@-aEX(P%)ak1KMO_)Au&@h;JE!>(1ZtGEfn
z@JoT-v-SKg5tL+gCIYx8ykO}*K+ngD*|?w*TYpM$tRFHzx=}Z$4p8+1w9p@fQb&tD
z80|*b?>FlNcwkLIC69uEsaxn@*JEhTF)r_>vf4^?4R9?+t{;C9L$d(+_6ytm_(j)l
zc=Emi>bs9B6iWn%{0o(l00MBo<1pas^AV1HUBX$f3o-#*&!HSO$NI^?Am(`bA;kdS
z>Shu!7ekWHd7gZ~y;{9hNN|nKaP2TLkn4B#I1h;3y2?-?UpUL6{EM#7_d6-*Y<%t7
z@LP?w-_3Z}xnDfV<U~LJ_{>)hsJ_N8oc?7LaEDQUiwj-p$vb<$@dpe1r)g`KLG|P`
zt8@ajb^FJu-1!b0um2=zdwI#ZyaPcZp9hRgT_sPRuO;mGZ2ramJ}}4wG?@Oz<lB7I
zxqn0mpkoj+zmSybd|1lB*9Ok>T0&u%KW==cLuKNu@1viT?d3_pNmk4rmGy0mJZI*6
z?t09VFa~}@<Qz^hTPPb!2;6(<dh|`kiU;fBb0i&1L~!&n@9QV+_Bslr-&2vfEl;>I
z3oNe5Ygr|P|73e4n!&3%S(?R+7IDqbF;T9Ay{iEE^!Q_mw19NPm%aky5Jzm<ZYEFA
zPP^B+9}8PXkzqN`0ik!sMT+@Erhv=g`pTuvOo4!Dw-K>)P58Z>H?#fnck`$S9Frl`
zK7WB@#t6~k^8jr}m5x?C6BS5(Nqr2NBWj>p^N+-)bmIN^e(H<dof*EllDqR{HSAtW
zSoZz7qiIxXL=QJg_aHI+b4Nu4h3FICsNS#Bj^f)wIa$=lN}Vf2O1Ry@$6vm6f`$f^
z3%k(Xe=5%MQ$UIj{6@oP-DUjwsh)x(mat?=!LhnCxa9j6_ERjhSdN0vyu6+JO<B>o
zxb`XE^GLB%zR=;DOREaJR~<Z-{iVJ7T@o+4$`0G(ig%(GBjRH|ACvi;n$~43dv}41
z{I@9r*$UE6hbc6Es`Ecz^So4fu@`>H;iheOpelN<e30h;BeR@VXmRZG;M4e%hCUR`
z>UgXz>%%fZBc1=gdK(({&}d=sb85-isBrhUl3%Dh<lD1eY_N919CoK>xCGxjPsWM+
zeQM?`ol_glObIw;(!`9>X4}p3*O1MdhkMeio?m{E2Q{B2sz6>h;xA*25LGac2jUXy
zreW-vOTM(_YGVB@bEd<>kw&v!Ztd_<cLR*Xd-|c<AmR&~9Omb<T<YeWcM~6&E&dop
zz2(wqDkq<)GV*tjR{rQFAd-<E66i<P%YQHrf0H2co1A~wn#k8Oxpqf#2H9EtYbHeZ
z*Doesn6j6qGfQab=Xb;vQ>BG+Z$Etk(PX`52_Pu6)s|^R|MjrgUVXaq%I)6u02Tfy
z(t%Y`r=iYVn4q)WJpN8d&q^IT1J^#TtSIrzi^8FXVXK|oj-7RK!`k86#2jI(6moGL
zo;H<+PF8++b(3-QZ+qcRh}{guvwhE;wxU#0o-)^ZmLlh=m>c5^`z97Yc-f@L`}O=W
zzJac#!mIl$ujM!CIg^!l>^3y(9!oSn5;nUf3QHP<aL*7UT1h!ff|t&=adlQEAINSi
z#SS~<WoUmi(0G^e=e0Ob!F9%iVsb_KMU?bX%J7ZhacA`{C1frU(UCQ-9-DQ?c;V@`
z1?)AtU%KLI1DxI0Bza{y^ZFjcVaYh3%dCW+>d@nt<0$^Vu`b6;_{z4<M20FpKBAex
zIP%ZY`eZ_FPX0#Lmi=BK+I)~+5Q$kuPuE20%9e)63D~oAB%(%>D1A7PpEh}+j3gBD
z5T=X-Y~)wAPP4CM*yQRZ-vUZ#a(wjg976a2o<-MKBsJvl)E6ccQ<5#$TA827Jd9rW
zd00U%Y925ql%l?375LCFfkAhIh-AlL2z_>Q5%+bCak#FZg`R;(&`R6V=LLKi#!wo~
z0Y-oGBO^)d_xHp+_WZ+-Uagp<GE6_hqLn||_Qgyva+1>TO3+d?t6Sh8MYA;jVl)U0
zE--_oy2hBXiJqUN%{V_yju0_<3maKjr~mHgM-V-QdUl0A;)6)pB%m1O)!mbw?;P}>
z$zrM4X?nOkWmb4f&^RIMtQPat(ndtgT0R4Vi6JG4MM%-2;I&e%quvTd^Cpr{8ttu{
zGpD*l^&2T?tR|5oc3SDBjBbpdp_WXQBhS2%^}*iq1!dU>PZU2l$~D**PPsEP%6pRd
zHSLl-v9fz*Jcb+oh~on>$!l4jtb%@X`yzu!2is<!Keh7>8TeY-Vx2|90_;7C<O?2u
z$uH1MmrE;doq112CO=Wg>YPCrQlVWqhHIhV#MVDBuhq?=Q}K=q?KJ<3@_tCnpYK(%
zyPEb2*bR#<tozk&)kl~p^Toyv{_0t9xd?&3{-8Hju2(0C8cwJVDuk8GhBnYvPS$=Y
z68A>}<_AtW($19jpm_$V8%}DP7)<f{LLcT^n&CQ}Ri_HaciQ-A(x*yYQrx3OX=4tC
zXFKg7`7P8H#dZ#ECk%<8>ahB|VzmfgrOCeoZB=Lmj*Ut@GZBxpx}6-fsQeZj!Q9fn
zcE8DZ_;#GVOSjy#f{=N;CHOQg5M>PE4|sDdrnHgu{ID{epBK?MCw*Rz&gvS%5=$Wu
zo~%b_Hxk#71r&*zT53s*$rPE)Lu8hDiv_qMRBk^-dOv5>Za4)gBt>Y{2{4>|bdvu1
zs@bTct>sHqjnP?i{{|t35K3X>Tfp5LU|@fceRwR)Jw{631l3x)w_T~EeBB<*|B_Mr
zMm`CT{Vmp#4jY>N!s5yIH@rtvlx}CM9`T|k-H}2Qmzc|9#6PSAQ1A(HMG$UNehh9$
zLkr&&>+n^a_MJu1l+V=VljQ5e7vtA~XwO{>X(m+(Ukzp#y-!p7U2MfiG^pRJll$^X
zHsb*DqMwR;tt2G2lE^`E5c8Ai)DKMJD>$XGNWpi_mk#rztILam-biajMtd3``|-b2
z5ZU=F)*K9B-BDTh;6OCxLLt4DQaN3#hTknpOZ%V64F#kuHaJyj6zV@ab9;(>!5j!V
z^xXNKLDaD;nE^@Y=E=3vFt?~$UL4%urFPI=Iirx1FxW<+M;R9}{cz%87h&XazX-v;
zD34FkxBEt{RP`&<eorc3x#4*=4^zX(jOJtm>c=>x5dW`giA`JWq`Nip3f~{P+n1X-
z*0k^MSX1d*Cj&{xVkeHN-5+N%(@nJg@yktmeM8A4|CJ0TcHftWMbr5(JK8#;NK_hp
z>OggN04ull;yUPLHQZ{KX&`j9AT~O4Sjy<fBl@aT>9kKU{Zq2+(Qs`s<whpam=<@!
z4tU*|&38ok>+oV%Dzl>8g|4EjWEz6g6EXjotkX`%+4N>ipWYvJ{kfRb0qW3E@#O@6
zpXFRF=TF*^ryOMBXyh%O$)B+M?Z$PeQnST7dyPaD)aYb^^Wi-9`*z;`qa9xqbZcNA
ztd{@WQLsaLk4G=EL&#g|!G;|ON*rLa_wXhsdZ#oR-|gky*(zi_JFwW-TJgH-Aaa*>
z($hi4jX+9g$nQJIZvVb}hoX?GF03$b4u8R%p@297kt8b6-WQ6d7YZsn2u(Z{-AJYE
zk7l`jMG}D5ji=dn^@K0qppN`$!-YTYu|a#SLcHV4Ub7hFulL2l8G_R(l-zrLlWfnZ
z_*(m;1<-!to4tBplP|^O-<;CO600bZrT|h^2PdQy(1l2()k*lzLKvzf7?tD3-b-D)
z68Nzu&F#p>l^x?7-8>X6;Az%-M+{LlXUJHFq3$kW%OW3h+9cw}bNL+^Qp^UlpCmf?
zch)5#kCtCTDj_W~gv#K-&<xyfc6_rHT~9izC<<%oUT5omcwY_|MrA~67d(BE3IVn&
zrGMhc;P(JVVzELv2AVOMY*Hhul(;)D%b8wQB&U^KmeatZSf3y<MjtNic&Lq1X;Pma
zbjs?6^oN$ono}c<25TmyVmCbs7(e%<<oB>}LbwYh>^&jAW|?)-JqM#KB?d1GI3$hv
zxwuZHJuF39iILAFh20sY&N@Tu0JLX6KO&b!f|q5mh%?>amSPBTU@r63E6MX@QTPwa
zhp<sAb9Rj>AQkCx;EuycSJAM$k%|H&>KMr82*Y_QDZD5pH0~k!ZoFEa6B1N}9gH#R
zv@7p6(_{H+G<1~8>@B402N1_U8nUbqgx+JvESm>U4z^W@%STJr7_z>6UWCW$Gl+~T
z!uIv-PlP;*E5l59i=?T<enB7Y6~{$o)bfm~eoS9cDz$7|v2YLGSUHHSI!)YeixRYr
z739Yc>cTFILjvpxIm}3$3S>JclBx_}&@8jr@l_hVR5bl7qigKSL8Uv~HV?-Mk1pI*
zVQH?b2pmPJ5Z=Cda%gA<!a`DN!a*XWEZv1XKV&-;mniCB1s~ywwcYRmY#y0<)%jzf
zhLKSvgjc0RK}Cim0-TJ!Mh!x(D?{F|cLrZY&QT$`$&<=>X$t}xwa7<8;0TS;MtUuo
zBXq_1u`b#0tOdu(CrXgzb=C=Gq-|R{Mt($QJ{A)-@~{db$A)BvRFcFZe^*5vaYDWn
zP1R_3SB}SZ6<|xUK^TuGg6pF6lRD(WqiYL#zyHLZq=roWRIXr;$ZU(;>zV}H4Ivdk
zh$i(=b;No2XvpVJHXhs*`lD7LZX(I}@NNFM<<2j=p)!3#gx%_ZR|)x>m%fr1J&a%@
z@+5zKsa9pAbKA_Eg6#cIx*r(am}VN6^t3bwv!NFn^u|);ED(y~S={DX;BQZ;neqs}
z)(^Z))J>EFLXMDx0_CfKP4cosvOU_Pzk2B7r+NLToeFk5Kp~WVCVU&)>zFwC6P9DL
z%6uwB_%B4nNo#Oo?)f~C@D-_man!;MQWz2a`wly3n<n{7bO<Me&XrZ!06T!3BDgM$
z=hvu~)nEftdGfqK+_skT-#JB+dBd=U;3RBCg8AEIWX~gtpuQ-@1Dv?4`Q(0V4Hg}(
zjp@#}J(E{p^)zgEb!}3=r+$0GiH0m(UQeErP_$E5z9=p%FPpO^q429)1Scsa_eW_|
zmv`gKm}u)ZNPY?iEhb-M**day$JBZ<K|B`<z5b?p(;%yq^}Mf^>Ui~rl=Z?$7MWQf
zugloIMi(+6WT<sYeKC&ZWcH<~v8DMJT|q-d5twh)p2+iYtql6%{?f#jdm$HE7Ai_i
z5v+iffW|GP!W@SLjb*b1n>FI?;ingu`?2K}juuyDq$~2Rc8<MHSy=(JM!6Ibi4iMS
zX0Ib%KPM+gHU4Bw+(iq_Ve^GgBgwVTCh}c$7ET=(kXI|wxCZhp(H!d90y*e9TG1Mi
zMci)o=<U^(o7Kq~Br_P#f!T0M9Tfe6-G&@5zHSimF|KR>Su=}HW(0ZGS;|E|J2puS
zW!-`V*l>DHDlRGdWT586f4%arN(!4%awd1^s8RmG`e6ZPXAX`RL>-~En#@PBy)z7%
zSr31qh0=}Y!$fSfWNl<g8gKPO7L5&;hGfHMBvS)Tj-6<^&DeEk!jN$AKTji9Oo}Xo
z-l#!}B$vBBw!0Z7DLn+TjB!kDq<#_Mt{!F2i%CF_d;|$cW`H#M3^V$+t|M^1vzT7W
zn*Q=yJ(NV#fn&PEF}3wWCKW=^P1rS$w?Ytz$7U<Uw;1@}!Y_5AiRdvZxFEzAW>%CD
zT1X@#eFT&h!Y*k((T7H=i-T#q^(WpGhZb?;mCgmnG(}+9g{pGnl?m^KtC2^j*@jHC
zJ$Op9DO-e2#%$<vsMIJv8x{exe#CbcY(1n!<S5$TYMe)H>IH0IELI%MjLo!)P1M&(
z6Oy1EumXr{IpPlswzm44i7NzWpP3eY_%D`dm@AnouQ53-rep$yXeLw*f~f@wf5ZwA
zRE^MP3->31hz!3Go5Fw8_6DC6LzpoB)v%fLvgKKzdRkj!nmZ<p6-mTvk#@YVjAix7
z(^8=(TJb(ybn{IkdeQNumGP$4akHw)z18H^+kJFv3vTN-;?|a`)>bCge7~%$<*YYc
zXKiw=?Q5(ZdaNC%tevbEoSY{x6n46K%baO#+_`N$#BDrPZC<!pdp)l!+@24g?Do#J
z@vE`%@39HkwDO)h^8Tn0tiQQ7(P(~X6UuEHCT<(9dOWji6Oo(qZobkU9)U8}$M$xz
zjqS0Go3f2>v5DNYO%y^`XVKC4ZJWYvmnv@emislgWQ2n1mw5INjf;qN4QxGf%k&<*
z>?ymPO}pH0c6s-9`GocbwDupk?F+^2i&X84P3%jY?Ms8~%M$F%bL}f?>??chtETL$
zA9j|%+1K9N*AY6@(>gS8J2Z+rG^si?n>e&MJG2Hlv?VyS=Q?!MICS<nbWJ&QZ#wjR
zbLhQy=p%IOr*-_u?KmLrIH>A4Wa2pN>^KtSIGW)2Dc5nV#&NvIabn7Ga?^3@o8$Do
z;|!tG!_n+#Zl^hMr+HPU1rw)5XQ!ngr{x5vm0YLQ8mF}$r}ZhPjZG)i<~OIUd#7ze
z=N($-U2f++ap!$i=K~YxLucosAm`%*=P$X=CpFGrdz??FoX<9$zkPE)zjwYMboox}
z@`KyuQrzXIs>?4Em*37Ve}Y`D5?roxU2bYzZhKtrrd<ARy4-(rLEXE6psrv#S2P}1
zbO~1sHCIeiS1cFThj|=GqU*yj4sNaM!z2#=wClqd4&k}$!=)Agb$b}VA>wf(mT-Hd
z=0;-bM(X1BFn2?q==QL4Ls{$guy8{??MAcZMtkl?hjOEbx--zZKfJ**Nw_nsxwDwM
zv%0uH4t8ftbZ5_V=csjm((BGS?asC3&VBCAgL3DEdhpSCJmv8~J(KX@SMv}s^?2^$
zAsFoOBGE%A&qKJ@L!{S3blO8~%R~I!LjvU?3H6ks^OWZCd@126qvk1V>M7^qDIe^q
zkm#wH=c!cd`Ks4bdD>HD%Tx8-Qw`;*4)xNY^U~z;(vtAfR`b#^_0o0m(hK&|PxN}7
z=VegqW!URwH0@=)<z;g2Ws34LgL<3Od0X&!zmf2^RP(kn^|p5Lwh8vOP4u?Q^R}<`
zcIfqXoc4Cw@^(J=c0qZ&LVeumeB60_JS2QP)qK26eY_u%v%x;_L?7QgAHP~3|6ZSf
zX`jF?pP+M}V3ZF63J;-!hw{L~B;es{@CZ|QqzgPM7>+_F!lU!xF}3j6UU=LzJbnwF
za1KvI!IPlA$#lLcJie(CzHilh(@cHex%j3B`(`BiX6E^3)%w2g_0694&DrwJJ@?H+
z`Q}6Y3h4Yk@c0!<_!X)76`T5%xcHR@`;{g7mFM|Y)cRHS`c+N)Rd4y#ocq<H{OX|o
z^>qFXJpPRm{!MEB&8Ge>F8-~-{%wi=?Rowkwf>#G{$11l-CO=W=l;DY|2}9yKV85_
zo`3;~fI+o@A=7|imw=JrfYHQ&Pk8}jwE^S30Ta^!lUo5(=K<5GfEj4uEM4Gdp1?VY
zz<IU61=GMqm%ydqz~#iimAt^!+Q7Bm!1d`s)W%le=6T>2DsUSbv_luP%M-LG5wx!s
zbYL2E=n`}k9CVx*^d&Foq&DblZ_w#<(AiedxAUNLRL})9_+ee-2T$;&MDS0w;9sV}
zzg>d=1P4D1iCpIe-_!=*E}de+5je}>`*Rcx2#EtF#b>j<p#K<-OZJqrZM#35hUoD(
zK%tIdIF3@#{q*=d(`XW-d<v)C59YDA9C{6oUw*JmWIVO`TxEC3I+ZQ#^Me^DnQ<l`
z&FLQBzG*isS1J9e)5%Zv`7+H?&1(B!9E(*3twEghJ8b$fM7VuFDSw~p*Vr#LIDP%i
zwch4_^tswWk1M><k44%w)8~Ap#|N93+YxoeyE_;|_RJao7kGPAQA;|Z%co&)B1_QY
z+v)YQ<Czb9LCyI3Xk(vCetn=lyAe2DZm^lFaq6TGK~{p*=p~>2ao+54A?9(ud+}p`
zEIpAKSpVsoG?gcxFm)&V`*gL{<GjXO_}9tj0mGJWe?@P8o-8%Gn5qk2cN0r~Obqt!
zxxKsjb9sJ_s<Z!Hf2e^#i(FU@#^GqA4<iu1(zL=d8P*6V%8ghFqp)vdh@$ysV{S<u
z0?CMC$$~S+un+%ULWbB4TEv>+lrY8%tiqWR>`8z<6H9?6rbL_T45nmRN?+y_P7-oU
zbqIG8bE*Z45KEelfuhx08}qkT`g(q-YnBXiaean#NpmESX{G8}lHt^G&6+*FP<kkH
z#m@gYhh(VzabDmJg+Z<y-y>V~U`ju>57A@Ih!DxRAM3IZz7DEKiIn8!A2RJb*h@u=
zDU2Qs-R(h%`|E}JO8u+9PfP4mGk`$lN{j5(&8vQuitrj%JkhEIgA-?O+M>#eo)74K
z5+Gols%BF7ma}Od44x40xqqg{HqZW(8fX}tJAt5zq^03AS^nG|NG$9@-o+L_4Bxd#
zGC3ZsyT&O<t>+J;j=wjz=jr{J-_OeOAZ$Fo7*(m9AP|HX(NF>w<r^YdW8>|w>Y$|i
zI4||R|M91iP$=kY)f_K~!2s3ubev0Yl&g8MW<aqWCn8E_fUoT$5nRqZZvP3B6YuS~
zELGr7zy0Fb%GzI`PQ#Is_<Cr=KL06qCEhd8n{);LzXHpnD`Xs%_dok<C;O}I`#$RK
z?R{HAA^HUL&DR12Hwy`zR-0}_owDk%&IlGMuj0)5*4$ivsNst?+V^ey9f}DZq%pBp
zW|dmhEMcG}nN?$>!kt|j5IOcjC*_qj3q|3o;pI}**h_0qdLqSdB=R62^3%%Odyxy3
zcGcPZ9R_ufP}TFzHt;^a<R6XxR}x~s1Z8P0w+A9^2EZU@7cOyH>ORL`2k(P>6yMAH
z3RmoVC2-D+%84@E{8~c=2frLRuPeR<1-QaNW|$zVBuFrpX#U^)L6*ntG9e{WePBii
z7$S4Q59y-ED#b36B(P(kVooH0*k%!0*M+kdQUCnFUl>`Gr1(UX0sjr8MKYRA?P(VS
zVPc6mP|w34(xeXcU>jt}8V_NzFq4aeFftR>N2_`+{@P6yi<g-VRO@0Sb;Hc1&$MAO
z+}9v$WE<wAJc(t(EhNhfmwVb!AMcDdh4j08&w=I~@7%>iTU#`^&CAE^zpg@e$u=s*
z`X#FILtJ>M!l>-i&vIN%6L?xbMn`2DlHYY%#!q~dC#sQ2MeH-PzGNRGCXp47(N<&^
z@)^@;Xh<XUL)PGOek9hXlzm74z(fD(_!WJiW}H``1aJ;U<bUvx2QL0^6++MOik{x!
z-z=Pg-kE{kk5yKWRmGP6RUn6k9mj(TdH9<CA1>lcPye7oUcaJudH6i25TyqdLjQn5
z{!@j#HhisO?DlUJV&LrZ`d=!<*;pBF{OW(hkOwpQZx|Bb>kRjW)6@Si8$$nIHiTa3
z1O0#55c>bJA@sh@eE+r~O8?7-y!xLu#OS}<5T<`@NcyYDw*L)7oDp%(h&12-ZbJrN
z{Xf|d=d!i`ZbRtlQ|TGr(!Y*-MIZN|LSE6Q8!==!)0e%b|KLpjFB?MN=12cOZAjby
zn+-v_e2DQWPjUW`;`iTqNX&oo5a*>2um6LGc>kM+Afu46Y3cvPL$dxqct~-{0}pBZ
zPae|L)b#(KhaCI|583^nJmk|qJS6qsJY@7=JY?bj;2~X$1LbS~gNN+>4<2&6+deun
z`agNd!otGzfAEmSfANsx|HVT_|8E|0aQH7Ca{M1W<lyi9-~W?`h{CsJ!y^ES7s;T1
zcN`NYDQNuDam*D1dh~yE90Rf#evpTb;}}-;_4VueaMfH&543-G9J86S8;|`Yc_RH7
zPHX$;TtmtP#hpg|8%nJC!Kgb(z>j`YLPWsk?sCMsYOR&L`>s%)xJHTMqRm{?Y+{T0
zoz?UzjnVhvUVmc9C4Zd$chGP&%|pfU%31F}6~{gA`b*FnEwCduR+}5fW=mcNk>aP0
zST&Wu+2Zub2tAFfIbW%118rI<RZM>DArSPj+<hD`qMPtf#WCiWX8R7$rS`zgoCPBq
z1A6<UtpY<7J`e5Q$qu(i7xy$Rlhei-L4^yxTjWacia~Con&-XSJ<0V^1_DHCORv$#
zg(1bA5rRHvj}xP7ps-JKyb(^y*hHs%^7m3N60>JXBLst^3Ei8#rilUhh2}S1EJoUk
zj5ywhj$_#k_9BoDN@kgesAS&DJb_Zjwji0a=IS$P^!oB9xNzH?As$OH<TW!7`<Eg`
z?ZxF{LsMt=!+051PlSjEjt~ND00~V78{U}%7(C?R%u<ZupOv0e;ah;Ed<-lRB;{S7
zW7vHk4N7Wb(rgdrVTkdLaqlPX#k{9HXt&8rBFs!ymd?r_(=77LN`ibaLL>tvaqt<E
z!W2~DBX$XzA}gGVtA`udsv@%#91ilIeYn_sGidnS+GZNqBOUoA`Qel?Wgp_Wn+D62
zSavxuLbmzGG)sV3SXJ%l4Q@3(#Y4ObD-Cdz(yP*B=PxVk_>7((Hx~2wH=)eOM!X0i
z5Jkp@8}L2@m(oT`DKe>6E69FOl5|<zibEQU-~1ter7Z#?riHrpksgd?LHh87y0r7y
z@GL<PI%YS0EE<H_GYA(RzuQo_QP&LEpsV4P0B}pKiIZKFGNx5Ce9YMOIPn!yS`tr%
zzm$A{^HPj|EACQS<cSrZ3;|Lk3Cz-G_A|rrT-#b&y{cJG3XN<qThgY1b!QEo4RsM~
zow3k}ETtpqC)`dCER@=^4txRV7HI5H?Jn|H?`$FQRNG`j3ali#kSHxRCR~bCMwt=^
zt0cmxsCza3ceN0_n5^qme1*8PNWrWDA%w5>z37{E$w>5X(@zKJv_*Ggo_#Zy?up_~
zd>djOJp=A;<4&Z;tN(WM_0y9_!xDRsFft{BqD<5n9#cr-on?N1c>`*SNY%)&H9CY+
zLl#tKHm1TRPoD}(AeGJC5qnWjABB=QLBg?y`tSp=c*WiD!?CK-*9AAtlEK!hFl@eo
zKirM+;ncjIxZ$IufNd8VDR)@bb>ufJMkcN=3NNr<7ks_j`3Oe3hO@|w;-FyZ(s3F?
zelPE$FxQ4<@-NQlU+5>!9TVr563Dz#pbWFV3V}|}yhIC8LV}S66ak)m&oYmVq~sbw
zw8qx7$8ChxcjmkiwtPW0gA-%}qjkgAprA{AdGV(&6DiP6Jn_l_-rZ6{_v}5IzREok
zH~5E%(J<<-qsn6Vb}-PlBTz414hwDrh@8>+EiT0yic5GV|1NKMRx-8-Ry2h(#-WqW
zj558-N?bT6(X%_-eI}+%*ea(ReS7^R^j9mPd*4L{-8Iw2h1B@?u^hfqR~`vLD9Nl_
zO5|F&0s)mx*sW1yY*u>|m8Ye!S<TC&OpV9V$~OI{um+~#N25H`<){Srx{GLZHk-T6
z*D5R(U&xv6<a!|=5Z<||`QMF>q*gO1URX5bNBl&B8IPyD`do-S@k$AZKd{7D41c(o
zFZ>4Fh()Z96`;1UWmwo|#jS^mGCrvh``8mBR?nU$5F=52ibJ3pSTg$PmesyFB$V9j
zQ7UoNmjL^ua<fCqX3D-$-mo}5rDLK>n6VblQw+fmrSwXFv9)q=7seGx%9#aT(W&!`
zmHJ)KdNdLn!K8D&7sFuKIAHmek2AyV*5#UvqonHmQgLyYoaTR{_=y}4Pb}3-(KEm?
zp?_+?)FFi^*O_1INS#o}Ur&t}sH8fs6J3}|T^c1}0+Jp{O(^d-ZWux!E_+{~7j2O~
zbive+J7t<(74ba1eps4-7jHuH8Iu`=nkl?!pgo)6eFDLe<f>4@1%X+aG)cLUhIV58
z31`bqEV?wQD_!v2J9>rfWK+VAX|A4)w57HN;_dF4mXLC=Wf%TdZvMy;p=EvgHKR27
zo^eQ>Uhp}MLclLFZS1Ym8m#D#`^PECG_Q%n+pT7-{1oR=aoR6UX!^ny?6*T~U-VB~
z@XF|(nuICCxk$WepTV1Sb8p&MwP{BEO)xgkWAvKQ%K-QDez9-_;WH^#1(DulQRth)
zDx-Fc;9sFhbkE<>zjFQ|mCI>%nQ=*XDzeOTW-cU7+kg@oWpR`4aHY6a`9bH`rp6NR
zMK@m5oA8cg<l;i}ki-MsOt?*r^)R!IqZ9TCT_H?h$Ou61d#f<p9mh;y@!9SX^Auje
zrNpUY@-C4M&Q0NfpKp_GJOJmi6NmKQ&q7a4!sW2d*vpAE_eU(S((0;IbbNoVhZ^ZQ
z`%SV-pF|n?b=lH?z8fjQw#az;ScW{E0=qBe`kBR({pI`7uiiYw4&lqYPb)eVM7ooK
zTccq=Iqs8ar?g$~cenIMQ!!F)DgrK#G1hnGwlbw|_CkA^$HdDT1DYz6Ml7y9?P1T+
z3ydblUnJSvrhEwBpB;-ZyQCv~tT5Oc04&O__-3I@M(cgL+hYPA^D^YUco>=ymSFzz
zG-;-!Yw|<vI9!+kO6Vh)*S6dEd3sl3{6z}!)J16Bquu39mtL&|!Nx&R27UGuX=NId
z;47?Ja?^2Fo`$TyzU%G6s6@qPrm2!Y=cDQM?b7=eUq_6w8gUBzuM;XRtYQg8hPV|T
z&CRpX_EUXLpB<DsSybs_k~zmH_nu;qPV0M&(VlSB^qQ5<g}4;X@FXQbmZR6T+T-#Y
z5E5X{m+BnWX~I&irhqO({q3{F`z84xctVHW&#=0m`;|Kv(iQQR_n}>kB}_u+Pk#76
z^Py(E%V~N4$J?fI;);wr?sR9#;a&F@<+rO42x_i4gk}iZd+tNpBaIB!eRr5K$2JBF
zKIlop_74_Vtd;n^q2<H$H8B{^P5)5d=*5wH;5%b&X7oQW%Wf<miB@2v$u8_D5U)V{
zvyI9YGcYPZM(|EsTM(cVMBteVH<M|W$OFW-FjA!QC>BiEjL_c|29<-77I3n(_;p8F
z`0Y`$EQ|5l`r{^tlGKO#EC$#5gtIUZR@6OK9u1GsBwWyjo?wQP?zqY?(C{H>^sogN
ztzmS6PB{Ih&?9e#U(jqp&}(=A2~5ym)`h4Qup^h5_knHkx#auMy|V$D%)Pf-J$NGn
zGNeL?kD$+fM(h>1q4UC_Z9vL9MmyA~JMMQkI*TZVey{sd7p$@%07f2~0W7?Wa*?M?
z3%3r0`xhMhx|9LX7Ke?WLHOpRoFk@;Wl?&%uu3;Ch!>QG4Ok%c&k=N+)`Epd*~^lW
zr6&hNkTF8XkpmiW+DM>!RH&}a?{j4MqAd{<#*6HFxaC!x+%Id45EU`~;3nB9xeTE8
zd1N&fY#o-s_2SKeEvyv|doB2Ku2rZK93vQxBp68qqx+1$@WGr@M2?c&C;(p|)(*)b
zc<GFut#Mg@poi&++~(0V((X7RD&*1rN$&uNR}!l&RqbMglTT=Ao1Z%bc3w~Ai=Kk+
zW*iPz=s)&38rAb6bNh;dAalrBxuRjb?Nl@=sqFnE9mg<TwnP(>w+#KMw!0~4-&1|8
zQ<h$&0Xxux3swEhH2v4=M%G5f$S^$x;Ce2)crG%YC=uX;Lj@D?Lew|--jVa^OdZAI
zxal9eB`UsS+>n8CS;uZX4$FI3!nB17g@p#|!?KD6TRma+z6wd?dVY%VL%6d4N;<1~
zvbYZn=W!ZVK{9^1o+^b&M~0n=e9GU^Ojcx!=e2iLat7Eps6zJbW`t3KD=Y;|#a&9D
zj8B}IjI|~jwtz*2)yK3oL&2Ub7@HAi7X8-mS$6cB>>#<wUSC+huT7$2+HyG{o}yHU
zVB}mv1eN(~qI6TAQ&?5HMf&Im?1#a2q|{FB-aY@7CAsus+csgtTqh$0`jD<J0U&fq
zxu4n-fiLluAq18-q>XI(K9RY&9IhG1>FgH5OPPSFnZuPY#m%R@``1JniZMFN@p-J7
zBq1sV6fTnjWW?LqP`|8_(fA-pq+}FLotu6Ql8;^2)bLLN$7>%(wCq(9R{k4S6DxE?
zIN{L`G+GeR)gPEVPQkHM5s6h%5u!+kIZetBhPACzS)aACQjF>5jt=0bGvJsgChbtX
zBVv3jXp<X)lL;lu+UX~;uK?hR(Um@MxFRi<nOcn&bQ+Z7Gh9Lw?H@E+j5V7uAw=!%
zXA^_6Cylh%+UO_wEJgE{<GHq!tiP~y5N=uVVld6qd@BRkyNp7XRR(8S;;Z&R?$r;s
z@BFcEpq3}WGrTluN;IvKDOj0>W#vgTO;Jq-mCF6NU~gUX&kT*YRVr?k?7N^6j2Ax;
zxDj?*`F<&JHx)KRRZKst*tDwB-Ks`A9*t2_B2S9<{Qxsz5TrOr_POP_P!!pZGTW1)
zML%t@QYm|i)j3XpQ$-jfJaG?~r&gV?@sY6cm;4{)VRL?AJ}o)7kV1%Ib+kcXEoJ%2
zv9O~xpa;~U$G*UPQjuFx82YJ#fikP`CNX`s-rTDW_iMckWqrDSJ%YHB>_cLc)Vp-l
zNFgtkFv)PW5LKg2Gv*>#@dJOY+?NWv)nq2(rW$m|g4HCk_Y_ZWYY&8*(OqlY=E7vX
zjk&(opwkyz-&An;m*qv({uat5Rx-V4_cM3UI*@DW3VFvKhFO>-)!9-;m{s>7I!1t_
zC2TB?=xf6idToesE-H!8z_$(Q?}7tEbAQ!(_s3|Py#cq}iA?Il>QAV<9Pp&1O{LOZ
zZk*~V2N0zLMH+VK+Yv~oRN`th2(DGWvg#-qZ}K%vPnYVbi)|}2gxS92gD|&EHMVkg
z`1RdN+#~r|`Z}wQ;w4ywTVp%D7@D<T)g1X1-(w>t{<L#Fwj*<Zxqr(3)nRsr$|z<3
z(A~)fY>a33yhmb|N0Rh=9#vR~el80fZ-w8+0#9lYos?Vtz=Dvo;fuUvyGBlPO?Yf(
zXGep`*gImqil}5!K36(I!)~(V*oyK@NtTBvaDS>|MdB;KlQh*xI+CJ`SP?-(^;*Z4
zvC+<_wB>adpz*QXwilc4BLld5cCGkm%roIlIw>FAaLwH@qYmorZX}gK`Y<p1x&<9J
zNXj=j<<o+h{2qLi8<o-WERJTkqc-R^?az3EfpTw@<=|N?QlFuZV1>q0u!}7@Qp370
zCAJTb4~~D5ysub|otzOiHbAm7P}bI4s`u7Gnnc|Z!EZRy1W~ce=;=o}$P^9}<Jcj>
z97jUNvo9-wMEns|mQfb-0l~N&p#X}-TQeN{)aCc-8{f^iuk9Z{w)Ze{-*Fh?iW(y=
z7@P9>7$3?Snjz6b?fdBHsXoFGD`O~ay+)@ZPA0Y&t$&QPK48W>j&v4TDjH8`4(hEM
zq{VBeUu`d!A+hKJU?Y9mnHie$N)UsgAjqg|Sp=?7DqTTG^;-X)Zy%U^fMINkq92Cn
z1lq4N!*3WNR>R-Q+^*s#KD?U#S~Z+>-IFt+b;R*Ls;CdEKeAYvc0>C;FdI<YF-{)G
zs2G6k^r0Z#cvq5{i`pJRFVF@H!Ld33tP9VA0$P4snDffe7u4%sm6M@?^`XjwS=-Us
z_6XL_tjN+iq(iJfUtqV>UHuQv0owO18yHiJBJcpXHed`8oki8zBPyCf%Wm^$j-ypy
zeWr&zpU@Ef?KCkaAZq&FtCu~;h~7#*fYU6^L`U`+hhg5Yagj7R(#C6%IBii0cL`4=
z%}mLsan$o>)bp5kwlp=eBNMR0ETJn+<fzD%Szp!=^oGDzrv8LL`aMm=0M6omV}J6f
z%g?zvKF4x%1UCf|Msp*aK<eaYYm%X3`H_<Lc3>84|CyoafsLg1I8O{^r@9rX_(WE9
zVY}&TZA?T~ExRtQKWs`2m1ys(XJFMm|Hip^q1={<iUsgzo>mroZ1$?)JbUIpI*kU4
zC*>2bJ}_=?$!)A`XT8gWvO-PLHc9$7edIQ=%r};u__IZq7vb(Eza7<bMBDkvr23X+
z813)-+SM{CjyOu#{KR+{X8RohfO`ks)sd+?F+<7~yMFukL~I7bPJmln(lfw!uK>qQ
zKHjQz>v(lId%DgTApPb@o=YKTvlH54|Hv6&y57JDsh<9|OUn&Bt=W_=nRgN0iWA!P
zct@cwHXH?W{d%U0n`=gpu;9QK@g_2)Tc?wH-fF0GV=iaCi!xd1t!O4knh|)Wm`m7(
z)-ljYMF2A%8xA84f?AjWxJXY;aUc`x7=mI@N6lcF=s5krhzk)sDtmK?^Zliq;5J53
zIKBgbm4w;Lw81@~DXI+sy!x)Lb0uAe(Q_6HzjV*Ps!wfms6{YN^oe}$*lB7z!JIug
z!Ye42)T>I6q~*4+#+*Rw$7D;P+c9Tp_Qxd~06EDz4`%N@7eA|xpX<i{+OV0EuJJW#
z@pA@@0C6Io!Dpy2bQ%RSe~>WX#Zk<VZ&$xgX9@R~va<#QVN8lpcWGT}D`<V+;c6UE
zE9bu5Ln@|yg8HLh?5Z;?4uZ6hE*jbqdJzm0vNT-=*$0hor~uG7iqV$<1HA>Rt{a=d
z9&?<TX!@dk=!`5*H-iBhmCwrXu(1|bd~h32(JBixMtNt5f~qh@7`$1OQgnHFF8N(l
zo=bpOYxPxjwTVr?a|Z8b<bJ97(}Z#**m-03?kyp2`0*v*OMMJIpFw4`N=0HsItJK)
zZ$S++jlf<zk2W57(@XkQ{db7R@4CCr!mAF<187AFa7?T9%!|TNo>mMbfkHsP_9;1N
zV1K4uWAWX?P&vaa_}z~Yk-78xw&J&anx;={26n;mk&H@Kzc-fKl~vPK^WGKJ^gP2?
z*ldgT6o#mySv%x-zc0s(=ff|a>0jTAOiX#YMpgba)@tHOS(A@lX^z@PC^rbS?>_uP
z%9OGaY}J;=`-l;87hQW7f>H&>-{zh6T~QpswtD{-yPRV);AIsN=BmXQXx>ND-J1+1
z4L^o1O)IXt$Ys^v1ys&xL;uA?^k=rE!f{BrEtl1|C6F){RqYWr=>hf&R_UMVj%EqL
zf0%)P<Va5Fz`dQ)@%EBj!aIzLuKf!$xeV0F4u$%Ut?ai?oCwuF5fzMQ-&+#>)tf6(
zdy8eyV(gu~6JjKE&`qImx&6*Z2=(cW=LJIXEnxv6rf(veVw2ilMUKA~(?pJ#3YzST
zh#XxZzxN!}X*@^G_;~#>EFzv}nZbLwyO8TebHnijZ0ci{#TD7n9qLvZJ7Rp99!xjq
z(<?qpyATJmu5i?s+T@p%L+%fKF-c1jj(9^dw79R`KQ2%me0N;-WfTl=_xYm=N4(p~
zKDoE$E<^m58^q#kohP_7u*)mQHW(q)5_x$<R6zGOA-zKi{p?<BcXJCB3_^e8Dv5^2
zU)RB9qLGv)if<3b3~O<<3Js-)M^r}Cz$3D~M$Kh0Ln)UB(LhkpP`dkk`S4pj$Wt&7
zMh~#?y|;Aa8z2z5;~j)W893xKX|G(6XlrgyVK9&|9}I_3x_;ycm+spo<`4mEFu<@v
z8VX=d)ME$@RX!v{v&E7v=4n(1qe_IbjD{?!akyIndJ}wz%+`b<LMDWC`G`3ZpDiR+
zP43zf6E#v)^n>^bO3REy2LH1(Fv3c3fz)}yJVK(hG!Qympfn@-3>GJ&-mgdQ349El
z3IB}X^j1u!*4Fom3uBkyvjW7)&~`XfGdzwF8sR!@;hf?)LysgU@cCo4H5o8k!d;8q
zmrQ6l7?#w~g!=oO%BlC)!du$n3pi6ehhBxsNNN|jmjC?y%C@+el)=I4Kwt(+`16k`
z0-Y3Y7K-=$$}F7fhR-~b%A4GbP2C@E5%Z+w$|COB;=g#v)tjW3q}MwU^3Sg=qY|!1
za{V>DudOoPyz{lra%j1>&i25nv&``qp8?rGLr?RR1D@a57NzR?*_FKazOnlTkMui1
zEi1cQGd!awing!m{C(q4H$dutT3F0_dyKxmbKDcs()P8qaqpeKbH~?~Tj%!4;m$+M
zpRo$L_9iP<G|?x~Z(Ih6^#a_6seFvgy6NOs;v`aq_1q_(Ed_W?iRAg=X&d}DvV_Tf
zx1yO}a2r~lHT3!W4-X0SUUg{w>;1q(0)009|NQmY4kHVK@5Tz=!}nA5f_x9(``r5;
z7p4dKom95o`<*r}1^IvL{B!SrF+dg^@MByM74UOTFF5e`nhz@QYA-!F=;muHD(LQV
zDLDB4_RqsF5KA3_&TIxIfJ<Vqs)yiNnxWHNNkZh*Ly3#bFuCAT_}1!SRQqNqY_TgT
zAW}V?iP;=S1up%lL_Ok(r8%DQl{ERVdgQYra{?#$OX@@QD3N`0XyDaLdMpj(OJ)mL
zJY0sERU`V9r3G=$KRiSuMytqzq#7>EX{`}!xNkw$eI?5qsS)>v`3=P+T#mm)Bi_OC
z4b{e#+>2q21dpOOG-q&m(L;?y|NS>~f3M^vu{4vym@OFyd=+F^HIrj4EtzPp6%^z&
zQ&Nj8S-5-^m8~^X-|t&K7Q0qdkJNly$ZW-~;;W=xqM24{Y4ybTT1kIc^Ic<+6_=Cm
zE2Bfr^v-=Np1|u@W>{Jo1I*TZ@xIEItXi4lme$X5u9a=&w6f-ktOcr3zABE^TJP8P
ztp&TURa_&rviF#6geH9-aspa8|L~BFYgPELR_<kyjo6v5TEL-J-tE4P#NTT*1eSI_
zI*Y9ofuDLft9AjNmF-KK8+D|d_6Oo(TUjnYjW}!VLaGB>d9fRfq)6=|CKfwI6+g|l
zCECUR;vqMh8N=Eo&x-9-ocy%154B504(!wdZ?qn2m&;zV*lWc5X&15Tl)tjF*UGuk
zE|b%#&?>gqsrJ*Uvev0IJh0d6zR{_R)Tw&I;_!OXPq(Q=r`o~F!Eob7w{2Lb#-rH5
z_{>kQ>rkiG|G>fY?~Ps`mTp}bi=+8JJcL!ZKGw?d4b81SYE(|QA+^}iip&4?gtczt
z`vXTCvD?=(k-ANVEKYVR{s!|Uy3LhVP7cPm2Ft^`Ese!aPEP)Y>xa6nod-@XfwzX+
zSbA*(EY5E6{zm((dhO#@&K^0pM#pk`9dpIbUe*4_r`CF%YX{Cg-M7XUk$PQwEH1v2
z{w6<5^t!)Vx%h9~np_R*^;{Oa1fKbu-W}@o-X6FF|GhN@Ve9w(!$SxH%rGA7_v2Z+
zhSA)aLFDy65|_9}a0Qs-+vpEa9lAz|J=_XK=?^lox<#u5SUf7#A9`Z#7HfQGK|Z2C
z{H(++-YMV>^^yLF$e~+e;N2T~?AN0&S>2Q411y;zqh5b{W$m7tb7#pW|9VWT#67J#
zz>3r6^|;}odwTbs6>rq*i8rhsnUew5{H3oa9jraxZ`@hG7<oPAQR0zv7GNWK^m^L=
z&?9dx4umBsi5<q;L`dHU!cfMa3FZEo56!Wac+Wc%U*cH+jjvPG>-e0Wzz?Czw^Jv(
z0b|^Hmc0}^QFW;UmstPGrvlaKw64zAsy1U%&^s7C>yvC9_Nw$UcEEYpu~aSBj0hKV
z)FPu=Ca~mhFeCtj1=dzdB7Zkfyf`yQhpctCw4k--oZSb!U)y+|-!!D+^ey9dJ-_C8
zJ0|?p>+u@jMS@^i+S#}J?;V>xEzv!HoK8&l9(*TixLF0l?GW;ZXAwKk>m})wtNNVq
z&UF~Pl1kG}S4}kd=P<nR+zCkV$)2HGg5SwFpG0Jf&a>3!_3CUMBd7)scpiIByuKIr
znp>a2`6M*C7I^vRi_sho%&$0vPy%EA7Q3+TAv~YrX(JKx<(K!(?2_Q6-AgIKd;O11
zPTW9Ms{sMP5Cy{kA?l7+PtLyj)>?gkUZZw<gl^YaK0*ld1Z~rS%0w!UdVXIz-D3BZ
zQOg{{Vw~tO)+CZ56i30K!9|Q1TUd8DC4bS=6pBuFb?;jHXJWy3Z)oV@vXASGeSfJ?
zL0GS&B*bCoQy#glp!{wSR-cb+q4>p=399=r-u2tE%PkJ|)!?R92o#i`@EgR|_RZ(~
zw4co6XLf#<R8Jtr>Hq>0MJ~zln=pAFntvYdeScXWAKCh)=<6KeecezUv^zEIH!p(`
z8g0*yAL%X|21gJ&RhPeZRGnaY>g$21Xx_fyW5g|b^WBrY?*q;Kb5Xxuw)7JBf(D~Z
z`6Myc!-EmvZ($I;pPg9Dc}<1wwNwbApCVugIC>co?AkxGCh}UOAGS|h_M}6)vLmET
zs+|g<hlG%Y_Xl5LfRhAhs-({Q`{kHAT%I7n^w`J?Noc@Fuzp{`OX=^vl5v%iAv4nI
zm0&awi0v&TU>Ss#B)~l=eWoaNmRu<H=#e1gMJF;tVtr3g0H2P9y6J7$OVBpL6bI3W
zj-Zrm6T#0*5)n#aLcTn0MxzJGJ0kus_U`&C>PO%E{xCxfIiI1sr9ry8yF_UOrAta$
zI)*Muk&uv*kPhkYmQ+eaN<c(ZVD8cHKKt5xpS@39*SXJi-)HTAVAh%+=Cjs(*5mzp
zV!A0BYxK*{)86W6d0ZJPH~vQbik6dDEanbE=deZhu%DS&JX}HP4j!E_v#7{ZvF8B;
zcl+~{m_^kU5hhp7rnv)$r}Cnj&1o767HfHFUy>eBE1!K5b?Fne7NomREo@Z<kBS?#
z-N`faYBHyeby93{u2MdB7_dlFngFRZei=Nc7_i_R0L!VE-BIzB%y+43aK%gZEpG4&
zR5=}Kup=5W|01v5r}EvnK}$hUX--9hN%a`|7u(@~7BHAtSQIq$q>LP>fmCW?wLgub
zN~of?!2cLUrPXj`Rldif<%rrv<<NIvH}U<qcTrIdYfTLk4OATA_bw_*z-XF#{vlw@
z9G(94F6y88i=W@)|Fw&17V~#UQQ7<|e~+S8p+-@K{L4|>;eRuY`p1;GiC_HRT}NdP
zYZp$PM$LyymF$~@X8#8VQcW^{52U_WKuwJQ>y1=@RMTqe=btxHpWZ?7m;XD{sK4zC
zY8o~E_cZFiYhV6q8ufqKm*&N+s*!&*jhZ%cgjz{2>tFt39Thc~{(n4>+VLMBNc~Fz
zvp703H#xUBJB|`C|7su=`F93V|0H1kY9RGr3mE(Ee<WZoiT*~wfc_+4wEvZWF+~ZO
zhV%+KnMaiN-)i*a%#j=@0W(GThk$XUf7c~0^ziD-$KL{`>kk1#juJ3}mgD(<5-=(M
zhJdmCTLB~Rhk%j%vw$f>2^h7%CtzMVwh8_N0ps$Q0*3D&3YZ@5e^0<f{38ML^iKk&
z_%8(vAzAd=QXX32+Ajg47rM;!uLO+sZvi8VW{MuBhh}z(5->c!1x(=UQH~1eZvkT<
zOZu|mH4eM)F98Fg_$^=nb(DbV`)dIcGOGXLmw+iS3(*6L<9z|rUjpVSTRbUBz?7Y%
z1WZK%O2Dv_pNF6XOm`SA_iq8y^e+OYk@1&+p+O0lkPTv#ruijcUJb9H1PsZ)2pFSc
zlz=JyC1CR6D{%fSU_vOemj4hiFJJY-iRC-Bzn8-yCYC>+mP1LVBjlJ{y4i?O8bGP_
zH7)o=9(H@-;|Q1p)QhD?ogs%sKaU3<1M4}T(v#n|?k0V;qp#I36>Sj4@-p}AX(eA9
zv}R<R;KlTm9Bjg2@b*yP)VT2bj^s&ob38rB7J-2*HV?7X?utZuHbCsusF&Q0!N)qC
zU8S~n0m8mSzM!!E%DnYSMX~nFH=FnN-Oa{y1QB=b?_GMg2x&U)ecKF$x$0Tklkkph
zBIoN7@`J@ty-y|-Ug4VsNFuEdoNZw*Y;Tw$gb&--6L#GQ%<{5jrVMy=H-mrH$Dd%q
zgHeC$0<v^J7mP94SQ;@}gKobXBN~#gY(5r0!-+Ya62*{X(S2X=R$*8TW0*g{_9|W)
z<g#f^TuPbw9fBqAMP%*sr8b3TcLytlL-qL4m2Q-L?F;<S;R5ok&?!(qYhvhd$m8Ij
zgEt(Evf~U}^!6w3Y?@L4NElBjfO0NzDzd#+x&rTq*JZ7XZ_x;i({ngKmoX6y0b-LQ
zpnRK~NZl;H3IiPkvW$K;1N!t0O)=(y1LYI&PD7|Ywwlc}p3F%hg}*AjE;c)ePcR(D
zW4lY3%Q<XM++8#_4xxG56EA~Tn#|QZ6`ys=NKUa^NYn9%_F!1Wc8@_pHrthf1dMq#
zFPG@qvF+p4@SsooDTQD1Lz?Vz6$b9Ju50pcpMoMqIpUMvz8HOm2h2>gx5EdiDEp(c
zPyz=1mw*{`F`UMu*FXsvHk5#|EM{Ur2^h9t0tTP!?P~&$4wQg7-TwSrz}VucHQYxD
znDl8E50rp`;!}vA1dJ_8zzksu8K49V({BNzZYXz%{}%$LY8oYASWyCIf*B=X7=H<v
z)PE5$Y^#?^A{MU;BF<IO=urZu<2IouuH7#IBW#NjFyjx8fqkh++TucpR=LnEj*+S?
zL4og9FSK32({1LZ?%+>!qA#JcLbM*B%l3Fl9Jyq0guKTVo4F1?KgqaRxE^jV9>1Ai
zp?VdIm*y=5u!6`7WBy8~;j(|{Hqk;+>O5DVY|44gN>9M>gtn^^)NjQYrbNw*PHls$
zK=F~XL_LPyOg06bkAJd0@GIS{s54q^NKY;SJtiCYT|1^5dg4u=+@jO=UF_6_F=wGi
z=%03FI^CDr2f#}6pb5Fj75o7tydU(s?1S9pzF{~>IM}6CRk}nJZN+Sm5|>++ix)Bx
zAA#l;3+NMkOpS8p7tVz^d=%{#0Tp82Ep}7Vlfsh&Fgt{U1!)lA<L#t(gy`6kXJc|L
zgo&<;MZ}t8tcE;kcnm_8@tMo3L}yDYq0ATj7K+e^Eu6_;cc<P!LLc3PtZe)oU!cE}
zOl{8pn#n2XqzSK0^LF%){1it-C4sV2C|0T!x{Ol~pynQc&$!vB+u}FAp=aVVx}Br>
znEtb0icdSP#XLcQ{NS6R3*by_{3?t7=nC^pJU;uiM+xE21zh>S7Nam`zY#14kC2In
zlfhM=ExQ_2K3v!jACvna`?2e0W%do{B-iW+JFP2~DLJFBV-<XTDLi9a(Q2vIJ`#RW
zTzkrHvWQmIlVi!Fibm}}{Lz9X6|?n|AkNut<Z$*RDaEmFdUBT-{Z1)jaX93y$8I=q
zNOxU(tYmKu$_Nu@P;lk4)y9^0a(!L#T3Yq-c9h|`QO2C7FprdlAmDHVnS=0+XAv>R
zkHteQN6smda!ix0er{JUztOCO%g2osA2S}EE6X2xX79tZ%UFWg4OhjE!=FlUVvbzQ
zH@yNLh5rn+!E{K%x=CgIyusgm!=neeXU+Lco4e5%;h4__Yzw<N+Q*^<OwXSL479&J
zFgYfz)e;v;;oX~*`}X?-HeQDN8^VTtZPN5-{E5>n9TQ=3W6t6X1UKFy&$G6aP1o!w
zM9zBZoPZ2zYKgP;Z#K?Be+U@k7J0>M^We+DYV!LUC;>xx?U#!ZFjHEMOxmT}ZNqo&
zBh13MlU-@47(7|?_27BH$~;73jR#6RX8>5XqXbM(zuca!4`Syz{p_TeVj1CO=l$K|
zY~i?__vR0(d90OEYM>uJY+uY<ygOaoEo#M{{E?As%770&ZC0!K+WdKKc;}OC5v*4~
zw#K#(H%0iE&-1Hdn%Os!PuC;Jl>KKit7XK<NyjR}hxZ#!>Y`;DjnAc>TDGwmH8L@g
z-o$i)ov@6P4{uv!jr_MYi`Z0tmi&;X)=bLL558ISfvrn4WSs9xoDM{Il5E;Jhyc89
zbTS!EZr?l!eH_sFeAk)*wOhetgziu)GtVAN)ej-)r|vsG;{BxhjUoVG4<|xsG7L-Y
z7GROd1*6~#vv*Lt&jY`0%6crgNNrfdkTWdHpTs>(NXh4w$S?a+R?Di2_>+CPc^T6D
z(QW+{yo5@;qKR<Z0d!a{*md^_4E<5|<(UY`0O~;+8rf+_${Y>YKo$MN;j<t8tbORx
zf7=&S?R&2oARr0l{|Mu6K-rg|@SzagQ+sy(D9%iP?i<4?@*bg?igl$(NB|Tbx*3hl
z;PQA_=B}ceZAP@@a7=S^6xOC?^P<+#5MZ0)_Va5fR%oceu!>={?ze(aFoR3YOSeKJ
zADKq6O7d_nKA&$s=6a&hegf8USW%FW*iKQqkKbU#su8o7aK>|y+?04GM8b2C!1Yiq
z5%PzxAH&V+Vle6)?=J=BlO=*T6Og3<K}M9VJ=~a8!TBNz#2P_*dbf@|>Ss&%lxRE-
zpU;#bJTj7Y+ZVpOXXA9LHIl{X`8ElC({iVoatBJ7vcypA3oJcN!N*R4gzA#8hc(qX
z&M7M`?<EO+hyqS&+e1Yd#DE11MAVLCMs$)ti8FwVPNYY~SZ$?}!_(Sl7{p@;&Gh1E
zXN+k5lKN2HhnY0{vs5tJQ=!MHb4KYnzY&Z{Yr2WCu8Fc)0bBUA3UGNRcrPQexg-&V
zU<kgUM$&ZG^)kpA?y_da;pip1U`DggYMs|UAgQCwf_izB0SPuR(Yf&SG9WAc7lLti
zP>oX!Uk@ee7C{X4X9hVCl6~?db9XaX4kcBM(Jgl)v~;jAOvU?_-R+y?jY2SWS)lA7
zOh5898?$&fcoGW1Fc^_B{6a9bG4NSTDvUo6OsGhdYW!-}Q>6v|!I<0t%%~nec%Si|
z6o>ScY(P3py)c9k8!K`GDVDJ*obz=_@?lnDA6b@p7UOww<_Y<;FtxNCg_w0T=gi*%
zrWl2h3-ZPs6qGY^RuTAvd$Ids)RifD;EDp<nVeK?n@I%RlHTd^JM5Q$!H)UK>S{&d
z7*h@`3FdrmGV|m^8xV^@|55mDIPw>N(K9N~;xkjakLw<N)bhB8g|Ror+={X2(U!Wv
ziOQZE56=b~J>L_$(5Hh4S_OZ7B@P@F$JBOcF_|8yx`7gCdv0a|5Q~6%+$fSk8M*Ur
zJAMob<-o`9h`=4U-E2m)l+q*Yq{&vwXrDZ;OePFVomVIUL;qaptF<#n*lJ4&W)F>)
z$(_eJB`~C8{2%-!l~UM%Pbq-o7k{B&F{9baRUnNKaZIZoxhH7l>+&)OJfjw_7XFYU
z24!E;)M*++a<Iya%EV<P+DL0DD>VyoK=*#xmzvQ^Exup&rQ}@X%n~Phxm3fk^!uLQ
zFo*n@KYx!uMW1?=hE-KzXqowsSJ2ZENQiFw_ws4SBy)`X7|K_DWCe~mFE3dV?b$O9
z_hX$ZGSEXYUZLO%y7+y+q%*bf$q~PgZ=ZuH6Ywj_4pt=5I3JyuBoq|cViwk1ndoMp
z){xX?ySBb~RuRlR8chE4E`DWP@8fEqj^PTcE_kkjOg^!pCyy+vk|RKr*!z_Lvi-He
z0LJ2}YGFeyMp-TCOgUa*ecyaN+j6qVGYYPQR~su05Qb{EF9{0w%m=bEH#45|u$I~K
zy`FSbjfyo~*Aq9wZDJj2{3zmTxEOX>0Wc(E6o$w(3zx}KH7E%eMYmND92DHGt2Nm#
zBm4pT)SVtC(egC|aQWGk#n&`ESU##+b}PVzjPI9yaU)Inrq^O^0ymJzBP|5+=2T?r
z!NMilOi=tqzcNE4$IQ;`Ot!6f%&GEwaN%}aky9IqyD*8T?0wTa-Wpkt1K_@X?YENK
zv#c^@DBBt&TABiqw)Pv)S*!1H#N0#!4a2Q_`}RosI#RjJ!~JTU(jY%%MK$Eqe#I2N
zHdfuP5w<@>at{G$yzLMvX^s;w=rnB%j%oIJCQ`Zi2Fv~V=3-|_S%wi>Jtw^D)>uok
zV>K10C!NMKXJ0y=ALdBjHywu7pEv=HZwxkwS|!E`l8-&!<jxkg$*gb|s^1QV+RxO!
z_q9ww((+3HAzBMb=`B=y?TnzI4)mBf=#XNmric$a|EaiW{pM>-q}umHe}^p6Ixl^;
zPH<@d^Y$iiMGK_v8S)}8T(kyDFKRuu%Uq-RBH*>9W(`?yKgni)sY<ui5{>8EcJ|Ey
ztizTE9dVc_3X=oSfA7Vt%Tl23a5C=yIMlVa(~Y7q_X0h6khr~Z8i0*&4|M=9Vw?zD
zEhZ+gVZyWL$0a<Sx;<5RgrTQF`s$TzAjJW5imBw_W~GJgX=<giI}=yb8MM=vl9ph1
zv`lSK#F@o@EBdm&cV^exHVvc6Cf~Di3^G=HDBiUPAM-Qw*l+f-<pdB*G^JTQ{aiIV
zP1)FMEm}$>_8kE5wwtvzOHV}IHniZ#*jgDIZbR-lh%ppPT~VRoQ{q{PUHFJkBcDhB
zKIRN>A4yK>2-<!Kr^^(fKApO$9~&N=qGT8?8ZX&0d0O2|g6j+z*}twl6wP#h_9%O7
zAA8&y!KhO;VK_50f;9{N0gI3X)G(66?Fw-9K-x$$%6+R0_Ui$K+~#qI!QsRDN`_e*
zgo*E$Y=!4c2+@fV#2nq537VCOOJ}n?3tBtQLnuD#Yi~ei4p6*`=INN++idleql`0~
znrQUmry;xva9rw{M}u}_=tZe5X90Sk9Dqdd%$@cXpzvIz0qt$#RckU<XVLs(q2>VG
zJpI17546o|r^RcpU}i@zsv{e)`&vS$lE|(;W@eVp#O+PUHa<8Uie2aBsx=MC2EI9q
z3Tv&PmA~+)d@A*19DBbWlDsUSbq|BjC)RXs@30W}H-&+Bta7xa>bNXqo5Fq5R(zwq
z>z`!q*#L=efMk3h<2O@l83tQ!Ss2Iy;WDavTNmKSpcUE!;;N^-?*gnHtxI`EgI)Xy
zXryC>g`fjZ1Q{1O4=v9&)KARe<Gw)$F87MX=ae8bD2q)zWHYY3Fr230iH4r~M78b^
zmPM7G%}{OS|6)<W;g%FaQGb(68q`-h`zW0P>;nMO?~_6)$R^1$XP`-QY!o6}U@Mh4
zlGQ2WA!+kf94&yV)0rlZBB5zB*xQj<iJ95q9Xj8uiG?*`X^<%G`-F})h&ep`8;srJ
zR<_=PgR_>{{st6n^PGOue<>Jy#=3aekoZuco$OuB@G#DZ3%mCYR=CviFp0Ay$T<&i
zwU8EA2=O4;2@L|Ud?^@^Dz`FNbg)nk<^;2v*(E;F_p<CGJ-N7x_7bXKK4)KxsRuII
zkXUvR=4w>HKtl_~z#0vFBO66gbr+ahxHs|J!Dyo#Os#~S<2XaSC@1N`N7O+(FOJ98
z11!O<x(<^8F2Fp5@jIN>gH*gEgb%OwUN`rujCP4sUhOiiD+<9lMjo{BIB1jMhpb3v
z!A(_2j=q6@IT(;|Av*l%o6^zZO^m1Whp&}um~yG-^sEmC^e#?t!jDI=>l~R?=DznS
zlqFgu2;tmoJcPJe+6VEX9LyNOt@^njH`?B97vQ#~_RuyjL&lp8qA}zsbE@|#1@d{8
z`$M~1uqY%-!C2zPrWXN)CXGr!9oD*N;B4lpI6Vr%5PlK34+sT+!3sS?EHG;goHc(q
zdo!#eHU7yd?H7XC5O7F;N^qN5=L>^^;m$qpr!oiKHQ9n_zUn~US6EMfglM|*J=`s*
z-o<#tMM%-b^L0s&jTrS?cbu#oao|U;FuklE@0~)(=kUUVT6HHmEUT+IuD0#e+lK;6
z7pN=pW%_TJGZ*$4m(P-x5`(noiz%G#fLI;n1RaUw&vjl^N0gh+>K`<_wlPyR;tjL`
zPu3ls_h0XK$yfykdC(`1EB@qY1RiAMCw`8Ixwlw71w4%^B;~Z3jJ_wynTC;aMc#Hb
zhiupUK0=U~uSdIiZDakT<~~rHthNujJSe*LE~#+iy%PA%{l$ElXT{ea^3`sdKi!jw
z5WofYiIvE8Q359X?#A`QrIY+FYfP7`cGgYHFkj?8{jYPs-f)6IF|WNO{hq{h*=p<Z
zWa~bEA56<D*61RY3@(WvYxc8S3TbS}@^S3c-9d1DkhGa{t-TziIb$^ZA@2uup3fOK
zX)o<dLgT6ODJ8`(Hu?jId7^|&Yn@k{In8h4#RQ5bG7d`z>m(ZN%K|lOY<zPbJH2g!
zPF+z&*J3I)y38nRJ5PgZUQI%I2n_u|CUG%+y!~-*JZcC+_9*YMdp*PXH>8c}NIho<
zsT#4z*L@dWc-y0KR39a^^z$_9v(!8u8vpb@&c(FGu&9_!vMZ{+Pk<>V_7buxQxjQg
zymEH_YH^6eXE?CLvu#?A6!oST?tS(B>*tT}e+!uLDG-kdpDu}{?1N48<Q7XCa0I=5
zNyW=r`(OA)?^a|u<#0dv2JfW!7k-I)ic7%12}`C2Mb`G4Y1Z}P3ar)k!8qfbLYQ=0
zYf0|tc2A+x;S<{^hokTddxre*3nDg=&001%y47qIysD}yL{}Zn0jgI`?G($)+4o}n
zg(CBeBJo}8Q+7y`eF>Sp2^^z8jCe_<s1AosE=^nhlOo1cZp3RMB>OiF`g8@^6-Ho+
z_UJRhfR{O%M3s9CJUFU84U&LI#8-Dih!pMRl83EdgSb7|Q>gEd_a}z4N-!t^lKEgO
zE{LF9H8({5dt({Uu(v~`e*@I(aBGX%0E-?kNJdRPT`D6?B+wM^f$Adl0oS@57cTBt
zYo)PpMfwJ|M}=$NW48GT86^%b1C3KK^m(8AK|jC#i-5Uat+R|Ex_5b>P1W?$3c-}|
zw*qFnvmfkdok}FJOBb-q?Prr=`WFHwyDR+BqH#Ak!`z`Rm}l9~{zcrM1<dJKt3%mO
zk6m`8AbACwV^#g4zte94^CBNJz#g)OrY;@cVl=#2x9a`Vr3EEmj++KbC2TSFolyA2
zWW<IhdcW|*wHH_9$_*u8I_|fVu~H;RWu{KJk8(C&p#;oO4(=U;#jA&K`A;@9vkO)>
zOH+3YpFCdtr-1pVfcd9@`5z@<#3ryTLFle0cCzn5U_4P!KdoCht86G<oP{89o?AH9
zo?pZh0<RKoslBju*_rrVua{I$AZk7*(-|y6<xJN#kjw75O4~*l4vizOaKU^%&tu4s
z632TV{THM|zM@meI$37spn=0esuLz0q31tBiwL~yAx|8U8$Xujb_HwF-^j{Hn68Fs
zdj|_^xwwh^SixTNZiT$bhXhKjZASH04oS&+4*i_^q4%wA`T7{m*7V(n<0iX(m(Ky)
zKZB9u?|fPd*GU~9)EkSWmp4J?Zho+K?ty#010&O)qqbpN7&`F-QhBFWBmUcGO<#=&
zkKF?VsCUk(#D?-cKu-hK);W{tdQ4qUUgk>f9^4a~c<<wx`O*3#-8Zo-T7q+5jlf$X
z<ZT0T=3d`EQGL3a9O-&S;L0Yu{^ZX4=II&>_gD3wL9!p^*e;|z!zBy0+FE|}^tpBx
zDNy4yoemK)c6vpA-laP<f<QpsUN5_(p6F+aa4lW{?L$=Cn11r_s8R_)S4^OLSl@`y
zlRCq`fXGuG4ogbI&%<?tR@#<`#AHvB?hyBE8FzJj-<b$c6pf%(Ub<A*os7DVw?TIR
zLdtPIki%qG?Rodg=SfFEa!Rz<)^3wZD=`5`6r>o81_6PHBVevunL6)=GNq23V5z$r
zg^=f$SRiebmPzLM0qzdE7;1hr;TiNTCq(oMr*!0AyCq7?bhD36C7)A)W)1|u1;`-o
zg!lc7_E+ujMeRX741a=<^gwjxgQzj5(HuEtPaRrYA+b_>;>qN)=BpStkX-D3tW?<^
z6q=#S5?-9^{>;!Z4#9k4DO&-F8H9+M4@Wb~f`|=zG%vBpHe{kKL2xs{vGAVHF%s3Q
z!X*;W?mMDvMj%2r1pZ|-=lq*sAcQTe>E)f?V+z!&w@3pgw9)hp#6B{rr5DL{6|GGl
zav&hw3{g0uQ1JZH7MljvWx|Rg?`5C{d60wfa)rg?<s{~t25_a4!ojH2u(a1NL_>j4
zFc0XFU!!G_>^BaOk3jUsKI<KZbPrcbJO1p|SfkZ)ZhDCjV*`Z{K+!PiL108DlUc)^
zbJ}Mb1M1HdBBsRx<`ke%Wtz)SjI4f#gI3dVTJzk-x{%i0aIihG^g&S*zvkcpywwJ;
zA$6>^1|nkJpnNzosD9Am%B<*in5U_!q|JpB%Q<AG(eK%xXC|p=!G&|*ONIY((6^tK
zf?C0sI?iNGOk+*u*jU-WPeqwZHH-_j4cZ)X)$eGgdh}^1<EM&wu%}Ao)8XUnp@d46
zs}_}{IhBN+JTI=6$2&>hYhrQKBgZ|1VXMkd&_>*d)H2ZN5}k#U(31@+MGY%Qz7`7F
z^$CW}2v!Lw<r7O3R5i%O4Tp*~C>{u^gg0FMN!<8=P@6LsAYN3Gc<1-#3^|AJ?;f!L
zGoSe1^oUu+R3v5O{-8JPN=6)-*1vnij@-sR|F*mNFX<6;S%m#vck`DqVj;hmBEhwP
z<8J<qB(ZRKi+I|Ubl!%{i;w?%VdB5*ZvLiC{D0Bi{4+`XpG^{D{Np6C$?qgF2OQn>
zPf23l;gs+{lEk=woh0ri;Qh}gi8=o|Ni6=KOcLY#*CvT^|3Q*C_&=N^#`uRxVv@f}
z5-<FnB(cF?C5a#Z!z3~D?<8^ZUnYqk|2awg_%D*gdjD>c*x;{|#5mLcMv|EE?<9$7
z{zwwf|JNpo8~;I)nDOr=iE;lWNzDCkCW#q;C5gfRHA!NO|L!Dl-rr3U>->=<)(8C`
zCy5#VND>qMMUpu0caoU+pGo5Xx01xre<q3lE0e_c{@atp#s4iyVmR7Alf?hwBr(SS
zZ<EBl|Fe_CH2?icV)p-UCyBZLI!R3PkCMcCAZ}EW82f)rlDO>!*UAe>4v3c*jcOC5
zBZ~%;FA^4KU<RP%>fkW?qVHi~c1s3U-r^XB;#Fge1>ShgmEyi(oJh-Jl@!p?2`ot$
z=s1C8*24QvU|A>h=08dZQ$eREFdtoFffLvb2+NoR6DbRm6{qG0!PY=<Y)iZwSu9?;
zQrn!{!Y8nAx@g2_FGKgqA~?#H9q=xF@u`rO#CW=;55xhh(Gm-s(sT}nq?MP_br2)>
zQloUt5J$AFp7L+>75FotlMs@pAfoL3@^A7L2o8qYeX{zT=jQ6LR~yBeZMYw6VG)~n
zN-5<j96*{Qe88V}2#4X739;yOxiLmX2?y<jNf{m=#O4QVS(a!l_VyfQC4BZ(5L$K9
z4_IXzK$wghjz%DzQvQLXJkta|VnTZwOS`&4H1PxG|D!x4r>Kvi8mAD_`J?)_UQO;+
z&3l}(cWoq?PS3x@0(iP5JNraxmN@R}RbUA?J|``ODJ{Awkwr2zHXT%yjI~`?i)n=s
z4#$?7smpordT;af9klw{);i1-&@u9)l!OxmoyG_U!J!)%A*e=ht*9U;Di(_KY8t0X
z7D_G)D2)NoT8s~iIHd(xs2HohIDmbEuB8FMd2!kc2&<>-3Edmi+8fNB>iSjyX_Gp(
z0vt_s9EWEBGd&Ik2(Dm>bA>8;f|`fVaEg-~F=pym3vfDR2^P9>IJ)6%wO~v*8kZYD
zumR>h0h4V2bh53tlj{lKjdx5N4LMt&J?L%{@iDc{g!EASP;gOqaVdaW*l6zHj}JA4
zLr>5tEdkbz7K}oS$^yda5FDSMgm4g!+ZawBZwJH*oZAlYbAs%7$$i}b35}-bxDDZ^
zrPUlDCd-bRkS0RpCdf>;O;@}b8Vb_31Xw^2<5l#qXCRAi&f!$(L_2DWrdY$Y3mgh!
z1i<Q`GO80aM&545f-W#a=Z-0Kw;jNq#;B>q)xhcGb_eHfz;)Z2(NVrgwyVw*iZjy<
zqwdiR=)C^f^$qAoH|xd??bfO2#ybVoN&rwdFmG))@Vx;Yj^X$N6XUc4L$4BSRiCq8
z?W6(Vo#4LHgT)mzkyxQ0ZqU5%Mgu38e-{UgDa(zLD_X4Z$q#E)<Ehlg`(ZsV?P5WV
z$^8ihK&(l>V^s-O3Pk6MW@dWeD-JH26V**J9*JC8DP_ONK?QI!5U~lHnjQde_BU_B
z#*mi7SfRr$@PRvKrFWfy&_kLt+1G&;uc0ZRHzzb_yjZwsLok6MLODz%F9C*o85k8p
zc80Qqf*Rb0B6?sBT%ZC<0ysmxa|p=|J*wi`hmO{tQdRDaH`q817#0jP_rOLA0OJaL
zupDH7mwbi;RLVsFk%PDgQoY|8!`B<Ptb$?{Vp7$kl;rrko^iZQjM3cTAx(JV_{0-Q
z0CVg$w$;?(70u1bBv^Km<l!VVbh4#z@}p@<4%aj?WWp<^58@7)%;|yt1in_i!APmI
zvqYtkInHI#@XP_IEFS+0j%?XM67zC=P@NGUY;U?Ud=oZT36M#RQBKT|A=?3iHOOm8
z*g-NZLJs!jutDe*@C662zKUQ6m51ORzAXie;nYSjz?kI7zn;tyFpQ7ofWi)GGIRm_
z+6j|403FS26W=Vc)MOI_?67+-yazvUbP$}3(Ns8RaSfYD1{9@G{pNYqSMzYR3LGh*
zn4{umd<?p^5Ud3kl^VV*STxeBut}b7rJlh`DM9isV55znb1heLjR?8DGD?|ga)-S;
ztc{I*i`BanBEEuAShln_BK5o|h#T;^{#7MDI$VUzEY}DAsuGL+t`d(r^_N^PcW6yi
zXaTHR<Q!6jWk+*Fp`bbEl>_>*wCTPasqs~(IUCehLrRfPyqS|)AL_p5?R|oJmaHMW
zVMFUnBX5>XeyoS5yuziK$L=Y=j9s5!0f?mfAD98{e}sucK}7`vTeX9Pa=*gF#sR;=
z#Op3~naSnpTED`?Y;V@l;TuTa4UC`-qm+${qgtDNEVO_T41&pT-F=udGhm>m<ad~u
ziFe(}u|GBbJ)QPz^i2#j(+Obay^rOuFtKzZ$fS1SoEszn)JBZAgG12gu3`IaBWy<-
z=xCcp44XGDzrw`QwEgu!?L4R)Yjbm*egG9sZm3<v;@cK-1w<ytoPPjy_%oq66-HM0
zeF>m?Uh-%f_(NWDL5sTY$g5H((6U0_Iz(?}yL%WMx}27`o*lboqz6N_i3xOfJFeb=
zXFzZFVV>H68mP|CA26pRc#3KhhxF8~|7sJH`~=Y_khJ`66F-y&WD`lK5>Wl_Pw%Am
zOQeC9lVfSr`)@0@Fy$~z@Ls}CYZJI9T@tH}^xkH_dB1WEpmXkn-yJ~Ej=CpX`zC>n
z>e3+|V5GWqOnQ7AR7XFV!%OfATjLX0cITFPe_#--ARe%jByV{Rlw9M-YaWHyt(*H}
zzqWV@-JFuw2Ci>DW5G{a2;j;$uxiaWJ}xkGyzP<Ek1Kfq+fP`__`FRU)>{*7Z>cT9
znfG4w2V1D$zo-A{r%C*YXOOo!*igL_tfbldJRq0pCF0LB`{w<Ti6j~>z<Vit42CmY
zy))L&fM4g4M)%m`5a9j97sA2=$F@@}_#5OjES_g3F%R@X>TBlF9?s1B@VW)q`z3>k
z4Vz#fuCwp9Ho4Z#Im^_?^JEk>Tte2KLr!0k<paGTB-_&+p%dMJ#2$wGx0{Wvq(l<S
zB%mpT#1sc!a)gg<^~$Jl<h$!9qRI6e^OekCAp7&640T1~=QC`E?@wXx!`;`bmuI9x
zNF48fT08D2Mt(TWDXsoI4u1dE2yKEcupV|)eHKDumJcLd!-jQ$Ub@pX^Q(8q%Mp(N
zA7s~0K8vl2o9aOE>;A6y*_1=UwZLlv?39V4><V0?&2wzD<20RRNd7VP<j0+0K)&M&
zj0Q;ET(=v_b)z<CFsP|6VQIY-KX1Ml6-_?~^M)YlHBnPD!f_0Ka6xi@>zv>%;;k%b
z(gsx;7E#MHC~K)2Chhe|D|>;aLb{Y;s^${?wv3%TMlDy_IsIHJmZ$KVufTYB0k+D`
z7|Z#7mpf^+5FQzkjZ}=W);n_5M`7~u5GL&P3U=oCJk$1zD@xMBgwW)twg#NUx8COA
zOX38n6K~E-Xk*CUQ2Dy4$N4_m|0+KH`C$^|wi=81%DKaQ`P~}Z^_BCb8F{)LO5`4F
zce+$tNaHKH*yd8S3D%F}k!glc<*t!n+G@8$*<|?ycte33=jpS-aEa$XZl}$D^v$Kq
z#G^j%Qc<V6a(r6*v#T{mDroU2%ct*+2*yns%Z#he?x@EU(+7|<v^^5Df{ia`SYfZV
zV&`Xc-j`V-$2S+u3gx^Rj@#ugX)u52D2zq;SMwHnr!h1f`LA#*{ba#)p)6@4gfTRA
zd&J@=3>HmRMeP;Jve6=2;f47(6m>5@IgfEE$9WWgE@foGn^7zD;Ejfj5I>tP$0hVn
z;Xn3Q*c)B-pH0<Rdx4`iN)sRn6L`Dd@I_nl%e?1Q_#mN5`aLj-;Ix4SJ8M2NYX5t!
z*2tjX7ZEHBgxrh0h}Z`Oq><`p!+CiMC#`E{T&D$UG9LT0s*ySSdHWF@kDs0LAI;10
zYaI|MrRlE32&%05YqUj`#yc<vn@HK;c`2#Irb3zS2$_peC($iuCad~7i62eKy^I}v
zw}Oc#{Q<$-XM%Huatf4@uh+;8g)Ufbza+7&#E1kNTA<~b&c5iokpozhIHVAT0a3(0
zrpnQGr^^H2{&kZzTwJf-20yI$x*7A9<T&3yz|nUS`kfdhZZw2j8$MF%``M(|EN}26
zXuS|!j0oyIlTWgKGomw6U{9d`c{F~0SMb*S@>a+#s+hZ~Nx~x?KZoxMH6UZHE;8SG
zE2L%BM2Ws(@2{jQzQdm1C$0L{XF1`#vO?kPtgF1(g4>i2>p{*6-GP89ThvZe_NUi{
zuWlQVW9Q@Cd#T$NP+FI6^6-UE{z2CLs!^xFsL;+dXK^dOT?9)PiGRn^VA!B%RhZ5*
zWBV=fd1|348}RdnnFRBNiL~FFGp1By`5udK)aFd2N&|yy9<!N2A00`%5-t0h<ifM=
z$Ks>;1D)BQRf||%+77sLID|{O2MHWqP1jIyV&~^I8Xwd57ib>^jMm8(GV-tbk9bHT
z=>pfSIra}o9ell$zc#{56HG^Cb4rLqxjwVVv{Lz!8;Rn?7Yg$f<{`%)T!@Gy=$Kp0
zy<f~odlLxnw``?EFfo7OYBU?56HdXSINPm-Wh4uZpW=fP&k`~hV%%ZlMqe%#(@eg*
z(aT1d6Wn?r56O1nKsz)?ZO#mECPor!%XPC+M${~Yy2+|2=7UO!+Dg@IIpXz38}-?$
zo-6IgV;<7aPD5l8OJ+Q{V>J{`3JL79<N*fR7b*y&VJ80D5wtx~lv1y6qlrICNPPN2
zWmrT=3|uStfZUW0>ugAtz{3^qP`3>;y8T%JdT>q~{TJJr3>>yoy3BYr^7Lj^rpIcG
zooK5&{$U}P36ZhbGk0hF<(uov-J*4I9^O`iXx1+j$U(BP#4V6=IOHMpLU%&9*oT&c
zPX}~zI4XCA>e;(s;&=F`nG>OPm#EE|G;13JbzV%ym^L+D76$&UmyALgZ;g2a-xn9l
z%v?&UV$3T(MmJ(SBF~rR6J$PDl)Y`#^x9vN3GtA6&#&8WjBl1dmGG|Wt2NPCZ<Ewi
zZc1D!lT)1En=>{_%JO$-;wrd`sBXcdb<2kHP%EDPeWNu$pfe^x(~MXBA5?}AQ<ygp
z%G=K!?mqO#?NOS46svG6dHw}wg-K&Y75$)2-%??D>_UZ60x|kh%3Rbigyd^q@g1q9
zsW6WIS8g;2vrn-KPcnF3IX-7MZ5ELA`?Wc97hfv97eHPu>ob_$Dx+oMm=*Otm-b#i
z^d%7E%$Q6~%sHx>&e$=Mpw+^SdN6cql+nTGU0;~%5)W@?Ye;6`FClpD5_u0tu(Nl8
zmQ!)qacpKKw^z9A@hYt@(OdNzTW9*wH&ZmrBui=53C#=)ccQ~^4a*$AW^MW(8+MJo
z9eMt>W8)3tcape!fza>nb8m;$!q{8gZ%)!{$fa7|#YK_T#ot10&S=)pn(f=BY7K9n
zI2sE$dL%u4%I&kADL+0~96v{~JEv-*pJX7Ki{$-abE>)mceWyaM1$zic2rpro<?*=
z@IA4yUKdu^FOhee@w!P#+`=#(zICh?Yp6+Dn2OXd$G(H3K6v^z>uRS!^h!lwjg*ox
ze4d@awSuP)v&kQ7Jl<EYd`&>U{(<ES-5L3ptdC<mB?QdlE~FmW>0u#6ZgM2l#4d?n
zjNVgd3<jEwf61d_oV6Xzo_u_<7y?73Ylny$=}nA2kq*4UVj^akqC7rVl}Mi&jEIJ6
z-<KEFGGlonT70drX@tI*cAebBrn1cKazA%o^X<Z5LB@C)od3CDAE#Y!=)=7DvpE9}
zigpv%GsXB;ioGq$1!#<%eaF4#V6!&Sl?gZ1i~0in4;O-Vwwq5ecnx@EtA(uad`6zq
zr{LU6V%g+o<Vjgcvvc{z^10K>rCpsP2GK5vOic9Z!LM#tJ9s$@CU4O9czQtG1ihR4
zHMMF;UgqWDP(EqWeE)NO_Z{EjKGGDcncZRTyV1o4(QkOw>oDCj>k0J9qv>%}^qngk
z_c#S7=SJraA3f$aWe|J7^lhAbI~Z3sxWlDImo{-s_nEZ==AEtK*2V>UJ45c0{fn_Q
zi^pl{3H80sFW~Lc%1_=a9=hFwF5Oi)2_G^)_E-1Syr?g0E~MVFIiHmqV>$3b7VS;5
zJRD_OdC@8H;WNW$A5C(RTeJhF^Z3gI;HK_S?99a}K8y8T7p{<Qn1xlqY7#>0`CYVr
zPN9sU!1A%NivyN*M)hJp9p22x$Q;FB;#TDA)bqr#`PNwdelt<W;a6Xo$!x{tZ{Oc$
zHNBb@-N2qZex+}nCH#mbf<e?!HFccj$-e0&;;LWz6d6z1GG%^!@Th8Yfb<F>EW%v&
z`gS>dsdwlFZCa|KU%0Te$w9Zwv3u7sLOha<kZ3eT`NyqoHy|T9@9JS|LuJ+BoTPbL
z>z56gIJWdRR@A%O-I^mJa~d4b9okt+j$&N#<s$04tFc9CRn*HQb#B5M4p62aSpIXo
z#EzgCwjTFBDProH-lZfA1N{2}*tA!K^Rh9P0x|lVTsLqW^o<B&5Z9U-A=y4Qfglx&
zS1hXmg30R{ZD70ALm2@{g{ST^XqU0bC(E#|Wtdl)3^a{6CaW-yjZjFFuq&mcce_QC
zokXITaP(nEXp3;<5{!;IOJ1`vz_;>f4^Uthi)iIDb!uHI>c&0q$SKc#wxNLj9j8(Q
zxc)*&NE8bz;8bnsR1?IrG3^QT7>KaUHG7RyP$p6cqN31*ibOPqBKoMtl}OtP7~xoK
z8c_6Z5Ufw!6IY(D{&k*P$b*hL>IQ^W{9w4K@+bpMTS(`#+Co$}_arUms9ru&RUTgv
zdOHQ{quevf(9ZI#K?qmHefdFnnvh_J%GXMXI9*7)+$}P^E-rgqhGYdT4Mg{sXf7w-
z^g0!^+Lzeho6%3|@@G|kN+6KonyL}LxpKwDQCSgLP*qoA&@S6RGGaK?HzH+;z_@=n
zLKM<oN25{IiBsG^HOC$2rs^M}8l%Y^O&on9(UhQx=yo4WUaIUh8p(50`=}t`k*gMc
zFq~BjPWS7%C4snZiMIQxk_J-qCm*KDg}P{<u31KsPxzE#u!FqHwu^FYI_UM!)zZ4z
z4=HhvC7|_q8WE}*=vIjV-D3%2;?aj1X-4op`_YJL`mmERN@#+p8*S&gMub~W3}a1J
zi$;TD(|MoDM28A@syxqSWE4m_LKd`r5{)MZ#b(2Ved_2NtG=aAA8`UEAjCQm!;kU8
z+}eMEX@!|{*)<-}iF|7SUG9%vDK6Hx2mC@N!pSE?E!C!-5RdGoA}+%)KgIH=s*6cr
z_$xxO$T6guUYiohOfn5?a!uWLg02ZF-=>7V(`24?M%Zt#qawvo1yTG4&_ia_xE+F-
zt&+4JaaDzNWPmunn%oJOG7DFVgi`y1&?D)=3s+bH2#mFdO?hloBLPz}q7&h&6ASaz
z`t}H?<jD`tzznrk4E2nW*;KOG*heP~v+|}WBg`#Iv=wrMwm?jG5zlSah$am^LM;%f
zluShTuSjtlC7PK%P$ih~>N47uerCB$sc$VS7=gK^9zqqF<iw}Xd>4AlX4WoXGI&Fe
zPDq*Fd<N-oRx-Y(DPrFB6s<P6CCW`P<oVNRFH64mP3%%%GLam?lB$HqqCC$lK(T@`
zP#S2EZnT14wlj$Ay_ZxRbUudMK<YZ$pVt6<4iy(AOSckun}ZPFi@8E|ig{_%)nXBM
zptM<~I;c*u5vo%R0iMYwor!BUsNppr6ou|8<1eTrj98f0KL#zbH6R8IenpCPm2lGR
z7t(vMj8OGFscA!lp1D0VLsX==Wu7ASH6w>i+GT9+)r`)>opkuPG!2vZC63(Dz4SsX
zcO^uf0YxC<?(?&;w1=a%Ok`;dZ*4J#j6YRg>Wf5{8Orp&RXiPQXfX8FU24jDn`gg-
z)Cn`Pd$X9FjPYDQ`oZ07FL$Qc>*8p03cm%puvhqp3QMsAY#q*XB2SjX17^RV3dOa`
z5iMZpJHHCW-Hg>TU!~GQK+_#;!M*}Zs`$AR<^J~h<ypCPA;qF$E8)OOE{6%x7$>@}
z@pE&`XX!EAs82R}TGR-=&9)Sm8hzb?$ReJ~{4&=_Q>VUGUHqo3<PBdQQ3z+tyw3A*
zs)IH?`+M*Y<;iTOE%K{#Zm$bXN83}E_Up=WJ))XrV|4oy-0-mbi|bm`@8-SY&KFAi
zT4qA<2Ah(6QBlpb{AV<yU`&45*vIY8aSYQB9oR#6DfZP7Gj~nqgksPOFuGl!$j5He
z%~U2C?i3%g4Wabwp#^h4PfFI0)<ZAN3$x63_+nN|R@YqG<H_Z+)-8?~%x@!5kzz=k
zTPO#ywqZ97wlBsoSG6I1^kaIgdq$xVz9Cvm+ViTQe~A=F;;BN3q3ChRAU$9$kA4Gr
z6tm!Q|1$l4M8W-^+&av<krz)e40J>1WYKV<*!5L6u!6u&nsqwlo7!$0S@dY~dn*xa
zp~OL@dZHL{Y+!v|tB8Uy3Ko3smd*W<_t!`FVWc6Trc9n+h2kiul}TnV4#__X#g?J7
zfEA(e=A327UD3ISy)Zd8d~RD*p%??xJCb`B!Od$~D2j$8e2hcbZ8`MQA`9pJDfjz`
zTB}ELAfBbjYgC>%`QhwI2sgPEDo+d*#)j9DX(P;&C@>TWV&EHp<cZNKX|;G%f8~is
zrJypH)^a=vM3>ueQgmt81RYu{d2*XgJoB_^fh><mQf(+<$ksEq54y@9w5xVBCauwy
zc66XSa(Pnn`xaKTwhwmSop7O&#I?zqwzjUec0soGiM9@Twhx0$9fNG6hG(4K*}5Lv
zKDx1WBd~KX9dUoBiLSfZr(5P>Vdw2?=M!Y-n`kE~X6q+iTdun>W>D(?&MxTKF8IbS
zgvZvOV9z&IDY)g`hn@QNTlP_|_R&H1h(vp&1ciOfE=|GVuRgK4QFP!d`=lHDWCDkj
z3%gj_PpNtk!}Pm%g&i_n9Z=WcS>AVU%VL-(I!H78$`fy*^2A2g&;GZQ#6fqkba61;
z=Fn6RUMI3*SRU9#9W<em#I_Csyx~x23_CA`O*gH5aU8A13A@axBpD=t2$OUVY0q%-
zYdh$uCc-c}#Q5OUyKB*>?93JGEMR#!dgC}y>KxbNB(N95)^dQ>Jv4<GHrW|7`_5T%
z1g*!SYU=nvJk&*i{4fGIS_oQ3F76(#*SV~{bD8RNTDb>Zw>@fS0nK+hEs(m#?H#>M
zbQ#ETkwA0ZzH$1vsJYk4crbZfU3xq{c${VL@}YBR{^B@d>3BcmxF7uJ?Vf9dsO!13
z!q;lX%e>E3-iOJ_kJ9Kre-IAe&3m*ocqq~Od2rB4;=A+U?xU-FU1-6q7>`b36GNys
zh_FSSB8(0qbU|2qZZpSjfXvakwriv>2zxk`+Bf7(7#~CQ6qoEYPZvb)gF~SM1)7i8
zK&J%x?(=RTL{n&Z@7-u+5F{!HQk7HO;6Vm596A+zurG*sDwMe^ruiNM%?-r-&7~pg
zjQFibp)Lp~)8jT-2z^%!5)Jx=z1cmE_vE(SA?K7w2|0+C6-1x|#s4_D!IHpl7{Vw6
z#T3D&%RJ-1jZZ}88AtvF|K$npXU`I-7kd&&(axRBC*&3kTcpNwq|8HN$U{K}pO?%_
zStLe-&WrowiRybdEa+odyED2>kZNW;Ytoq@+2gy0P>hW;EYZhkmgh`lUUP`Y%yeGZ
zGQ41VS1CWx^@XQEnHyTI%S_OP9jcnl@`XOcduH+rc{JFm%gI&*dv)=vEvq})(t%6#
z#k?-arTK!r+og~8=z!puIyuZG8vNeX$L;;&-Ni4Cx4%)tVxY;+Xa%7jurQNm54&h@
zHnvNAtT30PFjpNYa<vm1%ihKQvk#i3FIWaD+!Yh-a}+{%Y4Y~4fi@%@=H@DcNF4Ik
z5IYP<oUD<4PWA=GMti3xVPhxzIAMXC7BAvu&b^v1qD8P%S--i!{B@9i_98zHY`sIt
zj@aE|6YUO4o4vzcx)%p~mjwHj24B3Cfx6swO&#)^$q37lfntbWwp;jgdHaO3`WIwg
zK6&J8#p)RX!%n^JLto})6YWzMjEZBNwKRLj(Ro8~o!z_A7K1`ErhL#^et4jo%E~`o
z@_$Cqhhzr_KI(EB@WF`^f#BWtaq9A6^tqaDKH`^ogyHtn@4n~5%=k&z33*pwhu!rm
zD%*YEyKwIcxtbIfMh9AMz8F$QIIvE?5BBb7@rhiz%mTTtVqI6+1@+ty1j#_Hqy3ic
zpFohFPrI(2KF1_>U3V@9q3MQf1$!^)1RayP%&0)ebdXhV4<p`tzYGaFp7Lk99Xul)
z%*1;9p!wnw6DnYf4jpDVp_dO8gYt7_oox0-;TJ)f>1Q_j;&GU9bY=M-%F|Qxsc)zP
zP}K-VEpdQNzvt;waA6knp5AUxx{%M=;ioUG(*^RVw`q>&Y_r9xg>2~RGd(&OSQJfy
z_4;y&Rpb-)3mm6Rp-JGPon(LkYcBkjle&`8MQ8*yY8r?y=2TAisciv{TftrDx33jf
zX#=T{BAY552Ik7D_P&+bY!GJJwM$Rg4`mFViXm~NR!`#u<T9l=7ssDIM;G>yj-TdN
z>BYGvc^S{!+aF7Pi~i{Yqnhq4u+lSQT;hi-btRs;+EO0pJ#4xjM%5K}THN#X(M?#?
z{6tkKiyelfXl8iq=^H+T<&D-kTCLcnsR)aS{CG(J@;grYM7m@E)&j|@5mbwhCRmC=
zB+mi!82!C7Y#b{`%|$4hUg6Gj+d;1%dc)IE)_&yXT9!gysDqD0Hr=orw4Q9c^T@?y
zA3}WkTn#}*H&W|6nk*@g6IwCo?PY{_7~|bX%81jn#J@8?)l(O<(L1?rSkUo*Zuea6
z_y~Ef=b_s@sB46EYj_$`v(Ue4G?iUwl)=^cQD46@+juj|?c%Pb6-%8lU4qNt2!k&4
zlUgoC3m<y+-G_vVvK|8J%&UHc*A7ud;Nolw6?qS=7q0j{WRXgqEQ)5{(tJ3IrOBy?
zvI5yzwdqpGbwhcvkS)|gp<BtlRBPnZ{B%h<;ZAub9*NT|$W+bWSzB3~V^O#9LECPn
ziuBX+3Wi3?@_Z--r)>Q)|IYhH>JP-vUwn*GOE%J@-gm5O&DN^`<$)QFQs$32rVB%H
z=BpJ3v>ffV0CAIazs*GrpjXI6i8r0ZG>~tQ!ijobC4G^(T4%(goTuiN_~4w%q!2P<
zxetA^jjh{nguU{v+LLoGf2>c~R@Rpu22K^ZXZ;>+Qg=T*)N!sba~qeq7PC}XebPoW
z(<JPbOe_hv&5bb>iR70r!@)4_?#F>v4#h2uC(mztFbg@i$(y|f1(&*%n+QVM=F0Jx
zTYY-PmNmk4dehB`W<=XNE?Vgbm4tP4G|rp1{9&sp+sy5abN3oQaJ%Q<kL2i9iTGwM
zDyQ<L-P8^Il4Eh7P%S}Vs`wbap{!@XRoId0SCY5~_x5}~&c(#{u>k(##s!vO?Z!#O
zjde+P^s{2JS|%!`Cpr&~%!*G#$jrpt1<k)d{x<gLvB*0CqVtc(?{9I`Qk)VY1wq8A
zq5d`9J2liz2ZN+-!|T|#uW;AS96u15VI=##*dEo1wY!ZJ;xPtKkIj0^lQS6up=)58
zbzn(yoTfiW(l}q|<|#d%qcZ($s@4_ZmM~;%*q`;2<y-V=xeQHwrbD9j+MRox`3yY%
zj#P2jd}myAHxZ1PRJ6oJYy<4#BM7=Q1|5Pefg>@%Ss-SEEc=^WVsVMSPs*}|=2ykS
zK<lVhCzJho;@2}1uk6POO)l9=<rK34i;)9zUGiaI^J+RydT#6c9!s-pYi-QP>L^~T
zs(5IN9>~pUql<EjJ+bHX(L+hS*N6+X(B~gRq$x^vb=8vj9Xb6JmeuKytRtd&v{+A=
z&GL5XMTgLAQ&M65nd|}lEb)6O+z(doGx&Yuio8ZoL1$pmHBcLH(67(AW59UE*!M<T
zN;CDb=KJ}G>?$pA35T&j0sgHpDIrFiXv4rcD(tUm4aGRmmId!KvitV({)h+&CQ`?C
z+0xG6al7LrI3mNBtr|$lZEWP9%-Q_CKAM}~*aRmw*()s9gC$Pu#}!>o)gH5lwhsMA
zVtY}#p{b~|(IPnp6V9WoF%tp<Mu%220wwjiq%d9yG;V{DjXvGH>A4WeMi%|Fih1^}
z6hB>uqA!y>S~O87p(-VgU$V%FqkCsq4~m!NG%7SydcPn(30kh;3?tzt$^zo)<Hr2i
zh7}cfLV<zH2IkNC+XTRmBjWJxn;|1>66A?9U*{IiPa4dmK2gl^ykl%KnWF~jT(H1H
zBdE+PUg#VoW`DMBQ+~5QFnQro#U(^eK9H#}E`E`rS9Zvk?sFHdI8x>$#kprvA?qzq
zV{_;AtCREB%BLXpP@b`Zvqhsj#+Zvq6P2%YX9=6DFLo*);W^<v!6tqaSW_XySN3dJ
zWvPId1Lw8}h(pOVttLpgz0Bn{>-XkSWsiG>@exND>sap(avUS<9hV<GYc`v}pKbr_
ztZE(kf^6*Sh<+|b)=3MzUZC0>HcUeAh&7OjUIZ6*X{|L2J!>{XrgCPz?l%m#)6Y0(
z-0k3+JPE3AEkQ#XKH;83^AD}uruovMEn!eOe_lrRQ0s9k9ee2)QTvU&7eoomo+V-H
z9~Y|mx!9C4&bk<L@8{~W+FgF&R4xUw_^>dOO))bpKE&M(;m~gvyymBVNUhRGyT}~#
z_|CNYJ#zjp-wU1IIgUgKJeN*dj+GpPK8luqsA)1>?`m8809|WOzOQbk#HKztAiIZ}
zLx&}17wV=zYa@Bz+fshUB3<nNq3kY$>e$u>kK-<T;}B%y?(Xgm8z;CsgamhYcY+0X
zcXx;25`rao0tDARoOABnxo^$9H8WNHp{x2sf9zGO*Yp2HPpO4iED8H_SDPyv7_7_`
zqp#z*d3gR*+MH@2Q|G8_vL)_){UM@S%BlRd+lZkqwZy);tpCp=Hp~w(I}ZL-@1AF+
z+#L&u*b0dPMp(%48V%Mgn?IM}lc4&gqu|i?Gk%-6S(bF)X2<2MTqQ+dQ7T-}Z~#qR
z&L+h#URdImcb#`vaNn`LAzfKLP58j87U#t49LlBEPYU(F4xID<Sh}}xq_WOBew*z4
zL4%(s^^t)%_?O4(PV9Zg5hIkVdHefe8oKlp9~>K}jP>yY^2TL-*-T7nXm)}2yhh~{
zUveSJ=v`0W%Nu*KC)}-F&b#`WS>qHjZaaQf-8}ej?!!v0y;mfH5|JWMh{KlBx~M2K
zsNY$_&J9nM^0+rX%MS*vZtf2JUKqNQb$4qJMs#XxK}dK_EbhuWtX!D@10&ymVMIQr
zh4cv>l&#(9=j;}v0T&jodp|z(2=&Tjv#BwBb9zScn_W{Ts_`1!`g(^w`OBzCtN@_|
zX+9#AB=4$@81%f0-FH8D=clgybOXDIU*BgetV*GpY0!rD_};x1F1F5ZFM<BIKRyAV
zmDS(UK9Rqh>g11o(PNL`M)UHoLdDU(myn4RXGI#e0$$}Y&1}(Ip<Q7pJ!2=+wb&QK
zPE+u?WgZO6&S*QBBrOhz9M$}$erA#C$K^ox<TW<u%{r>y@T+>*7Hov3=|>r*^7T(z
zf|l9glt`p2fzlWggs<v&;ZY{r^zVNx6N-P!YJI<*zMJ8fsgKHynX^`)0fnf{4bj>D
z`dQs16zDAvq=Cog$Y1BreXY<--6B&gE`U<N;agAtC2y4GLJpf=NGLP$87b=Ua+cpO
zv{Bt;+LWA+Z~_4u-jzKykr-D3O3~nmRNZAqFbp*Qk}J%=dyDhU>t0WlAmc+4@y-M|
zdp8E(KLeirbIvo#O&S_T_%8F;NyK21<BA!g-UV6(Ow?DfI$i(HOab47q3SnN#!C`P
zQ?ocd^sn~@VO;MRe`DpmC+{uaLn+0eSlH=HBzxgj#UM2?M%yRk`NG*srd*%`(kGgy
zUwv`iAl`@}!%Ip9&gh9FWT)+=Hsr_ybo4sDgUnVxXBHSu?7_Dh5dB)HSAv)gkZ1+F
z5RuPlQg4tTjqDE!V~Kt$czj4+(p3!<1^`IEun!tMc!H=j$Y-+#c)lm4Di<o0kX^wg
zvAivrA3>}K+pIHLTpftg?dDz7dtc}&ROOUQs3>)VqUAAmIA^Jpjl%Uoq^(k;ep1Q5
zI!xh9*HML4i5XPfs`pCnzsO>YY*T42Bkk=2)hr0i{`|_nve*hNL;`M2H>(#v>3y4W
z*~l-(4o%!-TA<M8A^XJ~PxL#bi~Achb1@X)y<04ng^h|~O}yePA+xrcf!o%QE)~5|
z3347;Q@ylo`qo_#)o`KtuOLJoZEE({DXHu|q|z@tNm>#s#a0}ksuIYeq*VSd`I4*Z
zJ=jZBlx3-`b_#{0{U_p3mxA@A7Gs@1C3A#@iXw2f0&#p8P|@>q4jgdN1gNG;0|X87
z>z<RCzg8?aP&E|b8o}?48%rS2Wop4@rah#7x#pM@2kS3Zh8)sA!7~I}aRFJB+oo_p
z=pq_msr##%-3sQ*h=r(k85EqgCm(@<46#YL8SZQnE1tP3$lAV<2KCm;;)EJ!7}G@#
zmzJ~uRwFLRsWeof+#z<4df^ZZjB_;!TT-_quEp?^3v9k0Aw8h7D~^VZga?R`9OA|q
zqlMMwM#0o)e>$+Vl&}o>jiqCOX<;GjWf={(gY=YX4jx2+20>7tu8$(ai5!GVTg0J(
zB}djpmORpki73YlQRJ#znPD3`i0J*c<q_qf*`@-z!(Yoo$>DJ1`dNc1i=@Qis^j5u
z5!6GEB0Ft;Cl7QD>3#OLl<JQ=c5Inm_l?{RMPF%!1}kzG=(~5<e6DS-fE86E)Wy9&
zG<g^jf~P~BDy_T|woT1`OhmfKO`7{3-F(}m6{giw%9X39)4oLZdo0N&&BK}g9v7X4
zP)edvFr~XA_wjLFQfgp89q{EM$9-=&Q;5dPZG4xUJS|wQ0mZ)F$(s97%B^@&ymomY
zDD;L{-$E=@(6X%jCz_c9BTKq|x9gNYg;_lY<KxKYRyCxm&?wuCg;ppyykiu{?4F@B
zYDK+txP6Vzy!N11M9RvIVQ@5iVSefKXF<CHm1J>PpWkqZ$v4T!0vMq)aXJ(ky3Iy}
z;wTNnfo8e*(voVT!ZX(#94J)zKzfz#W#w@=Lxtn^aH@{hY^J22%N^B9?Qw~q_5RB6
zDD^6XM=Kc{lhIy>uSLjx6r(%B{jK3}8hn8x3e0xtOa{?5OWI}fLSl=-2w&GHPT9ZB
z-(t<0P%gP`ihn(ltaeCOi5~rJo3%lc+TbYB?l^c*!^sh04jm+qQaCK7@TnPYvQ&Pk
zb{t0v8hyvC>Atf2I)*8JJcy4Xao)!2W2jfsSIOTHIL%lM5}t|N@bO}vMA%4196k!|
z+)?|MbXX9J-Y|yqQ3_n7J;pQAlDCr9j#*slZ^_)+;9=aIJT;sG4TB3*O{&GS=&;Oz
zl5MF|{buQmqNq)H@m!fO|NE05VkX7*-+MI5fFD*XrSZoCd$3B*H!`z#M3?{~xcMT)
zkzp1C!@8hqTNHUlTVJ(HJ7oy{7~MxFcSolqiqWGJW@vnu?*jcD`qLZyQ1{xgF5*cx
z>=!T$P~Oxo1Mm*8v`lOYaGr#013j_`KJ`cmY{(h)$csNB#o5O5>Sr74TWT+m42n?a
z*w9z&(YM*S->0I;(qb5tp@ulu=(>ELbiu@jGyuuiv1l9SD`_qOmuP~n-_xmVZ|PAb
z8?cPo@vIy0PHQmE>u*Qd&`y6HB%V5W)#Ey|6O}a()wxcTxZr$lKpwg*)kn3<%y{lB
z1)SCpH?fo5HIPAEFY2SP^ruNf*fA3>d{!KQ_#7bKMoLi*DtwZlR~6mVOJtot=yNtQ
zN&~$hb{bg@x`;-)1P=O)Ms<J~d`=@n9S37uBV!*2(^w<Z90&7iBl9)~%V8tSIS1=q
zBP)c14Y7$0lan3)?R}gav`rkWoSeK(oT8juvQ1p7oZLE1+{T<d)=fOloV*@QyaAki
z5lwsvoctM0{P~;$WlaKgoPuplf_)H9p|K{RIZol#CgE*Pk;5jDb57B_CQ%5d7-F*+
zCYLyVvp5--1Z}efE0-j1v!p1Olx(w<DwniQv$QdnjCHe&GncGKvupsDTtu^60+)P7
zvwS|6LRqsy9hYKTvtl2Y(pa<79GCKHv+_2V%3-t0IhX2Pvnqs34Y5THlUp6X<?T<5
z25pN5E4L<Zi>4?yShfYM%B`i-qGimjZQY{n%&p_mq7%Ta8_}Yhz^#|jqL<IDU)G{u
z$8FHoV$jEJIM!k~$Nhe_<^49d(P4|xIk)j$i!p@T1hLfwlgAXl)s&3KjJDN`mB*a7
z)m)UvLblaHmB&)2)zX;9${NyY<;-L4(P|yQV-wM8lfYw}(Q2E|V^`K{SI1-D)@t9!
z<1p6hFvsJ#+UmH?<8;{Sbk5^^*Xj)6aY1Zz!Q^$tZ*wK%b)#)_W99w8+x9_}*Il;F
zU6uEvPTNOg-cQzTpPYF;JlZ@0cs(Q9JQH}mGTOZIdA-Zpyz6*<+S+{jczws(eCK%m
zR@?lxdHoOD{Lgs<?%Dz%yn%@AftY+j`0YVte8IHs!K{2CyzL>Pe4(=Kp{jggI_+V`
zeBsvZ;m&*!9_<kUe323DkqLZJ8SPQ|e9>j?(RF+=ZS66Ae6eHgv2%QJtL<^yeDR0v
z@#lOAckKxfzC^^1L`(>O5`IS#8GkZuM=~pa3U5b>D1WMKN2)4+nodWWF@L&sN4hhA
zhDS$60DopgM`i+lRz^owK7V#uM|K^5PFqJ#AAjyxNA4W|=hcqS+x&Tl9eL;c`F9=p
z5dH$h&H_w<Lj2A`GJzu6&LUQUFT9;!L<NdvJBw8XN_09)j0H-qJ4>Af$~-#D0tCt<
zI?EFTDl$4N@&zi(IxFi0s@giM`UI-SI;-adYF0aIwgqYrJ8RDc>h3!0AOiJ>UG<oP
z4ftIRWP**fU5%`QO}t%AqJqt`UCpY3EjnE-#)7TZU9HZ7Z5~~10fOxjUF`{i9T{C6
z`GTEgU7dA;U2TxAu0Fx;v99hp!JgHwo^8S2!>-<Q!M?k$K8RpHVs}5L&;Wk-0GZGr
zZTBFn&=7C;kf_kGZ1=FL(1=d=h_TS9b@!;V(3nT}Sb)%YME7`t&_qV}M842uS@&d}
z&{SLZRG-lFSoidt(9CN0%(l?%VfXC0(A-`397Jdyv1cAr_$z+TS2E!R+8%FB7sFV+
zTU)|ZHsLJco`p8|UFB?Ti~Ms#;gt;dD{Vg+GTYTFJ-AR8^~jgC1ikeTKe<(zjXT1h
zC}Ep@!dWB2o2<>o^Do7IJ!!`;-?#l_t|GUw^`9`pb}&WOVg02s#TF?=3ZrZ^*n0O>
ziGDDONby3Zet7tin)@H9>XRDyi+u1u^zm1Zd_B5bKMd&==6yZBTOVljKUM8HVZ7cQ
z^WQ_2{<Yb=G50Ed*z+5kX#45){EBe<s#h3ObR`A<4|et?=Jhw$fURwm>mk1@Sgsc3
zfc&I`8*|aDEWew!55GSIXyf?b#{}#K^a;fT<iFHDCJ;WJH(j*#X(t*#PxXE26%`rk
zeVI#qor2)QhC&6wBI9v+0!$^sPzib5?*V2~QP}j_&7MGWnYefSpRVtL7II0H^66Y&
zSe6QDjC!r1nXpz$S)8^j&0Z;161jq2x4FkyHfn{EQFz?mIJO!kidj4#A93u!aVWlz
z*X)%L24#4}3adC|_^Q><1|{j-K6sA$E%xiJAD{4?zBOSCZ^UYx<%`mM{J_U2*H)Vo
z02wDihJs?-?sX&N{q#)WW-*aMuhW_f4&KXb+(Do1YO4(m$%6HfL41>v7JQ|RKfMrr
za#(M&U2XO2DzqZ&zx8_MWlcQ@iS`?hmen2Z15<Jx_P-E&yB{xB=(PFwfQ-q8e6d9q
zzIBLSn0w>ix2X(QsYExlc|b`0eIKrl?SDM&dwy5lF~>L*HTk>*1qFhF247Y7!r>Yw
z4j_>D*4I4!c~{N$`fQJZf+-@;jOz=fYyBA-x*TN?OIZjwf}>@qPQK@P<w&BE-Id4+
zp+X2P3=2S!qiz`xp)zUttV^6cP7x=BB|p_~{)Kby1iFTWsE5IvY-yaZzH0!+a0fa+
z`59}PZG<>wI`w{Pw|3z9I7ImJ9;-SKs&2SUPyq5!FqJp??X9x$^88^Ml(VT!M%QCk
z0}`)tgCzr^6fDjvzXpkq4WOts(?~&Yr7o%nzbthQ&n``~hDhNm21ChQ)Pw}+bF*^i
zE5N6%=sWh{>a=wdX>m59Y^1e78(mf}>p&i;pz?iZ($=j$`{8Y*czy<wUtoX&a|h^3
znxWj_#@||fBP1E$+-67|^;fV4xfqGipg;!O7svfj`CP*I+rBqj8FQM8Y24(H0CnMM
zPA1GVTWx<_qs-lK#b=%Bu=^A!C`@AX9X2SNi-p~I;a38S6N<q0N+dj@b$wW{{|<DT
z9|!-BOv}8igE1t~IxP%d=YtXv&#l5?b{J{)QBf8QzI6_%4bpM3t^USQc}ZTjU2<;k
zabcBXW%g-p&ub@n&}S7-@`e<ecW2GZMmaXAEwj)E5#Lq>oLYbNzB`X!f4MV?xK(L8
z?}jJKb+JM8^a+f@SQWS&BncpP)5llsbRDUy75X#Hy=^!R{pzFwGmQ%|Y?|j6CAnFO
z$n{z3WHozHTGh(`e7kYXnZw%5I@rUq<p?3U-}z#n%~~!>(aW+QW}NrHbzn&eb(<W5
zf$Tj(k@@}MtYw>&15qwP9%ftePjBT#hbY<0^{z&sZ}y<^C+b^vzx<*=C@As=I4Ik{
zLNfPIUeKT6a{gyX1_S~TaLW-3X@JNTK_GqVfBG>XCvuQC-QWEfkfI->hW%gtn779u
za%XaKFAzvckz7v^<otHMC-+nU`Md|o%PS}-X)EdfFSkkgz3V@2lfIL)o|A{Zm%r0{
zCC~SYK2A#BPWnDx`v0bze7&4Jy*xpnByz=AkYX0&-xV2<LJ{bF8TtDLcKaldQwh0K
z!&^lL<kiCNQ1zxaas5+~Q7BS!idAw-RrHEg^2+%y6&b?{cc(<>K!1-wXTM<I|5cGG
zKGqM+Pz-O^k0{lTZqQHeaSDue3QY3~jrEPp@Jr6|NG$g+=u?UwR!kmO%39LP{9AAO
z@}@UE{-ZZJm2Y|%k9$_FdNpqRt0DserGUs&L3*hgpiC!FxgMy<2~^=l-rxjk_XeeW
zRFCy?u6XZJ<fRnskX+%F(;i5k8K@r{=o}mBl@{Wh5#^hc?B5oq_9fD}DB7bU*{LYm
zyCK@SA=$Yh-MhQcZ#05@G+JpQS!ps;e<@3UG|OqVNN=>jd92KLt=xH|=F?`Q*Iu*t
z-+)s_YIMy18{pJb(cIZkUD{C7(D`=T+#Fjz8e6aw(XpCQJ@(%LPN`$3<-=?L=uIV4
zKZ|BBD;7@6*X|l8_d1sjnl^4b_U=cMV@E4vM{83j8grJ4Qa0LRS39%DTT3Q7nwPuF
zmfD*4yJPn{Yet8<SB5G!N9s?8Vt<ZhT~20RFXa53D%qcHI9aGTSZu$XExK7Mx!Y`b
z+UxjFx@mc8Vrh2iAG&F7{pZ-x<IE*wedl21=gnJ4=4gHH=g#Ky(fIA*3gmL?^={+v
zUv$&a&xhAPr#~)FE?*vg{zEtYM@UA<rXM~u41muU1=UbA5<|d=k|?MCWh?>291ex^
zU+E@ExPRy->c8lwq)?SSq7N`63eDwTzt9=K(M{L5j1n}SZ*<eSy0{U9<&AE_#Qrzk
zBr3>l`FwTvH{CSwH{CS(FS=>_UvyK$8{LG3bj1~`+W<8hMWUFewEnAaDwET`H+<lK
zqnkAUp_`;Wcm|)v)}F7|{zW$_{GaHi7Q0UO|AuaI{!h9|{lBA|uEkjXZ*)`Y|BY@c
z{ZG0{13&67y6MZ#KXj8G)&H4pq8EcUM0%r}-anhp!~RV-k%ulQFjk{!K#P0mgQ4&$
zx)-A9y>Obv!0><5P5f+=Z*<fCf1#Vw3*NXT_iQz!BHh3wKxwR}+TU~&4!tNzF*S1K
z{Ttm>U0|Z|MmPO<qnnuf2T_^TOn``E|E8N_S^lD%sP|4_gLb$kHA?@Yo9f0N|E8OU
z;SrJm4&r*%Z*)_6d1o?gLF{Do8{Nb;*n}EJ-%psi^$*=-Ev^upSf}Z4*W8b{CSu7T
z0ncSRkHiXQgu*68H4(%AIhl>rkILT-&Zk2K_al;0xe_1{`<h%KGNW?2j)WR^Cqf%`
zH!5-io`|uKbBmKFHETzYD7tAA6eA_XP?fpL2!@!hgt@k3uOtK+E!m~eA_di;sk%+B
zGab&sRuXE}KV`&W@P~87tQ%=|H({tC7co|u%T1AGWVizuI~jf{;@eh!d;sl2z1??v
zD_k|Z+mWa$?b1PoT4KzR5KUD|6v7k=sZx7O07gW_t14G|9TIAE_CpGqT<ouK-s~an
zKrgFTA@dHgaM<5-97AMap}lC%-=-415iAL*L8eiO&^_%e3B;%kzaLL07`aA8_i^B|
z#QY<SRLN;^#ZZ4`T}pOBHHW3BXWAPcs1hSBE6;DuhRmFC@QOx)P2B?bBRFt^aUGE?
z5JvjZeBszcT+u8LYGA+d-s>bmTd4pM<%jNAn&Lu<+1yb=<?sPE-7t78A=wY%zY!=X
znUCf85cLXApLZpoBV9tNrN)sVzzm64^$~B$=Lq=CQK^E9UmzacgvBH5f--a|MLCWT
ztNS3#nR!Z>AO$(-$U;J2cXrOKBSUeSFHofKtw@jBF|3|V*}`nt{jG<m@rTCiM=zoL
zuXJTaI3yDYVNTppD*$YJWf*R``y~BU`?#*2MbqOU#HZs*!f3WYsNZ8yeW;(QQHr1l
zD4bGJ2+awvJhQm=*g~`4=q7}}=%#}=x=9J7{6;r1z0plJKPV~R=q9GW=%yLWn>Gx$
z{x`bmf%4*Sx+xq@p*#PLZo>WQn*2sL$)UfKeWRPg-{>YpL~e^Wx=HeHx=G1;;0*X5
zbW{CB6bzm98{MQ#{YE!Y{wLi;OTTrG$!FGB5cWnlQM}Pj{mxkKsAX?-Q_0_S)6$pU
zfJfo5jmbjD4x$t_-B)?5k>acgRcsGC?7)p*9P!wZkbe0Qs9InW%=otD4^yOI921-r
z?1*DuyTl5U1ELnJ{$RF{SRI8UtSaDpO=J!@-l8&)!V9A2XO!hBIot{=ZbdRRF5xoo
z3(^lw*oHufyiY43KtyP0+4aHs(GIH$4GKAYH7@bk*efQ}mk2H_gFq$=wKAAQ=;+`(
z7HHz2FA$gcn{Sa?!45YZ@0Z_+cRnOIQ{g!`i2=FAJ|s3nKAF41u|qN2c>(%hRzSha
z#s)0ObMy*<JQ)q65~ysb(_);IW=O=8p~XWT<>Wc>=!aq({P7paCgl>i6^82IgoYEQ
z*2k)2F&r1Nfai3O+)k1)#$cL@dlPAyjlM{STb2b<6tqP*+IC*S*eZraL&gJz1i}9M
zpn9Eva}qh<8+<V0c3CY#*5Hq$<RlV3?9dL&c}s8kB}gn-(g?RdWZ7;f$cArV&Wue;
z`^+dr$&(rP6Dg->vv%HNI}Mm*+{Xy+`+2lZ3rsn{?R-EuG!TPRoJLNtFG&c~{Gi&f
z11{huIFXDe9i-^=M?8<o<SO%u>`ZWt^_MBX2x%ikaGcszqSuA+X&sDtR}sp(Rhcw4
z8`QT)Kx#DEZRP}phIltIEQGCN8J(vE<xpRmiK+pWiACR;kyI@1A`llm>_zVW8u6J~
z!?1`!JiuKHNd>nC2vbKrgGjz6`WUnoGd~W+MDkH0`dN3n04u$vf*~Q#An|lkxh`{{
zx=cFG(7W3PwD25JifER}K`TX&L5SF&{Lo~|IK1{ce)@?O);@G?kE60nPOv8l@MJjZ
zEyHs17R=xKl>P)doQ)Q5SLSx6h5NQAvz;aWxF6g{H7Qiy<l9`8IA-?XZimbRTWB~v
z#g}Mjll(?Eef<~RBsbjW3s{j^_sW78MK*lw>4^5FWh2k$!_`?75T*LVkvL!4JyR4j
z<t{*uiQ&PU-@YeH$$Nk{!Iz9Zdl6iZv$vMz+@~4O+XNyZ*QGy^P#`f1xJRfXFrIp&
zo3dZLzP-^+m?|xlv!!?E;~5Pd5<fIf$KK1VBNh5Q#8<k6&X<y|k$(~|$}E++MEZ_=
zTuOtX(dM-G0`jJnYx#fytV9waANLcYpOJX*%;6hB)%*H`(d;42{&S8;gxn9*m@M~q
z&o>ONei8(rJ(rx<^)8V=Lm!rAWXVEHXpPY$@HHH%uJC{0vXe~s7z1~5I`#p(=gnK)
zygB-oqkS%>7Qi~Yrn9XTmoZF;R3;1h8B^Z9U)%8ouEujyBiC4tjC%Y%<6W50{Zmy(
z?@QBpUgtah9)PRvp{ya_p_^~|doT{{9nhj1!9%nSuvKgudgq5)2wt>S-lhVKbK|3@
zgTcH2GTuN`Q-M}|jWSsPwha(3QfUkU$Y+A#;{wE#!F)5Es7JkfBh0+_iKy3v**twv
zl7ev?f_Z)h)O-8|I91luDvkdOa60+vwbS-tG=qXIkVGc};M$~vc<H*B4tTzCal+St
z%zMEkhK=h0-xK&+iMt^chKqy!@GnWO@VxI_y%5CTS?Pr3BbrY{5aRH;zOqT0@R1VH
zLWSN1q5^GoA(13ZWq%<~9t2p1cL9%9fv1STAofUPbw}^}PuJ@5HU|-<HkvM;0L)VR
zEw}(QQ#__IV~X|&9c^G$kUP>xOcFZ4GK~*7(^G7Ozuq&1N!;TxA}}B`<hqnsdeqaB
z4yuMOwrJFQAv|=&28$AoFLyVVmM(h26Z{4^3EKoTYemRp0%~Q#s}X?T!~uH*E-05K
zPVM2iNgp|-{BoLz3OyyG)?8i)*jzkfKj^T1PK`8dNPtU<H)+KqY<HoT@R)43wQ}`;
zJi^LYBd@p*!_twKD+M5hCDPcutF>~}T8jI2AMpVRc;4{N3pN?n^?jJ9++2tkqD|mD
zj_WCeATp1DhB*qz*71%cIfZ@zxAO>yA^XV)H<f%K#bz%V<}#%`(r1+~4fk)iNjED^
zS5M8*%CL;iMQ4rVVLz&5KP*lo9#`BGlQ$kUNX<-Mgn(UZ?l1<~Rre?;K|Y;gOA3?O
zD&{+FNC9G^whbnKNN}JoFuUY0x5>^+E{Q<LThH^rQ^{vNgT^&U!~=+Ios1BqOek-B
zc$Cl?X=@~#988}^JK^pA<~Ai|!bJI3N~eAgGmLiuCcU{$;=1_kf4NPyQNZPYyG=>F
zv5~QSk*VICxl!i1e%j%EUcdoc%>?<hwF-bpvci`@3Z~US?RFmx2wt|YWqNf)xTj~B
z1${WZgepN$#sgv|=epb13<~Wq!utY@c@vbN9q8k%+-HI$F&oXb{@f;l0-mruB$V{3
zj@T_zfz>R4sha(r7vV!k{)-+~rd~9jx<zwCl=Wfi?nlfSZhWkr+$_&*<6|LHB=<Gw
zcM(6M2~x~%T0S!C0u5;?`YYa>V!gRdT3k?af4NQb&>&#GOoh*M6sfqkhNJ?Dw0?5=
z@s~HZ$*6@0J^Qo10)UqGFSjXqCk>u3Z^u(k!s~;&cGQ%Y90d`np=&7$bbb(WR%ArR
z4|S;99|AWQX!Ew3wgP1x)?s=ZvIn-BLxrW`cA6oR-dm6X+y!xxL<SzPxU{E$gwIA<
z@j(CyMS)rLmmgk$jI~d*(%5$seii(s+cv-|U?~I<eGyo(<ceDAmB=%hHHDz;dtX^U
ziBk<QvBsq#*{kf@z-i2;KsQkcq{J*&%M6{Y_}*UXA7wEnATb%u(eF(-C{V4aUS0S#
z-r$XH`dR`LsCIf-sPJeN(OiC1SsB<Fi-}m^noXg1n-`W{e)fn-5t;Da4xo2|@{>)m
za52r~Av^K7dKf8vb0UGcG9+T77NLPcj;JOsJFa%f>iMJ&Duxf{v|_G=)PX*`Tt0?^
zs1nMH@ZCFYxXlU%uiCFD??@yXB8MvR8xxuv^86t>9`BHvveivjE1Lo-n_$^FR-omJ
znv2O?Q%N2ZC>G%*PX+o)8?BC-vdEjBP-?Xq0eeKe!nzi#(xs;i0DwYWfIhBFPOX_>
z9uOt_DzkA)*Xha*_{S3nDuDlzDBc-fZem+c`53|RSdXz;y`s}P`=!?8p&%m(LqDrM
z+Q%80z3pQRp)F%04MAgyV&KLn;2KpCgw`6a!7LWFWqY)d^R@`aRrjW#y*wsu1w_?c
z37}F;Y3~GA<aDZbwSDv=EEDXC?&`!1;=u_K3+*EELv5_)?S_15MwEo<+w_L@29#EH
zbs6Am`LygX)Pf%aG$R2WnU(HzfF!F1JP3Kl9ZDVQO2VgXitVl#6N5Um$xH<KgnjF5
zj&Vx#%_R7$+}n-D;4Y#cK7eI@CxbP=B-<v&AWiR>tX7mxu7`&H@{X${p*PPDHKqr@
zp{KGUYalaxjeQ`+_6wzfhdW-1p+>mf_y9u^+}dSUM;MJ*OrMEuCGu{hw<3V9JE`?u
z#5+T*Ma3QihFYaVzE8Hm(8HE3MyU5T^{)2up|(IJ+Ps4`5?Qo18^W3-ML-9k%kQYj
zGXsF#T1^0IjRwl-aYdWLAg-bzP`O**C94_p?YP6&5xBL6Io%Ek!$7>tB->Rdy5tb?
z-1L>}h?f{|=?)sO`pAuZQ$9lnETk|zw5mvkD^9R55y57>Y@_$9T^}y_1fo4)R(>Lp
zzE<ejT;$Ddx;8=7&nwEw*t#@fIkuz4w?m2kc+fSnJ1~j2J2_W2C>}!-k}29b9fNbo
zp&w{~a5R#6R?Ff5zEc>bN0`DJ@SXoe=wJYdZ=W2x2g0*Ws}hg76ORT<;97SBfQS8a
znVA}GUiXzF+I-`vh2iWGhNC_oBA*B5N_<ldfX|<ruISmZ8>aD+a?s_w;eyoQ&f;6j
zIbW*##;OJ{h_M8TC)em}8@=Sv3<2*mCx3iZZb1glj^*}Mhnsq}+C5{w+e-hFlLrBe
z!xn;J<UQd#0q_^@g@vSC5YI7!;I_%!W~u3T<J`X4tFJ!YgCD8~{+vcGo+WT^`JTn}
z-*rzg8kBEI&9*9d`gwwJl>zvUVUYR3@>o)oKoa>EU=3>5%blUp-2(Y#UnRl{Nc<hN
z1HjIvJ_Z>G-;dlPK}n{wfDFChy}yD7Ts;Ws#u#0Z6&L}0e(O+qG>yAIjk_NOel7bF
z-kAlkT`nPOOQ0iK*i-@}3x7gVU!S`RLK<*46$UU_4o-UTaWZcpi+dc0FY>*_crmsM
z#aU#aFIs5<+;v7c;%12}0mKC~BxZv!yBpuC`{%rYUYc>RdMN^aa}iq0UvtOf(LEN>
zD`%Mj3e*^3dQkQd&J|w8IfSn&xiJ9Ld5$XmAgARmk)a4^M~|m&!2Y8C_b_{Vrp*w?
zA*>2*qo3bzjz&!;mTg+TvpI5M`mL>cx*6R%sDBpf;KCP&T9?AId%fsT%_7`;ETQoh
zX8SoD$+!Dxz6)dGKs%F=Dei)JxpRp={bO`@0gb=w+uo<pAQ9ow3A9aN;Z69$-PwaZ
zL}dUGsZFJfx)ew9Pi4U3qu~_u9*nDOACpD4z>*3&F!T<S&IwSMzU7$F57X~%;(_b*
za|ao3SHA~uoe@ekJ=*`{f#?sPow%*NUz-yCZ0qL9hU)V$^#{mb4}$y%tXTl+pMgXy
zs)&Vwc)UL|Au>k@Z*CJ5qLG$kG|SYX=V5tBm&0oUV*HL=W_@lqeBXyHmLUxxFaVQH
z*EO(N8trG)qS^9|cEOq2><)wK8`{(_XxX_w)p`Q|^<>Ydu0%|yI$n$-@8^sp!02zW
zNjtc!%!M6wUYnzKALZqnS$DyrNL~i;)Is{RRmD~nAKmXnB$M4huH`HOX!@4Qfkv2s
zGyQ%4^KAZglX!E+;QJCh`(I*{#hcg!K#ls=jk;?`g}?Z?C|Qzcl%R#8BRvfhWMUQ1
z{w6k|VNy541~}J_XEAsJV+qG40U(eW1gaMiXa_Szm5O(Xz5O{e$=sG2GopY76o?uN
zflq+=5w=MKnj=1GV#H-a3zEN~O$&cmjREYUSCr0;(aTgSVShSG{y-VEXV;c!JYlW^
zMAEF}kD(<0aFKC_O1pfNoxZNirh@jA2Nd9HzJS%%3uKH9rjej;?He%6$oMS!Mg|q5
z8x7Q66YWq;f3tIIuB+q=LWx2GF;Dvy?9~wiPv;n;_s7oKGJS6c;KKMvZV_B>?b0+n
zcvoZmtqj3xkp52y?Dv-L_bp%UEtSvXbAex5!Lx8e&WRlYci**hO<3J-GRZOZ$kZ=a
zZsH_8rmr90&?XD3!bsMz7@oO`IRKm1eSxYaZyQ*OaS%@ZIV|9Ly-VqS0wWUghBg(x
ztkw}01q>mOqh=RlWE)58!@P#gy%;Sej?rQ+&dIMh%VY;VCt^;j&+!OUVJyM}VBj#Q
z`07!*1CViFuQD8V;sWj{0DtvkJ_irI+A_%157dRBzO97HFEwOS=`q8>x|j)p(U1d+
zZ<!n=GV%1HjY@otKl)O51V@K;3-DCKr$9&~HXwWrFIR+Ysr8>E3ju!!3b{;xl#4-9
z16ZM+&M?w-=J3&4Q+PiW@>opub1RZb!2BPAP)O1+kGav5YRr}^TS3_Y`zRZcp4yIj
zW8pcsgC`F3doIcFsh@3hl?FTEcf%d-*~|`GY;gmB9M>gn5RN3SY(nf(Rz)3@CaBWi
z_F8AYlK<=>R^+E@OKq@TZM6+dH!ePTwIQ9%rrwE9bmU2#xzaz(EX)xZV<4%%3>#Nx
zNSNw25BdZlRWCE%e)ao@ZtCj|Vle_HrU?m{?S{s8x=05HlX^-sls0<)r8b#T!v_<r
z6~jEEL5=*SHjUz-A~8TG#*+f5*@nPO?1RXR-E2eX)E^WBDZyD6xL~z{Iye$|s-Gi4
z1TJRuIb!pB*ffFzYUKa~aSdi*acXs-y2^1Rl1Ay9+QdRVMWIwE1g9>Ar7V?158LiJ
zf^TC)9wr%tvvx>Pj{*uxQI&a+f}csX_=8P*u4sY_krLRG0L<XcoJVTWQH{MVWfp>^
zC*;NhI|059Ed9`^Oh^6k{ke^S%%6~xh{1qjrx0pUc1wUj)*}=XEFZZFGpx+I79F7V
zo(e}3>e7t~tSKJ`SaJwXo6xh@iV4*fMIMHOlv}z192`&fxa(Vy7H}DnQJ~cdn=Sur
zFt(|s>(%F_rL71FUz{8HUM>HdZdy5)2}0$$H}NloLN^V6_vwG9n{FN}%@ZYg&N2hu
z{sLO0YHI%n-E{DbRQg~ALE+<}9)6vGvn~k1^ZuW7Q|X*lNzTd?Vd;XL90jDTs`c?-
zbW?~`r+opsOBwAQ!U;@a*nqZ=W9#2^)AFl;QwDCND!Essmu1FByh=ogPFQ?jm%r&I
zze5?JA6&nsCR;`*Gko3N=%(%y7B&8dKk<@p=gB`x=#0Ic$KZW&U;6*2o6L<&s$m0b
zMZD86+h0$9HQc@WTyUopp&_afL6A#b=)T0}tOkI5A*6J$D8Bf*eNRzitoePgzgdr>
zI0`WR4N}NnNLTtecANuImttRFB9m|AgXq<C$!3V}VG&Luf|0v3Adiz5z0v$?flrqp
zB*aFMTgwZ(ci@5ng>ngkO6gDlQwUsGqd00UW(a#VCaU0(NX$&4C@U2biq{brnLuo$
ztObR5sBR*XN_{YAmkBm^%J3_btC{Lj0v^1H6eB5m4BC|$fmgXG(Z)OtUvUw}OgY{S
z;k>A2ECJEOzSwinWt?OT<?u!O*d{*|;*)p(HPS*4ER$Fg9oT|WaBvh&7z&ZkB+w57
zG%itD5~eg@Oeu^MCc~g1ike7;f#xMQWayThg)>P{EvfLtW|GWjQli|vngp-30G$Ij
z1#KZOZ{((t$hT(6xXdxFk1?DEQ}{*ANiWe5i!(FV(CW?vB2S{zs+LfbYQe!h1SOBx
z1X?7HWayzE(hw2LeIEM3@p(N-O5q?&Wr><!(@e!<11oR2`w-?#Z`OB%sz62QP+;tj
z;@e~c2y*?Cits`;wVb2yTKtF~dZO_rZeA2kcl)(hH(VU0KZK5oUj9Au1Uyt>F&&pF
zD|EX?BFabz;ATf`6mc<G|4#{Z8Vu6Uj6n*27Z6`0j8gvmV7>$x<iw?<;40APE6^VR
zlL@U71j<TE2Y<<ZhE^&BECers3*Ir&)4?xj@pE8Dh9@x~R@iA-t8iBdz7<S1Pt;q~
z<^u!J7}V4Up&HYhOO(9C)O8+1PNCUqF232y4=^l3at5y(ZurH_<ptK`V_A!}qzj3%
z7FJGOKb7b#7h9@Ft_Ry_gNkZ)#h}X7i_*DJLWC`}DdjfnRT?PyBF_}mtCZ6Ama5xx
z?GzkhBsxniYACp?wI`0jyA0PwB%4+NJi7AGV0Ea{G$!#i&u?i8I#59)$Iil$TMh0l
zXyLwg@@Xd<x8LVNYOD94z3rE_tiT*6%C(#mF^jL!OMVy*=g!DQ-)~v)s3Gs^jmD}B
zY&bHDue)rW!t64!u<k1kNG=raCc*I%1We?31^88hiLImfZE&vremc>;*sS0|D)bAr
z{g}Z!@4L}HX;7>V${5DjYClJ>YaIOie!>C7y+RZ2-15p`hdWxgpZC)#xwX<hZ5_dY
zDz}^8`)Vx%Bf^eF%XP(wYV%7{y@U<nekR$I19?2Sh@h8BSh)2y+^UC0Oek86;4YB`
zeS#hn^*Zt|QLv4J{By1DO!?G$D>vwm!SqIC%uhnQ@jGj5*}pC21H`69ct16e;&3y=
z6Y9=crH>Z)bIJ2Y^)LP*L`)xHq(c6)cq2WqfVt*o!Q6dBo1y<XlE$`jnW!IG6dG}L
zu@=e+#UYsB)|)2%kAeEVmMr#DGtUGAjz8#BbdGhD2!THTJoY#~^xdZ4tGLOc(5%cI
z|F<BKACGTIOM1Get>V1;iWZWQ)WppN$YJj%sb6u<e);vmKeRq|ePssx@n7DBH?EId
z?y)CU^7UK4=Bl!OxiH^vZ4=E5`b?|mkg6o`y{5HoK<8JWT1f6RIpu|}O!jvL#*_**
zhhONN(Su*KefI-CepGO&*|{ProgZcnNuoAih)mX5xc$v!m*8XyUnbRK(1I+F=xF)}
zINTa3J)zQsahh2Kx2naW@l{ab_}98V2yWK<QvlQL&y8=3%v?_?^cXXrBi8C9kQ<0A
zggv1_p6&bJY~xnr4HOi!7BE^}r}Tsle3EZ+oK(MVPjxI1CwxB7lVz8u4>)@mz`o{k
zcx)jt)GLsD-Z0)~Ikr4s#Swgg%GQB+7I(x+bbAATHRt<S3(DUh>2KW{LHuN`^BU3f
z_$To3CV6s5z~)oy4I=0KbDCtUpUHCW^~nTwa^myRS9<>Ru69hLQrr)?Wz+w0rtS~>
zqd8~w@fl`-y9a*Zo9!R&^B5Rw@7AEiE-JyM{zvX=Gm)Gl(RxL}Qbm@bU>@ki*2x%A
z;7|+aP|HA3*8^pRQj<{7VE1MYbbWipi@ETP0Ufrx_$Dj|j=nh3buV6X*To_y7O^-j
zXDuOdg^*8^Y;Zlggm|giz}{&uVsjt;JErg0C`0;8Zua8$A1G+JIvIUM;^iBz)f*2K
zYfm-X&lcI!VPXj3x*E#)yBR|uxJ;2HoT6olLj><6ZWRYft_RMmy5Hq;)DB4=`_%uy
zk{C2Ao~q(mLG9&#&TmfcQYAtK8cL!XiXIPf>kw724-fpn>IQBO3@wTvclR+W^{G^`
z+;k3mhtx|oOSGO!NOJWJND4jyq|})DnkFSOd`4u!EXgoDn9<cdQfvZejQsA5n2(Yu
zD8t>0QnJ-=y0T=d&G01W=+&Y`68}&wcJ&E%1Dhd-rZ3wIOica;!y`5dr@;`95SzY3
zA0J!{dZQRjPN(aV^l*&q`4cUsKu_e`2+~@?k7$t=I-%h93Q;r}(<MQmJ&ll5ck0d<
zcX2QBwUo(FKiYM#1b7@0W+CIP)OIpCP7BLuFg;er$Wlr-Ha9hZ;2^E4#1h|JKNj4=
zcQyd{#=|)+=sYZ<tS{*sN{b-WpZhK*Ux5+5sm!r+ET>o|DQMKXnU`BCsx?_6<+<F6
ziqR*yCHidulT)@tag54vEb|+e6;-_mlVG;gWU()Z@SCI%nquiy6&TE2P^9o!-vZd5
z{Jtqq2v*c_7=O$ey={^Uf|8Rf9uHEh3&II(En?J2DRg|CNQ7gsKf`1JPji6!lMP2w
zh84Bo7)GxZ`hr_bCZ)Bd<bypcUK?A+hS{uB2h!~n2bv|PLs?HK6~E+W#ZnEU500Vh
zmpX<j&`%C!T~|TO9F(fTF}z^uPPF#CZ)0^r%2^7t-`|y|h4T8u40AJ0b3e%ta#3NO
zk|QY!w3M@iGAW*(shlbCr#Q&wuvJ^0NaZz8JAl7r2#j^+$_)il!BKXRyUlJ3N%wJ$
zU&2*hP{|RT&B3KAMdXf*G`2i}8FWKnPKs5Dr4-kMN<31<>+R+dKhMPP*4@;11Exga
zI9j)!$8VXG416j)up=`zNY95mZoJ1I@99s#te#Z!XzcRq)!nPH{SOaZ0WdL8(qs6a
z8wYWq2!&fIsE5Ad%&eewq~xmWqs?OdnCewR?nj#rHspBcID@i3O>H^!!cdE!Lh~%9
zKB4<H`Ai0)9lAgsH^)}f2>7MIdNT=5>0;+D4{hcpqb{RP)<CUU2tX6v{KKO;$&Ox=
zNkBOa`5?kuEU%>W<@>Zev@*vGNa1p7lAK%RiB3hrKxNw^8n~>$Jk!9;SciwQFga9f
z6w0X`#u=a_q&~w4wpa)hl9P3ug&onl{-b$Syl^|rd^6ohBV41+yppr1vD;h`%dw*E
zr{s23iB__da!m)9tR_^fa^6jEX|B!ZGi{f)cwVf<el4Zr%YaBNN-ntkQ-f7L>?=}>
zf-$q!1jmx(M}lPH$o!(|zUe_%9|f!);Ybc;*BYS&JN0@b7LSdYvth93x34u!ip7j`
z3XZjqvPS{%#|8Q?9GMi%Drsm2ry4C#da+u{OR+NsT4P4i-Ham(4@(+x?}csAb^5S4
zaT$>ik$Bs)7n4i0qiU8?m=ys<>$e=_R8ynOj_a1yi*{Y>@2>g^i*$1v*FMH+$?Pk#
zz$}-=*4!u0dB<gzEG^V^(Mvr`rIHMk6R%~1SH4iMfooLNwRA%qbjZWT_I<%C1~e<h
zd1_B};$3SrIFaK%dbg*#ZJ+g;ao78p^&H;UUVwG4V_S7CRWoo6v8D}*f7WLFERF5r
zUFSd>hS!i;=8Wjk9??>typi|{ziMe{@Exo%<Jk7Juo}6snRa3@ioRu9%-H^Mbv>;Z
zLc6nB`zv#dd!edXk0y6WP1s;XSiMpinTuq7TWPHf9FxzWM6?W^;Nob!29<4LBHC1+
z41=vSC)F5?uW(CjeyH?Oe6uGO>Z8`U44XIN=4k)6s+zW)c{3^@VEp=`-lDu>{uK23
z%Xr47NlFuylRNfMc}sUmwNS0jcCirp!1#DrX-ZmKfLh1vv5n%zX#PwSaa5~*<2~OJ
z8fNd#j$`JG631TCXe-Lpk6+3O)T)hI?=b~b6n<<WD9psbEjG?<-3n9VlqSFfHYck#
z9f{1YnzYenG(LwJ&EIH!v0Q(M<2XUpE^ySiiPjEAV(B26H^}+!11$rAGeM|LfV^8-
z&#&C{Ia#OKnnU~a{sgqI!?Bn2qW`H_8f)}BLgPNpEP;dr<2w5OM0ZahiWZEt*zbMS
zp&h0;JB6&7rQ|cCS>LwBZ~J8a9Iy)J6fAo60xQZ?5?00WM`yd!XkddGEkj{_%g{Y6
zr+s>Ty{_RMDq@TLp6yWIeHb3|3j+gLk&&;=irOk>%^&$uWejjIq>(f$xvwl9w3gJb
z8I}BXE!_@8XETSTB)oj-NLvlwJDL3??nW=NARXRR$Fq{x=A-$IbR(howaCEJZ=z7s
zZ2g0-C`kpEkGN2;C9*I*5PQ5~twJw;&pln%0{m0ycVvb)+0cgQM2|2F={$rBTa2Uz
zvp0C(g~s}PpRY;E+=gc(1jB0i)W++_PXJiIpwouG1mvTl!VF_s%2qv=ZRKorEZSow
z_9=gFWbgsGR%mnPo8gbaG?h>qNqFody=R-^63i?veX>$3kkR17uEmL(MImQlwZIxS
zw)B(DiG49+$50E;QhgAH^1GL&#)EwW91Fu`F+&HV`n3w%NxO4Jjq>kPEn(a?`zOgb
z$4E<d^j9Y^pZ1yFZzW0{hsw;-H`)md+ht3U$I0~Q#Gf?J>=%vNM$#|ybPJBuvRC4D
z63Pha;Ru8|s8!S!>h{b$5jYmzE_G6y&X&gGwjwth^%4Ev<Djym-zkCQQ}p6+vMu%s
z3osomz|IV(4FE_ZMc-AA;+ijh6kA|EJM4A5uN0g$7pBK%?#8L=O|IP*kw57b9%j@}
zz&i`p{T)B=WXNr`JaSYFZ(ZUqn3el0wcL>oVG2>(F58LcQ3m;G)FDP((BQV~;@0Y%
za%0TQVP5-a_OZVjh0gG_0!fnPcBJLk1oezsw_UQ1=j?ZJUvUkQn$VfbbRsakci{LV
z^U7o8??Nt&DM!nV#`db#gS}4p`?_YQUVFhy9Q+mfp9;xDE)28Vw@c*R`hm<Lmb~dY
z4RD?5cAVw*a&&w>h`M4kYxKxvWps!K%PfqfyywRl1+)PdNg`H|6=f^x>a*C-ZY@o2
z8Qj!{6qn>}tqMbA{P_;`?Y&b(m+#>&V#ygFxSUABXF@2&;q$@dJq;$&-F1U{XlBON
zIc#i)A_a@>hF#x>UoW>UwhWjU@y&lLbg|Oy7~a{B-!B}|gy`+^<eT}xC^`!a`)!-y
zeAGx7I7l}`5IqdalPvT*X-Rb-%a)wJVRr9rg=lEHYq{S#nIsl{RHv1VlV<+Ia!i{i
zKg{#d+_(ZP*@gUc-E7oVSYw7+r=)6J5qbL|(3a66zwu+J!Eco23>3$pV13mud8U|M
z^zX`9W3+Lc>#DNrG<_Wpdxd#gk-gqm(7BZ1cQ!KJ)!k#&LEc4hxE!dPSr6yWn1vfR
zbZsbhKI_n_41>w;DZ4xh6{HaE8wr@OvY9<?iaeN}PFV0OW69W4&kqvxWfKlNJ{mW|
zrE&B#G+G2yhTgf3D%9&>KMad_t}Cd!%MwV1l#{Kgf7@bivZsGCHIKLRh)aQ?W0R;p
zVWuN!-Wr;Yn&Pch=Jy(z+d^f7(x_}br1JLfS7)uVjQI`ERzu78L@C)k?xt2E;nukK
zxXn=THd0j&Q$68UV1Q8A70|#F+XQ&tD<hLeIPc%C5h$Hovxg;z!}>$f;10UqqYT;7
z7WJ^%c&tSn8;>^|9rNk2hMLdVMAY@W@lv}1`n9;RK?W1(7S5|_16vsq+B-e?RUX?a
z@=DuuOzyZAI?j2$9liG^d;`Rd!*|s<I<<}uGo`%!LxyY4oU`$=6$cByoJaUyi3UVQ
zJu!894tQ<1>m6NM2VCa|JoXU`f+-%#-rWV{Xgfik5s{!_5V4qSE<l5!DEJ%>M;GM7
zkyx}E)i#$Dqp?K1Zf8fAl;epMvdK&x4QL7}sICRR1%IfggPEq<V{J7lQ#n)#ikL$7
zY3AcO?GgS7$tYxSIG$Y7FO|aw6g=CymoHVrHP{JnEYc2USr)i|oNQs*XtrBzbUeLf
z{#GiSlo#jIQnHnd)|;LL^K%T7PNP?0!Uxh+yE`0>&*^k_&u$TlS-CLsZk=jx3h%?8
zUk+MVW77q)DJ+hUTy_hH&kSJ_JT0=T^>0J18+wxo>wLzizkfaPUhE7;V6)D;3_$Ns
zW^g+He&)YES}4=3b9xcDJ=<veaQ^#6@cv?NEQQtiRp{~hWVOlp{8jk*{?FlJoijw_
z_4)Dc>iirc8VHTT2MU5G@&pAVGqi(3&;{;6p+E&b@-SR|Px5d=yLR#j67PHRNb+bt
ziYV%APl{;z%65tv=FWSHSoTRi$~f)~Ps(`ylXl7k;m3Q*L~#^;sw8P5FREmDh7PKK
zhh(VV>U>_*>3Vh@)EV!+ArI7<rqTQ~S(e#eG}*S59W*(Poewm*u9N(<pFeJR(dK!b
zbkOGeJwDJD1fdAf6^0Rc(-lQAbkco^6L_R6PErt{FG<t)rZ3I1>!dIH?EOezUKlOF
zP*IZY%}`lU*~w5<)A`6y-7qP@SktoM%~;!U(#crY^Z3YEKY$|0)G$Ki!_+vz(8bg=
zBk;u3{8d4axn)`3hq-m#u8X;C%lqjq85b?c((yCfho$qlvWunbSLYK;_vNG@YtPMw
z4{PtkNf&G1%i|O4+h(m0+W`DKU$%ekAqzgU4FeU0*hl^qlIdn2Bk_4=A199y;+UY$
z@#UDLuYz=QOfh#ob4;^O331MFZ~Ai1@}G8d&Ivy~bIyyS3Uhsxe&@%vAkWytwWuuk
z!nLHXD9pXAW#GrXqG#X3z53qgg?r63Mwn;aGRKc+!?vo2XVbCkh3A{=lrZns$4x)p
z?_Q@pyxV?HFT6WJs3Ls3VekC;_M#Yj`S#-kU-^C{DT?s_Of&H3KghE0<v;xF^U8lz
z7$YKZT$1B2a8gm#D{xxV^(t`IFeM`Rt7X$)@OQ^)ui$ylKOq@Wq05nX0YZN!82f~-
zW&|NZ*IyMyg>RM(0)%hZ?fZo9wtOJM_q#EoA`d@v0z@8<tNKKqesw`ao-e0FMPF_<
zApxSV52t;ike4TjC=@JRKQvZ-Ac7DG2D`i;p5yHk?F)jVq#Hois1L^L1|e{k51_l%
zhmbylkR<5_fywouG(zMkn&pGIjrCzHzT{};bVGy-_2E3-<QN~yhe-a^M~FO=148JA
z$*~$DWrQfOQp$&^IU1r=d@248$!Ii0Yj;!NHI<JryEViZJyQ@2(T%bvH^f>AQ4%ed
zk8(FQ#5ws=67SQE@h>#Qf9j?ry(%9Q{?m})|4a#jr5_i^YD^3lqN2dA7?<Y2l10?*
zhjjr>$nWhykJC?5Qp(HA>vQnOeZ!{WrB_hU$D%1D{z<3!KiIpgr#kv|(f0#)7`Ox*
zxCeK4cXxLSZowUbdvJGm3+@s$SP1SAAc6!KXC&{ObG>uTwQHYUb*j$IuKxW2ebX1+
z{d}J9!z4c+Aich{6b3B6IHl9io>3Ey4P#rSAjeKl)wM;<?C(3x#SF+AGZdAHwVN@b
zaL=;IIb`>?n~oRd$Z5?j=NK)ObGS;O!&|4}u{)i0^rO#R=#A#fl$(29_AM93u7dwl
z7q#n<MlN=djgS$avafno&O@)Y<kN$Sj(KW<y84l5_5(1SCM{!@voejyekMv5CkvRq
z_?nSuCel)~q#ox;D(_&yh}*KX8?`DG)_ze5Z<(CI=#<JJR-JM%ErYSDiqWQ;Dss;w
z6@v>=#h-t&;4Dq{9><;<+fB3Rs-;p)oPhxwdPR-DO%{Q`7DL)hSq1N)dMhAQ8)0gt
z8k)XxH(Z?UWfz=C9iCbV&34YRd7T)PG>ixZ02n69X@i(Ovzvp*4OgbLow?f@TGP%A
z7odWJ00WKPj%UW6X>+6i3$l>saY6Cqxv;Djgyv`jBa!Pw&EUekWH@zRf7bZv#TCTs
z14n_;k0?-279?aoQnWL^8)Okn2!&ebv@b}TpX$S!002<{>_=Vis|=aG=S#zL{rTPU
zZ%D81VJ$QuW$;=Hl5w~J$@k}5%i2Gi&v(M@&=%(?iSOVT@1p?fgKJ%GI)H?{QlIhn
zb6f!K#vcSsJXNoh*e@)a4tQA{j`a;;J-(+ud{z@);MWPd7V9`et1yI9-GbQ<Ya@9<
zKp@IpLI5A1^pBO+3Im8|hs+7c$bh0zBE2y|y?}oAHWwbb+>&18l{)C18w(gf=(PO~
znN&HmMaU`Sz9wok$_{i9_6}UT4{$@6Z<E0{F#rI^lw$ruDi8gN7nUgCAj{#MgQGQ6
zG;g&@e{zfxvL11TJ3OSpp8Yxw0}U0B<sR4)7mT_@4JOFP=yWi}>@|#l-jFuSI8fSr
z0010!Mxi<x0oJAq(wiq`T<P>;f_;k6sD;a@rlM6LNcPGf=w_&Ak5M^i4YijlXIbH@
z#2x$84VQ>!RLf2p{GBMp6w*G5N>w*Se5O!S@K`}K^ODG`bHpF*$`8`ES85P)!e41M
zrue+=m7pD~oEqvcv(jGP{>tqNH}k#B$D{IA(5<t>SkGrRil6MM%$Nb^E8D`0KiGX|
zF@s-e?7Vn&@SVR)_DxjZMfk8l-&6I~QrjRMLqwfM!*{aK(l9NrR95saa)thH<O&`E
zfslk8kAeY`?<VG!qW~#Ukn7X%%Ww&a|CQ_}Rj~g*s&>oCD<~@HE9m`~x>7W9|4UsN
z+B@j~QCFTuivLNje0@DZpnvmLAo*g@KfM*`kGG=ptpWMAu{+j6ycML{%^mpPtKCM<
zp?Z!f`o8h{zFCUCbuLE#1Gy5)-w}p{yF;=Sqq_e^u3UoCz5lzn8dLn^t@Jbhc&lQF
zw|e-?Te(zj{L5SUbskvF|B45J(jbRI|NqBo_aAJPl@=TS{|;L<|IgT}V>PRG@_&V`
zQYSAXcV8+;*8lQWjf-E(rVsu`u6F;ETuuBYS80EdtMNbNYWd&E)$(xF#($8jz5gIr
zk9(beCs(UelS^|;f03)Xzmcnz-{cB>{10+9{vYJ(=x^le;4gB8@L%n22)UAikSjvo
z<bRMW^na48*n8}MCs$H{zsMEMZ*tZ2Z{*4VLatiVtHnfIAmpk+P0R?)03lcNSpOnd
zANaW}p1vLbAy*&%kSqCrkgI}!kgH?}xx)TKu5SJtxytxYa>el%xe|2G`Wv~D`=7{F
zoqadw|AJgO{heH~{jbOs>>%_1j$DQR@5oi@-^mpge$;PrRkZaNxmu_EpUD-UD3k##
zgj^Zkn*m|}kSmIS<|&41MDsu7N))f6wHcY-2WLc76Xp-O5(3IY$kp(_k*l2GDfMEH
zoFv3T!(cUFX}k~c54lRCi^nUqLaO`@Ay?IfrYR6|^&LX4*akvTm^Dq+{zk6aD1MVG
zl0634;2j(Y-}+6i>Lxb+kSkbt_;d)l(k+FMtMbb3MVS2fYGeqxlKf4s_<{+u*8d_`
z6?H?HIO6@v4^@~j`li3qst|EMhKo^k4$xt@5e-OnHIqVLi(|ZAIi7^Z1q>m`5od@Y
zkT0V`PeZFY-jEZ#wj98#J5W~|5sK0brK!lhO{-z+Mr@eeM=$<3FNQH|H}-lwV19=C
zOK;Mgyb-Dz%pSU?C=v^f(9woKdNvTpp-nAm0FI6JV|K0F$xi^%J-C?A`UlnCsf=Xf
zw>zsZwgVk{Wa!~qw%Yezom`3zCwIFc7|v>@wz#a*yWr)PXz{U9M72|WLXWWBLNK<{
zA!B!FvGofT43<UD=XXc0=!W^(BJ-Los=GnITH>z}FoS&d;{3BzzZOnYTAAunSOQ+x
zO=FLX*K}O*-y+A{%=5yD(WrhY{3J0U2RFg)Z~YW63~<`D#3?7re1Jg^_rSLF{??dG
za&&-@%piN^@}wFm-dKzlGEqp76*3PPp-l*x2=)y6HTJ?lAvy!vBe%WYwrWoX!i2Jf
z0C$I=;$%dJ%v3qPOner#ETtylnjvR!%oEY)4F<+0g(I@<?t)db*s3*EqQRBqn;D2{
zeI%vu=XOMIp$}R^Y?0)wKB9_T7ZLi&lB*)o1K2pjFj%aQuyPqEY;gukre|PCJ`Ki;
zpq3{w4b8`A-B1t^9u<-Fx{#hv$XK6%Bt)~FLAcQHPs?Hn?!Eio9<AoX%4vkYNfsp8
zRWcyv+YiqK1Kx!tl43a5L&GuZAag28($`^QuZTvXvLNIN_BXj2gODp!as>#vqJxkt
z(^5(hgj~`6CRb=opPJF#dLiWMX8-FSa%GJw*J=VGSLq*}+#uu%5si=sLawYK<Z2wA
zOA|t_DF2Wvc^$C}w7-$7+K(|XbhHq1HA@8{R}_CISI2al_lZ2l&4u9*azzdySG}*X
z+)->G<cj(axtg)K0-gy)kd_v~C{=M$GfdWIadJGE6)QVIf9y6Ye*=9=##@0X%0=o1
zxbKM<L>5be4i|UZqcc)LW5=B_3{yiHLS;AfEt0RL@ld3W25v;>hf@6@Q*b)dc#XYM
zlCsPcAe#I=XJgQRVpiE%3ek5%4?~KW3YORkMS}2{s7yYF+)y+bmW_R`CEy3yBCjJ<
zWAI=uIypQY^mY%tD{R8cu-K}@z7|r-%CsYw3+(BUNdKF)o>6G2Wx%Z1+y>ex7;^;B
zTzM#Vf2I=#;0|)?k`*rFh1xJ2BSK*oWnzVyjSq)%jRmTsAE!h*vUBIc*d6l@@BoV7
zwMt#3)PztWD{*_dgE&c|p|AE6x3OT61aGIsI<XR*S4(gdr)hOqQc*!%rtz8Uo7lH&
z8zEFb*^MO;Ejk&KejLsB!GyTH1aIv8npq*&NFp|3Z>DqzylzMBR(u`xSdeTVU4t&|
z5Q30m1}ow)2$Xx{k4CZErrPN{v!kZ(J++^s=t=(7H`%)f#dsOLP<*U!{3r01Z{{hB
z{PGF@mOnnb*{uxg*9wYwK&NgfmG2~iom=p%#avMBSJMxzGKW8HC$0#*!6Qgbiy~(_
zOM+WASpAkY(nO3=&#@9dK7{VET~Lj$wvMsBNp7Xl>#su94(6D$$U+hOO&lB3q`-Hb
zaw6XzMNDMR;SpY`rYC*iBR?pQUY!X3<aQJWydZmSyppoD1Z0HrgCv}ptd)_(9h{r1
zn}uaP_ak*?bTgLRxmkpaIe~UBFiS9OGg;Ua@ze1zrjy?Z6LSob%zo|HulFg|V2a00
zmtIj^ewP-%aL+!&%&w#fq}SQxy9!GaV1%Fix!hg{bP4+vU<GfNi13m^`*nxC<Ap^H
zM%$9{y)tu~UbKAy6L6o~)!sH1Laqk?L9P%-dIFMSQoBr1z=U2yiMgL1%;{J`COh0Z
z!`;H<x9kZYX?kZv<E9<?LFg}DJb77r(gs^Lggm!{O%A{eVPb*X&v#aifjliEf*@VJ
zPI1X+qoDh-dIA##2)QD9_RWQmt9hk1O6BtX?g<T(Xv0wEBxllBAa~jVHOzeA#xjh+
z77HTIk|xl!=hb=U;E33XwRiME9{J)NpJXN0eZR@kRW^6r!51U*dKOEm<OamU!~LJj
z#@jcmM<rcIbB`Ih1|T%Vn+~~#A01z}CJs)mOE8AiV;ii8QIff@*xY|erW)Sio<2{4
zlh59ZY*ylc=j>~-EKFLjo1#S8^u7x_bnYWiC}hHey>Q3^`Y|%D4?lH^>iX>~me9%k
zDti<sR!q!M4|-Yk#`rAIn(_Te;AS-39e3Bpjt2;tt{2I0aJ_TK^0tFz^V#YE%25a5
zW4%E%Gjty`l|2lGy?Jxs%|C*t-o^t2+G1iyD}pA3jtUX*#eyKxipndn$J^X@pQr@^
zlczDXb=(mn%MbTWD3_FX9nWuURoO@@8~qP#^->YsaqRl}26{~`01=9Z*#=04;Dpp<
zg0ABS`hoGD2cU`Qh8GgiZ-Yk_1++qx^b5mWJodHpCQG*gwwif;_Vz#N0HWiDupeWv
zw?^z21%{0Wqukiit4A_s{)SdJU~Mcz8Os`;V1Go+kliRGkdx<xh?b<Bbw-rnL`+9V
zB*Ly~$EwohIM6!T_1BLOgpd%92^pOz)w{wFXpmDwg=>+nw@4db4M7+aoA;f!ks5E5
zFNb9uLL^LZY(KBf@f`+^Z200mCdGH2+~j!5=y!QM0T67(LtxSDiD}pr1J`74vKCN)
zp8&o44qOgI&xo|P#nhvfaQqnwpbf{n(P|=y{M8vY&l``-<~^^284*Fc?}K@CV&!n7
zG?_)={wWc5*Yu!+=l~Hbc@0$R16)f>hIC+ILR4|-L))9|m!zfEPZGHfBY`)hJs~_G
zKHv&mbmW0xMpU97t|Jf}l|UXHW44z<fSKB}0OF6qGE|ErUC<@<O&o^2(=4Rg-ljl9
zrEz(tEa|2r|4~=^UFrIIs`}D~g>+#bWq|h@K_?jz9c2kXHXro6cfb(U&uSS2AT8R=
zIApaXC-^A(MWyeJ=D1BnS%@BPmB4pa7`#hi>6O5&^xx{r(M~o_Htcf<?f_5p_z0wr
zfQ5hRj{nA0b3Fu4Hb%9|70cAlSSJPbE_=Wy(F>xknz8`df$+WrTULhgu9%4sbp_JJ
z2mMx8jWL*u|58^WJdv{Tn^|d6E9_%2x&H8xgT9!<dK$@g=^NQV;ZXUaU<xFJh*>aS
z#x8fxk2OJytb}3wETb%n@1>d71n)!TQgb9?K0`TXhG3il&`JS_WQF<Db`sJVIh)aF
zV<)j^e8e@$`Owvc)(bf)NLF*vn5N_o_YWA4lLaqGF~4Y?%?Ryds(@>pIbYii-Pxc<
z`C?!ni|!^OM59O=)pV<}*bJpiP~Jpcc6tudPz=QwnNdL0l|09_%x`tI14YjEmMkP~
zESglpPhE-uS;ju42eA~QuIgKffZch9`am3>-|8v}kdeFWdf*F^r~)28L<bzW9%WM)
zCYN6#CC+sbMS15lWm3YKs?=#<%#-JF{jhXo2;J-~gC8VO(%10JDZ>EU$AA8#u2P7&
zHQA*68N>sTE6FzuN%nFj@M3uEQ|l+SIn8{WDsrF~<ig~_EEr-wvXZ3Ale7irAXJr9
z@{0&`<24f1C>9|Dw6)C^K@C$iN^CXsdw{a<Jh!IEQS0Rj_T>*Jz7q`M(|+uOeuTsF
zwF+jnMIn_&5OQ@>1{18B{!sPNKG6uSAcm-J7{AaSx#FHC!InPb;w;voIs-NYu1*!b
z1(x5$H}O_3Y;Mx`_){J<(L1#2%JU6DC`OlS{da{W*6>9QPx`9aHx0N=+0I?X@2i8T
zrh*85X`$7`4SCiBn?O$pO+ic5_~HqzgZcPbH4Of|I9_!e;GSm9QMlC`*`n4)xXMPn
zg(}pdmf__Vy7eTU_k>L6bvqlaFra$ZZ|@|ujYhLFcQf)>Xe+JRn&<3gBV%<wtMTii
zw9}5a9rHNrtcKoK13^h}MZsbn+?ArQTBW#4qPnZm&kMC6HS4oVtVfK~f%H&;&L0^-
zr(f+^Z0!?cRa3H+)c#KRY{eVjF<kMI@6<Xi^)WRC^6`oQtU1-0Y8YVx-THQD;_5XS
zJUNCohPR^KrPB^I4?#uy-6am)xNo>|-9=3dG`tkDJpD0!e0!*qda}$iMTojv1v=aP
z6Zg(qVQK5N8Dd_dfUOf<Cug=`@+Lg7%!{*n<nlmYaCJS*jqQd3=GJt5k3#6#IIeay
zP~lTAPgzGCe__8tTTo1g_j{h2-9CgjdAqCqWtADaP%Vs@AE>80JM8OUF}jl}ym#~=
zV|g?Jv-b7sSe`Nh74AS*(T!3R)wsulUIdUI$w{=BG_QKG<$_6weGP1fnnnB**DHY0
zypV|PP?21-V>AhIfZObOuMkZ=VSMQKUy`eqeLrF%<Q@|I?6UBhJk;s>p+iRUdfK6@
zJ7JpMgMa3S@iri+MShO`V5HFT)4$nNu>pT*1b26&TxP&*jl}&^5B=^a!bPWfZyY?E
z4{8pO{9y>bDGM^s<)AlmJpN(pV8B5fS3AI+1&lHjrvS9_86@^+jh?|ql8cE6Xq|N*
ze7wg@C+<n%o&*iH3P06}Lev#ivVq{(ZjG_^O-haQ8%n0gTf}}JB2x6DsY<yq9!DD6
zy{P+^p@kz$>r}XQs{;3$X_)EK3;qu$nA5(7Zf6}H){MaDHIniymJy}~mG*3;txhE=
zT-#nC@Y4WoSC$%&ymd(7rJkiU5~dY_`xxAKEOB+Uf_IsF4N{Q{n?eCL2j;XRX3u0&
za&O?i1twW05An_XOUv}c*gO$vs$`~YPd}}G2p7c>sB7C?bHSVW=Dkby^cm8OWi*9K
z?X1qi!X&~X^dm;NAW#l2Da@u2MGc?~#wR*6%b<TAmB{Uwu^XGXXsH1$T0#0^-?An0
zD5H62C!?3h`esQsX73#hHCB`k9LHf;eSB;+@r{6lbx|z6b0@o9?qWo7hV!#+9_%Do
zFaGvxgUe8e18{1Qa_d<@H9!s!m-F@wX&q1^kEa#tQ^HeM5<-8;@@kRdD5g=m3BNaD
zx5q)J$4TMBfm&p5Hqhor8JSE1z5KMHVF4wx7Z%;j*hC0YlZUg?N0@Bjog*)|(gsvj
zv0F`=(AycLvlf`7bq*zMI5zKCgQb&;B9sLv`$Z6D?<PZcii*=pwgIM3>V{90SIgVX
z6DwdsA212cTd!|^D?@Y7H46@0$X)rW#o7sYso8}%2w-X<GI0WKU49mFkAimcLnjfA
z<>o>healI)%6MUVyCZ*XggN6Ac<!WK%D*H9vjD;WIOA3`(km0G3hq#_DQ{()E-<oQ
zrDucc&HRd2CG4n$q9xUL@r41y<%=%qgwWnVpzxQ(5JLPp{LBT!#3edHo;_$YnK<0d
zdA)IAqfKNb;H!Q|l6=B<?Ylu<_Bc{hRCe32Y<06MTin6`UeYh`dbePVFvIRJ=#8nf
z)mH2rmH5tf5TSOzlkfVi1tBe1mQLv4TuAibZ#PU#AWu5cdmSKz39V1yItl_D^MTIB
z!W=8XZs-Rgfj|TwLJ(MnI)g?90iv$1;p?fK;uC!CE04(u_??v35c7AIY#ZU#0Qx%u
z>rUKEZ4z)$P$6&#QvrRVk%YBcz@-)K+4JA<N*MyL8U<|ZXF&11jCkkA{vW`s$ZkK*
z5jgjndi6({fJT4pl^Y&^Suh)FqxJyvrigNxP=4b&sdJ{<xqZZWH;bJzK3edGa2BS4
z4DRI}zzilB7QkHui+On`b-DTy<L-F)qh<?U?6<u#huEuY<glwrq$YbRnWcweiOK}y
zcU;KYZ5J@ErnZ5s5PLO^PTjH;=t?@Y?*x2psyx2W3d-o)!JY<BQKfj@5Q6iv-dNaB
zV?=@rX+WkZvFRniBK<ZgU=zY;-hjo-8-8*Kyu$j%VFKg|`i2m48@)oMG<w@{c-uE2
zBQ$gBklG4%Mcd)9OHV_8O{MY;B%yPl?Ug2SKG2ZO3FRXX%>RKgI1<jAF0GBShp6^*
zCj4h`$<Mscf^Iu8^3)m*X7<RKm(Cb!S%Y2&MKE8(iq0G59mEjKo|c%p_fuY9aIF1w
zF;QJ7zk^@+X$yD%K5;D}P<gqO(9s4Mt0MhQMIh;GlSl0((XONXq2h;q_!NbBO=X}v
z?SaadA0{6}%z^^l$dhIye?j1tc}79P*YFta)%tm0T4WI(qt#rLwjg6FT=Ek^_tO%%
zNAY12Jplr*cAu>*9~(@7jY)E6fcx_j>g~j$oi9?*eI}~~BJWF|4-4d8I!?7k!Z}cY
zXE;&>svmd6!nAgtE!M6JK3Kv#J@wG;nuhv-&&Yr8ml_H~58(4SNmL(9NEfZQtV*&R
z_Vb1}eWHyjk;z~Z2(+ZXrItvg16R!;r5uexw*(3sN;ley!E|Iyg;}s3%CmgUc!6x-
zD+`H#RX`-j|8r-=ABQE9%b?M5vxCv-C7zF?WH#fXe5^^J)wVJ~p~1>0$J60cJL3G)
ztEfhJsWzttX=TTcfQGs`L>6=%Ux0pG%rNUnoGXi5G!}iN*R=NFM8OMQTRK?H(N3s=
z&+~csrw8i(RNSj$K_&Hk#g;5NHw(RAURSyBmT<<^bBQ)3jV9>ue0&u!n<5Pn<$4>p
z-|JS#8N4R~%G|p@is3=N^kRDbMXtVpg8(oy^8gloHdS0fQS)8cq)t;S=x}n|vg(RP
z+u!a=jXENXXkrBV1@*f0x4Vi=LqTWX#YiFtL^O^VDmD$FaBMXWV=%@!1XHSZHR5Wh
z4$Q-nq2X9bhY`6B(PxNH6l2rz>^9P2!kR7CV%FBy2CK?L*&(XcL);ZB<8bjzu_V=k
zB#xHl4LwY|Z5h6;J|^5qD9)NpNfR=iSgNx4sU+NdZg?{`nEp<IJY7O`g912Ddigb4
zla(q8SC)AidTdJmBR~K%JidMa23yirENQ~B8NlpDpG>SlFp>~PD*%!L3Kl?{F~M+(
z)icA0KeSZ>TTc$K)n9-uD$L4!R=`!aV%#YMcc+?geE}#*Z9r3mI?%Z($BBtK)>3LZ
zOp?5n&ZTI}YudWtT}GLm(`ef~2JG^`$Q7QCY3TE2lW91%_Pq(6tigYhD}kT)`~4%(
zkajn=z!91M5%b^3m359od-jJgmsPz1=nNyfrXZGe-+z)TZ9lv6o9QmQ%3p3r^k7bc
zYPx@rtDc{a4#frV{<bh%Q1ZfIow^gdO@GMMeun>5`)Ij<HQbqlY`(qzq!mfjS<$ug
zA96K<t<!7LgHKENPAD^F_6>wwJ-N+rjOU<eXs$k4V2Ynwku0v5S*^|gpOdSS%s{^!
zLe}%(qNa-eLzvc28^11x@q+^9C&>3h(o4zrV=A0kO>Dk_$W25MCxXpQ;AarNn15S9
zxCT6f4v@~@fBAIgEfNEjg!+ro6h<gj1Uhsiz|sd9XWNDY@o^yJrD+EY{o_!WeFDP*
zXh{|<N+%ws=o)5lP7Z_ZHH16X$V_DzgB-Uw_})r2^3iS=VLy|NDCar~p=lTW{pxV^
z;KyhMNm(GKx@5)<FzjfF9Gfw01VDdduKYa_4+UE4H@U)qkgIoVABc=uA@fDq=(DzX
zcOX?!t6BmgDA>X0Kjdm3Lat;!3+=$aga-dWhwg`A6-~y5kSnpFF)Fbgcplr}Ky>m+
z@%GUOm30$JvESrsQ3N&V01ef5V&pfuVw$37l#qYsG)>_#wNmazz=E%JOSRw&W}@#>
zP)1J481S%C3)fQ!!*K_A98kfy^C>FeVFxshBrqC*E63B5QZl9#6=7H>MNLW7lO`17
zx$Pc;UCm|E515d7yX+Kf&e%l|2#y7G_LRdN*^^HNONCna@Z7}#dFeNY+<aAXCfvaV
zOloCfO&Y3R(6?4cj79xKrsGgqE=kk5rZPhE@H)-OP$Ksyzy_Xy6z4Q*azi>9dR^d;
z^yQKa$tsyL@}bARv}h3L1X{7`B5fyY1@kinVKuKr$`no-qpv6cfgC3LrI4Nc$yUnu
zG%Q72tPBClj8WiZp$r{R<Hm%@;l8MeA<R{M>A|4&E=Qc*5vPvMF%Ay%emw8YgBtC=
zTITc-2l459iSWm5z$9`C%<^)H!R#cOdCnsEg-W|TKHbz11$qTZzKGd&h16PvK}(6D
zy(H~zvDHeBUKr}fYT+NYI4^#(9XVgiFEuE|i5WGPnk`E^(HyYzy4ABu)2V5!oV1p@
z49Xrgiphs*5N35Ip*q!CQ-z{&EDY2S(F+@vjgSzF9PnyGTPr*B$kj9yjGse3rt=F9
zSXkMwG^@9=@8UWObi6W5$_0iVP&11UDQpkdAM}&`C=es}1;V3tmfXcvIVmBJ-(TW)
zJg<C}`6@peYS`LtvEYg{y=K^2eAkAE#OA#IX$yv~v*gDigWvSD1pb{)2<?ll0Ym)u
z3lY^Qi}f2Z>)ZvRM4tYq+1Cl5I?Xb>!34Ps#&42+yHmh>?c)ohuKo)sUnJOlLp6+9
zCRB4Q!gX1DU{nj0Kl=phsdLSyqJI1JSgjSZE!sr+^Tr&sGy95aC7{rgm9SqR<C^F;
zo9F&4=X7RuVOuZ7^eszhmF`|A!$uuc;2Q&mS-Hf=9e9j^7IO>~ag~D9k0dLO%Itl1
zg8rHXUKwS!D78jZ7~~a4anQ_tgooolA3lCAI|-Hg{7L<8eMzM=<mVP|aMl$OD0F2z
z%HmS**Sdbn+u57ax30&6uL<5`C3wKVo}Q+k@NK006f+smRnb;Z-wF^eeF#>%a1Yz~
z^akEbxzp*~<@J636%AMKuKeI7R?imrk(*W5h4mT<zLOjQk0<vg-u0W_x8>Xns!oF^
z%ka)m2<$$=ta5p?G8O)dzl_<c8I`YD8XP|W6S!oDY8EYy+d})wD^Wg7DWQS6#gV*k
z3ktAo4b8JeNDhw@1RiY=)%~ekURrxLv5c88yhDXQ+&@$+OX06-?pn=V&b`hnP3UeM
z*%n|;&qKe>Ha1*;yY05>JNL8Y*UvgaXBJsbCK;RaHgfRgCCFi8U(e!+JZZJ3RzTjS
znv{FQklSy!Amv+Y`^n{{HkX&V!dklR+tVln=Pl2t1qXGu-3A(WC53w}I#r`@iM5w|
zP7f=+k6lgJ0iJ|i%0EJ7J5!(X!Q^(?#_Q7F+h_D9dI*Dp#)Aq*4Q$}M85w_x_40+l
zEIdDzFpTYJgtu3$`GIO%u^x?h)W<>3-Bq5>Ur%7TpC$TVj_y#g2BnQ3A_`1#fbVXa
z@3tRaao1d16{PA}bWol1%WU>T0c+a?2EI%QG*F68`m?s23x8WGnOv%4u3`C>9MTj`
zzx7@;qC^meiX-h?{8z?U0Bk>oVmS(|7!s`TGq$i^PN9Sb$LdlI`r<&v&cK#|2;g9l
zJ+!X^SUbGejzb)L!#H4iF2*h^z6X=7S5lV{D!ywj3<?t_B#x`H5NOfuiaQsjn-=cc
zZ)UC)Ky?&BVjKcFbmLw0f-CpA5O7#wO2vM_42SxNw-okObHve-*TDQL6@V>yaUbS!
z6xAtapkWf-o#I3PCJ4_oyk8^1dPdHPBgTr{0Eu|_QApsXiO_inUM>mLFJbU;ib?Y$
zD)f@FB99`4i_-ctz1|WK3Z+uo8f=9wk_qS9y`_+P8U~k0&7TW4H%qlNlCwFAzndJ=
zvXsh}kUZV|!2O;7p5a68eKU(9Y9Y$-^GPA>*6ZukF>5AfW!U}*XwYH{H8b(pSy-D`
ztH69*l|ikTYb%?m=GeMJ7tzcpW9tBLd5nCyOPUGtDI*^Jk;4TRNeE{A%`#nQ_lQ43
z!MFF)5l_7yRD*hkonQ|pS=!BNcI@Hf;h}_p*Z`(ZMMH6=?oKyLIwSXy_6hptMaW-@
z$rR49lp6`t1M%`lDF#?}6`V=ek&(d~S^ZX#^K&WDl3^t#>7-Vfo%1n7B9yd8#vIGx
zk!bl?$Ek`&xxCtV3Wk=aU@A0;sUwY^s+0z{TIOo|vX~KhFT>#=oSJA(lvaKQ)%PGe
zbGbTAN=wwF;8F#4;1s|AL=}}nFat%8A}SpNhiR;MhQ?HwXw_rN=+D$~$fkiom??(u
zqc%9?dyi7twb`LeQi0(TH|Eki?)`G8(;)xxX^$$M@2^Wrr5cxIR){B{spP-<PY1Qo
z#!J?QD+~y0%z`QQiknnlcehM2vQJMi#ri4=)4?hqa4I`GavX6Y4l<Ot6H_Lla;MqP
zS`o8<X_d`;d_99*?D;hIVM{K<T{#a~(kD&!`|_ms*6S}!ipiX#?KSc2VWD4%<#FV@
zr$nnX_M|5@tDd&z=U@pR{SsR?r93DnPvT`5b7wc8KY|Sh4rXE;sFa>2s=lJWF25*`
z@u<Scoo+H@Rk8^7Fjx6StYj9S46;|d2&PKwR_N1EYYO1!4_9loU~7ZznRHZ`?wx_>
zm_h1OMSZTT4lRE!{5T>?|5c4VGHnJOZul~{;Y;XZX@Cl18z(~D{8|Yeb)OP8R~gRd
zncJBOrDb(6+2}Z%)B?;qLPv(tP++YaYQv`~Ii-uj)cE2JWc5sO(AVa%Pn<n#PeThM
z!o}ZJ`Y+h{q+~Cmn<w2suSnQWph5Jy9EwI9`(dLJKTsz$HI~26VLi`@Dk-(1id_>o
zoq4d|o@>0D($p22UimKD7fWv*r=>Wn;5^L$Gdrc0KCx6QqmCwQFuG#cCk!V(Om4Kw
z0;kdi!^$7FoR*@QirgTyGG3y-++6$G?zz(3e<{6aENp`Q1E)A?uGSi-ity#6=cO_|
ziTo93bg6oIZrY5y`?MtP%%G$erf2hvW5N9}bHV#%5i1dVM*5Fasw#DLpu<I?vhlfB
z+VLnO;M|La9`|8wlF6`i`b#tIS6jN-k2MIujy4K))kBpS$oPGlF6JUTrouW?*+P%y
zQ1h$cWKTAzi>l!Cs*t)>F{xI^l}|OO3sxKJDX}`PWdv<A3Ry#RnH0=|Rx>$5&H7e~
zw2Y1FQsc@>pPtBN#AbB@N3{<bX+*3lm3taQD0QhR1e2acB827=h4f6M^rkHJx^WE_
zo@%tLR+v{N+w%kyon}5L34BhWimv%EVyipJ)JTRc6@9n~l~vzf)*FOoNKvLYwp>13
z*5<{(nJ90-(YHz>H04I2Px8$$QGBB`J?kT9Z$B(jtNhSW?8aU0hL=!7-CJbZJ_G$S
z9q<xYT&}tj#>&UHdF<7&MY+$32&%Pl*v1v|-Kw$1r=F!nno6gJ3;srP&&vx1Egw&*
zj0(OlU`B}2EsmWEnMgsCjh3y%eS`WgWil_?BJO}fQ}%@scca>4TfemUPUs7KonejV
zr;A?WCt|KG;<!UCMKvz1sqn5ZEB)edvPVWniA5^q&papMHQc2}$6=dC>FY)DvwGh?
zH!@F~YK=QHE&HuZYA|df#M0Nk-Rbw-RT4CVw%*C?Rhwkeq$^(g;`F&MVoSAc=~<Rx
z0dDY3x*6c10Sa#SgQgzap&8dy6(S8EAj80V)UeBFfjNPNpnsFJZ3v)ce*M<0qHG6j
zF(cf{@QEtW$TNTzy<Hr`Ykp*asYblUl$w8=D(rx3-Q8jXH*&{Mk{npQXKBAv1gixv
zwfnrLR9!dQu6qz#rYLo_J8ooF&-rQc;Byz30C)YAY5Iz)7A<Xge`=e>)MpH}KtZ}<
zvn;JS0O?`rvbiSvx`gu{9BG65v}OHgZCD9Q&ZDfZWwApIx;Z8bDCha^jYjk{iycY>
z%07N){-XvVrFr??MP@U+tAqXUy$YoRHUlveO)LAcGWMBH80(lEc{zFXV~_7<PJ!}p
ztx6>ME2~-+(h*iK!zTTPbkmO3QR%!VObc7-!rVWsBlnIiSC6y%%zDjDbiY}H34Ro7
zu^<m_REq|xqNJR7pdZC0i_K|?)5%s#Oi!ZU(r)6;!ar}bqc(cdNC~mbN?+N!!W!TP
znr1K^)W;vLde$`Y%AU5G?f8$J2{h_CC?Q$cOt$J5LMB#5N4W5o;*C!I;bL--X$#<G
z&ZVrs$63i++9eCtj$P`*&Bc_zbkr$ZMYbPKd)l%e4W+S2h*E#KJ0Gba-MEZ%NWRcY
zWFe4snk66J6vme56SirG;UG6W#mQ~U+M^Mow#j+1=b+j*&KGG29FP-q=z!)B@~>l0
z4K<pg-$H33o>qCyJRAxyJ2ZPZ$}~TxeYU`iyx=$5&J>*k%`u$wVT9=%Je^ZGbHU)M
z$+AdeJF;5RG?qBa68lLSasKgASHRgb!j`4%a4R5o*X#34`@z9x!^~5I`IIeMnM#Y-
zVLu*0{Vz+}I7e|UVH|OeVPos@_boJTHQweIALJXE{S9QF>I`pD`%`J`Mj<2A5>xpi
z8bj0_#Wic8(D0$b<7cmJml&?;*^u`IVdL1F<J#_r*`JIdtvq{ghie4<y|q;v9=z55
zL%EV-M)>IF@Sjc+hfbSUm9&M7oN=d;k)f&K!Tm$%57MlU+ZN$?BS4pA%y~hgjvI3D
zmn^IE)BatmrJJ(zo1i#GKc#EGtIO?8GNupb8o2cf-EJtaUEV!ZgMHH9ye_y2kE7>f
zxLER<4TGbRU1CUCA%B(@{^ctc^1YIFZHtb;xc<dW|8g%Kp7AbJ)S$KT7sJpwgC3aj
z^>y|}^@btM-0hL32g<On*r(4ZG;f@>-`w5~8O?qhwP%@(sQqr-2sNGP%uJ6Tdi6B=
z{W@$SjG9?j<%TBc_Ktfk+`tphuu(!q*cw^zmWb_I+PWU*XX2g%J8f2O?Bd{<152u*
z@cRX!FLLm#8#Mc68Xc5-trtliYPTuXF5v0+tJc??2L$7FbgDE2i_L8gg4t8`=*RU&
zQ34ZZ!{dhrJ~l|LSf4FKbd*eNjmemtgVwtpf=$W9dffFqRcOFY_{W@nK5CbD;|BN0
zwYBCmdp&}+&HId`7BSjiE4}VKNY1@}>2Z0`8Y@#bq_}vQS-U!f?{Ty<*IC@8e+7ED
z+%%*>(+vz(xiu_LHwQ`a()&QKj8fZ?%;Q)zK~Yp!@EihmZ!S}=qi6e0#UG&qIS|Pi
z^5>cA%wu4nYfshb`^}jUtK~7xgKJ%sxD}=-Ss1e`glmK~5Z8uh_+3M<W<N-NMd#Zh
zi}ojD<hkSbv(|ac2R}3g18f36o!I+_LO*rdJnh1sQ(y<2Q}#7|pdI?!(N^LYrs1p1
zZtDF@d)->c(^}`_9oM%|-@_{V5KQW5IaPLb={1Dxx3~CU>+a{uH$@GCxu3n??ve#&
zg1&;ub-Tm@yOV8()dKf|0#7QkG8Ky7(h?shzLM*If1Vh4^))b*?Pb3q@De|$e%)4I
z>AZeD@T*DCPyD3QioofPz}qi5iIxIIFGN3Ff}XzwJpsVi2#D-Jc;J5{R|qaim~?-U
zD|B1cn-Uy4VaUAGZE`$L0)tMoquhe|bQZhKVy)dbnz>y5|7v$HhO6GdtA)KrpmE}N
zuUe|aEXu8Yge=0W#V@kIJo~}8)@VMS!tC&qX&%P1&@y5Ok6Ew7wS@HA47V(?%k=Q<
z^8D`g&Oj&vHj5+po^@{ofsj}gLaq)bQfM{m9Us__W^#DkuPz=qPCgd@MXt`4t94qO
zFCV!s)|zdW>YaXZUu|`JfBP?T<^05Zd+>kB)&C_||Ce0-e@CuF+yU^SJMhi{`)K3?
zS*3zI@G6B<a)sC7uLQ~88JklQ!_dp}y&S;%^u}ow2IGq8S0#i798mtsO6?|ZPNBUK
zvmhWWgBNX1O>!Jix-g$q3#59T<A?<#SS2sZZb~B!qGke%45evMOeWX#QWH~8VyTTa
zXO@>*C2vGeoAtlRAm+1t?f-yhiX4+Q7fvaI9z0{oz>zxheSxFpbnKmCYR*(|d182#
zk`0kN!?vJ}R0fhV@w!{?+%mPKPmHq5i(4L-e3?Mox_or6TmA`Cg^)#>insJg0X!Pr
zJ6=9jr_e>vEhn82CPPUCRx8Lpq*A1gUJb7;wfL*!gan)Xte>-{6lvXwxTN35lzPMh
z+Swyv>|3n#V)tYwp=4eY`MC&>)bcOA^syfNb7_wr`JzG#P|8zbs__~naJ~bAp1T@8
zq+F6Lv$Qy|HyA-oVg>9{6)Z0|7+$p@P=G8ur5br~ajrc!-Zk)CyC+8}7<~uHG{S)&
zaGePF-kPbRdLF$s31fNzQxDD>r&YC2>K{_akDx|Ce0dW~aj%gV{3D6mmlbvRC5%{_
zz*d}mD$)dXhwL06#%Labm8$x!8MJ7Pu?Nx)@)#;9im1dvZ%haR6n3Bx008nSil0Ie
z+nXb5Z1DXIg5<@JNlsv0RQ_^SeYm2pV}2FAL2qw#HHxCS?K1RGF6v;>9Tb6gMc$50
z?}jmT)M|}e52)U)bFGUqY~eGuZ#E<Iqn2^uV_f~rE{f2U<`PAhv$B3=R*4wWK<%Bp
z{TZ5oEVu1ig#Q{wS08T>-@L{&q$u$Te1!w@5~^UiRfC1qB^b`Wk3v~w)P@)BqzL-a
z7+KGtX+EY&pKb&|LhT6&LhWh=14VI6?KFrD=&A$)%QcXoSEfh{aa~E=lEDi|(2ZVc
znpSQR`A>?)a~jC9peS7n;(e$j3jlm1bru(_Ih%J%J#5ttT@e5ZP`KWBzZQ(z?Kp`(
z?kmn;?oR73h#4(z2Ic3}U>x>pni@YxJi6aXf)yDK;6V<H3Tc%2#o4fH@=K8Pd60hy
zNJ{csngRN>p$9ewiw>uhmbG(MgHDs;h&ZX7*<xJH2oDVuWQ)2YEhNPBHBGPtB*xJ#
z#WK;3tu0PIW@>XvJkmQ!Ze&MqVDfY2Y0Uz)UEZU%|KyH1>fLwduw2fOzKe95oplQe
z|9FkgQCxEB>>+Npc2}R&jX&k=F2A`AZU=TEFkHnaZ5AF2`?Q(FI;GpbDuIdWjEKLS
zvs^0Ooeba|<4e0XU=gHAlcc4QaHbI5OGy%DD`lszyTz(|Gw1f*Tjk7Wy!s?Lkq8O#
zPY=uIH_n2L<wF&~qCiI>A|eq|GZQfKLU0x(69*L=KQAxuUu~>^K&`*pSicikf3>l!
zK#(?;n*HxK76nKjBDg3(z90~!jb)$!a)BI38%qJw#sWbg=I=I^!9SFiuAZ)vk(;8k
zucB|DfwRkBO3TAYG2owJEL&S!7hhj*XBTg8uir`wRP-l|mGf5^>o?R=Z2E6j3)02{
z`L?qEX=6dG7EjQBw_1=kmYz?XzHg?YZ|&cqRzRpfXILkH%Diy?jtB&51!pP-m;Sa|
zkrjXPSp6;`89w3h{=eH;+1|-jkT#ZT>XdHD>OXzfv`fWrpXCebVYO_$?cVbnIsfgm
zAU!M!{d9FumNTeQA5`KD`qRS#wfcgR|D%W1`>!5Wm`_@$OJ+2rhxN8CLcJu`r6kI;
zB*h03!)i`-Y0CT)!-@ut#VJmuDo$no6~l5}Ez+BW#IPy@)_=#ad^Vc>_S*bzh6AIb
zqT*xI;!+_>D=sZIEi)xPD=RBLyCfsKB)c#>rKG7O`(0CHMOk51XK{Q>MMh<1WkpTX
zZ>UxCk1AGsdwYELSbX*GFjj2G+CRcr-Rtjq_NwZ~s_K`ETgS`0mpkic+k3{|4{xPU
zoL3Bg>Kh(!9bYT|cdOMjck_3ywb+_A(N;Ry)%M$Gb++vHzWbBJ>Vx>K_0gu~#SiD>
z83$8kyK^o7iedd+`5nW8$gJ`4@u}Hm$ThRLx;i!SCx$h>y1F{Ie)P{6*5T^W?-<t6
z`rMxw*572-@$td=?ZwT};r;VJV_3gs7UW4lglq!-FPvpK(O5Jb1*DYEm2EN~Rc$iV
z-CA>9sm6pgir46fDVdCA8+#Y`rnzi76AmpcTn>A$JRVV}%0R2-SQLYe+X?!#1=7Qk
zO=W=Ktg597)e`wUd9G82pqDExE*~yNF;Cq#=XX9BHT*e6jgdqGrnw@XlC<TsM45FX
zT`z(JBQ*>4gG&2T<|Kmm+nsHJ*o?+AolX1WNt6otwLqrTY)7PXT)H(ftB?r0$ZaAE
zSEg8>XV8n{$2$G6CisS*?^7BtH?7%Pwr6`fzJ3`9L&4boQD@X^&WB+w^l0T??W3Z=
zl+fnl@~PTvT057h<L+{JI1Wsv(%<{=?EnqfZoJYgk`E)mfx(#bvU-ALft^45N&pP?
zXmzX;9R9f^fuG^s^19Rha>RBRP?~Nx97p>e=(V49uqwplq`6@V52X5HGvB6Jta&dM
z{@H5qq2jZ{__`N{G9n=`);}V`b~i!r=gEGe=*D5F^()*=Ln#70P6{j9oMkFadTvWV
z!d>I>CQTS0BDs%+ujytGazyivo>+$6QMPS))sfhhoX$e1sW9h|pFB(EM?`Tuxs}vc
zH>a9uD87w5LVoHI$Ew)Az}R$XI075ZwL$7+1m3guqp~dP>eKQ9Gdo(TWnV3|V9VJ1
zQ_)~%0&S-EYL>yud7r@+I}H5Dmir8K=sV&}NcC$Dp^5wl$D%cKx;wm0y4{$C-U)g&
z5|kqp4rYk@L{7OBRl~N`9kW?A;-n+R=vfK;2O$Q8>}e_dO{5cN;`!!3m?f{$r%wCs
zk7~a5OL^j5h*v+BTu6j_+A?UvV&0PkVCMbGvy(i{+)BdO&tQ=Xj5N40JtJ_$Y(Y>H
zTpLC23Z`_v`^b=FMTK#&k&Ns=-Y7oGrq3cld0+F9hStE)*1(WPpY?+zzSH*wS&U#}
zd%CcVgJ>4mCz2>&g#H^jg|QyCal9M5A7dOG@6z8R+C7s>Qr7CS6~PEP*(@7G9o~qs
z;CZx&yCRUJEPrVOE7s}}!^wIrhT}Wm@8WuKcSyWoakEPBzoIhnjv(~k+-LhijQ7Pn
zlsD-J!(v-C6}~bLH<Y0%?tPzIHr`PtFlLMS3k4bB7q_%1t1hSFPkD{oLF;3WqGZKS
zdHnNO3MEpb5AW{3eUy3qY+1UEtN#OY)Zy1<=4WmeoepN>q{5-7y{31x-Wh^o!{&}A
zVzfNE?L%fVu(zV0W1N#NbV<gx5o-w2HoJ9%uh*pmpl?2lUU?;5@wx!4{iloJ&4USG
zRi(e#BN>zO_M!V-hmmW>W;RP^3|>nLg)J0_ZG<Q3Vp<c&7n6rvC5we5xmdDErZ2DZ
zB>hx6kc3s2K?5VPLldJVgYI65Rsy4w_TF7an`~|a45Np`2}~ooG)+r_?|6n#(Y4xr
zb;K353n}#_T|tT^M4u+46HJfe8vMzA%1aZFDr54vZcU?LHy1yWSju-aS!`|}r(hMi
zIs#7>Nng2rAbhEfNN|wdh9{7gzDjl;u-N&ExG!_)dP5GYe;~cJG|8QFn^uWhbOB4x
zhy6m8f-Z+e#dr!l8*x>xcSj^Y&jOOkmr8EL$==Avj2N~@vWmBU2_zj7p@&yYgKMIu
zF>95B8cg&?DoQ}EIZc#NABo{pEaM%Qn=4IT1XVS?`cx`ep_jl!!NiH^bu}m-wzKGt
zcw;3guL&l$4P7K7Zl$82k1h$ODdm7)p``wWpkhIqnuD_Zsti3V2@{<&`K!ky+B=Q8
z1i$YkkI2>%{Mg)a$h9DM!RYE40zq+PNw3Xb8exoLmFVlGBDt7F>F3>fc&xGaoJO|B
z&7Y{4oso)DXXJSkW7GXeB^?ygWKr>2HIwvzRO_~>9_+0x<G;Z%rPrJY^|J>K5nR`3
z?OO>O`K4enzoVz0%66)bO>&pF%xCzqhoN%Vtmrlw<HA-#LBE$D&Q0aiI9+XyKdp<1
zYvWTl5=-{=G_jJwNf*V9;XS+sb&0%sofvMqyP=<Ku>C6a{Vtge^&(*g>4>av9(|v-
z0k8zTJ>!@}LYAzLz#A8Rz&+wv>l&qCIEl&((r>XS#WVjDX8pb1Oeo7{>(feGY<rTU
zk=oQrwb&A%T~w5Lf}fgVk)O?jVofc>sbeWGe~-FjXs<@ekEUvG<F5bSN--FkUpHJe
zBW5(U*mpkCxNk+Xw^{1iQ)xuI%j;ZpLO<fc^mZE>4z3r2KHm&1JGpa<>2t27P&pAh
z77OV>!>vmWTwyLfb>EM&ULjebq#H&s;e%Yl4Lyob)Z&J8##hklf`5&yLh<@IaM<67
zyN$O`<I(iWk5nneZ4pw7Ea$w9IKdlUth??$HbJ?$$n*2UU>(1ou~lx7a_e1>d%Od8
z!WA(o7${)E#a@h?qPgkC&0q?TqB;^65u+ic<cM*U7T^|@I#k3Q!an{m`)(QSUt6op
z%s2w5W@yRbnLSkwTB>DE$Cq$6v<ptq?8j$!b)hZpH@?lDK-pF>-ILBtL~?n%9P>S;
zOp%qLgg=8k&?6+2_e_OfGL@SJSSB=kVLjg2Rj~i#WoJub<H)xgZuK^#jB&y#@oEKu
zPz+VP3E8*`Jq*9=z#&;r1&wy&6Jm{fBXb?=0n}v|FSnP(h@*<7`1(2k!zb_y^4K6#
z&N8$w(|%x|OCNJg8<I6y=NA%(n2RayS3gfjs=|)__qvMHBo}*M&1&WcN;M#X>DkQc
z`hb*q+B>X?U9L3&Zal9gy+}(Qs`m3PrCmG=FdMu^e+j<f+dcULCr80^gR1{N+;BSs
zy{QT*)J~b=(`Gxg=Wvs`Ubg@9xn5q$YLan7D27n`+R>YmJAq`a?#BxwMt*7Lcgl8|
zerH#l-}Le(ugztQ*1&wXa(s&7+r?b-67W5H_+Qmhf0i{439_^{FuO5Nqn{eAehWUw
zK36?4%CF}X)O(w*<kA!MRZ!<wP$@di3kY~yyV~K4J%7Kkxt%8GMsb9o>a{*AbcxBv
zARe^tkq!N!j%7t<tmf1#oQ~xCBDdW)33c*To&1AZmpwy_y^(nt&8w}FXYl2?$_qOG
zn@pc5MBeq@>tzHopXKbpBd#DT92MU|4`;eKNf86PhRX9rtv48Vfk84ZW7@Wa;gmlS
z#HPOkGj84-;)h`A@<#m7V6?%*y9dHlQVdwAQym9{d^h7hreYZl^u+gowsL!>)l-pD
zGr02*>hKF5*V1bePSc`BFX95q0@+;20lXoi1mTY<0@FIcFX@2--T_t8-k*2POekd!
zM@>;^1PWxxrDScrbSQcEWb8{s%9fZ{5j@v;!jQ!rZKS+4D_Bu{G;e9co$n(Zuvi^z
z1Hx{?wo1YWA|s22%#~pIYnKU!Taeu8JT}89_bFt#iy3;NMD%niQNVjLv?a`Qv|N=@
zQLpL3;G-jTBEu6R6^mG3FBCIuAIt3_M3wu*T46EhWSI}aytx_=$syo41ELg>JCCN=
z)nx#y*y0W{jF;Pl<gD<TfGAi;n0ukG!X~0A*MI_WG~d&iNE?y(2gzA0{XWXLO{`io
zooK;@@*hVk)$7Jq@+KU}g31mtCUxC^-T8mQXX^UKI*}SjvBvYk2Z$}@5Rse!eG{-F
zt_2QHtWbLg%Nv<}9|EuD`Qc}RhDB71P6GNvl2E8CE@lM!nl}n2x$(V?Pb)hfAHbxO
z6$eCc?Md0nO-aM1i2KI!O{ngxRQ5tBmy8ME#8F&Xxwp(uUM4V-tqXJ@a6MJ{;T1(m
zB3Fl_QB&9!LLlEdGeb+_@hC8OkbFABRqy6CV1!4nNsvh0fu5cqaXD<9<5m5x%%fRa
zQM>RB7Q0{-qg9Aa&k&D5Q#3|ftO#GG$0@-=r!8M}=1&~t*W+)~@Q^8?%&;w0P*0Ot
zfXJaIIHDn0;=VZCSjMEPOcz6Ogg7`8ZAgAyB5k}Pd{o$2YGN2>0G39iXhIlQyF}83
zOwX>I+V!0Jhnz;j_sx9oTlL<zL$boz@4LI+_pZP1e|SGYm^;LmJEE66=9@c_ojcW)
zJF}iU_mKOMFmI7BZ&@#I)i-Y~J8z>aZ)-ho`yp?KFn<rsmw%v_f8?8glAV9nm4C6G
zfAx@mO;~WtSMXi0;HPiFeRjcPSHaVI!OKGdfT$3fzYtcx5Z<p4F{co@yAXAw5FN5*
zny3hizX(Ua2+yyGAg73^yNGzBi1e|DoT!+BznDtDn8vS|E~l8GyO?RC7^WJ)CJOcH
z2B5AAg&|(T%@3jmAQI?9hme;%q(C#6g6LRFV?d>wF>tG_@roOz!zak$rlm4PfQucB
z1XbYR4n{^J=EM$0<~6y|V;NR4;CctcOBIJ}2jlq~UXKg@g%v}TpP2I+eG`C*Jb?Pl
ziohyXZk_X*cL(FADHP6aMaUU`I78+7B<g)M8Zp=u2TiryoF8a5Rc4G_p3VSD+^7)V
zh0%Ret{VX#><6_sSoM><8f_QwH5fM)fSr9-bthgO%>ZgV!*9vSGvdc+*eO+fL^&$N
z2){v<O0G&~0H)ewj{1>~BZKPnaRfeA>A_W(F_6ycS3-6LSe;>Ph+<F2zFs1#!Cb5h
zgsN{p!>H*7Vt+&lyFn99t~z9>%GAf4)F-`(CEeV>o;}0xd#no1DH#UUBQL=8Ki0oi
zYslSe_<~%y-Hi+HkoPSXh^AV0aE7fIjQmEv7FqxkjggelfE3mM+bkF{whT}fjIiI-
z2%iiW28ATF(3E5T{{VeJg1@rp;j&W!v(mY-2B84$|L~?2I{*m)27&+)2@nQ<U=S0q
zI5aB|B`^xF@CvRl2pK>SMavKg;05LO3aF3=1@Qn<IuHsV1x-s35>N`ipc1gqvl4N%
zNxQUNYq7)H5I$P5DZmO$Y6@wa5G6ng8UPVSfC~J25M2Pb$Px>tkhKNTu_(X_!!Qok
z;0i0i5h=g|1|b10a1amh0x<vs7~l{fK)EoGvknopQ(LuHE4T>p1aLcyh_JU45C{#C
z0;RyDs1Ugj(YL%ZjDcGb2_OX<U=S$axCPM#t)LRopbB^U5)vQ^aO(=7FuVhC0-U=L
zGCKfgFc^1m5Iak@oeQ*sTc)l$03=|%v4FM`|M37{P`Xe$w+N8{QD6`!5Cd5Y1%j&p
zVZbZMf(XsK5Z%k9OIyDJkpLqg0!;v@8~_3%Fu)_AzXBn?<Vy(VyATQh2C?u9OA5X%
zfdZZ25m36f1hKGPK)<m|2nx}_4;;Zvd%peqzxEKo1YE!ifxu6yzzhKausaY5fC4eF
zz!3Sg1VIIA>IMbzyaiFK0%5b7>aJ@`5Dh>K-a!wFptco}1nb}(-p~O9kg54P5Lp_j
zTac=_aSa&kut<y>O3cI$!KY`M0JxCEjGz#TTEuFsr3b+SPy8Ly(8cvS3ju2z{Q#^K
zL8zu0#5e1z5%9%?(GSqj#RB2Pw~@z&|9lXLj2lrr#bsK>1`){K5f3EGrz(pO3Lp&M
z5f5^(5ODl3b1V^VDh>s4r~+}sNn8jfkpQ=F$AqyDX*>X+3Jwt=vul7A{SXHT;ll(0
z#E`71b_~X|%n(|j#ka8!dW;ZRnymw11IsWN(K-Nb8V&<t195yC-oVQZG0b3`2nUe{
z8{^Ceam?PK%nT6*$ehT<Oc9N&&3!x&2FtPuLC@;^9sSVG10c>7L(T?a&bWcj=Ub(j
z4AA~y&2)*w1EB-Xn!yPB5c90P1(C64U>p0OD)UeQ3SAHhkPI@SDwsgV6J4ne0I^sh
z59iRUgV7Jus}L0(%NVWE7rPKt{|p4MED!2{4}>uf@$9rStq}8C46&RJ<6sW%Fvu-E
z5X%a%gb@!TK^XMV(+&a5%c=l^>>ZU*5Dt*dSiKM({n54&(h?ocwh<5Opwok~4SdSR
z1Hc8gfzw>=56f&2LOmG!K-5N!)DZ!y2t5#_Dysaf%Lu~NeN7QIJ;?Wf)>u)hWN^^8
z{LlxHrT!4r3E|7~4B4q1$v1GVSaH#|VGrEwu!?He2cp=38rlV+sMgHMJDsC^Ef96x
z+37$I>&(^zvDvX)+Jq4fIok{s;|<Dd#G~EWx-HG9O%Nqb7$`jwrp?n6kpR(5+Ufwy
zlF-AL9n9NH(_=jl$vqg$|DDr2-N(NDFu;8f4KUpPun)z(*vFmOTH4)%;m<y~(F4G#
z_-ftM+7J;v#9~|!xr`O@U<d?}0HvVC;jqRML8XI%4Ox4xgW(L@ZLyY+sgo_>1aSl=
zo!tcS-~JHb176@*ao|5)&t=*N0c*(v?#=eV!v;a$@jBY{um}f10@1yuMjXlZ-Qgrl
z5MdCo(+m;&Z3h(Y57V&Y3D5=EOwKhBu!PLJ1F!_q?GNgz$tKO<1mWOV0pa{@#e?Au
zJ08Tg5U|w%sRzN~+#tmSp#Zm#)&~LOGHwtwuFGut5U=gffeNZvaSg$p0Jbm~g&h%Y
ziWM<lvG@F@YT(#F|9;&AG1}s=$O2*6kAB^mYT|-^2n6u}VXn*VEf5ZHt^M%k1i=Il
zo2LiSrQjgh^pFY|{MucL70*zy5a7{RVcSzM81wMu1JUDHk<kc2sE*Fvo(}2*A?ms;
z$((+zC~go}pv7<+5f8iA;GE{@>gsmxt@P}$5#H$lj_U)l?7PmnzRnQZuBO5+5X7#g
z#vaVi0I?p<n)D5=2@B~15ac6W#CUEGpNtS^JQ%i}5Tor4i~Q_^k=<Qt39VkI2*J-k
zP7wE=?+3B(vknnM?hmX?y>(p=UF_lli|2EF5Gd;pwye};st4Cf2?<fxf3Dw>9?7j9
z4u(9Z5kKzR|IoZVaIKht5dR+VCcWhYzy^!$@EncaMI7k<kkkgz-PBMJ9KR4BAMy@S
z=a+2{PN2(lfDqk%^Ab_(YFhCJ5xxGv4~P!Yimm|T?evwc=nAplgOSw<zt~c(;9-9d
zhrYutP8jk%5Vefw^N_Fuao9zF5Pur+32_WqAr8&^*9;7?DNhh{-w!Ol=vcw^2$2g|
zv850(+TD;4)`}IGJnt*d^CZsSqb>OdLHTa{!=ak^A+8XO|M>1b7}f2X8w~_lVfK-p
z-wZ+TKE1YSn)(VM*(071cz*W<A;b;suJM2sSf3D$jjaaJ`wJi0{4VjFZS-<q`*q*%
z*{`)_|4RG@k)`>asd4NF3(@M2@YuMYslI>}NuLnf?)Z}3@8hoF!_UAsd;9`H`)FSf
z<9)G94iNtO%^6V8;K2b3*!lD4$Djgu{<I;aSTLABdlo8gMB^_U!W{zNVRW;xpn`S+
z-<aIkAY#8bEC-Nb=usxckQom;Sm^KB%>g+z0u73BXhD}X9kLw5@FT*D5^py3CypYr
zn&3=!q^Hj&OC1d7Q9!7WA*7p8GgTBSGwMW{RIM7s!SE5#g-?lgl*-aU#JdIC8cb@3
z=zzj>?c)7<aInd@QyI=B9Fd`=!<jX2=G@uyXV9TVZ^nxGCWKxL`;`P~^zdWE5e*;2
z|9S~3!`U*MF|>U+>DZffaU;aa5UxyS7%$xRmz(8of4zw&^@j;)@jJw$XRck@pCh0S
zh%q`y-5*++f2(SSZT`4PAPlE@T`N<#*76a7+pp<-0Ca-V^J+WV7+NYl{k#M3Ch^ES
ztRuYys|lu?d|;@)2N%1kxCnuIj0Vf3lL@vFUGvT#YJiF=JA=Yn52!T^)K0mrYMQ5l
zn_~2bMT2Pa2SelpV$CrVH*%3OnRGnR!qtG{p`1MqQ*R!kFd$MV@BCvav4WT!lBFl3
zYz<2zCnHM9{G1wXO*Y$f^G!J8GzhD3Sb616Jnvj37IN^ZiJq8nD)OfGWYbPW{~5e`
zk0mO2%gjd}Wh&0U;>ctvB!2=cDAB%dYLvj~BC=<>n>byxyTee8t+~#q>##-&UmKLV
z{em=8MS(~y2vVXZJ;=orfnvi^gE++xC?5ml(oG0kyR27#YP|`f7lTtXv%z{8un<`-
zEz#1XMh!2bV+V*Tz-h^y5lD*oV)dq^7TwJr9Dx$fv@4IQ=v<<xJ(k4Ls9KP{Sq%;K
z-J-lDSmA^C1<Kzv8<KNkiYvDG;?9bzX=9Ez#)bp72K`pwWeZYuCLxJZPs9xyyJ?Ey
z3asv65ov02Tu_0E_ppn^oipc_rAzA7gAp##XhI8SXyCYNij*Y_ji&Q3|Co*Ls2^RA
z7Lh6~O;WGEq2X+nNE(qX+ryZF+KuQ-X{?%9v>D#0&`xja$Y+#XzDbQ-Wk$CmzSyp4
zYJ+NE$hyOlLsCMy6G}<&iulG_!kOK~ieAp>?z$y|i>kacfFF81Gs$%gS6_@%SABKX
zMZ>Bea@3K1cG_k4v!-nXZCrPfJ2yG!7^zGgXqKpD8LYH_zgcbIqs=V2<F||m-wKmI
zIp~JP!eg_f7Wd2dq`{4-9<qRPQCgO2@G3Xs4|CButjd)sDG@J1U(&{+nrHhq$2JJl
zU;!mQyF&;~e0CkZg|7ls>BmTjH#d>BO?>{K-qB{GzVBp4IPk+r|GhZEkVYJ4SP^PU
zKUQ*>rW}xQs5=M-nP#nbC7>tX0NI-I7Qlt|4r$Uum<$<0L(oOAa9(*Ke-M@w`L#}o
zOJrgbu`&swB%l-nl3(Z`I6+F~EIE+7$^$u<Dc^t(E8b(t$+pNHFMhFzUW>@zu7^Jn
znWZN8NJlhK5eN~?FCsY9;|?XL!$t9sT|CT9QZxmx&LyRSJQPuKlGrr8$dMs*v?Crt
z<3GxAizrqET(rt(HZJPU7Gkl04=ETo7Mg@^PxH(Ay2Oyb-6R3Ni=Rxc_9a`o>~0>k
zm&iC7wOGnzmI%ASfEXf=bHu_FF$jTYlCnlrrfG8(DOoW$|AtIuGBcVR0cK`~S;*-%
zQJmu>r^VhV6JszW68Soeg|K+20wE4s(fi^wDN?cl5N@9FL?b=x8OHMz$e)7)S^|X8
zF^<s#8Z}JQKoNq^k)>&oCZQid!Rg0;A|;$OE6_Y%5etxpRHP$y#X`trP=szwp$yGX
zhcIQ&F{Sc@p*#pC(N>diluwT6`C~hk2GcaH({s`I=tzwkQeD6;p9w_B-DKLy2wknH
zM>VP|l99ZGJrz?#rRq_WnzIP3Bc(Nohblg)Gw^jwhd|8|Lc%&$hLrWJ?1Z2{xZ2f`
zepP4@acDXH`d7fhaWlKA6(`&EQ+WPtq9!?KM$w8i|E%y)u!`+xW*|z@hybav)a2_%
zy1=J(+^%D}OA|CXi_t6U5Q+yo5F(G5R?NOOgB<-CT;W;|UKZrD<Opp_N!!xaEH8Xd
zJuFQPV$-BC<hL4KT15AP*n`amQ??zeP=Ck8j*ziNQKc?iW68<scDG~JeMlI7VGehU
zwGtK$;yX8q)svVPz3L5F<H9T6jaj#%f#q+1{hQd#G-`Q<MF`*A`?E&+<B^O_<2@r{
zS_eb+l&R99f-4J92tPC;n*7~jE3&e~kiZM25GzB<by>%5lexi+EnAs;(F{w|J06a3
zg8hMx+T~cs9F~cQNt~6;*p$F@1xj}3$`YCw|M!0k`3XhT;}0J5?l1;ktCU<hfT+<!
z$6KD=HO{KfnFd*xapf|X*BeulWVy^+_A*csfPycu!hsWZEsIsWDmzysYA$|roaemA
zUou3?YtC_-ncLU@CR)*|+iaR)xnzF?ig^eAors2o+u<Raxso->1_6vfOZx-UM1h`V
zH)=lX)lDYxX|UINa#0trD%M$*adg?c>BD&1Ajt_N8*_FM?YfC4@ZBz&-%G%nri>^T
zQ8MFlTP(}464H{s$-Hz(V}!6eK%8oA#+aJyW@EC1S@R4hxoxo~ctwRK$s2jGr8J)2
zWLT(WNxILrLX({PGy7e1zx}<sMsGyh{|4DJQCvjnrHbfNE(S4$$ww4cXHnCYKFGpV
z)>(iqxFRL|(ix%E>U?`;uk_Y1$&LNuTR)bA4;NtafGw+>Q6<l9;?%^2EX35hPeaUW
zHmx^;L5vn0)k@>^MtW8+A8MS!*!^~xi{%w;AN#3EzgX2=T+7TUE$YlQ`9`dMa*9xW
z-x&XQ+08DefLDaolK$Gq5q>iD7`JK@9{^Pj$&#o@{K5r^J5lCt>U*<0C5wyEx;G*m
zP$j?%9iZ^YV~ygRx7F5@FNocjojg{@xFGWuk$RLa%*8hzxI`ZAVSLDPnHa9=k^i|@
z2J+#|x?P8uE0v;>?T?uwkm=#p|66j9T|L9!KKCqnfE1pcVy5(MGbGwgunX89gB1Vx
zr}d9J$=%dPJCp2Z=YID?llCssUU|5z$fux-VCICd+Ddh8@Dai(3Df<0QBl8c*xyGK
z!Kk^vGL9^v1FDb^9_Depl)E#?i?GM@op8B6ihw`o$QxvXKbDy{%?lX;TtA!Bn;~1W
z-#f1R+m~xmE17VSSkVsQ+6eQTAb)VTjqnwNZ~(8kK+XU&s1madVYOb<3|-p@7<8V_
z=!hI_z$;4^kQ;ym=mZtuK-BS(`U^SeD+nMY3QqBl9sIBu9J?a)J}unBPXh|7U>8>7
zB33(x^P{+f;1m-|lA549|CCuhBkYOz+q+G1y%RDC9mztj+mTfhi;92_X*&qt6D#S!
zls`lWs=${6EV)_JoC544|L_qmG9{#;iqHFxHAILfi?WIUfw>|?FMO8gaw(jvFXEzz
zywStt3qh%?9)X~?f(XMs^anCj!4mwS1k#b55~d7jK{rG$mO!rL@QIsvfFtt`7DNbK
zEXIRKfL+AC$w`as`$T{6hUq(r=2JpUR5u2E!H9^5&bgXxWR6%$ieo&8WYopeVnZ%m
z$Fl=JgGd90P?)F)hw0-2u_%HvOgM^QAWbv~zPUurNT+C#DFp~dta3*)JP3X?iGTdS
z*s2LhFbR8%#)Ck-|9(t}V046wkd9NlNP{qgcr+c@LO$n0Im&Y_EfL6hAV`DUA%Ubv
z9)v^Ud7CDyh_~vHj+6<I47^{|z)_U4%y1EZh{%n|f{p394P-TYAisI6$9q&7)o{gw
zz=e>kh+qU1lYmD*qQT;_K_{~en5+ntYMe2;iK~>#cf=~;um`lv9yg>2fn>{#0FnN~
zH$#law!8t$fP>Ci%eFL#c_b+3D~PkqO8DY8c1%pgd?H!;0%DjDv`hf#=m!TehzVGR
zsANQe>ZBjyAA<-32MUK$+YEzz240e)0eOa$&^ysPtj<IT&~%E?JeX4$ka+OSf{0Cq
z@JOndM#eh`|1lVli8vXf6tq-m#^@`BIpeWJthH5?Je6xi!mJ6?T*fJ4vegW`|C0um
zN`PCaiE7wBgD6gnSOkP%f~ztyiXcyVI8KCk0OhO+kE}t`D@m%ckv~9)Bfv~iqlLEw
zJC>-Lb(2ihsLX=6%*<4pQ>Y1S_|4B8kXl?ugKW@)P=M>C$e-CguWUfe@CjZbfz)7#
zQQJ7>I*2ep1cXR{33bqfxKP}qh&zmjLzpWP;DrHM%FT!hf8YidMGc&)Pm8DtY2YOV
z2+{K>nHZf>gs9OQCBM2W(a%It31v_gwNPUUCd5=sE!{$m!7qQnhH6yNjfn?zC^5WD
zn5@C4|Hj%$)ldiCQYi~SNQB@|hS-O6=#!1n25Mo=eX0mH6$m#qQ-7d`IK@Le)0Qz+
z2hkD;I*<wS^oM=0osDU->-hm=nk03&2af57I#5LE>?!C($xj^sI)&6bT~s|C$x`))
zcu>?lZJ&zJ%Z=HGdstLqtO!fxn0v_7P3_bT#m48<3?R7Fco+vkHK8P1m~h-jQcBU5
zBvV0^%bZBlHtJ14HP(%phh-fAs@#}+&{UObOOGqI(KE%C^oLsI7;40yxJobOn@U{;
z*FR}Xt@PG)kXNzTR>SmGe7#j*rHEQksdR8v`II$;sMk5VSB}wE25VQ<xV~<kqkhH8
z{~Fs;i`_yU?XGlK1Z6}BEts>7>4%!k30_juA2Eptcua)qhchb;&-mDsqKEBCide#m
zK`Nt@-H4P;DVFUpz%z^lh}cbihK{XJBjuQQkTjR2h%j(hgo+3AG{upmzIRih<_uLw
zGzpkRD4E4GtrgTUm4j8Gu~M*A24$&=Xxg!YTF%HWga`}wt1o@s2n9H(lp@*z=!i-j
zlWHW<7o~`;9a;`7Swj&Io;6UGuz^+mlc+U1Rig-+7)<PQzQ9FV+++#6-I(P%2*r)r
z#--a^Fx#3)hy2_(mF<|1(VcLNfW>79FkLZI4BfFJ-J8f<+}ViE<=W3p(S@kM|BL-y
z;5EfC2q{;{1B!ToB!o>^K%EJQg}*e2&l(4H7zbBifrEg6O+e1hPykUF269LTYd{4J
zIEWMg1d5mdQb1doK;Q9|iRhi)>b>6V{n>+90#=BHafk&~SOLyRf%^q1Q)pj<fB-2d
zS`iBc1oi~$Wr-3PgrcPg6L4T}Duq;_2qZ9t2S$i1z~Id20uC;o?)~2I72p9V-)RAZ
zSQv(AP$uN;L7;lGP6&lk2!$5Vi~~;K1#XpAkkW$y13}OX9}bNrXa(sV2Uz&whwuXR
zy$KXxQKBdT{$;n}1*zga-sC-q4gRDA_<~>f-f>WcE6$7$@B#!zg+b6>|C1PjY3YQ^
zl?e-N<BA}GF9?NEKm|a^;1vCWRagZ==-YxA<1#*D%|HP%M&LjQW6>aF1RexLhE2rX
zh&Tf&Sdid@D1jPg2}L&KMrMgE-s3*L2|x}7Ge%>v%%k8vWmHaO;JsQ^Ze^hOl;Lw_
zS)OHDu4P-kWn9i>EoEh0cIDj|(OwQ_VIF2;E@opsW@P4NWd64Vz+=9Ur)7?2X`W_k
zu4Ze#W{gp0YzC~PsL74cO7YufaUN%KE@yK-XIj=~bY7xU?1$aW%{hzZb)IK>u4j9`
zXMBDWb<XFD88))AhFJIobqH5}E@*>3XoODadfsP+j*~RF)J=Wl|AwAuimqsjzUbf$
z16A;2jHZ|pD1~8|opgW&IPPeZK53LrX_a1SmTqa6ercGFX_=mBnyzV^zG<A!X`S9_
zp6+R%{%N2NYM~x#qAqHqK5C>+YNcN4ZGHftSO6_00H|i_a$10?uH~zyYOUVti!OsQ
zkbsJ?f-;x_ncxAhPD}#u>IvX#qL_d(pn^Af0I$yKa`I}hUXulwYlN7Bv1aSwb!)h8
zqP#8xy7p_Nmg~Nz2(K;!nV<r%CIEIs>>)7h#@6dLG3zo|>%T&5vR)I+)@*}VY|6e^
z$0qD1`s~qGYR;|*(Pk8{E`Z4P>d8*+^0RC<LG8`<>dqbw|J)Akv!-puEbYQxo!$m+
zqF!yq{%w;eZP;E%$u@3;5N<aqZgN6y-d1abXl>}`Lg{8A>fUakwrkc_ZWMg&*e-+F
z25++t?90Y(z!L8@L2SC#Zt(WL^%f`ju5W{u03MK&32<tIkm`e2fCnh>#V&9JhwO?o
z@9Uia9^e58XztBe00;kX1(%5hxNxG#@Pj~b%%%baFK`X-j0bRV9suwGAMt{aaD$-m
z2mf!GcmNe2M$p!b0)T)A=K&aJ39Cj30(gKIAMU5daR?Xkn^*w;)^Q^r02F5l0!Z>5
z?{JFvZVadE9}jY%Ab=4s00KV<0gt{KKa3_{02VI@|N1tG64&u2*9-`#@WNj50q5`k
zE_0wra~+oeIG^wem+=kv@h(4%9`|w}SMtt4ay6&(jj-}RZ}CKbfIJ`Y2SD_VSo4ao
z^9jK7!?^JrkMcy9bc9#{B8PxS9{@UcaW&rzO@DDp*YE!-0NsWY2!QVa@ap~^0L)%&
zT*vh$XYPV{03yis#SU{G=WAdugIeDR%pP@HXK=AD_FVUj1t9iZw*t*}YsSv*%r*!f
zsDfgjg5kDyWhZsn&J167_P1Vj39xJ%aCRc_bRWO<T%Q7WAMhb4b}BgbgTQR!EA3nd
z@q(y#_AUr2H;HsN?EzT#VsCeo7;LB}0C-Pt|5`7If*1D64($9sh%-kB2;lczr}&MS
z0B#5NA((2u4tR=)c4x=;jd1v8FLssZ43u|ynTYs<$8{?pih`eNga>woe`;yZ^_R!?
zTHpCHxcP$M>)m$vkYDU7@c02(0C@LmYA<W@4saf5d0-Fv==*hN_jii8_=<3NXCHzY
z_ifPL_HNJfa_{<8XLZ0zYX)zV(uROuANK+Hd2`2iUXS`>Z+n9%0FF<2WcO;iCyIJ6
z0{}PoTo3mZ$NOT3darKs=UxD;@AfHw^}{&)^v3YOAN$MCY{XW4tv`svS9~gPcLL~q
zV83gF;PtOpeO!m@W=DvDAAHbPe479K|NjPdi?{n&uX>sI{m!QDjF))acW;6}ezGq9
zr-yx9-+bCXe%rQj=U;5CA8dIqcB1&~(9e6$KYr+Maou)xVE657=X;?4eD5#sGAMKO
zfBciL{>2XefiHb?5C6JH@29VPVBhWd2Z%BP2NE1OWB|g13KueL=<p%Lh!Q7KtZ4Bf
z#*7*_a?ChIAP<UE$~>63U|_-r0uK&Yz~d#4fiPh%99gD-O@UN+Opw6i<G=|IPZHz_
zVFC{#1c@|^Sq4JIAp%PdcmOl!Or98t%A9c2=|G!MQ?8Uy&?r)ZR0u2_xPT%7w<Ze?
z;UVEGP@M~%<}I_cCy$(EtUN40|JUx<f^Qpg1?lx?K?w?N7GOAmU=_4d2U<a?(5cXh
zeAV*wDVQ+B(P5|XSgf)P%K@Fsgq~PM;9}5i1va!n+AC7QAsvGCJLIv_u$~vb?h3(Y
zUn&ig>qN_Ah+wJ~8<(+8y$n-^L{GEU9#M65z^5NJcl;c3SjIXDS}C6prQkBGv8$b2
za3_E9HAI<0-~IJffKw^NU0rt}72RF})s_$ev#n%<1U?mK1zXIObrx{NttH-J4#KBb
zM=7efB8x4$_#%ufHa8Ji6KytJRVy{LoI^I{HN|2I;WUtW2|++mkPBUg;%5SlWut-~
z!q$;tL^77&lR5fTR6|Sp{}thvQ0hk!L0N)XhGYp92V0T|6_A&7B+BHFmu0j$z>#t>
zWR{)-5U5adR8+=Ld%QJCn?-95ap#)?9_lEdIwF*385HFi=K#7X#3MqR`BfxB3*;4>
zLUm4<5T68DM$oAU5dapZ2&FnihvMaQ5v6w032CSW>3Wf(jKbL^s|~%%YfHY~Ie<Z7
zrJ0bZ15JTYPE?rLD3ku(gsMTcF0{a{_YGv`qt9k4;kRWv)Lxsf2}f+U2&qflK<37H
zFTVNeyDz^S*@WXm#YV*AYov->DMa}J%#cl}DHK<{a!z?DxesjyYQY`Z6l+uSB2=iL
z4^et*pASL&YecVc{}|Dd4xc+NL|%rc&~3OubTY!53RDF|T-EmH!3#62>Y=SdR9wXg
z$$Vya>q?4H%|<g+bC8-ItmK?A2PI{g0TZ22m0dgiw4VamAkl0|8;fkZWGBlujUK}b
z-a=t>OsGL^M|^PB9Xkn@)Gs$(lR$%(UB=lFrTwu$D{DPi(S!@+Z9_G446@-2jU4G<
zl&=bTzoCmhI_afv<mGt<r9Ls^tm~X}j{=(v^P>~ZNO4qAa&GWNw?~vymhFvrbi7X8
zoti+?#y$A&u7f4?=OmRnkmoxJWG-0MKRm_ohi7iQL^y*PxZlh_<fVCFxhy5AluC4I
z<gZH(ee{wa|F1Xf18lawLtNF$>DZP<FGHn_Q;pG{M4l%R^eJS2bD7+N2!g<Zknd#{
zQd_402s8jT<Tbeg$wWp%Dy!jXAenQ>$%3aA1R?}{Y677|L}<Dh(y)d$+!yT};w$o*
zaCg?r-_VjbktHebU;<<aPypr>3@+qicyk>_Y*NA2J%w{NlSmI=cf<jlY>S7o*HF&H
z!i3m_RR6M6wq`@W=56a>Cmdk@NSHwCg^+B3V~^XU7!j()?`qs4U<{oEwvs)BIu9e{
zL!5%6#!<wJ3_+wrk{Cg^C5n!LWL+02qR2@?aW^m=7?-e!E^Qf(ktX?KBgdz$HDXO{
z?3zdx|6c~i{@t*aw!9@Smv_IHQNee6idV)S3CICKQep~8RYhLIvlmv8B2Hu<M>wcM
zL6Sv?69LMpTsXiY&QWZY9Fy&q6E=%jk}DbkTAq04ka6~LdEA7EFKdKHDEd-!#T%s`
zGibhu@F_NYp@=V+v`dDZ>|jjH2r>b>Gfp}(k=B%m?*v+rf<mj9@{%U<FuD++7;J;o
z{N_N3hp2;%QGV3~r$n&H%#h}?r7nG`EsJR-JrYxTJ`^Sp?N<>VZE~l8Tw?BQdee-&
zhLw_2;YU{|G%Ky`iVyV56f<hn*A415?_3>K@^n>^6pon(&1VboxxA^mk(pbqChurk
z|2f@-b);amNkhfuFra+(qOg-A8x!KGMYX7>WCEl)H{w@Owh^xh1FS}w^~nN?^>G{n
z+Fs+@E1g7Dm91l`LV%*3=G4`%T%kf`VJh0uk`_jrQKxUh<UTp^FPNTWBUz~hNX=RV
zC{;^pM4mZRj4Ua%n?Y($9g@zB-tV8^3`<=e;7G$d<e7tA;3%J45ugF3q+oqnXt5hq
z?MQdGR1|K+<jAAM;xr+%A?Ivyo7*dfO<FvWY$Vy5Ql}Dyf8X?Nl;~=a%>=2wplqW=
z!e(7Anv#rNb(61HGlAv)C%FuEYj+*Wym~@pxXeT@50qQl4Rg4|RN^302T(IG|8AyL
zt~KdHY%<H(mEnKG>}G9%>P-1+Nu4tmsziRvIn1_BogvmDMm*&!nJkOBejAHZtdNx@
zXXT9gqcK+jOkNbXHM>U6=#wJc<C+?+W}p%;AZ5bjG0Ri2!JQ`TX2TjXFFA*W8Zu}x
zGUYywha*=8(^%BZ<~Dz{&JdZiUD3NfplNByVUe1U4c!{Q)n+p*9$ReOl}xuKddQ3R
zFs3uDX@p2}dSzJVqzZi9EtmJOD7&PK&pf~wtGAFeJ~6PM+}xyEb<&;WWk$~$U>?-W
z(73&G{MO`aLx)GV7XjLNeHzEct}e7zyE3f5yAb$glw@HZHnx8SXftao|J#N>l?1*+
z>;ZH8z7<7jMu5%C(B#M4vLlMF1FdX9OYV)~&NdM|R{&mT+e}t7wnT^$>4!p;lKbwp
zuj{($g)`iA^~@ncW`n)OqV<Ptd}E3s81Wac?pZRfBaTU(?&}2=sW$E)CGA?ISZ-ti
zcxiW*)Lms+x!cfV0r+$ed^mD*O6D`yBtD^?^243V%Zz?4-)iotZS$xvO4s>92=D-;
zBxoR@MjOXP`Yd?cnb{H!jnkiQIIjOW>u9DoDNQ!@>$Lmo;(58RVjgso+j`))hIG&1
zUJ!*hyzhR`ms*$P_5tw8Wh}3FsWT2>R40VC6|wEQm5s5X50T;!|Isnx!+CdYzHDYL
zl0aV$727BO%3TjQJ?c}hden>loI1z3*Ou+pu?F?FvwxzE0~=~@MxM%2Ts`nppQL2}
z^{y)kKJq~o5tm?vB93=HeF=^cEi;6_Z5=}LgWtAzm%I3AH}K*E9+<vO1oU6iZd*tH
zG8{#Fo+o#R`M3S|`O{xT618i^Xve3swm-3iW@D{TU*f&Y`*~W()!0TzT9lbw-Nl}E
z9G;6jfW$FV0iqa1X@mksk<JMqm7yQd-JQkt9^SE7Z5Z9rQCW#`L~=Zu-gsICu8606
zp!)F$*=dARyr8@dz>?tLP)OeZ64v+0R`}hRs;$ce{#>D1|Ab9!7Ukg{Q5|9ZMWGbF
zh?Vfk;30(I38C^K;1327#<5tf_zy*-7B}$;j}Zi@5QXQ-nXKUy11b~<y3h?`plEzj
znMK5E2_fI%6nuf7;ZPWO4U^9a4jTQG*JYkDl@RZVU=C`@71rS*md_z+Tt+Ow7lvTK
zS&~GM;Usb2>J*`oEXT=^n|z=fCc={0S<j&9oF&fN$3P;EkkF6y48b%ZG^GSAPN6RD
zVn_Vb;-DD>_!-LGn*Tu^0BXw`qR@|}P&Yx@-UJn9rB*YET)}~$nUw?t){!Ts--T_V
zCy@#uLL!fu2cfCaHTB#f!jU(=&IqL=7seN&)QsAI|5^U1)mF?Rn#tZa4r5#anoT5Q
zQ{h+*j$9kE<Du+h|M(!%d7n?MVjFo7Lyp8g`V|S?Aw<*+z_i~8md!+39xr|*NGhX*
zEY$hvL~;a9`z@iVU1AV<i_cur-Q)#J*2w{OUq*zDQQ^!RYTo+^)Es8S|B>K@fg*LB
z(8f#z#+{5&RY`0RnwKz9dsx;7rXoTVWji@x4_*&RuG&IQR!!CoJf2$l01^425LPl4
zD4yHx)fC4J<n*1NLs;eOOqKSyWfzuRTFO<uQR6%zOi*$eBbpgNp2;opq#uG@c7>#3
zMq#2ck*~m0%KapZv83csjsmSyPI%5|m1N^U|Cx$)okw~lt=Xb?;Z!zOUL;b8Aq^!f
zQAewAg%uppl2lBptkGr)p;6-FAEDz~id1M;<<?wfVTNU^1ttLH#Tqrr@!-r6;S3N-
zW4t-V3F+oBmE|WUXJ&36X#VB^xF$nDr%1h#U3Mi9HsoHa96x2v{h7>aA|Vw`0RnkS
zk!a*F#>RT0P<t+>elBKXJmRD5({NHqaJB>w7|vgUAri5Qw^#)l?n>jF$^+!Y5Wt?7
z1c_B#gs1e<w^Z6rR$~Fy2@n2IcVJ9$Ovsv0!JSNih0u>Q`o*OUKmnu*fVP!{EU1tL
zNl^CM6r50mKBjQ`rcR{jidGwBS|f~N|3<TsCl?9EaR7>tC8V^xQKdCRUrfOSj9qaQ
z39Lwf=S+ZLU_@U`z=CF}oFL>_`h}2MC#MmFm11dwYA0TzS6*I}LmJMOcIlV$O@<Ll
zi3(?nz9@|LX@C|fsT2i?%Fcc!Do6qkDpI9JM#pSm%7NBY^;DXnZIO(+sJI;j?3vko
zaA!?POVxcE=J6$=64nrIhoMn{g$!u=`3e=Z+dv5$u>t9@B}q^^r+$oT4F0Hu30thf
z>IrV-L*xY$(W9}no6Ys5TKI}ZHlDjd53L5PuaKf%x!bagCoICMtU^TCDOxFVAJb9g
zZq(_2hJ~`a<f^u6V;L4r`kK+u|L0l04Xm<jZz?LjMq$f*U;)zSx6Vv;<=mM)0K)mo
z3r35trHNB)p{}~4gZdg%EbJulpu7rUh+0gxRl%3lsInqz|8y*M0t(0i=z-EIm)L|<
zE{~Xw?7i{{3s&rrf{sX8+nJec-Ynm@77Io}fW4~4B|-qp8fnTDEL{`^Y0fMGu<R7^
z?68GQLonrk1)(TCmN5ctw%M4a7KFwUDP!bpkU}ZNQc~7p#yaM!+4@~zNY)T+Bi#`P
zoJ@#Hgy@m<Yl2t-71#hNzDlcF%Ysk=_XS9O?4gqy>|%fm?|cM&A@1^NVv2Zae(Zz*
zY03kH-4yU0^QpyxS;Pa>|Lsmx&t-(v1cV(AbO_Kc%xjRM<WlajPF33;4T@%Bi*3}5
zmJ0W9#-3KhzQJl}5QTqEO4Shomzo52v}%1MCVOx$-m(l4P-c==h3Z-a1pIFB#?11j
zj+LQFCE3g8_RsLrhm|f6wT1<tP7(`UuK0S9;y#{ODoyxSM<1Ro{KhXYK7h66i_|>;
z^XAKG(U4)`Fa0fma@8*+#%unXZ7WXO(aNuTrbGcNume9Z1V^w0hope<uftAo%3?6|
z-RlGoq6U932#2r;k8lm$NDX<g1f#H`<}alPu-U3G3CFMu&oB+w@H#PW>A>&<>+oVq
zBxS0p2J^5D4>1uJ|FIG0s|la*1%t2<hh!*aRBB>y6CW`ZSFsgeai&$U5_9kfPw_|Q
z%3x5zgt97qxbWF}F&3w>8m}=MkIs^)AHJaR3okMJ4hgowu>;F-8}Bh6_pu*W#7Xej
zzTku)YcL^?@B&z>70^lzAMzhRG9*W`Bu_FWvq%91a3yE5CT}t)cd{pcGAM_#D33BJ
zm$E6JGAgICDz7ptx3Vk0GAzfkEYC76*Rn0&GA`$`F7Glg_p&elGB5|TFb^{^7qc-R
zGcqT$GA}bTH?uQ8Gc-rDG*2@%SF<%=Gd5?lHg7XGce6KtGdPE{IFB<qm$NyaGdicU
zI<GT3x3fFH|1&(tvpml;J=e26-!nevvp(-LKligg|1&@bv_KCuK^L?^A2dQIv_da5
zLpQWTKQu%~v_wxdMOU;%Uo=K%v_@|<M|ZSGe>6ykv`CLMNtd)qpEOFRv`ViuOSiO3
zzcft8v`o)5P1m$d-!x9=v`+6dPxrJ>|1?kswNMW=Q5UsQA2m`ZwNfuNQ#Z9!KQ&ZG
zwNy_vRadoDAF~3)00nf!14uyy_;Lc2f;o)CIKV;&WOG>KL1{GrFO&mWtHM`D1PZ9Y
zRr@m*SVJu2wO;RaEVu$8&^5m(06X}DBP>KP_=6>M1Ty%;C0xW|YeOmnfj;;HWmk4M
zSil<d{{UZac3<ZKX^nwD*h5^yR2o#aX+Hx(fc89Wbwc1kXk&I=?=v%)Hf`6oKVSm~
z=t~2@17k15VmCHN{Pso6b~vDN7F2dTyuvTM17+KR8Y@6M*tT@XgId278ie)*h*mCC
zHa5HhF-&$pWcPL3Lv|;G54?74@AG2M!z*xhEc}8wOm=0XHook3Z!3gw2lstf#9|k>
zDJMX5+d~{EgciU8Y-6!~PlJ08xB`R$bNhoguy!tu_kp)m4N$f?jP?MOf+`@yc$YUq
z>;QVFcRnxnBrH%bRQ5O2H*cRfe($$N<Tro&12~-W6g2lA+xHyM2y@c|h~E;0!xS4}
z|Mx?Tw}y+jJybY}*RzaAL<0=AKe%{|Faat^I6^deMqv2@twL^_@^#mPhVQX`JNHB+
zz-%Y^gpasO%{F8|gaVX8bteRpEBTVovzEJgbg%Y8Bmfu)f<+`i82o`{!~jFw`9hSy
zD7?ZexWXW0z>5QSMJRw*GsFuxIzya548#CnOGE--x~6M{1c(AF^ff4Gz(SmWl?#_B
z=(Q`bz(RPzSw{p3ta@HEdaAR`D8#}rL_=Q(!mV2b8PIq{lt8Sf#0zLOdw{{H_cb9{
zIz&i73v|%2!vF?Q1PDy~uct_;kGd<A`l)AoLyWmaG=o3*cgiSxtv7o{pg<?A|H3Nx
zb(kkakV8ZlAVNf>Kq=@oDnz?Pyg-<PKn%G0i%WS!B!Cobz(UM<L?nP0EPE`N!lu`G
zI2(G8_(MOqLBgxKM4UI8Cj@l+1DPiT#Ww&kNH;ww!j;4LL>zV|ECgtq`v5q2ZO20)
zI79;20zS;VpqKeA$Tw~810#62us?*%*LFWV!&V1-J%IZx_&jaXLn25-(@VEM&_m5v
z#1^OnS@U*3kTqGW1Ij1Fh5N&RZ+OmAcFQxw7Cd-u)59X*ImjnO1e82&_X9M<J3=JE
zIvD*k;5|kpK+oGY&<lNyQ-ruzgah#QBS6I3oBZ2Pgx*WHH~hHJcf3O!|90FngaQZy
z)yIPzJOpTi`2Z+DidVKB%tAVlHD%L-*N;Owe11ZJwm4+G<$veiOE)&qxx{NT#W#cw
z;J894JVgjULL9!xt9(M3!O!0VZO=mm^nOEN`E~nu7VtLJ&qJ3dL}^pKKVW}ENVaMB
z!#$imWs`TX!@NQ`0F+bqKBxopS9U+lL9ml|L)?J%v%fm11NoPGwu3)%1H`y->hSq9
z=+D~#g$o%r9CHvN#7hi)7@YG1UPMR@8!(G_?_R`t78)vSkkQTn1;iq@tklrKx|R`N
zmb7_u01$l;``s&e(B1_y{=(rbdD34>qb1S!n@7QB$B!W)jx?HJ{~5%6>eTH#D5+sn
zdn9jq^cS=wmx%Jz$%OdqrdSJUBKC_DY$n7z44W2ZxZ^C@lDHzqQ|B&Xp{0u%H+K9O
za%9PqDOa|98FOaMn>ly({26p;&dB^tbX?KjoQ8nMI%X|+08*t3Nt<rC=3qQS3=@=k
zXE2;c+l_07B|4y~L3*Y#C?sLatKEfo4aP&%e87WJ(N*7ksC*IBg<*a>Rdc*#jp(Vw
zE4<>?-mbtUryQJzr(_tf^D2}CauAyiN=iUKgS2sMf>1yy=B!Ubd61CR3_8UtZ15||
zfsFj=hdti5GYBn?P(sR}X)a8l3%C3^P$BgU>IWJY7Fr@J|AW4v>^pzx36CN244UUW
zzZjDZvJCy%3nmRYY;S<xybAFsc0f#|Aq9Fl2(E?XvPl6co$BwlgSZipAq8$ZXd9cv
zlI0+1Hel$AP(G0|98Mk#<w7mdTj({L%<|_MFc+F2nS&@14bemuU6j#A9eotiNF|+A
zwBj7w@~`<C>vJI@8M2fw5aqy$u!DwU3{-`h0w;%q6tk%o5HA?uybWJ1i8?45s?S!O
z&M=6dJr|Ne!z^ve0;1L!!ogIdjxk6aCXKWwj;orn2(qETF$%DQ`sr>!FT-K7AqJfy
z7pXZ&BT7()Xee(YBmLQiT!nbh5EIFG?dR5#e)T6<{~;Ii^fA1)<xSjr7c%!LKMm>z
zry4ZeNL5W4l2_n`azxT52fU<)sj6UWh%`%#>Ptdp8KRD!S#Q$GpnfTxndX{pz8UA7
zb>3OgRG0eCpMx`1c`;5+LW$(k8md9orKnT-F`xUAQaYS!)ntaIaY|0;PBW?+r=fr=
z$t;tN;?-i6yrkGD>M~(S>^ByZVJEXM6}F^qvAu~60~d>RMG^h+#UPMzGO`~xs5>=D
zgJx?CDX?!68*ifsJ}vFO178Yo7DL_q@QfbOljs3%@XB+BT>N&aE)DX-I1oopn(<IG
zHd>+Y_*-gqmwEmj_~3;fp7`R8FR5h4Ah>cv|2OhZdnw#6AHZko9>?igs2!8q+iI7(
z)*fZf@*Ssj!L8Vz(HC1cW1zdnNpqsbew#6m64z6l#=^*ke8y15NpH1N2(v18lXZFT
zXa`B%%SyBp`Wc0Q?^{fA)VCD&Ic9o{sffx5n6dI11c3uE(mWc2flv_*X#U8TP1Xgw
z#f&g^NwJ{z)Py(bWkgpv0ontP*Fzuv5Qsq(q7X?F4pzJZiAhA_Dq=y7pXexre1aag
z(l)(R(G7G<p@KmK_`y>pCw&@(hzogV5FRQZBl%-Y2a|Tc7w&{;;A<BI4Pv+deddlf
z=~h4b#}Lh(&nQgGB8eKdm_Mm;F?ivl|6|bT4@547jgUiHkun0VKQ=~?sr!y2B!j5|
z<cMtz!J-7iwm0-W(ttD!+3nJ{MSo0Uds7_ZENNLwTiz0vlUY|@@`4Qx=uwt8xuFa{
zMZ=-E@r4=bVk*D*qsAn_OQ<x8M+DZb>lx)*0y7d1XQ(nkuCOs4L1c0`)|os$FK9S{
zrX!<v7D17SlZ@F|V^DKV06NYw*~H)^ALFTYO4BH$v4@}pI>*Lfs#ZtB$#?8|lWl&^
zZeBc@4bz5~92x~RWX$D8IoeT=el&Qb=?6KuQc{za^ojF&Ug@YvG%L~&Hzah7a3I4y
ze}r;|VQdUu1U8h5eo$aKz~@0N|Mrl6$jvbi2@w_nWl+qVQ$nwdm_aJY7+!%3DfLj8
zO@w+bOzxziHt}g6fx1s(_H&Ygtm<N}st^UV!ykr=j96xsix)+)A$TbyafFo|K(bJk
z#$lz(*15peDHEiLRqSFJ+t|&J29}I*l0n{wyXaMsp9)D8HQTvNz%~<^6C9soh9a=0
z>~%4vg<CLds4}rQ6(`J6S&sa%k9ds36`){&2`vNFOr-`VsQIf=u*fl_7#1f;;ily>
zyOh&zRjdWPNd}V%+yMypF~v<_Jm-2A3hXkh3h@Xjjq(uFvX(Z1wOz^tgOtcR1}_nH
z?0o54U;BR4XNxh0K_W4<|Jel>vuD*T4M_t|RH-+hs`R92e;Sv*O4q^XW$D%|)|7s{
zA{H6e@P;|;ib4q(3+3TuIuJ1#-%3%y>_w~gkRo5^A~-6|ou~(AY}W7!Q&W~*3Q|l%
zUH@%JMWg-TJTS~*BWu_dQgSVN2fWO48VxDjV8xNC%!-}R_`X@z@|L;Gv-~dRT6@(o
zg<aa*R3$H#o<*L5-FY{FQuw@Bj&P`=b+;w+63?bw2n0$o40TYYCH<g7cjY_)Yu<Ch
z$<2t}+-p{i?pVffe$0tuoMOiOM_FT5v_H(|W6>Uj8fN$rY^j%LJl8`|3ub1G{p&ST
z^AfpTmi4S@U2D*M|5=O8lVYN6a-K4$c(dtDb4}Sy-Z|gxymfAjYDxEB2jAH+CzZCe
zYqFRJyr2`m@QQVjO+`yDWP{G0E<e*{V{;Q#*^FWKkRt6gVPBWYf>TPlJK3xO;0D5G
zLC3WDUDAH3`m?OwwO|luj(+ny9eB0%!WrIhhf5SP*i}fk6n+!%!RDpI=^LtN3gcC;
zx7#7FSZLiXu!=}-DZUnrQOW8Vx<L5YIR3Umx;os5fz{PFW{9Vc((W3PylpU-H)OCl
zo0>nyMM`<AKl)qmo36}nHo?oACmnBGS8T9?Nx-$1`*5#+9qeH*rked@%6c}YtG~Wp
zs$8jag&2wK|6><y)eF5!hIDnU*c2848xc#DVbR5)>05(i4$PUWBqLofrOJ3dbV(k*
zBzVuK(0A_ho8ab=ja2;PEJhk*JGadYF^hpUrssO|I=xP&DA6n`Zn3`}_OZ9`)pZEM
zg*^1Y0bV-|ja2uA@G9=9pS#F^EU<NIl`(?MSeT*95G)eSBdA{r2>{_3p-O-FG7s;@
zo8ORYrLOUnhrHt@D<$MFM)~J%3>LYo5bjT2lN)L|=u79ir#J5NKgK@opPV+-1YY(6
zPyh#zqi8Rc2CA5Vt|VMZ_h=`t45IJAjEjh^nS2lAh$>@}gY2jyW4;3bA24lzCf4f5
zAKK3-|F($mYN*f-4JTv(0_jQ5!Y}94@5elDI>zSl+|I4&q$FI>A0luuB+ji6YcUd_
z6I7ttFhoNhZ2&aK1R(?9)=c%X&igh5sR$4Yvrr3x$N)>?JGcpG>JDhmp#kO2`F7%{
zmIB{wPztlJ_~@=m;7Xy&>mV}5{s!%AfMR6K!dP(P0qTV`s19L54+FjJ#;5}ux(^tl
zZU%FZ1{Y)L=5V3v@DXvsb#@0=3?dPiViB__cMQTCNKGZKWt?PbbpT0TWX2{yKw+ZL
z0VS=~C;~*BXDLKr3vUq@bMaBSkRe`<r8p3_)WRu>pbUl2Aznlk7b2n9@D=sM0-X^K
z{~MyK`~fU(0$C_g8eIh^UQTuzhh1(W0fYg1z9Sq&u>rg!_^{3pmtyObqv9ICEikbW
z*=_v9PX`xb8msYGAmSNg!}1nF3wFXPY@!{ZXu9IjsrKtEDvky;#B*E`XmSW``miA)
zKqhF+70s~l3~h?mFc}r12^LKkN0KB<GBY5n2)}?O?usC@rym%hAts<k>|&U9uXe!5
z8}dXUe1s@ys<YfswE7V_3J7iH;SU<(2x_DrXn`mXf*uZ`A(FsL;$w=41xwn61enJk
zIF2{|#6n79309Kw?CzfG(f<6wml$Gs>|=IhFoEvTEqBE}j*=mg(jb;{EECA){}iGG
ze8V8p#3;@(E%!_-2U6<9giI7-Epf17cujZa=o-&r5gLLCKJ492$n}~`;3iI%0LLHV
zK_>~sOQgyqOVcz@^MhV3BCvtf65vlh6CHw#S~yZyGVUfs&0Exg9D<A<EPxj^QXPpe
zC|_pVK64y`?5NhQA*P@>w*oomV63?0HT}USA|e!T!dwnwALPLuQc9%=4Wou?F~kuf
zKq4Xlv*+q@9tY+hi4!7j3pw9FIU!9o(K0cYf;<nxJRt%-w{a>Wf+Fe4C~8H5Za_l}
zVjrsWEuL-ujBz71O&GNk(2x-|E7U?w^J!i!9e89hv_Qmo!dO_NU0!PQ{~|yv>!K#m
zES9)wC<Ku#3-KltAU|8;8K7cSERh$Ab3uoa*E}>YKyxW3fEaYtTLQ$yV2*CmurY+R
zmnzO5)$=VYu`y(nmuhq<^Dk+5i5^_R6l4T4m~<wv!AUvdL?L1@8R8+h5+|naCQ89O
z0pypw!>g9UBR+5_QHeF?&r0&5AFT93{}fOIH8K<+43I1jO5z2Oupz<#7Di?QVqr`b
zq6=bSAaKh|6>}4?!!eE^7DlB^L_sG9rW8VTDfo<3!Lk)96&3`cOuQgYjRFNqfl_0^
z6?C$1ERY1gAQVOc6#$|88X^I(?M?zgQzrugNa0m);sJ`)F-QOm|3IM=KtWNL0trmv
zSK-83AEOJhwKA3<Rn=h}R<%`=l~SA)TBUU|P{0cwWDus+Cca<=7y}C2bwE&{6GEXB
zLZJm1gB2OW2tc9v8lV+QY*As-+Fsy6N&#I3m0=s!VILMVqy$SLmSQW`VlNhBGq#6#
zrRg-*V?P#TLsn!*wlO?_9#fEHQ&weHmStOZ3w_E{9m-4I%VlfUW^Wc}bC%0;WK51i
zD<@WGgH~vVmS~HXXSlJp&LP9d;X^6XXrC5pqgHCC_A@LJ&%A+Lsa9*ZmTSAVYZKrL
zV!`0J!Wv9L6ulO0(^hTQmTlYCZQmAd<5q6xmTv3TZtoUv|MOOF_m*$_)^Gn7a06Fx
z2bXXQ*KiLPaT8Z@7ngAx*Kr>gawAuACzo<7*K#ixb2C?SH<xoe*K<D?bVFBkN0)R<
z*K|)8byHV$SC@5L*L7bPc4Jp|XP0(s*LH6gcXL;Fcb9j2*LQyxc!O7z-BnOr@47Df
z#vK}hYd7wM0KtR11b2cHEV#P{cWd0;-QC^YoghII608sNzs^~E&b{jFs$Dhi#?83-
zF1~j>@9%LBO?8i4agQbNNYwO5P4&oF@yH?YEYS2UN%gE)@vI^6YS8p*N%iVj@#-P)
zeoHTnq<T-Rc+U{{ENJ?yr21^E`0Nn)9%%ZWr23w(_+AnC-D&zgr20Lr_(2K$;oc&4
z5P!5)e=Nd)cUl1ikN}d^01CoDDy={|NFdW{ARA#2hgJ|bB#3`CNQf|4Oe+{F1qqg0
z4gO3RqN)|52?^0%4KX16Zld-5E9ATN>UTTBP$#WWH%O@0YN#J!Sddm&C?qU$H7u4e
zJW(q=6%wAY8lFQKQJ@u30*R<tji@1vY|x5qfkbw!M)nX!4QNG;K%ypAqh<)B7qp^R
zAkiDE(L01O2U;;FkeKt;m@C5AJFVCUNbJ*UER-+~PCE`MEe>rh4vQ%MopwAyT0F^G
zJOxn#m39JMS_0Er0vk~xhjt=&S|a~iq7YG%n0As>T9Vva(r2P%RqbTWv}E12WCNlU
z6YZ3*X(`rgDRxAuPTHw%X{laoseVL|AZ<u!8YFTJ5=)epsGXLYmIlpOOUofjFVIde
zNlUL-ORpiyXwc4RNz3S1%jhA>9MH}jNz0sA%bX#~TF}l~Nz2+;%i1BzKG4oSNy|Q8
z%f2GYxzo;hNXvOz%YhQ*!s+B9rRSop=VB4(z0=7fNY5i#&!ZsDr_#x%OV4Lo&u1ep
z;Ls`HPA}kJFAyRw6w@h`N-vaKFZ@hgr25tskzS;`USvRAY@$>AHNDt+z1WVp#7U>b
zExp8Ry~K~WG)Sj3G`%!(y)>4%EK#Q{HN7ljy)1{gyg;YCB)z<1y}X9FqCuykCB33!
zy`qP>azLkYB)xKCy>f=QYC)%JCB156y=sTJ`aq}pB)$54y&8H&Tyv*W^N?Qiv|a-x
zu7%UBMarl}+o;7Nse7keN03oRvQbAtQctB@PnS{8v{BDS(!inHz@5>+ztJE>(kQ0e
zD3#GDx6$~S<R7o1BY|KShSnd+Shv~35SH8!hIXjQ$gA0;quDN_Y3ZTKO}F)HM>7dc
zYp7Ri<WtK?3xFEXmgCh-lM4_pXv^DZFY;>ZA%LyS=rAFH6*lSU*l6$J?`V2}86@eV
z@aLE&>FUt!n%MBn>gXEMh2<3MKFR1fC+RLq1vr!Rba=rc_kMVM>KWqieR%Rf$?ZMS
z?WGgzBOvV}A?-_k=mQJ%(-icxbav2q_s6dEaAkHt>4ZOgA|1@r9pry@zv>vgBl)1_
zJ(Q>0qwMXz_B6D$!EVtxT=mptCgAQw+C?@nGL$hA#N8R>-I+Wx`UcO0X1bw)#yY&(
zqx;8lHrop_$6Qv1%Jf=Io@wj#CJLU$-5w^YycmW_+Xn>P95yH2yhh|ir&jcuH%O<x
zrVj39wm9TZUp^0>WV&9GwmJ0Agl5cGy1{%AK$bP?^XUMizVws;<_z@akX~GNI(y4N
zOpkjgsCv_Qf%6?580f~NNx}d??!toZyb1TrNe8|-`U0Bw3=!p0+tUKZJ}ID=0svZu
zd0sRk=nu*zj8G+)gz5ig+!vIK|G}74vX=s?5dhEZy<*VP8)TR&tdGK(xys^=9^40b
z79o=a;R_h`<!rg2=^-ak<7zywb7cY+_m*J*0C+=yy-)X0m&@3T@C$fRL|_Z-jrs|M
zYwLse69&-QzXh{9^25g^@?`}qO2*f>CfDDe+Ph`ai}2hB(AZnXFy2K2t$Zcfd$--c
zvMcrj{Pxj1CmHDXeaj<#TVDgWh;m2Ao)1)823cMt{(v^Y-MvCvfYq!cx+FdfSa{>t
z$*<%t{M}tXf)ujkJqA8XuCL^hy#Ucb#*cjz#=ZL({eZaa=4f&kIkIVPL4J@oEWAHF
zs2}bbeA)7{JfwTkMea-_IQx}<9!enkQ$Gt}ya$^1y?g=V!V7nvlmC=(`{_n9%R&l+
zYDkI>dtSE<7&Zcgy|y7io!hd<v&ffOHW4ua0Q?>S!Ce4)=B)z3#mMvJ$aeq4_A=M@
z^3m3?RF5;7Q1gV|0387EN%#!Ta1o{#F_`qX+{(mM=EOJ3KPMzGn1H`v0Bl@Nw_lHQ
ziNI{tGi|QHz_;9o6WzxwA!i!D$<$5yR_H{R!4t~POhD)JNRP9e(CFu#smsilxg4iR
zq0vx3_QRc#9~7@*E4Lz~cSI&on84890C+TFQXV7!{t$E$K5u09{K0TsCY{bO_JZMP
zQhv{8<PU|T@ziqZ0^uKuPR5g&b=$pBIEp9JIIY)7g?DqOvjos^Rv`@~vw5(7+X4}s
zW%EVy8GJsdT;+>pY85(N5$YyN`Fa?{2<u$TeKpz>>4K3TtJa%rHrjpAxNWsz-wiru
z3FBMncZl7Lzo7Bd?)C+vk$j5caZpF`_L3zWYrUBsiD1(0j^b@Np33C+di^7O+lNFW
z7Rf68*l@N~soUX;!QX5X4OG1IkE{P}x!K_L^ok+Sdc8OJ6+g^IQ#2rXgoKF=Q?UL1
z$6|%<%(J20&LUgG&XKQR=bxLyi436`#{jpWcjU~iWncLFeqV7T!vA9*lLG(%=05-x
zm@N2ynEz!TgFvAFB9B2}IS@#P=D)~ekS!SWFY=f{-V7w?!>D5YFY@^9HRxX!vIhwC
zMjmU+f$ZL%H}Y8ajXVa)$jbgZd91CgE&u<K$2zul+O}>w9=^8v^6vU_|E(UInVJ2U
zdhF$4>*nDG0>y(s1^*5ogJknTvUMQ+60m+9yLCLswg_xn_XZz>JQ~^mfsZ-=3qF?3
zm$!|Qw@s4sh?4in_z(D4uguvt&d%T0&EM`n;N!v{|G>vZa^G9EzyH7Rv8{iUZ9s}g
z$bZ<!pA*J3|79OP+NBNK<xbd^Y`odW?*DEdgFuNOP!dQxSp@{K1(oW63ci8<v5!G5
zo}m9}AGiMh*~ejag%Pf03AXtOp8q?49P#h`vF&o6*1z$`uK&#+hlhp#Z~So@B>n%u
z9~TvslvLFJJAd5R)b!u{arpl=e|(fbeN#4nUb^~FKfeDz`Qx#F_~WJj<d2vClRrNA
zhd(}9csnKe|HU6a?YEANj{Z;ncyVdz-}&Q}fB55*|G^(0A0GX~AD{jke|+@DAOEL)
zEa1K?5gY;}5|0Pe<qt&?a$v?uD;JE!f><H|xb=l&iS(-FdSm~xkAV{Kp2!WwQxUXE
zo11^@f)%rgonXmi8{h0>dNT(7akXV8Q95^Wi-#*^5hEyTviw_Dvr4{RmoJwmXj_P%
z%kuf|!Mt*#g>dA#K<ZufIMH>hk-+Ta4rz+n%sQFg&2W#`JLEggD6Jd7a5$M<w*1;<
z&jf_SdOD@A7`DL}>HF4tQ~mf{v9>Qhdc%lWW0}d0xDzDsBC7got-2MkZ6;ej)!&W5
z?Pj`97tOB`)7f@+g7BlysvUQ=%_l8yNsmkiWEHoQrwc`ABR@FXV|D3dogt_Cwsnb7
zZigQKea&w}Cp-4D^Q*%v-rp05KLFnXq}<B_AHW6)fLpLaiO|rIJ|sKc3dW~wq>w**
zxzqfP(7mD@0M9rG=So=J2oC!}_M0LSKA8s+^?upnKw^ub5TFhfU!BJ(TXZpsAy&6|
z%Y0S;Q6UW9T-}B#-ZcV8BN_#0Q?oJrD3noKUM<o!uw^)o7N>Rg=XXNk^@lM;4vdE}
zdNu;Wvk?YUi%`bFqA}N?8^egW>6iitDo0`E7(H+Yh1C$qfI~U(f`+K?598iNW)L5>
zea(r(OpBKnO`jcCDREAZLoU+uSH>=ja#tcKNPreBG6<0snxRwy#iqGx3Jnub7zyut
zQIXhZVbNLD43&{a+H;F@gNY+b^P^Y~2TNsX_8H*=c1_1s%7BsBmGz^HXjLF0AOa#{
zGSEguzg4A-v!b+p9<CtjQI`HUrg(n?S_p415oF5&m;pg0{wgB-J+4O8*J`krVD*z3
zqbQ=V5fJ6Q8h`IQax8mc!lUtY<X$x1PPH6*G*bXF#d`-WL^6NFx8GN2oDM_5dY!W{
zhNG~PT)-z%6_o7S{&Cgn;Zw>^x>&g|QDHO%&Jw}_<~u>oov1reekL<^af~qjI2f8<
z!+VI$m72MzYUPon2rR*1rtn+rVs8VE9;y^&4q0jlE1>}QVeY2-6o~AY`|toY@+|jA
z_E$Np_IAS16k8<%^2~%;!=S34sZhBRDaDJe&1Nw}Ltke&Q);BqBGUgBY)M63e&<df
z;Pv+~e-$@r6aEfo`*e+j7u&iY<pqhm%A24vGt{DV?tNc9K{X;;+40JEi#o=oC=!Qq
z=yv)G*D(R6bvBzws1Qq7mxm~%ZP@H}FhFSwerrp>reQ+w8I%w*1`|WkB8IGS%i&M_
z9**Oh$X{=eJ&w2$(|%|6tsoA<D?v()vE6|Vho#ax3kFgez0bWt)M`buIwol+35#kh
zq}n5;4ynFFLPG-d17l`EG~$~mP<F}WGlUxoT$>D>fc}=CLqkEug3tchAAv03G4%93
zq)(h;SSav}U__<w=GS#YlcxDj2t-q`?#^i*xd(iZo6tVoz@dj^Y!3Zr$^qgBxQ8hd
zvcIF~g2u?D3oM1A!|pkJqYg1{0J|9V#=Y<lR9KFcR2;uRg%Zy#IdIRc&MEYxuzF#w
zN{rM|CY=Xn(-s3*R+8iw$kgVo*pQZQA{>6yX0R9u(v#OF@zLI<k`{@B0f)mM1qXNd
zM)&%SeG6lI2SS<I3P?VH>U`BWku}6iWQfe)QF7R1V*GR>VzD|VCti&E;oXKQY>t?P
z%ua?-M>iS+R0VZ0m++0}LHlVj4KuH-PdMXCX}<<vle|!d!7ghn26S^|<(nP|ZCZ>4
zV9rw^x`X&v_PS+eFEcph!%~(ZL=o-pV%s@NAAnX&-(Q0$FhfA%RB3n#=EtFOlRxC1
zEn6md6hY5-#kkN^Niob_-_-a}FtRZ~RbG*__@GRrI55p-(F%apKgprPkSA9u=`2SR
zhP@h=9SHhGA!}By$_A%i5V6SYBOHGZ8SnF&oKm!vK=xSH#*!qZh9@?Q6eT%HFO&@j
z83`-Hv*S!Rc>khU<f(*dx9`KA2T1gJtpJj8=lpm^J#88pMe04%s?MT88_y%$n2{~I
zxue9nyrbG3bv%JkQUF1N0J6c06|i@|hJ~Q*D=wXI#)KhN9%3tkd1e}Rn_h8^X#bwx
zqP@bfuM_B;6zLBlP%SqQx0=3OO3UR~=XuH*gw`4><SrLSb3Mw2v?t5ctc|74d6})(
zhRzwh2w?y6-A<*K${HzQb;21N9JN+0JRd3a8*{Mh&(n{<D-O*dEh9(gvC){)A0itc
zq<aR)E-VT1sSyiYdg0n?19FlL!yxWmhym9+)SChp*Ys6<Qw|D+d~pw*r5&3uKf{>R
zHoa`Hz_|nHu_*P^b|AX}2m_NQYrH`hs4z5=Mmj#$JB}K<B5?Q|`iQwK=cT0>8*-uO
z;N}55nU94Qd$xY2!I_skR&*$>NE7oNVi)N2UK`v5tYZF540osfIflb>4p<ddU?ms?
zu+k(rL1AQqRvU>CwC_YWFS5^2n^67~z=_)ESVY6SvzUBB?t7iX`m7r)iKO%+0}u9a
z*myXpx^ha*!}M#QlBTWu5W1q*bF4jXDmfc5GADx%aKM`vJlZ<R18|+pxzPdl{2tM-
z^GZ{r5+_Ji-jZ1U5gojG@?i<>Lv|Y~Hci#S1`>>$2D-|(a(#aA+II8b{tIQYC$AEM
zzkO!rEQ_Xeg>@>QvUHrQ;ucx8K|^G&1+(xHC}SqcXmzx{==Imk6oY$)tgE8F3fEKW
zhx`H1_|}gNZRyK@_u^6m;6JXs#2V-!E}$6IHn*&azhmOt7b^G@hTy9oRI0YO8c@^4
z1~-<Z3C|>^A7<b618ZkB*~$XPX7n!g=4kp^=%d-)YlN>o*x>kR&*XfZyW7$dsbdu-
zPeHJD!8%ZYT_Jj3x&2+ef&yuw?S>k!NG5-G0FUl5Fi&<18`e4GJ>kvS>t|`M!KDFB
z@ta#Pzm)_scK;PN$Np=}sXESMFz4>T`n30=CCg#(iA6@lr!ZNH?sRmv!8I{_R|)wO
zhgD6}-(aXznbGtGr^z9IMO{Q>WMBWtPoG6|hGz+zDc2BS7V+xM(<RcY#|9JpgPA%5
zG@2zkpY({}63wXgK5>TR*e$({OlQL5hY!&u68ABkW`|1=PtenK>#}*M6Iz`@va8#C
z3s73!5-!ewyu{4C&`@f~86nT%cMGsM(UYRd)Ahs^FW!F`-Ue6)cU+4^&}VpWh&`@i
zPl@l9RKi^y5U|M+SpL->&d48sFM#vNs-Pu^7K~X{ODBvR9HN4`poVpa<j;BH36Bl8
z3U)`p=Js#_5|{X+#2cWLcu@SpisJ^zYx$tTgfxD|$8ZPghpAdLb8`*_Ub<35rdr;%
z_$9beY-{pC9Q-j_@Yy*-4wN0>-nJiGfl(=x`dW^tc@7jGJZRZnw()GectVAs?|kt0
zY`*<*Q{$8|{^+B{6GZv(dx|+ee2c=t2ryeq4XX5J4eL=Y2lALHJpck=_iTy?JlswN
z@URIR5KSE%h{hjWnB1|M0wdE$-98QR7C?g3MuSF6vBB^>nIhrDJgzcYYFkDM?;*Z*
zF4%hP;qVStnmpdruF<d}(T~UOyIR;4d%>E0_OwXYqhImYR|Cs<TyL~oIW_U{*)2!h
zfgvH}Ywp;ar~a?A3P}*k>7wshS`kmhK@53eBE>QKBjIqCaR^3ASA-JH4puX+UpY^s
z98N=2M(jOQ<6%YgVYH<iN8KM&{iYl3x5N0LhN1Nqf)<nsaKZ^4b6^%|IF8<21bKjc
z_ozA#5snc~0-;eN=dY+SND^=l>u6R{@o$nMuaXA7am}*lyfp9uF44Kww8<IUE!BRh
z6^OV*rX7y0jOSPf0X|uHuR<s{#IfkjW8y5Z(P`s}R^xxiagc<$;W=n~E+pgMB!`HH
z*&U^Lw}lSfr#PgA@vVaWT7j^kNr*-Yz;I2@GFzNoJ@wRhn8a{524hQx*xJ3+4lP3O
z*2E2Uy%>A!sAGA@JeP;lICc+UVL0|QA_-zI)y^ytLp*nEc=((JHd8`I_&^3RHf@s!
zc8iQ^a9PrH8Ss;%Y_UHjO=vJ#S@5Q0;@4FH-9OQ7CCTa#%3G+jx3UHBLMk<SAjNBy
zOf7`yPcG(s9BRNd%=X`m5X)4xw764x<6<o_&j#YHA2|bc#CeuXM;3fjX~1`!z)KIJ
zf2N-}=xgBXVb6pg-($4GP}kBPa`l|pVFr2ab`R73t_l2g2cr3t)hcV{g|T1I8c-0W
zpyq{98fUEF(K0{M>Y2g$24kMw!jc1UPCPO-7&0%03uulCN&tn#Whn#h*oeLA@Q;~l
zI@nm;fDwD51f_hmKADSVe};ZM-ZJ1uc-ZmZqL<Z_EpYK6(f2!xTxhM^21+rnG2s4?
z?-vkbSVmROytoe%hu~R!v=)gHo)aRg8t~|0%}22Cwn7nehN}jaa3vP?XfMHM&+{J5
zBk_nJA$H5sah;HOclp<w)C2p=V{u@65e5TB^kb<)9a?5uakgh3=Ba$+9#+*^In#lG
z86GWJe|h_3dFBs5Aw17*Evn~VkMEBq;%0?Zl9gcRO8SF}RG7-XcHG(s@TPLnW;#%l
z4}f^&BYbQU9PwR$saPnyd|XHEH&J$EdZ}hw^+Y={o>uXZG*BOeb_A5m<48u)PTy{;
zY*-VR`;kM(SPJ)81S_iwIM0b}kIFMKM~ts|;!{f7tHBE>`yd;earT{aERM>Pi10}r
z<0&mwr_gbX_y(!Yzo4ApLwF-hHoav9GYKCKRI-X|qh1vcad}TVm%4^xFHxN+mTIA)
zI>=h@jFY#5h_$0?>#-63rpf^>NLW(8&$1deAoujFl4c_i1*ztY7oby73|?unKl`St
z5%^FJ1n(jg+l#=TlpL)WaxUc~qcuV!TBhKdQP#-LlQ5NtS_5_Skms81B8gBufe_gW
zM)&#!SL|iyG%`w8I78#$jaEFPrWNf#Mn+(WI#wV_yJ9$oC}jo5lP_kNMm|%!^trzD
z-?j>p_Cj533o&-Y!4?nvMp5$?!J_J~s<6#yo|Eexxg;F{{2e}MP2>E4o%Di89zW#1
zhzyeEDB3!Fhm`5{>Zz16Ct~uY^9XGye`)TI<dPrp%Ohztqf{v89hS(UP9(LS9mMO_
zz=^SMPvKvV!tg$H;CyVVjNGV`IWHrr5Y9o39(@P*;E+!S+f`3z>dg-je*o*d*M|L#
zr#QE&VTkJt1HS8g^Qg&^$8s(9>q#=>3e$lB^tEs|ef31NWTZHX9i3Z`RoKq~7aO6A
zoLyS{040l3^xyV+@u~PC&Z}+N@N)yF4Be9+*fnK#2W_FUHb8wsV#kf{-m(E}_kk%-
zu&5rkc&EoxM#$ElUS|f5s<+>@R6Ya^+l?R>MI@eP(t*A|&{`YYP0HymBSxT&RxQ32
zPoMx{vTS-W1j{CmL?+X>5(f%}_=TfKlZAIY<n_bVjaolj_~_xVGY_cC4y48_qA%xo
zCJ$VZkfUqFm;AP$J{qPN=~9+2fma^KcNhl~^mp7PnA2n+7n^=PKxj(#Q>(0f_|dJA
zS${WfTV{jZU1HO2fgP|)hQ2&XI51)ARc|@jT8-BGRSZwR6NpCFmUfydODAg%Gk!xe
zF7+eA4AO3f?)08ylw23s89JpOF>!{DL%LV_J-tuRLmv@u7%tDj(`jaKQ#Dyz?_3YE
zQ$EJ`tEyC68qRwV7(7(n=>e@x2f}#&ke$$ncnN#+ZJ5p(hj(xP#qwYVN+Z;|wd5e$
zJLlz*(^+7f@J?zo*NQ^<Xa97D6AJ)IqRBnPDoC=Z0xX)d{?7Lh3_-nyvS_<E4yOn_
z-Sk2=u>^ri7OvE!*(GnqfFi_~-hGo2&JP_vr4dWwRoIO;OZpb2{%t_SU6dwKDq^I0
zl)5=j)n$B#<-^3X{9rPZD(tk%*=diWX|o7%?r`x?O!|%(edG*e2Mx_~heX1B(yk`H
zEa%>2U=*46P%2QoWd$}*1$WXbbYUK6)g#KilskIy14d8D%M62zxUvQ?6Mz2H`V9ex
zv6=_tG6Sc7^-Ad{FY8UDMFSIu7Xf-&pA~>X7-^|StH0bg>C57zX)rx40oEq%5$DrQ
zR={)dwut!;6;S0RMC`4FOOBTGh1k17ygfZdNv;>YF)jTxbXqJu_3h80+bAg8E%HiM
z-#C3PS7iR$Yo*x8MGLfW5{TQcz7ur+<J88LMzoV&L}4Y!sy^8Lw#PNL+e1758cy`$
z3PkWtfDiCWogipO=B3>HhNdhPsXkPExq;JFTOkMp#@OIw6Gb5Id4IIRk)S3V+kyjB
zO(t`vN=q%8Zm*H`#$;l<Jz$a9?xl%revwx=-~qtJ01*_ikiNv)g_%lJ>&^`I3gUV#
zvy7H9P1}SBBt|6Z?ag>29H*VxTysXIqU<@?0$)ZvRxS=hVY&dnu<VsQ76*G_>lTkD
zj}5YcZ?maVl*^rOs<ntl0E27(X`hdbMPdjrFadZ-TwO81P@)QT;QW#X%G4Wm%cu}S
zIor#BV>OtW&O?uXwt8M!3ev2x6-NJLIVlD-_NV-dO|EgPS8mUaUaLW$z5f2^{*~7S
z$K}zZ+1WywLHVnN6gP&~_$LUAuH>)t&^^O9(fJj@4I%IH7tO`sr^7{?dgn-NLK!Sa
zN)2K&tS0|0X<J~)u>(`I5P$HG<0Y+9CG{?5AVTv|?6lI_^_7w+{{i>$Rn)Mlv|^DW
z5PWR}HSGFETOYPWEiZA62)+3IZ5{%~3eBYj&!R<e9RcHY8YO@wCoahXrw|x^a#tEz
zsG|mm?UtJD2oH+&I!+y1eA7I11Iq4<`k5*BgtZ3v6elV3V^{Q=lY-q;!d6{sys-wt
z3F9OS%=)GB#HqC5|F$p{ql_hRF8nLN<X2VZ*A$2v9iA0h-X$BJDkx<ab`S379oC;(
z%<@Kjm)dIfPx+c17d}EjZK#~MyXqG^pmt5WUd}SY+{qEOLVDkpvyh~_0l$~QG0RLH
zd7X{SkbLhQVm!Z-<R{>?!~s#wy?l+3BAc<(drRv&c~)m-)IBrI^an``3*G3y(fcZ{
zc6H|p#S~W!G}^#MyN711uCc@Hi@1mS8tgH<=lIy42u5g-LQHGFaGl#{*PdrRXkp*q
z5RLvCnW4{;=?+g3pYFwH>d$(S$M^tJ@B%2D6xFc54xbNl;0214nkjBxA=ET&Xh1l4
zOzGdB7leb~B9j88O1VMCP-?}b)0u?cz*JIO(%gT|IN{I_^QGq~8j(q{$*<KN^E-Lq
zIQY=-rjO(#F|oYS%W(3f;y%4Q`{Ned|2bO}3HGuqiD88K+V-^~wB%rfS7}WlneOCF
zD4JB^C?lOEXeM11IyO<p2~PJrz&WP(Tx3x$u*D-MEXF?qwC>%b4l)^C6NYQ!Np^WS
z8X6Uf5Qy7sj()>1S3PgqqQBVrm}9z+`JIWNd@<v;lJQbEVMB5<o!3qP>K}Qb=HiFQ
zuO_@!q#fdZ$>$vR*Zkvv0bWgG)yJ0EWn2UPC?6*dDY(m5!S$`JC%5app;$VD?dQJ%
zNd2S6P{!DPe0tpP;ap%ayf(X!YrKRlS(~Psa4C!;Gw{k^IgCLn%UY!k0DcEhMh;Y&
zo{#KDdN{x80U$Bk*Onlv<R`zHYSSQG$%Ep%R6mfG2GFbQ)5Eig*WJ8>QO7X?5^WI&
zjP#+um%s~&;VF_Ts^oF3Wld2-5kVkw28yEi@Bz@Z!{Q}VRMBxQ0(=5*$NX^wu!nG!
zHCCe~NhJE%1rYQ^#KG_3*Q%y(lI(|s9F6NZ1lgELE8#KP-@!;gV-`(5<3H>svVm#5
zICs$u@u|NiOSv87N-C=m4a(&R1J3}THJr}h1~=*q!EEAS8a&}RH7gYjEig52^2eq*
zRi!P)099pJUYIU}Z=|MLG5xjjrED5e2-3mgN~%T1-*7*UvRQSh)4u^3YV>fQgzfYk
zC%7K;oEOyH^j$Y-*u>oqlHI<zlt@Q?@xEJfGw^--^<dx+hwp9}i1zW1VQ`NXqtSN~
z*NHU0i@qhJf7!>zQ5?(eCNccK{~Wj_!g`oGVZ^ymwZ4u8o2KZx{xyS`q<EO8TmQ!V
zlHnACPMk9zcbXmUg70aOANldoqA(GW=xdR|r{1gxa}s)V=;Et(wPj_)vZr-*$8R0W
z;+~)GFqdE2CGicH^GeBI23?=NwH~B+*|tw%bo`81Kz3sEOBs5y>xComw(obsG)c}y
z`>X}88m4{X;9{(-?l8{O^6WUtvEuDC&HwQ1G%H5n<2*0N{o=g%kA1A`_TsW?lKN&J
zTerNpZaS^_xNUnqbeSL~iTWSy`Lz%R?1w9EyB}w``L-~QyZ7du7F}D0ei$d@^+L{;
z!V3IQ3`z~SNQH7g{+JTWeGV?9AMm`2M>Kf$Sz#M^{&Tkz{ro^S-i?|g5B35b<N)ub
z$YHka^j4X~9$<%s{v?M6V3JDzZgdmQrvduirh}k}f~WY%k2UB3H5phGh#;KrH9xT)
z=m8#I^v)Rw##hUm)+%KqT2=~04lojZCFq6mt@P*LoWht%9Ps-UCm>A<zzFBzpxTcN
z|Evan6qgo_fhdL17v}5MN(tS|*BNMVVnHWQ23fl=BA-8)5X(LIlVzg8_KA(&0($`h
zI>1;jwJ>}n_yDqtT$o)E0O`qT3dZB0x0mTI?(Z<E+xLJt{#+BXUn--*<SI1Dq*2s;
z3;x1Cg%e3dvPB7jqe#>$^vHlBkb0Rk&reWthO->A6faN_RXmE3!Aw+<VM3GfL+Zqx
zsT)t52&XMhT+5~c9DsKs7~Tm4F{MSOgQCD#l+VPq9TtiH<biy-1t!mLB6GFL$l75x
zWTJykIA_M<-EObb*VJU0B#1r-G$tko*a-8J1&(=nj$|)6Qw`S>h}?66yna|46YcW=
z5OtLDagGWph~5W>>%;|CI2%ZkmE#~jCI-NTXG_t^j>af9qGH1DAbefz4Y=?}B~R{0
z)IIwgV6V(Zz-9So`Y+%&MlRypUCNM>PdS)T1(`gnU+mon6?a<u{21I(mA+Crf-{6t
zR9r@752D3_;@Ui{Ek>~|O5w+*n<7>hX}ChZx#&lDSdOVuV8lsxg(pYRI~PW2xwE-$
zUnCf>WD7$)oUTyJr9iFwF^$NQRcI7GUVLy<uF<<dtpH)yU^oW~Q8PYe#=)i-sh1p!
z9Afd1i`^QcCT3Q4E0yx}52YmFDuki-_)5{FYUyO!&qk3mfwatNCo;Prr1yg`O8B+N
zbH?8|P&Z*ZmkO)QavhTE7eCC_mAo5b_}ZfT3DMCp3|WgsLDg%v&+wtSGpSl;1x@+q
zja^5T1hQ*OhGu9ZcY%2{tCdfgL3l(>VM$2Y7h3wAY!&WqB83V?yfcG50YYDS(x1Z3
zkNOLghcHJ|rN0<6KLh0MyVzf<5jrL|aaxvr$)`&R2%hyH16v2F$a^D5Jm)hJ=h{L9
zue=+OjsB!SDqPU(!n`t#o_<4<h7XS3tH@}ZZoEZp$)edK@^no&DG6ZmqUclM-tPF_
zO=VdA2VXd%j`~G=)A-%L{ic>PJV!<7aDG0*EId2nNKB})LOfJ!AUJ{j!sC^%=j4xP
zY}^I%On!$K$h^|I()j^6pC5dnOXQ`6&EGzQqfq$5SaD1ST(0yLmzHagLJ$=Ljrq~o
zXL|`)+N^8mrw*Sz!7_)C;bOJH(U(<Vi>~Y|6OQUP8LIweJ|A~HEL8=<mTr)CV^OW<
zS+O?c;oaJp)Mz8ybvbfAbRK{0X^UCQ=r^eFKev_R>rImUjm1s*O;odE6-wRGHmBbQ
zBTMks*VZgtxS{4d^S1j69Cj^t172T{CC;T|y7X9oTVF!WLo~%atR%xZwX;j#yq~^@
zBfqp~;Fj-}4L@~3ik8cIv~QphC`GX5yAEziULaxT@~x;y<(+6o=Ojm$fHLR{CwkST
zRPhGfbYNf5CR5==a|9HH0_WG4zzl-zB|>LFRjj`f9GYRdiBeVpqYtMe-`E$O<QygK
z;?4x|TiH}!4V%jk`wVeiH<1i?RwX%#sHWR35im?e?otOyR_v1|7?#W(eMG<Im`i>p
zb!p<*?#IFNt{ON|7>Tq$89Kf))c<*9%q`fKfF!8PHt7TpBH!`TXhxVC7q5u?bP=gv
zI180>p6BTLg@yt37{bvyA|cSC8Qc6NXNh6nUGIIw*z>HZ`o(&UO7Pfrr_CLQ=XYNN
z`4Q+d^5#LgMUKB;;!h13IU=vcQ?$Xwef&||pfRgs)qvD4a^zJzy`z@q_0sl}(Z?)b
zm#hw!_S+^HKy%;ICuEK$MvkUdoQ~_nQZXt4_Ya-(6)<`9W%mmL7ZY@-hr;tt>}cb{
zP?K&9>W&jJ4wNWi@`5U0R4K=K{ioX+_<G@--rhCc?pLZFP$bimDoXn}ljVl+)d85S
zu#NIUFu1MuysvJnqiTPk<v@%*8Ycqi%vVIn+rSirE+3Xz@F}~aA1hMivg0kA+jmUT
ziG%*3h(ipzdtS2<DAG1x&`<Jl%B$<WO-==DholNB@}wy2<fmN@F2#sadd|L$zz$@&
zzIL%s0OlUb&Ta`3)(gf#hr1enYSAiPQNF_N)&{<7e=(`d?s7iSnDfC;gDl~WT!@bq
zERAgJdQ9&R84<0-U_1vJ#Kb?5ioIhN3tb)PD;PQx6AdlvFAA#I3#z4?WS6~QyT^%0
zk!8G5MPZ!iXQ^aU-t1<>jew^V{)^gfAuiGJBzbI2hgja}S1(#5oxAZU*aG1XrZ4;G
zEukgOkGw&{(by5KG{TJA4KNkg<miPn?dBaE@m`d0=xpBO8zpyQR1p}-&S1%b3=i}7
zy=;g>B|BL{sB61#8`<>wkmNry3h<kAei9!Sb-Jg0spv^mjYw%{gr_PoWgJPsl?=TZ
z`a;dk>>O4FD;i-_YL>+4c-t7TS*BVbnb|Q+GC3S8&#9kO!<ESw-#C_WK>?H(<M5Wv
zGO3Uo<V?kpy#h5Msg5tn$p8ms6*ot2(1tImqyy}wgm6a#daK<@{i|@8WZ?2lt;Rx~
z8H@$6Xa*-f#Px(v4n}aw$vZQ2naVcbHfr)oC^Sk3pO*fjZ0hEG{{_A;dR?}aT5RB+
zbuUpi{TULJGywl$1b)28^j-$UHxOr9p}i?r;2g<1C|>8?k}N+`Tqz&dKD88C5_SI(
z>i9IkoH@a4EeR~7LeT|7+j(0ES-mo4_w^JHI(Z^CC1Y|c^mN3NsV7Ya^JB_~>(HgU
zuBo09+6nikmMg`Z3r9|!%TAJ{u=Hl0;N*SLhdL>nZU-4YXTa{^ety>|J5yO`3olZ#
zKJ$t`6|Bs52I@rO|MZmCv}iMWnJK4oUTXU;EJl|6n6vHTY~;#<VQ-MtE@=iPPkNTL
zbNadG+LF^1C*q-T7!#wujT8W^Y9dPR9}S+I@@|blS623(LQ$J&+C*;gp75At$Jv^M
zQJo}R>c3B~!i1x}sh#Z`oekHMRJflbe3_;rt4Gq8r8OIugX^F#D)FM`#!oJWlESLM
zlFhq%f0{S`D9gtVj{(6-9Qb`8$cif?)|tN~AoHiQZYxgalz*JCNZ}fyz&oL^d>@W1
zAxkY-N1aiP;W^jGQLTReLE+a2*G_(EK_<DyIk!rwPg_%uoa*Pss%N<Kmz*pY0`+87
zl?qu)Z$%la)MY{WOA42AmL}zJc#9FH^iMEK9Jq?d%nW)9>TKr|MhFYXxa#z#;))jx
zuSuT>D;78VS%rViLaAjnvebI>7x<P4!b!tYa3-4t`Yq07P*?>0^5rea1ir5;<+-!i
z%1#|{s@ciU6=uq2WK4@}Rb^Z8$sNss-hGHoV3r_5SJ72zvDXS3lAm~<gsKb;t2cE}
za?M|hs{~I882V^52Yx`83qx}MScAF{j;G;IwiuBmi-fawnGYi2AEw?~)gxUnVp_v7
z>4D&AB~q^1yr>DP%F#G3W<OV6!Ol2bre=!I7c(*N+lWU-_vS>c#1Af|C$GqneU={5
z^xV`S{58COp*l4|GliQiWnII=v`U5>)^o0PsjF3up<NNO+MK0jGF5dlsCoX}^m$1!
zCPWuSKsQ6ZI!3)Xh>3f49<9SgSx|z*mqnv<NU6_Ebkt>8Z&GJzP<e2x`BrqrPj(|p
zN4LvoQwx`==4g2qfto>SqeubLT{M?ZtxbkLAXTL^Ri%`-h0GMa3SI78$##xRNteTx
zQ0pyZFEa&Yv&15;R_t-A=?{!arGGgKDKt=1Y);rPj^b}lRzCeTqh7>bBflbvuoG)G
z%v=8D*Ei+Lt|gs!fxq;3wpQ!;ozNJUBDcFXKZ}1(?yWWy%lo5lu*)gm-=xl-tYL4}
zLiFv+h@R>zmwJh;KHDY+BJ1wTRO(<S`x@17mFM_|zQXrp#j+ti#Bv1@wXK)7$w24%
zGQq9ODr&Ufn27%CeIy&E5k_ZJ8t~1^Nx$?*%+%ADR<B>!_q^0ox0Ej))q~wxYNKaV
z(6${MBz`*^yu8HVNUo(2Z#e3#ktxi;9dG`O+gHrr3;U+?4Oaq+@^SkGe1OJE$h*ln
z>$Bg>+~ww}_P0^!NcD4<5_9mnOq}3ixZanci{^3p1N@)tk8Q?8*;*y#OX5i)`WG=f
zdV2%jsw#r&s#V&0_j@SY`=D{Hdd^*vD3cVH9j}Z1zeUC;6FQ%&2S>AH6}pWoj(A|3
zb<ljpq5WmdCZ^Xz3(}@cVm~$Y_K!ZYLOL2n>@Vo>Xm!=LjW(k?;BidxI5(ufn+Xqd
zlW8Dd)XR?I=-OS5LI#Xx4>UhUmol9TbFi8Ls_2n}q>7}=lwS9&5v6no55+XXV$R6h
zWrccK1ZiSsn1Y0GUoe|)_rIo?AFJ||HyRrhuX*~KP3l@e?bVKu2DMWeE#BjS9J>{$
z9Zhp`E4oq5&6iI<vY2xpXRmSfUwc$>$W1Lw9<(7SdZmay2c9U|SY-Udj4RZ}$2TXK
z?z>h#{Ml;)Dab7-UqKBLzh3=ejLTHZ(ZnKN>+UO$^R1yw<3J_YL{&mqbyGi2y3CNz
z>bOHWM{%O^7pH;hS$Oa%RLlxwa`yLVpK59|wDHudc?v{n#m;FJ-v|nB?o@pJQ6YGc
z_R-QeZIOkUzmuFj?|U1tnO`ZG*L(AGE_vQ(mZ|G7n>6#qx@5zlpE2mi$Q9Gw*kAS;
zl728M6{RF}p%t)=vkJ0jo{Tw7b|Ca2k%xVZtmq0chK?Tzjb)v0vwpiG<{w%R00l8O
z1eZ6#Rxeje@39JYWN3f?ejYsfEkxK>wa9Fe>omi~Jo6`C9QtK6;WrA`@z){C_-(Em
zSLEA|HUV{fD&`$0=H|zVYu)qKBf}>{R=owDbgH^#(0Z0juBJoYqOINzBUnwlPun~f
z!ZOvBUV`P(5vtDt{ykPKQ&#0i*qjLb-}GebYe<^6RQM1rYAUw7j4Q6uLYF}5vf&YS
z;7>c3;@}2jf9g9^Rz%HG=eFqe4>=nn45b3dqdi;F3;==>3b&)lY(~72pS!*}<X2Z=
z)n-#&W~8JSK^Sk*8^@R;YSn~mLb_%V4vP0!Hqbo!?*52tHRr3qc*g6(Z@9lFJrjkW
zG1UlJ>NFoaia%(>&42lV_MT4jQ>s|2D${m{?alJyrb;Fw=E9{2Qw@WX-p`GZE74Q3
zJFV5?Z0$r?(H-87%WdsoXBlYk7NYS>^|3pq807LtCA@Pts@Q-Ti#2QW?|v2QA*ai2
zgHRk7=~T(!Cgva6r{tJ29mUQ%Go^A3?Evfhis^O;nK2@TyyQ%&pShFk8lx^&z0JMO
zk!M4Ur;Yoqw&c5PEx&e9WC`t)I@(TkK5C8Zh0QjrAj>hb{S-apZZRffJ=NEmtH5fU
z2llTT%GxUfDT2m6Gqv@ya&<PE6x{=Iu@6vUCO1g?0HQ@bmN#~MmYV^N8<q7LO=wwA
z?E6TA<L~2=-!<E8X6l~cKeVLR>0Xt2eRb$+uTc#8(^2g<+pc6?Lco7V2bNY|P+%$F
zpue3n4q0~%t_Wnv6)DiEVhC$k<e2p5=Pv5vvFDmu^kRGHE349^cKF#Nol~y&^bIkW
znW6NNxS^qE|8r)&Lz&9sa(d2iK68m<Melx&ifeBDRV~YNJ(A6ScC7fzm)>PEzAT|t
zV<*s4zzqTT9&E8se7C7k<7y!LSmZX`^J>(^?bT=p7(voS9`(NX@%bXayK<kc4N5m=
zz|3&n1ctWMo$yFlwd7(JSC1I{ES!VZ8gM&od93kzyVQO0R#swQRNs|?@Spj3a#kJ8
zq+y^=v|<+=Klq&0`1<~Rq+<Nj@?*PZ?BsOC_Z-XbhJvtd5PVHQ^7ATPVf*!t!tcS)
z&%5vSg3ac4iC-c3M=bSufsEguD?cbw7|fe}%xrPJD-1RpzYspX28)OB<BNt_+)xfj
z5pz3|zOR!XilLNBVCFU4>;I1QR*qtPOEU?<7y6!Lc}F{)$>(-^@#BteHdizhhsEmt
zR5D2#VP5a--fW>n1^c6LTkSY5ShQHJPRERKH4S$lfyMea^LnGzO8vKUe5&9i#e!}c
zxt5=^3>pvlYT<4_S9=1H-m%(1|GeKH48b-`<{K*7FNmeO6VHva!viPXiEdxKsUx%b
zQi-hJ9-S=_k(C;3FCV!sR_nhmRDXN=_;a(}?e6F06ZiFQf9N|l+h?BJ!|_xOyPwaz
z_owqEsx`JRe7`T&Tb!<bzVQFK-XBS1vwIbIygyrMu)BH{eExHLvQT3O{q*|$_;7c1
z1r_p#LFEAjAP~EQ0#O)SK|vUNe?Y<5vOM4rJRNuNcOt7+a44DQA8;5rf`>AkCf%Jf
z;(yu4?BhIC(Om29R583~tyHmskAJA*L{NFD<0Xhas1sxu+o%&2`2JESDa-QGB&+Lq
z(4=Tvwb7*NdqV%xK#U@IY17QoJ!sP{%iCx(zP10Q&2$*&rOR?z_n^!6IBTQJ@p=49
zmm7e}N1qo$>`9*=&e%?05S`-Ii-sLHD2$6kZ{g2y5+|m}Oq>+PKyJ-28_AndZOkA}
zle=q?s;NhXR#`XBIKdR0dA$I0`FtlW(*Nv)A~W_J6fW6qtGa{r^xVMQurF`8h1no0
zXH9MueKR9inw^Z;uq8@0+jK9@H;b|QX`(!3%DIEJ18SNG^BHxJ!$zbZhd-f<xQq$Y
zN9#Qk7ISZJLnYY~*{)&-%EY^JZ3{y=7@hX_85qn%Zv~Kpm^*Mc!h(><>XiO@xQWJk
zfKyEUq%X80vGX1$iLIN}gqpeMmdO8F&;ghv!F-~)@_~!y+*_Cs4th7$YGirAq0Pz6
zAJYs6sgDpQc4CghqzH;Cs!bAq%LGpb4%~Kr>0x$~dO!30ndeSM#NLf%hJB&;m!9C#
z{MWjhS}|g&tY3oib_zx7K!)6NA@hSqaYh+5H6E!rzbVwtTV9*bi)&4KwGxP>B(3v0
zsYO5QFv$#22jE~>|Lm&B+Vb`9<C_8q15HhZ3H=D+`_K@(zQiFH_QFmu1!>v;?jj^p
zDidKLwR?-w_S##Y%zfUOgDYqhwWcS)6%Ra6i^e%;V#GZRDFKGO|5P~?iiHhdI4T;&
z*@y_e^_4WO#fV4#fi)<MMtKB8^f&Tqq#V2>zxBr>h4+7NFM_~2AAm0a^rIQu{{3aH
z>q`3?lra&;@v6)b2AuV8k~Nf+-9^!;&DTgHk=`bs4-pq0gf9+LXCx$y$2YBpd;flC
z4c83_Ck_LLpiL%@-irV?zK>gBl@;e38prTFKw-<1e@eN}K8tZ^2;JQjE-dvormiH9
zbSGVB-e*$4J=CEh6`otAi4_G6zV#=ElDe$$>J{4PKU;{u`P6Yd^%E4caY?Tib0RwT
z4*I{8#Kj5IYW)_2VhHE@`95;7`Po>hp7R_CXa2^@lEH|bFfI^jG~{%BYXYo&+82hB
z3J<&dr6Oj-MaEfGmbTb*q(a;^>3Ag^ZPq^wBGm5f1l<7DQ|6NK$ISY>9a@APvBBMe
zMIxB*qh!X#FfrTkj}h(tYuP6-8<j?iQ`BP>6U4~2Nk^N81BR@K3lZDpwLWSg4Ux*+
zfO!2$MB?1B15gJcM)C*3le<#hm67B)rzawyliGA6qc4etQb&mWRWh$|1wa{%mgfL0
zRaR@0M=vT7eE(Ln8xt~gvlOA@+@5H%K}3ABAAHLqD%d)}Lg?+GVoyN4wF9RI-1Vx^
z@orECD-#ZavVVJfNNnndNb<+$T^Ms-897{2n1@Y98Si%H_@9e~l!IX+Z2QpnYeewn
z=jm2rzj%Rg?+bKU^rfiil;a4=smnQ8M)8-qVqLslw3#?Y=Rcw@@aQ=uxPeB+PZ(D8
zD&@$}-ACG)+h)i_8bQ)oy21^}*nya!DmeEo;#V`|K*Mp1eWg@o7RtE>KKZN?_b<q{
z@gMx+90AeEQk2;v0M!fpMkFvJ4bdKt=)4%lS1x1>*9z1T?Y-=W-4F|;>t?e#Di=5u
zv2jwXI12emKPQB%dfBho$YGSY!@c<Q;$Q<&!yAfHY3+}l{6Nzfm-b2;TbUB=b&s_?
zvx$7f0rc6BnsV-TlW0UBQf_cNtF;Z8h%Hm9b>s1;70TjhWIu`x^+@RBK#vo``yGL>
zRxjZM(199}X#<nuV0a6tOkab0l1WkTeIyCe+$u8!4}%JG5H%kVQaw0_@;5@XCmw@E
z5D90=@46lYR6=ZEtka&Rya#&^rAJ|l>MY1sH$S+ah|o_|u1cCV@AbkoaOwhe;oSk#
zRr#4Hj#EAOrX8=N93s=TmA=mIAoki*BaD4EbBQ*+31beCxEs!q8}6@I?83;2<=8LS
zs*_-@pBF&77|iaLg1y9yT5<OYBEo2`=NBaI>lV03^FS(J#Cu`*m$x?gdoV>zSPdTw
z5H2izadXH(t!ocRthHFSXu4J5B?vf-_yc0p*WdzfuvGAgL$!L(bn}pebprGjY%y;b
zs#}-~rZIy%1B2`Jus)c>t}sRCA2x8URK~AGh-r5EjAn6zgZP4;w%{z+dMNUH%zp8e
z@3@Y-Hb5$hVV{!Vwf~S%;=q{+>Q(JkU)2li$927kbz$Z?jpgvw7#Kc*pPTl%z+DEB
zfpw6K3l>rQSBKDNVoF_8;xUC7U=o@Spo!%%44OCjm0%E&L99K<1T{V!TCg6#Y}xsF
z!;J8|*QR*YO+6c}q07kV2EHYLx5^^ULCAD_RlvfgM%yXWROfh0(d1i2m{V}@HTi_}
zjhG6{?K&$NWtn7IN5~~GVZmvyG%BopkzCqChZ=nyO4yO=R?X)_H8?jPb6Rh2yPM>9
z-#hO4#-dgI2?Ks<Mweph;<|Nm?ArcSApfKD)FB?(F)RD$t5lT;6iY}exF_j^Px#8#
zt-wt%l4anbjYaV{@mwX|K*#GZZE&PxTqC&`l2g*g&*#;FED#Buk9cXT%h6S`c8DLc
zN~+l}GdTkg5@h8Dy#Lozj+_!r319G+J{wVRf#7E1-XP5QhL+JbATD!sj^YtxwN865
z>1apn59%;I)~o*D>)Pf9*+M5_D%_V~`ZQAIn{ml&JV)LPk<6Vl-ogF=op0KpQx*f*
z2wnWL93asbhyq1qA+c25L<ha$AKu`NDgC`u=x6BPola&0jAjEVefT;-49N>Q3m=ep
z@GQv<!P$)=SGdZxesDXf!M7;``AtKguHD)ns2GUk%@&aXd4}Rj8xo+U&2S3*Pr>;8
zU&tkc*%gdPw)LAy7eU3j%bVIuKB~6?tDU)DzPXT!-Y;Mzq|^vgJhPzP{M~I=SLQuT
zqVvtC`<WCggD**H)J3Fjg+M9VyWG7;Hl#0J-bEq)XPjgT7w%Cp??sh@G8k1uc^E@I
zB8ws!V^=zN5AP>PBrJhhbkLPZbAo<e;*?TXA~<LZj1K!H!!jEwo`S+L=7YI7$2vv7
zDT$QU6hJy^TR*qV41Q`5Qhbw(@zH=w0ScZ^Q+#K&PfKY+mIv9d%fgPKz{iiltB!uR
zZ*0Rmi6a`!`(;pOXq8h^Tnuwi-c0{VJ#oiWyiM($;|rY7C>*av9P0HKb}K5(?gJ5T
z4arP{rY3no+XErzyc&lB(P}EOgu?O5{E3iU;aqCTQd5zsNK&idVQ~OZhf1V0l9+Ly
z#7CRDn&K`GSEMQGQ#lp&{s9)>kqGHPy)<m6(clGHraXR3ZE)T>-XVhqwZt%lCU8S#
z-Snx+4Er|!6hu9i6xG-Xo8q&JSE<rp3Wt$QC1Z}E_((Ogb@2HWl_LGfi1;YB%`D0%
zTkgZLkR!GcrTE0A+)UjUJiKKca_Hjd>XH6ggv4*dzjZVW<mTM(u`T*#nclW<bdJJn
zbwz?_IW>x#=ia5|MXzC-GLavW7zYoO8k;m9SzGDq#)u(p70(>%18FDWKKe5NgXCzU
zgk}T4-Nl9<ioZ24bqZvv-R2SD(<%~wl_V@M8!wcIBQQ&#b)zhXmo-0Tm*b*WlfnQ2
zKhkvszgy@tITk58jUxB0mXqr*4j-izQBsC}qZ8pFu>DT64x-^VE)r=rP{I7_fv;mv
z`&C5z&{qfEU@65cAU`aEUQ-($-~s#oehzM$+Lbl`Yu$-LVEm>tRkSCmqcMEwBiK_z
zuf(Sa$#FUg_P79LFj~Z1tq3|0Mq5TVPNe!N&(gI>xO0=2-ZG(l-~pRHg3w|lc=LE`
zTjHK<;jmcwGTK)qH#qyq<cozvw^<ZTAzyd=2z92!`_dUbImF+Cl2r^DuT+X>`w`!_
zHq6Yu`sqZFt)AM-#Ac17e;3yK$LE-fb445o*%!st=h_u%cB7Px4AI=)pIBl7io2*&
z5W`bYgFA>)$t0<k@ydgUlOM6Il89;TiW%(rXji)8Sy`#J@X`x-``6VL{;HcPUMPGW
zH;ddqd<kcac|D2AK5-wWmpo*Yy!d~(yQ`o$xNcq4K;zoDLpQ-S5Zr0p65JsWG`PFF
zOK^903+`?~g1aVYf=dGQA^F$Z>swZ5U+=1UF{|d~yc=V@&)A8xlwfSvdi5>t5LrIN
z%m6I6(hyH0=x`+CX!()kq|~6IEtc^n`=eN^uAKuE%v{5$g-E@6o|<F16fad~_st6Q
zaH86fQX~3`YjIO_rX&<~@L~4r_o8C)U>J}DQ}kR#X$)OD?P;G>UVg)Iqa$-w&5j6=
zSt9&Xk8RZhgS-;A;pm4d(cpL#jaimJ-6ZAg;^B%u*l+EY`hvgcguuyl4JR>46^lNV
zi(pH!GD=Y@BNF|@S}BQ*n{PRuWWAe)Ht7dk`FP4t*0nR0<sU4i%jC!T;qmb+LoQ#$
zy50uPYJ!B553Ciju2lj$)qUM(BVU$B^3O!ds;BF#dB={6J^FFk-`{uX(Bi<4g`9<a
ztD+t++zyTxd8C>-mMO<kCv4YsXeZ^TX2~Fdt`3Q^Le|qda!z_G7>?SB`l)xtL4<P3
z*)GBogOb{6G$fGMy}yy8N&=Z@Ex*<Gf9Em{3PlWBTD028uwG-FJ_@B1E2~)(9vlqF
z&S8oA34uSC0<|(v@BsH<gMq~3TJsU>mBplD&M?oMN5R5J-z14uHU{v;29YFeqb!c3
zLbeueRSaG5uq|v$KhJ6fuu+AwlH6Dw$yJLT?us1ZL#$0|v0vXardUYovJv-kOA;$b
z0N5$MbT1zNpj9sM$Ti(eyz2gbIZVBd0}o4j?%*On#%(2L63}432DCX(PDw%9`lRte
z9(~$hvYhY%)4xOP{ooj@7_UF8>>B2GC|f&(LCl}^o<q#7{b!`Jq6ASdp+$05gGR{%
z0E7(>uS8^*UVz=PH+x73?n;3kThDuzRmawdNstL0&WaMjhOCIQoa((qHePb`I8{Wh
zAzS(73iH7*d?D7~+`kMSrUrk+@2zkc!eLx!lb6DPSyjhB0kR=$R!Y^?lcK?su|<)U
zI>b{2Bc}z<Mi(4a%>ywdsGT%Bxin(2B^Zq@uzdBuF_V1e{VK{VX0T};){y%Um@AyW
zF2am%71AfCSd1Gr>VsI;fer#g<@xPPzQBCh2xoxIeAlWL=fl$wQV=b_)P*U$_#UDD
zI#Jw6$Tk)y7>`p$KDklB$e2(Oy3!Cm->%07Ng`=H9}w&uc-u!}*lkv!GsrEAug-$T
zAYMu1m4+%3%<E;s*VD%rW$$km6w4<e`UXwUMPBR`JODZ%IgqBaxtm>`qqveR=oO{+
z=?v=0hyz%J%;MZrIE8Z(_*MitYD*BD(<qP=Y)dHG_M0$&#Aiu9w5?GjJf1#NVdl+z
zE7>>!W`D0jA<D-2NfynvbEB!Bs3BP!-9^q>I<2(-$G~1cf|8p&_n<w^t83)kW+{uW
z)LhL2&Q@KDDngz83=(Ntdx_d23tI0cUuoK<n=wMt`h~BWsf70#+e`Iy@;Ec!g1)M#
z4sa#{F&@<9#hOI7eKn`Gpy@AOvZ!+abG$fhavYNr9IAFO_9$G&$`-vL*L40{DN#Br
z++dtmI18u9Gv@@t>l?A8UW^1lwfoZM;YVce0Qz_cBMjUGrY@R0Tp|MGqn!jGDbSV>
z9w68v84N=d97q=ocOyE8odt2k^2hgglX8ajh#RzCa%Eos{B-bH&9KGQ$xS-RpKx>u
z<a{UQErzN!h^zNmjL07~B9I|G5K}DpUPl5u7~;t2&jbn-3l<|tR6-j~We5)R6Xy;k
z4Xx>Q33Y1?`#J2Yd>j_X8__b1n8ziT+8SAVZ#1c9Njlg}gBdl=8^eU?*nFvqz!A2@
z8+UjAc^RL-SB~!-N(21enn3xWjm$3XGvNHHEm5RRO{Sh%;p5wc0S4f!B=fcuJHAx6
zwp2g9w6M0cIKK4Mw)9-SjMBD@TE5Jdw#**BtdX{?X};{Gw(KpwobPQpKlyU++H#?M
zc}VSfSp4~f?fI1a1$6BNZ2W~h?S&%zMbhm>@A!)~+l$}xmzcMg*zuRTwU_$wmxZ;L
z#qpP?wwLGfSCqC_)bdxhv{&}<SB<n+P4ibTwO4QP*L-iU`N>~<*Io<duS4pn!xE?`
z?5L*{XrSw8U=wKM>1Y%YXp-(|dMD7V+0p!7;PZ>LVkgkz*3sf8&>Gg!8Yj?}+R>IP
z&|ccnUMtYi0`2JN5$GK0=$sblTI%T966pTk(fw1P=dPm%D$tA6*^4FEN7&g%DcDc<
z!dnXt@N^D{2o6ej4!#o{((D|1FF0)8Icz65;?_ChCpa3`IT|N8mfAU%D>z=-IbJI`
z(b755BRDzIIXNvjwbVJaCHUog=a-*?(|4WIP{A3bt{E($S;DSaN})Nrt~oZLuRL8}
zMTF+1yXM~sEogQvycb$D?^?7IT5{`J@)KGP>spQzT1o9%$rV~H?OLrBT5IWA>k(QX
z=~|x_+F0t^*b>_O-nIEtXzQ+P3o5jY)V+-*yhGT%Ln*vV*S*UoyvNhMCnCHr-M#-#
z_&~G!;5}6Mn|b#)JK^tc-QWF$55u|-<Aje=yN_~(k4w9cYlTl*x=(t9Pe-~>r-jd!
zy3e+Re|+!$@l*KcUH4C@@HtY?IhM!;Vb2An$R%CRC7Z|<PtTQz$hCCO^*fOp&7Pb0
zBDdx}w{{|TZasH?BKKiE_i-W*sXY(5BEL#|e$|TnZt3~mBl5y}JWh)|E%iKYi9CPr
zdHyK^z3YJj24MmKC<L7DKqE-Vi+${T5Bwkzfy<!L<c@7D6+_DBdVP;=B9rh+Higpz
z$5bwvN&B<&1CE(O`kRl7O&+-BZ?gqFZm%D3EtK-bBM7)W@jj{)%cpa@{KB(TD_1So
zX!gX1T4_}4wz=N?!nf9{Hy%sj@*=R&X|`JV?DCtyR<F(JXtCLg(9WRC>*4n1H=(^@
zUl0l*w>Oc)hoS%7KAtU<P386>aj{&e)NXNoB5}1|Y5chK*@x84cB8}N?)Hh)-F{~v
zf{@3T%){|uBAv(WnatDq=xe!Vi!ZsC>)BeH+ubv{xBJE3SSpVng^%aW$x4eGl)~5h
z;p%9q#gEd@_v!b;-5r#&7Y2bWz84Nd5ZDKguNU8ks15OlMRrY#?<WTt!UUv(lIr?V
z*d}NCfRbd&1;_$|_5En79N3b0>eSf7M6%v_LofAz?>uS}n<i{&VxPzQUPM<i$9_Zz
z&ZklG82C?Pv=_#pF?!-d<Z=3lthq7fW|Mc)OcAH-g{)oc*pn<%f>#2VBh)y7(ervv
zBiyrDiEmG~uP+M(s;d&Gh10*{zKev}_&N>2K=?5wwwFb(ENPW=H6ue)tf(M87G0(y
zZ^i61_f|-#T28Unn_f-XZSeA|n)=h^JUyi)*O<C#_6-NMk$MAI*RI+@R>$YbrCvY6
zT4os>AVjdz$HDSh{4It~iZ*JtV#=!J_ej@~kh<pCRogC~%6S_BiG@7-q2l;;y9Iro
zDyiw_*I>8lkfaUIv#H|^0^D)JA+M(=O-3j@CqjRcfEcsPHdisd*4H3dU!vWD$q*-0
zv*(Ku6yC4+79XhA?!QwyegeYy#}-Eu9VGdET9VV<hJDzLUMg|}rMNv3nK;ATBf(^b
z6=@&jg~ZCf14XYOee?SUmYfdy0pFkE4nf?Z)PTS^A67NnqPzutlI7p0Msy*WVGkwV
z&UF!uKS&g4@g=qWw2clqj*_fTI;~&YA$}2ti1NOR?oni&M}Mm!HA%pq(tXFk3k)&W
zIEOXNcKL<ayU@?IC0I}z_tumAT^%>F63wsBfDk`K!w~a$h8N8kl`l8@)(2L9&ou2M
z!9#Jli`qChd+dnRI{xmhsHUyedtVQzG!x<qrSLi}`Incjx0kzj@8WYV=BL_(hja5d
zA-TevoelXsqgo0|AmU7p*W2d+F_-uysP^L{8qdRe4AM5#91dA*j{7_gt{}!-_A>XG
zh^Q&}q7s5hIttjCr`7JQ@<)0Mqlb^DM&SkqGX@!kS(lc=q5G483MrqIc>RAKF$J@u
zlRQKg3kS^9NpXQ-U{umLy{-LWWE=9)BP`fpq^ts<q<HW$h;McgY}F)_sCuP%!8R<|
zFl6@cVPp{fNd_$=jXDXN>bO_}<7ed%K)ocSGyYt(W6>XyjGLuon57rCqXIMcC^~NX
zEpFt%z9s~q2dz<)ixc$+j{QWca+g63ntHvTfz+=U9vC=3GsYsf6_s;n%f53(4U;#)
z`y6^NtNIpI7hm>(LA#C7?4Vq$I;pq<k}k}%QIXU*Z<@>9R`M27lxqCzfHi`TPFm;V
zCmI}ej;Iv{PLw&h;C*DyLTW{GgRk%UBxYZ;7fj(g;AZY{;zlhGD#XTLnSaCk&OhA*
zCNz=}KP;LFqsIaMb$YP=lhcEUghWgZBA{XfgTZ9nvQ%J2Dv%B>zciN+1pLS1@g$cu
zqf~Zgkkn#SFa^u|FezL9p?avmIxo*uU=J|(h3e6j2iv`z7ph18h3Wyz%E>Fp>&WY9
z>&PqU=qvoCdYlw&Jrq2Ab**i5{!%^8`U?Nu>2ddP0fQ63;QW6fJ&Xo{VEr_(Tme|2
z9{le}5BM+AL+eoq_Gsd;uHvw6=kh4!_N`Np|2L#Z;V;soZyTs>{Yl3oTE`<*!K2Df
z|GzmsiPJ(k+rkCkbpp~9{EHRB+I9Zj>9Gq)aS#4aNRLwDxK_an((~{yq{psw^#$qi
z_>1&-x9you|BeQOlR)4kDxG8%aGEW+Ob1+O3;v7rfSWwP{~hV+{NIqCNV~!?m%>l(
z|5fOT`lrxiznHK65245Xe-e74lOmH+KSlpj=t(H7FHDcA4=pXuOKUBNZY)jtEA-U=
zZ$eMx=jGI@(X@uK<o1=Aj@|N_;qsdKf~Jv@_W9PDsm~q5nFH&|W2d1z&!q#)T>~Rc
zBg=JjTO||w|8RPC{=3sN`q$~1|Ibd({C{?OcK$j&-~QqB{QBecjQ!K;`TFJS;@rf4
zae5a2Iz8Y1C#UD&<nr|5+drJ1{r~RtSZs&9I6b5i>HpQ~iM_}D&rXjt%)gu-x<5|O
z?0<54j9#1`JdH{*5jzr#yIN&2Lnz~m(=(0pFQ>;6wAsVYW&U{e{jbwA^w;T;`{VR*
z&P?Y1o6|G<;`HGCk4{fXpV@zPdJ_NT^awh&{+rWN_Tu!&{!dO%n`Qg_(*NxAIQ`S<
zaroby9z59pU#F+(e{*`0{>|wr{ioA|Llm~YoC905{x7Fz<<)<4dQAR0J)*Gh;RBUn
z4eyPV{^j(%3g3-nsz!GF<MgPB5?1u?jx)I9&5No5i2pb}Vxp03`|($i|8#nC>c&-y
zoik>T3l06Tu}h=ffq$JIHHK({qGFUv^cSb6y2x<u#p!|XLq+16=|^MLGEDe~)6-1#
z$LS&8wS@QImUuCL{y05#qo^-V4?a*55i$M6>CvluaeB(j+Hv6XqgTi2ZZXyVIz9fx
zX)FJ7dP=MNv8f^5Zy(B)0S1P@lgg3tVM4@cI(rXsn@M1#+8QX}&LLQA3*X1!@PTm1
z3S=b#NZ@%gxCuCA>kAMOn@KNW-MypYpir0z99>1(Wl|-3J96#V9%jMJv>4XZ$6>Y+
z@99bIt<Lx_a{A~AfL%;Ae-t)6p>L}K$>}qAR?W)sy$I}dGwD^bhqo{&KxiSc*$wsX
zk+gK()t%{<b#IF{C1$X?h0eVzFSml#;oVLEmaVd(1-|{n4s^aT95PjetbC+HTokmE
z2YsV>z%(9MVD@Zrhi%-k5%bL+OD`u~WLAw;X~%Dg^-*l_&preS+IfM)OBrIK6l7wM
z!pY@e{mgN7hi@muF-8?=0(XPqDHNQg=Fie-K0JL0m?3y8WmMsiE@BUo;1P3ugOz!j
z7DOr00BY;G7;r`Ilk-Is1(+Ek3IpP!co89h#iujUhe~7^_OS4vynL@z?QJn+<aPiA
z9vy)>2L{DlY|8tU8z3Pe#d-d9P+pzOv(^rbFfs(2Bse(ijnOc)3?c-2HV(9wr&79g
z1(H>je!NDB|B6^ZL!B)4=CL=-?2tV`l%@z~d<I>(DJ@;zz6MmN3=_xt2FqCw>CN-&
zG)T>%Fvo|`C<BwUFz=aekE&Oc>G??Lu%_)HYNJFyRFU|;T*PjTB}8HfD4Xqz#k!c3
zPy{u}KyQs<wgO^b`iY`wSV(dq{>ss=ozcWr7C?#*FHR54AE$@tkJIBzMgxZt_~P`4
zCqz5HI6Xmsot_%K3I5U97pEsUuII1QlgUn&;H&!L^gvR_h+do?4imi>rzf5H#pxlQ
zS9)=JVnzNqJq#Q0wS@oS^dvwbf1I8lFHTR~i__!($LW#zcc&*`Z%<@ZYb*eD?iGUl
zi_<gPEi-wR`R2vxng8STT*bD%vA6?z#)lwY7tIILQ#V59ChwIZczq&7PF&N6QB3?c
zqYI!jTBESbKRGVx;l)rzQO6<*odvi?)m|rJNU<QlnKnEKVXV)XVMqo^YQ6GAb)5I3
zb}3ivnpBNqRB1eim7LW*M*Iop5va!p?`xY2;W+@YEs|JJO|z`x8EFFjVI_fsGQ87s
z3w}z4bqL#m2$H-2JlLQ50Hr`F=uX~ob$tbV+p%dw22Y^%73CKF>4s$hm6iWDkm*_I
z?h6~F3!S_Kc^*`XJ$m+h*4xifDuS_L4T=dS$RkK|Fq7JMOz%QH3U!hl;KKhs6;S0w
zwnYk~<cF%#Qcy+_3X%b6d5NTBO2FP-gxR7rz*9UNfb>vCxK9F5OEwajQUgNc$$-NX
zr;4a<YG<ODUc{_a!R#ye$eur2HUpaOe1+A|eReH@Ofs>o#4Ffb0y4UY2Ry9-EN76U
zCc{QlcMt*Vc_R=#0jF{agk>NfoQ{M+k<C@gTO+H6beThFquH^6?+_B|g>?qrcS>7f
z7h8OY+51TJ#`r*v=Dd<H`22M}Jh&kNE6@a*5tap&+3NHB7&m^95WhkEgB9yTvEQT}
zw8W!zn)=1*IgnE>t4sj+4uJ(b-P>NAo;1uKP7&@@U&e6APhb{Br&tJ!V9;5pouC&o
zLGv$8kMb2{_0cQ}hNn!ib&CwB@)cqQ-)n_^C5C((=c{l>#mV6>Cy*Ua$wu&|_!`9Z
zhHpWWQlj0Vk;%+<+?WUJKb#)-e|LHmaxX@|z{7qPIkw!GC?f&4wkjO6HoUc?9u!W^
zr-;9(TEMn)$=(u{X>I%vZ~5+Q6?K-oWdg}8?%Vwqe^)pbtGLw<R4zlY*oLEdmCTSV
zjWIZ4)_SzS7CJc@iVD4Ot_x#esPO{`3+mWM0CyUQwLR$xwMx>at(mf}33c&#y>Chu
zpy&!MBuwpdh7fd~*>KbkMy9k*&zLv_pm(+-Dj)UNUu}B5r~T%p>mga^XdmL8(eZqa
zp<fzG+Z##dNAk{g3aa{*>jdkl8T0ZhVZWY$UE%?}QO$k0+<EX!3B__Bw^&vhZRC~A
z2FeO8EheO;MO@+syaV?X7=qvRO5zYz`+RrlDL39SJUOyfX73=#^=s()`P^b*E9~1}
zDbc!M%=7cleD80X*7SDxR!a)73RJ>t5eLv5KF5dYC(QZi-Qt&bjY5qq)8CLz5j}jd
zteX4qp{lOlpRQT^8>UsWlQ&qp6wwti_jh|3(H-jS6I4r`-&nqoUiv=d7lc3|E}g^g
z>5E%jZGfIZIC{$Oo@@`vTfy6a(QRP?Gb_tdCrmfu<YBk@7NB&oFX5bhoSQU?nHr)N
zkTlE>O_{&)PPv)~h-`t4W}(oBh|O<^>1mIBYK}dQqn5m6%bCPelMt{b9$1xX?M3K`
ze-ZG8%dfa4hz5*V`46Y(o219Wou|YC`D=f2drhFdlO|HVLvji5zSutdP8s^z127Z3
zgoLeZ;bnH=fV>mJ6XKX*>;arrk4^n(<q%xc63Dpdm6qU-8i4-{Bd*3vAvxj(|JUg;
zuy91Fcc3f?rEze%mbUx7<dzA2^VjK-aaX05HA)HQba&;J4n?XrZ2GKtFak7Fw!b$G
zKxEgWa`kvm4@7jq!lnm)arHz@jevuVj5{=AT*jHa@trRYCa9+pk%}PIiV|{(YFboB
z9}OD6#|B;VWPzibc!R)*UhpqePpfb3zo?!7OD!$$A1PFet#%2iF+KDy1Y$0)gG1@U
zz?FS56={*?ba4(uAJmPo6E#9m*tHJpV+eO*v_BJUNJKF7>owB(Kzn_D9^ynUgR^);
zFzF?)WxV*q?au@LI6bpv0gm^<w#Z`cfH(kH-$O=b%Gk}aIHr5pe%t+z(<7tx$LWC+
z`#(<4P9#OW7Sf7JRd6C0n-&~_&CRDe&>Ah*27Fe+JiAU(dPoAOn}W=+h1-JRjYQ6*
zZB=9(z9D0Km)bA=rFwKCu$5>W8_Ix>;ogiZ<S$eYod$L#Y@)zOAZoqVt^XUY!|<B`
z@&RReLhO`aiSP>KRNs~GA-q(lk2o0VPH?FqFHR2@%6t6u)G&6~$z&Jej|rsO$&bU~
zI4GpaE^&lA)=z2a8g9hV|Dt+!T<(by8r^M|`=WpW87u>Tsh$8HzvU>$`$WWgDumw5
z?s9A+m5kOEACE?o(6*$xbfEADxgvim1UmojG{+68#IrJ!%D#{tXqmlhI&cU4Zfq&p
zb3V(><5R}h@Qqok)Bvnw5XQ?+dJr(SZzXV$A?D3N0@y6_kxzA(FE76>#U`1m7&jXk
zEEYqheEl)^K0W+u349TnE_)QZjfB0ppM4Ul=OhL@!soe7olZvl;a98EpFS>rBypko
zMKiF8J*DzUfhrJtACPgQ5lyHJQ>6y*`K$F%!r)BYVQYHC79$kV&=eJm7Ll~Y2{O`G
zHIX3mXKPskfq%80_`E{2df77q3cZ9xjk26K3%Orq)HY>H22*oB@Fom>B=8@J-B*UW
zp8rGjjPa>%N2K2Hs%oMpS&(E51cZA!mzlAbIYBe1^uXlv*yTpz_{zbhpr%rv<B#|{
z&N=CRo8{p&8G4+vR<lSkgy0g#3hDQ9esizMKgp4|&7?oKW)PFabGH-J{HjoxMSbGZ
zFq#8bS5zuuS2A3}6khXO#-n<tm&s(<6Xw$lqe8|!IeI*a`xvX_#j5iA$hB9iQR<5U
zhDzIa#zLP<Y}?fBe^vR*m7%ueny-?pq|_W|RKR-HSluVX_aW3NVb;U*s}X0MmPcAv
z6aqPF$1L*1i;E&HGn^li?-!!ORLv0cYad^no{L)ii!@G>GGecEtiycrODv)_b=b_P
zjP~riaS||Ey<g*Br$;%5k~E&#ix(TJ@yF>=K|oxbmC5C-1z1&l)bY8b=MY-sZ$m6m
zOl-{9X;?q5R+0y9qw>7IH=YY=*lIIry-&H)X^5$?kG9m@sL#8sC^D#&-Xf?as5g|O
zh0_;BC2)>D`PJM{{DD=j1@**Nl&S2B|8r^rrt*u^<CTxR^VvR%7~L~6Q>T)4t^UR7
zA&*pq8oC0M{y05AhvtEgflT}`L4Tc|cP~y4M<xA3c{jJ-C8)h1v#B`(m^;y)FW-*u
zz>TjeY9yfQ7M1VV+VMD0{@w(xC5qUJn6{p&BS5|*AEiba&3=2eVDlQwUM4|{l;RK7
zlaL~JT!S=R?wUch1pOTem)|9q(Ltu=tOuJnzL-us`U;J-3B@Y;OGeA}gy8y`wWKEh
zF_RHP;2*7r3!x`&thIKno-|XGqB3Fx0JuviSf}YCoQ-s}=$0BOG;ptz{M36<*k_BJ
z3Fm=h<k%<B2fwVG-V{R1y5{#ry#fV0{9GPLt&sU*ZBdcoyj$y3LaUKp;<eGn_SWoT
zzzGqX_<YosO5or;KiUic4_Zal?xeLk5C-l|^x>$KA?}2%@wZGyMtobXyXJ4g`7nqd
zFqm`Kqq9stdC);0FqGq2a4Fvl=ygNL03sqZXlrF$FAo^XDmuFNu#6;HLGYE(u}cIR
zZ3KY^GJV-lehFPKT$q*cAm%2dilX=4z_{qPINDJfhXLO8YJP9xqb5VRNKNncp`UGr
zR1ucI5j`h#$4#ptZ7&0}gz;0-SlV@Ziw|M9P7`%$CT3p|8WD00PlwpDiUvDd0Da>}
zTF%mLp8?q68#@t4aFcTD_2b3axgWXJz{6;L_O4k;#VgMFCIp4n>0*eZXhxx&mBZ$!
zjcR(<;|E?VWF;J@p+ET8ag}?l@A}5I^$|^n0rd_Z1K7V#+ip6)aGwrlGiPtNC)V`i
zBPjrtd3)B6c&muLo7V$7PeVG89QNxKt5LA~d1|5CBLD}r)-g929T+)6lH>YhqU@n$
zvL0n9|0Dxik6Z%@X$;k208jJyEFVtz7jM_sEOQ!yy;p(*<WVJS*HffpZieQX*j<BI
z)M3#0{%_jOsQ%=VXV@X$z&xEo1PABeq`tlKKwTk1kQnLjlMpecG@vp}77(Aa!2w(i
zB+KTpw!yX)5;pfS(952w>zv{HTs&zSDa{ih9fpbbl%qfD+?@<GZ7wF|iFoyEoWh3R
zfIbtMePzJS8^ys{e<~7JhCj@RmsNlDH*-d~<v2}bGqTrLytGdx)EWqVdP?had#5(Q
zoj+y|ruQ1P<&>@7*GzHeJ{Dl&xA|L5KV!wUd>`Uy8z(#Z!Wo}A%b`?+Jnr|^tz}Rv
z^FLxwKSyQ20-}T3Zr+B_n?isGzACC`S+ah^?WeS?McPio%U-!tA(x+1g5MN1R=R*|
zie;1X%X07znkm+bK7Y&}@tNg%vZ3-6U~kGS+H5gcM<^j>&|8K&)1wWbv{SdP1>Lqo
zn%%w=1h%`ic{>otob$F$t~oVXaSP?R=<e0q>>&i~jF#-A=UWhcF)yN3mIzGP6@r<q
z(8EXCg%gwRM4ujdT9su1dTZ{Y%$hCPtfM+O>we#q9^6K_-JaLqke1p*%-8%nA>O#O
zLC);ws__Bh`+Dh3v>xn?MGnyN$5I%3*WmpZK)}wqGZ1>`fsi%H9s-1c-eB4JdxZIh
zY5Rg*H}yVZc4k>`%WG#N?ICpIF2t3n@Tmc@&o%80Cu7MS(h_tKVD+trI?)j@YWmga
z;V?Rak{1*j%UnKGyzMryMzs$)L4e;){45BMjY$8Aawp*6I)oh~UW3E7Z1izBQ+I|>
zc<ABgcq#pT<K|HsJBClYaN3TJWXQqY%pbGoX<-x)a9WmkI_Vn`7CqMKW$8vuXIQL!
z`x?#H;1D&yl5%A3u24MRz#z&LRSka<PR!8678tK_-sE!j^whBUw85$Hw&urcid(E@
zFW}@&t-_@RdNKwg7ER+DV^bQe&^%hII<#=f*he4Y21#H!o$EPN7^d`wpZrDaQMsgh
z4`k@MB=I9A+oG1gxd8t>XZRwBV0&aW&;*Ug*lIklO~Pb>e|H5du0E*Y>@0H9Tbn8Y
zdnyCWyus>`2<CQ?x|JK%f(qzvL2kBhUVY(B30HgFOi)+?)MCBG3?cq3P9ZcS4E4u4
ziI=kyL(=u0)QjFjiTvtMa%(K2v}SmVh<$6ubr)AV1BEx!HmTp;xch*2-z0u-OK}jD
zg*_3fHhC>z3vBCJ-bC!v6B52oq`tvww$+&CO)OC;jZ;CJHN9fEe=&Q0Fkhf!fAq7f
zS2XiBJNRSvbVBdCvBJhUb5B9{ga_EOB2pRkX73?rsn8-!r(9tjoF_k#C*Ao?EGDe+
zT-m9(r&Q<Q<eKYot;XX#<OzNlscQk`7qiFl<{)}M2ObE8f4-9b*z0csWh6IQp4l0I
z)!xP^y06{LhDF(ZO5A%5rVR&UKLdy_Ve2CSXcP*qO8eq5&|`FZd!}MhzZvRI6AS;P
zDZk6@*VZW5lLC2S_+p%O4z%w=*>fR6X?t5;s2Ig6LaoV_n&CJB29vGz#-q%q{^L=q
z8awhT5B_Ffd#@~1JmlNB1+VO~#K|-p9h)OvYQ+KlpN`39c-D7dL+Ho|UY%Eo*E2YA
zBvmaO!64Av{n8zLi9XbOio^YGiTO^{6ZZQVADYfrEEuhZuencf>1>&UXg!8d@de8y
ztw43oN6Y>7AX1r~S?1}j<MfVfjQECPJ<s44&q=wjR^CRB)aXL3`PSx>*Zsx8^m{uP
zbmqtEb3yBXU2vKvy*)jgR_Ja7n%1axSeAyG#VD*ItNpaUQs^JH=WSnJKJK$SeW3F3
zD%v0hmV$jBB4zaX>pDcG56SRGvNQ-cZ~d`*ROC!X1L$3GWP@2nu^Vua-jj#{Dch)E
z#|BVA2+3j5^fa;+RcV*6S!=u_AZYCK@#0uPzu{7hiUNx9P_R@CDbw>9d*R=Tf)SGN
zK>!sQrEqIDSPe{%!zfV@;97`AOF2FZs`&yWp<!daF#_yM<tbDDJ`a)<d46;n9j8V+
z?@vV=la*8*<wwRzQiYdIECuFq_$RKna`-1{y~pW8Q<C62z+x=FRKr(CEdN2H8lvE$
zUZcQ^k0&Y<^G+L#;BebBmv^~4teIwQ5zPNSP-E0A^BPXeD4&r)U3~*SK-hK7<xb!I
zkJICM(oEP*@biz;vzOi9;QJp=53Yv$AE)QuDEyVH6=MX`=QJks=X&$ys28WlI9{B<
z!{n1Z_k&5&#S^n>$`(uBQv9!9-#?{TeSR>@a$58-&+)p|?(+5{Xs?XP+d;ty__5<|
zQIhHU>tk7AisvyjDX3)C46xo8AsE`5hP+)lK;UKFFv0!%w60nz(*)rQsZ5TQ;e{!A
z<T1OwP3P63mtFVo+u!=l&~73O?f@!9`$1eyZ--%0bCPJa6j!}nY#CxR^2r5{;>EH5
zd#C5gZ99n2*L^pN=h;1xH1F6yBVGD=50K@i^Xq$M%d_X`C<p)-UI7wE&2gT|F+F?L
zo70UvnpUuZ*i=ekbk>&o6XuTm)9&x9(zkv-fk$+EPmc&dj<bO+@g`}+90en9`d5ZP
zcw|b1=Q#b{S3wVWQljT$VSxlDqfl7N`zB;K`}d@ehA3@;V&U%RG}sE-0L9T9;M+QH
zH1T{y^JO4@_qjPc84-%hy?EIC444lc1&z2&2np`uwP02p7A~#CJ?{lbLhZwsG@{oG
z8p>f8@;h*n9|jZKl%mwIDWQjnLqQJ8!tmad_#;}490buZcFyGR&M>ve^tIr50a3uC
zyQm1_CD?FX8QwV$fK>M#CiG?6N@6te4&hUvDsmC!&Q}=mW6?OT^$9AhmC;n|%hzcp
zaRAJ6fKnv2C)USaI!cseKpIX$ZEz8}vaGyv_h3r7i3}@}zmyDIU2=<>32V8u+<v%9
zux&6ht@6=C7q5Q;Owj?w8FcjJj++cDqjeOFm`YW`&8WaDVOnzXw~EE3+I1d%^?P|r
zsG>1lY1RzB)q_Y|823|bQZZng80XzFF5d$@9l3Z(7ka}4tR<QM?T`BjfRtK+36O?}
z6cik>Y4342aVRbh>GOl&1t47*NYPZt#L6|H5-4oRIB1E59{QsaCkG<ylFTuD0!Ppd
zmdP@pU?b1l!EnAV2V#o%MbP4<h>afN39bTBLpcI*o{nJBEQf<&RH?<1x0Rwu-sV%O
zmy%Nth_{W4)zHWLIeC}MgLnPQ<?yNnBYG9+NZ`M3U{zxAiOSLZQcF0@D<b!K_g)cI
z3y^XHk`OY)Z|zryerI<rka8({|LUcfz_?f$V><ej#HbpfVpQXWS9z;JBFx4wQAfLA
zEyFs#T7jrsM#**bR=hxYhPFAg_NH7AgOS|~qU04p=1;`pwH!)R-$Z<K2D2Nf7p@fF
zs%FF}=`_9y*llWDcA-R&Jn9FaFBZv7F+#9Z_18kL+M0bv5mCbRC;5xomp7Os76p_a
z*n{ISKKA;&YVZD3p;2hUyyc}$`u^^%bG3}%C`1(vAIbc6RNn!koAgOMY9oPnpOC-b
zs|<rON1l$?cn;oAEjtm8G=1waY~uXPAApqmgBXezE)!^5w+;7ESOn$a<wrYM--$|q
z>1<ZUdU}Xq(A19ojaTtl?)zJE(S<Co;c%G(Fwi!&Xe3@5l@9Mw#yGZ`x6P%PkDf-v
zP%gN+d9ioR(%P_zM(s-FH54y#)^cCsDZ{SQ3=G+YolC+9V%EysA)PI3Cz{##BnzN3
z3@rC=ms-4}Ywim&<&nsu**LRCiH&kIRUPi0F9#PeIu$~Uc`6x_6xLaHWctC+OLGoW
z&RH}p2;{u)q5<?rmE<2Zzbm%Re^Sq_z#v{CpyWrkvc2+4|F{hi=#Bjp8lD+ta|jx|
z89#$>23KQz7qX07Y~AE8Hq|%NiGp9P$hq}fVz5<6%&bE8X02&Fvwc!gN4gU>^ucO)
zZ<Uxn1$|u1;o!meD6S$fDDE2W9wZ7tUdH)4MdsXs_4EVFiGSxl)^TK0ep^MPsGVZN
zMHiRIDmc=<V#fL08fo4RJe^MGVn!3RfvarM&0F9^3u*v69?M2$GA)>1+F;RNh1jtj
z$>15uJ!Ky(c6-kXM3y1HVeWdO(muo!IqLTz|4zq4{>^Z!-Fjqods}$0&kXOgE*8hu
z@(=c6c44joQiw%MCVzp2)Ug2*x@q?JY&w>o$6>=1w(nk*Ho1p{fA#BjTTR&*!qun6
z`7LD0T*?`wnhiHcE;2g*te>oEQ<(+u>Qy$!K9&&)4|s+06YzoHFapDQKY8;aRx*Bk
zsTtZayP<RGk^9)d#A!pgFk+E8(sVn|;yyL~c6YBwqDrvzSYAhXsoZMy;Fwidzr%0u
zK;(G}tKMqIC-)AZ5-^QE?RgpkHLPCUyr$ygYV{&>5fkx)aeeyrY`*4NJ|Hqc`nozw
z_{^zrz^R%}p7ksrwv3)(Q9#sBT<~dtBQ_}d$SdMkVHe8jOSMN7P$YEMD5T1tCv?Rz
z<5Y?4D4OHnyZBr9S5O}_l~7JyWmn*5OfvtIi5{IOF^)sA^~5w)@#=6Y$Qqn5=__H}
z;K)LNK*fD)NR%j*m2hKF1D%2ZBDx4*qK_1<9T?qN5X1%B#P%dE_Oq}*hzL?4+665t
zL}lo$c*-c^Dk`|g9biWnRfaHvCPmgP`H&L@VJ7=G<i!~yL99)pj1@IPgS;*M5G+m+
zDm=mOP6B1dSa0S<MJ<sf^(YuC1_9KfU{YoVZvh@EYH9Djnu0trYOb|UR3cde58{$z
zQG!(}k`+oICUi*X$NqQll8JlbdtN=SllU*kg%i>m=-1IQD*JE4^Paufj^7L$PBP0B
zb@>&5CSSIYcMk2pY8Frv7-K3|R}iyQW9Ppf`ij<uXFWut){E*qOyb-oDj1Hs7KNPg
z=A$<<PvNkYGkt^3pv!p9nShjER;TS?uj*rq?W8o=tAe?)f5*5#d_Tf<vIQ#jC?>7b
zY7I}Xi7QcK!BFKWq%}VpJwFtcAg&V($;*(WE@GE$8nrYT?2wmHQxiFelH?a3ke-x`
zRFhtf8ior*jm=<6f*<IjmkUOh%Tba|6^teuZ@2+bBkhfCU$qx<)G{fs6rmOenaJ5c
z_Ior{1QwyztTM<6fT`eQORuR6vf?}?<T>ibI7vqf2jx7+!OiPvRO1{vjF9-NvC!?Z
zYmTAwHzRCS@*Ra^)Ja1|O_b{yl8J)p-jfpU)Z!;_QmeS#;#K3Mq$5Lk<;qEH*%Fc!
z&eGGJBaZ{JN2C)Ts&t|ImA)rEyjPQCfmCJZtWB!pG;`zq-VsixLQtwA#m#v|GxRsx
zCdeJ*#dV!j5mj8Vs8jD>;1D&L)C{)a#(cZ1;WlsCc-*(C72=MZGC!Qh9K6|9Cgr2%
z2kQi)nKJ{AI%P4B+XlAF6a%FOuFGz{r$>{BuHoXUy(Dc1Mt7N|X#}U{3#K0)dp7YR
zOa~QiEXt3nSo5Mwg7C^w1ScvV*`%%fZQ<VCbSmhQC6J;j?}Mmgb>v&Flq$*iIjNOv
z0PM9z?E~oYLwb`iUnc<iN{HFjMN}oXqBC9F^hXzz{+yG@#r@v}Ygee|a>(AnsdK_A
zPS1(cQ|c>XEEHk-OrBbgN;|6%n~pFY%si11n~e_!)m2(o)j(%0Wu>F@Vwel&E0hy<
zK}RaXv-9n9S^X0x!dXf0TBF(D97yleHw@r_@w?b}3-TE6Ii#LAHeL-0g`oFet9(iN
zf}Z__|4gB#O7yt1ZXb{1G)gthQcY!Jd^$;{g^@vzNnOfD-olFU$$DI#YjjFMTA^A<
z-E=`iUl_X6Px7=tU;MVQkd5=zd@P4rOhpZk%SiU+*D3`z<Loj$(yy^%!=V-oZS!J8
zg6ebgZ+T<J>|)-&>XJP)3D3DKPT`!i!JQCpp6J+DL&I+vM$f%8W=R*A=R**|o}eGM
zRFYM!CJmXxlN=fCP!FvfNQs_p#vM@V8uj5~_ztUq@2v$*%wR&U`&`?vEEn=FC`*%y
zQwz<J1MOs)R&ur(zQ2mpKMJ4ycT~A2SGkwsqQF6;nafgf)y#X(m1ssyOD>{XYxz$f
z=o9*xxe+FlHtN+76u=X;3J1e7XNxzzQUW%b?xq@B6Eu7XWiq<8d;^-4{Q{BMB7PfF
z5gS_C2U>&h+D*+m6Iqq-5EkfM#_EIwBQPf0&iI!&r~~DDx{$R7CTocsB?3d%V0mlm
zBs)E-b;%^Pd!0+VB%AG5S0j#fSo9YOH^!{{wFwjTB6e4DXwt^#J6gSwYmWQ28CNd^
zSM4`yN)J%L`nqb8np4G*DVGW;E;DXI97RQWDKS`3<nzjqM*aNbHaSLvJ^Z4~YlXeX
z8JDN2JLlPS)tS9Pz4WA6G#XJV$KkyV1CauX9?69eG`JrJ2BX^zf_tbS$t{}Zl_I=N
zHHm_YjZGLuy<+^OZ+Zr|ot%roky|(N@(XH%)NLy+-Gar^+fRDoV(;>@d3JXzUQ6ij
zyjt7lTFGRdQcc{bm>So)8Mc`G>g+P6IKB$Y$WTJQ-HN{>y>9r3u$`c%JTR$B1zBFf
z*l3|yms9_Gd&n?R+-t>U^pIBjyJ)-ZT8k;fh|RJbZkYEMm#(3yUgOgY9V;u2!5Wcz
z|F3JKV{)T>$!&dW;hOP93JQHYGP;*Z0ThC1XqO>#@ot6A5Z^L&(B{Ij4PX_EcH4QM
z5>;;30ChXFNDby-`_^5tNKvuoe$QJ{K_qsk@5!)iesLgpqj7=%_1keBt_8UpTCh}i
zjJoll4VFBGAQi;u)6LYcuKgV64{zs|g)n!aT{SjVCS^Vv&%4H~u4#?VVp~^qqmv(g
zV@x-B)*(k4uMX&t>+@Tz9+Yn=j2&-JP8kAY_cy3_^UwB}ev4{fo0ymtGh4SlVMHVy
z%ShCGvrRHGr;vlHDiR7W%-ocS(wN>Gzi)k{8$ve=;Nsn#oLS@&ew}RQANbwC^?Rbe
z(Py~#Dv4$|$p!CxQ93*;_$ibSI9_rh2hd=4vC*48hQo3pt1;wHbPLUsFxi{TRke1*
z5<FifMPn^2i*&Fk4C5#F%9syk@R`b%rT5f~R!Il<*J@SK6afJ90X3bB(0y3bLAK9x
zp-+b{KH*6fwCN>M2M4A<m`o+$KSr%r_QvQy@gwqbT1tPI_-h;t;af0=_Q!sK@DFWX
zL=EP5uY6~+ii%c`=q7|<OpzF`@iszQHqGh^IY=H4F$J4H1=8{inI+{|vJCEO35%3d
z^op-r))#Q_kXAES25MR|ELPSLSiNJI>h~^@?zB1Rnfx+(do<yLGC?v_Cm5boz|qCu
z(>-}S#Gf}D&1iYeGC6GC?OIr=5eFUdjhJ;s9?LjWS+lXDv7nbcSlo|TBiI<$*x&T3
z9nPxNv$Q~xd{<3y&{{%RmT3ZJvKG8~`B9FpXVX4`Mi5S=1KerbaV;IGE+ng3BM`my
z4Xv^1HxVK6L17Wa4>a|V%DD_Um`MM=$QNFk@p$Yte30NXBS#fe^QAGz?enSl^G64?
zbJ&)hIahP`&kL;~ve}SIMEVBb6dR!sn}t|<22mzfrX%5;z?f+NRtV<RH@0hEW8cpM
zsL*&cJ3&0n3zFQePY5S_20Ii^7r9Xv9!yNmXFr`|&z8L?Y2TkHHdjyRI3i5jhNf3I
zayc-FT=+6Eycs{4BAD_irh!777^7W4ci)6=h{e2;=o#Gg7+dwravarScH>GIFQ`P-
z)#`4>`wqsn9tK#C`BsZO^+2|l+t*GA###by8wkVp7Pt1NpZYazu6j^e2WYB(JlFo#
ziL;oZ$ENymYkGbBYSd?lS>@+Bi1PAcamn|$Gw`ui=%<ijg}`b1>*H^xWra5pfmX~d
zsVR(e9cEVaZ}fNtW_kR^5NB3ELB)!iuh!L0Bk`0^IVwKpP9(dU9nbIKn6ogR)8IHZ
z)S?L{TGk+k)o9WQ^hXZ#h3GnBq0}_2>u+gDL(R2%m@Ft)nw<P~dPJLXwe5b=n74dm
zC2^OJx$FCV2d_}2XT1w;UazbQVj@C|P>L(FPjx1Ya=m%rv>nlx8LElKa@9q&H>KWX
z(O@YBT*UbSZLu!OD*_n|`wDStzgRVR9JDaT!%dsg7<YZa1l0fTE6-orfAGKf&T$@S
z)3vwz@JQZ>+{=(=$6SgU@swY=cS+w0#|$SYhi2(tf~ENSWQ_a^W1_Th@#Y+|`@rz3
zop<b1+x`!v6<sjB7x4u5#j1zl-9uWgM_D+G5yjFjs+V`c?*^pDwW4FPMz4c`&dT?6
zopCL-;+{TN?lN=l9Wph(B5K+pYL2IJol$vg$y$2WQwJQqW4@G}OHFeNBsA1{%E!(x
zU(Z}3^jYiiiSPRXz3<g*-0^8*H}AUeS*P^f<w;98$#)we-C-jYH^@9-^F567^_qR!
zc<1}Q#kb7ELhbCh%)|Ex>U&-qw<qm8r0IL=mk|LkkeNgB6YG!DbCdUc%mzIv^(zB+
zQf38$!o9y7XWsrFrw7y@j7rF1{o?cthU3twRQ<ctb9#93YBc_j(}TheN6f*mz%ie|
z0XLDxf!0n9aH4%1tEzH&I_6~hC6Cf-6VLLRey&I^mBZ%vnqj_71%(3i#`GwuQniI(
za=iH{03@ucfpY0mxzzaA>A7WDZ*}}WS8e5H6$Eg*yF5F&W83ci52q)R@Qv;1J^TLX
zCpy&{>j#c+lNmftKmOtLa30TBX#PL%^pw~kc7pmOF(lYwJrUv^G5Pj88~XemH!sxT
zI?`0l8SPn3;7~1|-G{j9=wF<kx+V^pd|Kj}FCsB`@RK6RdP$QaDH6d)++QE+rbUV~
z7%>r=j%Mg9V|V+KiJ<GR%G4~<JefG*hUBm^0V^P@iqOmD$?74J-|x6d;*&%Lvk3;v
zO9{kCvFmqb!a~X~TX)d}ix=55VSkVb)ChV>xrA2XD}+Rque3tY%b&}leh3|74g%`>
zFGm@KYMM}^*uKYGTGmjppD>Gkm5VwT&(cBDhuz%-Ac<*r;#gZFsa~-SA^OjriELdT
z<8={<aEX`i%|Q8K7|M|)YP;YL;%mG49T`!?vCls+@*?s?IrXEf7TFI#gK@L*Hh;L*
zkzpLo*a)$|QEyPQD#`?QF-?2Njd88XTtiTleqqgkSRBSj;R1waSNSRnn4J$-8!v5;
z{MM9U2OSkTrj)QrEg^{UAAX4Hx}9;w*dVd8)*|4aOM-y-Frk!)lIMY9k%XLq^fj$>
zksv~N@-uP7&W}oH1*B^IXlxSWO0ZQOZ?WO?t9B3Ri15@PtH^x7@q+3yB_%?4R%*EO
z$iU6t5bSWciPv+ysK{5q7^7>*D<Tmk083T665##%k3&!e)1R?k7ib_F0q=gm9jjWL
z@>xp@^waMjSCl3^5?>y#&LRCg-O}k;RJ7Z{jA|G3?HIw9s5|{&0!KI%=3~4gV;Qu=
zZvlkpY!;>hGOz{l0f9ueV1&c|dqd^OCGcB`4DnIC=bbq2_&PiEzNJk>oEpD%8xWfU
z4EwNpoJ5(T1x6npEh-KZ4Cc1+@FyfNP{m(oe=j0=Ad>}AgV~pP*K}Dv95?0w%cAbc
z^L8eexk;<a6BG#kNVX($j6D=)VMOj?nIdwmR_X$D0MY+O8q(4jQlXgz>A<AdALoY;
zUD$)LkU!KvVq+kp?jxT9UvbhiB*2+mXz5+=&XV=_gwf||$1072Ls~~ewH)=f;xh=L
zPT@cWt~n4Q5RvQvJ1lt6(iZT#_ltr$l6G0)+v18ain07yeN1YNy|R2}3`mfCEE8#%
z)lR5^JCKY%21MgL%7efmM@ixUGF_$;j+Bf;vA6<Ri7yS*%`o%M0c-*F_+(J!>5%AS
zjpyDGki2^B33~zvl}NYzzCPADW1P~l)u0PgCCG!;nfwI#5c+Lt+WHK;aLZk$>Qc5H
zcKd|V@eo#0{w6$-+Fz@sA4yzMGS2F98YVvY70nA8W4U`xMar@u!p=Vf6*9@f6w};8
zpPT#8r<T1$CIg%1z!Xv=9+N;H4#3)-3nwr^8_F2rch{*1BrY<!x27kvK!HjN0O50H
zypLHTY2sWu3$>gE&B9i-<3DjvWpeAu@FKk|7pH%VvBC&1whzzY0JJK?@Sszkb(vHt
zdkf!8lqLel2h%*h2duDyVR*f^6co%E8!4kpbd-QtKw^TJCMmgEB|7DGxLXU5(J4O^
zYYp%>GCbi7$69R`D!cux=5HkfFM5GuJUWh>=l%m^d5@)v&P>`tF2fLjx;7Z9kynRj
z-FR$Yr=mQdhp-LzF78ApPpUBJWxQ2Qe&J1Il14%qLb|2)T6`Y|b%*uBk>FFkewpi?
z<!{n8p;Z~6Ax>5GOB#6DR~I;tQb9WKRLr6<6caSVL{JhrjEwXFK?&*}sIt2}=p^Q#
z-|~wq1K@BZ!l50HOh2HO*lT4lQ6674e%gnOa%#9nyW;iw3gp0*Y)lNdV!z(2=Ej1|
z(kbA-Fn&G;pHHKS7O3l|l@2naR~NY!01{0mRw4GKl<PfKs?el^MrE{D8wA)x@Ou4d
zV@7Wv55|76iw?%PVb5um)0^xus?fqBbkT3+r_Vv83t#&L+1L|U+&n<<pQY2#DuB-%
z@T#5!GO*8NhwB>C#hWst=-=Arv?yX{GbltqLcQXHQYuJHyA~91`xz9C6ej`5RiYNe
z&B4}9bG#+-21q#TY@hGTkzgI&b4>?D%sf(LVv$XT#L6cbgQ4T;;Q>irQ>OuB(QBw}
z2IZV*Dh71$E!<g2asrAnfq82f=mD_h%RXxF<y+KzSi={d9oB;-w6~dUG}tVw<4?cD
zr`Qbt5cHy#6SO1%AAWO#@OA;oGMKjk(lUJ_!Z2fzWW7*cno2a4pnzoWE=+yoPUtLB
zRmsXq@PY%t2jetej%eZH*N=L-rjt-!P}&<#<T`w~Go4Rg>zk6?A*YY_`lQMY996uK
zN4GdrA}w&}bBl>`H&C3=c_sI)OmAVt4+uxFmh|238&Wt#8yKGvBDVEr?1pce9gS-E
zl(l^ivIZ*kLSQRl0rCFlWoJUJRqUPCTB06zQIaO@Yp8wrZ%2wLQ>gfyPpXG_gO>-A
zTjH@QW!o1U_c}{luT8O@_yLWbwv}lE{5pDR(UX81iVm%#3ODbsD1kqF-%yA0@(4}I
z)3}BtHL1NZAEiXI^EVsH279I6t`Qc%s7R`wWN?mVtW14~kA|*@R{w^9d$v;}O$F^K
z9zzWEo<a=e42lc8#cM<yN)j8i3)OqXA7^_*l8R*{G?Eu9hzHNX29P}6T-n7(a4>iB
zR_#jsh0o0L!}1AVc>Y0RJ$2N>jRAz2d_G|6#w7QaYvSl8+gNt-u<y&VL>@#f>ixwQ
z<Q@yxRCC8PkNGL#J0E<#TCT}hhO|<iGdrkE85)W1nO!wA?v4)<AIuO>!kd4{!C-{P
z<le;R7^Dwb6=4Q1Ori2c<ipOPCqDtO8I_N2G#l}9OpY?)DJYNe)eMbLPuO#>Yz#x}
zBSn&eB%i>bXRwsbvaS$3irktE@gf?xgt3wC!ce9-(dy-FZkib0FVomGhpz-wFAPz9
zS3pt##`|cWTuCA$j1M5O$60Dtc-xr8zN`ds3#vz!K~HrffNS=rjg4oRT!PIQMu-Fx
z>LBLIszmQ3Ox?r+1ANKk2Ud;*lWI!Z914WcM8Xuk?Xo-yD$*6+;4JjX6`Bp?=Nybc
z3=D!PRH;`}`P&epLUCYH5c^)6dI91lG=td`L*g-#IeAg!JV-Ep;HgaXTXF%b#&$Ls
z{=L}X`Pgco)*kEg0H!SoTg_gcP_V#{T$U0;F^YY0>LOk)G(0KzE*ViIgZ-!&U2*1w
zpa>AvDmnS>R9_wyO}`PhV;&jBAbS!jHRqbRC`Fqj^|Jjq7V9QojfvbU+0=$nE#IE#
zW`;@yb=VC?`+ZQ)BU)t>B<5lZA2iomCJv9kC;DZQRwGZ9oBD_>TEUErTW4Q9?Ssl~
zfyDpE-d#n-5w+ohZoC_9T!M7t8r)q%&;)k~1a}D#oW>gs7Tn!KV?hH1ch}&-9fF6z
z;s4J$GqdJmZszvf)J<Jft-W^Ds@nVep4X31sDR<8jnURnydIQ6_!>)FhoN}(w-`wR
zUr7!-m5N}|qzUUVYdq%qSWz&&q4XWzW8aRZyk<OTY%;x&uE~_JW`|VfS?-1BVTvMe
zjR|?0r0dtq#)unv5C*Vd_sGOXOO8sDzh;z9EV2-wZ|f)`kysCSL$B<!tI?Y4%p>Qr
zGwH~xU4KqttW;F4)gyc`bL(MhM-k0gY=n+(rHpH(q`FtlMQ=_EHz$z8wp@25=(STX
zd5?*MfS6I@?(9!e`bsc3@)U<8FusY}{Xk+l{_o`_Ul90U{f=Mm)+LzJ2A}WAN+_J+
zeTC&)5)0>W1~(bzu_bF!bnEv@`_f*^9owZY^8_<$p>uDr!Z=Eli+cid_Gu)@zcexh
zZ)LM{uL$SuM^^Nl`dgdNZ%f<IOV8WPN1B5$W9PJ(=(d>EcUSzTpH~t@(ljaxd7{XF
zq#4R)G4=OG{rie4!BC!P09CZx3Zj+cFkx1dw@IU>4Bw?pVni)5W%2r2ex9I&=gK1I
zcfc8`{LW`bl77Rg@k6-h?wcxRtS06&GnH)NqS!bEFV@UXN9IgBTA#SWNwW1c8Onqo
z)+uf!8RJlCn=MxP?6hifI-*#1oOS)+(76pun`uV9#O*8mLw`G_%o^LG-~(BkLs<)G
zh(xH_*m{M8h1f7bX>aLjf|;TxwJk%1R2+jTa)n+-3>AfCzQJHVW^bKs3a)&CRJw{~
zoR+5<i&KmBx%S}?W4n8AD7#GVHV&#q%5Iu#?$Ca0J!2^F@wvOott`Q=Tn4qgl_2yP
zd&Mo$wn|{X6Bp33djxn)$hfhW#$JD0vM!lyFMG@;t#-h0lM&rVnS&|kiDYj~do*Td
z4P`wnlVA&%I~oHWjb+>F&KgBLmCbw|F69ZGwPZ|0E^U6uu)ty9Al6a{JN|0SCe5Dt
zx&K44kQ{b;h2OHhOc!kAT|NT2%5cq2cI6m9n~fBgNv12agylrC{TPS;gtNF9<ofgI
zj-~KoR|<9IXRt-UyF63R*yp<*rYQCZIeUeZjk>YDy8MtYB;``rG%K%B!&DEy&sP>t
zJ4hdcDPGIj5^IePmB=(_Mz<uVL*-Do@JeC%xsFzwjL-XN(;5P0N1XfRRWgo?dM9&H
z%3G|xTM`_yU4|3a>~*l3eF4pKKNJ=U*fVf5q-CX(I|G3qilOx-x4_)+kX|}@R(x_&
z1_oP^7|h?&Jlm;a^!_S=)4ir)*NZ%NmXp81$kr@h9Y)|(k}<3eMa@vJma^HBd_2|v
z_qEbi18E~MIxJZzzF@I7eYxO}A~-(#fLewgz~Aw@s?KTdhuuS>vrLxr9WIxw1ycDo
z#WOYG7i1SF^=Z{%%rC=TVpI#~xLtLKoHo_h(qdf<9R?WYXHyiM(x|6rJko9g&LJz<
z$6np4(zYL$(k0#TrRAjjEa#yG=K<lP9%1<A9?#AL<Hx(<N7Bu&#Eqt;h@}0Nde}{~
z+U7!_M7{VBJ;!V6bo|j_xD*#Z`|7r8o6&;r>TI!3!qZ2aQE0R{j?~o9>?Y)RU&5vf
z7nM*HAtmKnu5f`IXd@E?V1Z#n(Q##hHl%u8orE(D^vR@|c>+WjCZ@*j*LqlSdI^k*
z6%CjOeX1}C<+?BSoK$gTy6Le=;qGosb$&GD*2*F)41Er<vleVJVoYi;?hagATurLM
zDsz+3Rr--AFfl~0+wl!WC{bC04Dlb?%>vwRy>fsSV)3;MFr)lG><)@Ne}?WfBe4kT
z>kciIuS(FrY)Gj!NNkxD*XG=9-Q1+lT%WCa!WiU)GL<w}m4xZ!{yz1H3+gGE(0+xk
z$*F$j`>kX{QGJ_pI6#4VZSqG*cZr1;ZlGE!lBFYS5u_tPr0+O3ti|{ZvzM;h3T9$8
zb-ZzH>V(O5F*je2h{r!flp-AmQ;_o=3Ny$jMUzjEwRe?>h3rdh{aP21LtW8ASfG62
zsin&ObWrP#Xy$9RahU8<7jKYZX<m@U_TZ=DSH{1thPd5emNy1LSsXsKwIe8g7D|J$
zCgK?R@@Yb-M#%7A@&Mois1ub$a#*$TQn2p6Q8IR$MkyC0_V^Gg&;*^m3=+Q_ewR!F
z$eelGy&nhnrJ%v$1>dPfHv9FgxV^7NnszOn20%*)DLhV@qb~<~Au+>$vOESEg&1JD
z$V4H@d{hoai3zqQl|vczl!bSZ`XMv<1)I=?;wQ`4zvw$)K{*#BH^W{_>l-$QCN9q#
zjq@gF6u~!XQlw(35L7{FFKJA^UP2c^Eh;c`JTkM<qztOFEV!E~*$TN<MwbAUY~KaY
z*!3wP*khtG01v%b>N?<A5SE1QG-nGVZ4UZ?jv>Y@Ln9O-C}bw3W&R4a+OaT1w>j*U
zysa>gau_1;LvuvnonZr~WL`)?a)?e87reANss|0UHzT-m6E)BrllunA3yHnA?2WN3
zOZ-;MZS$9Bp?Hjzc)Vxf1k#oS8sS8ymPAhBB*7P_M>zRyOY(c+uevQ?KM1G%AE)R4
zI6eQz>G}WT^t7G@q2s&HHdWKfgrIOj_v3lORL(avi}qoFSO0Z-qO<&8`CP5AcmPNP
zsQ$W8js3^z@%KL4|2;rM;|)>pygmv!M*pwV^OY+8`};NN!K<VDN<5zbIz4LN&`(9<
z+tEd$@;cEMqG4S?hOBs*Z@seMo?oLQHj)_P?WdiXZzvOb3Bn3EdWalDz;s6vey&1<
zmRSk?&lKt!_yfP#MY>*oK(c;{zY3#F9Hb>4#vfW{J)9b#iS;8GW>%HsR;1LAfe$fe
zCnt`)?(jSN$?Cc?nUC8z%hSs_XOuKHi%rC<h(`7Cd{ktpxo%ACdgTv~P@mu6xYRvm
z@}vx5<-`R2AM?RcsZ5ob7pEt?p+@f6Xdmzv1t;;v>G|hg#l=DODPNxd8ec<A+xV+?
zxqJs-z9yRE*Led+hQl%4gycUEDvQQXZH8e~DU0c4vvb3tb&uD5EK&X>%QlKKO~ZQW
z)tbu=jjNsoC?@}cl39hRfWaa`W+^I8bH=)>Mw?l|>4A@~wBsfdsJpp=i~5B~06(;p
z)n^!5%FQCZZ4lE3?}Il46G27If}1bu4in7sL-NOs82%>hQJR<~rp>@zd^DY4_8Tx+
z{19l9MmxTCW+~P(r)7pdP=Rqfa8U8*L<ps2VH(ntJ`<{*9keitHKQo~paese0Pb~p
zjghSG@7WNAGJlT&t05%=z*v$4rVi@Ho(Sy93D<<DDo<3FQPi4s&}abj`la?rgA$o%
zKO(E9&EpA8A_#?6C1#>(KA3LiB57@kd}zZEA{XuC=v<MLoRbpT^dXVIbfH;VwEpPU
zIxf6k{c3+xcGNgfTt;~_+vkfNPC<L8DaHD-yPw<5KN`H3u3)RhSV`*kU{L}2+~<iT
z{(Uo!pdkzpsvm|)QlN>A*gCok9<KRzAI%5h&*j<)y1`H4pQ6x|faxKDTci&(NM+|-
zdY9MhlKjpS6Rt+cETp5jfauUZ=YVGb8dCp!p8Ew}F#gr(vztY=h_;#N_Ta)zlOVti
z8|FcsxB*mbCf`w?l)&ND&np2V0c^M|?lu586pOiAU%?T=elhoIHn~^C7XBV~>%Fvs
zh+2Q<KoPAi0=yYnYz{e1O#lo-ZW4eD&a+>~!X<23eA5jdj-2#1l~$Rf$Cd}gii43+
zZ1(fDyz%2)tF*|5dg4{g95KDMG8QF>q=cXF<L#x1sGRG|G>nhlIAd@3(2^^X$jD%*
z!HLZ1SoDW#&nF`#wSd|5Lo~z&1j+eDm}Kfg@?pt{Bn!17X8k3llB{#TTnjkKdk<ON
zHG))y{NIThER=@31Zmx<QG}o6l%WsmX+v5is;248`X9@aI*oSu%E<{e9)^+$r7iPx
z^i`b$2pQ6dk{CIE4rz)LW*ul*E1<J5%KBJjzHA4I9O%D~Ga{5-S^@eT&Qkk65$4f&
zzY8z<L}&gE8i}O6FT+inNw|xi&U7&5Tq{fYTa6y_U)RU$Kd#R?;0jQT3PFwl0zu>q
z9As=lFRl+AJ1;$th>(yF8NULhn8yDyeuUqONlO1u;|Hot`@ex7-~Vsm$6FcV^8)-R
zz7RjUDu(|H_|enXQ!#c{G4?hxF@0fv44s?}oO}$t173_DXD5Rf=Ev*h=xtzQW8>`f
z+1cCsvy=1Z&z?}|3!3xw|H6LQ|AYOc{BP{11Zs@nwol;kD*u1EJ_b%P`VI;DUeN~L
zDJtIOFRqV=L!vV*zz62+4f7QUX%>0$!E!bvUtAwpswTYNIryt*NQ`$xihp9dGrY(-
z3gMhs?)<gwb5yBMQn62JT|i#DTJo@N;s4Zq23*RP{93krdXK*Rm-C5HhQ=7vrYl2J
zjUlQ3b$t*{&?FCy7;oot<IlkkiES`wI?Nyj<{T61^EKExCEPnR(Z3v~QWRv+60BSw
zWzd>rP!i=_9`(5}(fbAUX-amkOZ9Hg^Xm_X4kfDhr@vS}1|xaS!)1O;<<861FP4w*
zR-?~FPe4ROL`+n2OkzxQQd)9U^b6;cmKc+kmKL90l$w_oQ`nrASCm%T@U^bFAU&oa
zJ-IeL1`$(U@<RLM$269vmX(#2R3ggjTM?Bdh-ySjeR)$;Q%rh)Ol5ye-fYzOrLQ&p
zY4yV|v`^d%?el%&#qx>i*-h!)Nguh$oW3aSS!nMWXzX8Tp8i!b{QnSrM*buEw9W3+
zE#I{KzMsg5nW|6juPGS*UO3R&G}~T0`@LbSJ@!{m=0H#T3+l7jUpG75c{K3#_fYZX
zc;n%8`Oa+X#dzV(T=DHM#KYG2fq{YH(b=)-v61PyxsjpS@!7fQk@@-g(WTvi{fDuO
z=jDyvh5w>HdrRYc8^8YU4czR{KVOVI-7f9z?d=@@`M*)0qsxEy+fPsbUY-QtGXMif
zsZg8O9Reg|H5#nV?}-4@DP<`j3i^VxKlU{bx^7lz(*yg-O2;(@k_hc%Ug@F~kEC*8
zka3aMm&htp;MZt;A1;|dqOsGfBf2b|DpW{fH6Cs#pD9%<RLWLrtQgULdR(nH09Wb+
zAJ#eTU|yK$cyNnap2&G-NqW3ts+gllt?F%gk|67Co2rpk{yl0%C3d$a)D%F-_Me89
z-vjY<$~oBF4mueYpd(`DMH<VXF!S&x19KPlD6fCeCzZ()gAfGzx0}ku+LK?_-1Tc?
zZQsw<yF##N-c24Ews{S>QIGmuDeq}r<fPb$*{`qFX!oR43-O<xtwcsY)4c!De*b5`
z?-j(aqrx&!9K+M;wT`=g<upS-qgdwWn<tdx((Dh&1fE|+4y)uetiQ)<>iU4?nKwg;
zbZpFImttoU3~w9U)onw_r6&Dyr6Up}HFhx6JyX$c*FC>Mt$&FNLoKA3&WIVe!o+U&
ze}9oeSJc7IFt*5YBev87M<(YlCM2nqFUBJYug&B*r(oZh!Zuy6gB$^@v!D<gknL`|
zO-cD~26~5}@f+;$dobvjW5`H`9=nl2Tg_y)R8!;i6;jCUv7&a4oa&V{lP)HGUY5Eg
zMyedmcG;`UG^>h(lB|G~oopiQTkSW<DZ;d6C`kQzdI$&k1SC<9XU~bC%46oq*ve)R
zDQpDuV8J&`nZwCkl<K;?px?c22XBJ56icdc6Tl-?VGLg74Q_Eo?+Po{<O^#s{lU>9
zW)g>!7*4i>@k)n-QKpqx{u#v0UvaGLO7C_n&we~U&8F94RUb~&;o<LYmh0ndLA);B
zgueDFA#Tidlaq<bY$f`~Qqy-s?Vw(dp)E$%kJ}ed=X5*E8gEIDw@s0V6}V6<)6Z}B
zT9*E?GM<6ygTp?6Q|D^Ol={~GYD$60-`%Y&pRyu}z8}KnMI}RD(Z|Tm!Z~nbFuONL
zIkDod<4oJY?*~rkD(DNt1zcxqeB#iVLPx81Nd@)Aepk>8d0ucsSi91jE-8^Z-EG33
z7s*#~{wb4nV;?w7`mGUr9y`X9%I$of-4d{Zqg=-{F5KGwXwm`I%)WNI9k$F!GnJvQ
z`|ckdQ{*?Q{d#_<$rAT!&8R<Za;X{*m3DZe9K{jAZ(y;q9{HB@-_`7`&Y^L>F-=1I
z_um0aj@uOO{J&9g>|V7{uY0*!j}Xc^^cRO%W`<aCvU|!w@V2wh(8qG-%ub-)tibE0
zvur%6-^%b+bT{5mFAN_Pp<jk%{9u$>Qy6ansnR)e_o4TB2m~9d6`t}n7h1$Cu0LUV
zw@|V`C8rZg{<e@+FVELT4YK=c30srD@djtxpHNyo=y}#vHaH&g_Kk(Y6FP+T61weW
zp-j8jDhMDu<btA?ZQ_vbGjAZpafK>>b=>&+ot0sVHiR&rVqvgf;3vJPS*Y<rgD%g{
zyV|Jc$loR(%cOp;oIx_{$Ea3GItht2!YtULv5Zp{$RhhfIsJ@euXMV&1?c&~+aJ%-
zw+E{pU4>1=6oRe>6K?&cW6M;ES=EKxq~AGl;m~b%Q5O^uu7xLWRVGRAHz<Uo61W4A
z3glFJJK&UO$x6q?QhIW7j~9E;r^13RmnC9j61gOt<Xn1>I@JgwU?K}*mvumK+|6e)
z8COwNdcPSg_h263wQb%(;jKzltQrr(w~|w_c&4<Anx>&@x8Mu}O-8yi=3ywt^6io0
z3sRwG`c@`8W-%)V{<sX}9NKgp9h!=JAx!%mDA}=Sl}ViHynwGp$)AG@meLy_!W2ak
z(4X%uY2PSOTt~dQEh{$DaWnb#i9jywJDW`Rr=%yB;w9|xL<+9`GMd;5tx`<-p&@Rz
z6LV`Bk>8@|CoeH`LzWw5<^z5tm-LJuDKxc`d4EX}L-&&vJW1?k!b2OKy6hoD>u&wy
ze#9koNATs3Z|8ne+|-ir;3}PL4~3lbu)QOK8+<p=iEQ6f%E+>?#N(L>rs4@#3R4Vt
z6ioYW!pBJ{tU({NG&#NXwahpM|ALHm<m-##YfnNx<QN~hxb|@Kz1{5aT)=Pw!AM_|
z+_x`R_lbq^o~Y7_YVOnca6xkV4gK^|Wl$GL=QsLw)dl;$o9>;#JDzyaH3YK>i7304
z<2UOh<Ql&{<qtzZ=DdKuBo{n4F;*TD$KPR&)~f>sA=ryG){d3m!O2zH?zDC0zR^LU
zb*mASc=>u&^v-{Qzt%nO)C-nvDcIcfBlToVZ@p~&bw{^In063PT(k2=EG)Q3d~Vw~
zwcd(@CX}**X&XE6B%)D%igGV#tNkwk(XcV&d}GJ7>Oq1bN_)OtpW%u>UKdHCzS#9K
zwV@{>Z9v5;wF|%IJvA_f9OL&_&;I8oyuQpqAIe(f&w|6@y?<7>1vIR@m31*29VOW`
z6opbrrF3?UY}R>qJi-a$E0I5?GpQaZ<)TJmEG;Y9A1h!-2rByaR7;<zn2JlX3_f6C
z=YFN!tZ(=xatk~mz<03Qlb1`1v?4a!KQ{YwxHq*kr&P$Hdi+t7q9tFsUg74i?83t$
zFVW^!kaYU&{=>riGEWB_5k!<p_3IGgZVQ=;!uBwuw8@Re>!^yXg+Gz|x<=>%vaRhS
z#)3<WcjLEdOl)9P(a@O>EBp1*IEEgQq5kttU&`rzvW3gvEh9s3WvEB&L*wIXCg-^e
zeyxsBZo2gnvAD{{5gGVrK5nx;?^Xyn8@(-1T!NxM->y})zSj`+-CXSVmWxwJ^EH=S
zLR`PLb{vn7e@fl>amo)ntrSMjp57;LW#TZ7yR0x=?Q>trm{>PwEn5&an_7D{^HMP%
z+GDZYbnGG$MD2c2B7Q*kjec72$!r7PI|X*^9m<BQ1pn~w43=BL{`ZplJt1lowam=|
z@9Tw*vGF}e8jI0SYaQ=Gg~wwp=|}cBCPK>Q>)h~sBdRGGpA){F6XoA8{G+~`Z_CM2
z3Z~u0=(;vuCEh(X{v3h#utGz#Esoi_8i0MaKWhFZCo8ayUC=0g$;|IG!m}vrMnsm`
zBw#|Mllkbw#J|%@{HRX)r{~S3PrD&|0f$sIxPK;;SGIoqIS%vV-8U?{@ARRBvIn0B
z+WQBjf64jn!laL0AT8`>{O?8u&y3t}&mVgcHl^w1BZzNA8q|#8Nns7HBZ7&|1!#r)
z*=Q^5+=9#1-9UYwusLfqSAmD`D!g?DF`w;^bw1mbN}^9oa9J@3BJBG^A#D3FiMtSm
zLeVW<@bZo)@m+8$#^*JJnJKS=$!9w+0nr6rh^zv*-il86@~wT3B)W^p1e1^ATOTZL
zxtzCpdJSCYWQIo=p$?1T*|c1?i!y}7_(`dLNX)D(H*y7<jzbJC<pdGM^WwrXuS4AF
zDtUbQ_JcIH+&e!@h(2EluWbcS?gc0_Id@ovzWyY2Maxm?=D$|&??e_=P{vrG5ys*r
zLGaS6C=jCHL4ueB(Yr`jSV4fP;PQOjZ#L}0H%6<niZ=vUhz(O3?$^yoa2=aqGBT!E
zFNxtxq?B4h90DIwg~;gzu>Re9tP&ATUWZ_$sKUG0jYYcCs{m3nmh#0wGGvEV6z*Zo
zXn`B55(R}4Ms+_OvVO0aD6iM=!(#nBDW(^_o|!@@6u{_Rknh@Gw0Z58NaL`V;)#%5
zNG?L>;c?hdh!Gj@IyY6<!n@MnZ_An7b($lX|LB5TRfwf6+<5dTlX&tHoQQ<Ox#6D|
zKYPoe3$v07kUUSt;<hA-*+OYQeQ^_VFhRi3k!bV0lGX}%kl~R%pG1ChIpCKP1L&mu
z3yH_-q3&k*m{v0Uki^ZTNPv!?oOjd@CV7%(2dp8%05YDLODeG-I2G9!ap6>VVe)Ys
z8yqu`mp+*OWz_EEV&_5hFRAJc%Hn#`+>@XbKr$&lQPfbHf-Bw1HB$fd>*hre1wBzu
zVQLFn^mV-~FTO{FEr8n;6s3>i;tftNPxe^KsJYLmCC{uA&TP=nZ1T=*PS0#@$!uTB
z{BfVzMV|FjIICAbtKU0oFg<IyC2MpkYy3WIl017_ID1w<d)_;HF+F>^C3|Hld+k1Z
zgFI*JSvY4~KWEoFXFomXuqEesDd+S)=bSwEQaJZYKljG_1?<UvXvuwC%6+=e1yJN6
zi{zmi<e~fI0W<P2Tl27&^Kc*Xz!doeBKbrH`6NF1WEuGst@)J8`P2{j5Q+j?kpg;y
z0!E(#=8OW?)&lnBf+}tl3Kx737>zxin%AI^kO0Zo6p6f|P%ML!5r9I%gCvtdCM}Xf
z0LJcWE>dYNDn3V6+QfRw!$Ffqe*)u@s-x>>P#Z)Q6S`qPK|qrEfa49k7%6R$4ZMG~
z=vxVZ5iUG30DjvBUM!f<lmc{L065>k`y>U$oW%7zB=w;v+l)lNCc|@gAsVSIMtwFb
zGcmxA%b-qpC^mZ_#HlU)D55PBPwcNmnW|KVgH-Ya!1XjJzq>5YW`&j=l2#g&**##Y
z4i|01@Ivu%NzVyQAIgxq%j1X3_PQ(akxSC;2y;cM)X`A0SgEU9!JsZ|eQrF-2ZEm&
zoFf#_IXmKo<?L{!3aorUULM|rPo)4-$%+WLO9X#UiTWUldghQY_YkNRR`mqI7;Y^s
z&j919mHfaYJXvO0ilTlNAx5gqK8gZ&#1rpO5E9j5QmKK_{(|vDDe;x5|Je~L!!U`}
z^vq0wzqwy_ZBTqgiY3$$nOlf$v%2>|b@RdqG^CP$=jiA`XyNe)ydboIXHzgH7;UPx
z@^2IvKOR&C#;TFR6dJB?6~PC^qpjXxmZ@Q&A-z<Vf!~80QStz0lWapg^#m97(xMIO
zBXwx_NNKf5sM1LJwMAu8jTrbyxf{sf?k4IyFdGE3139Kltq3SxM+nAjttF`K!l0B!
za!;z~QwD<|DEw+Dv>RYB7fR%-Lc)CH{Bz828<_sJ^`J>)oFHU(`|p%eVBxlUAOhLi
z{=3%^_><vxgv)ml1hSd|m=J&##s+5X!tCb4o!`K8`b$8#0Wux|Stx^9xY}?w5t4wK
z5{h~Q!+ODAbwi>6a2}emasxp^gEUr5ab6P!H%h@PWd8HkhG(oFC_!k|wFFannB7?T
zQ@$NF8yNA?Omq+=UkV^Z3i(DEnY^n?-=zZ)-+>>5CY{NSkm_JoM>YUsR-R)P$NxZc
zt!6$4VUL34V3-AlU_ezX>apI1Xy>(W=Y1u3{-|i#5DWsKp(h~obN&1TYC>^E*`NU8
zIDEr%t?t~wOWvpzHv~6HReqns8#iqrc11lpr&<Gl&sF+{YF7NE6-74Y)!GI+E~2M-
zvquUWpWm+s1%fW-@ai7`r}tNxa25Dy8PEmbUYo2%pZcbIj=S!PLwpPl#H>Ju7WZTT
zzQfu>gK*URzyuKN<{%uKQLz6b)fE7U>{<#k8}NEoA-jqPMzGfb^8uERR2N_jEa`qL
z%0av-lqXX>R}rvlRz-d7V2E@dW&U6@0xzno9%R_g69d-ZBD3}Zv$BB~mTT<A`X<l&
z(Yt#$f^fEcz&ZwaVikZ^DYES0p&LjI&c;Bq`XFw?Ncm$Ax+@wKi@G-k{Ns_Ts~s#o
z*}D$KX+H*sJdQ?E^tg!uqV1}%5oKO>;B{>7Efw&*1NV|2_}Ak=w*y#1sTideWtfXB
zhcc7hVZ=A84@G?h#bsnd6oAHty1-6iSXJUYS*#F^&0EKs#8q~CI2oga9g4s^kivBk
zBRh5ggT?6x|J9M;;D0^@Fk}<|&BHx?mLmH%IkijC4@#&B7a`*n$K3{u>$^_RWPA&S
z;_aE@dil)|c2A~@V3G9T^okB`AYQ7FdY~PwdP;RDP}FF4yhE<3KQ2fuQD9xuSEd}Z
zPf}wTQ!_l-5NXF(Oda6N)=^YMg^4QJg%m-|;}B88La`qn;mHt(c+WQnuueu5Fn<!8
z3WNih{R>%af&#IEu$u7k_{5ihW@RJC^ZFNc$m$EOhfDwBAu|3A=u?2`!x<pYqN5tP
z#gzNXWgOjX$tQa$RC)=BG%b;h``Z+k-*{N)1f0`>mnJ?n2OFmvo5Sp$Yv-8xfwLlz
zU4g*iu8##biIb&Kt%T(NLVre-=_$=kh>VNrPhxeHo@Gr&jDg?9_LPYO5Lv`mFTLX<
zXsQl)1CMK~72lp<IO@ts16jmlwQJNJb0M49^{<e~#AiYH>rY(k*Z%AGRQRUL*y9fy
zaVlUV@C=s&c-Oy1{G^8%8)->=1jV&9_hBPc4g98Sy~lqDHEyur5N~Y~gD)C&{1|VN
z6>K3ww%CQiXOE0j^ZTz67$cMTA|4};4Rf#(XEb|})dc)eZF&o^<|t0K0{))oixq;v
z(XA;N=h|Yx#UHd=I28Yu8MWQO0XBxUqln|Htqs<{LT3=i+x1^N7_HC7t_O85a-ZUn
zJS|13HG{Zz>axI<&mHpx%1BtJcwbz0ZXj48NI1F5V9Nj`Cx0C5EI<<%*@HL$7hLx*
zeiIde`ml_r5L54)afq3)Z)O6Hks$l>w0fy}h-!w6R9)ggfj<$ufyRwK_zE}d*BYL5
zUFGT^M$l1i$5CF}A<pJu^xA&?Y5NAG7%vBNyW^)wEZBDZ(CcZd;c@RctH$;eugL^#
zeR4p6SYGQI!RcB*Xs;F*pI?b<?=e2zdpFUjwE5J9r_T)%6(?IW*#IL|*}gu;OhECq
z+x<cbDmdK9%qDhrT0FomiOVa_#>T+N2UMOESBm3hWKBL)tc$DS`TBv|PtKT5Haw!h
zjkRamB4iuSPA@YS2hH_dR~(GFKJ=yroEos;Yli_9JwfmOm0JV8SjAgA+0@@WdrNcb
zZL)f`u@J4gf!RH2obxi_&oInRG;_hQ)lE||vMVRB<r-@4zb!tzb0N{okL|~5c&8|v
z*II#p2H9?W#^<eKYw@|yJn)7qPbSt++dpN4iGR)b1cDFNhC@2R?szw!bNfS~cMbZJ
z`D;T3M|;HUlY1F}2i98@z|Q-LtN1LiYt^E#D&EG!mE?I<@6mnP7jVJE+4H*vf)Cp?
zKfak7;0eD6YsM2-;g(#e{lyHrNIo0Rl*HL!#qIbuu8#nAcAk7W#yb!PU$*`pbDTzV
zz4v}L0o&%CqUNJ)L>>OkCiap7x2-=S<Nrg+1xp6*s`@=GIhWvHl;;^gZoI!3$tDKk
z{a(cbqoCpvEdp{ng;6mm|188O%D_dg?&~9@q3Pj&*rl|Xr#?tVqfYS^c?JCjKxo$0
zjXr7Q1$)vMvR=)pWsU@q{fqo<1BQ+xiSQ#|1Ksk1Lj;3xH?-Xjq@d)2TSmL@4*<C!
z5Kr=zJ7l3yF;}3`I?+@oPo}h$o#K*B(ZytEyx4Hz)VSUI`gAAylf_CgNJ{l;07z@_
z4ZiM4e89QV7oN~B;K#nO*N&;|8$T=JQZ!qfD~dJC;%%!r;7(qGd!n{EIBa6(eEs}(
z?1;k#Q`gYnpmEEn5Bak>`l0DZAy3g%+Tvy%uO7h>ya#hJE>+pL@6*-iSHTmS7#Mp~
zP5+2)SCTC!-f_0`wO_X6;&2*MiC%P%gDM_S+WCYgpLKrQma`bW8Z2E;i5kw0ps=^$
z3)8SG%iV_=)OH62*w}Q<Ki<E~f0hzsmd3*AJ<Pk0B9u>PsW`M|%%j#jV_L58#jFZe
zLv`-!Iqv~Ue|KrE6^#l$K2o4h(sEN|%yfv!(KbnNQ(`eTV@Ug|AXCIdb5`hzSkQZA
zBf6E+y4l<^>@`_A2YEamq3NTAkB*MYeX0@2Rf4qm91__Gv;h3a`Py_eomrkintrTZ
zAhWAz`offHTRt4}D<#!KE6THSw3B+Xf~S<9T5;cjsyyQLZri8j3CzjS!ni@pDk_|f
zc9523_9M3`<J^#>id}Tp$=u^b_u+aR*ThL0P1lcQDnV*=*DSj-+Qc$p;T$*p=Ca#I
z=$XeKXXPJwIs`bK!}{L64#&MFmSy^%uFu?&YU1TwYLVCe#^r)gU?0BzUshwenu=pK
zU9+qry&36n<Bw$<;kY-fW^<1RGnHm<36r%Ae(@)+hBICy8UcKbnO92PA)qywBW0vq
zo&>*c9-8FU8RReH*CTQ4Hzovg<VX^VG7iQv1~n(NxI+22Iy-aw&q-v}1HzUx)Om~<
z%2$)!R&)+!_NlY<_>2aI(N|JmZCN#Hva~%6zNz<Vdz(5{{;@qRPojn&B^XEj<p?Zk
zy#0^s(>^pYslMkrNEf)0?YF0Ry<*Ttcl*1{1e?z>D@}H(SZTFNujc6ZXhl6wVmHM(
zY>hX4<IaYvDOV2jYve)ZU&cC_1J4Cs;a5xn*N|6ZKPZ`hV;uI;*nH5vEnImot}~|>
zZQpkMJvOXk;HNjlAv?UvgJm@k>JVVpf3tmZw<gJ(MF$%BedY6oXimj`RM_pA)eh<m
zDNB#&jK9LVo3%9ZI;29vDeF1`Z3lkBr*b?FYV5OA3wiaD_?$MnNATLBoH|vO=5BVO
z4av{JYQ%T;c5yyul)wK|UH%-V<etnjz=cJd`|FWGYSUhV1<he?INL)PvSfBBbjh3=
zQ<Je4)h#-5{E$l4eX(~dC@$)zd>F$u82>LS0xHYCg`cEHTF@~WAX-TAR-QmSuM8By
zDb^?VkPr_E==sd;hcybTqnf$1Ff@@i#ryWQGaOaswJl{=@GdFY*ZlYK?kwBtE_3m|
zMRXKpi#@>0k9}?I@fHFaT@3#chEzS>zC2TGYqH*xaC)kx)E6-%`Q7#0UVn*YS~0>Y
zT+9$oQIqSegW{a<CbG0{r)XinB1UQ+O}Yc)gf1<RA)YU!mPcJJ3q{vg8<-K!tca-5
zkESH%LkZW_4%FY^Z$ww`-+8st3ZE)L`72w#*cV*HOKe&_IO&Nx=D_K1Y(oC%-S8Pp
zBhoieW8OD+V|vM7Wmh%N<l=%7ioL@U2%^wM8Ccbg`9h5n#Rg?1S=FPaS&_QRtbXhx
z#o}5x<hRWl2@}^%rzCC{b6;D}DPc|}{p2maQMBfW_0cL?L(6zQ6n2h!C@3d`NFCV5
zlOn{_CJbjupSs!+hSq7hCni}SknKNbg(K_4$Wq<e9EipA#`C9C=8A_gp!`$lV;|?M
z(r@1)u}#wKvcnFs(PlHOJkYs1)_m)STB04qOZ7a0U;d5vXT@UCaF<jaQ|+AJ?wdY=
zo>B+*de|I|;@e--KR!Z9w)G;+ZX0njmrv@LL?i9=j|}{~1u7-PIjrl`wKmXon~iYx
z0S+m&xndd$kH4(a%6u9FeG~(Mjxhq-%!~Vp>@})Jzdsldy@SIbm^ol{MR|o+9WS+Q
zd~Z0d%>QN$Me#;2tLz0(G6_F!=_b6#=ky*Mktt?rifuzn7aE5X3Qt=)V^DVmWZ`q|
zV8*pzD}Iw{>Pfr3>Y=>fIsZMau4XYsSeS!T+eRYy1^4qEg|*y=aKWsPj{%Ep41>YU
zgSrxl+G*dJW)V_ryt-kNi~TN8E;%FY-((@rcfx&CPD$BD-|8stA)%K;?#6D}OVdse
zTs9-mrDo&Q(P8)bV&YUfm6aGYP1qm>rWdP7Dk@mEh~MXoH5X+&BQ6o5y+qXbk(PI#
z`;MOM)dpuK(VnoqR@c|!<2|W1B2;v~me)%Y$4{0!Nv8LqCJb;_(=^!0%GcL@Vib|e
zCpEnOj-2}_jm5h=03&V#2><3)TpQsBI6H8HGKl|^KGk6d(e+RdqvuuuWm}}0_pr%u
z-J6r7Lux^?_QScfyia2*=AxO9N%_Twa)0S>Fy%QCV(#1alf;rK{R!Q%dW0tqqs2Xn
zS6@0jmg{mKc3lOvHqmG$R()?Ku*~-S^(Wuk$Fb9-hULhLL&W>MMQh}fzs@C3MlGP9
z3UbC1{*6{=ip}U73`@tW!$};Wz_IEu$v4|Qy@vzWw8tL@jCNy0KOd8@#h*B6L(}X$
zF=v{nqGfxnmS+{aSLH`D?0w%6F%3@g3YZ4ZZckw)@_({vL?#<#=sx$nHTR9{6Dg%w
zK%I(=6%)VVP<8~IZQd!?)?62vi*0ZwH=^EKI0iSfAGC%lu)Mm2Cv87!WI+i!L0dm!
zH`#e^KZ^7R1-sr?iv&lJRvHt;qv2KkdiVRL^<c0+L4Wo5GX1Qz>wR6GO?1)_ueJYC
zpq^3oD4r%sk75N=jLgCT>Iq8MbDcm?gLhGqzFBLa(pfI9D`-zcdr%T&*Sk$P-%`XP
zr`qBt`tq?h=WVG*1N*C{m-HH??=NOg-4qJRzuf`<DPXDDHHbh?@%;}-bKT`}5Z;>|
zwoezz1Gi<bCfpJEOz+Kqv`S@OEyq1+@*!i3-SV=1>k1aj6AddPYS3)XRE$L96C&d2
zl5}HT)fZpDlE%MkfhqBC|7n<b1;2%3IA>I3F5{9Z{pffFPzj<s!;%=F0EY2)qNR7Q
z);1&!*6#Q4K->$%ArX6`Ky^*H7S`8mWYL>8-jk4@*yNdA-jazB(hjWFARE?3!?uG(
z&MY7jiRRBzo1bqCB>N5Gp3`6=*=gOd=!^rIZni5#h^h2rbob1w%pHBOuasoiIX&IB
zOfsM=x~*&ih|zu|f#bsX?Y^fN+$+2NBX6;@G>zB?hLY!%g9^eYt72b=<Q@)|HPrTg
zCli%Kl?#rSds*_(_3K;6jAnyiJ4}ImC*|Tcf(}eWNZen;YsD4fyU8hG9|wW)ny`Oe
zO&x!rrbPX)<=96$pfTSYWji>AD9ET5#1$oCj~WHZd*ksE2JR=*o*|=xz$hE;XAcFc
z<YO>|0EOv5;hQ{x&GK>afJ-y7^ZJ3LJNeyV3Rse4N@29pMTERdB->!>U14w8RC*TK
zE2B`j?G=W}sO+=27Mv3Tiii;m1f!;!23!8Ec&6(GSmgi9!w{V86tE-KZYT>sA4~!a
z4f{q4ges;Ap|GhCatMPgM&Tl$gvnQ^IV*VbQhA3`nQ^F?S;y4mc8a;aLtn6mbVA=$
zR4L_F@)J*@E&Sx;PDI~RgT>nc<-rUbnsDkO3>h^bty(w&#KNd7Z|#EH4Z*gCM{<uy
z2Mdif(8C)YlxeEo8X+P$pm2s}?m*_B?R3~a0MxMNVD|2qYC_<vw738-bdqKkE-sY-
zhu35EyyHXz$Am8w5c>2hAlG1`Gi1O30&?yuK?0-v1V<#%!9yuC56R&SQs}gr@S!a5
zNUzHCm`W9_NbZL(rcYJ`kRDEJsvMh-CPXwCw66*~82*Mm^3#;a`sGUMFE>#XY&aIa
z_>KxSMA?qP4MjM}MGR&E{RaU#FpnXr!MY)!0AA_uwa8js6z5kM7s-%IdeEOL)xf+6
zEgQLD7(i{1AP_9u;?;vJ(ykA|Cb&ouyh6XDgmFV+GP_<OF{q(X0a3Np(5ZlbDS?l(
z?*qC^Q12!@@&&*RN@S|6eh1ZFaD}+V2_)5s#$nQYdgbB}I8AM-ml~UYLdakd)-GkC
zI|O588hy7}nUf9<8B2v~N6?CEI7NmU4v~7RVGIwEcJ)M3PO^J&MQ|3!#JXfZn~bFT
z!y|lanF4|G$4Qk(SOb%&su<*S9*_uL96mQcrNsSdi8)}}D_A6Dp>J2U54McvWrTpg
zrhmc=ALV$fFKZhZ8A^rGlMG@%X)Zp8pVI*;i!rGBs;RFT-_~}V(`zV{vm?FH@;|`H
zr|cDBmrE4u&C`6F*c{<InX1xTjKr_v;H~}kWX>;PZYE^LR}I75ajvaPOF&gC%stNC
zdk(s+p4i-f9X#)+KW~){F7qLLSz>}i=Kb&Hzocoy)5gdg7t(!urlK&k7h$FGF#0)C
zhqNfgLYy>d##9A>F-$YDIXre>tHotBr2r#vX(33BFq?3w8d)#M5%?Tj+}&w`z39N=
zuu)!2hVsS{=u@kB77S!t)cO!RQfu%txq3#Tj_p<?lB#*ZyqX&G69|(mJd{c$T!=~S
zZZUjOFOPXCs{kXpIQj~h*uwVin;Ia+j>UQ~CP9_C2W2{vYXYfOH+F6z#EU-M3y#_x
zmUXFQhZxuMH%RRQ3S~%@j5ZTd!qQY1f1&CmN>%-!`(@5=m<0}zm`nA7|7vRvi;Ruf
z=Idy6Eca3vlHLS%jFta5i5~`0);g32bQ#9kM6G_(9UU_Yn?%kF4wDd~BN`M5V-D7X
zqlBpe)J;|L)Pfo`B3$7wr`p+@N88l^?}6xU3K;fMXg*Z%XX43_A0wy>sF-NLu+1>w
zymsY6tT9#AY77FO5E!OM7GdLpwo#3R8NcSKfkxU~&fJxUQXQnSANp=1l%lH*xDmQ`
zjS1Qa#k<DjgoW)Sz}{~xmU1C!)vgyyA*~r>a!jJ_c!Zr&0WlX*&b5K;rf9~s;d)YN
z%Y7~BF9a&ty4pVK)K@GZ_`@at`kUTJRB)IU49EZp!({}rLCiYTf_2nP^fpj})nM$C
z>!r*=SSiuKGNinX70*kf$!fEpJlK1^btE-25{b297>pdUuC@`1LEVG9hD@4+#k~8C
z9r8hIKjij0id`>En>h??2S~5;k+B4ef^PlYWau-gLL$%Wbv{oJn@bo9Bb*pep$9>O
zQp137<aWc~yiVpVi(9XsKEi>&-|1~JdV&Zhjoz48$kz-@I$9{0U}h?IDAZUe|FBRQ
zw@_WPcqd=+_S8b5zpfn3QscFyri7)|J4<b+h4&_w=_9bxvSd;ZOM@Cq!ylGL<Cexv
zGse_Sk<t@LrpQ0Zc1&JdnM+t%ytA@&>d-N<(wBkQ_vZa5lDDq0vj1V_FmC0z8*R0=
z+Z*{d-hWk(3&U4K*IB~a{hhUkiM8RWf#)tH6z3N~fVEGJweJsWKgK4A3!3!!o_8eR
z{bU%aW`vEYNuY#H=sTM*6Ps`+n}`4#c%031WR6W#jZO3qo0xH%*fpEDQ=2bOHu1Q&
z3DmZUuWgegY?I&Fel@X8NnrqbMWN*>A;S++PV><64wU*2GS+N!tgLytLO>gERxT8l
z^Zwj`H^_IknESSQc>vzDV1^)A?!2wR!$F=zB3hbVSUhrpl^vOfUD<A4l>kb`&0%uN
zVNEzZR{$k1EjX7Epett&<vL1ov9Hrfgs2@B${ZC)B(@8L6f?pbOYAEej_TfJb>cew
zlsL*gwGSh6$f`X;h9BkT9Q82*d;0A=1XzE_C-w#$7ydZLA3er-aF~)f7}q(P^aKr+
zIPlgU&oDYptQ{LDo&4ZB34$HZc#1zSjYC$}921-D;wDd8pALqorCZQX+i{QR?@ubw
z?dYZLD;S+NQd)LSAqO?5?l~}s3jwCrK~S1)upR)&eAf8d`6}FgRKO_=4!{JyC?>Gq
zHPL8ZXJ<Ojd3u1y8_a(alb26NEK+BeYiDgR*ex#dIkht~Dg2%q{t$k4hK>o;JEzle
zXk~^0VP_DyOIEXO7z6->o%e(vV1GHo{}6??af%~(fu!J)1pyH6ouh;S_vBqG&|UEZ
zF_9tX$PnjXurs*P1)KT|ofLQ|0YX`KAuYwaHF1TTUR>;+p1r;-Rk*~-1u&O7|IKlE
zdUByj#lm~O0DpFCQ*eD|D7{Q-zTo_P&KCh=r*Q^KeWL&70vvE_>2kqIz2Hmz6s89w
z_yQB80k8(TFuXuI5$6mGr)F%heyc<v*ojUs<dhoLX=1PZ-JR6=goHF$`GY<5%;jaQ
z6bB+Zaov@y&ydLM)H~hV^<Zk9SFAvXQY-sOonuHIvU+N8PmYHs>D6!!7I5QA8_y*!
z4N&d*OPdr~;`v;u)15`{=7Qu#IX75Q7v9+q0@fbcVmQCEb_yzU&EmRgllN5D^-Lu@
zN@IjsMV#d3xVt`IH3irO4LWt3IL5&Nj-Bpak|4~k>vyEc8M}7QftR|SS9YI49=aat
zl6P$`*V@)z&vQ9fRJB*E=a{ag2a%kgZ9bm|e|LvtI7XJ<aVQ@lseKOoV9&aEi=+p$
zdOpw-v@@{w3_H8}f}w7E=Khgp+k6k`@e))z;n+nD|4$zv-i>zPp`5P!rjni3dxEw&
znD_HF(*9k<2WQ^2;}p{CA|^QU;BCboyffVA8`$$);z9Y$1HJU&o%MaL=f$=OEPcX*
z!r8q!!H4Mf!6MhUOWwZz+kHFV-`t#FOC~`3*;OS;N{Qs;&+qPKIv)0=C#4DwKO`SA
zQvI^NJS>pF-+sR>UVQxFc}hnLbj9%dO6uQrb~yRrzVEyH;{4y4w||57A7;MYBLY0t
zZ!t$O{GK~W;b?mQ8lC=KI626lx#yK$R|$G8Jp05=y5~#&%l_=L{_Nkeew#Vr%k|{Z
zjNvyBaJm28x7fK(ZT;W%+JnTx$+n3%&bO<ph%*Q7Q@>JA%#G7v-Ft+|5svd^CdQNV
zvn^sTx#`9AL4lyM2=!tA48~*uzPLX5J!n8C^n7rTOnf8|FC%gTj4T5s<jW}c;{M&s
zf=d0)2yn3jK;|%$NG?-XhzBth+hkpW877j6nNT<3wU}eb^sa}!3e!8vnM54uAQ9JK
z**G+a#-u_YJsOmvQspr+9;ynL^2Oy4x!GAx)(DnDvz1qnt+Sdeaa2HqY9+t4HH0-k
zhg83bkyoCUYf%SkBUrE`8$|h$)hn(1WRlzQ9l+3N=vAx|LBn2KiQt!P<<=`$b1n<m
zIEJWXCzOQu*2wXfM^9b!*eLO8+vYh-KIy0MvN<!moyb&sKMpm!!7R})f<)K}u(fzm
zMzDuN$?)(n^sOE0DzATU@iMoa6YgJ$r^koeKWAspk}xDpp$)0z;vF)FM6{`RV=rlo
z4P{Dw1~e^PV$);~+&6jZVR#;m2?juK_go8d%vlIbN!4P@qbJsDOa7$eYSYSUE)621
zu~Iq}4W$j${;cf5tcIksv;g+R8Xttpy&6Zw_k}?tCUt0vwTgY{mxT0ecUPbJw*hZT
zwtuIA^O@t5tXB3cKCKC(ZUS;tySD&XdOLX$6s|04$u85)3(BZMo)*b6UAjr?55>0V
zX~<Jv7TNUNt+}Z(FcwC*(E<5>9@va&Cj?rIN}ouGX)#MA9&T$9swJScpO4Q#u_9L?
zvQ1Ww$krzO(#&nkU{A!6evsKH;7J@b#M;JQKPK|Gs-BW1eZIt>+>22ec+J1kP@QvY
zoX)2hRw~83q@)>X6^;sd8^6p<TdO;r%$WMVgn_Wke<{r51I?O_(>J~;g&L{AomXY@
z`5Dr03^XpTjSw-#jf*Mw>7SisQ99WWtrho;_O|G{`;66gB68;6dyt<gzO~`o+nY82
zs1YqD7fmi9?FSNK%`~_7JGgdn*<$}0=hT<y^5npS*baZ6KU~a_X57xIETy&h^g*b{
z%cLqJfQ>&@-s4|<_uJhj@)Xr~e2YKKbNz@KTt~zOS3Q2Ma%R2C^s5>$Bve@(;o~4_
zl)dx3dhL+1l=jIQh=6khMx|P5eQ7D5B~^NBwPqQ2n?LJbxh;b3lM~k&8~<x5Bcal~
z97_&HlxpZGznpn%dAA1mcHC0ymHGO5L4G2}Y7Gx@aCHjXlYlkUPTi@s6`S40TRaPh
z;rsPjFEOhCQy7I4DOv(d&upjC%&uz{J(xYqljNFbH@T^qvcR0rR9*(2Xad*U{zn;p
z8Pn*5J=&+@X}^~COh3hUu2u)(`aw|X%0&7VF#~Q3scOl}I+pMUytAXpZXpE8PU%>Z
z2g3v?7d`k`JcD{14Wx|~I(6WF)bMS?RsZl=5j5N{-j8f!7nhekkBeu)$j8*73h0?s
zHxn;0grIG|wDwduw)geV56N0UPTD0fV-AZEX~H0PbNPEoGru9=?-|*DT&{*ayp%Wz
z3)MMOa`MH(I1cmZ;^c|yK7%9LJ*@J))81neEs=$nwV?!3QOdz_e)RNo<?O$@E$KEw
zG^Ps5#005TjL?U-{EvTfm5<?xbdGEU3J7(39RLNSHwhS?*_Nc&R^b{nkJOf04Py5B
zry><ZS=iahGVpzk_yz}t*B5)@>G;Qqc9q4aHEE(~n-St($V$vOSJ2`hHka2bB+P^n
z@#+tCNm7}XJhx4%k7Vy+lPZ35dPH<KpoW>={ACRI=sn(TiYK{{0p$66sZ{Q&nTRgV
zEJH}q^O-e<k1Z7RR;6eN%dIXCKgm1*TT6x@`!cLYg%Mir*-RRj{E3o{JloFZ-Fv6d
zusZDW!wQR3SjH9qyMl5O?y@$Gl+iS0N?J~j2g$4gw=bIR@NShNxu|LEguVw|HLq61
zmmN2k9E4UK!T$S4#T`k5G4r{UVa3nr#3e8Jk%duK&z+Sb{C*sbJEzAV)gw^*L{btC
zb&Gk>8dw{?1^hc&rSIwLSz%VKMC7cS6b$dKM$oyR*w_a1)NyPLVt+9-50L29efZiS
z^+zR|%YT-~A%~YiC<s8?7ge+FKNrGg@2DL{k$ho18}*lOlf^9hXWU7m*JMn|p<UZt
z#{om(U9?>QJqocgas#bnv7+%GI{ojoDY1~sWBd4M!|>&zR_=~3uWkRfN{r(wkB%jL
zQng!#<joiPO`YJB?x;-OOe$*%oqR&7T>p3ZS+dVzf51hd<H$z~k;~6Y7i1fLOm!E2
zR_tK=PEYGeLFgwqg)M-wl@^89y)Du1eW4axKmPMe=MttcchvjQMa%&b<%{ET$3Kc2
zC@Dlg&`4}&6A$TZ<=OirB)Bb2#I%F<EniFCTnJ9wY<8T!9qi)RGrDhDiY2)pR4A!Z
z#XQ{R!1&gF@o;YV;ib%X=1q!Uf=Y0{kQlc0Okft;Cz;D%>%ucFowj0B!WbJxhr6mh
zI8Ju&$X5(8lHA%-J^l!5vhHH7^Q2?X?y3FNgh9x#$Fu*fCrj@#C<iV|vyZc+M2Q;Z
zw(9n`5xRc#{;TqtV@@h7fM2UQt8KIW!5=TZD@~MR4LXy^DFCe~=k4GzSTOjqgDMd7
z`N|rFt_kip+*pMDMn$R9K%4&W)%AnG47R!F^Yqv7daWb&Q&*<h^p~Xw6FrPsEsW0}
zc^qi{<Q(lZ9FrqbP8Q$VX6?TD>{&1xIuuUl+53;(l&RqqzvA;~>BkUnxy2^I6rno%
z5)J-ElEBN(j{m{fT?NGzDC+_q1|Mt)?t?S9ySoQ>4+M9IAcMQRI}8%sA$V{NK@x%!
zB*8+E2+ZZ|efF_?Pt~njkLz_+b@%H2zX?VvHnScQTVa3ON29b%+g%<QKru-!L)_kV
zvyI_n^PuP}Sv+Yz1`?+^5~nR0<bhco{$JC&n$9`v<GUHM556S%G%mkP1L9KRmQ`N3
zdFc+G;lFV(A&Hshd}+HI`n5Ng;<Fk|o<!=y!~+%Wx6L<&?q3?tg<gOB`xCK=&ggQv
zh{7MKo$^liE%-rf7nv(y_%cMwSzk;%H`jwEzms;RDd4??T^Ynrd{YNeHN4A5^ME@|
z(b(JG|5dKpp`>@>+(BO4=O+8+X(MmvPk-Wxz$KsUjp(@*o__ld$KXn72Y=v8(nC|k
z3Pqy#1^=(X%%-=0k7iwqXT)-`Hj%$Kd%rlLi%z{FiW%s~+kNwJhgW!RE`1O-bbPOQ
z*bYf^gL{_lpQD5=OLIJ54uxI|It?k>OIlN+3s*P2FST_c9y%{vJY0zFpb3Ao{PNa9
z3yy!DPxyqofCQX6%imcbGrYjm_hQ_UZlrlXpW9!&^U0IqmrOc3FAb<>_lpZ@FxY%8
zSw~)>WHK=EmW=34<6;QdK)O{aOF#B7+e$0hVm!(6k3jMHhItqU!g`NG*OHWYUcGp9
z%6KDi?OY&=Kz18wQ0^X5@`S&GSAcz_Pu(1!G51KkbC|NHUR1lfi`}*wab#7g4>5Br
zFVR*ce~P7a+NpEZN3)p*wph18_x@U2534LnA(fMWDlV2vL4p<ZztII9lYc2l=S&x)
z^%k{9@0NRve<9P10jCAUTeZsPlT7TWfr+<h>H0lM9et?6D94d;E5tGP<<qb*3QV%>
zl<`j$4vbOZ%XutJB_}?6tO-kRN!1tr?)<Q#3R6bqVA8JS_@e4*r0Huzs|XUkj(sIw
zNuW>}dT8AbrJw?8(zt1u5}~oLtaPy86VybH_^5rzF2$Qb?9)kBNNgX3lP<*eSiKiV
z<I&W^W+jCz;Qk>s#gI+VH`*yhd3Amo%Q-@L0j9+aT@|F=V>_dkXQaBSj<(0p`kD29
zm<(4Pj!{C0pFH={?e9KL?^fYQT%MFNiY~~!F|{Bs1J6j5{&;#IOOmm#hIj^HsIWQ#
z6{c_jxtd?q*-wVWfLFpn)M(_{>J!EFk41wL8-yP#g3b*Jvl$efC?!J~jV>nh=2NQ<
zUv3%ODmp=!CuU9<qBq`@uPnt`EMY2v%YyJ%YLyQS(6ZTn#NI5UAhDE*^OQm7i}dtl
zFhZt!<uNT{65Fk(t{qj9mNQN<qwI%Q)Sjy5c~W@E5wGkL;`?_sG4>WX%jwR`qX6ay
zYTU0K@mHdMW+LZU+r8T?$@_{!rLDbUi~NIDuR_nV<@J5O%^n6*jUA?ERf@fGmYyh8
z$=@RYzP*uRtxstA8WO#AkhR<ieFlom`182KFZs3Ba5*>%uU?(V0~3Wb8f-<8tcM|U
z5?hov1w1UUAhvw>hzVp>R}oJM#EuDpVWLK%pO)>v&LT_yiFx|-IG{!`+SaC81qP_L
zH`aVj?1mB!sw17DSLY^?vZ0-@JGPO2uT=G32e^uV^yw6d5cQ!vkmX~Y4-TqUQfSn1
zK-UT0$^n@Pi=mZ6!q=$;H~YZ%H4EqEZP}IL8i)~;;kqQ&#n1wkFr7MSa2@Q$bf!~v
zNFR2vh-0TZbFLrsC}8{imubj}g12o&L^4iC2r1633M_@pLYz{C6qVjfE2VBrUJGWs
zT3fkUViHQ9ry&zSdPt`_L%2jP<Vv0wLReAnXkf+Q_#(DAVMctjloG$bydd8gSgt?!
z(moWuHN<Fv#ki$I>3V~*2!>lhd=?8YKOi!#Jp2lDE2w`Dl^~)x89s~sw5=;xk5<Fl
zN_3ckdX@xVlN~i){d@QnqN<AVP1_gV9$G!Lr1MUo7=AbJazscNV%h<J*-1Bxs9LRj
zSGD9pZc!#5vmuYq$vl5(5A`A^YKgM~BZg~1tc!DOXCYC8g30+$i*VI+Rn`0fFY>(>
zbR@clga8t_<6?!4o#jUS@YnhnZs(T(bCivSzR=VzP6Zt^_T>25i9S6P<;H;l6qSqD
z>E!F_!lo1NOhDCe!(nF<QT8GYr2DdO@`5S-to!X3>^DRc-k3-dPg5{b%+Gan*Xj+$
z1|x*u!^uIaWi<(n;$<`XFhc3QI7JFQ_Tdn+SE1MPlzY43;|^ZxaEMGe+`u)I9dPN2
zhI&YX!qDWEq+v)%_&izyS1C=@B$?Nh7v?opm7T-#vY&@O^W^&!lEmsCo3!)t7GmNX
zE21@gSPJCpmE+dm0G*sMte%Du93Soy!Pr%#<<UDCD7$YlkC@=cYgURFR*D<d#(<Tr
zA4v`<tRMTbHr_)w>(js0ad;ncuB#fx7SA<;q6vRAUQ@gK$O0N<v5@{!od_mcDWo~c
z4Bwos1IyNaSeV)AapgYk@wKu&ugcuhasA3^{#C;DThci|rMaiZJ*Mw61e@^hyUV|8
z&5zq$PhT%XwF&+RHarpAKLTwEY%dpd&JfhxK;{-87k9u26AIbYU)ihnQ5&2byeCy|
zWcwC0cW(4tF2r5)*BUM~e>hb-CN$>~!@mX8%#GFE@}sF4rTXgEOp6caOyJh~_Y_p5
zSoc4DEqDlSFuJE~$W)Oe0t=_o1CQd;*~<i<z7+xDAyjH5eCfHRJdP<h8*SG5=e6h4
z!f~uVtb>u8M3;vwx0S4vhrISWoDgtV-%2sWLpj+>xyVDc-b%H@Lw(#zeaS;}-%5kv
zfuOfR@OWuS+GuHb>6qK-xOnM>+UTWt8I;->Uh*;;wlP}rGTFB=x$`pnw=swDvc$Hr
zr1C;@+n}YqthH^d&Ae>gZEQol?2~Qmi@Y4`Z5%tioX2gPm%Lo}ZCnUmZuE9;JU$+h
zb{-l&UgmaQE<Qe?c0MUSex-K)mwW<-?E;p3g7)o#?tDW2?LuLE!m;hbseB^2?INXo
zqP6X!&3t0r?P5a+KJm$R@kKs~^>&FJKFQ;D$xA+|`*tY=pEP=hG#<YUNrwy#zbtcy
zEEm6=P=}lpzr0e1{7ZfX!wv;YentBZMR$HB{|==ve&yH><y3x^+zypee%0Cz)n<M^
zHfbC^K)AFtp;0&kGk_&;OgIUdJwTd`S(;@D7Ag?VnI)&$0MxjT2DJdxEN_U6<k-ap
z^pt$rdm?C9ZnszfVh_ml;!#`=atweeo`*<=6D31uIT|e3^SOvgv#+q(FdjNgZ}L`e
z9my&kCbco9eNRN*C}1fTDZOzkKI|j+bJ)E9R!8@S_o~x|t4qpC4t-n$c{tKYO5P~-
zHcYQ8lmX!<e05FK=qo-D!8s6VvIxUtlNRF^becrgVq3NNjEwf6&)Fy-I1s^I<tsJd
z=RDMPKy+uV>ut0+#x~{4ei9*4b!+nHwq5?tRt)8}<(=1ol978CHS@6JXJks@aiZY}
z>+Tk>mysU*BLJ3g(zq_EfJiGEJ!f|z+0$^7L^%sQ083qj^kJ7A0LlHni$AuLJ`3$R
zE7l}T&P(ksl<(gAUddaoTPl2vT5ZJPWvkaSZW=ErandDI?QdB<Vy-JJ-*FfGxm%)6
zC{*kQcCUbJ+bM+|(9Vv;TGTC_BplWw9M(Mg>f5!&`dBblt5>F=3xl*xm~haJzbs>y
z@drc{@b6E#0O7b;VZJfp^in@7DS4m^63w9!FiM8nLjgw`B~uCo6fnv*5W)5nh6e7j
zJBS6&@ypK*=gG-~R;6)_d>t923x`Cu1A%Pn0?aPMa#euDF?o~#pkDtdmbg6em5*f}
zpiIg)?>=w{5X3D%rgw={d8|an5MWsrUd}g#J-|=sI#T?ylcq7yL>+)lI$!fa8f{An
zqv&@P`V`8BNXfTexhs*-!+=okNGav+cL9ABv7%vh(oBt`tXj9pLQ&DRsKlhQmW|RZ
z(gLhmL5_37$+6Nn*rKq?2Q>z1LXY8eWD#`+Y2r6Q>{-Afwq8zm5&2(oQjId*e-Og)
z0sW4DB2$D=`h>!{%LFALvWX<ZE`KAWv_|DNI^W_A2XOg`14g@_=^WC(*_RI-q}?``
zk#uw2)gR<XxcsDqk<|@@BszWr=78gDf)bRnj^W}?e~=|0;-O|R(ZdegdpXVH4$+ff
zxt4CJ0ho07=xBq$u-rIN+P%#OIXeE{0ih_At$v$(WPZYaY042%s{ual$54jhF}|*G
z-GPXm*rtP6WaT@9595mmf0o8#K2&xIIS5bmi>d#Vjg*T50>-8%<tUe;%s&SN{JA$-
z9AU3|{;UKf#{UXejco}<nJ3EiGY86jAO27&C<uAiJImWQG>+F1A_ox(H9~~SxkwD&
z1j`l4jPFF+EJmWrKdJRRSg73-Dc?;mjwMn2nQjpHc8_Xu<14i_w$RY&Z1{UvEDAZV
z$K*0nH2lfrK9W+e&v^(1ukPuxAyRZJ^lkU=@4;PjVnaf^vF1ae`IGS`voJ8rkV#m`
zS7t%Woye=^TXD#{CN{uIsW^jp6f(QyA7-nm^>;VNp>NmwY#0B8e80_<lSc-O^M)a#
zZ}%&C><(ZdlM4FeNt2C+oUNY9ZA|R}_@BOW%x!2vl(1=<AwQX4ei6-FkmTLk@T4CN
zbq~t#5SiS2??DFh`1ydJI~{Pgl~1_(!cnJMEnm?0H=&arTo-Q88AOC|HfS>K^}GE|
z<YLr{oboFZMSn_KL_9?Dd~?|vIpE1dls)+Fm3r7Uh6Kv3o0Tvupmck_PM2OLsD_`L
z-FmiSC?CfeH_5*48h}wocW;`Qm9#HUL>Yth-JN<rRaCT=?#ohwYD(Xy*IBY2)WxYb
zbc^j*Jm=Cb)RIiQ5?Y^iLB+!O2R(3IA1Rl|;)EoPdnI&l#{N5s&F!fquhR?~VUA!R
zd)p(U{Zx>ZlmizzYrOE4>BlAH(`3#NQGqZ&uY`fVl20j|=RMyh`(s}0x|Cg|IfWNv
z;7uzdeL}N=m*<9hDZ@b8f6lohdT4RSO));zROi~#VvyrfwpC;zG+42ZGfqUO-^w9v
zMtrMG`|BAq9>XFXQ>OIZB;z^A=ihRDs*5saSev3&T584rUXN98|85yhYMX<O3TJ>4
zAfrX(9~i@iuVG~}Y4wbw={9G_cvY;KSCyX`#6a-8hie{sik^d(>I@8ETRHWL-b@~B
zJTRFS<=jyYj*_R%R?oYoSI-<FF2{<5KUV&e{#Z-S7x3edMQxalYG$va9sJXt!hj4E
z(XUeTqn$?Dl+s}dsSw1+Y9SdirDsl|<4bKXcg6&z>UmYAq)5^C(J1!r`3MGGzKV$}
zicqz_Q8`PeshmsdN3_(n$qTwR>9+$UJ8y2k<nDw%KHjS$1am>SMX6i9XI3$3uF6(a
zXJ)FKuvHgTt76t7c6c7^$lhKOI%~i{@3Ua?VK{<P*}VF1V{$ndebf&=!{S+YD3I4T
zQjyikKnT|oQDDV6%&TZ0OnY2T+o}S8w@<cYFgP<n#w7feT&?;wA0Az*s`j}o(IUa&
ze(JBuX|I*0`e&qoICYoUT?&0@?&C=1I7UC=heqF4YKV2r-Hj`}`v^7fY7|F`@_L-e
z@(tXlFhN?b2IqA?{9Pv#n|tgosy|$VkL&x5;6X#5cS;6+Jk&_)+j41pc0}iABn-D1
zXIHh7UMP&gU6-=<-PG%=nhn?K<9I4BA9o*gI&*8p#gry%k0bl2IrLCwyVo~Cqom-b
z$yia+@95Dw6o7K<$%@R|iL*dsX&RC3Rx{V!|L0zgOUQ5bc;9;$R%cHcjzqW%z%-IZ
z-shlf4443t^$hEeM^HX!VN=E_iEwFOc)7H}6h75tL7xpkBKo**WwB`ws0(3`0=3Hm
zpya^08x*%Cu1nAk&sZPNP69+@7$YPyjj~8<VM+xmwJ&ivN`bK3f(CvgjaRW)MQeJ}
z-dBAkL}}8D)AZc9xs#Kvb(wajm!Cn){g{=3!^5PiS8_d-B{dVWM3VwA|AcF#B({y8
z8n{ZYZ)Hay^#X;0st!VxSuymxby}A@X%Atx@zD2Y;_!_IG`p&VF3l~vK0$R;uN(Yx
z=zXh8;)QpDbQWo*x?6SZYOjSSYt{Qz&no4w*K`gTUNeC><2gi)rA(Q*S+i8moWA*0
zY*LPLF(Y2AR;y~9_nB&_zYfB9mN&_7zbd+pB!;PDE@0ko{9CS1(H_5<@oyR2gd&3C
z<E-5TCZ(woYwo-N-4BX%A~Symy=-{$8Fj2W7jsstOiO0IGWXvin_VPnmuoZV%8oG?
zxt_$Bs8q|zGAdQMESGXze>j`c#k21mFKbw-P$<gBhl!?_4i;&NS4OZW$=X$NILAt5
zFlFZ^F_2uBTj@A?$uIe`G0CYr(tk$S&X=mUMXJH}B_=lYY9)#4wL4Xf*=MrQ6<%k*
zX@}J922L#*^G2!r+DbCMYUiq0fR+I3l|Lj1z_#aKB?YO-d**4ykH4aPyE~4x;-4Mg
z_07KfXRKDPtRiwcGyGjqB6Ic+wbWm$Nvy8%uSi6UVo+jRRC!!(+H%!X^vY5hiIfe<
z5(KzYIt$F4Faqn(2x~QT>szzWT^uPiVLa8OT$LvVYIRN6F>jygEo$vp6FPrf=Q8-m
z=a>h7lbRww`o{nT_BvDZZx-uB%4gd|nm0;eRbybiUu<&R#>(5Qcix9E*H>h}2xoAe
zW2qA_ZH+<Mk+&Sq=dSu8l`qT@cVz<AH+dJnm}cgNddhE)I}?o(>rEECB8gCQxY^iw
zcRpE=j*+ch4Y|!`X~+-{1>JCj@zgR+!cuzf=o@$zRn?CK1MHoP31!17NG`YYTJXUN
z+^e2osk_Rmt7i)kDcJ1yZ#nx$-%GQe-mLrm)ZUE8sm%0Ifz+tHLFKP5X~@xFry^Qf
zA3J3l_rH@tgwwqf+0Bvnre7(T{l+|VZi-IXb8xwiBDu%Ca+SX83nU9RLZ9L=RQ}lP
z<*(83xqUN9cG)5~Whze3;b$lU!pLl8Nzz+gvN+7PS=k<@VvE&Y8>$}ac<1}mxW=30
zx;Rx2e+x2*0kxSiZYwb&6x(QJVygl}G=uH1-u~e4Fd*yX_x@S1embmIod3neUW#Hu
zXN28q@;-|^B7WQj^eLZh+Dd>+=zS5>2iffX4!3GM+eN#4S?#mzJR_s2ufD#@Dk0h#
zZ*#_t6@3fusm$92C$^flh2#Wh!9jAUlD^u*>U{Ox3%s`89tJsyf3VJYg8O4JKM?Yl
zfALHWqdY7n<o5tlQ0m2YEb7}5P--WarE}#qUU8<+eLhJ`6WpRL6yKI6=9w%N_ZhUt
zH1UenC^qBFZdDCrduJ|j^rq5(N2t3iD_QVrybk|V%lP*MR)_;}q%CCBbt?2MWKA(Q
zU?XJgb&K4#U-!`CD8k=B)gy0xT40lda}$>;!a))sHTXA=hs3{!N{=>G&@Qp{PfI<O
ztfDLC;dd1t7<Gxw(p2Q1VvQZa1HLwRm$t~IM)Pl7roez228&&-Ko(3PsoSpB&+U$x
zg(Uc^zT^jd=UG^qOMBbFJBX)3FT?G19;J)a;noJ$p`EWm7uI0K{;yF|&fjf#f6R=#
zNewJcl}Hj&3e)2sWB-CIud}<`Z-*ai<_mtf#|gSq+WefgNzJW*S3wbi^7!QNP7qlv
zygEf3i5G?%exCpJEBye|-~EJhAlLoMYuzNg2RbbvGdMh|nelEcGXi-#;(#*a<p$+`
zIV8<@-+hTX{tWTj?TXxH4_6iXj?wS1rpkcHRTik70R;L~v$Js0GsQowHhnPShSH%?
z2)mO+G5!2>d8&!SYM}MgjQh4=)DCb=AC-oYykv?tN-^GOCs>^o@Xa;q%pg<)Dm!ev
zqCP?1q82em{lo!P3<vIjaSzf|*<0LB9K1(m<_PVmV}_BfFX-<oX~tX3+;Dz#UoQQ|
zeeaS2;RZqp?ViZ#s{YCtq2XUrMwpJXBZZGd+#%ypsL2Dk@O|M`f(tY!)|)lzf>l?K
zbtjl??)aIb_%A((a`!>(`(`E)gc_c*I_Yn{66yWU=)J<l#@}OeHM}CXv2)_4XOL#}
zt0R?anMEWeykO>`&$Hs}c!}GtP0{ViS~pYQAx$bD{f2Vf`?m}}Zv^n-6%)3~uMK6c
z0hkhL1eT^8w=$SqZW&#7iPqpX^$!Sr!mi{Qj5x^A?xY;dyN@A1PVEqxf*lQs8>dy5
zmir6)Of9S2azLL2p``Kr9m76#_?`whO$$L6x_JNC)ksttLG!pw3-E%V=n#uEeAkjD
z)QnWvSCp64Nh6P7Ac#0;9i!2-Wnj)&-nejgo5DY*#pkub>}W_@wMXJg>ETW3j(g3u
z&x14!VKz;q=wEpr8&q%2F}28G5lAcF0jZv5saZ}q(2l#wG3VqJsHXOYPWFH&SJVW^
z_=sB_8mb5jFtGV4(a}hwl7F6tNtXL)x5`8oX<>!t!nzoP4l7+&ALDt~V}y#%8{*cs
z&pvlpBujul3Q>>XQ%WUz$;bMX0RieVt%Y+x8%lC76!Pf!F>UzqEBO1>`9r?bCO3TX
zNbU$24#XwkHH=sc)n#37!Pl^%3E-1FL}9Pg6&>>Ow&A1t8wq``VZlcnwnyC=DYOh$
z^sW^&EI8gR%c0`ax<1_7qA#F?WrD7wWXiATUAW}132226$<U?69$BdOTNzoTNw0ME
zV#e0kvF+ur=uv*Awv6DEaWWROW99=T2c0De#_qmP_MeOpslp^HB4i$?WH4>T5gM`#
ze02P*8MQBPpwcpY`1|r)X-!$OkQPsRGdM@71D!?%4X2N27@=}x7AqkH8@mx#(gqEU
zn|=U5+!qD3*^|iyV%b<zuF^J3X3^3Ozu-N9CP0YiP~^ptq>I@J-|Io?%GC2^F-^)<
zCy|IB0P<~C%-OQ2@-Wp`BSiZ=4i0ZoI?4#dk%)eV-}qgv_}Jq0WU<oi5_~0uLIB#O
z6)0Wd1iUbUEFWl6I3b#^A}<kZOSo>6jmGDn8V6b0%?vusojPz?)HaCd?_nKNSuC?M
zXvwaAq8uu3Ie~0BfmIoFss$PsPC(j>WI{W@D~r954rS*Mm8I2>UNuIP5}8!$v#~PB
zRev;TCNgc;H|-V(|I2{XOJp{tZ#J22HtP$J41bzhG+WO$|NPN>=N1PQq&}t~-}A!a
zlF0H#-}3%;^qm6B<SV*{Y)kYUE37puye<zH7n%iF-&A>j42m_qfemwx4O@;%-u3%|
zay^cmS7K|gr0!l3NMqUTZLo}zE6ZTX7}y!+*qN@`SrWf~W$@ZQ=e6_NYj<LMZv%V(
z9Q)uk`!HgMNCSu19EZd;hg4$6^Ed!;88lBYmADM>)7NqAqvM#PQzo(Vy)V+-Fn0a(
zC2_bj)CyWRj2#6?WeRt$yt5ct!ydmYWPxDp8@L?{Vz2;!xXc)c9)qG$LFYer7B^k4
zQb1tOnoD+s^E@CG;19g=^_aaYtl9OTH}t~u2N9E4RfRhb`lXV0dpxdruM>HES)&#9
zhvEu(_O5yDW%~>|dYKw}RfhwfP`&$!iwy3)-Tlqv3_UQreQxhk2y;CHbA9K_Kp7DL
z2*3l+(EG;DFIOnlg~Y$o-;}~Xu)Ld5{oY?&D1gd8AW_Je-q7{FI?&lLpnCm{)LXX+
zI*d_&K$)KpEg-P>dC4d@^wm0TOE)dZ3b^Zsev!ip0l1xatyGPMQAC8&cDtOCgtpos
z?RL54t_Mo(2OtXrD{PRMAZ}1dge!MA)&rDDIFf!i6j4YV`OOa~PRe>h;&E&UQxb-P
z0O65VK*0@GjIt<HVS24RXwO=3p^aZ~0Mv@q%|4G61Of6I#isLk=K_H`xsl%l<4q$%
z$bd19c~Ej;xA=|lSs`f4159c(0jDRjm@cA$l$96&95sTrY`B?k1ensr*cl}+`rARn
zog)G4Q4m+Mh#;~GkeQ(uA219GfH8K1DtZ{{%F-CSBg!ZJi-9l-U>dzYsD3oX)DWYH
z*h@@EdfLy6FAz#BoyzPFx(a|2Zu%;8CuVm076-_X7<)xqCFJg>GXF|PUiGcDO35V3
zIa&|9?a3&Oh_yaT$=%OT3CuMX@roQyMm)O3Q*C0K<ueE8yJzlakl7%;?k=d5&Bx2l
z7l=$GS@o3(1PK08hl_Y*+Mv7Tr!o77q(=ZE%5sPDlRAyPG<vm5djWmFQVR1^%!ysy
z^VzNp{n3YWvhPE0a{x=fJQ}QWydTQuAqmc8tS$b|^g*mCWNFt%q3N=f=7yl%{Bk_Q
z0y4TXSL1A|2*CHij6xA0ooI0(u%<Y-l+hnV{Tm9gs+up$fSTmRldx{AVSDt|K*?$;
zDxNn{1WS4uLA~iz`&G;$)!9AH{bZ%ZbnvmYpyb0ck%HQEx_YF*`U&?`+Oiz)U-TA1
z86sp*kX7yc?sGxoFV*LJ@VgXYe&<mdlzg8D<?QvwA`d+1N;?&-#_I;yh+xnG+(^jM
z1^Tj}(yd1#UX!0{i-BQk!hvdmZun#cy#}B&gVysvKe&|z-F-XMsufC>bV=408D3o-
zSPUiU&^3iijb>u{cSTBLERcIrjke14N0Ds4rO<an4|bb0>F_r75;2AH7l2*|X9bdm
z*^$?k13hBJdTA-#a>bxgg}^)iZu;EJNy7-N!1`CFq28uF0tp^aV~i8Bj0w}2)PQvR
z+$OHs4tvv%-kc68;9#K1U~Vt`gF$|+G)5F4XRLb|k1|K-p<>Xu-`8}&l+MTaS8u0S
zU+?`}OTXwsAWSYO7LngqrX*A(72$<vh*8k%iAoN~Bk^l!?4qh@gZFpy0Rx)o0%HpS
zl6^z>Jn#7`(qzQd=+^@)KRH(hhnmtAYKzlX1oy-ayumXKr4Oja5o7K8{SdlEOFRt6
z%=4lNny3{Uhi$YOziCO2n7tuSS~O{<*dKXSFhC_c)7v#~7weT7Fs)WpU0MX~2<*8R
z$&sR)G_{#z?4G0mPG6f9UQ)n}H{Tiu8ZwzK(XW?&EPyYkdoh2(?&$S`n#~HmvBNik
zj&3DT2<6dB)N~t-rQ3Mn2QFOxsha%Mts+YQT72Bu>}_W^EA_yFzNi;o2p}W3JyWQB
z9<af;KcaA-hxk=Qn_`@;Fqnw>sl5}Pr`t1LNcqXS$oX;8qhYY0zPqA<f`e0{uSvM?
zOHW#Faif6vLaT_EZ@^~qFAv>MCBcKxl>C^TqNYG|Xw;_-o-dyzg0^8>HLgpAG=Jae
zKQ{2m*1e>f&lg|UFokCL=gLUfD2eP**`)KmqXlooE17*1DWPTPUY!^yYBv8s6$)?}
z^!FT`sN7@)2cW;p9YQ5L3JC_irv5lD{e{e?y4EU+;&J=B+cWyjJ`EWxKlo605ZW@Z
zaXz?)Tmlt+1N|$pH9Y`*`{%T<BB%NHNH+BdR?ioekm0?c6V#yPhJBChr@T#*uZ~YU
z0v2be7G(&br>vJ--wT7!UAGSRjOL6tPts*iI7;kj%)aatHCI1ec8eUEN?zvL_~{2u
zgqc*>6;1SiIno}iVr#mbeOgKlWbLzH)%*<w_oRO`Iqcq|74JPBx~szp{is`#Bv$&7
z0CB=41&tA5)j}NUOMY?>%nI3w%{Qr}DfoHt8T+S6q3KS6SiyUdz#kF=Un%w<s-=D%
zS=`fFcIE?No1&lfnRaO(6C6vgIQ*_=CEeUZvku4)e?5H7rM?#^&g6N50&+8rsc$5x
zzQQXW3#BfQY=!}}ujf$k<G9O5qp&~)#u%QoGLiVSnk+2xR$~#UtOi*+S7npw^t4t#
zg{yZFC>a>K1;*37qbfP5lx^}xEi)Q1sMQ^My&o9okZ|e0t7ELp0bw$fnzUfg3gsM<
zd0Y9s)#K$T&fGQ^CjnX`kPwuxDnsjRq23U+j~^LUtrBaY6cG~F!fMfLKOxF6yJ9`r
z6oo}0nIzo0KaoTs7K$y>b~v4Ie4*ci-@F?qNR(nO+|6;ECUmU1XTp6kpInP?01fD9
zw=at^zbHyv^Bw6EvnyEc>vVSE6Gau}$MCJ)jL=Pz#XZ*+oTaK7BKDysy;~@X&OcZU
z%@kEQ*zIOA7hP8W7B|{WpkxB}xc@<)o7iREclok<EV2JKG*fOkSx-06N+bJ=oj)of
zo7@gp62m&`g{HD~G_gfop4yKQA!?%v+QU8BQYebK&w8(az7OVe<73AFpCWX<={><m
z`kk&+>3iUcdZ659oRbNbksqcAo`jR2pn|b;jN-wqeyfVeL0NiUY<<T&ny5~wN18ey
z{`D-e;`_Cr$|Hw;I~8jsqnF+DQ3slW1?i?mW9Buq337u*7CQA`e5m69XFbd@G1LhT
z6$zX(4wYCO_BD#Qj6$_!2BG$7nGpr8w0RySfy}bmXohLo95JjFNv`!mX2sr$K_BG9
zw#nq1y0#OXn^rjd57Tw#5=@#W_3@)>ltg;Lrs6Ax+Ntxr&Newhzx=Y>>NpXxyV@$Z
zL8r2~N1%(Qm0ymeZHytJ4t~Bbh;(}PRF7Y@P<OJpE7aQbeT+kn3dnqy@`U9v48&7!
zslY`lB#a;kIiYC$^B(<EEm#DrUfNq#EkmtF_K!=76_IGs*kWJ7g=X6Vi_44>vC4=k
zt3B3NbJmyI43^dkdPH-QUIR;mNI%4{gMS(1-n0c+J8yI;z5UiSqxm8FquY_{cl<WS
z%YlmzChH%m)i}t-+ye=fs+x!VWXwE1IW^DweRgvfwSwg^>77<{w)Q&KBIkYPFCh9n
zy=y0FDe_q@Hu;OsnykC;k9w0@_8$OLX=xd-PLG+nJeE2*3ar}^K)G?ejljn5oV9T|
z+>-i3#eYUG;1(1HBr?xiL7k%db-?FsbfaPVPDQl8k+~%8A`P7_NS?!wqH9-L?x*Lr
zSpK8m?V4q3$X$Z|OqB^JP)ho>ZDlcd2SgkCZe#JDiv0%P7;Ug#aW=5>Dw@hDF9!U5
zF%0o^xzk@i%^nV>m7XnXBf3#Z(6{g+P$O6B`QF2+fpNOxMEOwt35S)B=2L3M6T0jZ
z5mYNihDO!~T{vUT(fl`-HAdoL#-WUDpcolt?|X($QctI#!w)5RVHo2Olf__P)3~h+
zKK#K`EqBm3NkT+)cYQS*6q2Z#T47j7u$dH%qq_T%dSh%FJj_VNfWU0tGE8Uslo~50
z`dowx4*b;ccrygu{{6R&o<KG#3V1zFftoQsezolBpss&)kwYU|&6pGwZ;hjNtBh*L
z8L`@+%orUvt?uNNN%&$%nyGi{S}Q4t0$NFR5HJ%Z4T=?$$9NFW$fx8`ihulV^Oq2_
zn+%^j`IcUNkRKfa{H{YQG+=c_oWV^vohBdjv-0~%t{jZP+gDu`#G%AHg>;n=Kgggi
z*oium`Ub?F&bHO(kx8nw9ToG9{pD*A9DI#^lF>cD#C#dQ_~wkyLxyEPlPOwClyx~r
z)6D$0iHIo4sa^hxc#6U(rUsupk3-M+Di_ZyMz0(uqr0CNMu?<Maz(|eJSnzXJJR|w
zuRH9Dsa5*GuNyjObca=<yaay_N5$k+eP{zk=Y(LBrRjRA{MiK#J9%p#*k7||T<J~i
zqDd>}=s6ku<hND2kN?={B#;@3ee%3$PX^N=OsV^%r^QAmlt;Tne+o0m180_4Z$~@&
zTeBDq=s=4ZtE640=M?aPUG;8ftU=h{2;k$zQMkI#ZQ7YSRRUwC25SxX7mC%0YMr`>
z<J!-x8I~#;1Em*Hpm>GG@%^*+37lZgG7TzK-%8QuWoAA@UzIA9#K{IX-|m5Pj?X=)
zYL<a|RkG!~){&hb?whh(cU~N)FRZSTM=xYdT7Lp4Qy?^o*A%#daCW@VTbeG20SxIG
zh30r`OHwxPyOOg?Wm$a<iv7Cj+<WURE*^?!R4+IPqPdVRfqYx#o=I)^=cY+S79AP>
zshf=IuV*&b@J0+{c-!3~=y@&j=~Ch8SzIPND;!&@i`@*It?`&l?Z0Ze6Kz6P?e1eB
zxo^|m>_$ydx)f0PYwSV86@ZffJB3>#N1%SAGQ0KHgKDyCVcEQFq|{7~eC=HwumhX>
zGgeCLQa6)!l%{{!84j_^^=Yk=o_BjwG|?wq0G=XFD^Txd5KH5Jl@rkl2^Z1(+D(U2
zW@bwD=QZ<eZ%TC}ulwj5%I|Ro0s1|JIXrDgT?k&`chN{M=4=%^>7_tEU*2@+(|tL@
z>E`QV2s}#=QLxLORvT9nZ*8!|ah9WE?!)t==ScmT1E1P34kXS|<>5e`rHW@?NT?24
z!qWSSG2%UTQFG{1%ctJZ_`1Z;gs@@0Nc?5IVb53o#N_uyUw<5W)?_&~R}H%`U49Cf
z5^TGekpM_ZCTk?V6-f3KT2^2~UzgP~c~kd#^FZBtGtV@|7d`wuOGB@?jqz4l9Y^`g
zZOTVHIfq8Bl<Op+uh}g4j&Ah8or5X+F9d{(vxh6++5=GcOJ3v@kgXV4Pehlk5I-nf
zfA9FURx~~Kv0#CC*WGf6_z<dVGnc9tJ+#J)I4=0uE<Nzb|3%TvP6gd{DfQLyrKfzt
z(x<>2HeUSqfG>`EM&UpbkDv7OW@FL1#=Q-MJ(auYbYRl<mYHM)DiMQ&H<$f8>6n-I
znlcmHz7O|iI;hYVI8-N9TZ!32q*l57nmk^l=!Q4Is3v%qE0+3e4TOg0@=Lf5;LC6}
zZjBFt{nhfv*N5IOP*xW&ZZ+{ow;4&Ipc_;wa$!{aM2p8c`A<KR%B7e7Y);MvJA&ri
z-`&)PUqE~;^hTQpzq929!_-PICf_*tCnJb$po0JtKXs%wuB&o0&9|j^5=3rzp|NoY
zv#6I-3TLGxw>d9w_47t?cZ~shX~x*gh_EpGaP+uvOkv$*8$Yb2AW)nH&O<o3js+)=
z^o25vtPVyo1*1BF(O^W-vP94;M=&}>Fvmqe>mt~uA~;SWxG*AlSR(n9BLy5Hh2kPb
z>LSIaA|*~Dr7)soSfb>VqZAyXl;WaP>Y~)9qBKsTUSdRRvqbAEN9#L88^%Q&*F~F7
zMVp^QTVljmv&6hoj<Iuyv5$*!tc!7;ih2Ie<Bk#Q$r9_W9P8^4>mL^zSQi^S6&rFA
z8-@`FV~LAYj*E7Pi;atmuZv5Zic3C;OT~y!XNk{Lj?Z?8&y9=EuZu67iZ4EiFU3eG
zXGy43PN;TBsEtd2*CjMeB{ZEN5}Gj*TUip@l@mK161(FPd+QSWrxFKG5{EF7Mp%-@
zl#?bLk|yJlrt6Ysr;_GRk`^(NmsyfOC?|h(NM4Ui-mFXhJeB<ABzXrTWsfE0Ksn{e
zA>}wO<+Lv4+f>T=Ny;Tg>NQL1jdJR(L+X88>T_t-pQ+TxlT-vo8WJ=OStSkCF%3OF
z4HKS*HJyfYnudp&jt@;IP)R3pOecv?CxfR`Os7+wrqf_%&_XllRWcYIGnnHupzsW~
z=?sq33@*$}9%v??N~VBgrcivQ2s~44I#c2_QwlRn2AU<OlBM97r4*l~0?$&L&eAx|
zdWo5>4b9e7$<}wwHjGDP8^g0rr?bsZvn?@mtf4utRC4SbbL``D9N{_6(>boEIqsOb
zp3q!xm0VxPT>tpoKzMHObZ*FLZWv}B44N0Ik{9im7aN}!56?@S&PzVcOU2AjhvsLh
z<YznP=f>yf!}ANL^NUaOOEC+|p#_yH1=WrPwebaTctOK-LDOkLGiG5cw6I;Ju+y=y
zJHD_NUf4ffICxq(gjqBKEgDlPns6+dj4zso7tKx=&7T%6Viqq$i$ACoe{?Kfk1yVY
z7k{2E{&HHpgITf%EjdsrIdUvHjxRZdmwcNpIX^AA#4Nprmfon8-a3}v$Cv(sm;RY9
zeLO8iV3r}VBFd0e%TS%l&=blq>&via%5cug@IdAGtmOo%<wQ>9BnjnY_2m>Z<y2?o
zG@uGv)(U#n3Pz_2=7b7peFfW01;<$h7pRhlwUSS@QoyNFD4|lMzEW(aQsS&q3RES-
zS|z7irQlShlu)HoU!^uvrEymE5>&0tTCJ;Et?yKAm{4t8Uu`;5ZGKj5397MXt$C$d
zW9L+3pHSmiU*kMe<9b%(4yyHJt@T!|^>wO!1~~%jYlCNML(Xc$Ky@(Ix=7W!Xs3wR
zh9bQc3?E3y;y|2<PIUw-A{P~P>+7VMs_^a#hV+><)M1hQGfsk~;Fvvl8F_u>4E&xH
zsRo3o?~WyHn5oY?tA_`rx)L|kIKitu8+ue55D)NvP`!cy=@6(fi?wl(H5E;-u~F16
zzPxc3R6n24c&7|l3Thze0e^IAYD{SQpqlcjuW8GKbeH^X*{7y$@|1X!x63A^XMJz8
zR0B^yDdWH2zV9RYY0|vs)%Zg+rK_O1%nAPVyE&_%;cs6u@@)Nw$d)pvmQ#!dEVc$7
zq}F`V2Asm=W1-gk87<Pn){BUGVzK0hPp#c;&2(aIoo&sK#AIeQxZg<IUPap;OAA*p
zn~+lbu1*Wjx1@`p_D(Mi@z3qo_3iT;?YlNA3W;oTv&q(XZ)LebOP|Elu^M$CpkFhH
zI@Q7?KCC9)GVG@%Jk6HI+ltP{dbFoqyn{3pAOP?xxIrYba}uLt*aYj+s>=eaYocD>
z)4ATxx$77Jcme=|W*go6+m={S#>?=0zv2DZ#ashP%(9|%0`TnBfKM$T=9Z?Y;N-Mm
z?1bPh74X|s=O$YKHrg)UnKZDq40EZzcMYRA^IK=})!T~xCX_PVa4f*{d=wen)BmaO
z<3nFUV%L#s{}L-IWC=68A9N1@oR#7BVgXuz_pdti#5MGsrD5i?(XG{^^qL~`?Bb!d
zfWn=-=1l<+g&iN*lJ^qOd`!E4dUQ{i40M~I{l4lxNb4_g?&_We;1$Bp`VsGrW;$Pg
z#`7QU`)t~1=M3mh9J=4_#r=*)yF0{zHM|t}u0N>f7kH?@pnJ9+?Oqy)wmS@V!F<v}
z-gE9k^B9pd9a);{5@PFGQ$+%L02BToJ$a1PVD&Vfb#crk>Lhk_zUcfcYS*gOEmSo2
zw1f#9t~dNPHb^?&?bWfC06^u&eH}c?>;gCdyJP+t7o(U^(ZOdcf{S?o03H(w!FV(t
zfXF`+^ADr!&h7GzUA~1wgR>3p>K)qO+vKqU5b!8cSr?!M*`jfB&Y_LjwCyMXfWAA0
z4@OFvtA_?pjZC#l^tWF2Ax951(3np53y-jiHI%<;Bl<HvY}5e?&Tp^%p5!^uf`m2J
z_&q5;sU^!LjLUhpjWWr0;H_+f2J^SszPZFh(bnSx4`%1NQSmvd!nw(!*7?S{{)a|n
zwx(E~d4$RQ^53Km?51Az7h403+l}+%Co{vJ#vHSnkHr^8lxK#WW}=oC`hPEcOG>IH
zUnqG)cxTpFp}P1v4qnp-C-||rT)*(xn3Q4y*ZfY3k<6B6LW+d+pIQ+*k~mTd$_CQE
zX+@;0f)EIVOh^?%s|JCXF#eM#g1FH_0wJojEDA<YbvuY!Fq@7uhq1r<^BWLaPY6U^
zjn-HV;{N=Y(*~+O+e8o*Rn`A$6B(NttC_p2{mUjYadS8RhfU=6Y!jKA_?xT!Qz#1j
zhfri^XXozb_fMfHDA3J6FaQEchd?T6)si4;1^*O^AgUD*)mF%JU;huGi04@-Qms&T
zOHy~sQVUE{4=glsOZ;y_k=g$u6jhx*3q^WyZEoR7ZV}mm(f>k<Vk`fN6uJEmq$u;B
zNYQWi{AZ--)4z}+NEXC6OZ(X-g4CKoTHPW4)h6osf7?WA&o)udf3u1F;2Ca}8Ntsy
zQD^3V@<i_w)TcAmr*lnK^G)98yRDTQ{kv0C|Lhd`{ijnD^B+!8?teH%`MCxEKTc6w
zb#`@i?f-C!IyyW4cc*CS|8|N7$KL<TDLSfHxQ4HMtJ}D5o8AAHQ*{4Nr|3OA>HXX6
zxweAU+N9OW+>NfJwVwRRw-vMhkc&S47rE&DSpV7>eDfc2(aBiS@p#Vl`{e7{{M(hn
zXT|8?ABxe}|DqWE+3#6iUY_6l53uNX{rL9d{nPR0;_>d*pOeYE<9`Q>jt-Ch0T!Jc
zJv{#Sc6j}7VA0Xz)8n&Ng!(V72<Kf{S_`cVP(xk#A6ii&I<4yXRBNSD3ig@&gK}Hd
zbS8^#z1ehI^=t;M(z_y+8#)YP0q+c-a9#V!Ldi%Fm1;+wcGkdC2pj2F%f1YoB5Eq~
z+f%*Di6@x~<FYS9a)x6GgANC!Qv9!sUnncS9Gx&j5O>b~W@$1{K;3_I_FlI~@(=z4
znxZgj*&B-^Xi#U$w#t7`Lu0D{Mu+#P*Tj)-ssFakzCiMc=*i6U<|N)2Q9ibn-(mFO
zjd^JlM_$+W&pqDg^P<LOb{RvyhS;2xuh!N$HR!n(259k?TMO|z&eOtqmw(#673VZ(
zxxFA5szngtJ!?h##)e`s-_sugcfRjX97=xRr~kEEig@*^WMBlvVxsm%$V2C$B@Epn
z+X{v)NV<j$H`7WBrqm87iAH_#u!3JBy$kWSK=Im+0M3==>hL)}l&dhL)EWBtb@uEh
z@xRbhfKZ$0p;Ds}Ek*fV-Nt~CbL)P9*eYBIZB<aT(r4J3@_s1FV6mtyy)eN2I>Gj>
z@dlIvAquq3_=YKhkDQ|?y@XskuwMgZDcXz&kvu2eqv2!&K)LRBQE3UdZz9xk-)>m1
zAoKj(kWazug~(x3>U9ibrSh)gW0rQTfY|&2D$*dr_?F{BV(=k-8b<cg>r&Fw>0`E<
z2gIf}CL8G?fFKDZAHh1*Sc${t^Y#$Htk_l&Ux1RF#-@OE(UR&gi{o?9hI=k-`5KwS
zL!q@|JYG9fu}>tS8+S1L42^eH6pVTHsYf;UV_C#^g-<cFAnF{ZLm70Olg?N)YLxFI
zC?B=)FW3%j^rF)(-mNsL(wJSVur?*}y36dxFHKJnAX$UzQ91sejbWUBzLY|M#63pP
zna!vO(2^l?IRa~xIZ43y^;xM5bry(B$07ZvrHWr4<}#>pMsSzq3nObC|KhK%+6uAH
zcQ|~l)7D-xEcERFkTP|6F9P4t{`~l)C3h}uO=C+7eCH$4A@aiF^C!ZqsX?46qDO>p
z0YIfwQJQ0scRqOyT>zlIzO^cmzVEeO87u9>$RDt$zAlGxgow)2Lh_vDSR}_C;SgF&
zG0hs2y6+K4+gYB75LtfW_Fg$MztP2bb7q`XMj*!=0bT&cDbZ}3*Uop#=$9@ee?u3r
zTU18fmGyCH=q|b0H&?U3|Ir&}zC_4eA}Jv|Kl?Z!Ct<|VEih|{5_s=M%0T^US#aFQ
z9IZ3#x72g~)32xd)Eg>>kfg{GnT&lAq%8oM+=r5Rrn)kcUkec^+W0YVv?P~z4_p*<
z<@7~m0k61mXdbLg7%-6OTLctI<qwo{e+YK`#gB?)MkzOze`t?cVnpI6OvXm+$n+Dp
zHN`%MX1|JI8sqH6Gw~w;gvSY{a#}CYDB2REq05#Ufzv2wL0?Yaw|3o*b4SYuCnTWl
zM{eqC$GYy}$kq&Zuu5LjEGtjFh~B97-CB;p#7su<emx@iLWA0z&P0N63SSO)o`#0O
z<eOqZI<f$&C?;*m_0u&5ig-FrIs-Wkr43dMZAM&$I^8#hmPs&3KF!UsTB<1T{R&S^
zy!pzW1Xw7|6x>36E2a#^>&4Z>b<M(n(Q@|Ns<+#w(={EU)A{D%B)O)0hl@{<XHP4=
zCT`6g!mg2t5$Vw7#mPsrp3@zVD}K<vDi&Bi6hJK-DMfn8e=Dr;w#^FB8EmwuPH;N2
z)FZ=*Bt9HeVf<d4BeNiko8Azco0bsYYccH5yY%sIt>;r~(l;X?Z<J|S@cphJLyn%Z
z8bA3Iv9zW<VH9UgYaI>fMHJvsBQdPOOm5yYmJ%NpjF?K1Mqwp)+n`l~NIPhesic`_
zdE?dq753h>Dk7Qb)S&(X;(RP$$ViBx4B*x0h!MnXu3v?)Qx&Lj{3wzke#zy6k?e3t
zs|j-`_i!7W(ig~O<626ib`^^Y%jubonc}OZyseW0jj#Y61OhO7kEDuV_2|k!X_8q^
zC9HV(ow5=ju69RDU7kF^B^w6-kup&85HIb;AqLV9rPUx5!vutKP8(|L_a)v!%{P5H
z5J-5L@lpi7o8T*BD;6_R($48;)C|(Sx+N1~%D-Pw-$l^tYR5JEIk%n(N-PmAwx_cF
zd+tNaO=E5T;qTO)l;#}L-fEGYSU};^InRlajVXA4ioI=p5E#|0(6)lNEH9fXS9p%E
z+c2{|<=cw`hgoc?=B{SxXE%&bF_GaDtzEC^b$85goTm4kqOf$THBQE2Rm=gE8Y;YG
zrr1%$(;6go6Ocv~WvI;*Vamc|M3@{h>d3JKzUz<~TMxO5Q#>DX+jvxiHmk*NYKgob
z3xwuvgW~=6BGt=1j8QJ>kd1{ie!DpQ5l}YG)atO;yhhNVUo6K{Waxau{WX9!ew=M-
z{FU#xl{WYL7mt?qW8hXB%w3_;doZzx@kxXh)<si-MfX(#YdHP&0%SQyXIm5RsD(q%
zT?PYOMuBx$uM^tl08R!ES$j#`2IOS<hZozW|NfY!c&>=^9o+j>phfbVhQasc1DLoB
zKWHIAJm5<jZaaBx`O~C8Np*_N&I))^5GtWCCbiV{ffmPn!O1fj%y&`%5e&$2p_0`j
z#p&MwPIpC6(H)+iOgMP~x*gVnMyN!q#y;in+Y|#Y<qOGYmx*yUUu3vJ)*n9OIQB@9
z_D&Aq9*R6oeU|vXML%4`xX9u)#rTouh+Pe59~)sP^b_O8CF*2!k08B4>z2eTlJ7Si
zij9bZMTy}HbFZ&ZAuM_dR)?1q5+#|OfgQOAC2D^Cv|M-(#gQggAJacavnXBd6ut9a
zuKLukW4S+?F6dy5keeigqY4afi+mmx7dL&|Dfa^6+?-bQg+Ni?$>0rm)XEw1^=UGM
zX<wVRnrVlC?EZ^L>|K1_Bi$_%gYEI#+zGtjG=J~P*98V9I^$|iOayyZM%;cy*#>{F
zX?>766!mLNw2*qb=p4n8{T7yG@lDZ8>x?60Y*USzJs$o21^Z}T>PvYfT}#mggd6$p
zqWJ?*==K6S8r0J8bh2TIS?6w16JZuhjmnjdXyjVii}b!e3+4~2D1CgqTD1B*OY$f;
zAp8BoG)g%8M%n4DCHT>n`U2Vh4Q{Ivff9Z$3Vr8#5azP=lr?$xq-CKH__CIqc-gu=
zJB%GaFrLYm^APXN{j*|@Z*cEBoy#Y(=6=Q;h?yIa<caqw-8E7P-+0eJ?PoZN5dX{C
zz+EM<wvanS8HTYA<`%Y+Rum_BrZo0&sFuxU*U1%0Lu6UVdE&^qbICz@Ax3#GKG!;`
zPf~Z<V~kJ2isT}I9xpjM<ZW4$kgubym1Bx@!wAz|xq&WslOlg>-8~G*i?mfdYoiFY
ziQl1zC*S#D^1!BO4WSO?gP!5UJZ@MBp~!)Id~#A<XdMld1(4%_zrGhEDCCBZ;mUGi
zj>eCl&jMEQj1^-dk3**^I;5<CB_QJyMIH*dJ&>XrMPPa+q;CWx!UGaEUJ&<0nRYpt
zIk?*h2lXn)!KxApx@e3al0N17Xc;B>1~`uShS?~Sj<bL}{bMSSVu-BWaQ%|)y0vYE
z-8>cjmd2?!*G#C=iGa!hVdx3-53rD0lIsm{cMPRd97!-~;>-i{_dPu^<*3Z%6u|2j
znWPa!JZ`xxiTwegMHm9YTEYg%L1XmEGIfr&b(BC)=b|+s#8iUhiL1RmehWVs=lBhw
zwJ%2&1QLk<Nf@lHgy-w~LJaXL5>WR>K8{i#Fta=k%;Sj97Z}Qkk*s`*59)|MUXLEU
zCT;1ldb|re@wGhcNqI?@#@wk*d+PU6DOP7wkLQrB$P0LtLnI2<xarB<&dyoi&)J$3
zF;|KH8<6zK0!V_ThYO~?`o-pNmBY}Q#te`Bam<IRf}geOUR~z)W={{{f%}s*zsNfp
z)067&D;m;PK1+CZ9t(NCVgfF+A*18}VeFn7>kRs}fyc&*)7Z9+wN`A~NgLaCV>h<#
zG)`mNHX5{PW3RW*`|N$bzrY;K$=vgw>%M-1w`mlaK3Lh$LJtv`m#XOHs)(c#*m?(F
zNe042ZJ25{vKv0-*k>h&W@OcQ2l{5E4QBxkgJV-V9h5uCob}?%N|MKs$<?Y75*KpK
z<iZ6jooW%%FMblYxbeRAqf0<K9UOJFiU=G|Y%*@6Lby8eC3La8vheQaQ5@C(qZP><
z;_*D?DdPMa13Gb>C5QV&Z=VBk^u!`)0SST`<C(cvauFA1M90n?PtgU{P(h0mer2*)
z$ra=)690mLMM!NV<y8bYM8$Z%MOTtgSIeTys^*%Rd9XwozdA`+UKH3ba`@?raAS%c
zi;F*xMUO<M!N`gb$0+?1Z-zR*ac`E&SmrH1=j(Q=ab*Ln&vReW^{EO`I%)WAJOkr(
zO8ldA6?|FK7?V8o%B-txS~v1P%SfEUav5xv8QqqV5Ec3kq|E7M>dJo^>j?4ea^S5f
zvG?#eWlYN0kaV8p8H4zMy`o%5&SJvg{9=81V;Ylbb*glhDk+C(uL?nitKnp3IRaK7
zt^KM(d2Mti=j_Q!62a2O3xJ7PTuG;IWLNs|U&0artnCedNuN9oUvRfja8Nd$nS6v<
zj0wSl7G4pwQa`eU6(-7E;mh}Urk_T()#)2AhPg}S?$6Z-$VSBrGROM$r(GBY8-Q7q
zIuLbT#D%uvM9p`CK$zsraAdRI2pKKC8ibIjbziKtg-=I(3TOI_0e5DqRYkcQK}FFj
z2zHHIjV#DqjhJ?g57q#3Q~1JtF{^5uE#G{|W)ig^)~D_!5UejwY$BdPBe`cr(@Qff
zR&F$%$bomw6hsj4INTs7pE<S(VC!r-iE0^-jL-eqtR)yF!S6-riv?Gx=wVYgDOfIo
zTwteHcZgCJ7}k0hlX3OeRdtd^`L$jFId4?9P)86;*sX9j3ecXG03*|ai{-tr+5{`<
z1#zx|F(nnTz(!`S!eRs@^M_>Ue&a81|I&r+lpZQ4*<RD-z}g<CrGOP3TZLfOL1)&=
zL0rRSM?}u-6NAutNZ+zimhVjH_R}kFm@_1g889s$E+dB}>rE68n^`c9l_MLkiP~1m
zRNn3bhB!CDo3)QG;64-j#tO6wxpYfLR`~0G$5->y)XNG&NhPxa<tk)G!I$0e0lIXt
zTVer35TwE|ce}Xmit^Q7L9-}4=;XmC{yK$-WYq3CVDVy9A9+Y;mT)NqsvX9ebQRfI
zV=HeB>l@C`$PC<GL}=q(-PpgJ{aAYa-Q^u$E*qddsCw04ns1!0Tq<p=x`!C5dzk?^
zPaO-~YSs5FX!2@p!j30?07AnMbB4?eS&??_E-any2|WPV!xHY`$E7e2azzWdTu>a9
zPED+7Vprp?blA88HmdnBxg?Y}K)Xj6D|D-Gm++hRqnEnk$R1JN`=kSH$d6}*Tswn?
zJ?oK7oPLB!Tsgvafu4#+fe`J9exR$|uD+v7+}9aKon2d^yLpcSYog=}S7MSMb}u!u
z5TZe?X+eKqJ3C}!Ald{F+uL{3DZ(GXE)&UBJAM;0ZZ6nMq-Rn*@B``@bAKJ+F5*n%
z|5?zRbi@y9&kt~L*$!vc9%6_c*izS+J5iW5g^SgAAdjU5rL`sxXv-M;cBvNhNYc-e
zIMp<Tu`t#ATw!JJUiPKkOTh8w&%kU|d&?%^Y9yMJ&ML`pteJ#--+!X2V=Q~j9+|T-
znaJDmQtJ}xQ@KkA_7h9!=)m?xVd2}HNl#=0VRS-gdT>;X7Cw1?W<6pPG<FTa3(Mde
z%Xd@74lZQEh-ll~v5I`}iOp%hZ4$3nW<RGhyFL*>PnE5lNM7EvoiU;lToSu2WTFZ%
zF2u+RU=9eInew2DQt4-gQl^zWK2Sqk3sqPmlF7C!o)YA9s1Xpw5=O6IBdL*gmqWG%
z2sl&O?9cSeFBBgjC0)*<bE1W>+NMOzg6#nAEUWxVt1yB*j4S{H)=^hFqQxY@5FCaE
z2(W)|jkEx38rdDcouh<2*l7nK^~B_tR@T}wV@d~X(@@~Sufs1uDOk`2&4`8d_WY6m
zKK9lF!m*(Bcg&9i<afkio|z%3twH8jV09*u2jD>^n|-gC%Gv<gLIN(KDcka4eruNn
zk0u3oi|?6Bera29O<PL8Y$uHXma6l|{5)a7tFB+%;G0GQOm|G0xa%MX+Zb3o;ojTB
zOhj|6fN9neOT(2W-+AaeA^C4e-CLt(aVp$W00|1i56c<D*tPsa<Oo>w;HLg_G}S9D
z%tukc^Lq?YoBteu;!$;{;Y92{&N1Rh6y{C`VA?>Z&a<Sd>azv^+hXHGu_Us0JbGrl
z9bFrK0iMSlLyOl!*DcjVRlx9`+x;%)w+CFtzy4fDd~z{cDlwjP);^1^o+1Y<JSogk
z5r8Cx;Xh2MIPO^75&RpSW(7wi2M(Pcr~?mekm?2C`oJ_61HjG0^YKO`R5!92P37xo
z8XH1E<(o!4v6wKylWPDhj8Dm<PeCQ8FiA%TQcEz6Q289{BoG%ZzGpx)^^RQMCS;!n
zKH0Fi373fK=QH?cWWrB-hqL*xv&!bPe@BK*eL8S*S5M#+U#g<GY3DYcau%rgsK{e)
z+CV^QxKj$+>jxGxH&o$Wo}|gPI$m<hPl7b0X2SI_{#t;Jlqz|#fB*fgNQ3$GC(lu7
z9Tt6F)!=YFa0@aIo`DNI-H?X_Ux8CepDs6nxbmRXHAKo^K=7~C1gyNPQi20nw-cGx
zFoa>pKKupeFCu_yW6atQ%=$j7xW-9KwkwBIKxp4@#UsqEIz9W3cJ|&c3GbK;X@Ziy
zGWYvp(szIM5~LG({=UED)ymzV?_oWO-3X;&NVrm9LiWHy$G@2tZ-{<iFkLI^e^H}w
z0#ISfV>#Wx|Lv<Z9z_qnjHJd<Ju<4($x9DIePbl@qlS9_5S2_5ykEM5!@@H`y$3Sh
z`*LIJIF+rdA6>wfAVDKk*{c04two@O_bQd0>F3wuT*!`moXvThs(8#TDaWMY|J~tW
z`vNrp5X8<WLq9-vfMCWS0bGNG?o}U2)UE}$`B~+87WXNg_nd%n({nICVUq4HhVIrq
z0!6t6DsFeL$~CdB(L`5qzxn`LS5NgnJ?*3>8GHQJNk5r@eZ}|-KM^R~6@(SO#CtP;
z?6>DtA0*oYuCwBPJJEdG4O|snd`pCTi>#fNffW4MI;5+g*MO&l`NRSx`3I#GM=SLR
z(7h<r;EafA22U}I1>cX{d&pew%t<SODC&v~K?cD5(~5NWQ;9>75mQv#W)EtF;gEGD
zi{_~Y%pnw5aDUHNx@>EI8qzTS2^rIAP_2@cEtCsSLA5m8Y?aeML!$j;U9GBa2CIbY
z&$N9g4;)0uV?#T!wq?`^p;ElR^MTJ8@~G9t@K;4FpJS?aw(+y7K9sP6kfGB`gq~I?
zu@qvY$t}^%cA_8$3zf}BRpz>tLCxANj5F2NUjbN5Pi%HET~WEC)U>qZb-Z9OaVfL*
z!<7HcAC==88-wB5Z37qGSI;76Xqs4NA;LLT2+X`nJ6QUe^3|Fp9B4|tT^<LRop$E>
zE}LI&va_>O(*`f>Ca^O!Vz610BvaQ>ir5Rp9=-k?h{ZaY|LQ75Jo|exS7EaE5%BhW
ze|@&M2ML1a+C-9oLFM@)@$z|Hh82$3{f{IPb(%8}g}L<)5RH4;8H6ExH!lb+j_U$`
zpME+c=abcRk-|4{|0_jkk>(;zWM|I_CU$dohAH<H;3Opt!*!LVisiZak5<$SB*}2c
zu8vz2jG>{y2mh60X<2qvVC%lSQQ*L{<(j7V6Z}hVQ%{V9WI1aXt0-`k=B6xk*?OzY
z$vb!}Yc~5<k?*0dKQ@W;x_+w)0pn=7t4R~Ha!|{W%($R<zqQ_x+YP3=YbXof-)X33
zT!nnQ0|q2RE7uQJXGbY|+-vDteDl!Ow`;rCHgsF@&@uMAzt=Gh!}HWNkL7*PwM^CW
z)cc&{@t|j2^37A<wx;bt-#*?jm=QMSiqGH^`qS!^%K-1Ap}RtiIT|91{u*+DFQG*o
z<yioQ(FYmf5%LFqX8ShUngfA2?1$2LH0S;ZzjDBHUE@9{l(DyY#GBH3@xS!nd9+VN
z>pEi0-y?y;_hZtdU36CMC$UsDGHYXB5Q3X!G`YRr=iKvbFRM_l-Hsy)@!2e~Y=!R`
zpl`R`onH#S?lxPaWO!yDLQ3&&I!lv9^9hct{@v)$OEh*rU8UlLcG|K2NLRIO{fkF<
z#K|+-bxsoDD9r9dx|;Yacw=VHJb12eYodo0&i{`->Cb~7h~H@|4Po(<NIp+6>o8n~
z6M7eZB_m9lgBl_JTK%~Is($;Jo+)Fy51#LO;P2QOOrG0<g=@XXGvR*E*G)O>cJo<M
ziU0;!_iO*BMZ9ZC@2xELKCdp^!yNBu0wl8MMKgj*!)=wNzRv?ITO=<Nd|$*UuMo5I
z{44b<-u**CYklq!RCAY);k71W@3E@|KWL&i*gf&1Ng&IQKTb!6JurjGHR8sE;V_cC
zM=gS(k)L{yUXDYqK--Y7qod>q({`pXnQMn|rd*k291)vCB)0yAz|77#Z=|pTLPc+^
zRK0miSUnwdttUaEY7P{JC7tQa(`GV>qDbXRJuFs+q`DI;X!bj^3zkEuf7RUxV#h?9
zs+GX}ZwWC>{)6bq&7c$(Q%g(tZPa_Zr1NiZu{29m1kjly?4C{GFj+@PMT4AQNfT_O
zTajQ_D}kS0j-lnli!l2l8u?e*qnLQ8<$ULdh_n|45i%`Nc(al`vYcZ%Qnyr3pX${3
z)IIaUH|UYE<wHuj9APC1=Ta(x3^X?`CexX0IHA(#X4sMSxZ}719qe!@*k3(a<kpqP
zWjV^{GPR~n5ji2aV()R&Zk5r+P`X)ip{5BLytU;L80R3JZ2KI=qT-{3szLh2n>+|t
z)<gJbC^I%SU-EDiyl&ktH?G^bhvs$RXu%{-GVT<7WCpZ%hG6{Dh9bse9n7F}#q!qL
z!ZAg9Ni)K6$H*i{5LVUTQ>0Spv`c=UqK%jt5_?*;Q!(S)nbcX9RKw2lH$WI8TJO&V
zA2LlSgiOY1+v>iil|NPz#Pqa}HmWIL+ywrSD#a?_WdRh5BA6Ky+`ocz9AfpA(ru?-
ztr?a>oNIHpPz!d@8ijEOzquh#Y*J4Bgc?ywDFc-q!}6?!g_GTf-|C;KZt6|%)T!0`
z-5Z%e<fS2l*vA%3tVJgLGHNwiEA$*k<il}YJwKGWQs{74uW`M`)w^QL3w!NR<jyuG
zFX~eR)2ijvk>Gc2*orb+87&I*^${MR+VCk^rSj&(oHmr8MDJK737_jy6L`{bXMUYx
z$W6104Il=>vq)J?Dyh8iHe_na0;jC?`pI1D?%l3VVHEm(M4?mF1b+J>=5Smfcy$nL
zRHBb;!7dDXncUW0tDk$!9=-I}AJAC%PWW{uXSa7@ly4tt{)AnHc^c4Q%>jm=hY|08
zb7NGjn;qSUoqTz0;xJ$^(YXwsckHPB#AGe~!(dkwza{5$&dK(l?w0I2tPrXd79HKU
z<-r%oaifu_OMtd)zZ?Flxn0~KeQXDN&i8dHO|(lX^~~dt7>;S_Iz4~^nt_gSRstO5
zO}56xW~+RAq5f}n%ImFdPN%wQneU7RS=&-nAgNN{*!sM-Npm>Ylv)(E7IqDL>q#+p
z3Wm5+dHC*LUS)(?{LUMonZa?<pT%T+&RaYU1{(~EPXQcod#k!{s!~DD@hVVmRg{Xd
z3a@NS2xPFC^yu8;H|XE{5S+FZ2~5=WH|Bci9s=I^j?m-L>KN_W_`XfGV()c*6Px8j
zJ~HT%f^@C9=`~w=krX7`=xrzS{%yts9)n%e8E@!jSLD@)mjjzNU^;HpilRk#Z@keU
zs!$YeNA^D*UcF28jOeBxcCN*?l75_hrpYg0{_UN3Hwo-@r8?``!2PVfVuQvHKJy4G
zx^v#6(&0Cl`*r9fEVK8>CWvdHe3LPxy))EWI;7UI*0GyCU?I_|qFH}Lwj^@yRel+t
z=jT@1E$qh0^SH<!>SXOCTlV+GOiuA(&W^op3p7@lvC->TzAP}!OfTE1<bVDkn0KX~
z&goJVxR>tMG3A-@q$=<*SIFEv2)pspGZObuBybR~E|qscVC-3crh9HNPlhsvu^WV-
zAEwIgzVyoGT~m?cP3hF#do9b~nWOu)D)FUSZ_jNa^>}i#<nV-5M17qvbu)Pkay&W4
z;0{|sn%I<Ro60$Ry5{G%{fkWSYR{UhHJjwOUPjW8#}B`hLY^zW_TGu-symKF;lE8f
z^qpt-KYpEAS$eZE?2H5jBwJj+8;gtleR&&mQ!toUy*9fGA@?Wt>%n+sJnxE1h8C&L
z5jYYS*z4*zA}-};mVgxzJ~=AbBc_236>B2S8_X0>5vbWR=wFhce8Z8%v=`vMsXf1?
z8KV|!A(n6hiq_obae#PXF6xSIe^B|B#2=E|bA2MNCBN888nx?KcKP=hS$fAU8Yv|C
zP@FS}(-&eOd|T2J<I{<eCefkSSGgq|QCI|K8jQRhte6yDryi=NE<MIUg2cKCf|w<b
zaU_#kxFe5*dF<OcW1}-Px?>4>NWvw;T_sa8OW3IDI!ba#r(^##iM>Y+`sM&jVR&JB
zhE`kZPKi<MZ&;2gdsUCX1%*Y~F$~hfIo&y^-}OKz3LyDAx-Zy6l<rvcwT;P51Ibwh
zw7HUV+#sl94oHh2km*OD&=2M`5F_?5^6{X#g|IPhCz>k|dW%4$rOMd8=K2!Mj2oN+
z<nMx(9(x7B<c>Pjj*54;^_rJHpZA3MQTdfnTHTFs#Eug36mt^szRmY{j)OJ*nVflw
zh2F$7b3hR0N^8a8B4$z1ZgTvvF+@0aqqGV;#Zjj?u(iJw!C!hvEFtYztSZN_O#AMU
z-%H{G?y|4gNJK;gjyx=8Bx6quRNkdjkA6d9!$2Lh7A?c}r@=;e*@8eG*|8>>O4A9e
zX+~f%r4+72#P)=QzidHk)UTtVs%~&OEZB=hp4t{v*-z&=jmkunk+DhsQdpF1Il_B1
z{wyIMqT5_sJLp2G@YF5C8lHolT3v5n7-_+oyF8)IBaJ&e^o}EGyjZ^$O&=4UbWJ1z
zZAv3oLS=L_Uf{!54j5@a?#2?5qg9xw&gq-<mrVnYGUmh@EGxp|OxI18W^+!xZqlVz
zadqk|b->8AYlwdepNMUg#}Jku59{^NpESd*y>CHs^RI@)X$)bTD;?4dRQ1SrofjQ3
z&90D)2)!~yh$zF5P)6B|M~2CmYAT=F&$iUe3YJb5$4w>sDs!1vEs&Hiy3;YC0L!<V
zW<`dxg;eCRrw3R7fVVgw%8rnE*<?Ev^SkefX~T55${Y3_6Q%vrU~v{6si|$n$C`<|
zoQc<Jx$}^J=|rw2!|d|nYDeFh&M1aWMZpppDZ)4rny#7lTNThPXdkyj@=#SfRavn#
zr%Asm+!^Y*l<^OZ+6Ar*_Q-5w)q<Dnr~DV?c9!{R>^c77g`BQdgKT;<tvLkJUiexf
zM%-HZfC|rA6<8Pf6NP3n6h28yMe;BuAc~ruh$_U=UJ?F%?z|TGI5a)wKkz&;_JLd%
z%v6hpo+A^saB@4J6gSp`q_z|{2_>?CttIEG7`11wR;4K>e$TBrJSqE2=);x$d9bWg
zVrl$xAvQTt^jD)(=)x9gNG@KHOhf&zT!a7OobV3GNEoH)jKWyYB5s5V)S!mm$s+2x
zl7hR|Aa^e@_0l0oeU2KbaXL1|aQqXz(sXJf)rC|>u7=@B_nCp}t8=g%3b)NnF{1{l
zGrG<cR=cstYAK0a8k6P@OLU#(>dqCpy}6pqj?}dsiA(QVu0O42z;eTojz4Q$yE;py
z>}sd3c1DS6fTjY*Ep$+?&KmbhK-t<Strf^CR(*IFio-p)N>AtIwdYPlLa=wi;baAc
za-4l<&>_2|mwMHLN5gSvA>v(bsApx1al|}cV{TacB#cy;H4Yw0!v$6E{7Mg}McEB~
z($QZA8*fw7T}R4DGsJq?=bQ3KZsI)&sXY@_d08TA>!|C<m`Z$NgRnZao5sf91sR9c
zKO&ohKlSI}HaCx_u*35b@8{~uP&;ThkgFO6VYJ`EhxOq$SnU-vzKwSh(&oznk8{-t
zx(z~F8r1w(ZQE8edr1-AMUH3~?H9|RokzL8ZOsrbOz~=8KS|<B33c4oE=I_EwS9kM
zQOG$F7N*|(6{6=HyDo%cKmb~Qb)$gT7w?4eE{+&&g=&&#lFAi`NR3A5bX9G6#pg#Y
zZy|FIm-r2!#28I@EX<)Vd*g0qiEfM=7++ac{3VUj9Nd`rw?~xv33?;P@4EzW!u#J;
zKbVZk78NX&)|S5Q+%t6wxf^qcD8gxNw%)HOg_^8jOYBMs!Rime8g5@p8o;=(vVtXc
zMB}L(rVcz5V&EGP5V9ZQjX@rKm8LY@uEtX62T&|J=f4sOeT_D{Czh0c^s}xGej7i<
z?hTU@<t;JY*Xpy0HN-7nt%+@D!kfefYifFIdGqKeqaL!QR5KfN#@~!W8JfQ<X;KA_
z_WfGlcNaw=)1C9+3m-DcMb(3_i;A+&j(m+UTD35z_#i<}S3BVC!5}*{$5|dLUD;1t
znwHwhHR|6K8vSX1@V;LC?Y4^hwELXclK6K^*d{NBc02PWC0w=?|3?o!u6bU-?p4e3
z5{F)j^A@{MCFdgTTukTzBbA8;qxlU>Zxt&gF<6z%%x-v3<GZ;^UzGADzx%YwTSO^=
zJ9lzwy(SgNl&jIz)e3vX(!p;K{=1xpvP7uBX#yTc6s=J-d?&`PUV-W7K;}IV>KHaF
z0~ZOk!Ih;H-brk*1;`Pweq*rVaauu2L&Zxi<G8_2L!0<oj8tuzXh2O4waiRRaA{)z
z1{ExTO$_oxS{w$}pvfRt3T;m*nTY)~Iw@sbOazk`47P0L;Y1mdk>!o*)KZ?C309o3
zqd%*5PR!E37=6@(fSeQZ45#-C3p8!Gt}vf`Yv_qv=q1_^1xlBYiYX__gCb8A>#e0N
zZ1N&M<?ogiu&oGb8(@4kkjJqtK5dJVzKH&Qvdu~v{9HVudB*xcb4PvYm7m0`F0ImP
zU|e2F7Gt%2-{*O%dMww(waJtOy?k=R#=ZJIPmRMcTRS@dEEr&iR!^0IGK4)@K|j9S
zHPzyk-G?5(5SF8a?FKVg&IsHw2?)2JNEd3{J?tRc&rFw~G+N?;vsdYAQakCapehNz
z=u;cDv-dnwD0YC1vqi6aGL^0FmrBh#(pliwIB?LFjILTK^e~zXT1ceJo<tS_|Gh9<
z0@sJ8yWY#$s3tL22H_i3wX%!6h%$YtkTdj;{1lv;g|1~SHz@=6U&hrkLqZ{)S;a!O
z!PymUTs8?eV^Og5qp%Jn(@yCZ)S~`B(RtK<<((0wEa?iD`?&}qm|p+oEv3s#{8Mkg
z<7QaK>zvZ;ylTWWJ?yyC;!qx4x;gmAr;F!hcJ5Vr0jZ&g-kY^W?5d@Q@%8)f$|@Jv
zlHnI>Httl)pp8wy;_umn9C`+!o`2pj4l~b{{mbTJ%qJyZn(7i@=D(ZV*2-x?+!X?K
z-oGwhZC4lw6Q-`BZz!U7F=KHv7t>+Sl<xlMD1SrOAmJ^SNoOaF;6pAC`H!7|(+=I4
z%zCn&aCgDX&n-0KO=3Fa@HliY)sE$gHw?NrMcz=D^rl=vj7(pGr7CQsZY=J<cT1C3
zeznc~@VT3DtS=I)i2uC1*rbaOs#l>o)u+$X#&jcVPj9?hG(N+OHO$$1^T1{-ghWxB
zucc&TRVhAVTkd&SCqCdko4qnD3pYK8BJWELc-mZhI(-E&nVWs=dkRrL3N7?F(Eo8V
z@$z&6*fw~2h~v7AVdM3QxnQRHIC%x^c|9XNqD*)RKtIu%Np5%?1}Az2s(42vCVG8+
zRMWwQgy^L3Y21X6IT(V|qD;KwO`fdVlHwpKi7F{Xy^mo*Px0bDY4nBiV@cx}-_mt(
zVFl(GtRDn?p3{E#<jy@4P3YuZ`xHQY3Nd|)$bF01eM`iBOI3W!Onl3od@F){D-(UI
z3Vf>@d~1IA*3S9X?fKSU`!+y)8!`Qw$o-nx{aVERT2=hoO#Hq(`Lzf6btL+A7Wj2F
z_;vsA>zVWG-Sg|a_WJ?x>&NsTAom|+_a74XA6D@nG4UUD@*fNGA5Zk3DDa<b@SpnO
zKRxF^v*$m1?LP<cpT`VXAP-n%4_FcpSXK#GF$q|83RnvYSWgVtC<xeW2-x}&uss(5
z+1U%&y$<+C676FK9*_qfvIicC2Og^go|pulIt8A!N5S-?q6bA+Q9`N6#;Mzw!3ZGX
zNkVDqA!@3o#!^5(dIx4@!8FSv-<v>mOyNa1LSPw#J)gdUWRZ+blb#82$~z!Vh4|!9
zQ2`JH?0?e$sKIa)0<M2r5#?|cHobbSb<<c)91;I#%llEP@g%IFw{8MSn#nYnNq{{g
zI;EU10QZ!^N0oLqSIFz;>im{|z7Y5oo7MJ?K|OCmpUdGTaVw%2>F_<QwNY0qSGP{z
zFq@5Wz0te^khX?G&=cY?-0YCk7%W`jdeZ44oP5%o<4L_sHC~6u5%Pg?xWWwS|2oqf
zL%{8L^~8BRo<d+zwiZ(&ZFmWX?JwwVs~us`7Fi#4e|fy@i9Fm}A$@?W6REWniS$Br
z8rOj8FZVjPJv|<wu|-(<+Y+c!3BXVpr*`@EbFo6B!SP+_Bq)wXtY7NS_Lu4{sSIhs
zO)72o^|dqi;`Ddld3(ACSpz4&qtlcb38yFmLEzj8Jb4H_kvBysa*Rhl7^#(e-dmE?
zOx_up)7sbvM>I)Z6U8?Zpzr|obYNLn$BPB6fc}&jn9PcY0fzTi&j7+4%1|W;UUX0=
zCL0lA8A8Te0nobZW?0b1(*yIcoE&!+AS&lYdFI+}NoXHKElmj=YAVPbOgdUTMHm{L
zD!4z>s`y{@v$|(6h7ON~2N;3L*&i)kTicj~M<@#ilTW&%M(^eQp+1x20YFJ1gj6CX
zBLy=3OPX@BWY5Fsc0ALOnE{WXP|?+xV9{_?TL(}}jk9rb90wUIfbQCs#Zr@RVfx@K
z$4U7Ls$^$5rm8;|v{CPZ|I)Eo-~L2PmxnVgpc*?;4CNn7tplKybQ_c6v9KgY${XTB
zfr%&Cer#Rmd~md2mA4~IqHQ8#EOTZm+~a8c&y@g}{&B523Zy1fHFk(>GeE8bW!^yJ
z=H~$by7hSJPYT28;3thY+`-%u0Oxj^`0Vs@rDzQb0CiMx1wtJKW|+EH5yjNu84=>u
zI8m7qM9funf%MP?)8k;ebAU9SRy9S#MZ%qc=ucB=;>&>8dB9ch)$}qYmUEK^k=xr(
zaI1D2lvb34<=qc?70ouo)BQCnP<PLmDs*2D%N!AAGEFfQytj-hanrGgs;J;vt{0G|
zin^f}ZO63DaC^Iw?c|$5pr8Y+aO=?a><p?}J92bgLpo}5GN+j00#3*&#``$7t%mA7
zmnbRzYje_f;bYL`$3FF)gb#0ZBM@0c79f6Es+=Tl&$H<b6qpuMy}5)6x~%SLr%{<*
z%hAA+>&Qr07q@@nc$bJ~3GY{DJ!lb;yxW$wgI4(gxf%x|O9YB5Z*oKY6vDk~^welg
zaLp!?2nWT=dsIA9K}gU^3n>?6_E@MPIlxUsQRt*H+FRYR4+L!Vueg!4tbe}}9Y+eo
z4koyyw!mw2JYtmpfp+8Tp~P?_Okd>;_rI-LI3vRr3XfAZebtxKdn*LMcn|WQ>&l<g
z-E=``13s4`Eg@PDe8QyzM?jKfC<a@hRP6tLMMox|MpC0^e~KhywTwdl?j0i}2krX!
zXBJ_H8{j)HOKGw{ec}6)K#uiqBJ8uY6j>v(5>g3G);b)`Uy6pHv{3HtpB8^VpCt;i
zCC3d6B}PkdC)v$ML20d%Q(<9`g@EhyVK_qJAc!zzX@#6NcJ@caL)sEaNx#Suz_RRn
zBNO2q$=t*=hkt($a78@DQ&6+4a-ur-NEjzk98(<k+Daz5JXO#%QXuhu{{~>Rr^3OM
zm!YNTL{_9q_6AK;NH%^?LL>~Mh@YnvyRDiFC_anA4A~N<zL}*$fs&`|K|Caa0fmCq
zs5HP|F_0D!zfK>f%KGb&krWSFTr80D(i}*<aP~(`n|kKk$Re`J<3s|(2}i3m*o|PZ
zVAiYs<1R7*D%R3er0k@0cBM&3wB)thwzj-~;<Z8r6BO=EJ(B@)GUA&vK~ZVm-#2Jw
z-9t3YAMPsrdNf}r{{o1ol><n&OgZY9ApcsAo4v<|5J1%orHJMySbzzuV6idOLDBgj
zzkPaBSmt$-8&%3<*qpP3^P~{-Z|<n)S>`y!D<M2QR2qt7VI5C%A&Q|0Oz`L0QeG_u
zqNQrEO}4LBC|III3fbqWQ7F-ofTdApDsDiOEpw<&q{vqaVI!oVk7W5MP0fzWlF7aO
zmn7rC8q*KB)2mG)ta<D2t?-nE>>zdaAvmuNOvZXI!Ow<KcZ>F4^3X8^aE!H3PTSpu
zciC$QH$uhQ^Vq=aWG$oI10v3iAMfnJSek3m9Q#gx4jljlb}XSE)(soqWR;jvlNp;+
zS}~heL=%!tZ`L&_>3ABfRJxOfAj&iy@!WOx)XizIZuTxX2SEOpEu}W!gl5dD30YDh
z0BWpj4}fxy7cRy8>po$V*C(VXdKU8-fIHQe5>kTATPf)mby-|aJRWpVUyz805p41h
z*!TQ!OZ17dZj04|-+sLazGKEQ@YYwk1chlKYqrWe;vPvI6O~?jRKlJlY|3pbsNb6E
zcXdNXiS7uExaE{pr0kr!AyjpoAeCC*WVbDGG8|H=3*qWD&^dQ&=Ouhu!ha1m?9%w_
z-8AuAwh@e$Vv;<_vLS2(yNuD*hK}FUUX!z=nsL!KBK#UawSY-9Gnphw{E4c3rwZ97
z?`QX^KtsInT^mruM8K^ZvbFmeRn27$w~~jZu+YG{;oP80x=EL+H?1*?+Y;!Td+xm$
z7^S1kYV>to-mI6TIpx<%3!8=|qXpkVpNIJc5r0k%q{FL6iE1;1(2vT#4Cxs=VP8h3
zbZ>p712ilhj3~M7K?@DgrXfo?)#N-lfc5#NVL!M%O1%5<-eUI9^@|q*JH7WII3MPS
zTf0B)EPZXP(BWeeQ~I1iU@kX73?r4Ks=FcdfmlLG#UCL$H}|4WcqX9i;Fnywga385
z5JHKrT48zMvofojY>y?Hjm1M-BD-!unyfV_LTSXW)K-z>Xe8G0MbG4yL?9u}NxcYX
zfDb_d0TqAmrLGwr#E`e#A>s5RZhH(Ti>Ek(?PVcVY<MG3mJ`w3((Md){=84M58CP0
z#!q0WOY0UGspB^(+`SnjZW{Dqk(`|r5V{?<gwj}x-Huw=o+++)$jbH8KV)>Jhi`q%
zY0mFbUN0of>#+gr5Oj`u3@)tlKDveuaSromME@!~X#3-q8!<4dP%r?DB7M7f`vda9
ze|W_?%z+k8wQndTvN0@Z<YNjyAgA`z%9!_;Vfs$~3A{0Q9}mGHy|*!3+)&!_7=d|t
zsiX+~cP*%yBnSS&;L>Mj*aq49YEMg)0xN)A*2BcG%yfKVzq1bMQWVbGSt=E}Ks<cj
zUn>$ZkV2*rG8kr0@w<w+ty3c?7(p-`727tP2`L=?qX6HrC<hN8v@TzJZ_3|EHfA&)
zJVCZHu{E({yu4!y|Jm%9R-sVlG&)yN$3cQ0Clte5=*@V9_?;22hlvwyE+OAAsxryP
zN#Xi)Ax2k`6vv(mD^;(A45ja$c%?Rg?31MF&^c0cV8j+FAN*c!MuLs;yA<V1xVb_U
zEW!6;=D{oiw(#y&1KP;~GdTV84ij;B3b@tX*Oh&0ZQ|txv){-TILd|IE^`a4B?tR+
zVAV<5eV9=Za*oq98ejn&-Ttte1r1Cwl%+ZUjG5HW-FqJk;1%9Fg{k1I=~v$Tc%!tm
zHcakWh{ens9v4#<Be1BKgFtlF;<%Se0>M&jglaBJ&FP)`N0Gs&bi|;473_*TYzXEY
zgJw;dg&QX(ZIsd;a&XN>n`)T=DedD<Ba3yHBa3eZeDx*rWE)c0Xc$E1)O^Etv|u@X
zxV;?(LtF}!kFXU%-6GC#?Y4vD8Iu5q{N8!o2jo(9HrjS9OJH2VlZP@mob(fu={X4z
zMV|o?)271gI+zK(PHGHfLQD7rv%fJ_I8dniM~2Tejzazf7);iGpWho?LhD;%#0J*Y
z4j-$d`J<I>s6TwYu*Pn@Pc(>=k*9XYYJ#&^Aa=UV$yH{lT#hbirTL-=d?S_uXlXq_
zsN6lufIqR=KSzVr_jQD}cjUlx08Bz`Y9N~aQ6&;89~{!Wq?EI=!ESD-Q3(`JsU2N-
zowts0ACZ%%g_OIo?eCowtb9QXq8G|=r<<~~Z#(vz=7wa6D*>O)Fv<!9PZy2K_0`M0
z6Dm%0=>n>9vD#=rB-udy6QDq*9&lZ_*o-8f?hjTX^50?<ES0D5isJzMyZ5mB=wWq{
zFaPGq1_`C3GyM|76<`Tk;X^A$><YotGw{`y2eoiJJ-o1wurOtF;RkfBKUC0$Fr7)}
zAJYkQj9}+a46>GmUwq4;nZoNT>3wz?5^kcbBIlBl6VX%Vgj&DEq4XDSFl5C;$}LtZ
zY}n2XhNWDJvHo^wyENn9wa#%%4#TjZXd{(Dxs&;lZ5ZI6S-QY-o(@X9S%!aRaMK4T
ziJW^pTg8bW@v;tQrk`hVfuAyAEAfKsNDKjW>bIpoCDy6I_Wfo33^tCd774n4tT#dK
z5((1PrOjV8$o_#<x<ZyphzmoQNH)dT#LQS1=*^m7rt^SJdL`^|ctJQKJ=68~FwJ<T
zU=#^`D|F~}^t*7C^3Bn|6gHvy)Z>)2(-br?60^DGjJczQf++np_0{Hm=h^bZxJcn|
z5{gQ{^u|A3E~A;sQCOl+&#DYEJWF8O88L!*f>$c>is@{4AF^skFMt#fXsxHS($$(?
zAp~ujLu{jvcY7Mnl{9htIG~6GOOfgldX@J(g0NKxjwDS$3{7gN4X6=cR8tWMC&{uA
z#!^aQw=zV|G7O->Av=(f8(E49?%#V00|8ZEMc{>dQ{KaAhJVvd%bjcdR1O)zWKgn}
zm%iK{NgSbq8^s784W)BYFF^_pbz<0AB$=CG0?+<lfc076m2{ZYHnohHYjOohZij8s
z3}Z!^TJKoQh#q(`fn5Ty=&&RR1nT;BnYTw-JF2KOoWlak#vg)Jp?XIL0;|t+RcFHI
z19VTVikM^$3n6H5kKurxBx;a=<RlH|k&p@iPhtuK4yr9YUkC!HN;xOeGj#t3yF|oR
zg8v1$9{<`uClSXMQEe0U#~!n6`Y<0rB=Gxkk(J*R2VBS|$)mbR>UhC5B3Hy<&6{(l
zsCw#&Ad6)smd|Qmh_S4gwyn&5-y9KEbtqK108XM<<^Y+;%NEYi0tMp9g^oVK>?ZM|
zWX#qM3xRif;&`Uv6yA#WN);6ZVE^LJEDX<2&1#rFnf)$?yWL4o=8Aq_W(5XPUokbF
zKd{L5G#C!EV>{57_bQ4u4l;D8Q;|9=ID=psFcDuPe)oq@Hs@_i7|w%dk-{z>Sclc;
znU@9Gxyx9VqZIFVIWSsepuHvY{fB`){n1Rr_~WA@y^ujfYB1iu-po(rW%bYsRWP6j
z2;4!XziYspjgsPk!j}ohss+w=3?}zP;MH<~lAsv&H*!p|gZd8;4F~9)LmB4>oUoTr
z4MT-i25@5GVBKLpsmPOQ3?rI`&>4o(Wk!RMLKvnwfwGcR24Fm%W_kC&1YiI5#<^I)
z-B1v4$tMNlNi32QHiHa9P!xx;;W)p)P15-f(upX52`|7<A$0SUFtsog9K!@i_Vqnb
zGy(tCbjA3OR&;AAf&`EHzgm&bSF-bCuK&@BZj~*e4o>KJ|Em>gT;D2kf(S9g-T$i<
z-If-st<<Yb;&TiAk5&|vV@RtaT|4xFaV_#+tq2jn>o7s^?yvZNwW3QTXu}Zfvp9xE
zBjEp8D^ftrgH{|?V3t)RzExDPRk|EkYHwBc%Ylv?AUtk`db)!J!{Nq-VA4dvKDBb9
zwk3#2VE%ut2vejVW?34O;XZ-mUfIc`-RPbW?H<SytU}HUe!3&1iP904;D~KgI~&Kz
z<TV^?(-RNTSBb=V;!&kXGDzjsdGyHf;nh`{)RhU>D``_%yJx@lNEqj}7;D2>=QX~J
zGJoZ@f)JQ;4_k^uz-H94`VIG{M^P#=(CNNydS~~>+xIF84_|cn>|pT?&fGr>4}T_?
z{qpbg*iY74oZ3(Z!8Ye1WZTmY(aT-&UiGdYxP1ph)2<^f>B`R!n)U<=1Z(U`Xq61Z
z2=HoYfISR`J*mNNKibszy<E@2p#}Oige8<;A4*O6VS~Xw1?|2Te4bujQihKj;u3y3
z!+t7lu=8F4%<U@N?cR3n8YNz;nU9*U?LjyXgi(A_h2O)(EkefH^R^#DsliTXDCXkf
z0bji2S)d}s|1Iu;NhnZW`#p-fBbpf;<@FT79c~lWAw?J*S2678*Wr=+6obl-As(zk
z%&+<crHu;dx1$E*@^~7u58I1Fd5?ME_6UGDBvQvb0<UM2i1q*dFPSoQk5d|+$o(C2
z_|D+g10*7$Hsz5i6Aq2kX($ez1PV{%_cV<au$l6}wHHWL^f63*29rFen+T@zJm7?P
zfLVg`5xqT7eKK^wjyiC*KRQAFJ~=qPc{v`q623r7?-J7QpkYCaIiJFUHYh?UTRUD^
z%`QDyL1#>Ri;7ODIKf=<t}6avbVI?^Dc*8+FeZs_JqWIf-?O2>+m;%x8X}N*<g5-W
zq%!?rg?L{e^F7_7t#-&G-0i6)aUkNgQ_9{`#iUzSRw#woD_G{GMf^KRQP}Xv$K6D@
z@+;)DE%pV-(cj(P{n<oVmB7!C{pD-PYloe1$(QHv%znUq;S2@1fr=NPwJ(Ur=Uc;T
z%ThPg9bYx#D~ROHtf31kSh!KRyN?~*3=td-YxjEXER=aJxP9&v_iHqH82kF#q|>0s
z-xG!EpVi>m!Vaa$->DhqYj*8}$q}rf@*Er1opa<hKg8SnDl9e47n=G#M}{}epi@tH
zKod5gDiPWiBnfKlRMF^lzxEv<_cGK8z%+a(tn{m!^H?Dl9poO)O1$5E48}|n>7j;O
z&=Cz)5ghsIF<arQx%9f?Cp!NKwIlNm3Kqt#6<y;Oa904A=!EM$`tD~u?Gt=}enQ@1
zWgoYPc(a&$Sh793D*}SYdUsW>blo~JuigjU#7@HAmrI^B26<PA1NL8ASA{V$QpF4(
zyT)~1aGruOe|7?&#Qt1%+Iaa@6ZdYr1%jYF^XU5)*u^G)`1i8$r(3*((;oWgy1a%y
z+z>nTRKyLIL~L?iSKE7m3;_?Q{tgvzHi+G$dwt!+uNPjT%Y(eC?fyz`qHg@d4Y0$R
zoMLdeEI&c}nPdo`@GX;)3J1bf(0D9=(iBO>qZ1&-bu{g#hNJQl0T`2@Ws^wZ#Wu#d
z4hX;D!%JsXaas(eqVQ)cW;PdvFo-LR`kMldGGln6`M~S0k`tw{tjc(@H;~UO$;5uc
zrJIeHEAf~;z@{hn>C{Smbj5e;KbE>prWW{V#3u|px%lLChPKJ}3bAGtVlIVhY^$}g
zpZGoB2wg2FQW<r=`+su#Jd-1Mg!}Ypr8rNd*TqA~#|}z&5*;(_#wwOVMAmT1W&Oi3
zRK)e^+KQ0R%Mw;ea+K#)_`q(s4~Oi!Q`o~apQ&u^LD;RMe+edU+rL`i@*>Mxrr^HU
zyJj-4XCbla{E5-}=4cLeUGVmJthA&BRnu5i=nqs$9c4|huVU8?;l(v`*o!dW`zaBM
zbNPk)%_PsF^hF}?3Y{(MP`){ct^Bt{io(FGreX33zL7uHD4|s@XAPu6sK*(cq>Q2r
zwakL8LffFugG3j5GsRR3fM2g`dhs20XijzPK&CrGnZznZ%+Fk8qpv~XtgnUfQ-MlX
z%w=Thc$<<h+#I~MraRQ!RFe3XV!1ShG-1iYGI9(TJqw?DtIS#|cKb(&`mDOK9Hz<L
zURC<QQdXXcw$xqif@tJUt&eU}lluH4^-}4V?D6k%4jaR7E80c@c&oZr9vmvrggk8m
zhTSAXGhFmDc+2rA)pg?!qpArLyY4%VXk?_!d|Dy3X&B8Cq}}no)?-lB4a5rONHJEt
zuqn&~%@+-FE>l|kYoY{~>3X!1z_r4P;~87=u+ph?O8Za3$b*n78q}-Z)!k5hahumV
zJQ*Y}SDp1tl+oliu#>zzXXg`M@{XS92jOv&6j_#(7H<qQixd2la)a?ie4|D0ZgcXS
zNk&{&ReXWHHW&GbX2-6nQ!#;9kwZ?}&ruHTzgAK{#`a@g4hcACk$es;-P|RSM3c;F
zp)7lOOEA$VBaVK|RovvlHnLfAR~{^dm|XfLErO!omqAWcD-=Nl78CNF`;PI)|J91*
zq;*v_ZfobhfVCccg%rlLajr+2Q91Q2GW>{|Qwd=W`Fn{k6@CRNjipX!UM#oLB5~Sn
zUQ~bT3UTbU#9Z`@-VU2KgeG)EdYt^4s9W_-eA(q5l2eawsymT@IRAM8lD^e<TD5yy
z8ttZ>_h|pBsPlH-GH3YrZpEbF{ee~(`FELDALq%y=9|k!t`}lD<t-z-(U-Rt@}Fc!
z;#bd!dJQG|Q1Cx%GQk6gqNWmCz|bNxk$v%$BGNjx3PH_-8ZU?j{_r2m;u*7FVV`5B
z13eE#4<b~<;pHYjHevg|txpGAG-AU9z=~U8In(8Z?Pe3=e9!Al0?)ecVP~y_=@a5i
z?adOpa&ZNzP8vMXXmYPxy}68#7kn;Y67GbeDoE3lIaMYo@^Keo`TMXET#kwFd(>s<
zYybLtD9YmES_^*Li1*L8KqG8_B=kmxN)l%ohd8`cV%IFw`n#slkOZXSioCeE3xKIt
zX4gmM<eR^OrzaiRY_KS)oa4H)bB)uUz&d@{=}nqyrD$4$C%og71AfFG&Ye<{zVYD~
z&s1nN>%998DPCW|#nQ{(ilSmI2_*~IJWE4Z@uI0zi5vS=Zf8>zgGos}sO5R5gR-(&
zlewmT<=<STm25voqUHw8t(~i;I6N2g=HF1a5RjFPiWW1q!Ks{9da7Y$xJ9s}po<GP
zvfzMOtJ`C93i?gLOFWufbVaI9-MZb}2^zFBET&>b=e_VEg^0?!D!<Y8gUO!uk-I}I
zExt1bgA$VLNa0PpB)YJYcUwiT<<2b1AvgIaZIPuOXlf#JHXz?V+OJQF)x!cSnQ@Nb
zC><jmXE=Ff3Od|cGrSs{01dv#OkSJr<0!Dj_~^&LpNNgF$`ki=`7h-)sY##qHaA<L
zeth6HhTJp52bFRTa#?0S4AYFIPe@i|BL<i)S6%yFOyO|R*}+fL3JH%F#rLZ;7QtUx
zXHII2Lh)AT4i;KV31@fif@{i`ztMjC+*O|+RcNvD%hAU`pvBjQUFDOZj@_pAglkMB
z5tD_w{=~F-pq9s0S3ZWImb@?DD&wQuLNW=6HM@Bw$ZyAhe@{ryR49_;#39ZbOIKn3
zZX{ju2+vBsW_)BB(`~|t+2cgG1M*XUrQjs?8fGP?bo&8+09l(O{-@RIl`_4G(abE9
zTV@>t8=dcsL+R%)F}lAlw3;qawh`yDM0{@exmFzvBQcmkYWcBsH*S~i^r$9FDVRK5
zVvelum*b~;)<3RjsvlxxjR}r!lo6zxU?Z+F*8-P%_@}h>wbVu0c06lPS8vigYl}Hf
zkc|#WDYk*N#;>kTV>*WEd!Nm}b$$Az`*K1hY*U3jPm?8I9j};e>fedk{ygH%b$<6p
zM4lQItwKtg`pDTpTKdN^)n@9{Z-0iYm&K>X#21|Db-nX(5g%pf^30~Ru#-97_NglE
z`)WxT6HYrR%C;`nA*Naa92p4L7dCKgmnK8jv$w~DIq`K}O;%0foy-V8%N1O{W*kXd
z*34nUNm^Eeoe6&Sxl<!(J-^uG(zzc;$wmpfxXM&ur!)Kkd$%08^V5|2HK6!6{g0Q_
z(_6-gWmqt8&GXJR+ZvXzvCq}){&(I?wL8a&h>70DvVIwa#$LVU;?eNj-v*d}R?!RA
z)V^j4$Bo;0yXwUzC@hNh0o!}j2-VG%$u=TQV>2&SwcFgvUA@+#kCZLu%C3(X5~**u
z1EkCSZ`aJ?5WA0H6YhE?&>4IRsuM-o|1>`Sa;h;2XeZig)ROnvg2S3n;at;0wHgbq
z;_-1*%}P@2Mcn`h7G6LkT}VwWV?^07j>TVL5=XaNgN^)%sYGtN7gB$Rp%E1#;){P*
zo3!v;pcpqtg_>(a|M3uxW=M;VxCf&h<B*kl3f-;kt;m$9n<a$ThXRd$XyIDucCB^>
zi}hB|i+$IF{*>L@y0XpcM8b|>%-iZk6kI|wTl`>T@oAc$xoOw`>@oe1)bm3<g3e=}
zY1!%zuL{(L^YAp^69!{*Rb0;$dtQ}cL=N~LJJ-rHLMI<tC>L+skNgmNcQKFGO$)_K
z>%fgb6ir9?Y;EL8+d<^z#5;3^!}7^4xIbBR^!JsFrcrT2xON|R)<O2yUuZ@V$=Em?
zk2e>o-nE%H=6}OLE-OFsXXjz8*LLMLeqZ+Is~~&<q?0ISo=(-g)%->p?m)4jjzP@k
zt5sA6prjvG1Lw_oD&SwQBj^x5=nhi^=H7#UL054gl~ENmqSo9YIi~*!d7InGx1r2-
zM6H<IjZ#i5rr02>2UFP5k^Mpzmg-|GVXdq}YM+4Wndi;sK)aW<N*OFRjY1>nKYVLk
zI84wxjzb_w##%aqVznJ=wh&RKLdk^!b{(R%Q_qk{l+g_$16(Ba8}IPXkzW`vyT=gA
z9XPZvkkzUG9$!J{N|fiD;?|)<@08#YP~(%ABTgsc=q(`PHX-I00wz?D?832GlZBod
zXl<Lg1ey{cjiJ!4SS`Qjh#LNWU^F6Xs+nY}!3_ZZ_B7$*l~N-)^Wj<(JXR9)QsX>_
z<As6B7_137hw+M_@P(V`Ru?wYFlc6*INuiV$v-PN!l1OOGPE{g;iyv*U~Bi!OQD%U
zcO+9{B2v-1QdyKzF;Y{rr%($oQj25LfYfPZQfL$wX;iRjHPmT!QfLhpX-%-{EY#_~
zq|n(d(m7$%yQ$NArO^8=(g$HPgsC%pO<{;#WJttjOjT#hNMX!bWGujDDp6;uNMWj3
zWNN@>Zc%4$PhtL#R)ozmq|P#y!ZNkUGKbB&q|UmQ!n(D{x`)knq|SDh!gjgHc8$$`
ztIiI2OksarWQSmLz-n+HrgESzabV(b;%IOZq;e83agyV3QEPC~r*bhbak1lYb8B$(
zr*aD~af{>dfHZhyQh5}XcvNtBH8gm2Qh5!QcujElEHwDOr1IG<@j2n}yJ_%yrSkhN
z@dx1uglPzTO%;e;5=g`mOw|y~NEOUk5-h+G`ll6Dqzct62{qsdw`d5rrwVs33ID(m
z8PX6LOBI<~5}CshUD6O;OBLN(65YcQJJJw4OBK6Z61&C`zts?bOcj4!5{KYOz-me$
zrb(bKOJL$k;%G_|q)8GlOOoRPsWpN0X+Y*>AUiIITNA{e1`=KdiQ|GnnqZkUFhpS)
ztb!}0p(&-4CS|ZJWr8bhp(*_(P1<f*+6h<2O;g4zO~!9o=094IrtH@=+1O>-L|nO4
zO}UITxtwLW0$lkLP5Fv6`Txh<T|ULtuIr+2pmA&5rEyPi*KXY1gA?4{-Q6{~1qkkt
z;O-Kf;1GyF&_GBZGT%Ape%D&_>^i6Rmt8eJj6Yyhjr)1(x_?*gvO)vCVvCkyM}}h0
zvf>APr6Db)u?(fDWu-ZM<s~iU)ePm$W#v!!DhFCBCmAZ|%PQaTRj;&E?=n;$msMf-
zY6#kD$eC*BD{9yT>Ui4fM49SjE9z7P8noIPjF}p&D;h5dG`Y1k`7<?zS2V>5v>@7A
zvYA?nD_W`q+M3$hx|!OBE7~RmIu_bGuQPS*S9F{SbltUey)$+FS9F63^uo3EqBHg4
zSM-tz^wYKVvorPcSN_>nWKfl9Q2Xz;qD;e{6~hnzZYx?bnj<h?(l-8QTM@yl1MOEQ
znXk@Q{?%5LY4W&Y0wXX*&@ugITM?ldo{kw&mKoVcGb%#!f3_8UG=D*8!L4KQd?@_W
zRzzqC(Xo`xvQ+$NsY+<2`Tw)6C|$=kJIglzqiqqPU73zuRhC`tN4o|>`xYJhjx770
zkM<u39fouq#<CoyK03@1Ixguru4XxIesugq=ydShR+Qy*{?X|>p)>4C$NBD-3yfQF
zh!W1m#r;bs4L;lX>8e}|)rF#&3s={54<#InNZk0$RU8$cIoyp^H;qHrZ6Y0xr^Agv
zolA_!gFx3qm|ujx!Gky3^^=RIK9T1Nx4X%mtDrZ7b+#8fzt`NAvwMfzW~xwtu6wAr
zca5fxZuWD-m`6OnNG6f*-L$V{wr^jHciEk5ERjT=w@;O~u&b`W=N;7tU3bT9|71<i
zkq)<~?*R+Cu7(`}(dmH|cklN*+&*Os$!7;C^Rr&?2Qz;5_?j*7*b#Im6GA`~QnKWa
zPMq|XBa~n*ar`dCcPSKeO@+ZHjV4EMbv0~{35{PbZHp+}vBeK2x|aCMK0=<@A9Bwp
zua~A05qTgNnT&VYx{53%=|f-{WxI+hAsK+kA7!B#9(jkFvPbnx5;ed(F^t$_ZkOt}
z8ATj503Z>oOB4}&&#Ri_^%{;cuQMiDz<UoVo;N!---iOQO9h}#kmQf7C+16DMUF6|
z>b$2q4#i6%;tW_twgyuctRegc6G%z;uImY0b`l@1#m4vhe!uq_>L&t*B%8qDMd+r4
z<0ap9#_&t}69}fP?j^th0Pqrk`Fl@B5&>5Iq#^-7UVWcJ2?V~q1Wh<9fGNe~T6%VN
zMxdt8CxN6c9|{g|3i5$ZVt=|-G2(AYfW}@zzFrn0bt25{KFfc}cgi%rtCO-<z+2nb
zbHtQtIwuP=HvzT>xX%tN^5w7hj>%u6+LuTR74**40|;~_Tn?lh{iNcPC=ib=@NLO8
zxl6nm$TJ~I2)x6%7(f6@y!o7q`&$wzp({4m*Z)eNziKT!{oaR)8XzT+#Jx+!vynPS
z>`_ZxD$gBlvX<zg=bOAw(5Y7@_&~)621u+%L%Mn7Nt2B3eUNtx^L<K)9ts^5f~-jS
z@AN~J^?aR80hYdRxJ?1e#MSParHq~7szPyHYw2@()!QiL`35|;-KnK_Z~zGeG$BAK
zF~DiJs%?XhY%P>Tzz?~<9ytV#xW8VKC~RSar%awyzU~fb+ArfPDgXENP-&t@g8Sen
z177_cRk^jsLcdbkswN^b{uQAhN8RT2j(6Zqo`wxSO}&;r(v~UxP=AJ2akAD&eqY3#
zR{xe3Tkk~1h#*7ZHqDmiz`JIv=l}O3f02-P%SPV&><(8lUgSql^i9qPf6rL5&e!hk
z1KHA9{%Ll?U7?*VwEQyU-af&?-4^LCMEsTP7Ci^!E@0Z{uM7MW2*3sa0BrwuOOcR~
zNhqiZX;{EuFgc$*4Op3m+JHe&mRD2?40Z;CeZh(}6!O+o>K@F}dMrv-;Ag;8-R=)y
zN&_|kgI&SkXTa1@5$yc@JOieR&wwddUO`bw(Lm8a-#}5xz*y-SFjX>kRx<Y0H8xjz
zK7u$n8vFw=^>_wMpV3k$rN7ao-ha`hKE9q{a4HyF@|Ro6`YH@;oCQ`W1uHdy|K*l)
zJ-elf|8z^0{^6DyIYsI_q#5`o82Dx>`PMia{|C2J^v$kV>4`x|j%G}&b6BQV_<u)B
zo&Pgh`tu)X>AHXCfz{k&GBr4Z#vnr-ob3dzG5|L@f&Y${_WWnGROx@9rQT&}zW-e;
zjsLq?>hiI~;BR87&wmn2b28!*GU76F(h~lgSejean%Uf0nwwCX`y9bYXiBK5EY9gH
zNocOf`rnJC@g3_~^<z0LlbPM?Nj>{D9sd+dBX)jg4IkxBUFI$Rh}!#IHMIJdTiUv~
zT{(I9H@9@}UvBB`-`&!w|LT^GzAK&lhg-V*H@9?bsCRj&X6^sQE#3QvTYB_2xAbAZ
z<Jm2pUOyQ-eVDm~ZR{TZ%`M%0Jo%q)>G9v((!;;pQsjTTrGuT%Zs`ELvc`XROR-PY
z{-ayEAM?j8P57^FY0tA;it@)THTz#~sbHz?vs)_lPq*{~w}n2ToJ_;uh#?HOZF=L6
zTZ***WZ}MA^~Wv6`ny|7{a@TthW}%?wDJFwTiQzV$1OE{c1tA@|EF7;1+239FK%hM
z(z9D?{L6JG4B<bzrO**7N(1N!1ro_$Zs|NiX7OSiOYtAK6j94nfweYeUq%w^FSqog
z^s`&K^uOHF1%wP!i4<UA>plasKIL^k1FI3w2@+<>F6v)yDUOG^Vs_oKSsIY*A8u*i
za|o46>kxqP?3ON|7S=V#v3LRWL(uRupWRZDf4HS3f4QZvS<9c@QXDikVtlw~x6}jv
zk6W6^;`t6gltJcg*t1)j`ybp=K~w1_OY`OORHrE16UmpwXQ3EvSRPW{e3gq<yp`1c
zsqMRO-J&Z{BLVP0zt0PjD1c~FNl)#N&A3itb+hv9dXM-t6dez@NtTjv!xSHS2lGp)
zL`s;QB-)3wM#+aCkI5h4(3KhoP;|#4BpJqEIwkU`(w9l>U;e<R!$XrxVfz`w&}#FW
zr=?sL(#U;1f4pl;8Vuy+UB^^-!Ja2*s|9Rbu_h4(M4^73z5=`gI<|=~s|kbFko9vy
zUKpV}CPl2a^C613I$ya;2N%NlBs88w%u_9j?&&v@AixkWzlUmu&(_T$7-Wo!s&c=0
zgTnPwe2>l&u;n^c76ox03-ml7Ji3?@b;4Zs_GmB?YZad^uoPVVg#lmWM@WAfF&|Cs
zaRu04@aA8&`R)i>sdQg@kW^mhPJ?U5pvXU~JE#*_P1W@f`Syy4XC$^#F&T8_D*Rmy
zTYJng@dttEY#<p@?3i9FCZ|re<d^*4bB{ohBG_-U_u<9Pu5;XS8bbUbWYiFw_1at@
z!FB15b_zAiU<&p)BWXZRqK$2}f-IV8Ld6~em7+h;%=Ef#6ve{k*D3CEFOPVb!+Zo4
zk0MIoM^HDDX;f+Ko-oXMY_RPT1jhGEm^WXmxRtDRLIBLqA1_o){Va=_?%tI+y^4cN
zv(PW*-WFJHrz9?Qu~AiDkO-g_W;t$T@0A?K&yta5{7p-Ws%{SIX~h!$_!3+aOFhdn
zK3XzSrU<E(g%{M2EBQGT4zVaidEr)EDZvOHV%-rZO$9LiKuCjZhC^(cS|M1R8FEI(
zh}S4mp}<A<x@%dy1v#NnwkAcv-myI-jd-|^;X%mY3h=6{LP;zx_(iW(cAPCCn?^+D
zF9A!e7FSMor*Fx~>K0sgok}!67PI?#VqQjCPgYPYQ78B+5H}%wK<#c}$Zb6aaGkb%
zimjxq7$+cn>jg_b%eAF3#v$deqYFKYwI=z|s$}<jAi+qqI6@T~BMJ*u4g9fGH2QOl
z>m5XW1_y{Pu?*Qv63_rMH`!3R_X}XEgSvB~N&}hXK=6khY!8WU=)BPsZqSIYPqf1D
zsMR)|>e1wh{l((ObdnyDDuOwacoC0Lq{yc7IfTRL+*-0ivMi)-yAxV1pbde}IF0aX
zEgQDBad)7+NM9Y8r!-Yo05J`5u<3?Id&cNp_e+Rh<5%k6>ZKfHxO4e-8D+nTfn{hR
z+Pn0_Suhu*w{(DoU^eseJD14$YIT;dI?qh0&8QJHYV?vPO=>iORB;i76k6aomD+i#
zAv3)G1dK4ES*nLk==+30Si)|owIsSs`+9;^V5rMy(+q|tROzraE_dXg><bb0Z`W1I
z+tcgooDARQm8-Sle+{VeIj2<}oJ@aX9d<76$0}xEKAd%|_6pwStYfSg66+`_N842W
z>K19fk8nak9C{Tag2vu1BjU*7kFa{kSB~Uo#%ip={ZZ>JE^VF`R7<BrQFDEfrM(>a
ztP-zyiKU5>f<ulAnY=!B5)s@4xR7{zHqC^DLWXGjk^~Wc4_)`L1;{x=rqXI0PNzA5
z*;FMyYYU>sBAy6gcYeYAcG>PDe)<W8K_oU8;-J|=PaKeL54yo!a<ocquMEFXz&sL+
z-wBhYcN&+kAv^rRa`8sn>nLX`VJvD|otJpP`3<J2B2xQG<Ma`STgKW+#IIcMr6zaD
z{(=)Yp0sIV@(qpAsm~?&S&^sga&Yik7NJ@MlgfmNB{+*6itnl@=fZwqHMZ2L_XvTj
zW|=}M;8%Nox4rJ0h!gb^NnwmZ8qiN2dq>v1r@e{44C@?iS(bD##2s9tE3C4)J<<0P
zvMiaB|5}fufwV+8j5HTk4~Za+R>JnDS(9mmgphv@)~eqY#aA|9uZBcB2yEU=HEYI*
zj<cex?h3o3bO(x9IP+WX{njg|{4SJoa*yDASL~h)aL*Dh8wY1;$!1{gTogqS?a#qz
z6IyV>(4$m=?<8hEjbUScg}(0QWvP;z`mR8uI4S~WI(cV9z5Tg#NOO_4L9j8m*|9Jl
zX~pw5^8j*jw`<4zo?Cl2eb;tM7J|{Kn(qD@ZUD}{CE^%<E+TKltl&nshzLp*@&EzI
zz9A-H8|T?A)%eRTJ^JI84nDi3NT0B9_(i!A|KXNib9CB-W&8APZPO@hdB6Wad2?E4
zby^|m*N^#_JjD;(v=HYR!G>R5HYq%O_{`rReej^49VAdH8PKQbn72Y!eshB~1;qzo
zZ0kpGQWTBD3pJd^gT{FVRRb<%=N?gXH=<gJy1ysR24)6y|FmKmhj|{Vq>>Cj(2#L>
zR-Uu++z@T89~Ak;J}>{&(hh(8&LDie4iQW)w|?Bd#m+<aF3%3YDv`yJ#mNHFwx9T+
zHvQ2{<7II$WkAQsHUv#(O)G!&(&$m&<UQ<w6TvK99BpLJX;~5eQRi<R{!*)92>rx&
z#T09NKKQ8w4i(VKXltn<&z~|u2z#DCWWtDZ!cf%1;f^ha+;O<6Nq6RPrnH0Wn<AFI
z{YuTktM}Y$_CmH-BbhG)`8zxi%={x<0tz|=nFIj0!%_+vQLa2urRq@xP1-lv!54f^
z9|(gCuf60?txN8_=NLRxpW{`jfqZQ?0Wlz=7;={i|6|w)CAtmHKA)F>PaxG^=nKT~
z2e@#A##lmE3R^vw0I-wlSXkw$)1J0#M;1OH$D&JDMobU%u<%DO4O`|fAr6agrLMDy
zUAx1+w<ayI!68M7)VFr`7l`!ZOwiG>>$Aa0><ogOMlS2&n&u>!pDGNr1>4FIj|%|W
z$D&+qaE?YzH)H&V?xXO*PR?FDr*fdR_CI<llAKS7T*&+_Htm|XpL#N;nf-W45@3V`
zXcqszGrDg;>)F>lBToKpg`1-nMgVpyut|{@NKg$&h|uJPMqAP8M&@QkO@cw~?Y04s
z6q#14Suknhof}4n%YrP9_Lvl^MjFvxq9iPa!rc>Bs3p8ACQ&|y{FN-W@XvH4vvk7H
zbbo>Hm9-4YREbp|<@GhG*6LtB-jHObq~AH7&zPz9=Ohe4cc(E=Uz<$$0j-W}R<9Iz
zU^anRuJb23_pO^O)V(Z?99st8@DQdH{WY?Lg;eS>N}DcOyNN71oK)C+S~;zsXiEwn
zr~EHIw9lhNHojP)_tEpCe*n|RXTY?C+cG!itq+&oh>HtvVkWIB>V7T}T;4l~$$cZ%
ziUgVm0G=+DAbcE0oj9WsKEGK$zdbgYGBy%_FV7z(M<ura6O1LpRA5#eeIc2RZk-W7
z5oEG1W$f#}m80I2<6NtgW%`+{8D{Z^FO{xwED_MAM0Nb^8?`~0lJAi{rXM_Tt696t
zaGzWB;7j)^HT<B9=g9ZX)v+6GZ0@FS@h=9_aL=sL)NJIt)R}SPZT)Ow8`4A5mycaV
z)e^xMa3OE*Eij(-QkNo<yb`1~^4c0AB7;(r?vgL+fb(I|<(KCA0wuGk8D?GNFV7UY
zABuUcONb{+o%Ty_CK4v~6OjZ&sN%{@ZB4Aaqtw@>7WFmGLkpJlgZc85H%Q)m8imk@
zpmpN&ziy9?Td#1fk=J=!k@u6)pQNa_E4r&D`$kaW=!(;Xw9<&X5<fJDQ@^kP<;_~G
z8DnYH21Ay-ZeC1OMVf4t5p1YH=CI_XvkE*}T^Wvo^H7{&$D4%4Wi*H-SZ?*BCVy<)
znHP#!_)uf+S)G$t18J!__5Fuis_tAp;ip4nC!-}X2dwa0sL~hA#FHdXE~y<jd$XZa
z`SW9%id~fL8k}-5s+biv>Tsx^Z>4@##cEjnZik?2UgX94n;>S=0G@ZxZs~c5E!JM$
zJPXgFL7oFag}$uguua`yHDCL(4XtkN2k%-ZgFk5LK7-=1P-DQd*(={bN`c}qpze)C
zBd`Z^DvcWM{P`sr2@J2ji~2Ra688)zue=@s?DQ$7iIkOxg1PBQt_fk&EP$kzgBA2-
zN17pv6I$gl537k9iz)`j)S+;u_xpu>F;jhbXfb9<V?w18&-Nkr!$C|@x**9u`&_nZ
zP+vkCE}oeY68hXB2J&D6vGZ53EVSa#*L<JMnL%weB;mWZGe$O3{3_tbEsVoEWlXLJ
z^0>p!5(0cob)k1{Wc4jf^$txsZIbKgu<yooL<*Nz@6gD%Wkr^=@W+YuuOV@zh$hRD
zd1#g)YVm_>rm|_V_6>bw-}coux@9b=Yn-xls*YqN<LE9f*)Ij5(JWUOP<&q?s32eV
zP}!BAMra7~jwe@6ZKqu&%i?KeaqXctXb1VVW19Kvb>-SCy7~Jj-yC=4jvM32;au{8
z=1|B>Vay=Z$BsD*`vm_o<jX$ZrWg|9_aDxTUgway+J?@Bm6le$|NXiyZz>Q5>R5$q
zZ(9q}B&!CxQfT{zme|NI<iFQJuKs4$j~v_IUD=sxXL~!ATp<8rqGtU)8vGGGyF0(S
zSFsJjH8dGrG}XTYD-U$LOt$a!zGiS>+AAt%B6cV|_=j!`F|(hPwk2Y31;um&iy)3b
zuZ%MC`xLZJjw<MQ{QJj^2J!_u6X`)baObE^A+o+_Fyja<TXqWi$W`@+M?((?8;Fb{
z8q+oOS2y`LGx===Cz4;$t<|IZIo(qGqda6|X1;A4Ke4x2LRE;yDob2Z7u;@8+o*cq
zAix|dwGFGky|%wQH6BO*<CeaEh>n<c<54QMJ`a1$9!Ct#62>UG;`K##9n}sH{OL1j
zbsWAb+1r^t+`Jjf;oY(Mh!YrI-%v1-<~N0P*+8U^qqVD5st0Pn8<m~-gO<ME0`)tv
zgp^DXOyjT%k4}D`@<tEYXTa{U&+?m6&;AuZs?f6{sp<KvTuP&F&tcfFE_*5q1gAJ2
zde?5$hLvJQn#~F#La|k^t@y|?*he-GZ{}YwkTazoQ!ik3DH(Sf2ciTu`K8WX=|<qG
z4=r~&g}{|`5e|NnjeDOrv)VC(Le$az;MF%e1;i<+VVL^H;;Jg^f*A6`;Os3utk4y&
zWU*{L%rIN%?z#t|Uke9HNnR1eRn1f1RF2uSv?aZy>ac_rx&*eJd0`06YAr?zMPLj=
z+Mcekn?^C&n#JeDSmU%wiR?ag02x26jCQL<DS-3>hY`VA&s^ys5K99B+KFsHUO;#i
z)uR=Vt8`YMDAI#wU~ypCM;2v{+N2E6rS7K;0u}REr>&kZtxln578*?xnfbf!*>EAP
zVM@k@8?HRwe}omUl)s)tX+o6Z?ra#dL<|KM#_OY;zi%Fop0jFF(6Ru>EM9;~8<j!L
zn4|TCTZo)UXhKsF?4+UncHk`9!;+DJ-K|n}6rpf;62~oI=vKhmrUVRq3zc(gTYpC5
zsW}`~;$65_bYuQbUE&?SCJ+wTzoKf6p})AxTp%GZ4<J6NYx&}!eJT2hSUdO+R64&^
zzan<61VWcpPs5W4<b_Mor+LeZsjmSrniuoio|~~M4q{(3{<R6))kYjZ<o3YQB(TtJ
zNq;3FU~t48+%ELR6PUS@${@u<$YDpq!IP}~ezta;m{a{)Vj2Ml*l&g1__FV%&jGLJ
zj)atGf0_Ke3yqsL=-rXtOBogS$UPqE0t$mo1tr%ael1NA;-7)0sIH+FEQpkvAeP_Q
z+F~Fh4xU$(2lsSK2)lp+kOsNBHuNW`DShkBw1=+dF@lQ`ChXx2%u}@@<iv0G#O8_3
ze&-l?dF-l^W;B0fV9;|k6X>j>?!!X5G_zwQG~etlcPqkU|8kEA&S)zG@~Ke@YHwO~
z#5R<1hCF)4YcMGVk)F2H$6BzET2iijhDsN#6`!Hfmv3J6jZ-TXl7IVxZvdHxerc_I
zQ+JL1UW{j5a;K64T1>~|9tawzgig+WAvRl}Ou|XT*A3(meqDSXWQT((7E!d*c%A|&
zdt((>Jo+u^eC80uiS<qK0DDP!Q!Hp5#dQtlB9(Kn<fn!GRTGK;!!FXgK!*7rkmSEU
zlq<-wXugsc{D)GCFb5Unc}7aVQM6)Fe6U9HQpJNgg9w5zThcEP7upJ)W<a}Vk+gWK
zL&op!h!^z%?H5I*CHxV_J)bOiKX};uAS3|vQc4G3`*P#{`2B_bjTlcH$Ry+~zNgBR
z0Z7ACHg*}qKb-)#FWSCg-N7W-vB8n=Ov05m*{ukK3&KbV-~GG*DgfNV`USAmZ!0yi
zZRT*!ur~Nf${@6ulw7yLYr_`zY_G%sqD5j7bM5&<++h|%r+rRx+848p7RpU+qYj(f
z?SUS1qSzDKTd%Ctl0?eBgI-;nM=d`PaS9mGVnfAFMR6aZS{0w0blRMSeuO+S|9l8U
z{*}b@n3pgu{NWE$TGyzFs1DCX4y=DEqzb#)#cW~?SVr@@0BOJEmaq9kl$M)vGQC6=
z)j)-xv?~O`&fqJJX?`C%|8|HYr=4eLMg_e+#-P@l-<1r<6>2lLu^V~5G-aaZIhBy9
zP|AHdkt5Nxi=ad-;ujI}c~CCdKu=o$#Vj2u14T9^jAY3aRfERDps8)P>TNV4{d_KQ
zIvR`NhC!-=ncDgX89wxa{xxPz^n7G?^W|~Q+A;Vy3Sb`iw+E|m8q=jWHguVDo^@x$
zJZcpThB$ibSU%Jij4V-gUkcduq?`wpg;2XAr{2!I3d1tB{1Q=9ql_IP`zm)T%l#vk
zHdk7+yPI>SW|fp<BXe%^Q6CNTbt`Nb-c4zpgmayeSz22?g9*S5tjO67XUM}juACub
zw_B;R=$_U3={61OXmdW<*?xTXN=K3zO?H0yUL(Xkxo7M=`QKmm&8;D8|IIB0AmF?F
z<(2}S4IBEN-BPt)uHQdjCnEpdExmw%IE`LHaj#maYbofIs-S;&OMf{(yQNV3J`X)o
z)Yu1xW!HbZrEc;OE|zX`ujqcslJ26x!;>(V`Tff+9l~#sza7m`CuWA#yrziyh^iqa
zHvKQRROFK(cAAKM0sI>tgr_mmqX(Yrf4Ze){%X=fGQ0s2>2G%5jwZ=*ul&m`g%EgZ
zX(;mEXlZF`dur<#{_osU5{mIN0C6gP`w&8g^5VMHAGb7P7(@#nR|*=6&GBpeC~Z$)
z+%AGT>{BX&To>sjVc&%L9pH)WX1?j#!*;g?+a<8r_Is3OGWNr1)=9{DbDt$05_rKc
z5`ITNXUI9s4l;Eb3fJ2YLwc1n5%qKC`+g#XBgQ<AN2X?v5Rb5{Cy5GcRU(Z&Xq`G;
zm#^6hCeiM@mxKLwoi+ofU1zV*c}QQR5cSK?o^sTOu2b^l;|5z;b&X@kVYn<>H#D=>
zdde_htjwUlb_l^|yQ=REjssxsc}Wn(PeK*m0yFFufc%3}!1+DS#se*?-|1fHS1go*
zZw(?zw#M(lL1Eu}Ke$t0P@c7uu@522lG9JE=LPg21HYSHrRF{9x{o*tQC|;enuvT`
zF#b+Xza~#bQqn|pvI@71UPQ4m2R`3AXl2d|xL#lP+jR*t?htm`To4MnMk$D9yE;|3
z6Z8G*{r#yOq4;E{>?^hgx%2r~%1>oCvXw?*XPHEz{#SUfpF*!Ef<HW^>dF58imqR4
ze&{Q)j%3Q-g$Xc6u%Jc|?%+kfFAhZ*$~imcmE@$Grv*(F!Qfje*)jMUU5Fe^@#%Cp
z!hW)uBYuX%e|ZW_E@=!`!9!Shk2?U$i}%NgSp_(Oq{ytTLNUpU&*%gO7;WaMK?g=d
zr1t`0axWc#6Wek=r!T4C)%``uOEGceQdo6fvLX#-Z`x$>#)<UDV&c;((CrSQK1k?a
z<<UrCNem*fxYCINz(_YJVj^4@$t+5{*vN#D4MytvQ3<ri@Pdt!Z<<mtpmdVQ+QWo=
zAT&p|akwZOc04ciM8z)$Kw6SqT60hw>}(IIO|PCn11AaEN{I#OQ~)qk`+Tw`-b0#i
zlYLmAmVBf``pF-{8}%{`bY-QJq}M^t=Msg8TFC>3eH6^3D9(5>TnJcq8>Y5<k=tNo
z-U%R_(IlkH6s)6_9u<`ICOC8^@MT1pLmUj(TFAr^evOrFt3oGZZ8NrBA&W-*^6l3j
zaSI6*1SAR##+1cxFfd*VQpHJ^iSnd9>=Pn=aBB);ad*X|(33_TTtHBHX@SgYP1zHx
zQlGdOPUJ`_ulS&$f@NBGxI8J*HZf0=H&=-;Lm$SGGiw&NmxC~`ixw=er5cBoR*JVJ
zsn$M9H`sveGtI1d#T0sUV_L{y#bEG;gk(W5^=(<tj_%L{)SmaMhS!J*et=ZKAFVEv
z?>YXMC)7#_rLOa-qa8+3?4zt}N~5$b#)f~?fg!z_t2cBs6-i}Yf-9akP$S;{@o{}D
zVD?KHd@G|lfg;Y(#uBQin$9W`VDKFcFlkbO$(qFW-7Jz*Vioy5UI0L+X`{sl{MBI#
zMKRUWnzv3&??7Yb<YRwgCe4G!7rVmzjZiCIrz)!=!^C`DVT0Q4Ohe{@v@V0=ux#oH
zC3C+P^j38S{tk1;ciW_oYyA|fr3Gvi*iIn0HT6XwNUc56_l?cZJGzZOwVl;7b=2a8
z2<T;(i|yx_%)HZdLMYv7?y$O7BYOE;%~R}^W;d2d{l-F{rw=2zcEdQE_Qw6ENt|#Y
zT%;_4!K|lpa%QPPFF%4b$^|wVaa{elW!Q@TRY7f6H|yY2P<<06!Vg911aq>Wdsbvj
zLr2cKr7v#ZllZ0OQU&#QU*!81sql?UDf?+KemfeH!QxCTVpSf$&Y9GG*J2|(ZT+~f
z-@rTl&MH@7Fi!9iRp?#wr}@+4#gVRFx}Af5pD(Y$V>c7jK~2;a)2~VG{AQxOTtY~r
zmNU#r?Qz>(e9?~=bK=aJh_Kv>H67F`k`IRoz-L~hI`)LeIjfj5<Iy8)t98^pyv41k
zXs<<wjnE^fk#Z}phy`qz9MoHtD1S`6qp)g~*i2liEUiKgun+6!Y)8y>Y$PK+3%4Px
z$s;%r45hHk4a>{ydtXQFWQqrp$!~&raZq$|W1jZK_|xUpSHD+J_?C|QIJhnIwO>kh
zKp}YHt&PLl2Mb)6(8=!gX|E1q`b1oTkDTRqe7B9Sl`Ye<{Uq`Tjykw0hjoTFH;I#D
zM_>h+?n!#PDC;-l_v|7lQ%ff@-uE%D6D|UGe2S{yJ3QaK+0A$*9Z&G>Dt-8Mz&yL;
zYD85b#`^Bk)v(qbJ>X|!c=b_^3(3|y6+5JsX3q+U=zyxQ`Q{zRUU_tHI6ClQ>34Tw
zZL-l<q|c8{7|vJPwSL2a<U%=C4;}q;ne8@r?JG|h-tXgt4uNy`_|N;*;eGnYPx=r2
zB*dFlM<Oc?x0U<hZyoZ<30AF*VIo;wOO2k%J0o&fPuZ^DAAU(DEFV7pd>*FH*wZN^
zw7hwuxWC`vAd3&0*yfzjQ~hv(7iaj&(S=6etJZq`WAL+L#n1HQ+ng6pFUDkJzX{vA
zJd*}PpsL`}%r&hQMcy7(vDqO`r6G}2VZwNW_n#-<cbAFb=amL26cwqzAJ*@KC+P|F
zD+ueR$rKhUjOP`iEh>`yK(<l0UE8$dF8r<Yy%yQ~jVV#3rT%Jk{>3Tr8e#taCGpiB
zamsShaDi$7k2rGcK!`pc4^3~XO<VDK5!p4@D67QAXWk(pNuD@~_Uhb^=-7B{BAnxV
zROFJh(*uF-ENsyDB3qW#P!U)LacM(m@dc!eot(X|YzWP5VBMmdHX#;$keGD1ALH`}
zHEzPo%@6CTedUk5JW5i`5%j36tOQzb1IeUjZK3z2Jfd|X-j8K{oD!ULl9!9`amwC{
z6tHrM^mGeWYi@Pn)Ai7lLp198iA6f%SfFtsW$U4Xz4;|MJ=DtOJ#PN|`D=MvKR9zq
z`WxgRA^|me)1)o6Vut5}ifj;dk)huB!IIpPN<Vn@f*vA^c=YB1_lJ?(#bU=VG7|V8
zmr@kSAkjQ}>+|Lt)faw^U->S;F`Y2zYXiy3vf;=_u|wQG1_(MhpvItf@YfW_m>b~S
zSH__(f5`$JKP@L_nhA#5Q_RLD93s-=wAB_D&>UwsXx=lBE5s*QFeb^05@0YKk1v-m
zK=V4ccqJ{wRw~9H8jtQq7<eg6`(=FRYQ)*DqA+8$;c7S`pvyOHVy!7w^+)}rt=z(c
z99T*?wKX=(gFiB0(!(QV|MRfNc{h^=uP@tVuSNe;Ph&*9LUzH+AmE3uOhR~g<Ib&8
z=|2?i!V?OA&?dXed0)}T#D=w@O}B-KO}TT}0A+LwdTQ`T`S3++3WlE!=!}M$Y1m#2
z^ePQ3NM%43Gx4dX@uxqcGiytYfm$I{z5JD1awW7VAcOijquP&U9HrB8&BLVS<n#;B
z(t=4v%?-r`AsSdqxpXB&nQ&Of<LyL!0QO^g`wNW0d)ApCBi@a3YG9pm(ig>@bm*t0
zB>PDfVxy6LkM3;vInlfdau&|_7&39a)#Nm!ol4?71{0Rca-$B@4_l1lTXO5Q3Sn;{
z#>4!#_&g%Na!cYEIO7024s07rQ&CdP!<x!2tn=i9#K^n~St65(k3zt}YW^v@D5<$m
z4pSqa+bVLgKw8vS7+^OgmHXW}L12j@Wc1>2TF)Z>L#nD!0%IV#3{GYr`OPc|uX;>R
z<GQ}g50X09wAyPn`Il&F7(XiR4#ko-m4+=B-}GwS)D44YggNt+Cd<{~JT$_{)Og-9
z+#VL3k}|?xPNR_<Py4)`-_+A6<XnnJYt^RHJl87OY@I!DeSu`K^jT^VRYRk#mv9ce
zfQKmm6=xaAK%LMN+Ykzta9jjN%$_RA>qN|DEzj~#%c8J199}N;<ja(%PeBQ0Te$l)
zzb2vd)5g<C=U{Y=g_0Z8uZ*ulzuxCFeU%(hQYJ}MOyClxa%4HFgRn{~?Y3xJ&5+sH
zF0Fg;Q|W!Q+D2E^s8u;yt{a!9qEm%U&Cb+<ZM8oN_h_=TY3Xff+9|WeO~vU%_Lloj
z=hZf9Z>zN0=+XviT{VshV(^-Dmy(k!QZFy-8mrkn#npu?ea%rk8G?3{E2_2@_}`Ed
zv#-H^ZVia6Xzce6ht{v@8Yu;{DVvFE8(uHIke;TcnF$BX4*w*<f6)7G^I?Q;L<678
zX`3;-J~!(tmO$n#x-rzF4>KoI4?%(Sce$u*!76oMN$iL&>~xqlPwN;s6h%T6GNZ+u
z`O^Fe4Z=c$U8m=e*vVd@e6k^>F1@CODU-c|M!QT+->Lv_thfQ4{lIJx?w3bD^1jYz
zECtiBQ5oDdG&hMMSUvM0VPun~LMKd{f@sS?_$aA8v8O0@%`s3X>1G|Hui(v7MH{=g
znz23)i=p3&k)Gv7!6ieAyXY_Qgd(O<BEeesqh8OUt_i_H28&U$Kxu*%9kIuH^VeZm
z3@@?M(>S65i(8o?E!!3{X~pL$ot`JHI=WXuo11_yLvSIqp^tMnZaW{sUp>_6<4;i$
zeR&^8@kW2TW$gy~{c7i81M;SR>*p{1nOdV=ify)$$%YVGdid>&f=@a0+m)C^_`hV`
z1=s0C7HZlyBKuk%>w3IsN^+Q*8+dg$puA>=#&j6{C=ofW^*yySbN%QWy)E0?Wu_ka
zj5BY0gU;60XEZ@#I$DS$_Nb=)h)YV`O8NN1DBNNi?56Jn1*Z493Tw*>t<*9c_O#O1
zT`RVR13pbT>VcKP3_Vb6z6r|qPvu8uWO4iB*Pni`)l6zKvx)TpmiIp<HhKsN!VD4k
zX5hi!Y;$%CwlyDEqY7Df3Uyz;$FyJO)i+wz&~B@Y3tN^fF*2+cc+bUf{xaHpsE4A|
zLxG+%?Uk5=)?@iT8H2WvTc0XWEyA>1(~{=ufJ#bboLeOytTJw*tWV8>qS8LsN4pv?
zy5;V;FPRXlHp{jmZ6$+0>Mk^*B?K)u-WGXpJaJ@xabG*|)S~%*U#m=wp5~yX&Qj^1
zkl>L=?JYm!k5Hx+w%2=weRA|hLN&cx#-DRnX*Nx-ri#@lO3~~Tf>J}o;>tG_Xl!a~
zgB6ZU465jd>h!xgk%<`z-gSMkJMrdNC%PRzF0lMK(^FDIZMgX1Lt1z5FHRVeTNv7p
za@)~KMm;f9J=*bImU`mSLuM;lj8iT$n^;QXxOTFXS0=hDM(@H+8m3N(4^HK28<K<i
zUd_<R84!8$ZKA&s$bT2}hQa!`OR0$^q=*k?5Wb|*^?2yZL9|;Ty!{KrZSBsDy)%fd
z_;wvF?(1m!NnH*B?F|Mq5m7qQDt~)s3^a+hH`F!@=DAyTQe~<hJm-v3=jRv)a#5SF
zw&_s`I=9HH#<cBj$;-3+!n_xgfS%_%UPeHn^AJ*0A>Ix;FK9NFXwI#Wzk-9IKTUIx
z<wW={D!UCBlSXj%-5kT&Zx=oxaw&C82C_l9Ro*xF+G^-=4Bnqrltw?p`aq6|D~^rz
z&tUb=Ued5lSlA&PNj{obta-J?+3TD%D^@(_rlnU5#!ktdrMt_YGWI9l9}l$4Y;bbV
z=ZeN4Q`<j}3ME`8an+7-Vf42g;$M=4ubqTQNu{`Moa$<588m6J2&|)|oWk14gaY9w
zSe($YrT`sgD}2erXVg^Gs*Tf()D|{Cajw<dB_<#E<i|V>1D+n=Fl~<pCKq_wmAGCW
znb^10zPTlYR10o>!oxu{AM?zRedzFB$J@0r=3SFxs?y{@lu>=?Fg0jJ;fawlbI7tM
zCTm%211wm$Tt=RneRKI4U1<6(FU<F48byzj*X*c5++2dfG+10=8CFG9-!CHLoo9{R
zXxx^O0q#uM0EO$UZaytCo>qS_)iKLeM$j(Fi+ThTa?hD}qzxaGvTR1yZEl6GkzfQ!
z!O4b4$({wI6Y<x`l2q5@6iP2}le;E`_O4~AJT*E}%#f0M2-3Cq@y^=PwO@GZC3`*<
zH!d2R>UKDB`^pOWdg_1oG?7i#l=U>i#(Twx``Z&r7nEiW^R#yM`c`~nAb#~i-;1K;
zi#VPcM~T<#PhL*C=87FRYE)jdx!n3!^<qSgA`7=p&u*z~iKVxTYtgOG2a-fCe9zb3
z0p4Cd1Gm=_4l<W_LV|#u1bDs^+>kl%h-bG{miW-fCpy>%7L)7~TjUeh;1mDBCt=Pf
z@sm%|cb{aKPYSkgDwS{A3*Yo-w^Y?P)5JH+**81bHz(OQx5ziI!8iYpTk2c*$@k6w
zm2RmTC!k>$3ppjGkQtz2gCTeM3H~%<%qIm{o#FX1lI1c6uM=yYC>O@8h8A@i_{kYj
zyAxqc6&t}OI+!UUd=2q&7mM*H+7T?u<T8{$HH{K3lkz_B3vv*@59sB6w10IV0vJIu
z7dPxQ$ZtM@{33{I;weQw>M|G>yc^XckPM88=HiSw)=hboMZYsieFYc83`3eUv_jvJ
z;6ot%yIXomBa?u%h56<5@<80zkt>ajBz5|OKY>!SgMKY-hj#z%(^Us<#blJ2#yf|<
zyQPce3fWwaXV<nv=CIRxJFA<w+J@&gUK#B?lD)x6<O&q$Eo|~NpNpFvH`@VY{<fql
zW-CkVJG}_~zk8wx&W#XWfqrxI!z5ow7kJ|+wsNXbL`D@Tv1@ImAghk%@w<Qf@{{{?
zzLZ~4TT4BxKItUm2QP*87u8mhic&Ji{HFAXXQSb;XVe@!;)c+>U8Gy-IGvf6d$=H-
z|N1Ytw2;Rk9(4oLBk>xgW~gDNJtI+lkQsAz6+zlIS<wGHfWUw)g{|xLLFxDCe4FAW
zx$Hfnf4QYnR<ESVl<6rUh(_wNGKe1FF$nJX1t=URvv`7~w%U9Q@gUVw0`Gzo2#Lkc
zeGYsw8)@~&b2dK*H>+Dq(HMvYEa4+?MT;l2-!|^55s+!|z^CdY5+B+^pViSM4+(h<
zV%RdDI;sL6>^UgPWi*k3pnKYRK*6qpFNqEcWrko78XZdJa3-MQCkg#HwSY*N^O(p?
z{%X;Ywt7>ekjGG{Ho;s){ni}vApIO}#V?tk&@OM)$H7SPqaI3a@I_XKQ?}eqaUT}d
zk|229jvJSNHYvnf-?rgr7>zHgzC==uCAXk5$9_m1h;cNj2HzjTqb3^4=J5sE`wJl!
zVv4abZ%RFpE(=8*PfKnm{>YE6OLfUDXJw$0!7le(z+Ervc1y6I^(aUSo0?#yhplDH
z{8=4^i#}5AM--k)v4BnU0vLC(pkE=HAS4aZFgYk21jO{1D!wc+`K*q%o==Z45J-G$
zKB<KDRCt*Y*r&pqk#MCB|I!IiAODqC_O=}RbLl1o>3+~z&Q8wqt3Lv9ih-;{ug1$3
zL}UjZ$j7$_wT;-@)Lb97s{L5k%;H7))?2K+7qBGw@6Mq$e8B2hP@)-!7}Wv<t`*la
z2Dd~rLYhbPOj_YuA{4>CLHu4oBt=0V_aOy-%X4^6$kY39j#S@z280!i4gDz;kL_25
zeLJbyczSGV$-Z}p*|;Qbf4}=vB3dA$Kag_I!dLb>0J9p73~wd|g61OnOSQs3qw_S;
z#2;sixCA<v(;3{_vuz?9lOS8XnI8iY<<EFLMnE}S5IH9oSL2ziiCFw$`%CG5D!>9(
zFUn3;_<L5?KjTRpfWXwRe}qZX_?Q?n$%xYdp0ctO+}uT3jE=$&!HbX|3p9G2+GmU&
z1gnl_GN6OkcNw8VC+q(u^&^^4Fa(btN)6S!lavJ3phuKMKT(>8<7UywY3y!@YG}US
z!sn1!+n?N~gzpJ<8B)Z*hSz=X`bNoAikP_z%FyhCZ1QA*Z?qSMLx$TDdS4ce?*Ts0
z;-z|zaYzcs0w73Y9EtprlCX@j0!ZlZ3$2Ty=c?1gbj}&ddOEOr>27-YTW6G7JB1Z(
zEB^3XYC{xTJ?&SEnEMQdF1n}&+C!K9M(c%CR|z2FyHgZil@SoL<v#9~{1_dqIVbid
zmT3yQSuw=z4m(W{3O{-}PJ_fWZHC*DQ^LFp@r#;@W8?Ol3p4H3km8LwY@j8rLqT3B
z2~WBJ(=^FhuusH9$4sk+La(D?8CS_cA`M{f`+Qv*H!&AJI^>T9D4djd<(!jNG>9Or
zFOB8z5IL};u$V&*7dc<Bik*6y>4$3}X*ZLCtl2DnjR}k{hkp<qq&rc1&5S%aJElFH
zOEfSdL7OojN$8~1#VTv@+q%ai^Lr^>y}=S4Zda%&Z7$_y;m+@cnAkNpz?9KAM@~iG
zs_S#tV*ra*8H;uqwI(Bi+4=@0YN|EOqTakxjt)`SVyIC%4Y?Asw~`!eITRX(bgjjx
zLo`U#rb4HP(DfPM#=jg3a+N?z*-~QU5|3dYe%Dtzj$zZR`?<}%mXfm?l5&+SsB)N}
z?s+Pn^HH-9>kGzWm^IA`QeSA{OBydnHfbfhR8w}D=8Vi3D-$y1btx6=oL>Z3r6{RF
z=1DZc6msN3KXqd88>?llC>Y5gc=<|gU9*849wseou_7V1zXcrNvmZe32!Di<D%p9n
z!p}FWM1)(iIYNP+$rg=?5QI>+U)E7GJwiY)*Tfjh7Hi!>jYF~3zOO56&5=$v{N+9b
zAboms)nz1YGv_OE$ILaEybFFB^!Lu@NHiubi{7n!Gbr{X&ASLNJa6g>3R+PPnyO7}
z$5;yXOYty69DMY<Asl87yDl=FsQ!0@3s0OW;Uau(#WYYEz8}m6INeFh2z?z6&d^SK
zIVAd9s;8#$cM?-(n0_upc>3lE>}fB5lTx$6y&I3Ay8lG7L}!1-P68$DT`MJwoJFzb
z2>RszTmXGAz}^<aF{hMTzQ0am^*g$lG0hsA>_-Zmaf~H+Gbi+#qzc9qA%9If)Gt&%
zNz7OO#yS4<XBxjTzp-_e?8qJkde_RkAYM-z1%VV7h|AqjOh(^k3R}JJs2TH3VhQR8
z{8d@E*f-;Wa&aVNnou=5in8Qzmb!?(dzw2z?q8&$_`(hBu!`FK*`}$U0wgTp5@Bjd
zJ0_Ds9Gmbq$o00UoAmnyjmI)^>ZIsyxU<0PdqGMM{_`#4O<QS~?g6BBSL6&Woh#zb
z#vp-V+F7z1kdhstY@w{2?|J;8kke<H_O>=QCyv!`JEWuIb8>IH;6Fr_+gjWjL|WCq
zDiRjd{vFM8{}s<k{3q30C%M61BOIE+lovmwHj74-@Ir+xj~Ey^p<0F-P$W@WC>5bB
zpCRs4Z#jdC)A(HVYreEW)x~epK1r9F-%(7ytl|a>ZymhLUYtfr+~H%%pvdP<=VDs7
zM(~Q2SGfvmDF7#t6|B8*^BFqXt{NPSoux8Y&Gr87Ap$cWi1VH`1?C5Wk*DP{<43X;
z@VGW`QoG%7ol{5f(msPoXyL_^Q|G66*^YPo6d0)OD?gnq$=W+Gc(SKPpx5%!rDhEr
zz58{<EzYFvIsOtUEar<j-SFWXE?|YmSIjt(YP#0~%IMB#1CrbQ;RwM3R3_<fe^oq5
zKU5^z%XE5bu`K0(Z|_OYGw4`-RegojThz7Vm|3KXV+zOuB7FV?y@=E=ekENTAzr7d
zC;vR96(PQb_pYX@-CL{KLpDhXuhpa0DTY@jHoYpOMyuTAhTDap#GNr0Ke8cxvMPe*
zlB4^PD@*U}Mr>ZdeR^U>UI%aV3hWsB%-3DUmy5ze7=K9}UBru{m@;OX^x)t>e3jN?
z%ewT<Nob?A$lV3ZlHnVyxcBdVHa3Grnk7CV@J-KXUF6qMfaU0v?^8DnJWVebu*m%)
z1gfd2ZoyPyMUXEF4XI!pN@}dzolg~!joZdizI*p@YaqTt?9!s3{<+Ua<O~X!mwLb)
ztuXcs#gm(2{CD}pai2)i44K3t5Z;#dTIC2q_uoBHvkn?b(-BPRQI*}8u)Na_i(JA!
zR$)N0=ocV}Zz4x_+5#k~kD$^r1Qk+=(ej9qQyZ+5?G=U_NBB*cvT~ugjf0ClKMhEm
z$y^lt-2S*Lt!VKTXsjPmxe~$r8~96LpH>D&!pt>1^|chToO;@}5C5YKT4&B!SO%4g
zr-eU+%<o8TS;(Byeta6bUjHQSLh56@4k^aRPO><tH>IFC5XUj%38Is`-Q(di;vK}o
zf4{ZkNDH(g!B1Mi^dp#<pcN!Eh4dE8D+7CD*Caq;6R3)r^d=hAvIJ=d_%g#Kxs=u0
zVD_v%4Vgl5nFwWbsEQj{25m##I$}vQ{re4B`QhxXKB*WkB}E(!7gqmZpM_jyg~9JN
zIlnitoWNFND71pEg>#(P7mU+aE|W$jGihnDvbmrQ9o))5AKV9M>3`gkB@h}$nTC@o
zpHZ7MS3lM_HHawg&60dYMQjc<C50WEIvsym82&1`A+A;FV@#+*Kq})j>nwfP??^9f
zeFz|@y-B50dq?kd%wQO1(Rj3Jk77yf1vEDQ<o&hW>b4X!&VuN+!lh~V*B1WyRwX23
z$-E!ybLMbh!ZGxVf@PAqCS|4TJDuu6bB?SN>HcJQFJf)d4OR+EADxIVnCLKdD4dp5
zU3t-4qh&&_2uoW=c_0<mqNO8OL@}VsiIORdRMW6oC2{}@Zg5rzV;sXyEtABC=kj=+
z`NVg!G=wW6Jm3T{KCj%yuynI>d^k(59D!gIt7SxoXjP2$gI+T9RL>Pcw=*cAM(6wP
zWI41N62P<+%Vfic;!URuS%#e^9-l%QlLSu-;84)o+lZVcKT6{qKz;gi08C0whaufo
z3Z~i65Q(rP=G?Fuxk1&RA-Y2S>p$m*u;r>1Ug4eJhi5)4i_(`SI8~eMuS`85+>fWr
zUf9ZpWE5iQa{Zpk^O~A>z&fWp6IV!j6_xJIWh@(%!p#6!C9WZOsJ6~yT*MqMk{T9q
ztp;lh<Ie-tQqd%M*FRg?O+ZZ)1S~LrVM-%WeQ{7RsW^p5gp8BtWPPItWgSK0zJ*YS
zl4LPAGt`F8Qv@1>UewVd!exjTD?;S@DRb4v9BoVT5ZKKI5Uo;ZM(Nx+P9WC=qA}<Y
z-~i=10-M7tla+8P0oX7Ing*(w6!rwZ;2cJIscb717uXMEKT5qAKM)bhN^WPsTi*a^
z>3*+X&=jJt`o<)a!`jUe(TxS{Nn>Ggi)92wjT$E$(m6n0I_$A&qXjOG|F8$y5x7ZC
zifo6E@C@VhQ_=39=por>b46H1LWv0gL=j)+m}}>;z78Ml$+{qXc(Ru*NCM7Ex5L*$
z8o?xp(+?Q3hHq9n&upPgbBk~1eiXo+3r66rp&!*@A6p(JpDju-&C2rFLSHT)P7evk
zV9BhT{LDR+#z_2jF)I<kW*uo}t>AEzo3#20Yt7C9c4UTk^!4V#aoc)rCkQG+K>K1x
z_rwEx({K3D3$}<9Mtf;HSN$77T;QF!2j0RPj<XFUpQAmY`4s7Ks<D?4otkkBnu<|@
zJqCqH4<y4#tJrui8waVvc~Bw`Ig-Nt&f;3UtiTZY<kIk|YX9w`lEB{n##bm^R-}US
zs=z@d{I{W58d8n49S+6IC_D!-(86*!O9VV+Ve|z#``ym$qaU=M-S&gV@Z5#zkVoR6
zjw0kn7n4P{G}VlrJ-&z7`i!9w9xn#YLo&5<0Mg$d$Q41jCjFvK>K6x)fJwifcw$^3
zEYAoEY8~XkjAwv;7l)UV5eY%ljKC?E8fb)%^synhegQ2AVPslQiokKpDMrzgWUzr}
zo`!>e0fWNzOVE$wQbaV$i}W+BH9`accqS1jMsN&T@C-_gP!u>O{7ZnGB++XiK}3^k
zuM5W9MdPx|YpqLy*PMz45(Jj16gEu|y#X}6VcdC6M0N!R4=Dx*G-=ZsX#gAph8cXh
z)RP%{n+7n)Qk}8$5?;2MPPMttW$dR07sKmj24^ltY!Hs9C1Z3mQ!*EGwwsL$0L)&=
z+`z@!(aie6jco^l3Q0Nyva@~S;y7vMc-@Rq^5yHrIsNzMm)P8#MD7Np;3K^eA(8LL
zq%GWk+*0?eOP1%{0KOtO-ygU1N{b+bz{REC27zgqi9fqVu!vizszs=QTezb|_@8d+
z9JlCdi|8kAv6B|DzuZz7w*)c|ggitV)cOn*Fw(Zpvs~A|Y?Tn_xuOUmjtPZe_d^u{
z(h{M>_Yz^yeyH~k=}&RMYk+)qtNdLEPypb3-7g!iEC=CHdO@Wa4<{pg33b1QDzy^R
zjVsCaGYI!9Z%*Q!@~A%#-QuCD$x(Pp9@2~`YR(=?vYuNr9?HS;Y9}6wRC21YYwe{t
z^<YnR;ZP0kn|cvm6-8bHadK_(2z|{6m8)wgqbEa$XT6dKe)Xx+xrgQflKv)|aTTv=
z$A+fxwTbMoA?>)1y_?xooUuENdi1D<riZ?_r>X9(UvaC(H7o@3vK7JOR!Lm)b@VNS
z+zSHjm-`f=&=P@=;GtjwwR=5m{{m`*eIpa?^%`LWE`diu`1+MBr@c5po?HT$(h9t8
z&u{c{uo$+(<9D%$aKZBi(sj7`-$KLN9eZx&WJ6p#hF!{9Jrp|(;|GjQpq9z}jMjHv
z=%}vYcT&)HSK$yN#bLJ&FGT?fKSiihdaIWqua+h>==&{X>n@<hJ7nrE@Wn9PT8HW(
ze_(C9)AtT5_hz6{t2I?5w&jiK3n>2o!`@#8wG}mf+h_zy&>+Pr1Sw8~v}h^rUP`gH
z6fIJqxVFLF-Q5et-HU5*FH&4u+~v)E|DRW8-Z^LH%=!AP51GmSlAS#}du4vtTE7d4
zzBCvXN`NoqPNc9abggI*xs!wK7j0u*Z3jV(*Ahy~SMP3-5`^cvQhpepYcwVszJF{$
zANPMV8%*-(^!AU-hwo0F=KWD5=i&O@0nJw-<`A9No!)#WF`>ZE9#0d@rH$1%{onY7
zJzja!329)vNi|$1_Bcr=3F?qH#{D}3(1@F~^D9I(s=m82x+K;)y#mZNMActQFLi|Y
zHfW??OPzJZP&a)abJO4u{?1sF{@u;byh={)T0QDQPoF>T@?4VUBA%qyZRoNf6zK6<
zD6zgqI<iT@PbkpJ*+~wg)VEeguDg)LDTYrvU#c-R^SbC)Bl>&({MRIX<}M@WuJNlu
zO;Eh7y{Xt(I#HxKpU<zd-Bm{UHa(Q9@U?VMp<sDrQw1T?W3e$;&9C;OW5#poAKz<B
zZH1&a9-BhHi+mZnh*fh7mU4@oyeWvh)hqPKRug`<&tLz?rRI<8JM$)RoMTXCO=`Q7
z#x1&9w?jTt(7ReVN(s=-C>$*%UHuWm!o}qSxKSatA!NUXB#XbB&)r1I8%X3dpd{Y?
z=GIK0spk@q8`@chd!vzhH}vsVYUfI2-;?mFqvck(sl8#q<uW)@M4$04J+-DHR}@8F
z+pmOCD&;+T+weZNPDb=rX1FF-s<kJwW=ctVLJ4Vs`zrRd$wW#z=%4WDI{_5SD{1MM
zGsca-V!MMyJTXK8y|JRErxZi`qJwHRgI3|=fnF<0?)2aIlV5wIKQu}}`p@f!sDDl+
zE003!v-hopfVXsw(}As9x3^5+UxtQu{s_EWa1cw69axEUcG^GNdVSupeZI><g!V%A
z+IrQnI4f<OH}tu$m9|oZc?8XhRqQ)8lhjHYdnI6Br3nblaNHkXx)i><{4nOGkaoMy
z@nB}_aY5%K-QPCz4rA7#C7;Dpng)4kd(na|>SONdVJ;#CtG(rW?K&iMkZ6@#-JQ1Y
z@eAAy@CJJX@yr<;b^(d;Ui#(OAtM9SXvAskIuxYnV3{=5tXSDyKKPgs{H(wn1s*bN
z(JNOZvy`uzCe^SYpN~u|T=(Man&h*3wp1|L3wKfr&3vWgmrggNmQ%U-pKctFP9C@4
z^6*15{ED1%$0D&fE~X$nl2UPErXd5#h!BY!Cab2m?pbTTnRIl|_|cnJ2K)%T*3a21
zxW<w!v8jJ7Odbu!y!2MY&?P-k8!~!Yy<}aJZ4^qoi}Qk_r)YCDRYd>pM^w#5M&2)i
zhI!#CiViTzqjj_Ms*10BWZjoCgv%H2=-^c5v<d<JUa0ZdLGcq4lTDmThqr>qh0f8&
z=~w)22A1yU`}6fKk59jOUjOB?-M$(Zv-Y)R2?dHF_$n)^N@~16<61KP!w6BT%fdMr
zEYFi~2C^R9Q0;K8WMoyeV|mz1N=!)WD|36-uoD(V<1r0MJR<m5+k3k|kFq>s$?=Z~
zXQ7?$cvB%%3Y9HBRXo}K&Zl8Ht29awkx^L@)}lI6V(wltCvZvG;j<q{jZdEcI_cai
zA??pk&WekWX@6=0Z9b-w9A_cgPK_NEK5QWw6FqOS8e!-=f#qP!-Hb_7T;gyQr9N0q
z*6@>aR%(c2Qv|=xrN9iS!6n}#VPyza#MM*|WSm503Hvf=6@&0N<+2$5XlSMjn(p%F
z4*uYh$o@dv&x;w@6kbou1$r^VVy-OTkY{o-EyNSod{(GT!r;t0@i}ayFVk<4y$Eb7
zJ(iP7`etBC_fnL6*>U=P;<D(bi9&aDNsV%iL_2%!ywS2&d0X~|KgaZ=6mvd5n@29c
z{2TZ1g<4jBf6xogfM8;m*0<qh{0sMfO-`&1;KQ$<1~C}${|LSylb6p$rjv?}jpE@L
znaGHR@Z0Tcjv69*<gZM#j4n<Txr-$$#4Y_N6yL-`zSJ!jq<^E@E6O*EoqTWpp3fX`
zoL_4WYCJ#b@6w}1O6Zt|M{Oa0N>LcHgtC*U=2&j=EJoT$J8)2CR$Uo;!JD%8Gh`?9
z#oOD#lr=xGk96Q2?FI&i(uqr9x_b!+6kokbRYHyp(`%RP%3QFP%|b2DtL)2rg7ghv
z(A7_zqvV_&_ZGgi(_Sv6GkmdF9KE~TYD(B@w(UypMV$Phi>EbxtcA*!IBdKK|2@*I
zFVKvN%sI*q#8%9_&t-9sqPNZqqU*1i(&Y_1CyW)izmKfmB<eW}HhO(~;orpd@;uf2
z;XAJg*_pNgX{ZLF{bcCJ74cb->3C(gHr#~=?mph0{2h~~$yF?&If+FsTn6I(H<?ul
ztvnJ0NKDC9fc)gkgGQ)N_{mBisi0J%3QYSIYK_2cPKuVSi0ixin`<3b=|f$$&u?!i
zw@d=XS<Gx$X{bAh8U2$wG}MDYr)y+xI$5bOo?xt{g*iul;SF!UPy<ewMF)fkt5ySU
zD)J|iz_^p7Y1I4a)Ssu<b8?sb8}g)orf2jddmr#3qwq|O9*wtV%hU%dL!5#?g<8)g
zQ9bS9wbM!`5)$Iy(dr8lutzF}UHSdf-S7kfpAfIHh{$&lID|7TBx>uDHud|(|0T&O
zxS1JH6*DtUP~2D$3v5wTRFiGn*f8FD7WdAXU5jH_7y5OB;q?cS)cL6b4cV@y7ycGn
zUCr-!7<GEF$}0T9Zd>Pu{f(G<G0{nRv?TFt(vL#opjUwL%qUkR<g5c*%`mDWC}vPH
zrdp%QZ&qZRVrVK)A%q}(9la1TF`>39<GZFhf~4?u3H&S=XShgKLN3l}W+xiYANIY7
ztwGp^q<|-W_XX}oh2NZ(kt@wMG}Bcz9t)*p<oE%L<S|i_4-_Bqvvfv*2BlRf_M}AR
z6|;*L@7v#J|70LC5%3=Ejw}=VXkxGI`v9Nz(BU7f0>=@qVKQw+ZPUeNYeigdsWeDW
z<lnTQO+xyys^$-8@gLK4F!cx7twu>JgWvu*v>q&;(CPJ_;%C+T1Qq+^<(MmdK47&F
zOln0N{>6}F3o{U;d*vF+s>!~Cpk^nfZ%oK3%hT8V6VNfM>0DvMIQ>MWG_J7?<_o#E
zR*!O?Of0}hvK$U@*isKj-Rw7n#{YFJ4lR5?uLUPaeeweT*JLIrx|DN%i9Wtb%tw-?
z3B_Ed6lp0Di8EZHj8k?!xKMJ1Q`e@Ku4(;5Vd-%vexL}4%fK8%R~Nc9&f;)CBIs6J
zg(KY1vc9ZWZdP2p&ffD=3S?bmzem#7Q&wRvW#^<|U_|m-Mzz}gtwYasCFRALUEq02
zU|2!fDM4PsUz)5ASE&4(#=l9;YqXkLTIE0U1q@C(|GdhTTWgo4U>G2_lJUYUvt;id
zoF!WQsw~+6XW6Wmoc^*_7t8x}U#?en0Kp%d%07i-EdaMU4&F5|7oo%K;Ebq}`#q}}
z*(vB;D6JJ{-auKKF3<MkI#|J#ElK8`9ST$u9v#784)JGp=V-C=Q4{!cWy7A<eaB7u
zVzMw5qSHpmz3%>xF%^M}Eg&YVm=x&4uF3M492HV-<}p^XkzYqSr!RxH4w+h{|E8QD
z&~^@cl|cQIs?LRpgT}72{?FGcVc~|huU61G^EUDB8Dr;In_$z{ev^cD%1>l}9&&^p
zKKSwXVJtH}vizOfteO_of>g?eTk`9RB)?o#;J7EJW}a_e@K6;fwJ0kMZNhrpy7b~F
zGsM*8oz2K=4Q{0wp`&@jFLMqbF8UQd7{zbc>wmE>{t6(?(@-k;?(TuKqf-7|Mxy`%
zzvYs4f5GJ*h_ZnVT<cgy(4}F&a<*_rX5WTn%24X9jp8f<-C=(fzDtAplCP1P`vbtR
z7!lcb{it!pIJ^2WU>07*TPDMup>OXG9#ND<a=^57hT=RSeA^(-p0l$rN=K7L((V%^
z$*Dxqtx8$G(JQxcU*oVu_7vYK%!T1+6D87|CXa2cct8CxWNXh6jpf)TA|$0LERks}
zp)lP`Os!Jj&L9RU+S?vFQ2iYgH^iU78(w%(R+R1}fwv-V`d*9AX=FaF#dz&EzsKE~
zW8Tf*7T!LsOVx>@we4s3=U-`ELm`h)vAG$Afcd<#{-<%g#n&Znww$pxg4zKO`9aej
zZX+vnk2Kxo0~4I~i)!YR#3d{=fw4zihk{U?5~DxEWBZOW4-a_^qR%h8u)_!{04%CO
zy(XaR0S1I*@&^7H0M#JKhV$Xy_@j;O^l#g|12y`m>K-3#@A`eW*I9-*<*(hlc+<MT
zL`MM4U4X$6BSX}*aCcD2#<PvBLYgt@E-vu={<gvP;fWefA<QMs@EVUP5l@Owo)ISv
zDU0KS$zt5iV3=vv1?{pE+8D!jW(0K?BGR7UwM5d3??REedpUOSG{dZ}f9DAV`b!AK
z!3sI|4vc{)0xz`wbrYIo$8mI6+JM5Hm&`I6!|;~`8AY)?1;Cs(p~B-NuaBWWDzG=y
zLC?NEn>qUCo+aFk{i=LDVxr5Pn@As0$%}$X>_oj5-|*0?JU@Wp9I2CCMvy_fiQW#Z
z2W(Qbk6xqyo+Cjx;zxkT8~{df6jkXs)p;KAS}ykH5mlxcb#tXf+c7r{lDc!8W{ik-
zQiFCjns#xVc7^EaAC0Hm(NFispZ+7FJJq1OjHbICr+Xx#2W!$}$I#<W&=V5F|I=F<
z1E-#V(-AW;YBI3IFmOyTJSS%4(_|F*-@T>(ySMaz_m=+u)mzHufynd>@*Eszdr*Ll
zRA6VIKD&`*PRLtSSF*YC<i7lB`TaEW$BbpZGut=BO>Y-=Qk|8`DX=5qixVqREC@1m
zfitQ7LazABKWB=^Ov$T3?I7!D8@W@f;|rUfi_)vQjI9e>89ob4a@%|7OT5{{0-moT
zv0pjf1^(^2q_2-dIoq>L+P{7$$uDrjRPVs$@b&dOJ6Zt;nZ#K6dPinHJB`Gz(0WYW
zL|dXuC+0~T(^-3tueM+6GiU@{sAFAB6ElzkHvzMJvvsboFTeaDa}$BO#JljM&bt0$
zbcZK86bm4XXWh-~r>ZWU8_D_FFWpaNJYy3*IUHO@>g_u}gC}PbL%w?9o;ofIIK5W=
zHZ<e3fBF2F+-cn9JKx}U#@M~KS!^+&)41=-U;=q}qBHK*^Tl`0nE=X%PP({Nhar}4
zUTowKYjktjc#kvyfN(>`&O4v`lW$xCWUD|w9vxq<dKV)^t{8>iED-Pj2WZ!4{O0h7
zzH#;vr?^=2fBf{6f6enrq^+BG&@3F|VU09M-0}7@@ZX7pR~ALc72QlWB!oPdeiqN?
z6QE8ILr;Rt-R}z05c1?S<PXsA9!}DB844G`AuyzU00K^ufLH*4vPSqU1<ztbP-BDJ
zc9Lx_J&q_n$<Y<*5fCr~3<Qb;WO1TMNSyqW&~9y7c5fGap_@GVNYf6?hfe@iV5G!V
z^!!*NyHJ!{BA&sO|2{l`Yc_U&0Pg}G$fz4?dqtP<H&T}}D0S9ng@OR&dMjH(E`J^I
zm4fcErXl&U6P$IqhSWv8yNdCbpfgMUYEEJA0H+HA08_4$nb+t{kZ}@oAg_VIVz=jP
z6v*QQ-@+uIa#oPgD&2uw*rNo1f+ub+89{iJPMPSfI~%9B=6{IpEQ6Ck=)=QVeeT`3
z!A<s<4c55;_}_*!K6k(joZ%Z~4sbGsIVJQYC~&`+fNnlnXcdcUAw$d^v8<cd2>JHq
z5=ucIs38=1E10W3m%qtdu&8ZVKmia%V$dJ~5c)_Zy-9ar?$*mfkDcwj#tcq9P>J3J
zm0><%Vlnn<@nrv7<U1-69`3uj#5$MK$r!ihl)wxZWbwZrje2EnJFbg2YQJyt!~W<6
zdM1{K%ex-laHZ?zG3u1`xVYczaZ6Dl-@5!PoUZ^@mrA+(EN-Y=J1OKzELX9p!Y8Q=
zt^XOX<H;;iol1qIqr%>-uaH{g{-ozzscoK9U#-#1J*nrsLdJ%*SoW!z2k2q9>}w6b
zwEjxXTY6zLU@lfOljla&fK6gi|JmZW+hP}XF7E*Vf&N=i>iVC8(j&kbARmJs6o7t%
zhlfW<@`RX}7)D7)MNLh~%tihT@q}B9l9h*&TLfKP%D~FS$;rvc$-{&Y;^yJ!<KyEO
z6cG^-CFhl<;FqO*Ax|Z!Oe3nvA}lBRT7p^DfK@`1UEu?Rk|~p_1&5kBr}}3WEql(l
zU%B+%q@|^0(fy@LN>ZwtN~-Frns48{d84gsps%lQ@WIf?$jHjd%F)r$%gc-N1Cra&
zo7*%PVdRT24?$Rj^H@dmS{L$Km-AXT=~_p>bqO-Jj&Zk+c^=oq8`QuX*P)Zqqg%D)
zUO(;LvF+Y-=ss}hV;$q;;}a4R5)>Dc5EdL88=DpvlboC!pIH=N+JNrw%+1X$EiJ9C
zu5PZcY;JD$sh<yOng7v?${pS;9^NirIc{A!{PpWschBI^&=6{LbaHZXadC0(@ap&R
z-QxA*#@fos&dSEd#_q=20eT#79iHDDTt7Zu>^<Heo}QjwpC3OwJfJV~|EGcdh{W~r
z_45x13<?ej4GWKmjEatljf+o6OiE5kO-s+n%*xKm&C4$+EGjN3{ZUr_v!b%9x~8_S
zzM-+HxuvzOy`!@WeSW=t{R4wT!y}_(sPT!(sp*;7x%q{~rRCo%t843jHa54mcXs#o
z4-WtSJ32l&Jv+a+yt=-*y}N&S1b}g9<SVi|eIX?52K^P;zXD;5ifQtdIX$5ie3nc7
zmAQS9^im--3RQUnv8-=O3<j$5hY}ISgJ}xY1tY0~4tq-j)rDi3;=VYviZw;!x$?2>
z?+0s&Ckxec71I@KOQuV8sx6lXYfEQ;8vY8QRjT_jU;TNq<o!@x*<!uj<DbEFrTX&a
zX4lib<)QkYEA2=y?o;K4inU)sBpe@x8!G?wMKLO6C^uGZ4khtf{T^<t-X6=63Vo{5
zRI@u-^rrN~NK@_pY=!YqhDvkY;bMcsK00fu|F_cNi%X~4(s2BzKbGU;XiMYiHY!&s
zQ?<3}e1ERmYGt&w`SRcDuTVO*wwCMDoypRVV{NUsmq&kwGS%AK?r*P7_gBW++aDhR
zSgfl^46@Iw-jHWSt3G%ycUFC2vaD-<q}rd?{3*<e)&gjpch&;w16bFCm=Zp(2eTFw
zt%q>d?W~6)dRhO3@y~qz6E3(_^d~~}V&_k!I2PMRlr)*eMzs91;*G}`<(In~vFfsH
zo9NXp7Mt-pX2qKc2F|;iiG~4eTS+Df7F)@m3yQZ=tm}5SQtf)#w$mJEEVk2Kw~Dtj
zJTG>)Gm%*AJ6V2YmOI%&&q{W3!d~v}<VMM|@8-p6Tkhs3S)O-2(byrDB2yN0kR&q`
z9S?b8rt|eJF0W{%G&H$MCXm+I&s_<_2DQM(_X(wl&7q943@pw;@L*B*KP&xFWfsTN
z`-IDoRD#sBfv2>hYvPkE1#h=I8D3YFx6+fYh;e1gF4<BX>a~a%j=H1X&@#%m{0JhF
zox#$dw7T7^T)MLh<7He26M8+3yCo+WEzRGEf3?Ak_pvGoO^J9OyRGr={=Flcw6x*s
zys>=FcfF9!&5nt?FU!hn*nBW#-9l|k$-=MYLwQm)j;^nW`xH=n^P%$i9fzTZJ+smV
zmFzQS^EKrGxx^~F7JQcp-ZCYDiLNJXlY_k&c;P_Xk{65<pps*=SN!jcCil*mdEY2Q
z8@kGm9J`A8mAT6}zT4N*T8eb}4Lc_Roh6mz4}LPT=m7t9TG^gg{3Oz;s-I0f+pFYa
zuECLFR?j8&uQ20O=iSi8rEXv(`P?QXiH|`eyBXbqa+;4e_vb4s(U!cbh)+Wvu7@hC
z_l(Upb;?p|qqzGqG<3X0;LK6%_4JulM2Hnr&vN-cpZxwcJ<^JX(zTss_0#NaIG?2p
z&%_CGTTh4mh?1e?xoz^K=;j0cqA+#sgsZCibB1-|nYqrKhmiYo&>*~Zi+ljjKXLMX
z9wTr>%~Pl+2604{6LUq)FWLvj7tc!=#8J?;s0%^~CrTVc1v{@cWCA(oz5r<*=-^tP
z1EJjXIPWLlQP{W!(SHc@Pg{lKsjzSoSgzZa`ugGWP`r@tFbp{11>eKQUovrvV|~G0
zI3pkea~fIU{SK7|mmD>_Hg@6!iuesr2nI)eLb);3gxs)>_v#&M=+sF{gEw4w^te6&
z*{CVu2IeJDzse|FQfc^~^WaxTYNi>;9A;<i2AR0k$7pf~U;HQ0RT3S@SR#@IxVCy#
zP<(bsh-=pcgKXe$N`{Y&Kcoi<lKV<w_Q6rB+0+F)GIB{3Nq$KHcIKJBPx*L}K88$q
zH#=D7l;Z?-Ox>g`#fqv11WC#p%eTV1!Q_TkVSa+0FLtw9%$k4+KCGJ{Zh--wZVi}o
z8WXMS0L0xWG`*TsTOc;spJOSO_*0n4^K4>o<oGxdZ)g_=h^$}EZX$RJH;2qPOMa)e
z%B#y~3uHj<zk=@&rVL?_wG9@~)Uk&hIQYtQWh*E-4ikWxrE$%K0v@17nD4HZXJHzO
zk^$)A#Lp7A3F?^P#0;69p@w*RM}8cflLQ=(Tz(on6ag%-V+`f~u7CEs!KpT1vo#ub
z`<}v;C6tNM!VKwX&6)sC8OPcF@+mFSd%|6n**O76g=)Hr9Inpmse!DzFL^X3?dyhM
z&*y%_$d56);=PNIezO!;x<Q?vIIJ8Q(<O}oiXE2mpF$0NOr$y$CUc&!a|yCAX<{`J
z8-`YgK^S$(gUfmtj6ig?;E&aiQkiagLmO6Z2FYzr@uv(m4$IQUPHaDXxmTl`Wx8>i
z$Of#MfIt0NB{)p&KwXV>Fj4DFCrqM+3-4JNi}<D+4-vw#jg0-%umvZNP*7^u3nH1)
z)cK0|<rQv+2IJgP_*|fh4B{PWyR!7-xBOCJWkeMWukC>G;HHbAX}rRJ)r8W<5_{=c
zm!Hmio4TO6ptxN-5<kyluiTURk3tNl^EG7^%3+XNMIF<96=~~A|5ZD-Dk57aJ0%Hk
zj%__2eTjr_N48IrRrWFXI8Tov@QI`aDqM-AA`*M4h<YC%Mk1pS<|KW=la%`YvF0!Q
zpu2V^G~c3#DoJJxF|*C|Mg)k;IIG}{Jiz&qhKk&v3WjHC!E9;_!`?&NnctN;@JSeg
zJhU-_E%H}nFp{)gRg&}bA)6}w6a6;jgFO12oGUoCL!siF3=p9`In*1}qp9=&DV1t$
za89<WDu!dc(j<<tq)sjYBQNzM@IAM2=}fqx-ECD^P$(J0FmpzCsYQ>Ke0Ns7qpNL6
zIs@O+*Dv(>oZgo|=i>ap;z)e>#Ib;!M`nd!y)#q&jKOj7v+>7uy$<F1JO#ENJkBah
zA#)$Jce&Kh#GHxCIgS{UDwKu8+?F(x8ESB&t5lz_PJ-S@uV2a9=}lh~Nx$^lPgqv_
zq(HNhp7gom36FK}%_8xvBtso1k!(kS^>XNr9*(Vz`BzOJFY%8Uus`wsti~;Di+?{c
z9LNW<mg*14%60!@CaPetZ6SIVw%(e!6wD;zvyy0c#`O2Dr%Wm5Hx0`TqhjyLR02mg
zU!ru~vrqm==YP98U(@H%%Jj!bT+kvpopfeyD1??gqN#?xs+*1DvXb$Jg!l54@x~ha
zR#NgX`sz&Yxm+M?(!*JiTI*ge?6`p%FWcp(@c}lR&l0<JH43#qM@)ECT;tMu&2$0p
zx;md>$r<}-?zHi?ZA-zA7G<*HH&5q%p@@7+?5vggnq^mUcJb5iTbqW1k8&QL-uuL6
zeE&N<ynI{CdI3vI6U_`X50aG2gy9=DGi3~T+PrBz@c}rbsDntKK+`TwqwTyR?cUVI
zeOMyrDP>fPg~@*Hg*ew}`_S_x(tC%ggZzxKAhX{zKgsdFw6BTz<|pnMATCc)<dh@@
zy?X~C-|_^^S<!1lnXn%Dgo`*c-&!9zeB<&rB5ZhWvnq9L@~xtfBhJp-pPsLa97;oB
zh4IYiLp1L!$@hp3H!)_umRY|pdwT&g&3kN7{wv>Lr|*g4NGS>)$Q1;q=*8WO@2A!7
zj`D%LcJ>+&C~1RVwVbOPHuPG~-u#`fmd=x#I>56zx2ZsDKSN0c7r%#kXCqeM!;9}`
z@;YrZ(A2sB3u7<8If#Iaw!<0JtszKJ@Y}{4h`<Y1!@i&hJ1$4<p!Y!Q8cET#?vTAg
zbKeey<(ZF}S0=Ij`q8Y=F_+JpeNc@;QIUqQek1<4qX5ILu&z174D}FS*N~VFzwKv1
zBy*M#^zKzVPs9QqgXSgzbj-1-$lgStJ_xu%7PU-TU5#Gs2)_^VE!TniT!yu~MsUqJ
zd;W1m1o<rog-2(F`$n1nWPzrc`|-~Pt|dL0GZUz1h2mWZeKN64lKB={@#^Sv@P;G$
zjP0UePVj!n+)P9uApC@tb2Xl~fg-9#6Y3EZaxW<3h>US9j1GnA-Csq$8|OC<i1k<J
zH3irM6d-4Q(XX(c)9MD$HTs<Xf(pcYMy(3J8i267L4tR_vTA!HEU<Yg<M}Nh5$^=$
zidE(`W3YF_#TuVHE8-&94KS~X^vwz|8h{Y68W>YV2C0Vyt|le{>@6)~=DMQ7qvG8*
zc|(wjAKV_lygM?VkvDVEjr!UMU^Nqrs89)*O|*ewvCbuEepLyu&^X~u30Xxd3PBbN
z6XOKKq5(<%6<^*KLbV&AwaG|FAqWRTOlB?$11pMaRT!5%x$#Bv+`HsfXUTI{*GMMg
zrk9_yik~dH#79I0#rL{!nAq^xy&alOF_91RYp^%Q01q`PS~NoEUMBe>lXwwQt;LQ<
zyvh~)>_-e=yD7h6xTOgTL1?tO%g@=4h;6bHQ^y-gAp<euL0p^j630eZx-d)*82Bv$
zOY({DWPjp!g`l);EMr5=w=k@KF)7CK>2Y?c_LSViL7ZRCR3oAiS>nWBIY<C4Q-YYH
zVi1q9^Fe92>LA%XE>jfR*Yw;`Jh!VL7wrif3xHm0xrEtSE}09G2}AfG8HuitQZ}AQ
z!|z!$P?p^<X^`g`$sR!TBTGE*vhj1T&{tVuU@8TVv0;RWMV{OZsZTPLZ89kg23*A8
zvHhhGxGK!x2AS`J=;!OQq=aN3^25bLt>m#k^FzyW)fn`0d31B)1)(SkbbGX{w>!j3
zHpk(Hl=d_x5@D|eg>oUVjNK*e_#tm5W8qTRnaL3EAhXaTkPdo(g<ZnfFK($DDBMxf
zE(F4suQoLKJn0DZIrq7>9j2Nq<m5DnLjn6&6J*vWTN#kU&yS^M=n;Cv?Mn4nqCx~d
z5P))2WLchJh&OR*AX2yxwumDPX}#BK$a23Uka7nGVzul%Q7hXHq=qQ1LjittVW=6p
z1F4~09T;ObkYnMW83jLM>_CVL47Cmn9`!N{XG{wA@~5|z^wd=hB2`TKRnI)CSW~Om
zo2xh%tGI8g5Y*MYBGvr*)h|7&1yieqo2x|^tHo}s#i?r~MQWt=Yh*oY<Wp-Dn`@L8
zYgBJ*)TwJVMQXM5YqdRUby92fnrjUfYd_r98dBF8iPV|s*O__LeNL^jY_79jth2eT
zv!kxJ7pZsDuXpyScTKH#Z?5-Ttp9dfkECw!5oz$#ZwT;c2uf`TX?|=7TWpB9ZHS_7
zj1g%>8-)`*8k15RQ<@vo78^6rmSXCr9Fe9x{iXtsrlQoQlIEr#i%sRXO%>G5RU*wb
z`ptD7%?+u|P0h_Mi_LAf%^lP&T_P>r`YpX4E&Zu2gUv0&i!GzKEhy^N36a(*{ni<e
z*16Qyh33|!#n#`qt*g{+>mqF%`fXbtZ9A!Ld(CYJi*0{z+m5K)Pej_!^xH2y+OJaE
zZ<^ch7TX_g+W|BkAkhvCgAOdu4oF%DPD=;gQU}3Z2aKkZShSPWpp(qAlOnB?s-=@=
zsq^VwCp}FUgJ>6%K^Iz<&YIT6-qOXn)Wv<*g`oMxEBcEcT@d@y^Os=SFX5J7qD#NT
z?tY2WbW4hMOB-~{dUngFbt|@XD=&4c-gT?f^k|CqXc_cqd-mw0_2{+q7%cUCxa%>b
z=`|AVH8JQl^X&bc)@#|)YrWKKbJuG}(`PT*=V;L9?Ahm<*5}^R=egAP?XC|=)9)kN
z?`O~-;MpIP)*sT+AGXvVan~P3GY}&>5N9xu;5m?#HjvUXkhV0CaW{}fGngYfm}f9p
z;5k^7HdxX!_+x3X{BE#<W~fSZsK#KZ&U2_CZK$bbsAXxW?QW=pX1GgqxZ7a3*K@c(
zZFsO{cz9`e^llhMGcqAMGG#C_<2f>yHnPw%va~ev`|fdMm1cBZbacaDbjx#eCv9}E
zW%OWa^zYs15zW|%=-8RT*oEiVRod81%h=u0*uxJvUKEfP0phm<3)!Ir#KDXxAY})j
z42A-~M`5Rfp{*$V`?1;%^rATs$@2KqSK~|_K!PtgR3qbbUK2vF3C8g8vLgT-Ie}On
zhoim3s}nq4lYAo+B^>~IyGb!G6n(`+8oB}Ia8jadvY-Pfs6O>N9880PDvnHv9Zt!=
z!g<a$Ekg@RwVT#CoYZ?iov{jdwmkh>1w>#6HBy<8`7&eJ3MDWETaHY<w3~@Ln)&*E
z%3*mX$#B*seAbZ`>bX2CmOktL9%{@rC#LcUinW^yqMZzRKNs6E9ey|+O+Oz?JNXfR
zKC%OtI5MSn2uWL>e|<lnG6KP?n96xIEtw7}OkXH@zYvC+EdMeUPQO@<mJk3ILyiFT
z_mljsi>-%~?PZGrhVz~G<H_NWUauuym8F0Vz_8b3sR{%|yNr0X+(f%D<28}@1+vh(
z{B(JFbYyPT3l-@F*?9kZ`*3Oc{cpPP<-^0@wBgGs>A=KRuoi5V(hhQ=G9!t=Om9Vp
zCjeU1oD=}d8G$XHHA8C$!Bm}*H^g>=VZF)%04ji9%d229kWU$=IXx#%`3$2Sgoa?P
zOA-rch>fYf&LFmmD-QnJirypph&`8sr3stmw}T*5XM`&-KLZ41-e7Xu%?gRFVl7V#
zA7RdEVjH8tUS8lpyN$0Z7zQxl&KyW*6+=iJ`~o?xF1Bhp0=5w6um@nqdO?ETg9!|=
z9AN-VbpTEW0Du6!AD!ZUx@D}&;Y5$6%02h__v{N825SWZV2Ei00GO&{0q6l3hTDea
zGa@KVepO)=)a>`Cvtlp+00!P71#W-<)gXWw0LY*|#m&8G`2~ZHo73tDY<a)wkKEII
zk70)ZApdOXnqX6{0$=0rcenoW@>;Fo#a7Ikk@*1Wh?rJTcM>GQ0vKx6<bddoCi_&E
zIJxJdAFyy$XBcfBA+y}mawse=dSK%Tckm?dg#a-B@8t5|B|`2M+OjqOqrWC9Ae>du
z_LQ5m;djia0|eK<?&Xyuv2oA`2uN*45P`n&-gGgF`jcTo)wc!SA9d5NfC*RBB7iW|
zOD^BP#vOpC$c2f+b=;`mtF6EN4NsI`fyn@X$T*2-cEE>-30AeG6|R+a6^Ovfw4gW$
z0sypu09gb8cDmn8?EtcWzt6(Ye3nlEQ6NqP5X%lA`5G+KdY0e1G?Ts*n02oC9!#MQ
zH2Mdm69<yhA18U8`E)EEi7f?nTzIK~`4M0~JFp=ArOe?4lkMVa`eG&5%D0~v^3P9Z
z!ofPPe?ZFce+N9j@~t@SOFs=>z3Rljmiu>JK5`yrcwHQR9rp1o{rze9>UARiO&Hx=
zy~-RCf3`FHChQ}mAamhI=1nW@ZJ8Rx;&8$G3$#9Sq4DEwaMrcu$aNgx&V=i(?IT2E
zc}{BtIuJQG^!=`2<npW6REGGJkIFsjALJ$No%=uN;>Ww?%=>Wl3FWehLh%PHu8H;U
zP?!oz^TRlv*HsScfjAt6L;DyDgZwu@CqQSpoQ9YypcjA_fd2&OnAlKshW?)bot%am
z9iY?FlQ42q!Jna{bEfAnnRtY``2-N?At;6(H2l)k0!p+(%8UZiEJCuZLNcskDrg-T
zotzP^q6Jz62A9+kk&xlku%v(M{@lPrPFYP+QBg)yM_E%_?VW*!hK8=LE?V{V!N?Rn
zoSmKB-Q5`se3*^Go_|S182RzpByhQvy>Kgh=~0UKR`cG*M<Ae?Kd^%@xcf!;ph)E4
z%cxP2m=VGFX`#fqS4p#?smmg1tD@PPV)^@Gt^0bx8RGf-;-zO2<=2vJcV^|+rUN%-
z)A#5YJw84j9Z91T^O6$uEZm$@I*L|SMK9c^kKdtvRTUE}-QC@zqob%X)WpQZ!oouT
z${jixN2lVu`)6yHkAE+3&d$#Mzo+5oi~0ZSKnLj1{{-lMIJAhDuVv-r<z!#KM9|^{
zpaXP&+~>mb{|V5ApW~(!CX?~y{3y%fBP*(c;_{Z)m-7}>C(%VTbmYj<wFH!Q_UG{R
z_~42Tpt41qt4PJi=Q71ft8i!M=f$Uz$5vNG3;VWKhg$dlbqC<K|67&&<5PFO&+AWi
zdv1iUi5<0^g^9U;=pKEvj4P2rl`<JE?%nMYG|XJdz!NRRZaV0yQ3XVXx`&7ba8}ER
zQ-TG5bLqX4QBLM$9uzM=j?idj)}e}9Gm;!6Ws(Xow5qX{_vbdjAZ0~<l0Z@`#*XU?
z_ys{&OaanBFcOy>fI(p0Q%j~#1Oz;4<*`lz6m@t%H6wy3@nVFY8DlNQHC5Rq^3oX5
zhnoDwNyZMW1_0hP;BE3UeXcQO-Zf65B4_<*qiH6Sj13n$!hC75OhiYiPD-E=@N$nA
z;zOT%_E$avs;NCu_kJtb??(swH1$N6cS2Nw%4<{(eXp5z0z--js2hyj<{0n<c1l8c
zL!cBFf1`oo^1J{*$3OIpC#82AaR5N9V_-vwx-V4_Q!o<(ho?*wV0@|yBn|f=<YY`t
z67XpawglDq$O^*G8I$Qhs~!lT|7JhNOcw`H7EPomTIVQ?J7r+qNn0NYTUhlCe!*w+
zE0m92^_Mb;8$`Mm)yBj>%oLUCc@@E}{2^yhxI(%Z%Cdkd6%wIs<P*dYCI|{<iqqjW
zq5r?hmp@Pz2*Vf!20|cEH0q+@5Jdk>(QJzuAt)dqK=DEzO|t$+)Av6->%W>lcNQ7#
zXDSwOB{z0W3wFK#W#_YHfV;xcJwVEOaNGZ<rq4wQ{vS=Bf`Xi?hRVBl|8ex`{*R;2
zRsX%IvW<(rjjf)Ii=Nvzm;XBY+-#IxZS=mmDSNu<nVXy2x_P*{xxwKP|F!ca!QY3W
zSs46%GF&nDzk<F(`1?vU3xnI_!)+?*-3s7t)x6fFXeg#^6Q*o~UK^T<reiv;A$o3c
z|D)-1u#0j-dN6o5F-LSOBa4+onv`SO^#Tg?LMruQ+HH|>4nAS-AxR!FskX=*+vEn9
zkbL*pJh%9&Z&^*sA-&2m{mRKxx{1Ad=-1pC`}khl>=E0-1(&=*_u?t{ss;Ckb@%Rl
zw6!l@`9I3OTqStHdw9irc#aK2u^U?7$58DCk9T=f?52$7aj9;_XoFuWQZEc?8-{dA
z^tVk6aLGd|7x?Hk_$XC{=rzaa<%ihj$2g(gea(rsRmtDlv%dF+z<WcL`(u>*6ZEE%
z^?H--CjZCXSL`uYWV=x2x>)7DUh9tDDIXdWk0yPoF<}V_31P{(3Ca11S*fvkKl78L
zibE@NvyvN%!)o&q3kwU2N~?-%nkq{Rs!J;ys*3CC>cWb9!?LD=8W!Tpd*ceHlB$N{
zS{B0^*2^2l!hUU`?R+UC$Eg#?Xf<E^uinbuxx(R%;)(sDxy!17^|slas)dWj_3QEK
z*xsy$-j;@`mYk`E%Jr7;-e1kLzlvuEs-`B|cYcL!cPAY8h93_mo=&804(6^6Rc}w$
zAERB{(*>7{l{f2+eSLic{j(zzGn1o3Q=?OJlY=ueGyQX$153wqi|hUWb@46!*Tpw;
z@vt-Bw>~>_v@~?IG_}3Dc(>hqzCHVRJp6FEu)Vdtd2oh?k{eg|rw3cdd&dvgoB!7X
z81e}CztnvHi~RZX8hX2<$)6-ug`h5){4qjwHl8`t2#G%tLYKDvFY*UgKmmH77{mWB
z^4IlE{sooH=Z>eE(Mr1RQVX`MEG6o;_9tdP(d6&rK=dhAsPt6zXG|)9%qZJ*{eAC*
z{QnL9X3OzPF8-F}?3MkKvez2Ha$0<Dr`l`BC?{soU@xZ{#BB8!+p2u?{{(+K^%=Xo
zvKH=!Ti-&y`}m|zGl!2ftSpo+-|+odYB<dQtMWhK&-Wp`2C-bK72Y0kNMdiCRuA-D
zwn=9fN*z4)d2}t){~=&&)cnT($^RmMw({#-P7!Ho!YtP*UdOxQBV?4e9Hz5l-*BS=
zp-vYRh!x#8txm+Q*wKcXCJ?dzA%Aec{rqkUZ_@ktBuAEq8Y)8p$|ShdwZhJ7;A@G%
zI6Fdb#GL+*@&6%zCX!eee2j7;zvVUkuxBv4lzAO7veZDmFFLGV)otX+U?Ju=q6Awv
zN1_P_0F?fQ{{?@<ft&I((Q`0J(F+r#LYR{iak5ph&z3lyzX?osd0t924rkZ(x0?}n
zQ&FY>PeHVI#Jns;jO~CfT>d@q*}LQ&xL#C5MV3H<G-=t}61R#XhCS1r%|{{a1PG5g
zvm6s*>tkxm#oqo;i?_PPGH<K;qsulB7(R(9@ysxXUj$nDMOj7Ii2|2ICWmI@<yxjy
zpjHbD2ikcYeJNf9M{*XP3<VedUK{36rf;v(Tq$XB)nRx^lrGHpO4}qix`WL6s1wr6
z#3r}LW;))5!wfZeO~vC3izRUq;?ahD!6R3O5sL3B=_|Tf<Xl*qMOH&~Iiv74*6OSz
zn7Ugih346{4!Uca0;Y!X-fY@+Nt1s$8)tT_kFKb5UW}^1p)@=VpV3x|ZwDJ%7nlUt
zGwY6llSFt>?99;eF?sJ-ngcY+L8Prnz5Vz>A>56sZjwk{R0lQTBP~yTYV<24u%g4K
zR)&JH>}oyir$vW8kdJ@;kEA}+UkQ30@(DYuo?(g^3O>Pqzh{b7P;nyuoUr^rm+p&7
zxOUK*9f+;paG&hYa*{MtR7Y@|UHU7)N^_|s7@CD7P2L6X{>5jl^zIn&v4f7rl%>2Z
zzrR=tG~W-!m7uMgAbm3LzGWmUrXCjUO^{^sjoeS*5Gy+)b{_kE`NTeT<6+I>NO5Wn
zJ)`Is=%L;*3FNl_1pv_NFMZ^r1WJ`l^*_S*<Zv6oXzuGIa98I)&&FBOlYKISDz+#5
z6mwqH%P2BG>=jE1mk2Q-r2N1pBdoD34w!2SKeA=a<O@oC)RyP#hsnRXP^Zi4mja(<
ztD84j&;nuwSx&5@m~1Q8u<QGKxC><b35iy!`{n3v>6!dqdjw6bf}|*g^5loBS5%Gy
zVF<Dv6Gnw4JZ5Pkmfw3HqbmaexF=NhN&6ufYzYhfeDb~<&}RzvDda2)1BwrM@`Sqh
z5~@k0fu7Id%9b!0R8ZVY_F#s7%^;eO6LBn5et|9~tMVlnHM2qXakjy9zElb@%^5a-
zlcija@o7n}fg$v4RKRO{l5zme)4@_OmHKu)XrT9(s~}HDhV`<}@5cnQBZldL=805j
z7Lf#4%7oU}LZAU<3pe_sEF({e=p{wP&Y37wGBrL9f4e!&gc9XS@(ZzBaWkc1N$f~5
znGJfp%uD{=4Oea`R`Ca@huU`kk@uk-tZVIw_WU6qO*Q!|s36=7s|><&yEYtvqBm2-
zC{i|WQl_OcF$^@0kpf<me!ZAtsNf7r{5=5EPyU<Asj(wGDX$vt%#`$UBoE?-*2zA@
z;2u^ADnmX)h0GoEzGP%q=~J9hP>l6cegR=aZ#FfCcbifV6sj-lMKhJbirKS^gsGEy
z3I^?S3rYLsM7o&T=lMR5>!!R3-xGG$?6#cdu+U{u(*0Ye6)bqZOLzLND;Hyi!Jaut
zRY;Q=?>CICg)`Ckg;ICe!+Ej1&|<%qhbH*3?E>ML9~91;C(*%R%GeYd`j$g!X`LZl
zq2Mr5awa4y%gCmd0J?54sTVzwa%MoH!Y0M77-K(55=jj9ckNU9eUd^>`tghT7ozQ{
zz=MR6nD-E4gklt?dth1b$j@&?TT3?=Z{fMEbAp8Hb?Gmqn{p0+7}<utJZRhaL7?!H
zaM3FI5{Ieb>7+7{()Z)cdS9{KX1~?WZPmbmQ#-5b*VMDw)tQrc_Osm2jM*NmrO;?&
z+y`QF4cyrH4A($2YffK|t~qlvS7S<?%6DH4KEYV(7!_4Xfq|v#?D}r<FZX6TcBl<~
zm<DRV16(pNQP?Zu(5|(ZopZ-u=`Y9dA4kfkD+gSyHyF1ALh8zJ<c2vBEG{I2YGy&*
z2A-Re)G4xz3>!!;MV0f5++P|AmTb0nlYE5NH3Vh@iie!ZQw-hBgc5%$0It6^Q*Y9v
zBM`B-cMHF}E`&?k&a%x__VMA4LmgpX7%bAZ6P_~Fn0`1nUJHA-V6Vq#_yJOMtgs9O
z;F)-Tu+P`!+CCl-_H5zqH?$f#w6O}xDRxt-!Uc8M;WlgAnbm|B4rxvhr?PAPWlUXG
z{-;`e4IeUtu>Jd$_k%%ujC!rwCOyTpi(O}B_oA+gTs2Lt?)*0{+s0n^(h_|x@f?WA
zm11o;kAOsI@la7PTDpAjqUtYm@uN*pFRjrhAJS?DKv?}^@5oWg;u7y|FaHRxW*+Og
z{={^~vtC`n!%rU<v|neCY{<trgl<rW9Em}UoyE33zcJawx40G`-rSvxZt0$FYn<!L
zNPHkI-v1EE#r8+3(^o*+`pa3Z#E;M@rh)rI`ghl}Zf%#Xw5RkvO&;Ojo3|aRTUt4o
zu@~#x&H@|K527OP-eWzpi6DhGo{YvxIm;rPaX;wU6*MdE2;KB1{`|K;sWO27y*CVR
zYOm4eQnrS`{U7IV13%TgS1l4o1Gf*CuQb$JT<{XtX0MO2p*Bm)Uc2$!VjG_#Url45
zIHtHk$DSl6nkXEd)^~}`RN0<9Mh*DpZhm-7d4kz?GfPOi9q#9f^+0_m_NsQ2rD2CU
z(TVku2^@JjamFU$UP$g$`ipapT-~mcSLl>z+E*LU_u<OLRccFaBwCz;h_Y7zu-*NQ
zX3ksK+xu=!wSq*nMG9Q9`og--=92u|biB=*4g3;2ADcB>4nZ$>Ipmap?YTB<Mz32q
z4_RdnrDB{ts?P^J>$&&o=`Ng-^2$hJ+gqK&pRve_i3f3a#xGakYLf8vM;|Qbor_C>
zEI`K{CSczuOVN61N9l~DmvIHo`jf@k_&J!&O}s8*@pnxM1j!Qzza(}Ld}*;2z>(zm
z@Wh!Sz;_zkTebm4YHI%b5#{F_%R9s<wBq6$N@4y-7JLh$@RNt}B?h8bnacS4er?cY
z?DSficwUPw_A(}5VMbvwpW7ox)&>}SvqkE|gh<tSnjTHeYX@iN6ZVny7YcCx=^Bh(
z`D6y2+irXHvxcA`A^fP|q0R4+rtHQ*oM=W8C>*@t8j@ug{`?m-jUGHA2($VW=7oV%
z?n=hn3EkKXX`775xC*CT6H$SHcma`VcA}g_M49B_AfYG>-6$-#C`fV?PGc0_d=$ZT
z6pS*OSSXrQH=4{Xnj$%xsxg{oKKki(G(BYugHQ~UZp<^c7}n$%_Qn{_`55l&7zAZ3
zuTU(%ZtP39Si#5SSmDN4(fL@h>sWEhI7y*6Y27$kw>bIaIK{>|<@q?(>o|4Fcuk>r
zE!}u+w|Jf8c)iAWgZcOm*YSpw2}VK*Cb|h`ZV8{06D%7OtmhMKt`qDi6YYf(9d#3(
z-4b1s6WtpV39<qF;y|WjfSNkcGnq^m28P4})GC1fyYNq|c>W~GF}i|f2uRpGi2#c5
z4uFl>iF=QPGV$QuM?uksrF(ip<ov6G;FR}q$*Dr5Z%~AZ;zYs~1Sf{T=i}geb;1S<
zggJ_E36(@M0XSIYxk2I;CzD7ZNnO=pISMI^$7z_^Sj}!g8tHVj%fO%}?H-jTDUrT>
z1e1Ccf8uaNJT#DsEtTHMmPRF+c8|o5WlL_iBe3g)2(N*MchhnyQ*IStbH(XPr<w2l
zGM9x&_jY0E&b=4_$yIO$mP6LTHT_=&Y`jX09`Pqx!6X=p*%<Kj@%c=!ce>yFD+b{#
z`Oa(!U^Z?vmR2;jz<5@xE`psZ`*<w_JvY9JB4kM+`IrU4TFa&d=7F*Sd0E)B(s{Cb
zGOrX#`9fgTNYXnPHdRw94-Th_V(#BhxrCKqc@2ClATW0oL<%gRGlX#*fnMX}K)pdZ
zt2pKA$%$+*Nnt?9JP<1z^jQz4(}A;{jaS?OB#Q><!II19A()k*AO&<(hg13pz%4t1
zA{Ak5QE6cBLafR{ubV<9jY5|}5Vi)0UmVOOUX1e<l)V6=$p+}5ipuS9j1*zautF%j
z$j`C}!@CGC8la0R@_&Pqp-60Q3B##K!h{3!qHwp5aq5JL-|4|Rk))@9EDT`5&pnul
z9t`1LnzxEmMhwYYfIWlZ_z6Q+Zt{bLVbClPKdkT<dnwrPNB<uFU=tCCI8L-1&UOg;
zk1>b}h1C%ZY@HNg?0~Hamv5%PNa%4Yj&KK8i++dXzsk-h%*HLWfQ_WUR0i|si!)Jf
zFnj=B3J>9h5Wv9_>mHVYkzLt(T?yBR5O`y3W>KOH)0^fAH6NRZpoX}@RFpTX5RgRr
zqB@M71IEcgdAeFf^Qnqe1SZ7+Lr_zmB5|NVtbIUj_z_I2lyXQsX+8v|#zDy^0(jw3
zjqMHQ;i!JANJPa^23}33wZeSMK{<xVq5fJ4`h+Jxj_)Xv-l0IGvXC`X3~0-uJVe&u
z5#fs9)`lWVcTj}5!hpB1dM^%`jR?%Hl+s}l=F?1hNRQnm+|bAag?cx@n;UQ?nz(Q)
zh2fP1$Eno&nX&sY755AakwUOHmR&aC44m)@qOe*&9bAEB+ev6Fk*QUgfph#rE1Ph`
zutiG)YM_@z#)A=DntWkLXd9j09^3-@nlZ!HqV*`z@_V(VQlF?jG~*?zA+?h*KpiHj
zp0=+9!CeFF;Zn@ql6~s{cX+@CLrI5~+U^0Z*KV+S0Qp~Wf;|9vU<FalP$gKr-Ij=O
z4L}e)M98gIzo`Vn$!c4&s-$dzeOJmijY7_J;$w5bgaPdj9AuZFq|Xj2dxD{`JF-ax
zY(nUlJiL>Xrj0xe_6|UPjB2s-#>3PAPjgWAyTRD*$cB{&xbV`jm0E4r2)5U{ZKLr^
zLP>rs!kBTIY4N%!mug@BC;+ehls_g27KcH_alQ`WyDnC~rtZ~JOqV~#i)Ke3#O+Ik
z;n?A6RpPmb0!RQ=@@qI?Wg<qrvhYXo;*YTUlMXEV;Z(;ZLgyd7?gw2IOPvTDjI~sp
z_8Wk1C~2e!Ab5%JbalY>05ir43jGQe86xbbFD1jt_Y%+V+Ut`C_G9q$YklgU(1*E(
zlJ-~B`zYgSbq+p(_uAhi|FsyjP=?8=w+rmm)7^C(E#ev8_23Y7og<s&qw(9>Vb8?-
z3l)aJKuj$-p@JgJu%f!f3idY`Z!fghA_O`jN;oD88&`fZX#g|3%P=kJtP_7S8wG2p
ztikghmCqi<8Xv{|GWsW&6a_<B9-!{kf9c*4>kp&P1oc6AB*l7&R<Rc>-gmy*2+`=!
z0`@V}4yXX~oslrUA5iSaXh6d-zJ&<vWmZ=^dKcRWA#NCqbAj-7bppXPxu-O_MLj?X
zXqWbcX`^z$u<@#3*zYC6SIRJg)hQ?tBX~b+$9+<W3np?;cE41I8mz;B_uQk}NVA8T
zZj*E72{FTAtG7+`Utr~7q?}$b=lxlGnl=w4`UYuPplM}NfptaI=PeA&OF$v;lqAHg
zlNZdTY$lI$T0Wd~4sULOvxcJ#7V1?M*EHR%Q1>Eyh&5%LqjDVQQ!nMsIAP~Vtx|7t
zV>?u$(sQI9K0^3bpD=BpZ#OHsQw3&rFb>fGvwP0qtYv64!P<idFuXI{T2p(xU^s}S
zpUJb6t*O0_2Msu#=_gTuqtt1v&UC|9y{l!g7aS9&VWj<Du)&eB{A(0$<?J1D9txbz
z*(H$Ap2AwrCmYX83nLBc=$Q_y^!~DpTZ!9T*10D#2whvfuYh8%%~hrsJS-CeB4Fc(
z`I!F)dv_TWb;I|6e}ScAe@lbJf=DPJpdd&t-3`*AfPgegD6w>RBP}2(AStMHBO$4D
zcS$$wf6?PSPS3dR`+q;YXRaBZ?F<7mz|8Xc{N7)mnfDP>>l@e^b-)ewuLSTpa#Wtk
zbE>QO4OQPb+g!$ren8qG`|WA5_f``_`m|&3V8+-Gu1_~RZL@0VI8IYKhX_EF_2$r|
z4=cN0lBoR>z$N7V!H~X4(6p#fw{*K6utSi3LXa{OP06a^j^3UnfKIJlE`DKK!h|mk
zZDzO?1JJ2O!loHbw0V4=YS+lw$s4az-LcDG&*C6`7B6>jK8@G7(oMZA0o=Y!N#ZwT
z*7ew2t<*%UJr!waV}r1i0MXk(oYCa$8ej+zo+&Ndn9JxX#j~T{up7sF2g0A-A?K%E
z54u{YBJ7Z!gm~2hYCE$GpJ(r706AT$ZPSqSdZ4Cf(%&#m;R`T;zuZALCfGNH0nehC
z0`enBV<G|E{+c1WA3k(j+f#!*+rT$vpoOjx!jLLf0(fL>pGT1Dlx#^Ttq}|?)YdHr
z8v&Dr%NTPVYTLlT>$%>^O)Kl4IPk1fPN0EqCa3-lvIM}oyMh(7)8@5SltB`?#VxnF
zFwO~h5Op+k{lqgJm!TV7*`9kHS-pg;?+xk!z<68Oa~=9ud)RZI-<NDKL-M#X0ExbR
zy6_*{V{?x)ws}M+cz>oydrw<j0f!|AxN{kv>AmQ?-*mPP=v4NmrXV>RKu$<)we4Z7
zS2@^p<w^0hC8WjLI#nwJ$fw=*_B<jTIB=Xiq(_o$<3eU(<i4UOzQ%Q(?5MfMvKVLX
z72Y~zx1FM4D~%&#dn@C|)edjevf77C{pm46?u>oqeSNx3OQKDPX{w1~1;0H|a^p>+
z%3+Yu_S6-Cr<$f4bsDBJ37PAt{xI7lH@9C}@jmLrmuRO2^5w&`)Y}aJbJ#(f-0s<@
z3#pQPqLNKBWRrLCg~SJ-7x^K*VH(mhc?{K0TN(oZ)n!@kg)8L?42M0iPqp#S#!Zzh
zySkO_;<HlG<B*K4;v1uf5C8*A#KhV!)9{iUkCVM1pT61``yBpQN9}P&D8Vb3CM%b$
zsFx!T=VY?OY`d46wDe|@lL>~)<?UjF(f9PssThz{CjKJh>NE^b3%rN@4Amwa9|&t=
zKHN%AlL;e=mUmbQ$Wi6Td#>}Ld6-rov$^)uAWMIa1TOVPwe32H2STA;JbL(Spi~Gu
z-fB!eQ_#Lxq^^JG`;KXA2-#hW$<f^>oiVpmEEKiP2e4N4`WR#%yfb+JIN<2!L%ku*
zs&x2<jk~}~UnGXeX9DEy0bZqVHIHuC7?K_hPk!_~F5x(Hb*!tf|3E6j$NW*NG*{)V
zk!ONNaOV^JgA`%Q^&FyeM!~iFxpqG@hamh{XKat6OWu8ZI~_{7i)N<qbTcyb`8Th{
zm?)7my#d9$C*Pm3ilF1yM)CRN>b$*+$3`Oq{mL`!AVDN}fI7`5(aN5`WcjYC&`MLo
zA@@pL!U42n!hWY1sc9BM&mTCn0iy}>1B7Q?o<MSGs_>nJL$Yp1(iep<ZnedXFO<n1
z!<gQSvsc)3QPWn(l~Ey&@a1d0*x7J`6Z>wkJ*e=viOOH-9CqsKH42qe4D>*cljio!
ziBo>L%_HB5iOh|wK>EU9OB7C<1F`gilJU>g<?mD-s4M!F_i!0{srMG=jEbw@-?k<V
z=1^_8#|ux)>XDVdm<@k%E9i4}R>8eVri4$1RwE-?VJ|&L_!+})vwd8C_q^99`2;P9
z#`5|!pJfNMt82hvexGBPz|=B0aXmYhAxOPfZdkjHM(+K~RMKy>)(h!J#J&g5H1xIF
z%-+*GE*>V)*i#rd_Iu4<J}`Re{L&;)*~xLePVr`<+vCtXA8WFdK9Th@xPuM5&^8A-
zSfwAF;ocwCDm>GgGCh3!F;g~FowN3_U%8d03DrvySqfbuzLkLS*S%3WJ;2sdvR|rh
z7C3V4X&j+zWK2G?@Ws7qSTSH7I|&k|!!<KJFMLxFt3oG65dBfQ$B10RPNPS8;BmN;
zZ@<N03$Gsa$>aL-qjUR4tFLbFV(X|$Eq$E~-50gqB=f#W+9gmP&3vK(OZUpnKJ7?Q
zm4C?c*6~R9>DLWC8hzbE#`o0aQeTAjd+itU4%%~FzSs)6mso~6jA#??`jFCB(dRhJ
zi&bc<q;Ye9JpD4|&fS4<<Nl1TPG?Mne=O{<{pI-TTpruLZo#K<3;Sj&Y4F;?K&ywl
zeUW}_+U0Qdoli3T^xsz9;_UO*u<AkxUVMHvxaun{h=!M|aar?So){qjp0YQ%={O!`
z;V0ZR%IR7&M2WmO8YFfv?eSRE4>?1pO#KLMbL7&;M}IU}8>$)Mhv7ap0%+9vlw!J3
zaihV)m&A84)q*9Ma`I&l$VpPe*!McS(AQXQ3iX!IM|B#1Wv*^PCuU-2%k9DwSb4uf
zW=6qcMo1oHCY=ycqVUX&Fq@K5SlxCYkYIP-DJ`&}%aTixHdl^XY_;m5)j#CE<NVH<
zPeDvHCVY8_W`FzOqcCx<8Hs850HVFKwKRZHz|r7K=!u+apnAN|#k_pGY^|^2-u;`V
z5(@RZt%YomC^9Pv<K?&QX!1}$e6@@#p1sfe#o$PlaAE*EK;bxfz~xfMT>9lHqhU#I
zQrhc?8cQUPZ_BEqzRXv-JKpo6avyV3$aa_S5X#km<hUEe!SGF<4%GKj*eUSzc4zk)
zv@|9dlz|DyWxP}V!6kAr9bX`9mk8Xc#;lo*pOAb)lT6A<EQyx7CL>1S6qcxZle3du
zYr7wd*n_k6^&W{1`o<%`MDIWmvTrV}ItY<B^LO=}WBt(YCWVnYoNt6~5qjIn?{MpO
z9u*q8LW53sA`RnB#o#VZ6}&7$@u(;P_&Z<buYKVrmGsnv6ZCfm5uU}J8IxkGAmZ6D
zqb4pDQ-f#Q<=O+`l8rQW&xtncKZ=xVFBW|X?UwlZkUUg6A=~ekjp+l)#IjHO_)Du{
z#gv2b$i$vE0A^vcKf0uk!H8y{+1Efiyk^X9C)DG)!&cncntq47H_3Lw8~x5=!V@hP
zi}y|>;E}4~iTx7ftv0&K3gh?qm^BOwlr(PQ5&IY%w2{^^a>{BeM1McR{Fs*}WjsAM
z=EKy8Pnr;7S}CVuhlNRDMuTH^&Y=5MPn$0JQj25IpCF2@k=#?)UMf{zEh+`}=@VwI
z9`4ugNIQpo9Bxi{;_SEpk(m$f4FtNZkKqO;Sv`2b-nb`m%JUF|8lVd%M!+>%0(Dw%
z2KFQnNHKU7RKoahtVKJ~h+e3&e&9DZ&>TQKcJf%DAx#a!%$Ht3!)rxLJjAcuhBL_7
zAj>2LsC?DXDi-QzSu66kY~8w7C+=V;!6fokg__}!H;-=-yN^wSY9=W>DXF^TOFGGJ
z=R#z%DWPMN2?Tl8OKEB9H}Fll1B_^%q<SrdlJVymx9<`%9^britH(iM6S`b)hLL?$
z?8ros<44{?HK?OxrrI<~{E1K!En>Ul%^jw-P%+ZpUDb~K^D<K64!!Rc%Ji;;c@Rq+
zMpjdY7iI}~nePn)997@Tf<@A9c`@~{P!^GiR^`9p!Dk`}$p`L}#xk|Cf{IbKq2jMg
zHY$uP<N5f9AbFl`jN28@b5~y|l+XFxi?kcpD?f@p%Vr8>HEGb1-xbLgwm|}~Es(f<
zos@*tfYDPcx(03C(o9ePPq#hF1qzE2$D8JSckJW(NZgb?26qEc7pr&jLojTnh_T-O
zn5Q)E1S3o}NhKCAD)ZfYZA-FoqaQykbbz;K&Q^h=(aAW1q%iLJV(Pg0(fGKd!C|P&
zoF?I9l(##{p9_<{ACg4Rk$uRn$BpAqj^BM#4gF61cElqCLl|BsdKYf&i=y|28XCsI
z<XGGZU=R5A{jT$As#s@x#7&y7s$iiC5Js`{)D0u-bFo(CxBwq?(%cg;J~_!jHia4b
z8;4iQeBXSknM|;}dpillGGo$y)~<l%8oyDXyZQ*hNE?9Kd-Bj1E%9RbSpc$)4K(*N
zfC=>a&X~uF)t-C(`z(?;Y$*Z)3?J13aWdDpA=~ahU(NoEGL6NSf;o6Q?*tiNEPPXa
z+b`?Ykm9|$`qcY;3h8yy;oWMo5PQ)e<9)tjj67fQMqXxSW2+{ppNT?n#iGJE&=tin
z4aBf)#B?Qar71(e2v%R`#!iG7Zmt;qq!`hr804a{VJrt!SR8&cAV@$IAi#s>7SG;m
za?ouc4Tn>u!KsUyd;#<~)Y#^T0AmDC9fR<VG(4KhXxdFU6-F~mQT&#HIP;{a?VC7v
zm_M^YI7?a_YnnKFk2uGq_^z|Bmg+-G+#t<l0Zv7NyI=_?K!S%|0?B71@xViZKU_i}
zP2ypZgkY_NP>+Q0q=d+(gy@BY7=a|5MpB$zQbI^lQc+UMKvLR9QpQ74He6CJO;Wx{
zQlVB-u}4yAQc`(SQsqKYl|V|3MoOJsN<&CWQ&CFGKuX(2>XC<(PPmkAnv`CVlzy$0
zL64N-q?FO7l<|d>34ydJjr3!7=_f+cW{T402GSNb(oa34EyJa)(xk16q@UGF+w@4=
zPD<NtO50yZI}pe?(#SZm%Qy?kTt_?&WL#`yTs>sm!e!jkWL_4@ysDM)=#lZ9l=0e>
z@xG8j5Xkz_$ojI&`U%PUE6N5K$OhWT26@N^hs%bf$%YomBExEB!+T^SCS@ZxWuq=+
zqY30<Xyjtq<>G|o;uYl*4CE4R<dQt(lEdXv(&SQ$<X+dxrS-_APs(L%%4J^2Wf90{
z)5zzr%fAtl&sCJqGmy`>k$>wUUl1-|m?r<ONdA4Td{K{l@uYkSs@Q!YUrL}*Mx#*9
zu23PQP^qX;WuWlUMxok6p(b46Q<}o(B84xt3bj27b(0G9n+gpV3XKGcO*D$l?5Nw0
zimi%@Z3c?%Hi{h{ik;z#U1^G6ixj(S6?=LVdnXn9HWj~JDE1R54bUhJvMUV<DGe(s
zjTk6>w^91xp)?w<G?u0`UZgZpt2Ei8G&QL-y{R;Fp@f_zP@bbvo@ZBH5K>-LR9-Sr
zUbazQ@lak3S6)j~UN2JKs8!zVQQn$V-riLHd7->Rpt4J&vd6BnFQjsysB&naa%7`&
z?4fcJu5y~Da#o~rUaNA^qjEW^a<!>~yifrVs-n@VqI0NX2&;mXR51-zv20bbJymfc
zRB_W)@rqUP>r@GPRSBn5iMCWBm#P4v8kAOzm_v<3SdCOkjm%Ju+*XakQ;jl0jVfJ@
zx>)T-of=KA8ts%C-If~tr5cP-oq<-Jkpp#=Nu5ba{g$CRv#mOdr#fqdI$OH>?PB#i
zb?WTB>Ks$*oLlO5FV(pSHMnUtcsMlf32WR}(m?VWYVg@=Jn+=ukI)cE*LYa0Ay}s&
z)T<#pr6IDVA$qAHMyLs=)fDH@ln~aGRMM0()ReZ>l=0M*jnI@!*OV{TRH)Nb?A277
z(p28kRJqhtCDc-*)l%os(h%0tRMOHi)Y7)qdgQ646QQM>uBBJ3rC+CI(5q!QrDe3G
zWqhe+La1#@tNoZm`-!l&nUc1-p|*vs_ES%7%Lr|&bZzTm?Pqn`Hoe-mQ`&Z0+V+>)
z4up>!X&*UpJaQI(^jzuD3&Te)wvSvrAGt+5a!-HsviQ*}r9n(L1nvo%*VYgEWCXSj
zNTKV8=iwtSOdX%PNBqN&{A_i+F-HMYouC&w$Y8Be4t5Z3vQEU|BV1MlVbf>?;aFtV
zD4RbbT3FXB071a58&9a4aBGao1Cf}ni{U|#lCB$Htec$B6y7$Ln1JY5)y)*v&6*k`
zWkUGU>cyvn&~*rMwZ;?8_1+wcp(FG%ZS`6U^xmiI7NzT9504iwjkka%N~Ok14#zPS
z$IFGsaQO+U3@0LN^(zg<vIF#UJi|U$O+;{vf4XdVJu;ET5!!$`89g#qKPB3nK9(ap
znJ7GY^+dP*#aJ3*vU6lK>4m}h9mH2D-6&ez-l@sxErXtjhFZ+2z@>>$R>PsC(Sd}9
z5yG(qx2XtQ!;>2ZW4t;ow{Rxvro4I$k>g|y)k{-;Qo?h#I-f2L5AGNR_2Mkq>MTk%
zVD{@X!Z6<}jrs-~<prRxkLYiB8tqIN7DS*=&SSG6^ky)P<30TncLJGEJ83cF)I+0L
zjtN~D&tAaz!mZ$0Tirw35C;&#3xv2#AG=7HNuAJR#KC$Kimf)P7g(ytm>iJ2gGIcG
zt;O$C%4@RYr^mPxS8p;??m1h^fnm%AqPU5svjcuVGW*(ZoKcoTwNxL<sgDi|0-;(a
z00Ip#$uu{8?L0@0F$Wk0R|WV2pa76I<|`1$vdI*rYCxYafTL|9y5Ud2JYTGZPLq#D
zwTg|Q8UV7xW#&YnxlFU>S0T%7{Ul!pp}t}&y77CR*q|dUnm*zi7ND=`Q};4>YshBq
z&-szHKhD!K#way?7+Fytd=J|BBw}ho_s&ALl8J}qLN<qq4`MOG6XO*O4Z|Uxf5G1?
z3+=8QE=J?x+>1pWKjUfPnc{R18b2BynvYksISJ8h;-R4?GyA6PwAa?O&#3vuEs)MC
zzHa`K7YGy0QrEc8yk*|p+kCoI3W2^8m<X7w@qz3qLDCsI7LmLfe1-~i!S>UmH2fe?
zmIYoJHo%W4*s>tjSo+bngoaqjdofdA@Pv-Yz?F{s>6OnY#{@120n9Ff9E?GoKJ8O0
zPz}Q|DZ@Y$%S<UmA4akz4gwK!r5iw3_D#!Zpg1^!bAm?9GIMJ+oU_Q*XsVkwB#v(?
zo^#EDbGj|SDv6H!rLuv$QE)2r<m(Kp0AI`Y7na3e46~NknyFW+2v-(f8RjytH!)81
z3Qy!XtbYx#&gWw<R5o}QX+6}t{*JTgt+_#=R`>_y$<l3W-F>U~wAQU+&kD4jRgjmZ
zMH+VoZ|Hk%yw<l$v$g7M+(;RD_9dS;+V&YL-O;E$9&@>|8#kIaW!0r>^U>U<wM4)-
zZxlhR)3N=?Un(2{`Ze*SL(PZTQ_&*P&M^XiO*|=Y^TA*+st58g1_c;QkNH=lgaKy9
z0DH;&Ytso+aA&*Tbh;>_UWPH)GcdTpV2UtBUD)-eQ&$0IkNPlVa8-c4G=#~?$^X6S
z)X~#bFtk@N{A<&xXJ@bbYtw0GsOV;>U~i}Q=d2So)ke)aUES^6+}&XRSaz}*`J!f>
zF!?ty`7)T{U$aiwKW3dU_X_S`vrdKo+;kcg{=MmB`fJl!^XI114iRpLi1!Np=d9E2
z*R0b$?#-`R=NHA$7KOiNogLS+&YbV|DeYdN9jIle-P;M&veUhA_*KQ<%T8E=A}q-c
zmZQLsX9z1bgyq=5el0s;)h}V;c8cNddP(jIDek&|Pdq;&V1G_LlY`uH5eok{@hptB
zdlT!1T6um>{A1-A`sd2iZYW!~JIns-Un@_S-z(3AxVXQUo#A=4iCK9Gg;l7S%k{)F
z<d2DGes010ieD4Yw^i@1C!Q6RmH*Sk^Fz(IgwFLpmYqxgSavSdkFAxDAETC??U^<0
zCE@KQNnguf50``wzl|TQ3ja}^gxY$J)aK0BhR@f=x3|=cUT;0i{_ECrp|5K7kFDqV
z{O8Wj&VSo_j*N_a9b5jr_3ZfP*7NAc_13c!we{Sa>|U9jyjbn{W9Yg3Yv{T9Yv{T1
zd+2$2b%mOEV&eQ2cY%^4c465PzIgFsZvQRrV%E&Yq4>^#EfztH&;DoJ#VWd8)Y}$s
z{VZwiW~p~7p4X|&2ZnEN1(Nsz<P+YiWC^BUwD=DM3ciFYE}yvGwHc|P?zlJ){1taW
zwOziHcQkmvz@t-IceHQ1XLhTf)&sgD+~iO4q%zEv#l(Tad-4*yBX_DibPnC(_3yTe
z-*?9cci|15F;|4_4=YSti$&w?ikvIjSmIa;nIZ)ER3_@L+b#xnYKavKt6J%)KgC)|
z!k#hTFnl<*82Ll{{=Kn2`Du&dZ%8m_{dL@h`%0tFshiQSK(L)cM@%#0Kx<>B1Nr^Z
zehbp;lq6~glhJm&h>$e8j=R7tktR?2(X$E=&;V*mvu3;<?v;L=%$j-mJARG#`#sQW
z{C(iJ9CQG(B7YL)dxZvBP&DnvoF{jDNzKIN>3L_nZkJXLhD3m4W=Y{3)ZjPa_Zi1x
zLfLa1037bt=;l~RNVGW~4VejMOi9{f1~@Ev6^MLDK6Vo>sxH|`D!Hx`nm})Bsfu=&
zY#71%sq^IPYdQ|M=)0~X7&qXg8CK9hOdssGtR;;(@-PEEQePI^*yJ@hK1cvSyVaV-
zoN0}B@HA_V;ByRaP9@Skv;c=~2aai7#M^{j>otoe_1fiO=UXCy9bER>`x;F75WbDg
z3h*Vyn01=2*(zaC`f@fL=YVId8aX@^EXEqjU<)5T`p!`kH=+?NC6U##Z8(I(_gxgz
zP7=X!-qZc<COX<O;b&~T%I(^17qjh3jJz90wVU7l<i!nYNXl+fXbJrk?Nel869>NO
ze*hgXzfvXKvlAlprOf+M0Fn@(2x!}v*GQKRB){KdI6JAR+DAn7^|cA+W;wUePi<0#
z2Aq4b0NTdIo7W)KegaqzU0-ckFBw_guINr}+1ml*87Vn&1$%?2AxK`a%V2*y$FcjE
zi0ccfK%;h^P>dKP8mH(9LIDD1UGAl(o;h<?=3n>Fw-paoZvQ3_;r$HvW2N~4#t_DQ
z+_&nW!owO+5^ms$S?IlOewn~0d=kUP=TBteBDESHMg4{1L7Q>zL?!h6!-lGhu1ZFy
zW=Tnb{T#FH&dP$bbmcMA-M6aFtM{Yt5v^RgRYUvHNkQkU!;hH`d`uBxDzlL!g3*K@
z6}<WcGF6TU%Wy_Bx(;XboO7%%z9<}h40`zUmL%S6D)v%iRk&{_!uiG%tg_kT;;w-Y
zo;YKZ)$<H*@Rb8^IOAvI1WBatkuBSypNt~YB%%$br07CmIB4SV3j59Q0Caw1U63<{
zl`NZ7WvQ_^5>G6=i+>@AXy?13L3V9;?p?LW*+Ftk>8SfzfRNBd5X79a^-DCw{*e#>
zQBA@VViSAfnvx32pe)f$6N7>KeMdNB0BWvY`VQFys6Tg>2x$>a@;)PR!U=@gA`&L}
z1)s-b8DXLr7)hnZ@F_U9L9#6xCO(^P#e-f6ZiP@o(CEdV>jXmP<zNi3#aW=-zpGyY
zf;EReq^%n*e;dPvYg3i^HdToN5mQ{;ST5Y)B+Aw-7=~HeW>y&kR1t(T7T0#)c_N^Y
zi7Uo)@Gzgi+?@g$vGaO%vqv=J^d4y-Pk5bfHr&k(QpWL9pMRKv80$W^|BgKgHiH=S
zM>DeArw8VxR4aS`l0n$tVTJxuY(>ah{hQw;$<x(bv5RD%Xx8T|sc~~(;TJ9x7{sk{
zu5!}iZjGOwH#=s|tfC$UJLNFNGh>~5Nd>=u5;bNj8H>&@&m6f2v0z+$9^}J%y6Hwi
zLnj$8LwIxjC@Z?t6Y4y{(|Ok|k<Dm2j~HiwO~vyikoEO>1Vt6gW(K#sGd1{~^sP?K
zytZ4>(=BGFlPs^A<$ipw4`AK6|4jUOO?APUq#L%6mFBk<NZ8a(Rtd8X6=0(IOEd`s
z52!$aUR@4dSdzmid{~8`d(@9qtW1ZS{vj<JZxB}?9XL2shOn73PPx32=+h5+?D^&n
zBpp+ElV<4sVqGBTY~ej_)0*16BZbF9a0T%^6JCcKg(PA(?3LDS-G?_ubI^%htQBz-
z1=JJ}bStnHj&1Xwu?D^;E+u$AQ`Q*yKYW7kMv#ti!nqWtCXP0~xS%GUuIP~}47?xS
zkl1OOJ{<Ggyq7UpwJAZ_G8J{SL08KmdmkbPrIXKL6e8qWpA7}D?mTMwl-)_a9UJ!L
z#D_7t%HQIqCbTE@J{lyF3(m~mBafB9IBHWW1y-C6-P~+v@krD5632d4^`H=Th0U}`
z$_v8>RXp_S>=S=hdICSLV$bi4GHxFt(E#TX+*wJ$L^lspOeu>hlO-=eo4ovditJ@p
zTk}@p2hb{Ze01}1NQ&+(lP!?7D9#Z>euPDPlIt*h#IKOxN;126xX7x3Tb@~0D2R|g
zwNleKP)ie%oJe`zPtJWGeslpL(>EKsErk<h_<sG1fllSfL)L^l9%i5qZarYr@Ip*=
zNgRE!^U2b!Y~%y|pq}Ls^ri~is8<vR<rF{a61khM(pvOdPRB<Ram$t`pZbov*N0W%
z$U+GoD?iY16V!O#k1iiGMl;?h&-*}pnDOVTuiJMbAFH~3yhVBHYQ~#<R-aYeI<q%l
zS25S)L?M-QC-PoQr7<jv21c0ad^oXrTR(10RkGwv*xFv`#nC~cE=SH8&`g9xTg!Vd
zyd3ewY<4r<?c-DB{gexg*eSm9KtsVygTe`h2e}nu782TFvdrlT&nwHugs1)PVz)|t
z=p2wRa<o4lW$di$R3CKz;CjP<dQR?hGX`Fjx9aC-MD&8+T4>h`22rVkV(g*XjQy38
z<n5)}UG<$y!1-{(rQ3*ThD2SGoaojd6$`!kv5|4m2`#tV752Sc!~L)NSB$QX_p7%)
z?$?()Jgq6o=+|(gc&#lNU`Q|c^-Y)?>79{-EzYBfM>M!28k4Xma&HYu4PqvPSPlh=
zEN{8m#$>Y!*OZHX{YKJU?d)~asfTI(<tC@qdqK~3Z-3=(i#ta$uY?vd>7OE{8%>mR
zt&xmGH*jtsn;=BgR+wZpwHGUyz^GQ>K6!QhN)@lu&$#n#YYMt>AJ-S{&w(Uw%$k?Q
z?bg_qFYw%eZE^%=Cjy@pffekLq9He-%3?d{Lx+R^zW;9a10PRb-*qOvxB)Tr7>vv2
zS4V*e36@t14?IVfAqjgv{5njzRdTnE0U1-@xK{CK7e9ejpW=Qq_9tGVaDS;$HbGfH
z$%OaD6QZARZ*9~&0~eRq59HEWULu`6dLHPQ-ghI@L73tAQ0QojbvmWK2*mQy=&OF*
z_wjkdEgx=KAIoIr+_^xIj=A}M(3nXOlH>*A$YJ0G1wRYWv*fFl<d%vI2(nN1^ganX
zW&sJWdiu*k_nS20`0pOg-jg2<xuFq)Q3iU`h`-V(vN;bSd=XHRY%2k^K;L&-t@Oqy
zyXQj@h<xkqOX<^ejBp<@reJs&CHtZc$1fK<q=VAqWv5Hs1O0lpmuQ&kS6oE<&Jm-@
z5kD-6Xg)rFh8?K8<g%ivf$gIdRAu)m7|5y)CmWD|&@R#UCSor*f_f<^kY8>V$7mu}
zc8M$M%8jV>*k<DhvU?IWt`h~x2How){nRMnd=d&+Jqm=<A>aze%)XnH{$TFMnQl<{
zBiAm=@LE;?7GOiljbLdF0&|lZc7`+J#yX(FwfwQULuwRru5(DWSPGw5mP5#$N5nHO
z(B7a(T&U8yc1-*OfGc0q$pK13MQgM}Vrv0SDhQ+GrY~b9mL*GgAxrYMA`nWI*hlOz
z!X2ZNq<g<G1_N#lW(6(qz2w#nJjm7=5p%GW<0)~0N)5*j^2c$p`SF~_x>CA))G%V?
z)6YDFys$FE#7@2mjh{U>C4wd(%pZ82npvhGs#zq|B$V9}qsY_}=G>xaA3ODu6U!c^
z@If6k*b+-l*>76Jj8>)`n3_|iXiT81GgB&kk@fXu1>MY#txXI(CFMPu6{$-|@jHE8
zk(3C5Cb<X0xJDvQb9I=>(ju_!gIX!GPNC7d!Kl-cDo8N-l4TsJ8tCI1Voe9gwTKmE
zPDZVb&SX=KWMdIQsZ~cAv`}<}1GN4)6+|t*%H~D?RPaC*>f4rNEdX#;nUOl0IIJZP
z$N|X}8P8Jm!7`aT8eu(DL49ixJ8W_l+`cSN)yedrxzeUmOldT`>8Y%dgsT9yc?{-P
zQk>h8M6y(*XioQDP=s|s_jFSqQEA;gf>a$t`PYEagE!P=_hjBZO`ytBABS;O=}C=y
zgH5H7Fd~|F9Q^)IJ!BQ@KBaN8k)|92G1%d+a&&lB0G1zlp17GdC)qw-X+i;c7*O{T
zOpUCRe9jTQF*%?i2g<qb$93jQnw{6I13W^W0eWBa<fPx6$=X)CQQTey@DQR_E8Y^J
z5-_Pq$N*ZW``uhOAmn)=ZcHI<xd*12OFds+={hX3iltOS?dJjHhnN>$=xb@Il=3*#
zr+RuK^VVt2$R_k1CS08(0a_lQg#%CdN)<~>{l<*?ZBI(F#UmNelHO=&5jeYua$Lt%
zO%>Y_d?r!Q<yx>$l|ecuzPN7`n*{Xuz5l%aR1s>56D@0eP&fmaf=%uhk>?)bW)LU(
z;x>WS`i&A=bBWB&ukcFQCA^+7*y4Z$sj1&nD$v-x00xt|z-qjM2cXu~wB97CNe669
zA57kZn3na|=Idg+3y{LbTLfZyNTe!3t8RSB0X8NB*y8|l1jBcrewD-)-TE;5t^!bV
zNJ1$A5U4(OHO1qpspL_p;0vpG&jPy(R(O+xSu5co_azIg?@8u^KX4mFi~j%}t=xyN
zoJ0p7!-?QQoMOqMh{8D}OcG!KRf#=QLf^<se+fuPlPd`V(k2xfxEhB#^aiirf)c7R
z%BtfAVtC?Zkz9msCV-TftVv2)#vSVRS%96FYK4oa|A{C`(<2N8fQA>g0wd}m;e@L4
zOPr@6Qb6jK@WVLiWap%Nm~a}>FJf~aN8~G=-hDQG_Jtt$%cukq-J&(;g6bzh(Jyy+
z>%ssWP53*0SYJTNGuN`mNCnR}SBfbU;LR(FyjP!%;y<r~(R|yymSIHdIO0TVpu|@c
z_4^!?jr!iNd}G`JQYL{@L8_1PPM{_Dx<$jfMjf)W0S7MBb`P@E*l2M0iF}gXu(2^j
zyrja?(_lFcTS0bq9zva`@jlz~(~nfTG{6uRFjLNxE8|B!#|s?>XoUc_BA43+%B(bb
zZPvB8P&{f6ipglS!BBvsh{x227O$!LW;j7-VJ-bdoT+TvfO$5SsY7i-6HZGL_@R$4
z0~j}q%X$N_>E_%irEjy!4YY1MTWuFF;*q{EuZ>f~acrNBZHL520`dGqSxOW%osfA@
zS<cPESyl%oXfg639*G7(1i~LaWh@1V!iMlT83Fu$+``8pMX1@eBc}gjXqF<B(1CqU
zm8pdX*k*l;tp?^U=P#Kz(&Fj>bAP2Y?WXVnrP~17TsV|)kUsF$iMWS!4)g{fS`Z`Z
zEyXe5!DJWvnjijEq5Lapc653_Zcab$+g2#Ju@h?!lqJ?phSn#l2?g(<%UJ<;Rr?}Q
zjai4z;&+{xKHcb9po~WRE*iqT(k^l|bnSlJOb0v!(B^QzppCeX65i*ej{YO9w{nj)
zBMa}{Y&YrLHxNfZc<LR#dv7{`bHUyTqaCz0btqyV#DNborw`t)8)UyERiFyyD2Cpp
z9lDP+9OCmFLJiBQ-sUqD4<Xuz_-Tj5g@;Yu?=I}!kMV1R*$zL89hSTtR;3;JfTMNL
zSW!%kr>Id$p*W(=A)(_*p~o@uSoph{@B<MLd^wA~7Wi@*I`s6C!zzN^CcV$x@P~`%
z4_xsU>o`I2;vYCIKip_XeT7GHW5Msmy7ncA3PGKcwxhwGM4`Q-{=#GNhGU7IW69}b
zsdZzhs!PV@SQhPgj_`P{;ds91cmb;FQa4^SHC}Q#UP?PrE<90bIPuYQq9%RfbKOMk
z)I|N|L?i8Fv+!iA;Uuc+(wRQ_wQjO!YO?Qg5><5>6rLJ3ociuLHJUz!s=7>0O-&;&
zr)FuV=Y^+HS(jzc>DBb<^}6ZJsp;*@=^fgcJ>i)H!<i$`nUnOHv$~m!shO+G84%qp
zy2vcpXco(B7AIpCuYQ(bdY0&F7NDCW7MUY8nj`m`qs*A2uAifso};^(gVCXCF7r%A
z^UPlJtQqsS>*v|0=Q*$Dx#$*nL>BHFE%13Q@MkPMtX~kCUJ$uj5TjcZ7g>}vT9o!$
zl+9R_uU}N0UR1tXRHa)|7g^FYTGIAf(#crTt6wshUNX8`GND_3EV687v~1zEY?-la
zUB7HIy=-^2>_E5TB(n0{XvM{A#VupyW&MiB^orNj3W9FcS7g=SXf@DlH5i$(8d|>^
zKD`=wwHi&g7AvwAZ?u-^wU(T*mRi4-HocZ{wU$M<o+GlJYqXy4wO)|1{;qz#XnMWm
zYQ2<hqg-U8(rDwO*G5go#^?Ht+Ubq@tBppw&1R9!R-?^!ug%Vk&9C*FJ=2?gSDXEG
zTZ5=RkkQt6udUIHt?~M;$?2`>tF2kO?Rk;yMWgLyukF>0?e+TY&FSs!tL+`SpL-%d
z4~%{udHp=e_<2_U^J4nv)zwcBJ?e>u9kB5ZmiG=$<_=!N4#CV05poBh-z65^B{kk9
z_ui$<+@)^VrJ32KL+--p_ZUU@n2h(Bz4ur%_ii`rvCr&rBKNrH_j!<_`}d9a`Mme}
zGxr}h><i88iy-&K=nuq24<wBbq`ePhGY{k&4isk&l#vIj^oQ!AhnmKR+TMpcnTL7}
zhXyl;M#w`G`lH99M`p%H7T!menMc+QM>aD@cE}?K`eP^2<LAc5F5bs(na3|1jy-0M
zy^zNU`V-W|)8F_c(EB7f^CYz4Bz)#15_u9$e;O-#8gG1>=zW@;d79dAnl^KqfjrHk
zKg$t4%QZgB_dYAgJbTx0Ry1=~f;=mwKQ9+OuQWdY=zU(3dH%WKymsci9(mqKf6**@
z(Q16r?tRgjdGWR3qG#r!4|&l~e>o_6Ic$9S-TQJh^K!i5auPXniTWLwrN5dNy;?NB
zTK2wL&AeJ~xZ0e#+D2aO&?EOmkq5@eBX8tMCi1KSnQjll0|7)X1WYw8KIj<eq?~4>
z{c{q*P%>&&Sm|t|AMP!?#nFKUnP>*7NG9FEMY(u3trD}b!6k)cZu7oe-JxZrG=Ue}
zJ-WN|-+ZxO>4DEQSXFZ65;)Drhu1U;)bf<`^hVaT3J62(I7YMbwMz`@9^caczNuSj
zHBw?e@qJ6b9KX4bwg#4O@Y!^$d1>OuPvb@(ObD~V$vfZL5VA_iwB+r_EvSiSzQNd@
zc~6S5?+Zm&8~MKU7O(FH;|Es5g<2mhE@KN;KM|?d2O@j5T%JvSdhv64YU07zc)ALf
z>&3*0<6>9BT@_^mez}#l6x76X>g>g)g_TUTu#@01sxBYJVmy7}en2DPM^Eb{d|sS8
z^zE%N>QBQ^#GL3=fw#9#=MIU37&`v_(jp}BIcrlb(eoWR&dvDfTeXzK@895YOj>`y
z{WbA~3`dtlN~hhCB-PM#lv<y@x661+<FqT~``Bz(n#OrJhKIUkyg;VJh15xwG0dP_
z6m}P{pMfck$x`m-n|LSr+xBODa=SF2dAiu&AM7b`wH$PI6*DqcuyPM+IxF2JL_l!V
zeTNDd9+>Jsj=x+sb5;>Kmn`cVPX?Chy<-aq<&goPys!xGE8L)95J**%Tl9M3iBYX+
zL+(m_Ygl#kv!<*@38ig34d@CDF<dIycA%y6q&Siv<}ubW<h^|AUlZhu@i@_y2K6(f
zCF!87Z5F3>R6ULWVLg%w2`+iG(mX1K@a{VWB`W*sAL%=^a1?)p`QED3-zi8xqR~P_
zm8H<MJ(Ue!Zd4uLb?UV}P}?59Wrs`jP)&=>1H`{V<BF!bV-$G9g|f-Qw(XGSdEJZ7
zPmGfhO#$9uRjCnaLUP224;|mBS$tBca)h#QF}CLD#g<LDr#fMWq2&$pV+4Vp;_1^Y
zKQCM%_>IFLNZ1X$NHw(4Ix2e0?5nqa$c%2%GwY&?tKh|2>k;hbK7*w*7QUTRF;GDs
zIe%c}4cZjWM^%Zh?6O&25UZhWMsk3l4pXz44P{!qcWc-9E*ye3g!UPQDb#EE#!Pk(
zel{Z4m=LwpG9J!-Ylasr_tI~Oq3%YRzqTF3ETHb~(|5g`DB}%3x1G191R(|;+n)NN
z?WJD6nDu+AVNZ?!P4FQ$<00u&_fwK9_tmkBv@H4<Y=mD0MldOYnmYXI)lOYnnam9;
z>X|aML3$G(%)xK(FLoA^knL*<;17Y@E9u_eS6T+?(nNBL-gog#kOXdGxEyxyr{X3U
zw5zcBTb*u-j6-00H#kA;iU+PQeUv2MNhXnns{hSg<;}GHFTu&t{H#o-_=c8gbO}s>
zcXLe%Uq8v2o9z!2Tx77<Or|7vSq!S*Foi~Rrb3#T{b6!BmWghXtkPv%(C6WpQsPqb
za%y4vxji6S4b<Z{*x?3DPpHs_B(sE|w=6G0sC!SO`E%M>>MIzZw7bOfFRMj4WOusq
z<iv}hFGbzN#rb8Fzxq*s8zmMtHYylJ&UhP@p`qcE`zt*oD2qx${Z7x&DOj^gX)-H4
z`&FN@X46A`j|_UK*Z!aDGpHjA+PbLpjE<g;qM^N_p_`7OB`Q5*U}^n7rDvR7UH^{G
zFd78>PsJG)_jkXFGexN44DZWARAcIQbOu$L(zS`za}WQw?hKpn=Ld29sK%6V-a4u-
z^?w<l`9muI3ee~!{tD3KjG)R?e`Dp}85$H;x>qlle>?v>L-PwO|374Cei`L|&(Qn}
zQ2t+JXcFS%{~ag`D*pn?KN~dHK>52t^B+K2J)T(H`DcR$1(b1LH&LOjw=JW;>och0
z)?3t>ioXLi*GzdGp!sc-UH@j3|47pO>e1Bv>e2jnqnzuj`nMj<-$psy*FD%bi0aXx
zjIs-5lv4+&9?c&{dHBmHJAU_Q{^uCY)&Azc80Fs?8Yr~`lmTUw1o5)}gHhi3Wt8Oz
zVuF7)N-mU9I^Zpz1+6_P^-jSH{CA^#bMeLB5oMGlisOG7W%r*(sg5#Ax8Fty=QU&d
z52JLSynOKQMp^$~jZ%s&?$&=8<=THSO2vBu-~PiW%fo&fr6nx>PowNY8KvWY7^Nyk
z=Cx7MP(J@<lmKo<<sjZ~qr|Am^+Cn`bfU@L`;$c8D=^DaL({3vxrs8$=P08T?hm>B
zp|lxglnMWCl&UzKHP=QNacz`T2+Ww`WRy`d{9%-ujbxJRvcHTn8fBCRVyrcttG|r0
z|6h&rDQj_U?6pxciT^fALXdze8gtDbMmd0+U5T_p86`KU8Pm2%3k|2%cjq5Q37_q{
zQ_KIiQF5C{XG5suF`m73w^T*1Q(WE>J>+5pLd`BPsNg@2+PA8I8Kw9iMyV-wZIn^h
zMyUi}ORc&#O3m$07-T}KD5G?i7dNUQar|wR-~KYnpVvkiP4Ew+TtykB%wI-1Of31A
zQQ}@3CDw1F1fz`dZmjCHQBHs~{>>;me;Fn3e;DQHKaDaSxyvDX;-L_AZIt8G)4z<;
ztvf~Hw^6>*@2aXaZ~bMIQNN5*>`$Y_`pYN<e;Z})wNYLb)ARmml+heB*G4(>mr;KC
z!zi&DMb0W+HBd(R#N)S7_7nWmC~-$4yAG%S#VB*}W>7|1k21>Izl?I_FQZKRH=`U0
z|Dd;Y{)bV@qKW-BN{oLRWyQ5o5~zlE2`vNxtKSXvej8=PtU86IG=wjAN9-R)nFiQD
zVpkwi4Z;)RzBbBnPzFv34_+?FpfvRsF)>E|=>laTPcs+Ra1h2;VX&(JBRrO$irGT>
zX&gN88w?iS)x&-BHVuW^UQz)iF%wShJtb+Ue8dSHBfywIk8)rKE`%!ymNyIihIMU}
zPej4H=tEf5920EUMhP&p;&Lhwf#c!^{x(Xif`2heLPiCv67^q3`Ti90Pou2Z^WjnV
z>LDj`c1wB{Z0kPVoJ|zN1rvn%d#CctqJd74go%V;tlekxQaNjoH3ok{<f;ti+9}B^
zI&daG{u|8s4g!DGY(b31Wo=--`U_<=EWK8Nhd36a@6bZ?;^3_qX#JN_&i=zFnPM^c
z@%}c-kX76bx1<-SD@iy4^#3r*aULA5Uq%`5r%_VYv22RC16kS6c%*4NHGA9gu8r~x
z%=8bVlxYhlIwsf3#Q6#1ida9rFfDrpHV@uB=`z)Kqi|we#6)|sCc!F~6;#j`w#vk=
zOa2PLU?RWslJLpRyk!7&RSC3vUI3?b9z@1`XE>H$5i?jF^+SsBCCisBO9Zb+eP9N^
zl?mxE+*^z8mbZ*sy0Ksgph@Q@9)@l$vYUkIMepRrFmg>v!i!#}`GH+)66?AhahoST
z-3GgOxs^C$n@s(9$n*vLspz@w#E0$i!}^n{E=@(s@m;hB@3;~+;UG4Z)hlobj%m0H
zeEh?!qCwbzQ10nAaY*RSa6^H_4xBXHfM6w%(XIxcb31l==jsjdYPhNt=Y$^S{gWol
zkWwx-D$P(6=O*&g4{mqLE2t@!?etE&XxSfYALgIXM@4H4dk7)A=T8^}F^a|9)(kS<
zB{K?pQK={t2~G^Obhg!X$I%imwTZMd>SqPo?{_cry_Q7gN%h@<Uv)QQ8>KKRX4we{
zhd;u<7oZ@txF-Q(GYJ@tG=((LWNvLlzu8Rc#5%G_V!3DGFV<_&ZMp~8{ume2_wNUH
z?T6fTivKPm*^w{ZX>)sW#s{YPmBi?-_e%I!C>K^623w9Fhp)i-o_arRY_Wv45+L}4
zuV*91S^PQS6TgFTyK<L`%D1#6kK5e8V`MvfkUfiuCLe7{waede3A7}YcN;~|lZ7_b
zE&CSSnj})YT{JV%=aMwk5zk~NB|fR=gnD-`;p6Hn=K-bNcvb#U;XSK>M2~j?-}Ex-
zEz~!Qm^VUwAFw-k^0CFABz)#uz|CgDPjcG!_pcn3LbmfuU(j+zsh=-#Wp;_ueOl2T
z8Xw;88cDkABw>SZ#%ER>Y^E%a`X~OEMI86)x{9T_tO=dbGUZ)2w#SoU>`S@Fw-4ac
zv>7=R23bjo&wmhKy-0IDA5x2WsJPK|zxZ5ey;Azj`B`neyJ)V#$;YX(q$kJb&z`YH
z9qr?W862NJ1pf>!+ZRn9*i06@+Ff6}S81DJTk!4a(*dKoiKkD7LJPPyjFSXU(dmsK
zt{IH{!cQj|pl3lWX6!6g3g#T>=Q{|I4)i>xlDj;lZ;;>jZhUYXhf@hy5c7^X1l<qB
z^orI#!g|ONSN!7!t%qoZ!_!x;!IV9ywT*GBDZ1$bQuL$=ezSNMJzAyVj0FA5SH-K2
z?v*?EQRq(V-hyp*GEX;$Jgu)3()L7Gyc?3Nkrb|{PZ8!6bcGKPb4`@kI_@bFzg$w?
zhx`QZUH{#b2OwmXj{vU+@PLYt3E=C$Tk#0-^{qFZD=^xme5J}pLFp&OqnFBr%7i(h
z&?^$lkH^xdsML&o$Wye*Pk5B=zAT{n+a=4qlyTf$m|cFfKfkRbJU0IdSB?MCu<JW!
z{oJMic2<NOnInFZZs3mquuh=kQ=`it`nWpoR;Y6}hXGG11EG|v<`vvyJAq^K&q<pe
zEb}>IW*e~Z2hs)mJ*f7@+C|N)gKi)fyf94shF5|f6mV!S2X8)xh}`r~J_#ma#H)26
z+HB#xnpIVC3mxVo4QA%LLm|BvBs-R*<+~K>(dqNpG6*v2G&?JzFB4Wn5oCfD6si-@
zP=I*)2wH{h^T{$Sh2$4al0*#hM+{gJQMV(yeFDl09G>W0(_|o~W0@O}EE7&P=Mmf_
z(I*kH$r@qM<Y*@2IlgK*UVaaWTIMH5tvI~oSTR^Hh}t@dBy9q5HsaPa3fKgP;<+3D
zrb)87$Mps77|_S5oz4}M-c^+9MHbJhWkpOZ0g3FGHXOu9obct~m*s7gjV^BGZ7~#c
z2-ZVLf;REEv^5OLDqlva)N>pi(P7fBg-u}^Gk}IATJ{_#DK54(g0@-w9V@YvMZ6sf
zB^P|~-4ptn?MDWp$sKi><YLentUs;VzQ%sB>Y|=;2pQS2?{>ROTWCj87|W`g=*$*g
zB`c?KjH*r0S$#^3#&WQbBYwc<p;%~x4K+jWNVuc@3>b|~B<Ec;d%CX!jZF@aABzXW
zop4Wu%~*k0E0T-AcpZUM2=QYeMU7JiiUo)oe~O2h3#L#g9VZ1>@q-x1W5H<F<c?NH
zjbV#z$!I!BO#<Q1<<eYqV=>S)epmvS(K^L1Ucb-*KFd9H<xZjJPX7MG6tXL6vKvu&
z3cSZn>p}8IW=op}Go|6ErA#FIjT5UcrudqXC#Rz0P{f4ix@S6*WJF5I2_6GJBdPSk
z5?l#p4k<BgW8TF90zU;nIm|B?om1}K%D@i}Y(MqtSaaWF3&P>KF(B=PJFY`Ekj1Gb
zS+fQmJq-fRT(Esq-{M9M`WlLpy2ityv=1~~=aOi$GY)i;*EIo#BS_IP)a`BXsQ)!h
z!b6{W2V^R)!?-YQMD_lnNk^(IA~W9s0Z{Ax*A%yt*fBKX3f+kG3`3S2AaJKgFB8ee
zqp-i`SDpGGVR;zYZu!jl5O_Xko1Q)@0g?k{(F+mMb0&r7eX#`8&Hzp8JP+jeoC8*O
z4AZEas{jE)bk{P)Z$0&cJH>??K-U;{j2?o+P>6BLCZlE-r7N!V`5h5@&IqO;8Kw%-
zfp7vl%i~GB=s+O`JnyANb_>;8t5ZmvHE?T0oeHY269B-Ov#CA@_gW{jjOCNO%eHt)
z@%RzI4XEam7qvVL2AFhP&3*wTMnPjzp^kMd?wmNwuu<7dpy%HEs+VT(;xmp;q!_Bm
zxwJvjan=t*Q}{nAL%$b;=TJbI5^t6ZX-hpH|G-}1dA1JVf&^E;z9YYJ4U`?ffszz0
z$2kj;EHw#IK+neH9d`CV%fne$sXinrXuL(lrHAY%pht!PP-%#_DgZB)L7G6yO7ll?
zyzL)WQl?tp-GESPl-_iq$TLZlyHSCO0!n=+^gVHAe3{ycSB`kW$?ww19r5P{KsQi2
zIalUQUj9JlpE`N>91<!CF!oo9evwC72cW%5j&p=4pmb8KVgW}3y^x-WRP}`*;3`N(
z!6tEZ0vR$XM^^(Enk7)Y{*+@%K-8oj=SZ{w5<a>IebrWtHK2y!L^SUpG|Pjghm+-i
z>iwXO?rDlz`3rROYXGhAB79Qo?(#DH%*JPxCTFVh$-;D!rkqb|$?l7Oyu(}bizeUj
z!+Ok1EP_gm-UpJSX`o~>1Nn*~>&|B*$<L-tXg<8xG%1gwNmEb^iY6C0CU;C;O}z1Z
zbxo7|f>b|KGtidc1$YhX`?W~bf6$~!qe0#$V3OU~q%nlCq{z)#PdW~F4pex+akUfq
zu!?#K>s5|>?6V_G`BjcPE#a@nc+KwJC2m!&l4>@8)Vz7WSwX&*<28^a*5ukmcmpWL
z^=ZCMLe4R&>$cI<Is5u)N)xYDib_!&71RO3*M#$=X(89!7YfD><FeQQEKxKm_KAm-
zSMGM0nqrjIWXo-mR#K=~978lFw0(x>pE?Ph?0}%7p>(ofmermKim3)d9T~(#qM>~#
zO#_=^en0_b%Qa9EHsTf%hrI9i2gh6kWriXY@*60d<-f^8rGT4Z3%4;$L62tJ(=WQn
zpkFCtK(B289TZTifegjEA#>f0HUI#_o8ux{oFxcty!EINJxB3tel1g<Od7ZgHx0l`
zGm)q9=?oQ;&4i(V5-oE_f=ms>xf6#yhrU?b>2rbS=g}Ex0DNQz2>Nkr5j_K9cquke
z1_Wl>EN(ssM=_1jTaSGv96Ddy*JFkLJ^b1z)1&bU8@ovdz9DJ)F*qbJt$Nb{ob%0&
zYomlZ*xnvI2+a7)D2s`SKL!1ZQ68{+nBxr+WDR`^8xlhqrDy0dBc}?90RDQ1R2{Rd
z@USw<C?i5u^D269@f7_A0ihAWSDo5Z%C~4oOlZG97JeZ38z>t;&mj634Zlx2eecZq
zZX^8tIm#&0VMhDBhtY!Y^dHtOKV1J|l<#2IMp@9<A@RRP`M*Z_zef5052N%35r6=|
zfq*F(1Kke;<DW(;(pcsnLKRM#!rrtiHvj)-l#63SD=L`;U~(q;0}~Y*ihG>q@1WSK
ze;Z|yZk65A_{heOBGRx(+Kt_1A9|&clFJxiQ@_S>sV`6e$F^au`=PI`*!R0*SiD0e
zw~CHBjQ+^bH1VA1r?C4a19<jE`0%}_{n=7c%!VkVOnuDpfz$Hil1X1#5}h>CaN@}J
zmr)uzvp$=}5U$X?JyFv>jWWuo)03ypHBEUGn(kRAy9<hw;w#fr=dL?*pHx^xxt3mR
zj<tPwIx~Iw>cq)A2_jO<bat@5@N;Em2I&owP>&E<Ga$kJc(M0}Lk#Q2wNX0132)rv
zB9W^A-@D&ZkMlc2;}Ir~E;G0z3B5K-a((~8yTsl21WaHRMSD1f^RS}~okVz9YZOuG
zZtK>|`+KrXabWvKdi;xmc80PRHM!gGEBE9FQ^7nrtZJ>-MoC&xf?LJ(tvSeHRlVhH
z`}2Jz{)Gc8k$W3qI1RiJPsEi)&JXrg;?{Gcx`pn64^)woBuo1sj#rcc^^6oRVJ!xG
z_f^#t?~PP;@UWRZPWHZ#%W1w((zBH5J?Q9%1{yYV*3fy9z$^K%E3S=JQ-U@@h=@Y3
zdDx&EZ8j6MbKfpRH%`k%_X=loF3HpB@+qClN3+h+QKt|-8sJLK9Eb4O%*DW|+q0yW
z&Nt>L(;*nP%Wz|6#~j6&Xmbg=Jr2zw2R(<!#)xNkz6H6e9tOoR&s7bCVDz10gMuk2
zK_KQ6UQUznd*5ryeDM3KrYOn2I~YUw-T8lmW-w-r+mqxci2@IwXD1xd_!k?lwz9xn
zP@st=yJV`VMF-N)x6uAS?A=#5+-=+V`%!1KnV;Te^xjK|-V!Z>Ac%-wLbM==FnVY7
z-be2x2qK8+o#;Ix2r^2DM9h-h_x-%j`#k?+t(~>Aj$`f2j*ao#nVI7{ukZQsbtoxi
zsV6agR&DnHbF8BMHTGo~33$^}*E2nk(c011sbRQexBni=wv|peQa~#$pK+Bg&vW;x
z9|vwpKIim%4NVV6-iPofyS@fHbC>Reb`ad1<|XU=-CyBYEy7A?E+eAj9rqQ3m6Mns
zkXu^@lA#XP^QPIU^CRaMXD&VGvuvAAc3E<ER1VArzn#utHbOwrH`~R$HlzE~&vqfB
z6OpAoij+G8?`Yxs^D!+~KLQ+8R|VfuSNMr?z(HL;4%f@!!`6wG=wF;I#iyJc{QA*R
zFd@qDa=tLU*hpe-<s1{B^4>-K1}zymXg!cr2m!)H%%6{d6d<?j?rD+1b;ITWuHtYX
zV14}*il_sfzPHsNW3wQr)mMCrP*EeYQX;xA5MG!c3lT*z$D4=r1dZ&dhl-3r9KS2W
zYarn&!lbZDY85sPT@^I>`XyTsGb>ri3k{SdB}TdX;E@gsZA>AppS`M3*pckwmt_k1
z%`WUH-B?FI7~%Nz`<SZu*k`DZ-kT2?#iF#sJh!ZFJXh|!UZBe6(;LU|%Uexl6+fD7
zYE!+{yHJorFENRjgq&cjH$_2MBM4>9DZ7wPPj;<K`fRzeT&U}phzLiU-er9pluG<c
zHKh^7ZWV%^U4&-i_T78T|MFtEgJC^YRce6gxe{r#kPR!NqPoIgv8MO$Skn;e29`YT
zw|`>If5$kktIhwGIM{C+vTHqI*7UxXIJp0xBn}@<xX&MnL+!4<mWh#xrq;h<9MAt?
z9Nz!JI6NNRy{<NWowa=aU>q<1#yEWcU>xy(FpdoNN8$gcxhU$7#8JxZ)AWCmIHLbd
zM5|mLmAkvgdn5dq5gn{i?@bWd|1%2>E&d1NNbwAb@rz3LOU!TyD{@Kujd8q4{8zR4
zFO1`_YV(6z>facLck!T4<!_AR#czyb|MwJB`+s2^Mb6Cs!Z?z=?ic?z#u4cK2jlS0
zO7ts2XcY&WGzV!mMVPex@i<V4&#z0(*Vm<H`itKlN7&yU$KY>|L+fvnBj4mY)*LMJ
z{fFf6*?jdPA|fI>Deao%NdJfAh{>o=%_zybe!Ye{it36o5~@SXi}N#H7soXHfjLU9
zhoZ0AuVId+%KEm3(pRru{Z(y7wJfCk1#>ixq_!`{v~5<u9?g2U9P{pTTJNXy;lFH-
z`M16Ojr|L)Q%j}8TZLmse+@|M2R1uCe7+u#wryTaG$i%a6ka18BOQf*oDS4X+i$01
zv#q-SFREkUH`TG<pZsaKcw?k-d;0bN@EjYh*F4A2(CqL(Jjd+RUp&Y5!1BqzjYB`p
z?VQb?Uu`dp{~m<y^nKg8Ryl^R&KI_~uVc-Ve^ic7NBh?*$JT$untyv7;Q%X7j4*F<
zZ!`_wNcsovqW*Yd*%1vpQno(BU6Tyc!G_}DG$Fybbkd5X@N~&%d&`53rQ>-D!Gw$&
zO=Y_Im_#ob-#Snyian!-A?<W+LffFIZ(j_WH&<)kU7~r@c@|P`KS>2iIdu5Yf*Bb5
zH;<#`>o|?U(aKW;&+NzHyA`=4duMs;*|8fMsoBSMpQ3Zf?yX+B%q|b-D@QZkZEM<{
zmRj>KSu$dOf|ZHkzoI3qF-#Mc{Nf+|_3X>LMz1e@Ek9b0J`N=DJ|1JRM5DrXEvui%
zoH^wsFn%0il&m`6H<(_*I62QLJFQyv$I=sZ?(rR?KMv>Jd)qlq>T=Eeo{IhGpa1&H
zmQm-G`u38>@~@9;N~|M^jB<GMb`%CK#bT?9todvUL1bP#8{zOUZ-&sEz?u0#0IS5v
zllN-I#9WwtfLZy{fTkcq=588=8_Y*x{$b4q*A`NR%E9^`!PT>m>K!jtHm{edDBLHe
zCE2+j=+<p$faD+K(#2xq@n+L<iEZ3c7FO}vNOx-9-OjS=>nm1SD40irE5!9d8nHep
zQyGr08nzW!609d~uWuwlQwT50a(!*&ew5`4i_hu?#cvqWBpEBtm_K|u6uRvjL$&ph
z?@NLKsfuGk<|<!xGA5Js!Bf23v)N$TH1^x9VpQ<#E_~kox)F<vauuVVh=iKm5Q=SE
zTY}T&dK?SmCtL^J;&J}CHp8^9cr6yH6x=(vJ~dp3Q@m?Tq8$Q4XU4h?A2t&E?sS9>
z66*4<9?lPC;E9*GsNCXF-|vQSRtY^$wVYYi^Dx8{R+1+yO$Nm>suZf4n=J1tGQGpQ
z{|?*Y$zh2>VKx%{-8t-D6M+q%4)N#RGe<?%nGxe#%RI?d?^_eIW=5f!9q36l&gxTb
z%6R&O`nI4YWIZ8e{z=?|<wMFYY^UsP>nJaA<B2w3ttR!m)cVe8JdaV9dS_&r2M+|!
z`H&-&FPv-@@m^qL>Xm%neL7gcrVtwDGu3Q5nu@u3`28ahC3?1tIEU-?Bx&_aBzPe~
zf7wL*X5Y6y*zE9gFU880O>H(<h{GmrPF6xq2oWN$`8~nRdT^Z`L#q{KtdJ7tWzVN3
z&`X@PA!61Lkwoiq^3$J^1tZ&voX{SFpBin81Q+M);Ww&kbbeIvHIlLuNPo7`lhcV!
zjAf#6381F%KEyXJzrT3lGAQA3!zXKI6`!%)fLEmdOKNYEfqY;W41o<dH`QSiY!!2b
z2c9q;H-#q6o9g(%i3=dA9@4FfC~@p=@@)pC!h=w5U)*|=OJWhhBOx~R?-5H1r{D}q
zvJgaFd&E9Qgyk09)G+fK-{HW;VAwh7o{Xq@9*i`R55gRRxZ5%9BlkU_WydwdoVbW4
zYq}>~=P7(g*|JT@LnV9w&3`Ov1`s8((HskLTu!IIFcMLT;fsT-Ypg4wS}PIi_&4zN
zAL&i$N(hj#8JA1nV<DO1OxM?XVl{%|xT&7WCW{*y;v3C6Io}+F9EgH(Tj*_;RfVHS
znV<Vb-Y@yCEXh)qOx;a3X&F4EAC;IGl*Oi~pHUi)R728T*hC>v<+AR_851$Kk1dN7
z1KEb*wWeyqBuZVnXD*Jn^|zG;?39dZpz#~VYP5H!?qoDoo39evF@qBsFZoeU%Fz)#
z;8_ffwFt`TnV(4#N_`@TZidUw6v9PN*b~jq7LOmeqkP;q<Rcf7Nf2qHIdB2HLxzq9
z96qZ~Ng?lBh9J7w9MtfrCxY#@pKpe!DPwd;!$$ILwPnh*pAX$9pG<UVPA-+FgrtOA
z3bQCAf0p0BxQEFQ<?cC+P$6v?i;vJ};dwuQk8vtpQI(^VAdrZdT&X>XP2X)SJ7p|=
zak{zfTQ%X}wxVAsV9?+hEUgzYa+^^5ezOP*<x=kL2R*tj{uFEvVh0|tZIY7xs?Jj_
z(iYGxudL@`Q&hHzm~EQVYxO;Al+Gz9C!*@L;@K+3zo@kQsR2xDQw0ggmTGQQAS*C^
z&@?}O)S&HWec#Py=8oli+_F2QeHvTO-LQD=(}qoh<hY9*Y^)5@GxbBn#2N{0o~joS
zk@BV7)6|Jox0u{gt-PAO&olgxYj$|`tnK_wL0z?BlBID)?sMi_n>wVCMwCdpt-y`f
zj?cha>vs*Q%YGTy89p3d3F;te_x(_#pr*eT>`mRa5lZlsGW%ZqHKTs<-h4nQwW|*@
zUq<4k77_V`GQPL(?JF@e86vHZbiu$Yr7vieW+@;}+r67J*>z4Xtm*`M#wwa~G%_2J
z0Fy>Fe4wjeCC*5WVMsAAUUsy8=*Nl6GuLMh72Wc{tqJP(9*B<Fd5KrJ2(Q({<chzl
zORyQ1UG@7s=JD`EDVuot!!NBN^XaryR(G3-s`-{r%f~89T-&#$P5e0ZtRrXMf4mTQ
z<(~Lvz@OH1W-e;CyuoKs3rjYmj3s28_y;f6#_*ou(z6MGTPz~H-5|V)_I=&Urkdw(
z#3C{m(v2w}D6`}|48C|ZtvdD!b@zZl@5^@k&6yL~*Sy#N2VM0*Uqi!S8mYz7kHrpX
zODn8z@<T8F;_@=b?W_u?a0c)8g~P+_q+^?mMcVQ2XM{=9oChIgdh!&_UMauSte*z_
zc-dlW;c|cF&`tVs!)a5(Ow>;|@i3Jc*II%*l+Q8TbiPwv%1uRr;fw!`p{;t%)AKK8
z*pBA?FJ=#HOH?36Ut0?3Hzmh?!mmhHgXP)O^$8^(=#FjYyJwcrTzJ<!c}Y6yAM%+@
zQJj+V=7T~Q{W5#N>nJy4iP+EcpNZ;UkM(PN0a#q>W|&*!F=NOM10xex3!7|`LJx7r
zoE8WC!DmIzo?wy1Dh&_yVM_n!bQ|s^yF2@RyCeyrX}^w;F52B=D_bH3elu=Yjmt^?
zt8MZ*d+-I$HG1doApwlLYFla{VE=@;n_Cm{O_NC&IdQ+3k0S}=Zw{5GbA3x01Ug$v
zjF#jwMqm7B7d5zS{{eNcTT0$xh1{niXHo1GR@*VKlWo=&B%LSUl9AC<!<>Q%Nk_SS
z&Ufx%%q6xGwiLg^1K;)IxwO%K<XpPAGhPs^DyKD(rE<!v>I>FY>?kmmKM|2-C0isH
zHTvwnZ0Gt(S#4rcfu5PR+fI6<)Ss?3P}w37gGGHAem9v^Ms$ME(#nqEf$K2`g0z?Z
z;{+kc4wXx|?e{q&m2l;YRJ#s~Cjr|u*7Zyan<~L`K+OYRaV`)U4U=^@Q<7UC|3DA}
zO{kt4h0TfocUAw~ZQ;lk2lN?&*E<9|(A0=V>Z*lI=QE(b>C|FpkC1o?5e^xC;Qe4A
zD2&x+X;Xq$GSs&<9P=RTl0Dov=w3D{yuRQL^utSEjxZgFnooqI8AdH^tOTxYB*~8>
zn_luVq$Ehb)J}9lFwo6k7(dKUG72?MHtzQ9p`9+Ru)n~Gpl(>et)Lh1XA$Jx0s$i0
z&cczz2`UjPLb(x4xmaYv`OE@Vw|YyXY*p-F1(A?$$^|9aq4O|=QPhl4tP*b2CUuZ)
zGLJPWVX`Rs%;#99Nts0&#p`@W7>JcMl$G4TDu72j2$Sbbn4#^ZB{oQf;c=A_abz1<
z!b0&mT{3)%q|fYP|G(#P_${RQU!)-%5+Fi2WN1>730!g@T`3Sx$W;hDflHg8zJ`N8
z=PH@%lM#+X6a-|*THs*TVJ<pA7aEp<CLKh>GIan;H0)F-9od*!&8?J6kg3d!cdd{D
zfjDRd7zLV48Vx(2$a-gqj{%^G7m`E(jQJgGY&}!z2uIxwjOUhFzDqh|3^;(YDbcbE
zKCmTPrHKpJ6o#8(fg1`V#Wi3C3u5JTtMe^5WcM#f4qm`k5E*Gw#QPxXn0#^>AZI!<
zvxFcYcQR+~LK2rp=@)md@=-2S7|(#2Kxi`WK#Gr;E-ywj?^ze1UPo-8n<<%)PpbjU
zIpkp90#-88k<SVtnH0=)6qId%y$+=}Ku*S!-E&+>l__>2l}lWY^Ruf^Y6CCI9AM2P
zRpkL7u7o}yIrTOaD;r8Bun1y7q`m=jMHh5A6m_!{OSK6}{{W<r6iem+)SU482D#1R
zZ+$~R0mYsPa4Hbi14NmF8Q5+pY;-!kIlw(pg6D=;o6j`WMMwuH1talN35Wu(@d?aC
z`VB0sYsRAyM3k>{?Q39<NdYgP00^G4kRPPJL#4c~0Nb@D+=ZP{0dSaC@F7ScNW4Tk
zq6*g%Tt#fJOdve7ELsDI9Rk1zyhLBgGNFna-6i;eAf)m2c`0E>K2t+oB~y1Xo&~YG
zE(}itu+gZ5CY0dm7IpX%)`NHv$O;l&>_TK&kV1|1UKx%Xh+7E9E2^r62Q<7`^$}e~
zU4UI`o>9?N1DOP|BCwovvZ>%QJ*?Qo7BxE+H3XzsC?TSEaFV23HIIJKJ^lf7c4gu-
zR}(N7TkPdvjB~*Cpx!##Z*_Uth*BFgY+D_;!JEzI*bur7+|Gw)VG>A|F0wGL#nf(~
z*XW|eZde=~SRjDn9W`K+HYVx9M59T0ml|*ao3M2o6Ln#gNZ>IDX0QZ-CA`WKCW+jw
zhA6&D3T(vAZ<Kif+%#{zSy>Dm)z9&OintpL@~{6y!sScKzzd8ZDK?QU^Tyc#b1_+4
z4g^k|#SFVU3^ak74B8>Bi%<-x09ygii?<b9xCKYIB`dIn#H}@(8Rq6%712(gj09pG
z8<6clId3DSBOUb@pqHQlC+annxp;rK+4~k?2co`2GM)-yc}KM`a)X|rsjd{LE{rMB
z<-m*y<s}k2{E#vgC?Vt_Ra|e)i-cXEsaDmqM=`v>{_C9nhm?cT&}qkZQpJt~W1Pfc
z+ADJi9v1Ep!P}5JfEe8wIQhn95`0Ui1ANq>PWoo|C+x$QJa7S#D>G~t4Rv+9zBSO!
z%nQ2sNp)fl{j}bCB~;{F*@+tn`bytP|D~HqvDH`uKPZWDqpJ=(5a*k8msR&$_4*#x
z%IplCZWrN_=Y;u^*%Z{--P^<61QvL%!mueK>M<QaEdNc?WHxxC$L0D>;qTrL)-C*`
zI?iXhe@V59ZbOl_lN1!b;_YGI@3xc%+Ic}ZSro@e2(BBb)VyV5qJ>4X$u_%qA%kMx
zyd2vN)Y8>K5C|I8p`7mO$G+a&lSNUFL39CuJs%b!8GCqMnlMM#{_c!^OkKarWxwch
zH;ZYJoOx%JLKVsSD|N-!*y{rr9azzF|0CDeX-Gf<)O58@+|pKHFa$RCtqRVj2-N~2
zOev%N-r!BPsBaJ>UJMNBP}Vb$+I76k5X!6E@59x_{V`k=tl2|h`u2lPpLG?$;Rkz@
zMX{<-g{_MnIg&Xj18D0|p01;CkMI=eJMe|`#?YNl_e&;C-+ogV#jzMQ2pq+$?>j9o
zxsgp|&`m<1n0<Q~ILM~>>I57UPkxEXRZk$n|J6tS3wCS&eLhwn@nj2$Y~RA=U^`!-
z%ai^tsWwPKmx1o}^N(rj6nkP2fMf>&*bVfC0ea2Bh@*RY_W{@e42S`Qf53j34~qWE
z5Pu2W<R{(m!}^xh3)aOG;Q>*-%z_AyVc@;E-Jtt9fZTd3`C^Uq$~5-Tv<vfu`@?EC
zP2j;L?3jpjJi7tqlZnZnfarEMJ)FW99#+Si2G_R)zwF<x1VaKr<3C4dv!?I@iT$%G
zrm`tg5I|`Lfp_&BxO>heXXwGx>90$pp}$7&{G1}hTHwnnHz&z<$eMn$T*&m2=6a91
z<9-3#FJPmpo%<jIlnv0*&j&hAUFE+z2QmZqp?MC=xb=Okv49x5$Eg}PaVREI%+ApQ
zen~BNl`n$>K?9h(S^lvrU9U%yDuE4k7+B}6*;8P{c-G!;h^U~EQx+I`1B^3HRH#o9
zVa;DnED-3<m2$(>1E&csRv2TKm>7oC10fbwql}L8OK*U;pyeBvon_eo`4uc%2S|Fl
z<jk{<QCKJ9FA4ZnbOl;k`PKPSXpso32hG2sUcZ53v9f%yEWfu=ze0VY4kl5=Wf;ob
z(wJv;nmT+sCnTGxm;<~ap5`zuu8svZxIf}_gXDc-Uz`9~&X&z3EMWrhembQ+2IzKn
z0%og3llbc0MC$dMA95&CC#u=TfZ2mpeQ5RrGr%}*^kiX<&|*?=6#$u0f^&hF!=Fi*
zI-4;U8D6gK&^X}k6)b+eGI99x?61#+lP&8xP2V&Zr5QdG>F&5i&pE}t9a4w!nXL;S
z0_io&pLPM$e3Gl2kKV$0GwX!Ue7`&+B&rr7`h=#EdAS#(z18-pUvp#<dW1{iTnNN{
zByh{DFW<)q?Ga55Pv*=I5xgR@cw?@e3EkM|Bi_eO$nP5iDs%P{#~LsWJF{|Y!f&>r
ziU+uX`}mhYsqq#e>CXPun)>9Y4Svv_oLyq(t!|Rfv1Y)=#Ws%cfZ-u9`(<N_@4z|p
zD<mQRQUG|ry8QGC#<hBwEdUS(e8!(d53L?GT)kH~5Z0F2`o(m3;g9MiKoiz4YGIt`
z_u_!Y7u7GL4<4EwfD`g%T!3KWZSer$=G$XzWWG=ypeA?9x;%Hny-6IneVB6sVVWr#
zJl#Jyga&@q5nLJKo?qnya92J+w2yHFS23<_E6(j5E8p_s4sq%~+y7c+J_JsT`zy;o
z5!5fHjvWzBo&k#Ac;2kC2hg2x!#)X7UB{YHwQolKmb#&zRsB&oj(af0emi-9fM<~;
zFxN&lZ=~j{ugl4s(Q5^3J9`|+l|PSjo)3=O`?v~J8qePPd4eb0E<yMMwsCU6^SZVc
zfS|v%uN@Emx_*$eb-q?wGnj(oPga-Hj`5wQ_DuC!fcMMkP~?%b$u9`T?GjgbW4!as
zT5Eph@kb)JUu(wu7{o}ZOZ`xJF3ASyNiKz?02(=doP;TP>3GH^d;I|qgy9mi8BM_B
z1J1dC<)g1_jKQQtEPh;*mYD&kY(~lU+mBm=p?L1Z<w$Fl7&zyx5D)iH@-hOn9Hx@!
z{_AMO8tP=9SgIT$&5ci42Va%flqSIcnWoOIl!u%2i@a37OaHDR9!hK*nFXT%$uO3X
zF;%gUa?Zo$sq_rq_kz4?+f{nPemd!XCC_^k<bu4bNxz?pdOEA=YmMF8>>nqX<$XSy
z2f7C;ez}e{#a*_S7f${egnIP0tJnzGf7a1fY?8Kug<wqX@4c;RxoLbrv?SDBaPJFY
ztFbQE^^K25JTQNmCkty$2{&#EG)ka11ZtPEo!|UiajvnAy^b|Ic<XuI$iJmqvH7|c
zhmo@4lKAX?&Y58+ub!}Pm~AQS(sgXEyWL*o{?VT2n{`mFtS>GbQo+c?>Yh}v(D9uf
zf>F^rX{<uT9XT>ar8^1JdVdC?9!IJ)Rw2UT)%JiR{TiL$_?rXg`*pIV-+TC#ncRGp
zTg!ms&uV-6(}MDeXAjBLm-444<u@*khozQ$XPhP3Gfr#T+BL+cwHRKD*;hRAra$KE
z7Z4r*haX0h4dF#w$D<B}Zk^n_Fl*%P?znQeKY+PWicO*Of{YcSyheqmKM}+rX_M}O
zmYUAHWqo>jUq_kJQ(sTESeN&4*)hLR@l{*mTQJ7bvlNWw=Xo#A*U4Fn^DBj2QI1U8
ztD&p!FWilIl2V+9a(ws5dMzuh*0}<P)IXazHGViV@$k@V%r6f@eH;CLMLU=eXK1^l
z6)BWy!0|wnB^A{?<2%gk)BNGVLoLF#FLxq)JWu-HUP;+K4w;rZ*OmGDi*qgH+rfhp
zd~0+Fb$uU?r&XNv*>@}CLmA4kGNHo$$s`)Jd#mDul=-m%bWcCnJT$&CL^xm~RmwMg
zWk=MC)0NI_d7qlOteS@N*1(E~XaqjzJm1U6$KYgMgeOtFae}QYz4kwT6uhWmKkOx{
zl);t~eHjkDz5{2B5OQUaZVYH=YR%U_-y_xw+MG>P6=#?dw(cRidFk4Fhw=462tz2*
zZXE7S-+XW$BDE+RYZdk&+E=A3Ctxb1=2jZrlreW@xE!7Khqqg%g-l<`R@l>ve#o4<
z8{qWKPc+qhaGq69R9boc^2G`~e#X|M1ji)n!|e`<$}H4c`Ez69*mGwi(9U~<`m;@P
z>Hxpv;hO=kiu~jVwvz}ns5vqKNsW7!H%5G1qkCtw{cXTO8OCWwu^yZbW+MnsGI})u
zeq=D?SO3{IOGX#>@*m+X5J=nS%lJoZr1_X9Q6Jw-evh;5iiTYgPNm1d4_*qpMP5=w
zFm~<tx|gyJJZAGw-2F7@c#BVMtSgna^TR}-2zU35<jtxRcHKx#YnA~j>bFH5Uj$CC
z?ZgYPK<2^W^`-ns&^cI9&L&(y*kh0w{2fKAu|+MIJVsLg@pf3Cu!AcFB8|&ZDcJm8
z4D_NvWn_n~5=$tgPJ<N|{G3co67>>4!;+HmglDdGOJLk*ZC@ZsIa+@li5s{eZ_-0s
z%2=D2c`?j6EZNLaqL)%>UF?v%lPG>=<&*6(;H=hwACCMOB_{$o#pNcIklc<=iiX!W
zL3$z-zPhu$X1r7@?0?i27ig1Y^*IbfLrQw}E|o!-<3*egnGLi~@{4;UM2NMA(Y65z
zOC}H~cULfZa>90<5VMUMmhD`;XFiou$5~egwD6sBu<?w>Mm~`NmyPg}qGVOVzI%z^
zMOl0;azn>vHDYY_i|Fy}e<ZsjYLNACi2bOaWFb+wla&x~`Dod-K`6L&n)#inIR<}9
zE8=!9nD!xuy4HEThO4!AJew`eu2EwqS#>(TLkT;PW$?AGTFS6c?&nLX70wXEsv$`z
zQoPXML8i~EC<ZYE-<f)uD^|=)5@|&hnHjV(p1;w$qX2~yTj6;W;;it__1fx1%a}8g
zBt071zVje@IYmDB;+iQpnZne$>o+77^KBmXH2eE1GR9q`sPt?ieJOh2`ZT(?+2Gfi
z#rQo8`Zg1BL+Di4M?tZdAH||If-f$DDbapifehHOxl_Z{{z7V`sT;tH8J0{<ehb~t
z_Dd)#+!oI#A&N|0ME$59qv`j9&O}oW`$6Y1*ma>+TN@@7o&_ki*TlEJdZ}gX2gTxC
z?8_@jFHSwdedW-tnv)$Ug1gmIO~?p&{yDgT%$)i)^#@*~HAiFt2dWKEJ;+6shm=rT
z3j~qG^Chrc$563#$NA8IAUunA@=k}V!SQu@e_GP?&qwN}BwJl3Oh?Qh`gXbcrMH6T
zM?cge?U3>EQ;JZp0Zb_qMVSHesRn?bd?q|M6z<0+eEVAt8${;iykw%&$D8{t&G+O|
zpH-{hsU~3?I?f1}n$orDSFse{c$blUz1@uGA?+|#J$B^xf^rtt&Fqkvs^AUYBqM*;
ze(A%b_)iV533`u(ci`bUZ`{amv*($=BO0wbbm#D`>L&`DAyE6v&)TIaY&Jjovlt6+
z23cpSWOGcG@{{THqpg^}s(q91WU(>_Kb#j<a*X|&9jma9OZ*1E+VCr$L>Yw(j}ehm
z^ypT6B*DndIx2;GJAT_PL?B|X)O!+CLF^-NP_3PN-|b}^z=f52+2*5HN6Hg@{M?`g
z=n+16PqNo7Z*Uodx#|yK3j*P#?eyWA#W&S%b3ExUjb}5qGG%LU68-RQ0Td*`6D>3!
z6K%+WlAZRE(o?u!A-W0mmArGx?;6k^g7w8SChX{;JEbNYcJI1-LgQqh1^Cg9@;y^r
zZAB)-rY<<xzGngI8fBouhTT{Pzf&U=?S@ho5h&B=6zLjxkUs!7QEN6BI3$B0vA;AT
zLg7#&!JS-Og4%%}lGeIsS(eP(cv9^PN1aJ{A+jvSK!^c!J@jq+7CLh7g1b)_`b<rk
z6y4iHG*NTrR=0BftFc{^hbl@Z8=Hc6ePp`G83{?Z{3@dU2EWN2L@SxfCgLi4CnnCL
zm^x&a`T+A&fes#Jp>Rc4_Wg&A8ZuM|sYDrI-g-FdlQ>hm%3l4zk5Gp6hfdeJ2ozA|
zHPQ7>W01cXcIi|x4|q9&Q}|uwFOQ?Ac&`k7o__gJJK*wfkK-s$qV!lEiKT$Wr+_1)
zfP3w6@TK6>q#c=bP1`G^zEFTvDG+ri5RY_Wi!t7Y6CgKPNn}W%r(MX*RzOCPLQ9d-
zw3~yjC<b0rEFBt?Ay36dK#c;^%*fK}r~Rx{ym6@rCstynAc3!ocp$@!X~G1_85Zc3
zGPsm3BzxFQd-~j!csu@h95JsvrIUQ&A^aW0o;b;Z#LA*F%3@mY@T{>h4+h#Cg~5iP
zTjEWG5+3h75WiuL|KH>Im&Y-v>jqM=?-|m=n!2w{Yb1|<iXf#4JpM_Op>?~YQ9V_Q
zw4WaQ+vCW_(=U62oMfx)Vv3c_d%vSdErk%A=Oar18xJVQxzow`Cg9NERkD!=4B+qL
zWR#gEtPm&|&}kGo4Z9)3P|^&g%Y(x}W4;WD;lpI#^tyP9q3?CnC$9<Uv=VUCTICDE
zC6Rm$mI=bi$<ByDT~e)bw&DZh!j5E$1~!J)^qV6_BkiX#?fLlF%=iv)aBf?8#S+ci
zWD<RmJh7h?4C~xJ3Zb+{STHp#JudJ?SH0o!2t}Y0CVT*2)hH0>3F1B%e?T2hkI(3&
zIS@-Y3XKf4s1sdXP9LQpS-aHQl_DJ3ge1Nr2)=)}GYA^}Y}C;=;rt@Je=9<8Al)^8
zm~CimN}(ViJ?!`+c0Ys%X`wxtPDpNDIP6XUu9H~4py}-z8=BD`^Jb6as-2}6*L~Ln
z)nvKyOUNS=!{$j(v0}eqAdx)|?@fL^wKo=5t}_vVFyzuSu+)hx3!FNx(A}uZK8b-E
z=v13eMkp}Xxq<EvyvbSDt&V|EO16z;;TcSH-lc<Fe;=5^huZIVaLgkj)UawqBY5-M
zTdeVlFU$DgFe5b?N`<K$Nd)Qj>5m!&3JSzzj|}EGf%pMfGd*s8FLCf*a?Va@FbkXy
zaUYef{%-01u>ziav9g>2ZgM0@fh(qlA%YCR6I_uQqha;kQA|7zM^j7{(Z{o<L~_u~
zkepyw4R;Klbcx7LzfhYN|DdiljC~Y=XMmmzga=BgB1)nov~75F*oTa1465yC?i3G`
zL#CoKu)gyV#xF)LT@)AN%p3vwBa(qy;(FY%uS`C?;bM=3=(JlXC>eop!yFN$T?lhR
zFp=7a&%6=l;t>`ph?VvjUK-rQ-pPoG!mvFZHDiQ;Sdu?^WndY$`!ixEq-^O%b0Z%i
zHhaR)L;_ZbCfQ)vE1{g3t%xpT3d}1CP{22(&R$|w3+9PdtT6rtuOx!_m1Lx6Bv{hu
zLP&}_5tn6G!(>OQzbssJo|ry!#6Wq$o#<u_TSUT#xd=)`BwljVub=?W2nQrlwM7)k
z%0l4I0@+bmUP?sTx1Nkw5x5okf!<Q#^Ez?Jxrp!ZXxBwDTFLjrc<HZd39<+^>5QV&
zO#~@kXARAX7KD_#LtG{oD}^&GKS2p+)M`@%>W!pcjK=4`5v^7hA=}98OqY@n4R>GX
z4p^U06^C@2M)!z|2>ujK>k@xgtc03x6fmK1nb$*1H3f8m6`t{CvBzbQkt8R=X6}kh
z>+;SQi_=G&1aU2gTZHR>#K%w<@&^lvUv!B+c!7GuA5n}&a>-z}G&&wFL_GEhtkEc1
zLz*v7`zX@fbpGI#+(aO_m?2X!dMC&1B7$#Y^p%XLStJ+q76_Z}Cpc9#ualDN(&y2M
z2KYu&d~73R-6O(>%S_c$<h%>XuW4L}Yd-s<u5snAx8>t=c2ad$IyyRPn}dP3?+fv1
zO&Pl@=-bQi>(<I%$7*pU`KpC%nh53*G<@g@<CjG|bgd6=Ty>bA%6S%J1QCccA|4Rq
z3NXU+_HCox(hB4mAD67B_2=gv7GdRhH18h6m((;%SN?E-#u1*(kPz{<Fr4=3J=LI*
zi0?$sOT<-{)!D2;AD=wJs6LH<8N>;$tMiz$NGq$QZyaQkv<g_qQOYt^&45XGS;Y-(
z@{gsr1QqBHq*Js{TE)hb(MOOI)dxj@h?2;o5hY|2kiwU*ykBnysg37FLn=nnL8lQI
zwpJymHtbnJDFb=Uw*ews8l!3REz0cU>H2*Lwd#d<WV%t;%+^hlpj-9R5fiIVr)04R
z!2<<0oSiX4?D>hl_u?Ss`m2$L1hGaHU`ob_$efj+vTaBF#akB(+HK*$H|x7NtAVcF
zbxL6mq*p8Nz8*zzr1L=5i7mpg!15XT(Ol+sKNi1^u3nUn1(xwJi8c9l+6_$F4YET#
zI0!ubOPec_H1RqxD$vxg9}0aTH($otVSVTQ<)kzE$tGKhaOPA2D{ALG3K9_)u~lIA
z<svJ=>C+4D3|ze3@;Y!^HZxfcp-)+Hk{VNKVj?LsXPnwB2^px0&IV_=;j>9z^7Y4F
z_58rXr!gSQe(Z+o56+6!!K&M7f!lD4%;f~0^6$m1)vuyFXh*CYV9WeMPZr=YW#K7D
z<(1BG0=?w==7>DYc#g)})@{gi`5p<mqY=-Sw1HgBO#9;|5?MOy@rL-#^7|#ZwF_#w
zh1y^IqKfQ=_Y<%gv#t_TUpVw0?(QHyElE<O4TRd;XOwsm(DUT}`fi(cy(si9J<HWc
z>)9wm#v;`>B$%odg7k%_#jT9x+t<&zWb_WsOoiB#h)7I*9V7gC%h)FJdo-cH*?KBL
z$-Lcb0iEkxWNBR$A<jh(g^)6ih^@&lXiwe&T$e3or&)YD8oKcslBXqx@#-3f=L-|s
z8d0Fc{YgX0jCJg%ki4X;C(-6r?S`Cb_y-qHGl+8?MyM=CbtrBYLQ?$?hMRLM&XSC8
zMM9s{I_{w&nioHWrH$u42}kJO!)N5#?4Y=DpXxDJxX{6Xgk5F%Q+hwQ*$!t{vS?j_
zh!s-Q2fe+x&BGnK%`GqH)72Xc0`8h^Zh}+@;bW#KBlJ6G*RD^8w3{xe(NVV(BhM!j
z7Rn~YpsbkJv`@wa<fjvy4NF|2X^L(zKSeV-GbeCfh}%WwKZ`~~%JDxgV;#+L=L<D6
zF^rQ_QX`nSz%6VV?yX@w3yiXB&)$WdZZSn{2}_ccdqja&D;c-XnLIp?Pe&$-&}WW}
z&uN&RYdg^uwgaAVWsJ;L$NKSc+AW0g;RQDyi{E_C)y@vl_)Hs~Uc8m^SQz7S&>4gM
zRw#0U^`l{_n#(gjJL~VA)J%6O0@IlT28@`?og?e$Wb)jKB^{Sqqm^BFSxO!8+e}jB
z2<mCw0!_~Eno$%gR30C)*F(sBTcRBB*Gz9DpE?8k8(xu+Vhv2R`&#4*mJ{r)ko*SA
zS{NDTN-XEu&95?X6ya%+YXT97TBkU;H_fK|h`kL1SNZj~r|%7JUc<waUh_JEx)?WW
z>sqZSkk5%@tZM2Jxg9z(?Nxxh7#33O-J7sx)-fe4PtPA`GLLfdBD{jKyhW{6f~KF>
zb9wrIf^ebbs?Iz00HQ+p^XfXfCnvs@pceu1-&w$`I0i8(HzLF>pFMowwTOj&LHa#a
z-hJqO<g2ijC_9=q@NUyuWDvU~*_-3Ah6sMh@WN}N%;y9p0JXu5G|M^CA03SY=`llG
zbfPydZJtNix@6dedyU3Jgj~l(){Y`{g7N%glvgXCtU0Q={|JbVDt91Lu!ED^pppeC
zFfBLsRKgt41_Wy^u=TGz#gH;#7!pd0ghhJA3;Es@e({kxtKXr<ARuSyhNzxsE|bg^
ziMl`Rh`(??1(|nahCkq>KinTqnk8!ZZR`HmJiOEIBp8pRfp`e1aWc6Dr>OinHjl?N
zR>WOwd@??JG`uH-kXpoP2hH3YLB^?9Wq-ud7ehxb5OF?Eo2t#C>bn>6iK0G$N1jFN
zM9{R?T97=~Rb1dvXUZ+iWTm-|?W=T*7_A3E<MrX|)vAJ)Z#;H4N;9jXLv)gRCd7!<
z>oRS(K+BDy-Gouiuu#j@RyH*>-RnSJ4QMChx1Tv2>+tm)^0D7ulg*>CnGM~+9CItC
zS(1#)v>NcPS3z%(vzeZ*ZH7N5|9a5T__Yg#S&aL(V_Yg@NDlRqUGaJNDWGmeV%zUD
zKluK;sg0#Cwc5jr$UD-+MN?CX8G$!NTn;a#PIsnC@4Kunev@}$AZybnO2}{xyOD|1
zD4)u;#u9luB_QMaY-T{8G`vP5rB!7J959eKe6~TZA<RB$>^d2k`T(D0!0f@kl**h<
z3&Hx7{4weoa~SQD2xbmoA%BXMwwiPDF<H;&iO8eLaHKxYttRDw`qwutyoqzv3PS1k
z(k;S|HXi6c2p1E=PEZYV4bxa<??v3XN^WFL-svLE3LzQPw}~PWhX-?Z>|+|I7{E3T
zNP85whk`Vs`nC>~XVi!>+iggSGskoBBLB{}{fKdyow8=6=4sUefb-b!VgjqL)fj1W
zpsHpYL!#TaC7+<syB2>^YzM?(LUuROY<X06olJk-1hAQy!K9f4gvdSlN|wx$;Pn)Z
zvOA)=_Sy15>T|@lELTNa%3Z|Ka|MW5E`&e6#Ufb6Mx|m^Ctieuxwg|#e_IugMI}sQ
zEt`OklLn8c`}s!fE|QLiv8^V)kb}a!3J(t_z4`fGyWrbjKYrGN9tGM?T4eE@&NaZW
zcrA*|4Wju_yc%?@*oOmsMkO%uhd|XQrPH)tVp{2x@{BM_-O@ZgOx8j)Pr0Aq@U`t(
z=_=;8YwiIV_MCkDMhTa942_?5J+k!l<W+vEwS;~_@a)0KD2<zALQD6fY-ByNCL90Y
z_5SkWX%g-?4825m4}iM!s)dqDQ2Q^5Ww+sjZ{<{Y1!PRnZk}vHAwNEbX+t@uhrRf`
zsJy91qPR|d(4#wEN*YVSH9ZgHt)I<9x-~M%dG1~yr%rVQ6h3484s~{l))=XGqEqhz
z-X=Hac(!1|Ld2{%76Jq+&v^x!(ud`8YZW`a4=1pw!WksdvpsT8{m*nCJy&up3lURH
z-;~iUNEOw;HBXj`2CE2#5nnElOb(mPhK>J{yF3~eeDtCC2(yJeI;1;Dh$f~TN3S#V
zbf76nM98e@>nW6K`@}<@9<xA56ixvxk`ckVXh^8qG|#?UFKaT_0RD}s6c`!GazYxi
zjjdM1QymvP+MO(Udk(-waf|j9-f2V5cFa-s2HH+PR_@JD{8a859>S|eB$(J4IRj&E
z)=}31u=(EK?KQ$k0?H=E0viZByS;a5iYWGWZ&kLZ6yJ50u4Q5IhWc1<%Y2pOGgu&B
zuP+9E=V{xfaF}_VQJ~cTs8U~n>h5sVlJZ6x>VXIu4_m+jl3B^utveF&nH{MGq0=W*
z4xZ3t>J^2wdSef2`!~P~C~_1-ysO?<huDT!phPirQwU9^5E7p9JKQ8a2(e!uuTL}e
zWQn^0hAw69Qb&^p3Xu|0Y&~`leKo?!9S!1HNNNM>6B&VuZ0MyDd;Rh_@G}h{Wy6iN
zVjB=JB$K<1SIOK&KcjHVK(U`|in%x|gkF26@8xl0o}1&Qiv7;r(49?RD<F>YZ8?&O
zEm17MR1Hp4${n1JWG6UMWci|=mCm>YimB`uCTc)<mZ|7akaC%y)*)3=W?WbFqlCy=
z)U8;yimxIZ*bFw~k<cxg!yr3Fuks{^y(zH`5Rc;Zspre<D_A_c2}-TV0Xt}~B+gw(
zqJEF`=K?MZ&WCEMkGMee>9!84BMc9~N|^FAxF=jA)J#J2tSh)9xdOMoSOZ!BuzPPI
zaTICPC=0nf-M{5KJsQCFz9=dB1;i0rWNTdRjSuQIH$21MQE@^J{5dS;D&f-92k6rK
zZj2iRDncjlJgZa+aD2*?SfVIOrtUkUK5+9|e+SuA;nLB)j4*hu3kY%r6?R<Sk!V&1
zz-UYMQ`fvz9^(QTh7id1hWbPB@zib*nj-Qvd}ybQ%tz;D`RWG;Z$-$01J_*jYokbU
z_Y}jGln=CMKE-F_Nh{$Lr>U`$5NvHM6G|vsGN!CQfT$r9>!*nKpr46Iu=Mg~Tyqlv
z#{kap&v^axl(J0Y*{5%O9+O~}aLV1j#aktPycH~?%f5wYK^@0i8Qdf({fT{mnv5HY
zt`aSu8tscE2nzYaAsV1Vf{wjcg`Aq4ZP4}?NiI#>jF`!<!l>PmS}jN_s?ka7Hz1JT
z3XG4DGkEV3v}267u(dE0hlO(mmKR7)N>S?xr$~s5epN-W$#1~<eJ55sB#X3s&zgyP
z>X{?`lt2y|=f*Pu2LW)yPKwx%NtwtdP-;Cnk+Cm*-La5raV6QEuf6m?Lm|MbDa>QJ
zcj_BxOtsq7A?N!$C{VH;d}PWj`;)KCB{y8kwJ=GosoZM@+f#Wq6r_s@p1CC~t|TNr
zcT@W(JVmCF(raob=Q|FDl(_z*263$YzL`U3aPg_ks>N;qgpPTR)Jqx<eh?|7-Jsif
zv-4!7J79#I)!gWu|Jz~{E)<urYDH6aKN`r`*F|9LC1WjZ<+K{5(#*XZwHvS~Cs8+9
zUP3*TSX@_ftb<FbNzrECH;7H1jA{BN+_C$%ecaJ?$*eCaIr<T(>of~1!n@cvGaF$L
zFlP|=cO7{DO)uVnZ%a__fo%ur@li_C61)`Ds?qe0uTg1vcgF9B0^;fzPTy;*Kg02s
zb#t=pnbx~yv)9TjI>aHL<4g$jiIr5eZB6WoaEM9wwDX^MxfR~M`$JA<lUxvipMNGr
zD*2v|Wju-s)l5)|aqc3PA&t^OSmN{Dh`>=O2#k;cQP2tvV4Ep!1lcnKWDYNt;R;d4
zF;-M{K=012=h|B~1(ek^z2#sfY<@%!dA_}j2VFki1C^_@(o!{?Iv|P<(St`Bd39PD
zpvOOANi&s>$CE3FILzSg61Ia7GysHpWt*_Peh7A}e4Lvp4%JrD0G2fnr5)1qOY{_X
zK^QmDM)&J4GqmigWOA^SS}@B1K-JNuNYTx=!_W^hS0Of6My>sLwf2)l1t%g;RcKX(
zp^N)_PU_BMuI!#8-CoL8Y(dj^d}Y|j1fV*ndwbPPN?Uo`PnqBdb7e^c*Y{jFLoZkx
z_svN9COf8pOn{mEIQnScjJ%EXjfW|PVFBeH(f0fjUGZJ?qXKGwW*S3_^9Tc)Ay{3q
z5p78Uok%#tw}<p8P_mi=hB0Qwp1U}bBgr3_JsA|h5~B>e%<wQ~{3c?PjDih378Z^|
zmRom9XC5il&G7KEWP5}<GWQmi$FkY7Y(66JAV83@kx@42?g}Mxq!x1LvMix{CyQr&
zsu#FTR8%kCg>ug$LN|F=E$LUHBMj0?RH<xoET}gNg`h>0*jO0_@6JhZq@9d~$gEUA
zxzXKlK~%6dZmOtR5naww;D=SdWSk72C2LPYZcA3F)S^x1u9;7&vOtiONI2a-W3`l$
z^cco!Sw(Sjw^!_R<5F#SYobX0swhb~@UD4;R9z4OHrwrNgtIy1)_@X-g-vCO066YR
zGK~-;E=XcTP&GYJ@j~74XHyG9sl~CWr=rwz*)&Q}8Z~U1%_z-IHmyFC))?E}S=8NC
zHtlVc_95H7Gt|8+HXZz89VojlRk1D;yB<feo&fuOiQ@Zm?E1Hh^|jdz42uoS*bQxq
z4V~E^cojeJXEzEfHi~06PAxXhWj84)HmPBM*j)Uulijqh*mR8j(QNUfRd%!OVzWc`
z$7jWluh`A;OU$7h7E~n`OdOURC6)plRuUyvavavTORTjyYz#|m%s6aqOKhDv?7T1~
zcK#gpVI}r)91f`^4!ImpN=ly8a5y%XICgS4^_4h{aXg(ZdAiEsyj|ja$l-EU;&R2|
zieKsq<#eMebz|am=O}d-;Cv=g`b>_~<94ZsHm9dysizsImu;z+Gv{-!(&zr1-eINQ
zahyJ>r9Qcwz9pr;HJmS+OJ8(y`t_Cijd8x5Eq%Gl>Azj-f5;hdRvK`{iNG&IK)C{`
z$^x0Vf;h^81h|4F%7W#%LT;CZXmf=cmW7&eh1r&cIdg@3m4*9rMTC__#BoKYmPO`r
zMU|9A)o?{OmqmAS#q^cMjB&-zmc_1e#ch|x9bT{BDvQ73LgJSrq1*{n<q1p}?nI9A
zL;>z3iSi^l?&RC$$=cj0hUF<{+^M$Zsm|PKUgc^2-05NE>2cf{spT2D+?gfinKj&5
z&E;90+}VBQ*<;)}v*kIf+_~H3xrf|&XXSZU-1+zw`B0t$s)_<8o<fd_LIIv4iHagQ
z9@Om$lr~SXVMVbSPl;_si8D{BS4F8mPgz(+SsYJ!YDIZ2Pen;ZMGa47b46t*PgP$<
z)fi9pY(@1dPtA5k%^^?iSw-y?PaS?`9hA48s<NJmw}GRwL4dbWqOwtrx9N6elQ!=w
z!^&4?yv??i&Ca|nUX?BWyscrCt#Q1sQ!8KR^0t*!w$<>qH&?cI@^<uLDm%t_-^^CN
zS>^5AuIxPIeS22<_KLR)zp4w$*G*N`&BWKkQPm^B_fDefog829?W$gFzW0Vz@6Gu7
zY^(a5`TD)8`u+I^!m0-1_y$v}26Op_N~(rx_=cOShCBI2`l?38_(o@|Mpya9wyVYt
z`Nq$x#;^D$@T(`F{F7AGlT7?m9Mw|-{L>QE({lVXx2tEg`9By|e=y^pwXL3Y=AZMb
zp7ZCQ538P!<6lUvUdZKNEU8|s;a|G89y|G$`>L16_*Z7DS62B~x2snV`Pa^>*RJ^2
z@oUzh0vl8{8%zS595tH)0w15)V2df>o+7riona~pIBcM|GR|9in3^pUfo%zAb0vY#
zaRQ%A1acw-b`xuMgKEskK)5J@eLVqO0OZ-~e7!$^zoF*Qt*(Q!nyp(14|L7fRRQ##
zv#CTEn&T^@1o)Vv_NzecQNyP%x4xp4K+m)Uzn#^5yX|5E?b^1j{d&6#WFB%J^c5W?
zc%JzQlrH!!&PBCK@Fz#@&k`4-9+%4@LDlQl@W<ihRP6)*uUBWzxH`BXu<Jgw4&%#y
zMpt*H(TgqWy6^0Q?PznNgg#MH!Fz~4Q2L7dxEP;PP{j|8_7XBAtc8%*DyO3f-Z>v7
zqV>tT2!9G32;dU;qYuXFi0*vCSwin<xGL=n!G@ionl`{1MnIXuZ67MEZ!1LhOaM%e
zOMdfcORk=b(*{e^?K4j=rIj%DgCjjlw><$0n)n)OK^ts^Iv^YSr+<xNw($2`fpp43
z^lA0Fx9czD0!uD%$kPQW1#>U9r{!bbk>Y|t^YtfZ!i?ZgRQGH7iPM>~T&SsgS<VIE
zm|!VTmprJ8E!>6WhRr2mpfGYl2B~z(g8P#&kl(vkGNwzuDTrX%g_FMcf-tbAJOuu=
zmU~T*7NU%0x&RsJ;jDAvqb|OHDmsK><9t58f`Y`c5u#uO$X?_dR8*I$F=a(W;D!oF
zx*Hs##L<E+2kHuy6a^uK#ECv}hc{@Wf;qbyB>FLeWRfSuy<PGY3cS`08WEycP9mRj
zMQ^PM(w8kVWz~w<)za?caKs0Te!&yxK@f7*%i|PdeXQ3$2o!oN`hEL8mQIlp&Y}j0
z4k9DAe_KrFxbY;YL5|qt?6!zvy2oA{mRyVi)+v6zXOH}df^4M<R;!q1Qj<2F2-Uf;
zPPhvw9ii>rB@g!$v^z$#G~8Q4(Z>sa8WUDj5od#S@m1mK@qUvJQ34SQ8pwNUYlwf2
za=WAhVZ{V%tcz(=cS%AJYT@-p=P1o3*Ly9ezg7`gAcV=!3@}aC#hB+ks3)nkxCOa5
z$7fLv%@aH#iF=8!wwR8tZi7I62rV#(8E2`BB&N>lgbiS=hq3nB-LJ(;ZpM;C;3Ru}
z^OCqXi>CSLs?>URwc2HSU(l&hLc7lsXhAFONWe}coa4o5!qKkaoA;Q`z|!KR_^;f~
zx9p=`?fcEh?>v9@(fSb>{pe<|=RGgapQx)oSBz5c^IBK$=g+m{&cSId-Y0dwSvR#)
zYavBnRlCl?!!0i`ThAH=Js+s}XMOcwJJ)78XO<2}@CqWRi(RAzU2onA;`|zP!&_&u
zCSdLCnVRJHZGjL@_PwxLcg{7>TIaBv#oHB!pKK4q(wrmjtNh*jGyd-Vjj-&nWO1wi
z>HV*9W*Tud1{uBo_L;9se>SZra82)PpZRy`|9|T<`)FL3{%{QqjsI2poBl;K|6Th3
zi)eoKU#0&apV`;@FP|CyckIvhC-(m@pZV|DAMVrim(Q%_9P@8P^FOh_>EE$G9MQq@
zJND1|6Z`*Bn*WLY|0vBVzTyAV`#b+<@87GLIH+~)GpGHp-v63t{;%F2o}&GmXfD!(
zm;51`i=O@u(VXO^_pjdn)xTus|JD0z{zvcs2WR&E&*c9P&irr5zw>ndZ=d;}<p0`d
z{+;|M|M8jsEAvNIhx||GUyMTiN9N!356=AmM&^Hho%vsL&DW)We@)@opUnS52kOJW
zW&XdF=6}olH~)9$|8ujozi;3_GXLwX=L7Tqk@;`WUuXVj*O~vo=KS38;^5Kp%%9%B
z|LkAA|EIrt|G#kNzk2^qzpk$DyZ#T({CDpkgm0<f9pQ?V1fdXpvOG|K-TT9pqZrg1
zP=iS%)vXGH4eb5cS^}-v>Ww9%S$}%}X%3nvbwPxTgq11q3~|THlk*bu+JH<sx}PoO
z`RM_t9B0eECr=D(%sqK*+C+!mYEif}6>)Z>;sVYW!*VnyN90{RPWD!YTWZ(d@{_mz
zywh5@@$NF+;puKLIw$CUrEiR>5XmwDLiA>nAFOeE97>OQQ8j(s60SfvEW98oVE-od
zs5AF&d-K6kD<0&kG<HYFd>4At{q;Lx>k7RD@~wTTo95eN4%9c^h&C&8hjQld9p3WY
zZC`yCjk$5J)9>BNGa42}LrI?D-CY8`+$uk~UCj3G>iAb`e@`@Vfi4Xbmm4Q_0H1OA
z`fr?h-LO5O4+;GVP~Ffl<FlObV|3#}VxhK<%<sXYBsWcIk5TzbjledH;cK_&dL+DB
z?PILucA1qTsayz-#r*Z;pNm&VYzzPYBJVDPqHY+z?=P^xvech$*hRX#Yw46$T2N3#
zy1QX<sii}@yQD$skdjhDQ7{k?Nl{AnMvvpTulqXB^Lk!9GtbO3bI<JTi`~~d`>)UM
zi&xw~7<<BQqRiFMd6&`%JAezMOLsk_o{DQd0F_#oOM~LkQ(ZrSQx7%*pu8cU`Z;SU
zKNIADbDEZwEa^Y7XWyM)A<ML=a7RN##)}5?p(zGc*L&$`wY-KrBQ^x9K@K{{u|^Ac
zLPTY&mWRk--O|vew^!1|l~&Rguzg-qts%jT5hJoY5!0AOr^$HRBk)|cQM^r6*pL$9
z!~=rdNPyS=2@aKeB#}vhQ#Gij1)5aLP^^S9s1&j^gitqm(BQ(;8L%Nlbn$g91o8ls
zuV2o1u}Svzqy1-mC#SOln7mtb;UpvH_a2OC`5IskFy1ngA0n`Ip!-EF)?@|Y)qMmf
zq4G!?!I(v@SYrA+4YArys)Q7iA@=5y<da+mBh*V#!WzJZ?Cdbk!#a2QDz@)xva+&A
zvoEj1FoungZRh4O>~Ov#goN`{v$&{{SW`W=oP!XRlBE@KD8q<_fk<=+&X2wpT%snW
zw|4jY1sVH9MOB)!dqr<#)f^}LV(Vh&#QQBshsDS4NPfTm_wS`ZR=eN0X~s_QYT85I
zUy$wWlh?=Ev&}rwvPKnOvfj6=L?f#fuWpfe<J~=FRM!XJ$_>o{Iniz=ORs}(o2?Q|
zThJ<QZrLoeD;iaj0ltDU`U<f=_i6UATVu_?#jF+d*v%@k^*j>WO6*jOrTji*`<|i&
zjs1?M{n9SvlTc4xES8|0-7tgSEI)GK9*HcHsby{(mjZN7B%16IH{^N+Gg#J?1aSNX
zgG!@pmG3&hL>Tc{>W7$nz@9iqWO)9Yw(s`R+ZgnSW`z(n<eoP*v$2_*0-?H^R3xIw
z>rAn9xH*U;zKZN9Z=ujlNHHFUEK+W$A4m84u_y_dv0)C8L$4<hlPh4DM2x|#!_mWe
zrD3&ff3`>%E=+By7a<W<o#2hvLS$F7QOP@Z*N;FrTm*`fD4_tei}r~5#dQ~9A^qW|
z%@)1<>u`0t>O&T1@J9xM8v`*`!UFPDHazNWpc1lJH|(vCiaWwu5tK!QVMD6QPPQUp
zLPJJhJ;+#^Gy&=Pxg`HfBy*x<`=HQ06seTDooWtQ8L>T2?(#H8pC-Usrmsv{U4lK%
zNvt6<i;C$T+kreyG$gPGHwQB*=NixkX2-$q2<1owh|%8ne;Ka}<v80xOhwQ>6&mM*
z&;&%4-C8XXTG5QNHXFqNuH>Un@Cd#rR&s?e0;BXN;8G<_iZZ9n_hP9?R+aJ5mk<uo
z+^PjuDgv+M5jZ$3M);$8@fZ_(XB7!V8qP^#6fXU)+zF>R0{`JQ5OzKk1|geOJSWpj
z6TmIUH>_4?Hpe>JIJka#)Br&kl^Lab%p%M-E<)h781=p1b?srM&ND3Ii19_C!zudu
zCUrFH)s0}v!*Zy&a7NfC3iu+$n%Ywh?ZLS3Fw;C+cx@$qG;O~hz*nG7V3g1T*UpY^
z1}lfJyzXFTYp|a#Gcw+JcK^dk4*%0yW$2qmS-lfx{d?6qg5bIN+)PDsQwYu4J;QHy
zV&P!Ji3{>U!D&ppFKpxxe|B#!U8><8_cL|~4KE5!=Py(TU73!jzI#1&?8MzeyoVq<
zuxyz+>H0bQ`5h%IeIR9cu%URIW6SxZjsV!cj&j_c=B|~$g+mcxb*&=n6QE6Im*oI9
zrA;;eHny8OFolhXwPbmGGPPBx*BT<|{6=ZtP6SSPrNKGAQV^}n-iKLkREV$#&Qg85
z-x2Q95%PiXb8ins=Nu^I@~(Zj71vgo*ql)MltD(!9<sY#hd4r^HSU{~=@&m#w&I!R
z?dEEQkR_t<OTwXRQAK!%mFWC4QZ2EvdVB>DmGnHa8--?Y7nrU9WC1@`>?iq42S=4$
zop&5M&6vVHrg7I#H9(X=7yO4yZ7!#bW!vElpH6dBVWSRu`x1vdf1V-#Nzj8B^mMo2
zjXM!1yYHjXi8DWcY2?s}m_Avfh9~%rmqtCJN4js&f6s5OxlNqCrh1Rc5ap9@Q4BSU
z!wItf+#Jz-aW8Vq{UwnHc9cfm{VFMYo;%H?cB%<L7VA=D)M2YKD$C*C9Xeiyw?4&$
z#@p$EO>+?L@ONeMRJtm%&z$UkAoBD8I}FbB*v)<Aqp7(DdV85$9IYU4==Qu_`&bbB
zp^_?&Tg24i3leVTgqUhqstE@8=?|ZnxJfI*Z>R6^!n{-{8=NDao_~bl6W?X>Q*qcn
z|A3F-*bkX@%nIeTuTgtf+l5$r(4xhVYuvEUOeZqN_wo`}tkc%+@wJ4SlWknFuhYt}
z)GjtUr&q#{U#~FL`!Mwk{(YuN#n<chgNgeE2EQ7gul(pl>ax4ExX2XB%RdN`wfaV|
zA%kd0^>Wjp{S4KTRVxV{Z9-n|hlfqOeu5{#=&uf9^_c|~zwM|042&lW(xjWqygw<y
zCT`9Tf9+>;Si{0OnfU;+xu)RVg7apI(RbXm1={ieCqE<CZ`_-WZErzz7!<WFGyGYe
zDvQ@Xse6gnhSiERt*hYZ?t9-gLEi4#QyVy7d2Y)!Q}#u&M~m>LZ|~E}M_(A2&i5})
zFp92pr$<l11bfW&RA`0n5BB?)-J=0Lo7R*_&XU|TSLZD-Upb!^#C%vq2A*{U@O<%k
zNKJ6H<c@bpZT^aO@-sl>5BtR#6x7Oq`vrJz>vB=)Y3$(zO_8zrB70_X8*^X>dJs0;
z?oyxuyj^6v*tpRoNxMJB#_VXPr+jVb@rcSE31++3m1$x6Ni`Os1^w96?xC95(Gn>Z
zFFwofWJN|*L?%}%yZ?-^u(ux@dxSF<02K~;K@+3;GtA;NrXnk5;z6uxmg$dIF?DS8
zj%Kl*611xzp67<hS_3$jrW;qMr}ceWQ#H6wgnjvv|GmyIc7OFN5TB13vcAZg9K-5&
zs}so_>5S@(Q=NmNZi&lvQf4?lcKi?r#=;F768>BS*Y-zU=PGoofWFN;oIe9%s+8}8
zbt%bYW9&olH*~sALV7r36CQ-WiH-mH!+kd0fuqXnSS=jCC03>~w*PZj@^wC?QfTdU
z0v%N#5muzsPttf!0P9Ei;O+QEwFm*J#H8bBv}4qACy?ft#CVU?xb^X#qp-ddK%@li
zw<Vz~6S@MKRG%h;0+^!?W5EN01??h1l1V=`04Yb`+f`_y;&`hnujf_H@6j%}hjPtQ
zZo{-mMpX$gE#K?>E*WhscsmAL*!0T4KW-^C?lwuJW8#=_)GgXzkl!tQjGX~N#qGr}
zjzAZ{zeVR%rYK;Zj#xBFkuWn?O_R_Ji$;*BKTJPg@{rO<H(W{8>;ecuI0a}zU#|o#
zx=gGt)NHzGrtr<YSR}(X+zu}}^(Q)sCKX$Z_Utv_x@B=g3!tOT`lK1?|1%|oJFBEP
z9G5HvU&Pd>%OPmd$Zv`Km@`Qtz+9dixJvhaK;VEV&zyL0k7O?MlnhS??u}iYPPmP}
zZ;xgzepHl`Acl|+;>v6y@VCza^zkL~HnMm(t-{T7u{T`ZAYS8Hv7Ov`#NRDn`KN&i
zL>_km@*OG8X5k}Sc_MV#S^;_Zhu-+g*6m2IaaEt86|&@qxgi)c+oF~0J0tmx9k-)b
z_yUa$`$p4AQ<CD<a`89d-uRgxU!Vl<Q|NQ%HlG!?NTcb=?mIp-_-cMPwLMc$#Pr7(
z{Zr2T9t|72%q+UwDFtPcKf<pE;Vpx^BHk0k*dq(NmQ!wM+q6-o;TeMZ*o$8-1H0`p
z^qow-8il&#Ibk_K$S}2Zmvd}d(S&3U-iGVrfQKxBLS17?Vo*zN=@7Vwr|K%%jRSmA
z!&Hz(xt7$Eg^@CkI4WX8OT~xmh*(ECN#}!(CuBJ`BRFN>s2@0`m0<&ROo0`wGI3M1
z#Vj?q7B)P*HEbTP0(%_xUaG~6WCe%!O9yfQnV3vVZBlCtRAb^N=}8>ma{E^G*mWMd
z&~@SoHrahlcsPq)w$H6<dW1v)z4PY7@+x{yGbezI+9uB;28__Wo>jP0qt+*pdi=fU
z{zM87jr{>P@Zmu*%aLVh7U2Ce?WK8{0!Nl-uAxO`;mIcD-k6Oqh5pBpcyNROJ)&yq
zepR18&=Qz}cUVIRuWhw(L7}RJc>sISP@-lKn|GNwK@P64sZ<xh+=PHpRO8Jxm}US6
z+EK)YL6EE(yxJP<9RPP-cJaa8y>mmQk|>V}B(7n>dK%E8T`{ShKcZzy;9+W;LAF(H
z1~Dw?*2-hlu>~wj{CM0}yYg`iahS_I1uq(}hp$_lp#jkm#`q~<k<NP2o%)vSLgE3n
zm5)slI@e`$VscAovxppm*#^MA@m+WhE=UsBzgk?o5f|>DB?}OTlVI8zUU!ux*teNk
zip%)ZWS@z=yU~iz(4j9zn^z4GuHzb&-ebBiB4P}L9_s@|DLv3gWGnG|Ho#IyJ#Eb2
zXQBmf&PFE%>NgKsJt3VGN>N(T3pD^#(f6)P(c?1twzMVuvXwIgT~{zM@EqvdPtuA5
z_bT45TFb7iCtm#XYRC(%ZLbJ!o#q(rR^kXkPKKw!PozU`XhtyTwXL&$T2lH6?i~4y
zm=4mb|C&ijowF)cXpQgaUfhin0nWhGR<y;Wv!|-e2T9y8cxG$@`nD>J<OMVUoks4C
z@9}~+z9dzY0e4JkuQ$;zpUToUH|J^t`fZe(0Lig2DY<Pt#gjUOI10w5oMj>hHox`4
zOZ9k&GBUn}nLaF0Hld=YmRlNyo30uSC%ApwuVg<Mq%r^zRyll{EFfa5G#Qa2(|U-!
zi|HrEYwnAl>%#=KJLJZa0d_1VBpX5~oiYG#_IY%(LTod!K}DPPYCYsor4MJMy%mVd
zP?cO7rePacjLvy}EPLEfa(DOENzbV8X4B?4>FWa?LM*(8y1a7nXr4H6V=Px&1|8%E
zsh(PV=?xd6t-^=dPPRg*SPVk^=z#}=hZN(2ioYBXqZ=OUe7(R~Q}U*c00H&U)uW#s
zXU!cqUZB3(xLtoSCf`ct;>8&39Mw3LM%QeMYYBKWiuzrWQZ7xX!rF!J^%5L*P#=@*
z6RHOq*BsMLX4gy=$cYzEJ=`8LfxxGrDpQ0W8nPzxkde{1c{QX>{D>52*9R>cL%?oP
z6!#F+6kY=Mz-<DNbS^-xSOKDSf`wGj?@V+tuIF3eata_h5Lh>$d?5nxo0VNx&F@6Y
zF3&5O9ZZ1_UsA&74s%}OrQk*?k>Rf6{^|u7*5>dIr`KU59}kG)-8pZ~V*gGzKcmI}
z)nK(vP_|C+8uOjJEPMuh2r3255f?AGh&2h#wi96CDCW<s6A^xJp80GAQ1XKa4+#2|
z<`)g13m*VhG;RR^tvtY|w*aly05a1HL>mkFp4bJjg@Sed?jwSlA}HN7a6A8%Wqq+N
z<-!AEi0RsN;Ik#!K|%P`65hrVgm^jHdO0>^Ieg>3L;NzgIXr%P8O^kkD!;<q3_9ef
z!+W%{6uXlCC(fKeEJ94-N@TfQQV$U7&^kf?#F^`tBGpKrJen!HK6PU1XqJCtYw~99
zeD!ynS+7qKE%zBF*dHOUJUu$(LOVh%cx>D@@F&iEm*7R(J%t39HQ}hW#lParpF6;{
zpqB_Sl4`U;D*wArE+m_Y@7DkCi!-kifgmq_!MF?-P6%-Vrl|<~u|6v=1sZNMkWl1Y
zZ4qN}T*sMhu?fo!7K2irk#0~GyrYpSrNKSG4X~s=IDqaY!T`}eE<;d}``1;z*P+5+
z1r8~bzcH4D?@TdsXw}m-*^o2n?$B){ovc3#-q>+^8X1PA<ZTG5o)Z4PZb*295-nbf
zD<w`Np?<eVeu9Mk)bV_+wA)ntqAAj2u>imT#6Gk{F98y>kr}JvZ-&F)ej!R^JaBxE
zNy=e3-2GUb0JNih<a5%#X!BeAHVAhUEg?)@fYmYVaNvfA?|}mC<@2}(5K-xA+qvC7
zlil8#4S>NIbS%6TzX~t3L>ye*nrwp~N!l6o&b1SMCT@0R5K1P`1rx7~;>I9aLN<=!
z!c?{27{x~cB0%Rw11r5GxdzKIwqZ)gqXVhpV?x8{omeMg5jJ88tKVv-=H^b=5q?)n
zdxA^iVvRJ87&6i#=yw6;+8tBt<629*A8c4Zh24rnR6RQHvXwS{eSS29nBzaz242nc
z!0H#xjevl8_B$VT>-OdzkW)Tv;c)sk_aznVUW~<TD*z8qAuPfznukUS?U33vUX26Y
z?u}K6xZYem4ucoU8yEEOcgoF>2gjgr_fmplfs#A3EQWG2I{=CIF|?Tft<gFD065bX
zWP>@F!3mkK3OTRtJKu~<Ny6q%H3Bm3^62ORtE6OWg*)qoWK-|wi43v#o@J0X`w%>m
zdW8$P{r3J%;Tfh)l$qLwvl~N^?3&!sK0GQ299>o^zWz_F!x5y)1K2-^Zt*GsN&*nO
zh-pPPO64gctPggNiAiYs<FJZ9s-qE&L{N*xEyI6_GmCHc$!Z7vy5Ov|rO(zG2#m^J
zr@7tw5aY4{np^JE16Q{i$G6iP#5r7rc*T8uFHe9&0j`~Fvnei9o1waT;1UU9vf5xX
z9g^a2FY=;W@}fNXrYLs{f7Q%tnME{1LrYX4f7KCZFy{SdGK_8iTAvol7<FQsn`mj(
ziz~bandO#`MS(Ap1g!nud_rdMdyNns5v~o+O6<|@%`WxbB*~z#vOW!%f7ciF8ZC!5
zQE1&r;pogattM^ARmv1}PVAh+c0Q~Zn86FIm5KcRfw1Jegh~PoXC`;AP#b!8pJnS^
zJSktGl?qg`PL;w#m0U;c@OPX!r3gsN9gsZ3Th*(kBTP-=4V}W`%=2DEO%`{2FjC5I
z-K5jV!@?YLip4oGLi&Q3dknRhf>a-MmBecCYVgi=4>wXL8{Hpt5#rM6Y&{sz;19gA
zgbuURcdPM>Z>UVNY(?gZ>ILt9g6fx6T;dmaUtV%DVBW0H^Yg{Ib`sY!P75zGknVp(
zY1MQZ#1|^OY5|wgwMDn)xi@{}xfwZ{*Pt60TedJ8c0Rt*I0l7!&V5!LNii{|;-8q~
zpH30u*M?)KB(X57@phc;+}q*jBV486_n)%Us8>lihrbBhq@%8vC>}Y1!#ZQ|8Qq_M
zc4COM$phLVlk{%YYkfc0NG*SNq)|k5@q73jhkE(FPzre#j5AsLl$||iAifB<Vr1!c
zm{{@4CRIk(NX>>_h7Q;s2q(VQX^O21WYIu00W!rzjDAAjy%@_#dUEu&0EsYKHw-g4
zYyuhKCA3s`xKk7BW!W)15*o{gLbkJ*?$YyPDw#gu*1I@Hp);{6yNFG($eF7M+}i}U
z;<2`0&~a~2m!US=rkEWe_OsZQqfH7I_%@NWQlooCt~M9N^muaLA|ugNmRbtkrL?<i
z-#3F`eOUO9og21Nf?%zpcb@cw>C(;SPA7MFI>lg`IUkfU`EEt@bq%s{3D4GWetg<|
zq2B2@bUz&in{DCXOp?Li4@6F#Rx*?-(d6^a!+Yz8%9N5lY<Hh7g$C_m_@#V0LiX3V
zI1zjjT=cFu33v4rCONpaW3RG{&>5#sN%EyP!6n!xC!^DmWrF-wve0xVs&s7k-C%%>
z>LmSxz%R4UPM9hUOC?q&C3*Wus_6Ha!Xp#3g!^Y^50DlXdXqQ$R}#!t8Lo;N$Z#{6
z;G#jPnmUb9sem0Ut#X!cXG*q6M3h-&VL!%7Y!Ph`y1^x{Ie*UFQRNCE3-4#Ro|76J
z?4kM;6I4yPbtQ&hnU};pk@jAxU3mZ}^^uZvFl6)UkQ+S}X?9EjBHuq8Kz>i=wJp1$
z+FQk@z>$p9n!8Qk<EN?0VU!ZjH~w?{i`3y`wd>^(BoWI8aKmiG-GlXsD^yAEM|n28
zw}<%Fdjo=KT3aS<Wp)JZXm81sk~!F!nGHccXh5%))TIlhBc`L8k{03`sG}54ygL;M
zewhh8r2AxI#*idj%SF-q&M*@5MYXz<Hwux$&P!uT`aa<$Jmm~2glL~a2CL`7;9o@C
zKC8GZ9K%0}af)@d+(a8Jz{7~xjEA|joZlI^h<;C0Bzim?w%*9q8C;R3w4#kxGDtsq
z`@rIypxE@*5!dT`_8Ri%hUk*<ltPo@Wz>hV4$T|f?e2K!*~s1^NM(Zm*L<1|I!eIQ
z80)$4s&Mt|bhO?f%8IPgay2a-pnk<&Q$}T^WDZY|IN{RwiK`J<t-+Fh>Q_{EU-wxK
zWtz-q*&+l~+D@j$lVk=?^py42Y`{&M)Wv-M@A+Sn25%wV#kmJpXsouo)5Cb!tHE8%
zx=|%lP9KiQH4j;s2FRadO0KWk^%2!t>Qki)zdh!PA$s^g{=$5g+Mx^~O{>RFSKpyJ
z%Uw8d-%x2uW#QbkO+6r9TI2QWqAFBoLkKUzJ-`%g1*uRYyLr1fvTKF998_DTfj~b=
z|D5?0_Q{0X$i4bi&6Qd`DVDLPzV=*2Ct;@MiuN62Gtq^$`<>VjCqvW^ojA6dHf;Yd
z0UBS?@dMtv^77h#8&22bbJW~>$^ZwZ*-Tma=q_5G&yb1Gh92P$E5dQ-5p~jvL@#s}
ze|AU8Pd&Tv{Mo{7;*`e0ZCc_Z!c8+IU`5P8d55~pg^Wa4bJbFrRe1T?s$P>H;UJDj
zk<Pd>3BLH-)(n~<jDIp1Arg$ho=}P`A7o$>e#~EXw|q)!pdfvM*n@%6bH>-6-M3oG
z%_{Sa`xzHJ&n@JTV?*T58H<wwDwA_6<1lv4++3jsl<Qn=Mg~^Bqwb}mqpezH@?&OF
zbb`1Tn))-;Y(A}`^{4MeYvU+&9gkR(qD<P|W0A~;(ofnxDW209tEn*w^?jom-A)7#
zu2;V}kMj$0crsnM=GV^^Zmd;bJDJr=@a}#`^{J1o#?W&IYKf>uKXs~bE-z50GcM4;
zBN#CH{_3OiiOH9psW4lHY93t))x^PFoJf)ZeX@f_De6)%-W#sRC<?k5=tC8aN$a3D
zdpBOxUH@hu`e1fHO~mqsxJPsLa*H#^Va+an(EI5cDJ6n0ZUK*@w9SUO%?Ur$_@z7B
zOve3y<4Za3!~xP-)<!3^$PJP|(<k%k`fxvB+7u3b@2~qxmo6>X_j!5&;iklFC?uX`
z>Q33)-FNh0Qq$<P2VeI_kP|;TSb}&#mv0xjQXU?URbQ<+M&NG$iecLlqg#LDKf-0{
zNOC05zE>8k(N->Q_MAyMmOsCis^B_9k1lciasP-bY1Hp2RjB_kXDAFK6=c{iRCI{-
zJQ>>nr(<U@d21kVN+9O6L@)HFbL7@>CR2#o7sB&$8ku-?aeqVd@?&}4&$i#*@s)<Y
zt4l^&Yc&*MH1|XFQ*I46e4qGw`jlssvYEwTx4JNRU4Q@em#5udXA+)2_Sq+Whq1Zf
zBvaTf^=uBS(z^UOrlGi)N^tp3oq=HGYX3IbOd^f!z%vR4%0Sa>Pd-+zaQw9|ALV_=
z`$a|=l(0=YpABH^YbxP>2lK&jb5<C>PSPCkM3`#Qm|@YVXmb<n_V!<N7fFd4iFA<e
zw(oSwWbmTil=4?ULiLx(Q$@4WycMSHO{5oTe|ua^kVDdTEHRY!Ec-&hIk0Y_rF%yf
zv5f<hJkI|RuXHgnFt|K$b)n$!0^zS2(}tzUSw{$#1_;U&5AK4DKzLqe6blAbn^CoM
zgg6c1vY5MH2e5-xq=>5dtOyBnxvE5=?+j5Swvh&Cx*+$o#npZV5oOlPWG+5Ly6Cg=
zDDq96KGk71QZW>DZ{p}z;o^I8ALENC(}(XJ!`B!n?FiHi8PyC``^q{2kK=@ome9|0
z&!&%ul^F*#qah6{gA55x`gPPsZ%2$&Rk$yaDz*f<*^f!3aO8NQY)AMW>uUG;kaER6
ztH*=48RPN~qOCMjYd<KG4+}F}7W2fbxD#ohOJFv`$N(;U-phsvWmJCTQ*v@D6D?(`
zPfE(V(wfSwmb}n8oSNDjoEC%)c{)(G58{*w&s6P(!YxOltWf^O{2Q=wq*BR@@ens}
z3P#v`5Zt3ux(t2frD4`Ow!<J+ZYyE=slVn11m!JKE~V-l{|wpR6Sj^AhIUu21BpXo
z4}+oGadJ}kv`U49Ixk2hDK)OWf5bMl+U&WFXHz9D#o{?4xOA)*=LN==C(bHeRrOg$
zSK{j+NYDaG_bH-sqqF>A>~u)e^#ZAMPSV<1H^U%7fmKc)4gFj_9>CC@oX}|oetbF6
zzAdX_U<mIFh8Ef*vhuhB?zL3QL7!!-X-vJSv=vpEAFX>USacv*I;A^3Tu?{Js@kJd
z!3d#r$0~Om;XFcA*D2J1i<|hMYfjJ`P!up<RYsdu>kaYCQQzjKof;^O;o-zAZB08<
za5&`Zly){Kq*kjZpfJW-`B<^)v=G06$`S~(Lt1aIRTuNy7zN`7)APw)-TZfkGgVx=
zVKP%lGn^f+lFK-hZ|`(7fu0^kIN2#qd6ioKce!$*CWvy&=eN2bVuPBkDdk5ErRy`Z
zy|iS}kiFoESMd`FE8Y6<>Sw%AoErvMpfsH)SPhzLrJxihtBK*aeXjA6r<CFG0b*D}
zh72Z#6-Ij7Q#A@k6%;X0;4!=$B+-!~p&-kf+$uswC_Ec5!ho$0do^iqp<gAW->>`<
zxy)`nDKI9760K2nZIz7#NIte2P%=PLKh@8?6(r~cN+=9O<rgaZXEDfrb{QT0>zd2^
zuIz?{IcUZhlg>28TLC0fDzYX?q-R*FWbmj{3u_ja-2p0QUR0ulLt8_M6NLYT5|mw6
zsgby-RiDl<KfZfDs_6+4Gh{6_11a-EW2=#xOpx1W$d%%S!0TbwPOR=(nO(X0NYEnF
z6VcLT$s76lhr?nJB2%5aM&)scS}oRlWW~7rkSF1Bgb{{T206QIlclG9dGJc0ZER+k
zQQIAdK+V|g*Xtq!V<f2kPE4HqK<pGMQxyAE(Ru_Holcb)kDT=jhr2bNArKDwqE{9J
zIbuZbDT%zBYAaw%L9;lYonXbeurPO1q>u^w+3gsI<w$okOg#hSE{vy5+w>+CL-Y||
z8&CMt@VSysvj(A&qV-6uVo`CiTWBHm>4}$*d3YXL=a|wPVpU-|th~CZHXpgQoJ_pJ
zO@6Cc7e(M?j1~UG8S61yzfK&eJn(cWVwQ@JDQ+tAai|U`sq4veMg+D?jw$$d6R~9}
za2v_RIOGpRW@GPe0SnGF1rK9mh2jJpNqpJc@iUenROVYxN?eUnO%Bj_art3pu`a5p
zj1ZQ{1MFWzkfetRGL#^^aa{Ko3rKgV);Q!m9d?enMqIYklz3dxSxM1>RTmchP_elD
z2dJa}TM&Y<u}kf(3H1^@jtp(pKr2<1orz6%+ejz_!xyOqJr|42reCpBF7SyP;)jeR
zt|^kei*N+JA<lP;TG{++8Oj^Csz&(sM6Gpl;^laW^*QpTe2##lRWw`N!8AQms9-H;
zl}asliZ|{CI;TY0AWa-(B*aksjInjrviaA0QFcot0BaS(_vp;zU5SgHGh>Xv4{nl6
zOYG~3=?dT<_+lJx^O#a42TU9SeHMWaZr8y=1FZ%WZAw<vN-L~n)L`}a?q@}M+mu8^
z>9i7*fpLo?#ne91%z?5hlX?_pE3u(ED3+~^KrVbj-S|KumEe5ko5GY~O;P=e)A=#d
z4WJE0=_(uHRHn@6Cohzif5{%4Z;+FG7+4v@?D0Q~@Ry3Kiln_o7^Va+HF!zoy3rb`
z-kh=;wvG(2#WzE2lo)5ac`%6Kb^id{s^Zy}wL*nDm7v-d@8`xj9Z9frtg~{BQPmvq
zyas`K_92|83yOk%P=1&klw6%qNgxj2zrVE!uPOxf&VeX2J1?L|eMRYwMY~*sKfaX!
zio57jYaBlL>aZRjL7PLu3P3CXacK3&S5$%;2qXk5;ifuGQd$feZ=y^%AjHDS?aS>Q
zRU9AE%Gl-ZuW;r2t{}NT539vC#Os!C#oV(XLE!_j({VS?YYf<<<4j+FR-`Mq;bhe+
zv_fP41=%#EdULBO(UL46{INlti5V6qX*RCJ3`A$vU%&;$I{=qUqpshFt4(hiL?dS-
zm29DD3Q&An0(U6_1Z2ilt%$Fv3qgAq3&7$xP>N+v!JWna(bI``Md2#-^R4$((mLsL
zIZ>PO@WTkwxMGT2$7%-N+u#w9aqSpL#VFFgsuT*ZP^XE1s$ancqBZERSAgOifW2*U
zE^*O0w_<W7ph!G?4_f2{Gcaj$B(*<;H5`|G5YlD?y|jLW>~zu}-+4;%swftPyZmsA
z754)H%IQ1U=m0!+6UA#5V|D$-^0u&61DN*VXP!s6;OG$rDBdYJmm(Tz7QUbkEi!Rj
zDR5aWfbM;Nzp74#!}}TYcJJE|!xV{%<9lY;4-Mab^0`LPrF~O#-E0uE>V7>tn0M^r
zy3?>XY#9!wu>C3kYG9@-ZF4=CVeXTKdY0T(C*M1`>2`7@<T?1oPj2+Ybv`I2?zDOP
z^tl^ZMCPJSB-VxtdXSN7#0`t(K;<qx(EolCWG#EtE$Bon4rbHF=1w4Zohz|H7BRGP
zEuf8DFACgAG45n5@K!GTG*GNSvjy<7ur(ZiW(L>G;KS{k9&{Se>Uv~mEH0ZCp>(F0
zC-i_0;{ijWAUR3bi$<_ylCY~Z4Jl6!4d}%a632BX^gQ9JvnOxgQIT0BlxW05GiH3$
z6AKLyrp)y8$HffddGYFhvoce+3&4A=(1|@8Ii}_%)95AJ=Oy>j>zeZ`?0YF<yp%}2
z5iH)yg5D~M-m3cEYInTV-Mlrzyfu@(wF<qp8@+Y<ymeoC>%I5Bx$muy@irj!F=X*E
z67(@v^fA%*F}>q+%gyI@n2%Yqk9nbwMWc^ppO4i`AM5u%Hv2wzFg~`VzIH6WcLja#
zDf-&$`#Rk5z3=AxAk5b>+4o_guT!J%qds5fm%c9VeO>o`-7voHq<$VOex8DUUW$I+
z`hGrl{CwT~{KEYFll=k;{Q?{Pg8KY|U;2f-_Y2+k3&Z$@lln)n_(ux*M=AP8>-)#t
z@sD-$M~3-h;*$Lz7y6?b{p0)m6JGi!zV}bs_fN+7qe%l&SOQW71JV=&()9x}?gV7I
z1!RQ<WG4sY6b4+kk)QMh<h=~Ye;-h=A5e%1C?X9kW(h123@lX)EYlAxzY|#D7FZb;
zSd|=DT^Lx?7+BjESobop{(a!}cxfXhu!%INnI))2FzBgbP^*4W+nu0xx1f%&pw8r=
zuEL=1#-N_Qpx&23&)x?;-w(RJE!0mMJirn>C>T7X7(A>WJaQ*^)Gc@{EO<OQ_(fsx
zL}Tz|U+~n+;OY0lGyB0WF~PH>A#*Gt^MWA@iXn^oA+PR)ymkv&3JY0I4p}J-S#1n?
z(--pgWe8^NeaO50koTC7b<)rcme3D^p&u1PKk0{lz7x9X7WySDbSpV@yD)U8G4yL+
z=<dtVZ|_6*_CxnEp$DX4hb&=7f?>ysVc+$`PVR*La0~kx7IvB(c2*d6-WYb#7k2qF
z?AQCStNkzxJ_HLJ|9|%WlAgO;hd0L2tQx6&50BU;(s^#TIBy@ZPi2cdn6G<y%rTQE
z<9D>Xeatyqq>LozclypXU#6WU;<EFdd$G!>(x~3)gy(ggMTh6NofF>Wrn_UQ{EvR{
zt+qNXwYYr!!T+|?^UHkwqn`rrdINtRef#=TaJ@egpF+SHb1L*<7)2xMx_c`8X*`wF
zxWV~MWOFK4(ra(`Omu6uL?cbW<y>rMvF7$u*Kg<IyUQ&P78+bGB=+8R`yKCnyO2Cs
zA4F0Jx?V~heVWJ;{omfd(e;<ikKNS{ul>DWvZn_h#?l1cuH>%UkV{Y9_OIkGPmjJV
zG`e9Ft}f4i9`EmC6vMHgQm_bIdVg3X0Z%6^idg0p7EPut1&^V!@c-@oJK;#Cz*Be}
z93{p2m_65@6~$fC$r{h!eaf03JRx->QGC_^Mw0YS=Z$3f^V1vX>+2$HDQffqY^hp2
zU2JK3GG}b*hT78X8KxEi?3w0HUF=!bftWM)Y&(=RM~*{o07ve_nl6qfF5PDw|9JlZ
z&VqoQF3!S`^E1w(2&fEKaSVMRSIJ|ZZm!ZqnRBkP6m1#q@(hbW?us0zZtlwbz;o`Z
zVw4O|b$M<ePfc}AH&1PS_c>2p^Mnj<ecNgvZ$sBkH*e#!^K;&&0jMlr^9X$qU&{-g
z9=@m3G8cTUbK0`}ZLchX_}f>UdiXom0x$SGH&C(yU7vG<1iH6tdIWmDbzcbd9!|&#
zK08?r5`2F4xAzz9$0C#y8o*@;78)er?G+j#mc0}jCez{Dy#Bl&XO!;vpdTB**W_@7
z{@zsc7=_=X=5g*vm?;l!uG%`0Nsc>T`zOU8?J8-By>S+u5z(3KpF!N4Qqoi+d?q@l
zAlcJDrzbc|wxCD&t9Aax4qw}>`~z?C*RqeS#hc-N{NHit9?Sojafp)VTQ$40*uMA(
zpRnT%<s4JT+h+wKeybGUrv0X!zU1>Rg$FSiZp1EKo~*a3*Pkwu%9EVUm`L8_{j8^$
zem0l2;3W1%QxY7wCC>Rxx~`mX4ZVXXC3*CrK7Ohb(L7lo{H?Jx@M4DW(DmtF-Oa0>
z@k|CWxkEYzmfq?x&OQ(28BRf|;|c|gr}9#*)vs!NE@m*dOO_S-=RHZX=N~?L3Gy5{
z%0^5nUhzfzIKpnj2(~g{E^(5`ut4s83$HbJwzXWSzs=sc+?15qA&w50oh-Z>#R?At
z^+zD?6@lb&JFZ7GSs<5Va>`g8QLX%tr|x4{$_J#T=x|p$N~+aJ+XT|Rmk_@j@U`&+
zLafUnMtFD(=jx9^gJL}hSHc|t3pvD)8x;uxDS^NS1Kq@iQTIeY;Gd0kun*P~Fdcw#
zO(RG_*+Y!_;PA~F$B|}_*(ivZ26>Dl(9N{*Sj2xo5nKd??j&E&X4;M}c8<0;Z-hhY
zkl16RYIQkwEEM1|iicHw9IWBq{S<7Kpq~oA&hC+V@@c*~;tc0dCT9^7yIx+leUWRI
zY8>uNkB>P?(X6vONOttXQBa0~j7!K9M8-?6oC5}KxkAHV)E0sg0tP_n^(e;EG0_0c
zfl_!{b{bFN53!2p5w;XA4pF$+g>=(l{;VL4Hx=T%8G0!W$*$KzOzQj3$vcC_pxR*@
z8PSu8*RPCV7j-$rc%X3qP=JMzwtwzC=cOk1vF|J0%{AtAMX<UjD#enk;`L+U_iB_N
zrdbEjB|eD3o1`?mg=ybY14!3S1mXB|<Io<=msT&9rC4x&1wFt?HJYo)?EdoYW+hNG
zakEOn^vj7v)?(@1n&O<Gt-}I*(+UMtc}^|2a-Ftxoe`B0CZX!Rf8}h0Hp-7mnAcpA
z-K?jhO`tyioQHp!y1ThM!^nb(;WpfJso`^5Lz-vJVg(ObKi+I(5o^t2!UWl{gkE#(
z$)b(v>)Q#c5)Nr0&J|Yb5(CQL3WbN9Yn1SwCWYue<-PGu6&o7_KLdkE{~NZ!!^fv%
zf>E>bT=z8@CA9v|YRYPg%PYg-p3FK<>>8#wbe*rWn%u@toEHANtZ)lB+>I6P4~Of)
zbuHj-x;k)69k|=|%NqVyR#RJBM_0!}$ISfitfrN@uC<%4wV#=_qpqvJm7|k|tDi+c
z=)Y$*z5M;)@V|`>-0JcF6x6&CQ1vIMStsJ$Ego1c6xw<%ZFF5TbOWAPyGEKjr&<Ig
z{7YGrJ)&1MWkxn{UA}zBBI^HrU(+J<Z*PNWIQx%@O_#~j|NkU5|C6_A{Fkie|D(5A
z&8#0wuUyRjx2$ILyQ{y-nz{4Gu^U$vLo0v9HCyM`{=bTA{-bUdXC~)o=3mcG{G)D8
z{xz=oTiyIyT=Q>iv-#=t*YWOO*ycK}`5W8dLl`xiiUy(}{~O!b{Lk3t>3_yH_p={0
zUt=5kNh)}bxWnZ!P33xH*b@bgi?QnUf5kRl6N-A25BsmN&8Nh_u+8CApZouTZHE8G
zHhB+Sx}w|*{=zoy|Bh{1I+60wg@461_>ilm#I0GoT@qQ($Nv%A@WgQc8@BPGWi|hw
zuuZjL_J6=Ov&4U}%^jhCuub{yf5SGdz-IElV;d73yEnAMAnyN$Z6diEd;ee?seiDI
z-Q0xKN6pgT*rq7Ppn>QwYy;w|qdfV~*haATzpzb_T3%z(zhIkdfP={SFKlCg60jZo
z3)|TLcWh%Z!P{KN`WxGTpt;e1W1B(3YizT9jcsIpV;cjMLDe5@)A=vh2Byt7r1^hf
z8$i&Ej`FK=^VRZ-M=Db~NEk_V>!mx6*~3xAN;0-4D|}AfuW%Bw;%jVU{|~n5Fv%8D
zL__T9q;U24{>C<>8gl4K?1y>o^3`l$JULm#-`Ga~A8dp38{3FFPkBg)8nHFi<H(sd
zU1OVsYi#pN2M~>ZjN|J7lA+}F%cg@7jU7!*q4_xW-;S4myDVJ;nR;XL+h5~&Odl>0
zcTFEE9!=Tpyg^dj*HZTOvU<5js3y?$_Vj+k*(TBUSF|;bVAhZOrKGdJu}%6v*k*K<
z{=PHqroPNa@a=48=x=PZy=6noagA*ZNqznc+e|Ac{f%vm*?JOihS5Jau3$z0X;g&U
zxH3WTo#i9sFS{WJ$k|QWgFy=QUJv{Y&uqEvUN19N25F`N@6zXCQ$viOtDY!ADBI_W
zhe7WrnOE7W&}}cOh>!ysUz^4RB4&$%k99O;vO8oQzTKzTmeobqMCVabZ-x`pG2>8p
z#tco}@JD*6BW%%f@!Xp*7BQj&jQTht8un7?2t+|f_>p)<`tb41?~L1f9_?6h{BY{s
z86_i0kO!GMb39BFOM9-(9bIqB!<!$$r$Xy|x~<)|Y^_W*n=q*RF_Bb>*3KqE5oL?M
zmE5^N)2*H?QDvy^e2HWjq16~PK*P<`!%1o?QHK2Cj?pV`Kv$>9fhI;U+=IyXA}Ih}
z_7uxZ(_*02C;UA`SyFV@4aAWdtpa@`%>G7#XwCI14`pmR9b%QbxaG;s*c6zGL1A?3
z7p1lIMtaaA4r<bX<X2>)45j4bkneFBJS1fVF~!Ko5Ny1(XEU%KkI|p~<7||fjm%?=
znj(Zxry~7RBsE#%uv`r>w61K!0(|!%QUo_{My00}z0)POYe~@;X8z8?8(pHxiMqip
z677sdwRVGy`~_ACu>eXX?g|>E&TC{$AkdAYY_<G2iV~E$QMIac7c^)oV_$Ryf+>T)
zCx_-;uf6}W(Gg7@fu`#t@tX(3@rq`j!iIA(*>D8v@nY0gk*fumUDtsJ$fd6+FfXNg
z4e=Zfi%Vu5wBO*UI3f*WjSeinR{_@3%1&kegkqGpKRFEta88pVM;@gj(1sGKRB1w4
zO5-N4wP`z;!43D;J{d)6(>lI0%_YB4tqdV-mi@NLtnbCmC#d=d+fbXv(X5pkb{$P*
z4DnSPtycn}m{&fLjVFJwjdb^KY!gQ#iUMfEfq$@##-?w_fP5TQs1EfKd9>{F#V5+D
zD#_UC`ZaiDdbiB0tYgB7+Og^OloNFHYhm7S?-LDsiqzM!@FXFXUz}($@>(r&b+WQI
zTMkbpnL1T}!k%~5EA&;qh-N!wDOe|im`}0=tY>vy@M{KZ@viOvvg;>|u;rjTT8EI9
zb>S;ONQ*sJse8=idYV;KqWhWa0K!JtbAiBbmh+X%V(=!uYFukdi|Dw~VH_=`m@2N>
z9}3ZlX^s#}0;^}NET6_zUww_EIl>#<iWFiQJx~-nw1|@^>oPYLvFd$@j#&MUd3wwr
zr=0Q@ectkFil+Qqn#P07@^yqu_Vl3=l=1P+&-@KIjsp2q%I!PP>w>YLd#TdZKRAk|
z3yCU57Lk=WBE@7nD?Bu5TFJi9JUL$sTOk%VBP+k9@q(&0PEERL%#`sWKDX-8Jc_d(
z;N)6Xu&8KKt~jEy#eAG6j9~Y?kfD9TU*>PZk<dh;yi4L52*TYw(MEJSMpMGvX4(Zy
zzDQ-)wUDhq4J8o4@|#FqhhAv2sNH%9dRuj+8)v<`6i&BgsbSd<CL_+lH`3scEc2%n
z;OI_%dM|qU35=JcAzRwnD4Zs58XqCmgq5_D6m%($bg?4IaCr1~$G?{u(=z!yO_mn^
z)#vTGn%K&q^?-tiz09P7CQ~V~*Uj6x@8@g+l!M<MPmcOXo;he{J(W3@fAgJNtxqJI
zg>^rSE&p>QZeSoW&bwT%-Zq)5v5$-*RPUyL><~T-Or4y5WoNMl??HSt4NW+4{dl@d
zY1pGxdVcu)B1EDmMMGLu^K_6xA)p^DTU4EJ#PL{XfmFKm1-`ZUV*ih5lMd<F(wQ<x
z%XWBm@lUbRdY4}xy5P6xSjRnGfmtTVG08x{)1zB~o)7Y$%NC$!BZ7k(N!JHXgy_Cf
zv8;=b-tjK(nb@N^YAPjF|DbE}eCA2|`rWj(2&r44D60A3mvyHsJ(oS0)3Ls+wYmy8
z(P>L7=bg*6FZ7A_7lF<z$u5I=Z8J^QA)DI@dS6991vvPINiMlRr}0f~3bW1v+=|r_
zo2^Ki!|_YPnwK<sgxyK8i1;KT5;eSrUI&$ak-bvAjZyMgqSi~e?SzYUbFG<0!80IA
z*kx=WV(~Q_Z3dZrcu2%(BuRv5>WQq@Curd{vr!6FHT%PCPUOF2sUM9+H@@<B6r*xn
ziV&c28Pf<LstP!)h$%(7VZ(#ymwf{qVlMn*?m#S0+G5Pd!$>qDqUMN;J}`KWL#gJY
zk6uU1Wje$dno_n<-r97tF$*iX?M9vYTiSSXAsf)v<m7&Y7(-vm4ft?u++$7326so(
zsC$_naT!|-@s3_b>ynI7B=mQqEBsOLh-hf@qv0_Cy%ow_ek+B`jG8S353W067eCtZ
zz~3zX%~EWXzsr?y#8F0oMS5(fUqZiW>?2OkMB||7W&c7>2j=YC(JB7e8+S;SWA<Vn
zjdIaE{**xdG&*THVqpuV=lS4+KkW|#wcO4m#;4KO5v_6|qU|OG!ADY_7}Vu*vb!Yh
zeNEu<gEMcM-#acAu~X7njhOGqgnoaRZCseMzxfAS7hJ6HCfeADE%Y2$Y)4$|<Y_oe
z`uc*Y&V;ysY*uP4k|gXDJ%$w}>Uew3{uX|*L9eM7Atnbn{29%h6WKbVep#BT%&qJ=
zmmu;OEmUnra7Ow?C|!j+{HBy%+{bif^Ym*5A$UO0Z6L|Em29(}Tw~^CVNdtPo7rbP
ztyv0W{W>W{BOd>8m_;kY&(}Z+8T!d-Jbpw(!crPtm%n3mO87$=<1fJU&%h|*EF#0K
zX(NrbTjWQ+>DmN20U2pHLI#E!nY75859oYFHi1WvS?)GbaxF{q|BQPz&gLkFW{tR4
zZ2sHZ_@8F9Z2Q^e06N#+W*`fD&MGJ;bN7Di=T46>f-HOy>&h`VHgf<LmHpyJCJt>v
z_;S|E>L(9qv!bvP@tVCy&McSD3@5=pi!aEMG1Bp==8@pJ2WnYQ3O`!eb-2IFl%#9B
zt96!K`9e)t3-DUXFz2v6dPt!onfsKkDCG7N$ee@23zO)S@CxjQLobvaTN#cd4NRAd
z2vcrZSHy$IV)oBSf7qsA3tK*;%l?Lp*?5t{l4IKbDi!zI+hmy1pt5j_U2)*_#{}db
zR}w$d<r5rgI2)!BSV$4k`=*-%yRq5!IQiMP3M+FmdxXn+vwgu^zzqOGiWPw!Sgx*F
zL|B71&Ui>{XE~FD1aI7n83hop(T1xjIV0sn1FkR545iP5cC||0ccwfHEMZ64EFAiH
zWtonAEW_TYI5E+nT_uwY4Dnb+;SU(&V^$N;9e^#p3kH__Ce{Y}DqqW@;0Ij}?wkY0
zJ)Ffb8|qQbgpep&tx!ak*PMG;SOBE4t_3nNU^`8W5{aD?J8wn&PqE^8^J3Y}d*bII
zZZ-OSBYsd}Kf9XP4Ra65nmQj8+N}e{A!^g#ZR2CC{{goY``X)hR4ry#4ZZ+cEmBqj
z?4XF+cAo0QK)_ktrOU*Wpc%wrl1ucsl>B}e(FPV1SR~yE*bmGY7NHX9EJ0@G)CM;3
zzpg3zBs<G_cRdTZ(MBvuTXK9GDDI*(kgkm#sP*P4!LiLFjR$U@n9_OJJdOcEBr0F!
zRBEoGI9BUkn2Ey(6GcGEA2GNs2NuAMul9qcv@$+`)<NW2ZjcTNy-uG&w4p}+sYzM~
zAd_u&_+f*WrbB6>yAkezdmwQ@otNj-s8Fp#FbDb?Zr(GOe=EMt!ctt)p9b%%vPOK9
z`=qq6Z^j*%c)kz7$|Z_BCke*IqFrgGx-i776Mtj_tPIpszqI(R*6p@Y*0^&LqpdL@
zV)`1uRh=~408lZw_d|&A1^rXs)fV21I^ed#U(#mhCu!xZd*WBp<R{&!I$f7btanU0
zi^~+KHM>c)3og!puA&weCy_uMAo$U}Fw6Y*b=HlaN|%crBe=@bwR*LanLlf))fhUz
znA83Y|BY=@F|uXt4jJq%e`6a{6HwQpaLhHf>DOzf`;Bej9Z6MXfQ>2bwgJi2HMW^E
zRKGB3Pb2wcpm+kqYCi4~czm-&N|h~LYlH%ApCPAZqNtnF8#&%G$<sglqDPAZh2N?g
zElhCxo)9UYGFhD@MFJqsrh2-?3X*6w*y@Ss1W14UBW=EFV(IFU9oQa6k$i%o^!}1I
z0}8Pl#LlB_ySdMv5vq!hklyS?YOM~jse0+;A$a9FX*m^-MM?L8(InG8Co2mQ-lR)3
zabpW$2aL8JJ;e?1G!vyt<OYcQ^{%mvT9=t4g)1SX=oQ@qJJ=s=b0Qg;I4GqcM&@^o
zZJZNg^VFmBYKp!#gAJkH!Fu#f0|Y6*vCR;db?wENVk?=m7h_OedZSzpU5YK<ZNQ6B
z)OV`FERIe^s9iWp8tTzYaD#N8S3SV1rb#ZodH01e#YDcbQnX!0Q0;gOVu~<DL*7K5
zsBQFZ?;mVa4DG_!rfDuIpZ$$(nu|(sB5<39NIF0M!8QlKu}!@J3fzqA@ej87c#Un2
z^x`K0jRW@1D1Op(+?n2&zor0;F4<|_OPpfd=xc0qfJ;{Y8{2GKK|dOhY{G~W+&Rtv
z!8SbOS!QPhg$B?<3|ddnV+QXKRCX|Xjcwc(0o(&@ym&zHU;)lg`JuPu8rx9tUjs|%
zkkb5;?H_DYgj)!MRsj%Z3((vD1KWt`Exaq?Eoy?+qUVS_UYS38#mu8_&b?3w`!8%$
zGP#5uFdHua2ip*PQbkrH>+hpNmXm({#y0R~(2``GyUxm@<4WqYmAti;JYo@|k1j+y
z%SGSjO24gC<*(N8uSCRj;R&lRbl26cuI4<NX@0iang6DHZCVa3xAn)^sML=>bD`}c
z7CiB4>v{HeYV9qylN8dJ^vlQPS$^q-Z*Q0L*H*2gb^4(P7(V6AA}BG{%G$5BZQ$L<
zXKOpp-tDfv+xx!=+q@$uf<cD9!MJR%nGJtXGl<bZz^k4nC3Hh5Whs6SuqEFqA>nAY
zg{nWhKE?-ZQno_|qOOsQt!>9EBEs!N80jBlQw;lKY&LfI4k;588Cd0aMg=%NUeeUs
zkkemolQ#b`HYq#dqX9W^rN)8@Mio+c8;o6&;?<he+QF7p#5aNFv?^2MnQY?cBn-Jk
zyuUVgA%~=kFyt_d_*1y)ZZFlMf?C!TjbJ>5n1SSxEmRPV&FGF@BJ{{&_uJtf`N%Va
z1T=PhGsylEYuFDOEEe*{>}ziNxKW6xWVtl}i;3;<+tD?!nav^a=)Ec`yu3NGfH9eD
zYd#d8Gx@kD%0WR==gPp9Or9r3{Q5O+j7Lj|-SG>osxILU!U51*vEBEGWBB1Qw;(X&
z)bsi|#jhFQb3B9QKKU2%A?AFYW=1BHJLFzpNY@IitcQ+*4o{d4LAA4cLU?ErG8}8;
zQZ{l{4v!z)ZYyDIzkyAe!Qa5<MCK2$;aAs1v*V_4S|737iEuc0av)MT9;Ln}Gz9&Z
zv9V1dY{D)20F7DSrnFYLSO$8O(h4!$%5WZsyBEc*+az;q$^*ZRO=Qt;WAo&Xv60^a
zfbU1Yjm?L%Yh#n@3cB-$*f2AlmtyXmZ{GcH#%7U}Y)OA-wUBJ|kFnWK%pgY;Vm-`j
z-{SU&yP!A3UMB*Y4IF3<+{3Xr$cU)<`lHvC<49FU=sEZ^c@Y4N-U=9ud=j?76%C`q
z9v&rUfC=~?Vk@h}FgOSd8#!+3<w^VOeOg)gqF;oFAz}Z6Z5S}0x6i)5SCk=KivBJw
zo;L*^EO7mN{=e8etEec$_FoTO1I*A3gLFwZICMC`kkTnBozg=O-AH#z2+}D?jdV9k
zi6EdLA}BGN@4xq2d#!!E55Lp*<ayV7@Z9h7-1qgnW(#ohK0SB|JK<QaHm=!Dh+gV2
zjL@NfXmI5sXf|rDNG{mQNq&BCCCA-*%@fC2@WH%uTlBW`^OJI0^s$DiXRKA<L!t9h
z;NN!+Gg9<hqr4uoL$A?X3T+AcEAr#XNa0NMbLzV7kqD2DeivF1Q;%2)R_#0A3z(qe
zg|<GjLR{GzEvs<gHYf6VN7ib5fV;wTNbhfl_Ln>svBhGUV)y(&Mi22#DWa{&<Ud{t
zE#t%;p}ao5`~5&+X#L(p%S*`52k>KOw7Q(Lt!T;YtuP^P+qoi8WXV&Bgg8Hqlg9eV
zyV8{)9xupV@g8T97s{rF_dN?)VgvTZt_zdTMBPv3aIVbbk;tW9wPuRImlvarLBpSD
znv9gad0~71;580}zj3h|oc0NsLwd?N<xAL-gt*On_VoH1@4!E*g*!*^rfZg_>QLba
zHh44PT|zAFLK>Bt9CUh{E~CEZK)jFW-^Kr))Cu(LeVc9)$g5N4z*C81_*(qEwUj5Z
zmyDObbL6t*nQPkf<`{>UXS14yeWHsk-h^$Rd<nmPhv%`iMd2xQnl|=bhLJu06tl6V
zS?v4ym?ypP_1Z;ApzHScNt+k!9i>dg*^Y%?m7x>#QHp$?tuek|+j%uN{yCDBjQrwE
zA=%FkunanB5BSU-@OFiT#qT>c8&i=<;uE`dt*a8PsmWJhWGudzRTx?n)!khkL`cs^
z%u|}f<{@0V7+(FUs}xWD_FHz%+$DEYFmADi4U>LEGeYk>JsDSvX%lQRO-%rq2s8YQ
zbWDd}2Jx0be%bSSXp=YR{A<`<G)3p-=dK*b4A!PHy$L99{7?b-LwFJyZR}95b>FA?
zJ{%>6#IT<mi2vFokx?c;Entiv-x~OPzdK68E!nM;DAMdlUPD*{(|e+Ypo^xW+izL_
z-aDIf#$^7vW)3z#G}%G!h4Ew-jIF(8ifuL0X4q&t>x^rBuS-yl$%Iz>5HoXwS6Ika
zbH_c213ObFW@EmvJji?z7I=8E%urJ|$W;2J5RnC1EwEL0Yl@OcPbw%t_U3($;WA>K
zk+CFcC(k215@isiUMQ~r=0irdTtJ9V8Jx$%KEUbK!pZ&oR!weDn0ycA`~+Ln`ev`K
zI;L-z`#N_RMmX4Ntf69yo34k(b&O1^L1O7jX{52G+4j`1>~YKlB@Bt;lO%>ZbF2p?
zq>6igC>)%km6#t&>7wp39P;$K5Wy$re3D60?FM1-B`Rm5u93!O_jxwIeM7jHg}LYP
zMAcwdmExLIV>+6ulhw+i18*p~>nFD^-#)Au^+f!zDMr@o4OKyan(U!&YOp!}$XmRw
zV>eHq5wb)%)h;ln>?jFd=D7Y^9QpRP`;&X`lxH*Eq^|>~7-c686aiy0g@dIpu7(Ll
zk@#Q&O<_(u19qLaPHN>`Kf)!_*~?w>GR*|A{Sk!(C~Qu3tmyAABq2K&zL>qtR4V3#
zeeqmU-EV^i4^8PIQ_mdGCi0fCU%7`1HN;x$c!*W?)0WH`$|JkAiYUlgJ(Biys*Ne3
z<!P_jqLZJU;<x_ZWy_Al)?<@dhppkmqZZ9MUu<xfYSHO&j_uniG5&)iT~MiMTP#<l
zoeC`mQJjy*@T88&-h#QY1Q*^TEI(F=9S1;MdYF9yVXIlF9$&g)0M}uYTr8!r&V16Z
z!A2TAr++q513F$(XwfUNvgFMe10IV6+Rm3Me?v;waj5e<O!p{YTZ@l42-~wtrOmKq
zSTX`6pWsRrxl*z||4QKYIYvv1_-m1PcJ9a5(!(`0BH6iXpKdp3<cfV2=$oUzkAOJI
zg-b;^{gRyQ7;lZysJ)lv66@3&TG6`E#45rs{q`B~Oc$oUPv(Q(ua*DHfB(jTJp0vw
zM&!p0gK82LFU;&&j^mcJ^<R~M4hwZLv7Sr=j_g|RPv2E5l{cU5EphH)e$_7gwbH6h
z#Yz~=596jcC^|hZVERq&BJ_qX%_zP~T1vqDjC<7@10?=W<KWqirW%yzv_odS>V!vn
zri7w{B}3*X%y*(&iLNrgCD}ECIK=u;W3|gGIoF#re!chOHFN5nKmb-C|0fk=j(6s$
zRe}1Q8E+#y@r+_^ZzJ<mR%%wMNBxcYsjas;7EF8oJk}&w<&^MhEaLR1BJGwnw$uVA
zQ|!~2_(;X3Lv&?+TYGL4sVe-$mR(GBCLa5f%gPVwb(U;KXk=|6IqT1B?&)mXpv`}b
z468S>3Bt%|n3>Hj*`%$;%+s)4O^3YF^BR#)w0z(@M<||Yc_l->KL70!amOli+E89u
z-Afxy`LCV7lRaDvLdZXXA5;JN)FaKi$VX|jXHPzU5+JX5?=wJETBdd7jn(sY`%2m7
zqZsnIbTYG}wtKjYKS96guamGDADM5=dl#Hj3q~v21sz&(9rqrP8CsvSd#vQ(GjCS+
z1dqX!1uNcw@@*l*^u>*&OU038aSE%Yp_QD}Wa-uEK0?#am(>z_P;(HLQ~U~YfC|Gf
zE9F&JBnZuoFWB(BZ_VCLGDa@mTTG02HO_-=;?+Z3?F+4My1ZTxU1ODTxq$@TK~;Og
zUQzA0%1jyPg9C>HznE)A)Wwfz`+cK)-xNi9*%Rf+g@TDjyuXHac=2jZBLp^C_s>f>
zUqlIUK4oF=RR680!fAd({DZ>Ztyo#D)LdNX8IDOThub7&$s<eSU;YI{)`ByLslDms
z-oI=3o*6!_LGxWitF5zz#q~9n=?%Cq*^_bisgBJ1&_Wo2iuu%a&g(g%r+WocbOYEk
z@&0P=4mW=|Hp`d$s_f<3XH}<|-yv0wwZemzdKG;WR=0<uSaUMIyyP(|l$*X1a6mo#
z{Kq00&75O15X_QT{JWNO;Mg$r6h@BYU~U_Bc`={b<Ye1ZcZ|!M5FTozPQD^FPOw_X
ziDSHr!<dxTUql@I(_JJ~P%$O=cKgdihy5=3WeuA1J)AJJ{Y>qU^BSf(nBY#E?c7q4
z<nkt(x3-d(y~d~QvryljS6_U6^V%iXYJKyhU0)PN)%1xpF^rgekKhwg{|}zD5oE&4
zOA(uv=4lO%!JY=&$$or;!3wi%!osXu)*&+4XQRP+mJo$NcuZ3SErT-AJ&F{IPa@A6
zp+^(zdz3MSs@deNLy||;3`*ajTCOJ*`R`gGzZ0;61b@8Z;pat?SYzr6(gp*_*F>P`
zkBJH}GboU+Pg1mDi=1pn1W8;NudE3r8W~<HmAN5fiNR2wCsUrqQkWwe_@S6%>a465
zGNPI_uwpA-VXRa#$0)V`0WWyStDeo7x95yiwn~OqHCkCeNg1g>u%sTH!bOmAgAk<=
zDTLF6bH(ZRsrVX`51q)rqaVhwj@OxsVHDzNdoEw3{vjfrEO}GW!BsVmr&RwDr-9<J
z^wkFPke*>BVAf{IU-S<x%1CU9K4TLrR_|My=y!SFmDfcNtQ08C<vn}<(ci9pDNU{L
zNIasP*f8@wmMA{YX$w(Z2Hhz^3;u9{XM*+O2p4c1!?U#*)&BWJEzArVuB?EL^??R_
zltlu1!*62mOr**^(;|6A*{})s24%EFRg0XSHYAdC`l#k6X&j{Yr1|!>2N7CrA$cHd
zln0~YZJ#1FtI-?dcm+yZ^b%*~vh<Vv$*-GqrXW+~i4kly2_lju>S|HQl)C8pH$*JN
z@s*?ugxeUX37HWk8JRm<^#I=vc+$sTPpICp5oYs=;I!t3R<_6##&_%}h4E>WHVez}
zs3tuIcqGLC%Fq~rO??%b;D1}@K~7<-fI)pk0K;aD%tBT4slUr$8Cd!>)W*!Wg-@Wz
zRa{F}zJ>4gNn;5`Jqqb5NGmmQ(dx;svLKw~xov4>0HjY$ma0EX49P>=ct%HpsNE+B
z)-JmH$cMZMw2(VEqV<g(1~Vm_V%5Ke#>|nj=16hDl)SVwf|0_jJ%Z7TNicqNv0%>)
zcuLasDaOa=qaivszQyHf?}|LN3mL|1vIxE%e6nAvE@{yIY=+M*^r(1yI+jJI7=@vk
zlvX3CFmW(LN}lg7Gwrq2ijfOf7EOz}c?yt|__)bV$WKTBE-RMgY`$nOo>S{=Q;1ZA
z;~1bYpk=gKGrD}N_>>9VA!^B41V;I7yWe5o^eXMPO2o^FH%H=?_qdTE^Nb9Diwp$z
z-<g|2Js$Ri6Z1xb$@sH7Jn!22CHRDA1hMd?Y6-SlDR3@kupIqUR$|P6hG<!5hxQZ3
zS`0m-aADSBBs>bFnDr+k?h6AT<*r@+ei5odLBR^wmTK5qnyy(ZD>Mek_7foL;+{1o
z!XZVw(aAwa<pre?t=82lh7w^Ri-UF_3=_3glqa1R$kav&)Ny)v?YogrN{uYEyHT?-
zk_36`Y2T+}QgpTJwg_HEBVD}V#%_9}b=Z=Ui#%>dj?3}JlxgrfL!?utn>wHE5Ua~J
zlA)Hg46=CgZ?-RK5WVmr?+EfQP_8pARl5#vl>vcmjMs*l;FCcl-=&6@V#oZ2r@f6Y
z%_yC>wi*_L4978ylEf{XdP}!Us2iQ<iF%7UM+oRAKu3oXYV^em)ROX4d{pg^H#Xp-
zqcn8OpYYyRqdm%|)mlCt(MClZ$Fr9+OsfOgN}tjLT5NLi)G=H8K4Au}VmM`6nj=RD
z2`J2rDa|Kmgf-KgyB*z3YhqS7&Qku(5g}_azrIeJ08%Sl#5t;CY+OWsDK+w(mJ}&k
zn~KJF+yfgT(r`gV;fUDTDS{Ln=BOLYUz>ArpJJaf0C4AGoOiX5s7||X28dwZE8yCY
z1%Cbzz29$%Mfg^J1S=6{p7Yw~-!;OzAz0%!;hYc>e7;%py0c6$=N5lU4@JSghr+ZK
zjgritU;j`T{kGczzgK0m(SAG92{2d0U_iW#?#zmBQ|XMk*=huB8zl8GW&zo4tE3?X
znCFpkE#r~apQ|JAH*JbamuZSI`eGz8GxNA_`;4);a2n#*bMjdRLrt%W7M!w6m|$_<
z@EkT>WSG!~LONc^QEy^Q`vae$*YcFUCcqd%AzOw`ZMa&KhWD3!5`!hJaVMjxbh8|_
zMqfwy_p5nPX{Oo`dC-kMacmaGRQ!Mxl}9(Dr_b{t%Iv1|Sl>+oCPa1+G!Af(5QO-c
zJQu;VW!-d+Cu^<y`XhIT?v7+Pr}0oaSuu7F1UlU~KR8+%4zQ`NqxVs^lsWsv>q)^0
zBUhPQXhP-?jq&`X=PbR)3(JiQprJ$)e8z`lQ8nk;mK;%VTUbdo>E$aY2!aMNKdwXf
z2DomBZ;#AVF&ClL3byt$5)Cba_#f8Fh(7766?yJFrs&3S<$XZmmJlZ_-V=p!6;6<k
zE#Rk}{(9M#h6kUC=Q+1)N{b`Zlp>~6ufI<mx2I5%r-H7<D~}}xspBMUOc;$3sD}}1
zh~wi9ku)QrErQi6QJgP|zaHXnu`~+W$*D&Cez$!_IJXv$$Avo%nt7klZuuFRaoj7K
zUc?ZT+t{@R3UtWhnv!z=c6GHu7>LjllruEO*wDa#5gPH&hoI0Jp>s}K<b=?fqd#?x
z>9s)e(?pl3I~92%;%VX%S)$Q%&2+8pEc{1ZicU7*HOzlejzlI1{^kKBhf}FB;O`>l
zdve0e2kb0|h{6rbgl2qw7U%59+zbA%1t5$pDjWm+X!X!z<DDFY$ZQE0Ahh^d$xM?@
z7egV9RkhJpqGe3d3_&1MoVOsJvo$vUr%0+bBm@~lxG`7thoI&&LD2(tvG#X0_Tw^R
zK<W>I{Jf$9z?cqKjLz$m$JjxmxtLcVWM>oEfhHhoV7#LEnS%AJB5MHrNK$bPi32??
zvepPFcAaQCo$#DV=x`-=eyX<OI-Anlr7Y<G;JP5-w$OA85<5d26jB+vtqL?7Bpjmj
z7>+~THV53U%>V?6rsys03ibBf{4=**ZKl?Wx3_n#^GxnvE#0x}Iovx+H5CjFjrNz;
zjF6y`m16g^rX-uPZnoOgnOLq-$nu$h$E8CtNqL-UbrH&b<(I&!N+!W-<HTi?2T?lD
zZVZ0wdV*wFEsv1pEr};aDmB#xp>H$N<~3P4qvw^z*MXH7-_qUZ4xWUo1f`95$P^sL
z-30!JRu|Tvgrr{J**dEq2|<F<U}h38ZE|&WFX}G@=e#M-H^*@<L<=Ea46_#n#+U$C
zWgj?B_sRtZR|LDOvM(a0hUyo?3s;NgQPcF;v7AoKwa9+MN7%-jZ`Pati?_f}@26;Q
zK~f(fW*_0FK4_6=KB784Vpcxl9zGJ`K9Z?EQYHU|ZT<_}{Qrh+kpG2k{tMgue}rws
z{Rc5g4?Ld^NXa%2Vmy^fQzF+c6*?c(7EO=B`o%K^@Bb@(cRs-Vl|^uf(#+hGgy@y*
z+y~O&Q?HLt7y%=r>;*vO5A?(6$-!~{@JFVGtw7f26SQ{g2d2Qu-32D298_eE<C&*V
z597}e-vNjto6nrq3s;f(uN#S?%Qqy+;8E>Y7M@G{M)!ULRE%j?D`qn3-mBY@{eSu?
z(=9sIodaaVHm$4}=Qlma`2#vsSMS>wNQ4?YKf^CA+-AaCw_BB-kv~Y%1uzRV?u9?Y
zmO9MTne_hZIy^PElRNCzbvWbi{#Ws_C`fHoJw3TTMm(kX_uW48N6`D0iemU#-hPwo
zUeCMf8wIJ~B!Oceo;>e7_vg&IzA%+3lYKwEIvxBwRo~+jqvsZ`x!ve<Cn-3OHz3zM
z#QS4J7=6<^vNuZpdGZ;$0ev}!37|=p{WmN;E6%^8`|Nti!!3heo%~Q@&<C)?jDaX#
z$)9^>b3ctYwl)qx3z6!crm%oq=>!EOQ$Tlilq!g=-yHaS9e-J9Y464*li=M^ND`7!
zn!#ra;7H>oOky|!bIYLXWBWY|)79lTr>&aOyuvQv_y!M9Ui+wm86<!%<%7aUJ6IhA
zV~fmK55kTjbf8|8Hvp*g0$2sZS}3vqZ2^vu<e)EGOBB|SIYs$RB=wygpdMj+KPQPG
zHJwWKFes$QmK+SC@N~0|rf2vwKj@`=5pxy1hxvL(RO#1u-%}Y|<|apw;sPH{Xb3C&
z#f75b!!VYDlPMuuDz6@GI7jo(sqzw-0qwtHWmbVAcuX`@<@e5+iCDf4vT;qC*UbhQ
zK4DV$qbAA8HHb}nF!-$51co77=KRU*u(9VGtT|qXg=BDR-Bt+d>T=0k!ZJu1;V<vG
z;8JKk{CU4Lt;K68HFf0Cj3>G-8Z@&|Y#>vLH~$v^I2Vb!*%<`xX|x)XwHZx|I!%_E
zfSl!1@`-^jvFeZ7JdE0mXyi5&jlN+6UL&xHSO6I1$f<~IiWki?b;E}ypp7A|64D!P
z(#TQ-QvA$ctcX(EYz(w4G*6(7Q%+fAG*dB_;G;3U`pw~uTqAAv+xI<hhXp#9BZ97s
zsO9QZDfd#lT4sP{_Swr?#BcRu&a)bwj=r1Ot4w<JWJ5$68C5P_>MMJuo3M!*tnm_c
zTkhK{^tJdJ{{;06>?JoMV@@0QOuM_aE1PnMc^%yRRz6f+vA$|#v{wq|t$*OJXSz6D
zf!3Q^IR9}f+(x08;@+=Q)!V2i(r9vU$YuP>2_EoU8(<2~2*;VS#Z{tF`9F*f(|;Hp
z4uA>31E&`=j)8#z6N?WF0T6Nuu>%0y;($jv4lAb!s}zJySV9~Ek&==E05kyrS1K_W
z7O(67Ks-k5QtA*XJt<jL2&)ITz96ZR27#Ifmzp8BzNfeoT*AX%0{~Fs1;C#`d;kD1
zUVtYX!~n+aqYiL>&iaV*co<3qKW7Ovg9I6hYiMX_KG%mC!eE95`p;noMlfSzV{H>p
z{g?XiSAp)P+OOU99UUE=-2Ghq1A^Q=f`fwrfJ6-5bbx3%gf|TUKm!EPLI5<bRw|)h
z1Bv5%R)chiLAB7UbPmrJa;ph|7Mjv!7SrucNDB?|924?G>j2Q2f@miI+CvZx_fA&}
zs0s{D4i7Ka)<SE0qCND`PCjUgcCII#;%uW*!BPHZqt1ZnUfGCP-lz_tq-p-lbNRXr
zsoFm}G1-P$U5aJhf$^EIlbeD{d*L}#TA66AswKsyzpnWx*HpA;?W$kPNzlkiG60aw
zi;>0+si34RlY(TinpRLgFQ;@)*8t?eAxZXt9B0lZ7-h{1NRI<~wG(SqAfzr(yu}UD
z<}Th6$l4nymShOa@`fjcg;m3KD)c>DJhW<^9ZsZ#hXN^ot3JCo)H?C^s-R4)plnD2
zpi>0Vk**mP>X{V=bycrYD_k0qwb0ql=qdwrMd-&mH}qH_dLWvz55Zr6Finr~Yme7!
zN%0-1emx#fF`deNR!w`~&NGpri+ba<UZ%fN=kdMQa=#-0fk4D3WG80kzKM&@i!XSS
znfT_-o7C*;%*wWR8JTZW>f6e*Yinw%>RTE*8fx2GJF2VRH@@#~t?ugT%1%P3b}S`!
zpI4=$T2s*t4U5ffXHnBhJwv^@A2$n@{<V#+G%x?|-v2jLkUig;Hq}vol#{XFm$uhk
zKbwXg?HyUJL4RvUZx3ZIq27N-WnQi|{@v@En3x!wTAtXRLM^VZPK<0Uqc*oUXI3vh
z?|fePb$7TveYt%1?|kv_>*2SPtJ90aqnm%fPQG59UO)W(`tb1Z$mkINKa5Ts=*eUE
zq@{c`kw(O2sq3S0D-OL9VbVO1Mm?QN|E;+*z_>4!&rZO6j;~lK?|+0itu?bH&?rJi
z&9>V4$B)iqG12DS7mm&svcU5z(zClbcix`xd)4>)Bx&0z$O~^Nd@#iJY~s;i*EDT}
z@9J+PV3N+*UM!bL>e@;ZfJMXv`;QO@NzQ9I)g?67@1Op8r$BV<^JK2j7hf1?&7@A2
z(~(IlU)1R>+|SFBW|(GR;mw5@eQ(cygg8DYpQn2}e{SiNMXDzJD>1C>vF6q3-Do{8
zF3)~G8}g6ua@)7Y&NARv=k?E>|1HGn`&;>GmcybY0PkPF$5jf`=e0nCc9Z?dxVPc2
z%p*oE;tEXiuG+OVn8aGOJ>S&%e~tpFa_vS_7&+Nkzf)jmQ4#8+(s@Z~f2|{{Srx#n
zBx6lUk4#usv(f`<Qk1%5|7cGMCOT$iHITGC+E0bzav!8ACpZG_sVM^rRf64&v*Mo~
z=0XhER<85(zpIEoaX&q~`l2Kuc%u`blH+`s=Tu#Hm`~sCsOt;IFiH=-;lr_4=0(ze
zwGrTG8zdP#g&t}Pxj0)W@&YsqY;2{E(~!^Kb01e`8Mz!+?Zq3jtBe}jgQE(BDkmfL
z>71rYX}7uOv(UdK=SZx((R8{%B59X2p~{Z|rBQ@e8t_-P#gwG)q$mmJbKZ#$^MqgU
zY0lT0T;QzKL57^`mGsF9KpKB9R##m~hl1=>+Q#f&X_XQBMyXj1RnB1!a^)_+uxU90
zb>7l)@#c#0%QP0|;_{sjVpF@Wn*e6>^ZH4aB{`G^`3lyhXKX87ls#2>;GPAVY^=kW
zjm>t>7pF35?{Ej-ntzg}y#>7o^LA=~Bpn6PkJ2$7*Qsz+2hR}~rHlzHF~k|aQTX$T
zTi9Xs2T0UmIP$OP(kfHs^X7_AM&~Q$0cU<`qi5@LOSU2ue-!^{QTx4pp`F#C5NtS7
z`U&@_Vf&eU$yUeqLN=N|W0GXLYjCO3F!}fP6Bij>FBaxoQu*X}(5^Yr;i9j~KJ;w1
zrXj)3?IV?9y=eyllSY9G5(rB=dCKs!e~)O4JAGlTu&<{}nuhP~vzil&ov_@$_j9B5
zOq%d53VX}PKQ7uX?It+$fo-wk(_9nTc68|9$(1Tg7UR-y$?%PHjPSg3WseUFgl`LG
zU!08BlcxW|cKiI-vN3b^&8;l!hCDj;qzD7nMjgb@Wtyv7cuIvD#FakhD$STTY52(U
z+u1#m@R&iq)-bJJXxi3o*c=}xQWpH@9m`NYt)j1QUSBu<E6FG7xdIg}Spav}6_XrS
z<H|()_;)OH2P_I`+1Iqg{0FgI>x|h+yKgCMh{M>jz9=0@fVAcX;q6aKv~b1VVlyen
zk3IG=eT`)>Q&2{OJyTe#s4?*#FLsW%<jVdMRB>V?5O+mX%6ZwK6;87IFujfPX>|*k
zW^@AX+I*ZVCkNGhUCjD(+WN3AFq=T7WW$~v?o%w3^2eG~tTIYYUOfi5L!}Z<v@J?i
zRYFM>JG~hASy9?iQ+JQlPn4n*>Z-~f#aD_X)+oUFqCRCyx0t-{y)^@bD<Ibz?YjEx
zm2No36F^T{#UiVDzXedexYtV~%3DbMjYnxn5*-?75YJ92+^!-pVw0wXU-)379SL8|
z|7fdG6Pt(baG`oxpnrOZL*JGbxZ?9hiw7nDbM!57Jkn1L>qv-Gb3S40M;>X}J{14;
zcqHuD)b{&9;~!g1-3W5n-y~*(1CF_5R&I00i@XPxjWiq>LH>qWU70{sf9%=UIEWvI
z2Cr}xoy&;LFa<saBl~>pp!drx2K5?}?+cRP5gSQEeCc2f5H2k^Mz5{bcwE!yd1z~4
z#IW@X9hdeubT8}34!*ap(ZSkDD(jAA%Alt?OFVSnJm1WJHM=I$NNNy)C|o)!i7p%M
zbNeXY93%=!2dQ^fXFtOmIsu!RKD!aDd_Eh2B18<a;_g;7TQPixR!5sgRgy5X^4GgM
zKHp?UE4+o!G1~t4mCzZT<-+Qj;HKC_00#G~w-T1IT1hAl47g9Va7pngMjGi^{m5bY
zkge|dZK>}KAnGk4q}21xwf^MsQgkC7mqEES^?`UaVp&ezOL}Z$W8-?@rfBI0_AA6+
zCgnn48Ka^<wbkE+<;t>bq*mE0z%^@hg0JlldoGy;dsT^sQ$Cg;31w?-#$3qtD@&_8
zOyI*Gi7KX6*C?T>&CoOCd!Vq3IkOsA(&o+3-|3c=0Q0g|XR)Fp$SM07p)sBQh`eyv
z&p2?e79MkSf}@!Bs}s7#_?JHH3u1zfiDq9}?EavXi;?``YchCPmXemkg~QeN7u`I{
z=zMAo4wY((JVwgg@z*o0#cun}F@jVOz#sC$<&!O|GGo>eH+;S6Thg5Oe@8NKJQNqi
z?W48?>ghhcR}j=l|LQM3)Fb1ova|ej#BHv}#nLCpaO3E}t-GH}72k={49xlJFLR&X
zp7f8tZ<e?JRs$}0$`R%uO-}3z0<eFhzT6f&{fG^^`Ay@{KPLnK)u&_lSxTQ(!IUpD
z)(I*7l<gW%-J|GP!+)Wq0r<?IJp9Gf@4qZ&-O_3V{%+IOfg8K~EQ7;H`S2#hV<NQ9
zBk9dKz$+D9a+<5$e%_kvxUnOg+7}6CAsan7SB`4c&?HjqoRypuSC}*NYmt%7Jan}L
zqL9B|P-$yVFjcD4%RA~dq<I?)QmK-5r<48eYQE+4jL$^g_XKr!M0V{p)4oV;mwU4V
zPwiQH!ul-|LAB~c?wx)eYB$2Iw!rA?4@6vung!l<L*uTt!%#jx^y{(mPf3C~&%ED-
zZ*w-<EN95dts0jU<-H^MxAoUO9kgjNjHA20tt@dhCi8F+W_eRG9Jt_(_3ylj_Qv}9
zI%mQB<R{6`<(@oCsVoibue9^NU1HdW#`PqZ^CStm+T}h!{%wD&C%!v`!hTy0g^3DV
zu1;r*1fb~AHv<DfqfJa!1H_tNfPweBi61_G8U8cfm1?_z2juc2EqRu58j7C%61IEk
zoqFY7fBVynD+{OM!=J`y^L^9IU|YOxWOV2Kzb`Kq>5o_~=Z3>j5(sR3SItMV@(Kj%
z4EpuP^<$(j$k<jkDzKL-bp4y)el|!#P?*jx=<3?uQ!QLFI*e@IpZOXAe(kG6O+FCm
zp}Oc{vFbt=5%Jw#S>QEzB_mS!O$0v1Qw1!49GYlFV_i%t;kRO1rjCGKB@+}b1$HI#
zZ&oV8+|ZEWs7+Q5g8c|kL{KbcfMkc8%}R8lm&|i-i_s_}p*80}oxvg(0l>IerF3x(
z@n~P;I0{MymvKJ=T}u~<xUz#-*9tFgyg1Mhk5Mhi@lb~NCgR|YzA*ZAm=idhu2lxQ
z3yzbt_K%4p^YXj$r-E{UVvQf|8-7%f096}_Ag8#uT?wufYN|Ie1-?|ALQbF9J>=7!
zXlxRqL^X>p3_EiKOm9Huufae)XFZ%m5V->aFG{vdqz)g<6_qfi4#GnrmcDtsLMD~q
zn$VPaEIP?(OMnYe2?xe0uD%WgG+<qSa@$<L;-lz2yjYea(2H@0_1!qa@g#n5>g9D(
z32UMZW&APqtJ|9tSqSTDuFVvUeT*vfuSgQEZfbo;vQ@hbL7l*RJp+0#nUXGBR;Lse
z+6;?JnC@XBzB+BCQ^egxGJQlM%}^Y1iy>6iF*}>ivIA*`mP}2#Nk)-@IcTD4M#)Kr
zGv;3!KCem6sZP(ce{@F(3B+b`(!3^2XZ)Qm&T*U~8E>7;m0`Y~ol9n4C=RwJNVgfM
z&c_4p;wwhhf{VzkAb2k|IaA>Z979K-m&YzXv}rE_GgYsm9rJRON2z&lT*Ylc#9u+5
zeMCEB{W`Fubu=Pz{AhP5b94#v8s>q7ZPDeFPL}I=#Zuh*KIxnInQ1qY%l0A<wJ%=<
zY7SO{JZOWkZ1_oAo-m?PH{RsG{wtW;{w9ITuBcqYDHGDA5%8zeI6@`YGSc+GhhOuh
z<h#0HcpWmw+1VCT>+(Qgvpf+<L#p#8SM_h+4sEeLT3E-7+cXc7GN~6)QlaXSmrZA*
zniMCkpilnJsEA{iv+s8ietSN#*PEl!%=vY1Y+B*tbv3z>Vk#lw!v(>KkBO8VCfOpU
zL#(pr1ka#8@_)pO^groe$4fs^(oq>>4)+2*-<LxDr9Etmz~n0C+bDlV##bJg!O;_6
zY6txyQHpdZAhA&$vjO%rWA>D?%C;ww*9nkal1-<%jSULqU8LOwdP~!ijn=-&IC{2<
z<tg#+1<gg-6FoAyz3}gcxdW>fvzb*?BNa9m6$%MrY#C*kQUzc1t4py|4i02Z2+Q%j
zp51t|Xe8tivI^ZCl}Ad~?p#FE=%(gVr)MhB386QPe{_RCb2Dx!RNgAeS*q!eR#!Zj
zWcCom_jQ+;^1Movrc352ZT_ZB*n+k2hL(f2P8f^qQJQn0EZj3vF%eN$ogf*bTHCi#
z-`;{Sdz*ypc>B>i9$)uK)xSp@3|;30@94aYz>u%~eg=FZ8FGWX=m_QV_88G*A4}je
z=V2rwtjWl)#cggFAuLQAlOf$mx5K5k8kJqt4dHpqcyU~RlmD)7mq8&OTpLXq#U1pn
zrWm3?S)1T#+^QV^&B1D<!30Yn>qVtZc7s%8MIBvLj8o>2XwcyJD|S>%bBh9o44LAF
zEGYOTfefp>5{rq7Ttq%dX0CKq!~_HhsYJIZfrWU^T1gn+zLURg?F3`>K(pkIT7Dme
zQ#iIo==u<nQGKCHN0bwl)Dr1zl0B&>mnm&y^hNR_+Q@6#Dbl&nHSVE2?aHs5P3XBK
zJUgCYA+$Hc)StJ%Farstb&xwY{rVj)gXn~Ac81+{BIvs!WxArxx?+R7kOf@{y<JJ0
zT`9L+Y4qJ0GTm8b-8sSCxdq+%z1@YI-Nm=vrSv`JGCh@MJ=MWIwFNzIdwUu-dzx;0
zn(2Gr%k;LH^>zgJb`|vY^!D~`_72?k4$}91l<6BW>l+L1LlyK*^!80{_RZY(&C&NS
z$n-Cn^{)i?uNCxfJdz8W{hx39chK|$dolwDW&?-814jh|-+Kp6HwS*)4xH0}_$Bk<
zx7mk3!5?l4KK$$baJTv4;r0W7VGvVx5ZinZH)IgMaFDQX5V$o+ayJ;6j`gIJg0>k`
z2!zEv2qH757Y5+c0x5*8u|TpP`SY=7eLiv(e&h-Hh-9Gv&Eft+&|VD!xz8Cr&Pk8q
z6d({#D2evLlY|Qak|-Q5)W!IHPMQD*gF(RcG|Kxq(i=GG&r%?39|-I@q5=D8x|R2=
zne^lZ{xb}W#Zrdr$Ih`Xo}?@VIE{EAorD<%a)OPd*o>&lg4O4Sn=wWR6vj>ZM#C5~
zKrFzC=E`Vu)W$jKH5`?I4gpTEV9MKITLLMs1c5SeEM6$q&<;uPJn;Z{TrnLx{f_k8
z4x!lj*ki<j+8yb`+(*yCF_olIFc>2)gzBmk*ieckgurt31iro_?L>e=?#4gz6?^SW
zsHI~&?v4@6<EA%E_3nOxdJV&Oi9JF<Zk|-_a}(ZMG(&eF-y~F1Gsq=v;>Z)UEjx8|
znmzYeV?3!E2SFgg$?ie=lP&UvQ&NX1&==qsrtWN#*9@`HWZ@}j4nX<V8U!esA#_W5
zxC7BPPfpJPJ7kBbFQ((pL96GaKl?x+z&uzED8>S23<ZL>fh=<17tjUp8R2pRMuRno
z*bO8M0<xpsCYNF0vm{i?Dd@#1>76S;$O1&#xIjJ)avfX%4dFh0RNJrsr<;LegM=Q1
zbA-CMaG_a{7wY>tuV5*L+7=<7=MXh)o<L}UJ#>MA7#CLoE4u+C$^x8h28wHeK=4tb
zixqYYAO{o#-WdW4EsF6k6UnWSk}VMm%~W`i?wW&Jr|?;Au>1R{ALfW9l0j*5beR_G
zcx4!_g|t`a__&^<Xebem%^L2bn>U0u!3`W2LMmecu1;RdYuOkCPLe1rV|k5N=#n}l
zZQ@6aH8FzELP%-(HY*jjav0Yg)7J?ih|%yFTx;yshDF?=_4xkzxVuSw42)X2%|vu4
zYAzYHeYPEK@p;c?17B|YbNR+QVle7-lJx@E5<&WxWj&%9^vgp2s(<Uc5#-cIeZ@k0
zOH6spvaultQgFkr15)0dQ(~nI=TC!vhR#ugmncg=r?&D9CC_zig9gsFf`>>aBT34)
z$AK81$;&X<SwJ`zbk~3ly!0=(mpc!0UvRxpQd{ee5nGK6dy^T%>&c+fKI&@_Dd~?5
zN%wW42U249gW%n%L&mSaU8nvPPCUSY%M7UWzFm`K6j&R)ct*^t4RUMV;jjeR$RA?q
z9y)p*Vq@${0{1b&82gMQY9TxKu&-DOxH1CYUJZP;Dh8Prfraj;A7>#xqMN^-@q-53
zW*Fr`7a>&NcD~UGjxF9D5k>6LK{lQ>f}AZut|XN1?f^-Wy=%l*JdAHw&4eLENAL&|
z1$WQ_aHh0);(OWw?$9^*#UAd^R4>z!9@A-J#OJi)33%B42NJLa@C&`ocZIu6xbA-4
zz{zYF2+e<nYlGKYJc|oHc8vH2ZTyCtwm6jnYHc7Hv;?UFC@Yh}#Kah54_{lS_Oa%V
z7%az~w09EaLGSyhD@e|+o56nsKr_XlRrh_Yvd_E3i@ho5e;-Ki;Xi^?rU@YXd)hyC
z9?p*hP8mMXjR=4?9=3q#Ux;Qwqf=jL%1(Z#fOx_e`9FZ3>VSTtlYim05Pz}U2ol(+
zm<F+=ER#e`iRyrf8Go@e@4vGIVd;Pf_@_5RKp^YO@(0k*vrEe4<L=^9LhvO)$rM5Q
zB5ycok@yEyKL}ECS-16raQ>3<!=I#!3#skjktCEP??4+Q*P0<C3gMv9zRSCm>)WR5
zQ%ey1%kdz?r=1_O!8%vPO%p-qAm%Tihr2%{LX-F<zpoyS&b7CRT261||7MsE8-DqV
z2iXYp00pQ1!4&!#Uh>a-79>sj1L8qMjB%w^a#Q@1G<o(<j|UAi^RMU<(22mW;&(Sx
zWhb;BwqNUj#(skGn9s4&7k73*kno!z_e-lUS8%VpIrnRF^zQ7yPteeZ^PJhERQKhO
z*-KqCNIDhu84hd!Es)v#ocscsMxT$M?_QieF8|H<^p1=Kgnp<Jfj94TgkQ_kyj*ME
z0Y`K)XjdA~@2Mowin$-G&F`zFK~z%MOco9_vbYVKUal{EeV!|1KT~P4SUoC@C8St-
zt;4A1MnLTV<Y{3g3pmLVFr4^Nh#$K~rnpR_W(|qb`>8wabj7?9DRuAFkAG338zn_R
zCrSpcolREJdTWm&cQ-G?<^65Y=JoT#0B+R7Qm(SKb;|4?f|padR((DbVe4Ht)ECN)
zFP{eCm<b-OCP;O<+_lg&Vhp1VobP%&tT$Ud2)<OJEjItSZFT$oJlx*A_ShMUA=S~i
zW_2}X_+-9JBN{lmlw9>BWsaP2e4&Nd038r&=ijDaVRsk2fw+kDc=)?Gtb6ZNzM)Yr
zfiRc4jLf<JWluw~6*dSh-=*<C_@pL%{5>$5^`2{QMrHwa^7LuK$R@IPu_5y5z{Qf?
zZ2#jV?f(_xc&SjC6~@aa=$-IYoYFXJ%O@-dI;b%v6F3NsOq}4Cng2TZB%6d3B^#ee
zaYf3{$1XfZ2|dkti^@341ow`*n*Vywfn`qiDS?hp16MrSd90|I=DC_?|Bc<8MoJb1
ztR^8cQgC3AZ{$@UmsGi)2sM$|Z#Y_++|XB7mELcOoraSx>j`9k`2CX~ky)3sPi20!
zE+j#TiDq^0O{!@P^bP$C?d7prS?e9>;|DY_lqX@o#P263;Sv^g$>QTDzS=@k{rYRM
z2OsNo^rT*@H|W2}7GE|Z4gPKF+Pds-=H7et$1I7}uhwYgXvC>Gb!ueU1Zzc(diF!{
zNwx+Txb50<u7}WTz~NKTwUO22d;d?g!y$%Mj@TIiYw=tCD4p4SKlOF`yzNU1=*4nw
zOXSeija`}&Rp85v=VKas@xXfFRokaLcKv^(^*U=(m{)$h%jefKS`wVDzb*;d0|z;k
zCo<*3608&1Cmjqqmdf)kr@6$?T4<BCom>#vicO^4D0naacSxeiOFwsU&eCL~UZ+Ye
z|68}N{hVO;9(%G*NUOIt9m>1+5(WF=x{DI1z+~PsZ@K-`Z9-b2N&qoYDyMvwoU{}C
zsh<D6-A>fqk6Y{Ph7D=!Sl}1rIl<(>WiipTT&kk~qS@?4&#TUR|1F=@{vW;1e;(_F
zzUWYYOUivkxt;uLK*T$uDktG@!jx%<?78JH9-q{seUjHnq6Z1zgg5*6T0csTqi`gp
zBGXThWvRv9ScCrfXHetJITlhohrEBc0oUko04^MX1=IaW^Ij^(6&pg`tL|^`A{{35
zQVLyLq6*@wA}|tsLM^I}c4?MKpPqkis{m%wJk?XIwI6=$O3~nny&sH)Ht{5N!(292
z(m;{!=FR#gBWsQbp!-M+IJgw!{V+747Eg`R7)Zt`tYDL#=8s)zOWF8Zh0o!F6;~8R
ziv7N=Zb-+fcoBa?z>b<zn$6O$Mf(fY7$b!+n+z+3k;{Tp#!~H*P^#S-SL=h(a0K{?
znJw}Kwn@5F$CSWm)P}981Gtspy$AJhn#$bK*vm4$%+x}pMJ^j<o#9BP9|elB{k5h+
zwO)2T1ub<eYnsn#3uKk+tD5{}byBHTDsdp~T(uK`og)p>-!T3(Do>uBs>R1WkZMAH
zkvQokG{>Gooq-npi~6rJVOC2YKL4lMH>1XvPp|NE$pW0kFW0A->H2iJo;YaQ(zWIv
zXMQ2MHUz_k3B*@K0is)?LJ`nQ)`ge$3dBM1XbuC(CO&*@PzK1~QlIJa4nKfQnBaL>
zb#&=(HC~>*X+K+47RLJ{^(S;K5is(Csh5!V&GD1k4*SJSe}S0{3%F{<9C{>;hZ>h6
zx=efTYBXNyGpm1_jV@);NuDp0bDJogWzpsPSAnl4rwL9gZYw6an2;mUO^+7B)v&nY
z*2LLcu+}2S6#iPHxc$$lYs|2TQ@{ErjSoo`oif&<HOvfRtdApANhn<9WJpVH90i5a
zr2LNi{40J99V_5pDYah*?Mq*cjlE*t_1r$0_!A|5UqSDgfnh~NL^l1|E`~TBA*d+x
zIKlgy`L#XD@>a7qBnV3zEZDfrV5IMnrqYsfz{km-fj#D5flWz!`iwK9h`6eZ<~aB?
zl8kr#YRR?!(np_=4zr<EFA0*b73W7BsUJ~mS6^yB<wUEuF`(_!bXnyQdRDIzD;(XN
zG=wK#slS?3+WAhA$PGHo&KS0{5AED$jilV730pB>Q84r5=3R#^t3W@ZUwhhF^JK75
z+%TORtI6^droEHb$i!KH2mN<zmE<H2IT!S@lbvV}d5B^@x6X`vqFzV5y3a5vI41NS
z!=R-Y-H@*yM!CVTxa%VA-n-=olU;-Cks>?uKq+`Ro%J@y(7z48`aSZdLmWiM`9HL~
zdD+eA8l`ppvApy2P<?%Z!nUA%643EN?so`Sj73Tz%ISrp&)z^}ZP{RQgsaA2@VlUf
zNY=OxB<@DY3rPuOEc$^HxTg`A7oYAU)4iA4pP)VYcO63u+>jFR!MEMeOUXi}W0&@+
z!{E9cB$cjc<#d6AHJ;hp@F5lUAoMV?^q9KuMupfk14Env%W%Sa6d#J|X5DNfyy~FT
z(Rr4R-&{t!ey%DKYjbvIKEu*@@1rt@on%cBMTsKO=qf17LN)KPp3WfO=bfFVD$^UH
zr*Z?7oS=E3oi=o*h;gZeU5lu>(j7<yfEWRBGvK$Q!T*L&?=K2OnqhBl9Nwtdg3g_@
zUNcT`b>nilr#tEFGfZ>g4$1^5MfJ&ie#+@T8~Wf=if19wzf>?sU@TX`X>t7AF=){+
z5@aJ?gn;n%EH#GtH8?Uhfl9AWir-$Pm-Pk$aD&&U!~EO6{CJ8<Jng(lB76axCroMh
zw|N#8(D#kejOr@xE$uI-fbT_Se;Y)U-oo_@i7YP?9YgkGTJ=h&L+CCLp4E)ATm)b2
z7;C-piqZ2wCgUuBS8#^HzV8Gc-|SOXts1?%s4`m_xBSyubFb>elH>{`W}3P|`<>BO
zMOedz8I>+$2SUR`4mhp;PCABN7NJ9q)U5t3)`VR(hKHUyTHS7b3%l+|hn~k--R*OR
z|D6sG`(0yof8rQ^yNwRJ8Mk`4tO>tA3lG2hW`(}}7LLAu+=YQq3<fAB9~4U#iVcI}
zm_u=0p?D!s{3IwrA(XHIO4J7hPC<#cpd_bI(mN;!r~qbAAmdXYmsOyEDNvd#P`N5l
zhbYh_DbN-w&^0K~_bD(;DLh`*Fr6we-zl&F6(J0YtbB@3WEI(9itOf!9IlF-A&Oi{
zirj^YJPnGxeTsZjiu_xO0;h^k?-T`rN<s`u!hA|1vPz;bB{6d)w79F1#G?==X&6fu
zz~B`7(4!<fr6jkdB!8;(>`n;^R90Y6R^(Gwl2ulQDXW+(tGYfiI?C!v${K~rnhna&
z`yQX*GDrfX3}lJZu;9S|2yyiIRP<$43}7mT<|;<O(OeV;EJ?+rP{p)C#jNiUu2Qks
zQn5T$v7#7ZI8yHCjWXg>wUbqS2~&L$LST8L;uxapl%(ohsOr+7`l@ft`~b(MuUE%F
z)#FapQ+DhPLdBI&%|}+v7pCTCuI6trZoM_u_9V))P%Wro-2P=emXliOmRi`UTKJtB
z!dy)|dc0K$D_B-NT3PkYU<ATdJuXBYnWP?Hh>{(_Ku5~<Mo+0H!&KfhD<#~irvWw6
z88kB5MjX1-TQ}9S%{Ab@@fjf+kBm-U;ipvPPw(wC3a3yx06_k!M#-H<DNxf98&I&+
zQz)zXc*g|T(I|7(tO?PqO?p(mOq7pESN2VK8faE$X*Qi|zPp=vQ#tXrO}c^ax&4x6
zGwgZ0`SXq?wHAiwHTo*Tf|xy(&)L*5ZGmcRf|w%s;}R$Y1`UE!F!G5Ys#{du!#uuf
zYofyyHXZ^)jf{>)Pj<mZiH%`X*a$o*%!3aAIC}2Mh8X3;1Xu&2`e1Xi&$ErEP_A05
zAzEt&BcCc^)%q$Vb5m?6EjAiNl`CKdriz}0Y1t=5Rq<hoNJe2EVMO(5?HZt#%{3Jp
z;$VZ(nzh<6RCEwvBnTB_l7{oMFvc7;^Q<sV@H|pLQs*gtRG{EUKpLJ(L!4LXh?l31
zY(tzgQtNJN_FbXYhJo}ZHh_a>RLFP&a5goIttJLQFmb6I-l>j8Yb)HvYIb46YUc?1
zqcv}EpDD-vEW{x_(>8(PJ!^=)yu&0Ho4;&`RUE+*f{(ZZ0B&i@zK>%_s9|G#1kJJz
z<Mw>%!R&)*51J3I+Xq|39+gBPM%g02gkTXrE(h0x1GV97QFxw!IfE!{V@=%Gk?^D_
z0<NgXSHkl|EQ}yHB^MyZGia<LJq+UsJf|7`5N&)MWrB9NOyeBzs}jjQT>fef^i_#W
zPFF!imy&WM7!WN1SN5?6{EJpLbpiyTluWG+m>Lb9Cu>aI%~ulX>6v2z@DT&Bxv7^3
z-f0-%TuUlVPxlHVieYZbKwFAMd+K0%^Z;XzZvi(Oi)|VPQBjeypOSBg)9li>ZN$E4
z&@nmEx6h8T>mT+%id0Bm5pcp&QdtV7iF0-`2&u*M$nE=gYV^<CAn0}6V^L7+i<4!E
zdgzIBuZq*C(s7?&kx7bkyTbJu#q;)y^Pn7fe)b}~e+;&4P`1CMn`J11#F~#b)QvHm
z57C!miK=pqG`NSMbz}5QV)T$WbH-=W!ca^R8n|)4q1f4^sIjI%c9dX@zTVw3bPAi0
z-AJZC8a6j<u5M)iRo`R~M-GVPlx(DM7AaV31Uy2FhCJ>aI8&}s4{vd%8n8kH@c=Xt
zqmO147#=`y!<S`4=L(=1IzQ^W(J(qC3W|Pr_Vk^Frr6Dkc8g6bpm79_bR?xpbk*9z
z0Zdmc3Y!=((>D#cnt~W>vf__!n$N-cOumY)!C`P_!G#``b*!r?OBFqKxJnL=a&Eu5
zT%XDGveMJ@b*HOH7aRbuXPnOwK(#-Pga$JJ5vL%zO#;OXM8tu1FoF;pcqrW0ud(Uu
zN6f4N=%6k<5I({Y8E3?$6{wDfISAOo!KP8!uD7=U3<4IkEP|k)H>WKCo~9k!mOrXg
zIz!D$5;p}bG)20m2PsE)49xX^!vIc;{T7;RNGrBxL=U^R0glSmwy}BWmVUMso0I;>
ztL3c0DJa9rWc#A#oKnH^7HKw)+^NZ|+`K^T3KP;G<h5?a=&-x>QUkG&Z1e`*XdLbI
zj*M&^89u;zD9(n(MqU(~^|dJ=H_8tOTh$GR;p}OBD3;$5g6-%X_{Te=T5D6pydO>k
zq<QCumMweA$WI(ATXL(h`zegG<@ixEfbo{zORGU*75*7mKjr#JzwOxemngC2QQ!_*
zlF@nvTNz8<TGr4ScWfOmWv8TZMcHDNByHEdHeytETgiBW$O-G(e2Jkkj>LLb$sRxt
zKtQ-~G1WKal`U#wOwUH+0{A~qu|+Y)zN~$;Z~L#(kHsm;?Xe5k>*r`O`|a68*^Xan
zT{4dTrnJ))#fthp#p-D|*9T)3j1oSw7rC*&Z#Of+-N%jDvixIjT5T>?tpCi_PC|P}
z)_h0Oe@8ajTDo`#Dr?|3x=T_UMLUYHR*yBZMli_5*>FYZSH%&}%rmMUfadJ@r*-8+
z=4nQEWEdRXXdJ~fvRzT8+5@I6P1YgBHhS{*QSweuS6f38ajpSlDX#U~ZDVu~zaAWW
zou}B?VA)>R0E?IlCOG!R#(m3nWev`NC1Us}E47~Vvy++Ll04L(soE#U*>=T^#zpB?
z_u~dxntC_IIh5)sv3&FU@y?%Qg?DrKb*YYFt#wGVsk-({H|q`1K%Cd*w}<Zsh-$p*
z>752f%;*P~<{70J%OlZS9d;Eg(WAA|)5$~?*sQYQe48<<-zko288aDc)_f~9C+d#<
z5KGG>jl&s3`&jHj>5aW}-m;Q;+F`-;dQrPW3C_k`D8kM&#upb4P#gKO+10zl6sR6+
ziywiT7FXu}T}ga|`pRV|)a7s)e0X-eLyYUdf&u8ltsk&PjK%3R#i7?o&bCNi?Z_Xs
zaGZ$T>WEnCkKY@ZTIj#92LR_5OfB^XtF44W-G31u3Xa)+z}5N_iXb|g{vtX$aj#@!
z@BF_wy9=hezBf<wxWmESPJm#+T@S7yKp;2)lHl%gaCdhI?(XjH?oNQ<?s_i2e^2-A
z>6ts#b6>!&Rkhcu+Pj|hJm1gH`Cd2u6GO{|H#fDEj0H1EnDvMa()yE`U+{Kn2Ib#2
zP$#TsjSNKVv`Xq%%$s`Mko@!epk5-U9kNbmIJGtccPScv6<FCY!C!1m*wDPAJj@(B
z1D_FPd@m+6c<{bpt1F!$d}CHqQj&lfb6ARqFi{lJ`{O^ali>GJcZ^fF|MIPuzkN+`
zy;o>{4Yb}Xa=XS%Hz!ty=+-a(QQFKhqECzP^!=+ucg~W{Cjr*CMnAtg+q=MMtn`yG
zSCKe|T&PKMG!Aka_mkgWBDbrc%})vMDh=Fy!8#Sk4miOz9294QVR;8}KoakBJx}cN
z;yeS~wC9Iq69)ZXPW#|771VUL?1U_Wt^_BUWfaXUr5OSLfH)vh2eHgjaTZ5%JtKYi
zcM#{64DVJsicux%mh+>9k<mXO&Z5Jux)-D7`K|J22c35iM^XOW#|gM{{FMZosH<o+
z7-Zz-WE|yWlIdhx>15XFWIpL+vFT)a?qmgVvIaQYP&nJNINO1o?G>FJ^qd{7ot?a#
zouiyxGM!y3o!vT}!IRGJoA-9_$c}W;ulrlWMQ7iAXFnDfe~`=j5Llp|OOW+Dh~woF
z66F$_=@M4?;C6rS#Z%;ceyjHz@&6BqlZp85>8KsKXhI&c|F<9x?PCs)+c&W%4akE_
za!?foxS9oA0|M77g6s6a_1549FK}ZNxG59dTnTRJ1h-Ct+cv@N=im+qxD(*sMd9Af
z;@$&t?^Sf~({t~)b|3I^AB=MEct>`mX)1XftCHNugWM-J-6zl8ry%ar0FN08k69Lv
zIgrP^qQ`>XYfs_J$YRbY%dMU+$^Qk2vlsNbG?=pty3sR4`M(8m&I;d-8gq^jk@)@t
z#DPI)wK%u{_64IsE5TKreHaKQ{%?Rd#|$vh2mdD!r$jN}-$9&!udWz$|4k6*0xCn}
ze*tmAhClpQ5NDR*t@%e##eWmTS<M)6<@!$`&TnmLoh;NPes{=1?SB)*X(<eI#0%m1
z4-khJ=n6<#4EOtAKpYne|DUo=z<&pE2)_qm9K!qw`_CXw@sDt2-A1ba0piFlQ@yvR
z*HZsy5C_7EJRhg_?;wtW260s{zv0TigE%@FkE*FQ{{zG^l*BsB`JU;Kk*km!gK&T@
z6szTCn&icgcaZ&WAWq`PLgw4cI6wi$M$I56WW5%V?zu=~QgVMN?#R9JP1)4<-~<cZ
z{XV>QqWpGxB(m(fe5J(at&d8v=Aqqwnz!wb8&gOscYkrwzkxV4k|pl<xV<A7mKTdr
zf~PIVXP}b~MnK8gt#|~-gwkw=&}l=GV(T=1^NCm833PENm=3M9YpJ5Jv>p-rk96M&
z(U^?~ippn-Zup84ww}B87S^h#c@BkMST~4DS+CQ(IM?`RM37^gt5Vj=ef^}Ww&ghl
z7H&!uQDJgY3>ICo?v4;0u2S@8?RStE)ay;mUkU6h&q}ke)gcdkIDj&y*8NH9Y#Skc
zesJ;!3PEu2k4#YciCpHq2I4^}#b{H_;K2Pn)g)ipnX&vPe1}%e(yxv-)iG{?H{RWt
zups;9=$kS<(5?g)9M@c(Jj(2e)dn+{GL*rfn_OmwqHrOUZn01SPc=E8NSd<#$i->g
zvsWu)>tM&z>BRHJD-lend)f8(%yY!ExXCMs#HPUI)THrH_afDK#?{$6JJ0Pk*ChEJ
zlJj+`XC-?n_-r$CeB-*0maz)tOAD!R@yC_z06|`#t%>*k*aJo%3vuN&03~LFrSzn%
zjv^-d^j{Xq7qibOR9x0UQqY{O!-EvyRdKq|?5fy#KTOm#|J8+`kwTb1)b~}Eo(}wk
z0&J`NQJ=-Rw^TqE)%&C$Z~WLihf2GcPH;XwBVyqh_1(EB830MM!I6lW1Pq^X&(r?&
z++76yDE{fc{s0_#QwBBurou*{lIn|XLX^cd51>p30{S1iX>-mgOiOdXCfh+mXg>|q
zETV{)kuvMrBSI+RB{-0(+i#VoEf=0P`02L$s3us!XQsROi#q_Z<V!zCohV?}eyN78
z9U&iD;_FHr1`hM5Uv;S(+z{5-flnx3<1$o}KgQNaUSq*hoitG-;}^ycyjCU;2!3SW
z#O~6^ssbVCL}6BC*THjNP{^gNgFX|m<#Vy3I6%R0K0(7VL;0B95G|9B6;-RPPXl`O
z^XYy$V&K+9TYuD{_AnDg=2#h52WR=SAB6DUrLzP=9+LU-K8DEYe!?Bmr|BVnQX&?%
zFhIWb6U`^==fLmvxBZkP7Ut7a{<=esT)t1<Al2}xq}G~(L`sC-O*)|69*`-6&(AXQ
zDNZgn9!@uzLO8f7X<#n))F(h$-b@)38<k7GH$OPDEO&Phmw85%LM@T{^?UvggV^Xi
zWrg6Xy7f9C<-M%0=ueO+3hW)fwviwBL2|P>Qn>!hF53ey$csWcSjm#uMqh(d#=5Z^
zs$#YOf)QMrUnQnY&r-xN>wo~$WDLhYWgo$WO@MsUTpWd>-`pdn6n<FZYE<U)gt;+g
z-?p!Rmb^*}K0RgB8CZrNx9)H!4>bn2j{uOg=htTbYTrR6k@ui$+CoINW_vD#hz%!E
zKn6^H=nldURf)hSZg$SZIe(ho42S;Uo;0zOLPLesHE!gNJqE6X-QImSH9W=q*qXNR
zy5g?yd$YG1Ju!dKS3x-f>--gFO%Pta?UUrWTb(5LfL`)i_xg@+viIa4sp)MCQ#J0*
zVhu~hk{551BPt>N4LO2>dYZHYr3ycI$$h90LZS}TX`u1xeYrkG+L!Gp0q;u2cNO6d
zx6q~=_I<@lDS0+wm&aj5N$O#JiLRjGc$b1O3Ds;$TQt<}KIcSV?%8;nl*%<Cm*Jn?
zesi3~7gU-k|9OH{nzl%_Q2(9J(#+$`ZLBQBo-=oHiOP^C5O^R8_~~)&&)8FERL&gB
z-ny^?6nZg@5a!vz(<+Pq9fB&%sLeR5?0+uW+ae^ZvNB`KNw{z#zbRN4Kj}HJ6twDh
z#AbgnrHQ6V=bA5kXMtVuy@C#Dvcdd*4z>(6Ec<yw{75*h<*Q5r+~>k-j16Dc0r`?k
zWvjLwOZ!&Hs@ah(7+1T?D%D<yAa5|vzBPkR-)S9Dm6*Fv^Gm++V><n>$%<LE^?T}8
z&<~@iLTHS(yP_qqtb$Y7xLcLKu?9)y({0tN-+uksH-jN@S{-{LGfa$LJbSexkx}zt
zCO^AvyiU$UF5TjwAd)d009QpL!MCO>rD>+c2k@S|T?#Gl1Z0ABP{?XdM}019gAjr3
z6S^6g<R)^8Jdh~nbvokQ(F(tyx&DLI>E}HF)W#eCQtuZUo1N#ua7$<KQhP=w6Ht>t
z_1<mdQp7w|jaW<HuHDdNOQ{y8^9)O)(@_KM$B@RB2320Sb!o%$hIX;#U)FSBX8Xy9
z#l2_9w~DPmT2?Dex2eMP<RGR;hS;d@YLS2ILp|^m$D>?(wsPGA&)r><JJr=n7TrhG
z>i>p*Z}!aN)F{>1w9%x!-M70FKd?m?F2~9Ala@BuLhtzNO~KiH+}wV#_>-}+xi?5k
zXl<d>-!j)k`{XYO^i(f?7nGt4nhXcPaxiv#RS9XnvaZkaj<Qe=bqm91NC~=QnsFuF
z8GLqE&{fGM-N`40W_XWQ)c^;;YzZd#o~}QhjM%=;?HH&+aqCaeuTcnn&R#~G=F`uK
zh&D}`T6uxJOCEP499wX}0z8WI#H)>vQL0{|L!o5Z`w;h<#-j;qp}!}|VXu)dZGq|_
zFy6!J3laK7K9eXk$(PlX4{I@3hg$VCNj=JQfkdi3x@0w)u^<=mL_8q+ihj4p@>BeV
zTNkWzz-COio^rh2(|k7B#<mMJibTBJMBl(fl@GIso_oAFzKjC?FKEs>L?BEA&Tirn
zuV}uG66S8$+*qWL4D{5L=$gR?Op_lTQ!4n9$zt=WWQTFc9`n>Et7tUI!lx?y$}lu9
zF(d(EgQC-J4%3wpL<{Yd3h1yx^LP}G9|+!H>Bv`mC15^Xp?_kIC#?P^y{+tVlO$06
zmA@WkU>&nkb*B9C1BK~)emV9gR9FhVJ{vZrqR%|L*a)gFIvYQh_;fsvuVOkfB%R$T
zX89(S0<)K+U}{VmhLKI4F%^q_;77g;6}{RH$bG6JIi6{wm)`~U?u2X#kAk7&15MM`
zpg#<qlo--R3~NDrna&t%-_QK9DOS#2#BQ>FSzlV@52Ovjq}cFee}D=Lc?y5vmz#Sg
zPM}Cm!sR;#<KPwGrz58*$KozSkCAAUVH9BDX}ISR1?l|QtHig;qR{E*o=m7X8wOFo
zC8;rd#`{VoRWI#@{D+XCmwiecnVgV`OqpsP8!WM>szy_Fir2##qaL8_p|eheg;hm5
zLGT;P$wQ1t0bAWjSy(Ofd%FTnK)BA={MRvDozqcX7y!SIA{9-+N4#vX4CF7HzM|WD
zEVVzDP|TkV51Nt7J*+31{?moec-UW?cPQzV`<kYi-^2|)d-%6zsG#RbYVxhGLXkuE
z=(kC@0>x}QsAKwemBw}zglQe5_BG2W!fwRxZ$`T6rC;J@E}MdA#?(FLCKG_sH+_gD
zpQ9>IGCV{kZ>khWSTp;W$nL`dUU|koRr^b-tDSRUt~2}Kx_z&weUB+W!J$Miq=QYG
zDDMfy8>k|?3M6}!0DC#w0JS2ruf~~uumV%PsISzq53tpJuqb<fyiDkVFm^&nC$8J1
zUuBYR34=qN4*VwQA~IzB5&HeLiXzX78VwFIbapyiLzpNFd^QlHOCZ6&JimgO&?eA_
zVixG)rRe?E=#+NpqQ287VkbtO4fDzDapE2Zx%sJnkoR#YW_LdfU4#8ByT>||oLpmS
zhY_5TQyjlg{2Lo7;mtq6h(7a<9%6C$8=)i%gCYA!Hsh%;<Ec1@`DhHvEL)f%PpTxZ
zV<=lrB8Q!!z=)xU_bAV)q|lS02ty`csxRNHq&R~i-Nvk_f}ymbq%@L2BA%gSf}#9N
z$U7`q@wcP`g`rH?zife_3c)-=X<sOQse+ub=Hs#aU5WThNtG~Ton0`wFdRkCAfHIj
zmj>u$2F6CG(#AyOT5kVZDaPhRb0_aK{*!Rlbl8?UA3smVwgE_K8?*6ZN@@EBV?@?5
zh9K;-Zg;~3V;4eMSEx+Wm%i{V#-5L#qCS^KtpzbY9Ct~T^?k7j#w~*mFYPfZ8@LOI
zD(J-!`P3g+HWXRrrSWON>eEQUiH`mO)G6a|$EUG@PwvSl-6dt?8x{sig^2lKV|Qhf
zk)Oto023HY(@*_R>waHajwhL!W)Uo=+;pd<%I6l~m+Q-BxS1A=m>Pvo=bXwH8{nHX
z%S|79I?c-8J>x99)5Qv=Ro}FU6SRgW>Xiwmb*Yk-8m5ge<*R4AUwkdr-<Y=K4%h!O
zZDX94BQXE@$V`f1waslcLSFGls$#bRZHK>NkKxnqmx{ku5UV`Zvpvs>b|dEfNajOd
z^LAh6qmB2`OXlN-v-;mwM*~)M6&1$|6{iRx`y&-+ISi*873XgiA-iX17%T;M%opS=
zR}8@y*eus~#g`wgL(|c2KAc@~SKeOHRSS=9E{JF1ZTv<n4*J3}t9E{y$Py5%%iqVO
zn8?&MCSNxs?=ukAs*2K9HrUE5!{&ePvuhoC04*L5?HLVBI#_HCtsIN3eEfK!5KBgL
zBEp(3K68Xf`)T|I4}I#zZw)>IUOW_@1Kn?}_r1s*;$4N5i3CdagYJX&Jm>~c%kUqF
zU>q1WHN#*ai7zMSL(ek7FtP$Rfy?uL6{5bI6~?C~5YbkdUW9&mT8BU7Yp9qKi8zz%
z?cQHL{FMg%ia;u|@x6c**17y<SRK0Nht$>$zVRbyl?IYRd)Qoh7Ws+SvEqb?h>LV}
ze)x`&dx~*iMV^@%<u--68Z`4xPLETV;AwIZY2q<P_wxH=UC1%B_Hi`%!Vq@BU6c|=
z^fD5P;Fa}qa*C(V1o60gLyL%z3|&GOY18reBdpPUG-sy;v#$k1!KjMl)4_;Sce{P^
zg;o{e7K9Nmvuk>+fi{8SaEBt|n4#v7fcGC0Nbg0wxZ>sXLxYHa<dML$IA+SL0$o%x
z5J3^W`0;4idFn^WZLlr;y(BNZUOfCHhz2`(1d*n!9h_8EI*r$UDJLOS@<C*@^T>l0
zpXy=>W@m=L@(N0@@38aBz$MSXh|7qu1MKsE)qW)LLt%x>qjr!WECP}GLQ9C`H;JLr
zc@xv_ic^S)t44!Jx}d{F#7)?c030l;4)Do|63Hq+RyYz|KhoJN58NA(&LDoeuFubD
zv8nd6Iko(>w~@;Gt7js7u<V#3qOE9}aaj36>MFQHK5NQEAQJiZ;7b6tyxd~9TV5|U
zC?d?mo49Yuqv;a*MNL{gltdb8&Cp(>H<6?AcG1P!9oJX7R+<=Rk*=4E?Aed>KAe!G
zi!CX>o)m_x@;$Z|7Dd%tAes;?Xh&raNr8^P;A87kY6*gP+I!_?D^qZtFmRcrQB-sL
z2|#Q;ioPh<NDGm$gC(F7nAn7d$daA>=y>|{R%4)FZa{)pY<^Yv&VQMq{OnkqS?LO(
z-5c}-8lkCs*;N}E`)+&PyKMKR9boTdDCX=NrKt#^xF2e5p09so_96>PG{fJ4Ssmax
z#T|KiDG9x?)`BEvZN&hFa&bIJr9Pfnnx>i8riBeY_jJA767@4d0>><19hGA!g*se2
zBLl7k`UoP2Tlb|JXdP(QC2yFQ22fHOD5}o3SNhW&r^`=trWY=8=|1bs2TzB4x2Aj0
zQqND+JCX+u<FHFMc}{dFSn6Pi9oWkm4CgCB*zEpL3s+T#pvtM46pus-h2~I)4%g@@
zvf>?O?L*O&bi9;!6wbRTEoeLyKg`XWzpk=!=SH26m^sU#jT&+70>*T9vghvlJ!l8p
z%fiWH1F0i~IEwAm5M{D;1h9JH!YIl=Ivd+J7sI#$+`vtjYy>^p+Gwtg(!e!Gav~^A
z0yocJ_C$ntOt9(Dbr&w@cFQ&ST9$lcA8wNdpWggW>y~FQc$;A7)7pUHGjO6cbCHzB
zaTRG3Y5So_YtHTlJT@fWG=+Y2>X=COZv4@w-$&T69WqHF^&~7Ugm}I4Qmq;)V2>sC
z9$bf9XHFfGF77smcv?sU{$w-V&xriev{W$^BWctbDL#)Sn8crT9nTz0o8raB=*BHi
zrOwS|v@dL@rx+K$Z2HG|xK*6Lpr=ek^956Azt~`kz<w)DLx6_<FhhaxJC0Pb3*)8%
zx~gmThKGvck+oLLI%zc)RL6del4owmrqf(fix_JTHOApTHaJK{(uGo0C#T2ZBHqW=
z`2cqyC=S)cL?MC^FCzY{i&WnY&Kr8(x`FWV9J;ET#iBiSP+HCyYJ@hGRNQ+S%<pxO
z(S84^jInKv$IO?b&zD1)?V`NlC@8J7`Iu7)<nE50miARksd_S~mdBq&$JyoCo?4L|
zuBn@V#~;nz4v`)L%Ss9>MA~Cbu_PYHZavH<t}5*LSxmeR8s(&oNy3{8$sV3E&6>oI
zuJlqUPgq<-l;`u6;<Fzs;F^Ov43W<tA)IfJQ-b)xZixDgRqx(uCuqF=wR<#pYC`Dt
z8Q}N_w*3>*@dd3<@+Bn^RK<OefxW;SU2ryz`u-rIu#Fcu9pbs`_q>Vt+=>W78e;M%
zxaqW5QwKq=HP&JMp>-ih_?#}724VrIMBEMsn7@6DU$2DfG^RFroi7lGc<r!$$$Z0X
zxI8AnHk3<X)NF8g#5Vez!eP2l=Zdqhpo`#gck_s2qLcv@3`1yxYx*@`K84%y3D-=u
zSfyC4-VG08u2!zy>~#BtXQ5I3b2yO;jBmLDEeQ=rmW*R1qXnuS58sRXr4#7xPM%dr
zV58sdhfKijPH6ihULb(mNwBU+YdDTxy}_Nx-e^3H&-v~pg<iWc6t)o7iCCkmll`1t
z{<lIk&s>*(OoIoBv(<X5>%G*_gY8A;dtV2SC#kF5-e?Ms^A}Cdsm6|C^+r!Ju+!;k
zGa>>rso>@Q&TtZs7rBSq?PM+_eS^%?{qg#6vC#{(>wMAOUwIFq=z@YLjqdupa(yWD
zf~ynVjX>s(*^_XyI$8aO(uUcK#<dpRiv~EM??#d&jp@Ty5LB*4rpF!W!O(Tb8Xz=G
zpDu#{Tv4$4NgdZ>2Fbyywvt&|c`-vDA_TEz0b#`DK(9Z`gM%9=Y$7BxXQl|FrkGcQ
zB%jiJX1W<`!(+$Tkzv_oG6O%yj&rZO<9r#nz#YoAax(eZ_oIaLvtnXFnS6n;a!VL3
zk{TmjPR9Ecz7i}N7tV}~qug~h*G?Pm>}Rg^xne$BP8l+pGu+DzzzAX4oQk@gWT2%6
z2Nw<Pjx4pWIBF<uhBlf;yr`yW{kIwYfN#hOa_Cj@v%eB_6PF2uEQb=vq}I>!qR+5^
zk!cUzg<5_U<M@SEfFtQO-ww;*wE(N)Z`lq`<K=7de_oAs^@G|8^a4ZkahHu=UkSD#
z-pkrw`2%N`fh6h|eG_<@;TlW?85y>c(6Ap}0<*%uvt@-k7MLP5gta|(O>;}IZb7L-
zh?;59@8*(!Mu~PDXk{=|as7bjmFYH0KyJzZk%24oNRj+r+5F`@!`Dn3j#U$|?!UH|
zke>?3y2=#C-ZGsGoT1My#1ed>{Q-OQFsNIB97^buW`1}W;g{9Gv)OXG!87g&zmay{
z@v3&L8F1zU7v_OGz-&qE3FJfe?Rum?7{GxKJ@fy|F5;VoKDEW7%f~GRUr!4uw(~!;
z?F#_psI3%|%Dh1<!+yXFB&ymZTQ3wZ^!JXCcDZWKYF_oYr}2WReymh;3oKHCEV@3?
zoi@$8X8#bG_VJ;GQ}Wb3n?HT)uxj(0dp^G!2T^zw!6*(*FaQQCGD6>)?+{sMg-K42
zAR+tdfVnO%@~f&~ex(Ll-RdxJtc#S2qsGp+SAaSUTF3?3pNcd*1%PteXij_~``aVH
z8+$An$x*W2O9>OG5*P9TO+P3+qzjC4IXFD06y4|nXNeF@a_q9#9ME40&WC;PJg4r!
zi(&DQRsDkv+tA^MW@T{R`h`bkA+D&o)D}Ku2}2&f!Y}V9K`mc|*&7xX0e&9liJU5X
z;`BhEWO>*pQQ)!D13*iH=?7+$7;EHoc*XcR>~}#KA@}__egu|4c;#(~WEb7QTv?zu
z!Q4EMK&%S^{};BVgE|?(BS$UUuSf}8n!IqC_beQ&gksgbv~&|p0o`oEF7G}(r;EXj
zswpUSs6cdF8_7S_7(uoYGPwt0EM<7RkzUQDN?U|7d;>Od!GiHuo-<qqo-wq<Tkwp1
zQo}eOV}mGx1&a9nVgfqHz8E2YFL)nEtx?$GbK?u6<eD>8DzGyj=Zu52G%*EaQM2mH
zz7)?qMsZdQ=$2@uVIapc6d#I(cT!T}kHhzNO61w@h9-%tV~;p?#8KWRBM5I*N7_Fy
zhk2_OiT?HNWM}6L?&ZktrsO9HA!mq1$I0tPgKFJ&W&6<<S|}O_;aAMfDazOm852%f
zQ7tqp%GCZ!m|SGfM1{NSjg*i)BjYsiRhONt1M`QtVj!Gz`pz#TP7%>p<#2BA!_qq(
zMj1gfD3-4_%*JCt3~1zq<`rL;dl4VqOoR#2l`EPskqk+r2ic0JcyCS44L0Pjb0fre
zMJZ&;UjytX3qA4cvbnyfG8UmK$5fZlrgdSIm_Xsr(O80-%|s&$q19Av3+U(8en7HO
zGE}n(xwlS1W?=1%-37`w8woTcks7o)C<J>El3@(WbuHD;J_DRkh>^<S6~uW>O*ABm
zCX_lEGF>Q2ss5;`=1>HETkum4M5w<g8}@tj4Oo<=`*oh8ArhugXbo{E!_-~AS;`_E
z6*9k}&(b!%${O3xBPxyPKYy6GGA_=UzX;@eA)0x@$x<gQwVavO;^8a{;7ix&r+lxT
zv5!Ns%cP3GY^VO5+QBS64*W|wg`hnjPRs6z6z%n)IfL^IQ>YkQzi|NvaS|{f_7RDT
z$2cPHn?A+cl(^D`v|;AOJk0^=C4qr^HHw-tES<1+tXGdZlYMiKZQxV@W5PDZCefs;
z@MzFpTm|meyN?{7=tTcICYwFF3b!1w$TZYPi;WV^{K~NpI4Luh*CU=)+rIYwz>f7e
zOie{{h?GpF5bYj60@cNMTLKh19B|>Dtxj|d;)%#KB!?_AyC^&6HLl@wRuM1RIdO$C
z2$}z+AepT1h%#03TS>0_%hml+hQ|m8twfGw^@`L<Nk78E+KVJ%Wa6%ASoe&A=y<*#
z;l5?LT+TL)WaBcC$FG5j+Od&j^O1YAb${L33qm4rOFq$lt83#23EPBHf9N5KB=ji_
z*+NWu=;KJZ2-G9pAu1g11<zQ9dXet3)ie#rez%JQ`R_yn<%TpjuBbhDwV*w&hE2cQ
z#}>Y5U^zcdxOxJU&%M!GFk5CVzB}Y{knWS8KhC5Gv*xhU1HTGB%@v=W=N-2lYA&|e
z>kD6(c#)mVbUckTes`)BXlH^~kr~T3Jgw>^JA?E{@l+3cI<;=L^MW=d*(7cknjmBs
zxumVi7vEiajsNzZM{jMx5xWe6-oE>RUUumLyuQtYAGVgDr-7TUle6|`YXfe3vU*P?
z!O!~Xke4G(>+Px4*0X}7*AqoAS2!j(ioc=wKeRW&n>*51bp&r00)}8r`u8dVZy@`V
z=jkSh;^`7u__A2hV`d|l0NT;%rg`(#yVG;4y7KM8aB|;rd1rP*9rEPL;c?ZOc|&Ck
zc{%hVyzixe1SWaCK5lw7t$`pg7bka<5R@q>0~jcHCFt5nD8Ljn1tvAN4K!`^J~1W?
z3nr`=><i_W7rH4}-3b^DB{&u(7|;|Pgq9gjS_vM#3Qlnf{+0<|T?yg15?*f#VNqfE
z2<T1OmnUKJamD~3(M@r;1sDkD*)Sj*=td%fK~A{%fMx(_*v7vTkvFQkHoHKmy;$Nt
zC6$oWa+w4^`4Fc=6Yu(vmgG_FijvPLqC<Mf=P)s5&p&$G07SYU^<j`Cx5<O2)S!j{
zmV2Z|Xl!>jfIBEO(*jKNOUf|=Kn@U?rG#?tO<Z<?!c(;)rHIObHT!Uq>2E-`1f<D>
zMv{ub_1mK8^TF+g!;`+GkeSBY-oh~bL+Z<l-y4ns@xhenrkny|fv2%heKAj_xG%Cv
zaI0x93{WghQ35V0t+J6^FW-#<wv#F)oKodU;S+rc3mUa*xhn%)Z+&E>Ke$rLh6UcF
zkZ$rEN~AhbatSO_@gEdd+4zucjC&;lh$sg74~oCGz&j;*G#{ccBeDep6iEY0OL$7#
z9~5LifC&SH1n*34HE?bl=v9D$(?fI!jg+fQ+!;w+jz!HEUiV^fua-kG5i{itg@WWu
zDiwn<Ws94ZMJWd)MUFu6hHA$6fsdn%?OsKW1jM2RB9W9}(r077ZbhAm(&5+=KU`7<
z+F+w^6LcQnqyHf@y2L@aq9pr)f_h2t>Vx^>4S;OZ;#>k^3-D2tk&<Qzd9J##tIb2%
z-h=-zsj@LcvI!HaF(Bs`_?$lEbau!BH3!1%)TlUh71oK-+njKhKrL(xj6b+)SGY;u
z?{9=c35e8?^%3Ip5xs}pTjXPN4Q7xiQKFsV!4x16n$FbL6Ppd!e+HoDhY1lO(#ggI
zb<>N&AeBbbfw7p$e6j8+v0ZBMtm4RBYyouHob7fiYPFcBH4N*qwCb?$`%D-LO&2!x
zAz+s8_KF;S_8w`Lbug}2=2#!b>{<*44^WMpD)PQANkJFJ7X#$3JP!09DBQIagLW%-
zP&`3ZSlz#fLa^zPeeuJwP$Z!%P;9X;s~D_l$dR^jc7eWjao=&-$f&dJ@4U&O;&~3I
zj7#hlGx~s#T2VUjZ6(4>9E?2?vX~DMwzQU}Jl)s#eQ|=;4hdr_S{ViuGoq?a5x{{M
zp<XtWAzM=Q9bwcDAYcw=dAIy`9{@cz5Bd-6Gh2Wtv@)(Opq@j%bC$*k7l_SH?LCF%
z^HrX@PFiy|@cs0oa0X!8;$VDW;@T!{gF`vBL2<nnGrSQsjlX>#`-OE3akxS0>ic4c
z4b=MDft$lIIE^b0jTEg4f&fuI;!%0be&VXZy1y1!pCQjQp(9gOL>2oi`U6SS2lLiO
zrCT+II!3ix)r@_fGJTe(nv;mJ=)-h@;_J;d)HfxsTX)P_n*t^wmK++tEPR1k@`fyC
z%5PsG=s7fd-m-WO6eM5O3sosXVu^$jKx8xW+P>e=doZi;s7<;7q1^zwZ9pirxHw+v
z5+|kYHxj}a`O^dZ(u9(ND$(cJ#3pK1SG*H<JPpJKYpGc53K7G=>`UezQi`}KhHIAC
zc*=CgA3U`*RP#W(n(wdKB*DN@lo%dkWkS$A@E#6Ds3F_iPOsBJ9XUtAP(`UtifKO^
zvpx<JREODGpjuob7aAjvdZlz`Kv?HbupW;Qcf|wUpw6VchZLos$(>MTi&!B-=xJaE
zx#iHcLzTkPlodtlQZ{VEM@knV8Nfnn@<#2zN4hBiVmJT-vk4Qw3dE>jtH$vm$KXSz
zq3Niy<&dhaEN4LwF5npun+}>E-PsUu12}O~A@ju~i{V55z$<P*2(^gyYJeTi&WGM;
zZr08Gd`G8@`{}+5P+`w?Zp%gQ!$ff<sjX%TtEiu?=9ChEBR+=6@<UViGJMPy_uk)m
z``TGr8I|{na`%cZWLs&Z29qWm1vv)urG~NeD?J#?P!nI}7T4ajhMoxqAGaC|p(9J5
z1*8(FEOQ!b*BU{5slhR>#U;F`Y`9CeqR4FAdW+XToSm+nRk+6~E`awMz8|izn0Kr3
zcc#T~VB|0~*dz{|kaM)meZBF-J^;V^oF*MzsC#kne)%!=o<VTLs^KS|tN`I%@{@OA
zP2t|>SMpca(3Dy7*IU{ZNe(d9kkTOxv?kp7l^p1toEd&DWkVQDp%~<v9L&}i=tmgx
zY#AJu90I=^97h;BZW)r69J;s@l1ms?Z5djc95%iaT1yzNZW-2^9Ns(;bVwaO%NwYy
zaX7LRF}V{quMx>%9=^F0d3_cRGK{=;**JQLgd}tPNsdA!a(^L=20XIEr9=}D>7fzD
zP-wE_ro_-{ekCP}WoeeWN{;2>Tm3{72jcrgof0RVA}vT1ub9FpkrJ=|DDjynLGO`4
zH6_7VQ$mL*(OQ$?S4yIDv#148l2<dmLrPN6qp&+saugB0e@b$arZ6O&C?!fWB}Fr}
zu{S02F)7zIwRV}mWI5HED6O6-eKjhAtvYR#kFkR<efE*NX*pey==VHP2ANg*x2E66
znv5HK8P~3?OUoH7M47ilSv$U&&yO(>zAV7XM}*WYz;YJWO7>5&Y=WmKlBaCORGJT3
zIj6}vOsTooKQn%F=Zb52a5m@4r>26m@>HJaxmWVEwScTz`OV4sx~T=IFa<wTLycPs
zOrHvDQ$rlx3bk7bJyL^x_>1J-ibC9iBA$x)_=^+V0#jOw8J~)?-2(F6O2}GD%K81P
z`AY$ArOo_)?N6o9{AK<8Uc)VA*N<h>T2AwB<=f5W>rbZJ{1uQ{*NQ_o{nMw4ZobOf
zC-ujc%G$?DXaOa7a8-VD75cN(yHK0tT1^BNBzvw7;;W%)Wu<Seaek~}BcbL3*BUq1
z3bhi83e>5)*2xOsC_L9m^VNS7K-Fxm=XtC*SVb@dH_$dWSgyj`3N#Y9HoC6Dc|12F
z@-+pl!iKaq-9I$NfMF8A&3jGFzqO&W1zKiZT8agr%AZ@hd0XpAAWf~U)eo)R&#!&p
zw(O?1aq!EOKzoc!`||3O%u{=qK*t{VVXd{p_Mzi4?d}HLY0%X9+WK-J(4`ITLT<Z(
zdg+qq?Z#`nB5dmxc<2VYUs1dFoHq6_=|Io~dnv%Z5I)j#)|Xyr?mo%2Gnux&*PA}&
zwG&nM{_fg-UH4;s!2tog0n>D7p_hS0{z1p|LyNY-@{2*Awtav1A;YSn2>1PH!QpQ<
z!zpch=`X{QtRwk?yG3myY!@TdFFSSaqrj@sc2am(!7*pIvEi4ku9q<Y>-c=z)>7Lz
z>c#lB;O4IT#B=4uY1{gR;G`*L{$pFw_{(Gr{}jAOF>?FV@24p&p%Ofg>Ef1Yve)<D
z_nCUP8T$58rq`Kn{#h=MGQRfN@uyi)p>j!&x#gBQh1YUrq4_<xcOtby_jUe~f5FhB
z(zJcy^=ZLYsLIh}5xI5I<F(31XbBIz6w+P|iFjQC3M?mh)TFd8Gd(Y73)SX(tnjt2
zl)u(i3$03mSDV}G+Fw_d1=jjK>WACcbf4Fzg&O8P)=gX2*Iyg9g*F_)8;9+Ur>`46
z0-LuUO^@xH5zm{@!p-oWTPdwu=x@zf!rS@aZK94AvbXJOfj=~!t@Is#+MoZh3Ab^1
z?hLo?2)(t53h&N?cV#=;72bBY1@^vqc4U4z)!JB2X^1co-Z3P<HtG1wbotlzZO8HL
z&Lt!Hp7h{)crxV8SMTk>nB_3x?I674a6Mu#d&589^QgD{sC>h(TKE{z@wj=zxBcxn
z?%=RL<L^+%$@Koov}c56M*1T8+sei%#5(eD?>#G^<Ba3W>E)aCjpsQ_#rbQ8ey{L_
zslx@bmo*gRf`IuFuQLR#^V0U^4Cn<#<8?)UdC9b?M+mwuuejpt9AJZ7CkWn1dJP7=
zJ;-HlZD(XCd+mLL1ZieQ@lf2w^<SG(Y*;|<?vrjDL9ni!_l#%vKACWeUJq$)4-pXP
z0MH|k%VWyscnsuGlleYhFRZxpN%ZWg8nl$|^}L$*+@3k#1$xnAej3h%j6q(ae!a|t
zW|lf%!**Y{_0DuC^7cEs3@IW`H}{}>yt{nhP>BUipuEMPV2SzNk=SzjLU0+i+Jf0~
z2O>xX++L8_^M+!m<x>Si*z+MH37@oE-1+o@-hM4_%WWYXg%iI8!A~#9oJCXF5@Ezb
zp`67t`JdDHJy5tx=89EIwc0~(3z_|OS~230Im(u*e~qRJg>jd!)LX2!B+$hfEi^kE
zue68pRBp7pKR>;qHXW!{`lI`Lgz;AY=?^Cn@I>RQS!zNsN9YLWtNlBkE&zT*TRGqA
z$-`le59hBxnlICC^^8ch6CKSqU+stxXgphQ14l6{Jg}Z@_l1#wA_e(=EyJ1KdtwN+
z+#Jr8p1+~DmD=pBwSplS!fnofVSj6bqJ-O@ZckSC`!dM3oi1;VS39FXAo(kp@m2^x
z-x~%)X6xHUzwwgk6BA@e-w#8Wj@%33L0vxp|9h}O;0akUrRcRN(vRQ|kuo`2*k6kb
zLK!NCeuU*X7X9|6nUMJz!M%|@9m0Gz^fOBMEf_b5HMIaUQi?p}S1kGw(yzEL!pQl7
zVm%Mpv1;E#3=>P(hzygydm<Y-s5oilCmLmh7^VKSB{E90>OkHP6DL<KNOjr>G0xy)
zrdCh)d_y+L`VtYM|J#i`)Fj8ahTbGMQuv52`;w@{BtP*xKUHqD)re`KvRo=zesZLo
zS@E6ek!eXu1;bvt!-$DlS<S=>SxMPOsCmVa4@!Db-5ZKURrqp=dG!E!7)fRRBZEcl
zgmCM}%mkpkW&MH^q~Me3nAoUg<3^~&N&TNl`HFAL_zkCxM-`)165ENW)@@fPf6aU)
z8^WwRo`i4C+TPw!FPgi%Tdcbg#8+9mP*^@ybbZeU+w@`6rn2_p>!p|WvTX?14wC=W
zVjK7n)mA*9Bl==H!az&JKFr)nS~z@#)n+%&t+&iR#((}|+76%XZa*c)LVs!@ND)z&
z#@;z{IrRm^^kYI+QGqK^esvUcPRn{cYwnvD`kj|L<TJ;jQKqi>^mxFy(<(vasll?z
zqymq{_tpsKjm1Y&=UGPx`a_~wQlay9pf=*Yx*g(#%TDmRhs$m(Y+{p$h(M(4-)HoV
z&D{(y46Qv0BS^XHVL==`-$6;`mxP0)ObqY|m|>3gxM9;X={Rh30(?%A9|^wbLCkO6
z?4XEhlk5Uax?l6)DY{+FC{D8M<M2m$+}&JRKAz2aQ9NI*L{;+NY-L8ZJ?vJpG(R46
zva~*(Ojb5NUu^2Nyxg2mHoQJSHhEt!t-V#RDWCuvJkZ!SK7t&SFcc=-@a#6e%=VOU
zEDxN>Uv2ydYAF#wE*$7~HvZ5%-|xc_dvGg0`%_yOv<VjV5Pk^{U@kN0{mjcxbi``N
zS(gonf$t?l!O|0Y$;RRc>|I2+4e4a~gOyoSLdk9$id0J;nibrSovIX~dh%hYEV-Xm
z>vQP$PmrCmbh-h~w~%ln3##I&q5)n8rjQN$Trw7TX}+Urd5gAO3P8f35Xy|K$4f5o
z6n99Jp+-7DFpp|Hen?U-Rx-jpkER@VSk{bPJfSU*HX?plA+$#1_e&nVDej1J3ARYS
zU_N6m!oar?Y^8Gdd?vE^5zV73!TPp*mg~4tT@)4m_LqFNL!2=KhB%&n!2*s!oKZu$
zTG?^;0<M_2F;g=R2M395u1?oX3oHBdwBnDvlgq@mvG%`x*l77TiPB7J>@)D~Xa&y?
z2_0wbGhM1_g&`?~9#{5R_LsCGfDwEjY=`V`Y;<B2ZukN04mnD;bP_E5M6O>Qa{Eq<
zZXm2EGea`*xzs|TlH#E=@!@rOpYTRxRZvu7%j)tuPlx4yhR#Nf)fEW#4=dQCs79RB
z6$-tYDn)6<WMkJCNJ*Bc0CVQ@8|sP`%gt2twZ4|9%@?cpGf3CB%;!4Im*T>kYxwZ1
z)v(W%8TXrN&C4k@G~g9j2QY&6_|@YV<|}Uc%)g7asCU%NR(iFY=)=o@>A}Ct4w5|K
z#%o>j<6fwq^|$y1;nN&po~=o0H#XuD_&nis_d65*lvz?>#XfPNu2#a*tg~5bp<<@K
zvfjwTP(W^FVIifl|Ma6{tM<>kg~m8ID;p0!oj=SoO@sA@b_oJ9f4LVECIimM^93Nf
zDr$=@c70Y(Le08oCDW~&^}k&D8Ktfg7i0D%t?}nuzl%34wk!EtyT9`4J&{j$+}Ho~
zynPmbyK9Vqz*nKe3vRLFFLg0X*!Z?K=_ABVbptYf_|uGuqNuxs5Dc)wbF~=&otAph
z;B12(d4FKzO!d)58ialu1K~IF2CxLOz5Wv10W2&Hob=j8vNZi9kDD9>dFn?8lnH$x
zc=VQ*V!w-T+l6o~50CrV#h>#SG5{t=)IIeQ>q!Nfogdxx5Ux-A1pl5VERU6m+ou*b
z8gVC0=2{n&O6{F|<5}eMa2}{ty=^nz>|dUYgLTMq<uMVHo|p>4(96UdSCNA7JUN5}
zI&4!59li*y%&6qs7ZA0Yeleb(%}lf?l6?L4HHo;kP|8vBTf5n0!^*sQfMc1gfVtM-
z{6eFeWrd@M`uBU{hE4=0y#OJLRs7W@KS`$=*H#N7+J)swe5<<rR}C|DlIFz$C&T)7
z%YCQS)iikLreXmryP$=&{ROL*c@Hh8Mv}JkKxgwkA?xdf)s5PI=Z@u8YtQ|KO-Q13
z7yO&HF9B&MqO^-GUWW~Ydu@9(z@-ma&^A<h@ehHz%>b9DZlp754+WyDv!t*cYSP;7
zj-=}dUz=TG;o=?(f$f;#+xOH((te&nR}aSydxHD5{bzW$DN{j*9K<Eaf%Ky7OoFF=
z0T0=bVi5n>foPPai8#s9!P7#ck7I{^JGu;A>vBw%51NekXUFuGK~o;4Qp6~7o%5FU
z^GIjQsa|G>##Z79jE9;+AyrFff#Gc{&gNPxikq(19SUn_x04-)aOamz*eF+YY7y-K
zp0*LJPVWBFipyx0*PZ(>cr)7M*JaWIE&S)M$$l9&Irlo73Q^B(xo`B1UN3vvQIBYX
zXm{0(k0%1^;NfE7`>`m&b6W^_3-LQF$+O8No9D|h4aCOLy5qimBmOK&_-O{Q4FQ9d
z!}>eqf+OVl?z#bR>9zU1k}UZ3&!qcR62-;A;L6jvhUs|{`4tbu>m~^o4$1YY(aU(z
z%j2g9WYDvo%G<)v8-B@s#ReDe0F1iiHfPL&c_6ir>w!baJ!<R&-vkyj@SPg;A$#zl
zG?Dty1p6T3t6%F&%j-q|fWu?rhO*>qNb8P)<oBH#h)@N4tmLPc>%%+bPDqC<f8a8;
z<p&Ce`z7u!9xTE>?TJtg(-rNn+UxiEz=MAX#{kLIQU4t!bR#d~RSyn$$PLgo!R(qs
z(+lQ&rVMm7@e=Y0+Ehn$%nB@TbhT{4guV!5!-cY4!b8nMbu<YQ_!;Or<o+ueCnnh0
zkrmPBz}KHJ==VWLCQ@iNU1+XMXue5kVQ^@1QE2H<X!!vov=S+-nl7wXCam5htT8yO
zxhSmQ052Q~?O4Pw>VQ2qIS91vG36bSisY`=6gGYkK8X}DO&2jM6ESZRu^1e&Toe(i
zLC9DI+X5B2O&7T%6S-#+xgQ*PSQL3Y6nT0Od5#oyNf&i36Lo76bsrq{SQPa<6!m%#
z1sRI6$U=aXjfOXkMhuBYE{=vDM%br|Ms<xIL2?%z3RyLYAqa^fDvlu;jv+gYp-2hi
zrH-YNjioV-r45OtFOFp#j%7NGWkHTZ%7(_4jq@GE<Is%59uB01ixoPI10lzY(#MO-
z#*-7pNr%MC7RSpE$15DhD<UUIr^Im$<EhBTX{bQrHH#CphZA%U6ZDE>l<5<H$|f3`
zCK`t%n(`%L>nF%kqNO%DA#^92$skypCfE*#>lY`1hm$-Gle~r#%;=N-WRn9-lY>H%
zzobC(X(A9F0Ms#qab+>XiUXbXagLSX*+f%P=~6I|k~5K0v*}ZFWm7AYlM6#qi;GiB
zhf{+>;zl0OTJMv6n&MzDQ$Z#v+?N<o7XT=mG*yi>4b9YE+4O$X^g;Ug^5XQ-;q>vt
z^vOexkz}~rAe?(lv=JA~)MU8oN5C;AEJPoToib+BH+|1EV?QM0kS}a%IOFs%;~Y7&
zkSKUI1t-}x0YNm*IvO4I0&s~5J3fV)N(jk>mCJ%R%R&szLN3Wd9mzr;Nxu$pdxJt#
zN%_s?3UxV^CK-#_sp*Mvludz>17ygdlFOkn%b_JszzoH?bIpWTj{DUG^BoClz#9OC
z3An7nBn{3H7|9hn$_1h1i8ADgyCts3{^r2~w6SJ96o-Gy!W6K9g;YTeOr>!f<RW)v
zmr3VokL2qf<?Epo7%&td%EdWG``$yP_-JIC5h6Z!r5(RN;**UVouAB8;2c`$T2cre
zDfBohyzEZ?asbGn%=)aA@-;NuhB%xDE1X%W(C5A|hM_o4t~kN0IB6v#N-kiw7+{K$
zj+kBC<&5}%35zP?*R6pgK$*{74S~uwi%Ui+t!5~#l`E|`E4{5rQ6ox0j4AEngJSo_
zVY~qJjAXVqd;fMV9WE&w9Vr_>Dih;RY9S7Gk;R;rOGDfW?ky>QK}LhE@}7HV-x(@)
z<SO>eDoW_f16m4F51^2}{UKQ;B`r|L`cM^GPWz#ik0q7QBbBdOv3IEzf1Ts7P2n)0
zpw35%7`LEM3De(>ssO0fSd7&ZE2Yrdo<sbYc*mt}rul7$X@mULK*ky>`5KzALi|<V
z@5*t+@0g2H33@iBRF(Hf`C2aXTAr|4RFo?G)hf8^+OB;l(PJp$ENIcuD!#Bf+0r`s
z(K_E0D7scJzac!uv^XhBNG*u2UZJ#Jd$eBnxc=i!ZOck6JXV7mUxQv)gK24l`D&d~
zYk1yvL-}BXy?mpic_US6wN+R(QcR;#Yojx2lMiE)pLVHXY230w(}+vMdnQH1aZ?mY
zK}cy}7-O96b4heqb4qD*T5B$%ezVM!ch`1vB1ucS`TKNVOYw6?E^2)~V~g!^O9^9Z
zt$b@eV=^LT^PaP(y>F`^NoxaYTQ_4{?{jQ(Ysl@7HglP_(b2Z?<F=1;jjba>)1`r4
z&uxog?aN{9!^dt^!|m~<?c0nUJB+OwB_XNCv47>$H03)^k2}u6EksqdevPqLqdqsN
zosXrR&(BTR`kk|dXin0HotmjmTUx}>&``ifI4HnBKn?>GKC~|U1#}Q5CMGcrBOxQt
zyNg2!<oXX6hnJ6^i1+gc8YSRI^H0+1^vX8ezuXi*0?lcG%AeWo6luRGDJp)mdS`4D
zjNA;qsW_S|d3bmLdH!Fq=7VA!P$};ns$sCIc~@$n%pvbY&AU${2L<{1pNJY|`*=CW
zY&US^e<5l-1Kc=$+c?99*!&?X-f23C?JmJ_*51Vi0Zk^c<%Y3sUcp6PVb$Q29QXLf
zcbrB!dFmafQOREVngg*&?tjN=tcvGMD*pT|fH>zuT<iXTYas7XO)xT2497o8P5r;1
znp`}wTs+MjJpEie$7Fe6;xCqWrKUjTU8%vXFr$4pX=1Iu{1=nv9i;i+I5c8;xf&(^
z2a2ZMn>*6ip(Ws3O}Ilx;Xe+|Ts%vEh*(ds=6LMq(M0vx6xq2HmB9q#mF%x0*+wII
zE(`ev^QCsnb?!U$|Hw4Kq46Q{@yUMP?=nqtd}v~PVpME?LQ!2+%s(<sLry|LL4I!W
zKQc{eLv2%jK}~sWU44FQ<G*B@x|y)1+kca3Dsu*k@|TL6#!DKO8cX|Ing;3{=Zed>
z%X1)Q4ZHa*kk&#-b<=iB2jrcuNt=JJ@0~9h{98QqP&9Xzzw}t&zgItY)3S2XwDi!t
z`|^(2OjSpX*A(ou#s0(CwDgS>K}I?tOL>r$ntypVJ+UKQdHsD&OMS)5qjj5$Woxr_
zC!+~hi={8S4FmlH{i6%R^UF)4eQOK-OG``L<J%*{kkO^xzUAA6G04Ko&cZBYb+4yy
z`*h&oW$XsByuZ6}^t^cgcDUNNv$A-(I&e4)`Lpq7e;)FFMf|t~Io%sO+*#Pant$By
zyE|Hd+>E|GEFB!|{~M5V_z#eC@Gl_e@4o>#+3!FOrgyg=5)OmTP*ryC{{-Z$4OQn3
zMp24~lFHWP4aZ?!zG@HG(8&A4{uoJ@tt}W&`~L!Rif0Rza^-&WCuDu2qpLMrAE_^0
ztkmxfC6jOXq?y1x`{tKoFBT|evorErzOiDx)#dtVeYCN1v(x*326C!*2BWFuE1s{-
zL~D~d%s0lGYxgI!#Em6O8)&rCkcbsZq+05Z7ps1bW+=4&Cm?6D%MX>}OIy?B&QKh{
zT6MWbWO^!BKJ!a^%k6QdcB`-g2N&Jme*ihx2eYMmlO3-Xe}#X82ETN6ygol%A8(em
zbKa-Cmw-3C;qXnie2_jCZTX@VAnGYz8Psq71LSN65dK-r)PnSLc2lDV()|ghPBi%w
zLRauG=_e?eydB0mK(`al=~-u>MTQYA%EfT^??4W)rYSCr>tpe5>}T%cYzsbaJE|BV
z{#w)ojk}L%e40*&`N2|0{&{h~{srWiapjvLF3-tWyzE}*+l9*5j#%BvOb-Yj=Bp@h
zjXQAco8Qa4C#(#}Qo+-k&8vLoS{?dZ$mQOlw*R~5F&CXTVJ2`qv)_jAplCNBWj5Kg
zpya5etO2Dfm8Bk{Ih&S0?I%l4^x&-x+P*m|t%O`Wne*DU%qf1#_J@&|Kf77^D%|em
zww2$C{Gp%eNCDX20FF&n%T|y7xrYBO_-KZ5O-?(tK`q$4_;(MmrW{x8K}<XQn%zvB
zzoh6njdjE2Ik%WM`{<|}iMH&*zp4T^-@N-5<t3mAtG2tJ@TX2>Kark}SmB97n@<tp
zV$D|&nT~~>?`W{Cp;bVJkBQrZNp1wL71Bv8=vN!twau)IXps4`40Mpi+ktKWWPbh2
zm364v_AvQP3u7Ap7B6h2Wni6vPWIDL`iE{FqPF+cn8NY~BlJodMuoZ-Cq+Ws&4o!e
zS{v5UPir<1szHQ<o8AayQkQFmPqY?QeR3B%V-muTbGB?bC&^XaNQ^-HYV_{M(gop+
zbA+eX$~6SHgTnm<$%%YXayN@yK%=5?B}Aq5plJ3@i{R_h@yd~D^V!!A^4Iua)4|F<
z0TxF1+9Jz<A5YEup}6NOCq?QE<sj{_i2sMVy9|meYTE_fP2=tmAkdJ;g1dy^?(Xg$
zoFKu2LkJKgKyW9xySoN=3GVLD(>d>V&Ub2N>dfESKd7Rriz;^YdiJW-ecu<=B6n)r
z?frK0r}h}-b_}q+>wL^I8C4miaQCzTTj($8iqHU}d@bZ*3o6~!*Gmu<bzsW<n)MTZ
zEg-_-fZ?rP3elVB`gjXz6SOdwwfa0H(lv(>Po}_))^cOCI;S&bW@kzG-*FMhNp{q_
zX+)%O{qe+(cA-o%8}-Ed!pQ&@CXy9GGH4278ki(9bjHb;Ro@y_(0Rgo47;bExr>uj
z)&!lib_4EXID+eoSQwi9#?>nhCuK7{wnkhK^)6R$k~U71Ey~iAOHn6VfGJv;-CAq(
zEytEdF8YVO?8{vQ(IjFVG|uY*!aUdu-cNW(x&$`|nMB~0P<z{?O2Y5maJs9Tp=nn3
zWtKQ&@|@ztG64U!jw=`2@}A-5)`s56!ngknKl5!I&4(QXlw7~*RXEN~bKGc%$DE-u
z=cu8OTXSyu0g1JVX~{&1s|-}RHUqIQbPg}@u+Te}qI$m1C19+Q;XNOEgV&mcUxMAm
zJz9Wm5obyX&8DMI%*H!FPor#UfX0j2kEAV=fRfAVIu-5Xy`bQIQuJn~kS#e>074<w
z)gUgGAsik~Z_q3<fwH{3vL!SNNqCkXA@#!k+nVpD&|#jWuU}lW52O%(LAf|g5?_r9
zArGR5E6za2YR^~~BIlEwB#8Zkn%lxmqA*-VtSKrVJA<fR6Hdvi8Q#e3+*-!UBg`uX
z7^f<{FGRK9k~LLJt(>tZ%X$z`U?>`x^Jk9Sr!hVYbJlatJD7=czs`GH1C=y`I@new
zLGKdw?Mwyx(xqEgQ4|iICx%ox)lQ(HQ!ajz-U`>*Jnqv;u5+_;4{~%B(9l|q+dr<G
z`d<AThTl}+k9Z;p9a&UCs7-KqC5kR(CS4o*D^-|=9m>bK#i$>HrJqGg;gFBqinf{O
zmBVFEY@t)Se(%5KKr6wdeu&6Y-G~(V>c8e+16kg`z9Yw(Av#;=%uo2^)~Lmrd^JwO
z8RO@Swy7K8rgO9uQIM~=i%vg&4{!7^uCCj&N-sCsIl!VA=f1RaN_?cw@-fzvx>*73
zGlRFunu)B+pHe)ZsTPe|+{^g67b;$DRoaj_bnNWfMF%a_jW53l5>Hhj($MS}>mtp5
z213S^pMS~vNFD~Ix$(?qX%iZM6nyDf0pN-{FO7SY`9s4kb?KfKG4@4WNh?JJxrN~u
z?M(()+thF;hH=?PtDxod1qz`$R8lqsL79<%XyxU!rk+(xsm)(F<OcaQIgw(5=iP@g
zCMMC9d4GC-$j_suQLxdh+<tQ)z~&{_8V@<GMSK6nq47`#O)5ADOLg!pTSv4tHRHjm
z^tM9o5METEJY=Ro(%nzTl&Q**<f~oZ8x6UoeJQNZ`Kp}~a;kcRd=2o^t_UVX9%FM)
z<2PfRYm|;WG5h{`pt7qi<I?FMJE<dGeaW}M%33NIESh?Q@2HOD(bKlQm!H-ibS_z}
z2;}cpLsOu<UEEq!!Y*+hpbmE$D;<}hd#-ZA`5DW<!=noJX6)A9iX)A#e~&p^AlANy
zC{3;R-z3P~ssBO?ZpwTLUGScAlnIqCu#jHn9d?ehT`j1qiL4_&VtY?N!V~2*ckYTj
zQsHnZapjo4d~@z;r9M-<9?l=*&zoQIPLp(<%fIPSc&$4ma^x5K(0;{p{k#WFxgE`6
zMwiovn_Y-em>DT@l#^Cj(YA8`6Xl6j@d<5VC6tFL!v2jf>FarTM{GL~AV2W9%ni_z
z>(Mf0!%>$FKrxD7zf9hlPJ%-;DEN%@W5o1xs)oTIDnnz}@CZ5N%fGZ?^!2cQ>oruS
z1blRli?~?p>dW@u;s`gcEp7ZZIt&E$a&P4VL=JZK;`M{Xo6k@+t~Y-X%xJ2ax8Pfh
zPs>CdlxUGd4>sj}5t4r$`fjz~y?ninLn0kpSw6T($ZRES=+zyIebFw(eo0VTHc%PB
zE#}f-n(|O`)tH<0bL&@%z_w+~_FKENUsmRrpG3zI4={fB8AA1mUF1{5T_Bh^$f)Xb
z3@y*M8$mQ4opfqpfV$U@KUfiF>{+w8F=p`9DzqA%s7qPGp51zkn`Wy)E?#?L{tXUq
z!&nBxOjs=3)~m%<&(U#0^pD_0$EWqx8kOimg82u7ZP;8HOk5mb3&a>@wSW*>7$WtR
zrB1>Shm+H$L6~FOfIUInpcnTQ8+{tVZ!Y)ihXo_1&96?9?irSJyDnkVH+GE#B4I^H
z-I^{KP?}J4WGnX+gQIN;bI(xL9sfDJ04SIx;O^_s(1387FLneXTS@lC5cDL;u&?1^
zzU(gfv>#`*=og((AccVl-GOYBL9Gi>?YxAL!B6=(=uVVue3Qt15~RcDaP(JjEUc(Z
zRnbIZa2>O}q{49FRKjF&jP${L#{qCe!SFwkVpVBKQwbd#2$k8nB+v0hj3f}>?1`8l
zDP6#;SSTYp<VjfGsWE;RuW1NyMX)c<mrRONRO5<Eu#9uK)k<-}GIjcP<n|5D!a>7H
zWd}lvu8DAjtWr>E<6mb-&Z&j`HBJ}7;AgF3w2M_S&HKFtBR&L8TrX-82;wO0bG$1o
z2sBl()6&I4TT%ny=u{+qWd7X}!g8gGm=;2RO(%gB@hv?5J1ITl+hSn@h^m_g)+`vk
zmBWvwK7{x-_EsB_$HoOM(Z&=z)IvROImeYxC*)I+WLB1NDvzetjI{07C{Rum=se1I
zG1-p~w+or4yb1|70muhtgQp`k4rK!*^1X2thB`TMyyGJdwutf)ii+T?{*I9`i82Sk
zSbZl7w6F<wa}XBSlDpCB^oU;<|H;s0?3o&wv4OH15CJt7FUpfLyzz#1rv5_t$@{~t
zJy%w%7PUbw^2!BebW+T?MqKThL!3w=uvg8;9AS4yOA0R@yq%WW#AR`<m7g203Oz@~
zLa>)K&*13!*b?e<m4nh6EZWP5*#CfaP#ddx&PmxMMK|L))RaC^BeQdv;cBk_!7VDa
z(SRvi0?5a)HH0`@nIvSEcx`If+{Cm`?*frvN$SPD-f;K+nv9Z@?9Z12(apibNjVAz
zzkmh$vguB(J~VTX56|OTVjEX=ebl|fa>3>QfJ(}2OIquiZo`%<O<<*ZM<UWpDuhZV
zgQ{<F&)D~ee~2TmfFr-g1aqU(q1_~(`GQ|z33o~DgD7gwA!QDYcY(Ec0o{`MS`NmX
zF(wIq8pamZ>?Fn#s|d7+)DgAN(1yH6Lr=vvjN>aN8wr^YNul}AqDWhEOX$yn*vF#w
z#saoYbE6>FH4Umz<qX6~(xjixe=jnM4!)Oi7Sv1?M|qbN{UnP)EiPLs38gIt2^Sk(
zqGvRrroE?n1*2!k(07THW*C<qI%A2>rY3c!HOrQfqLQ_vmK86RjiZv49+v#!{~du)
zTK!nI@bmXl^KV1k-!qTDH*^K(hJSDCmhXC(liuTPHkTilaQ}@gKPRcU<gfU<`TNAX
z;{GSi8LV1#sp9pqqSmD1fxi;I6!L^xiJVr6%1{BPSBd#lN$gT-ONq5)jEUw`MVwX@
zG+&9mTt)6ffqNurqMRa_l~3YRO_x?J*j+`jT+PhzmU7t!R}Ez>fI$!{T=G7xhQFoe
zq^p|csYZB&qP_QXcM9Q595AO+(_|8kW~4^(sa9F9;*g|PU9T=3r^dDlNuIP$f4R=k
zhfL6}&h$e)ZD1WmGEncS&bFoA-j38nuHK2X;jKx%G*`9Ea{cGD2JaT!PYnNn99sTb
zYHbpfM4(7z0}RM9Ty6+}0Xb>dZa!EcUNw<0Ag8n@`l<0JTBGF$o~EFhWEhYWRi4_?
zRDjl?ebkgFhxOg5G#3WsjQq~`X|C0)(<WuZ<*3F5rB=a!oYLPldM({g)eU+nUsLNl
z{sB2fT_0M<m#f@bT46xW=!d!qpEh&Swiy_Z!(cuZ1p{(?DwdYpU_egrW!q+2`v!me
zE)2+Ffb5sHUmlelKefYv92(q?tCo&f-H!WzKu*rwNC$j+#VhGQAm=E%17W4p&#M!a
ztP7Wn9R0YHa3u;`pbNg6g`}*Nz_$zh95^LcB{J7?v|-))@GkYx?k#!?1z9(1^e4*?
z7|nJm<)ws^?2H*yjGM}`0{XI@)wt`}y@P=$F5YC4(c~)FcwEAy-Ekr4@y1!p-40LP
zY`%Tcmh~2Kz{E-P1Uph2F#EHZ*PAP>v@kZZzZTHAe$q<sZWAo5$=<)f0T+An=Sp;t
zGJGu#0*Nx&G?=YugXKmz<p;K5Eig@;tVI(V-4`9LZCQ%B$;C6sK>8r8%esM)Y$4p0
zgQ!Z#I#3NH+d#`4^?G4N^9RM$O<^@SV_|0v^mSp~XANu34j*(4i^UPXfJd0S5GVko
zmA<4itaxA2#jwG6s2ly|lu{AL-Jq4h@#m<&X~GGNq+ElzgdpLcJuSf6Afn*mpVPHW
zRY)A0K#m?{HcC_<Cjcl5;CY1A*NFtGgqy8I&5A3lqD05492Zs|g^zQ(XT-x`O+O=>
zxYD1H1_2Q&0pVK+Y&dWXU6W|WXvWxhKqh^>j{uBw6fCEavD|UCDgZbHW9%FNQ%bT}
zGZ}#s>{W0ZE4UGH1Fr!n5i*h>s4xf$M)%YsZRJQFv2Tic9u;OP57Mg*NyA7oZfsB)
zGmjqAkaS9ShZE0&3%J5sXC$4*#v=ryJRDC#S<yK+r!bi?cmhXlD3RH+0pu}L`j>w$
z(ot}+@sJ>M+#+)xgOdZ#SU#*kq{)%b8FTPpJcR%gHW2_07_ZzH>tO}(?R*ZcllImL
zZ@CwN?K>z%c@#}}o@sMd-=P+1a)HdV_~Y+Jp|>-68QfD*EpIxfXIg>OlRWAL{pzbT
z%cD+`m0lK_vs!A5Wo5u0F0-IGc;bR_np}*Da{w>Eyas0!o>e2Pay%S&6gAE(iWSg0
zX4dy*g<Gw=stW=2oTC*wYI`)gawL!WsyzBp*sO1KY6jK-p9RRt!CV9b(VQ^Y`*C;W
z#~ru<?&zf7J^})N6Uy07HvyxvPo~H8myrEFP3d7}In7Lyk<O*C4ezFa3gySuEz|We
z)8_w-B~0`mGi$XiLXF4CViwAuonu*1-nVZhD$AO_tTS}2Zc)vrZ=i59k9#T@VmWQq
zb*-+A%`5D!Gj&bYVQ(=x&mO*@fBJ|Ax?8pQ2tWg%a$}<EvI59iN$tOkvM5@ytDreW
zgX+IqAvkUbe&4WU?h#{3sdk=OYF&DV%||p%zqq2KWMCO%2FmN(ME?k2Vnrc#0<1DE
zfIMe?9ky&Yk>a3lx0mFR0~L{ZaQ6Af|JH8)W!&6`8YA<?x`0^Wwc6I}%ML)szyxf>
zhm~#NHC!Dhyux3jNBRpG=X0G3hS<UYyvlK6RsdBjXL0DF*=t?ym)*`^?~h5@_&$=#
z8VKhU@)aG+|9s<wFO{k`whlR2<y$*o64|mN7;w%bVGu-#7e<i_JCa5K1~SiKW{fmP
zt1tPH>Ss;bApnJ6|A4}fK+0&lYq(vbQ~JUH@b<of;VSb5Qpa1yCVf&C1JKUur2g7~
z&*^FXrhwAYk=@f#m*Is)P@VQ0!>`M`*ov04xkDKPz#sAGq{hKSe(XtjCn0b^t=F&P
zu)E;YFb$2HfW|BUgfM<Hc=n;g&7Y(9k?nW20=|Z$@GGlfIbHElkfLLx8ooU{I{q;I
z5zrxw^+0xXqdZ#9_?I|oVyX2EMG7m)iTZAp{<;#W3X?PxeCqP$R_piVUDkOix&dxS
z1OBHAj}Ay*8t_{j%DZJaUOiM6CpOjqI%AqxD0V*?D{4iC6GAO;qOl*8cXgBwBo_qW
z8MC)5;4yXJ7Ow%kHa0=Yqc$&79Aak|(I^d=J3`YBnG|^0MkKrT4_`k5;5+|_7~+vR
z%+(9x8IMoG#{uO80q9Qfj5x?g0wB4y-q*@r_&88}<#wqdN&6V!2Ucp?$|1Y+ZJi1&
z3zYv3&ws;{;?*v=j?JM}(0H&0crwMzcQ=g{<IjdiE*vf6^d3sW!Gb3W9vAhS-G@ES
z0obCi7-Z5|-GC5$dmQtHxU3Gv1kTi}oGh{~V<c=$Wo-DjV!@;Y{1CplQAsc^BICWa
zG?0lEnJCXR+&VW%9t+X;-cyNMl<*Bw$Y)|a6OhUi;^T6SGvH4=gutN{M~$e<hCh>=
z33vABBfXWNH?`i}u}-bcY`Mkq+=*VJ^Uip_o|fagLa!T4z~uayQD-0m7LESGxk+yX
z0gL6z!iCx3cWR{q{l!a*(NwNayDN(|=DwEDQwMQEibh`#(p|IP%|=4;(}?;S(A7x_
z_#_OI`PYUP6DkC=+$}kUKc36J1Ji^oLrTn4+}&PEg@&t-?#GLDpRA%h&+aBR`@Yc{
ztv!2PAIw%*t*^aoOj<}CF^#PXirIj~Z_E_ujjHUbr%Vf<h`YrCjqX*-g%L^J&P9;l
zB|3>Bwmm6U+_BF%iD7=YJ{Q9l!)I%~AN<Ku@kp2M7}siBHG)-$Z6AkPh}<YGLFPK+
zEJf~feZhpr;$|yO6~%ce4M|XUk-?U`J`^uhea0!bp{a7gmCZ{y`V~&6GbmzGo}L#^
zKf-w>&pEA*R}TIv9xlWCH_=s*|EP9aj5asO<sJR}^_7w^h`>!*6v<(F4Eo`}fSl`b
z0l6i-Y(ccTYgKuUSvNJs5q|YSDKP?fbyYbot{Q2XpKbxNAKY&=w9S6F&z%UiovZ7+
z&bn(E;wj8#Yv|>>Ynw)K-7aW5AXI2srn%qhSWi6FWgCC5yZr~`%t=|?Mc(Q;^$>XK
z--};G)mA@GNftX$Zkuu=9|0}aG{`QcQoKY=h}66e9PW$)0^K-RT+q1hjYA|dlCo`w
zP-#FE`hC4bPc(i<21G~IpP7hps*AFpxrd3TWBHodj1$#vOZ3q3JRU4k%*dThf=FT`
zf3mV8=cxIR7X`Nb^7pXALiH<Vu&$q(Eudn8PDzrcNw%xoKnpbLA8muQX|yfNTW%li
zaK}#23@UC1!NC-h`jurq;QdG*zjK|+lZHaQmWH|mnxnd+06TB+VqWO^Y3<xCsa>zy
zoVRo(spqrvAXcsyIL&ONGwI`>U)9Ai0>n``A>xZ-?-0awN{9s!wX=U}2tQmhnz*R~
z!h?}nA2SztYy-CZU**2s%o$ldW&Owly#SE>bT@7Tv8Rx;LH1{F-Dh<?GqP>Mu`(dZ
zudlS{O-tkffX{8L0LrDopSy)XDlqmnF#g`}-I6d%K)xt9Nlx}D-W_zk&jI2Bf*1o^
zxSRad%PH@WgVAokH_;DS0tn+m6vHpSnQZTPiKC=K4HYE`MLr*UDNzmx;RePLm~YW)
z9T*!5-v3~c-vCndM5?i8;bCAygiwomY5lfx2>Ex+&s2pmqq_xyu35N2*y(!D-w{$1
zm9f}GOl3q10!XPsXmM94xM;GzN6VPOA=7u>I}LVhJS)X4qHd(2-%IlLU+5vLgT=@_
zqWp!OWDn^SmpMC`QHIZajNO(v$OD24Z9rsJ+5PwD_us^vw%^4hP6-pT1qcyd#zpAo
z=_YFTAS6ywsAN%6rbx%puPKs-if>QzHzjKQs*K3AN50?R`U>PUp~ue3)^g+kkYPjo
z1ya{v0iLo!=}v%;#K;s=`)yp3YMKt)QDncNUJCZ{k+FL@N;3O6p&2_Wu0p7xngSm0
z7WJLLSsc3`$(4DI`9$S4b9(t+zf&0ChM-ZPy`dGjm?)T>%sAIaV~Uc&7R|e$$WjwV
zqsvB7J`SP;F%9uY=Lm%n*M=%w4|8twO?YGGeQ)B+W*ho5D32S0PLvoU<G>e(hguCG
z`C+MGA~9yat6umaW14$lP9a{P3?U^&oLDz5@cINf8D!lBVRZt0ZFlqQ%_|a<ouk6*
zM$5M0+%d%0ovkOX&6iQ%7b-|ez78btk@6BJU$IiH_EsvfXev>Y43(p<W#X}TV<+>-
zFH}6mS<X#;%!$;``-?`iDylDG0U*o`4HG!FPZ$H7dCb(by_#k2lLbu9@dbE1GIGbH
z6hf*wh1~0zVjd`m?RIH&8^Q@{&D*B<H3PrdtLMI9lVP$aHI+@>MJfm39P7_Y>9VD2
z^1j;{)-g{I>%h!%%tEtgY0{eOw)9lvwXpYWdosAXzpfI#*&+9>taw{D27+%gS8urc
zn6W*bL7yQBk(DOA2;3l<;FTtk@?Kvv5k)%w$pSt}BV3$Qh+rJvQ%6xX?tHs|JqR-e
zkRQKo+14@3jWO!@(NC8NH+(1Z%?V|TUX9MtZed`?_w0HyB_2p&-}+i+MEadW7N9M)
z)sw?VyFrDrYtaTDXbQT_B8cUOnv=Xs9MV1y5S2I18WQ&#{*DuG9(w;SlwcAC#LOD_
zt`pY1!VG^9T_BHS4TlHotrLs1-%;zHfK$CCMoSb8MRD>1;B8#d{p10nHcpJ-EdULQ
zvT;&>Qk!F>bSX)%th0EJPWZ%a0uT+Xf9&ee`u+;Y)OofMY0~b`rExDFp{8)m88k_7
z2#j@4{1Jm3=-QkZvoB4H9cTRsVig!JPWMMH`}63#Cc=pG94f&!C#QGfI`3O)eA{DK
z6BbasR&_E(qk<WYDRNh$z`sxMO&w8qCa+6xWy3!H<_vJXw7Zq;9&>1ekjz{uCKM@r
z`Q+P^(!WiOzn*Asy0%i#18qy4bbNj(OsS`KRG}nmdwcrcXHRbnZ||U8<E7;JxKPOT
zK`8(c|I}+Qn4G_O3wF-g5w51c!w{C+mwWx5aPdZh?fpY!u5vEXFa13&IlhrEuUGv|
z=}HwPe|{+H5iy$#Eo5ParqBhhWk?w~hY^4$VL(m=N`|WHp7(s4VA(G-gJUzS<T;%i
z_u4{(6Q+V@(xF$6MyZkGZe5>M7?4Bo_2a3}-c!+TtY;^Z;W@@1pLGoX&(eJL{lPFG
z=dDt5_dCPO1g$^o6#ibLR<DfT3w`%Ku0#5+S|}}Z?RmNUy=N*it}?B@94(u9#iuYK
z#bmV|sQUY?z@~2b9`wuE0LUk7pY5)PwtdL+%x9aHf}@k-g*OTY<XGL^55s_*w>`e0
zaj*7D-(WyaX5)e0KOhJF7R8iX%9zS(@5S$F6|1veE8+R7u)}mz2;1Jx3=C6mnAc!H
zjzH3RsSsRV`;%+9$sk}E?H`a69@PN{19Fa|KxNbjZZIIHQ|?VC%CYdohfdrkq#7>>
z1`Nni$HTl9CJ=9Z@<}0^3{lh;D*Esb$ayQ%MKIdc)*|E`06)ynPYMHa(y_^AMBb6L
zphl;8EHqNWfSlTIR05*(@Xe^c|9~92kWTs)(cw~2Mi`Kj9!s|^%09}&g8mQ4;hyS-
zvfKAGeh}k|7UScLVsjJwFw-#E(#Qt`a>S$fTg8NrnR$=JL=$_2(8a~e8U=itL}5VA
zbC{UCxJ++>h_ASuZ?|;1xPpC?1X**nGLpm+{^}*-S_&e40LVWMjuFg5-W6&~hp5Sk
zrWGPlyAMZy|5YL`NUc%)Y@}D=xer((YBiWzBlEs?9|?9^sd64_w()fhIm~Gv%et1<
zGeFXM8<D0ALoG3gJ4K|4Re~1~rC}Z}{$A?9DKwt}yD|=rzOt-dd%(j!+#(K66^x?y
zi~#%lnj3wmR}#k016fDCzoSrxN<wTa5$ox`VrWZ;ZU^{-5kt+1!u1FJjisSc5V%jZ
zQP#YD(IIG+3w=xhpl4&Lc=G{oNI27eKXO-?akx}tXPB7Nka;{DPfC|~Bb-|tV(Rw5
z)|FJivrIW(r_Er1rfXD0?^pl9Fx~|K4skfY_TaJ%u;>}dgB6Imf#9etU7#NIWiTu@
zU8E9wC@(tl%l@F*bf5oz&`;lR+ag49-oE-7wz|C7YR0H$`1A}2${g#6e^zMgs1y%4
zB264g%}weTnP4WoY@b`|lUd}jOO#*AaA5c-E-|vXwlw5E%u{<12OQ34Jv^iyh|yUc
z>J%DJ22zEDyDh-QLxR;-ggh8Q9%XP5-mLQw8MTcO#)Kd(>5+soYG|!Fvb{ATy>W28
z{fPFcM1p=KQxTlTbNDP|h~aaFsIioKs{*}K|5=38acx-=M20sm)(RWs(HfG(Dc_mi
zC4r6B;a1nv+t#Zu|G=2?WR^v^0M8&JRoy60WgX66G#Z8v<XZ^%QVGHg2TneRO_+y|
z9gkKIO3_z_C^jmrElM&}!q06F{sIs2I4LkR;&>YmFzknXG?wC?RH$Wzh14qJ8D)AP
z5nhRKY}zU{>{IE{V<-mW{>Y)|7E+h!<K53l@npeI)e`hDZpT=GvGIFD;uJa8sQBlx
zJM_-`bR`Ca<R?<u;pWcT0BJMxa6aO|PYVEj=|Jit5RP#&6u}}KUwX0#d5Qs0nItf!
zo+stuHPX4F%&_rR*hxk&1O#U`u$GQS;1FK82*<sTs3kf@m!D!o92^y{>QbaevMRaD
z_Gd|-sI?Yh-WRl)GO!O07yK>Nkr=eZIo8TJLyyq;zD-rjJ&EyST3$+MdT~?H=V6wc
z(E<Trk?%06j#`lQboHbReb!gsO%Q!!kjwc9o&_>Hwp``lv`?f|rSjZ&{E<)S<Dn^X
zb*z2f<_d8FDo)}Rhj}nuC5UKM(L+2qv}l~eI@GtS?`O0s$xE0or@V&2?48}L*2%m<
z#4Mq4au}sTSfjksy9k6YvSI1L7{qACZ^QANrsKo^KnV#{y7LBVdgs6xBM9+-?0;(o
zZOqk5_i?8n9dRytk7~7&&D17pZs4oDJ(?oK81<b|Z0*%@n4Q1<tL1;9qqf<Fh^x)~
zF=}KxAX;Dfb2yO5WWmUNdW18`WM{Ctb>zfeGZcBIZbdN?N9q6|)vUZ2SGQD)4bRXS
z@}4dj_Ve?#ZfLlS>zM9F>sPPZxj<}q`mBiJ)nq!0#kXT4KF&%RF@nEtbh<Hq^fLw%
zHolb;eqR?i{F*)rd<hTJm<)Z3Y^)Ia6@Df3T#gaI3VUD3EpU6}O~t6o#J0g~<G#sN
zp}B3n_d|<uzk{CQ!(vn@j_{E@$Ohc=P+AjZpx+S`BW;G9pTqRgm4f1s<Q60{R;Jh7
zr9R8gcb>>_GwL6HeUl9tmW_kYiS7$EMhX=VBG#79{Sl05JiJV~jsXT5eICY$1HPeK
z$8ZX&xd(aF!pk>~IYZ{yIwyC^kj__-Y>XAy;)<|;1idg#ZEYJ?XCblC1yi^i>lh=q
zw86dhY1iv0zI_QJ{sNK{-tfLgVvkdxrvo9CkNMNVU#=`IUaR{XkG&WEgHAAl&ICH<
z)Ci)}ScqBMBV9Q>G5Js|JVZ4-qaKx4Crv|)T&yp>B)x?(i9lm0O&qWmf3N6K8zhGv
zyKg?gX8bkCcz_8T4H;wHyJ&MZCd$En3hIrpNvVN={}Lt`KENX>Ted&-eq#&cx3;T=
z6v6oFH{-}@{jXo9K$seO4hB+-vzvzLh7^X|&c&ksok;MPsIP<lhv&o5$HUwn$oYfj
zNM89`&AKJO(d3v>Dy}0{CAa<5%_R*jn(zi|#4NN6R5dIubS;x)qb>9$Ka!VQ7!rQh
z8@DiSZ#6izFg=Yk!n8CeZ#7}IwDkLCrf6y1-eTcsX{-6oD%R3ovBjp`(vkU_-MFRG
zZnMLwrORvdCrm3h!6s*BE04KoS4FGOzZ%>ft-Q;lJ!7qW=gPgxt^7ixea5W<%8S38
zS_K(K`(s*%NH*y(TZit(1uI&I?>0fdI$B41d<%=Uj>b$0EVqumjfxt#j+;x0Ikk>`
z-H#KrF@IwdUtpaeX_JiD5@BeQib<;eME}v(CjFM;$1j^8$Ak1&8^uMNU%OVBh_<<F
zohjtD`R&m;g0_X2b$N!i#fTVM1ucc`ho(4(#WZ^b{k9c?c)!<d9ZwG{nC%=RY^xNH
zdck%zjz?rDc6FAP^&WQ3N!X3CcBa3Mn%C^Q#q3&N?K&sz+R5!t8|^v^EV^jy``R&k
z1dlZokNaZn*R1Ua49y3V>_<ZdI?C-^+mA<I?E`H-jFX>qp4(3fI@D#^|6$gjmUNiE
zO&l{k`Rxd+S9OS2c33>sS*mw{u8||JjGy?eo~+fMtRp&V5u9%NoosPCGDw_mOP=gl
zIzG6a?jfG+Cpq@zogR)KAN8MR&YYek9iQHw`oo`{8y;WKoEdSRUC|t0YkpENKfB#M
zx(odzlX&(}e)L%XNxb*$+2iPC_mlAT8I=17K;-lRat;SQ1WBE9tDhqb93px;v4@-^
z`yZkdo-@^+qX`|N&pXj?pJO5&Vj(%d!@t0pIKbt(AQQj9_dg)8awc%QAd)&DPQJj*
zyCA_jARTZ<nYnm7u@3`o;NUO8-}WhKFCRHB-zn`wv@RdaE@`m#X~Qlr5-#Z{_TD$R
z9Q9l>e%oW(a{-kdvQ%6^S&6Q;uP)i8_Bf<m*VV4LkoLGeUDtxIcn5a*3a{pBu0DkA
z3d~<k{Jj#C+7&{&9>=>DLE07NxgHX`79ZG=uyP}WTuDLCq?6rxT(4!NcH{=!+NZA-
z<~J4Zu6gpVm4(h!Xm1)oH)`{X>RRp)&Ku2&Q>`%fGP4_<%s;vf?xj69`a+`ydpDU^
zH%5B{#zY=T?`};ydd;LfeyH7A`1e|R-bMu9T7T-bDfHk-ys^_dU6}Lmue)_T>#;}j
zRKvS-Uhi??@l+MNbK~j#WOc{je&?yx<DPs+oO|aj)#Ed8M>Ku+1*ymH?(PikK473b
zkoL34_HFRD;}ETTXdnB1=s@r1u=_L1`v}jo$cFpN{`=^{vzWd6o7?+u^Jj5H5BD?=
z@kr+hQV&m>4?lR$lRO_@LmyJC&Ql8?fDI36$>-_w5Ab^rzXr}TksgtV9<%Sxb9f$6
zr5^KWFY>J(F+3j&wJwU1AF&G`OTsQn2Oja}AAdJol;1rPB0W{^T~yINz2SMPA-b&9
zdLpxWs+YQK2z#PPeroc(Y;Jg>8hC0gylmThqP~0Tn7`~KdZwd&?nb)mk$Ps(dhS!&
z3-f#qC_A`lJ{W`^3>7|Ce7_%swvX*SgMywXCUz%@zNB6}{~=oGmwMr(eVM(xn)7_&
z342+fy<RMQf$}%JENfk_%)flxdsz#+UPpQrCVJfr+nMHh4OV&C4x8ArdSw=W-6Oi$
zPxc#feLbAtIU0EFnSMQ)Z{4}`a|S}s2U;&^{TcILuZ(7|wV;~y&wY0O0e=4X{)AVB
z(Eb|e)2F0oq;UWL1>~R-vHu6i!KGC#v%dJ>fgBW43_6=j$S@F~S#5uCNj;jvZuO_k
z=89%Ko!|5F_~8Ez<RC;=n2aQXNFvH?Z{E+9{ZAmL(sY0uLVsgFU28jE?QnF<w9@FZ
z_vg1A&#qdiikd3*(H+Z1XAlw|vpw{l)%2_7L_zD(J=^wRJgr)}{e#O=E81PoaoRn{
z{$!3+0<*(ot!ck1TaDw%BiAtu$kCcBi@TDUDDu2IJ$d3e-zXp|<(7Hkz1$v7=J+JI
z=pnj7<BnG0_`?4W$RUCl>gQjbZw(}{d}`-&3;83bx_A2e@%jF8PwU3;S>W~g@$Tx(
zpYuiJNI`-k5P{?~IOt-r@TWfp|2;SaClo151g<_A9Qww#kuuDjX)q<^KR`~mgoy~D
zM<Z1fQ}aEQ1VxSo)qj8-)@<pxNY=;ucX1*#bboF6NW38NGFuIQg+HP`Kwv=5BI)-S
zdN1lE9ovXE32=N+KI#;cNWNWdjhtHQpEe~;1-b^WSJbJ_!+f+EM5$i5X<mm-w3*yZ
zC{`JPsQlJho+R_MIT7z8cQYAf+$poa%ktC5g(lU~6{Ongn&mQll%+4qj$F#l-*E7L
zUs8NHPY=k9eSBY5)vi?nBf`8(UCNr@GgP!aHk1BtME$^6m3S~bUorH)rOc#@@QJZ@
zs@~n+YE;*UsosE(fvI8Dn-ssU$>IZZ(~e{9Ny9-&OL?p^Uu0R+#qftuw(D<)ncE-y
zNKf6aAD=2(_YXg?b~Rp(kawam*#GWC`0(shfP~e^+D9<3#M=ADF1@ffPWPE@(9N`!
zZHU@v(Rq-*6e_ScNYnDnUU=$_dN$0pjBYW)deq7hLbv|RG0Cz!$}uIuLhoA2iPXk9
zEw<!SF{L8+<=2FQ-j_OGF{L)H`6`VVt_2gLLic%#GzZ2%Es<^9%dOwPaIZK|-?%Tk
zFJmk%yBxK7rr9uj;n@g8OX6AoN@|F|8pP0kuN6W819Co4kMr*Qn7_Nu|8Cdbq@1Al
z%D4Z9Z=CNS&xf4<uvm!G`{1{jU-Mzr$lBZ8f@Z%Drwm<!AI?f@etkH%I$Qg2kqIRi
zxYWZk61a+@$b_{Nu&fK*cnVQ`yk%7~`gmt&l=<-<@@f6!gO)#q;3L*IBf%$;%uK=O
z$MSW-7p@K{h0yEaxRDSPyq+lpXsYXY#c?u$qJiO}xH{q3CykKg!SJ8zIuTVT^|7MC
zh$>uNs4m!gM5AD2wz@9Ncx4?5bV}4G&Tic5I4xRvO7z9rZo)rK>MYTem<^mgB$rOA
zJfoD@KWcl(aaELs(5Y};IeV$tRTQP<sqk%TdudeJ<dveS2qifC-n-yf)s0XQOYAq;
zx>rSWKbsOy7j?5mjzl}=%@EAe4LsXl#CSjmNcM`PB&({7JfF=nwi*XS_zPnL1o8sm
zWd<c^2I9hf&F3x$2W8d<zsI#gJn?0Q6q@_vQ=YdMAVWhcp@Ruo0@O~NGQ%3O{fR}s
z)Rj>2p<$iNfghEv)HdoeBL?GrNsZ4tR&GNhCe3}xodT97Au^*DmIdFC#b`L+Metdw
zx{8jcYjf75%IIj;q}8w$aQ7_oI(pZnXS5a!^cIh6D^91MhG6i{(<_zIU1i*k$_VTg
zPkfuX`t_P8BX~!z9CLk@iTFiE7^!4368}026G2#%=)Fof=XEw>%)U5Bb6lkEOeXOx
zois-GRP54KF09f|NK#hS^Cx~jSmQu;WKlKQ62E}$WLMtiy-M0z;!nQWVo|T9X^U6<
zA~=FW<uD!f+(W!#nbjTD)b~n-g6>HwKT7zEb!RmU2}(C-4mG6~H7YFe%1l<bwTDol
z3N^pn<83sK*cO-OB-#neI}(rdk#w|L)^IDlX8#&KJj!;wYQzQ-9MhxdEpU<(R%NOm
zn|3W|4;bQBfA8Ber+<<jF(iykojs=HTh@WVIv@S<PpkvAb*Gnb>Wcd|ZFP<$=i3QG
ztA04VvC-4RUn6YLpE+?9S<qWo#cAy7+i;2)5&uh06f~s4jFY;o4=+g6ERcBW2Glk<
z`h(rF*thP{G$MNDN94Cjz=ATQXLy}K)JCR$=G`@Kc&Ccpe$lt)doUvWv_|CpFv|jb
zST@>zA?kd_I}ZrdG6qd!b)odH2E7>-L=swX$4O#+pwr*{V?f-qG7YPIoHxOOs$um~
z&aH&Yj0)go-n;LsvnlJWZ1v<5_qQcnM5Ae$kxpO^@U1P!dXasgfNDF65V{<O>zg;e
zeKVA;b{Ri5XHHA{EnVeyH?dfskIpF7PG^q&Z{x~N@s~HFk$6`rxtf+7NSI?bNo!Gy
zt;#$dsaAGLHLLsjRvD{rCLE@(ei_YK3HeM62Zq|FqpYfnQ7n~2XkM$oS+y<~B>AKB
z<2tWT*GA5tU^-RusDRHvQ^|kncQ)aTu8e_g^DmNFXN{YZn<ZPVb%MDn#N#rXRV}^s
zrOKwc8)L6kyZ%>_g$RP%N@_iOGa<soq5k9QR0AC=q2-#Xq+82k1BX9`q|oK;+1q-J
zWrt6hge#k&Cyhg^x~`ea^#_`F_KT~IYwe_KO+W5hzv_MRffBAiNS?Mo80h;$mz#h@
z_bw=gPKV@Vn^PM1-F3@OVMat-I7nx`^lJuDMk}pv=I=lAtvTQNk!>FkJPhvWxg>ND
z?a&XL4eJ;hC3mcJuq8kE!8#w|*2(sOa}VPLE3TOo#QP#)=aUg@#<>)$-7;E_A*pL_
zm_lz4-y}WGNa(wl`V$}NNL|b|8Jbr3ul9L+5xwbKlMqgRQ4iK^K^j`~=z$&Jq9;79
zJZO5hutc4B5&d1XO7du@ZO!mk+FV0{GIUS~szhk{RuHe>b0G@a1Vh7o`!Iwa&;`k_
zh<cuO^T|9WXy06CpXu(&_)Csu3I-NyeJO&hKXSE^-*$;0@%d$=8O-F|wLlU0CUFQ?
zt^n};LW0O7u%>2ho7-}Vwi63?Orz`e$GHwaCST{+-|`)gyuyO_F%`Z=d`4S8wDhjU
z>akpmJ6=v{2Lwy1{f_;Go^L+|0EeN^S5T%GLbHx11mmagV$uNc%OV9_P{1o28Pwnx
zlxdXj{1-rR<L03I)>#}L(fEZLe9vSIm|X+;g#uv*f0`6P+g{}Qbwrnq3$LsP2gId1
z73BBmH$Sp4G&5Pu#W7GfP^+`xn!){CS?J?g9mm1&Yhc_%sOYmw2u{2)Ry7zKkrEws
z4I6i}m5dUX#zexH66+CsDPi*L7QqdOBuE;;v@{{y%@R-Fgcqbl3d$Z}>V@<g6C_bK
z<$+14Hc<rO$vv`(NGQk(l#=BEZ-0s-Hb%UC9Om1me0RHsz}-u=mPJZq431A1H4h3v
z7e-VUqe?;};@-kI>=yIQ0mODgsEnyYCt}ru<<k4$<wa>@<tT!3Fix{YM@<1VK(uE{
zaDnM<7BWr!mX16eUGG-iF^DN>3m2D)kr1AJ%@`K~WVy{@kyP@w?tx(Eu>L}T;}m5h
z`CGkV${r5}#%>Cs188wWcukFP$+|dI&A4cko!y{+A?hHipxnIZcXY2}T=Jbl=5X!{
z8+5gQKXjW3z)eoe3nOyEiE-zN2|~mr^TZV)5}J7uh7d{1JV{50lt-SFA4EDdPdXMN
zlawd(3nE*PCtD7Y-34H_Lgf4N<i{cZfSi7FO!H2_b1*kJK$Ke)v2j~r++2iYTcls<
z1d^}HOs&S9uO>*XE}5^cNUfonuVF~7X_>F-NUh~zq0TL=5=xE4EnI5dlg5h*2*}rd
z-Bdx0(`u*I@6XpCr#6_&H&~-K+|4(1+0nhVxG#ohgcGLO00FFfh|5EaT(VATsUMH?
z%>-%8B@4_IX)H7gECdVSAiEb|g{kqO)S$``AxvSK)`(>5U|>-`(H~)}OR5JpnrnR;
z`~Cv^aT<rY0*5tAb@l+uIboLPV4+%J5jcQQd9O%HK3rA-mSCW;dJpPn%3qC^*Bb?H
zinQ*Uh3<y59)i>^q4{(ITb~Hc0V&iBqEd$PogOY(E|?)O;R1~i#cfT|qrcF1oc7CH
z;g_`?-Ox@Z#%$q15H-F99Jo_$8$rXoQwSU&4DR%zF-8s#I>&$)auS7uec45F{EH!7
zsAW;8BVAaMxOQj&9WK0Uqy-2WfPft$^!P5QT}B17ix*#<cEKnN2IR~Y#jMfA?!tf^
zx^K5d-~9H2AA2AWOAvM^&nr|cl6+rCJ_t}|!Gzw+Iau^fk^YBf@ede~V_BT!NS~}p
z8y9KqdTRlfl`BkK6i6k^h29zDP5BA8mqXenxxYAloIV2v<gC&E+NJl1%=f#bRjQ_q
zC>Q6)gcp<-hQqh;#D#~wr{E5YbN>V6D8A3vJWP7Dz!lgMngKb5Qp<5hI2G)CAQTa?
z4t_^hkYDhx?&lwn)Be89aL4hs;8S^^cF+L4JOB<L3@8ghYBlq|G)u{`Eh8+g`Um8c
zRx_8zmfNTt77DuAig0(D!Ue!VI<w)9a;j-+U_g!^Lt|(u>_kQDu)y+>8e|?@m~zyl
zNY~U319D<ZTgMsN>TNCSk966MWLFs4yKUND{|AtR$=GFU-LZD4Lsr&7$k@YO)+5N+
zD|xKPU)oItuKR`1_p7wmk#WGIY{0Lqx7x1H+obu|*FjCj!Gf~ka>kMRvZ`3d26n_z
zlFX4g7?8s_zI*(`@_5vc(d@j;=&)=OlWB_Z_mpZOaFh{^MA#X^G>QoS-x1wkAOpBT
zU=AP@me)l?L&L?zB_$=Lq@;XD$H>CM!ok5IC@4tFFZEu=kV(^-S<g#CLPAbXPEAcs
zM@Prp+}zI2&cnmQ$H#}oIDpM6lHKk*yL}<MeL1^*vyOedm3_RoeLQ<&r%`H$b99Dx
z!)%a!JS=1y8yg#*7@v@kke(Qyo}T_Av*<^4V{UG4Sy@?CRaH|{Q&7WV`rLEw=uYwI
zUe>~M`T9l4@^jnzN!8j*)7DEb?CKjH9UYyTnp$37?%a79I(V5md0jZUU%Pl+et>Ro
zu3zr2Z*6TI9UUECzz&L_C-<+=+e7Hf$rbE+gg#tfz*3p8fBFAE7ZNl;IY=2BKo=Yy
z5g8R76Z<XhdwfFTkEG<3)SqeT8NV{KvQq?L)a{3y;*!#`-{lpRRn;{ad|1j1?`m6G
z+uA!iySghRk(33nnFW*;6nZ8mr~XXO%*HBUd{h8}Ksd-iKB>9wo!!0tgBS%VY#L<%
zqZB|u002Tfe0+L-dCj4N1EgRBhXV=D(}DZW;DL^R5!GW_fGnnCl((==r)kc=i0Y+n
zkgyph;4gN*JWX}}NHQx6*PAJ0eOUwiEHL&AKw~shIJo_oGJ6Azq#Sq3X(3(&i>SVw
zSZ{1ut7a%G^Ewg!i>OZhOcCDTuu`l>(se=@ssF8~{SitBIHxa)z(IPa+78R8ve4!L
z4&eZk=Gp5#;do-zcVN+AL`+0Gb@?XtEgA@&wd1C#sNqPKSj$J#JU5Pa-V&vTW6gE{
z9~o5!qw&_JtG)k~QC+C9TOV(0xjTbpR4J6&TOa-_qT2R!cm8)IQ|W(3R3|z*pilrJ
z-NyeOQRUv>2*#GA+x)MHs%6n;D4ECpW*GQ?i>MZDMKad!Z~a$9b<X;44DW8y-&leF
z6;Tx@wAubH4U4EkVHwqf?F3~>`kh2|O`Dw`+LpyTN%|fKJIThO^t&nl$*2|-@BXx}
zKiExk>ZjjJcbl`>%lN!oy!XrZ_FykF0P+2PRtTZ(es(xb2_2^*@&yQ!YZTCv$1xMo
zgC)vaWv#9VaPG;=3Vr_`od=M8P#{FT*;7<je<+4q)V$qW@_TN$1go(B5C=Pc>9Dkj
z1CV_rUi)fmUnGeB6o;2de#BVBvt3fgFFSL7T$eDH)mwYWYr<5&Fb8I8*ycoIuIGuf
zQ>@xEO=F}!D<MV0KAB@EgIo`jM&Y&1p`D`tW$$J|f9&oq?>Lndwd*Q}1Xgxb@^78z
zp*OgkLwn}?N2IF=Dz@PJUl9cc2eM*~FNf#~%Pxl*8;&nWSO*xdMmgv0uf}-y%C5!*
z?vAe}*n-cyCdG*yuBW7Ff4fbAYZ*DG;KiA4X4JJDZf3Que&5XLd!F3P8;3F7E|@1f
z-2Tg`a?hjdZ`>|B4KUrUxXokmfV3N4ZkK%TPVUwNkeKf`LWs&efF88v_gl_H##~!Y
zq|6W7iCT^iJ1JJo?r_l@zXDM+Mlu3s)1}HE4vGrP9}ml*zlHZbe2hW(@@{~qWmN5#
z=7ZmNr%z{{NJbBE4I?k2*ugV~&j@JR3Ib={QY<gmGg?OO2qQ*uf#}PaqT;BFTE<+z
zZzuIWy*}(03N<10nF)ial#VM!ZXNZExt?}lY2nxByR(~165=3mk`vrx-<Yk-RVEzK
zVCO4PIUwkB5azB`CmQ%X0An-@kq5c;*aD2WiYJaGYut&p`z@GGJ{uJ+tmF7Az$=&z
z4k^j1qoi)qfnhWo)3cHL@{O`bkZ}-l5^ejDNnDt;d=75SZ7ZrR3!-$T!NpIlI+`t~
z2<=f*T+h8;)ZKDheK$QY;J=?BY;g2&en3e;2oMNFM@NTMJ&===!)hLwn3y;@IX`~<
zC@Lx{D=Vw6uCAx2=k4tcoBxThhJlonoSdAJl9HB|7T7o+A0Pko=g-p8()RZD{{H^;
z_4WUAJ|jT0z>%HSzpP8j?T^}>R!nsr)^D@0#Lw_B(w(FkNxlu{xeVF!XHFJb;v>t0
zs>?h^PWr6}-=58*$xiIodXG8s6eDBw%2h0%(VwfxGq*qk0)v9>)Zs}8;5Fc)KEoz1
zowua#7t4@;6W1}6@C|h|2oUqVpwJ*e;)i*1`oD?GL!|-4B!PYU4j>@N(=O`nVJ;Cb
z6DqG686C5)gFQk?5U`uxG!Y_n^{%eL^@|M(4v)hou2eJ$p0*ev3DU~?b>XJyU%!K=
z=Vu`3oCctbK-1Ogjr?}C=R1}(Y~rSBunB|Yu@Nt9iFs2h-(`H|AxVmot~Lit0t=vv
z(piB!fh5ra!(|}$fmlIIg~OG_f;j*RgPx@?wrjx@6PI21_E4=&qAn0sxhN3lFAx<Z
z`*!t_syH-Xu_sakiJ()R^bIq3a=7jUwZeE{IOD@t*;<k;K)}|1eFaJ*57X3J##?a!
z00p1S7(b@Ms3X9AgG{E;MZBlp9_Tar@F~7ANzAA}J=MW#FcZ{(J4Ui~FmIqHN4V1L
z!N1VBK1^P-RR77UDL6BH^uyxW-;odoqy``M%e~4ZG}=?L<{SAx!D@wH+Mb4v8yoI!
z729b)FKopm8&&KIJi@*|I}*0_>hA4wbtP2n|JW}00-)(KvU=UY-w2dIAJl;cCQ^oH
z1$|@N-w5Fq4%a0vDVC!AN_b2CZ|*M4g@O5D)d1%)T3dm%E)rXj!1~77DAq&Tzbc$_
zyz4QNJ4Nq&1je`je%nEypN<pvw#t)|rtw;hf6H|MaZ{#&>?96qL`?qBel4*0sPAF3
zoO~TZZ)s=lXSSP~lYcPw(_VMilE<lEW+A<I#)j75GiL7IFP9to(aZosnxc>Nw%SF>
zVLwIpa}>A^t#j^0hKusP3D_PerikVo6wtW;q|b*24*x7d{cf98?2zL<P*~QyTk^KD
ze`%tuwqz;mx7ns_LV0WG?vYd{qTXVq;f(Du-(Z32akVdZ)J)AJ;``r-gu|L6^2q<a
z^zML^aB={W|841!k&*o$mR?X$(EoYq9UmY6zc0Ox|6Y16h=DZljt=Xe1FW%6p`C9;
z)F?YGYqMPFYt3bAfE$BlOUA%3MC>lW`yV!cWHk{00bdIMi<b3C-Hq~@HZ-uvaz&Lj
zrmMRq5afpkAoeARAVCQXl4nJXh{hm6_xDEp7AMDQ>w^-L%ATGf8-kmii$sFOQE0)6
zfbX4>f`kuJuL`!R^Layr+}ajw?X3h*D(Ei)pr9ggSdWbhYcHD4yDcuRY;11*{m*9S
z@aR~B@_*bjSU(V~lLoj4Tm#4hLSVnZW)<v)K_HO-%ql)UKG>}K&-NBJt6<w(TU%RK
zS65$OU)Y_CjEscsSkuzd^78UZOG|5OYa1II{}1~|1gJ4M*4&tJQeEfYxMG}eb69WG
zQ<yYO?9BQf<4QV9G~Nz2uILnVq;)G6%5d1edv|P9+6PVkoUk?#8+B~Sh^h7U``UVT
z?~5jS_7v#h9TaTh>mTN77ZMe%<QyKSiyV{qgWKYJs*FKW#xF*^pE(k!nFSddxh2%{
zh2_z>rPVYQbx}e!xoGvR-e^s^fkt>(=xFE|*!b-Dc=)gl;`k>5Tr7-!G^}*Ru`vdf
z(9YBq6`V$4<PBy_NyH;#JajRX9d3NMcZVw3e^bwumN0NCkNZIHkN~p9teu0wWX0l;
zXw@zw8Wxzat{ew80tB(L<1P{vzyWdLaG`YPyj0yW$W#J~(WY$iiGEawwWcCnK<QvM
zYI$N=x1#Q^v}gi!*4aUW0EE~>@CMtuJRKLM%meks{#3NkjXEn})4D8)YZrlcQA1W!
zT!oGkoi*S9qtZhq2AlA282|-g>5uOd?FurI;`vrlT$VFj1v)l_w{kjET7s=V(%M*+
zRkPbK2NG^G;WFOJIfF<?;37UlMujti&6_2<2hhq4z<kN;2I8DCDhHf*c5#zXy~E}y
zHx0GK!7|vuSN<s}p3LU7)ReJ2bSkLq=o-7<Tpd+N4S)V6@S9r{YM?|}g-9UN&1lN4
zbF%l}4;kn7Z0BhtY+1>%>RYXrK&TdwbtA;~Tc7dZ7lo=>1H9KU;D(ePu%Xi$BJN3!
z0^eKsUA=@a1?>MNMwrsam2a@y&(R_U5udj&Bm)5tU7AQ36TK3HSFs8|z@AlLenX#S
z4Lonc?xeBoLs+dH9K$0xWf->G#S;|HF{})vam(&c_<qT?nU9Rq?W76to#G`<vb3k`
zW@Zf!E=*uNNwGrlS!3Nr?xKD}A;Y1m^X~s*>@CBhY~y|Hdjck?A*8{f8!44`=q^Q4
z5D*ar5s=QIyHOg4kS+;n96||c=}u`x6a`V)^E}Ub)?RxZd+qoA#vFX%nz^{|d#?Za
zJAb)mvkcgmLbB1>&xK{(ILYL7TTGNa29DKJuf$+Wo#SrIX9w6V-*`-xK8$wAk}Rd2
zCTSuAx(EX$=u}mokMUz#&k@a6k8Z4nF;sE4J_>z>)Ab-K`u#g5++Ot6;PhpAf4oa2
zNqMeGXm!xIi#gTUJo>Off5+_T1>J}hUxr^C217(jJkMyh&W`)s`RgYywv#A>?yyBe
z`3turCK}E0@=Q}rk<PK3FH|xyFrWXGILe7gg<DZt_&z0EmLoH(^AUT>$LGX%dekZR
zE8eTA=U4RNY8z=~3mHT<ku<Vaob4nDW85U{!~4f@2yZ0epj#RHI_G7VQ?KFx6%NR(
zeS=|@1EN2ck)w%G_6aI9W{}AuO^YzPQ%aD;w4w;0pRhkK$UdjskX=;ptXvNIe#Aq-
z-GdUZ0|v9JHB^y2eH`-xHEZW7w5svbLfJ#tu*VVkNDm!6L7{AAcX`c8*7@ABsAQS=
zT?wT8=f0K5tS^EX@9amjGc+=I*shn~hJybP_9r#Jlm~z6`Rd&IC6)7YJ5dBv&EeM`
zbN&F-SA&<*`%t<u6RTyOB*E|VJtJ~m0tgo@7zRgUzF-6`{|HQLS>Q#FNUVm=6kSAv
zglxxHKvV!0I!lVsI$Pl>Maw|}w6B_^0+P1`6LXA*&5&RrY#CkToex7<N!PqEyxmmO
zwgG_EON23;ln7W2KYox;$`-76W#l*_3(ZFE6$NKGIgWHcW<y2V6N8<OvC7))R7XwN
zUqV)(Uv~;<o};m#%Fh4<g*_<lSBdAvfL1STXxh}@(~D(&iL=)(WSr@Lf1~wFyh~gm
z^LBF&>Yryvv%fFK1VLCfcn%avcmW|sz~C?_oD5D3kRSlUqa+at6`X>eh?W^n$wWyG
z&`=UC*c42(04qH}LqknRPshx{jJ(2*WZ)!Y6rf-cVY<qOViiN63BB3;NM5lk*RHX!
zaZs{dr{a`B30|kVCPgQ5jZsX9MpTMHLXLwO;O77&_yH+lKvops;N;-p<>uw(5fJ3R
zCL$~%dQDtH?55-mNvWGMa?&(Bm@E9sbV3^R!dlc~Dpzjk(2MA>NGdRh-DbXFN-tx?
zB4xoUYt1I3%y~;4EpK}ZBhQUd=U3LgrlBXSrhiRcUtH_<4Si!tePdZeb2ddsPE}Vf
zbq{VWUtXO+#p{5YG@vO9+*SgN)d6!Y0HbhA`!<`c0pMT+JTV2HSpc3^fS)bk?nLY7
zO0A@#sH(1l(bQGfP}A1Y)YI3&7~jX3Sg7mY(Z8){a7W+B#L&dl$o!tEvbl}A<-_~d
z7Mj*}Iu9HS>>TgdJKuG5HFbV=&(*{7nYWdV<pW#mM-C6|AKN)OKYr@^#M;Bx*4y8~
zFUZBs+1=CC)7#z0&(kl^hffd7XAmlIH%7=LLD(!s<lYMr%PcYLTyfh%ImcqmlM*$z
zGEI+iJ@1O!zLk#yg9C&8ov~pqA>q#=qCKKxec}@R;*)}sQ^RQ(LLLLLu0WhWd58y9
zgf}YM7nSS@r1=0zfn?c%Knj*3FBr&)AkB+H7KQ`GQ9wZqq9P7xNClc-0PR@-HZ-t1
z59q~#-W8I+dqwlUgrTpTtFJ<!uS%r9N-QigBs?lKHa;pLIW{Eqc}iMh>WiconW<U1
z>DhT1dHLD7MI|pw%5a6bg~d2rNqKQuVQIyyiki}@+Va;8)eTLxO|A7U?Tyv#y|tb1
zI=WgLy57I-egAe~u&cLYZ0Ob4aK-rO>+!M1iH~o4`ta`uyL*NP2ZrDEj}8rw4^DjS
zo|qn)Us@)7hxu`Kc7A^T|9C+7ufKv{0z3$2^;+D26NE{MQp<SJi$5j^!Z=jvgk}F0
zglVL%dmow&{B`<r9{^TQ>i$y@wml-s6oO>YY$zQsR8Qr%7;N}k5T+Q;Q&T=wVZ`^Z
zAgsyG%&ShYzs~++IalVyqYoM4rt5Bh3&K2uHUAZa(Y=aktZlE2q86|ml5{F|ca*BT
z6QK$K5`)63%R`x)1P{X6#Nw;R1h-)6or+FB&Dy^YUsN?`kEePS*srT*n6IW%B+_g7
z7G$q}UbXb&=pBFH)zg<7%K%v6e!4^6OP2^m6lZ%TZuo{@zR;+@3j#>&sw_u4J3dU;
z|8@HE^39XVs1g9a-i{0Wle!3CTw@4vO)?^c`l`_-R}mieTQm$|>%br$FGIM3DA}QP
zXdysUv$&4uO1v@**h!l;@OF;o{@^1fsvqkoF&#zcf4W6DeF>WKT(P#ccENH|l5=t<
zgUI_$IIbus<5DbGcF|!f{O*YGhZ+Eu1W3xCGd-$RA_lGj=-?Rk+zj?Crq{En_RXsk
zM1b{bL2SHiJ{FvJqo8|(aQO0gCGl?f6dV}7>tkP_Aw2ss#6qZiEcC9hJD1r~90H5J
zA3;-$7E4}Z$!0Fo*i+q%>Pxj3@BsmQ{wJ4)*ekE6ZM6iNR-eb<+P}9JCjO9uA~;C{
zP}ss$S#}i;VvP`6&O7LAK@KE?7P<(+MlwLtOSM^vNf8X$#H1+O95sWj1yFTs?2$>0
z#G+#1m^3OHf&kE0MuYQQG4_b_(AmSmG#jW5$?R`_Mk{8<+K$ND5lkJDIx3~skvz)C
z8qZ?Phs0mcdDY7AQ`K3XD(ty@GML*`DQ2worqU)>r?FD(L$2GJ4GCa8Yok>y{7#T$
zM5>17>yX@lO^7z2AM9>Xe8zt|`5NTNq?BZcrY7!^yA7&`%7O7@L_Wjr00vcr1t)3a
z8_3?X;2U6<+%h*5_SOMBHAM8X0Qd;sl+mC7ByAuc^--IkkNz8ETb#Z($&X>$dVuGg
z7qtWtIBurx+Ljn!(&zjePykD$AEqn31DI4#;kg^Fu`<0F08dJ#E&?IkC^iy6PfG2z
zAz}<D0x9QspnDZa+8L301X#@>r<{xu%B5bnlF)H)bCQg1zrr9vKnC`ifYyg^SV5tw
z5HPSwcTA*JEhh94A#$gy0a5bWHU#lT67;beBa!1j8o1@hFp0r55=*;WGZH6N;>H1d
zvep3P3=g7N<?U$ELQ}(mM#k3=Kr-4AnSmuLT7_RVv_gkn;At2s!$8`2G^_hPS6(m0
zU=sim8`aBx$&UgyQPp69u<n(`sVEhCb+_FRDvBvuERW<m;l_w*f~WKZ%d!LaV|%H=
zD1culB!nXe4|0FTOAZDBFz>M7B1{dxrD&{qT0a-wHRVb#z_E86`ui7-Jg(P@h^vkm
zSR9LYE&>73yteQ4!zgdUF$|2ZUC7cka;Ihh%zQ^n%0Hj_unYjo#|D0|T9Ft_;c2Y^
zJik!^_)5dN5ic)3&d4nUTv<tL3Sjt*Zj0YOcDhorvm)&78Uo9)qvf%}f7Ct(sEaUH
z8h5($JWu4IU>u3JH4)^h`iL8Oj6SIY)Q$BEh-em_c)|ZbffEFX>lQ?&o@Emqa9yG%
z9E4rJr<9O$tpx)^0&F&4gE2OeNxT3S{%39>m0dwUl&Tj7{52i|0nJ2{d8xchw4$0^
z?7*s<&Bkax&EWVam$aw!Q#+iJdj>Hk>zq_L1yw3hmOV~(j%I=6tE9EX&#=54j|pNJ
zTz>LBV3m<!oETuW>$rX5WcLY#7bZI!wrF4%uGz^0dl`@b-qu{r0OpFB*w73Ar-8!J
zTo+LYK;(=9;6pQxxuqCA1zTl%xxSMe)-ZXdS}StDYiEmi{SA|#CpyUQKoNA@70UZv
z!;%TRN|hqjjUcCris7Y6O`9A3^fdxnh6f?tOhZb?EKg~oVEQsi1VO@%ezXkDio4%@
zNU5hlnk0geah2ST*@*~+#k*#Hk&#H-Aw!MDNt2GjioiG~F)YAy{Wh`QLuK%zRc#sf
zx|o(1?EW(6%OY=K6{hZ=xuAHk7BninrIWML+8c3Ys3i8!UN^|Fxgx-?PW){aaJ`Y9
z5QEho=~?d+fZ_29L&N~#lBR&f0E)6AK!oxv8vN6oIeQC2fnEh5J3F>4$yH;Ibqf-x
zT^~N!mvj$kMuSSrF!sN0KJ7f#*IgHS>L7~(O%1c9&A!*50s#yF4iuwrqE4eA%X9fn
zrXRqviBQ1-iJn$iD85w8P2}mGgxDd9SkK9I@NL5BCHLMEk)PL^rOBb9E<Zs~L5mlE
z(X7YKecWwnTo?0Wc`BRlcm;CM4ZN*B6|UD83FXnb4qGV};FjA_U|b7*%ZIn%TND9k
zQyfqb9Qd|9ODkhO7W8cuVGz{~$ZAS@sdT@CjE~wAg+0ETN&>L*sw4XD?uFRaq9s%T
zBKocaJ8_c!RMg4x4uew&sUN$Be6;i;I#sd~p}i9os=bKTIE<2M0e~=7U7FB`P8#C$
z$r#d7h0neZAj4g&(SpqARDpJek?yqmfjw;_Y8os_5w8j#tqW1Q?K20!))8;9j-_r`
zU#B-7)zrqmZJneDuEI7H@#&mcno0{;Tp9pGj5atH%!@ZfUk-|loFCg{PUammsweO`
zI^H8up3$q5O8#1g4S{Psk+{|mwGzI;&l2#FJMN9LPuq>c8YA|(_hp#?5E+LZV0k+G
zGqY1ER07_OT4)r0pR>0Zm&69<dJGfsE{KKobH3FeIm<yfhl6Ex=!opSb!<|?U(kOX
z5i$TlT)JJ`cDj-9h6)RN(UTN&R(+mpG{(1KV<D1Y%<65?4lCUxrH-*!==v{(S`SH8
zHrx(Gl&^|!!AA8r^Lv$u+xymV?8wC(bootn#6w?6emR5tw<%60xilqLVp-YKR*B7S
zB*$%el=(g?Q>6q}VP2e}<++)}mq7UpWqg;y2L=P>uM)SN8~QtV!ih0`UptqBvxh)1
zI}Jgi`y|Z;jiZ7F_TiC60+iHIUXO&vy}b;O#yGGk&ecP~C;et{h8k~H(-oR96xSw5
zZw#)7yB<RQ7_J~meGI+53IThl);@X+RRneLpdvRQNn`LZ4&O#2Kgesi!Lh0&iYTN|
zSQxIKf|tUq2E%Gq;~GPVC=v9^(A!oJQ(ILwC^TUVjzKF9@OZRw87RR4l_(W;c)$c5
zgSH*_R6bWyFZY~2i!cgu4NKf(W#QOOe)V?1Rcjy;M>d0n6T7e--Sm>9Bo<@4FHiZ%
z?~z#24AC1j$sz>Xb*W5bjV38NmS^LkBf<cdC}Lg_?2sW~sZUbBN<^d|-G;+9+E7!e
z2bY&}WWqSjK<;n_s2jDk*pxXUSVj9Q=p86la7V?oS1`F&QcM(dr}kN>lHY!aqw|AX
zB{RI8^new0oc0~iQFknH*W;cY_)TJwNDgWUfF9$163-DYrVvl5fLI=5SgS>}J(J1C
zh&oY`3my{(9uqqpvrS#sV5TOgv;y?+imr20qkur3FM;y;a^HAd4j+m&;coq?M+P@h
zwW5fB5!;t-QWXIlyqK6~7b5L?Af?Imt5=M0a!iGH%GdFjd!j@a4X6}6d}0EXcx)nw
zpj;6{C0zokZLX=C1*usdQ;=Wa$A+jq3Ce2>sYnCFt_k~nHGbi-07ek3H=OdASp6`P
za#qCdp>+~WL#%xKzMwTpjflN)FiG99#I<~q#^a|SBuMP}l8Ka41gukdP1Ec0Q=X@!
z`?jRtEl9JUNJBw@U>xNE8Y1Mv&(!tYf`QI$E~7-9gxxAV#V4J1C&u3=Gb1z8Y%SfM
zikv<);~@a3SixhCVFFfwLuAI`F^OkzQo?zb1QkiLRA$32qjy<mb7pp{DQYJwqjQ&h
z@R-;P1+jO5=ezTN!e>?OKChk2*$0s@>t|0e&{s+3P7iS0LL;PHasv%uJ1)?GWI*gP
z8CYasvH^0pGV^o|a`)!)YVsiqyLtNK(A7CQ#v}ld1Uf;`o1=0s&R;5a<@t#sp=LN@
zX(W(^L$=~b=W%auX9l?9sP=F)X8E+f`ShAJVE!vqzBq=T`Dn%hcC&1zR*)JRsym)f
zEL|WtUm*OmfWojKx0aZ%ya0+Ul*}rWZY`{3!|CD?eQ0E;{!2~k!kdGI>RCmatwl;*
zdEO|b=PJS%2kTpfYFQV-2aC*FU)^IYm@)<5Z3T(9f^_x4#*d2#g?o=%ivhD-Sr<|*
zbg{%djmcoKr*Db3bmqYvBHso2K(oX?t0Y9aG_2L?U;vWkLfVIe*<B9Oc$k$YF_xt;
z@-nqTakx?+5fk+<rK$5}c|XhEAo7*Q5pK1_vA)GOkOU2UdF4Efm}a4y3u$S2L6up>
z8?%Z74X}b}F`=-J#kT^_Sea^;t2Ks@MVBZZBm7q@sQD{LepY(@d=>6OnuS8<VXES@
zXmXHMi}O`l{5Ul$SUv{sx>p*!SGAK>E%~$jdRF<~&+6m7R|V3zZN{4KzBQy~1^Tb6
z&Ip3A^1PovX@32zftuI)O4l%()eyJUl4=Em7OETOYpG;jr+u%bAqc_*a%r<)GcUX@
zZ+^|nRLAaE3YV$l_N$AyTgTg0C+O(LzfdQ_RDTMp6Em;Bak;>8&F?Qk*lmS+S%M&}
zB43KBLD{@P-n>EGv0g2^L3^Q2i(rv=tkYv^G+cOnhv4MWdTpHDc(1M2e4){5zve#E
z8(XHD2j*|=W2+x!zj3;#bX<7j;#cvMsmZ;q{F!-^_d=Ohc9Xw(sUJZH7F!a;)Erh(
z9BSSiRq-k^yE!hlD0ZPasjXUxsU^*^B+<MjgQOrmyCuglKYO7CmtB*})LN8X_|m+!
zbRn-KyS36Uw_>5SRx7)PsjVS4g<u40mI-dkZfiGxUAWMOuV{VC)ZV+_+GF0{FVNPP
z-9F^l_F<uYtfFm{;04=nqc!Q6bxd!|?pQRx{&9gI2$Q+Kz|^_9K(}Guxg&FBCA;%L
zrhb2+^H_#yo9XShg`&^qZ_i@uXR_b^%I5gG@b-}42+QdN%i_1p@x;uX1V`9X8=f?$
zgZvkMiizL|>!7*UHSE_#pVQ9R-t}&wi<P+@&D`A~)6JRF#_iwTnBC3K+$Ol#U3Jkd
zlG7?C+w;o2=LU1DWKK_RTaRo`i~O&i=S;nd%q`0IdgJ|i)pMFP+k3+odUctb^_kxV
z$h<SmX)^ME=aK!+jJfIF;=3mo@2qm(*vP(rX#U=g`Hg+fdyBUBPC1Rvzuw<v>T_dm
zbidc9<Jae%)8O0Qr|S1MFs?m-xgR6bA2w7U;omQPncW{#*??W_Z~xGr#9W^uJD_{f
z|3bU%dCmZD+dz(BW5%z6%Kd=?=DMPLgGNk)rP{3}?Su3SgVmLd<;)*)NIo<y*1qxo
zU@7yVRlB8S@dNbY177e=yX;V$z|edDn*N+2JM*C-?dA`^hV~eTCo12J+#B}S8lD}h
znr|O=_8VT-Zdzg<>5?AV6l_}cA8~RV*;_0>SRC=p9y!*2^I3NErP=8B%BGW?(R;C@
zznIJZ{2C2x8wKk$f-J^De8=EI&Crf9?TRt-;bIiac*MdOjZOn~!1%qaamK1<+NJTR
zU*qVGes;Nug!Z@G7Vo%nC(_y{1Oo<me@~bnOo&}B4M<pg#4&%AWO;v6=Z)eR)Ds5_
z#lV#<CRGC_)pI8`J0`W4CUt*LhT>qJV^Chk0lB3{tt6OU$JD*0Da+qenz^v8)^6kY
zMl~GFDtG#E$Fx%wOc~k6yj13hpLVyH@m!jGhMalG(&*_j6Zm_^>j_M_eMV<t1{*LN
zMK&G6(i4{3@GN&WiDgbVcczqSCfpaAk~^0bKlyZcFy5lUzGJQ+cg|O2@Fh!wmdJd$
z(A<N=Icc(1vyS<?fLR|*Ps#6kMUjP8ve~<b^I;*aI<*9m+>DO?T+?uUgxum_?sV+o
z!mW_j{NGcaXxKCTrD=;LH+`7(Aylgts(XoA3ao;;p<%04lU{h}k`T<lcKTI7PhUs9
z64|s;5)D_<WEBgI7HY+#1NI<yQKJLaAw=Vbn+~;FtQl^3yfmk5u%gDYs$>oI7>2!*
zqxlms>4z&*T7y1*vijDd)j<y4ItaNVz0Mgp>4shn6@eQu(m*<=hjrGpbc(z%a6e4Z
z*6<YbpG8*k=};7y2@la5hRJt={>YVZ;a03HU<$5K4=hx{U`-_+ruZ7BYVop+Y+5St
zYU#yVtM8VM#R3zsM#f4buDj}uTH(>%)RZepw3zf4(cS+&W$MgiPCos#6V!D$=}^7I
z%}T?lJL!poF2!#u3&FIoQ2k5GNr$|hF#VT?fs<QipDg9JBMi3hlYI(Wo^%l2RU!Li
zDZF_WFlp5ZdYwBNTRnNou&tW=Nl1S8C}1@+d)i7E`pl(3wH6xPxvNgLhhg1POkNBf
zE6sG?(@WS>$lvQs*f#mI$D-R>mq3F)-icwQ@o}E?THaUbSZ6}52#i3&mbV}0O`amQ
zyfB9!juy>2H}2<tQZN9k;mRg-;fEcdeqFdKie}bwGCpRm&~i^RV6V3m)biv|$@0)b
zXE)q>*Ro?Bt-tpSO=Dv@d3P9+C=dUU@L65%v#v{}ZTa@Qyh*Q4kYzPYsrtZe<Uso9
zz^VhLV+9RcUR;&iv%XxOJC{FHT03ODdIWmANq3EgIB|pb<q`kqnNz8Qu;X<_gO`xR
zNjbeeJ+foXszW7%m$%+d!4t0_pUyZC)TAQQT&PL<my@@bkIczVHREB*kD<P}P43To
zJG$F@fiqT?rz*MY%7?p}OY?E$M}9$*o_g?S^LwzX-&}5e^RhU4GCC<Be5UgISef$k
z<)1GWax1z)Cr|J1x?WDL=)whbf2c2&{?VQEL(?!_rJ;N~X?HnU_!fk&J=YC5HBLUg
zHw;t6&IR7u47k5z9W<FnvG#TOQ*zB$jo*i-15gLD3nR9R^3PvYpL|gm|2eD&4oN)g
zuDMY7vU9-t)Bo*c<K^M!dGd2i&^hAexw%}Cq5=3>63k8iB<}u{DrTwU$%U%iUWnfL
z*wtTgfoo@SOLK!~p%f@4C^@Ie*s4Mp;)<~C?AV%86eX8#k;!<0qW6h}^Jepxb+sfm
zl>|=Hi6Rw6zPr`7b5t7L+=8$#7+%|?Au4cu?IJ{RHRT2W7QBHvZ7eTLJ5Kna&&2MX
zQiE5zuQFb5-1RYRbl#eu5>PI-MofLtNa|%NbVR0PP&bU=<%AANCm*=)M96Bvg!p)&
ziL<r${}O~X7u~I7Ci_be=Gv8wP2U@Mwyk@wIP}}<K&a`-qp>jJt*+2Wy&YUAYmMDf
z7XNxLqs3_PrNxDf#bk@e=TBAUiBDF$!moz0_?@|KHpG6nTV9m<+%oV=@BTemQGy_>
z?Y;l<(#4M#It__Dmy^=dC%aRjG~ngm7oQZTM@uNa{F?fCe#$XKvT_-OKbd`s2Yud;
z!a(;SNP-~jUUUtVLwgkSj<dl<c9D4!)wv@4ElC<F_tQmrGhy~v`9}iURb@>vEnbD*
z(Hx?}n0rS+mD&86Xa%#Mzf%iisIrjs)mRB9HI7t4Qgya$(%Akl3ANhMWNEe9DqM+5
zVp_s&S>qZap{=jmWjS~7q;f+$I0&eX)LHB1M%rE!X^;DD3c-(B>&4e)P(pfAk3z-u
z74^&tZe7Ya4nY)u7C~3ZF(gx>Z;)J#X`F0XwMvQoRHu64GFeGa-%0@)8@Cnsu29}J
zG9T6>2aepPUMoCmJe}UPdVXc5`|;MPv6V&W>7*6xYom#6>Tk^iS)l)c@x%LfPT$#A
zG#ZuLfn2_uIh1S>1Ys(-l_-F3`W*L46I8q`JgFJqETv9{ds%vVyh`Wv`8@T*%<l&g
z-~Av6`S+;X+fjzAQGlxVno&BvZIb*|yEN-an&LAX#nWahB8g#>HE@xLbH7cp*2rzd
zV5uQHg<PowL!pC@zmHv3FjtFR&a+P^cDa7vrBw5RXnpMwq1-?1i+07O9g4HxJ3EvV
zzF?HREG;1j!pt7L_jRmZnQV2e?Fp<TXxeVbaMq0)`8~Plw7YoHtfDF7+`5+6=G;Eo
zDf6_mYq{+yzUGgNOLs17yGw7PysYc{0LymQe#byrw?VDEcDEshPT6N8zn9vdjcxyy
zb)Oh#>2RN{k(2Y7PPORpm<<Y$^PGQ_+u^x*twYXh8M4&jwd&<5<GrqPwbOg^?k#zr
zPZsw(eRduO$@}g-dD-cE;PF=8?<ioU)9*O^#|{6Jj;n9|zr8cQ9`OD7ua1DT4*6Sw
zKaKt02L3W`yA|}O;-WJMD1Q_L;zS!0n_!@tTUdmxRr{YA4E*+CFl7<Wk=8_kRChCk
zVbkjJ9rvsP3TYS0#%ZmfYNAM!hYII3Tth0%D$=>3B1C&vNgdP`n3ho?Qj=^DpIIg7
zA5;{SW*r4GQRX<Ih}P&`p~_Uh#UoD{XpqK!QEH;{&4My^^W!>g*Nn<FH;Opx-evj$
zbvf}oN?!*<j<2(`s+%2@3B9Qs%)!QLGAHDTKD|q<=jt-I{!n@b({S#?P1Pq^sFI8B
zY_coNsH?e=rzH0-a`I_NX<1UaWlnN#NX}{W22iDiQE%~rj5Y6^kUcN!UEnv>xM|!u
z;e0iXi`>EV1Isd1y8PspaOkYoeJaX~F4=XF=rZL8to6|YhTJrnb3=Uc)LBMppCsxp
zO>`XHD6{8&t>0+jQ+*m(AGb!s!#H3%ay^ea*V%AedSh1CYl1TGOZ$fGZkd|ja(&|Y
zBoF$0ZdBn9H7<f?2SaVDA1X$bj|kXQWZ>6`ly69(e9p_wXEv^5NmH0NxudEyXONge
zRm3K@rLIw~nVQ$|obN85py~XC=?F#fRP2`a^&hvh%d3i|uFUHC>`CSPF?5o@veyx1
zW;jlCrR<)}-tD<5!xBclVuM2#!?K@36_$5>?o2&Ctec;*54ch}vax4k&SO+hOj70W
z+|qQ;thKT8)X4RD#p$Bi%*gnan#zfN%SJEbw?@@9!9tT(2*=J-mK*L7cPq2$7fd`(
z4Uly{clT`Xe>eHSh^Wsz9k-Lp<`@m6wSRs^=$)du*+nvKBV6Y2@vTX-8Owf^FJl-d
zlI;R7ef%5tyU)dGY8UV=QDjtOLM{fHWslS`E$^;7FY$gO+fq$$8II>ODx$PF;Kza+
zUkNY7P$zmxK4=~%`v;}^8w<h!!XR3J9ta~0jwyw2QeTsz5s{*okRuFv+2vHYZmIJr
zX^CmwCJb=p?%q={vDC70(6@8EZU4l`$<@a5@0qDT);}TnulZ)`^Zz>9`)@xJxuMYs
zocg);X3s14>RwfJ7v)S8#-|w2>{n0{oqUW2gJU0vz@xAN5f3$UWrG1QyR{D*6;WYe
zSSuLwCb=sG^FbB<=7KAR<C8dLlSR+85SjN)MH*5hWw1Ucg60ktj60B%DByu)jAZf)
ziH!7=9LzuT)8CC;T7+e?{ku$|8-FiTn&G-U^Gyt^lp?$AUn?a{t_4+fBy<d=Z<{KZ
zS}K`a>)JjhEY|R`i-nu#eRppwcb|to0S*D!zb3q)5rpxscWi=xLQ-H-%6~4O=rv)P
zwhmy6^6I7CJf~kH4~8ZhI@ar}Pp;iZ?oho^4eiC#z@t*Y$p-Gt-qjh9T{i~9YF4-=
zZ<cym)L?{2tCb)PQI`S3g)UUD@Gw6q=ME1ug+DQOFhEX4&%nqU#_lX)OGL*=PJ%=-
z+9cDadQmcIaWLfqbT1=q>FGF0t)G;0-JxV9hY*t+69&H00Eo(p7QvWQTF)5;f$1to
zDSxn?XqcS3J~QiyU%0LK&%4A*__zeE|6?;?37dhiBCu#!BI*MRA~#G!I>xC-P2Aa=
zq%^AN47=k{F4WY@D)WIcV1c%CKQ##C9CmfRpPu)>;IaI`Ay5H^g8yHL!~e)PF#p9j
zkkWJiSH6LSosaNmF>vzyLpD(U{V6hv3ekzn{=+m}7x)WkAYg$12{iCt6a5dSL0tSF
zra@Zf|6m%JZz}#bl!34n{^1ye)O3Z_^<@>5#I^3o+%f&1*oC{Q{}*b($L3#TL0Rd4
zBMaJE1Y|+M*n$8n+_`i6A6UW6%vAN>0|Kd_ZSxnVVC>{(;pRo46Krh$r4ybwJ$&j;
z02J(8JgnV)A9@GayLtWxrr`eUA56jD-|v6I6eMg5{~Mz~*uIo?+;okCjBUakO*c52
zZ?JdY<a#en02j>PIS_WXTX>Xz{J(pefGj)%|6h59eM!;7Taw>YZyl&B{4vtq_jJn%
zf&Tvi7y2sr`l>|t3uzBan7>tBJuK%rDCfPX<GO4T*l)8uXt%;*v45cqv9VDJssEd1
zNJ}Bm3>oPe1fU@+D=RZMpTIO^;R<mtaepxlMTLI>4JD<2F%6aF1g4>u04)=+hQ<a0
z*3j6}K_D9l!1X_HL+D5xfp2)z-M9Tbc`rQ;PY96wSHxkwY5RTHUSGsse`HTj_dlRR
ze_ua=b@=e%!|=#B0e2W&8YbWlQ<GD(Gqa1!izBOJ%d5*9Bg0#ZL!ZXSH#Ro5w{~_u
z?d<LBU0hrc5C<)|U~)nH^}s(=|KA;Gym!hE&PHYugGC+;#vvZP`fnX*W}<ULg<`>!
z{~`{WxtdcY*NaRXjsCL(jmVLvVu<F!$8rloz+|Dxx-lcZh4|kNwDh&tEh1H?EZWVr
zYdukSJ0Y?z_qzj;Y_}4$ed-<trHC3&`%Bet55JTNWff|b*#4MrkZSZqx^aK1#=Iv_
zsO`r7!fV%$(@$iYJ}<rXgIpDEm;AiZl}v5yEZg#RYc%%j13^^l>8F`Y$HY!KnIE5*
zdmda~UCEX8{<{95;?`Svxr-l18-;I~gQY(OCVkoN3krIB`3KmeLkEFr)mMWr88Xlz
z5aAuGP!vBsTPT&0`dT=JSq57Kweya3B>FKudnEe{_4VkhSsCmx9MwBEu_ER49I;~4
z>KpOb=9}+BPeH{ii5OzO&7}VfnEcQAl3OSJ^#7N9Nl}LU;Qx^?d3Z8gX!`r$&Q5*=
zcg#*f%#FdF!UR?1Zc&Pn=I*N(b}_rfS)PNtC3z9Zz0!ggntNr%#W8#3<!=V}DyrXK
zBKIrnrlreq*u%p8Y69YrC|`h`7^uZX6(rVlek#-ws*^B}6+TBVRLCXp+VnTZNZKSe
zEFPsM$Sg&)>B+4|ISSY9j(yyhoz2-lYCC=}@VWilwBzTFvriQSeDM4J=eGciS-ARH
z%Y_cl%dmpl?w9T-I!!zMiXViU4gE=k>Tn+qZ$zN$;2h{{AyI4#c&%`j(_#o-_IE1;
zBi(^~fNcf;pZSuXR8G?^E8ca-<4C^~k-F_6Mb~%w8*U#2x7FK**{+6GUgwBqzFpUL
z{~+ZABKXx&8_~)56&S`e9sZjy`5?4|Q_rl><5B-XIO2NU@rmQZM+2pRSi$k{jEQWf
zPpeMZBYGj8*DkQ3I&$sPp=386?hhVqwHANH$Q@ZhoI6c$mHVGAc$MB%XFcl_Xg<gr
zN!ZPN8tA*!{!hT<nrxF7onSRD;zz(Yo`SP-5}|N4y;$K+>5!<6S&nu1tVtSx|1r6<
zH}qrWPA7%<CIlbX1o$g-?tLGDV9t(|k2^qu?Fl+R_h%klUOYyx{QRyE|1J87H(VR{
zSH6U}v%*`6nvOSZ=BEDHAZ=J|-aDr?0Tl^yKejtzZ6g3yYKVh{D+({WX8;x?6puef
zGm%W`C;I4vo)BjI(pGS+=bRQJC4Q0Qk`##dfkOb>>^{gnNeZggLRMY?LkUqQRCz;)
z3}+*$JWLX$N=JjONDJxv)ZgbRpaedxGZ7_DBkm6<hK{F(*N}n~4;XC11ZSuIboU92
zSBZcn!dNc+cf{mJ5=e+8aiaeHRZ{-J0q<w082ar<AvwB%9ad}1?swHK7&eG5MBab!
zJPi?i@g=QP`xU=&bfx$woqLb(6?V_hR^03see8B{g=N3FQ6^8osm;ckv#g8gq+=u&
z@K(5H@=0x01)tRVvm2t`Ph>BP_n!!{;k;|7-Z-q3whO_snApoZ`%<MnKUieY9vJj&
z{hE7xkSmawqG~D}_oBUSOGx0wrIzJkN;>-MtCmjS)}=zv!)qeM624zr1Dbp2-}PE6
znZkzy^x0Cz&Mcvxk-`A>Lrz}NCL}|F%pMcUxNEfrQqUxIzu|s$Kdwakk><xNq*I=_
z=nV9b0ZH;58G4b%2=m)gz`E&#ZA*tDJ;FPO<4^p>!iYb8e@#+%{n@?IP1@a}Mn#L$
z5TcA{48NK&Z;FqQulUK9ez|jz>K9Nj<_UChJkgwKoj<MarJfh)377Q~8#QjhF3US4
z$L?8B;O3dw023gd<Haf~zYOHMZ*Z?qa~zU8Kmk>=_ckU=>*2G2E|4|9u6>ezxV{8d
zG-|G=p)N7;2@4&P6isS>*^Z0!9<FlsBGJnk?7epu#YH3&oM=mS^deG=xrX+KLZ5=J
zo5o#;SVjNzXN#{MLuV@_R`2JiL?$e3Jb0b0)f54j;C#Vs7;WXkt%v2$6JLJ2Cz=d5
zUY`HadFFw8`oK;2DSdoM-f=|3(3%99?l7}a4<o$o`*rWB2jyL1E}uAuY7TCnb@g|<
zv`gfyko%qWcr0AgUfd!JW2>?Te|jOssoESn0Pb2`&*)>lSx0>BnB)=gI>Bpb!!V{<
z^r%~{HexE;=E}``=l$VASzILMn~E)qF_9cpu0l$j-IQZbR%NAUHiZ4oKj1H3WANIa
z#InzakTl}+V?&>Aw4GlLOWzUC+1B2cUSP0v>#WcFG4x2X;+z#r-hhMY>?kt*9E;Lz
zD4-kOQI+{Qo|Mo~#G|vTY5sE}W2B+@=J2kr-_MUY^2XB7U$zahe@>R_HkKO??-{lI
zoT^P|tbC-ibNl1Z>E@BfYOmpa%Zr~g_#2H?p*jaPOc%5Lx^L>zfA8O#*<c+_xY1A|
zboltr#r*WhjW<nIhtAI~7M96xHunh~xe=TWpLB1w&Qu+F)?X|gCERS^7W(Y_@nZS=
z$j#0lRi6XDUaahSeh<x;JBF#Xt-^0LcOyDoLdAcrktce0v&p+g-)vu}f7|??uhTX5
z*{=;&3ZM51@@~mq?VG%pw^{}@I^9z1e{BgT`V3mjKg(=t|0MagWyGQLS@zdo+wv5?
zBf$wS*Ui7|sOz;(q>p?nmifJ_pV&HCqI+6y{(H}4v~{{^<h0uF_r4WH+iaii_qy!g
z2lh<`;~z)9ziIn@=#tpBxUKu6b>a7s_h{S1)UU|Si{GEI6z!`py|eDWI?(jm*Xc&j
z-pee13ByLpa_gNBn*TY;cqxn2PdXp*`|}k?5wP=aEygJ0&$m*&j=lWj4(`%Fr?rV4
z2aohF<`@2aZ+xjp>^XX|eDUW8o}%+OQt#I~)8$#eUgt@AjepRujq|ZY`ETcc&i2eN
zf6k6}es8)TpxCVRZFNQV@~ltq&q+|;w`MiDebB1!#|rk}$BA!$ZC?vo62JU&Hv0C@
zkI~CNm&@l9bcAj&J41W`u{Rc;fkpNQgw>LN^71(rAvHk*1n#W|?L(0f%y{Orq3?U#
z6nL19K#Cy08HaFthkSj6_|p_3I2$5-7SavFg6RX;--A2wq_7M~KrKOf9vZ*{Wv+!G
zcVLROp+T@P#f$)XNpEp|h-{QMS#xlQ6#!TPM(W|j$0SVZfgM<)#oF-9o8&de!BsQJ
z9DM-50k5zjPO}lt8NU4RP&dg)caum_$<T?W`!{yTFRicyLR9KF4ErN8_zWfn0IE?~
zDF6@wydy6&qNdfN!qNd|bX4R`IJtV@+cDCURTTl3;B2~JK>%<^Qw-z6t#*8@0bnmF
zCW9wp7Zy^4jaaD%N{%C%Gh)BdMS2oC(9U8nctX7;vA#sq9ayr_M_4)+AkZp0uqkfX
zJ}Rmd>w^I)uSR{03K)}&e!deI&I8Yc2Y#nkF~kP1^H3aPhyWZIK!K`feJW;SKHK}$
zdi$YEk>#sU07X=eN4DDgafpB~OJmc4IAWh9xKCuynSW<EQ8y5<m<|J0!<KoIY53xk
zc%u@d0%%RW({|z`U<n(2WP5PH$tocyGQsIs&hR+=tGCaWvy>NV<PYrq(1f7UB><#}
zB)u^PH1Mf4k;t4R<hMu!!Y57rJhnS3vhyL#KO-)x59aUU&5QyV&S8G~P#=_cASyn<
z3Thnv+*{xKZe|qIu9xuuOjYE0(9H9IZI~A-K5!crpr7tG=k;jL%NUWaA?f{)!Q0yk
z8t@}IXa=St^5V%kEC8Ev-zPl?pFYi#vN{6?R^=#Bq$lXWE~{J1AK{-%$={(#chMAw
zc+xdAg{X$liHXl%E$KKeSi&Lo;Ve?BCAGc}`8xwyxSCjoLwt_(EyW>90lyL);?-(m
zNn~Ov0BB;7rI@rbx|||x&cJzgmsC!Z8j=kouZGS2VvNvW$XmbM4bhSc?c}<Fa`5)Y
zfL5M?6q{i*wa<f^U;r9|g}vOQ1|*NY5J`YP8nj6bQS$~i>p=<8&ri?2e544V3N$bh
zhQP?fu^B=75P+aJ#mFlidof|;$;)wbXE4&A`H2IdO%BkB&r8HlFI6nSs+kevP_U8;
zMDZny5^@LnASIE)XMBYKwqS}UGrx(57){ZBOhBl?vg=^=UXl|lz<f34EgtysmB?_X
zsEm)o4ggAdDRy0m08B6!K*nG~eqGA%<{VN7m)f9)9Ey(Mz#yQ6Z~NGsoZ8%#4WJ0?
zTOtAmL`sMVt)}UzYn))b4|J0n%<1jRc8LO)qQRSm&`CZ&XGUGN<Ls3=&_+vHj&INw
zA9kA|Ad&}!(1#LYClEXcmIN>i-~#5ns8GOzOqc`!%t&S+(4Z^&P+vmMc-4z`5Tu#}
zlM(@_P~O$Z0#*Bhrg^U`E+DTlm=^{FN(!UZ1hq*+Dd*FDTwt;41>TwQLxV3tXs9n5
z3PS--=UxMQUVbRx%N$G*1%SrlgD~aw{2*9uDAho@Bmlr_VX-FAP}Az|tm^%F?~pOF
z0%NeCh|i(E<;pYSLlGZAeQ+5)*{648i%CR)KI}?tR;8rRJv7jx@58GP9z|13V!;%(
zSzC{a8`6t80U+~otQc4YN|RE_ut);{$g=X~#DH_qX&m}Mlf5syKG5ca)C7R%R=)2v
z5JP2%tlH8lJd%AC;50$9*8<B7U~&|gBMDKm3I&_`1v2UatI%&vh^+ZCH<>16OHzJT
zUU)i8qZ!7W1c)Zp#+cS%w_$))P0(0n5GwzQen!BfLc!MjaK7fjJs1-T2+{EV<^Tzx
zs|-|w0=1CPS={U_EX}bc=n(|K)CNQnb|o&^u{p@4a6hJXsTl$!6?|ieqAF{t+z+eV
z$CXyJ2H{()FT8`%zLdw{G-H^dNw^2bM>8wtkri-KD)vg!=SxNcaV_cdCL|z2mUihy
z2CQa2l&&9=%6S9_G_=Z|I7S@IAPe!uRoJpB7bI{DJ%R!1SYLx!UuXW(vLE$+{EZj=
zrGN-{5|LY9f^@o&bC3xtL^Zj~bh%%YfxMgaqXSB_3j$#{F??4bT|T<K1voAbY3iDV
zzl31&!<q_cHS_&NlJiNbCrY~obDH~pdeOK5*vRgnl8SKC=71)U)PWaFKboo~pK2GU
z71x7p>Y3s3HNgWXE;pW^0~D)rTvnudF+^pvL=@QILo2`z<5SU3CUgu4nETvKN=c&w
z8P^6klprAY5H4nfeckBXn)(X;wp<O+bn#6phe9fSzc3M%dqF)e2a$0@NHP~F@xA`0
zrW`V6Fqb#-DyAz-u!%M&@*OX#4P8Fx1<;|r&kz6t3rWfV;3D2kB0!|tV6aydC1dS9
z2M7}ufQbNATHU_b7h*#N1tbNHPTh*61zvm~uynw?1+PBle5Z>FDxY|r#ooRHuSjoP
zOgdrf!hkU_fCoI2GIJim43Q(FBoSQz;3nb&3L~|<m#My)lC~}9RME~rPx2-bdEF2H
zjmghv5$U&x3~<UmR|k{T0!VyL$xO)#HCPXaFD^j@I^mrz@HPTLBxCpsnV?rm1KG?I
z8*>8^X9HZQL2t)^H-0T4>98B9e8gCK%ibVxY2_^-_W{6wRE`V1GGPc2;5r(rjDbQ{
zTWROh15iVOKO!akqojvFK0^RZfOjK*`b{$LGNgB396*hQ5fBG+so@~~VKU9;JHNf|
z{`OvE_B|B2e;=K=T}poRz>=*k{3!GtkVO2vDMnDA6d>IDC4DII;8FeA2pzI>C%>XG
zV5JaxNjj!4Fy>@7cFF`M8iS_kBc9`c;Gq)T+T4V}x5>G_WN2`X%Y11^L@^yWf-xwJ
zQ8#CG94$1_5TC{=7r-4q!Qd2t5CKIsMM<E#RY<+B9VB<gf4t++7IBdt*f+!(H>tVg
zr5ztX5HK8_4Pcw%e)%k7c|bjvIxm+>mxP{FJP>NtS$sJ++>_8Wo&V_8_YI;nuY{8^
zqQlvQvNNzLp4hGS{TKhN<^6YQYDB2jm|82p%2i+`w119a4x%%sp${w%Ac@B2D*DDs
z)EeJJ`*PL-b$#<EeMk+IE|N8<SY)9wU>)YOK$^Kw;1nQ(Y{8bm!p~lG$Y%8X_M$qk
zILeB;ChYwvGoLORm_77*<2cDhIz-2})Dt&62j9dK{#%cl17<dYjVrpd^Ow%5qD_}4
zot6t6^9?LF;!4OiX5ihpR{+*@Q;=c|4*^_=Ptc^BZNbB6mCW=kOZ-UMBiKDN9}k^C
zB0|=W45;c@^_87-x||1I`1{^km@5JB=UQu3m~omv*_G*QUt@h)<%6E%pqw~pxz0Lw
z!g|qBEWd7?I~8^7Qsj(Ud8ly(6B_D+h8}3-i_3Y_@`Duhp*PSiKcqJ$bEBw%t$_6W
z8+e$HRsQwBN%bQyFAVfj8lsHJ_mMhC+J_0pK<Wd5i}@}*xpx4zTt*)%npFLru|g6D
z^T9&u2Di3`dkbO@0o>uv{NaPV;N`^xqqAGP2QgDt;k<Y-KbEKsHF^T4DD?i6^$2+8
zLiP~@BgRK#6Z~#Du0;sX`41Jd9YISmNXN%(dVWv?3^HxC<aKTi5eCph5pj&onVAE6
zF34Ax$50}dld9TX48o7ga!<A<jihD0jGVe6FyNz{w+sd+&fl)9?Y*NZ&rGOex_WSw
zRc$^8WBDmZWd$9v$XBaQ*CfO37H-f>or2IWjr8Pc#?lS0ddtV3`r?KXGxJx(fpFew
z+u!+*F6A6nyh$s9*T&%5Sw-<8SzqbNxyOhejS-oO#5@$Nt6(5USplnBS<m8?pOFU!
zJ15rrd?6btF2k0taDcN!){6U(2KZTufci2uM1v&wMh#N$LJldie)Im0)JtEPm9MS$
zBTEvxDlG$4YnvmsVcw`0QB5#3^RL+L7lD1SccY<0x6(&P3%c)n`vJ|^lBNW;U+*vP
zdt=9bSn;l0iw3(``dDJ#rP9r!F1AzE$iB%2X4ag4_6v#g_bnAcQsw%VW01>bzLfx~
z#ITXwr1nb1?NU-I+jo!uK^!Db*?Lss7_K{S&W>;Vi#Tj*B>(wSWjmMh5Sl@$IaFk7
zWBlQkl*iHL+{bM_oI*G`m)YcwL6OFD;op$bY}vmN2eT_gG3BO>c6VWzctdX?T_-Mc
zBmT;0s(b(#<NUV+ZN^F^&FA!JYk|;#7SC@%{)g_4-EihjQ?ZBt(Sb(i@pzh0Hnt}G
zG{TGsppfz$OA|Sc`|99he^~v*apu%<_Vq?W-6eeX`;)~M4=)<+=2wIcHCJ73%S8g>
zp!KrAZrOjYR#?l#Dzk8;WzMbKxZXox;lk_KP0eA};;#-gHopr?glzNr^WCk{lKU?=
z$Zkm-d>$20wMgusvJwFOL4MPU`9f;w()D}#!KhsC>P4giQlLQu!uYLitQ!q1l7vF3
z@K#Dx*KI=DsqPrMa>4>aYq=4|i}qBEjt#C<4F7hZ^<6RNJW$E9+5Do)8BFLv<IZ+J
z(clhej#FPV*`pj_%Aa&2AP(P7v^tC2qcyY5CQ4x}hP@N2A`9+cbtE??4Te^1kk#4(
z;vvc;*Jp|hbpPo<0~LPdx|CTF|5|`%1*uZql;s>CyE*ao>!{-29cUoAh7M(pd+u@S
zz1T2PF)X5>NWH)I+k`Hm1I@_H?^i>uzO@83^se}<cqke}Uk0JTGC-gx=~;LfYuHpN
z<e|9LG$dL0-D@L42b$-?xigozDkB!uZ7i=b0j78VD8$LZ!mL7<A|dL#Nr_rk_lirZ
z-1591cyZdq`Sh8Pn}Is}?wWB*22uAc>)23foLJV>TD*GB@G7M`GMWY|vfNKM9i&9-
zv-t!Pv8&7Bzzeky6J+IEysNO@xELE;MpI~iYa-n?&+ogBekuj^_0d=?Hf$?LX+q&%
zGAE^yrIiGy!}jIN3IgK58>;GK5QheB+%s0&3wB7r^FpW^f_;9n$LSR?IyP^-FjuL%
z!u7M@eisl?^qT8k6meV^P++Zo{Ls%Lbve(^^*vKf%~AeFD(zGGQ*MVf*X!(s>v8O&
zzifK7ZZEn{Xx&`8*6-0cVgLL4Bq&Af%*c;Joppd0{$PtN;Bk`PkKbOaQx9rJQV$a-
z!X&YLoGFDQu2Mzn?Bne4o71{iNKy7<GCz8jj^w<LdoJZpgQJfW;?$S>+d0wf3P0k#
zWq6gALT8AV{BFIQ2@2{PsJVSoJ$}G>`vV;Ao+Qy3mk>l^iyr+I$ph@E2a^?95w)CR
zI1cSYXbFe|OeS2RTI1M{mD3tQLe$;1Wgp6IYfaJ-)(tOr2@@`|Cab?8t9<2}8+DyE
zML_c{dP446iL+og#6+2s+tpdk(1tp9R-9YjAm+}ZF-@7bis1Xf7}HG~I!L3+wFrZ_
zYrSlx?xn5t2?p_wakm*<J>H+ZN{)Y4^dJFmq9*%kT+wUt!PVdPSLOd0B!w>Opb<Xm
z$`J$cD@bd0mUHzqda9JvB3o5XQw?qTla$O&PPUtbd+qlxsrj5-ENZ5jh6!KN%51sl
zjOR2>biX`*UG$3Tk*U@_@-Hu1HXo9C&1qR>9jAA3a>F7`wQa?YGX`vn&tA-F+b29t
z24B2H6%snosN|`$7w+ZUXgSxZ^r6n#_?9U-;G>(INu9gDnJztdKH}6uo%c2Ex$Lfw
zp3WTg%L|$``SWu<$#ZHP<Ts(h(^p@JfhM2i$pZ$4OvMOQ!`P2u53Y0hj{Dv=w6|~I
zR+ZD_4G%OdVnXh!>kQ&j@(f@7(%99sm=}t7CM&r1%0bEXOkZl+utc8VWeIp(n!#98
zc#Eq%&ezPaC~vb=<Kbh?kk+1J)l)^S=a26Sof{^Y-K`)h*fV-Hf4Anwl}c-!J(B@5
z!}`3_5`xNCm!R^^BB*??J>S1)Y-Ze+M^od&vP)3;8od2;r7-wPr82_YB!Zywh2K4}
zLCl+6_JL{YlDD>P`C|1xSiZ>1oD!5JxO_bcF5ex3%Xh%k>|+RZW7*cH$ELA5Go3fG
z2rgf72lEA6g3I?E!Q~q|XTI{Cs<~@;%O%=eYlHRXi-Eh&0+|boh6I=ID}u{c$<$)s
zld5fQc+<1RT;p?~SIXLz8t&JOefclw$~Ny_W1m~F)XSSGIDWY2w|k*>v22`n5^m*t
z%4Gb<?)a_z@MrA4i4|m&vI}9k5yDV82;4mB@`^v!=5e|WyWbqkFzrGswYVk_NZ(sm
z>7uLVZ$SBSHk!}qwUE}q3N6p~ccQd>u@2hGOe<%RQq!&!K8p|TkI?s1{{E6=Zeq(p
za(Sm;L!LJ!^FV>;)?9|xi<4W0_Z}iG89odaoxJ#5_V60y^#|+k2N?s*X5ue18yt+j
zI?OHFO?5JiR6YNiV{QIOW|Vf+=gnc>d5-z5%gm-=+HX%07WQkbjN|X_ek({`uvfcA
zH<9dlR5ZE^V%))5XMb`pk^AkSA89uER|lF*6@*d$L+uM<o_g)yk4^f_rt6o#eP#Wy
z_oOvzy6uxk&7&ud0vkWGvc7w~jt_9s>)W3ue`Oa$q3L9+W<K9;^u{)PN!wn}d|}~+
zN27q>p{-r^!Unfj9SmvrXSa26-|lAZcJ$Hj*XGM7Z*J5J>^TLN`z>EgziC@RJpJ;;
zeD!jX{7uKr7|TFkt5uTpH|3%vM^+QqHR_u;KsQNTtzxp*nGzeDR^q={9+|;7czg!b
zSRXT@wbtk5eah}QW9|nntcqR#BJFkfnbdvt<D2QG8lmDZx(kduH80L}vW2XCmw$0c
zQ~0X+>N>_I&T|O7^catfyhFc`GfihLUG`kZsf_IR6zeFqRLICN?qGh8Lb^3<t?YYF
zHY3Me!u^_!hnPpv(uX;o(;u}uJn0&jx(~u+rd|mP=~Xb!{V(F)Gpeb#U$k8*goFTw
zUIe6f5RfV$q4(aKpaKciNEa!gcL<6!L6Hs$f>e<bic$mwL7E^{il8DLEZq3_-S6J#
z?0fDw=X|;OMh1*P$oQ@GtY@w{zf%OXNp}R<Lc(>To+(^LI(hUxIIsR-QuUDX?QNID
zg71YRFU$2WoP>edLbH!fHPK--0cXSGgtPsPpsyjr$&TMD$<GunE~N#zbUExjOIIv+
zUx>zr{hny)44Y92qxp1JaCC`DSY_!W&9L^Pt%9uCGMR}0lMf&FnLwBKpIiwmUO2zG
zR}#>uxYIUs>B5&+>;4T6VLxZzM4TjiYuGkD!+nmf3X8ftYc3mRF0)h5yz`-<Q@3N%
z@5=H@XWT%-29M0Z1KPnim)}IUmiKgmLmrZOG2cXX{fs8k#<Z_j5_=%TeZ`iOZUJ|{
zthYQbJ9yetHe`S8Nhe1u@BQe!xYh1(w<$RB3Ryn-G`W+9UgkSeCiz+xmy!x&TPtP5
z756PwWG1off#T4cF0mnC9@&UwyC=j(6rNKu8%GuHwTS<eITO$95Oh&I@Ov3_SC-1O
z>(sLc7Sm21(_O8uB9zk8HQws9h2Fh`rhTfad(zD(D#NnfBS)!(e%j{e+xu4W<!?GU
zu{jmEMU$z0@9&i>q<^+bj5<@V9J7mh4XMCDCue!7aHI#Wwy)NK)Ex0t=gG{<c$0f^
zu3bC7O=p6rTOt!-egzu!%D7&IcV97HQk8cOuGrRnwU_8r(tWs+@cKi7G^M5yrHZ{*
z&bq0VX^NI)zLwOgyx)FTGLraIxX;f^TkfZ7fJRH$tY(mx_VXWdoV}%(r+tBQT~f(?
zOl<<OE80=p((%!Kj3o-rl&_<_`lIywKfh^?6V=JL7dU&5e3Z!B9}=wt%Ir_^>Pu?q
z4_)O8`Kc55vM(K?WB#-JuJphy^?}UQ{s6X$EdK%bXkEU|NJ(bMg?`||v~H(+QS#iQ
zyoP}rJ-U2c(eP0~gcBk%3Q)lx2(S+R0%;egbY1)ok_(1ZOyK1b=xNOd4$cccY14aj
zhpqsMmxK>8oF8!MZYYv|^IBg<0R$mAM?{MTSDx#)QA#$KG;}P!Y5S>9+NkW>*RRX$
z>2^R#aFVV%Mt4x^=Vtc3YD4w8AS*Mu+bPAxa0XJS!b;wuL8Zi=lA>YCns=E)Dx$CI
z*bK>Z4TtFsr|8djxadF59G>|J=Pb;uDakx=e{<GL**lkcPO279i`5em1R)a&rYVhd
z*+%wuKo*<2o4nBvy+#Hobv9h2*B$!5l!(v$G?Kk+_`R2LSJc=}!FYeD;;X}3ZBOH)
zOzGp4w|WnZPg81k+KkV=G5)17wCynPyG{HzrOCE~VJxr7PJ=P@6Yqh8i7|@_xnU73
zbrc_ELh(ux**?nt#)RrXlKRUir@0Brumr(ACN5-3H&07%ICh@al#!u?A#994(UirJ
zmbKcH^Mxtfr^<8lrpR}u7v^a=smv5Vn{t1WVp4whUD}L~p`O><41UK<kgAxg!0hgI
zGZCtX!o%+<X3WGjg+zb78~<)5DT9&{GtZ(hKa>7)LB`SiwSu`^={fmS^OGF&%bMpD
z+s*g-&6UMUWWS6*Su#hzqEcnI_#kMZ{tKyLIMHEap*4@x4x4C8u+X)vQmLNsZ?!P^
z#iTcH!8m4N>@8qI^&ZJ;Y4$$LNZB%7$I|i>+{*hsQNq%u;J$Ui`{W8s`&aL6-&@*z
zdT(`LX-PI|&R}K6H)$ecWvn@AXlZ5OI;j_6r5ih`ecwu}bW)?yO8wQO>U%5nr^zb^
zR?1{kiVW75`KIJ$tmQPPWGt<vU8kf1tR-WoF5b5mFP#!?v=(_aCG_4}@Y59kfi)l5
zG!KIfH{Ud;jLikjX?9B+HrHv^02`LrX{P%&XN;xO^o=%jucm3<+n_#8Qy<t+k<B0(
zY$^C=;4-%4nlogUwoq4FaKH=@JM%l!_E*Wwj|SV*-kIYG+oRQ)gMHh5=<F`N-FM#E
zZ_=}0H0(AkW|v%M=lo}9V(g|eXU9rr2ODNz_0D!r*b!Il^!8?TAokjHA2fOFH7<Qn
zQ@2+&|DbZi{)*oRrD%J_dmj{v?d9t~$oBlX1MAX?z0}?Z35df*x;Zf(2hmG&!s-q}
z=5qo!9Qgg_c%vP7?#*!(J8;&|ar8K_kI$W7abVq>V}{H#(m66*%2nLFNMC2kSKmC|
z7#-%EIAJ;ORa7xv00|0CoW4IV)We0vHigp`g0G=7X~yQMFK7A-f)>O;*NCu7gO1CZ
zW(#=OYP(#XbL3U$t3CZ!zsz6#`sM1kU!)GF(|2~KT`{LUWv6{Zrvpc)LvN>}FsI{G
zr;`Gw(`u(5?M^?xd>pU-cvT|q=PxIK+8M;*3>J5WTycgPIg?#=hOK@4rAa9a|I2#*
zgZKR#$pe8vFeLq7`i_|%LUO^8;6Ef2-+#J<xc;zq=lS?)`4mWq9ix;YX`6~f*+~ig
z;p+s&CH`V{GO{wHjV^$+ISya};0~jx4y&{_tF$E`;thxdlf*zIg!C^>2dL@-8t#Bb
z2w)dVvI3E4I)1%i(ofow^d%wysXIy9a0meaHxVFA1RybW2FBvvssPpk2sHSk0rD^q
z{WnvmXKMNvnX_=ei7`;Sal_6PbK@@~=MoS?()R?11Oh-TNF)Xjxd&(`0IK%@yA;4K
z7qBY^Tq{VVoQOrjAC=G5Tv4wFqW<?tHXl*{BGEf7Bv?+(HJQZA=>%4iY(6AXj=oWl
z#K`f!Qus^90WmK{qhHuWWvj)vYh`rWMnAX7>?DbPFiDk|j2A&k#cD}Jtqh{)!x5jd
zw|B~if~uy%8fRnam{UbSF{(hk9dJ(vNVXG={s*gz38cxs1Ilz2D{=)|{DERm(PS^R
zOsv|Lg4BP(>TZ#+y0Qci$pO?7ElP3#B@+VgCAw86**;IQ?IdV)-nA`E#1s+&Y7^Z^
zdZ6xPu|I~OQhJgYXsd*Y#Mf<C3H)vn?#|Hb&a@pWaPP{;^%n+BRr!4W57v%^*hT*%
z49d#67yY0j`C)Ble&xS~LH8<~D>IYZvSUh1A2e6y)jiKFuPS|9SxZ9fDxNnyZ+P0&
z+>~57l2YH7)HZjoe(-+#Ok-P5^za|V?q2tYtk<g*gLBQ@eJz7Ck4IK3->tTNSb1F*
z^Y(el+olI|tqF4-_qtxTZe-nE?!5cDy?36N`IcDxhsPVPd_UAMHrBk+7rXi@YvoPx
z>UibK?2FaK&cQc>uZE|F-VeSW|2W&%Ln86!KhF2etxnFb{w48VEq$6@SzR6(TA3UC
zG(EBWad~yAcXj2%+NU*=oair-Cj>7s>4MjV!|DEaki0-%w~}sRw#1EYjiUdw4wb(p
zIiD#?6Ew=ka%$uLZ5`4pn5CN>dm>%=AJ(CsaIp{>H?lgCb?6V0XJ0G+rbBwS>0e0R
z%h3eV_UZ`*$3IA(VB#<KgqFIMJ^~N&s;J5HPb5c?r<EOkckOMVdNPN19eTa9#GIsj
zKCRn)Rej^lL&Ni5JSQ6cwmuGjDBm1+y@R}9)F$7z&?2<v*Q=A^r<Jy=+dGw%S+P}O
zw{%bb8)dHK;z0gcZv2>|Qrbyt?l%8Tt}CvuSKeS!9eiGSCo#&*c1C0rd80CT1_ev$
zZ59QK2#_(U#rsQz(Tie!85~$#3>7dzu%HG;L{}3*EF%KT33>0C<}{AKmoJB(Dex9X
zN-*XWs#9LU^2E@Z^`>9&!>t;^)>B<5$PYzbC<wg#l_j4195SX?lAa2da=&{apqFBk
z^n6}zJLT3&_Kn)&;tT#e<Ec_#_%hRF2Z_a_d06iK8_Hi%_0&2)w=-aBKWp9J3h5j|
zFnPaPUaS@TnwS}R;3eL=T1?P8IFB>ZTTKWzt7=K$p=?y+%#uj!rclQOpOmKF$d_D0
zhyjZpQt-;N<*FyQI5P*I0&`>Oa=^5N2=j%<5TfL-oN-|Q)`nk=t^b@fQdd(2(y52r
zMth#maC`E_<ld|R4NtD#09?HUpTs9bnQ`lLwo3{EVEz(19tHcpO<Kl&X;X(24zF{)
zRg@OJcJ3LM#-0&3TS!9^>|lo{8q`lD?Qo!r=s*;(BM?#gM+<<LJO$&`6qj2TW0V=A
zoh7=1y|#AWC<NTOu3;MYq==i+(Oo>HNW$fF>$x;Zemc!VKdw58Yv#9*_Vi+y?q6OB
z{%XtH&H$U{SFngitWKQ>5U{gJPRM1JpdyJL(b|{AaFK)w__cSvj{u$M(JN9)OVUH3
zM`vPphpY`P>W4+w+Ah7l0!jUxqx^ARZF-7QQiSl6ZMh2Jn}2j8;kZE}Kt<6F4Fyb&
zX+h^v0bYGmw|SvhrQF5O9;{x)zh&O}ez-xAaDD5`(Kq4+(q+FWx{(Vb$j#7TA?1tv
z^~-9;4J!}f$`AVD1SYss_*h~D)5H}4qN?(Ye>&>Jqi^c!)9+iVR1>IOqpzv#8mH<W
z9j&Vk{qEJ++h#THnV<X0RK$KF{s+m^0IVw$@Na@snWxkS8{5nZJ-I%c<wwu*DXVyK
zYE%H|ORJdX@WP@yC!AUY%CYv{Sa{gEfxgR!S*YL=U0MwhMgV|czT$r|h8^s9cJ`Zz
z*fJ~@qjSfKp1!}AUpywVx1PStt4S!XcG+B!j-m2lP?g0CB$PNEbG+R}MMB}2^9q?|
zhPb4z?OcbQPl!i8SyxEuznMtAvXllC#yMfP!;TXoL0HKYwgf`L{`oALFEl!kp(3VB
z0C6&3X8@{Z%1`&AZ?U^H;f@6K!r-OsEarE7RB`SGw&<8ACMa&B7GX%H#DaKQKon;5
zZRoGyNnVj|E$7l|7DQLy1&8}ldO7FV<$_%$Pb1H<v@CfiZO03(W$CM%QL@}0;s;-3
zp-U=BxCeOjCu>v|#!X-yZ}g98?l1Aj*4A^$Dj|fITL_^jJ+2+>`sF7jXT#yAsShMx
z7>8S}KEkzP(UNK=3hon}7NwU&74xE01oXyIfPFs37vz5V#qf<_DehzE*nrxeBr(+(
z_K%>q%)LDPb<_1l5~)HO;)Be&v-@TGMeeS+!SRQz+U4{+l_v33=L-*`IkXLh&9bW|
z%A^h|jZ%dz%7x!onH^MF4GUW}SG}+CJ$Q1JO2np5c=Gw(gQsqWB6d?%lTFVLs(n&L
z9M*-WTHhVixXK7$J@T09*gbd_P9^G0E;8LsdsrK1D0-dg$@FWftZH;=yo-ST%%I)j
z^PJ(QZgOvCMnVqj3#qEH+WNEa@(vp+468k?-^@<79yZpdR(oOe?L*EqnwnbvAbD>-
zd^|mDCQ{Yl;`Qg2?PQ<t6l(isKbc#TI(jjZD(+t{GXL4^sC9B!Jh1u6{8!(jmmjGv
z2KR}4+`W6$wq|%SWa`Ps!{<lsUsErJu8S<3zB}qT9KLuv<H^GB<)hBuR1$b{(M2%b
zF%f1Y5ykX$5q9agi`wU+$)4^Kh5d0i^GI!++|be=B#)E2E<xL1nfAePub@#~lJ(Fs
z<ICe$5@~fQ7=snob-Ier{r@0&96yfx(A3Wf@dm5h=TG`|jGo`k9$MvBJQ*-aBORO#
zJ_*~O4BCu5&uV^3&E|LV#+kZ4r|&P4hc&9tn;Kf<fHa;VacT8`k-U?U;E_K_-ujgv
zCvWl8{)Iinv>@hxA$i`|NQr+TdCHr((B;2K-Y*1u3k7*T3CYto{A~6Qk|$FZM#TRo
zlDB2|;XjeQz19n7@TS^$v28iz>0cyoc-!rQBIW18h6Z*Ll4t*8meABtCHci2z@NU$
zm~Lw6GyLjXocF%NsJV4&_-o+HAM<rE*}C;#=L&ukXO2gjJC25LV${!nNOFr84PUIf
z&|fqP7`JruRDbaf`tc!}naDF__&v$q;e8ao`L*20_q03tle=X{wHK2>)<3xyxX)VD
zI=|%m%0DB5tQMOYtqOe=I+fPm_`E1k+=;yZ?PP%>D0bWJASu@V1A~fl+!zZxwTb-C
z@kh)tPhdb|@*gDcOyjl6UnGx{Nuds8=Ns@7vLH&bc7<M9Z+O;@WCzg02V!8r-+AQL
zBgN<Q;TVuS{!0i<y`lP7l2e;H0%#$2k#XZF0W{*<vF2Dd^(H6aypw6{KW_O8r?Z#@
zSiWuD(C++F9sP@h<b}Od7e5R+cayV*Q>*rSH6Fl%c5c=D`m!V*6mGo)h!XF7yI=jI
z<Ba_%n6a%92>=u%#}K?+RuS$40_ZvS(wmgl>LNCVi%*v_5};?)05Mv}KWe}1ArU%y
zk%Z*^CLwtdZT3#vQ|83Q?!Z6>VAOB*TjyC@d5~9j(BNT2@LEuRHfB)3dkBpKaL_Sr
zP~2;3Z4;bcUszIE7;_GGdC|Z85SJ|*jwgnf!2k(#)B{FDG|FdnEqwPVO5!-+sX*Xd
z3DiyQ&YeIqunmS<BGlK7Ow@$Tzl`i<5SeIgw4*bbS};agJ_yQ;QN+f8bz*R3WEQn|
zZk3T;4kojKV~pXX=VRqD7(*S5B`VYrkN0(p(a(u>#F6P^V;rZ+t|xdQb==)XLnoP#
z-xjfT#Ly88Y`UEKIVW<gjJgw`{#F<n-xL;iRz}^1qNJFLyZ{e)#2HmOiCAMoq~pSc
z`=fFW6CcA6(EwtdDQSrukU@nPGAES=Csn|GL~=X`oS=Fzq`JZ*5*6Jxoy;y5&E02M
zgYpdtBqLuGra<{w;Q((q#>zR!uPLPkjCU6VUdxLFF=0edK>ae{mlHF}jB#QP5<y`s
zIe~gw!21|Pa^c@v7skRd${WI;1Tiac;6NvS4-O33VBY4W-g*t5(@FO@j{6}9=(j|C
zO90%-0Wcx<$8>sBVEkPz+_y!Fp?FZ)QZU&f#kZZ%+#?F8gb4LUM#?dD@ul0}3aP25
zL*vMCD~pjOu&8V}z@y{w@XQ)gBLx}<1GKoLXy@b_a7Zo;L5CN)jCWrVP~2ill8_Lg
zmAI9|528gOv^RxifaKz}+t1DKuQI}^7n83mWNpGy_W4tK$}r@dfM_kaW*GoEr*_N5
z;Q~|CY{*E<&F_K$7za?=l3l<7w_c}FqhbOCa{S!Wd#0klPm{q50Sg?N1ujLtFD-lk
zEQ(LNVMAtN5_GZ=n_QXg8<!?xLiS-JdKnJ*pQH>0lldTkz9}-#+u0<9OSm~=vOf*v
zOcoFySK^*Gmk<*QgN>ry>G7a+8)%CeG&&wc+v4A~6FM}CPnQc$(ZM~(W5L&glT3j$
z8*fQl59zbpnb9U554C}1k}Y!p0+^60GvOlgaBY^5ZwR0Oj=0PM&(=yBH-nIb5oRZd
z0tpaQ;+9t8Lvvk#RsvL-05P=nuohBWkoAd1Wx3pb%*-0NzaG*IqN^cf-L@i=$B<ET
z0_>c4Yv6%j8JRFEp%?+cYvXWb1mCz^zpSD<M4m%`PViyMFYO!<0^l7DJQfU96wZrI
zEOA5^drlWsDg>ct$#_T8ZXKq0V(>P0CELvD2A4B3t$==aY=WE!0fS}Ly*;Q9{COuh
zzAS8<9B9L1?*Tv$4%-U=Q8~C3&WBaZK4#>=zL3X5at||dk96mIi&mK*VLtq4Iqs*G
z6}pw~+q#b)_Cd@M03DG0g4rWO!e7zdC*Aom%jGH-kF348tdnN1?dg;N_n@Z~n2qBq
zM`D`4E#}GP?7&LQQt%V!{s@iJ+%|#Kr?c69RuBAMKe@G*Z5R?tjnBEo2t+hTbTvnO
z(y4aecpAV03~0Hlpn-3k$PsPOv$4<_#9jR(2pJydsR#9@0EP-PF5bqf?BvH=0V=h)
zQmdqFM))I-hd|+@hjLM%^Bz?R?%KAH$UOIWkIFn4L}dnn`hbAqqO#qR5uP3epDSsd
zeF!^1$!Q&vN7W5X#D%=7K}LXLF}-htaG@{=Tv)9H2SVbW`!fb@oV7eqKL+6x2r~&!
zh4fM#34uh9dH`SVyH-*-6DzHVSz^YBC8eng<h*Mw(e$X+d2?rB8Z(G?PgoCz0=Lu3
zpgfzwt{(n%0HEuP9dt*2`5a1yi;Q0jRc9&#m?+BK?kkc2$F<u)as}iEVp+QoDglta
zd}J*Ik|!ja1>MW#&osy_T#>!2u3fh>S;u+j#dV?QJlfAW^SsPwbNpaA8-l<Mou`ry
zFpuo(f93>|kH)U|M~L8aUsmOrY&?;%D@j6x{!EA!%`0{!WZUGl8f?83V<n9Yvi=8c
z7K+uD$?5Hi7@`Q)UeR6D78kAU{r*Sj0s;rcumUE~gfq9>%$&&Kcw8K;tdr33S)USt
zX)c2y?!HVaf8G2@qV~`;Sss8#qTmn{NFEF!@0@%!(f#LXMXnY=dHRUL;1Tk&kG_!N
zS0SIQ<QMd8(Rua}?5DJR$<YIDt+%a$I8Ydl(5Du&LDQ!tW=RdM8x6|(FWV^^)I3Xs
z@{2<iFpY9~0uI^Jrzw3wJpr<flOEMFqL?d`*l|Vop}x?gS?vC7`=s`5<{gMO0s7qo
zn^m6R*V-EwSChNmkt_IuQnB;Qt}{Hj!WfZMVAAqn&HZ<>`*?Q?OdlwoBrZ=Pj1xt!
zwRzJybcM1-FtK@640iQp1r{n6-?WZ3RP6RWYl=`*3W{;S7&8X}%-O!OrD95PDnFh`
z4Uw>w(zWS^bOX$7mh@Xep$~;HFUfm{?b9AA6&r40w3Xc52nEG^khpbhrwMrBNA>Mi
zTqginvUOxPzrx<ZCY0Y5v2Ct6EI%jwI!vTCp{g+V^+Rt;M8;r+cc{Br_OR%NJ8mw?
zU&$xZ1VV?eU2W<M%O9yc>SNOrs-1e#*OV2Ql}&AuCqj5qo7bZo0@R%^eSSh9Y)AJc
z#NDNg-<E%w<Mq-JO(sfAV@JgZ&Q)P6$mWhgME3^+6r=uGMQVd!c4BJX?G#3;9E+;K
z_jV=p!x2nk`N52DCS}WpFkv-jO(Z0<d^jG&xC7yEf7SDodV4W=W(J$CP1%DF?ox8U
z>gBOr`Fh0Q^{7&mac&EcazDH5o&*s>0N|^+?kvd=C6keC*}{)7ggJZHQcBc=xRK9o
zlTs~@zlhSE4-LE%|1v-e4A~^4R`&Y^=H0aQlVlt9!;sAh##o~=+=B)hk$4eBk&)Bb
zD97&D;prR4Q!12=LoE&d$7waYf&7Mz2h1}yzCdFu=2azb(HWLT4lp~zKD@*&;vzJ6
zAS#Q&+pP)8zo-|9p#iOT#cY9gQEy#u59vgYeb3GWRzy%r<p;J&CC(RDSh{?aL?~I4
zE-M7w4xPlNx_b;y&i%Tzea6=BtK2V{hp{su6D`2#O$V+FV=UmYYwf;Y3Sz%G7H@@N
ztZ*N>S+SqOJ_a6=m6G%kO_B6KN5W)vyjw^5aX~N8{GM^H+dGk-yzcQaJOt@OFj)eJ
zEagukSZmyAAI@uT*3By~I~>jDdp<|xEDLum<JT9anHJ}o%b-^xM_xoGtu3DGsNn2a
z*>0Za{k`(dZJFigh~UVwR`{xpI95C@Y_Tvw)(FQ(fa;k*M}j7p6IK+iJXY%XWPJqZ
zre1ZXzNz+g1WYrf8@`5pxE6T0AlnfM!9YyCqP=~vEBH^gBcFo9Z>5g{*FLVRew|$W
zvL00va-oonLt<n5j34^B5WEFz1mic@ryzHzH#2KIZ%|M5SZ(Hw+~UA(JQ(p5CT?ss
z0iiE|M_+wpiR<MZpKAg)C26J@o{~Smvei&S{xp26<>6Lq+E&fi$GJvbjU3xAuWa{T
z-G1FM*<RDtnf9XVDk<f@J<9Rrop{86(P|gWQ&<9AJiFa+<;%z4UluvOezyAJ+Ob`I
z2ve#3GAF*Z{PFA8-(Q!FzS09*)n(wD0P-dtT2$kygNHgdf8D1323FaDKHAzf`lhx6
zLtKQa0mvU|o)l-_0H+;#r|*p4*2y1jq84{3@n0zm!6<?!^&(Kq2_;e9MV~!Tz;2!F
zZgtbHkg+Flc5{o#X-_s{k3Ro<_iKQI_?_dKrwV{nQ`x`1<H3XbrgjFK{pxXZ2Zq8!
z)h|MuW%uNr4y+;$+A8*@K7POH{B5(wQ{)+#@4{#O1rN$|yF7TP(cAr-oUl`B5PI=j
zlh%Qa(@|i=(MPHcfsO+XPMF%w-L}cSb1I(a&koqnA$=D-BrkgUryr%A9TPe|?at0U
zbNd$2dE6iiW{dEoiTGN(xY;^+oS|}BVtjh<oaapds(SI@1^;36HxD#n$IxllYr(U~
z>9pn151WY7XKUZl0J3%Mv~CS#cn<p5=iAeT@0xEto1gs{Is3`*_6OI(_s!owx;jsu
zW$lbdd>uGjIBZh+K6>Hz^2MF<o8RKozG^@E+01|VIpXV0laq#suWvd%hgE(bMx4D3
zKQ%swye{$MI>{}~Oi8j1aYoDC46i_QyA+~q(44^l7@5@*d9#;o6>IXAgybFgldMCl
zx|#o2hu(eC&yjQ;DX|@2GtB=7$-C#$89_qw80?5x5QXl2Gn`CjAqCe>LIt*RIaQOF
z2X+~cHBGThfy+Iox1C(KZE$~I<N9IpA0)4pOmE_AXR%H;zqjy2p;``yyc+Wo(ako)
zkKvDX==+WS48BV>cY?4V+d~VC))M4-F{6())A=1|_ctG9C0-wyldEul%W3+@I`rWW
zl83aiN<G55l|9hy`(5#Ygyap}znDE>FSFHNbJoQ_GIvU{4mG9+`mmguZBE>{Dd6-6
z$&-D#@T*2TH01a@3CW8HX`esL`!%_~K(Y=20j)P17wqW7(NH=Pl6MAcdrI7(cEPEU
zkUW$Ed2$p=32||MM;)c^FWOVMi}X>UAt8C1jAYw}>c#jw&ooI$-uKthI{RW;5Yyi8
z+MLl1Cfalu`duB~dnM`pRP$RVx`M@-W(xebQ%3uQ>Pbl6kE^0}y1%Zj_!>yP34N;9
zUPC`_Ap60ePE6W0bl33mR)b%u{2hlqqboo5{p2nN8QfDBJ(J!yIg{P9@Vl&WJ|I(H
z6EVMMswcuAWhQ`Z^fx!M?v*ysQe+6QK&dF-GBY!`WKcCvbvUrJ$);@RSGYm44sF|2
zGgx1}BV%N37{(B2GmF=}PqGd%3{RWf4>+9Z&xsAR^I*EyWam}yxMk=4@<3L=r;{OQ
zF1wrW$iZJ<O3pFxgJZK}@IaW{)sUA3%~wM!+vS|X@6R_o;bVWvIY-@OZ*h*XR+hgO
zr|H;oEkPtq{(2HkLCf`&A8qnC(l+N>ZV-ll%DdccW_#h1S*)bsnw9SG!ZqhssDfLb
zeLl%Lq}ir`d3bT|1*VYYrvkPJ!q$o{IZ-58hgR%c-7ALgT=qDt@+)8%GJjAV;z?G%
zcDl9F2D`KUp_l)M*Tj(49q+F-O=f1*Gg)^O8`qnD7&Ma)?@zz{@mk`hLiE8M+}vmW
zpSUJU?a=S_^q8NwnA%G$as49ML$}^sN=Nt&D`FD;-m0r0{Kxdy6a2@`NlVQ4hM4w%
zF{k)>zZuL_Ti^$=KINePp!I@V3lZ8%!Al5%j^NI8?cYA1vLC&?y*?9nC8VLe{Gr#@
zGjhc{UtX+r{HW?ASMm7Xce6Eg@1B;*uc9f83ifE>n?m@BUs>nxyl;IfZoiIhzKA$0
zrNo0oX8;7V6ojMp2ExMmHS;tvNf{MIb8iuP-bxk8PZ`Z3I(-IHV3s%+UhBj~f2~8u
zraPnn75m+6iDI5iUisB<Y=P$z<(Q@V`9Wk{^5C`YKzK7p9Cf_v{v;}~LX3xl#$MN=
zs3W{Zjz#u6&LDHSo@5=0P^Pi437unjp(A=R+|=1_D33W_Tgy5(<2H8gKI@Y{t-%-H
zy{=^zS8v#8+sxCXQ$+JD9Lmco|IV<8q%Y|?Wqzd=@{N$_aGs0BT}b=NU9*hLl43zy
z-DEM^drmJ``OhYFjXezRJuYDt)O8myfB5c3u?63_+03A9J8c&CjZdP9{QCB3i0l{A
zwqmyj>K%Xk>UGhV4Tjnp<k8UO>YA-dIR+YFo<GeUgT9llJQKQvy?W1Oa>6aOWybJ<
zD_uU@k2QHq3nRbJ2Kk#M%p@d_E2v`}vy~~(vutZjF;DkMt$6(kqRcpgA6^KOu~R_|
zK8xg-P(fH$yrY~o36Z2P+RNC`C^$4pe*UD0Mf0teg0M_VxJCTk9y?aeyl%q7eR~ee
z%J({_vVu+YkA?2LH`&;kug%eyTNG^?m6w`7imNVH4PZ1$%sXGq(deaa>7iQ44XskT
zFI=f7d=O)Thy6suRj_DCw^UV?Ryvo?h6jWo!C)DCKg0wCSU8cQzaS8R?&mRo;DLJa
z?w~rbT|{-)ZYuk;cXC+4fYTA{H1Q;(RtOY@nys2TYuIgkmPUrQKlh_(Kq#<IV9dil
z0yp!~g)!rSX5zJzglXoxjQnM(q8_&^?6PaKs_wQwq1e6re)4)#iFZu3>T421w#@jn
zLAeS=iw0Hy#)A>ZRa}n9-j8J(Rg^hjy&jz(->^c~%)|}_zEI>|4i7T_$ndPO+y0~O
zL#FmDi*F&9ZqIkMGNpXE|4m@i-pRDPIpvtWINWe>!6t)=_@VV1-g?vNBkS~w)>!vY
z2DU}8io7XJ7A_a+aP6T3b5F*NTIZveOLK97&9|VpLTE_WP3w<(^9<{f6!WLYnx<cI
z`|QNK4hc~$v?$O|*4_1;Tk-wQ-2c|$R!V&S0#o_fVL!jou4lH=%6dx9E908+^vV=k
z5vLhm+eu%Kq`6P(w^)W0Xm@jLdEGA2L5JPlh<W2AQF_nqAz#>~f|p(xv6Yj-kTR)9
zkG9wOAgBFN98!-Xy*4;_?D~>AB#T|QHyG6~zq%_fS*q%_Np*v@C$C1LoNs%RJld|S
zNLHef+{*(f&g-mteeucGmd8o=Z2R-87puoSw|1B9+FE~$KYKw6_<|K%yT6LnUGwyM
z&;6ib@S|uw(-!HTpO??xb%-=R@bE6Z{-a`+U${A%q$rEJQ@;FK=!K_;Pj1o6($7{x
zFO5I@WOV;1-dz)HzvOW<dHGJ!X`Eo^`Oi0F!9NSnzyg9@5D#1gcjzOEK7pRCP26p@
zp9QoSfmh@1xBRY$=ChIu^u64?<sJ1ikGq_IpxE6PQxuvjtj+%>dDHh=_s?vpb-rOg
zcR%~((5%bxd~fYH{Vc)1GSvk5#?;;Yjk&|_>GkoBi){Mqs{P6^!|=YRb3ahK?ntmZ
z<C!|z2vCY@PrIJYGc%73lqs4|@nGWl(76#P-p!uu`;2?O6nn(K?3fs$!o85Val{Gk
zh>v>9wd9RGX5s!Ao8-i`V!Clmt9CVpcQ+o(L|jwMfO8Zn18b(6rS{HZp5UF(`|bOX
zF_FhoWE-KI^O;-@ISF7rllVBhZy|P7FxK1O?@0K%f{H(^T+OaJA^Ud67-WlD(bu9O
zg2XTWyh{D*!cGg>=iBGlN}Y)egL2_V?Pp;-@lHQi1R_p`Bf|H~oqla$B7V%Dg&+4h
z{oX5&`1K_s;^(^4*+yUZp(9uFFC-eoh6anGAxdbd0h-JK4f8^i?|1zEkbL1^JO=w8
z-ICY8bW2er)<R6%_>zG+$vkCu)6Y9HhGbtNeFx+Uyp{4$B2TNdbXaf5e>IsrGU=F*
zmY7F3P~(9flIAMm=A;jGqLe=;x^BjhSU6?cGC`TEdxL(!)abFLIryLY-#_R_(7#^l
zkLC*{DoX-7m@g@l<X3F+s$5DMd}tjpEt2lYSW?f7)M-LnJCgiY8V>*RUy)>ABq@=T
zUogq{g$W5KMUHMp{_$UtL_vXxDgTrEi!Abw=8IT>9sIZED=qSp;Tz6b!3?hA+e%XB
zqY*7&8*#8{;awUD>*SG03mwr&ATc(O%$eJTzi>qd0x5|5K)Rl{CWVfTicq}_m2d^0
zr{$$UI{5>X?DTLLHT$`w+uR5ic6Ju;`xkk^S9n~dRXj=`UaBZ5eHteG*Jq{l=M7E+
zBta}7Iv|$xSO4`zk>qBi2G)5w^uPUPB<q*3hCZoRMe;oT%~bvQ^KGtb*k99ea?^9h
zkjzYfjc1mgxW54@(pzyY;2#y(od}PxNFRJO>D~C#drC;Y{U1WG|8E%@>6iOIdce-m
z`2S43f~oIO@hv_5(@rF%UP<jl;hx^d{st+vq}1!ng`ESUKZ_al_cgcikDkA7lTxqN
zH-cjfcmuqW>{1h=p%gGJ5J(Mz0Bb|yogsyfA^8t;vNem<srf5y3v@v6YV~rEg(e8h
z&rn#d0ih@bz#U}`t!<E3`Y&F#YvtCfW#!~qfhds0O_fED?V;!S`S^LMH7;C$u<?Ik
z(4gf0!pHK)_S~0~FH}3bD+g*C!Gda_7!(<ebPfSUiZMw3-Z-JaaXpHU2Y7QhO(NM6
zrPVk$Jmqlx0Og7SeuuuRR}6UKlgMU!cfcS_=22*WGi|};v%s(U63k<1P_iQTomA<r
zi^=gc!4xJEkDdF;Q5>>@oT$hiLKYJ(Gftx0lL<`uu8fbXh{2}LWw@yqj*fwH(J1x*
zSnN`_6u8-!)p$7yWJkke=Du2Z9|Wg`#^|u#P*s)S<_KXOeW{xekIIHKvrElre0pQ3
z_ei{yOFaq%mq#}xS&CTK>r;<{EXTTp8a!BP@2~L!?A#Ht+pFsO36YK(w4&G|Ao^g7
z8O^A=xq0%E>mA>NLJ4RjqV-9_#qS(pm+@Hx0rsdOnjRFHL86k1wF`q5n16>H4dR{d
zi&WLz&W?@JCtY>3<d={$q@yR`2HC(qm?#OWV2LvhM^u!~1rb{b!bsw#OM-Q{I=18?
z>U@H8ANj8gY;3a5j%6>5D`jJVjRy7jL7=(|fezrBE>A*Gv`hCAY|#T6h*hB=4o1cl
z^c$>J!$c<IQo~;4%?(bh2F$J_av?~wEU}lFGZDp0v*{S=M$0eg9*@Yz($7fq58Xzw
zYHc@U#z?4Ppy3);U4pbUE&%xY%9z#lLJ|I;M@5eGs4k<=HUTafd~MeNL`z0%FFaJj
zBuYBKE<?3aCx-x14Rvdv5kqom->2ck;fS@pQ7z*Yz+!o2aVMiGk(@_^h<D|wt-Qf#
zp2+#u5mD6oTG$ed^UglsL_;j;ZR|bcqA{mg?Be#HwTW%j!8@0sSoSNn9s$gK)hOIU
zp<-I|MEb8N(2WcU8YY4S5;4jBq>qg1R<Msf#ue+(tD}@H3_5hFQ$=ir7(n|^HEn!S
zFY;fLaxZTvVZZZZ_w?rT`;$5@lE-8U@1GyDrz9stQ&0hLY4L$NT2KP^W2?m7HqCLs
zz*z(WlOU!EtlZt|YM@C0zA>7+q8#j;a(86Zt}}HRRp~e7Yv_B%Q(c7f$rA$L-1*Dp
z!<qy%7)qrh8ABdTC&7q_hoaOBFC>i4prYt}<S)l?nBHEpw4(0<U=6+QQ`*}T6<D5N
zVk9|psO{lQs`$0b23)Iqt&wFVOf+wmm|{X>Rd}c<aT@Jg4;9|<(SAz?SXO&Loe_|b
zOF(yH4+z}gKamCpTTQSlx88GBKFndi@cVdN+Sm-t6Z7B>4TtPyA~~aha~IjR1)}Xr
zw;YX%7<tYd!_`PQn4>G`ssyJvHD~id%hO0b&O8@3cq)XGfcSYie^hv}?4k>bmXq=^
zTswix5v~Vk(_uwe_jfb4?jVQ9(NH!{5DNV%R{l?1JNN<;i-*v^Tx5*;AC!RNpj<%x
zzm8+c%l|o!|3ktkqG?Dv6#Z!j8kozG+JUBj+JXP`P`>eZD3hvwq@nCfs``<Jvh#l#
z%HE`*9QF4Q_0LfL52IZo)A=M8_B2+`3=W=5F1}oTk%z+Kk3}y&7LzEIyi{>Xrb<S>
zMnUnp;+4iL=q9vUtGZ@~woa#xE>TzS-!uJx9LImk+x~jh{~E`E4CK#(4Mvi9KS@hU
zEa5nz0W7qi3oa*N%Xxx0w0IdAdHAn|IWqG{v$86qO!!&i4LG?VY9J1t?0dG*GyntO
zj6h&zCI|$i1wrI{J_TyPwkTzU1`KKP&**;Mpbd$$fhkix#v0QqkB)I_kOz!%_W@j4
z9Aiv2=f^Fe?19Ss>FOUK^P>yuRJ@}C=bu|~^HUTVcTg!aQxH*0wMz`(bNtJ21Q!^}
z0j5)Oripw^kwANm!e%1_bFC+yCf;BpgDVmQ=i|L934rrpvBq~x&37wvn>a$_rp=4+
z8OCQ?Z-D(AG#{YL&Cay!z{5ME$b|@&+&rNZ%z*I~x=z1X#Xsj45Utn(iRwjrW1E$w
zJk0g<k*>)TiTW{W=WI+y$}H_QdSfuG4+W1yT)JU2yw8&kHe!3tg;on=@wNB3?o#m$
zCa?<S6lZ|B^bD}5+TL;0a!YW(Z7DJ4a@Itt`17S0W}^ppl)f`%>cHrN4f7vXe^N^a
zH-(5!YB{*1d)cxk0D)@&g1R9491TrWfA!K;Sk5#qfZuRWtLuVpnHd~ZLr~cVu3hg9
z%`r5{A?y_PEK{meITLj%`uVk>@{y8v19dG%dtg+|qiDIl!mM5$PJ*l|;;!@KGdvl8
z@aP90e)I|moa4o52<8*TJZ45tPxZhx6hM(F$}t3bKfT^dZ>{XNFOfN_GeaJ+K^BiR
z0P+c`Sjhqnp--6>R_>qf+qhMJ%5n(Y{FH4}$hnr|QUt8!+Gkes=XqUy?3U~OTH)0L
z7m|yP&Ohz;`a}IyA^t~rj-~S4NJe33u5d%4T0tD6Fh5d$htr)}^ydt=@cN`lbdl(E
zVNX%^^{O%or8YFS;?BDl(Uj#y9_u-h6NH|pO0}OoszeqE>XhOQqiWQb8bUlD2#)Ru
z<z9v=Za-02M6Z$J#P$>!ZvvybDV2zY-4s$f!rpWNDK=kt1xrk#OO)nz&Yn~oHSm&d
z7Eh@JBZY_q=i1DulP>0+enq-<{tiLlhz`^SJ6&*rr#s!0JfO&XF46?h)vIhKkr6NG
z$ADK5m&IGK(QCPYAmC8j2V*fQd!?oAv6N2E*e|y%#?JVn3pU?&=M#*#;!;%KJOQ;!
zFPbh%G*z=9q=JGuC38kB`OS-EBN4ao2;K%t&9Uppm;C9B^_M7K+5dDihFc<U>DvQP
zJTRlF)+fVX4Ywd2x=<_gj@r;diaE6y$CP<>3py%UN49GA*|3aw1b!5cE=doZxaWWF
z&}-rYkeWXVS^kV$F<kWCM|VN#MoYP+O^`;=^));-pbFzEIa_5oztksB6JKer27&gP
zgGG7n`<v-yzq#9mP>jOM>+_<A2<jB*l6O$f{%BUXA}fI?R!yfBvv&=BPLf8(n+DD6
zTPhY4t(KCRY0Usyq^B|EJ4b|_Y_m@ZT&je4&Nj&rLC!8qbW>u#wWWAsT#-Cn@4m+E
zr0BO{;q1(jsBLh|+--oTfolZ*PBxo&t{V^c&pVDmrE#a2@W$(=_%@-zeKgmizKy4v
z%#q`ZuJI$zS3(eiZmA@znoO1?*8+ji&C_Beq(y4$p?O%}2@<94f&uXqe9ufG8h%bV
z>YR6UOlq*RL@!MwIW_UM?CVca+Va<E^RO`jac9?4y<K=D!s+t+=8Bc&{4aov&>*ga
z#pJeePC#q7G1Xz2@#{)1?IIScAayHNr>lfFomkL*ati?}WCVV8;du-sfX7R{Iw5{4
zKMnxGw=t)II4S6k<SVqE1{Z(4v$p+b4LFd8$HVsrbiclX%uBkGQxovy_(doWZ5M)*
zlM6i!QD<Eyh>{F0W)zWEXgP_x6p{MzVs&tY2@oZUZUI4Ec<JD9QKFC$oNx(v^59%D
za|1N!aXmRTT8&1(5VQg3e8gcw`^g9>;kaI-!z-a`3&w%o9^j#Ck6ma)ZDX>SGi0I@
zi!c(Vrda3w0P;~*I-hJj$S6{m8Wuw<xO4-67*&?3!~d?c&PZqUqQZa{Xb$8I#FM`G
z8}^03DgS%emz?Fo|Jr?fp8Pz|f7RdqtL;ld@&zPG3mIw=c~ar`ze;fbBk%j?So(jR
z_oe+O?@L+|{=XJ}|GJ<_EWf0x;NQrvsHP!l(e&@5w8B3}>Hn1_*X)0z@Ed%S;op(p
z|5Et<vljbrdEY-vvp;!XXIF!NP6W)cH%TV~Hs1enBJkhxzNAwFH<G&ff1URg{ol#^
zhW*L={!eEXq`dFH{LlZt=6(N$eg9qceNy}6e_8eYKS}zMKF0rd50dp(k#vUm-@?8+
zbw#g||Au{w`_ehp{|WmJ+#^|U9sUXXlB~D+y7m7K`~F4j|6ADiiuB{&n29Gg^&SPb
zz2?uKJxcOoC$(B_Q^HRzWUgZ;66<j*gCv$uLrTtn@AEwJK0QYV9)kR+TmH7(r0DK1
z_Mw)#8=1;ViA5_e1GJ{MIXpiODXcs+wIWX&oO{u*ISyC3&CSfm;vUZ(Uii?^{_8^*
ze}kWedj|pP&x|~f7am$_JbE@DFGSNg%~kHwm8k#d<Aeqc4a0)j!btneqi>5n$!8ag
zJK9e6HpZVgk;1+|j&}ZpeLFjT{V**~Vcv8x#u7B=OyL}Q%&WZ-;N052s5=R<3(+b<
z83y#=Po_FtVcRrhfh<cIl<^l7GE%sL*}&|c1KXwqMA-hd{zTO47V`^_DOVAK$PVVD
zXr|ln>)QM!@+c0az#Vliea;4Gij=JF__>yu{ywy33hiJz{R#YTf~H!7i@#CaCdv}-
zOL96rG*B?{45s0YqH(2laa6UVj&UXD7aemY=f>&04;OqrP>zV<-{(`i{Z)uR#*vGO
zk&r}_>8AQ<|Ju5@(=G1vszx!p3_@Wz8w@!|lsovs0O9UXv24io?&NmFSp$?koY$P3
z-QP=i^p;bk?dW5XqAKAh$**%J?Y!N~GvWsWC4^MtW(1Sy1pI{uBig<^?mcIka6JJX
z@KsgsF67qk#<~0$a7FziT+}MUKlB5LeUpC$A&^fH89k@huqL8Pq;;vW*{HIAniJTV
zn*lGb5Uk9D%x9#a+cxbrq(Zj0SXK2TKwsn8_a&1$*c-~8IMP$BT5|co@(3|!)bzDz
z{wbNIuIs0bG&ftTDC^KZyf@yrlQDpk&;jsNRDE2+JJ$>O^iYc4tEBr0J)<a~^>+=v
zvdXBMuTWmQ7SA`yruEpyZnU1pcurMH<sOCag(BY7$JUQCHyM2U>&~9;3Q%18<vRt?
zb;vCY9E$~pWf)q`xOUh=HKoXE*qbllJF5=~e)p~)CFqAMj|#-mUpw7wr7a*V!o9;r
zhu8_>mp><eIAVz^cGoyn^$Nm)g#zIFx@(YwTl;MTg2K&~)xQji)v9=UPgQHqLx1cw
z_EoSZWn85Hpvo=VrP#}@!^nEmSxuKUbC<$Ds)93!pq(il^y|hxx#3NdgHGD7H{Z+@
zzxDR5e_*2wm4`|8dIVc1a0`Mc@;PIlT~SRE{7FO<w!A|J_aqLEs?t-Rf1lhdfHF$y
zrV?136bz10iQc%$sb`~hp1!y|a@F0crEVy~AVG~m_#%EwlG^tyvxhA~Y2Ar71gu6a
zKyk(29ooifT7P-8()bG~oKs3wP^(UeW>wX40IoS`!Qc8*XqfZu(u3u!m=>3fH_6WQ
zJgBW31&YcpN$e(3%Yxid+%8ncDh=ZW;XB${DBrXMgA#70fqt#ayBP%0Nou9V96ov}
zC7py-ofrV27ZL+uGZ|#Bx-}4M;tW7ci0*^VusDn5`?V>hq8QybcC))#EkmW^K?85D
zp6+H7p=<mTU1`@@_j39T%A}GJ5N6T6+|iUW>2d`_+;I`p^iY{>^MIiwX&5>!mdW?&
zj`-&7<!>02Umm+17Yij>Z&S*Z)^*>8bo<e57M5LkQ2A%)eDBd%!`kJ>O+%cUITOUN
zLXBx~G`8sy*I`P91_`lGn)Rbw2e4A_yHaG}0O08ila$eWcUS8Y+mr!TwPyxtCBex^
zm0D?l8634hOBZS6#Atfvj$7+-K{F}@`AQ1MZGKBv>}|V?1pqMxpJ|KvmE%BwGrr2`
zJ<u;vsghm?^T7t>E*;0}b+U|D(*poy1)1U0;AE4}co}(O1p|PFmJj;Y1XOEK111xR
zq<XC!;nUS06vl0{z96nzPjQ(H(+F;L)@>aq;KKRN&DS4BqQ?|VGTuK^8>a>&;xYGG
zCL?Py88N@yAU;czldVmUabh|emvDgInIL0ULu2*T6T2~O2Rud8r)nj?JJY=%53_Qy
zPp=37q!<H0#q&u(aUv21kcdS(<}a62MeM$C*Ef82s1)}H!2p6PQ(Lh2Wy?bFL5CFs
ztZtnL7@b%l(cdrmo;s3?kYuE^b$zc~eSZw3eg@-FV*zXai0_8d!S7!Vtcu5E2vOIS
z`ISynLI8uMkN%9DNOnd6@v9lhaW!g9t(h^rzARC|Ml)?jMK_O|E@IxOo8n?z9gok<
za>p)H*2SzC1}nBVtetmhQ%A)_g(MUCMNaOkgnvrTNSUxZ49-fc?G^#Cz0tL})~8w1
z%S#Mh5wMOL++nM|q6oq>I$NKyY%i8e<!r4PVW-%JZL}1oBh#><(d@LcZb9kp)L4t+
z5{3>5+e>Xre!JlI7YUjneq$6d9&}9A#8>h+$CB(yjtX0eWIzKR>5v)xAgAnAxoWDR
zfu~(T1G-BNgp0Knp=W>&l=6!23{yg7Xqj?uiSmH(Z2h#;_0&Yv^%r<Dog#4k>qygc
z5}v3Wme;S+Tr&dzK#2H`2ALxRCORNE0f1IM=Yak?BFgrT{fF*qX!AnY8fvH&+<hgm
z>4rNQwB^B@>rF>;Ou*X7GU>aCM0!|<OC$tX_-3&uz2FQ4GV_3eiY_QW$xEq0WZsq_
zp4UpIBo7@2{LXTO`ys<=DnMcVwqQIfurtO;T05@P)+$KOC0~@D&2L~nu(fuk00RKo
zqwv_Lod}Q}c8^gQz>gt0<GehACl?I5N}ox1(i5d02%<saW)hxaPh0a<`%cHi!aS)z
zJqIHzqUcRnq9CH^&bgXh5fK!gU8S2G0KR51nSdxQK(wkYfaowgSVSob4yhoD?ood$
znzi3~){BO*N+xQNoQ*m%M`V;Lu{i4!n$%;F_Q#@gZ!ReUX80I-Y81fTcXzioMFWUZ
zMhHPUf!Ed0xnEZ!AshZ3K^MRPH7c>w>e`#yY~?TBXKxIGqw~aaR3*ni@TU+k`>TA_
zGo+F|6+nzUKj#bq7(wCa_@*2j3b>Sph-Ng1W}m{VLSet&-U3$gmHJ4AK8kgEe-s|c
zdI+>gz<^PT>0Yqt4h2scn2cyQoe3u6bZ;ho7;vQL-OD6Asz)iDrjTs}QV`v|kpQN0
z_7ns_g0<kMIHdFF)eZUp50U_K)T9Q_{$d}l!+_wb1?16T*I}X0H4p$Q^gjOfeUuOL
zsOvKq+|MQ-$GDjL+6Yb*VCSaa%Lske8(gbFdM#+sd+#n8gk67Z9X%A-34OK-2ROa0
z`(y6oa82uRuLGa};byOu^&VNA@3e*QhPMwq{yt~CKeIs&+K}$d8S=UTZmwyW>}<fg
zZi{yY<}ImnT@B_m9bo`fUjq_wrh1)81vq2m$??Ty?rvlNV?yBNY2-6!le!&0uPJ0R
z09?ZxwvuiyE;Qt*AeA!$KJ?;^jv@gGm@_#bQtMIfX4IJz4LC<rk|DX##y&YWYoXo>
z#MD}PpGD?4pfISRA+?Ll3xf7(YPh+k<#QM9glP$RS(>(e9CMdRpJdN{9+OsQ5$xC$
z^9%|;f$NhKZ1x&`_C9$d6VsnJr0=*OCK_PWMCy@6H!&252A?s4^7UM_y@dkt#8Sg{
z$REOiIW&X@7txmqqi{2zD}?biQm;=?3<OiCpT!%gu1Bi&U2EL&o6`X735G7sWCQ(%
z%{s6-e=?muq|pHK9FA-_IP){F$3y~HG62bkHYO*48e+VFT0k9bgTw=kP%wm`@2H@E
zhrwq^`-Un2hLaNE67j2W1e!nnXI$LQTGpB%Vdv1rQ%E0FoA3;pvy>H`B<DnYPoP5N
z)HYa8HR)#+QcX0#0W<_y1X56#kzP1|dG7sV%RvB0FfoV*fVa52K8&DqZU#PC(S!=q
zEi~n33=(XU`a;J@aR#Y8gH#!~){ed^x&u%Vf#NJflOsbx6l^TPuo}o5&WRQQ0#UUl
zROr;Mev?KMFuR0t=yYtu**;tq<%2YFjS0#E@cK&wSpW`Xxq~x4gd-&YG$)w_nhb)D
zU$b((SD0NZZN1-Oy(9EU9|mx8>f_5@z6j|<oa6C{0OKN@6!yLJI_Lgk&U{%6f>j?$
zVQ^p9a04J;kS3q!b6k@kUx1Q-DYq1^$^baweNekgqm;ukX0N0{mn5i^W{aoL4|)hj
z4LiU>3E9hm2kaXUQW^7G6ToCUWMw#taw1??YbY(~d0ikyx7F|*0sL&I)Va!PItFZ4
zZem>?_>5Ta@uXn40bnfDkN5;xvLQU*Pdhs(`}*Q~Xn%|~Og~mP?Kh(E8E;`%X*uB}
z2Fa=4@X9OrOjw@*UEb^FkbL=JWcFk1G-0@`;^(nG*XM+3GQii_;N2_gTRW9A2bQu#
zSPUL6di!pKR?-D`11u-#VIy@n!Ke)YEtF)|W|edfl-Qa8O|Ow;CZ)@(h7N^>T!Q(t
zy<jR6BbQc_HUgPPUkcI{={Z=o(}1%Q)F%+EwcWDqwaV+HoszQeguSY6*uSwE=L9GG
zKfJwnRFmu8uKT8uLcov&2-VP$W<XG?1_-?cL_|cT3Q`mlkgB0dmC(C{BGLr}q-y9L
zY0^<pRK$iI+vG%@Yp(gNZ>@9o-rv}VKNuM>81R-n3D14~uDiUh_saKUSA*hCMGj}B
z?6H5<76?q#SZ^C|s+-WR#6CZ5U&(tqb1^$BKIZAun~xSvGV3^g%pgZ5&foLD@SVb8
z#FB6`IY$`rk`f$%&xK*U`+0}l{$2!&ER$cfXs$G$L;|jhRhq4(Njska+Z;2rd-ZLH
z#5>vf3;2Se&4l@Nvr+Z@MSKm~A7#e`+Y`%B(KW3+7CuK!XmGIA7Q%|@xt@8g$>l6J
z5q1OvwUrLt+PoI#3i|QY_&E<Wbqn!Svi8TZn{_h?YeuL#8Me;j>fsrkzIslV(FAu0
zT?uS%P)3&fL66WNjl7|u2cYyVgzm&eq-O;>F6J^j5Uvpt#a@rCvdoS<aiq`w#j_Lh
z)FUJkM6r&o&nI=|I%oEg`cW4kj?OX5U~StRQwXWrq_90yPJc0zcX!c!2F2DwW<LmT
z6byv9klD*H{%3-zFf!msW|JW`O4$OAKI}~xHW;R}bBEC=vftcFqv;K$yvYwbv)?Cn
zgWjwha*GG77k$S)FQoB+bK1n&ht?pQts77DZ(6Z2CSv@b<(~Q^0CZ>Gy%hjDqJQ@m
zrSKa&GBW7&^G{|F`cXn<(VH^n!(Qec7vzeA)x!y-P?m2&o!f(t910jX4FmV09g}>1
zDe@Bs)&VFRbd&jN#sxIYd}w&ldqKIX^x%SfE7Skj9I7wgtb@!(8P12cn3d7(WPm$u
z4A`xHU{<|spT?af>pM>cOl>gHEfnNcx^o*Ixk~8obaAN@N4j<#_UdpsH+s$~)Fj0r
zssS3sr1YN-HOazsUsI{Xut9`EOwUtO`l3pfcIF!T{5Wn_Sg;y}6ZRiA&oOJku-|Jn
zYa_Ea_nUS2up4+pG))W{hX&Xunw|XK2WlR!ULFqkIIt)&c##c=^fBEeL-vv!2k}Fx
zUep`kM;?2!i_<W*_N-Rl(Ra|1#g819%SO(y1~6!dL<~aS0jQ}Qd4WN*!+M#^V>K%5
zJ*K0Bn&a#C<F}yQZTaIbnP}e$*uFZpIOb)XJ}0aEH|^!vc85*F7AW@vmkt@JF+sTK
zz$q@qh1@bj)){|WzPGyz0$L$ZsT0_G5X;WZ@56tRc~8U=CAcyvd;*0QnsR<SDK0-H
znZzyrV^XSf>X4-_XUdfD*pyNyuJ8$iga%CuX-%u2z*(+xm(s*J!lwm0rzsq`U=k{j
zq*AV=j})09o|vK5V5M;yfn2aa7mT^keY-F$6)ULn19PnNzLOTVkfe0#$CQrNtOo~n
z;~jUX&wV)8tf$tT;2Jb8MKr(~bKYz&G>NN_4A;gT@GY1PJ2B7m_I`)&bd>jeqLyTL
zByU_NCS+wko#S93Q9$Jcv}hF`pERBEV*&09mUPl#&;@<WFlii%m7UN)5-J9>50SE1
zS+nRSG?SpU)FQ;yP_WdoGIM)ni7B*nS7^Cc3)6mLnHjb`SaY96oQZsa0>20oGH~@*
z!&>xTtOfT!!aZR%?LQmVv<+qTOn<T#raxH=ts}=-C2Kz^3&)?7g{7O<&tAD-l*Mr$
zzh9I^unTL~E{yhT&n=pTSX_)t3`%5muBH6FbM60Zhw4B56x+w&tOcl~^t_t7dh+PT
z1@%Ow3hNhGjr%gK7U!@p@du(oeNF&Ed|o%Ao2<;vN5t+CAKDiM<r5bT;nWF$i*rLD
z+~S-dT>&B-fU(#WLni<$k^(@IbwTlz+`N;liOkYaihwxQ&p#h6zDs9U4kbKTkbWh<
zKz#RZaf|_Mm!P<yR{+4ry=zy-Va|pMJJxTT(}%{CisP1S0H_F2fM0-zLzhdO7tMy|
zfB4J_B8cb0%dDr7dc)yb<J5%(GJP=0h5{DEP)8B~dp%_zrqeSp61_{1yg`n8OoHJ_
z?hH1W5t5Q#aaVP@#BWW^udX~B)|LEQCE(A?sB%z5gCavQJ!oTZaMJa62jJl|=UCUu
zE#wjlehG+8U=d4y<)i=U)c(uYVeUU!p{;!PujzlQ1bkF{>78VuG*y(%p9U+18VPz2
zNmP7E*UK?~XdG8_r)9btqgm<!LRFMI@bD9(xr&qUs)Es7McP-uh)@g~f?+?oPYeQ9
z)X{XinxvYXnxbs?8wuiM{d!i#-S6A<pM8h8|JrxRVxd?E%4z}pI}G$!>mh5G`M8h&
z@8Uxi`tvXF)8CH|R`a_E(6+L6{vSnv*Olm>;*%2-qvlLfq|=XvrxJOLveqoDmBHW$
zv<nGA2QL@gg8R6PyR)B(uu1d=baYbU#IbBvATGbTN--E8dM|?Sk~K|~?MiggWeZVc
zvQ$j0bUct|rjU6~Nz^Y(;u_s0m2cP8tRwPbyu6(3_)1X(lA|IpE~SXqjT<h;<L+jZ
z-5Gv(@WzNl&A8;mWZ{9CGM~8)t>0(p*X6(X=jD%NJ(2N>>S9{@EH+Hhn5uum`KXsK
z>*!gRoOQ7y(=-2mxU9!ed(5DbcAM&r;ihL9H$dTz{9uXG>%K%(Q7x}Z?>_IxxDyr!
zj@`SBGY%CXzA?1smp3ya-IlS^n=Kj-`r*@bpXorQ;`>46ugl!q;hQpu#Daad14@4=
z+%tG)$n|Tb`Sk}z{P_p|4_gZ5f8GvBf8GwiSFNA*mn<}n6{Gyb!!-3I$wt4|D^|>*
zVrH#z*p6&_f@1IVYsqqFQDLkn04sE0ofB3&q*Fl1>EKJAmm+?najbU8UohDJ#g*#s
z=bvrp&sD3i^!yjKf4^$QK_V52;^kG3)|?>VAZafk`tab48cOH14kr-{hoJ>|b@0M`
z>`){>(IXN@<f6clNkoKhHjkn2E+WJnPt@ZPDm@u2Xo0V#aNUT!daFqnLj*@gpVP0@
z<8H_zCh9_iD%p#Ka5wFuhy->7ry%y40Gf@RUl=-LbKWliJ1)eQPUJrq>E4sn1cOoD
zA8vH@wf@2Qo;T%?OSW}Md})FhFv0w~(k$N;Aa@hs1xbRFey3?LBpd<%dz!|^jzjDs
zz<30IrfC=fE=~Z?#TruCCBOp+697CO$4lT978d?1P2&`hV+pSQeVQhE04t{c8xj07
zP5TK79{iUyjrg~2$$u0}D*Y~&)X-ArmZ9*<8xa&ten)96$dHd@&bpEK_gM?<w<T!U
z2&tXet?BgNqcqlf^E*mo6|MdRUZ_8T7g1d=F+E=iLw_lg5NWeZIx2vHI$*2`{4Yjn
zp}sg>Jsnp0<gY00XY(YBpkdv;|2axK{a-=H{}`qHg+8)WTYdq)zbhz1!h-f#gzvG8
zlsyvvw<s+~(V<|UONo|e*}t?<ver&kl=c@n$$I_x^|JmmN{jfvnWNEucS|P5{j*py
zGlf+w$!e9%yOzzeUj0jsR$W*5_Z+RYwe@$0B+G8q*wugc|1(M(8)4N&PEB{SBvtF{
z>l+&zEc?{opSJ&tk6CHj9^^mMv=%C^%^xFXoNrkFNS#2E^H?6NXQgQm17GnQHIy2q
zIRe0z4t8#cC9L{0O;Z~4n;*LMuW4FtV?p~3YKcw(*<UAtm8LaQd+Ms@ZaQ#zD1A<G
zR(JJaiGNDuPAuH^dF%m|!af^Jmo=z#+8VBXc$Wr&9PDfS*&&IOJ^6jQVrJlVrQQ8_
zfBkwF$2}Y=>7;?=QHDTjhCqEb2w<}+-0zU6{M^Z-x%DZcHtSS}+;MJz>5#elkQoV=
z9BpZN`*<)7;*VCVbQwM>?|gx`8ATI8@<t)XgdEEz&n0Q^9KV8~B{mc8jRSOdp~l%;
zTC*Uk!XN#M0lp)PH4WPGYXF-x!>D(U+iEyMvc>*_l@|Pj;<P2)h7E3-x)QMBYKW0s
z4O0fO8ku}zj`O-Unyb437zluypPLN**y_%8>A+eHyTU2f=8{4i+C2*;vn}mnR4(nl
zo?<A|FBq9}1XjR5M22OG0igj!F}A4Qwc|^r2qsb732LbxS?(9(rQ`v1&gF@A&NFLC
zg0can=(xim+j+h;`I==>TNxuZnGJ@v{17A3PCnvlI@qimA&!d10B$f9t7!5fw>XkJ
z3GY%QUSK6^#La_Umo8oQKE@*jG%`h%Bx-jeN3YbL?>?<IBCb2G{!H`nn7XGvzJ&5b
zb>EoR+3pIgN&D!rXQpjifg`e74;tc4Bo-Rt<w^G&hUK)HqY~r+7smwoOSz>ra%=G#
zsm;p|#Mx0YAP2pU%Q-q5cfJdsala6IS_Q3PWscS9<W@b85eHVORBptKfL<Bc=zN_q
zdzA4L4iG>K#}jtBkh)P<$|?=c66!b=xd1BUhzhG#O7R6@RX?|1m5~ZMpRa$R?gh(i
z5&D9j#s+va5tBS0b*LTAZx7U#GHXb0UqY3#YKc&5%{n)YF@siC@-hI!ALK|^cI%Y6
zPOstqSUkaNB+YOzL47<uS!;Ua)=sBN^OyLEH>*(spZB_eoK;M%)8#N^d@{wC45Sd!
zAwW3_Y6S4AiW=cTP@0GYw~J|<7`GskFN57s6bit}N>ISs;cMV}+R?M;5A1FtK`76@
zcYWIZjI6B7u4E2j3M_fuVguswyX3+!ogy?PY}bU2@(XK-F0`j#;_6;y?J+P=N#y{b
z&7)sv@=ieAu%TSt1gcO5zxB{?51#BTe;gq1(SIawmF~%1mA$0kmjXt7aOK(K4&0#v
zAbd5MyJ=g8?qRk6E@+iK!ZCUkWzdaPc;b_6w0wjI&P|*+OH2Zo9Lf@H5k96D(|tr@
z5&>GOWrX8=5f-x}&DC?SmxNLaEh0Oq>b|z`*4-Z)D{3CeuSZ#TRr(qUa-wj4qCoYf
zm1z6KQ`rHknCKiptI4*xbKcj4WjNdY@L)@V&H5AW!%MK$084g&<|y6*Fu9GDn5owC
z-jZ>J^Q_SX#R(2T*8OPPX{_NcutQ|HZy&;JaL8OC*2u!rk==GX9cIlS@~V=x?KgD8
ztpNx$1qzU$5r?tsz*12v-W(2yTOs4hDA#3L562~!cY$6w#8lZ~!Vz+5d@6?{6IU@H
zY(WojX<HO%){aE@SctllEGd%on1%94$tqiyJ+(Gzl^k^*{<(U>7CL}D9eU2rcHL-8
zbtfjxHr%rfQLZ5D5N)veUUI!b9Chh%0ygkn5k}83GM~a{)#jWD>jDAB5_E_QlL&Hu
zL?$h&nw+F%9bUb@H^c~;%1J2^<S>zFc*~^+(AWSUrl?aBqF`+%UO|Tq-~@4L0}Q@J
zza!8IJlD}6Qhcf96_S@z!uu2FlNEiRDXg}#2OVTLkP9S32vmhsx|xJD&?9cp5Fd1K
zDpHmq00pK26HX=4Egxyh=V7Bb^()18^{k>#DqYyikEq#Ut<6SK52xcnJnm60QdK0G
z>mRaY3VI#bL*_?EKZrdGj5J=yh$+^T2%e`736#1O&g{nl;q<}K({*UfP6|R4m#wWF
zFtX%9Q6cP4>4R9O!m3Xnp&c*CJ^Cd!0vs5Qzb*}fG&rQ9r$)|3QEH8Z=@B-8pWE;7
zAyLbpvYNisa0lL(JvDb+^{zRr4xBIy=AmLxTrMCURYRCpg<9(3XJY1&3fi;d4;_co
z%Y>b{fJYdv=~@UU>TF7aS6z&@;G?|7???Eq^QG)FB<pViF=l=sP{xPDCkLNwp0B3@
zq0ftfnJ^>cW-1nPuu5Fcoo3q4PB`Jvb?zz@Ek85zK=l1cXHnG6N5$_Tz)LHlfB<6f
z+UUX}a-B`QKnSbH<_g$nUeESc$|#XL?A;NK8$#s9W=cw)A%b>*%eDqevxMF5fWsMX
zq>W$<e~KR3Otd=8B=+2t4M6AZdt?22M!1fe+Pk;Ei7ZYWF-~osBG51Tz7P%)%(ij~
zhaE?}IThozZnc{)-KY%ZC#N14i|pb`J-k9TzJf7AI{^BOZVt%<Z73)ik?a$N0Z&u_
z&OEnj*qBw$W)(NByGKjw_as=o7ul#kBQ$Hsfj*6asGxQ86paUhr_fvk0>CxL&=*CM
zgtZg4C7r2pTE4|cxGi1{oT`hKE7gAv*g2vbh<XbXOR22f2JKAky3S_{kY=2C9HfD+
zi(O~5hN5Q5##<QlW$`0N(|uC`?M?-{+6yl}Ci@Q62qwH{nc{d%0>b1ph9w@ejI);z
z&)Rd~(PIwt-ci^5`TI?sYhcyyAWlzPi~Tna$elA}0&eR^JdR*N>X%(6RKxj;(**8S
ztbosYABQCx6elR6d262UL+;rwiHLhF%Kp)bOz#VEPq+(x%zv-_E_LPY5H!;_$%AqW
zW(BiVfMQjlK2MoS$S${jtVUK!<jt@Y7U#%0C^$_S=W>s=j;wI)3ZBi9$fu?D^4zqo
zGV&2&4=teZHj!R~-PVE|-i*DL=xTp(F`0NZVXF8T>R=}EUfIw?6c9l-RCnJ34<Dv{
zD7nY}`i8}il!*vv$GuB$zWfowI`nVJ$)P*B9dBiy-Gp!e<ZcljP%IAt=y`f{U@uVe
zadYXiVLkKCr_Y6g4`qX*AHXkx2QeAMOHZGL4g+v|62yasSbH4$m~{DrLGb6J;SezU
zZsukFK*2wr`Cf)|ckn{f7!ZL$LI9Q1*oS~*V3E`axDFd(BSI;bAhdDuEi9t_Hbh)C
zGWIQWPar{n4j>sI%~-(`^l-iGC_~H0Djsg*?I<cC+N#{wblX=|HQF{i+O8!!+$wta
zHr}2P<D?qnVoNv~80oNKL~(#e`M`~+F+PMV=gWz1EiOmhb<BLw(LV4PAG8_i3XKpO
z;ZE>J&@LM4Ncy0InK)Lh(f1u4L=;VsZc9j0jm-><)3=N*S&zz3zjD=9wYV;JfGa*)
zJ3gBwshY>-x?9FNf@`<qB>}wTR-C3IIL|sk3j`a$Bt$DFXp4aLm<d{nI-*-K2SvbQ
zKIp*J_}eWwNd~mB1t&I<*gS|EEKeMb#m}`Q-rvAU(xKh%Nn#(8#OQcY2Gj(T&^MS+
zw;f-xeYK!5KHrw$<%9kdm^`or)tZDd9Fj{|vm8)V-YV|mDpI2edSL=SK!#r+!4J~$
z-#3zhGfBZd$$49J4Q=><516&xI6y>QZozrel0T`^n_A!lt0~vW2^W0O{qvwU_e3$H
zRLNubeR0VuI}0Gn1oCrBs@5d3zyTcXlN{)SH^ZPlNuw^((l6U4i{~V75i(x&h3(vq
zyHbvqnt<9>WE2Ca?)lVUI`kj_E21JaCQ}KmI0hN+){6WwkIbt>9&*P!?8$UFlc_O@
zESi8GL!ye93H-+pQ4FZrDzexItl<le3PJ}lpcC`Byw$XWtC>$)aCuwEhznrjAzXaU
zm837(`ja_{&$B1z;i14)Ju2eL5UyYqnMcZ&BEbWV@DxUDt!)aGq;sq_!)zjBO*(_w
z>TCTx+<k+SQUnd5=MT5SMV{lNjS>zr617sGCiLt9AGoF^bby{oYE3ZaD$pCk&Flna
z4v?~%a^QSH=ny8(7|77%DxhxR+OjjHe9&)OahgQbi(?43=eVsQ{EiX+;{scC5IV&@
zN#7S<OuG7s4}Xs@AEPe)E->TZB$OOfL=Gy{noRvVh~xi~r=^WxFk=f=acziV%G)As
zP}V_hL?QiJV|MI?30%`czGfF(Z2?qRcTKY>0re$S)3U@=q*PB4HJ_8U)QS(npk`Zg
z4s{iA@n1JmDmoKOc*S?^z;LNf$`uhLYF}=`gB*M)<2t$M8Z-zUQIZndieqW-P6g91
zZR0e*q{D}CQN)5nlh^jg<AeF}7ntyCt66hHxj!oKLEG2m)v{j3-LTqOEJx~G?~fxK
zB%*Ewm6VY2MVL4<66$VHv2hnXiyuG0guCUI37kn{U%<VpDA!m+Mw6j+{8h^fAkCZ-
zpW#Y_`pQFHkYF{q*=lwX?Yi7B{-O_>F_G-`yfA&Ue6%gBd^Qa4aWx!OEYFv8$g*0h
z4q1#SlUB#y=f_{8mTPpu_b!4w;wy*RaQ0tup`>D6%WAQp(r<(tCiS%ki{QnWtHs3X
z=3smj1I}@#Mu-TWUaV$Yy4-UnGQjqFx+)611e!cnA?1@W8FT~uqQZ!)UQ4lleIb7}
z=bEQ_T}4~@yTy_Z!)2A5WkS^I>cwjkA&Iw)8xE}@B|I9w?-=7nF}D`K)M;oVI6Vn!
zA$2-S1msfGWH7#O7~WBlp*fkFw^elkgIa3C=^m?)T&j5xjJ8OiTaDnZkx<lCh}jmB
zLDG3PTqZVxD<-16x1ipGxIAXF6e+WKD^7F^sj`4%P;)#+n$Lb~&}_XCw$yxX3B;`i
zmt2L&50&@G;KN_wa`{ksR774KT&S&~q^&VR1D~wXc#XZ{%4D*|^V&_Bwh{(>%>AY$
ze_4!2Tlol1j0yj2ix3HE7R_UQ7xl>&q34h!bS9a>DB?yI?AR8yRbA<1&yn)%XwT~q
zCALfCK#PbslLYX2bsa(u-~u{4fDR8Pr5o(Xw22$F>HBu(y=c9PYC}9qxSK8b@*7T+
z47ELuSNwMEy$SwfUiP+Z0%ao6h^xWpTSFkZEFQ$%@T}VmVU}eko-=MzsbXSGWA!|v
z(E?pBCECMCa4H#o4TIA3>>|qHk%HYXu0w++;L$+cA12*$rj7UPGOFjhl{9-64s<Jr
z_NaE8+@Ig0x!fb(*mF>@S7$jI_dPmAz1J|m*Uz@MucFudd+#8qm#W!k-4SKlQD<P^
zXV=lEE7E8Gz0dAtpMz$<g<QW&Xuqykzk5f&W_7>U_x^n^`+YPAMC1niLI+S@1A!d_
zI#mOq-v^$D^u^eA(d-8cWe07H24i+Q2FErB62A|YZw%5kha#ni(nE*NyANe|3^|t%
z<$oWt+ZbYK4qHkOmxd1Oxeu3j3`>*`SAQQ~d^TLCIT8e~kYvDHs^Pm$M><9?H;=+Y
zN$Jm)MtbdgVg-AICT{d~jNS<yeP2F0Dmd1j#hiGV#Mm=7|I%nCv2!6IRi<@hL2$hL
zOLuQvUxG|a%JbN?*4vMk$A2`iWEzF}3k+62!(+7Zgx&S~%OKTFoQB6eAW3}dCGLW8
zsz3h(!kY+L!PW9tHRMiUY6RKCO4bD?d6MeZtLq{|d%smD>~HJl6`C@29J#uXdSNxY
zn{eBkbel@OE&5{$n?I@l4gYHAOZtU9;JcpH{HSS7?>;57u49RJKQB#FUf~+-XAC=W
z1_d*EoinB@)8_Kh>Z>4HIaGJ0+JHJ}DI~4Eg|H426l8)r+~Ctb_jR;Ex66QXL)N>^
zLApB4X9aURL$d!OEkK@2gp2UeEj;vxfO^-!Iib0TFbt=!w}04NY{A^+BL9ZDxvM8|
zmy-s<wdT{cFwSeDZYeyTlRU923m9$Q1hepvB69MHMHNe;pXS1;dcFcji41ujAyMA4
zaQ@10e#-Ph9VpmKM{F`npnX!HOlVm-e9@<R@r0w0(nSpZ{o(_zC1DZabw}Y15M*;r
z?@jnTSvRPoMozYV_s5+_ySs%RkhGV*yq3}0B8o>aBV)^OUnL}usF>AR$p}%IZqa!&
zEqKd{cO&*ds+h+4kWX;&M`k!ZrGck480$xi!z;Egy)my>xK0#f9Yh~GTS<x*FO6rd
zjAzL$kI9X{n-4sHIkY%903_Y_YBW&?c>}vA%?Xnku?Kx;Pf@ok!%DIA(VpZfp<Ux#
z)sJLwfUJ{}Y)!HL?Nr(JDcQTJE4u>i`Xl7b-z(#{*Cs^eXByaNBaUoM$v<p3a6m`l
zX@r7Qy~6E_Vs9GcKYUX8WEG-XwD;WiS+SDyHOd(DV-ggkh`qJUb9irAkBQ)8MIr?F
za9^4i0wB|5#%s9t?A%h4f3JkY?Av#E-vKc(wOjkNAi$x>haURM`jN^t5pL%vl~q70
zRu`NHGGIs3RE|%pxC`%hKD^&e?99_6d;Q(m9d4_Xo;YwZ?EvrxHmqmA^u)Z1BZ@fI
zckY!cT}&<ASuI-^lQ*qah*R%8tzItXS^ZeOPE5nt<z-9S%l2uFyFIeqhxhh6YYsjZ
z9q!Q_hiFaV<YptaIGVLq-fNkh<avDS;pq8;XAT&=e0*?A?9d12L)#^XKCd6D<0VI1
zli}%P@h&pw%n>eSZEinpz9^%8liHUcI^nE|33P>miz`K3SGjlffHFp19HY6eOYSw%
zwWjP&rU>oQCBC6hcf|FqT>x?ur|r6^U9a9rD3^mDn-fL<bd)}2T%USY!M{=9yq`VM
z#Xv6H;FQY#OUh?1s$ioj*eib6co&<b4~8ietoR?;jCF1N4sUK$Kb_wcnqpivqYHa$
zTu-rTvc|OZnzZ|Q$zA^h>H5^`VmerAS~F#O4{tVYZN`i=TkJJ^pv<+V%(d=fzENua
zvh-lwtbgfA>_<NffNnwRviJi^1?y4Sp70`{XeaRyIHEsE|AAMKz>xe+b|1lr9KncZ
zoEP@9>SsGGcmHep)>p>cW5SMyRj(h`d~$e}$2zo`Q$O1J;GuOB6)y892dEOfR(eNl
zu7jCp4fm9}pW68db5yZO?>7)ix2c@7$+Gax#2<a6a`dw0QDN(kms5@k-2KX{XA5<-
z70j?@>#}W37NNs1Nl;Ed$`BWA4;zSLNpQsim~?UDmmr5J3adlXsxsYsg(a-gy%qui
zX!+-NJ2JOz&94p}ct&9ftKPdtApmf6HN>G`2_Q{H=aa-1ElclvD8MQd<`q~SlExVy
znJzr`hnw^>V2qjC+R}hAFtM2@9(>X;L#B^7GGlj&3XmO5JoenQ+g<8@f9_3nxwMs+
zgeG^QQLp52?$c<0n>fxC35zoOg?Fx_IV$I#E-$=i39I(rzHoH$!<lKEwT1iSqJM(p
z4PLpyo$NKBAI7uarkuuwrD3q%=d820h&_+fPtV;kTUIkjHjM*k14Pcj4B{H~hQf-5
zp@1iwP`qTrjobdMKsho<zx(r>O`6KpO7@5$#SaxvIW(GID#)Sg*kw+j0zIopz`Tx(
z)gO8B(QE{q>D?N?E>T6Gm*FF8N5s8i39InF6s(arhYEh>SW?rRUBX!7Zh-Do9C<d|
z5XE<(GB!T$EMQ(N!qdG`{D@yksh>}x@~zq<nMt-g$*M-Dg$@C#y1D)hX>3T~4_hfd
zbA}6wAE+y>xRE{^2chYb?Vy0OKK53{7is&x(ysl`gu6R~*cTvtDHcM5cp`OWcI*)u
zo8z#eVUH|mU;L(Jx#Y}+N~;D3M|P${Qe_WTmnE#SG8uc>i?=vlug7bV2L%C9KH~8Z
zPP$7m%6-W&6~so0h!@~Q5LM%35ad_`K`v36e!Qtd>rv-|rrF~;qk}_gx>miVNHmF|
z4&aAu)IB?*9b*VH1U7NyL&k1wK$-OrK&dT~<bp7A4j<GSAQ>f?w12HUbO;1pWk2rn
z_K{3^Gr){jbP>^Gv5a|*0GLV8jn?-!DgsCzIj}^q+=D(Vi^Gy=>%+$bzPM(q=&IbG
zvT^;`Hzl0{h4w1YT#99)#K%)$rj@HH5T$H)>~1rD2ZRKdl9Jj^LD2poH_w|-PA}6t
z)=JsZJXWIwYjfW9!&LvEIdcU5*e+j5?nq$*9tYK*Nu-G)4x3*3Xo>;$f}b9)jyP8j
zuE*Ob(wU0YN=Vp|M$zj)nl*_pOAg~q?qR;O{_@^JD>2A#%4C=S>0Ix#Ty7UL&z9OT
z6zh0W4X<5Te^$LOcm3nCVuQ<z2EAd0z%qv|rBYQv;7oan3$`NHyW!Q+xim1m^Wcf%
zh9?=vQ9XK@Ald3@s|vpyiO`of;RUYKOBZ*3j8QF)e4Mj=^W)O@_qRV?d=%|gaXFW@
za~pv$`uYDqVC)t=1Ihm?xJ^a`$McBOPQm2ewZB}Cy;NIYxbuhRcGtJJd&7No?;-Re
z*Z|@hCIO(Zqp8BUaf;Ag>cYcnUTwjrq$~A|Ran?|&!j6xPrxhV3^|Y@ezp|LOmM{M
z6{A&s9N9d`l-&I76yJ%unETU?yqySj+fX3ZS=_lIDwbcg`>C?)cPd7*2(tg`B<B;V
zPAt|T720c=oGPMA_`GdE9!@-6X~$7D<DN@Ce;V#%D*pW%bpYc{1R*ELVng#VMLVms
z%bH>$N1P33y{*zq#9jB81r2BWE2%_xEbv=?F}Cfu%DlB)D&yHde7`j{vwhulZ`hX+
z%LOaFmg+)<@SssEZAWOf<!P5(1{~K?jhxIM-B+=rR;)1!%31neM4BcTpN+XdF;Zp2
zE9jbE2w3GDz-W&!e9&6d(*>`@Q=~o-%|n~-<@K&J6wUMyI_W6JZhrTJ+C6Zp16xsQ
zj@w8m8DXfDULetMLt7qoE9_E3Mr>$~^dlpg<V(_}yiXE$T`e*j$;Myb%y)mzZ+9;w
z)w--pa9u_v*W{{xKa|pvh=}(w8=5!_H7ZX;==-2GvzgEj`H9GM=JZe^twP<k(lVuT
zroyAY(&&VTt0^7I(AS54_`a#6CB~YQ7RlAUUS_pYIdhM3q(;c$g^M`@x|?RWt9Y=|
z<<sy?R{Z@c2l-0dIAcDpmL{d}>z<aEgZXwu1)Gb_!epGDqwW`}@2}p+?WTV$YI;f)
zhaXVwm)@ox(V~AM<PCbdZ1^PNRvqyJ7(JZ$G~4~k0G!#1?wRB@WO;xC=YXmg{6UcI
z^3#B(0;98MFUs<X`sp+=3rwZd9V2wgd3F_?(UCTkjn@dAYxbfloGE0Ucr&%XW1!9(
zZcau#j2A6P<I?t#caCsgUQ^n>f0F_lIk{n+)i~oX@8xQ;^hrNvSEZSc3%Gq8nm}wS
zb$#WMx*GRpzhi?CN&B3ei9^~`ZTtX{g417)W0(gv)jaWX^9&xz<H4o$+}Fj10?|~w
zj#2?a4`)6BrA9^M-js(@ROI4ul%1!wW~%za>C|IGUJ-2v=b_T0i{WOW#RXEpO_$8&
zb*ZHT`%VQYrHf6&57L?t(d2hmwd#?v*Bm(2AE3EbD`sYN!mk}Vt5ax(jvuq@AD>Xx
zzLwJ#N8L(?zesd<AuT%ub$?QNVcKw6tmKNNGXI#z=?mB6yj(0A)szkzc58_IurfW6
zJ8+P#f$pE{ygQcJTO7M5^M?Hs*W4MLB=eP&>6W=+?biWqPQQf9&yP{B^_MPXm|`<A
zIcxee<3Z9sH5opM?~VIQ-)D?!91D#&ZyW<}d`%Y7w9N5NkX*?HT@(l~b^3b#DQD>Y
zGcEGd#}%DVKX7R}aAHj@N8jKyZU<;)-D-9-ks5);p%^{pp6S;fCQla^&hGD$AKTJ5
z5NI>IiWa8$j;;02ES==MZLHzo=DoPk%%42km?UKGa;{PNrhI_ZHCaBL&|+p+-y36#
zv%W)HYfn?YP->Dw5)Wc-E6MP3Odr@6|3?71P41JaunyOZ!qL+$_=k!2>xKR0o@H%j
zR5ZHAXao%9YfVW>Q;G{8Je+&?y)<3qS%u?LfZ|fVk{WN|?v0SdY*c}g-W!@x4mA+S
zn`sU%L_a)rhXqQ{3Wc_Obp>`m54h9(QZ&20H(ZzxBzu67WKii^%kg|X{|}`LtC3O>
z`KJyf#0*KhsxeL8<SgiZBP3ng*?UH#$c@!yw=0|L52s|26Xd+kk2kNhm-a1wiC+@>
z;@J7!g+JGS$okNSR*rI`7v+JyOU++1FMU@O+xvKG%MqWg*1uJA$Z`z+k>FR?*`sBN
z5M4jD<DB(+LhFssc+37Pk3qtDk&=N8REPZ)?+@Lxm7)^lzm}kPV_@pv(C{eo$ZEJ6
zz4pbsL@BEJ$Tss)YPn9!{v9zUl|+WRG;fF8K_uQWl<j(woA{}xgA)NOc|qH3KlEei
zQ17=py^uQo(7ShJ?w(M;dr2v2ZTNtJ#_ge1NWlvl&xhN*F9Av2&gkJp|8DuZ3uX5n
z*X~`GWnf`2myQV{R4Y4DZScSjmrtkD2wK@%S292G;%4_~%b`)G?&E~Ai%RN>`Di7%
zy0N@NZQnZlAN9O_!D?OaW+dq764ZUzJEDv$R@e`j*i(jSI%3Lqc?HS{Cf!q{3Y6d8
zVE$U@@%`HAcV#;EYbZAbzSs12QXY2D8^wSc6VP_0XbW=v+4fG@j7+0!gmZQeCo#&B
zs6UG7SJMQYeXI$?R~>h0=(&YH)0mjm4cS=IQ}5{9v)&=|lGb*si#0Nzp`_>CuBB1l
zd$sD|QFNtc6@?`)z7RU#woEyx(=CdsSzC;P<VRAsrS$}1(p%w@+fXXw##wO+86Ukr
z5Udm1X67)6Yf-dhR_|D}w3^o`4P#(2euE0>3Ns1lt6qawIvUfIK)VSFr<8j}fT1h6
zXzF~F&U};>qs9Lb<k0(l<EstX`9rzsiGICC5u>#o-@0{H^+r^OjXW#PYp}X!YShR^
z87|t-O1e)U2ES{A>|?KfncL4AB8t#7tVcytX<&(#NDJbD@HE5t^*wKHQMSGrM<@@9
zHX0o39?(U}%L>*^O+m`|!(n1II@0Y?-}Q00QBg!CM1zf*eRBq-u$v@5tUBr}9o3tk
z7|w1aD_B3=VakOVy>A>rjaAQVOdKsm<2Ir+>moHLB42Lqy<=U=+H;t(ADaywJNpfK
ze-nB|!;D>n?Xi@q)T+I4nG%SKiSGDnx`G{hD$vU-sQOy$5U0lYEZFou|LD*b2(%Q1
z+lJo7RrPs|UWDo_#hbjqk2c&I33=IjPN}S5bB}0X&sa;JWtznp!{T$>y>FrsZOcQ$
z^HB=Dk;Cj<z;!f8PfoN&si7)SoS-%0KGBj}S+IEz%O?w!Z^qFrcGp>KuTwu#Bs!os
zc5x(?ylXwLJG^U;<uG-a%iEH-CK2=T2JcED>_wy+4XnNey^TxZ@0?@-!+ac5yOJjJ
zu~TEz2+fU19YbBz5489ZD@hfrJxvCp@=3J6iE^gFydW^ZdS@geBBHCSn~;!DQc^ND
zHny|#Q!>E%fItx<x*5Mfsb3hI3=3n6VxbNH2EP4GvPm2=WPyz=v(7(e_O1TH8~=v1
zxtTcqq}u+K!VL&^{WUw!f_DA_asN*2{2!p7zYpWTfBw&Aosc7fEvwGXR6&RF>~r({
z@zoD^;mfKg{isQwKY(;{R8hf}f`UeDG(%Ki1eI5UTa=GadRL;k#D&B0L7Aq|bif<f
z1+`##%UnQ67u{bf9lcw+Ah0wK1k$7fYOgWKvxaz3nxOq=Yzf6w4smJe<jH)f;HBvd
z9fGu8s}9%HW9i)#{>S<HJ(e6|Q<D5m{NijPQ{rd~5ed||Ieh))<|oD+9D537P3A(7
zZ=d6d>hPdFiU9AWpv7ZLY7y;H*mZHz7L5WI;Wv$PCp&~A@WbhZZKAyH9w~0)8Gc|m
zOK?Y&Lnv4bd=_!b+W;$vZJt5iiq*x+k%uOv<8>?;Mm-ZILojT!Fjvtr5u21Nlp+*z
zzCL!US@+=n9Ga*tm!F<$dMs8aq6KXxZH&PxNz**1$auks07FZW^DFy5s^%a&#rZ#B
z>#4l)<#bic#J~e<h9G1ZxzPhnWI6-!Xp<QB)_1At*($q^v51<gd%8J3Oro}qshF<}
zq7@_f$uqt&y2H%nxY6Ka>jW=gq*OcB)|)eNegX<I6^GKB75Jq#behI9#B#=!)v>3g
zPK<eaFrW?=!s&;*O?EFgLO~MrEp7O2msKVP&tPan*pz*)@Iw;I01$Q=va=hINXLXj
z1P9?{Fp5mmff103Og#}JpOh1`8PhZ{mQF{ii)s3hA)?t1L>y{;COk|Z4Rpis_Ovb`
z$%9)~PBB70yHG-*sY4i!bfOs?f!4;U*{T^_Rc_d`#;IvvWZexq98X)p?kK+vkJGVb
z7RbXt1VBN`{EjwKy7&uOr`cG&nF^6ytYN+={mrscYj0u~1Q$iaT#q{4zsHN$YXanZ
zBCOH?x|376Sy|n@S&5PAm3dJu)!`w_-S{;4MJ;vRSoS7UY3)UI7f(WOT?2oW9M@of
z+sj*HvtO$lCe2N}Z_V-__ipYwJ0gGc!KDz-mPdDt&$iZFOOSY7xmoM!(f;~8>Rd<a
zxXIq4PY*ne?tDdcpSyeRJG&17ylYhNZ;0gImkM)pbJkLkm6g@j*7om~ieFAd85UDn
z1%C5i3?&@@TZWRqGnE|tvj35(6j8y7Yy4NH^4}Or{tZ*9{7<G5FGc?ESmnPrl>E|%
z{oPQ)LU;d*N9-3?`9Cz2{KP6Le_@rz{~4?N$q4^4l>E=JO4@(JDsx$trT;Hj<<CX>
zmyj~xPX_t_4@1enBP;3uN>*Mk`pZ!AFJxs)OUwTjSvmASCM#J?rR?9B%E7v#o-4nY
zO5e1$fZv7^XAJ^L^G`#`TIfeRmZ8KX%LxFsyRGI%@>DNuF8^XG)$jQcj2p`*OAOQg
zRszcZQK*B(R5}$fS#ae|hn{A#ZhiH_t)C^JApy9yH1Rpb<6;1l|MZL1&6Sa(rK%a^
zqy71<soasa;Vh<dG|*S3k}hU)&9t@QNr_F9N6g&)D%-k!SM{7_>4V}^9A@n4SW)a|
zczS8R<lv&e-F<{V5F|9|eJW`H&1&DWZvnAX`@4@%%c~jr-o@@J`%(!2Y)$;05627M
zJ|6jPC=ovMbnKYM<v;lCgfv+c4Q8!?^v8E&HDL6T8I+k6@#U3UW*AZ)0}jKSc{h7<
z&~VyZ6d0uO8lE2mXriwSBl9mvE`XS7f>)s@9Hu9o3QRecr&i+Snm48{KIxNwoT!|8
z<(kcA&Bet1M^iGpK<UK5iDd0ZH+F|5+mm55gJM0Ga5(BYRg%41<tLd*(?7X8dS+bR
z{TG=TWt)11nEQM(_K?|)1O*3x9HY?DLdZtR%vZRXRL*QXE2P;3JV?s-Z+gH#;?OrM
z2E3G%&`wnMD5WK{#oCmj__jCFkL1pnWdoRQ2}44SZmg-h@{KY>_u9=#)yXeA$}7f>
zfWz=LGB+JotG4#eSRttfyHVH6lQ+XS@Kl;d?DfZax_BxHuLGppV2!ww2^6E0G+WD>
zrmND*uP$YBTGxo%P)sJ8!Io2oDRpL|dpp1xvec&6i!l=|Y-&!?<Xo(>5%*f{@gZ^8
zMU!(9Uvl-XpDX|-z&XQy3s;qnnlHyyJyX7wsP?K9$D#VFG1oGezW`#UGTtRqWvcwq
z>P3ylTOBur`k5RP+5JsXCbBK7ekQU_Gsn^tS^x%&_36dby+%UV2jfHVA2@mGK`4{k
zMm8qC-r>p*sfLX`0yc`TrQ7J@yo2fCo+<WpdF>Q{uB+|qDa6D;<#+06;@s{@5O26U
zM|bz^q8YtY9U%6RugWo0z_6oW)_C_S<0Bp#&iME^;lMGY$Bcb~5wqN*Nw*(CkA*Xz
zfp&+snX=<Yr8!w#XcxY*XTJtek@a!Q=p13<>Mt(zD2odXSA0d->aQGBC8mKcAmE)t
zufBtrF|V>q*Z}_~vf26d-nQxL&QM2Li$-bh6;#<zE>!<+YLh8uVrq)Th0=bYh-{fN
z#-2(>;rD78DtKay#4jBHLq*=uOzN%f>W|>3DqOLzB8li-3;Uh-*Wtxv(G^T^B{3R=
zCPLx1z;*r`d&8}Xz*=zBE}%}FCeHv9%E9705kBGJ_6ks&Kqwa*6%;u^^1G#WViznT
z9IfnxO==+nUKdyupuVWo={Yg}$-=4oRYq1Xj{~Iua*rSp*c2Va!Lf0`pf}bEK?aJg
zk=#$~z;IQL5*Jk{AV|dir~or(=lc)zTZ-mv_Z!)fAc>_A3<63~Cn-hplvnTrG~EMj
zU2K4yQ<}s#jQ%PSIPDH)lh4-Is0BqL7>Rq=0XB<ymK~rDd<mcd3LYN;`$P~>V~b?B
z-9nwJU;r|9Mko~h)^Q&YaKm<J!nCN-rtwjD=c*oxNXxb>Wq?lTf}qqou+1_U9kgi#
zurwni<$i8qbkV`jYC9QR9%WId)QT4I?+{BAQ7AjJOKey3Km-*GgjV<BWkuA`2vg#1
zPoZbfS*o-Z7z)}xs<X)h4Hxt!S_4cj6n6JM^UV?w2}2CPFbr1(1Cfv2DYD`1s^iMW
z1^{hybN_Drj1Oh)t<N8ywwpFyR=&Zq`x;3)L?+7VsP-JA=x5%LBol~cPg|(^6HrMA
zSy!wbps6UOasXcFuy$*^iAo5~-Kp+cXCTbc>Fu49K6Sje0W!g+m}L(rl34IE`i|O2
zb^dCR2M{1oP#w5J&08w^x)kteh+w;(R>&#=O+xr{)0)YQah(y<BM0crC$uI=ilCPn
zipIYq?9yZ!zXZr+VP;R%o=<hhn+RnsvA=949+De`aZ)kMSZFLbvYbqwphO6+k`o^Z
zmI&WI5pQ#mIHHmuVcx(7Z|vd2d1^yN=_lPN=Qup#b)hZkoRII1)xZWDhbYk`skF<4
zFNemT-@|#W@lpMa>{Awxvc|SoDtW@fkf3HJ7Ik*5e(#zr-^uf^?{6RVbObWFB@@;P
z#m#O>PmIeO6Bl{f=L=PpX56UXt~Cl0A@CsqfQJ>9$^#$-s0$#RcaB^)IDciv21BON
zAZXx5V{}w&)ROw67|x;QjI$dXN7f^tKqYvxVSR&jzU3?0SMI+fzl&78V(YXcAax81
zu!`H^q;99gI^lvQ4@p-5;3DurfotIp<MhZ!_;LtZRbK@HFg;Q&8&6K}<l@*qcXxHt
zNMozL5pZQ1$k>@R@Es9BvJa4`iQRH}-U>$OI4E*VymaI{%+4w>on=J(2D`}d@ZXRq
z7u6aRiy*ebHe_4jZ<lpw-Y$SW1H~+v6XPKPM8j~DHGyot_r^^lY7kN0b?R0LhX6oh
z5H+HBZ?V7Yj&SD#@%Th_JS&jjcN9E!HDsd|nff}e<BRxnTBPYyx};UpW5Ek_q#%{A
zIO--Z5HS&Z<@5wv&KD_$%kEO%KmOKJIhb&;h$Wvah8Z8_&&%4mR9FT|hyaIn;cuwI
zAdRc37f+i-#Ok%0u*lh?+uxrpuy`<hc{apji@UK|r8Y}g=ft__IX7JqJ06Gd8Gs3|
z|8Z9PQeH*n0S!CtB<Z_s?_3uHzAb@~7dM!-r{fhE#6z2TbL>{2nmKu6U*7$@-k2@F
z{>t%sG-L4Y4P!}QP(+OFoPi+fl;pkz8b=hFa`~-ELu2;=F?TvGcU}ZtxCI6)Eo|MV
zUVWb7Rs@`QtOs(xl$PyNB(Yq2%*1vAC_slPb__<aNwgD=OBXz6?#i1sVfV)wugG;Q
zxoZ=B3j?(I9PF;7-+JC$xW2p8J~s^yesGY^INRQQIMaG(v8Lmxr0c_2fO<(E<`fqB
zvaTXG!HSQg|MR}j1ua>JcixLQA<vS%_*P0Jp6SZW(4njj<yUp+bA2LH0Pt*@OHvGe
zIg=}KON+nDC%7x<P>KgY_A8llkokOY7u`wD*R=W~d!n9gQ9rigQ*e|7q4Lww+XI9f
z3|4s=O#24m4sWQYbZDtwsC~Wgod6!0D2xX5mjqy9e@3Ji+*j?l1VHG%!SbBfH%HKO
zDNHWzrvxDDedsdJCCDVgnrg_B0Ax7twQI3V-%{6QM8PqJHU7~sMWn(n3Bb8tg9FOH
zBmgwsj{_H%_3Y0f0N)LLzro9Y?0gnDuP@o_D^a#C^NPmN3xe#!Ks>4F?F`8m4kAD-
z7s=rtB7jvQ-+a&^Z8jxsN3!FY>z@y{!GDSXUf+tC^ZP9VAR8XV{V4)ijd*1J4-o(<
zv6B?pQH;}=kDND@>p3c|t?E2rz~ylfV?b4HoVI>&9dou+MT8`<HYom$3wbVGK5bP^
z$r5Bk4akIC`uxs2Jd&*Er~ihK{8=Y?yln3)Tg<dgGJV1oU81I>2z+)tx6P*hzFdXZ
z;W*k6`G6_1I)NN3(JTOzG7+4AIsqI+K4%z9LpWJZ08efuq!f;;jwV$UPTuJ{xI6p&
zu1^PBnPlV)s_HhDB?S;O@VL8<E%OnTAtte;0Cqh<hm@bNZPEeXq=oDZ=l7Az8+@Ig
zl5mbNo+eECD&pZ3CIvX|gyedugh_SC)S1ex17+3h%S3S@*`w)%1&nJ@Cd!xP9+ix9
zi`yMe;}?NHJt8BJ!bynbnxnb<gr}(?_pQ8jlnZCC_wi6DVsD&K+1tf_+u{70HTyNA
zbY7PX`S1+8*4%v!No6WgdDy%LwY<h04DGp0<d7mjLh#pfDsO?KhPYDIa-za>`-Adj
z9ofa1xuXlY_Fr-xj^$0M70k5q+<q>zN>=Jx;QXgCV8;PSyIt@SgH9+)8*IH6qQpM3
zkiTUlTzf1O#9eSdsBk-{5LuM6v{3l!FL!{CN!KyXjht)gL)XxoqAYj7TfU-4iiIoN
z8MY!t1P{5N9szn$hA;eC9W*rsP)Y%W?Sx&o7*cJ;*4jlU`TTi@i<RtzH7APp8FN#K
z#i@Uq1xm8kU>H;>Mcu9xR-kBCYTQ<8x>#x+T&y4yb?j}awcT}_;On+uwJkT3jB>A^
z{CeGizszYEf83+!s3YEl3T4fC>G{B;X>jAZvh(UU{NnlU85Q18xvuvXdA2TBlnlSL
z3b*tDpWK8FIUoXk5JRg_e-=}D6;<YnDsfZCTdpF9$f#&W3Dpu24e00rs3ICX5I~hM
z%8q(~hw9*zaCn)AT)w*SO=Ir*ujP$xWhow^ik0vZQe`L;K7@f;DxxaCYUi&aB}sTu
z2L!{X+Qy^2=BswMy6~hi_q1KrEUMz7T~R7(myi$m?jk635fu3qFG>Or(czK~;6gn-
zi$NZ>!;8`_Ua5mKxL`w=8<e*YQw+CM9rTb7{;fLxeLRb3u1-&>MdZ~&SzKQ*{*6rS
z&{mz5Wu1`-Sf5xgM7I#7-Q4o1-B_&CcLbmDz>C$@3IPp#FY2FrG?-Y{K5J{>d{GO?
z-ZUoPr0$4-O_<Puw))ZBIz&hfnSK9lyF%WtkOWk17>fHW9c{YQm`}y)IaHW_L*Cm&
z_In`A^5E%{a0_-mDJmi>7hM8WQyiNlX-%e8O_Vig5wo#$0xqY)?LE=x#}3o$YCg+;
zTbB!UqP?<^gf{`ohp2ErGJFTc9T-v(oKPLI+IVFN<WEOS(cz`U=0tV8iOKDuiQ7^y
zsxnNPDBAGP#`sV1H*-vG=eOf;ylAA#HVpx7t|3jwzTwS@DAV?;=8^IXRjoq~x3#~u
z)07&6_)7{&C=*OAb@FCRCESG6Kv{!_t=8&0AWF#Px@*WnCNd`&?B{?;e~S#>!SLl1
zQ67tsKsq`%zH_l1y8NP3SEMb30X>9)6|de&^#z;L?|#uh6>ZgS$=?0&;!g3m79kAE
zf9p>EMDsN!GM`al_V(`k<9A(UQRcL}MMTsne`^fA!kpSMTh%ed>=@U;=L2nr=*;~~
zpnL!&><4Z)#uMeb*{bl0%N_Snol_>AvrC}O_Rf_Tcs+XM^TifRy2W<YU32DL0(*z4
zT;amk;uiG^snN#Jx*iM1MwfQ{gWN{Vd~|^^-ZunqGEwEST$PoF_5=7t>6LnG%*?NS
zgX(zws%G6H=(k0@vwi>RMEsq_$_w`R08RXZcsRuoIz(oEYU?%Gc{@Pi8WbY7<?{Eg
zv9}H};gou4=W)DkDE`yemIt|gS|n7a7vi!fK2MYTMs?p1v+o@Grg=ELgn0Ae@W2qM
z$1HS2^h2-J;`OGH#t=-uAy;qK2)>j&I2ST_cnxaPK5D~W?K#?axC=Q%gG23`2Sf2G
zRfDEQqod2C1|n^DH1G@6_-G8OY7?oSGH9hZ&KhLUw?r_A<4vQr?&u~1PrSV+p5ZW5
znuoqbYSR}PwHBE$vmBkZA2VkW$3Xwy?_)WMBN#2=ZWCwyw@AOb#_uoj*_xyJ+VHR~
zB(LU}>+#`LE|i}p_o<P_Yt&x7@J^#iIQt3V?9eHp9bnqTu{=uvb;cgQDagIQ0H5K7
zfA&H<rM<_qW11FnPkyZZ<oEGs@pu6<Zp$RRFvnE0=cuOXl%-?22FH-o_Zcps*;U2K
zU}OB6OdB<Ph*J}<#iHiPaPx_dV)DRiL16(+J}ojl)1%rouZ=PZFQp0}BB4Hgn+xy6
z7f)1}lTp~EX)0*mI0YR>oEaj|q_X!%F7<DO;0qlPdRq&O6Jwd1b3%++tIh@e$ypYX
zX+oL{<KTNHfbwQRy{7X{VN03Xvx>vjZUyMrsu@Z>ykx7cggjTO#TP_p0TDMv!#W4#
z+nP=JM1d&+`-+M09VsTVXLy=RmV0(5317&#uOf6W-D@VNvze)d4|5ow>l_{nyZzj(
z{jL0RulF+D5)nde*{8YkBVp+edA_!=GNJD`L+yS_RL=Z(a5`!Hhu6b3M{o&g!85PV
z&UDT5<*I>WV{{mpDaaj7Mm1Nj>2<B;zU+ISKfWTwEy~&RMZB$NbWks8p|N1bcIBR6
zXKi+V|FiblZ2QOhB4C8s<NUGJbkwY7=(0oNM2z5y(AJvi13dYUhqr}RmxICa!^jc<
zmFL-Kridz8WutDD=}xxzIe-rl+w@P)ttsBlv4a-Bcx>bgPkjYFv<kIds`Pk0k&l`4
zBchgs_?|7n4fF37wYP@8ex|<@-W0uZZ?PI*-2N;)VdMW{?5^LMivNd?Z)2llz(|QP
zYNUvObdK)sMx>>s-Npt3kp=+~=@g{Y5z6RBL^=dPq!A263~oN(&-c22x_`L$51d`Q
zwzG5I@7H-gv`(oip^ymr`d_fEk(dvtkK1mNp9TJG3rqD>r9La2eswh|Eusu7;rXl@
zRLA8EYoy=z3i|Am{!t%zp!2b>oJ5sGqKbn~VN`cpreK|t+l<EBk7&n}%npsS28{eE
zb<oe^H`)#0)OJsHHhRGhCA6jJSz|`XS_y5*#*p3zV2UAij}b@Uc-Nr{Z12tS$<bl@
z>$#(*<EOHqIi4e>XL}sudnc;Y?^KUQ3_6UiQQNN)6aKu^0UjkAoS^t7r_zr>mnXA9
zM~nZK4f#&_4ya;+DPo!_?EEK=nmWE5!?-dIp^b;J)RPvBpCBtAw=dm6P9{y-&HLsW
zE$H%ZdVJrqdcUc;fFDl5G$e<$dPZc7zSA6h)4vNV-q?zUzRx%RCd$w)?)t;7$MiGx
zF}E8fs^o`T56qVL%<HcB+%ZM?)yH>2^~v!p=q}9j@+{Pq->{S-!Hx3Q<oB@4^^l&Q
z370?7YGs`hRXLpJN%zkQ*IDA9o~Ny!r}Uhs^Zv@d{xehUSN{E9qOQLRdVUr6d`-Mt
zy}JCXT<wDR>{sRei`wfo)lV;;tzXzGo*l(}Z&Lf+-cv5l`@)!}>qXD+ZicF-J&jtJ
zej%yXb1T1x?*EzWICo6@GqL_hnerF;(VrQ$zhx0Wthr}`P5v(T{O!LiKdh%)2sM7c
zs`l^Gb^bAv^;XG$+dcmduOoYS2UjnsT<<>Le-1PM@bCQTB`V~fPr!jM4U`*9FJRZ4
zSmR|vE9td3{ZWg+C}>h?_ij`BYNj&i)8f0WtC>pe^#35Bqe)*j8oidXx4{L>4ilA2
z<#yxrhzo(OQT-I8GE6}bWk0)XUa6lad3$+w&$8BBt3KSG#l@&l_Ra?{h3TuFGKZ<2
zpyT}E|01BQ{MHQ;Eq-gM?~k0jqkkN4uPj`5C5G5eRgFh%yAGuM4+7fqfrO><m!<u3
z`oA-k9a^7=IsP_hPFFLPvvt-Fz=75>#xo7K|BHZb&s)1L9L22syt~nhzdm^s`pUSg
zKkxdT533!$o1vaF+8=)Z`VRscoBl5}=Hn-wiZuB>uMDaj?PFM9#Xu?Zcd+qcSx?PK
z<ey(ZZXT(gD{Y^cSs)6L;IWEK&5K3;)Mmv#{z7uyPy~n8i9D_rQ?BQofi>E#V9=6U
zy^CTp{9fDB@b8)gDd&RnHr!Ob?D~M&@z!oHrIxgNKjx&_yp)&P9$O}ek~zIXK#laJ
z_T0)PUzR86CDF70Vy`8bYmPGVbLkhI45y}A>FG<4qnHM_N)Jh3!A)l04D+jhr!m@`
zkP0|sTJZbQ=hXY5r4kEHAR`RQC)4=yE9FeEsk(7+JKqfsX?L@mVlToKWUO(MO$g}b
z9<!#x@{L+inu|&X^`9Fe93~0KkrcBiL{$d)<>5x}jfGGA92VKYJh-Xy4L(%KSEvt_
z;vc<gdd1z~h|(ufV=qeelvZCXxL%)&Tv?KiVCw$xXSc$bpO)kHvkV@TZK(py{uVR4
zcE~2!PCFzgoi6X3kJ_A;ardo?9!DtLB;hY6$Bap3m)QiTjG@1;R7&>IOZg)%2ZOQF
z?DwUr&o9M(QIdBLGL$P+5_<icRsDccv3Dv1#g5l<+vD0z_X79b+CpT%BOCEb<JO}R
z`iE~$RMi<JlF>aq+Smpy8COFuv7t`wWk4mKT~ACA59NMNKkLekyKNr7n(=ykFZko0
zcrSQkR`tkL9?*z_VVM1b$9xfVjQD9)c@aw3W5&>~(gu#PB0c^r)?#?yaDLp^H)9FX
z3W^`-v~#`YKO<pQG=7iZ#SjDXW5<kRt=uFY6cVPR;+!X3zl48PHo)c($JfMA6hF5t
z!j=&ALY(4fGmkPOo?bZLP7_w9fJJcpMCq<&tmII=)}7P$ebR^E<=ti0N|m~dt2r2o
zzdLwsy))$NTivHo7YC2V&f6ps!`_;guM_^@(@fyPaBXhz*OV0vn!8MfI<;v@JaoO2
z+VtkUTA_C`*ElNgF}J&3QmCB6{xsH#Jw3sdV|5rAxlG{9ewu(lA<*_9g=<H4_H-qz
z1vtO&!#&cUyD!toWgX1NCay<bHz%KNeUxbE<)N=htZS-Gr58E}zA=$!#Q97@1!>**
zQcJ<eU@YwY1z4o~giIK%X-L+~CS0UTVLm-!!{=9~E`NjiR<WCF#d#K#P7{Sex>E)2
za#ew)MZAnhqk}p<d4BGagmf&jVbO@Y^c6YQzraXM-&J%83A&VmWx#Q2v?JS_ScXz<
zW2fD5M$lAqWkYcEuC=r#qikf#UBaQ*h?zHAH{!1(2gl>v5_c8!y@bLLdC%yV=fSKk
zZc<U~j2evWmx8={HWFrP#Lt$*I-}sEoU6;L9Qn!UsnM()?Om@sO4qBV@;fX`z8Nto
zKhZbMJS34#*lXT;g$Kv!43y+kA+Ji)De<XSrD?kf?)s0WDgP}^M~=BAVHLef^EP~R
zRW8gkldLNF1%366V=Qv3t*XRs`x-iSrbM)BRo|@gH4coiEbIf2%WwOd#$Q;Lf@Hbg
z>}s1ojIpW|vZlQX?y_ZHSk>xS*IQQkSvSVa)tB&9Y#9~aw-M^gBU(N46!f>BjIn7?
zk6_-X^mB|@wjmB#H>q-q+GKRjR&!djMQ;1M{=Km6@r!7HEcrOl#o7%B*|hkqffYad
zy}yi*@}#>;&vF(pz906sX;WpPF#nZmTXTkGp(Q}vjAI>U|H-l>3hKGPH^AwO+f+7h
z*TOWRRD%|p)Ga@114I06mQ$@L)H9FtuXQbXUiF;G-I_w_&}oxHKiK`R)>uMB(_Q28
z>rCRcfdCTPq0**%OYpjd?fCNBa9M3vyocR;KL`L?M&!jmj}yxx1Dvq7psorCs;RDj
z(_g&dcUGtT>~CQ#FV{4ZsiSlir{-|7smXc*1i;?W`>HQ=s=OcrOtpM`?6J^PT7|z?
zxQuqpwH*{AKa8e0SZ?#)0OZOC>)tln`u*9qC4&fH`PZ=3`k{bC-gHC%X4%F|ldD-8
zDFA>|>i2x)v#SS-2|$1lz@sGcyx*>=j_{n?!Fd-%3xFp|M)i6$)T={$yjw)=Xtr8a
zL4W~?*5bY5Ex=ngQb@^7eHy1v**qLgYX#B(%F|CzbPAzH+FB7E0hSVKoz+_-P1YKY
zvr+&OEa0Udu$8n|v$@IA0XP(OdG<l(1-L3Z6Q{2QMJwAPn5?6~dLo!DeLKGS)=03v
zYva1gJ(>CJX3Ykb82@yOaz^=Mq@d7gfOnY8BG<zgt@p)dToY#*Z8mnFswk$2e!p1E
zE5H%MxQ`6%VxM7y{DrT!n#9B^xbIpgWq(|w5`S93F)pR6G{Z<2+|EC9d2>zL_$~0E
zpHKcw{s+lwSz~LL0tL1f`7lX`mW7JVauy<bU&6us!Oa6}HX;Dc8jPW_;J4mtr|cMc
zP#==+n#YQC69qIuzr88<Xb7gS6Obg$(r(BxvDLoN{ZEQIE__#(fdp0VME@s6Ejz4n
zm%%IyTIx8j_j9-XKPl?)Sw@;#1<-)=e^b=8zhKJL*rMdu2kK1&3)>~f(AjQ~wyolV
ziXQ|#u(tAPO39K99;C1Z|DO~!?fPLKncEkS+qcZt-O&F{Q3H+q0BB0~3U2Z!GD6lz
zKsBcu{TRz%(#k0Xz=z2F`KnWmTmkuc<#XkgT<%xJp5l{D^H>Fc9#b1>005=%PtQvg
zEcw(QRD95c0MrwJ18%cM3&nLJBj+rB>DU=g76_80P3_l&&o_)XUp7@83gbcE`^r_x
zVyDhhDfJG@<pzxYckx2O0Rz~5p?d-ZoU{ZvqNzz}Q8W%tM5h~cL7TC<a4fJEkh$N}
zvDMgpQ$4*8P3wcx_rcLnqSp<&Xv|0=@Gk#YoX*Dct{ge|3aN$$Ac6*q$fE&Lav6Q3
z^i&)G-l?C71yBMI4d4rA616;fF}v;WH4s1^t+(-9bXShEU4v^@BYzBcm$II<09a^1
zp+2puu18T=gkfE5_5%RqcatuI+{gfSU}=~<Lym|%6yRMd!tR6d^-1<eV<?gG9S91y
zQqgr!Aixb$&#6jD!W+c`oY=_#KKODEAZrxF+!6!2;yes6pi-ja#?`U$<zMA3ksUTZ
z_>%*O%M~SwY;@4WkdqW(XaLL(XhVcZ*|pUdsh*Kt{qV$X(Q1*|JsB~$^;8_x4!}jy
z4CU|3C<g<OeFhsO1Gp0Hxm>zIcTZT?-LN6rN-&fX5Ol4sf(De1C8d{N9S(E>>f(J2
z4u<JwP=f#kn(3inKy7DG?vR0*GIymeLJ0)e=&H!Mu5eQ~PCzn_Rw<@^*np%PA1-1<
zSx?oBxxBhp+IDEtE~uMYky4jJOWdTOc`PE4BTa@TFIt8Gnv)90$N{8VYy1P*Tf}1!
zz}QO7^$>46(qKoa`ttzq2tZ3AMV+rYW%8ot%Jm<+R4cKl-D}!cdr_xkXcnK2+{g9h
zhuVPY!5%EcU0K+}OC;t~S9(z=7koS&q13Ld3pnY?<Q(U{)(MpF%KF;XuB4>D+tw2{
z+>vA0`AmoAdo7JTIs<E%VL-b3Kqno9AsyC|Nl7V$DJjr&je;jKI44?KaitDq6h0Jp
z(63ktXi9+b9ro9<i_P)`z=Qz>**RG@7#&oKp<L7|GDt){uA?#|oAjWl_rupH<1aTG
z>OV3Meq3pHpnOw_Kubu8ep|uT7}b{uBvy8UwznV$pYRk!Y+c+`145w@1$^I$XCl=!
zJJpempfep50d{CU%I2#@?<^1oC{_0jEb<4TglvBS2LQqHXyAzMOB~q!{dhX|IorgI
zKjDUh#a%uPZ!@UTgio~)!7i6@b%k#&W6vfaN60@jin*=0K+1aUs}u6ohLjsFdPPJ>
z{Wa5?-hl=A6;n{i2?j(ZE#O{J2DcYtU%9l840}*`G>bY(4K)54t>v6@K~A~IPZ=LT
zZg^rSd;sJ~g^Fy|YE6t3aje`A@~L>t#R+(t2<Y(xG%Anv)Z<SDOfRk8!wj($ZA>E}
zv~{|apjJn;zZU5njLybd{syCIYC)q9Uh3MRfdG(5DM*wZ5O37w{}>F~Mw0z)QKOsn
zCIdjvksvQQ)xWjCjbVs3fF>Aheid--nl>0QYfc<8{84KZC<3Lc4@Z+#7bQw0wuTju
zRbvz7(<Gf(i~&$^(S9?BPm*B2cwrHmqk#Oj^SuB0JNIVMD~PLl2E?y2V`emy>}gSo
z!hp^}mhyN@H-Ln?s8glFSFJIB?RpA5jIEFDJ-X-Rn!w|OhC|ODTlx1g*6*7PWb>sO
zAkFBU&Fj2+<3oRHyT0E<AHBC>*7KcsnT|Dk88EBch`ZE#(uH4}_H#mKWVh59E@srD
zu_}s)EjtAXl4Zp37_Rf7pizE|b!xjbATzNL+ZstAD|jt^&<d1;gHffE3$*fi%9Djx
zl<cBZB$T{i6GG`Gx|iGGZ*37ci3O1qT#)FH`1-0%Y=!8ckcud)51=mFwr3MB?xt4v
zUCeRBHr|*cA>w&UsB+LBq+auLFS6+%F}sZHn-qr{f3Yi>)N(JoZeEoa(wRoI1IK}{
zZ|ZFu(nDHF@#+AAW8f!b4@3kMuJ@8(nvLsK&Y)Rt#Bh6#Q<t@f;RZQzA9p+Iwb1zM
zSLI0p0D!tr@@@3!WHvcq<n?1tc?H6|LJ!>KVnv-ZzM<l^s3Zg(9pSJ!F`pa@IFS+6
z>t1$rGbpdLsMxe<6dWsesBemxsbE^^QG`gi0VUB3ZwywRI9i_hy>Bg7%R;C_GqJjv
z*r!TL$}Dy54FHi^Ec`@=Utm>r?m7*@Dcz$Bo{7`dQ|h`sJ8)F1QwkEE1&Ydd`O>%r
zRpLn3u;(fOL2<*&zqR@WwfwapE>bT7OyWc1blI_h!_}NBqkHXc0Mf=4BrqepHq2=*
z<|!!{t0mb_{uztmAYf#XNeip35w*>;lOkk#xPWGIZ7DQ4vrFY`QE9jO?Ez5%{Bp9G
zqZA3^08rhB42r?Y9Hj7jUAC96MX!4DWYT7s1Lr{yWujv(UJ412Ifi_JT*ZmkzpdHI
z1q$6_ks5;3@e>vM!}P|v>aIQOfNnIV{$1x8=yiAuCVJLWH-iY;N&{7LpeKq)D~`$!
zJ^_%522C9_#Fx6{bs8_c^n$0uJ(a3C0l%fKt@64oyz4DpL<~=oCPB$2=gLzDxP&d~
z;9!hA04ML3NF8RZATA%A2_SRRzu#|NoeEf{tN%DCx~}CCAUl;j4*9b3#-@3>d=ny_
zIWMM-s+5K>TVj;vAriF;<nk*~DlRHIqN>N9FaK_h!NtUgL)qnE-NhF<so?fMck(n}
zrf1_Y`4ae`mr4JWF401DdTv7=;fA?PK3JhT!;NjaiY47d%wm;@!md%F^!#;Nm%>hR
z?!bnC`OisO5(hG(P6UXAwy1L{q}Wi@g^2gF9&}jT3pMG9m8_4Oza!+kqE0ST9pqQj
z)RI0VojG+2zz!~Qpx}%G>NnIqO4{od^=qE@bc6%H8(dd2aaB+7d*R~$QnI0TNIIC3
z*l0oq&;y~|aOyrlvXiAo?_{@=hCq7%UYizs_(7}W+m|K*gFy$*AN+=cD7*=Yk_8x9
zJ+OLid+518DSfZ^IN&rJ&w%vDup{41QSz1Ixb4!F<ddsf2w=B*a5HjRGO+E#opwp#
z<$OvWy`#%*G<N<afldz%o<<*?V5h4CXQl$TU4ka{f<7k%?V8Z;qzCOc9d{KR(@Rx$
zp)=^~7=AY&x3e>>>chUFYtuJ^u*ka^Br;LpmvqvxDKV#O8d`Lk%0R`~81kit9qJ^C
z0Np6MVk0ija=14Mrs~{(-%#$PgK%&NUlujkmjM5D<QejGoDiHv3Vtvh{CT4ke-iA-
zm_j9d0;nO7nVvk<3sPZ+D8q}L_r6pYaHQ>WPh^H<HHSPPoo;7lpUF}3?36IEr9c-5
z%(|y(@WAGjyVV+1$xw`-8|XU}BNtLAXjUdM%E-u$DGh;%--8j#LsE8`l{rcSVkj?f
z+#)D<RFh|g$}D_U-UwBF7ldKQNZi0sj((MR^(}?;?bgCK`od6U1(={&0U<aP`Ibuk
zXQ;MrnQ%s^I&Z1yTS|GxA$^Ka!HY22>$&@NoY!v=pbWV(cL>)N;j@J>O{xceGvP7|
zIlDrEBIcBWHI%{|#a?b9Qye+WNU%#?gp)-cmWb&1#qBIz^=B%G=02re7K;NTVeS{k
zbc4#gmOn)=(#8Hv(>$*vnDey)(4qc^6V=($J3(e5tLrbuxTSEqI-cOS0x5PsOW*_(
z`@8^mHg~>!F)YD;hssfyTJwr=E{Jqkzvr~@!-WIF{x(ILmqmY%3){@%)WLMQRQNOS
z%b9rrtA}vN@hA%;Dbgn7nqXAq-Rq&wOFsg#vRR&T3bW%=_4AA@%4STCP0fnz9uZ0u
zGJe4`DL>+R_Ru_0nV8cEEU}!~4omfpYzLUbyI9~!5tdAPq%zHxkW!!u$D0<g2?6lr
z*_1WO7YQkkqU#==PhZo5G6@r+!#OU>)nYPlu;a|xO#t|2c_8a0XZcT#7a5f8uVNM0
z*g|hSiZ}%)g|HJ+2u1f`*6x|WP|%?5AMqPs#Fn7_!_nBKUnRUkmI`OH?xDvTf@nr|
z>_#jz@=@66HEO=tHeN!dX?fCm8QPw6``5)}3Ip@*BVH&bmlyJws_>GYo#Sg}wy6}b
z0|;TB&csB=$E3u6HaSlGNToXcXFerI>*9;%$E-#U%2HlJ?0Wp(!jr1uKloZcES%H(
zRa|MI5Y^j+(>w5zQ;wNeg@|AGX4n5IhHy4B5_m{|>7{Vs)XT&SN)aFd$xY5AF8?2m
z4y+<5W@U!!C6Jw_VHbN*(io;+0%8brg!Th=*+^(sfN8HFqk>@ASMvd6E|dG106~~z
zK()du;Sg=+o~$@}4t2_=P1O*Tp!+b<(FT9wrK|+gufF3}VlG6fBe=|G(8>#Dr2dnY
zMnBi)>#Xy{;fLQ_V(89HqyJCI58W|8H{&V3T;Cv}g`p+Wmzz?Xtb-u7aD?cR{)5mT
z1Oz3ssYZU(0OxAXgj=gJq@nXqZF@MXqIQpZO|<3h4i>M|V)9wBT-b!12E&P*-BM5U
zp~_BQ)V-%+=0bt}akV}<uo+!7E{KnYYfaq~apZ|ubF-?9=wRqBR#^H>6pqoEqgNGw
z?<Gu|0^(Wd{E`mF3p+cUe2)9Uk-HM~I)aqK%RnbP9YQX$fU!4LC+6BqG9n*i;(UpG
z$=osLWl0HCatLKSNB*Mw1EBY`a5%AL!^xy}PQwxM#EjCb1jSc)r!>VT_de5;vn;=R
zKg^eO6*+Q~1H-tNnA7Aw!gAyCC*{qu$TVLHdeM(wvKFE2HwA^F;^UacJlCVYrnpGc
z+g51k{Iz@Zn5;J%nm)RVw0AE1{x0V!<Jy23@|DJIp`zXGS1!@E^fI6B#|T*>ea4Mt
zs_x}^3~%St7gkx|nLA<IRdLuT(fYdjPCpGqHhVz|vU<c$<0%qm?R*Q*WFQ@(H%rD%
z8@=g}VKcRaF}KtP`}%3j%u$G_h;Zytn&|vCm%gt<on@AmKkIK`q5VCDPrD$tDVAFb
z=TyA;IWGXE5{01VHW6>ZA;Vk>9yN7e_)RlZu=jnb{P&OZSxM3uWH5~P2CZ{k68qq>
z`qvr%>u=N|{kMC-H)87sM$J|=UY=?Qq*e*UUTPnA?3z%D;tlh<B^qQ`;%-ibc3kYc
zwv5$py7tm}i9KwYv>xFJpLSo@b#tysem8>E&rEChaYr`OZkUDTJ*3w=lUHwS@Q3cx
z=Din~Yqyp|D6Frsr8?buea<~MwY(j9$ALvA^$q_DzJ12|QFwJ<IPguolgWy9kZBst
zvVdLwaoH`6xa(u5bEknU(T#VQXOl6>W@(wW@g#|NHRbg|FEvVc{wN-{RCL~at6D)R
zqa1i2k>99|%ieI(*%f|AB@q9c-_CL^{F!<99iHm7&_dZ0JJ#ML2a?Ernb!|lwef#v
z{qB!Peq+SE;C!l67Ln6xp>%21ss83NMHqs)oO|Vj7`WcO0cO!Oxct=DlL0f;7#7w4
zvz$*$rH|5~mEo{yLaF`6KR57?Ey)${tNaL~i&N`N>{28NJTLyjN2c#wtNB9(Td<98
zjpd{DTx4E;Jr<eL`^1!<uhkr_>Gi?lEfUpBr4@{2*xUn9{@%dx%J)M1Z}v9j2ZI#j
zJpA&m;jfjN5x)Fq0aX1h)1fCeRvS<MQ*>3gypJmOod!%AV~i{}0}G?EFtyd9k;Ppd
zY#bJ5?uI~Wx-*^@;sUv^0@yFkxlP<o!D@s)B$^*&);!K!Ry+TJsY6@B_b9WdJN?eC
z8<rO}nELyIQtMeH7Ea$n(CtoPx_kmRw4b@1rzud*NR>SxC>Ih%lTyOB|1--ip;81K
zf*{jU7_;!3z;1mjVC(ha^`r+E#(n39L+p9X2?%OK64@2u$EDNRo0a*UlG@XzNcCS<
z`f@Ix@|K7eXZA=Ep_eZo=|M0t7yy?{_j7-5rVvgLrdFBAYE3m8^kN6`$#M{wb$}dN
z>=?NC$LvRyLv_$0g6$}LkmniOXd)JY<_*E>YKRsxlDx}5AOwh<{N_nE?aI+`h}Whb
z^zGsfMddW>oVS5_Vsm8<;}aia?P-fF5e=B%*K6iSpH0!!xus;M$Ql#jM|I@krKuiM
z8b4;=kS!UDm`WK-Pf=fHi$H{770?G3uLe@8T_~!#yL@V-iM+2uld2s3d^8eBP~NMq
zreKG!iEOsXBV0XMLPVW1zu3~kyD-#Q@m#7OB)2oTFFG3P7@dk9B@_c5Vje!B>Xd8b
z708sVi`Qo~GJG_zsrNFh?1-B`n>1UrFWGT)n62K$w!!+TjhqqV6PxWQ=oM~1`Q!oR
z`M^q%_D^DqU}@lex0Mq3y{??Ul2KX%H|<z-Y*NeSTy!>S>7h5fIg9dRx5h<(gf<uT
zeWHn{n{oN|^;OTmzjvoZ#R|qtZnec>9`f!&@rrSp>VPJiI9~CO-Eg~J+Q^gGoU9GV
zt;I^_e^LakKd!*boJUfh2Wyh@ODWXY5x%ckZfLBQs<6LjHxvuH!R_*ljiqgIQ1;)A
z%tTtPtLF#0)wG^x<~;i(c(Y^FBuF|d*89^6->*@dH`4iS&$cC=i;f8veWh!d*uIg|
zG2yNHE&H{R8?2&ZGAQ9@@s{%2Q`V&cUAgAsZ_jpAzID7+tZ2(UGP<qYKTY*P+nVvX
zS(_lM<1VyFR{3+oonG6${c~IU(;k12R&eM0j>+)*yxhJyoQjcEF4k2c)!tI;%&!rp
ziM)THc+&=Iafa80X|xy$?xvx6@*5hw7aORAP(6_$F+z(5w+rr^k6~&mvCM`0z+Skp
z15cED`P}#bO6GXE_|9`m-)+a=TJX1b18aD}O-G#iCa^ebV2OeHhK-GTrBIZcL-&q^
ztjFDv@R^zV$)+cwm;?L<LWl5Xfjc!aIc(<M4S51w^%3HvY*SnWHTbJJkUdAF`KwOe
zfJ)OB`d`1b_=HC~Ol5XUxqa-mZ-9~XD()N##d_<<nfCkF7Jsyg3e|n>a6u;or+W`=
z3t~DZb`arEiNBI=d%ZbIL2cDL;yXq?5e<O9x5Hn>XuG+~;0l7B_+e8B;a!J_`+*$H
z&GACpz^>c*BwQmwol2U5hEtmqxn!Us@BV50Q#jXo0=XI3D}$iDpC0u?a|QgG+jBw3
zO?22X=``SS;nYan^q1=j_bI|0RQ*l(Ugy1kh}iWmXQ*V>a|)Y728BN%>u=7dom3H-
zy4{Bv4bc;~Bsk3Ok8DYVWdc5^UKc{Xriw?%w^5kw$J~uIby+d}WLt9f_&USBE9mzp
zu{Xkryo68pCx0g&sv<<xZg_GIIKNd-VqR95VPF+arQpQMK?+xQUV6O<;){eegwT3L
z4SSwkYb7~6M?Q=dw-(laLKO@)iSPRw&92jJ8XRZsS!u<qmqgk8bi{|^@?-Ah;G&MX
z5m|zjv^v~YhL)%?@gSJmN*_fNN;L@Ub$bGTAJx|^&*(**)>qMyrrfZId#A&l<y2b|
z((M)<d|CRNae(3<+;5=Ni3LTaS{g6oPDu}jz2tRKev+`XZnDJtXLOy+8ArCfVWQ2+
zIS-}_qN0{2AP0E8Cf0Yl%h=^;=8<k>?xkMO_`KTPDZI)?q8|R^D`AQ$jr;y|-Ux10
zyJ0Kk;RGmOFJ6BFnG_~LL{qTL#Q=j8tiSrWuor^)J2ZHN(2DB|{ex!8HPfKP^Nl=a
zj_X588CV|zSE7f~ry*D4a?d}J3nOVn>&v;Dz|{ZHk{%8$r_5+r&dsG!ePl0x3g|~I
zjgTLrh)6Ehi4d0_qY}rY?e@Nwq7$a|yx{;tst<_956eYv-I~`{bQn}*!ts8`tZ`gw
z{EZ$j3dVLDo68IhiqCuK6s(Dl&LGVUBpBDG?aEOThC)H*veGcQp-qk83Z;Kfv{SYO
zw{^urJ>_&N6)h^AgWWxYb48>nMdCK8aOKzW{E81fDZCyV_Ejhs0aP@-D54O^RD^z!
zfI;NL*}op&QG-14o-lQOqbX07&`+pMM^T*&O$&Zuk55{kZKS<*6fRKJv)QPa3f=PJ
z`9==U6DR6UytR}bWudlC3dqbFe-NFvMmZSDj*r5jAUuwnGE@!{rE6$>WTv)N1e0+$
z>ir97YsZHt-P#G=+vbN{&imVTUSN&yX!({$JI$G%pYit7g1&+S*JT&ZjW1E!6WhAM
zs7Y>|Mt0hiM7dob-VsE_=u-WQMB(c<;OC+5VIkx!sWG%&J%{$vC>0D5NId8rvMLZH
z9^JmZIcS=>9V~|nwfG$N!<iy(0>|}$=~<PAKuzEoE}ZqVoduN#le@kdw-*zh&qyff
zv-e<Ql79kDpovSlV8Hw1(8vk7{c#f82b})~kfdVZc)@f(91x8YhMa*v`0h+b6kjk7
zBsvMllDtvv$r|nCqLX))&uc2ohIi5?u-M08q&0_KNYWWNA%HsY2MS#@oH#F}#3>MW
zHX!oC3!nN9uVad(AHe<_N|->-%LD1pkn}v)?i%PP_{}YhkhA+;?xwvPB(T<9qTOfP
zE7@keh4pK2^MeF>6an#gts5C{k&?F0g?r<jESHpVR(t9tVhbv=ZPG)YY^Y}%P_SF#
zQZk*-NNMQ4-)40;3kQN{_1~qf?k`nka_!~^!NQicOXE=GF%N@Tz{Q-*Msts5=ioX=
zNi298pr)ztJ79U`sHV~9wTY1@fRx9gw!SY#aw};okLxOo>dRvED?RpIz`ld4d-o<p
zasnV#pY!&fxSTEN*Cens$&EI1QimJt<OCQu&(MYI)T}A*=MMO3i2I>7^y<z~Z7=V1
zLX5>Usm$^WjCFjAh5CKo)tFPJm&6$I>5n!I%<59_w?Z%L=bDYiVHzo%1O4)8{MnVS
zG&7y?<96@-$1BG>)fq}X8Z;b?UauOy5eG938TS&!XsC=_*vk@B9#te95JPDivNJTO
zpN*TPbQ*|v??M{saUB;k#UD^F(9b%8lgc!81}Db*ylE2&V&h5vadyis%XIDEaeW>}
z{h-ki{hf*3xgI9en{o?yy1p+x?q#I&wAARAhcvaFCdR71i@3^E4eL%1`Y|E8%>ce`
z53?>i<IyAhmfpa!qz9mde%WaXGB?S6yt6f7jM|`c**#+8Ox<=H?jIWbD9-!QD!|tw
zaLFkUpDw;~B9XW#!5kT&=j~T&BeAd#9F*Eq54a38)|AX&rP;+Es~e@S|08^k1niVZ
z?s!i+ztII`9e?0@u;q8PWYx5)%FKJ@8MkrdJP}khvs6U>kSeY3l_Eyx*))~$<PW2O
zu|Foa==T5V2T{;YKg*XmT3!uOG`zcKN+vO_AN@S&hSg803W~Mk&at=t<)*}E4Da&Z
z8n);Eo*#>sMf@9p{Nx1xFc`Q@`y7$~`Gob$DS3)ps`%o}=idNNeU#)@(l~l*aMZ<m
zk^Sx05;HHk@{5^4Fyp}AOu;j&6R?&Zq)qZWDDB+l?exSK@`}3$k{-X9PF6*y*_*x)
zc>=m*g0BkO<MCPDEE-mE6iT;qei)^4z02a(zC?N<jo9KDd7`{#mMz4#XS&MGnGD}2
zWWKX6&eE2h;eYL@QE7oXTwr_qCHC1nrgn4VKg~*X+238vSp#R(GjkL|P6e!Iw7o5^
zDP^!3f)Q({yCs9tN2UE^+B_K$v5zxiw++>2EHw5X(<hrVxLPVfvN^9ebBkH9K6=ke
zraRNxBG}Wg-L%O_<H0p)&K*s|bw}D6$t(g4ollo$yh+VP7b5c8nZxyzX>|y8{l@#+
zES^!E=*=9B!w_NJJ2HErjc%5lkDqs8PqoZuG-pGcDci1H9!Ej$9@ByigvgMy3!XP}
zU+oTbYUt?St{%#^t`hy$6Krj5UrOfqT;bbgy-vuO6#?Kub!w1n?NFBI@Wjdh57P+0
z=~mXJ!Np>1ucLBc#rt#Cl&;-uE?0YvOM}5$UwqC<!5TiSZT@#zEh5i40$>x8vg7@E
z<n}i?Hn4inET@*0)-@TEr8f0(n1#ZVFO1XgJ_N}7-+VtEX2>rSZZ6}zB%{AXAx|Nj
z88B<LVf~0UTur#d)KSKW?fbPbgRm#<pu|S|c(7^9wC4Jx!JQ{Xt(^3(-x8)B?!8F=
z+cJL!*hz-6X|UTW`#uU)cogX&{;}6)X3xfy^uuK%|2x#>&XBBmv`xi6L~|O*%q7RH
z%wzAm;Ii|>nT)o+03We0j+@SRSsx59y!=5`HSV`|;G(zwoTc|X`pifw(pl=!WcxfF
z8~ZqS0nvbO3|pV{$yP(Et#yzikT-|@%OF)I_U@&euV<k@3>)xvZ<77zPWM@0*oa?S
zp$q(0tN7K%PGpbo)o~U>zu4nL*pqJGa~8*hH@xufrw_M$dGDTH*aHrikwx7!08cPh
zxtu!V<D%=+p9PbzGM4T+6K}=E?(zzWG&KLzr6eXiSg;Lqwqqk=ugfRiBGyL;UJ)&J
zO7eJHBHlI1sq$8tyL|FJV)D~hNw3b5Gvreq5sUHXxW~lQ=kgC+Ia2SA#D#O#s6;+k
zAU<3_Pwplr6_DDtfdK(r=@cEA442U^yToL6NG5Yf_H~7vd+4ltl-ajBa!nO-)P9}j
zt?l4>0)-Uv?sYu6M@;`##vzHK529kw`Sqx#qv$>{eYnDWrm`~*q-wy(y?dPhT%lw~
z0k0PA8N{j;Ec89Nql7`RY=`41^FW^Wuv2Mt*{#lsFNIlQ`-M@Wkt30%YKql&Iv>A|
znwAduI|ixn@2t&G%zrI^XfstatX-R<*zl?|^K}$?qGLUOK+xJ3qv`y{uFj?}inlf7
zv4&9;f27443^zU~2;T@4rjvetU8(JD`tyd>m!D0XUaXsvNjg7Mw2!dRF&ub#tLxSM
zE)3aST!o$Y3Z4=!$BY`R3FPWZyzJ`g`R&Z5=yE=L_xH=vex)}%zmrC~-u&$9F=Xwz
z>>@G59fFm6d6oMbQhSA!`)|b&ZNCv4UiF(Q4-Wrst5{F6?H;<T9P9E&;7Wu~?jHFT
zTi=nN7PkEQy>_{T!v{r9&aYpb28e0b#;TvhjfL5dzABu!$NBKVpXAZlj=}DvAM%s$
zHTY(M4|kTE6vl~1y3KSe$tUM+e~Axi|F-@3Q&)g~$FJhzbA?Mf^SU|megc+~zfNL*
zZ76NbI18MaSYd{Ng!MSR@2V_5P+2l`&#-*`R;jSNrg8e<v07m{GEQ@B;j!_?%CK*J
zJ+5<b$a3Rb@5cJ?E!_l}`=CmeOKh)zzTOsO0`hogB{?mskH^Y9E)t-74&;dfZBGn-
zVoun0P569keDcd*9CznjW9^&5QJVq)ayr6vdeuedAW7=q`!|`#uBb07gQwr#e9;|P
zr^oq})7$Oig^41tGV%Z)3aOcsow&YZVKryvp1t1|#0k|SwZ*dg>j=Z1ukt=hJ8RF$
zJ=FrM9*S$EFsc3Qccfec`_@cV0R}SY$*5Qb<V8(;c}C0GxrldiDU+E+IBD@U<tbP-
zb|&z4jfY;kA?2pNkklu29JP|7Q}!Xspzx;ee0wzW9g`<Y(P!U(G4BrCJ0Y;jI)rP^
zP)QWX1)5LPYA}yV%`0c6T~=x-mtO6BD~3^VtBvkYmnDX}J@xW`Vivb#Bl^^<GCN+>
z;sjOJF{&e5d@e22+hCvgb#*x+a4t8QBF364RM4XjT%&rdpGrSj7epS4i_Hn47{1AW
zYv_W_+kLLV{#E2(&d9?et&I7kn(#WyYO@ENG8_e;H&WuM>0}uFGRjnM?gdllO)v|a
z<lIN5WFNNmzM@xHIy&k9MTsp&tsS|CN_%W@<Hk$$SLH*uzdX1nUlP|bVID(%7R;2I
zlafFqTBv$<J^<}O#vnKZ$wLu^h*jj(4EJs9Th(7*4Sjq5{iA`t__2B|Yk<jEnNhpY
zr)?6s8onYSibb*C&bWNMe3QWZPf=<hhyEN8Qhgv(u19saD&1OoFx@$JoiV$vrGbB;
z>&D<|_@{TeaILWrxcGg6z(%PTxmiP{)yvnZJLF_`ac27mq=#PAjM@w@n2J)yxnuuW
z^hhmmw!umDT)ESlbShTbtQn!F+8+p_g!G&M<w-uX^M0+|0?i!#k<`=)NizYeeNQ8^
zbM_3;_R4_=Gnx`d088VJ?7cZV_a}M%s`+;1REml+NDJ#&rn2-d@>H1BnffWJ9J8;N
zl;h1WD_7-k^L3t#bMy~u-A5K$u+`u}?pH5ZSY8{~u{})<DK(p?ZJNW<ih%o`ol8|#
zo20<3l@gRr2Hsvutxxz%n3ns@uZV1MhkuBn=)6~*B!ai=QKAq<6i!fwvb}T_A=}R3
z%g76d3(K15d&HhL65(m4^wy}*+a-mci>Rb+&2=KeU_97TAE>Y>)iQssxrrQj44%Wd
zRA!n1X6Z##mN+c(>;e{<tLHprUyG*56~Qa-TwLr{^0h^kYQ}u$*j-SzUm}`n%IS?h
zoNOW-Hh-zEZEs&VzUBQG!dra89O7+$rzT2>vbPw=v%7Ok8$Q^V`~As?@2vU}e{Nil
zLBW9*|D&w0g*w+e!t-gqdgfv|lZ|sNsT5JLMkSJbm-(@jv&oFu&b1?YJBF5%&4+3q
zUi1eVcGq1FDxsUHhS`LWFybB*;%@TjY}R!^{k5bL&a`=Ybi>$^cp%y!ynAt|1l3rK
zY#c6;X}`~YTWi;vS%U%Rx)}gp(08R!1y&xxzzNLu>n*!Aol_ebQ6o7UU=bhY?YX3A
zsr`o~;a`aqEJ*QD0Nhy87Ah!SMrUOYdSTSup!d$*7O^#eTn)Zjopgr{b!uUXuck%W
z5t@u#1PV(qpR=|f4h*zwO=Is9&`feMA%LniH6+CAbf_vez|09JVDpWAaD^0(c|=dA
zPv#v}DPWd~dj=&i;{`J>E=SfQ2dF<VX58!ED4&_Dt%dDTaToJwbjv?lw-1V4rCPjv
z+|4A_M}RYg>+2xJVGuLiC^H!>*Nxo1O0$|?ckO^A%rJUOjZfDL?KR1OCgy7bb`*hz
zNryb&xfGVtnac%k8(&>PsVpAHMZ-QzWxN_@{Sk8Kew^jB^bq)tbZ`7R)dB<h*Bb<Z
z0`t~Ovl6C55vaqgecJy(kGcYPyS18fqgbDzSs{zWh$>cM#K?8%8^wOe@g71^OS23&
zJt;=RfGj@Bg6CwItD7API;6(wlG!4=RoR#DU6hFEwRk4M#DirwZG~m?j09LEU)8Ag
zyF6Hgf@!6Q^`3$K@=RZrOa(Gx&&b!o^6>{NS*h(i-~OanKK%!))o83UF}~a%F3$zk
z>0A4W;FhgwR9Who1^j}tqi3rmW$W$d_H8;8YwJp8k+y?=wxbR<Z6y)HuCk)$1NBzz
zZ&;c_;u{<q#^zrltec|e4qWgC3keQCn&Mav-KZX0^n8Ui2TB}zaIDyQ@Yp0q(mnGO
zakL+&rf=oUd**R{#r|!=e8bN29rFX~jIK?V_B!h$Kl>c}k|+6f&+?7}e3h=f^9ZlW
zl0EYEUvXUjH~+$Y`{-_p<LWH=trid2<IqAw`%ghO9g}&-;Xf}{*G%#|m*#@(8);UK
z64<)UkB)=;9bLYC2=880`4Y3_zqpd0TYn#aY`x;>`a4qQb@A&j3BQykxc=z8>H)G!
zef?*+eihN{l@mL$V_tQm;2-M*{ueg>A8u3>a15LSMgj0wwK5JK-fO&kS1>9!g8#o|
zqyIsURrv&kueitmq}EiluTpD5SE)7Bf8s-ux@K2&=#_T-e_2O$1C#$kjQ?RoU2f~U
z{YO6jZ*%R+mbDN1Uv}~TB8ykewIDR^|DE&6$-8<>|Nk%YOA;nnPn<Jjq%w3gK=J8x
zZMZ?B!}G;wk>f`(JsZtYMv{-;?zYEF26e5U5aUd)JJL>R`M%W+=HL?Grq^Mn(58T=
z!f72T<KmLFVlo92A`0#m+|9_#eq3ryFU4v?DaFrI&+}B1maoc!SxS&wNQxQ7Dg`GX
z5Q0QUiUuBp)FaKBx`sw;PJwqb54C8o3BVb2VFJQwW)#!crVJ1>2%csAiWb}HnRl~I
z3rj0&>!u$CwoE_2+ug@O9V5i;YZLWQ&!R#_-LfFVZc&+`=!H!BujJzJkC`K6?yjnw
z0lQVWR9EEoq$UsnNu$-)EZs+!Llguk%$`y9BJdiQf)W-;L<?vrNr3uA0qU2bAZ@;+
zJ5!bdwt7-oG5R8$Dct8>g)R!g<?jWgrK5EZ=fWZeo~4+3-^P8tVXNnb(u>ppE{tGU
zA}P2WrMzr6Ug%kJDVAcv3vbB0rdT{!16kk50~t7+*gpXVs8|@>4vG3SBia3%g5xm&
z0xM(&%d-h;&2hd(!?pONQgVtSCr<^w8v8=}g^NwN-pp8l5(|HI0o@{y{8X?e1qqM%
z6mcj%R>&Np3hoU5q*?DuK^+~dlriMU`;6#xmc1M<n<iDS(SJcGVflCsA>9GcqUPXJ
z2hozhJmHDsFB`_w<livQvhs$IYg35Qo?bH2{&1&Q()EA$3WAUBM%klHgLnC8;YD)g
zIOy0dn+P?DGFzr|m9kzc?XuuLDtd_xw7VXy-T)P)A6S4#vzVmGPi>W4V5fCRgwP_|
zt@;wR%>ZP4WFvVRGHwX#WmkAE9P7(VSw;ej6$gXU9U}|-9vKkys|$V3+CEbUz8OW)
zgwRXfd7?jbhhGTNK1~C2;CaUnBR2MLKH#Kp9*?LQut00`$Z>uQu(HC{LZmtTz#y?)
zIdyWWOi~}k@M8V|RZ9NV&RQf7^;UB)E8||JeeDIX!3hCuc-Fq0+JG`S5yd?x70HRG
z4RT_(D<1o}Im7ZeL-v>p5jQRkYKmF;G+&X`Li?b?Xkv+9O{6)A{3~Hx5+quBvIe+D
z3hukNNqz@M9TG{x@=EfE_K`8@l>*Ck2(iyuexG%TkU$LPC%u{itKfbzdD@U<Cd+^u
zL+4nUG3ut}nt_g2y}>!q1G!}p>J@si2CP)MTQ3PTWZT3hWm=B)(ehCqsAUl~2T`@v
zGHX&@5rZUq?P+D5_aK$E)LBilwShT%nwE%#IrLFuh4ip_Z-IrlF?h<jG8Xl=KB7~Y
z49Ax69K;ED*k`;>UwVrT8LXmDZFcV^Pnj{gS(An(A1xlMoq2Kqy_dtG^9jYJ-f{CO
z6Gnl#C`=W%6U@MO88Z>_zGVlNLDPGSIpG@ceD#S?UKl~vTc4j@d_oCFC7${1MUq7D
z^uSsx>xO2Lj+gELr3AF)H~S<r@b!0~&HeaB%e$^!(2cE<Sgtlb((kXI_o=(5idw~R
z*_!Gzv#sAt%=eyOAuXCfRjK9-y+O-!W=-l;2nh&t^CYvwd?GIevce^(K2#XdI9aR3
z-#F1`ScUiqElMJsPAECkiYV4!p&7^SCfp^>|230EuS@VnX$6zWqyUHwBdo{f3}8?-
z1k36L0Maz8(_Ha_lE!X8=BorXlwCtiz7!&iCV`M7P`*MFM6dwOIme!9ZxjF$MPEsX
zLz1^tFV&qG2I%L7+<?iA>O6{{`q=vAhorr!9{PK2K@TZ)6=qtXPMsC0Ms35Yts5D)
z2KcV&XaGe8rjrc-9=TYd1_p=(9CCujxHV&c+NneOHGw|F5v@HinT~+okR+CzY=;VC
zLKM(_{YO`aJmd?d#3E~%YVYWE@s0c!GlEwJA=qu+px`m5`i-?=mfKjjI}hJ~;^cxi
zbU%TBc5x(%tLG4(u%LlvMGlI5@Fq%Mw~~W)5ZTuyFl6AHwE@YEWkew<-lF%Z{>Zy1
zq8U1R-m*AC3r!<rV2+u(3xrke>Pah_KhXSM5k^AlvQW=t7k#fp8rK=vj?LtEey_Te
zdRS+4$KZX@^7m@_$vTsJWA95YzSpSJ)te<7%$9ThsMRyBw|F!*Tdnw`&g@~mRgJ-1
zy~B@syUBW+S7UQcF+UpI=o*-LpxD-;ISCKr28VZ2Kp62yqmE;P(~iMH=kkxHsL2MG
zpJNMeE`B^m(>-&eFkI~8JZmOY^^;k-tNj){Yq5i904ReoP$xiZL8Bj7&kO{Ll4~n{
zvhM*b?U^o;tGfmO*qMwwR9y|JTl+T#q+Bd7PMy6}i$C%U8Fwu41AqbNTtwQe8I-uD
z`|VwHU|<pOqxA6ot8cA7hUQ8kzX9&9ui}dQxSGMU!Pbio;;`5-EPTCLU;(`Z(iAuI
zo(5$r2`1_)ck3_=1ovMXQNgO7e+1vp1i*Dj>Xd*D<&Y|Mz7xEbOm;Kl(PlH&#O{P;
z#PJq^RNHQ8_WVjjGnCXLQV(^_>lbXoYK=lEty;#W{$%HsWVXj@0)ggf**E6sH~izX
zQexl2MT#{SW!4^o@VDplUj=CN2keHhh-!f+c5QEJZWsYnw%mFNNirFQ)U=;1R)CqL
zG*+u#@}5Kho|{A%x|jlTotR?e(OeKIG%7MtX6=NW3gQDOe(&9h<WhH!j?@YGFnWhg
zRLfnBhpxyOdB=v!?a3V*cCrx}FJUkzW2VkPc}=yqoFOpRfGERwnc0orIQ%?&u_l8M
zV%||uyRhyz$KG>FRz{@>_kPam3zw8`(t07>E0}l$_%w8&ReKL8i2>4ZiDiPgk^Dh(
z{mmDBfYRPtea%wq=}rhdk_7-B=rrktmKw0PyA5kMSJR-Rn(rpZYV+y|&1WlgdJ4xb
z4Sajh)}kWj5_tglJw+hPjz2cI-n+KiNnb&j#=wja8^$hNGB?t|X1u_U<X!188~{Tb
zMK9QjG$o1S`(Zd6UgL1;WzV<PQu3-%RIFoDf^cD(2<q^rRJ|;dCLt_Y8UEs$ymk#7
z&BaKBLzvY8U^fv4Az2TgsmC~20SllD2nHjf!pID!FR_O34Pe_jU{Kma04P@o(XX-m
zjx%d+z^Fi+?_r7R8)#&!TOv|j2{fBP*@jHA5tT<%L&CmSUXLHw_k8sJYHbo3uX5<=
zYLQd=Aquk^4}=t`(>R#92!2vI60=jHh?T&xJc~Td%@C%p{)eu=J59xUt8eEgPmDf0
z_g?!w4QXoi77FwVyf!0dG|K!Q&8o9}=6ZW>t(PGGMhd0VSEiW1-^V4Mrhs=N7D}lh
z!V2%|?6`z5cc@OXI=&yW18*4mI@~Lc1T+@^QP$=et&n6*5rexLTJ^^L%A%I(70>(#
zfJ()kQ;>!9dATOCzUOCWDo;qU1t0FnlXUK1cB;peA;3JrEd2}7dcpTYa*#Dp1l_bh
zV-!a7Bq50$(xMCI*`+4GqEfyxa>>WcfJILrXcQd%id?ATtAc-sIKeGwd`5JNNlXhW
zaYg^kUC}>S=jB$3H6{=!6Ob1HY@5DwONe$Ds`!zg{RDA6KqKZSMw!O$z8cwe*P%#)
zFm#|A3~9Tm$)w2b!FpyHCi@DHQU^INYCb;2Z(Ao-d`>oJ;<nT>Hi9Nc`{<xT7%R5$
z+JGcsWYSZekk;fR@x)}UOpqI^?9i!X#;)?+S}>X@aFz}BxheanFXfU+itMH|Wm}RV
zT3R$m`Y|z#+42Tk4w4KG<O6^%A6kc<l+huYli5eq=5-7#YQUUukO(y9MqhGYKO$+w
zzvV^{9vODr>Y^w0a1ThvhU1E?#Sh2>ct~o~^1AP>OrVizD;As*X8x-M;8Q#9^&2#i
zEg+V@bj_SJn`W$*RK^D+`xcQ`_rxq~#IOqEHTY2t^$n)$3HAs>cG}71-Hcf%lQSa8
z?VifL`79e~2j*Q;?6(8YVJH$U<#A!$1RpSU<~`1<(`rBHru4Obe(+>pFwpm*ua>8g
zTliPIn<85eyI9jZq_X9InX-guBRhDm0BQqYc}+9b>0609!8x<?VDSxh<_*x(lU$Ke
z)=(JapHGgueg=qx`BKs>bLe9ptvZ)#9oRSpOsJ4=G*dK2E9O{cLBka^Y``t=72@^5
z$~(6o?&i|p@_R%{rY!|pX7|u-&Q7SqXp+Lt7S*)X6^{F)6@4|7JHSF=;DVF_PGEXp
zaB}J|mF1}P^k{J2o+J$hEHo`qqn`IDy5KR;TYi(S;;cvyP-rQYPX;Y|MU|+%VdGaw
z+c1i49w}M^W8NY)p4WgaM8G?q;EGyRBecp<PJE8<wbMj!+cbR}fOQzkF8fK@`;LY&
zYkseNL6;Q2A{**#heKXZYUqY&*PvT_CfjqLl3D58syh7l(P#!c4Chx3-m<Vg1u1J7
zbX)K7*xu92%(8^>j?#l@2x;%Smf6$oUx-uROlWxNwa%yZSQ)AdQ3y(6Za6?PT=O!_
zBaxyAHh{Pe&bl_M@y80RY^$YiU*R%D!#oX?go_PN8_)uDJ9V#{fVC|I7~Uv=H>!aY
z&4A7Fa;@fQ4l^JYin<b<II=)1iQ1ygp!Jr*bCG-GWI5b8aW_Ap$NypPEu-S<+H~DT
zQMeWEq;L=Jkl?PtB?NZ}?vTRWT~oLR2`))Na0?KElR$zcgaim7c<svjc7OeKf4%oP
zJ<b^W*QtNCM*XQZ=ep*+pZTo&R<Ew8BT$?`MbK2{c{*fPDiR?SHE5LdD=V}ss~8s)
zb#`hNbpaj(h~gNalZR`~RX@Fw8-$dg%hqaM)v%A3>Hx)q)YYEg8c+|2`WP4$Q=lfj
zm+Mkn90+om1P#ShMRI`+SwP0wN-b2XO8ly*uqdQMG!UPy>Q1JX!V*$sqY^kwp0lIk
zbE5ji8u~(#|IN4;e>sTyPb!o;Ww00E4I)H<I;w;CAAtyD`NqXjndZ=3sNnC_0!_FF
zl%IcJlIIIeO+^7-fVdL9N)z9ZMy-KIBbaSV9q)6Y=v`tHt&2N5z#lyhKB0Lbu~2y5
zpykI&rHxvG@?1+hteE~7U=IL+SnoGkHSycDB>8&ZKYsBgR}*ATMgN-&ZC+FLSW})^
ztKYzKNfET7sL5lcsRM6gzSdIa*HnT7%2wHUR(eN@#F*r|xWfRq1IDvhM{PU|<wHHR
zU+t=WLfFUcWuhH{{vE!@+T7Iu-yRJT&6I+hq643;!(CZdv!(qJOm}vu{fTa8kwB_}
zeRdg!|0F~qw5rPpqr1Qlzw{-D%c{#e2Muy%kT_*V1>n=bx(7shvdw#PLwfRydJ6k`
zir0HeuX|AQr(CMH(!94iq_?)Hx4y5palQA&b#Du8Uz=24yLn${NMCnRUvFPu|9ao6
z>plc+|BzJwuzCMzNdI_I|72gk#xKz9b^qKoXxg=J-hAMldEa~5fn|-pRlI?9slLtY
z{*T;!+lT$1Y5R7$2llUfzx2KOX8!8?Veb*`>qe>9XAQmQA+KwTUSGNP-mJf_ynYSv
z^n#=jaB~Faw;t?bL~$Pizp;mk@CK1jJ4oWzLuN6U9WqF@VNTOO*i8=p%Sis;+@Uo=
z8)$<6$sHOW8xz380r2thG4M#RiBJuPbXe5)u!(7j2>~)<00JSRr2rVH05URCN-9b^
zI$A7RW?XV6d@8p8XLo2GK}vo;8bMwPf&a!Dnwf=}or8^ogPog)i;w?4zW|@m|Ir%y
zk1w=@Jhk8>I#E+9DI<D`#|+Zej8cmKFoot((h}A(kkm7lHZcGHXapUCGJ;n6Pe#yk
zCYHL7boBIfjZ6$oOpVMfOqCzop)8;^tn4(bo%Efa8vUv7_&o6mw6d|ZwX=3~ws&%I
zaPx3^>g8_jAM6+$?i}*W)7!(>-^)MHHz>qEBs_>y=YL}U93BxK5&EZE6dB_ao8X5s
ze@;#dNlAZ}k@d%+-vvnW0+K@sBmGEX10e~)kPLqyI|xV*CnyRBGGRoe5kPS)erY^z
zMGR0K50oe3G$aG<SwMF#&|e6^qQZwtfnhk>NCn|Y71?MF^;kXYSOfQ16aRRVV02t$
zOng*QN_=WYQe;+6W_DUu?!TBnSHu5d{@l>g(Axf@y{o0G_hnCi$N$LrdHn74%>3lS
zyP<`p+5h*&um9;UQSQ)E*mSBb@WCi-QZ9>sxI<Iv#bG6)+@YrfD~CtZpbCj@CU%t*
zSseQH(m0iKN?CN`jl~jkDS~NKocL65SoPcIAe6anZEfv;afep#s5fj#e-*Pn+0n4v
zY}NHDkht?Ncj)RSQH|X7F3-=Cn;-z7=n4FZa)<6}{`eYp8)+KY(X#y}9_0@0MwKbn
zkv=Ama)&-O?Tpx7=(s*N+<OaGNFtOGXZ-xGR=>e=hKfXN>d9*iW@Z2=urjkg{1CQe
zw*I#0$0Y6uV)5YfcvjN6-Bmk8u`%xfUoT5^+53cC*@tGg!Jocp_*@|43Ezu6wZsId
zOrC#`<@=Bwl#zh>uu;SearlAN5EVgTIElfr1@jUJm~++vpx_`?)^0eHIMDJKWg%gO
z{)kxHDL+aR<sBWRBXde)KR`#CdJh<et(&w>0Em0rbU!V_96HbtqQa4WPaFoT7M?sN
zXp!GaS4?%VlB==zlx2d_RIy}1)VpaIDTO1-vg2h|x8t-#cgN$?wEzSj5S>wEw;f7~
ziF%coUoO>tHJ-WH@(A0+v$;PL19;p|qLJ~eDjft@3b%pSqM|V@^AhgURK?;u#G6!T
z1+7%+KhdU`DFk-B*i4=G^o*&_<}Y)KtAqUr!k=O6=TZP}Ncn>&7^(u?mQCrOCY|6=
zocD}z(&X|$I+sm6X*5d?c6Pk9USn&Nu*kRQOd7*)j5^?u#Wp2YChTlw*2wYhEeb<-
zy^-L<%}4LpM8-*#OoPdov=#fBnBrH~-FgyhT}`Uf)j$BA#~n$k-RpR@78XwrW_<p&
z=yxdsi_uYB#y<WXS^|^bI$avB254NLv|fBk<b2l4l<4T$!KBU|)XJ2|_00cVog2`c
zSLf~<-Sy@YS^t(h#gCpliQ|U`D9ywD<mdF`EOd=Am#Mww+El1P0HLaBi7y~W*MR`V
z8Kj>PY|y6*W8cv9{nFdt0}v$21Z}bl*eeb3L;xAmTVX+y4nuyy_f1L_lQ-pur`T%7
zFu&!e_kMvv(Njr$pZ$2Po|cQDJV7xv?HKOw0pgZa2<H-OS@Awa03aaMltl-KzmcS(
zIqs|^q5Dy{C<k{wp(CURrm0dzZ2?_cyorNYf`-r@E<6h6pE>HYw{<NzXh5;95U1)g
zh8&k?YbFTTpllg2Z((~(iOZ{yafUNG;5UTR1W!LBll$Q}aJ^}3`c4s=USnW|rfo8$
zE$<1#kX83M<Wk1~L3rhl0l+A68CCv4V<-EBMahr*QT`Y#k8KT*tKxzQy68vkTR5o3
zVNeKTJRTS!71}3@Rp8m>M=TE^e^lIqY}t`-#jwJOF&RPw!J8@?=Qv`q5$_?b(Eu2x
zktlA3!R-kguuMkC0SGjFJx2E7!+13d8`6eP@y@j|7=kP6VqdpjN&4Dy3tFM2WTOGX
zip(@9dtK;vr&d~b3<40gvauxsWEUMp%@;2_$`zGjcBT}}4ajm_dCOq8gN%rrFem{i
zZdaofM&-C6E-sX%3l0Z3Y?a6X1Wwnu8>s|o498dYBojCQ8r8$Vr9rfl%5H(VuravX
z_&Ht|6TyJ-Atz-yL=9v}Di(VX<k6xW`k0tA0Yw$^6M3Z#0`#9;xce-W-9celF$sVi
zur)%~bPMNT7FH((WRcOBGe_$2@%z$gr|3X_D@POntZhhWEBU@iz}O`r29Cv>cscZb
zYaRrWsCPv&7!cz;J}{&y%f(rQal=&8f`LKumHApi%=|1-%VBbfx(Q(90G9`7!G9r+
z4&eKIVD-Tix&z=jcS+Ses)N+}20E}dD-580E7utHw>|4vEnalJ>Q2rK?F0jq->?93
zaFb(bE0-|ZoaTJCJUEf_;B&H#DBbjXj(|Sy2WSwvs_|dyMzpXG`6Lprz8pakPir6*
zWGjP(LNO{m2(<Lm<qA(v%TGMG*ihGO^iU4H2o17L#cPvF)g}HUT|8<!NUAj?8G|?;
z;Tq>9C5W8kARr#s62q5`D+EDlgyLb$eN33TUiKi{6$0@qCfpWprjYO+OWtO7ZbJi|
z`(XHx`I!nv%j8Ji<8(Z-e#)fN(NAc)(1rlCsFxk3TjGt-2pht5w5mV?01rDdmI4N=
zf>{ANWltY5`F06#9b!Rc5onn3xdDnHvxJ<DhXlr3uN;;<cS%tDZ|Fj~#f8TlzIAz{
zqS=Dw3J0-^xdFuqeg^;oga8;i$cw)X92p?s;2ai?27BO!K?Fc!pW;wNJo1XMnv>>q
zLu4eqZfDAJi>bG)<i`6tIn>*h8B=O>48!DyIzAP6@>m;=(cY^>w#>>cY-sfmJGvT)
z<~maEWFQww$l_3bW`N5W?%9RW=o)p00n<O0wgM~=I91$~j412odpu=0T2u)6%g+0X
ziYpvAW^U1hB?q2p09dsL+Kr8x`@&~K*ewXC(acx76cb|BQgd;+Ffu*!m=TvRm^5G8
zVkOF)X<cjaXs~gfTa8fw0SAdGcF<&jT?cN`bTq+gEq4bVYRYG7Bj{fRF*tP!at#@%
zb1Q-)K~~nJ#am$XYDk_v6Tvf6i~tJ;80gW;^#{Ov3TF$e@Ek3j%;&|+65^Kto@|x8
zG=keP!)8UDx_@r4@IZXso{aEE$3otH_3CD_6Vf6dG*!LK6^7JoTpkNo3nWQTsQ~uj
zvrK<C#^-K^o{t}ip~(_h$mxqOSp5`xUxR5su5d5*a6R#8vC{%43habB?zmy4fYfRP
zreJz-r<vnoSefzQB0T!%s&G9A?Q^%=A~C<&e=JLgAp^vh<{IU<(8V+l))KPirEARz
zQkRF)GHW67Uh+Q1>K%7`9AMZ62Wg4$6UJ{GDLPamCQSX<XtKZkC|HlxdbU)MqgBuk
z4ZAG<mk%$EF8g)tiRbc@SzrSFf+9MC6Z|0HD}>MroFg^{$o@ol3y7TMb4PGk8pq2N
zRHI|g09&X(!2LZ#W^3Rnwf(Z`{QLUIOI|0;5W`LRyjEB0`%aVuNcQTMNUj}P;iu2m
ztO>ib@gl8oqD>+f&oB?Fj+;Olo<l?*3P#>g2Fp{(1}UA0J@mwmMu-KeI43)jMb3e(
zv(dHSV*4bpqipPKQt(Lt@L19KE{-g|g;a41EY_lEA}lATiyaLClYxVI#mta)5dbVg
zy*;8PFSzBz#-okFhDp_T0srs>BnY6}!SP;+uz%cQYGkLt+`^h|!GC52ussUZ#-e(x
zOSwi)W#Hh){L<fa4!2HLW?4)_cMb!!nCzo_mgoUsIL702(AvHR1{|Xij%%h1IC0=@
z2XF^vgnu=rqU|D6go_sZ)T<gHQ_mJ=Y@vU4@l3Z}aRM2M9i>l6ehjAQ5=)A^pXVU@
z{c}LtLOdEwBt2i4vgLkKK3Ni5LJZvc_EgMI03bSbX*CirGoh?dB~OA9^ve-s@=G-{
z;}9#bFV2CSb+MdvG4C&!$7BmELeVhi^hrqF{D{%IYA8l2sTN*_ZW}#j{)~J2^FcYn
z&x086af`ccr<zwQ&cjSlzy+>;x-kBn|5bHpFcoF!N}TZt_+W=Dfgk%Vh&<NQ_(Gg~
z!-gylkv1=ozHO79nU$txjlCI7wrod!y^^Lih~2HqEa}L_CmZs(470I={4JZxa2NTs
zm0h}C$`X~}gr4QodE9C%2d@*{I)tz{F<#@A`v9^MSC~5WRw&IwFYP>#Q(hulaRN$#
z!%n@5%IUy*d_o|!1*-c*&QXwAyq#rK7uUcK!q&^SSk19api;qMU(^-Q<HQ84z+n(<
ze*_3q)>jXQuoFVF9GK%P!BPv)F~7_S?#T-+AnT&afl(6<rehjG(e1Xdva-2WA$i_)
znSPh~Xx_N@0J3b;g5012EHrQe96f)v0J4p_?g^&O0Q@q5(x5`BZH&x>!p7CY7dXUH
zh=OK`A~k3s_20J2{6+mi5M%xV&N7@KiQ?fpoPnU?@q*&Xp5o~*g(H{6Gt?!2+@VcN
zmLwo=O^cU%N;XzYK3tX%c!3p=$B<RE;;o=kl-u*ygkn@%$c}00P*3Tp#Pc)L=j>(R
ztS!6(I96v5<e2*TIW-(42?wh~JYhIbb#c6*Sg+t<{FCRSrf?F;GP1Q2wmCTcTq!*q
z%ytY%nwCLn%9#?2Ww!8C)62epfj}h7dDhDByA))@a8%%BTvug$!4=|#70`L~j4ixZ
zP%Qd22zPyjqFJT#Bt+E{=K&2Cc;~rjaHTFym9jdHn-%86uVu%aRc5_aeD!5+TX-gB
zr52Lac4lz#?JBFUm8NFZZfn(F6TsPX=p2&ZTz)L;!V-_dn&8P2HU!oy2u{8(&NG@y
zT!G4v;M(}LVwGded>Pd1dR&z{g|(TIb^U4;>Alt2g>|TSlGxt5(yO|ct95Y6`pVz}
zlsQIiVLg{uef?Vfi(cZ!tNJ#x`hRYpxJ07@83OD;G)jT}NBaaLGlWN!M&wW91cQV;
zmxAVBof3M28v1`VNIXGFXEjT^NA_-pE?%bYzK^{EtbKzW1H;^&MLms(j>^vcS3QT(
zumw%Eb1rqNf8loc%9H1<ulvWq7e7LOAQABYzU_gV8`|BV$kIl|Gnzom_6De7L6f&#
zfI?U*@YYiv8SwanDaf6fF+;g*0OFW<J_rCw6(9nLviNiI^6%$l7V{9103=25r$Aj`
z4JRQfKuXxiRr<0$x0AE5haD#!lG2Y)P98Dr-cJg`@*%(ik@Y)}lGx*skm51^RdM;N
zy+jGb3&KM){p<dqlC@C1B~U0-OiT=h+8<O^)z{Z|b#<Y_kw!*Frl+TumX_An*FS&$
zd~k4Zc6N4mclWRN;eU4p0}20+`%|sM^7f2wV-WsBLGK^;$8Ki?)fS?gPn`GpOX%dE
zwh)xZY>NpU_oF7`W>j0q)aY?HogrK4yh&I1TdY|m%uZk2NhT~V-XkI@na@ulz$hpo
zJ4Y=gzkn@GK0`Vyx2*hOVO2q~T&WbiqN%L9C8<`n-uXpWb8D~n%ZDAY-Gd2z!?pt=
zuN#M^+(u^g#)K!P7ZcwuYtD;C2fqK{va-#)Ciw2-zS*a*j~q5K503K=f3oZl@10yK
zoZW!VFRnmK2P!|F_vwI07og&Aw^HOM$wqCvXRUJrNJt+UI1<|^r_jFf`*tp1rJ51N
zfXw76_`%YdL1n7#dx_5`k7^aAc-e!CY8CAZTssXSJebX<d`fcbke#n<r7<8vkho}T
zP^WJzlM?vL$f(KC*#Gf4`O;GB;$)#@Qf{M}mfJdJ2%eamW{>3;o5ZB$oDT#3Ip^-b
zx`;mxmg5RZCa+}Lm_~$%GW-&Ue4cp2h3rYbOy8Tyi1V*L3nJW~4^jV#OF%Bd^xjLm
z&jXz{_1mhe3$5)8d4R{Jwa4{$khJ)Z?Xbis;#BDpZ;t6A?jXY3ZeQ2MBE{F?EPYu=
z8%cr79x~G1C#jP~?5Q6xE`G_a^%)a=?71QTaY)pk_WV_N&`qoDm|W&<o)U~}$8ifu
zg1xZ)G4hj0U}Pkwy7+b!<h!jk4%uB7V;q$O)yFty-*{Ruu`KLUJj)fSO&H<$F(R?D
z{lG?wYqJ9iCQy`>1q)qSS0ubRp+W;5V)i^qQY^<rLswzKVM%$4fB7j`N13xK(@-#|
zD##QB-OCkT3;Ya|!0lwtwoNS9NpujEFw1w(oPg(vvl&98eU~mBil4-)u%kU%I0oQB
zW;xdRU}4z<G(0L8fF5U7P;26PMTL3+g9`yehd>jnOUsW|Y{8gxTg(8KG^DaN9b!@+
zq09t_fe7eeEMR-YT0&!!+yQ`2Aif0yH7G+qm#|Dq>?d=f4y#%pi_+H8g%k0>WI=dm
zE?;UB6IIchN4dVZav{z;IdT~PDST5N-5YcXm;org1E8M6|HDIgczF2F4<Q)YGNINm
zAbvR0hqU7OpP}f#@4#wa|8dbD{`SW;5*85|6&({B7oU)rl$?^9mY$KBm7SBDmtRm=
zR9sT}99~vlQCU@8Q(ITx(Ae~%xuv!3WqU_wS9ecuU;n_X*NDNPH^U>NW8)K(Q%<PX
zrrBv#ToSzb1x0)u0yKi9mDP1%^W&BrJ~jdH`NQ&_%)!^go$o&+PY!<`ol9R_e%rm+
zKK`9niir4fw<{Fb68jqX#=+xsz;6u$L$K%|vcRBXqL9WXzxDB10EF>Nws($A4gq)o
zm^|3EB$yf?Oneq9{?x&-LP0X9DqJ=KEuWwkEoYmQrq`Vy{{BGg77zi#3fCs+fpg3>
zF>a!4z!)#Vz+Zsm1$Tq0fd_v9l8%n<Z#o(n7`VB)`T6;Ug@vI=nVg(lSXhV}s)mM!
zzj^uQ&6|Jla&K?%=;-LzuV4RXUZMcW`hRKE9*|Rz7Zs?IGLe-&S0pE)K&Pmvs;&j<
zQ4^S)m;z{NsC+5Y(be7B*Dv|18`1kldStYxZ9;r%dhqRB=k(~iMUg4=9u~5-^(AzY
zO?(I*0rA$h(5w1`9wK7WBJAH6msi&}w|7VY9T!!?+(MvZ;l@K{q2vGtK0Z_$3NIf?
z`a9sRV(d=|lTJbq76Wh)3$eg<p}<5QzwKnPnm)^95nEqL<6jAPGJ3eGoS+B|_@9Kk
zVB#9xYTXL;u!NsB*nf=^A?i`#c?13k$^}G#SkxB`EF4U192`6XJR%YjN*W3pdRlrY
zDf4|AMm9!9M&|n>ECQ1E1%&v;A3S{ckWN^UR!oClLX-ZX5wn;gyM!`_gc8RCEfE>{
zdnz{c>dyD{e0h{jq~w%%^jx5Z!F(1WDw;a#>gtLbdYX@nbc`*`%*>1*+dQ_m4-O7y
zvWVocfU(*n^LZBY+e8a_<njhJi3HV%hBWYpx0|@<@x!{rV*7;R5JCyVBB|3-X_KPq
zvr?He;yLdn@>XQ>m!%3frHZ$t%XS}B9X_l*w#)67tvZx#IFoyEsnl|%{_@Ja=h~t9
z%DVsBr};{L<i-VY9W;84nuXapIjG06yu1RnYWMZ`$24EXPTwTX-o&ijCav6Nj9isW
zT^BCiRE}KLuHCkNxUK(u*Yf$U^XTsN&fW0v@a*jD!otGZ+S>TX+o7Yo*-y8tKkhbu
z-mPCFcXoEZefzfa{dVu{Zu<s#c#b@}MxxmB^At6u|LYzA3keJUPqaw#cX*<wrLLx`
zrmm&;#KAx9Z(79qTkER+p@pvX^Xfmei1jdi(bwN->d}RwMS{QC!1#b!+wjb6wT=43
zyFPWBw=1hDy^EVKOxLzQ1^d>2*l*PJ{fr7$);Kt6(0F=ujyh>OJ=Hk;jjWhH%EH2c
z52|cnen$^zVPq1(Ww!KD)k~*$CdT5jHagjAO~&o;bvwYcQ?_D8V-xP--+d^>BNUz~
z|FU}KKY|q{l7^E_6cZ!=Q?R0ay=|>Lz5Yv=&B>fYPy;cgFTF;mn-P)GYmPIk&L;CN
zKBUP5Yi8^z1m)A8U*Ef+v*ZOwef$2hwX4Ot`XN(hkAhPwWz0iDjR$UaRt56z`F6sB
zJug2nqaWgf-kiqozjG%aVr*9yQeA8ri)0XwJ%LL+W-3gbk#gOQHwW-0Kifg~Ka7{L
zVM-XM;Q+#z%G%l`&QEeBFb^bPww}L!sC{nh7m(M<A-_J3#7fI$O~(jc@T|>1pGar?
zu<`<Vm$M7ObJ=2qp<&t~WC5`)u@sZ*Fk^Dn-&*`J41ftE7T{coCX0qWJ&I>U5WWvm
z<;4dOm>dW5vgBl+<jQCWe3z5(7{kY8l~o|{F=})&&v=?(UjSVYfAOLOpO|0}K&Cqa
zP!&d<uX;oH44q6-86O`*h>5wZj_tA^9b`l@5MeJwB==dsb^`=Be4~kID#hcmgXc`E
z8F0XZ8u+ejCic=QJF<i1K1*uV3<j!jD{d9CRYyN4%S0r)6Sm-9J`ubXz<<VsHdL|2
zC^1JY8w$u)MQstQU~^%&PUXNO$D)d4oB$X!5aqo0Lgr>dq47`vh%S->WQTC*Wg!tS
z-gJVZD-hwvaxbs(2Zyj$hWOuLa`7aBA>@jE_t0MwvVb86gmU!|hEt%a`!K<Uyzw{|
zTfW94+^jhRza8fh{*UkGpD|7+nWG9pQIjw{BL9jgJT!LvuONngt2abM$}s<E;)g4!
z0l@bl|C>>NttBiNA3<IyM#cSuQMh>c#KgpZ7)6a*T<A#YS*ZV=RP?M|RGcDE6t6gV
zczJo5d4*W`#Qz4DkdTm!jLhH2`UkJ*<;+mLLcxkr-h@N$5eivcYL-%R%G^4RJi5-j
zMqc;LgZ=?76txTu4J}Zgzo}&&fua_l6^suBD4Qq&$3y|=6hXI4-oQpdw;DmW7lLlR
ze?hDs1u;{%Oh>oOV7JVFMww{ZACw7ZBmST)dlAJk>7qXzlPTMksr>q+;I&tB2?}Kf
zWlMi(*7%2J@~>`G+y2ljxa&O%X!27x4pV<<=J5VD(k&AOwD{~y6w`{cGf`N}d0v~-
z*8OjA>+6f`T1|TOZ+wgXaF?|9hi@4hx5e*oVz=)qrg!V6_sdppUVJ>MTfZ6jc+|FV
zjUrzE{B_@_TNLYtM<!8u<|y2)ucL5xgV_B;yz#@^#iP5G@7J5Bck7qP?T<G*+aFI4
zKK@O={m(bshqvEO_I7^V{Q=;`9rFAu^7iNt27liDyh2`{o%|~dQ3L(|fBy9j{5jtI
z6MhRF)Ji10obYi>eIpfgL-(kC0{&-jK+(A4IGfFCP;XKvZ$FVv%gQ8ff(pN#%B8{c
zkRKi^Los^)Sk6G8TIYGrX<)1TpYU51C(Xc#?A^EOG2ZGWX0;1%8!$;bBqlpt=NV`V
zUnTc&eqDU|2=CW0?qbR^%0i2Wyzdcnd92gVPyJEx?wSuwws7~%cEOLasAs-D4t<&a
zB-tEG<H1_g_Yo}-YS+#Q$D_~M*|FLTkA){TS}}QdSEtvk88n_taZbwjit4dZ=hJMo
z_xc@5mo`5tcV8FHdZ&%&aK2gi)^>ixon1~wSK#MTYO8XpWxwEbMEr{+<d5qtqTfGb
zvjWzljr)H{4e}Y`hCT?+dG~%Z>FtYo_ptBMEXE1p-%WG$n2_%&DQrqiRG|Je?s--L
ze(tC6kP`xfiRfRv<jQ2a(Htnnl<V{<fg_bliHfIlrJRheROO92`-au$6!E><&#BVq
z@wUO5^u){oD&ohmG*z}byHp~6^1<|drS!o}jjx`VIg)$lk8tK63yh_+#>1-8R1fBH
z*yNIfDzG&-A)B-y;<k}!v3z)Ssw;~iq%dG<ViEF`ghh=GNx-P^T<pLK%MD$`2D4m{
zzXKfLtt+3-7E;`$ND#0G!;&iopQ4wGE+NRsfBAW-%7rPaC_R_rK{Cy;+NBpV>oc)(
zjLBxKU^O&?yg=i%ogWYekrq_)5atcWdIkDqT;X`C&QHM%bcq&)bz#Ms^)aRB5+KFr
z)vuymyq*NI;n4ol^Kxpn$Bo9J3RAvXs2o8RA&YVDTRXOjK9Eu?3@AL_FUlVkkIo0s
zr}s2G<f%6a^hGTibMJd`dU>(ZIkz@xy*k?&?W{BSJQfDJ%uH7b0}%KuuMI2Fq3{iM
zY@2!AY+`iZOj%-q0FjCe(T~)E`lMt^(YPgWVud-25+nI}lUz>|qAsPm1Sli6bu_t-
zG;w<Xx0b9(&bUAanx2jmzbYGu%1RcC6f7IPLd!Q!g5$`JR2#D9K7oj0+WLZIY0?2`
zJQN^<%f1l6JXk;%J=?4xP<c0k0D!<Pd3G|mbs$?Tkv!U*z=tt|ncN@oLR*AqH)8;X
ziLfd=^A>;QBz0G5#ru|fo`|Do0H7u}7SI++l#W#K*Jr<;y|xA$c!r)@`<}|PQ(y~&
zzT#*Hn1F>Zw4>BpntcH@UP!h)`;UN+6Cf?kK)P=`=HcO2yg1FHvOkiZuupoT^}ojw
zyGfEgbMptCo#=#tVX{zg+rW`26he%U`&n*Vi1otGMHIah%e3tQpy>%M2n6F=ZGrbw
z(pjOk7H`~+dnq&1eLxealUld}t6Pg`Oe>>?4+EmhCIjjt?~6bK(m@m^2!LRPk#v?h
zkEPQN1nt+yS#TKnMZA>+76(A$R){s&NTOyCfK3r!NeTlJoD7~H6GByR=3w@jYPgi2
zS2D5eWWj9da$O#}=+ybLU}_liy%VtxMwlWCivW%~-30>nx2EGk!HCBO0}Y)XApPHH
zg@3HTD6N39vtbdC`X6Zp)bh)&YWcTf_;2OHziI_u>uA)%`?q31$pr!bs(&bkzt>pt
zxL5zK7^YBiK{Df?<-&$^$+k3n=RxHkx$qCI5E&WyUj)HF@A3a$)Bd@9@UM{mzi<Vm
z6;%ICE5y?Q_Y+cMrO=JABvXacA|+UiG`UkL^Ht^WjPw{prBoFaV{nD?6)7GWf-o_u
z@zEq2BXRLnQX5FsjZoI;fSw+JfsMe$WlZ2h2WUBr2sB3wM;;O6%;Dz6s(_7j&@qg@
z9T`0`x+kFe30Edo5&u{RF!*kC*O*`HRml(qjY+IUZ1Gu<aC0_FTm5FV7{JBGqQ5Ld
zGw&ldlGSd{l*Jwhe)ZjXLvC<lES;o@Cj)_7CGH&=-{J|xJRXiGg7d_mOtZB^5b1O{
zAdu`^f5Yl{U4hCxJturi&R=C{Kpz(Xz<y<%xeVatr5*#ipN6rpiCKpnq@9iE(5b{t
zU@Np0qnPCV2TM&|a0NVSnP@Pz_b_%kZNxuSBjf=m5EeiNz)*!+)cAmKqtoi9j)*FX
z$;khb!VG_=Hy2<ExMK8y;%I4UK_FgAW&oF6fCT_J_yJV;f{|H-NrI78KwN~8QIt_s
zRDwxdTpR#20l=9;L<5u0m61`C32MMDsREVIU=)8OCaKQI?7^!E@MzyBQc%NJ_2g31
z=hXKSb<q;>bWsBU1#Uo>nb8LTytn}mRz_VuO??ekA639lmsM3&RYOBx(@;~x$Ut8M
zbzNWIP{Y{RSj)go-%elG&CkV9E70SSlarJEQ(rg#pa2i+@BpijkYE5+Z{f}agv%MZ
zGq5$&P*LZAeJzttHlsnUfNKV`M>CPdD22-`L+~di{~2iTCr!g-O^tFr?<|$ThLF&t
zXV1#XIyjiSL|H~80$~B>BhEl{pHy`6{pc=%q$!@vqX&%(;<e}M33+;%?eb+k0kK(r
zDJ=mN?b>;BnpN*nn^TX%G0(bX@3zmOLnkQ!kiw0Y$qB6>C$AuXP$NxVCc#)iu3k>=
zR3W2PA?=!>2IS~6CEEizE}Snk$ZHH4`y9zyJXn$qH8b6{lfy%+v^6WVUE4f0>)f0U
zB?JdU$j_7?4u;9!8fqQ-dsUDpRgl+K$P`z|)S`C26{=|!hILgQnH5i)D}sk!MWcc+
z?q|b{vf=`};`LspdiPcaj3<)KB(trQQyf)O-*#|~rRt33x~-NOOqMxLRfWv7g|AfG
zEI0bDcUY~qhkos|{Pfaq|IM?Ah=_!QoTRMWti*);#DaqC<h;DR)Vziwcu{s`OKVO}
zeQINSRd!8HO<i?+V|#7&%g(N<>ej~A?)ExVT`RJ1D79@drFW+)YqFt!v7uu(Y9_h&
zO?TGNdf~gvuHl7-k^QEzpVbR{)hoX{#&_GNk9(I6x>qi`KVJ_OWX-jvO?EaM<Ys>A
zNg3{bvpJYGKi=|fD(7^i;cBOIVq#)+>ixvp_|*HQ<>|4-*~PWRv9<N}@wKlXwmwYl
zewqGqJAHPy_IYRN;C%Ubf9c|GZ*At&=BJyV@Ah{0cE6o`{k3~=aeaEYcXD)cceRV!
zjH9-h1pnGa_h6V&0ab#cG(P)kI1k77KD4r?Q)~OHi;nACYpMlN4nJ{ZJNdtt0!&G<
zR5PTbaOu_mY%~8<peEa$wat-tzlK(<9vj$bt7Rr7{@7ZoHRYQ`{7$1&vq2tjV}~q$
zeeLH)UY@ch@M5zM*ShJ=*k4_A=)e667HhWN#NWQC;GA<e?oW4LTchppUd$b~RQ_YC
zyZ;uR(|enj!LvMvrG<30(*1?Ih#q1%TG-lVy28a9kZXM@`u(G{p*e$gf45h+>T8-O
zv!NHV?-3PvZu~u$p5C%mt{-Oy`T}z1SW}TlyqkW9lg(b-$UGUQ)XDMJDvL8gx37Co
ze?BDh7<j!qrn0*K5%$)w`iY}1f%t}`EB(P%6ht}DI1us+x*_=m&CybhcF5sgIO!mJ
znf#g3=(-<sb*-^YD8U%hlR|oXs-*jE-6j!MRrxvi6}QVI612bM@dZHYRi86Z+ssNO
zGD$FA;#%D(P29n)!#x;eAYe5Ul!I-WLEv4mV}ayn+sx9t?0g<!L(>8B61yL*z&E7z
zey=2OkMl_uKC3uwfX|4EZd@%+ZMA~gE7t0~fRex*_uy*P>Vo+)(_F<+<wX6oLs+*i
zy4@XVb#-N~3zvBT+m54wf9!i%qRulUzrCX1O6E4)u-=%iihz~NDKmMkicWyQMD%Oj
zN3GtHsyNZ?ud;#&P*TmfD9ieD3e!aUjt&1qcg?pnzV7x%5{u{pyx#90C4;tQHG9yt
zmblsn&am(G<6O2A_KDy5G{}pajBv}hz$$4T@XjP<ddo0y*TfV3vhlRX&Jt=-B+;*a
zF~Z_p>1D=yLenVsJv@{;eQ{`~_BCem`ZpyRY-fIln+M>e=@9F^76s~ibl%FtjkZsR
zq`2GV=M>OQg*7J&4UWgixr<3(=C`To4&GELO}}o(EV=*W5c0CU*pe^)ROu=_g<pWv
z){fepl3-mIT}FR{<P~-p*}l@RA>`w9%bjVibY4Z=6frpgN=q+?P@Vph5oxJea)}?|
zt~~+UBxGM7itvFomheEo91PIeUD!01j@IXl*Krk{<a67KAtf{0?~=AyIUN~Cy3z4Z
z<W<b$-Y$_~JdrwSr?|X#%1l&g{OrwVmM*jrBT-QW->5s$<)Ek9#YaTcZ#RxNn0K<C
z?X=6xUEWru>Az#1e{gpsrAM!q^?{PzuX)nEx_9PWQ2PwX@0~Rr*1I^MS5yw*tk`|4
zl+KM^K(+$Wcswoq>asYABy(U7n#TCaobYn!x2!nzu{Xz=<{r3>p~HX!HWiWdyl|I&
zExF-gxPofEWk9-N6DH$>_Srk+C!+!emimZ+tH<){PITTDIzG5uQ=}Lq@`wGELE>|z
z*fmZW%nsxBR9~LoQ4Cd}ZGZMex3=*rzTgy~+4m&ywDp=ZA-OPRiJze^SO12UacnoA
z%q~2RyL0gHSBFLtDAWc)W+#RFU|1(O*~9=;r%XBTB^+Te-tE0o^)9<rTu@J!1>@1g
zq4Y`Y9ko5Kv2)(E;mEUH^m6PpA%&<#PYnK0Jk`XPgeo*vaXp2bp0V+hNS?SX#o|gd
zBl5w>3m3-8!zu5Bae1_A*HnCJ9j_M>#VhnI{>PUYbFwO0Nt#b3M>EH{yXpq==obn{
z6YPY0R%b%(n{1#0ruOH*kt&oZ$A!kW1bXI2nu+v2F6q6`BaZVaCQPe~x#t*UI7LN0
zE%%=9SR`O~TyQ6(*A@2^Re2RAsJ*gofRepq^D69^{n4S%_;Zno4kKD8jw>Tad_<$0
z>Feuw@X6yY$vjU3g*U6<^c1iuOArZYx^{R0C}Q4Ich}1!M}Qu`k*ikpRZ*X^YkMrl
zJ3fcGG`MZ?v=NijRg$!=ZED5FfWbUf4$;#UIS#j+)k~nn6MT^hN_!a1sA`dCmd?-}
z?>;+RZyy`K6j}Q|7)#IDEO=1n>&m`KX2)ZDcdyk#e1pv8vahm@^($FR(P^%UiAslD
z={62+O;5jI^x04#%8~Qr-T@ty-{PZ89BH`1bDa0ozKKYi*wq?=60OvD+a{uPzsV24
zMrH%oXu}Ca%P^gJ<QQmk%2%htJ|??pk4Z5$tQv}&8NTNyCm9o2TYx9|?R-C<F!*`S
zoqHZh#}$L89UvdwkW#jyKiJC}?fEshmef<8us<E_Qx$rvnRP|=b!8hn!1Jm8gapo~
z_i?JCp13F5WeADM8G__N?k~g-x|b@>n6yP+yLc(=HPq&ZE}2oB(`9QXZ7x<<iD{s}
ze`dpJiYehKF4AD>N!!L{m${PXYyLyYrMnIZ7nn>E@g&v?Cf^T#>UQtED*ol+LvTaB
zYuS*lXo#@YX>S3NqfW9s1KK7?DL7oN#5+q`*D$@fvg|iV);MtNuPBAytOC`-h7q&~
zzLpefY`RV3!)ap(_`n}QSl6DLS3J|GmR_Fb#<0foX5iHWJDK|oM^2rr#oh}Sx_PB%
zvcf6daj{NQAOW5pk4?v%jSFiyCS$pKq*)y7{(GwLUUIre>4qJtnz7&CjeA=RZc_;|
z;`gU%dDJ?@9`p(>n%y7Ol!Ay0M6V82Q$1lVaULqq+Q8EzX#1%7qr~p(dgXe({R{eL
z`rqqH7H&YY-^KnDOfzV~W3#l2&E_Q~yLrs`O^)XUON_|8MRMcgI)S?`9x27PO2%=g
z`#ejLwsyi_kVl@Pn_=JYBc(px6VnRGF3uIzFZ}#ii&T!W$cN=LdH>a(up-3=6~CV*
z`?xb)PJJPe(6{SBx!do@nFVRQf;KFuwH;<`<$YB4Q+Cn5|C)WAy3o&MXMgt#ceT#(
zBn8XNocOYn>rm@=(J@Z(lV9WS*PFiClf-R<5=uZtTzwH+QoQbO0?Kjd=J-EJigJnF
zt5g_KvS=FEFRx$QCE%xNX5KkANK9-j!C}tclFF@iP_1=K6%QwnW_oueJQwz@Yo6x;
zBD-xs5xi$wW*fF_x)!3Ic*OHe47`hF+VM)q_VS)X-B~0?Upu$Z)wn~)DIpH|R@Tf}
zW)eNqj0iTeV>i;r=OpR05E=Jzh={noa^U-Mms(bF%B`sa&59~}Jkj&}-XDKYz18*;
z!TY4qOi5h!D9q(|SaH|WOA;gQH_xudIEVsOl1Zd~IeMP6vZ_UdvYZBD%lY^$Te*sm
zka7?=EIg~XC+S@#du{Xt!vU5X0fWee;t$?y#PXYFhcO&Lpevz**!sKswu~#jAG7#_
z0{l%?{H$3$Y-_?T9lY0BL$R`>AzqQ`T|p;#F{W~iwP)ct#6e1V&-f@|S{H)Rd5pHP
z(FjW7Rb}t8N?7QgADIe7%r~lRjKP;G`oR(d?Kz~(JI=$2w5AJE*JY07NId62;ulC<
zpFux~+>U8@7oa*HxzrVlN9HFW7j>c>LqyDj??arh!WYq<U=nZ3m(LrYO@SRn{nS3O
zJdao4AguU}y*5Yqv8ZvdxJR6mo9h8PVNDF8mTWuYAw*S4xho{Bi%Y@8wdUg4zFcf=
zrTVLbz$&T)Tqi)AJ!r-W2n+N|G1hv&;{CB3wz;pLOv2SwLqgXL>15MfcOtH6O-}Sr
z3KerCW{)9Z^x`>qh9{6>W}K|elu&t*IBt>(!}R&I&3a%$vg#0LpGU#MXs5TR+bJuT
z7EheQk)-0}XR?x7==+RFC2h$mO&H5&Ffen-33|(%mJ3Rk$#Vp&ai{yoZit8Ph^2ZV
zu`)l2C&}z&sF52{t0je#W>4Fjjd5h1zc*TuBa0e`#N@;5ZAhetS#npR6}~*|6eOX{
z%u$m|z?5S<9ZweNQ~}jN6s!D%*j>hc2dWpON{Z(i6fm=T8SbPfj-1Hdwq?+nCZP{T
zZv`avbi3V9<ppwNi>U|<ct&va<g=sMK7IG-d<A0pCH28r7^5Sx%9rGTc#U7}xts^0
zy4_jq?F^-Yal6W4R448(BuV^HkMVbczFjzCbR_P`N(>-!1X@!?OmaB#gILRQA%le!
zWra39(1-H)T@p%hl-eB$#ZBX+S*t}JL51EDq4r-QGrpwgB}93C(L3{tx$`aVLasX4
zffDdUL)atGqiyv^2l)_nwlfEL8gZIG)KXumkqmJX599E{6^dr-@{+0H5B9u3acNJ-
zv)J;JC8>)bm&tjnp{D3Xx2I7>b$$`P{475D+_rdhYh?^qWzfm8vF<WPvvS7Z<iZsQ
zv%W5<oscerMC(hUWtV(>8~h%nA6sDsePIE`2%R;lstk=n^3MlR2_<A}p@gRHHseXp
zdqUT#oi$uiH73i~cgi{6@JrTL)C(lCbeF<OnG;Tvr1J|-FMa5#3k%gE#S5$03JaiO
z4|15{-t{@da-5;(m2>S;WfWB%zQhGV=|pRMS_Yx-ankz4Gb4NzCF}|@k?HQFoU#?a
zYCC><?_EYmxCHi)DI^wzGO2lLU8U!(DT%H@Qn~7A4IoiuN{-R)(RTJ?#3jxywRTP=
zdc8$2X)>`_1xtb*!}hK2tnDJ5>rWKP76l9rh3e^7;9+$&4wHFwxlt1|^&`xU=~p?V
z)VV&AH8*H{0qWk90wrNI5!>T%LY2TyMq6|>5@E@-<%`_F$y!X=ruDPN)2n;20VVic
zO-GOT{4YzGiKPf7?!WGSfsfXVI%hi%hS2Ecp=bKztv7cBleFO0eod^V%qU+`O9{kP
zrXqeZJKT(3&fioIwV?4uP*z{yG@awX&jYF_U2-W7A=pJNGQ%x*$OxkKye4lhI!qQ*
zO3_w~?beO`%#yRVR@_>&_f6;pl`}Q1Ph!H8m-U2P6ZF?Bn{f(bCN0GQyh9w_Rnv5f
z6Q*Yo34|^rsZ3>p<{i+Ej!vi$T))oku=BgUt<u-J7?u2j_-3HCSxSwQPRhPdlHRRB
z+;*`|D5-NHOBXx4P1(FU`fKANXSJ3qiJ^J^Dwtc`M@O^aB}W~N)sjmzRd?HPO?eXJ
zSz<&P7o7u>sZ)C-mTUW3K|q5j>v26z*F-g&i$y?SUpH-euSRobQ8V#`sY49099JEo
z7)=pweM*ncfO+|A*M7G1=66%Vep7YNxrl3|@`BAf%~UvZk&)flXt@S*{mg+1Z_Uf6
zibxzaN@lT=P9_?;aPztPoPVp;G-ken(hNAgl*pOvK~t~rj#a)pD5;csF=6%sqlV^&
z$&uZlls>6Zw;;fYvcoPmi|e47V-SWz{Zf-Hj4-1vQ<8sEHJ>MG;E6ezFh##mY}ry#
zL;dnV#d-;QM5}*8E0a%cTHmYOFSIIT^wnrkeXK+pi!A=oiZi@EUA6YM_$Gl9HD5Hu
zqtG}taBMA2KAr##|HN>OMi#wT<deqXUkAg=$#AA_yW_9ypZaQqEl5sOBN)CV@@VoS
z89O87Uh;K~e#7m7U8ka~%~;XK*^+Ad&0c%t4Q<f2@*|5n;&}X&=pOvy9GeLkVjDDN
zJ&XiEgUQ`dJFbZPQe!R_6C{nK=8_}T$-S@HU!UWovtC+a-^9dz8<AW0?~ETbbW87c
z87(tc#B?3WZkP<?84W7T=96sl+88Fsd$TH9^1ZhQu0C;(!@OuC%vWKe^m-_I8iJYl
z>~|80Xn&V@zlViaC8ZjlglqDi5?gR_=|MurNyJlj3&d8>the&>SRT~}2_3x_By{zD
zcA=BLDlID}{U5=jFH8!;e@|A^PT_^tZdA*zVRa&1A&{=Di(~ijDmtIyDO&pCD%v{B
zPaKKV6V}sRGv_rlT4gsOxtAQ`G$ka}UK5ic>4M13SwG(aEaG|f+HsbXnGdeocPc)B
zbHtp@yEQjUcX6_9?n#^4P}PJ%?yQ&RHgAXM8lB4)x=t531Sm;2eUSKbXKZu7o#wtL
zz3lf#gl;6@&y4FQ1cm3g4=je;(f2|0;CX1yDvR$o8kfa_hGh>}4KPF2rP7}e)b^u{
zYNeh$QS4+V$O{@640jV|6`VYn9v3@W&Lp@eh~2@z{m$TKAf#Z%acn`MD6OD}K{~kr
zAuU!F+I)}R-)19dtzeioWrf^^hWd16CZvIJy2y$bZX>f~A;(+RX4B{%ic_-W+%VjR
zpW{5h<;7c2d{7B+Ifm15-P911uP#qEwR9oBsG=8#4a-5eZR0{Q(~ZX8a>#5x5AgF(
zS$#n_;ynBTyKFORfBl(EuA*t$A<yP<lVu_Ahi2Xt>99BOBY1fjgxJ4pcR=>kf8<p$
zWPj+*A=*snlH@_G%$udGv{3jrnH4gvkC+ipe@1R@|J>BzsS>zcUkjd&_<gU`yJo(6
zONIQSMgLM=!<&|pA+B>XUb06=G&Xw<T~Do5NfPD)Om?1^PkeUG(t7YAu5M?5iEiJm
zkHdO*-H$PLN8#I}x4NAY*dI7G?k9+WAJuXB+JA>Q-hHG(YoAgVc#t|)!uuu*Z!tV9
zaCjk2+j7+A!7g2KTr%&rPztfP|3oLy3qcazi&eB$z1zcXv}wPE{NUXMUPYNb*y{*Z
zjG*EQo%v*a^eNYQX+Oshw~{zYatil08h3h0Qd_2;TNM_=w=Yju_jvvn)#{W)W!dKF
zNDw(@w0cXA1X9R&P2Xf0i~m#AC$^?fO}3jhSw`;#Hn;4gO1+J51o(UI4)MGp!p0O%
zEa*cFF#{(@+uB`jmLFR`_<qP*3zFMcSs%xaP+z>SIv<`C_(1eKlRe}2huKwI=Y!L^
z5~iYJ?B{}tt9M%G^X@@H1{aT%?$dm63?nC0px2lA)L(TZ6EpO*b@N`}!P4FrN!krt
zr;Unm`nC>Gw2uL9;n$A-uM)HCIpakE$jRc*m5yxIhnh62s3e7s9!j{6^%Rbv%tJjK
zhTUU1{7w=f&;oPc2VDj4BJZS)H1m}{4Z+_m+GEON(r-&~7|t$se)g6BT0S{*Hy8gH
zB_*RSF`FRd_%UQZ^?Uy!iHOdj`1Y#b_e$bul_$@Co!rT|5dBij6md3Y33=F@;3nE8
z!aDz{DrWtIIiGMpi!0t8#SbQQ^(S=IcN5>eeknZ5OZ}mvfc&{fT4wi}SkCq*^m!8#
zQK{-3vEFb8_s30@nGFJhpSYzbsfOwUUb9&06Xf{(OgGB$BsVL*b4R4j7-PCi+nFCK
zNlx*3nXf-4-<M8MzZs5Dmizc%BkOhvDMvU<_vR@wqW39nzs^?5tMRE<V>80HON<ti
zKjgF}GT2N>zBSiB!5F#A*jysI=Q<dUz=L3d30X`$QI%07*?qeeRDxX;*sIaUq?NHT
z9^F{CedXld13GG@R2I{P9kpyu!xwg|3%eTm0`}EA7eDNqV=ffW5&K@-lF2O;BtlNE
zwNu5!AzaBOq*Ze<Qh8UyabDGE#kjQH(O1oR6O9kZGtJ8c8%^3cjakSJ4YwYZ5PLyf
zuZ37NdU0P{(u*5b&UYT#<xg|xa;)?s7cwp8UF%o;AWEX)--HA|#>X`E?yPol?Ukq)
zO1jte*jYbMQk&JfdAhloNqYDx3pu^)byz&ySqjFd7F9PFk@-H-n=U?Bb!c|pDc!xZ
zx@fO~sgwMJ-|5?G$J6}}o7cbNVQDX?gJmk3Ch;eJLB}(~1~Ku(ns=PStt@wy#;U<?
zAE7+n3$#<Yn=gjS*pUWInD@MK?HVb!X>5+gI-uX2hH~v*9<)VFGULdiJ!C>9(Ru1}
zJe-3wIaXrUHjMZF*3KLpN?c+b?a87^N@v8^FXUDXUHXDCwnEX)G0r%URaVn&1DY=<
zrvElOkkcmbRmDK&l37U|u$W1Os}+1Y!qF=1{pN(9Hj9hj)Fp#Aj;feQgYO}evSfsj
z6^Txy=T&1B#bI>okfaiR))aC*)s0kInbz-2Pn9{xpj<+!Fsay&iUpH`6C;v!G|~>X
ztD9|fan{VjoQY;Yt(M}1L1)#vtIxzf;$dj&KL7rGj^}$n<AM*<i^}FM<k)d*+KKOT
z87`7>R*&F0tym}}=g&$PJlBCmCuumb{3J-p`Mqh1eS(F_bVmoPNyCxcrk_e?gyJlh
z$b_-SfW7mogQE*{{fXmy%D!jzM=@01@n5R)bei2Kj9o7aDYv7K+{tX{=(KSxtZdEX
z*7ZJ<2iaw6h+f)d>l+2x=bHOp+UMKm200YEcB0z1eU^e8OGC~t9pO<F!A|8#qE}9p
zSw_Lm)kXeS&b1Y}!7j-9hR!RO#+OUMt}pt|uUuQ+P=vU(O^IH+wZAh8aqnFBzjp8b
zoEzfNd)RsH(f@NP<ms#H^XsPwbjncAAw01g&tX#IP_I$ifE%xI=DbkvN$##2?`fgs
zP@h?;-#0#U3Y1~K3mRg#zKi<CVSY>I0k?iDws~RxYpz|l{u@5aVF4dPe%}UcMNx(a
zeo7L%3*5;v4iDNZ3b+e8sK^Ts{@T!W7yRwza(Kx1zTbBt$8RW~g`Q4{Aw$pJ89xg<
zUk^ZrU3|`a7JhZug$%#>x%}+e-SuzeGXPT;hR$MzMi7WP_12BRv$H~{zmUaN){P{s
zw8G#Gl*4z>jiTMLLSo5W$U$OtqnURsv0m_lNL~#`b7)%Q;jp8*ZM*^VM3mt-3q}Oo
z*pf{bjXr!dDB^g-OgDMBP4qZW5n&BuKwhA0WRDLwNb8YH-;9xU`KLUKkBT=`w4uB{
zA7*<2PS&$1C+~6^ZTzL1G;zpCGjK85o1&MjfnT9nYJ$tvd*b3E%}jSor6MUQkZv3S
z;xp-1Vs@E9AJ9c(LSBq_Pw25`CXZ8vM)2D}6evZh60l5I)44q}p`=jsk@&#`h4Nwa
zu5lKDNUx~K<gyID3<MP+8@?rWIg}n^ui=u8r%4h;*`lb%%U3X=)n<ojJFdhRU6y33
zT!}ePri$f@oQpE}zK~gfAIqjIOF}um1var$!m{(!rVf3{+Q2d@)VZy$WtYYB+HDt=
z$u;xX(g(}{#T3y2#c1N&f!KM}utq(TEH8#i*#!;+`s%b_HJ)Y;*2X+^h3Z66k(J@H
z?y0#zlVbcxE2s<5xO=E|G8Z3_a%KS3ATtONBpWJnJR&rXmTDZSU%VsCF3E_i2G2~%
z<e;vXO+^r<xha&A!m!A2Y+`u`E3s9Z;>AxrNd(6$nC|8<ao--Ng(SDL=)&t2hUdrG
z&*hTe9*>)<3BFH-*~YS-0Os7@X|hz6*tk9QXx<rV{|j3{q`!r@A|heXYDM^=jfi-l
ztQ}FSN{q3O|Bl>a6C{~{T`N+LJ&0tl|LE&q1KY!UsKf|hoof&Un-K{-cB`Bq31KaA
zSec|2vJT-#Cj_E~sG?T24)F(TM?zMMh-0oI*{wtBk=Klj)`llR0%=Ft)H)WIAzV%D
zVlC3xpk^0rMKwuLp}`P-sDm8mh{ts6D3GDzc8%X%NO;RpScT}ZAQ;GDdowlNK74h#
zETx8oD#MBi3=$={wJ$l!VO{wO#25{!$2!W(kjajOzzX3<g8{pcZxp1t|L6k}mdKDD
z5(EQSwC_4DtdM*3bs%BzNpDqxgxM;j9^}B(iE}&HhTLNv)<tYYHr(M4FJu%14)IAq
z%fdEh|0E1C2CIV^Qjg(^n8Xxbhlv@I;+Md9y7;iM48OWYgDm;VPF@I<BO(E7fVav_
zCPhYy5afUG10R(cVnmc1Ws=-k#DUaunK5-`JhRv%F4k_Ly~f>=43)(9@NGe6kmi5*
z;|+Uu>Oj<MfF3HOs|4{tf8(p!+4{qf1OWq8?~x4WrUZuz0Y@(l-~m)CBpU)Y34ysP
z&kihDAw?$0lsC<3PyfRdB4O`8em#&f%vKzS9PK}LF<WpTcfKDcG(n(HUw>fNAU(vR
zOE&xuaQM>zEuC$h3o>E1j#Ae*CP=fNt&nIB<cXm@NwbTbWP^Ma-u`qgSSL;CNH=;Q
z|JPPXwp#*K6r++LSw-=s^UZ307xo_imUn#_U62XH+Smr!!a^?2X^n%q-KjQ-p5?v7
z4wqTl0wKd}_q*+XblcD~{~Dr6LP-MmSR{fLd3v)*;FlAm&*vRT5I(H)Faug8Bwlt#
z=*tkIk7UD5*X$C59z>EGq|XsPH;VBrP!gNF*#+13DC;Y7gV>tl1;Mu<!K&gjV?!Zj
zM|h<T^7Man!ysdiblDA{Z(fh&$OCEnKsM};s1HQfVHN1vC0y{epQPiF=6c!{(hqhE
z<nW1CFp5*j^s4WgAVrvMf(?Loa}UJiCC~a33Gv}!XN0|ICrIIGe*3K1d?b<#|F95E
z62$%b{2q{{eL<Sd_=1o)kr|nM)=NU*)JKG=3*mf322T<$%>AjJe=B7Df#(e)UnE!*
zJ45_F5UfW(A_yNxMr@xFeMdebL4fS?N#A$M))y1TH^20)E>_hOJ;LK6O7jP}iwN8j
zzw|2!_M4<7GC-2hx6FGY2z)&8gT9+vB3_d_9ZD$@3%u1Ui4c4us@gxn6F`_VJ=|MC
zsL?%<kfbLHJg0jG+d4VBGk^&bKan6XqMJICSOc#ks{a!~>O+Yh(mRtdhHap<pv#C2
zJFS7hB1tm|4H&skOD=_IzgklW6J$FAWC`5T!jd2ZxvD)b>@KV0zblLg|G+DW>k|mu
zBQlea04o$jk|3}y+`<lYLxn&)IV=e}v_X0+iJw9^RzO3rN~I9Yv(^hT8N9nCvO_ae
zK^CmUrEx*06EIB7#2cKj>Z7#i>!B%3G{|Z~k<hnKG{YM_!R1Sd?29=gB)K3^2=!yV
zNc%eU(>{~vz2bYn0n0p;pg&+dMO_q#X8S&o=sg|WJB5%rIQ+tK%b`I`39LIm{~N}P
z=sigkiDnZy36MsXK)6RN3Ar=H^+Q1eSj3SS!4E4w1dOx;d`3#NM0zxuO@zcsdm?vC
zG+M*KK8(elTOugrLvyq~Y>bG>OGPs*$dLd(Ty(-S6bOB@Mn*iy|LNPucSJ@noW~th
z2!%YyReV8#v_gzD0C7CQWh}gAbH<an$dte>jU>X5%m}#?xs_yzHw;F|8psS}H+AI3
zM)b&f6Ur2<N26?-dz?1A!#cd0qfS(aPe2JEv`M1eLWUfrGD3-F`$&O!#cDf=Z}dHs
z=shzEqHP>XSadVU8b>T#MPED#VKg=Xj0oVHOE09#v`ogPTE+m(%K=0qs2atTxIebE
zv#N|h=Q}}>3rzVdiRnW^l?cpu90?%Yub;%imwTeK<ix~#%cK0vph-$fJFivC33b>8
zUeJUX=t-i3$;QkGhm**}?8vLM!NOEZt`rEYqcWV*1RD^m|2tBNAWEbjszqC*$RA^=
ze#A6rT#34ivl*kP8~7=Mz@m~g2&lqKiX4cOG)TTIyf9>m<SeG;gv~@mi7z9F@N~-C
zG|$>3h>o+&*~H8!dm_l>$B^_)(A-a+5ltH;Itj2Wi@1kv5I5m_$afUE1Vm8Fd(YD=
zPtH^cHDEH@iZ@CVhhu6b4c$;;@CD)<z*f}C!&Jj<5C#rC(M*apJ<?B;=(mng2Z4LW
zdoWQH<<MY|#^KsZK-^1t+OQC1PBe<mlxVgRtx*nD(UTC;=VLb|JqiE3t%GdKI=W0B
z3rdbeukvJ3{@hZVdD3*e#f%sOVmL4xV+geKxy>|B{{{Vraj;8En@@bqO)sUX8XM5z
zdLrCd2y@d?DFw<r6|$m?2@lAHXSlDeI<HLoQ}NSL21G}Jz#_f`QuT~dKmF4^T+-{D
z)HTi2I0ZvWWkwDQKnL~5%+x?3%+KcJQdP|vx%<&Z9o1#Zg|Z6Br{q*9UDHurP$xCj
zU7g95V1X;R1<P743Ot7@J62>()?-x%6)U2aVALvYGG(1sWCaI#;!~EeCRs>^7{e|S
zO9yHV*LA2oXdQ{L)IlG0KWJ=HlL$X?rB-WAQZ{u{+1ymO+s=-(RbwPMDs9mEgwTlK
zE^J*@f@PT=O4Ej9)0V)yI`TPv71HLaK&xa>|4O^hip<SoVlOL#p?~1Xl?WnzwZiHX
z#yot9fqe-A12eOXiE<r@?tIkwEIg=+RFWXs?Ql($0NL%M*^!vO_GH8JM2VTrQNBWn
za{O0c?bJXmSf-_!SHxF?5XM7n31KuNhkZ$(gvwYP)tr>N5xt6<%*9a!+Oh4+>I=(|
z6^WC5iOQTSgoE0P1xsmUp>$POG-@`uEeN#T4tq1&tPRzb;G>mjS&|T3&HLK6EY+mN
zO@qABrhQzJ(MREow6&`xaZ}qbyxLzxyK;0>VI0+$B?+v{%^K*al1R_P^`V!r*}+BJ
zHw9dn=%J}qrj;5>VqK!NRm0qT#Snv3{{$_(u=H3x%v&0oTa(x<Z_FX#ZPb`d3Ar=Q
zfL%*UTV9w8N;%Eaf0$j!-CmX<FjtL;SF~8=@>{FzM|REEf<U<MB?zXZSSEDexa7(w
zdQF4S*@2Kd!Nkc=6^Jo-sV_}h3@AmJuwRzIqMtQ@?AtFOyi}GTT#-1}5vW_cEeQQ`
zUju*wlsY{D)(!&WNUTG<3N{H0W+AeiLs{r0#+28Tq}-BtMe9A)#3Nwto#B)ru~TT#
zAQV}XP~ZRTx`)lY(oDtX8(V!V$*^=?e57825Jr&;Kl&Yr)ilhv6WvsE;7QG*xs(9v
zq~M?pT!jTh<Hb^isJx7D0gSTZ|BT>W&|*;An?8RaW9+QTl+EHT-o>U`+`2<MH-_W%
ztxANWx@?p?G2~c&xZ&NSDjD=aul)yfc;Q}6JpH0q8lGfF!BgQ%#$fZi>H7yhCWti1
z;Rmf%tfjrN>tuiQI146-XaHr5o3h1aUri&4Bbcq$TnJN+f+ccQ35-#&<G%k@$VHn>
zDD~B5i^_29Ljc4(H)=klgDIpcJ~XCDhM>gv8@pyE2wjs{0|@4hd}S&Ahc;6(GX>R+
z%ZO}-yH%dzh<Gzv96e<lDGzIBx<qDi2CFA<WJFB7Vy0w%j@<eJx0N%18W>h#7BsNp
z1?ud8T!632(_DEiz9EiL|AGT6R4dzUUWj8Gw_KPlZGf&|q_%BvwQ(bZvbtsiShwRM
zh?e?imfSuRTRGVR<!BZN37E2Q8>Nk22#O3#e<*~3SftA}h?-`#fWBbMDn5h$xPc2c
zXhz~RM&-gy)pT^Z7-hJK9EhRbH=OR)mKb9H6$mJRw0l@EXr}6du<Cy(Sp(S3bQ1_z
zTL{{_zevmIu!idg=0Ja_!JmdS17t^U7URU@X`gm$M(St7h7<vfGcIe0C6qb}4U)=0
zJjT`3QD#0S<A)u?uMl1dNTV=yC<hx0hu*_jylby|zy}I7WE=yp$TnroyX?h=>r~n>
zu3R@QsSGSz<T$gk|Bgk8VxzEoh=(%WM|N(n*v4px{A+^Xz<GSj(pKy)6K31~2;3HC
z=3=rLTP#UK-Mjl|=)N*xp0L|)2$McN@22jCP;Jz5<$6em#lkYbzTTPqHq5>-B|dEY
z#*PUvhB9TfR3?K5yDVM~Wup5kgtfdh%{U50Zc<I<FoUlg%d50niBgNKjFvu)YlvGr
z3F#`cuNDaU%ip)^>>L|#AA_?<8|;&)s|7E(n<fd*s)!e#zkLvKlZa3E?I9&b>nk&H
zsUq<nmx;>ih)p|RmV<DQ^KtY_Y=~<u>nb><Itdq@E}c`ZR7y&li|6T5@%-*`?~ni;
zkOf`w&6ZfE|6iE}(~Sr+7zR9>09h#Np3Ma~F9>={m|$4Bsf39M5Y}=~2XNp8YN~<S
zZHW%(0Wr6QTEHfiuqIu}g<25llQ45cPxD=><C0*3G0>INwDghqrC#8LIiJHY{}pdi
z2?_WpTgU}lp!A6708XE$pe_g~Aco8$i9$bgMMnut*Yr}y3@88wOd*G17<2=e09h(1
zL*Euj7U)d31u{>GkD3K%fAwT6C2rECg3tj-hXP$#b};Dnd1@w5_i}Q-n;gpBa!+@4
zSD(o{;B|j@c)uQvQA&%BcYDA0<k7EMce?s&X?*{8fN!2WHqej@c!NK9<`HjxK!;3v
zFNP>@|AdctiSHf7YO7eEc#O|@+o>gDFxDyq2XNPTkso=IFL{$cd6Z9im0x+5Z+Vx0
zd6<uRnV)%@uX&rld7RIAo!@z$?|Gm9d7uw^p&xppFM6XtdZbT!rC)lcZ+fSHdZ>?j
zsh@hPuX?M$daTcSt>1dC?|QHQdaw_Bu^)S~FMG2;d$dn`wO@O-Z+o|Yd$^B#xu1Kw
zuY0?{d%Vwkz2AGj?|Z-hd%zET!5@6WFMPv4e8f+D#b12JZ+yppe8`V{$)9}67oG#i
zfd!c}&EI^^?|jeye9#Yl(I0)%FMZQLebi5V)n9$qZ++K)eb|qE*`IyduYKFUecaD|
z|J`?eV#t95sQko21K}Tj;xB&VKYrv-e&t_&=5K!Ie}3qXe(6Vk?a+bUzkck`e(m3W
z?(cr@|9<cffAJrG@-KZI0RDpDg6Us>_HTdpe}DLg|Ll;3@~?mUzkmGCfBoNo{_lVP
z2MBxu2NEo3@F2p3vJ5b6=<p%Lh!Q7KtZ4Bf#*7*_a_s2wBgl{<N0KaQ@+8WX89ktB
z>GCDam@;S5tZDNm&YU`T^6W`7rH+I`hY~Gn^eED#N|!Qi>hvkps8Xj=t!niu)~s5$
za?PqkCD^cH$C52;_AJ`8YS(Jq;`1%sxN_&xt&8$N*Svc7^6l&QFW|s}2NN!A|G3}*
zwu%=sZtVCm<j9gSeyMBuGUm*hf1b>7_%rCxqDPZ1ZTd9oyg4SbZteOt?AWr=Zmw<n
zHg20JiKXuC`#135!iN(_O>8#u<jR*bZ@xG;^ytzpqbzRyI`-_^w{uVJ{5$yY;>U}h
zZvH%a-6y-VZ}0v+{P^(!kgsq5KK}e<)AR3tzPfw?3OFEv1scc|0QBj%AcGA$=%9ZQ
zN@yE^2U>U`h8b!&pMnp1_#ucP!Zsm^CDK*lhAFDJB8x2&mY|3+$~Ys9``J{45tUhH
zh6hNrgrkloTDFA;U7&}ei%BZEB$G`Nm0*W8N;xH!RZ3*j82~sCBwb(t|L_AES#Bw0
zPaTXI(+2=3apZbVy7?xYab5_em37*Ar-)c;$>m&Os2S#-WbPy;pDlp^fRX>TX;eLo
zEOH2>i!f3TQT4bYN+_9%;tHihwSz?!RESyy7VRj74m(cO;|*5cq)Jdd$;de?t+nz+
zC!V?Ly6bp)o|ze;g6fpz1BLpBq)^-(lE@;>Hk-&H+z1tprlMGjX(-_cwT!4%c<ZgG
z%OurC7EWmcfHhWy1AsFHeG)*rw#qv%y-(rFE57;a>zc1R9>GBb{tl2}07K{)Mg(0P
zL9oFsg#p13fS&npz%6Z2L4pqWSkn;$0{{UNFP-55lnuMYBg2)Q|6u_ahyIDi76K%g
zu)`1}2yskDfZP(w00baJqAeXEGXN2A;S$0Mr;HP_2r26<)XheV5VhA@ZEdy)ar-UT
z;EHS1J$RVm)He>iO4TS2#8c2HX4m^R+;JlWWt98ceK+1_^^1nfYo0*>-3j_onV*4w
z=`a95NL*Rph8q5Zv1p_jc*JNFPWPFYLs@K=bSHsE2ZpcdC6r*ol&0T?Bid31hF7k6
z=}a#wR6U18efuGu!Wzoey@#UvK;}@<HStuK1Gd=rc$3W8_|&saGV8z!{i|iWgAOs}
zNOg}JTL^Ry^zpR)>hsJGB>nT+<AeP<(<jru-0{ml=e>E`|9?OJBI#Ld<9utGs1_1r
zq{0b-aRRhl;sC|J1g!~y0BBeMUj~!TCF)RPD!`YFWCjc>4h?{#*%lJCgw8#H3rFYz
z=|bke)dedihg#F28g>Q@!Z1N9blCtCRKOJmjWZ@G3L}_xJE$ds5e9Ju?|NsoP_)7z
zSQsAhxJCsmAddqffRZr;atgYUK_H}{n;P)(4FI43N>PZ4H~^4Eaa_@7B5>QepcF<n
z(hUrHkfT82n4mDsuaAC|58d)7$UzdaBEE8&3elhi0VEO)7|da@T=GZ+Do#v@bV-^Z
z=aNH3a)Jpun$Vc=1wZ|YP<{$PkX}eZNlFlO0Qg)B|6%e%$$jZyNH7u&U!s8o`l*wS
zT%CG;NR%NG(;!Mbra`I@MdDQfc>svQIlvJDv)v;ELO6#y_CU=L9DyC`D1i^+F~$fy
zLmh!&7gSQ=0C(Jj1OYI{IyRvtc8G%j94IFq03eNOsxg}Y;6OC38IO9B)0_YZ;~x{M
z(Ch@VkPdyQAoT<#AIO9YNGO8Ga@fI^Owv!4q#H$D(z*t=giu>R0!on(G7RdF3kTET
z5n@U*M0r#u#0nAy9}v@+$_z}ge90^?7lB)r^nfn$lHzL0${x<7X$G+!F`;${gCy~o
z*9wI}pt#I$Q2}{BSQ|dhl|_PR!)$Cs0$2qy|HgLVV_jn%2sl&_05Ysi7jH#~ABG@C
z0Hoo2cre>00w4{6q|prH2mulV;#Prd;;W+o05rZw0wJVzp_aXDZyE~G&2m;>5`|I^
zcWF3{zNDiG>>OxavdbP4ilqtiscRDyF_)>X3rh9mnNa(<#mQurXjmBLaQQ1r5_hRL
zacV)J8da%L)v8O(>Q<$Qys>>R1bx+p4WLBLKO|@aWJp!n;#H3j+%;?txB&o!zzYKK
zF(K6q;}{W&kMYSfa9cQRd&fA|#)=PKex)pC11w<DXtuKkK5(5R%7xIKsdec^f=f-i
z(O;6ba|;gCFPk8;J$Zlw9{6zO!i0p-{|V4b4(I|GQrv|Vk1~NT>B1LcNy8MY7{<JH
zVJl5Yv>$lEXFaUxZ7F=**(F4|%bjXLs_I;<7DTJj?P^iN<~_oOKn?5Sz%78W2?xXr
z9J){e03P6uvc~JM<t@Q=GZrs|oGV>o9mtlgvE^J4qt3*51{?FMM#g?M&i}3KfCDXP
zz!Vt4hCXzR_7`K>wghlNTV;?XtiVM-uq9~<F&ez&OP8FX1DK|vrn%$+ppi020sMiC
zTd4&OgzTrA{8Pt*7Qij#5|g}iF-L(}6XX(PxluEwbFG%l=zgo2QO3gq;`PO5oGY^U
zAO)A}L5x@Vfy-nTh?x^ok8%K7{~+sl6(+ulk2JQ|yw><4Tkmn_Jgarj_~7ps$I3<_
z47%R-zE%AYt?zv^Xm1hh!ruUpNYRqkxHS#dza6MTGcY<PVle6q5!JaJx^hf_lOYXb
zi9^KwDN6xJ)JZ`(%Ux<xkzxKqnm*o=2ri+xxn`<Ncs-CH`nre)X@!!N$V4YPIf_$s
zW(0h}i7>~b8vuX;Fow?MG;#nKyePo~*m3P~lUFI{qIWyXolh|IBA?NA=Pibj0su6F
z-C=b%f9nDEr@Q;!ZhyN~3eE4i)4e=3X<_TO<X{ieEr+IiIRbr(;k;MI!2|Hva9`r!
z2+VX$5extapwz$!Iw10U|N1FQBd~!4MH01&%cSGhR5-{J&2NAMz~Ns@xWgGYm?bGn
z?R=d(gVZDEz5|{>ghy=SA@2z1{Aav|t|d)y86Uc6<2}P#e5&8oC}})n8k;eYdgLKN
z93XzW#4&a)Wl`<zUF>|tt^JHOAMWNq|5D^$_w}<MIeIF2=hj4GpD`hZ2*mVi?++;W
zGf-%BqxekB)XW4;%xG65g;41j$xXq80H#-v0N0irN(cE?0YXV5&EEsP6#nU&54~Pd
zJPk2T%|TSnF=fp`Y|S!J!Pg{(JxC8hwBSK}TUL-l)D=WMG|&0CAPeFi`t_g>K1sf{
zpAZfqYs|$LM2=+~|DjGCVdN;GOfX?iKw(ax4oo;<OjzMu$Q(f^ix4>rv`9-rP)p8b
zinb&KxAa`N3`f`y!4I~f8wQ5@5uqH;AzKKG9rDB^DT**Lilab^?MzCgv;wy9PAl-B
zL6`%mhzb>u%JC4#4Za~HMq*dQAstqtC5puzW};2ZAIw3A7D^&0hGGv=;w6@%DUO6D
zrlL$Z7)hDOCyF90#^Run;wjdmEoOu&<|2u_qAd2JFDeu*-l8xL<3s48F&@i$n2Ivu
z!!kA_Gd`m;Mk6#%qcm0{HD04NW+OIkqc(OUH-4ixh9fwRqd1l$Ii90ArXxD8qdK-D
zJHDek#v?q=|D!zCBR$@uJ?7&$1|u={<1HQ|K(fgX=_5hnqd^uVLLQ_-CL}{Hq(e3&
zL_VZMMkGZ}q(xSwIr5`FZe%G2q(@2zO0<JWjwDHzq)DD6N~WYrt|Uvgq)WaeOva>4
z&LmCNq)px=PUfUe?j%q4q)+}NPzI$?4kb~xgGO>BQqJK=E+uY+WKljPR7Ry#P9;@V
zrBz-fR%WGEZY5Wm<WVLiShgQij^$>A<T|v&S*9gguBBSGC0o9wTgD|^&ZS(|C0*X7
zUFIcT?xkM#C13ufUj`;%4yIrhCSe|?VJ0SGE~a8OCSyLPV@4)qPNrm5CS_ixV18v-
zZsy#P|D|VMhFM~!Xj&#|j;3jrCTgChYNjS@uBL0YCTzZ@Y{n*S&gNojCTHg6p?xNA
zX5mS!18@eXa1JMN7N>C@CvqmIaxN!xHm7qwCv--qbWSIAR;P7dCw6A1c5WwkcBglK
zCwPXZc&-C(>ZW;iR&S=~Tc89vw5NN%Cw#`Ie9k9*)~9{mCw}Iqe(ooK_NRaTCx8a1
zfDR~u7N~(9D1s)af-We7HmHL>C^?kpc}}Q9si%eR1bafLhHfZ_cBqGbD2Rrrh>j?U
zmZ*uIXnaa2g|2A+T&Rl<nMoX;jLs;H)~Jo%D30c+j_xRr_Nb5kD3AuJkPa!47O9aQ
z|0$9tsgf=!lQyZ7J}Hz&sgzD>>IET-UMZHEB9(3_mv*U_ekquSshEx_nU<-Uo++Bz
zC@ro)55R((zA2o>shrL!oz|(H-YK5ush;jBpZ2Mr{wbgas-O-kp%$v49x9?Hs-i9`
zqc*CeJ}RWnDN3X%rB<q?UMi+$s-|u#r*>+WQep$Zf-R5(KKz5Jo+_%Qs;aIktG24E
zzACK7s;tf`t=6io-YTx<s;=%TulB01{wlBrtFR6$u@<Yb9xJk@DlAN@r#7pzJ}b0F
ztF%rlwR&nChAJ^6tF~?{w|1+yek-_!tGJFUxt6QBo~x`b>q%5AySA&lzAL=O|Es)O
ztCbo6EMzOX=BvK$E5G)uzy2%02CTr2tGdSMydEsVCal6PEW<9W`mKO146MXXEX7u=
z#a=ANW~|2kL&26r!+tEthOEerEXh)-`t<-gY^=(zEX%g6%f2kkN^HlHM9J2y&E71|
z=IqC+A1st=%>FFU2CdKzEzuI~%#MW4CauygEz>q_n)2+f`h(Bz>OGKyJQOX~X06t4
zE!W2E(TarAhOO9+E!mdsk3#LO`a>|xLJvp*J?yF~Fhme^E#20w-QF$UhU?dcgxU73
z-~KJ&-YnYMsyOt3;kvD^-h&Akz!+FV-aanmMy}*eZmaGsNCYnCX0GOL|8BJoF0OI{
z;^yi-jDQhPuIZjG>Zb0{TJA@1uIs)o?8YvcdhV@)?%Rs436!qt?k?~4uI~aY>w1Lj
z4lnT*ukjWs?b@pCChiCn!S6mV^hU4rB5Uw=#PMD)_Ga((CU31SZ?1-e0hqz`jxYI^
zulc@e^>T#vt}pwxZ{Tt-t$MGm-a{uSfB~Gr`R1?w?(grW??$*U00*!DCoTNWs{GdK
zCp5(E@-G87umj(%|7yelPcQ{nu)|s@EbQt5)9O8Ng8ky}1Bb8(k1)_ia7I`#3a79N
zOKSnk>IT;;_=+zH&oB+waK)N1My#+7?=TNjY74unIJl`GwCyYy{{ya$uJhWk5-%|m
zpDPYuL=Q)?6i>0qVlb|1gW<NV;TrL+Dz5G}F&Kxj7#r&oTLcxKF&d{ak^XS9j_wza
zF&xLS9M@_YSA-hhF&^hJjj}PaDlX$X?i>fQAP+LfGOHdRG9pVcA0ulj$Som1G9-g>
z9aBUiSF$Cm@FMrI)kZQWcQOf2@<d#+D35XgXR;@sGAgGsC`$w>x3Vj5F9yGZEYC76
z*Rn0&GA`$`F7Glg_p&elGB5|TFb^{^7qc-RGcqT$GA}bTH?uQ8Gc-rDG*2@%>vAEl
z>nmroHoGp*R<k#MGdPE{IFB<qm$NyaGdicUI<GS@U$en(|1&(tbKiC|JJ+*4-!nev
zvp(-LKliggqq94EtUM1iK{qWu|1&K=Lo!^0J0t@%sIx*dv_muVGd#mPu){N0143^!
zIb$?6yhBBEv`CLMN&9m^(`-Sfv`X9TK@ameR5Uw`^Wt&=I2gbIU_(03bWPv1GPeU9
zz(F)@0vt5LI)eio)B#SH^f?PPB=|H?D>YO{wN!`mNh9q_Uo}=YY)b?4Fbr`P8-qCK
zLHO1*1|+pC55o+kL0FHq0hD!5|8z8T0vsU2I&;ENoAp#TGcOo|GT^dYPl7wZ0UcaJ
zUKh4uA9gWUHP~h~V>foZZnZCiLl#f=F@!TG7yug7|FjX*@+KHS5Qy_-XSM-s_A>JU
z99)B3)3rLwH67qJVjr_<tF|p0wI%p8QolBC=eBOYgJScoWB)dAvv4d6vt;*xF|Y$K
z7;Z6yb7!+bJB+|*)AD7LHZik9Oyjb3-*R(5cXTT=AGEen%l0h0!*ySGEt5AdqjxY<
zgGOWbESvXu!#6OKw|vvGdDnM#zk@s2a(xGLe$#Sn<8pYv!*{#(ZXY;;k92QeZg4la
zgKsKi_i{TFu`HXz5R*YTgTok1gF8^TET01~1VURILoVb(G{|x%G{gir!yYt56r{KT
zNI(p@xLKcrh&MzS;I)QxxQElSJJ7-ysDUsK|HCf4!#U_eHPA9R$iYuHIV8~XFfjQ~
z-@!xcw`s#cCAdQ&G`TYHLX+2lHEj7$tF}?ofgRAniPy3&G&vnG`6SG8ls7q*|MHqQ
zIhLzAo4Yxj+xZ~ewJdwNoL4!ZBlS6OxqeGIB{aDtBy~9u1Cv)mGDJFFw}UP`G%tvE
zf@iv>_w$0c?t_0isH16w2Xk^8w>oz=L_{~LGlUu}uH3HrL%6j$i~vNqwJ&2rL$HA|
z2lh|*`A@&OEZeo6|8!qF^{|h*P&aup*f~+ZgIqUxn#-~~T=}pAyRZ*?U-Pn2AA7b>
z`?13TuqXSl-?krodosL3vLp4j&-FVP|NF43wv@m7rq4UQb9AQ*Z>Z<HzJKYc|1vmu
zwKJ@CL?FS3-vC2wHZL%Q2ROqyr~pGufHC|6tz-5(i1h&oxjSeALzuxYw>U$rfiiD9
zuzNYMZ+j&W_LBSgGl)4HNJ1|#xiXxCn7_F;{In!|w0;YNut&SI|1=#WgEiFoo0~k!
zGx=@rvO5@pE_`&M-+9jqHqZ<GJFGi0Si>;<G*Scl&p(5(4>mj4^=$*XY6ChPB*WE%
zyDXPGx7Rz{w|zd}yY=q7+|NCf_Ioe?`xe)8XBWXOKequ8e8L+*z`w&~8-T9A!#6Ml
z68OCVkii&`fx(aVF9-evOoK9;|AU<qf-dX=VH3X1@4_zh0<@#}nA@^bSHe5gJRDfQ
zlEXECyZ)b}y|7CH=!-t=?=m@X!XVfIA^f^5UwO2XyyvsKEE_dai+Q%AJF!o_pF6c`
zpZ@Qoy|f3o+gHE!uQS}MFWqlH_aCX<?{aaQdOc4!E_e0;ID^Ae_hm}}>w|;+76Ic!
z1a<pzdoS~~e>q{_|FEYy*c-U=0|XsweBe}icMu^sIB=pNd`GYjHizsEa$0y1V?&1<
z4|c+ManeDE5)o2-XOW>pcOv1?xrR{NLS*k0Mts*!=0TirW<G=y5+T8!9Elb+dK76=
zrAwJMb@~))RH;*`R<(My|L8wh2Do<h`W0+gt^>%HHG39qTD5E0wsrd!Zd|!@>DIM-
z7jIs@d-?YD`xkIv!Gj4GHaq}8VgO-bMFrQRhm>RQd?~|fm6HJsB-y<@2u^`lHV88t
zSksZKnRX)#Opr#6nzd)SrZGLo!v&ekyeJ9NMR1{Il*rgwGoCCNLXS2%n)|5Hp~93w
zgFAd??WD}&$CD#<C#NN}ckT!R1#TJP_3S(yo}>1zQ1yeGs!MMuz2{E!<sA|<c+e!K
zh#5l%H7+|4!2}gtkiiBWTu>{qB%H9T!z{cI!wfatki!l={1C(tMI13L#TEmrv8Nt`
zObTE$=|Q&#m)eA@|1f;9p*51;*`uo>94gHKGBoMxv^;8ztrrvwFoUT-h`eg2?s&;b
zx;m1P%_2Imafg`r=<r3DWOO{p50F$6#ut=!2~#4ETDp=Lf*zr1AuF+LX-uMas)HJK
zri6pfcif}{PC4n6Nj5LB`IAs~P=ezn>2`SrI7(jnvyN+|qXRvk2n~imrc6jp#!^i^
z71dN#WiUbtT?LE8SY@4+)>>`771vyK#n42?pn4IqU}0R9s7}C|Ku2(%BrPl?J_`*j
zCYR!otJAF7sii?K@{GQZ0LA7TZ>LM>qD~L>wxRFDwPZeVnLDaXapzRmTXx^+_M=9&
z1n#4roD&xr|7_u)gkLSm^cE<k%wbJ}+K7D^;)o@l_`p_Qz1V<VHQt!xjy?Vu<d8M)
z6-B6c5jNNuCl16bD4-i})Xje6ss<Dq@W4QX&bfgr)-1?*DbO@?xGI4c;?$vG7P4a@
zOW*kyBRXDYY0l`xmHHrebXiDSI)-{jX*if3*fXTgAqYH4wk{~^wY&a0?6G&zaqWff
zF!xV52q~9dIFflZ;dZn=dTyq8A(i696<?h3i7m$1Rgop1obt*ozZ~;jN&YIu#;al{
z!04*oC^KY{dMR{bO#(gjlHO^3DcECwy(o%gKk9bZWw*U{+KI|tDd3CZaRQ<}KOXty
zm51ta|HvoI9Qx>`pPu^atKZzK&X=dk9TghrN&;uHR-vl{Fc5$H^wlSJwI$boAO83w
zZr*vZtiK=s{Po|T|HH8FN_+BKO8dOR1)Z?QE9ev8_P}8WLOc+H5FCWL7Pu651VUyN
z)Zhj=7!~@}4_5sX;Rs1sLK9l=e_RP*2Z^GKF}!dLWFT5EU>L))v5;}n5m!!d*h3%w
z5Qs$iAPBv3LL(j#iAhu<iBf2Q6$TNC?{h~oo>4_BS}_?njN%r#*hS<Gk%(hi;uy(T
zMl+r<E=`2RKiJqtH@*>$ag^g6=~zcQ-Vu*^)Z-rc*hfG95s-lt<RA%INJAbHk%?5~
z{~{ULNJrLjD`B)B8Yx*xOI~t>YJB7-IoU~1eiD?S6y+#MSxQr$5|w+5q$ER#NmsrS
zmaznxCR15UTiz0vxzyz@dD%-}nsSw_ETSxlSxjRd(?hiU<uaMsOlLk5n$eWzG=nKj
zF(MP2+0^DX?V`*+@?#zA*as+6VVZFmzzCo0!vV07%03ui8gv8)F^D0LHr~So7@)^H
z<4H(Wz(E<~C`cRq;SF-IgOO#rh8qidP(jv%9N<8xBkutydMI?78P(`U3t3HTaucK>
z6)8x)smFT&D>ByjWI5L$4g(;;ll~Z$GYrX#h5qrKG?n8$x}wv6++zg#<YyuO|EUad
z43v$fSjZ&CsYr~rQK>&^>K`wHj7L_q4i|+KN4eTnuR_wAUm59G$y!!SmNbvr=)oAC
zp^M1S!;>zZ22juNNlwfFu7m_C7XW$JcFqwWqkyLy`;g92Odzj=JnA(nnhZCtgAbEn
zBq<2-jyFP9vVr7>LLB=@KS*{IS^es0N!wMA3e&8qRqbkxh*mt_W1|0XYd<;ZQfC0w
z41nxM9Q(1`Z{lN)y^SM2>)Ob3`t%=#{YNP#0FOd0wy|&gtR43;)i_pnkJF`Nb*&pm
zfA|fK`N)SHvHOpFboU?JjpKAvQ3vOi7QXR)=4n~UTKnD?ztnRrAJuwO|4yD08~9v9
z8=ZuKXRyow9`LVV6@UbP6r!hW6bJdZG67?_(Meu`sT+;e6(}V3AKE~m0hCnNf*K17
z<VXfFo{>j<az&qToG@3QU@YYR0j93N0D8C4gIl1tjsnHTccCF&$sTnfm1tv3E>eey
z`hySJdX!b~*<=v2ak@xG>OXV{2T8>Cr|}sWGr-G6f8dKJ<NPN^3~>=^w6V)yej_53
z%!)=_S-yGJ^DXHs$^8Bq(1HHge)CulwMqfcq2vU#3~&G<u~8LD>PiJdliP4`#RIuO
zaBkVi2^Ppe21-h28{cVwG4LX0?-i^8EYJgJSz0Xbwc|Yi;ert~|M!ii;7SEXjNCf9
zlq<z0<aA$gG%8nAZ@h@lo!NMaix8sCaHs}B3t<R8xEGGZHZ~ha(KJvkWZM5gG93n2
zW@OhP7;CG<KEkz-Xv3k+jTmRQ2lj1g?-}3u?q#3DC}@BG8{n}b^c}?!tYf6IoDwMV
zKXfet%d)Z57yidOemW{Ov{4+P`Rf~%%SKlipa_YDFkjDU0Ezp<NSs~=I7SeLaIOQ)
zcw{b!OD^$C8^G6e1on~)>4!>4=gn@!hdr@O2U(Y?v*9SS8{3O#p93A^E%EO^v-;gM
z|8yap?KYMF0p)uiwaDF$#y_qNkE6PzjZ{yxzS-XPQ1Y9I{{ff#-0AK=#V`ht{@8|F
zd*I(vvJ}HOC-nhnD`9lLQLw@$?5O`CSPT$D7{VY1kBab*kMs4OCb&2o=?ci1yRj4o
z*gPA{ne#c`!$`>L`L^H)4l%PH%h<+xXPGWq>B1h;OJ^fNu5nZ)N4>KI*~K>KDILcy
z_8<SWY-s86PulN(t8SP6^gRi85Y`?0+1LJE2A<X)NZgdAkbtcJQBF=Lm+=@kfa1k1
z`Z#v{A4UpGIzw;zdyatpd;EMGOYcV8mNH&=;*Hjf5_EwRc(0B8!1ki+jhZgos>+T2
z$?uX6QjUu2x(>XMO<ay|s~k`jvPuF6F#4#E1WPcH|E#Zmwoe6DkOj}8`|zmX$N-i4
zuZ=K4@E|Vz3@-;0@BJ80ur98*e2er90P}Wg1d6ba_K(|4!;L=9{^ST8U;+GwO%moo
zDBOq-=peRIVFVTMy%@0eoURJ5ko0tq>?&}}{z0IEZ>zX#s*ta}oGT8w@cGVg0_o@;
zf}t1c&;<L?4^hy0T2K%NvF={byBvy*)M^SzshlR@rdWY1HV*zW&;2AUH0}`n+UVno
zV5;tc6E3dgd`cUL@cx3Jsl<U69!};E%Z)Bg0&Xhf1`7teV)O=Sy6%A>XwM5JY$5zh
z0rLtB`Oo&;=oWL47tt;eEehE>3m3}_5p+)-|8zm6;83)h?(F<4CWg_DLhq&g&>OuG
z5Fv*U$B`TZ%@Ab_GRB}6fMw(UE-Z43)?^?wW<UmB;NUzC(`<of3}6f72>$%x4H|6>
zYJtK=ZPjX^2M}n$+Q>*eKobz?2?+`iWPk=(qXTRp2GRiHFbzk#;vVg2=gu#X?m=6a
z>K{OXYn0(1o{<iI<01yZu~4E8-hm`#qU);7+VsW{3c;#s(j-w54koDa7D5+vLChA;
z6cz&7Frp`wGTqAM8?<E*sDTyq1|I(D&giWuk5Z2^3=_W*EZHs`F{T{L(kxZ$9O0<P
zf<+2c3YD0P84wHum~m9Tq87!WE*otT|J^7L($61&B*CUo8yL+4f{qfoVg_1l*78!r
z%nZUXt;6zfr$$8r+7XbD?Dy6z1Nmha@Z$_y;vKY1$u#gIlngU-FYA)=*}#m+03~dG
z?;c)nVBSnKlcC+Pp(;hIHT5Ru>gdHbEG&c5?Z)zA&eAxKlceqrMF0sO>H)ZFDHT}p
zkNDvqgfNcAK>;c+ysYz$_~AJ{2_Lv~m(=T%#tX>I>pa=0y!gmG`3TqwPdMXq&xrF?
zkkdZzvzXFynJ}R;`9VBKk{HSX97Y8R<<mfA?(hy&LF0=)BL_bp6hbRWKYeKqyy5`J
zPmn&rD`KpX_#q#H5JdaoI~SCr|HNSd;FCmCbfX%SLL$^fUv!Bkw3oKQ7HZTMa^aBj
zuorxxHxua|7%eP<Kt+d?NQ?9Y!)lmdR7saqgk;o6^$4QKK}x4|N_+H4uM|tO)Qwp5
zd6?8ozZ8X(lXJ9`Ov}_v&s34PR6@X%P1_W6oD@ytR8HsgO4W3d+!Rmq)MMb3PW#kP
z|1>P^G%WO#PzyCz_!LkRRZ$le-vqUl3>8u%HAE1Vjp|{%R?3_b^tm)um+FC@tdyei
zY3;g>_@2+Di~yfFbdZWlpni{0IjKx=(+ppAmmF2BBo$Y4RYNGX;1CT{TdErk$)&Wj
zknUj@h^~-Itw1>msBle=|88#l)DKmIYE=2CsC<uBVHFOrp{TOemuxjjbyZx)H82qM
zFW>5u<f`)wX&h`o1`X-bBC?PCf#pQ9ll&nNpddYeDi5Udr|>WSaxjpfYgWBAk(y5F
zzS3Y*30y0LTpt!<^#W1V3SHw0=Wt864oSFVOcnv_QeA8W>=ll@^FKGq75o)r`+!&#
z3sQn{VGlN|knd%4sbQ}vVs92_--1u?K@f~V8+_H108GFLOfwD)(-zDC8tlO$to&%P
z3A@4+Kkj=f^QRE3M(*huY>*68j2OUd#<)TP_VV;XwrROy^tNHd6l@5SHl19G0fP0{
zx&k=eNW>bA3^oB}|4m@Pa4e2`?8o*<$cU_s+HIf;VQ{X2aFxt(dr<==fgVVK4uZq$
z@I*9+GB_#<BIqG;|6y@k_97e?awQiyw4`$B4WKaBqBgg45%(e#_i!8caU&O?CYN+u
z*K$u64l-ADU-xrkH#pkJ&gem)RB>i)sb(`KXOmZX(SlDoK?>lZ8-Ui77Oi|9E%_vE
z*D8&Tx}gJNfalt%8=xf${vjL?$O9~k8^=HsLSrE{6fA_)@DeN+G9lPri)=Hj0`9S#
z3;+sxfx_ac8@eL5#sPsu_Bu~M9tF14IsjT!6(qYtGW$r&tSVkAYl8owf@u;s<ZTs>
z=FMIY9t6rJ|64N}tZrcF;es=`8R39~J(zPZB7`B3giV+dP#6L;IE9r`gBPNOTjGOZ
zScC;|hA*Oqb69V7n1%PDgMGMondx|!7mAk`P7ChBezsaMRpHpE;Z!l=*oflX2xHyo
zoOaCc=Jt!*5A(nY6-4jlh)$*|QQSu00El;N%|O>Mz`xE(_1Fj!O|kvR*z&$Nk0vpY
zH-n8xp*619{{+~Ox{VU%AwHhZks(?4vXLE5p&;IHA*ewin2qy<0@?g-k|UXJ0p*f2
zIqKkmlUX>inh_a7*^Ne7_hk9`EE$v6EtOZ<lYa`7doh*=hLUU9ly7-oo0!j#)M2Ao
znIqOo|Nqigtr+2$kZ65solx}tMAk_b(n)B`6M=MP<qD2~$^gnB@`T}VZqPUD@&G{W
z=76D`OXt0u<l^wjSqC`>hl;@bb=FePG6jhgE`ksLIW^xXak~q4--veaP@reEpx@}A
z8ESMD8ld55q4}_(!MJx3I-)6hq6xZni`kfs7nyB#nM+z%owVS302gfGMSAuvqm};z
znUEctY~Scq)lgGkOacZHN74_R-{|JTLS8v9FF&&J#6mj9cppA4g6W8m*NOb1Q;{FZ
z>a@|!>Lk(P1ryhd57ls~ybG(>%a`GZtFQB`;i#(dEUm?Q1S4>u-$;Zr3!%gM0oyvH
z|MzXAk=La68dp&oWgtUrLx~32$OfrdV8OVi-^fU?L9l%4(ts1FeA)nvn)9eN2=@r6
zwt#@q`LU~WW8cV0$Us#2=&9KW!|M5tqA;)lDFAmF%PzvT{{fSaW&*X$3`uhr>YA0`
zXtt%!rZJ)paa*@zyS1;Zw~;ZG-<tC<BDZgkhmHFpkUNj`&=)}Zt`F&n`C7Xnl~O}Y
z3h0;-TjLQUk<<?R{v`9#I$#9+*zh>*%sBPZif|i#?2VCY8@~IFIxiOcX^d6TA9#Tb
zrmE!NSdR$V@rX_p5;>1{t`-Fe>12DiU)!-Td6)lb-L5g}+-n)D?B3!7mn9s+|0_I`
zF`O4Q{H>8~+B|%!9-P7xi^U_H0x#UROB^0He7QRul|j74({99Pd=@ohs;|4F@_M_A
zoKO+<9%kW1#=tP$F<O3VBImIlKe8J>&3g}^24r9c{JSm}l8s8v19qT%w!E?ppayt=
zD=zdO0yx2NK@hsan%}4!R^WRB(g0>)p=^+Ud0`(Nm_{5p$ZP=Aq#OolN}SCcd-wQ(
zQ-hEQ*Ri<JhaJ8AJh&#MYJwl^Xy`!$E8%fjFJ5L+(jlD=sG-uC>e9uG4m7=WJKdK*
z{T)KxgJIo=OMM?sJ<~Ux)wjykWqs6X{etmme;ZuL8!5Yu+}PO^QBxW+|Av~A;8HH>
z5-dh<f5D>gJ`T_m9Bh+;M@*ZI$~VoSAhz(*E2IEana*t4D8poNFu{imuB@DdUFXDN
z^X`Gd3?K|>q+`?B0H}6V7lIFz%ygAu&Hnv%jmqC0H*t}T4(Na;VOy(2m$nBU;L8Qc
z_yFNsSK%361Me&Vl_8-ezTiPV;4A*(lPu#K{<%B;<NbZ&gM;KX*LLyfodA8<8L8Nh
z9p{&{yKhOV8Oc)R=(G8VI!iW?h#shDUXZ-A=1c3v;C<<jbfj}$>XmfoZHYgz!9T;2
zIuUtppFTcaN}s(xO^JN!%N|0jK9wr8d@!_`JTydua76nksJQ|O|HJd`dn@k6KHu=k
z>Ggidqu%TT-#*bEm1xvPaWtBKbVA_QkM6-nYt%63J}j2i?<@aFZ(i^-zZ?mlOrw-a
zskGb!2^~KF^O4o^Pv1x}U-MUA5IG<9Umy0-RP|Y(_P5XVV;}c(KlRDJ_Iuy<#WZ_#
zU-*ZAQD@)xk00P}pZJ&my8R&-f;>KrANi*r(3Jm?Sn8b2`;Ts#mprv=eN<HOnPn^C
zyR4e|htvY=l=rEh{ml{h0mzRimMyK@kXXv4x?YfmHAj#2kd)O&0b&FOdVLH``-d>0
z!i5YOii1<>9-KP#8d|)FF{4I=>pFUrr_iIwj{6jX)1^z;|G8}y|M441(q%`G|L&ce
zsqx-Ob|n$&6v<QJOPD1^w)7aZ9@2$FVS@bWbfZXl{yzSL>9Hceo9jUO<Jxnh*s&Y^
zO@v1_t=hG0+iHYmAg<iGbnDuUJ0P##y?p!n{R=p-;K76o8$OIUvEs#y8#{gsIkM!*
zlq*}lj5)LB%>w{<24EK!TWvk0z&d>^tXs0;4Bi`YW;MfcHps|c7|wvR+Y0@G8)1ew
z!#+m-jhfK%w!~!r_*4=OU12yl)T_gxRB^g>>(_kp*$$@~LQmk~bgxeFpY=wn8<vNI
ztmJ#<<I7)@SRL8FQrz)Z$EMJC<uyXjdvHwB9z)tu|2K&#)ivTDc=`zlha=5Z*Ijhb
zX#)p+8h!{Oba358Vu^ThhGL2;uE=7GF1`q3j55whV~u@%23lRBt)-0=$%TkfYtFnD
zTwDD_*Uym-8I%z|`J_c;M*QHTBw57mHvw9_E%%Qf2m&daZ*UMo4msO=_nbfE6hcQb
zWs-A>dH<Mo9Z29%r(aEF76OMaWmZ(rCV2i+4>)|(!H!1ja7ZROoKVNyJsj?G&N;eJ
zm*G8o_W9>OcXsI2r^%Fr4u^v#<VPLP7}}<xb-=UEHW0mO=p-AF!$+I)j6>ZniJ}vy
zpJmD#si1VcQxl{=g1MGN>0z`_g3L~<;fN+)|4WyR+HT8jx88mWZn)x(t0In}jpie@
z7L8*7HuspYMnZoWfWb3?#N|PT#u=ah68;n-*KYr$B9|Hpxgu8(`ykwa0TKXs&%JVm
zk<dNQU}69n<Rn8(q6vwkf?N_9Ggg!Y$7L`=+l(Mrz6hPHKyj@xU;q;G+UyDj35p{K
z88nS$mNH%DsV-YyCdBKP|EQ84KlD7*ohlH8^-YHhNv$tJ55aLPLPwVc(Z>gt^pJ<C
zSgjD&3ymTtLS{)4)<e4-n%vi^Ry4}1$<mjom(nuCG(G-&NAy2XBP0)($#(tFb49Zy
zwa~rsF$f%wo@!im%1HDbMO9PxTp^X4|Mz*=qGRfxB=nF%2X)E}P8}WCY#lb+u5&&S
zJ*9^}`hC@@&bsTcb3J=?&)NQuwb(9CZu8DR4}J8~PfvaG=IS_F58C%Y2C|P|#EAlO
z9Uxb{OQSGX1>zUkO$RX;P$WX#h;Kj?|AfP`0UjV*N?c=TB0lqd!Y)Dh7`}3miMYgO
zBT<@{0V;5em&FANy$BhTx*?a~j3a;X%gDRpQk?HS?rVk{+so*H7WmwQ4&C`q*8V|`
zWvNXe54n`%Na#TmChJROO9(08Ai0FhP;8F79}pEX3KX6V8mRix-3CUWy%`Z6qu7O5
zQc;I^e8)ptlT#@gp$|R;aXQc8|C*LWNEV4iQ6ZP84j~Ld9r66bRB(s}ov!n={B(&r
zgm?$-^y3FUzT+MOV$UjKM~#2*i8}D$)u8BT$Le6`k9!=`APc#VLvk&Vi-bcX^=PW(
zEpL<tsGccLiON)}a+Rzk*Y)VKBejrb4871qX}pKVg%C^vO#Fu_9EQt+7=UC~SxA%=
z!Y-X@t!5!HAQuqw5>yyK4OW?x38wk65gY)Q7$MRxF`zGYO#na$VTAz{W;lBF1YsTY
z;57|Ugj}jCkSJMX5T#Zfr8#R^4H;q=ufewN;INxvLr9z)*SK;x3R72WTY$ROB@|XH
zY!Xr0C~lY@ZNM#A+#w4-|0mKO+MR_V6yl;hH^R1PFeH%lnU04DsX~S(gl&|V2cNh|
zQ=6g<Asj-~LE}apYTRj!H6a{+vX;}EDx|0E_^H_7AXGRIm5`z&CAM0L)vRiDt6c4B
zS6?}oSf-^O<!~D(dO*yRO3-`=nU}!+(T4*Z#3IL3$h^!quesJFd~=DX0rgrjmX$#m
zgyltC-rCJ~9^gm0F#s?KD-2E;AWLn<=DR36mQBPZg1p%VN<NE{Q5g=jpWQ`8?m^nm
zdQ2Os)dhW6n_3SAayyl1iPTV{!+jzI9dC+Z+8p{%HSS}e7r~Dq;3!j(1{H9?EvMBa
zQbZ%hM;|g($P*Rf|Eyp<>V+BkXhFp$30|b?j87%%99v5t&&HN)tu<{;TC0oIqSu&k
z*r;{&CdGsdkA)2RA*A|S9h3fJckM~tvi8ee{{UA&sK4$sAq1u`byT+ye^k|~Ci1F<
zFO1;~Yk0$)0jpfZ+Lm!}Ppt_lg#^e;u=ri6xWHLbao82Ynp{%?W2l7<3=rdV0u~{S
zwF_d4`%VLJ79pd!3vv*W%!L_Xf%2q~btGy#@N{QE+tE*i*0YZ*Kd2{u^GP5jhsBEc
zfjQ;K@<^|oHGh_{J7-G<ap}snK@5TryZBk-+94?RFqgZ+m6{yACZUx+YobCM2Oa29
z507a?YRQ0U5Z62~TmN-sZQ;T0d-Uw&>OlEDQ+|(?FWsJiF66q3LmGn`LZ?CNmpZCO
zRds*6U{fCm)vV@cCAqt_|29N<6ut|Ge+}$l3wziW_HbN4%$9rfjKmT|EXLltV!F1N
zA$e$5k>8pdoB3n}Id09613Qo;RY@$b*}?{OlaOrxL);CS7a2@2kg?9<7C)1XdPyr<
zakTfe@by?WTKf!y{5!P)_nOj5NFOYo@o+3nh&<}?U4*FlaCeL@K`kye`Vel<4M7AP
zo<X;XQeqp#Acm}3Jzn~9kq?gen=aGitc5#NB8AKK3kOcxg5Mjo`QG<?TkCIt&nDts
z!f&ZL+N+g5X#ZKWmFlwM6uTFS)T9xz;;5It5U6ua>eiw9gnR94VvBw3WG}nfYh-K#
zAX_Z>SSnhXJ+R4U$eis;NVFUB8YWA}038?sI+s}_e`q$xxp}6_Qsa+nB6b^6;3kV>
zBM$M+HJP~d2QSDF7IvWwO7GM*+&@IZe;sjPgFc*g66upzPrPl~!8n{<k8mWv+U5<R
zWJ1oCwIz<a)klAGL&E$r_=rtkN2mSgHxkIKk$R{25f7g#5tfF>iKx<dx)7)K5dL=Y
zRrq;n92Ge=S2Jh&$&niLv#+m*a9`KS`a0O_a`yPkfBy8Z|6$U;c8!RmG`SdtEgKJa
zCqoy(asLm1AOqqv12XUeL)Hx}AOr7n05u>3Gf;W&#8&^Hc^<F><3oYlW&kz7195Qx
zXn{fcgA0Nn7dzGv-LL}igAi{J7c<Zu7-IlXzza7J7x9)5nx%s!^G*eHe9&<ZqjOw~
z#C?SD9dC48m6IX1LkYofDZ)2kZ}c5>U<iH0QFMTX-*IpkK?;j>g@5)Bq%b<zk!!;D
z4OGZASIA9wgiHQK2YGTi&ov0hRR@G1M`Q>Gb$DEG)P;Cg2;VUXkwP6cWeAm{godD0
z2yt9VSO||6gbwjtms1CWG&=gBU;@Qz?@&6-aW<ROi35X3L&zZe@JFJ@HT2*gwUvpL
zRR4*g_=$8t4Wu|Wr?^Omwu-Am9q#vjb76nK2#mofjKPL~&7uq2(*tARcqdf~6Tl1-
zg8}sML3EKaac38Rg)luRaUzopdtd+uKu-6QKL-E>iY5+0W&l#4Xc%!aDdRv)GDq~|
zFl4YS1XGP<0Wbz|fswcx%EdKxRzjSX5Ol;x9^+jY5|9j)G|0CdkJfb0@_c8w9WTTR
z5f@0UlP1=oAGFgtqt|q_rGM7pI6c)420|Zq6kz;#5#QlG0&*<0^Bhh0Ixcw)_~aa!
z<2p8ZJespLe4skJgCBHoEdD_tGKpY1iIYIolRs%ZK{=F5H(R{eizhOSRcV!1iT{<;
zQ;clk5BP8oZFhXBaAYA;4^Pq%NzxYlux=kRZpI`Kwx*JCi4ph^5Axu0a*3CD2_)hG
zQF<AKyf&3onU#Y{n1yMWF0z$=DHfRUF#OP#ib*YMNeavanU!gomx-B~shJ7^n1Oki
zp9z|wDVmLun46gpb1)YpsG0nb58~#U{Q#D2(PMF8c&2Haw~3p%shhXanNvBMzX_bd
z`J1I_o7-Ru$7u_>pqcj|j|Aiv_kf(oiF&(9oz-cb*J+x)*^9!-o!#l3!$_RiX_@uV
zTjfa(>nNV-sh;b}o|&ng@AsYYDWCHxcH!Bc_lckRsh|7FpKS4-U`L+;D*vDZ%2oE+
zp9hMd396tAnw^0Oe*_Al5h|h4W1tLbp%;pw8LFYo@}Ipnp&tsOA*wAEx}ha%q9=-?
zDB7VECZa9sqA%KEpK&g$@e_CXAq2AqFh&;OP;$hujLVc`*V!6D>M1??qXmHt2y>4#
znmfst5WM9LaCsYywh(1fW^G|A5au@CaGpTor256B=(!f;2@Yb4M!LnHXqurbYE>}m
zrf&+Tj6tFrQ4hAHJxj_gINBPXmlJbQn+wqzekC0D0FXf#sK(@{4S}TgIH*n9HvWNY
zyg{W;B~fcpk&^HzMZ_OE1bV==seh;zdPHI|*Po=ipWsk%7r~~a6#u8K>Z-5G7jqgU
z+H(u!aHU1l8q<(>WT6z`paAWJG_?^Ox$$GnMjN)V5WV`V4bhDBkQ*xK7Dtme$$<|X
z5~;WG4TCV9KCua{MsD?mH-okgd|)dfLJC+I667iy{BS1%hDQHlhWrVyQmUThdY7v@
zO0cT0`wFA7N>_r=1HB|dLQ+=>ftGY-0>H|4W@!-zOGEI;7EWRjtO-pGn`{ZotjHlG
z&~Y>hM?=lU5Ycj%Hp&pd2Q52ON99zh2B#6xa<XaRdkG=38DSOzmJbZO5H9-<`H&zp
zt06wi5N64<(Q%hIOR^-J7CPGyMr#p38?rCkv`VWMINL-Sf&Z_}!>?JZwGryC4M7@d
zB|_}tF7UDt+K@j6fIfOx6Vs*;0*I&gkdJYJtpBhH<WmFra|AtMF&LvU9Al<*6}K59
zL344phm{bLB^O2TBW^2g3Y#<ZAhrx~51b$c)}R)M@EojQUWe03nbJw{(G#CT3A0s+
z)`gHSCphTQ5^&pfVUY?bL`TYJD=;~b)`2K)Lphcss;O6ND>b{ulMtWsVC%@b*TD=s
zC3qTH5(kM~P!+t^Aqjt5d%$Z<pBo<u$wvZGa~I(cmqQ7>a4LpU9p9l+wQD>rF+7_i
zAg>Z-`jJH60b#Vu5L(xf`a+Pkr4R~+M+#976cUj>(f>)6GiU_qUdGWnQPaDeQwMW6
zo#=2UlF(cHbhTHtwH0i^@!7QuaaOsY3$`Fya93moU;#ZqKkZbo^5Z@(h+Wq-0lC0e
zA*2c-L&64Ncmq@yK$sIO?84$x93^M~G$0p1j83ibfwjOgeA+(mqp)kc#2Fz>+SreB
z;zr){iMTa-BBcxP8y2K+h#(tg{$YmrQ3u-fU_F6F;7bYHWnH%N3bB(X_(2G~z$a_e
zMtp=^fA%kia46)(vTe*YdE$h@ARuzIHFPjKXd}i@2s-;vI?W45dKSooOm20^slf*a
zRxC8M=*V32qYk!*nns9y0uGBrG_$n}ywEvl;r|cKOC7zVV9Y^B&{q?b{D-r3T&HWw
zs60{u`Muv^36z?}i;Q%XV1%kHAg3HV$O3iUk%oJWbl1Tr5~XFcCzZZ=!Pkt<qnW|j
z1+d77dBz$S#N-dvX2NXimhChz6yp<$CqYP15*y@K(KJofq!H;{G3?wL@ls^*(g&DT
zmh1d?fwjaZEEd9aV#4td&%h_~nh-%zLPVo}#*AOXSF&|r4tNrM;m1*uBQ<<LAcuo0
zmGCLs`VaW<Gk&nL4QE6GX0p~L(#zFF+Lvn-K_}PSeMBaObMhVH@eoXuQqA!y=y!eI
ziV<(-&=2v(!Z#iIfqNRkHoH&~H~r8I2LA`WR5e<fIYcAIiQ*3)Lq^vJiCt2z={6A_
zb5sKct}~U>>#(}@RT4Gb6LC_mY@?-jqBj-U2xs)aLu9fNK?jzbIT_LsKFJOp;n1Av
zpxKhmi_O@Bxy=;=u(zO!w)AcCgfM^lE=x+#+tyCih6KbwSj2EmMM5xdl?UAhv18%c
zpe+od?Si=)cL4GSV`;W?fms6GxNA{@>dYIoV<8b1h56JIJ@hiI2GX#$V5Z7r1=Z1T
zbKI2#vZFkasA6=nMtc0zbZHiAF4Q<5t8s9!3nWJjq5^4BgDlfJsR`jiWI<g15Zt9G
zMGqk~RdcQCO;p5<A5Rzzw%QXv)c*)PT5^G;PiY-toIEGF<GTytapkKu{N>*OP7DIx
z6WZWpdc!OBg%E|1kt;h#gdk?XrCWUcEEP4}z!kFyF~Qf;*elNB!T8ud0kGt>f5pIT
z{Zp)xYtGnZ&aZJ7q>XL}ad)ttMrS*K>9iZoIxt7(KvG}}H=qDxiQ9OW<MKp1r8`kv
zQ%~PT+}91LAp22R4PEr*I9T*3gy1@+i#ZZkh`PWD>+LloZrv^IYH6-!ScBBP@mwYe
zX}}jabq=ycJ=VNS2U+eoTyi+ijdu}OY6PiknU+rz<*vEL998441BKFjtlsZYuCs*_
zaFiZ*p6D39drX%eLliivSN}xMed5);oh|O_uWoiPJ|~pxJ^MGeCq*!Sn%h#|LH+=P
z-N9~c`{Qth+Lf&lzHR`(?yyFVC1}x%@bDTv*w1{t*-UJVu^_!`(bH8k(Q-3UvK)KG
z&Bus7Fvr3+1FmY_oonpCI&kEWk}wY&r`~j+Xifd*T2g#mK5FnT@1kf@+#PYe^4;Ab
zvOvXVdZTb{wh(TP5GV1$zN;GEj_OfuHHQvdo<-6qtuK@658faT>u?U_a4Av5Hq24*
zDhFo-k}H@l)~XRmVu(ambMmQ&)z177qW%wWZALi@Xj!9M_WlouP~A$S>Nvj;DPCc)
zuJlU}Y_dK_Z};?IEB{ZL_g30K!)~dzfu*+d(m_1aO9Z1=cUO1`u??wF&nm1ng1|(u
zjpWVxE`n-KP`+(hKlf|lKv3)!htpFn0qU8P>N_RpkcPV82kwCc)!uQ%)?KwQC0qEl
zHTtrAEbXmF!}u|6zqupTl^^sArVhGbxrYOMVJ6f(h2ULu<_$4Wea|+9Uh#5r+!gt1
zQqv~ua5?nR_qtV)`0Ep{1?d;THgL4PEUOUQ?mgWrC%K;-sKp#+p)`Ac;5&6EUqT+b
zPe>9aHCX+>93qXSUr`i|DiC!KyzoLuUm{Fz{^wt8GKxLTLaWEv1NHqlAzTAJkU!=l
z4lwY54@3hp;Qs^_(SQIUBZh$kHDt_q_ivm60~T&+8ezb|nSZJnR&eGoki;VN{{6cb
zu?7!`2jG1~nG)r~h7Ti7>=yBYvs4B!ysL@fo{5G%UK(KG>|Zw)0tp&K_)i=RqZMe#
zaN<$rRFr)rN;pYX>(+my2En-o5)K?Xl<18cYsk=8vXtJ5<3ko%*RgdHl2ZG1klIT0
z{2Ag?=VZ9CgXZ2FOGp=|v67_vBO6xby|0t@{R354**`>Nb;T{5>>pz|b}5gY>#va7
zxP%N9I$Zg3W;la3j~c5>SD~@cKAK9rmhIuh!E~`z_DwG}R&WTxQw66HJ=}0~^M>Oa
zrMTfKDgUcYYlsjvh2hzjHK!LDcRJPBC#=X;GD_@h;fPk6SlG6&l|K55i;i7*0nNXA
z2;q$mwFrR^CB(*R5Tw0?TadheK+{DyI1&PotN{!B2QueKON>0iocj#5j~=9Bx3Q)R
zF+knMq60p(YO9aId$6lyA922d!@_@Xt0P4?=1K_`iI!xtNhhCNasVl(q_RpYuf#G-
zEw|*dOE13!GfXkZB(qF2&qOm#HP>XbO*h|!Gfp|@q;miO?gZdTSh(U-96@>j^cg+}
zCA3hKv|&gh4}^5(Nen!y>B(tU%!A1p1RZk8HFlEdQIx`Y=>RC$DfFI7m%Q|!NDWY<
zQU3$5Y4lNXeky|#iPlgR%1K>q($hj&kths92lZpDupTVUBW=!mCc$@3gu}mLjs0g@
z`;vXI4v)AS%Ri9ngJYM=wi~OEz@*~V+vvs;?H<s=1xH2DYUDOrv99elKYQb2_oHRm
zB81dK*{Wlhe807i67tr)@0+o(X-?aJ{!L6^2Lp_--fK6TnArrGVXKlGmAO$eZXKIS
zonV3~Ctm#6OIWH9Npvom%QTj6s?NM67hgCyri(4NQ1XXnLTvs><77@5i{pCUJ=(ka
z1e7`Gu_%!zC5m_1#8_mfV;H{>b3{5xD9=Va$~xC(yKT4MhC6P#=cc=EyYI%^O8-3b
zbaKyOr^1JyasMW~aDMP9oX~vwNxboo7B9RX#vP};a>Dl+-11>B%Y3`I1`)eZ%sbb7
z(0u+O{qfXM!aVWQS9iSi(y1a0=)v<@9e3FIWM_A-@;O~A-KmmYt9@|a3VGvEH{SQg
zl}tN&C-bJhdh4&pK6~xA=f3;4_ttZE@y92>eDlvoKYjJrXTN>-D_^Iac>bO5ef#ex
zAA0HcH^6)U{|8_I1vo$g7SMm->l^+QxIn7lLvjy<AmSJ}K?+vTf)`XEvQ&gY4q{M$
z{EMCeML0qdme7PJM4|T(*d)Jo(1qd)N7}gXLK@c4hBu@jI98U72;tC&=l}a42+@{8
zA{NnzM?_*0lej`AweW{e<P$o`F-0m?F>6r7VivWyMJ{$xd_fc<l$1C|GM3SdXGCM2
zn7AY-deMz<gkv1#I7d2O5R74*UK;hdM?Ut^k4jvlMA}$KLKf1HheTu|;dn<pGU<<x
zgk&ToImx^Q(g1^0WF|GaNltdslci&1BPBvfQkK$`r$i-~EQ!faw$hcagk>z{7)nv5
z(w4WxWiI)+$}HAo4dXC?5rzd0VidE7+X?0ccj7Cm_+uNy2%R{Bxy-6ju2>Mek1Xqm
z7;P1+e%b`52Ss@{U6#|F=R~Igc}cjU0m_{{FoyelDNQ68>K;s*A^%mRSp@OjV;5H}
zTu3I671~{epwcu#NSIl<YeolX;d~=E>ETU?R@8#DY-Bn$x>1gHly2+%+dTv!1zEsC
z7JrIo`=mLIkWj=>^;icu6krCejKc<GfT00|k~ob(VRxpQfXrI@k30yobg9r5VZLcm
zF8W~-Ly{O%rHVg{;?bj5#cEcyY9^2l%OAn821>fo18lfYn$8FbO{XHct?Wdtgu_Sh
zw8B=EtTcVD2&#idK+`_(^QhY5&Qhm}MW?DtFoQ*G`>Gnotv1%Nk8NyMdCG|?I8S`Q
z#Kul=rL~`+U?P**>r_^yhN<j`NjUw;CJtbL8ocBP<GRN)F#llyGLRz~#IV?)q$!bl
zPDL9LIRF_pk=GTO09SwLtxC4hgIicOC9IeZS{hWHpCKkL+HzRF3IU{RAj>hNphMF-
zL>6q+%RkgrhINybU3+cUSnTzWd%@yedVp8F^D1x1hJ+mTVpqTN?Jirs8{VIdmk#;O
z7kc|k5BUBAzzqg4N)X{6=vFha7tY@}#Ryprci6+Zlx*R|0Z$8#LLwIEL89KeqR^_O
z8yy(Pib2AY3FLwk3^A%ImL!1`8z7&bcv27yHI5U=KmkTgiB$~HfkZ8|PfK!X<tP>n
z5y8PM^_t7HbOf44>|+%)B2Rtbaib%3Y%Ek38a=RFt^dTlr8`=Fhr3?nWiUIKEo1J^
zl&gH@H@8{N(xEe1!hB~k&qdE^UNf8%-DV6o+I@=^;)f+YX-Ypb#DvpE4+MKZU>YE$
z{-~6U)2fwGr{oU?5LR(@`jMI-;WFbGfnWKt4pgve9k&Lkq56R2kHo61T`>T03AI}T
z$k=gmM#h8chZ{=FgEygDRvp;Ev>x@08u5bBisF)NYN3SL&d#Q{tqg8xmuA}08XUK-
zEghk5TiGf3_OrESZfd7{EbGoTNZj4+kHkCN{T{cx9X;^%K^laWMtH&%j>Jn3OQe;p
zV59O`T+(`{#ihOYM=FH`VhBSR#NdfqYqC?K^8ebdjoY<KtTHK-{6W}*GF7mDtvLfP
zl@x3V-ACZtIr^%k=2N+Ozf=<Rf1_mQlM!$=e?D}aPvz*|NxIMHW%H&pUFZbIIuJGd
zq=k3g>t7#W!wog!lv1!1tL9UwF}~uEKuP3i|3}J^$@0X>y(%V2Nh)5BzZ*SuDk6%i
zN~R^)b>;jceQ#!6EDU%Hvl%Q@DLhpW|98bxW$=){dP*km^U8BRSy=~t`3%lKu$SKS
zr>CCS3&jadTd*b*Z)?UazG8p8!2n@-ph`ww6_Xp_7>=|1NBVGpng7G(1SJ$WU{Q9>
zX>b=)u~xo6!ZaFvQ)x(N%ku@#7U?^l-Tx|~eq`!upPV}%`rNN(_~~GM@?(E2+D}RJ
zt117G2BQ~-4}JbezdzLX-~aztBRmP8#(6mBTAxlMIc@MU(26n!REbktF+b6cnxMPj
zi=m0zhUOZU;L8*YxFQ|fJFXzMinE*tsRlc%wvQ+l(O{Z<i;f;)kNMyZ!FUj{F+mg@
zoE7|s7L*ws<Uy2pK_3ynq$v$}s6huAixcFH6l60N{JxI}!WbkM8oat2T*4g8rXN(n
zEPTR3IXeSLuKW|jf7n0i0l+gv!!#@t)f<$tVm=BoG1l^lTS*$G7zn3;3XdQPqbP`j
zNC=j22#Amfim(U+zzB`t2&rhhk^d+O<f|zgkO3nzfEkbh7!ZoKV=d2;hzTe@5nK{u
zOB|vLi)pb7_7aU$0JGD81IxfN)u0i2K$gA`MaL_}rb9(RGeuQNMId3t;c!K=fW?rh
zubd&pcgV$CqyuVD#a={>U!;Rz?3Q7qmSQ|cFsnvEGn7-iy)op*G7KR#1jld`M=D`M
zK4HC0TOdSPl0`uYUSSeXS(PSXxtK#0Oo>AS*c6_y37G+vk{Fd?gOZB72NhV7FxUi%
zpu4o=2?^-L#<3P<sJV6FgY!ZTZs7yRfG-xQk*}F3<cP?zn8^KV8i}OHrm;wj3>l4#
zGxU4NkA#DeM6Z)%u#}{cjsIjxkDNM^6v>~_N%Sfeo(My33_Wj5n{hPCqXfWm<P!t5
zpTj91$gv=&6w1Wft%RJ)tRu=HLdvb=O0QGOs|3ri)QYp?HL)DHtR$zdRLixLw6DBM
z2ZEpoGD|TOhXt_8xx_HE+%UG}%f8eqw-m}4LL1n_%fd8FS<*|c^UK9#OpO9ep_HO3
zlFVE?%*wP(PD;!?YRt{#Oj~-)%LL8P6wNxy%qHo~(?m^5`pnT}&DM0yA1X~pO3m4%
z%{^Mp*Tl`-)J+D8O|_}b-vrJj62Ju7&8zf>U1+=zLC)fQB5)9rzd6q2#3JXcpxzv%
z;Ka`CJfYkCh*?_)rvE%Dd<3SlEFWUR6#Jnj(Gt&OYQAKlsE?4Ma@Zo=*fjcV&B*kI
zW3nN{u#Cd7PyF!*Z}0}noQif>2LeU9{yd-f<O)?F!>!Xy?Uc|74WQff2VHn4{6n94
z0>jzig{8U&hQNyZ5hzE@l{KKJ(vhh5WDyfZiFzoT(h3IYR3F6Xz7^?0EP_$+bRi8w
zk{`ki?FgwHHJ=@wic;7hs$efTKpCwF($d+6+`>_^a8W3HPzaSx3f0mr)t=kTv@v*w
zZTJ%*U7wX2s^%L3!dwv*2*LH~Dbg|15okb$da6+fJa-AaBc+2X4J-vh#fQqfpW&iX
z*i$#E2X=6oC;zfh8r_ONT^~Yq(Ph!l8`%YLhzkWpx*JU##Q0I~IG3#uhbzU>>*Uf>
zHPyShO-_)4tROqH(kZo5iOF#|6PVMg@Dy1sA6(U~SCu_$dMczsK0lC{;sL@uO^H5j
z93F)_W5rQsMIG27R+Wg>lo*|4B^_08R@NC8W#x)#)mCLi3=RDU;7J^B{fKI%3b~Ri
zm2fEHF;}s0)^~l^t-#jC<BrXUR<ytm$SBmQXxFJgS3`je4HZ_8nAT9W&i*;og=N^c
zNmVI87ZPh9%+f5Cu$3k0h+dNj(jvA=3D8b304T66VmQyZW344ggF-2U)tZz@@f8zO
z03=Y2CI8teVhhT{dzFgyISduot(dTXsId5h0}T<IdLRcrpo3?iqAR)wa_Aagpdx|!
zmuDaiLMT~FWsA6ohRM(kDSfV@``VnN7;}>vw)l#`Q$K!-7XcHP>=KQ72@3%E3KIEI
zqeWV!og#oLnrrE@LfKm@<An{{5%SBNv0cs=#g1LTj)w}@zw4UeFu=5ZypLGh#vm2-
zq7m$9Qlk01dCR`WYmS_I8iFZVxUdfk0gz9f7H_fJq+Qx6gtM(ESjx-O!G+v@3$L(P
zm#89#W!VKPl24Q<7NS*&aS+u}ZP?^hUO7osc-n`1z|h~Lpxvs0T8N0=+AW$IhZkT7
zq5lv}Cm|>$^MD(W2$JIpQz+k|V1W@BC@9oKiKqaEP%9!cGV&ypRk=%tG!Hm9!GG|X
zGW!Ql@R`0{Qu{!X2k`}Pz>ZF(#m0k-!=hc}dk{k41>VRuWT6D?fZ%BXk8Z0DN(ctf
zI6-b{7w-CqO8^+*=->bSQD%FFf9cn>Gu!iMm%0cB(vXD97_R}L5%}O1I(U~s=wBQy
zKN~&{bR!fF))2|~;1Ev2UnB(3h+;U{+Ib6|9S&Tw=%EKjz7sKoU|3+32#{SM4Gt-m
z!y*OV=uZ~z8S7|_)R{pGlT_WyjU(n5>I;i+h~mS7mTMs>B~HSrNZ92i<U&r9+y4})
zcS5ZSs)yj&i69skX?m-(`iPhsfiSqWb;vENsJKP}MXK1nk0^zgQ?is=hpFJeLRl5_
zwWe@$82rG8br^-D&E&^m2T9FjfFfba4P@^4QHLQ@$BW^VAPffn6aY>Md;lmv=vUlm
z(s<!xvb~qEkU}W@Jnj%1WNpHaAPiWRWm>*9nL*mD01!=`3fvHvd%=%lNx=u%jOJ(r
zf?C255xTYgrpARgWbTk5-U`Bywkf6NA&d`+@q_6=49CFcl;Bt7gJ*f(mt*c!5y|F<
z`45YUjv=0174*AUp5<q#WpY6o0D)kr16z6?=8xzdBK*<lm=C0qikJ$QO#jX;9sGw^
z7UWU&O+(h{o$iv`9I+md1x@GyDbP>+`7I`CU!^EEWFomUMP=d&(N9)Sk{ji!8NU4G
zy~2St11JJ+wY;dpXI9HrZ9Z0H?wA_3vXvo+a_F4wGUksMXRU~9l~CYoiCZew8ba`h
z&Zy#~S-<$mxwr`EiJlK(&5E!#ti}^y#R!IEAcvx!3O>lUgyyC$wwL#8)?nnB__$}V
zjf-7)CSq9Ip8W{EKGwgEj=+Ar!a@xH&{twMYc{JNiAssNCPF5p3;d`D4Y|6Et`@%&
zYkU1SJ5{>4*ldXYyCY@`1!ZZJaA_nYSg<bXLFVb|wr;%{P8KShqW_VCu$mZ&ogi(L
z0$aEN1t2a-W@^2vRpEo`Ue$_FRuxjV-z1xF`^jj;er|o5-0|aQ?(mke&AdS=W~~@-
zcD<U#5Nxr?VXa{1DsAqRXzqk2!orsB(8=$~c$d!Oiq?j@8a{3g_iYsftfC`pu?QUv
zx)#!|mXij;{kG;&e5%GpY^3d>5U-ZND{ykjxqH<Y#n6SX5F6hvEa!Gs2~TW=j*HE$
z?Ha+p7I6`tdGLz3(~=f(MVxM&Ce`cKa-Lqz0$dS6SmXs#D4FSlq?V>AYm}x=Q>`fT
z!**|~I6JyKKKka9R4x>4h=r16C<w-HCf9F%CYMef@Bo#Eb^kaAaySm@^9Nqo1+QhZ
zqAr$WLRyPK#k)S~aVZu+cW%#qJR@%o3P0?kO9eltYj%j`bHLhQ-UeNG&J~}J)P~op
z@o(8))?myx%qC)$Nbu1iokeeSq1AL&<8&B*-fRkM?y!XOo9)hh^zl1x;5bD=CBh(&
zD#*apQP)o+zwig?3;j;^@q@qC9+yg&u#x6e2IuoD$MP*__nq$Yk@DdlNZAS63BLl`
zV3P`9>Mc++0J;kaNKP7BfR8d)L^&;#MyWVhlkYmOZ?3@K(z$O@r{e$EhKc@Ba7br$
zBSJy-WhBf~Qmm#~*YD#NaaQd%0q%BvD^!QEi~nGZfdBq$fB8JLsJ0HFa4Wa)i4T#A
zhig)Yb(Clhev1z}NQQMFjdcze*ouqIh>p#jXEq~*a!?2C=<J;9jL=aBUGVNLWOkN^
zkG+NY`G_`;U~OanH(a-7r+;XXC+UfPJaX5!f9nj%aG1?T#VU5Dm-)B+7LjVZ2T2H4
z7guR<<C!^*btGKye^7^AfRBhbJnC-u$X8x39qL}-1waXA{NWT7`-z|k5uT_37D$u}
zkY1uP01psEo$?25#DFm)$lxNBPV0acSjWr)1WBaC7btz3ibRH>L`yW3Rn{C0Ho~u<
zgCFG<7Xh>>r3BI_RGb-${^S-y*pL3$KD<tex&PM+?bjL42x7Eu5$wn|4ABtysE+IC
zjsGYNLNHtMAPv(166DVf@xP2|(FI~4jpAdNZvq#gn_z&@#R(1^N%a2t;{%6|E?ora
zy!-d>o<f2auSpa~$WS3TgA5s>bnqTQLctsoR3=fPpNH^P{;R0Vkj04qMiFe-5e_te
z9qCkRM=%*lp8v+dsRVOn!i5bV+WdzI4#uVbz7eD(kRURNtg`O(Sn1$bkAohH%$Rd$
zqkZBYCi_RKWW-b!?^ZpU)T&-MAT83N6cMS%u!N#2Bs7p9#+`NG-8)OCD@<4hE@RHD
zc{AtB13rTeEqXNR(xy+NPOW-1>(;Jc!~c#gdp7Obwr}Ikt$R1`-oAeW4?X|@aR8iQ
z@lC$eAFm$Hd&E^PeL8jJ;znRD!|C#xjMxo$*ls}0%6ld-&v=ILynzGQ#9=m4{hun#
zPy$`PW_~mIjGg;eCyoLJU~tfU(lxcvJ8u!B)JmrSwu^xhfdiN>?5Oq3Vss?4k6Lux
zl@?6eaJ3XtlXz&=i775ckwv>y2nS{NghhvhFwJF=U?bi|2!<;$SP(BM#ROH54oU>!
zLpK&#(L(CM#GpY|sS`{v<y08mL}9_P3yX4vD9=*hSjmnmR7r%@T?Ex(AdMkXvlNLk
zT9so~QT;P#Nf;IdM;-Gt=+976q5qkjop4YhrbH_yCytXG;%Jd1<Pg+|fty&=i$ZNa
z7~w%`!ePljEiv{_S$A<N(NuZK3D`3~*`((#m=-#bla#2JAVfzlWm#vx0_&M@!xCGp
zvBx5ttg_28+pM$CLOWV<#%+e&fmZQ@4?bUB+pV|#^dnuk-jZw8xaFdouDTL&YZbR|
zvAPtC`Lrt?Qt_^IuXOwHD;>Sc<&zJ<|I|xx!SmIdV!!By1BXiT5}cfe2TOz#Hr+1l
zZNLLl%oie+bUd+%wMv|^ycCDL?ouD4-12lCE9YylGiw&D%{Swmv(7v7+_TR=7d!27
zDid9_(MKblw9@2aMa@0}FaI62)Kee0PC4<+i7&e7oU_hcsZt%b*khBuw9GW44Yb;8
zv)#7aZ^Iq8+Co=bw%uXl1FqhB^8@wWf1_K<npy*1xZyDMSt8Lv5)|j*k3$~0(PyJQ
zv)q?sp1J0mbKW`7bZcg<<fB*j2CxUbL^|p9=wf9sOsXDx*klHi44x`)V`VZE%HF&0
zkyBndu$~iNyz$2)pM3J5XD0gZve!e7^wU#c&hyt}pS||mbKgC=!3*D+^5c_VzWL{)
zFC6ojIq$vu@53Lz{PWXaKVRU7zghbG^WVS!|Br8dmua8<3TVIsA~1mpTp)Gum%q#a
zFoF`CAO$NJEdd&Ufd35KAO}0>!4HCvYz};&uq<f86QVGMDqIZ)H5kGd!q6)IfSpyg
zal07eFkSV~lDBL)za5Tkgd|)c5sPTVBlfR_>AJ@{epI$p7+?+KFo1k;M+_cfuMY;8
zhE?EW1oITAXf46USF{v8a==V>I3ZlaD3e3Ooe>;P%-%v$*R3`djvR8F4nCULu{y2`
z9pvx^@9sy!;UO`Rid-Zk<EBJ%`9l}aAwwal2E{eN2MI0Og`y4w9|K6hj#)H-GrCB{
zdyF8AL>uFo9`=umDCZu*sN_nvF~_oz#8S!O14P^>OImX8E-2C-9?8Ya8z$|ST_ngb
z`BINZ5$+$wl>dk_uhpk$N<@ecY$P|k>CJC4>yh5lMh~RG3`vq9jYfmdG*EelrG$f&
z-nz#oCIHOdabgA+YtabanTIM8EfsBQSYG^rsc6D0IV5qT-R$DZrMyK{?n`L=`nV1_
zOk#U2K_+z~8a9fKDJk_56r#w1smCN|qfsK+eDFacZ2m)=`2#0SYiiS*&PJTp6oeFP
zB1veF4L;65r5PZ)#p!^{Dy6U|AN|Icq%Q4T)gkIX`cMR;36vfnr4O1+rWV2p3X2$1
zCtpYcwxzU0YhH!PT36Cmx02Oe?b@nb*>yC26%4QC@<T?G6R^0#bzcSh*FOjg(Y?r(
zVrk{eTmKCPSh`XZu}(#ZNF|~OmZ}9wUwzqJG25#{{tBm}9W7}^tJ4GBLl9(G2|0~H
zwkcx6Jl&z@GcaKQGLRz~#F(QvRDhWYxOOE=rN@2<<fcMoX0;O8!~qOYgYO(6jjp&1
zc|Lj6e@qtv1tJAziaHVYs1k7|=*}NBS;HRO0<f&G6jJbXCYm(JO(undFQ(^2a*${j
z)3aV*kf9BQaEL{3dI+85qzfqVrHqY2ERdW82gh}az_p4IK@?&}C)EK;MNvwhqB9B*
zp(H8t#Z-Nz=R|)j#v*Mw(3}V{q=FboPhH|2g$puA6ldkd3>{TpTV;{49H_<?Udb~p
zlK)|rfXE{7t-}o$3zHg4;+C0h5tlkt9xfpxMIT1fnfx@8`IeX*PAm$1=>TD?*hOnj
zo(P!j3zH(V3BmtJXjt;1jhKQ~e5KtppZk2o)6OTgQiyR6f@`=>a3%;Vi6?k+fgb~S
z_aDQZ;$@)Vq5VuC7n~SS73*^u3G`q<TnNx*iaL%L45*aSjKO6P&>rk4dLn>u!3ZWG
z%K2FLokZ($9Tr0wPpqj@9%@*y;qa2k+@&JAERuc~(@cqU*|UN|DPMpcF97diF;OAa
zUrO~4Q<Nmd(IK`Wg0YjXY<M3&=}2_+L<e6>1lYk|@l6o*j5*Qa*2*E(S$?eUivR55
z#l5UIqJmM8YDAVG{ay$b`DztX1$<Nb<_oytpcspcn;_*rH<%W(6FPKc$BbGDP6~c-
zt5_RxYzoF=B#|P!z~LzlOH!%6K?pveRNiZ%cb_QnlZlgbpD-EuKXiT<dXwASikmZ<
zEOHo@zyZ&B)}NoNZuP4J5YY4C1bW>fh#nN<ar{^ZD#o*pvny&p01}V^_E`!HnBzQQ
zfXN>WFn4O6N7Yb7f``U2f~%4`(n5s^6mKh$dQ5h>-m-3_*L5b4O$4JJ@&`Lel#H{l
zqm%2X&@M1PW`f+vMd-$8c?!IeXlrenEt33loOmXLOVdw3Dhfu5;y8b_B>yfX)e?g)
zMiL~EL`#pqH0vpEdCYf`m#It0vZsR;Nkqgai2X_<?AQ^dyoC;VITNRF;-$#LL97mk
z$@3?KlO30}aT39O_$k|dwZP$Gsp#b~N%HJ^!~R3t_p-|G-xA1!pDVFLioAszok?C~
z6+%>A_#t2EX<x;7*8lMZPUN2g9v|AR-=M(XKE1`OAj*V1pVUnq1YunXn&1f@kJe4q
z*F8s}MGiZe5<pdq0q9!c8NjH)L>?Fb5)gwh2m>*khj&4ds{O-1;Tog?i9D?Y6affd
zC|<YRgAPuB&^cbM@Ij9;9pMCD`ZeE*kdz_pLhX=4Ar*y)EQRtV2mb|HMLob5#;FP%
zL_?H3;8!pdMa0Eh0H8$7MO^$|=?R||Vj*M|oyE0IGLQpDp&1-Rh5dQRnnhlloCy{w
z1V->d^Sy=mVIi0_0yq#uC$_}>C79{i${kkLO6=i3B%mKyilAU2Nw^$LMB*8ej2f06
zwMj(7I7lR|Ni!Yb5`v8&+TWsK7EYX1WWC~H;R_yq$tf}&K{&!v%ta%J;0Trw3R>ee
zVk6tA;8X>JEdYZg8QS5%pi${s6847;7J-0$$7Tqj5>}NAN(X!ho;yk!Qz^$28cr{=
zL?C)r<cU?})gk{ePJ@t@>Zx4w!5<+s#92g#ALLtd*hK}d6#o{zg-Y~cWc^`YjNfKi
zg^QrdJ;8(@oYfVwL@|maJ?P`<QN=}K<ilm6g9#ILMC5`|<jkdFUu`6q02M5<R7&O&
z@33TKao9uX1cRldD*U2nu_RsL#K1wLQ7lt3z8{dxTr>I!o>as%Qe!r9WmkHo&1~a=
z_yZ;M02LYzd>lgzF2yL&phT2{du)OMq~rRT4o2wBQViir^Z`6tM_Wq7bP-`aPMmPr
zW4C|<EQDhfYUH!Mg+!Jf`bFL`My7|@(mkBRIgp4`O2jtk!kMjvO7Vq5C88@`BGfsi
zSBT<DY1X&3A4?)dMt&w^!og|EQ6HTHI4HzUt^_#fg8!8*VO27ngE*pD(Suz`BAPhl
z{$b*m;6z;DRlRWLnbF~bttPm|#Z5M1GyNo9PNhUl;%`3GBk~R&GTkne9ss7<N+5zQ
zHfH)Y(^ho^lW`#}wdY|~=li_{G+>1-Hm6pO;8y}@fC{Mk6vxn{3ySrCazRc!;ov`P
zLwczlkPJvwC|=!}*FV%<<B5YH>?9O%kwom}d`yvf`GXFAs9P4M6Q<}9QdiNWWKI^~
zZhqfnN`yM>LPQirmf1?EMCODz;;F<7d8S`6qGF-ANObI{P2gDVsh>oU$mmTagJ8t8
zr4BQ4)ncxc8-c_39g|A(P>?(ngY3crk{(x0iT^}gAJaXclk(r0aL76=1|}}WR{$9`
z^(IUJY3V%}Ytczj@Ls9h<UXooc&e$L@t=4;T$iMXi>O45LLib@USuVumVVz-*2+}K
zr#~2iHSi>%ss*L)gP&4mp(GTEqzaw-=hO}8s<LXU%0^g9NAwKC*A1HFpptX(z-6Eg
zc3p-C*uo85#ugw%Ak^ARFj@ty);J7^1>Axre8)Sf!hlqOGx)=!6#+=D-+5F33k-+>
zTtHfK0<9T92iQOiD5yUGf(+0Ac93ffq=6@O7ttsQAy|X-ePF^-!iLyUVx$<81{+Eh
zg^g@OeDV(JtxP{Em{pX8&soGE0GUj*q5n<fNWNOc!>EZ?z}p+r!5~z`WaNp$A>2-g
zNEzzusN@7OECv+@$&SfbgRCEb$=tw|Tv0;hKX8c#M#f*z0Z2SuQ`iVERD@<3tSM$i
zidk${Yz3W=LSnqb|LsFdbj7sM(#-0@PUvRBt{x$_+(8gVw=Kku5XK-FhE0&HOY{lI
zgo8p1LYxGNlem%8Dpb+B#8n_|#*)HW_-kO$LsO(`p1JDZ0&d`n2COQFAv{Me09M$9
z!*?726gZJMut$3Y*M5YNbyZOmW=49<Aa@j3c*Wy)ghz|kon`=3acRbdQpbKsfLWqT
z$vI4)fDMH)#2k5~y+xLP0i2rzoBxj-7K{xY>&cLx45pn-N~IXcq3j5sN(yg13J-Z?
z9R!2R+KDp2?u5whg?J|%Jc^v{sAf`=?g+)RA#W#rtkd06m0U@dBwVmn1&%qLZ^GZ1
zDlb7qS(G#{)G-Dz(!*3JMWiN&jPY&;+9H+R#f+BklfVj_f*!5p#r5(@g;`3pks|x@
z=|AqKg*@*4;;+B*ABy!YXbElzi|~LFZgTL$Jq%#?@WVey)wSe93lj|tD-g=8o&}%G
zwdf09gcWD`%VfdCUzN<kBre1dabrytgSl12@P)v1Ov8ApzZfyV7}m)EmNpFV5-TxN
zbf?5*F<ZIJz8H-a4<->OR{y!kRQQZ=8mlojmhc<7@!c%c)4Xxy+(S9A18#0{x>ya?
zc-tKNv2>iV@T~D56SCE{@gE;Z-s}zE_%I?5BxEA;*f^N{s!QUeW+Y>BAXiQyb8;t}
zR)N+HCa(*k0ZU*;@;$VUm0+(Z+f6-Ki7-f+y3mg8uyQSHa@u%uF6%Nk9da$}F!cbl
z^bD~t6LT>ev+Ue5&Fu0rGqVx(@-ahmG)wa|yH7G(PBUY3HdoLyQ*$?a^EZR@-&k|7
zXmdH6a}t4a=!Ek+vvWJUGu4bUBAxR*)ARDAbMw4&KI^j|&(J;j&^}KNHIiUG6Ldju
z4&nAqa`?m9-OVLU5&vH%4JUH%^*~WMI#Vac^5`t|I+!p+ztBB&;uZ0Q7l9GBUdtF^
z?HLX8<E&9~7~}>C(jXz?(g>-y#B*pFbWZE^+ic@K@PZ~J=tw_DPd!l-Ws=eG0>0eC
zfP~WaKvCmah3VX&;b>82psqAw1_s=YDPV>Kz?9gCLoSpJDT9)}k#s7V^ntJvaKe&8
z&60B165wnnUv#MlB@QG<&0B!teB892?et#*HqUG$IXQ=dmdDrS0y?d9xv-Nv6%8si
zDB`HViat*_tUy{S2S0p+UjmL6b-)U&zzDo+z6=N%;71U!NIV^Yrh(E-i_IuB_1J9m
zA5gYq8)4C875_mo#X(s|KQ0vDh~`N1C<xWV9p~}XL<U|@M_+SBU_1A7U(h|X&vc}g
zVLPb{{sY&Y=tq$fRXx=_nSe#ZL?48a3>%FMLzU8)2UPz9J~Z-Dm^ZnEXc~?Oh`OT|
zsak!oH&VrSd%rhKv~Vg=HqywjfL9V#Srt~b$yW8^S_vX$*>H74v2+k;O7$b@=oMp4
zc>3A!#sqQFPz-ZZ9dwg;i5m;7R<~7ff)u2VIAFKfz?N(+g?L=Xwf<#`S{E1jgEw@7
z0YE`+5rdp*Q4L_mXj4bsVZbvyng`?sTPgq&_ylIC+C4nlWhj@jei}9?YXfkHM2zlr
zA<mKy!~X~fo^O4cp=H;0#p`r*17>Ja9wb11fG9+RXl%z*Irf1)#uMOGhc>Ju3UGFB
zbv2qBfOgRXca_>d)B`h^fCLx=IdmfVD#vuycaGn<p(8pH!UR5+$9Q4rRU?EXMR;<o
z7d^BWPqty5-b0(2*h=76m+aS~aK(QyoPgEHC2PZhDF@ct=lTvDR-8p2Sj0|}#91sH
zWh4ZM5Gh}@*o&R1jL{IZ^G-eN#4hZ_Lv7)5&<a=B`d#SgKU`KFn1jg9kpx=>9#<F~
zT7`($jETGZyZZ);t5%Ds)}qe)<9t#L)B<*x*C&}8s>u_hZH66HwFdwzJu1hhVMcRx
zIsbhCI%ZVBfS4L~OhB{N_&$sSdw2kGnYje0S|PXqpquh19l*o;<tKSSE@Z-G=vp|i
zTA{z10mRzpUIr6X)n#D7K7F|XM1g>r0H34Mg=*1<?)iMMr2$w#s3rQG^{UFV{4Kt`
zs~rHW{ex6%Mr8LT5}sPBL4B*m{LG_hTH_^VY`41bTE-fkiVa(_8QVlGoc0=T_BI<c
zeaX-+hwvsx${~c>QbLPY#81#GHSGj^4T6@?3ME^(N8AO-BuKzP#omLSz}W<Y(1DW-
zLIq~Ko<c85pl42?#KRm)k^!g9v0K*q0yuEoX9;vQ!h7qx{;Nv&08#h7AGU&~IRE4z
z9^Rq0f6Sw*ZQclkf#;2Pee>#mhbAcPBv(s7R8)0vaWsbRV5djXdbAzhVZgi4qd%O7
za_vV^X+QDL*$5m!R1}_a<$iV4T@l1X-8G@<c)%45$nJkv>6!pQL6HZ%1LeXDr3F`s
zA|XKdGhsl@KZD{%9C&B&Un&Cz$QZ1b@87+3n<PA2w~-=4k01YuGhl|HNM{}$LX_B%
zVW|o9K*s!-(!fcXH*czfQ)ypCIFow%W2X&HvW@HHF<b`@&aR{E7~X@^6y`lXaFF?&
z6cy`7ol~#H4A(WLRG?fd{qt8Sna`|z>cAw$^B<o^^ishID~=GnhHw_*{Qvh2j--Wa
zcN$~`r;%TSg%U4r%n))~e^cB3W2*O~)XWS=kyU%O8bfwHLyFc($C|-YaOgNT==q~K
z(S)Iag!PbjZ{NRx^BypqcyZ&$ktbKaoOyHS&!I<`KAn1X>({Yo*S?*5ckkc9hZjGd
zeE9(Y&;tMtOYl8G5k0zxU-7+Q`}gr1)Hb5`1jiytI;f_oMmR&JK3<wlfdK7uXbq44
z7|@_T4w$C15&ZKg90QCn$Q1*SFvy{TYLigF5K9`VBL2z{#zkHpvZ*10^82U|-biF<
z8>lK8$fkQt=y0|m8S>{1--HzGLoVVop`d$MbWs=>O&n1smtd+fB>xo!lySx!W5QC)
zf5zdj2-L=mNvE(3;$y3lI4i3tIqza<oS*i&3=Ttf2__kGvg8U5N&@wWkJw}itu&AP
zh|RXR#wu-1sq~U6E8E_hlMhMIyeY51wCc%^IA?<+u2I=6H7=>rVrb3I<}|daZHOUe
zv&{U_WvX4z`bVeSKqJ+s&q^IMm|(~$r&EJ=3(nbRA2LtcX{oK&+H0}RR@-g4?bh3G
zkxNg#-`K-RzRuo5&Al|zY}dXB4Uoc?8x%-zO9o9M(7>1w%o0il1uI1Y*=A(0k0hfa
zGQJT|1kyi&GAz+ck(f-Fqz!|UQOq=fG{9b&J`51ZA_zp0A^&Z9AcGSQ?<>W`k1z&K
z<BvbuxJCd|^wQ=qX?E9VS4s8b&4YxEFIHHy;wrAxcAbhY{KiTeB&q83h_GwEx@Hta
zEw!zvvBJ7+5=twv^gch9X2?y0&@S|!w%h)wZQF>oE!9$qrL^f?+oF^XU3968p;QnB
zI`5-T-Wzddp=}&Ea3POe^2sT$-15sY&zxFu*K4o7k2sOyzaEVF*>nOi2o%Bp4A}Rd
z4`qb1Vvts!Z3KXEa>z?eOgwn%5mMKXWrIdBV2urN?^1Y^$y5=_)cc8^XM$^l*MQ(<
zLY|>M1~zCz*FTEz!3GVO{X*!a2gxPsTRH%nF-3A6cK?so$7$#Mw29@J(}7M^Xf$oJ
zsHus@Xq@7T0e5tdbDV=HbO4n>wxJ7Z#AH+tL<t;}F+g4L!4PoRV5{mPiA@l~4<bz4
z)_6e&L)3v6MFWQ}lF_NWWRPgBLY2`@B`m3|iZOw@q0xv{7tZX1hyZK~T2P}C0scc#
zK>Ub5ydjTuoP!*?sv1L@<v1-GKyzL6;upafMlp_&j9ug$xjZ+YlaWp>oan*b_}8wH
zF@zN!%hEVNWDtMk!2lMrT@X+s4q61JU$z5Z?mWh(IvU`86G9k6B4o0T<p@d^K!N*W
zA`(B^jz&Fdomzb4k!?r;RQJPAgxE!j>jjD>9siS2@dCuhO?pI?*b@vMO{9(Tf%0Xe
zEM?C?V?2ZKgBPW<4<1pp$3D^zn9OwBeP}YvpS_B0Lraa+z_AN;6$Ulx*u_F9g^Zq9
z1rC<*i6nd|ti^z(Hi?l_+T=DBYlH@aKr0Gi+{v^`v|}ppWLiDp)Rdu2<xM(4CuI_2
z&_D_9ZEzq&In)7}qS3}9h(Me=bkQ121q*~asRNIQ0vIQHWTUEbTNbz2xH7Jkr7d;o
zOJN#Q&7ILV<%)?mU;&FB^k59IXw7T{(Suy*B4x{p<Cr>TfgbSZAuKqFKnzd;7AW8$
z7dQq(_~-#mFx46UfENbfF%A_N-~ej$6#sBYat}brfT}Z)!3(Zxka1Ae0<zEqRRIa1
zhcNFSoN&PmP!QD{$N&mGDV_l=aD(22;UC?2hzD>X2;Nx8ul(tN4Ps!{n{<Pz267o$
zPx1-Gl0g^z$tx$x5C{X1EGonZ##j#kN1PnC21|X&_#A5h$V&Dhly!k+F>6+gT|u!1
z2*Q1!Dpjf)z^Z-ytpP5ZS&tOL1vKD~3*H)6X!6EOK6{Nrt$~<9`D-ea;KWo4CqzP=
zmz{cRS{?l2w_R)lGXDHZ(JU%k#Vn4Fuz|-|92n4RPzqQ+>B>~3Ml=L}B&1Dil|QcX
zH(kNzFcAhEdILkwy|IZehJef<4F6#WLK&D4!I*G8@3f~5qL&g2xo^`l^9@3H7&aj$
z#6rAA2w`kv5c$MnO0_6cArG0zMK<!0k4)3v*c2pg-02v0THufbm8Z`<D*TvgfHJI1
zm?2@R2e?ehfjnde`-3W3u_2O&Jn~8tV1{b1mzj?F22A(ZLvP5iEL_6TdcDEkDR?u1
zUhqdq;u!Noq`;#-uNglnVL*s(^Z>{}H@}dAjN{M-ID*^6v0PjJL$nVmf(7lPjpgcg
zf+eYRq7Aa>;n9*e5+FlT?t_rWhWQ_=PLh#;117;_dX@a6CkFKf&&|L_7d)EHRm!_R
zw`c>|yCCo02w`jmAJk5Gipgc*D--{-?1O4(x(uTH>k&_IX57)}OoTywk7Ff+pS}7A
zDVjzJSQ`Z1yOQ@uz;P^gP!pefOWQppTHaFsqrr4|24n)9iaL-(qJ$Xui<`C=*u?vp
zC<U^!keqRiZ=B;D_qchK%o`?;$shQ@$CcxlKAH3b<$_5?GquEWneb!YTEYiQK*EoI
z$h_q<$A>*|{t=VM1Rv`NdX4yT@|o|v=Q!bc)1mGzqk3dn6cr2+Yjh|5s)fHE!AF+9
z{zO>&qvi%NwzRdxDv<PK>i=N7U_#T#{9rvMboYusYlNnJwB6ztf856bA9%qJp72Nx
z`9nq?b;U2<XPA%xHu&*$#!vsA@|Cyz<uQL{OYP(6nfH7}%E1nBTqTG;L&rJR0dKsw
zd~5Hp`<46dci$AA_O-YD?QsvT!y6#+pZC4b@DV-X3!fkPm_u(4z`oxfHTc6Pe&-qA
zeCPM0_?ef!^Q*sn?c>C2yGro(E064{P}_9fpUS|SF8*+%Jod5|PVV6!fBDa!{?OTd
z@4=scnH<Sk2N;Ge0MHh4LH~}5|AHg=F0a#^rMnnU0W*dG_3s{Z;aE%z?I1Af>fu;~
z!2*9~8`jOrP%fK}g%@I|<=W5vxTyYAa0OYg1q1K?E-(f^q8`Yh25s;L%RvUOj0SJ8
z2XpZ9{GkVhu<fEQ2!;Rf28mDym2e4}un9ln1l`XCrEm(VunNlv2AwbqwQvi$unWEL
z3&GIypiuU#unf)c4AF2~urLhSunpbt4dE~j<?!>y(C^al4)HJ#_3%2@a1Q<O4*@X{
z1#u9)unsS74-qjD6%i5pkPsd55g~E=zybYcu=FDF5^KaCob9L#5y%$t6G1T)U9b^j
zBKxjQ=`7Dd@QBTD0vu|E7(h)xSaA#M0V!mn7R!zh{ef0$#i)QJb^2hL_{TOX0owwF
z9KeACmvGx;V*Lp59=xFjmBsRYs0l-3>uLlYlJOrpF{MQD8^JLgX^#}6f)_L)WkA9o
zf?*bVKng%G>Ky+>B>2i)dc%B3YPB?P7jm)uenalmf{!GvGY%~Zw2v3CvFBpuWo!o+
zh4FNVafh<RYupVaz(Lt!q8>^x^Fl+)G=zW#aoo^L`J%2Gm$8R_hEleo8@EUtS+XTv
z(#XhBKXwWoYhxze@$xhYN)AadY7rb3L?*_;1~ltuHiQBB(EwH;DKX%IM9Twsfj_+D
zNRD6_2EraOPj)PCBLK}PeP<M4j$<?hgfwF(h|o>it`ySC@~8#`D<~2-ViQ(R@krsu
zoN$It$0|}11%u-y`LZwlQjB6UDn2JBLgyW!&LsXNCRA=}Odxsi<K~=B^0q{p98w`s
z2PQ-!NksqRxO${}YD6+UBI)kq>40P>TTU|bg?2ime)xwr{s%1#qVt3%C*l%6=q?F!
z0-!*G7?-e!ZsPT7L=|e2^N0{Q`R6vrBngevAn0!I-pMeH(>P~SC4=lQt@ApuQ}@!N
zbIfHho9ren509_`NXF-6vMjI;DKTdPN2Vsy9%4Q=;Q$Pv2AJvy)a4m?hYZLe8Hhm{
zpNRk5XG5q8MKmdUxa1$+z+Q01AdbW+%L2}ztJe&o6M6#*vgFLv;2y@xW8MLZC=?3z
zlNc-#Cj<fkf(KrbY0NToLnq*YQZsx)#1$~WsKntt_K`&E$qy2YQdW!(22L9b;|8;Y
z1`q$`8Eg>N6v0%?L82(Z*!+RLcBK)P<%Kdb9ZiKT<7A!40>bEE;>IsaLPPxmY%t)U
z$1D*f>OrD*L854A*a}11>OuVKU_=RSDhQ#43ZqaI?wQ;)+B~AcOoc~M3>laWHmWq(
z+~!I5MoRG`PIrZ&Dk9*Dq9-73#o&Mv|6wtRrQV7$;1&hoU<^%4h#U3t@3Qk$Q8iV`
zBQSw#C=H@8!SAq?YPoPnJw2iuIv@rPbVxiV7dU~cghUlutp}*8VjPe+IMY7d6B}?z
zCAK8cq)c~$iA^@dWcbKIFXSO=fJGf67!6<ycwr#GN-Y8*%ObQU60$c$(j&aeWBmVu
z6Iwt4gv1}pwKqB-M(z<?Z(`175iH9K;o?hi*y$exmMrQGy>^9$LW2^XA*9l>`)CLx
zh~iA|q*w515I$oQrs58!Vi2@RKc*rM<e*F`;XjZqVsFB0=s^4ip)}};5`qEQ7G*5<
zBp4)0YDT3@9ZZJs?kgrxqS%B|?i4cW<Q{r#SCFl0*1{0rf_fIVVM8+3&})O7W}Nyd
z7}$$b`pr^1h*68gR0yU}cjajN=4!JRHAaP0OLg{CwQb$@ZL5P->BCj~3Ott&myAi7
zYV~%sjc@gev3S)c90Cb?qD)weAJzdC2;wMiG?S>x7(~LBHsk=VU_)g@T1EdvLZF03
zOyRcfBSMNGOEx4!J|uK0W0!ap1Hy(!mSP0L;3@K>kQ}K=u4i>62C2r3weAu&*yI`w
zVk0(%9X8@L45H|^Mk6*NP*&roUIS4M#W5i4ivH>Q^vD@MqKO8FGx)+UK80>7qGeM9
z8q{tr%9eVqG*&i4;^-h%Jc=Il<TJeHeF(!a)B;im$DeixREWZW{sAB6tx+6<QZ|vC
zzHd)I;(7JRE)27Ju>v(-<4s28X(%OwY$G>9!`zy-Bh5EwOKlxQg)EDOhSHWg9S3er
z_=Hi|IOO(RWCB*TZ%LX&*KGAdaEFhOfEZka7zQFhF!vww0AUI=P0Ih|AvWzEGO}}Z
zw}*Q;w|avz855ISC3uPl18`Uvh~dt3_j#;LC(}fB|G{@IGi5FFJ~rVYw99nNf+4_$
zQLJeu;__EK!gt4w5GL?XEC|9(B^IMb+qj9Ox`OmVh}-ZaFScT9`~rX<g&rcsKGd#%
zd}VR2;u?stQ{b&FK7}hLvLXD5W|`p?I{|DB0vseYPS&#8Cenb#&7ta;9AXh9?u36I
zBQ17_V8$XX?B<adVif!dfkC2C;AoaR(uU|jZP)hwQuvsW8C6%<J3+^8f6ry~)pi_n
zMF3`V(JFIg1dIj5iSgq@c9k(BriY8iAM4>9fgzOIV+4{FBmn>NH<E;l%c4NK_+zwr
zMNBhimamah<8EeCCQx}M(o!e-M*Xg|Mh>Nw;f*83hHT8{A3Py8MkOxHl1#A%EDYH`
zycbTwf|~j#qv0fj;zn)SSd;a%V3+1AC_xuEA(BgFM+^FX-A2Q9r8fQ8e0@SJZ+f3e
z+E?Idk11%R^|@4RND_#-m{TyBkvggQa+&GYg_qAEtnzoJd4_Q<EQD`8vl)mD;EZpk
zH+1bI@*rX;h9MHv%I0cD8QBCRpp}cKAg-E*`!=fWqYtnLNDyX*cXN#GqaJ4A78)0+
ztWBpGqJ-LxaAHx3;usD}BN>bC97YcgIFd?fw4C@@dWrvs4pL}^T8LWVpoPw>h2+eG
zI7qZ{+8=mf7o@F}*@iRnB8VcHH$B1>=EN>*2qgabA8NUXUhhzhEiZz$k4puXciJNu
zdx{>LBO?g?Y(u!+&L{kdH*Z<txHsEYyOm!PhYAI@8>Og=S*gAIyTOsEZ^Eg650_*_
zm+TRqf9H@Q1Yl|uSR7)L>Ul$EXB%z-Hw9!VCy60+jv+oIS)n9DHiQ-T`*T4=UGkuN
zN*7J;ffFc6p5ytn1gVw7M;IOJt|43|g1AQJY#!Z3pKp1v$MhZyGJDNUEw&*uJPM?y
zVj&LNaQt{GP<FMqPA6tu!S<=2o~;hr0onXVp6LH+#&g!6M&+R*ik)m@eG`X=j>c;w
zPM|_+q;LC9>Ht*yK^s06ZT@3m!)ctZ!kkb7?_S&>1ll9CG*#Z0A(-MUM&)BG;wmVZ
zwU-8!Vf&{ks43J1&R3he*A~3}{LdM2JJCoca7w3m%BM;qr-DifX2F<#kG5>9%ftZ&
zWI$IdfCgm131FfdSfJ9$ss?0W1{Pwj5bGAU>LCn76{xBLx(d!rcSYut2Oa_eNfgc`
zfF7*bKJS65pr9Av%uA;DDPP7Fxy-}+)&L}cxQI9?j^qHwpcXc?L&gCHboBs0eFpr|
zhjr`J_4*^cc?ANCtSofetNq&L?i5%6u%Q1dxbkDp*4bzDh9|<|Dh6TTLZc3-Ry4dO
zaHfJ$Ar3QE+k=RKz5KEJzVA+O`fKAdoCubHMun(D<BAp|HUP|mayBhxdRKaPDgZ~K
zfCZmYn!Th3P@RS$LX2rutlo)-<9R`%md2v~hGolEak6b`QGUh>A!%|}7Y2SR{PDi-
zhGyv)*^)+RRr*W6p~vcdG5SI$>LkC?u@F`)#8kdm=s0WLSEBg5Q~|x~z1|E1)5&-$
z%GPM7q+q8U{r5zTH#}hAyxBK`hbDZ(kM5zJ4WP`3hd0(>&Lo$q4gd=LGhxWeeTKN#
zxNO$By4Kh;DtO}n(*8c~0Yb~l+YbL<w~R^6=3XFq1Ml&}J;`9KQU~*!m?6s8oogi0
z%JU?rLV@q=GsMfGs`MYe3pO@UlNruV2kt7w&*09D!af4(Z>sAIV%)-_+^nW6e7aPC
zqT3j3!6;JSI2us>v?O*vh}6wb+ASyu8sI^8SLmSjWqKDjBP%RLY{9=^TSfQ1pH97o
z{3JsB2qAAI^<!HfpRi#u;-X@GQDEi2X+9Pp{K0`k=N~Ks2oow?$gm;80T3ffoJg^v
z#fum-YTU@NqsNaRLy8<pvZTqAC{wCj$+D%(moQ_>8~~sufQGRC>D<Y)r_Y~2g9;r=
zlqWxYMU(c-*H5X_r#<mW4SN4HpHF`E;z8w!&ni%+Tf_2fDz>cIvqJazR8@ywP__T|
z!BvW=(%hcf>cA7qZfD<~?BE8D>h>SL!dpkd!L~FmP`P)1-h)%=X+F6>A^V)1Oe|c?
zQ1@Ma>saYHIM>XojlA=q!`HAM&YVrVw(Z-vbL-yCySMM(z$x0i$uK9{<H(aMU(UR_
z^XJf`D;-7W9cby;#iBd6juf1>$M2P62aXS%&d?_#6P>+%bJwxsFAPq<zWw|7^XuQw
zzkluFIJqa_fLr0y&w&Uch!lYaCYa!Y1M<U^g9k!L;DutDHxNO4Vd$Yw;%qn&HOOf=
zkR*sT7ov#BeCT3P@X7xtqklBkXyc7I=BVS2Gy+)Mi$D$-PHbEVN#ua{C;(d!K{ojl
zIJ*QB3@^#B=A?AnNSREEXVoL6Fn^_|i<H6W66Tdb#wcTaJhtiPn{dV{=bZlexR7yZ
z=D8d?<n-z1pYjmM=bwZII$%A75_+bdj5g}%qma6%=9;k4Y3ZeyW~%9?o7$-mo{@$s
z>ZqiaYU-(|J~}C-4sq)0tFXo@>#Q?*nh>a|=Bn$iy!Ptrua2(DDnqmuYwWSeChMxL
z2;mCsv(QE>?X=WJE9|feDXZ<a+;;12aLgLuY_;T;Ywo$|ru*Er*vj_pyYR*<@4Os^
zJ8n-B0)@{yi#q?s4>|p+EAYSs7i_R}?6ynq!VEX;@Uiv=bq_C^^gxDB^;FzL4^pHC
z)h7rcaq!3_mu&LMJ|&Fp!z{P#^2<C%43st-TilaBf>`{FE*x`N)IFRi$r#E+7j5*>
zzp6Ye%uF}!^wYe_EU_RL^MrHN|L{CbSfv=?4ANkSE%w-GD$Od?Xs50A+9XL0)IC%W
zMf28MrQ$W&c;~J6-prXzDcgVtE;!(BOBVOkJq!(%-E{Nq_~VdA&XeD34sQA7m_J<j
zW`_gCiOpfzZHDBemu@=Jl+T#?>a4e}?B+eejkQlSOX0Ip;vhsuz^C`_`|s4IE}!ef
z7jL|#u=D>U`^+4_W7Zo8F$w(i)K|}|@N6Eh{r24BnEX!5-^{ZV&X<+D0Z>?D{rc>;
zuWGxMb}#?@^n+_tfI@}O)92*><Bu-ttD6Bv=e`0O@PHn|UTo^ezy><7R`>hS%wPeF
zjg0{o0Tf5gG}Z%Sgzjz#450`|*f;pS=7A_op$bRxz0X;2W6%Im&1UGa#etB7ILx6A
zlcK=*t?-9H3}QsSmmRx(ZHGuqViJ3JLLoZwi4G)UbbvMj11L_3Sj^%9nb;~Qdhv_f
zlOl9LW&n|C@r-C(9~T<}#x}Z<bz*$Zzj&9%I@%F(Yb4ei_sB=K#qo}S3}hDbIG;Wm
z@{s>b`=cNi$;c5BGFym@q$C-p$VOW7l4>+z7bnTdPIjx3m<**TP4~!zc=D8}gjfXc
zG|E=Gl6s|dS1M;oOXRKcQ?JaWE=d<l1Jv@Dz?>5(cS+1*j;xo#Or|n*G)!YU^O@&D
z<}#;A&HXeJn%K<dv!q$gZhG@K*VLvs$B8O#e)F8@{Ld|KMb37*6I$j>r#$D$l5oEB
zp7?B1Jn6~Leu~7N`3$H)2eeOr8uXwT0q8&%%24MN6rm7}s6rb`(TbYop%KlfKPPI@
zj(QYEnq;F!M~YC6e)Oa$ZB0n^NYa+_)1)blX-6^Y(wb5erZUYbLuqQ$o(2=AIt~A7
zK6&cXqRtYiLQQHriE7lQb`q&djcPWT>eQ+t5~@<osxhf*)voRlt6B|fF1hN}vVIY)
zVoj?k$!gZN3K6YpjcX&>>ejld5Uz5~D<J7=*S<CouX+tE8u{wi!paY@f=#Rv32WHK
z9uKjKjcg7X>)6V+4ziNXYzQf9+0I@LvziU9`#9^_(h_c+%@VC@TS;2ex)yDqU9D_?
z*V@<GHj$_m*KBvo$lBiaw=9b-Z-<M=l@=1X$o*_???v3^BGI?Wjc&Yz>)h&&4Z70J
z?kAUP-R?fuxRBJYc%MdH@0u57*d4EWi&ft9y7!piHRXEe+p_k)_r3#5FMa>_+bQni
z_rKQDFMkJYDf<HWz||5kffo!X10(ps@Qkl48BF2V`4_?%j+}xk%;6h3IKv>$)rLDv
z;{JR%#3(M+h)c|3{G2$&FpkuUTTEm7)dYVr&au&ET;m=`?ZP?^vdMVt<09YY#X?Rp
zkce#LCPVPX5>&F33C3h6TiGQ@p0bt&ROKssIVD-%vX~JjVPAgv%yk0tnAdErGNbv;
z)>Jc_=j^L4!}-qjk~5w6EMhm~`Om-!GoJ??7CQs_&=V0fp%<+bLnHdpie|K=h2rQ(
zA3D;L&U8;IZRtN_TGOEBbf@q9X;5cc)T4fLsZA|uRHypPt7i40UH$)RFUMNegQj(@
zt$b@-?^)NoZgQ`EJ!fDCyU4>P_L_}->>eju*<xmPvuXTnXlq&8(`IqCtu1A2XPd;^
z=5~_3{cR41Tiih=ceyEiZgl5Z-RoX(yWI_Ac*lFd^QJe7?S1e4=3Cz&=6Ap6`)`0_
zSl|O!Z@~@zV1y@JybEXefgS$v>_%MT|D|}vqkD0T-&f-sM{dVG?p~0G{I??~xp_@~
za@(d{<=tg@%U%0&m{(WkGcRq;ZQfj*=e)B!=lO7b{`1NPUFf?ddeIwubfn8x=}Rwc
z)19tbs7Jl8Q>S`pt$y{oW?k!<<$BlK`gO2JR_tRhYuU}7ShWAAy{l_ydtlxE_NvBR
z?s=tq-J5!MyvJ4VdoOC={hn692fn9+Cwy29fB2dvUh!FFeB)dCc*sXp@{=EF<t?97
z%x6BMo9BE`J^y)#hF<hJC4K1+dV18yRQ0RhsGeP~Y}m*CrL(8KuWf((dA45nALV`T
z)A@Vg&(zPuhjs3aZ))Ku|C_~UK1H4X{BA~H`a4B_^?AK~>`$8d+n?t3y)RJkhhLfF
zC;w2je|}_lU;TtOfBS)%e)zvr{`0S8{q4V0_UE74@5g_1hJXK;O8X~(;zWQ2cuEI|
zfK%mv3kYrj=zwFUfDy<^4M>5{WPukbNg1etTLpm~$Zr1=2!d0_fg^ZGA83NRgn}v9
zM=QvJV<mzwh;Jn*gF@zlHTXs`h=Z&}gF8rHJ?MjL1%yGkUPDNPn52V8cvd&4g!N{G
zO$c#M2!;D5g;Qv8RcM6)hlN?laa+iR2j_)fC~{#ah7CuCWr%WTh=voVhHL0@ZRmy>
z2ZwP;b8|?CA7_VmsB?L!hb6~{eF$`a2#6~uh=XW!g=mN|hlq*Dbc@J{H|L0tD0Pu2
zi9JV&m56nhh>1g|iJRzko#=^42a2IccB4p&PiKm!sCKESidDyotq6Co2#Z@Mi?e8V
zwP=fBhl{z$ce}`oXXlH*D0smrjBQ7Z#fW&vh>ZVpr;N+!c+KdHc?XTrNO{vpjelp2
z*Qj~fsEvikjok=(-w2M2CywK2dgW-2k%x}y$a?F@j+f_-?<jjv#!B*tUrbn!mlcos
zC{+8%kE@e}|5!i)DUg^$kOkR32Z@lDqmT=kNfPFeh6RxkSv?I&k%4287dbr{sgZu<
zj~$6p9|@9b!;vHDJ0)q7uqBcy=}{}mlH}!*FKJORDU(fuk~LX6H;I!lqmw%+IX&r<
zE(4T7SzHrIlwM_&N9j02sg#;SlTA5LPYIO`!<190H&tns3xkzei8ouxmGk12UwK{h
zD3-rOmSq_>VTqRTqLyokI%nyYM<tbU=}!M`NtfONmv>n-d8wD&!k2xCUULbUo+Oxq
zIb?-tm>6i6iK$J0$(YH4n2!lxNhz5mMVXapFp-Iw#-f><86EWS4%jda)8GuKX`0yZ
z4!6@Dqe%uw5Sy}j1Rl@<6reDk>5cb@OQC5=@^B5P8Jxm7oX&6!hLRn>8JuA-o6H%T
zwRtwVsZpTWo5-;b??9Z`nVr@F9o9*l%h{aZ=>Z9#I?*Xnj!B((bDi0_p4eGF%%Ps%
z37+yvo5NF{=DC~fgr0RI52wkV{yCh}aGb}%pX>RZ^9i0Eut4^yj`*2c`iVyH`JWOR
zobGuR5sIA#dZ5ke0Y0>#1~r`z`V{}bIiVyPoHbMyBg&o`s-ev30SB;29%_%ofsY}Y
zMElU6C7PqtU?oX$qY}EJEXtfO%2F}fPas;OM1i9@s-t3|q$(Pu2RfwTRiwDrpt^;m
zJCveJx}+zn6k6(^KnkU@$)U$ZrSz0rSBj-LbfH_CqZL{dZ2F{PDxYL3UuJryR%!q}
zU?FOXK=RP0fQp&|Iuw6eqG39xv6-L=0RVUEduZAN<j|)h<fMUGqK%WJC3*~pil|4R
z5H-=L=rkNNx)3X13z8Z_aayS)`ldjUs_Ur+QNXEmx~QKDs@5l}uVD+saH<Bh52{+J
zJh~IUTB2&82C_Pz<7oiH5di<Tx=aBes-wyf4FC(f%B$_;s=q3stlAUUN}Ott2FE&|
zWD2e1TCV1LuIQSs>bkD%+OF>UuJ9VK@;a~dTCetculSm;`ns?D+OPiluK*jc?;0D^
zY76ARr`GyA*;=VXL88a-t>Jp02qCZ(Td@{<u^5}N8oRL^+p!+|u^=0=<tig9&;t~7
zvM8IfD!Z~Q+p;eEvM?L7GCQ+0TeCKMvpAcxI=izx+p|9Vvp^fPLOZlXTeL$v24Rr2
zO1rd7+q6#mv{1XW7sRqi8?{Xvu?L!<BD=L*+qGW%wO|{zVmr2EYq4c^wrHESYP+^<
z+qQ1|ws0G_ayz$lTetrX;Q?5ix6b(*c&oQq%b{f(xPm*lgj=|Vd$@=jxOTg^jN7=5
z`?!!Bxsp4%l)JcotGBOlxp_OWiQBoJ`?;VSx}rO}Vq3YUd%CEbx~jXntlPS$O97gT
z1i28dx5*H&E2~>DyP8|O%1XMv`@6s!yuv%YqwBiHd%Vb-yvn=0%qzJa;I~|$KK>vD
z$Ev6c@w~Fi20B3wP~f-L+q=XYzT!K+<XgVxi?7X_zUsTa?AyNXyS#lHvBq$m(|fFS
zsu1yusM@;|>mUnxd%v`Lz5+bJ1YE!doVf3szzV#;4BWsDY+MnG1ki97_izgl+YsT3
z1jdje`~VDC8yo)z9Ks?z!X#Y6`})8roWd%+!YrJ=$BG1(`VZW@xeSrFX5bDz5e(tl
z!aUr=KK#Q#9K=FA#6(=gM(n;XTp0df3zv(*etSg!APzfx#8h0xR(!=+oW)wa#a!IQ
zkekFjF~c;x5PBQEJOK_<?8R!l#%$ciZv4h@9LI88xfwjcJkh@&T*LA!p#0Da7d*#+
z9LRz^$b?+ThJ45^oVRKqp!Yz%$LhqgdImkQ4zV!Ch<wSIoXMKJ$(-EDo*Wy{8$kXL
z32Cel;kv&v+`X9l$*kPUuKdcd9LuuI!1;@{608r7%&7p35Vb6(Y|zJ=yUVjY%*0&G
z#(d1koXr1}g1wp>uHTyw%-qbf`pn8)&DMO)*qqJU+{U*n&9ch73enBpjHuwe&E|a0
z=$y{#yw1%#&a#@h?u@AHJkRu8&-Q%J_*`ba9M9s)xBLvH!ko_nJ<tSQ&<0)2(frTz
zNzKqKrZkbz-h0pzJ<$|h(H3pU3eBRR9Hbrq0RI30`<%xYJ<=py(k6Y<J{-~+O`ou#
z(zEFSEAS7!Pyx*x&?tS=IGxivz0;GM04pt@$@&^T&7wtM0RONK3E%-Pji^D*(@y==
zP#x7$y;4gZ&o+&}L3#k|@X?>DtW|xWS3T8YJ=SDh);Imr%(*5(Ism2$0KI?@0I&}0
zU=#n3Y}R&t*La=R1r5;(&Cm|P*NIva5HJJ(Z~(pV(K->=NzJK#t=EqI*pMCB#QfF4
z%qk)6(d1AQKe5#pK-ps|*`OWTqCMK0?AiZ|E&DtGTb<c_x*#rK+F?!FvOU|hUE4-{
z04pt}l!DvM2>}g&6bq6QJ@5|=pc4&X+PZDq%Dvpo-P{k%+x(o|yS<?UK-fDG(=lD#
zA3dki?cCn|-QXSGt9t;Zji@fFN#xz42T-m5fZfFX54JD>0Nvf<UElV7-}nu;<qgo_
zRm%{N0Fn9+!#&&$Kn@1*)v=x53clbB-r({9*v>3r(Od)&0005L6Zo(K5D=t|?ciu0
z{^20b;QJk(X&b*DKodKm*&wZ<2_E7u{^BsM+>33$O?|dA-q9=|0}TKXHBkiOTH`Su
z<U&5=v)uun{hV-X<Pfmr5TMjc9-bXe<WfH6RDRbKVB}C<&T^XoMvk{WKBl(WE&%}m
zA^8LVEdT%jEGhsN0h<EZ0fP(-3=R<z5D*X@9UVzaOo#~xo}Qkep`pOQz}ni{=;-M8
z_xJhv`2YX_00000000F4u*gY;y*TU5yZ>M)j$~<`XsWJk>%MR-&vb3yp~CEZ&r`qx
zZb&Q|kI1BQ$!t2GPMvSc2v(rjtai)odcWZCP)hAtC*rhv&2GEj@GrT%J4@pDynfH`
z`?+&;c0zxJhKGoWihO}(gNu-nl9QB`FO5`>mYbZNo}Y|#W_F;Zrl+W>MwnBYs;{uI
zva=SfKCZO6y1TrFwxegg!o$SHa-u(^#>>pj&NRQt!Ozsy*4G=+b;{V?-rv32Rovj^
z=I5Z|xajQd?uY8+@ALHaZ1L0f`uqG?;{5;v3T*OkpuvL(WfV-vu%W{o$aXxONRi^g
ziWoBnyr{9G$9Ek6KZ+dbEhNd4D4Cf|$+D%cl`dn-L<MuE&6}2L;@rs-k<Ok#gXZ}u
zw5ZWEM2{+6nk6aIr%;hNjY_pDw1^C>YTZg?D%Y=IAw~>Kwk!&-X48U2tG2CGwr=A-
zg)6tNQMz{X_Qb2VuT8#w1GfY$xG+h=h7)&0thlj7td1k&WGuO|LCTgh_rt8Yb3M+U
zL$?Dhx^y|xrc+}>t-AFy)~;h4gDtyuILNkhf5xr5_h{a}gP#U2y!dM3#*@EBuDtnd
z=FX$v9xJ{2Fxu9$|G}=kyB_Y|!@mJ9zPuXp=F=aeuD*Rv=<ehDgfG9oAN2O~AHlD`
zKMwx>1vmr$fC3ii0)Yl5m;!<dHb?@44o3I^gc4S$0fiQ3C;)~UR>)z85q=0_gCdTY
zV2LIch+>KXuE=74F20ywj55|oV~z3Mh+}&??wDSWK9&b$kl_tUWOqg$nO%}fR>x$M
z(LD)eb5c&3T$NT9hh>(*ZOLVCUVfQdm}1sOW|^^_iDqkRu9;e!Zk7gToT1H0XJ>Za
znOUBCR>o(ak^Kp1V}cHvSfPd%hG?RJEy`$Ljy{@Kq>|P}X{B*pifLP#Zkkr7o|Xk_
zs9}vt>Q|<ox>c&GzC~ZF0<sEgRI<)G*Q>VbS8J|H?aJ$2xc(}iufhgJY_WR<i>!Lb
zE<2h3vd#(#ZL~#BOD&StUb|$r+B(T?w^4ozE|ubrdu6%iYKd;TU9QV6nC`wiX1wy6
zNpHPr-it4r`tJK?zy8VzaKLpAOfa4XAG~M63j4`$!+|~wF`*Jqd}zfMD~fT(jc&{_
zq#l1fX~-g5N^;4Wo{Tc5DzE%$%PxxwbIhgAOf#xB-@IzhI=jkV&-wlgG`~U*{cq7m
z3ygHq1uxAs!cITEaMV&eOm)=}UyU`zT5o-E*IsK3cGw+{O*Y78pFMKgYMab<+bO>d
zH_LL*{c_!Q%Zzv4HSf(g&VK*BbKrvej7;H%HH)}PJTH!t;*J*sdF0nMPPs^vU(QSa
z=9<4`dFL8&4*D#jj~+|uroV!E>Zz>G`YEozUP|n;e?oiho!pN5Cc5ulN$<W-0(|h1
z3{U(b#vh+Z^2)>WdGi1<5B+w}Prr}!)`voP_J>u^Jw4cek4O08!$E%eZk&()J>IX6
zj{5E+)qecLZBPGW_TT>y{Q7&rfB%4(9{{iMzX3KyfCi*S0TcLy1u~Ez2z(&p@+ZNK
zM6iOAyC4QDN5KtVPlF!Z90)_`xek&Ld?P#|=~Ae|)3LCHs(T>}TPMRA!mfrkoE;8x
zXuBQqFn2!uA@71H#NQFIh{8J}5{swAB_gkhPFx-oqv$*nQn4BiyyAkUsKxvLaIuTp
zI~*7<^Tja^rHp2bLl)C0f;F-c1a5qz2jVD44$!fV7eXT*&!fjZis6oatVJIKxgIeR
z5+s8>WB{$GNLc_fkdO3ZB=<N;JXW%fmy}~B-?&LOb~25hG-D{oI7%><vWutGVk)n=
zN-DN8im!BHESES-B-XNsw-jP7f4EB?_A-aRv|%u3I7}E8vxUc0VKPs+OcFLTgwOO~
zG&eX+3|6y(*OXv3AGl2hb~AzBG+;OfI8FeTvw!E*Upnu%PWrVoe(!W&Jl8i*^wqO`
z_Y_|~zqe2B^)q|_v|d1`H&Eymw0Q?rUP6zzP~tT-cn|emM0Yn)+*P#yb{CahMqjs4
z)^#*>A2nS_M>kT?m9%pw)m%z1w^GWrG;%L>Tuc`?Q^eJ@a5oiPPXD%3zV$S3Keby>
z=QdQh6}4?gRa;Wewp6k;HEd7yT2!|-RjgIDYFCw7R-d+2rgb%GUo~1-hc;HAm9=MQ
z)md6^wpN<8HD+&hSzK2(SCrMYWOo%=UO%>1j`cNTf3;X(CpK7!6}DlARajyVwpfBS
zHeiqSS7i4!S$tKtUYC_uX5Y10c6BygpEXx#$2D4Tm9|@_)mCb+wOVSmHd?QBR&19w
zTV&O?Shp2cZhy5~UiCItzqM6xXEj_{6}MH#RaJ6NwOmp)H&oAO^;C2>HC;?qw^G-Y
zRCXV=T}E{`QQtLGcn39JK$W*o+E@Sp8u=S!Bw)SleP2Wj5P<l~7a0T?0DSEWj%XZU
z007=Ef4lJu1OWKJ0v@n6Z1LX%A2<L2NU(yN5r_pOzySF@a0CDVA^8LV4*&oFEGhx#
z0c!*;0f!I}5E&gH7$-3xARr+mH6l47Br!QQAt5$7A~!cT8#hZLAx$D7Qzbe{Avseu
zI!GZWZ5~W)Ek;u-Q*lfpAx$|UQz0Q!IU!{sA!<1xc_ATvIU!F=EOJgLO-@ZtQfX6U
zQ&DGbVN+3XX;5cpXMTBLdwY8!Gm{}pj37&yBUyzZRhBkYj3G~?F>8?_WTzl%vMG40
zA$hnmY^*eGwKaOFGkdindB#jtj8SlvPkF6+dW>{{dNzf+H;~OcoZvpB>Rp$<dWex=
zilSkKxNn)MWRkmoh^T*zv3irGdzH6#q_a$l#!QsTOqtYEnafj|)KZ|?LazC5nZ$6a
z*K@PwLd*PU#`}{oAfpu(qZK}<I~AchA)^&dq7`7H6?LOLYnM(VlVmKfN)@6@A*NL!
zrB^$#RUx})6sKe%q-r&>XCkp~Hn@2qyLdH>RZNU$Oqgg)n{HE#d0~iseUN{DrA$zx
zO>VMrPN-{W!Fv_KeL|xZjDl>EqehaWQ>dkDjG}C>qkY1-fHstXQjdgpx`a}whi9sW
zdZL+crj&WNiD0vff4P@yxRigsr+CMR6wr<<$dFFPnQz*mQ_7%g%cgtHvVPd5Vb-g1
z*tC4&vvz=hfQ*Wiij$L*iiewuo12-8mzS53n5mnfo0X@pu#%IjkF2z$mZqnsucEi2
zvaz?Nrn0TEv9_qUx3`C<$%(AiiMH97uF0FY#+0_%jk@NglFF{4#i*v&skhg*s>Zyy
z#<jQ9thMC3!@Z2d>WRwsh28y{#N?IA@tf8AhT;CH!`r*V#<#=Rs>A26$MB`t__oI7
zw9N3g)a<y}__*Wz$fk+Ksh7*Pj>@%{)~t!vwu;)em&&!Q<hzZ;x5VARj?~Ao?#!3x
z%BJMbxa-uX=GL|G&ZPC(r}W#k`sBCI&(F-+>e=bd#pwOa^#0rD;@0W+*Z2PC+RWkI
z@9pKx<>lAs^40q3#rEpg|MJTI_}A#?=jH74?D6L4`1|te=JD?F{`%$q{{9I6009Ub
zNDx2*5}Z=KTF9`W!-o(fN}NcsqQ#33Q*k1ZprFT(AVZ2ANwTELlPFWFT*<Pf%a;J~
z{hLX%CQX6^a_Stw$)?YHb&&Y9W}?<iMkbi~T*|bm(|_a!6uW1^3DbU0m)^q=g=rZG
z?*3uTO19}(oBhs~T|0BDRh#(oWmU^|X_*#HB@Li5vy4=leuK@-G@wb{v`*vBwTX#A
z*t(GE&TRa+CRM9tQb2Z!$%{L3S)kR-6#C!3eLg{pUg|GPuFW)0!~S<K%a_VF(UhLe
zd-G}3OMh>!{hDb$xlD!k4(^oG&gamhOAqNm6vpe=vuodeQIrRm;KPgmA5Xr#`ST@Z
zX2l7;r_+0MgxX}ZW8KVgCS)zIYi>ZatyS2x$WAIewn<KWMU|6M{%rHe06Cn)%PYy$
z<W~qfO;Hvb13-Wb963#}+CO?70E0hx=tRs+^~AB05;K`|Ku!xpBVz(N1^CYzIw@rn
zJs=J+fh!b1K~p&$=(K=QGaXm}Sd-}VL{{49M8iK}7?9IycQr-E0`~pm%>Z5X<=9MP
zYE~9D6zIeOnMWo`Ba{C)38j?(yz|Qj3(#`TLhX=s;9gMm*yI3Dx)WtiQ`SVunKl8q
zqYOUzV~Pp7K&A;F?wFH>I-_NgM;4?8@>o6R7?Oo5=d_9rP3KVmlf@~mwi+X;w^TDm
z7G2;1+&}f;K`O6V+~U(Trc}t3Cay76P8NZ*HEb84{=-ccc4T43u*%Ft54PaqI+H(R
zbYUBAO-V!Q9jK7%$7AXadkSvxk~(iq?+81qzP?!2tWEx?I_xdK-lH$B!0ln%Ir;+f
zDov!3T3k)t>`Lmc%lPD+bR2h_(?=dC#NEgwmuxabseFgt$}G3+^2;!bq~25PJ?CCi
zK*>iFP)7h~4;?V>x1WL`gmS?EFwFE#PDYyJ!HmU-DP5TV_$A~BIjxvgBQxeifKEDQ
z@}^D=%xIN4Z89)QAvvY6k2x8H=ng${E-=hYczEz;)HRL&<Mr5Z7Aj;ZgydAFHy-3v
zzyJhPFu(~}jnn1;H~e!(P7p*hQyM$zP%s8+{$mdXNzX*a06wN!mR<umU_#eM3O)hh
zhNGD{qKrEZITq3RK-SU&H2w5nV&1-Z<B!|)D7s`}VyMs&dx40!|3EVA^?ab_&GpyY
zM^CoHTFmK8yVB|isek<XPsF<coP`%u+hqM}<YEg*nBQ0|Y!`Pt)0V!Y!q&tD_O7hx
zCS0Z3NBw5iE?$9Zfv0F7wPq3yQgy*%*m8!yCMK=-vBDGyoD8W<0m3Zw>mQT2p1DYM
zLTlYYSRAAcsZ`MoeHqIp8}pbBpW_h|oa~1{3?g>_Oc1jo8u5roOyWmo=9HT4<Yr9C
zS)_upGb##gKkq=!R!#t%sKl;Nd^<-sC=i5NJ*+Q;s#9Ug;=BcP>mQXEzyhjOwVW{N
z95dn33}`|R3=AMZ{?LGb+JXTHs1J-a3FH8b;4MEINs)Y+NjWG$06IEvku%9+S==yy
z6|h4MX`Bh~CcuLkagmUCK_yL`Hvx6fBW{MwN`D5RpMUrx48gOdAS3yYNmg=|Ibmd;
z<bo<gEFc-RLQYn^NRz1WZ8E{kq%vo+Jjh&f09xA*X##<oZ>7(c=#Z5zY89xNh;deC
z+?l<?5|3ROt2Te&W3g<)z7f@AdpGonHwy;;EnDK@HMKF;7;b|?ZvJBooWewDzHtZp
zD3p#(xt1RuD6DAxgIRo_T179Kg^bc<qpkT@H%Mhq8OBf&^BmW%G&mD<bTOst<CXvZ
zVF_Nvk2p2~O+K&n#+u}Chd?a|Cxl4Uq8gPUoKT`tm&(+pwuFgIaiUJ3s1++#QD;)T
z;&P^OG@URYOw62#Gk0czGWnzokfO%{zW5a9>1ZaLd}bL4;3Kkr^_~Mr<$-JfO<p#W
zcw!yE3u?m5(G6e;tw<~?vIb1QvL!_bvPm``W)DAVZ7Zpy4F)pn58mx0vrajX?`UF=
z4DiLUh*d0O`^uDR)+MZnY^+mU%NBG0SfG=K<PB*?G=_LKvwe~JS8&I7tMr9552s)S
zFV2CkZ)E`x%sXfo;#U)tvXmxhm@a5Mvpo&&wl<-$$2@g<&}NOn54rWpL)H0B-Pp4>
zo^h|gJX0Hs4hFa;wMqH1v5=Ae%TnC?W=wlZBH-e*Ce8%}D_GI0-2N1(IwZ(Yk4oVR
zn=GkL&9H_y%v7i{MXEWW>QAiNmOAvzTXfKnR(Zpt0qj5&BRBx0U^~{fl+`Pcx=dLp
z0j8Qb?~7fE)Mg`PfzoZ|tAV_0P61n}(Gt=sW0KA@X<L`A3;<G0IZ*7j5;}TNfKoM?
zh6$3;h`f@85(5y-QlcE4DPvjxd2cQYjhRekpVWE9Y}qY#eJfV{sxyYt%BKuH^AB-w
z4_fJE3O=LQQFL7k8WDqrB&Pe1Z{4DTuGyYwTJwi_l*-eBZVDO*O_Scv1PuhO398+(
z>fGGsSsYYNa5)IxLpKY&T_E8`Cqrq72{*qsxyGRZ{a^@pY#=_gu(Fq(9U^l0+0c&m
zc|5!n5cA|IS*;0u@RuJv!^R#K01HjXpya5S^+3<0ij!@E)-dU~d1<c6Ag~D-(Arqs
zG#OK7^-_f~F<~h+MibI%(jOyv87yg$%s(DQ-L-HIbI}zzkb5jOv)Y7{Z{^GY){S5a
zARIAvR<fN5pt;uuPL0q1T)4=Wa%ZwkqZ7)4Ui;7>V5nr_y1@;#w9qS0o=;XDt*V9t
zC2NXiEJZgE^|1+kB3@IBVN_1H?|BVz2Q>J>5UHLtD!PydFSM(q-7v*2)ThuEg2tlq
zRp)KeF0I?thPeM=yR>4sE7APsSD-nCIt?0AoLhH;0NX}8Y6U{L&!pJKo(=#!!0g65
zz9K4<w&W*Id6Q7vC)O766m>=uqQt_Mh%iA(y<L`jXdrZ&xbkEAGgw>VvaVD)<v+jy
zifW<tF;ua*#u>1h)DN;R_Riw~_}Z2Ygwo3n-~h=1j=GMgu^z_niX!hulWgpOjxEm$
z=QI>0eE&n4_b`6{Huch|*Ds~}5x2=Kss9gYY+RQEVE;d?kNr5)gx@pa2P$Sk7S@l;
z{4|k$)MS5IaZPo#9C~(Yd}ed`)D5Qq9JRr7|8Nec04m@`Fto8Nf*?Z$bZWrGEF_gv
z{iGG=a&)Bf3@Ej9_vISbGJ-Y-E$KiisU}Io(n2qI3g{qoS>Riw(SiT4Q9W20yQUj=
z&?@>;QU^v8dXNRUP!s213jRZ0Gl5d}MH*i4Fv9jJfJay`1z+fbc!>uc0wFSwSB7Tz
z3aL<eYPg1MczHIFc}+15oWKbtU;;wG2{Tn`bYKFda49E7dR68}t}{6U-~o5z4}R1D
z!!rO6U<)+=flCum2$K^G{s2lHvJU2uBm_VN@CF@Iau07XJRjfz9^i;EG9wP)358%v
z>cdF`R}+ii0Uz)t4KM;8kOQc}Iu3v}IuQi_P$fb_3Ugp6vFJDwAOar1iDaP-lhYMw
z#yEEq39XX^rqCv`S7~ih1TGRf!14;LpoycG7da6ECNMcV0*n(NjKt^x#)yo{m~T13
z1H1@1S%HWHpom@5i2qQG18|JVSQB{z0**t9rMMQ?luf-+Q(4eIC_*aG)j@zTJvLQp
z3&{w>A{w=JJ@6w#ymAWJAS^Q&Qz2LrOBjwE1!yzDEYr0;6VzwnMJhdYf&V}~zeSTX
zk%ia)V^Q^!Yb7*6J4r$oR4w;_K^I9ucaR6dVh4GU2M_67ckn?q_z#{UDgneRfB-7&
zb3Mhu4M({@OL+&N0vZe13fYh?_C*t57=}BscxTv_Wf*yE7?*OXVQyFxaL5#nP=|I{
zhXhs*duWI02Z&BFNjk9vW%fssG&vKH2$AJ2ag!4ta16F&e2fzf3Swqi@hHFGA{~+`
zngtzxMGs=I6GU)Gvs6+o_8j<T30{>7x0OoZ@R&KV0}u0XpT$NwfdE$mS%d;NJK+N8
zLJnQyeg7bhIl%%+mlfF1H9}%^G!dISL7STc9l^IKa+Cz+lof<2B#cQYwy6`G<yp`F
z;aGz?BgDxYDQH5qHiQ1fE2eNpm4-oppezBUE9=xj*K-H(*-P$%8=g{giS#}V=Pf(9
z58{<QG|?KAHjy+jKh={38Dkl{(vme%4-3W%F<5gcG%SFSohWoY9cmNZuwdwrfGx;9
zsTM3C>YV?8lU;xe`vWSS!7%H>qFH%8q5&E!<dDphmTLJi*5Q^yx@@8_mqvP|N>!IP
zF%Z$Ad28Vh_@JbM`4k{`6;rBS1b7%t!4DqF7K*_X{2&%rY7_i`5AZNea6xVOa1Ln7
z7G=7nVmhWZp>T3qr_9k5hm?d)AscJqDJIz(C`l9e@EC&%Fy-VAUHT7aw4ZGM@hxXL
z6R44Bk@^%URdQ>=r#^wHqd{tr@hka|Xg>O*2{5Fjs%#yBq^O#zEhDA>aF=%as<7%5
zgHR*<K&P>KtGJr0y1J`%YH9n>ro0-fsDcg^^J~3PD=8F`q&I2mps89Fs%l9Br8=!g
zMFOgNt=Kvqtm>-4+O3;`4+$5p{lE|Tzy&)&00Zi+%K@(9nik}WtL)mY?|Q58Dz5XY
zuJ~G$1Cy_?N|Zj>8)7*uEDDH3*=s8XtzkG}B%=`|(6A<u5D}3I5<9UJOR+>H3Ut`8
z2tkI|VX@qSVc8n8BAXK1%B1bVuPECT;u#$T;0mJfvZ7E5DZ3vl3mxeH8mq?1F$h_w
zIV&AIJF~ia52mnSAH=9Y>uv9_V69-ZypatT8kkq)fD48SW9MxMn|K_n9inim9>I7I
z;cOx?sy~zp)(R3K)3F5Mwc3$}Bipua8xkce5KVftNBa)7a<_L&w^wAhc#F5U>JNR3
zw~02TfE&2AGPru1xQe^DbbGbNMlxUv5?T8SAWI!UGyo)_u#lIwBlEVN`?)be7Tn6X
zq+7bCd%CEbx~jXng6X&rHZqlK5Tr;DlN-ArbGZdEy9E)X6j7v{%N?K_ydxX805G?#
zd%Vb-yvn=0%-g(n>bgM19c(MNyo-iJRJ#Kq3KcuCL4>&p0I^8_MG#_35t#eC+abK@
zi><_Kyw2Oc?)$#*8^7|qxX`;p+)=h{i4h<>xkUB75#hT6QN0jRw&k0@=bOF=jHK&(
zvh&-(4*bB~+6@D16YsDK5PZR~;Scw6MfIyg+mQ<8I{^GE5&P?wk*B#20l-@;5NfL(
z3H-uyxxhA)757>xtm<uU)gQs<6y3lO$r)HXT)K9fsF`#QL=3<Fz+VfITU!AZmvevs
z3oWfNgJQ(AbSqu}S`!Q^zxA*UhYPE6r?)6&l5A1M|Ioo6vmGFtZ2CJ8BMcD)*}@J%
z0t6|*6S2k<ajHI4zH*EmF#N}BD8o<G6!d@!g<t|lP${hc@Chcc15itPZWR@!Ll*Y1
z6CC$f+_)e2a0*Av8<(jQmg;&s;aGj76FShXs6fV~$7b|KWMJVJQ0&RjQX8ozmRU?O
zG3OH%jJQ{dQUrESFeSg%V?pUEm|=XhZ}-U9hCXNfqaCvyk@v<Cfng$y5%}B3lsgdP
zYY})H5zaOM3&F>o3&`Xwd4fDuO+gfO$a!L=myR5(QNawOqkB(bx81N-OkoZp@Qy+=
zCO^9z3PO+&08!F70jO|Wz)%ys;{vV_H<ui%qw~;H+A6G>a`i?cSvnl%b(SN=cT3S*
ziAD(q3#-Y@6iD~LtzrnATBnl$mWx|<`ymgehQ`nTtQ{&Nwi-c);5*IPJBJS|&9A_<
zC_KFY0Mrf<d3L-I(>r0}47}z1)X#R#A%<-vHXrW{tIqUpXkn{v0UKX>6_OFpcouLr
z0dC?J6`2(k^k{k%w-&bg4{y2{JHr)Y8rDp9(F}J*I7M^(WKqCMb4`&6D_s|S%F9ea
z8aBv<kD9W|5gdkn*n=G#pNglC-KoG)*)@T<&KeuQG1)&+f|Q-9xdqrX%`w|izCHw(
z0+9eooy{SE!VN*x94pivTfif%GHTn@2MpD`?Nm~IZSN5uO+g>ZjA#Av9~h8v|G*}0
za&k8I7Ctu0Kf#-rG!usKH6d_Y1K<L{Q4h%fFmFmAA+KP?iR4)%HzqSuI%2(MYa~iD
zmP?{^*EqwO{n#Ou@gO>p1CQYklt~42lM@V}4h`}k5i%jU+!XwsC_9o9t;gR8^50hm
zQDjXMYmhXX5KA`Umq*aaOwk(sf(C*HUIEkvEP76UaJP?Px8;Hi<TMis^93~eTxaAD
zi@-eyN-<)WXj2?<X$OKSMK0#DqaBD+1zRoGk}ZKs!TNFv{4x{mnFW3TpYMP{UU1;?
z!Y=*kW0C#j`dJg$a6Mn}FjJW;6Y4AKB!lQe<2GK|Q$8%aMjHpigs5?&RXM>YSrZ!?
z2n|UpEM+j)W9Fyk2hHrv(s9}XLB}Eg!Nv_?ySYok+RPC6E3MaY%{)DZ458aD+}oPI
zRKM+{S2f&M-L1O#I!r@k&`lHCAOVTPR-)ra3{VP+Fe9l%7&Joaqt&xIL62F%n>L~o
z!t}`uKw!=@egm)?V=~FO^v_JE-60?+N@g`efC{i=AO0W*gjnBF!OA;P%n8alcNL2V
zkV@5l?Glg^DL3I{VP%-9$sD>r_K}e|Iuo{*QX6VPQCVPsfDF?>%v{JqOd)K6`k%nj
zf_5-Kqyh${Vh0a66Y-)2TVOx<V=;-n6qt5F!(s;-l!6LoF)Xz`qQVL`gk1@rlVms8
z5i_($*g@<fEaUS%*CRgrjR$%EFa{f0UC*WO{GJsR?{p#LTwcHm=L6;YaH3T?DmOkZ
z0$LN-K$PI~8a@y7?gAXTG3bO29fmHqtBvRq_7Igj09^a%5fSOGZ4lT2z(tKR<typo
z%);Zm>27~Sole#4tZkvrtFu%~w*=p0b?TN;6&E)EzF2$%kkJ3&JTHJ6Xrm_la1NKS
z7cE{E<uD_%ur%H`CIr9(a*|EX^Gus>V}ue%h?y0flmd@2CU<opC?JIIM@SvAX%8bt
zWRy;2aeEg%*R2muOJ>pO?neWV$-Ge;U9cKsY)<EJUg+Q|z_F&2hD@ze8Klt#GgVWR
zRxV*eE`}GdI%i8;Y!iR~w@M4uP=)^~pyBiwZ*$5}U;YG8!Q9~z<K!XuEWz(<w-Hhk
zgK3&0Q55BZtF+SJ;staB5ZAK!+4p4qWmKEd9=K@-2p-(s-Q6j!!QI`ZxVyGkvEooD
z?!mpdyB04l#VJsVWjN=|`+sNFe9YIZtnBC6dtdkOisFY40<`F~ab~B7)j+l5ncyQh
z!w3b<@>WV?KPv{|HF0-eV}CsKje48;aaJ?q1H!yD@)EWsz8Q4PM&m(EGs6Zt;^$s5
zM<SPwO2g0NSGO~jgF$no{q$uKP-D>Idbo~v#saYzPQuGY=`(2lK2UZW<^wRmffFpn
zo<zPdz_A{rmr%9@7<LB0mp{epaei+4IE?>5xq7qOl|rXhX1sQ5GnLKv@o01HkKJ66
ztlmf_?%`Hl9+;(D4{_X4P6S+61~u96Sx|usvTx1|pBN9s&&xs=H@3=x;WBM;yhj-X
z>}MfhY7v%2%Xz?MZK*mY!RjJ4o!vMZI7pyGFT|HpK(-6{>o%Nz4N6evjDUB8(Ze9!
z9a(?$n<PG@N5n^TrA?Ukm2lVLypK|B^u&;i1ocngqZ~($SFje&BPC{m_wD(kxpx(d
zzllcC#*2V0qBA|0gd9p(yOXg>i@B913c?M!?aLF`CuA8TD4(n-!2Id7v@t7dmBqz*
z4QSsbuFtM1aAIF72J^pb+NZL{fNw`a6YkuLlX!)h<IM&FN=CkS_R~-ci?Q;=r{Z!W
zmhs4oIt=5RCET=%Auk|(fihE3E2-pobuP#d(J5+CCC3SWrV=rTOq*vW_&vZ}FNMcf
zJxa>M!Ub3&j<0VLWYVc=#YRo2(W3FZ*J;p)FXZZxkvv<05DqRk%*XLP=v$}h_!!vo
zuuStWwQDA}u9)($@niEWt?(-$AlWMIenQow3jA@#-1&g(h$(W>%E#CSQ&^}AhY**V
zB>Wyh-4T!8W*Ump;a2b!M^)8F>!>4TU5tQB<90KGC(`!YjZsOPGfB`Z)-1~BHennp
zd67X*OI89kO~s!~?ZrDgz<r)d>pNGZ`TCZ{@Lj@n1uHei*3v(L2D)1&jU!^bu&_KK
zl)W!s-;AA;-)t?+0Oh6ULpn*RePdAkdJ1l`mjGKFP>WD4XfW5x+OpXQ8?>S+>=7^9
z?<cjrt^X!ffoqWH;Jd&@`yfH)?N%2<SIr4fn47F?!lh_k(I&I%<{0dc!wUnFT7CUF
zJhRt*3(3I?_F7ODc)gn}sAXHPEn8mYTeY6_dr0<%``HdViiaEzBYJ-PH*HDFcki5Y
z(}%P+M5KM2!bJcn9==Ni5W(|#&>SX9gLJ3u*Yh};?+)v#$_6)5$;Z7t`!4+rUvVNj
zs`XNob&W4D_2ND3jRIpbOn6U<6Rw4D6vu+{0_@y8(O!eNUG2YAfmm&#`PPaRCsO3y
zVJPKf@R6U!V4(;tLo`|mR2T+G7Uj5m7}|NTWS)a*ine=2w2Bvw#=mnVncW*{HHJ0l
z!CzLAG}D5CH(*MGUAa62ENP-Ba<PR^>mckt82sxnhVdAttnZkmbQ)Cf;h#3LbW1zk
zho~&I$G~?CY5yE1;y<L4NCV{s1(^}N>Lv23Mx+R5b!LF}<MCGP45JpW?z&cM`vwTe
z_!iS#UKQ`dBgy_LC@9H!H(TWE8q1Tenkf6+?3V~ZxIxhhgZ{8p`j1NgzVLx|kcnXs
z$!zJ#{=Hb4$PwA_%enU=-N=*O`6b=H^<yL+jF=-d#KLDCC&GZiRNb58zU!P}1kF+8
z7W!e*9?&LOig`G!A3<4zC@a`*VS5RTilsq2k>W9x^(I8$F?7xQ#znFrt~OKOBoD&l
zz;sNEOyhDK4|>JaD72{D0omi$70s1}2hn9*Dd-K6O<poX@d7te!kQVC+19&6ANt2j
zX@zsMH^aj`I~P<tlbOOH=k%TGp9HD*it-hJWXqqB#sUO$#e&1ZZ&@Qu1&tM<?RTG8
zcK2k-S7mCEOADasMfAVD20kg&k_2hSsZn^O<VA6*P@gS0K9s3{UIkWjj}MUS3ku3E
zU~xt$9zf`S%J=Nt=*37+8Ls6JsvhXnM-SzhVtlSvK+uIm(mC7HcjPG99;Py6%bBW}
z!$PUt_J~ma$(f#-N00@5$G<Mg|ABxBi<4E2f<P3D2o?!L2<w9rEd0a|J`0Dzqy&;b
zh9yk7hrtM%<3@A-4CfBtKmZL=xc9}Oh-%i&W&l`#5{8;F@n7NFX$1A%`^C@0H%Loh
z(e+_s9w@`&u6E8o*9%68V98*hg3Mt=31R$D_As`wB#??u0J?QnNsAL1tuIwG0Qx?o
znxIMk>s!G4C~`R89fH=US3oG6q!FC51dyB(Hey{U%wnOA+^g!d0J~)@%TtLQmGNh(
z0W2)7<a7*pCc~f2=^9$y@1J+;i<N3p#BP#pS)A5XxIL^I5iS|9UShRKJkm=upj^~+
zU5-EVMl`fa1gUvQ4DknikSI~LZRn?@GdUJ)Fpp7(D<~^B?vkU~lLe`L`iArKx*0=v
z`X^Z@;K;pzRz!=dN*p%0@k=$ubWi>xaPEi#=gIJxBKPQLoEil)=UgdcLe%Ey?uACY
z_8;15X0W)<3}nCR4!z=~`12aq?kM4#thHzd!G~2uE)$6m*Fl=z(F$sy{vs_tOZ@UD
z8gkUNQEE(*-tB%Xi++Q33%EA@Y>7|1EqJdA<t(?^WxC?Y2|+fcC<HOd0#mYKq_`=D
zvs7Wh-Eib_yizPc&H}lmWIVICL2?7Cz6K_3j6L?BNaDAn)Xm)C2D}{NP==z|KFDpj
z6(tgefudCKU|N2-9-{@W;Uhqfq*o$sh>R^`y^O{K5yA0*PPqUnXGU^CB<hjc`3$!8
z*e8XS<Y2xG>k|m-Rf>19NGUz3u$?i^KwkSu3oDi@*V&JvTR13_{hcZQlJc^!aq}B-
zCE|iV)_mdo*tn*X@VJ-<Mr*!hl>(O$pQf&dfJlcHOS#shTEraq+X0z#*WePGCPu2<
zP!-#X?APL5?Tibi#GG~E<v-*r>8u@#1rJJw9LK*~_kP#LW`mD(gERHd;N5e^Ma^Aa
z{pVs$z1mgd>JB5Emu8bFO1_whcV`A9>`FgW8w8814}9^3&{#b}pgj)87|-k7<d1`~
zudm!G+KJ7ypNJMBGu1s3Ie7ol?!|OU&dsNueFIXEuZfR@Xzquul4n9OEnPAytTqm;
z{xLFraLZ_AJN(ki|EvymM4^UW3Zhy46`0l`{7}`rS3MILZTK%wZ<ocq61B}Qx>G4{
zG%Ih6>Fdv&KICrHMWrwpR=oKQ3G{P`S@WJWPBBv&acove98pPJuq2*w|Dyr6xBdtG
zg#HrBLQg;%Urv62Afgv%;a|8Pbe5mD(<G@%Frm-A>WVC8R4olzq@(?KW2d5H$RHC%
z33zaP^Y1*9jsd-E3HEa-4pCIhB_u3TDQ;4!pc8W5mwZmzA5b3f;HAOf?mpsA&%uze
zLGEtpR!N@Iu0fmxCShc*_3^=W67df}ZgEkWNJc4|^Ej5JuQSqlK-_3hQ1pidRFm*(
zM%s8<(Rjt0ys_M34v?(Ii>L^xw2bKRt~9*{(KlS}VRZ{x+-`P_aZYW~Ay+~866xsV
z>S3HIglZ?Ecb-z>6#YB0C(sS6geThaK$b{*NOm)h#hTANg#`ehRXVRWP=rSU0+_8O
znmPN%8|21_02*^Fo>SGTr15INd<|!LUr>#v7pjAWT)+V>arbCo6b0Upe8|!$ZV+Nf
z_oz*cd<3gPq^Lra7lB=noTh`!5+|DxQT${B2reiZ>h@AS=^zEW37Q=I>RprP3sOws
z&G!Q*_=6SF!HWNhAUi8&290AIE5tO*%@vJ|pNxDi0VM+C84_3&jN_*(6h<Ev3`i7<
zMU||X#vMf!vz(R6gOn-~lq&NkaMBfHmZTu|5~#R*8e@v6q<xb@Ee)$OLJ@hBm=j$S
z11vI1t<ICP>Jv+aN*#I1oi)l`-OB0B6LwyFb4>ER0bjL~WqPpTe+(%NicYnAC=VNh
zC&QG>hLpz=z~gz~i5f6<o}z;!czP2&b1>y%4W82mk2;fWBug(67KV4Dh0IA#I;;E)
zQdv!yew?3_-5j6kR@t0VnLt(9#+}~a9EO$@B5FTo(nuhOQt>P7Cn@xykR+=d2dSPU
z%uJN1(3~r5b*r9tPivp4T#}B@H<v6!V$7N{aH`;N1YxZ?;iq8b)(a73``E72RR86v
zJ=Lg1mCQin`_4Dj-ns`=&Q$?u<5$`>|HevgwPB;xXZ0tNU9&Nt-={q$sw107zF3R4
zoU4JR=k#tS02gx{q;n>@7{Zili<s}lD$Lz%bvzRdd>4)Ap{ZI<TC{u(Vt6Ht9t{oP
z{9-XaoHya01hvaBIs!6HYBo)RT6Hz80b&!)w*z(3V9oi(d91u#a#>_EX?5R}Bpq%|
z_6tppXjNJ<7I8~W?qOBkNKM|v1?aDI`Go@wY%yd9eYJ$}b}EHwjvg)1>BS1rqF`sd
zE31|S-_$HvORAQSiET~*jc$sV0k}&BTGUcV)K>IX6pt?c1kwf%Pe`(9tJ2j-duyd%
zBi?Vq$Q`18nhYP$(bh51(XAa;q9Yy0oCN3V7z-_`_AK{5E&Wu~HltZi=Zw}~#(!UX
zb=h>S#B}k4mix0o7>r=UVBOX}9fzJ4KE82&mAH|;sL{9@ZMImm=giT#XjU>pYc@Sk
zF+Eky6^%*|hQg>F{8C+>uK)D1qsfF*%YqqBggFn=$JZ7!<rzvkJufo-2)5N_bv=!a
z1R!O2ho2sJSq^)3#y@`*Dz~sq2-b+4)=wnUk3z$Xd(}_Y(XzMDx=!d1P>;F-EF_v3
zWPDvpx{pgvG|0YR3P_wJG@gO+E6><6D2QIlyok$2Gc2;9jo0a4ZeA=<F)Y=Y|8^Kx
z6l_>wlkwfeu&Q>wz-65<(Xe*QaIk7^wAm1XwvjMwSi57`BxYoHvmS_N)aqhnO}9}a
zVbqbo(UoP`)??ItZ$QXq)OoSd)UwfyX57!F**=WYE4En+zu9kMJd!v!uq8T_xS6f9
zIZ|sp3BTBrXf(cMoL#y(`D#3uKQqN=Jj1s2<$iNc#bmj3a+J^HXTIK&iOE|2R+;nG
z&z>!#M3eO`lWi3R=*F<gj*8aSg~=Y9sUDfh7@Fzf#oR8R>2a_r)yvjlzA3=P^rXl1
zJW=tW)b#Q~^=#Vo8qLfvb^DUd>=&tl6Pv+}iP;0Z_${B=qu9iii`i4{ueXiu$7!>F
zI!5;`X3$r&OFy$$vK`VxGgx?Ypz2Nura7#uIeVTNe3JQzjX7eSd5Q^Hs+c+QwmG!a
z9QDmynr{d5&>XwW3<JRew@mM@<>wol1;NZVj;aMw2rW{G1<BhcVSxpics}tD3kus!
z(rpVWaxtv!c?xmMZL~cq(>?1`3)+yqRvk<Fg1vb+OU56T)n6@{xA!nu_n3w)Iq{9z
zjx4!VH}G25pq#4v!({v1u2vHeOTHwlL>nuCI;-X|E1?;yq+v6WORJeaD>3wgwnM8A
z><3FXmXfLmRi#$a^i~qO)(SobQm)oYbw)Bt)?ix$xw-?UkOT1B0sEG<s;Q+Kf{hlr
zrUtnU75kx<t4&$HwGO|vu8)mj$eec4AyL7h;kM1cZX07&3zH)o3m;XpHycd!BMVjA
zpRBf4t>)Icw)O>JTUT4ekR$saM_qZgj`ZeEBeowilwG!MUoVb6vfEXF?A(*gJoxQ=
zLKMAJ?f#e?`xMxH4YKpQH1#jD3l>)h{9*Td`ZyTfKH%Ig)YLQ#-#$uQHiG?RN9-gj
z<b>PU9vU-Z5*uS5pCtLY;N)lRN&KZf?v#BZze&=AeJZ_pGP=VI*=ee&!;*+YdWP{=
zTZild75$J?;~xjvGpF4(4!H=nc`FWu><XEe4!wz|h2oAIgpS|KjEdzP%T3J-Odajs
zPRr|le@b$!th23Zb*vk)ubFXl-Tqxie)i?f5khX)K=0JT@6aUf<gI$vl602g>eQBG
z*Ph|jU3NNOduH|Hto!YZV9V)8!Ec^7!#;861dZSQG3#Y=&Z)ZR!{qBDKIcg>=VR#W
z<7LkAt>=@M#=R@fbK=M|m*>gT=W}u=^Yj;sujh;C7fZSqpZP9UwvT_txcGm)SSveT
zZ*_q>3}0-z9&a68Y}#D>k~`nQcU8T=*keE5mvfcUxjcM0I`VPljlMkjadcXC$<T6n
z7ISpIa!GP{d8vAIh4Ar+?(!z-?3VxPx9ruO?%BQV$4lI+zuSk886USxuAa&cpGQ8<
zEnU639=<(X4Fj(M0*5dRZf(5RaL@ywo?EN+HNxltV(j%R+j&dATSuK6>R;8rD{du6
z*XRUu7>GB8_%~R-^2h@2l5#h=6vKFS?qWVS1Q^4FneIYmH^hGjNJicHR&K~bcd-Au
zXCT~CUiFbPcyRLH(){Y9)w^Y}y`{(KVTiqD$hc)<7^Z5wohUnF{kF+=d^`Pc%kgCm
z%1q!%F>=fOt%XP4lSKCqU%3J3qlEyXqu>|Me#bw;9J?Z;e-sw}h#l{U|MetB|07ZE
z!p(5E!G9<H^Fl`NZu|W>0P#{j_HMVp6Rp52o7_wJ*h2BA*HPV_Du=cNqBr2^PJ<y|
zQ{WyQ|6aTPQq9i$+~;2J*QI`@_f^@wA;y)_sQ2y4y~&4<U<wPfE02Ekhh=gf8ukaS
z4?fmkE==uwo)I4GzFpa8`n;7rIL=-<jrzd+d~ktYx&HM5BK~#bxOQjoMHF}s+FyI=
z`J&kU_4#t`8|$keckh2?Xaltj#PGJ8_0_EZ8}iZJAJGrv*WYmYyHEi?efh^I-#ciu
zou85KV{G}|r%XT7^2ay<yP#3OY5n^|wY`YHeuM;%$!hya4F9B89@9pT()IioIR9mg
z?q$aQ8wdQ$HrvW+`#0A2zVL75AO91{`1ehIuaF=BaQ*N5=x&O904>8)soI}1-vEZ#
zr;5-&mE{4<ZBNy{yTt?nrB?xzGXb?fJu(QMoqHb}eg8JeKY!GFZYlrU>ig^w``q5^
z22%Y6E`M&D-R#1ch8zcWzXlXw1oitG4Yc_Weh6w+3Cc1H8o@9c)$<?w^1@30+?)BQ
z+itg~?M0y=D78Ll*35A3uireyYYAI$!iV6cV}s>Pzm<=#8NtCZUxL@n4Auqwpc}of
zLL)Czvz~Rw!8g;vVZVZRIrR5tefK}SiM2le3LQPPd-GIz^ZycZ%AxoBqwiVoo7ME2
z=dX}U4&5sZ-)oFeT{5T(N9Z3tox6IUd$UkQpSR<Wqkm&Vd%i;daqM)og;tJ2Ul5T1
zu!z{K_ScjHQ78m^&&StPL$N?a^%}u2t)T>B0gv;O8=A3XYWY-Fhg;f-bY{Iq=hIud
zsVr{0g&K!H^h&DuzPIP6o>X&%QnA=<j(3a;B}$pxF2C=XmMUaPLh{CNXl7~*+dM9Q
z-?OYjEJst>oP0`Dzd8QYO#l7Bw%P7+yin`(mtDPzy!LV^;DKYOF9H#V-5L7Gx!2&Z
z#=ZUdFW13XDuY&Cg5F2@ANa5Im*@X@PUgPLr_uMcb2&~{={31tJn<P%k@D#s7(ek}
zZg%?qxnz6dbsT}j;&8aWJX)`jIA}FrJPX~OER<{2qhtA9w~V!UUR}O+NgWbrn>D+>
zi9X%^{`qmZ;FaO=@%DI84L!Bn^Wo|5pR22Hoq<<3+7#jN#D0aEdp1$OLeYdDDWkAZ
z@C(E6sr;y7h)gTYWk5=gRG+Bg1ivfd>aJ$QFjcivdyq;UP<`f_5Tr?b%l4y=7y8{!
zW5ce*tFHEMS&%kGmRM*#5%0F0Hch4TuvnUtT!`+gj-jG%Dy(n^U8V^-6#nporl}Bp
zwoOi@X2z9&2Ys${1k+Kr`-G64!({~y8qXANlU>1l#lEWkvy2uPS6spUq)7a3X8;If
zT%#{ZxqYNh)|>ZdD$B-RLFWw&cw(v;mROw8edhFp|6W-YSAoG!n4DkIFi}NS3JYJ!
zRM+vlYFYeu)DsKj_qmmpNPkTLYa<_T@_Nm*u(DY#V6&5@W!W%3wZ6~sxmuX#!iu$V
zm)vNu+F2}+y>nAm<f7%G^SMs?;-rJEr;uCvxANSlE{;Z=tX%d!n6B2k(re-%&bqag
zuIuuxRv>#XR=HuM53Es8gEjDPH0LPUw>73gsz8)!rRPFsu8Eoqs0if<TbF3&NUpyq
z&$L_)GxtmodSI#u)AQ8tM%G?Y-g(twW20$B7L~njq5Y{T#pf5%7F_WfV~u$Or(oRl
z<Gv2wRf{Xc#zmnt<ArhU=kv%pqpsHnN%c5QhknbAV1WRX%>1T7YRQ_`SzIF|f!%27
zQ<yE0Yykasq6oX8NT6~Ohr$!AYD=#^!H<p&@iM7x0Dayc!PC-TE6oQ&(rBqmnbkeq
z#|?HD-+vYcQpTNjoE2nkSN=g;_*I8k*Kt1FHnn>UUr9H?(j@|YF?fC~c$y(?p%LAY
zB<Xz}p2(*`*_){T3SgL)4i$egz84pp3I2#H`oM%bBlh~S2`c-8@tCtf9QyiYDCD>B
zLg%B#h0eW*`Mml*4369PaP%NbAPr+bvL++~znc<)r=lOt0}@I8LWv~JIDnN3iJ}*!
zLeZ)iz-#1;mO_FBSuqY0EkI)UyNf{45|T8S>Mrbr0NBXYMx1vBBqvIZomMeK$KCK*
zHHaFwm~og%vms6wcMfP=ILzkJ5O4ZIO*l9<Jas>$E|y2U5mg}<ZqktG8bm|7&p0Zy
z(2(TQO+)^ZdPMBD;fu)~GR#Z`KWt4y^6>->HBRN2EO%o{QV=a|(JJ7>lRH9bVF^KG
zYZ`JzEumOm7?m_pwL)rRdYLF4vsUGV&VvkW7H%;HwBQCK^nB;5QM!bhu>_xmAdpO_
zuK-ns3C!Qnm^C6w&z)8|W%EG${%G-?l~I1uj=PFMY?V&tRuc5{-aKpD8JlO2X~sRZ
zDeowXny*C=&PMx+;+9ZWICKn$N41vl;wAR5;wbXtt*7kq3xfn4^IUjLS`Lr?mh?<Y
zq@QC0LtR(I^K~VEgl6-1{2oR*o~rpokGsUB5|~0;CX^VD`Jz>p5$Rj5`J~3?Qubgb
zuod%SHuY^WmG>tpMdsOjq*;{9$WbK+=A|O+mI^sBW=+JL8SmCVqy^>`ip%r~xx%#H
zw3L~3o2r&;JzA<wU8of+B|1WviZhlHe$UonLQ{fP-^WJ=vl#C)|Lj=sE*AEdWF_1C
zB3|--8J}lFI*3WMb-4u+BgSfpQ@tu8tW|!t6l>t3C>L++>Db-OEI?4bHto^cRPgF7
zYwWL=x|hn(iF>f*gR;Kd*xFJTT&v6=WEkVPK%FOZF-woSv31+p_T#md*$#EN0Epct
z?uqM`R=s)1-S(c0tZ_4|G>V^FY=5Dy@ocKzy6|Z0g2Qz2dS9rF<CI|mg0=2CXIuA;
zZ9SJJ&VDW(_;689-=Ihm-thh{e{b7*-(KrAib#HmsroYTNn~J%UVqW9=xdLF<BXzV
z-9^@00>C}&hxji5fH*r8$H@{HAb21p^bXRBE6x?CRkNp!@;G41%BhCl%}mK_?gjTb
z3<j_RhmCsG&+^8V9Lahh)Ty6PQB+?gR|D9Dp~QOx^a(jK0CsKs#&myhXEYg8UE^oR
z@7qkdVBmoPGL%3lrv&o=ZmB0BWpBqaciukhv5;2DFndgcp*1T!z)zo&m?$4;2@s@M
z?3jxYzl*vcH509u9YP??|7k6ahp{T*vMS44##8HXg<UvlD03OO4g%td7E)>Ve?ops
z0mLfwO=CB$mszo$8NjtI$|AIc5%0iJq!Ur2=w4Srslq4<=ZBib`5V)E^kEqd%M-aR
zbA#sqe_r>0R=veC;`Z&Q_Zt?iZNKriAFrSLaX*Rixk<vx{r#d{F1!WAyt^J?yYgQY
zsWe_W%}f!5QLlQYdb|!pX=Q8h_}R6C@ZnK*R7El3n*so3$20x0#_FFA(Jp?k;K-~4
zAUfV17EkTFgy=O4GULuJ&X=r4?z-ErO+k6sJCFDb$yW^6G5~gnBoOvTy>4*#p*U1%
zj%F<^GgRYfBx6qoX=ehnT1g{ez}pQL_P=Ti{l9AKU0AEbzrn=9z`!7&;v!*@V4(vD
zapB&bH7Wt!I}CWIT$tqC$W%-yjNJH)tl0E|#9V9yJfbwD0A?Bh9}7T~3-BN4Ma@Sm
zKtsnR$oCGtsQ7sW==cTr@mUo}_+*LsbjU?5s2S9#7@R&xh*PMzaw%z2%Q(>~`LU=w
zFzNa5D%tZZ`||5J^Xa_b=>VwFP&qNY127dGIe?lHqrEo3(*)q9!sKrW@N&ivbjMLt
zQczabRMAwC(KXak25Tv6Y3hKrb+zR6Z4509v>n~7)KxtkHEryyKDxVD`vv*BTKIe0
zgoFfBaiq|zL{ci{Fl&EeGe~<!Vw|Sg|8-)iJT@i&BVlSD=@KsGN?w(UeodMI)ppLQ
zHi0n~{^`E12?5TjAt9eaL(@Y;zXyf|@<nv>CQQDAF|m^0hN)dXvB}<v4L&8!s+sfu
z^I+~-!>*M--5d7bJ(%a<V>B*NI_Lk7go*x-geiT;vo97?c_(3CRcRs|0r8%&Q9f9i
zfiPd4Sn8DV%C)JwY;hZ$ncf*#sslJ7B&bvsT&(KU=mxHI{y+39z8J5fSS+tttl~cg
zOyNthPGzZUYVpVV;(&p?2w>SKm>*Gi?HPd9|9Y_082{E-jiw}z&Jy3@ugJ5B3`2!5
z!=<>Z-|<JQSw<7pMlzh&inLZLo%fo&jt4{kOTRLbQsSf1($nHTWyNJ@WF%x}WF%$Q
zzU!}y()z})8C6L&t)=PZ6(!Zht+fr6B`vLOrR9w^4Q<Vp9c`@<IRlB1#iY)I(zJ={
zs-^0d!>)mjoW+0dtgC%!zIpMkZU3b|_v<@IoouPv>qr`E8`$bk8yzbj9&Vpp?p_<K
z_&L_Hx>WOXq2*#S<94;`>7ZqNd~A4Pd2(rNYI*tR^yuQs%*yKO*xLE*(bDA6>D1|e
z5ZCI_e-YR9@yg@d@y68N=HAQQ;>pRo+Pe9De|Y-%bbEGmbMgOITh;Gs3-TXV|KEJ(
z|E;zJQznJH|Ci6Ckwd{1{ck=~F>PD3^1t~^ZC(H%>!$IY)eCz5e$QtfE0Ll`yyr9D
zS$(lW8nelN)K<BAvDEP2`l{t>T~vEEKx6egs~?ObQ~pmq(|)naWU{q(qs?u9B44?!
zZmY}h&+o0twtBM;TsTy6a64poFrp(}WSo$8e>9mU4SeePe*b_)QfGUr<NX;@qBM?N
zrL*~Tu_9h`c;e}oZk@F!YqsqFyPg?|N}<}_e)IpVXDYv^L_6;{O|YDP&GdBn4#m-V
zLPg72Vy8$u+2hP+L%5G8d9|>J=T4j6^O?cuO4GgXL$U$XErw2dJ^U*OO(&W&VL<+q
zok&bM#@#4fUHjc=LfeYn7*d~;-B`*P#=TFp8TNah8RG<%eb$31hkcPc7}b%{BzDR0
z=(-g!6Z!G!X{1Q~09Mkw4Fd6C1!@E3z~t%FK^}0xK_c_leui&gIKR|i8OA=@6Cp4$
zOh;MPD1=4f7F3_WanApzp6RvXaGdXV#Izen>0k#7pa2=neGAv^hXDwC{DlFK;(FPC
zkHE@F2B0BLB;&_R>MC>oW`zkuI1QKCMgXuDsd6gI38i8JtgC*@X+1%K-xw6J3rjQG
zj|_>jZ2ptaEaO_G%rT#CEGrnJuRd>_;y?ROKGTTd8?Jq(1VCF~c&=rQIIhB1jnF)z
z_!subMafskYRs}^JOBV5a8Oua^*hh103LvQU8PXd+4)hf;TA~2SU3d;Lo3YtUag9)
z0O73bhGn@K!mai>(zPgJxELYzJ-->HjAgwYgQ~}`;sB5;*(aC-Q7a3-V2?CPrB`)f
zb|r{ekptc@5^DCy=OG^UlHM!d$^BCANc&nzNIEts3^ND2#2zm7$u?is_-4g8jfpjU
zD4<0~h&I#ZVeP;5Op@HqWLyr4C5aB8q{RRZg2sF;F8vVH1RmFqf!Fst7Y44tFOD-d
zOgt4Y5llQc<=u9PXjEK*eKBg@c1g7aBiU)-4cX(qjslk8uQa{z4s*e8+9O^6j=m>Z
zb+n^?Bzn#$j*s}Ajsp_-O_-n3OZXLTiu0VVrx|=Bl)uP?9J%m$K-VgNZJEzs>JtNs
zog62C3)A`aezQ#mqO|<?02!#z%K1Yr!ix?10uA0WTs4`t{IK!z_v-x@2%_BBEW>0X
zl%Pk3VBvx|g~KJnHQ)`*Qw<-4U<ff46Nwd&VZ%xgN-jTQk}4dc>qLZ$N&*y6`c6av
zVGN{7^aVI$o7S3A5eb+8KJ6_KOkZE5C}$)b7YriQ0jYE0LLCq;y@rZ$%>Y2!aThtK
zk~P#zr2t5fHM#vnXqKviosuF0JoZ;RN&;wMB<am?3xwkUVcPeuc2|4pegj3kd7RV!
zf<-zYYwB=`F(B*~4e;68k|o1W3RdxZzY-{e79bNwS7;BDN~!+ss{{bH@Dm`_a;`^|
z9~+Q$o<K<~(W{xG$@@Hr@+QF@kM@t|D{iN}&;eDS;reYx`_v)8pac^RsSik(tOy5d
zF6m*TN{KkMfg=nEBSet^Aeisrh?<9mLm)7|M%sLd4uc-kY%w~560kXx(e$JcdDet7
zWN_HPlvojR`~=lu_Zm2&5CT+NrQDK1f`(a%Cx>ey(E}EA;LVs90Wf}86Rcwc00|3?
zf-XC8p%Z~vdr4x3qCSK;yC_;BDlL*nqO=$o0Hx?YkqDzsS(LAwi9L`uPYMAZMWTCj
zj*9`D3jiRc;22^Rngbpy(R`{>k-<BTQ4$BWnnmNM{+3@N)IUGG5W-1eeow6wlm#NG
zQ>ZyF2VhbHfV7YvBEbZUZ$n@^B*_V_&ih*1h&g7axe3&N#e{A85riiVRQh32$eo}X
zb42CUftk-?$o^7a3g-YYZaX%bg!YmZlxvjhH~>VXe2H|0WN&=hMqqyV!H>#h#H#Zg
zNuUH0LbS9;Vr#)llnb69N#_LgmPezaRtm{bF!}vp+P2Sy4b@6vgQ=hdKr;NPJlUE#
z!C6CxY+74L>1#^J8Y-Y~Zj2G&mXJUR2WU4^6LdonpT?A;S8hSBwf8X1@qz`YDGxuc
z#EVxp&{o9&!>En8mr55V5Hf&aK;eHsa>A%<Vc)<E>nJ}F2Jtcs`t=()d6Ve${Xjv}
zb7H0v;e6mh2qk*MCwcH50+lW&t1~4xQK@BkA!Jy`e3uI&)zXSSjf$$K;ZSqL&_6&q
zf;q-k64MZq41+eOMMV#;RVW#tjbgJeWq@4zB1BKa1Bet-L`Nz_H|cXKGxpC^-Y;dQ
z#FY?RWRvoSxlUl4;DXW!VKT{~Bu73RSO+p=0V%wtsw)<LJA~FDKk9xTCoIXNyMlL9
zHUx}m2|nQhvvQPHeeLr}1#2-M6BtN$c2v9Y26VEWOn9{8dK^#4*|VfR>rMaG?II3i
zKnDY`cLw2v=i!pE0U3t~fS9Ru%2=r)=|4x|7U*1&a!IW4)z=IZh$MhP`cE#$LLFuV
zv{7)CtSBE0R2XMlTeJ&W+r%G}ZS#h-N~pssNt>d$Q>!|_6Yzlau#}`*%js+8zBz8#
zdNq1I(VA6cMla?a*xr)aN+hqsLy<^i%rF2PVY4<C@&r-$Rrig}I3<byigwgj9-Ehv
z5}_sswcPIXLa0w-R4=z9=&SG`;X0(sOyy6`#>>%c+`Y{EsJRF*PBiRTUb24=W&vDo
zY$$i%fofJGb`8(yD=+C6k&SiNxcJzlVrTp6KJX~f>$*|BGl1|hsxkL<Ljyqoy~Q-S
zPHSkBo@tawIfp4=+=O1DqS9}s0uMkaNmH{P#=c!zAoP)v@ROP-_X>`ic&uoUh-CY~
zZm!$IG$m#P<`BSg4qI(1EV#({bHU9dHmpovRmJF^5{eEYIsVjg+T*)%yI(Eo@d45t
zA6iiJ!v1VOzy0l#Pnn_PzKdq9f`elUN%0q9V)>=pwzzHFnnHF@#?iG_7ad~%%^=xn
zZSmh&^DPu^@$fa$FLy%wNL+G)1FJoE$m9|hwpVuIZ&0NpoQPlq_I3i6F3iU+Zv?xi
z@63sRMXAc|QxE|ma{l4;iYuNd*vHsh{r)Vw@<eUe=)O3ZeF0zHQBu=sk@Sh^<O6B-
zxmw#iOy@laQUi&o(Q$VW`UxVr1tWPMDF+d;LKi%9br|C#T_)r)8EHa3r$!=b2*xgO
z56NJ5$p&W^JBwumZ!d5U+DNU+MIrQqxx5%pvDJX{Y{%t3biC2I(Jq*~A@mvu?C*T1
zk0}WYM7`r{f^T|(1p@SihW%tFbeFp;Gj=J#3b4b5_p{^f4@Yhf3zPG=9LAQG4KIM0
z-9u%=ncYp3Kk;$7hwnFq7f>N_al*u`5YgyI6e6)QRNz?@Mc@xa;Co<{g~8xnBk(=O
zK?vgoeIqe;m67_vXklt}ZdU9FAq_SF)l4J!dl^{;0mK6#d3#}2ptp*kx6T}pzE6tO
zO<=aovOpT1^Z*9utGc{g0s@vnl?^OupCr&*VqH+B`#xH0#c(x?dqZCX#UduT!T2(j
zgB#{!)vd`@BMg2roY_*SpFT&)o+gC`^Ozf`z%n*$6-OE`JUYt_q~M=w?OwougWE38
zW)4??iS!8=c+ZE!PYHutp~JI_jCY!nrNFmF6IisG+QS_O>Gx>2b0mmBF@f=Hgl44)
zccewi#-oJ?BVoZxAIR+7MZy=U4V2JG_<MbZg(r;?(8QDt9f;EW$=w=53)U4<9S_p@
z{588NJ+H|HWbIP*M~Yj6@%N((-_loZ3jogwCgCvoraD3iEPzBEA(Sx_7XXw407WF2
z9q~nBD$zH0*teENJTo~w#t6eJaKM8&sRSu%IEo4$0ocAM{Fokv2Pt@;Xsy2z1xC?P
zWu-E&`Lmv;Rxr_X8pQE@PHWIcsX2)g70PWk$bH>U16jakw_s{t1FzdL!+03GPBG)G
z1b-mY4F3}xT{9TW##Fz~jpM`W`In270`E>lcjv*2d+kdM12m4oiq;e5gGPg%9|#jq
zv!)^`k}`<$&D~D+kuS4#uK!_|bADrMC@6JMD9_G$G5A0r9fwm!RpCd)juhGIUx<`b
zNFJHXzgUR=RJd-D|D2i+<u=(wE}-(}C3P=2snq@VuL$+e=U1WcuMIgcj#T>+BngFj
zZG|ANwm=l(Vs7F0*R(>+fMUU%VpOW4=K-|7;-VueSS85&m&Jji$V<9jbOZApyiS)7
z`9@1z+JF0vD?5VF5)Hph5C7;p0ktRZQ>i&|*}$l>uwmJIB@^B~pE!WG69D9fz%-_0
zR$-$nR+Xp(l>eJY22qv<#Szmpr+G&>@-UP|8CJwNQY|f%$Dy#2LnYwJAQh!tz(Wbx
zk_H!8Kqb^2E+DQl?>BC!V`=z=1-VZ}iD6ZlA>QZp%Bpn=vg?X!6g*mq%90|$Yzd$~
zfS4On-qu+ybyNAzlOaSFCd|8P$gqYtr|P=};zVc7lp|vIQ_UQ4?SgP^?_PCH6hoto
z@<?axreW?FGu||D-I8$K|LU1C7PVf>wg0JS3RC?e#@k)5Ir(2blezS_FzVIZ|6R|7
z6@dVaAP9jFq+AF}7X-8cL4Sr|k~I8BZT)}hneay3CX%?c09aM7`l+1y|J5_go9ik6
zPdyX*|IBB0L8wu&Wf~Af-5MFIYuI!Do6kI>;CyaUCuz|XY0)-n(G6_T&utMQX~w0*
zrG+50LJ$-vtCifF6*ijxm(P^GX*PVWUzh_e?x1^YG`Wkkc{?>MP@-M+p)YWveI#iY
zIBN^*YKwTUXXdsWOtwgJ0iAZ*r8$AE60Hgrtuqs?S-BlKf%UFukP}GTxp@<*55k57
z44wp<s7PmNU?<)Nx?dRLq6CT`C$e}Kn%^8^MRmI{OIOBDC#3qn^-Sfagl9ln7eJ;9
zKzj{Pw&=)x?w%v*>0a+Z4Fs{|luoEOg<VIKlE8Ls)Q>_jf$oJpo60cT8=dtcXk}rD
zQ#(ziZe71bx(QK1$vYspt{>Su=ze{OVJy9G&%J;bNWuopXl}R4Zui1}^O-bCJ;;-2
z2E_f75>2HNFmCFdS^!81WeuNEKLHqq$hjc~&~>))L#*pZ5N0n7YXgn*0E|;t-cDzG
z*8s2aApZ+`LVUN=b&G6ZpY3Gdf9jd%4(JJx4M^!Z0EC|b;_d49o<nEv0|Jctsa_!G
zn4NHe!?0&V>a4@mc>}Fy18=|4^%I5x$|H#JBOnp9R~Cq^^N1B_6jgb|<E8#1Da7yv
z{W5G6J9iYiJ^)8Da%GOh6g2o=&+N|~B!lk2x0<6$_jQBA`=mw3(~ZY*w1yBj(An1O
zk0IZkC7L#OEG{AAuW{%@5Tv7OP|qCdtJC{GC+wU$l1T%6-FqAM8qTB${#QJD#U`F3
zW^a*bTgglPWf-axB_diNsP`KEWCzvd1%0y+v0h|4<GOy7a=QK*@%0RyCIK;b2mK4@
z^b7#BxQV!kIaBX6&^n12($@=fhPpU~xR8hZ7BIb7GmU~eyLdhgsGfZmnZ56xO$7A5
zD$V@e>_tfII(a|(OqkB$oX$$_Itl|VbR$o@&EIUG&%B`bQI33inWs!_5hBGk+ZdDX
zGynQLn9;q!y0t*3R9Y(7pwtaqgHAS)fbdO&7AdI^NgwotU-6Cu(b)m`$GMQAIXrLm
zhNtIFxYy3R&HAgZ*?OnmA1uqKtX+$npl5K`739a_%haaxvfuTR2HWyOAf(l4*^X>Q
z_jO61ZJ8$l$#M&H6}H@-yK?@FuEX}ehdv!dwh%_P8X>aqKGsvR4=!o5oB3iPVQV$%
zUE9<^w%mH=+y*Q(;7g5xlqvmv0BlA8+KD<GB@FBYCrH}mebQMEUf9$nCko{*0t(9{
zB^M%I?uweqjM_9>eHU^V$uy7+?IZy)3lp?(4mt^&xpPLVk4N5c25G!bnNA~mRL|bk
zY;13CEQk&woS`Q}=24;3vnH>d3u0(XXw!>RphY)OeS8-J+tvc+^2;RpmB=81%K$<m
z;&kD*)mFVn?MlS!FMw)GRARR*39z+rRsMPPJ)em}zJ@f3_S0xlysKZ85~6O*Mv8|0
z^%Wft45RppzCOo5pbFy*L2xcyqpX4CyG+iKHXK7{lXg&h=Xx~~k$d0ACtfeV{$3`p
z{n_=3KJnTG%~_e<oOVgrApNl^P_Ta*4>?pvN!&q9+F5#Un!LpwXj}|z0eVk@R=mZQ
zugtr6&b#Q(yK>bJpSS8Qw)SDRk6a6ygh1otPCH0Rji8WYKi6?|R|sZzsfO|}TvtCH
z0PVZUFdhi@6}o{|a{{D6$Jfb&u!%R=n9PKUoNB7<1IZwblf5)SM*!u6(7e;vxZ#W+
zvnk{dQ?_L_v4M55-|AZjRtZO!oAr|0KP;0vt+(qt#K#<xj-20)`pC~ICfm)PD`Ze%
zzZf0=$vK|dK1c0725uZ%a`q4G9EuwC%TA-a)SQ^!?2?Lah`g;6B%L^mqAm1Ipv0pq
z^}&5}Zs;pS9@#<NN<e(bJzSp|A-JeN+xQKA+ADh-fFvE=p|^c4nE5M?_V35m!ugCv
z&u{a~`q111|BLz)K)cChy}nCtVZn;c+cnM0lKtgr@FZl6vUQC0oblT&oKd%eIjSiH
z!Tbz98JdTidVbCy`o{_N0(Rp#Ko(RC0bXo33DhDCNB~=3dKy(=@Gk4gRQKx8E;p26
z9Q#K4Dd9LOAfM;(npGNpDE}nQpRxF{?eV<*tc-RU2HKrM954q>7Y@8`odr091~8X<
z`yMJtwmjlNG{(plp<PzcAJN8;A5Jrh-P>XDe-{h?`t|+wOWf`=dAQgD-PZ0qyrM45
zP3HjGk;TwfrV&lW2Np~~6ul5Jv<>Far}7UAv^(uqXM@N|e;^dkO4Wa0p8sGuTS(3}
zwVdNoUiXxuUV=l{UMDWhEuN5a?~Fb)=u9K3upNBtnQgB|v)tPAbGh&fK1E|&$(yU6
zg__MUvqC;{EC*eohxE*DKo51rkZnI)Jv$G)xh_vZe&%pqg;Ts~7eJ(@_bPg!j30Io
zK$xgNbXvi=8ObQ*3ta2fxn1c`Sahl-`ty6T2}FFZ2dne@^2t=PNwfwF2a4%TH?LM}
z3pSImT&U`W25AE|zCzxY2OT)8*oBgrkW+)D6O9r@Pxi*oHtVXs9E?$gtxdSoRNVX}
z$xS#WSUK#BVJB7E3<4mnZ#g>a=(9%cL3tOV4=b}qDr&R+iCsSBRH9$~eD*g4%0<jR
zlI-pdCe)d9hopRmt3kvl8}j2Pn|a>`wG#Ecd8x|b`LprC(;GJO45^OCH{%yS3lv@;
zZN?}5*Dclb0~u$IYY+y5>E@&R!T47WyY0<?o(E9d<%5d30HyP_mXF8VThG4NyTe}?
zdV>#@@1WK*&5Ae-UXK%N4J@6BN2CRMlIh}4=^-zBZ@E{!1t&Dg?QmE@43haEkUA4$
zd>o_?KG9OWe-DL7nHwN-cP))6jq5IhQCjRubB4?OQ5N6G>qeH)D&1X<SW=inEOW(a
zRt!6kcOsvdzXBO(k6v9=h9bqdAWxs`b*p%=j-@QfSlxW9#M)#%Ba>65j8#NDi0cXF
zp5*-l=I!solF#tkyb)s)OK<Gq@yJ;$quXCv6morWJ5ZB=agk{e6Y;Xcf>xpEcxlLy
z1Sct@bia5M@v^ksX@Yr{y|n(UPHB{pee}2!GF##FM&o}$Inve^BE4TOXk~KN9W`&c
z*ERNB)?rehdrj3ckHquQw~ViKSK;4s#+Wh5^==jN%}KE}bgXn4S+;9h_AzpWIbYUy
z8^rT9_LzJ{Hz57m;()KV;r-XdZ~v>WX~0>_U(=vJ%f4nI&-Z`L!r<`z%p*|wA9n)E
z&lZehNPHeGK26ICh<Q6%5?CbgtoT_ai99@7B}?P`Tc;|&@mr>A>H6DbnB@`n#BK5T
z+vYg6{<F>VT=BOn;L;Ub$cV%bu>T%Eb8?tz`J>XVEZ67Bp`th=z!6#&%Kzk8)3ict
zQ}Q8^X(|5V&@SKmVV4je<%lvif{9<e1lCbWJSxIL^c8`~`oQ6|fIzCy?y~b=G(3jg
z*nACLXd_cBSp-%;javq`nenfHiQO3Y$gBQhi~!QuJjXd{f-TePHvU(yC9U3Or!0x!
z#qB^jWTk{zEV;lWcg6}StI(2&5i@hgZ@!nm+`G%m_Mjc3@VziszHW9SLV2Zn+Y>|1
z;bOj(0it!Y1njoxD|wz5@&eGHyLlE9?}rUvXz-2x$HjY_ix%6@d?hzF$XqA$f`1)Y
zuh2+XWHDbx>kso`%-|D9a<Au6Iy(+9U7X;N(Azmq;W06$-NvE9pcLeYjsdKz_Y8_;
z7DtGmRV0!$5Xq>&<8D|zrpSom#o14q^hllNRtw{G1zu$8)hcv=MgOv}K~!L;n&R|y
z6#Hx#qlAx3EQrLse<h<k6nsrl4}cMU`YJi?K1avq^-~-YOT#l0pHRTPPvm~^1@8wf
z#Xkv}hudAbjAkw|>nK@@Zb4}Yghoe(1q&)Pe+9Bzbq9;VpRb=3AT1h^A3g0AsmrL*
z%GAT)lOrh+s&>A}Q+}b_7sOVPC<JBdFVJ^+erC$?=nvJGX5~$Rfk(&^)UzxiotB8<
z-5VCjc|;Q{DM7|J{yZ#m&W=yjxBsE8A<Bfe$t0#2fz$~qFL&BwgTvN<VD=Oy6iR5x
z)#9)G_<%q__yd^hwnne4jYI$jYWRQYo8;Mh#0X7};F#jv*m;CSZkM>s|M>Y>nYuwm
z9}JrjVQnw1qAM*Ur~MsgIEOmez9DFNKg3GEVpJ&wKS#TeKK%ue)lsOVnO1|8S5lIL
zJ6k3rT?$bGAjP(^lG>qRj@Fl~g!G2g-@pn}!i<Io|8`Or$QXghezK=L$Dd)K35dU#
zAXBLt<KUjK6gXNUB`1Xe1u&=6eX~cCpondkml(hdkx|oan@H8&DJ2XOI{VN#j<_|{
zP#w%DXUpG!;nFu;;|DmQox;}>wYRMM=wBjD_Ph#Bkxc)dR_bg+W;<Wsb7{JdG{LPD
z!;c9>Z>F_YRMq(R#hX!$*~5NZaABb@(>{f+p-=*colptBE)ll;9+8p}u;?8$2=7R_
zA$)+$!9JkbR&G+My|1(U>j@Pr7l3GG7J<>z0K^IstlA%9ObTo*`9hZO>V4*@HzMKc
zmKRAw{#e<)*0<dA2@br){rIJQ#ijN-nVe#&t0PHDw-0VR%bG3F9LSKRm1U#$dU^Q8
z>HH&d;@0Yg=IQ2wZlO;{mxD5;pANDQVFZ;#3|B%p2u*00qFHBW+qBOx0}0b?e2X03
zd<wf+Wm)U*^+iYtiTYhoWI<3kDfKFf8CNINy4wZ5(Qoki%ac-lesKbgd5Ak&w>!;`
zzhtDyW(r^W>9XnW>D;oX&v~Sn^{1U|d9n#Xt-)JY&D8sQ8p_053qI{FtwD;HuB3Yz
zkNny$f$%Yj$FP`-@gsYD%_byUT%%tXEB$U{nZ|0iykfA#lyw;%(}PS&Kd1&AC2XQ}
z30LEJ5XJ118DAI%+v<-Jn<Kb-*17~c@%1>R5R#&ddz`1L6B@R%?_Mj5=M`8;C%340
zQ719Y?MX{_na0OBts6@jk!`r(dyX*EAHfi6N@rt82Jw|aD;&zpJQKDN+R}zWHX3SQ
z=wfhavN!zXbOIZ`TqFHaW`C^<#HAsGUS)XqTd6o1GZ^opVvOhViExC1ljuAi?ql*)
zU{=vLhWTAx3_l4vuS@MF{AGl9^3D}?5)J&wZVvk}5{|k+{WF5yz`<Vr^yYZwVD^c6
zUks3DO#|i1m7TduQ?9zqxO+L)e&7&*+0@~B5=}}$suvEj_|?Sj-~AeGEReEYCv`Tn
zW0lD_KosKBTuw%f?t9%W7~g9?=86nKThrP|8!CaNVv__&VTg(t<v=6|%!|T^+<2Ws
zH^X7^^rhLA{Iv?vEs&dNnUsT!A~dGBH#lx$slzCN4as3hA3jMtI5fgiuO3`oMzDkL
zy}u0meZ+guSbwOPK{T7g!${nLQVKo4PiRplPES^^)}y-lbPaFz&^&r&6to*p75~7N
zM0g(5_50J0A95t|4nw>M$4DXjl0~0_L+%bsl~B@5UO{|a>s!!}n5Ng*`v6<@k>rp>
z_Zy;YkmUQmf58WmSg4VxYap`398YL_Tn;0QYZF59cK}`mnfdq6l-G16#C<w(dFqx-
zdV4%!X($wflrAVOkExw)kMIWB9G!cSzGG#BLM;QUWzLQap>f5oj%fa!{nM54rya3W
z@d>FB@wP~;qJ=T{w-jV|Rr`(v=9Z=Rfl_0RA0Bh1n2mY<4ORs9#|G?BC5A_5cM-gg
z?6y_L@aO~JNq-3<9Lx-(h9>nR@(mG*trH5TmW8&{@PC)~&6W<RWPXX1`XEZdR3jxx
zDihZ!mCf}{eHA0bZ!o9>(V7#{H5tX>Sz5^}Q);nEX-eh}Sw`wyMs0{n+Bj!^4KB9=
zAhJlH4MDbGCJa%KwhfeJUm7YPiUplW8*~p#8fK|&%9?^{O}Z+iar2$#;4PP;O&>GE
zP!TNj2f{jH5kYwLeX<UDa*pQ&s^_xKQzPGzW#y_yLM!t;kmTKQ<=<~gdy2|?b<4RJ
z%ljPUm`&BRO3VA_$p_SohH8xZOvwk661X<YhrY;%fyVCoMuXqg7BC|OS0Vb{UX{p2
zh$?(aP~cS@i>Xn7#&?f31S)*qR7lFhihFl`g~ce!xh?%N!Az}rm5AL;qf@83fOt|?
z93J%jT%ApV6Rtd_!LdkpQW{?2{AQxWbA=*OrQ64`fZdumBE?NCk<jscp7YGW$LRCl
znRz)f2?hma11U!nO7gi8hn0%K;p9xuiulY@CsfM$$V%Uhm0Oq4i=)~#^<k6N2?42G
zp;U;}=8>TWmD7QoyB=cO20+$6=|h+(4sCLo=U6!BiBU;`X4<S9SPr8g@E48A)^6|=
z?&r4j%;(*2nY4s7Qq*)$1Wd$bNVm8_nB!(1FnwSQMoXEf&(VXp)6#xQSWA=<#qTc&
z!s?6Du}V$QDUj;!{{^K$TEEPW&4ibGU<75bhNRS(NSdTdx};3nBoCtiPXZ-Tx-**i
zGuonwmZL2p@v(czB$`lzy^)4sV}o5n26-YTQ!2n6V@>SjIF`7Es44-`q6rLWo7~X=
zrlhKxa6*@mrNv_dQkcybprm9<k7tUed7&n2Y6&7doJY`&X^7Bmno!0%HB6ufSKx!U
zaE5T&4Qg<~Z9*)<(Hy|w91Hyi3~fw!;!qDIoDgM<5oM?5`%n}GuoZ353bj!l)leAy
z&>7`}8XZ9sb%q>OQ6HsHAnni(6)%M{oS5^?-_*t7yizP3iQ;^hQV;`pz=q`%nU6w}
zk;1W)GNqJa3IA*$fgiv#H3g|H_y=*Ar4%5cuv>#sNDGom#T|*pQDUiH5Cy9;PWV(M
z5cs>N!h&EZrMkg}nn)sYn5EXl5psY5y)((2A_0&BOaB~H5tOt@8zC1ApHKxpx-u+(
zYPuhU2g8vx9h`>tN-TO9)qf~e6GYYBsGC)7)%kkWSk;7C^|Vr@Ra-sPeMnVZg$q{o
zG+%`aU?tY+Gu5}i)%2p$p0Ug<%~oyQQmR@4R8r2*JR6I<GZ2V5(_)F#atYCNiM3&-
zKLyZqb+i^68?=#w;>xbxkx#pFfeM&XHbEk^2?5Ain-ILSmUA?BT`@O>7mZU`s$dCM
z7>jW2v;Rl+m$=e|d7vjTyV#5kFRx>V!TGD!Vk{LBs~7{fuKFB~)z|>t9FWxvd?Q)$
zyCA7!hLm-Ql?|_)6|;{G*_eHtlBHRcwJr}!td8Ybm-Sg|y;k7VR;PVhiQrZ?Nx-=T
z*Uz%H=S-frX{>d<Fp{z)$RW9Bv`qj)kL96&HZU<`0FFm9p8u-=SZXd}P+R@@BTHf}
zzTrxS#YE?+q{Bq29;3T`aRnhn55kSFm#|Pg0#eRfLE$-Eqf^|MU|g3N(#I{_mw;S?
zlU#Lu(Z<bH!^K>e;M}F%8El1G)NM<t#gVt;1znIG<RqCoQ!+Pg*vW-Yifx;c+&B<u
zy#LhGv$B1O<_eX*RM!DqJ^U)FFKpL+pshrEmxg^CJM+ScMVR*bI(&Ky?5$Ozoiv|p
z)f3`8?G3O<BO-swP4G>R>+PuZ-J|aPwC}YZ^&MaL?ak7~nbS>O{T0g9O^>$|3U94A
zEDAQQHA!{FT?5282uhxna>C^SUJ5|o7-JrKV77T#9y5qkLu+6$EX|j&BsOqKdWl}R
zNhQ5?mv7iMfQhu3?X+oKs2XfKV&jW<gTY^5vKRK=YMo)xjWNEsVHa-UF@g(|bu!T9
zVZ=QrxB%iI&SCi7VR;caVIa)=owcUjUo6hn{%sfK^jDApt^33{oHF2*dtN!E0RIwT
zIef#jd}14#Q@Qz!rhLVsYXAc;o}$Ebt<!ARnDYl<V1qN#Eq#@jh8?l&0<G%Zv+Vpa
z4jP;y_O2i-VxQ%@k@X{}Q{rS5S?yXON4}s*hGOZl<RrdXdeUU>ZDb)n<w*8qn5ASY
z6Xkm%WtdGmPEO@dmSK3QDo(9pg2~@3{^f$)V&l05*;#|hG#I<H3B2>Xz3aQx!-kn^
z(+U^@AP9m!{=drm2i;nMBtQ~to?r?X0woA3FLG2(;sr*i3H-x`9KbWhqktf&n_!~=
zEC2?=14~kvibS3_BA}^e_JQ9y+i*V9g6-6W#g_<0<@8GEAWW~|>z;iWRsT@h4SG1W
zP2f-<i?rWkXk>lp>yhXo<AaK3Cycf(jeZA?&efE5Xx;c|@R?}F7-?-P>9acNmG&=>
zj%ZJVm#5k}Uhd^924<nYOkwt4p(x(`1A+YuCjZ-!8%t)J_#E2eRJ#L#X3&rlW{Eis
zDJ%#g0knxPU`g7QPgOci2OJVMfZ;)Ay`qA#dnhFeP=kCv%?lh0!MzuMGK3O+jlACL
z56vb+*iZ}YDn4MrQ&T7w22scD>l-B;z!q$FB5cDZ;?8*u%Vq2%#q8I3Y<d{%-I(kb
zPVCEm3%zda=pk*$9zllH=buIxUmj}M#>S%N8R{jNki-!Wrk5~;&HsGi?XTQtd11rW
zP9I?M>ERBT*N$!F_QcuVnM9<9MO42qj936Y?kCKhzqM}U4(jFZ?t^UZoFPRdImM=F
z#aD#Id>LMvkTy3wZ)S@{?M5HIG4A-bM(*}*{LV-4#+hL(#$${cXDll2#Fu+0Mq-2<
z^$r!QtZxRN#^la#2uHj94oGku$8i+vd`SljxA3WKa1WQp2aj+OPq+#Ha1%dqfei5x
zU-338aTI@X7*EIhW^o#)LKly59M5rCRPh?`@yfb!9S`#1_J?8s?kD7NA5U_L0`iWz
zo!xCpH%`fwY(|&tTM^s@INDwz*ThltMkH5qFfXM2?o9imV*h}-o!qJJlcWIK+?S~A
z@O`PuW~5*%KS|9PA0y|O;=0!k+Veekqi=XVV?c*%IH0ld^RoGeL(i^zKnJpc^C|Lk
zb{IKHccVl1bF<m=11hdb|A%_u^fg5EM^_$EUk6A}k3E+Mf8g^{UkCr;2S+z`e2R55
z_n0gv?;W4<FyHkSf5!%!KYF<zF_;BnXV8qP%f!6PyxhyS%@=?8OM%g%3d-{xTcOgv
z8St7FV3ku;BU%$AGL|?6RI3|w@*lo1taj=4_v-c}6ZcusAW!3-3@r@0)4jq_sBVYo
zcFA_@sliEr!NLe1-J=9}d*7MqrrgxTFXwfJZ=W#_Q~!<$O$4qN-nN(A-m~;e%?qA*
z*L1@XCbSbK@D*yITDNsAbA)ib2Ef>+h<gM+Xa;e7wf52ky?H0D3P*YphH&(sdeEo&
zst0aZD-1`iZbJETASVvGhi>`>bU=s92%LMsc|6eha`2ybY6iXW2QAwmvq=XX3^yZ_
zhM<4>p!cJ7xCYG-$Dj{iPbmjOczJnf)n8zobQm0}F9)<wdVOL+_}U<9&lo&!mo!?x
zg>QJnKb?pF`+jN81AWdAz@)(AB<lR64a6|J)6SacP73(WxCu|2AkP>xPYOU!URqDM
zKBd)6qRVdy`dq*;&QC|<PbW;!Woo8zU<5Web^lL+quN7+aI={;(q?@>x>pa@x=~t|
z2&{K2w~=KG(hB}|fukvt9`BK!B<r_NtDXEpoXd#WUs$UPS|cO#pBM5XbYmQnf0ywJ
z(Qv!3e~<@s(;U7Z%bYpO$`vO(AgB3~FC4{#6a@%++VBwE^zTt4g3|^TJeUyAw0i{c
zV4~-W4?$=C3=!l*ZQMkIttL8?$gz*WkPa0}Bv|oc#*H06svL>u-z*9`7x3)q^C!@t
zLWdG9YV;`5q)L}EZR+$X)TmOYQmtzBD%Px8w{q<o72m(GV#kUtV77qHv^r;zZR<9y
zwIy<wuzC0PF5bL)|CPd!wnExDVPVNo3;)8eo3PkO{GgCnEH=Lsw)_+4LT3uQuXL^%
z<yY`ORBF>Q5j##Nie930zS;Zlo{PkZbb?qmSSOZXHFQq<hb?Vla+e*uzV|}s6xYg^
zGjBc?Q6|%PGVL482i`wC%<l2&&9V2`a`ec;f=CvmFFXeSK`%bN`s?@qKsFQW3Xe1L
z=Es6uUm5>ctz1_gc<fQf9!mefGRb%n)h7-f@U-%aYq0bY4@dR!XWlE5=wnEJVL@mR
z9@jZ{B8u@bNY*D4IRc47a7{FgKND#}4@d+t!yZA7ypyALJmTTwJsjaN$v)+k*xMr$
z!9&hOJ6bbijRf5Y<c^5+_)d`oA^)jlcLzBMrH=nhc~ee1d9@~+ZMyj;oN>xIC!KZL
zc_*Ghfu+}3XpKezTh7I`Mlho+A%<NkDoP#&Ab<x;qlx}=h)&9cwGLUZJth`86odfZ
zX;qAcX;`P75f(q|Kq|*Nt;!RYKgY>onhO<3ikGI4hEQOqAW$O~q)b$I+NWW~LR@jj
zQQ*X)%{qIRmcIDXB!GiWBwu_9=0)In5RKGZdwWUbUwP~GXHGe##5fkWWEsLoqKKFn
z*0}K<_)jbAA(Egqm{ix&jLRvBM<4J>H&GwhxjT`D&pO=Jw{2;uA%qQgx!t;9jikvu
zO*V`#9vpi-)|7p)Q?9`|PXFW0k>k<J5ytyz9CF8ad|dL$>ZPm@%PYQ&Q(AcnJv7lp
z8+|m=Nh`hdntSHe=bwO{SdTfdma>GU52FYvXkpC;jaY|NP+(h{wly1QvlVzxUurRH
z8U<w2ds!RC*bR(MVC!X^P8GN;qE5uvZA>YRDm>e)#(|))YozF8o3qzQJGr#Y3`_as
zzch&X<m|x3xi1=81A4<+UaOwV<w=XJMB1iP4(#HwD|4w3NrYs$dlLi+jOzj!uzqqY
zXmfo2{m0Bc`eZEDzJJq8a53r%kJrHJb&Clw`!as8&!2Oyq2%9R&bj8Vf$odvW|E#M
zMFxkZ{qrBov}9ZN5&!gYSoRZ77DGC-?~?QWF~2a8MSuAFNB=hAzW4x;EdBtRnwTcR
z2~x0v7Q7$^Gk7$o;RR}c3Y4PAK^Lu|=oO1&7qTXmoV%FqJQPSyr&joy<A7idxgf#|
z`4hLch$Cuw6PL0m06C5M5Cksk)TfTs8WJwYNT)NAO-^SX2uU$W06QI$u6QjZz3*Q4
z&{BvjG#*6M#~k};9d@)xwsuLUH|1$Y?(!lLJ~W~cj`+o^YPX4Ykm5)S9G>uQmn7Pm
z?piw{OY_*5A9C=49`#6{Uf$TH5Y^6&(OE|x#S$^GXmKK3bmFz3Sj8!haz~x?(gHWh
zJZ(9MEM$sKTmP!0t+B{5fbUx#u<qxUSGuK^ZZX~Tlytzbq=^C=JSH-esmx_EvzZ&*
ziw8#o!W7+u5o}<hb0DR+u!MpF+dPB}-O@s`0D=P4XoWY$(nC?rEu5zrA}3uC0($hL
zp3H%b8HAHgz=^7!{cy`{*zkgRGN&H5*hMB66+X;aZa$zZ-#yNkzG{F@8eyR*=PcUA
zooUEIi~|X{_V*8Y)WdqSlN(3{s1k9Rv@P@r3(VTW#<4^K57IEiEG43eYajy|*C1E`
z;Ww66ip3C=_@i6In5~b>Od^NOrQ9%zIgKuqat$5FLpKMyiB_~NP%<8Z6h_qNO@u;-
z^kh)cs{fykp!8b!yP{d2qt@B6wOb6!6a<aw%)RopuYUb2V4KOoyF^nh(_9V*<B~OO
z3an9&(#fyF0#01HV2NbuAqiX{EVw<!AC3!W4^I`AYwThlvD)Wo!Eh@UR(3vq0S^)-
z<qu%6!C;-z$*h*cHwv(mvA*3)?)=fDFwQciR9u@#t<_fWP!X&wY-zVNL?*e-^k6}P
z>PZnf%lJJ9mXXv}d7he5?q>J557QFa5*Z(h#i&UNWFGO#)4hoeuX`v12?6IrFnF|t
zz2<SR!RRaBzulL9wM$rkIf<sA1-8KselUb1Ea9sR_AP}?%VAwJjzjh07=}WWc`FpP
z#Q)qw5kT-u5P;BwA!0)ZKxj+_h5&>h$W~ch`^Rlpkc7X`cy1IJf)e_Mo!?M^1-xKH
zTBb)9Y~%o0chE@?decn`U;!9K&<R1s;<zj;XSbyZF_?$?5Z+M>!H(d_i+Gn1@YqBX
z#YoR}wecd3@BtD&Vjv&x%#nNH#TC@DGud46kQ)szNOFb*o$Y+9D&av=_T$4L)uqdO
zG@^HXa0GY+jfYC}4n}-_%RL^!kw(;~B^-l9LedP0k%fhKXnq7G!;GT-h(*$U;L<~O
zq`#07>>d59511Bm*I-kcAk@K<a63W|fNjDe0W;mLe_iPA6#G5MrdA`F?d%0daR0*I
z{x-P7EpBF3*ew@ci*q76mnE!WwX$xD37@eDENf`DYRRpFd`Pxqarrj1X+|L^P=Ux+
zW;hkV0wl)~L<)QXlGMYk*OCku$ux=$0bG@H9-)&Pzx%hp>j)n8JIVr`$wld_Uci3W
z8z^}fFNMsATnVBr_ZIqe)P=5=Fk%o!2MI_Rsn*M{<y@BvT}FLq$0+y5b6s{EMI1?#
zk>CX+gA`IDQJ;pA3?UMdWPR%y$&n!{lE9Ym0bT%OP}K*Bb%JOeWM5~y*h4~gv!m5?
zc^x<2^RD;3^IcBmZp*o)b|Qb^;~sx+`e2O6*m~sSE%rPSKmPGgtxaB>^8d6Y;xq4C
ze8fW@NYy;(LofOijRRhzKfQ8_+4t46zV)tuy-*H6mcVBi^(P92ulP}U+lxN(uHY^2
zgD?Ey6TkSzKmJ}+5BudazxmE@u<XlnmZ;Sp`ES{SS}L$T>x+dS`S2(B`w@M;^iVCL
z<v#k;um1J3zx~8y@blv@|M}B@Y2*I~?cLv&Yv`i?y68pw-2=r%&6l0XJ@{Y$DVhE)
zAOkj_13sX0C|~_eAO%*S1$xE(<sSq#U_Hc+2gZ)WZJ-E_APJVB3F3tWUZ4uDAPcr2
zQDorseb5QcAPv@_4c;IQ+FlB}AP@GS56&M9ng#XcAQ2X!5gs8DCjTK>?BEYJp%Xr#
z-UXqbNRtv)p%q>s7G~k`F(DLop%;E3U`gQ+Y9Sexp&6bb8a4|Tf*~8Wp&MS17|Nic
z+(WB;9yW1J3@yhu^b|6<TdCyG37$qcg~cBBlpj(GH5?1RElTUq1A2+Y>tqAwIm;W7
z1?-p+ikwMBh=o67Lpg-tdC^WMe&V8ZAUA+w(>3A|s$v<g;TygpEXHD<#32=;NIe*e
zTr8q_aZRXnnfblNX}ry|+(XFOUNC0LFSZ3DVw|%y;v+H;?L15+9?ZNnM|og^y7<Q{
z7@Hj~$}@(=Hew5kM2YC3(JJnj5qg70-GwX4qC37LJaPps8voX;$;B>|115&qX+%V8
zDMvl5gEwHnrnnLjT$97}&^DbOITU1D{9`~4q*#~`J@k+QI!Al7!Ytv#lvJdmXhS2&
z%{`F9c6Av=j0Z;k%{mxD%V~`(+}Wt8<f8Bc%M4S;2^XOmp-oOA4XR`}wqrd0Bv1zB
zQp_WU86YDp0Y@^{X+Xm`jm6`M(+fbPa^OSb-NjSFO;X|oRlbGyp^D=fU{tz=L@uSn
zw1-D+2uJRNTH-}FCe=u`#aedDqg11T=tW$<#a+5a9Jz&Bwq=bRP(D;8T*5~_{83+$
z&|$hoRTk#MbYoz)<v&0sbL1siJSJXJ=2&ziW{O2(I{$}Yc2{2bq)?6~X_h8YqMM*#
zP3Cn9H5doSS;KHpKw((c+(;#)KwPG1Tv{09Kac`o48d?v0eswpG;|XiltVKh11f@=
zZt8?V-ey_==MRNN;iSbAI1hB{VmwLZKg7a3v1Zwnf*52aSww<CEQs@@6t(O}s2LJ`
zFoY&R+pQFm@Q4wkvC?|ljKRRdb(CCsMaR^MMadCN`fNl(NZNIg6;MeGfUeX(u*^hY
zg2T0E$UK8cd6s+D-0lF+gI<e-Do23kW`=&;nU%?2_=BWr0x+1UH#pIEkc`l|%>0yu
zkt9qM?TCPI#3qL5T9rt~3}~~Bh5m$$^VEYA(f=I1tY<>Z(twr^zF>qK$y|fr0Zt)k
zfusXBP=p8Cl4zEumwu@`o~Gb6$JO+LFX%!;jUGBR$`VKhL^h>jFh&Z|3k~%`+pG|D
zf<T*6fM|)vpA?`R)#;u3Mp_6#p;EwRoyL#l!e#W9Z^$WkzD8^~2c>w5PBuqMxk#cY
z$?8<g@A!g_8jLHTS~MyMN&pO@wL~98k4wOZg{-J1NDpYrLPs1@OE>~BG>Ol&NRRYR
zfe06(B@Bc91Fe?GA+=dC7zudf2p!!O1Fb5YDNz6P4j#Y=7a^;%7DuItqqX2cr{+hs
zQ7ep?o*YfYLzGCV5ri;s1GPMr>HGpPoc{!N_ye^P#6wJj0hvii{L8j}nvn1g@Vslh
zqNB*EC`WJtHG*nE{ELm0*}NJFymo|LC`oU~8BV3qwP-?<n8+!WYL|j3$cF3}ifQ%9
z(NV5jZHeA(WsN_S)0<AJ<w4|Zr~xM(hu%O+6;y|CyiKaCN~>U!Ys_rTrqgK%2097G
zA)L@ZFdm(5)=<H0*+A`bRI1W83rI*qliZ|Oumh+hC`btFMhGif%2XemgN_84|1eM(
zQ7MCr*ZXV&IN%aKWRkov4t@Q{0Vx$C!EMIiSAmoVN>mB*Fp!3f#8b&cZ=_VjT&&;b
z(p$RRN`?j3){d<P354uOb-Bez{Qm;O?hi;j)j)v9Ky2d7Je8_?jz6T&h~!eNb<t%J
zC|Ol(NorDpu7k@+gukeicDU+v%na$WjIhcV;~*&;>Fpe`*?zQ2*s(*aOzslGpU6h9
z^nxMDrrS~O!m=3(JZ0XooZk%TBAjj~Iq?=U*bOoq$75)dSO9`M?GSU6Qx%l2F`O@P
z>|?(DN+KwpnZ%~yWQx>2ZKUP}k<sk400||;5}ZxMy}Z<5jHKJ<64O18*oufrl}Fg^
z!voW2TYN))%8XEr6|lUe2Ims~d<U&bhlX&(FYpvHWGV5aRC(CNNls%?l`7;S@aY^#
zD}h9Qgsxr~LiaGRsTD&p;Qu3h+{Ywv10QOM7tO8%m55!`hzPG_O_5FM^#&3vaZfQZ
zd{_f02`iN3u2?+6&XvgaSc4;s5$&jA@v;)OWN_p@Z?{b^9oKOWR&R4u(-K71h9!gO
zZAL<Z+W(4gJo!-iqSj<#<vsDQS|kQpN~D4)-fU2S7wAF}V1WJ-a?}R!y8+3q4OK@-
z3zF(r!{}`r$y9{?O}&8fdRU0MI0DSUmx)5KCip@ryy*M5ao&nBIbzpIeJ(8#PshHn
zc_@__RafTTFesOZD4Wy{o5ur-6LgK$fHEB@U5j^t@a)vbKn&Af*6mwdvjX3exB3E%
zBnU7|vlvUvNG4Jn-~Vn)!EtCpuN~L3Jy#$eGY5)-*nEso=s}A23UZ`2r9V7bZ}=0V
zd{g^wuU-`N4k0w$fQ<=Z$3(*hmnH4?g>P-9n=jD9a-IlC4a5Y4L|lza*Ou}GSCUM@
z%SbfwcAao}u){^bNUR|OCd@-j6%`*q5*vMRay76m*)&ckC=J6DM4WI~KuHRlM_=xY
z8wGE|6!kygG9iY}=Rt@2khFrm*E1(B?MRN?$jjd<T{g(WI-o;2q{oVkM13?h`_Sa=
z(8IfI-$u!mlCgDUb|&ur&Bf~1I)_Dd)CgTh<}Hy88_P^2h^<5{Fd_YQTYT(2N48}5
zT|P61V!?%KhX3AeZId<dssGaE(}MPF4CFX4!ebRkA_LC(krrf*Hh-A*eC!Y;OQdlK
zBcx>V+<<mG>Gobsa=$4`N|lVuq%+9)2LqdG07Wx$i^+TO2<N_xr~Wi(c1h`ot;(zt
zJnwQ)M+bG+PJRh@g1ttDghfq#j5_#&S3mW5h*9Gj-QNI7>oU(u68A`~M_23DST9d`
z@If=IgQRH)aUXV&(o5(l7)^o<j64-0t)xgN3W^pp>Tptl*T}sHx9&DfILOB-M7VgH
z$Tj{Al1@pzEvUVmGV_q@JphB;K=x#}xQl;VW$Ttb`hr}Lr+KaE5G=uPfW|oZz>77C
z5CFjyjQ>ZA{dkPcm|c*AUx2_ajKXlV1}rQ&H2A~3QNVTj7?25>UMP8^H2ITb!)1T~
zH0a7Z=nCKHX>95M*c3U8$ykr|_>Y4?kPo?XP%T}bh^F-h+1&`40BlES!jI6IuF0HT
zj4G*eTC>q>UsF*dm{O0}as#PUesNMl9LOrzYkt%eA1JK7)`zX(TA2VVq7BKanNp=!
z$E9yte%M4a?}w7Sh#@hMBfJ?&c;u$7og=`*fU)|tEDx55nV<6xrs3G`P%9s3!Z{>F
zqx&s>Z7PR`MF)Fsj~K%>B*c2i1Rubwkr>21IKsvX`)UEqtx#I91Da8LE44;3ooRbR
zRR4)1An1_v1{FC1r&lgBQ_G5Ad#92snKZ(B5(%{^&^X*H?e;;v%duX)xWX^|xW)K#
zl=fV#qv%-!#i>An9Lt{&6m*UTc-%udr9}{E)S6Pj9PAdCSw`O=TycCnlvz}EVtgW6
z>Nvz^8&s!YY`j|Z2F8!ZZ$BIb5OA{q6EyP6MDPLDLNOItj|K;wl&b1@geZj)#B(2v
zsA)@%wDMhbiPUdHnMB=>s6@va#MO7}{tT!iI9$o~!7((%YviXUMCtu71T_Hec$j?%
zb_u!GP8Een$r=5|T4+I#i8D->-jnWFr~?t3L)-$mkJ`xJJh+QoRTT+OO@Y<Nk^h8!
zWUOq#yCbCO?=*vwgou$w{!p!FwmZ*|YC=Ml+%NQz?V#1bG)%JfNScZTi!(g#=l(J|
zJaga!KS*ZB@x%Rj=I(*n_c_N^mf&WZS9KuOIE>nXUncNBOyhkXW8TH`>qYfzP4+tr
zgiw;fTz^{>=Jb<=^EO9d-Ua#drDlr%_}gLgUnUdXzV6q*{Z|n0r=kAuKmTXmIsk;Z
zc-HXXnf4E1LWK(%Hgxz9Vnm4(DOR+25#lTg8y9r+_z`4Ckt0c#G<gzbN|h^FwsiRt
zW=xqgY1XuP6K77HJ9+l>DHGqs0z(UIG`evXMx{%cHg(z*Uq7i+rv`m`75{5ity{Tv
z_4*Yo*LwxYG7EbaZCZ>PIsSC}7H(X*bLrN#dlzqBy?aGkjYzcUQKV`K7k(;EaN;wD
z88>$P7;@yW--;D$_D*tU%@x^F;QJYLXwjodmo|MGwOhXs0Vk%AbaQOA>B`l%eOsPv
z-Me}B_Wc|9@6M@-7dL(!d2;2;O|O2~Ix+0v)2UatejR&u?b|aNW&Ry}c=6-OmnZGq
zA#}mgxwm)!9)5iJ^R*8*e;<E-{rmZsN8eDrqu8U5zyb|C5Wxf$T*$uu9DESM2qm2G
zrvDfU(5L|y+>pZ#J^T>Fuo|S0#1c(B5k>MWTnNL#u!DtyImn@43jd3~K?X<68XAYj
z*zS2D1bQCw=Ne?1QHaMWehe}zMDU;n7Cep&alx_rpvTFBsN8b95mWpU%rM0qGp-dC
zYVkFt{3&ILHr-UFFc|0Hv5JcBIcl*TDR5$|dw$7nse4=i0iK5tqkzzak`$Cltek`r
z4`;Yc&`K-~niNy(yd;y;PCfk;RFBL|2u%$qx`z=lY?;LtMwWn+FdnB7^bL#ZS;rd;
z+;E5-BG}jpF=&|bXAvy+f#@DUKoAlkTK@s0#;jnuQk+XOH4u?Z{%PgPYrPfDyHLd)
zm)vq492KEb)htHKf3R7Cn!<R5M$laulIo!!?ZpV6d?3PiA^%y=ie=e^>iy>sKBc{K
z9BaRwFWY~nE%f1vW82i+j5Xev<MV_f$~99jT9b@p37e6cALm%e8W)U`fr45UI(Q)%
zH<E*)dmcIJSA<BZfPx`hrhp2Q?~x`H3fL&88D!Y0h{uiUWT<5dDqw?@f}4F|<wT}l
z=$a*VF}WgGCZUHMJapWaEN8|t1dl7VA#0O=9%-bYS;@kL9#{A%$Qgg&#)A)P8ZM~r
zR@#0$ZhGcM+-|%LdK{0s@6LOyg823uaKQ^I{P4=z2ApxZ>5d%pz5D(<QqKuD{B*@h
z#{+KDA-{a`({XP%lDf@i*5cqJ!?@$(jXxfFozVS9UH_-Xd3Cc^HUeP@3^v-gSr@QJ
z2pbZ9pkVtS5$&ZE>!Y<9(dsG46BXB(sE8aGfWRPHg$~(>1nVhibfTzZ#)=?$^9NZp
zL66Xx#YuQ@#5?XWxJm3IN`yPeBgg`ev=ziG0W`<}3sS%X{v&}4{9p(f=s*a5Zh{rO
zARaPEmT7Ph4<0NF2n({n1{UOj5#&P(3u3_;YVd^wG~f(LIKmpPO?XM%4DpiJL?=EG
ziXd5D^O|CfCA2FtGok>j`~e8?Erez{)80Z7K>;-w>;)7Mmc%Gfg=3M!1q$QGI$$J+
zb=(n97CA)y5E6_1#p@rgKosyK;=k=R<%Z129RC&-r-^w`a7qXvNFUe{rA?6SaMSPx
z9?oVkxG6Gk3Tfmcr6kH2k}{J2m}Dg@hsnHcvXjmF<RVS!NJuJVm6mj+L0}2IMA9-L
zqr7D>PdQ8_9#b<+jN&qx*-Uax5oFPE3aUz`89(M}YdD+P7#k8sgm|$E$S{U6kda1v
z!Dx-o;-kQrvd4wo4~vP=+Nrz<0zhKLbvtB;E69>cgi!91U{u{g@`*)+@UtNP3}inU
z0#LFwYoH1#=sp>`5Qhp>bA<fIL>Ge4Qg*bW$Q0@D!sSepo)o2Ig62>{<~-<W<`rs`
zh&Q*1JwdtVi)>7%I~7F%gI<KE2{}XsDF22KSj_V=7t|I*IM^+QB=DyaOK3xs+K{Gd
zbfX1v>O!E}kO(UDA5~?lR<TM$hbiQ%R4vF-2};(nHg2SGeT*_wT35T?6+bHt%zB){
zrl>jwM%c_3H^qoOf84>R|Cmb6WQvfW{)0!$Xv$*|R)Kr|L!L#Q$TwyItE^<MAisDj
zSz?)x2ud(uWcjGUR4ZDpl2)S$<fKMVt4}1U)}NrogKHHc+tM19EVfk?ZZR6#(c&<+
zu)WAViV+O3$`!g3p(|dgTV3lGN3Shq3N;^^#f_xX8tVh23uGq7@*<>+*c%5Uv;?De
zJr*(8yvEq{$j5E%4^S{dYDD~}&Ht;=l7az6h?9;KrPAuMVZv=#AK;O>NCLQ(2_djl
zOFLl$0}sKdMaY61JXMHZD!^p3@N7-n$^^HI!wzOGh$B4UQeIfXFD7wCV%o;&-q<43
zz3z^A++)0CSDH+DmuEF2y`U{&Xe)!P4}kDJ5C{PXR}d05bkJn04FL#2zzjL82ZCLU
zVraF3MVFyLtc^T@SvMVm5;j6qiS!Bx^P@lzfZzjR-85)0o8Dz1Vo0ob^dJfB!#gNf
zU=-d%a+%o20sTQi!qEe?o9LSh%{u5pOI3oG*5RxYz38$u`g4$`+oVG&XhJh|(}-TH
zr!ffXM@O2}mol}cQAleIPyeKhiN*1*Bcfv;{~FlA&IyqD$`rrq#v1ygfC}2>$HXuR
zeS*<avW^l2X&}VNF%sYYfG3WjRR9Z5D<n>}d5;<xMGd6b$X|1oMteG{Z3T^>ArjZN
z!x@5a0L>g9_`pEe$~JI=+u^+H4LE|2E>ic-H{JH#Z_u6%;PNgAy%FvVg*%SnpL6)X
z<1O%M99(vh0(sjgBEGNj8s!Y}wXj*<a+jlo*aC7&cVokk<tZf}{iylPQ~t21vAgFu
zUir(3UUZkoJVQZO`qIA=Q~NS~*F!h@)TzE>q`L^}5{U{`sKWECi*y_r0Q%QOD)p+L
z9qlN+dYZ^?D4ZHau>WnB``m+P_O#y}?@nC1$mUL)+x$I`bQk>KF=h9>A0F`<+dJVI
z-+0Gc%<zeq{Nz2g_{U!!^O@&R<SE~I&!folniu`(N#7pMe;)Oze^BU44|RY1qO2Q*
zee1E~jj<1D_V2NMGE1s@-~S%;A7g2dmomq7&>Sstn$gp{a-(ZEW=U98evhzHsVpUg
zHs;ul;{M8g&HFtYNSw}C6s;8RJH{W`$VT8B(vEeoKWBI-KUlI45m@}=^uX8u{*}Xe
zi}=GA+++!!3oPV>PP76Te(D~&OtT0>P!ff)=ETOTuW_#LANH*Q6`~%R0r@Vl7-BCi
z#^SeFYXq%h1OGeFI&{k{tmFKaYsSLj1R3HLFz6vD2M_q>AzJV$u0h;p=5sR8wD7O@
z_>TyS&^-LFBCKc)q~RJ|<@UBhR-C2!Tp;e6r3Us(Er`Wf7$OSEODiIVTYSk7wn_&1
z00<%LtPCScB*m*Dg*#rs4Bw+3*kO|hkT*mS1ntia(E<*EkRYDxf_{M;;AZ{=sssat
zg}P}BL2w*|uq})b5+m_DkdPuuK@2G7d58=x=7pvbLg$w21<uQUnB)_`q7?f_jXJR@
zB4%QGt6TPg=B6d~8s-Tf0tHV6uHugj69N`(5e0kEAz<+qBLW!FY8Mv*7>5xfijg6N
zQ7OiP0RQvBUzCCwk+B*RVjBM;8*63{tq}z)r6I177nPAAWN}B_uo}~5N(Lwn%ds03
z!WsW>wYcgPX|56TPZIM{ALW7)C&Ch$B@+t+WmIM%O5rHbtdDL6vW(&&($5qq01KD~
z8J^Fvg2pJ~fFd3NXb!?=8bx|Apb8qzDAve-PA(w^l53bM0PWBrdPib@%Sj+1r0Ss@
z41o`%!8QQp9?F3f@IV-BL)-#L8cLytDDoe?VQ^?C4e!Ahe4z*3@wuYJpEM|Lo>FJX
z0&ljewn7OZHfe9f?QxDIbQ;nS@P;U95Fu#NCULSh@@P#|i<8K4qs~$jfB`M9vY#G`
zD*tmYEgkI_9E}YjN}>FrC(A-EF^zDz@+egc6P|`~KF85;P@-}%A@;JYq;etZAu0R7
zD90fwtwnGa(X8s`AJp<Db8@))fP@|b5sq<y$Ph0v$YfgKZ#dGe{-GQQ;umZ~`(jKc
zJ?tbM(KGguIEzy>`cWd-L>cyhDVIR9G9zk+AQxO_YNBRW$e{<UM_3LeF^cMbC}0JO
z;JYTmW`u>x28Ci^LC>bgdh8{B=7;$t0)1+6A`%D^ep5@}a)$ol6!bGL|G@@TYXvh$
z7`VaFRxrjWb21sss^UhoGRF~sfr4TQv^2rd7}TuplhQ^<6N+JQ4&rc*MAfY26aUD<
z5%3cs{4)`;Erz5afZ8!4KudB6M?|%%7|s$Cj>UC;!7d3$M-GP%lClx72pTb}4~oGT
z5QiM?^Ea(Ub~^M!UCj{&XG+uX4<%}Fc=U6`?=>~6TJQi8is3*L0&e)=7tRth{J}{W
z)D<YG{8SV{LnldZ5cw7itF9ES3Zf|i2e>Xp8>W;&zf?bqib)kSA@I>S6ID@T0y$&U
zRotX!G@~A-@kf}zWO!s><^>_v;Tv2)4en?ip7MUQ$&U`nA<!uyUID4T6IRxNAt;L?
z&?lXqV!{CQqwrxJXj2+Mm0A3O9sUqh^C(2SGL#wyLFdMx5(q{WqFNAiA^)0{A@CuO
z5TP9vM>01lP^<F8K=jt4q+1#$l4vo;rleY?1Xp#HSIM*;1?LbMLUDfKSX7LL1T1qT
z#lVUxz_RM2ywaeG)RYj^b8fF%C}~^KP`JERND$#{#)5CabuyRrUK1i;nRP`Gf`h`f
zAOOi%ORQa56L=!#AI|kA({;mcP)Gy^Lw#@_EtYUHkR2|yVxy#8%<&)AAsluKRG+d|
z=SHCrby0s7XiuV1`>aiDVHB2N48#vIs>UcF5L0_9ouu$pwPpcL)vFroA5@i)h6?Cl
zbt2%10-)e9CBkC`(->zl4NKNpuQYQyv>3|49J=dqoK+!g@(k^kA^*O?(I|}_HOm?t
zK}aIutj0l~Ftcti#bHafV=>fUjp`WrQ-OTJGRi?|9l{Vw%VDj=OGU>5A?ixTf;54v
zUso1xexXQ^fg6DHAp{qT2-i0K32p*STR=Cg<`G(Z>#V?0T{Wv=1ni(bsvepYILmgx
z*h*p^H*vRR7d<C*DVA<GYEH>w{$$p)wyJUIG0j$1ID?jZyB8;h)*;qJ479|GH1RQV
z%?os)2rxivo_52qR%+jgY6&YMP}QhbH9mzZe+`3pua{=IFm2JWbwx*&^pho@wPF$Y
zc_T;@e4!L#_X6qEA*l5XsW(r#6=N4SdsFFuXXY~%)FEh>wf}0gc_X-Ph*!cGW*)`W
z2UAJ6;PQYe_*B!7dLyPtuh%BU4}}M8t8RC={Hb9i<!~IKDe)$fP#9z#x2%%4gFQzw
z7b1r-iVvD{Vx?+ktyg<_c!O1L2));fzgQ)}x0@KDnl6wLA{8<i1$Yj@Y5yl7qm~LC
zf{iIg6&oU^+9k8>XMYi9j~~JsXu&9Hm2u}07W&O0SU9zu6<X6z9@YUJ${|UA%O8N@
z7oIZ4Dwl?o)+T$9dixd`UF@$6mrN0NwJaEf2AP8mId9nkSJ7b*)9@O6Az2T$lytXb
zPdIlQ2M=RxbYb^WgpuYZxsq`=lu1|C6zzsrt6?}{wEu{dGMz;HdY2mwEijXpcn7Eu
z3%PQc7>g@siSdA$Q;WAi*JMmN5>j?7o|lK|SbKdIjNh3!#W-hD<wutQBPHWU6o!qo
zW=5u_i*)S*UBFT|3>S2Sjnm8vC&G`k36AhLBD_{U8L~;7%6~!g8ZZ_?zX4v+&{_^h
zh%45XD@~)M`5a4lolDkQ`cu+mDGujm&@7fHxmCC(Nl4NrpaM39x0qus_M#CYih+xR
zHx#(|pc&TTET_atHu?hL#$HWUVhPwu9Kjsa!O?noAp|#-)IpYUmoi;iN8VDV+l8h<
zXm)FPwK})Np16uhT4gczQY`p}B8heXiGW3yr~jvfn|oDBFAx(n3$4|bm_ip%ZJA+B
zMjd`ZNBXy&yBMAuyRqe&YL-9@f&m!Xgg(PUe5hw=C_o2<#UI>F2lNL7p7U8Kpaj6|
zyZj;7LcoH~?P|Uje|EqqQXpj%LC)x`2S^*vZoAHAwSGquD=xIb@P-fKR8Jl4fj&$V
z&N2=|N43gth>hVI@TP>7wE^e4A+Y<Z3C9<Nv_`obxtV2fe4$BoM0Ti{D><kU904m2
z;w%SkM2#B{d;z(SC4qba8P4*uPRpS7wxS@^fir5O%5+bCRF?EpOUB_uDX0<dvw$L4
zfsmBs5_DO|yS!O+zUf<lD2NX>p&b&6mj7(pst9~eRrw#ZTOl5&fzNUU8F+6SVWlIe
z5hRBX9-N~!JT8IsNDyj)5L30<MZ_86f;9AVG-1mMq7nAC$9-CX&XUC(RMm=`K^WVy
ztK5qro1iM&O%6C#HoFZBGDbFRXiNai{cGFi?AkuN%?!sV`q-$90t*&l-Ok)7{L6m?
z!@mm2dibX)^64Eyr+I6OFBkK3oU&wx@^d(_WLc+!G%A4THf;(~AtD|5ZYZ?2;V$>q
zObN-OVhD+-(h;6AbTFYuB}L%={B%m}b8-)ElJX`~%c&Pa9V){dz+tswbGII<(=~zp
zD5DryNlOCsHgR1O4C>J-ihw>{wf{mL!sBKh5a(h~Jb-_ffbxja582gI$)hl#9FWUr
z$RZeO2g8DE_9%y$Wy?0<a;s1rmx4<gI9x|G=obpJT`avt2YgEbeaauv%KQDwg>SE9
zjwx&oAI4TK0LCFskuVe<L58ur5V;w#actA(uP7cO;?W`U0R^S;A^fES#jzrg&tyQJ
zBB~`YdGQ}UKIJ1qarjIkNIoJsKI2#3B6`Q+Y5pXqeH=gj7H?iFZ2sbV-sjhX%KhEw
z6BWy84?d7}AGT5S)<GZw=&~as9nfJN_~~(#{yN<G=)1o2lD=ZLj_dk?ADrG|X7I;J
z?}gQQDV$s9wZ1yI-s|Tc@&Ca7TM+B*+$@ReL2@f&&^6E3FJmjNp)#5w58<9V<eu&q
zKke+^TWIp{ZlgC5pYkgoI251pGk@wF-|{=(^FRMki(d0bAN4pN^iLo4X%F*BpY?;y
z^iv=9WB>71zx8XM$6jCdz2)^l@ER~V_X}eKnWFdMBly*V_H7^esmt{5AygY<`rLdX
ziiFE`1D?2$Mxw7to<x)(-{50I2c1{*AfFp7c{*BFDSWsw%3=H?0#{!)BFx_@Xd@dA
z|M-*N{!_~F0T5CTzbg!I0s-Qmz<a;s2|S1};lXhfD1d;cFrvhX6f0Upc!&Ztg$$?M
za}k2x#gT~cP=kfX+5bU2ET>JpS4^bDYwSkay!r1Qo=Gwl8shT~r_iA|VfG}7H0eZ^
zEHmv>3U#PBJj{sx3>vkfQI1WYMyzLuDIb>-r&c|<^`_326=yZ1upqA7xpeE=y^A-m
z-o1SL`uz(yu;9Uj3mZO+II-fzj2k<C3^}r7!}u;1xLn|^=2=9oEgAF7*Ag~fvtDF4
z?c<w-;xr1qM+(GI)3ha)3PMex>VJTy(1z8A-c+*x{E@;#oNID~I?vX&iBe_6ad<dA
zzh060a_rm_;#;>4Pp0nNOJc=I-8y-J+9QU;v#B&fe=IeXJKhIkMDqyS<HTnTa&5ge
zS%C%~h+u*WF8|12gAP6jVT2OiRhdPYWu{p}oV~_~7+8t69eE5v^N||~p;l2p{V4Q`
zY!%^?4@D|=x1voY{&R>EzXj)?Kq$Gik9_P27!iHVBo!o5It3?DNg*aF5tI>0Ii-*{
zQ8{FY2SI72QbBh4&zD3YGM+^F<O60!SSGZlKxn$zC3TxrndU!ERymQFH}%LId~PO0
zUwi^dLga~l_E%_>R`MB<TMbPJX{3@)N@=B*UW#d^1y)$mg&Ar%)IE%_agb-qtd|fu
z6i{=|3v-|)O(+zwQBE_+)U;3yZ-H>?K`qkLYC|Cn^oVAp3Pef;6b#`)LsZmxP%I6}
z@ee}{k^d#F1tGcemWesNAna`4zM4oC5nZ#yF3>6j3s2<Wao#^DLBiA~GTn0@9>SEv
zFRuTT6W}lWmSc`U?^0z=SbQ{7+C7hmMU_I<_#(|jC>=T7p$mn@)N&}X#0OgfdBYSQ
zVPX6aSWNX%aZW7FxfUK6w-T~1_1>HBzWpBLPbnquv~H;^IRXqzn8*|$Q@<QVGE<oN
zTb$2$Xi{{<2$304(l3iUQPV7)e2~g4u`CcGAu~lU9(}}HcB21yjmOg&&&k}wOfig>
z-7GQV70m*E%p|_Y>0FM#Yo$Gw#csDvoZ$Kn47J#5x18ladJ|{OKaRqsY3H7Q4tnUK
zkN-}(rJPda>8BeO#mE>)FVQQi6`}Ge1xy^&8U-lyvPeVT{`0G<4Po(AupsnO3I-JT
zChx9GD1XLjzW+l`56W-!k2pUxWB~;gG<$naitymVLqb_g!D?9nF7;Wb{LIoMPfZ0s
z9uVErNXZ=YBv4oaOYIbdd~9*WQJa1g^1kIL>=#lyPf73qiL?>vV~&uT%mhL|NEE|v
zRar}X{PBo~VN7d$XrDmd2S51<q!m+>M$-6jz=}LDfA!jjKREV_ssUw%^(h9&$PzOe
z;$dM4!CDbnlEbj%=OPreAjUGd!M**%6(F-4A0Fl$gNa8zES#DTMTU?B_DOBUkpCJc
zyz(($*eoSJVv9B$VTdK7@MkJ?S$!S`!y>UHH>uj<LFQPpIzo|y3lR`g9D$XRXpTUo
zYosF|3CT!Ga*~uf-9%ECq1EA}6zST>I2f^nWXR4U{8$GpC?E&$tivGRLghk~$H!NM
z;2hvm140r(0b33PT-ZBh6`n#47wAZOzZ;PN8*;3A#0Vk3I$yU;gAzgMB!K>4M}V54
zN>=`39q;*tDh-E3k=!FJ9TX2*tagwAhR7@unWm7cnNA{2r4P7Ti%aY&5Py{9Nc6ej
zkWAt-y15Kx(JY=Ht9i|A9^@zbxgq~7qK&u(1%!t}$s`W=usKmDacyK03;%y%P=8*n
zOb3bR(GJ4GEVff*`n+I2QAQnr!eWP4aVJ7pn4FCg2PI58X8;dU5<%HfI{#pYSE%Eh
zAElE?2$h*a2Qoym;B-G4yJ@1DicRpa@}-3YXtnSljfZKXCnjCwqbP~iw5oNjY;Ef#
zEh!O9ZiXnLT7q5e8oN<a1VtxWUP4-tJ|Dd$dI$jo1*(7yV;BP&;PTcfvBw+cS%e|Q
zbWJ*4Igw@-#jqgYV^oydKaze`OFBVWpB_rRE%p-<zbHmC$}yX@j5Q(*mB>^RQV$8T
z1Y?m%)Ho7{k}Qt%NOF=76_2D7ftEI&#4&_u8FfNDIKmgMEeG2acmE!n-szmdxmZHN
z;u1rkmO7>_n`o!F6K)`5y(Rgn;)H7m;=;$c7X*$-5Wy4rh*l?O6rf1^m#Eu9b&0q;
zlt0$Ul%IlDUOgRcM5bBb?Xa-H=j^Ycwo_b$9QU7iphQBbI0>_I&aEUav58NN;uJ3i
zt`U*zTQpgeV(5YxqRFdXCBoPK1Xjn?YF<N{(6DCJ&asxokz}(&fyzP_crMCplW!c6
z1skz)5B~2tg{wA^#I$5Wy$Cz2jM{%r*BAN2nAu|JUoDZ>P%268ISE>*DLYs<99tRJ
z6oLo}JGX2Uwo`ZA_9HjH8PDgf^Uuy3WdeS+ywp*NeeF~xIsa49V}LG{PQoncbHWT{
zYRo8em)aBP2DFgNVc`xHGU<$A*vgIO@Y)c<F%heH*0ip*t#6H17AwTXpi+uIG_eHF
zLU}qASO!P@dea@hq5{+)1qGbo6@T1;0xnTejV=q>LmYXpJN}2XmfRvVCq%P2`Nk}4
ztQ0A`SJW<3DO4@&vi{QK9_T<vfKGjoYxp8W{7E!X<4M#t+ey*E#c@^Tb-_%(3(mwL
zQ)xu~4R(A79oztKLcZY(yaBwBbldKL>ET^i3&?CcwKAl+c)>4qN#DsS_}miW-A6n8
z<WLPW!pm#%HvZdX6qeIhf1znK7Ag`1o^wKMYIMt~?f<$ivpJO!CD1lvOgj-RIt!1q
zIb3Uf>s;@;*BPYigz%aIFcwPBMl)=Rw1%+%xQ4od)#GX@k1Wl^rMU!x%imRt5o9?f
zakM=WRo&emhD{E+BXanWpfB!FQ8%KT^9_)`+bin$MNrnlx15B<I{fX4#}N+3Aw|7U
zeMUGC!S;`;W2I*T!lyt2R8En`)Ft#G@P^yi@aLj4@=v)+JWadhf5-F})@(`}Pbv^k
z>r`k=Ldn9`A+_>C8s_ln$vraeUog7<AF#J0OxYsyNRu==T;VA9v;1*9<3aM8XCqQk
zs<CUPe@Kv*e5QNU+gJMo5-n$A#_GQhYw>+V(*GU-(o@kSYhR~;3&?;C=zw++b_g+c
zWj7M_P!7icO0JW3FVQSRpacz30T3ZA6u<(yPy`KO2F0-m<pUA90|KN%4$1=pyD$nu
zwi>V?gV5j)y+Z*{aA)%YE+C)-%Ht5mRtn@p0VF^KKX5F?p$I@A1kIv^KM)5tfj)Yd
z6cjWK6g4&XQXf*2M*vnq9b-p7vqWpb2fuI)4?|(<ln}k8B_T(BQ=>PHU@!l`F}@%{
zSV2WoV?ojpQB&g!CL|EO#RrYRF?>)JNz(`}VK=j7N16bJ5b;31fDBS2Y+I&MT2n9i
zq%dj(GFZ_?od!mFb2kIg2oW?y5rjy^vHw88z%fzhh6mAylE@T*SRaEZMXnGQh!j-&
zP!d&9dt5V$zF;>cCw+D_U1lT_2cwE0qX|KAFpZ!$tr&@u7&Gx94q?%VU-dOi;T*%b
zQho?B5D|!)po>=H3i)$S&`1wAga--ufb&R?^=OZ76@dpafkXibchw6)17+eMWEFq~
z{xS~W0)o8~EW?66%ySQh^%g<UGJw?(a}X>PFf5ZLWF}Aw)AA3vlp&IJkr{G#7hycY
zmK0r-5;4<YUc(2z05#*p6q?X7&5<zS1XVxd2vFmV$frf_H6I2f5q%gp<q$tIL6lPy
zFPtbh8zUB`C6i?IGU&w;&cKpA;s25_31D@`2b41q3UggB;actBM*@+QnxIYRcSt;`
z4#iLm<^T@<6f-|V7OZzj8uw2=`FbVOl<dKkX4WwiMi0F;C-Nr|oVb%bBa{zjitMMB
zLljm+gcVxz3&&9?Sy>ZnAzmPNid$APm}7DXftgMTGAQ#v?Kn0f(KGURkFDvNuL+x&
zl8*whk3+!^_h3{T2o?PB57&kh`QV$T5uCcIS9KyJ%ViO5G7;~hB}Sqqb#f*XaVB7*
zCsX1j3gH#XITD$+C1GMF-l=x}XA@`wkO?uJic+4hS9IU`PNB&r;K?S&2`%Yq5!SGt
zd4irqk#(`jpZ)2d|G6oaf&Uq`LxIF;pa+Ve391`Zu@B3npbtu%_h1g}@C~RJ73*LQ
z@sKoH0-+u1p}M)B04ky*N}?sI7qj^fwfUhd`XAQjqW!=R4$7hk>Y3;?qc>U`hNhQE
zF_$)qqdy9yrV*khN~A?<q_ByiDjK9gN;|dl7E89IH+Fq)SqxekrB{j*_28Dqz>`q%
z4Q|;COoydoN~Q=gq(_RTX{x4Om!t!#I%RsJ{xC4Sy;W2jZ1C<IJh;0h!QG*_7B60k
zySqc7#oevAyIX-G1%f-pOL2F13N)MVzt36w_MElOI=M>L%1xfUGtbQA&2QX=%5PE2
zy`#%NSC#wu7F&0e1)x;~MJK@fk|K_kM?_adRaL}{Rm4T(`!iQ0F;}Jt2|4OjI3HJJ
zR#j$?RpuU7g2v=inX8HwtG=04k|ZnSS5;My!K!MHt7_3IOPQ;`D^{ntR)znqYOkv9
zJg)rLz>DvSX*O1kN><%sSM#<tHQ2Q}LlKvY8TTK6%GO)a{jJXrr`!m{FhVUUFA>92
z$39sor9`Ve0pXU))K&RnpM+tIF5%WDC#kFBF@QCQbg;at3gCyx#Ih=npd4>3z|}2x
zY4w^>#Req%2G_=#%4HQOCz{PLt~VbtEShp|42O=C5ZXZb01DamDlQKVL*;TLfO?T<
z;AWXN{<(Q$8S$6T<A9)r0{mEA0Lu@@INOVLpsNrm-1=Px9E&9tF1VU4A;okr>+a!7
z_amnhNlFP@d<4G+RrHq9tOj?_4DSV4s12NA7l^C`?)!Wzx$YG%O$-s=rG-Q^rl5%f
zelPa&v?FbHs9+)jyIL3uZpimpVP!S4T6MUQ9UMFs;aU?hU%t91wN`{J`05#QVF*Q-
z8AWuO$JgZM;(_l5g;cqE*ryWQqw-Xb`0Yen&FbhKh3FNU&t`gD%y<aG@VyEgev~wB
zG`L(jL^I55SvV1#tc^<KjlwjmGtAWJG(<t2(r`YlVY;MAj%j<1?;1Ptt~#0E-NXDS
z8`06H{b&S>+P)NN+4nh3MG-7Bbsoxntf?+oAkDvz&cVgaeR`tsylyX2vIj}PzY$jD
zCEnWco`;y8r|O>P@t)U{9+(oW=UNFKwAqa&-_doCSDuYi3PS$Ng;iPosj82;t_hm8
z6#~x{JRdC9oQ_#00jHzJ@+TU1{F=z!9=DAEeij<SDnSt#2KNylr7DCY5~++V9hyrR
zLavtN^FTz}**CliKUl)TMlSrPiS3sb?$RaEK0J`vg$<tTC$1|nXoYM|Xpnn`tltB7
z5oAFCLRjO+l0L<GuMD>=g}urxdUuJz0cF{1FtQcIB{g6ZjqSDkGBDS#Jg?NdSA>Jo
zikPK@dnSc_fyZ&<#)FW=ljx2E`0kIO$ypi3i58NMg}`;r&$WDPoJHQi<!*=jO*~@r
zyHJw2ln0Rj0e5LSpR^{7Z)7;ChnZK=o#4(ypvOc2=G84?p6NHoS(fn`Cc*gC1uFr_
zhd}#vUCmn1x~xzSsz=-dIGy-~F*(CJ38xG{KH-U?>{aI1BFM#T1ZG~T$zJ3}Y@cTJ
zwq~Q(5d9s})Z#8d*9p&{V?mH4;#|lo%*tW>lVvPqYLYvocp7I~77J(#59J;J1&Ss>
z5sWcP7d7A>f0{2g2^US{92bkO?uc#{Ct;c*y@RlRK}^Q%MZ&y+*L%UG%fz)v8l;g-
z0$qyuV9a!ZW`wn8EWgaO-e7~X!Dcb$b1744d~<6zqWrnTf-JbKN{-XK{GmX3<wB`j
z1n~zN8G83rz&%XdFzG9zmLJ74w%Km9&onS=6G{;x7Y~r}O5u+S<W6fZ*4kSzu#$dP
zB8`vqyYNx<i<<S?I~((Pl#hS8r6N!Y4g(ZE^KU=NLOeWJ!5FI&@~AW2i>KO?B9lpM
ze^MwXrPU_m9qpG43UoRrHzxj|RVjCd{y0stKsVJrxx{2IK;Gc(6QyUP)}P0k@&4+E
zL$|_mVCQWE$6mjUz1b&s&P+Qrz_aPb+G_^siql=#h9`8PV$D|OR>W;XM7j!8iWP8V
zQ9~Z%S>AvobAWWqE#NO25>Fr^T~a=!ajUKZSmSG}d^y})ZrCR{<g*2e)1tVkmdi@}
ztMItX(rhpSS<F)1cgF0}9|qGuR(s&AHv8A)rt~nU?8#_Maz!BCTB08tIU!4p5OTTF
z;?;o|v)}Mun?Rf(Jb!x){5@Nsw>rv}Em4@df8R%Ed|!mSPlt#J14-G&-?Y>hWKDq|
zW5ZQ&TPWk={@4v7q{i(k)a^cvBfM9!&#Il2D~GOPOm&P7X5qFyeppVtYe91zL<oXw
zptK~oWJU>6`lAgueuWzpBRN9P=IyN*`(sbYs`2p^mtYz>+7bggjgv@tAfwJo6@|mw
zsFb$AyvC+GOO#9uW}{hQo_9O=T&MHJ$RZ%#XIfadRP-R7?qDbUh!9tq0DyF_Hy_qy
zUD68E7?p4KsMcfc)mtFczw6~|A;f*OW8jpb?B${;vsT6X=Wk*TybL!KyCcZ|L3?X*
zsymd6e!sKP;{UtBXthEADbz&U(O3H$#Se-oCk0Mzsa+K@g`3XZ9hLJGQN+zWGc^_5
zyh(~R5u8|)K4i3HBa>i~X$w8EVFUj*ysJGy+yNR~r{P;+^_rCx?b*&-oUY0Jr&{y)
zfAI9l!Yv58QPwn)8Q<%>lxWZ38BRzYrjr(<eXe40aA8dNup@%}BgOp<71{Y@a_bH`
zy+Wp~)l$pLIZGn-tq4bVsefE^5<Cymgj@?4opr`kyf@q>)=7)jpTkd;e$l`N8Go$8
zis_2Cq-CPv`82s`BY5+0a^9WA)=nIrYi}E!TRPuQeK|KXHapIPZcae4FnW>y;$8?1
zVy!xEgcGqB%&Aed)!XAHgyA$LJ1z=6$jy)?Bk8zLlQpodIyyC0nL*y}ho{#qFyu6e
zw>`Fe7<BYgdP7x0R#e^zKe0AlP7F9q&DZ)|u#{dLvE}nM2adw$`C*sa$ZarO4jHR*
zIp29XJM_D0(Uqn6sdSqFZ>3(~2~SHlfsuizCDWR`2pC@gs9)81$AesbqFms-8Aquo
zR<T)yw>~=+pAnV2g&}&V(P>S@*Ds%A{{dm21Y+%(@bEvJ*%=GT`QJa)!=6`QyZ0N~
zfS`*FiC`pDA_<+qKB;g5E7DM(1YGjS#Wcp}gZlYoTO3h;L{jeEE@Bm6UlAa9UBZo^
z3gZ?fQffHp!GQCRfD1*PHv)EL&Czz;ND7l}QHey{W+4+5emkvva&S%syTnLE0l{`#
zCX%B{?Ne}{T7X$0;ZNkU1L!A-D5)=G2l*^$U~Q}k;sw@TZGu&dRE0T^VW+dc#yjC@
zvM?Uf2R!A@d*hW(oaZUh5o{9KA~s_y41+|skr`)n$eCRhBdbU-t|jw3ENq_O4gb9t
zZ)|M()nos=c~Rj5QE8udd+Uaz>L+tPIp~W~)^l=eUzv#w);qqrTQlUs1m^a?_<9_j
z<>)7zQK)(cH(kA$Sx*X{2GnqU^r!9ecME<R=I|bPGg9*@7LhD2#$*I^jp6ioi(<!u
zv!RuGY%c<L74BUeWe%y`X%-uza3WBn48E!i*L%WG7LD(TjYGL)Nv%s7WyzffaAoll
zHyh=s0}#38!4b4g@-zuDv+{Uu7EKBa`Jvp3Oyw3Dpdvhtio!6ezav??R=Q?Ud{(&1
zMRdMzTuXiz&DswFrEfPCiAiR+YML}=;X=YBbizTIiX@gQ123Pe*nLJSgM!f*^*)S;
z{p*m!1>Iu6M^gQ@P*BBjAbqczgT{Qz6Rfxe29jzp!vk5}j?ouj;q#9u*<m`HVYuN!
z5Kk4n$j2b{q6S=#icdsUo2*(IX8q}c;+WC!{6vM&l8Qto`WdtW{K^IJt^x47j&<$b
zVt`wz$!{Y}JnKU4Xr0KYALoeRU!u>nzYUCGpF>f=`@6jw${SK_TmqtInAmb<R}m5)
z&e2p-G;($jsDh*2cef4_HC4OBXtClGjO#|R2ZGSp6G2Fgck$AZIx#vFB9Dm^UADn2
zbArnb{3Bg|Fp@dUU%8p%v5mh3wJ`()Q*|6>Mc-tWxl#nt_Q-;QEKFl5nZj+(|AB`E
zs}^>oQ}X1eGNc^~rV_BLDBt>Jx!Cryq<m?LB*o5)Az^1&*F(2!BrWWXdEbj7;0El*
zmJ@LuBrcy(Olt6$2Pg8QxyNx9l1C(s)swfmCk^4I2J<T(X){QE08!R7kf2GC4M&!S
zSBGUms%otZYGb4;n@gChq{#H<3i=z^w8s06&4HmN`z2o~8cF_c_XR{-N8ZaaO>dUU
zkrYMe91s@;-?-k^oOGBIM@#kpr~&806LP}xf)7!O{JkO%ms2o5D<gab&l49ZzA~D;
zT`2^+b@`1yjvWY&R}7Q(_J)l7gyT1sceXvA2|Y>d$FS!-BgVMN>}8eDdnPEc&ot4L
ze8H8B`Ya>BI6q0d)Z7>Ox?{;kF~XElEbV}MV0jE1|G*VJgK<-k2&x;&puhJXcpFsl
zOIe`U+u-Hl1Rqi%y2aBY&V5f;pm8)mkro7ca9)Ha3N~#?;|V@s<FbXiI)|E5?7b_c
z#GQ)w9x$i!Yc3JIpGgQn+>N3j#v2igR?53U5knr8kPR-Oeg&e^k{{9Qw1p)l-vY&R
z4(Y$_?$NwFqR=zglKF4;Q{~-8LNwd4w6JPYL2#vva!*9MQ?qG5c;(T+MM`TGthCS5
zrScu&+!?Gu+Q&9@Zp`fjI&ORj5ye*azHDL+qC03|f{3cQh|I*lB%1|4GkYl&+rFvM
zDM-dzXrW!8=V&JPBD6da<A;jx;#{7f-Y!h;t@n}Mp3R3L+Q>`6!P{LHr@_6qks|C+
z3+JCNjGf2ixt|$}(AJ`T;6xGbR;MuL=cYW=LBZ=soz{k)X8&`bK{{{ONNeSN4~n!_
zw*0Gt(>7lwP-`tF+Vm^@cCJVqiBXJ7aK7-GhT6|Y9?1nbABy&^;(cj_bnf4Ie-gq9
z&97A-GdmW7jxekZ_L%2#H2c(jTP)xRPcUJb8ab^Cwf;3b%6meepjTJ5-h(XL9%ygB
zc@C7DAe}-nNCeF&rHLaJ-gCgCPxs<!R}zU*o8ltqj<U;`#0)xUeE|>Dyyy9jQ5%61
zxAjNXNIG&-XGgs23LOkzOuFYltA7I%(qCS#&Gi^`blTI^U%ziv@Z*y={&B0j9bH1T
zC*kDw%|3n`{<du_jNP5>82eD0xD{CH<oV5SZQtv6=LVAVfyIgbbsDkk52RI`;0B}n
zR^l!(GI-QorQnBS^)AT@j>K&i<CkUEynQ5>K%^(4Ek*X9D6%eZ_n%FW1(tfT`OC?X
zM799<b!9BR5{ajJMQ!_B-E?El3E?iL_(;9+1hTH5gY*;OVT64g;jXckBIabj+d6kX
zxW-#6wP6-B_KQQVqJ)&&u(KHl<VmCuw0L)Wj+RD08(vA`;RzD2ERB5{a!YIZY00wl
zIBML=v_;hr_-5o2)?znri?|>#e45@mM|!vDc!y6tgrDK$*zq#%9Of9YO9l;)JqnP%
znmFUQgYFIw3kWAA0=`_P8LhjQ{8o5J=e;SfK#%MDS)zz~_%qz?o_QoJ#z>5tR3TZG
zPxSdEK|DsLno40;Rh>H`P3MAbLqfJLs3HY!sEz7m$wJbf@>Jq^hpb&zmQ%qjUAm;K
zW>&XwWULo+HvA!MPpi7%A_;RhE2I-<5MS8YN$FZmPdOjops3k(E)o4SmrjqH!V!C*
z^k6gTO*C6Z3=N?+CEExx_lCZ<z3raDAt_eFmw8c-)n}E&sQh?X(+*)SS}g|0T>(Fp
zSdRO>1TUqe8cMgKlAV*nEW8Ppq)dX;&jZS0!0DK1-*YkDj<gQg&$+hceilk5fc~xk
z=^o?^_6sFWaLkk}ZQAfDq$8{8-!%j^Lre48dQF$-B|5ynUQqsi%@P7$i@Gg_5!iu}
zC^t3bI=6vhmeRok5YvuymA>XsE?&w)gUn2|<y(7alT8jPFbeLr*r-SE&l>bm$!+O^
zLi0=jiF-#4T%`*}qsf<Q{>CrTzZ<bqN&ZnQKgqGM3XU56>&GGZEBCGhL0@{80#aYG
zrJDIKY46l`Jey%qp7<E8l`ezt)Rxw@z<;Wl*x31F!b8%)`o-?e$c8l4U1FN?y|Q_(
zjEhs#RZGH;7Mjp87;)~%E|rsdokTx<fWQciq!iw*J9ib5dcc&G*!Z>PFjCl7^j+I_
z-Re&OqC7)%2qf|onnb-%P@!6dUX^$xpsN)ify~_X+XR1&B;mmiGcgcpZHIpKvHhEF
zLP8?u{0X~BaBWHvE#^x^6mu^Y0Rt9A#tC<C@FTsOTOqKilSH}Kqyt*9(oN-nx2q4p
zc@)9{bb>O)aI1MA;kl?uzk8>2AJ1_zYDqC5QcyQbF&=fZZZTYv|5PXKiMB(v1ED&D
zf%d>$O-X2#O-~Y&V9E+r_$8r61>lVmCs_!;+J<5aM6zazu#yP3(=Y2Ci}sjF`2`g&
zyg?6cL-+yPM7!ky{c;DdGNmJt0X1!atZgyEnbCgosi{6F0VBvt1Hoc4$a&~dO$~v4
zK*9_kD#6VG(V0Xf-bfjrC>>ys$r#0}YYO2pmJFz4GY~NnH`aXxbFU+2hZ|8WF??4K
zq7Yf&u111B3(QXfhg>2X`_v{x@<(cRygpVHD-`pRRd+7MHwR}10kPW^n)7H9jX^l~
z8K668C~g%><1vEfOGKV4q6x|H+;o?Z2bLTOm^~VFbd>eyupoVOC~KNzDsw2da_C2e
z+}&kD1+)lZ6t$^0#N;PQhzX{#6vU<<lGRq!WQs2X4fW{k`(}X$Qcgnlsjr=@r@h7P
zge}wHHS$6P`?6A{aP7O9Ek+A!l2~85lYl)5jA0xYHQG`5*Sh^TA;AAYnes9S%27s)
zNTP+5^EQe@B#|R_z<)H+0?N_-E<{F3RELKm-STlBxP+O3GAa0};KKpfO;nf;f(cFx
zP9jNwPUv)|%z%ra+-InzFIp#S7$p?2e5C}Xg&U8K8}&^&Xl&W+FKFH(;bF#^j7>}o
zB|%BX5g94SixRzllt@TS@Z2R684+Z*L;MCtI(S4lunAp(zP$lK6dEEs9ZE!oQU)iM
z=z=YVQ!RTKd4@A-W<r+bk{QQ}41bk)nn-@P6iP5AF~yWI3BgImkT)4gP=M(~`DLga
zn2=qDM#%*tN-vRwEXB`=bRY(k7@K4r4`hfjBFAiDGB3;D0f!=4%kEhFo3m69QL&x}
zR9AJdz7dQe#U=H&3#ib*(dkR&pDGCSD}ZeKD5J!3Yt;N`a5I8AP`f%r%%|}jaf=*;
zi%<K4<P|#+`olJ3Gb$AMntS-Zpy}x54oE~XkD$7_z}ar0Ol3z;BJeM$fh;$pcb+0V
zDg(I>WrB2-_?2Vp3(!hH{fRzk3~ezUjpI56f%H)9dV^e?LtsE+p64Snu^IvdNd~!@
zc6u(RgK^F#`F*)xUK~wVdSO(-bHpT1=;u`tFDT|0orvUQWJoPW8cYzaMRABoi0sAz
z`wk=&Tu|7zJC`I#BbP|B=!5bHq_*>d@+X7zRh|TXjWkIIY#u#~GNXCX5U=%-^g%89
z5{g({DW8B*ew>K$v>6u!MPZN%T|&o_yD3!YQVFrq%6J>QiN4S7edBN>>=mfS9$~3t
zitelZDkT$27{SWYiO5OR7Fo>-kXNJPopGn65DQkoepR4qZ{Y46MYrtsISKS4OwN_*
z%fA(1p6GVJ`-Cq!!=|Nv<vtT}Jv%{ziij4?S27cv7{x4sY|e>nffLgcGaCRv)E6F@
zx|#`7n_bnBPhDz@>C(}i!Am>osd*RIcNl{cxfJ!98}~gb0ahE$>yVOPf$=V`y{uYu
z0TdSYm@ZP9Kqp#_{t{_^CvgZAqI3(Lv<r7r%P)>9FkD$AJ6(`3#f;|`U2o&J!R#VK
z)AmWkJaHjSErsqMMkdHCE&_WAq#%e}^A#o^45gNXY^JOw_%%%mgC4_USQG!4N44L{
zO_}PIhw1e%#S!?19#vpDE@0cot!M+wEy5yA&I-Hefay=zVrtU?cdJz?9Ishw2Ryh>
zLP<GV-{(GdV_E+8IcdbD!~6AZE%1zqopx!EEUnF9DbgkA{yBQ2QD^i;Brdmy|7w=h
z6AZI2j5&)*szwQ=2_Ghj$_AijMpB$KqGsQrb&-?gzzos!$JY}Nbqj=64g;}@=}0g`
z!)8~p;XkmDJET}Ni_-R`5srm!E`>&p6-Me}o!E5c026E(Gi(_v`;@VbgIB*VC)i%j
z=R8TsWULm7M!C$6gx|`3xD3-^#5#X@|CnnsbyXNE*^5;eZz~ml6lic;u~JoQfNCX=
z%W9l@YVha%Cm-gP&xB3bl)^OnYXK{!1npbji?`fM4SSjlOSBXlq@pIOXXwkc5RM}Y
zujRKE{-~7(7C5FPYUU;Y5IdXA#`Op0At)GagV8tQD<|kxiDvB<O9duobMHcTz^IpJ
zhF65^U7cZukMDl9^WO}{R~u%!D=!BFJDg2Wq+st+oR&;N9+4de-tRD)TJ52W0gzjc
z5d1AvL^g*bw&d1&5uPw)p9mxa0LYJ=I94BpTG%2nu_O}=5;tPBaBC7=W)1Lodo7wl
zOlI;Di<lC5mQ!37GTIhM-N+~k*v2Zo*zNJ!DqA0r)Z7LUR#GHVZZ;2>R!OPMkmDFK
zPX#)C0X!+6X7+e#dw)CabGq#RrX96{&~vupFWm_%CfLjj3Sk84V$fq56K@*@`$XT5
z=M=lNGOG}ecZM52w$pw^sgwYzL4X{DO4$wL9+eXd>N>2Rs3NCkQCAv_8Bh(0f-n1q
zR)0`evIplA356Doo}~Xo`cOrGS4L~p4u%02TiPPN-C$*L@?)7|qPI`xC2piDB)AS@
zA>GGs#?D{A!^Vj&@X}Gq^vBxeJw6380B{q}Fc!22aZZ5oI$b0WfeCr8TgLo_m8Dwt
z4IhB_lkpf>QDbr2@8WykYfCz9>>rNAK4Jx{iPGp{tvH-uD{p<1Sk^A<Y6!RLz6akk
ze%jWzE{rYz9Bhcz)qz<oK*e+bnGrbEJQ%c^hEUb9KP8WWQ|=$}CUHabH!&J!iJS@n
z&ZH>R0Qf3II4~fXMF-VkI_S4{>f3YBVHB52lp!!Rj08<*n!x6AJj@3^JTnEX25-h?
zk^!as_P8ee6GgN)*aVt8Zue&x)@g2_M46tqo~lEfFc}4}k;*p`rs9C+b_rKi16acf
zPU_b|0}x2gtcA<|)Kn)>ws3w3zi<pjqU8MMw)Kth!@5@{9k5Epl@Ut~b5bnvSAEB^
zDt)3|jfwdfmaznK45?sl=6qe!9!$BmrL|C#GICFT^vpy%EeIt&=>$LESB1|8yyR42
z<8eR%1f!J%8!UeX0#+&fiVH<Vsdv3lJ`PaBDP&U7tS#!6`2~{829920ddDZxkRIAh
zm04y1QRB-7Reh(C+qqO0r?nP2f2F9uyS>c<*OP{fZn`Ry96+rmjYfxBe^U=RjL9aA
z);T~j1$ql_koFu9QV!Z--znl5``htDI0YRW%&5bCs9(HN`y}F0YEe%NBNvl!!ZSkF
z)HPgjQqiEn{D!$`Bhm4O1@mAc*1SCa8r1NLK-qv8zr=y}nc$D*&QsH7u8m{L!^4Rn
zC4PB=&ZWCBoY;KN)F|ZpS<=!?9c^C_>9?qxKm&Q@FcP_JOD;6|UPi1&4cQcQvO7ul
zd0zU2&BB0p-oZfZWfRlgK(NT=uaz9F?l6d9_hcYN;Ra%Md`H9_bJ2C)l^cV6f+<Pk
z-!MmLW~AcCgW53;S%MP^`4<oDCP-vdiC2A_{7S4Bb5VG1Sp>cYKhJe(vKID=^2aH@
z-x9yOebBZcwtatLe>w0fetYmsEz%`_whQc4e=4B3W%lEOzb*fQ1FhC5RXwJS+>G#z
zM3EKxn}FjRL-tn^y{u!c)ZVN&C^FQxHq!bYXyZ%2ilY^xRu(|=JoN|bX)4AI(i_8V
zS_ERS*YmT}p8T;1tuCi0yDhWOjx)8Rb-0d9-FRxQ7J^{lq3+$d+$W*WP2+6|VBMM0
z+I}v;_`-7f^#1$H`0z`zFA4=ka{^kW9aeYja)ldqMPwG^ga9Tq|4Su)P6iCub5QMc
zMUDFNv{%*FVR7z$aLdfMmxYb)F}bg0eO2XpEd@nYh0Ol~xT|(9B6j7zx_@zE<Ej3}
zAJ<&u6Ubft8HVj2qV{#e`iBQw5(=~)lsJt9br>|}z%y@x^>w3<KQVlH!HE;Nvy-}E
zpt!h@+}!vVO{U!EYaaN>-~#FmM#hG`FvP?6hhs72C@{K01_K^AMZS!bK!)R~#Dg)8
z&OSAoL9@=#E8XbE<9{pi7yoWD=}I12nym5p^=Z_s+hrev+2atZi%AUnQ02iiSEiCL
z702w!yilcGZ#G%w$?~aEzB?F`#fvqnoOZ~|1<i~#8AbkAIOXgn+e*D;B37mFfWun1
zStmRes}JW^UpTh=;HO5w4m>H-1cdoB_g>o3nCVoFuF+mpI$y~Cs-UUpbU{$OO06&7
z$zq*xKP+B!hEaN;)p=*C*6)XQPj}LY;a?DkK2={x!&;1Y%{9`%@Ve*uj~We}Uje`O
zYQG9UoUhk1mn|*14vjSZDpsxc7k$1z-{?=^=z%z*ZCvd9s^8%B+K~PSdms<|efOy#
z2!U+rw?8`fQbCAPn81urLZ(1|7_nJKVK}+lQeni&!b3qMP4WnN5Nc6IQ8Y{4l0g(l
zA4#z`t|G7LXX@>Y;&|cfw}1JI;}I6cO5^F$YBDrslq4&)+LWZI_Q{(|@r!AJ6F-?{
zmZs^u{VBDOk|Hh3c<vo6$+Rx|L+okZ^k?5o10qu@tqmDa6$5U4$Fc)mX-?%C!IM=K
zgy6yS7^O@)GAoKAYQL2gCuE`a6{Tp9k>sF^{=vybTtk>(RBA9)6U}FD3?-Qh4Mmgw
zNU~g2UEfD`5*DegS6!<KMy;&t{JXbZ+XG)cUy5uwHeH6GtI1q}^wbZmn0+*>Ql?(h
zM3bE#$*OH#aa(azYDOlntF^q=t7|u_Wvc7=hNZ98nE1g1o2C$Np0x`m6JsY|uLg+w
z0fVP#fHnko*7Z8=`_}c@{`GC>H*Zy%?i_X#x{w(?M#p1)#ae9~rVgnw@5N4WplwGl
z&avvC`)*({fbfB$eh_uE6R{QSnBzJke6#xfS3}%t(=^?6V$+N@nLzU_S2wHL1l}mj
z??SSawR(2Q=_RLSQQy5wV_GSs%cM^(CC;$lw7AQ74kq&9W&(vyc&Hg1*N;OU;FbGh
z-S6SWb2-3U!0S&44@%qC-`X{PDRr9E8j_1<4-{$gE5r7^blAzmR`!lI?^gc9H{OF{
z`*a_3f-%+>iGMQBK1!aNfnie_b4HzKfp#h#=OIa;cZW>ajo0V><W@rF71FQw5?Y;8
ze@`h5zjofvX~N9U2h8g~Ui9EoeYxKtwi5aLk=|mG^?Pc^5bNLgV%AC}M)Nm5*PL<B
zE0Ga)_dm^`>CTJQ{3CJN#QA?{85x5)=d!>;y}ycsVwRGZpDF%i^qgDwqMPB^z~s0<
zD8h%m*pT;MMuf4Ecx?Lci(D9=5WwjAhka>LYC(;aY3PhD-wC!kBZN{%(2NiJso@*7
zxoGnpwBEyMpK(Sh&YNO~91bu@%~%3O@-R&27=E&G#pu--;};(eas=bLYEo?EwAu{u
z6kX|)W6+SV9LjP<GX%*f(@>t+3<rB$#rdw%Q1|i-;jVKf2G5&OJ==^(Q@KT2Qqa<n
zXZA}$xRaAHiXnV^BT8o1!HGGv48l+SiexM)MHHpC{70jjMadxrp~Ou3M`K-?+~1mV
z_Aa#*8b57wr&GnyvH2a1_x#aF@1w99_IVmNhoo5c($e!}SF)MY^JL9pz<zV*+D_Wz
zp=Hgj(hCrO{NNDGlcPIpB`|I~#qd=#=h(nHe&q9%ci(rJBMS!66Txb}A)frd%JU*;
zN52Asf%(rAjFNHls(}#R!dh2rN%G_AehRHZyxhZd#J|%qX1wCKZ)05HD!gzj-V(^S
zF<DW&*_7+)A{s*`rT&Lu<|5uQZc(7TzTI46nn#(?nav01W6g+tk8-JxHmU)3^IwrY
zD-`dn)f0~Az3DwGH4Lpa^X)!5$$D1l4O)GyKVGn~@~k$qwEEOzw`dgZSz|Y8sr&0#
zTdT~o){V|mf5Yy#!jNa3Z<mGP#qlTUeb4$}LJMP<-I4&ZS3`8ExhV|$M2C~!t1)@a
z%$(Z(4}+{%Q`QGFOO6v=YAdhrMITJ9#qITQ!o8ZS22E^LPxKJVyjq&}iWH6QS5$_)
zT07V*9i30~W%j*(^bH!=2iUL9AbGzHOD&xfPFDHpz1wHk^j!1p*Bah?cPyXjyVsu>
zGFW+cZoley_ShRGhk5@z#?<-z>tx-t)Vu3?Pup+9-q>W&yZdk4$FCPB#$H_>@z0bl
z>wlj&5N>#&F|?c^l`Dpb(mLKxj+|kg7MnoxB?bIC&WJ{jEsPKyS@LtvD8Jh+oZ<`_
z8g{N2SC4Ii{x(S#C$2bw+ij8^ono|Bi#WfWTJnQ;BWszB2{9NjY7n~MXeYQSDVt(?
znNe^I%e*P2nw6YZNpPG!j)oA)VUHu>rdN;Zdv*oJK2JIFxP{S8tQUnMZ~q@TJ1d^t
zYP0=!JGzYSbv*fnZU-U=S#*BqJcZz0D{W+<8B#KjLh@JZ_tIHnW=_1NmR}C_WrgMr
zO+8AVUTi*uWPx(dd2_`nkJS>g=I#0KD*1BlJ|<)?)W+Xdo94cKk$N*Nt)8i_xhE1A
zS-%zT@9J+T986I%mj>f+8k6G8Ejh?1C%yP%3n?8rRkN2FTkl(Ha~vH*GFH~Su7C8#
znYt#djO_6XgwEtTQP*d$p?E!X+EX}xeokM%bGqufay0%5yXYKvz5n3{M|FvXowK>m
z_t?vl;}YhVzJ=+0*$;Lyj8e^k68>m&=gPZ!b;{Wpx_cZxAa_f8PTQq3z8F<^(*IWf
z<tLkWyS*vZ&Dm7Wep$=YWO=rGu3y@LsPXx)ASc~I?5}O_1v<==@^07IbC1G3|IS&H
zdsaSwJN{^Vw$SMGsn+>xv*AOBelOKq?~r?H#rOP&A=|6P@7tN9@#)Hz)5rE-UmHAs
zbZTDZJ#?MtUdY}(Zyb>M^ggFvh8dr1;W}#$a`@N8d5b84sh?_9@~&xGUiQkfK2Pr4
z&gL55A4n#sPbC;tmI}N|tLOU`*5%z{dcK}`lKK6?PlesLq#vERCTPuE{G0E3_$uZ}
z{gQ%}|9Hv!?@Bc5%U*uU)8xV7O`);Mk!nEE!VfX+p!~1$&iT)C1OFcI$^5V6QeO5@
z4xeTcl<(^ED^t7zD!Zry%zx$ot8Rt8X66RG4wJ#|@|$0&0qa=+EKn<90o*+qJbl5B
zH?ApGHi8(a{e1x<J^35gw8IdDES8Pz1p4V&fTB$f3@_-41ED%)qvnBnN(<1!$<bR2
zpj{x0yljjqP~SoUW-B??enI~k2zx3U`yXf!sSszM{EcfmL<z?GmyO2`9^os*C!!#b
zEgby-CS=cf!<vp;781!)5PKC)d<Byj<&eaKVN>4<Nxdk@$_jtgg304^$h*NagM}1j
z6qJjFvuj|g?i{Lf@cdmN^&$lbxo80s0)E^5Kn3|tR|G+(eA^baBnqLW%B59-EPpJb
z<ENyzDq3-bFsS4*_(RshiWsdZnbL~Zb0N(Bxy*Ht&6XmTG)mT?qOC~?TU{>OI%H?B
zh<%8X<GyJ36~eim%ZWv^Pgu-#PsvSRe85J-gO$f4wxiLK&)bdj@{z{;Jq`bQD!&sA
znPIU&6VAKvV$wJoLH|U-JQ}cPu}~d>aO)0UDUC=K9^VwrMOU$CI8}NQZo*!%+X9XF
zd4dQsE&dseq*1CQ6)hHKiIhLKG(Rm2O_Wx~EI~%41odOd`$ar4E806cTDko^IscOT
zuoC%ydE)RI3L22qLJRULTII$P`i@<tDN|+NKgxECvdg>sCM7Df+8^$B9bakHw6RsO
z=r##T)m5-H=q;C7=``2lHO1(>l1j7|@jq(s&C1Ye&&F#z?M-`>elo(+38%v_q|>cR
z(ap0QjV;x?#?)`!>;Fk-a2#hawbwgeYUqV&v`_b?l+M^F#rR)o+i9tZ9i}OfRRaaR
z*}qsb_WgR^GIO_dHCZd>?cHGYeb7w5uv$N_G6HWTy^Th{@C2sADFUBFKY0!u1+>@F
z%ghRX*J?RQB(%(C+sf&9pEq&{W_Q}pJ0E0^R&L+7Z~B4WacoHJXNVKGwfpwIaEXld
z2m&vLwP&}L>%Rq8$bmg;xx25myVR7$DT1e-wWpc27xKQ>b*!VmwI4TwGu|L?s`ckQ
z1}nu#3fnSYdUfv(>wtYLpMAv7Q{|r*4_L<bvyZIt*2)67-@4ZUF~oyFJ?kK{!>?Yt
z{`8D!uT~*$hc>d-^3x%qQw(9<-@L3UELd$K_$v@U4v0k_eqjbg<$av13E9r6KrO9^
zuCtMsIgHURhZ{L$SCQe^WC&lcK)NcA_hJlm3l02x=z=DZ=>Ku<QX+|e0Iy~;X?e<n
zxia~l{{6^7ik>wbpfZ)J7$$>L`Hg!3FEu31OfBB)D898KBaOj4wK9|H<A8j>&x^VA
zZXkObQ}U2)I=8LVJEq(YEAv&RJbEK3M1=f%Tj@i1ZbZA+*n<MEqX<Z-2<SM2KO8_J
z5zBqNLpmUIEA{RA$eecoc>=yvoB58Gsf_(dhQh8~>bQ2>uI~7_?%J;Y?{Pi6eFNG_
z1D<^&*-0bBzKQvyiQE3W(8+fx`)0+HW{v8Gs^hAuVD?n$wC>}@5xX44&=@Z}Pi_15
ztdsU4`;MxUjwbugj+4$l`=4Vhbw(%ByHLCw)$Zey?rZy=zb8HL4p6jHD4s(v*=aAt
zp^y2rkK3VN=(JzT0XCp`I-ub&sCPQ3eM(l*JLKl@23i;nb{L6v7_Lg_Y3glDKKWU7
zI@aVc-f=qK=P)sLI+11HwR}3c?J#wGI(6;v>+k6=c*kk9v$q-d4B6QX#Bug*sW-Rd
zoKWrb+p0VHvw0221--KcGsi^@HZ%i!`=T0`S%;<Qv!!ImKUrsgiX4~3&X$`TS31sC
z`W#os&Q@m~*Ot%LwrduT&(^OU7pm-#zMQ#eNG#(yZIPXCL7cXk>n64xcZAM&q?~pY
z&v!MP_Vk>j10^=@9SLuP_x0F-B15QOY6JNPwzJNUikyzC&X3v8_d3o``kYS3&QE8Z
z&hXe!ed-qT;9ymc(j>d*^T|+iHMlWt9N~!|=?153=8J1?=NlpC@5@fNiWj#U&Ubnj
zcT#5;dbQlQRu^_0gf5P<8E{v41Lh(ZPesmut1kW$vEO%GJoh=jj9t7eo;@f!5-Nw3
zt@pDpaS)1x|Bh$jl_{TWa)u+ngrjkR7iM|oc0mxnM38nt<QaI_c9u*<AiAxe7n9xW
zu%i4Kf*9fgjJX7+xS(cVq87WLRbQfMUN%35uv>60IB}wM?xU?-V(z$Lom^twxL`kD
zVt;Z*#~(l%Zh%=KV)nyP0<Q3QT=9jk@TFY|l&%Om>tDC)%j!bdEG{t;>Xg;4h(laS
zVy;M1Tw$cyjo8Bt6km=+J%V1{T+0_FpYpCK=3FUPt|)h0sZJVaiMR+)&yNj)$*mCq
zG<Ligh{C6?5SD8Qj~k8fHBGt8{5{vd<B$tG=SQ)DN90TKP$pWxYlaXv#+Yly6z-L6
zC+cCBORIs)Sr?|xYnFaD*70lB9oPLLH{=i}*+?grIX8~yYYqf=PIPy~jcX!t<V`FF
zQ~-b_=7>}HhDX|+SLud#xR#dq=ECe6gnmE@fQo|v;2uW4n45Pg?t<AoeEHXW2X)No
z7yKtsam0T7=_A28chQv_(Vg#*>YIzj6C?+Bq?dl7#6Z$!E3%TH$bEMymfJTXlJv<X
z4E6N;eqP|Dc94A;9I&Qe8~`wng(3l<q!hPbgl^?iJQT8T6;v;fWIQ&E0w;q36eP_k
z0A>Ipf*1fQRMRiZ6DVKoq56EQir}eM?}%E{yq*S_$^!rZP#{LHxPb(xO|!)6EmEL6
zCi>k+^S7A2(^hp+w|1QJau;;Cm9*eR)oS*1^VF-p)BElzTK@f$CY$hY7ITYc9VG>y
zOQ`NAYyBHf<L5i$ac-IZyLlClDIzE`qpXk25Z+5aG7u3}i;n_uZ=vaBsn1WP|NWEo
z%_KK64vq}g3xbXCy*MX;EcL*$*vqc^-VVVP34@<d3-F6OygJ;=QMi@eLt<S1g3tcO
z%lY}<S-QdA&(mSN)x7ygoRi<&Swc`N(CC8SMcUg#>A_>z3CY5Xs~F(=z-kVFx?&@W
z?LzSn@7*=MKW9IDE`C@+^Wq}rpC$^_z()KMa2r_W{dMKx>(0ZkZcp6t7C!_DEI==^
zhXe|vr-i<!KaEc?%R7I3PYi0$nQJD50w^$2;48;tn7L0l!UIyx!$qEi5_N5yMO~<!
zPgM3})F*yagCC1U5&^=sigNtX<Bzd(?>;^JiVnE|%s3)R@Je=CNdN%gCqw}DoAhrN
zg*)I$;q(CEZ!f@LFbyLs4J#Kdr=Wm<0E3VmqofA2f)R_VHLIEpo3<;v{$~!8Ku)s|
zF6(G6+c<9fBq5J1ZijMihdOSD4qb<23Eu*1hh$%eWbVi|?o=pu{;*t7xn4@Uab}Ne
zY_3gmt#1CXZquqo-hg%Cux;_E?~euF=4D^#f$!j%@90^uLvmnXU~pt|WNLCwYVx=I
zif`3z-<sM=OG_)?Mk!5gKdQ@r{P@w<))xHZPw>w_kw5>0cJD?G?j(*~<}5xJPwZ7r
z926|Q)NNc<uDo<@oHee$wr{_#54P=2{2Uk@92gv%n3z~xTwGaM9@sjA?!As4z0RNg
zTRMAMzj|GHg6(c?Tpw=i?ChMJoSa_mzpdUmd;E8OcyN7k47)#uy`J6P-roF$J>6Zw
z{$Bn2_wP-#|F0e>us|!b;1H|uh{&kunAo`Zgv6xel+<r&=^2?xY;d`G`2~eVxmLR2
zdSO{r)it$s^$m@&ImIolxn`<XNLCe1J<#61{(-3GA0q|rR)C+~gVQs!bF;&vzs*!8
zCc7%<H#WDnvw!cw{aIQ4wR3uQKC`&rdI-2XUcY$y`<!`oU3`1Gwj<Y2(5nkeL?SrE
z*yxSG`SYYyp`0z@he>0%`sfIGuL_6mB3%+zJetxc;xA&|2*pq0%bJF6mC%l5ztgRJ
ziHuKIc2df*aLxE$F(W6;#LgpKJj4#*YpxMiY^f?LK~3M%Y1&nYvodqgqZB4O>CsTh
zvlwmKwPk8@fmLUHV*q~3aOjw*h#UWLXy6|G#v)28j#}!D6#U0l&Um_98AT&*@Fi}>
za5RHPLnW=9XKZprBxW7>ckys8<x{-WWR{7oey#a|pP^E#V^r1qwROz+d%Jb$)*cq&
z&v#rK9dRtMu$;&1gZiwHU=_oI%cF(w=E?sQIv*5QMZZ$3o_F|MAL3>)eCrl1x;$MI
zr_g+lmJE>&Jfzk@j7nuT50uU)0P|i-AOgjvq3}Qwkc8AVDen-0+@bYW7zw=V00A5k
zk7?N7uYsG9w2%=f95y%6mY9J|(pC(oY;PDRn-!y3)H_H80Pb7u;}i*dALDL}x(5(F
zk#jx6{B6Hj2{1e1OgU*IQOoSz06~L1)7$iN8`uk1CMl?r_%ZFXDM4LgrbW5~^JPiK
zMl4)WrpK{&Xi~<AE?v6A_6QWv(<}Ia`2D<Xh5vhxB-BF7>p#{}Sb*c4f|*$L!@>xn
zpaa^ptfRwXT3I2c(!q(S%0f8<Gv;sk!9oy(;$-I7ta7qwdb;MOW4r97QRWGP7UY;x
zTIlSPbaf{Lxc|8uo@Xev*Gy=jELKF{8k>rCg$_}LpIo_aX7Te0%_f#@AJVc{CgA&e
zU*G$-nW@8(PR}AWsSby05{b^HRP_4H9q#Rm7{){pT(@CIJ4a7_?3Hu#Jk_>KrueN%
zFsv8&{mBHK!u#}U7!<*JJwluAa6QUcUUNOh9CFz^&N<9_Gr{}Y!F>W0dwM;|<u@%k
z^p(AHeOiXt@m3rIP|F+D5TATIt0eICc3$g~Xfr^~`fQg$$GYowQ9FX|eyNpY(-V<k
zBC!#!C?l>OnLCFPZpGraqre}aMOP56RcI1iA22dmpqn{EatM#eg7R@KR>0{NUg<<)
z5bRI$GmtS6KYj$CgY|3sPC-PS9s;Q*D6}ZT09SelGg3;Z8~;)b31Yki@Hi<tsC(u^
zDHDdnjZB=8*_IFoDPEAq0FWS-tAPzyopKzajKEJOVPF&JW(%Xyvr8l%sVYY|>~_J}
z8Az&(Q_uUL<PLoRD};*wdnrn%LOc$4>Go$-yx@ES8&$wfAIeD#gRxB+9`nHsfk6k9
z*rqhlIedcx-b2F6U<<$8*?X%<&IW*K8$uXzOH1$#7|RYkP=HpQCRm{k0_s1KcZ;D!
z6WOsK8RHcEwrT65B6D<cL&(_-&S)Hbx{Q=|C&!(8FQCTg8Z~MM!7I<mu9M`_H8}|-
ztUs(`)wqh0-zlmtA&M@KYE-pAEGFA?4dfA1v?;VHCjWyt%(u)%s-Hs>|Fhz~s8>{i
zH--fx!KNGqQw>olD{T}O(}-+*Fd&*XsoM^2R32iJ96v$Jh-WhD2@V-bNxChempej*
zlaNSS?b~5O&s5at;0Czeno~OBDv3^Af6G+frFdHyZP<~N-bPVMI+!tJkC75Hh*3t5
zvKhz|eM~*!QC5=rG-hLTm5JI&Ptd3^X-9SA5TG#$=ss$3@k+_+z9r)nPoAo&y~(K;
zfif4~mllrB+24gSh#&zJOZh5oUP70}?-bPFo83PN7iCHEq^Si9X~m#`4w6+6<%>{3
zMV&>5(gI_A2p|(UWU{1Sl3macDzq5%eqEkiYeo+d{{L8OHoP4C1zZFm^vxousHl+1
zAwX(+APox|JtrC?7YGD;^H>E#3w<XKzwqcc-;0ckZ|?YcczF2#)>x2W1*QaHHhDI_
zVrnPdP9PLHM{10ki!T>2Xn~77D_O!wiQA}yQ2sQdE24U;mJT8MyW%xF!Ac)x_UvDW
z&AyXFM8MhsJ|zK%fHjV`$%|*$8woB%)foqf<L2q%E%w>hH1z+nBKB}VWOR(4WP)*0
zW@%Y@MP(I7c21OgK7E{Mkw8gxTYE?6PnFubyhg}(krw_RU87^;6V*M?hWr8HA-~Dr
zOMjOAe@*v!74rDLTiM$`I8<0$Z=4fa*gd+wxjj5NjXCGM9J%`k1AJ_e+B`-IveCKi
z+9Yl$?2q`y4|b7g=!J)a2U4UGsSLIG<48wS2oB*CAz>Q8FsCCqP31U><;QXq+@rui
z5^T7Jw#K#b1ilb7%8vfTKsW?7H@E2&8e-SPNX1;Cn>g7x1P>{jtP5+cDwBR>ie8PK
zU?TLkMRgJcJLN`~og#eKL1x*szNJ<Z#vk<?R!lY9lP7m)8~u^4l_1G&^0soS9{N0G
z(v+Q+FvpMU6PeSNvY82<R3ADf4_JM{mu!<AEg5s{;Qsm3j@C1}2FX!m-_9S-;C9Ut
zqu0(hSK?lE3~#09wwsO7Pob^%KReD2o63g2Pv!F6n=VUwQRhECn~O}mPcb(B^Kv~B
z{%0I^BKGp~?0<5R7TY7P^Lp6(J0}1U52=9WNd40$ESQf{UMYBmixI4VMTAi3gKzby
z8a8iGu@!;s`WPPpN^9HlzL+e_i((z4*%qU1Wh@rtU?<p#eP^a=t`A?Av6C=<+V(q6
zf~Y+vu?p9AH@OO=K#`)Bw_TE~u5CM-D#~oLmzHW$S(IiF&J>ycGs@NqWO41ipH)_9
zL!Ir?lw|eAby0UH2VuFgoWSRA+d;m{Eh>FMC<JU18b)t7P)Ndj%!nN;#?0j6bS`&L
zlF^4_Tb5&|XB%h?S+*_9j$gK|EKB~&6s#MabzEH0&1_rKB&29x8?_$IQrL0+*Sfy@
z7}cS{6HAFTXNaoPs%b21)Zx3S82VY-tjZg<zhzM>%CS|+Y1}bs-T&FVZF^hZshvA7
zhCSxEPT#Ea+#l%tlXOa{KJ<RQ)1><^-iUM0>nr-@S9okz<6h+Y2$#Mcwh2yeEO7(F
z0X$(j*TEsfST2uhu_e1=a{CI`ksoo&ZjSW%t9oP1=|gVg#a$RY*4)2VjfRQ*9d0_`
zc~{&_UEhmr|C0F4!W%0?9CtCpPhWf6t$ahmJfiyjll#I~!#Ga^J!dxU-$pRvyF`@;
zQR*ctr7*8$>DoyzHK(2rnyYT(GTv)6YjNK4z893+OA2Xc5AI*F#fUal$(*>hwU~_z
zw&H)||L^>Q^_EgtvEUita{zq*lV3=wsL83pXpG#HU>YzT1GBU;yPO(_ygIj%mV}~;
z#3y4}Lkk5X3k^$$k9MxQjvj`t-liVD);?eVpOmjivjto4Mgn7p3hEqAx?Na*c{px7
zz95FeGa>fT$o-dJc27W=h^Y7qiVC%Q^)k3nu0h|PO?!lC;9GtnM}W$AZd`bhtJItS
zw(Rsbwh#eeyMGA@<qQA>hDFC9pyL2=&|_0Vd{WbW-7>OWvU2jRkj*g-3(B-m@$giu
zP|NG(ao~}}(2(G98#-iwIM{SRY#h4I!J*-i|MJV^)UW?a-T8&Z|MJVq>e~8$rS8t|
zfBEI;_~fnBy|}!3%P)8L507u9?#t^x1n~dvfb{;8@h=<=JSBkW{|6ae{*R0+VsM2L
zXp$mMdDOEO_;13=SwsQiO<gPP0Av$~fp8}BnOY|;@?lP%u_&8`uiXHfoc5ML04S!V
znkE0!NiD0tr3-(m{hL1GA*gO|>hS!hj@$pOjbB!FPVRf~|9H{=oRv3hDxex39zNpj
z6C)s_q5x44ftWyK06HoF0|NsI9S?|20>mZ9#R8BJAP^AX6O$0XSr!^01cQVglZ*wM
zlJo6&;ZSj-LzvzU87VCTE|?FG_6>u<htDBM#>Ga$BT7R7V5R}^u>eH40B`2Tz(~)?
z$iTwN%*esT!O70a#lgeFE%1*2ouGh_un+-*1R=8wF`EJjyAnCS3@Nt;1-~wdur{Tj
zA(e<JMC3h4%tBm3j7eIFU0#h>R*73tLr7B>EM-qC>q;l@Nw4I~_`zR_4<IK5P!s`t
zlm$pgiYse?Ez|+F+5ksgfV&~!vl+m{fymDlUs^_5R{s547|1KgDJv_fs(q0BWT>X0
zs;Q}=t)r!*tF5P}``*CJ*wj$T%tph;QOnNdEj*0feN4=Z%*;%!Z7pr=tQ;I2ES)`^
zT^+4lJpXs(*tmJw`USYSIeB=vd--^L_VfDk#g9ofkV!p+<zqCPPCUC_GN(Zrr%@KS
zX)dotv4mr}oLi-$XO*f?wT5qvoqrH+6FqSYD_JKy%@2N>HhxH-0Ns#~f6y2GL0hN5
zP}h)fzqrJJq?9lM(qKD4j5~a=CtkP@PLwZBk{2NLGa%6)Gut0<@{a3F{N1gr_^G_)
zKW&v0FSndv#NseOStOt+8nrqW(3}EjO9TAO0tANm_vHZw3g8Bdu?9;ChO3!|Yq?H}
ziO$L?ZfmK}su)hI7@wQyU_V$+I*m?$n!J@HVUZy*F)@+xDe*}$At~RIQxj5BlhZO&
zGSV}$a?`W2vNCfE^9r-G3W^Kz3kr&Ji%W{jDvK-1D=Ml>t81!i8>$-K+SKN{=9cCk
z9p78pyV`%Ybar;u{TyiM9t@d^?dt7l?HfM$mUNt+3Vmx}2fC&wN~b5QXMQ!#%=|bQ
z3OybUKOTwb@9!HL>+7Ew8+nWP$-(jQ@yV%~$(gaSwaMAVsfGE4rQb`d>#I|n)9ah-
z6GyK*Q<HnE6Z<nWZ=L+X-r?c?;ql?|^YioD;RnJ1?|}rSW|%EsU-6g?M*gcUaA*{B
z<Qt0yV@P=HR!16(hZ8_=wS_`c$!H3rX4UCZJaIx0r}<dykyYtr_B;3E)zR<ezw#yC
zN(;TKrHNwhuegR|&6RWIYQ>7ViVF;UB|7%nYhx|dzw1r<qmk?hs+IB0=c)|HTWeQ-
znAT^+Wg^$Db^6>KuZ^dhHnwwC-cc&IHEi`qer!b$Q8SkEM+1w;D}Qd<^H1jbwD?8v
z`@v+sa0nG!2k*gLp?Zq8qfpDqLcM-}9$P2>$x5T^+@hoKkBhY)KLl#_pYJaI7h`uF
z*5v>GjsF@o7&Qe6sfh~Gvj_<(r9+fPL=kBmxzVF1Ii$N=knR=*>F(|nkj~wEf8O8t
z{f_&e`@bF6ddC&V&e!8SpGz&_G}<;|H3utwLA%Dh(AuNbu{g`HMsd-T-Ps?;IJUVY
zG1S3gSHbfp3Gs`QKT8=++vsPXJh1y~?Vg@ZxNBgO9_C3vCqIuLc@YcqCgfi?@_}+Q
z-0``oCBNWDtrvU8pT=hWeE`gYfjxjdT7K~hTYM~g;N7D24?*yJhPy$JM&*}61SYFf
z2#-M7b77JsT+3KlI`idld5*m0ugZcO%Mt1?xmF_IXqm4>>3qsti8gTBSc!T5w}T<}
zW3>5doLP3>YP?nD#%coM7guJiM5p;$5^6PXE!pjOV=cu5k9>45*I%!v`EvxWrw0ml
zu4jb4gluGf)l%HZivAS1ksa^Uxsj9X582F3k5=5w%gzqm%+Igv+$<>ig@bH;D;<57
zpNihd*ea?&&R3I2MV0<8PDXzX``)<d)5Tl-M3kKW6gI^p9t@N2sKCIb!^)>O?Wsg(
z{0sWTW-*rhrE48SmSUrcTYu{Ie(~(qAC6k?Hk_^&>^5E=Z|yb#U}pXz`<kg9jwHAA
z;?^XqL6xf2W_BgM$~Oi<yv4CY)`GqaUoq@3&JUz_CYqUuS&otkCB?2v37bV42#nFS
z1Y=eQJ;H0>4tm8-wh#KwZ(5Dk%pgkl1|ar-;iW5W(zZX<r!<s!SL72^?%-8V1^X9T
zjnX=U<*$zjc@LC=NgHqe0D2^=c8;eI?R+QG4qbffsq%3NeH`*9xQ5>)4U2?bL$74s
zlJgE6pHtn@{aonC?psfI%zutD?h&i+H4b@dvek)S21x$VEVivfXw#^f`fY3V941p)
z6mQ?iQ@x#B6uJ@j*~4X~{^ZZaZZlXwtO`lb%m0Av#NB~2^)xVu*H2D>oWJqW2h7qq
zQ!DAXCI)Ce8C>t|KAC%66!vJDFg3UeKu9%i9{(bgJlz)FYXEW8+o+sx^%>(X%wTip
zhj&5_zgVM4l~W1mJDN!v3s5pNF`SWOLTaahbiP5!Kg||+WS>yE-jVUG>jcokZA;AT
z2uZQkJKo&IcUjF~OymRbFqACFnp>$w#E2B_G(mows+pM_M=>9a0tkVRL101y2I`xo
z#;o@N$s2?W#7@N-M6db-ZaNBw3Fr2C8Bt^~w9EfWmV)xEE;12^Rg%4Hk@gwz@%v5+
zlHR`Y!Ix`%<hr$;XP~ej^u(9t!fpMLL@z%%i7@P;TSuWV!ppsFT$8cmB?V!ksz;sC
zdu9hs`L{QGh|giax}1J`^G5GS<|=1#Yk&FncvZ!~!XTq{a=bvO^`V8`_AQpJ>I%_h
z9;><!@9$-W6aQ`K4FZf>_;pt0#zmU3wTlFV^0CCG@MgC`?+^DhKgn18l!@FR1Xy&;
zBy3!6Mn-KLFe?A<bgDf_+S^Xz3H$m|mp?eVzI26;CmN?@xbrmzc92z54Lrw*{4n8#
z`9F5rf9787!|=21y^JoYio5Kcuf3<qgiZnc0J<wNIrAQ2<Q+;=VVT=&MhhS*ZVCs%
zH*8zMIm-B1-tiEt<i`)kh<47%$d4gD7m>HYt}9Y#I~CtGZXbxFUt>?mU$;jNB&&zv
z<fTvT4f>YpHZm)u-|nyz$J#SqmP%G;|AAz2Q_fsE5L2k9_c12ZwA{5;9IKr?Dr%#d
z<oV$z=K82ly9zxkVPYG!`Ib6$lIaehF&}(4FqM^?$LEQYR~xFD7s6p81^vF+6d12$
zVsFv{de5zDidFYhe*!$jO#CP>4GXho(I%q+C`@t1sR5{-LK`HxT4HCL!3pL*v5;-p
zN6J6Z0ZPo@=}x5DrBv+{UJyPi=osC7d*Il4%0_PVOZNtR@a+f32R85Jq=AoKX}m#l
zx4un1H_49*OF1-n7*47^J9*N0>X`c3*pA<ZA;ddz-oLzK;R&T`2(#9Y+oW~JPf<O_
z`7OSP)qCCFw>3^%I$9C+PZH;-Tu*;EP6;Sa|D^Q2Q}~`>l}_Z|%j%#Of|lvU*mhQ-
zQW60yxd~7bitJu`6IlK5Ppw?Bf5n#%w}cE%tBLvIiOKb*rE8{Lz;~%^`J|b>Z}eLm
zi9H)z;&(mkYQ89uY*t=<lyKG!p?y5r-@PhWcZTbE_WE(+n)2GSDMmxP#<Jv-Zd2ic
z8dfw_c`8_CU7G2<AER2HPT#ZsQuKTP8(N;psj{J{e?A!7Tb?b{v!UvGK9ovTk-N3O
z_A23gI9IhIU%Ln2N_aj}99r?sRApUb=zO%gx1tEyvt@X3KGrN)QRt(x{ekIXyhF9J
zH0EmSd0z%=U#MVt4&RQ&>x;?JUct($!W|p?i>X;Eq3U+NKXwrp)2pgNwPS^UoXRd{
z{)7tEukr1=3|-6~_X;(h6z+N)T+D4c9s8t-?}6p&=1HGdw~{p?d>&seP=%pd??~8w
z5vpHgXsZ6j)o2@Jf4Rg;?fgqh!Y&+Hzx)9Ayrxs3(JrFwa)m$4x%0h*eOy)js&G?H
zuX&?=!olU51hq@AS197C{{FhWTJ2y=?_sv+)rNXl?Qo9jQNI4wrcPh&XjSh~k?Yl#
z5p~^oyXtXi!qv7}Rr<hC?{Q__)ea)8ZhB4iq;~4+52~+jaAZ25@#1P1O<g|^Ry%EF
zy57U6)i2Wbo&FM?-S<X-#W>W?I`yyr#-_NDDPqrhU9S&PsomFGS^_m=uMcz88a5O5
z#P8=`9~Fl+Y@4cGOio=NR|I$yJM~@6UR<9vQ#bAfs9i2H;Z8f$8vn+8zw|g=I_nRU
zI6S*P-PFgOkM}hmSG{wWDwa8%pA*BKwyRzL^-MmjmJ{Cs&ASX`uwU(kHC?U=c+Nb=
zU7z+fU7z&fu5q(xgY@WY*r!*`?j$HQX)GGj;qHy4T17hlfl_F~06?9%1?Eg0>vj9o
zc|qM}ugYTwNd|#J4z;~GP~Hb}WY<;RyyM>dr{1k#Gy#J<do)2^Dh1dKKU4|rljGxl
zLdb{(Lps3Ei+w!7zS6Po62d4rj8F`NqOA6+GXel3Kug|_q@SEg-lI;Pc(T|pj-IM;
z&#SNs60Z&bsXzwW+iKk3Cf0?U)W=RZz(FVAp|H<j)jPoss%s;(3;+o3`Jzt(yvD%-
z0Pqrn76br302P3X#f-{fd}9Dc7$$(8luF*Cp_pQC{>1}?R|35k7Xa7+)Lp55M(fUo
z0I-e?jOFy-0DGsS{pZSntUdqg*q}rD0H^Vw#?zn+P9Kyo+J%^=&WN(l6itf&+>E|>
zR0a2#VKBL9Borhyj~T+a_X~fCS`YRElg5#H9Mimbh4xwmQ~!Yy0|)|O9w-`jE*KBo
zHFGXTxxz4z++reNo+vjJQfuZ40|;=rK~X?3i8GeeIpD{sTcaj%GvGdr1OxNFvk$^)
zxk9iHFku*XI$c!cdWb(bbSZ~&lN7Kp3QY_Mwb&DXwdZ$$a^64v8qG;%jDJBh7iAm(
ze1&5xwSkw-5#LQA@d(JFDH)k_r2JV>D<+^3KchM}7?T5bL7*6+0OJJM8AgPJqTHY%
zu5cplFHuhFD9tzw(*{yI4=e+Z@*InDZwEU<Lp<8SuIe#%6G+nuq&8WMf-uU25#<CY
zaz6?8tO85Jqpc^vuISiz&N1%IF{7Mc=c`D8d2y;e@;#VGlhO0pGSXcP)enGT4WQmi
zrI-V#A1XNi)p1_OQuL*IJu#0ksfLKuM3m(~u27J)`LG-`*=~SKHkvFOaLq!KW#G32
zgk=MOoDn2jGBS@oF&&-w`z)bFB(aJU!YU~ti%!}XB2!>YUc_y9D~b3t-WP<Lqg<e%
zIT?_2EcixolxGYW*dsuLQ<iCfr+Y{;Ea0*SEH4qrp@3x{Q0SMaqcfy486mJo=wS*b
zlawGu$GXD^0W_FjQbKYM$sj2~m7h8>4yHIy3yT9S9{_)yQ^?MdGH8HRF*eXVeJ%pP
zaE0?j0RRS)glE`uWdP{(5ze@@0Adn=y0#eriV4I@3FI@$_ly9Y`M`!^;N%DKoAt~*
zGU|^2kV{IvCP@rPda=(_FbY#W6>$}+fheX%lygG5zxcyoWJLHPGdeN8IH}?RBv%`P
zKS1sE02PFb2%{<+kSHrD!7AyUvj$?t89~@2CFCTNO4qU%mO)KtNw?w2@wIs;+Q|f{
z<N+j#8VgA85fZ`yMg%~H4X2olaX$e-@Mt8I5I}_Z!~xVWkTe?n7z*+*O=E-;A&m$L
z_W-Z4e3*qVhed%qCx})Zzb}AqKmi4_v>T}flF&4FXRu>2=3ZdTMD@2zM&LOb{2T#*
znxj1fzInueLC_S}Jwgx^m>CCWa2HS`0MQ5G1$y|m1DuO7((u@2i=y@Xq7X3Y6wHMk
zOAt{-wQ?kGQcM*QL%@y=>@zZ)Or_Mqe__dz+~0u_F~kH=iYRRY_I`>z80GzDpg`B-
zlcKBnZ2|y6W{raY<VFyYxH44$h&6J#10{%uMZ(m9Dl->0b)ZfcA_o8wMlL_O$hyCf
z#ir&Kq(az=fqTLb-K`|nVt^GOh*5_q!LSu$ISWL9lB8!GHZSqK5>bF9C(GZ^MIo`i
z&R7uHJOODz>>&i@1^`Es;O<HA4Q`O%1X8dwok=g&GvS*X8U%vH`pTs|?ngFnBBcO8
z7>=O~3~`0lL|h;r<Eu1NNGAXw*sS)M0t@9AWle<$0|1v|ir0hin1ou@*jg&R+MFqH
zUR`b22{?TX;FWZ?m-N#V21n*(=IM}-z{0p+2S(6`ZI}VS)t&PIU_jD&1OSq8y4jDq
z5`Q@R1Bmj7{K`)q9tBW{RV^f@7Lo-3%JUw8I#KRPdG1=aSG<dOL5_M|SP%q&NhbA+
zxaMLj=Zq^4=pi;tRZ!-t<lATm@~Cm`TCPnba8AIujl4105=#ygaibW5L-s@fT16C(
zMH+2Bm}aA9jyr@ivDM%5n<qU84502`B5U+wy{C{2Mn61|K-7b9Chl;mz_zCpC}B7E
zbZugCfZFtR97QuQdzYYXFH;j6sMicIR8x^il0;SoPNou2q?Sf;5_2gyQ%Mpt$-Bk^
z%@IIO#ag!7R<@`JWVgVD2tkx{k}C%^=dU%Yrn<<g=j3BM@^Qt0EWFv<&9y79nN{68
zs~L2|?e}NV7H6Gcf^hP*cz3WQ$U7hfz~U>bU&zpaPXLGzfl6aW1u&!mT~UwGAW{TC
zm|A-$7;JXd%6nb|<L<h9`2*$>^PK_(g4Mgrb>E1uY~&6f%WYFs?)E@p!1<^#n2S9C
zaHGo{uyKiU;5U;!-Q@mF0DyoygFaFi8^p;ke~nxdH+QXPJcU%6LY^o!?=!hN)k9GA
z5ErY2GX?_kVgS;dnA4s!w**o~G-n5pxr#NLcQwD`@q80sc`E9eVe~t8dSEH<_mhs_
z?DM}JE#1qMYP^y7<1~$|Kc>326EH$?Qg#72C`fuQ1L+JVg9DHD2&JGzgvGUVlQFLI
zT^=U^58W_=Aw%|L00V$3=Z<+yiOPkb+JXV75m>KbM4zn39o9p6yISoE`RWQa!R)dH
ze`f#-Tf<QOF*bzN`TcqQ6F`teRRwavDFAf>24QC^EI|)++?$W`$jUVxF(6mmce!1D
z-JK2MYhqOg6k%i$a5BhzyK61c)I{!C*LYqPz?MpuE<R~#=EAC;yDyZxkV$sCXMpu;
zQl4yZh;#6sb<1cB07avM7zkN;+tBT;tZ`FM#G}eYt35Z6znNQQt%uzMhR5Znhpno~
z0902;N-HIbdVcC~B4i|KumX2Jl2Xuir7$D1jWT6%IW~T-FX_BSO0Cx)x)U47YeZ}T
zfX$|Rb7~s&m7QPp14ZkQ%BqgJ*BukT$8neAFV%tBJP0v*q9C9@hqI#ciwhB-YYv}h
zz7f%a?EJnQq=<3~=7BBk!IoeB9<9m<AxELqF`x6gd^V;$Il~(#i@snMy^+z3F5#r`
z84sa4X};D5x9}dy?vcb0k?R5gyBIWu6l6t}pVu)?hRnvt&a?C^T-DI!FZ1`J#^D}8
z0EHd|h$Zgbo2L)~026?^8QREHO`#F#oL57<uI%j4oE1eswhW%H1P=h{Nn(%o(4K6g
zAQ$nViLCynW8Bt!0Wd&yo$yU)VK2yqUcxg1L39T}lr^)!#=4mJC+Mzfu)|H7ikW~h
zp?n{?0){<8<R0O+LYja$itZeE4kLQJSAE>M^dt!b#V)(Yq&-drBaPDdC5EN`ARVDZ
z*APM}$u#Ght&lD-zaC+M2XLO>QcZ<&MdS;^i1^V(N05T2XfRTputaZVKB+B*d<TH-
ztm*9-BzsLwhiaWZU)c^EGV;5RCE!#iuIcanyH1rsx*Bf^*s4<wz`!KUUz|f-#mN^u
zXUCnpvu`&NWy2trkOdVbB2^gVYk$tSq(ov#{E3VRhMv&T2b9$z8O=n*d;10O4M{Rr
zR^05ylkbt_3X5q}G#MW5z2Ycg$<)W^bxO*pHAM+VBVX~9t)0Lk{TeXKxi~eP==a++
z$)cE-l&Kq!ml$deL9i56HHjPjF$!#`XOu@MM0Z$R+T3HnZ+*n*D(xLk{QVq?yufR&
zm{d7FGYB4ka7uYMmDnVeSPLHbfw{EcjFQp_m{E%V93pE)<>6uzR(7@r?#<3Y<jx&{
zV*BT_b0DgS0SAk+JWjH5QUd-kh{}aHq<KMLckN+{%j0(krSAe#3|le{-DS|#{_S8V
zXf!4U%#wH!v=;4=18(T^X?q^i-j`nc4&~fmg+^9|wqG>9LwTs57>&;g=n|OY44w6%
zKO@G*sDsubI4SqUJi-Oewq3oyxVdCQAyi2&xiH9Vo=d(uB+$JgLmihSkoTP$TA&ra
zXw)(<<x6&p|KoW7f(+)yebr2zfe&pS*H3Jgs|Q--!0fW2wBbR<Y>`}=MIR>ySCnEO
zn)GJs4y~#riZ~wcmr>5DrAqlx-PcPedX=dVo=%A7$Q8YHFH$w@_HdNsH{A*gYXSiM
zwebDV(EIwM+q&iELpSTk@p<gkwky3Vu_a4yJz+9mY0d4HRGYnssW}YB;XTQkw{Vxo
z*858-8o)AIrahRHum|?pAF0WQZ&`dE#_@LY(A+BxGH5b0d1N_Gv9q{>%Z>Rw7ZKpN
zyE-#frJ9oHM@@fQnfxoQ=3?qyL&rqZ!L*k2Y{Qvn8|w5QKCjKrh_+3XKb>sc(OyCx
zZj5|?C-0+1alAj}A(gXaP4Jy;c{k?bo~S247%U*R-?7vs=1KGhAw|N60X32^9=0@A
zam&NJAne2Nw0q@Kdos}b>{vlU1?jy)d5t%=Kjozz_Fpg<N7}x;ZON=&KPg#TcrR4_
zWB3auA6h$k_Mj(!I}TsA6|{w`I&8_o!XxbzxeLnwDng^`gMK$|?++&XI#j=Bf1us=
zSNX}%8+#Q&w!zZ7{7UCHm3^6Oyt^O0wz5}~xHvrM<F!4MZ~wb0))9bv>E`8231RDe
zttNRl%0WYs$9=1Z`T68SdKo@oDO`Y=>@LMSH}v`d9iOJ7rk4H=&5+bnzC$JQXAedQ
zMEUm8d|tCT9%&o-+!B=6X}^0YDPz2s1vc1?BprF55#^+3vBD$x-B@LNI9$%5<4E^i
z!7ZeLU01{Uq_9ZVNQ;!){(TC=yWXP)E?X5b1`cJ`rLTQl5N$K?C+ko9T*(DbjkFG;
zZcR8++hqpv%(7G~`|?zteh|Dh8}wd)rn7?l9f$u-<F87BHS!@sJ5OfAWSpK%M;J#t
zf1-SyTw(0FP<B8f_X~O^7w<#ovVLT>%Fs<UyJv!xyJop(7_fTZ#R8XK5ZYyC%{00Y
zBsXcKWf)sX=W10--|8~wPkByf<=y3UVO`Mo=aF?#rvHUay>Ya@YAsKx=;vm_=cvz)
zq8^W|T4=PH-${kM6}J2_b?$20$wM8D@DPZfw(Awmp*?66r*}VeA=?di7=CS9zwe-?
zedRbV@R@n4J;6cTY1$s=c04LHc!iw5dNOk|A0%|$z0fD>;k+8AEYY%>5tICDEvM@G
zTvB(8UTCr8<k}S|0DHRqjaYVfWvvtNbU)UoX>vbZLT<UAZB@<n99XUyo?Tp=;9%!h
zYUsb@^8jUaBLS<r*PPNk0gG@0iG;d$SI|5WA89?rP~E4bYaT};j;W>cQ1?wDUm#Vf
zuD+S9?uS-dfV@4eq-#|7{}8l5VJ%;NdsaQ*an}NsyG|+VwL0b&`64s~^_`vd)t42;
z#hXd;g&Y#E0$T$YX$!~mxeZ?hMRhLHHIU}=d%OyEg)A}j#AZKAeifpnxO964lPTEv
zDpV$LiFrr9;nKQWwyMsU?RRXu%Kku@kL+Do*IjvOj;|s9Vo>&5XY#_2?7}vEKHg8_
zRG4}-_%(r6gGJ=*_b%#YWJYkv0|jTr(b$_&1-?Ptx@U?()i<Nd+DJK0z~XwVcF#+P
zO$2VVD!n_u8QU_v0{^0*WXwtv{re3E4?bY{jRZ}6X5{J<DV(l~rQOYhiSlK^8Zw2?
z9<Rd}XgTlv)>VC;Op}Csv-WIlTou`PBYEFoNo>RUrR%JH@Y(Ph{n<nx-!)CDHto7(
zj*hyI#Emqvw~Nw@F0ug<4wxHJ>(pF&11yHL8A8MBFHOf^g*8Gm@4Q`*S8$PzNOth$
z(%b;+P7YEw(q_{~ZYXo=yiSmS=7_wVS9NxgOu2SIOWoSUVf2QtS#ISWzuwd!GwV9s
z@5>wT&5y`d)ZEz+$gi&Fep;~EQRH+`5Kpnik)WsbH|bX4{Oc{fhB2)wL+T=1zj>W3
z#WA_wTi<(zwhXz<w2RJ164AG;49WDzWsh%_FyIGW3{B|Z+DmCl!`;_Da`C8j8CE98
zjqpl{Oij3Z(3M})?wAqk=?&eat;iE!x6mz6A8V{kD~aNhHP@f|GD}xQH?m{%cv64P
zj<&kxY8~-~M`MY#D)YA{zhd0fbd&^rEq~M>2V=drTZ6Q96Ac?qH3hGCJ*sjRZV9OW
z)}KvFrf+zux$6=!X?XJJR^z_Ah1OB*@47+ynq$g)x<>`lKd+G%Al0`NF7rMD==X2P
zKOuZr@G;nOI;}L>2)`eIzrblK7~0C~Nxd;AVAIojm&5jpireBV_q10Q_lnnKgFi5|
z>-^%-+W#azEf0M+0Din`8|Hp#^xFCOS48(N9rDun9w$!smlV|wcArV-E{|^KYyO83
z3R}ziq5B<gR_$W$Sgj0wa4z^T>=o1Fwo3e6Cy38*n!f*XmETh;*h<wPZozGht6(C~
zfi5v&|I+kc*F=yTi2()RzRqT^Q}Lm4^Oh^xOup~b(lU9MsEXNKS=+fkDmpbq#f_NF
zS8q7u*vp$`+7BOL0T$mo40{}G1VO$B=leemCRQ<j>Erk%TW~-2_8`bGNB7P%(#l{<
zD=d%vDS4n^N0t(WzslOPc17Qk?~DXiBtBjf;2NnCwM$~wdzs`n8Y`q(Ll(`*^N}w+
z*aKT&#Z+!mvj@pYpEv^xxbox#2T7UKFUt3pVHf1MQJbe<hC(tNWpo4o_*Yf2ToQZf
z&d+5)9#y_)US?A6n1lXlmD1a>6iqmtCzgJfQP_bX_cdr`sgkT>qDcFa!a(sB?ua$+
zo&PR!F-lyu*P-yn?(OS~sjGYh_Jn2GK41Zo&r#{and$S<(|L*d_-P-P!$ER@?u=y0
z@r_sAe>0WFS91jAJMI`Blav`O-e46Sp=`C!NEu&KT6|WQbn58SW+eTv8Z_K6<3y4&
zv-n>9qOAq`y;#(Jld9<11RwVF+mg$c-qSPM{aLK{-Kzx>MmGiy>&@?uhWnOC(G5ll
zry5I^1xIaEoto7OmCnVE*9of9edg>3Q|6Rk3JyNMlXPN~a<!iqbGgaI=I}iQHArJx
z+C@*1h6;mFjM7~dx}s5#i{xVyp^Ci#0lSfi%hR_)_@8y>lDME@#Nu<!w&l@@FNU=v
zh^^tz4D}hL&t2);$%n68ktkC#nt2}abK^P!t6~Ki4DN2@i-h`%&Qd<bM?IFs#syLQ
z&?jei>wVS%@}b7pWtB`F@N~kaMVclsa~UZ``3*NX9R4)=wFrrRN$yqyp>HuAb5x>n
zv-nauSn<(tMltiZrpXMcA*P4#e$-x)H>EH=uhUOwu&@5!(nQkLz^+{4Q!O!LFHCaK
zOjh@lFA;v_LvyVpbvp>eP+yEmklJ7p$DJKi*wj_HUo>zhN`o`7ERsU^GetS98tO7i
zc$O<RL@`F9^-4?PBIUqy<45-l;QY){p+PkYOEn#ql1rj3o%+Hw<g&d7Ui^Drn4u^u
zA8hae$Wl~B_#^z?5L&>hO@GKs-6vi+v5h6Nl7qIEW~huOQ94%v!|*_mTeb;q_JS}`
zhUX(j)VBoQO{*l^__t2jZyo)DsEiUL!?9EYM7F`r+Q?s*G3d12Q2M2#`|>YSx<Glc
zz&e3L+b`lD#SXINah7t7K9yqAP2z{_j@?h(+=}fIUVyj1>xrf7bjx{7OCubZZ7=2S
zer@$K=pb5dS3H!HFkqL_mk)HS!FgvU`2=^|uWb(uE_Zj3r}6E8Zgm8<z2IUmZ(fl9
zdRZ1m^!t9d{3Cq@uP47FmZg*;ek*SYDN_8Vmg%?;kx!I;oHYGAhF0M*L1*fAY1%zS
zao^vMr8_etOS3*Ix;S(`b}7jXejLx+lD@4FGR*$1yYpUwBwd-pjYn`I9=VcCIK@!0
zHBG6<p(2QfU+=QBW*8P(uLOIf)DX$jxZPEouhdLb+{D}sH*aAnMzff;6qYB}Qxw1v
zX!2NZc&s;hH5!geYTwRhG4c_t?j|=Qd^ynF`lR~@5db$+?w#l^-6Q~vo{zlmDYjD?
zS7w>m=ALXznySyAUQQi+(u4D15CZxo$0t;BAcWr;ROe`w=a<7iGW7z%J#$v7UtCpY
z5_?ziJ!@^M^TVoxA5}MlsaaB0MjVv?5OuQ}5efn-M^+sJ4|~%gK4ef(XClFkSm5Dl
zZ*|+l6pFr4;a_b;>Q`>^HHT_D1Zsp)uv2Aqb6s^37CNxI`h=7^*;4^XVgF&RI)#Y<
z<xKy{raE<$0F-jzd{T|QOzGx})C1*LonO@HW|D5Wzq%FjiczKDR^dRi?JMRh8kU&>
z?V49?4GFB2gMy42>~CrAiVsSszq%ile9u~g*IDDi+j|^IgH8DwJWpA<dNjBuH253t
z@m>wi?Q1-|fAbOFkSc)&?g?f5<F`Y%&0h;8-4G5LVu*YF%>9OF!w~fMYw;_n#LiIs
ztJji0W1q9UA>n!>qY0H&83uIUyj-D{bAMxb<BbAetbE~cdfFRhJ{FakH}*Ae)F`u5
zDMxHUni?xquf<0+Zfj~LMZdAu97Ad9sNB~|(&Wz9)F-CX?HMU((KP(Y{_bi-b3*gI
zHTeg=Q5}fZN55Az?xiLwiN@|)H}Kk$_^w5v)<TVz)k=if%&7mm*5{{8)|A@!ShVfl
z4u0}$w!hDWc&qJWrj7I)bBr3Z&(gN57(@Kj{yZ{fy`pV(G-g4pV}5Jg^!~WXQ=N}5
z#y@E4yf+zt=cr@oH*OH6gVWC%*R9ae`8lpNqNBMo{`yEqgLp#ymaf|U36-b1$}c7q
zHFXtCCgdD-U;0hRM(N6AO-NPfO8%UX7||79nGikFeMUSfd`nO0{^ZlAdQV<VKGM{C
zXfi3_sK@U&$s47|lQqdzq4(hDB*%!}{guhPM|$kUQ?Oh5Z1<;Fp6WBdn7Xa0&uB75
z@2F4bH$@wze=}<eTA@$<bBc0ApJHVSa->g2JPp2OKyrVY=&1qW3j^Gn>AjBzn-0^f
zz6SG=21A(!Kgy?D+6<b9ryG|I8V;xHh-PYN--7PW;2yobl74%xF?0Ii?TOvYk@wrf
zuQPws-|m;r?6$uBGdQ!o_*Q*OBbH@?o7#4)`gh8F7NPq%X5qeJK4_NZ3!&2<X2oPS
zjf>7ylI;eDz=$D|BF&KbW~4n7w0#R?R7}zyXSf^1sBBBJKaw9V@AVcwhyGU*@&R~B
z_&>-F1Okze)BcaA!%I5+z2x-w|A*0$-T8;nG2Q35dG8-RckAIZ#wX&u0Dw1ikGTHP
za}W68|Dw64f=}_QR{)>`0A>K-O2;eD@L1vY6HS1}8sI_Ut=t_^*?+AZAf*7vngg;f
zfSwy%;T7J>aVVnj&(s9~86Mz;Fz^WgTmaw`58%%8kC;<d<F}Rq%-#S_%KvaV3uWH_
z5pznf)bU;v58^Z}5T?q~#>RRkrpEvBw~vl4c=CpF!Pln!Ks>$xPXr)`0i+@Ty<k8u
z4$#X0OmguEj^_>LAO2<-$7_|q>kxq#aJ&xbysp)F2PbV3gr{)wPI><#INFK_c>Z?p
zr^vtX4e+hw^{LVEj*$*%cp2WL>r<)|*<|nk#WXO_G`t2Gm?0h5{4%`RGP&0#yU#VJ
z8<{`mUNPxM!w|v)@|6Mt^neI?AV`nb=Rac3*Xc%#D=5;0FWm&Fb^tOgd4sH^Bh93@
zL>~Qr#GEZ&%w=OhcqLcu!;4pPL0G4VFQ4)PbxQ+vo3OG?Uv*Qzn5JSKi@$ur1G?5A
zzJCneKY)&BE0Z2i=eF}XuPeD*!xdX2b-R<yTM`i+smQT>o6Y}bbpO$F(Re)<9UI}3
zkQ<a-9GRGhcXLTuIT3kPd67Z&F}_(@2~~OVC8d!$1zBl%#dtcGTUuUP{;jgAGAOS%
zxU4;}embJ8Gpb>tqW*_Z&p&i7qID|z*K%&>bQL~#u5%)-cR6oxxqfQtSGI3oX>ea<
z!gMWWx-p`qu68~8>tfT_Ukz<D&5?c08UHxDp1hInay+tIZ}(gN8NJk%u{@NwG+DDe
z-_+UF`Lk!Nd!+N%(ClRU54^COnVtDDy*xUz{I9V4xv<i+aW%QLyx7~lG~Kx}KD;=)
zxV+G|yfn4CvWj<hcx1;z`psy8^r0sy&HoFsbGql$*4i8cH*Qr<FU|h{BfG3v+3bPX
z5`XUhMRt>qM+XX?<XQYTvh(0`d74dJV)iex(=X=lY83lh`CrJcZVxjZ13rVW{s-AT
z_;SU9sV-S+$KEA3<W(<S>56@9silYhyV{p36U1s=BDvO-`MSWc=e%U&XQ6RdvI^6V
z<#2`l)@;vI&c=|5D><8Ly>R<nHP@!=uvz%Q%dkU*?zQ~k+^sBwl?Y*K6~;&NU8%UZ
zfPuGSq35-6+Z><YOPKsx>M{*6u=!~n#2_-+lroTR4Gn(`;mW4ffpKME2?rj{$1SA#
z%=6g~u$m)$DS=_^8!Die_wWlovYB%c6F)*fEql73v*>{nxtHn%r;AOMp^z}U>w8mU
zxR1>Nu^d9O7UG}?KH+tMVDE9{Wm<BuJ`I-$`u1RjeXvGIF<2+GbVhm`Yr7Qlu{dLi
z&GB$3<k8Ok%rL>u=8XP$GxkGc@juWqD*3CuG!p5nVrOb@`Ex?k`0MJL)uij;iQWV&
z{@UdXtl|+9LRIk)<Drq?(Q%ieMj93k|2hbfF+-hYg?vnX$N}L8<}DtP7UCB33+!N-
zo!@}@g)kvt8g9wJmPXk8@H%#g8z5;$FZ-2k2KJT|72S|8Bh~dOU<&_Ku%jL^$@%JT
zoZ<wjOcpxOgo`4|b~DB#m`svk$8D*VWPfj|m1d{@H7WM^)15xir*K>9@9eS%q3p~q
zZJi`XhmU<g9nC&ufMohzDG130sQJldJ%E0APJopbU98`06Q>I>g10(bZT;;MadiD4
z`^vvyk)7hLIe%~l{NrXV_1A}=XkMJ#-zkB-e_cXuK+9*^dToVqkY3y~l4O4Ihk!@c
zU%7+_aN0WqW8)d%l+tT}y4*8<2QTa}smWqn3Lx(Teg0T-;YqjK36Ae;x3<cgvL4>m
z`p10|gdv-;;<G!_<73c=JlHGP;wG7W;)yZltQubNT+~9H2zYhMF2w|ObZZ}TxkqFs
z7C*n4f7>eK`stwEoIM2dVQc4Px0!7$^OZMEFIzA9hFdk4xWHlAqO@B1QZlJ{LA(Eh
zarW-}w|yUk@{0leQsNU1VbH0RgV!?SBh|H17%CH=wC8`-k`zu()}*_y+hh-TnbdyF
zO#h)zXF22l2ieI2+Ibjs7b=utOuDl|>~*T;olT8IpUL|T&k-=$JV5gCvZ;_~X1eP+
z>?M|Jpy96{sXO&R`?KR{C@RzZrYsK~-qzMiI0*Q%5WL0VuIZbrd-#0iU88AfJK8w-
zeZAVsXtS*<x%|r)UyIV*%1cJ(zp3FNYM%E!{nJ7TxJfZ2q%u71zVqn)o;L|ICV;$P
zO(eME^B1b6g;1c_|DD;k`x({?Wbu%K1%t&LGDY9my&+H7pHBY-XdX?J|4k(Qii4)5
zeZIAV)D3=*t@CkAG{fM1N`G@@J$c^(4QRS*wIX2@e2zcV&)c-W&+QsDdXJ~|rBPNP
zBiU~-%pi+EDVCZAuNEF&hKDiMFIWd2wsWmUE6He3Fh+HA5C|~R1ZH9)0E><w*}PQ$
zVY9a%I|g1HFL3x3m)#K*Q{Y~#hPp!)@9deaJuAq>^?00zB*1IbJhYZm5VdBK52e*b
z%!grbvL5q_rh7l<R2&Ef4)4>ofbA2@NY_!1*w4)T9E*nn`J{YVW<k`9ZFf0J#>>*-
zAzZTjoeXi4huKQ$<|c^Fq2$|gIk)!m)C2OFQqO%@<y5#eV)BQxA06eXhH$^h!A}F!
zILg=R;nu3kA1SgsDlnwv(P`%%E&Y1*?UM?R-dO%<W$96&O$d*{8uwW3;8BsuQ*Of(
zi?PPPN8ddtd5yq4<E=N3i~Uu2KhPJ9|9TW%D47-TkyB}+Q}4Jmw&xpu+}A{}%W+vM
zWucjz(&S+Lae1yvp@nwW<Y?`2MR7=>m8p`x3r@DOvicun*EKbJeq7Z|S%e5snqJfs
zEZs|$vx_O1UVU^@(;LF?ki#>xsc}*}+QaWuRWS3%?xb#(QUKM?GyC`JN&TvdfXi6H
z>~Sf6mQjd++ZxZ@`QS<8agTs=c){HD;z`prB^(XrohP6<Z6;BLd((fLCwY9@LS-YM
zexR@b(LZfv=q>ga>R$K<*}<qvFmlR^Hxo|V9;lWCYIiTv)t&x?hn57JDlgq$qsiUu
z_z$vUy*O=`q$<S*C@-@!ops2omVS-tUgi)z`>h^|zc?$eaO<CS>hzXISAC;mwm<7K
zqAH7R{}<Vrsg}i$b+57#j^M}<p=JLfyR%+Y??1?HP2%FL4^8Ee`m;F{$?#vu&f3fi
z{$I#Wd;@`A{1@3#2C`IhgA?({PEKW0<3GsmX|`uG`hSt#mfqC=BD;f0HXLbXaRA@8
z5c&DP$gXGm6PrH8W@>pk3m)0&Urb^v%kv-Zm;>nZ!LQ?$)$J;O>@wm<8da-m$9n!a
z)m_Y#kO-EnT~Q|yv`n1#RyCgVd^VL~nhN~X&WoPshIOa+18UW+cMEr{krz|G48Xl^
zmHj|{gApHe)i0sm{ZQA$(ZAUz#RBnO+THAPcX7?qO*@Hp!ez}M?fDZrom4xKCb88n
zo0=qXz&mR9Y!2e-xBZDY$WQ;`mZXvY03%DNy71*tD$KWl1o|cDA7lr9@$31&$PPv?
zQUcPm`*2A($A_O4;U=+G{(Xj=6_D&X5+?vqM!mKvqNOt)rXXSTjtiAcc_C%cyLw|X
zpt-q)n0=1|Fe2MMeK8P2Wqt=R+KW_k7}C7jlb;U+H2Z4T<(hU1eXj7x&b>~C|Ja54
zGweJ3Vj`&!4OoHpY>TdT7Wk1K`U?PGv+HhD;YA~k<pf1nUqKF_A^7thX^x;MsRsz4
zg&l-dimjG-uJ>e|FMP$y;;4XrLIsrfVRkk^+%MoVRB(+)cAoY6@3zOZo9A1dDsKV(
z_RG6XxcVHVRSdH8*b}vi?1(Y#<h1UVL;z@_0d0`~FDiL;gkrmUV75C$tl8qcL(VZG
zM$p5n*&~|-cqr+ez(M8<wOL;E_<Q0FKXv@Z=`>wVw2Ad}^(Q9KF{OgL**OvO84){F
z64wO~^A-CTB8a6?rsBd#A_h}YGhYIEUqmIbX0fYnCGj&1u@0%J8YzCepRlQ^ioB^7
z)Xfl$w)^C(6zgY*CRQ@@eY;Nl0b@ljZ*JP}Hp)r9J8xFn?AD7U8PB0AgOd+rQ#Aop
zyQy9QmG1tyY^r)F1!T;Njnpv}=AE@lw#rF{MR;&`c*h=pNu$GmZn8D{zy&ZM2=z#1
z2+TqS=91d*#9D;IL1i}y3v(^Jp+5EFK`cT(?CmPwp>{6*#Nc^u2-IF10a%loY8xT#
zD}$>E(B=<-U&1^{dQ)C}oZli~AM4xCVET>$$qO~rf&pbW@ejrqLx^qHxXnmS#n-u4
z9+)nX0!Q)z2c$r^j%i<Pi0vrBw0xMwssF_TK&jeu7Xz4s0RpVw#dw&vQ^41kh}}I%
zcMK?d0Y$tA+1+!C1CtZMd8pRI@spY}9y{-*Qc;b&`GXNl^In-G-Z7-WU3rUSoGD?E
zG-!wbpg{!s8U+;*xWv(s(V}@o(dJ8>qFeNV58*sCaNAfx5Dkn>Zi8D82+CM>E`1%f
z%t1;uAM`;adV?hRkR$j<wka5f-}wlN76Fh^NUM-P!YNqVjF=4o_8$NQ2!O(z7={3B
ze}z&(eH}St?ajk}jQQ-Z6O*O_nrLE8M6hsssK*2WA3D_7j9610dA9Bslow;?ABu+#
zQ|ms9q=3U&a5sk7h74$5Beryo0Yd@qD$mi5P!NLHF~C35JboJE>qbY?FKK=Y3kowM
zs{TOa69c+g?a;F4*4>W|6G8>cBg)Wb1n*ISuYgb;>xa4)PjJqWzUmgqa=;=OSf3yS
z)RR+FJ$U3v<rrOd$$%sVvS(bRF)ss$J`nm!l4_7ak|jYzaNCz(l3yzTG?JjKSV9$D
z3vDjZIYAp=X!J+tG=|$whifiXAe!%3{8}HeFp`)G2C%}=IzWPbB{BDHYz7%XTI`R=
z#@hME*+-|Bki{Ex#G;OaujFDuWWfD?r_%>+qTKO5Uos6PGc3o`^F)x6o5c6~Lv4?P
zEltrndYRh{Vam_KBej4Ib2E$(57yM|wt{n~2x@Z=6_D*d1P1ESW|08!17X$%0N$~P
zC0KGkgN+6lIOMWO23u%=EwDxr^IDO!BsLtlSo8C|T!lRIZH1KNF~Zkm04)$y!(j0h
z?jUMzgEdNHe3s8>5q;nvEu3q$Js#|6j{F8OT|dn?Yz}qMH7$4+<CJH*fGRNR@RU7|
ztLF^)HW_2Dm0<s?z;-o8#l?*Z9cxPmcvg9~RC%t*7n-ksb7Ta5zciPW1a{%%z1pDf
z18x&!UzNZ_#At-29+5Q!=uQn6a5j_NOAOEgB#RMQT7fYfq$w83Kx#^|kT;0QA|GQe
zXHMu9ZysQg7f(m{e1i<SMMi}1j`<WsW@&*Bg{3jF3Eu-U&r9en@{LVB+2Zqm(*cnA
zu=aH<EEP$RS|~;excHYk&>`1x)d@1B1PBrA1m+u;Vu&HusoA0oK$qFAW~NT~JrOls
zU@+wi43*)G9jwJ?-WJMtxz3H7c1oIK)=)%%b7&>e-3^q9g+nO-C>oh{I+O2gx)CG1
z0#@B*=(7P%NY1Ay(VD!(Rc9b5myjH?D3?kE2Z-xZv_(K7*dPsLL>xz?a$M??;8z*B
zlBLlSm}|`kuF|`5rLcIb*ORgKB(duc0Au-Y4--sN^vf<|oxuHmYaO1v=(xK4c=h#y
zr+S%zWNw!jKi>EZLu`yrY_0NE9p7!B+l;s)q5h3%p=MB6gQ#gUkD0!xIj=6lN6vcW
z!flQWL1cOxFe1X>J~=bO$$J72{v_E=*v3sI3Nq8GY&x>9b%8m*s#4*_$Cg1NP*QIg
zDWMTzJRO;cQIO#m^UL$xxR(IMc?v{1h5VU~5|`*7E}Q6}8d_$bczsWn^PBgXthzqc
zI%^@>pr)*D-`-3j$Iml00?SR-%f*%I8X)D;mYH0M8Ezt`6+-cx1~KF3!R^Q&j)E1V
z7KKlFO(iJIhD6P~+ucqk%?>9UM&+Ct@kuqQMEe$I(K#6V+BSdxqPVrjxCb>9qD?rx
zCXb+8HL}2D_3DIG^Xnk<q1I{=B_Lz8d2y9Y?F-NQdTSbk7B^;3dS<KK&X(WNPN||9
zpSAr|L|g4}m7bzvNM8d}H3lTW5Mw8p#V6+f{G#Adw<}PcwK`rNrfllW7-oxfOXf1I
z1Gn|)hbD_<sBD?aiJ6;XlQIa2{MXEyj0ol~3Y}{acqpgI+!#~!)6CTjlk=5Fw<`BI
zhnoABJ5MntKQ-=GvNbbVcxSG)o4H0z5AV7;Vmi=4%*NY@kQQCMT-olP*qe9K&aB8)
zJXX_Q8SNAuL!}<ii!CUQ|DoUllrUwLo?)@uKJ6I)uM`2>!gaA$b%yH1e9fV(P~QjB
z`DWF`)1(B=<_W(c{SMLT(vt+N%^@Yu!E}_dZ}K}w^fGCCJn8uoQFL9Sg4x}s?nN4v
zkvL>dPYj42AYwKD`Qwsmdmc40VHPGw@dJ%&5i>Wmve?f1)vNrgU(8!At{MoAiph?6
z*iRS^C0&j)XG|azSMQAxOr518d(G0a5bT}c-@92q`lvc>hnI#)%(b2Fhm#fo;RZG&
zufyIc{<E&VLt(8wl6d-ouMRZa9QnI~9Dk+Z={@)Je%tETGj4o3_KCEjySm)rG_>fi
z6NgI05yM209Z*qg`ZEtPk01#J<E<~rR2}}d=SzS{avrr^ixIz~ns0V<to_QT3pDUr
zD_C1R`C@Ts*@WRHLk8zfF^`JFY9tt2Y{YmdZU;USaddVYH48Df=oy{9vfaipci8cn
z@j)}3D~Yw52c5Hht>tFjUizt{W_i|TbxG%*cFrQ5h}Zejy*|yZTbmlGPb$e-GwFcl
zgUn`J%vLWja|#p)ed`v!>1cUdC{rLdwQ8P@jE+B*q1QaQcp+YJVd8Bh>(tD>UdOqf
z8jb`scjF>&uM;lBouJp<Qg5DSJ&`HbjGAg8==P#mugBEeMagR$&g7Qe#6>=jW%=Y~
zuj9pWFjXLGiO7^dv6$%PyqjEzmq^hP&E%4Sha(ogD8;(EC%F8F7iwF$Y?i!gVPgt-
zEHMcqgrGkK*H`@osdS50-X^cngUKjis~-HzHk7lT66^V30{uOZFRs@{CY6e(*hZZP
z_%drN(YzLJxKaCZ6(MdF-MGPg0>boe)K?OOG}@3i$B+Y?f1C*2LpQ(uv4~}*v2Cz%
zg>RJ`Zn^evRwr-OHg457;u}&HTR65VZMGT=w|{wTcO-8YA8)eeZ)^%~w-s#<O6&|9
z?!52azHLQ4X+vFHNpLUKvfprPRN~LF;h$C2=y597sotIMBw$J4&w|9(n#As*;qGy-
z?S{?j)*lNV09*oq72undbi02&c1b+<NK^K{NAKR+gIx3iG649-b0QfiIf0rbk>?hq
zX`gv+f4Fy#s%eJ;3Zm-+{`3MoP*7F$KI`0He%#+es=pVwYtVhqzcs)9!cz{OH62Lu
zAFzM^i|F6QckU4N9lZ2Bl&3D0_`Xwk3^In2m%xd*!z_hU4z)awbf`U*`u-G-?y5g0
zN)OzBk#h9$-SMX;TYYLv1e8b;dc^bm*p%(W?)gbo^zqL1A1NsLXSQ93xf74M6DMj=
zq0?XIrjv#16HLmfZp!gh==vX3f}5XD`-@H^-<^r#7of33C2$hN{H`(ls6y)~`uTZg
z%AQl$-y3XuvVA96bLT~ByE)HKWz>!kxbsTSi$T_l29ERUxr@f{TeW?b^|*_+cb8GD
zmvw@dznU()=MI`wm(Q;cHnJ~!-d&CMwRceOe)GJV#?4*DBwWq1T`%sg!FIQoJg?W;
zmRAI<Hs-GXG>vYtZSOwE9pXy%anwgCxbu{nzIUsX)KDDJwXu5t|BdVxUj#EgwOJk?
zSdzouc@cU~cQEs%C!uE1rFOH47v!Od7AouS@;}J#&+^33+P}!I7JgqTTHt+eu&%w)
ztK3&vs#$s?o0{KrKeN8b*T9Dd2v+<zvK!G`nbe%uE><Nj%F-YE^S0jkNXvSQj{kKH
z(FqkE+3me=bGdN35`B#L&=G!LE!#k3`9o%iiA3e}#DQsl+Q|pi^P9XXCFz>qKg~=&
zRU71a8sLsQpFFmnu5siE-WhS29<KAF<}_rs-SsMaH6}PaeP+L|8{Tw9DU5R1o~ZaN
zAktvs*gjSh#`$ix{#8}u+vHWZ*(=x6fd-z>Y;)J{mqlwnbG#BbJhBtxZ&*Ifu;vHR
z;E`S3u|Bo%Dnlef8j@#+;M!vUhLE8W?cR_+zC1w4-c+h5l_kCL#P$W9{zuZE6q*ir
zWT)i&P>j-Y*jA3@^R|E-s}Jp82{vk4EBSj74&OUgKEC;@@L=UGwiawG_DGQzpZD?m
zy!`NQ*Jw5E4P`u<S5}7gys__T?RWU9BD_@J)x)z=e$ZRC-iAkZ6@z7Jl7xPnYEtA+
zX)AGDO$9gGg{U15Utvl8@W}3!Vr1h(o)L%FhuLjUR8(bdX==PuVmZ<vO!zkRMvLcu
zg{BUh`%^7F;-m^KgOmEF+J;Nh71~BUmrr#*G%#1{d`uG))cq7-P^oL?=q9LVp`Tc(
zXQfatsBa@QU8#?7m316oW1>7UplW)7e0w=;ax!x=?T0k{yPS10yS@Dr`EKoS<z$Yp
z{U>%n6C@Zb>PfAo^V~~@$niZUNJ;oZpm;*{hu}Ud;h)}*k54Otp3}t@W90-HzkgNJ
zaxRS2cAEGW{VrO!Hl#4|Y_;RVFXuHWOO9C6RPd09S-R`(TC+^sXV1*D74&M&bDz6B
z!y`MsqbDQ$1*5gOc~!^H(u<ntE?%T`?Vzm6)gYqQm1CcntgGheL~Uvsvg>RLcYh^V
zG@SU?er}4xr>kayITOu(P=lY@{zQJN-%nr*F!=PF6Io-|rTI(DK0;{C;A7wO6Jdve
zha3$KfogIrA4asbs~yKE{l$+xO>^AeO?_?>Le8wMG@Kwk!5(iH0-jf)mRep&INQXS
zvg)s;<OsTKq-8a_eEQzbs=HIgS?Rj#Mf}{&u$_}l`=Br9sr%7;lO}hqxqzlOXKU0I
z9v4DCpL=R|34X=p?@*($H|GHsO-aJr5HGUwDBPQ$k}V=|OX%_h0aphnxgk`IaX1y1
zBs?zlP67TJHk?Sx_Odm?9qMPHu>k2BmZtY6^MCjxnylxAO#j55l`wM>l`~3&?Yh`k
z`|cRdH?|eVYWwl=n-5=O$7N0L-w0%MU8Hq>^MXfFDNr|<fv!gQu7JmYo<8kTORLUH
znxq>clk7{k&$3<$Igy6i9%?ad$bT1^wUu@r&Zx!+!^@8LL!4;u?UU+uEV0}S?|i+?
zo-igaCr$k|JaP6Om$|r-;Um|$;d>{-6Tf%eZ$>WCtUTz_R(zdK9hGM=$E~{|q22h%
zqa^bFm6>kW#mvo^^Pv^~ixatknf{oD#U=Q`h>~$9B<{D^n}=~{%%&1$A_I}xZP9pS
zC;5sdp><$Y&~ZrR^CC&&LV1ty@857EyY0k^M{Ccthg6Y)B+2_kJz^W?C6==het2X@
zem0@Tcx|7=!_W%VY6iS-KT$eXo`pjC0T=~{l+vsjO2^%AUj!plNHrrAbW!Jh80n1v
zgCkvWPh*uB1W29URE)^ch#rL}2@*b#H=5K4u06<pbiY5xS9d6o=soHEkc}6n=Z{mJ
zKIQ@sxYUN0hFCZp*>CW1K@&IWzlEsh-<;S`u&?bcx?Pc@E54w0_vR?pBPx*x%_aZy
z{7vcg@HfhV2Xb8J163a?Fw}_!FZ{7+h%7DXEqU~dA(vsv;|g{%@dw5Sow2y;mzpI^
zZ?-;GV07;4RjTukSov^I>C)TMmGfR~n`z(E8%igx$n(=R*A-14X>{VnBfB1W*Vts|
zm&zKGAWLVZw3%xs?v`6NZ!r1>MQ3z1kY|7F{00ry2#9M3j($7j1?5hu?$vf`{BfEZ
zdAmE=Ub`>@LH%YDI7mJbThjbKG&uEtxO>m2rWSP#cP6A$453#;4?Q3#RTBiH8&Il%
zG?k_TBGS}Qr5k$3&^sbcs)k+!1XP-efT&<aMFm8;)8$_K?6dYh_p~w29pn1TG3196
zFp~Fqzvo>D?&7(FO8pSp-0S$=sP@iQx<x?q$g>CUc^E%%>(s=ElT2q|-ROhnVSJ;e
z$U~dC>>2fH()LS!j=a6Af^Qs~JDk-$dHX(aevElx>%uX^(Jwtve)Zmn%gZ|6fppvT
z1P%*VfxWOnb%mj%ptsKjndSy`3Y3zaz1_IQcGdfh_A8|xdFzHf9Mo$uKunkQK81GO
z>b5&g%;b1`iYX$9;esG$Z+X4kDVn?ES)iD^^ycN)9@{RzgNpgXUa!`d=Q@HH6mHyn
zbLKTvqdh!8p)k|SeMPjrHI7@M`05+?1s#psDRuItr@Yo?TymOo%;d{W->glB^EVZ}
zm#b9u^1N3R+)!mDSN;9<>$aZxnuZ0L+EULqCCmI3?RC;OA+O(Dfu6Y0b4Tjdn#bEf
z(Z~5Cj#7>H*S!67H1npuN;cp2IP2}wku#qmdHcrN+0)^g*~|MS+pc+>J6RNx`FcR2
z!)xuFZO`}gPp2iij(MCvwj7eSjgYvjxpv+Zx|320Ef?<=^YA$$8k&qbBHqiq=0n!$
zypEd@>;K^HtKp)R#D7U_aAwt4CA>31lt*m%uDhQ?kygCSZP9z>tA2!@&RAt@(R^;k
zbBrlcn4%4ghiOXKml#<>*SCbrVX#8QFj@F&&?HY}9$m^o2=3Yb0RB+GodBmPLwe*e
zeg4%apUU5z*q%P6%<Mv`1fXh+vEH9g(-}-W1~c0pZYg2bCE9r4?-tmH&<{`u0JiTB
zA3mIwl?8>eVE*k7NdONd9Xb!W26i0&BX<y-Tkv<?fs-A;V)qDe1H!z(Z;z0mpx{4y
zgwS}Y-yH}pMMY3q^>>>P4^fd{S)N;2<L^Qt6&XNX;jd1izX*jiwf~(^h(lSAYriQk
z(R8nd&R@(zV%qw@+Y&OmzYSRw(2%8JZmnVQAIgO+4g=N(zzO4jp%@Bq0z%w=S%xnA
zftDeif3pmk{;~{#)-40dF;FyQevI;4G<3oq6b-q89<E=mAtyHzS5Na_LN1>_gj@lj
zZphW`Pu<WtPtY|4iiS=HUjC&Ry6E>?F%)t+_&-t%?Q<*E_A2{F%aHjWmLafLaV{(>
zASOO2At^K|`6?~tZ$cqoAR(0PUpj?SsCx>+fV^myf*8zyq7o|E12!QB%J~MXB)~qz
zU@dW|R{6I$C@ww@>^+44wg#pDvIc?5pxlD2U%iKt@*CxqfB1q5>E%_wltG{`=w=02
zdiW&^x?K;-f<RMHTU*<2QxMp7XzCug+c$7`c;pX9P}$!cK@-hW5AOC3GJe~EeyM@R
zMnNyo)Po+dwJ`s50jw#!cmWE4R=;g-{`UWX-^2goUtq0)3oU2>Dsm(KvDT1)k``?H
z?G8$|kLMQp?G7^ZzU5SDKiqK280-ew+s=*rgF7hCaX(7PsHtMI*dX=aY7J3wX8Dh*
zZEhOP%8;W#caUXhwn0nHTq9U(Fh#B94ks^PNn{6{MiqU}gYF;!<r5<}WSmEiZ+SqZ
z88IBPjx|{i9)h(7;{ubmhRG`1ebvwBRo`0kwkL?d!rk8;o`R-_65ZOJL?uemRj2d0
zReJ=q?2dZhJ5a2^1hAlx=bWrREVK`pXdYC~mFo*X6DI>WL1YGI8@*1xoo)E`VX-%U
z_fVYeKCAJ9u5h;U_jC?`<gXaI_hd3FaO(vVgjBrvW9Rf_CJnlGNNQ5-+*&iU^2#QJ
z!F=g5Cl3p-LuOMRP_j-D00N5(4aOndPo*FB_fcgYmsTvt$zMFM5KkN+hy}eo73CP*
zPI7%j<`tyHgrUD|7GK_k7#hG$Ho^Zjb=Yk1G^~2c;t3ou0R>JjzF;?4iTMl%6aakp
zHF4ink!+!;)nop(P2q6BzUdPto|^9i%@1sNIGg~wgQQNqc+|>gy_UFi&l157C7q*4
zwy%<QRXr&sXQW36IxwScT3V3lX9*zKeQQ#0d6oSE&%Hvvl<ca2lCcZgdb{No+<;rk
ztD|sTUs<#2m>!I4!H)FX`aV%E_rwFyT&NID?hWvi7vl!jN_o?UXfbN+wM`L(4eu*y
zn5K6kW`fJ}v{;n#3Mm%9{JtF;RXx<QHWfW_8^O99Ny^4W8gM+tZHS3N&M@B;{gTta
zb|M9!hi7$p8=5Iv9+WezUI3mOA6TKfj;gNI$4zGQ1sxkz9_`}yGTGOyQ(ddkB`PIb
zGCGVQsNQPA5UQV)U<ehXhR0;90ertq_0Ig%csWYD$w>3t+XvDTeJ}=xg;a~-Eqm~1
z<y$W$n7I{R;f-h_z$}F(!et}G*aMTMGekIS93s4tHt#?k1%0=6e~Gb-9}{52q7nnO
z62sPuY5^1jRx3p^4Qa(=Mrn;Wk+hDqI!dV}U*TDSLDRo!D!x*Z#?}|9!T=B=m5eLA
z1_B+YdnEFm0rfT#KxH{G3;?h;nk$2^>irbS1W^OA|0tSz42+~w9whPt6Q$wGgJ+ql
z%^G_A^lCNpT~sa-+;jjy0wr(sNJ-lVV_cO7Ft*|Dw{W#qgKpvDN9*m-Y>g?nG$$^}
z`W()@435uVu3uJvz>n(G@5Wp~dgrh|w)P224`&&7gl3a~c0H63fH&N+V8G-iB6T+C
zP$rKj$UG7X&*B6{Y%RXX=u_v!^g(&CFwtF@c^EKJ=F8=@gu|Xu)Iqr%%8BRMbCmZs
zKq$l-sgZ!u7i54sfrV56BG|%60JdltmqmTeNsd7a(pBOt0MRP|m5JBokm+J3*R2XY
z1+zZ(X<{tK$%ox%w(x2IFsSE5hpNak0q$7?DnkH3A}G5FwWIi9>+uOqB=|7?$UZv&
zlJf49K;x|8rUgJfnzjenV*{@htd9d<XE<dH$r#<qY7S07PezFh@hrp003;5XEnCS1
z1crjea^EC&GqFWrIEZ*Ji9iyXvW~WNS~AnR^^6HZg%3o!gmaseYm|m}kGfCD3aaF`
zj<50qbaVED$6?EIi@S<p^+|X$THf8&w!^yOJxq{UYn_Q{rm!I&ya_<X>K;*(;NvXB
za2f0YXh*_Wpui=8Rc)?GjYH=)40Qm;t8K*I{ZM-0-m$SG%(o|#WR{CXB#gyOM8o);
zU|0s44Nrt>smyf)XI|?^5nUt|`RKfSzHlHbEcpzu=<@Vf>16PJApmF$TZxP!AP!?b
zb&H1AQ{X@YJq5h~$H<W-jYrGxX3Y9s8HO>qF(`mj&D2A~_l+6^81GMj=D#tiaq$o*
zRCgYOfAr4KxAdg7&pDO)7T1vZkv$RKoQ=9Jj{)vXT9Z1+Yc%_c0r03NE~9C?PlPPv
zLk-^zZNbZKWNO2gA#-di0Nf&Nh0{`Pd7uT~q<T-(L^&Ek6XV@;3<ASrpE~iLXK^=T
zf;GX|m>z~z0$KVjc<e|5HO!bdnaZ2BFDai2y_rMWdvx@g$>%u?*XfIBNLhUf%nWi<
zL0Xo_{!`@Fu4Tqe9|p%J#_0y<*?I{^l8kQsEapUO{(jN4Gop_Rp1CaIy^Wvl0ZITE
zzK@B?X$W$#M!aus(oTCFfU*$*T0skziQMOj{8T`|4fp3ieaE)c>=FUPmqXc=mj}>?
z^(2N{2e_0MH(%29bbH0A0Eq>dppp#au=gH+q6|M|1~!&Ng8(X#@tue&!R(6d5hy<z
zvM=exh8tInxSXA@&PkhD9`4Pk>|BdQ03pY4m#sW$Vnl;8s$iU3FW#t`Qy54>G$bPG
zjSGeB%p9U|i}&F5=-!^Cuo9Kx*w>I{PA5gK0$zYw{Ywcz36p%t<`_v~0D<7p6VVwE
zdEuRONscBgTRDCEG!LLf!E)3YPs8~b22lwBhGltvwk{*p!Op%%!ewp@0i^S}oJyrK
zu`1d2X6x&*ov#s*bZ=d`wxI0*EQ*K;hC_%oC8hBO0Ad)`%E%?3IkB<A$rcmK`E~S_
z>vnc%n3)$E;}d1#uEW7h(=qO}ZDtyHv?T9KMeCA3rJOt>A+fu8(q;1-$=tjB!HuLg
z_~F`g^Xs({J4K|!UyCEcTDS3u5ogJq^v|}rvZdepW=Kh)b|Gt<7X9bs7n2lDU6!Ha
zwc}1q`o1}laZvgVa&CW`tjvL$87t8jFDtVEIwGMySJ1=ed)AN&lk#feo)>V%p^`X<
zgisNvJO2^+;7@VLJ~zg(3!68@grlHt@3`O-t)@;o@C-SQ({hFoCchNF{!UTMo+s5V
z7LW_sxp%x&F4c@3i1|E=Zo)@ZTqoVhe{e$+6V0Tgd&T}L)`<Mx0@d1Hd3IDykxk%r
z95H|l|MZ;~y7*<66ZL`BMJHG1y&;7&>rkcI*B({2?Y?V6yP_q@JcgS(!8Xea6=_N^
zU^Yzf4x=iX1_9pt>biLn_vu5)T?s>)is7#~Xb3<iGw=)CcjY<2-hyip52~VApN(>t
zg?OaTScS2BxIYStFGO3=pvQguV#&ef2f{06Y^rW^t(kjzh=)GB?QKLt8BOeucMZw4
z)HIraX_F|jG1w&?$o;`k#fzxO3AH{c@8t&9a0blZpUI?NO?xu}by(vN5P@9RXDZZ3
zg`q%;iOvK}m9FP5u5*Zjid<(BTd_E5Wj>IOvM`9UB3xOS5wMk%>;X>*9?GmNvh++s
ziHo3tk9qN;<T6R*)g^X$C*aCD%jh~1!N3E%YJms4;Y!^n4^5tlKXQ<M4PNboc`g<<
zumQ98!DKrfQaHi^Cjqt$xD+L9@;G2i$5hbZa7tV~J**>zL)0L=T}`g?0D;izEL0MT
z6oCb$YV5ygk51OJ`V6@xlE9rFVs~6VhNP~f1Tkay_rLPjv^wx3B1AW3Z!|V>StqgS
zwBoo8w#_OrisIIY1V0S;A`;*^Yxlrim21LwMW2=5k2M9abyo~67;$Z;9_rzQ^dKQP
zKRIOSD$igc2$H4H=W|LB$fq+n$R@{<D|OGMlPkR#$jTu)Hb~|p#-8RA|I$c487<)l
zZJNbcIH@w@g9+Bu+wL4~t?_ERTdI<)@%d!W?xCa1$*72Wc{XPh{RND)hMm#DUL&R@
zHl#tHrvd3{%rA~OU%SpKlBU~+O`u<Q{}d3o%Kjmf-E+~tq=<cS{VLBS%lWU|Jh91g
zjY7y4Tr~-kG>xnE!Pq{>-K1k!kfs&&nPS5v)nVL$?9>=Ov93)UnF{Hott=W^++j|}
zDOL%fA^Akulo(LwHum%A%n0+WBJ~`ZWQ+(ctD-VXb2v+lC%bMdryk9oIwvy&DCZlp
zIe}I931pZLQpO1gx|I8z#2lBLToRNQ<bo;B&KZ>!j&BQIf0%PiJ^!J4e*9wk?V#Md
zG=wF<<hqC~dzk%Xmz3AfmpK$vAZLLQoXC5N7QVj~e=vyao%)T`C8k&^(}p46`9)S;
zEFT)nfu`MfJ_&y<O-E>OeV9u<Aaw&dPd83x+FYX_3xoaO<Kw4+ejNzTlh3NYKw!Ht
z;gL<vFx@Z=Eg4)yh(qJsi{$2u6t;`5rqHEhxQvsF_G60Ga*8$Di?xFJs?qs0y<#Kh
zV(Ix}{ooRVoRYWF#R8|<%sklyd|-Y==n--Wp{m3tr_`>!^mSiJ$=4DJ2H8oq(RD7B
z8Yy+pDf4VE<Jl-)SKsf{4skImJM3I0IZ_swQy$!2uDev~vt8n+QD*5`9%@$+9b94X
zx?F&>{KBpg=c-$|Ok72ZMrB%iVI1aYf=q>uNZFBk2+gjN&R<m&my?OH&5kqk^FecM
zR~FA#)ooYBTUNFDR0)uf8I-~Tql)_W>dyIUrPpPc_6n*@nK%QPj)k47s=m`+Gdf>G
zh1N)CRi-kS(@3Qkt7^t`YUkT)2cWg48a15^q%MOwnO1Xpq;@r@ZeFH3+o;r#!F<7|
z_ElBghTYBjk-Eh=GhYU?H=eV`^ClorpBi`5jK3nLAKB>yYty(1eO%9$TMiQ_%V~#*
zk<c0SOuO6l{2jM!`EMCOpd4wp1T`DPtBZv-OJ?mFWI7t~!3`2Q4RQjF%EmVo;yFck
zH5=7(8)Ix6BSz{qzBiIWg0;Lj4+u2rhcr37u04sVFnHW#mYdojQ*u<Z`S^DabK@e*
z+-5t?3q~Dut6R-Z0xkW1%_n7BPKUHqd4z+(p!?&Nb0_%Rs@cwK-u92DJKPJlIdK~l
z#UHF{A&oeP3bclIKzub@qfgw93Tcgd+!EW-nk3MY_`NmdM02ucTgKz2^pLh3=BDh9
zwgSz@{O@f=)eVK3?PVReN<-SKWa~jYP@VD3+VAZR9ksVKJ6i75G>3GwcT~4^bllOb
z>iXW%V_ey-**V}<(I3(|!hGwJKz>k1=Y(wKut3+t>e2@%x@L1L#so_4=XNdRmd)&b
z?^<RqUedhtvZLrl2soNXU+cK@KKI7E?{_{u&ikl&_iIPvW9HUx9d}oA?^@iu3p}BJ
z5n#YVoqs;=g6A<xf*Ib`47N_jmG5PNj~RRHyF1hv+<DzS;obaCy7%>T3k&u<hxCZr
z_biZmB=dSw!g^$$^t|n3_`T^-Hj$Il>fN8msT$g=@uZyC*?VwDRDGxSfMB1FR<Evo
zpF(J#K~0ZQXP@MgJ~O!<ieSI6R{!yuZmZCK?!11x9ftjre#}n4lRd*lYXD+DaC-Ev
zd)~mejsb72yXSTWJ_ro@b>8u}AAA)u7^rn8xO4E?<H0L=T~xuLN18*Cf?d&}L-%%b
zhvGsz6P^t9ejlRkbfjnvcbpi`2<^zq8*c0v&f94(*cq-C7%2*EFR>pf4jHM~X{+iS
z$$dOh7ur@YcrR7+Ueiu%OX$7$+<Wbzt({NqMSQ=<5Nz$y8VxxyI*`z+oi}RPIXarq
zKfW`1LU3&AZU002G3U^+S(AbJ&apF3#ujP@76r%8YK^b3489B<zmPZn+I#TrlkuRP
z@%7QcPg?h{+TZ^wH?)~|KdSToPQuX7o%`{E6VP`<Fo%ic&<T|3Fs5rF^T`BT?J!no
zGGA+wlXZmq@?>$|B>&kF!KagzJCpda5mD`_oAy(Z^7ja!FQ;=#F7ckikEss92g<we
z?x{FD=nj3LW;&|T^<ePHgM+oB?1DAp#@*x}6Nj~nQK1jH@*gr<ADSdinhD*|7kXqW
zUv%~RU8}PlL!FO+$B!HxZaN7~zt)&`ORPJ6dAf=Dp=VdK$J6QY?P;IH4sY$5<FYdW
zPpbp-XF5;JgeJCK`7v{(V<!A*RiwjgQSfXGYgJs=Y@fhvQhsBi&|HkhTv}o$?ed(G
z*IZ6ldEV2xQO!q=0=@Lw)*BA<UcvJftaq}z<^`+g>$*zog&qq%o^N_r-+1}4Vb0_B
z%O#ypA8T(vW^@(zXg^W6doo~przQW%sjerZiPPgho_NX6bC}FeooyMq{8V1x>HO20
zx!tEvaobN9<rz=37lIuYUOt_9=<sklf8kQ%!uxks%R<jSt3TW5Dp|k$tkCn>c7D#z
z(`T_;&j7aOE$zjr6N`u|70`l3@zzBag(lR`#R8!vobbGjeD_<2r9*EP`QLj8E-Z0<
zUBcJdh#p*ib9`B{z>H9^%+<6k_g+=u=dwM=b7iw$PRHj)M$grLR=*kRvg~?Z6Y`vN
zu0-SD%3iq@eX}QEvth7nMbZ@Ji$!9*VCG5HYA04s%OP<S5N9INc>*GYM+&@O5p#fr
zFpy3QkkERh6<fR8&lO()@SS*R{qv>dQv@)9(2sxNJqrHjCi&hgkGHR=<81*4r>^YQ
zy$ZXsDl~@h12u`1RSnry*PT@*k(bd6&$p|eogyLuBJxx{_}ctvBY!nyd^PdstMY@d
zDcTE>cV6?DJv_Lu@X-_&xPb6~|FY)i^To@skb0!Y&o}uRYZbzi7knTx6EB=W-7g90
zdgo2kxdnY9(vSGUkBGz=znvIgX?1w}M0jE0=ew1zcgsH?Ejhl28m+DVtXaA9e(dS{
z_iRtsg+DwHdSf*9X5&uH>w*sfnjd!FKYjJ{1J?V)(ZmnXt2ZH6*J1BJVD49cUsyN!
zxQ@Nai97W1>Bu_w`C0Uhk7d>$1@HIr?tV<@`Y8HgN&Ms|kt?4FN0(*pev(@Fq;PYY
zxV!hW{K3yEd!FyV`gvagIC}V8<k{!o*B>PmH$;za>^;9BczuKK<_7ou4UP{R*gaoZ
z6~ADPenFo90=@oax9-c%_?NBsUpCmjepLAS-t6m}b6;1JzP_mYx;*~%+54|g*uI%4
zd^0rrrho3+;iPY*x^J4}-_+iJQ)Sy!R@hWD+mt)EDV?+_S+^-RzKMUoDa5wLudu~s
zwuL*lwI^wdrEUv7zJ++d#l*G^C~W^Q-QGUC{Vj2Oqjvk_*!KH(+iR@fU&?=fZu))k
z?DwaM-{)(;&y0PadiVW4>&~eB&ammuz}cPN#2rTMPS@B@`@5antUsFMf7~+tQFr!7
zb>feT+8?F6V?XHce&n<M%#r_@Y5Ftm?9b%HpGmbp<Hvr+y!#o&x*IOPd)0I|^z3d>
z;%-3g?uD^kA6D$@LsoGc8XXpiJ1*x|0k!UC{p}9==UT&x;Xk^A&SBjr%Gx6_0t%r9
zJ}>{~4tlr>x`Wac@@+q#?#|N;(sBD;YiK_AV*Zh=QTb7%e){}{Me8PyM|GzjgYKXb
z=l+zZ9#%s3V6EZ(i^ntP&D)Ny?Qi-%1J)X1xfHDgHeWhLNAZERhPh9tMumhPM`}Gf
zb9$ms@494uKx6kfTV)1VYXIFr(nk-Q?h-7&yqawT-9cl)U%Tf|S$~sse6s1=b$1YP
zQ&SMEHB6RDStg~bJHL9+47!8z-M&0b=>lsFceFO&Bsb=sdA9K5+y?4w{MD1se*T#F
zcya$=;xn+;use1B&KKyfU9mQPO6yOY|2i3U-Hvv*QM74Yhvj4rwga(m19S%+n5T5H
z9aj0+x97-4jSlAt|4ALL^R6HD_`P66{cUfs*6`Iwj&=kOZo&@YqEtQ^EX3ro8%pMe
znhtm5rTL9a(n~%W$;pC0%_wwmQsm}WTzw1`@2Om<mA?<x8tSIpKAWm#`t38*c*Ejp
zruq3{s)W|Jjn7Auw_*Mi9VJ{7Wl@)1Tg6;|*S^Wz;9aPSh0(LTCJU3XPL*S3jZd16
zQA&4Ij$2$8Y(9QGNK4hy%EKP4H5?5EYYp0YV68#yxI+H=mC-NO*mT+Q8PPD+{fA#f
z8(!B{zJBqm&Wll-fI`x^^jBMN_MOD6hsW2&^1K?kzTKUx8uqxGe`j6diSOgu4^6J)
zdY7b5(mkdfLZ7J;^8KQdzuG_M4JY%2yinbAisY~gbdDAX*mRB&%LsId`{fQw*f$;M
znxy%4)0K9Zd+RwBKHZ<0e9S87RK|&bty5XQ+(9{BEkO$@gDBJ=&<hNh06Ako0m2Ph
z@FKxGU3P^7zb<rD4}!P0AU8T_Wq-u+l(CBk<+K-w{;a%w&V*d?iHHUf%P+E$n*QGc
z3~+ZmK1qB%&wV?s=5<49bx%p&RB_^R(Unh<HwY9_#6>E+1ZF6Bc37fvD@`xk?3qz)
z?VZ*KHCU|@PY9;6!ik$7AH`mj$f+h6)m=!w21SKpS(vcQj{C%zph`MgXOa@tuBRlc
z*!^Au`D66a3Vb+`KOathKRDsR`N#7K9v}&+kwvxjz}<~~CdagnpCH*dnEZNBZ|k#u
zw&yO``v#o!4|Kj51U|9n<*;*Mk>GRtMaBH4OTXqSe$%BtKL_wJ@ZsD%p!QXDPu2>&
zcg9^uq49@1zG6t(LN%G&@F)ov_81eHMA6=ERg#I<(Z!{yH79IIcX8vIP2C8$o2wxf
zm&NL=tIov2nE<4}qk>`W9#M=CLJTH^3DrF$B*D!iish8xiSRhYFTs8t;BqK*z$Iws
zNbC_1<>o-v-Mp5KEfC}4O6AqMj1~)Hi4^J-gNQcp^D?6_e0+VPoczo%1cv`u0}G1R
zf%94~>nX?h()|+f3knD(@oZDcckkaG{rD+y!{+O^6{X*wLGYFvkn;was0UOL_=AbU
z|9MY^1Kd;j#YC~cCRP5KiT-6<1sqoS6NoB-K=f}kRBqp&G*lD34*xx`@;|1bd_*%L
zb@E?msEF3zZpS4_hO&AliiSs3O)Wths(H-rKbl(kuhLMxUo`aB;L0B;^e+%p*WSh8
z<mulK)clM$_%F!b_u@a}&(pzIezDI0-#^)B(0_}4dR++z+2_UBU*Pk~{}uI&Pxwdb
znf#B`^B3<dqyJZ7=YK{zhek*KPC7x%xw5hXV$SXD?f=$`&;R~|K_&|SCnm}+nsd7L
z_nt~qi%b8&?>!ZZIq75Io{D`Nju|X;TO_#{HvW0){aKQS_1B)tUzlkA=?D7FRgbE0
z4MwEy=4xwBC($?|<6le^&aNlMmtrSR1Un0rdWp5*p2{Hw%{h)z<1B)#{KUiCzxGu2
z7{`tLKJ_-1)c8_$>Z~0oDSr*+mXACLpmnFZ_smCz(PAVG<~P<R&|a%*m#xk&#MiR`
zM8=8RVK%qV_d;Fe0*6jjV0IH@D?xl!fHS^fCiHQ67-XW)#=G2K+_Tzue)r{kP*zKX
z39yMZU}AXA!!H9g^ZFkljcYSv$0s0n<_>#3<+`UZJqsZ*`(IqiU<RHzk0~(t4p{I5
zBry?#p)bw$QsZ5H0O3&-VL3+DVdiNpp{%0l(xQXJLSTK?r2;aKAQlz!e#;uWmy2M2
zGRgf>;PWd#)(kR4APo`_Ko*$La}W%2V^wtk7*GIbPryZSd$yTJYsnuNAy@(QenKg2
z)*3BQu~uf3T0?l1=db_OAwJ7PRhYNw_$lmOU^M#qWqo0{y>?WLkz3&rN%a&ZODGYU
zCS<8QCa8GPJTG&v@9>)bsQB#%egp>yL+t$5;|z|<c}|REk@&8@VSdxJXSMmImd$1B
zAd}~3$U?C7g+eBFnW4QVJLVMpVMNg&jR_7NYMNj(qTL#AkEYZQyzh=A?Qp?{a3ONC
zDEy0pd%DfxZeH9e0n$(aV>6B`Rc(|ryeWD^$CX+BzKvL-!m!QrN<9Zhn5n`YUY^$#
ziv4bJl@-g!F*!x<DP@F=(Gm+nMx+G?AtNxQ%%nIH3UC%i;@%kHFZn5t5W?h?kLD+=
z;{ekq-ZtX55%L>(ZQ-}8t?QgVzad=#NFXG^STF$wEKS#-nqss%yaq5a$f7Al#v(PX
zSygEk$Ar!zHIFg|$)<-)u^gy0p*j+^{znRQ4Z5pw7_@WH`WC!y{|G4dj&-K0-XsA4
zi)}Z^HE-IuQhD<RrWnSEtils7kSCra0Cv02qdY)gl#XJzs+f#fNsdK-rTWE&h6|Ef
zAlDSjONbp;)SienqNf3j_i(4=luFIJx;=xYZ?&M#(uqVJg7{mO{?P+-3tAt9ci(nT
ztYqGBn9LM<nl5X_rPACIj=k4%oypcGOqjZAP6p~OI)uTE4WQFa{YdShL2styy}&B6
z4!{@gF#vgG+6!=;`~Dt~SMCMEKwe2V2+snZ!Md-Z1xYGY3jiMs^2$x}L1XttCNZ_{
z23{ziI5~`2Ml|t&$_Lh|iWufy%A&+cz=>smsLu;fui^P?bh!8;08ig!E;^NG8W_Of
zX~a$yF)sDkr)Yo@I}cfe6cW>!bduqK4OBu(4I=4i84jhQB*Y2S0g?#lIEPAzhxCoe
zIip`^7jcRQ0?t}wC}Ptawud(iEd#;GHW^9{d>004Xj#Sy_e1F{62~Xb@O|-(x@@dD
zgS-lhA^G5eXGR7O0`RoDFbWy~bjVW?400PT12zW%TnIF6zzMNzCqe$HPbQ-p4M+fE
z2{zgE1&GTS$V*hJmNap}^kfam8H*T*hVk0K_O#Ej3d=#&6}!3thhY5(xgH4_K0FT(
z_;<bHyvyzkP*2t}KOfPZ76hK$3dvQ0O9I8{`E1cp@c0v`qo$Yx47AKvv5|LqXL^%w
zAQeX9u0jGFqi;{C-Kvm;_!#!NEvFVGRGQdEN>ydy;1wlC#L_LXL&u%K+EL5{Pc*gm
zhX|$P_~W@y%)@Yk6BJ&_fM7&NJuq%i?pAIft`AayTLFGR(q;im)dtLRrFp)mErN_A
zsxbI((|JG{Jfv-*$IodU$A<?bJa`$b8!)PpBLI<e>|?fQh=JX4%JW?5!{MV~@BLjm
z4$ZS!7Wfd1QP`+7H$@Eol;PoKMvCM{9cP7n6jKgqYT}dbDOsT~f6$bjy*vN4rNlqE
zV1McZKJ*H}Lo^7ff2k7zb3qD{7!ZVyNzvCr8-x5@3l0>p+;bFr;)i)N)r$s1Uck?3
zzcG>}^}xYXYENdxi*sLSWNZZZ^=2@G5K`-j?4I1*4;sxX%)rA!Q7~~(fEp{JyhlVg
zrb^V$A4{})E6(ZaCartc!uFW`G-q}#Z?@Sl2I+K4T6)1)-v^#n)Q8KFsFXCNbRh+!
zA+r4h7cFye`CF~5jrIPyyHk(DboXVPsb=5+VwmSgGK6UYf=i=ELLwWz=ApX&$ew$9
z(b+>27#N^N!3qL^-J$(MAdsi6i&CK>28}t-5QM$i>AN*{FO|uiqYKfknc`Ety~d*x
zrAD?){HFtldGi7bNe{RH-&RzVy%Vz}xl$D815uPT^>89)acQnaGC4w{(8p%4bC)?p
zi)n;Ik1w&)sC`g+eTvcRx50eyFGhkSsLAa1^dxy0Rd9y)<>fsb`|3U>UORh7(Dl@y
zf!E$vf)fEC$mY1c<R*6-KO`Kr#akYH-1sQO3eH)g4>JcES(PC-F(n>)&~N1V(1ie5
z#$%ZICEfQXW^xcZ3-`xH)gh-3avstM=d8m*ECRFPYx{0;uj#-#k0)BbE#ce~i1zSB
zyk@?>jfSt=N@EzFIjy=F8Fsh+<9<-Y6StXbyVCs}cMeSThU(1rCACc?oIU1t^XOaz
zN3Ks8Y(F?bxB!iPnJSNR&~pxHpT_ClM^35cXMXEYKNOSMg>DfQqTvs_e9L__y%Dx)
zDi=Y}?{pW@kh)c8(FGpvE;zB;0mpSZ0N{;^U%m3?jA#)4sUGTVX7p!RKd`9UFE8sk
zuTE-__HZ2}Pfo^#t4R<LL3%$@Tw;m@m1xu+bP3I?x6}S5{YH?fS3&y64Yf$pnHMAi
z0OUuUMP6MzJd<-zwdncTkzfjx*^3@otC#piV~_6BV8%66fe&6(7llU<0lb_u0tZ`y
zK_?;(t`{O9gv{wjr>&NlsG9=^rgwFEg!49CVh<R*ESJ}?vn<pw;Br8OEcCI2Co$$N
zmu(p2Ek5DolWqVub%|||!)_gy|A>R@v~N?RpA{C9Pt?3VbHtPm&tFFkFnKGR127-B
z9R-?l%>eELr!S(dDFClKCUZvSz{jA%neb+v3qcmaosSOAwOshHgv4#^r;_$7DnU$0
zXPeKQjZ+2(EgTJxn5xGd0IxB*=<=$YQZ|R(E;AgU>?o(tI41hu$JZQBH%4eai2NMD
zf=gkE!>eB}MnM{{4AY=)>j*b2f(2@GG>te6;zGtzD2KZu1akfe?#c|ut$l%o(Y8%u
zn91i_84O>7ImWKuLu}VdU-lzP$O0;*hN0B&W1jG9mkg9K;E-DlryHmg^F-uyyQ*Ya
z?&+3;eME-fuly{GvzdwOh>XK5A;+4|&Ah;d;p5rKD3?`<?UpNo-2pu2i1VkUc|}-5
zt=SnqPTn7{QF)afh1p57V{)8aWR)=ai~HovG4w@`Yb)p{tuap?#L9e(EzC-ihDIE?
z7@Y7aX`S~vdMW+}F5w3h@bh7RxDJ)UC-6ZMCsDjF)o8F-+>Ld}>nz$EwYYZ`-k&yU
zSX;uzrt~m{_|u&g9DN~EkU;>F-~_-fB|oBLuCd3!gHq1-piz}HxnZHV?ib2eXzc2#
zDu&z<>+w9hLCMV|#IZ%FlM~Wm<@z`&MM64}5R@j~fEJiYF{u<%l#VE~;WG7b)xx6o
z6Vp=)5femMQZk^J4A=yTo}i~W+h!zwOe@Xuw(!U(@@KLh&Pa5I*{|{Pfqak(@yQlC
zUY`~;muVQ5QFeyQa0wM@n-#r=x{{q0*Orwqmt_FS+Si(K#5XH#Eh{4^J1aXIjm|bV
z<ccuNj;_oGnP`b^&Ps2#!3EZ;Al4h`oJfzHdcNES_1u6S8Zq`*^>B{CQcjd%?wze%
z247x9+rhTEoI1X|q3pbo*zDdQqyDzs&e*JbAQQFCx0%apZOb{#4n2hDoRrR={<Wu~
zUZ8X>zivH`p8|`=GdE12&JqtkGc5R|eq+P-;LEMNGkB24!PI?V2_z&x_Qn@=I?RqP
z<#%H~o2j85p(6s*#nLA|=s1l+PJS*_RSrKD(SU{OiO{*W3-SC#{62*>bBF{dPGOlM
znf9U$!y^6(L?X3_eWXamu6TN_XlpKC7lfnp#RrXY6{_d}Kc^^gW8Zc$$V5xliuh?a
zVkxl0K8OSc0y~mx6kKZKnQf9&@Mf;S+o{AVr_@EG%%`oC)SbT&RN~fN=3PZQJzwZK
zU*@M#uKcY`lfT>_WTJ7dE$H;h%KQnwvJj1m$l#pIIT?NEiqzQhDDL@+q$<$>4Nk4?
ziZr{*R~IVEGIJr2Ka!+BrdKb4QGw&1QNh2MUi~vF_+x$bzY`TG|6^1DW;nmo0#2ej
z?|&sNQ2E;!>%Z(y|4Iwg{+bqmxsb#m1HAUHVOBXkQzavcI>lPs(*A!N75q`0{v#?d
z`nAn!<M@}fK;OajcU15@aswAyt-O6t`235&z$GB~RL~!N>HleF;1Nm%GXt<D{eRPu
z{`YAC?XPJ;N#TE#7PPju{<~`Qf0h=EjNbeIJS_mD0_ML)1*|;g9s0kgR~=oub^bQJ
z+Q#yz^4Ik0@mM%Ol_40`=KVb?@JNl1{$qOe-$w<e&1Z9snq@4}HWDSXBh6lM3fSJ?
zQGrf;Ng~X4jGGq%FlMV-ep%s!v$I#gdDVNV8Qk8>#=oXlqov3WqranqJ?Wm!pIU0{
zy8JG)ds&N!3qkWO4N$}MaJt@gg^lMbIs%$jH%#MaT;#yk^y<J_lGVHUTMWVPtSPoK
zJy)DhgRSXqslJI~<3lwz4PV}XQGt}voS)@r&TYTlvX)v3D^PceX9wb>-~D-QOc}B+
zRv6CqdQ8T`%bNS9R}iq+V=vhJ1quY)_r{;^i%mlSlPa6ZzM&GY&=(Yxup|D00jq^Z
zkIqUh$B1VP<zKQ2<8hShGdU$3yv4O~1a8!ceD2O8NQ$|<*>7Max>E}V1aiOx+(F=?
zzbP0HfTd}i0q;}<yHO>3l%~WHj5HV!z@^JVhceNUF&?Ll(y}VR=~bO+p}5RbT*AD~
zlrJu!2ZdqJ+^+&yf$Kp(c}oliRnR0M13z7J)r+kU`+cl}bx)P>t6s=68_xHK1GK#1
zW00ePcBzEygm4>)vt?DUtMs~Ji{czV?ve}QL)aqEh=dbG49JmhZBQbYH#M*#5uCC$
zq-Ko2Y<-o;Lo#rC8_Wj2aj6X9uB_V);pfiX>$`RL>*QM-()1$~AWbqfPMMidc56?h
z@Q=wilP-*@bPz6#m2g>ln5(q!=;W1VwZk4r=LQ6)N;@Sr7-kjQiykv7vKPge7TSL@
z%u-4g#Q>BT(YQ((%eUx3p&Q3P_JbfP+!#>l_H$0D_xwEO)&5$j#-S@EF@Ja-0B}rO
zg}^Av|HKgZdalDXYKZNFjOuc5ZcOwB0H0x31vycGDrX-Idfd9YW?Dgd;_MBTUu|c@
zlKd~z4$SS-ya;<HW*E@7OSNPHNWeW+L;`!I9BZo^gRhl!{DZ0wz*tnB2!#Ol(wm=h
z_hl}mtw~$@#HC8%_g#XD!@xJhgV~*Lr<e*#IOEVji6g*GIE!gCmY_U=jf%5G<Iv(U
z7SK@&-J4^rqxzuInDC<9kByl%Z@&BXT^5h>p&ky;N!<1mgZRtGu~bhJYo~6Uq2SZE
zdoR~pe<3voAEiMdcnAuIgw=bIbp)*OP)gV#7AP8mB3;KQL7KUi_i(5&Jhn@y<V^rT
zqF^Bzq}rW#H?QuBSu5+Og!53`_<d&`1k1?DJS7Yx(AL10<eNYQoc72);fW;ZARx0n
zqH+dg#oan~7H$&b<R#x|8J|yJ#g>69W@0eu-jYVfh%y7MeTEcjxCw0p2A`cUG@?+i
zMd@IGm_9>g1e)fsjO)>ik~UhWc83<hShD!g;GP+WjVPxT;h35Gj22)6QOb%D{=z*x
zRBm%qdG>MKS8BAd4wwWyFdCW(#AD0k!6X11K3jjf*~n2j6}kig)Ckx^02MK9;Y6P2
z*0KC*fC4H`h}^NdanN@v{g$u9<niGV9dKjd6uHkp93K()7IL6%?y%m@=~6Xby3quQ
zqF2!;&a~Pi3JzxxWt3TfKCcTVu(|#WCO}EyKCOJH@8o`w_G4NfI12#=mzfSYJ*Fli
z;c0?i^C`#44V+5^hI-b)6~MIQw~{~P!~s|kuPLD+nRje8c2OnWpv)<y2};7t5P?z&
zn0G#mIt5!QHy__)D=JZG$XrN8bCy7ngczBN(loRU6(0eRuB$m63l{_qU5>N65z}%!
zhx;O4O*LLb9~upQ2lA{LfyHE+r9GC7#Y%<=MpI#BVmRjlY6uoQQ8zx2Y{-?&;E8c%
z&9h&oCleja49fMVF23gYVvmLtQB$7lEzxBQ%ek$lA|GWh-zxJVad5}Y=7*XTiBru8
zI`m1<3YRRMl6snCSMXU-J^~>E+oMLMGO;YCOT!~;?Z9Qr-OdfYav^JxNY7$dp+zVH
z4JadfPUILhLHEE&i8=ERm#6jsi@`A>aY`xL0Du78fxWZ+*ZQ2Tb1aJBz&eRt1HkjR
zoASW$mdXBH4cX1NqGkO>F;Zq51*%JLq<4Zb44DLD0=Un`4JfCLj!THQ_8dOy7t2s+
zqDk>CFtPLku|Gc(Z!FfFIgnsJapg#pqsY5>nR*yF7i4o4>>USCVG;yqV93p`F?_o`
zY<5~-eE+R_6a--76h}@7p%l#3X%IOIzF!Z3?=V&*FV!Bs*FSF&^wu>TP;Y0=es54l
zMr7s{8pXBitBfz=lvgM^ZVNKNOQ&RH*Wxa>t`1I5d_CN8c5A#l=De)`G8)+m!)%V7
z=l>?FvAdiKgI7SsMcHHFB(elG)b=Bw;hwHWhh+~nmEE|2!)??N+r1nmi8an_xjDhY
zcQ7#_EnT1AVlt0hu?mgMo#J~iJx~(*zB=Fd7@Sl5$hTq!S#tfM12@ksGR)5}J5Ck8
znS&o<i_geJO8{AgqRw~p`Kp8@q=)e=7a507Ojh0W32zp4h@qy}bYt?fmLUqZ-uDn=
zCl4Pg1orLIg9vM<W*CS_oIP%11b(t|1LuilfjXZ#J$Wf<+YhmKZL2ifU%zeM)<0UU
z1TB!q+7H;2G}hiCowGNZaSO$p?8fJiX7|%tD|ZH~1&1C4iysQ#G@2Xjw;MtB_<0EQ
z+BZ}4l2ytHCs`n1W}+`YK8JS%NEi5)GWiBhupcxS7d=zQ+;M5j2?z~dxGdkaDoC?U
zb4q?zh$kFkPDnxQ=H9sMyRN<GN|pf$0=HQ7cNP@>c*i)em~+r5P&ZEw1CU-EeIADY
z$xxY9U|kt$zqmKehb%xKdqf@TB%#Rr_wIyU#R(cPu`9<wSV$;iI(e5{EezNMuvgc~
zKtt38Y1hQhz`EAz`DX0lozDH!Q7Px5{SO;C9Oi9z?q;?FqOIx8Mvv4e6Vg3UrWI#i
z#zX|<XYrSS54y|>B67P&H%^?NlzxIKTGw5jO&XAN@8+P<pH{e908o1}vt;0RL1v#Q
zO6W2MPP|%9x>V%C5&G&9szQc?M=Jb)9Z#lk*u)`+eW+v4aU2X-)7QWjD_4#Qts(d^
zEFo;fA`GBF#&rCK15_jtsJp6iN1x-ED0_#wPK{cra-#N063z}y;72A<)CUI=ofHSk
zS!5^(Ukbw62Y;sY@XsO^b|>JuzoOeq9G2lPcI%?nM|Gzo?pGx=iq|zeFQC5%;L7Om
zE74Ar5*&>xB8jJ#0B~X>z%t`;(we#tY{_R`Q)dbUUztT(w2_mtFcH)hM#z>(%zo<_
zm(RzT*-;|9Y2NKGu#xl_XJ3@2yTsh-P=REBZfAs5Gl55m)%FN`H^b2@EXvlM_~4@r
zK?IXq?<7OU6cG2xI%5j4?tUBSCWGh^*K5*Y*MfNy#2cu>5-wqW2}3an83xkX1Vw;^
z<Ths|)<bh**ekN)t}eyTw<bzKFnD~zqFO?zO#(G5;bmabnOg~IMJ(GEi8G6EfCvj@
zApK}i1o7N^ch+hrUb~^hpMjG3>xoNhw0Uv@mz3d)m?TUajl~(2xtjFeo%s|It_UE4
zsJf3fS-uZluiCsWyd{!X4}qzt%sSIpH?JKhr%XLyiu7TU;p6kfvg%Ioq8D-K^%T+F
z2DnIUs@5>C<l42Gj1=uk8MVcf!^6D##MH!O2)H=P>ytJ^hKr)pkH>NzQV+D8<h@>>
zZa<fPos#avmjPPg)PmC42x;+4>7Ire-g6n}wlernWf0W4>?$)H(3yeRnZa$Dk3}-I
zBUq`itcD`cbCj%e0F3OMd1*Kkj0(W|v_QXkKW|oeET`x?;=B*CkphdY%sPS2rt{?#
z&1GE4)=uN&3~)l~lVQ1Y*#+u<L<N;8rP7AwXwIZXMD<(_X({`L`md;<C&;sT%l!5l
zWG@kXhYuC?F(-BB<jv*YQO^UTg6Y_O{acuFX++~h{=zWoFeJZjw=!$Sw%}z@!DaO%
zq(@#@B}9w_(<3sUCBby5Svn#GQ(HN!Z8vu2ZkQJqNNr`l+v3n5G9RhWo!sI8&)0v>
z(b=}?b3wWM0IbuHbF-5EV2jS*Uigx)kf{p7!(YHv1z{d31nbk?YlYOUyheH&w?>gf
zT#>RyF|D#Fy%O><n=V>atYlPtaJ$&YqgbvTfzl`lK>w;wyGWO`uAy9<U;(5Oemry|
z7STvWY)C`Ja|(^-OC7gUOtv}n7Ew=wkmPlanzj4|^;GTc(sSEo!MtUpLMD^RGN0h`
zz!7J^ZO(w4@+;fr6$m=XBWEv$>oTSyCa2<TL%ErlZ$;d81<j5Yt`Ugytgz>=%*v@u
z>8>zcs>s={q*rn7=g0or*>xhA8yNhV8~jtn0KxocZt$N~4A=x@LGS!ORSfpy#5LGu
ziN8aG|9!atY!(RYx8c>a5>j^nt@OW-tmXAh!8XDFHXrzZtrGlB2L8D_@Gpu3ln7bN
zIC-0-Ut)Uu45DKWXr=#`N7G;e@PGOCAN0bfrvLxHDeyn;8i2XM8tUJjT_27Jrn2T5
z{E-`6D>X>I^*cA{w2Vy|26KZlkp7ZVQ<IO6{5?0QG1QB=|4+HWv9f_A!+fKQRgu*=
z6ZfYhk6;<soPOm7U+KapMGql3qV&M7Pf>VjzVYpIN9-jo<+!a)t<d2y8^3JwL}$`b
z@a+1J+(4(;DnFFPYr5`)Z6M~04;xk;9_CLy*0RVpfjaYqFc!RM+rg#H2RPBcdNbW{
z>irsdD&zh2Ryp*`?^6^Az|70%INllL+(#=0D+XQLl;N~WyMY?ZeKoFoE&;n#a|!}@
zSQ87(CR51Qrq@5yOTVKZ5mf-IzNf7jaH>i#J>~Ivk;@R0A}p9Q&#_P5&)%3tZTU$g
zr&SitfBIC#Qna9Bri0~U-&ezz7S&hu;W}xTghP1*iAO>{bkFb$e=Y@s0%?E}WzX-c
zVnVb8=wMJFj!Fqb@n=tlYq0Yeikks=J@HhViW!ucO{IiUnE&dFOec-#r`OV*`-Qj*
zP5N_!R?}Y~fa-37Sg6Xlsxb}7>VB@z0e96mw%japJ7U0=W3JHiLO0LwC`i{cG`W0W
zB`Vr3DDh}C?qykCfYHOOz0tFe_!$-IgYo{O-H0ltF_FRQ8q98=B>60+M8*Ss5lgD|
zZz4yM-gAi$V$X7J6bbfEi6Gf;m5m_k+#Y353j<jsae_7*(@5g<duMmW;>ezR#JhPe
z_lQvzX>NL5Sq&rSV`S#1jMG%MD@;=<Xtb!Mj*fu|L0e}?Y@fOgO3bo{b65<(e;g9a
zDidE9Maz1pFko+*3{dhAita$fkEOLC@vCUhfFi$sLnY4zfFYpdF9;(G`m;pFt&RbV
zv6g^|kFaxsFeISNsSAVdN6OL!58f^zHJl&70suE`$-ml^3Gla_iY|$Q^!kI|4F&rb
zPyp+%oB*+7**0X7=UeRe_AJ*l;RRUKSQM>+-Ng)a)hcKJ-!E@u$dR<rWY9a9Jb{D&
zk+gad!P^@QQG&WM6rk|{{f3DFPf}12o=IO+SU#r?>UzwC5{_%8sdY7(Nw5Ja@v5%F
zU+P%KC#yV)-nDyNHbh-4C^D`U@QxY$Olq83x)8@CjRmmh0bdf}%UiOq$)CYaf}b0L
z=mL;FgF)EQ2TKDmB=u_<)Nd7FKzw2j!0Knt+`as5vMS2Jgb^OQqr+0f(W@xg1LYui
zZ~?PDa;HJiU*R0KsxhJ4f(Oixi^C-i`iXYQP*hE|LVIhUDT_4}VA1gf0vTfbFQ`X!
z!RI0xqK%wT#))(QryPsg#V{0)5Fo%6Vr=*J1W^YodND045+#h~)sLY<@XXyzI;3#2
zS`XT`XZWQ%5|H98!?r%o=bu?kTQGfj$qwy!51=0u0k_)qAM=gBWP|}bo_IBY@e?+M
z0QyKaYqBv90fTF#ffyu!${|G$6dYKhTl@5^j6u~6OoSWcE@5L~jwE)~(dhl2bc4Ax
zaj+a1%d=aEN};*|$Bygb04KPfBLp~)J{QF*mgNgzb?4HPanY;HqPQdI$L2lkKw!9`
zC<G9ri^mddpS-g0J3K1Q4wzGf00YXcn7POtHyDYR`9h3J!^iyf4QzG^^a#h0xlAt;
zsbLknd(8x=t9?H;{gVuldKv2VoB!hs4B0^bPv;VX_dp^+{{JE9!RUhjzN9HKgj*;^
z$M_gB*{KlHi;rqH0U)TFG)}MH@RU{nBK)HVaHdHBrzfGPn0isGb#^^*pQvZ3=aP}@
zWqbLrrS?ns`d)W|?X%ROis$uRG+Zw;%8-VqbCUg1QE$WrDKKA8ODPuPGpLN`C~V*7
zTAzzzF{6>$A>o6k&hy3y?x<s_RfM2T*&$uDOM%TF@AMf`Nafj;<Xh19Or$ui*OT2k
zdw{WE10fd?oGKVV0`3g{hGs--*#2~VC>$6kCMyGUPK{=67)+1dYd1MLt)6{A((h9Y
zch!Sz6<-+%x)Hi^f!Rpn*IWIG`c(Hi36a2XbyJ;~%DB`7amrIBR4>)vu92AFBWpkS
z-K@>?TAjl!uY-lnGiqNfuSdd3@MyZK)ffa2B*d^1HL(UilkrTH8ze+LfN5G{pxEYf
zC997lEgZNDn>&A6puskI$Aww`qfW}EN`hlxp~MM>Q~1Fr767eK6yefM@aZd#HK4*P
zV{Rp!NIqe@;>OPAj>b_1?8Vs*_zqk?jlxVs9^CBS!%WgKx-+CS?eJhw+LwxAA-|B3
z9TXSAKXuYMqIsBV-MPa0`TeLD*G82|pn|L7N%->2X271^6sQ#yikT7(Cs3itY?49m
zfmw~cZr#c6DuiE{yo!n|?I{w+0qrDqwmlKdaSAEPjx_kbyrpstZ61YFM#(a|B*UH|
zT{Fp#)C_-1*MpMhXxAwK&9n$G%0L^ZQE`$B%n}k#B+~|yEJMMtfF*GgF^1erm(+yO
z4V8WC6E#|0b=hoZ@5p(&ymZVQGr^k+#5}62JxOL0Kds~^Os2ryM_y0PGYtpWyvE13
zy%piS^uT;^vm_35w6pZ0q7>1Q7y!m5w)VQmQ@SC#(^9wZ0=n6(iW!hE-mWB><uOeM
zrw9zpvp>!|ec`BugWb^!iqjV*Z!$keil>p#*1N)^^@(GjT<`CjvtCLHe(=`&TLT&O
zH8%|Vl}}rP0su1wOjG`gh<E)T3NIXt5d@LFFpCJ{@v&zxC_UmpD;Y%gR&4?`M+%v!
ztNO1V>CDy&+{ab!KhQugj9!YHFQLL^7*HwyoD!!^<N}9b7-V7{V^z`(d^K#XxF{Nx
zVRKQc$MWLxm3NUx<e<I+hg{f8>SGRikKZFo1CRo+ejR8Z2M-Jv<NX*3bt=G#l^-{?
zTKF`50W)_hF32If_VhP1Y5<Lk5WHBgZ8%bRTD}r!0w-V&s0BdJt9e(uOs7EVr5aec
zRqkJTrnGc3mmAj5FFdZ_qMhLNu0;*9%hSh*lG~Ij=d;h07j*(0Qr`5+hcWKx6|Lv<
zzF#_&<hhJ@Zl7d_PD?6*_tdTvUv#7=k$aS(<veJE2_<H%x6MnRDk+YdSHaxw%8EQ8
znaPel`=nZ?<StAgnss38%~&6X!Bxb;e35V$XXI?Tcv4FMf7p4hNjTw=6!%AF)B*Nd
z(g_dqt6vW&j<Z`yeMH3&9i-XO@qn_75;}?DYTk!3;icZ%7e+7-<H?E=fQEc2aTMN+
za+>8=a3?5j$^#Sx7dwkQ6{;M_PU4Nc>>TB%c1>~;wU-_h*c!z*8zsaWeP#0+t5S5d
z3-ha~=w2r{XwW}Xk8lMg9J^GHXaY+Xi5K+FWwc7f`CJQXjeXP|HNt)5GAgD>Ee>jq
zRCJGtCSdIAVRBTsyN}M<R_0WLSe?Mw7I%@@dPrVt{DY;~hQY97{||d_9uD=w|Np;d
zV`gk)48}ggU@T?qORBMtHAD?jLxiG`ic-yt!Hjig>`NVlkR&OzXb4FZ+R$>4PAZ+y
zrsd@KR_8wVx$pD2zrWA+{e8dJ=lb<mSJ%~b_0E;%@qRvD&u3TWhyb>i3hQ3NGlnJB
zHRDmkSX6A5k_n;%nSHko-`UQJP{_L1jyGpyJ*>m8Z_dj6f#&nsqh0We+?=^Y+ynAn
zzc^enCHEaYH+eW`sW|s@d#>VA&bgD>P9eF_8@ccRzE~1p>uIitEWb$RzvuEXN&>94
zAhVLM?;weHm6UqHe@hdne-aR02ozAZO7#NgF2OszP`^WHIG&@W<f7dnP#qVV1>{-O
zry4zr+F+a{Bq!xse#)aN<<IBml{e=>#`Ek;^4&V}L+taNU2$t)<at;Z_yrVXPvtA=
z<w-}ayf@eyg`@KXf!6$O0fjrF3PPfUE<9lb_})M-KgzoB!%|^FK#`$RkuBKW+)<RQ
zBuMNiG#xKuTNi&`D)Q##b3nzwH9O53=hIQlS1L&wE4E)K7J`aFR5bXOps=Lm_@|O*
z=hJ_x%L^zeVxdawN=i|BrB@RLHK^h(^`)R<u(hRxI#SYFQg%^E?ZPLy_KubJ1~EOQ
zV>IEJq~e2m<pUk%ztYN0HVc1G%)j4W6ocfu_J1?^{zv8d|JS(O+D_Tb@6QPQzfrFL
z$He@f;`09vxjy%Aj9l`s82SGKx&D86Tn_T`U*!4_d&fJCuI1m!_x`3vQU4F})n60d
zPz{o=PbdVa$hhI7xBU<D9i6GFJoy*$eK8t6QRQ|_-=FP|BDd^(oKcl|?aT`K8en`{
z`ReuepjrS>9C&wl;Fx>SQxl<$dsB2k%P7<{2_~WLk=RT+xl%Z`LcSH=^=|j~%NuMy
zy_)et6OTkyuxU0+#9hPJBRJ*>{H?*m(ZLxjPCa$Y1s46xwiTzo?Rt0}^v%8>PCeRS
z+pY5Xsq0{3{*za5<jjqY;4hRWm0GaZ0sYHl(5a8Q56bnlx(e8<k5HLo$5eI|nXdr?
zMfd9NBbaOM&#}w)5NaTR8GJuHXzR6op{nkZ%+VF{<&N&X_nmwL)7AVZV#IG!d}MpT
zh@2m>LcS|Xeb>k1#J82dJM=+HF@HGpq$L4JzPu5(wbUODJ-rxo=;`&(T=Tw@uf_hy
z>G{Fu)$pyfUhkymf<AGe;XC;bgnRIT!LAd|SRYey_uzN6B#?YFWKFxK%z|7u1M~fb
zHuCfEYSUCUkDTiBoqTOp$hY5L{Ye3t2EJGStZ5gGy<1CV%`O`U+JiQI1K|*b=zRzQ
zY3Wf%TtOn6*+6$s1FYA^AYflr4H6(@tle|(55{kA&A_9xSGC%1&o;YA+U{8?r|l|h
z*0D6LQkBs%Bh<@Y7r0T+FQdw}po$K?<623_W_VQ4r(Fw-vaw($&cUK<$?qScx)4Qo
z-(0ocX95K?al5k&LE_7W>)Y5F$Lh9pu(M0qu}ovE{_)K)!0_4xq)%=>j;{d>gWWvH
z#=%om=HQ?Z+S6(M!-^liftI2URhvr)@nZD1ph_!Z$b%X9e1^Fg*ErHpsyU3Q)N<If
z$$U3JsW88t454lzzY}gT<=t<s)AP4l-nmg1sS?qx1#a6yyNZJbM`6dx;cnoZ1{i|t
zm}eNflja}7`?P=^qev}|J+#l8>LE8-q|#}0U7b1i`PB%|R_R7yhe-i7c~*AoAnd$;
z|Dc|9H5H(}WA#8FUqgm(-UQbp0Qq?^|AxRZCkS$wRY(mv)%o!<G%yMS#Fu2BU@u|!
z*e(v3W_r-b?F50@o}h1OX4noUTi6Lu(v16%Fkqf}HBODDxgA4YMQ(xO=DU?ebO?OV
zsc1)ax6Yw85I}#y60jxUvg4^_aMQv)e+I5A;?%f#1E>NH9MP^wt_A>FK8cY_E!H-i
zvfh}_hRXn1y2~^XGdp_{qD8UOriP>%K8DBF!<h2uy}bKfzh=;*Gv-JRmm0^U!=bJ+
zZ{XdvE9Uz}WzbV#u4BzX0Mprm_vrZ652(;=V<;4e*1?pYe(t$OBwr4{(PDnVhaX4s
zB-(?Hy9ZpRr9?_yr^;L#blhDJ_8rw>lL(;Wj$3iujX}kou;sutLiaa+RiJ%7!538A
zm#R=#OG5X3SKPh7EAF~yr(6LS>wJE5oF%BZuLBi#YF3E(LO2dG>DV3Coe?ltYq8d`
zwk|;yvCYgMA5yEiqPX{9pTN<+EEp~<J6W|KZaAqA^l)LXNd1sUZ<lLH(YfV&LQ9~F
z*8KfVJ1|6u1FSJFGqMtZVq#}kiNwUT1rVsMFb(oZ<O<-QA~1;rr^}NdjZI2))`Kf%
zEDsv;R~_a#;-vaB)RtNf;6u4FTg4pAzw0ZZ7u7xGW_Q=ussc4Q7v&{wF(gYC#}USA
z{Z3wV!j!x)nfiK*+Eb^A;GaoiH=oSlYja^iA_9aqL+#N=o^d`4UH0&yF5fV@@Ie{~
zL);{AWwEvZ7%D|l)$0n<TOj*|&ZP+8B|+9202I}-L7FueL^_QK&eS^_#A4A>zH&vT
zyn4MIJ2OfLB;0gYV3tYAv(3@gYKNM+hoZ`sO-wU%mL9>xt}&yad6eVamwxGGLk&Bg
zHw4|#w`(8J2mBbQ4G!Sck%+~f1kS)lwkxAdn6FTr)5r>udY}8&vMa7lK<aqHDR=&>
zU+xhPN%743L|9W2Z^M0NniAb44XP7)6@#Fvl0ylKV^9}cAr~Gb$`o6J$Crd7ylkd`
zLMo)S^7K^XZ#yP}a==-kL^z3X79dw}c#0Ci6!R>sI3JLs<iy3hnXm^@eew0z;IXOh
zkJPW-YWKI>ePef<f4s%!q=WC8pg3>7f~+G1XVni!zO=ny^NH}h=2T(Pqp$-R+MQV-
z!46PlzXqmAhJpkeib=D+YqwmjCSOE0uo0{V5%wM(;pMgf6awc%m33m$fAVH#7gPZ{
zIXB#@V}+^%uSmKKz;mZ<v9B$0-%Zs)-Nd=4UPmSSpWxzOb8T-Kqq`57;;X3%0C03#
zItLa|dg}DeK327j^QEVQr$%nJbhI42@BAg+c%}*&*zD=D|LH~}Ho&x`rzq5shF1fO
zwoLvh$;@Lk^+(RK%LCfCt?O3-(UOrR@nd_WV;fv)#gX2)b491kU1O9UyI&boD9YE7
zBvr&h^#<vbvJb7I^^b?Vw}h`5kmso9Q#zH&#ABUua73WgspIdNGS}Z8w=GG=P$d}v
zmEJAMKX3&FuMj`HJn0|<1sV-+?`vW;TlL9Q#9fj8Vtzy$8?)Pt>JXrXZw+8c&;hZ{
z31+T$=X1|$w?JWIcKEC9DUi9hF>9YYN*La#_i{9dyc#@#uAFuJdD`=uPGqHAF0(vm
z+mF;)yW*paL@dHP5lo%wm-H4r^-AH%lg#J1x|<2Hjo2h;eTsq7=DRL43$hsf?XHNz
z-XOzE`=Ey@yIOpQgpfwvroiL7&T761YBmYOTqk&&;JVH?>UD2fx4{|RKQCs&=~}O9
zUeO_xg~0fWTfT&&;8kka*jHhDo;{&>{-%>L6mkp8UG1vZ>K!r`kI~Le^hUi~hbA+k
zAtklO%N<|T^R9}2`${yhnp%|?<eQ?6Ns{VO-`Wd5xVlGXe^1K`70u->#vDxjNz#sA
zKvf_b=OZR@PgkBO^+ZQjL=A`xNxuGk^^l#P4ycb)wva)6yxCX})W?}2>t;~u<ioWN
zM|4Au%(k&rOcH<2kKKz+F<FuaBFV72RRBR8XD4M;0fk4(Vy#%oEVd(^qrHIA5V76H
z*e^e_f3-~U#;3x3Qo!Yy>BW@$;6Hr~d>>ytmI)ODBItCf1`57Ef)m-UUC!sYkEPw6
zVpsj*w1J$OV5M7^o|+gb^@lo+dzW&{J8cJz6_v<U0M+ryv@Eh(>@q#^wXS@2KkmCb
z&dd4kj%Nq}Ljh1+Ox#kzt)yr07PxbkVZz7^=QvnVe+DlEUS9XRJKl^3-EnTmSf(>8
z18FJmJcaC`XZ6h@JBzah+Or0&f<%#tr)aqAR@p=J?E8t?WBnY&bIynr?oMLXI6i0E
zDraUX(-WUQnIQEtQR>=Kb}xNJu3sF>x?LRfsz1kRD(8(=?$@#0Z?kFd=_Vh?ay~ER
zg5--F-wp{_11rh>%*{f5C*R{O{H=HS>p*dQUQPxjz=7neBs{w}hfn6enw4{EMz#<n
zvWLY^-w|jk<(XLLxrGQ`Bnp+^$BMOx#O(Pn7ZEa{0zz@ka}3CLjLK`G@U00FyXNKW
zsc`#Gd}ok+KM82o{78ZXk$`guDA@X`;J3sAT~HjK%=SeUMwS#lB^SP|gTxFYcLeZv
zS{EhU$cny^W78q98!6Z~UUWn$<3K&cT`7MZ5o(lFcoZbxdJd~3uZ53vqQE0W$Y@MK
zd`B@T*B`%Mtjrf0j3c9Ci;L<@K)JrxNm$>{w<-}F9G6S}F4xQRN|EV;xEDDsAo-$n
z%9F}|ZeJnaJ+v}<cv%pyxO+ve$6rY*KhaS>taQw2r2G)Cd^G9USUu!`(w{Qm6Ceqj
z{5O!W)IVpyKiu(^3>af*_9u7TM%jGbe<%!=*LPH0<%(bJ{-bpJhdBOc64tN{1;z0n
zd9bdXn}Op>v%rrVb4`b6l5?CkZJ&<&L9*u&dvn0W25_?l{&P3xe-+2=0~tT!VX&wn
za8CkQUhvnPn30gQ<KSPFah9IXkF@v?5-v6V7in?S;T2_kH}h{*2)wMn_aJ~H<o}yn
zw*S!}{~wzo|1$~45;b>?Yr1_W;b=p8(4!wDTvqSq)B=*Q?im1})>P}|Q~n^~h}|Qi
zbAKUWKfSiy-Y49$^(z}VIQqGro(naVVD<L3BTkM|Vb^!HcOrp#!~^qlu}=pc&qjxN
z3H1YnJ*^dY9$#g`B&37t>%lYg6%xkJ-l^wb3b=C7{8eT^8(i(hq>G`w1`~UKc&a18
zzGbiOEfYY*+;v|pvc_xeEBBUhwPUA0m$f~sg#rp3Wsl44ab2k@AoyPHcw3RH<$f$k
z=~ejl$M6vVGx1KO4J4D6{f4_PC9%^7`f8pTl&Jx$AMJ4b0u>#L?hJeSjVmT<{Y~}7
z{>^(TfHo}bgzCvjw&d~rM|&~O<SEXutEK$DdqeEt{SWs=JVA)VO|~XIFNowG+~EoU
z5<u*Ng0ph?UMWSO6=1@FgLi*EYQ2?2@VZhG>Lw3_g`oANo`kbet`<>3ZJe{-v;0h_
zh{~`{{vUf+`9xiRoRkbuC%D>$Nt!`7K(|cQXa{b@Jif7~H)ieb*6qg>*PeUmc|{P0
z0EAX08zEjueL20de3LP4KZ}>MC+q{Fh-q7%g?JXJVP~d5;2jA7dAGTqddQH7NkTxX
zK;Gpck*C<eatntG-}gBxDxwqwUcE<=5?SM8RiS4xCapbJx6$%E&96}MhK^wutVYZ(
z!&AzRCpX>o)julcCa3RGIEoV1ge?kPtHbQwJWhmR(Zbawpjy0vZ=X@6TO)zKydcc~
z^`aHazS|9;Kq!oSYQucDubaMFO<-?}RP8pj9}IAboq%-xjdh2yNK7)k0SakZa6^lf
ze*uL>1_W!kYw+y#_NrL{UMx&&Mfmn!@x2M|7Ghi<-BnVJAnP`&NyS*i02SLTMiU{T
zKs~@z#q7}N-3Wa@AW)9{4tjw7-S@s+CV6=jR#9vQ`rfU<B6;oKmR;xFv@34HyGTp^
zpzzK2g?4S2Un4hh^wQzg-RhL+PtR^zt19&b^lBCqJ&q}d+o9pHjv6ki7?FlpaPld_
z5x6%*gQ+S@1xRQUyPNEJ<1R>LYCS+$3&b)t)&Uhg^|dFOY+kjmhWVn69R0FYj$ZQd
zbTq0S-cA9s1Rf>~fO-AH?azuMU_-2ltc2cI;Sj};N;n-f-0XX2j0`Yuj01^)-nSXR
zmjMAv2q^Fx5an1>0iZNpQD{n&518xb5nL~k?9O<Eb;s6IolxqNMc(;Lh`3f4j1~*^
z$f`nnw4k17iZk^ko#hIyl}jJ!#|_z~?WHfM_AUdmNNKpp4>rzP6l)O&1_}P{2FSq*
zU8J@U?ClXL&2`^d1I$q|o+M8>)7qYAf&tzWJviuX!+4V{^V3}^j-2~imUyPiXmhUP
zelsoDe5mG0u-Ta8D+%CU?fP=!!NnsmCURX<TKyPjt4+uSKabV&Cjh2AEffu229T7@
zP!mi0g|PdcDS)VZ3e>ibOl9gEt0sa6<#?|detP?0cxn?|o={8WdM^kyKy8~Y<p_}@
z(-6|$810=t1i5BrEkM<jCgl;t$s3CK!@XIldfWT`bWA->k^JOJ$oR0+8Q+ztcB3Ng
zi+yfCz*6+T2E>eM0Yb<!4B5X2RC5K6q)Egh#tEGgt7oLUJLFo!F)=K(leUjNK+X?~
z^S07<BbOlZDN`|ZNIiX35yyWgPWP=)8^txvz|1bzP~K0aw)iPA;*kKF^5hlVZipS7
zz6okALP%nny4dQI?0!8dgW=wh!{^FuhmKK?1eV&V!oZ_!V5J$_7BG<UeAuA6Hw-+=
zCThk3qSf!l4UogGnpdhqR5qqa(ZLsQzm+}H4xb+OqngQM-{0qZuN-AFw`zAhbfYm+
zHw#H}a>3eC8)DnV;c1YTuhk6uDc|CQ3PmQzq&?e0HyZg<Q9v=^4O@|}L5Tv;R}j$n
zkY$>A1Jn*cd=P=dHijNvy>!cfSAlGiLLK9*KCQtxt)Q6YvU{M<Y_M5qTp>ff8>0(M
zQUu>F6BG>&`Z$8p^|s=Vm#<a4GT048i#N`o4m~pv`)%h1QK%4(s9=+HjCly#DUy*Y
zeVS_ha~>#Nm(iNp=?+*dT$*wu^O26l!|~gJ_`Q`i1Cd%EI$k$RXZresp)6E$)Mt_)
z*IrAdI#*#e;O*Xr8@R5vx0=ZZvMr%hB@*^=G@p3gYCs?<BBa}V-T2cjbhWK^cPjE7
zQl+UKrLW#B%n^(3JbM0&96FZbhnu`g@o~j@bldGIfg>b~c`2|Iw63Gqasf-$Db)x}
zd&Ap{RDKOgH?V*iOF4=IleN^X7MN1h=kxA3+E1?em$Tw_4g<(0%T$S32f2y9erBfT
zZoBgeNkg6@@TB??KYNR6{Q6FS`M?l*+N9WDGpTvPu}MOa{1n~-B+eIT1a3QL&8X3~
zCKS8axp`?`Ao0~qbr-PX?o9!dyhJFvO2iQLcibAgU~04wRPZw2Vk5MYT7kfFg&@b)
z!=6z0r~lws?`}!IqD$X7b_HWa`uO$l>z|2<I_|91Pm|QVQ-9-ScF+mUw^Mp5J+V>}
zTZh?3J@!A@UUWWer6#L@7fJVG`qU(cj|aLa=>{y*c}{yr9~hPm4fzug<bnNj5++26
z3O@Xa&YTd65upPptQIFaV34(P5(3=bxDf3yG&3=tbMeHlSv9*KB-~bCOnDhAhLpxM
zLffFZC$=@-MZL4DD}VXcO^k57wvXO^cJZ^DX!rK;xpburLf|m2vN7G%0TC7pQxbXq
zlw7+Za1gXj#5xRLHo>7M#dxRpnp_CJV_CJspm!1|;u+<^<pW~hgf1Vzy5jrc?v}lB
z$P0j#CH;X{I_hqX*O#=IOE2?@ub)d}kuzvb%pv?eY;^}_y*GG$^d3DgaSLNVcEx4w
z5i4ifT7gN$TTfiQ*l8`3thUnd#ry~Nm*eaMvAzl2XLXGcWa%`lUzTPkQ4;ZG{hRi&
zvak>5Z(rrq{d#k>@WnE~#oS8Q9f>dmFyeA?D?0S(X4y%_BL_o{f)Gn0q6rm8@$E<3
z9vr=-$W%u%VO-t8Nkge(so)={&+}q>48Ua*du$lZ@=3zcQ@j>Yip4COS=Fya5q5W3
z8hFkVW9044Y;CSY7y)54kJul(UJ5T|VwEx-k>WQ-INl6dQ=B?DlCtUKA)m@rY8Q;f
zfHC^<Q4}c$CLYy{MR})Tst}uJ)8Z5HLB)quKcwzWgoRn9bA8}Z+~3hPxnFf7Gc~oC
z>*ACCL`R;xEQ{jfc|trYgU%~V<P}@(Q<+V<I>Svj=2aB)zzn#Wp5fWW-JG7D2Fb{a
z%xGH5Xr^V<(E=yDGbiS`jd<SK_Dpb5oMDwIyFIgQiPwSTbtY!@7iT4iWgXMXYNuxn
z;Il`qvL&x&+0A72fMIZZ_M@?E+jd?sKI=lioI2k@lK|HMaGDhO`boLo$gC$I30viQ
zL2~wwWj(EfWHuu;sp9A7b9WBQX*P?U2T<ol$k%m{H#FY6F~0OC{{1EQv36t@AGwzT
z*NPQO7?$HP`O19o|0m>&cD_u2P-i?_R!KrGKw|HtoOKxdJRi2!7<!%oM}NxEeN&QW
z!^_g^5SpNH(R}3k5#+AeyovTaT1kG*Sl%a^!2T?98DFqGCM4D8Z%QgC=+8gjFPBNk
zx9dVC%)>x;+$5lYo>UlFpBiYL6|9Ggo<!P*6h?t0thaC1je@Nx9K{vB`i5M5KoL`^
z*f>1*iG?5uh2za5Lnu&d20V8-=crz>(7L2>Z_($(;`LLIoeci@Nu)(oeg|#k%$y%u
zLKDC=Cv&V^OB=^amD^)}OV2*lUfL8;cHsuTb{r>2D!V*hmPso%*DkvV-kS%M_jR~m
z#+7}tDsxFHzm-(paRYbh6X=eY?fNqVcYqA6`rp97(kh1kh6k-_iPf@^{aYH0quBhr
zs@DFL2FvR^{TYD43O$g4)vfJ823EBQSP`PFf>#*W_WSYlx|QQ;9V%^=vzM9Y@557?
z_P=AWuKS_?3<m#W8f+Kv&-c@gTS9(duvgelkc9nq#s<f))cE}shX1YOX_nsa-t-?N
zTw=`lx4mhw5%6y$oDSBmC1!$qQ~du!&1?Sy!(ottQGdFhrqN_C#9*{m7<l@Eyn*4)
z9}Ik(ep=bJrP?)*4ghub*n2mM{$OB}j>xeae_`O#yARt=dY`Z_p!!2IPSMX*&2~4R
zdT?f|e887}<FeH&4QnF>*^Lj|V$JR4czeSJ3bf2uE%~*b`S~hyd26WK%KbFRz~5f@
zH9Xzpe|l%{%c}cEoON*R>PlGS^E07O-5SFIChJa()EIWvMTO$<Mr-?B_dc$^>4g9c
z@$&6$Z+>Qq8>xF;ZeMsxRau{-oV0jvV60Ou3@UQ5N2sma6;T{Hw`Ggy!qhTkn7zvR
z+-hKETr7HDbZ!*jcj#)|{@{mI@u$MP(e2C2Kq*Nz9<C5M$-1#h*MIM=d+foD;=!>Z
z!h`U($Eir-v|0cbXodp8t^0hOABNol{{#R5a#*d`QX^Ag{6JnzT}3DY2&|}bW9}>P
zhUQWWIViTHLR47jfF3fy{}xLi;V1S9LXD6QjjXX#zIc9+xAHmI856!S-7Q!ocEWk}
zaqtScbv*1LZ8Jc1<y(PK?=j<&(HnZK@c5aZm}1I)LbOTUJ@pYgy0<taa+9})2a*$P
z$2J^svBRO`^}yR`JEC0*m`A1s2z$Y3w~l+0`*3nJq#>(rIbdjYhxfT5^Q%_pJWFM-
zkbTTMCFNAgb~p5l>c`!(&eOL!zIY?&Wc0MJYi)EW+M_1gWFTi%B?vIy#i8h*bo>p_
zZI5&OUZ1z*nXuhJs%hF*h}`++iWBx?d1b)Rs8l{20u@Ojj9I{Cnuk80pe8ycs`VXM
z@s>%ILMTjXwAoE=DK4a5Jv&5X(MkoWz;C7JtTlSO2p=&q%5)Pe_X)gtc{fZP_%+61
zND-(`Wm6hm@BHGir^z?9+>8g^y<5k7rROa6;f+iBYYA?yHTi((E`nj_TRz|52tDs9
zS_9oi%BHaONFoWuMHA~_i+guQUqL#PKQ4Qgcjhi+-ZS)(cZ2~aq~SC`eu=me+%kwn
zIa?1d7~EEr<fD-*!7VTi1KerK0QM*WbeUPnj|N@H?ZAk6T)x_Mb4&*lnsp7J_L<z|
zK$z<7Z}c@B!;lr3js_K&L5to-fORI;72IBQ{Rv>|c*5qHdT}-kHw7TtWE7>FP!)kf
zytBlj5Vl(~aDbl)IQY)IbVDclOcfd>GkKE?hPFxHLtB=PTS%(Ly`EhMz|a<Yjd$hK
zYc@UzJ*leIehMSakjM+NBi*-Q&4GWtXeeN-gJA`@xUC^LYSfY(00Il6Yj}*hgA9{Y
zo7Tc|?Hrfic`M(UC2EpWd{iapHFwtOYOXdBK$3|9KY)pswH5<H{mtfBuL9d4%r7r>
zy8IKMMn5qo^cOFH%TtqREjt8I?v4FY&=VDEiu!b6|9T*-G6sC%ak1ZA&e|CRNW-&q
z4U4;+ZA|Rk4!Vi^%-cDY#HJ!jm<XgM5{Kr%<jDPy7Ofgm(5<wSmn)(6u6(pA;E=k6
z#49&TZLLNlFig>^q$v}Ms7?}t88Mdx#K};Gk`Yt%mNbpPIypkOakDKVTTtsZL3f(R
zmHt+4anh%5fduD5U8fZg>yDGM1Fc-;8fr84H*`Zh0kG$5@w7uug=G!UrS<W~@@=Wr
zT-Ut%>IAWPrUae@tR-=EQI$-GO_TX<v>Hc68@>`Sx$!4GN0W6`;=pA9kQ#%X`an6C
zt1fVA2SjQFdvV}hcX2(NS)wUyK%#xjCitnI9+hhyTa0xkf)JLQr#!>QXW`Ne5me+P
zY^o1~ZzjypEEYVe&cpDSL!xc?SegxV2k!ICNxI654Zi?>22eFFTFajg@$e!@I01;y
z)CU(2dbr6Jj7q(?K?1QA1grMC{brv9yZCn65s9+J7ksi!>o}6VCvvy%MKP^uq;;#u
zQqvvbvZ!_fzCtR-I96GrjN1*-XLWC21+K3&Ib9c{Y6oec^4ymFLLuH16zu2s7i=!v
zCrK0Rbkp2}o@9l=Bi>4k|9YQyCT(Bi@cS(RC*$uQk@xal30mpn-KlO!Vq!tvR;3JM
zcCzIO6+~4Az)0g7?pFz?zsaEEQYd$)q;HzlHZ{)P<R%cIlu<Fm=&B6yI?}P%J70T;
zeBnR`-Q^Meuibq$Q-w1d0<^6murT(ct98?;17DtQqb)p|EnV7rryy*f_<`Wel2HQd
z9+4Q<JUsH4vK@+glX(3U47j|Mk3zT;^QRP?XY3;gn##o-BKU?ZM5SYL`VbQWRQYo@
z@9>Ut{2(&rIo@9d?L_%Q_>bUw-k$f^D_ZMnzYbNTxttpprtex8IAt|a(-1vJVdz6r
z<!D{)M~DkN@$6|@L$UrXSA%B*yD)ZOj%r6|OK!64SmDp3^B{l5>ZzTGzno%4m-$*@
zGnBNWzwt#~hS#0Ssro3DKC2;gkO)c{>@GGMa6XtLDUinlGS>;t>XI0Bip-Kupf}Gd
z4tp12D%G=zl1eVriTG@8Cs9?wc~JTg#Lr1|AldHN@@A$%ekg7;8ED&F8DV?FahQ{1
zS>bz`<S5=6d$(i3?(48Ocxf(!7{X`!n*gt<ewXWJaN?8xte(R)n8CzcQ+#Dho^ki4
zGy9#<1DJFZ4smU-+3_>wV0Ow_*p##EkAhc!6;Pg%qIT?$u`Jo2(OMECC#%lWZ)HxL
zjK59FAKrkvpN%Gqc0n}P?Jjxz8#eLgmlvN*60T^cY)ak}Ph^sbiE7e?cJI1;7{-o0
zA@81S-ZpasYYba;%}lT>SxK|EST7*xTl{v&$zvqrUft@QSU+y)R$U(_y-lyK`T$#>
zCu~3HS}y&*Plfv=&+lD<&Ksq(r|Rcgpnw`ln5|eRn!{Bddc07zG+K6qRK3J}x_LRV
z-sRiH{M@w;hG%plX3_5+&O-rCZ2H=M2tusi=-2ZL8COML-}TG*lKpOf{zXH4(clAN
zE_}n`6sqdSv7ggc4^R+_Oo+@~*l){b8GDj1=`MeTKzqf?Z-1Mn{`|y0-7O)B!c}fP
zYP_>fOja@vC?HLKL$n}XiZkJf_%|;5?rR?%4u^f%%uEk~e~I`VFQp?@{hE&`wzFt)
zOrC<gqcKX;icPXYsV1_?#cX{pK|OH~nvB!Nrx;kJn9)-#B5|wmM>oi_jcIJlr4&$M
zCKspt)-C1SFJ(KHqDkg>jB&hX6CJIrT(}&EN{-eNhhCf-xJ2`rwcA+CacfTvwMq+1
zBn8u4x6xBKMY6-k(snPU(WVcMq^G%z$q^}V;;`JV{<PS!bkKuN(M+G;%-L55SwD<y
z<8yQ7VQbE&GnbdR{IT>1D~YHjvE9scDnndAfGSUN1xvh&y41YlG%&nuBZwVqPpfRt
zXvA|)(7Ef0s9pSwO=B4s5;OIeGMxM6A}7Ui=8^nZiF30&5PJI(k6z?*EQgVNrkE3W
zhYO&hshJ^(SzsERU6ch@Z3+14wz8-@w5%~O4Yt}eF^kL|mUD@fn5xTowv;npY&S6`
z*2WYg@?nvD?rVDH0+<Gq$rH1X-F$9aGtvP-U7O8WZs$vmA52q7s>Vati)h((e5oV>
zz8*hOm-e-I#e-HRagpTIW;|{hDI}K&`8ZchfRGv|)K|*W>kv>P1tv*(8d9!#I#GF6
z<9SjgS-<<j-y61iKth!LUl1bh-%-X*l*H?-5Tg2@FJ-@{q$`AIE&C5CsWsRI{~t_A
z{{a$zPf1Px<_rHI#P9W5#P9W5`VQ_U?!I8XmaShPn38Hat)!$Yc<A-tpOXHyTkBtC
zr6K=zz1Dx65Lv0e*T(a*lK<$8|Npa6(D?nY{rE>hBvm6HUP%8=h;b?s3i75u2r;5@
z6HnE(CG3U)0C+3$2C8rVL5Rg$%w`|`g%F)yzAn3S()%a3VtryNI8eMXIiUaisRt<;
zjY*G+Js&7SfX>+giwmb8wkcJnUe?3bxCu%XlB;g65aJP|RcanT2=Pm_^7#eJ2LE$g
z5BnG>b}QR-?tG%Eu)8Nv48Y^nCYY;kAK!I2Anl-5>!#$_O>=&Li0#AN`|8PWo13S9
z7NtmNe9Jq#y^gQFr6y}m1q4G2_m8Et#_wPVnGAj1+hPRFERT!LCA`Xs0Q}aRSuhVC
zuiAMs%sZp)w=YZXpLK3sy}G>ItET85KX7lfe6P5j<zu!4G4wGVyV9E-)Eq7gBH=Xz
z0D3==L#j1x>RkDbh`i{!3SR`c<X7c(B%y=>%`y{mP)w^|>a;@pP)m6Kfy08E8*e*Z
zpA?8&kKH#>fl|{`71!oVsp-XaDf5(g+;FE6(Wbm;%>W3XZT`fMDHq-y=B9fRD7=vq
z+oz}Ny%tSlY&yhnn4umvB=XsCRF$I!Ldu>?;HY2ZRKlgY#R)F@)(Toc^(1k%;_ei8
zPN7LlxcQ|S`yq=5U#ABx0`1L0!7d6Dk6pn>mP<z6PH|mpJsR2*2Xu{&x462KN?Le&
zMg=W5$VM%k3_ZX$BttKzkkm-Np>H5;?wKH=QF;)O<AuWkCePbvexW~)I}mE_Zh2@m
zi`wP_?jVal*5}uO9pNhsND!<rp#2_@0lO-y)p$P`kSe*c_Xh(q@$`vNs+(A`Y+!Hw
z?zdvVFEI|;ia<pHn^Nccw8n$cWZzqC${UT2(OqFc66qnTO>Zp$?OIa|h;AW*jD^LI
zYyIq-Jrdlzw`vKfY(4FSFOKJp#~+#97Nxzi>j*27deo6qbLgI-w=DEK{q@U&^hYAf
zjk&MT-!h^92|y-*^Rub|R|X(2L;x;d<3Q6F9v^F}UNhhA@IW+TruxA4ojsZ)4HMyS
z8p6bYg9$ke2W7H}%+<1I`Sz5DxNA`OsZQ-|15<D_7AU<dDT38<UoiFPKr@d<t{A>i
zs)O_XiKdMc?b7oBE3IjLzN2$GW!_gZ^tEl9ACR>vz-p8XKbEai<7cep>3md*D$k5F
zxiJ3q;~CsUwojS=m^10Hs~2Gnz!b0nAO!`-0P~Q^{Z#HcfMBX%3ngOftXT9|F&7(-
z3z%SXXNhK2BQQsTv!)fE;dmD#<LFpTge_@m)&qbsAzl(lYzV)yOX2KtB#ilD-|Hi%
zW_yCy*`4#}#K_lx5vC&>j4)ZGhg!U${7u3csq905$o?J>%iihauH)aT0sQh&al_p0
zqp?}rnaMLaNG+4;)m4Uo)=*ioVB54cHDNv#E{eizQ}zQ0DA3hat;eW;vWH#hl5np9
zP26UZk>Ljf7Bq1cE~Y`AP#gg8uN6}f?0At$<kCbEr$_ocEEam*CbPg8?f6i?S%yw2
z2k^$b-mjQ<%A*)d=!Dqc_UrQSw_>8U8`gRj*EnNmYH>vV35zzA2m*06Nlfqps5JgM
ztUY9BBQPms^zSd-OE3d~6V)5JVTq110LT!^&ETc%>yYiA{fOLH2y=~Xm^3i!q_+ye
zGO+9M{a{cT(MrrLEuKEGD_PScz9S>Jsj8^WR~D@*Vj|3Tk(}I7sK!`lL3DS~_ST<K
z4IhB36l(V7uQ$mp9Ye>v&zALn+OetIl?!>~N%+MPL_N{nT4l*?bKsW(yv1G#D;LYX
z)~=1uHm>fG)XEsOXb4Hm&$8P$r)Qu8A*6GwpCc~u`KjufEJgU!ro>f!j@y0Ye5?rC
z8-{0{&p+@fW#KYNWB}~==eZe9qO^G$ZB1!T-Gx06?ODza%S;ske=_QD$ixGi%8kcA
zziZtAYw+VVG+ppy2xQEjBUF<xb;}nvHlP8#-HucKhjNA;05Z(6=c1Ge@X>)Fgy3gm
z#r+Ex{jBFmj_nu-HVUR-?$ZnNWqZWP-anDP&mJPG$$(PtYm<3U*UJYCgcVGP@u$XZ
zep8$?yb+^n%Br0o-B;hcFF3zzm&&F!G_F#yT%0m^mlti|U;h#SQiEbUXX~>rP&5@a
zPhf6VktB%#ApNkvSLQZM5@^oStk-w2BesYOo#3ZqI+{GUqJiOqn~TzFN??uF!kJ@j
zxS;B3SC>WK_r7OWQw~=pFZ=RzD+uUguicM)a)0)1bm8hoA88+iF%tr}LzyxkJ=Vc6
z)xUPhtVIHqcuA(ig_31VO5$djuk%({V`?$-A0*eUH7i9{?sk7j>5HV#vlWs<6lzp`
zEV@&s(wo7RVJk7?MFw-O2Y<=phP@j*NiK(7wB!A0ww|N$IbuXEDgcAf&T<Yc#4&+Q
z{cKd0M<<kCi96A34+*@Ip?y+MXJb=K^V6B1HNwHGwudS<5DII(>Le6m8VhEMUHhJV
z7)qa}w&??ULpZk5^Efdr(g%uj7JB%WH$-WYDn{X?=bzeAV5-SrstFq!^;jbATFs|r
zJ#&4j&$NfUWX(^;bYIr=aZ>o!FgjVl!7ds@&iE{Fz%}8{<L4L71Y_qy4m}FmY_UHq
zt#nRY9YZ{_Jo{mX*hu=-m_E#;j%*wxMi%2zEt!`ubZmk=O~+lU-2S5NYDBNfj+`Fc
zPmxis-b8e4iKBcCW^T!O>K$iq%u~{frR#0K{uKI9P)9=_vS)PGlpI9^d$}|V2H2~#
z!Ex5%s>J>0UIzqxC_L!)p$87%-U~B-djlnYDJ+lEZ`*T10>E^ueZZvS@S={i2Ym)#
z7vEgm(&=0&y7a_yz3LfQBJ+rN^4QgwrO`bOiedb2iB4wvqmIMMc_(d0j5d7v$_#~-
z-##2`do)_OKJ}<Ao+FiT25;uK9hvG%b;DA>ev6#?FqGRFlDK~H{<kO5miW$hQXAnj
ziaIb94OkYtU{tO*dHn0_di4AAk_Fu!)4$E<E|W$#EPsBu{LN$P%kwv5N4oo$mzNZo
zP%Gw(wj=%f52q{~U36hejxnW|;>4`{9#L42CXb+zM`emx%I&Q6HAk<UT#ci%z8zq_
zxz5r72@x5;`NKY9zuZ1=ahe@lyO_N~h*pQy>4$gSVXu)zMPpJ-5>xE0IF2-3>$-5;
zS%^lg#7?jxY2JAa5$Z4xvn8gy-Mm7G=6Du?#!|+JwPDgi+mW_JXiThxFjgXmnySnI
z`7tfFjuq6NvegReK!vw8i#bqIZO<Zi)j_PAk^Ff`44xC0$mMd6?zN)YBDrnL4EVYb
zcpD$K#u%DQ=aP!KrR}_jZQKKQx$9#k94F;=Q`2l0kTFc2Vn45OEaTvF-nn6}10iGG
z2r@J=lQNsu1g50@+nULlZIg#>r;z*SVSR~N`E{9BKwo%_Wzc@~>};wHEB(Zn+-?9x
zt;`w%Q&KD4tK@8DN@f&>*V-=k<wW-5;+&W52W~I160BGtJPI&kPTt~A>*O*ixmtXf
zGX~|y&3T3ALrd^KBXif-!3CJK{Q&%zI<crk2|mDUsAIwc1PTFogdW@0jz<MkMeo$K
zM1iKY&_N(jDCUt$z)M*<9cwnZLrBpRt}0;?mGUg~_@=lH9FUY}+mUTuk6QyC$ll0Q
z`g4>x0fOQe$nUF7VrX%sI8qGkqy;1;CB-B_N>o~zZ2DjIFcW`AL=DqF?=@jHE#<Ur
z{{v-8{}3Op__Ke=v&yEwr-tg*!5V8r!Laa0htl66(BnS^f&Z8h{?o<izq>;Tv|>31
zeqe{v_bf2Dh_dxxW`X}FI+XqgW`6%Q9{iWT8wAClf3H*$do{P%+gy1K1jWxbarQq}
zn;wxRMo+A)HsLzp;OBILQg+admYN@+_+k;2R%W&L<v)R<QwnO!K&##zq_-Bo7_4GO
zk&)+iI?;6>IA>k9@stG^Zn|5y-DwEk6<6p|s^JcPi+1TEv?soO`S{cUnb8%U7OYg7
z_p0%dlgQM+r|&Oc;uv$xqr+fJdI=gJivspSJd2DXN~iVB`T_*=15Qd@06?TK4IKA8
z1YVW4gP=H6rW@MpskG)eI;n^<(0_h(p<&Y<^0w_jwUxVZBN_-x&W6SWo=^bVFK%0Q
zlsa&p_&`UI)G*X}<&dE5(9NGVT<zR5>6I#TyLD&O;<ETq*Q3p{pymg7SD5=ab<Tsm
zBxC@?N>n<msGf=ySl-#0MG?XQPs()vq1aRmlt)hMNk43OVOBHb>Qo!u@0w>9Y9sIq
zjn9ngSR?=;WSXqQWljhdR}&H`NOf~_bl+)m`hx%qObRqT;mEjf_Y8Ooa@*m{<X?)z
zKH#*Dd=3ati~H8G;H(mfyxS+U8#~jd1g=zJa<_piHYn`wmI|XX9I{T$b9x%3+qP7d
zNj|&O9p<2D!*M6q7JmrK*QtDmEZEdJ!{ug5noMgRt-}d5kCMB6HIJ$;n}oV$k)a|?
z26?fD)~IY^a9ZQ+%a<N$$qX!5+EG@d9&Yg}Ix_-Vw8Os$xaOw}w1WVMn`ih!VI60?
z&SI-8pQ|MA^mBrAG8Vy(ENU+lkYP-_L;T70D432sKXu0kua^>vK<x9It9${f0;-0y
zNh06K^%D~7-yPO}x{1fU4gkrNU4*{U877gajfDcLa?Nm>pZYE=@)R^~PW%AtU6*(U
zGj<Mh^<u)=n`);n8j9amh)LKzqHnRvzsM{#1{yO4e(vA(2w=)UwJ{>;opTH-5M91T
z+)zbO0d=^TFcq(Okx~ss;Y*=R`KESz1Q6c3N-t3|V3|nOl|Dv=>UCDccf$&r{4+@u
zS6e7>gf7X1Wq6M>H9dg&>n>VZ7+Mh#)BMDRfMM*^bOQL-U7DxkUTGY?`<1Iju!?;^
zBp6oAiAyIF*cv=iT&RaGOp1z4hS<Lw8MHj=H_BVJ*8k1}DD|33BtU_E0Osb!q&Cas
zUy*p;NxbeX+dAy6R2s9%*<m4c%n73SgdOalU_+;prOlxtJt-gXoak9|-{S%Q(-6^Y
z^8U*%@X*yMbz@qb4_rrpiqZ&y18j`&Ug}J!ft>3vv_2bv(zOG?be-A%9xJ6R16+HU
zNho}NS$Sf9ok?KEI~w&$4I@*0kErnDGG{3bPOBiuQK+9Ln+19lk>XDP4y8U1=pC8f
zx=}PNuU<h2#xW(9U`&He^FX&X2`#yk2Crt6ZWYbQkOm$4LgUZg3m$Y!=TFkasBr#l
z7Lugu3NNEz35kQU+yqA$li5wZ)w9XyD>E89#Zn1e6b|2%$yUAN5W+YmZa24;d_|lo
zg_{A}p*H4BiZZhESGLRm*dT>$I&V<;=ESfLKoCm<xvm1KRiVzWP6GxKUtaPsG9=15
z*-EG3qFvQA;;y^Q82hO!+rbnnm|IvqVLG3fSo)G+{j6+ipB!sQwW0`dnV)jV+ELrc
z^|ta36RWaTH{JEt%L6_aL0}|vC4K9)Htlv)+(dCzSZzkyHmND0bC&(22j-&>os^LN
zl!FG#3=zg8a6%-N=8}O9-(;_o7Rhu?!+1tD<dn)^+JRUPI@OaznIvx!#u00~eX23V
zNZu7j#c->X%`G%O0fUR9CKU+H<8K>J`sMDweR3u*&<h5Td9)rlGm{|iJ*~fmw+;oC
zz)3~b88tEPqkQTRe#jL3Aij_G$tY8b1%*@YO1Sm+$VyXCMBe++odbSIxObrzviVLy
zel?O97hGp=!bY?^)*p=HV3_;uuMjjFHcFj7*U)h7l*y`7TjaH6BLIMahHsgHVN?SJ
z3Tu{QLm9}OV|+IjSVh*QSWaLZaE36`oWgwRli?17-js9?vsH(W@vI@ue%%wsweq`|
zBs*b8pN=L+>75R35H&8@_pBV(Gq-h-!jZ*6>XSY-Mm}FNp<1Y*e{KBarZ29JmZ|_?
zK}&fcIV?6l`oZK(J|+UqY18?nDPL~QLVHtE-8l>Pm)mc}D8;j(S$6U#2@a6su;8n=
zs!=*Gv^;C0#xi0oP#F|>Z%>&G!K@3DXf?iZqdgNsu0#>ZMz4_-97k1q6ntz!>+U7(
zqW+>zZ*{q-2+lUIs=}*P$$4Tq<}BOa#HG*7dKu19j1tEyeWY`oP))<B2HsQ4HjGDG
zYC<6_C@}1UF~0%hToTNVI)>g))l)aPfGoK(CzJIXSF5yQG}hURlt|rx%pc?uRox-S
zJa_IZyDZdo`E+Nv#i&5##O+$rb*V@)g*lDcAz6Q~OYYNYhvs=l&9#n-x5JV88K30W
zFL!J_Z%3lxjFIsf9N9GQ`!rPnxA4}ln1M|Rx2@E$8&W<`yenChUK6lxp!uTf87~}I
z2#?v?D1tYqanBrGtGM&hm&Y1*j^fRpZ=y2~KCJ!q!lus0)pSSw$DLd#5K9m<O=N)<
zvw`T4G3pAS`~<VXhxkkIn~b;44{MKY?R<Y2LxFvL+Bw@JpH;!u%Ob|TSiazNO-*`^
zd+F<1PCv6ZqDdudbH`neaZjm70IXDHheUh79RtI_!k3cQd2v6D6s^XW<td-Ce&8v2
z@K!?CEOnOE0lxTQuo~X{f;9Pfaf~<p?yCiYe1LXo;=z&hvzLB*9h-Z}Yhd@Yx-Xp9
ziA9&5e7yBB<Br;Mce^!D9z6Njt@3UD-Pbkek8~|<Lmrura=ARCyCKO$?|4-9fv+0~
zXFd!Z`u4WMW#WqIt!snp)fX!_TzR?KDF5b$+waPrCqE3>@MYr6llL`yzP=FO^X18x
z<BRQA;d5_RfB9KudFhbMxA{YwU&ghTKMhA*T->K|=$6a!=dq7pX7_X^zLfj<^SI2_
zw58{34)?uT_vYz_tDpDKj|?5vc>gN*>erv{eS3TE@VBMgS2JI3JG}G?REp?(AAU?I
zetvjxb26luiN@o<emruyjfugtPFpfRolmwMNydVpXmtSB@2b!)hi_+Tl37xT%t=cy
zN@Qv$vXI5>)pbV=knB}UY%}~(<2pGaJ;kQ@$ZN$Pmws;G$27xdf8HDZKFO<KVgnAj
zs8~|ftyd;_!F^V9FMn{7*CCMM#)xnajRcod!Bt*x2nEb#!V*{Zcw?9;d((IavvU9L
z-TiHe_m7W)h(jxT!~A2Br3L@IH>|;9Qtom9d&iWKAl%xSo_GMKtnBD5j*L_%y}qwg
z8mZi;W!Z7p8^@Xr^rL$}N;xZ8YxQay+*@m_^ifkuWeiFTg;n-nX8@q(l?!p90un?V
zx--nSw3233Ra0#y_|t&y{GXl|WBB_7F?f9VV}F=z?*?88f-|%$M}0e@e*{v0njQXo
ze)RWSyT3f?k4OITys^h35B~Leqhi75WkO)vyJ%T<$B>I~906x{SB%C$Ye99+7C@Bw
zqa2?jPLz48zLDdu>S>qN=eC%W%?=0SktE1k8b%%sN1)`L*#Jbs6ORkqXGuc9TzqYX
zR#hz8iP{>QAI~eZ^7Z`!qUXf#==o>v1c~!sEd>7=G5;`B6-@raW59Bz&fxSfSV#0-
zJ^kmQ-~Zy(<v*e1f4Y3gEWCQ{u3Bo$NtgI~u#j~_;whhljsF*v4E>M2sQlv_!vDuV
z0nzhPR-F8)imnu-oPO5(scYRoGRm|06;wQ!QMSi{M?Y33pQmUmmz*nu!8aCXWRQPY
ztba$(!=nvOt#u<+QbLPKQEUB1X@`r*Fel?_1DXRAz(Zg7-vci>*O~1*tL>aiFzz<?
zzP@6yKJAW?YXw(;R?yRZ@9fCc^ZBa}Px$pzx%i&USlbR_C6uow$7oGls3KPCyO^2x
zubSZR6$2=Im!=nY>Yk21yLs{as|U@yJ|m+2C?U0JYwx)|a+36K&NA#BfD#-Zq-}Nr
zhOsxX;X`sI03D&G8FB8X1@5;*#)g+~Ca>*T4pO^x`P19k@H^{ve)*vJ_)=2(r{MDt
zCKzEPhR;&&8xQ~{xJY}?m87;0u{uG`{ijb;F4DleNpZq-Nr9c1{Ej+-%8PxoQ|SkX
zE^KAEJ+|o4a$3;2m%J?%N&q&^J@B?WLkG(mO0<`TSvIQ^+#(DPrwOEiy2=oDSbuD_
zYx3Yode9yw`B}c-1Zn!<>$Sb926_!+h)n+i2p|r#>E33TGv=~GX>Aksh8C!nx@lMU
zbf2(8s<)!GOCmpP=WC?mkOJo_ct7XxUAqvCxU6bfjktNAQT4bPyGq)Td5B0dd46HW
znLiz;SBtmP*K<z{nwJGA<)0N){QH*mPo-}jEv(td8yu}EVtDz%A!k=gaY!U5C?G+`
zN<f@u`;kx$Sw3g`z!N2R9AK-Msc#Qd$cq>IrJ?y`loC?fsg`rSwkoP34FG~-U#K=5
zsRq=QUkf0>ymYgJvt!d|S+U&i=9h?=@PsZzGNbvW<cZ_0O`-*x&kgW%I~wD5ormt<
zwULK^79JXsWiKnPiMyMDgSwBn*=fe|89D%7){X24H22=z@3omP3!%mji>n4<Z|Z0m
z@+0VV7@@F31pv}7f-fe-1*rKh7!b#3?GoE-R?-DL3E^}B8Nd3#fL#p7dgZb{S(k1W
zz-B>Xp0T<hO<R{ML<nWkSr=)1L#t6QFheL(#qXJ0dP?2*^}%(I)XT5>8QyoPD6yES
zvF%&%e$i}S46{Q2rc%P>QMh;fum%tr>a7bj>-~DC%uQJt2zM_}B<!vBce%)-tM;n{
zvrKT|x2MAAq4Mc3Z=AP0ePsdIk|mj9Cyr!b-*REzi9rcw(w{!fp0d>R$=}Pc_R-S)
z1>xjCz+{rb;+sX#Pwp*q7?e#n^urxA)X{Dqfb2yoFj`aKmFvZ#m>4ryW`0lC!CjF>
zZujq9*r%i?)AN)IMDk_RM??ozmA1-QL19Ud=~N~S0LPT=3nTTD6)8jNWPYdmXYcqq
zJ=u`uCyGA_lBVQv<50jE%#CBGJc5`Cat@mbF5o#bq8<w9u&5@h2rgnoxoN95Je?4#
zoy;v=%8I~Bi*={4fRIY{Ru)_p93UCscCL$us3pp1#UU#{U`|3(^?=pl$e-R$3&qtx
z&kLTzLSr~fIL*E{TwGMD>^dPFK15bHMeBCS5}kX=jXw%hblX*Hv1yMY)+3^r$klc?
z19w+trPERB*m;3c^V#g^L)$OTBwm&PP1c?CYs!+8lx#^af5}5zDV9P&a&W42%uvdC
zHMO}7o)x;6QLROEy_M~X)ywZG=)cTy9g;!<G)lkj_BhS~Y#mjbz?N?wUZ%qDqxJ)4
zNDQ7&pyNZencgCoP22`Xx1iVr&pZVfGj|Akw9JQ*kI*#&Db-2RBaQ?ijCyvi%Sq;`
z;YqjfeO@1G<icLfWGhk^3QTOL13#f2WKjfAfJRivZB|P#gfL_EX1r+aRd((C(<%9j
z24dl^1jz7E+Wy$$7j9H((-!m0UqcSwyt&;OS~BwNm=nKGA}Z)UB}M8kwQP^w3%BP3
zqwhP+^xDo=dqiEtYfB?dK8yt9hIXO)lc{h5-d+>Kt=LR{UW@nyKw5@To{=n|oAuHz
zU^FF{->khmIr1W{6t->>5*!+=B6*N0Za!yFuBpTX5{6SGm-FxKh7EVAFIJ>LL>8Ex
z!K1D-ZV#rt>T5{duQ1yu5Jp_6O*Q%2S+0MYl~f^4&5Di7p~9c3Hb*3BB49|u8f)I7
zmIOxMscHhdH^9GG!(+3Cq(!rpA5M!o3o-g+bw0Z;WR23&X^kDt`mo}JGJpBiuH0RZ
z#O@3<-B9z;-u^lDxlZKql<@uyGHm#l5hU?+;!ZmYNMA#9+ZC4Ekc4SBc&HhtbwreM
z$_mO|`?Y0vQnB$7ty)GlWvq+3PA2~0$p`3<$ZIiBs=V}KhHN6?8p_%@<Id<){Vhsb
z2aBovHp4KaTtJxfud;eC;m_!Buv=XORjd_3pzqEt4>ptGL5~hSv)MH(9r#Pj@etFQ
zqD{BRw^p62*bd=ojZxta{oSJ#<!I~M*1h|4S`+6mthHMv%nxt+m6I9Dc7I!gIz{ga
zM$ZeNi4(T#D&Ey^&MxwBryp|)*|#-_@bZ#v1%QZUHg4OS;`ZkAgSBz{wq^_S%<x~v
z`n_PyMMHBtiZ+hj%r^HDdd5U-`7$xqbSn6&;p;N*HRI#bZSB{GB8<L_A8w(w8D{+U
zdVAiN$MZRD-h-#3g6a=FzO%dS?6aXaN4}^`6kN8v^#1i5wo1?=psnqq_>*5#)_k41
z=><y1tMkwmRGrUHEPE_(#ksp*j>n}_B?gDN&J_?e{>jbumNmB)3spWoo!x2$&mZRM
z)=k2VtgguuD&mX2e0|R6Bx%Bru$`^!bo3dJ+osa*YS%oDvsYZgD*LcX-+g^SzkM;k
zsx$WgVedV|nrz#2?K>f)K!5}S(ha@$B1JIt-cbQT0Z|bFK?Rj&DAGZS6se&|2kFuY
zMWh=Lm2N<qG{HtwS$Ur4Z8NiG*1T)JS!>>J4L|tBy^(E8*f_51+|T_G&gv38|E^{7
zB{xS^F$dTjM>YAx^m}8gn)cVAZ@ni>zr?)e-@N&%b^gBdcb^l1t1>mX!Kn_)(X&I!
z`<2*>>!#r>6*$DTd)?!Rp#8y<9iL>_?hlOZgmqcXe<r+AT@mxVn@(2yT5{rOt=(jQ
zqLq82{L<0tB{P4*%lY-nXYJdzK}W5tL3_jp_dZ>_bx7vuBnL9Ue=qRh{w?xDK_@`3
z{zH-fZ^bMeif8`U$l>1%mMAM|l)O(du88XxQ*<kTcg+7cCq{p3R{57}WE7{$zuYAI
zTTROU$##v9<dokFHvYchP<vNPS8qFMxQH}TKK80+jMOmxy0hmcv2U<@VC2Qn(Et55
z&Hux({Xg>SD3M?7_r*006c#CJ-~aoxNzEi*uK2fUlgvB-P;MTT*tDW4SmN)IKWP?}
z_or#oUy45m>Q+b1^FwI3MC*gcpj=6!4%5MU+96qxpKyR2fi*R&bDJAXVAM%rKIK~>
z+(%@qcBM?4%D>0FqC|d*#`L+TF+uxFv`X~j(s6Vk{q-%1pfb4UA!2`FaMCLGWFot2
zp*5`1=Ft^O(ytD$Tzy4&*V16rQcsEeR~Fx>K7RJT5PvEvWDS;BECOiT>#+Jj0MQ(j
zL@II@jyLY*u!Q>C#$AnvO^4-}wyX4wmDb&OKkA@xBfsj>-f=Jn<4gr$fgR#HA`fSJ
z8VCbO*aNK({aaG@IiF=Yl@x#kD$ZLruv92JYYAD$@y;qa6gA#3eb=As+cZNkoZ5na
z7qkQM-@e~Hz{I(WdJ=?Oh*;E2u?`=<!aPN>3(}U!<7pM*mvq@~Rx|5{;h-W*#!Nvc
zxUJ6hpX1iH0Z5=ge0>@UyQ&uTBKirE5iXeHdMlDYr$os-2y(@_pEs#tpI482goiIq
zU_gV+aSgNI$BK1W>SOhcoake{f!RlMdICEk9G+hz$8y}@Dy};I-=8G0vwA@Q+N7f8
z7YSLuhmMIAT+I{Q1Xs8P3UaUeB^Y?@XpI2GkBJdN5J+(TNw}9b4*hUMv`B~|TFDYh
zr}Rml<q{rG7m!SaeBhKHc1>arcWVTlpzIt56RubfCW77UC&HnCiz<<hWx!QLk8N!r
z<SA>`6*QE!DKYq|l#(H1!-iXCaS`J^(H-K`;Igz5!z~$WZLU~sf}l}FYnUK7juade
z17NlJ69Ev88540o3#SRe!ZomW5+a4-@YTSR3%1S?2Cr^WcBo#133v`!K{Avch_yh&
zI3L#(K&kZ4TR^EMrgV|O9gDGCdsdY`*3Y9ndQh6I23;u3B{~?)>W<arP~gAE*!&Z0
zPIbWrV!ShZXV1m!B3$Tcbt!|wv12#xEas{WGgWihdq&7o#K29e1=vYYI0^#;Vv%3r
zz<Eidy1c-vQ2h8&i<%zW<!qiU&g0QBD4=LfabQT;^MBKs$d5sj7EI{?`Y+(>;DYGX
zuYNN?NqZ{Wt#_3_KF?dQTF-NBwl8U&!IBX?X1<gtKgFcE!Ei`d1Ndj42-+V2ZOv}5
z7}JE7CPaZ8>XMx<ue<GF<ImV&X=U_*y?7`RaCA)c@50_?lX0Mz?GEu6SO~tQ577EW
z5FcZr@3HO}bBGe#=>2v)$u$X=3QuuFT7v+7%5k}Zg0R`}oEPEG3Ir%g2i}VSgdvAH
z^>`+_B?FHmj?2d?d9cS#T~}Wi&FSx-f*p@g0xB2<W26W#SqFJPEW)AgsJ7@>9(?<a
z8R*JWpn(&AujaxKyV6>hq9{XHC7Q=dAC5MG2lMIln?=f6K;q#%E(0Gwd<RI75Y}su
zP#l9lWE_v?UrbDJ??rvVGb-@o`J~Jj84KQOU)QkkVPysAnn({NS;^F_8W*0f3#ghp
z^MlxgL&dL6J&ATCI9#_l-#JLoRczT!gM?nTSW+r`_$`hCV|L>-m!f#Eb?V<`Kq!jo
z|9c*TaWd6=+&v=j^A4CnI58BgR7*7Q9*@es(*?*1M1Tmg{2WnTI%Uw}7%wuw-~7~W
ziF_Oqv}-Eiz9S$Fn-+0Wf0T}pE7Gb)!5vHWY_}~SG(a`P48nW6R|5h(eu|Po=Y><%
zgjB=9{S^Un0+%3w<jB++Gea>DTRogKKLwp>-i~HD$Up6Hf<?N>H222GZdxT&s9li&
z0b=5&k$u;^pe;P!R+%S|{&voz%6_JJB_v!I6>@SD6nL-@c9UHcg+e*fJaU9E!yP%2
zL*xXM$#BrwZtXjU<+%!8q3rn&tx9UJFgG%|`QAYy2u_45lZd9z6#<TVCptw|z-bkj
z;7o*+8jiRpAnkaH<IVHT5+N*(Z$!ntK9(iz5K*bp5bXX+054xMKPwJDc<fX9h|?C(
z<-28>aysT|_K)29`5j5$xUOvGL@j#BQk^WPFxppRM3;pfun`+Mx6!`zidKm2h~J)-
z@s|6g6}Vlc^p~=&Qellq$M!vpHj@CeK3~B8<N3o>lf3%`omsDNNoNSXTfepL5(#SJ
z=0OKGt?Fp>PuvdL>zY{*|4JB4`QnTKOz|`bb^OK9$-R!tPSufm_Gm?Opj$ZJ>z<JP
ze1$&PnCts*Bq><LCK$nm#VcH%jZ!UHe$G$-Ib_^x5yQczz^Gd?Z^wDL3hoS-W$j`p
z0_x~5b-z5*_blPLJD0pRx!+OIBuUNaVqVx2A^rX^nng<>9z#AJo*oNMTQI)X9DBd*
zh5YU8o3$YdFPA~o!g#9h0U2xoPe_q(2eNZjFq!TPV+rwJSr|<|8eZ`8jQLfObDj62
z>7~Qh1bT(LvJNW*rIy!;EDdGnN8Fkc{H${$zX_Sft?NBMeA_gtV0<xK+V)k8U_*F)
zRfLJV#TUDq9YsEsF_g&9cQ`p_q*xuQcKx@=uN(fIyHEnuY>TC4az!+h$8FupR4tuO
z^<}Ab3>N;eFlT@#HoY?W<oCeqg<*VS#f2nl340KYXcHctkG<(Ob3}%pv}xI+3l{$Y
zqLD&OwlSIRMr*k))U52CG({yxUHI_<dxoy>!Q9O!_f9Vf-!*G4-!-{vBX^qiymWKd
zS<^2Wt1e4F;_tt_=J_S(=!byP&8AVOTc2||vR5=BnukLJzZUUjFW=k#HWcwIDPQ&H
zI)*`|_<sDiDn9!Sxtf-DFE4slO9f83n6);Kblff~|GD+{s_IxX{a(w4-S*ky*15gW
z^+Xut_be{{TNX!CvUu<ReilcG%l<Ws%lzGv#6N}_lsGP?ZTuJe;oqIe|7j22ztkQ6
zfpPt1T=Fk-`5yz6f7XomCuzgqtmOQ4r1D>TCFkGH=mP@-|JNJu|0ALKKj~RY7B`_}
zaTEj|Lb-nbBa6dN?M`X^R;G92HUKyl@N&me$ge+TalP+&;-AT{zh-f(Yocdyp)_>U
z1lLe{{bbQCls1oujs_Tj=SO0CDG~{{WqBC^oj6XBGMSye@~Jx4*ZFF%>nJNizh!aS
zFRP^1vRH11j62$S+6Y=SfFtZUg2U@Yb!~+8i(a6Vzsb-xUd{wjZrCh_n(J2U-9JWi
zn^3ZNy6-N{o1qh>myF9G>>)1eGywW6ojMl?h!N3`;<;=B#y;MONNPWq8hZajuu3ka
zQXoj?>&K1Bx*K|xe!?4XA3DA~R(wM#Rshs1GGv7l9y0(ufV@&rN|W~?U2;K1EbJ8>
zpi0hz`CPnC00qPC!uouXifaV>QlGRmi%RN5eRJ@Y&)k4j$;%v(LgSi5hDQsl34wx&
z69X<nXLTu)yo5wYLn@+lfxd6OcZA*b(`z3d;RZ2Ici&4qeId+B(@PC-^+)vk!FVh$
zCfgSZn+wPAgQG?APv=L82-Dv=sgb87JK!zW*kqySPZZ`e@Pprb$w4(=)2GKWRTIv|
z^QNYclgckFf(z(%jNnqeSXj&%Ok<ds6OhjjgK~h#nuXV%pqGlW6qO3ybVL>4q6Qh7
z5Ks|{a=$KsIZL@;M;$xUfV6F{!@(SAe6M3|`1NQe0CJ5+7zbd_!jj;th#3CnCQ1=c
zD!*P{x(AMO!S0B1<#_B_i05Q^lLrDO=@Ybcq|dcjK<~Ghi$JfO4Ff@aUCgf|<KpEj
zTc#GDltQwh;ybRni_C78p>PFr7$2N}kZE0=CmP3hCt;Bvz$6+7Y61x_dL3DW%+VlW
zOLJIax+MZm8(W$#6!dsW90ru|NB}gGpvz$2HGs&D@g{0;D7#4mcQ99^foz{)0LO+o
zFwo7rQGx!%?dL+k+1_^X0*Y9L@m)~23Gbd@!MGtQ;8e*AD3R)=#3?iC_de2=h_q=u
zg6hh#46BnZa>6az4CQrFxSh@=*B_#!Y0eFp%aQ~D>(YwhhoA4W0s0$5-?=@)zUkKc
z@3-o40c0GS8)$PxPq3KyZ|kUsawq^Q{j@}AoS-4&#tkaGubn4RZEv^#wh)i`-Ma~=
z%&Dk@@glMEQ(a(Mn^*l6CQn>@!Rt|)c&2Eo1O$S%(3r#kLr(yxmnoLx?2VKUm%(dI
zwaVDr3Gs=5Y)NFhi=%36tS5}sJGk*H5vRsaq;3(z8p4@RBfW~~ne}s^r)*ArGLMvc
z#qmgl^6oMM0LTuXBvOwTV}g!qM^d(aAiUIoe13q59WIK6<#dNe5hg?_itE@_@bv2_
z{s;b(@3{~61dqM2Aeb~RPn5SR&Jloh6!f$IC~j@=z+I%l4S_;dTk3~-LOF~-?5Z?n
zFh~l7(TjEKCV1sCJOm>+M8N$!p?aGj3RuK53TJWR{su1u@kNI5p0JHN30>sBrBBp#
zcI@R-mxvm3Ui>I64R9pnA+Jc|kdn@dhGQE(X>IyoSyK49mRoX|E}(TZNiwLRE7sMz
zKoZuco8M$%O~dyn0PqS64(P||vaSReyMTF&yJ*(M-lt*TsRi%jK_a5mSkrtMwL2s@
zsilxn0TBvvG-RM+70{QLrHV1$GGSRDf^>O}>eoQfAA?+WYYE3g4u{EB?Jo0DXcl8h
z0BWPI&*INdxjaAJg^8->48(%)E+YKKdI<}-dX#v`ri|FM_5ce=ddO>CDtXKhPc616
z=kwOdw>;BXr*U%hP2j_rqVj8YgD5KcVIcL|!s?j_8qzYNUbr%tPg7qwxBKzS%jXy)
z1!$;3&|z43sPOwh{Von790GwfbqfdwQ-ev+!Wr!WdPPR!W2|@9SobR3CKl#8FmYXS
zGMKYpy6S?T3jii|(aW2^uAl>8KIv5SQ1UyqwXeE-Xi*EHqXN7sycCNR)Rgafc)li@
z_Cj=-i2MSG?{pVjlT3G@sVHb7jR%rGFmj)&1)`2G3KWWXry9r%bh^%UIc(Tzsfgr9
zaOsanE4ISfG75tG7I~m4vUv5&wwC=N+O>~Is)}R%rrO&q>S&aUT;F{$58-t3+tP>>
zRu@e$+(d~rjcjG8_Yk8e7wBx;;M_};PyJdReM;{%=b_PTfbBcp$v0IYb(g1BM0|J_
z<J^P+EOiKF&+#PdP0dBI_tl*HJ=h{RmvA+iQ7*le9(q$#epi4la}fsU2Q$|L59v|Z
z3`xlsCrSA;s3Ro}Z){CegnI^*0drH-S4Iot1YwWG!q0m>2|rVFnfuk=OPeBkPF~!S
zWO84B`cF^uHYAfkm?rg25uz>)?&{`_<MEJ3yqrC8)4?&`b`<3Z%6R`755^Ed_asf|
znmE@qSHngPm<>((h-<p4e#r3n`a+?fSnX@yN9FF<7m18~H1+qBOl6TXXQ{ld_uz1%
z#8kmVQ=-hO=@3&WsZem%WWz2u;|<(jq2fC4hVIPaJEEd|)o#&-&5#P^`rS7zVyn&h
zOUt{2bB*=IYPMGyx~Ifz@HFORMpwPeX)^tDXyukWt@HxQSt;y96CLPg4CVTLMIido
z?B@A87ut<*BBBupN7Qpn@6tCB1GPQ<pOaBSt^?HcV<8Xr{K%+B`#v<=Zg6=gTB!pt
z6K9Znl>d(p-g!zDtzMBynLkk0Y2<sQ8kFnzBbRw6&xZDPb85`wj}^q-=R<c#zqAnB
zMw=V&G7+&%*?T|MR8J^F=sUn^#E~`qM~5#{=z}G~oZu&vG-$ht9wkOUH>iqRAgKx4
zTKK#L(f9I`?<Bp-o-aXI))a|Trh9i=+t+SCYn?9++)KX~_z8dP^WN$69+5-+P3QxI
z1%_Aqra~9D8E&>MossyA2mX3*&IytPu>h<<7>%$jTJjVncw?lMDJaw*DO%u+zR2&}
z@k-|B)y~>eVz80(b&A%^($(XfySMXiC{)1p0DM4v;%~Ri{|XfJN4TQC^&1Lhp6zP)
zw`fq31!kihP5t?G6c`+HSsEUR7Yn~)n0-1J0P{NC$D+c^Ev&1>qZ<>ul5j)1@Wvy7
zXucIW^mB)vw-R*sPHAG0H0WS+egwvf5hfVKPaSw!DOxEpRX#l}DGT=p5%l|!M2tcN
zm4S7D2+E70f+8qT5Cl&5mwgm!TE;(F3;wNr6kdw8fR6p2^?U!}c2{8JS4IC0lKoNf
zjgk4g)pi&m+&|O1Q)o0+X%osDL8<%xlilw3x^D`fMtNWUki1juc9dg|l!2L)zB%Qv
zLwTDh5`+I}2lzjoM&Qmn;A|ZJIeK)#N&nJS$|1<m@v8BkKN4qec-ea1w)ghAbo+ne
zyL0sUZBTLD|G_^y6N#AN|LlMNU$=$-)p{2ae(PbRZ)D7Uiuf+>zr}a|-V+SvNW%3u
zUb{cW0~D{FQsTJM?cazXirZb8Mf~)ijwI8bQ+AYP6r(hI0O;?&^>*m5%P1;cuB?U>
zBB+3JBykw5FQr%u3JkN^6|!3>M-t~0;#tjT3K3KU*Q%-b?MOmdMoG17O6DJ6=Hml^
zC(cXc^|_(*ONuGD^L<&(wG-g8!N0lP@6`yGCGZ*L7&q507o2NwJNJ$vL8z9(i(KA-
z!}-SPOlV!kHPGw9ap_rt{nI{nZ{Qv~_qfJ9F2xal>pin?3U=&#K*e`iLV3WWiIJfw
zstmwWSFuyZ1KGPDhR8iJ$0yCWudj^Qsy_I|?w6&~Xbu1i+0wrP^b~;MAUX&!HsoOI
zT52FdgmQ_GGWq=WVwd>kcr4I_KcRoC9Ux*?#6z=g3$}v*CC+$=gX8N4=WJsnaeOYC
zvWzl*clm|zhgkWHh@5llm9Sy?^EEzQpg8P3(j$$<;*)`q)?^4?FJH$c7)J9kfuFWp
z07P-(p>!{veCR^2>;#Y~J>X$BNfFqLk7JQ%Oim4n+X3Vk;tfr#=?KBe(rZQq6Kkuv
z_;bGVaaleM+-$v$4J^FCrl5dEtcqJ9{t-0tTp<nH{@UZS87?O2z}GGTeb&U+5ynpP
z#YOtARqN<eV+Y6bbA}gyoq-%2vov*;@{5pY@wi0Bwd!7$%n8D&72$I{+u!<0yfM-f
z8o*<f{C=iL)(QQ@Se!*=LxiyWR!}Ov^%k$Wwh^fjtl+GlSS`aV)do%xGjG_Q4ktB1
zxxf!`8H~OCObb;Ta6an0M$h;TGIX9^Oa&+#h&^|%k4m36b&o11vuX{WT8S($R$Qsi
zu*hH!PL7ou?Gi0FmY=fRs8oHUSu9>QArd2^*no)<sUbsRM5-oiUyIiOI33Ejjqz8N
ztbtz*&%l0KiShSCaF}yqEYUTN5kG}$*F-o{rPhSYNW9GbcY<$3TPH|pL<8np8s0a!
zhzt-B3K7K1<Z43Y0dpPc>V7+IlF+UQ5PNYE!UP2{wQ4sN5Je*RFhRTt-#)~g`l$bb
zAU7NQmT5Td`65Ikn79f$8PH-(gBcd4qiE<gnCg2JRe{p9Z#xFAtd65nlsa#!^D+R?
zCAGqe?<?z)$0mc^;js3B6*7nzz7ik@1$>^8jBm~Lw!E%rba4_hs}%N_L*!ESeGs|@
zNe#vf_2Z1<f&l&}4Usx^!tjQyNbswCf&wEpT!0^|A#O-e5Y;yk+SMZe^jlG2h};Ur
zA{nL>FDq8>^NP_v!Gm*%VIU-d3T6&GWiOTrHpT)Anql-nH9ua&5zKN=llR!qJUH0C
zipm@ZK|!TKp(N=$b;=G5)Xu@QtRd*|63R}`?PeNC4I=6F30~w_?)aN>1Ix_|KzagP
zkP{26^Y$~r@*{!%IJ7Yw2jnlonOD5PFeSPImwhUL6NmnJA545Z*>|eXf;WlSXJEMl
zj*aAFfDeZ%Nq-K(lnhW#d!Y&y7El1?oGfsJ(jCX*on6DIMI6JG30+_~Ay#UxpW19P
zf-=qm2LbnR;%>`$n>!$&$c7@h$J1PTLI6bVD3bdGIU5_wwu;RFNj*>ADt$4yv4kSI
z$FrWNNbVhem)wU~5;bY>uNwdga6m$S1;dTZQ{PiQPC>gBg<Vq4n`R7w&j{yJ(Ga@$
z7#d%O$b*4^JG~e#9%Wj%G4}Zlu2sleb7930D$xFU&Golb!JOV$Q-Fw~VLT~kx?aE|
zKoMUM^n*FUK<EcoZLZ)}rBQi9Edam1u6R;6<!e!E^T!WY?X2`><%=;<y$1Z)&{&kF
zQV)-|ZfbGSX;!Ss`zCXW=uVJ|UyH9EAj-+|(org|0$Z)^NM%%bSLf=SMjW-1^{)B_
zFA_^NKx8>5OAF}d2~4>g{GeG&x_oGs39Nx3ATMyKvWL*ar$WHuK)Ur(axQ_cG7j#;
zj4#3wMpcH4&z?#kzQH$8C33o((BRpRxm_BJqh|ooG}K#%s#`Ix7$dH<8Jf*T>>2Uj
z?fJ8e6hmNW2~LTm9l}Y*#V&Fda6fm5K6e*8q%g#1su>PV|G>&*1cG1_<}YhMLb_Q}
zL7FIj53*AQPz^<5u|{!`T}Et)MAj@T`keH|8bbOdv&FQL{kcKrz(543jL1lHZlOkM
zq5Q-}M(Q7L7JC}Ja2Uaug<O7<I(`zpxF&X*rFAk_Np|9z`4M+LWyc>jz(HAuqXJP1
zpy3Ndfc4hp&?UWF5fkSal<;_p?x48dB&<1XMrARaexNbMb8YSHQV0Yn1CP}%t=Vep
zN|d(Fz4?s$9I6y?I^>vLhz9~V0(dB<+xcNNcXoqYkrRMLu`W;n3Bm89G;n9xp0KKw
zA7<YA+AUPGwtV$Cg9$p*-PMSf9wCQ;VbYEu!^;TZie`v}y{|w~<c`b7`(U`bqYRR?
z>BRPdhNX4?E#aZJpNlvPdx1a+uNs`!535YQCe{qwoz=v9xB%8<1hL=*FNV^bE!~AM
zWyP6F6-()w-^WT^8Lum#<M>Tvs2X;nj`nkRh$|bV!Y!<AHCsYX6+9B}zt)UM+Ky^F
z;9t}aHJ(fmw0uIv>7HP~ZqAk;_Ur`UPl}AV=!g{eM({D-1Ia0ldb`SJoKV01kjh1q
z+VDJkX4-L3ZV|{R1njcFL;zlZOUOxgubPBJ>NFd1nuD$Pf2>Z~A`qC8bSgI#bA6*i
zRT{UZ!_9~9u4ygUVsOC|01j63(^DfTv$X7#s+~rha3}Qhm1*Cj88G7R8nNnXv?u|4
zW<B#Att_bWorIzH2}OoaCbQdzblbxz{hh^zf<OfiAM{iNJIy6Qxd8$)5U%}T*QmC>
z`xKv3BtB!XhBkL%5hOdc^Ts^>V~SZG;83muat%sOx5*QjEwnW<Cj!~XK$(X05U4<F
z`g!5(k3@#d*G9BHOor{^Z8NSKjNZAv8f=bs5s&LWHs&s!EVR!^#(?M569}HIjaI4F
z$J3Q<D}q<vM*`+Sy422rp_|pE88Mb@bbWhrd)ZBCR>xm>K1aIYVp-=31Xi^~M{p1z
z0k(oe-h9C`1OThA(Smi*2dU_XJ8JA*UVdHo&m_75xH|>!97Xrk=@XpAy^Skiw6Qui
zd3}tf-~GY_Sj)bjfBuq{fTI?6q}C{A?Klx|S~#FkC&0djyW=X0Xc$Vh7i5fw8<P}M
zLfv8B%1lIv8HtMPjo$1#_ahC^M<G<kYpNJLJnc)sEK3lT6Wr8XUy%$+xh!SZWD&Qc
za)uBFL+MxgJf!Y|OUgsca8x&Y^-g`Iio(Os;I+QJygRF7e-jRPuj$_DfAH&gkK>lE
zV6V48(URy2imtZ{EJXslkZJc*1eY9nfJn5sBM^e6dnFBrlCf-)_s=X)%W62`oUT9J
zQ*SAzt|8HE*M+>pP+ug`<f3r;=b5N+zy&h3AUR~w8n^(^R#j6|OH;fgp>6q0s*|CU
z`r<w3g*B8ezdVI@yNl8?SE_$)J^vKtS*XAz&9TtWf0PHm`B);BtSl=7GB@{4r3%{n
z>=7J_)48MjiS^N*=A+RfsVy7S>vNByNLP>rlph23oNn$zRlbxcFgsqL03q*)JX4N{
zk%H5yfNW|yohSi%p8&n$$g`JXD4a}(b_8xP%OZrBP}O*$ykOjMm-@-{TMXaTYl%37
z3r+cR#s)GqpPpOi5@W6xuOK$A4o7WQ2eb*@;kJo8<sCPbo^tt1=<FI>`}a6T5H(8!
zD$Wc3ejF7ITyRF9H)T;Vj;WgCsnwvgO1V^;JUH#c1lB3kmHVkQAOuILVAQp!lfiiQ
z8tBSdQ4St@)<`r7@9Gtttc;MG+jSC0)0TO;Ny^Yxk`$yYXsaD>EiBRG7(71Vk|GhD
zV%MA@R~uKP5SGc9N$K~lk3!);iiQrz07MwO20f)~AZ!3lam0rOXY}3A65FN05;KOU
zGVBjB9Bnhlm9r;GS)P9sox;g>U8i>j0BscfAps_G><A=3&t4|b#^fdUH|O|w(+o{z
z?HF)Z*#>}^v)|m$-G7n`&r6({%3U!>x_MDc;h-U2MqMB2)}G`%9>_ti^OjeGcG>b4
zWpd~CQ*3zhSnb5sN$^t%c_|<m*%6XNxlv67xb3(v?GS`o@~t)UF0%QY7|fS7<W?f(
z$r&;mV)K*!XnFT4NDHP$(G+T{*cDP|%h(kf(gfs?3QZ3SbE*q1Ri0YA6^4Zrp0{{v
zH)v)){q(}&Q^&!4NzpJ{bkS8iaR-{G*IJ6)Gg2<ATwX;LubN|YQ4otn$Q>-$+8cTY
zB}^#@z#GDRr;D7Ei_F%Y4G6`l!Nt+XhTKtZm{`M-$7qNb8Rl&cIjLQm8eN(&U81#H
z9IR53f-W`MEov7mzHNv}_kvQ$l<pl{3ny46x!Bhc_5h1Cz?M2)E-{^UHo_tU-Po#V
z$`^Lay9_ZsW#x&9knSCrHvn&9R~%liAZ3(mJ5}iNfE)bE-`Y{iam!vA<Q6|H)2e}_
zVUgKnn94Nfy(n`nJ6{kPX6OVNi@vctn7?O-X`3#TXrx;AW7`tt{?$^Yg{~ILcoxJ9
zCPr7}8;aBTS9p`EsWLHNrz;;jRi~q?nEe!&RA5;s*b{S@4;E=e#;|T+KG|_+c~$6H
z)EGUl6{o2?Y<YIduU6*RxsFk^E~vYLPOP$<RA;_W+kIGO>{P}nR?LU1Wv?z{uZHkB
z)@mDJstqf0Q)*R#`dqtWLmn`019TFLyhRbK;40X$^;TUCdJCWfez49CNRJ0>7lU!%
zDAihMa1?8Fp?z*MgW+?8s3u_iS{oc%8$FI1y)R&VIT|mkVvg9K`rLr%5sJCZAvx?#
zx`}4Vv`rCW4PhINmST-}GAsQvF`&%nk24#6hDsx8Tl6eiu8TqPHZXxl&u_Ih=Vvx%
z-)M3;YKS&!T-q(KDR0cRYf7VSO)Cd+OP4&MWhTa8xQQ*83(s0+$}BECXFCdg7FDK-
zsx+o$-dZnvdu#~ncEmWUVrtnTPq4^t0s<li=9@uu;}L3^kPJdcwj=D|4s^Y>v)ddY
zA=YlL(fK{5Q`;Mnh6O(_>$ru(Y{yjX&Qxo7RjrG4YUg$SnCYZg=XQ*`%w)hpWMY<i
zE%HYP1G4m6Ocmrb1{zB|Y9;0xc5_yMScW@)m4o6`F$UF$^`jaU_eysAZmk7qw>0<`
z(3#~}bB42ry}BD=-?7r#$zp^7$98wjw7jA1&_;J1ar9^!_v*UW_yR9<ciSnB?#1$s
z6kKcVQJ1cGx6~%lumWTi(3$(9SK@THmw1_6Tc-jipDqb{7mM^HK|Kh4Mgc^VO^S`j
zzwf6}>&!+?HyLI?M09&0Om|-fpYDHXk8!H#urS74jd{r-UKVUOh_|agk0i1?)(dJ^
zr4tdlq;|92$~z>)hG@sqMz=2sk)8nI!*yow)N5HFFl|&R1Vm0b$OEX*sircjMm&(l
z1P)c)c7!xuXe^t>3>m{lehiOQbf=pm)>XhBJ0tA4VPCi5eq+pCN7!RA$OFoYIX%*C
zK9U(T%1#&^7{;VjBYZQcs#>b{D_&{WjLacNs5wVJ*pF(<kX~*!e|3Kq>er(IR5*)u
z812~7w~w-8dmj+040Z;)14du`AR#11b#bFBZB#lt<+<*p(OA+ZdqcyqarM@Z(OvOj
zZn|+^6O8!Q_+{hQjrN$dYD9-|XC|suf9%yUCyCBsoU?LxnDg~Y0D>la9H};JPB*5D
z8+m)WC2b7)(taSt909rUM!0gE+I^z40%4H-YF7+=n2F%sDTicYoE<vT%-=$eUQeB-
zRNK7y=swPldKMlyS(0U@5ZJCKTGfH8>Z|DRksg=Z((na_bb^O;7J8l9s=nI6mPL_n
zS@pba?a>t=9WRJZO}poh&fGRkkprgGftVQEl&3ar7=tkwDpSv%(b+9;nwvIU0MXJ8
zz7w6+)|l2p&uGich}zFs`p*n(&3H-7p5laMRX29f&AyiC);va1?2kx8?A-X~%&O?K
zF^QS7;aRPPS>wctw7_?|H8UFGNOIiBhst>i<ok37Qg?L~vl<L9Q45i*eQP)?-dZ*5
zF#mL`cdK&xRowjBnfm?_a=FP|nmrlfS*c4{fc~24MzyYb%vjQqzaigw5Gemu7MZil
zxwaQrX4(uaAP?e3EZWHIgxQoz(5}bRfyK$C=pGeh#aYe?z8%;vcT9!}CQGeDCm8X>
zu_N#_hUdb2Lp6+q`ZI+bjAp>{s$0Ld6U?d#bT$W*je_YUF6;8F=vu6pSRlGlFvrmk
zmoKh3RADZ~W85!dJgXMV0(x#sm-`&mI9*&NOZ4U+msN|Hu6hK$zh8xs=YDZlow>?y
z$zT+7?c)0=No36YY?=K>{rNh74@?kh`IbAe#FOZWT)h>9@i)czaxdPyxNyUB?Rv+u
z0fotmU+1mZXbnPCN_^1WUF%U_c}o9IA9&Z?(%!tj(aOD9tNuZOd-9p-@?JZJ5cDxN
z@F`BR*lZqp=)YySP_|lzxYN3%)issnhzb5NdjdHpQoj6*YyL|PW;Y&lE*rxb(8X9a
z?2AWua;@IU7&#j4{MmuwuIM0MeEEs~Q%KdPbiyaP_n(3Tdxl%qhT5vAJ3H6rURVx&
z+#dae7{MfVtT0G1FLiX(%s`L1cU<Skw0`VnAJ5O{UK|iL>sXAh(@ES($r`KwxxE(n
zNiXr!zWOfJrB9t4TRq&n`cCgPwm>st`NLJ4W;~mE7N7OelN`@F*63O;N;Q_)ZySyb
zf|x0<zJ3VV@BsJha{P90<<Q1Oj1LKM?HH!vwRg{~wRITtRrEa}cB9I4@1FWfncLpI
z2YdCIR627|1ILj}uj#-Cm~_Yeh%>83iBuk5RWSR#h)4S?V*7`t`&sV~!Z{D*hRRDS
z5Z^YSW~K-CFTLk8nXTxouljT#Dt>s_zCw8Pd1UarZr*+-aX<c3H}|FIA?_HPM-}al
zx-varW(>^f&kmwh4zf=|{5p@c9vw}X9a0^C+LLkqMjd<9P5z-HQ(<BD&FT||oO@*Z
zY;fk%!N>U>)9tbwuYSz@`oJ+WIIsS*BICOp9g0_89DPo&M}zKm7|(>Gc6wH*FN<v3
z9g%#&aJCsZZIaAoMkj;Qymy3eEe*tRnO!WqGfv-^d`AhP-H+haOb}%2I6YM-)TMO7
zzi4w{TwpjyS<cUSdZM&AG-$2<dI2NPt7OlxINX{>I!B()g+p;hOFq3^wGVJ6eG*pl
zi9Eyf>5`NUjc1N*sc-IkdCY_$Wt;|Gg{-ENaXs<;Ew?K4Dhx(=i|p@XXA*Vw=p_U0
zMM(3ptH*FUJR#UW3NT9*kDVw$Pu5&MdU3qz>!RY*?DOfZMA!2$OxMHW9iP$tX8v?v
zSK=MP$RgFp@BEa6^=vr8AX=|GL@bJX2x&)_XZ8;mdeBP@A)f}OYwv$uSMcXo;^q;I
znK~)!l3Sy$^=+Kp2?6XeG2p_;TEc2!D_?HPw#lwD<Q0of;NbPThtI^qHrLn7LltAI
zyIz`F#_>=yIHPJlmbGqo{LqvqX|>^IX*H+&>*!lU6~{l;WkUFOdNQ>qaP1fc8w)BJ
zo2)D`JPh$lR+On{xIhs7S*Gi!I&EeBxUgzvG1H}<T^#*WCf%1O<htWdDZM$MYgz~q
z+ipSw=psf_*{Ls8^>(M%7@QK6^dZM4@-oh0iqbM9dQ*Ajo=5@3DQz|NSFBDE0!lS*
z1%^q|`Ee#|{gF(jqvqX@cC_&x1&WSZBSPjn0&gZlYqf=6o2Z_Rir>(lbmF7BVd(Ql
z<o@!6)gT$w7timjA7Wnq_}kebH4llD-kgdnsXW$aubd5~$+b*MHW582NK$$1*nc6#
z_4K$d9eMe!Hs5f<IJ{iG#Am|8)}Dz+lkN>LsTd~kUGV-F&63D~y#_;bI+~7W$pVEV
z+DyV`w^;11m(D4?x!C#b)CIivmD=9eP3pZ#@AAh7wYImf*h<GLtk}qt?g?%U=T;5F
zodZ9RPw<@AYd3wHsNm3esR7DeZ+?90L)h(6m95j;S>G1POOHChDRxxa%C@GVSWf1Z
zN9eGwH}nMx=&P^lc9RN{n-$m?g_<9J45JrLCcA8(3A4HB*}FO)U(0{^>q19nYm4fq
zcC`f8ZNunEm%&ho(5zQ0rQ!7EQ0mU@Z6lU5w?2>UZO?iWKXDCEy)`&?-D#kcdM8pV
z^@J*3c@2BVa9ZcNLumL%iJV)}yk|<1dLQn7;G0zCj#{iutK-}qKK1NIIm5TIQ->dK
zYuho^F&vUVH-L18@AO*1s(s%nxCU&$yt3zd@K){f>Afcd?#4E^a-eS`lp0ftuQ`G<
zQrr|fdQ+q*?1SxEda>X)mq$D|YweD21|=&jx|>K}gFBul$cMmq`C;2b{q&aliX{!z
zVd`iNq}Ye<#0iq0@H&G2%1SUcfDj>7;RFQUOKM5Hao4!?#Hu_t!sOmk<k^fxq?~0h
zn;#aZQqSvLpN__Mkc4m;UdAX_twC#xa0eH@E8Ua2N<}(xXAc*ls!bdfSGG+1qAs8O
zxvz(VS|)_r^IEBs1Vdi9Cd9b7@NpgJ>+4!3xi68qzStD2-SSAvTyhaov+dT@)ZxAB
z+QT@Dk1`?bCYQTh5py^&w3%Ot=l)6umt!-sU$IP+LoWNRctxBsz7o;Oe^n;#{;>18
z+R!x4QHjI@W7n42w6Vgg3YEwAM|4GByA5OF<!TO0y!yN|7Wl6zj~JMG^hIUbsg5eo
z9hlzhv&#8We^uq#cMY}e@SLNiYiE8QnBhlBIc>H=-e1|w!vwAKXs@g(z@qg6oIevB
zjJqq6a4;FgujWp#UG>xsE&S9Ur`|~_@to90r95FM<ZjlYI)7-H-uE?~cf>>^P-cv6
zo5)c18hEkv5r!BQM+7<M8OQlq7gi+|-HLXV^Pbkr?Mr47F>yOv>G#G#@=XyFvj*Bt
zmzx3O^ne#zt`{&Z!vN<g5Mm2PC-tMwmomlxyk_Tz;O`28cN1=5H>7XtzpeEvth~7u
zZMPS3qQ?1bO^jOExy)&k<3Q*FV`NX**-cqx)2|N$oeC!H?ks{Fo#Lz2*n&^~5JZ|b
znL>P&Jg$^RoKfvxW#q+9%!brYzqMONV#FQY@>e^?a}*l@8i_fTdgkF<k86gmcxrN8
z7z)VvO7FW<hWbT}YIR*^P&J|VWwM6weY1AEvlg~4Srf${OYqLL+4y2v8q8U7#XH4o
zi(WJ@s?{@$UWYs(IGQYGZ0%eedw8>b-T%F8BQyVPe4Oas2@c2RXN;fXZc;x9yZFs5
zr2YL&6}siZ#7ekL@0S2cgKW3)*!sAze%j%MSs%VpdZcC9O#fmCHdeW!m|k_oo6C4H
z<*{Tu*5}4d0%a$KPySfn58i@Ie7Ml^YT}t82MCjJ5Guj(Vc-8|)Od{Ek1Nuxb-j%N
z>l!L(?n)aSNaSh#C$4fKXWE|MXWQ*@+B}awect6JDTc~vi&$&irXwbmwds1Cm57sD
z>Kmj;K;H`pbSsvQzPFOg><PGTeE#<E*oeuaO+13m=%fGH#`??`s<tM>WiQ}Sq8CiW
zVvWQ#)G_w8&`s2fe3YPEJ$;!!cx{ckUFGe%ZNov*%K~Ge3sZfwcMNVPhkj|)u-2V~
z^bpVU?KT`3-#7@>viV*STi+t2?AqgU%^zj_g9pBGb#H2ugvecsR$jll*OI)3$}v5d
zM)Evwz7F;buNS_5Jay5xi*A1KYOc~LZ%|r;fr*#Z@v^M_)%dDs&a0v#eQ&FjV?>v^
zo+JxD4I{oyC=r`~ViEC)EOza_5EH%a9Qmbz-1PGvM^4YuE%=2qqN!$3YXa{A+~7vc
zqhD7&PyR{|@GZCkA9!F|$gQ!~FCKJns50oA`)F;^qlVX>s3Pf^BF-6xnDjA0Ma7sr
z)oTWm>6g%-Yg|plw7&69y{=|1d(8IJ!Kd@>Q15c@fUL?oKE%I&B|fU*xx?lcUZuBO
z$NQ2UZ5u69+$-`CD;ck8{m?GoCgojm-vvnW#i0%B`*+*kElBw)ZVY^U`lGYEVfd+q
z9^DV~;ub1KdUL9Xs{x+^PvQnRFfZ&eE?ljQVc)l<BDFRL>`R4pi^N1Eh?*OpuSNWL
zf9=xI;|Ue3ybX6Bo4Fp*aqZye4}!kZ%I=@ikr@(TG&XSo_kJvX@YAU2mn_FD(sy5r
zW98-p0Ez1*o|&VR1oIp~fa{d0wD@cA2@n{d0z!CrcuY-AV`5^`($ZR5T8=5YpWnZz
zAaEY7l)oY=fBS%zmKNoKf`WpPk&%D(0Z|IvQ4YTJUk&b%lRc%RsHA*KRZZo;5Zv)k
z!S?@#J6={w_gBi|@%V?4p)s-1@rf~iUSj>nv(fx(aEJbX7TkgT3*6!VAAvj2m&H*3
z-@_dlD&zl&a7V2Fr~hoY<Hdgh-0?wp`X3(dP%8g_5bi+!H{9{xaK}G^JI-7DgToy&
zeE-mJNAdrU;0_+U|Kf1R+&>`P;rss%+@bf64|g#A--SD#{GD(|^Zzc~f%v=N4!3_F
z++p|cfIC_Wji(Du{eCAnb_=cTo}Tl2YICSzu^wlT@$@1E?qDx+9>iRjzOm|6wCeaj
zp*egFVeTqLe$f~Mpg47*D9DgI&<%rcDNg(g$#EQ35<OTF#$KXjQG7R}IK`sG$fD?4
zXwh}Me~NP8{)}=smQ<C2C>+OaH@1AkvITT`ogt>-u*~w$97hGaVh2q{_jH+da5;tJ
zC~Yb0w_|I~DE*D&cu_jwhv+6Df(QjB=t@hcGMPnK5CNkrUC|_1B_3T>(M&bt$2Kp@
zy*XH^wOb`rRz)E=YRk$~4aN5}%Dt<f?Pg$>4=WyPJWH3UWNs;SRl(dQBD@n2l%|{R
zYKW;*wJE4-xeL+khoNe{!#<RMGV>`52OpnU9?ynQN6WKbQKTp>GnY|$fngE+C|}T}
zlJ8i$hJB~BS_RC^QKzj@)_7>k+Dav%T6&`l!%M2=-T`%EVZ2yyV;M+FmD#`_!<}Hp
zO95cKFuY#%`iTumDj1`gdNYm&hYR&4GGN_mDg*CE{qlO7@&@~j1|6A3Q`!cL1(2>6
z#A_X-gDv&EfjL-u?qT%&49D{eM|EZ#jYH9m2D?>PkDi|sYfP|v9^;QmxY3|VY%<Mj
zbU$hcpJ_T5({#JM-q`=Sg%NknVDov^(pzFpnPN@sWYB%XCi9vW{RL2(SoMlsOWt~&
zvw!uO{fxIQR6S)BP^B_Iy5bHNsXJD$<y5ATfat~|GqBHiu{GIPWICbNfPi>&JcIB}
zFuP{nz9NQ9A=b3hGQa2O_+W%d^Fr`em%R~#X(zT%4YnV#LniIo=ZrAR{vB%<F#E0T
z$43}GGVEXof${I0F7FJZ>6kj~&_Z{9xzX`mwUi-%$c`eeW_D1_8<gfbde!cJJ0j{d
z#uJO=!@_2U5RjPP`3~bw5=Z-rQMLA12UAu{I&IsK5$4B@4$ii2i67mN8!%;e%-~Eb
zH>vH-1w`&lGtG}~x{9s?)gE?Y&*G7-LTnd(){E5jt`*vD8E1%x7p$8M^&mm5jC(%c
z=wUnEY98B>d!vm`3>lOF$-*Mj$Qaj(KKIQ&oxI*R<vrRm4Nk}I#8kiHc=zHjG`$<;
zpbWb@+RVBvM@at>X3P+lO{^R_YGZSUW#bVB(%|<qh|{W=l$}mhb3{f$6QzE()()at
z4awYrY2`I`sK9hlEtaYSCK^L`9EX}JhL~d!Db<yHBxrvHsB*aI8Rw9;H_UhEx#kW9
zFBohSM|QY3ja7hNiw_xFATo(X%Gk15_R$Z<m|pkcW@P8!@bIWHW)nFSH8b*lvq={X
zsXeS8X@%tayqc&0iT!}hWI)oZN4{?k?u)+~a)(f85mj?YO?3aKfT7*lO7)F_&u$}=
z6(i*VBt$!@Tzr&8Z6N!{fQ~mJ(`)d3D<UffvvM3ex;{%9|3T799D9iz`}$)TlKo1T
zG}Jl#Ds>E6z4?+tZG84ad=Ve}X5S?hH<*Eay*S*?Yu@n$3$77;W)M6<_D2{=JYx<V
zYm4dEP{S;?ymjXqI9M9%_Ai`Rr+q6rnquDW<2BAnp*9i*bkKu3-aUrHmCJT8Ep)k6
zKpmZX+wDK74X3vA6&;anm{<qQBf3sM`{xl7$f&qFeeXJgAtosh6KR5p-lF^gK8wn#
z$cdXK1WsuuPBFJlouQC-YEw_S%Chhc1iJEP?L&n2?r=5Cav7wFZsvS!<p;l+bhUw6
zHB9{ohT?y}=z+<v?Cv(7?TVd!bzIr=X6xOyIC6IV)osUFbmlxdrlP#PX4Y@IyM6MM
z_*{a+%m`N-F?%NQ=Zu*XWIcPnfBpTj0}K+=s@FA}r8cxA(K{dThC*%p`a%9RTL%91
zo>~$qw>8=AKAVhu&z>;tUkQ5aQ5dG#mUbG$Yu|o{++#f4{lIHf7c{BOGda3Z`UKT}
z^)v=mKF3DCz%jazQi&1ET9`cSqfi^lRUp+rs12C~z2GI?nk5tOcixUmyg5ro>Pv<e
zOZq&^IvUIB+)IWsuwv0hdjBQ6i?d?xrTd3uTlMAHtz|<CNb>Nq6;B!8&Z2H5$fRn{
zQxfT=J|nudC_O)JaJ&sW)$w9?W^LF1#ku%pM^ns&_yq^<SzVcrDx-6k=gZ^g*XXh!
zxxdzQoXENwtHn8Mr###Az1~#1wN;9)7pPAa1yLxErD)Dor_qmwd8+|I;&NhPJ|>uS
z5_EZJ<I%>;w;YYK>X?ubgl=A6g9NcLu4d`*LznT&rJxmqg^4-St;Y7(6lCM91kyC8
zzk9Y59Pr*ak@&_R0j`{yn4f(ckD2%UL>}F4p2u|1tkw@#t_O9Dc=VnTTYKHH{dpMk
zJm=%ABy)arWd^a?Lwb8TXd5Ec2tA&Ypx<?Bos$?{)LGaL;`{`Y+8LYKfyE=<tAEm|
z`6O$(fp~=BKE8x$aBJhG*{J%3k$$$TpSS_K*)h`Iq<LJQIJ`?#Z@aCwsg+k(KU?>}
zyvksHvs`VE^gFU)L_s#Hzu6x*7Y<{V{pQxHwk+bmIpi$$R(-SY{Fa+ZB}qXxc7`%Z
zlTH+5gYf;vqvhX_4SeP2%x^bdeIL8=eJ=hx{^b5m`#t)b?c@z;PV}C`vpJ#m>G<5b
z1gU*y_x;lkmclys&CU>Y7QSZ!d$)4CPMm4I;f|p-`_f7C?bQv~Ne1SCPkTXrd%-6m
z7vCSisty_-?Mrl$AJl%4uQ=!ijw(KZ6m!2QeZq80&7H~FXwTgnrQcSNEX#d%kiu#1
z<8VYcp8m>7S6nmr@wWK~PW8d1OI;7d7c&T$`r%g{hAWb<eu?{kH*kV&<YMj+5lMrH
zxSzi)=usK+NPZg<S%Xsd`hv|>535P%5k?(cvS29?NiRlk%qu>i8~Gcip;bfBjig{2
zSPG_*8P33S5n|h0pb;gg!5zzI90q;pLo>ecH5n_UOm()FbB*z;M&?P{??2e;v4Y0X
zEtlyia~>@^Vf0FcK2x4eB-c~lE3H;}7NJ)eoZk%k{Kji+2h9$B_jpl)ikm$x@`Zrz
zjbdUbq_IvXg?^kcDYAc33mIm#bYIEpey2=YmFMrO*P<$t(~zJ0IQ_Z@r`$b_vOZ2v
ztEnz@Lfl|Qo?Eb^dj^~TY2_8R6WlIF5A8^9@?N^dv`ue{di^wn=C;tKdpmbEmaux_
zphy1Xy;Mjp(`i$4Ki~C*`*&}aYxHYJu4OXXPk&xM*r)OPL?F`G-6VYXy+x-uRnZf#
z_(gv0S?Mt$-!zn3A=0BUnBQ)rYD<y*S=;Q_a!)0v=*v<nv28Tf*yZ))F`Xue`!1H@
zjohcIw!`)E@=mPiPBpE`<7fHEQ?bLcf<i;ab)$+$;_`I5fOfi}(g4J$2sdaRdL~T6
z8H<)5>y1QD6Zth&mByBke5sQzOiQ(=FNblZlC_1RL=Czl6&3S(u%=4NT8QH_L`INI
z)HJT5FYfS%97zMlo`6-|op{Z!;=<$vi{d>!Xs+Egj(vT4Z<B`JX;a@hg1>tL@x}y^
zgfZ8cYu&}#os}pdX)$fNK};1(mmV3eo97cQnq){f(U>V%TV0Zvena4mmA=fwcPAP?
zWN`beIqOn4r&Xxw%)b1@Y>rPf!Tot$!G(|x`FAa*sdxn@lX&gOv*(>sm|tJFT4u7h
z7i(zDzlsnzJIQtpDO+{p+2GyxLEpNKE_X;)xH^~AFP|&c0i|qNgnW{3Qn-a^d5#^(
zsNWnAeu^}yU-}K#SW!HzH8wSVjg3^W;?zht+)6*s<W!Am5m8pTZpU=|nZ_{Wx|2$t
zRtLY*^+N`prW<~naZ@cV*DGx+`a?^Kt5lR!`>F~fO^lcOH!wZnc5Y53o;RW-GCO)3
z+vgP5HY=XL_1S7X3d$r@b-v}`M@#;WYQSGxHy(VyP@3|?U$m+3%=3C@;{lewM?E#B
znOBzZiX)*-nK`YVq}G7D1Vig<KN}|%5Pk#(w^N6oh!5E~+s03x9PxQ!c5U|ds$LJr
zW~9J(M4nO9sb365_m=JjV4ttPxf=qtYIh$my|!^}A@?oz>JzD<imR_Y72yq=7m{v5
z^x61f4l4chV0{$&UOE2fj6S&T8ZL~VbO~Aphg@6w4bljK@h2aHXPh-6`)>-RRA+`O
zTHxqagdQUAV5!tl+z8ofF)4XC^n6nz(zBXZA`1;i^J=m|(fo=SXLRdgPvjWt>bG*_
zh?}ASiPa+7s?eFa@}7?P)lXD(qWveiAL~emTf|=Gzsxprua9^9QIu&cBgQ*iSE<h;
z{&t)5>^3P}pb5m3xr62UGu%-T$-eQjZ?q}#ceta=HB5PSfr0M{fluPTf$`PPN#T##
zc$EwEO~Nf77w}&ZF}ZJOeJ(NC<a6Oj$zwyCKFid)!YdLU*I%5KEloM_UzP|wFmi-i
zrT6f=NM7^p6gn54KIC#$E}H^(up~u&??L_wIL;e(y=s*?vvl>8#Pwl8-nzI+j58xP
z1)?%royoiQ<kW9)$2?=!MA*2Jh?Vw3VdTBt)BRkh`^@l^DfauUqU7Eu`nLwXU_sbf
z^@krL-d~YI1YyZI2|tV2LGK)B<yF~F_g_eXl9>*NT@6h9#+_NLDT4hKy#ebmfaWEY
zj#4B{+si7aUR+H96QY8a1@i%k#$Q9=3_tfQ>DXN?xW5uvmc3pZ>h2UNslm-3vS;PI
ztrwBkxqiN#ofKE~m5|$e6(uR7XuRek;_(6E75gqr>YIxM_uAvFsza+YE+(v5_p;#Y
zgm?9g^d7#EqXOEfq9Tu%&+u;s*xp8{9P^aM<N5l_C-!M_T2$iBh&kO*?L4$4Dauud
zzgXeg1gv;|1Tz_144h;&%y?5)3>WN9F#Sl13cu*gWWd_>MseY_)vg7V@)}}66g|mh
zt;uBYlZ7ifq1dFPpEtdPLd5aUeX!(j9@0rbtH{E7zoL1$^^J?+Hi!krw7{0-%A0ZH
z)9;*l8}pvt42)2ot}ztJ+eG)V;b2b=#D_G!JZv-BMbX{V8mzbVO}RLKkX7_w2psZf
zY3BIWmj%N`^}JrK6R8Nav>&|hmR=0x&sQz%>OZ$>B^@g8HT^3>i}?Micigq8_wm!W
zWl<j?HrAT5lHD7cYHVF6!*1|}?jHw>6*OxnX9q+*|0YR~tM6%$1+k?R?o?=2)@oGQ
zqp1B;C4{cN)x_^}3xv}5bJlui&KVnWzGKRh^a$mW&Wkc3y>!sv?oaT%ea-|&(`PkS
zdhc^tn}GJUKyLaW#849RwuDOl7xeA({lht0T5QUpRp*Dk53ihxu$zdBt@|J3y=PRD
z-PZ4YB@hw_CG;XCp@trM5im4CniN4SAco!qqzH%@dau$2q;~=72x90UprA-qdPkHh
ziYRZq@BQq3zh^&XKkpgm9cP@w2L^-k;bP78pL4EjuHRoKHIw9H)8gfeQyOh*TKQu~
zeglGR!;RN%6BC1Zp|0|kx1qsN7f4m7x|y;#6rUx12Hl_P38($R?XwyD>G|ZvR+;=;
z_3P#d*Jo!-tjm?3TNjMO1Y7Ajn(QnX4W5v_C7ssk>7aWQooLISs0mja@4`CVk5KVa
z7)*XP;);i|$DPehJX16{(Clwv>z)4U=^9p8M7?vd`#fvXL!CqJxJ%7CPM);xEA%{}
zz6;f~UyOSNQy#PDYcH-c`3_mcYX-kz{g4Yb#SKz9`$oA~Dn3ik*e$N%-4(7N1x;1r
z!no!btITMRO}dz%N#Q@YZu2QQ7w21e1)+XQGsFG+EZcX}BP>2SUJ-Qsa_M~Q*hqg(
z_{4_4R#Rk`n=c!BZi*1m{!FxnZ-m}uNuKj=2iIr+N6Q~CT)oLdSbdT2eRe(lm$J`*
zR)>m&K&7sAq$XbzFO2Z?Hnn<&THypVimcUHljdzX&+Ww4ob~n<i!=XFL(7+9kd}M2
zMdWeamd9<SX9b^>>*rnjU6Zp0LO1;$2CQfeAB%qU7#gvPxX{q~ZLl=(NUknm;l`~W
zv*}7-9p60IjhJ7ZdlD-!OdRgGuXeg^e<5zLCjPMh<<EoChgavh&JHJUo&Dh2___Bm
z@E05lI^;k5apCA3mQ)WrCe(I%qWlVjJutzNXA^D-5zY#+l*3r_I_&8?EX^swa0&aJ
zM3qjYGernpFMI(et;*!msX*6x>Z!__ttt_$dRVB+KHNEHO<;ed@a={w2c;TnnDZPd
z0i~qIOB%%;OW<`;6JU?zQz8gtccEg{gxb514Qe7Ex>(26#7@=d57jX2>NE`Ml1km=
z((2MTyJ<mJ)MW$Ie|oCRXRCj`{}TTv=|qV*XCfj5Sb{!)wEr?CLIR`wX9Nh8mFqup
zrDbP72R+9_!T9fiKm;U+02OLsc}8(@TGYRU1L5K25kT{!(E`FELgE-PjD)z<Ux?y=
zofx5$)MS*^|1WVM5~}DwOoz0EG<5$;1R***{m&3VeBBuDd(f-@V{Sy}vY|e4Zsebt
zh#G%|f>{5J6Z4-#L5P&Ze+LQ@==XOhh=}=r0R=JkulgUMAW{Eopdf|Ry~PZDrL6rG
zeEpTef6k4BMg;$!8;Ohj$J|KTKf%vS@=D4J%PNa2YsxBXE1xw~H#FBaKd*0XZ>(<b
zsqN?`vK1RT`(6&d`h$XA{Ld8h?%`KN5c<HI;lD!`{}`P5|M-bGC3606ezbq55+aBQ
z5bfVo!oMLv`hWY;{u?2jXbSXKDq)OaHmt$KCXZg3Uqg{xXIEhCv7qPYPf_E`ISTrP
zI!^^(nM80798$K2=xJ!9ufgvgDK^@?ue?2Eci5msq!QAS(`Lb(Od{w9_FZ<^_M!QF
zxbIz!Xy)5Qcb*}pjsc(A<$j2!V=8*fAcAYai-P@evXsrMM^t7V*{xMJv2hnF4SaEf
zG@<-y7-a|CS1hfKKAQD5rpYyk`y#U2x{Gu=Tr=?~fIB+Re&Izb`wOa@QL41PrEW}=
zFNo%rGaOB4f%-Rmx@IOlzkGI`Yja=fBj>+0caz)y%a$MWA=QnOqvKu<ImAOK<82FQ
z`O}g-tN<c-7(EaPhN$v?+Cxg_p01Ii2b2c-J#xHoYA6nBxx6rhoxI^WzBGq)bpzs2
zD|_0GH~ZBrZ$k|Mz6vygV;~z34J}xi0&(%NO?P_A&y_^PtjLTngwYvCa)-0s-9SZh
zCr_a`1uQqLp(0I@!!h7qdFwbD*QrG`7d69DBww(gVHj?v$vUAvb(%YiV<EG^Rmb=3
z?Id!smKmb;>^R9)Jb6P@^aU4ibRfrYQYzgAENyfw*n4S^|6vXWTE?L_V^W+h*%C_c
zCwewEr<uDcp;H7t>WuKZ$iV%I`~tVhz%2vc{cY?8G$<{(aZbljAYb02D?C3m0#O*R
zrkGffel5DZ#NT~Ou%aOOd1!gr-Jy!Wr=3|5RWD6Rt6QGDQgA9Sy`x*+OtSf^vW75s
z<WyB(^4zU5DDWf%W)R7(b0fN%U+p@0k-{v+S6@3T2Q1hbnmsVAX#r)XNs&;^aIB)W
z4~PujR`qS973tv+2^yw{2pVO11~i`5m9+4eULCp5;CjfJrO$qSgd}wsDamHt=K<vm
z5xINMfTu*#@rE_8jH+n_o206Z?E}f-fq__&ak9)2AE<BS-INk(t<!1#fe*B+*Z|;c
zrc(ex;`nsx{=tsi!v0SC-NZ2ISEFbdu)<^V0W73xX*Or{n_JE|{Q&{TaI}A<(DKt}
z)d$R>zR+NS9_vMLvBBsTn6Gq2^C{2aiE15<Mw@D)K;Zo^;HMpzxNLY#nm;D!N9hR|
z;vMWFxDRNf)e5#$eom202efJ4+=E3odhRZgqw`ldTnHR`F5j_=Qa_X=mzj$KtiW|^
z3kPE%N)L`EJ#$Q{y9&=}d+xJ8<NQkIkO<D&bjp<EIvJl-9*!EpbFfgUe(rC7e`rOm
zM3;nBGK%ER*bQA->_*qFHwPu|hN6{_l9u7L)eK#Bf!m;lwFS~^VO<7T+<ed3Mxqpa
z1`+XfndBGeekX!%H4G!7MsaoHIa7RXsL_YVBM!c_jCBZ<VJOPai-m&o#NFwJv^I<N
zRFI)aLI}qdgt=1>)R0%hWH0#<V}gxV7-8!^<D!ls!B|dtAP!jo;1chIP;y%u1crq2
z1hcT5AH8G~|7?3%b=O=obld~=a0Mpd-Q0hfyC?D8B^x7=f&Neyu%YiYOZJa<gP-aT
z8w_#J&KP<#BX%Uxc`A{QC6`#0uDlM*LBh-#1bZ$r83o!%to@KqEv%6!N*nCvTZ<22
zwag`?!$5ZTLI;zG=FN}&Dc5C_%Jt}z>XAz>^Vm<A?jRPEw0aS^^7n<aP_7<rg;_ey
za|WY=M#C3P9&aqNtI=k?=Ch#(^Pw3i*;s>Af)L$B1D@LBq(MrK)coIqN<Oe^TvSYU
z(zQ~bvuiZ6@$w2S#0Ouv0E#|E**y7qy6%Eh91Z3?)T6L<P^@7zdScc<#XN%6M6ivA
zf0i)S%t4!|u)R$(5Dj7Kb->;iGF=GeW-v7G;!xSE4NxSbc!D+(u;dR$dBYeiJl};J
z0tTTCjB1D5*P(0^`D!fr;U6SGXpKEKT4cHUV?#AGceD0_yooVQ!x)}SH<y;(%>0uz
z?E3pxX3cAj$h#a6iwOV3whq&p0LF=1Qgkz8;alY;KSkWd9#8e21)DKEuyFlB1VpDW
zy3-4MBi$d~Vj&vKnvi|(TmYx`hoi5eYL{Vm&{s$w``A3U5$?Lnh`YJMw9;DZD5g$`
zN!-A#sL-LriL~pw(6Zy~S-$Fkb=~=snd6RcBQ=4?L-W5*j$Z=QwRmWDB8M-Y0J)|X
zKs!v!i}}_`PTR#p{fU;^-AdIbuP>NUEeJ%31tAPztgi?Nos4fiXoF|bSBIB~7>!;`
z{Ighly=Au9Z+&tT8j2I0%bY*H^<$|e6K(?}sB_;3v<>Q#Q%~b8cb5hY<LgpN*~tKa
z05^GEm)1PIDt7<-kQMbo`baH;{qgr<2ZQ>o$>B9AXYd(^ZoE{|vfjGlEbE{?lV?h0
zfGv7m?G2u~ArC6*ASqBZ5^2y-z&x@c>)geDkL<2uT0R*Fz)}rOc@)WwIP!*c58~IP
z()^xLkP(7M%M2PTpmEXaJXx@02kDsGu1n}pfG##yg8>(ZyRm$Iq`~ePH6FRma^d;A
zJ`4a*5?pN0EwJQN*Gr7o#yP-Q**jp3sn0$|6O9-^4d#t4{rYzVn@^CD)nFjf@DoGj
z<Bur=Ai(#j12?chCYUDo;?3!2CUGR`PPhj@(qi3O!<vJLAf=SlU%B)K0HVybr1M;N
zcqT!>YMF21v#0h(Z@Om9?%+jV>F+1gpL~Fvsd|x7W1{d+d{;#ij@wyxBH?<dd8x}%
z!#}Cq)7x0+NfQo8iJUwjTlJl%rIzArqFDoA1!j}m@0H>_;__4)E_kge)&bxpR&dPx
z(0Yn12%kr#T}W3SQXq22v$5V{?Z=(wj(4AYn9pX{#mN+NnmfG!O7Nzp*$J{LAl&IH
z$AHO&(}eCMS4_;wpcQ}>d_}zmwhG$6))6M`uIgY~q|}!bNgAt;z_*xy>8`kkMhnn-
zUb@nGSn3uUbLsMz)+bYkNoBzsM#KK}mxE~~F6{C0s-7-9p8Co!`}51g5!_5=3#}<;
z@1v0jxzIrFaY|y(k%e1;j>y@te}dGR05BR{DqzjwY0x)1^d_n-J%sfYvS0Bvh{~;s
zXHU80dBV^hk$sT07vJofDBx$=1iuvluLXQs2ow*QY?}!b&3U#>1d0a0Com1(3;@^M
z;mrg;<FEL7t03lYHZ&|jw`JjID_g({!q4JRibY_U$eFEdS@F(^?x2bYTp|D{B;w@C
zf<YKkbQ6&iOwO1WEI;ZD%?n13J}B)EL5Bw@0)UY_F0K|3iUcOL$gu#BfF}_`L(pVk
zA@eY!49^rynBB$$R9-M+Vu%VX3~dI18HT@0f8gq13wM9u6hQ(402U;~A06Na1Kb?!
z7E5jJSOMFHl(fXTdl?Lf-jD=9fO>0*d{Z*Edz92xwq!`?E1#%u&D4QJ_xWb(l|(YY
z%25<U^_ZVJZqhcPA8v`oTgbxMHe7`bDTo1rwhF3F3^pSJ)gx@1@`&cnF%SfqA(Nkw
zgRS5K-YhQ|?e1h44o17f1@nThA%ky*$Gq8yq1p(x0a-KF0#^_aP9`w47VwY@8@9(W
zB7nMem<j;M2|R!sf>^MS1OzFwJI;ayY`Or`zyOSSxLx1y_KEQC4mg%XP%M%>)*S@e
zb++&Y{X|2|2Lj>=u&+(w{pp_63ZWnb@y{Vp1ke_NgZtqU5r90J+z0`HMm<x`+~beT
zK~RLV(|Wu*06+oquNNV2?<EViCW|^+XN*$mPJpEd*6X{_H{YP^1Z$~LFryX~uuC>u
zOXUmz(eA0o5gtlk$-uRgDr6+0NUCisDhvX2VsF2+3%8VwArdDm7i?Q#pk{<0jXRvk
z-l*EO5g~x9^ZbMi0iI(UK|_Gt0e%AjN_K7N%_-OhD5|XD+H2uNzESB#xZo%t8VN?=
z!NRo^O}h}AW7`3icwiS2IzeFxvX0+%PDFs=coN;r2XdLXM@0M1OXM_{$ju``<My}*
z@)0=g2QLQ`9|2$x;(=&Wh^iHi#1Cfz09p%ou0(n!BXZuIMd4Hd;G!cg4gfA~WOrX8
z51dL~o%YlM0QZ)VPbEH+nYle_xu)j1>zBwkTXW@o$aQ5wvZL0-)9s-Wm@-oo<1v&B
z>%9VaD9d{5+5>MEte*qG`%&vD0N6Q>zE>VZJLL+DX3VoZZeO5yKn8D;k8ihv0|43O
zG&tZ6F*3_E3Xd5^+lE|=O(O?z?r}gZn0q70!mhBE9C)hWP=f?Jo8`Lu;<PeIO#E@?
zzQt4Iz+MZ^INDQA9=I`uyE_$jgN59AJ%?M+^R{A1UuGiO2Lw&T-HOJYYCq_5#36xF
z0UrP;^}&_-n4-(vvT%3(?NV!PoECuXvr)>`NiZz}lrTe?QAWlHh0^9Zu3G_thWS7(
zl{5l$XVcmN;j1hQawIrzE!b88MJ0JLx58smqhcOu5g*2uG!J6f6n7mcGFdCI#@L$e
z#<Uq$we13C*rE<LJJyyWG~TJn5bW#&u-4)(zyLUg^hXl_BjAu20CVxF5Wkzbd`cxV
zDH0DrF~C-9af17ON5zPFzwp(WVn6@zK7ndMCIIY&JB|*kWleOt=NYO~cI=PaUkjBq
zBcHCdi3R{^fS6!m8&_>&Mx$tl@+Q(K0e6@ZKhdCxGWU8Qt(C8`SzxVSUQ!8lH(=MC
zn65`rc!R&P9b4IcW>xv9AAX}BOfw2l<^>u0#F~YJt?)&c`zV@qifUWIlQ2;51fUyT
z7;+KLHwto+eKOvPi${=}w*bS<33C*HczEM71;C7jggXSp*Ag=YsSyTZf&sRt!-fUO
z_xy2NO(pw2O^(6=M8_IIpM*}WCP7(X$FBxv1&XU}iLLY}(ItoIhINv+p!r+m`f7E3
zsNJk=?_#|#U8TNjW$T7b8)JH&L;(aXSToC!3}d~r`mE_OByTZo4bD`;!jx9Ba2hMy
zYsh*j-Aox>y!^RBv>{+=NKs-%L750KZpsqOh*O|wH~tC;E>KL|f3f)0291adT8mxW
zpfEYR(P;MA4sHdKuya$v7YAhF?40hc-DoP1d(yobAkbHH<9hQwXPjS*=idF=zE(i6
z>8|>>4nZ@}c3X(D0O5K}LgJ5{P@PbaQmJfsE9ArrKtPq#ytV--6Q%cr9f>mr7J;eA
zb$WQtsa)BIjLy(w3qfhs1V>oecKQbsoa?(|Adu1EHbY?ev8`zn#3(#d;he3=C~&js
zMQ{_`91*WB<j{!hSiWx;Je4i@6}G!}e@E!Sb_~vmIT3To&7>XI1Pym1vTOrz2MWzM
zDQetGUmir)DrohA$$=~F+5Aj>LOuy+<l)N9$y1XA(rv>0beMN`ue2HY4AwsTERV9t
z!K+%{{#_y|unXPJqeRU(jsZY5i_JG?D95aIj8(MC#phlVUAM!DWV#p9N|jx@c$(cR
zL)i>v7r65ELM+@?8{Q*xVq+@Xqj=6%Tgjm$5h79xnLg)mnKHz|Ctk!S0f~UbBOp>O
zVOB#p3v-YW7NWYFt>D*ZtLw&u?dK;8S4EJ=kA_{-Yjz31#bO|;<s>GxVFS#sM-<4t
z<w?f^0Od=?bJ@7$h1*(Kh<t6byh4KdE-W5HdI%e!QYxEwd;{R$2(`Y6$R0@gT6?+Q
zMO`4x^d8kP8Hp5v#0g88tK+@7>mI9QLxzV<8B#@A0nn?j#Mteu&#Y{p3)x9KcaygC
z+;WH48^$y%Wtw5g>J2FdU>$*G04YFbod<sYDH8&aHDTdahJf}6yffDCdfM<S7rP%r
zIIY@H|8GyiW^h8~!6<_Bt)C;9*5nESavKL*MnlNgp)lv{fP42t-)!`{PfmamL)@PR
zGZO-wpW>W_Clm5&=AhwbvcT@wmL%u!AXnQE3+q$@Rn8h!Ha048fPDX|_uK;5eHZFp
zOGYzUZd?9v4hbR~%|Bp%ZpH*kZ?`ECv8!)+)p?_mG!p&}7FR{+zT5=2u5D9qOE)&7
zK$e29=D@Gz1yhdp%v8R*E^2%8<9m5C$iR2pqfuBbvvuN`d-0UM^^1GBB*Mo!*|{$J
zInRubVr1kmGI7m**0Uc!irJB8Sa`4n_+qewDooJWSJpMcsYS!q6IOK|X0uJA_zJTs
zLmwips=+u7UOyUa(gbf>Xv?_-XW;xWC;#!X*~f{vd)z8ZymNQHa(I8=2?UTZl{9MU
zU2ycVH7s}G!P=s1_4`IF7-qDjG`FmhYbU_zJ!kb$BAyILB#o$r;YYz_*e;1`Y68-s
z`N8rPgS&Nk%jbVBU+-AGS&d8QShnh*9s-~@F(giSm}j}~GGf)ZdcpM9+7c6-3xV?z
zBYjj$g0O?G5;PG>fLR*g6^O7wt_N}Al<@0_v#+E9)U@Xk0rEUhm?gpjvyM`wNDJJ|
zFrY~4*vy{WgePt0ecmik*~+Hg$~4$2%iTIM#XPyQm0rD7%el?5LhkeqQT=PHE_eHR
zpqY{+#lzd%&DEQ2DxZ4h82k)b@zyARTSTYWr`}(mMnBUDsBiN=x&|BjG?u$F6G)el
zPe1+{G1alNr1F{bwutWT4k2)RrQ`FbJG7~9QTMHO$Z0?CSbq6BhcHM~xz=e(s`};l
z*B9V2A{PS{3BC+j`~rHi`_*74s|x|E*+snExy&m?HNUmRxyMqo)4R{sU`d*Xxk<6N
z%X(q|c_294oxdQ_jIg@fX|OML>l2QTB1{s{9-iA5e|XRq|5@bWp8Wj5irBsi*I_U9
zq1vs(R)fQfPY%oD4|V1bb6+1Ca2<UmmS(@NbN)fn{_ot*{9k|nljiry{t1X1Oaagn
zef|J|m6Pin7m9cm&w=7W@d*g2>xpR@ifbE5>R!R>7+|m7x@ci@$<oHy*2UDx<C?3N
zg~z?yUjFvJ5B`<IRLG45D|u>3WRZjtC?89qs??3rmz21)g;WHz-mE(VY(2ar1Z}!>
z{dKD-FG)_kR!StqCI=1!>Jp8MP59Y_WLVC1hiW8079c~YE*7I<+yV$1ei#jc-$CV1
zSot5%^MmN0Gy^Dsh;|?VCnx8h&%-1xPJAR<QJH^uBViO+WmJ$zq?D8thl1*#Sn%IK
za83O`p80P;aAngQ5AM<vA6`#S4|~;;$nw^>fz!6M)v>bIvvxGH{R8Ii?C}qB_aBC$
zL{7J#pC9pL-4!3|9`bLj?b!H$_}{GU*Z}HaZ@O?_M3g@wF_0=5Pm>!-Q4$9&h$b(K
zC+o=r5${tH@9h$AQl_M&w6?bX_6OShxw5jdv9WP-a`LbIum5-W9q1XJg(M_2EIcAI
zDmo@ME<PbKDftnRu#%pUnE}cMQ9jAbr({!>PAM%buc)kg8j+UuOe-h1Adl*Ts&aAl
zi;kCs&ZyeD%!Z~XEoxeA?Okt1$KH1LX7vwT7#bdtc{ew|P}TFkK4*YUHDjbrcJcF<
z-SL(5$pRtut!-tgy`R74mn+`GR|~aO9!OE1-WV9YO2Cn*ejg~RnWhS(l5)yEG&JkE
zOiyFh6Xa1i_$X4b?_>bEQXD<v%ZnxY2kAJkxwL*TGwL7C!s^dSr<sf!WT=D)y_feg
zF$!il+WFSnu=TR!Fjpsb#--wY&9B<D<<L(KS1YXEh0_ncb)l(oI$I95u4J^i(sK7e
zr%=~SpqB%7ND<%HoHnMX0H(2IuX3N(BW2P3wK^qUGMHgusuG}3zkcO$zRxec>&6>T
z3w0~+c+K3|dS7eudT3@6oiwXKQ2FK#)(8!2yMHEoMKuTo;Ym*LU8v}SEyrAM?#Y>T
zf*{e@BEYzF{^-+e8~t;@re}|i&(QrI1gw3@?_kFGs`nD9JY<zT$cmHZ<#*K|j7tP^
zI$rKh|ECSdxi0mC5s!r=PS;1gPenBr1)<UX(ZR9W>m=SRf{0E~1RALt7RurdAW-N$
zLU30iGzUc%Do^y_z+#q>6s&|Npl)Su9&WOhmO>OOKaTq>I?g>~Nw_}FmPK{^SsvaW
zTdN%j<^@nB2+=D8s%bXhXKK=PURGcPr`Ko@Nm#8FU)uG3d2psMK><&KjYN<j1g`7~
zz~hTr?H;=^8G|#~xTCC4H~q=&!d{tXvEx5)9&aEyjVHS(NX14$6roj!wOrwL>=FRi
zcF%#)WwYo*%fX#p6v7PJF!+;j#jR@0m0B!BoM6TNL==rFfm0-wZgV$uSP56Z`OFIP
zi(^VILX}9aV=F2r1U|Q9;G}~o-``~`4rvBmhh1FR927z@!?bI7=@Rq4bnr%|i@!XP
zRa`-dwES2BIDoxRBo985Yd}dbloH(^f5L0e2w3)O+N6)2W<A<NMcmyUWu_t2pKr;U
zPkOb0P&EbiOiN($Fhh|`kh^Ol_Af{lst#U<QMzb%ihp5~LJ71iU?9}@`t9$joDCl!
z)wsGmnnGQ4waK+;B<p#0MDbusJ-WAocSL!O-7~Mvq<i;|U3uX=6A7q#qA2#SExgl*
zXFlV;dTwfO#-+`5Wl;=weHYGF%0B;!YiYt8C7QQOSj~7DfP6JNpgiz23NQ*r`3ZlJ
zn~(Q3&|ZjiP}W|}uvdZ2+Tx<Sf*w77A+|EUs-jIUj=9S*k#nYB`-P+ddpx1D{Xp?U
zRGA8FJEBDe*p2R~`1v)1O>6FBc=m&HXZuqf+i2KA8MPuex$}TMjQYz9&aF7@3&2sl
z-Hl(Jyw(g|-G;{3T+4VBG^>zg?B;k9F$4*JFA&7E5hpz!(Y`Xc0H!X(!!7d=>w9s5
zv4$3;ytN=C9%~kYG0Ng(s$}KB1i@X9Q<5^UBg|985|0{$3K1+0T7;PJgyz+Sf{9>Q
zU-ilb5R+yPgt9B-AcT|qN^@}6i#VS*OZhZG-(Uh%Sde&R=g{2^7*skQp{X8~@Y;b+
zs-ocH;_OF&Px8sslmtHEF^~3^Z@&sPJ~r?Z50b>OUzLtdHe9L5NhyU~voAcU#$&}E
z=|_I4Iy_mcc7=OYo^Sk$@!6xIPF}S7;9$ST-IQ2bJ|U^XSEdFfsnvS6f}#h5=C6$L
zIbQmrt_m#X`^MrOr^Ppe1@#&c^%+(Q{E|-#hHb@)Ghb6uNEbRjx^~wtecYx*Ml)o@
zMaA=R?r@RZOUV(BJ4M-R!!X5ngNfdC2SN+u#q#sy4ENqjaei%IKfho8rm?4<FYc3o
z&No3rH$+3;{qO4r2qA_rvXuNSuMI)eOhSlpg9P2qn&w{SnBN^~5ssf5Y9d0$BcTmN
zjLL#Ki>hx^D+-FmG$DG{I#HQ#$E7(Kd-OqXjqE>3=eJ0&>IR&=v$v{aEkRcp-G4<@
zOtD<H?GRxi*gfvOYhCf;3@@Z+75d)9!IX=6b4#eBf+jhVQQGurq~2?xcMa7%f-XlD
zH|~KZTPD1!eV++yeaO1{VoAEJVP){f=+flNHHmaUS^F0J26>5C+OtG?AuHsp8Nu=Z
z7M1T}OCvnaqj9nRZlj2tGR5`o<U&yz(Wj0OaO-%5Y@N^pQ5WLtiRo%4?x#6ru8W>C
zADq0J+ijn6(*L-zu=K3C+oH_l8vX1l8FTZX_fyXV;hQ}|_nyBwigddaW5F)l-1fZi
zsZ!?<@-<mn`*>Kjcd@SJ<CFI<{KIN2R?l5Mse9jH-&<pTG;8_`_x_~`q}Bvdbp_1)
zo^U~P*MKp=gzVjTr$kuonJ!<uF-75c7hi9!w#=y!wcB_%GekmDlhTMzYP<)g>7i;W
zV#sv-uJ<H#PuW)QGTX~{eV=+f6un&xI1}FW&yn7h4b#)-)_OPaT4P@_HCB(G`Q2bw
z=)QRIu&&VT+gHze>VzBHb;Jta4i%D0p?j+?N#1xnoUBpL^S(-3mh0_EXs9Q0^^=w&
ze7|j{SIT!MKud+$_|3<o10GPEg(^?-=sTH1KH8m|nr_DJJ*#(eQ4cH*6{%ad-@E3s
zzPPEC-uJGkNc#Tqu;X&De{wO|=W^wGC$kd&=BIsnRkyx7&Az@a+1yd=C+_U{CHnfi
zsOm-+&lfDXW8<kBnI@~0Gb%ls%Cu>}ps$!5i|da4y)%79vJTI3nC=Le%w`?QDs<{!
z^Kd?x?ENVHoKJtt`&hBPjdQ0>+~VWw*FO?g!mC;<>%O=>zd!fWOovdM>DEWxo(mEG
z)LHrc%RTXIei|-^uKDwO-^>C!m}}hnzO?O~`UJe>`r<Zlc77j74<HDLyT77o-zRMj
z=oEKzALddzfK3K;$<?^O7H>bGJPzo-@Wp-fg3=*^S@|&?Ocj=K5mf9cwzR;a3Q#11
z=xp);NMd5mvc-*Qg9TDF!5?IZ&D+P#%(dw&0%`;W|4Qbawj%&gLgW-C)RO@C4DP(o
z)a~2KZNk&l9(xAIE-z-4A9JvPfQ!4whfZ?O33gRWpjzK<xtmSrkRU+27BuAfpq;=M
z@KId+#><3X2T7a(bC(}}Jt(pG%;|8x;}Xpb#kkg|BNXTS3so=(leficg$FLKe<P@?
zd<-ildL9rCX%iR1J#OAZ{yD1iM*&<4Rt2j8e18=5!~&RD%@eC!IXO9ERasnITv1Wc
z+}zyK($d@8J3Kr*F)=YaJG;ERyt%n~czAevdit-Ij*zoFWW0@_l2Jvq(*l{g2o1z}
zzNtI`-O*8dt!hoU+NUj-7R}D~gto}wnvHCf;gfNVqibPPpImQjEp^n_W@z$fx;bR}
zKXp3D^AJ$Bzp!{qU;2K4kDIJtaER7}aFIyQ`ws#yCq&1DJroN{^h%DqfWMmN9h<3Y
zRVbKS^0?fnI3>TVyz*IAfhK|$@m#)9x6bh*wII!lP}e7-op)QQXh~`NtZNC)_40@}
zz}P#N_ol=C)0DKphqwI|3zkb!D{Jc?w_YwzcBvp%*Y`JzGMWq)L;7o;H2d#-mKkcU
zK|Xhcy=hraQM;uSalqY`nNf)Xc?okmDD@=eD}bp~?r@r00U(m3PrO3x_quV?X&Vd}
zci?tWVe)jYCh;paJP8f5?}Pk-#fUwO0qx+9KNrfWqAF9I(FF=2qh?2A*n*~n@e`zC
z!}hV0lMGgq`HiJ%YmcCC1g|;XTX68Hb9K1##<75vV!Ii!Kl|NA{;|ZfU}Nwua196{
zE*5cR|C43i-rgoI>#twG{#;hlv)aK+l`rJCN7~M;(D62oxegW8F54aMB5%B0=Y6Zc
z1bjIo<hg5$uq6x>-5qpMd@@?*rStT9%~X}o(2oDhg<4-dvBz&V8vIA@w9W6f1Q^uJ
ze)-lO_~y%xGkj3+KUMoFscFP&KkIRJPA;+9FDNW3F8N!vUtLrCtggPHv8lPG^?6(S
zAJu+WcTaC$8YLAaF=JBD!G}k%l;l((s<C(D6TsBWtTH8x3YeRIyQr|dx;DSLCHraZ
z^TwY1!QuMCvGn(oFDKu5N)s%xK@$5Ad9B-^u251EUUT^cJOGBVs|0jXKkoG;(?p>0
z%|@Cs<Y2O!Bt$cUm&qaqbQmjSC*VdY-Q|@JsDdFBlvOUfE~PQqLw(nrci(NqLZC1P
z`Mh_6{SfS}>#G@J;D4;d3zBp&J?O?Cn~j5m<IkOT^X5%^dwXwh@4&#ozwWxfZaHE*
z_vzE8zpl-HzVRSu3%vhZu2=uS;45N3_WE~s_HO+B#N^cU%<PAc#O`cyX?bOJZM}<*
zo^ETy4#7>k^BG4+Lr+4#e|U5ZeE;$7LDGU182|8Ojr@Ze@dgQ=f*I%NyL($L>N?s?
zg9TB@7<Ufke`@Y-t(nAA`pAJDpQsU<BBV?0OE6XqA%(NIhq4ym?syDimB%BJ1nBQ`
z)1e7atZHcd#T=vs0pCdiIph5lO92TEfg+F?D@73JRrK{~+IBfm6^!(^y{m3>^~W~f
z1EQBwbItrqJPDjrZ|ZYUcO(@95}St)>IQTF>7_K3A>}+bOtg1>lcyf@+un5@C?nCP
z2K^%rx=822_C(PQBd#JNBO^OIJ24cv(Za;t$*E#2ps2;KV!*9tCUnV?*T7NG$XV3P
zL(u%5$j$ra=H^aLPQ*YF#f6I7Mq=z^F^+K(&Plg2UwXvm*hCi*11L5&HX`*2@g(5+
z%dYH+)4ZwE&efk2pMPy1pB<i@{e5%)=K=ID{*>$t`{-Za|95$7($&0MVJQ)humKP5
z+z$$N=EEb;{k_{yNqt0@kr~g*l0)*B{a?;cTSUWLTk(7U*MZd#1*Emlnuy(gX$yq^
zc^>oybJy?)p#|veC!u)tdUC34bgb_Q)x`AT63Og`=QS^uw<cHD=ohy4-tYrQN4;!J
zoBOAYJIDO{-?y|d?=RrNa3S`K;%su<3~8d-Xo~9~8VKM%Wn~o<Le7MaKGhiRA*234
zr<7r+x-<~gqDKm|;^v8<MnXHTMC#(-2tFE9S@CME&wEqY17xsVXD9*gf@NXT1T5EB
z2|S4cYsI*&UDR#``OE6FLFU0102$!-nG*y`P6i`~Q&Pcc=x7+2>FMbim|2<FIEW#^
zO4J7wN>o&oM@)uSLQx!pA%+J=UPW11nd5>PkDP{p!bP-#CR#;bMp=zZ3&)}3$Ytb(
zQZpC1Xf9&pgfa^dx#}f;^S-90rjCw|hOUvRsj0<nTYrClo|_@)n|OYkcyZTsarbNt
zE>!AHnv7qm?EMN1zF983O)7#Q9n&WhKXg9fm2Bec^T{LfX%h<RQ_2~WN?9LNinlM6
z?b@WZV2ii0m4~X;Cz`b<I`t<vT7THpoZN2z;aPK{)_dwi_~F<0gBXx0si_$m83hG}
z#A>3gy*;evB&OyheE2l_^=a7D&zPy7NxdgILqD>{Pm6j_%4U8(oBLU@{Hu2PSJTd~
zmn*+|dU{^Je*O0C+nJe}f%%_ZJHK8p{ha>t>%+mX*&k<rD&xxMpKFJ|7EjN%zy8|!
zaYhu%gMDJ8|1FRGN5M=ybMpQ(3we9ozOJjKp{}N`p{0BMwnro}3q^R`)KUALg>-Ia
zWS3Vs5{a2L1y>v^8gfi)TWU?q8XGJ$T05&XEM8PR?HVk)(wF6y_iC&_$899sN%QSY
zzNXVeh}-n+tmgaq(dAj4`GL*l;XaGc2fd9Rgo90u_VVWMpG_T#zo)yIRrrw37e_zB
zaPjjKr$cS_3m4nD^q3qz40r@l#e8=0VxI<9+R1nn{DJb`oQRZj7QA|QFD9mViCH<N
z?0t!DR+Z}?9BsAgZx_D{YaLv=12sZ!5*XC1dASe;s&6}48~AP`3O-LDBu$RE%<fqx
zQ{N4-ox7T2c(#7+yI>@Bve#8_wx3#_qbXhn-uo^ad<LVg>fW!UqaJPO^wr1%=0V%V
zuagrmy=O7h0#TWxqXLIToXDaSFB`YhUGh?ezb){UE>ka2k7ZNyKZLz6I3i9Os2|lD
z+QkE;FiCkBrZ9qJ9&SaLP|m-^0T|8zNOdx75NK39(T-@aK}PS*snn{n?$1g_p7#>Z
z9*X6VAfaX#GSLbKZBX0TCVQSnfw1SokmmicJym9~wMrfy6igv$)KC7C9IP5LdI@Tb
zP;|i0A$deHZgY^k!#Jq<Ax0z+qeO=SB3<-0KDtAJ(2W<;z=R`NaOh4J_$ib_i}90#
zkuO3i03alU40ndZ<T$63NJPXkL&yM_B$W8RFRCz=&2P#OAqQa8$bYc{YZ*3Th+sS^
z1QZPNUCJZ?rhN*@BnLkax;zC-%98Q}yS#!jX9@1A1&O~Vx*P_lM!P(d?4DyuI9rh2
z)L0uvQpEXzg<xoYFYBMkMrvYQitrM}z=J3T#5aupCI)ag9UUElnVl#D#1F=ENTL$Z
z^N6vb_=$SJgBJNM38GR&Nf47D9!E?4)&m8--(sMmPm}?o0H9Tki5fu69_Ljr^6A+L
zU$z%9bR^~wu^WC`dYAtcgUeTM67_&sd)&Bnn<xp~H-d<gAZ~>xN&*HKB4Hmb;TR|B
zk}T?5CFxQs=~6A}@*Lw`EaO-5TO<M-uDK-JyCnO&B>yQG(h&rys2<sb5u#v7rVxG$
zM#?x*EmX4S&Sx(u=dUUkZT~GtrL|nipZKjDRYc|ZuGVp?UH4l#{F~ns#Y1iA)Nbgv
za@f898SIiw6pzT1WTJj#rz8`1Wa^W$)Vh|x2}xU9aPxFb$KQk`bnaKo%x@t{`tURR
z{b~5(ufpNg^5OOTsnhEDz4F=97xO!HZ+{S_rG4y2+tN>>sPy!{B9bnNx-vUU)Rj}h
z>ThWo*#0@b^K0t!kB|GmX1|{;&Y!L<&hKx`|0y%;%cqOmKR@lQtsMQ@{(83a?bq4Y
zt+SsyzxC$e*TKoz_rtyaQg!|#HTu8&`@~UsiQjISNLAf1($##P{y237uYH)1&0yZ|
zQF*4&l>Rt+p38X}LHj+C2`pTk81vtw@@Z`F>ug^A`6G|zKYn1nB2jYrN#cf0l-h5%
zOtqU>-@%mC%i8$6Iyn@uw{I%R$nzCmH98xyGi7zeItp%$*BgV5dMKphCYvqYL>SwQ
zm-E6M4wh1+B3*~in=DYQQSgykkg<+zSp?80-io~e)m4cO`K+lc!|L4RXTM{umk@5i
zX^}GU;Tajv*!1uWDo6W?1Y?2PbJ;N-#tgQGhUebSin%o^1+KGSlinG??Y@3Id2Kz`
z>q@VxY$$Os5&!IByk)!Oa8O8f%-NS82h_(0;g78ALa(;FDRhdfQ3R+cro4OqG3HJ6
znCpYja=g%}z|YrGX;EkInVE1I=2}P}HrI5kd*0Xf^X~6akq(9)iS|P1bwklhk-TXR
zOHt_f0a9j>rYRgfd+vId4ywm$IZl49Y&l-(YoxWm9yu+~JvGcIK0%wm+$Nq1b3{m7
zS2pZS)_sd4OI2L^`W8BNX|XSn%LQMYpgtZn$g33Vw@jwji^yRE|GeEBDuK@{iMK;Y
zBC_sH45rYy(T&5-oqZ>$J&_niKwU^sbYul07+cbNu1ac#d_LLsJ@9+4F;La?-F%V)
z*$%=u{n2fdwyLkjvBnb_mNV`|-dl-TJSN<HQ+?RjDQIOC*rKk#tf`N1CHN|-+9>J+
zN{56!mSRPVxoOFNjxFqFR{4YM<m+L%Bz$%1Pf9vMojk7lP7JUfDSJ3Pv!#$8WO{J%
z<ZV&!3yH*Ra<<#{&tz4$wX^O8@2)@2=-UX%07!<{bnmFKT2PwE-mFR!^APm#;9_@t
z_Ef*)ke3W-sNHiAdjHMi3AV$g8_3`VdIm!n2eD+r$C*Lq9Etcr7U5Bmso0Ba0rmq1
zD)>uWY=;O91|2l&(5Uo*m2?`{s5d|wXvmERk=+DTfeYHojrW9A-DOe-TD=G$m~Rj{
zU?T#?ay<YH@!;0nvv#B|XH`xS6vsiFTqViFUm~?0)*t*3sDU{c1U(-ID1(n-ByYt#
ztNH;_^A#vR`+)oY1HHxU@A2p5j=paA1GU<!_14B})DLK;@Ag%$XUJHPYGdy2+_Xvt
z^V7q6I#&z}KBl~S@#Xb6h%_5J3d^v1qQnnJqV~KZlo!;#h?RM<khrBwAimC6gUKLv
z{k|W*Q${}V`+it>8BY=b^E%z5U+5;WNo*rs<bQY+V)<Ils^ip%2Kadn#>apHGxFZn
zE>T75R;AU?J0c!L(8Kru08h)5k3aI5gG%9B!#nf5xo!@E01TL34-b$cZ_~<OAr{SI
z?!EiKx(!ZSnSE*0oz#~=MaRp`B?$qux4(nVto1a%&<}^2M?u^P9JTUEVpIcoa1ui>
zCFNesVF(@`DxFzmNE@f;h=s@kU?wkNGI1*qOx7?+s>>*ZrZ$TP%T1S@LCQxpZiW5J
zsfZ=y49rP<ll_k>oE-kU3a4XcBPQOzr(7aQnMYKbSK>S|*%FKI3l}c1OKY5y(<P?d
z|FQ}{uc}Eb#F3`{#47yniC53qjF@|`THyYy#kp?=6B92VF81%WxTxRLKWgzxVwxpp
zS7I$rOs)T~T0HeVu@*m{^^urbmGW2rEXV&S#J>jz2NSa;F;)J(+Wu?x{NFuA`2Qy(
z5vy<t3NCfxo8NGD;xuMlFgz|!j>HHmn-m^QA)gU0!)v4^oTHv4UZk!JH`3#fmQ%-K
zBeN*WuuS@fU@|gRN{~!_SQdq3P943b5ukk;(9;7TFty?=<_s|s;2heBN^96~Sf47r
zmqH>=jnqhoSQ;K28tEHxVkR3WBCwRlDS)rBI7KI#-wt-E6iHfu6v7~sw0U)+(KKs*
z*#6xN6iP`tpiqumXE4@??%PzlK|cy5hvr2&(pfX`(Ah~a^yEccV4_YNZu8yiOom{p
zb{MX7+M`g)SOB3z6HQMm6o|M{fe#ugJueMpKp_CW?)-_z`xTGKM0P+}Cwmt_1z#%_
zX${|ihC(7=V(eTDB}Bxpl5K~dZgjH1#<_k{*1Q;PGC}@vhVaL%hZ8Y==>fWbDSoAR
z{wNmz-S{Q8kpJ925+nD&6}Eqi*?_A5A!doqqx>Jys+jfR|BPt;=RE;k$14X1vjIXO
zkx?O1B)U+^=p<zcl&&f|Ia&^`d+{7bN?B1cQ;|_ihZwEQlpu+ss6zS+x`5gx;NnGM
zq$-67lK`xIx>Tx7I!#(siONc(x*8-9-N`9kEnRkzU`5JV4dBwW?y4@2IN`hi)9Qwb
zF263#B>NjBS(d&jr0&@#(Mx!1L;@>A_%{-BH*y5|vyNhS!xc7Vf0}3!E70&l95o<>
zGYMYlj$)7Y9VY+_S#$tkIkB+;rlny6G!hp86nOYt2!rniT1YdZP{h(kp4KP`OeRXU
z+M;R-O*p3zN%og>Of?`81O*rXJn?k_@gD-F2u&y-+My}TW?=jyKskxuBswc!1Kc2O
z;NP7M4Lu_>0MIisF*38zv#_(A;{X5*B?@3f0i2Qmldu#D0EknoM6pGoWVjVjJkoM9
zD3mNpRz@BrFE3A=ody6y0B{CSm#8ESS!K0Z6^sDM+hmg7jFPt*6+O6l4N-h9oSGO>
z9ROn>A);-}qic`S@f9|-7c}>g)wPq=y(eqxDt+aijJ<)3gV$wVlruldL_z<yf}WwS
z)ZNR1fi|+*+S<Ch#(JiDx>rn0boEShO-!!nnwpvF8#|lWm|S-BvNgKw?s(bJ(b3_~
zJx32WM_=E2cWwvxT0M9`9BB#y#2x|C1t_T`6e^!yGYD>6i_%X+85D})LQpo@7`rG*
z=OkI55J{gbe%D&^n|+LquQ~mfc<&DCnZ{oBNYVE!_78}C_^{wS-p>*r=o9R(6qO_%
zT%jCaAcJpLPH9Djy%G!?=T06$WzNck^+`mJ%RCyAO&#Zp+Tf4h7fxCcNjp|~vLx~N
zP&t27zT&%HSkgs&zHU%6_ECXqR-*~N;7W9hSxSdmeyew6s!wdKZ()N$+SuiSN!5x~
zVk_p9*5_J2aj$9RLD!dLDP$odW0^8Tz5=R{QLli}p-@@7P}wcnfG5>Kyy_}rsR^pa
zmGPMiI@VPGk&AxJgZsr-FBM&NsPfb+b@L*g#TGIa6)Ha}R4yX6afMeC3Qa4D-BSwP
zs|$U*+VHX|c;iQrKJ}5t&l2387kZ5)@{K$)>`QZ*$v2)VaagK0S#G>XZ2qER(qocS
zGoqr>qcSs6V^UL66VfZw^D|P5YpRms%af`aN|VcpuL#N-t6IuSn;IG_N}pBLwKkTv
zv@{1l?u)N|7yo>@DEVzk_F_%lP<j1&Q+M|Bo|eab<LM*2jlFNH-yU|XOgFEbj?^U&
zw^lAckMC>m>+8;ZHCVGhly*2-@ngBUufMN*Xkuu(cVO!M<Us%U>+$LFSCf;IeKVg%
zRwqWbes0XXUi!H7^I&{!ZEgM2KCwGo`|)dkdwp+b@7KvHu^s%4ivORv1pHXubL+!k
zed(Jg*boX1o!^~}_9G#SR}JOwN(~Eja&#Ii-dCE}JAHiBSUFi^)g8^D+f+4O@9?g|
zVyKCD3HU!ayKbpn?2e=twj6GGw%nh{^B<gDZ@w!tsk9t<-nczkYdw^!-`2D<+v2%B
zH`3PpWu6cM=Q3z-*;^iXBz)_2d+WjaXrb;CgBQ<_wx{Zy=U=~QJN~lJ9dpKYxugC2
z!N$AFTW>mE{5alS9(r>5WyjAS-ww9t-@JTDbf+LgFW^a;92SCL{ACNll(HKOA&86U
z#ZU$_hs7`!yRyY_cAt&K2xR!*JDZZSrD&0+jine&A9^`fdcxuFoz2E_0+vj0B~gRP
zaV1Hcf7%){)>9a3FOM!9rhzi%8z^Z8Nb4zW87hon#%wYlrC3rhtfoL0M{UF%s|78^
zZ<=AI=x&PTujCLfZoSD3_`13N1i!zzf*m`xMpK(;(xdZkUX;?ylq|PKt3WTE&=hmB
zo?Mou7nIt}ctUL>SOTFc6f6Q~I-x6QueEMG*>gXOD!Inkb8uPd($BndMZVUPio7k2
zcQM)8)BeJ_I{p=#b;GjTpXyx{tu`-=sTFV4PqA(BKEo^)3O1AYIhSc^Iz(4$^clyz
ztBa)I{d{48LV5>7HsU<iFs%}EIm1Tq2h9tu#i0tVZ)-y?N<M6jB6XKeoOioNz%FiA
z!qj42rT3~2@3fJ=*dC)>^I@ygpG@8&^c^`-U{vW%QmT7L`lNQv7|#xhjGl`PZEK5n
zyOb%i!y7T(T3g?@bB8!z2$b$uh?tI~|B4n>d0!WLSC#V~X<ZY&X>C=8bn*TAwk)!b
z4f(<`TV9%*LOHJQE#5218bQva4lcUt{&eY5b3W5KoQFC()v1eKF!h`vXOxIl{NnVg
zxo@5=MMmoe*ZHxA^S5{fRT50DD715ESsE_dpE(;nrxDH9d$SeDC-?fb9W~t+<zlUG
zk2)3Ax6jltG1^Ui4o=#f;W>Td-gVqg^8}CXl{?eS-_L(rZDR@zD0Z&T{;AQReyHB*
z?tJ8L^iGZHtJX)kBL4ctgQD|a9{%8@-6dJ9?ZK==`Pwxm?`*xL>BgL!?(0>mZq+l<
ztJGdbFehcR3O%F-@_^#T7jGpH+?yfVXC-ovxDE@L`??3d@h_<&>Ux6CB8`vKk~_l>
zzi=Tw4E|W?$9z`}_0l!GQokEiykW6vp>(Ama;9nC8FA<qOzrUY!?*t8pljr}p_%OJ
z(Rpa(-EyZ?-CPZSiS9`GPsU8;nM{!Vp4Znfwhre%?rW5k^YMEaGEN((S9tNkz6N`o
zk0qn)p1P>`wHA5L<wMb7Wb*#%rnAV+Lb7z3zR)XJ)(Z?D7{%#|ea(#`A)DM(Uu?P~
z8eCX{V=Z8_Hnk6SJh*=>Thek6G}RkxP?l0xz>Uz0gMyN%o*^a`AWbu--8qtqd{y{d
zorqLC#eGNik3w8;yUzI}r)IIOso^#+NM}(xP2FAAyr@0otfKdr%Wp29bV+>LyC{>Y
z^C~5IT}Qx9a;Ud;njoZLP@jJ@bJOcOWGU)Q)QXezF_}rfB44sj@YgZqhtNp*bAEL<
zsCT*Gg5d31Mw%ZoUv$5D4Zzj;Xg4*-@)`8_MfLk-6IDpV)^#`3nNEzrOsEtSDQnFu
zGluD1S8hq}M4}*S`Yf+s7g3fI+U%kXGmLgnJE0jlTaIsdY`sti{^j+-FcbFzj|lA$
zvx^j4nxwxD@?N(&v|xoaLjnwPPn?QZ88%v?PVZiOt2ZEigJP^wGBI$Nv_gGOMlMS>
zw77|V@}dCapk40~O8RKZO5D`^Ym`Q|AaCSLmMmH?*`7k!;(GDPbRyRW>B?|hCzF`N
zD`CUBi3hye;-rr6gAPSFDFbZK(C8`Kv$c1IGl$y@y(fmx`8A%lNiJf`rdsY9H8qjl
zTq*5o=`Bq=ihadUE<`SGQbR{k^>oQqznoEuEO3uYAx;}tIBgLUAlJ?^y@~aYo=Y~C
ztK#38?(pxF047GB(0=;-T`2157<Xj@d8V01@psL`j!y|K0jw$p(}-%d6^osBt{RO$
zKJ0Llw#c66!%phZvWqyUyz1UT6|yFI(Rx>XF@5Znf1ki0cWh6ZRI3J@TN?T7l&7b|
z7IKaV)SUfhFCRV=+&w6E;Ka<6#>cPCC^DiYIaFc%F?Ek=`<4<&zW#LuT3tnMB}AT*
zi?w^7qOxr%LSAH8(ttf|km7A_aPt|;eifrRzO8mn@?P-}MSa-LEBoUKnRsghT*6-V
zhf$gB9_Z#11tW!x9WnSAnbD!vhF&7hpLdY*($!z=C99&$G$`@z8m!W6m5^t0VQy?@
z?#Ocy*RKsjp~8}xmu5`2nM`}=^PlCPwQtuny+_$Ai{(=_ZV_gx0^RjxVrh+UFD$-C
zW!Pzt*k#&<Zp`#I*+q6c3|Zftl%Iu9`)DC!dIl}8*JS>Zxy-t$oWnud@>CR7uIcQA
zv|!CVZp!r;5lG74e>O}pn2$^{-w}E`-Fx3|y|8!a4zHZzm{hx`A?=_`qT*~5Rn%9t
zx2a9R=T>HDEPO0&TSqR!?~a{2gEn_x%0=jUYAoMn%)#c7;eroof;Z{Ds=mJd<$i(U
z#9+Ag<&khTZSkUqXLePJX|E4U#6Kp#0hjc{!TX`d*XJ*Map@K>Fr$9!9mUE2tRdmU
ztV+U_af%=XH5KNDa{8hzk_7EZ-OoD~3H02a^RQV)+~@Sd`=~F%Ctj<RH}AYlom3Vu
z?kK#mk@PMryY6%I6zfj?3&Eb9Ze{tUp^oitPTqC4%<Zv*0B41(A5tkCeQ2NL?7cis
z7ioUMr&{LLNaX1KPu~4aV~lt2Q&xOHs!m4E#Kmq&T_$Z=C}>d6OY<$Y%Rzl}5?7<E
z2(TT>-A}!jHYRcT;>Zu#N7en!XRk-}e7KzH!*)cc)vnyKn<zcEh<&4c%mLhcTc~Ri
z{<3{==N9hN+2+flS>Q4BAtlOJ=qnAn`Rb!}AS>KxaWX)@&X;G^dxq=|!i@G;-F^78
z+ta0@BvKELBHV5H49Lxc;_PX~?%h7^_f-^--M06rjPUr<>__$N`Xv+py%IZt77IR@
zDcr%Z_1I9^;rfLQd$tYhT&OFJIYOL7@C)|?@}!{DuL0MaLlNdYbiVlI2*f1LKv-TW
zsLvg+cYTpZsn316!{@<tV+f;}*<^BvP)i7dk(Ba=8!RZW#mnu}v9E}%ueSGvs%{}<
znV);4n?pKcnK5+lUL+iZ=Rb4s54@<nFmeCod!^gZC~DQHs}4NZ%oVi;!h*upx-rp3
z=Fug-(S=h{68s@8q2dCvkuC#vf@@X;e*BJ)kcYO5208*|dS4>KomnniM_y2?P*)NX
zljs|iJP?5^3)hynubT1~DaDsvy=LYRg5xt_fa%H>nW+!lH*1NKEQo$*9GS%AkUkY;
zBI6vpVJj%_Nwe<w3?1C85#w$b^IAGi@7sOSpa`-cwew98_ZZ{IC5%!dB;Nf$098P$
zzZZ{<sChdkX3Pi?i5OYS*p6!#d6%V%pyqlNP==^wHdO}^Hq?a`p^4%+BjiYs=O}XY
zq>lQ+j&z5Bv1g8@;(f*zlb(Z*ssE!%z_nx3!ccS=OfcAfDEWCT=_DGakP2}v3{_!^
zm~`62l(+Se{il!AD3wzgHLpTZ0;G)>VMCSkjV%|BCHW#JDU741lD)%{&XR;_NRff_
zbMq&0S65>NA%zpsOMVxGCiYkFxRMV9l)xB+W;ug;V=e*IZO({X$tae62!x4gb@MZn
z@0K)5<0m(`a_R_a4z!I*R!a_WiCc&eBsrEaQkGVEmN2<%%7BWj$(r<)bZ%LblEsfR
zxRkPpc-}}6Y89GB^h`S$e`C~l3?Yza=ZC0ynzKojj%S+$2z`=ild?IH7h#Yc7@PZ;
zefXdZr}Tw*cTpJWmo!M45&uYqyNH|#A(8~)f-Yf?zGo<pgPxK%k2F|TmBX1)h?5Vt
zfP3i>ko7pqIGjPrjP93m%{dSbgLd#45ytg>(m88S$(X%podSVjYU!DNb~KGL48`VJ
z&v{*S_hBS7n&R0arfHoC>Htdl671=C=YyAWw{>$Fqu`l;SH+u(nLNN%a{>W+6Donk
z$#@dVfZ=zb@`#BG0bI-(o>3X35m^xfns$^~nSZh@K`NvLihW>tdT+*|ipUU1H=;aJ
zq7-qWY3ZKp*`ai)aAMgwNy?xHn58vlqYjadVv;U!DiEKOFzN}IG#HHL38h!+q1BiW
z>F8E4>SIodrtqkUQ2*(igQ*a}brI^PMu7^3>ZV*4ilP{aFJKy`<QZUSN~QvKrjNRi
zStojmDW7iIeMNYrhpG{n;{czdqg;9{kd>c-DU_vJkV}X!afPbOcQC7(kAI4Y`&X%k
z$W~p7tHqj;$l9KnT7^Nla1fD>O4_O8_^A$QqG3pX?#2=;DvhbRiqNA`F*B@?8FDoG
znQZzIpHnN{dXM;5eZSbJg4wJ@`K-OzItf{>btbIQ`8$d#Xp9P>PYQ7mYIEPYqY0ab
zwCSwTO0c_HI{J#ODI%s0IIiTXoP@fX8yc(=>yAZ~j-mNoi%E|N_hmKrT0iwOAUb$W
z$gIf<q?CHC5dXWSY4WNFVX|!sjUkJJ=-QNqx~vL{lz?ipiTbbv0k5qJS^T<zrDn0?
z8L>Y2vjah<Aty7_^piwnwSr2uP}6DmDL6ElrUk*YlhR%|z&di;o6T~k1rcW&%cnDY
zb~P&zXp6I@cPk9`Wo0X{UMr{%TCoQhn_rp{lWLqEVXaylaE()f*d%HjCbd&*pT&u(
z2^eS5kW*jOwrwd9In*rS)idA(O3dP-GRk>p+cR@y5Kfk5Au(Gud#QALxe<D|c-uIm
z`(#`wNT`dbK8vqF8?ce-wS2`9$E&y>b7(SkM+bA1jFeN@7`2p(h1y!T5rMUMI#pcq
zLoijPi~p*0PB*?+5-XvE545$m^5iH*pg8f=3n4h4K!pRL6c56J1HEvD%p#W^@kMZJ
z5E$0BKWev;I1%(qaR#BjNyEPGyO!~rw89IWW(&9xe7G8sxK}9>avMbDn`IwcH})Gq
zssq9zTD>HKvHTOS!$qCg!j@25p+5s+COb83^1#Gf5J?3w!|=Nt;b!Z~tF8KixhkLo
zJACriIIA|pY2~e|8oW$;tVj#0R-3%YYqa?q#TM}cEUbOx2Q$1<!X_*t_$jDRxN}PD
z080F}4e1bRY%%Ik#(1h(Izud=iLQ-GMq4~7Y~n!wORSy?z!<rQ;WI5RY!Jp`xjJZ;
zOaCCpyF$l*+l)c#FYR;3`e(IZjGCWl$k&Uw5QAWI%E$*LE{Gh)CZa4dxxG|Njh@F}
z`XW#SQ+az5!XImGcoaMNV<{1~gV*Ci)EN&|V=RTdhCXGDPm5d(rB;(kxT@tXr~Gj;
zmpHZjwzoW}<od_Zq>B}yzLd4g$M?)23%<?@$IJYfA5j6fGgayk%qvV$X`?KeOv*g6
z1nLY(;yh~dT#7#&6!;qrOXn!F9BH!x(6sskkYq{r`<iC8#ukCU3SEN@T`B<$Nc{3{
z6CD$Z^TYex&l-As2u%@+L#w*k(Yf|0x>?WJo6j-v1NRKS5A8^cW6+M`MBoh1H2+=G
zHht4LozptK(>&eNKK;``9n?ZS)I?p>Mt#&sozzOb)J)yfPW{wS9o14j)l^;8R(;i2
zoz+^s)m+`xUj5Zz9oAw!)?{7QW_{LZoz`l-)@<F@ZvED99oKR_*K}Ric74})o!5H3
z*L>aAe*M>g9oT|B*o0l!hJDzGo!E-K*o@uSj{Vq>9odpS*_2(`mVMb}eFBWI*__?k
zp8eUN9onKj+N53DrY+i-o!a(92dCZIuKn7u9ovkc+O)kpDj?gqo!h$I+O^%=46_Ei
z9o)h#+`e7hO0oyTo!rX(+Q!}7MzY+{9o?wy+|(T;(tX|7UESL4BiP;D(Eq*N;H@Lx
zJ>J6|-sWv1<elESectRXBkKL$vEAPC?IP*D2va}>d;s5!a0OeC-=jU>0InkGtq1~e
z0sj5o4PXHW9@+uk;3hKQ1-{_v-2eto+75o<A_CzR4&M|m;h&A+AnqZh9S9%b1~32s
z0FVJ+;MrP`04Ux8ZqV6^U;-%a0cjB7o~;NW00Mf@*;&8=b+Fl5umLE308!B6j6mXd
zkOe4i0V~er0B`^+zS$ja;URwI8B*GSfZ`~Q04Od6o4p7mz~x*H=8Qn#WRBt+&e@C5
z007VhY|a1x5aeT?<_D19Tb|~64gg+2<!jF1SRUvVqU9*w1o;i+LH~Z@05Ii>PUirC
z0X?n;YVP4>002zj-&>9We30ic&IoKE0B_C+c`gNf(B@xW>LmaGPT=Pr?%9I=>Jmce
zn$Fp&&IOF%=5S8ys*dJ(z}aX30Dr#OyuR6~4(EZe0A{|~G!EyP?%#dz=$NkRtZwD7
zUhND*=()bxTiyi2&e_lI1Oz_o!j9vgUF&BK>b=g{bFc<gK;)sm<*Tmk(k}1uUgiI7
z?f9M`gl_Ac4exEP;GGTczup8gPVS!F>;uo)ik{}oKJTLL@bEtE_nz+*PaxPH@BqN=
z0&oE7PVa#L?VL^E!5-#veg|XT=ZsM40N?>z5C?ql0`Cs-GXG!iBk$@JfAaxC=!VYO
zG;Zs--q|n@?&#j{z~1VNaN-&u007Sjsh;e&9`o`3@KGP}w_fv|jq_OVAA}z2jPUDo
z&ImAn0C%w2Uf<_qzVnLU<`upOThQN}T?l2a>&dR@4L|iWFY(iz^?HvVTMqyoFalpL
z>~anO3$Or%p5Jhf;)Xxz=MDgN(AjS8_?)fs9iRd(9{Af%^mb44M$g%M|M~W@^@|Sx
zq|W9vUgifL2nxXEDv<H{-R)!#@(NGpQt<1SzU9gO@lpTrX5Ikep7)?1{O>{NtG)=x
z9ol<v{GYuDdC>Vl&-I?2{N646)bAd|@7<CP038qC)&Jl9>Y?-4o#&*l-=6RN=3gEc
zf8BY$^W;C<=l}lU(f;xe{P17@+A;t5Z}axQ|JafL{tpn091J8_(BMIY2^B76*wEoa
zh!G`Dq*&47MT{9WZsgd}<42GoMUEs{(&R~$DOIjy+0x}pm@#F}e8|Y=O`JJ(?&R6i
z=TD$Pf6^pc)aX&9NtG^T+SKV&s8OX(rCQbM)r3N|Zspq5>rJd-#f~Lg*6dldY1OV}
z+t%${iC^W;rMngGUA%eq?&aIp?_a=y1y8M8*zn=Oi4`wq+}QDB$dM&aW_Z~0<*t-9
zZ|2<D^JmbZMQg@f+H}v+sa3CL-P-kQ*s*J#rvFV__HEp`b?@fg+c(nM!At)pUflR`
z<jIvUXWrcT^OZQ3^rBwf`gQEtwQuL%-TQa&;l+<9U*7zA^y$^FXW!oad-(C?&!=DC
z{(b!U=|kt=pK*m=hEWHfe+o44Km-$1a6twebnrn4Bb0DL3M;hmLJTw1a6=9|^zcIv
zLlkjD5=%7kL=;n0al~HybMeK#0E}iu8f&!iMjUh0aYr6|^zla^gA`K87GX5<$hLZ!
zaY!bcbn;0kqm*(=Dyy{eN(PHWa!W47!eJOJ!xVE&GRrjcOf=I}(?Bh|bn{K9mQZI+
zI_tFaPCWC}b5AJSg!4~8jp~I!J_|MUQ2#^|Rdmra{S5R`NL%VfLw@qX5giAp0P-Fg
zM4*RCdl(gUR8mVdl|x4(Rdv;oCbjUMWMo<5kV_qy;=p_2(e=}RbdBeoeNen7h7fpt
zG8`fX;^tIln|1ctMN?&UT52<LwZd?g(3aL4(;0%>0wW>liGR*1s0|eT0VRxJpB$E;
zWucXKUV7^dQ`&0t)%T%mUkwG^3;XHELv&<t;1GEVbSD!B#4z?Beh77NU<3um&|(HL
zUQrhZ;<fi<kV6*vMtt`*`Q(E7t?-_IFT4kof(9|r69+`-24)9b@a8~{2XX{KUK~i|
zKu;bpww8jz;ME_49dP6x8wM)2K>uANAV`7-z%dZhfwoBS<$}PS<pBqTh+!Zr+BMLh
zW0tr^!k`CwVxOQZa3BP&4dmG4k^A=hZ@?=o8D+xtRhdGT0iH0Ifeeww>PHHs#p;2`
z9w_nx$1%YNp%LWN(*p02!0Q4zX*?N&L09)|f=p1h+`El|ChCq2OlO84B+&H0bj}We
z7+D6IBG{hqUc%})5G;OY2*;sZjB;6D;o-dlxBhzU10TF_?pZy2!o)F*XKM$Nr}}Q@
zIiA|UVTVTW76&k|{-2<yFqV|^*-w3Ee-i!&evi$<0eL$RCw4b82axU`oQmK1wh*k|
z-HK=Ml2AHo)-FsbP;a%%UjGL@_(5lFuX`hW)b}J5zE@4IAQJos$1qnQn(?iD3Br`7
z{1FMz{jX-xc*ZlLp$S{DF9tb0P|!j!24XBD8q7nG0dYmFhnZ`4^ZQ384p^Yx*-C8?
zq8a9B#>5Ts4TNJPV;S`%LK3F&O(u*G3K3_p5Ew!jL&%hYa<RVixi54v(BpwJku^-|
zkzoiq;II_2AORW#jHSCGr>?lb7?6&NPUKJx|6##Lo==Qs<YXs3c`r4Fa#d`EkQ*mt
zE(H$jfK>bkEI7EwJ{l-!j({Hl;rBCvQS6DaEKohJfe(17!yGWvAS0hhMA%L7m6SYC
zIDFBK3NZ{E08|hwKmU16Y-W>4qU2@?Gh|8$1+qZ?5a24&cfJ8W@sM9*9SiBFMfTC+
zXM0@d`x;mvOE&S5G)twy=E*T8G83H+SmcAuWr7&Yt(pYYW<wqNP#dAKn-k>^DH{|H
z>S)Uly(nmdEa-q1B!M6g0K%t=R}lA&BL_d=+yjL0gOU>MatFGh10Enp+G#2sJ!t7m
zfk42X!C)E5I2-1?^@H3w00=+m!Lrg}wGjN`aSl*u)$Ya(bqUW{#oMHVm^M>f4dDl@
zBLegwdRDZibwd)RXj_?MQ3laMTT3v6wmRCN;)UQEK+M`d?x+o%iQsJmRpfy%h0K5W
zgBArj!8GuR5dS7JE&^dAA42AN4<Hic5bc8B<rr8qW1+)ph=owl5X-fJSWTg7Wo>I+
zt01<zRkp{0tBEwmGdzkYAG(wf#coR>-m0h`mU?Y*jeFb##dfyK^-XPU1Pi?JBe=+=
zZgs6YFXb{<ySZ^LjVMtNqg_|L<0Y@Cvb$aM!lt_`62~yyI}Br#SHAP5ubs}DUi_|R
zz4hg9fBjpp`{q}`q1o?$4SZk(D=NSPW-w<8oL~q?Si)&qaDy!@nFmi;!yD#spDz62
z*JQZEBPMZ)Nd{sR>-U@Sc$kFh5shg0k3k%(=gMFVO&{Ik#wO-*k4IJE6bBhF88$~K
z=6Z-0KmW*d4w!?3IL1o}*+Om{@|CZMTOlb^)yG@ra-o1MWH9gL!RgSJG0Y*W%}&T4
z=HR1)#(@KBV8|cnh(RVRWUhmV;I0jtbDg{VXF${G%V8!oT*kZv$1X4wV@R@tW~ia*
zCP<(cTC>3pp$=z64Y9vf(4+(XX;52f(1j-TT10#xS}+=MZ7$wC|3R~XfU$QJ2tl%5
zw>A}qz!)}o<ULZo=LG>2f$;*HW@(!1UE4X-%VzeFMqO%Xo8{E_T!N~>*JfCUAkGCM
z#SUul$^|y9Y*Aa^XK_G~M=qJPcztE{viQ5;!PDI6Zg#!x9i(SRTi;=sHp>vbGCp!l
z&;JU-lo*Hg0OnEi)wcSSKY*BSsWp1W3=KC!`KiAK(#(E|efYgS{&5`Td*36c%BdAQ
zt5-EGyaWd~Bw1*#WetmnjzrKn1|qWw^{fcrP9P+6D@B<bi{>CFdeKcJa*`+gDI)gu
zthRVUac`T3Eg$+n3Lb896;Rm~;#dW|E`-5WeUDq<RMrjTX``oI?HEG3(%r6<4EsCH
zuZqDMve?zD<4Ohxyt>TQCiVp$!xu7+kToHROrQ_(?|WZ+;~g)!w@2PB50-nd?hy=$
zGsuuuw^~6lwaBV}KC$9bApZ6_kabVIqZbdIKWke0IzC?ZvtLl#C4YOFJUCn0GXJt&
zC-mmd{X<+z-5D)*0EBPX`UmWS8rt@84%WpP&kra9>ll9ah)2j<XL~?dxA@e%NmaGM
zntt^OvT@p{fA+S=efuS4q2155+L>Rd(_l!Dox$25o_f~>Ta8caLj;B)qMrGKaN55X
z!>q7T8#*Hh0R%1ei$KR?KliIZl$f?AsT3TEG>Ew}3H-puqd*HB!Bzo56FkA|5kV4M
zL65*d6nsG#JQNjVK^nA{7`#Coe3lukK^~+C7tBE*3_>#5!5%C^ei1?>OhP^(LL+QK
zh4?`wj6x~IHz%yZmw>`4%t9?ZF)QpsmB7L+3_~$25hnD)Dm=AZAv`Ma2mf)1hQS&`
zIJ~zqG{Yv$Fm&iWx}v`kNd{np5IoB*2jRmw97GbELpm(N3@e2tAO>@gE5$jHVQDfA
zxra;uM9qr<NhCx~oG?Q?L>|nrdf*k7u{H|PK!{P0h?y=<sWAoNv;^S=ON_KtoEQ$=
zL|de;PV__?#6ZO&#Roa5vSA&M5eMr#0p{@sazL6eP={-X1{}jDadUt~GmvoLzC)M=
zJX);tTbg8afMsmPXSBL#oW`yB7d^a1bi}4y)WsDvIe2KBM{E$A8;Bqvh<dE5fd~U-
zpq-t;vx6`e(}^RTA)qBQ0m{iCt`P!ZI2+ROM}q*!yD@};)VqP$y8m>%$WK~Fb{xS|
zi$4O25KM_2_=y}&C>9ICn+;N^cwn<X@D;-ApD-#A)5;rMxEo^`uGU+vm5hOw)RmW%
zF;@C4cfv@bye5s@$O=TmXlNT>d=Sy&7_ISyV!^X!=%Hs=ta6J1Ry2@$z!`#YAJYLN
zsWg^qEC@W>JO$}WgNUU>lDeXN%T78<q-;MIY@0qrkgK~RlPZ?ZI*6>?N~;@)6OgKJ
z1Iv}8n)QLTF&G9Skbtw)N|tkg!IXu<giFhGD7l==+jGHeAxEdI9li9csqDF2Vkh&l
zCs#8U!~DpxJUoDW%+oxOTQU&UM38y_24XnJ%iK-B$xO|RJpam5hozCLyEH6@3QfJV
zAR_XIWSF~QSuJ$HJip?g=36KD$szUm6i#8G>=YvClupJWwy3GG&nhO~JWuWUP4$cj
z-P4v|PzEC#gQt^6-{A&<qX&W82UqgOWUw_NVwe+<1z~)rvaz+h5rci`KOx|`y8#CV
z3V|iCz8vrv02R>Ji5np>&=5e-)|)c){Lu7VPZ4E^2V+k8L$aJB2uFw;a4@Y;2?xr#
z8x+O3fdGPMOe6<D0c}Vf%cC6!5QIe9nFbsPM9{_;`YffoQG(D>9yJjBxhD{f(vk7a
z5goZx!v}frz!0fLN|BfZaYZQ&Q_QSVGCc?|6jL;%J^v~#Q)oNWG=0+$WK%hHQ#h^D
zqFYlrEi^i{Q$Cf$JT22b?NdQrHaz`PFbmW{O;kWDR6`9iL{(Hs^)W_mR1|yENWIiT
zq*M`|Hh+kR`7{-DfHB>?kbK%2QN>hLO_52})C-%oY>7uw>A$Y(5KM6=Sxr@3B|}zK
z&r?eWBZE~^;RnO>5N}Z&VQslwO;%Ld)!#fdxk9-O%oq+dMSeg<eBjaw$vbJC7z)wW
z1p!lK4OawNRc0M95krS1=muH<RuP%CTBD$?8Arkj##{RbVk8J-Ob~Hc#7||AtJ6Q`
zDYl!FB?piI7@!>y_{jgm%h~~01JTBO993~eRsV7=*ZhjRP#}YSSl1OnQXwEWh!n_y
z(3*L4fO@1ysv@3z+{aim&Vc|-f9;sBa)1@c8^&<}$AO&3A_ycn8?*Zd&EXtgD!7@g
z+0kp9WAGh`o!CgNSc^@s49k|{V^<M5xP*HpnAD`l63GTCNqRU*pi0@w3O<l@fNjvY
z78{?(I?cmsxJUrRM>Ec|y}t7yBGzMCrghq<-7d;&nSbEej*WqrdnL6*smIzGsC>22
zbbzYtA*>WShC#^#90(}*8WlP}^3kJPfZH}>Sjuf8a2pm&#M@le+r4G3_8fy`7=}e#
zg5vCu(BmMknas)z%w-8pUEs@v7~O6q2>;3L&^Vf-*b7WO3e8=bI;r_cPC%^XU0Tu=
zRMS1(*=kSu^Su;_-FTVJ0;x^g70pl4OH}%Y(o_(0=mpRGOh>ReJPO}E;ybc6ULhJ<
zr%_*s1f!sPUU7|H>2)hkUDtjck=SLP@C=>tJY4VfUgb0v=A660^qC2HN(dz0aVjVB
zsVDfQr>R5S2)<7QGEe+XRsG#xiaIrP=mjIo&FiI|w1K{Xh%*e;P%$XW5U@|s%Fq1_
zgZ@Ol(E3UVp@naYxyk{9uN{bx8mW?Mzz1lAf4~K(BH5MdDVX{cAFiEy2x5Bps++RV
zzWQKg4Pg=PrjDGerX-R66M=nLSpOVl(wb>C7Io2ofKlI_QQ-YZ2Z6Pn`7F@MtG%)*
zaPUX3aadr)zlCEcJZ?CMbpR}IUM{v%FaBatvQ#U<))4_$6VcK|PS!?tWHo~1OYUTd
z%4AI@Ax`#WQqCq&4(09{<x*bdxJ2bMWMx?HuTyqq!cpZ|zU2;@Wm-NNTgGKy4$)oi
z!CwAlVxH1qM#N%HX5-T3W6qahR%U3H7iMl|YRRx?J+f%dX26+dYWAKBk*kfOj`P)K
zat5$&-o<aG+TO|#e6VB#k>qlY=N#eYbB+{iR%b`^QL;gog|iu)(HX<?(GVa<fpr~Z
z^0hH|U3p$;525FJ_9hFtX8(Sz5OE2EXwXIpx?Gzg2+ZLc6)=Wac-cJ~h>y)a?2BNA
zPHA0zXpa2mCGdr0_|^YakYQn=VNoFUNgtd1Dp#Yk@Iu?|waEf9X_YSO5OHXh{*w%I
z2mkRmg-$Gk0fP60F|~0anc{|bK?JKz24&%tEv6b|nn#>7YO-$Vq_#j89EX2<VC(A|
zJIbvmb4Y{0>Vzt5yQUGOK5I8|L3ADG1`!8&xCeDm2cp_yR&ph}_LT8$J>F#>!BfM#
zj_e7^YrW=@43n6qd+O&@8`FuGoJJ>b_$s~;2UX*zcA>=Fg0<9>Y}T&5%BD;BqpM|b
z2AKvQI68!AfEnyWi2sxt2p1@ZP!QyI34t^4&n;TA#%^upW|P;(J<0<H`9tArD_DGu
ztPlV!)O$m5EQm3XF@b#m21X|XTyFAq?dFy|5sMgmaA)93klfY7YOTd~E^qp#5XwGp
z7<py~fi7^6uKND(6S;5vb`kw%knb8PMFwyMhY$fD@ct<91!=GMimwH)aI<!BrGsz_
z-*6OZa14JA4d-wXXORz2x)2|66u<Bi-?tM_aTm`J4`1=+Xz>@Xar>5W7T=J1hzH0<
zl+Q_U8&A|2$8qF1wIZ9Vr*4vaKn5W9xh4<tJ{@u*Hx3coJ!4RZbubf{le2Z1X($Kb
zDQ{C!oj)DnQvXWkG|_7iO6JxDi5Li(t~LL1IF#}*|BVtQ&P(ypZ!09PJQxER8+vts
zv<aPVaHUIYM#6(*)B_{b(jcaptTP}8B|Z?OAqb@zr>1!t+F2i~O0BQPCv%kZFr@Q3
z?~T4417>iqa72+m?AeOMBHsZX;Za$sIiCFahb%J)vwN4p)HJoZo!mJ+!L&7xSu#UF
z9SB^Vf^ePMF&AB%oqDaf;T82MB=u6?jR!;5>h)_8`Kqz5$=$hI29loyf*`>y5PpaU
zj&THEd6;`Jme$lKNwYto4ZixhpIfiEfy-Kj`v(E~NTH;5EwuJ)=PnD;_G#FMJ6r-f
zCJ_r-E&p!w8qtlS*rOsVGS0g)2Oo`gV``$Tbf4?wAs+%Fn;xPhGa@8XqJnBmfzLvM
zFZkQY_G)XFY?;*%5ht2vyeE>RWxAp?S00jP-Lu&wPxD$>Dv&`sh(dx)1;J54ZuvNT
zd6<ulzSY<Q>C6<tl%G8&idUv$_jw0!%d<l`1L^m(%Os<RB#^hi#g5;!{H0(Trk*>H
z+mvpoS3;?u`Vg}ae<+19$Q!#%5uV<fx?Z?`qIY5I_@F*baUh0ZN&5yYsG|Q%nS`g%
zktZPn%#kFYMrs-lzWW@^d%bTBJFGTi5C$?&5j;DAGoT&P0l%o4s;Yu2til=edlw;4
zg8$0-6q<PeB=AuaP~xLXs-<eGe|S><qaB&4shbjpoVp~QvMHYmTL%y-qJmOs-+Iso
zLeU?66}yo5>uwq;7~du6%o>Qf>&r(dWZGn%2MB|v_R$!&8m~bugKz|Y7$iWVx5PT+
z#sY|c|Ij%oXwZQ-f&X$jh;Z<bLWQIXK8k4ZBF2mwH*)Og@gvBPB1e)eY4Rk>lqy%U
zZ0YhP%$PD~(#+WFAkLgRck=A%^C!@tLWdG9YV;`5q)L}EZR+$X)TmOYQXSgsq(6N4
zYHH-Sbz{GmVP)nU8**$vvs~A*ZR_?e+_-Y*(yeRvZp@oi_ww!Q_b=eUf(H{WZ2$PM
z!K-)|Gj8noG33aSCsVF$`Ep0Sh&OZY?D;e3(4t2ZR*d;H>eQ-Nvu^GBHSD>XNz<-v
z`!?>}x_9?99s4)%;KGL!FK+z!#@W1=GjHzvIrQj>kyEd3{W|vS+PB-3?)^LX@Z!fa
z_09b}`t<78vv0prIr;eV=hLrG+r0by`uFqi@1He%_6ay3fdv|v6n_6HxFCZKI{2VT
z0UkIZg%w&TUxE;7xFLrfdbpj07m7F{i6xSj;fE^S6HPST%)|*o5v|x_iZ$AJqk<ut
zxFe4}`ZyJe8{HGi5=9!B(2Wc^@WhJ_a1)V|OyW2tl~scHBbHfexusPkq5rdlA;R=B
zOp!?5SdR@<%tQ+i;8=vFnpVm=C!N6Q$R(b6>Um+18r_2oJqpn>MxdCbrIA_|<s(o(
zi(Z6}qbzX}Cs>JEWNAl}c64Z+oqGCdU3cy|DygNC*QZBAPE*+|4>%x13<X)SPeimF
zG)18I$N+&sArMi}6tw<x&qM}6WDz={98xGqni5pd77B$Ufk7f5>5mK!oncTTGRjbp
z2+S(vtU=KVgpLipt_mu<?YjGtsHVz0FTJ{<+EF-5m?@bqy)Hp*911-vgfOv2>rW;H
znGmZ3C&XHjt`3A?3@y}BI_$R&T<npiycG1nvG>G!!Y}EHAgm__o&WHwlM3DQ$qq4u
zAg(|ie|+pY1*u>RC<P_*F3>>>{ZYL28htd<h~2x9KZDX7S-)G*nobN;L{yKXx;`N+
zCnt-1a?U@e{D;fmJ}FSd4p<%1q~=h&uFK4NGV{0&I3mzE4*YCUE_7Se_S<FKEikoi
z4t+S{LKmGh<BdBm)zTV$3HMsz{4xyYnG^F-zi0oG$;II?T#(<I>Kbi2dVlV~7STNO
zOf=u_Ezm3lQ6mzJ1$nNJIq4qcIVXOLJi9`DKb?Ea0&8s1Ee<G>IP}qfy7=SOTYr5}
zk!O_ezFbA3(*sXq)cLrSrtH8N!w?}s>1vAnysn9eyc6*zA^%TyME$-xOenDeFMJH@
zw-CQY<bDw$$ny?3IO#F4fm5O$_97@j>}l^JLn4%0!r_a|VNMvE^9cEB7N@T<D|m%6
zT>ys_K!1EMA!)%>J%B+B@oj_?PngH|h{uTsn5lXHE7b5VV!Vsk5QnNe*YYCLyaYP1
ziB8-Q1ScrPDITqY$XbFlFw-wHX$oU&`$xapr$YF};CU${Ub4)THgh%0ec!rU&HRRr
zSaA`6Oe`J&%ZITAMhuPvp;q^vD9AzbCyG=&BqH}@#aij>GP<Bv2)N;oo~ex<5evZ*
zMwf$WfI<Qf2t&jg5wS<41Cqp$1;dz_HYs@|9Yc^nod0a0uvMk(0Z8zj15D7ZVukA-
zz8l0p{PBq&1R+)?7=jPF<w{rzM3%W+mB$?50`(PS4TQWVHuGc1L~^s6K3XK&LV-cc
zG>;-_3)etKhX`BQEn^~>$G5hCt-;+RVFm$$iy~62ihSf*=F%TMaVdsru?}G$1IM$L
zmo}V4%bx-PC>+s|F$X+=a@o8nMzga`Z*sJw76NB+I8~CexCK*d;m1Ern$eZAbT}LJ
zC`@B&ACR`RrZ&B)dtNHjo$?esG{q@UgDO<y=(MLsJ?e6PI@F~ywW+EpDpI2=)e||j
zs#d*fY@j;Tt#VaqSp6zk!#WwQcD1Z#^@~!)s{hutvb7{+Ju6(}`joV`wXSx(t3uu?
z*S+$!D0IbZNW_7SZ2pOcfNiT@`>NQ*?u4fIh=)8<1EWATh#(si$vq?>rFyU^vN6#W
zIu*j%Xn6KCIkP5QWVt)__(L2liiWTbt5L?%wzhLE$vtFYq%lxdGB8@Lg9!3Pk~EK>
zxtoJbM3%?nrp9BeR0%qak*XM+Y%<B{txR%e5a4!19M_1+b!E$z#M-vJas?+XmOzYl
zBx4EVv<#aJry*A!izHtYmOspq!kA1l46zNSeg#+=bkM+$D!D}-Gg92ihzz-IiAOv_
z7?Malmn97r?^?)f-VK*^kwdC4_hREHe*Z)&A|e$Dq~M}b6R(&gC%#C(3>-v`w7A6<
z+%KYRj1o+}I3y{~h)H#kU<=A1v=;gCNRWIH9TWME80qnnnXEkSG73{&?8;Z3oDp3)
z8N+$uFqp%v6Avp(T8*U4IhmEvf}Fs2vm+?Dy7x#2h@cqMsxGk}V!=UScgv+Hh!EIm
zu6s~2mvjzPDP84_IRcAw1~Krta2W!NqOHi{3L-=Wb*n;AjRL;ft^%QT<DX?(Afht}
z3i_;&XilSI5`&w^AP_EG7-V+rEJzrbRZ5)f3tj4xQK3z6=zr8h8#0)*I#?vW7$Zy4
z>!KRC=z$AY@v&G1sjon89RfQ3gZ~tY24l2?Nsd}LAPnlb28~=+Xb03c(FkF*+9KkQ
zV=Upj7$FF7;Y?>UxkJAq=mt5WagG0y+aS4Ch(Bs~kgbWE+~!7iKD`VtF;iU3WFCWy
z(4kxTO6FxTBOtUL00e5i%9C!IAIVG>+uW7lAY$0ZB`IdHzlHlF^K(EA4Dx_(-CPL1
zquV`(fRmgL86)E`fe((T5bf@ak^=Nt{epPD5ZrDcfG!y8Ds2#-OH9`@_yIF5B6ZSL
zy_{i4hVQ5xk-Qy*<mNg@(jCC72gHg=EG&p2ju9)rx$*~or<UiQwX;|hB!NBud7!?R
zlQvugTX__`F$nLxVfju3|Nq#<$8HyMS5wNKEnr#8^!KE3<UnSD(r!*Tz4ucBi&jA&
zde;>KP|D(4>?11~on5~Z;Nd+P-wJK>R1l41?EUmRF|5QRRPp6+7@X-aQjsV<nIXC?
z2G%_7KYWNbx%tgw==4X*;xsnF?Jjpk&q&Iow#Njf3|9il83CVVg<K(j)ZSX)A05DP
z$J1<h{j%1ZWQ`0koC@)fKxp6JT$casoAMaoLk$~8JWE6Yp6p$lKwu5H8Cm+>Tk_14
zAI(wt{6qT{3jF0tJj_A}bOVINLx~9l)XCc$2}}%xAh?BqH$;s>jGxv$iO1OB4nCmg
zP+vUg*B`84X>Fj^@&A+6Il%l4i?{$3ch#QQabKa-13cJ(2(-fru39BYgaZW3=lBi6
zRM$TYVGI-@gq2qEv4n;(pBs7;IOWR{@Xrz)!hcZ)^`T7}SzSeV%-Qq~PMl5i$d|6f
zNy4<w>%@-I{R7(p6G&tN8Cu=X=*k0doGus{L9o$C%oq}F%o0UJ&Vb?lQPk6%TCV_6
z)hu1|6p#XD3=KYD{UpqjSPlna&Ie^;M7-bwLfSw4mW-I*MM&ZNAj0cBLo(<NC0e49
z<zeGRLLLocF&^V8vR&3G#38y4?8uG?I)D-m!~`ITgyrG;+*lsv45i>=MnGGza3F92
z;_t8`Ml_EIVE<z@XhOVgqX`&-F)TwgT-qM4;g`LkK=#$e1<JggnPo6z5D`Q|)Smtb
z0sr`qK+KJ}pb-6_L?Qm-B*s961!Iih7LHk+lM#f0WkMwqnL$)t4i-fEtdH=>z&Wm>
z9*NyVsU*0`S&S$iPK2Nob|M}fkCD|(P$JRUpk7XJgUECw-<;n+U>_**MEU7X^<AV1
zX@rCc8MBNdO>T_Hun|L=L{C28{`8MbURgxgQ%;N!F4f!^0c1c9BwWJPB2A9KEP?bz
zhC-%L?bY56^-%IK#0M_V-MJ8y-NP~Xf*NLu1A^Nm9vkw7<wb-;FGQT}p-~bk#3v$=
zCRX1XK>wTPkkGiiWK05=S?XbDN~AzAgp(yqLTFGedJqzc;y>u(03FXq>fumY-Pw@P
z3waAuF2qS@1dMQ;3WZB=!kEroOADpciKUF%F@%{=WcA4=Zi<UJPT59i5M?URYV{>%
zmL&ly(cl~>?{ot{xPv-~L%JxT$WW(SzDHcfr&%r1^Vy-PErCtq;WO^xSAJzxrqf40
z%OS)AL5bfYrcp$kPi|TzMNLCIu+!e8pRm+Z{M{yU76fH!rPh5QAgyGE@@I#7Q3Z;o
z@&r<8wk0}*C_yad|JC0Tt_!0nAu~Rp238}obfDQpgg9W3grZF*5YU4C13x4K+@K>2
z%Kzk!7D~SaONu(+868k4B!u@BO2Q?N$G{QQ5KvMI3pxZtpdjHM1txaQ9tU>Me=^#>
z?2zFYrj)8pY~2Gbz>!JHSHH~8mY$23zGq6bp?vnK<1A9sfQd5D+j~WZFcFh6AyXry
zL%KvjBdjPltSC6t(k&T;E{Wwq#L2FOz$v9t0g;Z2CTLD{iwa518L&)sksi?z!4H4|
z%|PMW<-iXl-2({04*)@+MAI~}3~K#D>Rc8h;=mCp9uRoLC1sL9<N#9o&a9jR!`x2a
zft|?xKo5+bu<i}9CIl?t+A#P|H%g99tPL&1OfDf)ea+JY7y>F$6mb%zLa?0+6#qjg
z7(_zMPY9eUxWtxr;p>uksL>Tfyv{3zGHOAnNkS=;DXr_|t&RgAK@u2*;iOJ3>3~73
zfP5v)2`KE7Z0aw_0<|!ls!9y2x~fIMs_f+e5air3`M|MIDlT2>0h+4syg@L1Pr3?&
z@5D*&7(z6#6USk!#_B0b@Ts2`Z582GdKC$8RmMUc#1<sf7Dy~9VW=+|#6VFC8{I=P
z48t{Kq>mm1K9y`i;7>@P!!Zy;HxPuK78=M13qVy1&7>#<Vk)nl%S2U_sB)M7z|r}{
z2)sGKI++v0oJ^*z*+JaR-cBUFni|P5phplyt3eVXtRzlcOw$|$7SK@6?Ej8L9mE)v
z7NO~!eMSVWk<PLR#IH)uM4?Y)J&UaELo`)mJ%KG{-dedmp}|p-8ckH#qK!Qoi`(YJ
zP|9skDqQ8FjX)6;8%<KhP6K|~?g_vRj8MR@jiShHr_hcB(HbrH$_q_tMV284lcmmP
z{sT$L#Faiu3vvZYS&AnBD@Z^YSA>O>S)HnN#QI(Y0!BppYJ`%tl7(VK|B}S{V#NQN
z*p8JHN)+&u)o=E?Rrf|PO#M}Q+(S3WgE@Rlm&HUqsKY!E)cw{;&P+q2yo7hbgRT7L
z1Fvv*NU#fc69uD(PP!>qWY$5DEzpz`s96|J@FENUutsd}3lA}t#Q*Sl)Wb0hgE1r~
zO_&4bEJLW)2|94l47r3kD1$OwL;eCW7h8l76EPU?h!J-&8J95>g)tga5Iw9h8@I6=
zzcC!gu^i7a9oMlP-!UHNu^#U+ANR2z|1ls3vLFvKAs4bCA2K2*vLY`sBR8@mKQbgg
z@)xHuB~wT*L^394vL<gbCwH<Ze=;bCvM7%-DVMS-pYj?{awV@afm|{wzcMVxvMkRs
zE!VOw-!d-eGA^q!EB7*exUwz>vmtkbH_*d65VJ5Rvod>fH*^C%$OAGHGBO`?F)y<<
z=Q1_ZLo{ErBlEH^fAe?%Gaol|HFL8qn}Z}&0ys>9Bviv8U;hI<Uqd<jaXioSA<IKF
zEW<O{Gdf!WIJ|K@%X2KtLp(EbH$1~K2y`27LOZ|lI>a+J=<z&Af+TpuEJ%VW5HdQe
zGdsI;AV2gqM6@B-GbWRCA~Uo{vvEBCvmduZKtFOvZ!}Ar^CEjQIN!8)h;tsB1Cc1L
zJ=63j6Er!yaX*6tLyI&a*8)XT^iNClQm6DG)520SbsI~yKNIy-H+3I3GgoUhA76Aj
z&$J;=^i-!p8<RCuuQ5AQv{~mdS$l(0r}ZBf^-&A*TDLVJlXXM$u{o5&H8?dz%k?0m
zbsM8IRr@hRQ?xoeawkZFHK4O8h&50jvQ6W(WjlvX-~X{WK%de|_GELi@jihYPjqB6
zv{(1BVITG%KXoGO^(cr!CCsx@FLq&P^&m_2R8usd1adM^^i?CWQm3;hNP;W4abUkO
zDJ(TB?6GObbzWn%QCGAeH?|}!w;{7OA4@e}<1uz4@^Q0qYM*u;<F+LHHX}<lHlVY0
ze>Ngl_GQ2KZe+F{w-<iW12jaREqjAE$O9eA!%xctf5$O^uW^9iw!|F5G>mq2(}Prt
zcOSns92fW-7kGdZ_8bp*9ZNVp7`9-qv3|#KIH>l7=W%f7HgW4Qg|o3$d$t>6_=RhD
zW1Dx2do??+_k?Ts8gGI+qjQJz@kB3ogAX!A+y6Kpr#L-WxE#B98!I)D+cA<0IF7ft
zfd6!eOE(}F^@s~N8%MbuU$i$&^mem%A-gwxm$_}ocOC2282s}*5XrL0GBk{i1Ed-o
z=j=S-(j%;~Ec6P){J|P0L*o{N9Jp~b7{Vbq_#4{_6~yr|{IxkC1B>@@GO#ly9D`~{
z!&;~FU$e0~B(@|Bw{(-WHL$}{TS7To`ck(-IVW~;CpSe$^gJActGB{2s5*G3^CiSK
z92@peLqn!xLN&8PDGWQY6MIBgc|?=9NVkKl>$X^<dOFwm8m~B5?=?NB1E^~{8;iqI
zdjm8m_Zm9`s#`*>Z~7W1_a#h1al<h~H~%@dFLfoD`x-+7ptQp=AUYm5`i4XLATx9&
z;Pxt1Gj1<8x2JPCcluI;dNGSSsr&Y+PqnSngG(njDwwpe7kjb8Iz^9qsaLbFPj$fm
zIYnbavm-S<pu4(bbwyXXB&-5UGy7EYI~$|=DkQggfBeW7b84G-WUn#IFSX3Cu{t0_
zF&~4;i#Z{axtTA$XrMVArx$P013S36EYE|S7wj5aJ^j$b@8*PPn}b0JtIxDCJCNL>
z>#?FoGIi&6HJA8QuRF`L{gJ==&R4Ui!~4RUIBS=K-lw$NH#M)jF?mmQL|40sFL&TG
z_;K%isk8LmgS+DUbEaoBJ;eP|zyHD-8~#);cBaGoOiy)_=lFuRvE@@V=Iip~zdAjv
z^>SBxHJ3hBlXZIAHa(=iu4_J9XTIJK`P@sw?00+b=k~heeps_H=&QU%d;W&&{Z;Gr
zRR8wiFEuvs{q8q3<NJ1`BYk@_J@<bUAJg|37(-9Lc`VC<5F|J~m<&rt11_mRF+2>|
zQ<NiggYQg1F+-@H>rG)B1g@aH#sCC8fddH^G<Xo<z;KcnBBRAnk~eznAR_CQ3?epq
z5M6oewuzy{c?_$~Vz}y>z*-~)VwA*6U^h|_S1Fq$Nn^WG5J#07C2`=hhY=5&3rWzZ
zq>l8=-LwR59x`Q9sVYMzG5;yhq^>qHY}G9q#8>oIN~(0t+cAbP={>a6ts+o{m?XBF
zNtB-2iVxW)18LT0HG<u2zC;L;?ZCNp?*dKu7;<FEk^fd&cDIr@bu-xxmCLZ>$D<=9
zl{}e}EK7PWVU~pmT42<wRIkz_ZCVn_fyY{*2Kkhp-IFqp#w?szVA5-Umv)u(H7vui
zCe2=E2z)D6r{IQOGkNx=V2IGgPBwoYeR}ol3-)sG9)5iJ^Xb>Oe;<E-{rma%_x~Tj
z00kV7zyb|C5Wxf$T#&&A9lWm>_2vm>i3%+|guM*aYeyCzD%c?g2SNa6AX?rNqaYI<
zNF=rpSzHai2Y@id82=Ipvf;fK&ohw<^u#Fz$RJBur7j_Z97Ur}7}999qg)b9poL0H
z3c1l<lf)E){z8UJy?{%tG=#Dev$%rBEb$~Rm4V2ccDQ`=&10}Cj>@D^8HgfD?)=L!
zj5@oLNv5t-<``uDLXEV{4l`^~<g{coxj_p(R6`AaG;+uyF-1}!kQAloE{#@VYfLH$
zvhuYo2imgB>ulu9AUENRQ=}_Z9jKjSM7d;??NmDI%vB+c^ff32)e}#K?qulGnSdK=
z6*bv3>Zwub0jU~0lSQ`DZoU1MJ@+0Qm)vsAJr~_{)m@j}cHMm!z6duIW(h-NsZbhl
z^+k%l5la-&#{Yq4dGC>dWLR+^9OawBAbA|y(SaV%qwY$glB!s+-)tOns6g{%B`ISC
zk|(w+KfShMR|Rq_U^B~f884V09x7#TD6SZ$Gs__<WP)z01RRYCB6;O2jlCG-lEZ8?
zA;g#-2x+7Doj7HStA^6)C|QE_*g2OTh-lIvI{B}PzvP;ro3DgPY-SycTIIGR!R}?0
z9gTXGja3uqXSg86=-H|xqLw?uu<d!EpIe@q@y0b27v9JvpPcf_Ex#P|%-NMU!(=Mt
z#_?|lcEAyV1{NV;6HzaymiM+0NSqu6;_wh-jtKER&<9H92OxBZSYq>_>B&eUCn8=*
zPWdEOqW>oqlFn4HQF9I=Q*8VT8;8B|CK|_9`qH3aWiIOFp{mi|n`=^Pr<G&ef1fvv
z&ipG|Ww*5+`@w*6EhA!C*?xQ7nBHxgHmrhV%^(Oo*8cz~K=k<H3`qE$hK7eJ<FNyI
zM`DuD<c1Tu0jDfpLykPAS262#YDwtp9-2-#vf#82e(q}plT2tM>Y#>YzoJ{rP<XeB
zaphQd5=fp*@r}6U(0u4qpP-%stHarEhzx0=WR777Bor)kS!5jKG}lEhei4je6yq4l
z2q6u5ZV4FDVx=<i9!JO{8X<Z>>FBWx96g|RH5wxBL_h@iyr>)^(w!!92Q~OSAw4`=
zBmbBzagFFm;wpJ6jW=9^6S0NHGhoWtNkny$0L~;80*S^<Ec1+Ov`i=sF(pBsv5cW0
z!<05^<tt-(tVVj|AwY}FEA?U)iEzXtH<83x%5oO&f#gn!^2WuG0TpJUg_1{6hhAFI
z%7>}L88^YiGM3?(ZY(34lGtW91)>gcYLlB9Nfb0)@-WDR<2?_U;35m64w^*sDBXcZ
zMQj7iZe+47o6JoobMr|_gtBOm9Oc{=caVUhY@qZ|k|a_Rji0Sg6k7ugiM|=maRQ}d
zVylfmg*ldqe#Iqcu_apmX%=uO=`3#PhLVUxQt6n79k|0HJ$V|gGX4~(K^5vyiT_$u
z`f%<%>HtPBEHnmp_S8JBqt64t5y<)MG#T`HkvZTK0X_zdtM6eLdK9@x!3l<DujxzG
zydgG$x|ANmTpK-hRx!ua^-5Y{D_yT<x|D$rA!_U2v99zbxxQvPu0on%Dw)@~Rt%wh
zGhyOVCd9*zjYN%o%~KOHIvqikvMC!2J)~sUCe_TX5QXby*D?_P#VsMJEgR5Yi`kp?
zGEA&R7G8e|ky8-%H9M>sJp?<qY>W+Bcd4J*8k!JzIslQNm9BZXXjJQ77rWWj?sf%)
zRP&&*LdKY`dO!i65Evpvs51xdVl=^a3<D9y=*GbSIiC~ElaQoKWW?w>5C2j=N0>~4
zhFn!T5OsLUD?p(iacN>By=1f!&74TZP6oG6!OfQwPFbM#DTzxYI5L{OL~Zbt(TcR}
z!DfMyOP(T057OhnW?{%r{CXuI*0@*$xr>bxI@fX{SQ0cg&%r{#*`8uXt|A*sB~1LO
z7*_(s5ETr?@+OcJN4RBaZH18!$Py}(XvdZ~#!akONmOX#H5%FRYq%mwi6nW5CT>W;
z)NzxW>?FhV=<tW1;|)o!LNBfe)kNeB$>t`66a*XZq90RT?mimQk(TtNyXal>$fFxv
zX7po7Ml|-ALjnjB2vD@Aud>q9(+KIbsx!3eO}jAF;EMIo=rL=_*#CObxQ+~{Mg8iL
z;ab<VZndykJ+)wm4%m=!wR(<?kb{lY*S>Z%rKw$QYhN4N1G03qqdgBfQUE?X4V~%^
zF%52?8{O$vw?SIxuXVp0-tmS^Sj8>xMNT{0`PTQo`3>o9+ncA}Uf7}cH9F`59N`I9
z_<F<<gU>D;;t}U5J8Td<iEpvr8Q1v6IZnoZUz~B>Aci3fafo>$TYYE&`N~<|a+kjx
z<}r61zB^uXo8KJg4*IyvdERrM{~YK+7y8gcNAsK?9qCC|`caAAbf-TZ>QR^a)Z=aR
zrC%NES?~AGsor(3e;w>$7yHw#u647Y9qruZ`q<gtcDKJB?*DNIZQ0Xace~$xjBA&>
zbTdtlb@YAjfk%pj1y7J;Ot0|j>HFU`jUG%(q#ND1c;ssh_{ZTL^O@KD7uRn2f<#{O
ziSL$CfEJ#8rCjA&Bu(S@wfdhEE<>tGIl(pLdg(1OL+VI*pcV<Zmcbt0DPJMHNe>Rw
zd&?xLu)Vi{pPqKKGWC&Jy-9ABA-ZoK``OoigFYS&U{pwr1mRFqSugr|GZZAe?-u{c
zFBw{FIU(Zf*890E|Cr}+JyP--55Xlq>gbX^UL&&1N-0u=q2R4;L}oJRZ(q!z6c7(7
z(C@|8&oJ`LTksD(CW={TZy;80B^2=QBCq}E;rh1E1piME1^MIOCgeg2f(0$4LPpU1
z3}PhkhyN-CX=E_A>LvnjFhiCve0UJ%RssOk<0eRjO&CXfSd0T9LjxTpi}a6m;0oSy
z>^y+*0uKryYA|Sga6OFT6-ENEDuoD}FbHRC5~c_;K*Ae7upkcRJ>r16QjiYo&<^$E
z<CMV|?j`(M0{pt+7{G4^*JC7L;vsZ!GO)1LfQ@KUO%aEt@fdN|9uaJ~tl66FAmky~
zJZ%%xV|&;`3bn=y!DbVI?Wr&@A&w1gNHG<Et=JIa2oK^Di_O+FF%?TuJ@P~WNpTW|
zkQHfh3ZbxM3~?0G!zePQ2)$(%Rn68yh|>;Y6aRqb7z@G~e!)fN@D8(48|{$mJf{!o
z;a;3dASh%E%y1A5;_#S)@VX@#v`H@<LmlL-z*-_{=;0bV3>i|6AV}lG5YHtrVaIq6
z&mh8B?y({Cu>%>R9}S|h=z>@(VIYkKQ-TCaI?OCgtjh9YY+@0jxFR4WgY+)pWYA<h
zI18D2&>KoCBXO$$CF?mFEFnFNq73jUD8^VUYHScsC%l3qt?V`6PqWx;AaL@T$Y%lt
zr4mHaG1lx#P=g%`trB>zmoPz?B=R+oAy(Xnvk0gl26Ar<5|R*dAiNSQq2{s>svWLj
zCQu>e+$kN+VI3=F9^_;-b`c>e$r8L_$N!)tBuDZtR^c!5(!c;*K%>8o!BgC)EJcaH
zAP^d`GFLdOjUKMiwox)CQ~SCxjrNg3!Vis3?i@i&12;<)uVl0?M$QDIZ9tP)_J+YI
z%!Y>RG?OqjzeXTF6CzRq!>p!is-<dlsch7$pZY2?*l!>Ast0*5D=0>nFif3*6Sx$R
zW#md#YO5tNEHQf1ZHg-irSrywrTW06Oms_Stn&aRs%o;t#j2-egee)7MgfbfR)$N%
zY{f<(LeAKtxCW5hZsr<N<yT<SC4Fo)9m_j~@;n|B8z~b(6Ey8CvkzHNGe4&@7p=4$
z0yY;TI2xmapyVM;lQ>05FGNN-a)UVVf*t=#p*F-}Nq*C`hVnxRBBidOr7~<N8p(O+
z!5L;_Dv$viL@GutfuM{@FW6#4bE7cSFCkKihwcIsVDv83P)XEKIheySN`Wrh0X9yH
zqB;yYqM=0zLZ;#(J}sh>G(wnGff<B}EgtH$SV1_z152XA&nn^~28&pX6iMGkSvt%W
zd~Y=#kVG;mDb7MP3W_`ntYc0EwqjBNOY}rj^fikErf?`lqsLGBlgH96L}5Zoj7K2u
zlpxToAw=U#euO7Vp%q9(lEjowCBr}`qXZQcR%12e7!)%v(+`(`Gb1!TE~R)h#Yi}1
zqL`$eY>7||g&|U+v?^f~(h*mD@i+e!&>4dT8cJbTOw3rUbQHN#AO@|*<i}A}!x?6!
zORgb$>;{Emrc(RUE<y5T+=j9$EJb^eAnS=1c4ZV=>o<W&fu7X>(`<M4MoN|o73Pys
zSOpop1RSgdTe<?Dj3r<R;z^rJd_ck)7#8@Fp%i$<#3aIe*i%K{ggTIeI#%Hzv~?h+
zwOaQETir>dxFlrbGsp^MW(;V&Fcwo>fka4yD?$-!>INiE=zCfwXk8RwRWmYLRWe>x
zR+pA(tBqDWFf(@tLUmO`uyg;UhJ#AwthN<rVv@^D_Jc^|OlWg&D3M=<<zyaqObF;U
z=LS@bg)>kHuu=^b&m&k!Lx}%sY$?aHXI~>D2NWXMf-CnGY}4v%4mFBi0&zg4U~{u@
zU;<lK4{<dtG4jMnndeceVf6^-QHdgx1cD_xmu7JdY{~X(uuydWq_7-g6&Fpn0Ps7!
z0VK8)b06hT01Fi-_hSmQ*CIn{n-+M3SG%5eAi@zS$k80BHX$mgSC3~?G-7$WW`O|6
zBc`WNoWU!Bf;0jp*1&dX$0SdTM_acSY+O(^xpg(Yl_*G~V)G(~-iKUO23y%8e+I(x
zh87`o1^&+PVK(qxfkGG0kU$^nQ?iD9&2>0s6L4RwMo9~L@D+ivM};IpVI`qrL!yDD
zWV9G;4Ey$BDAr;bN=pCAa!gzTh<b)J^0I-R;hKB`0zGzH#J6nYRoGIPdb@#zTcVl>
zlTIIEiZIc@3}Fe%@d7glNN(&rpGy9+27h&^Wit4t%mZnCS9q(~iYe{m)Q4USL49ll
zjSc}21yOlHt1KGnk*;E$wr5zW1t>7|H`%gFqhT3bqMFF59jvv3a5gE3q#cH0fARJj
z;&_g|!kSL&EaZV^IJUK10u@+KJ!vLQpXr#mWuZ#xlnSD>6mXVQ>5?akE<&`0OrnEB
zDlTkT9$2h-u49>)g-PU?jtg0tm<b#tsT%OflH_zKFoB?m#3MjSINm}@z9Li!(w3Pd
zfDK}kAt{#ZNh$yQrW*F?EFNk^n@MaiAtKN9D!c(27FIF*cPIz>ISP4?+r*ExS6Kp?
zCAMUHwmD2l12r1>l@_XlJL^53AbBh02@4{bVd;`VH6rd<HJ*=@mSL6RvzEt{cOf$&
ze)ozS+Mzk`E@99@%*{3^1O~-%j6rK_gA!OE;u3^uic*F{MLIww0k_11IZ3*6v4*6P
z2Dk9@AkGtlb!#l}3N`;#HE;7hR}^gd>L_00w@g=0+NKp|%b7@;I-X*&I>^VQbG1^2
z6{zekT0xk+!Ehn?I~q!-<%+5qLN6-8pG^xz>rtj@*g1-@a}jE5K{sj2+JnS~$^5gn
z=Goa4ZIS;j#yIy%t}NkZBtozN@TzGRGNu?Z82X_P8?h(n-^@XxD})+4@Lnneqca++
z{7c5V`o*4X#`Nk+ge*3fG_(K(OV7+-k){>!EKraJwExpzeG(#cIW^CsY}VBv!ZjMa
zV_2>XN@RK@ZR2Mi2E$IqD>*eadOJSfY+l;|ByIxGU_-910g_p}f0)q41S~O$mRay@
zB^d(3nyHeI;Vz7oC<ZJi5!Eh(+h!`_XV!$FDk;JsjMNVA8M@*4E|ej(2?9;H%j(gz
zQM+&FVtPUpzm?`SqOxD33?xGh+7{^~<+Z>iV#oFrA_Oxi2liyI8$Ad+G83D_JKT%(
zE*1YhkFr7Q*pjW*yg}E1_&hLC#S3ED^kp7;vV2?ITWoC_*Mr7ojo2DS*>-%zeY{hQ
zo1PZ8eD{ULTam{XF~!wGs_Jcxa=cq!JfRQN!>ioNBL~DsT+7vMqWDaKw_NC$MXoM)
z>IiAU#ZDQlv3Cpm%G=z{*CorrT+Uz3It6pih3++3;hu%gL~_;Z;Lri&fXd&T&<lM*
z;{47N9kklP84Q!m6<y}m;b3JJ(p_#HW^d39UDG!`KoGssKONLVUDRXFusPk-HQm!k
zUDa2e)m#1CO8wMh-OW?o)ob0>Zyne51=eMq*FBupa~;@&UD$_xAa=dikNvQJo!I}E
zo!OiH(~TY3quq)-kIUL2^nOkqj6vHe+S$9^+rJ%Lpk3O>y=lAe`)rjU)Ik`K7w7;z
zy0QrLhDHRl2pWK(5x^ba^PTF%o!t8!R#(uX(S0BSo``=gzxXSQtjYmi$2M@s-5O_L
z-d*1(p5lRy-~AoqCo>QCP~Zgu8i;{j3ZCVp++Yyi@ftA`Q!T6jhP2EpU`YPbPSNC3
ze$*=7=5HS1E<WRT{tk)POon*RrE4AlJrT4a)C8#|*h>T+yCB-g;?}E>6lM#CzCPrs
zM2_A8reJ>@-~k+<VDhWTM2WpZfR3Qv0YFFU1tPy(pa$MU1azkznxVWzU>g6l{b6Kb
zJ|LkWqM_sv5$FFN@O7Q%2mhgc9w~r6-ULppq)O4+Xg(g!=?OyNAwlt}K=J8AViYDm
ztbXNt#Nq!G^XUpcC?9tu2GHYUtPCzb-d(C5pzYs7@A2g5EiUkD-}YyY@N<9KA;TNR
z1o7i78E{AM;qVX=Hl7@z8}Od%Cn)j_FVyrtj`%AXLQM>$iV(`HN2F>HGAq=2WaUMm
z7+ikk2jL=)zF>~w`RO70B_{eEKn%J8NBo8H<AdSp!SM^G9frUGVm~?H<IDkqp1^?w
z3mQC#FrmVQ3>!Lp2r;6>i4-eZyofQQ#*G|1di)47WW`<%N}4>0GNu2@l`LDjd<iqA
z%$YQ6+PsM~r_P-`d;0tdG^o&_L|gV+m~6=*gyxov0VmSqtdiX5$#6hLpr(?K22OR*
zbzml}1?R<Z07>B3tY#f>Gv^=#I9g=KI`HGmkgSp-z`+ecq~wD$66Dq@nP_0Rl3(bx
zO-paBSO<OS(Ut4f!IXoZOhy1=XqrJAh@+Z5jXJgJ)vQ~)ehoXeY=b0=+P;lDx9;7%
zd;9(kJh*U^M-?Vrda&u!*$>&B-I9!|+PK~Z9(Is;a#n(Et41c<{qNkmE9EX0VT^Bj
zxnCCzG$%o`<Fno+Pv3qSszAEi3p!7k9YOL`$6SF19*AIq3NHW1V1umHHe7@fPDo*e
z7G8*9hQAe;&~Z#TrJsWXZDmq_B!)%LS15khpFnLT))rgz!POUk-+|>#j@>L%m5pb8
zK_fWV1-O_4Tg-<YlKt67S7rNArr&@9siV{|f$<e0J<0q4gm)r-31*mLj!9;jW<sc8
znrg1eW}9xl38zsBU2}~vOBh0Dh;$}3#x&OuC?Z@Yp?KW`j(D?|bm|ym%vtCeLye1P
zq0kK|d~uUZe1kyafT4SdKn-1*<)}?yPjo{XsO?PSja`FiW6~hrWXctilv+wzRneT~
z05$E9=0GEvIWWjFL&OEuR8v$p&s9#+Bd7yUm`QE5)?WXMZMNDTgl3%HehY56;*Lu$
zaR?=~M7rvV2Ccg8BKM_T(-LGCO4(hN5@uGZBm%Dvm=RwHN|ZD$z9>=gRi{vubJ8OT
zpVXhhClzdx2v?Q_*>xvjCaMD_#AhTy(QdYF$tItSa>^=e)NQ#gzYKHCGS7SyhXpm|
zZn}}u(@rQkFCk5sg08q9$Z_qQqDoWfXAZ9)m!t*0Arv!dqDRt`XbGJTBBV)6L(6Lj
zRYBwL1H!)NG{{GiXk>JJ0g7u$VG#JR+*#5?q9ZHs&3E5^|6OLwG!IUA;f5csq0N8G
zBTqt&H!cz56;%g$M2{mRc}1BMM0t*Ye-3)+qL2UXn&60^j(X~<ua1-Aq`wY(?6S{J
zd+iaK&U)^;@6P++uG<cL@WKyIeDPr7-h1-OFVB32zZ(yI^wLjHef13?-+cDkZ_m9@
z&sz_E_~MUGe&5)4kAC{<ua8nM|GW=>{PNFFfBp8~kAMF9@6Uh#{{Iia019w`1T3Hd
z4~W17DsX`eY@h=l2*C(SaDo(^;Q82x!3=6}ckZj82R{hH5Q=bwBrKr`Pl&=4s&IuY
zY~epHxWO38aE3DLpbKw^!yM{xhdk_|4}S>6ApQ`BG%TVKkJu&~3UP@{Y@!pN2*oH$
zaf(!YArh~M#VoE#iS@(BKI(Umc+jJYPelJmG@>!a2BHHi@)Jiiu0h5)%5jc#tfL*_
zM?@{^agTfq3K!#tj$`<28uK%U&(gJ&JM!=zyyAuf*Ej`0mLvpetYb2~p~y^Xa+91C
zVIKPk%20|DCVzw<E!HK!bfn7|=8%O_zSzkY@<SJHabP-za0vO`V-}ROBO~V!%U}v~
zn8f7YCr63QWQwwsfLsD0<EP4J-Xj!asAL`cVZVN0lYabwA3nJG%>=H|k@wRk{<g`#
zT=cS>==5JZ>4%SeWK)0UlpjCv@y>tTLk5Z{ra%7)&`usxnFKB96`2V?bT|`#w5X;W
z(-8v-0LCQbd>=X__DoMa;3P$uBsl-zr!fbF!J7Z@$1#=w$Nr7;ADt-)CiNLNV!@9W
z4v+v0fYq1y(Xu3tn4dc7u}{9F@g6bF<^KFpw<o~zALsy9T%P$pqMF16lo?|>B(PC$
zpo3SDe4jY{b%K}rgB*tmgF3Dejcx>Vt!!=U69;P0xXM+72({=!?Wa(O#xbZR5dvw}
z`43LS#Spmq=vP7jEW|n>4(}7J0}PQ2XIXQn4tVMQ#_11yt>B~o$VEx?5}!v{^dv|)
z%M;=^4ioqQJ3ggkI!qFVFG4gf#7NW>mU_QiI6wu_NXA*#xyIcZBNip;r#^Y**GZ1?
z9>+RK4dOD!orXafz{2D?Rzm+$w`zC0+)W`|=L+8NZm+IPy(|5uY2LlY-~lhyZAJYd
z5BSlNoVj?wM<ZchMn;mRn}HuG7OPW=s?-77=uCg(7mtJjc(fuIqdy`6*r>)J5k3_G
zJFY^A_;qFr@C&MF^OuQr`Xdt}_+n-q&{K=9cZ>#3<8=WWTq`Wss>qVBw7wXRru`uv
zJdSU7e+=Xxd+@vBEwYh0h(CowRet_BrBQWw4`2*q%2W=9W$&k7_+7W6^@u5JJKIZ6
zG&r+V_=j#q5RGR%BN|)j>icGU+X0sZ3iG=MEsUla1ylHaw}|j@_Z;Aoz#)E&jPP~K
z9Azq3`K6sPfgy~s3^e~r*a3)8^E2GWjeXizrwvvxhvj!&2Q<Udml<jdj4R|+t9sQ5
zB=V784eP^^SIOsfGH!7g>XfuWfBP)+XvrDe6Z}FJ&)xG+1M6!}l(}99GhlFQ+~KQ)
zz!1VXmam!mWiXSJk$|>wN#Yz;8C+Y!9L_aLcCAmR3iTi6MoFe)aN7H=@ydKIkEv13
z>U`^a-}rNNtp5%0m(4o8QT5p&ZjHl4D|#5cpf?!BtzdHMHpT4z^0AfO*fLN2AKJ|4
z`@-Q1wGP-3<AAP~jnv^7TzidxJ~p8z>{I(H3zm%R^vMw|<%Ku=edg!}Kir`Xagau|
zHK#|%2`vLZ%Wwaspho%8br}Q3@_Xu3=eNHDj`gg^Y2ZuNr@_B?k6>hXioI6wOFc`@
zdyvMs7f*JX`MXp*Q~V#4b-27MOZTddcF#y<<7iRs@|5HIeaGG~{0tv%6zeY&n|>cH
zDSYCJ{zDuN-7w8VT*-OQ@3l5BX)+EjVWnDB>{Tzl>9>1zt*d_Z&a0nEd(n$@{lXV%
z42QZ7xdgjMQSBwM!amNyD{B0MrVbFo#X=AUT2R0NE1*Ybu&|HLtl`0(qBgL`O<Bn^
z^tq0_hhV@!kJmb&1xYZ;1Ast}t#+yr|G-7SK01yZ{9v^Y5CWIz;SW&6pqHTzK`yTv
z7sD1GqL=?aj%5hZAS#?yat`1E#SjW6fk})M7iVxKCH4>T_gsMS1K<Zgupl?dP=S>+
z7AGJJjdXe^h=Tr<daTESEhrq!gkI_5N_u5`Iipu(B!QH%50sT+34;RK;4Ez84V_V9
zol#~@b`mGhb?6WuotHl?6@mEDX_OTL*RU1#m1`W<Qg}yMDB%r3)oIV>Yxlr54gh-k
zBUsBfNlSK7Cou*-22<vDhF!RB@DmP3<A2t~R}KIKBA0@H2#A`rf-Xpig@_yE6^QSX
z4;}|W^#nqUNKcH|O^_H*0R)MOh>4kaM}ugHo#=@^fry$Yila!1r5H?{_=%~giZl_5
zrs)5QuLz5=xJ0P9inVBqD$$CvsEfPEi@g{^w0MibXp6b%i^XV+$B2yo1B}ARjGsu1
z$q0?nD2>IqjLm3`g!qipsEymmjhR@D*9eZQmyO*>j^${M`u2_CsEz?Qj^~I%;(!hA
zD39~#UF&F%>xhV61V-@yhwgX}XEb&SbPo~`Z}e!82RUT-sF2r)P=Pc^^Mek!X9xkg
zZ})%<W5;6|84vQLQpP|(wonql1VOs>VK-!v6p4^2Ns8&XkS!@!2z5&7(sln(3QIr?
z=HO%}xMlOxZg0aseKvNF2SGK5a4WQvDv6Y@$dWF}l*+_)^HUE)MNKFvMI6}=94Y@l
zj`%-XIa&_q59V+choBD5kSZj_m5!%$*w#~Lc|f!@ckpwG_XLTT2$$eQKbn`6dAX8J
z$(PQUWCX`#4Mmkqv`-LV5)-8vG*?t_CIJ$_VSLqt8zlt1;(Jlm4IU_#Xw{FjWLcd7
zY#0SU^#Ft+Fb(PekP4<)de=raS(N#+Pfo~tg5dz@=2c*IWld!g&*f`01py6)3nl?*
zAvIE#iJ4~=4gIK>$%%qX*_X|^M^8yV{s0dr^<-5vVkKb$ymA6(AzHH)0=4yR`w&!!
z_6a)hWmLEX@ga2}nGyw=cNH~XjWt+>^*)iH614ejr6ny(XA*<AKQz^C|6u>0VSs?&
z=55neUGLL>`ssJ)uv!jam=9oD^7&YirFZO!67H#-8(MnI>6{;WP=7g-AEz#yB}ZZ=
zo-t5j*F|B7r%zWwbSjr}fJRGOAX_oeRs0YSZkdsjg?BIdqwr;8X%`Q?)D0Plm21>#
znH6Er7NGjWq<V;>DfelwB^NfPR3|nF@bjD4R}w~55AwucmGobXrK3E`V}r?|Ybs<O
z3ZidHL(o}g(Qr~XNJbd9PaO7IiBM?PbZEzQZQM4b@RJGShL`iRQ$_GxDEB^HW-sv*
zc#;HYKuKt0ai#uqT~Y@>Ck6z+pbTdOOQAMuYF28mMS$-^3ZLe9iYNa+XO?Db)@EkM
zrnB0iaB8anC#UsuQo0vKczS9t%BK+ba*rvjz&fZICrP?TOBKMZLXc9}<^aM*Y}ux5
zcbRRGN<fTfq6y_MCGlyxr4p3Ha`=O-|G;bzBdfHkuKVVux9YCzldJS&dm}1EzDi--
zR&??6r;K!MdwQ(MCP~6aKk+#~8>gVuT3_3$XYhlq=FkiDdUvWCKjI({_n;2y;9Hw^
zT^#mwqotv(m0cUxu?i-z>uR#9)~@fWvfLA|7Mn&*mV0yLtNp}C{p6xS)l;vTMpJ=m
zoC!Y|cXFC44#WUUKI>Dplx_}yZzTCX{E!UKv_^o}q$cr}Px$|%FL$bf<w%@YN&fJ8
z`*30uw^i<0u5j03v_Ns03O_^JnkVbF|CF*TE4R$UOs^MvOE7!2Cwt1^Gh@)UPLzLG
z6$U}o2p$H2As~P^_CB5Q064%a50Fc`5HQ@3f8S<m#WygW5`IH)77suKVt`x3XMBeV
zx(Dk36i6`8YAEd&ADg9Mh|xc<HEz)s7l#lHmSS@rC{iG}ZlQJpX8<gpMhiP|7A7zR
zKJaAJ_W;&c5`lUaLXf!+pr&t2y_^)cbBn#a1B19XgD;CNh%~)I#8)EFEJhNx`c#Hz
zn6z<0H7EzJU@^Xx1bl)K2J!W5bqGH`2!uMwrH7eF#E1WKTWDE9b*cN~ndfyDMiW-?
zbBF$$c?Lt8hnEuLhJ+@egrN4g^;^9g3{cmby&t?f?f5?UAP-nsOmitro-n)hgTnT6
zPXe@v94x~?=D{Fr!-yloGpxfqjF2^a!$0ghJS@aR%%(mJ#77J>IZVV$%*4rP#7GRq
z<D$e(OvP0!i%%TIS?n!SY{gyd#hQr4S}ev%^u=Xt#=aQFW30xBbH;7##;%ygYb?hV
z!o_cF$9LRaaXiO+JRJGhw*C+ge~ZV1Ovsz0$9#;)zR{3^1ekWH6om}Qk!-z*Ov$VR
zlc+>L>0oe@%*mZRM~7U=p<ER4YD$O%L@!)Uo~-}MkqpYB?8-nv%H`D!v{0QoB%EnP
zQ#OTDoVA55`T)ykfff}CiL}bati!GR%E`PFq&!Vzun)A{Lk4J}VMtmN+J02ax+PJ%
zK<anK?9J7S%*rgzHbKg^he^=9Lu2Y+3#OzF24T3&sCieC-0WuGY|kbe&f~1lG10Qa
z{66TcL$0c3Y?f!(HmU2RX&<Gt^79oXd(RI&tNFao6U`FwYI|dl48uT8F`Gl@S|WSL
zuz)3$01DA14bBve(r{wYKf}>DB(hvNu7n3zMETB82@J##z9y~H=P1!B?bEURK24^+
zIApd_g|>ee($=I~LEr#uP-pleu{$l*J?#I}Rjnp<dknBAd$hN7z2GxAtwYMoylkX?
zW|PeY41f-xu-yEyQ|;F7*wa=$(c7yo-77ye=oC3ULKR#R7hG}P%2E)hVeu?K{{<Fr
zjo9-T*K)1Tbqqu?96$+{*pr=<i_O^L?AVm8*_&NImVMdDoY|Z$+MMm#pY6(_J=&?A
z*rjdSp^Vz94ck)9+O18=uN~XB4bihr+lXx2xb55CtlPW2$G!dA#qG(#E!=WU+{Vq^
zkc`~Pt;T-b+|yms&kfyTyvPqJKQXB;wH%B7AP&9o3)cV-&(KD&XAB5u4#3b0V698Z
z(B9o(4sfKS8i|}5iQh-{4jFlC_`Uy;@ly}@ZA}55k?(M8VdUSq<qys<48$Pc&#I9m
zMd1F;krSSg$hqF_T}cQ&RPB(a{1ZsSung@WX$XGd@l)Ua?PD4V50VW({+*HU6XP--
z<NmPUDjw7~u8~+d;mB#>22MZg{b=SuwA5`t)_vVse91C7Kc{2}u=lXMsD39Qy@_`c
z?{%*1=WP@74;X3^^2-w1S3h1Zu{}u{5vURmKuF$)5^o?sUM^tovw#~jM&{OeIhYck
zW}hkXvRPiA>$d0nnLpQw62KJbCy`=sewg%N=Fep2RFP{vWp3QySu62TW{z%bZW1P{
z=_cXkm6{S_Zsf|C<fZOMBHI7t-mOS;DT&@>mk1<&2j>qv)qPiSB={gIFC|zaAP@Y|
zz$r#kYOYV6K}q*;4Rmn`;^2oRWe%F~0LGA3>OdEwUT5mC=LP(gVL6s%`48^U8DY>3
zx9d{>U=GnB10sM{+ZGMlU@6Id4WY_Y`ZN{2<PYkgyGVOnQ_u~*B?9{{0bNxO(I5^o
z@a*F7th?Upzy1&P&{7l@@aN8}n`)mZFh)(oTK7OpV$crKKJNE0@aP^5>d@@Hbca|F
zbhrX}&Hn7sKJDNgF!(19$ewqIU=Hox?6m~m$L;`Fpbe7tKJHK?3&wNi4)P?WTUang
z>PPLPZcL``^gTh!0A2q_5G7F;BYACT5*f8oCecyQ_7AtrWGD5kXvnIIi+8#uv9wfX
z?W|x87F3o+X6cHky~Gduz;ycK2_mo;gJ-mX4QxtlV}J&<_S5$zbrtV*?n^~W#UKIB
zOS2I7V6)2!Q`>oLA6$($`1e!P!*|%&hH3^2u>a6a$5yimRTycc3v_SyNZV3Qjcu58
zY(9IGNDYyXb?zjU`SCOPl|)lZ&-D6(<WK*@QSUBAE=PNqT!1B5(?*|%l~|-9b<!+Z
zfp)d{ldqeaQi645`$S2e^_HHwvASegcP~H3771;T4igaZ&?EtIK$HOnpGX_i2K}=u
zEI$N0TJ=nKHkbcdrzKbb0q)<wdodCbltE=6r!4~=atcAu;lErC98LV^$pN>2=p3Ap
z(C{B8g&0ka+&J-`j7I}KDsp(s;=?HfB|zdOLSn&#F&(s|81Y}EHt8mKTd3lO1Ed}~
z<`SwarAL7dJ@&*1>j5~KKp&Pg$tk5nd?(GGMVnUbTDEQ7zJ(iC?p(Tc?cV*@%fVj0
zef|Cg99ZyR!i5bVMx0pjV#bXfKZYDx@?^@DEnmi*S@YmtY0)j2W|GztU&%r(IkXS&
zYSs=5K0x|UCdYyP<T;c|JJ;5sTMO3Y<zR}$futP7nJ9HHZM7c3V)Q3NCq{_$G{(lg
zQ7X){PR;)+-&@mdMWnFC4wM>uB~zCUxck#IbK&!oxhI};kJjVG;5}DfT&W~auv$nc
zhpxlOK99W7h$E8Ls;)Z+wou0$S@yzCEWQZjX`-vp>r1?^(h;tslysTSzH|(1kHCQn
zQYak>M4a!ty+SbJmup(%u}2?&1Tsh=hdfKK&5lGeNhOzLvPmbOgfdDgr{t?M{XjFx
zo!baH4Lc&`x(AqH#w0TsFVFhTA^e!D2Nb`0f=VJzbc#+PnM8=@nP;MjkH&Oj5KgtV
zoU2WoXb!!mAQl(eN-X9;d_*e$4m~tB?;NT}P^k<NCI<S_iY}@NliRC^8uk*&L<fWz
zVz2+{YIMjS;<9^mJG2`7hs0N1OX#c!A36_G6S=uZf+t4$)TEVmHOV8tyoBhN3pq5%
zLkD`=v{U*XlnD|NAN|L^lRm_#KZMx(Y9d)33I|ZWnEf(ddFQ3KUVBY4l1hE|<+opd
z{{=W;fuXdrJ1o%}=iqzS!Vj=E)(X(7v79|Y+Ed{a>Oo}x$t193-SS90XZfNhlSN00
zXf}*ylXRep_&Ro2*Ce3B<&0}qM^MlH;tj+KeimX!i6i(K2xD~KIHm_?4L4YiQdQR7
zz97LUVzYi7NacxC_O2pFJo%Wqp2wZ=9^*tn`oV&TUFXGW)x6ebIdK+L?HEKbC)od{
z!IjuWl>9<2U8R{O$Q&8sUN~{Z7iYY2d<TX+a>*yBymHGgH>_Z@J`3&2&K*})Oftvp
z<xI1zmRUCW{=pApIZNVprhaBOD;!_CX=}aM_{k@nnZ)ucR|j;G3hL;X^5|83@R<eO
zO9^^APPq9#Nh4$OjK)pw_TC)vlQfo_)JHu!*`eSL!M+v;=tDiMMT=MW@TO8)Z~e72
z@>^o=IwlZ&*_MVLfe;jwS*;0H!C6j%^wu|wkf;iIdPXwtHY@+dsUT335sg5%K@N7%
zgL26i=0rF`5|+?}Cq!XiG&e4Vk;OHmG2I8_g1QB{Y%KS%L4F9Bv<C%e3OfJ02Q4m=
z9SpVQP6cESeqQAd{z30NGO39_A~7MI-NHaMberoWM!l+eN+oyG6uO$F!|y#udf7RX
zSWrM5f6#(GSVKuwUev3rEvg_-EK%ylv6rw}Yjx<5fk?<jA~E_;7eXn>dz$wIL7g#m
z8k1rINfkpAZ7*wLRGn8U7?G8PK#ur<nhZrbN>YL@gegR2Dpk2kR<_bHD~#1KdeMs|
zEa4ZvAWk@zV2EWn<20!$<qUJ^04wa{9PXmVKM*JcBJd>yVW0&C9IyiGH~<U#(8wAh
z`2bE0^Eu$*;z{afh+~98k{aP=G7k4D1oj~rIqaE?91sFy45OJ58AtyPPGy22{NM*Z
zxYj*}0H_f369}gY=Rp3n7a#}(9j6+eIR@&02M|FFI`hXTASwhP%qpWlkiY}{`GX+D
zKq&bvDMg9UP`B*`3C)~m$@XG`WD4{~96?780P27gbkrfV*a1lAIRr2er=9Pls6ZAP
z0+x!Uk6YWz3C`fIgU|w^VUUP&4iOF>NWcLt@MlRmnL`}G6gC8zXhDB)(3CXK0XsMZ
z>m=z9QvASOLuiCU(lG?Ku8Ietacc<T>W@-*)d7e21V}|1R+G}>jt@A5Io!CwU{=<$
zm-W#pUAbA#cGk0>g&ZtjbedYqVhLj)PMB(0OJWcXvuL^F@b>=!o*}x`0VvSMI^%;O
zji5~<3Tb0sPVhOGcokl1nJizhO2oZf)I(BRqe^zW7sxg(Fpe16UnnUt2S^hs2&5=8
z{IaY1QCE)T9dA|vgPnW0i7#Ss?BOCX6M62XCE%Iw*fi9aU7-WI#K|sFNc7Z+w9A=7
z(}=5x^IPzwH@ovZ1b_vDlmw3|Bj_rxS5x)iy<7yHqblzfq?TUv&Xc&WMRAH%+!oD(
z*2OP|ag1gB7}2tYANa6GK32TAeDuRd%hT~mfNYi_pTr+U-mzScTo!pDnKe#MGG6L&
z8-B#YwNb`$mMz=j8F$&sUj{R0Ypi85m)Xo`Msu3gyk`GXhS|+;hI5=RH)b~1*@O6)
zU7qvIJ3IS`cY4+{llweqLKm8GT$Xd96}@OiYlhB-hV;CqC>Q`nnl8l}Ow263X-;>V
zE{JY)s6{<$QUm7Eo<{X*>Y)x+x7yWhOZ8h;?P^+YDb}~fwWmQ{YF_u+*I_<&u7y2p
zVi()k$Nu!MmA!0c%Q)D`hIX{2J#A_ede_aycDA)W=W2J`+usIvxKVuVZI|2J=hoM=
z#l1mvoH)hFkmI`LJ#Tum7~S{AcfO-^YJ4EgB=v}gty5hON^N&xQY;^4@l&&o9O}w=
zA=E?+B{X7lVr=!sxUTiRagKM~GGj(ZIa@dpbCCab2?mGsq#dAX$AMCY_dv$OF_H=1
z#5SRI37H=gPUd8w98`z9dB%lqXL5Vo=toETm`77fcmG3|OE88yU>)l!!-I~X6HB}~
zXu!0%d?5S~SC94@SC!0S=UFbu9O^;~pAOyakS;pX<v#a&KbmvRI<3qJO}ncR*eo~p
zagUyMlE9w@A3-MkS_(gr8<WlFV)4@R%)<AxEPgGHoV?}RqIrxQzVeFKJm8fj1537s
z^A4f><lnyfQO2F_uZKOe?LP80o_x&}K8PnCAWgJ&<Zygxy8ogBf$1a|YT}UE2}~!B
zB@n~kZ5d!~Y`YgmT4k6f_R#fDRg&NkpC13X*pNfir`*(b!#syj$2FoMaEZ~!I~7)s
zd-pO3^Ep5QFc_u?;!RtVSn&6+YOlT^yS4C#>03FSL5J%L0pbe4nHnC6kdX&K9(NHD
z<l_tFs||8cpD;+jXuut|s4!GfiR+WVhhZ1!ij6;^fDnKw%3{42R2<ify&0rIQJcLJ
zyN6I117;YL4>U9I>#%>o1;cVKu?PV}a4)S(n%d9^p`ZmFkN~hyjxbP$VTwGyC_T0q
zu$6HD6^I52imCSKLSu-9z2J_92>~Q<my$S#oq_<00+g815JOO>2mA+H01TEp5WR7V
z<C&(aco{>G1+M~%>{7#(n}~5R0f7JVn>ZmP2M7bzSSn(;kU&`rneaj|yrR8O0Wvhh
zmRglzLZnvdi&GI5NUXvlYM8&!yNRHM9Pp>@n}{h2gJ_s65s?W<L@N6Ey-*B87zD<}
zk--`y#$tT48^nmuSS_YQv*1V-sqhNhpp~%r6s*x067i($s6H|D9=9+La4{J+%7orK
zo+0Xp7+9L)p}&Cuzi-+Lva1Ij^PyQW4&<mZsc?jN&_~zGpfTD8jTjD$hzE%Y921!i
zgd>~|!H8TC0d_bXLYN4RNR{;np0fzY+89UGC`YS6M~MJP;=m6UaTY7s2?(4gIg*O%
ziwARvfj`j4fRhXGNfWmbB#QsS4yl-q*N6?R3C5nZmti!<pcG0NLq-o_x_v;0(@;Vz
zTZx*Jj#+7wH=#!Np&&Ngi)PT1XK*7HxrdI)#<wVzZQMf>Fa%>*hG<AFKtY78Oortk
z5wZLSQh*wKG>JQbAU??>6EQfR<Sqw*0%f5E!wL@u%9@i=NK)AgIQXJP!4HK9lhGLy
zGZ_etAWO4E%a&S8J!#90Xv+QTFAKYmtIW!+Ov@~U3-CD}AovAkIFvAQk&fYrnUt%b
z^U2!m5uhB(+|<ohDoU$3EkV&G+Dx&QF&8nc7+JWOsiY1T(U@HPi?e%+u27ciQ!u#-
z3~nHov%tK8=or8N3oQQ<ComeL8;Q5|I6`4)mGAVP?L188`XOFnpBQL}RrCuJ#G&-E
zPQW0R7|_EpG9Bmi3j;|cyYL_X@(Ynj4+TOB8gfC~bkN(}%?OoHqV$ZB%Rw>#&XLoy
zf<T){U=f)x$JSBKiI|hrq9d2fGqW&<UTC_s;LztYhi>2pcTfj$$f1_tP<lvFiRsUU
zEFTd4haI(+WHJls93w~ABNp*G=uuCsV9&Rih}{5(=6O%(VV1@u2+<jx(iw;tozWV-
zQ7hHa)axX@le~dI(bRLBf;@>8ZBfA)2yu{ydtfyQ;*E+Zy^dMXt2@&N^-~_f%?TCM
zL7kl5tc_9_gR1{H2HQh3nFs<0Sc53Np&ZIW|Cvm5*`t!s6^}{=VB$t|WDB}937SL6
zxH+Cj5eL-TNSENxC@mi!0wN)Tn}QSv=bNMB(#xiK6>=#+`)QBudD1MD9*Nw;i98%o
zwaBq)nNyWG)Vi=O5R|SINla2GJFJaPjaL2?6m$rNSs58*r4Fzt2(fe&6FDmo$w@w?
z)<0!eya-f6h1YoPmm2d2S)wId!X@7v17i?|yi2qCinnEI!4SA8f%2!2@+X#3roF%c
zh<bqKG7nvZsn6Vt{6Uka{GPoq1Y6vTs@Nk3aDielCsmB9GZ-e304hM?Cm$HVZR#dI
zat%Nc0ww>TE~8o<S41d+psu1Kq!vg5zIcF+GSCOet06qef5@kQq9`F)D|+w;P-rac
z6s%nFst}MCuYyZo(O8ak0FT{^kR4g}xT6p_gNap*d@@BM_<^Ewh=>h?WSH1l>6jCc
z1$SYNk+E1<ITyjo9&2^mVHhSH9j0PBroAB2c12vfcvpF4+{Sg18q2}eGA(Cim(>~r
z_A@hL#R%KNt##Um`g#_JFphW3p;rk9!4xc}G0&wui{cE6?s6vL0;ImUT&w8C1>8fw
zc#hz@z!NK6iVA}*36(2Lusy9#@Cboxh>xvU#fE@C>(Z|En2wPtiF=r?!+O4}f!!OC
z-CqB6fZBZ#`Gc%5!cTTV-3U{OUIYRk+*{V=PH_bk!NfrGeHZm`7qsEO#MR%qSX{^T
z-~Y`Fbu+T%v9p2fk<%Lp1fGkWXvH8sJ$?w%zY{dL=rOP)J-SfScv0ZA$l$MwU?M}j
zx7gsi=*PrUy%FBu6y{$5X5ki=5&>4>7`C)~h=z4Aoa2z;9KM(Sb>SZN;mpzDAigy`
ze3u3m;v;s~A6DWet_&DP;wLV%dvFG2SO(06;ww&KCf4FDUJNJ3;x7i{Fzz%S=HfE`
zUoRHpG*;s^Ml&)t<2RO9G-l&DrsF!kEH{SZJQh?rw&Onb<3Bz$Jr-mx=3_uM<U{{P
zWFW!gL1yHj<hSgtO>>}>hg%jSPUK6*<RMw)M&@K11UZqzL6ci8pBp8Zv*foB2Z~dP
zm()iqMw7l!yYPfgBJqb-u8nuF<xJLPHQwY-_GP+Ly45<d&)}3^7=~IRWl`d~)`)~2
zRXG7{3xG2R39#6wjl{$uV)n>p2RP+j_U07s<zE(Oqcc>3h`FDl+<M_W&r?0e<KPjt
zJWCyjdQcw`P`}A4y$+tEyyf68xrgzq2^t242RO0DlM8l63l#q5g+{h;9_NSFw{otU
zP<YcGk%^F?E54u&vw>#UAVCMPPxCvh4ivc4t>60dJ|K)6cVI~o=mv6#hHL)-B6SrJ
z1KSG}FrD_~#!woF<O%^mp)iV?30-&quL4!(vsJdJAD}p-SsA~*Sg!J-hUka@4RZ+v
z{G9I736<t&hW6@Wb7+Vb>vNOn0%KGn(FKUQ5wAK3^E8IQ^wpt&M6MN&ZHAecb%2T~
zT|sHXy?Db1h{JohPWU8j)zQUa0vDaml^Fo3PwCDUXhDt`-IVy)^B5V^Je?Tm1B^YR
zIjloE*{u-phNtC=ymFRKEJGdYYX|u2IQ;6@mbS1S>)Fn>vaStUNarunkj^n+jrapz
zp`REKkqi2|c)-V(RNYzeg!g&JdDgLdfCn28fp&Pw^aTs>YY2}xS6%;AT__#Vfd~%K
zo};mVpGzH|@Kfp-Py}<4o_Q2q9KJBG&<KH8)pM*g>w?D+hVA_xHrb}_|5i5J?g$MX
z5{omPj@g2{Je-3_&DCs8YoR1_pw3_s)$dMUo+1LnLW-7|2-y6hytPz~2p)7eit(Nw
z_VG&hjhcgqgr(sHp|DFm!AtSb71bC#C(6tSlBA{qSN`^KVe@YQ7xGdQa9v8~){y7e
z`iq`0(7u2g@I*`@7=};)lt<Z4IPIbb_!$#G-=;Z}1dUk`-xla}#tS=g*s2zfSc9hK
z7>@xKj=+`t{0ru|@*lVJSPSwY*YifR?HtT)-TstFLJA>`(>edGQ*@Lgk2qWs-EO|D
z^O4BfIZ75hojFWWY%IU9gbI~nh{85yQMXXY1cPze$zV_#*O=7_LU)Kqzw=h#v^?MQ
zSeG-~{tRiT7kR!g0!hjR)z&wkRfnim)%X<y^^!-oxT?5^V^EK)vzG0~$?nGNB?ND4
z?bSyCFVp$f+<BXYnhscfA#;?X2ME*J0J>(K6;^lkbT2emm-TiBHnXVLS*oR5A{-c!
zmwQMouL6P};DN)Hrx2h-cYz7>L?1UHFPWuTit<Q`LW1ivfxJpt2Uytwyd<(6rZ@P9
zC)|q^=mBu~+rV{+9#Gm42!geRz<v^{eeZbgbg7^1*!cg6Yd`8nv|ysW@PTBK388RV
zVeqDjK%m}ph>rzZzCenIpLlggdbo4<rH|;-F}cZAT^;P^yC|`n?aIDb-<Fc!Gx^<z
z-IDukE|YfNzn~A&-isBO2Gt0`pD+oNb`|UZFaDAU4hzDb?u+HZi0HfUuT+cj0uUK6
z5Z;Zd6RU6ArQI!A`<PGq#b+~iXZpu~u|oc!3jRE}Q0N2x;MPFsWCYE4p?o8A<$r+S
z%V+%3S2M?l{M7F($xq{a;D?T>NYj^n6-Is4w|!P({V=v`;hg>6_sQD7{oqfb+y`TH
z7@gMg{p3$v;1~YpCn4fj{^*x}RAYYUw|>ik{^|eM{_VH6>-T;|%YN<`|M5Sw>i_=p
z518;L|Mh486*GVIhkt%i|MsW<`Y)yTkN^CCVYTSD(}78V_$P26!GZ=4B21_-;k{@M
zuPuxyaU#Wv7B6DVsBt65jvhaP3@LIX$&w~dqD-lBrOI9oUc!tib0*E2HgDq0sdFdK
zo<4s94Jvdf(V|9=B2B7vDbuD-Z}v)v?pUZL(+u8|wPfoUZ!A07f*FF|*Rp2MqD`xI
zE!(zk-@=V6*P_d(cJJcNt9LKozJC7#4lEdERD`s)S~Yl>Si59P#*m$B&|kcGp2kYf
zta&r%&YnMm4lVj^-NB|$qfV`QHS5-{{}%t2nwa3dP=^MFTjDitzkUgIVZNA8V87u8
z@fknpdo=Ur&Ywe%E`2)7(yy;$&#rwt_wL@IE<`tbVC~xibMH>+31*^yo*qzeAY$LY
zd!S;PFPJO1KvEAJc%{orBG7Y>3=oJ##7k4qS05?(5rj?*Fd+y@LHE$o6?GeO*rA6X
zf*9gR)_qr^i6^3%qKYdL7T$OQ)iy>q|DdB4I4j`-lOzA&BEd^y?32!fArK?Wf(;I|
zUt|Ia=m0nWjFUqQWBHTGOD0U{zzGvRQlAVCgkTIUK2ibWgoi|Pp9Ad?#L0k5iWsMy
zbJAI-opF)KqMm#5*{7d>1{E7Z;$8n$P&$ZhRp?5*IIzV)0(R+MqvU-VX_EXg>Exx6
zaWdaMG0b<)nv(uOsivZ`38e#;3gjl3aNZfKth3TutE~g&38=2S^4hDfuL*h(p$6r)
z#4uGIf@DetK5(Of1lBhtoT8RVkdg%n_@qGB{=-R`20EI~s8((f%`?wL^JRPDIv~U_
z%0vTELF2qM$gTI{o3Fn6ewOR6{{kGazyk{vtU<%l77Aql_;ZYIUkTVAqih;jEqO6G
zYAvS!Wcz4v-bSm4mx+8@6Pr!Ov?ISOv)r=FFQeoy!86lbv(361ToA$o?Yy%}pUxLa
za6nJ%fW_NxoC|;hUB>CRF|_~pX(IkavUG3D!T1b4^{Ar`E%GUQ&oREp1GCv@qn$R(
zGT+>`+i%0|TFw!^_|Kuqp0@-wW!>UH5Du(C(0Unr>43_c7R0E^LVo<T$e)V5UaB;P
z;+3d@n~CXq^1-UM=bwWf`gCl^UApO~qt4Xa4foQ^R=@ZXnLmdaqKv}}f0d4p4%|49
z?qL2Ri;qt<NXiaDOt`}jJnU`vl{&z*LN}mD@IV*_I?xFAkNi%gELn<-&Va@^W5c9v
zzO=FE>$Bg!`)-k*y8QFgU%yOq*M^u@xYu_WSLuCaa9Gg<ei}qInj8*gVNg>yz9gS{
zd}#~*_|lH<VI`OVVMhNna=?FJ5(Zc`sZ{S9Aqh)p!V%dog(_TO>gF~Pe85mG@mL7f
zEK)<^-0&Y*%i#%o=))fZF(UC}ArXsc#6P((h)P@{6PxJ1As#V`Qk)`plIX-MVlj(a
zycHCw=*2IBQ7~5AA{onQ#xp{vi(y<N8{4>)F`_Y!a-1U_)uKi>;xUhU)CnBx=*K?-
zGLRX$;~ooXNImvZkcwO+BLPXsLqal=UQA>oD{09~Uh$EV+$1MgNJ&hBGL)ixVkb*!
z%1K59AIc&~J>t>1_cbIM8Z3#M02s?zjxv|JyptwR>C0c*%!N~_ilWF<m8}rtgi3S3
z6HekLZEfo%&7A)eI*hT)YmTy)z}zM`f8|2|)opf5Aci)8QMdQi!v;qi2`zxoyMd&0
zogun~`mkwFMQXE~`rId<tmrcuEdg&adgW$%lMo&X#5lz{2y#RMG8!V3I2U=SLJW$L
zi2j2g_&6v=2g1XK8U#25y(dZQm`{G9G^Hi-XWe#o7yxEw7XJ}KmaL$xufb#rWHAte
z(x)H?FbGBuf=PaOW}A^B1Z3iS3E{%AJNfKpf)Q}Q8DP=~+Bgte1yL$Y2!{^yrLUOb
z$&v#qM37p<<bwnW2U%<20FnKpZxWE;P&MTs2nnPf+K@pArlAgpAho1|-Qr1AYS_a9
z%SB=pPk#Si+8LCEU<p2o1J7O}1Yu0bQB}H9mbSF2!i8x}M#Jh$<hc-#F^YrcDcK2r
zVZQkYWOG{jDKzi#i5*DGAgF!G1I!~T2dKapYMLBF&XlH?q{>x>NXD16+BYys7P(Av
zt5|##wJ(L1OaiIeOxiHm@5ZsPh#fC^2g6da=I<K*C>As~BcLtNM@Um(rEv^IyjFP%
zRQo^`sZ3Q{2hO)5-ZF=e(7U9j4a7|<qZe`i!L2q?fxr$>6!s2>4j;WUA^a5xy&}aZ
zoetzdlx0_;Haj_26>5h4h0&LubdPw<A_U#2OgxeU-WzLCyye|7kMnZggCS}wFg-~)
zelh=yBO^JP66u&gGI2Dv#-wpx3fH(AWiE87iy*UjN%JV;D!UTI9AJeBG&wOes2SwJ
z2_|!dMoW;siLA&-PO?DQ<t}*1E3Wdnax@4yUq(@uQito-1BOg4K4%$efyFVSm8jz$
zLpst)`LRLjp$uX~!<<7l33p}kfJJi*%oN?+7=}Rv2}l`oBP$tA8jO)Ii||pFJ=TQE
zeC7tLxm7TU^#<Wu*&TH{CZEofOjLHknUqOs?L7!ZFJ>~tH9Fc@e6*yiZS9{>8X+-S
zC6RqG=V1s#$q`|4x2i?71g9F!Qahkmu6B@m0D~ByZqpOyQMD5ndLVtXb!4QLX7&GZ
zqTcte>^kB6k8pT<&f(75*1GmJ*!FEl?v{0+6Vhyfuv>=~wN|sF?eQj3``RKOc}=p7
z6=HryK<Rm?fdU-rbU!WzksFm!(}TV9dHGuuM0aE)w6s>8+1Jp9aN$%|VV?PD(*?QQ
z#W3?>Bw=Vr?1E-E96$%68$@yus+_(*o6%&5_2XiHU&u*rc9O5|7_EC<>;~cvb2uiT
zDfdwbxZw{q=@fgBC2J0*K|SkXPkWW>UXj3ODrQn79Yc^nwZh^66I^9I4?x10O>otr
z66hXawU<9W@dM;Neh5Ces^S?h5XVFQAE|YLsb7M*@Qkl~=R4p73?U4#R_p({LRdnU
zx@6lQ_y`Eg>oVcL_Yz<K_6$Fr=GdE0%Ckd1`UTVWF_*Bvej{cKdG5?}S9Nn}`TQk_
zz^Nm$3c*HA&~WuRwgWO)kfE{)_UA)c1;;D~r=tIY&06YcZ!Qx@Emg+QpFp64194E;
z4GIUP)soCkOq@V5;onQJz;5`Tj?f1CxgSB~NctSYygA<ox=h(g-w5v5Ck+HX)Po0x
z#>QbpK6KPbyr4<&gAUn{M<s*{CWJ<51P+2=5BiV@l3)-XmI?Y`5gMV`0ih5oAwLn}
z5jx=$epeDM;S_FD6GGt?VxcZcAr*3=DOq6_f?*go(iV1M8A{R@iedj6sv#Ybp&7bi
zA)(<K%HbU5*c;j*q{Sf}>fs&&Q5)XjABIsL^5Gy7;`0IGA*xgo`9mw&7;VHu*%V?V
zN@CjhAtG9$5xG#YY=t!ygeKxm=v31rieea6;w74*3eC+pY(+DO1IqEtV>E+SARyY%
zlM0UFElOJ{p5iXfPbxl)-N@ZQIMzU|ph9R=M8)7oH6oML6D~Sq^XVclN~7t(QF$0s
zexQeEXdX=bhj$HxIFQu|0MJ*#gj-b$qd)+GY#`0uLtQyQe&`in`4wOlM8hn>_B~@h
z3RW~uV?VkL9OXuS^vpR)M%9EtG~krWHAxsK16b|GZ-oF7WJ&+EoP!U%1cE%kgfx@h
ziHUaoL$JYwH_F;eD4jl<WG?ZeKdL0njFEW!B0wq1KS{=?xZI~?jJSlrI|&H!q@TSA
zM2;LylbA<6499xJ8uqvtjL8^{H6qF^+et!YHm&4T=8+ZUPcaSTEXGCp0l_c8OEfgd
zZ#BcYJj2(Fg}B^Th!IYx4O){~*}0?(%{f>z+RcOnRaD}oR8r+$u2B-9gDbvbOzMqi
zgkM()MEA+WScs3SX$-8e+DxQMuI1%q+EYsM<z?cGQ~>5RHb^#hhB(N>J#<Yn#6ZW1
zila;%0V1A4<XXn1W|DMVLLeM2QD$u}l4W9MZuS#G9LoP}paU@=$uKI6EuzJzq-D2g
zinwSM!z4qpq@RVw0Q1dd=V)EcbzP+J1K1G+%9NySdZ!%Wrf!O-ip-7wj6wD-iFk}b
zGnkWB#)aOY$$e-QEWAV*B*RZZ%Ws{)8Gu#B&;o9So)6^IeN|YSP1J4B1W&O7r4XC~
z#i2OCg1b|oIKj2JTY|eoaV^D)wz#{M;-ye1TC^00{CxkpIoIdz%rp1%%sXrEcb?gM
zttEd(`2ouK^W2FgH*h!XR?{b8H@ucqT1X{{?0YX=RGS-YR4iSn_Pcf@6nGwoc1iXP
zvWhh%i%mEn62zKkOtH(o7dw?4F1;7$Jp9~#9>xRYrD8~EF~jfMOT<lyo7+obCQo`|
z8uvve5$~r|M?vWKQ>FLiSYM@TRr$*8r(4)f=<H`ST4ng{X9f+Vx$kEkM5c!Aqp~Hc
zvQqYQBqFnm_j4aBa~k*a*dlZL_Va@(^5*tGkVoeK+AmNm|8Txvh#pDLYeC3aLbVVs
z1Ep6K!^`8a=jUfDTq!RkJ}5huWv0hvNs;G;%SDQ4^5Roki_s5t%2=z|8@G*7XAM-C
zjaAP@3vDoz4Y8K5*hkPruyLZXJD0QA&sNmiO9`#d;eW&c?<!q~3l|zHu9;A<DmQX|
z%##iCoU{M5e$c$YDqZ=@d2Mnuv>I8z;l@}kD<|7#Ln^VI6bgD7S4gJuT|P%F#31_+
zN&%E)WK#%?=$@VF(u?SF*MUtO;v}#WC`It{=Gy5VQW~<g@YZ1HlsNgYqw@Fqv~{ON
zn;A@dkvU=?Vh^T*ePpiNsfGG55xn@qg}M}#{Q@I%n{qJ<){ZLIjHu25oDkjWBuj&r
z6Po|na|jBd8}nhZQArw5&^>9E6Ik0EYuaeTH;L@YxV1&Y(Q%zjlWbr*swcun?v`>&
zunQM0VHt@#uo|lLCP}8l^=;pRd4Kh52Y?kf^F*s3vN8gPKP0`ywG^KHHUoraU_K;{
zAF9$uX2W46ld>&&zo2sQ7XKm?ABxw?kxB=ew#6A$2J{|-qy}l6TnGEkk~4BuBf6c`
zK>X8MCVDmv6e@q578jQB0R>{A&bR#29?P~rlp@xsFn)AJ{IJkR$@?8+HA815Mt>xK
zAF?0Qvg6!cmr)gCTCth!tNrw;r8G&dChyNG)Y0&SqAXYu7fD%rK=X<052@issTway
z;6QleBU-!w+qTMtCt*a4lSW~n(gydBE^(IWw4Ic-ym7^dc@PrRL#o+mU=*a(wZE)w
zYTU%whbl*0Q@B>Xww2bYgBrUy3ioKXWF3U!VA-7RqjUGCO+FBtJwD2a_k<H5p`tSs
zf7$;0{c>t&@Y}|8E00?V6o>YoUUTViQE%B7Zsn-`KKGbuBdR^+xZmwr*1u{$W;e+*
z22gR~$HRZ8Wk*cg^5DKn!>3QO=H0H%a5L-{nW=yO>-0l5YCIYj{i`!Yzv2LCM7mgX
zUSMv@_fvx1Q^IbhjQBCXdR!5ekjc;(OEn~U0p9ais=h|ol`dEM{wV2tCaDGBz|?5Q
zXoS94xk{3XXWx1folV-SGpXy`>zdH<gZ!fhr}Y-ZwNK==Yyaldz`0Qb>U}nrD6}en
zWo9H~u(Hv)j7Mdlam;*tE`-rVE{bs&lZnVhr3sNumtOrkUo|b8j`qCi)j9uFB=_j)
z>Xf3mF@{7>xJXuiAYAWz)9Mf<$i#U@`$PFqnFGEKwG)TKUW%MZZuF~yzrrMw4vktJ
zRU7we&Q1?J(+w1yFPuKMIpfzzNwSQ-Z9bcWthK&2M&Y=4yb1nW+Qy7mi(uz-n<EBE
zw2ryK_$Y<B1g7`bE^LbKci0RW{`vjD)>VE_3|S;l3pW4<7dA?<vS0{SsL0!f7s_z|
znQv6%yq?XIbTnMob7R9$xNXi9I-Q<;b|zhE6zg6uUF|%mvyjB(s>70RFL8?EH2P@}
zbKTTrtd*e89i#V5Ad81jid8_0`(KKyv}4TVx1bB6m<yAia=z|Ze!qrRUWd|Mpqt3Z
zr}p&lCY3KfV?8H~J|_SL$|`OUKWQcRrp#1eEU^S}MyKb6oC%NG2!{~;QT=I#{j~{7
z?8*Q}W@9|*FAH(M5#kn_iN$Dx@<gDkEahQnend&fVGzzxd!vQE*?W1?D@$m`W3W6g
zY&E*hx=sXmclV^GEH>(VCHUJ<&Kl9n9in?rhiU#oFms;r2N})oV?P#Ms9pC!e5nkP
z!S;VT&28VH1DB4AUYj(`S*N?o9a1LBe5QX}4;0`@?MIR!sdNf1NY+Um&DXwW8yw5P
zH$n7cJ+heckgSls&E}tR*YB{-bgiHZ0^k`8ZW;Xsyem>?w4nitQnq_d+0@E7$1+~S
z_@ByR=pQGC0b`D15jnStxPj`|K;?l@%RjgIteg)u)>qW3aV2O|=cVf=7b^YB2i~-o
zS83{0D;)AYj~GO}^F8P6__upf6C0Vqn5c}B2p6PquSI)CtOG2<H!YVmz2CRs%T3;v
zwZiaC%I&NC!yA&7n|va>4=28bcV-25H*x4+3K>NB$#08o?TbbI=!iv1Vt0!q{mQls
zN|pVbInff0{3;N15*$+Hv9~H5p&~xFRpCV<5x13}zhG?ia2NX3$ZT@!KtHzLa?6I-
z9DX5!^>Z)zebk3?ZQs_Cd|i^0;hMj#`|MXw6fWZG*C6AsxEU^jkI~3}SGUze+%(nV
z;os_i*Bb8M7JJv0>ffGw*IwfP<>TF#&;DP(-hJ)&?-;-9_~zfade^z--*tG`_1C}q
z?yh_Bj`;MlnIxe1#eFYBKp*>kA722fU-Z6TCSXAMen2~5@a_GeWx$Zb{g6k%u>bvV
zc)&>P{YYxSXzu-JNx<00`?1df<6rN``vWG%?<c+mOs?KfZUsyo-cS7vn7+H8#t59j
zdzc{!oPF^y%Mdun{xHWE_)YZTn@r%m^25A#;FC1Lcgw&9hld4^z{P?9P*w=8PA{36
z)bcwivdR#gh!C@o&ZX4O<&w@7|A)124+)Wh%Ugl#hvMX=;_ucT)-fc0=0bmv1Z}!#
zW0pcU*n`$90AZq7zqo?7-*jzi2mPj<!;uZz$$Y>O!rE~N+V<%B9s9T!oQ%`)uq*#a
zh99JrC2?Teb&wkLXZ#VDsp~K}2!#ugJ6a9e*?RnQ_jocqiBZ{eT+)T>nWO=dJPYnR
z!wCK>is}*T*=I)`(xRUDvKPURWICw79>G_CNB>y{U%H^wLV~ZgyRS-uZ!1Plb5Z9Q
zSa+?#J0C-CzXd-yAdZJ6Pwp@ucTvBtB%nfIp(Hb@aNsj$owg)%83Yj>EKMlcLN4|>
zkIj5rvZZ_?tyC1LaEg^;DvM^hPJ4>AaweDgP+HXtCVB1~x1IU+)Lk_aB8N*-k+i+(
zZ24qn-7jf&+7;?Wuym1hd)<%v4L0AEPH{Es-np6jE|EDd7g@BH>we8}dfV!<Ig~D%
z>1^`VoAQaapuZO#<#&TUh1!4aV&0E<#-i7e<z_jYNGBN&$>N;?;j!q~1_-;`P8Uca
z$i;I!?Y>n2%V&&*2c^G%#A=0!=XyD<wz};ubc*u-8N&<I-Vx99aoZYBX3_6jGn?56
zh^O&<Tyyl?S!}Rf?8^7|KH<>S*!@Uv?sH}{8m!;_A<+NoWb>QE^qbB5&a<=K#qNUO
zU=*JW$QjQP6K}H+aAOqSvw?p<-3z3P)9Az5%1vk#?zkB);6eZF48iLS+b#&6$H5RJ
zdZnT{NM`6bJ2*7)^f2fLn@{RLBaE5lc;*nd`+RcFUvq>mnqzK+!M0ku{&mN4#Zd4u
z9ju;>P%EYGwM{@u0m_E8gm{#z7hijVXOtSr@i{9XMV921%*R4L4CRO+mVBIvN#3&w
z?P>8FW3KwwI~TSTKMBv{bE#&Z)lAD#I?d0@tKNA`JySORq%p}IFh?y%cQpS^U5Y^W
z6H{)$-0)BQYL0QL8%>yyrg^;Xf}x!Nj#?LWHtE=lt1sUso^AzvH1F8{HZNEvtLiOV
zeX8NmCeX#17!S+&(J-VWkn6SV)PA(ED*nDEPBG9&j%&CFVkgiB>2_ND;k{V~mc5IT
zo(=WgKN?;4xj9<=8T?s>`&}Ishr&h?IRNl(2^V{56G4~I))LxXoybZCxE>C14NqO#
zN|Yk><w<xo75xJhrXWa(2u>6BF-bO0Fx<)hY}97OaoL$!`HK3Q<pW3!R2O5<KAyc(
zlB{O5pW=Ls(^gdN1NjgPU=0buq6R>*iZR}<9M<&`t`;xm3@NrmjI7)3VMP@gQ3e2>
zI+6hBtRVsoXH#!oI{4V{n5T#j-m;JY0A?7FM_(vqwS1gtSXwuFz{%*VI%=z)duB(v
ziT*KzmjG-HkAW(gjWv$R*Xkz!zHfG>TUe5~Kg3{_KT^{QxS(u--+IIH|NRUlqS4FU
z<@*8w*DV!>t$LjNE?|1BG8@2!)ahRzHcUUxHUTA8>5dyT%+UrMjD4;51$I{0PnunR
zK3pZ&Jhr1!U*cZjlF=Z`?}MjMwpm#7Z%A)@6GO20%_3+vM9z#i(MS}{)M|S|L6w%W
zGvTIK^P3?gtQxHNVjDmy3h4*28Hpz^W*isZNCH4en0g<OP!QbnAxk4dplOq!`7hu`
z6Fd0%thvEJX2X!Rio>2AgfKZvmWdb`@X`F|lhH^B^?e~ao&p7+TqA>pGdb4eq8P5y
zBh_Wx>qCsQrCQw+N>Fo#$zo7~PiHX1HI<z3egN;}I_yh=nKN8FtB<UfyQyw(HX)LK
zo9;JpD02`KR>~cc-f~MpRxKqZy=Ixvr5Ih<eE>77DVq5;rIKbs3LD*?71<Q2f~ue+
zQ#sC>5!=Ulr5H?10No8HfCvBpaM)v^(1`)WfG7YO8V)W#5eXRy89CW=3K9xxiWe`b
znK_;_bCYpOP`u)!<P@c&qoZejMgQtGJqIrr7dIylKdYc5zmTZ7gv4`RSqgp_rGNsJ
zkP5Y!7DP-<Oj3#oX3VT$$_mw>SGHzUvtw7c<<PWa(Q#wd^>}6A&1U2;Bd-WkRC*f9
zY8q-<x_XAj#-?U|etsOLA+OCNIIW|(ZDYCZ;&~jB!@|PS($cfDbBc?LtE;QOe(e|-
z7?_%xnwy(jSy|cM-v0CF&&9>X<KyGguKs@<z>N_8Fn&A$bvQCQj0sH|n=vMtfkj$~
zDmjLWKw6v_!pzUZlf^?MAqBv~#3KYSmLQ991*HMPP=L5N039p*B^rS2wKQ0$S*ls$
z83R9GyeJxm^!#^e3F#NK{Jg*=Q2=y7`j<32WQv01*KYx7PHED4(n)@1yn*kpr0>oX
zxWjCcd<tb~yM3gcSwjY2%V5&XZ}gV*^!Fktk*3A~K!Z^dEh{%bmcL&X9Wbwf2E|fJ
zLP{~ARhmg{0?+{fQ+$gJG|NhS@~|L)CK`qeHa>L(7!zYC_BpQ&zZ@y(e?e#WbT%Aj
zSU=GP00K{-0|2mqIM^T@96SO%B4Xm_ROD1IDPKZJ7&xiun4jRrz$w7UBf`nU$1Nlw
zDJe<KFZ<$+@=IZrmy&u6Z)917VXVS(tP-jM;?lJ87B7|TXf-|QqzyP=2BK1O9GdnJ
zT|X{ke|Z)4Cy2=^YpQ7Jsp}i-n^>5bTR)+U-Z+f)iD6<9$K{mC<(kKB5y9u2@!I#3
zfNzDM|3~hiChm~dH&I{t5Iua+0|E)-qKRXINmHUJlS1j=g)^7Lvlhj2e~9L7h!y>o
zC_9v_JcX7WLO)(e)!s;V-P_dNN{`>$Jk9S9|A99>Jv%42xVYp$@OE^>cHKs-KgO;+
zBoE#uuRY|?-bZadHqPC3%-;RqxE}d=-*@yla`L$P54HL8{{O&yck6!h@L}@`^@R7o
ze;@zeqyC>!4@8CFhJ{B&M&QwM3rfnt<Y97>g50!tQJGoUk@#F9@&$!O#UfnzIThK@
z`HE{k74ki=Y{bRqt!=I4E&rVL^tb6LhS7CIee4}6<{J#d7aN@^68qXn2Ay3hfRZ)h
zFD@@b=d-6bHpD81cQ(d54^IZ7@VieoU|V4={|<R0pWpqnAkYFP{eWO&9Ul25pZ>s;
z`aqTQt;j5Nz#BP1*GtcnEX?M#5~8T3F*}?@H*2um3jdML&$?POd!C@#$z);CvTRYS
z*~`v4omFzBrkIswweW0G&st?7TPZfnvX7ZL=hZ*@?C~&nMyMif5p$lW+e;=ZYCsd~
zi)yWUY7Ep0bx-eQY8kTCISGzoEoTygOYsZ6u`oW9P{5s<lDBkI#;7OC;JO$Vf`&m!
zf!Q`o0TBo*rcigC!-kUb0XlrpGyuJGjz^de4!<n`Aq1=|{2^LKs{337dtD?#3h!7M
zFjrhDHK4X5Tux#GK8r5j=IHPXJ<!ZxwpW78@D4Sv6D^RYtd7~<W2a&+sS{1a1%%qT
zLm4yvdM4?`Z=@h<bP<Lwl|}M``FDVYEFr1FCT+-B^H~IDzIpi6tMv%pr)1#yj5y#_
zd}a`xCk_}V^gZA&2n+#i&?(uc(S_kkNAyo}Oodp;5>WxbDO67(XGO%k&P%|DTWL9<
zLI_B64FiH@!KE>y)FW|R1&*M;44#?#P+T%>KKzv2JqAoLoX{K-EKT|<hSSQlcub^z
zpbCe@2TKN5!pkNMNgpSK9?h6$5M~AW-vIYUdkSy~v{`^YrVKjbX|<=gehvVTQoO*#
z<iLXfNFe|k9soXs8<&TRoSu!6hl^O4n+^b=g8<mx03Z+u0H6o}XgpmT0D$)Zhyosu
zI+dW(OG$kIuQ?X4Cn>KvsfZhdQ60kQ_)?aOLjk~}3SgJz;#B44QxM?R;^H>orcrmM
zQ&eJ-(`DAu5KvSSP}b&qt01VW&7$EfV5utTqQUQA&Ts84;_t1_0C8Z3XbG#B3oEND
z^SP_B23ZMeXlkfvIcQsHX}~?KHPu}0)B=M70f0~dBnrS24dBfN@D)S&k|B^1V!2Q(
zSUEtg0Z*@uSgnEbT{Y#q23o5Ih-wBzt%Th?0%DcR<(kiJjo@`i5%dY;^~!-*RY2ek
z4Bl0AzF+vAs`#Bg^ZQlt`!oaJ4v|=okUGrKx{p)3ue|j8#pFJsq8q2~mZs`a<`)nb
z99(P~666);ClM1Z9Gxwml+77dEf!xa5ZWP`QY?|(P8T`$Dsmo@G6~6E6+jGe$IJ_+
zOo(JHGez$)CY-Y+|7Op)63gG@$-NLSIS{J8g~lgCld`o!;<Q52U?D|HAuUoFrBd0=
z+9Aa{F>QKjT~bBu?~&<VarHhWO{y8QQWYbx(nal}C8^3?soLA86lb3?<XE-n)$&_v
z;@-diJcSohLPA<8Mp7h9S3;s$Lh4o`E?*+<lA=nV4(F`VC#}$i)H#wiII_g)sHQrq
z#s>PA=_{1#!)rX$%3ZulNaIULOH0I3OT<dU98*g45=(Te%Ush+Tx&~w`o4w;q=jgu
zA-p~#wdxaHzLa>*CNfT@Y7AvKt`uo4mBWA4YHu}rJ!RU&%#WExS?OhUHOUE8$u&(C
zDWB^b!*Yib>c1s?*(yz$E6>}kYaFloyw}p7_hq0hcW6Fy@-*_-W6R)N?c7Dz_Hygi
z!(?O1MEl3BF9|~(Lqq-9W23d_;~D=JtM9hjX69ywR*oirFHRmj?5|91{@8o?JHNNL
zyL<Te&)MG2-Q)S;?%C1V<L&RKv<yN4=s?s8^@Y9RAQCp?k@}*31eif7PobfBFqVSP
zer=?oWH=Eb6GN@oxZSJ9s$Fe7+E}KXo>!_Ob<tQpnaf%yTV(jHbh-c<j{8!nsdBbN
zA(hQ!tf}f-g+_^Vk0M#clMaQC-Vgh~Qkb7O%VJ(Cx6~|uhJULz8E^Tt+Dg(sX5uSw
zxb~HucIgPGweDwk2nHUFN?ZMAzv|i4Cp^6d<IZ?P`VT7YjlajU_#D<JC^uCVUR+E7
z0EN;y=|=cTQ-$(n%w(kkGrcPY+Cai69h-JAs4N4o6o+;62hK$yM=3)dj4-6fE-lH)
z>w{Y7mw$&#pB?Ig{u0{FVJYyTq(*TDu1-`nY=~VyT&$<%(EuPA1%WPqk8ox#*1IGD
z{4<@;7rZdZ;TxeK=E{vQ;`j17&-i&3Ul5dLho<0{{s8u1wtwF=wIU_#P4y;)oP+E>
zy$=KWTYL8XBt{O%Q^n;W0X@&qU@gSqVwZbciBRlU+XjScg}OL^xY_7{i!%Pcczrae
zg3<_1C5^wfmqlN|;OmVDrPqKN`e-pGbZ9hdK5{EXPf2h)*LCRCZl34RzF8`(udQsF
zVR7k5{2^uboS&0dSZPW?^#$Uk4uGXR_D%WrkDR1h%9ron+f?tD=Xo7ey(46MwI81+
zbegV|I)xVUtaf%G#Tzz+YOq%-`S-@A)c2Q>UBX=8!C_qwHv6A?YT>0{mHxO;XhHff
zw{pF><^e?v06uYFFsmjg1l!~y6oj9sCc;+stFfv?X`uY$@s~d>Z!5xO;bi40=lMm%
zZSssc%z#L*up%t<JbPBaei`G>PumAZ$7NjYho}8ud5#7fLigopYDzC+8ISP72%eUm
z!PRJH!c%1u7IV)cGNzyLh`CfO@8Z{eTMLfPbtJnrf2YK*?sWzMR;Rsjta3O|bdZ<=
z$#^N#!{*2zoZ^%KfI|L}Jy#{n$j@)3<8U(Tmg92CD$~i!SnzDP$6EtFh~xNEyoihu
z7~qW#pg)XFse#X-{AfriV)slYlJ<<QiDz)AE|=rp9A9q{iy|3V5FMThzvsx^kCirl
zRn7fQ(8RjgE6sEksYpQtk<im9Rf(8Z40GQ7X?n2-`B?XLfEK{H%c+0V1LV3tjry^F
z_py|$;pU8h<mCSEj65yb-+BF?9T!Wsbq|*i!;^=rH3Zk=^)}1J!_9nV-Q(>anZ(Dt
z_Es*`{Y5Gv>LKBK9qRG^Bo2l0*e?J86?)9kPD6BG6{0^MfeO=|h6*_pVzMaoqD!5I
zy{;<6elyZLX?7a^YQGR9uh7>M0*+u(DZ<qs>BEuUisX(f!nalEr&>9U5}GI?^d9M_
zxjjWd@r%JIgu(zl)frMjrI<K#WPn-ZELtP3n6yG+khw*J4K-3s-a0bK>30@uhF?N4
ztT4oza~20zDWO^%84~<*7VjEYLcOanEV6Qz;4@J|b2Tz7aXXtZ(`KRbs4yZ;b)JM&
zDW!itIsy|pPfm&}Wqe7gASGd)k~LAv{AP4i&F?(55WkF7esoaDsPR>)N*SB}=$PJ@
z^Yr?--|VWsV`U@f8Eq3~oZh43rnl#*O*Ph9L5dR=RDZKZRLXg+DOJpAe#hO90H3Vv
zLtjD9X#`IJ;!wLpYrns_8~7DMX!|N}pM=I1SfjukJgOiC^Vt6kb6anSe8)U!13Kgh
zM4+f?)nWz^`m<pnpwdhjl}_Fy2aDzil8{a)Egum91VeJ<wD2);P_96!^B(!&2@8Vj
zwNeQn{Y-eyMJcOl6+20_Mp4!oO;h0>)!i(Sa92MzxIRLxk%CAM8ba`J50pHW8p?4`
zE_ak=qe#CUwt*Iwvc*^HR4D1f8k@?XzIG~$K8c24Sz@C&EKD&dVV(2_*6*caZ7g(L
zP6-V3tfgXuyJ-Bdn$QoAJ+CmKZbUCZ5e0_E>{7Ris-ccWu_jC)xp=xH+Ic8M7gR<5
zAVomu*&pXZ1|q&pHUxQYP}>LE>&h#y%;g9s=nqz_H?e)=<CTG=vqnLslLswPkcbvT
z9Uz_$K%dh>JJ+xSh}l*+sNb_dC4^NgPb->4hRI*@A%95Vo^6GrZwtGld53)SY>7}-
zrseplj3^4h47~`A4O3;O{LTXwv`TB|0#$1l`K{cpTy<TlezI5YGZGw<iJcd7F%$o2
zT7j+?dmG38JRJ>fZR$;|OS-hA3mO_43M1E2^`oTMEfKa%dPCvwU+hgU^gsb<y+ZG~
zF<U~^kGuGqre8CN4N+;?6F=|#K3Mm}LD)(?@a|^VucJCKe;d|uO{+HOL_VnW6Vp36
zXW;_)Dr9xD!E|eE5gsY}%ou~s<?Pc-xD0=7jp?)0>%KeuYFP8#21nyB)C6k7*=L$n
zZ!M;I!pPAh@oHjMg5mEllrTDJ7P(2NgH8plEGN%)+dyL%Y7_9eAP@8-w3k?^0Ma!`
zyg8E_BFCIIq~;NG0@wzw8%!5RF{EwP>~S6}PuC|j*Vt0-72)5;QITO}D&8NMZ&OUB
zEc|*a)w==KZ~w$Ez$V6UH0bAvL3{3q(C?fX)R9>kpRx8x`1DE66B<r!SK5T=ygo3@
zy<6K`U@UYvN`9L=J7;(SwDeWoK$GcNf-giom;YjIJ}ulf3}-L>_d^bw-S@lAPO-uJ
zm&SRxYgN`ef+;}s10MT%EP*ACb~=qSPyhQZ2+Q`D<;iDJT{A@p)UgnSZNS1gVJUEx
zltYTNhLC2dqd_dB-Prc4+^c?as`+MSF=xV1+U>O^hx}fFnlpnnrL;Zq`gW+{IvPAg
zf6L)0L`aMcjI*0v3ZGz~-o(MA;eG=;CTL$-oVpZF$lIo(+v1^Si%=5M`E5q+@}?=^
zB$%6u+U8%6^^p@;Oq*mCbt<2Xbspwu)lgqx+9bt_dlLq_rwMqDWRf1+Shnz~i68_0
z8okyV&^P^@;`H@Ef7*|`>*X=U4TJXg6}ae*%(4yt!Jk>AzvO~U&L^U-Qv~hMV*fgQ
z9QBax&8+_~QPj;$X7yR3da~SyVu)0H*JbPUgNs_hEwP~$O2k4a{x}zPzjyWfs+TDF
z;w$RmwEN_C`6TIj74>+1#q%JSf_l6|p@Lh2!>~gz4MMOL9MG?y0oy|GmqPORgK@IJ
zTx3Mc`mlel*3=o^;2t~U_tqOb3RfGUghFAALTX@&P@oj-2#V)vi$lf=8^S^hhQQRw
z9BtF^bFkzut<-xmVL~7@3f(Yip@?D6FjfPwB_<J}0KrkATCO+jafWb$941gf;J8h6
zqJiOB4x_RL(}Z}NMMN4YL|7R_eYJ{^7XmA?VkUT-H_c#kQNYx8V3YbzZ?j;UNbL+T
z(KjqVd0hmKZB&>L@>4{V9SF_N6W>(<KEZ5&j=CbUU;_Iv+r9*7@Q}O6EueiX#3(CA
znzgxE4_WnE>*XwZWVc0oD<G@eVh+5JZr-pH2xhDgOpQGHrCFq*C!SamM)#$!+^#<G
z(zk;N>`ES9@*L)OX_j_vVuDcb69QL_#LNlB>-~<Ql#1n8ifW>;Q~MWbDyw=CX+xbU
zw}l;j+@$(gXgzqX?{+N*UUc1J)nma<Y+}+g%}n?Ni@$A4jJ87B!C^72YBJ^eU@&51
z@2!BV6%~`l?Y8w2rtKdrG_&_GhbNh{HVe3(zr#Y(!$s2lbuwgM{?RAGTGr|?&5uhi
zsqNaT+snKZ+pIWJRm#A47763M!U#w0CXWwc@lqn`Zc?H9UJDfdy8~hBLRJE1KzH(l
z#Kjbm8zSIxQp&%yUO9r9q)=-eXLyv;i)Cx=n-nR^42yOcLv)y&Z_0CQf}?A>T<r9e
zk(9#AwE0qV@<CS=)ZCRkdbl$5WveS|i@t<yrjKw&gkhGYPR27K7{PB14j*q@9gog`
zMC4d#;z@eLNgf>r(P99tKrF+%4Z;cQND~m6bdT|_f$<+!OQ@@tW0Iea?fXig3A$zu
z#^(Dd-`uw7ES$<LPkHapS?P|=R;0EGrV2#&J7{+s$VA(m%nfbR7QKX1XRJ`4tO|pa
z^hk`^ydY%mnqt<MS0SHBRgox6<gexY9lNZb?ZLb4AO6@G?JEW!Q5Kw6X`PG){q-%l
z7S{NO6Lhm&@R+S~rx=J5F2o#DM)M26$|=N+36U{;hId;CW>W&<`ad%&BF|AI!SyCV
zrWbA#?Yk0$dl%7<B~mK6TU`*w8+tqV$}gNolV|2wKM@c`N*D}^|G;2v5X{*bLXSlw
z|5A0nJ=j$bZZiu)09?wSQ;H2QX@<f6LDjkc<<4LR+;7Oqd=FR}2vx>HzSAp3X&?;Q
zU|%art;PaXsNm)mNOoLHj7@{gEW+|=y|Wg=_s!U6GX#sLp^5TI;KF#rh^G&VGc*H_
z_0EZwuK=4>_*7SDphhc#Zhd%~%dJJK_PxrX*hyy^h7wAV7@HXRxDmgYzz#ErEuowx
zL{5~A-Vk~C6qDbDj)5eAAo0Crxrjlf5l*#;{eVJM$BI|Rmv=Vv_?`$CmK8Hy*xR}u
zb-qi(cNK1DkjMlxb%S>Eclugo&n?C`3?DB12`b$FVSbuh@u0l6FYvbN^sA-0`dIx>
zYf-~cO9bX2>{dvIcRwF#;6>0v7AH_xW~@V0$_mD{G4_GgJz!R1&cdCR9Z^)-M%#Am
z(Y0U)=YtqsI~_yLFLJ<9IM1+pzAgB6td84PPj5ID?QK$%yn6By_6$G+^tJBih!4Yf
z{WH<ev~L<-qtamn|0*rg8bZn%sN{@CqYMPh%-;@}C01%O#kydAO@BzMc`4jvYSm;E
z(e!{zFbk>T&uu<lE*xQjoki$-csFoo>rowgkA2CHwk43SQeVF%wBPss{ym#|#7xJ=
zY&Akv-lo-fp~dCSh>5B7i-@t2Xq&jrXWYSDX#l}uPnc6kiq4YBubKFZnfSX6hiH3(
zj6G|Kf9Qif#^~vWl4j8#zUSOuVm#kB+|__Ly#k8?baPkRr?I{iucCdzNrWo2wZ*=R
zdaGu+O|&qR%c+ozfrgv?p0KP{b<efF_bwBC7Q^qr&K8Ss^mp7m7FzO#on2%;x*LvM
zxmDL*2LVbH%mwM>FP9^=scFycdOP0yT_5(OsU{AWH$H&LG?yLtcYkXAIu+4<e^+?R
zuJZ7r2kW-GnXw1^PXT6t60oD^D!V6Rpa;D6fsjMtnQ`xqaId~qFI7M;#hUa}ZQF9W
zmjg5MY@==Kf>1xI**?M*kkJRZ?+a$^WA}s+G*@j7xTx4^KVaKsg8C)m<aukPZ7_*o
zc3Ss^>F$i0pWY9=zUf!vkeAAnw&C|i7yfYRP^M#FcFo;w=b2>AUoIaBGYuG2Hy*Mg
z9c0phH7F1coArCkMi(o;dm{&SV)c;QZ8yTK`1RIpzp#WE9|ok1-tsX=i6o<v4EdlY
zG^h}lu~E5DvAkw$eKyA-?zkaFSs3?k?7Nwv;O$sRK%DBKVH+E`kSrOzQH8!)Wx!Hh
zYVU)A)+l<XW8tkwcWDF$zqQo&Z4ypJ6~67T4&M+O=K>f>c#qG|n53$V(mIYZ3}{H3
zWjhDRGnASB&hptZGMSfsi+x3;_O(U<SWU<N`4ksz(=2iM>Yb{cIRcSTs!{5JY}j_3
zdbewB@!oPQU>emkL9der9vscjOVZA@d^7^%lGmvT)cs=vU**)j+}EC9%STVfMCw+G
z;=63`O=*LspS`x|%(A%-n7&<;>R85J01&ubPXsY$F5!P3gf^<a(y(5|r;Y`iqE-em
z&Sp;GaAZazxl_yX)zoI(x3xH*y8297lhHq`UFJ<$ozZiFrE^S7&4#kg&N$!1b7!D<
zL#P?TnZnNv__%+*!`oXNxNqRrUmbfo^vz$6`3xn?tB%r5N@*+&1#?WA?PnbPZteZ8
zPfby0{jq^>$GXcu&6zT9E?X~UH4T^9MXWP4Hfk0VIF0PgkA9tZdB31ez4+q7nfX)6
z=mabu2Q3*Z2i-if(f^yHS-lZUdzwSLLr8lq)s!FzHrx}7FATPa5^-Fib1rsV6m}Mz
z5-rDk>2&nyhkJ_Xuku8%UT}{$3>pu_EKAfZQ(3`O9%_9&^G1a`3^6;mP`Snl1|7q9
zM5F%S#&f^T62OwP^a_B+e#73o+&KeGBdLL4yXJLH%GDTou)*o_Twu?<iPZYQpm*ta
zf6{K0$q<^F6wdm_P3s29_69LcFql*7sVQP#f0H0$lX^XnY6|+2=GW}iCLZH2X0-su
zS}04`ubbR?lHOn3#~(Rqf_O}~Aeq0g7`;_rP71DXT?lVIE80R_N}C>S!9HjSsX^U`
zx7rtB*C88kWjEv{em{V=kKVu@@mIdHgQ=|(tgQ9iam~K3q6Os`pogNv{mnlp{C4DY
z*LwtusCmz7ESgzqmKa%a!DcZ+-$wpJ{|3cJ?+q<eHfgqvd;GD3L?yr!C7>dN1Pf+q
zo}5kcLniZrW-m3&R@l4}k@>5P(=)nz+&O#2rt-0zP%Ba*YHV#a6PU#!MvT98O1hOO
z3n9aM90MByv`F*wNT+9ZBPEZAmH&4BAz%kRQ5KF*=QeG71aDRXH+^vHp*eEq{Dc40
z9}ooFhY+2S5~(bDlgPj8y8N?3+Qh2&?bIrrn(gQy2v)W(X(g)zXg$cvb4#%{X0kTR
z3UaZKf45(cv>3GLl`EAh%S3b?&#oWe_vfa&S|_Q+3Vlb*a3wI+Z3Rks#IX=Gapy67
zM{`YTuX-N7<9tg0Qx4QExm&8{{$b+2WjK+*r}%ksyb{<6l@w}I>&uFh&rtB!Lg)Ne
z8zy5-r11eZ$?}cesLc3wTcqH^e&FxF)PQl8-%7OqTn8>LECVap{uu<z>qtuek`FRO
z{VP>F`c8OhHLYUN4Yn@0#P_>=Re9-Lr}UOf(na#Bg!Jl2=E{di#gQx2R)?sPP_0|{
z)c0Ml*R+I9Q`l2uCcQ2JR-HPX<aKuE6-W~nD@<^{t%T<rNlUh$B>5xd=cOonY#5RJ
zUx$r%D*<P>gBmAt#zx(i^8w{QZ}^R_55Iji7ghZ}9-DJn7yI2{g3Pd2j<Bl*;S-bo
z`?X)Kqk(vZzAHDlw^Q!D0N9(%#cxnQLQUPvv613MRU<06sHsjuZW(*=R61@<-bBH4
zqReC*WU2+O4*u<qei@F%lgjW99jf285NUG5nippqt$_uugFq{-Cb2PzE*@`kbuBk~
z$S?*UJb*?0O%5WAk6YI#>rx<XkpxD=xoyR?SGu)U%X7b#vv{nhN)5m5sOAa3Ki*#c
zwyRz!6`2xoIkTr(s+i7cy)wVAU8z~7R%Z15K)1%Qnb7z~ZA8C*Im+w8TSIHunof8q
z?6ho49#kYG7+!DvQ_@GE)OGuLB4?#fC|TFbdoDdh-^+K=jIY3?^6$aiZUNX*N}F%N
zw;kepMQhT&)ag=LBeN6{9t@jCG^;EB9F`iar^`_$tCvn|?M~!BR#vZEHhLq8SWNHD
z7weWUJ4=`t{~7pzlh%%W#*aFwkn(y~Dy<iidU3*C;it=1qVce9cJexduftTSsQ63Q
z$;W2B8et1{gGP6RU~$8AN3vQt^u-Ti9akyr7oMk5AcnM4ruDebr_%U*^R6<RNe<y6
zo)HFItmoV8`z4nfTNa#iOE03u(B+Hq!e|SN28*7d3~NgD*Zb8Z^wNllzN)J6&Qwyc
z=(sB~=X#zivX-QMk|zAvbgsnl8PmDUAMS=BOE*9jE5@kyi;L&j;NE#SVMHcr_*{hQ
zwY;GGfm=PTT=+&q(5)DcMC!plc0tcdHWoUHOQ9N=11C;B*HmCg_ta8ie~4Ck&G+3?
zTdmG`l-78~CxMDC1+%(Fe6^-Xr5^$g|Ez;5itQ13HCI#OS=@d&bw<tGte4;usZKJ+
zQ8HCxNwZpqZJ|u1T6;DhMixf)y7|(`@$+}Dw?Lkwi?^=*WUXu&9rl(~@CbPSY$03N
z2A0s=lYw2RNJx2BXnAV0sT&2=UZb@g=`Xs-r7$S+0%EX9(h;%|iU{@d@hP4F7w>+!
zm^w$Kg|dY*izjdR`V`Xo>}|FO(q(N@IZ%grNhTTm_Oi)wXt}Y;Q$6=G{@{N}xt1Y)
zUmZVV>JMa$9a!V)MsO54H-$<Yev(8bthvDp1!9J-=>%se_jJ!w&<6`3KoJ&4y9eQ+
z%I5>JFGdrxq{dQG*n)&@JN_>CyL7!+yRq%Tcup;odEX19UAdMLD+}_or>+d33Ep>;
zylc64pWs^*tLz3|-FwW`tps?^DZhE}oTvOF=DG0J`$y%xWoDq)ibHE>>GyYwfmb~)
zR}bDB;m>JS*L>eRUb`UlgM4>#y}Md|C1(ctu@|&H`u+L5C{eaob@h1ntL1rc!1;JZ
zr~m0U{deqtSG`ez*DkQ&z}rIvThRUA#b6ZkZYwGn&_@`2RZk=wMxR9S?34<7`yIy1
zB`69@BkbRnmPgMynKqib^PI35D)v`K9WY8G;v{whQxzn!?SoIX&!+qLpeUU5Y@32b
zn-pK(M~2$IE`nvd=%P(0zK`0{M726kkx@S-z_pZCkpo8}tCGZw@(jt8O|M+6Fvzx}
z5&M?$2ciG<;E&!?Wu@?>&>+`lHtIuK2Y*nHo^~DNK33$aatXQzBi=CxGhthPw$d{5
ztWJD@k6MZhbK?{or5bDRMI24LnpRJklpLE{%J{Pb1XF1wWTqQ~gxgpphyGwQ;tz|G
z(UWZnE#0u^a?O?}bblt;Vk^M2U82BdIULftVF@Zq=v^n1C-Rde7aJk`>gA~nTAMZD
z${H$S)K-MUNNh7FtOS6lE8=DXH)+oXJktx_6hH1WhTFMh;AL+?ppF%<qZ?*T*XNwh
z4lAA`3MAu+W>!Dx5KodXv*Oc>Cv1)cT`4@a@$s2pnxb|QUNfn{ryGre&H?rmYFrUL
zpII_k3Df$%f)6Y#;p2A)ZqeJ3m}0(c$oox+MImJLqj}+*c3H?1&C@TTk(m~4tN@@p
zA+sR!fi%8c0iVfUllHd;l3Bo*Ym?DYC?icgBci02II(vH5HHk)C>3Cxljjb7S=N@u
z%y(ofZ=+N40!!P#ccqGl_LtT<ezR%=uf55U2wf?gZe6asVrJ7mRjdVn$qQX}%c<=T
z$uW%Tk}C#zw`qeYIRRYeI%uDm(2f@7nBpg4vO~#7yNNMVuUe_d5aSa+qj_f5I)Cfe
z8OFcJ9J%fEINhzquF7-=c^wQsg|WW|HRafk>NEg(D(lxb*#|g38Zz8)Bu2gX7&axK
zR#oQw-tP0tf{nKfr!WjJoxg<eVmv!DR2din)}pcM&vpnIXW1Z**)w3I8f?ok)@S&f
z-h%;}Q^J-Vu;7jmw=zdn8c4Tbqs0?^0}`5t_EVI<d%V4(ZJlT0J~A`Gw`~(x`tFQ)
zJx|;XYnIZ89iJz4Uqcv&#TNpifje$s&cXwpE7rFI6bAW~onDY&6~k&m{LtD!f^-|1
zRgdJx;`%exb?TT%jwWlhIjj5)Gxeowx@cM}{TQQr{iub*^;sgPvf+fK7f$-8fSvUu
z!$}7lKJ|$>8==_RNsn@meEstsp<P2ZuN{wqqc~e};FniH%$`NV_;4u}s#j4qo+Te+
z;d1g+=n3VXWwE$+iYzO0xjXz!Jo)=jZxQDGQ*5RaG+9mC>u-fq9`Cj^o0zRHy`Y~)
z#f7dD{g!|W;x{AoZl4ZWbhrB&_gxY$cM?6<<m0QN=Bo_}Y%|tMD9r3+SZEo+mct2R
zE$O45!vvBf0a&79`F3sjI+XY8+b_Q%y$B{K=^PC1SdNSLmFH&T3kGtR1>7z_Pfw&A
z!x(5#3mTco7ySJZb86k*X*eP{%Y^y25p)h3C6bW!Wt>h7AogH1ua6(GiwsC~CrH(-
z{FYd&RFs9`=Nr}AqZ2m$q)pXyQj(jqfn=*2CbcxxERSQ4?7ck3U`^ElO?1yf6wa39
zb0zY~W8x15rQ?&=*U^p}hY7Oc%tjR!{Z3{^uWGmVU(u<z^yUq+C&;?VzxlTKRw6aC
zzoVZQSnADSWw9@@jkV9C2?6pdP(GMY1$X1UjPE;b1!=A`w*xs9hKBTg2eQG?(7`={
zB=<rCNp?eb#dWk%mMak+-vcrErR%!h?Lqn;{2eLUzO7>Q@(UE8YW?}Un$Sj`l$Y%&
zYw0;&FiAcQx&y09z~<!$;?Lvj)VhG+12n=Hvb;2x%M7#cF#QrL*Dbmc&M#9HQ@(iv
z+R5%F;%>JR-$N{~&-RAUb@^^iY*BRC-Bhg)QfvXarGJ>tM5RHbM99AYcLRjO9=3p1
zHv%HjD3lV=j(4HmEnp^j<^MGUDcU|>i))X8;fJtO76P^-%-PBlX1Zv6khI({u6;61
z{90YY0mR(6f<hJgIZ+1oaov1EDFAlR2wI65#moE9i<t!fC9aZ<-fBLa_hx9wXCJNY
znK%9>HX3ETug-jflS{?Jl*J<z4`B6aLqkRviSc9+`jAu_VmK%eeLh5vD8!&fJb*|Z
zTm)<C5IxA=6?rvNhw$w`0ll!Hj|!!zrp1?z^r<cx2~T0g`|zvZ?zDgI9C>jX66_j<
zfF_+6_lANK8-39ha*>qTp!X2wqr%n_1#!_lF5z<!eE^7oBTjv+@PS=~Y#!<Txw+IJ
zHGu~-o}1`xPARGb(&WdbE`=u4_uyH*&Im!^;ifX%)wWiK;*kiNaK!r`AOqMk{#xP<
znXz~`k|ew1w1C3<M3F@ncp(jBA-K708c4f8>?N_ano6v)o@um2cs++m*Dy+VboRel
zB)eK7evC==bYMUHp?dR1zuaWeFT<gwF#B0aq7)w8(2%f(xZX+-iY^Xlxd(6u#rgEK
zTe!VK{vnIDN+x6legSbhP4q=y6a5W|of8ta!R(=O#Y~70XmO3@2%z-T86LQ1wDgzz
z-cxZ^iSU_0Bib18*$|HzXqW^fUO`@vrzz&($C;48(jY??^XwU5su$1DE6j;)j5Fxz
zh}tXT=IUSln;}V)dX}J2m2O{^Y|#JN6-UoZYB3kTZEsYLo`|~;rzM7bj`vdxT<JTM
z%B!k#yFb;XI%lDT?IS~056MSJHnNA9Bi_Ap<WAvp@y8EFiEfse`j{V;+lU;JkR55s
za=7C%j94FtRp)A21sr3OUB~Z2lv~<fP-v#Mp|R56kbF=|MZx#SQ#Hh28MMGhpEX^)
zg7M<q8dTjQSy~iAm3oj46ymjwO1Ps+N1ieGI>@`vUvV@i#YQI|MA={TCO1P`*KpZ$
z&Bkp8#&tEL*YcvfJ;m!8h!XIKi2_QpjABFEs%!d4UVw=TOF#AH4fH6dEYlBYdUh71
zkWW{C(eL?!gQZGzEBCL5Fx`PYEoA7(Am(3Il{aoxNfy32PjqU@m%hD8YU&y4n$V3L
z^=#IeG%5BA{+VUclm~^Z7ml#{ezoIeH9B3~ZH=60^zjAEw1-tm!&q2C(u?ro=AqlT
zVGA+)kf`eIlKqwE9dQ!jC7LPql`s4?+rl)&liANfwW#9H7~fya${Ddg7oQ3W&=l;{
zoVFjJeux_zs2pb`>dUKd)S7frhIoJ0u;Z9#`yIz{4<Y(f6(O1``|`_H?%Zcl`W9}{
zcDf{c;|xg?@^=_&Kvf(baU3cqtsotIcdF>w4U&8Zp!;5|j{-2>hw{&!4y1F8Zc-Ob
z3CHSQX@%s;y#{>Np>`fevL(&As9f#?Ds_yL-a$SK@BNaNmF$QF3Z@XX>@g>rMS84h
zRpm$yeS2*Xtu<jef`2d>5<$6Ij7J--y?95)&A8yMsuwyT*Z7eoIe=2?N2Z(wo<RP`
zIcWMn1q9vLg7B|}K9F!wJvM`rLJD{(8M4${7>oL)qQCC<>?gWT^%>$DYy6l-M#sja
zZc&1FNL2KMig$p18e9&cl4AK!FVrW&zc6aLGVYg(nDy-RB>yu4Cd1TD-TYbIqKCBO
z>Ier&dbb}qSc4negWE?TQ62Qc4ay2o&O$qEK$yi{AB5agb2&F5&8TtSNtcG~1B3wO
z-gmML_~<km81iSMZ4)vnJd}}z+%;54^OEOAw*x_b)ikV#bCEj42AZ2tJ%3|PC=@If
zAQMfu7QFHH=5%$M0=s6ptc^9Z6j@;jVFtmuY0TQBt1)k-rKa)91p?6Q3b9<V*gwmy
zTDoO^#-c+_6n<0vapS+DtfB|<srTDoK}kA}hhE1Zd=jpWLf-^DPs2%hPVs|$dBxwZ
zXZUw$^Aoc|SM4(|CC$Z}XtfcVGNTFq>cvucqz_vnS~fYqk)RUmZ|imbCZ!ruBkq`%
zW2&6h@%T5qxSY@zoJg+gz7ASEUVUFYhma^|*J&q#7#fOiX?84GK0tdUwmWO`Z&9&>
zYep&ewE8mvJc%x5e-Q5%9nzN|>$9@y88MJXL*=ZL$3aIcPt0&u@-uAx6}}k1wCS~v
znaXA(C2*o<9$XG&b<Fjv(ojHg_C~p(;PD|qJVnxoDv^%UqKSvas+yciW`l=J0&7jB
z#;yFPbPi?^UU@?aE)2J3d}F|@2UYV!vlgdx;vzE?{^DTIyi=R1vHH3Hxdj&Xih0CO
z<H#@lRoSJf-N6rt*BCL0PV|Y?v0NXE4dA~rD83fK^PnF--l|5+dSwjVBjjK>wW2T=
zfoRo*M()GyywA~!3(?vV(NCOyorSGrpLY^FbgS(^_auZDcz6La<_juS8u}1362){7
z?f+S?{{3&A@ZSc4bgSkwxi4{z0@&~A8vOdBZOP3oC3dXV)mEzz?D<g~1TkI)MF$fF
zDV?mNE74x{iOy}?4(0q-Q#$~ATi*}66TY@SkF<UxPX%e)pkv$MN81oWcqk1#j1wL%
z0gq6FN1DQ;oZ*NdI5Gi_iv9qPsfEXO!Q-aj@$2w}V|Zc<+`nu0_6DB9X_qQtm!@Wy
zZfcj|Y?m2imz7|b?X{mozW*=VE^o>%f8FlGv0cHVT_K@;5siINtzE7fZL!(`f*Ijn
zi10D9FH5km(zA1i0R57Hl^O8Lpo8)c_H{J&wdIJKNBac9gOW#@@Y;h~W`{y&gcdZ?
zgF8}dDJtd|`|EL3v(4Vusl%8I#8XwERV~tEZ};oaVSWbU>jK<e!?w#Svi;ch^0R{r
zbkCPHQi~O6$r@>#1aFOUXfHoRB>WjI-|J-FpX-7TV><<Q9roJnjkFvlJpP$-c50b|
zf0l4Kpxg7RhoIhX9<G?$4d^)peQ+A4af*gvkGDAfEdR5ucN8NLwXJs?80FkXbG&DI
z99e6BG~^sP^{2JmDW>+%-cDp7xy$a9ZF`I3xdi--6SysL62*M1#eE#5cJeO+eiq~y
z=?pa9!`^9eyiS1sUAJw`aE|hF9Iri&kBZdVz;2zwI(<Bf>2g}j_z>!hu+n+*b#hIU
zAZFay9gA`u-Z_rsbj5Jl+v(c7Z;3R5Ms~oQu@-Gfy8j@fj`vy|A%1WNg;Rn=_;%2t
z5o@H`hArS^_pQS5JB7Vx!7ld;e>^DMkT$1U3hps#Zjn*PcY<*C);;>nvu)<H(3Z24
z9r)fQHmbGUoe;Q>Yug;kEM!)Oa8MvD<V3h90Yfu@KQn-$C|mLAUGX}%*!l=Zz}c$`
z;2!qhNN1Pe$G<_3f5mA}LyrH3+Iaf0o&u(AMNqb$LT50^J=$(JI(fMKqV2))SzyM6
zLWL*xb4Q6?=XTg%Sj9zv7gn3sp|bwonA*8aB78jReI(6$zYxz5*uOxS^E(!}`L2iI
z?yhyW{m*qzD(}7JV^4|2T^rQy1Seu_>YTp-j{DAIi*nD7B;Cw~Q2f`v17!BOfkRR@
zA_6BefUx_cTSNfoWXUN;P*;>vJ*Mo*ZgX~6a5*;08DY=;KC%V7-4x4S=*&Ukr1gn0
z7nlIV<cfqmmFae(d=#9YFYZRFJDV9eVA7s5wEh|W0JNv@H7krtymHskh>SnkMZY?V
zQa{$+JMihj%A3B)D{zDtIP%aQ`B3;$15Xly5A_qTw7`xh3oaG4*NDYk&+Bss=y`y|
z3Z}j<a(b6RA4{9UJ=p7yWg@UbKC-6H4-x~+$%lv5U4$jVhhbPRt|Dt&&KMJKTTLCJ
z)sJIb4q~UTG2a~)b48|mA2<u0n+P4{F8bzk`Hm0y#Gf2wt2?*Xd5@c76;+&kI`KQ~
za)fhXy@MYWCLXu!`ix&jG9;dja7E_Sd1|OTgQj<9)Q@Ko5B6|-`@$3F%srF~@ahN7
z-*qp0kKKJ=$gJ|j?j{ktA84!O+BGyRWNR=YFac4cx)+Rszv@1#eZ1Jayqy|;G-J7;
zJUNICzCUq!7`8zy=sO*~JI>m*<w-mqHTBa_Kfio)L0@pTZS&rbBDlIWxEC9wU533=
zEKl^KCjujqlD}Nze*jQGufHLxbMyp0jA)Ra!e19R(sNZx<3@xJOEKhV@+8WXDp#`X
zII@(ti32q{99Yhv$dNba4fNJd;Z2tnZ`ORstKrL;^mxMjnQ-UJU`R(=G?<a2({e>E
zI(?W*BGZZz=^cCNja|}#+vs&w__Zb6xN_&xt;-S`guHt9^6l&QFW|s}2NN!A|M)QC
z#EKU)ZtU1GOKU=ew3$Y0vL(BkH5dDl&7ckl9>!h^o%e;b8W2LY(+i56X(>04<;7&M
z7zEoFTj!NRm-dv+b8}WJYm;8Qgw@DdOBgd@uyW))mV#PpTTNfx3?fr&u=z)W<ZdPO
zbxmN*c(@YU!euL{!E46hZ_HYMV05+uzs{?6?LUCmRCAMkY~hE|K){f5O+pNHR|+cK
zltYbDWR;Q%Im!h!&?+~@Ltb?TQK(#5AX!5lD(<ay(SibjWRgcOT2)Gi$bm?oa5>V2
z;x!<mQqG6rSr{UMr9?N~aZF)1kapa8M-O-!J@}AROZgYze*-S1R(9Ko{|Jni9=#Q0
zDZY$%oOtI6x!XY9P?ukk3NpA5JvE`y<3L>DN8o<v7}t$M5el?cLUJ~!Bch2aN*7*_
zIr=E1kxDu#rIlJr7)$e9HW{axE&8cJ@f5=Y1U#tL!B}MF#Rf;T<z~=4s_ACUUOiMY
zO{$>P_8SDj$(0T+!3v9uFCGpntSvFY($jaxfw$s8YB?oik`EPh5p~sQJK|gPJP0jT
zXqr@DxI`LcoG;qWSzSEZy6Y}A1fn^uQ@dQ0Tq*Wa2VZj_8Rs0E5MDz~HPm^@)Q>2|
zn9{;0HEfVmcM@zcsBr;%EV0I7oUB0}B}@;9F?9!$eba7KtwPs!|2z=919e-XN$tK1
zuXPEj94a-nsA7viRXr%Lxhu<PphD2rd+$K@<{1=u7NM)|Q$IyCvP;_>9ct1QYrVCO
zjb8dS*kOx3HrZmg6c02)R8q`j*l>*~Z+xM85p8pCWK3S6Tx7$my7J{4NAlnZ7jSbG
z^$^e_t>y7p_8Auw)*m?qE<N(VIuy1^RaI71<BD7E;6&5+uTF<Qq)~xrT{rngJ)a|H
zu9lzskkM(as3gN{!l?U34-@?o<!^Ij`cuEtF7!nrtp&5_L{lz%SW9RA(&oI^nU+S;
zLkM463040VxyawAkS~otX;9A@uGyT^X_X_jpW%6A_4zV&|1LcK`J3c*+5P+fKL7*x
zwYf+}2;$J6X7C09P&7m|siMtjID(A4aKRwy*cEb$VTox7K{a_f;6<##gC2lTE`^iJ
zHQIBmVj)L`!{XS!Am*&|i9{GCyNEozR3w{?g*x64Tsg{d4fu4YTb>Kr_(B&x<7@+n
z<><zC;sFe5P_c^C07gs-L>>C&3u&du#p{^GqM%F(U_|>x5Q9h#9pX-5*2~<`;5a@s
zrg4pPfd(85h^Q1|jD_)VA+jLHxY@zPLT~xm88?!{i;M(}D}#v>he)?Crpj_sv|<&p
zIHQz}r6yh~OSg(Bk?^@>Xx%fC47(V)T$saUV*#Z^|Cs1RC>rQ1Fq_}ikVBAMt%Mqt
z5Q5$iC``NXPk_ceCNh(WOt}=$Q^TAKEAj#gd0fMT45UYC^0Gl(h022-2!dX8!wv{^
z0EDgh;BNGS1YY?{cn?ZNH`X;Ed|js;;DJe4jx--{d51c_5E+xyNS>o$vuXe7My}+;
zvTNuNn+h$3e-Ij<hemXiE|U;BILFJA7^fN|+Fp^4L=gw&NkZ4~h`kW@KINPPVG^?E
zapEx|VEl(Z@lew$YRaPj2qdSHL=I1B^q-ixG>G5{9ZJxlml8fxmjS)!Y}zExE$u0z
z$N82}{>jfW3A7Xh9g=^Vwo#K{)t}006E=Gm|HWE($2h@|$bxXH(;;~yELwt&bVf>#
zWtBof;E52?;3*xAE-ONyB*(Ifg;#Ru6)y4cU@)61*_9MinU=jQW;6R3mY^+dlW7A|
zCwr0!{^cCw>`P>6)fe5w4FcXwRonn)!d~gmc0)Q{vtCk;uq@7d5}^ogRfo8X2p1@+
z)CoO`TePWoWvq8g3gk|Cp|Jp0Aq=t8Ioh(8dk(j{1No{<taTCZW-Yv8fl^XJYZ3+O
zX0qg^Q?zu8UfuFmC=mMXOI}pQJURCw^`*{z_v_okee^o!RfxTWdlQA|!gvV*pZl&i
zl2m-dd*}iY7n>Uwr9xnxqW$nmDy!KM|C6}HB#sQHgfI;d$7L3J=|Ck^Gn#gIa4$?n
z+a;z!4!()AFE3y!J<hp6cIs~)P3tQ~Ag891ZX_NaOHfd@DB&`VWkhU6MKvTsPw#P$
zDnXHM!nUjs$YFCJs(^B29-;~@-HWX(-H4STv?B0)Wy_FrGK2>59_B*lxyLgIh^WNp
zguDpPsL-=|O~SVhBpQD{0xr0Wg9<l)%+P2S%36w2J`oM%%30nB>44E_Oiy{!fkp*2
z1Omo;?gAWR23b^`8X`!C%FQfGRXhYDkoADH%%wPUUx8Gf5d|Y;$gwp<`+JgG<c-D7
zHi(E#EbVDiyMHZ_2RTOlY=c-%|8|<;O?!g^#6_J@f8It(x6!?sbUT~fpE`HoDpwbH
zgP7iM0r$2mXK#6@WZ!Ucw@Lgh9D#Ff-vkHvTnLU5zR5P<qK$U7BQEiYJIdi7jumS0
z2SH1G#^N6TILKK%LA!;#<R(8k#F~wA{Xv}KE`K@9|FZJ@VSF!AP`08J*x{M;yyre=
zNjhrK-k%e_=x>XM4%%t-PqjSePJg<@mkug&M57Xwumq3`4n+w`z3X28I@rT5_OUYx
z>SjOt#L2GqwX?nLZht%6<6f7hqrL8SH>TY4uJ^t3z3+bid;aKt_rVk1Y=A#J;uEj<
z#WP;)f-gMeBOj^8Q@-++|GzxuGrzUROTP1-PmJb8n{DKbKJ=z<$EQty5o$D4^>Z10
zJW8)4Y~O?&<S4rBD<}KSaQ^eY|GmsNvU}m@-t{?x-=IFVb*>AKDcVky^Vj|pBi7|f
zTgSO(qL0I^3nw01Cv*PTm#gVxAH-Y#Daes;U_?2D7utv0bnS9ehHBgS4!N0TdJp{l
z13x~Vb>_XW&1XHI@tp+xcm(+ANEs2JN*sfzr35MEhy#XJ1cIGLX@*E74g<zT_+Zy&
zC<J)n&w+s2eT7`~1P@D0;HR_$F0>w-L<9mR3f1%)qFf+d@D+cxg!6R=<;0%tJ)i#Z
zpAdH5Qf!J40ALZO|JY<~U;$nZ7<mK}szh5vAxFI55mDhuSRv@FU3c8iT)4<_VWAX$
z&R>;ZO5k7|aZLtFPzi?Ia><1j>PT6Hpnp*k6eh|~2m?=0UygL48IDgW@Qfq11QhZh
zNAOKv^g&z%;Se?=;l;-^uniJ66FE==W;9`4@PtN`g&3kl9Lj^i$<DdOp&}((DAF4#
z;!tQQoWh+1D5`|F30y03L=a)1xU3;8%A&yyjt#=%N-&Qi`I{&joJxS9Nz|gc@mt^s
zqb}A3zM!DKq2lKRoG@}58>ZowY$6hE#!oDc7v=~uqMN-TQolJ&M06uZTmv-7$|5?V
zI}YJSNCpzJ{|#sv#AUR>A7bL_Z3pV*<4RaVPmKtC#DlE?RtPDMLBtcwa9<t%S}8OX
zc&tL8fnT7Vk3vEeLtc(Ux*&Je2+^cSLO=_~2+NAB%cL<$m3fabz6q>}(Mm{-DtrtH
z7E0)#R1)RHrqM%zp%VHeNO`0RQ=D1r!BSB`%aTDzL#aoC7$c|A<b1_id;ph0mJ9g7
zq)b-iLwE^6LIn7I)GAN}v{Ym@#0(XMP8)3mRzk}~RzpStnnH}_Zg>|#c^`S~!q(vk
z>#;@Z>Bv093zR^kN!-(q1lo#NC4GR1FHlD+3?wyp3>Cp;RC-VA2?%odrAb87&{5Vq
zZf5_5|IiU`gr<DvcT7gs>EkfrpmD|5LzF~U*xFiXPw^br`VCqRPMLARrnqPqN1$dx
z@MC&87(|?dfaM^7T?KB|Pf9ExX#VE-RHaR9g++}7Q6)v~gk-Bs7jRw6a8`+Qy-0B`
z4e=P)cJ2=TDQ8b6#an!5{Owgz6oi=VQtQ;_a?U1ghRAUS#d}iHCfOQDgeM(3+u?LW
z$~Z}Eo+obACmBIyTwrE9a;Ae4p=SbMXgX5?m8NOx4{`j<hR}$I+{louNLjolbH>Mr
zfD4(JiH9NwE@(+QFw1>z#K6?gUv-03fs~|m!?R2jmIz2)DMyW_0ze_<gjC3xFo~KZ
z|6ocy)M0W6je^J^8pN_ZDbcveo?HYj_$9tn$vs`9jKnB?8j|`zl!y4}J;ek?m<L6G
z1Xj)0F9eC8e9@c;8_O_<8Kn}EDrvy%!kh$y_(4ev#?o;_42}BJO%&EAxnz-i<5`Bv
zirz$v7SfBdr$IhWBB7U>DrmluiAIP73&qDiU4*O6=^)WVIs}?6+yXFY8JX5;OE4&0
zFye#8YScw2XkG?|lIDfx$i=LX#vBXB@D=17)kh9Y!Jt)6pn@&rr5A<PqHYz?z{fS<
zg3h=ZwBQS~){n7GMHac}lL*MncvLssP$@kUzpTlc(na`4PfyCEQzT&b^x!e*|BNkE
z2vbyv?@$%xkWL}x7PKf&y^KYLWXra=64lHPg22>lD$hnl=~#u2M{vWz!q0cy!p^u^
zRIMNG*p;@_gp6cI79uA$NvkSQ>#|m%a%`+pY+16h+3aBBGg-q(z7<tT1ug~*j(CJ4
z`Qb+B>_H|h$f|^^wgjxoD$z<?Jc=f)*s5phQLb)Ac!r2{8Q7?njBT~#RcPe3ekm+9
z4|^gc)~3XwdJKFhtbO24)Ivz8hNY0ejv|rZH{P4LFonHbL`}d4dGKNP<m6TzXdB&Y
zv+66fP-^7-0_(UXNT?@&-O_b9pWr%Gp&@D#_0Hnj1pK_{ry_`mCPf_W|68;2=J{yh
zaSDmP(jYK?*n3q)pp=70R7vDYuD`V5?A%Y|;)~0kM9|(v(dO>i9ql|)Mo`?NKQ?VT
z0#dN}5%Ic5OvF(0OiLO`hYk@;w5BFgkQux+t0*-OzOc|)PA?9bEPZCHgl(&R4g|#N
zBqmi+xVn<#J`(uJ-u0qH&OG21o($~v41R*_DY35oiVydW>wHp<fCVcJErhr>j1NW9
zO%!Y?K&(yVC{DoF_3)w1N-hIe2l<HvT-pbCaHn^uR2`w8jo5+<;%k!y6bWl2^-|T3
zd~i@$15Gt%otDLu&SI$i5<b=-@!kUKirL_hQp3EjlTe=n$5%<f|HbWUrtT(j%q3(u
zq)jD2(O6KTB_gfxBG5Zsq?i^J!ph6Xq^R6>Ly1llc+iw2ZKZ*^RdxkbJQ#=kesLH(
z)EMj3jLL(C4v9v9$1XG)MWDjJT&j?slq%uLoiG$H<pkyYM@JEI*LDb*3}T>c)Z^II
zZY_;G(AiB`a>OXvHN>$bsZ>{F89i+S!s3&U8pkRGX|YJhKm`egEQ^B7X-JOpo&78#
zFBC#$srqaKgG2~c6={}*#VYXH`ejQH0W!Gw7L0Ckg6Nb}6w4Z4nj7~M%M`Q0GKH56
zaUzRVTqqC{1g~bGVLDQjB8MuwkStIc6hlQ$J(a0k9I;9a|E&_o^D#k*5>7_Pg=UJ?
zV-*jRZE=@zb%iQW#FGLKRUssSEmzg<kaZsCiXiS<v_*maCr9Mxi@X;@DAzRJ6Szce
z%?#HGZ-j#FP=k4H(nJq109ZsYw1l1Ga*eK#3}*?x*Dq)qhyVjcl!HsZ$Ri(-P5_rp
z55$O|0y!hsqyAZb?&~IX&T$e{LKE~+PiLOk8WB;&A0lF82~Srzr+fidDjW_`P&FYP
z=z{i*(8{w}M;u$!vk+*5e+i)P?(;JlS)Tp$zFJx!e%VOuS->#qc$vjhw%V(;1u%eb
zTdaZ(y%(7k*eM@Zga8;|rej1ogp9-)Dy+zR$|S7p|L<Nygx!+QRAaU}-vq7UnLzjg
zv6)vl^s#}y8l9bkokb>-^(=(&T24}Smfce|fJm{1$Wcxu<{BXNXoYh0%$$6MU{=GG
zi5u%(17po5ne<faZ7@eTv}_KxOBS{cJvWUU3{@mxs68KVG#vieBp`CO)$-|sUGhlm
zLaOxk2(N@YrvyBoHGPv!T+kj|Pu9UDqu^BIqO>9n$6J8IAyanmfX^OqKlVx-c%mR&
z_xd7(JGd)=HUbrH+rHbim1Dqh+bbsHT#(jP=MRJDh=Ut3S>tYfr?_V2H;bDbUjf^f
zws_m+32-5)-<^|qC!RX8<EyH;k6)II2f4+4|L0-~x!b|!FL?9X(T0Tr9wI`3A2jHX
zPdVNhxs`+1O+BWKU%A+|%VTyTmp_~LL9vumxtaS<n5Vg#uQ{8q-F%-poGV6~&pDmf
zxt)jHo5#7H7sj3Uxu5?zpubI??>V6ZMxY-$q9?kdBXOZO`s6J-q({1>+xeh7x}|f(
z@HN@(v0Xe&gQs`gq=&kwk9v+&x}`U||6SrlLj&-#-IIIR+t}WwbK4KT%{BDECy=_X
z@A}@E`l%Co5~}(}7~u`CosiMi+ng2zRM1j*5Xn^x-oQGqPdl}fov;78o<pJ}n#46k
zL)sL()Rj0r@Qu>lw<x;exy8-ga2PpN|B^D&h2WS(xuLs3fO)mwJHF%3wPQP+^DauX
z17#?=FwMi0V*)t57zkNIjd=iDb3`;L9gU%rX@~*A14aqCN^g*nUg(XGF<N}oSO;8F
z#6!RVO}s$}*$d=AUU&cq-IR-YKsI<fec%RPj6ynIoxSI~&hLEL@w?9(hQAwNz?WRj
zL4XvHR<lLZYB@Zz8-%itLd{J<(f5U~m<C@QP}~HEv&WKO1jo}yy+J&=%{5S8z&g^a
zd|uf6z34@`^Ss-?J=6WX+z&?3kIT@PoWiI5xNDPex&}GWJjrjw!*c{R=zTTOmTIv9
zX-$HQ1qW$Kf<&lRaKw!VNW+U||Ce4!0&{G<P8z;y_{!l!02{zYyL*dYFgracz23wF
z5I}(1r(AEqz3k6EqU`(J`*_`B#od>j0v!;!pS;S|N${tB)5D5tsQut$oH(=wsuYgW
zHv%-Q&B|kb2Y^#vz(Ko{R(o++8Z^7>8^qv)zXPcX$>B|o(?cxON+p2$MVLlr(mwph
zKZ@Tz{qIHY*T?RM++#t27^oHq0R$@u9m>%&hztS*Oa=`KoWjuHyc!V1HH7d`BE@zC
z&mFr+Phdik2|Jua2f@R%gef^1OUQ}gMhH^qWvmGDqs52xJeFkWaVJE2@g|N`D3qSO
zf=HP*b@~))RH;*`R<(K+|7%vQTe)`i`W0+gv17@WHG7sRG^1<Twsrd!Zd|!@>DIM-
z7jIs@d-?Wt3(=YoOHJDeX>$(k*j6KhE`|__q07e*9SY63FeAo^;x>Bd_%URta-+#z
zs|b|d#5A4HAv|jEBm^-vCt{u$v@%bWhz)x5Y*4Aec!Hq?5&4^;H6A@~CU*WDdUWa2
zsaLmt9eZ}@YW;Ti{vCXH@#D#t7iq9tH)ujCrRPmAec(3Px-HcnRc1oS2StJ^S4^ae
z;+bZeiBg(In}{ZQft*=Z633c^B)KLbPyqBm8;@oh4IJZ;AV&w3w23F1azc^>9FZg`
zCqn&bgMdK?QL5;g|Dr|=5rR)5lkgfKIHJcTDGHj$hTUQk35olZT$0HqoqQ6?D5ac^
zJM*l(63Z;L+)_Mx0uutvFtahJurR|MY)XbgN|G|R7NV!fwS0n;Ef0!<;0=<5NGQoT
zjhaHTgb-tAq)-B7j3GZq>hn0`L>h%ZqkPg30u)5z0;2qAN|V!0J^d8aP(>Y;o+`OK
z71dN#T@^ff$~04m1c#ypRw1zQRHpqPqI4ixfn-Yx-r6ZD1(CFfvjb@s1P}sD>0y=x
z30o5>SXYbcfW|v>%#>J>W^+uo7E!WK#)Q^b>QHmvGsrPeNPQRHc;%g!UV2Ss72kaI
z-8a>GosvhM|9_Lh3Sg}Y3izsk5k{(Dtr~{t;L-e@nBs~pz8K@O?&X)`jy?VuuZ%?=
zndFj9J{jedpV}DYmR)|iW0hr|ndX{pz8Pn-ScaMBo_)qL=b(iin&_g9w)f|xm0r5l
zqn&;l>Zqlj`m3Fpz8dSSjrxb{uD$*m?6Acio9wd9J{#?{)n1$Jw%vXk?zrWio9?>p
zz8mkn_1>HBzWx3i@WAu7TI<3M_gV176<?h3#vOkg^2jBhobt*ozkG7S58s^gjxqln
z^w32go%GU8KOObdRsUM^&Ru^!)zxL6o%Y&oza977b;rGR*nR)qysz=uN9=pzp=bBo
z-?`=*|K#<4=c2FExu%=st-l`o?6u#X?B0R@9(=#Jeuo-bvjMvuTEQHQd(-bJN}Ro+
zm%?l42XcOUYszV#|Ni~|Uvl0H-v9|n7p@&cOkaZsn5NN=VhDzK0Q?+3nn97h!2<}E
z_}V>;(E<Er?|pxe;0Q@rLKC`8fCW_H3b)p^cL?EpURz)c??H<;d{BG+7+XJd7&d-%
z4Ie%XqTQeuKeF+#Y&}dHGd!3?C9ds>VZ%p0c6c@<evKdah~hu)VS`Pa5R73IqX|>U
zLNgYyelRTCF>Z)Gcub@Nj<TQ&6&1r+7-df!>6&ZIg+qT(LkQJVTM_?p$As*Ui{*lV
z|0KHhjD*YpN1pLo1uFzLCeoveD{<aE6sbY9`6FFOh~Piofun)MkZYV2iKRS%Ja~wt
z9PcO!{kWEnJG}sr{#XY>))0?wT!S2A6y`9Ask<_s5t-jhBPzr8!ZuznlL`4jh?>Z?
zR}7>QGCIdUB+~&Lc@qMCux3IkVT~fSa+0tdBt`rYrx$GVAIu;pvqCYxkqBWTNbs6E
zSil2?Ski;9G#BySIFM*COA4bTn=)W@4Qs&BdG>q3G>DOqFLJRc(<BM<?%|`6<luh)
zpyV2^fusGoqb)cr=1N)GQp_DQnK6CcGRIa!HG*&=h-9b{|KSgLbghC$l;<`{{{ew>
zypMj4q)FFq5zcfbgr{eNUO4W!RIkOug-*36I{iV4YIf~?n6RV=;!&hYc<qi~0Be!z
zX*O0=(;uwx0P)%h0Z_PbBFL+%^HBO#`&EIXuGAyfDk#c-#A8^Fh{s}o>Qcu(7P5_l
zsZ1$*IGTpd9|-j1=<Wdx&wkdkh%6gYyM|Jp)<cp1jAs*H(aLsC;U5h30P~o)7+P|z
zpb1@PLXrTsd+=%|SrseSl=0P6)?m0#g#aJC_CDjH6t<lO?Pn2r#}rgz8qC||L@q(w
z7KtO1A8ZCX?Fk03p%enNy+%*Ad(p_g7ryb;+hi+SU#wkrgPK)n=+L{C|2&+ni?Fq)
z5hV(ZVt{nGm;A>o1kB)ngk&uOj+^}ko5~_}pc2sVk%Xa_Tm?55xnQH@Ohy^t4c34Q
z|LCt#{>w#EYEs2+0dEcTNjB(-wrdP!OEur;UitnQ$U#mUeeGN1q~RB=w6es0Lnqzo
zLIcM&wE>6c$k4lT4W$WYZG&NJ<$v&Si(EqoG=jNKP^crMSe6Y~Yd~cW8yBO=?b=X-
z6v6kASIyCVa%j2M4s!5gvFQj=J?~5pFgMo*aQ+%0zlPEjANs`N6!N4gUFm-i*~poO
z8IrlEWa4#JrMfe*JrOBSBi<uK7gex>7YtjamiQP~CagNsc4LvE|0JTS1!eT?>D~{s
zSrY)&D+IRCwL6Mot#&<|K;U_6vDP)J>1g8}w_xYD;?LF!#C6yFVT~mp*RZ67MyM@a
zZgY<j)0$TI$9hT)&w|Ob&O=9-)F*@}iyB8&*oQl8^bbcu;0JQ-z#2640(#sL3;VdE
z9lA<RXy8b~w}xukjsep6-9sd5poc(TkjI4dfF80;$S3}>43cb99XwFEG?zmUf6Sr=
zO+;@8G$_yx7?@8?4%;;$P>J;lifd?wku+$b&i4%j4vw1ZKT;0TIPyT_T^okEtf6%L
z3FHOEfZw^f-t{o1d);B*SEs}Dz-P`IR?oEF(NVIG5nnk_|1SW?Il)zqJI?ivu+8j9
zUcgLJ!WeCa++Q@&IpPj<!!hURZ;A~Gf&GoxDCNi`Iw>sRdw>f9-##19MbZIgzC%%M
zXlx=!qIt*zUd$t*`3Iv3fgY6E>#>);|G+MG+plW&V9Q6C`*y{}@!pEO{~_?F=r-Wz
z9{I^{U+r(-d@d;;`q7vE^uO+W>-UWM+1LK|xzD@nf8S-@7ytOlU;fO2AN?LP|N7bA
ze)rRj`RSLx_}*WC``;h`@t^<x^MZf>{~rLkPyhIj01YSr4-f$pu<Hh}02}Zv6tHyC
z!5biu0xOVm7|;PTu!Vp~=eQ^yMh^n-LA(40<7&(T|4$GF69)q|kOjx5d~T|K>a7yU
zO~~${8bWQcaxfmKXpp8MY?2`%M5u2Vs;xlB25B$_lTi9rkOedFfD-6ya6t&7p&c}f
z>rCss>g3+Wrno|_g5)f3?yLhT2Md+Z47HC5o3H^n?H}r4lWYhHbB71}fd{|F_t@qR
zNeyiLp&g3E65^qxw#{qukgyc(@9v5a>865YZ4k*Oi-7O=x+cuBsF@t^3@>r|(ohWv
zkPW>iv(#>PT5lj6MYl*#Bs@u=QY@O_PMV5B-%^PjrtS}a2?Q%hwC;$&>Zoh#VeUK+
z5Su5fz)29jCLN}549TX8@XW<nj2LeT$4W^g|3FH>{;icvE+LYOk04+THYpY}&zG(N
z1Tj$@7jP5Hu`fEYr{V#SHY<7JDj`y!C|+P9>ZzbQ;GhyBp)x7DWWk??%kc6@(tvO+
zOz_rtDyYT@!?cNOipsyTDk1O*0toW&EUIlB2@H#hq%`EVMk)|3F~$Z0B6-an{Ance
zX`Fh_oVHCMjY1;F(IqWS6U|Zn(6Jf9q}i^gwe~>_v#gLHK&>q7F)&KP!V0K}ji73P
zmH=%Lb5OiIGLv#?^bXPkJBS=|unwVzs}k*lC=3kGrk#w7v~a5iya2Z<tg!Z>t{91H
zOfKRm$&>1Vij)d}no69M(yo~DCG)b}|6)=m(GML(5RgDIc^s^ZQtXv5!MQ#Nx`dL=
zl1nNdEaI|F#2yl)h;0{BOU{0+epD;Az)~Pef^ASr(zvZidH@<|D}vBVz1ZuO!i{Tg
z;U{N}5s3>W)XTQAY76yJH-U^V`||tHv1<S+H*tqBYv7Bz2r;MZ#8go^EzB|JsMR(z
zHzDr_1Zg5)z`zj9Ycx~1=FAY?hS|VI<VGUJVyi7YsKd&JJ0GkqsBAcQ6FwuWH+|Fk
zfK$w1(0Ynftir0$yk;@qN5T%XD0zz2>`5EM<}tm-%hW70jj9sg42RkQ8vIVGnk8(~
zK^}}J9v;d;9qr5R5PDkjYu3}t{~&EM4>UegRKDhuKAVrzjK_I0%igl5ID_qdg6-In
z?XHs1d0fK1Y_V$!G{#0V9ikzEfYg%a2-P6K$B2+?_`w=t2zq?YxF~Ek&E}5o?R{MH
zn&Rh`@T}XGtgd8DmI!h^Uk$8ct+cf2AByxCRTNIah(%k}_S)^;gdpDT6Hl*!R@&fA
zXXoY2C6hiOlS0Afa4sSv$dGv8PBe&;uq9AuV!Hs&<2DWmiXsTuK%xFE;5tuJ)eHiX
zj!!01*{t!M9FjB7=9MBY*=X(>9E7~4P8+KZ#?b2p-~dO+@*j?YQ6Yc@fPe=!tKoX?
z;SypfC*lVxHBOh6nC6sD|HF>#z{Kog^h?$!4rzz*h@@G@l#4J=^OkWSl*K}I>@f%r
zfA~!#*5Ico4E4As?&hxTy2cs@f_?tYLK{!CG6^)(1{cGI?L-2Xye2kCf_=uvPdv}q
zBFqzcrSBT;PSllIBNpABm15T-ZSX-J>JW?|v4moQRmFy5$A%K!X7?o4WFgC0D>l<k
zmStOZH&a$+i_B$bmS!&zW@EO#YF1}=wgPV!XDN$kgH~w&&u4!&riK=2la~F8)@YGQ
zX`dEqw~uL?){LUoYOgl=rj}|~2y466YtKz<w-$}OW_ZTNAL8LpzgBJ6wtvD_YzN2%
z&1Y=pjUCz6Zts?V|J?R%!RHCVghFvk$?#Ti2RD24c5i_P9T7+{QfFkVh;Sd*ZVmTv
zeWw#&h#ZcgZbc^>w~=f94U$#@o*GZA8gJ>whZYJJa#QzYC3kXX%7ySVm1w~Y_5pKE
zhv&-aoREiIA+pBi^{(diQ@JQkK2~*$S4CO3bvuU*=WTy#mvrQksk90!k*BMw$&t$Q
z){0Pg@zHp@H%^f^c{k@pPxpW__j6>+HiPT$lB)}Wa+`ScYa|0jy_bGpHhi0q)8?%W
ztN|KqXhuZ`!v4gbAhamO$|CC*fteM2@3(OBw^sf)bV@W2)01m{O$@zCrRo71qTyN-
z*n@kPfi(~~|1;}bLkCS$NlpKbN<WC9d;kLMz_;QAdq0?llW>7U_`d$=PV=;W`gaOD
z7;=U+!yt~7ih|^<abN#Ipd56A;zUGi7>X6}hH;o_qE!f{^=r`1Fn~CS88(I%uO|-)
ztt>Qbnkp!x7>y}#im6y>wx?v>2CLFoj?Zw7+4yJX7?1PVZtB>Mu}_cx7?9b9kNbGj
z0@;ucd29xmki!p=8`+T+d67ZJktg|(Avu!OkCHQ4k1hF<IYyH|d5$@`lgAE}OBsqq
zd6e@-c+%FCTbXT9Ih9!@Zee#<Va0s4&mYpkv$_EgrN^_TfypFvgH`Gt_%|BJp&hCR
z&~z{y|8>xrKS>Ao%b9o3YwE$7KggP+d4r}IZ9VZCHW-<$QwMP<o2Quv%Q*+bQJ6Ux
ztQKpN@Dgpv=QIJ4qnsH8mwB2SYns1?n-_~~a<FT3FdezMvCh_<cQKv62A#VZeV_rm
z+QCR&Ic{J%mQ|&1X&Hes%(MPB`^Ix5Hc3&S(;Y{G<cg9d|6wK1V@=y4s>UXzXL!Yq
zWANJId@#-^_TXz$IzYNc=u{7RRt(Sn)hKk8A&nwN12{((62^-9iN9u~M?!>(dL*t)
zr#p`xVmcwdSjPJ6u2xJO<f$#T39BKX#cWz6n$4_50;ih`si9M%+lHbm8dccPc>xF#
z|Ah~Tgvf3LN=zx~;)>)8=m8%z1d*=E1LT1pV&lsGt)}nDgYKalJi-#v0rq;T9Tp?I
zs?sA`x_IJ&A-{?b{SXjC1fAmHj@F<wWMqE;(FQ!=mvBe~!NEZ$yBkuok~k=&&Q?~T
z6RF7Ip*+C1)wdq5Asvcj8q&c!4I8l)yA2IVtcJU_-;-+^&fxxGSpMlADu@jhi?F$<
zxLx}i5UUlM=p?Wp9@0TZp6#+BAhY9PvvYZ)a#^x(?GoByw%0p;ayhag01LnY82@=-
zNAs|*p|xN8YZwX(bayk}`fcJ`uAlF9DYUM)ryk`fsz7ff><EueZjVNSb3GA||EzQK
zlr3TRhoNS;f?#WUv#OPzk~G~DL7Rvl_JPsPCKfyZKz!`hZgGyLw19(@c+&~Tpp7(3
z_tvC=*D&fhm9wi@^%bgg7+0La;7Lfw=7jz2jD4IoWsTK-NWpq67@emXWSqw5$dF+8
z@AgN*fV2#Itr9DtwQ;D*gY>H$iL)6TZ5;f;wS=zCB%-mW^)%|Mt|=jbuA9CoL?rEY
zQ&Jg6OuE@j8T~<!t_jDw$b;l*HgVBIn@hB6d_<dw6!PGe9=$C4Kn&B#AbXrMDL6XG
zCPC-tYsM=^Z9t!{37&{@)LvnR7tFXY{cHLadf<SJ=X~efx{KOM%gvL^|LF(gM&TLI
zi70dIj1?@@N8OrUU<WLbkk;ISpywu8-D{@q9Gui^h<(A_dWi5`koWxd`Wzap!P9Wc
zBX^41qH>Og>K}^gsE`uNt?D1>Qn~KD5`(;*l#$mD&Lao3f^>Y*+*-NRcZn=<>Y@rs
zU0j8ydoj2?$OqIvnbgLV?SO@MN1HPi!0^dGC`)6#+a0f8&HZamer%xU3lNK0M2quM
zHQEPw)~My>r{I<7hmd5wAe9)(yAnW^7~-ud$R8C?MO@w0M$g&(O4#rNV;6#raL=F&
z!1!IwP75<Dn6+F>InkH4ZnJB0i<O~Az;c<kx*;)N-l)1%<wM~M|5Hi55XsZ);Yf+K
z&D7>Ak*9)CoH7%l*z5`5JPOZ*)E{stK^LBE`t?g;yE%8xxa2;a>ZyoIu+@<<&SQQp
zaO}x(PR??EeP=Dh`o7$|3<5^sm0CJMH?u1b*y5Gm6Y&Qfw8h|`-fW^?>Vqf3%SIh&
z`EtgZtO0ED8Lhw$Otn^x%h;1GHa?!!mt7$MB;f4i>0Lo7qVD5qQ3edGAOH}+9(i6N
z{297zrXT2bUYbOlU3&nSQ$PEg^1|1wc(f%UMxlu}9_FRJrRja!0RjT3SX2HPJc#h%
zD+uQjB76s7%e`9=JnTdGs^GmE;_k&WxDgXVcMwGWW7dJ*|G!s&{>8hvQezDd?I4It
z*vzIwgAh$(ga9;XAB+VLDubXB;k|Y?O746LHLBF9RI6IOiZ!d&tz5f${R$RZ(6MC8
znmvm)t=hG0+q!)VH?G{dbnDu^3-qCoY*OFt1q(RpJ!pgr6D~*fo{ggaAm03U6x2bI
zCQ+))Xb^McfBiZ?MF)+XRmBhx|Kpbroxqh4LLr1#kzP(Q2>mrJ2hl@PeE5u&=BX28
zjmjw}2bUTP!nAA5XF=F>Fy~{3J)vSgXc?jOhY*VId<MZ1^J~Z;Fb28Ux_5)KYu|3H
zleBrN$$e6PZjhBzh3Ai|42e*3re$XkNsnCz9#GS<|94zM)x8D*72{bmQ&KS@WZ6bu
zKqy6E9)1X7h$4<iVu@klg<^^-uE=7GF1`rkSbFi55IzUpbBqwCnaCqliZKS!fWh6P
z1AZqJcO7QnNdeP8I7${>P&-a_ly1f$Mv|5P_@kdl8y$C4hyIWfQIpDe7vzn@8AKp_
z3qG~cc^g^8;FR1!_tbT4uJ=z)b}sZnQvMwC+beu7)X<IT<;mxl(}fA#W9k5P9#jym
z#*+<P0A~_xzh!n_GsSI$r$4?S0aKfffojm03gYzXeRvubD`c(lhha*Jb&%*kByHGZ
zu)+>YY_Y~(C02~eF3W7Q&OYnnmedd?gb;)!|Ameal`uz(5SBD~Y>7kyRmDE;)Buz=
z|0MWB5J7dY2B8oHnj9AUBxi@K5L5z9k@H3QYE|-8LJcheC%3OPO=+1RBi8tvsHYuF
z1C6^Wsl!7K5U>CQ4<45U4-n{f&~XnMzv&P>=t9s#L+@x@Q9B|76$Bei`XdX>KlETB
z&O89+F%Le}P#nfX)7-LfKndY)cl787fePy00|ZbV-1N@J^YVPqF<O(XMp6ww3{*oZ
zcbD`+l|psYyl|{6(lIcvp;Auaq4V>+9uKW+ksUBC<v$^hT=L2P_yz$FmiQX5KezC(
zG7z5}6tc-c{lEiXh<C8KKez;Ci7a^s|IIf&UxwF?yeNmudh4#g4*O2YLQ8w?w%?9B
zi%xc1Z81W$k<>lDS1Uv`7RLVJ=@!|IDdO{jvv4a?CTCG{1r0jZ3p5^dsg_pB8x-9D
z17-6=E6;oUJ<^Z0IP+zJa;aH%-WPa+KwU$Y_wohR>;C!IEx#K%Cn#(%T~mM}8BYPl
zHSQ~$LdxR3cbqR!zzG~|)&>=HoUa4jFbKk8<3aN@Feti-pVcgp6cdsKF(2I2KLmsx
zve2f2WRXk@opeA5gyDSu^IvzihrA#Pafn0=%<OW9#3U+liMOi?Kk#9Xd=zntJIO~s
zM8q2@?j(y(;o?sG;YBKz2#huw|5g}1bVe}_s~++=O+1dL#yHAxj;=c*6Yq$}JnC^S
zbnK%a{|LxH3UZKyETkbpWXC-!a*>S8;~^gj$r^QLl9NPDB#VU_N>Z|nm+Yh`KMBgH
zB(jmDETt)%70Oi3kxXfUqbfag549lSm9(s-E#)}MQ|fY;ysXPDe+j#K#ABGmEapdm
z85m(2vzTo}rZb-j%@XCZm(;ALHOUgqY-)3x-0Y?|X*tbnigTQ%{H8h2iOzJYbDhHq
zCpq5<Pdu`7p7gAzJ@2VbcgAy{{InfD0r?If4$>OE`lmq;icr?+v!4uYXpCwEE{6!S
zncl3&c;@%IG4UyoBxy-w|Cr;-z(Ax@>9|G**NLcvs??whb*M{UiWi;~>@PcM2k&(B
zO;$o+mO>=S42yV=YJ}7w`f14NRtFe}bclOa8)_u2fl;g2ra>#MDmz;W)2wRMEe6R^
zwFGLAYzbi+!!##9hPkL9rgVx1nhHr=c$)2qC}fLMiZM3Y$&LKME63oPRsXt9tZsF%
zgvBQJXsQ?BZPPP(!XQ<ic*PJw1g;2)EL8BJ#hq9-Dw{pX6L*p(sVrnltKw{D9dcT!
zwCO2~%}Qz!f?24%HX*I`EIv-Fm|1~nww&QDX8;S_M+&yE#NFzQ5;7>9rt*U#`5>L%
zkwXZ8^+E@ks+AD7{{@7kV}kQbNAV(R6&P06c|buG_x$z4hoDzuMM;oumJt-6lqY<_
zBgZhp6OV3OgQDE2)T%ycntKcoD3Ulxf@a_^4-}MnP|B47fubb=vrnqz-D#8Ff!+=P
zQNln$0SFa{o0To~AKMMe3rypWb(Cif`Mri{s`5dgWcNns1xg+eqCpdz=4>5k8dZY}
z<US6!xI}j8ag{=gHe7=+FZLvS5%`ZML!f*M=|Ck0SWs3~H#x=e+Q0e)lr>z#U!)C+
zZmn{`gdF7s*PxKoD)@qF5CbT9B1w0Iu(G1KBX2=L7f%<Gu!X548D`;WLXz_)$4qrz
ziDCv&Dp8CD|I!cwc-|>O)WL$E*=JAmP~aLa!sBQ}8UjqB%9`6evJ?U(&T}@>>3-m^
zQB`d$8Y_<7#7t(!nZ>CI@tVijix4u2SzaS<+ZxCgpB%#a%|UK99fw@xX!G;Phb7)u
zK?xqX=EOCvqNrSn;t)ew=sK|BRg}z2!%bJ^zHefMceq5SsWw=GNSSJZ4Fca#0i~|>
zkm8aoM3JGKH7B4TrYm7HVy1>8IZ}Y*G2t^5;8;nca0F07nBjqVG-VP2g1{FPb*rhk
zTTrZscT?t#E|oAmDI{6XrK<2Bm6W?zIWccM+ED{X5R<=G(bGmotTJF-YDYP-(w9tg
z6r?(P|LH=6wzQv4PHOYytNVCIx3UaL(iqhS-mAxefue3bDP%p@vGaJYL8$fILqF!m
zN-WWRkmRJG63e+p@X&RM2`LCRaR0|GJ|3k8)5-&9m)?j&`;?^94+2SW2#&~d`29d;
zqZZdrQ23w}q8*PU8ZnGvOe1%?gH&mGXO1-#M4IC@BZ3eBgG0<dp0wZn%v#aYRC@r8
z@xUY}o7T@wer_D4Gky54b2`+IUrnhu=65j3mhcP7`*lhFQZIl;F*FwTwTT;7wlWJ|
zw{jG2E2YLDw6j^n@gS(IHa}+pQmqm)C-BCv?J=}6G^*x)pRB*~<100KDzy=tVt!<C
z|6@)<epWJoWYG~dU}#T)c(meuv-cHZM{i@{LVf}(i18y#^?bzVfyQEd$R~ojq<r^4
z3vSSSh?Q3}u@9uM9-C1hlE-}*5n+q+R=xFF?EnqaB^B}K5bZz?XB7|WP$aG~C-g8$
z+|htLv3|B98A<3M5TGuJ7jjVu3X`%PKBXr4haHr+CKtyLzTtmII1=+Q7@l_+1_6XZ
zNQAd?giwec-^YQk2LYP`hiVdWPoaZ6ID;f64;~Q@Zq^Wvc4qpafoWA*AE=0RG=h!D
zP|D{yZICF`pj@AH6g~g}c7P#6QY5q|b|GXMlTsA0;XVFf4d234P<9mrw-ZGb|0N<Z
zRSS|1z$0(m!+;Lv5KGb|PhuQ-m=4hZ6N=$I+<_QHr)nl)DqjW>v$B6Rpa~9<9mz3c
zF9ZQUMH+$!6|Tr2u-Fu`s94e%j3dWX^FxX~bBe*pfH3h6&|o3)gN+H{bLsd%SOXM9
z2SOVN98tB1`xq=C=!pNgN76zq*20d5)dm#vJG^E{3RF<+;$t0PGgPBB9+NcEmpCv3
z0pfFC8EFko!+KzM6~Y)&fVM62k|>ihFVbKz^{8tv00;g8EM9{y9HThZ#Y+6*FO2ae
zKOh7_AvT!OYlag`KoK^c@&Y{>6g*Rblk;TehA~=$IXvSJv!Hpp#yNsx|25WEUf{J8
zB#Cwo^baWc0xB6eU(x|^;E@-BF|`&1JP<Yqv608-krtvKFHj6CGad1xZs1mb;^7=x
z5|{lVY2yL`<#I0R!jFkbEdB_Pjmbp2Lp;8tSO+0izr%B$lpK_05YF=g&{Glnpg=2h
z5EQX*MWQ9D@h&K&6iq>YQ~@4)$r@v!VGj{qZ9q}b^)A~JW0X=G;4?1*b(mq+Ot$fT
z2y=)K20&KR4eN6b=C>&T24?a@8defNMWH_I!<Ai07PHAcwMkJNwr{%!LC1rdCzL)p
z)B{b1L*0RO2*C<E$wTupCFNNW0k$&B6BO^LnENRrjOm#FnLAR&{~NXRa38{3zNHn<
zFpRAATKw=^JMmdtVMT6d1GIM)wKXgVDq9Wupj(t#SfQa@fpDxPTOG=uCmJsP37{)V
zJ1FX+2z3wFaC1$Ohc9ZQQ>3CSs-w(uqdiJbghoON>7zqhEIGQPNBSZ}s-)%=qs(!c
zOA4iniKJ8NNKtB~SBj;IXrxrirFW5~UkavSYE@g>rDZA?Vv43|s-}Turfpg~YYL}v
zDyPmwrfzDdX)&jHs;7H;Np*Use`;6<fe+cqkL@rXLnV@Ys;G-fNPY^ak1A8$B2Xr1
zZPlWWa}-oUsuk&QQt)R?PwFFMu~$2>5ppOj{xD3#xpR!l|EjI(5RUq&f7(^VBT#<9
zF9Uh0a@1BJLJCW05IQwsRUu3@0h?3#X{`gKzmcp+;i}Ebs<0ZXc3Of$)isl8EU6V+
zBnn#Zhgt~QS)XVS^-vxjpkMNGW*EAfusIbW3KsV;UmX&o&LL0{sukJFS<Z^D9|*0{
z+NR0}f3(1dA<{Nn;5b3?7!wh!AVGcwcn|i4U;4#g^yvXR;$HM1Wg>BNGeHjPU{bq?
zh@?iD+~s&*$Q?4a6X4SU=)ywz8J$2$V&63y2gGfnVj=StX8(~x+OTNV$P*d1Jr#Sg
z`6{%|wy*qJrv8d!mB=H_fRWt+lB6*)^1>Lx_LU&}{}0O=6o&RC)n}S8v1erAXG2*Q
z(}9mTR20UBY;VGU1_2K@@H1-zH80>}H$j>@fs)4&KNbonHLwU=rxFB0k_r<W{;)nB
zP!3ZW6q7@Jaz<wb!e>C?XG1Hw!Bw<I%cV%$D#u{0!2)PBa!kqL2q5=+H2`!q04xJ1
z5C*3d77`15VmJIIMZ%;58AnX3$r$jpDMJ?}!??D5X<*$EVBN?daD`|kD}y~)1Do)g
zN1_t{HkuF+amgWm$<YwC$P+0CFt9th+dHO~>%Dw*SbXRg0Xrh2MN|;b1!vb3+{iMy
z#~k4DfC$kJ<hLNK*p-e&8gd&r(dV8G(z|^~|Bd1YAHn+@BL#nK*PeST5@bRT&rlpy
zQg~KNiWf0iq^EbsVZYp~!Bthc-+QE(`w!WYt0Drfr&AUtQGr20S@Fvt5by)gKnv)y
zAWf)cBO4SfpqgN2Cm5(E>iUV>2Nl^yjU${GYXT8=K(qe<HD$pV3vm<0t83@ig_^p-
zRm`RyjKyq$xhA-|oVzxzf*5z`hkz)EOf`k@7%Pf5#d*?qih@Cem=K1Tc|KezQ2Z3c
zDGgsHzdIO`Ux+Xdyc%N6I9{+3T3aE4%)C~t$Sjq`jf|(^>wrRl4aNel)My`8r-AaA
z8OK2qz6gvffhH=8i`tne_dpH7i$S`}{~)}Zyw*`E;GreSxFGg3KkhghUwAfFqKh|j
z3=QTgMOa<Jdl0i|AvC<m$DB?b?8yHqkkC*q*V1cB%Om$7IzZ6_9&^SLBWf!H9Z>6+
zAfz-r>66q*Y3Q{AlOvNG(=l~LD`)91d+-llrZ;aAnEt|TS@SU+-~(<ca~+d6*USTt
z0X5aaKklK&sd&6l!6iVWE=N%u`ht_Z`MaNaX{$z-ESb(U$<D~k(dMMg%iNfd**gh|
zWL<0`KIF1%Hx}usG}&V(!I_cGM3_^CnzXT-2aUL^mJJuNn*tnGV==K4{Xg(w77gZ`
z;&W)+x}L2m7&#;vyCNvQsXfSb|8msfogqXPj@8jy4NV^n(*IaU6I!CKbu3rJu2*5N
zQK*?cBGz97s;6P1TrJo6^wo8pulc|a`r*@a&DUw_)pb3B_=>e1*w=-<q<;<A$cL}%
zSQy4**pCgSh@IF_2icWv*^4OIlPztR&DovZY?-auMdsO~P1-93+M!)srLEelZBM6-
z+J(j1u`S!@<l3)2SP%s#@$l9|)TAag+rJImQ&HQttyPh#f*>(GzeB{YldPs1+|M1`
z!%f^UHLKSa&Cw8uBrQg$8V{{Y#n27joGsncZDf#)Wb7=$L4>Z+;oMN6Mg8!hf*RkI
z72fsTtm94I4ON1)fZozP|02vq&J+!v;lYG_LYl>hoc_~eKrx1OOW?Lh7NY=vn!DWg
zZQ(?U-}&87``rej@eaO|z#t-Jk|AX_6KbR8e`^ddH-Rylx6lxf0xR<Z=wgJdISo>)
zG~ax@fVQ9)?&DFK;TpbA{t6G3O1>W=#0<i1$pLul>C@}?ZGdYL@kbfd7`icZ6IE^y
zlj75W*4{r3<}VuLLJm*<DpoM;ErbdpT8BeMSCz(5DNueKfU6Ojf|VknAL%<D>x-2x
z?7p3P5GZ+XVNU26PUetm-ZzqDD&Y^5Sm9t1eamaM@K*zxDd*FX#1}#;ID`o%Oco|F
zLi$<gqi*PjE~|+?|8?6lzQPiJE_ipt$axpHQI57F-pwii5)xpHgGym{%0wu1awF5S
z+oVqHm~HB(p6Urv<fs_JLU6`Ca*3JPan@MXqx`#2qB7or85{A8+-}JaK?_(S?ZUw)
z2-D-mj_z7|?04GC&s>mOk|Wzfi6&hl3<)9Kp_LY95RY>-K{JJ(vI2be0^~42Yd{*G
zKpLT-&3D<j-Lo7;qM2U)-RVy8fHmgpZcQRB1d?eXI6^#a@aTb&nU1$U;n^y{%Caq-
zkpn~y2jl_s&=dq))heBoFQ!5n2}gEw<rUBK#CP!+Pfb?A8=O=u1*%zFan=se)(2r(
zN#FBN4`e?N|Ma{B^;K{6R3Y_KPl8v^^<94uS+Diw<n?23^<W?Nq(t^<|MX^m_Kc+V
zZ%^@T-}Z_G_jOO~azFQaWcPbd=y;#^^2GOnf8l=r_m2r%*(ppDKTl1no*-hrH^Ll^
zFZh$+PKCdt#tl}KS}oD=SB_?B<=Y^h@2j2k4%0ySz)kp;pG4Jt+{qOU;NUw)Zcp`~
z16mCheU)XjZ~KpQCW?RhhMoGVAE2nde5lC9zTZ0QZ4k5d-t+wrX$=;YOj`$<71Cc>
zPQUz7L9g9P71-+hng08%9sI)IM8v=9vl{Zof;d00GUb90zS(f=`7TY<;0en;{H^$y
z5kJ!?|FI}`KmY*;!oW}e4F0=kW1t6m2M@lQ^6%Y12wM)m(?PLAHisQOzN<lT;3$X4
zM6PLg5M9WDIUsB@sB9n?f43-#GkDJ?MN0?kfwQqO-nDBfJsw4xROwQtO`Sf48dd64
zs#UFC#hO*?R<2#Weg%6Fnn<!`&7MV@R_$80ZQZ_w8&~dJx^?Z|CF}5=5RQ6<^fY)(
zNV%|Fn`sm>u+PPTKcI!=^3NZufhkzN2pI~Y!Vc4p4UBj&A?T<O|2^ZGGvo_s89e~X
zKsCSYGZ>5Fiy#AW=9I;wMhBx0BcdJ%*xkSv(`F6C)bw6ROV^G=NN(`ez)IE>GK@K}
zLt^9xoBz4g*nM>8&k#bBGMlIHdiL$zzlR@R{(SoN>5s*mU;lpo{r&$3FhGj@>Ps|Q
zgy_Z}bc7J%Hv619Yzx@nsX+>d>d7Z38<2qQpI2U6?zQ2Plg$y)6moDh2rPsOqIL!<
zFejs8;q4&^Kru)i=saSk#*SQs@x&V$gWw#dMm$JI%}!g<D4Q08CrHUCi%vQz<B1Id
z6E%bYr+eZtrUP=~Av41V&qOm#HP>XbO*h{(2tNVmq_a*t@5IwT0zYD~&%xe92O2>K
zg(eyZyF7@M&<t8hBp*#nD6%M%qpS;}h*GG^e~cMOo6>IbsGW>Na_|)&m($ds9(%LW
zHvhfM>qsV;0wq*XL;r~q0>_Bz<{+6oxb&J<R%CLq6LGYWu#PGXHq(Pvg)>@dr=_-9
zYp-=r&OEo}wp(w%<!?`q>bWMGYl`{PJ@m|C6{*8YT~sy*+JL6EM<ZGeri3tA?yOX)
znyx#C4$~DHT0$!I)EfSU_D6~|od~8^aa^~oln53HS<1|ch#5qcGOeS2&8o6tY)?ix
zWtCTE`95%8hB;=LUltdsduVB+!}e&c^;V|d^-VSGq`McPg^k9<AM^<8r|F~WDYV_C
zUO{3W^faAL*?(k8I3-kh^wA-zt=`d~i5AUn)>>`Nsi=C${Oq-@hitl^fgvz9ssE52
zQW^rLo$knEBU>iCaKjHryl`!2X1sC7AD^pck8bA6+QYOCIUyGRIjrdAG%*@<*&wDx
zYZW7F5nqLn_0UI<{C-Gb&;t)U=+Th9ok*>d8qN;Uc54VVDRjQ)7#wqT5FH2r5gYA;
zM%Sx!Um;kMA8TSvJbUf8=e~Qd7Kc21@yB;uGHL{6P*9`dX~!A{0i%}S4#e^2IVtEF
zPY9ME;31pm))>tvMiYu$bs!qWV2Q*wGY}*^1s*_v)jyIkkQH!5UP2fZ1XfUxoiOAc
zqmqPVa^r)LumA`=D98gNI6)0^1URgz4Fr70l!-vV1Jk%hMo`x`2vnjqr2m<luJkt$
z&D<k51L*+|c;G366!3rvJjie$0EZYh(0f<JVivWCMevc&i(dqzoe**$2BE7BUh7jE
zdSxw{5K%?gdEG!RQ65kz#D?=w2u)Upkc}ac939!olA2OOi*Sx2IQk$(*q}TJh+#4m
zIY$j)r6RIKhLGMlq}l8!B^s6mB?s|Gd59AuMiNI^l+2`P`Urs@{LvxH(1<0ZwnbXj
z(w4V$Qy0UyOJ4S}E=|ElJ!aW5z)>Y1c7qQx=fjVGDAOs*bY@46nG}BDqbk$HWj3|B
zO>U}5m%apNIK`QlZkE%W=R{{Z)v3*Ij?<m*1mim8IZt}l)1LP{Q~x{RxlevJ4xj%7
zXg~!z(1Gf+p9e)~w+OmWhBnlp59OXg6FO0f3J9VX#b`z~x>5T`w4xscDPA}_Qj(U`
zq$gF1M?<<&mbwL{FNJALWg1YGw$!FKCFe|ax>KI^bc;2`X;51V%D0(ma`BLdPnEh<
zrZzR7LWOEn$+@6DO~WHp{fo{7`VOl))vI3xYny;7Rk9xRAL?MxHPUgQ811DE=c*h*
zl~KE}*43_eEzDTUy4QD}HC^!di$erMn46suThZ)DH4%G|#d>71_%Q0g=!#d$R@Smn
z(JNmy3(m>W0)97x--31*twf4MJqJn0{$8*<j8McSp#cs<VE-vFornZ}KM6`UhEkM{
z_=6e<x@>TTi`UF<*0^E3YGBP4SBWrJTIgBBHOjL&f<<>!%97%CSP~j{@PI5KY2bJ~
z1H_7%wj&rD?Qqq*UY-{BxbGcbNA{Ag<`!r#*n87*Hb)^ZG!X(F7@Q$F<PU{}&>*lx
z8^HjBp?{P}NL~Vyn8*~5$QsgB?8R_~W9nY`cDQ^7a_)UE;#@cpn3d4DREMM(tk3W!
zN*r>?ExvF!)+Gu8mb#R)R5jUyP-sP3)o_r7oKX&Y*vK)v2wUaL+`TYyT5+TZ>e^Tq
z-c00Qv}4uC%2F~O582CK-e{4JJZ5j1P01qjY==Z!t^ah$<4f_dMo5e_oXFJeRaQ)j
z$qdrBzads|N(q!J!8~X}<5SFJMl_yq#h|{tBN{pz>=+F@t>wVjN;rwq&?I9GOYFnM
ztOE(2|DoqBkxpwesowSOHjwld+SRY_=Ajck>pA^HFhXcU8ja#sxZ*dzoN3N+hBl0W
ztic*F#EukS0Ebca*Vej$fC+g3KPMt^APSTs6&bkdkHOm8-^Qh^X+3T|{nk&)RY{+G
zM(O>T(jle%uPiUJ$&Ea(ENHvODqGo+*~Ys!HPke?1wL@^iJRO9&(Bk;Y0Z>1wwX$)
z<~1EoaEe#_mIg<7#_3{lj(6PSUBS4<MgEqLm;c=4CvQr~N4|2kpxoszN4d&bKJ&7`
z+~zm0xXfw3a|qzv=Rbe7&Urp_pcmcfLKgbaSAKM+H(j_%SGvfZK6R?s73xvXI8iA~
z%?dZ2T-Qh{SP~NOuZO+rXV>1<v3_ty`Kha-u?D)}H&bh**B@jG``z&lr-1z-EX%1~
z-?f;IHKN_;YG3=f{VD{tp1JMs+v#%r-VqkUuJRBV=7apvj-!F4erwR`<~xr?Qi$5{
zHb;EoXYE&I0e0>=@hmNic@)SdW#WuQtYRl;0|ko4B*eOhb0C1d*-O(P{OI~WYQL4Q
zE#>yNpWNt?Qv9b--yzFC3iJ)~*yQi+^#7<=efUX^=GTw0{M^GBMT}D0)QILe5I}(q
z8<H!(#c^|~osF{mu?~~0As*eh20>GiC259Jc|Qm+Fi9egQK^#F(hmH32hYm9=t~Za
zVI5Iwk|qj?4v3*{lL(3^B!~DK3sec!YBhJU7}3~?;OGcZ>VS|S3=_MN(sG>)syBmR
zpBnH0a#)9J=msGBzK=^i@f)+`DnHQ5qT%R_9J(;^Dv!_@nI9OH8o37u5($^6k?LYX
z*pZ?XG@3=Q0qkfPkLjUeAR=60i5{Sc9~cNDsiEQ^hHDc+J93_-_!@cX04Ay-$AAnj
zX^e~r8+f<@@2bN))D9+UBV!vC2metDCB&gc<P!1#qJP*J+5naMX}1+{l{cJ*ID83&
zI15G$LLnr=QcQ~_qb~zFKkea~gW#0GaWF2y3E8+GgHXa<8;B}sh<lj7{|d0ffUz8O
zgb6ddd_j%mFc~Z{8@y2s-|3yXp`Sf6n~+#PJK7xOSeV1`fYD;G&9Jn7QI=NxkwVNy
z8`7E@(i&}?KxlNuBFU01Ss<K1jSe^^6cLhbl#HbMw2Pp|e|Q@m@PG+Z#!)o6AvDDf
z6G6vI$W_dqd29o7xdyFamK=kQ(ddn4(6osF1CLm-OKCB$se#`6o#a3ddU%FY!9Zd$
z8km>}%|H!t=$A{l6l=IJga6<Z2yimx*rax86paAM%^40+^pHZ_$-7Av%D@SpA(UHj
zNQjik8*7#wkqtrmK-1B|EDH&lBnq1BHt!?IlQYPJe6J)UF;&!}n-mGcYB!PKml`m=
zkAR(6ISYjmN!3V>iLiqL+(pjtAqaxPqnQZ8m<Vy`!m<!bsi35sY_Nf#7klv<8(5UV
z^a!t9pia4)(Yl;}C@+yn3ACgLwe*+P$-I2wNVI^LuY9?%6ieeWv$8ZxEUJfYzy~sE
zhvVokK5M38N{B97Mxms$+(fM9$Qu#tJUncO;Shu0`OCXRl)(%Uda$#ni5jR_4m<F%
z6uHXSdCbW4K<OYy>;FWUXZb{jpbWxL%0ao6*qlxFu}#TX8sKyY**MIRj6Q~l&L6Qf
z)GWx=<j+NmD@Ow|B*Y?AV~o&%o+Kj-*^rQ&V1=*=OpnMkqwoh#>yS$8kavKFUF<v`
zgQK$X2Tu7*mV}+aG%-d@he@kU)Nu;ZL`MywuK(Ij#z-&9WKmXI#<(=3fI|ubT}A^f
z8#5ye)EJr%?Y7VHh!S;(6E%wI7@T{ch7;6Ja8phG<SScakX*Y`qo5TA@gXQR9D<pF
zYlt)I@vr}SB021r4$w9mf(>=x0W1sx9#8|LAT|gvHe@pj%6I{5>yk&}A5W2q8p)Lx
z;0`1b6@sWCasQ~HbI=h8cmZjkh0hcc2zbk+aMQ9`mmVmG{MjEKfXPv*f_-oYmhhAZ
zQX(W$BAmF?=*U#UsM9t0Au|1$fe6zvU6N{pB1#+x27x48IaOWZfgT93Mt#&swbATQ
z(^1)jDCM{*rP8wc2Xph2xw|zXs00S_(!wD_+Y&*26Tk!PG)y9kfP=RVkhe)?r9Yx1
zL<)+F(THvs76`b8D9aTBve9?gq<Jwrg9xOjAQ)tkml55cIdUVGcnuO%z>KjlfR)sL
zfH!<>ifwH_1{H~YI|vN?qz^0$*2>p5*w^}*jcfoyW|h)sJ;-%JChIc@Y@)s7YYOd~
z3YBdNX8(fOt&rLEu$!9QzU^~3mh}kiiwc@0S)6lLlZ~pOMcSlAr=m4lp;FqXh1zgy
zS|W_vs<qlHV%n*_sjKDMu05Qr)!L!*+OZ|ulL6bXU8%BF+qI3Bvqf8wV%xZt+cUw3
zLVa7Mo7=qA+xLhEyS-bU+uOhu-0%5YtQ*|JMO>=52DdHTiAvnZg<Pdr+{TT%$hF+a
zolQZZ+^Acd&h^~S1>MjU-O(l8(ly=FMcvd@-PL8?)^*+2h27Yd-Pxtx+O^%=#ogT1
z-QDHg-t}E*5CZSo+~FnO;x*pmMc(99-sNT9=5^lZh2H3u-sz>@>b2hM#op}I-tFby
z?*H}P?*-rR72okC-|{uz^F`nERp0ex-}ZIi_l4j1mEZZL-}<%R`^De<)!+T)-~RRA
z{{`Rx7T^IU-~u+_14iHkR^SC@;0AW!2ZrDXmf#7d;0m_j3&!9K*5D21;12fS4+h~7
z7U2;l;Sx6C6Gq__R^b(9;TCq`7lvV4>wpw^0V=oxEWqI_pn?}jfe!eV7r+8L00d6x
zgd*kyK(GTWc!3yZ;wCO%8ph!$mf|T^;uOG>E9iqF*5WPZ;!fy;D{$g47USy$Vk$Oc
zGhSi=>3}fk;x=~UF!13qmg6}_-ZDPpJEr0^_7668<34WVFrec=7Ua84fg8r-L;s%Q
zE3o4IcmY3lWH;91L6+o6Hbpx|<V%j?NVW?;e&kNxVnC+kP!{E=vt&#*Wlf%oKk(#L
z-r_$P<yVGfkuzjdrsW*2iw*z;R@UVr281|{<zEJ7Bb((~u4OQui(KC2T?T|;X69zr
ztWqXsT1I8IP~~J!W><FRY}RI*g63$JX1L&FYu;s0-sW;P=YvWCZ&qg<USzgtWN{Yf
zX+Gz9rspsk=5;P+w}9t;uIGOCXD{kzd_HBi2<Lqs=YK}%gq|6J#^<%@0E6CVUsmXe
zrf53}XokjQd8UYhhG<<T=ZXgDknRtRZs@e=Xnq#ylve4wNN18(=XNfOEB`oYcsAyh
zw&|Nzi;H$?MAqmmo@s0D1DqD>p%#gqUT3uUX?P~;rM~G7aOp3Y26dL`*|26$5Qm@E
zXr|Wce{N}k{(~5718;_DiogPEz72T@g^tF8t!8VA)@e-61_=%8Xr5*}Fl&d%hpXOa
zJ80{^MrbNf=PxJ+t-6P3P-iMI3uI1aaR9P%fahiQ>&T|(d&XqJ?ud9;1AMM&ksxAt
z9tBo$>}2Ky$tG=c_GU0h34eeFk~WKzc947!=hBw#Y(DMYz-)$YZG#qt-mr(*p6%ZT
z=D;3ohlq#OKI*dAXK?^+r3UWier3w8Wl-pidzfot-fW8K>|G`ay#LmQeI9M+25(9R
zY_Hb8UhrnbE(^uh<#9L&w1#NN4)6F5<hQ0}!PbZBuI0ME>(K6KzLxL*mgBBAYGNMi
zfhg;ww&t}4@CA2brylTVo@(Og<P-paDnRfp&T0nNa1?&<Xhv#B?gIe$2LkZv3*Yb)
ze_{IWa4GI-5a)q^xCSY>a4$yj8ed@nU-3gOaEg#=KVIg4h=&xggDgITLzwC7w(%q%
z;T*?gwQ%G^=m0DMfB_hQ6Mz5!=mR5%XeH<J5?1jQ&v1^`;v&ZYX!r*JxCVRx05X|!
z1u*E3?(#VIU?x9ghjwEt0000ufgkt>c|CK3SaZCIXgMcz5C8u10nhM(5c2>4@+m(G
zELnjrfM+-_^h&>A=w@;x|L`q71PH*AcmM!~I|zp30Wn~1OGot!#&J5wf*n7Lch+J=
zkb(}dCWbR}A?S01Sb-AX<wQ^QUsvEm$7o*{iGl`%J$Hx~fAOCC2L&huYo>Hymv#ph
zc6=swvZ!V)?t>1vhJ#S{T!)4W&~jbI=4m%~2*&iC*7UYe??XUrWyEz{_w*Y}X81n$
zdvD-$$LMu$3tZk}KzM;Q?+AS00Vx>wRqkbcSNI05_HVw6Z103)7jZxraR5+nPcHX`
z*Z2f(_)EU_wFu`w0Dxd!feW~RJiquyj`odb`2j9ul3`Y4{(yCNe}S6!0x>uNgJ<QB
zZ~30j-;U2?0O8|90ED7Pgor<QM_zfKXZipJdL^EdH5O+$Zu+W6U?|RLR|gO*Uga;g
z`ma~u8Lr`3)?prwa6AEGA<ph2PGX*?h=2e9A^8LV9smFUEG7Ve0B;490*3$q01p!t
z9UUD204x_DAq^%i3MeuaBPkdwI4l4FARr(lEHNc8I5adgG&nmwJv{&bMgRa<003wJ
z0DBlUNE|#;04r?(D|jY4M?61406|FrL}>s-dH`B{C`48$PG>AoXe?QFMgRa=002WP
z0A>IHdH?`sD*$~f09jisZ9xEbOaN+3EJ;a8OHNQuQdL)1S6p6TXG}tFWl3mgXk~A7
zXmWOSb#;4tdjJ510V{+6E0X|6hyX#909uOxTABe{qX1;6EM9;vVS_Aen=EvbFlLD{
zYmqE;qAYv3GHk0dY`Q{ai&<=vLU^fXY?69xk`%QlBeymr#W`EWX#j+~EQ7c*h`2JB
z!dQZrLWsRakiS`jvsjb9XNsw3k-2t?qC<<qMv=f-pT}9U+-jfCZllkBsmph$(|oqr
zdc^CE0050E0fa#Sh*|)XM*xdjERAIVlw~cVWdOKz0HSLwifcoZXhQ2bGW142>_|cW
zR!-}7a)NA<w}LE-kam-aW~qu<vWi*1kVU_eS)qw%ppbU3iDtr!E$gHg^sOK4swe)o
zD#MaV#FbghooT_GaLAx{*Q##oyI$<PV1t8$iHV7Vh?0wymXni{oRpH8nVE!}sEeMk
zl%1%Qs<@T1xT%zjyqAQtshY8}l%u1gsHvf=tE-`@u&T1Px2vbOwWzbRv$3+cw79*y
zv#_|dxV*f)im1(uv&V_M+mo}(l)c%xyTOCbjFQ6Jh{fZU#^k8U+qlZvqs`^1(&Vn+
z@x0sQ$EJkOvy9KSo7}pH+`f~*ySeC=lH<RV#=XSdz?9FxquR>0=*ETQ#g^mCqvXuI
z<I}0*+PUQ5zr@7E#Kp?X%ge>g*UH_^#nax}$HUmq*xuI2($dn<*WcXH)!y3I-QL~A
z-Q?HZ<j>&I-r(NE;pW=o<k;=`-1h$C&duc8%jDVA;@;xq;l||S+w$n&<KyG!<>=_<
z;ppb*>*(w3@#gIL|MKeT|NHFo^Yilh|M~Ut|N8O%{{9I602K%vNU)&6g9sBUT*$DY
z!-o(fN}NcsqQ#3CGiuz(u_MG&;!b%SNs?rXQ=1-?T*<PfOM;cWU8C``rp=p{SkXLK
zD&$BQ)x>4GNwlcZqezn~UCOkn)2C3QO1+4~-al4T5oY?w^+v-=R!cFp<V~L0vuM+*
zU3>PL*NRsERm(~jBU!e1^P+V-a39yXbuGr!dsf`FSf?yK-Nf}@3xhBk5ADdRu}Xra
z_Su^pxU=WaphJruO}ez{z}Ff#_<X9dSccxX?qeFavF+QqbK~|_F)~+qr%Bh=O}uzx
z-U=Qx1|B@2JmbXoReP&6HP=lB8FP*0F?QF2am6+NA5Xr#`Sa-0t6xu0T;s={TXTKA
z&^=e$(DUnNK9R<9_EQa~-+;_1_uF~{5+@H1)is7)LE8PpT}R&iL!Cg4*#qE)9Cqm8
zhaiTSo_&t7=2}A}j#U<6w-IL6g%SC8pomG`#iDI4%JY_i|L}(%j(Yi}8(>FS_s@d_
zMK~cx6~dSyjZj7@<&;!bX=Oqr!q=I6|InvUil4<ISxdh4cqLR~a>bcLJo<Rve+;#N
z14y`CgOrhL3Z!IrjXBAchGzyU=%9oaYA8}!nm8Ydje(ZtKY5bm-I9kE^=PCEwTa-2
z54Dh)Z6X<ENn<c%*BGT5HCfP;mA2~YtFXrZN@$|-oyZWFo?ZIV4T{NHldceHnh*_{
zRH9{Qa7NSui6t7<LMA&wcq*UY5yYym*k-Hkw%mS3Ye_UzQ&wE|$m2~cr7o07HSAU+
z<UjVb+ion;3WV!IEwJK^IPdOb*eUg{1S~``Rdd-unXqz=INnr35Lwlv`&BIB*yGne
z=CUHOK&*&^l|#=~BM-UqTvN(w1GPXgk_^ER%eb<cI~_zFhdK}qr@ZX(!5R(BX0if3
zu!%PUVr(--;ld2Bx#*4rbg<8DhY$`j!3Ysh;;@`D#hC8dPy<6-9J4p99IL9ee|D?(
z+HAM&wnyK3R0*@XdBY$=)g;JOz1GeDwothF?Q_k>Bl+x5)OHGFNz_2cg`Bzq*6FYU
zqb|Bo1FXC|<W5`$d=TKqW!=zLT&1frZkSqRI77lJ0K+w!=eF5Ib3<o$M^6)+yS-eA
zM^R;59V<{Njd||1LJt66Ts1qLJ<zppM=$;K)UO@)Ml{fEoIEERq&;+#3si~J2|Zxs
zfW4BmIz#`#@V(#3?M@I5-w&w(@#H6zN#w+dWn}mVX~FrRV~?gK<Wbo96mCAYk@X=D
zPL+sVal9csg=8;5+(Q{g<mV9R5kyGvlSqZ`Mv%Oz$yE76hywF76z5?mZPkmR3};Bg
zGhHtuH_(k{#FiW1Jxp(pOPSUG2ttF%nd=(Y*canKRT2j(WH~V4pIipgx`R{>H=2>)
zKg5AQ2`NN*x3LEgZ*vMGrOzNOSYl%|Gcw)SgKz{vAeU~l56@l1i3rgY7}r=bqT$9K
zb~H#1bF)J&Zc!r~Y)EYo0>X-n&>$v+6bikVkP3xSil=a)0z6p5PI~f_plr?!FET#c
z?8AUWbk}W&gb*%ysW-#1$0;h9oJ<TbkQl)uLNYWQZzLvQRV>IA8)LG1SwfW=nifL#
zD4k76tOc7GU~SGw5E#UcF9m@CD+DADp2hJvrmRLLZs5(HjVV~m+2cPNR*=)##vZhU
z2^~>+Gh{Y~l@&>3rZ_48kVaDEkp+olq>g70OZKP~H_)I0Y#GKrtqO*rjHpB>N>Qhb
zvLeI$$0-zQkO$0BqY80lMwrDwg;b?6KJ17t50V>s;4+v4$>>ZHBEa0BY9M=zMLZQi
z12uAmngXGL<{}0;+XV5O3v9_s3&JA-(X${luw>#8lF^MK@1sYfh&~lUx<ekspA!LS
z3D21%Wfr6X%n}C)4{`&aTIiwhs;FG&O4qt}<f0VOT<Q!GLEFG_AR?uTZGbu~+pM*L
zWPJ#3QhE@WDxj2&A?zg0N{~4MvLTU->_N_VQ-r`^iI{qnW|f-QhVbY%dmXE-zG|D)
z!bEd_g~(PtTbq*qeo!`!Y|LR5Akay67L52z$N=Apwz%5$xX4YeatDG}iOlhp3&DYH
zIxCRCs_vc<>0IGT+YsEaZg<0x>_H-wLV=VCUbr;K0D(G4t{fF#jAN`oMBAm8ER`Uq
z9c@F56vE2d2D&Dl?nP#c#wErRtRmDcB)LmafwbUVQ*DSr{bbzbTKK{k?qqWz(gNEA
zmmv|_M>(sz+T3ylfDZA-KD36|6GjBJ-{sUmAPZ86Sn{T#-R(j&2UHTtgQG384T=>Y
zT0ptvzEngVhu;O%4r4bWAs(?}Wz4#vtui49j)+(X(pzbjR{_e~M{E(&fZI^m$Qe$v
zn%CT|4L>CRlKa@HLTZy$z?S%*`eh1|pSMQS=FUiN`ig)H@-FHsM6}c#rg#-%r1y#z
z!0O}fK5ZjkhCC{`aF%mI=xh-W%j?tZN}@cpD2|<G*~SVED1#}h04HBZBAGoin`cey
zT35==4ylcy7t+N_E5N!HiR6covga3mxv@`k^*?mXkU|S{jZ#)fd;dXAKqIZs1re>L
zIa2KWGF#fY(=|nU-D$nqPa&s%$d(1t<+7GHLV*^vLyL=MTig5I_y!TK<7As{CxoBB
zzBBEZ*py;#GSB6E+7*3$D^@>h*H1(^;}*RT#tH9H4BxJcA9C9Fb`YWt?sq;xE)jDp
zXo&s)#4Vn=vfFkKq`{A>^Ve)6>wMe%<~TRcz8A7^i!AaWz^=#=v*vHoZhXqY^D~vZ
z2=RnO5>@}B$i(6L4~v*F+r+d<w{64XTsP{6z4Q6kwQBPIF;eAWO|@zz>19d|q(Wm}
zNNsAK^Sayp?t$6)7oSWK64^266p=0#8Fr0oAZ8Qk^@zc3^D`<duj>s_9;)=-o;(ZQ
zOchaHRv)f)Nk4Gj5@B3Hls9aL_<iJ<Z-|^Wp|IFtD%~koJC|2o-l+8#B8;Ou-gnRY
z-W!GT2x;^thEM$B8~^y5U>v3ZPZ3KPa`3D`Ik!C@@qgStk57vv#S_Bxf{30XS070K
z7gvn@@*n@{Sm%n&n@D}^k3ID7SAg)%PygX7ANBDz?J0%>N7zeP_UuM`Zf9)y_kY#G
zXBFmq3b=p_$PvJ|S!GuoGRJ%rQBxSSeb@DBFGg|+M`fDy5Z!lM)>jeXH#`wY97pvi
zkQQkg$Z-JI5Z^Zt!*zn{hkq8)0=4m8{s$WX$Xf!4Dg<^An)HGVScFD+gx>QW8If5u
zC}|W}5uS1lqoyAbrcw@4a#YrVsmD8|Gj6O#gbPuE3P4^>_!sGSB%RlSjkkpn5rY9(
zhOK3T79mumLTG3Qe=N6PN2e!W$bsqxdd607NH~auScDI#hj6$~tt4<AK?9ZlkO?^>
zg%VVSEry00$c9?zCPwmYyvAyAaeWRUhFt}RmxWZ8XkS-|PFeU6Zs>!FsEBfyfo#_o
zcX)}*hKK{@iM5Do2N;Nj_=~`(fQMKRTta^JM}N?g5Kp)gl|WyRcSorxTdRm{RE9tl
z!6lPt87oI^M8tK+SbsWZjlU9&Ygm8`(Tc_RjmVgI>@$rJ(O{n#c!q_GzEuz;5_ew$
zhzFN|!Pt-fm~X?_jl0MZ%g7QpP#fl05#lI~nCO0N*kFHHUU-sM2v-~II1vkZWaOxH
z4S6{6CnF=66hW8}?R8YG_z-i{az9uQ6|#N|F?Vn!i2pc~G?``rNf0pqNfHIg5+GT1
zino#7<&I4CG?$l<o5pIS*B^tWYBl(iYG`z)SdKy$e+rP3M=_F9a~$?qJQJ}*D!GSa
z$ZA~TaSTyr`Ur+KnU-oPS2u}MT1gTSVp|jO0Hwf*3c)xR84(%zaUI!F;nsr;(UYhG
zl5yr-OF2Io5^V|zlmf$;pVyb?NR`S%mNkKu<HdIZVI(feeYf$Iv-onXrfhlXZoOEQ
z?zNVvnVNLfmLcbu7y((O$BJOdD0}0SQOTD^88o@0JQ){!gI0ORrVtGfUIxK9u}Kko
z$r8yqX^>fQRH<yw=n|G$P>qpQ5h9Zc@nD@vk8O8T71Emru|zQcasySPn&x?)pv0PQ
zXnmsz5g<vKNC%#1^e!5An?c!}NtT7@<yr+XiUTMRqu8GG1yrLLofzqw^=Y7fDU{B6
zABb2-SIM9Zae4pXIq$NW?c`IQnTuaGOihOwW`>?3I-=>Rgc_l2`yhP=fde{mpZfr0
zZP*w?wh)mdpAxa03qfFxbv_vAI<eDPwIOB>L1RC45X_>W1EEcehNCQKpUjz?2yv3F
zW=bkr5G>lB)d!`t^_EO|Vh!<Gxv`=3Xb{68mk2?m#5EA)Ia4Isrf#Y>>S=;&q@eV}
zmGx1b7cqV_8bIfRq&JG7yCk8yxr$K~hddWKoke31x)2}#Rip;dlM<qst`kWs$fOAx
z5su}N4r&lxWPNmcdK)CD2yp|NV@K9xs0mT1$&`m(%Ax<MIJePs{#lyg@us$VtFjWO
z>)AV{Kua_*Kzm9MU9}G=1_M2+0A@){i>6JQW21lil=lgxnM#K!wWk({8`R~W%!3d;
zr5ln(hW4N_0YqPhW~sL6r}>GW&Ow#4M`^wKIl!6`mPwa%vsXmw4R!=Nr?PIY_?dhd
zoZy-|zp5L$hpPsAuz^A%<&q<7(OENiL<{3qP&yolQ3|mTHSqatbaWW3fD)y^3PFJz
z-PEM$ih$C}K@{3MvA_zYz<Om-C#(jdw{b2kYq5U+WJ)9=US#+ih9NFfNJqG2u2u-G
zPdb&G3V|Xk6A{}|h;&b&_OwYP4sK<j8TAj>a0<p^37NE53c#-}_ph%Cnk`Zd&O`&H
zPz?fN4<u5s2-~)9OC$ATa-G$v&~XitIuI$F8%3u8q-t{4u(!|Zq&X_8nHp3E1s#?U
zf>b3%ZZxotdZy2}AL%8u(?_(AsinoquKuMrcH6XNXb*N7RE(P&2Gg}Y__bjfoZ>UO
zBHIE(=!b6`yRy3;On8En7*uf^M*OL<Zlo;xHy}d663TO|1K~Ihk*wfZ32uc&4#Op8
zS`aH#9B*X0tXe*`t3w!iKX&>O!;6KmI1%^%!mYXcPP_XMteYR+K)fDxzV;A4Mgm9L
zXAoW0baYF)D)GMHA*!>xzx*p2IIz5WvmhpQvBbee6p=jKbPD)5ECeh&A+f+2QK*<J
zewuNtQS-dnaSc)=58_H>jM!0ITQ{X}86<MIJVht_Q8uc_FSolA5<C&sv4RYNKP|kX
z4ctRAJZ_PTMde}`9Xt`6P(KEYnBNO_*T*BlN)RnzPhq6O;uChnIGg=D#Z*iv4?qJr
zkO{<R2{0-VFz|>t0Jtra#gzcTrlC!n(8Z~mFx9{cn-IoZ`M3^21Dg;FZ9GoiM4u4>
z12|v_TD%FFAjYF{17@5MmQbaQg~fmWya`;K9&~KS)o==kd=Qn;qMs8B#7jBiA`aqE
z4W(eJf&4jwT*ahZ%BEZrr!~q7aYYk+%C7v%upG-&!kcgtv$A~4xSY$n%pN_7!4xry
zlf28qJj}#g%sS~W$EvE<w^OjgrVT-%&T7okJk8Wx%}_;Yh`c|j%BdcPkI8czSZdAU
zJkI3&%IC!u&fK4B6q{stO0?7frw}_OTh8=c&-N_4I}0zJ{IOD)8yV}te{?Q3>sC2@
z&jx+a2z{$XWNsh2Q0BG|<(tqFJ<$|hlkmL5C>6TZL|+qB$QAw3ARW?2xCv-WNSz$a
zXp~7>q_#gS(k}hdFpY!_;E0+3aLB5R5G_E{l|Tb(9MeAi(?A{6LOs+(UDQT>)JUDw
zO1;!f-PBI~)KDGOQa#mFUDZ~7)mWX?TD{d=-PK<G)nFagVm;PmUDjrO)@Ys9YQ5HM
z-PUgX)^Huyay{2{UDtMf*La=RdcD_t-PeBo*MJ?^f<4%TUD$?w*od9jioMv3-Pn$;
zTnkVGt}qW`RN0n&*_fT#n!VYa-PxY~*`OWTqCMKAUD~F7+Nhn{s=eB*-P*4G+OQql
zvOU|hUE8*O+qj+Ey1m=H-P^wX+rS;%!adx?UEHEQ53W!H3vd%QVBF6A+|V7}(mmbO
zUES7w-PoPo+P&S}-QC{*{oUXl-ob4HHGv7@ectGu-s-*H?A_k({oe2$-|{`*^j+WB
zjR`K%-1fcS{N3OF{oeo{-~vA21YY0<e&C@^-Yc;H2;Sfh{@@TE;SxUK6kg#Le&No&
z+$B*17~bI?{^1}V;vzocBwpesUfVUW60UIKEZ*WS{^Bqm<1#+uG)~;EuoCi650$Os
zV#MS2;Nw8P<3ir!L;mAM9^^!x<VLRKNWSDw-sDhz<WkP$Q~u;t9_3V?<yNlcSia?6
z-sNC^<zmj|WB%o39_D18=4P(uXujrd-sW(A=5o&FbN=Ra9_MtP=XS2=c)sU;-sgaR
z=Yr1XgZ}4*9_WPsp6G_I=!m}Pj^5~ye&~|U=#&2Fl^*Gop6QmZ={(-b4<P`X9_pAb
z>X%;XoNnr*e(I{8>a0HMu8!)jzUr~w>abqxvTp0Ne(SoP>%2bezK-j^zU#r>>%d;@
z!fx!ue(cKb<pMAg0w4hO5be@F?bKfF)_(2Sp6%Mc?cCn&-u~_29`52k?&MzX=6>$z
zp6=?t?(E*~?*8uZ9`Eu#@AO{p_I~g9p6~j;@BH5H{{HU(AMgV2?$7QK&mQeRj_}f+
z@H)Qm4zKVK-|!L7@D%^>5`Xa(Kk*iy@fg4H9<T8r-|->O@g)E8B7gEFKk_D@@+iOZ
zF0b-1-|{j4&+;_?@-lz(H9zw<pYu4s^FFWhK;QF0&+|n8^Fn|0ML+aLpY%w-^iHqz
zP~Y@X&-7IP^iqHIRX_DspY>S3^<J;_VBhs&&-G;g^<sbaDPQm%aqt7*_HO_7a3A+_
zKlgNB_jZ5xc%S!rzxRCK_kREPfbaHdzY)(4?SX&zh@be1zxa&b_>TYhkRSPyKlzkj
z`Fvma98vgYQ4eRq`J3PQp#S-zpW~rV`lIjprl0z#zxt)m`lsLeu>bn9ulli1`?K%*
zwx9dBzx%b%`?ufw!2kQgulvDI{KN12#-IGizx>6|{Kwz?(Et3>ul&(Z{nPLK)}Q^@
zzx~z!&;8fm{ow!o;;;STPyXZY{pO$k=)eBu&;IA%{_y|)@~{5!Pyh4p{`Q~$_`m<L
zkNJcT5CR0qlUI*m!Gi_~8f?c$4<3km__RZ~Fd;#9lolo8xQG%vg%w4Xqar2BNhwsy
zU9{M;;<j-tMTVqFu$?lQHC^fyNlzI$k?d~m%vqG^(V0e*BIVgssZ*v;rADQ?)GE}g
zQ?pjZ+EuGpu3yE5CA-xu*t28PmPOlEty{Kl<;JDE)-K$;bMw~4+gGn&zJCP=CcM`$
z;KPFx7e)+Mpa2DtB~PYY+4AFqnKd6oh9}P+(4h0+LAE)wvqXv*tzNAtku%c=ah;t1
zQoHs^T(NbpsiNEW!D0Y{{U&bu8Gv1y5e*n#-1&3p(WOtPUfue2?Af(%=ic4>cktoG
zk0)Q={CV{0)vssY-u-*{@#SxRY}x*O$&UvX?;P4cXwqUsjWq&Sdo8xvY*X;I+@5<Q
z4C|JGAg1mbnE)Nl8kulD4m<SlLl8q0aYPbJH1R|fQ&e$97F$G7Km1~(OuypV!Q($1
z@t{aEb`mM@$3)oKESo46G%|{8oP*~LG2l_=7N8Dl=a^f*$&4K;qm=NRZDPSjJ9yZz
zf*^RPM8}a0<(U%7gSb)im@nn&Qk%@yq|-$_^VD-sKKu0ZPe20|bWlPItqw;2855<E
zI6gkZ(Z4+S*o+d@ek4#4N;adSNFx=Df(j+y*gymTO0|WcNJ=gB3xXg~6@WA3Sq6X<
zRCOY|X#k)_9%x7fU;q*}3{KTpr}4GaEaFfV4T6Swl?y|om3CTctF`u8Y_rvN+iDR_
zG{!}L)8kPb_1J6?OMhHsGbuVXQi@Oka6%hqM2KLVcSPVpn{MQoFkd3b=>~-y(3$mu
zUb?vhIqW2f;2d~N7@(GL1OZ^eX%gTdVK)Hy<(&}#n5AC;IMAk<5qLl+V+#^qm|1RP
zmU(8HYqt4joO9NhLvO#mFI?YlB-cMYHuEuE0u$McQ+I8PB2*nPlqb0VT{9~NV-b*$
znxI*eljpdq4{C;m0ldIalv9110|;3GFoVoDCM0BlUkH*005PZ$Aqj%OCTNfy&IG_0
zg5EKqhpl&3d~wDbcl>e4BbVI0o_)RyGvb6E8bG6wPI~F4Jq=ZhgY+&#9%5ur6@p;k
zsiRa4z=+8h)(J8;Y<ZT1U<LquASHn<e4}QBw`Wb`AVOFt<keEGFgEzMs|FmML70OZ
z@yWB-etYh__x^kE`>fpZ88QD&^UaIa>}by!QCc&mLw~xsCC9W~gfx!Zz>`!0sa>9C
zgn|VCn7}z`*Brg!?j0yNoiIujf#$@<7{Zaq1j9B6)?x4yuV6+0D`3$JW05X;e+wK2
zo3kYBg-?YmWMK<k_(B-2aD3#;kNJEvuFZkQT$({w`xvn<&9p0YwSgD?-XMYIJOTi=
zm>}Wg@d(zn0~Qpb1M3b*kOb<c9oUGHX2208KSYgJ01zQO+Q2#`dJP`00HFv(I4kJ|
zPKi}B)(>KMM?B_Hk9*`}A6GO(8Y%#2x@lAnBej`HR0?T|n1rU{*Qrm%%L1q{1Od^J
z3;-}86@|E1FrZPgRE**T5*Wu7<#9XdOwf)IE8`mgkOfn841(+^!2mk3iWLAL7a=5w
z1xbhwS`L5{qFkaMjd@IDCR3TqWadEtNy9<LW*z8z6du<9v6&vVFGxdr<dKqO#3I<C
zR2*o|AxZ^-Kh#bXzS;mUD)>KRr42ftyw%-uaS(REp;R3JMD3=bf^*739_%nd7y70v
zf;1v<r_ANWYSB!HMpU8`rD#QC_Du3cGdBGpSAa}2pmZI`GzoH76dDvAcZfqXDK(8a
zy6BxpkWw@4c<DjJp;GC%V@DR{X-|FnQ=kSlJ{Yx}MmOr2|BR+Ix<QR1TO(2g(Z*9I
zb<vW7AXKboRjXU&YFE)iRG%4Dnht>o9wc(j->_p68|la-g!G$il;k8)NXa){L{qQk
zRj+&HYhSkt)^CZ`uY)CQVGVm&#0m<qin3v19s5}S$VOJOlP%9;Wh7Y2W>&MC<!omO
zYguq%#vBJ3EkQ~vkJF}>w5v5OYf<Z3)wWi)ubpjdX?t7S<`%ZQtu1eH>s#ISR=B?%
zZg7cvT;nDexXUdrbCK&@<u+Hk&z){`se4`PW*55KtuA-5>s{@3SG?aHZ+OXjUh}3G
zyz4D5d(rD&^|n{O@11Xa>3d)M<`=&EtuKG^>tFr$SHS-r@M%GdAN`m^!3$<^gB|=}
z2uE1L6Q*#5Eqq}NXIR4<=5U8S{9zD>Si~bHafwZQVic!X#VclUi(UL;7{^$~Gp2Ek
zZG2-K=UB%(KJkHn_81-qS;#{sa*>UEWF#m5S;<Rga+96>WGF{j%2THDkbP{Q1Xo$h
zTjp|?z5Hb`hgr;HCUcq1d}cI5`O23Qh&jZu;5REc&TfWto#kw2I^S8(dFJz+{fy^7
z?>W$Y26UkXZD>LtTG5GS^q?J$=tnO)(v606r6p}?N?%&jndbDQJ&oy4Z#vYS26d@L
zZE8}VTGgp$^{8Eq>Q}Ei)~$whtz~U%THjjNx#sn(eU0m1?>gAM26nN9ZERv6TiMBG
z_OP9e>_M-&GWxlxo2z}(H)Gq{*}itSx&7^Jhg;j@_O`goO>S_b+uZ3sce~mB?sdmo
z-Sc+0yz5PGc;nmN`M!6*`Tg&G2VCF(1NXPU3r=u=Bi!H#KX}6#{_urIT;UUUxWp??
zafoBw;u*hq$2tD-jfY(0Bloz-OHOi-quk^vKY7bp{_>T_T;(%&xy;)w?eYnv<}`;n
z&u!lGod+H0L;rcveSUPI8$IbrCpy!W-t?tM9qLnmdexnNb*WoD>sY5c*R|gDt%n`#
zWB<CjaXuOSTtn?^XM5Y-{&u*>UG8(Id)@7Rcf99a?|bKa-~Ik~zz1INgC~694S#sV
zCtmT3XME!w|9HqpUh<QteB~{FdCX^C^P4~X*=r~e&WB#~qbGgoO@DgSr(X4|XMO8k
z|9aTRUiP!6{pdX(8T}YQ_q*r+eeZq$d*BCO_`@fD@r{3c<R@SG%V&P`o&S93M_>BW
zr+)RVe|_v{U;EqVe)qlqeej20{NpEo`OSZR^rv6_>%ac(1^F2E$6x;Qr+@wJe}DYv
zU;q2(fB*gee*g?X0USUAoIm%=y#h=?1zbP|Y(NKmKnRRL37kL*tUwFAKma^I_`^UB
z>_89vKoAT;5gb7hEI|`IK@?m*4HSqJY(W=%K^Tld8Js~HtU(*RK?AIhK$^A<#6chY
zK_Co5Asj*?EJ7nZ!tGl@0YE|~Y(gh|LMV(vDV#zoWIrXWLM+TeE!;vb>_RX6!V$be
zFdRcNEJHIqLo`f7H9S85F<e78d_y>lLphv7It;-!tV2A^Lp|I>KI}t3w7xt1LqQxw
zLM%i>Jj5;xL_}OfMr=e!d_+j}Kt+s1N~}anyhKdQMDd$MP3%NZ{6tU;MNH&GQ7lDM
zJVjJY#WW;ERcu99d_`D{MI2;BS*%4{yhU8h#RjBBUF=0){6%04#_;1sVJt>tJVs<p
zM&2VvWo$-gd`4(AMP`gfYOF?UyhcKtMr_<hZtO;HBtvcdMsXZRaxBLo3`cWJM|E6B
zcC<qs+(ESK!FHTSdaOr#oIrHEM}6E!e(Xo`%SV3<NP!$kf>b_$EJ%b*NQDf@gIq|5
zd`O5a$A*kZimXWgi*&|`yhx4QNRGV4jO<8|3`vm$#g80GlRQb3T*Q)0NtSF$m!!j$
zd`X#{Nt*n^n5;>h%t@VO!kgSlpZrOnoWY(9N}?=Eqx`_3JW8cpN~T=Eq-;v4j7q7z
zzo(o^tGr6A+{AZ;N8FRgto%x_49gr82(FAr78FagOiQ)YO0q1=t~|@Nj7zzk%jm00
zy1YxgY)ZS#OTO&OpWI8o3{1g%Nx&RT!#vE8EKI~)Ova2z#cWK-jLd<2Ov$WF%dAJr
zyiCp9OmfUj&iqW!v_{ViP0}n)WE@S?Oik6)MbunP*L+P^Y)#mlP1+>Mt>j7stWDkA
z&1aNN-uzAf;5<a%3{K)K&OIDX<4jKFd_&}1PUn2iF>FrgoKEVjLg}nd?95IiyiV=x
zPVe+V?)*;i9M2aFPx3rZ^b|q!Oi%V~&k9^m_l!^ZbjsU=$K0Gx{LIgDtj`_1PyPH)
z0Hs0r3{V0sQ1ly615Ho`^*#h$PzQZb>T6I4olpujNd62Y|Ey3A-O&D%P!9dj5A{$G
z9Z?DuQ4&4T1vOC=T~Pv6Q5JpC{B%(mol*CcQ5wC`^R!VM-BIt<Q6Bx#>hw_{9a85M
zQX)Ol;xtkuT~gjuQYL-U*>qAUol@15QYyXD(6mx4-BQieQZD_{$n;V$9aF><Q!+i%
zz%*0;G+k4?R8uy6)3|g~IGt0mlv6srQ>?U8Jl)f%)KfnFQ>FA%KpoVe6jVYzRGl<b
zL|xRGR8&TNRF-s9NS)M?lvGN+RF1S%Ox@Iq)KpIWREP9bP#x8R6jf3^Rev;9R9)43
zR8>}e)pm4MSe;dKlvP^2)o-*_T-{Y{)Ky;n)oAopU>#Ov6jowA)?zePWL;KYR90qv
zR*$?;X!1&Et=6J+R%^{xRm4_p?bcG{R&NbgPXt$SE!RsVS948QNJLk4ZC90)){LT7
zcb!*_WLJ8<S3k5@eBIYP)K`A}S2^@ofF0O16j*{iSTi(Ogk4yhgx8{ySB8yPc2rpZ
ziLF>Fq*#m1*eAqTjqTVY<XDdlSs?^jkuBL-bl9+hSd(4ZWF%RZecAFv*}zg+n624n
zm08AuOPk$UV02lY{aK{M*~_9?pe@=~^jV`#T6`4R(9&6@ecDt+TBw~`1(aH<y;=dZ
zTCCmL4rN*dBU-KvTSnAcu`OHrBU`gg+x0_RwQXDTV_Ub4+hO$DA9Gr{y<0tmTfE&{
z?9*Gm{oCpDTfiM$=M!AQJ>29oT*O^m;!|A4eca!3T*#eV-IH9(g<Q+MT*l2@%|%?!
z?OekBT+jtv(H&jBEnU;aThvWmxm{h>bz9ecUA2u}*)?0*tzEIbUEJkb-Q8XPtnFRj
zrCQ((UZ@>j;#FGXJzk?tUgZT^=51b{eO~CbS?Qf#n5|yxWm)XaUX$Hk?iE?@{a%j^
zU-8vg@-1JBJzw;dSoK|BhHYQ>MOgTaUxJ-q`UP0~y<dLKU;V{b{_S6S{a*lfR{<Vi
zbuC~6Hdh2rU~yew2KH75eqe2lU<tNX3a(&iy<iMxRt?@@WbI%NCRPv*VPG9$66RGC
zK4Dx<VHKuT7H(l!ePI}8RT-XPRIOnfCRH5HVNl&+9_CaZ{$WfFVj-qfA}(S`Jz^wg
zR3%<wL~UXxCR8YnVnCf@D&|uwzG6JhVlAdqF79GD{bDd?Q!yT6G%aKQGbU3sPGc}#
zV>aeeH-2L*jbk~cQaY|<D7|AmW>P)gV<hckKPFN@4rCx5WJ2aqLq232O=Lx;QATcL
z7=2_&W>HC=WE8DrOD0iF&SVhXWKQN#PyS>L4P{X-QM$!4uq|Z(CS_HAP*!f`6g_1&
zTS8dI;8(6?1HENjZc$n0LA%}MRqo}Sqh(-DU|lX|{XAx5#!qElX8CMpXRc9UHcMiT
z=KF<aYfevW&gLAQ=Fh8UZeHJQ4rlQkXL9aQZ+=T~KIiW>XLim`cYfy}P3QOfWqF3)
zc)n-o%x8TrQhLtNepX(74(Q|@Xo61Ce@^9tW?h3`Xy9yUhi=mUgtq61mR*Rh=-Rw!
zjE>TYUgwQ|U5)-|*9>WquF{S!Y1}1glrBw`Ug<17X_sbbn2u@FZE2d`Oq;&x%gkw=
zu1ucp=`fvXpr+iP9%{xcYNIYwp-$?}U23NGT&I5O(2Z)TCS9to>eIbytX5sE-s;xv
zYOjV}unz0l9c!|-U9&#x+)Zn>=3TaK>)(BAxE5Zyp6lYRYr95Xyw2<8-D|#fUcdh9
z=nZVare4A>?CU*j#MWNLUhM8|Y{v#)$d2ssoovcBU(3Gi^v!I|W?#<k?Dzd_(3W4(
z9_{)qZPUhI)K2aFU2WF(U)O%^0FG_hCScmG?E}7T+*V-!-QMj6?rq<OVBik!2_A0Z
zwqWBv?hH<D<>p}KZtf3$Zs-<a>7MQqu5Rl_VeHQC72a;{c46=S?idbl@up$&F7F#Y
zZ}iq-^<M8DZg2MnV)%~lA)asgHe&m}?<CG|{bpkR?(Zl5ZvdBK0Uz)xE^q_KVgyg{
zEnaX2_hJWs@Gy>W2`6I;ukbUza12*t4d3uK?r;x>V-OGVIUaEmw__7O@jOm(73X6X
zZ}C5VaTph58K3b&u5lYjWE{`&Mc#29cVr*`@kkDGA*W;_FY-%1awOMeC13JRZgM9F
zWhjsGQJ!)tH|4f;OMt%eUqxyzr$;aU@>sQUF^}c{EHBF~FLUrdbKF#DH9yrbfAd-;
zb2;Z_Hn&eVuk%lhb3GSFKJRmH{BuC(MnNC+UZrzGpU*;1^lDsmMh{j*fAscrbV<j^
zNUwDCq;yPg*-PK_@ziurH%3qobzvNJQt#PLKXvUibye?0R&VuOe05ll);sUdJfC$4
zuXPN)bzGltU7uEp?)5*Fbzz4^VlVdCOm$>e&SPKps8x1nN9bRV*I<u!Uxy60tY?q5
z_FTtyE$4M^7x8I-*lG{=3?KKDEq8P0aCDzpbzk=nZ}*(tc6dK`Z%1=*ulE&~_o01v
zeJ^o-Z(4f)_jteeHuraepVDSe_;ZDJhF{J9g@1TTjChG(SBI~7mcDq5f9Zh#T7=*D
zA*Fbbf7gz$+kqeXB^7y;H$;_R`E1m9m$%H8kNH2Gd7AG-o4@(vgn6BB%$)CeJp6f}
zhe@6v`ok1@qmM(RPkQDodZtfPr+@msTzaWr#f~n3s^8H9aKCy!fUL*S1EA-(^!l%-
z(XcOhj~4*4FMAd}d$c!s0l<2;N71e4dUaO&xhGM#7yG*x00KAwxzGCvEr0_c0R4FT
zv_E{sUwp=Ie8+!$$d7!<pM1)%e9OOl%+Gwy-+a#Re9!-U&<}mlAAQm<ebYaE)K7iY
zUwzhZeb;||*pGeLpMBb|ecQkN*3WkTU&ejj?|t9@ec%s%;U9kDFMi`ce&kPn<zIg0
zZ_K@AR2*-&r(Hnf65JtJa3{ebKnM^VlHd?R2mykJ5S+%{-Q5~@Xx!Zi!QCOyNO0)s
z{GaE{oO9-#cg@G?Z{75&weGqXRn`02ziWH$dOfcEde9B<JgD$IZ1+4G_x!!;d3@q|
z0{4VH@j8|F+(%6Ded%?f=Jn@;*QKr3m6z9bq}NR*e2~Wr@pIsQ-0NZ0>+!@3j*fwZ
zj84dD4x{Vx!y@Ci+Jn*e1QD`mmYSb3^o3ChIUMbs<^re;@-dtiXH1IGblTNc`)AKa
zlK8(&m0FxLkEMzJI6K-uXPL;72_)pQd~Pz7rx;IbeQ?1xQ>0m_S!Vf%eYRAu!QuD8
z_l>Da6BSRcua}$)wU)oCtq(7`mKq&CMwER`+*)dJy*m4Sc*V2U;e$?8?+m}<-RKD+
z6R<hD=Gz*GVR>6_b;G|ik|Ol&_~=GpZz4xNmfQOF`N0fCyT<1C?Te$i>Mzsf)^~!(
zOVA(Z$G`7{U~650L_9Y4!e?7Ui2}CA_aYa2Q-yCUY#u}}j}{ufog6=iUBfo|V|i>J
z#cwYTe%08XJWAYOpY2Xp*uo_r?{BZpPfp-3!AMxbbl#|x&U8MQ?2UB3xT4o|egulb
z^!_Az&h!BkmW}j*G_Ke5LG&TQ48hM*oEbvcAdL*6T+nNVFuoyS#_$&l&WsTv2aSx8
z61UfkQKcW(q%mHR+k;~M4i-Zv4-+(vmS=7<jg{7Od6uASSxgnJ;0nKamL$(RubcQW
zg{=TxAJW8}Y7NDtK%q+$*-fP5wbM;=Jh0eJ^|-xZ$<p)8V#!wURG-iCKX5V63KzX)
z&0}+=%g=G8jAk~C)l%Hck9NIfE6NsS-7N_5fsq&I6S_i*%AmLGrKeo@K9Kl;$_|s7
zS;$^l)$J`uWv5;Pkl*YO!eP=wSyDtWfOW@NJE@qOT0P8vXl3|Q&+Vvo+4YXAF?$lq
zRS_7j#GOs=*Ua7g8|tP5*(<lyZaJG8JZQc-Xy$38ozrJ4_;_<?n~ikt#@mJ2pvT$y
zjgpVF8#nc)vWrCD-99r|vBg}6(pH=$mpoLQe^87cW}p3o8UCGr$Q5G1Kf*U$YSPLT
z7|f&iV$ooCMB?sVAW-bEIBvob+2i@t8y;c1Ni#|V!f6%Xo7$=O`X1jsb`>A;p{y3I
zFJcToNeIq=&PA_JX3M52n73|zaB?D_D*>_giCV-g)ft@*w*TmU5L)x5BKuRV13HhC
zR6kOzL-x~#^u2s|Hw}V@VS9?~B==u_FRRTvf3g>R!Y=qGjRQ+$4<6(@SfBUxQS_)P
zR?x3X@!Ci20N$|~T=gnV)~!r&B1iT3Ca=2mq?)5${5<isK@nlc*2?&cI36YYH{-UV
zeIiYFxkKf1LN6t6wioLT340jJgIibzOOy^K$-hcI{8@yn5#Aoi+l2p_g|?TiJNyc}
zS*`%185sSxNo@XkGtM-7W^k%nRf?in>60{Vls^S)n(5udTo=Pc`y-3y$q6HzCCo&9
zThvvBG_HpvYw*-5z9pu%@?BA^0X(Xqi{?z-qF^!p_i=WkUXv=*OQtx=GkR$klBz&e
z_nZOhK*7E@1Xc;Y45T$h6)k0>N}i0EWcz*q@J_?%!wduE^jtZ&=NoHREF|EO9?Te{
z6z<f**to}9%S?G1&UG!%)^*Jzxlt7r;P{>*)TvjNRvH8AI#7rlhNOp^9k2*R2uq3w
z<*QCHWOJwSN$Day04X{QbpQzQD_5zmj*ptsorK#t5$e!p$6yTfyaep9+<*?M6+j9A
zRdVS<tCRZP5e-jV^2afKvqU6CP)%TwsBsL5cLVvt<XQ4ET<1wE_hwPzv$avrUZ=_P
z%21bR3@zoWQo{$pB0{fK?WSrnM6uTU)RTw<DAs}FcZCvj6cb)8bQvSnEHXrvjB<)N
zvFa$X1gvXdFkUSoyrc6aEdWKg`lgEao>k$MD1)A2SdwC~HU>W3=*+`uBxQW=Gmg)i
z(NnbrbO)?ZjAY_6igm3j<NcQgw~;DzbOruX#VWCo87zy#PotvBZ^PA*&<s!<$$R%u
z%Co^w*1nm{>9Ol{i)I%H9u*I=C*ZRJ#b8K*&C@e;B-Aj=;);;Eawo&6a;901-mO1r
zY~h<P6)*wKjkvFltsEvqN^~)lUkhMonrcXE$mHT{z$XwGUvXQf*P*`VZju-(8qdat
zn~h8?{2N`;4zb@yxfvc@R@<K@G)IZ}gCTkNe#W3@Rf5WO;aqmU9GT+3L(~%JZOXzp
zmbUqYBtMHnz6!jb<9pEno%MJU7Y5R0PoET+&yR~qnlY>bf&NMFJo%g6VFykC4O9l?
z0K^+yTwFW?LVSFDM1}_u*I{JkV&vpw;uR4R5@HdRXO-4ue`Ca<_BV&arDe~p?;@x0
zMp;?q!-o$Z9v(c#U|thnzAqts7UBF~qxr20`K`(kff+<v=3h~nzrmQe4t_-R<)8G6
zYr{|1j$PN@->!qdgD^1=Ar?gVBq%N>At3>gJju+=jL$5JFZr7}$<EF$E-A08tMh4?
z_i33AYMIX+*)AU0MZ`r~SATbP|4n_2jEpQTF7&MbMg%!lPVX0Q;9Kjfi15b2!NI=+
z8@~_Wmk02N-&a>x|H^FK+}t3R{Qu4i9S&ym@%2Lq2n-4i2@MO6h>VJkiH(a-NK8sj
zNli=7$jr*l$<50zC@d<5l$4g0S5#J2*VNY4H-yNmH@CF5$b&jTem!iB{R4wT!y}_(
z;}erp(=$J3f6dJ=<Ure2)H}L*{TH`)cK7xV4v&5xpTJJf&MTHzTh}``eJ>s!;Q$KO
zztbz23(XB2tCb#og#RVI@>3=Nk6!Lbp*n9cmh~+JkzV;+5P2md<M^fqkzNu0cCa)k
zKr&*>fAxo2@!#o{&sWp>6ZT5Eis_1Vke?+wskg3rI3>R-jJrc<l$<iO+`DM8xQ6S?
z78~r~n?uWvm)d&K-_8$~hZ`zZGrm);q~A1Du6G9!aRiW&FRj&uGAd;#H&t)H4R0cB
z9%=d;Ut#>>iSwd%f4b;xNrI>z_4?1sPs151RG+?jRD3;L8EtN`wQl&C@Tk(#c)B^@
z!7t0f*>t`;k*gF*><;~NI9Kzlyu7vf>ST@N+mnCNE5`k~AI95S?@|v|hcngM+j_1q
z&kt9}pVB-&0%(YfOT)eVnl}b>kueJz_uiT>zRaAlAF-DCM^7T7qV)i3pTv)d^a|^S
z{nH5ZjbK)YmPrU_{a%jw@chrE(C4$}j3yi_MVk@gdhwqkrO?>6RA1s*Y(*<1yfcNz
zC=2fANh?YIjjz-beU8^LE8c#tZL`0fXgoFbImtA^Vu$rpM)6LHm12xps$JjwPO8JK
z#crbGO7U)n+Ror^CKzr13nIR9yO9;Z3^5N1;y&2RB@o2g&x^xjwa8C0(_76?aXQ#{
zN%LesD4O?IJSZ+={$dF!t%oi`%KO;AT2_u(9+oBk3^^=s*&xp~7Pw?Ts;u2tJgOQ<
z_-s`@B6zr25rKMmR69dkZ&f#EmO5Rx;B;7~xa7%k+(_xKblkMZU}^(Bsy`fu9`|wZ
zyqyqze$slK0kUnozr-GGdqm^p<p!Qu!8*%{!(d%Fu{n0#`0}NL-Gtg!d~hb>52dGl
z0j49T{e*5fX9L)w%4dVfsbObBH;|FD;ZrEi`N-ao^7-iMLfHA(+`-8C_~<Rp#Y7L5
z%Ee?eW%$KZHT&qrbg?MzpP3v*l|Mg|^$@q>D9h15zk*$HFXzA^Dwp#=Qo=76>>#6;
zi(jC)S4+l2Dp$+83*lEQng^p-t8Z>`uh(R-RIk^?C?l>np0kf#Z?cKv-E1)^s@`l<
z=|$Y^5L=Gj>|(p(-R^-xRBsXDmWbPf%i^)y!;>bwyQ959)w|#8^AUH)3;SbtC(}20
z_pmWcwfoavipcx37Pj&G^BR#S4;SpSsic4ASZrEr=YOo`T&x6spnzX*B({^^>=fFP
z-ySrKlieNn^N`)2{aPh`xZLF-eZ0NO{CU|4%LLw{OCjUHz~t<7$YjD#ANgS3U=2DD
zi#aX2Cd}t~6&;!o1~;Yy%(wHL4gt8t31VP=g97we+H>M0)iD3bZ}bS()%syRG(gxd
z9PQh{tD1qzKq>0gC%y_j=eSit3I?kLu>(C<Tvfs9X{$uJ3cYtKRUtY{t0Xl8z3_RM
zt07J<N&A2VU&<+mn0PMbVO8%7D4&lh&KlM3K#JhhX#_<rBkk2(r!ZwyBzWr$CCVEG
zC7kN0pu7lLqQQY+>gwny*&aqliorLU)zJwprVNM&3mJ!Mc&zt56YCA@kj6$;TtOZq
z``eqo_tl7L>+ahWpV*Z6rm7PRTb^;(6b&0{RVB8CG4T4%_k1K22<{U%BZw^?q2sSf
zmT+f&{*86iVyZG_){kDWX0XfJfyjU5o*A>7O%*?;CXHI0MU<~-?7L=V`mrCK_~u}T
z%M_9KWy>ybUaST`t;xK-W0CsJGT}W`k%jjCsSFXM&7Xh99nYiant@&8M58umzL{07
zxNtIDrXrX2Gp)j_ke29}IA>-FHkc+vbET>_ztN3N*@9&{xvRWD@H36-w-9LhS)8Nf
z1KXYt`@1oMx}qd8c1^aznS7b@V%5*o?{Y&Li#6lzwBW7mYt@kVZT58~&UfrO`^>Xd
zU1g<apQ-ewL+b0Q<E?BwIOaCkwaX{#%5|DKjEW0>waS!Lcz&idMhUI$Bup?5kl>sk
zEYZo}tFIDv<21Eko*(Qgtxot%VI~k-J?fBPn(@FnAj6>-5nW$PDaK{VRj}|gz$&^t
z-}LLJ#mf1qdeh2QE=KDTec#ji2DV`?JItHK^~;jRKI>$=*k<`H{vSqT9yTKh9Lpkd
z4bUSfx6@a-<=+sE<`o(;=kC;+;~1f^O^J&7sgjk9<c3xqQy%xiXR9}8zgsW;O+3y+
zOCQb}%&#AK2p>4sj0hS#-eB|kcssA5E<!r-Y*OGpjA5@Z-Zs7`ZL^zUE?p-xYwXUu
z<qaz7TPMg=?_oYB4tbkaM_6<1%i+nFZ^F4*-qhGfmd6)CmcL08_`6Ti(>T&sxrm;q
z$x2G{3@N;HOM<Uy&_ann?(S-fZMb+y%O*9h#^5FAHy0J7M~9_)&YesDrV&$7fs{kJ
zofnB}qc$sqX`5*cg40cI-`WJ?&q{aO=9|W+HwCg%nf9d7kH-UyjIxQW^Ii);?Secn
zVANduv>MQ<g>%LNA?JOS#iHp98-u)8D$^RVw*>`~b*gX64l=5tKczfglm@aN>QdFs
z)~m9Ye;b`KJije&d#ros%XI`HY@XAR5Ug&1LykVX)y<FLan$Cj%v!v?E1hkt*Q+V}
zUGLDmX!ju4xXXTQzgV}lGsXd(9{u&b=C0z{v%z?i>!fR{c_pY-sEw@T#6zrp^)Z68
z14VV-o9Mn8?Pa4GQ8{dkzhynkL%2tt<1{$6euGqvt50BTA^h8YUCQJ2u@u+YoJ-3V
z4x<PniF+3R>v)U%ifiN(?NZdV`**H(mt(W?Z=TyNyDK*$6K?(I*{>S*<TA@gW7|Zs
z1tk2Gyj&}CxxX8~Z9V926P*n&`%}i!d}#DVaIX6i@k7gS!R)15-E_H=RZZ*fehh$^
z86ON5S<Z3@^Z^}s8svQu2OQMED>vm!@P_VXQg9$L0BZk{dAGa~jNY+<K&j-*FxW&;
z%NB*2v&%9~R?4dQcBGB-$T-7Aj%~~C)0g%$g>C2apCx(_L^fZaHmu-Bzzz}bjZsHN
zbN;vlCqpKf66T3Y42Z8;x2Fwbdr<_FiKA-qx@^NA4Kh!@Y-Hnm0CZkABj}jNnH6C@
z9A3Af6`g;)z3%v9ULMar5eFL8ZZC&VAGRZ3qB=$2-wJu%U-#pjHh9jlxIGmDKeBip
zlYwsndFK1UMW<kVb4o&C?<@^((me|DB=58;Z)$T2+H3DP0v`re3ML&NIbwI#Mgf*a
zpSBzyZXG*ba$gJ~-{*~Xg3fSXyhLA7a(nSPU*aoYDQ9~bVLwW3Ke;)3g(N?^FJ4|f
zey^r|)XB*-h5c<c{I!JTRFnK)`uZCvkQ!b4>(%<12=ji_2{1PWo13$KX$;Vw46xB5
z>68ZBH}Zv_qF6`=es|^zpG59b2aqcR#mE^6V1b~lKp%2GZ$1<Y4WJVo6rAM1H--2n
z5OEz8t>Aan5ftwn+(`$lB?hYuV5<Ni9y+9W^Wco6kkYx3^6QXF^3ZDG&|00)dgsu_
zq)=#MXv<t^8zQ|z9@Zrs)}s^F=NvYW6gJctHZm7Bb{#fB9zG=;KBE&p>x`H?8;)8T
zGCvo-avi=#9<d<|kJ!?Q*l~{7ONuyXj5wN$IKGa6C50~zgrDj}UOGo!Cq>>iM&2Xh
zD~Oq}6j8_`QG3FX7Yb1r$x&EMQ3z)d-c1xfMKqyEG_go1noAT(ax`UAH1&Km?M*Zt
zMGS*T%(Qd#xk3zUatwP@4Cj0d_e~5hMQo3G3>jOjpi8W9a;#`mtoVGaBt`ghinx~|
zak9E`axQTS$#IJNk<#;VFPh@iDdIIn;@|1UYhlK#CdcbF#T(4W8{NbkQzV#(B$(<Z
zn7JgFBho8P30Ct7Ha7`&6p0QZiH^F7PA-Yg$%(E_iSF}>o;QhLiX<PABtPAx0GFho
z<fM?Mq_BB-Qp8PC6h(53NOGKRa)L{8QgU)iQ*zpTa>h+^7DY;qNJ^e=N`XrXBEAA?
zN-3RBDZfdnq)4q6Nv+jQt#?UnOiqP1rMAqcw%w$5P^5K<r1j{g^|_=CB&Q8ErH#y|
zjoqY8P^3?Zq|fN4&$^_~C8sYmr7z8=uiT`sQDkh0WNhhXAkr&)$r%St8AtOO$2S=;
zip(>S%nRMjOP9>+<jmWq%=`Jw$D2%mG7DKW3#6BY=9-0(l7$7$!db||yUoI<%qA4g
zCf3U)b<J+H0I)iMC+bLKQAl*INF*=-CksHUOr#vjrp3x3U&!IU&EciY4YvTW0mK*J
zxxy*A6aW&oU5?|MTtP@K1zoPJUY?w5o`P!v#u^~AkSBToVBjYz9prJQ<Y~F)>!jrK
zSOU0G`9>kRxNEsz2lGFO=IOZ>n5Pt2Qf6U;kv`uRkXHg<=L>A11x~Jo&MAd^gL$?K
zg%oRm#bDugNTHuzQGjdFhzlTnQ0Re$gsz?tGE@{KS{$cWoFJNtZj2NLEhdE(nIspd
zx)$e%Lh|$=$(WGTq2i3&_#*b=g4@5+{Oa4p&=g1*7Sc!E5>L^RmW7hG+Y&RjqIzgC
z_#nRP0Me0CIs`54fCAmOr4B>!W1^)adS$b&Wr>!6&24FY2$IP`+`=uqbWXH<ORwB=
zA%97<6t^;dPqA$0wj4%T!4m@P50z;g#9a)Pok1(^7b<XEOaBZN^)AE#RFFs4N{rOX
zTMGbbxNOxm8Yi_JORS1mzv@t=4EJlvq+%>NM>*+T6&+ReLU9SjVPPX>98)TUp}CrK
zv3iK2>e<(lC(Yr!B^BImHNvSiO~n93GZH^<DV9{Mcq)VrA4M2aqmWvwSdxN+UrFDA
zqTT^|YFvUN6|0g8VF6IpCQxXM3zY8ajH&9AZh(DD6qyceO~f&!VogKqS^<y=RfB_A
zLx?U?Hxx-U3e>6&;^i$Rk&1Ong;0V~UUgtQx-|x+HoD%xvr{2RViVYEFcibPQZlL7
zFtJibe2{upW7=X<MoB{b5Rz;qw$d6hu2O8_T@$1kTACW4Ee36dfh2jG1l^+lup^64
zK%vderEU!(Sq&`!h*P~8ZLmzpu0D0Rd8oN1(5<On4|$*&TW$@hUayIHzr|A#S#<(?
zWU+PSuFiY7OsyGPISaY|wt<<VEi44NY8au2YJ(kCTkBU)MWHD0))hnRnMK;eERhwZ
zP=qMkk;OYm-0JvJA@9G&peeV2mOAioDqgvDq*B&0Q*`3ocaW!bj_B18E)@#s1Jp<5
zl;T}X_a$tLovN<Y&t19(^t!n3yYd&RSda3lzAnZf6eGN8-J%A?^y1wrx1G=RE5yWm
zWJ?QC54(j$E2Uj}n)P~A?|bx8DioITt`_1nIlI);di9j^ev9@R50#U(^qPqG5mA;K
zx#zAx<ITdlO_%y?aI%HMdS0Z(+b<O&7>9FOmNI9jVoSW+QN9cHfDd&RCv^?`QM|u$
zzHiGwSXgFRNLM;#LZnrHxWQn;eMT&GP4s<n%0gG-{a}`IMl^e81XgiyX>NAf5QI9z
z%c{gfIibwGwnTimHZ0wdveI6(aPc<3ZfUrUI^8s-{NqAG=TW}*zicrG2@Jq_jI4pY
z4X6RWh&PCO6QbCJs4l6f{JV;Tr~x4gJqVWu;;;Yh1%j*lz4K`lJ{)a^8?#23T4b0j
zs$zaDw&NUkw4UyKUVHKz-jM}MR05pJvmFMl*h9gL<8R9JDxR7X&v(1F8)rI+;iiu7
z{bU;2DOk0;ZZwQoJed`d2tK*<*F(|7^usjt3JT^`N5SwxM-veViHm1`Ery1!855Y0
znMM9OKop3I%`Pr}9g`xDkpZa=NlyX-YMSEfkkI_1p`8gWUA@6QeS@AwL;tn%vbeOo
zvbwguvAOl%DlZp*F0Za{Ztw2@OXcPN;0?*`kEA1g6+->yf0bVHhZA`}<%It0)c#Y-
zb4Kn!$^r5LM9mjKoL6dU>SxcMadB}Wd^;i{BClS(Qc_ZS`}VD_uCA%6simdmw{PFv
z-Q5w|mynQ<xVX5~)KrAh1>tk4t*vcrZ2WJh|3AM)g&WgFm>P3VywkNhZ2M;eR-IL~
ziE7F7v()pV_96!I90tSQ5O>p?OqJ?Y%x!@Pp1r7Es}x?^L!;ZQbuIIiojhuEx3NcW
zzi7!YkU4^b-y1N#^9~3UCSt@23XkAdN0N(-izH-@PmW+oNe^JvCe9(|5R<^g!N$fT
z%;zU2%B{|=`ba|fqzLlFU%s-kT!HO9Q8WXA00F87vK^nVA&xE)js|9{5HT_%MyDvd
zGT{W{06(4?66OkLpN6v*3Ci9Rk>BWt!q>tCQjDN20oo|KD5*|<!YSigstrKN--{7M
zyd;-n5RSpXx-v|}gCQHrOO0VZG1N;+I5!6m7Us>)S4zB%5yw$qL-Hpj0Y$Ll$M(Jo
zSrnW~W<&P&0|B4kO=z!o1pVM*`2Oi_CjfF!j2SB;1x$eKZ)VI%rZ{;KrAS$j`-Qg=
zd|y=g6@@XhRQ=KBhS)WjWXk*%zW-n%FXfg)MZ+MZPI7$pWr5=T9U*Ruye(m^XMX+n
z&KCe9d4$W3-O@x_5RwwT=Io~%1yu8VLs?2Xq%IWnZn`UMsd3YuxEFfuYi@mATccKf
zEHbXH%QA#$<lPeqRoec(z2DTqtU%+b^xMd%nl?J|?1dzsWOK;<yd}k+D{+xW^UCjb
z@g6x|6;s|&p7G+pmq8XPmX|>~nrw)N`@n(|Q1tFpSk!<&!Cx@IJQxaH#QaQP0F+lL
zB~8Jkuq$KAz{~s5PgtGzBT&`K`vE9gpILR*lkV$?z|ImvHV_`<?F_wENzB5KnzdWT
zcnt-U8jzy-(Bt;T6`{yckdULeGjL{ge`O>GkH;V>f8JDlEav-+dzC*wgTdUk_9^^^
zTmYQF6E(o#^*TSfFGY-+3CIvs-e<sk!=03`iH{3(=0;^O${<CaA!B4cCnsXTjY#$<
za{9R}WdgXF?U9J~8>DO!<hrKpL%1BBjP+w;p!>;1U83j(0=#7462+T68h6k;-cNuL
zTHFdA#`D9Y8cD1PE2M_L&aZHsnP^2;Tpden6ni9fX)~uAu4a&inIh&c2d>p2(eqxY
zu?5a6{{7L$Dgtc?>hh!B>$s27w?&b-7^R=JFu{%QP>IE(jKgT2DGy;WCICxSDx##e
z*lT$B-W_!EVCoL1*12A>H7AY40F9mjWcMFtdta+L^OpRRgrca?hhMe$YLTf>emTQ$
zy(u_!VkEZyMqGmGoJ;7LfdLT{mR|dcFGsP{F~h{UR?g>H2PREdQsU#6-G}ZhQ{pJW
zs;mhbQ`bRt@AYC>j4!}fD=ya^SF85-!1bC1pux2s#2EeaOR!LzAKzCo?i-x7TfUoZ
z!LW1kowROV_MG%UqkcG5&Zn__{Evxv*Si{aMYn4#+XwUO6+&lzN6*rtWM=9jJAI!t
zuXEqSddO_=PX|~k?$1VqPVUbq{xP>`+dll6`%>|6x%A`Y;c6|A=ka<g(f09Xudw3r
z_Nd|H@ebC{1HZrcWeb0}-mQQ?-d~--;eVeV(G@z7DPdp?#9f+fpaV@5p?C|+0<kD`
zV(Gzr$Val!ga$hCTw%U+IN2ET3SERLFh5r1Y%J}8E>bAWpEv9ua|`7HEI@c98}G+J
zH|;GfPzompKTx5Ef$}s+K{<yoaiE7;^fXvKEQh#Ip_g5;3h>oMBPHs1!N4ws=p6tf
z;{kn^yZBWAwlP4C8WqA#8chc%bQC89Axvfw5l((4G$%zp5|SEW0C_GE2>_N!ISm36
z=Mg<z%gS-{N2)S)(C#|RKIb+LhuG!fw+jP&w8n@7Yds?|#!rdTjMY-kXV)Ga(t@7F
zi{c>tLu!-|SKog~jSA{K(qGRS3K}Ll2091>7XuBz#sqM1a8R)cF`kg4l2T(3P!Zq(
z!~}?2z!NG`fR-E}CMF^yC!?mJ#v)<BqF}<M<ak2EOZAi<pOzn!js=r}{ja8thlhrq
zk%0aMA(I$B=L<p}5i(vLN`5Y4UJ>%=5{%RUJ0tL%9T4FL#Q6Y5CPo%kW>!`f4o-F+
zUT$7K9)ailLc)T=B0^#kqQopxB<!+eTyMy^m5BIXlL)Gi^QzDYOH=S`QVZ&mi)qn_
z7}AP=q!W{6dZ|DsY5G!1l37ZDT~>+bjT*PSI*)=nzmle)y0);ow)i_edYP|Ga`w*@
zzB4PivZ{E>ya41y0Yz~@^A(`20O%_LQqnJ#HR(+?01GX^S{L|c2sjx7Zl-{v6{(v&
z(W}=oatg1d6;&19$SbQTs;R3;X@8K?F;q~0tFEc0@m5_+=betOmcD_mto}y@qt72c
z8Y+G?Q~6|}@%igp3!C>}?R9Ow8Q41+eRDQ8G5Tcs@r%W0b4xQT8%tYz>yO`EO`Y8>
z+`Q}@Y#g2JotzzA+??DzUD(vXY#P2C??bqBBDnQpcnuPGjZ*kOrVE(nN_;JlvM!W&
zC|3LqQFAWQbS<^?^!D_2w*mXv`S^be2>u=%>Jk>|79Qml9qUg_;bRGe+5=(kcs}0=
z1Dx@LUGbxxfH)T*$`d!$6Nmvn$?yi!0&p^duyXx@f*>F#1hXUzsEq|06M&W!0PO48
zl>zi*A@%0s_2v`z6;kv=p7ob-^q27tl=1ro`uGR=hK2`4M2Gss#>d1(#wJ81B*(_5
zWu~Mjre-8%WT$527iJa|XXU2n7GxC^=N6UZmsAv$RYIz2%WE4d8=y5!Ep_EBJ(X>}
zt)0-?&c61ZzV^YP&YsqZk^G6#lF9L^$%(qD>Gtmaj=rI;?vbIv(cXdak<rPav8m~)
z>8`2Sv4!Oo1gE<~JPrNdAvuI+jRo`n!?PyLN7Ve|-<~x&GH&sI9+%$4ZaDweLwMGP
z6F&gJ+Sy;v+CQYKW_OH_$_I<)KS<U8^sN1xRMl8657qq#sj4qUc-AueQu`64s{WL9
zC|#+ce7V_q*G%t6HP1jB7zLX-dFsn>l7Q|8|43uiW`BftLHb`%h4|>}%D+I>tI$5^
zW!b)q{W-*F6k7MSC3y;WXF!#L5($`KZ5Bp=s+i4p{Bp|Q5+SG+bQ~YX?oW#+5uhql
zwe=rR^>uZn?!uy>_#6!$d_lSH?5!p#?!dK=>Eg5hYf&N+Uq12-_Y<7k3;=t>A1I7R
zY`sZ*<%B@4&sBN42W8)KpaPX0oTKl}*ZsLA`j`L1v&Om+#ALR;{KLxs$1h?4<o!XK
z6DmB23$*m>;R7@3_~C+MB%frk++hr_k_JeV_@-OFVF0{GXqwi10C+%b8YgK@!4UwD
z#nW(^liOFzvJ#=x8Jq7UM_K4>q*&GO?;t=G+iogLPEn2_IW^s26v}qfZrBUxtOBaW
z5xKdcCo&sTCYGUz=?6k!4H+<nUH%d~ibCqZMqE?#6?AQG_T`K&WvRIv9g(ES8~1#e
z)mXFOF!q$95sSmJ#vKTPR9(8hOJ7}nqs<5`^|My>Aunu(iqHC&%1HA=qjJIDbJ+kN
z9ZJFip8;7kpIirG%SNi`ZaTG|vMp2~Z)E5#l2)UBELYhQvMzhuPRR*^R2`nQn;^NR
zRANXYW4?L{syt$fRG18sj=858B*qpP36jBFoI8@je#PJ033|;L#T0rk62%mqXH_jl
zg<Z=#ct#&rB^{<ruU-p!&CuIRuSSSDPE;X|Ir2?o@fR~tI>E+&a__I4r)Yb|COX3O
zZA|PyfoM!@(~Josw<r54+;%7DFbjHgkf&7A(6VvBRl+$N!&Ne8@|LS)WCLQ-I0r}W
zAgP}-sZeqpt`=J5n6&<(R-Hsg1ia&1Nn!)EZEm)czLdM9BB#pPNk_e-BSJfr(Cq96
zNg#LNq9#8&15)^TVB{!eSR*cs2G)o!BhVr$&9w=15TWqpbZlb4#NRvtgiX3P)$zAF
zH+xXL_L#b~UtXX`s)1b(+lii|BF}6d30(2BbqG`mf&eh8dY%{mE#S<PILTc1u|up!
z3h2NgjOxGv03?%^ZoqmihL4ht2&E_cCEC$~*ew8Xv~E&=0RS5<_3)LrO#_iPzqlKt
z>eB``YzY*R*f0Qq=%|b&B6bkPbTURS3vut`>>$&rF7F@Q0)5Nv+Jq}dQ70sIfa--i
zH_PpW)6ymax#AYLq$-=(^-e={Msi3|0vKStrpQ=PT|{WS;3w2lNW+9iBOrcnz@U^s
z43NsUDF9>YNMS|5q*2kjTAnCp6G)SHfN*l;4qF4=z7YqZ@>T{ZaONN*MLjuZx07e3
z<}nM`0Y%jISHGgybV73WVa%`t1K=<^f9e57WIL#WI6Z)*GsDzz-G@mH7VnW^#0Tua
z@@ooMLfG4^N-m1Q2FTPby3#njIe0IxC!QR1DBx(>J^KoD;4bgUQ36px<_;=K<o3Qm
zTs8q&DVXx4BLJHY_M$Vcn@p4-8w<$7N>76!)$1gpSRujDfKroZ?CR1Sd;UJiaTd>5
zSiy^y(WpS2$unoh-c_xt5QbwJG8Shk2QzzQG=(wH6JBYocN(GG1C}g8ehdH<pwLpc
z59JLnR{o;+cI5jpS0<wZ<JNi56V?v2-V0q$Yz9nVz=1G0t>=_8O2E5P&3$rsULBVW
z^9iWK3{xZh323U{TNVkB1y90oNP;0o@pO^^z>C_20j#M)<kMyERFh|46CeSrZ_`7A
z>VDR*6qfZU9qO@6&NgWF5VAxAxco6ekJl^&6i93F_r`!m`YS~W%=ZO2__*O)$iT0G
zAVGlc#go2sTPI(90PmnD{y2vu*yS~5eq*Q}9O%I2=tKn|6ET7HTYh4WZ(dqpXaL~O
zAV8sW9W9Y)8A1%Oc!Y5n=}jN#T|wtYZ31l$UN`6caYLzE#_bS`+Kf&t0dzK{+rF|+
z<4U<;Vm>{OLk~6yj*kU9@VLi|B2qqU0P05`>7yipT&y0H2buvSKiSeff>7rtJGRn~
zVq}VGAY5E$d4afkWDF^A_oy%(W%&gf2273yZSR#C(gZGr6p&8I)?Lrf;4N_7M<c3>
zYOfUCh1kSw7OP*Jir0k5#@^2qdywrvFf8)6_+fF+_{V);2iWO;3`(3XepAUx(+iVo
zHpZ(->Q^?awIk#HAp)S`ZHNM_031U?6F|n_@J8a59YxEYJaxt7d+LlB_eBoYpFG5f
znAdjyRJW4x^Q-Y;8O}H=Cio-j)ZS*XV`LBeJ3q#yJ@1L4A9&e4f~qkXzyP8Qqb@rw
zlY@blL0OF{g9hMuM<f1$DLAw!K^^e~`NfV^HTHqL&L*KQGKuv<H>cb_Eur)cU&)F!
zy-~<3!R=K&0sMU4WJ%32@9`;`*j2m<p01Iji6=HhCif-|j~qKS-z~$Khmzl#CN`V=
zp$ms~o)Y8Nh)z)e*i}C=kkpabW^6x)t9Jmdh=+CAkAUrGqY(!CJ?~14_UG)^ooZ;n
z6Jn+aW+G?lA)P2WMlf<1T%l>`X~O;+D_7^&e}tu_BndP!Woc}p-cZYaXLIb4X10Mb
zdwU*#1OORE-4G-Jre3Nr1v<2uAm~gL!I3dcmJ}~)kR&SIDv(>udaS$*6RQJNGcJc1
zyU|BU@j#gAa`uqhz5`QF`U?8i{24P~^2rsWS1ZpAG2x_T4PEV;bByYRlLmlF>61$n
zC)A0W%u`GH66U-7r$~S*C~s2iGz5EVBcR&7FdhQ-*?Qv?$1?z;tAM^vr(Jb$ywPD4
z7n?@WVGvZaDg=PQFoOdc+qu?4LRsJE7+v_hMyIoqVjE#m^vK!{=)BH3q38oWgJI{Q
zHQhG;$O@`tsOoNT6_XhM1ci%vE)66UyO<ySdtF%S;^m*rk*>QI;g8qjUgdb1(}6ua
z5Y%-Hetv#mCxNKKx1dB(!80%PD!%bpP7HNd6nkxgM5BNN&dfyf3@6qn1M&a>R(pnz
zV~%hCTxYz7HFZXyy3nFVNNWVe2Ni=Lt^*fbg*nJ89XBQIrGfhz06bxMgX((ie7L}b
zG|l7-JKnDp*%%~w1TyI4Q@@B-&;Zv&4=FS!i%r0wkMM!Xvku>&>9aNGy7hLVJ_iBO
z9=bKxq-UfCmUb4huHBDtX|G%DKqu!w=SD+AKQl)pISc}MS{NuC2Fl45e+<AM5kOL-
zLzU!xUjt|IM)|@>4D&`l6_*4s!#l)LS?$S$@k8-ZoBdEUvc$Orf;FCDZlQpDoq+~o
zqbMExXel{aI#fY*#p)S3sWpsn0Ay3^Q;q)dlYa=16_Pg-!mr?4qhXnT_B6UnB{v2a
zzK+ZXLpJBd;b3Mz!ha@oO@L;Hv0#TAWDLAP_MiSm^pTE8eurqN-opaL%g`9RT1v)b
zPW>G|TD26G(AJL-4FI%;`Vox$IY<L_4YiIJ+ejU_ZN#=><q?z)bh-WqR25U)%adgV
z;>%`<?F;A-CgA5?2tS3<l2HUh-YGsI!klI#BH~3&Z4f8j<0ttdCRr<=Zps*G9K#Kd
zjRBDfFk0Ya7RE#X7O&35`S}3;DF+^H3Dz57k}M+}Y0MQE)p{i+%Eil6yBE2Hc$_da
zPZ*j7{xkMVl@COC1jazN|BII_MEG=mECl|N^fFr4-(?a68|Y+T)?%$U5JK_MbQ7)r
zY!T+sF|$TRHQJ#@)&OULKi&^Saj!=a{R>pRp>$KQmF#+lO^+F-&WC%7vGoEqX&;|K
z06(fSd7CeV<x|QAQHn0fJJhPTMA^w{#rW~~@!Dr@>l?@~iwNwZK9Wy5j$HVWd*imu
zk|Ai>mu_m!KEiq!*3u4PBOP|kIU!UX+u(;r4R5;Zylhw#VT4HXUr+@X$sl3l`b(+?
zS?g}t8bw|J_!yL(c>EK{Th#>p!D+#h>9>PXwRFgv|Bxzt-Hd(RzohD0RYoQup8ng+
z&j9e+7$XFR&S4A;YG)q9up^KX@8+}32(cg8vJjp%CQ4^eNET~K4!a`0x^5=-E#43e
zO%ET%+z#WnEcZ@UHdRU*?LsaIGB&k(j*MuYY>MH%cAn-bN=y{WqbB;E9q4^Dz#k2y
zGNMU^<RL(n9z;YQny;LVqI|%k0_4BXM#78&C@Mwt@$-xjp0(S8#;N?bd{~Zpg-)Va
zb}5Cf&_efx!Uu*zP5VNhgMWjnAP5bZlEeq@S{Qs=6h&DaBU=2isz{y=q&ivTq*$D`
zfZ$Ta8PKBiO0;B1u_G3wC<Ow6LX6l8RXZ^I>9BmI3KTy=3Wp$#DJ4*7N#uOKGd`Bn
z8m4O&djA?o>0^oWPzi!mjVzS@cFKFEUP{Fap;`kyvn#DXC|!V-EiII3JLZYo;VAKz
z<t-2o9F*;)lpjFL8>aHp@v-Ek%63x9j`S)nT`R6bXbgu?QtWX0v(SGH5$~o{fb=U7
zp0!w{A|(LpF$I0bpBN>ylJFl;rA`lVs6>N@loeQ3(IP;VQdN#3#K8`Sx}=yswVJ)T
zdVe9G37>dIubO4Ch*Q5t5bjpf=$fZAfhjIkE(61K=dJM#sgc#Ml}jy}(8K7@!pvU7
zRHCYULr^6zR`*W7PLI7%-WWYw3S*PK^1|{jsWQ3CWYmYyh}D~?)?20qhGLOuHrLxB
zNY!0wd@$wv)B10z4X(`%{6Fi}yc^u98hykXfz1Z9&}zTb#*pU5W|PKq*ZMH3rWmm%
z#*M}}x2B}jCI^$I6a=WcYohLI$`XU-=|i*Wp#`Z>1gQGr4K2NcR#G)<twXEzo9o@0
zUrQs7(%do(g)TOCP_<;-HFxQ^^bI%mxV0cam1}Ct$X&~XSp67P>x_QuYq8eZ)Yb*6
z>bYhFsA@%rFSf3UwQV(*Z|Jw}rM8W_wjC_C9XCUc?%K}8+G8o(FWlO%m5MG?+wT|K
zt)cCYR2|5id4PBantR8FZU;t72M%>K)=~#Pb?5a}2cbbH>AelHdnaW}=R$lZ^?fHD
z^;=r%E+&I61HFb*<1Y4=t|P%N&igLj7B5!n?&k*GyxU!Z2vBuTFWk~CdEfnOvReuP
zs@$Q7K&3)jj}1eQ;!=;Q0jctRkEVF9K0)t0_g)=p60NjegQebfhaMy9J`*c5WAQ#S
z_dcVlUh|ed#nL{j`@UC4eRksgqMZGX?)`jL{mw1@?4|wg_x*H7{b2C{GR^@%_W^vX
zfgpIx0D9>_*!{rc;Xsu5;1$PUocrMM*TJNg!R?a4wEMx8!@(@^p`RQ>dG13aUx$iX
zhI&heO7DkS4u>ic@o0|WTKC~L#Dt=jVGOI`miyt%!{H9`ktB|h9`}*xuOkC3BYq_#
zBljb2ha(f>qxKx5Gw!42Uq|O!Mzu;tm+nX94oBC-#{@aXw%o_qzK-p+jFFa%9o>&%
z9FD=n$8XrjFWkqEEXS`~##bQY_xIyt2jhUmL<{=_$YY|^ass1uA`3Es^Dq&2Fo7>I
z8Oc6L>@n$YIZ56+=?0mkeweg5n52`K(q*4w@|b#MImOyK#Q>S&e3;rQ9_E#pCV?ML
zJ@=R<vX~Zbownkb7Jr!j1DTeRn7L$`k@c8iKA2W$of)y5QGS^Dv@@eF@ly^m^UmWZ
zuJuoy)}I7rKMfv!lKlQ@EHO*LHEZfIOJhB2-a1QPHf!}T`|S6uoy0FTu3wHGzqqV_
zIk*1eGfZY1`2{x2)1;a68)f!2oD1S&2uz;~D+}~oo{PfG2&I{iv!+1=dy{Br64U3?
za4A!l=d)TVGHDj_tSNF07m8H+BGVC96q~~3g~|t#3Yx{*GLjm@#YRJthV;c2k1E&Y
z#g5-R%`{6r54|OZO9LKV{pm|1h9cd|OTB+pYfA{#S}Q`emcEEkt<@n^YjB#ym51dr
znw5?8g)PICe1vL^W&xpEOGl{I(&rJXwRnVTjb{GRV>LW|^)`JDp<46*t6G~wsMg#K
z*U%z<VPvd1wyxpe{X(eLtZ3E=BW4k*HB*mua=cl}wsnK$b=ruZ2-Vs<i47*apUj>c
z%IO>I5i^{4LoyQ}rz~_|DGWi+P2r49(Y8(Tl}*XVO)1(f8P84MEOe&{P?F*jPurkU
z6#A>jEp^&$P04NP40J=c<@WG-`7HEzE89ko+s191u2Ln9ty{4zXdg3nEZcU}jLJV}
zY)4z8TS@LZ8tn?&pfBL=hI8#Yt?YU}Zac3myJpOpKkf#2?y19%cPg!Sg4{ttk9$#%
zo2Fw6VV(m9wEIaJ`+iyIwTAn?Eua+IgJ{p~ILSS~-&;8u2LT!AYt{!~E)azF&?{pr
zzip{#8C0Ed_<aQwdVJtMx(lT}vY_3oYYX%mT}WKncBVsjP~Vi4#Bg2%sjPv%uN_H9
zVtl9jt!jrpo3Z2CaWuHH>4LarRDx9Tk2S{jH-8@@1REL==(TO=l9K3h>mUi6($^a3
z7H#O-ct_%@2hvrbW63SwiNkuMg?ExWvYqHx5yTPYo3%#74zO+aj>A{$C-`2(a#Gu9
zwnvo`+rU#|oc7J{bi~S)=o6}kM3I}?D@VS@h#SYjTe#{G+3KbP9Wi(03038p#>%Oo
z<54m08Il(|lGvH3=Q&l@3FlK{x{2SWl*hjKl}}!7KWj&lS4UUCCnopWbjL^5i`?AS
zLq>VJC27m@lxN!=j4q^FAXl;Z4LA^y#NcU0IvYDvjNEj_Cl;UBo;W^IX#XQPc0g5m
zis+H~LAU++Dd(4yZL6o-rmojg+*b@<yNc?^C_Ly&U=Y}L(`$TF!RtyW;^K1U{LmAY
zhr1L0WZRVeeEhLm#dg#1DNKa>nyTYgWaUOI;vy<?)91;Rdd4+M&9!01E$HQyHP5jt
zqN^V1NaHCn!qN62^G>?z&fw&ao7!#f<9V0bb`P9qYa8oOS`svtxhZ;bbUlXh>FMpH
z*M+qAp~x8eJI9Ci54W_d3q>z)US(WOKiv}by7vR{p9xwC%dn1jAZ8hHna&|5ym>oO
z^UwH3MZRK0aZ%n9CRmq`qJJI1q&v0sCXVfWx#|4Wwo($`=dnE9=^d3ck?+S_^RcEa
zF4F#ZB$VU38hLNxxj!$=?7uD2$XE54pS0{}MBy>AcD7q1EXStDEA6h@kYW*^2%zDp
z%Eb?NBgGpk;^UNuxcoWZUi@|Pp~D+B6r?x<6VLS};W1m9JN+~e{bdC=^?UbhCE}@s
zqKEV&QOPHQv%QhJviB7z;X1S`^Vz0zRiDQT;D(EWBVB=k%x%kySGH@N{v6*ue)8{>
ze3MITgM#RZ%D<ztU$k^u%Zo8^VY7|dUH{`*dy=95Lw#lIAJ1Cr^s!Ez7K`(*8!3@w
zf`lyhTS&&8AZuqtjbO-$1c>OJoiv&f|4GXQWt^Q17Do%0WJJW~0iIt6)-a~uPUT7N
zVfh(PskGwxQ1>yX<LPViPxpt?%M5X+a@5~us+e(DrY0Z~QshNhmDSxR+}lzy!?i&h
zDE7YhcuV$*>?O5?Oq5S*P8GSEFJd}rX>O}>>7Sd7u}k_b0no}zDORqZ5RPbmZ^AB^
z62i0gwv`ii(c!OW?RhmX73DVu_+-MCrP$EWQU`|2*n%-GbJ?K{CrUoG<6BiR)Kaya
z#|y`Ino56))dTRXSqHpfdwa@wLcsdS1iqf;^8-;)`y6S7Act%nuGZ;yCZR9tnbm)Y
zIq90EzQFwH|L!wu$1_M>{Q{v>YRMRGg8IgSrT+_z><^gsj<b5b=@{km+eyC5x2}#(
zMy|;!^+m4dKYzS4$E;G;;8UAQh?15O9xRhS@N<0sLRYr-O$3^T64O}M(v?ZrRSQ{b
znAqjqkY|mIP<QN5N~mA#g-#KkJ`2ACO1uaqhjzp)5DX%~esKPh@p*~7D#MplPe$+V
z#jSZR`XoxEIB;wqm7SXaZG~sPPQSG*wGO4QC~v+Lm3&h}>UJ~_VZO7frB6NoTEA#>
zw_UrLu*g%hTYq<4jOOHK+ZJhqY}<kI0b<jMEkw<7e5>VtO1mzB@T?g!h&v2%2nCz<
z3H)-;nc=*;Klf%v_qZ6KS-E!{MPc&z)BXC(!}pE`IgiV>?tllUX2X7utD4}vhaU~P
zn;y>9-&r1=i`h^;Z_2IZ9&bv*13hmef0;eH;;a{V-bLo`KHj;P^?TkkbPB!vbTY0D
z*V!KYk;$?9D{*!HVz*&+n$gtD3$Ebb4u@<0d;&%R%@FeTw;ygxe+QYa6@ccXFr40C
zsL-iT;tvSt&u3#sgc`%q|6E8t2~hWAWLgiG(vcx9Q1|D+8OPK`c-H#V148WAajczR
zQSVH!yqNj;#N+xE-Q$+{5S9r+xU(#i4LI<PsR>a!M#nQrjgYr_8|OJXuQ|;$LNl5-
zNL#O8^A44Teq{PYF*;Ynm!T2<)ik#?AgDsHPb1>nj5g)|U(Xt!ywl95rw`Ztpi_b<
zUnWy}Z$^bz%$m`mRyYh4Hwp@Jn(PsArq8%s2Gi6DV^g<GSu}Fqs38Usr-QaxRa}PT
z6A0r=Ot+uDpI6lB<BzC7j5xB!l+#<$Ol*!b;dZ%EGDe$B>|`?I`y#CT3E^3LCcDF*
zexr;gNR%?2S8$sL*Hy7Hn+~zvN)l|nQ6VuRO50@mvfZPr>R3QzxBKpk*s`v;4f5~w
z^E{T*IbAjP9imTHGhbdl?918c{mw*r#ww1Yr|!pmVRiq`{1uJfvj9niXU$(jmd#Zo
zjC&x5V%uDPutp;?;9Xuj(!PR<tL9uBaX!cAedBivnn``nd3fS2RIEiCov|(o#J2aX
z%@+`!H4-5a5=)Kn6wMsk_r*%zEi{vF-xZC`6l>&LzPEQ(FF|<L#BcVsS}mu_J>Qqo
z;2!FXDo$2syf4E=j5SzRoTzVmUw#{QXz*Kf9J=zpVt?e&=mBf2?eTr(9L|w3?%hZi
ztyWc^@)5$bHVp5R)T*uzJ2K^392zpxswo&bGLujmD)!W>ee(OrTm^e@DnqL-Soyc5
zA@;y*n^wI`*l#Oqj{b!etp>}H-!>jpeJhVzje0o8cHv^Z8?-;v<Quzb;wq7zJ^$r3
zH2T(|IJ8h)Aq&N9!j}RuJA2HKOl_9LHZf)*`NRoqJk7<EIIw8M%|{0OFy?WuxG=iY
zv%musG(Fq>KEPGq-~sq5;AJX36knSTR8?MCf+gc&+{SkN0zxnwqQ`s-32-rn`P-X*
ze4?+=4b0gE{Q#K|sVU&P0$|#is0|58@;;wfSlCO>PgI-Mog$YM5ia5lH1O-!tfbX$
z5tXYVGw_B1EQYg~!5Tl}e4*Fajt+Dl2A@m!*O58a$|<z$kc2+!=4zAH%*15{ii>Mw
zx=eI`8@Bpf+NL|EZ*`XT+r8nhXU$^x91(}8mxSw1XkuSv;fBlcBRp&C$`?5_5?wMc
z^`<UDF7miqOaFS-3WhEUB$kU+z4T_hvHldPNUX>qJZl3Se;|eu`C9FIv&_nWO06ZJ
zItb4i(a@iAkI^kXxZa%4;h)Ozhe>0EXU$#pvN|1i&+MiCf?vdCZCUu9@CW@x?6S-H
z*47FWFa4$GN0*JG;rkAm`papmSI}kL1E+TVmAr_nmfztAR;&7}eOOm*53RADaQ!v7
zAm()kE^VyOQ-gKRH`iS>o-qM04L1CWuX?yt>q0&lY;Fc$_dQ#&j})WcqSwA2cw=K1
zn`yAdrrp%8yW-%{PQ7!Pa5J)P_${@WYF9-2YRtvPCKGP3Buxfw2sU!GeoC`Ht93h-
zzwB5jMs=W}eK}KXV^#9Oa8CCZw4!O{yP+4&Q9bG1+-F0lnr6!17TSLn=4~t++6`yy
z6PpY7jee-C(wrpB-mN@a{?RT*3G>#zSi`h6?|y1D5v<*kNwMlI@sjq;DdB!=+rVWw
zk>WhL|7=I(#B|)NZ6KTMA@a?KTk1^OKLT102XB{Le+80XR<*;9ES`K^T$Su>`laIm
zc3Hi<f26&JkvzhN_1!l=G+0t9NW#2k@vxq^U%k{1K+dbU%S@I=o<w*SgwSv?{Sb))
z`G?jv0?&)c%==6=((B1cPgHgA&EdFs_!d&+m&)}Aq<=MA;Qej3kOI(=NC9%d578Sz
zz$Hk^FG?;T@l;fXQ9_PgRvFQwAfWtCR8#krp0V;LON}p9T3_vStQ`y;oXlK25Jca`
z+utb&0rDf<Bci>cV*Y~s*m%To|MwT_cRIQVCcAWV*Z9(d>iiO91;!2sEKVKpZlU1`
zI`OSu2gwPmD0BQPf+rspDPQA;N?)`{vg?<}3xU<K^0?J}l9%KxaeBbPdHqTH$eZBJ
zNE~u3lh;a&_~hvC{WSn&A`*}xFOp;|ub)Vg=j+tal#IkAHTwS*09N|XE9Dj<;S;5J
zAxSSLi&&<lmVvy{XC)I0bu&aWge_u?U)((Hd;<_m`~O+d|Gvh5eS&KKccrj2^V_(8
zR@#-9HkBK`k>iPwD6^_FpnV6U=7HW&TMs@fzKMICth%ZgT-Me&U5YQBXNiPWTx3j2
zN#{?H6HY8l?cbR#9f*wKj*o+ak8LEth=R-~BmN~KTsSf&`nleJTAbE@S{xCN5XEyz
zY9T2^FABZ5Ec+`Z0p+(ZwG9#7Aj&2d+SU$;P7lNeesFaD>gi+a?T1(>q95a5+vxf~
z`!W7c+vxk>wh<9r<i~nGlYS_^YD?mW8!Q22ONkz{qGF;6@CBveDs9mTD{~?**#=gH
z;E)Fh%X7bG`Z`~(>0rE3ftKF$KS+D;pr+b>;d&<l5<-iLN)sX?(nM4c1f=(ljb5Zn
zQB<n5P!oFS2m%q1UZNmfKzi@eL_m5MvCzr8(fhfd@}6_P^UXWMUtu!C#V&+vuisk4
zX=@r+4iw6V+X8;U1{oxE`V=Jvf}S1{en|{Taq12onU3s5*n<li!UXf|1m3)?>>?S-
ze_8i~e_1z*@5ZSsH|ej6G6_k5OJ~0&&n2S*E?w-7zO=5fmX*E!V<(VsdEo309$j0n
z<8v2W`qMz1OK{jRhw?w4z8?R+?teL`Y!4j;h5|4UnE3~#FzFP;78yO7UV4Z^$rO13
z%K0V^!h|0P(Ds%W*c55$PgQ0Os$pF-5aJT_GGah*KyE3aP9w?4DNif-fg=Ix4D=Sx
z!W`r<#oOZ1BI&+L8CkDI|E%}-<!b*g>pj6QeCC=Mqu{M`H;<1qr<5|ctP02$38~)$
zmn>&!retFE=ZZCa;%xQY8$8;-p_>Tr|8b>%oy3oh*Q=FcqyOh}{g?HcC~M_V%2Nh6
z%ea&IiS{?l2%zXsA%-Z>x=b7}GhUbgA2jjt&&0lA41E6b%QFTt#V&$w4Uju0DB)D6
zXf3WNsi@I<D_)RO&=&U*iF1mHk4(JrFNc%|XaUs8p}#Ym{~iAIKeJ!d44nVUeo?V=
zgEu!uj!S>2FYqo0o+eCJFQ2_G{vW&-`vvyDc`vRjSN}r3uK$I6iHiLj^2IDH`yZqi
zco6<zUfi;({Kt1r@YK`$f8@I4<YYmvOX?5TrKWn!b?F*`MAw}=xBn1b`uckEhUOs7
zrD|rQZDprp|J3M-3y5%;nf(Lda<B)BpdiI%<>>st={b1c2J4`Iv0P5i{;*u0o*w@l
z%Oz-$@qdF{C*E?NeaFXC%@0OFFI3!MZxFuNA_~%7U>y_$yqvJX;Pv#^Sq5@l&!GP$
z)U_&dbzM^AUkjfv{mA~ebXPuiYvI+^j5F)mEMV|+J@3+59@qZci==YizayW=$X96S
zKanrcx$q(;F(DB|zLJuXK;(;%MgV!Q%*>2q-YYxj82Kv51CcKxXdD2kuXm*&_4Tgu
zJqUhPS6BaGzrds?h<}wev@XU)tt7<O*VX?U0oGr>*b=bP8nn`eZES4#!-2Jdo`UXX
zFxLs9U|_Bj<iLi8K8}uzPE1bpO!t9hPO!!~Khd?&-~W#S=hEu(Du{@I_?J3D@D;R2
z$ouHzf1TMp#^wJDTE64uKSTwkZC{yKPQ(0r#{RF&<{$j)#v+-})xSjrzws|Hv)KuT
z41Hxk{R98{<0&u+)xURePOajPr@*+Y;;Q!PM=XCl1;6pHf`M+Ko_}OE2Xmeoe@Y;x
z$&3`5bVjIuVzd8L@?@m8Tg>(A=URUlTT%7S<JpF&Q<6R6?%(HoGGx<=YWAM34!pTj
z*K^BbdwsIepTt)D{=oJ7On;1IuY}kB&yCr}wBp($kNvH0gLS=<pe*)?95IdAJH3<U
z3uRZD_NC?=HMJ|ayfhtf@_x>AAf1`gtDrMhOJ9Q6To5xj_V~6h!ROPJ(nC12mS#e(
zlp$urt_`=%gkPOe%7|$EIh)}ixwn*rm!f5yi&Eg!n~Rpa5zG;zDVm!ZtEIs>A9vqM
zZ$AF6OYp@6ljpgw6HOx+7hYIp=`AE#lm&ApKd#Endg<81xR~OyptqRn^egyMn$KQt
zHUUG+wDc;7Q-3Kv;6?~nMx<z7P9|Q1Y58@$mHu*8tV;-Ywl0!;B_}i97W5Qk<*k68
zf<Ku}p4EcVVNg`?7yh-fT3k=TyGCp}V+V=~IP=$zMFndmeG0tmr9=1a)<IFhac0wH
zb-jE#2ox2}#oK|Rf~@?FV^P6I^=1n%xY09g_Z4)T4@TA=Y^*-614z7%^<;GRjvo+g
z1&$5WSJpsLfh6CPCVEZ#C(R5d1y5R79<M!VMf>nQZR3cvf7;HK299>|6|X(*6sY5S
z)+N|$|EybNs^D3V_}8^(y;5m4y?t_L9ZDr$he10AGGfys`?bEtL|&;JHFM^#ojdie
z|Cii=61%DJ$>3WC3GX9Cza|#`lK2@=^6Qg!zHDUwcMI6|XSc<|?McsV()#uk2F|}T
z9dP#1&KKOJqMeyA;f<YHydwYZT<l-?*Ui~!3_FsW;LnfbnodlKxLmQ;(794QZKf(}
z^(>~1Jwn{9`a&p2gZiY-+?R4upv!zm49GEex=PXYe)qqDwb_J3UIp+=EWL_l6%sAa
zsomSFS$j$)YVa&WX}xTOgu4*3=3UNEcW{K+3{(xGB*cfoxq3bR3t0QU1{;APjY9gH
zV8(ponHBS?J(mYmg^ZV3g9&MeD~mX}CUc(;qlzMLwIkC%USJ*rru$YD8eiqkLVmg_
z-XINdR$ShBWFs=sdhJNKlz9Pf^Dv+J#HXur%rki084&*}Z)@g%{w>s$I)kCLt@*a6
zhX2edd2Yf2l_733yke7li2V)j^!Sq#QKM65)BudceRG@MC380OibyNONuXPV8E8Vc
zT{v=J1$Jh|*!vV=rI_F`5exQJ>2`%OX?*a6q7dzv<h7)&*qndD+C9wVOhO{aoMrZa
z#}+C4gki+#@oz5S70FD1Db_uwk?cgG;w?2|pleqK4avZYdF5&(FEz^TvR3PLh-rD9
z`UR*^fG;HdYNQ!3?epDD>iXi<F4v(8<N$i{Qt@VlYvwd^U&;E$>H`v7u3;+;pvjSf
ztMvIX{UCI8PV+UxkvU`R36D$3hfaP|72}jiyo}c8B<Ys2@mz-v+NZNuD~m_Se50b^
zvb<KMcS8&(9o3FbVme9yKSG~~{-B$6F6jQitBWv-eI<o&I0|t3;zy2>dfx4Xj-f2k
z(|$-Jt|cbhQmjm@*GVBJd0yMP(1vgyIRh)T{BPva*WRQ77-@lk#ePnO`b^nVjj*8I
zKpSxk-oV3J&DVMW+9R8TC6i)}S5~Usqt6lg_=+iPZ>UA|*Bg9zfyE`>u^g4SJo%E9
zdpZdp(;edS%f7FCYMNHkQ1EvXP*M=|`_SZ7bAi$Fy_H=8<%k!_@O)PPk~tZXK^VyF
zCQ7_sh9zl-+sI`wt>{{D`+86}mASBmzAkXeR{i`N|B@&0y+&5)Gp)xbJ52G153BY~
zUP*MkBYO>NrNlz}4&NW9K(qZVl=Lpn;qheyRC!j{EAk9-A&%4wb(?j+PSR9%{CvQH
zy-!VGy2d0X_(8Qq^$XGf%xv}$gEFiXHu6r`zIU9pdeR?ybNEE58$BnWkD_^&G|gIn
zM^?!1Nsl|~E3zdJBJ#DfeY}>&?NpF7_bc8}8|v#Xz6wfRYwPGH<BiUsu`)nXYlYd=
zW0IMB-o}@A&GUQc#qALJn52E_a=cIp>>RHsLxW^Yiio7ZD{7CK`&2Y3w!amr*(+Rn
zU@Fd<jCt*PifH#{qUiy2nyTRRq<ER*qI%xF4=jhvw4Kj25I(yDi9MxR!rc!Sy)Jl`
zP&W&gxkUV!AMjelO&xd#OCHV_vVNzrD{v55ZCI`xCPwHN{VZG6*xwter!6C5-@kk8
z_Q*4X*?FwTw+dC(b0(KRdCjJ^VWRT6hnW`aO?mhFBai)0(=Cbv@f0Chae5BBOM(0a
zR#Zkm%(^W@6*(9nWpV=SC!cIgiaQ}Ty!ZE~0J@5LxW=X*^T9Miv!dZ_&t{O=!536y
zMbjmXZy^Q;GYq{IEy6wDLcs<%ny#`<QDZAQ`CyKVq*>Xa)3X&{eK0Q&S=nW+@jdA{
zv)NnO<J$8*b^l;dims{;tMMb9`EW@|vuYrr2i&JST-J)L8p_uAnP+ggqT5?FT;B7u
z$m4L;l&*TT72KRjK3ucWtR5ff`BheZxb7HPJ+TOG!+@Dhx8CZ>?Vj!0{ll*qx?}vy
ztz=}D6{{&ebGCS=<@(XLh)D6dOILO~?i_8!_lhqF7w`5wJNlkVcMG)j?+wHp{m9b1
z1<LsMhD(lq7De7#v%a!FK6v!2toPQ2Yw`Z%_oMAvI*Co}m4lg6q@5N`iLHd<gN0t!
zZ^R()nGCwsWdoDF(PHmkxxI(0cBK8!Q?;b+M!KVK$tDL&SA6!`dyl^7gI+6>y8T%?
z((Wgdqn%=(qvc-G{wj%dSnhLl76XW2D7Y{PT@0lXhT08-+`-UPU}zb9Q6j!)xO^FO
zeHlToxtlN3j_<h&UseV`w1^)kmmim|AGeYppPL`gj^8&O&1)k5g1Y`U-26on{Y5MM
zK}mtcj=vN`04OPt`<>YYB?T%K0cxWG8an}641u7e;I3}qeYZf}#6bOuK*P~MP*PyZ
z5M(A2WT6{m<rZX<7-U-!WIr18XeY>#0sB-0>!kY|{~Go8BVs*AvEDma3<J*ZIJ1ch
za>L;gaUm7Bur?f)1ki1vf}=%(V|9b$8G^a-(1eQMm!rX{JHcrpwBTS)rfx`<TSyKU
zxz`V}oPQS;l-Q6n;{Sh&3KGM|E5axKhzi`ojyCCzJq5ZEM}4?|dI~Bcu$#05-N+ZZ
zzdZ$`!Ra=kSves<eMsgg@<<mC`Unv2_zH%IfAbXRMV)bvV)*ST=o5)p+=(LLBfg15
zbLd5Lx<_xiA=ZeIaR|B=A~_TQ3{0u<ZPB2oAcdqvo1u#bxbZIuKo%Y^1BwcQ@h|G5
zjztBPv1((n8oPgq3O+7Hp&v%DGe(L62rfpPK_ynE9^&m7?TaQe9K$}i8Naa;=c@#}
z(H9q#6D`6>O#uKDjtR~Wfd)*>E(5heAC0Gb@En>-yfTEiNl6X>NDNYb?ATL~?G}6Y
zKRgAD;rHF+<`Uz++K>SRnBy`w^I?*o01R-9znBXHP%!Vdq@v1*Ty7j?JtSKX7etKS
z<)ZFE(;YTJ1z!a7k3j)P_|`PF2V>$(B?^E@+w(Bke>w7&J2H4ok&1xCgPwvH_~@}0
z$N1OZqJjlbjli9>;Rb=D5Y_G2P42Y(v7}4waC#}SlHjy;-L#6_<nK3efz!!9m6SJ~
z$c5Y^w*WdF5J3lk69Os8h?D{4SFyS&??z(^`;c0oEwK+-yqQue0=*!WK9x(kQkl;8
z4^hFjz0fuHxQ+G*PXKs)lW?;tV_PpdTRC}sG{ZkJ8K#0G4~hJ|NdPt}sPcko_9(oZ
z$T7jM;%r{sR|%e%N-Q0X$z&i094Wa}Ldo%D=Hnsxo0J83e6m0Wh<`aUWj__ocFGGE
zLPiTS;e0mXfo<T1WTxLVT)rOe!+`ijiBJG?e5>I8q^0a4?o3Zaj*lss=QuW~3hPUN
z|7yqj0*KVATn_~JmGdGm-gha-rvk1(#43zqF<NAxlF$!8ya~x6@E~4SMJVe>;sL;u
z9@2!S+g75EZBoQby;{XkHxp>LrfIv;v|E_h(QdC|DrmdVG{TjyjcgN%K$aO(XfZmy
z0NlapK&D9Hvnr4&L}XD8G6jRYpdWIs3gpzu@`*^h=OHW4k>7ZVm-33%^h2{zP(LR!
zh#fvrD;rr&r2a&t-6zhuXS2P?_TGWh_bHwgi1(I)1dL<70pR*HmYG)xf`@q}0+gHZ
zlW3)Dn0Po^iP<sV7x~tUD^HLFa=rCf4?N%(0KDNr+yDSCG|W$s%&P+87h58<n&#(N
zq7s_Vf>t`&_l8}y#LI>ZfiEo-&DZ{<NQuh7$peD`z-a+8<IY?oD&S6jMD<><u_>?x
zP=jOCS5S}>o6tov>Mc{iSRkdL9*E-r(<<cyJai8Mpqra+g+LCVVmMJWHy+X&GKCr=
zsWeepZ{3hTlM*=`DapWjY*cZY6wzxA$Tkhh6MzDnmE>sh*N80Ni_qogWPbEeX}ys1
zC}=(!>X%7&hzw0));*6YLVSXtJZjpKkMXZAyKF*mTp$;OQj1JR0D#p);CMjlc}Z3k
z_9O}jBXz)q0N|iKj}i?ztwrYL2&1pZN_RpO>fxdSz{ySQM0Ke(<GcB4>}f~Ha{%#N
z3IZX-ORGYb#mL0%@;nJ};%@1ym9#yNw-7X$7n%%?0^-K8+nrc%6u?4-kU;?uG{F!3
z{tGVzULSWe@BK{xfKS7TdSnHnA5MFIV5|WzC>nwd^fD@V!_>wrlVSrEeAyJ*!%c%7
zruke?4q)K2EQS4y!6s;+MIe~l6xxTT`-q3qNfqwd(3YS>;|!ocJ>?53fR>0f9S8CS
z$bmk}OkL>3P0EL&Q1beeOfD$7R8d|%I9@`Txm1*(Rh-gCSx!Y&jE2&ZP_a2^D3v4e
z{4{VL45AQ_T8`-@IaR*ofEFH~YFg9H+>tKc0cJL7c;754z42;;+b+Xd@W3_4#uCv6
zZw3S))!;|0^Q$j8J)P&lP^M#7TBOps!;D}?0r@;QHV>G`POYaB8Bh<)2`)LLM6`r;
zdAY#=bfZTF9O!%77}n{BE@Ld{hIYUJsdsF4NjE#XCJ*8#UzUt_b^A?sPfy?ifRGaa
zEE)%Qewg5f4t8FBX=@6cMT&PY2A^3WP}Eb$EFl3YnrIvi;8+mF+w!xc2uBIHQP;fm
zOoUKUWnn6bQZ+;Z5<ro|C;=tY5R83D(rQ)qQcE_8xeXk(sGtHk`igg%LJNuQUIFch
zhe(2b$6uLEqZc{U?>BO~?{;E&#bDaqSaE}o-PFKmDxB8mG-feCk{5TMxm0o=E-Knh
z>zQV9Zn)a8&PxdbpT-(}#xAYqmDgaIr-wb=fT|Z63dtEasYV^vv5wslgbH$MG#zv<
zpKcTIw1Bn~%MGSqnr;F@%d`}DifBa2=V>S%zBvX*uEi64f<P|99h#ywm{?y~l2eH(
zs5A>fa)gJF5y@V+RjX<Z=7<d3#e^uLs)|t)#eIMxez3|Y^apb2JUTXS6QcT$%;xmy
z(9%u>+!2Bic?;lyn<TAdN(|sz0fA}Z#tyLs?Il+XbA*Wygd+gk?AH4Xk9t0=quQ;S
zKWX4KqDqywxQ>N5_Ik8UiC4F;CubaRkNSaT@3y3Cp}27%#0>!W0e~70Z^#RF2P#gp
z_W3GP16uH?9pw(<SnYF-dpyCOrR@jyG4G^8^QBq<0VwBTND&Pck%sE+VIiwNl!gc(
zwTfRSR(a7wwfhD$M=48E29wpG6{`Te5|H{lfCxtRsDIW?o!76OH|z-=K9{tC>uIOP
zc{;+xlYy+~wX-xp0N2724M49&W=oali3eb&Fc~Q_IRRjrr8EnP_|=Wgd@)?WxcICm
z7a$QK-XgWhD+}Ik@4efm5CRYnt>t))90WfC8BtPJu;kUY6wdG^ZHYFPlj3X#VYOZf
z`>V;bT`8OfuonpK8-s#FAKY3oQ4EmF08P#0>c{DsQa2<`pQ4J^?2V&Vk%&q$?}77L
zfTkm5B8C!4Aj`ICC(Ezq4`0h31=u$!!OUiua>#jfH3en0?@!8m-t$I(GMlwECalpL
ziNGmS98nK;zi`A`X;@zW>*Jp6rLfMN4lE?~qYvwnhse?)<tBA)C*?GD)BWwy2KFT3
zD;qE2gyzCr{_+stC>PbYC*8R8qu^LM<p=0sY92aM^sAFAF9qt!A8Wx0B!`(kWPi-%
zU>yK5s7zJ5gQV?Ke1DnPmO9&+N=EKTEY<>sCPVVt$g)J*rffql5&@#f27DK(jM5eH
z!sik;z8?KFW&36JHT_#r2hOIfVGZj=NJ`|HD#-hqPrb;xnq)(V!>g1^gaCBC*rka@
zeWNLfq|Ker(?`ME8&tqUx-JjhZ6A@^A8Mu0@%pzN-zX=)4Y8C4fBh9wL9>IPY&NX`
zFy@T>bp3rWfIzXOMSUhbrU#{&z*YDFH4~i($B6|Oq(+KshN{p4bNoMw3)d1q0i8x6
zk7|D8p$B>2{{Ww&Ye?cVb3(LD2C{5^B7!MZw4iFJ4T`a!=A@}ZFf}{fJJjp(d5!D6
zuShL3n#>bTc6PtSmK7(>3z5+x6PD__ShM|jBk2@o$3v-97(n^#i~@jE5L%k-5KT{p
zz|aIe$ISs!{%x#5*8#vx1X7O*@I?V_9~9esVJs(9l<NB|8zC?^`lu&p03LJ_I=9q#
zNf8`H22dwB?kZ^mit^Ed!MEpCbFP%PXXt-ixmVzZR1h#l%SemsHb<PZE3^wa!&`Qc
zr$SLLnzyMBaNQRQgousie7-sz#;2!GB%|XrWH=M&r%HW=(-R4B>PB4oAVY5Y^dz8l
zKjryttzc75AVTY=^FuO>W`MzIG%BzI!Rcob%tb=UpU&eVzfDDZ-tQZTfB9tZ;Xmv=
znQM=`Vm<l4%4}BF`Fxx2P563c<#1midS>wn0gWLGapZ<jZl0RUB#CG#*JY#+EOATP
z&t$x!If|*r0kkRzOd#qhB0cVi7v~pt!;Gr|;LO~VM2gY}NFVGd5zv%-BGb?yXw;WF
zh?A5OS9+LCp0pGXOTRqKWNYCHXYNUO^jYL{$Vum<(k-4R8h|W~Kt&=iP2PlGr!s<?
z5X9r!wDT3BR8-0%@C6Z*PPjB<4{m4jWvFT1kJ!-+&_M1`$Lr+SOxKZ6B3IX<p-83&
z!n*p}Gm_+4=mKG}>mTXQ%uIa$aYsw`v@?i*3H`i#_s%`%d-n}K(n{=^9k$kT#0aMQ
z>BGimbM;NOWaWb%tqZkE8Sa^nJctS8!J8Qk#EqPNqCOBQNj(Q^w@ABp=9P53Q%pPk
z?H!j1`k@LQYKlC+MIP6Q4|z$CT3#bH)ECJJJ?e}e^Kl>UUk!|#(!XgLH)X8-I<DDR
zI&iw-SNHaV7Exzsvk>009ka0O!*1pgV!w98bS+aNhaFUJ>{`U$x$kZnueou5vaTU;
ztiu_wY2<M;lzOo6WVtXw1LuF{xlOun%#L|x%>CyNvyxr*9_D0h@LQ0gW-nA)7L*J>
zw=1f4S+-1VKB@SU_@W7lVO?o6r#VH9$+GA5I@+B~Uj^|m5p`}2+uHqK`yl>x)^qbi
zZqc4?@hKfJvswA;%%ir?f)rt#`lAgIS1+9HWT{+iIs3Rzw)hi04MO<PY3PoQm-Daz
zw#PB*@QIhpoFgKWVmyl1{2W_p@`?J1SNVQFrbC5~+~#6*ymuE&6YjYzs24+AXZ@Fq
z#Hddy0sc$j&(eQvG@kYG-0Bpby1Qr|X#7xh+?C{|+LPepy|-FU@;>-}Mbc|;Sd+;c
zSkc75I7}flZc=2Nj<*h&83zG`B)Ni?->FPf^2=@?X08$?+P{4u(dNJcu4AS}jYRz2
zSa&3-kMXZRnaypRKHK&ea%Xey1U+z?7PUzXpwt|dV4%>($#Q`B7lSlo&x(jNz6tD|
zV^^i&SkY2ikPmCT0ODT;b7p7XD^+mF^is!iHFESg20b7<FM4O<0bS#FS+qBZe`T7V
zTX$<^xL@dtRx+osP4q?Mv_fvm(Vh-BZ<A$h4Pngjg(txLXm7yDA_Qq!X0eKDR<}X?
zYwlcQTiXNRL*$K@w9MiDvf5TacspYdV_0M3IW;qe#zZ;#>i|^nzF&N-AT7#bSx#`N
zFFFOpzm7AT?AnpcKQ3JK+-$vl@^)MtZiXj{G}xhY-|VCm;CqGld>b{|>?CV}ugERO
zmshE0sU>oxQJm+o)Zp&g_e|?s>+Zc1UeQswL`y_QuB@QQshh*%v^TC}f*#2A!&d|~
zP(jk~4St=7EfSBQdwxmN)9P*pGl+i)W%U{#ZBgUwX=$a=*e9G=Ld#VynTJaXf@r^>
zi(OKpAA(uJp5M(DJI-wKu;Q7lPns`5W#MB@$`g0v8ci?C!;)AMtO&s+nJWS_n<~OQ
zm$D_n%;x*OkEs;Su|k$B=y{^n3)<2GtUdR|yZV%`Iv&8Ez2^Pd2aL?ypDsAgY#t^l
zdm*<XmknnH<d(FOm|Cgry6a_9I&?|7D$x9H<x5v0Ge+wEWHzZJmsKY|3dGxR@tr;^
z7IcyGhlq%$JrA>3*fl}H*g$a&njlE;EJiBPan1g**S^8@$;}uvp-})OO{vE&liPLG
zl44FEjEw<K7L#)k(SlaZW-q6ba9re|cAwzK5K>|Z7NRF0WNe1z0f{t^JU;Im@AS}S
zN^rq0&P|U?Gd-<}B^dKrbHgPD=xHq77Whs;`l+4jsjD(yGeymI>fJZX{5I#{`6sh!
zYZhqbA}Vzo#dr3m5bDhnB|c^2w>pi#Gn-+xmOYLSdA$E*HbG6P%F8E#&koGdU}m%P
z#A>UJ_@B(?*UN8PBWiwUHa#4kwx)_(@>%P3G8S&d|ITbO-ZVP%JF|H{hOyhu>RIxY
z0xRKGJ#b%+_vNyuwfJIXhRg7?w8Mi%jV;DLe@>@Y<y<zhm-PEXHO{9q9@;1=>SH3}
zonBw|THerR8cber%GSw#sEO4d$_Qf0QTDREo4se2b>BJP=+IXC4byN*mUE$Rl{sll
zf24Xr$lc<zohiI}r0$H%oA7np<IHB~FQ>OJ4()AZ$H)4!T;4%$IoMene0tgf;$Mdj
zS6!JWW;x4an~fehWiz)e-gmA3+--J@e|>j(T(j);*wb!!a(BVCuDa^658QB?#6k|@
zU*4M*XIQ>aS&NuH`Rs^Oe3_3-aBIG-A$N>_G3z{Nxq0*i&)YY9{*rt9cj2co*@pA`
z9y=XIM^AgpSQf5l?~-X7KYO{z5_WCGz1K^kE}3MwB&(?37wqknY0$N#Z2f#t`<+v^
zqR~pK-`-H6_s^}n=T;3C_gqRRor&06q9$iO#=5;(-liF?n`-WlfA;=aR%f)K5xGCH
z?){@`%IK>^@BZYW@%LJi(I!9L!8DD@Rs);yHx|u<nR6!JS|p9Ps3Q;NE=z89m>7RQ
z=s8%pCHb|-$N0wz?ctKT<i<dn@y~IM!xba8_2D|>UmX#LYYuE{<5R}lRXwD`4KKRY
zNs{qSF744~_?49zHj~|CjiarUE6WR#CVQa~M?VTRmsU(n_Pu(Je!bUR-0(3uaG)ja
zbU$9$N;5e$(ID-8j-3BhXL6((K{{AZvr3&ZAyxE}jt+bGkM<=YWVHZ`6pW)5DlSDX
zS4(Cn1-GcB@RXtqs71V#qROmA)=1Gb)lyGL(aqJ;9!Q-at3$C!pW>)HDK33lu8!VN
z`m9CW8Bb}(fI5bk(#)B4Of}Nyn(7!j-<>=7z?UzHW@!*TDZ?%<bLE;0IAz6mTZYrK
z;rvq>u9q@rqh-KxD}_#JzKMpew=(<(GEswIX0y@fl<YNe+0-o=K|@*6zP9WQ&&Kah
zWJO-eev6V7t!bQpBP%{3JKHZSaUi>UO;(CUPHan7MqF<2>TzbXURzGVvx(-EoYG6V
z^H1eeYML_N$f-@pMfA&oI>CD}a#}3%mMhZWtk#7sxx0q)4A<rFdp7gX%j>?BC&b9>
z*T`>a%NtI}fA5nwK4{+Dls9Ej*gz?OvcXjW1q(xkWi178l563Oyv<964^I?qYrxWG
z%fl`O2T!oH*<yL1;3%%}gr)TXpW?Fvc_+12Be1ktBk$_jsu!l{?kWGgp!HsjqNljL
z*F>xKnxfBv9EQ409V~6u$oY%6DTAd=Pq`rbHhHkLDJ~aGFF{g5`d#IMg@c*RHKoXd
z-<eGo<!C<Tn6<X6#MF~wiVt5l{SZ}74Evqg<ZHi5y!g~!Sz*FAtl)QMlUgN`1=a~|
z2`RmWM*Yrg1}Gm~Q%MnTLffe16{zG7DZ$N^b;w$BYgCF4R0v%v&S5H2YAQr=)zYx`
z?55@n!}sTuR4c+dqxe+x?NvXnDpz)?zLzU}GofObdF4HIS4~rU6-Vc-Ce;sWT_tm!
zE`nWRWRT`CwNk@&PbW1|GPU+DwR{dW-O|qfRh4dP^(^|%h99c>a%xG`P_#g2)Lr$^
z2Bm0fKekN>8t8t_;{Q>uJCenJEK~h+fHJ8iK(X^>V;c1pr<2M9g0x*flzK|L(`wo;
zGATD0YP^_}@1=jA#L+RgqaHq|HtVJuDMy?$?OtnAUR+c9R#2E!+VdqqHfc_6qpKrf
z4T@vego@Fk8T@1ABKS8!#YQIH>2gUJ`@XpHFTrj-PtAF1j@jv+yH9&omoX7e97FUR
zn`+%(OH+fO?N<rxpVTh4y=;dWak2%-CvoJ3XZGPsQ(tAW56$sMa=b<rD))J6;W=J2
zZ7NBN_C~X4-{R@lp;kE^uB<rIAL*oBFaZhOQ~KejjW5;a{M;9zc5y{ene7&fG5r8V
zoU-CdZ}iZ4%8zZd_j)2YUQ=%laFO?s1aE2H&KqELP$Lu4Ca~O2l)D`rs~yp$@`*kZ
zI<Lg_vrY1I+tn29#F~N8_JNz9Z)Xc$jmczP2}@6{VU;l&ymawSY%KqYz&j`9hte_!
zqlX5goi2Ya?Ym~GwlUErHLr9hMN6$vL;X-&<EOIbIpr3oJ5u32ubMO^F1FvDSCW2P
z6dsVH{BA&}dBA9BAn96rL6^31VGf`k@!<7cTKR}dzhO1Y&R?Fg7Pmf%cNa$A&8d{5
zeI$R6o4lRm#9<Y#EbEo3TiC9rK1f}m6~)mf_H$V4vJP!HJF33z{=E^iTSMmRLl*KH
z))(8kt_?(#UJUqo$5W{N#{2tU!UoZ&bxDsb)!dD=4-W3mGmKnYy63-s5qG&;on}<y
z-d%iVs!jJj)z=?qcOcR#Bi8rsB+_#TULNwX)QOI}7xVsO3XQUp!(9c-E(uHB7edOY
z*X_>t(p+A*yPm#d=+HfDe_!6YFll})@F%cE_7R`bYH!)-K&~A4mg~(sE~TxHA-4zK
zte@+n*N@0d6(}4^UvEn&RL526CO6*?wrnmwRH~XoOJB^L2f7p955>J3$MaoHbiP+}
zPS0?{Aac!Mj@bR|c|>ZL%I8wUio$Vj^$1$sQDGxP-EO`9uCCZMXvE<J&T_&){Bys9
zQ8cwi6pfML55ti{Bfs~0uRqHhyfd1lQ6_!0XkI<2iCs6EiTjkfo@Qe4dB)jjG~CGi
z<LCMC$$)j$kInM)amE9I9W`F^)y>AA0u4RZ^hH?ozn<=Xr)D&EC_jFAs_8)UhnI1Y
z#niC#)Hb=U8HdU4$IkD~MsxBCsa+<`LmC#;lOrC=K)mXbg#tAGeQ3=jEVVuM2c#o&
z@<)mi)rQ=+_og%yFQ_L?>Ad4;k4#S#MUb;T5a4@oYC(ox;{l)HgELt&XT2YAg*{-j
zl3^-(z)|yng;VC-<OB5D1GY(NH0=yCiy3>W^aY8Tvub7+jX`h4%qdSZE>>yo)ET-0
zFcc!i*E2&kVaA^-b>(OVPHleGSn3-8ED0uVF32h+WIRi<GZ&te6p5JKPc|1#l@zO;
z-R?BMWh^PNG5dYrT#8jvnsx3guZ8TSgq+6Qs)2<<s)VBV++wJOvay6p(cEmcg&M1b
z`sCcys)gp{EiKylPt2CLQ*Ygom>*HKyk~q1%xn&NSn9Ig(o3E1&9^j|6gTXd@BCzG
zoGNZ|G~Y^P^}tx%jDMj~%*ujQ+|qcV&d$nuQp_e|p*q>hHdV~7cA>n}%E4Id(Z)i_
zzLg`t*b~-8BCqwc4N)hJ#X<vXm!N8tx3!j&wR^ni^CIgiFv8u^<T1IJxoYjxBIZSF
zqeN!ocSh7-!lstlCQzX%;L*}c4;vDWLOdwdj7<P`9aqFwzcfXz7+h9+9S6{~`CV^=
z()3}PqFW<VYuRwHn<5Ws@G!3N*0{3TPzvDs($bTHhpWsmz{WVPXo>IFLxQ(rYN|v!
zXIn;mZ6<BoYnR%qA}~P2KV73W+gKu(9~WEHntxy7WRmUm=GLP7wOPMf-$>NH&3gE%
zY^L<g>bszsAA1i|el3+tn4xk0BAACYlT#^0cI*-`Dgj7z5A+lf7<jt6F2BGAHs!4B
z-)XD`-#4v`Si321*I`xDUTc4&)V{k`q-Vpvt<%1bv$2=e0mthwm?hq?;c(j6VffL5
z5pM?uFteHZV7$nI8O&_<JODGB4y<5i^XS1e?W6NxW|QA+R^kx{nAtQoTX^*75}4VH
zFk4Q2!~<qFYt7br9$f}An;T|dj~)qtnN3#nE&j*X!OW(H`A_4=H^9uMxA{)Q<C|b+
zv&ekE_OUpa*_<>#+ITDpW;W?8AZ(5@U}jU&f=ts<9?Wb$wt)LMDuJ2JGz(<0qbiu$
z?6shoa?}7bn<NVq-4ksvvw6kxl;o4UU}n?A^33BWI$&lq(vmUli9VRwtg~e4ePRS=
zHosc3k)D`>nN2n;_A5`#!OW(n)kTx1R$yk+$BHZR=|eEHS!~5y_td`U>E$Ua{;y9T
zA3YVIv%bpqtl=sDv+I)9f|}2qji23kY%T2b%q__NW`guk(KAHmGx5krx2B%0Y&?^!
zdn85Yw9e`z^YxLeq|>H`lRVpFg~v|cy`7XaA1kLh{VH-&^?9t;>$E%Rq*44>ljL+j
z>#RNX`1TcNl7#bJI>&n^&d|rsI+BjMk<R34&iaoX4eFc`z0O8yj>cb|sYuSIy_*cl
z@J&V+xLUe}h>L|zJ;xq2>XD1eNQMm#uv=t(C@e*D8-9xDVrTu!9_}0!9P}s>g8?5B
z?UDg1061vyH`WV*Kq#o_{}8+k^e`r7Ch)sdXD|NK)p-7x*JZxQdGeCTF{XP>3=}GZ
zr0z9tfRpng7r($CF878o_;5%80CYheB>;Gw;ZtJ1A<rau58!nGc-=tpBD=W!9~>8u
zRtDrA0&>p*eNO>pEs)6NRB;2}sRsbEynwt2U<Clr0l<nE@ZtsTDFAAk{0`E9&0WAn
z?O3yDtH$SU_LpW+<u>>M(Ok*c0t9aF**>;blQB2fx3o6@L)colcz}jPx92VZ5D4K7
z0C-~nMI0a<3+RUe`biLj48S4><ZOBG;*M>J#xMBnllh!tKw%=EQ#zkV1&G?pScZbM
zt&&Ubu`togm;N0WNZ4{T-~7YY0s+;0{uR1@2{O3%3ivub{}SDpT9@EZ>yTXQs7jZR
zblK1bg{XSlwBAP<z23Q<t~rBV@5Ta8F@*C%0;B<)J`ke_gzEG8|Auk{Tuvl-K){)_
zbW5PZ2}rl&3$c@pwUJr9dF?--+$<af)GU_!@qwDfP`pb_uvKn|-rEqpI=p;cwBD;=
zYXaVd7;FU^7#l(_A4?ct(}V8C)y%UXn!A>F>8OmSF<QAPPOmHF;fI%wZ3Nemyhnd9
zU2Jf`-+*rXi`anVoX}Ka?91HWLdKlfyo%h|(3*q*5YsKmO?vY-7G!i^<q|<gH|OoU
zx1|MT<z*o`-C-rIAvF^*B^|Nv$KKU6{9$yX8$QLi%;mIyDsO15=oov|GnYFsSMzDM
zH7lUEB&@eAd7=t8Q5#cVUAYt=JzE#k^1kVFeQa-i#xc;_o%^x7w7<W6sU>i(IexY?
zV|FlicD!<Kx~`+Mqq%FO>tko@;KX=q<7n?F2=soQ{M__;ZshY^?{q&1^frH)8=sv6
zvEI2)opWPDGm|rOUs~p7KP}8J{K0y;5t&+F5LbN=|APhlf5Li=Ib1Ru>eG~+{%fnF
zZ8wJ`chlSdusROrSu)v~_PukQ{Wq+aeHiHlqhkFV>*Xs&&$i<K%8zv>-eKzcht-i)
zooVsI0GJ;;wmPnk{LYV6m#u%Qc=kI#_I0Y>pNdW6cYZ7ev^v)O$&dZh>ezFfA8Y=3
zi)34x<C&qj$FcD2o^9;@?V>H^Ol%hQi+#(!zQ!dDRz<JRi9_AuRP!0sZeV|G+K+m;
zw3|Ilg#A@O7~fkOxw$Zz5N?*IN*!EtQl(v9R<XJ>UY&-eicBmIV1N)u91L@v%F7H0
zqggoakNsNe^FKww{VI^wa`a0Si{DZoj`N1QS;*-_X}IE~#q^X?wxeUOOt$XwY=UVJ
zx0UlAAN$;k&`h0aE~T=YA)ZukWP@UyqCe2eA0B8cN`B^&HI)Geb=Aa?^B0!V?v2mV
zUR}iu(XrX0haw5vgqhcpzI!kF#1d@>b0kB{GPJVNBOV@Oy(?oEPNXt&T!<7P&2<Dh
zuqub}Qop)-DMdZnmm<~YWgir1;`Hz1X*$UZm&xOx0$7jSU>KVApl>Hc0hZawn~hM@
zdMe|pM847`C)G73UyfwB%&^F6P~LB>*H>s}<wdx_U6n$I_y#S;ngKluA`sBuBYfEg
zO(%I-yq{J)P`BOj%=da(*r{zLW*Navu4@^J1vaLdlGhk8YT}82=|#~Kg!(sZfLdcD
z6~F+y3UHNPh@jG(XuO7C@u=Z{4`RJP`b}QAKgNd&G;!7`Ml|#lL6Vgyi0bysk)h)}
z0o@&!9bXB_3=Awqh8bPr=%J-(dNa@8B4g1;4<?MUnLfI?!H_{T$%z(l&K#6Ei+B~T
z#i?-@i4jD6y8xp%zi{~&>-CNqP^DWI9MaY_axSh18(PyYJI`oNv|CB3OX5&=4J=2N
z8KN@tS?ijqjPwvG`dYa@3c2M9$MVwW9GSr@Ng}ERO!G&^t|PdqnD%ft*+;v_4rVW<
zMC-{PGMdjGg$z+?AMSoUHP6VsetGHqEM*zuS^L@%E~Aqca5Rlv6G1)_lN97K62iTP
zu-xQezOn^}4#rb{6cRYwghO9V*XHlP_0=)h4jr*&@qXR?w}V-7E$$}eyxsZzlWE)s
z?@$=8A~~4q6x$6<#$5o-h_HAmdHa>97iv}ot96b<Le11+m(0)k=qrgI2?iH9PyuJw
z6xr@t%a;5!_dCsDP$u9;$LvyQcpLSKp;f6R{Y_o~(M*ZghFs`&DZ9?XY+Nyd0&42W
z?z25j0o0<y)N{g^7V2LJJiqEs(`Jr4$~mWiVo->d|3(MsHeNBkU+>ve54>YgpauHE
z_;?&ck8r6MX{4xRCW&FkSZ`fG<VL0Ki5*iViH6o<;j3~QS4vM2OYsP^SAb#)`aT8E
z)oLTBRkB_!^kK(o;ZU*xeIGjonJoyy>~;Og64_Ro06l7-Ia!LwTr6CgQ5ABJZd<nL
zz7`#6@A(QW8_U_^qHGz{g9NxuEieP}zobcAftw}gRmGKgs4G!k9NOo<EiFoX9O?-Y
z{qd^LT`QmS?klQW9J2O5@X@T-(nZp3c-+&Wa*8Sg(HjW1S?*r;o>QH;xs226?wY*Q
zWG7sP79}j&dQ)=Dv|{#tWJ}THX<=1{(wTn#6YKq%+XoumGeb~$dyRRzDS7wvt3Kwt
z2<02n<m)sehu<W<E3i4t({HaDE-4c#v=7fWm`9FOj=w8%^U60~t{SQSB~<K5Q(!_)
zHTr?6jEFnTH>0c`ZM<>gO;~t=`9-R+cKx!qiCzU(+|^^9E;mYE(iB?DQ;qj0m6hfk
z7T79Rj}MmJcvlc!XlEJv@i}SqS6M}O;Um}1Pm_DU%Ij&09I>hsGfdkRZR$l&6FMgr
zM7JyZ!i)aKdb^8U$~!-AJm0RKrYUx7Rh`^Q+OAnrFMdAKIr*z<`~7BkvFD=d)ZX}Z
z?M`>G_jczL*wCv3krNDDZ5qnFQ;*Of`kn2XruZbxS{_JrxM)a+G!SWENOcV2t@%P_
zx6{Z%@dhiaHgh7mqLJ&&lMvOKnN#^Y&3r*`Le14?89!Ati^M;Pu&bG6UfpRGr+5qI
z$L7v6SGFphc^VyBGk1Y^w_PphZA^yRJhwq*yKel``23oAUc22+LyD4wMzw{j$(5Zp
zXPzZ>)+}7l-z9b12bBb#f2k#UskFhh=z8jU*W#^xy<SXD31OebMuu*$7t1f0PSd?4
zFQ(s**C@?oKKD>XbFV+4NHFVi_p-W&{ve^JG)L^5?d{0D!EAn^JoWCCd)4|Mi5l+;
z49?l<_wIcxFA^$p=w3D2*B`0xc}Mg(XKzNgKhny7<865Nnx&Y*Sf55&Y4SM-g*zVO
zy)7>9O1#z|J=_2EiMG6~b=~1fLh{74LV4w&*M>{U{^!+*@~Xx4NA4rZlbbE&@4tI}
z_5Qv;wNG0rO7XwIdLujz{-3bka~pyG9oGAK)yxzw-trgL%T_Hl@E6vL^$?K)t&Yc7
zFFcSI7wBK}H`cq;z+Af_VTzeK+q=^ucJvJ&Su=M@bGO6bXe+U|W<j`jx5wk?JAv-~
zlA`9`K=RR#9L@JDI=y?t)ki;xk+&AWr11DB5bND;9dQM>zW0x|>**xEHWMN$n0?k;
zG;6mKrhZkj)oyserKXnogBJ}*d!xPHUrt@w-|!&qPt(<rc3L%$wvtH)OPY0iBfUp`
zgRI+|B<x0@CTZ{3>PRQ??S+qvOV<p%X$w|@b~(_&P%OFhY<u<#dj$vpc!C#-!S|$_
zn}47888=@rKE_nx%QET<#>dbMep%bz-&{SuU-D$fknajRbB{XlP6Ij^9|IzkXUFLZ
zgMZzK-<=T%8_`d<+=pTZ*%8A>bi{OQBPHvp6%t*(ppeKmSArCx=^79v;CqbqB9N!K
z{Qd*$O;_~0sOxbF;R*g{!anV<H4^lAiToS@2-*0s1Hd`J+1U+Sa|wI*5<m-Jb<R>W
zXL}MisWypZfFlG(;zAu^ApntVbCXKGBEaDi_$n^Z#zo!Djf#P?M+Uf;7zkp$z2$*c
z75~y7+X(?lV!Is=BnmK)!f7OgRx4p$a6b1P0ls?dhb50%2AqFe=sjy(2S|NNL4Zvd
z8P0PJz?=a9^1fjE?BJJe;TGG$f#sNJG^Gdth@&Y}F(LlKkW=*$Ai-M#Hpc$WkBz#$
z)AcJK^|%iJx7xxWH}UmLSjSOptq%U)C0v({bB~Q@7XWI3$v!GU%v))dP#6_Ng!N)L
z>qD2B>41Q8jFW4GFA(Vu2LuSwZkH$nw7f<yMeghV&X19P_s6nFBEM}%-ocV1xSeSo
z!!%vV`Ao^R%gO6-<a`3L#*XAF%FgocSmd&k>~bukJyyM({N84$Mmf1mFuCcNlg=3U
zdYp)e^F2oA`&wbf(|FCr*gK5z#u)ND%dwWr<hJb|Cm3C=QQ_lU;4j|gEf7B7Mlq2?
zTOvT!oJ|Yf9XEk!i|ugpY}y(WHHAp@Man<|CfaY2a)pZ$PmB=Yj&XKP@;*x$fTCPY
zOqxdkLRt}EkgRYwiKy&#^`To78qyAhy>oZ-tB?6RKUTODvk8yY!ji+K_>d@n9Y??!
z{80&5EuEAeGyD^7pzj5r2WiQP7X`G>03M8S<I7IgdRX3Rr~7E2{UqSL3js{Yot5|;
z$DHJq`M&Ntty2P|_Jl)9V3^x^>}IM)D|BHw?WubLIS+7$5x*M@I3PenZan#Og2{Hm
zV>o7W6WND@kZS?ax<D~NH#izhlmgmiqPSIFY!bv05Ogb2QT;i%17TVYMmNsg7XUum
z_fm+E6yGU4KY)f5D<f)^`7&)>qXZy5=`d&4h>q_Oxs<SWb_kuW>q#^u8vVNIHmriu
zEj>rvG{nnq8t521wmKeTy;aY<f<1b6o#1GIj|gp=0U$tXOGUi;*%XzB<g5U&&kaBw
zfiomqayCam!#a%?AM1|D^+gg|bz}FJ$q@wL9)|oLDn-O5Evy5|hfcG5NPZ8Gh1tfx
z2+7gBl*VgHKL0RwjS}!nN*N9&2U(iVC31KD91!c|VZcv6OoKR*yCV|bs^l+F#_64<
z=tH^EV;~6+$$HGlus8@qWxxl4@GgO<7&lxjC8k8n1^NotBn2TiebL^U;kTV}TLs~F
zDTK^40&pxA2Y??)<OV}b0Q&XorD8xUDM~BTPs+961;3CKBB1XzVVd%k6hO!DdVA$H
z85(k`FG&RR+V4_U$91m}MTEU*HmAp1F3{@e@zUAWPsf^E#EqO54V=T^bxG6tTIJ*-
z)r2=l03nc|uJ}sRI<L2~q+BIFNgq7O_~<GEAO(HGMQFj55}9)Et&+=#B`B=sxsH|^
zOF_4noyK;9sP)Qj+okQlcz2G;l~ctfERio(#Dyayc=S1LMIhK>F?<98)M&ZH0zjjb
zOA}bH*Tc-Bir?ya-9`Ygeb@9+*W076cvR*P{PlpM7vDoyO1sLt&t3OLiRo=HV<d12
zll)=XHCiA*A<ql1^_KUy)$y%ZwejfNO1S4Q_Z0s;Y}F^Ht+8rj(=<OG=St?BfalJu
zdNnrOc<oPl^=&Ct)j3+i1zOoP8m&3{)nT-zxf*8ye+GOri2?tWyY@-@dw(Y2{aIH@
zDPU88YM`x%e6x13DqVF4MlOYMH6U}R0=lHqMO9oR`wA^|07*xT-$;_vB}BeKF@Ptg
zCq~n)xxUqNy{!)mw{wl*t#XCKR8}Zi*C@&QqMa6#&x*U{=2x90ctvdjrJs)bW8l-p
zH`dj*2u}zBKrp2+>_NP_fF;#fz|mQl#o3uFt-UIiZ91DqG<DdcWOA9@VW~!*8c;lN
zGN1~xyxF8xo~lt^vUM{6kF3?@eK+UP?3|dYpH2Ow6&I}p#8$YdPNzpRlq+yifo!-r
zwy>O7H=qlgQ+62;2^iMLq)WLyu+7X)c1<TO)yFb_Aecs+QUzcFACSDDFb4L4J5a{f
zRsH#E1`jWO(ExT&FJ8XJEYFS{us^ouCdlVg2QN!TI!ExNL5cALR89BcopSaB2R8uR
zaD-Muvyy5mLgKo_N^gheHrWtNb4%*Rov_IGs+#8BHF7a#VE7^VculuCORWVTp@-VJ
z|G?Rn+EthdgT;9+iidA>_yD@;fGL?}b})kgRlgF(+&aCE*n6Nx9iZkGh3Y7w?4zMZ
zp789e4Tkxm5q<)IkfUo923Gqb%Q?F~+0K=W_=dK+AC~`S#QJr|VDYd{N50_zr`G`2
z<?KSwYy;QM`w3XqX(xW8_YX+SxCM_=lj?U4W6f%YU7h<)+T!nS9(IKwohupgg>U67
zB&T$`4c)%fGN)QAf9Ry~*?FGYwGR<aUf=>f=o!ZaGi<_?2xKHNmn5ziKGh%1t?N>B
z+x+1TP3a%Vy4z4{mHHt`sZ#B3<*sx_uFG%R>A~5@#s1+%O8phSr-z;#DFb1jM<WhL
zw<`u}M}pq4ls+4cGZY`xJd0QL!p2^9*3rXK>}G4i%Wl1o*O;i0p$Vf1F57HxPCMs}
ztx9vQ2rJlgszZF7I!G-#S87<}tV82!?O0Ux9TrmIQl|y|Hc=bsfvE!k%Uiw46~nG;
zWq?-3jSinjx7<Qk-#jBZ^o6TcGTOQBkB>z4RVIEKak><^ayiBWKKf31bmS63NC0vs
z%qx^;Z14RPsB~oK8hf9ReaAJ2Rv@3(v8Fb8=)MQgu=cJ#=@r2twx2Q~Jv`x;a#xO5
zm$4T3M>OpmK33#?wPPju!Y-sorC@~Wi?(ZtW+(KVX=)u)3g<@7gZxjkyze;p@t0@|
z@133K*e>hK32%~VO%$o<$3f0)!nkdR2WjZm(7}s&E-^~fjrF*G8rM&^-1hTEro8%G
zE_+3z`ps2b<&iLP6s4~~v5RYiNImSAy6Z_^uPF2a`{gPAVAtLCspqweo|B7T;M3J-
zhwdmsX+psA;g}XlC*Moo-><gQ)s1{1H&&PU%E4{C#U3yEl5fHz9&bDtQ?zV1w)AMX
zc{sP(^F><IHS7(E7Sir=(^H@^)OpYrGwlc>*Z_kg#kwbES_&d*N+!7pi_WQw8JpV#
zX!{r{ZiHlz_f51U%=>R=1eUi=8;x*tQ)1Pt)@T;RQ60)W1Kufo%*jdeqJhB<i>}75
z?i-71lN%dH8>#RmlUAstowI={x%eaJ+l<(ssm_MMaXYnsB-VI{Wa*)Xvkv~Nz^e0h
z>eoAPijvxZwzJXn=w8e6S_^D%!g5j5W@|fqy?^5cYUx8RC1tRhSCr${iR3N!MM^#&
zSB|s|EmB9rrt$Y1KHo)(-L{VK;#1!x=&-2X@KbaVu6ExT+Y8UTyP(;&5_rFB&_%AM
ze!ngG^X}BB80oui+E4wj&eFZ%)94q<beM|-GF4Nu0k?V9${%W1-fB+$(m_xPn*4k!
zx$WfBp;PzMEp7Yxl+%f{ALn;{ZlH!$iK{6hw6=A>9;NM^LQv9ZZAXxH@T4l<bGu2~
z5QAxm=uNT}0yK5I8A^D0t9~a|axc?luleR~mZm!^W>+*9`tqwg6(NU;@bX6APOi^>
zMcV#b+}?Htyq2_IUk9&}JZLgGXz@8nYu*3FaL^Tb&_g=tV>_%UKKR*o@ZrkgXxia;
z-Qgxl<B&%HnwSlh1t7`WFj=$*N`P!dl5D!pZJ6$0f{nB#N%~ROF+>NK#JJ0%sEYDQ
zjsS|9jFv;UZ(2Hl;yg8DG)Fwr&x1oFv*OYh`7lPIM{}e7v;W^#$H7Y)KBNHJi=snQ
zQl}lwJ}5)AXYsnUQnbF`uPH|d@USWr=zd$&AwFo1xM(oErdRs#W0B>j;dO(GCyyyE
z>u*nKQ{4S2;~a7#Zz%GvNdsfF^J;yO@jU-uR>zB)S%za<mR<Pe@r%#t8}5rpGUQ-3
z1$m_Fp?C6Gxe|S`ClKdzaHPxCH*Dc=f}}7+eZp`p^~pP3h7<pa^-2goJM(-9X4B6?
zDwCjoM|k9WSCPwz$@9y=>vEr%OVm4xd^_J-8OVB^E1H*fe|}w@nj-lCFnWQi<(x(;
zT9N3EM;Yr|D){QJ$Y%l{#!!6fgsaoIZhz`KFd5;~;z~$f3add|#A%z1uL8asF*Z^R
z=CMx{nCwbHtK%zP{Ph}<fXBk?8W}tyUlGtNSI%f2Ts}ibvDcNm%5iYHV%3i~N21BF
z>xn98b=*=FXrw>Yb#A@E?me5AEP@9S-A5#_!$q%Y_@byEOZXv9ap83N<!s2#=ur2_
zAG8Sm&?3p5y62>=z?>3V)r0hd;kGkt5InD^H?P;|vQroH_=Rv>k=Rjk>K5RoY<Mew
z`JD65d%EUv&iD0Ud?iKKSLxSf2a`g`H4*R*^@cl=h1Y{mMBgh@hF{gcr?nrH@2qc|
z|L&K*eM$H7aQgpY@4bVfXrq1Io?-G3hMZwQvY;b^WF2ybAxcyf#32Ysjxr?4I7rSQ
zNCrnTm`IWY9Ym5Kf`ST)VnPL#)9Sas`|Vw4SDo77o~nH>e?gT}biduJ-|6*R&$HD-
zP(XxEBuz|atXfa2s7<gxI*r{SX^>gNb4ll3w|_Yi`Ei=t)@Pq-{V08?RiOe=0fkC)
zRfrxL-B)J1smcc5V0scWDcCk0^;fKyr~5*>%wz>)4xg)4tU3FLNDZDyRlsM9a`g#Y
z>JZu)qbbBeCHRhC8i%V;zB}h-Dt(Y8#^Aa___5!y-rR7{y&|n<X6gDujJ#sric9cK
z%VYbvbUzHa*ecd9N04l`FK)@zS$a*SSbxQP7JA<NI0I50D?4@$7;-a?LY{`+7-7gp
zYpIK%mgQc(NqhS?0;D>2e*d7mcYj)C^w5{@0d#F{XMF?RjOLG%e`3A*#vi|vLZX5n
zdv*Q@zU*>L&~-85%a4%dv$KM#^Krjpy@}zWYegYH!(LThOAcFa==>S}rd2p8eDlVa
zpAlP*FOU9;_3lO9F}}kWwY>nwdcB7ef5&>GjlaE{jgJ1g>w6%255$Zyh~b?8J22Ku
zior%^?;IH>qJG7C1x6v#p_+{D)EKTuAk|UhYv0a!97uIMg}x!F#r`YSt008=O?4y$
z9mqb#bS`w@<|HmrZS@q(=d0Snzhb@FoVa9=>L`(EvcXWyR`OLxDrGduqUtnfQ&+L{
ziC?kaXRa-Cx`c}sY3|>i@l1s3DcGhbvzWN@KlwU@$jwOi`xWaYUzT68xD*lTD)jBE
zJ~4LkQVd9StWf?<b=1^Z6&3t8!gGY}a#qzUO5EPi#N9tO?~$9Nh9S}Hf@OAP+es<I
zFeB^I2ibLQXZC{|_TxjAxf5|~vgg9?ElsoK-B?}Q2%HD0jvxK+aDcJiWTn$WRt5Lo
z*vS`sGa)~|S1?)SuIRO=XzJx|Rg~8M0;D=lh^yj2s^iPsJ-?}r#NSlMZvw%$tx7-2
znyIgcnMZoMr+-^Ld(6wtJQ`tLeg^W2$P`X0<>08mo~bqAcuY#t;}B=bA?wO*u%?^<
zW4#&%dMZ1U>ERqz`*Lax48tEL6oOPo&RQe;orjS<9My+&YD_%Brve{y)TqI0%))l2
zyg^ohc0x5NIsB0;A7`C0yc(oBK5|s$thWlfYF!sTZRNn(;P|=9wtHvVD4es=HK@vN
zG<-&@kh95at<qtBXGXP$vpL{grPF%&?4ie;*CN)gocOjgE3?B%iwnBqf{w5g<>R`Z
zx><3Wch_!@UzMvRE2_dxI>MgafvdIXN4dMou03NoS6gLzIoUAcF|3fQy@9jb(|-5y
zk8ZAx)~jXS9uW)M^IV-b<jQ=)b{*e+<LVl?RqB@<;q;1^yZfGLsei$))3OS8&(y7w
zz`6+MS$pmq3neQ@yLX)hJh^W^Z!ZoVjW}_;fcw_#tA*k7yGu3Q+_yij<wveZJQWV-
zzO(zJ{KB{0r_jgTy$q$f6m;aW9WPHG)+alb_q&UZ3Qs>fb5^``<f#MpJOlh4nHN>Q
zukeKN4DLHo6KxoI+M$r=?tY(&6#MVboO*bM4p)~Xc|<-RpW_);t4_-Z`|f&hjAul<
zx%g6Yq+2J?9`C5JS?cA2?`|#1yx=r_N_Ji3T8SO+JxAM0<?ioi(mi;`U44@CM<ZV(
zW58JNfh&dc-`({Kc<%=+C4sTtm+^DF4<aOzO23VtJ+{aDAcjk!1no>#7UrAuw*7Qv
za*?c`#rrT5@v%yJ;*9Z0zIz2T3OOoIJfx!e9+_}`uFZ7vv|{I-u0wpNx1Vr5eur=P
zdah!+hqD*YQ@&Z*na|A@i(V(Qc;@;L?`g>sr(A{k2S#m=BosXHMjhjS%$U2~#_Dv=
zi=Ag-9<kNYJ#o@En*YuUmr~TIv(ML3{wHs2zVu8k_=IF}FTF>+ySYB$9PyO@#<v-z
zpl?rnU;X4?-W%uq+MDU<7st-Mf=0gW=e_Tkcub&^HBb4R^ojFxCj_21PJbP;SU7(v
zi)&Q`xjABZ-#)8MpjG;~${CRAIC5LyMOx0caaPBGB6hBqD#$nY!|oq1+Y`8^$*t-P
zQXRX51lPT7b{<YX4y?)I+^|5tepGkgrs1SugZ-?k4M=sYy&(9;gmZT;(;>K(opaLz
zx$$`ZzE$TP!J6}VYNjC7F@H($o$U1PlEveYJ6WK91-ZVAeqaGo9V<bqqb~2$ua|px
zKTKWtzRK?qcCW_zL&32lFI0R<Al30|5%-T~?UOqfN`*cj692JrvMGFaihcX~HILUG
z$2R7l-Y)5$-HS3i_jK3zqtMq?j-Oi*I}y(h_Iw?E`r<=@u=VP(y$AR6jw;rj{BcE3
zcsJzs&+WYVsCSY!yDQO$zm6U>`B-+R?)mY(f~luJoo@^Ov^cZ({f=z(?mf1>Z`VA3
ze2ZTDv3tiFLxhaW?CtNB+((3Qh{K(Fn^lQO^%g{0uSp>h!?+(5BM7$=nc~Hm-+)71
zMBL5mECPKxGMelr`&mu;xV1I8U}D^neH{*(yz19^8vE3GGzHT3^DXwVOlb<gsT5-D
zKf|w8V+FZLL5b<GP95&Q${!0QQ-pb9g~=2|ZN4=_e~C<?7_A@Cm0~@rC8^#o0ss=9
z6y?6x;Q`7X9^av`Dh+-Yhwe~XtOLWn3If_SsRKu<v^8{8@lpdKz1mI<14T00073iM
zC;8bTt-~C}4u=Peo@pz6*Cu8U7`f@p-WV{+-uKulMv*a=;HGF8DShCR7QtJ~l;f6&
z0f5Qx7cQs3dbO<f>*hLWiJNHIe9{pumUnz}_jZep%cCQw1crR}>$$>|+)RefJL<VB
zD1nizz*IdCHzm);p^zJT-q}j$7Kg%L>-i2UfqIW9etrK>N&)J_6l47$G38+I;kXF>
zP;2F|;^B)8`VsNUk>kV33;Gw@l%u~7r(q3ZR+VFAM=q%u#B-=5IE`HPGDy@>0jUl-
zMFx8*fhwstNAm9(q*tkAycsFlHK0CH$rKnZ-EWu$Q_VIRt#CBVRZz`~9IZ+<EO1jT
zY#gn*VOX54TCzA=|Jtx@P_>+Ktcl;~$|u!I^)Z^U(N!_EYVWbu2%}nSwYuW5js~NK
zc(umyvF-(<<~Fr!pbr9Te0^1|MfTnuHRCo8^>(Lw{a(hMI_hAu_imAKPoO$z=ooR-
zz2($=^3A=uG2>ph+B*W{mTV>i>b3nQ<KOH}h9ZTBBgYrDOh!M|j5M0qTrnAU)407j
zKHp>VfKiyvIPs3x^r5=Qg!)8?yy^6y(2Td~>oC)~Y@zw$iB%)h1=$*KVwmH#$<ktD
z@{{kTt7x+o??X>z?~jU_t$r5-r$u?x%w9S*zDP4$C@|Y-JhXW8KDotglcVg-8#DK3
zW?R;R?*$%AN}GRV6r8Z9d}1{G?2*VoelW08WRC;Bi5Y(W76VOsu={;~Ltg?EMf&;X
zL2f(;8AXB#lAt9G7a$~<E(xLxY&+3AWwJth;Xicff2EUtE5+0Q;wn<W<PnJcgdU2&
zgu5q*E{Qi(P4OPkKkO5Vtxc->N_pi`FW1>4q;`)lYJuza>#S&qPrUH65gw^ONvGe8
z#{B>JjK<1;9^!AFA_qa0|Hv^R6)j0kBN-hdEe98nrRowGb|x&!BZ~6N`WkofKf+RV
z{)M6ZcUY=891~+~DUMEN<f4*AYuObA81KeV>`3QqlVYtuHRV&ayuuO+ni!STZa2%X
zU+-RA>YdG1_EnFKp(w;BUX1uBb+Y*%NAy1&B>MY;?*@-o1mylE{Nnx|Q2GT<{cS-0
zgN+5FbK=Jge%p#oKuIxZDE<Rc1>M1>uAbn^T9VJ%c>4XJ$es@VZ3mA0v&xAeV>C1s
z<N^N+0P^1f$%2`{|B^4n10u!GK$Z_uR^|UqMfKA7s{qwB`8w;@Y--ao-CC(vUzx^2
zO3>XV0%C|E3c$h32<`W0_Zy-7<U?vRM<?KU!n^@a4qp_vAWRE}!Q$C4m{@}pT^OEO
z2Z3kuI$<V+(?Q~~)ehP$9DMu&_<C(j(=}TF&MUxzEf8SU>A~EzWEb?)797&fZ3Z)j
ze7rhLfy13+$Jy~L3<#F!$p?bWj9m3I5RL>Mv_RKG!Dwz&ag7!OGPIhfc4nQi?*f9Q
z->8<xJs<<;-9STsM<(UKb0hoUuQmF`X8!NJCNF|_nVSdnczyHida3vK`>x{;+ipE;
z1>FxPF|XJ<^y1=T$Q(>OJXpP!K}85orW~k1HEI!|Ry?c(G>wH$$(CSjXU6r-z2iw-
zL{QZkDKTeMPBC%lh?%;Aj9c~Ne=%-tG){q#TT31ej|h1Xa%)nUlw4aUdc3izp|Saz
z-X91o*eC*I*Z#U4W5Gk0(>DiEsvv~g!8hPsOgvacz<<GT6xGAHO(@j6dUe8RJa9D?
z8I$srnvq<{KHBU_99Iyj62)^wo@7*Jk$q{&nOr_=(e;S2z|fUr)WWR7#_G>m{(UEG
z{o~FDq0k`v8YBlxXd1}rnJJiBgJ@{5mVqQ)BbT$FE!*1D?<8o*{!`Z?qCuptHzh9U
z{|pli|BciomXMA9Aa!%&p2@~bS5{eQU=8llo+m>&hscMdO7(7Qj;p9zL#IT`DP(Il
zR6KFjNklX&MT||FS|_?c*Sh&ctJ-d)^`)olet>_de0co93lY8!$%%&vkulULs%lzJ
zcGhLWnLlSU<k#8U{p%3_lTWwbrwal3e+mcgcj^B_(*8qS2CK$?T@w&O{F@wZrD5X;
z;%arBPJ?jTUu<o%udVlakRR^o7YO2~e;1AmAVvHfB@TQ%fDr1C<g~C~wIlNnJT~UP
zvvwe+{wf^hRsLwze_J@rec9e{C_x}1eanmj2%W=}htg!Nii}vW&#27<*Yf8O=EK6!
z{3703yn;zs0YSfb5tKGugiDJ#Pa7e^YH&J0M3+k_gQu3i>O?@j4o<{Rgk6_K1QOq(
z-2+~H9Njl^bvXsK`1o`=nsc!QLR~=VL#;yGHHT^eMg*2$7^cl9%m{xb;BgC)D#D+x
z1?7n5UR$)iJ|C+OK`dKK>-KT;Mp<Hn1W*l{?Fs%|L(<}z6}kA|#UuCEnhSvIWcPQ0
z|BH+b!lJ<fFQlURcY&AHH9cVPYqh{K57u~awSM{G|6J~Fe=5DtALcs<kp?e)ke>bP
zkscBK3!we`ss4){{;!wq-$THIf7XBC3$gcSoi2@3`FG2zl+oD&jG7!SO}+`bx5?aU
zu?l-8$AZjlTO+}>Gs{xv)q7ozRO>Bl#@~AxfC-C;yg-SGvyP0?MxwROTR|Xt47v>H
zT%Bx)HvqY$8ylXIs)ZJokl4qRX~Mrxm+QI~Qm9@+xD+A5xle+R>5kBqWUEw522p+l
zq<>$uF_Q#FM`V(hrvL>;Ic^Fwut?w;m>=m>#`^#q`w9V^#H6t(Pr3xw04BlmRKkrJ
zfZ?gxxS*?;pb?sfP!3u`!4y>yKNug)_;Y>b3=Zgbt=4lAd*){p69W*_1fY<CM4YIJ
z)2dB+<xt>IKAr&|D?}N;Y^6ZiBKNaXph7xCayc;uh1v6DZc$mSG_w*=#jU)w8dZRE
zwlNpLS$a{m3ci*a`K`&)=vVP1Kt_xbBPJrB<VRd(xGwUNex<cLm#p8J08N@}aDk%8
zx;}zJY??OqSOCdGJ*!1~lpcpr$U#<k*o&#%c_KdvqP8yTsJ03Azgv=E>{1oO9SYcb
zq#5hCQhzaDaC1ucrpU_GYY!nti79av`*a2pU!AcGvA~_ys(&%pO@1lrqJ=!Sax2aJ
z!B5YM?X9b4|M_&20gI9mgz#qv@@EeTBKdz`pnumAa0jyg9~UUN4^g-NRZ(;tf5FYc
zl5FDoi`j2U{&kJo`}qIwuhH1wkatj10G5`&xzzu4rRAR&=%}}98ND_Tyg;wbH3r|?
z48OBX3pF`V^x#!n_{0GjX8O<>LW0wyxYVCe-`xr%J3j~7lY{j_SVWXF9!KJkgjn(J
z3+3e%kYtK3F=3Jv;1DeG!1E;M7Zy9Q2uq6dW6UzMEOSot^BZEWmYVi>Fi3`IaiqD|
zl-_D|;1c5y;o*^FF>TMzJtcNmfBcT=qDT3N=UB;82iP=_0kFVkFY9z@ecsmY0uXE3
z48DelPgwl2P6CACE!t30w>%T*K#1X7R!<%iVO!@AA>%5v0InPA$`!0Ba!_svj7Vx3
ziP7359g4BLZZMQCvkRjb#*1+6F<f2L=yM;RO<>n$#MA}i2b0-F-M>}ZK7%FsGwG<y
zW%hB!*SMI65}r*N&NMkEMt&s_r=~Dgr|flum#3#1v~OSJG<E}~yX`r2=zdyS@hC*G
zwLI`_9fkOmar84a)F5_9(m+AEGoB$?l=~>Q4$JlKHv0oJZ!+=OAX4de8wFoMlxhkC
z4rEgc`K4K}0`l3wB!xJ`_C7we*Q+-Um7*nzGj>_-LosWiq<}M;5aQfKvB4eU6V+f5
zVPYs%7vCQS+*?tIKB}XA5ypTEHES-p5#siK^SMBvt<G|>mr!W$0$V?;elOJQ(1$+M
z-7|`@dJIlyi9ll}es7AcTvn<-aeJjk82uiA_X8&r2)zc_+#uZm^HbDf^(;3cKdZht
z{J5Xw)=a9&J{yn}GgG`>i9^d0VI;$Fc1L!i9GaNrS*Ldir^_58#`aoW9+s^aSRklo
zB1M=eoQhYnG&Xg^t>!yG@q)g{atR%{Shm=cMB_ASA1+KaOeeoa<Z{gwtFa_qhJETm
zefs)3S^#oi_SAFVV`KI(l!&Y%7wbcm2*l86l~*W~RE&{iy~bmxgQ#S-kYN)i5##Ii
z=njKT_-64p4i>lLWH?IMuE&stAIS_ND*9_68j?W0ju@W>K9;S!6v0a>rYuZlJ5q3c
z$7e)Y_eS@N_I9u1de`k>r(SJ-esrMEV*uOzym_qrwtiJ&ymQ0~zcT`#gsW@T9x?E<
zL!5l?&hdfG0#ZNC6~m-pcr{fAB8i6*QH(6CkbX>A`F>Js(te+T@9rxZfgk+nsjasx
z7V5~_E~Ho--p{X>u5(;sk?of3$OgN<<fJT{CcASR4sODu$*`2}a^|6)j@)NRi^HKq
zE$ZC5lju0Mm<iO3`x{sr@TuQmdY@B?qLXYHmrv!P;}w(Rx8-7*u2URvp^NW@n0p<J
z&!xr(N~0kucL-LcuvN3?#h0Gz$Iq~#ZOxYUzdVsP(e{jw%m78{y5Y_t?>9d`#3tgf
zyw~_rhjPK;-qo8oNl&f3bMyBhlL&I`I?l2!*Kg`R^zgn#P`3>I418Y7{GxN`+M0o#
zISleyJ!<fiBlO2(+`e;7{smT+MhWXFcikz8lcOw)uz<Jg+c-$PY5e<rQe3F}!{S$0
zC(cAZFXccHF)Y+xX`!ykc0UHdl!y=$O)`q$Ydy?LBtm9*H8liK5U6z`ERC9hq;bWt
z25O_k@DP{)0hJc2ugbc0zd=Zni>rquSI7@Vn|=j2Fe_55JQPS3L$S!9-$h0148~;g
zplt6!Gg4SDgbxQ@WrV=QLn)9hDX1gN1qQJuD!f8A+%DO$(`PJTD@f{85!s`%@8L{F
z0&C%lmnjUGM?7#O9?E9@0?1$KRZYo+V5ErqPiNWyGNc??t`%8Y{v&Zmb`0$M{S!u3
zPzmF5!%whDq3p;M)D;du#Z&^aPpV*5c@$!PrR8$NVn1g=d1bY_IBWz**{?04$uK7#
zE23PA+wI6`d+(bsL|GeqGk3%C6Exe2#>7efa7&Q60$`Jkh1^769@%`3WiIGfzJ$kp
zNtZ^yexq}jarsz;KyMKY|1xtq45~f93cQ6Sf_!O`pEV;B-#qXdGe*Ctnq7`m9M~sK
z=ZQZ0=?c$;6fd4|gMb2`zg?H~eg)ABKUGPY))^h&K(cpzx>`<9gczSSnkuvvsa9^U
zGYc7;5?xlP)&P^}_B&Sj%wQ5-(8J<nAqbdmFE<Wax2iFk&edzLx0?WS@iJCT;h!5E
zmu2jRjb@~iz$Ch<7u)^%nU0Q}CZF{E_A4^8J)Swu!4t2o-`CIH7R|YKfyvt(vVX3B
zCYyHAw9$yQVQwfl`+7#Yte(jJ`7!zImfQ(hWkSRJeTSgBQYJa=xIgcvK>pjWDLi4w
zBE$el1b_G=*I+;~q7VQU4KOk?!m(^979Kd40Fqbu-&Je~@FV&6VK_zqwrt>p<k5IZ
zG&r><c?kTt#=Kvd^WedMx;D582l?dXKrsvWbO-17WcC3HGJwhfK>ZM~Pi)`c#*M#p
z8w!8vHq<o!m2QJgUYGNTDY$#(A((>ugMXvm__Ln{$NdgzN*yB}{qyGH?~frW7QfzK
z{AWxYp}w3E=h?M&wLlq%fuX*MsnIVJ$8V<&DC4lOBK?tZI6B$?*_wdkfkrOwfA3Cg
zep{3N>`p*8hpXGaxH)`0K{3bQduniaFfjQ1A0<b`g|NSs9I|#9zXk@KatS92!D+$6
zZj~Bd)&JJY5fuXt3I5uW$Ntv&B>&#-{QVXNocKErGR>I(w<eCu6qeE$p!gzVX%goD
zRKQU$4vzQ@HxWjf<l_@#f4Mf&ll~s%%gUvKt_@JMQB<1$OSDm0QdwR8%d!C~Hm=n+
z&>DXEH9BdaUjvkD{4r~QT8*~8p*y2v|4OJqZ+|#-XJEMZk4gjdXpB4<2R#}Or~1LM
zyZ^w4iNF5~DA!O!2^i4I`{MosQ+O|i)B=RG&WqB`GGoj><>S`fr25MBB;UUIHYH(D
zY*uMhVq{ZZqrsvZwn1koD2)lBCWEj%uRfZqwC9><NBvNP4>*PA$kwb)DpD;b<{}&C
zsK-!pD!X~2CvHVPVH1s?Jn#gZ!ZQyXCp{`*K1O}dk#ywD+4j7{zSS}tuXV>RTQ&F;
zZ0lIXiKdCk+36(PG%}^)cfaXy^gV!1u_;uz1#c~PU{eTvi})?(e&o=RB~2yYr);J-
zb4zo-qT(cSz4wGq2yCO=Li6>xc`khKecXBcURm^I^IG9jst9&Ez8s~oBhos`0+Y@Z
z28VEB9JI_hMCk%~-^88lDmf<&DWx~{kn)nthcK~~LB0AEkzha|;UT2<DMepp4ie9*
z0!g`0xh3KxS&~mOpoB8I^$U$e=8I@@o&M^;4?*PTT_R$-OJa7!yYNxgw#lr*m7&iD
z(I$~C3&fK6maAzMJZH3|629YO*{>wU7U`C)9~yIE_}r&|UXMd`3=KVJm*j$Zt3qcn
z%C<RO9Kgo$BELMlU{c_O^m_&la_su3L~IEmF;&o8ewC$&@}Yzn{H#v0EL?5{cG5UW
zpIUP)W=}>Yf?PjZU1a;B-b;7i!(?9hv|CAO*LprrLxiq~!Pkp8gN72NZVR;?=Z_No
z_=0Uj-Ga(i$a-X^byCa7`!x5Nndd|!0z`uL6K%~E1KotfwWipz=WoJqsZno2MH(90
zZy;m|+WWY4P{Ad#DmalcRGXpjPe`PNog@caN(3UEZRO&%0*Z+lJb0Hsk?T?(t&izs
zn@G^>en*@z2Kx!!3imLn8iDmW(Z`v!WlIJbkaBHFb4>9_d2PtV{K;I-Dh1tB&M3^i
zfUOn7$`SAJl?V9B)Q=A>`M-P$V4trcNjeG!p1QmP-z}fE)0e_^hzHY-Ec6{QrB7*p
z**mw^8XuL&D7+Mm!%RdPbJ&W^4UOC62PjW^O1<<+k_jB4U*DXS5FO~En6V%I5YBcg
ztm8RDn56-0V<)pO3)T2GYz=mbzsaVd^S<iML^adar@ar36EvgZPuo0Zc%RuKa_HUX
z8_x_vNL;PqV#ZXd9A81F7e&H+KR&_2Vs8@1Tw&5f(2_`;aJiWE5AQkQyWL5f`v%oD
z?<21ri`tj5&CuNcK{z~IUba&FfM}VD!>sxwIyPH8B99&NMeD__HYq<mm2J6O_A;;8
z`kG#C!0c@N01?UTho8H=KxCXg0NvRjKUgSZd?_zVB37Wxz79$qc$sWLTtTY9bRG6|
za496>DRjtJ7_efU&-|wLm>@tGFae{bC3OE|Q^mw=8tjN0$QWV2&u;Y+B*SSXU1FoI
zzQAFo=H%j;*>(BN2+|e`x+&Ie&k*p3)koB0aQ+MN0_!Na8lomi-{cwF*%1T2$CJh*
zUk8Kr2%<kYp84n7FG!eeq00_gC`$kdQYf)lBa8vMg6;s5oRhw3IHG?go?DzDa5Q}+
zNiQ5YrKPhh@?(yqTD=I9v6+J$v44nqxGpY#K}E{c|6x{on!62<$eSl!gOZ&xKB6QV
z`-+?xD7gMYvD1TfleCJI-F>0eXpakgm|FZW?W}37^n>unA4|_yNFMz%y7%BhM-|f{
zaA5AYTq6*#wnaRa2Rw+=gQ1yk)!>9GNSFL53?HvEDDu_gFpMq$#!rfOtQTjL|JUYc
z>|t)tr>lhYI+I^}pU0o7m8Nx6XZof}e^24bn4ba|D*l?n%h^dkvGuHulwNOL!-oKX
zUaZwby=~{%bThd3abbFWe1e86F8mDceHt8Q$7WhRp@PQg`z@Xu&GtOztTW~GvTg{s
zsePe!jl$IEg4}P{B2m?pWZHO|``%oKXTLxQ+*38T0s#Rz!}sRE4(>hss@Q=#%G!S0
zu<IB^Z!E3Ww8;~hnld1oi@HpfH9qC_P--t8U`s2};W(XYx$w-ksqIW1GX=kpf3%}@
zhyY@8d!5$!mU&8=8V)_8rN6>(3fx9D*<9a9fdUjrn_Uw)g?FN^V;i5;1O<{vi`n&g
zx3WhdKxl)VD6ou>&N&$MU}q`!03NoP;30u`oORW46-)vsjPk~hM#1M+vYoy{x!04*
z83?de>qolYaD4K9{|(!76uB|uXKd`-H{qJz2xdYuP!@PsF5_J!@9QM2iO8M9X8Y5A
zU|qOxaInKNUc<mG98j#;8sMz2dLN+h04`9zBO3{a1=h;^l^d^2=pMKYP!55#LkUC!
z#v13&Uek|17X$;6Ub`x`+V2hRp1XEoYQsJ6=j`x7xV&>`pBumk9o4n@fNu=HxM9m%
zYjyOK`9P*KEoHmT1t3a~G0s3;VjkMxO4#qGX=hWVT%DN&GttITl&!$szF)kNB&(~T
zb>E{JpLk<K)2AwBj~->##@1Sld1jf#vK~6RE+(e=#--@djD+InYti>C9U9tLZ3ycn
z7BXm=k;2(*>R`L`Id3D`-Nx{Y{gMDZR#MVcFu-((dT%0GDld+A3_q-TAHw9@xNlP9
zYK!^3_l%x?xsw@72dcz3r=25txoN=R19tCcYnNg<JL&aucA8kit|E6QK;-f{k2N#?
zywXbhdbez6D=9IEOKOiM12npP=q-)K6VeCajfId!t!L1BJ!vt38kfD~v<BgU8gbJo
z2G+zi<yV^!Yvx#=vci{Ax*eeRH6iQBX^4z|Z@V-E2B<@kGI>xV&GHZR`WnO8`91Tu
z1fe;{@h^`isv0#=C@tn{3+FmFpv_J00^pkQP-B-8N<x5}Pa0Qj>-iaJ8K-r?$+7%i
zm?uC%akvU1z<1%7R)7XRBJ<cS_1m*6NPrY7xN5)v$S%Zsc-so3zul+|TY<-h1aa|w
zd5ba91c371XUzuPHX?-7+Q(XO;8hf)ADA|1Sge=!>*BP|h@H~ngiCelVysKynE{+%
z9(;+~8*nb=%C~iaSSR)CYx_~)gJB!vM?BzAyqEr008q-^hRRSNGU}ozZa+(BZm7*N
z3Zyi1mRoLx1mBzv{&v=qhYCr<qtpB#kS#~&5XcWnxZSXKMlWi+J$N|Rm039uf`ebe
z!NKXA8y79Hp_Wt}pe%{D0HN!2*KEHFpO1qs14qvn7qmg>I)L8Rg+C0AmF|j_BU|Ou
znT)5QhkLDFZXq9hLB8y@I!uRh>M?=Ffdv|q7dXx0m+<A{DfQ0?D2?$boIwuH^xB1q
zfP?I~AAh!mJ)sx@&gC^M+jJozoj4B`KkR7$Xxy@v?S(d%d&rQ0ecRU3dn5pT7V8KA
z)mzr=$1!}vm`0bVn>4I60IAW%O49+kL@15|-A}`GY{A{OZAQ2+09)|*X^bnxDr3u$
zii2V)495BAl=3aJ06^IQ&0>JION2afw~SH>Ijw*0&Ilz7fI@KR<k|x?T`U<wEv*1R
zfBA%UqU&W``c#r7xN3T2%X9!Re3>?2fW9yryEf;l4*-6h0dKCl&*o<g=499$&v<Eo
zUhm3K4ni9%LXOa_Qp%m~T}5edhH-8q5yUgAz$p#IGsf<~gJr880GOs*%>lsXc6dnb
zdDdBHfS&Y}JN4!=CJK)2P`Yr_1q*sF%yY1SAKYTkCfOn(VqDTD&Mq<+1)TPa0%%at
zm*<_&WYJJSld>I1p!c%L@C&ij&ttF(v$PAznL`2ZJ1s4fU6qso$5~7N*&s)5wAYJt
zQ7KnYu`!fSkqQC<{+1_`Ex+rZ>nB^{fjr3|@C3V`u5q`K%=ay@^bfPmp;>z_1Fz|f
zYco(*9OTkGV}1>S6M<wcw}0sZTp(ovG$sWc#OIY28AsMogn0DYZ!Ft10@>B&5hoKO
za*`sl^uU9$ftABa?NJUuw$<8YSAvc0R>Tcb@r^COmY98;*Os?4TZ-b)L4tY(0lYNJ
zV@Lo?fbF&es9sAv0U+p>$n1%qv{Q<2;DX^P0FnS~bmd&~^YTy$c^VqLHlGs~7Ca<T
zD$NN%JuJT@2hn&ap24p1hWTH@EI+IT%G;plY1SzKpa6hV)~Hvu)~WO`)-mc#4kO@)
zQWr-7%Z#P=KCCWe4I3X?C^hpc^8jGmNli3CXE}-&-6R&>bScUj!a5E?S?B;``FT=M
zq-_G!g_3Q47t?8&P3wZrA|bKUfN^qGoGw<J4)IjH^r*`+0|&F~1jaj}m(ak$gsacd
z05=hS@vL_S4SW*7EC_Hb0`Ph+Xj}sQKFo5XJ@-RUwTFy106?XKqWko!r4@nA&@z+@
zB%M~9wpZ`TV1$Mn1@)n7rNnEM?t*V7n0;Mr{E24_ZJGUDY<!6qCpqgg(Ll_y755Q_
zaiUw{T`P71!$U$tn<vwL8AcaHEQ^bcJ-+g=QL>_upE6&T6bU#%!c@Cp7^!f}_7v&7
zC>3<0<!3;888Z{!wDQ?n3Ktc#7P;~gW94www$K*q0y%W%<WWjaWPzo-$JrMS)mM&O
z8hGU`dAH2bz9z)eGAzaQeR%m$7a-k!TKh}0v<>8SPk@F5%^@Y4x|1Gn7zk0zJCaZb
z|K<kZkQzB|Ac&p|duHYggBJmnNGL4z@a6X?&<H}Xkxp&k7+u=2I2W6~F#lf9%7MKU
zIGpZ(g9MBh+Ss(iEfSJd_-th9fKz)@Y&+HtcR^d)t{va}Jlr;RHck37YHQ7FQ~KQN
z6iZJo3c=u{)eXxIM6mBgkUV7hQMtwmUFKVT?PGGeie3j41z6umli=)-35woB1#57{
z&dtzZ8?>i$K|w|B3O4A+#N)-~j8$jdnw5@EQDMLq@^v|*$h`d|05o%3f8|07KDJ7A
z2|ub^A2{7|DxnJKZBkGx>NoOZ*(xR}CTVzKHSDv97#jmjo8mWX8^tzNJ{toyyJ{+2
zmIj~avopsAkb^GB21Vm>@C+RMaA%Oqn5FY^hy@X@xs|38+HuC{B-b9XQvx2Wi9=`5
zgY1oKydx~r2yo3>1}j?72-ociWpt1dY%&7SFvwXdvb?-yp-+S>(_)pCqqVnC83foT
zWEYcK{!{WDfO1Es>rP@(SLWw(^C2f~iHkPDOyh8d!#D;{B4erHne{D~G&O4k1vN)v
zN_GK|wmk><ZCzb#dZcX?JX>L%Z72P(t)z%fwPafYqLqXhL4x9V00tmj%b`85li>iO
zgNSt@0S4pPzElr~oSS1_w!34N`n16CFP9SLEoEx`MS2}ie!oTNimjJGyPdV+B*C}G
zg1m~nL&5_eylnTI8G=v){2Kkad%e9HExlxhFO`=q?ID6~6@e`<4(k~l<82e?WR=s)
zRI<iYObnwAqd(Z5Sz3nrZ6W<=2$q?GGqt`;cnE@?`H`#MmJ^b9!@7FEZEI&wpF<HW
z5j%y9YV2(_Z^ydQ8nk;7Ep0IPYUuG|tbMsZBfaf$eUF2zjnm>?WgGa&SIaCqipFI{
z^~;$vvAPv(nb|whqIkdG{eD2+!~r<^R=#CtsMW&a#DO#De5X@<5o7|f`zR+eZPe<T
zOhVN?s~MLo=WXtF$okdW6qACmG?yyN9BeDy->MzkvD^US`Zxr~my{;VZ6;>Y&WdV0
z6nk=FTj0#MH$DI!bu@=rVGEkFZG|eKNA0am9%;JUPK2T?9;!c?I$B~YDR^ed#rIG;
z0-(YYX($REiXgTeYGUri+jT}xS(~12DW6jNG39V;+NsGhPhiUB7V|v-=|o`gq@V(7
z$<J}qmQ8e<A2ZK5vBEfu_hPUt8pC%t<eHxvYbIcu1Bi;x1`3+1Q)a(^f<+3l@>2nH
zIfQu{9w5k8MVQZap06Uz<(JHVb(=44nlJq^pEfw3%k;R)`EeaYk4fZl&bh~pPagZM
zpdUTM)tk;YJ1=y|v6K8nD)BsZ8Vh+*3%!Dil9|ZdLx+j62Qe!PcjOkwpDYUW9i+)=
z<j3R2HWz22o^Xor3F4l#Y%a{z{dltc1Xl{kEk0Rj6<m5%vb5cT-novPD#1-REqzE|
zGQ(kZGL0EopMJdcbZ!$JKoNr|;&vvU!tO6lGD&~id;-6{+;NTrnZby@u*7(DrMd|Z
zgD&U-7`o0AjM<9N+j&VB6jT&*qQ#K4`LS^6v(j{(D<o9VzzSRQGx?))Yf;axXgpWG
zu)t9IT;1%k+R}4k>HIOFRh_pa?Gvj8M@jmnt0qSYpd0BIL+y9=f(V%Ze@52+k0bq`
zCu{$6aKEy5|0S~aBrg6`Ucn50e5R0SwupFvgmj6FT<zf_O-icQRMf7kX|x?Bb`rIE
zv~_Oj8Qd{2>@_s{FUe>ihJHmeU``n$t5-*?RSR@$*r;~IbW5>v&2IO0r*|Q|7c)kk
zfeNCDyK>QLt|hg~l09xKA5vi^C3fD8ixmk)vU5T0_KBb8%iwX74%b3RGwKOR@fq++
z31#cDvgzUX8HwZFICYt&^~9vw+NDIBbQ!ty#6|gg`$`?J>)>#DBI5RgNbP(~k(8ie
zR@1-8<0XW6`Gh3SJAw-N5EfVjH;*tyO8knk4nvx@5g)Jr@wX>`Lfj;_(ulGUY{p-q
zgx|TdQ~$Wb{(B>L|JQx;zblIOKaTf*o=+YGJpO8VnS(7am;W0ruV2Zy{})?c`*r?G
z-u;Q}s$2gzw7h=H=l|L70>gb^6z7+J-o?%2^gq)$0sn5lEBKd%{x1dne?h-1!9O7h
z%wU4?o`0pC|Nr}4e|NinfAgPfc~$p{>*7^MT~CV^sUL~^1D?z*nIpCZm<$eTlxKh~
zulD-s0+O;IyCOMRyV^`#>z2`PpS<8R^qJu-A&ud31=y~F=i?ipA2-^=M12yg1j~!_
z7qVUKz`<x1frS<Q`*9L}5(@7_udRVTdF=P|<D)09vaDm=HoCP-UE!CWu%g<NYFvkp
zh6$3P&9$y2GT6Wm=#E;AWJM4>xk#=d83Tz2yd55SPt~I9-R0`Dve<9xGI7;Phq#)S
z=`rqQ2gqK!EKDM@%G|$wD<c1xLf=el32jPa1YK%&t7o9p^?}^^G$E+w`EeG8&*H~j
zr<kf>?C*4?R^mlfAQ<m3SR&3!5(iE3p}!w?2xJI)hW0AtSj{B{2u!gj5Qe1o>6MK1
z4N>AfK98m{Y)U#uf8`w14|M2rUp*8@bDvE!IkGOMMak6X5rJ0M3MUID(Osypb&(We
z3C?mb-%a$@(>(L)I*GJ{ddX+BOg_8eV;ELqu2P7%N70gvAao%N-z@#AJYNOugBWtY
zM+<MG1BVa!GrBDYn5@}5Afb;fT+Uu(8k`SDdm6l|t+EZ$5*a45jd>M5s-cnvaeMwI
z?9hU(WN*ol$<f@3$o?U=^%(#BdhcS&38|dSnq+q45eSBK74*ql8_%&~MDpZe4NVpK
z_JhsCxQE<r5p&mdeCrC6=L9?Nb}SQbe#>2H`!u7L?a!HvTSTi1J&J39|DgM7X3u+V
z^`RsixB3~C-fRuv^kv@<avb-5f0yTM<NG0jkT>s#@rkk@Mm9GUXxhi>+_Z#bU$WMw
zN$kSpjKEQ5e=X?<j>DsTeHd0(g?HBz8|UTMKWY=p++yiEdpE`O^*=gUJYo{xoWvW7
zin&Z4ww$0&3!W;W&zME8wm)JmX~NA3B*?dFx*e+v*7EjU-JUBJ{qadJpmOiYD`GM{
zgvT{Qgkyd}ki&_J+E?oyi{=~Jta=c0@OHj)g0@7#N{swl<yF6zo46IFqVmDfwitu3
zn#TPzedweR#{C}9Z_4ys;oDpb0m%y&`IFxJz>A4WLIs|$obD+{EOlVxZ+Ov0^+@L&
zf1Ds~-AS<do@vV_7B=0j{~&@@*TEdOJrF{R^q2^t?6NG!YP}x0vbN%M$=ApJNznZC
zth3pB^n=i`fYMKt4VbZC|Di2f{6v^}plSWnAD(%~@S7}ZW%T>RpI-zan0WOUnwLP&
zCJ`=Ak74+>G<#s~PR!ORmYTy*5iJX09G74GhHJ);(y60A>|er6LQUW7$?I`{-)c?_
z!{9QY0p+l737S7xN8(WZ1tB5_O?Agve(J0W16Tc$5tezeN2c)7S|e8G>PZ;x55nRP
zNAXb*rn6V(Vx(Ve9d)R}b1x(fH72BK3qe`g^sRC16$ZM2o~#=POBjmFEqzQ)FY%}~
zRWtZHRq})R7g);`W+_XNbdx1hfzcr)UN(^{^lVAzHW5Qa%VkcmFMwdh><DV>Gqj53
zIT?sO@00Kf+PxxmNO#QO8Cz~dqqycpG3p0FbbiE*D>EsEN@qS?#{17{OCCKhVuQ$%
z9=>TQkNr@q>zO8Pty-!K8E%LTMVp)!oys3?Ln^GKhg_<XNTb{DiMzG18_aNwsO_<t
zhdrDsof>?}kQhdF#&DQwEW@N$dmF_m{jq+S<Hu%`^Ml#qrJsG<xBsOMPECVg4xhIw
z`x%%vC+(L{O|vM@|2o8+|0z{UJjv+CbIEwXNaWyMer=`?W!WD_6)IjGm)iL_6*rz;
z71T48yEK?c9?MX<l=7%rN^#owjHlJS>Ua&xKXx!Os8BnHN^X&nKA2J6aMJo}On-_V
zDU;qfOuEWfCk+jf(+fPiIcT9YU3UHAM$@TNuWgZ*b*#=C$cozaVHfd+Z}XVrJ<oEk
zQQ(+U=Lj5kRc%`=@5-LN)x=N%Y_cON#zqvdmP`s~<E7LZ9QK}gqPrh+5|#KHPsPmG
zk%%)u-gM(xPO)}xyK`Rr20|)>N3LcJviPd;=T43E!H(h0d2?(Wo-dup=d{bY2dP~#
z|J6s`ibv>nG?@n)<DbT+ca0731ymTbU*Lq?xN`O`vy1PEm)L~Jbb`@InQX1iC|~3=
z{^s-3Uz})t*G_G}Zhl>1%mG}?qYUV}oaXDoe~@<Q#up#x{UO<J1SFjJ5pfEToO4_*
zJlIXWs%Fl}>b4_;y2J6|T0F{I{`$v;TmB}t^V>Wk$6gd`#ec_9I9Eqt`(tY@hjF5k
zuiTt=AXz_#)(*5vl%HS@$QP7(A-|i>bXl>rP``zNh0${l-Ex(OZN`K{M7e)LXazvN
zwM_IF3=`qt=><552j#P4M6wLpu5eGh(o@@+q-L~LNt&)3Iqv-S$t#wi18bj8l{2^3
z>YHwu4*-a(X6^OICpK(5AM@XwOK3c6`r2VZl@S0a+};zfPyCBd-qib4(J7H4vyPU$
zi8t<QyYplB2UVO*H?6F8AJ5(2u0Q4M?eN@TwslCibJ+B)f6<M_VKY?Q?8MvP8@o^F
z_jOd-G&}>Pw3)!hBVYE4M>yz{Z}_R#IQ(PN`JEOgW9Z%PUq1PwU5<?tO01%gclze)
zlNPAHeM@r5Ql!X9-lw6h2Y-?Ufr@9@d$~%zsi(jW)bg5~66Fw(v3a^ylV9QBXQgn>
zEvI)qoN%zC=)SV`%O~G{@vG*HGiU&Ytfl$vOi5-k0FgJJ=m5P;JkFmR_B(D+PY_Y%
zM?Fl&`4@&L7gd=d0PoiBqwP`%fU968kE_3|uVw&7VnQt6-CTg@>Cyw9P#o|-wvvu@
zKE$@XWfUN?xgBqNE@B?kaOVaqcRqAh?!lYU#Hcr!mp+N#Hv_SE00L0fzSGpi99Rqi
z4gtNeol?(RA4|5c{8YP+&A>WELIBs^gad5Hyg6$rUz7C{G|Qi$fMWGe6VVseZZUsu
zKCHHr$rbTRTw}+}>-lE@H@LT9@g!Vxb%#-T_(v_+{IrORdpU5RtFaFNEb-BE@ZSC(
zVdqk97oRQG^@e66&{Tql2o89pguX<Cr_;%oiD8)}IJ%aShVwv%2F=uv(I~VHiITca
zNtQsT62np?(3yU*V)<m=d@@=pR`d&*dybq&f+tr;rE;OINio98=*;ps*8JG4<=C;A
zs7D=WfDUa*WZZB$H{ud*(1mW(XTC>ed|uA{VvF%fIrAH&XD7Gk>N4ZhmhU_6=%Y%}
zpSitz@R6Ncn1K*%1Ky|29oyi7y=9ASAYcc$eY(H~4;9|wg55jr<u8Q|t4(Z?NDMUa
zZlOTC5rFL;HEGoy13TnF^@DWhLioR+xar_uj{>L+Y1PT;Jb*ThjHLlo5+pr|0UrXS
zqoBlEN?8|qe=X=Who=mou=FHUd0ZCwc6J%1Oi!|;k@57TE`!u!C3HuAnkEl4-40UB
zlhWEnwxIwc<T!OydUpq)Iv1&o1MdrnB|TkyBptw~kLtxY%^(ov%!4=xKw@AgKomhu
zIT1V&z&U!z&@#~N4xFd^?{p<>(2;;&$OeJg0|36wKp!sqt^m=!645u7;b&3aE%Zdq
zPG}Vo{N>QFIZRr<7Y>hYv&G5)0Nx%rMezDGo79~PJx_+GCqXfLN?uYFXa^OVo)1s>
z>cuaeC4x@O<l)M)g<y$r3p`oG55N+mI=;px+d?3unDk{(Y8s~41#nUz*2^eOKS&B9
zO@stbC&C!Ob95wU?CW{@NKW!a2rmtlNkeht08wNbH;`*dOFcM;N~H$fuZ=C{&a37D
zES6CgegI@SCiO*b$~Fo@OU}f>AvmC132l^|!|4Zb%tl(MzyLqs5;e%06qhoZpMfqY
z2u3e1d&&_Q%G{YR;Il5cFqa)+kfVf50f0|A(_<R=rWVyxmk{yA!v_zH;XDa+=wvzb
zG{C@0PnhRozK!$d8ifMon7)oooD25T-WQ+)4;tq&EkjUQI_5_W6z&q*k_&36FSgS_
zr!=O;J+X?O2zt#`y0JY}D6ZVEl?r77lBEEM6b)KW!k+Yt?C-d&g9c9e`7|zbWX+&N
zzo0~Dfbw#odTl|P1R9_fWa0C&XsJAYamk2`8M`zksVlzHXgm&3KzWq%z>?i_Q;vXg
zc$h^<Y7sYD!Lu@z3kFaNlZQ}1Z^|LhD_OV<YI0S12n-;kmwpYLsHrpw_cuvNHK?!3
z>a8;C@yK2FWOrdG&qc|-^iKvnKP81+Z~;1%m;;cW9WTQX%ZwGdSTG1u9?S$<7})Ac
zq71-%FR&$@&9T>mZ329*Q8V?rvF!lhg7@kIfa653uZCXy-!8Yimr50s0eFNe8rV-t
zia~i7s8#?##fujh(PeJ~)%29=6cv|-l#bM%o=Sk2lVRIXRFllGoJzG#?|qd@U5?ar
z$j{Ml94frx-A(591JWcKQ@3-J?5-pupi}i^Bq4a>c-ll_>Y7Ybnr+jV9=f?2!CcNf
zPKlQTUF`U4<Frejln`GW<cB*mf{qNu0FQ|bthkbji-=XECp#6fm&@GOfvI%B2ugeN
zCztViM7L5iJM;htg4fYHc%`RTrYfSt9WGjjm1+Q6bMP9zmcgOK<`gLQI97bw8@We?
zWJsg{G(dYf2ulGjA)pKd52XdNO=oKLIz<zJqCl}Uz3TP`if^QGMyhHosjYXcX)Hfh
z_Z}HSs!pzMzoA^=HXm6S()_Z%J;gTYx}8Thg{c{A9}^jXWgvwXUt5g=3_E=b14aPg
z;+97YXp+a#40s^xNKXUh3Qr^7bv)yMJ9hC~eb$B-=M60P4J@x0cr!=HZUIcaK$NnV
zOo5jafM}5MYAC;6qgt`QJPSwiVOp*)^7LsXK?UjFw&9f-Gbl}3Dt0UO1aBLF_qgHJ
z26A<+sTtC9C@cXW;=n#AoME}D_iJn>u{~ub5KKak-McBihXU}uWCz38;d^8T;3_EP
z;Oa%a-M!63?#QBabQ)ZFeuKQ$;Nkn)^Tjfvn+w@F9KMP}cE3Oj8wS8kt^ok5qB`U-
zjj?9dx9kYyFph~UvTu61tB>H_vITVK!gIX3za)2`?dr}>fx?&JRV2*SUcjE@#XOdz
zK3ccW$%};wZK4jSngq67gen;N95T#qa=Fn}bYr{&;39h1zht<v)0CFmIG;B-;z+Ue
zymF|PeDZa}T*Iy8p<6}zcRh=)V0+0KXHzW4$(+lBrKs>Ti#Hrq?r4QK*BA`V6ngBY
zR=0rV67X!SVfLjCx8?;Lp&?>jPzZjS{i~X9dl=8Nct~g-b1%WW2Y__zwWKKb7kKsC
zkpOBf7QWSg^P-m{(Q9|KyKM-{wB>cw$)|?`*YT)d)5Gd|502Sp5XQ(Egdh=AyW*?C
z)R{;(m4f4E?`7o13`j+x2tz6ES7&w`toBDad$)Vt3mbOI1^n(EC?pRqk{zV02T<Yh
z-En@A9p`1MdXpw@MtWpZnPxlCqkhyn?#vkpCPM(YP|iF`tObxv04}qtBf$^oDz8SN
zc|DPl=cp#$4Ork<<S3V8|JkpAyqebw^jJGkpRd}}+R;;)R@ZXTt9r4!tz+zkEylhV
z>exH5DseBX%iHK1*#Qmu%25`3F3Go*Z(c&AapK_CIGFrc!C2bO<7XkW#pD4V7?qCd
z9l1BVJD$>kvLY6$65zMHVs)4*FH_RBiBm|Ru#@jm8W%b?7-mgj$mlMxRe@#DQQCev
z&l!hb$W+-g0gg}dPc+?sW8&+-KjPro@Vm(oGh6-y0>hzl!~l-gnaJ$_<$kq0km$$s
zh=M|t2crZ>2ah1SXRhB3?k<SD*!&&dfyeUHO>TR@UGdl|+GTA4A2<<kAs}SvlMn~M
zg@kPd5OCUKkn_De>m~c-;pmIImx5u<bLpp3nyEAS={!(j$we)Vf{b}ere9jOEyRX;
z_s*+v+1gw6Qdxa_>QQt-pji1ydMM=JtHtyeH>WpI&iwHM`Cbf!pby4(Mh%v_-Iwz9
z&<lXy6B_!9@}(kDLf0(Qfi1*^Erb`iB}grHo?~Kj0VtjcuwpOP@(0bi^t<kv%%=T3
z5f?jMvJQ7+%4EHI2nZqXo+W#)Dnh7C`9c>Jo<0K576+J~EVOSg^xpEYp<THwfledD
zWN)K-dY<PYVp9<4V<*n*orpE`Nmm#0xCC5DtF9<~@ti2+kwbeLIy=09WcVWB>9^Hf
zCeha(MlZ8vN;W>nQ@V0y&QD6st78jO=jhdi$5P2&JtV9MV|gnmbrs4!a==Tu^!dW^
zR~Ik5BJJg^wGFRXpnw>h=PM$^LHdO&9WT6@ePT-2Z<%7nD7d7b>*Ycl<JGU)W|`~_
z*2!Qt#|4$Lg_Hx|9-FMMZ(-M}R|+q@PUOaxyj{Pt^!oPC*Xh+yvyZ;nC};HTg&!_Q
zB)XJrN;0>dczrJ8^}`c^v@J-WJG&Mht%jEhA~GYlacHU+nna$yuz949Vc~$3`PL@O
zbqJaY@DUF>yKJHkW4156`+5}f;`Tevtam>_fr9X%pQZ00C$~6bv>2}+X3adTFeQKB
zBaY$HJH)Z~tT6|p*;)HI*o+S=?6~1rqu+4|f52vPI!<z)>=WSewc!^zLWaK=zV=R3
z_#=GpI@h`PTppifq)r|YIj<!54tJ2{qx`{-t}ve1^Y85+sy06t&bLxU9n&b8QV!Wt
z&YXG=fB#Wa_*3x;FV{6WDRVWE5BrRu8aEDW+<q?jGT_vDtA<{SVP&>0!>P~54}KiZ
z6evIcVOml1WV9OBCvCYw!6jCr$TZ}Lm=-ddh<!wiVY5O)zMMb!;r$_Dvs{bNK%MK4
zbbZ>SPk+)0(7^@k=>2FX9oT!HF8qlrR>aB{N6|49SW{QA5iMv#dOtNR%f?lRSyu?Z
zuN3~I=)ce7g>@$ff4B8Fw;>b3WfMK9DYoKk%DeXm%Xa;*aai_$ULV|^s1yg*%*bpK
z9~8_V?PY%VX+Q3B5SRAuJN&5xeNUoEOww2kr=)1q^wdPZ9jOt7Gflv0PJd)N^mFyW
zyNj_>-T+Sb==*gN2%d}!&PbLDeVH#1N6L^h41HtPr!id2<K#bXrkTvoBrp5*IZs8L
zqyg8PudE{a=?Bkn3D``%n6Nk;^mcWA>ZN(PW&*Rg!=qOgRfahS&g^{9sc<dS3QGy^
zuj$W;&rp;mKbxu%ms|~ONjmgM@`!Oc1=?;YQ^bC(JYMEB$;?{Pc$G31N3fPUVvgum
zxUTa~dq5)mncL!{_pT$Ezrm9&tKz|0tZZRH6`I#7E^x?dZLcP~Myb8I-nu$<y|z++
zi8UI&%gzyRc0!mv=j<6x$qE;C`F^(T^K%?w@<U<s-vVAuUNx^-YGdcG61@<jTw!;X
zrQvXNXr9NFX0v(2f~Sp3OFtsMf<E~gmcUyRJAc5F$M$wTcYKLZtil!%7J~U-?7e4L
zQ{BGqJyS_SOG1DUT1Y6Nh@pcbh7cfBLz5z4KtNQ~fPjFA0Ya4$dJ!=6A}R<LumwZ~
zD<~?~Cs?r~_R2d^pJzR5t$ogQuJ`P{-*TON0zQyy%rWMFjyeAK{k!SyaMk!(dla=L
z#vX0hKg*OcYoR;HEq&M1$^T_T`q_4>2C9BGvVYP?{)7mC{FvXibo<{BfnR+L5W(Q^
z)06HNz835-c&&|DppPv0eYY%d1pdM?Z09d<1TwM~AOZzN+lxv-QpA6CXB7G5X9qMD
z?0~la?tr?M>vlRA;teM?2Ap2g`D_^={S;Y+Qn(Lr)KhxPc$~imh1fO}u-Oe^q5y*_
zn8-lF3>R&t6q4Pr8an}4UWhK8!q%eey5ZH=B!<uoT^G^ZFeb80Srb%<5&iHHx`7*j
zHBnPDkqca8Ks`HJ&s0{Bl|}gJFIov8O~yTT>9~}-!8O!Xh$;l>5KTj4T`h{P@#ZQL
zULLPNG{J_E_0s5z8r@7EQt|2Kc$`)#D#;I?nN1G@d~?GZAuuV`C5*Sj(&=z%Vr}4k
zRJOKqk^SH1t{I#=BY+4jP)TsV**`Wa7IuG`w)Gv{{%Szk2ZXx)ZVGJ#(GNkJ<AY-p
z!xB?KhQI<qAUzAzx`N#s5Fh|Lvv&wf|BeVkocc*6Y0zokXOwfI=jNqY*~@$Pp8qsB
z-_)?es^*)Zs~#E0Dn+6)^~p2V$V|TMQ>YB3-s1@c?7PjxM?Q!9j`Ep0R4fjgcL|1z
zl!i#FBdBn7X>CNd#}51kZ6Zz^sgB;c3{YBE>qJGBS6Tzg1Y~PlX1zK}WR6!cNv>EL
z%->B7(r%FLw%J6Ifg_|zkyO%2jKWcqegGmDuC9`!gC<22q%1B{5ioj3S{0*j<HP%n
zPiD-Y-G2OXaquq)haA{{F&Y7{+n>ap{{znWe<e6$(ZW34`aMtoSl_?exT;nR^`GDj
zkPTzNa<lOCTk0F+5ES+&g&@X%W86=)$xlqi0uw3i7bfE`x(Qg7{*FaLT=_-a3GLc<
z?>BX4P|l(G(6gwLkjq=4n4G=g!ff|^IaEmri%n#E;3#iD^9Vjb`rOkb<)#;09}_r1
z?Gm1MQw>0z)f-ZUYN)}eGMa7>O{{k6_GR%3+BsX4HRb#R*npaxP8M}d2vHicu3B{q
zrCu8$Lj-AkflA80ox0NH1(ty9HmZClJery#KVS+`Rh34|k>V)F@E9aUQFCh`fZVI8
z3?~&+q)8$BcHX4GGmIfp(5kehi)ZF^-@TtL{PdyvtB!}(uQKsdNnrq9#tGo>c!z&n
zM(cm@NB*s6{m*!ZziP)n;T;yr$Dh|0^gAx}e-pv}FL-(XpTIj9`KpNu&vP*Y!otj*
z-{R74?<z+r!_&Pz7hn!s9bi9k4q1h4GBM~k!(m6dcjixq!_LCpMJ!?9pX7!leuf}S
zdlS2<AnS0OLx(@S2S^2}4F`5H&jA-MI@ANm1YVR2Y|;S&)l-DQE&+qy5RCK&2zo>I
zb;sLx|Cn~!1;5FHpq@K{v=gxdoIvD<bA5aDYO}xHOqgbsY+@qSQL*<0DEI8p3Tw!4
zC=3U37pCBiO=Aig1qBXfP4~Mhk0PTVviCl8DfdLG0A8{1%=vAyhABjAZOCN>ZPGVt
zPb2<HfG0!9;nA-e0m`o2k!L~_3s7<8M>8aA&=E}A`0~g00=^c`GnoAgxd64a4zssk
zN-?Zg6Mo%04U1fVnHc?5i643*?WGQSX{8vNKWSG${u(<n2-zwNk7i`BTKcJ%2%q{A
z#_s16$8}*#E7+%U6e$f;2G8DQDzMb$%RczAGY~8ca~Yl}pXUL~R)xuNmb`gnvsGRn
zg<;&;o4E+p$zZO&a~1LsT69I!8l3F(11k{@j&9sPFqHURkrM7o*^AN|LVr;+nKHgm
zI43|HH1ETh&&%Q@SShEHp)_U;BLl0+s-6$q0VIirmg&_g-A5DPdI%J*JfaD|gF|7a
z2Tv<aWV52j6?LrY$3x5;Y1QNmj~A^uTW`fqH5c>IH3~%zz6>&;qf|1U8Co;y>!_)A
zC|omkY&e~!alPZBzY0Sij@0>dY6!wR<Ki3OmU|@#cX5mYW#jASqUv~E(d}95p|fXK
z=|ylK8Bve1TbmIq#+a0O=mYs`qVAisq?5;^A=yn2w}#;~Q?Vr|mk}Km+%{ZZdznWJ
z&mNAODuZ;n_OB0XBTYgVumwQ4lm_O(4ECfKM;iru6U#?YO-rzVw}#E#l{<0`T4?7y
zom)&1(+I5D9puwzcvM}_eAnTR$8Nn;P^Lul*D*(QUi&L(yKJl|3abiDbHk29T(vn5
z(_`qN2tH*wgf4EtV6mWgzmyDxW2P*i;o1xaBSf2{P$eZx!w#X2$as<9axvpCfwa?#
z>8mR=>;W`2Nt`Z4v}OpT)OUPij5>DTnLFwlOdEztnPZ0oPnOT}A)Y&XTmWjpEFaoE
zF3mWhV$L{7d2Z?qL95m6=^U0XV@yJvW63hcDjX5Orgah-2-QG=I-r>qpKjLTHv)l1
z8YS!DVX539xKgla^ys#a$NO<vyLm|p>pXqEP&ZM$#%YwQ_`#4CYlDnqu<<39pD$b@
z1F?|zdIStR5;;dtMY{E6NwIxyOTf;I+~Oi+N77};!K-$cA%&kQ$BB0W4B=93`6Z9v
z-PyYNbQXy<%ZHOE+qXB~Yu}$nQ;HT3b<f5^hI*gh*gXIJ)06%4KYXht^Yef?WFE;D
z>%nLF2zL>*kS7L=XVWn;WI&5O1aY0+p?HD&!+2)7Y)Vg>8bKoEJarsfIxDzhriJkj
zKq(%W&053Ll36>0P`NUj9oVBKw{>c{+}v!A-?$bw=LlR2|0Y-Foff_-7fv<B<$0!3
zaLqJFvUhL3?J<f{Y{%(ES9*4a3c|qS`M*@A2EcyE1CSB$Pn&ZUbGwBH;NL2@!Jld)
zGk0Grjz7reS)hIWw8Z~~kowaAzwsxY2NVP)E+C{p`A^DU^&8x=|Jnimtlxi<zy5RN
ziGL$U{ZGL>n~wf5dnDC!|LxbGj-_3Gy~j++QGw*7;0RThazv`b0D^i+sX8IeNvTv-
zMV2KjE2+qEQZA{*LL3UPju>@hid3~qI}^RT4Bo^#bhu<dMbS}Kjn%8(*RiR(byxlI
zM&_B(gU3${vd*j5)=gd;m^jeCHrp9O&`?)EI5h08(ALMWNR(l1N0`34qpJRZnl>1@
zNgMLU$?H<K(@QdhSUwDW%M2ebV94vUY4{9!4Ho-;j=?q=9!4rqLe<B`c!6Cd=>&Qm
zZ$Ht!N}c-{L!+G*&M&+f#%FT09C84%(*+I(#VMot-Af(w)&**v@)HB5=(i^8{OU^u
zOZsJ2Qqk<{@s`BqE4hg2ECRE5wJqhdw>B}3oOQBAL&o?G09}>u$FF%;=By3B0@Gz{
z`v^1C_;7u-hgw3)DJ)dW@`roxtI=?6s+;_@OGL&Bpl+EoWKoK2*r{9_xD)>CmKjQC
zNu6%ow%n{!Vi)D7%f4={nPxfV^5A437c0M2RZ9zMb9dm{ifRUi{Q5*r+Wb1@)Rs>|
zyy}6)XmW!saF*p{i5T}9&Bmpe^Q!PeD)xUQb?7_8H#i)zyvmO|q6bf%)6ycZaUleZ
zq<?S$1y5O@^{q#;K>7k4p%>sNHq2AEhwAHS``p0Fmjgp+jYnnap#WJp9Q&-dN{~Z&
z(RLeeac^c~`-eR2>P7m#;ry*hTqRUG1z)0F<Qz?dXELpmZWhO5*F8*e3>Xkpnco_H
zgpJZ|CzboR^*$=~)QxS~sqCKosDK&Ix3|l!sA9r2;BAF`d(6$yu+);9;rI;vt?KQn
z{2S?L7#I6ML%oF_ogFCWrC*_S2@O;OxoAd5^BJwM)&8&Y;N6o6f$K$?O-uH)G<SaK
z>KLevUEc^11qt>#9zy|0{bSH*ySW&kvr(4wxE4~Nn~;H$WUQiX(<lIj29(Pg^Uwsf
zRMmZ`2j0^BgH=jiLmN0zyo|_Xc+Z-(D-jz6$KH{KbocE0^4uQ@xgBLZ`0T**O-CLW
z$n@+R#-}dYA@3l3H5f<wwD?q1blthe6i=g9Rm$aul>k1IQ^q%Xd<yME41TZ7P<nUA
zEc;;_7wVuNLsqzKw+iULAb(&q0*7zm#B|hs3F9O6Uu>A&=l=XfzgYU*b@B-&2;n(-
z2<_27;Xr<AHXgZVZ^EefqS~Um^<Ph0-gT;8_K_HJHQ4f8SSa@h;8G&&zhac5A}`X2
z;fWvW1+Oy$Fm)34;R{PJdM)L#K3e#a6={q|4ie{)<K4LiM9B97X<*kk7ti_RdhUMR
zLl2zA`(j9^vpiW(Ts|2uecAfQj{)rP=0!%hGi4>;o+hlcWFa-;Z_Fevk~Ya$qZRx3
z#wUvqx!akyx1F$c1`ZYKzI#x%dvLoNUrJm)PJCzob>Onn$<-Dvetn5I3=SxU?O+Y8
z9LWA?r$grOXTPon?)EXBm`taKVOM{HM&rU>bf@om)^LeKfuoP1x9D?$L$=j+@83KL
zD%U5x$>uVPIZjzCzFt7jZ9Pdt>%(*<tI#Ww9JKB|v2_qLfI?sdE~l0KDwC<8#de^y
z390mN>MyH_ER)IEJpa0?$y~7wcF6{mF&d3(=&$`$y_uyMuN7<gI32h&KTD1IcBRbM
zzaCpI3Rw1VTAd_b45<b@VuIH6%~>Dy4w1l{RDcaA7q~;lxD38)4PlY*r~}EXL^{P=
zw~D6Z=M{&lRD;oO6J>7<^=9qCO;<nj0)|zb*KcO6_GXRqL%+l=W|m?JTc4g^4HZ>3
zDGbM|;WAj-5(wGa-c(ADy)>AiiDfWg!BDHkT79VVE%#%b7#T>c2%<%{U$^gOddwyT
z=AoNY^ymH;LZM~#uO7BxPp%_6qkIBmhTARQt02?vl`c7ZlMj^x(s2bP4e#%qSIH4}
zuB_+ru%oS)e!MxEWpmCUfrXG-a!X~Wac9mR)X*naQTnaA?%Mgp=$TJU;IPxBbx>u;
zPV2RqxRXg@1Jn1?9)AGdW7=6Q;nM3d*#@k-hIrRKv}dK!?Y?c<L!CQCc#m&!P}%aR
z7Ihtw8VKeA)FdsDJbm1S{FTnV6>^(fPvws;nA6|yOS-rx^y9f3C%(M@WlndS8YX?{
z`E5==v*bgsu&_Hq&+X>9pbrPCFLp;+?aD$%0K$-HfV@mPXpjlS)*Z}<_SrM_px;lL
zswLWRvk!l>(J}Dg-3^w9(zB<&gaHa7);hD>`PnXEhqzq$9pQ$9X)TP(w!kJxopi|2
z^;w1=aG7ym>HPThA~=QqDiS8)9MrHv?3bN~ZTTu8Lj0;wKKK2%?LO*{RzG_v?_xO>
zNr!50QVP<iZzf#dc^#q+^pBwc`i&)g<Z9^g4Hj5v_U&wiV;@s=qxWPzKiVtb`=-Us
zbv7f191gQM(ywDFgepl;2p?-{pW*S?6WM`?YKirF9X>R=8~#|sIbMp>xtc{LVLm-5
zVY;<#+1TlhvI>k>a)Y3ff~TcbF<V(vJ)sZae09b26UEkZ=+X;vCS^5E4|cVcp!pFB
z+I<k6+4F@DY%dxI@OP9$l%mGA?E@SZ`>wHsq-oa4Y=;!WRITYy?3^sM*#RPpO-DzB
z^Wg;%wWAjCYh1aWwcottg6yEec_DWFu^-P|Lv^9m>USY*x4{Yhr1%!SdW@Ty&4mML
z35Ls;^40UGGOE_a+P!Dl=flZ#YNss9Rg?==Yi|=YRG~%RYY672N7;=RU{~Uw-)w+K
z?;GN*j#J9<-hT}quAVWl_jYfwm)<ppfCT^Qs*H^}Hn-nDK2-apkhyIY`4qFK++ge_
z<VCdTRK>+RhNT|&OYM5mj5(mMhCfJmzLIiu=FoEOS68s{M_}K!of=ekj?^ls+ecKX
zy%z!9tTp=e{zJOyh4<Sj%cayFG*I3Yj?pvf0!8qFBU_@z+~l&G-#F_y56Ajq4lpC~
z;jt&K)T$O)Uf`y5sz9_)?y8#)HLt6KpT2aU;w;Hl_pll;SLt#f{D-nucm3n~=xqsf
zV{)8eRf;+pcflBaQ@TJ5@V9!vd>#0lMelDcE3$}O5)3T&B(K8I>_4`>O4N+{_Dmz-
zTb0VdJp;{Yh^_1J*qG~(@UU%QS=F`!O#9CRZ^xfm_#b@);i=)pu(ps<evr|F^mw<*
z==taOu^2j}B3p9WBXNX13L6QpA-_Mc<M^41lL@>x)Q6jh$t9KalmlyfIpY*)r05Uc
z^*w1HIJdUG^QcHiyEDY0z%u+(vzbv10P@LMT#T^A8|}O`b|XTC!dGv$Ppi<|?q4MX
zv9@e7(^>N*;hGNFT03Q4eumj>PBN`be5428dpL#XANBkO)iMXEEmBvQ)$fdq@9{F>
zRwikr<E;Cs3UmM|A(4{!4nhEfg)Be7Is7go3=U9uP^@^-!^s3}wIaL&epk<VUO+5m
zK`{(KVO$+KlcJWCHZIDv?J#$2%jye*>HttdBjkf6657Ps*Q;6An(^@fL{_|r2-&gR
z8eSR!-H!#_kWe%S>MfP6`DQtLBzWs61=<s_+(PPcwo2{LcEt`mZ$;U=xD6L3(ks{I
zjZ5%vGFjC`o)#YhN>Qeo*M>=eSSLZZj?zIdzsWOjNRKv*w{p#FzG@sWsw{Pg9|-5|
zi~^vq11gQz3gbK3;ZppdQ%MEe$N*7F&n>s$(x-ybYw~Jz2$lh%&|}A|3vZ1EVEB;1
zi8S_+!u!@m4+DxGCl$?%2GDwnUQ89yghjK&V&rtuJ6iFFq~fiN;#axF-=>N;iHcv&
z6hm!<k$~_8TZpO=26KhaJA`tdg+5~8Yg7p#u*8L2qEu5tLIcEs5{=J7_0J^~7onC-
zsqR>@PI9S%O0oVxsqwm^MW0Je2MSGW$}FE2SR|J%84I!*D6^{xT=uz)=@MvfQ||OR
zz%jYpwKKqFpxiSsz~ghdH#)$}refuQzh81i&^rI$ht#0;f5G%|7c_mC{<oPvj7)z)
z&XoQ$93KmWGaKf=5YDugvi`!GfzVzMO})fxfrk2@PBjCM?EeL6<`fd~%irM^7QKLQ
z{@Hq2=)3$o$t*EtZOX#2=l>STEbT9nSr!Nv26^(y1;wDVV@FBZLVMu<kj%gZ{=fYB
zADKRgUO7_vM6>l5l3GU26q6nDV*(;t#>!|uUAE|!amO+>>+U+6@j}yLqP`4K#BaO2
z8+tr7tfQl2qM2Q05OS`+^J+V1fpd1S%WseHMAq$d2lw3A&pmu13HQ_VakXu)rCa6g
z!@LLQ?m_`TX#g~R+&zDI{~ss$-!lS}4)#o+%2hB7jUkp=9Tc8rHn<PW1s+PDzH;#E
z2fxRcMGiaVmRV~(xZ2^fC-fo_Z*_k4Nd%P&05#m8u;=%-Uk|!{dDrW6nA76PnFpg~
zJ3mBx>Bq9VtLzpJY6}{#<yA742YpYu|I}^Er}<pDYZjYBkpMAZ_dUkqd*#U`dC2A6
z7D3|Y_jLR~!K>dn1Wm$^HQ748ZUsPwC$n{qh$z-TPsn;Ez=e6^Jfo{K-4|h@nJbpf
zks^<)DHLe}BmCO|2gU%g=Cs<|(CtwNA!1AOjD*!uL#<a<hsgFYB|=tF6xY5zlE<Ks
zNv+ytSl1&YEoJlc#`4@{H>YzvEFX>L3Ozs$5+Eqq6)~NvfCP`q>GnmDH*=|Vp)XMZ
zy#2>Y5kSZ>yj#hRRv}d6m==y*BLL{3Re8pw)@+%m+<<0}<f&Gl)t*WhYk`Ncx`FE+
zd-)UJO?<AXYfDLxP1}KZQmF*Q%rj?JBiJT}p?ih*&qa&K=xbUzwu($ZXb_&OAkeNr
zmFL=eb@yhPTf7jIlKft1t$=TvJm9E9L6tk{WQ-n>DEV#lI-T<TuJ=`4i%|u~z!U<-
zlXY}2C3os}%s_s}29P`80tKWu{lFJRoXmCU(dKQU%Fu5Kt`?e13Nj7+w<I3)Fgf?)
z(E2@Jj*~X5?)~&MUw_9SC4VjNAjQ=%xtEe}up{w<t0CY%;c9sF%%eC1i`y?M&(mR*
z=g<idz;Qy9z#R9<3Fi1CZ>YrCA8=NI0&?uY`gp)z?VuQ%<12h8dq-Vpj`~JA`rhlw
zV?c~|l0Cq<f|}ZsD-RIn;~cKIt09<I;!hQ}QsR{FZAQ8H^Am1t)_f0#3eN9b{2*Zw
zcXN{!NajJhM`##72CPGg;&t_54C|vHmq%8?9n`krUf_!$YadSSge9o-IHep~ttO`q
zTp$)%t^qiz(ql8(vU^eo45XE)Z!26ceedi+Lx4JtnLhgl!rp+_TM7m4DEFLR)uS7t
zj9KJR@(z9Gc)~DxuSocgVE;Pd_}9B@0<W^j!ggOS#4}*nlL^vz7_OV18@M8%*hS1)
z09cuSV}Zt_N4PJgOvn7eoP{${VSpkV1D8FlekQVqMjYjnv0Ay(aPiXAqYSAU-r)os
z6RYT5H!$DxklBmiqO$^qAyCoY=I(J?HcEUA+baOze7AgSF2axp%xIrWw+F-!880op
zk>|NC!Ql#f?&q%S$U>M-xmrDwoLCaS#?TZ5hm=DAa~72p3F>QKMfa+1M94x>PX3`{
zXoMhBWpOU!j6r5$&^yNzLx4g161NQ14_zrAjZg;2n8V#%M9Zij21C|9ED`~<HI9ma
z7=3s&M!`lQi}p-!XMhNRp7BCpNaB74h6HYaLKq&P(@xgOgG%DzXeWDdJ9c<!HfjjE
zsmCcb1gD<|Ru#oJOvgL2u(t-7C)&zKlDC&-<pK79<TPRLcM*+h?y3MV<^{-$FI{tU
zpV$`9!GP*sS|$M8x?|(%7{4zM@d%FtX07)wqIrFEpGm^I9?sD4#i2uH{78+J=t;gI
zpIw{+3@J`cbjTsA%Pd1j6m2@kfYUP=BcMlSpEV4S*>X>33)1WdAgcJWv(1P-q~hbd
zf`5RE0Qx1B{@}2AojSq$4xczuP?~xO4k*8n0u<qU*QWLwm_x?hC(4=deEpdR1>u%z
z7p~E^9yPRsVC`E+-@C3<<=?Bu+njj%5}QBQj%_AP4b_@uIS+^-!nqsGJYML1BMgeX
zp&XV<^GbIk++}?YXklNc@8n3Us9}r3umuQQu6RRE>{8SDahfb{)Wb@Kky8sLlgx7Y
z)T0z6CpHqgW=huj3kA~?N7<G(5V~l;o}r)b3S+ovc-1>+M9;a?ogqSL!ZGEYb7$^D
zIOIKBA(?##8zk1<<n(YkA*3})7LZ0|WGnIct$Z%9qH(h~CH}C9!E-4xLkvNR#*Zrv
z2jx}VSuX1@IT3Z8_Xtn-hLW!|1%KK!E)&+&%?i2_Iz_{+U*)UxM&=*@1<U|G3>r&6
z0MFQJ618r78ia2bgOCTv*_+Wy>E5wf+;Lm|7;(wYll_#kn5?eQ7DMT0=Y|Illx8)o
zoaH0w<h7ekR)=_s5dDLWgc~}B=6>AeC_&piWW(vMXkYsbIqj&XcfJ^{G~QuE_lC?L
z2)@s(Ef)wDqgxG?wUp?9rcoo>gD7TxK4i>dP0`RnF#@^z86E_Hvj@mWP~h4(e>aTk
z5tCP5d=^m{fYWJMWo^Hm;I%62^!ler(z65EHjV34H*`poQ0U#<vr53$nf$^Ca)HUC
zC_@Dy#I((0W0aAK@(!2NuxF+S{S`Hpei|y3%_$jBZkR%y1P*J%Rz*@|cLXA~25a!4
z-cw)i0deQi5~<n`5Fug9zP@@~AE-}nW!j1j*Or7&xvCr+AF7?Pz8y)BdwuXqm9cBv
ze!?4tU0Wb*uhJ=vqH>H;@P^=d5ZG;kdcLDHF-B{5j2|z=+X}*v4Yv2OzQTQLb*&v4
zIqIO9{rq<R%gIB*=uCJtylB-o9VKjsTT&r%lVR~H41ybEgb{B#Hr|Ti4MkQ?AILzy
zi2S25FN*+JUmx#gN?=y*Gq>`}nYJCPWQ%SL7ngQmnX$|*{;mgqJf^|<cW4Ur=Bu?{
z&<a-&PX|zrp&*Qp2}(M%E&~$h`7^ELdwU*fCw^Z3dFAJ0D<W~@)dkvolVhe9D@@1e
zP~aI>jtj4_Itwt~isMWy-c=i>(?b1om({evkQV_7H~_;}CCenoH>*V62%NaqmGOB|
zG;*8YU1nA91{LFIW!ZVXww?@whpOhAciak-J5ny4!9@!KGA7?4XIf|XLP3+A{Jomf
zr<7BeN{nR3H&)AeD1q22*?C>TT0+J+Jggk%A+mac=f5mRl`FvCYz0DC{y%aExjhOj
z3EZlO6<}^}&p`>WZ~{DKkyX%qL^{AvckNGauS)586TazyMmU8Xe?{i`8>lG&ix5el
zu+aNMLh061LQ14A^~mht0=nL*o>IgRj`A%<qHk0JwJ$Mn9Mj2IcEiezGmZcsCQo3z
zdM^M3UWEvux1P8mM2Kz?CWr$>)1;@j8YY*dJ@Y539wx9vmNjp^T2B*P%gwcV)OUQ^
z!Rcp>&1ax8eUuev;Yx?CcIFsYMOnUju(kL~E`)C(tTtEfG2U5C*r}VBB?|jKXO&<A
z$j`0sT?vZ6l$+U#JIS)g>}5;oOZQXJI0wDSap*dZ)H)8*_{yrRa+ApgB90GUAtnI_
zIoz&vMwxh}FLiol2=xJG?yX&uIAIe`I;3agnnNzJz3Ano(5;^^K0<Su@x(7}sVPL|
z)Ttc*H}IK<ggiRxGE^~}=l{uC@lH4)M_fE%BAgBvmX;NJgrV*V2sa|Yu*PB!uy@F&
zE?H}^n6WLS5!roE@v^S-$YHQQ79sR1yiPP7^9tQO0n(?UV&7mo#pZE1>2Ar!<MS;T
zbCsg+X2qMlz*kp&rcF6(jI4y#Q@Ke8_);NnWX&Yd&ijhAn$o)IvX$WRAsr;*ln39e
z2+bopqxB{^CSLkTfD7M_MJ0-%NJhLDTJ8{*bR(%E-bTAaRI%!FMan=`Y7OBqv4XE6
zHzY)^B*P*kQf1`^H?dW5ouvt%t08e1O@L4ySW}r?BL#uyiD1<?Yp~PE+dQ~R36M|%
zG$hv&rxB%jwcR&s_n~o1#WnkFcDayiReoth>AQ|4WButh`i<yeo4S!s^zr1n(VDt*
z19cak)}H=ccTuJOicS4wVEuI)?B&3^8w2%sZr0!XTrV37cbK2W-gK#xBsa{|G(5|z
zE9W8~1~v>2G|buTeiyh~uMu7*k**O*9U8#Ss_g!tB7!av!CkRDK6*0;9Y>ZrA%e@i
z*?lHZgkRD~xK*z^E>a(FP#3{<XGQaYjbu_2CBJT&M4ByZeDxHIUD9N9tI2qMO*tR!
zENV3P(zrOK*}ArwJOL|_NS`2sU@NR)S2HW9#pxWD%|qLfq~H&CTc)&dNUct;=ol_?
z`Lo7Z{nntt*2P_oF%s#3poZWjZ4p5t>*-eRvzEZ1wwPOO&+_2q<1pG1cqLsbthRnr
zZF|bOdR?*92`svrgWf@E!I-pcOX<kHRp&g5tX|e5rDxExqPC-SN#`+_X5nC4d2MGc
zsXlwKv*Al;-_1_ZlCGANnx>$xj@mAR*siWyUHb-c-Cw#61a<vp@3?_)TSg4vBjhM3
zd;6EJ=(68k(PjS#O#6i$|5F0@OV9E<Qs+-V!a_e3)C&C>SMtw#mS2jv|3*Dae{@&S
z{<hAaaV5ds#D%z$=&nzg=wPJJsLo!s;8#_!?U!3w)f-}d1(c*Z|I)PNm2k*Je!3r!
zndP0cZ6TASxYS{Hi*tEpRgEA!H(q-SyGhvI+wRoqR#jcg+Qk$PEofL$@-d_N=YMNh
zhMD~f8WtV|&2xaAbGkfn^_uH0_{Ec`KNd7BgAQ;El65Tb1T*uXvYulT+U8fd2m!0Y
zpJwGLkgr={V|!TH9$2~cw$nqS7BpEWHEnzQh(+0QTE^#(lr)z)AQ@_ELy{XOGc{hx
zx{%+(^X8FnQ88?n`{}~eZp#o_BWLs^UlCae28M`7@bK)U+~^CLD2M~4?ubw<&cvw+
zCO7bgGoZ1Kc1vvNiMLKli4Q$9ktiDR4{rQppId3z`fCVe)pnv+!u{OMuyGP<oDa`)
zW!e^u`*4NKmJ_DJ=w}2nE*&tfBQL_d%~V)2-#}k4b5IDE&Lvi>ub))FXj{rk7ClUe
zfsSOoX#38xczRa^<m!0b$Pi+*@8q3U;~JH;iB@1GJp-dxuX_3H(tuJ%#6>J7w~{w}
z7dLpYXmn%vv?3qS#=-u;&f(Hm6S@?^%E3&fi?FIkr1(-Ku$vL3(7>>daegyAe@+T@
zQ%aodAkq!Ok*bm5Zh9<#_syS^AMR3!`L1<$y+ikucl`AWpYWM1UydfAtTgS$Zx5qQ
z+G|R#O&etL$mcSt`#$c@W5}i3qvyatjw<dm-zj{PP<Ks%hYSVkh{r-Qs<>%mVKu0z
zvCC*~y)eCGZvnp%>xlPaz{zQVa}w{^hjzru{L;`2R_g2!gQBf<oy+RUdc4)nvUdo9
zWA%6<D-0U-Ggd-HLxyBNhlRu^&XVJH;NOrCfZ%YR&=NXJT9;|Nq?vZ)%QGtdXscr}
zePkGgfa-DA#}r&Mm(E)MS%p`F4UgP;3vL~%OoLnqQK{JHVC_Ax0KmFC0SIpN9Su!k
zh{S=^hmKG<yxMWtG(35n55*Ob&tog?C1T|1Y=>Di?wAe*4;Ruiq|}o5=`dDO&*qcz
z-&V1PLHCkiJ;j#CfN610hoa?);sdB%aQZMxp2o08-G&02kg}sMay4c!6UOKz>f;Jh
zqhqBI1coz$%YpdLVwsN)X(gbQeSL1)tC7d4JEL?>#8OJ`+#y6!b@2OZ`l@f<qr<GU
zg6yTT#tVS1^!jU9WcLi1N#+|+XYZczWEuzYbr6qa{Masl2vryDjf+U)&L#YSgxWm5
z2w4Z@oK)j{e&7P<@mH@vW}JWS$hf)(tL8pvb~dk_jQINM**feH4A1A>dzt9ewDfh4
zAvYbV#!tDVf}N}#eKYF6c{^!x_5SZ4!e;UCf2c!7z&dCJ*1<os<k$tpkn=C)*SP!M
z+Nta@u<f||A4yr1JiE4%Ll?S^EHb*hq5g_>=j+w4p97iIS`*>6o}125`tnklRc-6~
z*SBULxFxGx`Y^i>@$)Ne7fNmQf9Y5J7NCFpDL~HzMa*C@1$CJd824x5%5e%=;~x{d
zikGl<TN-%Sm|4D%rS|s^JQzFbVn1lze(vCtigrkP7zwHq^)Qx<Y22r5F=DpyfkMa%
ztH8^L6<kwQ$*<YIq(vSs^uq?;j@KJ6C4c7~ye8&yID|8hj#q8bN2Q(_pbF~E4kxyJ
zH@@urgpK>hWo`zq!Jlg3Un*-*K1uqevi=p$xu8N_;Qjn1lK-W;`6ZJ79ntyoDf3$-
zpO75!GmG`7NdC{Ty`MVy|I)BM<d+47Jebef)DoxvKZx1ONk1havT4^LBVr>Nj#H9H
z`jJl(dt91yJfNy64VTu?+yEe{1Q=|qEQB2n$WhS_#R^Ouxe|a;Wts7+BuAn;QvuAL
z?x?0JI^w96(o{KSZCzC;Kvg<2D57d;Q04uq)zlo7_A!YBIXNUNzE;`+LB%trsJER2
zYFe@gX?2ZeI9ZdVLQ<6JKLtRQlBg;u8I_(er~pkcEyyLiOP2shlI(<7m@5bnG@xeu
zv`=Mcuk87BR3aLJ$!Q*ntSjXXXUR-C?bUu8qv^3JJmYVgssV61mHtUIuVlJ}Xuhy}
zSV-er<_M-Hf{J4BJl`RR3o44iyhPCF04j>Xr3mV!KrJySmj`DKJP%JPDE_;O`0tAo
z{2B3+D<-UuuKg7<IowirrMd8aQ`(%aW*(nDDFB$P%!y#avWFva0D(keaimbu8rm<f
z>()k-&QPreCOL%knIPW)&YjF&nKtX^tKl4KsN4=S84?zaMB_<*c7^~(kyJ?tFVO}y
z!0RJyYa7|tO|32FCBMY(Kku)FDzPx$KdZ$5%{=9wy`0Ox|JQ#*7U-?NO%r&({r@Zr
zR2^I&V6y6e%FO(n<=Nl=>-U~`VM&`U11}m_P8Vtun*&M%!Q57GNxQFE53c85yIwFg
z7{q^pv7ey*<F{<PsN|RTBTrd19|ReaK#(EzC&<vS!N9oDXmR5rdaH?9hnYo}h4nt0
zr3aSU9kgQ{S|A!ao^bw8AQ~cve%g5c4l?9NqeNG<xkDIk-`R~HrIohrlIVOiveh%I
zD@a`SkWx@}aouT<avcxIDj}K9+S;+II{I-@fV^T>wx^1r#(E<dmVjUd8fewvjTHPH
z*ko;5w_#H_7HNdrP12*0)z#E!lp24ukz5D0&_(}5F(6}v$)@SKXc&&A16U&|CyJq_
z3P~&V+8QQQK@qM@)J`?jJ+_|%31zFO5`8!w>%M%A{GRmVy;~ogJOt`R|D=R|{o5kO
z8(V?N+<(S?GXIMG1T%FPI*8tZ_JN_`bHnpz)F&8j`zz7;w>xJc-t&JJ=Zr`N4Gh{n
z_0fa>UTa+VSg_VOWS#0Krm$UFlBy$+_UbX>u!xQ3g%1o>Ehv@J*=8U1q7>a7O4wYD
zhsxS()FNj$fk(R9(rSDrR!tU)kaf=ug5ccM2q@x4HULFJOm>;4+csObHZ{^W{mof}
zg#1%+UGN!L*lF82>-<cQq`P?8c>9A7b`Vnsu0ha(1jhHSNlFEsM`^{Szt-KqKj;6Y
ztp55H5wkF0a(%SHzYTadjczn4$RFe4Y8Y~0ah;&6X$b8(QfyPFY;^dB=bk9)khXng
z&B0R%Un>MKsKV*gm73G<?F_fa^1TyxY_rPTnw+=PHl0x-WR?e4Mpm2tt(xNgK0q+6
zn{EU4hryc+9H5bt$FJuGsJsQ8R^SwZPYf_v7fdGp5BD$s;kf?#BO-cXfd7bFugqbb
z)6Zj^FWlW?e@gOoDBs$PAujk18qFe780T1-!~2$`FdY#n|A#tRXWQBXW40GwdU<o#
zUBAl{k&GcBpC$v3NR;!*lFe{(&UMLOmzSR`Oe`&S4*lEU)c!uWMV9~jMdW{^9Y!Q9
z431YHo$_n;plqr*4r3I+f6^ZET8i)`NUZppwnVqW0Vf~kN^+FlY5(q+ox!So6;^x>
zrp0(gM$H|k^)e&;yq2@otDq0~4~k`om~cloDwZham*oX4+@&FOh+P?7U{jsuxNB!^
zLsj*PUnBi_grN7gk^ZX#?B||N-@z5!&4GT$pNYu}EXBVPlfk2c-}``nj!Oo21OL8#
z`=8yI`aI&KfG^HG)j~)abp^dlTvMk%)(_bi$f!AUq&hgRrRS%R5{9dcC*yXJ_)+}M
zR)W{n0W=k%CcD9uqC~<V(8@$e_F@1E-kAz;P6QQ#bh2Sv$J;hHHJZ0}*!>#tPb-xH
zScw$=DdP3tJwU&1(tkZO`7I;=Gv)O^wgLSkiTIcCb0LZN*Rjc8v1k8DDX;%a5wFp$
z_koRE<W-ceERp+)_~B~NjjNqf1T{sp$0lBwY_3C2xE7A1NQ3y0wBunUk~&S6Q?sjn
zhp#M6T~VXSt+bpgPus%k-bbeCs$o3)yeq@i)LbxKUc(K|Ua%eq#Wa_rtC2?>F9$2@
zC{k2ZX!0JDD~^Zh^g5sRd3<&w?c%+%b$<lH?*PT1XXxc#<`>}GcZX@29#vDWM=1mb
zLovd_#J~<<9H+Wc8^~~EL1_Vi9s^nc`h;fYFl$Z}I3ZKbubiX0<>*2<nb9U~cv#c3
zWy!i@MC3fdk%;MyXTUK8Y8>uP6x0!w2p+XqG&cGPnghI2=@gvnjqS^e(}-iaBNH2<
z3ULyyv}4|;00Mi8AD#h6N7T%!C5o<3v^(gE$lS(t=rs<#6r}^ovHYH(x29+>X1Zs{
zD-d<i=xYZ0Y9P^cToWX{Lw6Sa8JH61;Go%TeuY>J!>bDfMhW)mLzLC^a4GxYcwc<3
zoH*{&+w>Fi+EWDK<UqdQ291&Wi4!um@8UJ9=uf#K2lTa!rIPiGKnnnd4qa4PqhgD@
zf5w@-_5PP=<j0hOX8TCiH$pigFG1HG$vjqCWy_luNPcFsdh#k9CKOg*ygpwOr%YeT
zG#rZ{@=YD$l?yD5*7pUtcwI0R<+Da%XduIcCZNj^O2pZwc$z9kvk7}&LADwp&2nZl
z8B!C9VdQ9q^|Lp@9xZ)xB`bm|;9ANy-brP_Z;bfgQXERJ1cG^Eb~mtZAQ(k<6bhB}
z7|qQ7Ai}npW!l>aak{><kCwn2$?3%mB<a!iV7cBXf)<-sQM4x_r`*Ly4tI<1IIbgD
z9oPsIL~lm+h1Kk77|_C0n?Cl`-wBn36~;t9xuZmPYI=&YbP?I3zDy){Y}32$8rFOe
zQ1$J8XHvsj)_3q~I=uulv2OY9O7Ofz7lmU=NtJIf4s2eeH7`@R^w7Bxe_Ax%BdWB3
zd=2hQAlok@e^YVXzqBS}BMyPpvxl81p*M0zub-YtEe+n|$C*1<dJ~_^+19!>?Ssm5
zgsQa9qcecSW)kIc!IDOO<urMKq?(Oo;z&JcFn;>Z!8z=HVl6^kJ@m%4n^?~GLQBhA
zj^us9zoCw(%X<henBVS(Z=)`Y6Qfk?;Cw{>oclx5-E!1|%X5v|aL)l*dtmw6J+5tg
z-d@bE7BI>D8612z`Mw|kcxf?pE*mUZ`?c@#uAXP!#Y{WgQ@@3Wx6Ik2owfsH(HGt@
z9}An>13>VC@s}tZji-vfT!Do^4pm6b#%Pj_<{{{ZD6fp?ax&1t&3!JCT_@p?{WG%x
zwV*XgHkZycgqJghrPNb}_QgyNb~Eh4mIH53s(-y@gW0`JcL+dUP$HdjTWYi*8e}}#
zJRvuoJa^t|-Zn?Ee0=B*JIQIrl~D<+zC@VI%|aT8fKHY!6_hojKEe4N?g-eAXa>6I
z3IyK2$9K&(Wt0O7fCS`azES~D#*B1nE?>c}FUPA03QhC?8C6%#0?v58!g?Ku_N>a+
z57TzQ1%1QzF3lMy21BbFYp6aItYGYr1$@c`ei-lxIb8m7t%thnP-2MtTsjdm1ns<a
z77|`oq#aO#LX})sx>sFda%k#JQIgs)vs_0Yr)FHtmuVqOxtI}R7*P3Y21>(m)M?3F
z$y$yWVL6^&H-;;%zR;p;H8$p%GFK*Ifi?k`bKVW)@(%Y$WREddzrneRv)oqwFqiW|
zrS_Gr{jJ7Z2N1!frBz~?HbSb6YZ&QmwF~*Ne#w}7ltEw3xcOtVW|xa0o_)1bf=3p8
zV;;Vn`gTcPJhVFH;^|)0S2v^m(B|scC0npVI$NM)^1x+<?TNmIPsbkFz8zcP^{Q_-
zpnhr@%yryQreB0of4p4b9LG?tzY*)f{Ab(KYrqw89g+?1hGdjgH8eC(suYq28ACM$
z4~f*ZsDGN>7q-({I(jstMRZfse=$XYc2;Bdil1*jKEF&+3xVZsp1*uiZod8thcuy)
zexVC5`G0i-e!>iXcLTVa<NwM7U7NyRaLF(1!~gV1ff43^d${FP))v<7F0L1qHMKPF
z?`iKlxaZK3p`oFxSFg^@%)EK?=JV&ze{Jsmzw(3BJRg~nDagvs$<52(Sx{J1EG#K4
zE3c@ms;;TsRaf7zTh!Rp+|t_C-qG2$r+e?d{XM-0`h-l@;UfdA{$s~aoD>fYpBg!R
z=IrR$x$_q;Ub@_IXmD`++VvY#H*ej(bNAjKlIi;oj$gTYM5v7EASq{1a1ZD9y?p(q
z5TpA=_hZZFuiq)1%>?_Ae4Ik<H8Vi|X0Cjm28lH4>Hy`cyN@<c<vpNbbjkF&q^G-2
z@Uz%WrPk45r;_Pw&UGgk-=NA`n>TdfPKh(?vMBt3u#5~Xgyu?qz*^ccS~jQdOu)1p
z-n-RZ-YcLNDCIOcNjV1CA2RZTDO~7!Y4D-5v1R?dmu|)erB<H~;Y{Vh=an3(gAp#+
z`%e{Ub_800q~n=<Z}=G@?-?OC^K`D#&Klego0}uKOij<(d@U00DYG=tL!5p?8AE#L
zy|vWi8BDGuKYER~#QLq)-A+&WTQNy(ZyubzcukvSi4!P>d0b2i<3ft?0%Hk3jDjqZ
z6A;AJu^CP>hcd__ak>Lf3v=84m{{w6Nz&Zo36Nz2%elk475hXzDT5^*PM7-dq{v6F
zj{XNmwn1E(@?yXlC2dM>o8FPb?a&JU&Y23;)<`4XPod(QhH_}#U_7+I-T!VviC8L7
z-_mm~IR1m86*OmLG+I3|;{qR6toQC6dwxq3YHM!UQ~R?Rj2Zkb$z~~KxJ5g#GF)}j
zC70yUN{cU1?5Yx>3%Z<nCHKxQUTO0kn@kTSH`(3x+%~8g{g6gAZKS6NYT6A(it9zM
zohC1)trMr9tno9VEDdkyHipu0`|iW*(5maLZMmqX{GvgcHoYz-x=G)zbUmfzQ2uCD
z=A(6ORGX&KJ^HsIQ)C*DGh@{yMI@oNw#C$Eba@v2d42;HvgOgPF}%YDook*4p6lKW
zg6i}PpV5DH<jw_~LNZEwya9?~EkQwFM7`e!LEXt@Fl)Uf8+?AK2<>HS@lAT6DNa_*
z_N*z9K~F}sR2u~$A2)jn$>Fb^KUp-obXM#7c4SvaE-hwMM#GJ1N~Ji&%~ABJb9~wN
zdDmW_ER9iZI8i&O8hS$Q)&<nD7aI3p9X~lu-mHaU^WITPuJ1HHAuwV<PS1FAhL(IZ
zR=;)ukT=cTx>x<^?km|XM>icUq0!T?BU${#eVe53YmW!X%f3%rx#oDHw(g|J?0AL|
zSsD7OYdh{r1hq+gLf|e9$-zjvtsicqZcNtl_F2S!SnyhT|M;^~@vA@FcNDQ77mE%1
z$v5s5?t9A4vHRjxs(Rn-Zk|Zv>&+Hbu?;0wRT2RYF5B?!&3Lt&htvy;Vpu|^C}~fF
z&Lkh^cl{JS7pf=W!sJZe^<AF-^hG8PBHdk;nhX5{ZJHsIDbC6KlF@HFiYcn)L{eX$
zz1;BS+XUdbWNY~cmHS+>k5>mi?Bo|mL!76XKvrXv;n(<lxdN*O@!Bf$Wc}jp7Dul=
z9{hNGHd!_WzlHGen3UbXR6**4ouO|x!J%qKeE1)GAZuu|=>!P?*Zd?th2>^EKF-*(
zcChGu&*6G|BeA1ROd-UW0sA27%zwq7w!4sH2TNsaHzN;Wq9w+?6MJ%B*xV;qKRNbf
z83js@Za_<!Kwe82Ii6k3ii;)MPbbE+t&dS7I-*bGxDy6%H>k;yxz3~j35U+%ha0>z
zHn%GdSEiSK<cuG6IHo%f{XR4#lhi+qZ_+M%(F@T#jd%WVVFGY8V(n=d9VW4R%NL~z
zG^K}}o-_(^M@Q5MuW6@Qxe}ifZ%M2Z=FsOi0n?%2HL7=yEW<yZTSiHpl##VRPjl@n
zJUQ~na3b8<wlXR|<Qrw~`q-s4w9C5QS3S`*&QY!hpeLLt6IJWM5E5;p!h9)sC_VEO
zq|K;I49Lx1Yr1$*3^(F?4f{GmRJ+Byt;PHnnMX%+oXW8}j6VSVM$Qd%22$;N07CXn
z)2kj)b=>(Vw>7g@gd4|~TA7O7H>Bhuqx5!F%?2_u9mh|F>|v9+<!GrOPRzX-(W(sb
zGRFW1B}PuM#XR@C6l$<u`551sE*e5830+7%9$bkJu-pX0A&oqMNJ&e-aTo8StQUuH
zJUS`E9eTwzCf#cm8T#B$R!_mx5ww6^@BrbpixYeVmLW#0=VV@?NqS4_V<M%r{8E*g
zy8H|6*W9iw8$8ffmTz61#^GiX3l2iRKb4XRpM}mCNnj!70C#K&tWR#(Qnwm_o6k-;
z^;|!A>>wm1``qNIWD~t%olTo?djifJ(5VzeUz5J`tn7$^pU5$Rwbqe6m3(~*?!m>U
ziGMu1>lm%){o+)W+-^6eJ*UM;wEN=6H1dj5_>6&R9l_;yt8(8beq^UV*c|p8Eou8A
z*H_y5V&3Mq%QQyeLH!I{egnR@HuXM08G*${@u0fT#qaRa)%LEd8QMzGm+kTWqHjDQ
z1mZk%#xJaw92{drSm~=xRfHopsWsNEbUvLkUQ`lWDkg4tR-`k|_^AD5HSWNEq*p`S
z3M=c~sv$P#7vD0aVEGR{rwT?q@5~ms>OusKHoWy8c9*D3Okch)shjPLbu0Lw1XmvQ
zz<#B#b9^BOC$xv--`;+FKPHb(l6X^ayEZmC*izPg8WHx$rL#Gi-BWGmbsyf<OM9(l
zPGT>cC+=?Aes;!*3{G;uiuiZsSFE313n{BqDS6l5f%X+2N!vHoAv^n61?Rr<gk3$P
zcYbLuLFJa`g#MvCEw5+Hm>B#uryGsQ<xAlk+U>HHDmHe=><*9G)wfsIa=757FRSkB
zP3WP-!PdQxIrE8AN|z3wNKT(#H5zj%x<*4zLuDVYQBs8z4hc+p0TnT0t*N+3>*$q}
zd2w$MbZok8#CWl^Sn`0J0|}*U;^$SVrM)Y)@6WJ3EzDGFlil&D`omh3?*91Y<e8j}
zab246kG|crdEcpU{==5*kv=mzt3T?-B+fEvb(#39q20J2@eo+WCEwG;J^Hz2twX@H
zAtPCYZm8j@aP6p~AhhuF`Y&F?6PON2!N`aAOhG+%1onv<Bk5Ic;VwV*VW~tp?bST#
zL+190psz=XA99<|kfah{*KVq?%N;b6dSqd{hjRU@QMpw;*6;GSd&|zm*hg<o^Zojb
z-1RDV%Y5MLeBQEKCDkYr|EzFXI$yRx&cZ>j0=rLdqo?0u)OG34&ki^*n?2z2O;F`D
z`+E4}iS`xW{oZX;J}Z@Uh`Mt2LjQq6wZf`TnNgZ5sAo*yH*e8#OLLKPdCk(?^f=Wp
zzn6l@?-}HD8M1i3-l_&Ch)YBC+gq;nDd0zz^Z80^(HJ(0>1=DVCW`WI`=v5(*Ol7x
ztn`b`{=<(WA4o0D;3QcRwg;bGd!U~ul^HY>MY!v)*x#?dHPSBQL-53#baFMS$Z0+^
zoVwkm-OTPPN)t;vUcp9+liK`AP8~jis)U)a=!quviP8-Q4v`bo<j-p}`m#{A)fvSZ
z?j?Na%4on&8^o7ts97x9q9yQSr3kA+l;$!h?Pifl%O;V&%coHLq;gEAP}sP{3w?kR
zIibi|5Fe3q(>zBlDJOY`LT4|r%goIX3Ty+mmj~pDc-w!R+9=lJ83iQP*!$qH`Axa1
zS0`;h;9yW|)E6I^{0Q`1I3OFL$~k4XX)9{aRQ{5%WmgH=`68fW6y%<GXMiRC5Q;8N
z>&PhRIby%BsetLsF^EQ6!t$Gl`SO|GJ`u1$`@(B%6HA}`7xwGjiSye}S{3M4hxkrq
z&SY^Hu~G7~kXV8Xp6cr4U9<#IR4B|u=g?g7Q37$++4j7hvq0E;h%#e^xkSUfhj;3b
zP>)u$V^Xl(yx5FWTq1->N20g^D5)*hm1n)5j%IZ`qE%f`dOh2QPeHFm7xreC<}ifj
zTp{YIM(f(>_PL@rql7!w`3cbxvs%KWqy*~$_1Y>XiVK5`Kw3?5-zlUnUx!*cR=Uz^
z?a&j2S$6r#_B<~Y$dPH`&4av3Vr6(Tx_XN4uguf9p7)B&Ghe&(-Mh-opHYh>tFrhd
z`U&OqYYbgUsUx&9hg<bJ9F~NG;5pTJ9$lHi*pj>wUNMgvnTgmbsVF7aygXY_#He}S
zY|!u??S7*&M-;S}tLHn6vV>K&p-U2VOFm2`Z~~2rDT$YciW-hY2-pOB0lp1g^*LJW
zmOXL!K`jl~rHn#vr!KaTXe^p_yY59AQ?an6WppJk*X8XhW%x8qW@ieaqwh*CLhER2
zRpFD?Q!d%wR<(Ui30a)F%xR6P@B}zp@Hh}XWK~znso1u1r$R4rhU%n)&2n|l)k68c
zQ(4x~sW`f|@^Ob9jI;r<1a+|{D$S-6l*|=yDu=UoN9V0vuVO?^G@Kx+46Q_&30G+{
zoP^1n%Plht=uIahn=En~cFwNIn^howsh0jUZ>%H9M7}fj%>-<oEr;Lds|tW+Uz*P<
zw^Ve3h+E9s$BlE3DUjZpnee5kb72oUHttC-V&rV9><m*S8B3ELE%i|wl^Tjf#cQSP
zoX!%DMI{i|lf2g!z0!gXIYCc3wNHe#yAewsvfJoiP`BQ&N$Yg6J%JIqyj5LcuNw7U
z90oMMBrRnLyfN0K>m9G~u-L9mue6$9l~KYlNxPo4EL$hqOxpHPr|rO%jYa@Yan{yv
zsJz3ab(2-+@#friOxLC_O~OXAq$Q{n*G4g^JD=O=7ywfjLZs}S31Y}ws?8m%T^X~`
zGlRe>KUmZ`6ALj^xo7WflKQQ5sBQmzGqX$ocq;@ageV4<o1*p|N^ikT+DHrc-nq3`
zz*WUds-+|NVt?3T4g|}Gm;<{aXiNq1{vVhg=&qVvth1GO&-X9;A*%|yK83v<-1}@0
zRidy@ld&RDYp*(EFNwQ1OGG?3(@QoyaKd55q268suQ$54`{FHm3qt+2Hj9s~5G)U3
zI&NPu+r6PiB|aajEbPmVm4D+3TP%hy=0Q^u(b0pXqPRYrqkSz7foE&G3pgxI5rE~Y
zUUGt&iy(wqyX<^`Yj`MPo2LTMN98OvyWM`x3&!5l@BS5Kn^<qg-M3`vj+|PQ_nto6
z4e^V4LY*)94Zbk5aR`AiA8eeGcr|G6k|$lZEZCC9gTc=az8cbNj$d`pq<yhz|C8nf
zUFm_nXAeE`>-JyOb?#jE#@q7t(u0oMYQBd@qhNcqq6g!`4vq$yHme@^DC{*n-@8Y(
zFLQQ~CEYx@^I*}}-WIpTYnL7}<#r4&IeyixyX>@v5pVwlCN1<_<MLICC@i~4u&#u!
zaMe5vc)qOqvCrk+^!dZ6r-s#^ZrMD(?WCXtL;qhio%LT+f8e$kfD2+9-J=^uI!Z>D
z=m-%3B}Ak@2q=nxW5h`5Mi?QTf|PVgI}k}x8ZiMW0o}v*`99BIaL()eaL##M@B6;)
zD%`K!l35kwx%d9=IhKf(ZhL_S+6*&rM;M?ZUJ&-Yi6r%sgLm~zb3L~}Rk`<ja?3wO
zGn_l*w|Q9jZnI4#&NdY=-4BB2={bDm=0cb(nTKQWAVE9`K}#k77bqE~01^GDA+CXJ
z&+4od)s({kmGBA(iisS>_gN;NQT0H4UnddWcc75m#oVuG-(Sh?%k{98Jix~jC>~we
zFZR*Dd_z-ow>)vWIj6+nmtYrH9&e5d_<p>s&eZ`CX5gcUzQL)!2{2fL*vtAI!ru{g
zCBAcU3=-}YCAroY+95n#!f||riO3ob$U<oa4-?LZ`i6S1)Az~r4(B}XOb;9Jk=8fN
zGq`rOvy#4gAcwC20F)hrGF3wki9;mJ*f0Vpnbk+@Jod2!(jH7-Pp^$&9;?U84Sk0k
zuGvqSXbG=G77@k~LeRLzvHPz9BOMUAm2t{<AD($C_ICfXRP;ouE|jTftlxgp5IJ7v
zZ$0*%XF>W-{_bQ4?&;1r^dKH`G_Eq=G5U|Ey5{^HNRvV)%d)rt0!?G+G+$+#q;wcj
z5WG_;%_$Os!V)sYkpTIY4B{sP(FpLzdokS0Q~bQs8Tgco?673#w3GXk^xtWO8Bin%
zRC@yK`gl#j?EU*E?_(%HB<wwocSeVoSypq#AY{hq#f(Yk%+(s0{_+f-_k)Gz2dmp3
zB>&D>zxeP!)1b>A?l6ei{QcmpIqPzJ)-`1I6=K${bJlBl*5~i6Z_Vr$^SksF)EsQ?
zx#JwC;*~&6sAw-!8X5H*kGLcdKSZ8;+e1YaJfT?X&1E|xD*+3v%&4IxB=_okEP6iA
zc;RQ{LQdZtU~M6TJU?K~Di=2QPkQdFYil8nXLO%c|KdB@z+yhduAMA=--)#`#M-WR
z%v_$OL5A(pCZjv>#_0q0|9~7XirHOy**DasMnjec57-F};<Yd2JAqGgd$?oFUq%CX
zo|Abq!Z;Th=;vf0`9LnM3D~3pWE}LVw4UqTU+BJfK&uAaje~JF1bX%Z`uwI+^^duQ
zzsn>x9_B}%$~#8~Dn&s;qSM;Ey8D(O!P;YUzHI@FxQ_XS_ZA5utUIm3$N8VZ&`VRi
z>K<qaQ6Re)&FH6zR1o0wfrz}K3OvWGqx){jGeT9KgT!=<CHn+rbt1i;-4XVm@_b2O
zHdiziIJNrdb$==gco+nqOuV3c@@w>UOM&g}K<NKPDjk2$qim)peO^i09M|4VaNH^c
zY|WN#+`k45EZ?$x4)p@95;9h1OsnhZ;481hLIiaQexVUXHyes169jdeH6*$$C8B&K
zgu1Rg`}f#L$w2P3E7C_YZC4ULCV4w{C-;tI?8@U1pAEkZn9)CIrv*bX<L02?<|U4m
z9LLSR#!nRhndJKIWXEqu%Zv50P?syrtv}&j{~*1eAZ7W4&QFlf&Qc}Mx6^DgT!qx!
ze#>5lV3B%C8qClEW+tUZs^XVNUUa%o=<Ol#+ZcB~FXrET?7BFvR3A_4oy+V(w}K&3
z#SkM>c;(YySAdF-Z))6AxZlmp*XgeWy#8|Hn%swL74wXeKl8AoSLKeJE!xACp6JS@
zH$s+v%2}T%KiK+e+^95lMcw+rp7x#!oL$2|b@!2w5^I5SaHGd%MeHlZA2}%!A;pR{
zimr^^4w`DeI~Dha4kZ$cv1M;G)4=<g%*vL!2d=T|_tt+`r0zl=eXeU%dl$(qx_R(M
z=m*&0fY(OF!hzSc`|v`$+;ewdq5lWdkMAt8F`X`YYa@Jo)|zwvoew0htrhF1?rGmS
zDE+RBW^Ebq*|t0>j%7HdW;=^%0ffPzgD(K_+TSN#Dr&XR{&}Nt?Tlx|nV&7Qum7<{
zwKAk$`+X(d(8;V$ScqD#Q~FCsu;e%uX=YAuq}rsbd7!JUq?a);^v&q_Dofe2-qi(j
z{XiF^?A23y8l5{r2C^OodM<j7`$z5v2A?lq3lcVZVs$Mz;9C8E07Y)2-}kQcJ=6ch
z%cl~5{CUGv0{OP;z~yWI)ybx+HY%q3Khtfd<7-M+5BLvmOPiE5o$fF}uvisw2ptKD
zA!6l`Bsx)SA_*&;2$u@SDs!d6#Bvf+i%Z1g*o%4N;^azdNu|W{;;fv!x?(}4L|CFC
zKOH|7A*3AMSYK8_ts>TRkX7QJ7qei86B}krUQe}<D#s^D1%>ZP%<@EKc6qTxc4-p7
zQ0w8*@yValv-7|Ir~ojG$Ee;>OF$1LX>T;p1A?*prjc>Ic|ZuWlG{_7uw>8;1s1mw
z-!GBk5II+2Y*W!o)69REl`MegU@NDn4H<o}AEnGKrMK3T#1v@;hWUQYvl7fVh&ywc
z7S><?BA&qHdng<Uj*Q`uR!cSsOh~y|@BHMH=gk9)xjH8Y?-168?>!!m%+z!$EI!p6
zE8;Y!pUQ8J8b3Ddv>%thyQGWut+xTn8zj)~TdWcG)@VlzF>dxYzD{%rcaGGCPNIc2
zhEtSyG&!hY>;5!6qAcRkCA~>ugK~Ql=&9uVFlKpNoTxX~;r|q;znX?Q6G2dE*~H>r
z5Qqp@_Gr}|T~>d*m!O=Hpwaf~5xB+w*U(fhzxQ}5<hSOzy`X+vUls;P!{uu@8j=cm
zkD_HAaMZOXMX1=imoc#A0vkU(GI}<3>!2@^Gt`v{rZRw8rB_+GPY8|DM6D2Lhx{QA
zXPu7k2p3y97kV|t3_ClVIF|6qApVHmzM^x5jysWSkvUlaHXbmn*1J;g7|v8$CQPDk
z23o{LOFT)w`y_0BJxc%4m(4qllK4-7s|oihc>%NT+b<q(Rcz<e2n--}d8SBXG>H#s
z#;M*Uk76WECPZx;q-b-f10~f1`X8)mD6lKXxe(@|<fx!N=~U~W9q1a~5nOy-Qzxvv
zaB&k~QaiH=v$m~Ko)i^v1B_lP?jXCQDIc6xN#)Y1OV@Qhima|pMdPGi#F)KuD|VJ4
zgg>A&+RX&c`Fts_a$eK@5`-PTl~9)G7GX;?>l2&Oj2g`qmxQcD%?k~lu-&u0*gwNT
zp9ySdMz@%AiTC_-Tj~`Mp4qL%tm|t$XfMuFH*xv8*5lLtMj@C9q@3mZp@lKwY4Rv3
zpyV43YrM{@kzJ4{PT3h6zS}{!VftG@uzB3?-D$h6RmX>TcArt_HVx=_9X1$3eeUyT
z<98QHx~69M(Cw;;p?z-E#s`DX#WKdo7+ipL-+a9P&?eC=c2@ePY3y8L62pPGU%_~J
ztMjezf<wV<J}0ZuVzno0=O=&4bP_*`ep8KHbL<^04~T%lvboUVc{DO;Fn!mPYda7n
zM-?KyhxhLbaq>JmT$R1Y@$3gCTBLucg1i1y05S}qZ^crcpZySwyVfoxHNFe0_0x_6
zK(-)vGh?4vYPH@TnbsLS_z<_C*)7iPa#{Mtvwudv&+o+k6aPw5ZPR?LYpo%Nr7uus
z{6(Do1FJSo*u)t2uzG*{@9F~Wu18M|;g$|ic|N9>zK3&=27%mMBQeDPrV?57;(U3}
z(O>BCT422)9&@fcP?mW`x_w;^NbqOjHInulz0zm3gjMkfdDbFm6p{LdTyKErH#VAN
z)s<e;yec1ivFG5w%l(ewu%WlYxX2@1)lp*lvd(Gxx9ET3g}|6$CN2&7ha(q+<b1k6
z`0p;#IW6-x8QYJ{|K;v%vL@Aog{oZ<3>6sXUga<x*5TSuioUub%yZlt1&|3BuI4dT
zGQ{a)`c2j;38KnvOtiy}%Bfjb^{)7XIL(Tl8mo?iY?1_nqhA@njL4!#<4nJ4i}UBx
zh)5LC)I3^U$*5^GZ1^WXZXTb=Kd5m}Zu4cc+VWJ&cztXQ{VtqBwMV7ya}SEPKraVW
zh&!AL@i8)BhIJ{W0d-%7g<oqMlU$q?4^{Q_qRJHSc%`NuBW%*|r1SVa-_6^|anQU%
zAaZ26+F5##wU~2?kr^0;&*KFeBJI~h$9r67J4$Z&h>Eh*BiPwRA{qI^D3RAd<ew~h
zKPe;Tw?2UKr3YzY9++4bdt^=(HrDWm_60j7mskny*xqTMjyLe<f6!5UWx#0W@u$1A
zKOculvN-~e6VgyHv&t;r_UMG>1J<h{_sttsVYRR|aoGS<cGi*E=JvxH-$7a-e#2Vw
zLx0p)VYEmuD(pg;_1_#z#1$3<`1X}P8pZOke>S^{X4-L7(uw64DMZ!0A?A_ET#1A%
zTz&HI;jT-M(w4%Qhe>D;xrv0`x^j(s+;IY3O4BCf@ON>J!+H?FUf=u1)pSYllYITn
zh~gBq<nZO#R4I-_UPi~bn+)c!UXUL5Tw(!+2Tr-tDfWat2$RZt9q&V&RNL|UHkx=T
zVhhYphA;%{gd<V4oeZ7dgrngaKT??994#BtmCWd|QJR~bUR42&ToV6=&dSM4yFVTw
zUE8r}dG-OZE5y^0J(;1?n27D=V(3}w?sM+1#mF&Gs_qofq`Ogyd>=ARIRWHe+av!O
z^2jSK!`AQ8$m0kM#4;db{C4HWxMckLVKkdzPYWkCuOU|8steoMard+EI@@)VO-Z{y
zqcOSP3O)fxPB#zR7I9&}?`S70<lf?!DW`}Zd9w1xRX-I4><PHmTU*qt{-=U4r4jDA
z52b8@@D+wRG95+opTB0dwUg4$8r<H(N~S7)Y$kmVFqB_fzar;W{qn~HL&c}IU5Vs6
zrkcU-h6849_JP67g<G--zMizACq0+QYdebD{xZl4Z7sMujHM(f=M)n*AZiXSXhK^q
za=mL1OZLJq$rb$<@wyru!c^bt{Js@%v{HWCWkzsbW@z;xzopq%I*+p_BE06lLK|1S
z;toP<5s#>`ArNAudsA&xWZ^ygTK{ev@<6H=wWb=$gsLXf97sE~ONdE5dy_kE9JTRp
ze0eG)(Rm@EQZeK5<lghA_O%HSABAWqceiR4{bPgZ{m=HeZjSe)@sqW$zPWjwKB|#V
zE--nVY2t^jDYhMc$-Aid266hvy3>?}ASm{lY>CuwRtR40J^xOC;nTI|!1nc$u(y|`
zdY?X<i>|O3+?rTR3Cf#=&$yY@-n`%(j(_%JT7no6AsG?KQ0=Jq!}@;q13e*UzhfY4
z`k+3BJ9?3UUwj_`e&~+><wv%C{Ae{PG4iOS2`+wn!@t~jz2vsrl_zJH9^POWiM^BL
z`RlHo3Dc1qE$nyKAN7imX}`@VzMpD>cjo_43qN!{ZICXj`|m6FAjr`Qa7iwUHYxnm
z*~qVa%Ty_+U2`7M5ueWciP&=?6m{?CQ|cM_oC28-na}9rNc%AdK#Q%f5vt+ZEUDDK
z#D*htQ8fAC<v_S>&$EAV;)3EhU?2XW^;>vp;r}3(d40Fyi}|!@FwGa!<3Q-?+_Qg|
z<WK}S<+n7a<^M-4I3Jc0Vdj-Ev^Y`N4N&<Ka_<50LLe?Q9F~fJez_OM-a|Mc16Ty;
z`Ekf!`=EWpXIzfYihDpQ+AtmLv%|{_8YcuTBcK|@@Y`JI7TUun;8E=gnhOAAM}zD1
z<t7I`$}x|{eSvqPBi<)bpDFEvq<2ALJ+dIDz~lfA`wI*@Y_S;_+7)Q?rx<`h)3=cT
zN;ohV4p<e=r)e2Y%8K?Y3jKZ=Waz9DfBzAqIoSIo>OnbE1`%#*6k%ZGwf~kBo*E1?
z0&BgG$;)*7=tpwkh@x|ha)U5ATox&g4ke-E+->3%Zv0;YgGa01MCr~)yv({IZ>XpO
zi6(wwHkJpo)C2gF7>RSNjpb3{=JER2ux)%~3WwX%=(w%5gw*o5rr`v-UCZZ5a-UxX
z?-)K`c^vm~KV~SJMKenaXB3%i^L(~74v&2PyF8)LC^{-ST7ewBl9_ZN4v!EHh08-%
z1R&B$VS$-cOC5hd+6aI!f&q&GJM}YhJuoH<5yKHG>tNt77m>nyOv2gsxrXE9BvMjW
z^bYI8Y6g);kFDqZ10Ml_s_r7{obGjK=?im~6e3L;BD3(&%w&M+gRik*Q8Ld?a>>en
z77`GvKSua$ratH7cdjvK?{7hq7^Del4vJB`naT?F5DZ!n1^|noK_W@a+S^P4SjRGz
zj5vJ84R`t!?c^f@U||=;j01lJ0W%IjMeEu!sabK^`ge?D5=bn*5}5%Dq%>U?d`q&8
zgaYzUCZa7(#Szq{EuQnor}_jEB#}H{4D_t903BsBFUZ!lacbR!rL?BWA#`spB-2|`
zxrmsYE`h9SeAY)4a0kt~xUX0{lA--R_f`zk?S&g563GO2ruR>*XDxEQE10Bubd0dr
zid)Gu3xrVB+@AjIE@N3c<NQVA+{s%n$l3XpP)zg!ed0*cX<Na$yBMQ{-{X5?2u$R|
z>9i9909o%>(VGN~g}cT;V75$5Fn;8yH8>Uy3o5)BMWz{Lf&_7d7vhC?&7brY9y*c_
z$p8i}<%nhg?`XQ9Ns;5`jhz94cx4f%ZZRJhknN~Y4E7KSDB3(EbA5$j+fAju!enC$
zwJSa3Mw!H6h$|k2*KEZsbFST}EV;f|V88hCPP>snCc@!=dd{V;Fa#7wHP4`ZeBV~g
zJ;=XuzSK{xEWozxQBYanX@PTWS@2?6DC}lw(*Gkl?E7T^WO=x4IVraM`Du9)SH(ro
z`IubxT(2VQqURh7XTgIcdTjXdg}I9r1zes*?G+b2=gRiV>UM0#Vr4y7)ho5CCflm!
zpsH5Min^Stj>W33)2a(-+ox7NU;=w%TRogpJ=$J9zF0kZTJ80)nxa-SV_P#DR5PDb
z(;`{3xLEV)v}T2?c1^AJ=1|SGS1&<@z(zFai&1T4No`y7^EXbQgT-2qeBB}J$(LA&
zAR+Y9(1TsBxT7E=Azy#7d-bZrST1x)F}^-%8knG83bmt(F~1RGaRix5UOzj9op^vW
zZ#KlN*Z+7`3;tFs8fUb1nu4qnYmXApXI4c6JVB)Z{(2CaatrATvQKT4uLl8IOqHKD
z<^`plA%OCpAZ=z~&uXJ^Q<F@XrmB>J@*9pX*w=DER`WBRp0L+yxiHfzDVZ~XoF@~E
z01_ueXxSm|J#9vnz50hhN@GAWl;#Jl&2pX~*ddUs1^Z(qP^bhcWrvN}PY%fyQ@>YA
zuoH_J6T>}n3p-=-jBEaK)EaEjYMH|0Y}zLFrp;TVMyAjs?EzMi0$VJ?Fw=q^fMNLn
zaDV|=o}h_9z&ouNFaS{B^i}oYcCnRqBTlLYCfhqVx&0bDP#WJc_$H$~sgW!wji;47
zLB1hUOr_CaSG&$H*v=20&0B!Zwzn}ext&W=Z*C@c8Z<c0=(TGUGu_P;`<Ba9IL2hY
zuPB6n6{FNHakqVeRf#!`sUTM@L!C`1BBiB5jA>5qsVRbFR|-0Z{as>$kGF2F!<eqZ
z7`~@*D)pY>d#StKM|SObXT4UUH6q1EvNX4i!{|#1INA^J{3de@Msiu5qs$dn*4}3%
z09G@>bbFR468exGR}?%_k)Zxg8gM@eZV*49=Vj}8+=rA8###3Tz(b<ncRfNO558Gj
z#M3W4^mw~Ec#P@$SM`8uXLPtmZK07aekeI)HQPE|(st-LI6(9EWVhRnzVGpO>o>6g
zcN0*1*fj{@dM%0E^Se$1Ti>z@;UqY%Q|!%{<(dlh)>Exp5BpK{Bgm`3i#DIZ*I^Ue
zOr7(9VhlLz53D4Zsgl+rD|?i~8Qdx*7dt-ur@o6+Z6+V7`}#Y~?_87kJxKF+-CNp+
zsNIq%+;DdX0}CY$(u3|K0A|COV!Qxx^c*`$Y-ezd{&UTc^S8Ta<FyE&rTNgxxU(N>
zxP2AY4;>$~2TpvS=(PsRD^K#M=(LT)TjH5WaNtMlcSfTPKl3gtgpbpWzPq$I_M~wF
z=3A+GmolC)eu^0Wa!&OY9vIuMo=ESRSX7F!l2)V-filV{LPEy4y!BS4#ileSp5#r(
z98|8<!?IHt<|s%JNBS$C^aMl3DKyMdw@zc?{V%l8@1&y2Z|dv^X(`HAq<lT1)0w)9
z(-{Wt)~qp^qrygCrxe-~a-8cGbiGx`ABryIOlu#C#(V0;uj6iya{qu*&<tG^RqPS{
zCJq)j^FAPfVHD#K|2EqSq{Q!NiAH;Na6%`N8gvxjTceT*Zy9m{81`MuT!PvnZcg*>
z`+W+ofA2+CLpKCHKTN{OOu$Z)AaUgP+evxf9NWHJjN78cFrD&GmM`vq{wrX?o%<H&
z-Nh<~IaO~e<Iz(K$8#7TE3gil;K4gr$e9<3P^IWCiWywfO@}T6FxZJ%Lm~JWg7K8H
z*aTRPOJHj6fp-DuF;?_%$w9N4(1K<9!OkVWW%IxZua7?%=#oASw|ttpy;$kpwu@ho
zT>cz&P-$N@WsG{y2Sn-YaccQ-T&pTRMzbnEU{+1GH<p;g39yu@3K}M}ASYR_^^Qo7
zI202e>ac4L)3V#^vWYxr6Yh$1-e;4%77o6-^flMe0VIrL<4_nE#i8)At4+2<*&n@(
zzxIGRy`1^-P*fj}$D<<JPh6L}E|lt``-1!(tK9HUw+A0U&T=<c)_B~fMgHJ~=8}0&
zR;i-PK(Sc2tu3UO*3U(4AI=jbf4lkSk$FtVuIRRa7*ux3-_>5>hM?HAiHP|+`c#m{
z8Leo+dpA_*+tx>Q)aKr+ZEYP<JrJ+sm7Tdun*x4J*NH6W`XVqLP8&Z{@SPolHGzoy
zS#LgR*J)wk^RH^593IcNE`9&poPW<Ls3K$?c1P4aTF`JH9A~F1mLw<vdmmHom->B2
zz5pauY=L?kDp~PLa^Nmw-P(6qWf_KfkLc#L6HDm{!BxEqvvEJ^(R}@T+R{VLT{gTj
zi#}IObS^KX_<Y*GykGm3y0yqFMCzrNQ@`6@x%CZ{D0f#%5WT*`-^K*e#l$OUD~nO(
z0NvlHXk|JyHq>0c|Iyy0LCl%YwOt+szR@8>>fVhaC2_^?68$oV&)*s8VvoBN<d_u;
z;sYi$qiKJc_FYlB&3swy`XdGZ->$_1?u{xp)>NdK4N=`%s_!u0>~w<s6>p0v$o;n`
z^6Z=SGo!bohJlu<nPAu4e*HuRwU>?RUGLS+G-oq+)fyDlfB9-O7pr#^s{vUw`k6np
zZXUHYGC04}VB0p8TKKursJXPOxtJQb9SV)$zw%MhHu?KilQlyUPWSuWYlKUG^6wg2
zb{u{o>Ub>v`gd2`dH&GlaiEJ5Oe*bi+IO50Qrm$?K-)zx+kxpulVJQUhjpY;b2oKQ
zEJ90iKu0)yc8yc|^>w9nr#~tGxe4`@9`@)d{?T*19wVoArrgaIG~@ZMfayWWp;5Y_
zZ4;BL)scIXQ_>BG(EPu=5C0~zgnV>3Eg}B}ADy>eKfkF(jrXtqvGk3@*w{7F?09CX
z6##)L$iwKO=%l6Cu`E$y(j=0Ka55cCQ7Q^9tpZOkh>D3zpi7JrRzOtpW7(O=^%>!j
z1u$$HnG0K2pV~lD7U}NpE$Hg+A54Fnj>HNMPZhA#q+_u23)t+aIQA$-e$w3H{72Hv
z=VaLTA3xHWKP02E`B4z;8mYZ087r1<u!6(TgM`3z-6AthAZ~gFnm3z@)PdMEk-(ot
z6FoQf^yqb|AVxj0>x+d<;?Cpbu)7h3T(W;J4t*OfhK=@Sc#H1816&D-JGh|)WgINa
zQD8`x3Y_G|h799p%F{rkX}>M{Lb5#lOOp(FGn+%wSPwA@%V(feZ?)9srmFo?D7JB<
zu#r)~#16QtPYPml#18;_9maJZlr40|9@d1lkx_<yxz_&)4<|3Wu16hE%-S#Hlze9G
zO*{W9r)+=i>8=w!oNty3F^($`7Sd?-b)siO65(=Q08f=vm@}f%#o2(NT>2`9l=|a7
z0Xxz&<!7Pdr>5(cFGU>k;iSX;4xD@(E!g7A(R<T=2ZO&9Y8<EMjk_ubb|<?=N-ln3
z41W){9cTuUOPGy@5+diFHF$|kkmTLpP(}lNL3}8gW5(#eN1D66%9sNo3ccbAuJAsC
zhgAkW<}r;$6v^u`_id&gT>m9@JPydvO2MSwSA@F1Pm22Dii<cdw-I6#S2MPv+X``Z
zv7qDl;y|RMaqA)cr5Cy(A~xT{?|TVFB4*cbwBAkBS`)MuKA8~{jA?TFQ($burNiK(
zcj!L+!ab663?h$q1cMYVc22HV`!1j~;{H6riv-cV-MpJFx=;a($auW)GT9}TEN~O`
zXR)%n`RmuJ`XR}0)pdi`cHSf`ZJZC^&r-ay_&6etnmEAbX#rQ_@BpN5i&ts~Cuj9+
z2`HjD;f<)p-D)7xXr+b*bQ{szFf!!lAl+Va>4#j!^oLr3Z;?l}z&$SV81Ynw?fb=_
z+b%JH^j&>CG?CTQ>-LGlPHI||P4tdoG8qk4=p;t}*PqJuiU{QozL2KVF@JNe#m)d4
z{L+nhVroUR@w!>cE7N`O)MX|AiCM{t-3XG`$Gx|Df9Xai0+)q%3lGmdQ7}eHku0F$
zvpyJQypzXxJSvT%q<r`z^}$RbbX4Is(K>4n^9iTZ2NQwlXE~+aIluSPaqQ52;m-Zb
z&DMPv@*B~DDan(S2=@PBwsS#JwHdDLfmC7En~jvtfTB`3d8Yk-&m|>aqyIv5IoIf|
z`p3zt+xbgz;1B)wd}HAI&r*D(_XP2Mwle{EC@A+dK;5|g{U!LXg8Ap_jJ<}aI?$bV
z1I#AM+8M8FrTZ+=*-xn0UlXNJ-Ttcjiwl0PK=0qT%W$tHVOdo5<f1`x2LU{=%CGRR
z{J9Ww|9g&gK~RNo>j+gE)sv?k{nX6X{LJQlioOki1+1Y5ly62en!O8|cFeg}j%5D!
zXCM?y$-5=^N~>|T?_m@IB0FtZW{0o$3;W7)NxxW_?NMTIfej8aXb$A*!0{#%x%<9n
zXfXvncVz0zWSApqEiBxVL2Br)P*H}1lD2!XHsgXGUazqW_BC|8!#yxYMIg+VEW&b<
z^(XjVG&|t|5JAB)a6ocsX9%?H!*}^)UO`y!1lAGDJ0Y^#U<N%jSloh5`t-zbqgRJL
zfF_c6uly~aK9LoLo0E0BSpc0`p}mmi(79pcJ*9_I$t)rgAHw@RSK#S|Joh9b*=vHW
z6cS^FV?n_Ku}mlB{660SJe$L6Y!SQ6y*yhy3=LxjrzxPe@dVB(NYjfa@0_xx*=S_Z
z;B$QZ<&>%+D&9BDo9p-8M<u;*n_VKa%Zk$OQ^dfl5;LEm-*HYnca;YAfwVXRtLy=k
z0cISA946B#YWLuj@l;AUV@3RZ9&N5bVozj^_=|5|+v+cSLH~aE6f)?ShkW9Ad(WUR
zOEBJq!Ic7pxjB+Oja`kyhGO~uCDQ@c%d~*8ai-%05c~v34^o@-yR(uf#JY9$CD7c1
zk2c<U{Bv!oggKe@Lmr17o#{|yVvF}=6<R>(hL~*(7w$%Zx3GkK_Q+W9IZFQSYsski
zSgT+I<%-esEFGu^KG|dMe|HX~u(FRH+*9tMgDWf;lyW#H!1tg~FG2!md7@H#4=lwX
z2JC%U<cYwIsmw&uPX-+&-|~L(Ac-aXRuL(6Q?XPv$hp8o8`r!<t`YVX?~Yr3q}U#L
zGsMCr?-O+@lFOz60ur@b7&F;$9(yUBHbeU8=g7#m?+@31+NW42p#Z#U>E)|VGx=Nj
zD%}DhOrHf1j*7m}l3_}%c2MsK6U-e8j@rI*N%IJWM;s7H9g`R?ydOv4k+UJtTR3Xb
zNM-dVT)Z)=+XRo=*}L{5;fxqW9QdwKFFXU`Uv?JL8Dm^D5CY6BTKZ^WPiR%aXzPLU
z64((Z7$k=W<RJv}v~W(K)k!|)W%BYwT5ETl$g8`@d+Sa1>}*miCgMCSdhd8jhi^TQ
zPoYY=jHL*-y-weK@;*-WpJc|E(2-xb*12O}`=1Hli~7=Cr}@G3I%P!kmS;RS1C1V<
z`fzH+Kaa{2x5r1M6v{V!0VE7+yd_RSru<p|O7BokRDtP_!`6+^o7U#1?8N7h7nax&
zH(Bzu-c*1HmVy0k8rRHJ!~uqn>}J^SJVWMCF24Tv3&fF&t=ZMAT;Jba3Z^z+A@PW$
zo@aXJ-Jb=@^X4Yzo7;9~XN&Wb&CQ?l2r+px#Y>?#T8v2$U((sfFV|Yy=O%tWdfT=b
z@88m~ZT9Ptq6{rR1pslzg&WQ0DjiQAcb)zHMdUtTfn0Cx+ou0-QTlupk%+Ak$6p-g
zY=d8AoYYH(?!|kaucMjTh7BiwM!k#L5Wn6wdUJ9=<IVXdCh-re*-!oKrSmN;^<CR!
z;N<W8v-1h1mWg+yYX?Q#f4>-AZ=crYJ9w%7cL$%?K2vt>u(GOj$NF9SY|G?f?bE;C
zP;c9nWC>qq+;F^tyO-x1A3xG9xve1@{RTQy%SAgJ^0P?bjhi5vD4#Dj>3z9p391hA
z^Bmp{V$Y)sm1$)>$XbqZFx$AL4`il4GrgA>wY>TB*T`7qE~}3E^4zr`a^T*^G-Ytz
z?w$gE)$tGs=pDk85tyn0G_mnL&^#%%L~)|*>+TRGiF%NJxZqJ^q8^QP&-oTL6f~K5
z#rxsAr%Q&<4p?IT!E6je+HF4n`S>|RM2-BH6<>B(Z`WCFP5|9?O;m<Cc2m!Ei%%)i
zL|P%Y-ZD_!zd8Osn&-cPv(8v~41t6vq~o78p_n?@rR-LHE(%P@VaXe%#$PXU?ahT2
zD1^Nt5_)!#J2!&_IlP_k1IFi^q;_3u<-tnDx_vkW%*9F%tI_uxGD-+=6D@G{gYpaj
zj7Dow(0mxja4ZBCpJMBl%BJwesHh)w?MuX$Lx%Q1kQiDkSUd8F96nD`zMv1^k0a+v
zkUJ-l;s7OE4!r18q>D||QDZo?HHtx7h^~j|8U~hgLmBB^;BF5I2v;-Zt`H*XrXESw
zNT$RB_M3%4tW}Z^0!uit2{Dp-C?v%+?^Af_5(nYRJdtFDP`#2*pxKY@3tq*Lk+DU4
z(GhMWq1ISGYofAmShyu~@;#^`nfYoeTEZMc++~x01-bnj^m{;w?~?LZLmZi`Y$WdS
zngio_18TmdS2D;Zwh~tW0AnNQXNURTM@LO3CDc>mK0;tG#N(d2UH-MLu_^v!gya53
zIkQAcw1P9LZdfugT7pg-OXu`BZQlLT<wU}V81iZ&IhpiQAgOpS`p0lAY{%7x1Xwlz
zeNW<t>@vPtXAU|HoYS@zU8P@70j@saO$rAuO-o74#P>a9AvHiUTe#T-5V<-)OvCdQ
zwiJePUHvBGf<vex#$mWVbr>)AvOo3BA)Lt(tSwGe`?;PB{v+{bKn=E{8a16(k4s84
zNM_w(=GeKNC<@Fz)((BdbjzKM#nB#u1G3^F5Dc(<D0yr@*&l25l{pdBmp=GA2?-7M
zfWnc!e21->=kmhLBa8-+3<I|ex9m*4RfYUUz}+@={4HpFTMAI<9s*%(@x(JDCJV!&
znY57AR+>DG$co)aYVpl1bWc~^$PQ7-3D@RvlE^V|%e;OIPF9tqMCQC$P%nWdH{QC)
z+d@OLMRfZzOxlu$IBm?1**9^D<IxOoXM{+SO>C0Qc`-nYa_cu(DX`^5+ZrD~I;|O@
zL3eoXkENUx=K6#H!@9dfL%%o|z_<uW%_pM~Q&@G?Hu_T|u>hBgM`6_8SnyXht)U)t
zJj3uwBF*xa#B9t9d4N(txxnuxa@q&-d_T{UMBu~|9K6R~xn7$e&x)qVONp}aH>Xe}
zUbqfvJ=VUZ?0bv72PL8ilHOxrk1eD#K`t~P&DoHCF#zGOy3nG$#h$z=1khBwFuL$A
z?_xAFxrCh(4a&eA_7uYRi{=5$ij}4fci9+vi@x@QeB1%D{_MAH6&N5eJ0wu+$nu--
z3+7QZxhMt|0?5;;WPwoPyr?v2&L-ti>OD#(a=ct8vFdTLF8IoaEEY|nK`&;RR(Ee8
zFrb)wV7Op;GP*?hsO&#mYN3RGxvEuZtOq3P)F~(D1$MP0;jtAqD6hIw-|THx93FH<
zM;U<u^0^=)cG(rk0CAf5brA4)&vWyB>@)#*1El=X7rG}x61xRuaRf{CRB>l$U$j}q
zxS%2c=q@MM5Ld?SHIGW>1khI|adfyeg`oRTp2NBJJ}m8)g~Yd0?jJ!3qSjnS8&wcw
zbqyy}v0jjlP}iddj=wK)qENk!ui|SG7Dyvrw*?>V0*{l~<aR-=g+lE006A+}T6rxP
zxoX-3CWrH7LL*96=tX-Not-%8z6sJHnf=@wINqR|09B8$RieotadHL<P<qs(Aq@aR
zdK^MG8*x(9CS79vr8Ec&rT)nAmAF(&|A}xr>#KEzSD6a1b2VWrxTG*QgC`2ie&+nb
zk)MUDKK?CC6a##q2hIs^R2yrI!ic#z@e3}!_O@z1<#KCo=TMTWdJXk>`c&S|^R=Xr
z0*w=Vd#cc3FxZt7tdhiMRHbKX*GPueKdC}*GPe#}wPa4WsF*f)=d|c?H@QActO;sY
z3=C3k;lA$y=ukiw_se`B!=XjGHBww~0`zE)$a@18c>&0C7`QjZtZX{0${FQ)-Vn_r
zzc_*;8)_1rItHaKx4~-<JqoHfaz!jbT)r>HPwV2G;JuVij+9O^#col(>yu~KVDX!(
zJ*tM|y*C7Zjvu-_O?FC?`sv;Enz}j+{b!mMx{{N=Bwo5Vbmt5wyN_jVfssz|7Ejb}
zv2r9bu~6s@jTeF`o?eYbL)cL{T%MWtBU7~_&SJ3}TW_AS*du7n4slF^7xw^kgeLJo
zGf@8>Q^^?&^D!JNG?KuK>rWYo@cYJj;l0dURet@ZFL+vl<En0))4&%5gW3!v4sdZ%
zST#;)X2qU3JpkqCHi>Ub-W&MGKB%;#XWStp5R9^nX!r5bciyJ|b==P6B9H(5M!~T?
zhEB*+0NjTz&acn^2hElPfCU}F3IHW`066~RFq0D`)C)k69(g$+ehTP}`%WE>AAbs?
z16Syh%SCE?o-(0vmgy*a2!7NnSpKI6+hFl%c<(57Bc)m!BTjg$3mTOe&}y-VKH=%u
z=72AOm6~yC^Gb}}Z$P!QUReCw)rbz6DRmKwyG%TJ8lVNkgAI_0n56Mqk+-EzVEH`|
zVpdpDds0TPFCE7;@ZI~pw7?4i1^~26$k8684Hu$ZPPp+dpjRo&!laW2+Ff0rEjIa}
zs?1GX>pV}Pl}FbPJn3X90h7rl;lS-e#r!~^S0C)z+->84;DGm(<~Au5??e#ibXV}?
zW(Owdd`MOk>ui`_cP8*|oNXw%nj<W?9}U?+!eV_TN^z!htJJPsO!F`rhWo)+PKHru
zU`4^6jY*!XUzD#ekM`ht^a|<2HMndwYe$diYqT*r$@lz=852i2Oht$0lHU_m^?u{c
zwVYH&74%g=9-D&(_BrgHNS5%1J6;JMdoxIc?wpWzec>vrRI>b@J&$6;yk(Q-$4&3x
zzc(V`FvZ=@C$~BO0M$>?;00|?k7R8pTUIw2r*sZ@Gy~fuZ|2}ww!+(s2F(M0#ocF5
zM{B(~hkMwmr|fV9$C<~y#Quux2k(2XPDckV@euXyb~4DVV!h9&DGcu`r2_Jbh>8;i
zU16ejedwVuo>3?9B_Qutb~&C9UOO0kb(t6N-eD6#E$znewUxj>an;r<)Bgr?9sl_7
zE7_vJzl%0U?!;Nreoe&DkFeM&<}tBsgZ#MkLGvH1N2Ry=;q4wJ?>i)fq$o&4Vt<99
zsH`6EfI%g0RtZGjUd9#)X{-t1h?28@%)j>MxxTJkM~N`;F<2>lCMyU=qM)PW67&(P
zceqRM`H5cglf)~^6s(9!@QGE0=%xcUZuza`tWh3WF7%yC;3wr`UWq5{i+A%{(_fLy
z5?UG599l@-6n!pX;j<z4X?p7KR*m4J!><zWp3K4JV?t31S9D}Yi89B&wsyQNMpsBa
zUDD%!x0j}6KBHub(b7`^vW51azgv7EW8|!PsSFvPl%cs?&DHPfDRL&vnEZV5NzwMx
zpR)}4IKRJ8ac23kt9MwR&p8BhTv?Z&^!O?ygsjOFiGe8BDsMNeC}4yXBP(?k_bxvy
zpZt$^;h*g{qT9+886MOR5!rpy7}`I(tMvHajb!2PH^bq!ijr92AHkMf7tV*F8rxa>
zS&x1dA0dh7{y*6pFT%}V%awopzVbDh@O_AJ``<Mw`H)Zi3_1;0RIj_Jl7{Qb-m89_
zo+E8}YqsrHfIEi?I%I&lMocHeFZH*~Mpp`RyYEWyeg13!+2`%v8wb~x1G`y;HJ6fX
z4TL{hb$wT;O;5*bB`SZ|yu1COUJu@XMZuWLbx7NFV2L``MSZ&?$@dce4~zqC9E|3F
zWxEG~rv*+(8)x1SOUHmE@J6Z0hiX(PSHywbK=vB}9XL+MlpoJlr;`IX5)0T><nJ&p
z;0}f#TXg8sQFOHqHV2Wv6aqfUJ8V6w(|dgV$l>F@&!t1^r<3}%*!v>ZNPX)h5hjJ#
z)-UCaTLug{rj3NI@9W++BBdGKo%=(Guyrc`lODmHRbqT&*|>nkw93V#j^(WK;4At1
z*{<W+tAVad6GAOB=><Di|4X+viTtzt;A(cMwdjYdomS_I%r`B5O(F8lF50ZiX%Et=
z3^yNIaYUGZ-?+A`$GeBQ{`~3RqX7Zebn5kQwU%bQ_@{&TkaRp+nd+<j=L5~01?V4F
zdejyjgpN)SE6$E!m&PKA31}=9mJl9Eiiu0jP8C;H<YnPfQi3GNDf7Y+T*~o8eykij
z3%`;mQ54G$L)2k~i7-V)7C66r7xBW;99u(IT3%V5GegJB!h;oJnM_bF<CGHmkTbWi
zG&!0vv5~Em1xZ5GVt*$rCTuN!%=yf_x=y2Q`nob51Z(sYNE0^VZ#Vdw<&?9*<XB-z
zQ^tuyn}8#c3LbfGhOhp2P{@Ad)yuKW3p+xdabxL3x=!?$k0YtWC2(bQLlPdAGQ~<n
zuaF&aJCUW>d>>&a@HCa4K|z^gS?v`vDo~}~qH#}(IfB)YzvMhtNLsaKdC`3tR#8Rf
zP}o?*+a*+sLSoT1Hsl@sneMO$^n7;ByH1TU?4JAT?sT_{kL)d4JDQN7O6$RY!5TaM
zH+XJxdv}e`l&sbm(P|1xi}OVr+j6>^5c<U7i^Ay&4`DYd={OCXnpDUD11M7DsyOV#
z&)}}MxU<sQ5AMf8WSy7{Jqq`998{@Xm*5l{7SEC}+w#nTrCErl#~bX=cw4P2g?WY0
zYd5T2lqU*jDH?e&B4dbxE!ohSx>~--SiFu}bOcFor(c2x&FK5mGj^{!#-ZuCzL4Du
z3lA2}a|nh-)W;&7;v7D-YrZSSQWQ$GU_yt^>a%wg)}`y(6JI#p%43?jZjUXLb3A7l
z%G$u2+KSs+e(zo53%(pFv6bbL;l7paR$8%Ts(Lu{-oZ(SY?s4Q8iAwXskPe9xx8xp
zJTT{E1Vzq<jNUi(OGy<|j^P`fe&IhEa37T2fqQ`#K6xx!^5grh6i}2P$Br;O{xs!f
zwu{F!jiDqL@MZiOURyb}`2bM3mkqmW|3)^)xT3aiw7gdS3CyzQdCFZc%YpU?FXb^6
zNsm`E)}B9J&%0K6U-fQpd*8egCH1p)Bg4)I)aKF$qTg!v1hn&)kI81!*N|VlIoYcE
z)pdUK?H9Ehz`t12a)s7ww-+K-y(@|>*$tyZ58%Lc@Un&6euU{&c{7%AOrLzCwe<e5
zaHiM(h`614eTziP_x&-<O<irMM7?9*rLH0S_v6Z+^BT>d@w*@x^B1p!DI>9(gK4+g
z@1pPVhBAjURyVy5KiJ%_dDwTYyX|n!ktB08?~>_#wBQ!Lq<r1I<;T&I?^~JUj{$QN
zzZO3))*OEdKK^n1nQ$po`I8#-{|9a3FW+Har7Z~1ZoKS{PKR)-chzl<xa7xxL?e8N
z+sa|GYC9WOKUvTSMq4&r4B8Nbaw_@lpMGq~o#~C4$>KZxo+Ff}KGOe|MSZLHCR~+j
zV!IdW%CM;E=v;`db|i-P1lNNgr3Suz83~X1`(YM^C4{4osk&h<V*2>MhpBq?edh<M
z|C#+gdAhB6Lg$vKwfnEi!TzW$1u*@NlP=FeN{!I{=k}!_x}^Nyi-iCdG7h;ZWl1Y%
zl#`~ED8i1Og4j~DL$vY4NUpF$rCmk&5Q?K*gdM#Z5oC5aN#rPjLbpgD=6YY$2hSC6
zdIIRQkU%5lL57qg>#k<4Sp01?Ro|HFVT9;JYA9*bar+V3(|WY8j}Kfj=&PigOvGpp
zd`9$RW8|GB<Fp25=?zuhX65+?jhN2vbIEJns{uT{m(vTUPa>n@=`M-`)F@W&sXWd+
z0-gLWBh9EkueKK*9U3!^x;{N@Xpq7M!7=XABXsm66@sOW?nx&9X8HAk92fg!6Y8dD
zY-BYJxJXga20}aRe@+u8%S99{*2WyvinBWOrsU$v$p(;=BrL|oM5R$*(L7b;K5(OK
z*NuRTN7=uV7WVN)ha-Ij>Bfo-_^TSO8T{RIT+pylZ(zNiHd8M=mj|VHL8$4E_i##N
zg?-U$G5QkeLz}@_gf_v0`Y~zG*t5b!rPs;KALE2`8$RI%`-oiQb+p>aYf{bx&{%X-
zQEGiT&>lL*I-G(5^16Lti<vekp8=eG7xU;cE)A-5$)5v#6{ZHOrTQ8uCI$)He4;TA
zhgw(Bt)m$+uK2D`E~4rwcmlmGZ8&qpZiZZ|+kdv@&}xPIRWss1VFG)6<!ty16|V^E
z6NQ-C&>PH{)=lGm6UH};%p$=x29BnJ!m)a<BTn?ZviD<35&Hr5c$sTLsDU@MJuA6p
zB8INXi%exdzvXk>@G@=Z>bmAz?wZp%2^IC@_dB3_n$cDc^x?AgUh_*z-~ciXpu)Oq
zttA`GD!dplb63gDT)nS%I*p{FAz5sWxf9j_Q!KYC{2rM-)dRE}kpZ;QFyJyTtHe*M
z+&Qx~w8jq^Aq9N+JBEiX#yjJzpL3w297pO049|n#WK$hXb<$rK1j$j!Q2n)^kvvBa
zUBj-gHKYj73o{t}Br5L#xV>JrWjX#b;W$$b&AWU*S*LDXuc~~P_^M-OIH5=w*LF3&
zg%yJN<sz{nL4zlQQlcNk-OO1%TAOQ*Kk#*LURwTzT6ptPzCjerau@#z`<8iL9ux7M
zljWHWb35?AK<yC$+N(I5e5bvX8vA?uK6*ozTdb*59mztehyLh)_Gy_PH|4~hjD6Vk
zE5X6T5+0m%Sjj^D%_G9~`7*hbTc02F97AjuaKhPHz4CgxOOL#Unx%WZh1>`r?P|1K
zelieFBjA1lE1IS&twJ+uP8mzxM1-sC3cl5KWv9k148E>SNO=&lCGv)IEbNofi(dM8
z)$Lmo-ACiKoSgS@zfC&nD7z2;G<7iA8@$(3GNDViAd-{h#D6<adQ_pn_lE<>pE(~=
zMd{;p9FQ|~HfCY`UVx{{eKaU#sF4*o#x&9b?CTx_`d9;9uFRoaDxm4~rs&;Fc)1Fh
z{bnFO<V&NQ#{;=-C1~I4b0}a9Tp!YIdlB=)=MKw;H&V6kU$D=Va-XhU9)p_)zUx*A
z;1c>GBrF~Qu+I{Eu@_U?(#!mlmi$sud48JqQy93sYh6Ny>2|y7l^8$+_vXf<sMkA1
zJ2n5&E@9q9j3?*!zSQm85x(-@u%RsX`FIC4_+8$>+dH-19ep@pjQiDh3H!wH_|6@R
z)gwyp#PDnN^<PT=Ma=z~TuFJ?*>>CF$?aeHf$h3QIml>@r5J1jh(VY68C&4!<?AUn
z+=P-U>&r!T{_YLyWG+r}7@b$W__u>--EuzpQd2(g!!pyK$r!>9!v|ki*#c43&kq=5
zw3aqa_6}aC;AXBzoY4RLyM27CXNmLClR3|V@3Gy@i-w;WIPjmu6Gl4BjjoT<7ZP;i
zE;AjQavXom|G2AVetb#oinqMXe?S(5j)UI43r=I(;4N4Nm=y)X$gDL;>v#ZA4g;=t
zHqg0;;vj(QEcGl!c&EyITl9b`^&kduDq5^JY+L{@eeu=9gNoUFrIW+FTmecHNxz4V
zArDL=lZ>P>j&Jd1>hn**u7HC_?9r?dnpsdIY=nT783q}Im}g;zNJVa5g|SAWjKZ>a
z@3TD?rhQDPeG7UP0F=jroA!Xr<w6(Gh7kl-@&&>X=1LT26C@aBbWP-hz|5@O{(-CW
z9%wld{$M6j17%i9jI<Po0K^H9Rr)v%vjnUaosCW+ItpkL)wD+nYqk4N1sYu*Nr#WQ
z8y$0i6Hp}M9inY82(a9);UGE42SV~2Mif1cafPrxY9%}oM+jv`)?386JdTTCAtZ5l
zeZWVSl;S0DN-#8#mzK(NVNn>^1y*LperSp}--_>x2B{#xudrYhfH;0WE=Jt#T_$fu
z*{$gV0P==k;YrX}D-gIvWVVn6nEZ4GXSS*=md&Phl7zOi0=_U$q=tFCor8?r<P>&H
z9K7VY{a7yI<aq{1Jmn%Ij0OA8KVmkHHI|Q&Hxw)uk59xBmUm<NPzkk036PQaMF>xw
zBZ!#{QzH8aamMVeCOgkKl-a;GAhCbT6ijYl_mm@MDcUATxz5NmQXy-0GFoo|1;>C5
z*Yt_?vW=V1^-qL3F;Et?=^Y7Hs~FSo)B2T8;NO7oy{+_D8xiL2;Y3P=L{xbEo~qeR
z5Ldmev^W(ZqU5XWnE6;WbH<UwZXh#s;p(_~W}tgkzCilrz57>HZ<S`CX9R!;hgq?1
z9_L#ZQui3FBYSQ``em$ST|G~yh}nx2S>utr*O5$<jXXkl@a?GVw`=~QE4&#{GrJ-d
z-SXTG1e$**8w<#(<IKITdd<w;BN32CmdH-PWj|cYeXJ~UV^-_zMviw`9=<Tm<PS^B
zPTJhae`M7($=*ETO5TSgbmI_T&6*Ttf$>WW@7Zh4ciUNiHeYOIK_lutmN~%ZoZzBl
z;rKFWLe#w%VW4?eUYQf?i|lVEGQW++mn%s^5e>~nvQuKn9?DE~5}Bt91?NvJx|0eg
zwy8-c&_v<nycJ`nk|$QbqF>y2n=LDupG|p@RgwSlK|W0x%bYw=K&W_zlAolSoqns}
z)t^*j*0fb!XB>=`4Sj3CiJXlFzq`cz69|4H2#!($Dd9NItQ}gK0RN9Yt<bYOhPru#
zI)}YnZhE;)<54)H=k}!3y|NS{2)3@g_NN)m^Yx`H9SCwE`zHbjT*A>eB4S%zB2Abq
zw9CWV_1kF!r1$RQ)u0xmhELT%tJW0>z7_V_k2*)PCo#T=GUx1z`1G;6NFj@v36I4+
z4xxH65l3AJ;+7H+xIXKfCke@qb;?<=%ej@tuUgrCxhmhON~EERZlxj-N3CWc;oDe!
z{*Yt;et?wcKr2t5PmY#c3*xw_`d8~${^O|T$gG%F<DBW`+i5BZK_WVnp^qCPMGk5#
zO&Ch=d#51qLiKfL?L5i^5X1?{Pss#%6tyP*Cy>SosRU5fiee6dkOqX-bbv7t)P&S=
zqpR*ahSM*(a|ijJj@B)$T;*A+zx=SSH?U~+^y!=$bYZbN{^03*wQ70z1Fl@?fk(}U
zSV!O<WWujeE7pb*q@Qc+*XdDWSZS5bSqZ`NkhFP{@AHp0B%WoVZ10g$(NO|3Tw>&)
zgk8s81UI|~wCaYkm2$WpC!qiUdY!@8lYCi(!8WF3RA5r70QCWjQ;wu|edsAFIL<9-
z$&S5QQH13+W<MiQ9?WpR_40m2xbf>T(dtjzoC=<f#nai@WV;vQJj;@-2KUhq^h~-h
z=fu;rJ<dSEDcsJzt<&ztMXW)J>TR$0o(jz9m3X46x&IGYXC2k#|Ns33%)zLQ(KWiI
z8+CM-k|GF5ixMggGD^C;q!j5<f`BkWx<Ls=hk&#Kg0#E$`F_5?JI?+0&e<Q=xz4%X
z@5k%;e7sniRNhfu%kK5_P7A8)dqzE3@$Od+$5!vVx<JNvpM8g5-dH_ES9P011{<Re
zPqj8;cbojv1=Y{(2T(Wcfq7fOO4gtA;4?P>*%sw|Y95-W%PbZI7w?uuvq5zWZ4^4s
z+U{?MTPHZ#)Quufl=3(p-m|R^77A?KgeAX@cj-{-Fo=AI(;}ztglDpJE)I4iu@q)|
z^DOF7aZC~36M%Qw8EQT&y^pu<(ymrkVN$5Ipwz4CGzwyTFV`*03jBj(O0m0n$s~Ac
zPJAL#e);J?WV|l@U{ZkoTRvQXb~^lp;Ej8fcO@b!>Ak~!abZy(V)8zOthdlE#EKrc
z$OQMvE0f7+>&h0hJP7W4cIcug(zScH=Nz7wSDbU%@~*I<lj#V+fn)c}wtkapoW4IG
zIt?m*J0PpiDK=J&rXM_2c}M=rx;N~J0A}d-Luw!W;rwVML(0H<aokS<sINz7ZZM1F
zC9>as*eSR(<+2j}iOS{6aQgw^@hPwo4V0c@6di5OMUP6`jY3mL7Y_QHoWO_e8dV~d
z^2dZ=K`*hLQPa$3(1v1hxerrNVE5>f+4<<u$Ejp9GEazCPjc+I|6SbBiw``XE0^?3
zhy27M$3~iz)XNgU$jhOF0<xrpPI8&9u#B-!%p-8q(N>W$b;q%+f$q~9%ZA-yzaEfd
z=ZNsGKoCzmpGQW3a-WgO?QPly)~k`+DG*aG8Pild6i*)#<O$i+KdvI<4&mV)w?@#+
zB8sgU#C1^yBDAOUA>`q_Dq!K|**onY_*Z7v&~uTRbz&-&L3b(JNncNtO_#K2u#HcX
zU8SBY8<zFHl!r}B`Aom5vAnCo_NnZNx5P*IX9OSqfpMW?>3WCC!;iJQZgRhY-<k=Z
zNP|9x?ap~7S^#Q4<^$YcQP3G)d}Mk**Z8pKV)v8a^qd%8+3f~@?4QXcYt>`}xYI#h
zy5E@m!-X(j4VWER?Pv@_vpA$RHdo`{Jm_iA-f&8)65A4V$;TXe<x?Cz&bhWE2W{Nc
zcTe>GJfS62{7A=nnHduj*cSx~do&qi^YO)v!5C`;-|_j6#*4dp)J0_rV>Vu=(+l~y
zMYw?|?R%zO`aWAxD?9nZfrzPz^1$X4DQe#iWk~1Hhp%IDWdKbCl{VE(-(%mPnHCdJ
zKqFI=IZF_6A<Bd&_&PKu4nP`;uj|l;u;WQ804^eYM{Xg`C5!;yuPr^r+LVO8g4p>;
zzP$31vg*5E`x^k(2x=#l++;HZ1HhZi7`#2O!opck%lEbOvde$(yNLa2!0j&wQS`{B
z_Z<c4>kq!~cYdkx_{xS{8`=A^8r0vQx|U7@o~fd1r<iI8TDQ8X|K8+@`uBEglC>Zw
z24cULf^(_75J`E_6_uJTMH8}ckLR;UJ@$$_h*`B1uBv9b5p5qFBD55C-DkHG?*16@
zVehSq1-<H58cz24I%_-U>x*+?>#L^px+^U(tbiibcf&VG^Uw&!zsrc_UL=s}dkXae
zmb!Lotv(Juv;VzYb(O(ur?rcflLT9zf+x4t=|Ke%n^?Ulr;Z|;E<=JVt_koqX{T{Y
zQy$G7Oy1g^G%2$Wq5}Z$_k5H$Q>FFVTkP5kV=A;h+FPjGlLmPHVE?%l>iG`8+j`w;
z&5MQ%*nli%0ZZ&`t8ztg?vP429ba##p4p~e=}de4E}NY`1_hP^3}8bU;ofAmxLso1
zD%TgZa)#h3W@JVI8SEHMzW-ugp{%0PpljHsRM}TG|AO>95DPoF&UIM3zuDIR>$K)@
zeQ;f(c%K2c&x%-}rp}V|+&?MUCWIaGmq4#2z=(P5w~kx4;(q`9di36Fv2dTP1Q&et
zm;6uCFEue&VHzNDC90Smczt$kKNMKMYSLN<ynAlcf}yF7BGA-x-$-E&e#VaS`#G|l
z@F<^?*|kK2TRePAxi*}t@hkLKefmjs(jEI-f1C&_>fK-bdVb%$bvCg_Bh0a$r+=tr
z#CG=g7Zx(5-wiYKeA6HfYe^yFH)6}16xRLrYZ`U_I?3kEUp5O>?%N0!mHRCEKAhqb
z3{N>VJnU!GJm_6H8Ru*%KNw}W#(pc{)HtY`9X0X{^F~H;<-}mFR&51io?V4=>ZAf$
z5k5>K!BaJ<yrOAj3pSiPx4O1|F>9vvXx#cfhhtO42tUVsPfq1h1VNFI2y$^=E?zzn
zdG3gRjJ7GvlJZ&N;Ym;)*(@pMR0f$W5kyL9`RfR=EJCet5=tJHCy)Av&?cm%<rm7o
z#5Oj+O=gg1NUf=ruTK&e>x7UA)QU7kG%P@%Ef5;{aQyIUL|0MqV&9Li1H>H}Giigv
z$<U8kVzknU5mPgx_uP74sBv_w2xuDTq*8}-laJkX`aVEb*r_FccUm64ViFgVrB4yK
zF&qifLZC+&k9r^=Z9IA$1til*h>t)SM)q?pannoLQZY}*Mw695h*jb<ZE(`Hl$+tm
z+>9UG`G2K-`UO3#TODShwmZ6GCTP703RmHs>zS|Pa5HDWnYL_&Bd#Deb}@Ye(|3M-
zuZ_$31b^S|72$0&*4D5(n8K}Bq|a1A!<9pjddP<uwqKv%za{tQl2L`EJV__smhG&$
z`BB<EwP-dSUyr#OUNz{l-q)XBaC;i~_e)Pf+G2-PTq<R4kEXiH;ti={1KhtSddJHq
z+8q5Fs%rXud;gwvz+N)@l=J0{wu=Fn_Rz~)w=Nyu{Q8~EUiUIPL~BpNw@7(S$0E;j
z`M3ffP9eLw;FSO92R;&M?z$4i==^3SiVVLGG!pk1vU|bt7g-u3@cPa7IHV@7H(tDV
z0Uj^?$#peR{zndHB;5J+D$&y}xRxSop5A+nnWz@0ltPf@rfLffm#3SWyRBzhI#;e|
z-4hymkX-QWKg?Evla#j{N6exYyYLb6+#9!E=l+i#p(5q}pSF#cVGyCs;z)Y;&5{_t
zs?E3%&9=?56iuP6@(gqLtyekD=h|fm_wB8U;%K4mH|1IGLaz(leYgLwq%C#$7I$si
zkE)%z&Oh5b^@^_pcN`daPKzMNF;hHPOD?6D#&|)y-ex|L{FlvhcSkK7YGbjzP+Iw|
z8sOC9p}owFqP*)CY{tA~Z)e^0UPA^Iw8c2*%sWt>=eAG94EKCmu6q$=PsO?qAuq%Y
z36O+Y+&j9l;{F-=V0eFx$z={UN8(3D2l*$jS+IPV2XPT#ja{!{<UeeaOw%j;Uh)uY
zANetKQ<5+?V~p($JS?s`G=$gK9Zk!#hy!Qz`}m~BMI_#<_NKOtHMbZkIm^r#JPtWZ
zVAFmdZpNK>&!<_S7^^*TE|~IXDJ6trQ9>kP3M8o>=K&bz(-IFKVII@jUo;;HsalCI
znfl`IxhlH!NpLK|Ha1B_^v@(D#TdlHD=@e~B9C6?*xYKXeY<*<OVz4e{^XT>U*xs<
zz=)>mq`=RKO`^lQ^%pEkUQJSroyzY=Bjoo>?hJV6L@<g{k_cmKzEMnzg!TQ1UI9dq
zN#Lh?xTD6rK$H?V2=J!kt@0btniv#{;(I!^G$_-UE$+{kpkFcZ66R?MWBl?!VRITB
ztsP-CI7|B*$`TdPtS}XN%dHq}GQ~sk9gUH<$CC(dLMaWsG?^Fh<X&OnTE>%rPkrnU
zP^BGzu{4rX>FkC`nhrP`tI4l#f9D^VS&Vihq(=Ytmr&Q~-`CY@z73bl=<gRbWEVpk
zkbBrk(@z1|+ZJIw00Epc(u<zpuTF7$znn=QO6nY`j$~@qv@M>Fm3QOv`nriyyjhw^
z-ur-O*Rpd%<JS#eM`Kj%iTbS(W9f*<u|swfaJu~)NTR?sPUn;+_mlxXev>c?a&QDK
zD>y>TE)H15*;d_;O3%+wClm4R(=kU}Q@N+Yd2I!GY1g05kU&Bq-j-vdTb53E`7}W+
zKtjJD7?72au(sD$s&ys(`^KOvZxZT^a?Wbf1{Q{q*7~lkC7ouKaK@K;J{0ew%10{f
ztq!TPNcY+=%}RlmaSxm_dKo`f`I8W-u-r5m-2OO=_K-h<q^gTv@ky@uK??T}lW~-6
zOmSpCjXIrMb&_|P8jo=p$T$L!=)1xDT0*N0RRSRQctQimsc1<WgVSzu@kIaz)iuNP
zwHE*pb8~tIVqAB$rlggTVdc7{M>A_0y@5qi0ObJhS?w`YWqg2;VcrsB<za6XLqHhi
zm)7o*#v_SIk;)cXX0qLwmICN|Z7rE4md6QC5%S{nay&$Pa^zgC)+++;ISm>^UO+;G
zG!HE-mS%R@X5cPSBp~rBlO)Nkn!J5iYvAYjuD>!^kffW9y6)}0edk&-)i7hEI3{p0
zqAveK^^G<O?vXUprnvPQ2M%l9{=lsA9J5_ly@%ApN&Kxa8&(noz4^j*NTIS$g@T81
z1a0SU!GrQq)aDi=?Oa${LsUQL=x+9M9zEjI#|bHT*wO({Li50qi~n!tqOX*#*Sp5+
z9&$F>8aST7Ker^ilJ!{Y%$+2;6;|Ja9bLy)N#G(*>w{WImxjBJB?#*SA#ADNejc85
zB**Ndgo5c-B;~uR%|t`$SsX6hvpbS39j~FeY{IdWth|h*69i3fF0cTeB&0`$A}^z!
zoh6!71S8~d>=FhSVBqS&3PLPUy0qnReogcHY2%z=O8ND2Jhvo|tGk|-h#A5(B$D#y
zA}k;=psLeRG-p`ESys=1R7C=kLb(s*RD+lNBM)Hn?$t^_X9WE0FQTsLVBdIHQae>B
zD|9=ezyuHG0QOwFS<Fn5gTJn#@0yU0iDMSCi!6Kt9KY_R!HPbN8y1&t31wZ=3Y(a~
zeDY2=XN9*<<uQpGO7qaOxxY<aLR4sqpL&UG@*OPADeN>EX>2*z5Lsrtb}`@e<&-+{
zc6RYB?+Un{hn025d{W!7O{vf_SG**MsiD94>VUB8x`E(q|LV~GK9Ppc48%Ay`=Dk%
z1it3nhK(2kP)g$wI>7<gQ;O@VD$G6!vfyV@{N>119=YfB6ff7}P?RNAT6z!8k--f>
z@|5tO=KD(g(64R2g4eh4n)t6$3p!04-n*LfA3}xvNcuTA4~#b2)+cdo%{trr;h&<G
zNXaH`ML2!ZCNI_?;w}?AS3X8V%3r@}{uw7*+b>iq-4JPQo8rCcIC-W#=VNm3<3R{r
zO*QvTyt&9kM^Z#g`ra-bM?Y6<Py)gj*Y+(Z?2c{C1JW8x2)UOopXwqU+Gz(lZog;G
z7y)EWK$1=v<0z0Os=Pbtaj}Cy2qODzoX}MKJ3;`MQqP(@a%%xDoue#TGHObZmJ%dF
zQwVII@BKW8I%(M;{l&c!g#XP-+BW|lNY%%DL-H?6a{au7nG_hS{OurxUz&%98r35v
zMK2QbmDIr)>=BGVSPJTa`GUaA_w0Z{B^bNvfRVlzp$B&Y0R~d3x6`$SpQ`qR+>=n{
zO+n2wgs^A=Lr(k*dj016!o=1?;vm%DwL%xBo-;pl!!$8o%L#E;!H~ORL>lhs0O@H^
zn06#sjOGSxANa%>uy+!Az`%^Rz^rRMj~-MzX(bPe4mrLZ!Ra3%P##7N^*<C3;Ul3J
z3<F_!fg-3#@i*Zjo8ilH{;60(q`_(ALfAjdQ<BI$(JT}55zrXgzp^@STmZtxVVa~C
zHjs#QO&idr%T9{jv%x2hzd>iM&nHn)$f<C#%{$MacB06LeL3*q26WI7L<;~iqrqY^
zQRMhY;}{=^3^KwM5V!z8-!Lqjiz12;%uYjyRlCf#AgJaY?8>tUly`ocT<|7!C^ROu
zI4-SND_TAx&Qdb*G$wT@GW|`|(je?@n{ly!Oey0X0qrNR1i~FM;v$CPAo#eT%~+GR
z@aNi5)>*Oj3$eMlDBGBX&tBo?LkTMkk<Ajp{fvozr_TZ`6T`9E5+9>e0g90)oPtrw
z{;SAx`x_(tOfYc**zEwc&<En=LZ{L=1Dwg2ytGJ<QjXCnu%{_cRe-X1nwo4{YAZB^
zE~T+G*zK8DQMQweF^D<rftx&IyP6trKpGE;v)cf<u$wzyY?|7qG}%f^5E-j~e=^e9
zR67bGv!2ePnQX%EF=Ln95e=S*@}b;v@-~zClyh6?NSQn{nLk2q86YX8;UMdrk+$N^
z3uaM|RXu{<(Im;rREskR$S_g>+3KhfpcYrIrVUeBGzS?f3Q$2fyDpQ_IE}-gG~Be3
z%0CuNnQLU3dwbY8>#u9h_V0|}^4V$FY{*o0r`?Tj>2y&Tmgi^8>gJTRK=>oK*r#Xd
z8N@#kCwQ4VJKj-+{)_~z%LaKu!8VNGw#6Hc{ftnQq2hc}tt*{%fEFV>hwn96mqJ2^
zcFwM;!Il(|E+zLaabTBH@MT|#mNRerPM&UGR%$FO@KZh?cj7PE0&0_j!b;0eZcmfN
zb8Mn+;P(rrt#W4rGO`7V_N4Rl$;e)k<r<O|owyaQ2^K8G7V$b$eR3;Oz_^|d7hauV
zUI^w24Z}`z?Qsf;BqN!D7A9kTIXVGKcst-nbt-@E{1g=Uiw+YE1r`rON@5kb(cmT;
zC+^t$|AnqoJPcmmHv_%5_DePR$~3YJkM3|Wy$imzT~^vuDthj0^dowvIOPj~0J4cN
z-oXIO+v7#mU!9sUSSyAf7r(NoQo8jaebliuIjl4Z;BwRKf%`VpLpLVnptxa*NBXIe
z;WXRfobrfMCf8l6w0?4KI}YA`_4jTr;_4n5v=tHJ6#{g2>?1H=MN_O5*NeD<xInsf
z*$O{J$Bfn2Y9<dJTE+03QmnrPZ5>r+-!;I*$*tqx5P@vgdFF|9Wg=&lhGrF6E(24l
z+j2mx!zb#GDPGUrU&>5Z3JQ^Nn1Ck~!K`aeZci!xaHj1`xh?2|JKiyByO#L6&?oG3
zbO%OOj1;|T52<F(jJF3D{nlSTheo<{d=Szcyj$tNZG3+O_RIanH$}!MAp+T|5aoq#
z1!HQ}mg4gyT-^v68Ca?Qw`qO3f4v7pnwyawOkPK*(pz6DT4$~gdRig@XrL8n(Bj2b
z1UCF-W<QLn$sjNN$@9iv%5y9wfZePK8gD7-rF#n_RpbxC$U{x50w%D;F?j+5JajOH
z>}Cfmk;57W=`-v{GnD8ke)e+XOLNF_PB6_(G)W_?Y>8iK=|sIv9Wi@{(UKIVQ8c5L
zLMyn%)59J<kcBz)v}f32>UCe$DGwG(o9W&lZ92w3S!%*4nsNQqfj${EPig>sOri38
zSTI*<1U0Ypv*sGKYy0F6Pu`(;*h7`k7yQUN8A=K+MS2IvgT<x^@8-`qpTnvpV2FXr
z_GK@li+)(Ko->CXZH&BAc@Ug>1koO((N8SR2b8$NIyeHN21jU-NFclzd;2byzdb*;
zx-B>>joPoo&W|ioIGzDmd!tGJLg$58k1+*Hr^bmsKFE|?x=s5)&BVJTLl5?tk8)?H
z)?eFx4+dUliTW1*{>M^Wg>@I;S(gO1V~^SHq{F!XA%LUjWx3@$v#9q1O5R`MncoXj
z!)m%2#&8F)9$JB(god8Q&-L`XT`YG^wx3vDEw=OIQFL!~O0oirfE`&VR9h^Yp*c9C
ziSPa>Hp{~IUPIpveL9{V3QB#H!sWgCYniw6v35Juw?+w!;^H4{h4k-SQeaN~TS%Gw
zk$qD7eaSRIqb}f1;D8i`>Gy|yD34YTiJ;|!w6)PYVms{~zlm}h_#|J96pqGDBGH3_
zNi@aKRiv+~gx2*#FZ^;q`s3gpjxK7qvxu`J*#qDh40IN0kCM-?%}EQn!1z6cT~{vc
z7zEji3>04uXa!gvdJX3)L#d}iIlO?+wZM+E6&+3b4f^1wd!y#S?qo0G=czR{VdUy<
z=Pf3<iEjS1%==o#As|CPp0r@O80}v(*ohfU!5SK{;$}C8-(1AbU`OBU1K+Z?PJbE4
z77Q-YGUIlky<Y~#7)KI%##3=|A1TP@zf5ch5h(v8n74BehFf;^jltIRM}O3y$B!m0
zrf~<m?(t((&x7F<SNVU?zCnExK?z=eMaI*xlPp&g5&KiGwg(V4lkAVCo9)J#LlDBF
z!SD3_zuOI#HIMln`N=2FCQO53+s0Gk0kSAXQ+E*QxC=29zmq|aE~J8^fQF(#>1V*t
z{j)yD{xe}M#tF16a3*V;vU?$OSzof&V_vtXYkzJd4v{3C*;*BrKOO4R^HXLnWAbG%
zV`MV3Vjf<1UQ4Dsi#{rxO|`dy+Rs+d*ooH;^Mw@J^~`g4-F{d&;++`lx@^#0Jw9vJ
zUY1dJq&(7~yWm+d@?xB^D(4e{xKq!IFj_z{9c2!FeKpDu=<R*6FnCXb^o0*syIRX)
zWyjgP;teCKPF;X+OK1MlZ03ir`tug4hJzX6pFS>a-W$2Mg6uzE>QwAbO{DFv(8ZC#
zd-tmQDVJBOm4@CMkJwb>KP)AbPq}3-bFdhFWSfo~XWSiE_?$RxytRBN{%s)Lk!tj@
z=hY(dz<It0#ns+iegqJP!F@mVJ}a1iAZq`z#NXmLoC6JBQhD_vKl6CU6!~~1@Vx=z
z@s!4k&v&ZOP-Bob5T0L2b{_S8yXm{tGEB7SySndp>8@OI^uT4aK6MfcUR-r_W;IQ?
zrUv}&euLUFum#}ot#BG&-U*OSCroC$eJ%9{o@4-I#9dUW>{MUlIhcDrQW2K2K^_sv
zjLX4WhU*c=i<Px&zg_8EYz_PkMy#n84{C4bZ*z>>eU(608Df^YI`l)j)av$Jw?<c6
zXFpJR%;)8#v3S(B8;HnzefE;M^9!=hK)Lx=Y0K}m(&L{6zZqj-C}adx=JvAcAbRVR
zZvB@zW%N&lPazv3H>nHQ$vABtvnRIm40oz-uAvL04w$x2HMT>OrUNs!)9~B=f4}*L
zuKn5P7<#<(N&AjDW=nW^veP!VoyxO*V%Pic?&9^mEZe=$U5yZY4bg@E?Y06E2TTB1
z7wpN48H3rdfFw)sgHThePy+CB;uozqg}}b+F<CQtc>tIJ$TT%52ipfxuPX5vz_7or
z3`be3$pf$YNhV+Zi-sA|;L&_|yA+V++W|-Nm<2_|sQMx6uLIP51>RqWBhTELln)qZ
z8F_j4IrjZJC4L=;{`%Aiy|eq9SeZUGgg*DvS26<1DFOHX{v0rWF+nw$Mgvx%{KwDb
ztvUF_mWm6l$`E!OFU}1&0*g)2@}o-9R6yg!K!g{tMjWnAeUuXRbNi=)Z}-oKe~-xF
z$43dOGIoDl>;D{zpJ?9V{`OU6-#9s#+CS@tjm67jYmSWr_S7TWBdu?{nZZAgLQfJo
zk7h4{<N)9x55YURUOI8|0lVb+E5fLZIG7C$Ox|3P%{pT5{q5|1_S7@l*Fe&_sx=`0
z^TZe(M1eh|AaVHt-Th>c{d3@h<h@km%U=!`dd~+^>yNd)^~KPmbcS@&ljmyLzjc!@
zXoq2=-!3O_>DF^xG$kVqfBg)ho^LFo6Xm&bdUh$ALv(5XakyVyK@AlVheSq2k|U8E
z@*J_`Q4+GuGz^kb(5QGZhB#@yNWKJens|90V)Ql<nH(7&9sNJ?+nmUM)3op?BF2q^
z%A>I2@(fr={UlMX@Sp7M>&Sl+ycr_$y^-Q#Gj$O&%imU3BZ-8!tsT<YMZm2=`UfJ1
zMxt{RBIx#*WF9Uw7fRx&zL0wNM$+VJH*mq#7~Ju=9#z#61{SqC6bbMeDVVqL)sa^3
zzyK5T)UbL5XZbj7wD=T`ldLc?DjHQob7uELs!;jCOt4Fau|YnIw`!V1le5W7G)#r2
z)m!718tNKkJ+801`Q>Ks&Cf!I!n%#lWaDAX2-Q1f$jv<EPlvB=CyW<yZpMS1OFEw#
zeI<2!!owLln8sAKNNx^7a$2=zS{<&9WJ08epk!(X(u}<78RDFe`<Gvr>g3CcFF37q
zM@c^3h3d&^B}X#Gvzm)YqDkMFHT^wqe|!J?eZnyng`WR>*v6F21mTjd@z!vm2?Vlt
zDf@Kwz0BWGgH6!!gB-c89CY8ace^t+*-;!mp&|abv8X<nFFc&l^mV4of{mat@Ax&@
zIW+`Tn^g-%Xyi~zuMIJbi_wR>_DzH2gTK$YvSdcHDYAtMjALYT-!4DSw?P$C@@<Br
zgTXT{90{C)pGx%`Ub!-p14k_Eyo?pz8hL*M9!&>z_(Mx$@-i*8Q{~@S#wdu~Ju9`9
zJbYv2DfeTOI{ELFwsYq7n-M&uAOzGreM7^FE%Q%|ph1kZdqAm&u&xx3fq-v-V;cCn
zTUe-JpjN)4UmWR1CMJ*ZZmF%VW2(l(27V!u%vg8#Hx)DV7(!&(YoZ>Zv`%Q&89S6G
zR2#i;&R>oFQ)O0(-DgH(yXb{!L2#NK;YKo3m;0PNQ+72~y=mn&=28kvJFrOvqPDWU
z{qCdsA=}Rn+v?m$ZCl7U6(4o1GVcTG{7RJe-q#!8*J^%93RiWl@d@AQn87_1!fBqx
zPjsFlRE2w`M5jDS#v89Sw1LXhuqr=&+UoTw<SzFIXS9PwJ`mDG7)M~UpLd1~aubqz
zBmK_>H7GY~eorW$?EaoaUlTo=`oM>Ss%+ELN^@#H4?CLqe}cBhpYHiRsv4KOzjplJ
zplyDf6*-41K$SvzGyPBX!`3Tb!j~r-|0ijCQ*J>H_MfEfSDF7Z^8RZ1)g-m+@4n}_
z)Sdk(@cS9C5&8W5Y_mN3@%h%9in{adn%1A~TO|?a=ey1Gk1zJxHtH^ZcAl_5-K9Ib
ze!1Vz;CXp4#9x1Thy^7}{hrbiyE>Y)@Vq)+xY)f^U-bKRb%K8(_V;v6xa<AGYj<Ps
zYk3n-G4DQ9J!iP^dq3H937PtqakWLw6aHl#Rt&hNjUyJi{5O=$USx!W+?ZbR?e)!r
ze$Aj4ph7OR(r8i+f0aLTD9GV99;l_=i^$uL6d1DxeUyz*^$@of&Y|owo>C=Oq=}a7
zWT3S1S0haH@0&`=UyIdE>E&WRh|$(BMFh2|{>kWf+utmiDLTz#xSkki^2Lhs9ypIT
z@F3ofqKt94Rh48@l}HR1r1Xs=0zGIzfbvAp4*^Ox1H75X+DBs3u2yaU4t!#o#dffu
z$)2{BjHxNR_0zK2&#@TtAfcRxUuRf%`*D<b7zQ+ymZ>KG;sqR?D&qi0=-qGwhE!q%
z&17gvgBxjJjB$GI``M7_L*Ay9RKYXiwScQSvwqI*i+b+p?cVV0rsg>{=mF-j)nV>b
z!fWY@VLAN)JgG!K1Xd&g66ooJNVMTV9*z<9XgiS1BCnQ%KZbG6PHM^0iL?D(E(4yh
z2V6F#Ajb(B`sC3T26I7R3tNW%hr={S38c3M6(W4xNsG5x1xT094BhV@l`@XM(X5Cb
zzGCIJl!-w(>!&kRB1_e_rQK{LvHSrueC0jc_|!iRDAt^2UBMd^RF-!ub9*u}cv=KS
zj05#cK4ny}7*yTP9+`VRQC_w!+0S(z1GenPsqj+@+<EOSZQ15gH3=Ao&P6d*JJ3~V
ze0(8X;u=%`J*>)^t;+o4l3B&lah?D84o|IH22(NGFhyFOyviL~%B*^O$Zp5x@@`|v
zQyuVQ3J*?*u*EaYin{nKVG&0lY=qvtI@_$qR!eVbCeJr4r+-RHG7PLapxQ`?l*dpC
zS<j8?RtnZU+mmA72RgeV*s(HU9&SOFp1K<{??^>NqA#pQOE;RQ66>B;jCRgV@IXFi
z(AsxrNH^2ZzuoQmY2)tjvJq0=5#m!<WXo;4cOCpbdVIG0vEK6e(n;5;S>dzk6?T|5
zSju5IUTXD%arO2#qsgA<uvbJv6u`0q4B2}E7ojA5C`UB9cs}AU_(m0U+K2l4IrNoD
z%J@Vnee2K%ogm`7H+0f=U(q#|a+=03g_~XA^<dn=%6CwN97<BN9%iIWP4_GO!<qj9
zMr~}3Pw8yfl%?U`YO|H*qML4_iDbyfLo1=aa6Q|Z;!HMDLDANyBbzydJB33D{2Wgh
zNB+?xY>f3|Z+P-CfOALfNSh)X^qD#PEM6ueToqZ)r(z77>+{}hYAT&ir|_Z5xDB>+
zt<PtM^QB+Qjc*wSDL%{l+x$k$VEeYk?8FzTmMV+!ZF6hUxw@p58W)3y7Cr5s+9q1+
zTtaqiF3#t1U!T^$?73C!hI{UPx!>?EbvHa0zsTq6+lK_~xpoj;jB#O5b8*n}>qm<e
zsj}19aXBBc$uCmVFPln4AAiSOJny-=g5~G#Eea8jgeL%?=62z%LU^z+0Mp3j1^R*v
z$4gjZ^sYg?Fr$$m?|{Uvvm5!)8vJ)gi?$n*6W*;fU+@rs{2<|TAz4yAAdEvUb4aQ#
zIrBjQE1UQkd85y-Yjf5Q1c-AW`Xn*Zwcw4)aJ#B6ec|wCe6e%&J1Dm}C{#_>RrSPr
zu0-w`3)Sw1w%^B*JH}q-26z%NfgX>%P;X=oTI4(}pg%F(E3xnUHz2?HXA3gF7k#Q*
z@Pt+%Q;0Xmj}#XbX&eo4VK}X888{j}LEHo%!PrI$I@l@)9)iF$Vd^BiCd#X9_Xnp_
zl;vzBm8ocqVxU<3Q3Xe$6f_is&3<*vzj<v<jw^tE2({5hP?mn29E99_@aHp4=3daR
z3ss8lleH<p!HZI>cTo5>b)=cCe^Jv`g|5JJxj11N83Jheq3C|ZHw2ZVILN9WRVBHl
zq&O!=xl0(o3VrbWBmTaIU{dUPsV;`{`b2mkwwOJh1}v@4IbZ>1m<KU)($#DP3Il?I
zUf;>|3y8f2j-U5`tP+s*0-R$3&2zzE0ijbBe!Tszx6EX$dDtCPC>=0Ndf_06eJD8!
zd;tRU<Jr?rKqwMwc`t?i{qR{-#EdbBr6fpbQ`NI2^p6YYsBuIO15Mfqv-p1GIxh0I
z0Ii8@lo=FeX9ne8(5SZ$Q6)aNRraqNGB&5|Jf(s#0NBYgd=eimNb=&z1C32obk__j
z8h3Y^0chY4n(HAFegjBF<Sr&cb5rvsBO&6#Ax1GKMjRR$?G=5>AO8K0rluN*c-{(A
z*XrrjZC-gaJN00<=SA<nwkHFUM1cMEw83^bz2Aw*PfRG5hCLD&heZReo6QVNgm{5I
z;o0^j7_fymeVQD2qMv<W0a+K5FlY%KUO*Ck11y$-NyvMC_Ag@j<6hu|apBPM=tP5t
z*zjiU88p)%7jU1Ou_y*m+@@s`1wa}DlW|E~+KI2A)<082Sl=Z6^@`1Pg+lSk<i)YE
z<w-9swGQNyX^oRFh}xYT|1bU&q)Z|%8JgjkB*<`5;i=xWGv7;X7HYB-&~U^oO=@gw
zO1Md?JC9a@rMLhSjEY3-Sq|aZ*PQ1rEkTi3kV_OmGQ}ng3X`4+Hsnlr?GwJ|9a$xB
zr0oXKbOSWVb5^%yl)D06YsYeDpxMw2jHP;SEJ4gAUd*Y|<oFlY;ox)QN3OXniy!rI
z>Ve#0W-;Cgqn1$Nln4m%+cSssti03HpU!Md>y+bP#!tB{o$%cy2P>W(X$LNCk#w2P
znJms3Oz}t%q|IDJ3VV?;He`**FkF+#QpSLtw-TykK)z&oPE1-0F<Bp-BU$XN-alpJ
z5Vu6_13B;lP#SXG+hS8EneD044amIaNVpOPY~4&dfy<kEoi#Qm$~Kcbi_R*oq_!fX
zJ2fekZO9xrvT4XAuzUz8usZRbQOLXbsSrZr4|U4EcV?T9M4(giuNruU91FlE2wN-q
z?qSSoCH3!0-Kem_s{`gu1tVW3;20LZW<{0PuTvLb3}Hr)x$E^GQQ%|pX3v=YU7;T8
z&>Sbg@)4A{!)@<b4z{>pQZw5(Hv2b8Hp_v?Gb^aj-FT66-BF|ukq|gWx-&Fr{p9pr
z@;BUyj1$YrB)SG<N*Lt@C}{RUQpOVQ6_N%RU@a+ik_u%FXGXkW022FLbDLii12R(t
zTew4cu?AsVLbu7|AZW0VT1={7z*jqe5q$i?5ruc0O_wVmO$Yjn9OkE35$f*iKXQL%
zO9-DsC>Q7{r)!Gx;pB~JFE<E`4?ZlXrYrxzYl8ep&4DYoIRuG`vxuX?SJGf<<78fm
z^40lQ+JQ!A>WO^fS|$5WA?Qj!2_$c^NOIL1Dk+nxZ0I?z?EQHejhSiAUE@0PYNTq~
zJLXEG+ck7_K6(K~w?XB^3)Fmu0Y{1rgr=(OZWZZ|ngOpWa&&nWGiw=HB^|dh$#D&C
zyR3ci&5WXz05%1I15LKq&IeL1-mScr3Hn_HI6kkrKpIl48%KM+*{G^ENG*ARv*dBm
zrNc6C>LyOCy>6=VebMtu2F`D{gni(SV&36rQ=)VrZVHGi<C{}|FF;G8sS&&>9lS}P
zkZIuINvo)D1W4g|?6awQU)>EnkGvLcntm-vU5Q2sMi~L{WqQcq;*L^>1sz5<39Ygp
zIyOWX=hT^kd5eLe{*CtrFaz&eZ1fV`dibq`-+l$Wy*t|C#v-EdS$sjh37Zkeb0~rc
z%kbF|uY7YS{gi^_506mGog+<=csu4`#*jrHX|aa@2_?b3rnsnnGueki`&L|!Q(L=Z
zScE@^2JN)orE61`0j2Kfrt5i1=g0K}+5;c9PFLBF;!XbI^rb(vaYEY^Kis}v-G;%u
zld-m|s-`OpVt8f^^@|VXQ4Rb|-ho=Yr|I3P$Y?4j6A;|n(GyQ4hz38e1bW62<N|<b
zb*G?37EvjHi1}xv3XFdGgj{ztJNyE^mEU|bzL956J&}bk>o(%=F%t#@s^SGtUr0&<
zz{e=CIx+2SM-h~plh*n_Y42ich7=uSfsU>Ujy({^zKv2Q(=gb{pwsU`wE}=5BDwF7
zF##=wkpR?`&ovEUk=@?v<_aoqM$rPYIe4GEhwj@Lv4x>-EWZ0`ZZ>y{G};5I8jOt^
zX?#NZHqI%D0R&TAM4rZnn_mia7hmV~QiD!qd;kF*ht0L_L3Q*KubXv8&-53OXjlhR
z*ecULDB!%ULh<y2Isd(Q)jzGnEM|5N&^wnr&qUbIl-Msm6S|*tnmx=E))S%h+bvP`
zZJF$)Xxwa<vInoX*aQcr-y*Jrb|{b$hke+{xKlMWfuefZ2^T;Mud_%{UgF^T1Ee)Q
zWFr2x6g}r*J&**PoM89w>ayU`{*w-d^Bsz7OU{_5W1;~J5}OeN6<*TMKudR_mKSfs
z2SJdBNN{FyL#7Q63QV&<9`6Md{Guy~8}poxysw#IIgPx#BeYk8dw)1FgPLqsN<0Zq
z{7~Ser9dNvGe1*i)%DOF3Lfi!<!F=u?sqWN6;xP}7^7OX6h~E;QfNetV!(xC^$mcW
z5+os*tvmQRuG9V-P~)e{bkjp5+nz~`nT4q^Lt-Ui@KYQWxlO#1zi#S^G^N2%e+@%Y
z!%Q4$(uEq^RZY}&?W%g@tbg=V4&yl`6WgA3D-N~?Pl2xrTSjRebOXE*oaA%#LDL1=
zl*GZqr!Ultmt%{hpQxlh)#1nDfa9GBss<S!IVn4fN@gKpHt>}BKpRwG13Z@j{DXpA
ziZ~}emiMfRDjPGCBQJ}vS>P*WH?~g%gBRv+)4DS!tQNd70D`AQgbG3yu!oDAsHL8g
zT(41n|JwP0JpqsH3|V8QN}?7!JTWA3IAhm&M<#<T@zrwwRIkT;6wbQKjA_}FQqTNz
z-3*8d@j0lrf02LwkMPXzR~Z8a_vb%=s@@Zp+HNdIO)W9(FBNs@hImwT+RO^qQYh3S
zFg;(E9?iZJeSa=b`<3!*<UXL}99Te%Qv;BzY|GJh-=xF7#bUqVTJAN`O_@h6FWwkV
zclyXGbk|3z;jKl|_C4qjWo_NM?jKBc<fCA|Mkv!?9oC-<o}!*zos&-}GtD~@N~SMj
z_rHrxu#4hrvADa2;eZ>!N#;QO#A)}89WkZ1O2p*q*MZAVfnViTfAp5C-(D#e{dO~y
zL3+PidW`+fby|y?86iPJw+ga1(MDoZH$`vKE<jhEZKpm{KIqXF343ovl@#}^_N&>2
z?xk}+!10IpPa&2n6<b?-tNEF~kDL|A2nrm=(GUJoY$O_gp!wk@^7SBS-j|G;Ds6M?
z(T5k;m))s0UxR+^^=ZDk4ZghEv~todVvnVA{+!EG`TFVBZVz^H>PG_}MVrrna%u2q
zU-cVa_2HyL|D;xU3~CQ8>ZIzBw{7ROz3EMvP)4;O+|^;Knns@yB2`?=Vdp56un_&Z
zL{efe*KY6VM~D`=<jBp8+^eRZ+o0nVhM^tm?Qp<m-JPAf#b<Lrf7#wC-}t$8GiP>c
zNs+d7@@BkKNqiP_M^%x~^Zd>4T5Z2f5LR!#Q@saJ&<Fdm<Q$h-67$Q8GW(-2dnvNQ
zYo2xhi363BUv6EFyb{P^$ZRtE1g?WXlkxYn4|_t^ZEEQKJMoEB{Ppn?Q#La2ZOwyL
zB_q#@B>RcAUsA~>o<G^2udo9o8m6W;azusb3=%y)?2S1(-ZAPhGurzax*O#8J#v4T
z2%EpWeITkyl}W|?FKMPJ2FjohCb0m<=RjZ2lh-Tk0>#ktx>Z)~DrOoWlQAWQ;7Cw6
z^x%4EyVi+_*NMNFnLL0MY5Oxy0r)R&R%{prNtkB8Jj*wFJ2Q0_b$pg*1h#ZK%Xxlo
zNk@LVce=?Z6oWgdHfDPG?T;tN2}uv!{==Wg)F*4=7gc!ZS-4}V<?n~rDO1JCGVPXP
zSvJh?J)rJEJ|)6s03n7S)m*O%aw_?UE~D(3TL~BK9I+loe<pbTY<m9DF+T*DT+I_e
zi}z!?US6z)T~6UH)SNDTX1|$}LjMbCiH%`-SS*AHUy0#ZWV$><b}r<<QUo{=*v6)$
zB|&70h^~X`#wLh}yh!7J{0JQK@;t<FZFB6u0Jl80y|W9~3;7?g8v`N2;BJl;@}$C-
zC1nGRf|9!sVR=3VZdu_Zkq=2odFDoDFXb>fy&ei?W-iAZiN1TKFnQyczUiJ+l}K_X
zMQMP^_xd;zwK!It|KE;q2b!8M{{&%0cvb=tr$<ZxS>k@B@#^NLlycdF7ZRR}f~nX7
z9q1s;@+3@6Dv#($0&wOOJOMJorgwpbQ5lMKT4q`jUmIZZS@iQ(G#*hmTDD2~Is?6H
z@EzONMZ5DmA?!6d0^gV(y->AV6l;9-%D`K>kW`|9n?%2`sP@YrAMNft@j?zq3Nuw<
zEEc?Ii40PE-;AWcX71>Sgc5Om;V=_bbu!ww4jNaKBBw%AxpJf1XHo)2FI#J#xK}Tk
zJ~Zo#=P<g7Xm{26YVz*KnFYOjX?09PzD>U8xmMkihf4&3<{wQbuO!)g(V26(BG4(w
z7>stRxBz&_^xM|*rC<y=f{HI3M373ck+<S1H*m@eASA9)sr<pCBgnqaH5%P~(aD#h
zb02PI!R6$(PG=du?21lundVtbQKxrXOV#G9TuamEb4WK-T+yH<Y2Z9t(SfQ@aU~j1
zRq`se4j=OB+Sf_)iMsg4T4YZ4sJ+Uw)WkXKS@Ge&M#QF|!TMH@1xNGS-jU71{F#gS
z6Q9JbZ4iGQK@<zvxXqNt3Z(qd%euWi1a^ueanrxazUWdskl>zB?)AFrzd>8~n`FF(
z*iY^|{{(HTtI2k`U@-Ar<~#Kqm&`TTA-?L}#xdEQ-KHtc&#!8le)9ZlM|j)(>R-V@
z#NE%0vwMWrl_cw*?YnPxes=5+2z#c^O(_0)Pt+rb-TF5p?0SBk^y)9me%C*CgkB1{
zU2&CT)wBJ6q=m=92S%5gg8^2*0*`)^!2fMWsHiy{F$gc99TguG`8_5*@9}$F{@b=>
zt-}9?w(4@7zYR40u_Nfq?H$b;mpyH6;kLmG7%+Qqf!>)Y<v-)HPA(54bIivbr##3G
z@%?DgM~i`C_4jw@A&~~N&<_*km_o=?yKrsursh^{WKNh6`fmO5@%IF|x?giVq(^>f
zGW~Wq@b4J1UUI%1=jm(0Vd5?%{3Kh@Er}X@t~PntbwwqlxaMsFNxt9XALK-6+YY4N
z{HbJLp8puI*(H1vcF_KWty5=cqt5(yo6;=iSDW95xb++(_B0~hv>V-a^&{NSO)DdT
z!?>HL*qbu%7bzG>bkfa|{B>>PS6Q!C@7`~|^f?vU8!cLe5TR{5%qI!Q_ShV+z&&2f
z2*at6EfA?ke;8La<G<8{1_B~)WRLLzfN4%ONO-1E*KTOTNG=Eb3ph(iC360u9?^1_
z27KCn;k2htq&Jj%1kv(|R#-G-S&xgt!n>cx*GN>IB3dVJQ@zF5BsO*`jMfB2jjZ{O
zfyCfR^k%5{=_(Ua9q>BDjltjqyI3M}XN)2syK{@}AW7(+t1so6nP0ql{zklD<#omV
zvxjU<)sD-(_`TUj6n*E}00lxVU$_JX`9YKdn1V}a(dv-}*n(&;l(^MB$@Khk4YDxc
zpss;rvi#|N<v*Ly_AwBoD5F%w4lt6spT^d9S*{c6M&S_6lal1m^ISVzlUIgThsJHa
zE`v!YcTR#YW5`;@Rj}LxB$>5e{NtQPXTm4%ju})PUH?y|--8Ue=Sa)d7)kza7{ofG
z%toc1iedgTD|{>!$E^u4v|@yWQ4{q>1k+dyeFjJJ7Z>7Or5j3LB`38+F5u!do$4jc
zbM4qwi}rwsl5h}#IsRK$ZfOLUuT4xR_e?YQ-6*n!go;FK`0sk*1xU1uA3*~nrD*IX
z%|yaL1T_GukR4Si=pz80;(9C5zOs1cH(cXJ;f;DSTH3i{jX-@8k_pJ9?+;}4{{D7p
zQk;;Zb4&DXr!9pI-T8I|nGajcSbUWPa?-ez<fciXQPOcDtt06*31huQdOcaKdjN($
z7PnWf@}PH&#gYt^Zd~R>wM`BnnX6LdRv3n#!5t+kXwR+fs4``|c)P3#i;>l9kzEXL
z&Q@(1^`LCGeo%wbOp4mQ#sll{HXp$n=+toI+T!3(&4EK2yNezp3m<wBjMY*auI?#}
z-sLC+$7xtOO>sP_C;?d<Mn~}s+5rfVeg#o!2bg>9Yu7lIwmZQdb48ElQY`{VV@@C1
z&F{pJ-An0WzzYc-TBSJEs3ybhCMc9$N_Hh3I-DIJlq>~Vo+|b}=iZN{RQ|nig_y4s
zFl>lh0lq6!Ehkw)F_7@l&~$T|0|PQKAdpWkg8&0aEC=}QO}0{o9pKuZwNl~KRgH-7
zG|<U{1eLfrf>$qXxLN>s-T0v+&uloPpvFma4>S^EnL>KmfjS*y1xxp3(YqIs<}Y`~
zDf~|69(WXMpr%8Pf(3L_%it(Xdp2}Pay`pz*iz{P%$ZsI;39T*;Sasys7Z1o#r!cF
zcIXJ02p&YZ1{C5I&wU_xVrfH-+H@*)5BJ?x1%I`CnzMKSqt!<trEwqLcqf3_exI_u
ziw1xKZ-dWxxh4cS1?-LOA{hOd=VbAt2@geJ+IotRjH0N<<p_5(FteXtB8F16<-1S*
z#g}Gd9^Rj09o~UbRUhKq`9MCepp8nrupErLt+=Kg6YfRB9<Q4umYkgA0H2Td<GQ5u
zqFJ<)yw|nc6X7}#Jjp!i94wmqOXnNH6^AwW8SlMl2~Lg(UVXt7FnEg{9$$002Aw(4
z_t5p!T2O-1KZ_(Gzx$-%n)I|l$;+tqdFt@^T!U_L1Jl7xzWY5aRnIZ%+y=A`p4fx0
zJSBw4V?JYyUjOH<=bS2(vWKt-o`VUTDgbVS#VL56&E`knQP;%3xh=OU60@(oMzvy|
zJtfL_pO}?*E&~0ujC(;BCgkLQ+yP8Eg}ks7AjMst2(qLwNFq&bx=TYC0}f3hn}WG}
z9S|{-&kixJ>|~MnrTMN++!M}!wWTN4Ib>8s-z^h808T>DD2q+ntA_nLrn))K{EWVr
zaK)Eq6#NNt&MRxvDZ=^^J=LCyow-kX3@dU;MY7*O6z+Q1KhYbg$2GR~0KaGUvUDfl
zy?7VOmW-6sG{&~}V+o_M+g>Mwe%m>dS}ct;42}CCuV_NQ;f1Ti^tnz#2Unf8RS2$O
zau}q)VO+Bd>5s>hA3~o4!Ks{#nFu4UQ&W0Qa8AE^)vPZ+z$%JU6=H%U)`_S25UCJ&
zc0)L^?M;J?==K7x4N&Dh4X2E@?r04lG4T<^L~6c4=xW0Zpw9$(X=T?jsU^(UxLlXi
zqrPy$WM#s+EW?rqn71WDm3dv9wTxf!7_+vKv1+Pfe^`>|Jf&ZWa;8JrYrxJMqHBx=
zd`=KjG(G`57P0#_cCPlpK(dbG7tK@AZ|1ouTme+(m^As=sHd1mS};h?i;e?^NA$p=
z(^!r}3@$}g0u`CGZzWS~K<EvEK`~_7&x>Thl{wVu5p0h*V@OH>uW|?izyouKKSV?s
z+}a=Br=AdtO5g>82N*f}86Dkn5V9X*Uv9>xft*?G!7QAKvoS)lym7=+rng_rPO65J
z04!+3*zHZMj)WogK9C&>W>GPwkVr}qh~w(<sA$CG=a5O;`GzbYnDB8J0T{m>7~e(?
zR80nM#pi!d;#s3fW{k~{Pen4x#66A5A(q`6l5+R8Way|+WNAFpAZZ*Qu#y>C%q^M&
zgPdt3Yr*)>m=qB}gmF3oZOo8j#Iq%!BFpe#AZ~vuS&%bBPd-B|7pfj>;#%P{u%5bG
z>>)O#ZD@6`nl{ZmAO+8#gwPHJFIX{$hn}^ij`DC*_YxFVKFF9erEwj=9+o9tOoM{x
zRI~yRk2GN*Mvlm56!vd2tBtcC!eilN@pK9~kpWU!0#><il36P=9(_l2Yr>>(;T%(x
zXfjvbiZD)iE{A4r6OH%tMRawTLYi5m@EI%b6xS8@?i(+8s8?Rut2|=Y6^hHNQ&2@s
z=e^NUBezRbReiF$#-D+rUQ>PaQUb=vh=8;)2M0W*&SAXEfOuSqgwgP%pedCG?YLFQ
z`r81&*EtuQplodrp)HRe2#=A2HBZ|hDzl?c*}VLV8pR9!v?wuFIe!9P-YnCu!INW+
z?S`=w;;*7Fa-f?4^3t%vcuTN|7m#A4`1LdaP7BO$2r#;qN&}mwF{6dUtAe1~G_c}g
z%I)IXH*AGx=^DdI|K7tafLSyS_h?f}g_lYN{Pe_y%0zU*S#)JWd1YCol$;~QJkZD$
zajJDMsv^7M9h`crIE=K4Y63t-t3riDhYuA~j1|+9y~|ve4+}>_qxTc0&lvErAO<w_
zEuMly7c5pxG^hKC9Kgi9fZwrPp!OUnj*_@{FVoDUV=iPL@97&rxrn7K7*-<WzOvdX
zf@Nn{8^3lrw_LG!d1_Ue#VmEM!?wtYtmHKRI?Teu#TNb>GXUZ7e9J9+8}WLiWTv0~
zj=cxTW;)I_IADd*Fwdo>oxmWo&ED3|$gx&E${V+#A<rSt^_R2C3wpCek@<rnf)*5h
zt*u~9p8x28mT=A3VVI>0$l9yIN;FFDyh9X2C}eS5ej^+-=qNFofJ=TKz1&n&=WJF7
zTdw)a>5(@_wDqn%tUQj)8G)4m7A#NMO9vTVHFDa%5vtcd2(o;UY@guWeJr<kEy7xD
zvW@2@!nDmBTR9^jWy0^r1tW^E%$^}&UNZA>u?%vs0ub%{bYFOwD@dtHI$n~*x=CJ`
zw%>sWTAOZOG#%X*RR%Y!?`X;6Me$tMp?910KR4eDYBFSLkuehoJZZQc)M5$48t1p%
z``luC(E{pdu~Q<vb+mr#{P3|u&|CM8w;rG0+N8gI%+l(k)cRCd%FDXdKfg7wqm}we
zt8!06c)I*OJvrZ|8}Tj80;#f&5p9?VgeR@s6YjQ&Qh<D<nxK-jzglx*zEIpl*^{Sj
zdo%Cu(MDvBg3MIgVlJ9O^^y`Dd4Q3A#%4;zi;5*uimxL0_)`>r>B5>X6lHjoxK)%2
zRu$lA$J{BUc!+YVFl?#`G&9#Z($vWVe9xhIV@A#K)9?0LSmbx`8>yZfUsvDnr`+Q6
zzPZKS^{({&Btk_H4f;81Xi{cpQwo&pzjdVNVyM>T1?pN&S6S}pnCk83KI!5?v$U3U
zIaR+*h<*_gN#Kd-f9h|p!cd+kG^fIWR2|S!<%<NHwA~QLs?dK?6;nshaQ-i@-omZP
zfREo@04|7)Zbpx87+9l2z|pOMbc2GFI$(5-PGNKi2uO$0B@Gga3W$h=0wUNud*Ab3
z=XcKe8+Ps5p3ifC?|V>@%A)FtCXPkxI<uB0Vemz?mW3jt)tOe@rC}kHVYH*Re2R8|
zi?+j=HbP6!h45U#eT0^_@XeBr|BfU>-}5}QB)nM2Y+C5_2Et;4@x?qvpyOe`VfQ9;
zR7YT}WN|=NeT+Y_c)U)^JJQCv%U+Xq(D6xW$hi1+Ham^FK0~m<d!oTG@djz<PP0pU
zWP?6irvVR)A&mA$Ya3{TU{c0t*u%`%#lkpt?*{&gVNT@a@o~ca4O2aCCf_Se3-_c-
z4<(V6BVDHB+0Xh7f=0J?rX<P=PBwF*X~;Ik-=!N;gnApq`>!y1aZk-Jj{OZ7APP+z
z6&W8a8-FF3St^-7*E17FT1b4q8OMhEl>wm&#*Eb%GMq#@ea3CDoBU+vI_OB)f=wPe
zMhXWr9`()U_|Sfpgn#p)6@4|h>;o{Pp7Ic#VdXcIslrsGM9wy}XtkSN{ca{KcXNI^
zOz)M(jaTMO$L2r#<}MT$CftLWP|wm43)U=LJ}gXieT>4C_6dH0vlrmfKK+IAuyth4
z!AzPPT(tZR;Y@~MYB0!V3%C1=r&>$Y{7Zr@4}=_FYWcqG++Lc<Tbj7EEL3K0_<cdH
ze{pbN`liEtYS?`8k9o-UG6!LiBZV9S{<{otU=(&JPECYy&Mf%-X&Utr2@LKCt+HZR
zvD#B|jB!OSRN2qrZ@)Hk&ZwHmcD2d3C@6YmQ>w&R_-X9G)3(HOMRdbnq<*$$AJRe1
zU^QyjscqNOKI?b|{-RwNKXdz!JtCr!by^8G7yR1kG5p~JhloU{KgYoL)SxY;TOU92
zmk6kb8fhqhx^>2K`<un>M_a3pr0ioEfwmK?iMa6W%ghe^w+FBrK9CLGI21%}areV*
z0BhgNM%Hi&j;8}YF0k?)3_V7@Jqr#y0y@NxZtPxV+4H6CaZFoAy!${`+IQD+W7J~m
zD)X_?YWUxGKdG$02!VNg05o678qix3WIEdE)b|6}cWH?CnsV>QNbi;(*i+rw0zFI*
zNhPwK-zph&`Wnp2`W)qU`nJ&se#dCIYtKSx`t3X1``{IpSsr!)t!e*h<b>3!MzW%`
zh`QV^OPbrA$`$Ww9n$p>kD_)Dhg=tJCxmrKc^-=^u<R+7ldJhG2w&^U9^0imM(l$k
zvV7NF<3R4YZeecjIdAiPn|6KO)clO$?9c~cyLTS!?hG?|#Dvfr{d3=_@xZ<F7=b>_
z&;e#ydgkfS7P9g^KKCr6d8}gTmHrd-b|s`?*Xtj`JC>J`a`VI_1(YQE&hUU`2C$TS
zDPsHQJ4>HG5kJ!rd?^2a-%cwqbav3a^q?)fwqNxSHofZu#{mVob&`yCG>(+N4Se>W
z*olzd)1<#MIZLnn1=7QOSfX>d)mbEo@);4i-roeM^xI#!wS)h6=;KSvw=Ywja93&I
z3;w0h*0nDK?|jy89e%uaG`6|_bVVTC&tv}K;bO_nCDypa=X)*2u)39ypT^SP{vFsu
zYGvp#CVlGfUA((!Y+jW>vS`7zP5TYJCw^}~1U~V*t^!Z|8GKvCpCS0JfYe>8*ZzZx
z0aY9)1ArPDmB13_Z>hihWk9Zoc)aTMK$c72mKGjVChl@u1xa2?psEitWVmbj@9c?Y
zkjVWs%lBs!?q{-FMc-M;IMqDJ<qQ6+Y&xRvSJc_!wBo@5Q#p;H1wkqCj-97J<buK9
zEwWzScL^HeozQ=W3l4kF88Y_-z+GxG&7k(;TV8XpgL|u@7FRX0nAx>B@dXrLig!0T
zm;PE8{sP9uka+PRG1DJ?r{=ychdSjH#O>er$8%Ok^f#Wqkf^<GkipPceDkN8|Ig6$
zpUz{yvP#c2RqpT0{aD?&|LppnQtY&5dO#W$%+F?#dJ{2c<CseR$>aZ9IrYzIa5t2D
z$6O(FjF^9*LR$X>d2_+op&OPv9-iEIcJeulBpRNk6w#IkslOjq@F`p#5CK6)Ji7$p
zq=_NG<te;Fl7vE15}6ajkd~w@lm<Z|36$<w7CbAzFs8U9Ehj6stf1&|OnGB9K@fwe
z>+H&6Zc0MSq{)jCQl7~YC{t}xZ)<lJQy&3^si1*j_|h@3EZG;y^0Sl?nDs-`PPGh1
zup>=akpNK=+&-^U{vIRSUUz(Y#@y(g2Vd^jz@RI802O7L?9sG_A3|iUD9zdcjID{L
z3BiNFe$9vd<oy#o`wJv&7g>3giIZik*#-4sERE(?C5`}ymyi5K^S~!pe*LPgj8E4M
zMM&ME6-$Ld`~4QTX(vo<k0L6_WinJWM!;+&bAG;#hJ<`<d1Tw64t{H-Ceb9$@78(D
zd-zMXoMQiB)>Uj(Ibk)_Re+vk6&d*7;-*<JC^77A{rECp;Wn#A<+D$7T3`HxD=m?#
zv7cwdw&N?>4_IQDCrYmNmV-Ft(DcqN+ZsdaqSl5QReFQ8Yc#CQ%}7-?|MxIDDn2a@
z8p1)95KrIZ%deCQvrwMnmw2rxMAaOF%yo;uQWv(`9=toDr3b$!x=#yFRsaXTF*~}Y
zH`-YC^gNRcnQU(U<p3o55q|7Iqzt!$3cc7xIyJlz7JF~(inZL0qT1hn1H$B{vEa)|
zqX94DEB{zd#9{7*u7l()2_S2a$NAeyzeq%u;5P|6*%(<)M7cAdL&WicjDwP%vl5*r
zfDF|xXWqJLP+lvLtP`^2f<F()1cKt(@w-$8+W~Hc-m`fH>9=V-g>!q<6NQxJl78?#
ze3|0L5WR>MVJMA}#8#w6@#-h#Vb#h%;nNJx0p;>kAE(p0xJ8&kDJSMHE6bHcKh@R#
zceJG+;_x6Pifk*O9P(|w<eCwKO?^EIZr*Q3=N}7*Oye{kN#-|~2o^VUaOKZ3M@aHd
z(wh$FTke+Qn-N|gd_preHSDEjAu1N#FOB2ANF59*X~q_)7f3wq7uNv$u&t5a^quJp
z<O6a4#9eKr#X`}L*Y~^u^k~Bba9`b861^Tn<NyP0&w~6gEe6HC_4ND-08FOiv&RCd
z74h|pLY#LGTLf8dHyoQ|X2Tg^$|Pa=Ns$V}EF!%q>WR73{RYU3Gx?6>neEVDupF#}
zM)JI3KzFnJ<-EwCsVMo>d;QzX$1}P@DL63N+1uiLz0n{ic+TF6<80o9<!>wS_SgD*
zX(mXugu$EdeX-L@8eL~X{{Az(b(IDk8kk=5XP&ch`s-O!vx@Z1Wxn^n{QN}f{3YH{
z5-WrroY6bf_d?UItW7o#Kg7Wm(Z#@mr)!&R{2%C@K_3azj^Cv^KgHv}Xy}vrsM_pN
z-3o1Uhtks9i7#)7TU6xy6<gJ9zj}UM-PF?+*YSl`3f@OLlxz9`awQ)g^I6M&^5Qg_
zh{=K+Kww*#itxBJycUiE)G<VEh8-urz2OBY<8=JON~O5@ZJ<hQa@kP4IDZqw_2XGo
z6<+rj2cNV+=)m80fBu?YZD?g%GQHY%OpM3iR6r#ylPnHNZ%*(}bGcSW6hspTqEHV*
zU#uKT-+SD{&mZKG!xkM7Z_2;*Ej$5^HXik7EW3S^%1X<~Cd1mGZDpIPs=E$bLnU!n
zhsI(;L;R;`YLDKQv|;Rs+Ut|FQ1g*JJ+?xi1rGV}_ie9{@vN8FXwR7ZsP1enZ~_PE
zzAxi~E@w7e+pj#M4o{%*57e`_-%r=(zS*;55)C^l2j~6BBNrNoaheBxWrg5`LDs4$
ztJ%eDOh6UrORP8=Y08_18jlmYxKXPo9@{k_u(^L<<&T^M=g!_O*++LJtRx-p=W!9J
zYUN7V*((wlibs@H!i-9~PFU)h$Ehnc(zHd!GwP13mDSL2$TI#$FThoLY*L?yl`J*+
z>|#cunTep+pi&*ml;45QV*j?}d$o=$nQNp47-b_^SX_CbgY)Xx=n{6NT930t_(QkF
z(s7|Wh3q=*-#OoKAAz-kYWt+SeodyX#Z$D`LPzY|%#d)$BrJJb$KS;`?d(l01++C+
zJ<7O;X;8l;-yBUc#DlmUFH!68>)q<Z*2D358ZUD5WRfI_MzRZU`$}BkJqZsg4)`dM
zTp{qEq#IY(JE0BOs{Q%1hBS<~?W&i&c7O(G8NMooQU$hH06^>{bu#lHL%HHPb$aTd
zix~gR6z@a}F-Ou9`@}|LpwflVkH7V`44)Oa4HjLRvAT>{X}Ok8jR_F79}u@}9UE(3
zOE|jPRQL+%(~g6;mg**FUw^B<36c-Z!}RP!3FVuhxzQu^tU(N0^Cq?E1m4y72>=pM
zUK?O&PS^AM?J?s}&ssk|glEg<+369gI5cYV8aC#;Hk|9@RsT!wj#hi}<47f<xP^sn
z!uN2tzHQ+VAMb-VwZ`rBjBnYgS&yU0?1=0EB;{ELK}p<GjIn~mD7{JVcPq`JgKYFu
zgb4VW(<X^3pi%wcc?&=HBkZ_>o<FaRq+`k^U_?NtIa;p4_)@3JP;Zq~Y7X~@EoX}-
zudH`j8K#<l%&rc>&w226hE*%)EFH|Ggo4`=8!ruGx<!Vf9&WvUzvhuY%u8P*xWc`m
zs3KBlMAt^T^dP-v$RK`oO3HZ)gxbMfun0A)dqaE*P@sex8Kc0{2?Z!*9*yM;)~Qx`
zu*k{QqHmux=r+jW_0E9-)D_Igvl=L5{UR<cJzJ#lGS2}(X?&%X{@v3>n+yj<eJx1B
zS!Kj8?J)H3iHCB^ctk-`Fo3-8FXbyz%#wjmX^W%o`l6^L>IS2m7*LW$WPluTAY}Fc
zRhMh?Rm7&R>P<Y2x?KJJwIjb!&6gW{Zm*k;ZuklX8ZL?8-O>Ahqa)skfj*5z(Tapd
zX+3jXn6<v&`<}<&{RZdjh<41_V<eE_6RYk46XS@TLf}&KE_K{mVj=sN0A2GxZ`g01
zkBdo}aGu0VD9jT;ktL~cs;l#7Ax6U|smNBHzK_am-C93q0zE!QuJe!oyxQ=WbBFiv
zA@V75$**b8YQFe$(dBde@<YKm{n5R~7WJVS=b(TO122B13BF0^@YA4dwo%IW8luHS
zAr0r|BdnJ|0;J>5pntsNlyU9%bcnFRkL9Oz1ChLR>B(d1AC3(iuIyE{hL%AqqlExl
zF3hB`h(5sgdYS&6s^|&^^UZUX<G%ZbSD`DH<-Jx<Jhg9qO<2Ak-kvCvFoeH(NUb+_
z@$cFE-i4&W(s=bRLfpT90gRDwI==I9wuhfwzW#mJ`7dp!7GP`r2>!{P2H5o!ASy!s
z@#_uwZZvuN@5LPX-)}PcaTXv!L+U-18c0uH5{IvC1t`zs>GLC>Fe()U;?s!uV4)~L
zepEkEDn~sk$uWvE|3OSMs9eJXv5BYGd&J*GksLsNTB%8~$H-%16uV3~GX58`R~(3_
z4T@3iin(e{j;X^(<pT+76EW99#dY)u>8pg?D1t^8!FcV4f-H!)`k_TvtbLb>%o>LS
zdz>>S&RGvAOaV$yfj#5mZV7SJZE<pIz~Q?bzWH$h`Qkx(afICXAk%pN+IS!aB!dUN
z2PMRXCS;$)J|HBdtR<xVNFcH&QbyZs>%`oIgrv~K!mh;s9KiobB(W!zW0EBE6DvcL
zYV(uoyOJ8#lA3-bS$HHhW0KpflRH9_yYiEJYLi;KlAr%b9$-%y!laB?r;wJC({+I&
zfT;VGz!f&$IkZQ8td<~FzjGe=F9*J)mohbxa>10EXOfy$3lPDjiC|;(DglzsX@|As
zXuW$t5!nY(qiKie^s&(NACTnM1Zdw0urWj&834MP125i8)uW;V>&rsx%!$O*5+?9n
z477Ngmd+-HTGd`dNE9LF0ci&D{>(UaVh}veKs$m2+T782$`>*-j37waWMuV02u9%X
zZu*yJpfBu<!gvr0mChUlM`JUEWF=sTEFmINwIJP~JG<5+iOEq?*i+JcFXP&d@8Uf;
zTLIi0st%IpGZ)GbW%el1@wH17=Mtl5`fMhF3$U}!E!fI+U1T^v&M64Yy#VCZn}R&<
z-4SjkvRH$8*Fmd{8DC-yrNVAke*+1VoMX`ppE?MlM7u6+FwM`bIvg1+hf7N#*+-6N
zm;5Yf^hoMbM?xq9e|BYhPX<}abQG9VN6gvHD7+z5l&4O=f`N2E@k-dDe5br_Vs1`X
zQIJ3}3$W;#625S&sP?Do5`yKuuo6cYLN!+R;2!i%41jKnp|OQ9TXCx=7M`mLHKgL+
zVAj=#7VZ_4WaKBJ0vuzHWg3;#At=0j9pL_i&8S#jYMscL7}v3UslrxiY&Q2EL<i=s
znbrni#`>Hj!Vm955#kJnWdNq*6bMcrZ@%<gtgPP(iQJT&S|{}bD0Yxi_SX?iBw52K
zz;9K5Mp8MGZCM^A-ZnrdDV`1!zrp#dR1TIVFvWDaha54tLoelJt8`q7^fH7u>+`8W
z_zTO+5S0-j_I1PxvxVZaV_53X;`2q>QT3`obFu3^?l{{jcsTry7sIPM2rI7S*Frus
zmch?fW#H~L1_ct0Y)K5$<HvO+4}aC<<|oQ+Qf}M|GFic|<|!2@-DG!UlPZ+jQ@KzC
zo&-aQo77#DF<u4%MRdWt0Z@D}-7lf~sCNELOK@)mAT9}<;C1(sI~YB{Y^)$mik9oA
z;r*_|oL_%$*;!aw(O!gt;XCHl*LybD(p_#1(p8q|R%0VC)UR~_rbHSpMFC_NIAsRd
z>B`cYfV^zY0vIfV#84)ub3?5Gq&KNC+m-y}tpQ{-yf(3?wu$q83#T9gRj0g(uJp16
zgO#$^>q^xiOo)czUrfm3h7+&4(U$u8LUc7})58Lobs>r<*VsBx#oey=HN3&;bp)-1
z>ZJotI=iMCN^~It;r$x6v1^r92P`D8ilSU3@791_Vd3GJU1+UZ@3XYpgsWS5GV}HS
z!J8e!Vf$PdnriM~HDaX>ur-$j0ahmQ=tkTTHKVgAYMbx^%Te6f6e3>LtS07KC$<A5
zM_|Ch1sK~3W!tph{3l7~tPS3ke*y=K%N>KfC!LZhN+*EHq&iS9qP<!{Vo1>B9vle4
z1q$RaY20Y5j#qH#1?YStmwY(xw95byY5^3?*e6T7kH1UqxO-bx{+9Q>_9cPvUMD_B
zX+C874qEH}50J-`jzobj%O`DRtv!(vPU*ipqAqtCyo3f`?%W-M^6FQZa(TH)xFwt@
z*dMez+LiQ<fRbKzT`%hvd)-}H)J{0)^@VpcTJ|Osz?tmOWtSUDlUuScN%>r+-+qJ6
zI)3iw{owV>?h-DJwkJ@}BEd7R7yIVVpD%FFI|GDK+%gg@M1X6E_!DK6z?Tz%j;PDs
zk!P%tgLi5Z>K1MWMG5w5(!*5)isNqksi63#YnGPHIQRvIb|3<g&=C%p+#khtv;c8_
zaDl@JUl|)>XWn&(Y*;DBiAuRj_=U9HqZLBv6q9IGQV__Np>iiB>och2WxDGvaM~33
zjdGSfCqB>+vztO0x)^@dWLT^i_UCx?W$du%hMAfnr|krk&;!?1WT0Ok<{264${Oiu
z895qn?NS|68XZ&YqcsV9z7{g-*UBZo*~&=_SHL2TiqUrtZv+)^M;lId+`AvwH)b5k
zAjUQEx2)EIR`zDbz$NwGI92$4aiM3K9(}*qKP3*f*}wc<Gq`XJloM0D)52)4!FKei
z_UBJ2J2%#7(Db;hEcXf2HgZx^?ZqL<p#KWQ)r7qcKW>;AX}0k^4a9DQ%<UvG?N-t*
z`2bv<m~@|!z1~E^ehsjGNh<Cl-WSB!ByTZXk!Ls+aaxFkPZZB+=j*tZvFJL_5R<?o
z(*?e#GHV-J$#|yiNHoEdZ9_5x@RuntiZ!8F+cyf`mE+hL1<Ej)1saL{He1*hxbxe7
zQKzi>V}vlU9C+Co?2sbjA2lVC39`2<AP#~w6Eyv`fvm@Osy1pm?3Z=u@C6wB@val;
zSk!?{#ABh2>hm=9G{(+}5E_I~z}99pzq05-bK>}okA&FE!bcXLhW46P$cg2hvK9m}
z*vbn}$*y$WA&AM!zA+Td$kd(;F3Ljj&rdR!oeCthj(WjX$cmgXsbhCeg{*v68VA^^
zeaL`YM-X`GD;raF{9p8S(^q!tt3S)o+>9&nS7aj}p#2A{z5`#6YcV(UQ_e`F${hqN
zeff+Qb23*K4a%J*uv%8mJZlS3vfda9P2V=akdfl}QBMDn@=M*n8}koz3(#PC)q&6o
ziNCEXKA&k#-%e*Xieb2P4et=l?lN>zh|VK@Rx^xo(p&u)WU$wIZp<yOBlK23lBiJA
zeS9_O?YqC*GDe>uqKNm_*_dlgjkiVVg{LWXuV*12ln+wn9Ad^aa#aAvD*cG}aoVp6
zGvA&18ehL7{Bh>Jl>&r@R|UMS^o35DfW<IAL~t~^p2xIEHrufNlR0hO4!^T4SV300
z)C7?>Myk+H^*C@ZKwn-AMs4E;#~$1D5_Q7801^R(;O&it2Oq7a)gsN+IDq^sMtKqK
zQ_0_J=eYTA3881)T#WA_x})K~()1t#a+6!Is7)iP+`X=O#`9K}hvH=gsx`-w>9gQM
zYZpy!!e-PRhF?qYGs$PBiX4G{YH0#<{j#4jZ_O9E6jT4%{W`BBT?vtO0mxIC<9+uq
z=DZQSdw;X%V&$RoU*y<tj2}MRkuKY(aooQlWR&4|0PK4kv&mI~0KOc)@)$>=`f#8%
zN=F<JHYovdPwd$69xbM675qSI`o2ZvtO>E)7&07se}qdv(d96?nVM{jW+pc)ThUu2
z8JTAuvFF%fh0Rqp;GxD6=U3O0n$1LVVH;l{5McpWyZsD~|HC!YQ%z>Y?<NVehIQui
z-?iS?IhvZBnBHVE`|(fbui~+ou-_ME^K)?~^)0TwTUr7dUv+f8OdWqEAdW*T@G$>l
zAi*?o=!=VSOH+w&Z;QO-rrMWxujQVe81J8&Yn*)7WV$-H`1~Q4hTGEabE~9gjSBYy
z>qWkBubcJ`;!7ppZJ&O$d#BrWY>5N}Fw5QP&~|mwu`#s!mO*#wHs^Aq%|#vL%P#`X
z_2$zx-N?dUBmr)(f2?-7?c^)({-^!gm>jsF$UTYw*+{JGHuNIx*iFHVeESsVESl?_
z`um~+C8RJ9WF`THE%}rE?O$PCq&tpBr-gI{+BuKy7lc<d#vB-SZ=DZZoL0S;4LN7$
zo9(kWcicVy*?v1Xci!g(m${#NT)I1-rQ^Np&e`eC;+C3sEM59#?)2VvY9qVO;sK&e
z1)|@io|b%z+Gfiq+qti}sha$)!2U81`ui~bpO&$&l%qY{u|?6y*}pBuc_K&z%;d#a
z(nSqnrJ+%hU}NJHR8&C5q{T2};OW^pxq0~og+;}WOG-&)<rS4x)it$s^-mfao1Qke
z<Z5WOcXVo{u_<6M%AySaQQ!6}aOSWn^-D5l%V5~@m4!<AFo<+AMlgG7dN%zXW+n!$
zgp}`>Pn}!HX2P)N9iQfLe(slLP9Gk{jK2;2DIYapLSUa}-IU#ejKK}(!@t{R_^e|B
z(wNJ;sEjy;A+q89)+oVPS?4ig4wt(6X0lJ3fI%e&0)!>Xh|F)g0SH1)7;M|OACx(Z
zkj{O}6i`7(U=*?TIk<PT{CU!Q&TD<kGQum#TU4)6m_5#Ebu+s8;d`=MLqVU88zZPp
zh4iy%e72V-&GNK^luZ7asn&Wue^4x>myI6InA2B^q0F$akjWg>-(WNl&latb!oPvD
z5zM-?kJD&BbcLHLZW+PU&3<iur5-cj3}}v6mMgF>dra2ZobbU8rf{xHaw?Q<nhH&{
zmft8f?(g}2u=dRR{cQhbQQNKn6Wf3eM#66XRQg=gKSANUF{rjVYfq5TjdK<L1S0Bc
z_zl>h^1DZk)9wH&j5!{9FGmtf3S+o-3W#}3rDu<3K4nrT6!gunqJ-v;Cm;T;Qke=X
zV7D&D7wyy}#^em#Cq>DE*au^CYZJ<ag~D~&;)@UU5@YkvLKBIP(P!$^hL(6iDvof*
zkEor;(SS62C7VGdvtN53^Bm*;tF-kL3E6xluZ6$@kRyohV*SS{L1~HaU~<b)H;Rh^
z3x&(>edc)_&C0n8QWmPOO^RErsx5a=7XM8CpVGE4a~I(o0vkaTP#z#_m)aFU8n8^Y
zw?<--Bp^g?exSU*A;sXor0xHdwu@Dh)ir*gC;FE}*?SE@f_?ZQs;PR7|K-4}bq=7d
zuR{)wI{)tu*|kiOmdCkI{tsyTweRd<m~;<z`F|a<7l2EW#{<n9$<qJLko^a=Jsw8f
zb(d{H{vXg*;&Mw3PyGJ_+Pa?x_QaVwf-2s5;>v~P)8(T}>$OlrFhML=GDw8Vcc|gX
z#<cz=+A8NW5xu)XKw|bv<mBSGNaN(vK@aV>JS^Pk9(jt=A?v7;=qy-;dDKV^-9zG=
zqoJ*y&Xxtoedl^_D@KSu;%q4j8t^Xz<p3C3Pdi&8{BCq~LY>g_$?c*YH>K*(+uL0t
zL~ntgJ$K`yv9G-@<tf8NxSJ+7V=rAhr`Qps-PeC|;xwT1(|#8c4~88<8a($FRYg3&
zk4h!b(|G-pN_)Q~kUyRL&}tdg*W&$zuc@jZYSE9boPTaabXHB=DgP^6P_y?pZ}C~?
z^RH_u@)1YE8xNuI*oOHb`IY;OiJzM;zLLqSQEvq!HF!QCK8n~W41AR~iJ3Ghk7~vu
zW~Y~Gc0N93eh_m@428M+uhBU&7yVug%P#okrvW*-0JRliXe~<LIuv_&10@3a0iC*{
zfjJ!>`3IO7=KVF#0=h>_-=z@+Q@jLZ!rpWvLSP_%bo?{VQd{vTz_ko45Y~lb2@DvO
zJdH8nTqZ!hh*IDbIXhsF7FA?OxA3n+rtYXhP-bW%HI8)E?oc2%WP(9beTLDSn{dvI
z1+u!*gPhC-xn%V8H09|t%ty+(KkGqNl0ZPlg!vpAx$%Nml?l3)JA$*;iC9iYVywMW
zq+2XN-`P2>uwjzxx|8k|TV%5Bw4tcPf}Z%h#pFI0lTU7+p`4bcxsU3nQ69}1x@U`w
zkvp#9K%uFVjX<%bKV{0DbuB3Rq5Lf}NnM5#SG#|OMp$X{{X^x!zIVPul7iN8bP0>V
zx%@GTT*uIr^%9V<iKmIKt)wZq;CHVUmh5i^!V(mKkE)jfKS}DSeZPoeruqoxL*Jy*
zSWISzcmO4isp-A2`H|8(1&`%;{-Wi^j1}({vvn1Nj8UfPYR-XsvSSyrCyN<l%i#)*
zpZx-o(m5uo75}`c)$;jeq)%Fkv6llHPl3VgXsmdD?HEcLHJg#UbdTymyym0*1QKgZ
z9Sy49m@jJCG>G|<M{4cODrVEf+~ty~hJ6d+@>kpQXAQk_V#c7%`Pf`)u9Gurb9aoE
z!9;L*mbxdcHE!j_P_X4fLjxJdSGJt?u&qh(L8^_+%bCT(6{mNH`gc@&5t0TL;DQq<
zypL^(69?f>=Aohqz)s(=2m5NLMA1b%0WP06QZY|d2L|Fde98y@Ynl)z(z9-{G7S}&
zhE#Y&L$O$}BFQIk2o9t|SI|UcN%`J!v@?#}r0xrtfV*TxyHm!IvzS@9i!1&T<dWP=
zUum~Gcl`57HySp3SlEmm_-t&X8iDsuEa7@feK<suA$|}&=iSeSwI2G2Z@MQ#%L6e)
zsr-53&v^3Y)~nfEQ2R`Pribh{$Nc7X*@QuOUnia+K?T%E%}MWQmw4orPyO-ZaSRu7
zi^I@*gtY`1$3u2<X13B8y_oSgyUqQ<_^=cCZxo1kn%>xfp~o**W79{y0SpQpBcsC4
z@O*)(UmmLT#Z&uH6K-r6<L|ya@NJ=^3&N@JL1xn?4pFpkcM6;eMt^<u&sQJz&?-G&
z%s;pCBKzP&_k$)h+HMKS%Vrx&I?@ck98oIt#Ow9#ChCH|M~oP{a#!}KT#4qtelL~u
zyk6KssCMvCQ^qas1kOv9e&3<FGlxvv(rL|uQJ0bPSM(yaRwxp2V7~sIxu?L|uyTk~
zrM11ydn&~Yy=LKoBZzbQZ%LTRWH*!4mtN0^D~o>nEm=}3whW*NVUL8y7i*sKL5y#P
z=9PLGdOOJ*18+9|`33j$0Mj>e-#osyt|D4{wYzJuhmoJ-mK%2olJKZl+P=@O-qOe)
zZ5zGBQFFi51_h>DyP~ClWtglZ1SA&uefl_Crcv#1WLXopaWdPsm}mUd=;;blcz_o)
zAvW?>)<62phDhs(8#A!~kh)AW`{JuF0QK#wNVc^)9Va1?da+=`h<Xuz%vj)T*B?#Y
zRR8V?r6uk^MDrkO3_|M?!sBI!+2e>h!N}czxXeY3&KZ0+|1W`E(Tyqf($tRN^`AAR
zr>D%KzXbvBmwWH<Fd2l6z_5IoKeeuIQCpxk-WXo=T`BqY@wo5fd;V};;;r`Ti&JID
zqpvIRWW)twxAZ3dESQw=m`Qfk$mT>khvouAJs)*NSm-8H+nbEscro(z&6Pjw{H34w
zZa(TRE}`wa4OUDCPJO;98pHlaF6pCc?c8PdiuUW#RG5HA>9XJkODL7KMm{$9HO^;V
z-S=BO^x>yqG-c8V!J%>(w9X+()lsj{0imMcmT@e#g};A0yP}*p>nIeq2NCkP3C^?p
z_X#5A;m>;pWU`LBf_#*5g3pl+oK@hCq1=Pat6;u8q_M`wG)H^1s0d@20@R@j?BPnG
zG27WO*IQ!r8BL#LM4j!bYj{A7Fi7su5Xoh~fSN}|hzE3f59~5*oPI<*=t2E4SCsY0
zQ5N|~TL{=56TiP2|8P(0(8`580H3Rg>9~ljVFI7K)4BiP&uFF;g0EHxaF=95IR@<V
z0uuYb+vj7!Z07!P>>(wHsI+4M<wl%hFPzi{KVP}chhVfEjUskE%4rT~%+q^$mKdR6
zgPc!(4q>VY0x1tbOZ1@M$C96~Q8wI|7*tB1yIOTZQoSCqVa?n-At4VB)<bg_WQ6CU
zxD~JoIi$oKTnZemN0Dew{UD@orYPz`7xI&y)LN9GIZBQJPrEp&P7@pxOw;fwlh(X{
ze((<O*`@w~dhJDKxKdsO8hoxz+b{C~{7jBPq%T>gGG?Z?>=F0bf%0eMcoavb%N_U+
z#>+;oQ2!VcNz?ST1gKQN9a1y)*QyFmJ4<dmObi#7JM5MtYm*y5cY6smRf(XjC7L5C
zpNS5YDY!B89-nj8pVfy;+v(D(+3B63{5xS5qfm{X5G@;e>#(dKcJx<_!O%Ix&@)x1
z4x03Xw?Q{2hM38RRlH^cb+8G_V#|G|oI5vR>i!wxS!cV7hIOB0k6y~#ih<&OhTIm+
z;-9e28OVgMa}YA}<J{G9Kj+<8&;BsRR3Mf~;wWrmOh_lO-xe(RBg@w<m+X6=cy^wj
zfrwC1XGUx~)_Fo7FyW4BiqPX(a3Y5QA`oDmow1O4j?d0Ukijmhezxs^r|Q1XS&Q<*
zpbEsS(-^=JvX~@S{2>H0B3Ja(Mt@zb_`93yP=Hyz;A7XH=`TG2-RkL9p$XfcgX@>P
zZ3Cgzb@`ZqqBPRuw1LN8^sl}zDDkikoLn#YT9-RI37!2MO6gdrL-KZQnBHD0gKQTS
zY~@2fhedm4$0&1HtCoeCK$AquN6L!RiKNl*#bRuvcVdOIoE2FDSP0QxF~{D&4WLBP
zDq}fB2mEWr0;(%2Bm*EiQ-yB%kEmZcQjRXKe8VcuSKchNj6wd#qi2@O{F(-xKTt*U
z6IA~Ls7O?V{O6|#$SezzcPvupRGm;Ycu)>N1d!>ZIE&E%Ktur0bWp%>zw(N@9&-R4
zAJLv+o5{bvs@kmDy|CK*wUdbfFJ}OKfZTrsd7Ii`3?pNrSG7ldb;r6}`Y(q}SWLE8
zo!b<Sq8WTcG&21T3^J%WR?Sa%ouy0yhKYmo150yB6<78v{<r~d8E6+z)t3GOm2uV`
zI?`8#*VWe7OSW(|{;IdBBAs?aLy~I3#UFTZR6VSJlIz&O1E{Nj<!`7}wO*=@Qmc-y
zs^oI7aMl6(6AJmn0|~&U?J0V^crAgGX<V&-L9J%V3$R*P6EXF4OT4}dT><NDe#4JV
z+TtLMGaCb0Or2s|Ihm+(xy~#7&L+uCTgPmjCXOgLn`$ihu8G&VCBt_lLqRhfs?B;b
zXd-CBxGbKeTc=+Y$oZg*v*D!0hClF}S%q^D`P!1LI*_fA(zah<6j<Qx(qWTNZj0LD
zR2gNIHsO`$k5kHc7HRVAJfY>!9cIQs5bbuV<|6Y=B#UPYt1e@^;^lUOB1_9RZGBrD
z7iDY$3++5Tq~d{R?*-}cP5?JM{i49j_y{iP%LtDB!ouU`WMKGdl4)LxR_qOb^`f>I
zep>rv&e$l1C;VIv8Qrv(dnykE>qe2(ECM9dou>oneSX2y7S#6)ult(4%BH%Y37FOp
z%byH^ay;tYSV&iq08W9w^)k8dUlergjh2cA%%PR9n~SOLB}UrW>k&cdc%nyhv9Hll
zNH<7e^|t}^Kyd8<`mtBQ;Zr}twCC{6^Yy@<oB`1qwuUli3FKYTuvWFx-=asKpa1*)
z0zjJ}lqi!P18zJOZ;^i<?fin_jyT0;(XcJvJaijqKS&vEyFoAJwWL;}r8<YC*oP%&
z7ww!Cq+SI{Im8c&_YFz<h;VKU$#M_NUl~^9hRN6uV~U5>`i6m#!&m+cW4T8(iXUFP
zGNKbXqE|d}$85x4W5oE+2yR2xP*TM9j)<wILe3u4JO-vVtRU0}b6`@0al`CVphgvn
zSM;FnkxB~^Xe)ac&p%{{_eQHPt)#^?kLw>Prz?s<K^Bt7<BuBp*8+jl{4h9R0&hQV
zLR;~UVr-DL<C}MH4FLY<1=jqS-zAZpXRXqC8r%}F2g9I8OA$4AwKyiY_=u&N7_2VR
z>`CN3dKa;xjjYm!DL>AaTbYxq3sY}SR7uZ3-osEqS+%MU&}ze}Yvl;a-@xfe?P3;|
z3|c+W`ANVjP$FQ`mX^S;s3wHsg3V701u#YTO{82IxKzP9uC6v-HgK>6Rs23q7Sil#
z2=Cy^`(6wy4KoY>NhuNYzdFBCH$QtPVXFObs(yY>;GWPYvlqYZ!>AqTpK|lTj|4%f
zFqTHIXYo9L56KX=zp$^v_9siwvl!)z4>85fQO=B9njW0O&DGDSfVzVP1p~|w9k3j!
ze`5kGhftJ2rL8N^?r;~Xn?Eu*1O0sh?b%g4#8%1?mb;1xH&bEgY{Ag+DTcRDjvbgj
zPkb|e9yv2-^?1Ht{#7p1%55nTy9Y4Ow}pJ`udL|uP3Yjo)zEKAnx*)~c*ej#j%kqQ
z9J(zZseLHZ8aKs}bYTcp^@T>Qr@Xc;!}2T(h+$F0D)VyQxe<mJ*+T`gAnKpSrptC=
zgd6!Y+T{;QMwQ0gY;-D_4U>fQR_^GNut}PxMz_L@a<bQj3>=FTg-RU_YIpRW2*IAu
z=&e(c7X}^lo7$M$u9k<Lj27bc3oCCh;S!a+v}SntpUl`KD+-N1woD%}m^3nKS>A~A
zc~jA-`(Q+WNy?~!@TTE!i0syeeV}1=Kj5~)#<NEKFGq%NA0v1B%dSKlrprEk6GzB%
zD8mJB&bDospT7Tdbxhm=$~wRHV99Rz7zzP#4rO2yjmq@*ym`^r=YZ?~B(QRLf~K>L
zhp@GPx_06{P{4XiqSDPD1S_Scn@t-x`vExVYfFgmfR?;2*eLD}wTZE?32UAQORx#Y
zsEvQD<tVkSQ1A!QoHyd5DQ<+1S1fk0Roj}v656qq_lG|gQd>9Kx9W^qGG>_He9o1g
zL*5xeS=@Vru#B~cnz8tBW}#_Ha+%e?^>EjzX}5o1_r}Lv-D_4hXj8Lm5Xpx(?>)By
z9#|EP?kT6?o;zB%UIHr6e{$OilbX8uZ{!2>>L=ILUGr<!uEw^ZwR_8l*4)2#bNOw2
zlx=Y(rhR9hXq@(+_*u;o4ruFF-K?2^>Ok3=MoDbY>(U7${M@`PYZ*V5guXm)*7TLO
z@-$xA9CvlQx*pMe@`Sz7Ju>ddwc0+Y`iS4sY5CP!v{1N?NCLB|`#b7e+f@Lr701yr
z*Td1CuPnD^WN)V*d)Rh(WS-yNzUB^jM;D&zSd9IuH|99{%W1X55~t$~zx|bg?1sEa
zc2d$=x2X07ym#KGzVq`Pw8r|5EC)et?9MgikZFDw`#s3fwOe#gU6N@|Zdy7q^YMx9
zo}5#A;zdrS;=;gR{ef;@(4}tP9WL>#C)&3+jvu;jf46)0%zbziYU-L|TXnKz;ZW>y
zvhwYOxNrt?K2rGR`d9mS^lbkF!h<OH6w4Z_{OEWNaS;PJmy<io*11^dFnchJLf9TY
z#)A}{xJ{zA-`CEFID$zgVBqTQUO=88@6jRrGNjcSn|H6BM*HS(+U=3gt>a!zaY3s0
zg7%=CkRWdtmEfC=zgBm>nE*bI#3Dwk1E*GeUY`5J+v*O_26Be_;@YA%ltTuS$xyiH
z@2{3Yr>udW$DpHM{eZs$Ce!^yd`Z>HhjObN@BD})U;s!oX!cIP=)&EwvVfMafASat
z7ayrFzd)^A53J}2)czE>Ez=b+vGIxQwe4TZ+!^$GEr<w!h(^bVvi&Er9{(S6EgHj|
zjKE053n{^p`7ol%r8IC1PiZzMiQ*VQB$wAv^a&!RnYA6ss3cN%Njx)#BVJOTb5uxC
zp|I`=r9+ndBCfQ)A-<`zypqx<OJ1It>zrvPW%DKTV1#Rx)3$464rnM6T~V2@$$}UN
zMWe7oyF8#yL_N2A!MbBN(Ofnhj}SB{)@vyrO=ef{+L&mm7?0H;CnQj5v<m4PEYe1z
z2IZq(#3Z|%sWAg}4eVh45A>V_b=qT#MI@7`x6NjXbbQOBsl2r5%vF5@e?h(WrMagz
zt9~#)v1)=OGjC$tH$f@SJe&w-Io}_rB9m`zva2hJnc5ntADJmT>kPBm#fOAbeIrim
z_OOl;2NANXgEHzo=XpQoopDU3J+a=K-fJziPRz>9(I@=u)3_XxTpP`&o0ivASvTOL
zdy|IO9sXtil)gM$!jLH3i<5q9r|VnRbi?}85Ip&`BQ{lYkH0*Ay87yGab&Gd0tHEs
z{jKI==YJ&Ke{~7-Ev_3!ts-mBp2i6dBqeygQLXhLon1_lUH1BS--Z8^6EeV-5^;$%
z=y}JOE2VAUh_nYO*cc7L{M@-~@MbL7x^x*2qGq-}R;OeB7q4l~H;Vp{^1lvQ?T0k}
zR2Nfy8hl6sRC46F99YX@P86Q^5J7^@6q(=f-`)CH1O(7v-U-kfU(C{?6TrKs4R5z!
z-@nD<$r}i7sbcyM!>gII(tst}{<Rh}&Mm!ys-%7T@$RlDQMk@UINc{q50;atfEMg$
zuNTT9<A>00#(toh;(NP{7Lq<mci-{<-hpb;cG{zaL}@u?MbPP{9G}amOzLZad8fIb
z`T2a*L<7A1nCda`wM1}<^skV8sZ8lQcQW49Acr$2D(M4H*%$NIC`*vVWv{1!|9%~c
z&aAvnYMHpk{NADzHaVmoDWES={-H!!Cadq4fjfH7i&)dwwp}zAy&Z|tq?5pzHUe4I
zMuuSZD?uPQ?NN-ad~=Ux7EyYr>%%zef1_=X&Q-<}L8AQhX<|KWbU=ejan<mZOru6N
zLeq?f13e4TZe4Et-8F)vdG$8BEx45A7=ux~!sb$V#QKU@M56Gz6kHcCK*z~<I&i6W
zaGrHu{kJ7&E{52JTlTP3zB{96RdFOBdgX7&GI7%I{@cXpOqFUq&zbgBX8ePMnrNHH
z=?}wC?!NXYJyaN`#bBOKkQZwQj67r>l6@~4V-9S8tT;S6qW`e#`FwuOwNy$`y!<Vr
z+FO;mcWv($P20a-UM<X%TEKMes8%{xq;+i@b%giM*knCu$otyx8+!1@`tKKk;XP%Q
zFO$)yS2k(bOTxFE@?`qggUCFC5tz^a(yX_*7XvgYtTQ-Jvg;2&z2uKk%1QcjmSr%@
z<;w*iwuu26wc{v6pZ1ic4&ziCwcEermzT|hh2vdB+-vvNzhd(19X`4t#S&IDTtw(u
z<C=XtJ=C4F)Z52Ysk}>N)kO@lulc70SQ(ufjTm5611FA|6e9^VzJWta+_HSSK03a+
zUD-O1V*^O@PIi#4E=RJHdu**&VZ7J<WR`qNjVYk$!Uw7CjisSBrzNtKh9<mo35-wP
zbawB{S52%HzzJ14AQke{v8KAI%O`J#d`zOJ{s`Em8f@{uW`|99WW>uTIB~x}(G6De
zO1EI5F?@JJi;)((Md%w9{<b!(c~3rvk$+9YJXSBR-IQBzm<{BEdtrCz$}zVf2=o7#
z?5KU5KVeucpEqe3Xh@8nH_;VgDNic;^CUmHZ#KejQE$H=mk~O-E5k~Yn2jaTm}(9v
z2RcSEb}+GIldL69g+OmrYvUSw`8!8+buGH?0Jjpf*T%X<Q9a_Z{RHZ}`}%1SJ&XEe
zardnHDr0lmZ1N3aoro1Hzlo2tiOOFp2DI-4%Wl9>v4Hj>N*JJd|Mhlx-UM1pwVoro
zFs*b6A$I;8(~Pgq_DvQN6jxMZW|NXE(VNbKJcGh4h<EsiilS-^Kr=9A86XGwjD2*0
z^X?d`>FkUB9x$kT#1cn+Lufx3kuTOhq#<Y9PGjBMvk*5C^iUqX{TFLuVm^&65ic85
z8a1iUXVlH7!MNwI?YFq8owpEE8(glQPUmD8TxU+e)3`Lxu`QFp|0Q_wdVlVrz!J5r
zUc}4-=1?i5Q{z-yB+Zk#@($bTeko@+QWV4<OQU?e=4FDcvSYTgl{tQW$zxNVY93F+
zNhV?AtJM}GZ~2z0awmgO1JH~WCTceP0JZh};+5CR?L+EF(QEkf&pV*rovG}*WfE^=
z+CM!j<B>}ICl^DH!-D5{4g<PRH};G#o|9OlJegj-C)0!?nJB8}-OP1up>6P+qc8hY
zuq5C?T;6uhAniY4a~y>@Rtz2NHAc{WS;!bTyBc7B{ABa*3TY6)DoGGFbn0}#3{$NK
zpxI8}9;bEo#ZO3ui;B|EiCDjAzj~Bu5goH*>ewx9C$7mHpbC@R1nWc#`9FYf6i=@X
zobzOcbaU;X56%(BvtOg>a4sjAow*%YK$0;63X}D%c~GqDq^J5pbj}92&vSzu0he-T
z{F^`X?p1om*XcdZHx>^|Jq96^Nnma}?CD8=a=q~g)K{{y`8-T?NIC#W=ixyUYP{*<
zZggP#re`JR?}C6dUX^=olZt^I2KB)r-j#2IemX@_VfooiE?(0#Ma1Xc&OLNBD?&{f
zn^R$u!5qu2>-j?iQu2a+fyad?W!b?OC}Jg>B$g%$c&}|VYPbwLgkmBMdMn!@*xO+1
zYaQn@9-}A|Nmkxo=T7x^JnYuAy=zq)_nzJ!;10;EcuUKs+!E+`sH?YuGS7HfdFVi7
z+u^d-OnceH7~l^WsvRlC0cZ_S(Ts>h;~m!cp(n*B2Um(eAZrFjG|3Oq4jmgizrHw6
zeH;9G`ET#*WW1`?!*?g%;Q80<VI4hTN_I_2f*_qBRh2*Lwtf-4%<S<O!D$bJaDYGi
zobf*tyB<g)%A>2|Pl<inP*~e86lnfvY=A+Ve!#zPAL1CX=%9c9(apcd&{3Ldm6j7W
zM;>O9Ww*bqtmrK@s#j+Vd=jT-K1`uzE1kyu`&M(mGC#f+5{bL*+#d#6SLtABeWCZ|
zpj-;F#>>KlV0R-tf>Up*GPjWvPA<L7fv_L3cCV_^i(@67h50~jj|Pq!o&Mf;yv_YO
zed1KC^?|h(>gRFoirl_lWUc-6-yhk=e_W0Re2RD^@P4)XPx|c)GIeO(#qoznqin!w
zD|)q0M&B<Yg|i+Z2k~;c_-!KPwFI*K7|0S3#Ug8sKs*B9eZ(3CpiY26@KG!SQ0}#G
zbbhpWS2W@z96J>KGeAXFPkyQy<fIrglMUb&q?L(_xuzF#{YMO?6s=`VSoma(z!9`V
zqt(|4#y<#%ooE)SSgc+wM&O>HqtLQ@EP@Iub`0bMfaGKa>?fk-t>ZlM<Gi}!d=lbJ
zAyk%YK+~l-&J2LyF$g`Nc+Xm%83z)Zzs`q<jzHT4Vg3W!Cgdk1)nfg-{=cAYXkzOB
z5425?7bugTS0w*`NZZVu#Q!&G+k{T;S^GbvZQXeCq!v&lfFMu-gsqv+{0JL1MIuq4
zx~h2IGJps%Rb=21yBugC0mid=ooy?X7MVsH2;5sWoYu2`4}tAsZhYR0nW#<Sib{Pw
zkt$L_A#l_GOc3OPfYod_{!FBw=%vtv5nHU2n5p7dfgpx&z`>AMiOuw@&#(o^Fg8`B
zoNPREnYg4ZNXik%Q3jwOwmYxX*;_Jbk^G!xnef3(LzR%W+>DOl43|X_`N>$8b%bCu
z=vpF31fNO5W{QYqiVDKS1{fvfcqnLZ#%eb76**fDAXh4?YPgdnfd>g85HM1<5CHlw
zf#|H7JCU8pM7oZxyZ&R1`DhgZ8L;u53|{z@wT;b_b2jM2=P_<&vhlP2Qvd}{B0@aj
zwIj&LpY*Z?naWTpI1nh|ct5QwuOlFTo0zY5kuR!{&sA1%MZu0fMpj}T1a8UqylZ&h
zg8pJf6G1HWp$4N+YytyWmWePW1bDp*l&|3L!<6f?Ui3Unp2AVdk!UGk?$sakN~ko%
zf}Wm;Z;5`<l#Reb9dZ}&;4%c6y`C{sfSk0!X?P;nC$+?>N-8H!KGa3OTG#ma6Y?p{
z@a;PC>u1E}NyM89hS_68>?F2EpDZ1FY*w>Sdi4yX0)a+bt3E4`D;;oeaWj0ePNMI@
zrb0l2v0A}V9_<8xnjQ#7F%cQ$H?=%g%ivsrz&U!#RtaUPj^)AafGAJ68gsOa7kn(9
zdu1^1kxDs6KLRETd`IDS2e{GoW!zJidcf#f98uAv!t_pAN`bYM7qfv{Hp_~lD+tKe
zQ>HdmArQ)g=|MnHz+29hXL7)qT6Y!_6hf-HKN5*VRLQAS?b<|G^^~2~R0ro&x13c7
zSeI+6F^9EQ%uQ5Aj@D3PDiY0g8B9u(vEWO2x5o2I&ww?Wo;4!XHS*$hF!`{2Hp_ww
zbbWaW>B3T<Rrz5i8CQEjsx7QXEhWg!*XmBWkFbLMvgqSARKMSc``gf>USAfJMJN*)
z+v<g6kqyG`B?v@_;<53J%Jo~K+_&!gJ&yyC<$+EV4tF!N<TPOAHNt8Pjl%1gBY|-O
zPxM?wM=Zf}*ajN)$_Mu))Rqy;28flZJQ&~!2HSMl?K?_SkZ;nss>bwv-}_=;8Cm|6
zn++j#pKaR~@dIY?`qyL43<yeB+D-G8Z!XW>AU@7aF=rF0lW;yVC+qp^X6l!|3ixK~
zvgQx_%Io1x2s=?wa?>7GA~ulqmo<Wuskue%iQ+-XoJeEP`jhA9tx4i40us%1Tv|_)
z+PvDDsWQlIqm0kCNYB6rh~Ja+#jhz&bEl%68_&8K7V*{|OLFzL9d5~j{_OCKOYS=`
zpo}b7=R*aBF-M!;(Anmqc<bsB`Nf-A6j!yJBN!>xxsU5?9Po^V*BCQ_*_r_?fV^$N
zOw@Ke?=X~t=$31PPb&e16b={fvz!BG81|IIfen8E{Uao0jzPc-P}qMl+-fd1mmh%N
zI5^=(Xa1D39#XDU7JQ)3_xN}Bj|E=e-yJ&7x>8?yGxZ>fUxG^DJ!5cIKX_;QJk!g|
z;F%(8rcKM_)1H>gy%CB%tK!e$ElTS*z&3&6GROJ1MQ$oNg|F?=POEe~$@MLAk=e$*
z`~Ttl;RAgpK;YY6iKdqoTSZLezw<vHq|4xXJH6==p7eT+Jpb|=h!-X;C-)()bjI~U
zTk+ihk(&>G=i?>1&TQC~oKU~tq{Jo;CRPo;_a12FVxgmD?Rauo+P;4d9rmX%ESVU_
z><E@10qSvnHEubSJ!5A;z<Jm^=3c!!*Qlvs(zRB3w7UON5M5S4X{Tdgn<KcPxziM+
zI?7C6?fAH#3c7=Z4t*MpWGVG;D9%PGGd0KN6IqJ?FPh%^t;xs#-(Dar7;NMiH9CdS
z0})53I8sWaTLh&<)X^=Yq;aIA(hU;Qpfm_bsR)8fC<+GmUZ3y#{u6fnu;aKM*ZDk8
zvasAC{Gtvpih37may#uAq8|I0{?1St6qeKhQK*kT^&93{g|Bbuyr2wSW$GeN1g7N=
z+WCwQ3MvGBXLvhxu6>`LzCfQrL7lIH4|i{-`q9{+9dOt(TGzZ~^h(iS;e;Z^CnK{I
z(KRJ_@d;z}DxwT9emFSB7&tzZG%{#3Y&!y_)AfMM&<|38!z7t;%EXUIgLFInRHd;M
zhY_{X$*hF|Ys2gds0rOw#&aaHwDr0AK%SZEo9{`m+aZHp#Tin3SeZkv>2L(UDA<K>
zs9;oHmG$cNqc`$GJVX=R8?mgJ=|My*!gEXUhY8zCAGb1V$}Z6TF7OJBTP<~f{f0OE
zqx$ru47Pb%v@?}a<Q=QnyEmIfoIIwwT@$!or|HE}$&z}-lOvw$X$;&fRr;^azRYZb
z$t*2$EN}W;Tjky3iIeFOpw@VwmhR+8XBvEsg+(xv@k2B(O+7DH;Jm?#yvtus@nA0C
zorU6>O4d8Ch28S`9l-9_Wu*D}%L4hu8u%|pupdzs376j_kH}~_3BpXIzMC3Jj|<6e
z-1i9rqH-8#%a`I;<y&Wj7!Ji-C~y6}gx4aj^%q~Wt(AU(Y98K_=1+bdyeZ-W6h)vU
z%$%ix%=o8diHM`O4L1Usk~Nb1=jzm#4MfnyWK~)(aiyK0YT0}F1uks}T*r;*uD>Q0
zz}0!yW!Q{#WaiWHVy>U2()+tp8}gF}TY_;H!z#?zUUEzQc3R%uS{2Bu+?HgZ47nOH
z@vr<oXJ8xfpAENCKqV8omH<2(v{P{xBUfdPFHg;?A`f3*P&ew<6ut6(!Fk-|RpUTQ
zuQGd~Jh1;#!GIFw!IaFd&~~HhF8I=HBzsWSQ}1JV_&wEz8MWfZl~|(6>Bd%lvIWFg
z&0X)k;sce~5|zGNH&WhLRR{;3+*1xefujFG71xxM|EbCPGII6I<;ZRk?B8Jv8HHb~
z!KCzBjz6@|iW`I1kPrJ;&1T<&Kdu#Q&pUkFVZK}se!l@;KiwEONmsM`Qe)&w0h+r)
z&Y-kWuOD69i26!NhCtZ^1k*g>F>^?&M3*cDbl}WNzrjX3zoXYJ`sMWFMH;JE7EL*t
zbB_DLH|!e>N<!f;GPwD3o@&bL`LKL8GtasE3Yn3iRcEfved5%U3~7=?YAnouLxP9D
zFgkzu>=vaHvaLZO?%g(@$w=Lsxh&ZIT(^V)Rq4AsCaahD(5JH>I(&V1i&8NYwwGC}
zwIKVY^}E4}Z?o^;0l!<0W(-|Hwa_Z0(QZ13;oo|6&o}p#xJuQl;~N&6EaB6-Q-tY2
zl$5dkqDj2=4b6Jvv4mCB%fZ4Pz;~Bx#jhPpAH%FO&CcboGk+{-#epH2?(pctJjsKM
zR3^nA2W-(t0T$+QeMff9d)(hNUrK#g{;nZfCZppEkQ{teC3|Ro;TU-Hx&-f$(uH$V
z9^MacOR(5)CicE?-^_RRvF67#(@AxoR_|JRDwtJrAA7rU__M;WH-GH&thWNZY9i(b
z9$4So!p5>HCJ62PdHB;TKmNBLf9|057}EWTCI6=~8y(MswB!R{MOS^rU!C)|F9X+)
z?ywJQ+YOHfTE@68nmGJm?ZCW2MkGPJ%N?~D?SmHb4Td=4f?N}HfM2zdbMGB<c%40I
z-Q{UrU1FUX*}THaPGxm|$GADSy>JeE<(#+eT=b}Z-d8#p)rLVj39to51~`eeIDJ+<
z#l^TWF#c+JbMs%O^Q^%izcY{Gl#lxV7y^S_$_9TKEetkaao-klebEQadShpE?fjzK
zn&2DC-`FP}`-5khv=EE}>c7dB7l!=LPaDloZHFP*CGk<w|0lGK$cZj4p=xGXN-Gsp
zDx<4QVRG^q6o;G~thSQ6x)x`#MgRYtZcz!9((Ra<o|&DSUszmvyS%dcZf$*IbL;(w
zkK3Pic55}Xz7W10d@E*`OQsUK#Z*E!Sq@VvHRth4160Y5m(rRgRbm7nC4Na*Au^@U
zgw>x#GRldZq$B&p(?HJ)#6aI+R2-%ArVx5F8r$pf-6=eYC7OVrjRi+3#I)=25vC!-
ziBNfAwwZ%^6umhMombaVjfY7^nc%KQ1v$egSJ9ts`FxRa_=<_B4za?WWlKHH-W`Le
zPI-ET#5LdWU^A$6p7ktlMytyFQ)B(*^&sv{Lfz0nv_sca89)b$5;C$gtzueUY**TQ
zayc*f;$#mk@*l$PyT?raCDiZIp{AW#lBtqTVNK%xja4?8hUUYDsew3yvigm`-n2&R
zZiko(uOAsZ>(1Pr#`Y^>mf$IUGr1q#^Aa~c>8e|q1Zb;ybva<-EWpL)kAx%2y=biq
z&d&j~q8lU{Hjj;Ph%f|u>FX;nqgY```Avxmbq|MV`_vf|BlMHBF&a`COR+pG&U`HD
zJX7?hI7Ev~kmoiA0~uHev%FEFp_wJ3jH~#B^AwT(HfO%eZYBImgvYFXWLu%@5U4y0
zXiFZB^90ZsvBgiOer)<x?7rdv6_6KV5-nGB?`P^u&}bLsQ!Ec7_T{tIy}g<k<P=FL
zl$@~!3h0ZA?oguGympG>gsXN)^h}!@k%<g#j-?rQnCD<J=2exCpjZtU9OoncxuSI0
zW1zBPNKcHWq8Q^*SvMrUSJSlMRSis56Ms{?ZZuY1?wyPTC%<H?=41FDi|bHaKcyq_
zrD@L6o2s-m&8vR?)?l^|`i>#D7a~o;skb$n5;b6w*$2R<J3|sw(00L_YP99)_)>Cu
zviI%(fwna4J_mipU-z)*|08X6B@h2o+EV%tt^QAGyMOrKXxmVX)>Jtf75z_XE7`i=
z&@J@s?C5_=+fOxeiZWmm@e9HgDiyRhTQt5a3WVW|Y4~e!{q4J=4*he&suIRCa{&(h
z^9I*S6cpI4pnKCD4qtvO%trl{p3=w@P?)z|tOmdX7XN-OhR@w-UApx1i&EL;JunC^
z5q40h!dpZ6wdJ33C%;%&|2h*x+D&F~+om058gj8W@G(_G>o@AOZD)*tnZ!7s$yZz(
zKrXlHFid`)X_A`UJ6C%=2}vw*0PPCKsHyapmlFC91&z=^h(tD#M^0ijL>($h>J>b{
zFnv8z<C|dEGr*A`GVtg6hpcNJ8?;6^O+?R&^$_s{_kjrdqQ&zbe|!`7OR3*aBm3#6
ze(@@Kd_r8<00arN-BdVh<$aUMaJSiz8xKJfprLLT-sEKh-0Au}mKb!<k}TjsnSRfm
zuNX=65X=TgW-u+`=pA6c7f_^(&UUck_P792Ye-`D_`oE;GsVEEk&Joe;3ZKp?1RCp
z9V;KkCwaw|w7CK}USUNcA?g)1CRBkRn6{>O2x>d6?U8ZFCHL7zd<IWozoU5<HZjCu
z3mga_64`nG3~}404tv+9Mm}rYDBs32XqY-D&0D<|4KY#noIAWJXQVC3rg_dnpGiTD
zw-JQdh+wv+tu(EC9YntefLAT?3el)cTv}NB#wk6G;?A`wogx4%8v-maC<JX}CUD?K
zF)5MDqJF!O3;TDn+vT?t92!XYmVO$A4QBac^KwfqfLGJ~$GArkU|}%_kfsgb0#3{5
z#`13JSsnAbj{l?vvF-_fJvUAMsIgB6vJhkNPSx7Q=ypW9w)5L^1#04*>q{kaU2@q<
zlo)P@-FRA>?IynLNeW(;eJa!LdS#Sm+L6|rb4$=&HYLY6%9v0D>8>E^7+g)IVUC^<
zqd^b>@JvNqj9Bxs(txt@*irz6K2TIE=Twr0hE<h2Sw~Q)l4tBZH3Fotp}nf(5cyY2
zA!7#pQIu!HT=@A>wS$H3h7-X|_Oy;y2BJ+@<;=o%d7Rd(Ye-WEhvbxWtDSdbu&?ds
znp1bM!c)|7%Pa`+KU0<%#E2ge`xFXjp=Gx!aNGyI^&)P7#db#N)JVCIkqdO5e^K|(
zOu)PQ%?e6?%@O<^HeUD^6uGPb^cuEIq)36T=BU$}9W9M$__g2()wc>VSH9teV+t=C
zcsMo!#<rT2V)2ur4uHsZR-q(z3eYEYv-ec5RIoeq;;k%i(h6HJ%W%Pt`{*U>8MRhc
zIQk-kfkeXWj7!ISx0XOZ#BOsTt5!yVU>GrO^+%m_{=DzOw`U+O@HPH`E@2H3C%%c-
zKcobD`U+lrIJ33&b_woWwurk4l(0(j2<}<6@Uskp!?`{Xd1a>nnp;5;fN#VhtK=9<
z?dc@?V%Zu3gDgHYhV<N5s0kU;N8cl8Jef%XT?up#MquMP8z`w$4pCcZ44AX)*(g4w
z;cB0x+sZPQ`lJXKLi7?GyR+E!Bjm);juFtX2wDb9Kp`Iq5IzUEtHQ^1f!{V#_#t5w
zPo9AHq=W8KnGvz533xsg9X<ewyTsgy>a1@6Hqo10J0%DIweJq;0gM{_V}iZTcME-$
zhA9>fMEsLXFk|K)HQa_&vu}8fP?LD{=kbmueb8Nv0iCHR-(n!uifcKp@qg?vu8qWq
z$AjqPxB289M3e=B-aII5t~4pwJNnwOSo|xn&P--sSNCiQZ4{&+d=+A7I}FJA=h^h^
zYPi=Wyut^!Bg#OH=P>uwYfP`)zZSc2DPAc|0?UP#bmu*Zva?FF=lJJ|3tycKb7xM5
z5{9JJ5I&!Dy)q(4tEOw*6ghi8EF0fbc!ELDZ#d)$9ehX%>?6~Y`9IMv-9s4?1Vd@E
zhwD)dGg-dLg_Aqo^t*{-f=U9CDKsIpHR@3Lje&+-qC~U@?R@e+Ys1|SYuEex;-0T@
zYJMId%kh7t@p1t$%@M970p!mauuJq$uYIB+G5&$-(XoiPqh;(Rugw?nIp&0NuLNYp
zygTgqS@uC%B7_fSnG5`EZe-7LueEEgv+7=H=aith;$UK6e=ygt8<?bCSW7$)NAvwT
zKtOankTV{j`H<&PcB0Dmo1W9L6wr?u;$<J3^D_??<wMuuBclZd=1q2|&sT4`tfpKG
z)(N?>KbQS9NdX{a7x(bj#Ln{{hqq2@x_+HbAP3LtuOzPu%#D<##DDSUo&0Uf-Q(dd
zAXgVeeWyn91(e`C-&v68vYp*Bt|w&$7*UP3dNAWp%Dg01=?Lm+HJCf<7HnGp0ss~D
zLd0XP^qadFe!pX83BhKc!?e_45>qx;(p<9^Va}z@nnxg~aC9g;jCM|eop3`-??#$g
z$gBgHMFb^t6wxsi(zbXt8V3SsAyn~3L&M>v8{zJYZn6&1mmxgXOX1nfktIm*&5*E*
zdN2bBCt*iy7Rw=<9Wx#jc|}CMJJ`xOAX?QV#$_qmT`$(OA*N(1hL*y78-0D6gcO*H
zx`=1yE{-ngjb>7ERjGg{kt5<|5Lr0yWD<zX7hg<>*P~M{wt|#azzmn-aKB<_iJ%a)
zg-1A8cFCqL1UM{!l=4%RY;hVD0pqZ|m*x~8kWeu{w+AvwPuO+$!LDovK%1XYOjhA@
zBLU&y*qGjP(7+M>(`HQBFU0h(z>32g>w3Co+Y;CKqvvs8`$fYqBd7>@SOXdrO2?sH
z9tSUaTzLSblFSW+$G?Vn;)iabf7%mAEN%#ZW6R*jqOhUG<S%_Fc`Hbch1SdOWS{0o
zJ01Ym${74$%D;*m(WwDH^$<fMutO9_&I~MfR-yjW<H{*=G%3}Gm7nu%YB4G7_Y(Ce
zE$t*Oc~pdqBanAv&8ExY$hQ!hkjICR&>%fmcn%CD;;7&L=%XmiqCE)vHoXj+p=BMb
z09Ew+mByqG6U0X6nt^Hj0DK2v9zOuxhIR+xZkmfWvj#{O01WkvV0^|%;fIA(W+jr(
zkq<`6rBSzj;kl_`a1zudTmXEhQu)o41B#gQBp!451c5uaJ?*CfsLbxn%)!W}n#7q-
zk%3Cj;1y!TZCZr<hQ^RPTD3l+wIoHg--n7o6Lr9)=AOJb=K0KrlC;sZb)cI|^#0#-
zOC7>8JaaO4**NckEEEu9`YB&ufnJ~HyDGzGl$Cpr0d19eEWLRX3VFh(kHy-3bYs)p
zinJ>0aw~}i4Drg7yZKZ4x$kyUO96%Q<h;&NSc4en;sM}gjt4V;ZYeglmiRPFEFXt2
z!2im43PqsY0mpY^mU0SMXF}+!3NqOW&)c6~z~r-L7M)lly8PgIZ3X+M=RyL#V6`bQ
z!xVrH>k%{T1Ve(aYr%dxvX;gN#7>uJAC|bx<w?|Oqo4UCx0gO*#%sy&rCHlsj4(xc
zAdcSVFnt!xJ+`xjMK<AKVpAC%Qx1&-ImVs}7m;S=#FTAogdQF?CC_*135>p|EJ`oG
zz!J1q3HLk`u*R3!=Th`AhzGf>u8@jh{))9xn>#RyV0-a2r39l93tNUwHd?>YD6b?|
zEdG23{9b0IT(LWQ!(Tk*@mYG)Zu!%<WtGHAOhg4x#x==-8W_oh#{|sOt4~jbbmYRy
z#9?<0V1Z+(Ixj@l8Ss#%ibYI4D*+@90KAjC3)F*MB!HEf&VfwiTBcrjZU)oOnA+vB
zS{O?WmwxG$q0*fygK)X~=z8Y8az?a!HH2U+gyo$)aH1v`ciA&1{j9X=(MW>#z#Lz$
zoK?M7-POSyIDk2o#Ogj;4yvkBW&%f!A#3UYX=W~^b1zW8?BtN;R*Ekwr|L+aVc%5P
z8r#rZm+Ax(gBZQ<l?w2lCj`7KO)n<YmpIga<fuO*@d;=9J|<<}7Y8!n8S$jLVnV|%
zI*dWEv9Pg0`Rxt7#3S|laVfb~2buL2oI%VToT`gWhaEbYLjjyg^(MQSB(6*Z&QqD$
z=&)zZYTJxXjIOC`3F2=kB{W&eHOlbSh2}8>NaxLWm21sc6363EC4TysOp{b}41m8M
z+f|qDs<bOas&$b-E#{o+_0WO?Xk>3mJ{f47PI;&BzcLLqgdP!B_WqY);{vc4-dS|1
z<0C8e(+W`bz-v~)^-(4KC1;T|C65}g_lN|@<KX|{*VsCscua)1e2X<CmJErsZvHPz
z;|JwObvEXiW<^7YG5jhr-OY5WBh_6K5_Oe*&_V!=N%=qS8mbHSk!9Y=>%!D^O?rEM
z-D}U8LLC{t99^-Za@S0bX7kmMBx3WM>WETK%^T&wOf2{{U(;P{u>1jN+#fW_-lb9W
z^3Qlr{_mcrw)P6R-XGrQy^tEVqPpJ2`&GBZ5pNBlPsq+|-kqPJ2qF4jibSW%1Z3d8
z^^mv2h=0qj2=`_Bm&ZWYqyyl4TkrGnSGd*Q8sfkTr-5Nuzt!6t`AvP?e?qkm8QVKM
zV-E+ZllCP5;69AR@k(EkNPj0^9pb?xM#+nv$}=BNdgVYrLZROlZO^zgaxqd3q{#Kl
zk9!)(WmbgtF1_jX%*QPe)$WfvCXO=2+hQI0?PQcC4*5h-2(S*<(IJNd3S*gAwdz7#
zR!1K#vc#XLaujjSIkJ9qgptRC{DEv0^gKcJBW3mM=$X+@ddy`sPkR;njD`2S48P_y
z=6U{@T+MjW<~dq&iubvJ;gfKVT=mBVMeuSXcIU(KtyH%1X*TH6M2!sk1>dCV{Y!OW
zoF*tP`xVX)t9p$-qp|x;uGKH{(GH%!xqc=E_(ZdgbiLL=O{%lMS@)lMTr-)K%8{2k
zdKJYK*F2d;1Gwx^jnrsU&q}3OCY5k?C;cXA%YaY$k|T^pB$H)h!X8wm39~o}OxFo}
z$P4ex+l1=R3e^W)MtEDA34!~CR6Ynhq#@*(?o}d1HU0{BP=pR#1uXezf49$Q6(GWA
z`1j1cU(yJfZp|Jj%v(FnE4~xbLA-X9op;f=wn>;@*jP9=S<t?fyE`PPb_BXnppxD&
z3(e-@1)KvglC^g<M7n51Zpkq~Hbh7>GfByE(pRN9<7KlN(mu|LB|!R<xh0<b6|-e|
z8(sI7_JC>{0;p2Ja*N{6?kvUki&u2d<osR694{Sjz2#??94Maqpvf}YAUWB;Q1?Kz
zqgHZ4!&CH6<){W2KwiD|XJz8u>U-?U(a}XoIjN8RxgScT_P3;>zpN%ky!&z_^<(~?
zW2=-h1q`SIarM6Y+`Xo`U|{}g?SOmz`_baG#QMpt^{EHzXWi>vM~m^J>wvGTr`#Jf
z_8S>n>$HU%FE4Mv);1XIu`B>kxOW?){U-Cs23z4KhJk^dg7>=zNVprpskTLo+Klg4
zOw~A7)X`jwEmov;Qe5NDl5d(9h}`lW+gby>*Nl9>ys;Hq{J!`OPz-?(Apq#>fFgB3
zdIF%G9(%V$X)y__Vf_9I=%XazqhR63b%zlFJ$wu^7F`FDCMqx-X2kMeswHhFMqHw8
z(8Y<C`%1i*iqu;>d-QH&o3?m+y>~lSL)}qr+cNTUS{Gi-4|MY_Vz&~`<_8i+(z7{$
zL`Y2_Q`L<|frvubBjfG;0FVrUeu2D$>A$=NR@*B1SpJoFr$lYv8T9ooLP!gtmH`p~
zfP;he+!(GnT!g)lV(31r%5322Y~I@<ecHM3X_rmon1BBrWgk_wY#Pe&>ha$0)cM{T
zU_V}iP_MSvEX5+Fgcz>COHyt~*1h|&2rt&ilAQSxP5#pKoOcoc#*&cyq~dL39bFfY
zK27EBr{!mB-{weaLCS140SMnuD%WhcZ<!tRV?W(OWL*8RUR-=IAhkB=i(^_xu&?jW
z9q4{Ueo-Ae*yuf+)3_v(r%qwf6~o3==--dC|CSr^^-8S1Z*>Dy@2!^lSBh`ds&&(+
z&)?M6*AV^Eb%KVh5!WOvj0Ck2-ICXpMsh!v8jVDK9}jrYa}mb$!{{#^-(^-W6CJ}=
zL6(8i`yvWPoP+$57N&K62o_h9!_sRQS0gT0B5x*w#+B%lVyZJw)YE>?=X!o(%6lU0
znybV6W1GcGippd7{Sdu>KXKitqweHqhPku<i301K?F)FqH~2-_pG|_N8zv_XDdx*{
zW)3e;i?6}RR}vicbgxGr)!r{E_;!^a`1$jP(+z)fMg_je7e8KqO-x!mOK&?n%I3-~
zS#DyiDSc&OwQzi8{m%-{^6Eba4jucGdCMq^ApV||(@2M)A2*R!koooN>RL`|zGoTJ
z%|Cw{qIGOIbsYO0885g&#td8?wQejl-)vlh^fLc@Nywd|fzU=oMny5p;PDFVG9r;M
z5xgQ^1{EnPkCKg-V~G-t$FoP%qHsl-k<?6?V0vO{eFQ|fNE#W1!@<raiv%Ot<>M6u
z`b!$3;1X#Gm`LuTmiEr>_?HpniOPtnX}okayIj1YC?tX^Ob}2=8;*wI1)`dx@r&8W
zIJ`Vt%<n`DLN<DgN$K`F#5J$!Dp}S|AwM-i=^B!TOK7>aZHi&2*DM}`0c7qJP%LWg
zbF_rx9P}dD<+hfV{HKZ>lejqA+8U4`4vhQ;Zp4%b<A^qz`(=e&#p`d=B=`CoSBaKO
zLoaYz?pK9JXT)Jbei=BK#Nt&)&o}~hu!SR*)KrDjkae{M!sxQ)`&=x{(-~;**IKtZ
z5XUTGKhaiCO$iDZ{?BL&hx7Gw#C>{Gh}yt$?rEQkL!{jV{q#0LIxv=3FpZ{}z$gX@
zOR`k1lu|TI#z)oRO9zclG2G_m;|HTUNpQHhPuf+^x90uz&)Gv$M|&eHy%5<gQ8qs)
z0m8zBDMDm4B{b?QA_Db(5C(&*wYB2acg8*pa?=?(L{3o5OkhoPKoHlw-$ux#vX*7N
z*XkmV5ldg@o?eeCr3wUKdc7KmrP}`f2T5crG`+kP9*lrZTwi~1`h^|HAS_BDT*Q2^
zU<rN_ri&$w$7?@*@M~8I67}(_Ua9{?L2OCr{+Gp-2fa|;grI;;2Sznk9VKo>n5<P~
zWMl}WI8OX=8CQmrjM!!x^*Cb<Yxh+v{v0$lLLm{oDmk{|I5g@u4TPzaXP!HBOxTfq
zuvdiPA?VB^2l3g3)3+nlG~&L-Xv~BOY?7pr%gZn(8fxAWyLex5byu|L;%0?F%Dqv~
zLM$Pa&fXD@M2|nCjZ)dT)&4~%93k;19!wj3)glvG&tR$vjZnoh;3MkO-u};y@WlIT
z`%d}Zl3PLe35Q(+BpPm0dZUSxPueeJ3MQWcNVwUx>G%0&3Cih(Bpo}*AcVcPuAnCh
zON@kiU)^VZ92F(<4cliBfa+y7KPb#PJPk}3i2UWzOM|pE$BD_)+rb$4pK5C$WQrpr
zjX7r}M*68uTMAb4r@7vF9d~}y-6_0_-*uJEcX72?5nV|OgvH?9Z#HPU8+!fG<^>Jd
z%PBt^#(zHa(VN^Ip<nW4GBaWvjT})*t3$x=+<i@3Di<J&7yP^MHZtSgq2!HoZG%<X
z_Xm9wDeE5cGtn$JM#Skr+W}4)H(A=>%cV55W~itSym%RO?h2L~TFV3>)ID(#^zQ~W
z+6%FZl3(-`R`tie?7KW@*_2KcZr$pI*^V^SbT;39c`n5}wjKQCvBtNkCT2wIJGY9j
zKR05f|NZ)qbz7}tpK0@JC)Yzl|L^Le-fpZc{Y7QNHHp6(7Q1m6LltH{4h8}t?)P9n
z=_w@-Ygw03!Y9Ce%zu7?MnClhO6!2>SdQ>FW2m)MbP7;;Y4C!+qp~TMj5Hg43)#Pu
z#a@baGUU{!RSId<cm)uP@!$~iA*Na&g?Lgf!Rck&KwKC?)IhQNSe#=v?6DtKMT=kT
z!*vK|p-QBB2g?T#C4hWQxOx7}yipq=*mo02j|6BK;Y+gOO#KPQVOTWXC&sp3?^xD)
z=&P__kSQ^@WcJGU78_d{=+7>!zh`sQA2PjKP%uEb%VwU_*6V;>OxPA3)xTJojxve*
zvl;z)OV2BqB2p-1)sq)ZkJ(i<d>Hwt)~*-sfCX`mIHcJ+MGL!{fmwQoK)h{FBx&#V
zIAM<e541hc($D!``$i5+Uko(r1!*B^1=k21eMv)UP=4dwcljmQ52-TT7y#~ayFH&C
z34F2PmH7zi)3+z#VDxtnHAv3r8#NC2uenK=yN>$MGWRCBUnaEoBn?FO%9(w1z^<S7
zr|9T9v{_zlXnzQBjnM)dySzePGcU3s=x^p?H70S4m7gw;d&-}U^cNLPZ7Z*gT!SVs
zM?n=xs-J{))@mCIXsveeu_wSpC;6fs!3##rMUxrJX09rkIpeC1!zUaTXyvjBoeN9T
zzV?~<>_wlkFZj)opI_zCZd9zf0K!|!--8A`Gf=K3bBRuYPZugh7~D2q_dICk7n-*Y
zc~W(LEq3a-Qq*D%tJiDUn!x|u!(#8c8>!(!9YAw_R^ldnnq4s{u>91y+(XxJc_#Oy
zDbs&jP9a29y)6bO<DgFCX1D?e31@1H<r&*b48z?r9NG#z#RXt9&;lVa9^xQLu3oiL
z-2gvZ8uW27TzUH%enF8Cb7dCOPoGANZOzn1xhITkOl{njNxBtS`@4~rVT<PN<fZ{n
zZ!x1CKvBMp)}SMVJ)G4kSogb>o;!{~nrFLx`inzIrnm#RBDlN7LNYp(^J$c97Rw4N
zLT%MMb3T8ON2N#_v7dO8bTJ#r`1~sbW%q``zRll>`+}X8krV7g>z(`G*|z8>m@wz-
zi$gCV)rBr$nT*4+?n(vWt4*H}3@KjEqYwP!AF-|PZ;&pKMkyKLsvDq^><;nAvH`aF
zs;jcf7{pv{THu0Rf(zR?bd;x;z7CW^j>xW<Y%Kga@kvd>ta-1~mhR>yCN};7g;lK~
zs5ds^*}Lzpw1g%}!P+{;p4Yf~ZJqKr{22+9-YLZb7bpt^ovvV&qEjNTKWiFcmR@|}
z82-dqEt#GeHTk;2820)@O;a+%fs_n-_e~Q1Roj2Ox~TLszS_@r^4SZLo-O>lXFE~8
z9mo<X5jDxb`c`0L5rbU^ce)H?;wQG5MIO7PSk=iJw%)I8-hF%gjmg&@-hN(Ha-cZu
z)V8COr2ztD_1b6LViBDkco%^VKF2}Li|A|DzVW=GHb{M<bMk}=q>h1LDL)f*>3W@b
zRJbgsK<sgcrm?V<$KQ#gC!K#j;%?GY-;NtA+ZSyA)!QiF#mJZ~#Cpd6E54ly+by`3
zs);0+y>Z^eJi>9)8DGJ8${Q&@`1q0kx4)i+q${f#yLL6r`+MQ`tqL@%CN%v{B57CC
z*oj?WoOQGnz26PV&e6P1RpUM8brt-JVGU5N>IA5~up=j-d#QfpbSddyvxErvi6%AG
z4DAc-UYh)J+eBq~pycH3)D2N#snB<CU(59WF54|_`)Q>s6FkQL&{g^TByi1j`mBFc
z_lFkG;5Pg3>8H2l4#VA{l^*B!IvxKWzK{i6DzpAwbrXD$ZvIEofN?-s0Gv6_miWy*
zG%0=Ib7OnW*pWcty-L|zA7!q+JX?J8aPBpiyyc-QjeK2vem8}d+p0IztJm<4yTb+L
zK-lF?Oiut%cEd~Kx?}#wM}RgG_rasWmh03OE^VB3`;@FCAvl^G-arbXBG}Zc>}~?f
z&#Xtkby;=~KtF!~<*`aIf`fhp<RLqpnE>R%GMc1arq4F32ACUMkf9!V*J%P9O9HmS
zADuk|{#msD&*;_5BTr_h+7SfEk<AA{7y!8I5Udgt>^LjiS9A{K69vnW+2ej*QlK7~
z_kyJTKyzj+Jdg-}beQ`Q38AO(%rZj1ElR~B_FhJW#8QL`^Sy}P@cM&@0y3{GUPlfW
z&Kk$9j*rrY_&!dLw#B;#Lc$FrqC`X?{^$rQ6A-f$vPa8)-6MX%fmtywQp-QMSmyp;
z^LU%=gtlSd)C!=MC|F02RO?SVWD2`hexo5I-n2M^r8nXZ*nxHmZXBG@=%EBB$9ONr
zP@TF39)PF#SejV2zK@|!eTlRqm!%<>P-Gy@!u3s&1Y(vSr$4Yk6D+rJC1l~@cdL|>
zkd&?Chfjg@*Brqj$m^aTVflX2T&WOAERZqX>)Q0WWOTSCo|R$wE*a@bhKydyB|}=Z
z)R6<SQyP(PBIv)f!*G5g5G<K#hvkC<=pG9AyBE}VN7cO|l~LOiWu5xl?V;g}EE2#Z
zT?df$(*Y_&MNZ``ezCNYq~B)93LYYu3E<0f(J!*erDTBNZrW>MI1B(5!h(bdSBu%D
z^T-eZ{d5*(-e;C+8gJuV?zt**c>b+Oi>x5kEvC}VrAfcFXV({Vs!xxfO248EH$0_&
zA2Yi!`b5k*&C43^Xnk$7FSVYS=obzMSI$;ePVXMN>CTtaLdYTSvWA@^)Swx@qvkt1
zdfGB!^^}|k`Z<5H(=3XTq^-bhlw70T^Nb}*rrmDly{IQ({d<YZPcXs04SWoxp1AMw
z%m8baI%RMJhxs(cWe1<~3tup2U9fP9K7(8xbueHHf6V6p;If-tMqk1DDHJhhxnZp=
zTUMCE0o*!OSgQo2Hv!g8(X01R3eJ}nuRld@6flw=O7cA=Mw^b104U;9mJBmNqS=?z
z!kdlgzoSea#Gb~=0QWpEePuD(i7&F^0D`@6Bgmr4-NOA*G{{Cuqze6=qwqsoF?Vi`
z+E%e)F@?T^dB=moV8haP1Z15mVLd1sIRGf<TJn5GLja|y_a&@k20&<m@mVR+px`Z(
zhG<}C;)PZgV80&94&Bf#t~d|3^(u5!DgQWA#;uT$T@O&KEB7%d9H9aFjFn$CC=alC
z7UX4QW>Y2>{OpkoSbzjM9ew7U@jsDtp35^!@rtBnG=)$RlTfj;RFPp*`6RS*X_Vu0
zqs_Htpr>F36bF(%;L9@j&l)Z1=cCtAR+v!vJe0jWp{nYvs>!ChCA2z{{H(2`x@)<*
z=d8LHQ`4_fvr%0ADzs)Kw`Q!PW@5SK_1T@Fvzi%|+Buurh0xli(Aw$T+STRSwX@m{
z4Ap<|a7E?$cIfk++~=P=p6`#LKUNvBIDmXHY8YJUpwo*n=)*)5kRL#r4CJ`v1Oi>E
zOq2ng89=yu&ux<(>w;73g8hLI8=D_q+;qR`VdDX)#FRso7n}WcALQ!Ofc1kP>PrKG
z%KSE6y&&=GhPzc#!g=*C8yh6xjbFr{4<!Jwe*C=T{45l({jjke6=2$5|G8h*7JOg#
zJ{t(d@w^WtFa_FX;ee4qqEm2<J+z@MOE#9ndYsAjzAt;CjZU@aQx$Cm1DFP?Wnq`R
zGt;~w*OHprGWen8zcs}Hl&%Gom}=NLXr#_05+BiH6-Iq&pl`=&HY`BWeF7He|E|I#
z(HkB48+s)XB<Lps^J^0Xz`|@B6{{=XXq8C}<ckv7!>rKl;b;`LQL+wteML!$6<#TE
zZqKg5F~tUN%|rWo7stziXlz*;S1!I7M|UQ6x_6=ny<6OYz@L40+6`f&)wp5r{1k7g
zzDpd7dmdW9FHTEzHcN24*+Wm*cJIzKr;`6$U?5qt&RZ%I4WQfr*XmsBV?(v2pV@+r
z51s?T!X!w<U3Mh-Wvop50uvb239?_fT-e#$Ar4NHg*OJE*=EsyX2|u1FlH_|haE>@
zB+kC7(=`v>;>f{iM9i7)&cbzL!`N@yrf?gzNY?ZZnfIrv4*(mxMY#GgH7zHneY;uB
zGqJWMv`G!5Tw0Qy;xL*f%;;yexyT0Q?n%Tq0Bi*gzV;_{jKdT|k4wd#r`%}k-Oqi7
zbqHsW(SVU7#b(O{DFQ!!U%GjE<?i<vjg%oDE}4KDfSM^Q{GhYrq{u*q!V*dt%WSp?
z2iyr`*FZhR^20|DwIF`O#7uJ(*g~HAG31YuyCmmLI52FLDT|)bLzU_2tI@;~frNeI
z=&+ICZ~zl&%vuikEgtX^B@nZ3{K!Y+X$`WdYqU55P@Y5&s~b_1fmekYuxyNwRY#Wq
z<IJcr&&&yCKF&4si3=(diLJv8NMQRPNWahUPvS5|_37{gQ>*F&T7wDZ=}EEU@x;j2
z@u&%#0ESQbma#RHjsDn2qf9IWdMz%vPFE6<_D!!OXQbii=lpZoMx!^}8KX(6uOmbp
zqaDBti|P($Xr{}(HmVPxbU4~(g&FA3=iFy9q;wbxO0UlHuI_STiH})dWA`A#*8_S;
z-(|6jh~K4*@l%Wv+?3n<ZlX|DQwUOd+8YFg*PQ{yaD<T{btx1ZHNxo1H@miRBTX{F
zxSS>0pE&_Hx8yKm+<oodTWCztJkTHOFpbPcE(AAZT%MjogfnSh?((#NKe(sf(F^YZ
z(DzdyH|m+xZZT^VG`nAA@#KEu^Z;5kwXpPkp$54qdSQMNJ1>5jcaFSxqZT20dG^W;
z1~T2OBCc!Yg2pcb7(dCFuDf7&1D06u*6hYi_TM>V{kg&;Zf1-LxovyFsc#``c1he3
z-S$ORR-O3=%@V%8DL5mS;F#M_=W6wisk-~EiQ~O{_3T!M^Us?XsRMr2gPA(+`M!91
z_Q~0E@9BkMrZK&D>a3w{Kc=zC&&|X!`Vu_PWJG+Ku&?d7M+o3`_;63EkpB-skOr6b
z4A&bz;l9{)%b17visg3ed7j@9ldQw$6w8auU=sUVdC8a`-$Bw?iOM6<04Bkgrt4te
zew!jyfnYW$)25qKREI3zlEnslf2)Mlruz~0xLZQzE5D16=uE7*w}!-X^G&gtcF8S%
z9KV2`sX%j@z$IA>v3WybZ3}PA^S%2$9QXdV|G8)>PU2RYDBEkQ{8vPPVZ$R#P`+5O
zEA74UkudP}My->OT)0r*=1l#PnUxgxYq^iizAU^_AKZ9Ee0a8c_#N*tiKUy0(QJK;
z?*AAC*w(g3Cp{NQn-O`v1r2-nUMW_xAmSEf=FJVY>(Zif=?tG3dUydk7kPL-+`1!R
z{8++JcBe~&s-C>mY^?wBDg;foi$kqV7Y|nXUNkGYC^zM>|88wtrEK^H<dvCplt5-W
zTeIRv#VE7s<h#;@_p*CA(yOoVmDc@U&ddsODk^vNc*~R@`GY?9e7&|Gin@PkC|xEw
ztI6UrL<X!Ko<RSBp;M1dJ@&5BCZBw8{kMl^=YjwJ$-Y%Hdjt;BWyTw%D_?!@VG@b@
zC1~~{USa8A-_xR>hF5b^O$T^xq9yRfO#q)gAb;D65`WkDm<R4uGR=Dh?`amoS0Xnj
zg<|Rby7!R2=)t`ZGb`?!Ev=D?9umgqJm2i!Gjp!?DIF=Nzdtx?UO_%R8cmlsVpRFb
z{QXU&ig1fcpi-p^J4<7F1xWzEX)NEtY`S>d)*E?vQ$|(irmDoXp5K<;J-(MRGSR`0
z*cKu$FU%|td><Tn_<U?lEtd02$txZ8#ZpKZ+D`s9@zqrkd7WsY4ujUM)zOwLb4;-q
zX8WJ!!vJ6h?yQ4=i4SAX6yzz(m^88dW?6Ku!7c)ij?yVM*KRyfSDMo(;MMe%hse8l
zi_*H%^G;ubp0OszW?u7Q_W=|(X{ipkG^XGipZro_`GXH?&U~fI@#s%i!x<fm_W1hm
z@6J~)Hl8ZZ+nI29mR>nynm%5!JVmhlU1jaB<W(`#`df8dokd4?zhysz1|mQk8Oe-i
zkD`vUs3>YaEIutgO)-L+4x`PE%cqqVi-+Jv67bTHNZzDKh-@k?rY0j@46o28Cz{+u
z`=lJ!B!GuY%6E15M9}_UV{DvOR60$zERtFsLyk645#2RK!ES2kta2^=!(RNr;BcCP
zC<_Z4uYyn$%d4;F05FV8ua0uw7YSh&w;QSBBk*bQgL3rzi-CGkMs;zUjI@tau>LiA
zbBw4y-H(9hpLIMqM>YRA7-*PiGC{fe{_TElzFRJ5GcA}Z+q}Us^r+#E@fnGKh#n(F
zchTw)6+;^sWpFYhzT0QQG1GP7s{9;jn9QqdT%9xWq_h5FeSvoMlXAh<c>0`-S94->
zu89dPDxYg5iyS{YyrKkd?uh%Rg$hSps@Pv82fk(MH`J3Z>$z4!s|fRcH&=CC$Un0*
zd%>0LMOP~vwe`uJOHv~Ciz_I0DkF&b9lg#ezoNxe&Des=JApPD&-|?h4fKw%Mq8@)
zG`=c%x#vXbFiLeZd|$u1c|H{!VcoTFFcYaaLLxkxkEZ)-I&$Eq=JmyXAVfaWH2!<5
zk#n7@PTXC7b=}N>%D-R+m+mIbc#!NX0+zt`j~UAVew{vpMIleps4A<9tpv%IovlRN
z5FV<<WTBM`l+DKKJ8S=U>rbG~$pii+ijpOnX};SVj+g1`r>4^cqZy!o(t!;6rgvPQ
z#8VtJrRBM<b0}_c;9wAdkisY!H+9f=;baQ8g{9`GQ1mn!9JBWEHFY<yjD#?k6PJFW
zOUaRX$|KO5&*em|qyL3?&`64T0ZP(Bo<Q<^`}M=~wK$@;Rqzxn)M?T}fId!c1LwtW
zYkcHk7l~H!JTJ?=xV#e_hUwkS^Dj5w&H>Kfb1yV*DE}<j!lP1Jc;jmai?7QU9mCtj
z8vwiKwDe{lYn*4^3fDb-4ZX-W$=^{~FoQyS^DkA3e0xzCk;@)Z#Bkyz`<*t?J_vUY
z^xQvkMD_!{3Wf-_;q^C6eAxZn*0*@3FaZqzD=Fdo>>q>d1byw-JSno~*_c!zldz#-
zY`iEkGUh^k*J~X5DSxq`MDIcA71@*h<2MAli{Garr}Uzdm5NDb{Hn%skxI!wU{mmG
z68aa@jo#-q&l#+{uBfP;Fr74o3(rIhZIDMBbDo#CHwg;Q5gZVAh4~GwOm3I`z$Tjz
zBZk)U3-r#H<1Mf1FUI#$j#VNwud~5oba!pH5|3f6tLe~A#d-(ng^v#_PZ}biykW$k
zT1nzen|X?^+Uy6orG4Cj|C?IngnZuJ0^q%CAn-<0yPE#D3$JCrkUM{xg7&q%@<fkm
zOAls0(;|HdUvh49mmPGk7K|(%lt1G(T4L4+F1KM^IZ^q@c;{i)djXB^A3{ggkq|)x
z%1fF7J3kd6WGCD9L{^%`pBJ`<>CxHC&+1Ug&jVZ|^H*wqATmuf+#)@I2t^hoy|6R7
zkLYl+yj8bd6z3soR0O*|qCw$6c(RF2t3jsatq<Z=CQBS740IqbcIwy-XC@5;mKeRo
zZb_dbE5frUUTLnmM#x;trx7-#;|`3&S}U1weqH#)prFrB+mNnpz(xu8$&t7xow|&5
z!*<IWgMg}C{Lu|oxG=|$an|}gTq1nB8dEZCL8XY0gt#92@M+)Ia-_49!B?JqGO2FB
zHLRdR*QT}!(}SdI);^*z^{>(7pRz7!=61bc@^q4B>8o!ZeWUIbw8>^%`6>}1sl5DY
z8Up}^khHjDBg{rhtY8${Of25A1*GE3H4%p?f$H~4JK&&h+<WDf2R@GzN6Et2@xzH9
z*#4|X@&x)PgZU~vb!?Q9D8<-#9&rP0?us)Z$Aug{1D>gDHw|I&tDfpXa|o*8{@j@v
zx~UG>BycN<O`bwhwal&-^NRQsX^9w2C)fn&pp-H6mo3F%S_H6c$O_zRD*OUf>Z%~h
zDWyUVXWbtX@Un}hq0t!sP}@}2*<NY*R0)jGq6WO`)U_N{pll<?Oga~~#5TSIF@p3!
zc}h5~C=SFSDs$7v*+sT1J8mtE07P18^S_9TfD<-Ak`<->dI_`YqP;xTzetxAo8nsQ
zb-an0;uf```KeF7mx^6AN4QM^VIJ5jykM1RvC4dvy#lA8f|$WQb>@ByTYW(hfUae8
zI*9<Paq2Fp_$uCvULt_qsosIQ1_Oit^9}&v_I?rcg8Y>kBi_#Erv{Lh28wmw_4|&V
zq)e#Clg5z)agQtfHV@h(YuvP}Z34xU7fkzGNfu(Z!Bq)mrj$x(b>&5FpzMF*0j_D+
zYmYGIeLF!fQY?I}axSHOF#va_bJGO8$+dLZSjgFm6z2cHxjf+;L{l*6^)*f1;Vj6^
z{#)R_KgNuaV!%ZH)Mcn5GVP%EeCvWyptx>*+Jak9NKzdY=DoGDGU9gqWm$snBQrMQ
zBZIAGYNhRQAQy4a{@^LEswkhqeh=%86<B~ml`7CpC#sx|5+C15vTrl#X@=1$;(-rs
z)IpqKrOyUzmj>N(A-5`IXgUAIh6D?`v5|9PZVAg><wu^Ia*b>RxasiHdN{^i{<#IZ
z-VzS21BEwsZEzJ4KPWUWU+z@X^yIzQN8^D-kRxbl6?zEyt^+uD#6VH{NTVDgdB;8A
zbewt^9`WK2h$jJKU;0G7crw5XSr$5<%9EyuJN6*!<<7u{wna{!0Q7F|M=fMV{lByr
zLBM49t~88$*Yxh&@s@JL^J_)k9p6=E(rG7(Q>iXYm(bawk_#X&gqz}{SCdBY@08BO
zu0tk%5SOwd1C!z>m35AV`6q!ANq_g=d7QnwZLid_a-;5!^Vy|`w7A|bPvMBz&ek;s
z#gcUoe}^j}m*&)>n``sg7;=w!ffKie4~1`soWtJM%2lW<A?xn6%C5YfdJ@xba!V<8
zaf$11jn+GtzB-|v<sm@)Gaw7{*f;KUTo~65Ei?L2W&8K@SBmV6uj<rQy}v5k5Sv9M
z8RnKLk^P*6NkL)Ci9Pj71^(+SVePS|i5A6RRv02IP6}Ea;|AS)M9`vhfBcf};lUoI
zQysaU02#SF*U8s+ZOIoipqq3!N(@Ut`u%iCdUyON_<jtW>8EJU14`LTBF*Qo6P|_z
z$06U0RxT9Z<CwR{Rz4d9J2955T-*AxM*swdoyU(n`l9mUTNt7DFdT+|397l-l^FGn
zfkyQusJd5mq4mw*uZ_e##UnLMNuh_LpIpu_6iU226G;Uyb8NiaOL>_vB7J_gas~B8
z<jwDts^SYv8|Q#u_pZ|c0T9x1@FPez2?}}0T0{b<KVs06XTgC5dQoBQ;qRWw|Ib^1
zWkjPR)&SxBRuRPVaIT$jtVe|8QiRm62<>ze91RUl55irir2rB5Zx<qg?9w8Qx0S?t
zL8Z(O2qBM@LZS?^H8k|1cpah)(b1;(Xwg?BC5>pS>}VTmhHNR?{#UdEI>y=~nvE~U
zE#&{VBP_-ELSkI>B5&hk1FT|$LSjR*V?*0wfvDK9U$G=~Tm(KY$|^2K)b*iNAaxf4
z>B(by?+?<%>pwex1fdQ?8>Uw(_+bv9d=F3w)sjVs&zJ&2OOQo745d2^><1y1KjQ%W
z3F+j7y}AUGwzy;~Tv`aS32*YuBaj^#Xj%@C#3j87A!!~b*6i54(n}f*iF;iU6Yn96
z?FC630BukBslEXj2N!XF1r}GxXq4I}8Yx4Hq@70pCo`y1Lj0f1z_Uz;-sJJu175g#
z%AP}tZS(Cty2nn=k4^4`WnkfDAyG{k^#9tBH2NmL^dSH3LL2da>OeykFbTg@>Mn!=
zB}mh`Zjh-KgET<`7DYiVjIgukq)8w}*@+-g0Env;z*`5x<pgjmGmFK81RVrn*z+_&
ziahISl7?qYJRT?$OJ#5FK3x)NY-RXM1zsqKU+)>{l%ecmDp!>suA1R#r^%2*NEsev
zxXW<8UF70cW;Z1T8vdk-@}vnsm7d>S5m7(4N&$&!`;Th4?jrA3x~<_OY^{-gVp*ae
zGDS#WF&qeoBNQV|opV5neyKx#GQ=G|rCk?hkhU}tWcedf5)1x@&K>c~9*6_W;{?YQ
z!6F2(3^Kz&iBYCEUIHmAgUZmnmuH_H$C1WNH6r}UqE{f2&ksPm&*U@pZ#(hjrx)eZ
zQ~$(v@^3)N;Ayn87_zTY=_n*+=B-e$HPYuE{#`t2$~x;5UC0)AULY1x_--lgeI*Iu
zX>_Gk)oUIu<_@?nt4Vj5o6QkGj7C5x_;|2O*Z>^AAcTwLvsQ+l=@a7pvW;34+c=6m
zc4Dzu^GGw<+kq;OsfPlUfMHLynJIK~n_!NIFjp0TM;s=STm0Po^8Bcy0`h_XKxnTn
z6h#(7R5Cz_#e2OLFO`6%tyD*XCTG<}QJdfi^#@~YNF^Hy!;B&|e{Si}+xW9ms1D~9
zAP|#KeDfKAaHdn+Thb>2<SH$-hs8svVKXHCr7?9m73fuQV@r&>bw`=#=b)S7P!;j=
zHEgL?NAa9vIWsn%SoMrl6&mKR5Egn_=CeUQd-)Zc^K!dfTe1q$zJsswpu)|x*ngP}
z%A#jMB92dSo+mkDPoBk{F(_FFXXV;@jg?n)1Y8ew)=aps?hYK9McZkF^E5~t_M0UC
z%C)K|21J10k9f9-6^)5UKSYBmL42{ht}-Ng?p|DPNhLo0q5f_b5(k1igYTQvdelp9
zVVK5EIg#Ys@>51ZS@%3XSbETS@H&D;iFT)!V0KbUxWCu0GsbmSIF_iQ$ppMBQyZzt
zYHtZ1HGkf7LbMqGtuiT{<A6VNUkn!krW3%lRL3#VU5=3LeZ3wLUvE`jKSJaTIC0f+
z@-fw{!`9a)v;h9(7TliWY}ZllhcJ!PoU^u)U2Kjao$B=n=laLwdR!uv7;C^zH(W@h
z|D9VWf8QB$9}f4f#phXm|7fXWSZm37``G5i_w8D%avj1r5l^K49v8Tovea)B?h?XK
z0($K}+$0Zj%e!IGzs2*uU#37)Kw`>Dk*_QT*l>{TDO@i&({zc+!y%DiHGSo0d7J#J
z#%TbnuzJG`M)X-~-7qZRN-OMFEERYq*5RQdb&?jDy5FiO+|YK!ccv?gF5@blH_@>r
zQ|;ZZbx49jh)8L&3FyR6g^N#t1(^fG!coJ#{HQEe2OHb%PIu0(DRtmWiEftv=VRE&
zzWM4g*I>v2xq|9r5Yavdo0kH%sX_*dXG$|<POqCPWMDl7nhS7K=~bOHkQ!CU0H_x|
z0v#Oy1^^sW@UF%&&+ZwecuMY9Qja91XMg2-$9U&rUN_0DC_bxaFA>hP3hBHA4*4Xs
z)Cpiu;z#0uzvLlj@Y25$FUt>lPCxg5of2mI!(vc`mPTfM($*GY3e5AU31shiOzA`A
zck&qZQO_*|?E2}W`|mgQ|Ji#f&6Op?l>u0Vfc6D1_;gRo7_0mNe$~p?rSCUY@1DL?
zU5)GcXsBK7m+JMotH!$@Qw^9G2M_NF5?A|$_g{5y^_X+LRL>bUO@d-fhl3><80h=B
zCX|w<fb93qYlO%u(TR6BhXN?VBeFgKPoth#ZS6xBkRtiz@9JT}hTEdcoSb4qd8AiQ
zk-gymkGiw|YU+Xi|2Ara0izp6H;ir>-7rE)l@jR|K@`WR0izoPMyJv#;7Dod1__lA
zl~Tmw%lmsiKYad$&;4!phkLejcF#Tc@p?TUPh*$N8Ce@k7X3rsP6~Z7c}mazVAj)m
z(h4fPG50T|AUedU+359XeM|szXNDspnJzike?qUSTQPOwqq#^J@zlt#?Dao4q7;aa
z!qhu_(G$bz11Ui||42SUZXI6!?JTvJE>IBh?&2xv>24W=Y`3>%Dv)7nMOYMnhllBa
z@^d}?7YDsAAeC>qEd3ny`k~%&kHJ>;%)9xSSSb~A3aVc{;BO97R(WF5t#Hb@(ydym
z6#x1e_zMyfFd3yjWOE8ysAptla^+3V;WO2XxF-Jtbu9c$<5@*DJ*m9*v_2O-&D2Sb
zU!va2o!g;<@b4}hSI@@qb;JVS5pyrjTrH5I)Zft0uAp9uB8em*2HMU<n~1S1?%UD!
zw?#u;N((x4)ttS6%@&*DN!`Jl$8+ygnN=t!EVP*ym9<jv)U5uweH-IHoAaVlt*Sm#
zRcq4eo&~2>Dvae%X8T|!pqyOr^xK-0OK<^)&BsxD1vjFF>mRcY&5k9MRpC*J(TyOg
zsIc4dFX9`)7G&hBrShXE;6{I7!ufgvUGmQ!>B}}sqP8_EQ91YrsYqc+rw{$g_G-L8
z<-2no4_%6PYRt2giVKt-OKOXIaNpNot|MLn6(e}&OctPf-r{6=o8B#(#dkN~XSm6l
zY*Zq)Dn4(Fm{5!+ZN&|4;(Ha^O(^P8*9LTra`BK;m-i*wi$6JJa!#}<zHXJ_<*R4z
z_H2_kqL)59QgkA0UZ+Ce;N30As7FrXd0%b41Tf8+fH&2=HxRHq1BgNsh!w>qkI=e_
zC5<|AJq6}TrLsvkQXAZ%uTha1^4~p2QD3G~|GYBHdbVo885yC^d?Ve~>4$q-n{E+;
zJ<Xxa^*!ISb=_=3<agY+968bgR(zFMUYj!>WxOAb{v=k&zR%4-EzQx8S@`h-LnDCk
zdWJJ_)*~-~X@-d2@74j-^1ugpt@eG2W1Pl2kW->IpZTzZH+j~~^A#d~i#=MxCYEaJ
zsndRGfJsL3es!dl!xn4p#bMZx+)kGp#qk7J)oM9s>!Hh$NWkZ79?2s3LF<%!Bb@6(
z>i%UK*RtBtW)sxs7C*>2kaS=ak}hWV6<$LHlljMTrwx>QqBZzO_gW{3{HgF)de?Um
zGMBnrmI@z_i=rZOd2_dT(|5%hjVx_;!F2`IE=78QVG{UPwO!Txml7xZNBoY>+WxnE
z^)>csT_n|lrAIY$9U`{SXVgTNjJ#UH*QVgyT_G@+a7O8=7dM2%PpLp!;`^L~?MJE=
zhr>f%2$xnt`iVrm|0(?WwJ2MIXlb9+2WQC&V%W%>#P_c%OxdUJ=FCXVwx4&Y$QF0d
zDM$*vmlE(Zv2P8yOY@!1@-x=)9NbHQ@UFtmH4o^eZ2Tk*sLz=)q^#db(G8lzqfB()
zGr+zr-z{41v-~P34K}bPs?dl|F8m=cquKDc;O)lO*mszSYFXkr+2E^(TN7*ygM{Ut
zZ#c1(AzuA^M6m5avCx#AR)jj_{&(NKO59a9QI|^2oBbwss^>&7JlAIA;o8(`LB`21
zht=#EB0S~R?VHyF^>37tGIWQT-ilhvm1U-det`CGvL1QA^=`k1e)vt^pb|QmJjA7n
zYEd99zsQs{Eo}IX^SoA3;c6)xzSaBA1gIM@k+N}_q5gYb-N?2$hxcE;YAu*vlZoRm
zmFpjxg^eJp|DbJjOw0{jjZKVVQl!B}$qJ^?#YeFyibjLwS<_;970GXOwwcj#e6hlE
zxElcizNPi1hpe-!`}GZ}eM9IU7#tcNc^jpvJ%OB>o+71D<c~>iu4IY<$2MZpz_3KF
zoTxdj_Pw2G#jU8#v~RIOimOpDx#|~3vB`{Se{t|_#{l;NAk7D8s-hfNTg+4uxh<_T
zj)F4B7{8Qm+@>2!`nnQ{x$QTLqnA}>1$BT+N;N3Vo#u7j?~R52vJ=25xeHX~Ux0Vm
zU28tz6IreUyn}_jU>L0EB@L^!1zew5lE)yFm>fTyL(Y;-{wpZeq=bipp$(gsIuc7=
zsQGfyykJgK3*waYVP3eSHHMg$ua)4~t%>d>?c+n(yAbJbZrwJ@hFM~1y>z~YS>sFJ
zrrf374U_fKFH7fMHRL8*_|(Kk!o<!uzC946w;s6FdHZ{5A1O4@ish;FW;C9D6v5FG
z?Qg>YW)YW4n8Edv-kO2ks*^Wn@1(3IcOV+B>l~e{yZ^4Q_xFvrZo;|&w<`0nH2{x?
zX++_UNPAFPWE4oe24x?m#UPrcer6huu#(4uWXkC^NM$BbG~#hD&+(y9W%p4GhwQ=B
zwW^Fete-@BWhV0;E!6<VH*pd?t|;k%j0_P_)X_4e$H9qi`S<>`a%)GmVj<hYfPTdc
z?&tv$m;(W19h2(58%=)<zL&!`K!WF{DUBthuo5e|-U89O!!d4)2rV*t_Y>a7q?ui`
z`JS{&`UNDM)vV-!a~}I4(Z)z1+3|@UID<<O^3mde!@v!f8fH-el>v7!@lq@x2PwpQ
z{545qRz^qjkmQFC(L|)=Rlw+J+x^0LiM49KRKtWp*POAK4`LP;9{kxg(JRwcIKVGA
z3_M$C7p{0T%G;)>Pm)_38|nsd*ZBVHLjzoR`~aNH7@sG;Yx+yvMMG`G^E&_4r@he#
zG3kd`;Tg;TtI(Hp6$UD$uliakq@g$Suz$?36W5YtyQ7*IMbQKJ@SU&+Z_?nPY;JLU
zcqF>d1T{#(fJ6f+U(&>Akt<6>(t(#xSPI3-+58_2%GLY#ld$5DgHZOtv)!lqf-f)T
zj1|6I%y%s44L$oQCq398|KbE7$hUIhm5}Iw8f*~LcO0e2)odJS$oEb%ZO1+nl3#VR
zmid8vM913yTyb<pa;@4HqrtBT-CA5!Tyezs!?g8JK+@&-SB-Q@V`Hjs`Vc_MFF)VP
zL%9?JAFpyZO@$m_bC<o>lHUNjKA1lG+h!<)Py9(?@ptUWr-q;}a@SOj1rNeMS(Nzv
z5-@c#J^8dnY`@V6bk0YgiLp=BbCVNL7%+dXe}w`jYEJQ6+V5N8CWCYiJ%{-Y)9s&L
znEm@BUUW_VWTkAmu&PgVj7l}2w9H-(R;4&dn9`Dvap>6on2U!a!%n>7PFG@8i4@;i
zw1sZ}&b@r~ZYWV~FWlj(JgSo+T3DFfW#~;GP=hKR=9M^+;xA+s<?oINl9=53(S50Q
z{#TOs>0tj~-<>A?r`wMuXNuKcUDPqKe*qCk7Xj~ND*{5u$Yfq<P!79vv*d0^yDPCS
zjOdR@=bz%-gYy?|xT@9%34|jQDl}A`1m2Ek_RDnP20utqrMku>(^YTtfIKKj%Kd=>
z4k_H<M&rSJj*JoIF-Q@_TP1-x&YY(J4v33^zFS~Mt4;Y$3CRnvL$fUx50DbeGn!mT
z3o71-5lV>!=xH`HHTFE<gXU3a{&LPf0ai-DloH8QrE^1GkVtw&0=|OJ&1xJTbkN#P
zxa@*xxT?|eqG&;Isx&L^gFfFI2Ata(2)JHPQ0&Va3F$sBJi$F=T^`j9YmZC$G5Ii%
zv<bs}a9-T64+w?!i=$aD@Zi5y$U$CS){2Kfd2F@zTL=oQZ&iA1T&=4xKAS9(RAhC2
zAbBD@7h>T^%8Lb33E5htP4kj)%>cm8$SC^ui^^-oDG!Nztn+zGR#iyKT2!2&)g}7k
zmJW#y*;$%Z1-~P)B(k44pBzP=2`3Rl^pg!3EWUaoS9E8%_D<KY#pe9)_3l3V=EZ4C
z?cLvB`X|*n>>Dn3uYG^z;^4J-GQQmR>w5#5vfh!*Xk~y$tHDRM-kE7)W#oU9w(8xu
znx<3I+^KpuKg8<vlOHX3%9sBw+NSd`f(uN1Jgg_ymb!nmH75CZn-#20jsIxxoO<c|
zcw&8vG^@RBs@^ZoXk(Z4vUAi#0)b|8m=?M0nz<PfR2glKN-K0OPQ420nArUK#JXzv
z<(J2AjkeD6FMAGr%tCJ${P(}=JxRK5c)aXof3<em_j9Tt!rJKm)Yr>50IEhbnep;J
z@*D!#v=PHJxgE{Q+(Mb$7%gbLL;hyJf4Z$PR$+37Dx7(cld1`;XT19t(>Ww$+LU1J
zuu0eQa~P4_guDNFmu3Cuh~l)AlUMy7=kK3yk^e+eqKrTAuw9LkaY(1<Onwkh$!q>m
zVi&~y=Yxp-)wm5~Y<kP&M~U#Oar=MGxo?d>amIB`x|_D-8$4Z;dwn(Ke<z?|&v;*X
z-F6_T@4rRchkrhGy+c#A;`i-s<v~s}Sku<htl#@OD!*n^Lww43O%4t1e>G+FwN@%j
zdGxq-&*Q1us$(1uo+STTs5brXhcq&216BW8Y)pQXZu_hlIQna;bGnVCf|0nEgd5OJ
z)!rCK$yGxc>8S-nzl@(cc2ikrvfv$nJ)w+-LnFbF008$DF~A4_0EmeI&H#oawZPb$
z4{TiA<U-OM+`Kg6@^q4l^is+!vTEG?g1mx4{K6taV&W1~QfvxH4n++fRULkHeF3Dt
zsJ5|$zL}&xO2*hy0cEX-vR1XSM;e)Go0=o7?;>sPYTG;M-+N%__|Vwd1Lfvr;qG(W
z%iq>F&>`T_{h&}cA77_OVGqKdc?AS|gg^Iu7U_$Q_K%7UjKPM)Cx#^^KTS@JNKMCN
zWW{CYCA}z0e^HoHRFYm&R!~z{+R#|m*j(M(-rwIpKR<tPaBzBhdUbVm^F#hG9%R>O
z&`lyL2E;%bn~;c0VrIZ_Q72{oufEv)l(dX&Qr;@wa(qQ~O(C|Bno9^yQ`b>c3QF(n
z&4P2_2(gWQdCVju*`pX*UaIj~3_I`KQpfPf>N040CUYHMSzS96zcJ7s)!lRO_1nqm
z+4)5-QuF84FU?$L*~JsrPT0)${Sq=x6fV_q6iG(UInBWrsWD4LD}h3ee}I*0Ytf?E
zN25{PgBsMRYKIzgByl!Eue99#fO|49$-8+dtjSrRP&90gZwOd94vQwHm9?qWj;EKE
zFO}J*uU&94mb;Bl0}UlqfA<v@2crmJSd4Ni`1R=UTD#x%@`Eg<$XK(`N6$j=r%B?K
zv{HYj&#l{;b{>cSmQcne9$7XfFwX}S1jB9nb7j1?CRbN_pZx~cxPAZ(k3B}%fEAHi
z#3e7qbvyC>k*Sf42>l^{Zp+jtT3L6vIA5eL1+|#_Q$n!H<=3rfa1TDRg~ofe)x2`0
z@0oIWBA-5=9!*j7<oo_OI>Xa}n%_r>E3Y5dlK1+Xob4}@MHItgulVsuEl6~EyPa1)
z{o^bZ@<59<kI4rlpr?i6&Ty|+5D*b1%sF$+eHle+%}u>z34-RM560r7_}r2bIskWe
z<oHEEE&_6;d(ON{jDfrYlp=Gy0_wgzrLnb6ihI}T#`1?BREs0C%`9Rd0z`IHNC7ku
zp-<v)pT9E|3zWno^(pwgE4JWbP(H9fu><X=+y^2&n*Q|i3m@V4B`}(fF+b<g-0rmo
z2l;ue=z~0uA93-eIQpXlo}2Gl0kD;@F-Se}KbpQ1b}NrQ+s^l(63*$&qm?zz?t!g~
zcu<pETfeJ6Sf3@*QY$H)a5VkO^iwyau^=>oqN%9!iAQCh{O9AA84=ow%s*fx5;(x(
zh<p(R!++7k3>g4~iB~MJK-y?ennxf9_+VGG>!D?KRU{#YTSn|j4cuN>mo+YG<#PkE
zb#wTb-kHb%t6k(A;(+Ih6+|>xVC-OUJ(Oo-3>it3MGOWCHGTGNvMVb1+O@IfCLJ?!
zXZK}$g1^15t1Oz0gIHdHN22Q!Z6KQXU#w_9aeQV$3pX|P&sR8NGQ_%ebJu&cZPm9f
z9!SIf7v0t9D?XYgxi1#<ZkF<H@KQbwt~DNox93>ocAp4YFR3j&OLl$#^x~bypm+!O
z(}#0)MD*QLSYS-q-O-Jp2GR?j*oU+slPe=W-}y5nX%#;?Q(!I^-do&zw3ilT71&wg
z_3!6y)^+b0&pir%*SQQF`<E}B`&+B67UTpCf5JSTwU}@}s{$-NgEv1DZ#4l?%FJwI
zL|$5{>yrqFnl|x}x(Wiol28lwYsz(sfm6893uRD3Hd->mf88i9QvHbY>oe{jw~mVk
zaWDM-)h9CN@VEhxSaA`D6YlL{D(o%hM#}It-n>faNzZ{vipL<uN{tX$?eO+nn?)~@
zQ%nn-dS)BIjV*$f^F&hRqDeUqZf<NXGz}nyM1#)4E4@Q?54sBgS?t`UqKVpesKKU!
zxkX;(r~!i=!x7;A;!ct_)~!a#HxxxDh*LBp;2S0iOYnAY9N>+g#WE<;J~w@+Nnd*+
z!XU)MqJh><PW|S<aIp<<X6}KWd1=jv0uR5g@bsbKVKSWw3{g>9#UyFC$2)tJ9IF~E
z&?Xvm7$MmGX8kl^<{G0|1Asq->t}{aDLTqhP?GNm!S4iOix<jXBv^wDq|YQ<#iDQg
zIPuf~Pa|UrU1ustZ(V(WM*BwTxpMCKrN>b&I=r0!vRdZ>IZyVKDlf}CGZR?3>1j7b
zmEzkl%B{$e0DGE9VpDlAnKprIB%=rzaS0;&xyR>|A5CNfh;juJghY3uN!%S@0q)X~
z^6CR4$#>rPP69}Nlt+?$aIF;QwknB+Y5X`?j*t9g0+XtCAH0Zb(4o|q7w-J9Y$}M(
z=!RF2dQ%wPC7-|1DZs=?bSBQ?g(H5+SR+mV1rnX_B53!60k_jsc5K0Pl>}Lj%t&Kp
zg4tdpngn+3sR0%72bhm+yPu{Ds_`bgV>T`Y{!liU)5VLkIiu|j7(94ObNOR6OzIrI
zA1Os-Pd{4ng9!*}EWuMjHTPslh5Z3Q5jYV`&oBUcTg-)Hefn{8nkec~q!UTwQu|s(
zKxQLTFfn1i^jAj1%TrPAAJQ1GB7g`h7wv9cr#f#;Ad#8jy7!tqs-bzTp4gxcj;b>a
zA;*vqbVLav<`|YvcmpC=!_V;Zyk`54wk8H`M>2bxyp`0fBaN@NG2srSca~|5)Hnie
zhsR%d8us+xef7v4R`oT{E5@|`%Zz`W`sI-Y=$V{^$CQ_qX6xje7<5CRS@S)hWd|YE
z<oMc|jg2YL?&kpW4`^HE2e#LUQi)Tj?wmH1@%crJoCwJ<&=GFI=qf}qMQ3KfAa#q?
zfk5~;cB<<j24<!}j!fkOWfj+O>^XXtbxut@?HE^$@6_g-8IfSbNly$dj}k?~S!SL0
zypH3QgX_i_x|>~wpKZ`a;9p4`wYC&^!wBHP`8B_A3<6WgA`K9pPWtHF()&WdgJpO2
zrJ~9~xdsLhRI|MHN@?Fr+Z^y1qg(rjy&36JJNv@X#E1AM2(0fa>34Whb?N|Cp&N(}
zYrp9#9((z<!sg*9=DdJfb|^Z{-GU~Uu<P8*B+8^Gc}5c4N&Czzi>Dg_8z_I8czvF&
zINv?!HQx5A=kl)R#r_Iu_C&mt3B;1=HQg4ce6x5zYpnMJB`l{^!~4f${v8?X)4HeT
zX~*gFPWDgV`>wP<<2lm2qc{k-NhOLpP0xS_X1FA5vxWRU^bvK$5%dI#e=m2LTHy~Q
z{V6&0c5lT>90A1K`^nr+K)0>%Btm9k6i?GnzYU}Jc3PGw7BoI+RjYm!Q9}=FB!Ygh
z42(%7C6ie-F_|PS*=b3ZSF-*Ztl{4b5_|CL(ruH%MWY8s=jTYszpTVQ+$1QyjDBrW
zo$wVn!zJ&fF=P%4(vW#!JINz{g%QBqr**uK4{ZgyBJox=n|eNivb{1=MAxxR1man4
zIS-om;=^&L%@4R_%fBRF8i79_MgRQOZ|kYqsJVGR{E($IMg;vPvGU8<&5I{V19qXI
zh=w2>P2rq;rSY`)JXfd(UaJPy>)L{~F-3n8-}yR4-M23G_nCk*icOhn2q=T@K5()*
zdco5J>(BZ5#$EusE6U{|HuZ0rx;Qj}`p=&Ove5qT8v8oY1@|aZu7%rdX8l&V+$O^!
zbC=4}KBnX2qqo%^EX>JLL30lvW^D|Dr_V94o4GCkW)sYJ8{*phoKi~ow@f53)G`YG
zpl~~qlZ+hR8TlC`{V+uNoJo~u*p*dUR2ZxpxJX$Q^!$hQGyY)Bq{r7GaxUQH4$li6
z$O+lw)E&c-(>u$&VVNN&ve@UDC+=7Lz?!)z%N*$qYX}ESpjSsfYuUoD>1Ny>qNwP7
z)W~p@8l4Lux+4#kWM&Usl<t+b_V^jLG=i{jm)y{d7FAH#h>O#8hwwMbqT38BtWCzx
z1>R^2+t_GB2g5Nlh9HY*;g;AKEM!<P>g_Uk_-!2i0k2m-=uObgnDbGWrhZDCt2l4G
zlub<DPi&Z?U$iEc;bY9FoQPJN#IBYIc7dodUGO(DgeDjw`5iEzh<lI3_V=?(I7UV_
z-jYU$3KK;B(LM3eN=PE$ropf=OB1wy<XEWezY}u|AlP;38Y~V#=cAHken1YGF|h=*
zf@;euI^3WTE`i1(4naiAopP>-sB*z!Y!V(Xv6XeG%geY$JH{ao5*=wCV`cyx+dATK
znjat{Hq9qV?zrsjXxcadU*}ZddDImAe$EWQZV|}PXexzZmpbuF=t!@>@N*POUD%JJ
zSIWrs2NHi55k{n3fJ0udIAo$Txa1Oond87pU@Ax&mpS`uY$mk_d(m6L^`9=Yf+{Lw
z8Sep^9G2;V!a(7!@N0K*=G;uwm7H}~N**fS7~<=smrb*JO9BayfvdBfFlu{5$qJ;q
zjb%_1QZDYq6Q5@KUEO+JoiYTr5K~HQ@65$rUGsHfsr3{?dq-h!gaBgA;Ln+P`SB3Z
zZTlE>1`mIZ$VYWvRF-jBZZsf&Q<~`3DFAko4|9}cII+ge<T(zT;o!-KD`1H+NUs5=
z_@p3e24&1Zd1pT;5pE}jV$N9wkCf)k#OG8o#yWeXHM_}-VV^~IfHgW(l|E9_m%*f?
z>1Mj}vhZp4CG^cfB7U@?V!05{a~f#`yXdxF{VC)3Lz(-bw$dJHyQ{!f1F&QTc&ZEh
z&A`4y8ZW2uC_1w+8U<PxW?B!zcNru#GG$l1eMFMaNa_MU&7&U-5OjQt+`bYRwSB0h
zQ{urALhA`J&Q`PF13ehUf3%Dj@x0Cx%+Gl~R=T5~q|jXwom%V}o1bJ`uA9%2Vk<5U
zHU(VyW*!!%qF(G^C@x*O0V_bM8O2#<@ASt-*7+5(bokqAQjGbLX6=eR$e2qyiDwy=
z-&#BfN^(B6mHx^vP;M!6Xg7Wt1zR5YM|j1OvvSTs#GlpBrT7pE5eD0VNRA)nRAh`~
z2yLu9yDuaDVW+^@j)2akua^b8@fuiy@JLOWoeO@S8y{Nngtdx1BSzV~+`6U#Nd&zN
z3V&j?oyq?x6d>Hf&@x_<prKzt?lZ_=ld)Ta)~d(-60mcwZ?4q;mR+|&Tl-sv-9`D)
zAWcoY-pjV`(n_1koNeEgwd>HaCvagHln$=S7Le1EYdP7iK7Evs0C+V@9<ohbEu2vs
z)mW?7-SDTD#UP(vngC=%QaJGe*^sx67Yb9lU4Y?$27aRKS|#aJ5Cf`-A)M9T93<Xa
z8S+G;HwH-U52R<w(yML?H?R7wRX~PlVhnF;B>^(jMsiFfN)teI+W<xw5zUbf1ual6
zyhVwv1O$JiYVWC@*rKeG?C6m$&PG*$mS9^4e&(YQn`xv@q(eC+zkSfg3}{+zH4W!(
zqeV7vK5PWnk^8t-6W4${V}MjBpyW0(3*UHZUCWOG`cW|4)Zj@GKsT#He2ovon0)4B
zz&FhR0V)bf{MU`d_7M36An7(BJitc^M#KyUZfn^tS#;$T+$fcRZWN%AtoB#R4$?Cn
z&)IHr#4h(n+U`*_;*6xi`$2;76%YEmDSp+_2X*?3cDzQwLlf0FJcWTOjZl}4{<@9`
zAtJ<$ZVF)U*xkmy-FVk1_+U*_3II!C>&j4JcbGFEn*p|H)Dj9hIPBWy!`t4oc7t?#
znqK#jiFVhbdp;Qz=*U8_KirOvXpikV61{r7ce~30ZB8m}By4X+blwak(p|52mh%&K
z2D);8gYwrKZt7xBPa2jpl7s;*Z*`t0u|5yb0|?WzBThU^kXVN7mYH);%G<06p%xrr
zpx*Ynr1g+`(aNc1AN+?d_!Pw89U6RJmj_v|s;AHjl^s%tM(G`^qpeID9z*09RjV`x
zW(N&K9+lnk9(XJ@OqkDnNj88%b}x3d$D#mUnIJuHa4_3r=0<~&0M-s}5EmQ-`S>y)
zpXL`R;to~yG={Pt_h%vjUPB-n7!my*plS%D{5CYVc{FKKz*!97s+wv)2MYFni#n}Y
zR4@lx4cI_O`)B(bqzrip;*WO5x>Vw#X5N-TIsBli;*E(oxp55pM8DKTAWt`XL4Ol8
zF6aO*rDvD%AK$SUjWd>_M(BFJVCZCjI}4l?+DOjm>2H4u87sm31HSEk3VAMl4Mv&k
zcZ-g#iA_fSnXqP`<hC`bN}ED-PBj}(?6XVEu}h}@0VU)5fAzc@$M>JoQc@w?M_|Ls
z=YVhE=nt+lxW*B($1_QUnHL{tUeL_o{AcLJMfP}R($4|^h6Fy+f#O0bS*Cc+>SpqZ
z?vUYUvk4$Bj=8T)Q5%P04RMMUr1SZRIjO-}zQTEqmk>(A4AYd_Nu=Vp+&PAq^HSoJ
z#8Z&Hx%s@)CmNd+CcX2T%?ct@?`#Sei94K9YZmYQU39z)S+PKNvMnVbmSRv#ZoNz1
zn@hfbmkM^?`Kv7l-%TVqfjH1W&TSCk_VVMx<?zkrM`|n4cUNMctpq;1Ub#txPxAnI
z96|3^fV4hK$&{<S@Ks#lYJTtP3!lXJ%~d?dTB+Jv`Q5e3XKM$StJS@0^_y$2{;oB0
ztT&s0Yt`1<pRIQmu6OsY_lWzqZLSkIHU`u-hVE{R^g`Y|+ZgZNxUpDG|J_I|-1r2e
zK87{Th*K^;L%ej{EJRRM5jNxe7louK+R!Sin_`2hFG%ROocf_hQ<MviiKdB^yPJ?L
z6y$t!bA1YY^@Zw?BbjZMYFTaj48Hl>QgjKy7}ReIX@XIn!f2dmw4`WQq^kEpJB|#r
zuq0VZDsEvX`qUFz0}>83b2?p(0%QrTrqonI>aI}ZZW}SmtMqysyal`6U)HzHe5W6h
zo_1qOX1MRPBcr)DVROr~pQVupf4#JKn#zPr{V;M8d+_!{2lC?_T&&e@&n$fJ!tLWX
zyjXVAHu0@bABPqVf0@aDVXLH}X2QVrnAuv)tENiWdT1p7Gzkp{u#Y)m=&@|U5kqrQ
zJ=>1#E5Ish0>>thahscS+>&!YU_UmM>stUM-IVJK@nIh7kiU`ZkVXi=1NT_@l<fw&
z?M_)S&Fd8*M+@4@<vudzO-H#vbap9F|KzUa`Az`khSQW55fPmd;Fen*HLrNB1o;NP
z@_O_MJ6(Rxf*t2>i`<ZvxqF`+O!y0$#Owz6?@4<FHDB{TDveEQ7V^<l&G5My01L=J
z6U0O)hL_gYT~6`p2<=1&6#|44;lg`Q1QcSvWu}U*NPPIREUfs7@-wIS^}nNImYb`4
zy)4abGo@|@)oOQ>_xhGY?{nJ}L72>rh}6aGA|T_MA^`O-e8mvfV}+b3W#bj`r2!er
z*}g2K$`|P@aEsf?ew4;MDs)-$fd4*7i=BiHFIVhLp;af18=@T?GpWA#l=01Y@IwC`
zm~(Jn+D|196;lypQhu(i{A9kSMR5m|jAcbyL_t*OexO^F6J6w&N)<Cv-`7`UgDOvm
zQ9ov9m4%-pe4oP{&i$H*<nMEFxU0)~`^kE=T)RK@`|R*u-u|5fT2nEV=scK6DO|k*
zbA7)q=X-XlQoW3_8`sa=>nkbVI0>M#=zH-{Gv#!@_{x+y&y-(9Z+^y0sssQp`Jeyp
zJ82mEpf_{jJ6fjNCRV$mt!8M&xOJhOG^19q6d-L=NttzPBDZX8HDr%YT@s;Aa-W?2
za};ZJ!7(%XbFU(V{@;7ae?;2<0z7&9CL~Rw|3C&T22(VCwrGSc7;|^Qhwn4?s)K#3
z27Z!&K_FTV0a;EC4k`?Wm{&GcED@KPMJ3B4Ei1&3FODM<l9iE_X3k`gN|lD!GJtrS
znwxP9!Wa&CCW2c?iWtKuflE%6O~<j1T#txlO=nVzk4R8w(n!=XNbup7SJ!d;BMq6H
zvSi%l(jPE4m9nzO@1{v*yO&lf);2Jtd}XrLQkYpBE!OE=C<}YKO~S`aD|AI91Y>~e
z%NPRa=zZ+uG*U!n!9c^zZcCg%dTlOhr_*peo5Rc2fSoT4qY0GNv7Cux7A6aU%|yl$
z!SdZkTUe+oC-a1_U;fcI(45bg6g^bUJND?0upqKv*f!zn4C%mbeI9Fnx!&QwH(qGe
z@oMvR==ss+#A8VqH=2lok!KqnO`glA&-@t<imk&)bRqD^F_CX+NE%@WXc8O<gTivE
z*}WoRr6JBj&QgzH>G@ww!LMx%2B7pg9yac;yT5;4!D(+iQT_4daADfHG2}<5#=z>d
zdnWS^56QUUia&X(>E<uhgLln(#rOU`;lHUO_UiDu{ri(=q57V5_XJVdC1^M56}ghE
z#~e=f2eav?8&8#!#Hc?&qG)yoL?PxXpid!X<&Pvm3^^jr(#>_F9^^s>Kw2PK0EjYA
z4LJxVWj+Cuvi&7<H0yB)OhMpK?%c7gpMq_i6T2R0LTH!)8sy|Z=(NbGU^DU1Kg^A;
z8D?i0#V&s#sO`u#K4El%ShqeA&cCqJ(a=&^m?-ly;L~b^jtLJK`s2IR094`_JP3X0
z`Kj{hc@pf#$|E*5dY!7ndH6s-6Bo=CFHpK7@YJuJ-!VIuTL9xc+!kCDo?0a2q=^Mu
zQU`v9wT(s6bt0mI(wyQgE0M`D#Sv`}!aky>aW*F9d9&RfsTrTFYXBC~H39|C<o<)U
z|5H8SbN4x=yban#fL`Ny4z!}Q(?m^RAGrDT5db=Ivv>~|eyTZOjl;j?;$yPX8R+|y
zj-;aaMh<HLoJ%{e^9-?UNWS^}a$Q2Cn|x*?sI|f>0nGe|h@D@|)iwpn?DYrN%O3tT
zU}P@IA%LH_aosvRE0@Bs``{G`@EPr%gH1Q7-o|_f@tkAD?JMcCmDntL{*nY>xFJ#3
zhdxchb;4~a%!2OsTs<a95EjXmTq}_T;m>jBVCrTE(_*0db>r{We3%|oz>(I@(=)R4
z&mO6(cIcp?yjCCu-arbTAXC}(!O^L}cE053JEuWEr-kk|2NKgwM#<~TVzt*7BH6rK
zrw{TsEjFh!)tHWkP~uO_4s@ee$Uw$l9L(A5E95@AUiv5=_6`1lertOzF<O0fRdn8U
zNOkM|#<H&D--`unzrWv?AJ+Le;;K72H@D}I8fOg-XNHgq@)OWS2*-&g1zXLvuP6oP
z1mi8bKcq>)HF?8U7~CTPWGkS|9>)l&>i2&=FEJ$_plD)t{OShTn}>J+>3QzT<1@W$
z05z&YXzh?rN>yL+ZW@l3$D0_kUsgy*zN?)yk$5tY*7sd%7jx%#w5KPym!&Tz^b_7t
zjs55A_K!l(glzEhBM)z##gB4I9kZfX`^kI!rvTDe$`wwlcs|X+hkkkeYBr7_L*pba
zSJ|=|5ui3J_|yXf>!<g!9_|>bq4n_QP@l1eu*H%_NiLKWD(gX*#8Oi-Ps)^V`gBr(
z(?OS!r82NFuzGt;C_9kX1hFaw(@qnR(zh3l-9fWVk|_<>St{^+>NPk+Sij#Z=PRBa
z&+oC2d9c9yBV=si-mkM9!i%CG?RvR;k!g=}u=;cbLP=F(RXQ`cPxjCg%-A(*0Er!g
zLgq9f=`4f?F$Tcm6^w}ijhHxhXe7}RMAN1%CV#0suB@m;BkMb{Yf%4w*clVkvyhD9
z`=!7y_p&S8#>?*><<ZelcH`nG2V7<|E9IJ9lW&<MVU=7ygy0{S{+!~?Gxc_M(%ykf
zw-F^f85wAoj4{57q4f5W1yk<sYjp(Ui6ur;cZpGYx<jp180?`)l$&`b&q$<U6a`d%
z1dR6$)-+qy7JmgI!YP}QW+8~J3TyI}ruQn9ZV#(5f1FP^EH6KGsg`2z9>Xp!i07($
z0oB%M>HVWf#uWi1!J&G^uSlML4y&`{-kIqDEwKd3dAw_tv8g$`xNb0`taKGLS{=8O
z&mG*j_byezJPaM2XHqjwq-(Thpv^$*D}|=m9mCQPkfhqi8VCRKWEX6p&FB8&-Yneq
z8t%KoHqZ7w<$kGHjo?VX4&67iBbam|th*kCeZ5t@!_qyDFe>H$;?7pZ4zzM4^_h4T
z;$kyDPa9YrqN4ZNDsT4Gs<ce@%G**~1WOu>WEFQ`k9YK^`H|mI!4S@6oF@YK$(qq3
z>j8*SMgfP1(DG8~d&azCv<GcX)wLUb&vycW>vu2%NxN~OMn>^pBXT<532FGVXn-uq
z9f#I$CnXk_Y%?QP`dhiZPR}0R|HDH$LjAM6W5aX0)3Lel^7;`h;r(Y2Xc7&OBoIh{
z&MxCMe~jMQ5lbEW+`^k9G<NkdCEF6e$xHzly7l1wgXPIj@;AeE-?94k%3o^D(Pnw)
zK86s$6?FLL)jMC?|DJj~Axf*>d~E%={c^X5^!dy($T1=~(gXaW8dPYA#pfL7MK92G
zi)+X@Xp4iH`eGJ9irfwPx98R7hm6H?UjiIVGV=djEqRw$KVb_18?sNa)V++SrQ>;j
zrgJRirO^+jHGg4Gl&{O6g@eLqy<?y%C4MZxbs=t|wR-fugWb0s=0XdD*)Gd9Jv+@R
zsUG=O`z(7!tDIM=)HW0O0=w1GfZJN%*4pjYb&o@?+28#}p+6mSwpLE0HTk%jaJ~>f
z>e7+aMq3s7?2ps9gev~p+?P;cUxm$^4iwV(4au=i3z>C|TlX0$`Ay_@>PU8+cpqEW
zchiJHW@Q`+Q&fLI3+FTix9J9g2L8TK@(oU$_UN&E!jt1HMh7(UNR^k-O#@hbvt9J~
z4Fx%<eID6((t9Sz-+ok4snAf!FQ0ZXJ2u!I`#0~E)Ug+<JAL$qbm%wtoARFAhn}rn
zwy!_$&I$4me@n{~oZQ(3X?()Ta|s24oms;mCR+nR_Z#5E>P$npcPv>Chdw^P{Lz-^
ze3B83yZtro$IrW^U1Tfzd!J1UDvGi45!NnWeqXz6wv)CW`g7m=YG3s@u*y-0PLWip
z_UWm^HD|}m$GRIa*N=zQ>3{V+)IM0e<C`6R{d=2Q{l0?)v+o3&hzZ$m#{-X~T#2$7
z4k>k;eh$za1AO;ULPIT3k^e65Yhuko(a1+X_-I%#|FMuiZLV1`G?7rqqqyhz#^?Vo
zpJ$@zVcQ;N9U9(zL}Caal_O9J;f;!+quGvx3t{+dJV^y91+W-yMGVP`otb6i-?wOQ
zCqRNZJqMoIXApGp@cD2WNOs17hc=qo|M}m>D6_q&oP~&QdJGH|VP#qluQ2}~hX9Cr
zJ3^i=Yo}R*7*b=jf71M7A`-ii>>#f}Ixb8x4<CY0ozt>o?Deg^FcC*@8B=EdBO*Fd
zX2dWeDKwDQQGJpY8)bu)B#5~JW8g?JJB+WTrQpNd|6EgQQi!{P*l2g`9Z)no>bb#<
z;OZx%2q_Ue92gTAe9n}hX`?AN<9LfnIeaDVxjx%_VwxN5u>uI2lZtJh33(}$U^vQn
zydROWBK$ZvLP|k38658f#ywbJtVK~;M#)Sr2ft;GnQp{|g+{+pOfXVJs|f*pT9U@9
zpS{tK9XPPxe~Y_}j2^~f3p=rbf)PJ+Q+`#ae0ZzYc49A_8fmtGiocAp)&Lxyz$)pO
zQcmfEcrj&-se&H>d~Mf|u|+x<iwCPv<eR<Jm{!cA$7v3F^4j_~!sRU8y8!+!h+v*4
z>9W*XNxIi!I$sctIlrr~6N4EyH`st&7C_`y7Lb&hsvgFnEKCR1y-PL>wjA|3{_Zu6
z0vM-(#PgKXL3SU|Kq??a9L`NT1L8RW@|>^|6qx)Jy#j=?Mvz(4GmunRs<#Hfxc@&W
z;<W>q8UlUIFuF?131=}N76zN-`Hq6Joei?5a=l)knnzrLo~~w)uVzzO)1|m)jNYhP
zAeofz88QeE8+XnmD#z;-aD~hoDa#s}$#Togqo~P@j3);Or>f0LH3&=DAHoehG=j9F
z`4<#T^sWoM7PFh;^KRATjkIQ<SzhP{71XYx2bD61Jvc*IAkVu}mcj~G#sdF>nQP|7
zsL)YcN=(EjfV-pI+j>P1^DK7rBH5Cn`vXO9E(#(2MQ35Qdyt|4siNNjT&WD8dnDqQ
zhr$6)fP)$(qY%K)Lq@Tg;%g;p8pja3e)RX%N5QjzBc+myR1adiBCv8Xbz^Z&20kD%
zBe<ma)WDnPh*7}MTgVf?dR2;GEz4;u9Of&Ne^RFCSxADm==m6`^n^*p^LGBvGHttZ
z-6!Sx`Q_O<Wrl0zHx{b}9x8zuAoDg*0?C8&OprxX+<sEQo>$?>TIsA@>6(yYY**=?
ze_iP;@*n(YUId=RS9%{+PB2z^KB)@LuX@s5^(3J3>8~m@Yc)o>I@+!}_DS{o{VHtt
zjm4@u`B!x+YfXB7WrFg57OUL+n*8pX7i%@|ENY5aYfF`D%k63_pVT^$*H(Ae*00sR
z`c>P=S~s9={BMPkA+_{zB=Ext@V-dhLRsCd(+UY5ie68qK~{?41oF-`H7<O_$VWGV
z2%u-p4UP!DBNN>5s}9bp#_sR8lK1i%@YNg-kQZ6{rLi6oP|u49-DOo<Jo0*-U*D(P
zuvk{h;;K3??Zc00xW5Y=AF(B!0SavchrR>&9F<8wgI)lbZt$d$z|F~`>62@~KV?wa
z89=(ZkvhMLhJuppGZgfj>pp99xj8%Odj5TWUV-0DnFJuqYw2HWH;JfM{3wvN&BLco
zfE!#Jc*?v*9-spTiQY6BGqjAzfKnHMmqKa}X*g&0TISEig+#?EXv$C%OxB{}ll#Hy
zDon~=Ew?h-X6IW~<)G5*Z5R3NJ>}J<8s22i;>1ldCVO|OG&zWKX~h9Vd@v#jxF(e&
z-5*y5@ogZ73`!}tBYeH%?mnzHfmz(K!~PN=jOfbv3~O*~{5>ZX(kA)vtRt0RCVT>t
zQ|Z3X+FfSfVztw?q-R<h-d#h{DHYURmnKa#3q6qT@TPhEuJm=$*>yYAOBD`p=%MfE
zP=V>_A_7JkeJI3T6FFwI(z;m0c?H#OQ<Tl9P*13o_SLm9UP70>G+=9V0hhi0X}!T3
z?L#W^p0E4flvktYjc#k-e?LUE3l~&u<6gKxh;K{QeHPq7SoS!XT>XaLn@<*(dUGx6
z+J_G2>3W0hHxoxa6{qQk>=6DM(b20?Gm7<3GQH8B;8L9M<a)t`<?bPT=s)(S8KaQ*
zIqjPa51g`B+i_M~^eUGywza2VQh+k`6qvbxW^_#)I93_*GOF9KRZ(FDiSL>d6D-6m
zRk$<&?-ImPR~SVsD480a|IVmnS-K*KgZtVTu}-f@JmfY-uYvWB1hUEDcPJSs^idXo
zDBgfBaD%Q=H#le#BR&g|aqI-f4BKrm22@22I{}u4^`lj()sCSi8$9%ODwZ4f&XE9E
zYAFFxl!O?LJvAVP1L+#MEpWxwVgTD7iWPqju?=w6<fuW<5Y(RU`~)yM+tVxtHd!AX
z`kt4zF;)y6>#X%zY8w*^8nxpFy4J%iKLEaDkDep(Q_u-BZ(Zzz$tj27fWslN`SIBL
z(iPRIw;SLtRjv%gaOcLOwWp&?JvO+Fso|%O_Km3zCuv%|`O6%}wV%FQ8Z4J;f?f>J
z7sWvG36LTf1HA@Ai~mepDr1*F;jx#xnq{`c;WbnU7WZnAk?Prt=Oho9QxSpY)UcnL
zY|QEY8zxJhx_R<M{A%f9L36@tA&-V*s_`>n8v$!2w9e+Qjdf=%xu4kv&a|AoQAoRY
zfTub}f@9I(1V`Nz8076!NM0kvS6JWPocz-cRRw^$VSBz6&DeQj-Lp->);};zSh&kg
zcQ{YW0fdNYFkUrMnb<S>`tbh~TY%(=wBgCEzmU&cWm`_sozRZ1-Jw;HYTF^e>>)I?
zG>l$f?!Ks@*>pjPmAI@s-4W1OjK4eME43{Cnc=3yMaXJ3!h}wphW@75L@$lrXlE7E
z_-@jF^(Jyy!?a)rTwCs6OWR&k*rfF7y{3k2F8=(p-r_kFbILn7z}!5il3~u$mB!K$
zD8|m#Cmz6Fdusd&$mXaD?nq-x^blP5%a#der<P@!D`a=O^qA+T{jkG9s1)5W=VWK*
zJTBa#t$C~&#^krSfgX4oY$4VO8n`>u1Pt8RcY}j>`8j6b)U@20cwVM-?(J3X@s~k;
z7Cfct22N)@QlRY_H{O0&9CVsjpI7V!58q8cu704vm?pm$Ex(5aKd>kyO@I4tpn&5X
z5A!{N0|A~AXVcYIisH__SvIQBQo%hwp6AWQI^06h&O#WpkU*ahvBGM~nJ9zrhfI(V
zJI^*AxxwozY<KG;eMHYWN@R5R+Ns8ZzI12o)vjr=#bo~6$2-1aHonGES09y4KYrrd
zy^VYSJ8gHOxs||iu&`TIyNBN)k^?>nB51An?;tK|5JZ-U{X)^7rIHkTl02Zpvoi)V
zx~;cChq=i%+cz2?#yQ77Qrudv`J?Enlck9(-x`h`3GzxWZ-UDrLTsg#DxwtSqhz`{
zRe3jT4`UQ^!C6c;uEvAh{<0GB_f(q&xWg?!;i!D>p3B9>9Um2h&KDIu{;cX-Ccpke
zbz0$AtxQ20EjO-3_dLiCZz+d^5wVr=<n0}Qy``T@XZdDpI7j9i_EASVCHAKX_tifw
z8p{L9IJz(Yl)nfIw^*unlwBWn%Y41#Ay4$}{a^+^<hiPs-f1G$*MRwF7|ye$-Kw_W
z)9Xp?u#j6FnN0Nb>SR`q5GzN~P))K%^}pxpZ7>axD-v9eOqxNyA<|G**Z4LcuJ|FC
z=Wx!gRkM~>6E}H*t(vntz2I`yB)uGdI_oL={DMS4Ka&rft-T*OtLqnSJ`$mQmpI)k
z?o94dyXXTnP#bFcAe%2z$1WP?pbfdVpw|D7!(}LEI7%1&T$lD;=76GhfUMqgnfW#b
zox%$PL5wUM>6b#yboC=mWkK&xqrUHsek1H-g7sB<`4#aSPJXVZ-8{d1X$%o&h7xz^
zt7YS3u61}i&Yb<udZn+8=;}o8H{8NB=%OXg2Gk>T9m={Bjji*}Kr=S)S}l@a*e$wh
ze=IlAWu7JNWG920(o#sia5P;nmp>XZJx#qhWc~XNMNRr}%i<dPuY9o6>u>Pvzs7qI
zk=?hQ$#j!u4=Z|a8+n|HkbrNh2S`D&u{5#_aj`dSHI7)81IH{Ig9FL(<-ui%^Gc{>
zX+dR)Rk1htR#u!DAIp#t%TXQ|-Bt1$!QEEQClOmvSR6;2@Om7_!7qW3l7+`g&*O$b
zi+L+?@rgG;H#R*J)bg>tVxoutb=}K`rdY~WkmOQr{j0{$IDY9o;~B(4X;%LoA!rtM
zwqdo!eMuMEbNxw_OErR+n$>tEC9UJ`Xx}5~cd7Z;&(408Y!6`udCA2ilsaRn&6`o&
zS_}*NQF~1Ve36{WERvSf#wv1w3n5AKqgALf!$QNh+QmAX7SGM`wz}np+mT=vqxSmL
z;-io(S=m~vS}O?))m)>;l>$XC@vQzkp!pISgli^Us<U=A3j_6P0@`RzpMaresElRW
zp6`8@W$WBCVG;EJtJ1D-{^(+7sKVeOIY$BsF4G}}Gr_1sqKp|LI(cIB`UlZ#bseff
zm8Jp|aEE911a)X3#QKFf3?qKDWM4w5Oz*w3Ob2D2XrSR*{XCP%*dME-F3a(9fmGZ%
zxEijZd5ueudcir6{k$NeV1WA)8#u|b%MnVV`3Ok);!FBwNCX5uKmmfEBZa8DX?LWr
zT{Q=wu@`p=?((Cnp-<0dAKurYmEwVTf?P-MVgs*8H}t)vFvfNkA4jn`HW4BW1@R=3
zK*8+2ohh!M{Ao5I_Lw;V+kOb<M+<sZm1L>T9jyDsUM$nwxMq8N%5$%*`IPV7zM5v^
zmiK5>40ub}!M>6&!w`ZHvwUBS)@;*+YDgSdrZK<B9s>(-f(D;YFtd(9<H=6|#JQT=
z1|&?k<lIx^I@@s%@%^2Nxt1kQz+QK1Ji&EwHWvGLnuQnkm5bO37^k?CRr8k&AlB;Z
z!aP0&)6gd69LW8=Or(=~=skrx{-1b+CK*TY6I|o-^qdtjX)rIK<)5nPMAqk<Mb>C(
zt5y&NjvYPq`ZO?#Uy+Ej0N=LaNpahO*L-4Bj1~*{R&DyjQZs;fm=E1BzOpOHd(>>7
z28Qyw)N+H=pVr;JRiq-Cd>~*yFCCoD2qNdfYiVT&#(7g^!WxL`19%Hm5mQ`on%_`A
zx`i)hw3&P^X7yVj4_~<c4VG?-)2@3c-Q3-o#eY}1HXpz-gyg7qc<($)^gWn(aOtk4
zAex`9A?myIg=*pP!*R3;8hi#H)DR%vP^8*Y|I)iQ0=nQB-wd0FEAl$Bq3y5p2zNLP
z1j-tB8$Rr9Tb(K2VzpOnW*41+qRL>?*oA7oAY{ecJH$XrpNF^aRm)<%67?(Wg)fyQ
z6xpBXaAC!f;1%Lx#?#c0qHp^oeVo7bTTt6npNj{<Q4lHAo9;x}+^^KAQJbi+9rO9d
zHUQbsTzC*euaDzpE$Z6&V4!B|Dr?93<KB<)FzR6P%v=Da%?YKzEFYcp#C?Ggy~2V`
zFQK!j;(5(}f)?{P*r-uHslsSK)svGb4?EWR=|C{c=zkajc<Vn5p|1rh)Vy2N*N>s&
zBmkLH`_D@Q0W9Ts5R%y0&dnSIS#b`)MWq4pk&$E$+bZ}q5}NCzYQ-tSS7Eh3POw86
zWiTA)`x;<R>`K5u6bT?H#4<NIEnX`76z2iu-C4mRrSoZ$JRKNteA30@ci;(6YEs0N
zQCx2pQi*OtE<+ZMeM>8_IAz&rAhA-s=B=0*31T3WdPm8C&)uigC7MF$BbvNtTaF{m
zNd#k!A<s-tD?D<7+N6RQQ@25Od4(oJauOE#v{^U=H~H<KxdzMxV0$VY=$xtsL2r{t
z`;SW(Tur)%l*LFc+!0LUH?mu!%`r2G{3hLRXnhBeJ?yCyJ$^MV8uEb)aZ~+_AQ*?S
zOQ)s%Aps^a6Wu#K%^j;BrFDWw5(N`TXkGV}HifUz;hKSQ;Gs%^b%9CxugQG0o8{c}
z3DarXdz$H?dB#*&EY9L0nvrsmmqFOTkk$ee(eElR4(137X^j@*ujFPQpBs>(BbtsD
zC`alql(K%W))&tQ=gA{jT6swBZPZw-I2YDDivn=xYKS@_)#_|8g4Y_nltQ-^ER~R4
zYQR1HA;UYOnypHX3=cS&^oiQ2OzCmjSViW3kdP9*L2cEGHfwfS`R^lM%%Y0`A&TjZ
z2?>j;0mYp*L!wu)7}L0kqdT@_wn?r@jg~$`XR530C<aF-Gn0C0t1vof4*@Q&p9r*r
zW2mu?#JC<ItKb^gy`m+!Fv^GIg=b&&^^Yh(HHRayGn$(0IGThkG!jz!W8=Wox|Zy8
zOrAn^eQis=gRg~9eUBoge#}d)iKjvI*6T!C_w**Q&RJK5f_QR7$W363B#?3d^Ko|%
z2$n1E32l@AKC+~f|I*ufd3O2uUUnzynPHTI1%#;OF_VxZmYcbTIqfSM7oF~CRI%sA
zmB>%Qw2H#0d5ZOV%ABDz{l*71>*NQ93N?z;P05cZU8=?8OiKZYL;zcXx3^*d)Q$H=
z!g~_=B(>Ub{?fPcPr<^xk47g@&BEA84Zff}5q$}yfQ^4M%$?cf-o3cA-%f!4$JSYf
zHT}o`di#!85ThGLk8Y$yT0&Bg5OiP>qKHTej?vv+qof;2!GR!+l%(h=DT7o%bO(R`
z|2dD&)A4ZE#kK4H-0%A(7O@J#hCa0(%!SFV4GP-^VKaSXqG4!$(x{aSD6RE%tm2QN
zF~ju3g5%dz;)qi*>=$A->|2_CUCX4orF_bzv2Bw86_+dN(`8qUcPw&L2FTG%;RAlI
z3Z?$iRq6~vW`vO&OaC22)%uL>)`fP6cl|qv;`$nvg@>^2VG&MyH=M5b&kx>EY#I{)
zvr<J-1bMf#w2pmy6!3fL*6Fipg7J6HoF!v&IZa0u{KnIzYh*j!H#(avK*)ML8MS9?
z_ph-ZLBD^8ta6XMp)}dUahwyOrft0};~umWxuMhvZGFNf`_VVgS6Sct#`Dzf#|NCR
zp=jF&ubOxUJ$=3YAG00*Z+XC8S$Xt<$zk@=`4=V9`}X#GG+k0Y<dDxN8cokWY2qJy
zZ2{5*Xu3L3@<4a{nvZ{A;HP!ka_P@1iXEWP+MX*xi@VH}zpr21Q=4f7Zd(Ye#P<ie
zwYcf-+FN&K`+lM|O64+MiKe6e{ue}RBj!f21%j)ADk&2&J?U@?xaZ4Q0xfqUy+#i{
z=j$)Jy)7_$@bwoKDJ=Bi-$R_jIgXs<SCSHR$iUELX;SCs-k^S%w@TQQOUQmbz4kp!
zQWM5HbW+Qz@#}S2^m2u43?mjpo+DQI?N@#jC6-{vYB0U0dO0xK`h@^u=+E~Qp0u<=
zJQ;tay662XzG2SYWW2-+tBVxuKv+cbE7_7L!x!%!AikewQNGCI(*T$wu~+vqV25*l
z>luEDM4u*W6nK!zWF?R&9HjR&utq4@w&8i3u+QDzr&)8(Xb(pW7_!GF#aAyUAq_yo
zbefLQGDHBk0V=;IIyeDvPgsBRVUxh)#M=;8d(F6H5Q4rqt8_pM9a{Ga8h#b{GsmE>
z53CY#H5kzgZqacmOrIs}dU?R&YA8J!(+%IS#i=mMK^bcs;DYU=BGu)kapo%;Gw%YQ
z&jw$21dTpGxwL9NK;y=q(2|HiO1PtMI*g;u&ST!?!A7tWb0oWEq<K={A40h0Bp_Aq
z6-x$Lbh`L<y{-u>tu%U}u_RP13ZO^{=c~v3WP%fW__z1PE(b@gv^vTr`iT)ONsb6f
zg0MV6rECzo{Up?&jb0xLOCOBpM=7=YLMxzA$u_pn^o638m?AUf-|H)f3^Ms-hO@G2
z@ykD&@d(x_rmjF4NTcWx5YBNkD8(M&8_wN?5fvvGA><x+-HYF9L$JOL*{#=E-Eu5U
zbY!%&R?!4@%NhPQQAuD_cG|*B%@fI#6Zx&QruX8^RwD26CEb=mjBIIsf-*uB86{B9
zWC?K#pk#$#NxAPL71zRH6+E;k2%+TB$b@8vb3#0UxAzW|Xzo@qAE__|eI>xvs-$>R
zAGq`+rNhPzf0tw}SwW@a61$4ywtAPmr*A3Hu6ey(h;1QYuAE8uDyV`Pz$Ma?Nkb#9
zE9Gf{Y%;vq$(imx<z>OJwRxyq$r5&1fyI+6E?{Y!CL%WEGR{~9KVTAmK{FzSrA)O&
z@7;^;cttZiOXs~n8&i=QrA#Yl7NRkf{)jDUOV)tl4rr!<H@kw0(ND=qIX&!YI-X3Q
z3<S2!P}WzZdEf`4$K3q~RLr3Fx1YL+fZW^V!cVfEPp949<|7PcNy=tFU&~g}&uL);
zS8eCqxSpM*kvqu-d$-NkfC16fKaecSE^$d8Sje7W%X3jyUJ=P%X2|8|&5I>wjru9g
zW##pYkf33+`G4__G<#|fw{rPcQiu4I4B8RWe$b-{E4hjgIgD}a#i2~Uin3qw*AFSJ
zbX*Lpd{TIJIC};#fxpUz+-$Nz45yOq^Q2>ScJa4g+A4kY%iS=@J6OnjFqF1gk>4hr
zzqXgZ7=<|Ub9RRm-x4WyTqxRI$XZ=cY;Vu8^%LUUq-TF34R=KPB!`>4@-^8|r9h?H
zZ2*gWvDYpMS5AUE1S5VukW4(5_cm~QF)7!^_p-)};VKUN@H!Kw1Cfuh=J3y~+7F6g
zP?f`$MHhwm50}*e<yh#o#);CT3gu@OrFX1U7d^wLdW@p|OWh&jb{$?_t0miBplm@B
zgwIh2SOL%T-KICc<8NTahb)!)qWS}GC983n2}vz)Mm<>%O*6!7S|SvZpe#%kvHnm)
zf8@2Zs`KN^HAvJ-eMRqnWeuw8(O{L$#ZWJ{I=;7rVl_T9n(-spCQ1`jtfE19QeAyU
zUF=bLIjOP@Q`#kJm(5<=J<KpunfXISz$%^beTUwHD>5p{{@DTOs8Ry44_enXi*)tg
zva2fsi@b7%lGxy2c0pBJe4z(;;f?^TL-y7kC_6k`RfO#aTsnI%DBld)mFU=jFAVpC
zB06oDZ#Ei7)lZsN?TFSSP1Nj@*X&-<=fb)y(Ix;@t<aKBzAGi+QD>?|s-tkMZ}hk=
zh(xHXYV`SY#t(BRvNuESlwXZ5SwMT#D<epk@@bIZH92_T3cVBt^nE&>WffH0@PPaz
z!qgE=<rGAWyt#EODy;-TV_M`<x8?`vjC5KH^w}R9GI_XVCrl@JRoX0pf}RBXLal@+
z9C0F8Utl704G>IPYKswTPmQs4cp~TQ26tOZRLnvZR<%fb6f=2px^pOC0yyIn0WKS`
zBnq-R0j^zvixU7fdLAYZ&`(`-g{3Nm#>FHAjkvTsH4(O>p~#Pd(g)MksM1%X0K8{M
zaf~`W;ni`W#Lb-W<p7mBx9Tr)7b^rb<A|<S*0lMYjv_%)=Tbm-i5N&a5p`QtooodV
zp9sDP*>@vePhepUZrv?8!gq`y_X1kpM|T7$683Kr7Du||JE$nu(J&|A<o*Tx1d!q&
z3H+P$CGgFsZ_IE#qwPINdp^m%&Yud9DDn<OZr2||K^LE-2*)+odC<?}TA+wZoIhe_
z8c~d)W<$_NYe3ZuYVOKWAJC%!OSslo0ioT5SdX{y^niA3gT#{fs%#g{wN9?{H$7s6
zjo*X--QIP?8;m&3=cQMFr@9wUdw$<E<BM%%i|q}#hu}wol^7wFlkZk`J5Fx)lyZp5
zeC@X06_ULKPhIlUl7XjcC?;J~I73Ut*)vgsND%dv7Y(y70$mv?z$WI6p(WR}UC}0N
z!zJ|65ILDPCaqy3C9$lpEpl=amf}|@*{X`ssn3?o26!W6>qjPnM>@@H+BrvA2_tdA
zqr;<@vd@{4t`9vi$c)%i@pgm}9Eb3+X|CYTk65ar=h=mcG*<WHCbSUA4@HJhuzQy>
zWIgg&qnSP~!ue4)^HlOPZwITG-b2^N&cNdo2jj_o@1ZGUPqv|?YY?K&SU6_vkG(K?
z@Ph`8agB;_=pTkQvY{Qdp%{<%l^zqHt0!<GOjHsenr}2#sdV&zCjOwLa81%K!BmO#
zV-$fyZe$`o#r1Lo7PT>zK85N+P{Xbt2_dLavk@#KXWo}xOjpDi_9z;Bp8^tw;S~>@
z;Zx|>Z=Y8C2DEJ<^z#aDjzX1}=~%wi6Lltc9!~OdjmKZ>hH;IbU9(o`(!0E$`#627
zeVTef&noWq71+}$?znKpyg>}_)4M5h%Chh&ehJ#cS}BbeH|QKBP_$CgI200+xOc5U
zjZu68;E{$%;U$=)n@cV?r&%lj9t&B2#IIV=)T%9(x-UNV=60Qqx{=!EJ#vYg=x<hJ
zcVRkl-4ITXQICLpeB)vDj!O}&l`-+0Q#TKm5D0B?M|B^5j72Wr=pED4>|W%HsJ{=>
zoC1ER6mGtrzaeOaBHHkI+$STD7;mnCZm6)%x^t7B%nxHe598IA9cXvCVBc$`<G(S+
z*MAO?S*{p!b+2IvY}Z@+BM$k*nu?#7lV3S>htB^YLa5zNxR@wt0O+{Vi5W5wEm!48
zjc5}0BNJzOM4K4Ln7B$GhKWK+ugT>z%bMxXYk;|sqncyV4W43te*FeMYnaRQgL@X~
z&5jL*_JSyyChW7H4%`$P>o#1-S-rJvf%WU3Xa-JJ3rnb2^SzEypRij*s*PpwI4Lsj
zd-4oKFNexHC+c{OyByuizfWYiKZ!junKw*%h1`sca<Hmsf*Le9wPXAI_kk>4wisbW
zfr-MjDxLSS>LSEmeqK^1Sx7@A-M>Ss{2<k~W#4ETQBQp(;m(C&!kT5_PRKK+>hXG4
zXlm+d`+)ftqmZnkGHZ*Z(*jps1WgHTN$v3d^6gq!;uN>5&=y0y`k5Ky=BjMt@otqe
zBjUP9=dHP(!iLCiV*$D}@Bbpg_2<-j=$7PJ^AQkVc3GZkD$Qx`4ap3KeE6Kn_u^95
zLO)yW(;yl!HLU6TFFCQ_G<5JMSpW*T6wBzVIYQDmVQ}o9!Lo11N_8e)%p$SKUHtAy
zp)sT$ruCO@1SioT`k4y%_560oX}7hw73n87sH6<0B)<+=(0qGD^@B!1QT1zA{N7r(
zo}LJHobW>^h;)Ckn~L}8_m2F%=btuhcezjh3=Y$<D9G}?4QBE0Vc`JSLS)!{6jZ4B
zA|j%XlY7Lj1R}{^B;0tcE9`nu(@pboKQdAMBP{BG?1_3UU77`0+)|e1(t%P(4~O|}
z!39Zf%g2Y(@6}3=IiJORjr(~tUnnSdp#B-G;v;i%y#aWi{0q~2l>O9kc={XuDJuCh
zZRTT^rDq)N4IJL_jB3@~{UCVhd%GCvvoKS;Y#yfP31^2$o<nn<Up>S>M1FMRZ!y_D
z?kO}42deQ!J=pQBX92Y|4yYEI;i;kHDK^?{*tajDLK?EVmbl{O8D<l>1z(K7m(Ew-
zA6SV?_Q{awO6y=zriaIW4Pfz7`6L62M)4PQzq)^*I_mhkXrX|h91s>B0np3SM@C$r
z+c-c54KT@3giDIh=H=5Q7Zw$ll)fx0uc)l5uBp|~YG`cI3cq;ZO-Kr-i2=Hj2sr5?
z`ga2Z<zg~fku36QVPtZwadNzo{Gk!j0x#cB0@EJ=TI41Yl}I~0S|r|A$SO}=G*>F~
zsrqzwzBc7dU|&rB@!T7;Xewq=I@8n+h`1i7lZ_}Z-(6O^ZLRg-cVKNYXI~}xx&>Yq
zNo1O@c_j<KV=wy{#1YybNy9bI)f-v;0m_Ep2=6G}Lr&Va(L6gx8{ZwvQNC_Y^@_2C
zbX}X4-*7RqoIJ)1ZPmzV_G(){<BbO_N3^24ttu?Oc35<B!ZZcAd%{3WW3=v+-P>`{
zFLsNGF`#a+`oM?BLge(|(n(q~L~S9gs6=e!TPh%&(Hu>7=Z6HFh}c<j>Z%*B?mAg$
zo>EJ*1baE%SXD&3Cwl40ld?z8p^bO*hX(zdMg3Y<8y;yJDjv0(d9|g}i!m>j*Ohce
zNc!LlpO$;aZ6YS~2LIsyt5_A7@-R!-6}n7NS#e2RvnS^Q76T5Y`CwGtunA2n2)E~Z
z-ZeHG8fvaw9G(}Us88=#&WJXIoJBR}Tn;ec*9wXDz(T?JYG0=yQN9BViC=u`WYtZ+
zPoEGMwQds$PMyfOZ4SnT>Pw+Lob{8Y<eer(KZp#>+?<A)S@5s1%@{=$o|G|5Quh5!
zzk)=I+$LvYx4=?$%ZSi8{Z?k<d$H*tY@4-Fx_Upvn;Tb>6<@N+l^*5pvg~=k^mr;G
z>8p!=!D)ZiaDiWk$9%H<R|RyQu5Cx*6+wZQktLVuEAqmNk;2A^@7K~X{25HESSmq}
zz6D<Knc=uv0#h$QU6E8285-H_tq-SOreBgsJ{Bd^_0a3k@})+tiZ_Rqi_%p2MgcDA
zukZSArA`%EGnObNyKYoOJoKL`ojRKysiJgN61C7Bf>Yz;;oCn*Z$Omd_2{3=!bZNb
z9v)!$6FpQ9#hC#<C8I~6U#pi=2^&o1*WwAvVG8AJ3~fzC_4vvR50-+Z`>;I_76M4S
zwJ7y@V?y%ibOV~F40SMwoB{<$PKV3h;iVfS^peroAm7@2%g;EPGQJ`)G-=MFpfGKs
z-SzB)S%SvOd*12lXz;t(xnLO~hf&RU96q@Kb=_HX!#hq=refH`f>r50l>Rxo$nueM
z3t~petOp^D7lrk^=pKNn1ugL>A5{W5A&8nJkDdTtjSw&y)46EjlE-FTeJ>S1pLQ?e
z(z!?9hGwPmrnqlBe8+b;^bzmVISIn&=GNV8fyg^}CDIz?C(Q5K>w(LXPix<PQW5QW
zpj`;2i4}g-GH^-jIdLOu8T{*0h$w`LQy;5IMYR)nxJcg|*m_jjjO~Tc*%NxHC}e^W
zgExXN@^=(yC>w>w#SPh3DCixkhfe^b0mhc2cLqb7xan$~s$bH*8#aBIERTa@F%&EF
zsCuvK^4icuER*Gm$IrPpq>UKSP%&%X<kr{kjHS%=bGS|^u1bDg@ArQaoxgKJ->scV
z8z_I0k8>vA;JM-y&t&>`ZG=?`uv!~0w@`W?#rpp$Rsxwl_Z=D8bY#f253LwCS>rYZ
z!~Wq%Mn{y8_2`}Wr(Uts&KlIkPqtYMqDg#k->1=<%of~O_I@6)0c4;J<f`oEc!hlh
z+b-g17=B{atzvN1j2&<*yhbZ>Wn0)(>yDu`ex38?I$U?qLd$oCpZa7T+73l01jNQk
zh!|9xpTiSZPL|Wy&9P=(lc^2|{V%+OgIPu!$mwM@5ITEcx>(Gk9VcCdI)iF^il&T5
zB{w<UlT4Ie(r4+E<b#@rj346;8NYnI_b@0U?>SdW{5u9+xy?+Rh_Y#RY%+!PF`Fr>
z@i1;zK1`}~<(jA-isFeUOD&p>2Cz&eXIVCd0W3zMQ=XaFz6~uumuTiu86H2`U~w0-
z46pA`$b>`~1P7*q-*ZM$eDFv|kyIiRX_>2{23;p$F4%qw*efzFPP+T|?J~+}HcJIi
z{4_C2dBN&Ug<&cDYA;x4BPtmL#F$d_L{zROI?bR3^Ln6WR>9u2hXv7J@A)4LP09aP
zv9jrz9W>xoCOiZemx@C7Km&PN4Z&ficl;Eihc4F6BI>IJ<T-3_p?(?{DLs5(-ZTHc
z1J^*VL59$0!m;*6G{mQ+x$p**oK!Q@)mVi&+tMwCq|VmA6eM@wXM;mLnAP8Xt09+h
zi(ZaTSEqyqdzGm!ue9Kj-v60<Jng)Eo6MSih%4;L)ky~n^j!Obah?C1s!d4Ezlv4e
z^G&1AN6c8Qew=mS=clC4@@#zMXUlaL6)WObbrd<&!~^%rj!2<;(u0hzzr7T|1G{-q
zM;NaUx6*<zc!40?9-36FuO0inPTulzKZ&v)U1je4pNbWE=ev-xe-*2S_}l!z@JF3?
ziFA#G>w9Zl7Zodglg5jR)m;lS)+@&Gjj3hVHvX$vjW?#ZiW7yKl14BzP5&xZ{{eoJ
z!%#O)#D5j5_@>;=e-$g`?prPUdH?2Of1mzWu}aI`RHQxouVTeAwxy@)&lFZmE-Jd`
zaEigO@SygK$)9g)-92NZU=1$6ir+p7^`9x_HY~mL8ys#m(UZqaC@U~>p(4%Mjkl_k
zQ#Q^=UXM}v!1hkVbrSuRCoX&D-jPD1f%#X9uXaUMk93>f&p*5eS-LzcsoPZG5N(fe
zS-elyif%K8Kc2q&G4Xy=iLngrErj?bl;<yq8YabQya|Hd!!B@Z;MAFMpC$E)3wt#`
zobcH8!c3noxfooysy&g;x2;ce=<$oSo2!KGleeljo>)15T-iAFefz8z9Chin&fZIr
zaw9Wb`?8rn1*UzZzv95^BOf`+M$?}x*V8YAAjAr4EOnDy@g7;&Dn|#q#fTl|wQ8*i
zZMEL{6C<CZdd|;_1oP=2$1T))KZAdtC1n5gJnMVCVNyn8W?bmy&X7k^ce--t<9qeP
z;K|G1^lx^e(j|vl-wS`gPj-%89Dn#`<mz5^<Pk4Bw;kg=2S)m280?HcUTVgWNfH(k
z>?Yz^+d!!_9$$EwCIQ;>9Z31a{mm;<Fu>+;v9;~_m+Rgb@|$w>=R#muP#CbBf)y!D
zSmnLG2c&cG%=cYV9~ohIE|Sl8IxIzdlwgY7$Uqr%@Wri*)I|$tP5w^tJQt<X@Iu-L
zbS1r@`XzG=AX7mK8}4Ll+A^epsL#DLZEr$%NgvOz++qy91Sk3+g|J%aL_kL4l2<=h
zduzZ1F@R@9QW67H*R$Tc8(fOhgUmx&S>fP$U(zpbE>>yQHc~M74(@9q>vKvRNfrlM
z!-+QF9Ex5XfkVphzIN-6k^~|0bPR`N5DGfcW-_ZR3`hz|^IQ{X_0ShbiWl;EAyxog
z-_T?fU{3Z>oFP;m<A6qm?BX02ibBUTBqF@v5@z9!ZK1Kj;m>=*Bc-{c`$LkZ1AT=B
z&|6Zi9zh3!5$Z~Qwq76!k04omh;o}tv2-N;&tP3E?<x$Cc|?`=z=<Sm6^;sKEWdg3
zOs`AhnNn}0ccf2_FFbnCA<J2>Fp@Q2pT{SY`L9B>vsd&>o9Gf^bT&Gs1{*@=ahn$d
zqQLW#5n|*a?6HE>b@!pp#SydwUKTvtyDee=2om#7Ls-tb$`en-ewh?~5lx~XSdG<S
zbt4vY$!|w1YI=~`!5S{@5nr|*PU#uH?F^@uhLk^m4h_<bw87E7v5^xoT`dW>1%xZw
z_z3g<eVGOYx*#Od{jqH9s#$E92Z&zU9w`sb(zsYLbvZ_Ze))3nmS0j$iOK4X=`N4q
z6G1@?_{k0U={1t5+1$_C_(WV{<L}VF8H}m9grY!#-wL5%QOVS>6e^dbuAd2d2PtA&
z$>+{+13&0;a!OBRii%6JqOCm(TS#M()v11JDKWAiXE2R|#5eF_oTIAt7`mY;k)Whz
zU65IO%EHCxAvox%?Hc(lD-l?gGbud|pMK*M!Q+?gERw1Y&H!-f{d7t4Q|X2HjB-}^
zQxW*H1vej9Vlg2zz$Z-}$P9Byt;S^Gtx_Y})1yzhLbK8%mFbK&K`)fkg0~YZh*{;U
zO3z)O(F5Q{Ms=oAWETo}l&bNFOo{@f>AwzaJbgHDAJIJt-q8<|0RXc*Mmsn|G*X;@
zg1eBIdnzM5wFj``<!T7I$#@#fNtl2Wb*?`DU3ti+ZM;}={;n-_#|4fiY7g2%hocg<
z>2gEK#5a<HB0xY-QNi1GIf!%afB~zymn1j%nk)t>%zvF5%Mh&#a$?XG_lR@p$(b;-
zmIp~uCJOiqK%6W{U|1vvRVac&#r3!Xm3#o*MB~q0pe+Ul19HXK(440w_(`TBxMq=g
zUkL0%k2B2G>BCd36xghUDlc+LU_iCaER2gcnwuH*Dy7(Wa=2V$d)bQDEK0*L#qRfb
zjmhvwTNdUzC28{|rmjw~MJO%irG1AFEylR>?qd$662iMQlfGE?ZCQ0ehU`9_Na^6P
z#G;~Ew?z?<QwY@JsPMN)(YK<PPrdZlSxh)sOPS%eOh{|N3DjeitIiz^F4h$;u%b3P
z4#P`j0XpLCE@G<D9H+gB{b}Vf{?Itr%EauKCMp$?t`z}Rg+gJ_9Clr~iHdvhN-~wo
zsO(BFI0;hSQIfM?NgbWPs$11+0c|}icNMJYovSLXtPw4*e5OJ-VOOGNSd-{d6WhTO
z&t9~S_eJ_4_%Kv{s~|d}P!}q!<rJVG^1jz9p#jmpz5nby0?w=fVe$&R0zf{e2JUVN
zpl9mjG2kLrYVqm%2o#XEl2`3fU#kq$j}%!ut&g<>GBW^7hTo}{vM|CMz#6Kia*KDu
z0_B^~ZrtE3ILCbGS7g1k^h1w9>gk@QH>mo!c3-j)#4kHxuQgw$iwPwHBNvF4Yxu(F
z7q7MeQ`T41Xx$<>fqsiNQ1k+#v!EReYAEu0A%!JGtDaX3ZomiJ*KSr<eYkH(@;h>c
z`l#0FxYRu=;uIk^n~gBKjKnxGc$I0i>LJ>29It+g#D#+((<`mGRY08Rd!g>bl3(3i
zk{z3%3l;;L?zWx6TjU9Ke=FOr1fUC5JFYdf`nkb1IohWk0YQ(X3qTs5Bat4{o?X@a
zLY1x64b<M*86vHbrwV!5+yv@uE5Vl`cI(loR{sI5I}19YqM%1hP}&upIZ=>>PRmzJ
z3(pMDB?itCQ(HF5a-f6Qjl2?);lALU><kc?Q)gRM=SYtCE{EX-q(#U;20JT;5wEW;
zb%dyvpBpJfpLMPLezOtKy*<)Jr6#bv(w(>T>cHsDkEd_m-hBQ0CdvDc7!)|~mNp|a
zHa5ef37u6i1eM_{S17GoH)ymoBc}UJ43z&|9QhD6;MR*iM~FTY6MtwZx{JI>_0D&&
zth#A}VnbY38s8Rk6=udVCCA1A?K{H#+z`kL0Z6070QCW1v-0HklnYk^TwfzFRB92L
z@9JbActS%I{$00^HYKq?S=yZMX8yG(4!(<9i}iX>OU89!NU++Vbx3$oa{^X;F!fGs
zLiM0n(ZHb$_E5tp<tojpGxXjRUsiSNhoz`$q#zd^G8+4CN=uGTD`9u@m38cGn{(#Z
z>2ak7LH4=uOcemnI83WN+(m5ciIr->4L_*nZdDr&EF%s1`wX83zss|S7Ce+(22<xO
z43k=d#$)*luJ<=mq3m7{ML3OCa`smu#{lWEWNAN<H4FVnQS-(OB?eLYBB*23&`R}a
zAqJ3~&Ks|Ay0VH8oY0w)O$TD>(UXoHv5}uTYmLoE%n!%KdMCcd@baX_raeH<$bbt8
z<5!LN884({-l$W$^q2Mq@2l-hu7Y@%2{gtd{0>pGRM}G#Q_P(5^tj103qCr+<ZiWJ
z$wz+)<M)EbV>z1RqJKQazdbUf>i&zQM@mf7OQ0^o0x}X%p1be$E-UGGnHw%o8UML_
zgNr>3)Za8JGOolvEdVt>0v!F2lzV{01WF1|dPa3bH(wzeFa${Kf#vpq4Rf%B^nB<t
zux>U7c+5pzX0FW;@)Dm9yFCAwdG4tM>=0(ak0`L$0&ycfx537_-xf}RCRzjjJom{?
z<YIZvTRTo3h|)wPaaLgxi2_O02SOVqDwR7wL|AaIUwt;hXciM;Fj+DSI~G6FyvaxK
z5wD4_B7%AsqTRo-KKS<1#b>HJFKUFE-gD4<dU+}N>+OshZm?qi>8i!s4M{YJ>;A!#
zi{nQo23V^*w0)Uw!T8ySIQUxL{KhvF+lR%~>k(377M}wQc)F0EyVBbBRiw=TKOA@;
z6Ngnvm&P(Mb3-zG;Z1HVG^2e(5+vBxWjIF=5vTGog5F(DLlmvF>PZGPGl_;6ew^p}
z6d(c@=bq*MzKWtDJ|0}tbcix;{v;d^7cp67rnZ$1qL&?S{^hV%=&{C?Z>Vx>Y@>g5
z@bbnw``YUoPUHM^MH-@#<VGTSzt21ml<D(xnd{7m*oU==dg!o$WQ{6Kpf^N8oPqkH
zYNe?L4-P<3Xl;i5SG5Yw7tC_7mjZ1@Mu)GL&y`>YYe3ua-{HxUurzhvL*JoIaM_&?
zrX?%4b7{;vx)R)Lv%Y+*yaE0wuOWy2Qy>qz>)niqUo4E|;B>)_9a`>GN5LtPqU*>V
zzh~1-Ttt=ZotD3CTx=wTMn>wnmD`@?D}A51bi!&JD`@bOU!!FsdO=_1;=c8&yBL7K
zApt9i;=C`rEUI(h^?WQ}e_6_Y7i93;V=>so2s_OunC_!4hsoKD^4(5J5cMah<KM)n
zyYuXx-;0rZF@xnF{_bRmtnTKQv-zSzukD%N-HTrNF8gZZ(<5G{D|-p%d#}bjOYnQX
ze%v+jOf;r3tn~Y$-@Swi_Gb>dgdKE#oO1B+Y%rVdQeOGi**MPk8TI4RA!mVhi_L*D
zX^Qv7{wtF&di_fck{r22Sl$Gm9FuNE1pTr_o-FaU&W(3#`>rK+aQh#}3JTZ1OWv}h
zHQ+JI4^O?)dnf$aI4Ryk3NEoHx(5n7SrEBydK}Fpkb$Ak(Kxm;U9~nnyf$JLJ`GL!
zx>FzY<*752dIBu@p+r<lZvM$hO+9c&<|MSv=B<S#ug&2>>U<}ok(Cxa|HrSprP^Vj
zlT75d-`w!Hx`Vk#M-RZKz4d1W6KC^uXH}rzLX)8CDew&eunb;=tZSo>2lDPQ)zBN{
zcN1V~@0*3`2`#qpI6u8{hCA-Nq?AWg_G9RKVzwbCy}j&d+T)8}{$J>>rmp$#Nho{B
z9&i7P^T{haab|ycv`)F;PznGLlnsdxkc$YpAht2U|H!u7iCHl$@^o4J@-gYWiPT&Y
z@)EcZ36gkrL~ec^{Y4HzF!92|4UMj&mXP6MqNkTBiD^#AYRC#pj7p3fiAYWjNzbes
z%_}HOlOK$@Xxc{9ECFM0$||bf$4tgdC(aTVx9gV^@kJ}8-$uc7TJ?BM-U!hdf88I6
z5O#Vpwde9l$XNG&S=Z54XWdw<9A|vFJVg5?+bTue-ZLl#EPh8PSzd$)4$VP&S^0vV
zCSFa<vax?27OWTIj#hr>yTC9tl_HWO>3<eoi7lEb>9wS&=$mlwps8nV7!<o&J0$-o
zx3zw;Bp@al;9Bq1onztT(W|zRxo(b(FpJ%q2!3Gqs=t|=-Eq)KJ<OIx^V96aHwEwl
z380k}|L|2TU|v!Ju6pD8#?xB)4_&HI`TLXpg0q!dwkf-#uq8u5WA6qkylh{gk&hkd
z4sp=%x#}E1zo`A{RW{*w^joT1A<pJl%cHHLm55uJgYioHyeuN}Q8tp;8#CH3%*(V3
zzAHO)-mCDzJDyDc(Ctw!Tk_j}!pOt>6*i&u^r5bIj`QWoj3NJ_^Wvdk_{*Qsp-oh6
zc0nOu=XkD=xacuqNt0F>YnUW@3`@KEmM$X3%r`PXXA;CJ#$MUtq(Ui585Ki4dw9cH
z_KWr!uj2g&g|}7U(i57L%dCRh9sTdDC2XRKY~tx$fVa_Heb{9_1Bu4lnF^B=nk3UZ
z+!kN5p6t(Anm@chMMz^|53{r+i}VnZ;MCB<LbAwI(9~gC$@hyQ*+t9K;zSL%Q51dB
zQyDj@=kEz7s)ge6_O|uPQbc+!?PH&f3lf56)Q)Zm*^S>A0n3MlQ<0T;o*9xq=DtA0
z<U!GKSk?PlMvYn3{_Adwdn&7WFYPEYwE2$h))OyRE~Ho2T+XqrVSHli-j=cQMWD$z
zs<H+_MPrfbv8=f3_}bdGoKs;0&YIPbc`U!IC{ApIQc+~=<UNmxoJ-MK(j0mzIY`{0
z?OM{X|BS77iW$|u!j0v6{Y>xPXB7JbCmE%oS08?~%<{Q7mn4>qa_K~vsST2bJ7lY)
z#<Fui?xTpq%m;%f<GYWAG_*Hm3t|aq$<VY3aW-nY&uR@}YHz~#>ulVnj?p1s-2^+w
zUm7VW-q=ikmUq)Sw`$J9!nQQ(KY%>+4<M@;Vp!W7CEjX%`VSya2l;_6%AMTGIq)=8
zPf(l+d)og4$RSmjoAG|}ac>TM;mM}oCCHY%ewE3~)=LLNnEN!AeIR;fzrVHri2qUz
z|M^$-dk4>I=eNNhG{e$0)*2m_6pT%`Df_WrN|aGj>h5s)bEUzb%X0A*$B*uRPWg-t
zLHUkOv{c#|&{*yPRAsJOzPdagEj0fS<wn<>2sp-i5|)f*?*pF}ik?aX4~P>MPA&!s
z4#DWh0e3Q}qz5l;{E_hZ<Cq4bupvN%>V?;<@QymZ(7h;A&{xQc&(1UMvjy50Tey+G
z%*k3mHq7p`%-p2RS=9<^8v@bHzfU1dSJQUXU3srvM4!SBVfD}eSR;e8#(mn43^W25
zk9e<Ayo|c6tH+{|v`odjBAr<Rx*bF0q!RGJ(zFq@{)qLEM3EW=_g3TT%5SkW{OV_S
z!Uz3Qoer|mh?PASiZ&<-4kPosd`t}_W)EI;<1c=g-I9s9c{h~d^RKrj`;xkuqoJJJ
z&R5mWXt7;Rd;%6Qn4v$NfMmTR--ZrE@0KJ5DM8IiKsZWW3m2MxZ(o4<mG4Vdb-JJ(
zr+zFMc2v8%G2TZfT*z^O$M!-d3Yiz;F|dM)Ny?>4bKZlNr3+Z%>EmY^xx|{-#;xO1
zgs(SpXbSK{3|@k~*HTI}F1>nt4~Zg^OBA5`@};T>YKgzbrt{s|EZJIZn724t0M1O2
z5_N;|+2to&+Ac_QaGQp&*=qS0XL9wpTVIfL*ODN1qRAQDt3@%9B1V*FQ&|Vig8WR*
zON`nv_{MEKth7ffOVPMQRNh*b%O!t`t|#J=DE-&e+d^<W=ZnQ7Ci1j71lb~>$c889
zJHbNrK<eI4;E+3McWrfpC(2}N3RWN_XRW<6)6DpzN<K9=ySc^Ld?l-jb|>E9m$n~*
zYxkM#nVjL0Z!7DaUe-p2eOV+k19$H*38m2KS_iNNvkHvl1if+<)EmJ~eJ>~b9uh2I
ztI<@hepH_6AbM>uGm6Gu*it?-hy4#4tN5juj(Pqa<U4COWCDN5I?7G-Ak>a^3e~QO
zs3apt+SbipYhmO9dqW9!b1FmS=5N1;m8i}&_ItP7aI4l+$PvhE)a}Z$skJUZ@cgvM
z2%qhL95$gE`Cai>XL4?^Z-e=*>3r+T?LhK}f}mTAUykaI!a@Vnd>l4peHzc1#B511
zg5ZJvHxqu3rPg9rEcC8}IO6xjNJmQ_kym~CLI%s!T}lb=N*Mpk;{#^Yzp>}XcLz01
zWXqyo$JI&VhT@GVQx#<H2~wU8EJ-(NV;|lVV<3X<zszJH@Q&VLD2iLPp5<+^cZ+PZ
z$nWblS=OHmO8hz*as0xV_h#nHbLRz+tBEZBn>dz2iA^Zrdt*^Tzy~3S->5~DM)5Ay
z7k7{yL&$7&i88Q#o3mr!_Oh2c&E6JeV!KGuPo{i{ypC&E{ipJ89YJ%*-O|#|W_GJy
z6<+J2)*exr>9|E!(KNcNy*2-+(WIp@<KObY?}dr@mgX|*6rjx|eXqp3xrVEn`Tor%
zB28=Cz(3LU_l4u!+A%jq`tDt}HgD<K`g+s&hyT*=PtoS_FcmDAwhcv5@wWBG(b(e`
z5c~f%ZTG@e&sUHvO0Rz~|Bq>VyOm4_gJYx$pJ4m!J8&g`KRM_8|C+Y$*FK^o659Wt
zY5Tr?+-Ll0?3>r9%d{O65hh1P9Dla-O*^JCK5Z2INZB?^=$I)p`EM@P=KWdcG0dwb
z;Lk3GwsU^K<Y!}!!;s0<!G*c;pDmq#zIh~ceq_u4Ddk9<;lw^tDQW%M`BvZueyj=j
zBMBlr4gF!)Ly%QR?zOA_-A_z-y)G<u)ZwPmb}vOP@!{(&J!#9{>;$e&rf;XCBo5~z
z>7-zXpCvxSoqvz(6S}@Wxbk?!=Zlyi^s<e)^ashS!d&g|5kJx#a)=1O6T9GGv0O1=
zQI&K$k<fiqCdIVGbGrDF_Lp`?9_?C4!0(C4z>IsK%x*K%`IhOMv$;3kBMcx_ibznc
zftS#lD*g$XH1@B8%q`pJQ8K4bLG%-fKO<h8T~+zBDF$K<(z%2Eoq?VwzKGZZd3%E6
zdV*LpgW21HIR~Gnx1uOCuK#cZnWY5KBCVfVG6Nf^6f<ktM84bUGy;Q?l+vOwK}fq3
z4xK4n+>fIq;-u$&0qKx?U=P)DT=IH|2AYk03jF9pu-Siev6eQEdA3Lw|MLT$9cek5
zGs_Wy3$Kg`1d;P#yAa+$Ayy)UfPZuabKNIZG-M)7`I!eb9^q&K+-42GbFp|99B$DR
zPCpU;7z%p=Wqv<}z@WqLI)`HiaX9_Rf*WC}Hc{!mQJLirdC&}aKDg|J|8S2`vzf(g
zKaNfpA-rzwsShe}M&}L)6*>!+Y>AiYLn>I!s^+6b(a{3Od@r2^TQj3BlD2&|vF|eP
z*#Gh>pLp<F6ASaS=yn$Pqlx?2Dz`Kdt69jeEhrEJij!uLoQ@3a^^TJ##)d~)jMK+|
z@QwXCAOHO%e#R&46e~UM5gdX6V9AQa`uJ^)1kn_82`mYG{2&3qCQP<LX?qivhzUbv
zFpASSn^HwMEP>HBiP<md;jdtjB6N2mai2hMz7{eEFmP1}gZF93L})pMk~MUae-o1;
zLCK}g0<I|ntbQp<St%;8XY9&6QlThq;Og0YvfM$6*@2w|U#i9R6ypYgdnu`uS&pj8
zX_mHWH*B9?hABQ?lRpO(<f0O71>xGW@~U!|?uMWoq7;pklOG<+Ij&Ke7N?857+TwA
zc>87eR(RM}z=$&jU&su{N=z*LXr^Z}R{IP#jtoZEHNR;a(ha5eADYm=yoMdhlwEhq
zNz2G?&&plMnr_LEa&r2v>$vyKu`(>{_=75!9*GgHn9cOgsq8dU2X?1YBs&!E#GGyy
zAC{fJkkfsdL#WW09YFT9K)YL<3GZC`Z|J3Li46_W4Y1`-Dd)}D=H<%f&SvE;w&#63
z^`2kIBeLbMD(7GOmACGfzm=80GvxWDJ^%Y@{vKPw&)NI~+k&5d1t+HukFpBR7YhEK
z7H~EcfK>2gcK8DkJViDh-hp3=!ozrdZ@lzf5eT&sDFg_<mmNX;^@aQzg*RRna_$tq
z0SZr#!O!`FPwp48+C7S#^N^@~CN)eK9^t~dSa_?fh;JD0v57yO@*jQaAExL}O9bO4
z1OBH1P;v+o*z;4+1SGM5r?ZQGC8>lp7#M@WwCzev!+~38r512)jLJ)?{*r=-k~`VO
z&hVGhPA}~mUfy2h@z^O1?*ZT0DHQ>iRA&@kgaC+grP236foEmj5&n24byPhtZTZ+=
zv;>7>1z_&FE5*=D6}KN$7_S6Y%9qCsi@3Q0#{Qyo8h|(o@H;5KWe4zUP$zqr-O4Tv
zA(WVB^Igp@spYG3v@^2W5sfpfP&xCR-7HlPfBydEbABDjSO&+1W$%-!tUV7%(m^CA
zt~(raH(yxxNKKvz#s?R{%;6Vz(u#A_;G@H6hD=~9y7ta7^qL`1B1-?=5SSx^KAc^Z
znkYNTE*9~qJFx@)Xp-uZb<~#X>;CN2N%Ym7ib|2Iio*Co?}ne-J&_#~YKYXU{^)uK
zg{s~DSwCneECm9>h(KUEtoIBqSapTD%7Z4c5$4ml(bCvO`FyoZJnu|UNE&i08<0V&
zN9#Z&iA<S32C~Fbu?f>_leIshfqi(@Ty~9oea$RcjR2}f>O=D)`&A30SBZp%p|h%#
z2Z0?nkJhb~_I0Q)W_krLP6;kvoF<$lGywQMw>Xvu3V2QwwrJ0{?C=^W4=dll880Lj
z^!6Ez$8Uj6RQ>4$09=G^tC*rYsS^+k^Ui!5)=gYMd81y#@Jl57(xW?WLF42OloJ3u
zM@tr_qbY*a0hCo_xZQir#4uzSys7~p95ssRn&HJvPj}^yBU&FWId}d}?dojtN1)PT
z+HdXV4V8P7VcdD~FT9dp&~6FJM6#h(LgN=07zY`cZH!{}kn(gKPoZsM<gh!PHvC5N
zOQi^Re(-vk#3_i8D5iKTOG;EhEeixOg)*Ft&?)uP{rL?C=h9w0E17XrG3h7f@kM-)
zlb}ev@^q3=BgQlpgQc4nPM`n_uuFe10?mnGwe>FEl)yM*53aRq2a^D&YkHE}HBWp!
zAqJN|Clq;L&wYBLWP1fU!2+T^;kdW6WIbt^w^6{0gA6n~Rq*WZw_MM=)V~TEJw(er
zB(-Mp^*!l(s~anFRjqHj%FxC>lv=5$a=rI-uVY4s3yo4E+XKj*I<HUG|Eyx#RIN?o
z>jntjsW}|aUU#oA34N?04DI?p8vtv5;J<v*HMnSMv1q#Q1ZvJPlLYB1*cHPjLx0DJ
zeDNRXyl(mE_zha4m4A=v6a?gm8;mx-V>M&Ub2HA$MFe@u{R+7LLk7YSMO~pi^4Cc1
z!!DX3YJ@WwP_i82^&DcAF^<1xuD-<cPKDhoU^MZglCa!R>UpYxeu_~h7Z)~xTZ8q6
zHVAK)?UyvjH)&hp0ab_`RYJ3=8bQ`un-WlCoT8(3z2b2mL*u!l5gLR1rMze7B(w0>
zxY_3+w&vj7kK^fX#tE_Sw>-yamLyObtr485ylAsk;uw&YL+3X}%L_zb8;{GKNP5Ud
zwfvriTA0STl@<$6W}F(8nFR03f2b}Mt(geLgu*`r&<DI1zpRJuXAMEcuZck)T|?E6
z((X|?6uf4=tvP(7SJ<G2-pFD2dGFP?oP)PJU-QdH4%$)idxnD!k*-FA7oxeZtUB*E
zkk%8|+MPyYNAPbmAg5RPA^8BX_l6$Zbhj&;6Fip*K%P4AZx;^duFlShfwHHB8`Pkr
z0K{lEVB#Oyg0I|KDS2kBme>W2y}XdLJfF&CcSES*=?H@}HKa_jJ><fFK0z+hC(Rl)
zLEQqaZgE9E+zOwY0Ba@vGtFn1AkXKO{U~NBP_uqqLgJVR-$(*K{skUc0qiYamJ#LC
zP^rAUSSEypJ66WKEZ@xQy4aF#a)@+K{>aX5Z%K9M!Puhf$?~h^0h$=v<vf@KHq34w
zEJjb&^@nbSKB`%Q!_gRW$6@x1#Nw6&?2P);V%)Op@Tc-XsE`?;Mg<lDeS-6Su5RZ0
z@hy?&5eP~1$-gZ!(D^z(@KZ_G&EB`lZAAMd8L*PvjC-$S$kIo*Kz?5b#-08-?X5YH
zL}{Nmz|UdrN!*&3`-j>G0f#Yyw%{Pf6CuVEsII2mxbDI@j0CZ^s?3<-EP*pE2pY7a
z!TXCF;VIQvuZ;y6NF?9<!sNz&wkRcP<58BVRQ#JKed8BT6wO9+GK!&|CY!Bz7%3*^
zRqE!m@nKo%&EQAqhqcba)9YV2o5$0{U(<_3cgwZKh~CzUA(UHv>J?&~f2Hp2ZtzJc
z0R!{DBqIxYky5L{{KsC3X?sBBlCFtZ8BJ2MS&T3lP#QmE79?lF-P{zkJ+QO&^-tRC
zY3KO{A%^(|8{OT;!u9+|lAR_DUEc*-Pj)U(Zbj^ERZb6=YkW1&`W8nYW1<xu^=ZJg
z`(}R1aLIFzW@(9|`nrl(@B>8^U9JY;S&XHL@r_UX=J!ZHF!?{U)B{>t*He=O9h(Fb
z%z)(spakkFH32+00LCaUbOP8lhwk2Y|NB7j#~h3}*hgqFAYTkH)D6w=0X<G%a>);P
zNPd(PdwLY3%E|L-?r3gQ+4PYWnaAPlRKCDRaf%6t6#a+1vMAr!EeLM!A)~qMm5BYK
zBWnKdl<w<OgTo(%S@xDCTsX&<9QVNFfVLozJrLbj%}TR3xJ+@pVr~JL-c!hlzi|cX
zbQ|{cV<7B3V=_KIxM60`lCxj#Ze#PYP3bS%$>SE!Js;ZmCojGZ8Z|yIppo;i>-qGJ
zIV^Q^esLn{<WAo>N2qjoArdXRM{Lqewj=?!kG~X$@3X((U!mI<yuHs~a>ntQhhJ)+
zF~Ndl;@48v-Ydxw@Z_YQ!SYEUw(m{P!<beHfl_)MKq~ZlZj;Cbx(^zpb8G7jA)JT&
zhweYpipeLqNMX-kn5dQ4%}1(2L&in6AMfwH-~KYP&FD*T@RpV1$|)p=EZ-n?x(Ftj
zpZ8sewm94ctPR0kz}k?DGD0M)JVhi<ULfs)$)@G~D<c#{6yyG<jF5|CO2Bd9LnvOg
zwB)s?Q3}el;v_11E6|bj;T;1J9bqFO(XqIT!;!j~#=?%Yp0|BbF>&>^gMjo*<XE1B
zWJg9;4luEjSWsA6O8U6mzfYW6#SJ&R1iTuxFQpN*Cq!yO`tZ*H@{-+))iLb|z;Lkq
zE>5o$8+kyz#4_23a43x(GwcCS?S{$hmL0kmv)in{X-YEbB*>$!7xYW&qo!xZ^RGOB
zA=w)$rvE>61kC@|5i|!HH?q;?`RKc)_9ea=t+f!N<xoupVlTO%4nJm4DZ@#pjE$FO
zDpI4WaGDT8$;2$cFBKPOdV2OjFzQKd<|6WvyG*L+_S>ks{MlD_NCa!mYaFLQYpsKh
zOte+zzO{z?67Ba&ukblf!IsZOFpqWKsS*=;!`Cr!p0iyU0J|5IG+Wdv#47D9&vRGV
z>I0K-;Cph(kEM$VhI3AvWx1#LA1ec@f81}jsl7OZCEiqc{S3z`EwMqr>~$12oqKbR
ztM{`zHBdekU`E|`^D%WZQk#-VAEilEalv(Qi=6W-5xnu4*?MV-(vatU6_oZKCRrt8
zS8)2CEJn$tlnm6eycYRafx*=*5QUNu=x!)m`npq`BU$NP3tZ_&y1n=IMg}Ha<V)sV
zI4a%tKDCxv^t>jNMOKi2kBju0g?)g_94QWx%O~m(sNPuev18=;0Em$B{<bh4rv~aN
zMmk&cKzzPbjJYjhUyk5`e(aWIeo?qpc}JosRzSg1A%}!|qE|8m7QdU7luK75s*%^m
zed+Uyk*LkweB6<h0ZhwvO-SVMc&h}2j=kW?sq7(Qc~)^)+bW<YE2ib(!(de)PX719
zW>d$Uk=E`{t@_o=l_5@oy?j~^J!!h{z0ZlrT!M9gJvly9eWh`#$(K#_b<&}viPi6^
z<~ub*$kQ0@TB_{O|3DqWK_y1PD%Jva)6wWbXc&!WIVxJQcPm8@;n@fhF>3P6lAn8c
zIHt5&eK>BO7bRrtEa8U9nOzAG^`3DMgoO)bq~E17KoDHS_b(HQHKdi6!7~Mu8jr3U
zxlLmyw1dP&`N$%XOER36S{eay<y>A%xb!VW(#NU6Z}iJ9b;gio3aawbn(`utA>s1p
z4!-<(^Jg=`=YI_+jSA)+mb(VIJv9cpUQz_l-L~?G2ayk&Ev`-xBFxwB7B{(F>5Bh#
zI%ihc{ZXzyWa&l$o;Gi%r+sks+QyNc@7J3V^V~PrHS4&UR=X$>`>15r^GBVLZPHzh
zQr%v$hpppf=hvAY@5W?rKN8o6Gh8>lYdKHlbgXPk+xSdu|I(T1p9YVyLlTGz52Dm3
zfX==?c)%7)b(au~z+;}#B@!su`GTFfqy)t=L@*~7%r+4(N-6C?uBW8+>U9wreIoht
zj$%sK#UEKNZpSI;^BDie$xX)SL$7P}lIZ!gn301szZLJbLkF?s3?5i=Co^%(=s={t
zB_G36nOBKw`;i9rMTz*#ev$aEbeB0-s7jqcbVEfDz8zx<<@z3)DM@m9k44n%ydLdh
zUu=T@+M0mArl*Xl?Hw;Lp3^Lth44~@Mdux5(RHv^uZ$gUEEr*<g+n+Ck_GmH$V3Ua
zlZm7dZ+lh<7qpvPaW6O|l1Qd$rup%MutQR=074X&X4=u<+fYTuxuFkLZ#-}#jD(?N
zH1xGw_&lTR!zHv&uMWr3r<pC>6V%&-LX<R^<?C-nKVKM@@+M@@KTo2<5Wp}DisG+W
zG4&)Gtl)}F<r&pI^$d=tvm}AY<WNy(y#wvVSv4Y;qIwW_pdp`fC&I<3wlwZVsxwyB
zW07&?I>LsN(L1ZyE805bq6`D54n3aEx10whbU3yWfZ|Vew7|iE2v|IcLhjDWikW8Y
z3%&JH87>R8&UaH^6&fBEHsqp-`cxaEGPX1**MeA;NKtMDD+4A9cr5#eqU>rl-<)BY
zgCb@i^{7PTn8m=@5Rys}S7o}ru5WKE^((Fc)TOTr&-8CkdPxS6Lh2!AoUqK1L<k=%
zn6syB>h(*fI_KZ6wr__g8GS8{;{vPgN{4SCWQOXnOb>UxR;(JcnKC*!u2u@|#zolE
z(s?kwvlq)5xf{<^O{%7LSK#AdYM@8e%40Oioa#F;-niyKSF%UXMsD6{kX37Ue}AKM
z(yBkGMdWalT-^m3Lf3b{fL*oZ_e1uJj%Bkcsn6v~m)M6rS%EU<f2Qror=OnW#m)z0
zHk{J$B<~%IkojuN<a>TT-m&KJ((QYpiB1G>_7YTz>lA;gLdlKf-yC-t1|iH~%vdQh
z8KPkjn|L%dMho?)G&)Qy*s(&%SClh-52E%kjloo~kIu0kjC`HOR@Mdvdq>B#_byAi
z&)Xng%J5;ne)=~Tt6z(LKAn0o7kfHnc99dUO~-xHWqW1Wa*)>g-(2j4X!|rH!=72@
zUr8gL<SBJ+0!-ygAeWi1$aW#zzx392+-3aVUhIWwyD)N>VzGeIcuOn90N|6pC=*;P
zC-B=%j=MG&3jenkJC!-BhaX73s3V;Hw-@_g9U=REjtQ~CdTi%L=fAnwSJe;PHOS!E
z|K?)<)e&y}KAQ_LQK*kF{_4c>dw%c&+E)A@s?PeYsrdi<3u0`<h|w`NI>#7o(A^*)
zIgl0=kP?Y8YIL`BcSx5bR3vniA|O&CHl?DX+<ZRY?|ohO{Rf<1&UMap&ina#z8(+M
zXOI6I+M3+Dtn^15f$y}%bfhwE4y*!qdy&JXMa+fwsow4-1D~gTZE_!yU^*p(3v!(U
zV1#u%aBRPy2!z52;4W@bFM8oly*{1_)2lQ(Hg}QPIzH>&JFyaCK9G4v;JX1k1z(~_
z)p1o^^mECa=K|`)Tqt2z=9G?0L*_`uL_vb*TR*`<{kXXK5=imIfQ3PsW#;=!Z#t(`
zpx#gKHlD8U?W%^)RX+w+R+DdYykKOIXoG=sE2#X9^YUBLzq_l%Z(HBffvR_a+Kq4@
zxn5<%><9BSshX&`L{695w?pcuKu^5O|4jUR{&V!x=hazMlBhWuCo@(dOj{8H!8Ii_
z_irY2dyiGRZGxJfTx)ph9Yd@7D`rH$j4GE213ZGB1ay-RFNmX1n@7Kg`H8ziNDWa7
z_<a`b31GoDZK$*V_l<(6pCgY{2mH&SmAX`?W1<{Kk#DOv3jl}(Ij(JlEaGYKv)?44
zGwb5qb76Sy6+$A1`ZfnseoypcNB<X5Ta{I^G3$Ic7eybveQ$RD`wra!wjzAaeKRu`
zLr3$R0{fB$&%KBxkYN|GL_5-2ip<D>_G#(jq7e&=MS>d5!<Co`IEsrHJe0qh5n5>S
z5g%bX4-)c535F3{0*E4~Y~SkD|9XYoMO~;FV=HsCK0l5|UyJf9K$QD4e(-X!t!9vI
zfT`|B|0swv?2o(58bGHFuwn=GsPj<~V7DLg&T9frLiFC&U(F2!7HYt>LazL%lDYoQ
zT2+}*o88j$l=&<%7E~!(jt@-Ivn$rr(WC~)eP;__VKYTAM>fD>IGHcvhEmb16&L<D
zdyfzgZ8aLW0(pV-3?Ex+9^aD*YpsZPVs*V(#RorC{w2)dAQr{q@A98je04f|Wq+IF
zcvofC?g_fee%|U+K$&ZlldE(ma~$J=M!vFck#aIY5NvT5P}{&cZjq97nryt1`usF?
z{0Z>hp-jIHZ}~+9@Q^jH^D>P(2%`g*QJ49wnC@%I&DW8brlEvH3OVT5nZ|<{Pldjq
z;h(~6p38@GBI%q+5R)!VQU#r2aH3Z%M84xr9;X@gheRRe6rx+E$-B%_0%-LebdQt{
z+ERXVnzkhtSp?7E^0DOMk|W5azfX`G-;_={xQ5-N7hhuLKald*0xad8L!~+r?!=@;
zc3CuGAoT}nSh5O&3@-qJ=mQ`^*R$EUU~$)gQwm^VGTp1fG}VF2%m-lw7o)lr$e*bU
zP4GpN(++dMzidZGsmQi}CA7JiBl11x$HN$;IhVXTFTy<Qg<U~NW8AoBYC95yI#Reu
z)_afXq6E_}PWY~90E50b;{o@-y&#+(f?ZvhtCLAd&~9EYv#`J{!2rx|E|W_K&QF4%
zFl@i=5Lx1>M6k6s6`$~Cm^eN#qu>IzT`VH1AjDbHVo;KYDG9VFamz!b=M+|v3$4LQ
zm<oXlEfQw)j)oOF-GC+9N9}Brm4%Rpg){ISa5s@bQU~Y!{1=5ua&G>D)225dZlLHj
z85EGuSDeXUBY*L{nY6%V(mxQbIDoutU@gJIJp*t&mtsr~h*2HDBMkOSEU`Y6IKqNu
z0A<F{SQ%&v+qFtx8rVXUAs-FI87O7eT6Y`7^e=}Lpj4|OLT}xj5_t)M9p4R{+C*P6
zNN@}Q=xlNC+IkoT*hlv}=Et%3ysDnIu7;!Ud&_}CEs6p2)jjpWSi_jAWd%X|3y}l(
z;`F@{R%E8YS|C?@Eje+JVxYiMYd?ro%&N7PsPmSucG6JhIjxGZOpHBH8Q-d^160dY
z2Acp?zHYLpLG^R0*=^9#PpYbj;gEEsr0?N*ek(<&$Hxs-XvliNp4m}la~C3r1dj;9
z{NC4EYXE*JNgW2z`z6+w2h!h{U?@#i45x+Px>xkHqe18bX)AH-m13iqY62VH)<5vF
zEG5=9;3BRBbsmCJ^m0?pGqCZHj)nj3Hml1ZC?E=VYcmouE&-VIZT%n@zJ#w?Mz+ou
zTaH3oPH-7(2<zKBK!XCQARWN|YJTHUVx4)?7ej>^a@z-cbTK|>SxG>+qPZNE^|SNx
zUwgVCiEPW5`rQSgYBZhvuEXq+Rhc@tk6TcH8gyM4#6Q)@&V@+E=$2zTbtga~gr>`d
zH%u(z7{C{Dm5#K|J7Nx<*K5y(ZXud+4i70Iw^l@%wb7QRc&=OnR+~aD*$%GkEH;fX
zqu$q=DgkV!TdeAW5Mx1r-~ouyyl0%XY5-5rPN@|V%Y53zU}=wV{nKMD*E@jkl?o?y
z$qAq|uAA61zNhroE<cb5b{Ficiv2Q#{ox&Y7E(;{ZWE5e^*}pa8LTI4L)82=I6E(;
z(EI4~58ER!_}Z57RK7~ddumL1n1KOGP7|j5v5yeX&4)D(gF^`q54Y5Atn{;V@&C2p
zz1PVR36!$!x`MFP!K&3&t6_=E!nv+ovz&<!Q?$nS&GxvNTLlr%Bq0Y-#0(Eh;0ZUp
zpQL~l3<4@~TO!A{&j;Bw`*bb&3ytyza%3U~OLG78?LHeMRq(BE@p<G4yuHb5a^Z7(
zIM^Q!sdJ;tQbR;wlQBdHmSvPgG5#y5xK;^`j_E4#7^Gh(cZJ+~RAi`j|ItINsNln>
z0fMMJoBT|S^EGX3$<QMbc`TYmEFC1CeH6(ZA--$h*38BHiw7b1pxah%A{H;P&?s@X
zI)2_S)3p#afS2S*6%6}r2psPy^_Ob_btYQjiWU``(K3`HW)8nlf4c;>A<(z%FcdE$
zFbg))!C-GQDc{WR@?Ho!Jj6Ks#E;jv;bzv<mi<mOBJnld*)h%{cIcXX9I-*+U$s?F
z&R`x!k^RGYPvHl}aMmmT`gyM}E8UgP47Ey1npM2FqeRFlcB!nJ%)(KsmGvi7Ly|G=
zHzu>IIVTnykb9Hp9+ifVDz>SJa-<$DAg{?0no`4FI2m$B9?|aKTuOmS87R8@U0+6a
zmd>c8XL9?jKbc*htx1S}L8Y<ouF+%6IMbb1+M(s@uBmWho_Q7xqSm5+$42{Zu9V!W
zDx`V&gkN1q+st0uPDtk}f?i=<=V-QeK>fv2<`?$4hG(C3%s{%XCrPUnrd~CAZHK0P
zagYUTS16w$O{w0OZoTFu6GXPrZDHeBYkgL(hL1z~!W8|xuhlxW4Qj&?U1X48mqNmp
zJr&{H^g?*|$-81rJ!!DUgHzu0U65&Xi(w?2!|u)M0l)(4uYRQwzwhT+!;z&3nlRPZ
z7J5B4c7C{-Eyp(QsmltG?eF7SKb*t}J*6GX%GTkM%M8-*K*lXn-#*hBeh)+>Sl{Bq
zA2c;4vcA&td?gcm&92jNg5p?)uz9v{z2hB=_d7PS4$EBJWND^-phwpaqt1FayC$-2
zA;K=U2Vq<UmB%|-{hh2LGe~VVqf;ssrN>I?o;=mb@xQyGewjbsf3;ljH7R&0KXb|W
zLPN&jNqEJ6tV40EY^PNjISO{ye3C;gvOeU$zG}X%`0z%;4XM#cdH4?mtBotiUW~om
z`3>Z*Yx)SgaWPE!2}1c5+j8mJUgSnj@7n&zhP9l>ACaZcd~c5~zcsDgIEj3VH}<;q
z!}C+p+kb!Ge!BG*@bzs*ulLmDO-R{hhr}jyW0UdUCS0b9o_~wYd5b-2Yf*8Fb99S$
zV~hVE+4OV^b!A(~dAp)+OQdXDVsu-I(L=1wVm=K4O`J2jyz?&PHf}WXv+m9}UBsc{
zozEUSpF999Ps87Qx%vCa#^osaPYFBnojVpUclUJFR4sPJ0aBX(Hf7tSe%A}%s}JB+
z0`Wf$MB4_^>Vm{MrmyMk$%O8L*!R920!%|8%I^!+y!L1XgKFz9zO_MNjEIOUK|iX`
z-xDc8nzX^31x?Ij!PjX;Qk_?|7T&#P(Q~K$062N~IWJ5E4tgLHKa-!Q5DRSf3at89
zJWUg#e7x@x9-PML(R78ilpi!gwk~AcBK#~AtBiDIiQ0J@R{t~X-->OH?LDph`v;Zx
z9=yLdAroFhi)cUi)c6x%^EF)5_WncL`+Z)Y>F4f0`^h#V8o^NaW#jpm*}f~gj9=@w
zBPd>Chkfn7jO;2fw?TfydZ>U(y8N(d<fptaPAT<%8If~mk%|pAU^}AAKiKx}!3ZEr
z-{!z&``}FBn<Ma$#w+A7%Kb2k-Z<|YVRiFV^n-g~oNQK%hzfxvj3Agre1ymt!JLm!
zO$mv;rDH#xE>%Bbn21?veTnQRpzRRSQ``~)h^yr<Bu=$%LSxk+2#)e+`DGWc_qR*v
zqi@dYXU-P&5+b&;2TqQ3*V_?i;EWOnZhW+d)48xmw7i$gVaVW#PX1ws7MGmz_tQ6i
z=7lC!Bt;Ea@^$6pY{=aiW!4*<Vz&h$zkbhw4*J{iIk9(I^)lG+oJI!f*US1QYQ?=s
za9b-G8k&<Nv8#|k79`)9sy6+RYhLq;z$AIs-xGp}N2H{x{v_C5l7(Q({qnh|c1aBl
z$;{;BXqV$5m!u?a;H)^qfLThoTPpbr+qFB0)se_Y(ec~wQ!K)Mng=8|dY_-2HT<5D
z`<r3+mr|}e-wx~Ll=AZeyvR^oXG&TXV5XMrIn-|@v4FmrsqbCYYV`*!-1+&&<?rK1
z$*-9pOrY2}Dr%e{4GmRXT6%mkO$I16mpKPS%fgtEKuXR_qhZd@VZk8^>l+JOTd6AJ
zYTMFji0PfVX&tfE)EUif^|WbBI3fqOduDd-`3uVY!s62M%UN~J)wOj^5HD_PTPjU>
zyCwF2)n;F$yM!*xW-@&s^q;e{ID|M&FkovMz`z)*K8y@XrqR%o*Sw^;MWjGD=h(3H
zKmFk`9Gn>55>NOR8jj<>#L~!OHK`}BN<n3|Tg-aMiq1bc4_d69^$^2Pg2XziAL4uV
zUr*>kXa;nV5<e`%+xL()?0>$a-DP+OHTb=GA+BaLs&stDlmkj7xLy<eWTdt>y;Lm>
zx67bPsN!ef;^e+YVm76Lj5l`Q=F_$&tLrh@lWrI`=)l0@lLqd_r{7$y@BhhXNS%>*
z2*wE+Hv`b?sVoEbI%N;qwdrYP#vfOxLmu?|n-ww0oE7B(n{prhrP+{bLu<$S?Yx{T
zF^^l1mh4Arc!%`wjz-gR_^;nN^7za?a=Iz@SMSHG?V%&*yid1258aoomn(be|AJ)V
z;e2H)ZO7QQLV@L_ok!&30vE!EzV)z^($H%}GCs`Y96F7|Y9@~N*f9CUD!+mR#o8ql
zd8Xq%lI@7pyM-1<%icR_%6knr(q0EGnuxGiccfFXEbXdOp(1P3VKjteA`sOm0)QE-
zkU{j1AcXOJ$3XEkYMdiVolfioGyxIM1uS}|>0`i9^98(yynAs{U2z-<o~d7_0In-c
zpETby6z|DiOcGAr)P&ZkWUtxAQZo0e(ljUQs=0Ml#j9W3vTwu}Iqz&Et)Xth`Jj1B
z0RR)GuHOiHQ2b6eGsH(yP*3E;g|DLmUIW9zcUJQ5b&`p>;!n)SfGv+PMv_K~1`|0J
z+1#;6h6<rtIkXrH2Tk6}s)xKtt~&IbiWe%W4wLEF`~>8inriLC5&nGa0lAlO*JaAY
za(BH5y3n#QD_^YsV`Z$q4t&s6iiORX9*pa&L&ZT^k*3&o;M)XHbIW~d75A*U`Ga*&
z;Y+-SlYN|o4lorN4GxW!@&gQxCHTobNsEYh*V4_4jHMIDd>~P@c}A)u6nCWjrr`oe
zxyQwyjj{4Pp=Z8%S3g|}e3G+UEZ#oqTk!CLto!NvW7}7LU*{P5xIV`JwL}Y%F_hs{
zG8Ip%f09V~l*rImL%^N!AQ*UOAyw(?=}xB0V)aFp$Nr8avv)(f@e_Z>V*R_7KRzhX
zk}><aDEe&TC7}~ha%EuRU5)b+p{3hubS)j3gMeljMO91Qe_T|nZ_PRMLw&5hl2L-Q
z;f4zeug+9<*~>SRe%|aw&T+dv)5uBo^wG$V{=)Q~h6+~HZ)ZkkP)t*7&5M8a)rvVP
zHLf2br$5J$PW+mtuur}^cB%k_o)anr$>ddS2z;u7g@(&1!u&>d@W2fYx_fw8nfF=L
z*j;9+!V<}U9?9Fw>4=a0)>I-$2B@x=%ZL7oce<iL)@_+s_-+MYw}6iC$#mi@hFQ?u
zozcDVhPhzom=slAUo~G1^G8lTrdN9P_s_n?8>aAnC{q^U{D-+`L6yL8eT&Si=$m|n
zz8d$nPm+5-gXYX?6T*28(LtJy#|Ji-06vPQ%CVqmmgH$*1zF>|EpUI)=2ZI23n*r1
zeJA_W8X-{wgI~t!fg7B0awlQ{Mf-H6kNP@dPnXI$a9KgJ-Wp=gnS&E>Ep&ePB+!mR
zWSZTi{?$P62=U=s=&%H|QSE7p9TLmwGvtQX-|aJIPOo^=p>yzMMi2A=OuJh6zr-57
z76XW1TO(q%hDyomak8(oyp`DXya?TEM9YuTVhl?#aX!~+-M|GznUJ>Kk!xo8WCo3`
zpGLGf#u&5!$gSXdm&;pa3M3(E;xVb|o)qS1xTQ+?caruHEivU{KT{|oPA2CyXd&)h
z@?yn4j4uXs4j1fjL7Ry9@N>_ncjuIutPA1dIK^|R)8W#>d2}ILx>{U1_38aS=#S6n
zb2~1^m&TCjil!7pO|4od_eP^E3C`^NAUJNh!Q{<#dc6fyIlgk`_>5~j-Hq7XMwV!`
zcD2b0@39aQr-oDvq~^F0>p|*S)R&9<ZRjVONG2_Ai2DZ9a|l-NYl*(PDu&NKdzoiV
zwV=ve2^{WOq2CCCbZ{leO4ieeBK<M?ag`+JH@D!`eA*D_O~R_%L*cpo&t8w8jzn+&
zDCs6|;No~@eBq%iPj!$Hw{a3PGVg;l-Kgo$KCHhLx|8v8(NBms#s(<W0LLA?X9WHx
zRcW5b(>!n4ac3>Apndn)Ih9Tp;8FQzPO%y+><^@eSXnfZtVh!i-9&yLZJZFT$wAZm
zxPxYwf4Wa=K@i|Q*e80yzuNezrZ(m5r+T)4d=fmrLr76|QUn|J=*xXSG>$j@lba@<
z<CJviN+2EQOkp9x-Vbg1c~dSvY<y+py^z$Uw`^a$vNXzcLm#baL=X1W4D4evtXkae
zuQmVyQNT2N*AknEF#mtGpDr^s@BD|3pyb<<p$Ni!^}X$qOFdV`ul`>3(YvWF{{*08
z$6Cr1xm>*PM!*o4$l<MfEKxMw6>FUW5RSMPVtjYfc?9RaNLN$W1k=>T7^Ruq7+*ZE
zVKGeCRd}zuc<&mKMV;CclVVw7Us^qWY)0F;``E%wI+x}M-Y9wv{M3J>YRMd|iY%JJ
zWzt~0)0z`VUY@uLYPo%NY7$%Q*udA7XHUMP6P!NlYoTji=)cC5@qO_zs#s+Tp)&Lg
zPF7Sxyq>-t*Zf6FDRhxo57p+1dnHZae6TRQo3Gd-yZlve_RrF6=9pC~^TiK@)>g50
z+{8Su|J~}fryuKpL(FGi{bcXMX`{(a(9tKIukB+51gQFskEF7ds<y#>M=5c<3`92$
zKZDYk0<Y3<(~fEx$v32n|5LOz)114SEGvqJdHtxXqKcrV$*Q{&?A1cPp3#3!M$utn
z=Ziw9RPShS6jpv;3@F7h5eTb-gly>MI<xK1A9?l`KBj%+Zx_jbDvqP3b@wBOapg2>
z)mP|pXDuo7f@iZ1+QCgjT+yPheq3#zdSAoNW^cmu<ESB($lU!{A}#a`d*wum%Weo!
zdVWb-J8&PoR>BUt|Hmb71+v)Q%`9Tx(ez0*X(^N}Vg8fp+nW3*tJ5Xs0f9;AlUVNJ
ztkE9@$zRb#0fyipZJ~mPQRm}=8jr7(!+T#yd<~Y3^giW3O%B!mRc&!IxRRH(#dZTd
zdX;ow%eAjKSOST<lC*L|lj^ak9Y_bp_d{PdlmH1M=s#uPnGY{L@g)B^*J`Ygj7JJA
zW9cxN7(O_-)775yB_E)do@>Q~m(#?zhn_>3&Tfwo+!vaQ1XcP&5xdL`Isi;Rv%H=C
zhz^}XSS*Jdiy~*N<1SXl2EAV`IN+}>svlz!A5Eb|ZRQ33JBDnqX{j|hvlPbDnu}i+
z1$;x_pWg%>;hgK0=v+v24*J$h+IE|h0dd-3(p|u)F2t?y=9PFxMvQ#m4x!LLLF5!+
zq3bc1NfZl6?5|1$9RQt$Tya*3YkK~~Q!~O8Jq<JOM{}_}Z<TnWXZopGLLnn5OfbSb
zLA3B@PJg1IXW-ZRTRsry%zlqj{RC`*U<@q-CiDIq4n_Z!b4cK+*_0*eiXOpJ$CK`&
zX**?CXsxm-3g-0(icy%EkwBhJxGnnn^#*e(aw;tzg9RjLpuytiz-_VgDU^^ff!%SJ
zNYmlMc>v(Z^xLS5$|k0(^ha)p;kK017kh8u0KlNWq<l|(sM3G+ZvOXlX~dZ^nbh|(
zfxjTxm6`NDnbbX*QtFv(KFnLS8QYv0x%xt&MW8ko_Ie7qMgqRshZJS`2;a*VH{eHd
zIir29F6gKIBD?pA#1HBwI=u%V4nS4997P53$#x*bW=>JSMLPv7^&h<(=<EhV!2Ew)
zZXh(_YG1C&uUw1kxq5W)TF$JudkOa^&IJ~GV@U5^x31;cez3w&(ytEKrz63$`>ECa
z99VL$DP7*>>a=xlM9}Nh7y3!hJeBz}d2Z7c$RZ1J|3?j10VgTv`EfBmXDtl*B@vaB
zjbGv5SOj7L!Dd@U-ps|OazVL1dHKII@B9J;G@2Bu6#mODaClZw?2{d>QV=X&G6PRr
zgn(|v=6ow4Wgq1kG?oy5!5d%akHB+K;=o!w;JHf95i`3Q-F?p_b~&W?CkQwpsc=l0
zZXqfCMUv&@MWd#uEbAd*dWthOAM{UO;>GuyuL_Y=>g-zw`G+x)GxORs*O}gU*>`H<
zzaBWu9F#l#%-EPJe>ATxLpaY&rw|p#E;D9wNwb>@F3BPWU0Z}Jjv6c3KQd-^S8}Yf
zg*{1_rNC!mq<;D^O)08=vW1-fs^aMsXs6XYF0yHE$Pv2+fMkO--$Pz<dbJRMtgMXE
z1gZa3y%9vR#2BauNGUi_&fMZ^UyaG{nxcS6y<(29`IR^BRsR!2$zwow_nEDIYnd!S
zZ^CN&g)F~um3LRvnnG*&=Bs|uRo`8uXCm;af7H1B8{qFNl>Znsi?hz{sIzT~iu}kd
z-&CHfk6*0y#ULRx>W$bj?hQ@@D^*6n-}pFg#(<9vTY&Q1shZH$TI|QFYzfYcL3%-V
zr{8S%1iWgtGtX-R!<!C&HIkW|Ry?XXP%TF>+`}*FTei5pSNRCZ+$1G}tY%9ZTg}Jo
ztuMI+J~uLC5ULh80sKYi^<+9+R$U>yjqVgcquaW#%J9(_|EcN5#&0OqNo$G@>j{(r
z2gF%vq6I7NFXLgmtMX?b+kZh#X<q_aGdoz}9bJ@01|FW<#f*O5Z8g}AHSP?ynG{>L
z&dzNMTDT9uh=UT?UUlH0egh!l5F}V)&1dOAbwV$N@6=50w72e{pvt}t+I__6&*Nd<
z`dzc?0H_)eq}BQ=yj%Yh{p(@_gSBqcKi%dIsfkGEVfh4mT#tlLk4hjwp3>u7(y2V&
zsYpEUNu#Lc3iVnvmw8JHxEnz{OL|kTLD>QbjGH~qH@p2y`aTSFhp+WT{plk(Fzn$$
zd;}o>Cg?P<7pLBzkkZeX(tT4>Al9Kjv7|qTZ6HQ1sPH~R&RTzd$v_qwh=C(;<cAga
z2OEZP5ha5yYlCeLtt?28_Rc-}A#|tO5TE&w!3;36&$Nrjd*J4^;Xi|(io?}EhPsW0
zQ>_3<GH9=An8GvC-7&b}F!J*L$V$n`>d?sg+Q`PAkqoVoO|{Wohta+Jqx&VJABRRi
zOEPS)jUMnkI#PRd;_&Fl{YR%m=x-$#Y}!Zv{yYNkUcht7rbCaYBFK;jWau!Ne*K(G
z=SRNyyG8?gv*Lii4ShHwJQ09yB@oCug^o8fzqMnGPU=F}JEpQdMwyX2JLu1e;}VBY
z$ffq>S_9uKXkw)%ct4XbtxxP4jVv!o^5H9tE;{C!DSv6NY89xwc{-^p%7WrmSsSBw
z>J8@)B7<(UnWmzxQa!1VGBY|bBw0AgGG*5SB%I0R>1fd43KBecl4MTrjh#%02jR|`
zQ05?h^)9h2XZJ2)VK@kI1K`gK+Vg*U<-t_)>_{`u#Vsz5+UszzjC2Z!H%P6@Nu?`l
zK`$xMl^O>zZb}wA#wjj5?lyl+B{bbK^h|MldN%WMP<GUz>-6mAbSnBB^rw$;evzKH
zOIVV^IMS?q)7W5BBxCRxgvI#qk71vyGszi)`?8q#<LR)Qpg(Z7Y^Bze;koroqs^bL
z*Qx`$Pw27m#{~&$#P8FF>(F<z&-bJRsB2OLB2vE$<GN=({)LZxk3j#4aQWnCetc<W
z%y{nGFwPaoV0zD4-#CTVZZ^ImlnT$410dAyLvJS*6eZ9_8qXDIGDQZKz2RLzNsmN)
z0;Uddd=x6J+oDVAfXr`JwgP5Km*^5H3!UVJ3W7$_<~Vz$25E0`xSy`DVxe{OVZZ-U
zJV1jPfTQYg!u_R_`NG@@>}EoW{4`#AmubP+v0y4)RzsoVuRNdCfB|hMVY{76{TJg+
zBpubk@>~U-g5Bc9cEbqaWe-I$9{I|`31%a>==Nq&DQ(Fj7{Fz<j0`obHh&p@c{z-4
ziS4t~Lz|fVitN8Y{m@c5zJ%qB%oT63rR~=%|F#p@Dr_{dJ}h`nL@BdtA3cxsYY;yA
zmz&;7{1n=0t+%u<;uGj;F&h{qxIIs&OuHysC&6gVv~P}_m4i&p3H*@bqd4*n5$@8=
zhc8Crst!5wEcuOG5zkanc?TYO0bGL9A`p=H3?DD=HblVf>WV9SUCW#A%zUo`Yc{Sk
zzCVB<0(0DA%00K}so)&sP6-L@#yN#6ff@NP@C|d-`T8F@e(-Y?sO!z>EhN#kPKX81
zXud9QuC&~mm4p-dslk`9w6R*L^y~80Grp}uK5lpyCBvU`YZCc-tM_lG*fC}8Vb~7K
z2H*2wekLq;6@j<(Bc*Wxl8A{FU}kBYqknXKyOI*}oi^zQ%|f5kJDavXqh@ve&+-kH
zaxORg(}mUzhJ}5<faEDG*N)%aoRDW^Rj|5&$XI|T)X(=ODE_KatQl8u;>Snc#b7}j
z;tMk0SY-Q&LPgnoemO=U#gLgztT;d(Tdm|+CT#vtswH5-ZBf>QRmuHW((A6z^tjX?
z1z4Q?{t*^)0&?j}mi>(qCOzMaaaK-zs8F|XuHam@f41^InicPU1?XuydH3rUadA&l
zOD>)9Lr|kqNt9xH`m3BMSs$(ZLck6bl;{DL8qcO6SD0UXjqB!@?3Dq`w8==3KZacq
z4lf%E-A&L084w#pcOEaInDg8&&HcuJr!*ZI$lO=;-r4^92FU0(YBm?)RP_;B6Ii_j
zWWB;+Del|d8e*-Tf7i*aiS_R=j6+s02<J>=#vSj@7fZFzo_lG4;v^@ek<S-Uw+1!n
z*4~TPtr0xr2s9M=rY(|nl}F>7+!q~CjlNKZ7SHZBUvB=b9|w{N?s<UYV4SLe+09rX
z%+g(Gxh8;vX&-y8)1`C2k!3b4=qPUC{7~!B;hg%Hp5MA>IUwW(H5v-8tvK0ue)uu=
zAgtz4;KU3c&3&8m#k8FIZPX>B4d}Zo5hHsy02AJ9|4`k02g#34y%Y~P7l8g}Fhd=P
zF(TlncB`9deEdrdaavoCW!b%oYhB&P{KAXNJ2nP7Hko`rs5=&?IHfY#YvIB($eIQ|
zZTXz57Z?6MO2|}TVrJ?z+h(Pt16tLunYW!oTy^M#M4IWp+uY4LYs|1JKi_^;BtgJF
zh^sTT5qPbkAlw^$6D(~js}R}r$h<*-!M)t(j0#_*QLtqW`k4I(Wd4hdo$oyp>-xX5
z#Yfg)hW`|8X>lyEB#<CZj8phrP98<1lI0_E;+T?3O87+NWf&hkK;me{<%&sIVHOrP
zK5X^_mb&V`{(-@v;gQit<gxLI$;VHgPCc9cpU`$jUGpNe)db=4iD+?|UTNI+PAaJf
zF(EHF%7?3p#Ub}_``src!q}t~nh}g}-@gD=f~F&ko{A<OEy@^Qq1UHN(bv9FTEQ+8
zsMFu~fw!J!m1-oj&xpn#Oh^XncWN$xVr6B%)l$%)MaO}0n`GS`ds&k?=v||2El~+b
zt(E}X3MFx9#6no_t;gjqY9=t!n&?mkSPz8~Lr^S*`Y4^0Uq9yey|TB>H53CrUJ}PQ
zkLSIEAZh|A-skOQCE@&>+5m4TJMpu#aKSanr$drFFj9$C3!y%ux+(SZ5~Y<<*1f_X
zsW=IvZCJbJ4M<f_W*;_;kDb4hr=!6{F#OKd+V|}(ITj{hI^2J_GnMnLIOIz)fdkDV
z&i5JhIQG-Z*vs!y#(Zj_B&j=hR<qP>3t|lso53-<aTZ_RX82MB9aC19JH4Wn(QdQl
zeLVzD8Tr>*&M2|rj#7!i$pafZt#|cr!QX1)A#{JAofIPfr)b;H601XG){Uhdq5$9)
zI8NbB=~^;iB8g1#a=DdMlsJ|0K)<0pq=$Fvt=Hz5mTg2yp$E!-pRTG5z&QB0G7*^^
zwssy?a@sF|Qap;^ks%0MZkvfg{a29UV#=iaS3Z4wCd3Ydtz3Zwu`yCo&^?z2FHQFM
zq~jqf$v_+)Num!^cx@yd`@zx>+C#5QqPK+-Kz{EOn%3(cgnax^Uy&g3v7rY0%25H7
z+rf@ntc7aH7>@l)2_1<*@H=&i^lWLJ)46HVk64GMT-5F~E$Q0B^PY*JPV9{c+3A*>
zA_IX{xl}0ak{RecJC?1huc25UR>+9`f<#Xp2-jXZw6QB1=+9)f_2sXXM*X*+OHXq{
zs(Hvc=$qEF4NGa%my;C#EZ2D*Kh)gwSetgxnFOSd6gHDK*b9_uZXP-N!*Tu?lqyah
zB0eapuB7_p#xYf0GjzK)mPFr%iTPTUE5W3`DNj{vU4fD1p);IrD!erH)hKzdLA=pi
zPx||kwe79%%TtBn5{d(JDE;O_@(0`WAYn~%If*iz(yII1s`tj7X2TpX_EH#j)zG4%
zd834vj3pHK?Q{5uyZf<;?B;=5b%A$&{y<{Rek-B8?i|J3OQA<7zKfk=2t~bra=i^u
zn7J>LmV4f~imZ`-PDeEZ+EIFk7`U}eu7QoNt;O*$a!kB_kgFt0s<*x0lrevK>D{h}
zj4G;jt!!#9jsg28do(VI^h~UT>lT#S>Z-xLuH@*W;%dF<*Sqo8-T$4h4D3Eg0m^Qs
zKcnPXrRYC&8DFVFrmQ3Y@<kwnt=>vz6U88oDKd@fK@6NN;ic(2A%wvukTYzoiHZ#3
z^4|n7k_q%|B48$G0JR6~=~J4@UZ;*$*Ca7PT2nhku7yln44Dj;I3RKfna7ue%}K{i
zCC%hjfEXLpp>9t#n26?a^uDw(&7~MlZ9M=@W)>AACFahBI`Kcf-tB-flNETp8;jn#
zHA)gRiKOAo1VA*8^BJQsacDm}dSxV#et2Hil@|?}o?^Ilp$q$>%>UCov>;;uPs6Fd
z4a0A8@P9X<k;9L<>iYwoIhm6T-M1@^NxCs_#?#Gacg`jB@3Dwm&L=-wO!px5CrORt
zQ=Bf9H3jxh@GDNI`RAhfV6S7eM7k`!F40LGHYA&g1SDzgPyrn^KwA3hSA^A^imZFP
zG^ALQi5P<9>O9bPbHAi1S6_}<`~n>-pG&Xlg`=%PYq#Jt5&N5$zUk#T-I}Bl%!bVA
zTCm~f33sX*)u}N6A}1MHoSIzm-=eMkN!4T#{w|G04A(rKMhHJAq=^9s>}J}Nsx+X;
zOb9#96fV8=7#1s9n%mZ0x83j4q}!muJ&gC3$y?TyLP~SPgW0%v^<a$Jfb8O+K+t}J
zvL^=g=+Y*Sg!ClhOR!-}1+HFdt}t2moO#Ja`9gM}Ookb&bJj0x)-Z9^=v}YiE5IgT
znpkLIC^$G<ip7~Ib`u57eAV(55=!G81G$1E-X_s<7$}e`B=CzJfx&Dh(jOcuxtFKA
zrmL+Lri~wCmmC}w>g{hm1Bd^%(tdEQ-PhyOGw9H((QWJ6{JGCom9MNuIllx;HokJP
zs*^t8(&;M+o;93`b?kp0!rOD%z&+APrBBtC<LFbI=XLyRlY@t~z?_eIz>*7eDk}{Z
zu48DTN>or~sQw?MtxKx!k_wlW1Mtm^syagN5w&q#y!nm`#o!5f5J?8Vl!wwDaHJex
zBFCmxx-1x1kikVAv3KSP=Tu+E0ZfE)*-OTSw8mkqQeqAe!ZM6nzJF|d<v<!h@8+Vt
zN#=TzXasq1!<1k*nFQ!aRoZehWBA3P$3K~I$6}YJy#LN>At6^3aFsT5MVtWgPl++!
z6*sHkvu$htAEYgp^3R?pMbzuv3g=adVub}IkrseAHGV;NpTx%>@xBGmZoVMA>;mxt
zywwwnUXV<?t2m_Ran%wp?t9{7gaBZ8#Ljp&BL~C(R&^Vva3wnb(UARKYA{tO=QClr
za+iF&K?VS^GY9!KaXX0U$Bg#R?%Ov1entL|hRnpzw3D0X@&8Ll2%*Z5{^IL!{%3XN
z`F}lRc&nlR7mqOVOYs7a@HJ%U&zpnvpN-4X|D_|GKELpgrSXQFnSjvnpg_!l+c)-g
z4kUb2j{gA2wmQglLED|w!<e}XMR4%0G|9=drKEoP{LBWeoXQpj%lK3ULJG)}sh>BJ
z%!aqm(l6);jP$;&0BYqIzi6Y5FUBCB`W_U1s8<}nt^s%Alp%b_<Yt55Et|Dd7<D?s
zj!A?F`oqxvv|L9Uto1F3l{<8EUT^HXV;El}4syRN{&`Btd*1hIZ>b@H&O~OrH&3nF
zRp<Uww0*z5hMHn$0J#Ktiq%r1Pibgh(p)m#JYzr4h<-AsEO!r|JHi>aDgnWNO_^HT
z`RZV+dc}_ScS}yx6ET45ONnyfdD!U*gK1>_rFQz&p^n25$gmOJixf5z4Yj0t?kBxN
z>?5A@Q@Q%SAK^JV#SO{t{4y$6MHM35GZS`O9v;ien5C8~XwfW3v*P-%CO>42J<ClT
ziD=J&on-v;-8_#v&3k<0AQjEA&ZaI7HH&CKpPvKvZ%^xCb1qJ06ecP-uqVKgsUGH{
z$$i#``9>j7nS1?*?TS%E*fDc9#Ke*B^=HaBiV&|TnlT{-Jf0HB1Ue>908|-Div&h@
z#c&kH?A}mB<p=i15JS+W&_x6zfcU`woEWeW8@Hq)#U7`f5F>p`^pvM#=!ac2UvFvy
zbhn7KN+z^nSW^;2s1Twp23UU|+it6VIuX~mNxTM$AA`rrd&ltUtJrb^X%lty^f~>#
zV|!{aeys6>{?R)V@kyD{=7H*4L5ausVE6qSPKA)$%3>r=Lbh^Jsv_ZK6)O(Uq8h_U
z+_J_V$U*lAxQ;OFJ4PfyOkSOpw}U0SE16zUJYy4Jcd?17rGn8D%ZSy<KwPW11|q~=
zE1wE3wX-arg0XDUiFV1Z9s+E)K!1<eCQp^x^cjC1VMlG*Z_((I?SLL$fMsjT=cKr1
z56dQ6)wPwhxBB3%Q+Olg+^TO9v2!3dtIYVR(1dm~slrQ<rP6j)Lx!e9`^%(7VMEdo
zF=bDTaqN_R<J98g6fy&oekT|iFPt$qg`6l%`c)`L&72mCNu%_je*!a~#_D{q%iwRc
zU6@a)@<?td%<^I5tRrN2S4lHH%-mGQJ@(3BNP--TF@6u@;wehXsm{4-kfeJr*UK{r
zUl_tE##}tlDxMj>E(WGMVff_@{2Fjy*^7`NWGUCchT4SEALYf0=9hw@7pMx>3JvIu
zynlB+YBSZpU_i`pO*wOAyP$%LZffo|r7tXbESS7RMF<}mB#%N$`6ETlZ_)sOqxIra
za9;*<sEJ0tE7y6F>|N;_auJ4g1rgUZgW1v<@rCp@An$tszIR#zdqt64#l@InjCpZ=
zQE~AF@DzV#bi6R#ATL@xPljAFv?=KG+Cq+izOYp`KGg{;;`xFIh)1~vBtdA%#T6e+
zstk(Hwm=hf;HK;9eO#E7M#9i*G4l@>SOr*CBVEojzI>m2=oV-y$tdiZ#w)IpIC!DQ
zy~MlM3!>r*zI5cVQu1DFVc&5TK6)+otAJ<Px}4TFLW*1w3olFiRk$Hkl<QO4o>Zzo
zP|0iPVramI^^cFoLM|V&_fQN-NIT5MGEAKmtu-tM9K)bk1@h#t3BXJEDjtfOs1--r
zvH%O&&q2J$YFZXm=`mF->LA0x8X<tF6v?Ujl$Bdl2)i0BzzU|#<tfaEX(pq;RH)Ef
zL8PiBb}e8J=+w1TxipzCzMXZ$mUTCq1b^8<YP@Syh*bk*wpfZns34baKr(9jIu)hb
z`(tfDGTkl1YWI(vA*`w=*7X5{d|}D3c)3~)-Rhleju=wI%h*Pcd2O3QHV9Dj=(wuv
zcOn&cqi8W!mH=!Ubn70gD}`Q@ooI~nZz?rR&huqdV6E$4tt4}|Fr8Fhl<sSk8bs$=
z={3bxLcM*LLBlqz*9}B2{jwZ5l-nj=!~vf3^>w!wSkE4Vy1ujOOl!~nR@lvM+r^%%
zm^H!VD~t~-TwaC49@|2DfFSA|*tVhC+bU_<18KG$(03y2k1y(PG30z&G6~sHu@jAX
zXS>%FS&cU!W+Fpl6rUJ!-V$uRZP~H=8~zX40aNR!{@4LJX#3LD!eV4|s0uw^HS@Lt
z2|Bb2fZL{tCT}KSgoYMFPtKx3OW_J}Y)VJSF;*)DLZ=25<FS*L#LG*znDg|&v|C&r
zvh8*1uOz}wc0j7i_CXdAD#X_0ai)KGQj$8mV`Ws1rD8yGkKjX%Qh(OG0G7gej-i0i
z$FwYK7?$CVPO(ld=N_vh0ITp=uU04LP9`GDMviT#!C$cN?z~K~CFk{_bGj^h4H=Zz
zf@=?v*n3k_STBYnxmheuvR;FBz-_B{$h@z3i&N4X@pqD|?N8K6s3aJglXH_3T*X;+
zzpqGQC_|DXe{3*sX~^>a@Dz`NwSxwBT>pnRYPYuMs48~DcPRbPL8IzM(t*$rLFmEe
zh+~%E1Gw;(McV++hzo6BEJZNbP57RrfHRg!owk?V0j3EN4q>eiv=mGx3J$4{MoT6{
z9-*bPApdR-I%*1s5Jg`YwQ9Kb?&)-{{jrf}xrl%v0D8d)tl(W#KL=`5w@>o3gK(&u
z>ibWy@FU^ZMu`50kB(B9kh7gHn;$lYk8i|^fIp2V^>=`Wh0(+3<h<;0p3kDs942)?
zi_hE?|2;12<32Ie0ebuk=KM)+kl4z0LvHv0a~)d_lQ-jBY}|v5+!@lvF3L@!`DyRQ
zF1bNoFTh+Pn%`!(E2zqZDMIf=a0N_<A6yI>B_%yBiHk@*8AQs0Y-CwdWsP`E>@Pt=
zTjVfW_t>;#B2&}k(F4RY7|N=rJw+{ict9Wr)3c_CjvXS-nqXE{0?+P&@~8K+>%chk
zfxA*I5tH4HGmkrmJLJtK@>IPX(=})>ZCk(w#AZ)3FGW3@x#^fv(meb6>0??v+pIj~
z`65|#XLx|pM%n~@xO?dpSh@U0Z8coQU&thyWeyP3FgS58iPM;!N`>sTK=!2+OOH7}
z`^gMd%~7iLSKSqxaxS6oO%XF^XzrTp#Hk$4s(d_~`ynNHy51b~nS3~LrON(AVtmMv
z)aA;Lvy$RQ1Ikdfp%+T2B3n7n)gHXykWN_hV}9c}_f>15_iO?4mtIlN<Yk-*Ey198
z67)d33i(DqT?{N<VXpaQW?6DNXWUROZfR=5=+aW@mCK~yR1u56YF0t19YNSTY<hQt
zW`~AhE2%OGlcrCPO)0rc^45miL8+^FQ=ghqGZW71(#B8MwL_^))q3<IPxOjbbpuA0
zgLk!OYxE*^_2dBhZrZx^Ri;naGM64a^ve~_6f(%IIfwV(T`cN0$T2kXTzoabW=FX7
z>KEZv+^rR2P+YR~OD3ne{hKNhAVZH4L$62{z?av-t%iDhYjFnPYfd`0xW{z5i){px
zp$F0R#%ql=P#+Uhzgz1u(t!F%W1{*?V<9s+r#CN46&zwEIws)Xv+Yur?Tn~8O=r8`
z#d3JrFJUGn%4#?8we~I4*8kkCb%L!8fcDoOt9m0G^6BRvZ@+v|Ya1c#G}2@367QhW
z<(RH)^B}XDI`{3(Wt-x67rrptGm;zd*nY6}EgG>EEx(m(v$et2f8M$V9DUow;4GkJ
zx04AnlV97IvrE@usa?i1UTK?K-ePN83l`p{Qa^VP-dK5g77V^}{Zr)i1$U<hI@iC<
zS^OB8mrsSQnJ|u1FT{B}@{BsrK8Mf7?}kx3T{TtJa(3d4dgJcAr%>>wwXR*FuD2gk
z_@ct&HWm-qb5#m~1%D+l>yA9_a4+n^_nSu-4Aw@1#khaq`4U_st@e5M_U?1G9!|K6
z?7_r)nWRGA-)h@G9@|eMzn`JFW7z2p*xh}?9+j|s9L9fqVCo+A)!lRBW81$_?{vRD
zb1$L#*YNKC6&kPNKexLXm)rk+BJ+Q)*uIlF>r+PKTVtxwfBROhrw<Ofe^4j!<eyKa
z$mf?)UsnF{Oq#+_nKy@QEJk~8b?M%W+P~djcYc#^bN}_|*UuYYXP7^I<^Ohc<=cr&
z%bN4I)3R^BN5B23Q_wg7U)cm-g;RAs|3(vi04YCM^OVqlA25CcYg8PtTs>rSIV5{Z
z0L~9UcMf^q9`c_bx_e4+e><>!7+8Y})W4S4X)!QP_P;p4$cP3!W2EOTfQf|CD`dcw
zGGJm#7Gh>lsSJqP9ZdKY7m*BJm2aMMW&sw*8R7>gX6+v)Er4H^6U>>u>o6VVh#jH7
zf#bG-7O#P*WgY|)B)kc9O1WQ(4Jjf2SPR`4CI^{%bxk6Jt@VCRY({yI=)=o<|6Y!^
z-T48#zp?k;$*0fz4L5IO2Jh{kAp!5jg1pW{NAN$xX%*t}Ai>OE98)=OkUzBaLCnfx
zd<2m9Ti9MaQxFG;)(ucB0BX7bb>7K!yn3XY=p3Br{OtDqA#)QmGq9X_bdpP_w8R;O
z@=Q85$X_<OSm`)Z>1_Kaeaee;TfI}iul8LW8c$r}>gr*P{(noV{yYWz>xZ8`V*Y!&
zeKuEdKUNe}nIZCsBcfmkhW{h}x@X`5kW}e<lQGk_<3WNn0D=*clc5DAl9G}xcnHZP
ztPC10hQaY?B(mTVipt6>{(lWwd&h-_th-EIv;WHA&|sph3{4`Hlyn^y-GE?9q{WKY
z@ZlIMpO!E8fEdqld}XWaO)^3q2;5BftD+LbO5#?vuw3WYs)Nrz+BPbVE5HBj+3y0R
zCo9gmG(=WYai6H~SVP%Uyz!XY=M~KtHCA^NT<ZY<B%Lhit3h-mSqT&9Fc-`maou$6
zGvy?b_CU}BsgLW=9@f7oSC56}1xs?YJAp3E?oYNLQDBx?VU#&R7Xqens{+Y^i@UX$
z`7L^quYG#jWc$$6Lj-YQFY{y_NxMI#zNXDI4qf5MAvjxcdQ%;{BgZ%OXoZw@aEj7z
zlC3`Q^XK)IKCQPve81~oVEt~S;FG6m_kcXGB?o~p{cEw}Vnv1Q5P?7R2kKA>8AJ98
zzOU<*pEI}drZsfiEtT7(1eZ!2y19DK=(h1}_4;n7RyRkw+cIl()NdE3-MhFEo0YcQ
z?9EQtAKK5Y<kqJy&1>n%89FM-0<b@Snza@fL=>q%ek;o9a{{4O;?sP7GjUd(ReV)U
z41j)d5432XIGd{vX4#rtG8fAC-cAy$YpBxEp$lNMl-VzMU?NZ1BwF)QDt6N0TOoLp
z%gLH>2$q7GP)*$JuTIyH7;w)#P~Ie_%b6ozX3$UoAXob<mNCM*`4!iwtQL@3)W?`0
zb%;WlK{6Fzp}zqwpVSX^nA!$J0IFN8Vv%ix{Y8pStU<=2?qq4!rF(t70Z3Ccq<(P@
zmfeTM##c%CiWC=Iplr$#jqSx53bK3A*<o9a=mvv;@x8iQI0lrF67Q}KRWr5Ipid=|
zC7XhSi%4~8AyDz=D*I#~x_VH(Zw;y8S5rw1FWIXk8oDWzk+hQBoX#3<k8WOr7EcwZ
zK1c2eYO&uF5`QS+cCA59-=H>+1fLN{h3+NYsK8MTEOg$wzE)5FIvZP#TIfys7@5?6
zVC+Q2WC-qHi(a*P)XW~yTAoCL-Rj};U@<{m3pgOf)e#Ors1gXzbV4GASd)k;@H-?)
z{`h?SLY-E+`>OP40}Ln_HBKyJ>;S|DCuO0DQ~=YYPE?H3CITw9zc+qP&wxS4ELj^N
z6d0^nZO7?lto_MUc^e+zMN<z__1|pFV>GE4@$iXBnzJteAYuv`t4Ci;Q7Fc)-0E7y
zb(2A`!eVoxE1Ywh4JIeG2tY&2N<+Njpz4fu#8j3rXe>vRGRjDH@no^G>&uS<qedC!
ztppeL`--LxeIaYKo6mE>%v2#g?+R~5>2IeDQIy4{C;ipv<#=BbVNyYn>a?s^E0k;=
zx~X$)n0@&=_|2HsMeXnjnmBxvfw`l;x7gQoy0V~FM)$r9T)HxqQ2Hg<4D`075D=xL
z){w?<%fm<;_v2;Xqs|l>$7AjlUFLS}StG#2U7mIB?!lMe8PA!2Ot^?@b7-veWP~IF
zDgamN<>M9NTyZM`JF39W<Ehk`uSVJ**iSV-L68^uitBq%F)}B6mV2Qlm5Q#Aymm(m
zo3Q^gLp+AaHs$S^raTGp#0zqfHsK7X+2pvwoXUa2H2>6U-e?<Kwa<<(36g4s$;R9g
zGG><QFBDZ4)o+goV2w0hMW3BQJg@8X*vB~uKCXhhLbQ2US=6aS{7LYsP0YMHFN4fO
zy4LTBR1L-+1}w~+FOdl}5`Rb=aSagNa5vJgEe;0di{ykDn43sJqfR-SxNoB_mmLVB
zG`VKmF=(Ik+3VpbjDZ<mD4$+Xn8BDU+1pM(!t4AJRT=7aF>FlOF8Yk5o_kLt19Dsx
zom?kEP-*dHgyg@d_KNORfz}9uJ$tO(`!G|Lp-@8M5$nDnMn%e5cPG;zhah2<RKtkc
zjy;;C(V!-q0x`#BosJEf)Oho_-#Phpc6O+)B6+L2O=?b(55x@+JC<u*Sv%yTTFy0-
z1L`ii&)cYQvyc=4ka&=E;lHtiKWAf$rMkIf&S``M8zVj#l&{2{?@cYYg@13xE9mgK
z1U>ag*lg(&ALDj`b02O66qb`%*RZ=u-e=T4g_L&=Z&s&xP$23=%SoF@H?Us1MwnRK
znDzcMc%%CV9t0%GT`Rl8Cf$w3A-VEAe_sMHy0K8kq4_x;-(me2n^5L^jmjaV5yCNS
z%qE3t#h4G-WMG<m+UGdDZS!A0x#Gc7o%sM|p6PID{u<R`hr6e+_X_8<O@42y^i6cW
zL&s+u=EAx98!>9h>O{iBvTJbx@>#3eEjH~Lc#`C0!`LC`agCh3&*f6#kksGb;e_C?
zZdpE$--WPuztfq#$I*ZNTEj`l+FzPB`ub`Xj4*jr-|PcYiU2&e$$opQCP*)<!rcuH
zJ}3lQwiX&#3~#26V&i6XE&AA`<e0Hyz-2KCP(CW8*>$cnJ#_Yl>h`#fE-N6En(|nj
zYx}wp>OI_b$GTmrF4<_~{c^*36A4ZVVZ)qmqr29pcBdyFX|fAjW&TLBuzTq)K2|nM
z&#rPTj+(ZNq9TnRf-nx?*%R%f^ltrk+Ee0!VLwP^!ISUFRR^QR>$hkZW}7#9E%H5R
z;;-Cf*9H2$VBI}UQ0i-W$4G7e0I=p=&eRI=-42+SF@IS7^wO?*#{l(hPc*-5X_CgB
zpfal;M`(zHi<%d4RI~0`gIbauS44PGY68~#7T+`5r-N*?&qbRN>u626KXX5Z6}zn7
z?7JQ{&e_lRim5uj`aeXy^<R@=|G2#%wlQGz=)vfYks^%l4v}sFQ9?jMWsDl#sVF5<
z0@5hrNNFcs>IebF00adLp56ET`M#ciV83kFYv=VokN0tKi~*=uTib06D|_a6@l-G>
zYV?7ftv-1wC3l81D|YJpz2Cn-d_nG8OZ>4E-_i48H0l}TXivQmtI}x%2Q;_wYFef+
zUg|J_k5I4fr)KIx5?v4V47Y`M=5`jQt{CWn8<yf>R?;-WH?gz_^Z0R$M&k?NZ<=uh
zgxpvX8geCSkS;8gIZ=aE^OYFM7Ij>iGC}&T`8-0t>j>HL=Oe~Cf80<z!D7y=$0jLW
z*dhy(ttI&B#5HD)9~)jrN8Eedb#0+V23TSmyZ<;xZTg1Ae6C(6uUWAA&~JvL9+UN@
z><Zc0#IKPC>oi|I4bYRWZokal_jSf|oZmX;>ph7PTz%>l;TC&3OYpt7u{`QXQj(2s
zw0-}Lzbtwe_$qRyKW}rL^V4&Ec@T1}VoF@Br|(uzs?z%l?pJ~XKl_0*e|9KJ+fsz8
zEVkrG9G}xsfqLz1s%^f$`*r-^f@Uo+!=GjE9CbK)$MdWm6z^HH-7Xv}HX~JRIoLBC
z-Bfj|mHv7zmHho7>E1!S)3Tu(ft|S;g&WetJqmGtmv_fDMeHXn^y)AFC?%K-8B}KN
z0uTd;$$`SX_?Yvduv4=xd)!@NH$;g)@&|i<yrL6FTs;E0(e3Q9WF%Gs{r%eI&%kw^
z<ft?h=vOCn(Ba;=J)TzIQYI>H7v!M^fniE)2<$OYOS%L*9!r0Dq%G*Gm;uYO!0D1%
z=}1x|_GTrPq5N4a*X`?6a^OoRkPHMoo{8)A?F+q|DwdP9cVl`|?jRjzQ&`FKiOE>4
zjQAT^BS1K{l+IrC6!pEJ#Hjlo*QW3i3<v7AxdaSO)-5l!w1WOH5+HvFRPymX5H&rb
zO%h*XKp>HrPyn<&Dw}XCm>Rs(ZA&<XRQU_kESnLl*z!vhJtEW7a?%N{=|cAA{i?>f
z$lDFwY5c4SwFGWXX8M9t?IIc+f`n2ZOYKojJJur%TJcOc>Psy<%{azaz4mPJ&-}f8
zU4@`D=1)j3&^=&c(KO0>h(NLrLiCMNi;OacX~K7r=?BZ{LmgS3r_c)8Ob#)?<?S45
zNY+Q8>(t`{vGO^zNjZJ~xmyNN>xUPhxF^Yj*eh}sSPJ|co(siz`}#)SDO?VST24_=
z%g3zP$1T%U3VSo+fQ1T3DHMeZ2Hd6W^?0iO2M`AMMd9V=eLylQlF;7kDc6FrsRbT>
z1rAru<R}hlE1+!7C2)k2`3}_ks-qM+O!Ul>hY3vCxRvovg`c_AVB-jK6l4y-fS~6W
zN)xsMGFSn7Yzpj43#x#kYgncF0Yp6{5ZPXI<E*G3T%eN*)H@58BLbPpDq`YpKetP6
z2Hec$EYJ;Lu!|@y<pke{vNN{=opg92Q;TC#v!Ya(D^8S<2gR}g@CFTT8UdC%KnM}d
z8G7*<@nzZ2vR3p(X>~wpNqwnzTiH`_wwBUja@cJJG1#3?#kl%RUWJm$lPp}#g97mq
zL*o*T@S+fA@I`nw7OCKsg5{MH*6%5FJu56Hm*$8YtO4#XK)v6WKB!WAn37W-$64}M
zPf1x@DUPYQT2$@|Qg`!e>5yj$FRlcjUdpUq{!FdH^+`DmtP&_u$(tH02>^Nj$lnpj
zE244QMtQ$Q*m%^i_26Z99e`{&U_S`F0}NGKsn$HN77xqUMCp4dfQ1msg9j2dc@|04
zXmJ1#H(aG3la{<o*bTF{Y=D@T=~}^b^wcC|Nu2S+1(X2SL#(;qIdsoU2wlO(P$3}|
z0+98%aDqF*!o}fJgF;LQ@Z?DTrCAU|_v5S2Edeb0NML?hgi`Q?P?&@>RYi^SRUQ$T
zh*XY%_j99=)w&E|{fZ4Je?lmo$;fyV8O<dZ`#i9{v@Y8U@VE?w20gTV3lcm43X=2(
z@wJay>wwku#!hHciF#&ieI=Jzt{&j=1m)CR{?^~GnprJA?Xhc2=A(nUey(~a*wbB`
znj10N4iYd%E0Jb(Q#TWFb>>?A!unfjPc-tHu6(X}Yx1<n=IS)8t|lilKF>MgbI$bw
z(DRkX!!pIB=k*I^(xcCt@01z-NE1IeZ?v+z(mw%uo8}6QuFv)W_H8CV#wt1sf#*Ul
z?28mY`y<s@^)?~rHX4B%yl*T6k<is`uQSfjRZL&T<j6p3%SHgV?E=+Ik$*w~8IE+3
zxp{*J0M2fs`U?6!3`OYB_HYRx^P;1owe1nPqYlyGtNN7jpdCl$r%26yDIIBcsWZBc
zixJiF6bsPf?rcDH_LlKzEb%nGy{2^CeBZY-aE*RHsZ0M7Yfw7uF1LbjdS|SpmXoC8
znjDaD2^hKo@NVq55!>Z=i7oXK@GYrFB(}HYes9--w}E2K<(SYiI=X~-5Et^fjy2nv
zLs2cAL&b~dq2T~U#EUlW_FLP4Hpv%7`_G@hco9ozdlZ|}7YiGJfo$_S1{yC|ro8?S
z>6MM_3!8sVy7Y3MLfTHg=y%TNA-XT^L#Y8EsSvey`-~KBR|Ii~7ty<wF1Yrh|J(2X
zkhT{^FOU95+TMS4{^Hf2>utwt|3}(Vxe#gY5StHPLH<M95*hvw5j+E04Mb*_0roos
z$Oi*leFJ(!z1pJ#D4sz<jX@!oL5SG^77avWU+BgI6S&P}r6||^!A}nW{5b{uDs(h*
z(ENk0Cb^+%B5-gChLwWpXu#O4dV;qH!*z#BLx!tzhJ_jjrJ9B`G(egftlfDam#LB7
zOLT02w&}Mcu1&)tcSim1Fs_&a_$pL+aW(1!7eFz&F3l3b`Qzl<aEA5!u<aZWMdQ3A
z{9M=y)YEpi1;z7_#F*0ex+e5qDFUhc#XkBAlwjtT^#_t;))w)H*(CuaEC)(%;!1EC
z(@tO#330eq$i;{S1@}x`>YSixrYm`vbnffBQ0D(QaT?r&08z^Q!6=bus)_u9i5&ar
zOYGGQcXv}56+*>=9p>@_`gV%Jr)12P5T6kQyJ{1H%9$edO@)p!6t4Ro<xC$7!Wc+O
z>JHNdK{KfE@y?nV5rye??3*_ku;f7{Nh_gmX1Q4J<j#U8r@H{q4S8uYF#Z@QYaNh{
zfaY64!+I45HQuti()ItQOOS^TLoZ;3dN7@_@`~2+pX}o~*x6POyB~YQHF7iKfZ0~k
z+l>r*sdr-^|1cbU2^K4dD!THhd{va2hH1Gv+W&ztjzfaS;vRp=EplM~B4%Nh8E1;l
z`fM7Y6MIMbS#`F<Tc?)`^|&?@c|loj1;8wFR-0*bXEx%a8NcD;8j#oL?czr}zDCNg
zDAHnmfPc@Lz@Izxqq_vy=0>H!_O&vpM}V_7XUXd>$7no^kja@=?(!g%$1#@&G$?Q{
z7xqk^yVIJtr;@wRdL<%YDXNlV&=XY#T&a!cNd&HL^ejzRBEK9iZarIxy}sHbzkK`e
zU9vTdQ5?`)ux#Xt0_gDK=r7g=zfK$P-DP4f4D=78xiZ3aDfcz4;3eTUm%Hzl=_wa7
z=n9m=Hb~Aosp}zWN<L{($6Uw&FY%FCj?ntv%0|}LM)=C?yHli8WLNEH1rc8xsaa*|
z_9kekf@nmZ#J@IC+I;D6=F2}fB2yJ$=bK_|y0Y6Q5)-b0zhBC7D$3-|s#V)aY}TQ#
z49TNeV*XK5BA^DwD9K(y{XQ>|elN?bAV0>NQd~oGEZ;Ups5WP8$bY}eJ@$}Wo_$X)
z-~8Z}`TnnLe4D}POPMbp0egRCzH}L&OE%CC6|dadrg|?=!?$h8w82w5FZ2@{X!JZH
zdOEG*nKC#zNH27;{N2re7dtv>7(;WtHWoc8JEa%Gpf?EQRUUdy4A4EH=JrixMvVH1
z=cVASDJGV&J#fm^X*bqw6<oEZXpPp}e64p>YI(Y9_afDP<?GRP=wVpZliut63ks>*
znh_qpRAjVEq)3D8G~@t9m93xmw{#*H_6dAibcGrfNqT4C%YPC+Ra#wM%D;>rxcnZh
zsY%s#Ns4JVf1%6mQ}cW5_gj}cG__uR`y^3dsXnh|D*V|Tv-hs*%RxOBOQpNrZx%D8
zl6Ox#j&IL8i$m*J?@88v%S}CEzuKmo?kB#XWakYD2|%D2P!R{BK_CMph6<Gpd|535
zsK9{bonW^^7wH<`!i((WBrCy)c~(h1MLGIAH;vTtje`A6Ymbb&Ya6)VzNHE={?cPy
zew@TVV)MhtgjvbDu^`SV*1TQ#j&<S@?ENiwA<fa>P~H=3b$c`RFth5M;}1QDBp<VU
zhpY<nkEd1Ug8@+=5|ulQE#$R@I^}I-wT7*}TiEbh+G&}`PuZT;octAPE<;#dQnH{f
z{Hd>G122?iScnjQb5l;(7UOFh75Du$(k_^AqN(%?+ljlSi37b^_e3iG=^$lc?HvlY
zRew#ge>g*B9Olmh>mE38@8~86sZ9T&NArh%(~sPE3~AAFjf+T0Sa8WC=<c&Q|9<TH
ziu&rI{?(@KC63yQtDHs9XThhHN=TH)PHM&PCv2__zRrXlr*|hVM&Q3Y!hd^4GOBW1
zpXPZCbQ-AB2EP92D;s<*;>(}*q`#orzw;x1E6IQR*`y@?Lf%umDf|Dfv^l?sQ2I<w
zA#D@zyci~m&XzARGf^C)pn$;$(<TT@Wy%U=QmhD>rT5FT@QSDeDGZ7st2*&PZ7qe&
zZBI}X=y{$+D<#dZD9hNB`Ck@yB=P@PT*3B7#iJBE!n^k$$Qzqm+aGs!_db2z|MK<Q
z_k+V7tj>w%uhU;33~vGj#m$5IYuBTMSravr&e=DU5>k>SFl4{61(X9++jUON#Go31
zxqwF{Sc5pmugHgt8|f1a#2G1r+s{k%l)fylNe_+*Tut%hiFFdOL>5C^7_SmpbdP%S
zh9q|{s~(B0tu3s<te~CXJYV#<!AV~XbsgQDDaa#SaO;|7kz6~pWc-GNfR8@y^Ah{`
zdVp>>S9#F!iI-#JmB~Qf#G;(lq|DW$V@{Ra4>zz$%u29QtMr$(!(2j=V)b<essWCy
z+qTXybC8*>zF9)}r%rIdTG5|KD?cvXA3Fv?YmQHeeUa0j^~V74wh6y6rQ{40Ja?vm
zE+#~6D?FM!l+JJ2-*@(7Z?4gu|KY=zcTTDLkZ<e03v-C`?R|Kq-X$H9kLoJ9kZ0>W
zE{GfBEJQhgVK_73JC~3#DP}>z33$)2RhlQ>PGnB-{c<9&!2g(AJ(h$>Jcb0+md+rc
zWZIbUgLMCt+B1`F3h^KA{gGdWK#|{i1g>lD&~Ag-OZ6eS0UHjRsp2NBUMcd^)SJqM
zJi5AW(nLR)f*i3`Sb$A^5bcQn)8ms*uk)#-K%}a!DvU31oS-5zD7Ga^XCv%~z6o04
zuV`TnFp1~jB}`sVsKITal4we;uYv3u9_ibz1_-Bvj-fn}WeO|Pp{sJ&(i)P?#0bEr
z)`q&UM{o%oyrPN(vbox}yWc{jk^Is+%znKo<{K2~en)s6L%6u>J5XWnUUKsXfNEI>
zXGX2gTvryKXf?@k(>J1%EpVNjlKwmkIV&w733r+_y(-Zrsv@YafQKt=s;8UNroFK4
z1RV><L%O(FWCebB34fKER-PSfUX%KA-&I&6$Yl7TwZ@ot=9e|uhbIpMGAOMeg-=*0
zBYqIV8-8%}zIch(p(XPApS0ctGalhu!D}gxU4Ev4LwdH`;Lm1iAye%1iruU3P1$K@
zP?{3CX~|m7E#_m?zp}9Kj_ry-cw=V8WqcK$7$PJyM(~--^;BFW-}u1W`0M?hUtfQH
zz|l6Fw@rQ?Dpz^~^Rc})_-;o`fa+LOdH$W;#A^H_jc=zHGdXIgp|xBUb1?N*-Zuic
zUE#qJ?FAIX{8I0JlX-t)j1<m%f*056E9Gb5Jqsdw=)hm7Fvp;q(7&Fe(si@Ot^0Ll
zdI95%ZGXOAhb~F^yp7AaPuI1j+2Q+Z0&`a{p`zKfq#cWm{#0xC{kiM3=#j=Ry96`H
zX(B-u`%r(#?6710QUmm}`-<Ykmem!-58ESQzex|!C^qrT1xt~vI;NjU!}^1_sM}z>
z#4s6Ej^Gk$HL*KfVLiGmH^{#Cq?_&oG_K^qf0~4-PE|789vk92Cov^TK0xIFGig1@
z)H7c3aMch1tp}Fodma@n<wR!4l<1MrYCO+=@|41V`lZ^17qAWy*tm!QFk>B&t_Ce1
z_Lvx%8HJXC58zoNP&CJ-rf`BNMLSBqwe{QT%x_mpCj-Y%6M_@a6oV}O7v=>BRY682
z`X#uM_plhBV=a@AFy#_KBA-0zwbo6eRI_kFR!%A~gAo868{~3RM{U9eWP_*++GM$(
zTj<cQP{f~4q;V7g^76KUQ(c6{y;Q~|)d#5+iC7_b%DZc8HoF1=Nav=Dr_%ssrPe*>
z4;II{G~^X490*H!qaHvY`6Z)zHG<;L%#K2ba&ro{e-j<XpSaAi?yP_0c;Y|quwV_k
zJ%y&C_lLpW*G2(d9|Pbx<9k6i7i^~UkM*)k&0>_>n9m*v8Q6+j-Fy(DRv}2W`arjj
z)}_Mi5zkz)ppv>aWx&Q(2cW?sz(_rMZY_9&Rf@@c6;}kWw##DslwJa7j)$NEbO0_E
zYG7!G!iwXtXoq<Hov*gsbP@CR;<*dw9`=oC(E#QEEZi_e$%MTm$!Rk!9VQn+gGOY5
z8wT;<J|b28ye$D%O7OGBQ!^0;Y_lA5*r@`W+I99t5$zRDlwE}F)qT&uu;n_7g^UqN
zAVi30$8PrhX(maE{``DN&#17WlJ`cy@AkB}tX(LAeUJyZ4i?5nY;7-_(c<>}pEdV1
z#d0T&ZlSHK{nkaaw7<N-+R$vIRQKf|uML|v?M?hMo#-!DV;2?P3@$coxk?BhoD*f-
zvbY)8^k5AE??1gyZfpJ<WbX@FUzdq|N;F0QYhJkLcgZ9*n$&~wVTih$TS+bWc(@A_
zsv!$i`)_>BT4id3A@+3Wj;X{QuD8QGUXF;lAM`Oc5BjqxT4m6fGgaCalI#8;z*&Qs
z`XS!?s?IkcBCuK2N(JcRe=2$@l9<XJvW?_c8#leFAQR)F?1CTzFGV(1>)^^by=f+T
zJi=7#*0UsOquJ#alk+lx-aPlOP3vZfmzsO}u_RQp^OoQqijuv<TzcPpKmjT;yLX{T
zoe7jh$3+##^qxV!?(kX2vE(<AfFloDYVpS7_b?JKaLjtH;{68D5Bu5X$(bXASVTP&
z@Bfsxn(Q@OEP<jU>U=fS+Ss%^`<_aZRJ=qStqU>3?f;av#nVCV(@y-AJH)jz^DGb!
zM=jin=$yMH$5I3EOL*V)|2kwm_qrHK{|~hNPlhabp#H`C|AMyD{~g+n^{WtREe`P9
zfBu^xTM#%%`cH-|yJuL`;?Pm0Zxi{ZXH;e8Fe~<s2FI`aR0bh|KRw7(S*mBMSdvb-
z1{rKWubgd&{lOF@&nvY{LwiKXdJycryIzMaqP}=?boJDQ8~Y)d<bC-luYCxh)P44p
zJ_q06T)r@3lf2NVd7Mq@kiGL)1#0AgSi^|}hkF3n;>^$cTGO9CSx*9XF}H(zJXW{&
zO#kD&B|jbl2#W!Qo~LEKxK&NHr=GIW9e;XbIdNCB;P>-`Eaum9fTO3$6)ITbPv#8V
z!7%+Fa<D5MOCtGLAm=Su<Dd;ouLBZ0wV>9s0x>>7{&bWz-PO%Ofh#nrrY9~hr&#{c
zhG>A8fA%H5`$p(Y(Y1-s*8K6fmVWom;Q9Bx)!DIUr?-e{yQq?TDy_k~r2EysDQ~>$
zq-?sAc24T%rOKbz2JR7r`KAvT+0Pc9U0mGo@8=c|u@!3t<zu5?dEd*7v@x2az|9CA
z>@}l#X(2hu90XY00Kl|NPuc&(q=5W3U88L82&&@SQ6aKq(6TmwctEd!i(V&z#PylJ
zDbY#SG0W63)Xjw@<|M3N!;wiGn;Z;Es&a=`aoo4!K6)e;KJnL3jZR5PyrY=-1(j5&
znD8FqK4x`$v_ku7EslwXb6VjtMW6I;P+Cg>Og|6tKD8f3>9U;Ks_5avjPCr}0S0Yz
z=jmE2>H;1V#n2#b;svxl7W5TFS?>A+;vi}%C4`?W-rD}K-yr|oC~xOu0Q>CSXl+0e
zK{ip}g$d_LA%f?IQuq@Inza|&_#KF=3Z!URB)B@|NxWCK5#(u!c#EUiGgaMK0zuRd
z@Q9)x=t*720uTqr^{UoPxUgFSluc3QvQy*yWk~1Py;dX0=Uu=H0>SoY`Y4)Zkic05
z$w*&TeZ7}Hp=#aZud!v6nyXFtfN%#Pz{L^9&cjK^s&xI3w2dh5Pe^}?Yhb;EgBGDg
zb&!2)Aaj+R)Y6uKk-N>@${ZBM5oF7S;7nBLV0D7n-Rj8=cVwIp)RU3RZcvT4{RmPY
z1QK%Pu5?MLJ0>vzK>2duocKHk0TE09!V4e8fIwgn;MyPFqX0=}p#q19E5alT4RJ7A
zYgFi=lgSD_WaNU4525(?5a8vR2WMfm6$X#o%I~qi7dnsnJxkA&Q()RFK!eT0;0hfF
z;Mb|ahu2`f#!!=$y8$b9*Xz-QCk}RnD5AZz!&OAkiZLy@03ybc;^WGz8$n&k%SK|!
zCEE6A7i4)BMb;N3^cDwyDy9aOT&YK!_ZFsbdOLAKT}$)Qp-{dPiIV8NI!+mb6*pPV
z{1j;R7X|C5(4yhO`%R~%S5u2!R(Se2!*hC>FEhc^$MZEgWk$qHA$2(oMqtJg2!#=K
zN~9C=kVN{IGZ`mPZ^v+r=Wd>bey)W$)xjJ;0i*z6ZT7Ug0u*_cBG6j8kc1NtdFav+
zIR&{exBB=H19<dz?-8J(_<spJmYn$CTertTeCSuR&<LOfE12E~!1@_L6=L5_#o{Xp
zG!+LsE&=zUJd{Qb)C;uY2S6ZjVFRF%MZg#W3F3P6yi^sssl4t{DUPe;iZS`r`%v2f
zL>*HR8IiJDQLP~X)pUY?9)IX4UqfqE6Se_h!s_60RgZeAP-()v=as$J1ob9Z&_|q7
zfH+zbkban#gC>IhlQ*L}#Hg&&B<-OYtj031!WsrPFnR1C0dQ=nlA3sYu>1HOxoQMZ
z{Zz5~ZykrP1n^o}veZGf1(!G9`6G-vBpFf3vWiWvc*H_{bf6@*e#n~ZbnztrJZ9Ub
zLDA>Qm9i?Q)hb!8>hR|cPXghAX@ryxPG8_-=(%S1MD6o5PFg=WJ6Qsc0x8`p&)+gn
z#5FB@=Mv@sk@jvIY7ZA1LO&;~yZW*;TGN3O)lXBMLb#w5T`!AR-mQ6I#*v&|X!E56
zo;q8e%|H!1h}ubmX4b%U0itY4Acx#Dfk(t93V=-I+$u!k?C|E9Jrl_3Mtw6$%tU23
z8G-w1>3^#WCR@SQW8`1VNsS#sHT^IDS(V`0cYE(-z<-_NJvgRQuKXgcVM?7KdHm?I
zE%(e8N+E}%)#f&pRSU;ji}2c0`qZ|%bLDeyAG$STfGJr1Iy{YZ(OR$6k%dKc<#KSR
zD}IpZgpUg{5w9nQT)hHzUkE67iR5(??qEpezQXP8Wa?%7y91i5FS6DZlHcA^)ya2X
zQ#rj|-LxCVUEF`j1C<9iS2QJ(t9k^0iNBk;9P?kH?<{fk(iA^6d<(3j6=;=%w8=e7
zELQP;g5KMT8=Y_l5qTYbo?n`Sh=r(_|BRbAgviBvN&#G*bY#^*k{D|sOZy8JMJzN{
zxn=?;mHZqL%P|82IVsY$)2Si7DH4DAf;NTG*1jTZSm_$;;-umY!Iz+rjy|Gm_gX-^
zoC_!ft#sc@5GQl_w`!T;OMb7HGxuL64!(T<f`@#mS-SqBZ}1Y`@S1^m<jbQ_p}&_P
z&+c=r8a&Tth625yC5TrK1Yit7uU;;|S`Y)PIsK_tNRlL^F}CTmGjb5tBmWa5jp9KX
zu_UM0i&#}Oh7P*<=8{nK^Eg#ys@^<`UL`WP_>d783azq6ba`e2bcWt5D3yRUT>P*9
zXipnRXiktrE<%!&KZ^ZxQaDS;B1gHO9&!&H5=SmUOto1oD&y_$AcqBnoGV{SSdX@c
zj;4jO2fDmUs$j_<aD8@b<npGlM_z!DE(>l0Vg*+Y(%@M>84dWOn6C5srFKbC{A;06
z57#^5l>@Jp_D8#|rN1r7D2`dNP;o0A4W-66lz=WKVlTbE`D`SIr>Q2$+u<WeT*m0)
zEtb0*uZPNVI?Y@}#nAMJh#x{s;XeaFt&<2K%>N0q)SynE*N|%8)Olp^4{LsqwM0tT
z<OT^8;5baiHyoyj$@ul{8VQW9LIT1BIFFR=r_2&gjLRvLLLEU_1qn{3;-CKgj}VF1
z2L(#2gpxs%c$DaB$QvUaMN=<{WDUqaDagr-ncHp7ZHjcC)gcIj{!wQU`pYwk0MhRq
zAuzqDu0k%<RrHICCH|PciWz;#!}U>kTGV`|-gCH;OMJF*Hm^_XJV+e&S3J{dw#H`e
z{w%%EQT*aEicvw&k7`~-Z@LAq@W9TKM*AXw)6ceJV?Hrgl6*Wrb!P!`J9t_UO;U*4
zQYiZ<l^|2D>bQ-0bBo<32-baOwzS^j9IhBdcj>1cOSu@p-P=~4a2dFD`=`GgWQ#uJ
zotzI?KJbeo8(LOv?p_kT;YsXLx8N+klU@uBlSIFj0aF(B7jH;I;>(v4rR6g+xwCkc
z0rR8>Jxf&HD+#Vwwl`&@%cq+?m7?zVxjj&FQ*4XM#7b=}kPj5(f5>oud9t^;R{EEo
zBo2^7fFFfRue3=!*RaPAtS@h_y8$IcumKBc3#;Wrd{<TXBUO!VL4|}&-+?o##Xy6H
z&^a}N_e-_DBh|Hh&21mesvr5Jpo<SNvD37z>a>xUAJgL<|CsSn=}b9e@nXY+x*Fli
zmycMcj`Oj;iCS4<8i^$GlH&Vc2@P2`ul}IBb25pn?_0`;jA(se-)`Ny8~=g-u?FLe
zHdFHkp-&4uLjqWM3FvKpla~LOw88ldTfc>E`R%rbaQ`9PEu%SSaId{oVM{)83r)2#
zy9E)oST4V1YAeG)3SbeO>UlHU6fynLYCsTEFtz5ov;LRQ<Rhxk$}A&^mr384%2&UK
z38+8>v5*1m2=My-=C3zw|6;6s>}0ML7+gQ*onbY!mv&G6$I<9(7$wBA>0^R<ICCy&
zIdN>A&1x+85gwP71@X0JCSDlJ9ezyVv$%t?cv4`!J8aV2VbNyyIp^Nzye!iOH=CF9
zpNWa2?--}UM6(}yn-}j47C`2+H3rA_oBcWFYr~*-$L8%QlQs*B;F-^_hAjp#W_{ln
zi~7q3`sq(=J_V^7P(Q{@IPWu$ScblDp)Iu1=F^tVY(V&ao5or{YBsLawBcHS^PKEY
z9DY5oLC<~T><I--%$UosNhLHJ+%`H`^*J#78bkF6q^5M(e61(Y6C@sH6kR@egJ7#Z
zVymgY<EMEvz5Y%|2ol-pW?AUI>+9f?<nYp7nxUesGdI@r<56zX58pxu3NP)fw2Q%B
z$s)Q$L|ln3)VwotHQ(Z5X>{3rtxzAZ<G6Qn^vjp6@Pwo#`@{Hy(}}%DmA+G2>B*D!
z6Oxk0Ih(V`E2kx2=RZl#mT$(;cYFG&UBpo?AMIUU7rNvSne~EUGmnp5vwyY={|eIL
zuxN1(;a|z(IN8)c8Dq$xa=4w-`9m!DxDC2C3dsIZn3|j2aLRVN(&-c&cPWEWtz7o!
zw5QA1W0x27`j_KgG_?GB@P%$Zh=mY;Tl~S1x&0PT3o{K6%+bX(VRkfZc|+iemw%Cu
zfnOueh#^2k&Eg0#`G~z~{pG?39<|ZoxL<$-hif|Q40_6cI{<#|D8F`+kNT*ewX)y3
zyYHJU-w#BP^P=xk_Jz-9e!mHgYy0HC{>ls?H2)piG9;$ZFs7tuWM*YB&}3)lW~5SO
zQ87|y6=u?=OQBK(<nh7^Ny&*-HMRK^mjW+KCre3dFNn7Bd4DEV7Yi?@;?@6eNBE!8
zc4>KK9INwA^8@+A>ek!3?cKeZJdl{or|$<#)a@za(ub#K=f78e@SgmlD)HWCtY`)+
zGE00J`Cbf8f@LZ_FnU%sl8#giyz_e6Sv7=vjvj7&R6>PBxsXb%+I+j1F=pXJ@_;^E
zU*^{5bu~z>S($QZmdo}nzv=rL`4X-Z9h3|i@)GO}!W^i`Ak@?)1;Fd4LY#*9@-9$=
zdTC6&A*rsDU7T0j{TICM9{&tl?TY&G`Q2o9Fs9ya<c!y>r*&h9z#{23)$?p?5C_(J
zXx7{Iak515`unL~#ph#om(%&opLcwktFvu%n}#17F1C74J~V&P^>wZ1buUBli~naw
zc<}XGgPL%LM-&tIiNTDqgCi~Du$Ci_!FHM3ot&_p>?+%KH){>dH;(b|O>%g3W3c$<
zWHBWBWvn~x_T;M%FJE1xzJ`hbfP6JL9a{Pa-awdC298B)7-wirh4COklGtx10_j&r
zwsag?3l2=8c+NR0WsnX(HWJwk+C5X)pBjzf=`~f^VaJzefiR6SEa-wJP#z4T*G?8n
zhYARBg5p3%xGh19dej(Ls0XJ*-4DO&W2sSPr2}C`c;WH{hy`15{<Y)QDz?TVSSq<O
zt3gQUDugb3JO{x7ksc#%3yNyuub~s1Y(elW9+Nz<SmL-*<>DBHgKm}kT<4i%kT0Hy
zF&ZOON#N@yYiDt=%*RM$3EV@GgHOAHRDIZl@~jd$aJKj`Ru|?hSpC?v%>|ax6xsG!
zB7&Jj!qZBT4&r5ADF`Oep)+tGI3|i@)OM}m)7S1rs=Wl1Y)>l#P>QN19WHm?CQyWj
zG<rYDZ`~)nTvWv}3jLNy`mWR<qQ2>SVPYF16K_%V{UTzX$|aa`r0grM`5yC{0KrT(
zq(fy9VL*C8RhApZ0~YvaqX~9AvXb8(==jK>`2{It*q-tA{1IH^kC{1wB#u^*^qNkP
znPfuLFy$g$N6VJvm{oZ2hGFQ9Y1JYY63Jo2>E{`!p;@=!XdKl;E~^f7Dp4Y0u?LA5
zxP?b}5Z5zYE_XXo1)W_(GwSiSu0+~M;J^lNUUskj+0enxzeWJGH*dU>?xbQdYCC<O
zo<aZcok_biVJ(Caq}pWk;YMn?l@@d4;&sL<rKP)cN4Kd`i{Gogb-CVrzSPV}nA=Q8
zF*I&Oyq-Rl9c*t-Jxm{#!PS^s3dX~A!(KuzUY~?ZiG1~6<7|JwK4jASaU<@YGWz+2
zO&fadilxzUrj?cv_3_}*Uz8%tEH*toWRlV$vrB&CVud$EVl5Rb;_3K?<1^H9Xryp#
zPmifvy!9Yd3KauziDe?KP6&ecjt7+`6PUIxkw(4(M@4UxVC`6yl%fiNVT{0>K6|$y
zb`|9kIBEJK00+8aK%h>Uz}^ASWT+{fRB+JNP9(*nS+Ou1ZAeSyUZO%Bu7<&Ai2CQY
zNLv*Uo=D9iqTE8wa9oAbu*yIP$))$Bun5IbP%=exz-e0rkf><n!eg(PhbO`V{B;pA
z2MPKbUa&l|=R6J80Lz*!fvA#;XPkem5FArv8uvXNZK_a$32QD?u}DWp50LJ}x&S7X
zJTo+4&Q<+Vl}U3p%AE#HP6Aw|X(`Z-c&d=8EP<v6jgNwRo+ZcM8J2ZUWx1Q`QOvgY
z5oJ;OOlpFF&nB?ZDEqwB^=L`6V<jp?sE+eFF>|1~ZKz+Lja~kk8-vU61+5uRa;=6j
z?>DZ|b)~iq(9bb_MN*YloG575*&@z<Fwk$awLG9cs6^aN?12zp8MG49DP1f0Lq+BD
zR4iy0ooE6wenlICGyL^{BU@~jBAW2$U_KBt;-9z9neGr(4AG`$kOO-0devkhZMvyY
z^SZ47aeCzJW0?j*#>LHW#4u8uiU${utRd#>2vIRnzXfr$R#?;S5$)-ifQ9r`wfywr
ze-o*})|{jU1{4<Ki;}2iu&90`u5EF9VyJ?C5a|2&iOMT40L1JqG6-X3=88(Fl&PYY
zCriS;u;tD7>_MKq`(RZ}Hwt9TVQ8;s!@-qavWlqzwMsdTs6$?;7gpDrH)d9;FEnHo
zA|=bQrtT($Dj23QVY$IAV#4+jj0gxRY=rNrLs$@tt(nqK&8+vG`nuTbO<WU${{}SE
z^b-NxVFkAWXkAkQi%r+p?W;SG?_4svTT?zZ1N-RQW(8HKL(3%zCNVawHFi{2KJJWm
z{8B@*T3sN%OUv4+**Q0IbyT2B;#-+{+(W|_0T1m>BOXZ*NHC8M_+P33ZlDJc;)wV|
zS#G{*?@otcB`}Y=k7-T~iDivcGEqp|ktFlI`CtyVlWQi<l8(AnC>lXrDxau!26$_#
z=$xx9Csn~Ku8LTvU$i>la$7E~Yu|?ZbCQ%oO^dK0P8f7r<8VS4mHahRaP{By99kx@
zXfXS9K4hR#&KQhHI&1oqF#b62<D$xl+ARzj8>3&?M2BjcxL+O`7(m|X;ViiQy8M=i
ziI2RFUMbTJzw*>L4L{54&!=kjZsoJZSb})WrU&SK3r{}!UA9d@Ced_MeS9#h^%@`N
zb|FHg>-tV6^~O*B`{p7!w=Yktw&%XZgkThWD*e6Z&?}(U6TJ335iJ@`L95~gEZ}r3
z!yfmMfC0K3e81lA?3DjMHVK`keberzRsA$!$@q7lD1W>oTi>pA=QeF~Uo%^ki(To1
z=4vywF}_yMiULHtY%_?ZvIw_61GteLg6P7Sf_#87gtybwidj{wT#2vm-}W!z0a0&g
zG@_X!A!WCFlE~wy0;&(+YYjLd$OhF<sI&!qTl%^&j<gU&AsxHwbi`fFq|s;@1bHHh
zsHb%-=ttI3)*J);jnSjSWPw0*f4$IQ5u%=Nr4Uh{_w@hB3xxmc&*Cr3j1wHa7;m?~
z)%#@SGYBC=_I$tb<hAtYOtQKFSth4`iEUT0_(i`RVVW=a?$=}yKdph8R&TL;NB@SI
zmCGM04X51M7E51<7`qH*nGflu`Bu9bS9ELuQM#g%kIl0y0XO6de?7`SpW*-hGvJEa
zby>%|T9$9FmDTQp6{EDrX+vWpw_2!BkFm5qs88IN95%_8`ESmZ@T_%ItWC!rk3(y}
zM4#ZR%Cj|eLsm#XMI}ph$0NT+czPHfYu!?;k$N;@pQ0Bav<=bXhzeR%$g&F02#L#R
z)ml0PmE4vsNs0RO3wyIDuK6~E0U{<$2IVK2j!;D$E<p%}cc~ZbGqGAr+86NSWKG~Q
z2wZ11F^aEn!0pq<r=V0bu(ysyAs1KlaiT8rPvY_rcLqK>@FMW&o=6QN2<INQP}vC7
zBdl9u>S+_rwww4IAI+}{5sr!yRlVf~(LHZVx=1uPfrO*-<PJn30{=+{r3_mE`%WMq
ze3AuElW6^8Cj<@51i_RiTa=>5X$64gKr&<3iWQPLZIcuo6Iu^~6Xa4N_5im}Z9;lv
zX#n7xMf~@Cwc;V*U%6KJkRV1#=*Ci7;HIK1K>ipElgR-whNSn5A;y^#G)EC~0QpQn
zqE*zLL4yoXXreB&diH_*>n(W<DdT(&=pU}v=AGUXmEKr!aRuTZ!8+o{)eZ4<%s6(4
zR8_o-M}U)(qdKE9m!n{YMj%CUeCQ$|X936tu#vCO^HxROp{2u+eHfGJygBT=5~am|
z(b1zaCpP(BKmtEFW_~#ZJonF7MP`I?Bu@1}w3afzMM1{J0DG!>D4lG1kL=SPANn)f
z#i-1w+?=^RKF)x^K(Uw$y*v?d;F(x<nJAN3F`aUBwyLpW05V38GtcScwXk355PO{A
zG9;Grfzf$S5ZSmA(0Enou|HS|1%_G?lu2TG_BnqcxnGv^V8)sM{4zkK5I#NqGZBD^
zI3Pw;UE3(f0cr~A^!ZXDGje*j`LuX&Ls4$yg0Ec+VYUl7p1YS760UF{^*|x+dU1*L
zav1K~&3>!&EL>@8tALD;1a8(c1t&kUmzj^q`cWMb+hHYmkdxU8QWl{@ZI)h!L>biN
zr;wGt<y!q-&Tl1y;88HY*JWRD?7SXXS;W#rRB84|Sz9k;!WbfSEjLHp#+$9op;)SI
z$GnAHmI%22u;W^E=>zH8CHFZK%f$2bQq6nDLt+BTUZ@ql$iJ^+?BqfaUWfXlDE5Uj
z0D|-gQDL!jTF?!Bc)ecl?KnhN5X!yjuwNew2mvpof`&O&x7DCyr9}dxkN!a`>Pvhx
zKN;JpL2eX=z{>E{pUurv74Jbyq*gDuHCX~Sp|CxBp>dn|X0(8tZ$h?mIn1|O)iz$v
zTAP9BauqFbT&<H4QnTl6%A*!&Uc-KFQ~m-+xA7QXa|WqhvC@PU?<o6F0r>c>d<Ae(
zimNR84%J=aHg|dj&I#Uq(bbQ{YqVdNApm8k12yEI)eN7!En~ddkdNP`#%Pq48O1>C
z&pp~iYV^2jixp~7o1p7uPy7SxuGX^C;-19RP`0`XPR=xPS0B#o)E<<UKKg8_Xk3sH
zlPX?PeexR8^d!acm+j-vmNqefJv%G!3Ar4JWI!v}#O{fUZS6B$J#A%CK_I$m;$Bu=
zn5SV*Pfp`$yN@m`2i9379dq%tb3@TH^)3bPZfj%s58h3rL!!WuZ7%=8yK&L}1!l(y
zcPWD9!Ij$yX;zyJ%_S+#r=J!6gLflZs*$(HeHgQ_tr>{g|Iyp&$EXeUW;@?zx>3-t
zWuQDs;E}3<=VRt86OjL?q)9q;zAc}gH>VH{e&2?Cl~9roxyf8{Q%?fGXxhvioADpE
z+sa<Pf}Nkc4TZ4Lo(IxYq(&FGX{a?w{<c-b0qK5&<SN*~shSEDnEStmXNU?E(%1^W
z{^UHc%|-ZuBKNc1m=+JoVual@j>&5Yfvp2zFxMK8XR?LjW*Ef+q$#$q-yl7%4qa1t
z^z(}%zcpiT=VsMsopfuh3FNN5mHK<89puG!!QZIw(K!u@baBod51uDqBzDWtwO1WA
z%L}(?`aJ-dB<j%h#^}LWC4uZ~0_b)lqw^kFQlm*Yz}C6*%KgqH=XSzc=V(A`GpwwN
zyT$rAb@wNL1JGSkjSm!f0f`W1%eg5J0QbI5TP}OqQ~5O3$3lqcOsQyk71+Ejkf-q6
zj<rDrdI8ffJWie)(%<gSXMMF7o56@MnB{<l8VJbjJj0M)HFFtE2uf|-$8I@W6k<Su
zhXBz6P#XYkJqekvik~rlC4ZdF9^ubGG@;Pm2a2f8wU*0=?U(Hgn=0-#qs^oc7nH9k
zqAIXgA=aN7WyT<t)D!@aMuGTIppRFIUyBo^iB=z9NS@qx8oWy6L=XPB-mky@5-L^a
z^ik)}ixT=j#BWirIP+h{jSTSp38$(Ul*)+Km3kG*GT62Kl!0}4nueG;+3R>TV#PYD
zXE0zu7a<3Sd#n%EmOaFG4usE-jIZd59f-C#Nj@u6ismWZsUZTz)kD1?ArItL0RZ(1
zJyi<K+h<gsI86IM0Xvn>0iUSu(#3z_%g{-RK82uvq$+qog2WBJK9gQ<eA%JFz0OUi
zy9>>f3;(bLm_X9&s;FKz(vLU|<?Ffk8ctVsFc}x2+B?@jNftlHUn@ml7?o5{S_M2M
z8~{wWf=dqoq;;o~E3j9sQw0_9<vxgRv2s5GIF_OLM;<W(f0G#kh0Q_Zyk=^TXU2x6
zKY6?v4*`^HP3{3mCmMI7(IWRrKtM>&Q!He=ul}qL`Wi*o;X(Iq9YW=*@^1<beL6LW
zg|E6y3Yl|tXCTj(IQJ1&<<^KqVo!1ItndvcUO5l|#||RTrcV|x;t&Xdn;M4*t;@5D
zuJdJ~vnc{|WueUC&zP&MS+SmXODg9LrWuv#0V-b=v_e@&uP(U#U0B7<C(CnG53sob
zGw)k-gbr}}&@Zw)0}25ELao5}*6fkFZ*P__#k^AtVn%MYT`b{vm!AxfZc8mE-(4o5
z76~txGs=;0*W^szmAq+4+U1p^yDLtI%Ox*Yid<J7{9UOqXJ#e?>7^$s@2)C-U8#Gy
z+T_Zwp#W%|MyIW;cD$=<$YlCZDKI4k*$IVz2GTPg0Qb`tXK|hjg2GD&YuP!xZ!6Zb
zi0iF5KC8EDe9)B?z`K0ZyUg6RbMpFc?7K-U2wVZ+!h$$)03i118Tp;CC%+7k|J-^A
zx$%CE{ew7Srt=2px+#hVk6JwdxH6O5zxH$G3jUMyeOY>a600Q+07>G?NFD$R!kvyG
zPm|>yDadg&ll3Y$hUhX(J;@ok4PLj0sBg>nXfGIr_!tG>!&y<_%OQ-cav&kAy59&n
z>p>-ps_9F!Xf6DbERB@BHbsOhtoswdhpMc-EUa}zC$D(h^+<S7LBzyM<m?95Doiv?
zM^x#O#GfX!LupC&tgeA62KSpg%cKXFtt(%(ZoURY%7H+xm!UPY4S=DI%X=G><Q;cA
zaSte4peE$bzm$T5U3%-?Y24my^j6eAv1|X}@mVv;ZcGhcQg`!IN9}KR<3YV`l30th
zN19B7&Jf?4;`$X3x`KJiLHzNzZR$?QoQ?F7Lc>DL$H$dVKZePCI-+xqgd5h<DbwzY
z_7@F(gEJ4wE|!ybJ)e+B`;mO&neTT=au<7`%H62YFPYe{ntRMM@8R$I_s+3jPi?<U
z<Gw~|%U_F;=k$K=_)GrX6S!qRQ}sh9A*@!+St=XlBGgUqgs&$b@qI%LqTHUQcVj<m
zLlKL{Ov$U;cwef#H{fj2qGzaX=dIqnbx_r%G})@2K|EZWQn`ngNYh;x3RC^aqU)o3
z=y=OJ{`jre5#7uW6||&kVm@5n-5)OdRY_K9*!GQRZ~$26XysV7m04}V2(ZO+{Ac4(
zg5#(se>cfWHGJzw>X61<(Gk7-VK<A40lx<N5(>$$QD>{A<E~LfbIkPyqLK~KV*KgU
zqT=rEH1OrHq*X(kU*m?XitPt=V!{P{eC|@@hhOQt$J<^}YdV*wz7;$x13f$c<@G(c
zMH3bEM##ur%|uotl+pG#-vs4?z4qor+2UDk^F(e7d)=vL<##O_SuSwRd#_C+c(~CA
z|6f$46Gti9T*KOJ!A5+n`c>gNkA;-pQAKK+{Fw=`DAo(F6GD%Kn}rn6HSfppk$}8J
z#21XIqMd2q_Yf&}Mnix7Uaa|8hkomYzN3_Z=|7Q4SqT@6C8MC=u9m^AUF>-HU$13@
zV9ZXaq9MY^FpUa=!3%(r*yQmFC<0qj77YfKmBb{I$|fU}{oh;|W0tTyqby#IIbRr$
z$;<~aN;g$x@nL8M9x60nw7g8B6)VRmAhURynxyijrD?>Q5|d~iJnTq%J%*XcXOqJ#
z3R5Lfj0q@(^1l9jG^Pdfwwj>`BhQ*&SX`R*ti5t+rNg{TWNNj=<9XT%UZ_3?%q2*w
ztiv@^YhA^|VUEH^<pAfN@MxDSb?&2ajOf`C$G6t~o+TJ)lxi6Be-dS+Q^VQZRE`#d
zv7Wu}_T9l7u=olAivY<g(Ov<ruDyByejy455Xo?SbA{Hw=Cc}_%h-sg|EEM_<m_xM
zsOWi~rvr}aS^qaa|H<x_53g`wI==rmv;9V=NATv)LF<ZObvM-6J9t`g*5u+u7(&>H
z<TPe;VQwgIbu63$N=k&v_+bv<PKo{xX*E;$qyv-FVYDJ8f;Y;xXJ7Vby%JOr#Dn4T
zHb&{+Z~%Qyg&U7UGL31DT6mS`{0HzO%Q_+^dU61Pq}zs4Mo|CO@Stz2-LdaZAm@Dm
zq{3ZaK*S=YzI~_k#^Q=WKX7Rp{^11U0b6k8K>1brk6slJ#zYYlKByt$Ezpm<-D1Dr
z)f<X@)SFY~Bt1+<!R3);qyI#@R)M@mv~=`nqzCpAlK7DjmW}Wiz;jBBRi>cS1qD-I
zmW(}&9Se9}p3d}>)m`j(qqFd4*I}f0)}^0g+h!J7sgFvx0H1imHQRQ$g4#M4W-cxr
zMv1Lk%vn2<<M--s`=<T+TFaIkbklLH_{YK$U7q4yFQU9GvSQBBp$fT4a9C*DERwyq
zAYN4XJVczn^kz(99?b;RDwwCkuM{n4^n@iq=r0BV7e4i=dy*xmaxL6KNof%Nue@v%
zjD;Bsxnu<PQ~+|4Ke=0a-gx2Q+V6<frHXsDu;iR175fk_$U2KvS=+lk>2<t#{rk()
zoyPC|f12l(z4ItL%*N_!WFyCJ&G3Cmsl-(}|0icU7OhF^g(1HCV(XI<yO(QLh3Fp{
z;Na*c#jx>w4ZAB;EUe6UxbkQzFFo*mg!YKgc9SCX^B${WH>O4y;460JPuj)k{+A_F
zIP1l7o0IH?S(X_!f5xGK*Q)+4XKRiZodElbFs0X7>ue}thTqIZq^^0hq3OWfTYMc~
z*##$GCt)HiY;&YEFyk%Z(zgUWgOwr|{a!I^ufA+@HCpq1^^W~*eo*?c<n1-RC^ZN7
zFWnQT8ka-2VaBcPGtFPrpc*`WU!P6N#oqlXlw}%yB9w%FppsMgD=cgR6Mj&AKw7kW
zVH%+8_G}xc_78D5aIs7gIhoNTVDf}k6IbRbkAvnrr3hUMB<=uzCy@3lVqfNR=1r(V
zl<AA}&~f6guf6W((JOZ&ei!!cs{-H$iyVNik9QC6Q>o`L$wo)iyCX6#DyT$_24FS^
z?mCbXqRv7*BC1tU*uMhc7SgpD+9)c9i+3N>ZhjZ-!7OsD54YdQGOq9t^ALcl!A0a}
z%m>-Eyi1@#M@r5IRLp}cSn84iJ-_vdYd1=@bz9k>d_TRCkGRHdyl6mdT}jls;Z(jp
z%!5~QS|eIQfL8M$1HnA&#B0M&TuX#Lf|^cRHn;#&MT=&t!ezC!ZVKs93M&#-9G6(D
zxYei(6&6WMfp$Dwi?ax{CO$i;X;Zy53eDeNm61>IHb&A8N3>dHV4^CS?~myv)y*({
zaUPMpd0Hp;?Pg>?5v_%!H8CW#d7=>8VH#KKW8py_{Ul%B3wO`)%OXs2QFjRPj}%&!
ztHS)G{9$VULi2_2Ez%;$<apdjql-fxjdu8?v<*(P4U?FY{J=|=?$Ffy-$<MfkmIWx
z34}fz!3C-@Trx%{FcXqNydGC(cYFtu)sHI?nf`k6b=qSPKt9?iUic?IHwa-B5FekY
z8JlP1XkmT*39w!wWRHNTXqP1l8k=cd9gE-zi%|T{;QO$iUCgA3N~XeEh=D!hko6Or
z#I%<z7x6X6gAP%Zq{n9JX&KoA-`O^TOzr3nl^WUx8>IB#px-*=GXU)CcIU-KVvjn}
z@*_889BKXY#Jb(4?BXrI24WosD_dcx#?z9Ts|jfrgpR7bC+iY{bXiWl#+&}UZfwJb
z(O2jAU}1HE(ZW}@Hm($}`Zsc1Uh{anx}2+5)I!TN?DhBTQSDP%w%6O_t8|ja*|_c2
z#?r4={2=E*P3jJJ$xozHB%VW++_POr44U7R%=_FWP%SqT<qt>*&)VuuCVRVn?Yhzz
zI#Smp4AnFSkqrB=_VMDumPLZ;pZoDLaxT}m`NZCyum0*koes7Xb9&3fF8v}lR2#;J
zC4=aWWR9+<TR4qzY`7iQK-}uOn;T}X-~9;Ma-vP<T<6Xk_K4K?*$c6+Cl~iu0p&kq
zsr6XEAxahCHh%+emJA#BKi1bj9*?Aa5MTjba4Zw=-lc~6k&1Y?IxygWhu|n9PeXWb
z7X>a&6DDnHG!za8Mci<CF9A3*;-Gm?3=>f9!ytaCj%)d~xj*7@%&t(Sk?;$}+}ziB
z)u%eDoe?72_l1sM@{D+Ozg0Xnb*06>Na4ZV5gT=HpZe#f6JZZSW&b?bVHt|j&=yiW
zh*=}Vzf_yCqgmPvlJuG&MDsp+7*-hVTyLTE_^r!hE_qK}8@1n1%f5fJtPO7fjj;;#
zZ6<*h-LDREPr{ffaWbKA83Fwnw|PG+;pj;B-{<~QU;a+b0h8Lq{*C!fG1~s3I&0K!
zqGrOxipO&pgX9N-c4Qf3I+#V(zUPjGT`+I%r{j#<g7rQ><B;_Ca12YEuw|JV{z526
zllSS$A9TE<dukk~hZ=lHb?2Us%dgS@kEintYT|vvb+Snyp(fPOdvBq4O#ta2AiWui
zf+$E+q#8mmLg-z(^d{1ap{RhUfJhTGAR-`05ev2)e*Zb=?5EvtJG-+p?|bk4T-Vc;
zD*<;uZrDH9F!>TKl9{6_Nv8lE+tJzRHvgSNXzmrU!VsB4D@y;yz$TuEAKxOa28eT#
z>#h06^9p_~5rQ<-d1b!d^IhdcmXE8^MlaX3>O;MT%ycyF-vsZi1}dRUXFs#tvep@r
zFion-R9oBaPIHT`vV1qo_%5wSp%mGi;V&|L?$EkXpGH6u0i|IE_idt^LYpI}VC2IF
ziBGj!nk8#?0UX6|OI3Ein611y-t*1~g{g9<N7P=go*3h6>RsTDe)8hi!oa_8m#IQw
z<QQ9ZP}~cTe}idno=BP-VQ&2p6;p}-xaQc@M&x7?WIL#|jEls)KQ(ee?H3=%HuvRH
zZf&Jq%<>N|Gxz}N(F;8?$(}bMW20htoDZ7r-v4~lk}ps*X7j!&;hPKfx-Cn!q+V^L
zWQai6-dOO1?{wcj-JE!K&TSzSd3clgb<{99MlRuQZ_nMqnY;e^hHIRJkVOuPk-@5d
z)a}=yrv>W9Fd}ouZI?=mQ3uaY9c(U1QSm^m{8v?ZQmlaQEfEbBTGkjioO{McyL92U
zDx45x<ma#ztmY_%)4(W6g1$I#AKAo|gxpDfcGJXBO7adUV(g0iH*@`M_&WzGoW9UY
z6Mi;YW4f@Q5xW&WM3EM?CT!*<W-hY1-3gPrWEC#t+1`^Bb;iXKkIY_Yqxl9x<LMN~
z03|Y*_K;TzYn5^bEO}`A(8~Ty^>x@yq&rE@`srQ_cbiZ69|8a*R5+#~g$&IJOx3Dk
zlvw~P5|p4w$OjSdmcAsA94dCzZGYxJMb{?z+#828f!CSOiy>nIOj<(H2y$=EfUB}B
zy9t5MNopM$X<c`OQhJloGs)2~2(KV`1_k-2k^+@XLu1nvDx#9>lhc1PAAYz;kxUCj
zfzMa~Ss;mlrL@NyK0F%tL{L0vZ2B1sAaKOzo(M#d3`miwfG9{kp(1tI>fWb2_YSk}
z?Vqu6(HUPIGk;95o^Geb;jh3JIYu<npG*+a7gN;dLYF+V-rh-{+*XyHNo_+**e!C<
zfUdHTMe^HkVL+)>#;N*V8QaE^0)3gK$>}9OCFLjY0an@LzUdjDtl6IUi$S?UCJ0^x
z5Ez^m%E>lToheilHv9(8;*<*pxM{>vg_E;~vhUz0(*#opo0uFHN~&a>Jo63#Amr_Z
zfZz=zh8>dJWQKwh+$ucVR^z;iJsbopl(GV6OBKD<%a{>Q${D=^95TF=fUsJFKe9qF
zR+bU#Ne{w{>rbr+Xs(PvwlXa6TveqnkS<1_iXxJLe7I5$n@Pc)oYi)0?=?1ZQOV&Y
zI^rQP$fA_(4gTD&F+CaZZU!L&;$$MA{=)_!4c!~U=L*$%D;dwI0her(n`eM`o+UEb
zC1EJ!TNVyy8iDjnWyHX;WhukX)08T5-s~hWR99-`Rkn1^3>sK|zNnm~y_`6Yu@f_V
zKMAZ~b6ln^7qJGtF9J}Wq&EEj&7imvoL-u+95*n6{mSnX%6Y5GzZO;SKdG2JtPtj^
zyo|fwc<cUHU-nJoimveL7Opa7Oqp7r7CG#~3BGc$6Lrs*uDOa`#I)SQ0K`aF{W!d&
zPpU-1xdLBb^C5^|XocQ;hw68gt9AoXPS0H}SI1%XtIF$Ft-m@e$hlls+G#;GVI5MS
zCiH;$Q#H2#N?=xw5*~AgEwX8><lU`&g}DHUsJ&QIyS04&`cJvG3RbY9_P@!*PgO-R
zewc1UH{3(3rh?)M?#8MJbkjBKN3SDol<I7R-Pz(BoBC~-)*D@B=}}m0s#nuzJV^64
zs4+sJpW8kBD~MyOHuea4v0828O_TC$6XRjS%f@CVa&vhE2Q#Rd_h%w=Me`6DxX2Eu
z+BKEZw#?C?A3G~R1)Ft+nl7VSc1&ANMw@uz^q;X~8=YJCixnFqTF2;G<2>5_ZnXWV
zX=cPUp91al9fkT{R8g8Vxix2}20x|kT~3c#FsoGuE50RGu_XxyLdzI(XoEK^I;#Ii
zM;NkdJcoZ6GwUtwa#=AB2zv7{#u0RUAx|l?^YX|;je*WKqt4_jo!`#{W0*$<O|6mJ
zAOo{U!p}R+-#+@0@X+!s1$DvE(gFE_&6nr{n*N_kY(KY4qp8!=rJK2{%k6iU$Mx<T
zZ@UAYM_9RZ^AgN%nkoDTAgJKKRdV@1009Y5UF?XwUL2y`n>e5l{ktbNvN!#0Z$_j-
z(C^-C?Y>->zWo2u5sC-;SlIeXfA>}J^jB&3*SPdQi0uFVv9EsMe;Tsi{p~yh54EXX
zjoJg<kpsOY17~=I!M6iZ)&s*lXQkM|ahJiTk%Q*+gYU(`BKSv431BFF;%p=~*$#ac
zX=P1#d{Yt?nHhqcp#`mmhRI;69eVvO$L3oO_KKD^+M%aH!$YKDzmDOX&j(-145i{8
z|F|{W<^V2}4tPld09mq`8SdZnVLxRuB%M6*mh8mS2c>}D&VoCN6wdGg@)%ST&is3q
z#*Rd2&sWah1aw8#e_(=>L^O>RAa=-b+Z!!X+R5aCR$OJBRjoEkE#{xT89Jb-yc(!E
z-OaSXs-2G3vK~g+jRAPDBpDDPd9e@x*ebXs77)h*=~sq}5dj_^RDgdIhdTjrT^M<8
z{lu=BoxMVrAMZwkeR4gjf$R*}xdK8I0h+@nLhW?0J#tj(U`7`1uUII?%1Q(?@m@Qm
zw~-@k7T}-3#4d8^uhO^RSaPBiiav$-)ZNrIZ`EV~lA1a4N|O}K$4Z*%&g-B}_d@ET
zR9eA}1%pftd-Uq1tu4IPmCfiLhDlzX;36F~lhyO@c4MV@KyU^~D^MRpol~CS-g_iW
z<gs%3<6pK|ydntfOn68g0<wcIbVd+>D>JdC62t<Lw<1R@)1M8gtd;2XIuavSpB>6}
z21U9n>Vsqnsa6T&H`qEIzfNcUasSmE430*>%27Q2NagI{MR(dL5LknLX3wbPp^^Sm
zIxaIhs~nxv5sX7<o;Ccy9z93PLq#3paonwdqU$M19$o6_Pt#8_wQ`kkpy_soYmQ(l
zsHl<PPICyP=p?Dxah76>Bhar5_8(b&2J4;Dk3LEt)B~yT0D8yM(&`r~f*y<24(WfL
zxAtds_6HfxvC$q*rqVX+q1^lXP2||dEN~#lwM%Q7$j>M&%S@ytBeRPek$<Fvew~w<
zw9q*=kJ4rJe8C)3Rv9=dr1}wLAtyTI2MV$vguh<!r2{Y2E;^vVW2T@s50M)!Y2QOG
zB<LcOhEOR(OM1Z^nJt?7BFmSvctY3STz)}SFC0Qvm%X{Y|7JLF!RC{G^IAc<1@RO2
zGJV#H=lBvzYIW0eRSUh^#JEz65)3qrNe!GEuDH&OD9Bh_s+pZ@&RawEEjRHQ5L(ni
zqAw~~fT=Xx3^Wk^Mqh*P&H=X`ulgqqbB=zsoB!!Qf7jJo>N9YliJU(~=)^KIY-)dm
zc4k;j@cT1uV<3ZA$|Rlvj8ZtpGM`Owu>izK?^~@1rmx1#1DH`k#gYLsXBd|yKR$%$
z%>r0z!xb6w!RuceY#X*6^hP)pP#a((yIjW7Qxms)4H|;{tR+@R9YwnH8FVW1D2I7#
z8pRFaSx)E-lT1Iui$eyd27^nLRCqe6a=hS!fjlEP0BPJ>V>*1-{2!g{zs(-(Mzy)E
z8|njVz{i&$#tZk^S?)6m&##+U>wXMm+9AD7$Y){kDB<tfay}|E+}?_g-Tqw7BCE(R
zued3aZZ00j`hMIsF#Lnq`ex0@Cl@$pFqmC80Pf<>-b((!J;IJyuRqpj%E5N(iGY+r
zkB6|pk>|Or>h&V2UHg&1=OX88i{6iCbV{0W3H*^nY)Gcqh!5KE8h1?>>p@;|smlaO
zbac4BxG(UiQgZ05GM_a)kw2PS<*V;6`zltpO<2;bN?3M|&y0uv9hQG9_U0H-I#XC+
zWp4ka<%jt_0T3~#y(;7RFjbHb_+nkf!D=Ja@lbr>SQO3-G0_!E{~+t6BrRtnt&0*-
zW{C)_713@GKhGknZ^PAW_l5qvB&W?G^1KKuv$R<7fmD?k*JbjuuvEatz7KG$^YHeY
zIq|nKOWT$bL37+~S^Gs?!udq0*Ds}%s8X8SUutZ~9OcqYbJBORj`z>WbP<7=9GRZ5
ziG{Kpi%Z{v=6H9$h(t8Ve~%IV$s{LwUXJO#_)^t@#;b6JdjWcMW@oq+Ab(G5ofIs~
z_$VKsu6^Dam8Ex3KL8*W>U&T4PsP(7=D$n4U!&cfvzNExNW>OWa1aYGMe^5?g3h~q
zan3A$N__sTP0U*R5UREft7ia2{XvM94ur7hqW#-TrTSt_`k2Z<e3vLrcOfLwKK|6Z
zQ>S*-M#|yOX*F`PO|?@w6g#Hoe?_@pM;$q90<BShyrw?f`D<Ju_Ss#HPgxqAj(@{d
ze&?``=X<?hee<{E(!cv3YT=ThRghmb`UF0=nHd1i2QaI!pCN4lS{2?D0F`i-$ciSj
zsBmT!m!zfxOe)0qsw^QTnq<D*BwiIsMPV@&p%fNnCg4m|R$45sh#nDCP#i2tyI0<s
zf?`cN!{P#BN-RTVlY&Zf0F4SdxxY6ljRHVbM7kC;(iVy<h|Ma(N$-?|(V{A1#j=W7
z$c}mm!3$J+u&85uB!|Cqmw}S6ac({7buENm*>82CqxxB<pnfW^$-|n-9LY<Ku2P_6
zQo%XTsdU8DOeK?0Fh`+1YBtR@8NR$3Z~Yp~A$M;2j>nD4MtJf}xUp#NB|D>syp<%6
zM+J>R#lxmmv3{)dtSK|#vibRvK{~mODSwYIq}GRfR|!aC2-MNYLEViz74GbW#HgHA
zXH)B{%ab082OkN4*r>l}cA^6f=Vmm@<--Y2n;ZyrC$C<;(cuJ2ol0_^`I%;HkY2C!
zU5lk;`&g(e%Oxy7T~ei!uxL(?^;gK<7=9Edd{I=p|ARppGt5v0aS*_5b@z2)aq<r#
zD>iB_SEG}&deyAgTP><D_t3B3!>?5Dj}uFzy`Y1FnerALUI3$#C|n-_^Q&?VE5(Lj
z>7K~el=}Ccm4>{q2r>}L-#2CgZ^c{bF(@Mq2(%Urdd{@s(-go_VIHE#fM(3eif2=k
z)JL!wV{x=U9S!uYWyKmcv(43ZHgl{DrD~1kM^tjmfoTacT&g#)2K3NE1x43oUXTUG
zkQ$8Xlm)}@g*)|2knx7uTO<+Dh-WW}Lx(AE{7W~tCSoq9N?bGy3!1|r<jEjXByEKt
z%5Bxr^J>v;HOzbZV0RH;;d=>E4`i}}@+M-rqEn6Qt4(XfRWm9gO3MJ*m2GNu9ed;Z
z%0-nk#~Qw$Yy$h*aBL|Yqc<<r)H3WRE&Ome>{?5@)`~-`an;yo)hx?YTy4@!g9-g;
zfN*1>Ut;7=iu(&1zq-l$Msccp9buQcdS7bUcROn(9CTI8@E{@^`R5A5SNK^*>6uja
zJRw{~pb`h_?$dyHl?j@-`#;`Aw1CE^ykvzxWuzGQaNQlqN=_XXgwR!l(xGq}NIX(l
zssg*GEn3s=^;G4?UNXZY<DQoO0LzAxIdk>>lh;;8WyX1Wt|=escSZGN4drVN$%}aE
zt;r5<-Mp1&d*qbwrC+&CZZ~9LJ1-e>5}ui?t&7==G7OE+RE}KVk$yupOwpRd(kq5q
z;Yf;X_lzNY6AQ#JuOGs#_IYk|`1f~x5Vni>q%#?r=;09QeO%0!TieX(5Sg6^W@anv
zDGKtq4@;hg{MvuU8D*~zVIdHP57&r2;`MQjTAy1oGmLkticAJJ(m8bzj|Y69eVe&G
zx&hapwD9*Yz5C1;>G-8p`qNPgG)f@y_1lbr;S|@lf$zze?rNV6D)E>cHvy>{q`a==
zN4rjoBu9k}hoOnmS7B1U2G`NOk1sQ}-C6hI_wO!H%s|yfEgl-WJ^iRW!sZ9XkVYzP
zNUFE7B19Em#@R=~NDEg3zyC)^P`c-5pO)e?*x7YWbc>rhUiC)R@DPg*wY1(*E-cN~
zXucJ_WlNYcUX19taN_?3DYG;!3?%7}W?f(v(SRB7euBH12RZLny?JQ>8g`FYM0ur8
zqttPwOY<bYFde6>-|JJ(5qC0^2p5Itw#&HWjRMi$N%T_*$t>m!cS^A%aIKkGh1;{J
zSkY&KkscGh2AL}9u3lfpb99x5v+N6HMTOLHPY$9w?5)#Zdz&r|cb~pOHW<W<T<K~1
zEhk!-ROmsa;YhK%4M@Jt8limziS^S1akKYcX%<g3RHf_mrH-JbLyy$G>F|Zco8EDz
znCI7ftwm(LXgeMu$lF8J0XxEE21E3qa`vUXIz4JdZT8j}k^7_qZXwAWiyp_#=wH7)
z2lF65Q7gJ2rX}*)^6|>If-bkwDt0;1U|zwvmngE<xGA&TwF(;}0<j>K@|1SUNLY!R
z)!GNjD16KM5hNYScjHg}M+!Xd^5IwY*`l2eKfi(<TT>2wl%I39>FcM)Dsp)S8MY~!
zMP>3IvaXa$|4Ibto;{gEA(t*F*z_Z6g^3M)fqwSY{oO`|lQ8!#eo+^b-0~PZHxAwF
z!mZrwMmN||3Qwx<2B)ZX_s<tht3cgpe=iyoPsTLQd%EWdwSO}hZK3;`M;{TaIpr5p
z;=0<bgpU9PVB>g1wdTFYj@~?am)-tYv*<E)c|r~uJPK0SMt}{h8q7o?-YH0&B@6^{
zzb#0^_5^*SOJ(}vpNV*=UH$Ez=WAagI7Jz{xb+DqAcjG~I$08!mWcvlm>?VN4uR;j
z#CYZ^5NPIJ@}W-haK>$E953nM?g#Dn6Hvzgu{BmUlYjYbTrDLWirb$3G}BeT4owDQ
zL^0{vtv2VQ_Ajh+aM3|Du<V!1t|6o;1iBh*3sR^(fB`9L7b<8RQ9K^p;PrsvX73oE
z>HmCOHX{TG3z?88wM%*Ai-z#tb|Srb?*4;2j@!ucIQzXwEaS-qz=8{xa#0pFl$hsT
z5Il0u<qv?iHEoy3!7(_Jr~n5^kX1v!Cg-l~l~}8y35R@KejbCHd?XhXZx~;wjrU|L
zIeoBbrI_Z%;N>w@=zU8kp48;JiKgu(tEW^Zc#%}Q`iw@0_V%JV*0z;+em%Dskxf<}
z^;1&tD!Q*4pIOP^ZGfaVrhBOpt5SuvoL`x3Kz2dpr%9$mj<wHjcL{Hr`)Ge~dVRP1
zSV(kjgR`6?bNIqI9nvlKL`@7(!jC|C@v&%g1{QJ0(!%ARpRYu2_`JM&P3e|Bm|+!8
zb9rz*?0<9w*UI&w?6wr6GY$vH^YIynLllUswkH#$2n3OH-V(INQ+CKOIxp>8K`Gv=
zD6zVcNxoykSLz%=>K}$xRF<4lB$BnRjK<aSBE>m)DKKBKOwF?5M*Rd)7?m6wIjx<=
zG05nRUetK&{H^=K$(U@xhUSGB{*w^n(v4eE;3}?{#O**{e%((Iw!<+L(~L6VyQj$h
z^m8Z<Q8)F6{H{0U?FiLPs}_OXM)U@UU{v6am)fWJ1+V(=XD+n;tnf&N59b=Aeyx2m
zrMAE096d47)%_?#d+EW@zn`hsffJka2C%@^uU5YoAF3qLdWS@3Jbz!N5V9C0+J*zY
z_2FOqacZy<+p3yaO?W((fmXl1^;_!UyDsvsAzjey@Ba70JaGzt*4Okw-6iLE<zFqm
zjzqm$)45NDHJpEy=JxTy8#8a3DF3jr%#~NBl_oU37{Mn-<jb)Ff2bfd0r)A3P-or8
z^L-k*{0SE`gat7p-Na)F^!4fw<}eJB+&fhW6e)HH59$d8(M_=M!($&GfkLY92!QEc
zV%au1iA)s)Mv~j+3~}+0NG}>EbV3k{jblO+|IJ7Vfh2i)k%EqKnB+LV`Z(!zf<!NZ
zWr9g<iJoOUmRB+UY~IS6m>^&sPd^`TUX}3poBt<}JYEusExeHY<g)n^Ds2YLdYH(H
zwPqs3oBFa{{29-U1Bp5+2Wo&D3GongGEpNrz8(Qf7E35ZwdEw+T;h<#nxs#-!P=?T
z^&BbrcT&I_DQ|63WP(7-hba}wNvj`074TF-a!P$+YU59R1#4BtuGBnHtM+YC77#>`
zA||7e1{0$fp8=yOV0kN{evS0;Wc|VIG_qv+liu{{rSz9@u_Q@@{t58KlXMB||4i;;
zB=rTf>VFvyS&y$hY0WWXYYBChwU!uUd|Jx*@-w3!eeWD7^TaXp`<=|6g_*y4Gyg1Q
z?g?i8Lz4ha64Z%A6HbB`ktDz*x@8j6DGAAy#iE(TrWwfKl!Y$J;_l1hUC!dy%;J<1
zW5EDb^=I2vm3~L?xq5vl_OA6M@E;!*G$mmu&|e@tN24f5t1rh4LM1U104!IoWT2}o
zSVDLmc(X)*7QdYMfX@6E{O#G2ob=WWC>Q}?+z6_-0&q@%5GKZ;fJwR|SKfrB>nHH;
z?4&}u&M1%fL$1}NA~OYC49zb&bS@?5VR!OwUvs#!Y$j!ut)p2O?^Kv*QV0r16srK~
zn!w!#1a=u^$i-sZfMN;^9ZZNm0}aRrroO5UR^Wh$?J)96(xZhS^5jBEtd5X<oa9Ua
ze^Aj}K1+cWKnX^ifgJ^uEXs?3%2Q678K7jj2>AvOp@<oTGv4V#)Hf72o0#s;)3a50
z2!$0cgqJN9m9ZBUu0KU7&FEdpF*7R4{h$YoXH$#PiFD*AvBusEw1N=Kn^=}C_4q@v
zH(ku0y`pmX`+4lKi(NsvqV##$7Mq~*h!4Q-DX>En*B7D}>nkk|EYDjolQfAbmC9Qw
zs^spk<aN$iMU<#?YeF$8|M~eqv9^x<J7f1!kX805{=7+)GTG(J7?Q}P&V1t13dpep
z72l|l%H(1f-^HCFHe~xz%BE~Afz>I8+$s&y<3xfWQd?CTGy~#z2d2aM)y{@7z0ZYX
z`w`dJ+-Tct41xQ6#Si@YAKWNT6<CS=jR}&UVQaxix2(r7`joWRF)|vVX^?d)n7V0-
z7~BS|m|8PfE3#|jz@3Hk$!5BpL$zlKw#2<Di&8<=1nFLufSBg;7A?!MN<dsv9pASj
zGV6V3!{Hgf7+6CP=_|aGQf`kuS>M=cW>6T*fJV69UC+cy|6fgK9<tFD{ndtSeY%Q4
z%746xkV_B7g#nz6VB?vYZpK~FO0N-=%Yp&>aRkc>)=y0}e-CUq6V-8k@=%&`alOWj
zA&WUYL-pfxj(0rI#Q`!`%b~NNCiRFzB)B(EMpFcwC=Iz^1UKmqVxK#E93?3gY)D`F
zXLa-)b%-Np6F;K(mnj4XUY)+9)I3!7f-vY89psiu!%$W`eG?*nrg&`Sq5SWM7&Af(
z+TiPUqi3)`MATHIhFbgZnc)kh-$4Xoi_}?$XL>;3Y{cHL9dUsK!PPq(Q^Clxh^B-<
z#AR!PUq&eYO5@danF7H!j!~Cw(0ztT>1v-&{AVGXw>;3JN4G*j*F3Wsag5$MU5bwo
z(8DrSk^Foz;yPC+fv1<K-D|7V$#|s;NA$`Q<-Oa<*Ef3kYL3(5Ix99yfSlEu=^>)w
zS^K;|O;JfC(+{p-&+JGqs;4KaQjKygkvX=m913iY{KP4+4jim78CSAldU(psM2bs9
z%6^B)kux4E2~8E6KhPExYO1<QD~y=$i~l`1!!xA#`@z<nbd9If?O;V#wcrkqAwL_;
z{nx1W&yTb|P<3@bpwy~;wEW=R1Ukp(hSgRH1u&D=fk%c%LAj%-{eFaRl{o7tzL+$u
zacNkGwVa$#!2@RGu9kSi{&>P>KqBt3bSGj;Z0J9v?dpU1CPc-U*5=pH$T91KU^t)7
zxg@KL>uG&yxq34354hLwe$|Q-^eP`r0Cpo8n`A<>)9OpfxSUQ@X!lTfT$7;<n`Dii
z2IM{s#$<S^79*;!nr^(;i8!~1%g-HgEPdj9qmU<^y<zuy0gL6^-w}r1MxL88+={~h
z;i7fNMFB8^;WJ~+(Qt=wnug9}pZupq%Z6=J2vN$Q`6k@bHssyd)5q&iH#i^`)3qPs
zpS}^Jg2V~f@=eROUp+2SlZB;|=;bH5s@925>QinhrCoSRb(X3S0|h=ABks8-h}+i{
zxN3I~OB#*se=ToJd#2CXz2EM_vwo!{$C~MuWPGLTomtn0nW-SV?qOxOBpWx;Z><?!
z&(pJtibo$7N4;1oeer8zawyBc?CQ1hEq*pNzuKomOKRRLx0x<-T-k1%Lc&BFkxdrj
zaz|>}f2E!yZx#R9x~T{XY<zpAeW5G76y-PVpPOHvWChZ!L;Og<{}NNVZTITy_m|&q
zyB-t)?4(&Pw{GOG8^7~s|Lnc8j64g!XWl(Pgjc<g9-5P7%v>G3UF#EM?GSaa7}0C+
zw1)P@?S17ax4LH~f_IY#g9?ashjpl6o#%B@;`_Tz!9Gg;J}*itp7tSQEEiEzU7Gyr
z;%`jmk7$uNK8Kd7M~^-4z7DfA<;!W8@U;CK%1jcL`@0axw>XZ@rbi`6q7wx@7WdmH
zc#h&VCfwV56Zyfe3ZPgfV<JH=!K^BY%OhdXhxq3=;48J5>$aS4ksKPm%rm=iuIH@h
zoo?Q^T&25G!>C&1wz6oIR-&CwI*X0&t+eyKeOM-1r~9^Ns$}dA=-c(TgKKYx|Dul3
zaFEa`6l4Yhfn?9x3LsNhBRJvgf=57zPEv_aNCYLP#;Tynrl`fGqAMgOAu1`QsI0=H
zj^)$93F}-CJ8vwGHI^|jmp8sBZ)BxlY^7{|N!`jp!^%O&)&*;7iFI(pI=WqSaxrl6
zFm}IUiuW=1yk>Rvx{a^D-St4HfMD04TbD!bc-#uV5*~dmBE~N|Hh>Tx7?&8FkbFBO
zEj%qFDuWb5$|mOIr4*LrR908Dwbyk%YU=7985w!~`t|nq_R-PN>FMd&J^%lMhKh|1
zG?t~4q^S;`yx}gXcd^=}#kp;%`S$buh{r2Fp?<2#FNKwQ(=EfY))Jqcgf}0!cVJTw
z9M1Ea6AS}moH${`*u)Fm!s(>Mglv<n3rJxGyPWG+ef{F|@-5=@BciGs8k?G1TF<0W
zcADB<-96floQjz(3Nirw-~~oLabct(4X-#~l>ws&r|GPWxRulM7q1G$X`P-to786%
z-}<x&FmLa@-<&g?-m9=U-aeUq?ezWA&qD+5r6LG!)1lqtiZMw81u2n+&~a($#9PrP
zpe4>#_)31xz<CTolYd&pk0ocA*_WF4&DlP2VD{X;RHej@;FR>*r(5=skfAaus%VBI
zXg2gROrxe6H8(|OORcI+%S^lcWSx5hQHsyvV^e~fookSRf`)KmPP=4Bls*Ink#<fG
z>=-RW(ujJF3*M1ROl6Ytyh8>Y<lP1g;O)t{Hj|Yu|H-mKop8lmUlBv7T2^?x_F%**
zi{^-4<<3(x;}ZLNniF@qMu(o4zl$dl-iVry3*ro9ojRQb1^vaMggM&q2!}s}m0gzi
zS6<OwLy4Ti@s7P2o~E52*V-N$Kk^;bowN8<O;VU0zVKJNLT`ZRFnaFiq41Zk`2!n%
zt-uoyjU<Htt%|p^?`9ikwN)UElLKiUQLNmLvfA}nXxi}rN;*A|n&qosLns4<qt4`}
zXuo;`c!X+Qdc3|>FTdr5y@v!8Ure${vQs@-B#D0^F(K1@Q*x8#kbRR9ZO`^2HK)aO
z(=+x=&W*e!LKo=9p&&b99Dae2G8dQD?#+77_Q9N3tVu+NIH%RGqb<&ls*>cmr?m~A
z?niw$`4|h|5(a@`dshfxaV8wOa+N_#k_)<I9S=sDn=pC-j)$W)20Hbx;_%VPTomSy
zZyl2J$s)8~Ke@3Hgj7l1VSja}(ZEUc4SMXJS+1V}eP00h2K(?;MOpSI@*N<CxU9H_
z2QK59*J^Xbe=R(EVRHRRRg!d;Z;i>5nffZG^yl#@P^>gn3Pp=OY(zq_NE}O6vDtKI
z3DYd#qU>Mf*k_3JldN(^9}@Z)jp?qA>IFXA?|t7|QaE_R-<$wfa5T#peTTqG=|V%C
zpM;00{ZM43DZCMc;?{OH7&xE{3g%#rbdiK7b*~z{Fe9fwsd`5@`(XS~$?q#!>(!0;
z?l|tX&H?cI(oUs$o3W10OW4n!7F@&jzuCo#*T=ehKf~CkdtW@k!xhE@E#68qc#z?W
zWaJo~-=oSONVZbJ&~{TavIr#5j)@Oc1j!pb)Gx$T!9O@z|6Gp%w=Tg398-@e7m}x%
z{0Edqer{Zm&uV4C<i7iyd03UN)zPf}j`%d1%14#U;eYL~{_fZPwcX^9#pp1vmEAR(
zl?bjy90M%@|AYSQ)!-0{p=WKB#<R`EvefvE@fH8a`-@20?eBlgje08_;&$~tbhx8_
z%YkSKJs=`NUUc`M;_c@*f01VdrRDY+5IgB!nEoA*izi6;i)3Il8->Zg@X_Fw?oDAf
zD*?#)nc*9vt#D><Jk*6{aIIlP-QXuSzc4U|Mpm3g&e#%><N&3!stXWpw+Ay9_Mq8t
z#vfVV(a)&sL!CW{PZ9X#DD{VrxP+2FbrNZ3L{mASz&Qb59tLsZxFI}{5d4~t@ppEe
z{P1)XLum?2-wzH&ZfidJ8+bE6_47}nsrwmsrmOkeK$6fb7{G}DLmO`w(C+E^hbfbn
z9PtFVbbW(Mcr2YW2@ZyD^19Yz8AS7Vin_2+35o^EkX8m=SdpbzPfk(W?6{bieKw5g
zvejQ<QiT|SHP65KWc;mqt@$H#n+I??-h9pu3b`dU;-;9H(!az94#VTQMGsUaO}npY
z@xf6Cq9!Iv9P8P89t0t&<g7M>L)aGzS@dr<kxkSHCSO4Y-`EBs8P{=~&Z5!+J47j2
ztnCM1kOEWJ5WOf}Y2OXvU;f;tzay9KpEMf`0Gh@x7%QQo8if!`f@M)31<D`@g1H|O
z^U#!PA--!S2bz{2^H@n#neBQIR2m>o8Ti;D**z`kY_hT+iM`%@plVdxb|Zs<Muy-^
zkH;5O*oVNes1XP{FgDX&rJ81`-n{3B{%lP}`3R_9P2|*8CiyE#0aD{69Z{Okz25YX
zO@>|GQ+ULLF5+v*TL<BG03G$E*}Qn$86gF#yPX3!hupYN;a=E<<JyU$%^ot7uXF!}
zW){9^zN)Srf9~qX`$`^q=14AhY<|ATK=MT=VqYTUkzj!o=_O+00hhZpI7qP_<f%R8
za%0>c-uWi`KoE4c?y`X+DgHjk2KkH9>%!ArS=)C+dpYANKq#vi3h*l3bypvF;R=LF
zJRu)^5g&XPOl=i<l;?b$@Lhc*7-aqS_tFoWj6OTGKPrEbWqo@=>>fbp2$e3gdqR0s
zmjHm>SsK$Pr-v`MmxCN@5O)zvPOxFt_&zI+9ykc9fP`7u1D>d76<)u@fV)yZ-ph)c
z1~%6M;4RU37X5GIdKCvZPhy*dCKe+vOwc>Vce3!ceU~?iz(OO`G+J3I)#$enj_HFQ
z(lzMwcEh82>re19xnf+LT+_sxP_}(Ki9#0|x$6zQ<_{1;FRTq^^B2wM`4%<C)xV&9
zeoTKl$2!sJj3Q!>nlgUt_yXLCz<uL!18_U`)nyG3y)9mjqckDzec`I)-B1EsJsE<*
z$8u98D~L8F&ahwYD(kMKYh#S5ur!S?C`*681=HfWlax|aP1^K$D3%dB$?8e@_L=8X
zO714TV@E=wwl{0*%jg*n1ovOx<u2&}y~5k5#(R#wTLq<lNY|a)vy$v8E6`RoOcm$Q
z_Ne$5HzDln^!*7Kf`<YdJSymWT=b<VLYp2lVMk|5Li2LwQ&N@g03&ie5PG3^saotD
zty1x^oKa#c;y{mF!)IpvK#E83t*1%k{g2BbxqZRM$auCw=E3WmdP}|RbF$laUAV&J
zXpdQ3DI82d92kTD-p_GkK0!Hb#*olgt-ZCSr|^Bv3>!ge7-C72;GK(k*}u@kMD1=z
z(AiVpDK#y<KtW=%^3qKsd*EY4`g>d48E>-xBxCyF9mgOEd?ULh=todGHbxK+hR_J?
zx!DWp2RJ;<!us6l*Y1?!+OpY%QEtdOE_NFteLEMPi+0ju3TDbIi*zn`#}kJJ{KAT7
ze>@+I&vbD$wCY6~B)qoN%->srS6yb9QcwECF5BQRq<1QezdQMFdBIPMT?1dqQLo^@
z!bu#dRv>(+>m#-r<sB&8klnZ6Ns<xLUB+gz$=sK`%=xVnG~UK(pPi1Fz8w4Yyd=xF
zHdmE?qpq%{gKpWGKPPV3kke<8_GGRERW(`+c*!v6q$k2GPWz8fgoOlw+TRf=H>QG;
zgwBUWxh}@?|BOup`SxHnC&7A&w<CEwe4oyPWS59~M;E;H(K4hv`XEgOD{%>mST%(0
zv#`d=Rj68W+|Z2L<@lH+^|-Bv^xe5$m9MW`Q~)7$FstNncT7Ub189zI<m|Yp%o0(y
zUb;6FiV>u9+fHb!lEc(<if`N8#)VeAmi&~br&y6-oX^l}1f?f~X=;EfL1{TG-vx*0
zYrZfRju1W~U(k|th%wQ*9dtMjX2TfElR4#Q6lok%C_RbIi-~WllkYC2IN`x1-q6CI
z-ZIvS^2SgPW3bnqm<t#HCjqMenXt@}W=ctx2c=|Ba7wF7Qqu~OA{`N(OCT*DC{==2
zEEz`SWQf@2lu(b9!GbV>nq2KH4D}k%&|wCcbf0bi=kWBGOa7A+_j<fj9BGN$g&Dg`
zP~k$s6(e8IBx34Q)W!%jE;RFJGECCyqM=}FpXj}2RV`tB+UuYU14?Ep0QofoVwxc_
z2}-l!t@YY7zbl!Tldo^Tf!6lI&WiYXVKBZvjq^l%lAwQoH&iPR(6P?6t&scqGrPFn
zv*p>9SmOXgOdM|ErWxk86x?C}Df=u?_vA49)Df2O)0{>qO~wHD%Msy3P<(X=M8yK;
zwj46Jygkq8&GD2AoVmP$S#Qw^`h>hM2|*GKP^#39n5_3*JuAQE+xZ3{win<$*a)ZW
zoPWpHoSO(5>Ze?n_H_B9IMsP%OvrhmcK9MXC(g+*@RaZqR%i~_h~W~sr<r9p8T+}g
zsJJ0x-;q97r0~c$Nf!YVMJU{%7{5{s<0YN9owxzniZndS&HAo)dcx`(WEqW1?tRMA
z(E|yQqDmnO2OA~i9ghqjt+CURT(8nWO(_pFV(*rK+*iSVFkS7A(wd>KMPRh@PMRtr
zQcRJT`S{MQLf@@$&~_(2O6W2^1!lApu!Oo%0TUh-DwH}3I&0uXt%FzK0L`;<{Cc@$
zcOJsWcJGu%k>G0xs?Zm#FxNo6-ch4=EgQ`0-(9>W$IOyIOOli!l>eHHue9OWb_$FN
zs&ppZ``%X;n|D9$nYRQIj>4-gkqQk6RgVyr8GX=eYE=lM^1joG6h$b5vsYnXkzquQ
z(_+zO36N+lm;+0TfP%S58g^qjU$<QpD!{Z@JB6A1x?ceaEZ9@}0X_&NDyTcMTzYdo
zit{XkJ4||2AMHcOHjU6?2?yb|9(Z#XC{jS2%kf;NR~1MAiVR|>09t)9=EtBo=lZ1L
z`dm(J8gJfo)B42J`dH_?r24v2GAx()fEQz2MFO1qYdL3XFOZR*PL8!xwcclH4^$%(
zS+^@#YuiY(WR!E$n3YO531TAyotI$te)s>F0Bn>d1{}?uT|g=jkiq~|7|j6}tH_)K
zC#8wJqGa)_MoJp`b_`5I24TTh&Qx=pAaFvbO`J{Zr{Y$*BT)A*aC~mlyHiI6a`Q{N
z7DuG(yV2I|DPVW1(RsJAAr<9>1r%lgZV=c`wFJ1{SU+_`3YpThO#hy{^}`e=ibbFH
zY@O3lJ`mI#eW|2ItG!M->rkuqcm@5Iu2z||E#9_SxTIMyMT*|gR>iqV+RTx=uy&PO
zxFzDDlCp7!bfa~Dr=MWwgjS{bZm0b3cIZIs)~_~jT8({VS7~jHFD_n!Qpf%y{9|}h
z+=foXEI?K4h7BBEco$TEE2O(-ll?<ai8;BO?zE1js2kYilL0lz3-x6E(q)*98QTg7
z9|gsJR*U=H<Cv_Ss2!7{t)+f);fW)x*G>(O19{WyH>(yMX7^n+)4ZIUz5(mj!?p#$
z@upTF)=(hjx9+j;{nJyu7;uy{65vMy6(`l-o{DfNK^x7~n$6&@pSzUQa8idLd88}@
z{<f6hHF%iB^yfh#y?y}SUjgUrP8(pDZAo}ws?9YddpKBlUA@>0u2v9w9HCFGmb}kn
zu2#c|5d_|Q4o>jMGPYxzT~M5Y1JWek4=&w41HH8pgAub`4oEcQ2HhW-eq|*nLy#A>
zagG4jiGil0#(zKlnC6OsbFi+)ba#;1Z;;E(hRY)_QhpCQmW)bA89Ap3kjS7%yR<pi
zwHUEUO++KrX=sa#uUhk%1!>F{82j{4T9JW$$7bAtB%jA7oC*Pav+0bY#$b@~9!~{Y
z!niF7u=q1xbtS^id|ZDOM&CZBHwcwt)v*0z@V#o>E%u26X3UxV)DG-@Wsf#^FvovY
zIbd)!YW11@>}U+{1hKRzp-StI)`XtbL_=zM^6Es!p9vE0q!VZ&+jTO3S~c7nIO8ht
zwFCHX6GelQWq&3MT&EsHP1UDo<d#k~uTE)#!9rGm<^))G`dPc|b7AarYU|+h!PV!(
zI)Y7qo{#EGkGoDkjhdb)oz6l|PpwYB{4+hn`(jS#g~Rjd`Tr$sD}ygqS6{ess=ecV
zxuNrN)Ai+6)Qg3vm%D>6_f}ti`SY^4=;f=fXKsOX?sTtW@UI@t(fnA2-4CSs8wHJ&
zr44P5x2<}0&4$jmK?_(zB@<XODsGjf(y}s^6}2Nyni>8~L)l-@(Up}i5$JyE%;gKd
z>aWVrr?AnpFili2Oj8)<51GdU`F2Q*3jPX63L^#2AZNi;0EK-9Ste&O9|<B^CYiS=
z%;0oUL*3USY)AksENvl!3L1{av$2f8Og&KON|ZgL;HCYRR4*2)osjtGyrK&utJ4DA
z!84z0(Zv^02sTc6$^8bqdzWwS)7=6X1aWgQjELMpfifil4@HjISdJJl*R&Hl#G12A
zkLSEF?_CtSB<xPm>{3b-+Wa#*<psynWl*j)7jG<A@w!^s5f{lH+7ZO<(7w_fbg`if
z)@lKCqPSIwJpJp@{}jXJPT#~-L^bIxO`%w(*Chs86jtiRWDH<LfB4lk3}22w8#$YA
zb|F%H&1L<`P1)6I%;Nj8wR_cT790Lc(XbaSu)iKl)T70{XxdzJF9uJsV2H@Fy^rLE
zqO=m!@K{8csMcjJ98e&%@<O=8|LKW^@Ju(mYiT*5@jVrHEMhPUL$yMG%O$+DUH=C1
zzdaY=2wD}}dCTTTiF&v`7At1Ze%>DR{&H}}D?WPfY}SRpvC?07-@OpKwf1&p`3$V|
z?j3GJ^W8h_IeK>qN#M+|b4leoXHA{5WOt2<gP@g@S3JL0WO>!S*12MCv}}W?z5RVk
zhp;r>Nycfxt6#<K@#v6gpsdAV*0pyn0)4W1j30}HKYqA(+475`Nt~P+WgRRMl?o`B
z`Q|);V9tM)B>Xe5V#TnHZ3anya#rU1qXd;aCmDYqZ4<Kj=%G?knCc99$0BDFH?{fh
z;r6#+MW%fFHa$@IOZk)-VU<yk_*m!7N~L>qN?IS3sj(uTm9{<|2JcY+?%1#H+JRKS
zV>k3X%yh<-hAmZ>iQ1DH+hcuu5do?*_f$jpH<#YQoCgg5=|iu^d*Aq=CZc*y>4RbT
z*K<NRqm$QA;s=jnn%n(mrWu#w@~%M-GBonXfI^Xtq=E;Xixl(io|+Ra?GIWE_dce2
z9=5-RiX)qkytKb(Nn8lkyZ1oPLsaKx&B)W(FG5HAwa<0D(;OyLb>D>OF26p1Re6je
z@+DCJoUe+3ZzXPT48==5yfx4BL%HO4weBjbz$%lWeY<|dk)e>N5rWM~Bwojb>liKi
zl^43f|FzmG*N{o}Bl^R!-lO?<?=C8^>HEhYog5BRHEQ(l`xp#4M*sYAY~cOHk#Yna
ze!aH<4Y<hRr*OfxM!|uN&B<2Xb<+TJbirKZNR!(;=9T;{1!y4ko49SY@hiUFjICw<
zQ@x5V(i3~xTV+3Mj1|eoJ(^B>1gj#IR8ivX*3D?)K9vXYrth?sYM4#mahfsk&vey5
zUpZ}A_6Ca{nklN8cNF}7y4l?^_WS(i@9Fr%p&uVmRQtEK_H2v5g-@r;rxujZ)6Ma)
zGi%kZ0pHe^B`?dxubWY?3QvE{pW?q=3^KZ;c7afFGgpvorAM)PCt#gfYo7(nN7q{O
zeq_q~cxktvDh-2*jF66c$0hZzNZeM!Nj5E>eKpA`3^dkzdR8$bl#A)VEc&>KPtZy=
z<1177fp;w1);)9)-BrAj&iE;)jr|<j#+fcxqm>^m?`oNAYRu2TYxy9to9v0r-J4%B
zV1}`9emhCc$R1{@@YE9&oU<Qu&Kfm5+6aWb8)We0Pjt`bwYV>AkLSn@y`1Oy-q-(y
z<t47ig11L%!e@=YLK}Uq-~9ZDy^m3x3ohyIzD+nd`ugq1>F>W(Fb$gq36G1TMTu_~
zcp2#@F^3s^AbuWE7gp4Ow`b3qW{WV?TNvD_NI+N%C6-zV;SEwT7`=oe4w1x!0Fl5g
z-Xm$4DOlR6pBDhrOo;3XZcl46+MDR!q!vnR0{-mgm~r>`UW_me!kr@t|7PmV=jVl&
zt5erj>@w|ip{3#{9N)Yq==GV#e^!j+7)ZeG2780|m&d8rMN40=Uh-prc<}yxxWS5s
zq;o5Tv0*8u>S6-!cTm_p`4Nsvy`NY5JdM4@avnR%^I_T&g#_Jo0{G&X0@eWDWu9QP
zx#y^A5`n{_Um%uKm>igB`7<r;VW9{^))!5Ilwe?R7IDL}=3^(o@4a|w;8OZU#hyz7
zO6LytqQ*lQza(8Y`BQm%?Dv6@SuG9BZPfbp>A4efwl9us%X(vE^n`M8;N@lrhT)gN
zaSQ4l8=dty%0zZ{oYmUg`bjLBNQGA|a{n3CdoGT>!udQ~5GN_-h|H*fI9lOUz>e4*
z2xt9I0<3dXLlDNULx_dllC&C`lChI)F$QOt2T#6moPg^|cMKlm1QX`R;yLV#=s0_R
zea7+`RVhg@0Gof>Ej3C8m0zuW*EvX2{HK?!Cl(5=HWFL-bE8&><*(;#fahQvPJCX-
zaQc*&UO#~^3A6ru%CjD2#1lT(WF@8-SoxUqyOJCm#Qo3@x&Zyj#$f$;=7u2J)1oq7
zL8DsV(G!<@G>29iGAGzyzIRK&$i7A2PWS1|K1A(8U%tQr*>U~3ad=H!%KJlb_t202
zzZK5l2|iDoXxaD<%Lp%X>d4z@*Y<tm1vJ4!-AjHClpfKPtmrNrt#d+&`T-kTRN%OO
zvh*+8&HBSV%`ZzIGI2~!1P-^*?cT^F$n%G4mb!MZV*G>2n%Rf-eOF@`@E)+xvO6Lf
zC`oYKtJw`LN<8j(r;oSdrdMoi-A;{Zd1=@}92&=yQ#={@5U9Ui+41GmXN5$|LTm!>
zOVz7|K1^FB9BR?w`{)(^MqJ5J3|dhM^Nvj~G-*Pk51r_G<%%sz{Ta0QA@4Dxq8mN^
zLCKM(e@{&yd#Tyz#eYc<7JJ_j*ic56TA&vG@A$KbBEfiNMS;hI<s7YXSB}u!R8O#v
z6Xq}BZOFkF7{)Y^dU3zcM|{K%e~vl&#8LMYVDlp!=pp(RTX_WHN1Ep6wC?(>{)#e3
z3d0yD3Mtlpwd!Rfk+094i^ObP<odHqe=uyh=XGE6)=spj5}1iZfT>Wx7YrU|Ul<Q~
z3?EBBo_XljOo1}CQ(#mj^}_uzkWBpwr@;)7^TsapwNOa~FRp!-#3UfZTghU2hk=pl
zrXN4l)yo!6qi!d518;?!`ExYZ0y9X)zm5|=_8~p8J|v=>GfX5waqlr5DU9{@D=NmU
zL+nX6VZTRF0TcPSpbT5t0hA*LIkupIqVDC3qxZyP#Jp$k{Ae#7v<++`zX=G@KTd>v
z?Eta&5~vWi`UHB<4M0H5EUWSD2B&k9qGrICdqI0iu+-Qzl~$D7;Blf>ZoA3qS|GEE
z?I;{74w6<oQiz(_6r>NIC^R_GBeIC`B(<ALe2I&^3x)rfuXt*`^#LLy2x5SfiS*tC
zroA&yOvEXl*!CRJ;e;P^Ge!P#ViVEskC_NK85@+5Q~FV*4#e)LB!*28mQJH^g^bJT
z&J*u{TcxFQ4b(U9-Y;b4E{5AkC4qK5%KygVu5nX930imtHqb}iLz5}3i4c97h)c{(
z$}>@fukn!edX}jzI#lgFDBBYbE*rewoubhDjE$en1p4CTIefG4(#O$`V2Rf28-Xm;
z!9`Tf6#x}TfG|fl=*ooUs}F)4G-{VDmnWG~n_Kh>$p|`Z9;X(bouk-m&0JI2q>|-Z
z<!J@}9N`zNJOO0Oe(Sw7`5R0Ims%?zeO;oy5!%Egq?)_y;q0J={Bq%q0QttWOF0p0
zN+3gp2(Iw}?F&;BhxM)6_o_o-j$P8z4*`mwu}XyHY)1a0TGbZ*xt*#Hf(tPn;XW*u
zVsrn{n{Yxd1gS|OiZaOs7as9ooCz*#yX%s_>s!Q~j9t@?F<L^0UJN(%o5N7#zGo=`
zM(>r@c31ZM1=;7dANkbNOxkNxDtJ1F;rXHqHzS`1mx=L&=xdokt63C9s5iobK)(aU
z#iRQ^W54*yxxV-z{OO41dQb<^C`ekI|0feX`y=Ht_Rg&@d7H>T^d$B9dXwK}?>L>U
z0L~?&#}kbTRkFc&OT{b3`QR!|gKEmj)6L$vG?NrXL$7aN>TIOd%;N%G%|NPWKZuiY
zbnffZ6Hjw(Zi*dT^(HRYL;J8amH}Rl%}|6)>}cJ$<AM?1tH6Wr7b2o#X=L%hHC+(E
zHAAm<BlP`vEoGWEd7S>=^GwJf1<H2VS$_A3h6PJTt$q7qXAl-k<4C#3!WdV9U|dtH
z<itk(Q?7VSfzwhvll)Qh5O)$0j;R3Tmv)fu9PCzU#q$ropGezKquZ@A`{(QUN6#w;
zUpucI;nx)irS&`F(Yj84$w^j5Th2h;=TBeuU<hrBEH@&$PG9UM*KmGlqV;hlfZ6ak
z`s_jh&GM-c(F$x&PIQ{?fFSG)c>za5C|}P=u#GytJ&()IM^reyI9&p08OR``s6voD
zS`nIS%e;^N1HgS^N0apTnaNI|#RpRE?&N^5u}A^ztbX4si`dYRj!Vv8Oec&om{|rZ
zVB7?PXrc@4Rh~#oBQ@`Ux~~TWW*u>wJ0egfax8lkdUN|hsL<7zz29e@$*WuHMCPZV
zx7ge^jUGSSo+B5*rJO*MS2{~1+!vzjoSetxyXVUJu2J#&6!pt(-IFi;Pm(f*-YZGm
z?&OR)j8C$kj{focJ($X@bl#vvp<)uD=HK$q&3pB|APA1f=5Xk23m6ra1e)^2#VK*}
z_EeWF9A=%qxTy6?YrZ0I9F}g$tjIl?&n47vCqdJDKcM~m3Cc?)vU~a80+Cov^Zrd{
zQS&}$W@Z$FICUG%b@{lHD`xt}09~|P44i}cdW4A+=z#bBkLEl68}ekJuz|u!V|Avc
zLINmJp50$?OwDdfbYU6c$5)N0jRPEEU*HrhPvU@Vio*!rj>&=`+IE-vwhc1f@HF$^
z`OLqvwSb1jAM~^CV`3)gY`9e7*LVCzi~`J_ns7?Gi34KA@mQ#VJ{2zx`*qQo8^2vF
zs9-Mn=jp3h1I+1($FHTWS%x;m;Q@cB)zx8R$mC4{b9{JARYtFTACVMr=kVVz$Z_$3
z#?}^RaeIJoJ5WADTYdO5upM+w59CAuLE8Qs37ZY{=9us%3mKpZiw2@Uk7GgHf~&_k
zCW|JfpvvFwWB-Szvv6zj4g2>J#zu@Dz0pWWcWk3mTKYRuB$SraZ8S(o2r43_A|g^s
z2s#=BX^>Jz31SdZ3c4Tf@jKr4UwDq^c<$%EuJdz#nD<C5&nYZSTTG!iB*R3>7Lu7p
zVs686EYU-9>kZf%6wkT<2O*rylnF&vj4hQ_<c@InH!I#U)(_@726s4qdjbJ_$QNJg
zWF}bDLOD@)o^r6FcjeK3cZj>WoGilJOsQN74O~+psPqODtN-rYII55q%5(1y4}#)M
z@b9|6hc4Y~(Y|I7(F55I=51@>`=98S0>3GQhY!#HVUK@e!n>mqqJBPuBS8Bx0)IUP
z7WV|!LaSWLioGZt8x2B#_k@6o=;3sJ9uqXvKAM$H8(#)7O9Mj`Fc<=cZy&=@0nkN5
z<uDkPFcFPL5gj&0*uIEin5b!^sO7$>jiQ)CBT7F^>|B24dERy$CVsV1+_F(D_`K~n
zOd_UHB4J;Gl;<6yD4E_UnYAx@M^UP<Q6x1?>fydrx#ES#VHch?67TN|N@7u0zj11p
z9n{$R$PuMGZ5f)ekdgC1SB1=&ZBMhUmp1l8SXy&;80=g{PHb%4`Kc)O%T`Dk`?#)K
z=HtF}Pte7QTzQ0-9JEXhszjQt=RaJ5oi!R1n=#3+t7u}YgN6a>6o@9VfR_M~+)=tr
zfmqXVE9WZ-Fo7%p$ip(AoE?O}8hF=JwFtu?NK_4FKhph$Q)O41U{ep7f(QnvotCRz
z4Ywly;!;MdTT->f!*2+Ob21VkCg^!HCCrm1O(pZg3;9BysSsTN^mTYiX_J=9DmW=1
z-U_1FcU#A1Qs)pCW09}<;ujh<3^Bn%rkhra?Xpb>s-^%)ki7aB9pg=NfB_{zow(zX
zs8NZ~DZ=P|TL-$3xv(a<WUA`DaFyRm>Kimk98<HJu)Us?q9OGc<E3WwdnHZoCUi;|
zPxLl}eHGMA_@ZP_uss%%Quk)$I<p%AO2`4eW(n-TK{c`e!8wFtBOo`MPxFSh>)CEZ
z*iY6_A+^(HeHR&Y*(DAh$A?rfCKZU+e}Om=H9s7v4NY4-vlHk(=+UgRn6Vd_RJPjG
zx1`zKP9Yi%tr`6ybsF_vlGZmmJx9{Fz&EFe2h&DV&u=(hgI-f$Bt&ou7ji;4M^I(9
z?}BU%zu0OZ>vS6)*EI>*6QLuD^DbBcvoa`vUA{8&*+`frHS^_M09W(sgcCfQ-y~<Z
zi!Uj_!Q7kuE)dFiNuA#lY8D`Weu+gK_?x?uuZ5A}wvi4W6x;I-3qpMD%{hNFzcNri
z6jE04d8?u-{|e0($>pMKkg~5qCmCraCgVcj?WnZIZYqR5xwgN>RNs%Zt~FSB9I)-c
zVhc92{N-+A!JJcHfxUP+s@wAAX79NtU4GkxM^y-Y<S7uP=9uh0p!6Qk8LY~M`Al%_
zGxdIoqkD#fzIJfGjPtF`^SxxQy92Z~oDt+DZWttDLOowvF__&0aCd-nss4PCDt?c@
zB9?-0Bi~!Lt#Xnbom*J(Se7f7%dfuRobf-`M2-0B8wFY>`HVSWT=D>=tdPdC5EwBm
z%~$Cf39uTbd|yte7R@9>qZD*^zcO13q1$wS|K--w7aN`(C3K)9!H{4%b?xKYdv!6-
z>nyzsEZqAF?s9iS1zJL90CaiE*Pw)Je@UICKgt==>42x<mvMeOkl?8(rG?oiJ`=!&
zNyL`5)`BY6`R5jm1_>qx2eO8%+<2Iw%4ndb+5b8yT`XF!$jRcyYwKg#fa53yQsQT>
z_j$*NjN=P`)}mi|YX|~3)e<9jAW@b2!JWq!O4Xo?jzKtF^e@lY$Hy1$t7+C3ag3=V
zESeHnePdA6ck0J6BuvhvbbFN}OGFeb>IyFQNR|LtT_<e$dHa(*A9PdwpI6F6Kh|?X
z`@3LC&s94sj`}DxDw$sY^6wS}#uvz*W2@HVxXO>w8!d5mt$JzP5d+5w2}L&(T53m%
zf@W?g)vBd_bBuj-`Nr3yKqg_)i7UZaUs`duBA&8qGPTP!0%#T9w<>3^;*|d=<*yFd
zPFukl`-*?A32L@sz?%paB*85u?#Y$4{`1VdbiwoTSX$B-Y~@-V0h_(z#Ie|&4K2$a
zqF<VZXG$G6ZbLFuF48@50vtqGZ)fE`ZmpeslJNp%OYpnSjD_DJ$*Y$|YZ9yRA&Bnr
z>%l(hU;F=Y$;1oqK))w~j3np?z7ctVybt>su00VKKwYT$+?nz;Z$IOR7^swAUR!nE
zrF&BL_rzUjzrC;j&UGEgdy2WESNS=2&TcO4Xp{`l{yhlyy_fo1*q|*vG*zY&Rpe_{
z>>R@ztHJo`<%^83D)pPW;lB4hzsOWLdo4H%6g&k=)<c7&Z|410(~rLYe)U!ln)rr3
z7p~4IL+H(A=tW6?L7}+$QS%Giwe3G!8liXiT$Ba>WI@{#m11GoIpf=f8JM;|gT#C3
z8~1S`B{sZ${^UGY7r^N6!78<qPxEGs#QXC+eoGptn=EuDSY^LIX(XQB>6kmgyafi=
z?k1~a@caCAz=Cd^a1>pF69o`3f<%@J;C=OJ<sd}{55NA+Sr+hcilhbLxi=Q{#=F+x
z5E4L>fJox9{sL?5K0@((Sq<i~`}t(a>s#AZ(h&y`$?G|Bu=*Zs{og<Af9}^`CN;u^
zZ#JLj!Fbg{EztARsRfsNqwje-1$MWOp$rRuPXu!SZ`h)t{QkNB(8zrTA(_e=Z)#0b
zEPp)4vmT3R#VV^RbIkZ~nV2?7^VLj|czrN6-r(kAqvlE?ySzwC3qg;BYjwZ@?>%T%
z;OZ5>TC))VwWTtUnbVy3kOszT#ng5U%xfk}&5R~<^#i`qQ-=F*7}H#D9TLCEzhRTZ
zu&a`g_LMhW55UB<H-~)e%3W>0DJ+A0S0x`?eSYAT0EtK`t9<@mf(wmYFawIwR3OFr
z%vg$|*G9Q9H$zarKdujcBz&==dvJlOjODL-bhlEYxct9(m0H!OA&*-uc{~3uo=-qK
zZn(W|IBj|~(w@B3_KmMVkbefizXj=_{9bI6b%mgDY-I7F{5OMpT21ri?GM@wLTptR
zq|%itM|41q+aef~ir`pbF~<rqryTg5MEL@cM0B?V5j2`wA=#fa`t8hPR=eS5K%0kU
ztaFUauJTdc>i9<xn923e&y<NFvW%F{#48cG-b}f1H_?5(%b(SY>OOegBhp<%g)b#`
z>)*5pYl1R~A|oAG`)%$55t##hbnQKH1HcjfQ%L8_`sLJ2i-!t+3CZ!aPX}<Z51jII
z(4Hyq@yCQghC3}Sj-S-O_lvuHYLQ<X$#EC0?u=XgV3hGU<eoe8Jb0$8v!g)Fe)#W|
zoJ!CBz^R_U{qHDU;vFp7gNc5X^a&b_%nRd-Xb%|)6)e8jH6VC3%VO#Tgl>QeuI0a$
zq&j$4GIW045m?qaa~A&Rl92RyuY8ePKZ>niLi^veD<V(v%bH5>+>h1RQGwV8NoF7P
zjZSPvE|+^~KD;RG^YI=32wxLgB4v7L$)3vKu@K+^2U({0n71dH2fYX?ftXb#S-clD
zU+*)?P5Syu#6sP0dwAV~EV{&N*v8RvT(NdZhA;lC>I=x1Wy<4HGp*-417irz`GmL1
z>pSLqn@`vG(k4Wp^ZmZ-ltH_N0J5p!)}FM(k{Dx|q1MT3Gzy)e=DYL5m-A-n5XbJ$
zZ#ct4kz6q$JIMsQ-GAV!hV_k_d7I$fcfG%^>WKJ5LaiSE%CWMG^__l)J}~~zziPwx
z+C)9}g5zqyeXFdhj8fc&JHz;<g6$!=;J@Fu${hndLF$AcpN!Vl4JLSBn17#RX;kk=
zs|8zfVO%ccJ(X$IR;m7-V~|^7x`a^CtyMYQ(<$1cRO*SA?$JZT%K>_aKWHs);lCt=
zU=Tb;N`<4*NZ;XhXuPhckf($nQIJmo?szhXw|uc;tRkbE|B0sZ=Eu#RwSA4wYwx_n
z-{`!1$A>3ICWJC6^kQNBVX|=fKCIDw7>~V+%X^;sS~sSL#nxze)_KyDsLj)C0p~BF
z@OLDnh@T73N%ivI!-8aeu0=iRFY|KmJ&StS-kCI~@_=g@cf$s8HHP{E$|Yxbvk9KW
z^*SW_mVOE%^r?r3E~~CXADp$fm_-1=(kCg9(2E}bVqIaB<#LZ$wMxcf%6AWI#3-NM
zXwaMVwxZWrH6y>*$M>@B40d3Sc6B(|SecDO?7ha>L&65tF&kyKwJW>~i*8;5z-63w
zN`-Ccx|$0P6u($t$?MY`A-`bsY|<{RX$rm~msB;LxzPG*3I{VK#Jsc_+F0G&)h?Vd
z?GYWZ>9#Xf4CCbMCY&-7Cdx1wUz1EPR^y0Zc9Ye7b|XlV_Lj1ZXJHyrPvdTo$tRUU
zDF4qtN9k^69MZBXruM|KTR<qRuq}4*@|?WGPV(7-+kjYlgMH`yNNEP{j2k`ra#rK^
z#zEfIQ{oAlhugC+%|EUUjIFEu$H3(a@#{;ceBo2~{2Tw14=k;&!#c6r_nBR|Lg(ut
zA&t~<ZGCEUC;`;5>*gHNO8-bf;d=|!@8nfE**(Gpwj#h8MJh*1HII)+1~6bh$B-UN
zBq8#x0g3X$*-opPgD(b3xd;3FF3}rrfejf&&u9m{d{lv%EC3>ek_7JtOydy>OM_#v
zQDqb|Ql@ls)yv&Y1D4goG*bmImHYab&;EXqN0x<PXodQP)v6MB&ey@pKwPNQViuM>
z0lO#qWOjqqd9>Uwqg$qojNrEh03mWFzx?=KamM;rWOC_ulk{%`^j!vjq?fveFxcQP
zKm2r<#Nd}JT8X5uS4pv)tlyozzL>VkT_RyJbm<z1f35cls5gTrd$3pq!|{$znzuS4
zlGFQ96uiMZCqgm#3+t<gQsQO$5iS*#P6ip(6}Q>SrT7-bCDxJTMh)K>SugIF9ls`B
zuk$Yi571k_pLoqzx*CcjKSxWsgmi_L(Wu?JcqhO^Q+a<5s0S#GAm=$8H4&l?!NzBS
zg|q-jC=<GNmzTe;e4cl>c?HxT(i&7Qpl}1H^zzJ#zJd}Ah`_?ZYzp!(wt3wm+V`ig
zuGJ$_)ukEQ{`uRNo(VP;0>snK;aO3d^Fdc+S_pMC$N*|MA6)a`2hu6<g9^X5ceyH$
z{9l>82O+w9pV=?zJwJH2!T?a?2-8YZ8jAp1?jg=|Hj<yCp7W`$71q>%YOJ0~xAIpq
zg#s8Y^D+$A{M`Sraqv>8o@n-t_8ml%m$NiSwgzYDRNUsDK*^U^jJ~s$3rT<Y`Cf1(
zCg0<hY|Cfk-C);OUT|XY<SZAh?iv-ZzbDI)C#0b1uh5#+H*c&z5&r24;rh!z-<p<n
z1y8=54rDr3CiE_6@rzWYF7WrvvC3Mcf#v2NA)Qo{3f;U_g8@_^eQVk7tMXfcPQ+XM
z&5h}-Xh=;aiLUfKgEga{X!W(Mw|y5U=@XJDYOw;7Di@C-N!~I>Q!#98x;*zGa5Opb
zptMC<@}Pn*wHU?qlRgDJXQkQ~0ywGHCoOSMp;29)I;w{6^c?DMKHDz`6vJ@p);8kt
z_ezTc<_u)F*F)*!-y=^`#6`j|w*`euuGPWll~S%li{9K@6YP7YBbXTW3D(Q$-O2~5
zBZVs}*h>(PAv+8tAnjuA6skNIWVT>n^^Oe-_X23;4%R6|YjsiZo^Py`ujW52DSUtP
zO07ioWIi7W0Yv?#YlBW8dqYGHVyk(BeQjW27T(+k>a||{-A?p#LYU5;i`vZQw|+hl
zS9$(b_hjRF+{JMs)PnGe9*YLMkN_X4t>wXjL?Cx`7x&i?fRyd|(4oLY(gZ;A$gNK@
zwoXRKjRO#p=~vyWH+3}TlD(VR5j)x>?M>4{lsek?Z4VjPxl86SAObl<fYTl2b@Xn^
zm3%+8kQZv$*NGgJyc?3i_;%asbgCdz)>Eufd9_Cf)~4G8s5vt<+TTkpEcyObv(1nA
z;IsZyZARLr`X{3Sew-&1=?#E7jbqe`?c_wu01lTz`fs$Oq1ikn=o2t#%Z&o$*s3y!
zt|3Km9o|{|{)O{D`ODWQQ=SQ-H&Jac$A%}w+RzYbw_DpC|A8E;sT`XgJx@EUtzOk!
z)~S6oqA}g_rywvwblm;NAl=Kiisyt9036#eoK>yx^7h7aq=C81l;bv3b{qgXhl=Q}
zAkQ?CDOTwLbFh15K$dzeoG{L0^PvF56bqD;3?Z?!mO<S_h!sXe7)&{hybT)URQ;WN
zX<NR)xXk^>EEky7nhKVOrQYz>sHInsZet2~=}*>LT6KAeNXp-aRtL<aAg?u8{*d;f
zy&AIYC}nR7H4Nr<b9FH>spOV2DFCn!%!6;)y{r|uZY}$DG08=#S6HxtzrO9Eh;<nj
zm$j7=Yga(Fc!7iffQ;w~vgqd(R1k2+$a`ENgY6EG!IVCJaePfk4|#hGI0H9Xcq3e-
zJm_I*Y>_f<`b~lGe*9Tj!J80YNgro62WF*0h9*JeBnBCDXYh6)e<I%lOO4>y4L_!D
zGt(Z9^c5sK>edpIK?De!1T~CXCJxADfQPav5aD<#37JNDUi!GFoc%+w#yg&YRqH(l
zCku9~xb}Rx6)`d1zgs5s;Y`ITO3!R+`E8_q8J=;1%0v|WL6;o^0MF^OzTTz<>fUl0
zFTL4w0z+=0s?Oua^$XsQ0N-9uugwj4sInfli~1A|jxH0zUn+gbGijBHzv4Mev=8!T
zg(aqM4RX@k9w+Jh`{a|rJ5P3HAp5aijsMj&APlIO7}t#<znD=XK#n&g2hf`+vW5(h
z-6}@@oM#S<tiK$TcdhAumy>*y=o3plxEmkcznl1s<X~T&o#EK$v&!kNKlh7Rx_Xyl
zZgilm?PAM$m?8cE;T>3b@NPU)(kOmxS^fY6=|q^`X#3#sxAFlke$%?8XB0vGE={JW
zPtV6pZ~_lY_$oA|DDAUr;|H1%0xY&Ke^1{sIFv&XzRsk_EpUfK)Y4x6-3(O+!2bNa
z@h-8G*?RU(#H{WI$|D{2uvGlgr|hGr?7I7TkDiR2%Kskr*8O#VS$lKS8UTe;A#va1
z1$5s@Pvq+!*8G>y$s0oc*durZzoPRa@cQZE+FPc=kC%VO?VK)yAMK)~fb??XB+gdC
z(OaRLdpVEJsQP+;CLie@KEM9=+YQg-IEwD^o1KI$eKaI;$Ymi>=-*y=+1c`cdZ&v!
z|BicZ{aGmb@9f)k+Uc4e?a#6v?R1AmYgsx2QUPoPATJdtOaNV=f)uG8Faj7)fS6Gs
zwgjjP73xJu(;?7>5$I#7^kf1og9>w5rpu!;R1n}bRCptShG-`U_Ok4B0io;ek#1N_
zG;zO^y78$DxsE2MVUZa`W~)>nYz4V+-h7DzM-$alOtufp0B3|@sq!BV<q(e*K7V5J
zk11BRl^^cJnYK$PTQYZD4lBHT|4uny5T;?KOrX~Dv=+llx56C&77+G?q<iwU<G8$x
z`5Rf#bwHulBq5Jf^dyPFXguZ>%Z_z!vI>@-z*NcupfASK!|cJg0mD~U;lyr!`&F^e
z{E%YGCr_NHl^0hr<wE1Cgf3RP+pF+u#S>>?88%PZ*TRqwtNc`9>2}MDb;2M00Wx*M
z9_qp(ujv_biI+Dncc6%hirxbJU~V>7>jVG|jvCz%5D~ozn3Xp`3yb`)T!UnL^K%UF
zYOg8!iCk>-VhHjY`|)0yZS6uo2&Ue{nnbDk%{n|W%xz$yX;k?Ku&()Mjjv=)*j6Nx
z!{=0H9jhu5rM|AqhMPCF$6F2H8(EARyKs#-js8rdSrS9tDlhC_=Ld5H3iy1<d!?EP
zt0m(0QsK=MSStm7+qsO@23?J%kFZrmr&&x^SzhC>Nbr<wUN`@e|E*83B9tVaO@T$^
zF=%hV#=&6f`uBRGVt^RyYKG&5%0(x!qz|~uv5yyXHyq*lm-DcA0-M=uJY%gW|99)o
z5i!Sm=Q3j4Ex-r*Im}4gV>4z14G~X#T#Kc8c9}#0y|^aa7d%WCO1)l}c;6Q>>>t%X
zS0B|DF_d5(O8`L961%#XJ$}HxAK&x>%P>v)Qk@epyV23?H{QYID<|$@mKv~t2&@x{
z>iBY4LJA`Dc)!mKp3Mxw1C8@UL;4Y+pUoMsEh9UKhPG1(3zAPYUX5Uo?$pQWPuA=(
zltkLVMd^&Hg;*&AQC>J07R2hf$)k+(dhaLwwHFqB<p{}YKD{aPVe`w<Q<3jiZZ<y+
zx4LreT83}`@HG!($phbYQweIVnYthmKDQEHM@srhP{CgL!gIyf(U>8^zNgohns)h7
zSJBmqFZ}%7b#ue%Dcm&Dwx4QEHSUk!X@}(Lh~$^nvA|LP6hXnQ$C5cwr0n)fSqoj~
z5|m96R_r?qkU*v%>W$FB+zLYR`vZs00SSwwzdi<{L(JH+d#0>uGf8C6?L32!t1c#+
zJg?~QHu688V~u}*+j46S)OQtlD8bcC)cyRGPX@qv;sdgIR`?d@F31Vt0SL>Elm%4t
zOG*WlS?g$Dee{VRs7~R_m>AW#z`+lItn)`2QaF(m@cO5M^L1=HZ}68{ZcZr$^jAin
zuQm63^Aw+1Xb0$Eu}|M`^9cvk-VC^a+J3HBL$8tq)Fz@v$E#FpY89V777n~%aFtV5
z`gu)2xv<I0pX{{i3hR32Z;V|R)|{n(`3rzW3(8aj`9l1?BRB>+D8ox5X}Y6VCvkJ4
zS8KU)o_I)$`ABn7zGd9cZRmE#GXz?8`n}b~Jt2?d$kOoOKxUn9Z{A`%Mv+e@rRx`@
z8~TlVw!ii7NpmTe_D6l|Q!VbZ@)0c$=+^vJw?Lw3KJOltzRwDHZTp?IENIgp=z4}s
z_rL8Px$peFGC&Mlmmmoc0C1&#XkZw^Bw<NJJjpE^=yW;j1#ywzb9yq#Jp@~FM9+`_
zn6ADj5c7;dG$o#bo7FVrVg(@F0QmW?880A~<KBbqsdIKZBi350?*(7<Rh{t{OI*31
z?`OPC2h(Oor6iqMrv4O5v}L*e)AvHwP2FToGx)*UC?Q(KWO1;7U}U2&F{Jm;%0yx<
zaCmsyv%7+_5d}*d{8;?-972>8>SM@ga>X&EYYo0KT?6?WPtujETVckHSAa`)f2uJC
zi(1GnKd#HImlN%%BYycgb>y%S1zyd=MZ>Qj@u%N4)!&SAOCL%6l_58ISMHYbi=T4P
zV|dq26hA-qB{ClCr3^5Z-(j=AE@}dvz~fGhx=-n>_Av_&R_2*yFS6d19=V$hJ;;B9
zBQ56n2M)<`AJPBqon|lL!gJJZZyTItY{*B?GJEc9l97Wr5MwSeb?%}l^<`GKyZpnS
zG{~Y=s50f>Yk>Fo4%eL>MkzONPi>7s2>j_aHs|w)eR1va{cF`Fn_hfF$!@T78Gvft
z%3R3x*Y#Oly9e(>_A0EIu1tW1aLko;-}dXF#`3qycDd|!4RjS~ia8u=7dgj*Jv<bc
z%@di!8;~%<lN3Bm((FW@0#2I1gy6>;i9i#igu+E|NE&KX#Has!O8{f7Cton&6`y#<
z{DK=jfQ5EginLHf*1V<4f(0b^YvB|GLy01CBD-~+p?=BSB}XcsUhi{onk2n+r6MGs
zBK2$S#AJY(Br${xL!^0LY&Ahd56Ma6F)Y>3_!}`>dw1hO5Nis&1E3QEpr!Uw9#jFm
zQE(_fVDR1uHaZV@q9FDW57%A>0SsjQf$cn=M#{Yy;{je#0~m}$;kXesso?gxVPrN`
zS2`RuZ=|Fbt}KzOIWVpE7O2DbOK;g1YyRujLQ>IsgPvA5yo%y32%xtxQN6C@7=h;m
zC@T+ugc8FU&qC26%@^PG8Y3d4)s=K}0=WUdXwjw&xqxa-3PbII!DVHL+d+~+bJ%#Z
z<(jfiE`YI?sG7(x!{5}z6o$_aG=2sWzem)*@)dZgpg+_+y*>Q*G(%r&Lt)`BjnjUs
zW97>%pO~*It0D9+rcuDv`3MUWYd(tQ=0T>m&zQQa(?>HKp+lOHbfl>4uk{+`qG$WO
z)I%geLC*xNk$+obc+@Ia#puB+s$UKQtzvv`7k(G%_VK`t<<RzJ@a12JzO+}u5Y<V>
zsL!ZT&z9NC*V8=AAwI6nKF6>kg`?cGNGeL@>Ok)$#1THRIbb>RvP4v~jA{^qLf8F3
ziBr~Q%g}>}dl_NnaCrb&OD_B*vW?q#@D?Uoz=^i-jpoL~eOh>ejx{Mn_6S9vq+|Op
zMUn4*g{>DYcK_%-FjjISM&cADFarsx*qi2v8!g4{Cu&4HThcc*xchM`IyFMgzqkJD
zdDm2|`ibjmF$vE+Nijsnx5)p#cgrk^E8d?~<3@ToiKZjUe2*M-Yga@ds2*nToZMu_
zCaad-(s~dS%@}`7U#lK@(JOuA#C-kahH)#>Lj8A1f#$gl5_hcQ*p<tjtfAe))q6*u
zzAYHrCig0un<Iu><ABm#6)vff7p`I9m1F?vZbY%=o}Ta)VD%mb&*}<^rGa>z4%2uK
z<2sBP3#vzLB)#6KX3$LY)@n`9H2htS(s~}>UF`!KVDD|_yFVB&A2!NplDOYu^v>ei
z-A8UpY=FnyYJnVyWnfVG^B^7Tc7~UCDwe(ZCi*L-?TgL-^xOQor`6X;ZMBOyAzo@v
zPX2TC&L7R<*!LCf$xtmHw?8lPHST_EZ(137dKybBOBHF9Pz#?FDpXRt+h~;w8C|Q!
zMGj=7))SSmmu1p^EJj(utBLd!0HT!%>SWd7YSnxDw5XNXwrMuM+7sLJrejR&Ny@3`
zlblqRQa~{WFoJUN0)08AquX^%x&;ImJL4Ui>vipqO3;Yhy4})~jLPlWnEQ>4e^WC|
zI%u`LwN7WxI>lN{%qKZB2F2ZeHAi3O3@iBbl)jE%9y|5Za8LwTO*oa}%^pfr(4Ffj
z-;8g0O476M8X8L(c)qh`nDf9#+Yx~qewQ@$pa;`?R`*-GUS8*ZMLZYGfBB|1A7j4@
z$}iZOBedEqAJaZ5)HT@D<vdpy1f<JuHKP@O{>?sEH4Au)IQY%id%&c>>lJ7?szCDO
zdOP6qcV^v;v%_;C|4hH!Sz;nS^sSC5tIos9txqa91BLz#`QALT@7$26sl8{me(QwK
z`d=;Brr+D(bI8BD{yI<Ua9eSQTVoxokN)wx-&_sU{c$mFid*MrPeeaWbG7K^h;!V=
zf0^&Lc&Vb$=7;?s+DYP)gPkP&izQI|rC#zI{MB2I#~-_oH@oGuQBaPKe!9f|n|pEY
zNTu8A{7(8sD_wu}Y~8%{Ny7BVYA=1S5mBtI7l%(~A_pw9N5mfB>;k2`*77{T=f%T0
zpjnzuc~LP=IxVaD5o+ayZ!emx-ISwEljpH*t2Z~(UmZ`}59o+X(nP1XVe{_S;Jdxr
z7n2y*l7yA?@pg8$c1wxP?J_mII{Mn{5wYL|JLj0&51zB9$r_F<o}Pw_k!AB8rZ~J4
z>}rCoM4hjOrvD~RCif?-)%VXD3CB!aNT1jbdRRd=y5Q-lgSpz8IzQ{>I&Nz^(Om(_
zGxBI|M(-IVX-X?#4cIsmb1~*`oG?kf%w`v*BfjT`0A-h61^p@W*Dl_*EW;(273&Wm
z->caSC)p&X+6?1mnK7@cP<_Ip4<D9dR$zUVfL!6eLbn^!W)nr5wN+pdm12P1?vtA4
z?xq!eEUUz8-al#Em(t~ios-G58MvjW>zmkM5Ld=rmJhT(C{S{MxjUI@N4;%})!i$;
z@yt1N_47I%V{SVi`NnVt=e6$F(G%a3($wV7#54AYtQyh6*i3O*D%7uamoen%EG27O
z>kNG_<>_jY->sfk0EyD!6M+>++h*AP5>7MV9jWCe#=bsQxO|xFyHcId>fz$1JbJ(U
zz}w7@bL*e0FH>wCv$6!-DY&$Zr3ja1!b{AEj~R1vOijLwwsgJI1{0m$gqe==f_}Fi
zK<WUl{l2kD8vCR5*H5lz6@aa5)Vga;&(Zfd83dEWnl+x~;nm#MACN7%7N~s)2@FRQ
zDbRQS_Ka!-;?5LI&hLMXUJz6Te#h{8M;?71c<Cyx1@-6ZV*^RZg)sqX852tkXhPkR
zcy=_LWnwb8{z3A<>R_W%LP%rM7@eH7&#aDdwi6yJPU;@|)og9kq<2GeN<td6k;8ZK
zugovj?XB-y+-yHPM8-sayM-74xn7a2MHwGT<85bqkb<_y0m_ypizNqHmtPeh%F0?l
zG<9%xN&eypJaM_?_!q)SsPAD;#Ph<2yeD#GOa>=y(Jwn4l{nmpEDVZD7(j|ywz(a|
z>OpRggUBe7JDrZ7_z|cn>5p~2hKXTjTNcD+b8=4>{#>4%WJFQbAVy@SgQ{VZ3jyWj
zYeWt&>8A@{t7zS-Yx)DZ4Kv4|sTSuMo7(GlPPw><O!*c_5}0}0U4AWyhpVe5)j9Mi
zyJV+Ky3;`-iR@eC+5hc}7MnxO?erMI3Cr9muWgD!W#ny!%4O_*t`rfE*q7YYbN!}^
zp}|YP`XW(zIOiXknbq~0cmps>vfGQC@cQ7Xqx{QU9usNdHzE*F16tj4*2D+8n^Kt+
z>ocA9`D>tbx1TGbuiU1sq}jnq%i*9gWiw0~!t!djfaS&?<_Up<3+uKl_K^L0(Nyxj
zwT*{+_$|$y!(Z7d!|s4db|sx~^ZtKv8jiOg`5b2j{)y=yFHH4{zLFtfJnxGz9}#VQ
zQTB%=`2{U4+p{OI<h)+VP4eA;)4V~1yCu_C-nF27{_|+CV)>XithKah2HWBSGx?u$
z6B>yCb~|jC&MNUbnh1K>MS(HrlIU9R{HEd_?mYyu7_~l%%eK|srarz>c3RBE!J466
z%p5Ns$jZ(vFXx%t2gFQMMI^CVpbm<<fQ+Gi2X_r7mf7YVJB4X)lM@{VjeQqej=npm
z)ceUZ+1lUJ{U-NY8Ra{|Wj%P-&OCale_1!4vb)}?h%izuljZQNEm;|~duvSj!7P<K
z=5i$VjL6t4ZC3x_F0TQ7<4A6Nc1^{o7t+MsbR)xLu)@3G20*`-n3WdM-wlYN*MHxg
z^@$c&%2i2UOK;?T=ZLSWQqx&qcYC)W({4pc_+F~1<9^=N3oGKw^66^(mjDt5t31fL
z+RLA13zMrn8(f~57`b>BzV~^rMD;hw&YC3lXd5VfEYrh-gzx#A%^oo-wQ>7XK;rU4
zV011p7z^+_Pm#di#{lTus8Dl@QDD3Y@aBFK&I}ENaCA}VT)F^rtyr+k?xSlsP#H*!
zDl$hLEBxN{NUxDB%wKk~V^7+WB^n18rV!z+M4zQxxQU^eZT`Qp2s}2&%-F>?Z>Zq0
zsB2n|oEa%ad;oy8h0qfV_+kQxrAGyy7`(7LK#s%eV^Ns(l)OEAUDHDYeNP&ny@VW{
zH4!>aqSuB}N$fUd&&`tW>AL5V*{cW;u0ae3mXL%{CxWELAK86la0t84{?H{Fr!jWV
z>iJE|!%G}=$<yy0Te>+f#v0a0mit2=D>^*<t}L@|dqtxzma|qjvBK$r=2&MpV?-nC
z_y1JvoQ*;$07h$wu$op;w;&gTMnZ5<(E*vu9{}PG!To)Wb|}XatE;kPw7;iGKN|<?
z#%X&9?S+w*cn|cD>HvC2s$^pxrIrKxO>r6f$@q+;qVKQOm3L;WhE-JKZ<$QjJhdQ=
z#cI{|hM<_8@lQJ`MN%DyvLVT*!wX(2#dlG6ZZ3z6a}h4TS(5$c97-!5+;c2q?d`iB
zIeqF3Y(DOkOS{e+X1-iqs@4PN;vwGRbIWi$s!8)L)ME?sB)h4-SrkLu60>NY#{>Hu
z#}%SO{j)#UMN{NPWp0yZvy=Z8v#Q<<$rh1WkG*=S#IcMLbhq6`lzPaSn^fMcjsqYm
z1emPJ6S{dSb7G+~-H))Zd?+NV$jO-WwUnm6lCf&4v>#P}Pno(<W%d_p;qYkpxw3pu
ze@VdZxQJ~;d6%)jNG%*&+~pTmPtB&gGe4q$ZIa^t@>OXnWXcXJ^j5yy=j&r@1hlvp
zX+_yGPCEk0pviDv9{^_(1&l$GZ2Kf1x^A``RnbM>53Smuv4^xdk3_vL%I^w*?=5_!
zaH)Fa3Iq&^J0i5=4vP9tx1BCVI@lq?XUuHA*xH>gj*Bz5w%PvV(567ezlIiFc8A9<
zx(bQPe}8O;F16z>pZad4>T&nML|cOVz46EOfFs8$IJN?~sB(i*((yZPT5{R5y46Pg
z{8y6Qb9VWyGNS<j20A$XJc{~#(Hpt{ncBW~k>LbM_p>A+aduHV=j(`U_MUTKJd<is
z+Q1!&@cYJMUqF&=wLF%jf|n)B2Gz&IFNyaYh-a*TR3e2{^2dz`t$ys7+0?6$&}V!)
zo+ck7i?~E0(z`ox1a7Udz8}Au^fb2uT0o0RZ$saR(7N6)=7+llezNP+7n$<FV8L7J
z{r#8U?&Y<xNz0GPyU^d<2hDYCaE<}`wOHAzxD&Q9bHvF&`F-d(9-aat=i2M;KQjLN
z^_zFhd?4v)Xs9zn_fgMai$`Kt(dgQWLJT<R^Zo~+e;`dgqqXNAhb)6hg=VzaRf1k!
zU#h{c9l+o9Xd&LEfvJNvv%p_XtANGpfbS|(H-C}db(o9ZI&NZ-JlxFvd%7ullCQ@O
zqRjA7)N*ydo$5tL>zQEnde|j?HoRr1qMQ#95xo?~X$sRig*hn|l>6wcLV;x(i|l2P
z5b5Hu@8b07;)>|vPU=Dxbn#Sm@iyc9)jND?ZCwKEU4jQ)LJ<7d;v_aI5wS(&3?b<t
zx+~Iw!peA2`);v<ZmFv73(eiqz1=d?c-|45-+cFZE7^GhkvEBmlq5}1i7R|PirPJQ
zZF&@vdejSgG^%<un|n0BcZat3=&bkX9`xuzda)e6IMH6ba<A@)K7)3zp--<-M6YpD
zuSr3#X;rV;2*p5@(R{ksa=q8;p!X8wyw$qTW&~qlz-VjGXK&x<;M3<A(RVqi524)W
zRMqFw+~?Zc=QiEv&fnuKs``5hkkNH-d$=5-jx~Yx>j@jFfQ>vOs(m9^tagc#>wN*u
z{eivxLDNPi2Yo*)lftSy&q9qRXb7<Ho5Uv+{+6b<VG!eJLSkrAD)(G6)OsMec_6NL
zAbxrvp``oTG-D-h;Ez1XzNzE6XEIT{lT?KzG7cn(n)v$ziLH4^>Oe;GU}o>&?dieR
z{Q-qMp`-(fHif|iFvQF;ROCN69Y+d2Nz95EDoPqEE->{tHz&(O&gbdg2fP_rV>*fu
z=mZ42kgR?u`@Ym8Fp=oFJ@kmt49siBq-a)<B>H5XtVPhMh$uof5*Lbx>JHw&gbde5
z82q=+4=z(CD**lh)9LEl=%hJ?cOQZYE!?PAI_AR|F9xMJAg{~t>)JbEnZs?h=8mny
zwx;-Z@xvIHMW-msF3l{-lYMxwU}UIj<h>id(T&7`8vO26lP1N9astBD0X2yv2Tvls
zf5m}1iBv`8j0PGl$`w3A9&R;?+OumqC0jClm<S?G_6kqm&Yejj&c<5~vlh-PD}Um!
zoK&`?9tf<6j{a*J`C2u)-8}lOqZc;PE9u0|BK(Luq~FvZDI<@%_e+4-1sd4bq6b|9
z*9^Rw653~ce1IK8Szk)Xw*>i*weXKsVL^nNvD4mBpx8J_WgMIUX}k^G_*M_)yw~hZ
z(gTZEm=52u*E6Jucl-ea1qkXrxTIJ%j)Xu=DC6|6_!+WtkpiX=-wCeB3GPDEktCDf
zCohXnta)h8HWg(P@8l6J)f3N6_y`%L{0<0S6;5Do=4XuxO!9<y<fKIMWU%P)<6n2p
zq&Vx=3uy<1kAA^DNo2R*6L<~oUv85_+qTj#GTeFWFe+1$kyC2PQ|g?3QkMKrGQ>B_
z#c%XvQYZ3mEtYJ1*~vXD4L_UWdnK-6IBnoCZ76G?87US#S>nN4f&KBuc2L=Ul6(d9
z)IZN&KiICWb=oU-*y@8_ldGbU;f%e*jKc@KaVMDL?4>Y!J(sk+j^Q(LzAp5yi^2$b
zt_SHZDh^*)tla);az2>(uTN%i^^KkHj9=vJmE>8jh?(Zo_L5A}Lqy9}gd+i`9PmQR
zyQi(5Hr3Yft!-+1)*jdqR__=z)6%K+!aw<Abm7MsS;HUNhK^-=|LiEPl2~wtUV=j>
zG$|EQ^^vSHmuNWm{@Y-Z?_5gcT<WX-<m9>Z$8#C4<}MY?WzNiHZOmo=?YVt8m&-YS
zM{NFP^T#~H`2vUe!em^o?|f16d~u=k*O2*pujU{0%@@6xFWHzcJ#^0e<Sdie-~R@1
zwaUmq)<v|~s6!sW8sfsL?$Q^y@HA`TI^P227a*eB3~jN{P~(DFe<s7|>cH>XVbZ@J
z>r!pmSLeR)=)*vn3V(DJHpV_b7ShQ~xM!~fV3sE_Z#|<!0mC6nobteVM!mO(i?`*0
zUukYy9h@ZIs{r=gr6Jj+|0<TwyW1!Zs&6}&DmUET7Ycl^%pQB_R)KLJO6Fl|bsN%Q
zYJY6p<}S~M20m6?npOhLKXy-vF;1}|v!4Js)U5;~+}{KfSqMBros>_V_zgqDFNYa<
zK9D6QkFO_7Y_O%RXd<f#30cj$R_MltBw175&J?=!M;5W7my+if-v(EAy>OFtTJD9`
z#x%RO%oyD&a7$gHq@87=%1pd$fvj_K<OL9?KZ!Mj#3`>#m!?AQ0&#8uI`#n{sIS0Q
z)KL+DTc(Q`j0#L4)2Wk?%${!EAc_F+hYFcp5NJyvuuYNK3BdWnmC9sK9@<^^imRR$
z`x(5iJu6mLc&t!-;y~Ou;@?9P%Lg9cq|47MnIG8>u$;J{l)Y%27_JjQxD${rA@M8$
zBKI~?BW@54@s>I8;^tqwWnrq((7{Fo4(X7B)PYACB+jzC*GFD*=elteXGJJ@a;O41
zRhQ|rsi<Otkvsw7NVO&r7*wnE-%=BEO)k7%jyo9m8_`v0-@=PXHbt@ohJe8Y(sw%&
zt2KyhN-8f-Qj<v?og-T_mtfQv5*K{vJHhNG-f5X2+u0S#5RAVykeheI)++nI6o}VR
z2HOjPyB1!v&)mg4{3h(kl233J*M|N*E(TkZYF@3Y&7CKOzKGG1KC5Ru-w@8HWeL4Q
z0Tuk8TbL@jrKH&1O#jbm<5JXyzP@jaAKZ~{<8S4cE2TbewWdf2P!0w!t2KLiyW?rn
zf4+U0C(nvrBrS9E7WEff28AhG=t5-an(TSSVNOE~O-$)uME}zi(2}lxMzlz?xGEZ=
zTqvGVXhen*N%+zCsb9=qI<2nc34kRZUHdH+|Nbg{klDV?)|+`<dX$TniGSUkOVx-n
zh)9HmfI-m!uZS(1XG~(Swdy~nBys=!y?|2jN99LWHLu@Smu}ZQA*3)1KS^0G)de@o
zB|jK3h2aCrBLXWt0-8Lw9?5Jg!2%sVgIZN3U#X(ob+L&wIh~U4cOM6d&YxXfby7ze
zf!NibF{)-qz6NpUvfS{4-tK30d9wAp%y(X%L2NL4;t6=KH6ZQZmADc^rjS%q;0QOI
zG%vX{PZa>0Tv2ibR+uhQuW_wWi3L{XbbkPO^UcCx%IqlkM@r_p7304lDxz5Om&Q-6
zGH|}!SFALXuxzpz8My0rb;@~r4L!Mc1ZStp^JA_R`+b3a`=KGu`|n3uIrWEH<<1Fn
zCiUh*wBv{v=SV)47_kK?!l6M<X`zRMi>hRq{Io~o!#)+npfpn92%Y%u4$X>uY{fY^
za(!8xcfJ&K5wj;;7Tn4a(%-9y7}&kSy!V&uF_3nh?DCr!$GrPV!CZJ30UglXLqU1R
z!1QB3U=nG+{{?TAhXU0@YkLr<jv3|tM01m{Yt)=3$S&)>FyZR3C+Z_g=C9Z?_T*Ai
zlArTbQ5ZJa03TAwGo)6g8w+JI*D~*1D|Wr7aT&fLNS->{{djjW-_T5q>XD-RLHvE<
zXl^i<JV4bc*{+V8E}Hqb$g<+>ZFqG7rmlfdX=9v7RP~5xPo%e4CUcD+Oz>oX^Fx_0
zp9h%B-mLsI5-Db9rLxNp%*BJ9a~Q)ph<EF<S-T=#b{KX)L|zW?`znbs-b^$xW`YC&
z8F5i2*Gb-0*`{MjcowVK2uoWkaWglKgJuHE2`6pzrfh3PfK3iAU5{9F11yc0u~Ny&
zA&7th1P(?jjg9i9Wv(3jhsNB;F5kf47!@Ip23<eC@f6ba_SpYp1?l1_oo^Il!%^}C
z^g~4b29-7R9rsM{(W=aG_>}`W^DzG+Jw-ya?d~z|cxjT0c)n3!s}7)7C#7)1Gd4$-
zEi6SNW5C4UDVME2AADGhNlf}Uq~%nXXqG08%YivTROxm8Bdf=Jgj~7;zR!M`c;T>G
zjdbbhp9}SWVt2zczxQj8M=JIS8>BswND~q#oWG%Y4Qh|T{v?Yz4^|Gq4*}GjrZK3^
zN@vbfn%KoRIkCgoL+QCVP9vUH+C^-PQpx3u*H1ckk*&mtCllfBS=_|<p`0eIyo~1N
zv%!G^+35JOr#7IpxS6%G$!l>~^%B1K*{^aST7oPo!13PJOP3Qt4krXtIi6;<QyJ{J
z3!sX-)pU;b7Rn9O4^No6B;N2+W%b<z;01C;0=Bs+`MSkhk@)YQ3d8K9OFu_+^(lXA
z&;I-VG+}_6@cDAw^t*pmCYSDrXG_oDEWGg~4PU>r^Uvb(tv!p|``QWLZp5LHF!Q?1
zy`C@?Nba1iWPGnAnSD4K*yci4z02krJ>cW7#MKmShgmTdLp|=;JZN`M9v(h>OJhMv
zs+&0ZN2e86w+_y2oxpg07t@;TuEw;1XXIxj4558UB@EKc;R051vriEeL#e<6`X-N7
z!q7wmIxs#ew_+98voDG*CzsTQVGJI`Js1`?pmgtTKq6~zk7yt9y82Ca(~I{HXc>*$
zjC6gqd@}m;XYy$3gSX5x|9D>NT|B_hflV!Sai%IMoE)Lnx)fG&h=a5yjV^|F3itpC
zR;a}Rr+jb29T1QIGN^1%O97?4;!*12NeD@ZM?A5YV8DnHw7C<cYBMOF=$#T(Q`~?u
z&QZL&z`+qZ+goLQSB{^4x4bA*7<!jSqd&>ChEFSxEpnFQX*D)Emy_UN*N0_n`a=q}
zOM|~OPA?rc7w)GObBcek_mRe8%GeY<)UV-I8In;f8DW|eCs1Ct<BkI91L?VXuhF2D
zNior8d9S7boW88o>+kc;fs1dmv|4_CB1w97`^@dk-YQ2|>AdC6+DD12@<ucN)xdyd
z9Frovy&Ct_C87@Zy~+&3f%NBh^6#4lN2o>P2yOrwn)v&4grVYEC*#15kM5(j<pD%A
zO1SJsCdVK>8Q(|61wkWU@$;_ntXUy+#JE?I@Y*nsh>5H&P7a<(BciiVUx)yQ0t9N!
z*mz>I6e=x10PzlYn3Nm;2%;}a9p?$d5<U@HOH%mrLPgJ`sGQ(*ajPdHab)DPrD%~!
zAK~OjG^gryw+pqDfedem=y2gwF=wS&iM13a-|DEh*NtfLTC4;Vg6)ROwo=(R{`=QZ
zr5p2eUgE;V+g)=gQ#eIDoK#>vhmt<er7+aU#AYRo{zlnGuNB@9j9Oq=`E0cM*zdE>
zcGi1=>veD8fwhgJW`QsA&*+v?Z1)>{?w6D_b~7+Bn#)+Q%BiIRrPnu;VX__LQw+kW
zEkmus!orV2qj*GeGu}Vyd-<{KgNiE!ci4@D4o}Lv<5HT<gN1kZ6<(gh&O{N>Ogi(R
z29MTpeyF_L!1Z@b6pkg-zy*3?TT8EbQriX`31;wakIpLyV0#6ik9!v4j+Jdj>i1rt
z$;r%NB#Z4s-oXZjDl6XHWv#vkD)0}JQ@HK6kCr`^CVo(-@$FLF;q;C?od3Cf={W~#
zpS#$fY0FsPk1f7p0DRufNJRBHw8()4kPv5LpFX1gOVx>*U%rEu;}D^soBp#GI`glB
zFEaFF??yep@dREell01gvpu+Z>T`_TYrN>^AFHpetYS9q{+Au|#rh;AP;7pX2O7#t
zYv*$G&CQD4PAsE#_j0LgGBJJ{2bTea$A1_iWRCX!BtZt{3c%f3NF=lm(EX>^dTBBB
zmT&E1D&h@`a6(6#{TTfbh=?f>$;=~Y3IYELYg}0Q)!@Iqt@i!njK=jGVV+@HHV#kq
zF-UN`l?*44Vf-N>+TztLk!eU$E9ID8a}P)A2rJGHn|()v?y|tv6Hhzj-*ObNz)4=y
zmpbJ2E>4eGBDFF@RnI99x83khU<110D-@1SYLJlj0?KPEnFlZGdvh|Q?#vdakF8<B
zXs4O}d-8n#p@|)cpBi;djqVde`3+@Y>5mY4s1%%-(O_5c<t?mVJ|pzD&yw4wjAwDs
zJd&d_pZ6>+@1h|Q<JT6>P49*@24ZtUwHJ~e{uu{ptu`<ciV45`j8dTAFWs`Ja@WKY
zE5-fM0v8|9i83h-DSW>pUf3}&7FlQtidVF{r%ajkX_EXIgUK$hrcLbGo3e|Nn5~&*
zR?@{^v#8G2F`j7k0SlbYOA)amxn+P7_%8XF62_}&Ct_HlQF5g5!_SHD2?p3O@*v&+
zzP@**^wlqqdAY6$mY<A5<A&0MR{fLP$$n@TQwv}%C6!Qyk^NybhUy3wv<&gPK)YkC
z%NR;hDE{PQkz$}$!g4d~peK8MG9SC`og1Iz&jsZfR}6@#<o{7^%-z*Cy0Hu8ttT=x
z9s*!K6ftD<`5fsEDDVIC!zv7+L?2tiQ>~2&pL2dV%EvbU72*;rFM)JN>LsHdQvhR%
zW(poI{8WN^_0n@rFg<@`Ieu>K|6BmDB@f!!{!D%LtJ<-}#~v5*92@dp$%ncJdK!$g
zKK~i<Y)IHuOC9_ATdzG>>BUum!dl(NP{9+`Pig;Yu{q(YA|4C*e^nKdY*4JlMlqHF
z5WCQ{A~*%iS&6-(@GGh0oFBf+OX5WVL0|rdANFU+p>v(<&u*@g5J>cn&a^FTY(`1j
z%Ldv}7jV?O4VMT{`Mh%HBw;O$1Nsln)W128(`7x-VV5=M3Up%A{m>$+@=WWLIL8;&
z3t;q5)%`1K_0@K^F~{|K+{Er{?q)3b`~*ix1`r28Tp%*^<u#hTweGYDgyRIjC|)qG
z9y1X`lHZ2r)=ZB99jYDXr;_vE)1XXRoHatS4e6I|uV$riT=pmfv|5!p#QB=QK8u}4
z{fQ}D(X6Zlb*{|8_I!aGkwuKvcamD))1zJQ<nA5l=ZN$QcdKi-)7pgmM3V%05UIe+
zepYu=M^f(wwVg|KSc;xc^W@3a<|kM8ghl&!^X~)=FuHAIg==f6NvCEf_?zC53miV@
z^Z_JX55wD$Vbw1?AQ|gyc=Z2HY=M5Gt}r7lO~257B_6k+E!35@zKWypLV%7(tI7Sz
zyB<|SnmSkP?S3V=2q!*Uge>bKT{Kef9*zgZZ#re(nDqvzL>LOBX<n)vS1{=UyXDG$
z%U+qSf5X%CkSREgX7Bhx3R_${0oWvbb3!t331z#ZLHvfT@C8nOOop47_=Wk*UEO`u
zmxrtI-{O|fN@p@|g}<9S*FiLShNEHQ#M>!ceGEI`3YGF*J#9Bh`1O-@y3eU;-rBce
z66(T858_oVJ46n)wOehJK5^=VRSNan;`5Ka+XGM5Kshl&_Wx3E^HNrG=VE%f<@fUE
zmXIc;Swq)LLrdv9mMyNgPdyq<yR`}5wtv|^^YUjh$Y+R2H==#^#{pe!X2N%$i*M$~
zvZM4({<2-Y{$_Dm@HwS`2<G0RzzYbGZBw6qMyI}6rZJyT5I1)lowaxwa!z`sZ|Y+t
zNzLlWy_@=Fw7s01v(<|^zefUZ{^C{X*i>ivGoE?#pz31h*GoBnp2q32KfB)f?LU^&
zx#62f%@TjN19MLQA4_K$6~*KJ?M>Jvcgdx9>24{BW$BdeSURNy1q9h8m+lS$X%HzX
zL6;IlL`o?|QUMh~P(i=S!|#8dw{zyqn>ll4=Kg%{>w5S3-mjr=!{6d~TGzpG=i^dO
z|96$$TQ29*!B0=`)BoK!iu+ycajz@oh(sMT3RbLt`mjd|a`ZtDvdgOZ>#obaQ@(i6
zic}h<Y4pR)__&@=H^wRdt&pe_odE1Bo1pa@`hR{=BG4cu#klQHvG67WH7dsEEQ$!A
z_@~Dq1rSW@(WIRN{vGq7AOo)~QPYb6KC~yMAGB%?<J>34K!IMmFw_-9ehwgrPLT7B
zr^hBJlDIMb9$b+LKWvp0eL=vwgd}o;{M02K_8h_vNE8I1nS=o>kv#lZP{}+l4-c@=
zPf9@$Q>591j)B6`My|VwW+;xUnNtQD`u+;ysp!Svi-a=6z7lSEpuj;>ggc~^D3}G^
zR5T8qpy&gN(dCekrldrG!8nX48YFgXwOIoi+yRN<y_0&4uJFKIa}2a$JlRU1T$1n7
zoaa4hwzMgd)*FBjA+2e}*9sBOho+p_O5+Qmr@^Lr;-MC#bagwZI3eA_j;4p?niP^g
zY)3OzlI}W}&Tq!YlCP5#NxI3BOvjKZ!b(aeBlAvygTBg%`rNPWl70GNnmx%i)>on=
z?KpJGJ#uC;i4?t`^$m8J9fyyV!l$%<XUb>bra+=#`9jWEF7{dwpETQ(0ua7StB4YL
zagyzY0Qpv@Uqm8eG${nh$wt}~K;<0P0~=yBh~tGY=)xs&E;m*>FH|@e6q3DYr}%^@
z(j&vR)}$<ApOlVI&P7nE$z(ka&5zH?0){c>Gh}Ou6dVi3K&m6q$D9{9fJPpj;wc1z
zh_lvoP3V9d;enyuNEZavdjy}vf<gHi6Hb~<X;N2}0Z|A6Dj?Hhb9f!?DUx9(OuAN{
zbD)x+lo4=Pd3bS2axtL;AYGkG?Otdn0+WEVS`HwitR#WAO_EDPjaLg484LRgLh0u2
zbrC`qr7uf&fxtjr00IGY1{5mT7CLH|SR=6|7X{_3fMtvP96VMjFP}zQ(@2EtxVrQn
zqWtMxsmEM?TPm%sa>1BEMP%e%_7HK6kw9%E6{ebPwT8{X4WL5w5Hq7WNU2;s=H|o~
zbLJX!gi_4)7zpBXdb`cGEm2zohPG(yl+8*n1R|5aIIGU!yw5OsoH1%3w{(E|XS3eF
z1L$^+6jMj#?Ns$!GL_en;J2$89u`$_hf2mC;g!;R$W)4jaKN3PAPS^a#ys%yR2D+8
z^_{!<Eu8ck?(d+<NA(+Is11x+K=qR0Ob++f?3L!Uf&LU=el+!~)Y|zMni(r7rsK;p
zd0@T=8R_4XOgra$ol)*(D$=C3=6!zMh8dsI+uDC*08cfWG?obx{a`|*!9z5*?+ySV
z&4$4$OpXEQb4+URTvIPV6w-P>N2_T<r2h0J#`(gS=ai;>MT?$ioEcEk>o&@m0nKE%
zw=hjE2+;fas@OFpj}Sw19j}`@6wKWuA+%?PFlQONIIcmD<Dj|J5LAAsQ$5`bxt5<o
z5P=RrBG*8Fmh*9QAZ2iCT~4DITlHNks-Q#ZLt=y2G3XZ=_=^F|mkW{sD=>usl-E>h
z9#>PK8&d|kL<o1N5s39pIPWoMWCT#EtC4-%EaDs>zXy5`Y+Pao-*UKYYzPO@U;&ap
zK~F4OQl!;+Az-o1Hf45Ed5X3L{x)rgHqV?#0XYxXRZL}JW#!i4o>ZO4fS8$2MYQ7;
z-dlPgJX0(fnk?Ls8Uko^mx@H(zAIhal}PdEF{X2>OIoKZ8q0tHfWgRS1i7noMGa%r
z?k*y93WweuM}oqDDl$zkEs>fWAgw3zZ@Ve<)=>sVJt=%W=H+y}ty0V*oz1|M_azcz
z5Jvm;Oqbn~duDR(wPK>w8vXKe<#So7-n481Oad0_-WMRLQ6$fwAPgH68Nw2r-dO<v
zNriBI?YQoK8+NTzlQ_a>(sA93gUN)@tEiQIV3rcTNuRKG35gWzEPpxhWHLtgD$-A7
z5l%#<ZNWYe`07vCiQNV*GVH4zwD0C<+C$j|HEFq#&1)UB*OLdgLaJ!$B_A)+@9=ZF
zDhy@taYmQ2ALr1IU#ESQKE$e3)E<rE@f?iErFJkMd?MHDw*w7Evc})e<>6;pC}XGt
zTT0Fwn8?t&4ZzrHRE05o6*(Y*4nyzHP)*zRLMBu~jiOg8ljEdP<r0IGCPi|-e`PC~
zy6x`Fr;_1X-^MxN^l6c=DLf)wqE9SDh1T8f=ZO+?M!ueKpUCk1(gD(^*S)Dx{X>-0
zZx~Wu>W!~PYkba?<sADEPbx>0*nVbZoWb=*W2m(*+tV#Z_AGjX^X#d*uY2an2qivk
zcJoyHu51qSW9Eb@M`<8u;74MR^Ovw3O^T2NVO1s-RGPqT(DSE=iLI7;mrZ{fn#s_L
zXu2zv7T=)h7u`D^;)!ySGazWr4#mGdJs1sZuoDHr37QU;M23|G8c6PUl^!KG$C*hb
znZ3X_z>2>>3uB~Uey~5h;uNQ{j(pM(#%am1R-ta`+y4!}`=O3@YcXCNKYb~~o!^G(
zmg7HF7uI?niv`*7i#QlV*A^!>ePNHfOWnUfZ;eeqO}=I+-<<0C5-n#c<uMhO@oIG_
zYNj#pRUodX0=K`T9Y00+LW{yFT+T>$Oc8Q91FF`EBg{Tqq@|Ts9hZZy`Odoid_s2g
zio;%UIA1>)gaK)xYxyRs#u|U#@$T~BsQzlD$<A&JIhW{^CYV<t+%!fqCNDgiR~a+`
zka<(jykvd{;bX>R-<c$YxYyjX@^=w>oW9?gocHrs9~;V0w7gP&xJb~OETI_Th^0C#
zh>eIbXDrl980rPl=%Xe)*X$Z&s`X1gc9$44KHxVffY95#Cvj%H$!0QelrVI4HY_wm
z*ioB}{AVHr((77ksac<9l6d;mz%=^qtx;ocGE?4Let1oe9p&7E+a?aG431B<0E>V8
ze38%p+x3^OB<IUeJtZuEa9dm+S}eSIxq4GEd+&|o_iIk_-pe0!>}DolR`s^()-rqw
zFSu@7p%ubSCfrQatW~_MWftkCyqhJRu18$6Wrf?~1#AN+dhRW(`#)Yc-(0`_V=}7V
z7NAc7{AdNX!PjuPxa7DjdgE_wzKdhFCraB_ss+AhT23H3-}j2D)p6j*J3v~H&)+!Y
zmczd0fIM#LE%G`*j$N;a;`(Nfoaf(qAa094bp3D7l}P~b-o$yfLhjOp;#1{Dll7~h
zjKyM!Ek@I;Y%5UOyC?4FE8%dt?S_H)W6zf-9x=7EiBwd&&pCy^K+lsU2T|M8NG~>t
z7bCIWcHRNE%y(Rh))td@JiWcut1fkfJyz}=-;@If?AQd}3f+zBmEMinVOO7*p?&Gu
z5s=*QtcrH&sM=2f<kxEBSNsvCoJJv?6U6avye@}R<e2K`de7finxtt;{*Igczh##c
zFk<}BR6{zGvNl!ORix<_QF8ynJ65c3dFB;Ni;mv#R}f8Oi00&e0^or8(~ALOSbx+l
z(mzpoRybNH%mW*i-Ek`=1OU0Shwke30)%Jd69}6J33Q)3O>ZYjet!Iq()H5^XP?hc
zX0MKX9;W-!gaF^Ny>sVI-ALA#7u=oC+Q0OwM`eA|DBSq6X!;fR;>(+?udD4}*RO8+
z?AH%;M_ZCdv@<C?K}Vmmjt*Qdqc_@*z8)QYqx)tzd30j>?MKkJUoN_*8}4PZ9_x3$
z6vYzgOYdDCRe_(~E875k`vuGu*9Cqsr^rcbjy&wS6W1|&ug4ugLC?+pESSyp9?*&#
z83)?iK3-}6wrrN2hfQHEA@X(*xz34R(utnfctNEr1ZupvexU@9oD3|{3ZHPdEP*$Y
ztUr~nOP`>91E!;tptq8Mt4_qOBr@9#FefL8uEK1UlI((;MQ)h6z><T4l*K-nC)<J0
zgrEBMF*;OYtb{b&$Dge#F^)=N4)>EbLw~qGGQS<y<3|r7=6ZPsf8TqGXg2lOBXNA*
z&r~%^a~wui?58@|r_0{DOf4-D&yh;?0;H`erKRtmH=<5jn>ssJ7z7dN-AWfruhPeb
zVbAx|t8;!oeD-^CpQ8Kn_j-QD%aZG}kz=uQ!(I=62_5YQ+W#299{1Fq57X-=EB#kA
z);M_bU;F4!0^)Dx9G!(Qd6@?V@OOU`$FU&=(|P+}3g90RU-Hb=-D4eMU-aLqdbZ0W
z4%t<=-@>_nVXWeS9JE2s9viAE@Dhv1mqK(NpqbLIWxZ;s(UHk>r}3HJ4Rdj)ZuHkq
zB|hE#e9<K9I<kFjuvz!zmagfK^WQL(jNdSPls>1UL;v`-*@<C>-wBezB0E@m;rqe?
zngY~)dZIIa3uz@EcIl;^+hbL|2MMTe{t;2wYxS7rh{aZxiQ(kS9ov;Y2BnYHeqB<b
z{i_#jDua?fjcdQ78%fpp88Ts$L|!MuE6BN<BQF4>^Brym<n6tKrf;=P+1>l#NAQm(
zxduApcEGyV`Wgwk=>1e%Qbq1vTluekqZ2RL2&N8pF-yofT^;o6oVIR2athyZ$;@4*
zK<6hyn}=L(pCrvXaoa=AHKj*X#Uynu8Uatb%0WR&v^WhV1~d?^JKs^D7yKUF0)oxS
zA6H`;L1y*-YNJbjLMDHB*~otTpKZ!0H^TNPMmb(pdJdFb3+sOOekl3OpV~I@sFcF+
zhS~{->2Y7lWyI$WtN;Mg##fZ?S#(<@NO?S>FCyQ#<eOEw?1ZkQQ_3fs_O$|UfA*EL
z0AS4{^2`ew%jJmlcWLT@+UG$XrZI9Fy|Ps=UoSS>_WdKVD+Ge%g-^KoCXk|rB|qRN
zyvcB?ee3_YkYL>m<|FN;zTgiqs4Yk-a>yM`L3{2-#0dN+hO6T<o-+m@9fWtmAbJ^T
zP8P|{cv&2PX)g7itO|%vo<SZ&L5F|PHl72*(djT=3+tp~bPzUv#{2uOK_f3sq}0=k
z3}4I;pE^E7?|iqlb>L4y#pv}-6(x$qa~FLGh|Z8y1Ey07Ndq8<j4%)7X0&do{mi&R
zxba=Ol7%!_3+Bd5L<)wap8XASGJt-Ik;g%qX_Q8uToVqFqfiplv@}r|dx6M$%v)0p
z6~Lo46(_!1x!(ZlhY*R(1tD%AzQI3qs#+AWrwK|CyC?eQ1`>q`sdCf<lF9YI@>YD@
z$313L>|(V<BS#7MrEl?0Z>Efa%HKFxtW@IdK^4R8IrtyplQu4z5rs=0K;_4CR$?Mu
zdUw+PF65kq#e63S-&GSc5n)!dg$F;JV0ytx4LQnV?2yGJ#y!hqQa4P``2llC-#>kg
zjZ4r%cpmngVErYYqISHy7H8RkB@BEJnBB`yK*{O+*MuWGX+nCe#c?i?$pK~rV7v@`
zdf}}vO41ZzAgw%vB2CdFsYrU_2&BlPsTy%Vf+pJ6*Lg%buQK5JXwrSDL);Za0IiwG
zY-)A}yK(VX<xA%^hfY{`CDt*p3rcXjse3k2rwnxQ=KWZD^Q@7?q9W}ctnS$m^+7Pi
z#i=%LIdcobh(7)SO;yfOreL<vCrSXXdfD+{bcANF;BPz39?B+YfW+j4cPHNaNz{V`
z4-F9-CPF3aAPhZWWY<(RR}Az8{U%;x?PfOc&ZsLZ`lm@*h$B*uXFw~F64g&m`U^Pt
z`)e~G$t`J)55HBD?E#D0RVh&1ygf|yt=#*^s!tC*G1IIB^8J<G2PDPiJ~tTFQN`+{
z3)qwc9E+xuym)xSQ>paB7F8&LwO|v{<TwqLvm4A1n7c#Gbid)hJA~8vZ^U1%HZ=Z}
z8XsTKdo!KcQStf0D3oRma`HL%5<jV|yqG1TTWgR^Q`jvNlB>RW5=vzm1bGX*ySB4&
z@5~mGMEfWbp;Yy&fRs#%MP#@!c}OTc?+n~ci1LjjnEuA|M)rpyoa{(~yA4Gwz7kN3
z@F;vu4it<b-HbPjhh_nYNKS@aH{VKbC|M79o{N$00KK8h)z=n00o>_vWYFsA6=D*F
zutw6)m*vEB0{5XcoO{d}y8V{%76q<<sKsqXSWFgbmBUmmFWJ>tz}ZS<o<VIIDaK!<
zYabEBcyt{yaXayP2bBBDgvbFse(p~f4-gmk#JOxTySL*QIlntaXPpv*4oM}eUnVdW
z_-TFx!|0jLUCiZNilQnSlmqj5xNQJ`XkMF@T=9u#=D<V;-d*fjPU3A*Qj{|zO2nSC
z!Ca&ZuB)Di1G^>_(+OrO4b)z?)$tUQq~uutmir9veX*aK^?^)Gm6XtTdIF>7TAbbR
z8;0IAMa{D}+nEqT5)HRD;2A}NqtLn`Z*}@G9pL6EUZ&&?`}ecg%exPAUW**q46Iqp
z7vy^A67<YN9Tv?b5*RGdBRtBMY2XelG}?{GZF!lL0b{<YL#a=sQU!on`V&C041xDo
z<d=&F$?XhzMd`vK1TtMwM=2qo-ZMPev`ZEZ*(Y2-B0u8u_vpSoXDjyFDr@fFSNgKO
zz$_+<^p9<i;Wr<yCY;Y#Idn2Vu!CybXCCw40l;)YzTTYwd_iy%ISL;xh{KPMFQt>P
z)N3ex3H)ZRY7!hizc(FT{s;J_=r;0gz^Di2WrI*u2=dKd<2FRWMkwb_M_{~USOfL?
zE7kd7nnM3k?m<_+5`dV9u%?nbVV<waw(WP<Bc!Ke%Dp;lUh)=YB(EyRBi<=qE4)<r
zIn;Gz+V%;gNh(O06TZPR($}4sD>B?#a`}Y$D|YbBS2k77Rk+?RxCc5O^?Ghj%!Som
zs%p+h%E^<@gQjhbt%cDv1JP4!ZTI0~RjKJ6V}A#s?yl7hRXwr}R(-38QVB>yib<N1
z>4Z5S(NLr2KF;3L*Rm_3C9DWKwMTW)HD@GNU7Gu79bZrpo__2ODSaS(S1-W*T#FhX
z?kn)0CE!)FY+-qbJFtUVSq63#!k9dN&&vNnMdbIIg@S>PNbSWqkC%0mZdZMKJX9hi
zKY~qu!|Js0KDXFoD$|EWPKqW^av~$ze4NFIZh{nAr81epe~s0L(<+Rz3gaH0&v_)E
zS3#Rc@2Zpn?f=NO{udVBQ!{1h_xMuJ;jljeI{S*5#YrM#L$bG_z4EJMS<C8Q&R-hE
zw3J334jg@NA2US8zF~dI@oq~&*BsMHaO|#j_gP_Lk1>AZ@Jn|p_w8Y>^2W&_f7Erx
zL#O&x;bC(l%|KeSi)mWWO#!kO)Lz|=+6C}{u`OR4IG}YCz!WN^)bvree*jw@8>oar
zf2`jD4V6au%z$uE7X|I5lQekC{jI}?<w(i0{O^UW??mixiPI!+|9I3`uPoX4(~?JM
zD3GrGz%jQz#~pB3mKHsrVh^DFzT22MUJcESf5Pl+N`l5@fte7c)J?zj1}V9XY*+4n
zm=A!RG*DCIDh*LHJc|ratl_yNF^*5c=jo^DT>#!bQ8osyDWcw|r{VPJ)Y1-{yn#<o
z5qQ<lmDSN5jN4GncuLqzYQ`owfM$Y+?}+))pOs7JvuBcOn^4zY#+bjqp#Ex@f5Rtz
zif-Ra<)-&5$uX}rXm)5)5<{<LX`FaIom@&*yU&?@&!b><=VDod?bV8mRsQ4MV^gZR
zG)Q=c^3_lgIfpPKgjbM3Q<(sKbykKhWb>OI%@-<evjE;46LvCCeGd4W2zvJohMG(8
zq@a~-Jv=1*<gJ1Jp<#46rt+NgyuJ09=9ucY=A)2y0I)`x0Rc0ROnE2yeY^daWELcg
znzlmxo07<uzb>R_SK^W&4fLq5{a$@CM~2kqfZt_P$4Cy<(IbuskVk0zmBi?GE8Gyh
z!t@o{YerRGO}Ry;WyZj}3~93owCMookPf5d4o&AV?9fa#qyzDr%-4_3M06emih6+N
zVGAL{XC1V1M>Lxq)O&M?n<jskn!d`?{=n|Sxr|)V=4cS^x%dgPL>O}Tjb`eY=BNYP
zB|U{YO8-gEdaIKOd&Eu!p(&r)Et{Jy898DhMzmvD0>`1@W4;x%7xC0|dAS-zGQ!;P
zh%EE(x}gD^G!$bP$QceXZon~`2zc6w9Y1*)6VLf76sJ_jIb#0cw$_(GX+3|0vayg_
zTPP}9YwI%OfDughL&>CvVWg_e5U@DyG3EUa0w|ddLE4aeRSqYeIx(*|0Za?c{o7AA
z{r=>nr_)uVG6B3gozGz330+h)ud8`mb5XZ=1zK|@e%J5|Z1Y3O;NS3dNe}+=BU(s}
z`xo=kLjX3bp1$8(IAHo<)K^F#Oz^bkicuv{i5KX@3eiZ4zOMd5LL5ovk)tg*ETwqA
z(lEQWeL&YhS30ta5Mi_Nf*t092ao8AzOqE*N`4MQM$TVCwxRN5kTIE$8vv3e7uzMk
zDLWV}@KW^nyDnr5#~##_0OFOCUB%JpR~v43a$MrxN>&5K(Z`}v8c#pU&UYSgF2rA=
zEoGU%!H&p43uzI#ZWuTEoR<I;y|RdfxP@seSP~R&GAb^fP>0`A2sl-U@KTCp#LG)u
z<71RhvhX}2fVI7a5td-4QxK{f4$wJlT2$%0rC4RTSl5jJSW0W)Jpox_X=c1$9#H-q
zpfCa2+fGNthzZVv2ydzZCy?S(S8zv&1s+laXB<id(-441cwUL`(BG#T;3e1>MvWg@
zJd@3g#W<Qtgep@u*a`4S*mRMGN%K!DREbgjg*e;KE~!U(8h;tFP^(~uTQVQEp=L``
z*Z7ZnNMKbRZG!@+ae<f<87c_?@zx2#nY0VhXzv24fSw5anaWFPlS^DO_$u;C;5Ted
zG$hv5Wt?Gi3-0Uo01eN&3*>d+ZaN%GIs<aLH^L1beQyTcl70_Vd-huJnIP^*zRAlT
zP4yll=438OITZ|=_aBqWge6ne_y*M$ods4)`OMD&pcla;c?nhpTPu8Akd(8wd<2kc
zbwkX9!yLLJ^!I%B^9NvLXMmIhk0#P!FEx-+-R5y2s(NW5f#Wm4Mqut5SC{p(om87m
zMV%9yTeEN!z>GU{>Rq#4_BFNXjGnS|*9_+QEPaREA9_wfeAJpb`biRI*VL_k44+Ln
z7UH$3cdb>r3iKcM4c$=tYOFwobv6ZD9-p8~KZE8{Hf>CxmpC#QhxL8>9SOraTWkWI
z$b(MvfS-?DFRvj_uHDkVVc+@*N2zO}jpl#shNo5-LovEu9u8xFK(wuencunsC-|N-
zJ55r1>b#AO)Ny&7y1`!U5gHGa6o78{llyr+Xl=X-(Vn?{)-SEK3^V6BTcIUn0O_qZ
zx?V;@3;#^pBh$pYknC|+!RlI~CmW0JGizUsH$L_(bjAkLZ>_~jU$|Kl&fe|>$gucF
z+3d_l;5KcT<Taa(lkj-5`^2=@HMdInNz|@_(8mZ%N?X?JKQg`mSy9!>ei+BCO-@N0
z<HIiC7t;_SMF!F3Bk^AeOsuqNxwoXgaI)AUXMv%Y4xg}C^a@t%7A*#9su*FgT*s}+
zsDuXjD}vC=f@L;(Hg~8xYF{-NARYSPW_@<^t)UWOV*2De&prbTCna!Ud>Xb$8o;b!
zaddWd_{4rxB{u35<Cy&mmiP-sS`N=x_Txa`HTk3w`OEz`p_#izNf;NNJ$jpOlMYfG
za;kVqV;lEpIqs5`AVK7)p3iOZAau)#-`N7-2}BN5Oj6BVzb!&`HKCO+9=y^j+0P_s
zx6gn|c!1$$8E-{ZU!4=DflA74yHvfF<hYXLs>Iq{{r?f=Rg)^7CCN8YDL}gfBh8e6
z^W>{ln0u&Xndc-m3@NIFlpTq@L|5~v?!{J?q_v{x&X?1=?b7>D>}WJZT9_*I4r&OM
zp^VM=Yyp;@W1KqwI8)-VP?G)#oHcNizJ8vu(@#gW3AP~LIbO+jL#1EZ<xrO9P_O3D
zv*j|{=dzYcf=hFG*z)-7^Mp$C#8&g9?BlrD@)b+-udn87uoY<87hvr3^;QdRuoYU`
z7uuE<I$p>bt`>UO7x|PH1*{fbk$K$)TG3bt_lk-nI<{1#WQ+v*Sj?ghV1JDTs}wxX
zV9SqMEhe(D<_x55O{$kgs{Gr9^hTB6SWywKzI~QjKCoIEx?1ttJ{@e|&6@&Fj$pka
zmfQSb2I^(J^|k&w(0bWVD1ESHdx+mY#NKzjpyNi}52(36MgoMV%yEA4CO6<B5+V9m
zPhFXVd<_H(cyQt_kl0W;JOvq2*1!=UD%fxhlWlf(h{_~DmL1XrsGDbN@K{UjJO}#H
z1^Tx8-Ta6|;Z^_pLPepXi#E|rjAs65R;M77;T!QMJQ_vEPWvyajQ>+oX&FnCgZTj)
zT}By8g-TOB2I3GJi)%*wH{optP+M9_w>oi`3`UIbLF_i6CA04Zndmk=$~_2{=(?lX
zO{h(^x@Vnp_hG$PSqJrXLZ{tqkJ}>)xBH)~X=S_KvD>od)pV*6%i1@)egt>XvOk>Q
zix`OPR>SmMZULIgMN4&vt+#5rlC}(3wloe*s}^6kt~hYG<N$u}Qsoia=kXBaj?54C
zCH{HXMuM#Ln~rRb0gaNl>tsD7p9J8+wXhvzRYVnS{DC1@%2bQPX-A2Hj{!unL|#{T
zN<Fx|d}S0?9&%UCdGIEL@5v8d<v<*g<-twqmZ1QFK@>rL?T-dGc$j!4Nv-8vx_)<(
zSM)b7e13G8l5aS|bJ#XPzW*-QMs3d?JAM{EEcb47XdS+P{l}N}XMK)?_p4)Pw-vZ+
z9%q8dNk`dvY2$L*eMjqpxc`hzV`N7=eh8A;CjcAlwLBdcVDY(;pDJTXe|~b#_vbsl
zD2@rayto5Byv=1NV7U*qVS&;${b_6^S8VbjoBp#KilI`{aSWT7p0EBiyE(HZU>=B@
z{s6MzpTPeNZ#f^oQ4&GB1XUu(WM@g>pXb{))ZKsKWhcKEam;Kn@xVaE$xb%O`JI;`
zY|Q9zLIm}Eb{%4ECD628Z}xG|dMIgui^6_7$uYxg=tyCfGWw+(I(0#{<zvNMF!a%j
z|C;~3vqkK?P&mKVik+i0bz#9wWLMAE^CMl>f4}3i|DNOuakdX~wnx-2XF4y5>C=1z
z+?82;FX`C_2j(^0kkUS8ih8X~QT}4G^4;)sNViC@&{VLuKFLt^M<UJ3N)a`FA<&u}
z-{lt{(h66+ZbRJkWFo*fI?<T&HGXsKS5$3^#1dC%t?%8z#y1z~H%OC_IgOzNS<+9g
zj<8p$@}2}LUtOgB*5u>|O#MLc)OLC`Nq66X*C))Tnh4vvh4Tqd#zFbH_3~4aiW-*>
z$tl&8q%-FvUiI`|Qi!|n`;*~V)V;KS&%LWhH?Di`>~d}!OntZ^Oi<al+9=y|<vtLY
z+DA5iLb@RD#X8$prTm<7sgmCPBNOwiiiDdYReVbM?e{gokY-|&q$>ky5L^eAH4^^d
z@dSzUKp=X8Ie+LKqw9&(Oh{=f`=|YKmP0Dup9fAikK|2jIFZ%;iuF@Btv(oxU$S36
zn*e#Q8t`K7n^0NUmb7eFy=qBBbaTy5<OZkB6Kch$e}19)agizk0X`6yVB9uuq#D<m
zC$l{=C~Ik{kmkg?my<(+cKJ1ERi8=th<?9m_`@T=`3Tz#(G1ePggNlk^NOwox%MpC
zH7Ude+}2R5`LMivv=HXHQ*;0k-^H2rT`6lHD2W!g#aR<K5sNTLVo8%-qOg=qvPGo1
zMXL^GaheobP-dqOCu&yGij|dxO$hs)3F#toTvoTm8kQTcsO2N&n`pP1EsT5ZHm}En
z9X`*xU4F0nJpu2AkKX39vqHZ6vqg?bN|-;;nTPo$%v!4)zsW%Z<JG&INmwwaY!i0~
z6k#?nE_{*BEa4!@beeB%IFlkL)0!7xu9u-%Mv}3fxtU9Kwhj&{l;*rMub1v-2!AvG
z+22}$tAByYi1~Mi15eL{lI1v{7$@4!EVGqeF(8U@I*yi+-stf^Trd}DG>5~JLEo9}
zZM_`(e4eD8wJfwv_la(&F<mb*Ca6Zse5oOZcJk|$@fsLDc<x(Xc#{H({=&PdoxvLA
zo@2+t!1G!_^HJ}#!$f0VEzh@zYl#B1B$S}!6&->v1Ic3gihtV-^gON8Z<|wT%Uy(<
z0f9E&JO;HFYP?jE3Hov_vpbb1WZ52g(dBicRvWHwr#+s^On_V#tandB3N?U?tE0@F
zr#FBti!<#OjfQIlNe(%YV;rx5jL}w3CE)oU?xk?y=yh99!2#w3Ky9<L7tx2M6KY@J
z_eef$udlfvM3OMbOvi82gTEEJ-o<B1`L&H<vY+a}S2%JuBE>9ZjM+9Rg6qHs8rdMy
z_{RU`@JSxSqSXn9@kdR?Dux00oU@XB^JLZCW~dH(*b5zu6U{i=9hiks=JPxsp$-dt
zd?ONNl_@BC;&zw8g;<+rxZ6}@FZ16g25PC2jtL!f2N_T>VAet4g;Z3>V?qlS<AWkI
zz)LZ_lF4kPUS&~&WqvIKg5?4Jy==mK0-De`Vp|9fd>M7vJkO)YyRe2qsIxlW?_u+U
zCLfJg8)8`Y^O7Hk)pP<V_nLARDx;4K7-@pX$Em~XQaz#3ioaKLG~%w<w$v_fgs=@|
z3Y*5Ypo}>Y=6aS+0+nP4b_6e(0p@9Xiog}dhULh$FogEZ;b@-o;+pH7S<=wm9or&e
z_fyuAKg+RS*lE|<#8B-hJ$_ze*t+p`?en9Ndm`n1R^u%PdP@x}0vHJkP4SH9(@o=W
zdgjn?4ZQ8iAyu=-hhiNF*j?xPKioqSPj#yNp*YJxJ9n#eVH<r;q5m)o)TdN<P*Lje
zir|dQOI5j7*VbcB`GZFX64agF8c?dnA1`lWE(z?s!hzvgcH?uTGF#BCq<0t3mlBmi
zk#J3o?iL1&(yz&4YLmY3#XoFpxL)6Cat`9B=U-hDuE%YO?I6-Iu2_VT$+gFVM?ZhW
zz0vJ|4O;RwURyDfo=uW}rS7WLZhSvLKf6_e-6g%`XmRGDiO%}{Et8}TLv6Z+odn_8
z+9(hpQ2WCT=hKu)ETcvB*Nu#J?E{;(e+qm)$kF?nv`QgE;7~K{#R`YedM2a&4;O8?
z;(H~*+0}q&YQNs!z5L6oGA4o*C&7=q8G#R*-rPRhuTPv$vNPS^<Lz~wk)|2iWCli`
zC<1rg0a&jky4ySYJZc3UNsNS9CDZ;(EzZ%RUf!k5*r!AXV3Z6C{gRl(Pb^vro0p{#
z*cc>MQVyt)ZYzE~9(!Og$--YkLCNHaq!ivne$>Iq%ePaZJzr$5^^qycwy*8{=3(bv
zX`>zqiPPEK<Wh~4W@?$c_jG3}EvSjHkapD7Fw&WtQdj!n-#M71qY0aBI8M~c9N++X
z1MG~1ZNWzY;!`ZnEpyNQnvDefx0c=o$tk)pz7aPZ%J!4oIHe=om75jA?=jxTrUP#P
zvf?$bhkOUoa{eDmx23KYNL_-zzK3=|ZtIaQtThYj-erjy8RVmSHbJyk-Bi4EgQdfk
zVeqj4yOKVLN}2#Nvp1x=R9Jm+LsEcM1i(V+BrOD1r3O)M5`3?|oBxOFT_gaO-3Kaf
zdUjC_)um87g#ckOXaiLPK_NA`VcGvFsmRcU0p6hKQ}CwMsG<@cK(Tve2g<0-(d_}D
zoT^L2eMi!wVS}vwXs9eZ5lVwGc4zNSu3O&~ODa%^l)P2N!&NVyer^oYzGd1b4w6>3
zc@^M&tLX8Nm!zL2A^Zx`VA{jMO5tEum?|eeUC^kh;4tIC5)VjVBj%#f%?VT)m>xNQ
z)zYY(k==N3!aS`(?(foS1}pj<Gk?9@D65Ao@mbbbqJ~J0@$_CNpQffBobZEI5)`Im
z##WstjJ+gM$B>~C*mqOt=9LNA-p;JpI)3FbdEW^D1z$CT5f%VeTUwxEDw&3JnnC@l
zEdVW?<3=Ww4)Y6skIw=Df*xd0d+tvjnI^JA@SkL(BTeWfhTyGSu1RIaLcwci4%TK&
zV1&7u)<!4DGws?h$J5#SHr-@KnUyhd5}>D3U%dV7uQQzIcZtmDhu<8}b3fh!N=DLC
zBOM@LENTE>oR8f3TOi;jG=v)l^gZlbUul@SasQ2$ug-6Z&E&prYo+5b`|I{<sAVN7
z9m=4^94Cn4ug9I063jg>Q;zNx1Adth@AiSWAPKhpf&3l8w3=GGsEihA<`;1En)}IR
z8qo6&z9W742_@6BKDhM1n;}tco$?{*A(5P8X20va+ZJ{XiT$tdIUa+Ajgz{0&mY(@
zT&&3C56pP0pL+0eq=|-qr=<aOgFc|WO@|)Ac-ZI*c8y!0UrP~Jz}g3M#~&3@gfL3N
zE&h$ZB-p<4m4j-$da;9`%s2@AY&2eRnX&&lh!SERAX<%iMbdAqnN89i2cLi0*Vw*@
z&DPbbk$MPK9J_c;6l82>%>De=A$p`n@<#)4ED46V4l4Er)KkiQQqYJ8bm@YDX<S4n
zevVgfpDOfrKfHNuQe^${LNCU`J^mTd5dl4>88Nd9(zXwNpQ#F<*_QaG5|Dif{9bhD
z@%xA0Vo#rZ@ZJ6?)bsadTzU<Z2SNJ)9#oF{|83fTwIM1!ceh!dDLt2KKgryo*;IYm
zOEKhr0*XOjO?H@`V-WES71bfHH||U+OP-c44t-R3cEP8bby|5k^hy0vc`iZntVS=)
z=e?lHLVo*Mz1;ADX<Rg41l^Bj%i%+tXDV;I+asC-hCjPps;rDj{_MP7^x0G6`r2aq
z&&S=vUzHW3$v6Ku9OaN>?SD*va*srx2xp)@#)_EVgM&%c$GmtK{&N=?tr9Cknh<1%
zT9b(X@Z~5t@;@}MhU#>2)KP>Y;}&gpWMBT%vxZ0Uvv7R;o9+#8=B3{iV)oMz>%FJ4
z`%~!m?u5HqZP?w+&DU^sLVUf+D1aXgv@+yK-C(Vi$j7T=Djuou3xEG<b*fgYUP&P&
z@3O9cJ@L@~S@d###t(i3@p~&iW|#5u>?lrSy`CG?L&QLy^g-gR(4cvQ=DkOnV~4|<
z0B_K7wI)y$bfyWyDJ@fGY+z{c5j`KiyWPL(d!LWL8m-S$S4#f!eg^0Oq!`VF`U5G;
z;1G*Z_;1&*UUYw7efaw$FRuhZwF`u@8~z^Qq5D|9Tw2L`6LgJMOJ-@~m;DHJIL`rU
zi$75Fg9u^}gQw*MojBo;zljhW4%R@VaM)s87>9`#F;HEOGPC1ZdtWd);MgdpF9mS)
z4Dl$DX=>d~+QVwjS<KQ2{&NQeqK#F&f{)fEh90}|hQDAL+R7?P*kl_SAQFHm@^1u|
zSJIu&g$RzGrXG6tUUj`0I%def$-`ayrhswstmc6x*-oie3A@d9klPko#UM`>j7|dn
z$0#FB2{x`}?%y6E*NVqOB*JKc;=HwN1mQ!ZQDp6XWipTQx~3{%L%EQfeMH(~L||iE
ztmT7bSWV>xuQY>$d@@3Q4I$z{6cOd+TSy3nJ=mD2l~Q+C4x4Ggl4NerbKQ1l?r}r*
zlQCbHuZbG7H+g8>=G#x?Yx~N_#Zsr~UCwoMNy(wD<Msj+16ih)pSq6(;m&yc)kY|H
zfiyH@SM<qi;dOpaT8`3$umLh)9=wgw{==C_Ft_*0C98|rYU4g=1=(n`gNzFGC{bCu
z@_@)T03Jdzc}u5HXD@0o0=Ihi9yJP{;)n8A1F>(sfdW#aEItwV_A8LCp%;yr0IP$5
z#NWx-Yor@TMB70+G}e=|Yh3Y|sM|!Y$0pgA&f**(9Bs*l{}ODzYg^ga*h=a+61=EM
zd)zsDHzajTbSE4Jb3<tASqorV<a*$gSJT;^m86dO_mKo<R$~?<*wfQXLQs=m$6;+(
zdWG*JC&aeOEBhMB>z{x)r{KQ)rMDH+TtL@H&5sR1>NdEb@nU4v5!<9f1%Oh0k2)jO
zx6T!+IxX4^rPRFw;=cuA0da|By!b@8&8LWXh>IB+s0|Q&Xc*?Q@sj^#$!<JMl^`?#
z0Lwt{$^w8fZ*S20gtn7Ir*BYUU*hV>aRuZTYy>d>o^0C)n>d!!Q}cHG$nA|O|KrKH
z9x}_|Cpft=<|(7KEcTu(6+HYC5K%1291k4wi7`w{ssbkW5|YE3QY67(RV<tN>o|)2
z*jj;5i^kZG9De<TI}F9t`?~k)0F*A4cb|_2-y0*82r(z_CuZ&6*cwmr7H(`KXZ4a(
z)=JZ}NO3=FG8RCwYnS^O3?L#Eff#KR@9^o`Ki`}%>|K@SR9rKMd1Jf_Uv!I)`ePr-
zHWzMPA>KB(Vs;^k6%X<Mw5e1@(qw(*5&qR)B3Hk{cKYv1Hb$y@{c4T`>up3mN8V3n
zHpE)-8oixWI3DNmEMV8)1ojYG)JPHYMnGEk=7XxmcOxuK?6C*)YzzLsCd}ITIbmN+
z_lBk$f0i`i$S@kQ&MYie3AhK>yyVi{;exlWRWomTh&{)S(vG$t>Pp6#Y3q-OzaQbz
z-ha$e+iL^vJ51<%YIszCzl#CV^qkP-vddL)19wsy>ba{t*z$0j;*oa%QVBS)9UxQD
zYHNikrv*L%T?Sa1-$!|}J}qO+jePJ-S96St+?{OKRG~Mzhf{Z9{+#3eB+Y-si7*w-
zUVQes*HnDCdj7@6hrv<PZiSI)hnAVywqIx7JUX<%5SW9cj-~LJcn5)M=pD6zAvF*x
zS_+XVp_Dxr&#$lX8H82rL7G+)EWQ-`m;s!;C7f6gT`VBG8CzXnyFXi5fN@R3AuZJy
z){OpFX8oB_XIdEjuWM9Ln;8pc^38Uu8ov?N*9u!4`UP721un+gIz6v{y^#3Qar6D*
z*n4&w=)u=z8wn#xH+E9eifq<m7*xR%x^NFEY)E%&G^_B3(Pw>0%W-`xV;yUP_BwmZ
zHSwSuuuK1yHQmn(ZC^JeU#+wqoaqg7GVL+2Q?~)cezx?_(TnEZeCSKUn8DbkrKFw`
zXVod+JYW7MIREKrD*9~d21GxN(=WinEdifm>6?Pl4)%$moFeH>6zXA0zO~Y%{<Z=B
z`6w}etWT;I_+S;B!cToKXZ=VeDb9{~x;=7xDERk6{(ohZBWsVc&)e+*slQ}l^cUYk
z6Dc)p&@C+As){6kY?MHRtWulUuOjzd&u@Qa8wlD<z#U2IzL2v0BL=nfm{q&}hlJz7
zWQt!a&z-1ctlkZxa0Atv2u5(fc5AD#)Q60Abokc@veCFP4fFoXdJ^e0=j(J`njRAO
z<jduw-l^#}v^4WOLrh?3;tF^yMrOjAh*}J0)XEt8V$#WkYZ0ZoSC`q1O=qC*WXS0}
zbID*`G@N)CI@lXJq(4I?aMEKn!}M92-s>gXo%H*Gz7#2AhEIX_pW9j^Gj`OwK7R*4
z=bss4l4TMjGI>l3DP~YNc8U5>H2izX#gMhtMn%gCqB`?+Mwtgz%x)`X{+ES;wI4_Y
zo3O`Zjq`?ba)20(_#OqpT<hod_P;|lR#uJY96MjN#^4vq@&{?VuRSq2^z44O^49;I
z$p+_l8TxqIb=}Q6T5%pab}N%>w#ABLnNj3=rLl3@;#qN_Svjf9d-LOpMz<1-O&332
zc3_-jd0(1lXWC-#$YL$sm4okR<4;9xdvvZ-&`<+t&1cm)h%UnO5*+fwR^RC)oc_s+
z7@cPWpmPQe;?g{XP^@|Kxu_ryPWBYctU1Y1lg_LeaO#fexoJi@Y{;HECtc7(VNWz>
zB{C^@|3*b*7n+&1A!o{Nk@x4XMmmiC`OJZ59OzsN`p3QMKg78r{+5`TIzHa-Wu|i$
zx3~l0eqny&i98Z1B@is_C)lI*5jB$+Az$9+YWes@)|e>=0xvYDBh>3|i#t@awlbIo
znic5O19YQ;a6(J|+CSki79Wp#XFZrW(aP{7%hw|_a?7gF{kGK2TZ1)+hL10qjE<SE
z4={4NUXyhV#=_q?Q2`ue-WVh?S%xsP#uTPINu{<uH*H=FRP?j!wB}l2R6occ<LwLl
zvvmDop@G^jwY_}mFP4h2ix#`L?b)nM)~yr7t+clCvLw<U82r>3{%qONi?mX_`I_}M
zN8)Y0J9ide-T7k~ng7P@%})nLT(FM}cR_Ew^-*jeLwqZfyuspP{B29+pLk>IsCB+c
ze+!#ZEAg(S5G{b6gpwJ2De^wEbx1*QK%~LywtHWHx+8J+Rf!*pChmfjpb3p}R#<5X
zOx5=Fm!XYlW{K~#;UWl-GT%BMu(0Dx=9rd4MdohjmJnFK3JLC{)|ce|xGW-?FY^>k
z<-#=8d7~0Yb~GWycTRA5$|$aaVn^LEQqDkWt3-~-YMB-xs-_r9ZGV@U?O)YtmLoCt
zEAZAxgvQV1IOvLwbX2p>Md`Pavi#!8z9_rh0i=`i{X1s_zl(6%sCX^MvYm}I%~B&9
zyF_|J%+xve(n`|KO7!c2vOCIQ|E)Bh#@Am$f@vx9uAwkbl^*>X1e7@M-7b>?PkPR+
zSH9P-Qg*n1bFq1}tcLax|9IJ>180)NXzexjkifNeos+H?rM-M>bt3USl-Z9o?^408
zL$6&gkNv}uco+S%Okky~$^J>NE&Hp$Cz#DY{aWjf;OsqrRLHLK9pKBs56_v-X)5MY
zIiNo82YytJP^ymW4UKopzSH3uQ|25uc*l!Tom;&aG5@^6tTm?QG~RhWeqVLEQI(G-
zCZf&hWhh}T=*El)*NajoRsYKA&We}Ks;_?yy?zuUb~!XhuQtyb8`L#4FEqR$rMCDD
zKc}d+q&K{D<L?|s?TxG2Tc6>#Ps-l}4==~5t)%?rjrdy@=~8aD@zebJi~UEu|2c17
zRBv%r3F52JzAoFHvB;I-x&Q9YRI71r4g>c8+McR;ln#5%{e7I|vQ?_;W&9DY`fq2a
z$<vHnyo%V>Qr}7+<_zNkh66&w0N$Y>Xd(a}PCllqDYg5M_uvaA@e;!axPN@`kgv`4
zyI=fgj}HEK|HSX{GWcg7KD(9ZU8DW$>Ejx8&;6%fiTBTQKNObo{N@6EefiG|rU|bG
ziG~}12^9O3W3VqOlOY6n$-fOKLv0BU?7yqbO#{Z1up4ks)9^jmclE-r^hF~cgMG6z
zNuX}4J`p4S1rxEpvhYkjPm5;$$3^iUEk&I&8*Cq71ZD5B+limRQ_aafp3FvJHI0X2
zf2O51-`$DXK*f$Weiu=>t~M&riK`!z%R*6TYd`C#)$7Q~DL}oX?#O55Eht8b$;--3
zTh=F(jPR$G6d;O<Q}`(IN>B(zaA6U$xDectjf$@?W=10OFN;dD1Z3To{0{v;2Yd<q
zdh;kKxVeJsB=kEMridAgiDzQ&VU<)&lOiS*GfL~~iJUjy3!sou5{D~E-{8l!@0<K-
ztYcD0Gy<rlP1U_p%rK-fY%cM1*Hxo6PaUtN-_6aM+>ZK;7<-k<q({1`a(cYWX5E&B
z2$4x6P~FkB$_S~arcJ$CLFy<8Pb!fSkjkK9LwaoG`YJvS+FN_`*|x(iGf~Xe6ibO(
zNaS28hK|08fQGS21Afd>qAu9sHA#sCCq(#Hs`D!r!|dabc~YdzIm}}cM<dL#Q2mIf
z3G%yk0HO7s0ZgwhqztHem^(_O=j%*W`R*%T)SMA^NzIA?PuqG@V|_Oz^48Pfb4i)}
z;i03S6&_$V0m{Ip8tU^Tgl47pZchG}qrZRjkNL+A)Rnnil&cmRci6dUoWCa=JRklB
z5x0Bc$u9^MpWN<`-4^J7@OAjpq2pKBhcF}h?4p9H42_bU5F+FvEZ`w-PTSFa<j+Si
zpOAoH$283LoDq=R+yNsoyDvFzi;O4c9Fm~!)v1qBOAG;e+;`7T^w65Tt!<%^4|0ZD
z@FcgSBzf}Q3)|6`Ur9)J(dJxw9C3sRSdl1eh#5*;Fcfye<DpJYC0Ij|o^wDCYC}6d
z-rJo(ggoKK$|bW36CTuqv1VO2q|uwzkV_w>&CMPPtH`_;e00(yrs}~=rv|c_{bmHy
z96Sw;TIj(dJvh%P45Pq~2Ntu0m+@Mu|E+syWr$(sePiw6`{RkwfPC$|9xKRd&hGV9
zRBL<#JWXJ%sz?K|YX3z$xE7`{!tL}b-&i@mv?{c&3>v9-01_tZ*WD-ue!&eyVn-IF
zMwr}Jy+cdWYy_SRGZh;{s~L;0*DMGbU0=2a+4F}DyqQsZqk6UN7#DH&PH^WH(+5kw
z%J4ak5nn`VcsesLuHZN~!*N2vnre@4=G6-6wz6){9=)x3d@kSa0vgUVe@=j!gy!C&
zLM5S}7qBJVwkEa3hyV6#dQilEc!^1UM+9)x>jNz)EPOFf7o6Zg5Ph?-R@$uiTsrB{
zhTukgj7F4yNgAC^JW|8kU3GPN?U*IyX;}y;F0W~sXA<1_O%SWGLUkwwta>wvRoCwz
zQRTmwnqvW_W0n6^d^H;x^bxO!rb~t+Nm49mZ^V;HNk@W-^ZW}|ac&LF_ZMP{?w_Rw
z|NXWZzG#qp_zqKC5w=EP#h#z*3;!eRym8+o&Q3}EJzGlZS3PA`pwxo0W(1EU&0E=F
zl2qt6$-5N2)zquhynLLRdv}AY0v<iM|1_G<N$Re_N)^yd=xO&j;8qwl&!?h}!MDSb
zLAOqGey>mhf0Y^oW)n6pA>Te?bV=CI3^_Kw6&7IM$k(gaNBn5DwA!;weUS@~DkN1T
z)^D6H_}R{f<3xZauz%Lu=X?eEbP@~6Ym;66?MA=DC?6Ku5vL$u34HQP>n+qg-h^g@
zsS{9Z!#N8xR>i%Z#l{<;s-e6}Be^6S8Vm_Q(H5x*OY8us{1Ee{t8n1?d#;D2=t5ZY
zSzsZ{rM*qH9>4<>gS1=6n@SU@ApSAl?uJ~W?`h0HziD~_HtxLYWPYH*JeU^^K@8#L
zGde1S;~Ny#GO<P7{L@I41kQzVyiejP$R>w8B@?p%WBhGRV;YrY)xJ;&!t&2ZMp4`3
zxM6STHz4gUMH0Q+_e!<u-pghl1Kb*L#T%!BY<Oj;ZU^tZ+ZDDnD)2&a9ijYMC%CA!
z-zzWgZtnGr2E_}8S*N2efgTy3xaj6)*I7&9ql{d2W_#)+_18%;%7T2tQ3kNNu%ZV1
z7Ah0;3Lt9*c*8V$ZDPO(17L*H4fDS}9Ow~Ynumd7_onPZfEDpqL)dc~BaQ))`$4`H
zLov<B_}@A~xFxjnG~~5KIMgm<hRb>sl%anNs!Vh@9@%|>9{z3JkzD9+!;yk{2nY3;
zra=C>j}W$n`lD61%%X3Ze{%0&Yg2nrLUFfM&nXPTI7E;Sd;jtk)pg6)svVH)_TEM;
zwb081Gk|bD)NnE=6^f#vW#nlJ7ywXB@FRBQctSud79Dm=;<p~^`+k1-&p(kFK-<#f
zoZ`Q#lIB>a+56!?aRynV*-0u0b&Xa${PyRj!Q@Te#Hf+E<L0VGS(d)Oh=)O)Z`Ng}
zUv%0d+WmHxR-Xz22aKzaT=M4_oTv!M$cSVFztQUS^OMK85Vs(p*b41JQSstT&`ZGJ
z8eh-b{EAlz#>AJ-3G(S-{b-^CAP@pf_<4QLdNi2wOD*O7glD*<1O4|=Km{_P(kteW
z$qqm12jB6rel-v8icDn9Ap|mRV!3KCx}6{GCa-@yF@f2$0K;vs5|?~w!JqY}EteU}
zLa=G(GcDIoq66i-gQ5)B96RYAa;CvtmtIkM;zz-@LjRF9i$@`=<(Rz~&p_7w!xX-e
z<~CglH{z`ew@+T&Y=-$w-;s!<B<a2ors#VN_fG=GE{;BRbDG`i=}F&_^%%LIknjMo
z)CaLe@mD%+bY&c??nkEfye2(88bl4pU(+a?!ByePt&hFiVty_dqU9y?{`(-scO>sw
zfYUqpGq3ePwv))cLols8w99XO%lmM$?j2`oiJ%Ix)wH8fvgeDbDI0u6eYBH{R?g@D
zv2+%GO}+0Q-o^$CVswZwy1UcSjdaIIK|n!5LUE&;(T#-C$VdT+k<yY12s#i60Rcq?
z^&>yNuh;KSIOjR%Ip?|W_kCT1>*5=_cN14c5cJ^DIRW8T2FW`r4L)Y@(LjdVS@;gV
z;)qPO-G_t!{db~~ZOwiK!f2@d7uwBOS^-4dx$vF9eAV2tgWslpkekDH_&j~xM=E@q
zK{W6k-=huf#VF0&qsDXAhl~iH8rn-mG_b9QRF5EGtE~Vfi4?)k<Hx(Xyt1=i{H0q|
zgVqFyWK5sabzh<;W;pQ!_OZ|3eS^J#PA1ZWLM`;J;O*wA=g3%7=JalfMQfQpad4J^
z+rikq-%FJ)A-t&mW&Q46gbPP-HK5_pr=n*zDEchop!N9nLq(Foy?4$ne=y(2*a%tZ
zw1cLyf$F+Ho1NuVrL{u`TDG@8Y7~6nV+mi6+G8j(B{+WYFW;Yh+xPyL`DN4nGF`c=
zza%ABnWW&CSw}8c#t0X}GCfP_kpN0-@Ki01|8;L8;7;`SvcXTBC7+oHLGh9or(jzm
zBZ4&Z*nr0IjK`C6>B=Mo_F$Ga!tVp2M?<5=O3Hh&g?&1+r<OM3zL87n)%aoCCg0rr
zKYjD&MfVtOGPo!JeP_5Cc-|Obq^{G*G>%Pww(x3Q`4yiXjuDXYiLQ?e3Dl`fi?alQ
zm-!)&K!51q6kq{p(=FCX6@9-Jm3_*+#le72#KRl69=OGAR4BS!L!1gFq%Z2ey-K3p
zs5MVQvl!8`ZNx%KL9E(j3)N_sMG?LRUjDuqlOB!RZr9uPt!j5}F>Nx*Vo-dbu<S*5
z4GO@rs&>VP6!ZR8`$q&=?ZK8DrLJ;afcaa!&qMKstu>ZD0jNpEZr&GKC*pdkF@M-~
z@<~n_HL80qBJKwGxCYZo!^xS0Y`aI}vR{&6;WVTgk=Q}FDp`JP^Ufh<wIVjdx6h78
zJHRrAN%EFFFM#<{+XkxRPsjhN8zLT|ZD<T~lm$6G(sErJyZvpf!6?=;giB~fWH69c
zH)%AP?G<kzfOS~g$SMZI&}9xC4PA}(IMQIW()}Ael>4X3y0q?|h3Z`=A!qhcUMSR*
zp-?A8=dVZB@87%z?C}BT1amu_*JvLH?>I|+Vu=4sfuv#PXT!!yIN<sC4p!!&sIH~x
z>#I)138!cJ8?R!XBUNSKnZ0*`RNDY%Y}b54hlpdtr<_sK>XFaWT7_u_MLQ{KqI8Bi
zt>oQU>&rBTa3B>X6%h{Xu3)Dk0O$!adi6|!!oWf;rZ{5|M~6(6tYQ7RK|@G0Q#Y2p
z0>FeW=h2_y#k2_^jb0f73wb8PNigPa0Q92Bz+aaockl=aCBp!811oRy0^t|{+$X=X
zW2!orvds-ljVjspNxu9u6=-496*9ehW>CQ}Rpkey!UD#HCIcLeneC>#a^qkBogB+D
z77PbYb<E7p&_gG%ibXV@TiD({qu{i`FmC3TJ%9mE921KIbq58rKCqAlcNM(NK%t#J
z>u>z#@68EHlgRFd#XjR@t63V1NpFWy)K;%~UrgV|^gy33D{!XLS5MDyuHx@>6{Ycs
zjFDClE<9;!!xv{0#3@TV+_W+EBA0ypXvV;Q_Fa=H%XiZq@a!2w%+Zd~;1Nw*J-ls=
zvfFdQ?p0Pf*lgiiwL%LW`TJ(#8O49kO#8qp$D;F`bhj7!Vx+V|3`wT&eS@isi5XsI
zTfCGmx?Z6z)w@Ugb_L)XeedfFobo9yIx^?{Z{dF3Brdo`8Fvi{<r+pYIj{9k4#m?4
z0`x$2Pg>~_yiKDe^v#hLqM;UoH)roB1DVXy^m<>w?LdLTmPaBMSF{8Kd0`=g;`RD8
zL-@u<ohX7L;wb`gl?#&s=D6p+7LYF%(n-v==JEOGybpXWqj8q&+yK7WDYc|IWdk5H
z>yqmOOI@9Gy?$Ccyj8RkmGP>~a`zI$gr#-PEET8@)V)MMPkTB8VuS)|pg?)|Dw)S1
zoyYOU&WR@JR?tE#Go3c`F$T-dIUz8a`WWO^K)mR&h0!M>uXQ$`myI~pExG5fMbgvN
zd{<(78ziWf9Ei(`otEw^OJY=3CV4jcat%(vvaj?YzrWd=#Y>A?pv0Lpm*-lVCbl*`
zv>?=q`&dnwvrTl_+w?wGUlZV+A7XJGR=jmsANvs*LAI;sr)qlh!Zx(H^KEm~v0dhW
zcG^gb;H2ES$Z~DbwHNNGeu8UzK<dBlfLxOpiixho%C$dcc<rWyNlAlYA8bado+>oS
z!w?dtWIykS%@uPH!eFZ(PnLYPr+o|p`Cv;!c~zE#1_<`Nih%0JplAKDWz7lo|E;-B
zk<~amd^_z?B{^h<ug$r?ucZPznY6S*QroE<oZ#>I>KtS0)|(lVpwJCyASHRALzu>U
z&A?0%6ksSFpeyNwPj{M3cgo5$s4sESzM!O^K+mYbdgc|{jyBNOA?EmEGAwY}#5w<%
zhg^SiIeud?-FfZ5ms9Bmi)EXdzBn3mPUYC<RX}(A|3lBir9P$?zgKhl?Ci1|@FAnw
zxo{av75sr$5KE&Ey#6TpWB<oGCw&6ct+=${UCzW@zpJ^PGxF}6xc&@q{q@-OBHi_}
z%ypfyJL|dY-&xoHHeLT6yI%eGk<ZQ*z<~jYW60DoU{g{wJqB_QLlKREW?*3D7&QzA
zK7gT|!%%&|P|Ld_{?S5_xRuQm1j?~mdaGgarKS&nM$wSIh@8xf+{^5}<^_P!21JEa
zS0lKIPPmCy00!fW>7qd#10c=;5bEColEaN9-;K7y?FA;EzHnP8Ve@VUAYF$>xMmym
z6(jL)+qaJGCJ}d|8^}J7yZXb2r6#gdqb=@X0rXg>6a*sBT}!9^lZbw@N?`o|n8w5x
zdXfM-6wZ5LKy&_+n&K@r^iI4|d+fIc<*%^^5Ne$;y_<6*N*v_el0Z5nP-`wmL);T(
z9#4lB=@8DiW-hCkddVAqW|YL;{-Btn&BKiXBIjXbl3vJehzPld>%Y$`EOa*oJ=_O?
zH%W+(hn^o}-FeL7R8ZK#h18YM-R(t(>j<UDH977>yxvccVTJeGSLC|lIhHJYnW!XX
zfQWxWbAaiNlK!0*z@8p{FZs`a%zoT$XndF{NQf+zwiyy6B;`nYV`qt@CW2{L5)8@O
zJ?+TbU$wfBdtW7&?*lj}q{Y2u)Dxef(!#<MjmBd*cjh8pHqF`wGj-$AiO+73#|Hg#
z%c_aXt{Jg=yDL}csVaG=<U?!j0P!*ZUS0BmCgASq2pM0MtZEn({WIkW6THgob%gI1
zy7z2>l&<#b2@LfqH=DImKHPm#9>X={<F1ZqaYFpi$Dc|f8@$tZBM&M+WVU<L{Kooe
zG*Nh~7mnM3j`cx*%|O5+zuBZAWgR4y0c0uMZzU<s#M}w25j&uZZv$qk_#CZQ?Bvo>
zZ=*7YGO`Avz4xG*`&gPU1nS`lf1ZiM{GK#l>BE!m>sKgqdJey*n5ja-cdH+jUHG?I
zAFp@OT=gd){tMq~Jz{o$;Ey;E+mxqX%*Y-7itl|}vtenT0BNrbg7DX@CLIkk)YHoE
ztiJeq?}Q^Y2yiGZpDka>TJxJut$4k^zkUw0i(8-*Ut^BQx-ab(D`P-!qD}QQm|oHT
zr4Uu&{dM{P4JCIj22n`{?E`?0TQ1LGzIQNlxW@fx>RQvvTV}MUNlHZy8jNoz^PGDE
z%_mRu)=stmEz&$}4qD3~XU@N7EflHedtOeJG!`VsF!@$8eM0I{3NU^jXAIoRW6%Q?
zXcREnGMBCv8cKnF=LdNQ<%>$5@V&Ib4$+@@0AkkYO!o_r%cqYFSh2$_6rA50lZtqs
zJh-B}wJLzUM`si>D|XD!yB)7y%rvU_EMxy<Aeidk-LvuH>U?g_#mY4pJ0BGI$mgW9
zo{S;#22FNZZ&nG7CL>FVcP{b8AKwvW%1YY1?2{FhFRf6g8mN%prSq&eZ#8nW|1J}y
z<6aF4(S3S)7pK5OyqU3c{@(#NXLfmiWjPbep?qa1M_cICWGKK;=m=PMqqmA@k$r-X
z^ScITrQOq?5l{IRS6RAf|70m{Zk4fZSM8l~J1IPEWkPu<gnIr8;f--ZS^UuXSQ&u}
zqs$JwcTy3F2@SJt8MS9OdHIXpkV{nX%f*7IK(@XfJe*50%<T3rv2|1ovpF&KE1y~L
z6%-4km&DGYEo<v!m8y8chO3!K=&$3!cnWVd3cq%Tm}<lNq~ABODdBpO=OR6VMr|H>
zi_h>=@`*oE3;D6;7J8O#0$z9dVp4#1Q-bLY&n221tXKI8zVRgud*rd+d-KKluDeE#
zvM|1Cq?}(U>STN*Qc#e@?^~=Qq#yYJ{+q-r8hW=OEK;Dl$Iov~txQ3&x#jnZz1oVR
znjrQ+l~qE@s(<<)d#)P@%7-v?JsHt1t}UXew`dR~Ad0KyW0pqh5%WS(GLP>3t`Ahc
z9JG!k-hs@%`?D8qD0jl|bQ-0okkB|K3`^X{-+!FU5s@Yy@k83Hvr6(!jL00$`zkgt
zLV&F2(20A1dvLpW<i*sEFhvpZAJ>1w#WwI46EQ6p%8@gRO($^Vkp-&)d#Qr0=s|DZ
zH)RcBbiY8-i{)bRx5LfasbZ}KAjEs|Nld2z;C8uR?T&+Znd?g>{;PHAD}dIMLl6jO
zcA8|KFu{Aob2Q4PrInV`L~YqhGa~H6(%i7xWoXD}&-3h8VF+7y>8gi*QfT+2<<XCn
zF?|XxuRFf_NLT$>eV=e6TYHaW@6`BkEea`QK1dRkUT#1kB+MZxYF47jDMcY5UZ*9&
zi$v11OK>?Q;_CYc28lz%Bco&EuO}v_re|j7-pns7E`=+pyi-_PUjtccU2zMDG=bcr
zccu6fk_NBo3MWAfi2k6gO=GP@f9v0#5(X&uzO$7WaCwZU6Db0BUq4OLG#pl^HTDjI
z3)FA&+2Wq&qmQ<7LgAl1eG#g~6i!d9+Tu?z;D8G~q%K3!UEy<+77+Y&MLTzY8wddI
zWS1GF9BB<}@aScNxEJkvVEcG$-pOW?rkfYLi2;)T?0|rr4c1QovXiV`pI383WjjYW
zuBwF$<&iW~O!FDZ=r{!JTzhz65+6AFHzav)ls89)f?lk2r>SQWL{bk(QrMXo%s%m6
zUp}y;BNI#Nis4#VY>*Tq9|!S`8jWRtsyp~F`|9P%M`A33)3opELfUV&%hyAQ+u$8q
z#8kG>bn^ojVemI}wx|Asd+2IV;^3sSbsA_ubYiP2+LVq?^0d2-7c97$92V`ITV@fD
zpk|og1_fw}5;a(aPaodoz;n5Q5FmEYH2?Q8EB%mVYdse_p3wrs_*>3`&Iwd$m2Z(Z
z`9Hq{{R0Z31b?jr=?OpK#jP0U*tHrW#C8g_qpY!Z`AC**ANL5*v(>jLV&u>vtjSKo
z$Fu>Kq>7m8Yduni0Ygz`s6GGomSc+2C<}82RS+mnE4;o^IiW{slSTC39&fI`UHv=s
zgM7jDaO>Rh_zJDjt#W`xX}t%f0Q>NBfCN$y3lp|$O}z>#^lmt)DGmE_P+RdWVS{=~
zOb?{1rD|)1C<*bh6Q)u`HIg-&Npf*~C`yiNbh@-=aMa4h+DR;Info&aZ774`PVS(r
zT<I@~!gSnyMAv6dPCIlh0{y~hTV&j69p4Q1){#lmgP^-!c{LVa`OsPT7mSD8m71@#
zx^<d6^)WXXJJj#BX<}js26Nq7g(wgOyPycM)u2ygw5M^~{KWMFUU{PMcaG_~_5!^6
z_{9K6)7QTKfntC6pXg45Voml3IF#VSKQ6O>Ttp6#JhsM^{8-`E@5nef*Kna`2bz<k
zu`h`B@jvoZ&l!t^yFXU!?lk{+>+~>vwC?$XPdZoP^%=nn7LUxEeVl*V1!awRb{#Ep
z`7N1@D^vCnWPt&Qg%xl=$OS@{R$P)t;YNNgIsvS0b7d6qd_*fqF{8?e3w!UcgBW%w
z2Y<9iWt44emZpPUYrp0w-F%#?4n6=CnkJ$Sn_jfKX7NZ}zP2=<ly3`vjeei+q<9ME
zc;dL#izH0DFdsL(dK6Wfjd&B~oc_uD^5E^S=YnVVs&m8Q77-d3umnVw-($bMq0g}I
z%C~55MNhu5{i=Fh#QFR@^$IcnjI|h<l3ygbR>Q17heqF{mjmw1qR#!&-|_1Y!5vOx
zSo%<_!`|igvLuiw+8XXsfg_V7fh4*aIj>|f*ZV&|<%cQG4XnV+Ry-j-&7O<;K3y!6
zQw5L#1N0OA)JX3sN~7m#NNIsYQFm7;(FfrW;s6{C0e$~nNp{DDM~4s#78tb8v8|5=
zlAEDvg!?KH@fd)^D2}XyR7GFoB{7IZr&x7xGsQ~|)0Ioc@A%@#QGr0A44Q<eBOZ(`
zcFF3+$oM*9G79E9@kj$jW{(AkYLj#%e*<*^-<{1|I<LdD#57SKpexZfo~(}u5el4v
ziekY$54JKaopv}Nq={R)-yk`n&kz^iutwewa>^)q1X%?P#nW2T?x?y9F0UeOY$^-z
z9bAZabpw3zXUUsQZo(MdE4epr^!TI)pBT2oA$00=Wu-er<~*UeJH@o=$LAjMQ9!g2
z5(xuq&obP=06BuP5HJQT2ly9=-V6(3zQ7_JNCYFV(<+wPI$edSg-=egR_y1FneKpC
z+L>x`6c)$%$PNPc*#lGSgP7b`2U+>u9{&oQGxF$dEX%G1a-|Iky*Mb~w!$KGJHZfL
zI2r9}Jn*yr5YWynMl_*``5HD_{}&%a(OtoXl1+pIK3m)(=HAt0rQt{EFWYM5HCi?c
z8(Obxy~!exAz6IkzvY*PbmU%y=pPs!r`YzdlOcR6M{ElAS9;<sY6gUf?ziXJ{J4hz
z!cZKACV;x`iZ>5&-<cb;r);Oekl&ctJn0D~tiFg|X;>T4veVMEdAbdy0VDmL9q&43
z{jRLHAM(ANKNr04;(Hn5CFI~2b8{!ZOT0Ni^i51d!KvcImrvjozS%@<U&W_q_4<N$
zT?mllCMz(-^J1{d)Q6wFzxq$d*2#?+QwFGTz=QslpD`Y;|M7DRoUGorkdz_0umJ8+
zOx%~HRvlQ91E_`XpYTJOfj~#Dp?snQ2NU6gk<aZRYAeaa_#u*eNVhl@;7pE{3^b~W
zB{Gw@CiF;dV{%tn!Qp`k$x<Hk+grrJgCNN`_IPsHLTY95<`hSzc&MThNRMAPqxvrb
zWOjKKaytXfZp!{qJnC{9L;YQ9w~<}y&&bROYZ45a;N8fG71ktpmFzhUkr7FA;rW4e
zEZ94$!9{ae>W&JE06FRVWb*>tA+q0o1B0yW7D|<^VTyq`>LwB+ey*cNVfMf@>i5#P
z)cJ$`CfsveFAL-X4c8B>v!oDk;!_+NesT20;r;Ko-E*BU)<o{!JNo^ONZmz9G&yp=
z@n_ZP@COxs_Q+f1&)R%OS4VBXub1VY_0_qqu9vgN_o7Nz-~Q|Ber@vgLCK$ueVdT(
zrP;4xul{VFX1wf+YQNX4fd)s)&s`7E$VXFrB713|OQuR1wz)L|;MVVk`lnE0e`%7L
zT^T2gSOU*n%rKKq?-iCn8Hp*i+uLyi4+qL{f$=g<GuH~4DcgT{%sSma3%|bTyJPy@
zrKtpPQxOMK1i1JH62WMi-;)T%Z(9sQ!NQu#k~Wwx?jfJSoM?^7d^Z3c9!(=_LcSEG
z5#z??aah0K`^g;{M9HyfXL5UDb(-3z^xrm_h5!!Q7R}b^;k-~N2!#Hm2K|$*AcG?u
zW{go9@Hi~^rkNxddV-)Ey$Rlu0({g6Y{-B2_gi6$W;f?N$Udp!yVh-%wAYiM#**m$
zdo7^(Gs175iD`GmKakZduK1)UsPlTC{^vC>($*X`kNR)_iRz<vpod1swCJf^y-U6y
z|CNJNvG<Pd`GI*2rnI7xAFaU|*V3c$tNnQ-ElyDu0|CVaYVu%mIh-)A-;HD#CG0eY
zP3Eh;8x+1@yt&0ZJR8GE83(8aP)ZQP`YS-7<(n(7A!OZ1a5rV#NYF3Hogq@x_&j5`
z0G3K$F61F4L!J1HE#*yp3C>j)8Xp)}U6@llcCI335Fgo(HU$yjhA&}MbUq&++KUlr
zY8Mr_NEGz$BJ|%u`<4*3i)aZA)Pb$Jb@dbD!icwTfm$K3fF<22O~C!P56RJf`tzV;
z4_J?TAbn6gIX=FYC&5!u1r!KiE(EX8c?I}D(B2R#5=Z+(CyZhk{L1?pV(Ll(06zAJ
zAC^g=vWc~^fk@ll2<eu!Qhc=Ao{*%^n^I?xwvV<}Oo-@Cw8kWkpaIl@X7NdaG^G3V
zKp^cYIT)Mle*vPBPsE3_Wfww|h5&hr3AYkbYAu-`7Q!E2BzhOhKdnowDm1lTO$`he
zafMP!3IfE5HvZ=+=k!{s(8Mklc=QBh0ZIu*r_>~+*jFZeu1%+xN?)hvuf>7mszZ=O
zq^=K-KE2ErmPo2+bTazt`S0R>uHJjw1)A|mI;gb}0U+2=44<++Yyf0P{l}E2z{dcx
zKS;b>77uj<wbEiJC5l>#1d92D$;S)6Rdh1?;mC_NX1clrF#y77x$Jlk5J)0WWdTU(
zK|_V6zw!}BRa!`plxTgaKUu`SD@YkQ1zZm@=V1W<v5?6`u%J6F-V`usC`D--Sm?qK
z&IP$@3>>LHgr$6`^)4kSu-P~CDN5rUerBU0PYvo9X`@i)(L-4Q3;&yXc2vsKSOMAi
zQrijT5CXI1FZ1XvbE2?0Af<evJJcO#x&NSeT#tw`WA@fFJnvY+BvdMaHSf(trddy(
zGqyk$mZuP5ADA3<t$d+epw&ZXF(qfc;x4{>nWu2!A%%_(A%d7s<-;XGneNf;JsAj`
z(#|ULkMK;Q@4YD-itphNnMr`qJP7$V(fNuN)KMY2eJcC}6)j*^>In*YW@jicRw_j*
zotr58Ae48FR=TFj(gsF54@Wfyx*tYZdj0|k?0~d<0N*A7V3I}D4p^B2$ae|)F#(*c
zXBNVPw#-3I-q+8_W4bI*VHcngz(l$%%`=eRs+1+SdHQRTB0Z#Z66SWQQBFayGVg|+
zM}U4NKfM8mOw^YuNR@vUs-hbL(4cN<Vk)8vEB>+a{aJfDc)%$!McW2s5yCv8AOf}a
zA^Y)xQm3r)7IJ)%Rcv=lh1V;^;8l{5t}<Ul<Wnl(4b|hXs|Sb`W~2&xy2`maMlCo{
zM>(!<v{JM<;qO`*orB;B>r<^O7K&9?;QD2Z(>8=E3v^F7MQ*jm@^=l0@LaLCg6emL
z#TT>{T*Ol$p>*^ar$hOkkcqx<y-`Cv{ZfgO8SqdF%!O6&U{&vk16Q-D^wwiN+W|)L
zlIJX?ZEW|abQNVoX|u2}{f8Oh^R@+@6kLJ8gO{1z7CfIlGmPL4lfOCKG!?<SjYShN
zPkEZDm(|$5`=I8fAm^fafzVnwkO%o<TNz}OWu1?O5$q|v6gc|UA8QfPv`CQ5F4&sz
zjUY2<H(Vk=Sa>xEy75bSJ+kG$oW|*?mdCBKH%1`)Y<!z+WVI>SRVn!j9IJgL-ku90
zqYqeiXbDMaS*dMQy;^Ruky0xm5Uv&pG=8uzccB}dP1@S6WQ{Eo%CT`;D4J8BAfk=*
z_n0=N5;3M5Qt#{c?QU@%wpE@MueQIq)FQl11~X0Tiu)0EwODSa3hFwxm9HDtyFn!h
zkmo62$}h~w`OXG-Ce0+uNU`y*NGT_yyaJ{%e)!>j<#l8odNvj1TbO(kfH*@xPJCeP
zEE(z-s9=BrS&n##Uk?PK^)Mo~tKUTlC<vnl@Rvo;ub7bCFSnn-VNR0WU+;2|odH|#
zK!ix$7v|6q5pY<Pl(xHMzFF@^Y;R^;FLAL~xDA(aDv>3EbHdoufY^RAf<~%Z?`($=
zR2bWgpx4*W_reGqu7b|!d_`f<TPl*sM^FAUuUAxqvpf}i56|-ChNDdd#Um0076om8
zB`a6gALfWJX@q#<2l`QcA!w#16(J>!!B7pR-onn^VURG9dDoWK)lra7vOG(YDEArB
zhDLN@5dvo=ekw!nyaTL&)Z0jCz7#`X3?;G@J}jqTsZf_(gHH2<xwk5f!XMcX2R8|d
zmQwv&Ij+TA%$!@SpJeKCv%tdUv|>ZVG$6wbV-~(NhEwKIZ(24T9ItMv1fS)I87)tr
zAB5*dtQ4LRyCA}N#%PTnZpDsfaWVJ~jdmXPeE^MRj44X9!y{UmySK#bMOoZ8hH|c0
z6h2CsX5#3yj4^WEuZ_1D<TnZwDcOSm2D#Ak^RXlE&oeq64KnXeBrQJqyFh(HGWcc|
z{h$W@6+ojqAN;DG+|u8iL3Qe*cYr7{tYJ|A)0PXFsBtO8F1DjyQ3&$&!G|U|Djgu`
zZyd)-U`-27$uzZ}1!4kD0^;9zv#SJPAP%2Hu|W~8fzxRTV_u$bd^cjihMHVPWDE_D
zW(5~BU?PC=M*`E!D*c!y+n}+R@n&jPPkKwIPkLv$HMyhPM%h7g#_j?VAjc774~jN{
znI=BM`s`zk>3-wd?Q?0RHhz8dyvhdu%3uCZeQzSZy_x<iNvkF>K;Zc*3e~@IpWYqf
z*;dJTeFs1`qO%)HZ5jLoFU=z2455-0GGJ(Y=Crio9Z);W*^vEc;(K2|YF0G(b+k<A
zMmE$-RJ3hx%DHNJ6Rbd&lkoG*jwxt(rAlVBPpq$Ygv2dAc)H9mvJ|J1-%naOlkOcH
z7JpfiVl$h!TM8%p&Oz>BPu(U-<pDv)f<4oFy&n($%6_Y~B=K2vW@KJQi|RE2{?^89
zIRvi2HB<Z8&DQ(B`TZCQYpPXSwYAX-Ny=c6U#ZKQ6>FhXl+DTS!~@M*rA0bH3OWF$
zS}~FOP5NvLkcilnyz~2I?*KYSc^u|e_kw!GcO@<&b0VMwS~$OBsW5Vtr~IqaXpk(L
z^?+UKbc1$(iXu=knSN!aLkDlEmKz%qN-R099sv=REUluOgEu)+<*$1HPlG>HlQHzo
zYAuYgY^7b(cUB!jlpim>v{X?g+*OsyRjrKu@L%<{_x6L4rdsckn#IPO-R;e{ksBC5
z<5@as!f<m4GVNT)e?ouj-}i9?v#p=a4V$xS6=qvamJq-T@$hy%5p~My&09@QM5Be+
z18ZXbJesB>iq8MNI*0#O7o3B^hAha`x5Grj%1Qzcq9p<tNuXKBrg18v<!2@;=OXH0
zZB1T{q&V&LYbe5~wg}ABJl80aVdgU3+N#XhTL|!z!9*|mbHG(c_8}PfV29#h<#R}d
z{+;sMC+9{(RtBM-EZw<!X*+uZ4EnLW#-pCb;qk`bb_^)RS1L3NYvK$W&Y1~c3<<nO
zLM4;Qp1X;2dS7$*jo9}`JPiuZ_dgPMbILdCPj@e_4fih&`W?RfVL(`O?0y96q^H0B
zf-&vRFb)2vd!+s4H~9875~=N9w63Xk!q7o$E~s5w#hydkT=2O3-!1z?LxEE>5{Im-
zBbX0~D&<8h4j`!^=5#vd*E!eIfBuI*vv|EMaCuHLb~b6lmYF0QuVm`M%ftFb$7l~n
zMU6Zyh<(DDy*2SPdDhA_)b)vu_1~sVhvzwq*2>FrHhouKHmade-_VZHDZK$Y2Me9E
zXYtNDK@LWvwtTnFGNPQPI=@Bm<!9pU=Ht&=#@@zIb!Exf=Rq0^pWBx{r??=UZa}{O
z`sXBj-%dUAJ3Xzl%107Y>sjaLv#w~PUb*jNnLp}5XRPX<NAoC()M*`0lu&P+j9R`m
zJ^zmJ`cWJFGa!_$sMEeIo`!<c3YIAt>Uuu%oM0bCtGN&&J7@J@=~s9-wHVfgmi;6n
z)Bi_)0-dhshL_ueiTaU>I|0>9z#0P8tw=Vq-?cbQVjZP|O|-$T$1vJ0pA#<4@9xC(
zr)AJhZBAF$+r2x_ornjC?z&e!fwkZE=*$#+ndwn~_3@D^zsIfJqzUxp0O@b-)8yB0
zoZ($AeKg3Vq04~a|MchGtA>E~373DZLZ;9F`!27{r~gKoF1>Ar=W4wDZSLJ452|?a
zuTuKT<=z_`>{Tatw;2qU+`@B7a%35N&Rz>qPfy!A1$4T!+8^h?{}Dapc2?*l|8&9k
zhXek7|NWqdQfGx6m$3h$DSaQ?xN~1X5y$%OhKl0KHco7mJbVH|Fj_{|n_Q67VsYjh
zoFaM#Mkcq-Ev;?s`8G+rI}R{8UGMunaCHlPj=(3!C{06CZAB<HC$AtcE;&6b{cc%l
zYGzSud*{oZSN*oG58b^6r)S?REUmm-d%yW{>(kZey`16K2m9ZD{JQ+}-xZLYK@m@q
zj`{`Xx9Y~bX(iHd>E<d*O%DYzNO>=JXL;yla%v=8TYEeWas<q4ta`G&jHG$?L}O7^
z&_)ELc%x5e2>XnNy~zjZ7GFCpAmit-5V5;g|J);`=5B9VOj7yab=JJMGv!%>Z72I`
zFJqH=`<>|_UI8pRk)B^sbk%Z58%|qN5tx)EyAsR7TzCQ5_@bFsnPsyYqd5%89Zp=}
zUzmQEjFC+?vFG@1$LP%)a=dK<8q$8($8T1^62!$;NF(L&Q5g@_4nTTk;^iNM&o_Cg
zbekkKfYXPo`uY{}8Xz#3m)t)V-J$Xz^y-kfyd5>a4S~^a=xAxodTCeD2)mHHr7tJL
z`M)mVeYSl6iIVe|O5mQ3f2SWe`#OF5>3<U_$(CzqZRV}97m@@@$Rv~?Lk<yaiTl22
z83SN)hqffsVbI55W_QIc#cK+Jw>+?Dl`z69I*Js9x|>zTGPs|TQWy%t-5|8ul9ktV
zR7{NSmlsAB23BpahM-I~-6>cGtBGyM1VJ!Ok;g71Mor*_Klh9*OA@e-Z%S3BL~3RK
zP4X3+dpo64^ToGhS>_HpBbn2X+FN45j@)r9E*({1COiR^fE*^#7BD_#=`iB~e5Olg
zu(`Ia&=&;CCNrbaRjM=)#RpfDmgaoV4S>p6x0hssG5`<_Oc0guo|2RcV=^Rd8@XoJ
z{jec>prdK$<dM1yuxLSUL7dCf&HzwB6-^s&h$QwcCOv%|OA)9X18`sQn6~j8Q)}Je
zX9K*Q^}k~RG9~xndzpNHB{czn=|mB6kNP1Bc2Mqp-;bdMg<b0&$tLooz^ADStHC#1
zG#w|A4A_r+RdV@`LFsn+$zkc?%&t^I;_}IUMP{qX8R_T*tjSO7?H$bVisWv3Yd7mo
z(L<XUPvGxQKkArWM&y&Vauk6JdmQKscV1O%g)e+i)GDd5InNGO(2nhZLGk5Qfa)Uj
zZzx<ky6OuLTF3ngH<&LexAN+2*JFiIKX4fP?K)r$>61k*pR!oY&yPsITy}4xaY+Iu
zj3aKbpYaIaQVrr^@j&5Ot^?LVgB}-H7@6ViZ2&!Q=2rYr+Qq9MLpc=~{Yir)-8h!)
z?jKM_tBI*oGbM$-AYakJjU@VS=;1XHj*Gt#`0pIGz;&f3aU(1a7+PA*Oob{SBjxMz
z6&7j$*Xcnk3iD9Yl7tA~g7LWk;QAr|k<pFZFZ%Jrtw3ocU=I3SW$3gCqBuk=9s!n(
zIfg=FH(0lVvPw$FEFQ*f{>TU~`{T5aN2+O>wA}h6!bv8!hdvZT!W#WH4<&ti1x1A)
zj3hhdjb7=gYZhhFj~i)H%-5>F`;qCa>{$tzVu)e0ASLJ_w~%ThiUR)opm=jOy29PQ
zT^KP=g^~sw#7w2vUlZi4x=r>yQTE@MDNZ$n3($&^Z)&Yb$;sZ1lJ<%_IfBaTp{i-O
z^GjGll8yGK-*eFxCGgW?@0k!8cv<i<OmTh={s<trFDwonml;4c54ekYh+0PaLnQI3
z0O1}%<88jYf^#+)h5&-IUt6i*Z}>}2*?3ts3Jmmdf=s7uKsCDL?6^V~?Nb2xHRMlV
zp63KldIfrcf?Oy8C`wu5DXhLgo1H$dlPAY9neDsGdIErj7uU)dne3b$C(%2;Dp$5Q
zalrR!8drw%2r@-%gfnp45ryt&K6(HX4%AR}B!LKZ*y6XNH5ZgxO`EN|@WD83$&utK
zY=d+TWivncMUe@RuvEzPzD`6Z*4Rs0rX-Tp3v3u+*uZKLJFgle>n3F6ur3|8tG$O<
zj);4toBotcuAXl&0-W8u1Z83b=)%^fS#|3JMJ3U0-(;2_|I8`>N%`^C8IM_vutuX!
zvu05p8(E{foTIu)t-JE20e##elq;}?u?0W2+F5a5S5U-O$fqz*KBwR@0~U%QRt>V{
zrP9g~wH@27l9U)5Z1L4}N5X(Ub%NG|=OSRukQEjyY-X>K=myIVtM^J*NLZNBj-T6M
zJpX18EZ$(sU(=qy*X2vOfnX`j2?^3(J%L3Y_|>y1jcf|r!jh0?MaHD*5ANxv+g0>D
zt-PrBVeMI7++WGagX~J!G>Sne*ANY+;RAk+mqvj@K{rrP5iCjzXFU_9^;Ulmo?RNv
z<&N;E0P+B`G-TV*Wzy@b%f$-h`{}F_PZ?kBr~_X$d!58Rd56jL?F#7D(TtM#yLrlH
zix1%gl*zNqQuDL)>Q+eDookwYg%_5y?4AbPu-`&Mj7-B*B+RyrM%U(7lMinOQo`9|
z$?m&N=*wDq;5Obfb8?MOki7_;b`)k|aBDXc#335O|JT4^xPl>0DRrFeJV`h_phjw^
zFVE?3mGtX`R)QD3YOz>wA<mZLs}JQ%PmyOyv-(M;yW_e`tK!8AW`)O*N|+m^cx<O=
zg&DpK%ZsW(u|@W{V=l)gxNicNj0EK#jEey1{aZ^+2=wC(@zpd|sfz}L^Q?Dy+a>Fn
zk5()sXm6`6H9o3PH`CW>8IAXxvv!b5(jSJG+w5F%1IeYq+%9Id`~r2@PX45@7RX9r
zVSRJe^Y5V^$<VL6(l=m3<3A$Zk$1U=lwrO6Cn-6EFE!jM-c#P1o$mv7yxvEa?S_TE
zFBMf5T9k(Yu71!6<Q<Cx`i$Wx%?z0VqED{fYVqq=^F_UX<LJ7n>mFGbkKnq+oip~A
zsA+KBYnt~=3D?Iv8l&>DF%bTC$|sx`U*7*1(T{ow?m{vf`q)WWAPIsXKexMa^M_8$
zm&r&~4O9bWbVP}zXDQ*K1xx*L?03G{_`eeAzu&=lu_$t=CCIe|@T;Zug)V~_=9}yc
ztWad=14vLp>nZ7DFKh!EtU{0QghGmPY^59&*dtfOm#q*kFm}`soUT{{Rm^{6bNZ5#
z3UR?lI5v*-ZNGv(2fac_Z$?<fe1eUIb|^eNIUn%dPDef5d(Kwd!~}RB)fPTzIq|Jf
zfcER1r{LASn|UF&|0Rdq(%KVcUo3c|`t?eV|8!Qs@yMm^-&vXJf2qH0F8*~{?mc+}
zB5!h)V8GYYpZAuZ+(DX_HPHT=vi^G*+;t9f8HjbR`x-JfvrY+K&iwD|LGE137s?9A
zypiZG4DJ&9$N``Lf>rg>^i-IBQAB3h#6y0@1vFqFrWHWrQ}AVsuBn6o@&)AQ&S4eo
zGSCzc75WB8xR;~N!*`(}1Q-*RY(gO1um*g49_$CoFD8CqNq%Q%1QVp0H+}OSpSlkw
zLMA3Z>Jy;p_~1wP!59>*oN!8+LM8~val(dowS3e)hPjivmz%J~$a4pb{#zs>S`s>~
z2|)-`CnrEtB_Vf^*9EwrbbMDIF7EZ^;}JO|xxis~l%5n5hH@GSnj>_2OCmb)(q9R>
zQ&kkVL`&;36}cB66Z4eGB7X)97qn;Lx~&XCQdU#if0MLQ*rkfUHbQ7V&5OSNRfzhR
zUBM{ON~g4iC?d(3Vs-5hEGFjE2S}LY8O;+~s1og)bz^3l+K63afD>}L>G@G9ktOTQ
z(sThFxPPF0%FY^KjjR;a#?z;y!&b)+jb|rZ(0bHyM}ZO?TUn>2RH=90!1M_)(4y4-
z$xW#Qd-5^5BFR(eNi^FcS3HiU003e4kuRP_nVVcrEkK7)311NSc{9d6D!2{thvMFQ
z-bHX4j;sz3gY#T*-pGDm2+%A>bJ9FOP9lDhOT*|a@Taq!=~!-{u~g}EQSo`MC2Agf
zGXb53anFUxq-sH`V+Ivzsx^1sr)c3Vawd(S>suh$V<Z*R%rW*FII{?xNZNm7o|={&
zuG-A<K4U~sTSVg<)GC|I&cY>kk*{BB$s3<KM<;gTOFzEIK`R0q_nqHvlN8($gj9gT
z&B+#mq+R{2x2F%*vr1M$^Mp5ckJ5|nXogM~=v3PA%Jj5siNKgC89fPd?OHik%TP@r
zTBW0Khic>EZ-6RXGu)3$q?*h3nQZXMbbczJVT_C}?fBk;yqs5m3_T^}9z?!PQZxHI
zLE5|F`PF}SXB6^?z#0AwZ<*=x?>{cgWHLQeZ%HYr+>=!jk<Y>^KuB^nqH?zMN)T-&
zBX8xgb_u`W5i=px<HUds%ik4k=;z<n+9?^i=9CZ3P(N}+o?4_FeTSa5dqM>-vr#)F
ziS=9(IuomWM_=vZ>92+iAC6^cUyl7udkG+y4Q3&WUOEC9p`(qZs&U85JA&3rR1jY>
zq3?Q)9@g9KRChju6nBIzNDx_ojW`K1Ojaj*4Lt_@nW%lT%71W86y{z0`QV#nu9aac
zjp0y7xC05qhBD%j9QnNmmT&W2KZoLTz=BwyAPIZQZBP(WRGK@5tff>ULa3{OulBBr
zK{%B%BuKg<L>h)42r=Xm7k9l)f)XJ_O3=8!oSvaUQOIqjEr<h}423Ons*vLVm@_g;
zgeCqDR(!5m-1LAktHMx)fm|GGYF`0y(Bh}xg*c%grYMLmdcGWGy4PVkXlZ<tk@}{A
z<&SfN8**po+>pNvW@M>q5Uk1VJJcE}Wbi!WSq76=?iM0HERq+EZ91)Q)7sP1+*Sys
zPs%erK8F&luZx4|=YrO6I-^S`tZotgTz)9$%sbgzyB^9hti@PJ5H0KhmMyXs9k~+q
zfnt7!))ZZRRiO?vBj(ima%Y|H$$NnC6<eIO-CC!8I>|Xb4=#al&#Jg`YtO~9A!pc#
zpxyanbc>uk6FwmpG&%!uz*;#W^y6&|;?AS*QIPARYoO?)?mI6Flgvzsz-OsR#0ju}
z{_W-;IBK!Ges}zycUj)RL?xKQ0(l?(jp@iI`3Jj4-Hp@9mk%uN3d^toJ5&SJ_rTs{
z(jlR+K+nTmlJE78M^CC=Udky8I?;jzm`@NZ>@t>n?s{J!I(+)R$8HpI?;1$FuHB|F
zZ3BZ7ADqeCT+RcmP+(OQSet~6vxKEB2U=nAfC9g~P93&)zWrTZdtquGcpkk}=dbej
zdnEl~Uj7HLAV%gjDDi<MAh=Z`4Du@gHWqX%H^BAf#Qe{zVeXEX*$=UWF9U^sJz`mg
zcQHrzzQpuP!_yuHrOW?(tD|)*PAgU?;?=`|2M@K|<5f~Hk0ca=J!(U)S7(|!@>5u(
z^Fzqsu7u3FN@JJk*H333PHs>gM!Qx(n-(DN_<R!OV|l85w01Y}6UVA7Uzh+C)5O>;
zeV5`p{}lraIIxGr`S{ivp#H_kvjlr;(%pX2#uRTKop-zjiyISBFQ5iUj)afj^$xVF
zC(wZZ1*Led!i-r`G%j2mEIcq5e#=_NR*G(KbsSSJ;)<}qw_e`*-SLCOR2VS5hm=r;
ziMvFn-`-n-qU1?-$vN2MgV406ivBaapudWs0lO>MhGGI)(J;IS@J|tRu9+m)on;ae
zdpShTw=HZ;<h?m;GkVYEhGzCndsfLclS2}q1`VwWXMBdqW$nqaF5*E&a4KGM{RJR*
zjJVag=rc07Tq5#<D)Y4}Q$jBba1jg+_MA01?hqVv7&1R`hz-t)N>M7rRkBq8i|c!e
zi*~3+fm}@yB|SYQ{g)-N5rsn$rIS6SvzMjKTBQpSWotcUo0nybnq^xN<p(|G$Cu^p
z8s%pZPcM6({&)Fw1^v_-C<OILxV2nCAx73;0aV2p=JZf<AoL$;QPph2;$kR;*J0vp
z@T%<_<(e?*UYPuEn6feoT1=<eOQ)`UMQOOsV8O;b0Agu#7uB?7bT6Lt`3=rysbH=0
zdA}{TT}91?R!VZ<Xv|}j9f1WL!9RRPtnPx<0T7M{l$2PoJ_(!l8&Mny`yxTvRs0kB
z4bsU~uVOXc-J48r*Ysy=1v%2hhie+b%2;eUN5<NRe1a>Ym8?8|3=l27-Q*2X%7J8x
z`HetjG#^#CrwtF{uY+Z7tdbpA+22Dsyg0A*lA~1HqkBY!$b(=Xg|T64lz1E09AN5>
zD=!KuecF0{F2V;Q5oQ$9>coN)Qis&J^oE1Wd@;i1hEiBb`Drz~&8w#7ipCMeZlkS^
zL3B?+MF*ntrHM-CYfSeL`bu-RSkoP>_AS1al26+hqiy)Ch|8`|&&})LAj))s%Nh*^
z;U)m!epZ#3Tc7n}p0QF$<cX+o#W5H@i!(e2Q(_S<v@i6Q9RLj?nuh1Y4C|f2jtFHK
z6}6M@`)5OPpI>$YdfV@C{EmZ3I-TTm4G#fEgDmKj+3&$sDdkIV{u@<-#G7&FYcY-;
z^j5Um5A`8@z^l6qHwZz<%G~>^uRl53W<0R^sxm0&Ztd{d+TF{1*2~Unch~0K&oI1O
zdEev$U%z$@0+VpU?VqGK?#!a?%CQcEYu)YM^{az;mHySfS0c8|he#OrWD0fhDM=+h
z^4fLU*w@i|Fz!C5dewi|8}S!{ao5A7>G-W~zxh!&{r-54hhKHS^iA?-7ly|&^pDe*
z9=X5mbA&%mu-9E`dE_<x$@ceW4-U$_LcY1l$vdNbUd!>5CR1@QoxFX#DeTp}e?J-l
zIV0|sy^Y;fVE@nmVpe}@cdUdw`u=}P!=D0dY8KZ(3pBe6j{HlXptwu``C<vKU>!zK
zoA~d$;GTDn<mv>E`+evyrFCdLQq1nfz8pvR5lZiYU@cBE@k9ITU??PRwJao#K2(`L
zjW@~ad154k$M?9T$4vl`B4$S!AaOaIwz2=jNdSAaNjH)h@kLB}DU8%8uqomc-XqYe
zmGp_#Gkzvf3O#TYWk&TVZait`HR+u|qsQ)Jq+WE)9`>9uUDxLcc<$p6euv&C>=g9*
zrQYX~oX<~2KA(Yh69qGPITG*!@$Nr%X_M0920lFJc*x@u1FneK>9-GWiFLXTX}nf@
zniR(Z-d=f(o&WF4tAm4r>AgGp$!tfy)8@yvE`MSKcUu7`Wocgn>U2w?`-l!$-NfT4
z+UTbOiKhDZUb>`lUu3d;Om&b?505r7c9H$yv)!oH`l>8s<2_t`umgSHD8quLL}OvX
znVZS?eMw5#dUCd@aD8b|L!()*NXyVES&i{QonlI!_f;Orw|0QOfRtVFEai5NZxOVy
z*_2fJ;mZWT@T%#HcJ^Ifhy}X!e6lGQUKls|%Ut+}lF%DEdN?Jq8GE-3Gx#jQymrSR
z>CM&U6SyVcVcEtYWU-@McB!R{lR$(+QMoIJC`IlZgS^xS6&+6G&+g_)YfzUiwbIhF
zQdX_TS1>$s*L^k=>W&m_c?T_WkOQY#H3sqyH7RNgH62_NHOxx$@Tx3|r3^PiM@unO
zCglM&-8*8>G}v!K$KufF9dmm(-=LeDpO1f}=a<*;2R%}gbn3o&P>j)OB8vK#rwff?
z|3Z{?2%~jf{bRE$H|5lI?`B&RRy7Q7ADmqdMZ&S;Ny5)rrAM1sd`1Z@yuJ6e499td
zEi4YQuaMjcc&@E?vq`FvKTi+n&8RZimGy{n^QfcYBBT>tx>jAf&UKDfpEqRrb`HRq
zJNz;-Z#)e^E4kro*+ZBvko1^Z6;eQyVNIWECL2GfaJFEX)wW4GLmjZzTII~By3_Ba
zBK4Ti1~|%?;zsW`RVIyLV(+`|eH=~~c__Zwt`tV<uYB0z5|N7MbH{oL>G6Jp2g8#n
zH$FD@nsIQY+R?CjCceRABDKq5d_oLQxlT2~(hJXWCZZyDG~#$rF2+D69>?eYpb3X0
zRd<CG+H?qSir9nt1Rn4J?@&+AH@kU#Co~i3x!lUT;ZQGxYGH(Tsb@fHM+W#0?Q!*0
zx8H!8<0RQ$Ns^@lr;_fyhTg!)vq){7v^jmB=u?mhxnx0{uVIpaW0({)%*Ab!>+ELK
z*D~N!K&OuWN9)&ROht4BWkXM&jOV>3h2`Lq*klX{{Ei{n2XEisdm@xGngT+1mp*}Y
z@w&!KG2F4k=@$wB+{U?>-F&L+CvYKBiU(u&-$RnMqb%JOT_5`n3Ea*#Q}2Oh?!Yja
zF!4Bi(cPCrC>DM1Jkl^EIGPxvd;;v*C>E=tjb-KStJuiYAXmiTbU1_niIZiWxfRyU
z_HGECa<3J8dtk!`LMm{o-fs4$RY6^KwnIaGZPhii+F&D(*){4?jsx2MTjOfDR-XVU
z&mBqj)I|6kNHb>N<ZV6VALq|1qT}x~<I?Pv4JYpajiE~K@UaNG@_j<?KLaq-AzyS0
z8#8TKOFqKrQF3ZGg4^!k<-DG@K0ZCP7Q*~_`lw4d>yT4QuoYxrwN(-z|CfJDA_E}6
zbsG20Chu$f5&_6>ExZvK2O~oeU0><Pk%pg0=$ED@8!$AT46!0A2yIlseQfcxuU|Kh
zfm{Aa(VbWXwb4O8HHgIL+4;2*QpV9oFF&O?+NJAnTu9T+3};JZlZ0^hS{Xo(<A!xU
z|807cYl2?mZoO9(8Yi%fUI({p5(36PG(7KA^?J?bH)Z>}0A$izr+EcHd>DwZhDptw
z4I6MRs0J<Q6N87#xa)6zo8Wu6*%t7$wK2ciM5loPAv_<K|J++g{gPG!kDUUuhd{nG
zv@f~5I)3@7T!pUr>**I4(1z$ROeA;AwYJQHO~MhJAimgPR?x&Ty6ExNpAKae_0|9y
zaMeCBf$yUX@ZvI1u-?5l41|ejw|>R&2O8cx_-=B$pAKO+qj}C9f8RrXoU`TD6M~B-
zOMdP@jpHZ4o!lpY=W!!yqK^;#o{kE;C4DNS;Zj%Dv{CMg8M8Z5zq9W`hYSZ_0#3uJ
zcq`;71!a=zGariwejL4SsXk)|L`&hH(&aK&(cI&XpD?0+H&Adj(7GTgbX#T1l0Cft
zs0bNOO6Gzj3rcWFpFTb#OQF;6W;frVlC>&zJJ*&3K>RUa78W8v8>8{qYd(UWm&c39
zg16H#SAU~b{1QzBkpnE485GH_4UsaiDSQI2<TmRf@hOw)3%=lIT#9{s!~cnzVXNo4
zXlB1DP08Kn7Oi;gVET|zZyb<q7(P_oht&HKXZWzKluyjh*J%B0?qQ^_eWJKU{{P0)
zhuOVfO?(q<=iT<n&~QIbTPxL5qJ1ERGPDpyF?!lr7R{lP5QG}BZ(Jt6wi>Q<OhhoX
z8GundX&H3wcVo1hE}F%yjxUcW-iwsEL1gEbqNt0by&{r?HyJ+C{+xV6E-P592k-$;
zN6dw2V#>~1D;0I<V)p~*Z~t*)wXs->c~-_%a)+hv3eGkY%byz$!U(2rc$hL*SeD(6
z_(YgroO?Jfqh>^^GoZOP-e}5HOsw*p{!C2c<ETv*Hi_lbFDACATGgP{Vl^%=TT8yq
zJ8)ZP-F(A@FBq4t^2-Jw{P6&Jy11IHKDZs1uz5ttia#ju3ygXB1yiZFCBjNbnlc&R
zWyq+fxv9-&ie}0O+B7Zt59x_GtVHK8mD&GzX1erNm8=Py`<#+b8XmQ3tvdx4UIp8`
zM@%nO$#*t5i#47usyK_!IFKYku%me7I3fOu#+U0Z-JqPz$0?(`>ljZ9Y%=nbVXAux
zT4Ow4T0NyazEmFx^fzRg($=PV`F#Vdh(dzOxnp|_*9ropJ`HE2=L>Id&J9idY5$(k
zSh>_JPG_fN{@D7w8?6n3DJDq86{5lHB;xg1*NLy`m+G-j(*N;wUeR!Vf4rV<^wB$G
z^xg##8NEg(>L}5Bi4rYBGBbJ~U9^ne1wn|C(Gooff+T|IL6Gu8isOIQI=AP&+jsBU
zH+!$|{(PP%a8|;xX(l{W0lE`(nlicSV@-MaNyk4sYyCv@TKD0;l$O?-R-58UZ;+Z6
zAx)5P-*%$k;Ov<1qXgrD@&Su|u5Y80-`!u604M-}zdmof-f-5{KZTRX0MEJXoNiu|
zIYzT_JGoO-;z3Z4Vg78Q8|8$@gm-}!iu~OjIEn=Td1b$-MLAcXzGTBM<%Ae9$hgiK
zRWVoCH0)g?ZU10a2Z2|yjJm1beo*<QVS&`s#|k%pl9yG~ep4kK4w<0z3MKWXOkCNW
z7{IqUx!u3qqtW}zZ!8)o%xggZt2E{Fu7`}%p46;4o$QlJ7fyZ+Zs%g*?|daqoFYxq
znHA^MoVO(K0J29%6yu$P$4anesggM=kEtC>ZMONb!yjpCFb9g*Gn(>Mot8}513j+M
zrCH&VT(^=~9jD(57OkP3i-P{NG4Gf6rhnFj`c=NVdl9u~sGWTM?_O|^p2otX@E82i
zu;@!q*%wE@x^DBl$4V6&(6XT)ngIYooE()FV=7Hwmo{~gS1u*x<IAS7sbi`8=Ut2O
z{{{bv1^~P*wyp`BcVqyLq_m55DhgCQbCI4`1W6S9j<V?NoaVvo)Z5b6UhyWryA7^4
zzS`admq+K%E-I~o<`QrH-)6y&4QOgn3{29A@b`owUM`S)5A5LhyeImx-`n4>Yy<Hy
z3=SGMBO7Px<S)eT;3sAvLSY}s3F<<dB5L2&Xy0>=HL#Yz$OFJ3K^2zSI1mkqOgWh5
z(fjHz9EOgQR>38gTcQ?YpE7O=-9Dds!gI)m`3<lm0pVwZ(2VqlZ32(+W6#&#>5fIO
zSOP^qgKwTzJp@4HTcqv1O2NhdMfLi=gix`30abWvQX5^qSf}c{suQSaQt7n_0R<m1
zb=>@Scu4;9>AGXkEBb#w8Xo@*O2z*Q<*f<%Y<mZ~o5Z{KWOcP_RgYh1x#aHmCdU2T
zRB1_Gh~ldEu~nrQ-mo3b8VES4Ecgs8U27Wn!~eMky7r4<4bpiREbR!{_{@M@+s$27
z8GbraVt>nT6%fYt)8;8P0Oyb8&H9P_?}<IT6o_i^sZ59I+E&pXf2<?V0z)Us&)x~<
zVX>F9TH8dTU$nhwa{S%L2ifQSMv0~sM^19wb=ORu?ITlS$lTLqBn00a%Uyvj?mxLJ
z`vqif2Qoz$nwlBw?f;1%<$|KKecv~p8f`&CCc`fgS>-qYO<?lpq#}nBz^AgwNfnb%
zX-ogES}uO&jH%^9fhdw9PVwW=jp)}o?fOupwq!DdIgpAb5xpmiJE<fCThRT?>v1>e
zfNt?M>Nx70)TPj5D)n)(yz)p%B1sauP?yqsP+oIZzJNdrIiOsKWC}D{pc*&byTM`a
zO7mkw<{!ni>a1&o3YE?Y&)S*C%mQk>uFyLLqn2Mdn9(;%$(qHE6!mC$1R4&fr=2Z#
zKXy@Wt`O=Jc-&V}GwcdTgUf{(QGNUp{owO?%LbiNg>Z2B3n`xKF6Cl`&GH*4X^_2W
zp)MGaAtX8CU5k=vLmL#ks%@v}atg>_77B{RZz`*~8RqHh%U9$M<0K0O%tgz}=LPgm
z1tmkMXaP7Hq^7KJoau_dZTV%h{Q<4|3ITbH;0XtpFpy>3(cD82tK}knkDsfZObv%w
zsZ|ZLlhLf3nt3#surECfTXG{$xIAuE3J!vtZ>esSy*n&3BnuVt&^shm@r%2-8Ew0*
z(g~c#&E8t^NZj&3#x9f@c?5g3Vd;^f+Z^hEsul_#R1DB>8R#cm*Rox~VF1Qtt2W1}
zW8ORr+4hwudr0FvK_USc)t)FFzs@*MMl`s0o1>Ea4@ds5c)OQ!$B|*jM;Yh$S~qxc
zJE284AQ|G-R$bfW@zYPw<1&3mn0+T46&pUz=U-iISGn^%>ZARzNPh1&$gieueupD=
z$8!4ZBi6Y4jQPBYRbj!DIXY;99w3Z&rw###5iTO=;iN4@+--N`TxxBx+uz)3ZAC2-
z%B}ng$dB-~C{{A<z~}Yc-Q?1dgtpr6i2wk6DW!ff$pb@|Hx49|(@#accv0YE(F`lm
zG)C`C&XxG1tV~o)in#Y->=z2e?R&~~W$t>Efn;b1nW}a=hf^%u)H@Y~OAQv2vfRt{
z*vm`zF09`xbP&y21r+%J7F+h}n8_5CIDyGM(gSPCVjND>tJJ}(c-kA5N=A49NGsE&
zzr-m1h?T4DS6ph<A9i_Hn)y`O?pL|g9|e-5JbY>*_iG6ClDB+nvwZ3b_v=vm)%}e1
zZ9WYz#p}}d8^-q==X{!)^XgZ8n)mmcIlUWC_n(1$Tc~`^hNs?~Z?&L&+r)j3&i32X
zzCPEIs5ZmNw#)+H+JAL?JAJ-(3hO>+<b)*RGN$LCo1PDHBrK!I^=-P~2=WK-?Ak;;
zd{n}wU-zX$9PEc#U%fBm+E+^qIoN}z8x`AUru)il<P}Q1EBR|r$yZyXqz{9neJUD&
z1i)$;KoEe^G!%-%mvN9Oaekw8dxwFN<bM6p_{Oo|uj6Jujf`jtdk}@mMx7!V-bm&v
zh2FU=v3ht`c;{E6O(U+j6RJ{7rXZ06#^QiP0A&tu=b-M4!w6~$I&T&?FRY8&^hKQ>
z1W`(P(CiKg8J6x#YWX$UJNf(Ekz%yKQC8yMejJbjbgc;)o`_yH!NF6>U*R#7Ib?X?
zoxY=Wl9Vpx<ai_27!1#t6bDiq9InPgpp{oDj&z`G^QME*n()MG79cZMXPtodNR^yO
zmM%}<2lon5CX(&ud>P>}w!}E95V9v`Sw6}4D=OwNE4e7BAgx4qr5}n98Kr1EvRsqy
zMf%&HNykJ>*$IBjl9ust0=n-X2`kDZ+<4}!6ClO%&ED@>m6TuFEEMea&HM8F2tJIa
zjKWdrEIl?DI?e;oz+*PCS{0>?+ii=pQk-h>=u@$Glr7{r(6LH^%;;+zb-VH1PBOfU
zOqJ?KQ8GZ?i0i#b*7$``Njrkt?boK8`619$wW619QUeFp9y0+Mi4xhk+wh6Fd@L-v
zT=%D1BlBx0RrcbEhX4D>xAPl;ZT122ZL;t6{ON00Y2QH^-W^%~IZm$jpW(?)8aoy)
zr~+WKA9clnsimE?9F!60s5?MU?`6?p=Qd&%um$H6miL#y!B`N$Zz~JyIjJ!9p`clH
zikjU2!~`rBg~w`AJ~JJ|4gII_wr4|5;h+`28N{z&oJsRd7{eBGsVpCP&jt)PUYUac
zdmG4C<7RcOVolsMO&c#4&hKS$`Dpcc*npsG8qZD(uVip5DVV~A?{PFe_+t>e+o`Zf
zQINg7B?1Sg`GQkN`!fO{I%H<-=@<33p59=?;ZwfJV5tPnppDahn^RjNL4+?@lnX8!
zP$Mp4r|jzan1GErkdMtx=Mb!s{=TDlnIJXsRIMRSn2lDAV!FpDSabQc^*-mAdeEd0
z{xS@CJskN38ze^E9)x%<_x$-aYXcF!UAbH6MEuZfJAk5p$VtvdFFHU|!bX+WaG@{A
zV5rr1Z?32r_qq*#ZtJ4TjlTgw=vRH`NZk!NIbx7Q<1W!Iu3bM)K8~9@R!S<6jbGyG
z{!(x;8dUOhbX5sbntV3yCnMC^u4#1GIIXRRkZ~QxU;x56fKd=d=W^Cw!~QMDfWU~!
zw^7HLYlj*=RI-+t6TbqL7FOHVGy!XWsHYCuJ>Q@ZHm(^>xiSe_+Yv3UH{nz9I?_P(
z+*OuG6Eytk$d~$N&*67J#NT}p>hN&TK|=q=zn@kaLr!)Z77rQ!#42NDFt1}L-h?Il
zV1F59Xk#lX#H4>3Z79;9Q{Bw<;C|zL_r@E6$~A#M2Lq|{YJtvAM*_b54BicUoVw9i
zrBtJ?v`~J_yM<i*<2#sV&L$l1Iq^$MKGe>`!u1jv9%znp&7P$BtLrQBf;Bg+0#Ge2
zIFMvTNps-Km`ZM%H;lL7bUt*>t2&9|W^zmZfqPz8#QWwgEKagmTM9QM^^xghlo~<~
z(BQ7JfegtqgZZPiRfbRFud6)1F$C0!+0#5DceX0VB^#56Wej4uFc9To3Qe~`VlaU3
z07F%Y3l@#NxrA41iMbxprIOkqwr>G)9MQ3lIUOOW&Jdg^2btQ*+#=8{>)~zq2;urU
zQs?|8<gQU5IOBF|Dp#zHEI#k^@}m|Iyq~~^!?P3deuLVET@hJ!-GpnZNOe{IK-IW|
zE@2voaO!#AnTi>Ek`(-0+#X*jqLO`Cp-sH@Jo!IRild60XBY45A@%v88<;bVT}T0+
zR(^si>A8;C4^?fa3vIv16g%zQ-)4G#I{Hz=q51BU1v())YKeV1l@mJC{<=0{FNIsW
zZ}*;;)9YsNL7g_n<m5PiplSC(OoZ>tc|_dfg4koykL$-5x90O7;dH5S`8cMCuKRUG
zrq`DAjLRh{+POTS_s4$=jkvnOlcU;+Km5`$FrVg!Z5$_~o4!6R@X*w;Ys;{E!-=VX
z^tRUxiIT}#wea?gQ+wSvA@;iD4+}|uQo{WZT9~M$;_H!4>Wl3k0yoEoX?o+aoR12$
z-eRb5@WlP8-+24mv6+<R5mE7%xL#U2gS^^=o_xKf)z@`@8xs$>rY0V~z39osQ1re{
zcsB4SIBF~(of^k36qK+2)=@Vfmn0FFG(OfFRX|x-YZ%-<h8;}00tlD1Z;$f*^}$e7
zLy||Cj3$hS%g#*7C3_Pvi*iD(H+CuTAtTTN8Kp47{Yu;;!PV&Z-=6kHNB6ZimvnV$
zYoulMu(RB2YMFfR7wv78NbwLrGhZ3!_)gE`AII_Jpd_{9gYBj9*KZKC@&~kYsTord
z)LpW)-Ll1F^|VVN)2+zEp>G_V^NROvX%8+3w)iF=M7x;v{tId}dBy#h%xyMmPNy;c
z&k|Buc>aC~m&%Y7e`oLD^zvKE$tCrVo9uIUE<YAPcicSo!c%{-z4{)I*4zG%foCf7
ziAm4LDZ1*Ze+G}INH-DiSZ$X~_-{CSYm&TPke0a+ieH&A%teeqWb%bmN~Rx!l&hgt
zOB0_^aSI?fWe?0_mxOF%jT&P{cn}9Ff`J)nDCRQ2Xq0sB1hBZCh{u4F<hqeTcuIz^
zXTJ%k4N<&J8M6z+-#}HwnNuC}+?VeXk^FdE!CC~vt(c`AT~jLuk9%Q{;?u7t!Oflh
zucsGTN0(3ff%Ft?iDFEQsy3=tN#5Z*g7O-c%3g8|8!=D%{`#<FrT(XrrY<1pz`PtQ
z!cnYBlM+=JQ#;CX{qi>iE0=JPswKevKbQjusljw;VZX~5Sjs@qWzD&tTbreWVurRn
ze1BA09;35_tWX^mo-V#l%X)6Oi6^J?X{XP-FbK#OY5%CSXw{;H7J&NQ#5afrGmkS8
z`xRF18_e+=ThpDu%_>Q?@h?}^F!Ha*a<pw($LhBmdrGwa(cx>W9dA7W4O7`<c~j<$
z1(r-pZFCykl?y+=3u9Lu_iEeZl{)gHgHXeoZb_l723bj6x1mC&6$y8#(`(Vx8$L&0
zi34g0n@UM$%R(*QDlHMtE{0!Phm#R1WiF$XO!fomDtMD{n$=!3!h3D`TdV)!r&kGl
zj{l-AejXZMe*JaJUIi$r!@Ta3$71S5LWBP@kPEi6&NuM<H0*VZ^Zzmp2k^3D22%De
zqDT&Emq6JxdTl`hgnc`3ouQ0({h*v(4dWpoz=|1w(utmp#C=c1;=o}RyHkVIpBV=s
zcB$tTS<E7lZfGz)^M)u&Pvs;}$k!)}EW+ibJI-G_nOev1)y|*~4{02gW)Dch$D*1U
zwV-;Z$Y*hEY3#F!64uOvV^Tfy7=Uapqd8nYU^3_pYZF%C3GZVXMs0yji=nq749soA
z;w34-0XTFt8$K)EaDY*m75vep`>l6mUZ;d;LK^=iIgx6b<h6bi=rCGWf?go{(^<d$
zcsV<)`a@-)K=n-{!yT8V`s@Xbj^248zW?@V5!*!kF+tS={*3*Xj@Nozs_9Gzqg$@h
zGdNSbYf|6u?Wz|J55J9EbBs<K4M_NVCa_M20$EhX8FiuB7#WmV%AqXYJ(i+R5Ucew
zqORzAq8qF@=1cmF0XWVb+7+w&fFteB8cHXk>;+qx;znwcl$99mH!b#V#>^y9Ril^%
zIJ;~_C~x-;VFz9aXNhOkQb1wDY-Y2opl;A6qvFHr;v`v32%U;SFgzn=>0G7A;7m2G
zGRf5zP?La*l&q^NSKE5RRBdtCE+KrH(z2d>H353f>tbO8O@5e|KV%WQuLm@|v`-wN
ztuZ0BowSPe<vJXr6JgwdE620w+4VH1g~X`$Jb$a1G8A}CqfbzMu-|2U5}B$``~%kO
zL-@Ufm>cP-1pu&sfZ3s+^%na3?;%^Cu0`(E)bvMw{r2_0&p~s~O#y_r*gBaZjXpX}
z89^3gUn=rfyVmLZ3hA{6>=EnhDU)o324O!BRGQG>h`y0JuK!j+>b;Dil5yCZc7=mo
zz?-i$lcoA4KLsb{gaUz(2HdNwgC5sO#pg2Ymiiiji-ELLp4B4<9}tN_x>z9CRrZ=v
z?l;%(Mf^dX!Vn5v>f_%MS`-P#n!wr_gk<bzYBqydSaqEOyge4ygw(ubGxbT(mCQL4
z_KLkckrZM=>7#zU(WS{WLdv<h(3y8|yx|9@X?vlz^aOPH5qAI**hS~H-65l5Y1)AH
zh4hyZ#W`d{K+z~1+1gdXdoi8pqLR+MkjVC9Y5*XKWd&-@u(^6U!6hj1AUgn>t_z(K
zVnm5z5z)Np7IR?jc93*eHMU(mja+`W8Xq-_qi#XFi$&mJbYvWLFVgSc3=V2C!yeXK
z#mnJ`gW6(vA3>y3d*RjcTrnp84vkPYF8~xvq9@NtUcawW<I;(%FxyWCNRJ{RK6h@4
zyo4v;C(e$KI|E=*nrUD`Ae0@AXF3kDUbe4B&>W}81YWMOEzc1^xgM?IukV+NgQ{hd
zyeCEbNKj538M;<C;^9D1%0?6kk>#9pW;LgSoqHMRudu@1(2R()82GQ{w_!8KNn3(*
zRH@f6tnDP32MU8ghcyCoF%l}!0$`Z)j!iEAQLa7eWvn`$U64GVqu8-W5lHo-<l<e;
zFC7>fYJ`aiRwxU4Sq^A>IqQm2WN<V9UcXC{kk#|5FBku^P9mAp9lvXI>f7V93cW3W
zSZuiwx8NmizK}Dg@YtV#Q+XBv`^+(rktQYK_BP)d-hN*@T5R_p_k_8Ucy66(oH)bw
zz8QaQC<%J##}MWTVNT2ik^c;V9f$<DED3ZeJ-T9MgcB$+B1-h15ky9q!1KQXtUr~J
zp)Rw8ISz1MCnO+Z<hsMD9ytH<qO#<FWDBw$4HBn$z26%`bu11O2}CoXGzDS1aZE=|
z9=`!@j(_O7c%a*c;3y6->mUDD&h<FXJjQiZ47yJiq3Otu%l@DG%>qGoG0$sCfi&`n
zMc}9zXN|*aoixt{0v|nn-@xWLn5!2N$e<kMLLYO6I?k1W7$U8HRs$ZZva%#R^n)X_
z^+$Cy<OnD{t9C&IwOF+=m%H(E5cV9>qT|CrLn0s|kdR&WvDlrKFH(}{eJ7#vE~H+l
z7+cl&5xO<`Ym$7LWQ2^&uS<v2P!$T0;)8xz|FhKZ;p;R{Z<Ft(0OLZrm&P^m0ITWy
zsA`h}{=_rZ{MQP30=}=!Te^q%cnczLp<V2@7Da3-#H)2nR>PdSi1X2yZc*Sq)7!{N
zca8g+On1Cg_*Q5hg`EV8CsC=?pl69<wWdzq>$ch_U0)YSF9Vw}cfalPbi4fg-f!m+
zod4nDPTtmo|0?YMut<L-J{jtwoyD13ReXwjXmHz>DL_D-B>VT@3!&(6TzJ3`;D>Ms
zSgqZ|Q<5L_r&DKu<M;?V%Efn*r!pc%ml*TjE}T+EC7lZlN;~J0;b2>Q4Lu6-MxfVm
zUH?f5)7{6*3~kQrMnqo*AJGuNE<o!1x6=!O$G1~%?_znnU+b{k%Lm^L-%3Q!3y^eS
zwcP98?7~xa)2HGFH$aXU)t4h0VQu+$x%OETmP^)!I?QkL3wPOmn7Rx2`N#4o{LRDF
zcj*6qQj(8WQ~)%Pn`Z^t`M?;ysHLC%5wEX3%JbUE__DCAKK70RBz1;U<8^po2Wy0I
zccCe)TBxV<SAUdb4D4v%jI@5b`tw;r^ubT)c~F-F_*eE{WvXL5GZClL{gfA?g#m>G
zUFE0rADuqqkJ@;6cs8E!=ttGfX#Sahu=zKSes#QxJ_`T*`!mJkvmN*7ll;$rcJv=#
zEWCR3>&2_c&G5&6wr*ZNzIgxn-+ymjeO-V0_}_n@FE1&`SIEPwS>|5>GFXQUu^>a;
z$gs_;cNO|8F5{qGJpFFZ`wASfh!-^4xmyNcm?67$0cyapwZUX2odITx0hUI{sqYm_
zae!SBxaUJJn;g$VzJd0_G3=s&vH&_+JRN)hPkDt(9CQ-}Fu{xd4T2dHH5mawbWfau
z0h{mA0B>ddge!h^X@F&y?m~P}fLQ^_to>sb*PN+k0V)(p)k0&bB#YabNNCo|A+`3Q
z>mfH!72=y2@EXiO6%#PK8;mO!#%%(F$;wfhiLwN;vtfZFzq5Xei?S7H^Tj4Gs>ZWn
z@fwQ2>&};rN(y+zD3}hjl%Fh&5y9t*!P6ziPA3gB73e@Xp6f*o<Cm!!Fch5g${Fu;
zOn>N9cJrVM01+Trb;Z}NI<MX4HE!4|dqm*HbzoXiFl`+e3p=nGqjPl@sdrW4z>v9t
z1U3LN-Is#VFvBE=#2_pByG74$GTv&iwTrr-AE2Mb@P=_&kIxN1Sex(wUSOmsC_v=l
z$Gn-dAyCh=>T_$kyN$+&j3x+P_h8nI<81g!x{i<qfNQUnYsV#?-#}qSKYQa4WqR&7
zpe}P7ZJmz586dt@@CyQ@jMnE(0-_rUscs!PNL+^EnBOo39BUZv3}pPsBG)F2^12)w
z)a1KyoUn=o6{$C|WN}kQCh@vGF;@eSdJ$f+qs>3YpFxamvkZ*Q-kjOuZ_eNx#yEWJ
zWGq73>DO4;v6NuZ33e6ZDolbh372IOpB<ImC>Q^qW;{cp1Ths@5=`VBhi=<sBn=OT
zc@={JZEP(_^s(_L@uagzU@fGPH}-lL<!c$6Jlm^$Z@bQ2^*sLyXf^xj4p0&9O|v;;
z(vVZz(mwTJc<N&gy~iZFc>Y<B8;;ovA2(st497bfWXT}#6i8t<c)koy6P^et1GO*%
zOxNvIz=5VPB<`ZEu{0{Nq?RJ2t2IY%zzByRP|-8NYfS{>p)D<g^Ovm@5rWs((kE^4
zY`9^8(bvpNanKp?8$l5Ll@l!nz>e)uAhx4aV!nrH-4nR2R0}{nY0kkGY_r3(liq&B
z@pfOl1t<}IoauZLoMlv+WwHc&OeTF-2S4tD&_)``XOSqDdS$xgTvbY0m5ROq@p-^v
z?sgMh6QGNV$e=y!vhqpULy+q(1))_&-8cS4E0{$t{`-NkZaYDo8S^x;;i~X1F(RIc
zP2y)Epgxs>TN2!GOfguZ$c<J-6^Pg5TtqE%fX?jok$38}#vUQHjyOO%HdZf!eM$}_
z1%Cmn<JTSK(8ode?lT}uVkWo=)+FdvP8a)y!tx5k%5a%TV1$bNggPPOk2GOov~qj|
zL@bRNcXlj^yZChT2{Q%=@^49>v3N|H#}+{6=A~FM_?-`kyDHTf+ISi%kXCA};jVzm
z!aI-9MbD9;R+E^GuHh4Y#*b$O`W1^MqG?;2Fhi+#M?~ghFW7+>mrxu5JOUQUMgDA6
zO|fCIOq=)9N$<nZxsT>5)+UsUQan(2e~5Vhja@%_QeWv4_33EdVu-ap-ZIO8E`wUg
zD|acW3QLh=CD6hw>ODya97~UCPn9BC0eA!Ypn)uaV7dImH6yp<W;=toDc?(<Y!==R
z)s9$@KQ@WcA7FL&5;x^%Sn4H4qnGd3X@OfV3*+pk+?EMpPi#=|+~Ph~<Q*=LrltCh
zm4>QUDIFy-WgLs^Ir`c~s$JY!{L4nN%j<HGFG2BDh?)G35gV^5C6YSj^JTCLEIW<k
zok<J>X(f)58tHDwkG7M;eBeg|+0ZKs7NrSE9~fs4g99Q1KeQUFK8|<T|9H2eNL7X-
zrE5|l^<8NYSw=uog|_$yOIm8Pi+b8N4isF7Hsr(YESu5YxbU<|osngOdV=9gXwgN{
z`f+g&K<JLyr+$?fspxEf^Qt=L+?75_<OYY~`0IT3*@=$TuOq8V6ZXq4VlM})-6AEP
zVQc1ABxZ8i8}}VnUM6POOBz^$d!sL#=aPZ*y_6|;q^}z4`BBs&BhrV#z$2r0irTv2
z{q~~1Iiyc^$DowED1b(RaP`pQU0(e=7rmPHc~^}ts1irJx+X<CI-gbi?^E;5vz`^B
zwGXy$Vn<h5Jl0vI`wrdPT)vVo)LJ}UjqMa12Oc~}8q4!)ces=7fL)z~3o?b>>-*7&
zl%Tl)ux4q;^BWCCSyOtf3Y42X1k6RzKUAuVx{Cn23$0p=Ly)7_UP@#H&?wM6&^N_k
zNW=}?4ueD4^1i56yFQO08x^R=bG=+Nk5M<RAGVAi{Ls}X(N}#x-q-~nd0#a{U{m7}
zJqWN^1cqooa$;Q?RC~Q?vUurc_wviFQn1RA?6NOz_P*t9<t=l)Ex+AOi}VEI(%Y-l
z<CS&Ls(Q<|bIT3uZl?^ej_Lyw-`l~qomf3kqg&3(+pc=sZh5^fR@)w7+n({;$1dAm
z)!ROu+rG^i-mka)x3};8@^GKo_H995fZXW)T%zRwH<|I%<K%#_o$&abR)JUa5n2qj
zliq8_lD5mXR0dIU|Kkl4+K}R@I|Sw3m`CaX$NBbZ_+42b^IEQ)w9fB68HwuBM~iGX
z#EUT@FioA^4A>sA6n1)Fyt2{If7J8-&~DW1u6Kl9X8c}3-kvIQuQ&*Zr5!7KhzsNz
z)40O`I=)rU2rlitgzpW<l+X<1r~p38;YylSvss^-`|KAh?xzIqQ`8xF%y^NeM<d=D
zr4*N?4v#-8-D^|+dav1=9fW*oFVka^1w$tH_@(q#PG+^YjTTSlk^q@rF<67S1k!MC
z2yi#fH=O8e>pNlhHD#8AFnBLv=ofFl9z@Qv_GPSJUe%Kx)A~t2Fx+UOSd?>mb@I9J
z;avQ7`@I8r>$EI<dflG-vjTv^Yd3nvRQ1608ioNzx?R-wwr~FJ8gw9}+0aQTlZAu>
zCjuNVVi<A$%l{6)+e~lMuxY=<JoP$Sh8?BO*FDT__!{ExKI8SN`L@9s#!zgUU1hrQ
z*NiM+#zXP)@W1!~TVd}jM*W4bs?Xe=$$>#*Vl(enqD%{)`2tA%ubF)WK4&-24PLN~
z1zi`i+p{HbeCkz-#wTqCfc1~FJ6YHkj@`Vx4IZYb{!B6aie|W$dZu^6eA_+i9{4v3
zm;$#zInDpa5-Ya!3Gib1rhz3t5~3|iTRFhq{N#h0%0l2ooQBs8)VClxcryD_i=^f!
zin5m7K9)*I3oA=2miMPpZ?7&Hss2A{yV;ZOjhuYAl{Udh_g|@cEQYi~rqRWy<*8$R
z)D}OZzkm0plco6fs`NB+D+T4{eRJoYw8#&wSN8M2u4BPA(sDT-s<}KI%krKAJ)el)
z$u5<Ym&`YIiO!lVu4PPBQyiuV95-5iys^0|i5-hw%c)IczB6xAr}P7x|1()Pgj+Xt
zMxBE1t`I-FU4@OSf_}sDd7({zLF(AgT2;Q!hP;vlp1Yn7&d*912Y%jofwa6`(ep&B
zujHryPS_`%kXOb<7YEe3KBzfeenSz^ZQsfcCZ-E-Mh?cx->2oZil1}{;k>r`vp34!
z4MI~MkUmwF|92kVL!K*8;MbDax@UbB_w7}{i%<iD&rP;XL$;17W@5vP5+if+?|tfP
zK<3EH>OfABGTJ7?L5aS(T>8%DBsQt^1SyG<rY5c1@!|;ygJ+GMQl0e@$1JhMj%!J6
zq^!b^i?2M+%CANK`yCee-cUOR>Chv8BZfxkx3hSSyr@IAqk@8B1&QWPOIWR?98sy(
zvEA0UeL?cez55p?b~;Y)F4(u7C#&TeBR5=q<<J%DIxzy*JS?fT+ED#F6%>ES0j~n%
zX{@fReG=bMHNaPD!^D<fQ1rjNA+1JCjjGg6RFU~}L2}cNf0zFp;tz}-VEa4!Ry%I7
z^y_n>ehC8OG%@;4bX~d4T>jtXeAmIxY;VCgW(E3;oUTU={9X7Ey~6fy{jI}?&urTg
z8cr;@581q%;TjtW|8`&4f29Ti_|G8#dH?_*DGoRV7(ugvaaRitUOp~9ekxIU9)1A^
zDP<-ZRc1Lg4#gY%LLyw(&^#)dD0N+-n+C#Y0|^}yX@lF+`WP7ljDm^zHH@_i##-IN
z4sB$Lw!VwT-qo>lHgIq^a`H5B@y2-gntAzK`UcwE3$_mmb-W+p9QwfhLA3Y7$3D^c
zd$`!ZnE2qh#IU542Px@M>BL9GEJAkfz`($}ckgz0cTY}E&d<-Ue((SP!7j;H*j-6F
zVTy|2F+W>jExHQBCfjFAjbRgqk*`)fLws)FrjhbpsixtXcVP+hL5<%WPSDBUtgmyL
z;Pe6?*|5UmZLcaA>G5$y!wg+|B(-IxuZNdUY<AAA812ZYvYOhu`i91)=4Y1jiqG3S
z6tS!_X$?|hV5*n8G+cs6dOZqGK`xRG4L_^VTQNb5&Dg|Lt{~iIXylDHjo{|i0+?=l
z|I@~d-uQm$t>f*}x3e}swtgMyaO`iYBldnuU^y62M!hZZ`v9#t8hVa-`E}hSI$_qq
zm)eM>W*}0Hc^2XFC5u_;cD0~VYi<nNnNyOJ^QmQXM)bY<xnofFm9Wl<TX?=!M?^9Q
z9Q~kitiA4C4W>dq*L{MOA=reK2(R%ONdm$hqL5|`&_re#d4wv?MHkL0wnS-z+!&$8
z=Q@y<0ym%(l762CbB!x;$!w>EIX8-|?33PP&}%<nMd>&)=4!W8__E1lGKwRTuhbOn
zUa>wZpBG#%LiS%aBw<yg2*cD2I=uvzhArT%Wxs&S>^RHuFkNMp^p$eDk;o#GoNycm
z^%boYPeJ5&mv5VFm32zA_Uo#Pmuft}cUP<bzktK9FWSEm{+_?zUi<#_^V?UCZ`E7Q
z$|FooI*@aqS3E5s?a(R_Eh<B95{OcVgwWD0y<+@^g6AzS$t?7GDrJm(OS#<g)O54R
zhl(tjDIh&;qH`*T2VN_U#etoR^_o2Ymvm#&wHf?38wPs`{bsY-q<^%|YXG=BgeL)P
zlCMh*5jT6vV7D0SgcOc`FDQ=vB~r=e9-LXp=l!U4EBj8m*iLcCqKya+xGH}|b^RDh
z2J+F}AwOL?=oaCCF5MXh(#wj`x_~Wa2FrDjiSz{f(3xxo>9w;;1WVO>NVT??_&$K1
z9lpmhg{{}YqPovOsm38b!&I&J@V+da9<35AebQw(>c>gox=OpoZm)_I*vrMXF)`l}
z(qnN3uX5c!Of8AlZ(=wBimVr9fU5`ABcSSlOHIb4NQueTY`RvEt(=Vw_J!W@o(Rd7
zdky!3Ms&rUtTnHH*!e!)uHfatzXm8=O69svcMU7D6|sUTjw_%Re6yQG5pfX6z~)Gk
z*KHitI5M#KYj5DG@MB|9CQe7W+77MaI@y;BJ747|M`asg+aLb=BR(#8IVsa_j8I2M
z(~y04<}IxKl_VozDri_(=-)wW@h~0+0$=;FmXb$>>{XqqcWsbbtakSGM{N^~)^xXc
z5ZV<SLK;N$_Yq$p2Iw?F3CIx7xX-u`xi6eqH#bC?9yYkgR=1BUOEAST(QUt|>^@fA
zQ7PxT*zL%>cSgndAuYU3myX=|A+VwBl8b>SQ04cBATIvHkN&a#`GH)$I2=X53-Sz@
zGxc~7#_5Ih0U|@92fK}k{>m$nxBTo*<#+}NcVX%D&||Op=>Gtmn|%Zd!4^bq-$Sc_
z_dm4*4}ZSL%Hp)%_i+)xGpC@f1y9^&5jxt*ymEs_<^jVK@)^|<@cUiuKwUKXKPvWY
z#$jJL;ydr5Euvp|G8UNdV1O$5dCv-qGiWBL=*seZ6EJ=V)m_Sj>9hB<!e*#wnA89D
z!jzH8Q}FAMrz|QnsO2#U#O@w$*&dOJWOYtlv@`w?k<VUkBNxLZ==|^3n^ztFvvHs+
zX}a}>+ArE8pTN`#?wyFZM$5}BH<oiUI98dBV$;Ph@H*hVMIg>T)>YdaOQy6UCISJK
z-1a0gHM1pGY7+n=M83tKmLSeXBoSpufJ9Nj9%GLzIA7P5>I*qmLWze~=2&j4#8rGK
zu7U_jVh{YDfb6S}1bdhVr0yH4Eb#D$IUzYwW$mMSrF*JeGnjA8W23$Boy<)e93Pig
zW|L?O^k9aJ`WZ}MVy1vf763p_qo8nFpeBM-P?Ua*ASQ}7Ur*$O|FgJ34WTM(^&9++
zV3xQjGcP$P*6BX&dNW4r3_+b)gVjgV!7U^RwI~^4J4499GFNbJ?HaY8zd<oSgRGhW
zRpLmu9}Nn6T$al^FqmTAI<7HU%#KYNdHK98veJY|8vwPe*FfEp*@bCtPo=qA0MzzB
z${22tb*!lvxfz}H)jPaR;{xYB9PpL8wzXJJwPJrNPk>F|jup#y0{!8wJLBf!s`I%Z
zHaEJ)L52q2^Tb8($XvM2Py@r<zIk7kWnt2vulfovXVd3ST8U|mZV68M4U<q|lL$&A
zm_cdUN04ogl3MN+4#zTl3YiweuSjZ7l!Z2da8s#%O?X@W+D;?gC>*tHs}a9Cy7P&u
z1lFV>HW~h(Zl#?C@TL>K(>n_u%`m-cOSaz;$7kD1&4n~PEc#mC3>a35ZAV|1n>-S>
zrd_(62aHNUW^J>n3zhb$tv0xp+A1;X>qhg%3iWIei&tz1w6Q#kT<Q}xnr~d_Bw6QY
ze>hWKVblWI23=I?+X2k#hDmX9>Yq`=`S6j7Z`218Bj`i__Rl^{FJUGSR`qK>2&|lG
zvg=^Sg|N`Ur>QF3CXW48a=^j_zXL?wH80j`(DJM$jF<`)nqY6Sf=|eapRxgm5=Gwr
zyhT~^$5eP{sSl?std^|fCTcxCvA@uYP*#tnx&3P@F#UV6xE-}Cr8V4Cj|f50#Hl2a
z616Y`Mn^aR3yEwa&Tb6t8R)vT0SAhpffV*6kdg@iS}?6hb)31|--?@k{2`m_l05%G
zz)S62x8#qqHx()Z$p7-=mT{aB!B&GL<3;~;p0E!^GWI(r@9PzEQI$V;Q1HmmDzhR)
z@~v3cg!5^OwcwNamKU>I<rq;wyMXqm&o|zPnR>B&?ADkW21QW~fK<`cfv(T|*zk~#
zyy$sS8kB8#A0i-Xk}z8spm}JA`&ileI1YVJv*b6`+j(MFE~(BigtV}J1o-7+AIltD
zxU3x*cJi@%3=2K4FWpNSPQ#s`>D9(Yi^JKvxKEN4@KB#Rk__t_!7;;_JSzyA*y8EQ
zq9-q>^(ai}Y6Ru74eU(6e$jthdZ+p-(#%!%92X_AEeAej|GYSQIcjier1hZB7Iz02
zt6`qj6z>$Rvs+9sNWw8PFHng#8K_M6d$35Z9krLbvj{4Nxd9CCN8av{D}k&_usj0v
zyat8Z`Nr0=829R~T>NwK{<srmdg?$eTHpRVv|{~9Q7}VGM~8dtV`@!v*+cn7CD0Mi
z{>al%t}e6gxd(3*_y?Z9$lv?DxJbIM38uFlICBX-1|IaB_2hS&SkqJ|<HiR1Bc;3j
zzDFhj!6xFPMPIL#TvR;9z^9o&+dX<la&o{kF@y%JLEMeO>M{Jwi<Iq(G?VhX_^l5K
zeJrvuR?Ylq(0E?pSBk(vUB#1d<!@DxGyUj~`8XCWJ-7;B^i9Ym#v0EWfq#SyeLkb2
zSbhJSrnn6Sv~L(7h$UzM@nKhl)R}N(J4otSRfs55GQ{+y?OH%3B<VXr8xf=Br0n)1
z+9D7ju`AWRW~6oOvuX(y#f90n#HQ{*O?SPFS`0qzK<DHMLI#9#kg@(6h=hx?i4dP7
z5Ug}@r!0|gD^%m=?smO<__rf6`WG)133wR;B9X)-06eN95H~Mq*MIj}wRrrn;`h29
z@EAa;aHgEHz=y-2hyjquivVJQwn$BsS64zrZGtTZm^}=+k4=~Y1Qg}7Kdoise&L5^
z2PyrhC`632?ec4=g(QuFQkD`UPJ$$?1gg9epzo3|n|Fh$u#bJKpx6JS4)ID($p%5!
zK*SiJ7(XuN`ThP`yptD!Zr9nRGi6FP&3+@r`OGNO0MD+HzKKn@AmJl}O=j{uRapo;
zprG6q{Zr8ltP|+a4N}Z*JW*g=0tU67ac^KD=c1z0IC`2H0DKuxC=a9)g8bT*P8o(6
zoW;tp5iMks%+8?fViC<&p<@<;C_qNOtGWn|iQndG?=r-b(uSW$J<N*#Z$!vqj{l?+
zf*g$;&7tl#qnQ<;7gx=Aw9CPwiMXwhjY0(E=0g$hXryp#!T>MlOvc-W(qj~n|2h-Y
z>wvU|kUlr4nj!1#32;SN;+jFQyXd3K@vtn-HgUa{959|uh|#0|d+s+l?0SBV9VS)s
zPM%CVA{=~^?>NfaBWgC$B%%(5+Pm&jov*Kg+cyYK+9P7RA8uox<awv>E~!L~r3a3B
ze*MX7nMgfUz~xl~Jk`#8?kQP&|6$dGLZ0s2_|2qrG2<~ycD^;qerHueurxHVD6OJM
zyTunuF6uW7CEJ*!48~>1I*_{EI<H7oLZZor0Z-g>B{~zHCON*sBV)pCN;pK|2n|p?
z+g?X5_Bdf(kEeanonwP5>H*{UVnM_J(02>?Tkom8^V3|f5}7CWx6WZQEuIE~rH@~L
z1jwLurqYYWl8IkjN6Q5a>ynr7!B{v#R1ER-X%buOgUHr0(!c7msVC4mm7-g$R*-R0
z&m9mR0CaSvof*w){;4;cB>k=%V!vJ1&F&%3S^g07H0Qw+G-su0{u9$V5C;Yrf<)8f
zfCK@>Ya9vf?v?Nv3n`~kV;n#V17d2avKwb%;Rj6)UE}Ch9`pp#V1N%Il2xG9>OsYl
zvqWrtmHl|44w;D-nOOw(1<iv*06=OqP!f|3KE64)4v5;X!HL%<)~LnqJ11O03JYU(
zFgH?EY6{8FRK{w~7JX76$jqqfl!P!DwS4LWv`m(JILuUZ0q{wtGhV6mSwmab#T#L)
zS+5L(B+wNd^YZrolOJLrCR_uRCJZ|c62X8(5TIXi_jpJ7JChq;M#^!ARvOwub0PuM
zWTw_T07)E)e(hR%hsY-%;OBbK`hLC13NT8r;r+6MlvCqqeIqu|&gi&dz~`Eu7-U2{
zQrqd-VBs?pBuJ_S#BmHT-7565tgpH76(J{9cT>MFY$|a!l!ygz;#j{w;QCLkk+Zyo
zb`S8ZzBx&*$>5??jjb(e^V!)7@rwc!RP7*>>?wM^P0zNCrwC~7Q}0Hss~@j3Dr^>O
zXuTAt7qn}lOnFX9mi}Vfydz#|`nx?_x019GBNSM(ocmyP@5!1KVAPdO0_Vc0sTTvQ
zy{BM%SzO7o$rf=7-3d*qp?yN_GLf4+&ghd;yi$fZ_4Hj2v!cem@T_=|@)9!Z4v98?
zg!`Z>r=v&q5=4x$*#A}*&oNF&lD^B;ou;jqpc0pT4RWyZwA}{+Bcp`?U9lh1RlI3g
ziCU4G4@HlG+{eHIo${Av0`&5bvJXlX#&8SY4hsx`CIm!B26eXq?7~5Divbw3-Zu?_
z*oJ4)N%z^`y?n;iBmDb8c{`-;gOcbB-kCpIzxL$^YSccb_L+ca?(Ys6W^HKz=>2KW
zK#>Fu8eMUnVcC~$-M62Z(r-P(Hf7A()AOpxm};%4`^&5jRi<ybJnoP2qnEyHmMO0;
z9k`hA&u`kdl21jrz#qx113ejB1G(kB;<#SS^+7=zeY4-D=`Db!eTo!nwKDJQpkY9r
z{!7W9gU{w5^6J9kf21nf22B{GHT)E4h!*xrD!el~HGtuYHYmTs&=CQkX#y2-8a61l
z`JOMM?UyaH=882Lwjlu&dxyldId7RL95G5e*o)oyW0{P5ZMGilazJsfn8jvY3S&PQ
zQT)d0{$S+CH;?SoqX}w1F5YM%Ms;OJGh`_fv`14vj;8+^MUTHBs*mN^D}~B|uAJgr
zM3B<fXnyfn(Z{igBnhv9k=&^9+T!v0k9=9Z<IR7@O-=xOvLLxypt8weo5{o_(rKc`
z3BVHwVt`Hzs!tBvPlnHozb>8}@130dI63`ia;BGRlzVF4erhplYN>c?rTERe-l^3;
zQ)}GQ8|u@WADKVdPwy5_@Apn0e4Jj1nm*!wd#e8ShyB}Ml9k6MtiHt*i%wMk(NI^-
z5Q_t0R{K!!A<RCo?ymwxsH_t3FEf?D2*ck|rank2TGbyjb9q3;BBjqW1*PwswIjYw
zdm>ae!+<`aeT}0TC)3Q$&=1P;>;%$E9ZJ)aX;;xS5>j*-5a=H6R%{UcHvodRj((F&
z@6-U%y9Ii#H?MU}56I*f^`DFUj^N#+&;l|bX_>7t3~ZSU^L2dYQZ$!57@CWGD!n^O
z-nYhl|C(F&vRd&hVgWY=ktUuu0K));sx{Xp62yz)h5`^7);0dBDuT|?F91ZI`C>FJ
z$a4#jSEirsvm|u#E@PhdK@*)S8>2v(b6WI!rP;*{p%o|DE5k5UM4c~}k?(F0UoXQ$
z4?HWGgFS$OEf>V4vcdImmMw-S*8k22oG&|I!m3rOng+m;S;mm#%;A~MQH1}XH^W&G
z1f5Ic{08}CgZYFa!B%d;o(FMu@<&getYDoUmpQFkIPtzdVHkB5`9ka5O^gN=fuy2X
ztR*4!e@z>2Ded1-I`?P%dkeb#2C~}+6(xZ@NeBrNOd!zk^1iETUm#47l%#zObP;2n
z)P<ucdFJG@jn}wFW?*M)nww4_4+SsvOc4JACvH=SRoln>^^f40HL|O!lm_H5eyz1<
z&6Hv7clc+nlh2s8&*8_bHEAmk<U?;5EVKYbD6>$s`$$(2e&A05l{S87*CBq?bpaQM
zko-q6@D`7Jf%VBElh`9Qg20VIsBbgGYBl!t{I&%#&{X>U+jv21T1qEVkx&N*K0H9w
zsZ`tw5_2>ary&CVxBg&SKw<y@<`Qk6gxuQO0NAMmuNRtcZ15i0K1pfx_aa`OQ(h$Q
zsc2+-^6pIluN9_mZyfJh+}{-je$AQL(NBl!)XQATJXcf)hs6bn?rs=~f1x$|E_t`p
z^@-Lt-gvj0QQQhG&Mh8a-<I1n=(e+v8CrDEeW!2YPG8cC!xuG&L-I>^6riIUyy2_|
zzOM2sxTE(fQl0u04_#v4|B^Z*K(C<H2C<5QL$W8$)n9nUK8u8Fj#}@QD>BA>MGJ_2
zyLaUzlKQhMjnh1)$&m6bJED5~HO|?Ej`$ji`PR33+{Y{ZidQiyQ&!`-jB?{w-{+zN
z*(dDJPvTmSWuDP;GfBC;J~C4A>UL7CZH8oPK*$)ayn9m8Gwonm84A6dx5#NmYkN}F
zhUKE7;w>5mjxyDyHS|jL-I_90)BBR^)y7Vzmx~)GbCjoY87J<yPvV@91)s`rK7IXf
zLz@5oY4@Y!Z_TIdLyF(Dj?mbzI|Z9uiMs!3LmWeF-0v%ME!<$guXi(6!;_@(Oj|YT
zomY{5d2#!w7E#3-eUAUGB92gf*dOk)5|0nx=I%CZFqE$ulK9+l(UEnbC%fMCT;mXY
z-E&L3v%<gIRj>WKcK@}ybQyKh`;MS3yQ%N$vkEtUeOLO~bR+SpGOAK1R6%pAf+78q
z!QbLH;7xwlO}*ddIs`{OS~Yb~gFg&9e_7ghKYi<^w?Lbf|K>J3JN8U?^p#`Y^~T;h
zdOP6kL-yGTB_v^H;-`@uY;1~pU93}hOmo}vvZJ)p#y>c2D$L9bHXb=yj!DQ`5MZ&X
zSP9~I!raPUzrWua-Mi5io0z)a*@@9=H`B?|Gos73U8($c(Uymjz)IRvwOOefU^OVT
z22sx?1&n(u&5#rhitTC+bTBP_<J%pQ4$SSm=Ank!kra$<TomZyr%!VWiXBL8ROn{b
z%Dlo-5XEXenc`(#Q+91*y*&jiWwLT+erb5Lexpj*s@`75XrakhgpQae-GS-m0==EV
zQMM|E7${}B=%%p!KaQ}S+YCZAOE3)x=QW8qSs#drr{?|xdO;oqii^|zc^NV|Nnnzo
z5#*Q45xtYn?4Z)3jT*zVATNz%CpHLK;%tJ!{iMJ<5cBZc6&~k+J?o)VgWP-0>kDix
z78Wmh5kOF0oVFO1Pp0vU*iYJl-?pdPUNo<E$I;gb{wFu~bVNP#3{t2wl;Uq@<wpcP
zz-^N1A=FZ~7E~rrZ1ZxEnetZ?(wxWr=%9_^DnU`K3A!Z%DxIuoz7&Nw_sn97fQhz*
zCJj&{DCpdtV|*07Qv|Ip76+H_Gv<ifyv#X`cAv<X)6RcbR@m`XaO$c4W4XVm|DHZI
ze^xqk@e?<m-#sHq`EJfwIF89m8y$nq8uNd_5}6&}_xB^%RAs|qsjlX?;C#l-Z)W1R
z)l>d~b;&?I!~h=5DSA23_kqqNaA0o6PI83BF6s`1&1}Y>kL{wN68&4a!QhFc4%)rI
z!1fGD3H{}*Uua-(wuU=LpWuX(OboqHZ%8rHDOPP>rYOi<406c6JqmB^R(U2=AepBw
zm?M>;xn*z-Q#UR8Q~1xZGR1@MQm=jy1c}AkVh0($$DF8B1u#PtS`!xFHamip01x1y
zl1}`2`co5HcchGl4|EJUd>0n1ozpBAvD)Hwm2)kr!}uAm@+wtF>I*1Z@h^b|&$6U8
zFa|V24={^S08CPD*4LtQ5iL{7u_`&Y%9lMQf}D%m#AlU1jF@UEw}L2$-<#?S>$kzw
z@kF2JKbrk6vmCnr5w4{$9p{ES)}5BTSe2r}SX;eW;Z(L(?B*r`C$bP>z4mcBFUs$-
zMQdihc4$$aw(G2&?A*>PseKQ8<lapJ6`SiO)7gq{jk|CRRZ}4de)%rnWRE1h%oC;w
zuJh`wW^RT4(rSz;_+P$B85C#QZi!U|>}0|8MFLGHOmxIe&MGV3ry&l;x+F@{5PM&j
zE6nMc(qgLh)nH~4UCKt5)=h3UAN!E5q*=}B7Q7<7SbigWZ4Ig)VWN4;ob2yh!bY<E
zMwIxCC@aCh&TuX&uX@$p#EdWlgoPVU&QSY*vR}PsbU(+3Jl)B0i5(S@$@?|?Q!xtg
zMv8FB<(B#8(KElF(;A<4f22NJIR~bga({XDY~VMvFE0K)5WZ;&4I~NlfACD$DYg9j
zb2;Gi-z1-oP{B4OUZ<!+L4+DrVfnE=HB0Opc1SG%`p6ugtwtui4?#oih>H=XIM7u{
z7aCsx;FL{-z2Xi8P})0zhpIugXOjeuVW$fimaI*5g5JJwEXd2=Ny}a?pR#AeNF}Q+
zHa~;^H$F(~ZZOoliAmgS8Ci4~krgzg#F;s*PZqmV2vglo;^cT5NfT7XV3q3Tkj+Sm
zu5Dx6%y@jEkX}S&S7S9O14tznG_bZ1r7mQsZ&f-97Mj13kmgT$ZZJr(n5ca%*!?nj
zZubl8(}Gw!os$PC{Mww^C%TB!J5;vJoE+3<dTK@k={c$IS?^lCvJh;GN&RCy%&VFy
zQ5qbW0{^n!-ZCb*l!;0$0*&dl5a<qq^E<uqa9b3RR?(aK$r1r-yGwl9I>z(rAWQcj
z37_|W0HZ)$zqCX<YiNPx<kBCNq~(sFJAgB9=Po+wl9wH@jW@v=JS|W`JE`!bJNy_)
zEr8LGm5k@#p!b49mZ?Cp8~`m-X%QE2X$kGzLLS9eAW|;U4TXH)Lm?VbiE<=<@-qo6
zb;YYSm9dQXxSUtQ6jCu^<NzuN&X`D`l1qeuK~jjJQ@nzJ5&+2}s!{1NV&MT5EP$sq
z|ID35N_x^QT*-%A{HYdVcnD&0WT{grYDSv6g{U@%1L~{dZA`~EedJ{YTlDBUz$QI%
zh%}^H*dr6zcu$`hR2IUsh2J7UlRj`XF9^VnZ0M5&m5eZX?jY+(GlGCO_~ols0NYhT
zqsM#(31%bQD`g00q^x?S8)@C5Vz>ZGt`!IcUK)&BU+{^_;?R$BHDgC7D-Fh~6|ok<
zY%Vmbfh0l5P4e*U7FOw>*|MOv;b?&{9+z0JrPfHoBOZ!cs)b4LQ?tg@LR1(K-GO3;
z5+=J{Bvx?<GKm#e<X8ph{F9+@zEF3`%@SlEfDBt6_pc)zZP?<Ov@e8KJ*(C1|5@!T
z+~JyzEuEc+Y*Rp6F5Q75t;OeJUfb2Z@pqyPcJPBGT2c84$u_vv=v*^d5LiT)!wk4g
zR;xf#$r%&`D`>$MO8|l%qADr&d}As~d}7q8cmUYE+;1;(fDyZpn{7F&Q;lTai=e=~
zN!19EQ-S2otN^aCLhOb+?BOh|#UU=x4wO5LM8twPxCchsYEQJ*xY(<M^c5q9_ZJ!k
zXn+i9nAr<fz>hF<xg#b3A(lD3we0#KvKH<bnBN@d7lfH2c#iI6-V3uZQ+Wbb_A??f
zCkryawZ3W9jA`i_1w%`@(xeUZo-@K|M?VQS8kj&!SWuPOP~?gVDD|ly|Bz}s;8+SF
zaKW_FvuQ{oLU<!kl8`0gFA|tib6P;t<&w$FStjDPhXD1MT#>rLXx3uj{U@`1EDT^P
z``YU5H7e-bY4{3=U-K0$T0L#n#abFP6;6V#<q>IDv%u7-ro@g4+-G&8OVn2`L6kWS
zVSx{v;2)8&t+uMznQSz}{Y$nVrWtW}Ps9Wf(n1BaibEHqFNPqvH7Ejj2#m9(02_Z#
z15n-oTTH+#6u0;xev%4t_NyW+2)RXUzT%JMJQ6(jnJ7PkSP?w@5Vk<T321BwqB}c1
z5|8-4zs&BDu~l-hd}Ul2o@R9YB4Q)}fd({S7N<|MBOt)>&?)lT|1GHf(U?H@xSja*
zuxAAAkx2BQ=X>;|Hxkm3s5+7+`F2GM4b5h(`yuWgX0~I*=t$3k+1t6?+eF&Sk8eTb
z@7?9w5L@U=AF|;P-~s{FNvi%D0j;OBPEQCaf816{3!2U6iF?Zxe<;@9-2g&szuvPm
zcf_`LUk!DRNA!&u`y~?pZqJG!@POvK+nul1etJIMk$`*_Bwv}9XJPTruLTnv?*{4@
zoc!fC{~->3E0Dd|`-DGjutL*hj}*sF4AOuxkm|3#w#*_cus{CWV*6ZZ_MW7-4#D^G
zPYVj*1N`O>xQC6>XaO5=dvp$AB9H-vgnJ|~1Dk@%)(5dp|AURRfF`h`Awm#`_zdVW
z>d&N(i`a^XsOPDOrtr!L0dNLpC}Cm*@FOMwlnkH+V&MeC2G`hc{St}=(@kRZi6ey2
zZ;}sJO7IX?Y1Iw^2D?YK*bUPf?&q=x3zN_YH-ZG0@D)ty7gUY%Hj5lmpbTFi^8(=y
zUJL}|@AKFQH++NilnY)Kz?s}`3r>K{R)86-Z2$l!_Hc~=x650SO(lv&B?M#;3o+a1
z1o+@35|e>y3cwDFNAU12yaItHDB%e!j~h7g(+qHAzyYqPa0}Kj3(SyuS_%Q+3J#C(
z5X8^~=kWY=aTf_L{YV1)S|9@|fCM7O0UiJY++;+w|4{3UBN!0?R9avMF#-XAa00B+
z8f`-*fT=Pb5Xb}pLM(s*Dj?3-DiXBu0l3kHr16KU@fuGp3o4@lWRAQlkZW4t1R!7m
zD1Zg7E*a9p0q!v$_pu+N<*CSk8~_p@^^qU{CLk9wjIzPh+;IZRF(VG3B`QOj9zZ)z
zz!{;@EY`rhIx+*E(E_5eDKK&tsOch%5gE<N5JXYTSaIVPU;<Qt$tq$Q&B$>?U;=7#
z4eEdzS>Oa(Ap}H*F+6~8ET91<0AOrmBunxnfl(NVQMrO~7>n^3lMyCM(K}jTD2wta
zD*`G%(hK2kOx6RpwDKj-fbvp+CT$WY#cl9(|FVn-(IZW=4q~##uCgjIA|$mSA`f5z
zDx(dnPgmA*M4Dk12D32ltp!#f10En$@b4ngQ6)EWGw@O>Yl#FHzyT`Y1Y95xd~G5p
zAT3%Tr6#}v5@-eLpa5E82wEa76d*lp0T%{wR}8V;SfL$k&xxF40y^L-sOx!pj~-E^
zM<y~Ya?=QI!!tosG*!?n2k+hB@+M0`6kBpDNiq5)p)VtbEc5a(w?HrnvkI!BGEU&s
z?r-n-k}9*(B^48O(sDaCa~*jxKlPJVENXuA0h>xd9?uA@sD}oJh#KH5eV8z-3}+vS
zKtT&~3l`w6_~yqZ!a+?=9WUY+Ovi9i|9~Jz#zK=IsTN=js(=K52w)bYL=6jwA{6Ed
zghfxZXJnLbf`lKkYS%D=S}w;n3IIV@Abq;;M~fgqg~W6S&<{VVJ6ljDwZH%fq6A!2
zLbJ|{+C>kl00nI008roqIN$@I;uPl(OJ$?Nh;$Ex6hH;^KdT@>?}b3AvlF@0OTlyv
zitrH5)JWr$(7F#`;B@j*0ZOevN|`j>>heH~G)N2eEZKBD*3`AqqW}ov1RQ_`P>J&V
z)UeoSQY&@9%n3(N06=(j9efl>Aruj;z~&la1hR_8Yz)qxBWp|tgfw9F!e<b}VK*tP
zH=j!`JE#a)00jI7SCd2%b*ELi|G;00)gP-sRWU*o1+`6sL=-diL>IL>8`Vv5$W+@h
z5+wBsI+goy)CGi93noBK-&9l0wLtPzQTOv*;dNGg(LYT^eHNf1+eb$!q5v2`{w_ja
z<F!ou)jKAlUprz--(z4|MqwZ9UQ>Z#9X4M16<<AqUnj*lUaWOsg<lmmV&h6>VC4id
zHjpsFV>N<dE0zH$)+0<-BLMbcBjErHR#s$|VHE&je`93>_7IxD1AO*pefDKBLPU4=
zA|}?sbhKrGYGz|r8if{5RYqrvc510s3g%TLsy1u2c5At|Yh%R#)QVY%&1)wDY&Gj!
z$Tn@&c5UCI1l;y*-xfdF|8{Qawr=ef!mjqB?sjkawr~BmBi>*HG{6EjAO(=)Zv%I5
z3-@sUws9TzaUnNyC3kWotUs}qaxph^HCI0$-~%4v>rj?%JNI)nAapnPbWt~TRd;n+
z*TM3(bzwJlWp{RIw{~s!c5yd%Gxv3Mw|9N_cY!x}g?D&~w|G~Vca1lBm3MiWw|SlS
zd7(FYwE%ggw|cGjda*ZqwRd~D*Ziord%-t+#dmzkw|vcac)vI8q!v~zAPzV{ZqJt&
z+qZGxH#(jHep|(UodJK%b$t(t1BkK5rgnaZhkxCNBFPqkjaPv$A_Lr05TL<;xz++M
z7NRJ)DIyr6^cMv1|MP+?!hv1Of0?j?AIgI_Sb{s^ge$^>LAW9qSbaQLqGEU=T3CJC
zXND=ta`kqFV<w_tFFATx3^u^)Chh<<fCM(692p=46m*GGAf+_Ih>;jy9{@!&f&qpY
z1S*UH{3Hq-z)yyvXO=j9j(9ZSw~ULzEXG(P(3mJ_s5<H(1N;PDez-OtIA%pa1lC|W
zUF87sc#jwKj$L>?I=}?jC0^?|h~J|Fye_XwSdq2%7X;aNC7JF>cBuaNkU0X4M}Ud_
z^}fK^iaj7@{^(9w&1u?aSNy_{^;nZ>Hj{x)l`Vq6D58?rN0ucDmsuH*A8MCf*?w|`
zmM6lN)d!a&|H_yrLYU`ql3N9tbJ%jTU?@^yLX%W|4gyU`StU?_E-0{)P+$c@fCW;3
zM#aI0{s09w0AQ*r$G$n7#~Dxc0DrZan;(z?;5Ky%Vu`T@U`QZa`eOmgc?(h}j|m!n
z2b!Qozz_f$JvHK>3mSD)0HG7QVk8<n?B$x5XGec|RtzjBS7RftB<VT;g~<=2N%<F4
zpaVnz_MTQWMk%aJ<)gcnn!Q$<&5x!rLYc8^qcLK4hN1*`s|1>CALJlg_}QQ3DGO3y
z1UTaGBFd>TDxx}C{J7$h<4UI02dW=RtEc({fBEoq+7_{TR<!zk%K8w(T0+NKR?a#j
zsJ8`}|GB{i$u7Sl5Z(Ylk^~n@3TzTVC47h{+`!B#BCp*+1z<XKs-S*Xz^<2Ro~#;o
zc+Ia7K?Z9{2K(ADGXe!Ho3i1tvFDnn^-HQj`&Cqeq;>JL0|8Bv4gpYrf8jb6UORr3
zE3V-+t#OTyEn);-3FAmP9P}+jy=W1b+GWG`eOBhSC#tKDd$1pSqLv$?o;#``O1baJ
zwj(OKjk~xb!MdSayETG$3jl0A06O5R0Kx=e!sayv*d6B6BANpUDggD|A$;6Vks5nM
zeQ1!RPiRfczO~Ga#t^9J+t|buvSG-Fbg3f}oFa^DA{N|EOgRe_zy;P>dEi^Vq3Mt>
z|I#cDK>iGB!*?3Dap=6!J8ah5NfD+2MEDc<6^GUvB_IhlApjQ&U`5<}3FDjlep?Gb
zTmi+KyszQMJNz0*TmfAiPaj~$P27KbybEib$32{liu@XE#sNsU093rhpFDe7+{A~f
zy@$}teY_2U9H^pP5NuoltNdck8?c5d&D|i77C-<yy2*3<>ZFa0T%ZMR4gpv3-G)0O
z%&xqR+}Iu<0@vL7Y9<A}HOreeX5k#UVQkS29f@dp&JkwHMNrH+V$i#A(|_pD5hl?O
z!P6x@#qm{UA-y8I+SJ2A&Red{%dr%;ywfQi1wVZ}L|x6B!paq0{$M<oU_H~_|9sPH
zeIr~w%t2k(x8`*N;tG%i4v6LhEGMNbhmqc)5TpPaxLqG0BEqkPdl=|Q*)OR`AR$WZ
zBE}tLPO$(~hg>)!+=~u54V>nXO0y7V`&<Cu>+u@&o!>_k;OEI#9pc+JqP4O;9}eOR
z5+dPS4zai$8UlM9zU&;{Py<+X1Hf);bcP-HdnKy<TxDZCu;U4EW&(Jt8WN}=B0d`Q
z%HZ+IlpS6Qo}C?N-gE{++M&<lxi972h_|M5=2eU5xj;(5VB$F|4NMfX!zLR%zB`GY
zCa9fnL>}80LfeP_8*ct`&=3@iJ|X4+9~xpFmcA+oVll!V>t8(&_F&==|NiRpfg*G}
zFi~$4I>BH4TuPQY30mG6hUyfvK`*Mpt_Yz8aE9#bfyWD+yA;srF$anEp&$Oi9_WD4
zV^&NF-{j+*?cuD#&c5QcUIC@?O5P~&2V?L{z8Vf+=@VZN7QeMR{_)LqTqplMJSy&`
zTk+rM4mh6=qMhP*KJ@*4B1r%7G*1>#zwlR|9vE8pjV<*JfAg`__mTe3h<^A}q4>A`
z_?bTQRX+({msIBSRB$CYZXzo*Br-T;07CgFS}Ytu3M|O%MXdrWeqk$SIsT!-UdDoi
zIsynNFUO#09I!}7qvfSo9$g;jO9V=lEYLyfHKAIu+O2fU^@6Y2|7BG@hECAtIeqYu
zA5SU9U~yU*6luIH9Ib2^>GAmiF5P_{kw{KX8Z9_9K^kqml#o13q_iLi{=J}_oID(%
zuuLFKtgsx^^}VDVWW1;xG_4Mtu<$8#y!<k}fE*lvyjT<zQA*cFzkJX_DfayZ4j_P9
zKRoaieaC%>lNViPE^&H-ijoc>D>FMoQ)@GJzkh~~5=6)lqIH<?7(tQZ#3uwAN+fgz
zOBObN@d7Tmm1|coV@39HD`FAgJagg3Q5!I*kdZ@1Mu>25ph1a%MHDi8;1Ht0c1vK&
zq-j%xixjV7xtM3<QMNtX8r2%1;>dv&A|hRLwx!7vRwtIE{}>TXTBRk$ln!XdX39rl
z1BiLNxv=3wC}+1YUDE0(MI(biI9OnT1<wIMXVye(2cg*)ih~U+_KT>|iAgOT)FiUg
zKY3soAGvEp?U5I3fw_hIYXDBVg^h@I1bXkpS$>lR9$fgaP{nz-#2!GI@8zD1M|wWe
zMRQ}cq>Y$Plv;AaxjO4MUjq3pb>T&cD`j__^F_tW=LCOVBzoJ(9%ayoFMmD_OIpo1
zK$uYjy%+qEebEF<-rScGH3+Pr#77?#Q347Bgz(i8Wk7Mq3ole~!~-F4*kK5eoWS4!
z4nioQ9WE5oggP5~$RTs(B)CN!FAl)f926RHzzZ#W|6oA~Rb<1Mjy(DZBosJmC*+Pj
z{&-apLo#XP5e39(U`oFgA)pZm+{a}HMl>)`jbak`MiE#Vm>+YTgs>EbM>K)W5reFT
zjEHpX*WZ6=6p)ODu(gnnj%Hd3MFGtugO--%6le>f_C0EZn(n;N=9zB}&_SS2HcH2$
zWo~BaVi^+nWf5TxSj41yy`W$b`Os;EouRs!VV=nB86cTlj=^TFM`RQ!9bSS-<`P_H
zkWi~rF0twy$QB_&T#Jc%DRZClO3er?SkP?;D!9ezDk7K&rxSV=m4domh-F{_Er76u
zdIPZ6XS_?XvaAvL><h0MXvSK^thSssfCCVi{{gLrpuOtvlz!qH?X-7PYw&oY-a%?2
z3=i<`y`#Ob)~gVonXjuIFX8dOj0N1Eh#3`paKbMnyD*I%J8Xost5MwS#lPmkvC2ox
zTQA9Wn9S^yIgk7?(h~Drsn2UleW}JD3C(m`A(zIMy?+h>AAR)6%CW_oWh8+uUu5(J
zxl5=}aiLHkpaKf~s=#0eERgc;kp-7?0ty_spn^IRppdxYD2$PJrhI2QRmUpuH|F7s
zEB<KRcW*($3TD`729h0bpw1vKDn`2LppAY+>IIa38ziu=&Rj96&b=~oZyyo25uU^L
zV6^29;JeMaJG+@WI#!<L3vwnzJPDHH|M`O2ZLf`W2e=RL0So<_n)?<D{OCgSyc=P>
zz#IcONAd%3vb=vqcn^L`=oevp{5j4a&F4jQKzK)ZA8U*iy(LUfdHmx~+Omf|{1wkq
z`{Pve`g1cn01toyBt!U6V8E%>!Ud+17FeifttCKEeRLSXj#|(HtEi(!|BD0nLYI&g
zXds6<WI?-9vJ!c54LYYe!3(yx1rKs>P9Hp>R}d&UPC%~?B9zU|ewZX9qA-X>NP!8@
zMk)DKupD!+BFIFhy(A)$4rHXFUZnTL=NV{<$J@dhg`-6-bn$%?902p^Hbw&$ZHPrg
z;}UPfJtAW92qaWa9>)VlKboPA|AE|CB8wolvB}3x7ffD8R)Ib2dGJD_)YmdfX-X>{
zKn1usf+yneix9k~2&1ctf)G%G;?$v)ae-wKJfMOF0P}QRNl7YK2?ZSijtS=yT{5A-
zBk?_RLd~>NG`CRA{%}BibwE=nN2#v?%%})BRF*ft$;2F)@{|J{k5c+n!8lQ&V#VN>
z89M1eIUs-p7h)X0;!wGkrBj_&LV&c!(9Kbv3{9GJA3OKeKYt2jHFY?sC>6wscJ>dP
zau_EF^^yWJR1G#SfW}1~%0Q2N5)Bl+kVPG1(m7fwoCDyfUqp}sSroB4bs(ThY>Lwn
zw%{js<Yqa|IR~lGp#&me{{U0vXs%)2gm@}wS3pa-1gk({lI76nDW1WKkJ16Fx?_Vp
zM=G4}snMq_$SF*(>ZD_Fm7h8b>JeDj(M`B?WMQm>Sc!H=_IM+%Ue#$>-&!HYgcN{g
z6#-hus8+TvbPIi*t5EN{8I10=uvz`<Y4W+x!ODfNhTW22`6U9nzT}R2%xlLoN{z`D
zL92oNY(6fD$@*MMqL#I1O22>wrUI7%EGg=R40Hf>MG*umXhHKz;51nRZV*J^RQTwi
zT;>|VxkYF}QBhlq;~EnRO_;8Dmq~_cvLcoSLV<c)S19(*0ltY?0X?;OSmyjTxWYX`
z62R#KIpsIFxI+_h|5e-2krl*wQKZ*s=UE5dq5*qGP=E$JhypnkV+AXCL4xT;T=AJe
zasdWzs_vj$H=S5g2X1YGGrZvr*I~p=Wl2d9%wHu;;J;8HASyuGV6)bk#kTNdgwY`5
z{lbs6ed@4@bJyP-%Si#P(7*)5!GhEDm=5ogG7G3|WwxAl2_bL+8<kT6{UW&zNS&EC
z|M%23!mV8eK0*bCu-S(Jj=~m}Q<lw8XY$^c4L^nkQRcv9FF)YQWnRLc4PD_=U?a>&
z7_()Qj8PcVq0vCZ^Ahw7=>yI|(|AGbpuJ=0DOWksfK%uIL`~UAlX;y~yR?B^9a}B-
zDbJ6-FsS`(|7SCJn%BbdE`(yO;#oTs)1m&gUpak*VAI03m^6Y+x4=o17TIlXu8=so
z-E9Mzz&4EjW&vFAsL_GI*y5Di7V7M(a*u%l4VZTWiZOv0)*;*rp6?uN__tcHfZfyx
z_`mH-a5EfyOc%88Vs^J};5g<4P7}eyN6j2>W4zKqUb49stS%IGaeUZj8^f9qJ`#W+
zhxo?0x5Wnnx>CFj)n3BPHLhe1|1RYkz;_*DZibEHT%-t)xV2|PJR^Kuk#D3mgh{UL
zIRL%GHBZS|h(4MYK(7T@K6<5Jo^>$aF>#BIR>f1Y<}GBv1^l{$+TPs6-nEP6-$uH6
zyQjrF|4h^5z1{*A=zylA>r8Tk;CXDZegv(Lo$l1oyB+niK`$O5>IUjN6h3fwz%GID
ztl_%i=kRy123{b9PmAG=fcUm{K8udGIjvJd`6XC>VR?sapZQ+*@{Ta<k6&%;sqy+F
z#NJJ_|B|%F=BDcIcI4Uf$*UNy%oNYGFdAS%eFreQmf<QTE08|*xAKC~dms95foyr9
zD$SIAVC^(Z8TSg1emB)D3ezk=``>@5nz>*7H9J6moj+D{X-0izgg(U(^Px=Qr3CLK
zTgO4c>DUK)*$0t1oi~_CuAR#F`5(<ykO8y+PZ(f*-2w6)A44IVjSWDUfS;!z1iwh0
z|9uc((Y;9RDUl|?%w;WL(=Fc$;#Kc0h6qx_0Ae80ZBP?z-A*w^3Jf88NQ)+fVB&qC
z*@avpj23M9+vdetO2k3iW!|(D16v?K1p<}~9zhoR9n0WB4cfwMAV5AKp}DLYXpkY@
zfFam1A^Abx4ldx7BvBl0;c9eYIn3eS(VX>^A#*t3I<QAZs399B;TygPA1V?aG@-0f
z3J-S79ui`C`5}9Jp|e?`89?He1fm_)A@V7p3GNFfYN5Goq8A2Y@sW+`wLk_`011ST
z13Ul*6cI`c**$^CEFyqlv_J}`1Ojy61Rx_au0|Y)zyl0I{K?-ER0X#%Km};n|Gvpc
z6*%Mic^@%u$uTBll_^mJ^qYAVoTRkC2|&OCPyh>roCh(71Ek|Rwqq2!R{_Q2JhG!Z
zqN6(QBlR=`m4)L3V54z~!yssYILOHf0HZMCTM2YRHZ-IK4C9j=q<<)60_Nf_szVDZ
z7~h%O0!)Ak&{r+sAog%T6-<CgLL@mDBMY2B37kL(T#Yt)K&x0l155xBtp-D8Krm7y
zzPS)B+Ts!nWi8&~Ms@%%T3Q~yWK7OvP11o+0%b)uB`P*ZL^g|3GUX?Nqy>m1N#=v(
zounL4r9;{vRt~^X7NvneWGn^b0W82Egdyh{3|Fc{T+Zc%fY}RWzyl0M|M&6HMJD6}
zEaXI5rJ6<I_}LB|DU<oh;8djqiEKettiW}20b8V`2(07;w4@-i(&Oa_VP@nOh2%(<
zq(GcNl}+Eh=p|jU#Q~6}VP=<T7QtqA=4TGu3jAeY@(V8N;!<|x&A}KvLIGtSlZIg?
zd*CKZ2BB9Tr)>`AHWns;ou*jc#%ekv3%I6#$R%uABz2bNh)CyY@g`uhfMDKba5AMw
z-UMhMr!*?3LuBS{s-$zOgBaGP88oM72BCTOW_tc6UgDuz8s`$kCsoX+2Gr*O^yg>7
z;(UxDcXa|eVhuteq6B77$9RAXT*wLtOQAGDIaNzLzJR$g6BH}}|5vq&`PG4mqA2J*
zXB~{FH&qK4si2D*LF+64M6y)s5YdbDXho%t^-WWds;G~)3R(>5kG2GHC6Sd_h&Qc9
z0d(kxKFZWtsfWG*h`LERiC>anXj%%HGVPlINXvzkK#{7b@=2HlsDLP;z-k--3VZ+u
zd;kbQqz}#woXV+0Z7G(*0fm-;g;E=#8Y&Tu=~b3#o!)7l?rBN{YL~u&dur5+C~8H$
z-4>v!D6MIM3Rzjs&XrOssB+wds;Qw;L(LUHn!dmZH~<TDkX>dfOYMuR!m6xB%TjLG
zs}9JNj#8D9s+VfZVrqceEkUrjoghkPE#wCU%mD**K__s@|Ht_0K1q~*S`4&~8kibE
zr>d!9#KMKR00`tmtBO*tnhLOr(l0z~zr`uG>I|=5$O)uMt$vfGBI!DD>lR3BxRT7Z
zo<g>A-n(`ym42(Me(D(ZYPp^(uEy%R7L~icK)<38z4~g<EULaThQa#lw61Bu#_Pat
zs?S(#=8f!}&g%p8s=aEgrjqHYZcIE@Y_x)GwK74<{z8OiQnF@XvKHjes;KxB00UHC
zN<^v9Ds3GY?X%E9)8-DF3e3???b0&b0u&_Gu0zmTt$h_O*XB;qc0(c{p9eIS^A)Yu
zVlAGqZ3dn|*`DnWf~^^7t=BTZ+|JF~iciwk0o5J=|I`ZY-`1@HNbQ5+ZP)sr1Ds64
zWGw@XEj1`E!+q@>{B30dZUQdu7Kp8(6|Od=PUO}B0yOU9I&0<@%H*0s<sQ@JLaymT
z0pVKh=en-zjINb{E*)$xuywBZ$Zjo&?i}Q<CEZrfB5v^-@9`pU@+$B0GH>%buhklW
zYmw*kQg8HzQG!x$_G<6;a&Px~@Aral_=@lNl5hErFVDt@`Ks^wvTysk@B7Y;w2XiT
zSilCPK)ArKeaSEV+Asd*@BadD01NN{6L0|=@BzCo`r;M>GjIbt@B@$U1AM>;IF|<0
zEd)z21*hBvLvROs@CSo%2#fFti?9Nd@Cl=E{|c+{3bSwvyYLIca16_^3Y+i@+wcwJ
za1QJ64)bsi`|u9~vGUe%5EF3`8}Sh%aS|)>5;JiVi_Z`{aTH7O6jN~(Tk#cRaTXUZ
z6l-x8d+`^8aTts77?Uvrb8$*oKsRK-bAjUF=1v+@!y2!u8~3Riv$2fOag9I%2Y6!{
z`|%$Gav%%xAn))QJL`QgRxLEa9cN&Egs39Lt@kl<;v#Y+m)9iEK?{780vrt?d-5lP
zawv=PDF3e^_nez0@`HT>;`&@Iq%xkYa@V%<E6>4-hN&5>z*lg|ose=b`|>XXb1)0@
z6Ay3tT1lQnizP2FGP|-eD=#zCveLG||CdPEFkACAV{<lZGa1)#0SJl%knYu)7FsO;
z&lP}G8Oo~wTA{pL^?d{Gq;feM3Oc8ZI%`uq>kK)YGd(L!0jzU>@IeI-+cpz)K^ycz
zBQy@zaN-<*k|vXmR2O40K)haNBwom@U1<xvNYT;(M8nmI?#LTRG(}64t75c=YP6xG
zphxHPM1N>Wi_%H&h-P@EAn<8I<8)5z^iK11{w}n2?1WvgmUmPJQiMllPzpSd#AjSk
zaG-{JOvZOu#!(w!k|}j^Af4F+$8bzFW>htD*hEi@^;na2S(|nCF0?t-*U;$9#3a@o
z(u&n2$<45J(}0Z~MNP%57RF%8|IE^@*6fU%==IOY^;sMCVIy{8D|Q{EHQ(0JA|YKP
zQOzSA%O4%mAVC3SZ;@nw(E>pd9T|{j<B`o#_F|j%X`^;(8}v_$R%R2MT~T7>-CSnP
z0c>p*ZM|A*vEEA=h;2)nZpXH%O0Q}YcX1o{asTl`+hwaUTW%Ktr3H7)1|2on+OzFi
zq!Al*A6q5nA$2!*v}Cus!8N1GEOMLod82oFGqG~h!SA*8>P0tsPj@Z2w~Xc<d~dgG
zTVi|HooI_)d|Rq|3;2K&c!9StdxK&oW>G2bwp!9(Hm;&5I@=PCAb=Am`$6~?Q23>o
z;)<2GfrEI6i};8WFoJIZ|Mr6SdHSZL5U6w)CwxlhgZ`&qqNjQSCr1kRi@ykp?`DA7
zc#F%ovXS_Z6M2yvIrW;j$(n%(V64k-%*I}L(9rD3!imnVY|GxOH@OPOPWh5Id6q-@
zejoXmlX;n&xi*>d0L|{R?QYcW*qXnJ<8p57zBx6(?wR9xp6mIZXJDH1`JV%NpbPpK
z`}v?7`k^Cwq8D+YD|(|l`lCbo2{U@6Q+lOa`lY|`q+|M~b9$$Hx)2xh0)P6blX|I}
zy7OuJsjK>`vpT1zdaJ{FtjqeKzdAuKuLbOJ9}76H-=?lJ0|)@St~=ka2fO&#dhRd)
z2iW32yDzUhsIVXJ|FILWv_~<u*Mc0UF0dDS6gxW~&$=k5`XVo{CXe59F~A0(+=(54
z29Ur8>>C4wK%~HX3Xs6URVKT;yXTQWo68EigMdUa09n+#!3ex0par}?3cE{#t}8qx
z;2XjhO2bcr>5v6EWPrdI47qbMCR2q7hyX;|`_CSL$AkPEcQO`sLI;?D*{H9^cQONX
z0Lp>Z@rpYE*F3kMJRL-H$A3J_NBks=K)lzN14IZqgvKOTfhH(!!SnmP54<$u`+_<B
zi>!OQFPO`7{I{1e6iY%a$8z%KGJ)`N9H77zaO0DpzzT!_3#0&(rfD+W0SasY5oHrG
zrTyBsz2?TL|FDz2*~cFPltADIew=;*ymJT<kwAyc!vehhajJmFL%yz;z~e*yQdvUd
zTgl{CzU4Ov<wt&&Y`#7jR@m=yp|D!<p1vyIa%GZC2S7XclD;*ViwbnWX{7+)LP6J?
zf$opb*9)*M7clR4FYp`4&Ieisj(`hDLJ6!@3GmAxqyWVgNKHtB32>LC7=DDbisDm4
z+|T_B)IHj(J=>#&_tQO9+&%eUl`hM^)_*b-YmN3!^M>-#3TT3~42Vt9LMojM3Va9<
zygUP9@suixUWH=QNff0HgM*6n9DH6c1{Ql*O_HyLm&AHnUWz9wG!eFkUOEvq$GYM8
zdh<^I|LY^tAZu#r7+81_6Kr}|Y>bS2WR$eTg6q26<m5a|gd{?E0VzU2(Tr><^;+$G
zg^iV+r6qE$#kCYc>!Yk4QE94p`5<D5BMJ#EIce&6v2apjvpgDOf|8=LYO;n}O46>n
zGDK9Y%uQEcXK#0ZhmV(^kCdUg$IquBDliZ_IDm~Gz$s3c6wp+_!IJ|IQbjt}r9ulQ
z1&Jt%2I@hPXJwqY;A0CB5jY<EDB4J*qmu`RxJa@HDx;H8Bb!X41M<lVo0oVB(rM|Z
zm!W+WxZuzv;(&>pe0_0PQDBjnRH9;eDyaZLEZ7ucQB$=^fd*ph989>7<^z*sA3&I*
z|IqA{rA>>#NlB;SLw^1|0G!(IU%;_kpLkVk@NHZNbD{DbfLJQSB3l7=#dg4ffx~4F
z^GnPxa$1I0$AUiW7jPuP6)QGAoOyHM%U(2B-E|Q%k*pO>Hv;CQM6dxQi1SlXf(SDw
zEJR3KbLkVwLK-<%A25AD$%`-Yt~B=2E<N()&7Vh~Uj6!6_Vno+kYUUG7tO|OL8s_L
zix(s&@JE3vWn6e6g;YR5Fu?@xQf>eZdSd8>3{*PqkryBwAgCrtK!OMmR*0m73b*K~
z02M4yW4A^QkPwS!sJSURFElK|1r7Q@2n!p53aPT)cAW7>K}c9(stFo=(5X<G|2Sa4
z0#jMRK8`x1!bt<4=xqQ6x4dsjA~tvd0S^dlp^^tQ7~zEtG|-@}0zjDWgtq9=k3ata
zG=+p0$ed|A7PdI#PcgPskikKEa^OO}tV~5d`sypfQTn7DKneVu08>md(V5`S7XtNi
z(LJ9mBGWNHtt3h(I-t_hPzOK(g#${M505wFG|ALWyW6k7|6T}?h$ct9^2;z!Ei=+b
zA#FreXQ*TVh53rLLsnY1z{6E^jFEN=YIk8kg)LUdtB5SCBv!>If@=Z<iUxQ=$m^zH
zu89;HECQ!?2}Q674vYAZqY)J);$IIzq|jUv4RsJh_8x{fVu>fFcw+b7|HEeh1Rj9n
zg9m<FzyUS#EARmMR5(D5l#b|PffH8XtT+;8rg>&gD0o3F5y$}pgc6?nsK*CfAR*-!
zD2QZdVOQ`OXd*sPF2zo84y_0l$bk;VCuk(%1rb2Fx6dL{c-3pLOAx!p9*H1(TX???
z+X=Jd#^lvl&Sg1~mt!WRtra#f;!2lcW+~K~4=*C*kuiOt1QIw-p#=m6c^TLfPAC@z
z7A8Pof)!YBEb)?0HhN_ix=`Sml#T%bAUG|+=J1*$(ened@*X_qjXVB0mEDQyy$Qub
z1=DfJB@eIl174r14&3)P*7yk`pWH$02KYO1kzYk2g%ch}Km&X=|L5Fu(4&8RdgK+6
zf^?OMc%JY9icg<<Q8)(vw>tW6B6}i65J6)aPy*!H!F%8npY|5#1ON(<fYlR$3sO+N
z6}X^!3UgchV%7(CE$um@*cJr5Gk|)92SWPtm+WlD8=@HvX;9!9(|%^I7OLTem5O20
zDz-x&_Rxnv1mY_$hOvEgCv8PY6v=LMj3q)s4JH}I5n+LV6=3ZI#UNpTLO>}ZaE&+f
zsemIwFh(-I0e)C4ffl7Sv@%GIH)SNF+cZ|iy2%lRTMG$`TJQl2D8p$+2$dfB=tmu`
zZ2%_-<fjJdHL57GkBl@39dnVTCz=8pq9E7+8c>}|Vp449|7t`M85aVDg)v_*5DOvl
zattiiK@m-Cq8JK53P*6H1(~_zEN(@L3l5-@8q1{-y?_xqh_VS_BIOrN*@0UME0}%w
zWfYB-%mF;Ylr<^BCg)^KKlJA`)>|bprddi*z;Xb`5JNO`iA-{ePKtEECK0shg;7k%
z4&JPc6Szsw7FBA5U!>+2x24W^Hem!TK#>JRbh>K3qzR%NPC`Avf)!Ndj*|dmH_)g?
zM`Y9p8y&zFgE&%>meiytCC?BsRs?hw(@Tnw04T(8j!JP+1p$=>0#twkfvBJu9bm!a
zM1;pDAm9Wj;D8HMkctV!%Biu+h))LqRG|{bL_%`o|8}10)U@f8r&u787cSZat`%Sd
zsUU>gddZKo79p)frRQPVI*3r16|JEH4=%DK0-I7ZtSSjsO`UMl!pTt(`<$OcsSvLi
zi3J5*G>#x(DpSfH@<MaU0xu$?omnhkK=R`2U<2AxERYrphy_zBSR|wmXtn^HtwU&=
zK-k2pmazpx*i-|HMDAU$2#<9_WNX{V8%>s`G?i@;Xq#H%D#dPn_^WQ~-~yXS3$qV>
zE?GyS1Sh26I0AJ-a*04&4t}ZyEm(mFGy#XIwUk!p-GT_#>Ps0(!l+19YAU2k)u|rm
zzDZrGa(^1s{-V^t2S#v$75oI1z6XOYCD}%f{|kw3J&I=p!Eoppq5^Fc!Ety=2ENo*
z5lJGT1Qu+>hyNLZ26;dQ3xIK2wI+xvbhskONJD+$T8BM$qQ^mt#gDNd<a53tDe1^k
zh3SJeI51)b@>24Aum)ZxW!Nyh-BzY5b6X;W<q0pq=`))51e8#grW(@|uwZwW+p3Z(
zR<4aD5TJyNM0pES24zDHI{?&%Y0E-_gOJ?Z2s`6b%lzPSlZo);Cm<G9RFYem!Exxw
zFt*GS7DJ)QLFrk_OV687H1<60peTGUlillsqe-0tQ*ZZOMMzU&ouFypd{=m(dc;QR
z1<H%Uxi(-Rhlx>4LjSC|LBJNpiL0mL|CF$J!Ow<vw59#92E*rz<<jR%M~LYG+=~I<
z2De9+H6NIyz{Uq_fxJq<3bKZT5Q$-t!=CV=bbFW;{8`qkX>9JfsG(}7oN>DafdUa*
zg5W#u#KFCwaQGET9a-`=xWC<&t8K>x7KymT=ai*!Zz0=R_A{aZcS^B9@;YO7!lfZ`
zW+Es+1JaV!bylzfH8r8*FX)5`h?DVfcNE(S`#F{wcfnbXe5x;)dCeoi^NAaa=t?I-
z#V2s_MstsgMKHNaCLQuh15V{Lg#^<X;1Nzky`e!Dgw(0ta?NRA0v}@m9)Md1#44ce
zZ+}4Cp`h=Ox<J<UDuKkCE{G0(|9RAvEa7m#qGNb<oUZUD7`@faig!11B$BuHv^BqZ
z&Uc;`)y@Z-_q@-qQ&t4I#nQ)AuX;(C;CxOP2G$DTg0yiB1b*)yPQ4KO%Fx~z4FG-v
zo-qM+J;C*kc^MtXI^sUCK=+YwKEgQ>eJ@a-zI(n~s7~L9XBd^;l|sE2vb1{ge|+d$
zHadO9V(#$T8VjXod5mmA0uZo?FXUf+C)@>v@IN8c{?D#Hdpe_|Kl{^#{wo!(D>`Qg
zlN0zpp_{d<V;e}T6yhj5uiLhjgM{t#f(vYd|FeYdbHH|KftY9kxsyQb+7@>)!8zbA
zKiI8LYXT13gu?4C3KRk2|0tnHNSlkoKi1O{+$(|=NG9In2j2@qCm=#1Fv7?{LeGQ3
zD3n4e1ig&;B6;I8ZIdt!OeZfvIZk*VELZ`2(Et`0Gp-r5A{#Y27(=%*!^JB;=s>#x
zP=HLzv4CT~%J=|*cm#W@49qHkJyaM!%tM0!L_z!_dkRE8?56{$xOJc;FHE`qP^|0w
zrjEis2s=NKYpf@DtL`wQTiZgg69WY3lUbUBO^QQKm;g^RfEH+w1rm*plD9{|LIFfS
zd8$N7kj2PIzyZ89J=qOMn>$Zj5=EE;4}?D_l0>J=MTNmaSE9s+NP*o_0~AcPP^rck
zals|A#lJfxbojz`|8YMyn+Z4=xe_9w{#!meNJAzXLNa_qaAGMgYr{d9$0^juedI?3
ztHOIQgcitv3LpWSaDWHEfD5^bWn_dC5J&`A01Ie=RTKmSfW-;GNQ}%2I1qs|=_ep#
zlFzXK2B?6U(=aycNJ1dQ7@<gwxyX!syCxun22ei66S#+JffIm$1)u;Ha6f6;76-`5
zo$SeS^rCwT%Aw>*pF|?1EJ}ch7nsDzlk9_r@JJ2#7>jVo41h?9<O^CUxI=o#h@41a
z`4~dL$_JoIK0`=_Oa%`lIV?y4+FO7LPyvTKi3}vg0pI|ynSi>a6-}^67B~TB2mw=y
z1rO*C3uu4||3IX?*vhUf%YYonf^>rOs!W4y%MLINxE##FJb}ZMgvcaIO@K=eYn(>g
z%-<-+CzwkMsLQ*=24&RC$|6m#bVg33OoEKYCjd()fD;WkfCV4~9BWN|TFnEAm*Ff<
z7eucNcmNAvfqAq_w9HB)7)#tFymIsxQkZ}aAQ}&&6duePO8^6eB1w}(Nssiy^Bl>N
ztf=)=$$q5I`n1m;`o|(734AL7nuH$<>yA;ZtO7U{q$?<19Jhe#$vu%GFIs>!>kmAn
zg9UxU9BWB6SeAhDt~zMP4C#>txR(ByFGO-15S6m|@=z}zQ8Eir66hrpy|W9VxpBKL
zOR$hf|H%siB@hDzK)2D+ahZu5rH?su0z_J}Uwp<cLnSOQ09Ppi6eY9TJTnUrmn}en
zyf^?9_y7+00H3kLSD@1QxYDsG&=p9VUuhiwybJzRQzMl!B-PC<-O?_lmENq3GM$Oj
zq>c;%(BDeI0cg_scv3j+I_u!J$iP!VUBC}yQ%eBB$Z(YtZ~zvlu0M6tJFARHoz(5(
z%o&vvg;|yyP1IWBJ_2C@5D*A;T*s;C&|!j55|}Xx6`Kc@vRM6-3cb%<)zw|4hx{Zn
zby$G4#Dy9a1cVsJlUOhY7)K~IhGVS*W<95IRMv<IRysJ=YW*RE5LT^VfDM8l2$`r_
z|1efM2_0fhgjzTOaMi3xz}8K0)=tn?VBOY~gIC*_)?7G%d-VbZfL2$U*GQ1ib{N-T
zvQ~ZlRbEBdgjLvd@YRKN*oTGKPVk3OOCu?qSmB7lh}GDQ<=Bq(SYB<|j}_UG%~d5B
z0S&N#4M+iol0uV3S(Rm3l9kz+rP-RbS!yF9E4<mA<yi!KfDagfb<==%mA0P^+WI5f
zo>khVW!k2d*^qVGsFm8OrP`{s+N;Idg@xLz<=U?G+OGxMuoc^}m4&S(+p|U6v{l=+
zW!tvhRkL;5xRu+vrQ5o-+q-=SxW(JO<=ejX+rI@|uhm;Gn1FwU1q)yV4rs~1|Ahy{
zB?84|4Fy@;SXiC}ncNRF+;if9g8a82a$LT=TuJDFHJk+th?xv{K*G)3eDPK~cmNPE
z*UyDq#--ibwcR=x+#E~Yc4z@4sKW<jfDNF(pF02zAb|}q3kC>*BU0WJ@Q+I<-s5$Q
z2XIkK2;SjU3KbFq2T-Az=_Tb&8{<8kmK5Kb;S2D+gz}{sw2~c7$N&}MgWjb>T3Qhi
z5CK}r#9BB2`^8@{q~A+`gA(Wf6UeR}lHcE5hZK0eSV)wN$PH-vUruP?M&KVhIN%7r
z-3-=Xz=hfsdcVh+2UQt`R@x3=0h^Dc0u&%Z7D#~?wG^QNmJL9pBU=#_{|*5bMo|;l
z#X5ik6gXi&WPlP7Vj&h6F;LzyLL?F(qv~0J7xqmRu-_<d$>E4%`%Q%=#+FN<;wnys
zEtcXgtKyx>IuRBp8!h06J7ZTRQrr074hY?cA!8E81qDtA8hl_^0^wJn!9J*9qG*N@
z-rztM<h_O3TVRh*U^y_T1SK$uD42qA@PjwNvB0^8q!9;hcmgfhVcQ6UF{sfqxWhJ(
z<Q@rxO(<ni-h)dx<yi|wC+OqsFo!e-$9TxIb;yJSLu6Uz1Uep8F1urPc%?{q<tNDH
z{2k<DMrN>WSi$&<))<I5%cmTPjDOpUOQ;LJiwR<~4z0s1FVYU~|B$SII=YQ>iN($4
zXR;&==}<2!3ZJmkqpX8=Rzf?aL!@vniQv0N$g^r@k}<0ae#R1Au8b@Drmx5`#~_Ps
zMGMqei|Z<Y#h7NQyk>hfh|yqZrBDlAt_61yhzDK($gm8vkPJHD=%Qi^SFVnKo9JX_
z>6RW_UzL<NnZfxWnO?aQU=fgX0T_N^w<9@}I$#ld8mce)(i9CYDhZfI80v<yLlZ%f
zO<oZczK(!f=N<u)g4Gey1<Aws5v|S;uig;6Bnc#;=UEmOMj1jbVwIdG5Ndg_ec_ib
z0Xa=U6>~uoHDMDsfs-xx)Nr=xUkNM(&=WrSKu-acLE&kJ|49-j@SH7h0TEz=I`I`e
zAp!>=8&uI~et2VN>IrbEQgWH;OF5=v*_8-^5Wyam7MO{?VWvId6tZ^d*p}_A_0`|;
z7?9Z>l4+k8K$$Sqpn~b%o5>j%S{fbNY8omU8%mlSnxP_q8v5F7s=<OsEYBI~k-0$|
zxhxyF$?ih(g0}fG?iL&DmZC?M1-ua)=&>HZF}mNz#NZ0<i^y%pkskYTkji;1%<+TG
z>736wN%k=r-Yy;ZVW`ykC)RNtXo#Ko76d{70SAak7ElfVcb^e*#1dG50{D*>z$x(N
zgzlR`38J83ON99z?fNbt23)HXC~(!GtC@L=xeVCZ|EBR8ciNEE=F`$Pb80Dq$^|O2
zB9IcP;|A3iK+I}_qcLhoAzvdGXd}gXfFw7gqLL)WwwtQHu|0aEKl;yY5u`2mZY)?)
zCUGP}awaV|^RcM%T8Km_%B6VHBu>H(X?pKX=rd}vrcOlZaFXNqV=Q=Vsag8I?`WpQ
zI#70<WCwtNa#F)069W$@LAL_4A{FSdFywE@i$}nzJ8!4Txb#XJbV+v_^0e_%H}$3s
zS<|XIl8Gs96R!avuUYV_o*J;Kl0J<&Dga}ut%9oYs`Ubk3>CmC#cC>E@2Z_bx#+6y
zFt3ccvL3aPtGjX=c-EL`mvlz3t7~5s-<pNJ|LQA$$*m3utXGe98N7r(vn@~avIq<=
z?!2{D=feN&0L*GFPcQ2}028w?u6RFz5g3a}r-@D&<`*0rTSNEel1Xkyq<J^S#8}i*
zhxmx6*^sSe(vwmO8@CICGxOxIm|(ULlRjkA7-dVbVr#Y*d$AZ>gc;wkb893+!ty>K
zGE10wqke^&F9ISv1{&6@P@%OwT{I}mc(eAks=!4=Q}-o}v~71*h7^S~LxDA;4nY&=
zqHly>7DY3I1lR)jSxB!Z5COi6H5J^%N*lGWFDj^)`t`QCdzbjPhkIS6cyV6!tmihd
z6F0|W4Soa86{xr6NL@4>Zq9B5%maK|{}{J?)(gI0yw0VsfTi}|3d=}fxI*NF%AYk6
zdzqxY1c(bf!K1h<m^zI6e2p{fn=`-B2FAFQ8!i{KycE#*b2*r^h-XN;^h13?h@fG*
zcrmcPu36ws7>0ifdnX71A*^iTQ9!dBema<aU@3@KF6y|a{_2<eoCQdr_X3NL{S8Dw
z-uS^aZi3@`f+n23+6#%>Q^MdE27GeDj9`G^6TU@QT=G}Z?|=N9XyvG5|2p`6AQ%i>
z9-;AwOd44srI2Z~ye7`775SJVMXPJ)g*btZ-0L7qJwDcKHqxOzZotOEYjczylBv{I
zWw!A0Fd#@}s3g^4L;|9r!GP7)|7JFz@e-LNNQj7Na&m<5(o|`dQlcdCf`o$d7H2ev
zP<MB9TB#^>xp4HdSPC30JWO0{e2ko|yv*F}{0to}JxyJ0eT{7`L&M$eO=Fbxs|1%O
zv{|TyC}loSuq;KWw1TS3@{UA=bSXc;@S>p<JtG?KCBg(OUKIttsz^~#Mc<JEAMl-d
zkpW2oUK%Tg!<a;3l8qxh3dxeuoym(S53nF14Gj`@6OjlafiMazcS&RpD~CiDEj&8+
z?1Lq!$Q5**v>>oB@rBX`IhzTpCj`Mers}kC7-Yo5D2*J0O?V+86)bVD+6@pY#17E`
zXVWHm8dd48UgNU){R=p-|KP!d3mZO+II-fz#I}9=cBDm%3>8R>bMOFzuLqg99*T2f
zGJ*vbT4XwgphbxZtXcOvE8@YWl=+kzIk19-1qKyXtT1W@wrr3GPhUyBy7h#9mR>Y)
z_yVF6kwP4_I00b+1r~r<?HphoyLRqMs2@S`J$&}<-N9d9PhJQJfXZ0|FLq$fB@JtU
zht4osX~qpu!V6d#@n3+Z36bA${5^1=6_{z(0cWw$5mzlmDUpH;7A!D<3M*Jtg=gtd
z@s$V@fLLHAsj+ZE2`7Y5!7`Veuv|f7n21OLEa>(?2P(8ciV^6!Wkw0Eq|(9)89ZRY
zj}}e1*=caOqalGy|0a>*iW9V`%L`=<&=6y0o{46fYOcv<n{K`dr(=(GbHoHKykOvS
zLY#nSpD?AvNmpqU;DHNxt^idsQuNtpkppb^f``-DX2b$G;YosYr9djF6H*Ka9iw<U
znnHUAX&Mrx=M;$PEJ*N)<N~a|K!U5aIRUFCv(|cqtbW?Mf~b9tNlX^P_Cu(lFCd!4
zSx6>(XrdP#TMD0y{`nS$Sk5(o9!eOX3Z5m{Y6XvRSfE0mDD-mx3LkLr0SE>5b<708
zMhe1KU^SJ-0_eSP0s<<G@alJ0z(Ii%B2;+q31eF8=Y_V)Rox2-dzvnu>k=d;UvPd5
za>yc&OmfL4|DSw}oO6O>6Eq7%XbrKz6u<z9!N@Ff%~g<_gwDk9jD*ih2z}VgRoHA3
z%xBW9G%_?B@G89?u+Yo_pjLuF(^(1Q0Jc^r0JJe(oAETtW}l6A+G?-OcH73NJg3`o
z&rNsT!59D#5=z?5ci(>h4S3*!4^9o-j}eY|;))-p$_N@*ut5qeT)lYZmS2u}=9+Jw
z^2&5_4tnUKpY*{9B{+ig=&G;Idh4#gewg8q!A^Vaw%?9>?z->JJIb<q(|hp34^MpY
z#vhM7>%V`VeDlsf4}J8~PfvZ}o^w-u_S$dHefQpfFZ%M>gHL|>=AVy#`sy1dKFg&{
zpfxlW|D?eI<?AChzYz78asUYaES+~C)&C#w&*YqA9(#A}y%iaCj=i0%lyz(&BPuH$
z$LQF5gmefYdlSCLOm+wvb&TvXQZ#V=?!AA1{(pbo@7L@3d_1CXH$9H`p8}ge|KfW9
z^frS)fsrqOU+fLwOdNrQmit(hG4(HU10Talx}aLe0BWS8!I}W5I0rwqCN}E6m!qbG
z9F<QKnSnO02+2_wsVnyk!-eXh${fTq>hHoZ#z1&#Pz?C^;F(o0pcWsg#mkfiv8-A}
z_P7j4rArdEW^~vLuxLVf0NRd4m!UB@Pw}oiGv}!QT<mHea3=Ms03#+c6_x~^IZW<P
zCD4sIljw8Fxcl*IJX#|0$Y5L=-(?rwoKjA<!4d3PdWDRz23x;B$b~koJyw0M*Bp72
zk$8-k2zJ-!XqYsSalMG1^U);mn!7+rj04m=#~>Cw3fk|)h_Ge^v6bNMXka;&G6VwM
zK^&Ou$u1Ye*#at&Ow?6LkO?v1rYfj|Y!_=XYB7RtqyY-}{jKB=gN%J=176Gsr6OkU
zyqhktkm$vVs++l(J-W+OC_s*bC8I}x^X42kdUP><Y$HxQ=q$}Gv>GS#WTXI-lyC8>
zqm%@PJ{9=YXqz_gk4KP{N`WZvHL+{P@z^^e;8L<mITtMCT8=ZuR+G3z<J)d{t=SwV
zed^+Lw+^N)=Ly}w>fF&zC1~)Vp$=LY*!Y7{=2Hx;Qr})8T@_#2Z4SFawonVOm`N6o
zgjnVq1YM+4EX#|3=9Z#?wlS&Jp;Ud<RwQrXU(OIxA(14PWZ+m7ko~O8pjH$5T+A}Q
ztngf?o-=8km186^k`@oKxJqypU%WOnJo)<OS08cL(DeTbX`8NK+^{<N7X3{PfMD-+
zpuQy@JoHHD`;az}gBbk}HhTqDfu?z|_=a5w!Ar-wiyT!1bRkxxRHh+1)CW*!4Zx)w
zpzjGJ&EVGL8(WVTmQ2=l_L0#i);$0})=_UNXdC{y^4>SU-|>3O8*KNG>9tJyVM?DQ
z=&rPC5N8pS06njgmVlo7Vtn{UkU9Vq)>e%V;f8;aSOL)E?*I=lPUR-9J#;k(k@>b4
ziG6&1Uj3xHm`0Gqtf5Ye^+N)IbB~_k%b+ILJ?R9GYZO(|Je-zXt($^dO`AV$HmH-8
zvqU2pEUjVsY=rbrEbBair~xhCdM1aZmA@SA^j3w>BWmq%q9{O*rh|N1pyXO1ndQH}
zHvhC3%qq`r8$HJ(e5_;qyGh><T@@d<f0EOHPLaK^m4!Ie4gc4IpYIt_!!RY6LcQsK
zepBaf+%=Ts9H@|b`d7rK15)Dd{0=H&Dxj}^y<7yM2}j)QQtxHQy1oCNy_qY6sz|7{
z_EtnG%e1vTyb=Bl!jxEUnlm26OgFowr?=1$bxo66BHu?#I;_mM=(q&FEZTZ8RE(AN
zjJ)ouNKjLEHiqUh6!KWdX^AeFwkv@^{?6rWv;iO~GBbA91nPY;G1Wn02cJXltu<*9
zo;1*PeOm^Gdq6)g*9eWp@;f`v)0oLHMrOsq4(>6aAyPH~Sw}MHEiG!Y*z1x1&hoeD
zcl--LWzc(0w+E7=)bIyi+uj|r90{sW);^!t-&Bam%Q<<!E;ZN2$#`~`wQdfkpR+MF
zalC)y-qOaEiFU^52wxnJ`d7q6<*QQOAPo4`<N_7AwTl-KJF@uI`9J>2kBNHM=6-bP
z0)Wd=fwl2#E*o8SV`Ps~iEAE_c8)ubU(T)f%D?;y_Ldt5@t`vdF@G)qk=8vx76m|s
zt}{^7CNg$;Xvz>vfwq0y#D4v0c2wB|6>94oFm(D;RRj2`cM6cOHc9-zeF~GkZl#_4
z8-(0r%HUDB<dD96&)=Dqqpx}{-mw+FD%o>qJhftj=0gbGT60-o`;AQvv-?7LKHHR(
ze=&xPBk&Ruv}Ovu85lxfmivF8@4W#KkVc>)>v5O5soeDk$Izn#1{BKnhZFErE}~Qp
zB!G3I!-Doagv9+p^_Rd*ECVzc-|L11aKI6AcztqsFJpi^M2jBHCFPH@p8Vf1rA7cG
zlM4Dp4V=zoWvB~Ix{ctPzsW;Hjr@ATRTivV8kI%9c&v*JRM3yQmTM)^27uy3wVff-
zmje#5NKj0aw!TXkDEiZFM1_;84J$&LF_uA>!_qTGt~?rsjk+!$o!A<4n;Zq3kF<wH
z*yKh9w6Ua~@CM=|RN5k1RwF_BxBP6PHSw{s91$lmckiCqfdR&){%{nYaLb%QPYm+l
zDnJY!$wrJ!*n&ho4i;#%n74wW`9pw*43*_jb1YkNYWN@?Ac>b2#ao0in^yD^gUtn3
z(5C<8QniRd+U9*2D4<S!n8!iFdbD<9n^h1-pW!g9{p0;BIAC&is9vfh+B#{DBfK$I
z^5sm@d@%RgX%ZJEVS-{_v*p{H#agI)!OGK<yg#q=U=vav%&(IU?c(s3>tpy9WAQaz
z`OT26C64;(3<K{Zh+`vp0)=Rb<a3B(K)g?#dXVas3R#5F3YSxjz)a7I<0wGjO)Z|v
zNd{%4UDh#x@3$pgb84Q5^bavCT?oC>9Yn6ah@n$@`iUstB#0aUPyU(Qlt!N=lu@Vh
zDC0Go^OgvMfz?Dzdiv{hspnKI@C?<%_-ps#`|&B7a@2oLL0!RVD>&wB;_lUtkO6bV
z?ya;9GU(GOgCHl2e;e>1E+da4?P{clH7foUOhN4@L&$6vA(ic4LxB98>nKW242P8P
zH-anEl>WN+H~=I@2Fj2?ujMcMPvqy-sba}+dnv}}%lsysnTh$Io)?C&OOSJ2u6h}u
zl0IKWa;NH2ft8@>e4Z$ww=Gw>((;`Y#Qyul<BPQ4Ipr0==jsUfjJF66#X;hJBSS>^
zpV+X{xOso>Mab)c%2pxK?YA!%HoPdsD_HCAB)bU;XbsP&qE-0Nzwr4c4N3&dctZS`
znOFH-+P&QSKN4c~@#Dx(QYUesxT(T`fWq+*$mE^WUjH1`c7z@pwEqwU(W1FrNo*Tv
zQ$>+<NhIq7sHlHpz={umxmf*!2uDW%!!YdPo?Q9!JjmU`OMKP)=S5T3U${NynvFvp
zzIRC?7JuN3_incXNnA)f;#hbO@@~sfn@p2*o$V6EUOd^(2{`gVho;1~$PyajdNn0!
ziya*+U*0JN85^MVv~Tg(5r%VYx5co+l*>zkvbzL>=Z>pH9pG^&oEhM4pj2kqi1lO5
zr<~dV#c8F{<?Mf~$+&W>y7F&7gGMRlfXC7wS*Rt^=ILDWVQ^R6A2(IK7tCPuvs{SF
zikGZ^z(zXNewjR6zk>5P#bLPOPX$mvi@R_z&eWf+<`1zl&#0=BmIog8)qu7!57a#T
z^06|&8OZaC2x;dMIm1`v7FUobOSqp^4d>Y%YgTrk-~60qS75ES_oB+d0;kpyQ~l_5
zubT3fumsFS)u5r(+#k@0M9B!$ytbpXclGM1A^l538lizVU@ygzpEaKm@znXWv}qU#
zoR2H2N*`OD-{y)P&QZErDs5R>6k|h)ER8(kwDd>Nq8bE8kaqE+V>8r95J++oB=k_V
zgTuV!b~2r$m$WxTHs8)JzRKDkAigWEup8EJ4=R>gc0a4E6Hcpbdz*SHg#9+H3~Pg+
zWP{687&8S#MmC#E+JA9skhm-FMqRl?c+r)bH1M$U&YyZc(j_yPPYl50Na4PtDI#JE
zN1&f_)$uTpK@seMrChB`&Jgd#7N-uypLgK$HnfjMK*4XR!nkYo51@~;q1?7me{QLz
z^owSpzvh{5Ai18@s&Q3mY5?pcO$n(j@l9){LVGwCWUkhn<<EPGQRO40HZs2L)OmZm
zjpKEGYqEEB>R(X0cbhw|{Xu?v?O$X;Sp0b&KVGt}J?P4t1W4y%TV$*I&%5x&5ahS$
zHd9J_@TXRonuUL8y+?z^%;VB;_)6}al5{z^H-J_o^{D|CxVl6CLgBd{03?Hlq<K>P
zOpu07ieECrp-TWqIUs}Ze|M)tChK48;+u?cMegX1-`=#W1rS!Bh>wp8zU4z48L6IH
zQr)JQ@9$C-B3iW4sDBJoGfRS&Dj>Tw`GvEv6giX#?SJmL$0r{^;kMALwD8-h7c}ny
zRgbOgXZ~cQt&sHPK)vzZ++Q#6=~R46Rr8Bhvd#T^ll__p@FH}jT2+5rw2+__EkTYx
z0mSNF#q9o^16OeSj(Ut~Vpj(109bRdP4%54H_L*iJoN{5GrPwI{{~mN?_N`-^|-|D
zGIpE#!!rX1uB`O2a+k8%c6&8g_@s6Be60^_?lHAR<eu2u++x&s;X5@<%|hMD#xW}X
z!;%Uhv}u>Q_r`~HOkx-|VJBouRcPxHvfY@6Wo1PAL)eG9WHl#6<y-bIXdm0X?_6x?
zJtwm8e|q8h_I5Ca#v-79I2B~uYoAsCvBX@TE#R-zWD-*8G;%@}QQj|hUi8v?(bJ$}
zu3#GV0pm9p>A_)MZ3lLal<_R43C9l%&KSgA6?0|&#L~lwtUBzN2+X5-GF{X=0W(=Y
zJF&?)QFL`e4?97fHYuC+!C*4$6I06_dF_|GAHvCF=D04edqaJ7AQPU1@rS6pNN+g2
zTj<|y^SkefIrZvSIkPSqo416ow!f!{bCuMiE{Q=u54n1jd9>j@l?3jN9`0_Z*j{<=
zn~SDK)jXpC@KB~Ef)`{*o=+}Z$nSv9O?vk83Y+T~pUaC`Kj|ySx2{Cny8Zz&o<*Yc
zq*0+6<F&nW2Fs|wMRQqbVOD41aH&=oZyG+3fWT_g?xL{NYOFNiLQp|da9HjN*JX;_
zAFf;tk!2E8>`loy6V?l#?ZNizCJHw6fC{r9`OBYPej^ck0sKd0`Y6szI<Jk(r&ljN
zh0&q(HBfKqE_3wU4E~XwmWyvA7i(4p(E>t;Qj3L2rX6R~U0tG)CMGI9!CaFdJ2}tK
z(%dV&Sa<W~rnAhJv!(g5#UD}&xnn8M-z|TCvJ@*lLzI@6_=oP<6vi=eembMsezJTg
zW{$y`CF;c-V=rwWxtHuOc>QQWs~I$04II5Mlu$*1jT6`3PRG|<1O<qOG`z|{h<)Lt
zo@|hkKhx}86)Q*&A953qI3imC)+RrgCJ0EBfchlu*1WtfnBRhwxbBE+cF!(&%5_gk
zbUCkIb!#}f10NKS80x(*`B{qU)#|9TmxY6LF+uwF)Vtz52xUriE!}rU%5tk%W^YyI
zKtPsy**)gb{~+Ew6)X4oWPdP0IWvqJwAXC{$Ak3(ew)LgsLh~=D%w=}=bxkm9YDCT
z#^CdfwbZX!{k}pDaN2`_wO*_Mjw|7N@CB0`n3?^V!{*q|7S4YAU!ZulA-g0aoO*Hx
z=p_3#hA#F-5RtDoK3Oy|d1n>0Z8a&gpT1exvh!c^wmU$6Y9}jRgWan}z9DEk#bKvC
zVrRPd>-@Ob@Y}RaPqq-ft%kST#W*dox*_xKZ@lLhD-n-0@+b<AUeIDAl(YjC#kBT|
zaL|+UnBSkB|J>lvU32~l+K=o}n!sLL5WC9YO>4dO9+m>Jc!i|(_jrtX$prwiGXUwH
za<_~h7*Mu1Q7@0aALs!N4J>4Cf)%eg!p5?$nob^yetGfe37}lzQ1K~*d4faMjB5Yk
zYdJ@0crE-;@Mz5cVEMY!xeNyZm4jd%2k$#`FaUEXE4zGZ8YVw)r(6qO^A2O?xLd2d
z#6t(8fLzReX<ea{_(JRO6k>OU!_!Q|_di;%r;WH;HC?3Fy#|1**)NNfpHaxwCk&^;
z(<&*<*MVXjQ4H79U3P`QCnNaNnEy^kCr>{pUi^N4a2kI_odMv`*>oIvq55?HchQA>
zoR4a`1xLwKRW8z@SO$<ek+$6LPt=D$3yOay0e>rH)u|?dq7-~FgBof7Z;$N1KC^!V
zDL2S||K8XB8=3ew_Ec?X|KA7MvuU%lkB-WderKO*&lV@nmS1wr@1L#6p0Amme`TPh
z_=zw8K<=^zDle(OPjK)+I5;ffoPfo#o#VDw=k9*MgO{}E$q%$doi*fhOPS{;n;9Vh
z6AbMZYl22*o4qz0kBlk$nOyPW)r3#?Pq_JVCbl2`<$XD~|NF_styo?E)YP(a+^cA9
zt)3MAevr|c+X}<zim(FQVp?Hj724k@CcJ)O5Iq3Dv=4v$>D6!)H(hhwT!GhqoCB_O
zxeak$-9c-Yth=55g0HysgBLFEO~8`qfbGcjU9VLwSC@r~wNkVJWPYt@3$>uN9upQ)
z*!}sO@22C^m;Z^^)iENeCGSE6J-^1w$k9-`4p4FC%rS-{pON*>?*}5Z*-~wCE`3n8
zrr7J-rvWa7sSm7G<Dfb&(iU)of4>h_`V;bB<Yjsmjc6yZE7q#(XE$&T3o<(toRW%T
zqJ*H9o#<1cei|8Bn<1{-rUnTt7W!4e^_aL@A>yA}9{y$XwQCQ|`Uh4a660CC5e4YT
zQmCYqn5Ntln4~}k*@*4Sodak6^mi9&+t&sa8w?COo=Qz@|64CL7!ruP@q5&xFF{J!
zl!O1>blfesvvgB8`9?tefBH8%>lWzv32egQktS2Ca%ok!lggL>@q`9#PgmS-4V#;!
zV)sS{3qPO$0|lV8D(e1ZJ2v+B7}4y|=+2O1-BqLfr$iX&&<5S4pHlMQMLe1U+@FX0
z#esiaCIEmm`uhNCTGGCH0KND`_XVGJZ?6bPFhk=$qmpJLl&wk*L#=9Di$7@)BSo_E
zXEJtEqvT!<(C45g$yD;{6Fr=w>Yz^O)6NwAL(M?>IKXz){(IoD#j2KoCJ(BYHN};2
z1er#WPn;>^N_h{oQ6oSvg~i85uuqv{M<%RU07bY;eK{Q*9wA7mP`Kh5S#TB}P^3bg
zfF6fI6%2aYcX*z#Oz8{12uj}l&V_<rWgZ=lVK;A+0DsZGkB9?7q@6X0Y+GnCc6XYG
zmgaHzhcmN8v|A)gxC@40Zg%!PhW<0{FBn8WxM-R!SQT$!Hjq!2a@EmifP75!FNZC+
zFkWqsO;#XS-@1RbF-GuDR4>rp(bEYunyWMW>GJ(cs${pu4ljO+#{r<XZb}PWg{bRW
zJK9zL{07-?(iv=B7s2%?qxofm$6YeM3E4#_+2k$?eExR)<&I0%!$eQ}+-#zajZU_+
zRGf72f?ypl;P%6dkgEdA#6{tF$EO(H5Id=Sy6ZO+=3>U+@+q)j%0myeX(9{pukY5`
zl2C(}VCb(TPw^z{>=#u<<R3(XL@`<LAImyGrei*g-&17hcM6XiqjaxW=|S?dsqV9L
z?gO%NBMS+{X1^N!lwHLsh9B;_6Gc7WbhIdBu4By3ZQ);p6u*MEJ9@)6Cms}HukQqc
zpvn!^?QKN}1<iJAi$rFdI!)jMtl?7p0Jp3&6C;le8N^nW{Ci;?tG@zCVVuP60NMNj
znFPI*C8M&;yG2cqBu5e+e%CWn>~pC{xIWU<jCbK%d~SEB&}EQ!fGT`d<f_gMvm)rH
z9CRdf@4^;HQ&!)(p+O0;a6yZWTS(LR8^BxoUVK0Laeb=(J$^jO0Xe#<_U;a2*eLw-
zLA-MF<pu_nzq_<IOXw6BHGWcV!Mof2qw63kMeN6$FJ}@k)oTwKpYU`p10I}!x~^jG
z=?=ZrTljcW0G-4o%MD<BI#)0pfDOP15$G9kH$|B+1nm+ON2867XzCcu_)Y=~^#O3T
zNt%{ajxHhsK<uOv=oJ(JL}G32`fcVP$+C`u-_ciPtYJ(ESq7k2vfK~W<@MJntSSE2
z#f&vAz;Xy7hG)_G0zf{o5MvWBz4uxL?&>e)3vfzzqIK!F{8OA#z$mPqcNaE97WMTa
zI2j+8{e%gAZ()wcYa7DQgyYJ{eJ}YVunqgYI;`7AQ*r7Veui;CEHEez`K&@u;MhBd
zj_~3sUif`Qbn$gPzy^}cDeP`okujAZs^>0}>g@c$uTGroVW$t_c#u(8qVBHnOyM=V
zWk#WX*rwpSDAP_i{y2c77_#Aae{=m9Sjwh{i%oUnO}m2pfs*J|?qS2spqT<kP`Rp}
zpn{**6f_Gj$mZiQEIgXzE{%=HdS%fqa59x+Sa+~d@%ox#Ou-*=Q(>!RgefWiG;?Qy
z@Zy?4Uy)mGZIpzVp8<p^^No!WjE-qg^*#MDu|m&Z0%`v074UL}@^kNYivNZCbhSVv
zkM|Zpx6q$}ob)KZceVHKy;&>c3R2Fs>XN#ucF~+$v2ZaWH=ObBSSr^FxI$mp<u8|1
z2R)@`ud}K%?~kQLixoVhZs*SMwYzQSKVXi~HAe>dTO$E%O=T=TNSK<=L_B}7&%-_7
z-T1`A-@1^a`TGtXCm(FH9>HZOKBnUc!z~4uQoRGbj5Hp>9-JYO_FP;_*S}+8^(vn*
zM==s1a2@W6O1bx2{MNRu<KNHhs=5P4MqloN?4J}l3evm|{Mc7`KlE7=<TLkxHego3
zXRg}71|yOtw<5$bqAV7SYtbzmvAx$~5S!(V$U~V3iRBWdt$@C)eXAF7R4UdbJ_kr$
zoDFl12}GQOG6J%;9g^v3sZ$(3$|PqF8Ltx6RA*_FMo}!x*Wq$}AMp=qoEsdnlfZR#
z?b_kFoZP@(Fd%c(@Kq$wK1VAeyP^D1oRf$j2TjlYDs@_R&hqPz$1b;NBI3_I7{L3Z
zjB8c-`J+z26zR8aQ3yC+pAADf4wzQh53vr80cGNp9k=InQ~X=S&U1@@4D6R1*n3%g
z(fp6Vfk)U}2V8ZogwUq`tm?{8zJ~oto-+(AK6%tH%O1(2^*|HqfGrbXT%6arL|FWZ
zAzanJKikyJT9i3y)^`bfh`ay18bh#o)iwre<!{V#=Dklfbg?=&T=WR(+o=ce!hzCV
zdYnR+uvOPqpe%d<Q)<+w{Dl#zlkVPzd}(^$M#aUtYbWj1Te}Y(IeXf4uHidEzu8{5
z8DeHSX?8EhKYsTY_`_F)iFDr=j4XJMG$j=5E~94i?%4^KOSQB6qCh$73k?S<G!$t+
z@T;XyO3K%ZGe(R04wbAqWaG=T(8)|3!oG#SyvnL!Ll%y_yLaY7In3|Ff{AM%<?nzj
ziWeYu%0*Q^LSbnSz2}iO?QnBj!jjdYLcQZ}%dUEX79*eOW>HL-N;?5gm`!}XbOt-X
ziGHM>{N5^%(RF;jZS^u0#FXK=ab5<4DUpEw%0QNjwllTfiJrOo{0B_04b^<NBOqP-
zV<WzEQY%TgQ&r7#>>g)Vr?KN>Ho*^dfi=?BMQsM3-^HdAl{KIC^FI`fKDX|g0CAb6
zFj6T2{?e5%ZYuZe3aw|QVIG~sGWopT`0<`?-@ZBfws0}0BhT-!FNO8#Q{oSL%AT=}
z#@W}uVZo#Bz#-}zTk+zd&;tiDAR$InO6K43*PDETp(R2ZXrS;=<bE#sP_z1+h=YDM
zO-GRQRB)v&-p^~cZl3%3*^C~V<9E=QqpiKKd;7xxYz<QlkZ0GFt*-F2>RgEdzMhhE
zno=sj2%K`cIE4T+F1rEWUIMTHYBb~)0di4Y0)0Fw7Qp};5Wg8TNyan4?<ODN#$kr!
z<Azit*eI<*5rP2>Y)gerrEV2a0G6ngK_jX(v}35&*IYS`mIQ?o8Nko6f3qo!G#?oE
z-<<uD{?gkAs&u9^B|#NPYEmR<ze~6R38ar7_~Vv#WL8y|I3Od>tR>H+cW8Y%^yauk
z+>)PM8_blu568*FwXqNp98d(nSp#AcP79Vm2ImQUR>DJVRshx%heEyEGXBh$>|TP~
zgZ?U(s{!}Iwe(bwH*D}wDGE>(ATcb;B>I6p&<m<S0meUrp7#NBKXBF--&LXj*l<kl
zRJ1OW4Px$rQWQ2T+~rs5i-c0B4FzH&2x)o`_x!*XfTS)$GM66aGx^4M*RxB@b6xjl
zGDUGblXpYc!(7v}5|NQgC{D8gsQG2_xgJn=i@W_0zIe#H_JORO#(yQ9T^z|zd&Cxa
zcsY-H(4hIi&Xq4t)-#bI5tS~Yvknx&fQ3A`9wB*<1mTr>C*oxx#GE}&foEdqFBKW0
zN(n?ATJF{HF?&N+tM7KyZ722_r(;L;aiB}Ct}6N!r1Tbjn#}H$%!LTje#})97lR<(
z!y*|%Dj{4H*n?u`u_I<dUvWr=+%!>MHrXLu3;L^1jyVC831F77fOFll#G=LjHCO-?
zlZ>e#=TX3mnNmm|M($6&oQss)6BoGz;V%M1nQSPsDFA4RZ{b>()iZZ!Q@G1imRYvP
z*!lH;{8^4&QQHh>TC%NqpbOLY|4+HC;vdPzD=O|0`>C&SH-6z^QhL&-%>F}7Z(7-o
zq@-vr&%F;-QiPi_U$bIX*mYA#B40y_DBpVnNMyc#XH=~jr2fuA=}VnMZq-&Qh04Wk
zBin-Zo&S}0uawn##B`~IVNL4X{WmkFv*>3Ow_P-A@qh55N@f7{r*iyH5}ZlG8qgZ}
zDV-6lm??GKVHn*#zAqDKsrUF;`bgpCxHr)9d#Aq=!}kevx75@l2%HBu;a_I(L}&g&
zUA&jY)$~^#-Hl!O`0d_D+WLaVKw^_A2Y@i>4mTb!^nNy=fS@rJHq<bnC1k?K6AWwd
z1{394smG0s<Z2dI<1Zd?N{|Ex$s`AeW!Ka@Z8C=bG@EGpg#v^4SV0`FK(eL5=K47a
zr&T}#pjbg7k>(*RmReSp_C0zu;>!)bbo!K|ni}<pL_vdZmU_*sjAW?SM{8Lt88))@
z{ht<YA8$WpwfRD_go|67eFIvPz(G1jwe)<tXs{Fxd^uz?thR~zc(<0-w$aKq0cS%k
z4(@nnrAC2lQJ?Wqz`7)eO0C)Mu5If_`!B2xYt1rmtsHhgI_$GL{;+bqII%L{%5uE8
zto>NysIzf2Y_$JA;+U<S*t4CuXPx$$oUT|qi)K4Z&N|D^-V$JQQO<Tzn{~O#=E?w9
zI{?Y>0U-WA*`#n-`+IIL(Xb6XPzBALai6{fk7!GwbC`uIkUlP;J@PNpBRCMpM`_Dn
zWoYTk(-|Jy(rwJ<w%z0Y8sMRo?e(T*W<i$y5r#c9l7RyU)(1eCSXNIX**auPSLy9O
z;l&L}U}JRsDv2X`<^BrAa2)u3f#jQkR?Nk*mcR1JK>1;|eQz~+L{?TwnRvI(vg0uv
z#2${+qP;5X2coUrOot*5oJCLZ;#dGA2wF7h+muQYj>iREd`16GHlqcx(-Mv3RB>Ly
zs|H%q4-T*0hu)^Q%+aR0{X(6fYMR61rF<B~elw(%&v1?|QMp-@9U*gD^ajP}-GQh+
zN{p}v$0k0gWe-d6a<wuk{zu~Q0P|sg`KJN0h@|ipoI)n*i3NLbBVOF$1Tj7rx(0as
zRVTQI6miqofA%)~D98Q#<16E>bPyHzpz=7OR+O-DwGJ22I2U<^L$-B}vE#9X4@7TW
zo5og%rr+ts@q~t<o6(kF^roL-KiMEJx<F;!vJzrJB<Of%`#Ita<xh<ekm#>#wBq6x
zpMW$rr-pm|5!XQx6+rC{YU0n^p{DEV=B_$JLbMk+ZQbrD-K{<Xcl0HmC8oKIIH#>{
zs2%6g7FT^r>%(zFH&{J7TC1@B242Y6)`$(43tyLt8iB+U(Yf^NmQ^RjPb=}>DT&j;
zM1Gr8>g)93mdRH{oGC|Qxv{u#9eRdJ4eL@X2dHN}%0<7-{gE(`q31r)8?3>}U_#{v
z(X^j;6XN)Ek3<pk_5rI-sI`bVP_28*m8CC6r-%324KpYjg?Omz`kX5(eADp>i_2O5
znzLEz@I6LbJH{FJ+!OoUUg{ezPt&O&$!Q0kHm8$DLzNj&mK(R~;>?+w!ReUG2`~69
zK?-@4K;=Nzb#)f@R1uM=pmHE?q_4&5T$B#L#GTyipv45U7s?90cV!FS>OQ)@o`azo
z?4atC5%Jl%o(jKHEXswTy?)A8PFsRvo^px%wV9yr<V%eQ#aC-!^<zS}2-?)qh8_#9
zo)4L(9-fcwIKOU=eioegI@S;n-oFV~>xdJx0&_fjZ%Tn=5)wM~`FhKVH&#P!7UB`Q
zVTt&#LJGi#_<H1Z;*`e|M$!|p=E{eEVhjD_8#+p%<*cR8LXEe}L(1!qH(wV4@DL)t
zAtprWQbVf$Y9%pdzNaz(mJq6!;5=0I6&Nv-7tukiev<d}hE>J8@(TIOUV%br`Bqf8
zezay}w0|hTbV$&g7)XCg(@coFVEY?KaE~lYsCvl-7kdkv{qu@DtkfpI*dxDXkz9Nz
z5fk@@x#pf9j45%04QP#eR4bJctxz=cxDa8KdG3?$;PDdCin*bc?O&FAsVVRvv}&2;
z^PwOei*ISxe!Fr=zPXn*1;3dQ)<Y1_VDr3_L+(&)fbhP5ZaplvaMI)N*C>i8HAM>V
z*e;gA)46H#9muUWk-}_Sr3?4YZJ?Uzf7_dB{>$2?(~2+3<jy<KhwB@X!_-81<BM$!
z(^=GECx4%$hjo1VR_LxcQ}~!mD~#N1urWUfQiz}KHS2Z)(~0wRt;BU|bY_YC8}zmv
zde&JiY!gS2Z8VK*G+&drAkxhED=FW?*(af!W6iu-B%9U;>RctO(oY)c*_+eJwE&v8
z&)$@Zpp~cWl!HMm<CYzxJB<xX+2U0HewqAX^ia0{eo$j{SnR%$iyQU!p7^+PKr0D7
zU(ygf8RLHQ{<ma<h~$q<<@d_oKHj1ebRLt`ZzfYHlk(w}nbV_b)}v1)Z`}8)IsVmA
zOmy!3H*7tk)8)^_y*xe}^Ey4D3HD^1S@vTZ?!%Ke9YMTvadz|1mSMhO;&&16g%DIa
zXC}u4&y)iar%r38%qR&rB4o^Xk{xbeHJWpVSWs^UnZ(0PYG2tei0j@Ga2X)sMpece
z=%rtK(nhvES^87mcj0Qh?KL`GVYh@?UVMQM{Y^J~!1yWT+X6$(;+N&CYs;|Xu9~}p
zqd~@#(Ys$JJl`Wsn$vI;9h%Q$8pJNUIdmA;#o2hx(8RAqvT5NL;fN(!hgz$`d6&YW
zq%+u156AWgOvS<x@!EfjiZk)wDeF4h1UiI>3_P(=n~&b4!=v~?_jgs-%}|;3h~!V^
zzU%96+{6+l{2#43c#8O&E^u_iG|}5xq}{Xa-4W?cneVWnh%a$lYvIYO)jX7+CKTSO
z4KO`CwHr2mqh_jmWBxO2>3k&xwSzHTkDmBk2iT$=|7(-MGIL|^DPQLBIs21yxQ*|T
z1AV-!jF*t(?1fKqI{C)&a?&Q_%N-iityzZ++m|i(KEuc@Kl=N&^U08nyH=VJv@G5y
zrfGwK(;u5Mpr?nHo($O?FTTG7ECsgzW@P^J=xG{O>VSs{p7`H$`u*|d@WVp#pB4CD
z#ooH0wQtX5k2WF>UyzTOWPk9O|I%RafA$jA@#UAN$loVVT{tEVhi;yXe);NP|2vZM
zk&}@+W3HrJ`$eYVhhcFIkr#RFT85o6nVQnUbs+}th|Vj`{MmW^??%j{V-pT`)Dcw8
z^uyWIxdU?m`(=LT;#C2cS8IZ<CF??NrC){J%Qi$jUT=zSy{4tRS0SD>m1_xR%jL|=
zv%uucP@)8LF6L5si&&PvGn;?VG$Kk>Pp3h08)kcr;+QU7k?%&N)7~Z2&yR54TF6@^
zy|h5YPvIy40?*zb+uGW?*<o11-}=m}zwp;iQ0m}vBogCCmVIJ+%KBSRh{QyQp%<}S
zrJ&LRw;ig&pfc9lt~xc85ULb7hxMJ@E}NG9yM6Z=<PDXGubtBpK-8X6#mU5Xktl}d
zgrQsTabaJt4?*dfLyev~W%on)&G`hZObM|rjX`L*1{hWRyfs6rO+dq=M)Hqu89J_L
zW2)NwMCNm6=*iKy-4og6Tdz&&!VggW&D8W|Ex3SU6Cy&Vjb4}l5`4=hEaJbhRBKuz
zU}JmHG=z<W$O)8~yplO}zKruSTeh8AuOFG#ZILtQtG^D%!5Nh50KjBuH#M&%3wVbv
zyG?t&1Rq?qLMBM+QQI)fJM}~}Ri9_x=-S1vNOIBU<o{dM`74}DgK8xeTyF)68VcIr
ziUte?n(8#E7;NwbcHm0}+LM#3di@cc$0v?>Fk3K+hUxkNfJ#%nZVK?xK4&?MSL5VX
zP`1-x1`QkjbuWUcs00d1(s-olYIsaV_2j+u2`S>=Z)zNdjf;pg<q3rq6X)-F6yLY!
zpIUyrl61S@Yh(FW7BkXRUnrys2rlsN=Tt^}YU2i8IT1NqaszJ>W~j^qSXREKUPu-x
z7d+fs78i=qRx((9WJwU^BL-6;I9?^G{t+ulGgK8X&3Ys-k1M4m4~M;|#P$Ql!pS|<
zC}Jy(oA}PNPpB7<@~(JVZ>Jm6>}O2^s#{j?!tfHEuR+Ae&X15#9HZ?!h-Bv`2*xDs
z|A|HvMe2nGXtoXoHE<k%hSS#p5~1DQ&w4$yjj@tSZ+lmE!oCU|5Ma21y4A)dQ(I{j
zzP1BCpTM94e8Y!$2!Ge4p^-G#pQHQ~*acNMLH|dGA&6^HcUQXd@;9>6+0KazfVYSb
z36~eAdr9!WBi!<9IuYsI_oh`Fz2CoQPMbWi9N{e;zefBEYPTST?Pgy%v5@>nHFqnu
z8%D0#ezdBH>8W`0@~E@^wrRA^<OjJEZicsVUw0qgfUYOjo86>7JL=8uIJ>qKFruNn
z{7^6cURgQM1H#N@9+)`vkZ!M^4AQ)MYH6<G-^i9A`T$)w)z6MthwJv^fe%s1LyC;i
z$hP%7vzllSNtB)n^h&ZGzoVV`UH@xZE<HWCdSvnB3s}W8^BcI1Z*VuMzs3NV>rMZD
z-^u3&VBJr2f9QuHZLQAX^V+4i%b&de(>PfUyU=h9_6Q{cXYYNpJ&BESymwuwr0&M)
zS8x9t|9&n$y?Oq7_rIGLXLHi$I7X*bq$e4~t$&#_Yt{JqJ4F_-dx1tcP}-@6@8hBB
zIFNXG58Z>hD87FvnAVUOfQbspa7u<50zh;&zG0mBESQE9p1uGL@sD>ZG0p8|ZDD+N
z;~zg`lvqDMQ-HaUk`6MXykA(MKF%~;faR6gfFAEH3yV$xw#M=S=?C=*4*#5&D)kX^
z>Gg^3>VjO;<%3rdw-Q5L1bNoP-d#?clOJ`y5?&&{(>SV6iTEdo0{_<182koA*?e}C
z!f8m0F){Jxei6QO&de;OGE)OCAJZhXvAP11Q^i79HI8T|;tZP4uodh<4Qr(`A<O!U
z_>tFhtU?dcpD&fXqQ?^Kj~+aVcn*M>8VEWZndcJJ-B~W+*Hh^-@enR7*-qpDi1Z=n
zdZt^I$fPrfdNMPK<BNonu>|^DoKCI^9;S^dT*9s9$1!5QORSgz2Nh|f0AGJ~z+*%B
zK!wCMQTpi;_6XHVfRKuq=5-R09%Xr{1`_3%tS}8!-LV%u0O)EkUZKj}d43m%hP6}>
z!Jc@?M>}n5he<7@(hT_Jb+oPqj?qz|vF!b5J}Yk>flVdobsMA)!yB1v-;IYh@W8M2
zF<O!oe3@e>do6e|SOXpkl(a`S<F2=qUg}}CfJWVvKC~*I4RjL{yZx(JBBtJuzba2n
z@>NSbyj?_-6yhXlv3nHBFzQ_^K&J)2>wke|o<S5m+ma~#9Ah1*vkM-rSO>L0Q__lY
zP<|W+;aM4-`Kt~pP8Nb^mP$By&X$$g3-DW|5+1NzJ}|YkX$~rg@TwABb4;{-DdVEt
zUN-XtzJw)$8{T<s6?P{{+ppd5Ry|iswObY>VDrH4A6%LCgY;04c$S^9Piu_<uV-M-
z<TBRN4H+b%X?Ss$y5H2We#Ql;jKG7Ai%<}~+&#71BkHV5&GZGV`>x1F1C`8QO;miv
ze9Bnvd$hC~2r2Y$rBFPdKrvVbtL-TPPljE=^&(g5o{jV-ugyj>XeiaQ<(=G8In40p
z%BBzR^#@Ql(E}Mcc%rXQIgMP@v-4y(ZU8vQ&K#=qa3^~}-0cFSz|*0jcC7{$#H7>W
zSa6U`gf@^1=SCO}PNM{0+H<e~E{oUDZ04i%7ua=C_1`@f+49fbfXVEly@M)L^>zrd
z8+Gt=nD=>IvR2i`kXsuPKCFmj#2YF7h#m@{YKnfk<jS>tiu{^1RM0#q%+_xdnsLoY
z`)2iqo?6d%k!gcc{{{qZw+)kh1dL!fOpGWwE(f315~%^OsZaO#pf}{|o|M012~sU4
zUWPN#nUQsARl!6U@I9FvLq9VN4Ys-VHk)w&wluVmhKRdm|Davf(#nf;*J9d%0z!Ji
zmZWpZ>SLt3$CAz$DuUQ3DkT&X6?zx?KAQ?Yb4FlWcUgQPa3`f_3M6`fLDKsxcm4>(
zyZq(WK5)giS=ZUPU<zI`v!DJ~pAZo7WYD>N<?(CH&vcMc?&6s@^kdn0ko_YBA2Y5e
z?CvD6V83K(X|JtcyyhsuqjUX*YRG?9GW$<H*dk#tm1&xBpXbw^+9alqhS%dw`09Mr
zbWO_$rzw?eRo^1TJ+kc~^|1iypN538N^8lphj^L-N>W=;!Ci;wAC+HQuIROZn8!QY
z8#T6jLPM8Zf1kw5_I8=K5txQ^fa2sl<jBfEUK4)TcG_jG^O74AB^@f<Ay2o{HT@s^
zB?iQ1Vo>km6z{~s(No8usqk4tEZ2ep@@!ZG)~1|UhF^f@pWcPY==VSv0YFC`-(ODp
z+j}HG=o?k?O{vsjV9kGcP{A(7#j|YRVv+#z#{ERA^}uf^g1Grez{ut?xI#HT)4A_w
zA9c5dTwwHs&98uk%^UaD-@!{h@7zf_<i7$E8X@p&{>mc%diWB+gxY28KNNlmS{MYW
z0PeE%{P~dkH|b>{{z_*gPJjfUv7sR9&|xGrqJVsdA5WzZ1>0CXvw8-#Nj{DozQCY%
z+#+{OaQv1yPz@RMCz+~7pStDC-x$iBBuedoBirc9`S~k{P#T&J3Ybi}Pe)>4!xh6X
z99boLSn=qeyhKYo;CBrE`{8GP%V*3!?|>p-j*|4iH*kOlsJ~Ar%2@t$3=ty3#6pi}
z@hy-{w3k3@F~@&VKCn;y31a_~%sy-2tG>!0W6rd*@?z-9*-w-Zh+ja(LBVqrP-XB{
z8f5hQ6C&5J{&$WcJf7xQizXbuD`eEfA1#*5CqvI<n%1k>wuD0Uz4e(^EcjfBw)`hO
zx7I@=3v;Q3-c}rstklqY`j9pykzFMy$H1l^5`w;hVpUGWM35uD@#?}dUtLFNx6Jgs
zH7>+bEZS*ZIADCQ>t8^GLCP)fSOMDR&{y8aV4mn4rlnWP;}E%Dd6?5z#x@rag@!(w
zIzg2q!Z+St*5f|f;o^8DRt%OqM`P{ka5maH<_24d8jp}HIn|U=M@v;tr5mk1i{WY$
zT=8GmabB?5TT|?HF*eNx8&9&baPzc*ujjd3w~pjax4%i>N3%4l=U@?7y|y#7E^De&
z+a+Ya^n$<Ro#BE5yc`b=D*aN0zOL<79N^j;C#+RiXwl+g#Z+R+<Wf<wU;&zIxKqNE
zSu9Y1*ZB@>67GEpAMzlL^bD*?ZwNTWrgHyW)pxbrAOdpA0ac^8`QPbOiR8mi3s;v@
zGZ}%dgdTUUPge8*xRhN*48|8TX5F95RsiS@?^kv(u)<71Mss||FXpb5y70CE<VKCC
zeM~(hZu^#4UJt_C?2UOLpvrP(%qnHxxltb(U*F>KaN*nZC_@J_^%(Ghd{wE5o$l}l
zaJbT@8)}@o-vYR0r$C?Rb;ARrz4<@_`0&BBCO!JmqrOLZW&&Fxet8zbnyg_{F20GF
zT|1yVLEC3s<UV59qj$w4RwSCmgDZM2+-oBq^_odcv}aF5h{F4%kXtB@`d;TV*gRDX
zTV%{puW6zfGE?m9*D^+0`gnSLe5Ifrm8<z(fO<Q?o-NW|gn$@Y9e>gD)hbsx6HRp%
z3FC-`c%r2Um@U?_46Y5CV#1SHeYo}{=ka2{ez6b>IXU>^_KatRUrUzfVD!~$vV>~n
zb5(Xf0~1YiD*rQPuN#H15;Wo$Xcag{xAAfWUI?0hjmXUpt`}Fv-Fv-63r6;I2@^s>
zdq}Y+=4^4yLY0~g8C0Y9UbrU~bl&3-5(;fDCUmB-@c@NPN?1xNn58N`mAvLTc5(%F
zJRDxL+DME$Nl1C_Y(jVnMTnFq5*&;>VM<w)_KzXs2mzK-&rJI_f3y;dD)Y#OrBmBg
zgo^O09ZQM?VqIL&vpnBDNg5Gdd!w?c64sm?UA0ir?EHqH;`Q{&cw#(%U@BQLcQIK&
zQ}NpsWHkAH{i+-OYlZ17?LwvW`9cQ$-q}_fV(4NPS%5)g0>DaDeen<;M&~ZN4ZrXl
zb#1APmffNU4liRc&`!V$I`X^j+`|}Pc$bs+@O#fs76ojPpj;9a>>aoc5Fw7IvKt)z
z2<QL4^LRm^@`cnZcSxVAPv2DUU@SR?A2eB3ImvYYgJvZYN;>>||40LRl#6Q2!Nh$w
zQo%R-^*C{(E7sGXXUMQ;>YDeoYV`+^H#4S{%$DCij!R|QjR?$3jSo@}8Up9@`X-sA
z`@MXotoL%*cCE^Q4XPMJxA9NO0?Op-QTK0~)mC3_>@9wlngl#=@k-1*ShnuiT)%O@
z?WliK0U)g+Gdo-Lb)#xaReD?1{%u*V@%V)|_jeZm3PwjwFpq!SCMyu$X{`>E>Y<W7
z-Acps>-Dnr`p0^O^Y!ZJOPSNjxL{aVn?8Dc?h}xzdiYh+d?g(oKJd0gYPolQ>i`qJ
zSHn!J>1FIU*f4#5_)#Fpuaei}h$@PC^tJ%G)^ga7gG2kQo2?3AsO<cH=@+d)37~u&
z7(6TBS(8fT!}QA#c%EE(PWb4tP`fAr{C(a7a7hv*$xd&1NLPMjsTyLXq@&#mS;EOy
zy_io{e&4m_v>s?t(Hu~3#=;t<NU@lWN~zWbfxc1Mat$CO*#Gz7g7IE2-P@WU3fZ9d
zzP#a5Yb@x5rJ5_WpsL(`Kq9)~{G#UIQNYF4EuDx1P9IWD@c|l@j4rQ}d*Sb;4wcQ#
zH=zZm;=x?45Tg=a^9@NW|7Vrg`-fv>3zEn0&bZq8WUR~@&_9;sm<Qj$PEh2uuL%ip
zYOR^z2BbQ*Z=N0sz10;q8oM}x{Q1{^g;|b^mfisM)nKOBFdCzXdtkifVuwBAHmklK
zee|fr@CE15qkb^y`#0Tw1p&2Jd|@vJM2>VP^9b4fQRs$-2Ysjn1zAO?Tw|0BcRl^n
z4Y5Eu!PpoxrI^CPTIHxCU6zJhRed6JpLQ#sBee6GUj}F_u?1jr=a{0e0djsb^*w)3
z&%UpC&S-APD-MpP@sdE~;w}tAnqtHE`gIcV{+7?KGQ9EBH_1jdVG`oJ$+13@x)dqc
z*+J~SfR#V3UI5Rt6w0$%>p}i`5km4%h9$Vu5?)-egL$bJdi)-2JkHUycYjnb>fdE-
z1(6GbMe-QL&d8eOD5Ww6#n4`j^(3bMqsg#&mSJOm&F_B4M(p?YA)kKz50k_sw64*k
zdzn9*476Za*`G0}xQ91>zNRxYx_#9!DzeDNVBJ_r?zDkPtl8K$$SS(&d9J(m&2fY$
z53Mei#^u;Y3YRkf%&hj<a=*cA^!TN|eqmeFW1iuxHrITiLAn(MoA3cM(_cAT1}3%d
zOcEZsJtJB&537zoG|s=c>LxoZTGj~vHv-vvC(^8__w*pm0jP$k&?Y`Jg0XqnkjJaZ
z_*+spWtC6FEIQiJusWx?CX<>HqnxUtz}l)N*1(6%bknqBHL#(fE<l|=@T!Dsz0x>M
ziL#>q@-#Z8r;XOmTUl`X7+o+nt{%NW`q(a&BpsXdHmEv;J+TWlI*)zKKblCU4fd@Y
z?Wx)b5;ehysr0Wmk6DiP6pe*Dw!XtB4pEw4J~yr?h<{kqdeq+<$pD!OHz9zHN8v`<
ztH!aLtsWQC5t2y{ZDT=tDhceEr<-l<ZOZam`}}f%wwOdK*7w0VCvqf}?%c6Nqp_5*
z*7yt))umto>_yV+Hfn~aEwla)vjk5&>Wpq41b?C^x8Z(A8mXxI6;NFoHun%;@B9c+
z141cFEV7xe6(&p{0&(5Ca&A%w3d%*c@e0BVN7`ooPsTTGHUv@TE5r?u6vNh@=~|U{
z{EGR`{J^pH^Fy(TS95|p;imgys@tbbl{p>XAPj;*suT{BZ*rh7Dv@7oM9XsWD!~&Z
zMF#LtppfOnp?YY=2uG!SZyERV62I|!qsTY1e|{bey#~itNcJ`<t8r<E`2#t%ye>Cd
zY7n6z(B7ZzDq7*KI|3~DRxL6sF|4Rnja5e+cE5_Vc>;Km_Af{&a3t(N08exL_CK|b
zAE$5sYrJ^-mi?b2k1F-H8ixiJVuD58Nd@v_>zT`XxjP3O!+H4sQFWzqjbZ6xe6DP#
zBI>bk1Jws#st-4&4Zc<%Y3&^OPkq$;!|*%xvANE%FY4n@<vTakCoXYm7wVH1!=uz1
zAK1G-T+x_P?wu6Xm{#tZzS%V<`-Gl%s-%QT@Zp{&&__t0N%#pt+G(m^4I~|dk&H>7
zRl|G|OlY|s|Iw&tJ_@tYc(kx-CKV7Wa*ydR<FpJiTo^FDB#8f<LtfI-SP4s2U<D{%
zXXYLs0H=~`vqW%P8LLAj0(Nr(MCR+#enR>)sv)ds!#QD_?mC2K`s0-K+K-zq>;;zs
zWX#1mzuXMwy5)Su9o2^s&Rt|3x0!YP%=Y2AUJUvYbi6mAXwy7nG%#b#+I=L7<lkm7
zi^QABgY4xsfpS-3pX9I^-`xM)AuJ?+M1OlH#d7=0-FZpYlYOtPXBS&qIe$FncF0zL
zXan*-FmIAC96fIeQ*PdK{!if2bqU1mvU0H`>A4;r<_Wzp^R(pB>ExS;+4^}T)VL_~
zAa0?+q2ONq4+(W!aYkZO=>0+??YsYNo}4`;qkAyDntfXR+5<X+y6^NboOuSrhIs;6
znNh_AW|nTYRC0<ml}1tyv;r$;Js87IS2a&&DejG9x6rx$y0lDpQ3;u?wIc4U?{@RT
z=1#dw#kyO+gV(JamRA3zXS}*f)BWXMPo<=2X6jO%V9?K!3>LxamWr!?O0s`OGTML1
z=?nlu>4j`2DVS(DtBktP`}9&Ew;e!=fX+_?Gd$uI$KgjJ!6(P+p7rjpGJSM-gtkxR
zh4fPR(D5bDD6Ur+rM3Cqw>J(&=Ie4)@c@z>fW_fbo%6@*_^2`iM)fw&lG4!}=UkLH
zMbRs-NQZPbL)2a%kZ^Iyys3v9pGZ)2gw9dscl@O+lf~1&b=QoVs_h284!*ryXwb{n
z6;r>5Y?Ip5tRG3w_^e^^=0W`R48g9~gxwpl+fyEk`Qp^L>|Q!J4f54AJ>$h@f3-!q
znUb1t_3Hu__CKkRcXK`ZHDhLb0ZQrnL;^b{o#JG({O94`r)Iy+&%E({&obi&%SI;#
z5?HtueVi_ex#vDXEp2R6)eKtbHSGZ0b=_TIg8#htyMV+ys2FLRRJ`!th0q?AMLuI^
zkg9_}COV7<eGtPYqT(L)R9&UEFHMP~h@MWVJRZn0Z?u0IkF879+WzyG0bPA6Sscxl
zI%L2=*Sf`+2Oib(6LjXlIwi1<8VKssYxq<RaXLx~ycc%#WK#GQBt_6+R|X-0$X83R
z0F3i$MG`Dn6%ypv>~lPnUyU?90v1vS4fDTNni>Y(!KNFC((IYnU$C_Tf<_e#j!g!U
z-Yi&?M@!Mnw29}I`?{b6l79ltc8}Rj*&_dML>9xLreTto8e#YcfEQq_V-_DU$mZo^
zG(B1cFl`egY7wG?;{i@kjcf~-H^2f#=Qz!mXYbU!-ZcNZ>(ltrn*X5pRS|xx82>I4
zYHEXNs(A3568X8`nJtdNvU)$0T^|)$$6|*i6;sc+J$@DBXp^IawEMq#Seqjeh|yJN
zy7*K)2iy|vkGouGW1FRu*u`*!|3lJ!2U7L;{{z3nb?<fUy<L0nEp+XXaqUaSwP#io
zLf1uhA$#N!Wn~mH>l&HKHIg#AL{SJ4daL{M{rvttf1bb2dA**m$CKTq8#2PYf6|tk
zUQHsdaG*8TQ}j(3fsNELwcAvBP&AhACWycL{cW9-_vvihSsS?fSLu7&BcKweE7Ekv
zB}0^qIaDvz13mVS=})TIpOKT92xT=8UQDBXX<%0mEZ@=!=&OUqdVXiaq|>CbT6J>(
z>D2tl5Jr^wJg7=+R3h+MY2xgU`eFX%^yf2HLVMt#dsk{W%=b_C3aW`83o6ropL^Uo
zTI&mI;ZWyTO@xT8rf15(i}AMKedF|5#p<u^46xT-XY96pS}$x;_O<3WQsr^NnPg&?
zK1Q5ycM-x&kIBUQd{kJ3h+jV=z#tO4$FT2Rs+9QSd8fMxKYQsI*weBw-)p3zQjMHM
z-b$PRIqXZ->FjgU)YkF5zyT~OmUcSuWYUAAVVeVWe~kMR4xq{;C$Sqs*o1lTlnyCE
z3S$a7Wk+Mkc3-HF!w1KL6Bc0JheDjVfNJ`&Nsy;FJ-S=rfM3e`e_LvaqMURz8Yz|Z
zu^1*$(4d)~As)<|uFvMxqIm6$%!*#GeVxz>lNAEqq|Ox}A#+(6MZB2QBwpJeD`cP+
zs+lS{uc{g|8QR6`vDE?O;B%v?UMoW2XL#d3f(NO0Y6)~;3E2ysYN}t=51^Pf{1e^?
zfUZatSk%l+qDA3>Rj-IZ^kbs9X_y9)o6Nq8Vc5$cKvJ29a99o5-*0S-Uex-^-YBI$
z)uBpk`-PH+2;&bMhyiz#zlb>3fc!6JGUZKax_42Rc9t^Sh12mtE``)1BsP{Es0~WD
zTIyp8H%vo*GJRB`n50(s!m?M%liL+gy{2PY{vxiX!@Tp}lPG|5poX5tvl;`ekY34E
zLwy>1qV?UD19qU!5Q@%$l)T^YXgG;cQ&B%lvO5IB#D~i2I8XA*W_tATt%v?0h=i3p
zhA`gPFidusO}wCbY^PuV{VF*v60-oORmB_Jc9IIy1+q;y8|-T=m@}bMo|Z6r(IN_L
zCHfx*A61Ci&y)M>^Pj_NDr&_w$RIYAaUP0<-n;uG5L4SV5ck0vA2#+{_oze5&AQ;|
zNO)c;o<IegG^qJEZ*=GPAXo~6^0ZM*N|1da)z5>ysBl42g1HC579WRcs7k1&tdwi5
zB;d@W=Z@i;!gPC4c<M_^qW5s$QC67uV8umhTf+b%oTKmmfMD>t3)<FbIFvDmy)I1t
zZJfBd#}qGZlUB;!8HJZL(l5WKCYQw@b4OpUBEsmcdl!r-iw_U$SRQ8%s~eZy3$$Ba
zxtr-o(`2L<EWM-f{gHP!&S8k9&c-G5R&iHmyfy93DgHl;AFfeW^>KxF*7zsWJ5P~q
z0_D)j?Z9Y2jW&@6kcDHmr@O3o7GbXFymDfWD32D6$gqs}VzpjxDZI?e9%<lQHw7JN
z2@yF>pl7-rM_1P!oD-o$4DWx!F1dwE2t(ym8U@NPxS5~jAb|)HOkC_SdJhh)5>}_P
zz+GNL-v_CXgw!1($CE5UaQa@V_DO}wmn9K7fz3G^+=7>bL2!Z2)K}*2^J%Az!;0(Q
zMIl({DF(9AGU}SIWIw8Ja;`qI!!XUCKWW0O?bnUNW`Am8&rFoq&qC+iE!i|r3rcnr
zcR%gdRw^!dj+K7-YP>g$BYpnNZ8x!!&}UR5H50d%ZRd8w`v9)BV5$*4Rd)14$3u1T
z@mr}k1u}Nm#XadnF+*p%u2jtNURq(65ibY+-Uy$Me6uk-<mBZ_NYEGLcoPKzb06$e
zH+zBt`EfzVcT%FAKD_#(Is{X@l4`Hx?M-?2C<m_P0HL?)S+H$;&J=l67+jp&exCS@
zCGrr*kS$L`oyLTk*Rf0tvstz!cXM<6iFlFH|5(^511yl}Xd@7}Zf&a9zBy>)Sj<Hw
zX?~6P5FIJ<h?i!ed7&zyK(B<yW&JK@(p2(QP>u(DizQA-%Fp|!fC&%0_qu+Lp~A_H
zJ3BwnF|jv0K1DS^K~2>KZ4!D4KZICi>CRR>ql9%q{2y+Qtbe`p`R~8e)a*OV#|t&2
zBV^B2N82BelBY}s8O#FU()LWK=3VwS)%yX;9Ej&<2#wccN!I!NylAoyi`91>6;~M<
z4|7gNf^_(fH{9iJ$jaYJ(|(b(V=E<!4tI1EgY1F-Z`av`og7XT^6TKUN;Q2N%nYRN
zvF@+aSPq%RykEj9$S0MQ3#ME0AHPs^lZL7;co2UsO5_J(+tOZjgybZQ342KYmuj@l
zglrrS{tN5nLBZ#8Vys|SL;$G%0Nvvz*lz?Fq@82U{Q?_!Wt}L;Sbk-X3pc_1EVxg5
zZ|(~52a4eW#TZ33*q0)2tCG`(6AjE{2}q)CgI(&f<*-uPdH^%w8N1|@u`Ez?xi(j=
z-ly+_+!xhsZ2;;L02@g`xO-4U0$8-%E2a&y*8s}S1K7Lofv`aKHXL*tz((x1xn5nG
z40_LlQ<=qqF#!93t8*+#6gUP4$35iq(Gw8Kf}$XFSdLx*)8wQiw0B5mWk}A4n>|X8
zbMpn;I1W0_$-V>^-Gs?3=*x}tuW=b>OB#-AjTnv$(Z&L3V;JWohLtUbj~~7giLZ%o
z2dLX8v0>Zl%WK)ONi5`hj2fb1@t~_Im$&EK=JA7WXi*FM5zE~X`m+%X%*bMp_v9g7
zHDp+Q<<(yPFmk2Fv0{Y1c|@aPFrZoev}8zX<%!EwrPbx!rrFrN*5Jy>aD>Q+8^B0K
zd(=0|K*Pc$_&CS+4$<#UVXxp24JL`+pzaQi<udunT!MqQ0j@YFbx2e(x|-e#F-?oY
zGil$aiAZ8Jm7(-Yu*jN;<bK362jHlO^!yhFFAVTGZ+Rb#ymb6-s>@Tr0c*M)juao_
z7f+v%IAcWslkQ+}hMGVsH1O`9p@%fX;+(@E5?)pV2*m<p^!0wDk_4sA3T5gj=|xgY
zL?M!Z{L;iDi+T`oT(BU`vpH8acEWac;_-@k(}8&_V(M`-jWS8LNx}To)chDU{J;VP
z&YfaT=RErl{{N-ffjO445zw>ai4N@t*;G?d#%nJxn!4>-db4%=c%R7xmOizZc(_|1
zxNH9A!aRS$BEH<T;&^m<?y4~P^}p*zR_JSiJxt<<7Ge!~H3b%RQT<a<=J&%b<DyW)
z<VMP8sv-!wEw0^E5?$1VNn%Gs_~!G85lsVkOm`}*z8kiur{s-Z$AwAZN3*O<0<@nh
zB7&u4B(`~>ur@J$>!&4jR7+OI02=BM1hs~eIKWy02jPjt4+PIhkgO!oxW6*ir^hqm
z0Q6Oyb!Rdjgaw?&LqA1|6r!ygI7xddBwZBR2!sA}3_>B%G6dSVYg7z-$xLrx)allA
z12fb{f^;|lM=I{@I2n>Nt8$hlDS_ii1=t_F`@U-<@Ym*dk5yQfGV*=$6J(K4G}QxG
zyNiXb_<$5gx~*jA%q|8XS!m0jU@N<7D<=vQ+*1?UvpsT7qDSRku-fU9@DwHz0I`H)
zRghN6vD2)y(|Tt2`oB5WDS%+69e5kZQo?nGjVhZbiFrwro6g?Q(%#6;-nf%q`-Z(~
zj=fo>z4<fyYi#o-1NN4y_EvlL)_?8M(?u3^4z{umb~+CBmJSZ8cpEndrvwK~j)QaM
z`?L@TmjMUYX$QAe2loN?>(loy_t;W8FvJpxS!vM+-mZrQ(AVoNnx=r$lQm#AsBM66
zG@dp_QLk-LWqeVk1jjZ|<dq5vtptTtg2GSwuzZe&>5hSQi@k9VnM*#zPS5=yD#TTO
z2;Xx^^tBh1#nDM{(J8z$CIRkfVwef)%`fQ1hX&ps)T&?+dgG~-|MO(S8}u~*m(;9=
z=S#iZrOH1qAFR&jR^sbOj=utz{E^PnO3v)x`%*27lG%Wa2bk=orTc&Tq&Sn@zt^>1
zO2Wv?htp7GQb8$>fia10>0M2y6H|#ZgG2#%+nIp`y0hohOt<hO3b0k{yp`f~=OZ=S
z66U!BM&KsCEdk%*o6>#<-}M)q`!`uTk3f(6Ac46Kq@^xWMdY!ibZ;$7a$0?UTl6v-
z|2j4M)d~KNC#+v5Wz?bhDw*kyB2aK?IrCRv=kUuSAdo6Us0C9ZOiqhU0J4+B&S4Xd
zIIt#8W&5qmhsuQ?Z&RLZr-(Pp78HV5a~1MBtYKPBlx5izzmnA8_sPRs$*yhJb++A<
zyi+y?@<$*kU+Gwx5o?8f_r9&tZ;7Vt?kV0{?X^0;7f!^mPOVg7fd5GNO(ev>;$>z)
z5=j|!LN^=yB`syM>%+ij!yMC$bk3|?x}xpuW>c`zU+{ZuPSXKx698LQ58I5^sEomn
zn1To~_%{lfQwPb4Bk3z7>&7#W`SI(Qjck`%u3#_S$ksb*F;9w)=hKX=2_oI=ZY<Xx
zq6m;f<jfu-X3>4kfEt6?5({r-(6+>QE-$T*7-U{uqH95uX8^R`s_S#a%=r?m#O4!!
z)xyJ4LFA*HPr+HYX31f;Uhsb#JfgJ2OJqu!X%<Mqn~&b<=x>HFXRW^^d?A6e+YY2v
z<dJ}*U$Ha2`0IToXPmWd(jlYJ@|+>(I%%8Bef&D^qK)xiNx@@UMytHExm8ApXYS+D
z{;W^(<+N<-pK^6=dX3wiKPfP=+T;ln3WbxHOskp9jeQu`nE3z86KC?3l-zW@<zBSH
zj2!e8T4!^A$L#U1T2_M1(Y=6?i^*;@OC@m1Jocf6CcW1BWz`%(yINLvVylYrD{5y;
zKku5)Z)smK7Qc7dPVWjax9UVX3Ig~29G(5mxh&CxjA8Mce@Wo?$31Qt{vYDl!XB|j
zb`?e~vSB`Mg+2S4-~AA!nM<|vO0$85axbxMa6n?_4Z^tbix4d7FpuF6DIh*~!1tFo
zN^VDEuZSxh$canhEJ+GWT54kDUpy?94=oWvtGts1roEA0PQt~THO~s>5R91{%s5F#
zY{g2vfiFHU4RYq3!$+LC4dyEzPRtcngNu{6zLb?tI+r&Y@;_SVD5K_<@97rK?UU>-
zYtH*#B3Ar4Pj$>0D570fUo^6HURIOHyRT9%F2&y(T0Y%VkzK~q-ca7BSP3Qbyaw_P
zX51fISL<}-?kn0Et>zKQu6Xq|=u2tPOQsOXGu}%053``kDoMTpvyg?r;HR-as$0CW
zB7#0O6yG@vTqy<p`;RB4_s3l;KFUi!{@3gwBrE<k_Zwd`@UP(&0nxjYYTrw=_D65Y
zXIg=2V!DLVi+js+>NM(rZTq|-5Luckwg97iwZNk_+k=v%LaVULx8ue=c`;NA`4re3
z&qjX^K#-yOPjrFIW1vWkrWH~=336N!Ry4i_!XbYwv+zg>-`GTIHP%2m1)1jZXkR^H
zovUTf^e#!1k$v)1nNO&8`N{QdksY*9V7u!C%^@{ZL{%z6jalf|V?3f*hyjFzOxD=a
zD#QVVOU-M+cNM9xKJG<`aCp>g$6;<Yfi#1Jr5b089q>9sI&w!s%pVR6&BN7|M2rk-
zS3E@!;kAj)N2lDx(|Z_-=-7dO##N!JKK^$st#(MDQ?goGAZz2c*>i=XovI&+X&I0B
zDZoI6hg*xXVfyM}=IFo^zn$MLFCYCCZTcfAh0UN_N*{h6Q6r^VVVj-MB-TK7uhv>7
zMB)>f#p$KQv-QQJUBojGP7S^0jX~<gaWcLC3AM3AKLi!0K9{Nq*1gYMeBDGc$yTz+
z>s38o($3%K7N>x+^qU8tn!%r2Q~6HrPM%=JCG2;iMXK<QFC|L#e+$<)lsAf3HZ}&O
zJrRLLfA5QWOj9arDis?O1yn}FJgskdE*Tjn!P*+?4{dQ9Qws)3Hj!IS8prr;fvnxo
zb5pSeRi@;g^b`|e%DH6|6w}mol-490mF;1AV0wJ~PjPlm`qlUPbM9Yy^=HPqmibk_
zx(4`(PalBe&EmLN_OCLZ@}D1@59stW{PJp{TE_qWlpz<|ERrs3ftvnWe||kc;o!S$
z;Z1Pu&&NMqV!zn-a6T=m{J=tpZ;{l9G=8C(KOzCw{z1nY^Am3&R37(u{(NibkHN3s
zk38B|t@K;{)ABsrul+tIEB*QRqm^Lur~CBIQcqlrm;5$$ykuL;jmUh38?l_=JNVXL
zkMmZAIh%)qOhzK{pa5Hhh|I7T2p<hjI4ck4`<X4Du(J|#KP~AJ9=>VNWx=AXk4ifI
zdmL844z*W}CAU*lQI6sz9cxcRW4pfy*LRS$1}1r*RjA`p|8?j|cYHfj@=pFcwOS9P
zvDx_9a_x(1L$UJuZTt^P`|jP&z0ccMTK-_Y|9Ki1+h*fs1)6rsMpelshRUGN0{>K5
zvfNlGFTVZja7y$9<DpZ^oFVS%8-#;T5>=$9`pI$C^fO~WnD_`*t9p$i66G8pZ`g0r
zFsR6P9KDaYdX4O5cEVdegLYv-C*Gxvq>+%}W?|4bw6%A{c=_Cmyk*2EFD-3pEhLLB
zr!K2_WL0Vn3-W|YN*0*Q%6E3j*SNWufjeGy_LR!znu|#Enl?^Oy`6qHLz<nNUwFUx
zVd>+i<(1Vn%4e{W$`^&LuUlXt`R8Dk2_fmy{p1B1!O8FvaFq2g&wuCzJ+49gM^1I<
zW1=VHsNo}_=6x<R#}qRuU-m^K;4FT%O@Zr&1Ta0DpY=9_uD1PF_<Kag!3r!Mzri_G
z$dolgt88axDM9aEA~Q5ATr1pP6mJWWMpg-VtmFc!^}xdt@ahixd}TN7NAiS=c;={W
zT#dD^l|>Mf%Xp%GpW)u~c{(#u#PH^wA!{~%Q5PABh9AagVyheJoe=fbGp9hiCU-vG
z-|#^%`)69-Z|VdQw~RPdI9IXrDHEvc8DclMJ9#?Ijj66ZWUbg+?!NhBZMyH}&(Fl$
zS;Dv9QC0xd^14LJ{D^=gR6-vs$?0(TmynARIcwNS<o7mdz)r1)kZLG8-`D-{;3woi
z350tACc4s~3CQoxu9ul8X`GX?WN&Dki$r4XW(NxLNBK#%gY=;KdHk%uqwiHEf>lmO
zqIX74R`D#lHr34MX0?KGUx3tW0AI)%RnmVpwF^dUHmCQ}z#}GaU2Rkj@WJ5&ChG~J
z^yy!iB@;`^oF!o;>j;yHr6MWnP?#?_Lcen^%OtX1g!OQG?0xi|={#SKyOK5_FL6iK
zR8Lo}r-lz***U9ib2~C>Q`G*zYOOSi#Ph0V!>Q*ILVZ#`p#=a-OAn@qMcxP@q}_E&
z_$6Gw^Q7X|_noH%KP6teH(csOF(GXt4k87J(MND0+i(!s?nO{DTW%Yc%}<jw1ZR{%
z0TI>>wth^~Yh`*Z2&pL<f;5Imq>}0mmu$5uAd9em>III$b1uWCFt&Cg9>Nesz{e^+
z->Q=0O1ia(;O1=u@H)|Bt6(fL3VQI|C#g*>M!aMgFSiEh6Vv^<s7>atHBEATM*ZAB
znmfNQ{Esb8>T!=dymacH_U*^APnrL4s1Dy%95>gv%uPqtH&VflKV^j#?9WL=CQEi>
zlU_?T69pfjkt7g8oXn&TxgC<_KEd*swrP^<>5GUlffvN;w<@=>$`l*T&({$%f6sYG
z{|7e6fbXQKuu6J|1h2#l0QSKf`F9@cO5e--dYfr+AaW2o-_*u@&p+qpfZw;NuGawT
z#qQvxmgiCP;@XzZ9rKP;S#uUw=uVXG8COTaSvuBwQ(djt7hpN$x0v0$d{QrjudQvU
zsxL+A;$Va$?BZ}7tRB>`&8nCrF5k_F2W`ia^<`&`6_eyeRZyqHnjlvMyf|*EvQ#|c
zXTsI*!EaGb^7VjCI0Mv3kMsBPVZ5vyj<^nTAn}0g74Wy}a<~pN^??gESuB@DENh;H
zvS`4SZ=GQPmorEWH8ImXIw_G3gatz}#7qps9VX_aB?{p-h$o3r7pM({H{I5;str%2
zTY&xz)dL+Xpu-qg;diBuT7dnGG}LFF@E~P%QC<K<fJ}s<01A1V^0Y#%NMK<4&>$Hd
zrgdS&Abn&2)hFQ$?RiYe{;4!wU-0frbN8$Q4E6@w`A9zmO5de5EBgjt3+}Z7ZkG)F
z3?S(zH+u>eqeqcadiYKPnU^j0X{OF@hE0VR+bZ<xxh7MlZLJr1D7V)n@Ibqp$Bh4d
zK<(A&L5?MGQvWNvSDPP?in`y{$=%Lq*iw`aRI?od`AJ%+FWACqVO(l>XAAVE7x3*S
zmX%jwR1R&&1q~MkrSIf~NU`Y9N~H4C1X9w@P{fkaO~3oy4LEP}hXvnxpYVJ-rwub7
zu7qH5T93o=kXQmzrqNGpYQpMv@8F~5@uwQ?oOH4Ge-T<P?io}m&Wa=LwbpsX)u%pK
zOI+A_8{x!OFW_jYSp-NTm8gy|vbw>FtYgF_>&2SQmwh^ZqEXi%f30vnFs0_{=wm9l
zEnwjhH_m+}-^HeQ(%zTX0c-{d<aosG;EN<eFw;TT3_5Yme$h`X>6$QO=8MnwJ2ZT!
zN37?|8lcStuw=}j=Euxy(b*_4`x1%<!)Vj{r?B|en<n>jDTm&Ea!c%Lum@#wX;kZX
zd+zkK^9<8RT7uH^E=3g73JHQzuw5~dTzc^O=W{b<zwN5|o>6P~IA5tP>Uf&-EX4oX
z^>M33`_AcSp|_`&*Z%x|Nu+BDe-pR-mF~2A+_ELIcxvUV)@e_+tQ;-j+Uj?g)83`&
zmRm2&-F6~R`^a>yF=N-(j>=B$)^u9qK1{9s?mZniNC=I4cnV+)QPp6_1h5`m?}zXH
z;^D(JN-2@mV=vVEP6mGBj<a$Aw=-Wa9mv=7#!tb=nPZ_6N%z!g7sD`T#Kz@=dwRT|
znaeS3zhsHj<|q&ynn9fvIS5C!E%i$-sp~cPymcpdTl>}$`^^S@V{PXQ2LR(=bR5MZ
z-_i-*%$)derdVHbk-|B%L@8uIepXUJ;pHA6sn{iMD60wjS+{#p@teMY`ju`SIhT&2
zFT>ilge!izrQ&X4Nic0dAGrP_`1|%j2Gnv}y!Hc7n!pNUcKae8#l<bC5duY%^7cB8
zXFZ8g>ad$78?rd6P#OG_K0V(~cCIW!=x%*`dyw~`&9n4b<A%c7?;+u3+*S0^PyG0H
zm@Indn1dW1Llr<AQ9V>Lxz?qH5#PQPD$zn1)mY>H20I4;Av^>DXwmGhL<bUr1OVY^
zrh8<zKP%h&`f(17S(z26hE~0!yB0OUsr`Qnj~*GlYGo1t4nrIILIz*8D+ZTVxO9QO
z84s0LZ$^OPc_0*yQDW2V&-S8T%j(dDWhF(t7aajK(O~>C>vUHxfLE3C?hrhkrrx*e
zJ4CwBzBWnxan$m~%GxTf(@~Ev8Q1_Yar*^ybx)DieQfcl5KUrGIHr>w*pb*Ex3SFQ
z3nL9nVKD&Z1bQ2Yd4RzOO&s|6I^f9+^ETQ`D~*O=!7L!Y1No*U0qDh5mH#Es=N2O$
z?q`EkP(M8d`cn7-Kp9r#&$r{fIV8C#`St-UJ`KN8`RG>twKY}Km&5PXk5B4_iG{Sd
z|9s!HoIZV-5Yjl``?cwQO}t~uPb<Uzl>Pk^QQ{-6T1xMa8v>~$j_L(tc?*P^;_m&M
zQ(wU20~Bdj<)f~t#DmnAI#<N1RNkvU-b~{BH=6wO#?S6Aucke+SuYDa%FADq)-02t
zZcIBr>aa>&Bm(bkO3Ina_#7W06=A_l@zAcNygXnOB7zW%PV$#WARw#DmD%HhcxgO9
zgi)tETpUVDls`xm&odDU=hFZ~&Nm=VNL_(513w_H>wr;IfyciZA4&#LFM(LlL2MF9
zob@d6kgL*wD<VsGfKf>glUT*6lHZ~M8V?OrnDAXFT9(|9ZqgO<Jmk{qm1PtZTSA$X
zc$#e+vSX6L=+wA}Nf$4YjB**yIdo3Pa2vBp@jy8EvLFhF^Et#T#_-dUl3lk`r74QZ
z`)S-ZF*<fjkN^pb2|Yxw0Rm*3)<sO^vqks;QxaqDdg9VM(aDF0z?5zsM@HpHQ{UhI
z&{;oV=5yN7Q!3shi(A{=|FP(Jokj9`aX%?Z&l*Y@E)F>+r0I6kFm0#l7@PBS2ucAm
z!{#$eM<e~2f^U&-v@9Xub6K4BH@}@`{}gqzXv<<tPC|r(q>)z6-{=L%Fch<s-#R^Q
zF3`<5=l7y-3Wth(SI)$Gj_V;{W&6I?I!ICh2m=7;7NOPwG-Dm`;z&?R9iSX5C_Tpb
zp(H0345C+%mO+XIX+W>!gTw(rFappkUznaC&P(-RFFj7;kV;y?2S-`TMW6x828zZ$
zIZF~&A?OFN1MMpuwp?&sVUjbH1dtp@m=L`VN<gy6fK2RznO|JGf_bcgdDRg<7HP_!
zU9^A+M$ku^-KCuRZxG{i09$Mxq*PcM&cth0SPz6=Qo&vz=r#=aofGoUG_w$x_iH=<
zj8g%M$`^~3{$}$qHtpfnox(#*;q};D#7O~|u`slwNH97H%6L~Q9Kbcp6%+eVQ_@2D
zWBL&=NU^(k@}MNHl<JTPkvUNkq);r1&KH+t+AzH@Lhu$)5U4IG<-ZM(Zc8lVD)o->
zL7Xdk&4nPzpf=_5k__JGQ2>hx!Mh&|*;sPH8Cq{KR85p~k%tjwTb!^_>ax?}5Cs#~
zeoe%rV#$oK$)zMk=F0hkl6otg?Uu__LZrFPEU*w`XwG<7ga{HK(7*K7{lUR`Vv^`a
zd=wlma43j2?sx!c3#Tz87*hGL;~%+JS83_9-#p13e=aPKL<`OfQ5L;r+7ibVol40-
z;w@pZA(QWL3HBODv2XS0G3b*b)3<8K(}(bItl)TirI0~&88MDN;J)K!_@k!EOR>7*
zRAgu8v8H})+5{)Pf>U^Sm9ZAVl)Cyq;=O<H+OxyzaAZDjZOwUuHw_Kbp9v~$DM4zN
zh;g99c*Nc2wwf!(rLuoO@^J|+=1)wcpEyV%oG30-2a;9Cr4TtB^|J;VMo{K=eGIz3
z&M33?X0(4bI?TDZ=A7e}?x#BEI3%_VlJT;Ff%Np<`6HIbrvd?{p+Wv1dg=q$@20M2
zua`D%in@Jm00ueI2(^hy;mo5lt<d3A;%z25)X;c!Q8Rc(Ck@RF$sn0+D>{Gg3qz<H
za}!#jNm1Vd{U^x*WhL>4YVZ$LISS5)%?=F*i5eOz2sSAwHhbaX-*Z#TAq~TZasT|F
zHw{2<l%9z>*@C~D2-G&`ouwT0Qf~x3Bj2PN8EJwZQ_*oev!#KE<RaFBL@`=`o$sx5
zL(SIY=As4QY^~4XAb(}RBlJO=&!K_|MS*LVn~tHp-AD^o+1>V6kg2<|iLDw0`u&tQ
z4e^q>JYlOHz(f5nJw)|uy8x<nSe^5)OS^g(p_=`M;(uzg*UKL!0e+4G<;Z4>831hr
zq+kQaOaRKF9+LzE8vk^@-*RIxF^VXp(it}h1Y~?ohFg$Yf|vOMuZNOfIEu_Elrolw
z;$AkgBsr1_(A9eOTDVYbn^BLCHB1~$005qXeg}0T@Phuq2yereMhc+KxE5~-kYpQZ
z;z`T?Mwcf}(3}(^fyx#KhAWoE#AksLn}klCdOaC?zOcLmMud-N>LPm*)eTzC^?Nw*
z5WOjm`dVPwR1Z0+TNl{<p2C`%&}0!Oo$lJ!uA$#wzT9&yvdQ)+eAKpokw;*bhoh3S
z|0a@YY_7|Q43q*``Y8kDM<d3cGOjFh;G14J65%fl2S%lt_mS9!|6X!;^fz5D;Mjt;
zn_h(zUv*A&0ifmHhMkI~@NzUn8o-@z`(z8+#YyYFRtGZuN^gdS-6b%%5bM942T3bL
zyj(U3Bm@ihQ%jlBOaUTaKBZF9w$2ZSy!M9+YClN6(rnQtymsDx`eDco&^oOV@|&E*
z3>?A{ROc6|^((qFiLm<$Q~@f&lLw&QsZ5s*>T(j?sFv0a4bf;8s$MkI41uM!4Fv<<
zxDkBFHp6H@^;L>1<_Vg{Os3x`7nVhWJs^&z5QZ(Asl2t}*2po^o#&Zv$Luf0Y%Zt_
zQr<KY#}h-|tTl~SmW+J~7WorCWCXbOl8ARx$aF(ZIJ~_V+FW#04Y}?$dH*63Yawjm
zO1)q+?yF5~rRwfMHh{?!>O;4a>S@Z+pyrUym)^7-6@!y2ZeJ#}=j-Tq$%7B7ul~19
z{oxa6`D+kPnEy7AgXvmJaXYPZ5*tS#^nOHe>=*N#d}>rk_vwde;dY4BAno<_I)%Y!
z1%m9$ku8~r69Es6CrPXX##TLTKwdT19GUao<5s=wcWWVGEmUJ0ito(Z-bqEa6#>yF
z6?M$BGn14vQe_t{jT@Zudq9GRgI`us2K4;nl=;nzYJr4_xhpW9RkjZm(@l!p&(_P5
z5%WQL9B#SKtnucOmbB14ZhE(&oFB~9Me}untWFX0OK^x_U?nD(slImZdEVQpmG=u<
zZpyv9)<WW#4QjzTC__?zSXQ6Mkyz4W`pu+#)f)c&S$_C9+ilx1Z@yY1mv^vmz8uZo
zITw-<u4g)+l_64Y&Qn-8@)c)|I4|gf)N|xFbMXfS@_D;WH|Zcyne@FCNXikd10Lzi
z2MOr^V59z#^7X@=j_Jer55``C<;c1SS*Dx>!E3uB3N@b|=r8gXd=Tj77tNW7@cd{T
zdF30W?4#!jWc06yA#$F~!|~Eh<aP0)wZw~Cs7Xxq@;S5Eu_w)kJb{0UD}8*Q{(CPP
zb3^oGB1@#d;ilK>G3oVK^?-YPCC5fszAgXti%R#^&qwdyzCMm@crNu!A71R;8S_Pf
zZiBu-UpB?Et+hx7POm<tufPY=S~w!!T}G}7X&k6&hI(r{d8^01P*1Q^sKga=Gdfk>
zuvE5FMs3Kjw@}e4Un^Bs{pO`45leRYqU82VRbEc*;h~1sO*N<Hk5`k~^bJ&uzp&_8
zXjOdCoCItXCX?CZ)FIPfSpUg%25x-GCx$mc52(vEF?lldvUB<C{U{|(cU2#-<`wTP
zS4ya%aH7Vanm0G>w!B_d1u4w`y8JwLU(&lDH@P<#0^fE5t%~cwLgW<1S!U>3KziA$
zp@h|&u4)l$TkA(#uFcTszu$}=$)iKHq@2Dv8*K6TLzix^W!1bnkl3*r>6x<yR)%9&
zsTF?Cf_jyK{a>!AeCzzjx7(}g(IBC-S8nQ7pxa5(`TXl0$pC~Do1K&s_@T_q!AkSf
z4q@9AdGZVNUej{zkwl1ynXA3Y-&~V_$rjYzh9+M(SEY<^b?m<1ulw(YnINlyvX6ej
zrctPGN;deXPZa)s2Rrz`pLF?#U2TRcOd}<%=H)3&U-pelO!xNbZ=}?Ev&`%^j$GZL
z{8RT#G;$*Xe!QbeOx~+Z;dT}=Fn);w-8J47{<-zal#BWB%J04Nz`4w~M|3Ke<?vl5
zuU2RlO#N%OGb@D8-X%1^_R?(QfBrC#otfTF<XfdKm&H+QF&N5yJ}6`58xP$F>;Ibk
zxVBVzyn7Iszx;|Z<nu&vKmcG;+`{6k*ly%i*Iy8(S$mrU&n8a-fVRtGi<NPP)pF~m
z<r$d3`Tlfh#PTDR^%~LQYwc+xi#5c-dLqi&@0s;9$;SG?#-PN80YVqUAm%nko6`FI
z=((d1By}XphBnn`q!x|xJewx|d8zkb##5{KR-Udf8`a-2R`%z@TQ*RRKWyvg#gs;%
zf>BgT_SrSS#T@y+(gRybQM;QSe+L~-bGG^hMD3q6UAJdb?W_B{_*wFEtJpyiozs>>
zS==?Zx_?C7e+Qp2OEZ{_*6X1Vr^u7*Nrjk{vg;=dRN(boj0%6A*;f9?DBWtCodOr%
zOn2cN--lj`&7OxPu4+}YfhT3Fw_dMD^f(*87(R%-s1TS=`2(7#)v_|=rDB=l*EKdr
zsnD>B*Zq@_S5%hg;u92A)iW?MF}r4IZFBy8|M<w(!_(W>KQQ=4Sj5ff+p%{N?ix4+
zy0|6fJji=kSX^3OSylbG?rBp>#%cYF&X+xX1Fr{%-;7OEHMdU9zyI)YdG+)97s^)Y
zOvbmLhrdov&;R>NdGS72^an5<QYXV{nxAV9rSszqN6rG7%E3qlJmAHs=R;cLWR%ZQ
z`$P(OfK!O6Cq;ziA(@8XzT?Q&TuI(wHeMAtGGPxjr((;*vRYT!Fv8g4Sh02<pc7ij
zwrVOk9nFdYvb|6`18%9(pDQ^zh(MT5KB~+Ik)}CBwMt?Rqo;vPLgsIMhr2Rh?7nC2
z=Y1nXh}^z8F?j!o{KKKNfmA-}0L8iyAO5UHZ5$|rg*#6hsmChwfk{v%o@RbM^}8MH
zc}(tJ(#~b~@&kn>6ler2`SQJ%=U!PltVKxsj6V|F1(m6-H2w_fEJ>!Y$r|FiU(HS|
zO3)S*p{t8CHbvL+2u{LYM$Eq*)SNW2F{aRc&jp@Xl)L4HaL&ZR3=B|+!BK5R#ag#_
zaq=`1!O9b@wD2jGU}oUFa1tG4LV;1wQVJoMMUM`s?gG+q{?rvU4)<(g#>8ZGOWwN!
z>0-#h0J1o=6}<2qXn<fUhf<9G7)MM>&8V=8DNvZ%F~&2Q<c_oImA+9;&%<VW(12q>
z<7yz|^~k|N(YJP9Z$%dEy^}cjwKk?TK6oi)3pj~9o)-T7xasPZ)ho)hv{@|nrJ9Av
zC>Y4&<2<d&;Bz#SQ5J52*09jIS>b8~>jqfl*JaNOTY5d2lFBfGVJ_s!LkXq`+!5Kp
zv0aRKDT%tKI!r9)1_(L|8q!8zm2Q_&W0&>3bh$X14atjO{_z(8aEvw?$5oDd1{R-d
zPEQYP8u)!ZD3HZTN{|uu9?s}Oyal+`u7h%;mU7vB2<lI$X=5qAiTey>j3GO+PITTH
z)y<N?j^4d|)#=j&Hzp!v!EI<Ah`isGo>A9Xv<|*d-B^pSx`d8d*w{fnsjm_M_=g8N
zOzy&R?=TyK66_zph@gy}VewC4G1%~_XxS~GqneOc9zyLUEH-Ofjb<a;`1V>HaIbVH
zoMZ6}R$W+f?$4?Y`m>YEvgW*5Wp+#dN7!Y}9mTIX4egmC${&!_nVH4e2|IlEFUH8h
z#-4jG#qHjCc<q21C`1C|FqG<1JT==aA@;d5NHAVhKWXZuX>MuuL8muolr5uP2G}ra
zJ(ab43NZ1}LqpH!6%<R?WXiEkNab)nu)FmsSimdh(+!THR>-~hBnUjz<8SJX2PF^U
zgv8RBW0>r363*GhU?Is;I^lfrm;EqUDoIrmR*4#2!gouE5eYowaDnZgeS9bm@)R;B
z;f30!;A;lVXY9kh|4m!RdT`Dl97zo#oQ!wZy>mfsV?^LtDv%)?8{zlusUXohafM3&
zH0d;$pM<;nP!C9hQ|j}uL>iy{KxG?J(mQt8lJKy8><{-bKKi%=gDV>|urFyMbdMBL
zzunaTyI*|u3sY;1L5wGD-mx?-bwuXKk1EFJX(Alq*0B6TzJtgTDt2~3Gaet{uiRs8
zp<@!>RK}AdPh1)q#EAW^>=EwMX&~6Y1AhH$^5>8U6|>Z#uJKzzmg(YA5t;lfFtS!q
z95*gVQd9`bueG<wCJm88VTr;ZAY18(IlW-^@_#9fm@neyM|t<4{erPw<0caS4&iy%
z^uN|RiAVtKH2RtKWi(BC{+fnkYHx~3<vIXJg6mYjt`p&o#OJub+hB%(6~=qVW`b=f
zgO#{JN7o_{$8Ko((<8ClpFU1gMl*;I$r1nvNvIJ@QHD1QIwlyJq_p9PKtvk=VNOs=
zks|;~L-ekXIu$}wS|Jo|JarqqmZgGhAgnP0<Yq)&s+b5c8W3E-GIRT$T-wz?BpN_!
z3RtG2S~g~zu@QbR*v~HZq~HH{$@`SjB3w1SFWO2r!?I|0{t*ly6~#`*S#k|N{znsN
zl*%{@wppk#xm>R#_JY`XArMK8!6ZgPQp%@Mg+(vVplq_W^Xx*sM&}dTJD(Pw(hD})
z?Jb+MnsYz1Qh{J@fXoKN=QwJkYW6SuoM-;vI$ELurmGEVJkm4&(RL7^ZowE592mVH
z3J(_1=P8YwiGM}G3LD5aT5{Pt<YuzEmAW;!MQ1t*A{T2Va)ME^=e^)@D+p8~JJN>-
z^UC}reKKy!5wYyh2rB9d`_3GZ(}$^@W$VKF+@S6PnOciR6<8_MO*#^^1VxIwd{r#`
znc^(G@k9t;U5h6dX)&wBNVVww4c}{x7<i&(U;g72CW!-lmuymrC5AbHX#r$ks&dEU
zSRlNrbRAo=&#iE<sV@R)3#4}HH`LI(*`Br`l43LfUb-CF+HdIH$HYSDLp38By;z;U
z`{%~7Z1Dnsf-yux0~o^4gGl&mkAgA41|L>mND1v`!P}Ugs7$0h<`iGQYlzj$`X%in
z#&|A4F=5yD90l=oUY_Ipm$Ab%9<nJ?r8yGR5>ft5+k}r{aMF4DMV1F~lSWYDH48uL
zBHXomrSqDv%9>&+HKYG&7i2n~ny);K?8m>)<z{&FA|Jd;CG%e^?7AALW?c<uew%yr
z{=Y-sH*YsAlHX0(Br3UCT%lU{bY{6#a13~Bf%SaXJ<`P9?qXaSn5Ri&bDm(DDEiS~
z=jzeSHTtrr<#gg*iCZ5Aiz-WXaS-2LGIHz25DbGfM?|3@qHMpjlVrYfUq;};`yC1i
zry1u|V@tP;nGy>A8uAEN58l77S5t{T5PjRXW_aet-yq^fXYI;3{wJKv|1l#I1_QZ;
zr*tuk(2Gi>ytzJCF$asjILsL!z(g3aOts}=!s9D56s^J4+Wc>a5&pUnWkf{MKYf&K
zDO|35E#r!Ug3*4@6yU@R`spU7f+91+Bd<Re+;45Gxc>EXqt@6m9`Y>ArNTg=w<@;f
zh8Tf3B(n6U+Q1@(L8BfJS01|}edXkC8sDz7xIWFAT*~tTH<<tJ&`&!ZRJGCx%kFRb
zj{e*~Qn~-rLuBTB;x2zwHA3)%{!;Xm$J$B7>z;!T!55=K9v^oU`IjQ@vK;HiM+kE!
zKAc`Xk6e&Teeqhi+vB`#yW##OOT3Vbubp1S+v${(j~$Smt@3rr)_keK^n!a;efE@H
z`tv4%=o8xm(Ln}_t84_K8}*ul?TQZ7Zj2p>J2!kplAm%784T!w>cQ_BvO3Jk&03}n
z#SdA-1FUk(EXFRvlHEgL+GGglC~Qs|&L8egYxLKm_1|Ubcdg_hEE$-G0vlddN@fD8
zVW#BoLnAwYtKwGn1klG?(611R-_wfiXJMH8@aNW-|Gm_ChSV(K13_)SMJB*{3dZ%{
zQX;LudE}YRA1sqJ@WjhT=^8sB(z>exv|+oV;3*V}O&H&=(N&<zV(eBr$k<Jz%J>3c
zkcGHx(fr5ohEp_X<33>cD^y3`(JvRqejpM``n78a8zfO#=g^%u)7lUyR2f(r|F`O1
z53XM1!uoPy*}30y!{59jF?}{<I@uWhO#-b3%Zw__*<*o*iZWuj4vfe_e>e=XLzjV5
z-SCH;)iFVK;HwC|s7wDhm65J}l6oJ;YUSHq3%n}{_z!N1tXI>5Zi%&*Znkns-ybIF
zL6CbU=|T{59I#E1N8G!#o}j=U@@9i{+?{6~#{|s6sbcQIEw*?*TvmW0;TQlq%8Itm
z&_kmQ#!7Bd!GiiTAoLbM6=WiIduW%AZk3*78d$N}F59fg)2WEaLQ<{e!8h`9IFGpb
z@_{}Z^l2y|fe6@99^`ksfVU_!WpA^H3~>p8r{eZ9BPfs>D$z6oUlu{g`iGFRt*~G|
zOgr+^fsMfVA@E{$Mxl+r3V?*<OOCd~T#sPfO2RMOd3WHv;s*5Z)9LFb=sOwtphU3<
zG)zBIB-OTb@=%iR$T64Mv;;49Zr;a!C_SVkkv1nTn8)v{1mDOPNk*_FSj+e4Gwg&Y
zIg%Cl@5gkY?a{M0akld60YVROs^-|MGBWaG%mnP5gaEbh%w@jaRu=MZjYb~8fQ0m>
z&?L5V3ctu)_(?QH=4IlzDizhXaR1tHlJybEHFEI8l!JUgc?}j|8Kz!IqT2~ah%>^Q
zZ4@Q05ikh21vv}*1tdSi@B3ujkp)g8OwlN{dgJ;XEMozG^f0keP90jS;ZYACnx7lG
zukCbS(#`ImEX%D#h|6+rvka%A{&lbH2p01=L0?oe2dQ)AhR*7+_UD@b>M&fha%p;`
zRvq$+okjldo8C+FCg|ofEd}0kvYp&p`Ye{!6coy+S$1=NUBW~|a)IBH0VSIzf9Izg
zdlVp_36@3BRa6e~>bNO)Xmr)W@bS$Z!+MAYDvz6B%7ZLoKI+dV7`DDRSx8m2s!`ZY
zG2^m_{jmd!Jki(7hUAg|i&q3#Vw)SuDs}Sah2h2@ekcGfH+)`L?f|&=s!6ul5*I-s
za@p7J-aFKVS~nbZjLb^;=Rn$t6l-?!lUGKU?04LKq|Mf*?DjVn4dN&}TB~7St`N8V
zZ(j!??8peneST!sV=?9kSoLWJP>b0z`PlAQq}Y3-!K$8C4z|CVt=MiPpLt)EQqWV5
zp8Pa!{BzF!=Y90@HtCfejGLgDW@nQHa9|5}d{FNY_FgKQtwN>KX;108b~FZ<b4|R!
z$@xSTcw$+^0!+6y;2R#r3>(1Tqf4X5k7OW?g)+{$jt-CQ214(-qnwxLjIPqU$DR<M
zbm~c;=zfWokF}Toq&oNSZL^<cetsCdAgYQ+t$XyOFgp;qGvbkkwaa01&cV5#%UsWx
zjhJkQvF>*l05EAbH&+TNR-_KJQ{>{(f@Po@?Y8`FdnFectakhcl?xJF@do6AH42de
zOJRjdY~Kvk02Ak3-~aS~&;`m;3knW_$l!otC<s0iwjrKlPDTM?AzQmtXEtCAS%C%z
zncD*{O`{VEwTfA-=&`_|nj9gA|KZ+9`E>T6yrPIXs8xT1+UPg_hiYkaw{9%|u1{18
zNK->NA;J7)0tTnitLC||2wHN4&~`rO{y^a801DrZeBX8F5&(blGy-D^{@N9K?Z~Bv
z{msGz=-3hBh*Iq>oN>WHtO!(ANGd8z*eiB8v(rruj;Fd#0qXcQ<Kjq5j_50>=&hpA
z7p7S2=M?z9TG;8Lx8_(_tN86ajsU%vVL89Uu0IHw{}ys();g6&O!OM~-iX07_TbJU
zmCV~W>7t{rzl`I1cW3xRgu2k3lcKORY)lT;<nxi+lMm7AJ5hEYQm`*O*t_GHG+0hH
z5+8i%GsM=|6EF@rcdQSkoQvbqRAopXLKqAjj`VF#ic>VBZ{In+o&4eE8>iS*6z-+E
zpb@PKlt5-AK+LhA6ij-=X5`=l-&A!E%`s^)>?#HeNr4Op-O8LG`#}kXu1G4=CV(vr
zZ!YsNx0b48am1eXpcbH!1<3yFmF>K<KB9rR0yDEmT3gAaP2xeM4afmTy>kqLLaDMN
zDH)g0_wH!i-aK5vK`MLu|9tNje}8`{M9V1WGbgDYW`Y&I^wM)cTxQfgxp$vrJ-cO7
z<8;Rgi~W9vgOuhzy`SYamSuJhw1`!*%BHZE-sRS$%{r2^>w(b{)6I$IM2<i-8LUAD
z?_1~YYrwU7Zeg6I3^g?j2?aW(MH$dB8f@OpkGWyTwgNCyv5z?)V@hm9$`TAK+Mhn4
z#3V%LSZCpYW#T2k`)eC#kgpmhj$8#VxQh8Sb7nOQJYoyff0v8){Qlj&urh~#?Ny}{
zTYmdTSsM99DXu!$zg)Uoey67Ns`F2m461)yo(3f`ojp~~W|gvzs(y74dOW3utF)GZ
zQ1U>tv~{d7&yX;aO^C&4$99uxk~0By#jja2^1f=(*C+_qi<2K@7RJ#wbGl)|fZVw!
zev6hgKHlzDtPjamynywu=}k>0Zj30-S(N)^D}WQpx8*~#X887%SkvP&PgYd#=AUPW
zk&RXNfRnA0`NZZopGKreU~2ECrtFqHWJ?{cd7juj`v=zmXl!zM62%#5wMpOpC-@(v
zUEsRaW$SY6cvBVN#TP(FUJZ~9+rEtID7;s2-`Mxy6U>U-O82Jy0q%w1Wu}ANC5UVt
zXr*(!;v2yO8X9UTj_b}NG&Cd$=e!X&MbR~sxTuhD8Fy%Nuk=0`r1VgXLuLR#S8QKT
z`ALu`u)Dl3wY;}sx%;VSZ>wR^6|Ct}TxL58(M?1MmG`e2Snl+3tldHMBLD99y>1`r
zuN!1GPGh89=UFXa;TL4S=%b;EAG`}3)VUm0tVjalhh#5?6t#y{<A+~Y4{2Tu>uHY|
z#gCY|vS{~@*l53Th=1eU|0az*;&yq*6F(Z*Kf261dP93GI({s+f9x}G%s^0#@e(^I
z8s`gPZbAx)4G|~ELP}n*>QLgBg7+wD@&RtL5FmbQP;7%{A`37T{i3x>Z=C7lcmrxm
zb#T&pP{JK3G34F<4L3a?uWgQcn{e?igP8fWMydrwA1X|N^l!ie=vn24VKh245?k;@
zD!EO(`ZJ>30e*f2IqS@%YibReVVetGC!OxhAw=f~JxSu@vyDh)eNSbrFUku>D!VRV
z3$SWbUx}9v3)Y*eEcvoT<li4xLa&$fzBg#-2H0v7;Oe$ig$vL8qLFXlSoTHp;NoK?
z+3y+nN{4V%-|&k<>{T=tY!zY}`%Sy8QvWT^fZFg{C2}^Eh8zi<e27{>kY;5E<nO<*
z+N^|Yr*Mp~!Xy&b&S~@&23HTkm$GhO*6<3?@@G9kL*rUQv~ktDX(LmBv5$yDcA$g#
z@66zDU=4MTkuP%EkFFSsNL2VMxpP0kAR)Wll#lOc%uoRHUT42*ov(#tzvM%IqM?OK
z<&TnOM}M~kY0+<*(CsmR9lgeBEnw9RlyYLYJ<F(|onUjuH(T{8=~2>lW#so&Q}!4O
z+OAjDd#l?I^z1@UV7f*-OfT%MQaAkhSo)9sL!JZP&1V|l0;z4J75@TTZvgC3<m>Gl
z(y5X7RNi&huhA9%it3ynZIvfJ30!nHZvAEgdsMl6FM!t1wOj1{Tpi7bpBa~IC(pgm
z-GvYWG7tRp8pJO+^IjdZpC^If_uTkU(~riL5{MP>*BW(+@r%%}nmGOAV`%)D7u$|N
zMxYH(J)?~MJRF1W=7v(dv+w%gzaF#Pqa415oLSxpd_p<WsnYbtPpEq^zjX;Uzj`D5
z?v2d5G;3d7hbR}HxsIWLf*y;oxBp;5?BPCd&WgRmFA_Zu?w)y2!>A!+o>*R9{%ql!
zxEPr-Tgi=+5_9)!UpBWiTD0Z^$D&;^4=SCa-nw#>M0igP+xN@Nk0I9ofvIWenc2Dd
zg~X)fl+?6z^^MJ~xF<-iLq0)%^tI_1d@23i{k0)<KK=DAk4)Jrl=5nMlbUIR+M+wM
zt$6EN8oRjvf)EVpZ8Ej>&rQ3B%=!A$EzRtdEt~6m)8Eo*$h_{bs7>L#aU7d_pFuYu
zyFVl#po2@1&|Ib@n46vXgAUAYK|`r>w=nMr00~ti!y88nuP{$m=?af?)}uQ&CXs0y
z<E6?<dG>EEyCH%$10o9b#7>VY_0v$RCi)OmTcbJvk_i@d{J1`};h9z~Yh)F?!Q^Es
zQe*n4x8(4Rv6v9XJhq{+)}m~e`ta8W5K<~hK6`KX+|B|0l+~Ka`@P6=SEzBgEa^>?
zi>+{g?yiucCr75R%eBGY#_!v>mLHrHP1nOP@}N8ok2B5OPsDhnJ*JJ|OM<b{aM9<|
z=Il%KfywndA)KEbF)a5orKOf-7ZUz1=F!<3iL$s_(DsjqkEGty6U>fQxRGM*fojWX
zR>Y*i1vX61&Z<Qcwa<^fQf3}ow<hYuUMo=xl*;`!15ZF$H7j5@&59Wq3QXH+eHgk?
zL%<rF@F|2y?g4;GvYS9mWH>(kEO{|N7QnIh<PK56P`OMhpx$=l7~7I1DmkRaWn@;S
z0Lh$<VEun=-DOylZ`?QVC2Yiq(YcN8(T!ttI=UsKOHu(*x6vUDQX<_br6MB#(FiCh
z0tTZL6ciN{6y3vd-}lSs<@N45t~cj-o#*%a`C*+I(KUAXr0w2_O<_LjwN<zTt2!BG
zs6w2}kf>B4f<hvaYf|T!2y^a1#CZ-$<>i&(+a^noM{k@)?xI1febhRB`iP**cHRhV
z<IRbf6Lh(RJe3%j$D48fS3XcJk|K4a0b`I|c>-cI;vwM~BvjIgbc&5XK`?p&Vj=YX
z=m(JsvAJFG(w`gZO|aOiC;0M!-6#CW8$x-$HMgPtG?AL%{-JI5i#}2fDV7=xd*A|F
zEkI?Iwev>mHJ7!`tfI}~>Lgb46~oNRh6tRrv_QI8d-vw5^kvO8tq|1uzYOC?Z?0Y+
zYpO}$wdH2=rFcacC$iQB+UMBtA?e!>GuU>^pVszZeSQrKp!x{g`Cb29_8Q7QY`o}d
zAg_u(c>hH4Er-X6^E*ZiF%J*_rG$2cnxx~%rZPkVnX)Vu3K@}pct~Pn@J-^ncB7NK
zcg_Im(K~M<5|(~lh0+A)tKvnw>N-Hu=%&2-fA>hs$Y>}FJIt!5ys~v~VCR!pj>IoV
z^#X=@puO)Pd|@}hBsQU5$}XUfdV;r0jQC5#!IF?d!#1^h?;@j&CqMqY7M1pFVh!Ah
zRR$}p2*Tbc{18;-Hz7PLFi#BJ8~<Puqeon-PV@MA?WT-sJkmkZ<ny{h1T#!t+T(t7
z9pe<qgE87PN$G8laHLibx?|Auv$G>y8;O`4oZWo%U)3Ms+tKu=uTH98^nJ855ehi1
zoIk*Q=!?7Y@0(@y{M()H)7IDbx6Fl~{Y+jFzSVH_3m<>I@RGDCh0Nlf5)R269yA>x
z&pD&CtjfuMXYLHn3>ib@sHMljO^lmH_v5W${J(_gxps%XLSMkszt-m~Gp76a^G>h9
z6P?JzIwq{VZ&AprHcaY7i6FcHhAk_QHY$RM46>RYT_k)YNqjPa=-H7<<mn&&B^*K|
zsYFJ5$^$9tCS!J1nni1XQTMZIxG0W!_bu^`;y^xp*VKK@7)8HVv&FICya9>ZG^v8n
zN0K9kRF{^4cZ<GdI(9EJ^1K4N!8RdRb;yZ$%$PVKQq0Pf6azp%*LID{EU^?pYQ+DC
zV`V2K*w>&4RAu%UcH#6<Zbr#fa!B=;=vYXDkzvbo+p9{-uP)=IgC0(C(hcYJ^rr3m
zYNl8yp$k*X-U@8&Ld^@hH2Sx*mCIK~r8s`TmPXbUk@@B-F?MQJXQFC<u97vWK8#Sp
z5Ci|@T?s7%(8WZ6&cG6xNV_o)8*3Nm{Y@al|J9TVH;ZkBKUebP(=SUqT;b5^L@}a9
zpo20LI%^W+_&}Y(F@f|lb2Dvscdi=NkOccD0%YC}WzsjqScL>HR&1&?nGiPF=_%$F
z#a_HOt8e3mxu4180KEbYaBxS?bPc{5EtBHCZIu;B*1|UyVDyM%1(8WzqX-@cS>ws)
zh3S)RAW{VT*x{%$D^>6Of+Qv($7YcGKXkiEo{$ZRq}Dc=Swx%*u{T(F?Qm9n8%&&#
zYN!T2>@Mb08ftWTm-k=tiy@oKyTc6EBvS7GWPOmR%6OPl<2-JC@oKKeXM(7OBl^r<
z<8PcyQ=>HWh4lulvlZLw?lMlmhA%e7LFEGOQ>~mj)Vgo$4*O1<r*A)6P8@e=3Wa@M
z%)>e8$s7?GxTx=P9jE<)=iy|01Q5gufc*Q-=35t1!0wSM?efm;`k!GJ{}#i?4Y9+a
zHh|a2s6%<_Kp=dM_*&@qeK@plgDqwWnv-1Ze9IZE=ZKp)u<YqxjPJ14-rrzJ(iqLA
z1})N6gSI1qf#R0|S#IrxUwAOt?D?(yNiq&R7CD!Rw_j9(Y)B#28xuagnY`l^^1|(7
z!|$sA^jt!kL68@S<_&yTSr1G++719d>fo~)Nh7LlOj_l=&vcvFRNG&Hp(T}2qq56+
zMXNJ`G{^n&J5QA*Elz><bVUU{@br8|r5?TOV29qJZE=_jL->1{N(-+K%5KRoL%GB+
za}YmD(KkHl)ICCRMC?q9A||XNc6c`TedG$m7Nols<&k%X_kPx9l=$lxDTW2O9+xfN
zDvj+p4y9M2tR+5kj`5zDfRxUYdPB1TaC71%5G?qa9W}P<m!-r>36Vvw?okKw5y;@q
z!hEiAeN&f?Cqr$7)kkni@-40^*Iq!G7*6rg!*>uSVG^V?Lnh5=|LZNV4pm)DF)?S}
zG!$S3$%`@I&eMXXs(M2kdK#_k*A8DeI&^~ngrO`y(B*1hRk6bYU0dfKyQ`m4o6H1g
zgB2(~_e+(nRq==PbO&?=ZnFi9CR@$F{?b?WSbq%fGoQWkjI|`-_d^RVLk55EV&}ED
zFj2se&I$CpIN)78UKl)2+WB#%{a{zuQfrFkTU7G()TP<CrxW7b7c;Xs?>JpB;LCZ#
z*d<)E<2B*A3M5_AI_v+kbYQe>!c(C9;V$@RAYh9>Pf%Ky0tOrcOzP!Q{$l}*Tu}&Q
zGprMv*}DG8;g|FqTEta-0tf4lC~%kEbiQ!f1Au%VUnb(qX_vY;B=a5iKIF@vb?}9g
z9rTH~bTJi3w2XCWlM_Z*K6gndDdVFHAB$W~Y!y0@mUE%p+3uW?*Qh(#NUKa{qhaY0
zxY=5XiN^cDjct*7%Ewwb1Bfgl3|%-0Ah->|gfvn>Gwi=xl7Gj)w24dl`3!Lhc%Jw6
z`ffT~1(`MP9X)Q~x;*MRH2_%cx<}T(*EaKlt@$p83UM-HokNBCPKWxvE4z(Qt<muU
zDl~NVZIzB8?XMqoR>Kq4U&*jp%~7p?I)rQ!1fHB$Q^(3fDb*kCS2a{gjdC6n&)1nj
z6`eL4a0CFzH&i!}6R=Xq5efiAl<$Pua?p*jd>IjNPcuT>u}garvZ>tqC^1qFvt!w2
zXqjO%QIUf}9|sm*LVQ;oqHlf+XvcL00vMN;dFs7G9}4_>KKJ>k>X2r(DQfE@)(`v^
zgdgtZ06XK1u~YC~936_7)eBIGGo!Nyz^R;iSUQRhE7+d$`0krlhxKPEKGK`7q&7Fr
z+lf#t1=38kBT=`pD?A(`5qF72g0)*507jiTu%XE>&6<06U!fMr41yF8b(k3e_?<z4
z$WkC@$x`oYr87rwQOR^?^nx`>stA$GDqG6NTNTNhlCC%@<243f3U~m9$yr+)t%KsW
zi1T%l1)E%fd3xXLloOJ`IsiJ$k#1@-o$r=fFqP+_ungVgeo7rfJ5ha?s@Dr(ti-`9
zaj?KyMd?yyhHV|PnXZtp-j~Z4)V2+bx1}t7jk?E}Xg>9*I1!CZ5%_|><|PBuMrO<R
zBAT_eno1T*{a{87ggx9T>4rz7jW=?qUhRvo|B5fY?6k_GbspaaBlFh|Q^q)i?=STF
zB*9cDN1wYD20#_^C=EG>?*KG+lzbeMp5abb#ndqr(~@noU=~R}Ut7MRi>X^0pcS4{
zqLVd1vWg7urND6%5COm#!+xAiEZTs)i_y2(7#3d0RzEX5VOxP%;viiVhQnz~7oX6n
z51}Ao@hA{?;D}^0E{+pmMSxB@8&|8~kj>1#vXoFc)407HR-Yu6VoHQsleA7iea$Fi
zTs{X!z`p1t2VwSVxMO%f02X(yR*b`GC?bO;yK|$vBPY?PG6md8QH|M@t_Dm%KE@d5
zy2P1q>R^_60^+Maio!`(eqyHM{KBg!vVKi(0g?%}?4*Jem_Q(QH+k)ZQ|!q{IHf7%
z*u&5&2iO+?KS{UAgfJum=o4`>M@HBBf$?+(L_JBVvqq90fb1A(<1Hx@DtR${4K>pw
zz0}0<RwCw$;SzImHrKAZhD1I_I4)D7X9=?s|FNyiPocLdXIx_0T{2e>jdBmd?(cG}
z-St#yCaUd)-{p7bN^=(idVG*9_1|OFlHyyQneN4LB<@`w-vgFPX14CC9*GywE!ew{
z3%<1OugS@-0u+uvca=@grFEt<Cj0s4fDSl|)B!Vh{e`fUnI}WyVdUWE%uf^#(BjdO
zo@}A#j8A1uHva$~qla((o#LdJeC=VYEf42?hGAeL8>n4c>`=O02?0JTT|t5Pd=b#t
znO1p<tTawkYpDC5eoy~Uj}X378q_;D{D58JQar#w6L;U1wMR>)_dXm9lMxxfcm4Ll
z5JIx5LeR;dF<xy6OP>upT0xy5=s*Au*YGn(aH%4q2@q-+FEi2d=?!Ze+MYy*qm1Bj
zVRFPLwV!#iH+$9a!1^`;oGgS&ev%VBnYlmNm=-n+cy7!$)lFYFNuFBZh_Wv+@86$s
ztfeCY0ED}2w4qSsq^uZ<$Os6Vn+i^s!_CpjO)i8kNFOXX;#=hBpVx+#D|U!31=7nJ
zbXy<HyN|&FiO^6SL%aQQrd;|vSpapPEiCNy&9If6us8h&Z<IQow}#SL3cSUTfiV=g
zK*l@v7vMw+Y^H)PRCb;H{``5J27rTk0oYIFsJ8E@T;bd1U$#?A-`alJ@d^JBEHCym
z#5w%SM{@YCbjMC+_+I&!y;}K%qt8bT;h+1ze7?!EH~eLPA^f26%cr&QFQ2}Ap}W2R
z{mWO-mBWR7aN-6XPwOG(%6IVxU!|}7(E9r0_ZtXyvPUs}ME~ot&x2j1D+xLP7*iNJ
z2Jks&A3}?eVdEq=2)%%~Pl-5F26Kk~`Cd5_$HQPaP|<6sC=qbfboTuU&HDaZB|s7k
zo0KOmX1aqhgrKoFnEMN0AOIeUJM{sBj1Eye061<Wl1qOYn+_vXt-4H!%3^=Z<8Mc0
zStR2aV5xbw5ssQzNB}1|l(HmvB@`w@Ur3~1M<3^51BjV4P#4M+2P5M2NH|!wC#%di
z_N<P#--nh+IF2M7%LKVk{^KupJcxc6Bxx-8y=Alu$ACIuOUJ{{43+jj-Rwvf?!_?}
zD#D3wXn_D`B#3+6PxO!!63W96N?el^;-#PB{XEK@hT}2#<X1Fv3>l6!)#s=E7b);S
z5N%3SmX<)eeHXhNC7yeK@n=yp8vph%Bmy1r?nB8&M4f{#BYQKE^U5+8#Q&*Su{6`_
z4!~+UgG?!>XDE#lR3nS{G%fO0s#_9e9ut#W9M}XX(iWo(y`v6Z-$IsxL>6DjWm$#R
zT;j3l6c72K79FjgREiV{Mv4N9IRH^{fJTb+g9RUd(O2CnKyZ3K7Ymuuew9OfM!7D%
zb?p1iAp^NZW+6fstJhTGiy_uhq=Gh(0|k;jXuA}v-&z8E*D}htWU!h20%Ov{y8Z6L
zgEs(KLyVq&>v!O@_-M0=BeS{~_Q<G=_->60P@faB%ZX)uKi#F>6h@lBm?@=KBL!^7
z1JZS~kg!Sn0mUPrWEJWtceYn%ue$|{pyQ;Cmd-f(d|>j~_=U+xlgI5ZiiCI#(g<xJ
z8w&%VjE_nHJ+-D>W6{|eFfsDvviV4?`}DE90Z60pD-J2ql4pjOVU*>`&O*%q%%+nJ
zC!5pZ<0$=#(dmm$F4F^+Gy4zzY*_PUUC!Q)_&!!tcw{M<Wr19tsxF<@d0lf~175@m
z;vSMF@xaIfJHBp^H2{-uE)aSy(XCmIY~THQIK!~=_Mz|0{nDS>b|N0gYmxlFBEK$~
za|^@*48EijcIO1A63;gvEY)E=IGt-NFv2HRyhBn3^G04i%^Fz9ROo6^#?S@yXH1UE
z1tN`)4=4(#xL-UqJc2CQ`AXLk3xC-x<*{K)ZDwCGbVePFk?7dcSe~cI5S7$kU29?1
zh%$&vwm1<>>e2c)0p4X+5hST7B7IryCz)4~!F_C|NbTEfQcs5xE1b=`C}z+_yW2!l
zo1cKQ<d<GoEp#asero7G_2_)6kfPdEYp~uGTVD|(SLA$bt7&!<#k8w0%Z|iQ4cHcE
zvP%hLr1s?q3l}k*qJiWJ>$uXa(^5|b4f@iX-y9v#?P^9+<%^`iniHPpz9et6WWiyw
zgP7+Lh{OT(Uwm;k`FYK<?qn)nu)p}0jV4c?3OfyUa#O|O>qdMM-1zQeH>IZUC_-uC
zyEpgTl+j<l*3j;7z%XTn2`v=~hvo4t85NZcs`;;+i^}=xZ4d=xni>wg1JB>o(hoO{
zck3so-D|U{da9ory%$l(j=#g-%!W4uz0Pw1J3M>CFzS|6vjSA{P&0^rba$+gUK`oB
z)_cRXB>zR$y@V$ff1ad;x0-wx9<5Znk#GMqW%!-@bB|?|1Mj}g!af>wEbu@DOV|0|
z)R(`&t}Q<1tLpd(uYXVUVR=tY+R8^Cs+Ul;w|4)Ww{&WGhWTRN`|aKRl2U=Hd@ru6
z(O;POydn`PbM2dEEYR2s#D!*!I=y6LAdq>{ht}x%O!!X#Z|#MI^$EzPo5{!;V8GKW
zzWT@Ap{$?#b7(Y9wAgT+#<Vf}*$Q2Yn3cJA;|-PpV<*COBU9{~z<V3PP147z#MO$w
ztGVs{x$3r?ms!~S<afmE#}n;2+22efEgJngEJ&FT8Um%iYmZw8T>UDQM4o%y?bYsY
z)8}szv*RRvw`=-Zv6Mey^E(?4F3vcq_QXflwG<2g7l5f;r)|iz`R~2Pirf<yMCpad
z58h(@v#tEW0jRsSc=O=R;9<)%8C-Loyp-C^-rI{}Tl@cbi-PhjfDMj1k=EAr1vlns
z*X5!={YH>eFeSOynx9z=<#M&6VVGh82_Kr2#1CN_LG-`xWhw6slpD>jbD%UFO#dtD
zC;dD(kwcaa-q8MT(f$j&lBE<fASA;oKxeSYik1~Gw)o&RFMujfmsm;|^MClpm*h=F
zut+<2@2M)Z%mq8UnYszqw{f=%wB?20T&K}9aR`XYs^}P6+PnLP#v~?Z7gg4`_YOdc
zYF3l?j`l~HI0c#gA~f?coPMU>L3Sy(i|;mcJbX6x;?=vIgX6J<?X#mZIkl^a&fe$S
z*qAtd@4%|Y`;P|4UoOA@@TH2Wkyreu_+ve)<ZJw#>6L4@(sJ+IYkDvN<)(kQ{_*QC
z8a)qziX%gRZA=FcHt?y;f_lk3Hk*baG}xHUXsOMXagLzwO^D0O&CWbAt181X+a2=~
zL6e)oymlWf%T>ePj|T1S^qB~*h?R9tyoRvi6$JtL9LXx;`q6qRd=8)NTi;zJf5PG0
zV5~^?23Y=iW|wtbYaku@i3np8yA<c4^eEJ!Klb4LScTKP0}t4|cP_YgEUPn(BJP6Q
zB)Rl<2@Uua#6|LSB*=M=SGxQ#8@zduLo;M3!aF2jF(-lP4k7DFg~xxXf^KThUW(~)
zd!sSWN%WTAG_dB$q$G4&8iz*S*-Yf7IfD)nRS$@e4PrfcZ*})Ma35^Rt*J{T{*<3<
zDCAy$V-@`Ic@k3pkoqbTte_)GV-ddfFZAEvzcl*Jg0*lFObUCt1}d4`Jq``s=fQ12
z;exWmBo5I~Z_pMUt3G}*bA<|p=y+jAFy~{cM-aC59dI`HCx=ijQArS<MM@_U3in_|
z-~O7aVWG+|F^Vwabm1`2r;A)7KNHm|>NFBDbw0;`4f!!(7F|&+!}%(ygj1Xl?Xgs@
z;prUb)<SJU7`QdOQ?%)L^dVHf6PaSLv!pi(Bpz4;UEqrFl9e)$)mLP8Gfe?@7l1dQ
zjKgkt2)Au100^^>8+xqub*2!;JQ?K$WITa%cL8w`-rZ<DUBE@-w1{5GdePe>RzcLF
zXhw-F)Dl6=+KZ;o2Yp#CI|#pYLIobL$zCO1_KY~T40$l7<~AK{Hw3z(>*Wm<9S;Tr
z&C0OqNobuw?_3)*{>?H2xX5M~12GhR8~k#t*1(B7j)YLXM0gGVBb|(LP&N##aTQw_
zbMm}NkK!K8=sHn_$3I22!P0<;!gP?<eJ8iVi^iHeWx+jBo!o|A#>w*Z1mJs7cduw7
z(io8Yp5cNh#&G@T-#svwVL1AujFu%inX8-<pU%4e!+Mmx_95mIFx%KQsI0Jg)u~!l
z=z2PG`EBlU_X}e;zsKvT+TocC0;nz6<01kTt-^|i`Yj7!_CyoKeJ-;aah#^yEBPB_
zpXQNB>xZ#iig^6>zv!D?89f+|Yw*Fp)`|h+zZy%@pMG2B-+H*^!4H(KDO1VF-ncH9
zva&O-d+pt|w6yU5>?MbBbg2@93{ZlXeiFRWZzu`v+*uZ}{L#;Un>k%01S<Gomb@YQ
z60~))edkv7DO&c`Sqi&Qg-ha2*)=_f15fH;AA7pOrBEqGPY+jSj3J32^g{z9Nxd~!
z&G(g~4@alg$u)T0vedAXEKaQUFbdQ^vz!x)UY&{1H+UPlYXV^>;=p{nIh>`A$!r2)
z4&0)6I<q^&_Hb|6!|rN=uSPO^Ri`%cY-IoB@r5ox4s06Z!&dwOC$2W1aWOIZ>luEC
zhK5=ALh<@+<Lnm@Md2O`{1o~Iu3@0_6&Ukw5x-V_ITY5a;UYTBl?Lbp4^5b~mcPA7
zmj}{t{N@G5i7-p4shR8Rr!QK7KzOz86Xp#?3zcCEO|rXJu&KarK$JuEiJA4VRVG`g
z9itKs%GgVk%3q)Wxv;GlxXy1$Iw@eSYLNQ)XCROBVh<f_?WfyV205=Gcqo#5{rEFf
zrV{`buLg0~gNj>y{X|S+$vZ(rX!Pm14}`08kV2HRX9|OeQZq=_9+(8Hn3Pop^u3Ok
zJzvDKkU+$=`|rjqOeqB<PA&NYkp^?3^k04{o4wK41!FVE;LED#tkq~sH7qYmIGRdR
zL3yV5Ne<qkOA#RYPFxUUAHTFcMfp*f*_8oHfnNwBnI(b>Mny1+mQk>D5uc#ahgLw9
zDVy96fhMTF%L0h=X>B_CP41rpUplTW+!?p`<<j+^WXe#7Klv0Y{;Jlh=9>o2tQo?b
zUgv0Y*w-W0)o!UFWB97y@zKjhWmjj)^**~vNzplG38HA<Z_X#s`ml4z&028b`)g6E
zDm=j`+k?fMUJXm?+9iXOm*yO&9GAP};@jju)lHy_s&fg4?<LhLAhVa2dz*~Hf_w5@
zJYoVNe4P|JSM;QWQ8>r_l#bA@M%VX0mmi1ub;t{yU#b*Qk~w3n@N}VEnHyZc`u<A^
zk7@X0I0yj((5Dap3jhF+l?HqVm_vtwDd!KoLc;vQXa-3oL9_^)oElO=lS5I9S49^s
zCc&?c6V%Yh=opDzFcrs{${1S8n_iSRAt;y<lr8Pl2~HXWCmnk?oVhj5$ph!?Vc_O%
zddbh+E5Onxh~OV$8yMyg65$da<sKR986D>x8}Ao?Bk20A;2WfHVsb=MYE(-4)r_q8
ztenK0yqkFiDIC1nyh6A6PzAywg(%T`GV&ejTAi9Y4=?BsnOl$xi-(4W78e(HcXz*i
z`*wPIdj9fsGzuxgR2CslUl;W})Kwghs59$ueX!Dgb^0LTzqNpvU|r%%lu}=|^|gEt
zy0oRp_OF+|;WGal`9pNSMM_RdHBNHmMOpd>2B+n_bI}!;7vXaP^76~W?Mof995a$@
zN(^hND%08=YU&&sNKMW7hn8LTJ;XjY9lfF95j|%v&Fn{DIVmv1q!AOpD2m0Ho==qD
z%$NzyW&U1Dl;E<m_ST$56y~z9v~0j6dUU)EM*RGJ@O|BQ^|!MeFfg}JJ;DXHY*&{j
zRL1msHy$-S!`rKbF)W(2dAUH!=GXSuEU}zU7C7(FP@A&}V*z3**j?NUJkU?n&3LM%
zr)iev#{D4OYaS+Qp#w2Ve0uu8bTIvBE&hbCZ9p%Nh(g(yaBi5~HqqtdY^iT6u6aOa
zS9()$@H+3&`&5r%E;-4Eq?M>w2_?JlO5;y&0*$kI&a>TIdFcTmV;MkL6hSbG9h%Oe
zsl=*D^f7{QNu9u5P#BY(3?rd!T-Syn0^zK2oldUY6v(Lwk#9-V>=|IEkhW4c<qTo3
zMYGeWCTl9e7%_X_%KL9jkM?+9sa)vT(YmVozGZz_o@|I<GZZi=X*W`JvH0>t(qBM3
zFzwTYp5|N~-sVgM2HS(<N|&>#X8*CnZAxbN8R?Z|fR!xrv>HvDfXUC<ffywfjcBV3
z^O9+mQ3utBJZw_gloS~1(`YRlmo##VUE!xgN^<hjN<ognOnPRn@ou0KQiE=|PR>M0
z(bp$SuwYvug;&jxk*K;d?7)~DOJNW!R;y;k)aQ)?rSotQ26W}oTUH4bus=e`mhD5S
zpY%6U&`H?%4(la8(+$=MNiRrwFrwd|OHv@gzx*w_b(b~cQjI>slOb{k;4)|e%`1pV
zm^6#Wr;jz1A=q5ZVAZVBMh@1it<9a|!I0wat6kgdRZ)s$219#_5L?6i9diV^Dt?ny
zDm=e|PD_q)%l!i0ExAWc+O$LI^-syLrZ>i=;2y7kdv=eS^V;hBbjuiNenrDD8zQht
zFalQzove7ts?Lcs243Zeq=4Jlhj8Iw`#JJ|hQ1kulI&Pq3!A)TLJO;egSjt)`GVyr
z*oi%H>=}a$+p2>RWXf>VxE=SMOWKLleN(1MKpDx<2dL12@DHRk(V~>Ts{R9Ihdj1i
zl6k;x`R%$H;un_<4s2zY|8?*$JBb43+WG^4m>u%RYG?{u@{Zddg^oV`_AgsuKxoq9
z!86mRZV$uUt{qTbTa+I3zWp~|1|N*L_hJc%u-{Z!3iuKB2Jl;Yux#$SvfksTp-=yI
zt%Fsp;+CLHm-@m;GF|a(SLLetXY)L}LfGb4Kj0bBvfkZYMxt#rC`@jS|H&(7#;WHZ
z&8az0nl5hLeG*>RW^e=;=8ueBZs_qjdTn;G%IL?*m+;`P*4M-P*jBE*4f}Q*b?et$
zIfCuxQ9#;Y-}a^C*}k86ov+tFP?GLF{qgq4-krSzZP!ieYv}1IbM#MskoSs1HdE;b
zlBUKo!2B{_zV9AbZW5@elukwqpdgwN`Uu<VRJGDPB{5bqo&N`gb*5_Y06RH2iZXmh
zaNKGp#D>$WS&nbb7|Nw#Ou4@?jL~R!9>HTqId(u1oK`5SnAJKSdLs$^Or|Ajh+$KO
z#DVZi(Jox3H_*VVHmAV^DH}XSro#dGW65FEMey@(k^qWE0b@e-O@yjRY};O7zB%F;
z1At6lg$l9g^P*Gl<FhN1$aT{MrA0-EA@qScfw&rm%O#v#39QMX_DNtg&k#DBoy=a3
z>irZqp_AzgDs12Wu4gu`#y~2LtM@f|sgbNQ)kRLi4*}IS1rj+IRMG@M@*bLe&t;=P
z0`-29#X%G9pXQ6|Wg9r-q#&MC5GYG;11kY#>7y1*j^3x!uo8J$g9WH-I+Hr-0QIUR
zHnEEK_g0b#KrUwrw3MH+j}jXKt{@5nP(CvZF3HgtYJO3+sAk$J&Pb4w7OwL~QKa-C
zyq%&V&q_+;>3n&;F*T6;?yAA_6>>)(vg&*Ym7`Whr=>>~^93m}kU<8OkpAe%a;Lo+
zU;Il5&(~ci%v@u-V`Cc`EOVo5B(U#&P<iRUsNz??jf)Y|4j*=^Yi3=fL`mlJK92|u
zda+WB&3qSsHy7l%Jlu1v$g?}XQQYKh)yB#-DL<)06%~%deZuY#FFQvh(??V@AR@Bk
zdV?4kHHH|N=!@ykH}smjPVq`zAl4#)u2H9VuF~j=00AfIKjj{9!6KQZo{;WAX+Nf;
zke5oboh9s+;^pngrWgy?r&jt`?x0*bfKHHs<FJUdw&X(GLq=SJY@=vMpP5T2l;6va
zUqpMgu%My)kq6GZ%auH4iGs>eX=!w#Ps@>&=ST2fLl9P~4HwU>n~!a1kl<6t01a6o
z@VThP5QIb%e=&SGrM#}6_89SC?j$>mB#9w6l5cb0-}x((aLPsnhKN<0dtqa*WU&7T
zcTV9$g070hZ0I*oAzAuFx&aO1$;-!sZ<{Zt&Q@HqL_7X>o0FXWR2v{z(Km53<<P6b
z>)nyB6HJ74=p7#cB>MVfOtDHai#a4&^5T=JGgcC#ZNwI5U$xp%(Q@8@uajTJM?kAp
zJIT;!H?ifu>POn0YzNJYPZ1lH61xvT{}`oYFW|;izKGpZc7^aSUW5J=9InSviBM-E
zRORP)U~{M+FZ&DcK*SLTjn3*3Jm<+wz<Z_m+-(0D9Ou#vI++TH)ovso-@GwVwQg2)
z-Nb}%tmu(SV_J2Pb)BYDKiy)B@ZC@Iy`_y}%Mne?zxRw7y_;^`%xV7X_DN>sWX|<{
zbaRkLuwr4^YAu_>otkG`Nd8~1mVdUkr&xxE9IBeX|1QVY9p&uLJhLvVY21LRyMje|
zK_BT3`I^rSZOPiiH?~m5iwwR+NxH+Bgoz`5yJX;yV=9MJP9q}R4Wn@_=&CqAQelnE
z;tWWR^hfqOe~BuUsp(UaV0__uQ;5a3`-AQ^zG3)=2&uvxE5eTltN0)No?l&@^#lEv
zMVMHLciklVtX=5WrFH%j{on>ZxwhhB3wWp!ddo&mgF8DjdrjqrZaxz)x#|l?yQ}UC
z=dXY@h1RPg19z#SgHMAyt76cyx*>K~dg<2HrN(1)57!F%dPeoIl4l-Rhup;B-AgIM
zEYw4b^lbm}Cnx&{*Gp<|AuroUUu#~!O09GnhMn;m^88ds`Xcr9Nj?D_*_u$wM0RE;
z0pL2u_uz}tpEC2W@=d(AUQ1p*d(ho0PLD$!8O7)>RNXr(#fm$x1?%eV-;c-iiQgEb
zXL^(}*W7*m)~VP9)UPp<lJTujrKR;>$3`W8RqAg2qkat9yc4%18mCE&)qD)ubAo(U
z2OKmd<_#zQxXe%c@$n|Vh)LTWFxd2_lN01)6Y<AuBFo85aKx1qk}|=Fs3#88qk}fo
zUN@=+Z3aY06G1|?Ap3cs>>NUe!!?r(kRXBts37TTIwa28)YKYAN>b=eQs6Ln43rnX
z1~E%d{+$X?<srC=YWEqrr`ZDdDXa@*|7>Jxfw-JTfONp+R7ppKmt?B%1~$EyP7jo1
zh)Oc(OnJAY?`2DfGri?ZatMyFag1TIxr{NwfliNNWu2uPlmPeVf$2v;4%@`4Z73ta
z+}bzI;4n>TUanXomb@EH#b=x-DLPOx@P}!!D(PMUURq1Q#JGg7K<nuA^fWeu4%1AT
z6*6tGITK9D6hb;Ua%8$zrzxmpsXtbFv;vVfbr-ecd)Sly&qV8{MpCzlncN&Gf)36#
zhvD41<^hwEVKx0Q2^x`*lDZmpbNuF-vBBfM95?l}SEkxeOnrWFx+-r;S$!ZK@`xS;
z5|&P~pQc}ThVWX><z7|2l6R7ugvm9k&U^nV5ZaJ_k`9&c%zcN+-&MICOYd|)F3&eE
z)kTE-RWieTE*lQd&rdg9NXLLRGwJqpWLye>=h@sA91{oAMX}5@KjxfCb}^`ai=TqA
z6i&Df<O34iCIqAN0`Z+u2K2mQbD{QxOA>4>7o{LV)gZ>h;zA{$l!=r1sVcXs5e<AC
zVLun;K`GIL(S^4_A~mn7BVl?<MJ&E<66$~*9@46P)bXyq$)4U8y;H5t)s*H~X0e+H
zu+Mu?k?gm0nTLE(W5ox7x5}`krWsHefe%Ky(`XY_RUiWi3QG?vqms)U0Obu6<|p4X
zO(HmMoaW0vg7EbPsBe@%pO9tR%4!%cZ)vE=23L?Wpw~4k3b@4c#2qAw1~FZ7eASf#
z?6?0w{DARyRz*pcRDX*@7pB9zyiz&OKBkQ{l~p{yqd1Ynq**3OD0^fKjTndMMO6es
zB#_DSY*KeU94hzntBx-V744ycwvd~K6?0chM_r)bo)gu}oEqn=A{Q!YhkN&QpW9^z
z-Fy6<<#$W|UQac}_AZ!E-Fr?Ul~p4d^q4=HvV5v?x?1}ZT+KQqfs(E@Ae6%r@~o&e
zj2VfvC$*N|WZMG&ANF<8^A-AV=<xAf^C^I5!QDnSe#&bVR3}J|YA8k!8&j2XuyeA<
zHaKWOoPwoR;k7ZG4elClAl01URfyzyeSWSnWDOe84~drcb+d=*71UcyoyV5lOsJr}
z>L!bF)gOEHbmmsD-@Z6DRsE*GoK?%bJ#usnfDd3jTpuWNXp{Mgm^uX&XEh+V)^pYI
z8A#Xbnbl@wwv=Z=YkuGL#8mn{Zn>!iBnCrf;{qO)Ro!;+rHPe$81t3M&bKB`wY9X$
zHJC$tT-)%~fNu>zB+6O#P@pfa)sWIIOKqRa<O7>S&{PmI10&YiG-3{YyQi~SZ{VU{
zrKpi;y_PfRqx;$EY8t+!q#Uu>3i&F1Z*HOaU2@I)e#mlW2McS*x+~<Ap|iN3?`>y?
z!CXh0xzAWIl>U0+bM*)C>n&To*Pj)*{5I!0`;Gr+uKeP6JNUX}rBauYD+HlkOaHsP
z!W=5uR`npL>)4!N#oF^Kp^K5RR>q<}b+6l**z+yHdb+hotgmp)t4zwd-Z#1)nS8$m
z?QARa(Af+0-=nTa4gmS;D`QX)O$$<m?wV<O2pa;>m?IuBQ?W>_p<{?n!5Adyv}7{#
zwj%|kT$<|Q_1LodF^(<v5+RLH5pp#Kr1(t~Dq~=${gB0?9aj-+15T_rxE;;iGANlN
zW57%rg=e(&xf8X$*!zq+@1)~Y)YkgI#3y`M!;909&fg}-@Z^rDwqKc;mzw(hD{Xql
zPZVJNtRekfdymZl!O3lQauEu0s1CmA?%%!xYkYazF@0@qG6f;#fCf3)QbUd>_tT#~
zIYPT%UC3!AmCTe4;Hl39-LxOdfD~1v`bpX|jL&vHH(DTXzii7+$!Hz4fPQe}q+0Zj
z3}<hL5Wc(BOco4&*3M>f9^mlqe$)M*(yKt)Pq+T(zq+lc6oUwfO_4!>`w%$M?TB$G
z>rFq$41`M-!qYCtm)NV_B6lb5zudhFpgMQ17W+F#hz#yB9|cre*x(*eYY{P0&^ThD
zY^YDy`6uJqrCk+aD!NrM;e>1o?Hpa(95o<5h62WH_k-%V$1L~p^wg$QLX47*9A7f!
z^K#;02$Wr?vLZO$?KRt}3G_ed76K8FFZv)gjS`0iI{E_Ss73)gBv~C5xq<Pn@`=`p
zSj+|*GZ6m)&Dvct;Jqi;JU<z|pGBIP?9-l{vK`OM15L#-O<F)_VN)Xu1J`@+`3y{+
zj6x*xs<g@*KP9B?^)YHjJbPTMNNe_<cob>f6B6~<9X+S?{KYx-QV<BEa5PrNGMx!Y
zkft4@CvMyFwdg3P?)N`ZOq(50>36@dpfmN9ZRVo|WOV=Xcs9FZ-Av8?f4J@!0GAi&
zf#(<Bx^GraXFi%<5AE4tdeK-gy9=3}dh-;yud?PoJF@U1FMk%N#l$fW;w1oM2z4w(
zpbA9u&RMzybq?kgB$qdd`7wcHT|mF!kwAkImu}g_OS)}dWFi2|%5yJYUMR$mjj&^3
zfCbFo_U%eAGvINs^kdbvbI%XRhy%)^o=^?B5U3@?u%*SU$7Tl{mL5wcf=dQguTJev
zUzRTpcp=EDQhX@qy}WrEZ|6MM+<be|OQGg@0V_IM)Pnb409Foyz|M1aoM#C7%=18Q
zPXWkk&^74^E5>#L1^7`Bc=H*XZ^WYPxyBX&LKBIeR3M)(kQocSKg8o3wjB6wjzw_3
zig{kf?ls3dU`yfa?1Pm&xmEkl)iAla(8}d-^R;VXx!2#lz9qO)qO%es>l=Dw**EXC
z-R4~FT_``W*!2d05i2!lIoKPvCUzt@_2TW?)NS5Fz#Z|?vLCP3G0UOf-`usjzZk+6
z*<3ns=UHzelvhHlj3K;~#Fr`uN`GfGax(1|{GZV1yGX(2KIRo6B`Jx+cFjtr=g;2y
zA1`|yyyHn*w~1JxWgI91yFst-z7zWXwn=Wb{+H0_8_WlCm%qNFe*a4i_F8AGQvcmS
zrF*qb`fJ1{N|nV?7s9Bw$<%jpuYXyIEZ=@7TmA0D>-F62=2QMx?IYAyv5P|QCBNye
zXLih*cWxNvZDSDPn${ca9&6k}UA*CfhJ#|p_kqHL^a$&9yUw`-JTGrDyRMvXeUU5o
z4Gw6Y#kZwvDwS3p0ZZums~Sx_@#kk)ULV~)F9M^PVi1Mahl|opl8j!~`(6-X4Y^Fc
zg19%k@E^N{Rd;Ih?N<$Rov{Y>qdZsS@sWD{M$nHkot%{j{fSSxhVX50$7^FRK&w4S
zBnT3A3Bd)pNNXG7sr&{MI0RP3jusL>OX7s@U2^zMXVqu}3JU-5d~pAM*Qd@Kljk#%
z2EKgepC7h1_~eFuYd*aj68`3a(C6B&H~pVKtiAly6&4k6f8Pbw|E1Pkf(nrB9I`mv
zkIzszl>a&(xMo&tSyf_Hb@PiO;r_P!vkGprNbRT6gz4HiR|^WDl*HZyk{m{OKCj?J
z&}0D@Af5kk-9r6lJ0Mh^%BkL0+WWnjFxLpTZ;8WSCw&!v3YG85AHd@hc-NWP6h7-m
zer8eGr-uJ9==p}9`}RD?UkGX|Li>_h|5YOQlhmyrl+Et~emB>J4p!WM7&07#3V$GP
zG0M(v$2J|)IM#oxOC0~Z|6%TBUq{aI#aRfe=aDw;*!N}OqAiRO`<ih9`deuv!$!u7
z0?5()tTgni<~4-)^=I-r`!!D$L-McMT7{g8iA)s#JPl<b;=P1hCmAuG<vCI}B0wd%
zrx|RgUy-o9E5GXRVH57Dm$Sg==YE@41IP*!EuJ!`bMfPK3Pl&Eh)<wRv%hP>e}dos
zQGfWy0QDyYm-_f36qfg=@E&yfEA&6%v!Qz@s^(|L#Ixk;vz05VFRz^0zW#gi{S2V}
z=Mv>_AI&gS?U&i-Utehd4uxsoFVH$c3eMZxNB`0Nys&+`PW$)&1DI$JFLk*bl)O2<
zIpmF<byB-`!{`45rqeU&soN?gR+(efiwB2CCujedSlE!9+`RmP!e|jO+T`4vxT3PE
zx~6v7|EWwmJvbvXtBY<P|0gh^W#nFj{*S;!N=iw~$T}C8bR(k|3;tJNYH90u(AC3#
zC;H+42~5*3X6G~d<QD%&VA}b(_j&%c!omLnOh7sg7<9c%ii-*M98i0%EcvjixvU&|
zm!^Zol_Dj_h9PJH24)V;0$;O237bn&%`%xu0$j=IUPGgJM5@<$c?eV3_yVhW`K7z<
z5Ah-{DLTo+vVtJHri-*1W3k8G*&J*#sfX^}#L*<I)7?Oa;a4&|o%&^Y#oe2u0EniZ
zX|eX5aF3_gG;P9u`syQ?T~ZeI{yffD(M$rS1<iZoJagmFCM7y$Q9BX|DI8w06#Zcl
zlxrtnb*%m*8j7gb8*U{gNmm=O=pTCNvn@0#H{Ewmei$O%iBuog1w0HEd3GB+xzU7Y
zoSv;QxubVi^aD_mARw8a^pswNJ_<`WgM<F!^t&82`z>xVRRE^bH#txKySHIT$+}~O
zNju}xGWlFLAn;OT81dy3KSlTC%p$MvPwM0>4*0_0ipnv&J9hB&Q$;ldtumL}&t@h&
zKZ@+=LYxoo+@&!9ne}9AlYTM9pi|(irCv~ORvsT9eee`EjlI7dmBN)Eib**xC{=up
zw%!$K;hkn5G8Ty4o;N|2i4N;xgt6?;F(ok(Fo}=>#R<WCXNr@ULD}z<5;pCNFSWnT
zM00UQqe$s1=^-`EM|0OvX{?zMW~PQI*j_TmdiT4Ae!N@je0!AS(VU?e=di9ZeFVpX
zHLZS$Vwr~Jut#&GL@ydg$Jx)i1a-VxcH5x#JQ7uz^mej*Zcnm98-Q}Lm|fZ0*Pb;@
zxvNKH!R1#zf0ZyUn39KbX@MDmucmh}?Od-TpUb^|8=Xa9lM-`e9fGk{iufdlJr#=`
zS{#j~)xHy9r7F;K$g(oO$9yRM`9^|q@^QwEu&it8<j<V!-YN4PE1Ox0H?7AW6*Qyh
z*O_9R(^=iIeY$+g)80uEI&`Zrs0walJ(EtH>|3a7RHjkv^6$hWpT1Ai$4TOn=2l(4
zwd-Dynj<EK=b;=(yOMKB)4Q%Bu0NxEw8tQrqj^x>uf1&Uw?{%+X~J&OH?iw`k2iAM
zzQmLp`;Y}hHHHyCnK&Z>S1!tzKMqLg)4mb{e7pLT@f4vD+7|z>@DRxK+HGM_m^<;y
z3(c=@qXR$b)j~Rt!@X0Ogw6|BT!zt9Ak*-5lxWwrt8V`ECMM)00mD)+Aj^>8i<l*c
z0NM@MYwxePpOiNx<x9XQg}+BjPFMaOuLPvMJ(zv+_5Gi(#ono692#oFVhnk#`lp<I
z+N4#}SDy<{yG*PO&qQT;4n2>SZV~?qyfuNGv`k#oTy*c*zXLwn3%hY}-SccafbxNq
zOXlpQLZ#4yt+GQvs5=>Szc?i%HV=MI$p_>Bh842slFSKcI&U5W-j~=UzWNR3$WjAA
z>j^FGqYV}kk73afA>Bx2lP!M*ff3Kou!`A47Iqm*TIXjv^!l8H#u>?l=Vy7e*PIOS
z7%S%FXFKNk@XnVSt0sKQHd{&O*ZR%|yCI(g24o-+0FW-(E5~DUOXyE?vbs5m1{6T)
z)4MNcXuVftOG-`=*#kZo^WBEsTDpvy?=rQ#-z62M1G0G^QB?124r5w54>Nk9(E>QI
z=n5q~okC<44Tp7G0^u|D5XXM@5~DZ(9A65tt6jh|p@tOmGp7F&D=dpC5R;>yGxrZy
zDxVPrhF9@IgT$3Z-x&I%mAtIjWvyYg_EXg{QXsZai944xh+3=hthRa^;bOZ)cvTZT
z`eh+d5a&msYRozk7la_p7G8tk*+g6K3XxK=Y5`U<GLeG+r_%_-QK}G`$WrUh2Boad
zX(w?B$m5ti)9aeV8?}XnQRq#@!fGz{&M~<N^zb_ZfGp+*xFAV$)`vOgfwbhPxNXZ<
z|EaM`A#^qXdeByalbuko?H5n27r=`aE})L!hdM&}elXEBiOy7%nc+bWn|U=T_I`1B
zkVl)AfzPr4&qH|ljS$oQDMz$3wF5)VeVU3}d^`$eNDY?YVbX?{;ek3vdlY+qv~vZb
zMqGLqFkp*)B1++aSLzP?cmiFW;?&q`J;>g9dCqd#6zGI3kTF%X{89r|T7ef2ca5+_
z_EH@@nPuSPe3qUVhZfzxL4-YDNe)p}dW+k6cKL3Q=j@LfV$iiM>|Lefrk?;ZUb%ud
z#mF2w+W_f6Gy^_Dy&pk^eC}thE<jy6_xEAKR0K`+=^qczSgxAuFG!$l;-zD{xM$Wl
zeNqaF`owsHVip*I>{f*wXo)kl#wMk#MyO93`wSN(SlF-<L6bhOVWNXs8M>r35w8;l
z5!Pi^9b@O6JY|T7wEig_R>XA~LLmeyG(yzg1B)J~T(G{F_wfzBSSfY*)x-OA6*d6y
zjH+svl(o5)_wbBp)Z}y$IjR(_;{4M{;)ecgHtZw$IQVhIA1lVzWTL;Pym*`yPfu9K
zP9Nq_10Jk4%y9M-f>R!vCGe=QBmU}hYdkKZ2Ip`%3!oKDV1v(eDD`RAS6=P<tGfO3
zMc5{k(<N)cUE~cz+Knn+=>R}1LCh^#G{6U-P6F(j-Oe@a-7=}`)l;|DVjo-_+1rZy
zt<iq<A=vBo=M5D7g<`~`$he-emjVGxBjVN=E3446?Q)GZy%!Hy0G^`Bf3(p?KO^gJ
z<2PYX3qDrmv6>gIrCj3cmY2u7rr^lj0me|p{zx`wfb-Npb%xN!PxogM#nly_EQedi
zRdUORxN67Cmp%tTfN|0gwi*Rts+@ehML+trvz`>}xsc8M3D*fp!~TKb%3ooUy2zS2
zLlo({KCxIl2KC`Bn+@<BNGlK3aCa_d8~T-fB(jtUlh@#4?+t}CA^C=E6o!}biN|7j
zUeK;@tm&Y?86O3S+nU&TugJ>Fv|k0!F8B*0vg~rAEW^&c_-ik=s$d^52jajp(g4^J
zlA?Zn;35)sdUNgHy^7(hdV<6blg+`2;-qJnygmI^XYaFS-}$=9I{J;Ye=PL$TKc!F
z_<_5M_jKtZVFyZ43cG^If(OlMmA6>V9;hs#;zoA1QfW@fw!(e$EHyvASzKoiG*3qK
z-2p0XS${xQ-aV*P)s4w*`0-A!3dkwBxDLOG+_!?v!AL&J36uX7LsV%$<6!wt@q>}~
ze+c|a{Gfj2zq9z8OJ%oo%S)Q#Bx+{lh9UAofW^1<cE5cF<gKBIYVoPsXJ=kOYcHry
zQeDvuT#^!CTu1C@gqY)~<+Si;Le&rX2&7>$*ogwxKLqRf?lz;qPeK9CR1iIJwmbY;
zoJo^8pq#GSG8;vIFO{C2xL33tPmG|?qQX)R!&R6Us^~%dmqEHB!^vLIPC5p$JkZnG
z4;sN1@3-B~Tk{2mVDUpwYbrz*0(AyhI1-@+VZS)A^gMIG6qNZH4%l2jk3*>fSgPqL
zpu5BidZ?vN0z-<I+LzQ?ab`C79N>we>2QSgQ67sY{%uY*>%-1qOr&LP&;}ia;n`ul
zW4)0O)u`H-d3BCC+8=pc6v*NQv^WIL$}{SUSPvVrL$Pd(dF9QA$S!|~Az+mc@VLsC
z!vkWBpVueSY<Myh#qaxC^(MnG%*a=A@Zl@PKX>HVAs_<uFW-wRp%E}ZmyKzsI9DLJ
z%LZ!KAYg?RClCZ_7nKsyX9@rjk3K6DfrZQJ#c%G&C3iBgo`2@R+GNx<QS(m>mLGhK
z_$FG>!bzwa`cOoHK*$J`zX3flWeF;vD?40VVL=-N>*-NI!Ay|PdG?e#sByRG9mEhu
zOy4$2EMCIhzCbjfKpnEc=$tL=2cCV8zraU%5%-<-+kSKTA#A@Z7-wWpC*P0&)h$Zu
z_i1(g9tkKK5n=Zyyp&aOY>|9G`58*KPVH`FPZPQ@Eh8Kt#jP~a7d1J@ev9j+aI~?U
zA8kh>4JCO`OzMFMSqW@NospLKY?t%NhP6)mK{wqN`z!?M=<E0E9~*q%7Iw(4<S9RN
z(*0&x9R42EwvV%O6tg$=liewR8xx_)FF|qE=1fp^SFsN3MesSuk{~5;4~OP2d<L6F
zMb4-}CDp~gpKNx?C+uSLDMEiRS0uBC4N(X7ROJT%pgjO;XaL<D{+1w0yC43Hl?ovc
z!R|OH-UrlqS*OcDqFH&unX2W<v<n--NTumaAj_-mv~r1`^N4Cah3ab66;&Ty8N4o}
zRXYhJ!}51D080wOTNh51^|#v@okKOVsx`;hXod)U1`gj4S)(C&)V#A7Ov5xxHo=Y#
zUgQ;;mCM>{5hL_aSOyBU+Y4y=#aT86hV7k?%FxI!Fc?X}Iv%OG+r$0sVb~>Itr+~Q
z;dYJ*hpuASLbzdDqiJsRQysi!S)omOjLBs)1NAI?F$H>L;IES9&}$DH;BYPSUH1~x
zC&vJS?cpC9pwwOuhK+FcJ?vw!^%DcgedvWUFYTv4v<)_OI->viCTTxI>IC&_Efx}z
zkV*-X3kAJ;?DCprkUyJg;8+p6b!@#oZZe$l4pkPilxw-y`ji0%G)M8>A)1DU`TC54
z&uuba2i%1M_|&wW0sGL23Zx7t)<SXmvB*F?hNW_1d2cg1(`Ibp%^O0Op*cn_PYj+r
zTiPkBMjwtD=pWEuh&Gm;HzB0h3fFn|fxQg3!eLudBFU~b2XIyjA_nBDfV9=`xm!?h
zl|2<Z^Ge|gGo1R6xUcG|^&NT7+Vb-3vw{e>XbQ)_V+HY7hBBO6m_TpkBgrh3*Ifsf
z(KhCQa3i%POBK{*@3s&kolo{cJT`~!HkB`{`gzWj%p8mDH#?8pBlawc4u#1M2CBw^
z%W|QQQ2GyL4IkPFssg<IJmDo<gRi`GH-mVpgYI5+LX~KjN<$+YU{Uv>Ier{Cb~lwd
zxxW|B904I$K8wdOZV`>|G?y#|W9Zm=9D@);=>VuP?HIm&HKeUN{M6yEc&A$jajbMX
zsG{Wm@pKnnP5=M@|CbC#cMTZbI8vI?As{6s!T^;JB&Ee|ba&V2?hp`gl!Ua1gh306
z3J8dRFTT8gpL2fy#Lmv+dB0t*Hjh(%?J&3hWAZME8ZBe;OwRV)s}_DS$Jg^rG(EsT
z3Htb<fD*$~=yHq)Qx4p4eU$2toAjb9<*4hmzzLPBj{I%kwkinVwm1KtPZY*mkl;P7
z%YgF(JT=>3ung^bD@yEyIo=Kk+;N!L^{*xd_*juLpebcBAb2WtTv#g$DO{2REei}`
zu6`Vib~TXu=ad5+vap|%A%kTL_S1ez1gNRKq*vF`AX#^BKNASy4?j%|AG35lDvJTh
z>GF5_R{G0q&yvCqv9#x8hG@nFqO)=hzz&cfO9L^8CJnD6L!8U-bZ4?%6C&6#Is%wF
zCYB`u8i`NYRykN`;X5*m<)^iTs5C${ZH7~ki4plZY2h}6WJfF$J4$mN)0h=ND_vQ$
zBscR%EXvAF%}C88?w9vg41Ey%O$s(={e`Hd=6A-R-$@KIfVQAz(p0OzpEYBE^2C6b
zv6S1RL*0(zA9x3HT?J~UU9A&e`kA1?*|vm`z}sdC>&bD*lxZ2yRDXNVt>_Z;qlpoW
z?$&7Eya|C!t@Iq**o6ltm`ce@%LRoC_rS&TZgHPW{{0}#`E1wsHa4R>$>scR2bL-Y
z110Ey69uioC%5W-9qkpeGoIF2D@5rj>>KA=1aE=0hD{PBq)D%<0g-=e;#qU8wsJFA
zEnDDuF+Eb$7;jop86~L61zyc?i~Q1;{JzGst)SQ>G`gShY5!>^j0H$1=*T1}6lcs^
zJOi*r>h!Tnr%WEBs^v%j`fS(~f76s1TE5@YlUVsUa60%8(~YW@JM`0r(8*#s5FkPx
zLTU!kf1;71lx>I#8DtSG8C-b{S|y|TTNQu&H1Q34=~!xDmX)i5gPj7}ne_qt4{Ikj
zEpLTP(PY=RwNNPnh-yEmNjDgdOM>P0hp_>fh#*^JaRLDNEf`c`TQ|S;RBIg=@+dD)
zL1T3e#6kec2b!-P)U{uze)k|F^g^og>w3C?hTXG!*ONfobqEpz6v9H2&jaWlHGRKm
zN(myRHEezr)%=64IVGm$U+=#wr^ZU#hG(^aP;D^W`?fK%HmA4tm#1DLp-mcHo7YPt
zL0SLLsjUbQ+~N}M9z&{nLTZM@ztDyD{+wRS8w#in40ln21M6(oZ?aF2r|ocM!d)=}
zPylH*7tyZ5-hRDYja&6vKdFw$zZV^{Kw|qc_!1I!NtSxqM(#-Py3<bosMlyX#AdBi
z5YT0VD|LBwr|Yua<#uNdd#|8kyDsCQ%sPOHV5NMac(&XTXWRNq>2)o&eN}ak9Jo#Q
z5-7CR_NhST+7{vI1X3h)K7Dd~zO8bsvHtb7Vgq|}gQ(xQ45Hyt`>^)?`e%wFvEzTD
zM;h-Qn+1CH)B9_ZLNbd80;s3=e)g(GrlNcB*l<=dU*!z7q<jwq-jW~68TM~|m6Qo{
zaj|V{pFUC4S8ivGEv}v*bFHbm(*F;(HTjZ^K`MN%9Pls<N|=b3E}sJOO}z&{(;XfC
za_MfNbU%p*KsQ4o$=w{ononTRx$;_7ELfEY4$Xrf>#AH`-Cg`hYS9O=?pvB%nlFIP
z)a&>G9?X$FA9!b{`WVr<^Ra^CA+}8R>7V79_uyHTBA3M8iSfdB)5`BZRn2qtbL&+C
z(7*ntm<{-+Xn)G^Qu*+z3J2J;TD~q+dJ{H3cxz(IP}Ld$(bBB6Qj|j>$U>BDpU958
z)vjJ{uR7itzZ+KF9=kPw0U`>>2l^ISuwG+$riBO6S%gp3$k~m5q`Uncm?W=>2lR$D
zA4`albw`jZ61kVe$X?km&hDQ&0qY6q^-|(`CHhk>=F3>o7c05VvBuAx>j2aMsl6T?
zQA{4LOhNkJdg;@x=i6()hB8dTC8|6y<t{9?|9vJ2-f{cS$zou)oQLKZLtRn9;vY^E
z!ud6d^TE^by&@h)ol=HW;J(%1UeSPE{D1qE;ooY*`N{^qwW@yaROM_6|K9)K_d$F1
zUe$w}2kq$rmN)+$ybu4e!pZdJ+CCk*DajItmmy0rnW?QLrk}^c*9XYp`>D%v^xys?
zSHxhfR-}dWQ-ube*GqPy31P6;Klr~e_kJcUV=A3~WSZ?O*}7He#lzIxlVciwJO0Qy
zR#uRCojWqYD`!wx=$1XXk{@Jx=1h53N-RjOEpX-H9hs;>eVJh}IH_MRT5>a-&aZU+
zRD7s^&baZX9|^TQhhurrA)vn{n2Q_&^BoG|8Mov95@vh&BldF9&zN3A#p-~`?&6y%
z?j$y@z9$#nOZX;V5no&<@~_>!ej#2zOw<fZPO8B@f@z`I@h#@@Gck)RGu3IgeQr=a
z<?QSBPpZ|%-BgVKejCrVnen1s5lQSvn8%B4fisnoln;Mw#8Z_amK@ty)U#C98-dAk
zaAIDYtt!&`IIaN|*K$J1<WA+y=Dsa<U^MeSZD8ol<jlg->gUbfZ$FREF8%|-$f<{q
z&k?+Wmol9~bP=8YEIX1M4S?*bkSYWPq9#?QG}2JWrl=xlmw_eTJ2c|Ob3WN)8)x3y
z@HDKY&9+dBR8t|d50tx9-ue-tN0;n}GDW0;Lz?Tm7S;=1L*5qO)8gs2ZY-OGVV92k
z;i4Dwr1|PWEFYP#z;wQx*XC5MpWtk<svnzqRf8T7Y(Ry;j8y;@p59w#M4A(ESzv0_
zGsn~jgD9q${KV@HlZV?iKn{C3pHgq^D9?`2PwrQwo@uc8E=6BOxfp9vzly(LSKY=e
zMl3JuPt9{vCsfj3A@9M`ILjt`Zl8vb)6@llkOb>dTdOMWD!tc2MHf3?zE)G({>F)9
zxidnj*Cn0<O4lrw9Ym=2;JZZK6)iXOD$h2iSf(Piq*3?PK=*Bj{J_Uf?0-ghmJ$HW
z|M~q-VER9R>C##~iibUwo9rLLXOVwU{#Y{s!6$GMqan+^y{<teECa&h$tA`|Ap8ua
zgN_c!bah&e8X|;K!O(id$tX3|m=@_zM;gs0An6Dcu|7<3#aWz>+5n+CTg+Ti8yW_o
zTG!9El0(;*wNfni<d;)IQ(H6wsCAYdk$IHX>$oJt1uYm)h$aC?Y75)}P~hXZ+`t~G
zU=SzEGDwcv6{SJN?n(gKL9ysBWZk${hZon-8V+{1vmGXKeJ$x4PK?wZG7_xkItmfx
z+rX0^?Co=56-f6Uz$1-YKAPPc8h4~GK@l|QL^HFD!tZ4UKh9^lce8&by~@)h#~ClG
zzmUL;@Rb{PF*mdf)7@`q9picXF7!~``Mv^|a?1)6)m8Zy9Bit32zZ@{r(z^8Y{3Jy
zQ%#zBc5OA(sX7{gt8irIx(=f{)ghLg&!Yeg{Smn}{pv{WCfX+9UiLFkyXAV$D=DJ!
zJqf9BCXFk7!H^<$nC4F5lC8Fh$LJ`n)sfE|s$|xL9B|MRt?n%;gAZ_aRGL)xrsc*?
z&+WVS#p@L^(R$V5G=r|)xy9ZZbwVvDASk76{XQeFPlo5fr#5sH$R(+akyP)!8_w)@
z$#*(ZDzTdt5{*WZC)KL&_vsaK1^|XU&(N-o+Xea{l2oFCa8fR@-4Ez=&R+QqR{N@A
zwJBt!LVT}~h&Slztz5?^O*j?z>=yWa?)f?_LH>m)Y-I!BChnG%ZW(f=Igj8S#uMT2
zl63<zP_%c+8wZbEO{kGFGV)LZU>3^S{rzdP2;_ro-y!2$$xG%P^!4@Z&To-OJ#sE<
zG@;L^5LI>dG4#dO8=(X*(Z8M}z0dy~sPXrU+jli_>}MjDh<8qzk3yyc{tWuJh|quf
zw)0A$<qf<>D8bT>HV08dg$G-I0>D#A*Tshv2t8b4I=(b8G=_~fk-(`u2kIx3VYNxQ
zPA*Kak1c>?H`5?E3`s0vq@jLIPe&2uuTCimWc)G=K2UWT;pLHxGqB^KFQ8E@Md9$6
z?u|V@?=;bPbfC70I;C?ph{0b6`fLwC9_!6>@OS6`Sf;sHG6FK$S4-Vt#5G$gpI?*F
zVlX-PHb8zxGMQJC$lN|0$%h*Zp$MHMVZ+78i#Oq~lPH`f_9{6<88GRzJo*A03RUgv
z6Azsyofx}=#_96-%`4|N0fuDCfMZ;|p^!N*jZXzcA~K6_ZVTKfPp5L_8-*Bp2eUlZ
zz-X5l4zR}Es->NxPb9`XNUXTy9T6!~fzA2Mjj)#ss>t3D4&xxwi=;ZM=gLYJeX|o(
zTH80ySN0JqcPpj53+oXjp@*K9-hG|FIs0x~8~TfM_{C2JERC3ZU~w83$N<odK50Od
zqg`p033w>xB<(|c4ElLQ>~CQ@itL7=GZ|AenSsp;2a|n>A1d#DkbcSK3H1b^70)$s
zL*EvB<^FFaQ)Il2w9z&ml81dOuuX_|k-V-z{$!oPOyVeWkJ%;yI*9J)41@yfiFbwH
z4Bb1T$n+~m;R9de-l7JL&^wPmi=9umh2t#s3C=FPyp|6Kq?<!Ni8@?P&IAd7wQFtb
zJK;wb?&w5d{DTJ7#|9;R6&Qjc(v&>h0^}l;nLe%#u`fW|yj3h$lh%I1MMYy%{cj7S
zO<Mc+0*jC2fpl>ymhjq>(=JCR)V3X(IWgB;ck>;jNX*^wdY-_3OF@n-@{`T|FOft9
zktE!2UfjA5Znz+X24865>}T3QdZq286VvL*vuwfd_GwUAM7@|ui-c$_wgdKT(6<0(
zQ6`^5_Vb=6ZQH8{)ywz#icUpw*W@1SVBTD1Y*Na7468*C!jifQpxGhf;i#KSaI^Go
z9)hpq)1YLKljoYuuZbI#VJym&);{1FDWHiB_pq@ht4Jf!mS;Yj?A!a1WK)B9&KJOO
z#o?$N0S{PT5um-YMlx#b;fCOc!0g97?m;kb3jr;;=vC!r$Je$hHk4QhGWMNraoC0`
zK|_Y->=<B37*)tzrlYwWk{vCb^rZ5hJa0TMygZ~PLYAGt#;8(q&pl1vUY04R7U0nZ
z=7hv=Tq{p|ZJ-4o>5hdOQZC#ZG+$J;Q;f~GH@Xcr-M=LSn37{k)MGTmQu~uoGtto%
z+jD$JOewbCt(9#smAQU$|B_8+a2ong&v`tprIa(h36q2Ai6Nxx&oWN^axbk%=LMk{
zQmaTne2>*{?NPtUXCd>TMb~<M$AL*Wu(0J<nI^}j2+PQ3!^4}n-Iu`CjjTYs{!gjs
zdc}DVm;4}k@*b2cf>nGR4b}5zfhhyPi1elW=KFn7yaW$%nm{DY9G=b)xy^m+j)E3Z
z!0u&0so2fFP2}(st5xZ?;OsMu{O8vx31QntXl?L;w=-90HB=Bw1PKxG;?(Gp7T+5*
z@Tq?VHKxJ<=Kd}r++P6oe9!XhqavBq->Jh0oq3HYlCsJidW_u`moRX4CM|&610mxa
zLs+2%`ovuaqHX7&KFw-Q+@ZdO0g0HTcfImB0@mDz(32{!O|1Jc6%rtVq=Qt>xOjR)
ztdW?B)@ZXefT`gM$dbRNQTQ)v4aYqoI!**n$+`d13foK?|D!PM{Z)W3{D}IS01@VS
z_&<SZ=nrBjX9GE(P564#9DJ=v{T@Wvx6qCpQF~mcQO;Zwd%^}$yWI;rsFqKw+|@k&
zQ#<7GbK`3-C;3{&4g1$-Li6JfwX81Nb@lZ1Kg`67&&VC?ASI1oi@G-G65KWso=9<u
zF+1VF5J-{FDY7{tsekLUeo@KsVgb<csgs$Qo3nmqw8^WTx@Us`{D1lkpbvr&RyMe<
zz!H0&BQ3<ShD88wZTj=v&$d6vi*|~xKat(+F--LD|9Jn7swtY($-w61^P!|8z2XKv
zex{87<Gb}CP~-zfcMS^@D<K3q*uxQqA7eTOvKY@Xg_IgwmvY29vgPYq*g5iPLEnxT
z#smSZMnOK-AP^D38jb@WWO4`rxK#06y)@u)ZU!DF9+6F+|Fn)IH+eO9Bv?jom)i5$
zZt^=h3Aj5U<u?UFHU*Ons1mUx)<lwu8~4abq;6BB&8hU6ljzVUk17$CNPOgmWqIQy
z@oiJ$*oncw@fOG#1>Zu^IZLu_arSLWifl<qIsZ?mrLvRK*pe}GmbKlwmUSv`(Q}sb
zb-o?4bsO(2pFSiP@2qfx(Uv(YGVv;`4nq34#jOEIZ|rn!IroS&?Nm880uV8`#c^CN
z&|NNo0>I=EFY?Azc<j}VM}V1VO~neNsuL{CT;<K0((#b0#JDb|0xwh%;=xB6rlqOy
zP_v6fW0zNZ7o?P)pMI)AUZGjn$_Mtq=H9dv{|BdFy>1W{;*4<>@dX-hw7H$Ag8fec
zZ@9qs2uo>lv0=u>A9Pp&!cnSx-kuH{F*fF6vDoR6U$9_OClT9G@2=RoGI7%euFYqN
zBZxM;>jt(OH-A!Kx#;_6Bi2I?Tc!p{gNXJaSZ$HAYHZ{+REF<>RA4-8Q>|rNx}lPk
zu*2Q*$d>A@lU$X{VI>SXxVikurmRAo&$(wACj<eDT7V`9#9@M+EP)7*1dvytH*a>g
zeROaS^m!jcV#Tg|mw<b&fm*hv+f#!kNur)AQ1+mLCX$+r^zK~Wu5B)k3C+NeILPFR
zNiO2_FIH!<uJ)@^XKKOO#8rVGK^`m&O+Y}dB#&&QG(y7!?VAdMgQ`${U!?($xkkQ<
zk<!wIy?Y*>zq|PL)=4#Qu8a7UOHdb0us{MX`ORj-*T<hVq|WAyMj&z@BNR;{mHdZq
zA24V(Kox7i5>JPt-b64?4WIuQjQmFV02|9;%X(cO2UZ{o&}(V&jntsKg`UA7p3{4r
z5Zg$n=%5)8eiN_DK%UYyhR|9MQWiq-?W3jyxy0PWB5iN7!n9g$vHmj|T@RfWAla&9
z0AOt^K$sI#C4**+Ske$=8a3sMO1)Y%x0v&A)zOWP345+%eV}cFrAxL^x9-;tZn|F#
zntgEMT;w~~&_KA@8Mjp?;S+POmlUy=6=BiR@$AZcq=m;tlek!na_@b*MhggZ))rW%
zy8kUo?R&$^GFEdj>Pd)xdKeAv+bA?6ZE#9ALtw!OCuq;Nn(#LPi}<tw5U0*i<5092
z66?>R?a)-q%Rp>8i+1rBG366A3);Iji~UwHF_?hD`YzJ6IxTcah;{^2hz1igyXZb;
z)&~dG*KmG+S?AWd`{wCkU3YJN+t3qeR9z|p#&Z7694l(x_@te&CglwYk)+b!?g?~7
zqzQh&87ur~Jt`=7KhI!8YHCc?EsbQA{)M$c2{t<0aN;3%JYMLgDZl4doCa(}_FM1A
zqE^z57NToN6VB&@7e3l~FqF+Or5SFU$LgdV4(d@(^qn-sFnBWZO{9w%l%KecA^_vQ
zWLa$sSy~g>n5djYv5Dfny5*cat&)6Ky@Edd!YTbCzCmht_OWBKs`I$aj|TLHM8Yzh
z)l_rIDZ3fv$*^Ow$fS;t<hy>(p!Jas{t1M)1HuKK@$n<vkR2GDVLUgA_*rg9P>fi$
z4IrN?2%BOM{efGbX)FzE$UOWpx&-@*S1*c8WHxEK@tNr5u{(8f)mjqI6Myc8kSw0@
zzTk_3n|uT8{fs}6xI6Wf?(oMq0rl_Ul|R_<Uzy<g%8h$+p#9Z2URRIep7=&g<i@H2
zLGRa!S@gD?*e{v`&P;5WYz(hVQ-u)p8_zxU^B-5jTDb;mT;h$tj1G9^%i8DEI~F6>
z#qO`_8C6b9O{ON8SG^6*(op-CVDrOc`s1AemJI<RR9|iuvB7nd2{#B?;j%3FBa1SN
zBM!3&$Ymvt%YS3`H@qH?M7^nLA!SYjEe%ajpr*0!*dsqse65>iIkcuQE@q|L)Eb{7
zpl@zN7sRIFt}I-D!&Sp+xa`c<Ln9t<N{6s%sy~CIv493S^xs`dcm<J+1_W{?mbp$d
zm}k-7r(8-stX|RyRRoD78m$y2absGU{8~RBCM}?ePtRsI4!k;6)meY>GLBK?Oi{eu
zyVU_W-cPr>-1PZ^BytA61NIqx>;UXDs&jA=nZQO|YUJ1W6mEL&u}-wO!P0bIn}ceE
zfS>Q&0VUs^wynRdJnzbpfkrOtErQoRY8SU||MQ0XOR*^>v%MV@i}1C5bR_WQNR(2H
z{gzi~UDa}G()EfM{4zf4GTetHrL|h|;Og@)iN3NT<202dlRK?cw&%0Wlhl*TRL6U6
z?fmLH?-PF0%)&c=tMjLji`}h-QmbgD9C#mctt8FpJUFYFy+oldh?D0?|H&fFi|)IB
zJxsLjd@yVH9h6LVZKC0D1*P9hQFZlKERU7e&7;|!1F~jy-czscWC$v@QZP@23bPiw
zr`~1|5uZ|T+J9#(9M!Ze0-KN_xi|Pv0n`#erjjviA7(<Ttzlf^YJ<H0EXhz!i5hu+
zLIO3=W3H1|!pkP)d~3RI(Y{7zYF4Olx|f(}>GFu;0eMm9vyj40iliB1pU!Ax=e-Xy
zJP&0Ry-u%<lt2SL1yma!3<KZWnh#C0?d2>@J@~%-#}#TWdX#{li<LQ+9TqaO5tR;<
z)(USAweVn2$W@Vjw~=N>-@PD4L&qYC<48+m<>u%|V%b{L*cJ4UWD875w46or@h7IW
zKr<wz8TXIjw*iMdWN`wW6nu_!zG@3fWAA-K>297U_y^&HH-|#43vRp%Q8i|6%>k6c
z0bIW3;y+w!sU#OP9#|#Gk;c<YvYK13;K>ous!?W=;?S^{e>lCnN;&tvW=$Q0-ieL>
ziQ^G>)2IEoD#yWydrq%yee>#GJBMS(TivIyW<H01LWYmpEE>f|em4s63SulACEJtk
z%8$B!o+;m6G=_B<j*18vJ%5Qfg+^GVM%<9A>Hhk<?7`Q1;nzC%+s^fF+a!;jdpg7#
z1Oj|ssAC;;AH6tz1SSA0cZLJxZuRltRc$HEG>xH-mTruR{ucCFnd+ttbARu=mRZz1
z9n8JESZ2+jBaYQk8M<BQ+kj<AP`qu}-ND<k2rF1DmImH&(?0yUl<Tda_MRbYGt>EB
zX--h^6F`99r*s3}EVD+<hfjhx3>Y8WdoPei$a&qWgp|w;mSo9{xYt>2XY{^5xs*L8
zCtej#5_>@a=!D%<f3>e2H0){GdQ$qT<gpqk>ULz~ZD3Qoc1$;W`BZORQDU>R92Y_3
z8rl$xZ6Lj;b=mPNO?@@8p_*9pp*M_G>8{F9ZRo|L*+t|1UPdiN(|@sbeu^!kb8Ufo
zPAR`QD^`<hu>Uk*ywwtk`A^Q}R>G}%1nhe1or_c+T>u!Eo#U*0)h&x&ShDa5RCBi&
zUD}W2sJkj;hh^=##c{o$J<*Gc@OaNOk<iDz%*0Z01*hdSOqv+FwxoxAfKV`JXJNfY
zmHTe@Iq%E=FkOq+VFuq~tlFXvaAU6W{{X}@n<<2G2>}*@9(1%|FY|w<z4$OIjeEh}
zFUE4po14S0tU|8!4{X@~dHjRTI5(%*PtKqZ3v0?V(g3>}6~3U;mwElMUy0p-yz8KO
zqve$6E9BXX#ITPr{9JH8Y!6P$5`Kp}9Q7;miwoyU{m+%J&(}3I)~>JC-}Vo}hI)V5
zFuJM)_M1U81{TMfbC#6SAChv;ZGE`iLv7m6CC{Ek9cB<75HW9_&D<X;9NeF4(}A(3
zyFD03t9{;B605Hf`~5?EsI>zMkkDz(c~YLJkNFkTm-O==@52}B!$W7^t%2fe&xYgE
zaKLn7*1y!j(^vmtf(Hg35Y`LoNh<=M@n6+(MCYdEU0jDFWyV}O05m})nu~5hTIpyu
zO7LHVtuKe``*^Kw&JXnhU$<@58^LY-h*;lQT5^R6qoI5J^kEE*L*9Q8e{HUnLdMn2
zo&DHRl8TdXRyI*3#n6O^$=?ySxr*tNtt@jD@smd*GAcz8GNKg9?&SwcjZZ>)w>LFa
zd~38;$JOOU##dU>={Sa-n`LRyZ%45uPIux%&#g~>_lAPB*gPcQ3A=2NVpZL{Rt_#V
z0@KUQqrB?oKR&9_t657Q7cwtzqvJb3KPo(G+sa00DaGKbKJy;2%#mQ0?K!MIw`R<}
z3J-F>!+5;WsIO2r-H|?yni@ti+2RXi$d+)_Ftw>9PGyM~jUr5be@z98=@EaQc`ytL
z=Ie#2OVPyLaal0@5xV)-ZqCuvPfKHyKU*Nq@&Z@KKr>j4iHw%P!mn>Z;mzwUDme0V
z+BNQ>$)8hMm1V+4<gBLsQZIkf$U5JbABqua*00k4{g+muB4SNumPwg&Nc}A>wE|Lf
zcO-b6@D`NC)8&hV$r%a4#;c6r{0jj!x~;wx!O!%~GgJn`hb|CH_ODmz*jobXzU7Rh
zoCiDzu*>@K%d%rbsT!3XlLzzY5;Yc<`P%pCbqtroe^-LX2P@L=cr>AOV+ds;CLTtV
z7bRdx<ki(6Of3XxKj=wmB$+^A3y-{35RsgK6#0&2v~I!T;Fi|F1{GhTiDm|80|-Yd
z+<<C8uyt$1f2teT&tWpgVt{aK6Cj*n$qzHe`GSJ3x-I#dWucBI_=HxEqg3mdlm><O
z(V(wZSjSOF9@8~Iq^(=jQw_!kQG9R2-l>=MooGa$B>&zbQjsWY)PL<;^^Ik)Yr){i
zEUbZDhC0$Mbn{xdXcL)1@3bg-19|R9_;Qa~1eobiqtn~gL*2|kT*YZ#M=<ClPQaAb
zgYA}aE>e>TeaQRHNa@j|C>q!^$9ittxs=ySXvWTkJ1Lk9_1nMKn$^^l?KXfA89kh|
ztp6jdl^+}f9DymC06TylJDHhnSkJTEhtnrpwbW7`+$q{0qpa*Ns<@f0-uMzN*97Mn
zms0cuWdn?$Sx_>J%fA|PqSDDheLc|dnT&)!{`!HugWs1cvl$rAe%qG9+R;wExqVV6
zx2+eisja(8KY3j07DA!t?B}S0OHp9)?7-z-a5>b>fZ!8Lucv+?)N!SskONZo#xXot
z*@w89MY6AtApo5`W4ug3@eFiNPc)x2S&dY<*S8vT>t~GbqUdEt&))ByqVtqsbl*6K
zzRUiyNB-(hBURpSv}{>*FP>xNJDR`1+kQJt?YZ2q`MXnpGy>b&bgj?g1UNMj*ehp&
z6eiBD1NA~J`>J9lKsN>vML-m_{5b$36Qf;;U3BroMmeiSm7T5meJRRV*3aXJFK^5*
zfA1!M4tqjFQMvzz9?z@|f#q1KH<LwP8@KPF62~3{Zi?j~;*VnF)F?>mjHDB?`dt85
zo=hyhau5p^b%&0ze!;%xu)$cwF3Jbn(um|;^aFt_&xnjIu`cGUH+aZz6|>0M=i9ui
z?H)M;+v-1k%|(%<TOWExaK`>aNREStV?96?RHXU@K}g0$Hu8YRO-4(XNh_87TiOux
zgVNBIMNUK(B{oRT4?*+RM_t5nKHjPiKN}v9Qg!$kSd}ol88QYqh=V2kKyEQw=8Q;1
zJ0@xBl{0Pzy}4yyn)FQBnFUS+psJixNP>pQB({KB4O;-ekw|0-dOQmSNVN<qXOjd0
z4KxTz_v9Z+P?53!qI3j0T~FP}_;C;&xylqmE(z#jQQricPK){Ykj3tAr}>*`j}*R1
z@!zrfT2JRP+OP73U^aTTzQEjHf6FC<gY}EtK%lSV4-?#1UKwZ*$<sbQlI!f5Hg`R8
z`3P~5A5}2+&Ca+@LL8?zKr<JYO5Z4F)nPR2ppd2CxxXEEls?uP2ONu)>_YYw{#!|Y
zKGa?Ugu3$SrQ&@g2*sx(0vh~^ra?i!RT)NIb!2-@lgl(HdFQZDxl|C7HBE^EpjJ=c
zeIc30k?`Z(RZrK}Ok|*=lD>0a(W%ZX|FcX1wY55|?$oe^>3t1rr%-ruuSJ#I``Vwa
zZ%7SVAde>n>&)MyukU%~0~`9c>MR<0tV-Y}t;f6dHXNdilyf-xSR&9Z>WN)&_F~BR
z`=-FrC-$ekRs(16n_oaZF#HBq1hS=;7;O(H##h#F<d#}fq8fxrl~TrU1g4x(kH@mF
zY-R$M+B0^_T(p&J7qb6PV7m8~YOZOivpLGs<B`(+)g{aFM#?=f+Iv>i7La3d_(NV0
zHT}nby~uGKP4A`taq(OBOVhuNN{Qb;fU(40Bu1Et+6447;C2~vA%HaZ5(4pm`D&}v
zGvqz_{f{J%!2C!Y$vO!aNhHSC@o>nmwmadH3io<56YuMnjc>A5hm6R?VO<Iw6th6W
zkln{Xy=#;s+z&v{L1-aG1Nub~Xb2CQKBhe{iZ+Ni!ik~<`wM;%RmON%<q~09Ex4nn
zB%wUxEijTBk1Z5U`Q?FEYE+o*M@0<u2sD`1UI3Y+6?k@M6BN;d+7LDQtI|~i${r+>
zLsAhZf8h=hRAQWT{=p45`dfZ`8u(w8I&~kJw7?>wgxZc5_Uxw@<4wkxtN`r_wM>Z(
z6ju2&y$jw55jAppxy>DkG;(!PFYxq;VyYna@}Uv?9wgh`fvfNGM;qa0G;yH9b%LKO
z4*wO4ry&9-A7K1g%$`Ttywar~^E6PDw0(jCuhNmqi8X)WK9K$XXX$5LJ6Eg<*R=xy
zZ>G0wSll?r;Y}AJB8D{tns|TX1`Ij*<pL^r{5KF7FFIZClZdKww}6+I?KjXWNk|mb
zBtZWb6fGD}O}NK*PWif(6J1uF{tJ8%x*jPce~%Ln(6Mr)SPqqEpg9C!R$mSOv7fNu
z^aa4Kx&YAI90RmZ4+n@O{S<osZC(+AIXq6lKP1619COt%4CwXhn<stOfurQ+Z6J+M
z#Ppbwk5#<g7x>p;f2(jWe8v^o{6kWr7gba&jCad2g(|`1XLXZr;jYnbg}401M{Y6&
z0?+d<+S7=5?n%P~Ir`R7Nd-T>bdC%!=H;zoBrsvn@f)@4;A6J`ZVqp+u^-_sBy@TU
zU!J{MJ4#9Mcw#<xwk)scF5In2f?#eZ<Su?Oee4H|+{IhFs`@OW`ro(stV8Egpmc;d
z{YS&ERx<twn?6wwqQd+|U<R=7{cxn5zLkPOaOj%0t#r6c)*>$@d#I%j`JUEmCPU=R
zt1q^{etEB7>3gEy#(=;V)&G?L@%X;Ktqp9_il>kDSsVYtB4v$^C(b&|S$99D@_iAx
z+s;MyYqsDqap3LSzUfO9Ub=xe(*F6ameuxjOBT?RIGGO-Dh~*%-|4B2G}*qe<Nqt5
z%-c|*LVzISum34Q+n-QD<X>Bxy!vjE0pwHb7A>avNJ7a6rA<txyIxdblYu@-P~<~b
zQ<A|MTd*neF*NJSqPa5D>rsB}RKmTi;~7K3%3^bLByO5CU+!b+t#P{f^728<ee76w
z+K$<XPO{4$wUwk>ebTpjz;YDBKm2eExc~?js~rlG>cdZ4^Quzt<(pxrYhvl=G$cm&
zZvlWX3=I>CV)G_BqK~5&YIifufO-RJiFg=5^R_bH9gSx^?5uVkfeK-dXmiB;@!|&>
zZ*qqfD~f}ESKR3<p!Kc?yJA(OVGh_^Mus>hfD{7;Xmv%?g2w3;YEhyR6KI;h9YY!w
zfoO&i+QkvMuvbo*S~;fl8iv}MnQx53l(a0g$T3>b>zgjJiKfuuFidPf!&O^pWO$8b
z)C|J3K^V<@rR{K_<NlGv69RoI!{)lEq=p_mUeo?QJO*@CPe4+ITa50N$(0L_+(Y0)
zI<)Pyn6QYESPMlx__%SR#`kk<6l%yW74MuE!4Co6yzw)gW4TQL-}HyRt;>j1Oyv8E
z%qgaBSr>|tQX8dqebtY%Y6smS^r`RZ!;~^F%_8Ex<I%kZ1J-gi3@AsFrubBRkw2;p
z4T2#>bd^DO=L>3sK)d6e|2e(ln*^4@!PLlznux^uhY;9(1D8FKwrxGaA#{TUk^$+D
z?~cvp!?%nm&acT=Eb<B*N4GWLx!u~1uL0eAD8mwEhPZVDsF=Yp1>EWPB<VwF6@y_H
zg#6ZFrx=aKL>Q<Wp$;pb98p#$Md17Vqn(9;JYpIeB59_?$%$aS#mFgT-s#xd$;ELa
z!$bAE3!T6@Wnvf^b8cLkOq5HQ0l(Nw8CTpOlI!b}R-ulGAKNpnLlZ7@Sb8uYZ7eGz
zF+ZXEwVu>)=@jrrE#*VsRp@2c)C2AF-m(S@2wxUZdGjBKfqsV>W%$T{fV>TDyVJ4V
zG94R971XXEj{~@qk00LU1I*2gYrZ^c-aEK$dKjgYN@@2BFL*5VlJ&+Ez-owKiJ>#X
zfU0wb^fCY1W98XbM^Mx;=+AX#ZVk9{8Uc9XV?@_73oA-C@yCUE&$IlyyCKi^pK=V2
z!i4(0tPGIJj0V@3JI7lyS62gNH6nZFXnJRTq3?U!0uo3rk75Q)flP3LzQ%@gSlV1o
z{mUr2Jz;%fDl8R1iJ5SFH}mu4omzkGlA`gaS|$w3>skHyOY(@*2GGBQ`LG~8@kZz+
zA0_ZKf{~ysL|kMdV`pdq<j5~pI8tED$8;gE=uJGBgNlkbF3=4483$r~t~E}2ul0zZ
zj|KR_;yrK<K&ywN7LH?9G?qY74iy*+YP{D76^!2-H2!D7%8>r>9^)A8)V+VQS79S>
zmn|M4=QIe5+(JoG*QxKDNAm6ez5g4r_^S53JHPsF@X}Hw$nm*gXL;8%&$e$Z@K8!}
z2k4Ts>j%W4g-PX7XcnLJJFGW1&IDk^cwXU~hy9x$0g4q=TTbNenZAdeb$k|`2U$!$
zwf1%wXQV;N1ELv(fF$UZOvZ9`RJ#JkLde_VJH|$}vJ|(PnACuWyWSO@Td6fyresOq
z`kj$sWRtl=MvGFG#G+qg(sLK1stautNz>IaG9ID>?~toyDyv=`SQ@?6>P|QmphFp(
z1;YSkXe^Chffyv0VrWcVw{i^MLZJX#tZZ7%y{ufBl``4Yikg+?C>xf}<l@TS%1)-H
z{uN-$s?GJYiB|Eo_S5@9%l8MM{JoU6C%y}FJ$Zk$#=j2FO}w{teWpI}2vAIOp9y*Y
z7Vcw7|Ho4PPjaHhhQ2M|JJ^~=Bj0S{r-g9pv8;j!5Z$_5-qrF3zdhDnToy%}{;Zwe
z)IuU?MKE?HOfOm^g7d;3YSszLFrtv%06Ak4Nhs}@_DNjyQY@ZN?u#SEyGhJVAYwvG
zJF=(`AG=!ZQXZW%c6|DX*ugWTF3BKGtBaxr!4lumU#etLhmCm9?t8BcTFEx5A5r)t
z4k}Ce$eRza-H{ZR9DpzPFyiE7-*Y3TjMlha)yqe~klp0dLk!;>=F4gPPxTGX13mXx
za*}ITEc;XJH0evX<)~~G5cC;kgU<$S%YzN^&%8QLp6-pWD<Bx+$UqCLH8hc+%sOaf
z_1QGp_At@>Ai)M70T+`&y}=)1Y(LacbgbJ$yr<&P)L=OWs<)ew0O}%d{`s2Ng`hjz
z%Q@DuTNIt}gH+JfC-@8{i4|Q!GmcdhMP<qD{B6(qHs`uDXYvwD%CHF<rW$=ql}hex
zew~!Ef7n?~p$6TRsK@k{*5hGm1BiCUVNY+I&UH?Z3VzlCw+SFa?^5i$lFPI_Vm;ef
zGr{G0ypu3qS8G}PsIs&mFY)DHqT#1yzUW=oCZ3P06cmmC*7(S0HrWaKId0;b_pYhz
z4F6+J?4gL-=bV~gV#I0-^c2LsZ(lEBVNl4jkj#&8WQImE+SstV`sBF_e-UxbRhlRF
zn}M65ithEuc>#0G7ayYziy6nUFq*OC!&?BKT-ai!??xi+f3IKt%|NqeYTzCo!x{11
zjA{fH3r7rI095U{=kxP%m~oy>&$fpOC@{P?JCEtb=bUiUub%r%<mcJm6PU#Atn;m1
zY^{rwdhXrFnejGlphG&{-*mXGy-1mj%BS?GTvpUymWQohAI-DO=(&aHq_#ZnST>4O
z%ELk&(;NeMc+_jHd+5CX+i=z%N7SHI3uwsq08BLmhFxnnfrBBPm@|>G#%nShyCWCW
zfcxBM(yPhIhl*{y=>S|d^Ybl`I^N@=5+J%9H7gOl16&?-^<em>wXVq{UsgibQj!*6
zp!M8iD*29!4ij;|g#Mh1lrkQo;Yr(_@y+e^>oiY<uPSKaqxzBqq=$V`o$bSauXDAy
zwt*XL+&^~nez5!URIB{BY%4w2Kj00C-J3R<Zvyexag9uQ{NpbC_}LSv_>{8O<HygR
zHQhfQ!pX;c3hI+tt(z3S%plwwV=tn;&NQFmx_{LIyd5|v-zwl3kKz4*N$^LuPVL7z
zhp9}tWUCK=N1N{k<ql|=k5I17w8{d?QslCmd7&VF%L_h6t~>bmP}XZNzCvh}Dqite
z<CX<Lzy<H)CRL?sh8;|<^b0Ci(P%d1p*-lsKkUWJy^S<itU{E4VFVvBYyQhHAEbkT
zO^7eb*H>}%$VsHwJ|C`o;cJ;!VW5!+1su^@@Cv;wuM@$#_g2x4{Z>|sp_{EQv=xi`
z<}fN!QxN@?c>H^#s5-{UxWrdT`-PuM%*oKMU!S7?2uP&V;LiAJZ5|!Q;MS%d?9_z$
zv@HMRm5AuLZGG3V%^OA0@U?n#u2burQyVU^pmH(Wu~WMbrw_iKz7{#Phn-=V&m08<
zd@fF%bk81Iojr01cqV`LIOfbX=gf`y%%%G5$=I34hXDPTr*qd*f?wg)>mnrV)Dio>
zFp_obf7YjgHBH~YotUEnx6L~JVgn`gB-B`%3h4fb)cg_c4)kXCs|E%7x(9v_`Qxd3
z?*8kHKxl!NQ<E$M_=&&rcdM>Ju2VA5tUEAyAsiJ7Ncjjx4VFxGfF;dJ3Cuz>UN2D>
z|A}im7cu#3i~eis8r<i*c=F_&tQ{3U-9jl1O`~p&WWIPZ)~Kk&rd&WRj|S4zFmXdv
zKIgad#)br1Z_w++<my6KT+68BgM@NJ!lI}f#v=06Zj!+FqzcY`>n^^Nj%I6KDqmdq
z$6o40&6}exlr8~ck%FqcK($Z@^Vr2w=BtOdj;5YdQ(wnHW#^g;Qr>5$Oa{oyEzK{t
zd0m=gBbvVA$6%NCzau2SCrzq_cE?{GK>x`gLp>L+{Pmvq=KKzNHm#sH?y3|;<hok5
z3cBx=EO6aJD1T)`760rPYG^QM>Cdfvz^e$QUh~KD{xynqPk@@G$9x6~8#M~+&1ufz
zy`Q;Wl_`bKi}!3QL^ZMxHw`PzzUXnId6AXzs`U?FuBd!oxk5)lbm5vp*<MfW^1m;?
zGIn#qn?e<lK`0WfvRG|9iiDA&jfq4~M9dyx&fof_<%qMRIE!zwV3)Q0UCN~hl(GcZ
z%)%qn3^4T#8H&khe`ZOvvhbxF<>5K)I!%=x+<AO0s6Dz<`C(~qY-Rs18JmcrfvtN;
ze12W;<m$HzIJ>CQo%@%QTN(AQz7IpXWe3wU-Ysw=$YR$wG!U%!(875c8*wk^=F_(}
zl~X0JiX!y3DLL)^J5r^lcxai#v)*xwbIG<!9q?#;C44TV)8JcadtAcl%97?BK|+~F
zf<hmOL-`?m9klHxkqCJoLrx!FvodW48XlD+_9dsG*E}!{>&&2JD422BQW@}UfeXze
z?y#yL)xJCJ_eGU1m}Nd0{a9F?5peWFOOru}D)W4|R1cN;202)6#pg1arTjoD!c9wH
z8X=b#E94H{M|HgL6>@f8q}EOlM<t88G?8B4tGBkvpH{bWUJUuuvCr#7S<uy27_Mz&
zK*OiYBW%EO<~HhFFznBvQK;0)WB&S)`dSF3QrE#s$CI^zB&C->KehQBZSIJgFpwyq
zm2vJH6a+dx&KeIKGG1}gP-t6d8%7<sOJmk;f*!enh`BgD=<a^Ly2~sqfW)GuS5H(q
z4t#GgMKVqrDkf{p#tHy-bLI!6@0c4hek=ROF1*mydq_p7(0j;4D-j7|q>S8NCzGNi
zpr31&T74GKj(sx{#6;CHWL!vLt$~9HSdWmQ#A&$M!Lh{R(6jD!0vBpBmXIJvh1-HF
z9xro()D*k1V5T5OXf&HIiwV`#wL%Wazl1=<r--(gKxu_4yfyqtU1^X$Z#b|B4(;`^
zkyH{Uo2?`Tw)yf5QGktBrupup9Uyy%&4+Bt@XZYx?p;)w-+o@u<9zA{)^&g`Rcb{t
zUtP6>&%b}ngn*C1FixRtXtit3UydP&55{xVjX_9C{d+O<V^^VUEg5)OY%ou)sMj0L
z1dp~!iMJl@Gpg(fUa$A*3K^Gc(!fu!-RF8x(?awPzi8?q8D|2`5$Th{$8SeL2RcXD
zQ9siYo^;Q406@&pb@r%NHc?REO~}+_7jW~t0Dh?uq(lUBD^vK8av9lpbCDXp)AHds
zy=>w=qbt>;9f5wFAVROX3`a8a><+B@1O*P_CIX4d*h%dc4@kwWS9+0Pu0Wj61Gw}R
zVMaGi(3<K*PJN_P`B@^#Yr}C0)@iwzKTU7<77$Cbrgnx&bGPV!=mObF##?*!Z#~zZ
z4E{*b`O3Zd(rcEl;PUumc!TXomvck~9*Peo4#6MUs{m#=o+oy1qGLP*23%kDOD)dX
zCkOB5d(8xYEoK+}(b0b*j-cm4&TC0ltofj+*!)X#;6mehpPsq$G1Pyc`gdi?z?V6q
zm1=4|3_TjWm-wC3FgFSHy@_5DcyGbHQew2Y8}&q)a>w|=u-XT!$1qV;-PI4JxRw=w
zNTGwGi%5{K#$VR!l9K-}6z=>{rB@AffSlPVUiTUsjtBl_2WWNaM!wUg6q8=FzslB?
zKG7ZwS91RXFf$<*?<bS}S5FRLtyGbqiIIYR#NR9n2g`S$G~)#}+*4h+n|HhyV!@vQ
zO?ZN1EKyxhOauP%aV96-MvUnmp-O|a`Qqrn&(NcczJzpC$iU}zX@O<uH%ConYa!N`
z<m-Y|1Uy4W3-udb4P_?XqWeYQAkf=EmYx>8pC@;+rMw20#TX>tN7C8;Ao8?}0Hm$J
z7`jm0)%L~Wx0l@`-1+bzj~Wok1@Hz~TydLJzeU^P10X$u@K1MV+`;o^6dY9i*T*!j
z4v*jr?YqWPDhzg3?W|L{Yz_s1YP3b?B;h3pEI+VZhBtEoe+jNYl1&&~9v;z$s#oyL
zcSqUk(C2zQ*-kcrjlaBSmY&s$d4PD>1sIwP<)YoWy{t1Ml<UXhafe^ZD_~q}!Lewt
zuuSDw+-%r4zmmHRn_f*UQ5Ow2O&>lEd7nR{46%|7k52f(T&-oJ+Wxu)4JpZrroc5%
z?(*dgb1v%^EftY>S<urFt~>$&byM-&byWX^s0GGaXqP>2*#+nw4(RqpkRy{o(~84b
z0{k9zexe4c-FjT{u8$y^(cL7jccNUUG*{@J@Exx81u>3}ituq9;*tK_6G?Rfq!Xlj
z-AGt8km`gOKd(b2#V?w(@mGpjyWP2dZ@?0*0hH8!IErL5YW0n7^z<afY%qTCkgG^7
z$=$f^Wi{vX85Lpl?AsZe%}S}_LS0}I$l;M~)l_d*NriZ$+uelK#ipSWBKIdIJpevR
zi?^BdG?HwbFFsl-0I*eR?DgGskQUQUU$n33(};~Jq9Q^HdRT_K;PDwuI6lTFgLm>!
z{3QQnlgr(khe6&#cS&yHx3)BX<)Rta<Z}9+%Qs_8Q14SrbI6w7i#${*H3?$$#@b;U
zJzjc$6pCej`c<@<Ogz`VCpi*xGWuQbR5AXbYW&GnV>!<AZ~HdW-Gay4yPx~?uh+(X
z`5t`jMg^(~fas+i2efN`G4b{BGS&yYk!fm8@)FZt`UxUvyP~Nw**9H~Esu4ag<?2*
z<*7qc3cNPnfLuHJxKpY*h~vO4h3wjqA{<!z469dqNw)7xGN7Hi@S27o(cXVTYhe5p
z5mo>42DEz1bbM?~(y3hL9WkxZ1u9CwxV(HGNo5qC$5(3`$&k9@Nkt;fMiUDY%uq+I
zpSJo2KiLt#>PZUhVlEvXb%9E&&o399I7`2|mr%K~c>lL|R5{i~Ml8MH=cE*9hOj2*
zHQ1^?u<_Ucvu-WznWjS<u=d98n{@Mq!<#CO<Pypsu6IILyXGW2;TX=G>)dJ@Qdc0k
zv3D#DP2&fBX@i${P&ohU(6adHaz5Hj96a?#I*a|&=hp=yN8KFA0vJMGSmL$sbFV+7
zfZdTLf+iUM|6+wu##+kL4v>Y6Hx{}+xM;^T2w_6u>b1b1kE>$XDK-^<BdKW^UxKs}
z+YY1Els9$iZiBAg;rU&Cp{zl~7uM)kIcgCbR59|IvXA@<zxP3vZ*FP-904dsoavco
z&)={=|MKGNs1g&P2X2YFdl+!Jwjsbi2vtAH<N62De~F%nS~)4veDIBf(EGhXm7<}1
zm7e1|X#B<0+mM{Xh3A-1lBYk<(#Ze&d{1d`klwy?^c&kX<x2D-7(V}GA|ypNTK8%V
z`jAuE6}=<te)+Y&>8Ovs^cRvjc%Qo2-~Da)Sx0mKk8;cpI|}01j?g;L<Pb;|27p-U
zSCzjQmB&c<45v5i%5^LPzEYP%=Br&zd<pnK>{}t#asYGhFIeb07~*eDbTh^R7&E;#
z3u%5cewIqSxgCRIT8Xwa3iDv2*B2=OL#-Ql|1_O>m-)rMpc)iK<1xs_V-lFe&1l*3
z+!Br5z}%G1v3~=oC|O=m0wu~LNe-E*e!GO(Sn;Yk1CZ7r^<(#Eps*p`uqa6Q58rUc
zWeD@lT8f1V5v$L|!pP(55b9#~CkFKQPuQaFb<l-VgeBp{Tn<mt256f(_~$NJAB+l`
z8N3hnh)9jRzx9G?oB}=`ar8CfX8bLR$2!E~URFmx8IShtzT0zKG29!Jt|ecFRBn-c
zhy&f?Zv_PB%3H1j_A1oy-B1|8j`UEc4HG*PO+w*qdVf78d|iUC9U2%U9XBo<R|Cjq
z;be-4BPYZa3h_}8W2Y8jbJ#c<y_g#M*dlCfI!k<cOKb~(GDQei35ZW$hDFCJ^yt9{
ztYMWw(Bx$paW8r-HgTdRaRwAqh$4CJuL=62rQMlWVIshn3VQEKKFb1isZRPrn!F*D
zyrq}i&#kyPMCK(4V#5I0Q$buj*V>EL$sapG90aON`ILG>^1)v6VQ$JbX(~`S6}%rk
zy-Y@Z2;?;ZwelyHWB}j7Qc323f~nk)JUD4>Dur7b`$QVYei|36HVIieuYNkeTe@Ie
zx^P}PPi?yRe)=u43`yY(X?<HU{fygj849%-N)s6>!Em|#40Yj5P5n%5x6EtOOx@bd
zI}@2k`<Zw1?&|N0Q3F6}HSA27gypQPk~!d9ES!P}{Jmt_3=l+OvU9575BAAekqU16
zS@((A#VBBHw}Q1kmzNvVXNAm9!PCMmtBa65YnkoxSIp8B6ce0Vmdj3$K~!J?v2nTn
zWLX*eT0Ay44l{x+^;)D81>{14*pYdr-D0Zcw?i=s1T<3}ij#j1DA1x_=MCUNf~*GB
zYE$#WF}n5M1wUl%>`?rk`&t!lb~HA+{ePWY=shX#vA=Q?gSK$Y>Vpu(tXW|Y(&Pr|
zEa><v#w-ouTrYY=BRW!@cb^F0Hp$m01M&g#2_{^XLZHQcpr|k4%RbPnG&eJ@#PDG%
z)eV?yQuHq_+p>kDe4Q>P4=i?=Q?>#FuR27I!-bdZrOwEvY~YRWvN>o71R{acuc#Vb
zIywR8g5P>0jGLy_rco>`PAy1xE$eG7Z9FV{@BQ$tejz0rJJ;cZ?IYmVl_c>N4uMok
z*$^j={A+gR;itI)ATAo8<yOF9;De&WQ1Ky<uy=`{)E&DykT52j&%~0`yz(zuRlako
zqlEy}8?-P^W=0REZ-IQZl#q6Zy0cXi_u)VBIRWl)9ufFfT4@EcdPI&qgpHnCq#`23
zHYmTWsHH6TcXj<-jdlj116k9jRo%62T}TK%9V{<B%I|ZmaD7P+O~pLsk!(04!&^Wx
z+k_?G%KPh1TI+O5r=$*SRh<`N)7`-Tm^jy@$-L1dk4@klsn)5h(gPweUmlXzim>4S
zN7G%uHTgbn1K-#N8znJ19NpdNMz?gwK%_gA5=VD~BIO9_l5R&g0s_*~A|TRYyyfBZ
zJ&xzM`w!T0?>?^UJYVN4=@%0ac7w!O%lL_5Kv;TSl<+I~>v*FxwOn*9j<9la*P}QX
zzSO1CdqiDX3NF*HEAYLm=k(LnJR{WuKr+#=kLi#yeE`X<k}Hmq^#13E4>UnS1=#Bb
z?dy}tNIE;~Kc0ctLK>#DpsBwgU%F~tu=s!)*d;x|mL<VpsqTuU<SnoJG_MlOii<o6
zpDFZxAYOx%(fd-Ls^!&`Z<L~fHP(`lkcr{C*JRBM?s2LkU<yFcY^ed`RavIF<8=o1
z`*<zrtQz5$x2asy=GHnfpUgvsF+|co!_uCAB`qYw+lsLcM$oOLlVkeH?HFi3XOkZL
zJWb(d?>6BIn6%QnrB(R!;K{i)XbxV4CW97}5tH-1Hl`1KPw#3)>aeK6@*e#bLCw3(
zs^ClgsF+$Q;*K(uuk)=zr-<(hPZWGGoyISMR?D6yT)WH+K*bPmYvM~)O`tG<B(|}K
z*ZI5T<>zHvbrp3}WAnvI7-(YMyPjvz6=6DPiaQwQx}t&Ic=N5}-L$&#4}ux!RxoWv
z04l|6p~Kk+C)h_F$E;=fv~E^hABi4^y{|IGxmP67#HK3(%e&tJRZ6$%)meJ_OX<fZ
zJG&=!l;p&8gz@d8T8aU_LQmSQwpyC@hz&x`lZ;!<i28egaZZD!oh9tsEIb?+q?dC9
zMoN;c%}ftwnZ88y?-ut9yANOoxODLzs^+^esBl5$4NV3g{sSW9QHbZPzLo=sdP5TO
zNDX+?9czpqH`4`68U+u}-=>r@R-IYaA~ctn1AB;HzuY|6W4vJ*{^7v^o~{9QhmxAe
z3o(@wKB57RcvhtS4p+xhPL~o+4?l5l3a(muc7tTD4@$$@e#0;EI1EKcdJKmw=6PMF
zV7SO34tbtzeID-u9_kYwy4nG8d0r_GVJ&}N_I21wzWUl4mp~8rSy+H$GWS~t)>LaY
zb$<S8JO}x(k%lI^rh(yBJl!vuqpFArwG-~DTAo&qo`3EwD2H~z^p@|cLIjO?L+!1i
zVfctGJnDJ8hg%vq0NZBz{zYN|pF_coPtv|(tz+s;%=1;ntm^F4+#CE-I1Zs}<H&{g
zcS1RNvH?dzzm-LejmDv3;)fI>WMU!$6*MSH8HPddSNSp*4s|w4F=A7RLQ@$5BgZuT
zO1!AqYaJP%!CC5^*>jV8bQZ_Yby#PB_^b!#QJ9Aw8=_)m#sK+|TiKDQP>h;MyZp@@
zYFEnYvj2Bv0ZEqRry)t_#_1#0S)gY%sgIOxj?`_zM+#+dp0(zhmE$Ge9M|Q%4;$`S
zR7#;x1Q%TPqOp(B1}{QPI>uj`@j&|0%8lP9;a}J%YKO(%DX;id5)C7j!6}F)A;p<Q
zThUfaUJL6-nqFJC>6g>|%Z!5bXN4XJm7_s1wlW$=al8}qs-XKoR;%1X@$#9&9qI!}
zZmMEsRP6J`uGX}XG7zrtNm=0?=NmP!AX9o=&UA4ty&?r+MA5Xo8dl|}m>ZpOP!kiX
z)dqDNHCH%`!knS-vK6Is#FfjDRfD<{zmNyYYm`HZeFARbWb1<KvO%y24LA)Pzd~+c
zjkm1tFL6_bjee=_YIyO2)6hbn5yiB^qZeqEEF1MNg{v9#o7)QO(pO<}0i<7am;NK!
zI4e}BR`>#(S+d@G%8mx!W9SG492Sc=>p?tcfGfm2<k(76*?N1x0;E5i;<~|M1a=zc
zk{eXQj>wp<jCHrIB{wx{*Tg3a@@OuW)%Loy{aad-CbToJp4z}|cIxgPj<#rhJ=SR{
zZT5;aOcxIp7}+gW(e)k%muHvjGS6dBS|&<5mF#;lDpt$A#=ynu`Lbw>y-BH=J;nV!
zQ_}smg8l4mJ>_t>`n~;IIpPa={ZV$xr?LYfv0e6Rtj4QxYDYJ5MS!g-q!+I3-DkB_
zwxi<pRkUS-fJ1KwtCqsNYtk3>ym22rr<3M|d>p<tOzF$MCAiK$Rg7cQl?Sk-KfQ|3
z@Q9E%&}Q`3oMyXUd!9??MON&RGnEVjV)rLY^pAx$?Zx*+C{+)suVK!u2I`@tgLzPv
zYist(I#Z<Cvlx@l*B0SVPwE7)GW!Ds>84n5bI<EzchZ{KnLDF-+tZks(;Cw6@og4?
zfhHDIU&-*bfw?$7X;Y86cRIKe9pTfy7SjV#6QAof6V)Gufj=@gU~7s-LW5p^H&0(J
ze*b9eGfi_y*3wIr1M(0)6Zijq-RIPIa=ZpQ-?OCICUMGKTr5>Hr+)d327Z|bVJ*n{
zUbJXN{_^6#{KY^ysR~j;#Ozz!mh_-Hj<j?|gHR(Et=4wZ>-M>1Zv&AY<|hS>HsxDl
zkG>!cE2+A&u2l@~_Xp5*q?apY)}UC4Po&YDkUbF2fnIS+*r{dXlTG@C4HkQoFlc)a
zgVytgg#NHr1FW4s<(%jK;q!1#zvel6j9qXz=^xd$fA8*qa#Uy?#O;fh=%eV{i`HAg
zk#PGqEBlwx)Unre)ThNI=LKiL@0ZYHrv1vSUvlI>lONfOk*=8{e-<_N2|RLOiYf`8
z)#&&3ef#KVjLKis<h9x#Ql$?kN7ewr^ga+kQDsC-=Mi3hiv$bv^+p5Xv<4$-s_WdG
zNAt5pLnm49FJ8i4E?gsy+ZT@7?9L|C?Ubf>nplqh=BGAGyPkI6k-}tzMwQ#R%u6Ww
zt0$=7u)TZiHNb(XUX8z^t#Q`RFRhr1hJv$sa6muX{XzL+#j=(p(VSb^Ul^%=<;;Y=
zPvs%Et1Fs~pkKgwkXJ_=<jbN3-B;1BWQp50a$&tw-!b~Z?@8jjrOWMAe|G4TI_45@
za42F3P0YNi{N|dKe$<?mEuc@hqSfq3OHKLs(4r&I8~eoQnM?8T<D9fWq`~K0Qn~-A
zpJB|KME)Ea)R>8O4Ea|&zUzI{Z1r-TV`8z|pvNvhx3gHPc4`pBdu!n<(vaE8##aWL
z!|m9#c{R?u(9YvMktTmzej9R2;iU6M%yp?Hn9^CVP%il9>KCQUY`%OLTq0y4F5Qcj
zS-26)ItparvUEf?;*^pM)GdwckOMPh@OpekdXa4)G;pPw$zBTU9@}6aGgQdHH%drE
z%vtHPok_U@<REop;V1qCYk7$J>#)6#BA~k42|`WKh$R^Fxk)gZV_Yfe$SJ9HxLGC=
zZ5owG<%2MqQSQ^q%&NL-ZMY{y8C-wpkc+&gb?+@}$IfsAyXl}2(kT)P(fulu2B!_)
zlH2n=M4WUGCPM2IOMya^SG2di@cT%kjz)dU;l$??iYzYuJ41bBRH=;ruEN?6!$9?2
z_ln(&^j`MyY4=$hJ*MZQ-!iz@j5AnMd|pR6g|ESMw~SQ)3P0`dk|*YSKWy&efoY2k
zO3DVAn*U!Ywm-k;=IB^x6nm^251rQjKE$Hdq8CrBEmx;vPv|2MEz0bJk(`{Tba?38
zcbg(hVc}0AxsrTBp$YXr)ESt)^P~0DB<&=wpNb=kKcu9T4MO8p=fQVa4f8$?z{`cl
z0p%ILW!?!=aOUD7NzKjeKL!FQ6X&%Adf}gRBsQ`?>B(^r@|4BqqGMn-P!v!~-p5|4
z7vO0>KtbQQ1Mb(5FzJo6?uo4ja$+P1Eb4A0mMk7D5LPo9FE=kmkQQUIotrx)2xyQ&
z&JpkZq=7&xwaO_Dv~Y7>rZlH~KahGL#BG34f7!_x9b;3m@oYQBS=TUck#)_#`@fsl
zCRQ7U(Q?`wrlnQj<L7HHO`e*lOA{-am0BKi^pp6v>wZop99D3!<0GE!0OJln?Ev74
zTU#J9y=G-gL)wF-wYWQiSGN&Sk1IPi8HN9;J_%Ta{A_x?TzIx&mPExjqy<h5G7nA>
z*hjlpjicCTHSGbT=&z3Ca`>4xH}P-oby1hpQd?Pcyv-tq#q%FjoY_Stm7?oJ1n#R3
z%?X2kdxnH=9(cF6^CP|&e~y=P%`Xmjo#|AFyp66B7=SwV<6|)~ZtY=X`b(xRC}Ok~
z#J-KM_A2{&$>t@~&GOT?8(jLz5)+9v(H4ln@R&CNxzR5u`aJj=DII`2Z)OJ~-ac~u
z_YTAwQ}I*#o!u!6pLk3yI7B>R>*tpmq0lfEI3OH)^@jUl@Xg1HZ@=>wUd8}#9?2A&
zJuoN33ke}>eEWRhF6fKS4na1aOIoNTZ0j_dMFIQwG0`Xk@<IdH{}`SgA<Fj!*sk6U
zncs_2$02CRD*N9|X@bb~S-`KFF~7!nB4l^~H~*TIpy-{LmQUNH!OO}I|DDCPb=w$X
zI(T5z<Oye#cre3s6)w{WfOAvi%OdmPhs<+{7THXA*0ZWY&mJd@U6#=J)2fLTk*ByC
z?`lT}bxWLrlf3yIW@IsJXXE5)>hXh6adZSp83yucau?xCp{~SCk&$4$$4a-N!PF*V
zoLZ)iAI3KRnGOr$A_L~|yN(cqp}`!02z-}iO>M*Z>?-4ZUW*kiGfwi%l8}9VR|{>c
zO^Vl@3;TD1!7GyzBNyC#@B`rl3!Nv-lyAn34@85ZI_n~od2`tZ;#C&9?zWWqrU6a{
zO)I+I;gkj2@UPP2os*sv?+d;ef0bQX(R<!UStKvxO#KOOWZ426^%hs5D~rx762^eg
z+wAY|)#0c}WV+n9uiBzG)|lV^nWTlU{%h%YY{-AbLh@o9%<VQ2;#Z9&&^<gM)yK;!
zYDvz?101<UV(uSH&$GYj_{w~=^T2}HXOY#C*8qyL7FF{<+boJ^NsMp_PM%6fJspEc
z(p;p!f(!<#;*%HgSEWjby#HTN=3<=3HH&7t3w;7Fal<^Q_KK`V;5kPYX*!^u70_?O
zaHnBX!|JQYc80T6n3cni22?5Cx})#%@KlG{1IVNKU@BX{ASO%$b391j)zV_JdcK^L
zw$NH#%8(Ct%?ZIIIxDa)cwk<^E2$Ep|4@WWn|rk~GDuR!Rp5M|N~<MK>74^#a?5F1
zd;LD|PYr~OSl?2uHr1&zwZ8T0ejC^9Vveh`VI(zf5!`4fsPN2cXl#7SIyWC36nI=u
zvXBUhnLzParQ=0qVvRff@Sh4<+5O?2FXz>Wa3b`H9FQ-AJjod+;0#!63una*Xf*1J
z0}Wg><~aLX6L`GjvLMau)ixVm;J6w}nE!Gn$;?Px%4d5n+hs29@bL)y%y)Mz0c?!}
zhk|4u@{`GOm3p{4&Mm_~sq|#e6DH`AsFlF0UaixNYqsslOU;&EanwqL@*?4XLI8-Y
z9iYHrY=o|yzLfqifN3~h?(hj&kg+)t!Ue^%sH02}9tkXvuldqLoHZpr3*1-6fug0J
zazxXGiv5G!ILJmzQ`%P<2#Q?XcY|fPEagM?j_}GDoo<*AAJMm}h4zLRd}Hs}T3@8%
z%X0wq-tT&|IhEJybLfxk(sX?%PRpO-tnc0RE({;^Mw#LWh|XKE%M@)8T4ty5m1PiQ
z#v?Li9ng6Fy8c6W8<lXKvyGk4YI<pw@NbnwFMkgH^2Q3oB?hu=#yb>HeOUNK&brrg
zcmMbfZB+9UIEU%GEfn41N}GlT;hZG`W^IckK<`J&9CkZXp@MpOn-(DfDUixa6(#4j
z8Wv+leG|%lImX#mY8_lnFWK^_{Y4(Rj?(>@A{5k;0}6W(1zwy$5w*3PJ(KWc0=+-2
zwx2(Tz4%*8(AYltu*Kwk>qN)LOX;x}YyodR$Wuq?P^Vli*Vi=l*yuk8v#T+GzpIRK
zP)7m@wN~qcb+G<o&*2urwn^^@UL0CV{a)C9_r9jx`k2+3YTP~&ll!Ch;1B8C@}y#M
zu=IbMzo`E<iifvG(5xRDd05_GfgX4K(44L9{7c@b$Wk}B`{PdRj&Ub}Ig8%ksz>?u
zhAdaQXeqLOea~yKGfo&X&h%@e^Roi|M_3H)<Nf{r?G(y(I2(oGBti$sZ5|;~FoR%9
zABn)wAh*BwTaqhFqv3Nl>5(u50I#%l;38&@<oeAQ!dyTEsBs`Nl@a$J5jU=(>@vP!
zhX*2{QH3A-qn@$=V5^4CBE<r0@6*eObbKVR%l<)&&@Zf~d7CG|6g^le@b93351;)u
zwjoLd`=>9>xFDH%s{y>1_D|dg9-VgUuni(dfNdOrj98XbB;c|ZaNQt!`e4uJj6)v-
zLHa<<(USTIh#t1Xql}Ff(>9<Zzz+zW{jno>2EI#i1eu*7EzcnRD11mM{=K&A-`Met
ztdh(JPMxmD=(8F>3w2ik@%{i;H{PD@{bu%oE~NdJS;|(@(1F1GwpCieN5TeoNQ}}!
zCSR-ZeIp4Cpj~J94}^i!J`7|Akf`s^+0Q6VfA|GVLNvAjnE*>$)&L|9(pC&n#D!@<
zzNSWOJWHdpIuD%Dr0fxd)!OSRs#AswIhNrdLtDR0`R!8ssTaRfdWl4~=~5P`+n3Y<
zjHgJ9btr`gfTv?1OSGhL{{!ZJsdCJtLj<^Mj=|f5e2jzPAX=YarQ|e*_Pvg9?)0qR
zR_dWWea#%BlgNu`5z;n$Lf$jz&U@0kuNhr#<U(h2j9qMlxd?&@at3!Hg0>81VS9$`
zSvUwpXCJYJwr@*!qZ>_ps6F}Ma1QZdi<!!=%A@}!X_IJ^FN+->;mmnIo;yEh6P1er
zZH6;vKZ>d3eaoRIVR*wMW5E4n%u7?Gm^_7DBJX891>$&+ecFI<9>p0<!J3)+*wC9-
z#6yXe;${;dw>2CvqdH<bN;PQ6?@B;Tjso4fg{oj(jj@^8!WS6zmcLar74BF?wZ@VO
zfu!?hOC-@j+^`m(J#%rG9so_fL%-qJ_SY3}BvoYe)c^E^#TrRgg$%whWNN5p5HAJU
zrZGdCY5yVx>M#Q54u4M%SnlMFD3JaFC@})9Ph^Cdk7e;iSdy9boDy`hWGauLis+74
zb33HO5+q{Ordi@?2#8PCOSC_Ly;+o*UBte`R2C~L;mjY;C7y;BUpub`XTgPw1+Qb7
z^-B3TRlwFevT+DGDnG=G5p>>&DA&loOe`|qXsygors_iR&-@2z9Ape1&Qc7fNaxGl
z0kR`OS_VvJzWg-VD0i;Sjs!^?e0A31eL*#Z(*VdA5zOw07gWs>n8hUeSb;5G=%)eW
zLkGyAE|DR8NCP!li({0Jl^i@$Nkf8E5RgbRhQFk)1+!!yE~@9J-x}j~tXs^cij~&(
zop%oRY<E;Q1|HmH1}MF1QHjH9rX<#TiL1-0OJ0ujN82ODNvPw~;X3_q8U0jES_D(Y
zwSG=J#}5+LXCs>7>VYlV9NXG2xenHc)rE|S#;zo9Na$3r+693sNejZasM)eB-Twj<
zz>8|f+1j6+9~)pF`%@YoXE6((Lxm00!bjez=(DeL2!+JmoQgi?c!x5}F%fxMWQ?xW
zVWHqo1G+7mN(|iaPwCcV3y?0-CG(l3#F=%n5O8O}c@YHZo`Ce6PxAV-=IAPifWVVX
zwHkF`m_BHB2WSrPha*8Fktg9)8jm8tr%r@kM3(jo4_p>a-KiezaD%P4IOeIe60qRa
zMVsv_=-tk>1i_BweV5!O$|~VNi+P8}j{n9(Z0v%yuLWb#im|nGwE010_a)H$7nOG1
zmL2Gs)yF56{g)g)RMtjZ=5<JW$_R%wDl>s|Lh?bghe|720GSn&r!N<zjc!b*39MQJ
z(R1IeHdMu2B%LKB7^F?Eg-7Lt^xRvp3|eTyyaVIchaZgJo7611F<qe^?5RAxMoM2&
z>abjF)dEM_?%#!Y8Z~vxK#xgd;T?pYuE!AXV<PS!l*0BQItZ16J>g5Wz9yh(8gkl@
z%WW`2aOp<$LmROof=UzU&4MT1+jgY$%<Y)ndm7lO*zY-f`ay%jrz(R_{*|{KD<q7V
z^v>tf(ZV}h9AS89N<`nz{P1(TrIG)iz(p`kK#~(@Cf29Q-&g3hXTyY7_vO>UX4YpE
zqzD?kYiMxPkpJUI-askpSFc?R(n5e{wo*zD$xV4Pv6=YK!Ld1R4W?nEuQ?B3tZ5i`
z=QAo}0t37LqJs<N=2$_O;vW7}hIDn=bxe>BY6k!@xaBY}XVGk{djMTh`fW=4ZwWCV
z!lFn(C>$A{^<1?Z(a6v80J{8;2v5jqTY&!-I%W?b%thesgnuqJlYSoYY5N(G=}VG8
z(xMDk4Hh^!;iVBUN^YKNvpAZqgMSQ<iEIE<b^V;toGFM_<rPcZ3JqqT8p!xj;BK}3
zk<!pZz`zt^E0y>yBjFR8t%!IA)QblG=jM`>y(F&fx-g?0*C!3^1??V|NZrBLVY}w3
zn*HUkN_du4#ZrfmdL<e|^@#0uv;Ef^_r>7b-1P4V(yK_JzYd1~91}Tdv=K6u@LdVh
zA$2^kMw?*3_gb}Sux_j)Alp$nPetMcD`C5<GgQXR=@`biLJ|-qbzzp)z$OQemixOb
zgSJ49fc1#MsFo+F+X~d_9x8h1ERxpI|FU{@SK+skqC<z`Dcd7G^rPRPOd$I!f@qzv
z&R6YGyRpAklHVvPQb&xUb;YAK@qY=Xn%lL#$^H|RX%ekEPo4OOMJ4&U>|IDOpPq~k
zGg{I~Mq{Q-K2;|BW2Y`N7+di=x#s6iq>m6UTFrs?y`J(;y}JSZzCkiE|JU5o{pIqo
zcW(N_zIgZFk|P@bmUVZ2CVb{J=N~mIi<M5*v&fC%cZd!4+oGIoajS<gw!}CA)YK*|
z-pbPXdg*ymSJ==Kys)?QIoh{9*h|UEunYU`VGHzuIysQ3sZhsOyO(=<aZ)#hIE#)d
zMT}HZaaFpi3agddXsMl0OFcC$e`?Dq;~!G}-*8Rcs*jJFb5MEh+(GS+?3l$w--B3l
zOZvRK-Rd0t_v%k83U5`9=(KMS-dxky=C9hS{q~`7wjuljqwfAO)M0dYo@JD;t*LOI
z&e2xWAP_uy3Nd%vkhN@6_>G!NfOT<2hgC$H6C_ipMRL2elK|;r<U-0vBgLOabIzFe
z7jyP;h4Df$>(1fja$OJ?sw^wcgRdAuPu`2Tn%~ZhHTiIS4bH|;E@|#qBosqmIrogU
z{mD-6%M>7nxL23E`{Ph7&YY7}<HNW9&wtlqeO%fItivAV<q(hOi<e#>@g??UCqk{0
zI$V;U86;7o2UMvB#KQPV!g9#u^AE>TPu<ggAEtqg2Ol#I8(F`Rw$9PlED+Yr%FZcQ
z<jGd6`e4F1>Tf+NQq%T)ee@;cSd{hHdCh3t`dAv{c$W3JecbTf>-F)sj1#5S6OW3=
zE7m6(7$=+m4%JvscCSx<V4NDxoP2p$8a`HX<=TlNNb$tOf+q}>Ca|k(bxVJt;)z_s
zyd{!}-Gzr!Z(hyB;by)?lzLQ6W&FXC9lg>zdbci{WbHQhQ+|qV!$`3U;G<QcpKmCB
zPoNNa2KvWM90j`>a%v=V<{edKQ*xD8SL-viHAx+XL@sOtyjsz9o6v<vEK7DabuLMD
z^1b@h+Vumb(I<(E0z3_@e1WuRkOlypIa9&;6i*Qemc+a$V&YT*EHi0Gv${92Z>;54
zjY&+Vps>x3N?mAENTt?>+(yyNi-g!eTw$Ms%6_u=F>&5G)wJyuSZ}{j;Thf}lHmIH
zVyU>lb5mn;^yA_K$F0fot*4_K{yW<-&({_EyBf8-os?8;zFo1BL689TiT4yk-q4bv
zGCvF?UcJRomSOd{mtL~%1Jl7%t`9fIG=H@@bI)1y0gpg$n0@*L!L?i}9<<H@oF^|z
zjf=R#6u$=XZ3CIPz=}ih%-gMQ+b=b~`R*JYFMa+`SOu-aDcYAK*;o7(K^h&0GyLuG
z1`FAH2A%oWR?;?Rt9bCWFECffIB;|&_WQ?)6An{kQ!DcW>FJNvwV&gsr^t|BSfUpd
zi>DJk-I=GS3{yDaxvR!?LJgi%H;S`9QL~N%iy_)`ckC&1ZabIuo^za)^8-^$;@_zp
z<r(Bj7Wn-Zc>5Rhr!PjIoXb48xcqnJTu0$1pyqW)<CDU9Q~Qzl<*Z5yh4Q0I*q3w9
zmPyB*2Lu?V;D>`HDZlu>tY&llk*mA0dix<4VOX@cfU_%Bt@Kb)m~5;4TW?0#Lj27J
z&NeU5=#zH(<E_zw>t<8LRm;o)2Ju>sByj|9urk0kd#1uL%PPQ9=JQZ4xnJCBeY!dP
zJv9%D_JxX4N}P4Yf2nd@e8t+v!m=}+ODb9#b84iKag%nY`JbXjG-hIBM<OXegl1Zq
z<apzYZ-;4ebLW+3N(?lUD93n94d32hom-7nl#}1lMJ3Ko4AvOcvU<)%c(R_-PI~?D
z7Nn`3dwOty+_q;$G#Ub-pEci+6HcIDujA&xNgksiS2*j&FDK}8U%d;Apm%CRCbWg?
zQ}kYUtj3(AUQtsFZ`0H4OyB*P#V(WY_B4j7CtGtyDuh&g<`ksd#lFZy3aShfF^40j
zp3q<T#6zE(K2=bYe79hiK{Clb|2=W5SqeUU`>cY3b!?k>IiGml*t{{l^j#Ji7m<Ez
zVvYe(fMB7LNDPi^wZ-joljre`z<P(@*ZDg4pMsk`AwOlew|9lMaEgR`%dq|XSp_ar
zTJFfL{{Mw<<!?jqok+<MhV=NHG2jFOGQ+zL{Vm!i$B9K|^&)GT*GX_nGUQgwwP-16
z?CPN+0|x<=fQY|QAJ%XiiAQPKQfXGHa)=ZN3$-l(4JS}OCP*gR-a>**79R66V3F-&
zOI3DKmLb`-8C2I;R<oHf#U1uUy0ip^wN#>oUO(iENeO3_aL~!;T*ZGZ07M{>G@43h
z;|0xTK=dAf$&tq~myD4AZ#y0lL44K#te6EG;Y$p7jstF*H^x!+@}SVLak_Xrha?g1
z$S5*;7M7UD=Fp-bdOz+$OhfwXq2RNsua?@}*h<zU=*`#{fKm00mCqp6PXkhHf?A&I
zTCO9E(emi)lTcxf4lKF4gS2h%oq?hRSHW5b6faqH9$MznvSK>)HiBAhS5nt=6bg}%
z#tsqi1~0~%P)QqnyPw}&7$8vPMvrPfkr=0`uBz_ht*Pt!&0G6^LiV*?B&-b+s&7uE
z_d13r!rfV`Al+T$Wf(d_fHj>xrb#u|fws|8<rs{7ysZ^UIXGaf0u;c^s<nUlmltKO
zDh)v0M|aVzZ)Wy|-}2;<o*|*vs|-rwrtkk~85xowb30~aMLaErsQZ<g#rH9%l1Ha}
zstVnHJ2i@D(|^3~C1Rj2Ifa~>Z|jq3=lcG~S2Zj>GGoVYh6Q6S!JNy?1}aqIedHb;
zdM@i;qeeRG`eQQ=#M<L`dIcWSvosBV332a;b>35o_<s^>&_xklr|%662sb~05UIj!
zEVh6|e2vGx4TZgX;8oLh-+)hobaRqRovmoG1r(n-=k#-$Ki6y2V)yi}sNAs<M-d^P
zF;D#S5GqYm$Dw$OX3KDygE#JdGG7ZrH(%GaA5=#Wyp!S_(Bw@%*=Z}NeUFkbY&ngF
zXZbO}^6Q%afsuOYTZt4EUMFI3gp9#h-%2WOdN#)RQjPLair9bBvETC3i2{g)?}<^_
z_n{2#pL0RoOtr{)*yKYI@gu!TMKw~rGOUu)H!-`%f3$k+-v7O#ROlveswn=tj|jox
zQh)rF0_X&Ngg!*y^^;p-d$%QK!;c5;j?QQvaZCx(s`^I)GSrYDyr@u;Y_&OBXv|+a
z`<L;&bQi1o-PfK7mIHJunF^ALnz}zmDU{#=!Im<a+sEjhNwg9(E$aKV9_#~OBt<6&
z>a8>(E%aU-p&iaS<nemK7EjX9w%pv%QVe0mCWFNR)o0%i{Jp~17<aixW#-9ES_wDo
z@b!^w80<ZtK*Wi|wZ8`l`w2aH^K(^2Lvla`jMJw171k6Ptze(o6NRSZs#Je&5GTwI
z9=T5By6?zoWY}B`1v<gGCUSIuq3{yU{*v)x2nDg|{TMXjyvky!^p#D=K3iuqN)fIL
zD&^;3x~qTR_qdJ4ReTbdQo9g4rt+9DjUK~MD6GmcYnUE2^o}Cn*CT^WKc;by-4C`a
z+{PuyoOc@bgsWTHg0!a&DMOCu@n&G7J_p^K<anv$Uym__O+_R86+FI~T58iqP`tte
zzPdL_=nzEa0{bTk0<I1&MkItsqlmz`5tA_?sH?|~gz2NB(^CV09RC@2!bhf(U=68~
zy*zsU)t?IMk5Yr+4mioC{A^)trP_57k7yn>oR%PCy#Q^v5~S-xkCGx@RfDiE#@4Q$
zJ`_ZQiPYLONdhUJv%}s|+!rZGbTFd)@m0a%7?@v=Q58scYj_MA(<p22q9WmDFo?Qa
zWR2dcS=-{1IzBhU5lZI9TyM!OOyIS3neb2a*pRemyg65GHa7V_$|PC?u2%%US37fu
z0T`A=q?a0pl20txeq-7*b7EZ#FxCxOJ(Y^U2z~PtgX0Og&x-v)6)7Cc8sw6s<)*D9
z@VDfcZp+J|wkAE?ck2}n8~lQFDXava`{*cQqZZNPQdPoecxK=kB9>du8@Y$uvgM8*
ze$M+sX+Nm?%YPT`AO7t(JXSV)zo&Y@&no?ekJV@_I`@WZWaBHCiunG|uNlgQ`zmQT
z041TJ@zWQMP|F+8Tq}~utTlg4aa6+>u9cgiA3p_B+**;uNC%xLpAqu);Qrj<m5xvj
zK1>a+*!4x;42>I|KmEkBYF7E$lJH6ZexF>{OwSn9J3Al6OvQ61MvbzEs`I6KSOicw
zjVr#_iZ+to1%XP3Kg=CRUB|C;-CjD#*^3Ed<zf*GGQ&QF`K;$X)I3ISEM@x|$)R<?
zUblsMPVNjOJ>nbwp%Y$6ARvrZ*j4Lo<Xrg7e%R%oF9um%3+0Nf)p#C!F-#X+-8}PC
zn=)Tt7B&JNqO*Da?l0_4<fXg^LwTuv5MBXNqHaOHq^bY4ls`*QV{9~6RZm_K%g>Fn
zZA&yKL(>inEx?<Xnkh_uwi~FnqCbXfwS-cWr~yOy^Z0*K&h*X~_vhVNeMH8zCwX{s
zpu5{XaXyQSs*}jQ&zUi+wKe4+yfxI4%}-`b`bImwk!hW^PT^~91cKswN^d+#y&v=Y
z4ts!Sxo7@5suXHR?uOhEeZYSrQ)=k*J;FUd*dgK<y`GCtZ(BEXpnh~_C32I?e7GLt
zr75nc?-~A(k(T$Sla9#L$k?d&$n-<VqKQDR^F0Vjy#?vkn~fw!prr+Hg#M!XKnfQM
z${#*RB0WF^<o-O9a9tw0RpzGEUG#fc+!sQA90pd2KpOB_Xc?S7T_q{5qen+{5aRBM
zlr12Wet%<@wUZlH19Wp12ejq|zn8z4ea&&;sfe52=3d(DyNpPD?oYpz_-z>Rv*h;$
z(t`gc_nuHo%ekASM-Y(3L6Rd^zH{0AntTu%+AH;klaVKE=W&q%X%GN^3s(dTQ@k>y
z?KtR93d>C&!K*auC#02q0&c-TxP&#KuU-XlZ-xKrR-e6m`S3q#oe#H5qkT6f%0CmB
zZ!_N9iYR?6v^|p80NmOflQXi#Gp(TBZdPr8NHOpN%r1)g4f}j84{Abz=$|h3UuO{;
zJpCjE`vds!Csq2-6kBq3#8Fidp&<g<3;NUf@NXS461=%ZRph<5^`{W|*I-UfMvW*N
z2j<_VaLV36uR>dLr2ekZs*=L^iy<w8gy|WT_JuUzcPzBA#k#IG=(0g3YZNrs7|5vd
z2t4TrMZv_8ZP`<JxlzixOuNBoCJjBtQx?XFV#NZcN0m4;mm~rMBm<hBRTNL%8VD7h
zzyr_2tTTQ`e;F3Rvt$Ayqwf#BF*jjMG+3NO?{+Mpga<lbDh}a*5ix18axeoK@NESH
zaG(MfY552i(qz7B%<sS2{F`(Ft0g~)Cxu*hqylziEY=wZqJbVeu~3cC4e0;D#mI*|
znXIBp?6LiPev?8o4g#_L!mF7gekEML^D_&n9$AlaU$7tqXOn+9u(oVdraL^$V_}we
zAW+O9DO7=#y_K3N<tHTJ9VkJbssN?$c43I!_1aQyzd<R%Qc6agxaqFMd<2__GAUUJ
zgK?Qe-XOthE@eoTxe1G+Z9hlep5&0(BLE@8b}{Wpna&Km?kR*0FLo~A^~b<X9PtdF
zFz$RVM(;OcYsY}bFGpc{_(N_E^>0*oXM47c0DVzB3TrAj@jl-c;UKbqLE)*X(!0ul
z{VmMCo@gW<jvcP?RKJMEL=<4b9Lt%J(kcA(tY;rDecz%w#&T2D#EHXd{hi%JM8!4)
zU9W1dw`Uwl1Tx>prSDf2AgvuJq?z6|s&HzG$KWF|PD(h-Hr16XEuaS{SOaLeROVX5
z=~nK<u<pn_w}-Ccv~47U4c$?CIHdwBjmW3$JWmg5*AKX+zqr#!c*{n3S!NJ1a``#z
zf8_`Gu{yh6a0aMV1f0^i|3>QKe+_6;6?lfD^LYBKixBz$QRd(<u8<?upj7AJBCclx
zX+fD4!K6+hOBF9Rxx%|t1D71}vmL{|qJRN7SkUOpYOUlHBuvM`nVLJwYcPVd5?@&B
zW#2#)uS=9IcdS$8i_?nOXO(f`-0`uM@u}PivD|U5xD(4O6YIH?+A5R!Dh~>{lV`Y7
zmMT*=xl<1gV<sw7Zz|LNai`-~rIWfco^xj~^JH>XWeW0S@m6IF%z-c%znMgcFy{vg
zp07GMt5a2isk;SAN2I>U&Z|_HY`t&mXddf;ssm#l8yDBFl~uaB80`rInQTnq>No$L
zn1WOuv(0aX7p__OZiz)MKo3BG3r6!C0!hcgFn|}QrC-tXTN+0U7OJ`RgdzYCok!HW
z0hfYaymzar<(7JtBdQgCGnJ&c63OcO_7_aP0w049OGZLFK3N@(L_X6qN=AOmCN=Il
zs;aFn4Sx(R!%_VP*SAGL$Exqi=4Xt^h7bU9uL^5gldwasM~VT}V(20O?TT(CbNhVD
z1JD2fA$D0Z?1&PB&(`Q}3#I>YX7QCD>CzI>eV|&+%NMJu-J7`GJ3st^Gy49+y=OwT
zukTI?w*=`Kfb`Pa)F$(G=J9puK|rDdG!bgBT4mTCZ<Ep|MiQnD#zYF0lg`s59xM)@
zn1~=<rD@)b5CedwW9|{G)}`7czkBjd8(4tbk=c0X$2%mDq?j}JalmYD1X3U5I)9qo
zelpx|YZxF|XQNT~nD~T}|GSO6z}x|3sl>8;$x4mKX1J{%x^83IN^jNT!5G00kN4EZ
z)HTjJ4f~up3mkqT!Q9W*%C7K#d36}>h1vF10x{uknEE|K0Lim;|E^dqY0b>&1UuOU
zr5Nk?M(FV{eDIcmNVocNd5j)~V5#OleF0o*IT>XB6o`WwQv>#yG1PS&Sk}A5?`6D)
zhD4kKII}Xr<oi3Nu+hVRle@oFfZ~A1)R=FgPQdus1UTl0ZTZ)F)G_nhbLzowe#YB=
z+E?WqrqZW;K3=siye9(_Y(;P<i6%d&y>ImPuKflsMI(Q<F){#z)Fp(ZDh2=Z)jrD{
z`jzSRSF{0{?M)=&WuY;<tb|&j_`1;#`cIO>S$A4R@Qj>W=#2C6cfY59=!@qR0Kj&z
z(1f8Zv8Pwi$<NI?z8AVQHv)uFhvDToUcE9M>u5xd*5B00$bBOXYalOrNGg6{k2{JE
ziyH7vsu)(bEMn9X9!lx)VJfg^o{g8fGU?QaW^yYK>x&|dL-B%*_|os9g=Yt~mQ@7#
z@0I#NF(^=HK?OxSfN}w8-qYDZX>g+<wOVCE;Z!OCF!$LR>GKs89O7|fH1m^l1L61T
z=q<Q0kd)>etRNzl0HOQqLrM#IIHio3BA_1>RtY=TVf1D8&*s^lATaNzvIM5tTs#6t
zQ_!kNE(n(_7>Z(=xIeI@1^ROQStsz-HiI{2u%A)4i%RhOs?Wx+n&ydjh|bTw2aBYN
zTtzGGfwz42$(d1tW}y118IKEtex-il?$M14(@=eP!Z`mIrd;;&_xvL)Dro%o&Pb>*
z5+4&QBUbb#S<SUT%{?qZp+Q}OY{Fv!AJo(=`J;|vd29!H2Mg&)h`dT*iG%sl60p5B
zh1-pTYBh|=6Z$LtC2-~)zqr(?#$F)A3&k~xp$Q*#HO7}UGZE97L1X^0WARA(DGhPe
z`;OPpSPAxV5o5q>EPjqkw2reT`5EjrT09r3uADV4Uph`n*7Eh+GVZ*&IEXg&a7^7Q
z_c>xbj!Z&>?<y-dPVa%Z?DmAZX9OW5a?av9rmQ70_exG)J)lus6B`g4e+^7;wa6Ma
zUK?#xjg=d`r1a6E=^X%eqa=MtO}>nu318(BBPSy<L>_V0f7D8rTj~g}O#)kstewP_
zGu|;W+I<j%Ri+T7<7|X>B*kx@F!a;EA*kvplm2km7HjG(@uWntQ+G+;Uoad9Ys3)%
zz*GlD1Myp)+S(h&$*sf`kzx8Xvkw<H_4E}W8{**lp@mLy3HX|=0)(U7lc=8?IDk!m
zE;=wn>o;gZGG?C46TkS(%7FA%o26`OUN};vca}v{w{~&rON)q)^mIp9%8RwN-Q1sx
z;K=}Qk~iSz_krw(GOcV@Q>|r_Lw>~K$E%xQ?EpEcm;TEBLUl>vz*}0~(Bpjao}cDJ
z?M~W|xF2(;$?ehJ{a!!YMy8W?!EM8awkFn_!Ff9IKS%<_bed!{=a@*s2SE$gL9z-`
z_;DYT9~LBCwt2V5k>v(Ke*n`f%sD^tdpO_8L`~crULAcykP`xDtKb8$>;l0%H8W4!
z-1h#sM^QgIJ}+3*b<vZzVuFdE3P!Clo7T4@;VE9(k0p0mcPa4kJJay5)8fUHpfYI;
zTbyhvY%qB`s4}@?pteSn!_UTGLftM!%rBz;p~C0pc@MWL6t5H|Zu1GQv2v8;`!nQp
zA%4zX#3TasmHi$cCE?Mt?o1#1Q4g%3`uEZ|^;8>VBegqQ=8Z=rtpaI>5}yCrTWHW~
z$>&XH7UamhGgNi%gNISYV2J);#GA+<HG%G(^v*X8_#gc+L_Us6S0k<NpXd~j^mT2M
z5zVi@bi18a$X?Gq6wpWZQt}ziio)(rW-ll^1Pl$1h+D;!?9B{`-e!`uP%8iTN58|n
zXjEMI>=&;>1fOaep|xz-ImHE)aZpTFs%sdWF-xYnl#2sg(_SmiVkO}zY1Wig_m2!d
z6y|LpKeJXJM$^M7(Gw`;H~uj{!RL=+$`p!)68A%XTrPIH;oa=+gwXo$!^*$o#q#sn
zIj=J*KN<Bl#wpCF<*>xf@x6y@7Alokdf?H}EIrxli<IEZP5Io=Q#1Y7NF46Rmp#Pw
zixS&=sEf>#H=i6--j-H_fdz#RN7kQjZakBIwcEW{`Zc^7nM+NpB~J4MMq`O3k!1Sr
zeYkDTog?))J17I}ib5SJ1D}1nGbQ(UjV7nzGp21%P?it3=;t;m`%0xLPP;M~K1ccL
z#J$(iV9CRTF#$N}6cOkg;}gt;R%%hSNeQ3%NPA}VsC6v-@UoP=_Fv?h^_kc+Qt{Xy
z4|LBbsXgr<`Bzatw=wh5eMug4w`u&J;ndA9tJgy*9l-LvK$Fkspnh~lDAb>lEt85~
zJYVJjmuV$Uz^C7wv-`|nz<pWPFrknTt}PZUZ(dYB_SEZ{-#hhFxLVDMS4UStPEG+y
zO*TcW>Ig3%ge03W8zd_NW^EP_5)|g)<*VgPVI-)CDj?P7laudle1+tqfH%uWFIsQd
zY}$UY+d^;K?>Ou}*>l`~dUxRDY|H%co2%PfU`ByfMFOLBMvk=?yIm|>4RxxG;V9Rl
zr@xr5$Vnslt4)>3unnG{-r9!5hhby(9BKUUP*WKUjhd}I>qGddsE9A1ocr!@wmGuo
z6;<qR0mh|RR~t*RQ2-Zi;Zsc%W}Oh%bV&e1N$A0($Ikoqxp_|FmcPHTBMJje4Ow{Y
zW3l~=5z?~nKbMtICF^SB-9w<x%3R971Ol5rPNcIcr&lsHUKiAIvJ93DEk^IN*mxBN
zspb#;FyXQw$fjJ8*x15PU|4?BC`Lo49r8GJVp}@7P|K*qMc~&nYP~{{{_~?wA|rAU
zVz`iEQ`TAMAmSi;^{$8TvSQVCG>Fjuc*T3GKjs0K?fR|n-gtz1jj5+k>H|ApT^?(!
zl!X{%nI$i`LKvy9*Z5#;S5N0xFbPddr2<k;1s2dT{K2uGa1y!jLym4<yz%<6J_C+4
znqO48{&Ixq2_*D{a<^AldaMlg0PCXkA!oo1s*sMON5rHFCRf9{Ox?cqednfhjmP`u
zf^9;R`OMan7jBVpg9>r8^~Y1YKS*l<I$H9V2VzeMfv{v{g`2!|eH>vaU@nnotII&W
z5zynJ_S20KHzxesA*qh%eY86OT*#fF*5k)xq#`{e9#_Xz7~fQTDi5D)GC`E?PCv%`
zCZvG^)apmwH7OCdB+&dCYU;vu45hvPG}6Q$BR|Tbit{5|941xvKWpLZSfcEw&dD|k
zG%>Xbyf!g^k`o9x$jetFBWFhA@Ti(xccQ69k@u@+mRrp+Xg);$D3JZv=_I3HAu@(B
zgRp_gJkv&UjX3+-nT&`wcPXZ;z{fP10#3qaBg+oAkA!e?14rzlnA*%oHDn@4NX*9^
zFd%3!07znZCRz!4h(l1>3?tjtJnJ;Z%|vE;(;(FRL0Aw~UagtALrO|%43%gQ4llVi
z0BIk~1VSx<s1ff*B)UDaI2DY1`Xhr(%u(9WgGeldT911>nv8dA*d}QI-E$$&X(CzT
zJ2YzKwUu|ue3acwo;6arXVcK2m<XbJ@_ecRruKR~;icRsX?9D9gEt?;q>s~nPz3|Z
zcMCtiZycO*)bZad&nL1lwe5(C)zn!$upxd;=gT&q_o<*wY_nr`x+CM2rEIxRHtD13
z^d7IepD(aqUZMgWY=7%j{ADdkQL}XAs$L4M=qqI2NY?Tv|F7mF7oqeMd|pH}pSHC(
z-ZKG>Tr}SO0HuA*+>89c(9`ap|3c3O&B{%!>RcTnmHd2Iz!1|597J%Q`bng&mJ7yB
z;e*aw@In8dJd5AH{o$llU;eANueIGrLQ-WT;%JqCvhuSOJx6$i;Ju=s!)e;TcO&nJ
zkXR0U+7r^;TeIfsYd*bnbT|ZV*>X6Ga~42Sgdj15YFmo85q$i~+FxL8pO8Y8vx3W8
z129G$-t&bM!Q0SRz<B9_)Pger_bq@x5fB+H;vNYr7=nBpRmv+Mi;~HHc#qoRF5i8O
zQtDa)jIp9*qxCWDjC3H14qWrp8CasHIJC$`g+1?_)P*03A6UsIXgLe>ffwvAMRq=7
zo|8wOM3NC;hbZ?;02#z(1<W#}bkrGXiYs<^H$zGD3h`NrN_GT~%qxv*u@IAGM;gGl
zR36jwM2n$f{HkmXp?cP!8d_$aPTYs)bZqALwU|o)=OnKOYdAufBbfP)OVPv0D1U9w
zNvaT~Xay5cb*^%v9HGlK;l=@Gq`6)?>?A;1E?FIXFdW}pAIriqz~iz(yoq4U7Zz;6
zh|5<p1UkXb#sT}UB^r-nf(YXVqkYi(0EEvQODQ}F`gs_m_-o~{z3>9X1-Me^sER0J
z22}K2r)rrNVIVeURQ6!inO09WIi8-YLWI6jHmTW2HrqIh0^)WmK4IW@&|Kb!i^fNs
z8AEZ#G>X$R+DQh0Dkp+!G6Y1m_m@dytV!*Y4QA<lWz#3|7%3NyR7nj0WgGq|pv3ZZ
z*G@HY>!wLVsKlVP`n7zwC<rKs@UY+i)(e5RHQMgGKVkY~emCaysdgs8L-4}V;;B3u
z!X&(m5(y>tNJfIFmyv|#XWbu9cbcl63P>u;t<D#<wKl)=^z;l}+tztS-!Y90_30)8
z1#E#?g@?UgoMRp&W5Lqn)xLGJR$tZ3WX4Pc{ojS!oH&_vhb?}uYx`q!7HihC%i$e7
z9cp`(+1fp?;T^j1$M$x_tnc!j_Y0P8+shTR4}bQ(U;g*U4nRQLcT43HL2@7E<}&Xm
za%!xGuA`yq<^z=FJ~09Xn*`36K!mhM4gZ;eNSHY-(`}6iEiU3I)lWJC04fQES$&co
zL_^12EaF&8ME}D9k7lDh{+rLP^`1G6T<U4896uwX`)*=%3~^DLnLG{Cr_3kdM&;B^
zEt{&o8O1d><+O*{3;$#tge)Ur8d#vyzgQqU+CTqYMXKaPA`64HBkAE(68!cV?K(G#
zKqvi!<Nx&F+|SL~8P1EWi?s1eF;F;D7vq9-t^ZP7(bw}sHdWa!Wkae`8&y|F9n^fo
zMF1r?GLo_<m-GPw_-YUvA(@5%Q@flB6~GjAl5wE!8^9&4u)CNr8YBfP7Yu*#^<W>{
z$?DP!mG|ifovnhFeFAgqNK!6>KLeZKK&T_^iAduw8sbAgSjbZs5uZHL9a|~I*DTa?
z#H9;ENL82|;MBH}!Q@bFq(>^!HP}j)^A7NU5|;Q~Hz=<EixNwa=z}807kq3xK8k)m
z)LxX&cLT-8%rX7#W=CXuXfP8J<vgH|vEA;5vH1Y=wQ-Sh3tcqr|2BmORffb+L=c3q
zIey4{K*68LgHTOWlBRxqKI+}-XQwU>=GsWOODTX0TFYT6d}No7-EK&29&D_SX?XYq
z%JGkU<(%cr&PRD4*U`n%bD5v?K%UOGJ+kzX+>Obs0>9N)+qE~_KW!`JWJ2Opmtk6;
zM?*r?hdIYSF^gq!8Uth{O(i8gH#5k5c6ET1FiGCc+Nsd0H#wid)=EXa?vggwU5GRM
zv6vh<6V~_V8~26>2>)o_v6sHVclzHS_=K*i@BgHLkl`(Pby17IX1Abnb4xsS1yCV}
zdvgaKG3o1q<<SL@GljE;OQzby?MYoU?sAPSRB^=yI@+%ED__|AYVyT@4}SMv|DpNs
z+w&ISPl8z>Bf#Nj5CB>U{&xI!-@ost+=rDUP^u+Bod@%~8GP6MsC(>@)?D8vrQ(m~
zq<?=Nom(Nh4;2q~vsm6Eb!9vM>xlp2`{9AihvP})T2}Qfh?zJ!d2f>JMK$s~v_C5e
zM=*y%=OW=#sGp5U>ML=Ei5LPGpqzQPF+ISa2*g6ntJo<)x7VLViNqUH!T|emmHoCI
z@*+MF1-pqXNJ(vkaxt629rK%Hu|_dti>}3dWjyT&qYPYn)LXbuGVxZlnY4^gbCmdG
zOyJ@D=?gI9P+2b*s(KZf;L`#jW1+^TC0as^XG=IchJG2ak?YfuyG6jz;$341{k@n)
zI-v4c!gn-=ZX!Zqi12CTTk6~lwU&3_U#S%4HEpx1+CG@a#KY6l82JFzQ6F)+#J6#!
z6?RwR_Qnq#*1MlDMiYgUINJ{k2C0ss0ET<*1i^1uS4q>bO@iq$FifXVBlCkfm2~qF
zG^3hFPwXcxL{n9_VCBet=FT8n)eD|y{uj^kN;wHS8vKR{<EyR+)`;6uk+cLT8^3+Q
zm=LK?ScQ(z*o(Z=v>w$1sBtx_2?mW?^0V@}s427%gAYe7;0!0Ukq?&fzO6)(ZI3xG
zkO|(VhW(Aa4-bW|!*U$Q0fgjsQyOYdh_sP1MBJP<K}wmpareC}Q^U7<(Htl;SZ>&;
zkcc{Gbf+)bc&<leX23{RSvE{_upn!I@l3`}fAGx{<q@Aj&ao(mPen4x+OjyISI9x2
zbcC7py|D}opHTF=#Yp<Vqqfzk$E4lu#efTRP8ZsT&?%w6+M~%J8jT1T^1d1%69Z}i
zYASFwM#Zs0$b0|}_P{%7z`QjE5Bo4p6DAgl(f0t#EMR&IqA8^#i0FYkvKaiaVLut*
ziXq@m4oNZs))5NpZs@>LA-j#Frx#RSP2;p9X0`jWbtY5*SHTK4!qXH;-Nmq(o^|c;
z%&4QD89xgE!7_RE*z`uU?x^eZ=j=fz`-lmZht$F_I1V1gMtjFi;N~DAm&N;$So7dy
zX8qUyBk3&sn*QQ0zJyU@qnpv)At2!BPU(;#h=3regrK7vMoM=JI6^=K9o;ZeKtNK$
zAVd`7w}<C>{)O-Be((L<bI*C7nWNtL@#0xVf+>%ZnOgt!XUEwdj7iKBvpc6IQGgi=
z)|u<^_^&uSsoMzr)#$y?6cl1Ir_D-2L5E@i!>PrI473gU=GQ%fSXT1`<5}3gNsG9}
zP6zcN1L$<B<Ri7I49q+za2R~3#i#_}w^#nLXAu-=Uf3H$X#%`lhr*UjxHzNh-7JNs
zA=mg}jyNW=F@R!KJBiklvMQn%=M;6511phh-b^t)cR_oQnf4)dUVMM{;}cc~G2$V|
zyo<;@ehMl>4escGPzuMn*e%Y15o#MLhb#anx{N;B==Hjl5J9S9O8zkcBB`upgypFu
zP6Y>5bjA*HYbaW#CE+<h5wc5P0KM7m)_hnh@>6kI>DNG1oUne<^cZ+O42w{*ai3Nd
ztzdB#HDYU!kqTdmqz5x4E(D%7IUQPO18k5K);7arz;W<?HNs_o+3eJY9B9klii5A}
z8A}_vI@_-E4B^ES41M!B@InBYq5s^L{t&EvmkNdRLBY;h{`cOi1liv2<Bt_scE(V6
zG8W&=hL9q^E)z~|`O4*(fE2U5aZ1x*a+zg!wdH`&0%@fpyJ_3N4VzeBo_1qP6~2{}
zM~Fm)MDkYa-p@G)(j6hML}-)VTbJ0@1}+!Zym$|@n@EgSU+keJkckCEiFz)mkLOqJ
zv8;kh<2F`w&c)wbym0@r3Vf}BJ+m#?H?(QCXQvp{QUL4s#WG4yS$lqPI$UGwMtOn8
zt#^%0(~Qh~VKiH>9?=287Ex=VG_ekGRo|hO=B)y2`e-?)aB48!mX0{RYO_IRPJJ!?
zAs-vXa-9a$tN@U~;+(OSb^HO!oL_C_DKyqM%vX~SU+H#QS^tBv?WX|`IMc<&^jeoY
zljz42`==9GB5!T#&|CRNFFxWJ1#CFyv(aHy4V3C=(TyO?fRzdI<JWa1*qsfX*d3E>
zdE?4i9aU$~ayVw=Z_=HLtvjQUc~h^LM%0jV0vq#7$=i?k8oED@|6`o_N*86cd09e!
z**Ceg(Z`)cJD_m`V7l^}#id=#*_s6edCS2+c8Bz+m>yGAf>t)mbTC5exbv_gu`+<C
zE^?<+&j)V+N;h-yn_q`F4#c-y^sU5j9|-0^27+2A=cKz9mLdL{hykD=Vwt+%f5y)C
zLFGVvF5<E*PM*W4=;R`81Fp_IQsz!?WZqIG!ea@l^eR>=@0JOM>G5zi`Ai4Nd;WjX
z(TrH-?}rlxFe~wyyE5j0q1!-Xj@|4ukZ?<NW<$cC8Za}{b!)m-t{Mt`X|HwLP4V%r
zk9?+_P4cCG>7N|hp$`l)u-zckuI8l{&)Qw(K9^I4WQB)rZPIRr7PU(8BD)aE?nV}^
z&N`dTo8XbW-tLd>bHkJku^LaK*D&t4FEi~&Sk2(n*1AAtc$|`nrQUgph44MShwsTG
zne!6&Y-2vvobtarymuoRWctE`(jqFfu$Y2nh*oklc+lgSr_xQ_^$HTeq<cI(WiS@}
z#31V-iT2=pyW-9PU?*d#XMe}mvO`}QtAXL#K;1gG?&05b1l<N2?2?h3^dY*Qkov;|
zioiv}gQ_$C$zB>k^G-0J12Qhx4-`HM%cqgEi&lH;u2}I_@?o^PU5sKVSUoY;V2d)N
zcGq7lM%C_SUf$l%+p)<W06oAy!u-e@=B>$fT&Z|`t24UV#$8<>Tu26a9?#)yzBI$%
z*WenbfmV@0A4y}pT^=7-s(U*ZdwV^Fy!a1X<YDJMQ|*j}7?j7RD8{_h{hYj+Uea>2
z=2MT@+x@j%N@s>6p!Da5c}HC>USjqiXnBs`zCC*LiL&j#Ob?Hgg80vJtoMu!Ra91d
zMq4=EVW@^Zt_^Y^i$hASPdaj;nq8MMbGk(LASf8=+r$LXEPp^sHhnNL<AwinpIsgM
z9B~+RN9#j;oLohml8>jUfV9sRWzt)+)wo2Fk^19h=p*)w%3qWcZ$CB?+7XQ4c6@Y|
zG?*amI9u|7IO7Svu(phnx0#=ERWD0K@X6?(q~JHcEF;S6d!&he{rXCzZ?H$K_r??b
zUMpr^3ZB@egAW<2ipG-WMEryh{{MBxHk2oUf8rqT(`MoE^LRh44-byv<Z8+%pRJQs
z;W2e~@BcQFrw^P8|MKrX{6;U7c82$#H{EjHOO8!XDT^!~nTE2T1W<AT*lZ66(B$Wi
zG$ZE9D_j)6mT4H@QM=4hiz%H8=ARPl-~5+%vNZ!`SBxV4=7@jxU#qy^D(d;|_sdoX
zcho@bwnx7p`ccVD2{@HywQ$Za*3-LU_F0T)`MKBiBn4$0<wNa&ERuf~zBe2C%!~7c
z8{I(HlEW}Zb)h`7M>d`w&`2-IwIV);$b<!}g@DYt0s4Ao68-U(wm6HH;6k3jp2ryh
zym5@m`Sjj7x2=P%o&_&*J<@Qo^+<Z8(|V!*-dlV4Vsu2C{{9axWQ>N_h0FdSlgl!{
z#;Qg}v{gc|z27B*{!&8ZOUUUXeo{59^5Z$VP0@RP&&_`-u@>{6JdPdCd88muE65pa
znsbklLHA%HQlL+3J4DWvVbpQ?CU*!uk7pCsM`!vqNr-b|(C~XSJlBFE@V3`CrGpPX
zZZD^&a-EMDeTgMF<-B@e@?RdP{7&3gkGwZYEcH?Oeg^CT7C^G$g8LL4!9f4W?ZRi{
z#a-LQO_JxW(&+qxVz#4_cm0KlnSD#hTt!T2l8iu#Jw?|lho;cg3+3`G<$@fIu+ul;
z-C?FrM6NQA!gE}Kxvs1u0R>fhCGJAu5s^$K+XY@%tU<~Z6(WUI25e%)tCYFo*4dJ_
zkKwO0|Gdng>MT=REqE029$Itj*YoFWGV{OtlEQi$9xu6azH~ivW+`fu$^Tn(^{SPs
zmHBsP=#%Kh=<Hec_Jbl%ufiJgru?jsV86dZ_7S8}*qLJ~dv(UosgdFZq2Sp76XLkM
z(0a(9ACcYfBgzsCg^e%vZxyqxKKXF=WT30CFX`{ADpw)T4;3O&N374J8h^{Uhl;<a
zJ3OL1s^I$E&z1HuRJksmYX!(jjN&|u`s+RM!=POg1hSRvYNJjcGk9R<jmoH7-%B!X
zs9$Lk><ay)VkNL}#c)ulXOU9D*2uDQcyTml(H8TY^HzRSyd(;$PbI7+1QX@cV^@ah
zLzUSh?3k3v?V!9`%0h5)j2@G(mN2cIhbNe}xVg>@rpy}}Xcw1|l%faa($v=V;-r06
z;%xQGs;lHRu1`xxpLbwLXvDl(nIBh_P*y=o%XpJDYH3Hdet%m}SSXZSn45zeCE%hL
z9x;)aJpGo~KM1#HN7UqYIv=V=-Q9!DD;etR2FS*FkF&~xSI)NgY3*238q<FP`47kP
zqApQfuDECeafH`0F8sSTcRR39NrXE0I>wnks|v^29b0qVv}f8=stGo{T};u(BQkch
z1@MOpHB7DgR#?{Vm%{PmQWP?D`E7R5Re^*=vC!_vS>Abj<v`BBbxwbbPKsn;2v-=h
z-yOA5^fNV{!kD`sfUT)J0ozf@0zS%`xT5U1^Ig8MpO^n`5_aSeUafe`pRZqievfyX
zEH!!4`SnA0(C6Br!Gseom1wFH4JfIf;NFmZ?%G#0f97tr$YFoVLGfMHrd4Td<^bR*
z4$HbRx)bRqNJdsXXhZ3G6?iswCEWe+UtiEK{ZH>CrHcNOB>Qz105a1HB@C#o-$QOj
zo?q!vJbS~4Ee-z+RdNpbxZQ~fmN2&EbO&nYo2dg0^SL-FIt6z^_hc}49<c9J5R$|#
zTkobg7KHF=K;W2i2?0}>8=MV|;fF}gf7<ee@)zg;^)&IrSqe5@`?+==4f}cGm!Ces
z2PnG0&)uI2Iv04>dhH_ltIIzX`9JjlWLo85HH$+(dF>a3UmhKly_s&%C<(Di!crv)
z{^lvqkidCXTFHtYRp;2Kl#-sS$FkPe*q)Cc)rC?oXc&Es@;>%0N-d9qvR4x{<LgF#
z*VeTydp}5PXjwac(RIz5czHeDvDX$-3N`t#dOmKdCJXkDhQY<(d;xQ(nuB0$N+Mr7
zUkXfq?fPK(K%#Rk`oXu?hqWo}t;5IV*Nlr1v6J45<p(EyzdpS<Y5Q`WLU{)u7e6IH
zn0-$BVM4`@?+Qh~oDL%N#LtEpY<<p#5i-3ZBOD=L&PGuQ;^$-hA8T7%1?rm4C&atH
zoKH%B2oLnHRR;`I1~{PI1a5XM_m_9e5P%e%+K#(G6h959spsFi4Vm=Drw&8&E`_ML
z*5j$sMTB+p{L-Jb)OON6wFR=yGN)%MK<{EM^MMckddZ*G?4-zVtUnrUx-la6=FKFT
z0Ioa=WG9Qzq~!Onoi|8b=3(GeR{hVOa$-%fpOrJ;9G*g+h|*L`KG6+x<mCwca44GF
zk|kjA=U9omUaML~yXj;y)bZs<n>S^x+!{a%A#qMoia^?OAjMb)A{x5?yNS83HFc~1
zf{T9?pcZpGK=pk6zEVFquMglOa5RNv?-`m%=!0?TKL-5Z^0EB8d7-!dQ|)OIAlk+F
zcJ$u|P3V5IN<!4=dO9s>PzyB5cio;-5!H6I;RDCTEI%rLhPN;GR=mMQQ9B#ld4^%~
zIN+eu|73%Rb>1flYYar>OPjF`nNTy2#*J2=DpG~=oY=5LbEKAog*|~0lteP>yRHyP
z^c@O2|M*X8WRZEv)LfDw(X{pDP~DrF6jocWC7;$M_)P+-$j;LlW3f;XVJ?PNVl)GP
z8sr&qg6zQdor>U>r(kmp%6UsHJ;Sk#gy+V6)2&*0)r@#IDt>MTWv&{)G*fVL8q76F
znQtaO(;lO97%Vq_h{Y?GL}*e?@9P`J%CePpFbD><Pjqq+l{5d^d=c+2py%2KYvK3k
zH_u}!_qM>V?D=Y{^C_5wUtFuvZn~m!I-RI;r~qQ0>#8!E;ofzVf+tWegE;tK^GNzu
z@5(>LEfQ#%WmK0I;{g0*)dyCRDN=pCzG7@SsOlbFLhgS+zg!UWxbQ#{MidZ06G6Vn
zMT5<LFgTUz%^L<(N?B`c9DEB4;MoGsZr9zq!O|m`S*Jjy77d}rnVOmEmD|IP0J;vA
z7KIOi$5RK|VueZ0=nJ`PIUI4KIakWK1w;^rw6=rH#p`ow@P(Ylay$#)h&hz-z9Tou
zLW^rB51r~G^s0WN=?h*4o389*`s5y}V*Gx^Uf8jEk;CocL~8*C##t1<`|T>(j=+1{
zgJ1_7b50LbQh%i~Z85n@2qtF`5J_hqXK2^56V=$lBgn{)i#c(UOc6VrTXsSx){sy<
zQs0Lrc_zalzUmsl%<C(~z_>%wh7`2@(3Ca~7k%Omko$`DCauNB{$s^aaoR;wDFr$D
z>^%ky`wj;fbz$=oEkFlh=7wW(8$EjjDDO%NxcEafMLC>f=J1;vS9ugt|C$BB0s~Xa
z#I6lQL*7qoP^o4)mH2m<a<V;mYTdTM6MW+_dA=`vy(r!`^DeY=PwUzK=Zy)d(pv}@
z`e@~pdc52%`}4kbY`+-fOuZI>B95c8jucIOf<VSOe&qQqDwLO={iH{DET8H&*fF1;
z#p49~ZqSwN85!{Ot8`?*9|+xhH`s>=X<uKXJy`_!O^C9A|I0T9Z;fq9BHVVGJ9($0
z)Ll2Um}@mN)Yh4#PC`}QEw-`z2iqm9dOd+NkAg0rv)nmmrtnC|>z5Wg6H^tXipSf3
zT29$A(Rz%qf&wEB{<zKFb)_=PzfFeQiq_NQhm3v&VC*e6n*W6b)#`x6=>ASG7p}QR
zro`@*qV<);w;*Clb2?H#qsTihC?r<*z*(UHqc2hMV_<JeC$!R-Dt5W^znP|I1z$Y7
zQBZm`0Fta9=k#RlR+#Gy6M72^wZlT^_Ncm<%>e=(X!|tSdh2Z>=(QJMIZe5rf?p2g
z$yp8*@cd~NT7&KFy}SDA?W=laVLCnT{#0LOLiglGbdcF_-%C>ZBeqgb-&;9y+f+9~
z_8rui?8@{Z40_n%rB(nr@jUTzr0ea=Kr;I9kbO}NAeHD_5K}c7R75F?0$CpAFIOIY
zMJ@9kkNYYl+zZ)T{x#_Q^(;xtaZjxKSFo|^Dc|CoN>N(99_N{FJ0;kU|EYrrMQM=Y
z&wqicv^O+Ro55~;j$0qTU3Lxj#bLBCE5nLkyhmlX!0Xqzw8s}qCnbJax7C6jU2aVA
z$o^{j9+~ls_OD2K=|#NQi!4@j>7F{mM5SwZCdOXFXCv!;fRE?fCRtb62?)eYd~+d2
zQuf9%z3%f@-I4#T!tvYJKT*Gv`Uy87_#QBtAqTTmIi^8^RtDhS65TFxuy;SF&4Vy-
zH1MgCB%@*E@i+D+zq=MjYCPF%GrVOe>sz3@TvCBVYAK_p1?BmEMw|(Yj>x)(uAl=&
zl8xxSqA+t&E|hlNb5?2#<tBW@3j~OI1<O;eL{~%CD($6Yp<(8)dBH4tGzzNv8B_y8
zg7euN%f<6BG_3&Y%Nzb;L*zVmSbn9aLZ14%{gh&M<o+I<%IK&xEcT0@mhM^5@^j=W
z-mKihJjUYbpG89neKRS~=>6x>$M><gpqRVQW5|{KDPhP=ls-#htd3$V4i{m{^6XBc
z2jCD;v-1@EQwfSUthoq^IS;Z{jIzSS+!c&_K_bRv-i!0o7YaP&gN()M`8)CxKwArD
z%!eT7tuRp;kht`HrgE>|N|eo5$bCD}!)ruDd<+ANlWJV7Kw=C5AIH4nNnv9c^UFxj
zE|Q6;MI?vDD>5$M7Xo9wd^3|IP^`59uyDqR&7Ua%@KcUz;9@oxZ+T=`hvu_GuB~l7
zjxCV<wxKdkCljRy#;5A$J}p8+`SC74qR3xfK(<$4z(7zB3Vvu~uaDM1%K^tP(#QE3
zko9zu1bPc1kUKi<rw%kMlZkT+?dzKUhd*vqA1Ycd{vq)JR)+#~gn%Wbl6&bdb>j3i
z;`GcjsLwdRtT3^iLHGf7@#dV|B!H%Gz5VtI?l7MWk%Uv0&U}>r)DD{|UYFSlLH^9o
zkY>%|>&P-I&!9%49MNgC7Fciv1MvsLwjNYA3G(<CBn_RNx6H=kl@oEmu#e4R%ug3W
z+&fOB7X`?tj)k5t`B&aIkTpmT#rYcXo69O^{Tro+UO|vyG{1haz55B_!qG69t4LxZ
zp?KiOR%pfTJF^}%q5xyDOIYFKlyrQa6%oXXc|cbVT&jx-hNR{fNdBZZx**bJl)I4y
zL`h$v#QYI3bC4xD@}-q?VRclIwpduf4SiI21iDBtjyysKYMIEmgUHR1&d3l1iI@j1
z)Oe=J1XqT|G#fzcNl<ywa{KO8K1*1kHIm*6bH_Kc=uWx#qB4YBLu^Gk&H+_CbVc)o
znc{5$G_*VXv$=jf!oU$@)Jb91GhUJpjNe+#+F>mo9M}HT06$c=K7CXy)mChU4GJZe
zU|8Z_78vd*Jso(@_dUr2<C<Gs0o*$(lS&Fbu+MHRsJJ|3v{tTMOM+O2qJhVJqG(Pk
zRDPHqMLBsoijA_WIwT$s`W032uYm43SpLlZ@lP+tktERADpQC^x~(?I5Li;f82d*%
z#UV#2oeAX49GRv8*+F`XZC6-?78G37d<?uLiqelHB1T35o`tnw8SfTk&gT`cEm%d<
z>XS+@qYhFQ^Sv1Iw-+`~9G(@&k&jrFQ3K1hUaLI64jQ0>*rb7-BOpL%BpU`MjN|Y*
zF0?<*3_G-q>M7y126;8sE?+@-PU{e@4T6p0_kTA~W2if18`&p{lPBtFx9VdG8GU)E
z{)XyvhM8z1^z4XrR+vUTR9wUFhNk1RSNe@V%^xLAfKt}#r-q6cJ<~)h0GVqnIfiwg
zv8mQu*Xg?2HOjyUd?5tXRAODhx7IYP@*-m`M<3O^w8C^O`l3U$Qr{jvAR1xv3nGS4
zcr!*ZmP{@~`C`WK<rII5R~T6nHuXDYbJ^01IESY4aEJFQ4YzBW?a>+s2_S3H!fpI5
z3DT+l`+<A`JU-*9p1<4}d{Bc~Ya0!`RfOYs{vCEhUZ-lDyjc$lOVGcAMm-1LzvcMs
zcM>FBNtrX{f!+gE=On0Ld1NatJ=U=KU0A&p+I+mCCeOlI<3YoTfyDX*xd{~&gaXGW
z-|@M;EfmqIl!$W|>mYAz`xXwdDKeQ`tFSDBifom70kT{s1y?G8|J)+%%R8;dI%(ZI
zS%F>FH@fr@-lq=r$eLHmt6d63P{%*zEZQylR0fB?8B!e`zB)Y0c+zEe`ntw~^^%Qg
zAKkrIC;oc{bWJFtk$yu1@Dx_S|9<ppssqZhn4#5LTKl4g|Fp|ssj~xIml4-`Lh{nS
zn#f82WMpFjko12Vo<Na@*R=c01T0Dr|J=6uS?nh`mhclM#2jBaUafS-ajU21=*lzD
z5Y<GeJ`?LGZUw-*%$5R_iT7SB<KK<@li~fDIWYcV6t6mevk>f|6YdmKu>egZ1wiSY
zQwmgUEAfR5U{;2pYe5*VQ+m=$@oLeFB^An+3gP(shKqxSgTH@<T}1>>NE{2apt3%m
z)F9bDj{E>H`cwMfABcbx%F^y_wScSGx>vv(OKGPrIq@i3jzJ4p$(zDgA`x$KRy8m}
zt}xQ<-{fn)-waZ{ET+9p96dvbvteXZV#9+9@adp>bb|5?e`}^ZX~WEJQr?iK$8ZQx
zC+te!qc~!!dXR;GNXeDc<Zu0CMXzohXw(|Ojc0B`M@61Ox^vjX${({4KqveTA+4in
zRM^Wu$<Dv~Dw_)4W{P~>xt}=>pvz<uB7#^k987q!jH3xgv^=@PqsX&FYIC3%wrW0q
zxV;$oYMqZpXsXkANQVHRF9$Weh98mF*aN1&JprYLk6YXZh@U3XmV5oY*^_Bxr5y;6
zNOsqgCh$rFsic8F0Aj<cQ!%a&9Ls^7f?R3nS6%BCt3JRF5jyM#6L|4Sx@C|U4oG|I
zn;$W2o;&*|;vHmrc9V?gElq@$Ot1X_u$)4>nC`NnW*iZNo20*SMe;sOxEWDA=m~Nd
zPXvkkg9Q9RJh(V8YWhz#aeaOE<zJ!?at`84WQ?2}IOSxUp4$^2B&SAxN}W0G9jwuq
z94$shejwi9ocuDisM-o$G`=H_P$+z%<2e~p;t1DJn=$<YU`m@)_2}|NE_0^!ls<ZS
z8#}$`v|xau8m%1*MU6&a-}Eug-0d^5ah|rHE_LV_2A3~u{WBKZn3tONhD$8%i&N?M
z%`m@75=2qc6DK}y10?)G2t0s+0K!_6^AYNK$gt1p3mgICh*sSn_;(UGC3-}XI3BdQ
zmr@n+;jiVy*PR=Yr|vwskfbwOZW*#7S1NEJjTFg{!f}IsNNt@NNzaf6o*VPFPN22N
zY}~$Z7m(rn@`|?Sbj~-E0IQ%6mSLzSvUKK9y5pa=m~(U&LVxSQHX`YjwyBeWh{aQm
zv+0d)oNfPC<U9f~jNYhF-gG`I(}|=h3WgV(gPNk|Kf`Fx(X=8_8=cZ0|MUGgz`1p0
zvbE&371WB*mVj3~QXG6`nc<{EY|?62AgBB8Kh`iKL@>Owq4#a>@#AFVO@9hi-&t5=
zisE7PQmu50+CEtMu*r%FmB0u0((Lu^>OXb<(5G7kWKrRwjFs6==->G%K`Hb$DW^M$
zZHr0>i(CkBUnQ{d1vp#&S$(h5_ga+gDQOP+X5}StAhNsUU?5s=xmB17tB|sTqRSfp
ztidyfb6M<96|TfAyYsOy@Y%KT;ZXdc2nXCn)RrqZ|2!%g&V_x*^Lv{uOWm3sh-#KW
zS)KB&@I;l(994efop$Ao|Hk%A{d4*z+Xop9e2YNU%yEu1U+>$`-%#dUuhIw98PzI}
z6_EU4h7_&l{CelSRCxYTIF*vyQI7c+2Nr?bl?R(#;t{4&9h$OU{f>2l!m;OH!_vQ*
zp%$hCgfl7=2X=(dHv5jBo`lhT`!4&9mrt~MC-U`xXv>c6ugyr{J28mMDW%KlZ%L`m
zO4;diaX&`Woj{4zw$m!7v%Tmu4${XnE8-~^_c`yabAFd|0orrHvUAaQ=i(pFo8!(U
zxxdTa`Y!MC9RdEXSoU4z-FMZG-{+&ht8-sy-n!6sx$p#CDDWy;F1)=6R4ldx__qiK
zSKXZc?}hHOA9iIw!1Qm|7k)HuaBQ<^h{2HY?cRG@pic{IAL-TGlmTRD5I##Qzg&H6
zP#rTv{wACK-Yu>{K&V=nQc?`%R`#W?t@>#{fL*#bg!|yAUHz*T#cMFqFe=!=<tp#l
z)p6jhCh1;7Fv#L0GmWcm<<5wk%XNTf>|U_0*99xaiq<X1pUPW5gQ)Ab_o6vdE5+<{
z-A9fl;(f3X8p7Xrf9tn<EXacttLweVGHjb98fB99Sr-M+!-*M=7*WvSrpME+*53VF
z=N2o>7+W={Rb|(#DT4~1VqJ^L7J>mw7p(MK#ze@Ug~a<>(tiLeCf<SnJ$D;>bv7OV
zfHd@*=ZI00(~ltLM0v<77hV0$GjRz^5PK(dKQUcK)hDdHVqLa(%xmHd7_E@|@ht3L
z>BpZWAQ(zcK}AE0q-SJiW#{DP;S&%N5tERTkz)*tP<f=Taf_TQkn0rAwNg$=9jFS2
zrw_ob666Ell5y;qKd4}NOm3<9*NIrZZk#X@_)o>@0v;HMkJqh5lFgJe1d3l$Vj2eA
zsiH}#y9lnrKl)bG10)9(oS^@1X=YYtemk!3M{1^m`<5dA#@jgH++9@Gqp#&SP({*R
zofKvnkHzjxH@ysQjd%v-EO(S?sb&<Lwc!j<K{Bw~JlEA>nnQ?SY$r1v2ea>D3iiw#
zggzISa$63>-E~Nz7)<8etpiasa9sQsODND|OXPUN<}{r-y@jxxIA<vEU>J{Y<-(}w
z2rcnYR4P00ukY$gG0<toW9@kKJ})*d;AbW>c~AxSlvDGZlN2YdrD0!2zNQR)?#?RH
zNMKSc4E9>6v#7J_>zOj(7O~DMM9qB1(aVyHE4A`&7L#A9tLj7dnf{OE5GuRHL_tT3
zs`jq{jDIBw^n}qWmq%zsQAju-K4-&|6TKbKIf%1S&2-8+)bmhH%~-WI?s#G1YwKAM
z`PWspfo8hWCyjAFBUO`%OnK%Q>WR}WLR@@fU{ox4tqPTXxyiTF%Q)}&lA7|Zw=omK
z3H<{4myGBK{cnhcDwUqa=d53vWy}@49QtK$lsk&ra*QWQd|vN8hJIMINQI-k&jSI_
z=N2JVOafs(;~GP`bm8+nB5I!f?T$mcF}=rj;=ni{<!+4b*d@*bWQlDvV=sF6``R~B
z;s3(evT%LZI65%DzENEli%b;&H>X3@eT{;q6{Q?23RNM=mC%X!HUo=j2Wf^R5M`P$
zDV;%5!E(vk-gjxq)-}!ACLL!SC_ocSKO=`^u)Z#24x~0GaCq~zXlsU~R@$DKvbg4Q
zJY8}l0<8!y!AxyOSW$I(mi{;f)DCopE|4%g!=#Nc1<}}CxS6?bSn9AT(NXWlz8F~I
zi<6ML34~HupT;Ts_3Kow0b8aYI|?Jrfl$hQ7H|}ucPz;H(dxaq75|g3C>LQ}yU^uK
z1Ig9BYztHS{Y>vT-!>(4LQtXAJt{2-(;k45a*{03{*(77Ab72wfFg3;)3j^J04>I5
zq>ww6?>O}YR)=JS^!row1NC1ym_rZnV&n|s*k5qOB(d^Zhg%8Htxb?FBnc?yE}KGc
zUb66gVoc6$@|L#Qx_(<7Q+$G@4YadA8)o%eKO5yKd$pf)N0Kj&j%Cd0`{S85)<UIV
z-ROf!g^v+1rb^D9JHn6${l|3LUt<`$h7~CL8~RbMChGWaw{_i<B(;DvcXcaPZkpD!
zCppe!3byJz^ZWN>g;pPU(i<ck#h@d=jt&tPRk8`)8C6%O%;Yn3`S)Yh@8iFp%mu1B
z6TVzu;7?-jJ)|L?AUVa5Uu?<f3BrbR6N4QCAq}8zjGS%J2hP15de%pN5Q#&rleP1k
zEl0wkfu6J9PZ6LC=%*lkyC`4+Ug#dbzZG?CG=&}J?akCE%CA?9Pzh3E?BvmQOr8<r
zUo49@4?HtbCpGu)-S22=fF~mn?E0{66km4X2UB(1smBqb$ivZ(JU|~Pb83N1=JkLp
zO2m#kEDoj#4Ec?I59Lv4YR(k3ztd~%q7PM6#$cXdx}gsLDaOjtO~$%%@X@V-dFW}P
zQf#uPK%2s29Qx(dFhZ5s05MI4Ei=31Voyke)i4ERVPIHnK_!a?>~#>Bx5m*>eO$g{
zF~;<+ywzc2em;G<WiAs&K*NpzqEbaWZXaRPIxet|(qz;!^vk8X(n2o}Eo25%m?;FW
z2S%p{P*6$?n2Rt9r`Aia+Sxj8tFNID$AI?EJvgYhqDd=W_n`ysXs8XLi{TThkTzeC
zJ^QtBf)Y;=)Y_d@ma)sA5LmRfS1Y>3L?*GEQ1Xo$%)B6McpU($;{4$$Y|sGyoe7p)
zu+sp)lS`wM$EMxnp@h}0z)J&~tCf{RWFsC&$178nn3of(oIGDDQO?&$uJA(=!X=Ba
z!c}qu3pE`cGgVv&A0~4R6LWv!O_V8y3c;>We><bn^hcfck<k<P_yKAD4oWf4erA<>
zmWWUfGqyFNHAS61SvT5^`^RS&AiG_Ei+FXU9a{I6O<c&QZTzukBZ}@OxpKXw4HSd+
z`-_1x=1;f9S2c0)K1c+yz^UQCTv^3a>=hbGXlMrKmj|xwj;k|y{BboBFD@GwvSm<E
zaoAViD0Zi9`19@<yl+6<1vY$M(&mX~|J_V>=OfeSJ$SW;kHUfh@O*0EoxyJ*{p@$n
z=+1g}6;8tDithYq3AqlJoIKfPce$E*{+2o5+8tcv^6%U8cYpi*o&h;9K-zpl*FV1~
zWHAORmEZs6razy`)&_q!6F+_a3*BpAGEEGowcYD9L4)HiQmh5f=?{-Y<8EoAp_E?>
z?t89;XMz*akUh)RY(s^+oG1CCYGjtKMnup-K1SGE0+RCMjALO)iBCZ+#`aY*`N6OJ
z3G2@DTmhgvOIk%#Jo?-_KNTq?#A`*eQ~X{qSNuuUla*Q=;UpEh4PXVi!Svze;^s!U
zpeB%tm2|>`dr{aBF7%AVnNBK?uIG2g@>wUbV5YI71epv&j_iBn$_{7AcCp($-j^43
z8q*j>E!TuK4a$c&0-#I)N@?UZaeJaVufn^zI<R51>NK#qB5&J+3S$VjLyud%WLvts
zpJc`*hm*nUEGdXQrt??J&|@7I2np-t5;Tb|+@qBX8K<K2j1~fUkV!eif4rV6`Sv3{
z9Hu-k@DLxficCb$(7<G)J8wsSix|z<I-O;d(=Y#6y@mcN$spcqsi>B?<@mn>a!X@!
z*!w@5lVXbjS?$HKm5H+Sw@BDNDtJ@O{S|g_tLekXRcos5H*b(u71G#(`91>llwM(9
zrx`aqEIBDYn1{AeiX(z)@#r$8c)DE4b{5^_@twJWE&P9brT3(@Z|c9(LK1i47i2Y#
z%sc4v5V~YYpJTYi-CA>Z9-6+;q|cwy!IM8l#4U&6nh`vD>C^K;eJ3R+9Z=ajDgx2X
zXOz@$vtp?5^G)}aBbOta2H4|IfyGhBNddx|-vaH(hG>oA>8e<Q6Yy7qCZ!KF_y*eC
zyFPbQEx852Y*<w;KfHbN8_0DE5D>up5uPpmsmt-B+SWJQ$_q{TW3S*yXEZd_3;!Ui
z`aSng>BrKT;IQFmizJf%yXDr^#fTxZsI%6)83(tde<`f?aBQ`tIEOs(q0C4;UUli-
ztYe1&Q3R-_KM;i28vg#1gjj8cXvYT|CIAC9fY(q8d5kF+7Mc!x6svpH7JoG(^5wh%
zw7~nFi;wI2gkvQFlgeW|%$}UbveWqk<G>K^UC@mrfRWxMe0QWYoqcRHbW>^~zAjYw
z3n^S2q+brX%m6^r$&(O(o7)OLHIQF13>P5m9)`zz5Ji^g+T-~n;(od)4uVF5<pCFj
zt#h=;c{%ZJ`Zm*MQoR2c+YtoCgeKK%B6G1nV&0Ezusi{GG~(b>n=C!;O$$)P{JfM#
za3^e#m6ISK*jBf0!sGj}wOy7Dm_)Ze=%smMJW9M5_Z|h!8sdX8AxG2uX^zQ&?mQK2
z2FUNHEaCxLJBb~erau<V?8J}k52G1Mg_))eG$!=nfim#N76_mZ7=USv2w>q%KosCr
zLcMZV2x9VE0H!S_>7)nIUirxl#sq_6UWrEReYgV_nsspPMY7l{hnXe=1<}woLFr8b
zYlVfVM?;<+!F(mzDK?FDHGnO>f}+=gVh~CBSR^+`hAnoN$$uYsC|caYJ1^*6vNnD;
z1<1uvh%vQQa<tudnk&GJFeX{Nl?MR$efTsi@4;FTw&fh&$F(rcWm5vs4kg2cBGo-^
zR4EmW!Asl20Z?@;SRJKy;m=`D@e<@=WtAmRrY95%s?Cz1T0f?u#0WcD-t@N=3X_$g
z+~VJWhr5$WeAD^mK>cz=H`7w|iCr?XPxeLZ@yIu*gn}&p>I=SGSrXfAed*E$+R3zR
z513f69S98hk1Yt=^N>k0feGc}8O7+uL#u0)c0PaSKiNNj)1-7hw|(1kvwYAt@lAF&
z>#d3<i(I>$^M1c-C1bBxWs50TLQ_7amR>DL0jL2+0|1>kg?ri7=moxH3`Cv)QY`P1
zwD>K*qZkx)L(D@l={D^hdH|+fDOXP4dx4K@3#<!xERSWZK!H<@=}YBEDqT30=j}=|
zC<p)rxhB_)XDbx8tIjP{Daxs>w#(17t8Fi2ugj_*wRe7+w>g%(rQogpqy5&69kqXQ
zXubm=HUJE;KqD`Z0C^2ohI@hp<!GYvDPBY50>RXQ;1#D<ZITzKmgV6YRBRel?a(9_
zhd@xk(-RQg^^TOF?c9Md{4%7C8s^xZ^lu`m^Gylg9r2!GbpE0fVhqv*K>TSTn&=g*
zya5zA7Mlu5Y@(#^*RAjw=Wyej_cJ76CUSy}UgwO$GACL3b#H6wN$~z7tC;GMH(9b;
z{I+l}2S2?jK2Jc;IZ3g6X__C?m^FVf_n$E>$d||^;R|mj8PW%sf^%n4gjqP_%zxPZ
zZ{lexG}PB=bqw$>?;{f#h1=T?_>Gz=O`Dktec4K<mrg;;J(v%I2%xtFS`f7s?5mkX
z=z1!#@-%8CqF*=(v^rqAiW0E0|GHebV{J0MCVBSnTyMEMZT+n;Y+(8}i?01k%iA@N
z9I8?f8_g<P68kv9E*k!^d+;Wq%J{$LGsq13x_bIk^4>ZvEsG?S1HQwN;V33)lnPeP
z;S(Xp?xN#2)gRuOW85}`JHFI%yu$8}C_H;Oqw&du)6>+H-sV%i!d-#R?x&K6;+Vta
z^sk=?$8Tc`2HcIygUSBwNvlA<HcC2}DSWQi;Ov<p(Y%!u8GZP3>f!Nxx}m(Hq4~1i
zJFogrGgkjqM1^0P3qJNtT0U9J2^@o})@q#g0DkPCFBoQv`DJ4Epy#@NR=5mj`cWxk
zdP?nC2^Bwa^%E>!^Bk`z1EZy+eu;6;guBiDusZQgdHnF`G5)Dk`h=fH;^6Oe+E~rb
zGd%9jkdzTT2WFi8+b7DeRqAf%%fr9=0VNs!nJ7QoJl}i%|Aut`3(i}R4RQW_8Kl9S
z1M&yR)B$KuA-7I}x9@vTda+CR3n^v4Hx8m!LOi;C%EFQ!U|?>cf`GD{i;iHS2F<}P
z(my1Bjs)T(9-70m-jiwl46Aq#vluXWjx*fBlc<-8)akC2?_wX3quFoNr?2Cw{s5@E
ztf>pqX(sW!S5Y{h#7FbCPcktP+tOH&EBrm(XtM0HA2-7P{d~sx#q;36B$I$ZdNG=u
zVL1a*{(F4o-A1<>vMt;CQR$4~pF}dpT?Wo7hR;p(?8xYk6v)@~;psoq-Ov7cpJn;W
zw1#JLU=UbWrFfk|mWDm<Cr8iEA90o;xuXp76AhrhO_&jZ#a6(GqeP0HGxk3g(UaG6
zjZ8vOKth$pGf#tp9i$6YKt=g4t||-eTqScKCDiM?sE=q{+!h<XC8J;)k0S-In-^?(
zrLr8rH;GLjB&6R{%J>l~uRD)0p%e5mBuN#v3EG^C{G$=H#@3Nx#HKR@MOrB<1BJ$G
z&V4=!)$s`5&cY?N)uda-kZV$HCO;^q6MHBtBoJ2HNQbis+;{&J#bWP=Y!L5nyKN(y
z*J_wKFAEQ3z5ErD5qb4o282EdG-Y0BrR$ffo0X9;lcs3T59_C*m!m3vt-{t$qZ^D6
zrSAx}kX-`Gy<yGoS1u;q##)2q&FLxi7lagcimB`rhObJtS@Dt=yx7|}!sMiHRF=lI
z+wHzC`&ZCAX3wC_ce5ramYkrX99`b^y^OV|;+9t_r%I(jI3G`VrNr+_(#uMj@G9k=
z1NojR4VCI!U#oO_s!e((^n19Hp(JgEDJnU6p_Wy|9Th&0-_^dqYc;CyQ-jLdTePd-
zla81XA8}fr3q3gvV=+)eKzKue10UrJs3m$(AMp4ez-W+Q{7BfL={H@D1AUJQUq?s7
za8FfPq2waA%%0UIZd*lW`^AUCW+{-#Xn2cMPt)rt!!b|B(+=wSjG5)a`BQN-PG2+n
zrMbt%m%cd`MV@dn6H^LJvq?Z}l}>A`C%(+ylAeY`w%O8_=PL(#zmd?&L(_cJ)3LDF
zLaW8vtLa${vUikuroSYDn|k%q-+Fb-y3U05?gy&`M#1Ff_a2M}YPoh^^PRK5-n+js
zZk+B)`6aP4P?&6J8$(Uaq)DPJ%*7q7gpS1}Jo#h$=Fgh(&0d8c4faDizuaDh=!(KG
zUmaXHUYR&KKfIdA-I{r{NB1!H`?Yv$jj@otSy{f#CAstK=4Sl8w_1|#`V|t*(h2Ww
zJfVzzE75XC&NNGSH}(SSI$87SlM>W)OS#9$i>VmHtnB#DvDbv-cA3Mv-TenTdK!mB
z@%Ur6qLvOesbj;uV=k%t<mi!hZPkZ1hWLkujoYL2cimlkwL+bqMHDCdGac(+M!Q@F
zck=5IT5c&V^WN5BN-Rbe{GBlSI~jG+u&@tYu5n(>eC73bq)oz`V))5!jqKsDkBA@b
zN<_>MpD)d)8T$yBJ}Tiff&^Q>oPLph=eXGF+qxI@-`OG5hc$#lh4A$I){k%b$rFQK
zq+*9HwkZWp4T}$3htNJp)#=p_cmFO=i<tX2GyT3mJs?Lv67FJ)pr@!mS#k`CIgDF!
z?#q4ApV)lq@vWTwPzNd;wpc_VE%@(#Ja+j;<f?PW!c{~FIx@y-ow1z;6f&~N9SUs-
zr)^TZI!+BW(YsB+K8^#f%Ly@us@eDSB`eOY)8Lmge!Z(n71ake-#kdawf}+YbYn8|
zqf7oO@U2=&BtTU7{IZy#)_FQ1`N?be2kzA;ow$fA?Dmbz8J<4X%i=Aelkh>*Mgn$+
zDiJ2Rnb|c*eNxAujv{?DyEAN#-dFyQN>6?3Ug-kZq57JdMAr~WU%IlLAI15U{q`9x
zm&LNRUaVQJgnZ^C*d3+%6cAsUnamZn{jV5pkqo#Gi8YuHmtD2qJj{LCY8w?d{Pfc}
z7k^n#MQ76C3YyAh3)qt)QVmK=V!5v3Nu_B^Xh0@52PC#<g0hEGt}Hmh0@$9}^=HpL
zU%_%n5IE)n9t^OY)v4Q4VozTnS%Gxt?5ZCcShx<xC1B&UP9nTQw)@Oirvcp;QlyLQ
zf4ufC&6EHA_#-*|AiCk{_IpE=q4s{RScpKIB{#x8^AUIBUoKITFwvhoKlO%1-w?8b
z0NE6pS9~9T)@hLH=#;Ol?WGD!>s6GG9IR*u+VWoCVXh!uy(Ec0T4fAjy<ECg^`MmY
zG7GuMjl{810v7%uU)V(iNozdN-n|8nXN8ds@U#l6N~aF!z$+uzn2AT20IWkr;*pKf
zzv#gonb$t*RSU-oZ@xYq+&x$Bd-!hm`){>(CnPXg%h@l6V-8*}$`RH*Plnv`m81^w
z9%mX{wO!!j@Tbx7$>~{ng{76XjV*1Rn@Bc6-X7DWy;M&-pK3h+lEpleT2pYfJd{sJ
zOiJ#?&0AV}MrOCW27ZstsNaf6&B1yytlx_jXAdq;RI+OCdh>2@baHm#{fC!#?u%`H
z|M`amrWW=`k@};_Xp_h5Xn6+X;oO?3!U4R)$tMgR?ezhCqv>3?qNzo)xOMIM%qoo=
z0tF`XB<=Hzhw28ac<H4Xd&A;^<aC_N1@l*d!gH0n8N6SagKWs@Om(pNXdxYCUZy~-
zbg06E0t#irVChUP(S~M&*-Dcak0l&UjTm!1w->cjIIMTgCEBn<U^CO%ziI7VQUzeU
zgy2&~VSHA<FSk~@c$n-y(C-noa6q(v0teIHp2Sl0gMzuzUeQnPJ+hydTU-X2!j!*z
z@QQ0QD4(JfGQn_vCRc#`1r|h}E{3$_@XQ3!qMSrd9jT+qEemg)`#Xi59IXU--XcUM
zKHPL6rSjdVbn3}^K`6Qr>f-d;53DuBcsi`!6~YT`^E>z$aK6D@7Owe)xhR@ScBMR~
zdaBkQDUyS}15@tCX;C)FU^U^~5A|cgBYVUF$k6IJkG+-;4h-UQ_vA&=<4;|wI2XHl
znfWnxJNGr+Pb+ZBi-Ot-n(?qb95<6P0m$r;&(9)~ZmpdnHPXEUW=q8llCgREb4H_J
zVbS^Ea_j(50CuFos2pL=OhLaWkd(<4U2lgoQZ%SZcgqv`lq;S0>)<;0S6E+}l7)25
zrrsm=BZOkR2^3;0LPM})4kFsgnS-E7LB)W+PZc7uMX-L>X$Nu<>Lfy|Q5<@tTIjAx
zfTk2!n8@n7bX`XbeuHd1@+%z?h2Z_+MQk+&cFA5W4K3dLwl8aOUjS@Qg<wjdVst)2
z7%vS3(Kiu5roz?!AQzaYIS;)E2cnvi+({?Dwd85z7jVC#5#*IMlSa$y!$vXf7c1VA
z^@Frp905MaMoiQ&7ak81v`tFF-Zu*^jzVyCV6({{Gj0R=#Vf^!z{*xAZE^|XPZ<^{
zhhl8E(aMw#oR_wLD8pu-7%+>epYomr_i}tkd}9r0>&88mj!oeI_45-S?qQ!Sl7}iH
zc;b#<(cq%LXm9WWUHeAo2S0X3*Q7`LC{1Q?B5@BOdi`%uWx@SP1F-)jB(&$3MLq0H
zxbglU)9w}{jtaEV-t~0PZksA@hJRNZ+1BpJ@8;8<{OOD2ug5%^v)DuR7g@@<UIFrH
zEtDC`9Gh<(d!^i=Uw;SY?meYbK5ly-Dw*^H!Ip^A?8&4&Q$ohkVxO#q>^f!JDj1k>
zW^8VXrhd|tK8Z-fvik|2Yl(8l{{TCMeLOTfKym*lxgN;fJl<{Ix|+U48)?j5wmtUv
z9Y-SHQ&{20Q?^3_xu!YSFuf*)<qZg>3@V1LHyt!q6GcIt0)5B^p!%%{IPNox8a|`D
z8;Fl)#N((biP(fi?bzpEjbWVb{p4Con!Ee{0G34znUEeSj-f~YDLbkJd29pun`Y#v
z`q}8q@2){Eb#&~Fy^r*p2ih|z#8U&OEjm8W5xGj4v}Iw4A`>sqE{zF93=4u8>c%pq
z5+Nq%`4pLneJmaz4mRmomKI+0OP0oTLjP{6ypW#4FN-AOVxnLo3Pe?DknC4^H@C5V
z?B;*|fW%(TRZH`69;fs0EGs@S$D;|`OV?<I;wnVrqcW<shP*8#h`d_~KwFOU5goE;
zWygUvp8|nej;_Kkf@q%VYfDPEp<IP6#F00VI+K5wKgqw1@%rhv){Rrh)wafyuDNiQ
z0lE5?wZl32EaP5p2J(m^4zx(0_j_IF7Q65ykOcn<kr)Gjm@rXHzoL!Vl&;q^*(?Z;
zg))Vr$*uewd6c$*EQt)QR^!vaYcH|5Qj~}0R)^Gu<^N$sSB8q1s5?OF$Y@R0W1=}6
zP|J!F`3*5NkKtX6WZSR58&5IjwQNQq;vWUIYm8>}zh4}_?ZT*b1S@(9t5ew*(M?#3
zO4rP8FpX=}vsIc6KoYguZa=v7;dr^L?Q2;9&w~Ki{y+sI)=<bFKt=2VsFnbLqAbM-
z-cj|u@$azzXKsKLo4->qnMdKw5!xz|^$;2~?#|V3<Ef|j+F@;<Df0}VgOm-Cx@uyJ
zsThE0?$*PCbr<D7&)>_2Et3R;7rs<y>BYXM6zNQKzUOz3S$UTZ(K6vI86+mhF5})0
z(<dywhsDOztJ1r<jhWS!n$I3t@|0QQzj2>yZOUOoD0fPt!)8&Ae7#+;GhfNb&ksJf
ztJ*TAopM5J!akBf*Pm3^;HkAMmD6D~^B9M84EvWYa;j=V<5v6)f`&89O=*yA6EDv{
zwM`qNG{h??&Hf{*09mCpEP5wEOLc08c~EIY_M3mwkF#j@U8PZ}e3^_VUv{}ec4Sq!
zWN|4zdwhJaX*9V4(+kL=f3!pisk_cFzyZ->G1wb6Bj?czC<b#PgwnNhJgn~Y-c6sY
z3FqZOi06+~xtkP|_N1A#;`dIm)Hn~g|9@JA2kS*DFI=Y#xa3o%<iPAGmARyNjn(om
z`!8b!Uhg5JU@I4OVDq*40BIxPL^p^TpTg|jtqV?RXD@@#z~pJv52UP#;_U|x)V!V?
zoOU!YyLW3#ZS>%Jim#uMF1ln2ESEI?m>Adh*g2sf`S2h`>`>zNy|(O5%rD;LJ1)f7
zbPJGMCFZM|`4eQL$4F-y;$cu#53IdK>-7flt4y(D#2Yxc^O^4njnvhMJVArHu-8Y8
z`#bg7=1y;gg&$8Lj`GFP5P>B9@UgsVq?_FhF(%XaL|Xioi_)*Yo8Pt~-eEre8wseQ
z`5AkjQ}JqC21lZkPCo<TIj((k@NkcGl<3C;<+-C-<_I_EZS+DcTJKjRSq=vvNe_Kw
z|2kqhCg}XMc+1@!4#FJ;38S`?Tzdtcd9-}r2axX@*2CNHl@?b@ac(S_b_sa(0bax?
zP%GT}6L=lP{DCUzvGr31%1A!uqb}Ly;*P*-NCrM*_Vr+ypUV#C7ZCMnFmj>Hel|A5
z&)4G=1jVanwhRItZhFDQ>XXWv;%YRf>vaVNkRLK~gpiqI+C!|FX{N!?=jmO|w2rfJ
z)UU44JbC7_jhyFPQUUhu7$E=MsLzQR{F~*UwImTyfg>9QjIZx#HB@A#*_q{y=!q!6
zwk%SONq=Hzv-K{jPyW%%zC7!c!?sDTv;KM|_24pQMrYvt+^;8#(G^E`3d~K<3KISp
zFz2jr>kgNGRY)j7Zi0Jqx6jyjl!t@Fb3w+2HBN>hCcrKNu`8Ae$ujl2dh!Viray;@
zLNL`fF~$`zd`go#-#zipJ*5ew(;PYyC({2GMOB|j*^qB&9XnB<Lup)*+=!cQgBh(4
zmm^bA1DJsUB4+Ru^G?5{={1@%p9*50ch|~wu$UUAgw;q&p7P;@brWVHDrn}DbN4Z1
znv-Ov6D=3XQrAXp6$5xL%3hx5WAnzJ3QH!gDavlbhN=<c7!S(@&*T)UiG`Q*ck(+D
zz<9m6qW4wVCyu)v?h^=51=1AuK?5T^kOfI!Ps^owNXV3AO}o;FnvlqlvPcv7?TQS}
z$ShAAy@<2*Cs4YgbSbje2&q%VDP$teqrX#QE6A%3>hXMIY5Q~{ZoX`B2QXC0vN61t
zx*>DNm1QNmTUz7K*mK4B>_nyh_Bf;fWbVD^?$qKG(SHgNI+d|yTw22yah4%@&U^FU
zwg9LS5nMIXF?CbaNX8UM=j<lkf>1MM6pQC00`}DDrbT((<O+!aNjo~C%p$y8L5S>I
zfu;km?piXYe#6Y4HEigYrbAn?V_Rc_;#jKG|KaP+qoMjA`2RZ_Gh>@!?AsXoKK8w4
ztV8yFi?PcdLQ;)=2_Z?@#*&2W6;h3ziU=i9mh2RzLf*~S`TWlBobO-X``_!odtUdR
zd+zJ?dOjY{oOcJgD17dUp(D>k?jp+4fxc05axi%~YssCTV~^<lmN9952DGdDbzqgY
zX|Hb!w!Go&6o4flc95JCmKL~-gAhw}w569RD{tf1_EyTdzM3;Xd|W?&NpZIR94AgP
z7G2I`gcw;eezmjqUR5c>%3SsJLca%#&nI|&CBG;zE|`DGlBo8`Dk$e3$?_&bZ{7ph
z3(ABb3i}aI1eip*9y*1*@b<)9l&8=NFnX)<nAyp4&B~Q^$l)f4=+DE;c|B+CXauKm
zW)%h88U;|H%Pbqb#DKVrA*tRF*Qwu9)tz!{=^a+|#G9;qiGB>0{$c*+^{b|@=0bx`
zU1*~PQV-TomW7X4qpAppA)@m1Z?$Ujt8!V`*fq)z>KdX~-0RhYGrYCZxHVt!I0|j^
zQRMc2RBxu7bl>uc>-Q=(F$SPc0?3}3p{{ll?G(^6VPn(FnP|<GV~yY>z9w&+8Wy@|
ze1iXta)SbOAF-z%TZdXAV(wL6Ev`#FUU88j1{Bg>Z&=(2%I7uSaM@gE;Ou3dvA#QM
zj>Og_xdO>Cb(e4#vbc!w($!q9{8$+aZ*=0#c&3QOJoK!TC8F+@GVM}Gp!d*vLYB1b
z%zEy^Is!B<TA3)TKP7$SW9sjI>B+-x7ZlDRgE5cBxW}ELy<q}lFV<W{CA>r7-vJx>
z+Kz*jebp*5y;6wP3VJbnS&@SYD~)P=vnZ+RY|uI?8+harWSKKDinR-H?{zpBd%(3-
z!CKHg$<D*W&NI8IxVl;X!YW>3lY3UbcQ*506*0iJ9^JEr(v(3{Woq@sWFFU}rM3uZ
zo5k7<ytglmic2h#?Ji;pd|u!*dv86e3j7$j4Zm!T&;>(LqZNli%)E9~%M4W;4#gvO
zyn~TqCR2~lCf9;kMf}vOY|+eX812cMt;*t>=L=D-vbsvdRGQDPP(l1r?#r!r@cRwE
zmsw(^IF=SMBMF0@MZwRD0)}l9<pVR-92%m|1XbL--6qE|UN`lCQ;t?I`QHXSc0@MJ
zmhFt*_L#AC2fbW6{@9)<SlHcm!C7qvs>^wm`SoZZt%aNv7Lq9{wF}GSoP5WLfC-E@
z<}Sr?IzK9E%Q&?&QcP2c7Ham6A|yi#dm|P(LsN{A%k+8QY2&N6FNe&Sd&$oaE!eVz
zPFe;rXYN`E_D*W=LICN{^PCV=sK~o%hn(Ff<!=y_Jcbs)DVx7U)$>b%Jn2%XX_@^Z
zbKzTt8K7p`?6Ey9k(eWvIFmK{iT%{P7WNML?Th-OZB_;GMgoH_1!jneJ&?18)o%^$
zMqIVuXe&I&**g!;UG3wT!tG9Jn{F#BuK$~UTeLe@^$5{=8nA5M+t`^|UcZ{hWnd<k
z2sruE7sg&kNO~22FUWX(cr7&~AJ}L;C0iV0zlHJ&(!AB)`&3F^x#Z{xV<98nd;a6R
z1&s(7EDG~03WVi`vw;30o&JmD3Oo7^l!a#veMzsQc+Yd)`dZY|hf1SR`XYxxjRYoA
zF9U}u;}=CAEiT{7;c4@?9Y!jiCTv9YeXmtG-NkM>=CgvWY&l(RxqCSLN1qk)b9?mt
zJ7%{cG=(di(}WJTJZ424w>{{@0BE`*h|Ll0?E5=jX`Ui*D~A~UoOq=-k@pKIhBGlH
zl^CBRcv*zD=$*(*ZRP1y;s*>k6SyIHA@6O7pzL8mZpWCTHFjt2Sfykzd@XJtg!6pc
z8oj?Skk^_}_5pW&UtH0QhvTl%4!79hX_=dnWVABc5G+yhL;9(6jvwTf+FfG-XN8?U
zhblv<s6JWAV!7%_h3&Spfo-`Lp{Z95G#jB>6foXxRzWmM`9r@S6a<JIK>;=Z0OVwV
zAAlLG50rX3;1v?)7ZyQEDGQ2-qUF^&6tyr)+PtcIBI1(#8U#U2B2L#x{47bFK$11G
zP#{?;m{=>4tX0hIG_0L8t(|o3-3Vru1gG-^=ktbcUL+4cGjf2r_XTVJVB5e@hu{d8
zut@idmpr55ye?h#yL|P+mFq!Q6GJJ<5y@$hsTnaDH!k1EO~}o=mRFF9;Z3@AySKM@
zYHDg@V`G1R|LExG^bY?Y7XzJ^7(tTbyE$@NV;M)`dQ%te+QC!cSRd0+D$q&xG2s}a
zRDEuV9}9bS)3Q$WuTbuGXtz#I?3ce3V-BomB85>rGYg&;nBor4%1X_-U391T?!A)I
zvhoTq6}9S``)UR-esM8A<Xw!IB$nBh4<AW2W5siko;~j}=fVe+ON-dx<oX7B$KOJp
zbe?-j8J>X5g!K>3>VGh7Y3qm(%eLVY+Y%Mwf}MUNzJE4@<3)vzgbEGW){K|^IlWLg
zSSG@5c}xYTFNi=338A#8Z<FCX>l+v5M_Q|gZ(?OLmHo^zk~!rKDFjo?ENummZ<h#@
zNuKN%&UxS_c}W9Vbg?r;1+2(E{4HUzNXkdKBXERZ^2N|EN#&ze@JOxsBaQ=$sT@<r
z0Rg4<+I+AKxx-z#FSVOpj$G)>W4ts4`dx}6Har=bZ7UR_5n7j^%&fLMLKpJEP&m6R
zIfQ`ITv>QstP=eBP1hKypeCh`WK%~&VC-F^OO%-_QP0ilC2aJrsFlO;BLcmTN>p}@
zy%H6+OE)!yRvw2LE#;^-V7@+$;;1O-_=TF)KSSH#_e(+IILQg*YE9qI;&WY0t^e+g
zWMT{y-dWhbAThBSdN)1Kz1U5s0}N7B$%@37R}2cyX*5-cz#i=y1VaXx{|ewM*k!V5
zMh>i{YILvEXj9S>h>Kl`4UDn`=`(R7TbEPey0k?UYpv7(2sO^Vtb0mh!DPhd#8NV_
zRgsl>X84KIt&JJy0b7V%o==|Xfz(%BnA}4n5R3b0^-Uwp9su?9%@ku-8YhWm>U@U#
zqb<{pL`qB+ouTPwJ%QfESC;*%3%+QsuicI+g0CkBzABcyQD;c9EHZY!%ym0}<)Jud
z!8aFL^&KQg>ejel=Kw^0z^5AhnbW2(mP0GTKl$%WY)yknhN*u_$GeOT^o5{{9_%&u
z%uc7bP<sISN=alJ^#@%EC`KG;EOtyg2Jb#L!NB=$;iN7S%oS*P`sa8<0u-1fOJQ`8
zu%-(l7L4+=Mg3>1<u|^eewCLrp<c=5^~K1Ms7+7t(UbuYj5`rP{OFqi<290Gzg^=n
zlxT+kqyPqJ3~M47nNfU0_~qIYS;H4=-*gBFc}!~+hV^874{Cb#(_ZI(D~;faZ=`-O
z`gC_k8o9PCH^9Ji85PE)FKa^?`c#G=8x{%I_yKSXtVS?iR2!4+KWC5~Ic;ctK50bN
zEaU+2`Et&1@KYD174>~cC%g>7R;e^B`bRd3W;oCzIAy9tIEV>;`Y19vsQGb3Kif)Z
z3##)f>N|12N<Dfq7{ro1K@z1Nys_gM*IHdZe}=eb06(Lmxug9k3D#fgN;j-G?CH^3
z#<<D-(On&!YTE31`RLNa^Ck)HD`cJ16xz%8+E;cB23~L^D0tj&)Qw3{Fl;~Z`jFBw
zTNM89XybZ~yeW)OGH|6sE}{>4b|_<qk!{Cp;HAFkYXZYo+-LTX%3P)UG*}buHRLog
zRWxg*%aVPQ$rcZS60q`rmxQm5IHkln`vZ~_9{~)C?Ey{E?B`z_)r_V8QK8}ylS3I3
zN+MJ&OcIL(tD+2EX;JhH;;{b?(&e5v609APmcYoCZZ6IBlpoc?FD0CNv&8G-&mMf<
zHC(J`XxR}UxebEtCX(1BKrp$wWu!A9lYeawq_ZOe$spo#y66T-ks27n%NiqMJmI4`
zEy9)#3}TSIH;>&!;I4;#LhN}`C`~drbFp`RECQ~E0ddM_^zuue(tr`mC}Y|nB(60(
z-5m?%a3M(}MQ)19Rq~9a^S>)R2V>+hwjq5SRP;t?nA~Er2~2zSt?)--cHJr{?C!ZU
z>KnH#-el1M5*Wm~2vMr>h;_bH%^7_T-lKY7adSwYyU!Y)1xjQ(V7K&*&&p+NS<!cW
zsPFvECZQ)%g1tox2=%s*pT?ZxrSHs<Vrf?()(`Al@#Sd8kc<B<l8+_KCbL|pQQIo1
zzjE=+?z1bGJ6k109%m@><WXS4og*_0@Z|7Zwi^036@3zK)my2%9q_b$*A!|pa-$<$
z&2lpkwUAzNTN?l?e=QjfJB_907s6H4z)bGiCN;{v5Py*X$CP-|pYsFKNyKG^Xzgic
z=#*B{LqI!7dpM1i5-7I8(G!Q65<lq>Hp&P>FV0CeE#Gg7f8@bp;qBnoX^#iX0nxvW
z`(MmpG%gAPj?!LCVnv+wm(E+Y{X=Fy^H`S~@fsHx#hWyL>~FM$2{KP0A&<kBI@HA<
zMVrZfY;3~Iu4-Q}WBdf=CiGT>c!751CP17S_=-CDpvA@@ZgdAwao%XxJse~A@>(=$
z?6472<&={6&rz?-=%LxOV1*CHm0fSe>H0kfFu6>RgXeoW%?a&(SlbYL$Z=;999s`2
zPO2mP4d)PRUQC}@dbwPKzWAo?d5WrPp1FeoBV21+N<w~Ha$oc7_3!wCJJ2W&@RpNk
zHtyiP{~ONs%|k?+`dqw}U{L2Q|MIZp_6>{(Y+iNLE`Kp;ROFF3d^?BT8n9uHXdf^+
zq(#JNcS-ToLL`I;S)s*CyjNyl>Iebv##0t~6c1^<T&*Z&-X)Ov;cfg-lVAFT56--+
zzdwFCO<tE}9xfNdFRx!>Wu78DMbdT;Y%dGV%A0*YYpDEQxf}jQuw#Rv(~KvvUw_l$
z)9&Thq&=)Vvo1wXw(EgK+D{byOrw|7%O|xGw!PIeqGV&8Jyn5-M5JbpWp>Ei8Qe(4
zX%5HwRcGuA8tapm*4vY|%)kUfzV{{1Ma?Tlztvp)r4{BReYK}rMpvdDlJBj}<4)Uz
znw66@ZsEg3b;IznHEqv}k@rP2j%LM%JlKc$<eT-*X~@u?uxA_fH>&=1&)-!?i=BtY
z^AjOBQZL_6u5KPDenjTC&$?k5P~XiVt_d}b{t3N`P~pU7VNVUa%CTK>;gi10{Q6z;
z52r!!1o)SK;Fn6$QYo^!3bVftJ&gYCL{(!K44t*M#F7FE<`R~U)elj8xeMuE#Fj`;
zr6-?rKf8NVOSY}@2}+krPlClQaB&p-)<h+wRIikJN_<}=$ES(4ua7N%jehlVZ02VU
zy~ij}U+vAaf4|;}<F_eiXh<A?rfk^FK-m_=;pfeRSImF+^KPD8&l2S0oMmvyCJ_-l
zw4-q=13d5gMyeB;Uu<M;R_nu+LmvI5Zx167OPkXu?+Pd^kP?XfJG7?r_Oe!>GQvAd
zI8!7Ddfx<7VJsy4h>->slW_gn^Ih+yt6~bOle(zm2=J-l6Hi*nzUDXce5)pGA6u0k
zF1QhWU+BU<t&|H>>6*uPJFa}b?(yrThTf}Iiz|1GoDZiS#5heP2;AbF8wSs>UzO#&
zuHksS+zI+kgXd)8Iz374QtFx>V=;wo@9OLWSKdmpO<v-{)5OC>elAkroAm@YwfMmn
zkKg)NO({Ai*d(N;5x+e+31p*6O4@vS?e7ZZ-MZXU$;40h;~|Sl>-t{T)PNcjOV=d)
zanXgy{N&%Qw*IwRU;T^=o~F9brhX<|u3n5>{H^}qB&R7w&Nmgx_8y!;<os)rrk$Fm
zdP(QP1L(aw(AW{?TRv%$0ittgn|>3PNr`k5YeQlDbrUl9h7X(Cdv7aSf8nV_1s^vP
z__eQ)B=bD*k0C{qv<xu-%tr;iPKWkWLQ^`Oeh#On7W=_!uTSMg9^COoOYr0xrR!5O
z3~3n(`k6QWSkdR#GR&;A&Pv&h+egD&aVHZuKDPKQrDvX_WN$en4U#T>PQGDqn=^Pe
zjd=o?p9T61f|UcI6C-k>Q&}b`Hcvcrl5*~sD76ZntiP36z3>~q$SI#@bG{r}O7y2G
zL|!F6^=~iCMLT6ag(OeZrg{|TA-nR5fV2k_j=m#s+VsVPK%7LH!AX7^`FGYs?$imc
zRPIRyCaf7(R~Fc(py!7!Fl%M?7}Ysxkgm$sJ*}5m$22K%DuIT|;=z3mvMPNbwO^sK
zfyzwif|LAcog%RFNI}tI;)+uNk3>PTkuPZi*doH<)PkPWTR%*)<V`(n4hy<Q0tGJ1
z;Ufy@4%T-2i_SRH0>UOn|A^(B7BiD`J_oO%>t(f(q$19Yq}J*}L&BYc*?>ETh39}`
z18lLx#+}bUi}2hRc}yd#o+d2C`9!%Gc=H<4lC8hI=g)ZPBI<KnJ@QU^;T<EMc)2dF
z{JWtShsh(g(5%V3U*QhY=+l$$yw1BN-J>v8m*B1;fGdwHH3BT32V(LD$+rks7J@hl
z;A3M|i)6Vjb&w1tgU7LG%b|4aVfgE=GO>0r7Y&%c5O;1yRlKFJKB?RQDE$9;%77{M
zfeWPyg{9;e@WKO-oHcXOx{A($qS|FB>mI;kjn6#Lo7*fkqNw_uK0;mzIjlRK&DvcI
zp+9)J^!H|@d<&R&4^SKcGbvGFbD-mDCBD;>3Nn-0batAlpG6dbYp?v2tz;tJ?s@nB
zvz26zbF}hrhzh66DTp~=^?2yd%*t0THGl3_{53t5BPwrwwD|WB1RR$wX_c>A1Lz<S
zM?F~VLX}i~mE&v~^4N^qwc;yK^PRWCAfo)4QVw@qc9&AE<CHcuh$`P(wZoWj>0VWA
zckvL9$ob>@oHAuh_GKQXcYOm)C6RT>eoTi)z_APS>P2-)>DoMPWjLi;`&IRsdo@8a
z&=8rL*Td&;n59iUtXmLsKc!Z;xWm~0)CL^sF)D!u22a^i96k4G$&2F#T0Qi+G&Dj~
zQ3P)a!)xpLSTwW?icbKVY8hMx;I{7k5020=8SaT=_3dAcQ%_YsDFqwn+06!6gOQN6
zS2nsTJn{LBOKpv_TRPYl6f;&uoXoZmQM0lYk~Hz?leWDA=Oc@DAUz5UC&;0z8W(wm
z#e$S<SA<Tq#mb|=tTgZ$$KtDIO-5v(JgV7G<vJq;EKCCl1K@yLw~SGxYf0eQ{70XI
z3^F#FKDD;YZZ(ICHv3+F^t!l-)xY`h_>rz?(~MmU<7qzuzLm2fT;XrCGE;MASCiZ)
z?G3&Mk~}&lCCa8cw!qV99)6e;znY6|-Sh?@lwXZ*bfx_h@zKL>3)8*F8wHPtliD9Y
zK_z_vTQ5Gr1h;D7+Qfp}q(5}1J`=LOanB(2UY=uPkeeQVfUP%U348`C1%i=C@d57|
zdgHr_pOy6U8QO4(FTL-2s-@rT#8}2JZl&+#!AKtb6VmV+TB6)-{YxgMPj-fn!6uF0
zaZncc-PK$LR9?X|Q(|o*N=j^>rPPEAS*Kg}11(Gr<QAa9O}x68rSXP@J}%<nxo0%l
zp2AzuiD%qz+#+TgV48i;(@{NS3b0fQj0MA2x8+M6f$04gnyEdP4xc|}f8l(WA2sn3
zMSfvSd$Gtwi!q|X7EgyvFH5?Z=V`r9y6AhqBAH#_VlA2HHAQ9^9-NozWqp&!Q(9g`
z0Tl3kV(#67t$>($AJcrV+<e~#r1$$^FX9N0odD4bo*^!yMX4aJ7Las=ySr4sLQn4>
zTK^g50fW*3vz~!_pnmS#AYe3=VFDycGwM15gz;c;APcJNY5itErF77(5p<q;$Uk8y
zFdJc6IutTL6m~KcAut@NJ8al86rC^}S2`TuGn_C#{N8)`n!res?nsLJNLs>(8!(d5
zGm<?&l6x|eH&4qF7%g-kElL<IE**s^kMg4#g(?}PKfQRh9PLE|1Qtu%(i!)^@_@bI
z*IS_edkoEu(AGE51OQ8&C(>)&p^tl@Pnko?OPShtn7euyUS_lOpJ0;7J#Q)Sg2h(;
z);D>3Z^UVD?!6f*DM2<&Ad6@K>;4!Y;=W)d%itZCY4o5QMNWJIB!LPIj{tC3Z~(`6
z5K4eF5f(yzYeISJ;Syg)95<%EWv=YGu=#fHQv48QycC!Srm>I{4MAR_|62Mc7g0Mv
zbda^Muov4Ql}(+9!VLoadzmRZs9ge#Pf(Z@gpMbok0a2St7Eh7o?gW)QkCp-M3`H?
z*xORBgX{_8mMMSr7w(|!eXnU-?1UQyzc2xsYJloLiW<vjhK|9^ETAVn{Dx@kkIu8m
zoEY=gnF;JPJ&5q$&&jVeVuolj9X>JhME3n@*!en<!|9#r!V;Glz#VBb#6R$%mr_3i
zQFT1Dk^;c=B-hs>vr_+c{+{Hyxs?1wdg_X9W3>(6gM2=QN1P5<%g)j4-V}Tcp$S~<
zetq|F#&+>6<<zWk0UpHiK5Sx6;pxX|+#Ct`<if&U|D2&~H>(%;R1pgAxGFzGv|YX>
zl#LWxCJJRgpEN#n6rspDO2zF)q9t~e-j2C_N{)SAC!8<;@$!5Lyb8<AE-7Ivb#1{x
z>h;Huiz1@lQU>0iuO{KVsFL4?r1F1Ao-4pO7rZ)$XKpKzU8|LfeD|3fH)9YfX1^zG
z5lOYiiPPPwizLI(O}mR;`qG!cixx0xH=4M|vP5;TtY6a7vp5mdHK~0~0ZbT<OX&1a
zMx+Rg0DF9fhT%NH&)ENcR=M_NYwSztYe@_7FH%Kc(4Uusmp^xVi#`V@{N7zI`LP_K
z|5dhpN%xyP?jNf~t}Ls>*XknwLK_(azGUC0GFA%DTKi_(lf<yOvL_KMM9j*AuG99P
z*%Oqr4Ql;{Ag)~t`W9zfw7n2LUm}fa$$zIQ?x#2qyUIV^8O@;hLtk;bRypgI%0DnZ
zK}+ljB$d%FfACo6k*G?_EzU|6ZF5mrq09w-RMr$hm*durF%B)spBu*HMOjF4cR#f0
z=O+C^yRH_bNzd-x$Hh(66#;b)h2U!Do^LA7=apIChXiwMoiliA09M;jR>MZA$C@<`
z_p9loZ6-o?)C@KPV|UJ0pGISLuG~|7dj@usLp^oeL&$D7uv&M(QlTaH3AaH}_B9Qg
zy|B9j;9IN^%G72u#}2dqx7~7O4$!ys=`GyguDYL=#7v`e-Bz$@8nK<aVX19P*#By+
zRo|~Iv9#-w9}u9V=a~z=?XoQ(+<Z|*1A@{Od;DX#V0W}%vs=iJx%u1Jn13>hB%U&B
zOI}CpclJ%?4u4p<_HSMFJY-kYHYG*H#{O)*sv)Y1Xi5WzTzwD2n8FLqm}|~vOtaJP
z84^oXYaFlVzWn`z-H+*pucclzFo7|nDwzA&n?qF3CSL?g(kzEnEwN(yf4=@|fQqzv
z7}9xQ5uV_47z-=mvuR%=OMH!FOAl`-{>izi-=z9G$grF#&&XoRas^}DZ)l9kF%B9q
zrW_bwJg`hbS@lGS+%^=w=vjH7YUHbU^s>;8>S<o(`3Dnf)mB6Be909iM#8)N?K^vD
zNc)`~Z7JLFtDxh%Uy*4^G;yAIM76JccAeGhyO1^g@OraJua#+sn8Ir)q*L`4q~*V^
zW>;@RbIjPkR|DoMng3<et>_#CW13YS!x{$&DmzKhWY=QNv1K9(1d_4CeSLHpv`z~c
z{WV^b(YU6-)Yp)W5%s1`yxcascez7Z(@L%j_xDsRi6Wl>W$wDjUMaEwyC9n&Q~P{3
z-0e&TM#9mOU6_0iXJle}&ce#Z&cVsW?YyU#kDp*bP)PX2U@o$RfIOM26e>@PIqjH_
z6O=4GSDBV^=4NI#M+4oEp)AJqU%?e7CRYOc;OGr6RG9!aL)VqHl&YVhPTr{YlBqH{
z{?CAhKH{`0q%s>K4M7GOeEcRAU~Ml@DD7@c^=EWKq!kwL#meX_dVr{?%l@IsddQhQ
zg2&;?@=jK$cSVzb*|HvXgkv!J0eCbKR9(WMA?Vtv1+Zs#ot30#zS$m$q`c0X`*B-L
zU&Xt!1hR8`-c)9(EAV>Lf4r`krRkefYxspCR_14Qcqy}$Kh46OYS%YB#0SO%bqie~
zy_%ZbO`nReuN9zQqnpyQ@NyNK$8r1J_cRB$>@Gz)`M<eyg}9KR2(jT3ZhLrR4L7T(
zRb$-J(()`Bsh9cUTY(<!8^u(_4G%rwd}v!M`vqsuGgXLPrC>k0_rACPZ98lv#yABw
zKKfCnn|SYW`PD0bzAp{mIeXUOk$YDRY<e+~E{NVJvnI-p;Sl0zc1KNEmT}D|fEmn`
zh{_K6hpkLq6-Z2~KdXAuFO<{6TluhXrz@0lUyh#)#yE%2(XdVi++Zr}9;GswMfhZg
zEdv-$qO!7!twPZ`W}7e1LK6^aXKk&CB;5V}brQayC(BfF`(0}u??q*_k*zh52WM{)
zAWI2k9#UY{uGD;kn>3zCL+L>Qsu{93Fj7LkHLBfE@&)FdvFh03&o}zD%n=0nv*y0N
zI6?c#L9UxeOxd)(=)OJ;ssL7GfVTJ!fhZ#tX2>v-)`pmuLP$xS@uP}p8@=r<D;(G&
z_4Rp=+YXLeHwK2wIp!(LPr&x1$tSkPl*-hARQ$zrXT1P)wj4@oNyEm_;g*GlK|P0q
z1416&V3PJ10^+oeSiyWJ^*Xv;U<@RtFbd_-3CZW)spP%54q|m)OhhPXqW^w-=0}<8
zloEmcN>hHT`z_Ai?_spj<^+PDd)ZD>zW++St6fS&jc>?%^BN0Uii1@*#x%1P#bQYE
zf^lhvWv2Y_h}NhW^L}RwN^=053U4b8N_uBz#&7E5?}@`Ub8h>0_f+Yp#gED*)_(La
zeW->PDHa_?Fv+KwiJ<*$4-k2`hE?L1>K_dqUy!U?i(k7JKK@atl~)LsSmw2H*~DN*
z!S_O@G=tXaUAObj-wfpzoXZ-^_Q+o!X5v3>zsPCg$sUyCN{i^HQ=U~SCOq1VYWdSK
z<7Wl=o*6zH>vf*jMXTbkLj6#TNh&NOo$d{WMaWJ~ev0B++81I<_ksmidw;fg@*S6Q
z&|tCNm9sTo#_8kkKuV0~9gY>dQCUl`PF)(u>I7bAY5MZ-@BZ5_*HSo|dM(>CXxS1q
zR46lk5u|aDxm~!-%^Yd`HL~a??AnfYvCbz!k`2gMOh1`b?lzM^FL)p?Fb0un|Hk+?
zBaBLc@f8Cvobwc5fn+HuARjE;C#ifj+e1V^<P1EH0M*`Q69JZ_3`dl4P@4>9awd$C
zJTUt(FI6F>Qu`l+wC&<5+pv;dS(Es4PTFFM<pvg8P~0KT)skt|!;h}1)4(^jq$(y5
zm@k4mm2<t*)Ox%QOHs9kcpG{K0_sc3g?F(S;n{CjFRXqJ6yTW`$+3TJ$hn&_Og*2T
zXHY82!o*mmQe_a^YRe$_C~i3V;-G=Jn5eY%T~ouatd5Txeb@Iuf|8Ak0$*EQ#W<9}
zt2V8<P6?*CN~a{NY3ZUN-A~9N=OIfzl*v_QKk3H)NBe?U*qR%x$2cG6*GIMd-he_P
z_YudNH_LXT*L9Ypk^jVZWU%aHQc?%=&73OMx(Vm?>>+0AL%6S7|EHgZM1qMF1~p`s
zf*26XDB7IFC_^A{<`rlZ*D^O~;lT!tmd%&|Wam->y=w}s2)<@g8v=u-XA5jiTBgkv
z9?b~jkySbVt;8DohJ^Ynu@Oij0m8Sj1n?X)7N0S$&7?}-sEwP<X7_r~G%pI_m9`$d
zjj5=b*ec2G&Ns4bLJ8wHh81Gp<7+}5I+&VT4y%+lTaxZqZ3LD#QMf`onz$ooHe@ah
z*v*}PjJkGzOYTp%j$emERcaQANt2w$VEzQ;QcQ5BW6e!?o_K6U)QK7YW_lD6Qw_m_
zY;v-4x{a5cYDWCUXr@q(mc@ko8KGhcHSF!TpTKD+v)U`X|3kTd-d(?{z)=X)uXCgK
zKMs#%<wdf{cQ^6{4_E!o9Q6~$G6jOXkpwCKo_f@Z{D8ubId+YRMfZCpbzH4x&oQ(1
zPqzpF-JM-oV0SHoDm!A~Q^N%R&EEH1@M74*ptdiy)C;t`=S-tYk`^gahqafhzALr_
z&YVqoTB(M%#CFXAJmmL1;IQw>XIB)yF<68(cHnvNr6z}5(3gp$j4r82IGleq;+8=;
zHVf9f)pzLbLJE$3c`k+FnW*?r@wRKcr|Pz+HA8LEO47m7vXVL?Ly^%*WQ&a{rm57T
z1VLH>qxGUV7+&Kpq|}~v<gL-LGTf($oO>tGDIaSnh-2N({iMH&z8|iYeqs=EU8xtS
z-o|)L3%rTjKA#oM+&TF8;J#AXh0DLKyb5}_A#&7HvXu(sB><eRgysN0Dp)M<lXW+p
zA(`ROZseQnrH0ifLGH2_U|eJx)P50s+{=d&r+ydC9;@f*v4+TLnt+_CC5#6WqvXkm
z1W+pjivSs94QIY$ginN-Q=#EPZy%k{kxd{HA%|^6dbV|3f<(8uX$8bXi=3@bDFHCv
zI0C2hp1Ze(_#9X96J&i^y=}!D_+gCeOS)iatk!8VwPg}wUK1L2MW-JlSXN}a2xiK5
zgULoX<<882xk{-}NjS(VBX1`HbFzpS*60_^707@jEOWk$8&YcD{}G)qln*@Z91RW2
zsp5B+`ZLt`D>T^g!C!^f*9h%z_pL_rmw|}{0Ia&#(((KFLoX}rIZIeLT><+1lfj+i
zrZ2#+v@dHLD+*6DeVabmzPDWoeX2Al{~45h{b;UgLuYuUE!L&-`I@-b&~wVzjGuUT
zdx%NG%-!9c_O6EcuX;V78mc0To(ZfW-~O4uoy}eIMX)4|)u9_Tk;HCJ`Q70(PJ3z?
zI1wqt@HG^K2n<hTZ6U)<93Ir>S0t=@9(Q&{^hvy0NkU=SM1&%Um*ZJ75QlBh_FRsN
z1H<j@w8FoiuU|VV8v<<l2{65rp>nA__`QMaygn(3OoYWInBfj|8^>PkiTI>0$3NZ=
zat7S>$8@b1wVyQWb}I@u8f!tl-n|G{`Tbq@<gHXA+uvFu6#Dj`B^|K%%qD-R2x<6!
zT=M{Oc28GbjF)Fv3Z7TWj1S3DaOfBSyj!3rgPQ>Ce@HO^eKlsW_7<&>S86_Cr;dl6
z^Mj2(gxyV(M`9VQ$P9js54`>VL#Bf!t)x255H|R~|EM6ZMNq}te|w4}L*W>nMXy)Z
zsBsb9>1N%zW*#$ZScWfhtQyG{!Tb!xtc4othydv&|2t54T}WhOYGM0=MIzp=7!uKb
zEo`sNTWL%1ziey<ul|v!Pb9)Istp2l6Uevt;~(Ka0Y8{4mPag~ZQ(1BfP$yulaOS@
zpf#4kW)f+^%?OlU>kUHrK%<%`_jU~Jm3R^me+hKzlicv5(tX~_i`O;BxTf#BuTh`W
z^-92p_|^gb^0c^)ixQm%0$mD?D1d)q1>jlix|amPkMP-haVzx6hJXdR0e(*EyZS02
z(Ip{45n(%`;Kx>Nfl7b}5CknjzYalchd@J<vO8$uUz2EPn;!EI!MDMjCzEh#_IBqb
z0jDkg*Dx`rO5EQ`c<?rEG@sM_ho>t$CrKHN0Yq0<#6d(slS&|ANW#uf1ii)gx>wMP
zT?I>(5+P&HDxZlikjrKVQ^~k$C7IK*^7EBP5s5NRpsbd6W$+{@dw^`^BoGt;{9u(E
zv*qmgAvg1mchL6Qt9N=R8tiMNLKhu<#6?zEXP5a9sd!{N)z~(5{O)0bEFQK7a->3p
z{Dlxd-?e%D55~sAp7<$AtH?|LR9<+fB&?z=$)Te6Q-#POOE2Ifsz3<hs!RQV_98SF
zP)iT4F{VN@kkaRG$yl_jUu-9n?bOvM>QO&65>+%o{;L0(Xy*LX%vaI69i?@*U90S;
z)`tSk$|&uJ?b?riYPYKBJdV=Qv(xVSsne^XI~b)q+O9hmrThG+?o8Av%B{EXQ*TM-
z%tvXx)l-+&&olcfXMaVVZNGKq#x{sRRoEQ{2eJ<#4|Ki`bMjCi?qkVw1}ubAsre61
zZ7h*V1Okk3$`oSog%}AsAfl2(m>JdwRT`Kq8C>KbzzScp7IIoom#M2xNsxKvcLB3S
z<BRr+O#a5iY1s&j$(6#hsj3=N?SMKJN+Lk&tj_RYp|-%GIdOX~QvwK){kn{?T~u{S
z<Tay0%*hqxCBTpXeHBXe7CC3yd)XIcVM4Un4brCOn{k_+v+>7V6EPs#nF$gteU>c0
zWLlI_z@$^E9@{8Hfkq!7NMsumEc8XX{*8;BP_I*a!dXHJD8<@T%hyKhHnheMO!k4)
ztplnQsNoEzC-A<e15}qH!b-K(!}7CVB3)2ZeLe-Uw>i}-a7uQZM$0j0KrnSIFYX5B
zVA@HL?q#!N0CjAzzxNme%y1U<$!Sxa&JkUv`pvyWTm!ZwT@u~OUb#&sLF3R<#cJ#{
zPMd+pJR=U*TQ2E+{*~z1(ctR^nwu%BQiGDoP;CHK`%21i%(b5e<8p9&HKFlR)HZed
zamUTlGr*E=9n_v|F8$u{;Fqx%1*Q(=a>7ELu`qTuhXqL(4nqW^Q1@CL9n>|Sw<o}>
z0L#VMTn4M7P1$yk*YyB@K`(*N)vAqNa;=4yHi^7YF3vc0w<Xc@PC@7Gh!?gy6tBiu
zP8D8Q+6?^AAGCTKQ}tU8#5ut=(pYGT(a(pglDeFUzTEF8s4T)rpdOq#q0k`iOApuY
z*#zttono#0(hNLv!ebnNhX>nfYY=9^AQM*dp1Qf59+oA-v6`03>uB#IFl~pqbFri<
zl8qKH4}h}NKNTcJp7|rup9SK9S}#xmi4T@5yAt_;rVwC(1fo8+juri2OPXdj<5pt5
z<1rr%(vG!{{1AhFYHvFfD=Es-vJbe%_M>o@qS`=p4`OcLkziT`VX;EicjEC`f~K*V
z(Xnx!RdHA9fV?}nJF%~<V^uw3m3^N|7xsaW(Xk&j1m&Efzodwl-eJ=JV5ht4Ea7yy
z`e}k>^=0|Bgin1~#35TZ_d_#%4$&ph+^IXlE5s+P80ZvzCT06^KS`3_AK&_cvid>x
z{T~bu7qb{)v$!{r^`{PdX3@C6k<t6}alwK0s(zq9X+%41I|?||$+KDUba}2;%#e-Z
zLG`>t#5j25FaHDUXNWTpO5@lvV?pzIu#pBqQ7`GLb2lEdu^5q;=UZSB6brgPWUv#{
z)a0U0ty50{6)|KyTR(Os^Hm+{T05E)0S_2BPy*QO;Z8ADTDljIYoO2eJ{<PylHduC
zHRR|Y!$-r?0M`5IBHj@y^Rv3}uIyE3H;oV$=ZNT#x_N??QN)l-nw3dsrvevm9_((O
z=uw{ZM_sw291Fu+WvRCyUIAZ=a~~O-I}aF-8L0CerCZeGj?ynMKX+!iGYg|g++JCR
zj6e=Y`fC-sbm2!buMA>PwCszQ?E||+sCT9KCTfp6bq9(q{O)5N$Qoj^XsI{=|Efgk
zt_St|zZX25ZzZtxNBIWzg`c1SG_T?#t=zKvW{Le1RDgM)O~svJ2oiw;H5y40uh>N#
z<hNV2{S!lY(zWg>XR3%WAG1)3S$C-7LKNOJfM@)Mm--3_{u{W~i&9CG8sP-%=N_XL
zYrL@c(={I0xZXc21(N_yUla0O--?#|RsY3^)=-d*fKwwGge3p19}~(usIj9m$5*i;
z*P)gakpV2Ch(`E9W;>?UT<1%;?$6x+z^6;0{sH~i<y&aYHjr#cgQf6+)Dt62mVm{3
z_3N&zq`9X3__{xH1TGo~U<uD9G(MiIAH9_QI3D9X(h_bgYK?_iQrvqLn#ak!GZdCt
zrH7!^=2bqnjqVz>bTiu(evI3>zI)92ptjcdHlxZ$MhaU?--B4bI*4hzmK)?96D#yt
z(`5J4UT);QZsZRnl4~YDoG%`AC6A4&W)IZ1;+_o8J?8#2*W}v9;qdG=nfuLfck5rK
zlWu4YU(1~vAZ4-*Xa~}?$T8@6xjPp(@QF}(1zF5rAqxuPb9=%B>-ex}V<-Oj3;O9L
zo&1HM#BUdTXfQ<rg`$7VO}0E0$Ze<4^U{BEl|Ls`C+Tx&R(fi859r17UGl1k9(}Zk
zlV>lmI#a1@7GC>PU%_2K5MY+z^A<?G*x&L*`r1kV`z4&cflQ;kYTPpDuu3t5+3+Rq
zwB&jCh$%;^4@asTvB{Qc)E_=;9H<gdpPexH^u*n_?=@?@QXekRf8J&sCIx<YA?}T)
zeylW*t^C4Ww6DiuC_(H^nkH@f(S)w#5KeN*Uh<&c?1T5Kf%&0kRfV)_&2o`IzW(u*
zK2>u_;ESq0INPX+fs)LB$_jd8G+lAmWT=OzI#-f<^f@y9hDJiafZoF7_A-uUpc{gF
zUjlI|H+U;jJ;B@4`&Kr>RaB~ozRWI1@Vu<ac4h^dg!_oq_Lz{+<-zgp77tjQ%pDbI
zP8}g+X3h@y*>rGrqOks2G}zXJvj&{$)ZRuiGL?ZAAM861*53|da;~a52c&vA`r3Nb
zjQT;{M^YEgnw^V$ty!)nqO)q}vHWR4&uY05wNn<e0X3~LeAH((C7kHm0}Xsyub(6n
zSxR$5RmHC9S+aj7@q9KDI8#qPxAJqL^0}8aR49<u@4oG|h0U@tL8&)1!gd@C&6wrb
zXdk04wB~k3A%2kEZuP5Mn)A11=Ysp9&I>M7BdD&eJs+&2?Y>IDpoQUQyV@c9ov)vL
zuSrRgqDVAw=`bv*k7Pj~h|~0i?%k8I2RPE25n|e<1TT;Ib&nr@o^OiYwOrksvDJo{
zz=dlOPZ-BP9Amnhq}o!O1L9fE`cvnawG7u{93(Hr%~~*3#**L>*`L4sSqsJmM)a(A
zDVz;d_X)JE2{Z#8Y!0E7JWqd#!fd_wcO}}VUkz#w#5d)|7=MZF8(~qt63R0asws@}
z^^|I47_XEH$9o7-zRVd4msk$d_&w!c*nZxs^-=HtsgwPKk^ED3vhbk#_<=Bx{xaUY
z!g%~;(Y=>nQ$6D{9_;3(|G+I>x)*T%10$T=&`%8%2sC`i$@E^@l6<d<;WxgDJSU&+
zYnay|b#5u}jA&y3z1nyNCttelz1^-*Xg$O(9WR(t_~z~<nlH=U$8iEmq(^!*EVHGp
zqpOFve^A)}&2n>%O*ghZdCy!&DK;{#EyORbDF_h%c{ytF2#z>7?((6ze~rtRWOktX
zc-$Rn&}Iiu;ml6vwv^&t3R{RFA15t@>`Fu3m8P}?n(OMe$O%aY`c`(zHYg=4d9ffk
zAy}o(1NnJPx2|Z;%l;CEPtBNaX2>q@i6r~5-?Ua;AuK+N`?<9sYintXj^2{#MWG+P
z0WgvboUX07g}bNmPF!%@jcSuXtSld|7QVtX{`cM^-C>SfXRiHY1*`f*jSr;{|2v{9
z_l4#uWm{z*>awq!l_rKV(r&G*o-V8XtDcmaNq-xC0D1pU{D><sKN~W8Rj@_>J%!8t
z3D14izD0o-QTsV%c6HF267$un0S)Z>_#M9V_^VIfPRy8I=ws#c_d+3wH{Y-TtyP1C
zIB_1kxp}Sp4V>6PY2pAo=g+nA3WJ*pSG9j_jX88hsu2vIiFQ0`regf0B~YXrjXWj~
z<=Wb<Nlm=h)1KW$%i%xr71GUbrv#hFIU4e<EUHn?ZAS+%z~$ZVj|l8^YETkD`Riqz
z!cb=f#e|v1CN63s7K%JA-&*2M%iLSy6Y(Z`qhkbH$;sAB{#1`!HF-%Yg){WRN?tJv
zHId=p-PQ_T31mi9*3Vw*?HdqUU`n=$Cdo2~F$`Rp%IUpS?R;*C@eBIDv0e`^G~Wd%
zIsCcWeYAswc&(Y!XU&X~Xt}mpvY3b#AswP>>%}C1=_NqY)vZUMhL*~A%b0C5+3p5o
z^r1Ris|=eZRUm1x>O~Qr%3v1@_Q3}xC`WF>Ox$DvQ@exhrdQgMi>GhTbYNN2vmbK}
z%`d_HJL0o`!$>NA)@vYk$DVWxotF`B2+Fj{cMyI4h|$1%l+3w%b~4iBGgzJ+gnj(o
z6mNprEJvq@g5M1g9ff!tu|-8KQ*(fH=LqW=IPIR(#R*n0;*N16o$N__S1#MEc#zxQ
z*x{XNiti8541o?9krG%3zq$xW-Z>Fk`d<2a;nTY=hYY6VK(|Me0P_PGCde~?U-yBb
zcJ;se?eqH5>o5N6PH3~Q?RtXOhCt3k-vmU@7x0QSAo`zOd*{0bj5dC1;tMG-Y(q;l
zyt@DVQlwFIx#xE+>v70VPdJ64xtDb;So2=Ys1aj~8d#N6pX2##)|k>4<u8Jd6FsHI
zV#S*sA}L4^*Ir_Ko-g%uF)3Cz`;4z;aYrn1dx!KW=n2*?vJ3gCd%L+`=-Cd9-EBv<
zdhh^%aMk54BIJE3G%#1k-UTL_6CtV2CE_x`!G*U@v^;L2SE@}62junC%?1nSqb97V
zNldS`<PU($%t_bo;!6o^8`+$vZb~lQi9~+ryG&K_qw>?f5k@&GGU3)8xI_yDQAqaB
zB$WTiilD^X6Cu9>Ewr>Hag~GN*M2>#KwsnTS>ja0$vYDngvg+y%q9t*LgD{*Oqy81
zR&fJA->Q%T^)V8wAfAY%Z#4%mfuKZVsRoXp<9SI=g4U;dKkujBP$*n2i%@Y*B3vc{
z`m0PNS^g^-tt-`!3JXXP*Y(<n?CfVfXo3Hm0sxrQK($K}g~9OD!#+UxqdLj#0j=Es
zHp1|`>n1F_wfss;9oLhtRI%U?AJo{00j|vAIz7r+40WUSfg!8m4gQ3sD~5ZNz00E!
zu{s8y-xEwV{<U6Zi}OU2*7-{w?x)usaA59}jAZ-vl2zoA1WvV&Hro02CU_8^<em;r
ziwcuGoo6W;SSZIAda&ntv1)Nt#&?{(Nmp2oe<~f}OohlfgT@L~o<&uulx?|7>fE$`
z<}Dp8iH{({F%hh6odhOXXC91z&try-$pj{NG8c(#bq*ED^-m5&c-}sdb|xA0JUJ0*
zc?n#ZlLC$!34Hi<6O7Uf2Dy-h!Kabh>Q$qH<i!eJBu!Ahlm?QEVEg`r0-hypRMO+J
z@l(`p754)&F7<+`)f{`mmI@h1pjYc!MKn>L1lLGPZR!0y(rd+Y)@F7|al86a@3dLf
z24wmY*!+Q(B1*z#3<L5EEs>3aO$=Dt5J)q#z2&I((D^FC?&&d4b9Xe8Qkk?_XwAEB
zi)oZ*8O5@U>s7VurHTM@BNxw>;LW5C*H8CknN_#co^<RsByk2a(u1IFj<^=Q_^vpl
z9rMhRvw2@m>X$$4jcB3r4YFWJiUh@l)=P645AId4=XdO5T?9g}2D{&~0ct!hg=9XL
zmcTmcHI!2;gUrap(RDZZPC~(WspMG`Zg;O8f9`+NlJKD5@t8i17eC4ruNv)-?`ZD3
z2i1q74`iuC4CV9_lzN^1cbmCdj!OG_CEw}oB86diEeyV>7{!Vu11e;`WT`!|Wgw9#
zS8Ras0IqYQmK7;+1L9|t#N~7sx4et{2%NVWzd^*|&0c+i9{UpR*;znvXHyyWV!CK)
zCgb(K;c1&664APF7*tE!+#@;FPPSV*Hh)On@my$PW2R~#0QOEJAh~JF`p;*r1lIP%
zk$G!Hxx8Qp&8Vx}A?rFTr#&GvmgU6#{4)(xf?^YBDw7@nDGp<^QdX_z-`%jn^0~cm
zIgmyzCY|%SH}>N^P^)CIZj!7$U8QhP?xwV5c5*cRaygjM7D#4mh<`E9o5&#7l89+p
zeA4<^t$9U<zU}%&`@?e~_0}7qJH~hBoQKB=UAZiRkmyAyZX&Jy?Gc47dr^ZgF6!~K
z-Q6vBolnH&-%nqMev7K+$BcRyb${CZ7Td4$`A50N^X<^@HqC!y{(RPW`FHpGb%^dF
zSopBzr^R0KX_pn!Q?sA{TSOZF$r5{o=AdlY{tX}9mF63rLptB~Zzk)0#R+%Ow8F|5
zDTJvz8<d&`JrHky6R;Y(0G-o8G8tZG?-bK|d*$2D3dn*MLjZut3X5j<ZP#-BYlyt3
zhhRt{uQ5&l2zB76O9BDv_%a1V+IyJDPJ|kBCo)F3B4U7ajCDnq)M0&613?dVwK(Mc
z)3CIMbf@#4%(Fn=o2I)zn*w+IDh5ciVGOYkbvLp+byxV=B9jfkBy6!RoY@K`5FopM
zJMdVXYwz8%CJMIcMMR!qVQ&!6gUJXpq;!d9a@CN3h)Ly0Fl_x1xh}++hf3VQCML1C
z7g`&`L0ewbV^OKtgZocWNW$V)4I|@T0Ok441vVVsLLdA?r*7rh_y4{pzg)`Wu9a}j
zi%AIz#*{vVBK1+QiEv4nVV=O+%xZ<ChrGJ$gt6!wkR)Lm-Q4lzZ&_dGi9I8FE{61_
z3Ql5j&tZR4fsDKTGmkO0ZeATdyg6wu&><j>1vby0Kg?W&7myL!pAHwwA@}n;u=nVU
z0yI#M^X(kdW8$cQ?!*F~rq(Dd(FtsTjAbXO64A8F8=l-ez3{-^ZO(Ksjk0R`n#q>U
z0s}nu(`Oq8fpsZsf<)q1cb`rZ%;5)=V~!%G&&l0LKvM*jmD_$I%rQQn#LUBW%q>=0
zftXtoT=o*u=0grK?62A(QKk%gg*OvE=<b*MU!wSQ5>f>y!hHbteQHB5fytc4>XF1L
zl=$C?`INIhT=)G#FNF?GeuGJ3Up7OA^>Y<lh+#R!!@v@eB%ZH!Of^d)WAju~#BUZ)
zO5n2P<#Um}z`;_=f%L0Q${;Uuavh~t*J7F9HBU(2N7Zaab$tBrxd0urg%(qwAsQ)Z
zUS604f*#(ClR|+ovoXyYb7B@C1RDC{7et__M$jyXx&p=kJ{Q^9lFDbbCcF!2AP=z4
z&b$~i<TMk6z~s@zZ-5WqOFp>)k;=Wj*DHCSz*Jn$OY>$#lz=f{86gm3C+&tFg(;5)
zYDo?tvM}!moRzq97F>h2rl<vSEZ$95oF=02Uy&)c(p!_pF<*IA`@C#ctl9l+`0h(*
zfAQH7@Gc$cqgH;vq(f+~oF^DD8q!Vz(HKXm#eyEW<2K3&ZPc5R{(T75-riX%fsmw>
zFdW}|YUvp*tz#5pt`YaG$*CzbS$;36pTsro$6dBcN2jdTfb^wAXvpa=ym{j)DXDI4
zZv~4z&!yrNBaFO-R{gyF{ex=J*%i>4e#l`m{4fJaHlvmjwWhi7w8@z4HO*3r&1&kD
zMc?^)ieSbqv4dstKpMQ0fNT^p70VOsxG$+kfd<kngziohLh_jn7;XE`v(k(%QMmYs
z$etQXDS)K-8tpTNAJ?L%*8*FBupcAbbpSH21YPKjfb-u*J-CQlXFhYAqs1jGbnWVL
zz%^r0;ig{F-S=+=vf&}T*P%=AOH;4Ma0+H*In9Z0>?aCih}aOYkTsuj!2pS!=*Bht
zSZrN}H9u-x;zYh$B#$T|$8cMumQqNgAI^ig^rQ$RsUHt1Ctms@0{X!x!s$Z2NcZ)O
zT;jcpxz~`JdF&Ss_aC4u84ORDE&YstVWgCzQwwU5$&P*Jw-~~Ah=Q(tSI}Y!Eh%aL
zNU33kk!v?42$Ggf#%IY%7_EouVm^eHf!p4%!?B*ZDOgnGkdN_cbt=)dk?7DelvNmz
z&mL6Cx3%&yw^g-2VPm-nwXq<Ese41LILSP757bcF-w@G9it{CoC(#o>!{^P!2kzfy
z&bJ=#z58uUv55$0uIEF0#b<8{lj|GgvJow`GH~VnxK%m}rA~-=uMs2pYN3*EyA{_k
zAo!41$`WZ~aovR_-FNI(xe>jculLiym{WN#GQpDf{2SlUaTVLU6BOw!_jPQcOpuFA
zx+?1lOCM{Q8RubAt{JKG81l3&@#%P$$GG7p`8A!FJT}k#%<RSr4~U~Gs7+?4PdTJV
zzCmaZB`k0KTh;n;9lPwMRsYp@+(+pWU3np_;Aqz=8Q2OhCcmD<@rt+c-$hfmYj&DB
zx0;@3u>K#C&O09JKYrjhId`11&gSgR8OaXWd#{YMN6MB&opbicN=i5*BjRKvg|qjj
zC>5e8BxF_J`}zHT|9}2`f8LMJ=k<8Lo=?rWzz2bB1b4aF+zE67FpgD0%ks!<I)kD;
zW|N=fYCEcoqchW<SAOn((-zb`&aEUfk(XaFnK1R=9Oq0%qw>x>!i}Z9_x&b_NaI3X
z`@(4Bk&wVb=MDSF-w*Aq*`^wMV*(|u9$5+`zY~dhmh^^?$}T-r626FzdC(ao)ndWk
z!v*~IWK5e$_T;%tOqwIh%Ja2-))BvoBZh~u7nXk}853Reb<k6UaK_T(z3qyd4Ub$!
zP|L}joMNrATro1Dp-YeGESqmT-><{N-#Fo)F7I|WMsz$9!ElOf?0wwb+o|3=PzX6J
zo&T=ZB!a~w%pSay2Q*sy9|iq94iAaa4mnW(v$$^5W<lWl(x(+6=g*qrMI>K84+(~q
zwFm%GyF>oH|M}0Q?_~Ywe+MDd^N?5DKdJD2081z^-{sHuVxZJMNHG+AMGmAM3NhV>
z*oH<zLZRNFG}rfOB19p!wBzQ52Xjxp(ToGF_+XiH)bX%=cuOdv|6y+wWhnvR^33BE
z$t~V<wTTB0OVtL=?lZg&MInBn=8=$x6z&{6oeIrY1-DmAd`MG|A2X9&8oxwYd6~S!
z(AUHM;|fb=)s?wP5LtId(vGt})b+U;##P^p=3Zfa1VjKf7~Ye>3l7L2Vk|2_+0WY4
z%F~oA#ALR%I12%-Oaf<q{dnfj%2*^|xW>;tB7o?J`w=+H68XM4q5Z58-8dev1Fky<
zV(OvXe^PUm1Qm5Fn6UVJr3V>Cf+Bkur`rKi4kHkyUg7lovx$`N#)1g?V9AhP$*T#5
zyn=fwrt;`?NkzEKbsfaYfla{yf9cOFkXou_MS`?)B@=Aj+h;^!N{}P*;BunkX}W@t
zFjzx$Ksovglf?(15{0P+qFIR7T(69k2I%E&>p4{DqfNxSNz?-IXTQHfFaXFAGB=Z=
z_OeCG(Nwjx@<xY^`8rzn^`X|whjf?ATZ#@nM!pCm3N-mMokbyrpn=PR87lB<%RCR2
z`XiHw5bk<BloFXG(AN;B&qa3Q@|kxyzsgo%+BpYzYqvqn5QAMow@!6=7Wgf$UbpLe
z@71mim;4<7YXe_eTY{9EM<_8olvLZ;T(fWUiN0i-@!QETgxj*>N*X0R^}^%iH&Qxy
z9UW|$FA?#0iZ<98h>ftmJc`c#PG#z#IHgIU1Oa!xzxQBIa4Wm&Zm4(N?|0E%rTD3Y
z!1dk8yeQvm(ciNb9qeEP=Di|uAPXwdi#Ew9XFH|aFl6Mq_5GlCFM9ni_d3J2u%7~c
zcPPv20fYRZ{_J+%O*(bwbUOdG7FJ)}|L@S3`y`D2x?h>)Z378eo<v`w0h3vs>z%Ej
z^=u2$B&LdM&kP*-XD}M&`Sokv{g}&ct}lO=&=^KSLex2A`}H5Y4_1@{NzWw0Kb*uP
z>cX#WKGYb?WCcD|sI@G6#uPc0;{(cIO^B~$a#T*Pg5Z?)C97AA6Io(%I8K$7Bt@;l
zmv<OnnvDnt(A~{AP4%b_FS}1ocd9q2WssXR#Xmd_5=4p-5#N;t(oeElpOyDG)MO3E
zd>k>3g}-z_Fi=>f=k*Y|rqC^O1fFdvFaI?E>e<Mn)4R8<2li}kj@Srs!Vov|VpRZ>
z6->e(cUbgiS?zP(f3kpyj2T|4-1d0^cD;jeo9rIu*H7{a^Iyr7oDG=-Z)oSRn&k*3
zowW@O@Z5OLYrW$fu$x$qVkm1E?YvcBdS0deB(1E2_3;e~2YX0e+RB(i<bO4Fjn(0=
z*jz^+i0Ccoh54KApaUo0YWSk%E7`-+-UbP<*D1cMyISaeL&DN`aCNUea(UrG0O6T>
z(|HnT_dMZ+ZETDBpFX!x>T4^;!Zas|C-}m0HNrM~n^0LJLlf4uh|lxSS{hl5M~-c}
z_mz6?b@HE<*MD9=d_vn|TlFYGAn=yQ3B1cAx2W$<&!0Q}26uM;K7PLTc;e<s6MY<6
z|FB0fuK$NWW!R!4kUNJF(9)GXaKE_!`rjdb$$^N!!-;VtO$oypaihg=`t$#e*8d$-
zzcbeIcf9{i>g%|P`MAma-xC*FhiTncw5F54{z?>KH=piLe~6pq?yBu2)6bK|Q{_?9
z?3^cK$P@A%^?$S1{w;D};}&XWwhd(9=c5z9xugB>*{fS@*ZbJK<KNe7#y>h`uOx7M
zUS9e$mYf0NYWnx_i>8{h8kOgBiLemAF!(8Qy;;O^Lg;gX5bX;Q`fvfTmcm^)jcoXr
zGVuE4Zk`a($8Wz71Shc;(s-}}SLoeO8UJmWraaAmAp~lXyAH&vYfCv+#8M92$m`Nm
z;WCO5I2!_9mLhwipfF9qf*s{E(!O8uQuuIJQ62SNPUGWnH;c2PjMpJ%=;9{3vVD#E
zTgaC^zvYgPk{a!@&U~0|PlV>DFTZA549B&!9EDAlboKuz=0seD!<2MrF{dqudUCC*
zr8!sUs}MveDpN1}YUP41Jq<m_R_KLx5W2Zq;6;zFc~E{1y~j^Bj#(q;^ouz-%qD0S
zqz*%lZ)?1;Z|9a}q#{^(gr$`<^vvvBeS#z7h?xaXsv26~3`{JnZ0sEUg)p%3ipX5j
z)YmMj^SlxDoKxJone-dytZHR)tyVXO`DoJWAYjyf4o?S+u=?}fsFADQ>U%&rm&&Oo
zYg)YvUI3WP^p^1JG#pP#E@ut|vWhizPqo*+-(57|kwW<FHQA8TIIy305}05FoMbWs
zuNINRdR;G_O~!qo$oh*xHZNym>~BeQCRzqZLFMYDrLy4c#91~f67yJux?x1;P5vVP
zJLKLO(grvKFXMMJ5tyu(p`-9XLlI4bBrxBgSLMaFZp{Lv-M(rJSk72r#c+|UY^ih<
zIltLhA~)4>&$TmZ_tRjp<4^bQ_=|?ovZTW}(5s%L^61p3Ly}9c%Bgp~fw>Y#D!=Zq
z`DhFXN<@+mIWKI*dz2VF)1ti3sG&ZJ4MHp5s9i5)NyBjDbXg>oP0qnbg??EMX7of)
z9-6toKI|#n^VRV@^84a*kKt0cKhb;9K-y$`LZ~#GhfM)4$35N!D()0el#?>}3MfrM
zb~Gp++HyRB-mC>>vpL{_+InVxKuEdwcjUThzg`<n(peSv%=}e=Lus9DacgUX80^+H
ze!oTByfU$Lt_x&9T@`rN7lY8#N4xDb8gPdU$Q$zB+GsZ9mp_vw_g2gr64_{g<wbHX
zRMIpN5&!DG%71^Q$Z%%u8EtS`4#*p_loy#h`mx;%+XkEiASOgq-zb<WWMvXxu^@~S
z>sPGktETu*Hd-vNP$5cII<(J)M{<%IDu_Z+%W|EpR;Pjt=PG!nHgWS6X_6#u0Dwk;
zaUwVYjf+*Xi6}U&CayOoeBoNq;wCNJvDjR&)tSRdb;g@5FzQ2)Ho6$3M{5KUr(Su9
z)C!WoEnjf6N-lvlPupFtHw_-k?L$~B>EkT|1i%n9nUthiF>_In&M9vLpq<F82}nB*
z`x;uTiYepd`TT-5#09qo`K4P#Q^zKa!-3dbt>`YwOq-}jEbH@lXp$P$N6eZ-*s5<W
z%Ch3;XFRQJQFZ9B%*nhqas<rDaF9BdaOd!Mnhlev6OO<f?53~+H&Pk%dlL2a4C{VJ
zJr*#qKhYjoQ<kh2R9EwL#45M*pYH5+_&y~mABjvY&bJ7~LmSciyAX&SIj#CL2RCLO
zcUcpV#Hex#AeLmX4e-*~sTf1c;3#gI7nA>afk2+2K!}5)!#bYLWi@Gk0D0xv-s{6p
z>ZHaVt->7nyNR>XgR5FBp&LfFUZ8xOczMDdyL;JDQhCZ5+aIE8I&XcxN2?XHmiY2L
zn?9N(A5Ieq1t)9>sFpijYxguk_}8o8ZtK3dTm^7z@&5$h_N4v+oms<ilnk9lM)7|-
zDhSAb*bV;fyMKNTU%B`1rIb54n|{XpEyfoHQH9{iHo9~)9am_SXA&5RIEc{F6$eTZ
zx6sT5%#j1CN0DP0U*TvjFX_+~&Je})JmL0BLhwG2EaNE!W`cjZPbUaI353!68uhas
z&!k*|c%hPva?!}yR6{*4<_8@EZ0OuHOQIL+Qx$#5|3=g72fWa29s07-zXTnRyf_9`
z3=|4yGZO({I2St%l-p;s%rDZ~67oPU9U$bE9Vdqxp7K_ck@Zd{4D(sVNEbbqV<3Go
z5+NHg#ZaP?jrs@4Vj!lS%v<(Gz43y#)6ER3@>8e~UvYg^lfP`uP>Bv9I<3}JXwGV`
zT&GX!-u#&3-SvFNSHAjaV-xq|xraT%UOb)x)sjR~Kwge5CVV-^SE1?=b6|pSf~t9t
z!~Eky>?WC&#Q1gl8NhO1NE+G;pdC@btok^R$IcpPwK42ajIQ8F;FKJB$M&7JHs9`<
zbX0ak$@q$x?zseP@1t<snjQ?Gxep1M>j!?XujzIWoxSd`P{FS0t=t7o6?aO$nl$gG
zz?(zJZ^eOLLL@BD4^{I;Efj>e@jhO4#N5K8Dpggyd{=Uk<QqSra1s!qlB`+Mhp(~q
zlDHORl2^?9Ak5(Rs9zqOX0T)cD%deZWuoL%UG>37vg_((MAInL>_wWY#(%e#?{sKy
zzm#767m&<)xitH(fU`g40cIl-fG)rRp`mVFR!KBwy;Bdw^a;#Gs}OOc@?_7|dJo{W
zyeF;#h-+KA#Q#%#07A8z8_*r3ZvTQ+vV@Ve^7;8YibG*dk;rq;A9$B33>bpMIC@;8
ztpqjzQhwF<^B#~zSgTecje2+*JN^83*@cXglMUCNs=IwZo+;>gW#v|%BmG#^++x7W
z{BCDPh5v>g*8<sK<H#Deul!Zvv?x)z19(3KOVbVBAJiE$ts=DDx{Q4la`(*Jor86U
zyWhl+%?U%0#Om;-VvR5;YGUVgh!Zy&=@xYXg(E*q7YL3dLX>6*9nsPf(Y$W~RU0y_
ziyNZr_F<m!d0Eo|B2Eufi5ZumEKPB1B2uc&51zgIBKcS4rhcWo`FrKdd>#P+gFU)q
z5bOcnqq?gZx&tm3^P%IY!BGRz7tEO}o(d0_C#>cJ62Y}@BB7Uu1THaUzq})HaB%%*
z8QtW~AUYb=mz<*Aw?CL@sn9C|&m(Q;7W~gM%dX@jc~ZL%O-9%&0nhLu73wZwP|vLa
zZ1OxsHKJBuGf3y@vI*Fyg<QDi#<D!D5a}TCKzpOyoVRZ=T7)guU;y9B8p`XAnr)mH
zyzIld^)>>T+i0j1OjT!B*G<Cc+#bp?>^eBcS`1aaFlLpyQByNsMRTiT@HwxolqY2I
zk9Lkn!8#iYoxX)6GSks)hw4OU>S6<VbJ*)Gosz)qMqqdX(fMh<t=|2Y57Ns(q!0Q=
zle{EL<Sj}DrQUk_8HYOUxYQk%eXVAt!fXE#4niB<!lhq8NO|hu=I<<3Zp*+A8LKCS
z=YD%uQ_dXh4t~*8$f*65NE2FlkrT4(y=jkgN_eQ?nkw)5c>N`_T4iu{PROn5?=#<H
z-nMoBwkXPjuoU5;UY!I@qnl7hBUxirVa2#8e1-HK{5THXaBJ|oJHh_f#0uY{-#hLe
z0Lu~`EE#sImul*M^lWEz#8(!>FYSr=Lf<jacB(1<WG}hr&bnBcf|2^2%PbkM2knA<
z^$Uc-SH6tRLj`UZ$ba%FzST7w`LfkqEbGV1;rKm7*vEke3Y`ZIU}d_BFn-)PuP4YG
zKi}Ri!p*;6xcBPoe)Z)Q4$uv6@9uAJXuxE;^N@rO%<tMi$8WLl+K>AeAM0E`dX)fE
z%DB#R7{_#=-?1m${Q4L(&~x_!ZR~$_O>?DL^P><2^rlNm5b|vl0&O5}sb(1~LTFea
zhi4#&GyYj6ML&n4JwnkJ7gxk5&|W7#lOiIeQ$s7t)-OOspI-EUCZs9@3<5*HLp&-G
z-k1bdYG^O-MlW9`f}<(}HHSeGRE^0xuVV0QTYx-f9sbBZF=AgbK(}+IoO2F8{DR2c
zi2!fmSvUydkbW#{zhzOMyi&iS-c_7rzmiYCa%8`<OaJA9e$}e0(&_zb1N|Bc{g}>v
z&7=M+kO7+S{U)fY0i9Z&av?(;010>;)tRbCKVVd#cS*7W=_JgI0-}oQ44taY*I6tZ
zt}JZ>SU4!jfI(xuLA#X-K{bND0x<vdxv`U|3nA4l2y*QW#N~*RKuQ)og19Py9c>0Z
zg@+`(1`!E~PxFcX>8SzX5dS!s`o8{!Y00Z~=z3L!HzW}XPQ()$Vr(+*jirT9V+oPp
z=?&kcMaPPTYCzO*Wgsi@<ny781jC4&;hR<BeOJZqsts!hbomDYVk5;<D?mq_wXt5q
z_|#$Wes#Q0A%4R!rf(>%YGiHJ;Lu4nSX{Er1*H9D<f($h#gbuR@iWOH{6hu!qoCn0
z`;XB8bW@+~>Y-5?-gvMB)v8dhXC&e8R96T|?ch!TjWYX7;Kez({psq#9QC$m$&A>v
zCdD+U7yeNL;qjX%aGp_rd6Rx;blt&dI%J%zr|7B6I{2)6hVWbx1ro#(7Sg5PR!E0n
z8q^e@FPl6cj3tO$W%IP8UtVQUBZD<YhTEhGLRNGX*2XwJ({E~!H&n@nPCe-dGXU9`
zY!(&ZTqxs|4G%gseO*nq)wVI*C;_}L$)<u=0zmqL$NTAJdsmo;2l6NM@RLf(b862Q
zn8#NZCIdVNookc+w_2Ey;%Svfby0mFNG3d@{cSVkzosvOD}hN7apGmay$XDp$a+OD
z|Ee@O8<);nwJ_U0HvI4^1O^vXnXW9i2q90Yo`Lq2#+g6JZAp_qwod;!VsQ{oduN<h
zdj7(R2hcDhFRE@)dQmEW(LCj(q#K$MGXJ8UoKO3lLbW6AYFI%`5;v?hr6d@uJj+5>
zi$cV~Oj&8Lwl200RwAj&|8-dXjhtm)%+2u0wiKH7j>-H$RY}*+f7w^TtbxFsx*BgR
znciZ7d<bAbBfwnxyjPc|_%1!zNN9H0X5fYBsA8;{+pOQ#YK3tjSkmS)1yr;Mv+^SI
z-#d&BC?jrPF42cEGTcU;t0-TQvN}H0$mGm%F@<p6MzV8)Ka8Si6HtQ9CAe$t@J;JO
zZ&vZAJy9LWtiF~~_F(3J^9;+iI!^KhGeX#1bq$$$i{Ex#D)aJy!b}ACQXR-kLFMmz
z>%yxG%DpcQXISz#*leF>dgiL!d#z#+V57(OYQq>Pxm$;{=SuxUW5jEHiL?mBRDWDA
zVf$mB`NL}b&qCl+hfbAwCyGJ|0&V7k$t^B0ab9$yD)v0QPV~6l>>1dJ&0#apc_;Ir
zv)GB~cB4m(0qg@v1&{Yg%A|P9Bu4#q2zk}|3k1I7Yk8jI;5*w>FVq|4yOex^q_Ej*
zS!qmh1MVjjjkl-|v^;FD6c1#3MB#pO74`VZGN*#P=7M5#<Qd0hb!Sqp(^9cPdnKpZ
z@7H?vqU>b+6YB)FRHUJdn)k<d>Cp5Pf%;Na&4*7Vy2giDDb6LE%Tx8vRgb!=$~9Bk
z-q&XluMfU`e#S#Z6pu?3x9IeIMJUxi<$nFBdrB38An~%2dH*ExE^lY{_3}K6<^78&
zY!tb2HME;cbIF|n0v3O=_6JlZLrW5|9_K73Q`<iL$^Y;{wN(<eGJtVyiR$@Cr~MJA
z-LSbbrBBpZAbbOsov04zhf?H<O7*n)Q`adEX8Cj}lsPu&QLdXlhuhK($onWF>rN8e
z(aLA&CoI4X3@7Przg^Y;wDG)lEea;UQyyq{Q4?|3^>R<C)#ZEqX=m}1)w55#zd!x_
z*trM&{7b|ml;!h*{^z4j@}d3b<EYPVUY}1Md_J?k`oc#I<+NmUfvjpk)cY!LzNw@R
zLN2x=bqnC~BCF^1ZpQl_D7?Ex5&rXh24pB15Pfm4uF_5c0>>b5<s=$W7F0F_T>Y6@
z^r~k#-qdbQ-vs0{^4XA_$jmWlGeBcPeNlC@)sxGQXiJ3oWwM#aTIjE?nXBM=KIvKJ
z%)MD%6KoV_@m%MAYYcls6p&34i}n)AhVUz|$qb2ldf`z3?-mRYi%dX&RWKi+G5!wN
zG8aA9SpUK_bio`sXMVu~h6uIZRsr5NMqY1b2C++DH21hA+KE>hiRu<a?YEw~GhVXM
z8x3t92G;ll%`Zr;YUYHN%iS5OG&9<@20z?3EVjOUxAHN+%g}M^W7eo_?oe%Ucf;`}
z1Z$FLe0SQ!U^q1vSIkBP;YYN^H{JF&akopiFvFf&Bax9c5w5FXBcoLoLu^qEzgA6n
zTwzkMQP5qZSPehok&w=(O;zeljbEdf0_SET^S3E0L*F4^TnwHa?H92_p91m8w<X%X
z1;vjIUlsR@C@@-$HN0LrY>(bb8><Ys>EmRuHJ#;?Tj_h^f)B#+v{Q_0-_tU{#uzxp
zikHS%aAh6_saX~XB&Mv^DPelaxKwKNt<GrC+*+Mk=6%SsoC&&%5CBG<j<tELxp%Di
z?b!JCSgDWXqquF$Uw-$z6Ux-+%9+3Cua2CwNH%ya07mH_`hAyC9nJIFzFQQKt(098
zZk)@zEh!#YT<!0H+-wX0FRH$deQ&g-8CZ2b=8iMYiy3Wl2}*a*e&P3{^*!@rchN+%
zEs7SzIXNNuQ<i>^ST*&=)?j9%Zjl+NyklJ26+JUCLSnjKx-<55VueHqcB(0yBfPSc
z7^#wJ@saKt=#%9n^hJ&@K9=r{9e+1Pw-j9ZmZ$N6=>|5({QU;w+>rUA(!?8OU-qSj
zsdMQz*WJa)rVnG!H%+`yp%;UMz1P8nH<1nBI;DqN3Eh9eSILP}$qCbYwC|OFm^J#Z
zHwGv7-kc5EVV>BH|Ft{vWv{1ox7TcM)nM+x9lT{zwscbli;-|Z2OEk8_wxaKNIj`+
zsyo5cIwLc&Nlc<B%gcNLCj?qLM|)K=7^#i!|1`CsCl?#AAI(F%PA^xq-vnlKL<LW=
zfo<roD4_0_F;k~Qtje3XZt!spJC?*?C8AO^uT5|MrNc2<_~ce=j?*%v0Fmr4#&_4(
z8vQvq6G`6tUyoAy@_rGWV8^Wor-HPCiy^jk;VieB{w%Ek4I{APp(fFKJ%|>u2;bPn
z8)DaHxl#`Lo*p87fu5-nysiMcu<7`~*#=A*$Z19oH6wBrUBoe?UuL_iZp{+5pmty3
zH}kwC1&*a<d&;4NrNAW-#Jbva!GUzhrO3vZL;347`b&pMPv8~WBlo&}_0N%qTQhd|
z54HWRB@!RlJ0f_eBH@e?)W2|%JMuj1AC=g5E;af3_cDl>6KU_YnJuzSTqNkq3G(fr
zCS3p>RmJ_bKANA6;d;alx2BD+OyT&9wNvpozu$9za^|q{mJzq!RSb1l7&0u9ZoR{7
zL=|OylebwJQDjS@4JZSD!z1-(j#*ZtL+(YYr<~4h9g+07=A7qr0k@`et_%2<Y9dd)
znvZ|A#*7)AxH=vK{i9Rb>nkw}H?DoS7u=#hSQK<G{BO=}3Aa8_XacARN{_qs`1vK5
z*RHxn3zzK)D!#3iJ@?tBf4Fom6u(<2l{(j6jQl>j01dR&e#*#{8dZnqMF11)zM;x3
zZ9Nfx*p}z7j+~YJJS(gD{qh8Zg#oogZigt^Ih4F()%k<2TOd!znq<XzPAgwBM^vRW
z=Ti;iM2yZphDN^|u@^`_a{|77fO6<f`Q!hbf_$K2{|mr;3eXxmb%|J{wQ#VD&l@+g
z7r!0j*Jj7k`xn=?k}WailJsZJ>LqZWd6|*r9M`dgWl=gK%=zcvxsyMf(usd6sjwP1
zP5bY0Q!J?SAK8WO%e$$olYg+O_HREwTXuZQinwh9O<cJ0ci_s|pyRKhd+$mzjz`3n
zDh~g996}9;aW2upVOSnkx_GdFqrtwTu{8*@O5sbaphZi<(+qrmZR5>L7ib%<P8!tM
zWgWf3-%jV|Sa-(XNS9z;6r6H-wR~=SBqQrGs`H2UGRi?W$;xU07@-nc_3P*aa#@)=
z1L((H1{hu@tKe}u50ul+hydGl7%<|6Dmh7&w%G7-lA(Xn1J!Zk>nA4m(GCUeU+L1(
zPQ+`p&cYHeudzMnJa0XUTu5o3`LO$sflpS;!u{sm?9#^WsZV?VA^GL5SbBuqyI*Fh
zZae>z>H*FnNV|7vzB<^@%b<s$odUwPxu1ZeZ92#oj_!1}45UWPs(!y=I#`216gU7H
zUtw3gxiiqmEXIMQ?~KK-jU}dn2?A2dBxnYUhy}5Bp8+xkM!bPYQV2;&w7hovoam^a
z#d>|7)rHYR<BTLWqm9l-E&UdfX!)QGqoIjuL6b|^D78_ak=#%F4P=UTB^BWr^>dDA
z^Wsr71|<<|14@Q;niliPGDil?R@$*DM8d4;=$Tj)43MT$U!N*nDvz@tx0N&L7P+!#
zzx;AAot{xzZ+GL>+SP@sH`Q+3j!P3>x<<u?#=gPHFJ8f~A%)dNMt53iA+)?q&+MK#
zw6W<hnU|ga-udwQ9^;knzh_53KJ@UH@oVEjbnRL(4nV#R?Rk$iGoKV-%#0l&++hZ?
zh8oj@39x|0VV;S0ITVl&Hqt<V&hk_#lS`im-$%<62hjELpS7V7>QyLx&Ir;=I7l)R
zK$9)DHR8=AMsym6$Y7VWb@j9o1QN$`J65m?rP|)Ij5YxRGJ;g?Dv-J4KC2MX?yb=v
zL~3RO1j`Vf8wE<WQp}5#vK}GQC0}d_a)Hq?nTl?6MBT!!&@F*frgRm7BxYo&FOlFS
zNO19Q^kNaa(}!EVe3ehF!c_#FKU#)`xNPLs2#<~y*o&r%)MtM;##G0{*M)MN>6hVm
zJNL$}H+BC94<`2^O{F!?cfT>JBN_%Qfb`hc*)20;5q%k%k*AYD`bZmE(0t*6jLHLo
z(5}k+@Zzb$*vvcY?X3YH%z-PV*9_a7WAHL;<6i3xz`^(B`0%KmV#}UZ^0mCz`>2&0
z9Yy~TVFS#TW?_S9kIXQwVL@)Ip(9Sb4O*mQEiC>!b&B?dkX@#0__%BjeZ+*qv{}TY
z@|TzLFE0N`9ENc@k##OQ(JvJ>#irjKPU|qbMb2AXVTf9=u{4ibT;F(8w)j(HzZWKg
zCjmQM>hlwBAB62*TJpL-8U5jA55ujM@aY@0Z~x9_-TD;!bMn^byHtjl)vrtc?yn~E
zXUD9k%T2|6$^LLP=EZ$Wi`$!p9@)3QK7Pn^`%3XWWb9VOeT&%bYQ~w{!!=D)u|FDn
zkau?YYO<#w7!@;9nyjt}0IWMvTS=pf%BS(O2W&Y8nfc!MX}_C2WbfCYR2lT}g5^qZ
zMlK|D9qX^lW*?4t>uR#SwUqwvX#A&^$N8^Umj9g(QVXeByQ|*e-8<($dsKG6k&Tf|
z8{<eWOahP*)+NTH4G~N=Yg})p&{WeB=p!+rtCVg*82L8alU0ZohQP35nZO%Il2uT_
zGaP$?YPRrn(Y<}l9ii+T0}!ZDDB)L>5CPqKm7$K*_Zy3WwAkQ)`Y<G)#Xhl(WA%@T
zN;YG1s0*#iI?NKHe}R4_>CnGr>;Y23BAby=4HA&W2uc%-hhSn@sh?oOg=f<|o~*+h
z`qdzs?@U>9*m4c8Tt;nVCWO!_qy;%6qMisUNNaP*pz7pwm7CdVm)2R-P~4`1g3^c_
zA6`~f0+K|6IzGvvQ+GBJ`{WHoa8Z*$)?@;TjDdm<X@q-MN7ZYY`Dug)W$u)ZFk@fX
zh^KE#UtiAhfD1n4TJdeN;>=b{?$5~?t>n|E3<Jq1D8>j#uYej3O=t0rkWNwR)tNl(
z2<I95`-S=AwxN1e3*XBp+Ij@t)X-Mj(y2HQBJpH8%<3xV`jS8IR|!T|B0lMdnI~L4
z9KeQw^U#zC-*LhBX{Gm<76s~PT{@k~GioLM-0+{6I?K9UK`Q?g%EG(9IubS(S=}Wm
zrdl;BbGu{&_+L;pUup~JdhP=8LMqz7>YD;q!MKhc8SSI?@kLq+not$IJ!ATFC@W*#
z;?{SpTHm}HM=MyCBZ!y!EY?0F$Ub9DcgFeo`E%ZqFNFamh46Q=Z)vshf>0+(xhI!0
zcgul_gAu)I{kU>HBl`xsBq@h`K`EfE2TgZ3p<<99i=IS~4<Gs2QUTrKU>+NN1{dDz
z_wrIJNWNY#f5%;JykW*mx83-8up^W9lg@N-O*!DYrR~UjHAoxJ1pF#fVEW3&`{C*@
zwcdhTcn~WOM&Th)7W`i;LHd=p?<T3<=BtvdV!1J-1P92*<$%^#4gl%GR<Q^j5C^Ij
zI=nk5<GTO{y1&#WFgL}Gnm&@g$nMN1&8RVO5m<`a(5SJWGvw<6IhooFTr+rcVKYwz
zxcP!sxT=x=h|2d@IjpB>Y!2cDN<?3r@23g9wAp$fp{!?*5c{I^PS{6k9Lfm$+kJ^d
zwMEyom^R_5n~$s-ywE2D^ml@Qyaj@*#y;BC@MMEV6zcQY+m|r9?kaek84Ko*!T^t`
z0`b0CzVJ8T_<{MahNXs0rP7lwrFQx3%VznEho|z{35}6;+^~P8XLKLz4MlqER`jIQ
zuJGjZ@Sf3w*nQ}r5-LCeCQ?FNIt40G1OQDa6(y#Uiba;fbAI4K=$Q9r(oSjY+N*#R
z@@l0Js@I0w>H_RLC=`qN39=v)K9}MH;YLL6;U^caKpg4T>d`Yt)OW!*YHzzo#R}@M
zt0q(rwRwkXC{GUIy^owaSMlCaO}Pv`1K^IGm`Xy@LcAzztGel!Uo_KykAUFET+3kY
zTX#$1_W~4g84mX8P$W}wiiI<j77u0`+YN+8rm3jY2v)2t2r?00e?GPlpy<eCCVXzZ
zg;j}hHPIfStI~c496A;zjrB3c>2+;$9*d;AxoG3nlh{3UhAw~dy!USX%a$x*1mPaO
ziu$lb=Nub&J^qI)0=y2(QHg{IM1~UO=knhkgR##8D-7=dDg}Ob-_Zeb;G$=PL;h$M
zz5Xy9Y;3jlsMhxv%2TXBc#xlr7rfM%iGtnTN9;zko2c(IZV7NU;wiyBfu}})hp8+g
za@I8WCqq1PUbi}IUFC4y1`IQ<zNh8X|EM@#D}sDo^#Z#lw@10%r4FXK@iacHLf#jd
zkn^kEb^XUBjz3zFBq(p)8;q`Us3CnEJVxyK#|*1qMDe=-=^qOE@jYj65M`%g3jgJ`
zc|t?;yJ4A^Z+^`UJByWYKG(0k`=F<M;&To5G<EgAPk#!MkFIsYtFX|D;+~jkv3rc#
zF^R)afYL4J(AdOF_ujvYmzlYB@0&MNJcf}7klK&CS(CuMgbZaj_p<_-RpRqsdOGKT
zJcj7FDJ<?3C=1F>j>AnKVth~t6~+^MtxRNbGC9JapN<eo62sLwU`Etk7c%v>XiQ?e
zKkXO8=xRekrmrp+7WBk`nCnkG`z;WhKxlEigA}^w8w$!;g)aM;6k+bg;EDSCz%v_w
zWP42hn&<FvobxF}cm|}_ZXrpEk&33#jE---MRci64&F)*%QcqlCuY8k(-#+ZMA_OH
zC0UYEss};w9Z6lZsZK@7U~+PRRce+BF&aa(uT7*lCf+iF9(*HUITEuI00KrlTM5_z
z@l=Tp!fkSTLyW5$0d&1Tp$C@fI3G}Yc%_mcF|Qk#LrAy8dR74vv~QvO67m0pZwTgq
zq);sC91PzEC5o6lD!syIVv^d(nffyq-2-@9K&%ALL&P2+Ekw<(GrGB{0{AwP#9l>w
z{0<IHpkGN!^HaI+9GWd%rQlA1q>7}_-BvOO$jrXGE8i|Iuy0MRy}u!z<7|{O=ip+M
zN0VxlvhmGiH_|kiCcFDITli``Y81lEdEW|^V~5QVPz2D>dEl9|KLzA(RRG_nX2EiG
zk76Jbg7>;|U|Y?gk&)~Jz5B;bw9`d;k|>*A@dvhaNWR*r8XQzBhR@|T?GXpaH;GOh
zn~Ql1uWa^DAqQ5G0Cm+smVGAaP~2<|NQ4523Visb0>Fjmn_J9t`<0glDGW@b`yvLn
z)K08XwjUuDMTI82(-oeKIJ|rZ54DoediSt#|Do$KwJ41Y@&`%6I8(wpa;l-=9%%dz
z2q>h_%_HJb)+4CLZR4W#N0e0wYlT>T=OSG4?XiM~cSh|>^B&8PA9J=9eSzs^a~78b
z3P#NoSAt|FM<0U8h0-&HA*ythk6_iR1+6(Sk(>v$Ll3x!Pdrr%f98R#jUQ~+l}6zn
z;C$|c;*?WvTk)#`X7%CHIOW|X_%~;SxJq)OvB@mc!?QNfDuCAOZ7iTJ%??+lcst5@
zAIKjFt!6Lf(nnb1Z%3o<B?J_S*CE`*A32j#y?TMqN6Wt@<OSP#J`oluKZCZ8WIo%-
z0b2pFSZin~lV~T2*Chp439RkS9p@~cTcw&vZy3@<kpQEROBZ47^Az|P4qjBD^;p~Z
znf@XZ$t$enNEKw!T2hq*V+EGMoyxK46&G^fDjeu}d+Cku)w|mao(nK~m+BTW{gZuQ
z2@aY{b8nVHsJcX#Xa&odq3^_!oN*x~`*h`$JLhyyxuX$U617jsFeH01>-Sn`G98nP
zN!`OVdUT!Kx<eH9S>_|Y2Q+@Me&yBaN#!n(2ii)cGiZe>;!aMPqT0o4Z_Pykbr+G?
z=<0BV2y!}|jthO^cMgH=d@e4AjCA@+a@|>Ny(Oi-d#s_1tARzKfzbull2<(CBA9Pg
zJB_^;iK`#lF3rH!Bs<qMrc-NT;kQ5G8*Z93+0oT}v@*=i_5ST#-Pz0CJzMWK3lakW
z5!x4vL}@?0xLXpqgJ+mSX6e$_3g2|9zfE8ldqIAmi$YvXIOPG8)?6&1Trv-uKYH@u
zW*@ws<?hjWUXN|g3==Fli{e@}FM4bz@_}rP1>LM;m5yo=D{prD#WnIPUlKuHv3Z8y
zmk~p7`zmlTl9<?BXjf**0SPbG16!qk(CO;18USy;P=mIfvnP~;ybS{w1}}8D%yA~h
zDzBN%Ok1zzwE<tZJzi@oso)tvwJawEUMhyp>F{zOT3dlHrkR-3##=HUwqGxnx%q=@
zxR)jTPm@bAr`tGZ#Tu1I5W$;N|BA`8d2y2+FTgPde7RiEl-Juhrt&gl6#%|QrY$D_
z`)19e{kpZd{CE26k*FrUQGbzNqBH_!Z5WBwr*e1$Q2J;?x|e`?IJ|AcBk%<*TtUbu
zFLn$e6?Z^Wp)1+t-<7qLC86}DprS4x)MZHlD8I!#9%y<o)Ae4jn*{ROeJz1fu+BXI
z<cEX4<hACV$Q+uoOn>tb4%N@H5imLEI?m`(_7szv6NCZV;iDq%x=I~t09q*ze=&xG
z*TSoJdIs(YO7u}~zwo*J`UyC++oGcT#7|NLF9|VYL3;t;U-$ZXjTXIAwemsolWET_
zRQK5*lUs8Xe<o@_>P6RG-2t><SEOL6@Uckpi~g|puWy3HuF*+ox=J8$Z$?a?r3>D9
z^<yxt{q;J@b`6ECB4Kx}WQ!>FcG_~A6s$82du}xp^w+Kgj$~-&i+I8a$2~qF4eNTz
zoaS-=SRcCWYI>{-CBzM{+9vrA0^(iaHj5*B`@^4@Ml4u|v*}0agp|cv0QqJ}Z+hf|
zCkAiN2Wx_x`fJr{8(bxX6!=Wwm1lB|ZxqN+F1ONiw(lTcOpJByj2|%#^)y^D1}o|I
z8@_Rs9(beVv!py0JYjJ4exLN@d;?>z*<@3qvImRuXDelN{$vn~%I7zeM>CV}f~USo
zGrrB7`Y}PB+TEG@X$JpJKYeI6{X2NNLu&e@VfxR+^glD(vz=+6%naCkrW`y2&6=Tm
zK7-i3OdBsam#=XEMqmJA$Fsoyj9gK?R~D~6`JC9q@tkqroA$^Sa>g>t|6EFNclPW2
z?E6Ud;L5qjlCwhp=1z3xM9OD>qvm}T=Jjpn*Ku?7G7FEs%!uUbUz^bXH*lYt2MRm~
z3>V87X4Oh$W_RuDSIsP}VfC)HFRqdFL?ajNcW>CaU3@UpT^L1Qs<$~5=-Dv9j2WuC
zObz@Z4NyY*My!j>khgXv7UFFDp8pm%W)^Qee|HLdSG4->Bi7Q_$G|7%U9`qRuDPOq
z$+IE=)x2IGZt5oO%rMOI5|>zD@-cL|m9kv%(F7dvey3Hha@V$t^1jIGy_AyVN7g18
zsObwm)3T4A6T)w!a+VhS&F`@CcL^hVmCQPMjmxu^!b=zjZqPQlEw52b7L!&ws#c=+
zKe*^-iJ(^K3(SY&z1d`zzx-1ua7*5*TCfzCZhoGu)H_kCX1*Yf+%bp42d!$`t+GsV
zB}6{2X@53u1Ia!8l*4Sp^dRBU*ypg_dZ{RW4mSOh4eQ0{AK`bcWwKU3<36987ydF|
z^U}+rw?Oi=wQU-I61l1PmEm*fj#E$)muXjYInFNkk~7)fKKB9C;^~l{R0U!16C=rM
zrIWfQ+33;<an{|#(o?>?M|H_rKw0A+Z)iJ8WiJzQuGvg!8c*TlFSVVo$J5%n)cme8
z_|M7iZsDU#t_20xx|3+UT9`BN*Zc>aOQRg*r%LWG*SxB@Chh)}eq=~(itgf|Jx-zt
zy9-eD-E?q*S?j|s?ymKRZrNu!Hb1iMYP0Q$a@0;D&H8*3o!ZWSKK3Kj!?)U0|M=!5
z`M85NI_SRJ`VUK^b}t(W@azS%6iH!c(JwMua5u@_a}A*U)u-7FAc+Hp?tdyT^%qhO
zpxoMVS^XjTj<$EkhjCyl)BVYq#ZAT`kC;Nfu2R3LQl420cnZ4a+NrmUs!wI<&eSC;
zBB@Yg1A!BF!7V<x?hF9cifdmoV7cWmXNQK@@AVhq;yoL8kp|!M_=+QOKlTP$4lSU+
zKZQSi`IB`$@muy*X^!trKiY+<)WerMTcx|%vvkvo<-hm>mfXF}k#ifU{gSBz`NZ{?
zb|D+0(c6BNL<kTqkNQ>~^lhkG)GSokKU_Kz_CVOlLR7e$Cb%#8s5e@$r5ymp3A>gj
z6Sa31c@L?6H!-v{&NbQ=jK95q?bPIiOQo32@3mxQNAVg)xirzbem)Y}KeFaO7N>3V
z3Aq~dj$QL40@U+6=*l6+l07f^My2vYeWe>Oj;#y)0u_rbr3*xwt8@VVQ6~^;o2+sK
zedl4rvCL<`-#34TIeSD_y@I*E<23zjn{5frxmRqR%=thrLhbJFp7)#<C*oXkf8ym1
zN&GjiiJc~IN8#AdI-7WW9ZxqYXEOKyZvNZ;PA+%a!Xx1^b+_o10wZM|?hW3euhxc0
z+f@W&Q3cNMA=>|nJmdIso+9CQWho5yO_lV=e`S~9Uw;P0I?}Atg4J)eXWTtrL{j${
z{j^bB^eM<CqRLS#Qjft*Wl1}Y(MiNuufb?>hMh+jX;J1$cL`SVVz(h`MR_PiaH-OS
zHxieWPz$}k1*qQa7larP1As$9qd)=-TAeWxlIk0l3N$$Qncb{VH(Np7H4Y`sOK%f5
zM`V=mBbk*)WfvvWrx~$P6p)_|Vn`{%b}<455gpHMb&8fn%hm&Egts4#Y+5_CzrS&=
z9BFhb^+XPvF&7SFxh$7HgR;Ibon^dTJpMrC$7v^k>Cj3sC{Nua1gCQ3DauPPjYYzt
z_4I}TLl(E{+W-y=iypPfyecdCjkH8ltTMe$uP9wwK3I#~u}}eKLUSIIjpT6&8EV+H
z+EhWp7OL{9MW#`>j0up9D;eUgjq)iB)7$Zpud^5CtdXiTd!<H1ElPj%X_mS8>wn%T
z;?KN17P+IY=||gZRSZdhvlh{qX@_yh!@VUZB5?^gOE)|<bT_%gbmIpf2h4=5awo9=
zo0xaCQks5X5w}*gdc&$o9xM%QtTxNFuaGez&1KMGl<R`o6fE>)9GysM`6g}DBCSuG
z*!IJBkXA#;=9<fr^9>8i7GNdoTEqL4@uzp=BEC)M6JNawj`K^Hu?Xh0h+8Vk|I{OQ
zd_v`?051N!DIf+7R4;^fq_#3!OE3igdSTQHl2;0tel2i>5iFtmt6TR3XoOlP(ktg<
zvOeIPatE#Lg2VJpL&HVkjCM|d;aOG=qYju%u}m7gx59Tw`1pPB)1HoBq8g&NiB`JW
z;#C%Xf@vzu3S9*}s{l3|ECY$zXx}OaWfC*jen2e*=fMOnRr)}&zVcPbVjrEg8YkA%
zPyk!_vqW<d(ueFJ>A7Z_tY33S){WY<q4|s|n{iAAw~p<`Ed`6hhDP}~pBkt`jGV0H
z`|?nXlTH<ptTr6NH^9?QRrGnC!dt?%cs;h22k+eD|FJFMl6W0-Xt-Cldi5PA1tH}$
z9Wx_Wej2Y^X*oD0hy>Y+Q=oOy6ihm+2@by!Zp-r0H9|3MeN5a1AEs~kZ#!&R_%W{n
z0==|ImKOdU6euGGR!;rI|0t?m!R1KC4t|feg9g`Xa~h68IRvaVF~6Wgnk4Q<72aoV
zF#6uANY!3qSn-*iOrQ4KMA3i`ma5f!sHKXR?n{FuJ7yEhSU73&X3ZZ0_nng0TFf0U
z_CRvbyVgJkaUIV&pw*_6^Zm3AM@5ox_wIG=c-cp|lr&B5-PT3-;@$R-d?QQVnqH~j
zHfz=C_2{WjVqSF`0d&9&Z>4rp6*Vzy;5NOSDb1k|SOE#h5ss8F#=YuI=>4|4q!Ddn
zrh*s&_J==BeHd)ITB7>$LquFYs-);{RPt#Q`q^;}h@C%Lpl8%UtR`ymG0e~7GWsrh
zTfJYDFu|A?`_o!IWq(GwJ0!OO{kW%&`&4)z%~!-g4PD9lntx7Gk$O_4^}0qtSg`1d
zrTNE`2K5uI!Noo~_f2II^;66s6_Lu+dZG;GLnY8%SU)*AGCFvroSz9=@HFg;1-Ok8
z{sj;(bLD7UHfn^}C1}qKq3G36Lqtmf5UuV8@K^72qEkNUws=u_hfhLMU1<4^$-CtG
z$)@1rmTL@~HPyl!IWTpeK32bn&z~uoW2CUlEl&8BNxEDfy*H0Y|JmRfQA2PIAe_Eh
z1pq-+-)na2g*nZrs}FbrWtJSFmgPD>SVif!Uh}HlJ>ilGqG6H!YYLZ}O}^AFPuFV%
z<u7v3d)Ee(g>8MjWOLGgJ{g*N`*gk>vfZ`WWu5=?)QfN6lu>P~Iib#OQ_^|a#L;CV
zfx%`3$hVId3m_HZ!YNcRcD01IqX8;4LIF!t2$ElAT#D8{f<#FKHXH~jgX^U;2_>L#
zI%1=*4ek`p5$G{EAUdGe-(uA~H2qK-imit7U4+L*W*HplU@|whAG*Fzde{xA#-;_D
z_3gZP$a}ge@^*RZ*1^7qR@G;ev;-pdVp(2)q(=Khb;66!wgSkzr4IjY5u@CY2FUQE
z6SbPlLz5Z!m~}Kwx9_LCKLmC@*)mw{ozC!Dw*rd;>4mL`=qCUWf&@Sa9}-#2D238X
z97})YlXSZLF66D+if*J9fmTW}8z$ke4SB*(D?&v`TT&7IKKbFgLiOoFfc~Gf*(ZCg
zH6Q=_sSHyeL2Jgg0q<e~Af+6Fy8EU2Yxeb8wAQAn)lmRx)?P@_E8EFSN@)MA0HWX6
z+v1zQ=ru|P#1aFo@13*O>WX{^cw*kt=KOw8XTKZd{NX*#(3}okGw6-YYzg|+RS0O%
zVFn+e!!SAxh<383i;M=a#^J&IfL@DDL(ul_kpy38Z+ZpS$L&5+XC_H+29*C$ZzwdP
zRfKTEnRxAE;}&F9ASBbM`6El@tu$oiM~WBF`SJwXpzS%U<J9;EhaJb)TS;<8cQ~|S
z=&aCJlYl=}MBS?ar;Pv1<tAYH@6c6#K=rI#dqm4Mc03?!Tqt>Rp%=i`U<7?!OnE)B
z1fU8+9_kO6_dzs*JNLiddV`wU1xKrUPK0lJ)k)wZ>pr{|Fv=cywlBpg@^WFjxdS45
zcmKxWDh~Ig$nJfMobVc3#qaMohc#&|EM%TMR{Esdw>lbnTlFskSJMboIePcWwyVGT
z=T}$An??lI89)4mb|PObK}ZwRg_p+N*IpI^F}snpxQVm$agjQLGMN3p{&Szj@ob#9
zL7f03ChHX9h$mKtxSlg7WJ6VG3j&>kI~h{5lWHA529We1GYVfG)O!PeB<w#{F8z<T
z{+Da8H$V6CXmny}?w~e!KMmGtbKF{|iJ8yASia18_@b#~H|QSs${PBlW0c|Yt4q}4
zglLZccS4BQto$lG@o|^|_GCX^SpC}E^*}!49+i6)$bR~v=sA<U)+$(Nrig~98Jc4G
z0l=%00JED*rpItBGnK^*@_!1ue~)KFz|g4on`n4`8PBGK<Jp+=r|^gV2^(?`&n5!h
zBZ@!sd{d>`Pegr+D5LUh>9C*A=ubsd@bhjPJD$%y`V`s5`ElF&;rT+HdsO{3-tRQ3
z09XeSWMvs*!x<Wm76pK=4eRazKgYi7aW5j@*QC4tE%pN4644m{_~S(p<pb~g-*5g@
zf}^R*pFVV-NLQ6O5>M{0dwZS=WB3GX^nWi(c$}s9cVTEz39#tST3n_Zgqo~u$4}3E
z9uk0u)H!N?WQ+kUgsko)F2#NG{&lvQs<qd0kKYfAWTFXP4G}M4r~50N@tM{G^Z1(v
zG58*0W&G}0hNSV&n&)xvhgrB^{(SKJRvC`@$?8w)YWKI6pK)oYXzgLzgnjQ`Jc{Ft
zVc_N8zuQ0gC-|!j5tv?OGyaSx$SSH=`Gpws5T5fpRpj>yrNaROiK{q04X{4CPc8k)
z&=~@-!Jl*WU9|#0{yuvO(v_r)^DC3Vo~vN00QK1NPvaIpHuRHCC`d{W=<P}Ka~$*m
z!(>1LTjA+!1{s7yp#q?PD<ql^Bp8?g(X_&#wL8WnA&lhzDy-mCy7m7EFn|Oq$Al3P
zQrWOl4PD)16t6a2(TS>>)@+~Qk)DA{2{x@$kfJ}iXAB{{LC}?);<0_WwH1S6&U=kb
zdZ~59HwgXw41M!`0;>q4kQeL&2IXDOl;4E(03$v1>Hm{NY@pyZRxFppmZv6Hw+z(b
zs{n)9dpkZrnr~FI!FNasFmjjC%sS%xBtL2uXvN@f_iIFn_HlP3fQuC5(9Bl0zN~>`
zrK@B@ZzJVKxeS_v&VRD%_*!$2*58JrcvjgXaxoiKtT7O=uQTN&;D7C6tdE*mQ&u@|
zV7Y3VW1N0*O^UNjrnAS-a`B0ls7x^ec6n9ym^Z@ssQd=}z5$%ZVbE#oq`&en0=_dR
zH*+M-GNE69*pmvC454p+$P8IyCK<&e<@qoCo_qk%V-lc&>9)-metrW1Mr}4rX7-P>
z4U}9A*LPs&FJ9GL(M!#6sX1lhxPk_F+yTHz2aXU;2vV9*)14lu{lV_4y`LRyS6vT1
zxEk0vz^xksEX;(ie`l)?*Ka(KC<1m-zF?7f@vdGy98r9wZj2`ly6dOEK@iK$8xQUW
z7B*bCG`To&uW=ZtYcjNznWn?$hnW@TjeaTU5Hct)<~$&CpZRq_vcgvd_nkbq{XG5S
zJgM_J$!2EEr{G>aJQhxo`gc83Yt?ON!;LyeVlrxBc9^i26;O(&uS#u@Wy+Pgl_wvc
z2P-mC-d+VTdv;1kz{Xzar|POWZ(J9zyv%MUccqdE9wswdE)()o*;eOrNgh&kl?~o2
zk6Y7KTXl2AAk$g8QnfV_zbgD=#<E#qY5VeE^W4{&wXPqC2IjN!;Bz|qE?*cd0~(%T
z5fIl^_WcdW@%<(<1IR(d6-UyQOL`DBG9+_?tx*?vs*S3!xmwMvBd|I!wXSWeedUr;
zvK1bBls^>g&uoL!J~08CC8ISrz(J$F(gIC|Qlluvw>$F+sDdl1^s-1i)Z~Ayn1fp1
zt;P2)4iv-%W2$y^_3{En96&=gu|aFCn!#HzBs&v<eS@DZ$VfY#+e*@LtVT(!^-I2x
z%>My<K!m>(NtLuqJrn^zG!vfy1RNloesmH>G(k<Y5x&GkRNw#<DNhezPy4hSM3h8V
zz(gBHOdh~4)f6D>lS@yAO?NcD5_M5^<^(Kr0Zw2Abge~U;6-VwQ$JO6DC1JEB2zbY
zdXOdqQZF2zlM!%KF1&O>r+`vZfKfZa?6$5LFyRSO&m+5PN6bi3Jrzc^U|2;JKiSkx
zV*yKFl76T(d}cB}r<L;N(+8c#ZgN2n(!m$lL3bWzB(!xN3gHkE0U55r$x^{Wt79rd
zq!BD39?a22P~kc}l|9JNRJJh-|H|MD(qIj)^^w9=9v(6amH<qi0OKS_jN)~SEa3t2
zK_5Pd3xdN1hQUf77Gl$63&>Czv6URem0**=VCf@a*OOu2)f^yJ4CK{GA^}8FVHL)R
zDmr0ikDw81wq}ulUOB;D8-`u10Gseo9EbyCeKrrUDHwo5a(YK!V=Wq>F$<EG7>vP0
zoa+PZpbOCvlRkD}jW!Lj$vZKD5c1;*kiiO=_Gz6K{!aE=wP0dXHe(eEk}5V@snu?2
z(pnoeU_rqvW&%0X16GppHTw1)<^x3HpgX>!4c4_NsY5nKA~%5K%yh#g1eZ3ngE4vn
zGSE_QZ>W1P1AE}2DW2km|4!vkpyzQ5<38}C4FY2@KyWIa=rio&KH$%F8xCrR_I^M&
zWXH?9prS2K*KvV_b`!%GO5-$0MmHLvr<!w&7)!I9*Lf#*Cins^psi!~7J4$ndbxy8
zm?H_CgJ+}hec%Foi=tmnfLGr$cRhA+=_0;9BQ1uYCT>E0Qlh}dxBavOb>-!DnP+ts
zLvEiUcI)<T4_FHGR%qQ<Y-r^<UWFaJP1~kqPFTT=M#WVufG`+$Djmgzn&4#wr3qf>
zP+~<(vp`J9WC+XzU_CeA99SE|!b<oh2{b?iQovAcD1-;#gOkroVowQfBu9=QSm)`7
zadK;4xJ{@7E@rqo|Mta(arhNZ*Mpzx8v?KmNVpG<@p+$@i=`J9wAc@rC`novbS4;v
z$yiG&7hcG)M?3{C@{-C%vWz?TjFor@+(eBZhEF_1Eq0cUF(`)JCnu{Iua3ANuEs`i
zWC3&pfggGP6gYcbxPi9@WXNb_V1={BCS}TK0HS7UOv6Gcsgj>VW_FklWM*0@%q2u@
z0IYy!ECyquZ4ld6dmV*q2t_A~M-LQ0L^S}Z9)JZpc=TM+r6vZ5ud2(oEwYf=3Uzl)
zIGGUhg_onimstRqYiXEESu>1TR#3(nNQ@W07#5n7oRPqJS9y!}c)k|+mdA#jooHy%
z1w3FGR8R^o|K?d;!UsH7pq8~3n$g&j<13_K=31NxnFM)e?%97FC6x!knGND<SPVv(
z8Imu$=_FYXvFLq;@;Qd*h0d&_UE*`v;CR{~e&{!S8ka)s1bW!WI3!pE>O!PvOgnPN
z9k``cZJCn!7Jqto2w>;P^Z*2UkO*3!U0YfpOyE!jf^sYebKa4ulNqRc`hQCLmBT`)
z&4{Rt`l^yTNYD^OzRr5M;v~-5i$ej7k)W*WpnByCp(pu{A@`>VETP6{1R;cdczSV+
zPb6A^1I*ZnM*22VB%UMYZvtm<(9ecaby4>EbMx5HrWzrx=BX<usxex#r%t0?)vEh}
zj<S%4|FO5GLE(?Q2#nTKl1SGZ6bWY96^=d%l+5v?Mne>sq_opeEeAk~oB*TT`Lq8>
zmxlm}1SMQbIv8M^5s1_uT>I4~QFaBwxu2PVO*@nZ8HZX(4^jZR8#lK3aE!|6j1Kp<
z#|RJB8m*nzwpo^-^H;71dnEqou%GCJDsZ>6`o6Q87P!<@P;|IAI*H@^y61ZUI_T>d
zyNE)Y%hYnVfr3b<TcW$rN;jLrm#(uF(6C@irq+toZ0fT_Tc<Rum1U)~+6ogK;HQFW
zsOmzo7;6F?3oZ1Dul%ZAqiU*DU_tG`#;HnYy2=8W$(cgTAFwI|v`T(dilyc$!_jKP
z{|O6FJRGAW3$fIxjST9em_Y*$ppjRk#-)nK0b-;~>ZH8Y3@7{>!d%SR4=t8_vH;4-
zYs#~toXw}aqYi31vV6-McgJ!30e6Fhl4_}Z9LT{cy=_*l%h?tL{i`s6z+Gz2o1CIL
zJkA*%t|O+L<_ev%fXIzp(*x^Iq#R5x{haD5RadH+TsiI@eXt_^$tS(N?>d^MshX~d
zKJ=#3i(Ig5#nVS(&leQUO-jw_tM=Hp!i)XqE}YA(?90rH$G(!4WBkHK+&$8a6o^v(
z;0McG<rf%W$%w1`0D&=6jMTz?Jz#9OtSYykY`COs2o#LLR7cr$jM~%C$`-)A{|2l8
zbn*lofCZ?S+yf#Q4s2g{&&*{Z;9&&3@vBAjYmOtV*+ny}>;2v*@*VV@-~AoS#9bgb
z^TP<k+?h;X&l}O9SLD&z7Cv6aUY(ES%m(AV;ls??Rlc2v?7FgR#-NPd)xE{&9mn2*
z$gs=EIFkf`Sm9ZO;meD^9v(Ic+_;cSxtJ@Ve~avJe(Kj9Q2zai1fD%5oY;-s>v0a*
zB?8#mz}Ey~>^VW$a;?@H+8i%!R!of}RqY@q5xObj>}PS04xrQ69w_SmAo`qb?*7d4
ze($5X?+-%ndrj^i0???sKLr2O8V$Pre%2CA0lfL~0e@c!O{`<>)C?c)|G!@JFFNd}
zZHEOK<W3*wRDbjj<k_}F+9rbaTc7r)we*#3_Gf?Kbf4yUzxD$}-Pq0D;Ef`D|M!nS
z3U5EzE>0GhU*w$M=b#_?4+P;94sdX{A*6r$w|@$ipZmWb{KH@T$6pq_pZw1s{nKCl
zH{1Nz-~Hbo{^P&$+F$<b-~R6(|8tK1^Pm6w-~WMNARH2l#v?MRTr!)^Cp0RZQmfW0
zHmhCEYThrnc0GW~AVzX>C}u!g?F6)5s^3bo8I7zH+jb#dnO;`lS=!u?-``?W;h+&;
zq8nq9BPEpO9-@%qrBSBmREI{RnPKPvDCFiqCn})n<EztXY2K_+|846eZm;hzaIo+&
zadB{0SlF0|ND0gYk_8N}kO<2aLx=@Z_V!Z;Ou>>gwbOwH$p-5kvorJ&d6D(vLHn~2
zI*Go%EK+^*J$TdPT{Bjs8zy`2jKm`{uh&0!M;L4%0pdXviWV`NQy6Wa!-BXX20U2t
zBCr%88hJ!Ta$%8%LmrN7X>w!Al}ug+Q&~-<!JtBi5-n=<s8D3dzG!(+vd97w9A^TJ
zvOok37#@sV&ARnlxFu1i7SVU)0E!hMSfoG@#VJf8V+me@Yovq<W_tT6v3q20$SY>w
zbk#b=FITB_fgv6;0R{>XDPUxH@;LJ3%1|21RUDY{Qz4fn|5N_u^9korsf7Th8Z7nb
z%%*iZS^erXO{BVa^X~2YH&LZa#bmLKBzF`PAs&AvqMSJtaN?@8C|51Tngc3GybZks
zxt-J~njiMA1bme0cAguSV*CjDSDX*5Scr8&qxv&p;74sfNqnfxr(ZSv`Epuq|55Uu
z5do?e8h!Q|*b9P9Fn9@WRROmlhaGzOA&5i>w^UQ!6>tEG4HmROKhq(=mk=(HSA>kw
zg*C)<LY$bQ5d|2a6^c170K-(^^p{{<1MIlYLoD_v#EVEE@W7Epq_#o_R;0G1imbIb
z-2o05K!lG#9+0Cr1?W+L17t!8;{Y|fXCjJBt_b6l|5XwZ<~mSPi9~9f4C&2Ia=}2T
zg>>@xnUhE4>5l__4)Ev^ff|Zv5^1j4W)TH6ASnZ!BABC&M%Z@119<*9XOdhl)~FGb
zeiEsatD5Sapocc0sg9hI`6)M|(nhM1w<ZZls<rCrM5sb!=w*n}N;@sJ)p{~wG9@O7
zRaS9X!+;7|tuU1}3rq$B3lbb5=ejd4A>9z*NZ2hKS=kH23Gu2hgi|nN>EE{YddmX1
z;*!gPxml%41Og<$-~tRSU^+l*E|5}1YTSnQZMZOu>l_LPIO7#3_hyyv07HJz0t_Tf
zz%mLyC5*1RMzFh?cNz~|u*YOI{BXpGGJt};|0z83GsF@byTk#dNzt@sNH!=iK|Fsv
z1kynhF?7*KJDl{y3_{I>$}GDKGmaqGdqR~CoZG?#r>R{;d;H=W0?<Y?{I%9N2TX5B
zR{PAi(nD~amEKqr9=3vjIITq4Ex!y|+H1G{cHBD6O+?*71d2Dri9@;g6K-b(cZPyn
zyE^NwyUsec$`t3_0uD&ytqUnkfWQPRxZu_RBILe11mX5`GmY*l0q+1HxIk9zw-+(x
zV;?+_Y&G1avH}Pth~PI@wr@N<@4f>syzU4T55piQ5Ilea;E+YJcQA+`SqT#}ky`ZQ
zr{DYUhJb<;oIolF&_D_NRK4rzVMy4?{{ReBZ~$pw1bxIap3RiEKiY{8cmFfr5Zs4`
z_z`IcBM?EP8c>230B-;ygrEGZ)VKjq00zE-LJe=Y!6fz1gS!J@3tvdWshlu{D-7cM
zhA6{h5g~_UgTVtMIKdJQ00k`g;R;wVhXb&n1Pds@%UYm07|?A-sX2k(7I1<Uj7bPW
zj3L0nCq0Ld4~QX5A{+-$!~>|1g?Aib9z8chCyE7%2Y{diDJTRhVo{5L=;9Z{IL0zA
z(FkZngBscRM;KC(X^;eC3&dEBI)d<ZraUDoQ#q8_fk9hHaKOeo=@gw{Whz6`9ubh2
zOEZR`m%dz%5a1<(7R*lwusqhF|19|dA(S9yAwZebj&MwQ$Pxy$?Bp$V1QO3JZBG&V
zfCcdOJ@830mQ$If09)p!AtcjKq+kFH-g%E&vQwSOD-RQ=>5yvbqyXEbSP~H6G=EZ~
znD0Tr3UK*=U;6S`2*qVIjiAr{oYR`xENDOn`cH#4?xFl*XfL5LBzejc8XD*%JeN5D
z53~RgC!Hkc%orMJ97&+wASe-vxdhuxv_KW@=SDNC8JzN~n^H>XM?osmcn$!bB^|&?
zr;<`3u+*g%Z5|n8T1g_%6l=OtQcyhyQedvMr9*hBPwhq<RkF3MZhh+(Sjm*x<ujH=
zNWs2>m(?MVpamIB0`ew+|AN6176sk_2Lej)zH%N5o=H-{GCRNmw{#${5iLSb^?KL5
zVx=s8b)&zQWw*E#U;~3VDH8$ppUifa2zX7WXocWdsK7v7Ls}{{TFckZ?h>D`w5w|^
zdxFq5!3F<vA#qikS_G&71vwIIVFx=g<~p}Kb@kR>oh97lF2T4V<gQU;)!gSsSGp;y
z?RjxqMQ93v1bIEd2*`BR%?+V*^z#;b2cQDl47UTZ-QjPsyV>vhx46gc?|+R$UGkQ9
z8$+_~J#M?+vb;CGIGS&E2Vh^$h#<fFCGfJK8(nX}SH9OAFkDlt;uW)4M8laY7I?Zb
z-U?v^Ssi8(JOBe$|LAfEJx&5Rh_(VrWmb?$DuK(W7=i@Gk+Jfiu^w*>WgXAqXOOV~
zvF^)+7O3>HL|`qHZ7jeP^d&Sy!ia<=jAJ5D`JSu_@RN%m=Fw%vu*A}U2vU$me<`lc
zSPt)=RDhkQ30hKRzHXd}Fy~1*?8<k}^PZ1uWjh0U2-+ER6V9C8O<y%$VQIl}g@9p7
z<}@@!GnqXZ?dL4-bhR^<^Ij+YXCmNP&n)0GogH0iKor^unojdQIvvbUhg!oht*=bu
za%z*|Qr4_K0;uUm%P?oS#n!$ywyPyqFSydl4uNtATu==tgQJZ;)?l2_eFSinz$y71
zLXqiLOc1P~{{<HtKnbjKXgGhn2;m-g5z0*j1!#b1A=|1FP{3p_!~4}l`1c~;UF!M$
zI>PfLHw?@jBXuW1#@+(AxCdTv$jm_jR@A@*uE&BI5!~RcSj_=afN4y~+|c{>_Dn!t
zgqD+B2qtF%%2m$tksrL&$BOyPpNM9QL&JUn4+{&{YHT6U7p%#?YY7;j^{wlP=S63@
zF&#bxh!4T*B|mw}AF%SB6aD4pLAuRpyL9zBoe1!Xy0odDU4LHPwOQY~*1O*JCg7cO
z)Ao1Bv#t2WGyXT*CQgi9EntupNX{Diak_1^25Cq=?8kack}8nu0=Phb9hW>ci!j*A
zD_TQB|ByzpFI0H24}i59UVX%s0D8G^TFn_A!R0xwTz>CI^)VC3zd&HtA+$h)utzu%
zOyEc<NI&kUNAy08|B>V`UkJ_LKJ<rBeJE61y)u_aUQNJWf$HP~*>y_aXR?APJio~j
z1+D;(&k$TIe-qzFe)tK&_&q`SZQA)cMEb4YRk>fO#a}hdpA*#I5~v@;T$OGulKwTG
z25uk+62s$l+x=nJLO8|0V8uc#fGD|HyV%Hd=-9nA+_8}05v;(%X#fj6+wkFBfs7!o
znIJo*AOau?--TZRd_aykMbsn;_U#7`9v2EooZS>#0s7tvreJTqnGWhz6GDj)wnqwN
z|DZH{MG(rD1HN7-L4hJsfyYtP7EVeRe#IAZReOx#g_Yp|q#*&85U`n4NeszXa6l*N
zm`>m!IF#WWl?oS<AvuL08%ALw)}gb2;T*nU0OFyq=^@iWRUftoAWnrKnqiS_*i1b|
zj?ket3Eu#8;t+hI7CK@Fz9KBf;w5~b6`;xkoRkJ!4<b0g17Lu^U{CP0zzSr*16TkH
z++cyMfCVtX1gJm&so-CMMUFT_&D35m{$f9bQU+822^`mBh`=pA4%1u@F6tt@U1J9T
z<1h_lF&^V|V1+U=qcZ{zAd0{QEWiXfgC5voIX=J~I6w=W00b-m1+ai+jbk|G|Dr#h
zqc5i8Agm)X8Y431o)TyyH)hEc&XdP1V>3SE6`BJ%#*;Z36FRD+Fh-<13PC;IV?MHv
z-f6%AEWk-|qW!R>J|as(jwAxKKnYBMPx_=z#R^aUBv3X&NGjwmmgGa8WIImeO5)>9
zViiovB*~;=O+uwhrovI`<WLf2P#VhIZQ1~&K<VM53ar3%6u>cBzynlP3ev~89MEKZ
z1wV@9Lb_24WB>vzfCaRG9z11B!pWX&<y~51Lz*NzO5}6^W>l)pRL<ldUS(k7WIt9}
zSN`Nz)>BwY*jScjGoq!AtYurOz+0|BTx!5vQl?!Z!U^Q%UiRf*N@i3p|AAVv09(4{
zv?XRr$|7&}rf*6CEn*C+b<%L%3oeO3I<COU9LX^8j0*4t=3(Bt-N^Q|Kz|gcy+D*`
zunY{8Km#<<t(BgCpxRVmXI30%axQ1iIp-r-K*vBvMUf{vjZDk5P^-x&Xc^~Bq$j>q
z$rI86cY5b}ZRW+X=L(Le$&@Fv?dJn1XMb|ld!oQp6oAH@fCI3=ak;0xNT}W5r!=5i
z=LrOeCJKHcmwr|Qf3gjPZs>$o=!IrzgvMurn&F5R5`n&h0ccDK*yjSA+6ge1g*DZ=
z>?la|%Z%!X2SCh5u4tWQW~r5^d8Qh2HmG_Ifrd6Ij<_g>T4{`S|LBo^sL6yV@9m)w
z<fy&us9g9ckQ&aA3e+SR>Ag&7l8OtWTq%4Kpqi?Hg-xl0s_1Y2DWC@G5Co?%D1dzi
zBWwIuC=>t=Cc%FxDkT_dqAfsdsforx0RuEDBS<P0K<cD=YA<kVk1)Wc0z#%{3aOrw
zsCG)Ke!{6Dfu#n8nn(%)7+S4X!2(E1tcL2L;z+9&!2!JL5$vil%&L^ws`WXluKp?%
z+-ef6s-Q-zw7w#t2F039E5P~YwPGu`cB{93E4YTMZ&s^8Z0od|Yb>IxxUMU^wyV3o
zE4%^+xf(+Th-skK>u=&~yzVQ%_N%}CE5KU8yap`67OcS@|182LtilTFz%H!AJ}ksW
zti(<%#U4e&RxHM5tj2CE$98PRUaZH4tjLZm$(F3i#v;g`tjew|%eJh`zN~Ku2Mx$T
z48(v8&;aC7fhrV1ByfVh#TW>H>MZOm5%laX&_gVI2+=wQE4ad2Ev;xY?ayw3(V{}t
z{)W@;Nz!V9FE9WHbfXS6)z@}F*j_Eno-Nt}s#4HE&9-d}(7-YP1QW@`Pb|VoDXK=G
zL`G;sLdfk$l!Jp*0Z&W>-$ubXq(ic9%}F@vp4dc8{8R9_UNInq6i@&OoWLpUgyYH~
z;7YC*&@C!}E*2cFI-o*;4DS9-Eh9We33Px7JO%5z|L#+WZrawa?ZTo`(5&0qEC@n{
zXSl{6+-({_25BUrSa1s}?pn(HZrv^j?I5q=ro~#cg=G-0Y%HSh&QIVDz+k*WVI=Rv
z!N3S~019-U5+XrsG%q8h?-O*dRWR@9N-taV>K|;cZLqH=Gz~9wz#!;vygUN_-mU--
zu;MAj?zV03GQsvvf$*LMf#{XcvIqDY9TY6Ea3+ZaM?s!t$99;*1K$VsDzN7=pX&ZW
z2BTp~Fm3>z#|R69dKkk7r$PsNg8j}AE<6T|;4lI2Fc0JI7aVZSCa{v!NtdLIs>GJ8
z2tfmfZLXLeU`_C7^#~Ea$`LC|4j$+whN93m|8WQp@uC1Ptl-FxctDWM3a#1-j`YeC
zM}eMdiK5sEv~-Fbr?HZRt*bZ+8tcdymobijiI|Yd6wfi64C@0xz#6d08fe<E39XB?
z$Q(y*99P;MpG6fvG9p^(j(tR*OmdkL%bD~rD2KAP{V)&<vCdRY$6O7afz93kP2p(b
z0(1b&xIk)+4HQV{^-T@nP=)IB87up8-%v0T;BvrOR=*URIfx^GQPVE}L@&1js<GGM
zK#|wDGNEh$3?RUq!VMN@nhoFFJ~eaXK6BM+*jHe)HYW{CobvRLPRW=IdkvPz*h_P;
z^AMo(Hp9dO+*-s));&~Khaxk4Ak4We|BT*|8pjw+rP*`QI;abXKq<O2R*~8*+SmqY
zfCd~%MZ>^FXLLA+#!2~#G=!}vm$XUuh5?r{UCELEV39|@5pm)X6`hnm6f#*V01^<=
z6A*KyaL^%+(g(e?Oqb_SukglIu=dbL_l#2%==AwQMF+_PDLo_gz<~7tqaL9UA05#q
zDbWC6Gm<?(-1reRG64=}fIc{JE<^QC2hUUkPdT>-SWCrNw@?pRQc+KeSX(s%IR^n5
z5CXANR1?8mi**W+H9W}y863(xCN=kXPZL;>`e4vRYn59E^`Y|5VAI+(H~?REQCGuJ
zTz`cItPy0KzzIx6X)EUwrnX#c|8@wefH>@=K%ca2-}Wkz@&OC6=TXy7T~tn87)B{^
z-O-Q!c$8QvRWw=`@uig@0o8DWRdh%3Fi-Fas8llzz%xk!a@!wfnUh*w3KIy_P=(c3
zcbZdFz;Y)yL%jn8kpK&P09HWp8t&6?S2nT<0XEY{dVe=*nKx^EmFlHhv3yx*?6=*h
z_W;N;m<afFGm|qxp>Nld_Kdc3(~s2EcRi7Z13&<97u7*qwi!x_G#FZuDS#-I0GZ)7
zi??`Cr1WmDbQWIVSZ-H=SrT{=x3Boq28dU6iAH%D)_QxlfluBLycTHPco87jT6Z%O
zK-Pj!)`A~o6D$~W&v=F*|G8{^vv(!=vS4%nGF4fNSYdesHlM(BoRnZHukE3jg`anr
zzhLco2a`{Pc@T}FW)_%RnwWopNEAS{2?3N#7G+WSab#Fug?N5zR&W`$o@X)=)HxBn
z`G{+B62zM{*ceH>IHz|yD!};e^7fp69IW-3u9-Te5qFi~nx*xc6!0{gi(QSyTBD_U
zuGu<uJNXhI*<*0Tl3{|YcX4m`o1(qnf7Du}q57<ycMJKGoM+w>G%#2_J2?AyqM1-u
zy*WBxn4A}xv#sy|Ey1HVyO=-5#YEK*@Vb&M+<8n{CcnA4E}D@wHzWsCtuH&J-yx*$
zpNap6!$7g82fV;f{{g7Gt*C<;;<25}DSXetGUtRE+))9nJG!iEcjEcn;ECMA3$v~(
z0lnE<x|i^t)SPe4xX#&4G5uW7sol_R{I+XTkC*j0Oo$M0kFbyWwF?2nRoxIW`-R0k
z3?hNqP23UurxJ|&&wH9_a`dFv+r8ymWMkZz@O*oiE7{Haj9<LaXFS!DM~PcHy{D6e
z4?NkIJ#gxFsLMDbW*_ANpxaBkhK1SyPQk=;ytT7^{(+y{=lYN@f#~59>8W)Q%>9+G
zeet!uXn05e5yAiM-@m*(SONXHVd_(~00-QBo3}j!+RZs<bJ7?2%!k_U8G+GX`hj~s
z%<~lpV6-g!|2>X~rvm?8L2SMteFcr<9^ZpLXRkRX{|oKYkJs<}<M#WpfCB{8w%I4Y
z@+U#TBe2@vJrla3DO%klo}#KhJSMB~8e^g1@1XQkq8lor-OId=h!zc=)kNZmXjx+6
zL%;V6QmDz`T}h%Cf<NT*c;7Dp0p)(HE#dnE!QcVw3<eh1!#L=`JjM+Su`IwgOQQoe
z!441>Z1uSu7P|w~>D<+FvC*lqdL1-ijJ0u9T54E@ye^TgrG=IdBP1oGrm;acA)>A!
zNH#*O1sJ|11VAq^DyPJxrA92IgFMv0wzDA(CepxJ+FILN++5vV-d^8d;9%il;$q`t
z<YeV#|K?`ru9+I?80u<j;Dd(;4HymW)T{>#q6a)9k(QN=2Md-zBMummiG_)hJ9v3|
zd;9_J1uT-hv?wvbput7BT#UJuZCkf*OB{$JXKnyGb?n@EiZ`#`J#!uRfi&Wfo3{tx
zuq@1j;u4k#@*ZY5<FeAgf(IugoMjSXN{JLZlv{#vUAuQ!TC~VefrJ?l-3~0^CTf7l
zkNx0;qO+3Wt(YPnOi-c5mQR!_CypCx(Wu6x2Ue_jfIveEt6Sw*3CfmeK9Bq?8d=)(
z>5??8g#I0%cfcGY2wJc>QQ}013NU4IqiJi<3JVO#x`-o}u3fy2(jDDcQrpRh;rtHf
z|8`=h9}s{?_A_1guGLX0yR161wj!0Xh*ubR*4+7X=+UK5r(WIqb?n)%N1JA?8n7WS
z#E(ySV!U_~MTf2se*)kV3o6E=;2D2@!hZqHAUQ7{Q7)En39rBM`b+Pe_1b$c5&6WU
z@012%c+iLe&*RC60M9V*CL<_d0R|U9>0-m-`t#403dvi-yz>scC_xz9J7a<t#4Diz
zIR<IZ0T#?SBEkt9lY*-=GQ?#9_Fy1ExLHyZufP`7dmu>}mtX)dO%Q+~HzDJAj4vZt
z9M8oc@0+nkO>i_Ku{^{?ZwbdB8{hyGKH%U35bp7D01rVFu@-a~Xi$a0uC!50|1L#<
zvC2qHgmTO-kQC1a5IiZ<L7oiFa?4X-U=lu0*KkwGC8Dxu0T)EjZdF!Wb@f$PW0iGQ
zTBqZ#2JgPJP602wD1ZUx*7!BpT7BU)k71Do7MWhpSa6MIuRAu7XO}pD0ZY$F_BjQJ
zZEo5#5cpJ>ZS$yBnG^OLzylVX)dd|R7C1MuahCwMm}`~w77KBU_4i+Z0~UB-f(tg7
znOk$c=3s^!cKBh4sWYIPE=oWl7<ePrcw>$`_V{CvLyj(Cg+(^`WRz3ZZjcc)uwa7}
zSQxCAj8(SzW}I`@d1sz?AvxEcgBE&dl^^(Egc3l|AX{HD_>X9)qn3JV|EjA-SQ=bQ
zwt8!>yY~8Pu)`L6Y_dnjTHzSVR(ox>+jjeHxZ{@l)t|ka`)<7R)_ZTh`}TY1x~=(p
zaKZ~W{BXn*SDcr?bzS^%$Rn40a>^^ex$%Wn?f{nQCIF#c%R?7^bka*VojT0ZHiCf;
zNC3eCrZ-OE>FAn>{dC-O*L`>1c~5;56*@pCg?U#cfy`cJr_T1?n|J<s=%e@hcSJcs
zVdhp_;PMycr(<4v@WU5>eDa6>J*Er8@YUA`AV{SE2UIGc{rBU?A{*=@d*IvxCidWf
z1H=x0d0>D8jL^MWcme_Wo0I+WkS{EJPY!1|fCJg*zQ<T_PK@aS{{r?`J`jdbgd-#&
zFn*^6b(IPRT>#DmJ_Lgnbl^j7aG`i&IKz^J07NiI!C(+Tf*rO%L>VxVS#r3;9%8`(
zSZcup5I74FuwVgLVu1v(zyOzsCy6jgQmQ;5!6rZgi{sg%5o!oS8D8Q5I&=XKeF(%h
z3Q=1OEMXn(ct<>z?so$K;s-tz6&8+x0b2rKRA9F{LLR`7mO4Qa7jS~*tVm`9P(TwF
z;lY@EKpTT;Bpx0a$vLs01PdqtjSk@%7o=bU2!McmEHVNS#IFG*Xn~iw0RjgspdFj|
z9td2(6IjZUmT?&5=M)KpLx#zbkR;X#CRs^YECDYZ%40RH|9MSp_HB;^h{~3F1;~Jm
zp#v@O!~u|53UZd@oTFHfmOxR3?Fpd^nfMbsIk8R;v_K`?pj{vak&sLv@1C8>#8(^u
z0Y<<85a>uBzhKarah7wPM}R>)*9lK7q>n_|<Y-4d`cbj%F<xxs+yKD21gm_YU2=%w
z5>!fsmY&0iMo_`i%+rD54U$75nCSp&8m1A10S5id!yvjqf))hA1!jmsy_$f45=@d7
zOEtnvS?VL6cHyUCB0}*Z15&V>>;WF|fE6V`)`o^vtsE68Ck6qElN!M)G2t9H5<*ua
z*cCA*B2{F7D4}GM;U#-D(Sc%$QlhS*W=8NpsPZa;{}im?LuQC#Ae!Kk6^u&*kd>@J
z@am6fX3;>L_$vwmyH?bK3<Lonzy(5Z0Rj*po~fm6HQR~>6R5xlaTP-;U@#Xj`4+fc
z89)k3zyRbXw^|C&fJ;yyoFSyoxXD$n5m?aAp?W5%5rhGA6o3L2XkaG~V1XlCU|CHJ
zp{L&s?|92AT=o!my3}RBa+@n5(A8GI1&aU)N)THDlz;?j-EV=*ciU2J_X8^wEJIwU
z0S#d9!4Ve33UGmhJ;h|F7S4kSW~!ycp24VC7{N+GpiiZYfg22LLMo6zyAuni1rAmk
zg|Q$44%-652Ieut#tHxr5V*%fj^6o7IsgL@|6~*iF-0BvaRxgu5DAsA)E9*Ml`@=R
z%IeEULK+)lLA=Be|4G5cKsAO;Y$7sWR48L9c0e<aVhmAM#bB%ar{0Fat3>9rb~XS2
z;`Uk4&--0tNnn8nOu#&g=nZPDA{ok91~Z(POl2;UnH4bw0lI8KNc54FnH9z<K01M>
zIc<&txWfVu=zt1N38>$OW;Ah#iUy`q6^7L2HZ0(h1n*%*lS+ju;u!;^Ej{T>XJFG7
z=(KJ?-36NrTH4yt0053WZEWLikM_aT6|q!;>dmQ6cgmAM=wv56>4^#+Xk)A)WTr@=
z=|<~rH)t@C#S<Vv1wjQ=rw3(`0_Z44|2)cY7b}%eOUb1L015bbPC)RIj62-|c?`S7
zV{iBXNuz_!cE_Dl?Q45n<dtjduWsjsPo=91><W{*SU%5sm1_-NT|mA1m5YqYYYo>r
zc}eI<g>3O$LoQz_CSty<JVa~cOGiev1I=`(D-OZAnAo)~hU7Od;pzZetaYkhu{cLv
z?5xrN2mqk8v8UZ|Q^z?BTK2M-nS*66gPBzS)phI49qx8ld*7*Jb^x5+?}OhP+jC(w
zq$w?1h)>$m1m-kWF<$Y6r#y5p5CQ;%00WihJlqW5dC+6i>7gfm**;%-)Rz$Csb_uH
zPTzXii*NO@r#;kOUwhp1?g4+^|A3Hl|9g?$9{9r#-2{#Y;Nww~_{-mz@K>cs5Jdmy
zy2!w6^Du$@>cVr`&qMW}u{maJpBLWu81$td2<&%({LV2y2&V77kncSD=f7F{k70j;
zg+KraaP0*WAOKZiJ^}0)=hKb@5CIXm2j%01%Ay4%us&aqAe<|@HPC?Lxj+(lzdU#%
zWRO5yXuv$MKn%>lfH}Yf<Ty~7Ef8!D6I8%8V1Ny99p6(14tyX4bU~YWz+=$Cf{}m_
z00FZCfe-+;0W3m@DZuDBo<N`kVpu_Q88Bk-z*}&_ictXsyh06JgBmmjDfA2qJcAOj
z!YdSkEPNFvoH;1Gu`hIv|1;DK6aWFd=#1ys!X-pOlUaZ?ECxJGD<w2SKRg^HgbwYg
z!v)+0Dr|->1e7(z0u=ZP?g6u5NJLsVM8t5!f@wo9oDNK!lNEr3LD;iopu;@a#Jd^9
zKRm_32}EI`p9}&APk<k7SsyC!9{`FSQq&(%6oi#p0PHCM02-H9G$34%z-%dia&iD-
zX+T~)gB3`jTqvLe>Zbx|0MLP;TOh_TIL2h$MeJ$DUSOKo@u1=vAYai&T_8nY1RxRP
z#-#h8ozozGaYt7`LE)e$TL6S#kpp2218O87VMHKsoJZv&$8eEHT$mpWf*;`!$95b?
zczle==*3^u1$;!c|9yOniPRQa3?NkONWD?TNO_?fA_O?FxF%AeKr#X%>W`j^1P=M3
zAgU*Sl9>jfiyIq{n<&XRDn#zGlrTb!=eh@CI|rJ)IG%8U__Kv2vLPpW8g6p9YLOHW
z5rLlTN#BA56bQ=kaD<}#t)omzT8OIw01lXpqd!?ABpQsYJOH5t4irH_fxC$)5)`B4
z7dV2UKN%w}dZU;WNLnx_IiwaC_<$NA0UD7ID(I#dd6uPwp{Cp|216-FBt^7rqcZY>
zyObla5Xm%hgR;a+yX;FV5v?+cqA3!OD!NJW;7Lpv%)&g(IEzd5D<Y4q&A9<dD@mk9
zf&xt#Fej=d|Hw>9FBpr#+$6sok!P|bR8l1bKoZg@1P9o%H|Wi=NCDuig<kq4MofVd
z7%;oo1QAH3RdP-*kq0;|0htVh0}v%rGNq>hukn<uecF;-+9g}aPM$yk?(|L#08jC3
z&J}o0xe|f%OwT+JOW<%OJb<S1SSC<HgZ=akHG4}AS%B!|xbS37@|2_nRZb%arURIz
z>l^?Dr6dm(ES{tQ7`RAt;h_T{A{96QMOYISh))&(hxHt#Qd)}tK+wrV!A=^0Pim&*
zjHX#Arb0p{Mk><sVA3T3Q4x)U3|*yGdNK=@PFu)?6nIe>h|w7p(hI!_Oe#(evQ0Bx
z8{A}s|8$y@iHd@!83Ii6(bhCjm-H1*Ap<f90X^N*5O9Nk60Ck|h3R}#7{D}IU>=5o
zw!WI6i-@Kn_z!bxfe)|%9ST4p;L|;IgM6CL|IjN$`ha+G%Y(YlHcM1STvUi`)P#6c
zb&^y{m4`gV)IJT)aN3J_N(dydC=qc9GO5brEDj8H)a?3_TMYy)=?sj*(@C&HPFMjK
zc>r0R)l7heL84Yd@YDeqBv4%!6w9k&mD7ykxLm!bce+ywiB(K>gNRZm5lPl_wbhI=
z)`vQWXbLDxxCv;LRW6v;Y^4~TQX)IF$1@$+wn@_gu&T#6tSGPubK)FuMWh8J#hW^p
z{|U%Si_J<<7%^$mEr89*Cu>+zg(|*VlZsNT$UGp9Er1QM2yUREi?vu#I01g!i~nGg
zB_IKgZ7N=Ps;I&qmzWogMOism**>_0ihWtrqE*RUk**T4p4uujDA``P#Q_l1qBz;&
z;#d-G+FGD0uEHroG*%Tr0ZTdBmj#1Nu%b-ZS3<B^Bfwdp5~?1>TDPpz8+%%t;#!zM
z+N3?$qAP&I+FG#H5WSrRuMJv0+AfLUIJ3Q2w1ok+C4{x@*cW70g1ua?G1$+-);M{y
zhqc=^AVru2EMF}O#r;sMwOZcvk}3d8?!v53(a)kf-2oT@tW}C_rG>y9%l{Zw|KD1u
zMI=?&t%($v-7c`*K#){hc-YZ3ElUxtC|Q%@^#!U`-HV`I<n=2DIW2$StjQv+?X^W_
zJpdKh(p$&`C79gF^<9J;fZhF8y8Y3cfL=(^UeX1NH^WxU4BybaUo6<H$ok&vT{*|f
z0?Tz4Qc&N)vR(=~V9b4BsxjDD7_RALT`=J-w~Vf^T?6KFF76v(EC_+~qTC8566{Q`
z7^#VtJO|np;Xpuv2@QnnVxiu()b<U}UTA_6P%jlW-Vh$)HGtveJ=r|7m-~9I13E7H
zS`fG0h3du776xJ?=wSSsV(=0#ZFny%pkgErS86(d6focOO<>6-1X#7o{}~R5xxKPw
zy@~mvF8lJ}Yy7SF;@~4@5-tV@_QGQFQjIQX0&ihp!A##Wt^`5WU<giR*E<`n`GpCa
zna-ty1q;`&(69{-gdKx5XbZcl<+w;DRTpDlG+5zA-DDYt#3k@Bha$7-EeeiZv7HT-
z7lSrZM%=7CWm}l!2CFm5%CR6O<y&}Sxy0IAUV}`Iu@vLwHeLf0xY1ldUm-2z;%en{
z;8<0@r~lC92A1CnyD*BQg-3S4Z|)SR=vKmT1gtHwd&LE4R$xQ6LrYd<d9E6RrL#5o
zWQt<43?64M?jSs?+oF1jEF)n!8Irwtx;6No#yYYlzFJ5a=mPiv|4SKyzzl?V@UmfT
z*+Q_2G~<`jjRj9wXhy7Mffk5}p6Ge4g)fbTV*BSYz|vG*6JVy$Jh0wJ5G*sWvQQX<
zGV7F<X5)S?kr|vPGG<#Y(CAPdgNt5*FIzI-;^t1FGEQ)5Td?PFq3TZn>YhF`dWD2B
zTjwz*WTPhNaCOFcKI@(_SYwkkL&fJt`wd4FwZqt;he!)&6AbOj2&AwS<7kV5wqS%l
z17Cw&#Hi)ffD2D>fEG9b2v`6Q(OOzaH5OR4R(rML3XytHffcY6UE2m;BUMZJwZfiV
zy>5-FUF^nw?1q>N-$;$SCW$aHHD<GjhCYke_zAUG47WJ!|Gj?geyFuu8_KKrG`yy3
z*Z>Ng(21R>g?5(a%eH{b-fTHgHCA&qNM&tD8w0e64HA{@W*hFnfNfe>>q}b#tSIjD
zhHc;;HmmpySyKT4ty<mA(xQ%LH|Xm!bzi0!HMH(;o-x>SBR6&H5);nWZwt32ILtI@
zU`NR~cmtG0d6rRe5qv(>HY<r0SU8z3stCt~wj=?iGZ%c*x0y8nfdjWlF}RPGAccF6
z+J2EKQ4kLwlMsKw12<Q0lMtRL0E=_C(RO0KdXzUokQiUgck8wsaX5%$kOy}XS>TWU
zK;>u_Yx_0=6CV#0FN6`_H!HbuE^+dN;PHC<lN=9{|G$*Da`TZguMdr*0)czD9${g+
z>{3n|E#|K8$=%xMg$a366aW5mn=x3G!-AK)g`1-mUXZz5xR>WJMqOa^EBfeg0i9o|
z#xg_}Nw=38#}-~V^f}rWqgxe7mjk5h0-@6v?Wpvm107G-g_=WkTo`nw{z65kf>OU9
zP8Wpj(z#X1ML_>`0%T;M@rAF$f~^Dgjw*Jo<K$z&J7j<MzcE<7tGi2w_7Ix(xMK!q
zw{~vF8wr*?$LscN0{2XB8YvfdbXOY*PIq>1cXtn%b$@qxpLcrCj(D$ke9w1%Uxs_%
zcYptPfY*h74|swvc!Q7k1Hiwtm_PSJKPFi}{}yEUYHtqktA+NPc!*K>T6h2u@by{H
z_+6;@zm)h~xOj(GKL}(7lW!G~?+KE3hLxX%mPdw|pOJ@8`DLhi?U?xodU=B<vUt~m
zp|+MAWL6$5ir~%pqNgSpltJkb#rs+Mn>l)0$PZtjdR~BfqCY{_jC!uGGZjpFWoSV=
zY<dtF`eV@gl8}0sXZu-Ddu(v~5(#_gAbX~d!Lxt*bGQ4S=d++UQUPJsJ=8@_M8TMN
z!#Io%xJS{O8GKx@`d)B+Us(JG?)qPyr#vLe!sn2~hr^Vf!*geRHgw?P3jJW9TFKXZ
z=^(|<PkiX0e9*m)KJ0tb`Fpev>M0a^|7O@kx$s1(bq?64TBw2i=?H$(58dNO`pq}>
zPP|%=F9zecd}0uOX)=BANPg9i4&HBmdVPLkh<@!bMcUURVYeG$5PDuf$Bb0Ncwr!h
zd`FuzNZhxUIlafnut;s`#~1uZr<BF{2ZDicaCk6=$N}Q9NIIW|2jnm)IH<#A^QnCj
zug-!HaZDBtXs=oW+d90(GV+`@SIbr><2^`)k_TW<4=@vIhlGY^Xjn)hEJ6!%NnKBY
zjg(AYiB6acFcybHVg-17a}AhCdqRGrc1fI;MqZVoPO^G@u1J?*W0SW-xuc9ukCDMy
znwEl2wy}ksNS~p%q^4o1UaWn8|3YGOxYD!AW6Z*+s#OLs9%$j<!0Gh$_V@Vt`uqI-
z{{H|23LHqVpuu}HYAB4supz^L4q!aMM@)za7#I}|dBi{k#uXE@kbvO=Mhj~~7@)ui
zBgG^HBTJqfrx6Z}47WagXaR%71fD2Hfna%Jix3AXFt(V$YiJU8(P|1g5Q1dOmoZJE
zyfuM^(hgn~!L&M4B-yPhS-RZFVnI?EEF?H$DOD7k1s!<0s7cl8+KqIn!PwdJCyby+
z-!A1fAT7qfNGhh2d@*AZjvirvL^4(;+Le#7o~0@3z|EY4dHMt@l&H}GNR=}E<`fCk
z$mDueEeTmk*0S^@$2K{8|A^zOY~5mvYmahZM=Uyi3_0faXSJd|lRjh`rzoAO4I{2H
z6k|~&!xz(r@zg`qPP>tt)t;_Ec^Kz~WMD}&`CH}(1t{Qv1QuxEfe0q3;DVwgw2(s$
zK_n4Hxec*^0~S;`fCw(6FaZJ+tl$CyL!1!Z019+4p%5d8a76<pv_PT|CLWREio<B=
z1O+ghqQ)mF9I&4X2V@u$3M_mWA`4g?z(NTN6!23E>$Ue@5+|&+zzHiDP~wR<Qg;Xg
zFo1x@P!_~fBZ?|gw`Q0_wD@9-Gjix50uXp4$AuZzbqE_IkRU}0E+|l<mRx!n35FE{
zDI^R;8cD>HQBL{I{{V6x0HcgoHm4(>8rrF(h%*lGW}9)ks41Oa+K4J{ej>r6k6t)B
zWRWW(IVzJ=Q7UB%R0>hs5Vz%6SC&U?*=4J2;wVf-PD1%>uq>*&X`LN@m?sS8s394s
zQi%#8sm#Jz?VOy_2<EHCiZUx|LEb9q0J@IL>!i|JDlB`pxd*Eg$PS>aqNc9v>>>3o
ziNz8V4E6vm7G;a4o(xuO@x>TttntPi2k2l85Ju=vL}CV~<58jFNXRz@lo^>C2%J`h
z%foC}%L*h66T;3shhWGj8Z-t&&}16I26be9AcO}kG{Q!e{dOuuhDOC~P0Jv>EW`sn
z^Q=f-;h2UJ|JGX1oOR8$$b1oXpX7|5hFo{;vk+{EkfSwJX8}qQ5!D2=&_qkaw9_zL
zN{P(v-Xj^x;i_CXI5ck!v&>|p{V&Wo>n!)rLjx|f(Ksf(bkjpTy|0y*50Up6dz)Q$
z++9mm(cq;&&V|}Iwq4KSu%%4h%8;KedD`ApK78t2WWKfBbN@|d;GiQt*yw~qO{~9(
ztKNp*S4Td;@60Q5v~km0*!o;-_tf$F?6>d!`|!ta&&MG@H1ffdo!oolNu;1ci7@EE
zYt-O^4ggSq-qN2ERDgnbOaKKCj35d^@d>$nf^&vI!3mN;g8!Ln1aq+6u!K;ot%YiX
zNKnD0|4tCV0S@4S5`>^NJ^%@Dw7`G|bfKwQD2xJHgkM7-K@0e%AsEKc8f-X4%Qj#U
z6b?a!MD!aBEGUf&elUcFOM(xPXR=uJ?J_`Yg$H+tz*}sQj5;)7tQOe7AsA7D6r7^K
zswfQ&a?pb(0O2S^7{&pV@Ovjr0u*V)!z8>hf?ENkRPu;L0^;x@92{a7z3|1k^lywT
zETbsSn8`FM5@rl^U<_qAM=D~FUQQH32Wg~7$XSns*i++WQaOM@qR|P5Bqb{ExC$LX
z5(z?-pD>3>%wihznEaq${UlVf{CP1{l8h4&$8wl7B|!rsNWlucf<xb6WP<U?9w1Z@
z|D<$$Vj@<wqV0yDA~D?XDX;WnEI)|^(C|ln)%m71h0(B}4Pbm`sb)B-3C?R~bDIIQ
zNHmuQ158vh9e1$}4(-Vww+-Q;b3`W{4e?If7!I4-<fhan`2>t^XrY*z=12r;(2yoH
zpDZ2e5Dq}jb<}D?>6FGgh0x9cbd*@}{9{EZ$`Xqbbe|+0!cR%~(SwTgq)G5VLz5cC
z%b;`wD%EE=|LN41dNZb6oM}zXiPMexF^fH2>RC@0H7*hrBSu|mL4~o?0rXUsR*mXZ
zk;&J-`t`4XwU{zP#!L!5Gh8SQfeVtL01d1J1z1o3k~A=Zhp}LujeV>t7I%OY|CE!g
z8a*Wp?1qG%vLK6m4B<R0l7bR2;I*(FU}g_v(<i8C1uK976P++y$THTkv=xG6SwLCK
z`bz{TRT07VSC5Di3x}<RZEUM*zR=Fm5T}Kwa3@>Y2V7RB&(fbsk(&g?{#LWwC2n`W
zi-g{8_GF#?tT4`b-TIC;38qEuD_gc&4MkVF43I5weM{8=WY?qVEv|Qun_L(yR}{P(
zZ(<kQ-T_CJyT(0laKlOj&(`({^v$Uu?ps<Ih~dCMWh><RE0zCBSHS4K1&P^d;v6-T
zyd{2cV0X;p9{c#mUKlKd3adErrYs2%^g@Pk2m;b6b)MSmCSH?Zf_s6s|GrlA>}5P?
zf>g%r8y^TGAy|Bw70_eJ=^z0JG@yZQMOn!&Z89cWaNItQpoSM!;1irn!bh4}6c`P$
zS-Z>`5jt52bO!G&B7Ed}jwcCd9)O&Ykmx5wTAV|u@`piO)>CTP5nT4N?ZS*3GCShW
z!nkyJr9x=E(dN)Tt#cCYygMWF&(UyZGOR1@1Xa_M%2u9lr|bLajfA?;U>37bLxt*F
z_}UA_w#XP?=u11}8OYeqwzjt&KOsAW$eubZ7&Sr&93o&V{B6afGvu#xt5&A-qKBYQ
z$p(#l!e1P~kyO7CZxxwZdo_uNyY~p?Cp3UtwLtf62EJl-BZ1vN|Fk!?^1Q}9Z|}KN
ztI$@NTU{(mBj427x5Ksf?^=s{F64eG!)NBN6s&vU3NLxaoB5q#Te05e!?(U|*Y9OZ
zrBC7*L(EN{1dtCw<b8N~oh6<{2-|wxIWqUqlm2j+zdNk)zOsn_nVWkH!RQR-H;(*0
zQlP&==vTK(*GpLLV|0Du+>X24=T7$ld0S-tAXz<%@BlVw;9-q$zymN4K!}}m1sQmN
z1z5m>aO7JA6Ij3mN`P=l5A6U8V8d-5ANk2wp6`AK{1{qLf(e-3^fXVxyzAQs7g#{@
zDp)}{3cz>^JfH(Apw<C!`v3%JASwO={m?{DqZVWU0SmA|{|m~%dC61W&75fg3r<ji
z6NI1wLukI|nLpajKYw2uz`W+`yaEd_U;-)_(M1Pec<3X6&wlLY35<_?<;y|vgzo^v
zR&Pbxv%vPaM=e7Uewl|6!S^ts_W+wVQwTVG3b=mxXL!hkc#6k(j@Nz8S9t>{eg^n;
z7`S~?(SU#VfJ#7mr-yo|VO>_#das9mvIh>ecYC?_4Z8;tz6X3E*mn-t2=jM*$+vtS
z2zeRkemR(cSm1vEID_EFfwyrH<#&GRS1Q~gg2V?K?5BTnFoB7;c#Ri?-lu_=SAd)M
zf!{|2R7ipdV1g%@dV-;X<UlAb7<;o9g8@i`ymy1Q{~>%M$b<CvgWM;CASeuQ2zxI`
zX~tIpB=AU@VSebRes%YVkQj-Qm=1SmKY52gh;UCB;U@QFQ6iv!xrHCEVF8(O7}QY!
zm4P1)zyjSwiY$QwzoUsOk|CPdbWXs3<X`})SOQYG0HARK2%rM3!~k!>i!?(Bns|yH
zP!fyyaHR-~>2Lrj@Btj~0U$tmt@w;$;)>sNim7-4tN2LEml-NB2`p4m5Or~VHVVu5
z5nFMNMHLA)M-IMd9>J(bs7MsyXhO*tUj0Z&=x7n3Xda`ejid05`#3cQ$&dFG60~?v
zwy1jZs0g~q61+$azj%+vQH(KjHptkJ?8uDe|L2Ua$cEAIj{=jC!Uzrs$%+ak9gsqV
z49Opy7?2w>kfKPE-FT4t=#mOqk~#8^56K@9*@hlRk-ON7DmjcCd5p5Cj3T)e+-QpQ
zP>~pMk%q(*Fi-*w@RH;xlam;hVmX#QR*5kHZUv$MQaA?;pkqY902?<7ZK*M(P+JJ_
zVRxwy3s767;FfA|0#Y^r9&l}U;Fo=A32=D~lC(sfWmJ>z|Hrqn!8U4i!)T;iN*vud
zIs_cuNSA=48<B2DcXv8cN(4k21q2BZK~TW>^5dNUga7^PdUl`toco;5^}eq6>jfxr
zKs=L0ge2zqScthDLE_h7iLUv6`C<VU#KFDT__I88OFobyKd;wEW+D%2m|uRBLzJH1
zsFh2C$$eFu8>Ut8b3XrJh8gI6p2JNco}p;MA;;xj(Ti2G|0KcOXD;B|Nc)MKqInDQ
zIfmk;8}NIJ;??}(buHvr$U~mqVue5oP8^W71$fV!gUF|NySK!lw&dhq(dkXe57}3j
zvf!;Xaw1V6&f?XZO8}cFh`YrplL5hi&iWgIduWP-!i(U2II`ckcOkD3a;4OkrL>`?
z^aZ7imZg+^rL4b8k&Jg%zcMb%GKTl1JOyR^ePx2{Wx~J9h?2@g<;o>3%cVohWeUo_
zbCy3N0x7~lURAHO(t#sJNTRcHRG%VCdeLTN1!fAV@w@y{UAeL4UEW)1E*GSrO-_Ua
zaiBt4GuYMo*kfdo*1s!xM*&PYr%$eklwlSdc-42mD&K<2z}wL3;DYK<xgt1Fd}fb)
zpdAq9%iw5<%vccR1Aw%4Scra9C098!jmkfhtIe{k%?YjjucdN_r#My{Io}3i^r0Bi
zLZlu0)6mtXC)L*V)itcw1=rQ8c0&UIEK_LWLjZIx9p=i#P~xo^k0sqk37E8yKAI;@
zX*FSbBkzN$FQ0~VYm<_j10HkNHd!_<hc>R(m9<!6n0_#O05c24*eqM&zm}Ma#hQ|&
zjS?<6YYpfdfMi!M*%H~A^cFM}iP$1uvK;c09Ke}VZ67gWK(tbhYnCm9&sw1Jr5ne(
z-IIJf9AfOd36RhHG8y+)424gWTOOSWOVNp>M+s=$W^nyl<Qggy$%&WCbK*~E6TB-?
zd#<;=rKHsN1$oPI6Z~<96}HRuw=1|85%;@g?a9lIh<_Z76Ejj!bC;O1H)we;QA8y(
zKN_%DE*TZ#Qsvj?8S7eK4sNtp_*5?2N~Pe~PL(<@dS9pUL1C9$f0xG}vxk3bc!}t9
zvs4~%J&%=y!l_d{xxl@WN|pXu{b1eTC2a{RV{u+khl5UWj86GpcT9zrN;)X!tA=x7
zo#(UOyu#js$6`<2>y(ns+jC4XYWJ-_=xJm({8lmgVdCc{W9MRG@0M+8QQ!JB_R$k5
zv%main)@cocu@AUx<aOb5&40!Lfvr7ht9B?N4E!1sw!Ksv=w~9MrGS(o94-%doLQl
zYE-D%^Hx3KpYY|}w|j45E0#mH)Nh*gtAD(I=wxH)w4SiIFwy6aisnSoQy$lTQ*VN8
z_vCWdpV;I$geQ})M-vaYB8M}6!=voXqxP4f@CtEPed~AmVQQ;kcc#}c$=6#2zJ@^o
z<hs5t8s2AdiKVhHt(>3Q)B7si54^Gr0OmrBc;N!MUIc)^K$>A0_hGq#QH8KZdJ?EJ
zeXto{q!237DmW5r9>>HNCzm_+if*jjEYv+O3Of@OBNKni8{HQa|2j7wZ55{I^4vxy
zW&{`RXbuqYrtI$4^D2)wSsnFee&ZWf{qQ!0i4XR|yOToZUh|*+bd&jvHE5Q^6eZcc
zWWuCD6OZi2wOPM<GVU#8vEF2{AEn9NvAadH=kp*333muGkk`daN!d4L3ey!<<pF|-
z1_r_&S)-QP>4;in-wjD;K6%;E^tE?>F&0u{H9fF7Gjvi`z1h|OcV^6LcA}_sc(!Xa
zY<6~Yc24ls)Ib+2zT%zL+vTvguNmI14!qsmeEV^>_|2c{PYQE;R&!rY#CCMe4+iE=
zHs?+^kw+x#BBJjut=@^8&0QD0`+YL&<ofQvfp-9wd63YXe<$yLD$GNR=i$}^5YPFG
zfq4YW0_EFw(r@!r;S2P|3k{YFgpCWV+5Z-hsg=zC-mzOR@`Nu6$}Rp%Srpt_6i%Hz
zKS7Y`y%Vv1FCG5=qIQue^}WK@dqtKaIlcD}A1tX_FZs|dk$Wy_4=(9$nQ4Z<(_{Hy
z_~66WizVam59Y-mi0nRCZhf%%_u(J@1Lnc9gZ1(w<g!!ovfI`Nm%(MPf6KaC%ia%G
z{NKL!wO$D>Uf~U23Ef(W2w!kw00Y=>z;}LB06>r*@B^R?83)GREf`qYnAq6ieBvw|
zoD@RRR3fs}VsZ?U57@bR?+FQsN=Pu>N3qB#aVV&9Kh)$#X$q+632QzQ(m;!7q9t?<
z@1xCR&}It8k5StCC^Ku6xwYzJTTL5BZH%+7oh#bO-O$C;#>v^#-P^*;*UBg0iC?g7
zK!{^Vxa+g$ZsC!h*l6$QIN#WWz=Y(G<g~D~^oaC~sLbs6-29}hoWk0=(&m=h_Ritq
z;rH*~A08f_pP%2{+}yqP|2>4a_(*R}LB`Z<m2*+IH0C$E@zKWW&8rPQb>Bh<H=BcX
zg$v&uc7(q5>i=}s6Q<w1@%?%r;@$T@x7f(2=ok$-g@nW;1p;o~7u-k+2YPW%9d2$u
zaT-fOF1763h*z=7l~uKM^$m?p%`L5M?H!$6-95d14)Mv!1fqg^yu#uv_N2U-8Wcq(
zIMu0{@S4~UjW7DwH#WCEe%jvI{k*sT#b<CR5sy^m5=VQyEw)&R{uOmyCt7~+{{dJu
zbgRPX4OG3Kox}k{Z-~=WOCl1t$)_6!#u&{LQct>!m!*T)QmGS=O0ek+ONA&aN_N(l
z$xx5QrH~&E+P9qIM62>>qsn&zM8UK@nqZzB5TOHha?*HjoB%;W&pz!3U5UYrCb8&r
zHLSI}JQXs2lcw43$mu}+Qm!H<rT;R;TM!gEZcR^9w>JK`BANt@w3`IzR*WRSW@9}V
zU%Yy{olf-eo|A3+STbRR;{a~nxSeE9g@n^|Hdu3iJa@1_T}U;+ZdHw+I+LP&OpRJJ
zDFxc(IJ)&&+!$fex{I&sCns|F5^i~L`PTZq+o!p~{;TiXqd||q5}QNWN&E%qD1*E%
z2@(8yfnOVrh^a~8##kUHSJ+ML6gEmcau|z6keO!~SkW8bc|&f#t$ae<P2E_yu*(Nc
z5<z3^Efy?<S1FC9cXL_AQcwru{1L}*o@ml2``E^H!ZeY@gk-~!+z3hRaJaHDa#WI_
z2SG^-t>9CEQcz2c!3Aq@Bp_y-XjuxkjVwNeG3j7G7ZZ2yOP)iL)<+RhWG*wsHwq;>
z3dB-%Zjmw;prR$uDvK(*V4yXWpo5+RNzAnNVvB>P0eak|B$3$CR1#TL0`VdwxI9hy
z_yB=j4yjH{vf)=LS5}Z)02IO(j&h#DfstU90rUt0HgXK9tfp;MuDqY9eGI7jUEtc}
zNb7#mI>}Ri($-K^3l-&-)B+NT7QHF4@=`zGFTQ+R9R<4|3+L^QTl2?~7?U7wM~JD1
z&m!qQ#S!blzLGAC46Ks*fP5}#eV(R%DHBi~pibNnp|~yMFGCzux#t<Fh9RSA*m{ua
zQ5Ue*ug$8=9^VIk!e5HEbLD#cnBuFRZD{{0qpBKp)FrE0zu|NT_&A-b<b4Hf;>*Aj
zK=V)2RPA227tWv5@ieC*?t`IJ<hYK49R3qOAd2mQ-=dC0qvh~XXq=krQP<fi-Ls=<
zWojc%vw)2^CXGKf{Z~A%wt{m<#W_4Fd`94ROwVs6o4(WEh(nXUGWN#Pgr(rbd(g9=
zt&vR^_xNORH(x4pwk7v0Thnj86lDJXsWkz$m0irsv<Xc$s~)nY<?Rr?MM<oAa@A4@
z#OTHxHp!#-&zk&-uFfZUoB#fpooNkHi7rH0L2o|lOYBHLe)t5={;*HtbE{Fr2$b17
z{TcNp)y^P-+nhPpS}hOn#d*r+^ZVV4>Q_etKbd?UF2C4VxQUXkKwRq+E4NvE|G4s+
zqoX+lk%9yBY7T#S(EL={1wi5?h1J$ov5Wr9AkniQxkU<a`}Ec5Gy1BBNYI0XyND33
zCdE*-$}PfZMO~ct<Kf!)nd>eHp=Q{w{MQkUI`&H^-qUChmi+9|Cx;|`CN<7(ITn0>
zm_x0@d{{X2JQ+j6d0!YBO=XM&(I=!3@A?3y)UetSiDY079FQUG7O%DFx|k+2&m};;
z4H3bkz>4!xu->G!z%hGrws-*j01Co~2EsreVjmLvrpLxmkVs<zY{N*_Kp!9>GdhxX
z4DZap>cA^@rnM@2%7vxoVkecw8v8D0o||*k7^5Sh-rJCWH3mx)_*bM>+hDX6hT5Zd
z+LTN;yJyK{M^aj^*2E}fb+$^ndrD6}okCWa9;nNVV5C;4W8=pa?BqzN67uOmpf123
z!YX~UwsczoXe5!cXp|mGjQDhbSYco5<%X)TS&1Ji!C@X$OpV8taoJt-{G1D(GvY$L
z%@&Tw750x|z+|D+L~mMN_2agIk1}?(#6ziaXxWQz*P@Tao7dhJtY22ij2}S;v4Die
z(rPdC@WV$k4@-Xg8|t515%%^}mOBA!%v`WW?de&3=xI|&3_q%v|AWBw3G|7Svbmr3
za$CXA28vDB`(+tT>^Ok8Kbrr3gLhPC>CdL%xAitx$9i!MpP2&1?taI4AngDK>z-aO
z&9NOtehsM)OKouA)mfXW`@lp2jfA05ibUhK1fkQhKt)^><==|78ofq0v*fokZNEBO
zQX4&-b?&b${_5&^+vpYKPP_5rS2v!t$veKD_Vtg{o=LqX-`ttaA;#|B`P3%=YMm|M
zbq<-W%dGKm23X>*&pN5#DbV+L>qo)WfaBopHW8~&6lDtXnR`n--=g>vaVQMJrU}#|
zGI(<N`|35|*DfUTB7wT%UWZ3Zyrk~SRB_2`QexK8-rwiIv5z~$>IvT1`?EV_pFQ#H
zndVefDci<pqa?h-G3kN>@zl?*$3@e8JX2>9G-;Jg<r6`sX^dHJDXN_66p6u)MksSp
znEvBr0BtD;O`XU7B!A+xG1>N7bHdIW#X+cc8X8tjyA4D<hL5(1kAcSQXLPV_Y859A
zDS#X36S4~f2i*g?jeI0hIO@<rg=HP-;ui7I$OXWe_qoPfs%PiWo|Y>AU(PXjDN?B^
zrMxO#7BDYeD(R~nSbQ92E4tmU=YH$;21rF;9>y$yvI0+weUUkk`GzxwE;>v|4hH~o
z71Lfxg%_nq%GuYQ{%rObWxW1)vpT8YCG<mAK;A7;M@2N!mHZ5_-EasH%1D2{J1Rq6
z3sr*KMX4(E&yJE|fs~KcGh)WL6v$BP8cl&|*vg8)uUzVnrw!@;d;g8;Z6N`DhSGOq
zR0YidUZpQYNejnSdEYeAL{J9nW9bbbhXX$@bp_TQZ*di$$=efZ^bk|qa6bL)(lD*x
zJ8kBb1ndS7h!PDGTVWu&*>FR<>|sKM>>6sq!$;z{JsezWmk%S9r#6~R%i4LNwG#%F
zCR%>qiB#qQ6=#%1(JvHu-U_)->v1)dfo8oQ=v8UhAAc@*w><3GXlz0LRq(}K0#*_a
z6yebm=Zk!&z|%%ajwE#Eq(2VRkMRwGxO{b6LAR#Qk$Y3vTLb>iz~5W}QyPd(h*ozt
z)`x9{-vo6&TdWZmBv?e(QB}W)+AAdeG^;~;*=1yomw9xxzVY8L7fj%KLvKg39}X-?
z-`gH3W<36(!5KqLIluf70!CSGlk$(8CZ7G-e)#3p`-AWYgWJDZeTQb$MgIeE1yb;_
zL>gvlh9AeG!*}d&3!3O2-ZbWfZEoEDcl{dFPK1qG?QRM_wDo45*P%EAk+;e{9;Ms9
z&`#%+ZQ~>)!2|mjnQt!*BoBD7U>7Wn3wTUL&e9RQWu^*H1#jP{<AliW^Qs-b;jcL$
zA;CuKl|{zcM<z?Kh44be(G*PC&lOgqyStyi#iB{acwUKvg(U#L{rqBh4M=1FpN$j+
z10mUGk6;eqQ6QB@O&G%k$^{Wc1qmp*4;I9j1?)VZHU<mSM9g`|s;0++mqIti<H)F=
z$sa}s2FKs)e*V|&q4E+{wYPim72=^W@9se?$)U1=IT(r(G%pu=G<LVof~CoXarLO!
zV-l{wahANiS(Gf!!GT8yB(-lqFEu4z&_kNKIb|++0{AF(O#sc;k-;*_9eIyK>0_ut
zdJWX%KEuFUqIrP)51t$@o%}t<1b+?bR)f?_&6ko|HfUvTG>{YxEW}fd`|CQtPkv3G
z6782dnU&n#k-Qm{lEf87z8a!94idux->-s%@zk#l{YzJ)igBrUD2v*5Dq2z_ASUH?
zd)l|_v|kRYGX{G784rjolHtASeU<UgY8-{RDREUG#2E-pjh?bKpl%Ci3IN=6Jo=}a
zXn_S1b9>X88-k(?Dc9U-WR3amgtV3PL_Z-%d(ygji55X%LV(+s%a8-!dv2>Ri0Dh9
ze5PQc%u9z%m6psm3z-D6QL0EI4P>@DDw`xE+q~9t#nD7Dn|jZbUz3MW*#s;e<VZHp
zeR~iDwt=AyXmUa@PF^<<_e4k=)R_#Co0Py6nx7rEmYdO;-H10;J2Q>2$cqcfvjycf
zBFv*r%)i9tr8DGbSkNY|!Sg#Uily=kdh?4I5ZP<_IEI3<5b;;C1yvyhH87sa{DOwH
zf+j86`kR6_*}{$xvQ~@2p8UeTMB;1)ASXK4`OJFf14MTltYA>2m!4pUvZ+hAevEpi
z6rH;sOEh@{jz$A_!DO>jqWYL(y@lfGUf?h_(Z&tYhmfM}e8Rcj!V}l~?+Ab=G_PKG
zBjrIwj^0mh_Fah5VTGb>e`;ZA>aZL<{I@7owoHl5{F8vQSN~+87YC$pewN$6Q$i$+
zxBvrVA4F*cy7WKU(urjVWW9vLP5j+w0GD^!kw1u68+0if>LY5ag0^)r(p#%0WXyrH
z*I}j+5c;?{`8p!0X(IA<();T|28fF9(WTz#3itVPiGl~3#}Ib8GUGbIToV`x8vOGf
zk$@AS5@Y2~dU-?;SXdp3Ng`4SC41sldQx7|hOV+}sbc$0Vq#g%rEQ;`SGjahrZORV
znuD`-p}+)INLuRo1X5XiaZ2QO@HTZ&rp=XKrnqNI{(zR!oY2`r-7(>}6Tesu&v1=f
zt&^X4^{WCZIi9-5!&I)8jy2j8X}>A;&a2bP9G-|$dRNu-5mb7tLvJtM1A6TpJGCjh
z;dORu_3q0K1qDtT+|_bC^-%Fzd$;OEH=ba4TqvBMRFrQ(jG>s;#e7?*Y8hA)NL8Q1
zY(CaNYtY1x;%7x0bMJs`?Oh&l-hof()7crU)7^t8T$+_!*cX~xhZTQlg9mufED|ky
z{2r8Q%_7mR<@|&tK*k_3M$&qBg$09w9VR~da^JG%k}8)gOSY{#syRAWHD~a*V;U7e
zGf0P?v!cEtv=kmdCye6a{NoBGmM8hjmp;Lm*(I6trDf5qhQY7BNz4VPLoqGesJrp_
z13&-DbVPO;2_-IVCF$vW6$D^LLSW`i6c2zMP#^X&KVj;+1shWwWKcGq`vC2HFLIE(
zTwV(+5PIIHD><GbBcj1NIv#}%C(Awycu%BR7pF6XclW8HQ8%M=#j6Q+RuG3sMbCva
zKwcd5;0LFvc!caEs~Czaqo2dOANl#0$8S@eFL7Qx{t)G;E^%Df<$O2!pEktT9?Vxz
zwQ8Sa+ta9xt^^(S>OwE3tM1cZy(+}*CR!Z5$)49c93B4f{`HP|CR#Io0t21i`@s^`
zlmWw_nnD>;*kZta`+;Z2gE|}mnMf|yGYJExC^KHZm=RHzH%4-A{BR)B1jE;G7YXh7
zq|K4APmejj5u0Aj^w?nNzKu!BuJ{*2dAr1)m#9SF<}doI5WVg#8%+20_gV<ch#ERB
z42<C)f_Nyu#i_h*8{B*&156n%ii$h0PayD+K?(}q58}TP=nS>XUML)O6&w7}&-oCT
zogEay$xzd51}@dWk29&MGd~k)@q5`SO^P76VM4a^f)j%%Ema8Xd4nGkkXofk>Bxk5
z%dnjXkHrzao|gsJ6OAGsKhVFHRci?)r-D#M-yJ^WnYV<R2~t{8jfvW6{Hm4H{|iFj
zVGsoS6PQOrX`e+160)0*U+x97P~hB|huBU~Lz$va1S9Zeqa_V23JsOQ{NPcd`$6Xc
zDkNe*x_do}CMz0vFRIHr9hjjgAU5H_WW3z%5r?E9@vy;s#0oFiLIJQVJ{v2er^)!d
zWuW(?MmYW;LhG-qH;Gj6kJ;hbdNZV0zp|eOV0QG)%(6UbRSKS)IQ)q#xUB)y;W1-$
zGOgJFNeb{;6`!jqg5+IGc$&-!h;}!6fIli2+w15J^3IOaHNFa)x1*STHZ3-~5?OQs
z;XdTyt?4zPm>*MExHvF}AP695zKn>8%lJ&n&)BSTh{!dFfIgZiPi7vAZQh(y`8snR
zzcA~O_QG%Ro;5bwuZo4>4P`lvOmQT+0VpmEOc@P&yDhKOxX7%t_*z1a)f`MA6KPw!
z!2E3ix%F<r3h%88iaVKazJOejWZxp#BSAz|Pi?_Ejqe|CEh_^*kUszj>&+6T&Ig7g
z;HiyXzS34MgcL$?4wH)iIZvGm#<Ng8gE?>`y+Q1#XZHWFk6aY(@Nw$b2ra&VdGEEa
zev`ex=RWkSsi=7Ax2$S>v+{%WXDZ+yD(mLg2$1R<10$G*@>*4+$R6h!i$sheUq;;w
zEa~lPnqEh4N_!v3EZmduh4o^#W^Am=2EFQP>tnh;A#lOlsi5#J*vl2enR(~;@fe~7
z)rKVfpmi~i!TM{&iztvW5;!HsHYEg3Fej`qPmFR=mXHKQ2P?nvkf;s@*G?uj$gC?H
zB<*cY$T(<Tkj9ZK-OGQ>e@l0cL%%nL3G<Uve6n&%tQ<*Lp@JL@e*8xI-mCG$nILcV
z;nu<I>-Y(5GM~(4YcLgS0z283$zJ@m=ciqw<kjNO!M{3+S4PWqXVGK23uA*CxU>^<
zZBV|(P>gW+UbW7g1_hc@oi$zeoF0vpDxZCkn3Vz=N=fI^@{Wi6noMo+*J=lojwWbz
zRP6tk_o6T+bz=3!sr0^P1O=1Sm+P9nXG?pW!rB!M+5%ArjcuF*dph`zR^=90g%}_z
z?PJ>I{v0&zEj9T(U+U7evIS=UVdnmxi*V@Jp26wfGuGoX5(42CAjKJ{2%cJ5I4y7G
z=)P8Zwqojs!!Hw;skbR<!W(%9s^@!QAHSB{P&S_Gx<-6iq;8ihIoZH%EzfL;X|?k*
zL7oq0DI7_>#p~aX{-%u2;`wR9i#9GqWHaB}X03hnckfZQY8I`Q0jTmNgRucPJIf~;
ztWlfM*%3~F{|4HXV3Nub>^)sB|7MYnCjNk?E<H8wVPgBa-5|&!3?N9|{SGq8T0DPw
zpr1(2ok;-+;O@QqM049V52R$juQl<^cz@&h1mX79=x=Qjsytt?$^QIbEX&e4uf=!X
z$TRL2%)FnZ-lw0>vyz@g7+l7jOh;S}Onr8pH+c%k_1?Y=63tOX=h%qmV)l*Ej)aj7
z9gFu^$h>zQkY=}}I5pGe99kYHoAaM0vc|@2q#BM+F1^GgSYL*vpRRx_f7f4_=Y+Z<
zrbcR4nrzqW-i15td8(*9E~<A?m}{?qnW)=qoYwVS6*9)rT<0ryk_a^GdtNU2P05Sw
z3^vx>DGTP7D+iEeo#^lUo12E$`K6zJx3K*Yxcc4p<WJWl=Z@!p`d<G5<op@9{eu^=
z9%B1D_T=wq_McVPtKFNjqY$D4t>U-O!TY^`pPl{n!2DbMPQCOBGI9e{S^lSDTH=EJ
zXMzTAG?VVVVp@NJi%kEIiSgh5qm~mk;@uaJsV9U7PybHk{Biy5>IDZA>|p)GSy@!}
zeZBdz(QWWd%iB)VV)Rk=hP6|<5x=^$WsZ%_PsRa9Q{~FJ$bTeeQ%>A{k6)H58g9n?
z1wh7Qe$)x-8>?pwtRr%%uNId@2bncRYsiwm9Cz?!^T%I{8%b~*?d%;6p=>$75#F1b
z6E+D7dHQon(E)C3P@j~Rf|QciSLX;VEw8Mut#52@ZSU;v?H_zSJQxr>IrBCI7aebu
zT#L3W+07p0@EH86)qh^ks9z#9Dzw%eGxmy4gwcU<vf|TgqrR4H${$K=z(fK*epk&(
zTq3yuX12`v>7+UqNF>R}u0jaqAu{bjo<~7Iv0SlvVF|to6avH_s8xMLcMy5vuIpo9
z<MP*53b*A)mt|@6syyF!ALIv(ze}PJbnw8+<#<@MJ1<n3^ydhz`5equQknjohUX6C
z9gp@3ea{XAUYKHI0E9_}H-9a|Iqkn99;WuEEA656o(MdD-H6;dIAx{vC+m>$p{H{4
z7L5>V^-ya;jKn<(_u?qHWPI;gZs1sLo@i}CWQDY}pbql+{N^RE*-(+}bhr1+lr^uz
zZ!G958A`N8!qJ|NE!0Bz47Eo$sfWyBv%5jXTtGPxPqf?cz(2ZZDVa|dJ^^2~o2WSY
zzk%1?6UgmqNKt>5X2`|GmvmI)pkMo6B+}|aUnmlu_p3hShbN#wa&XP>uR+Lr6sVP7
z$+xBLMGoG4^f!Hz^&^B2Vg$!18YRwOv*w>Q_kl=UrW9`pTSycc^HD7o^yFEQQvx1)
zXSJs&>X)i)*2&FD+^yTb2?2=1chgdLydcy`$LG^g?x78}3POj&ieCBiS)+FkZcZ`_
z4{$2gxsuUJ4zV<32~m~(^WHc}julRjkW6y68cSiGp#)(R@Q$pc*Up=Zq!D*4Z5<%v
z<0E9yH33CZIhfNB%CAhibLVKfUK%iPSeLzjq(TFF&uz)LJFhAcE~Z5gi&TO@9!*KE
z&@sm@l|p4imEy=`wy`oEo%_oh4=Svq^vB$|k4&HWcbX=`Z7{Gn^4&)490HSmyAuQd
zVXXv}WCZBM(edF%#<>+;Y#-#{b?(0ksBX+Lo8HdO{U{`t4g?|`)EvyYlUOj(x)R}C
z_%NGPlQ@e;?_a3c*cy$vI02(>D;=)W53RvwL*^-2j+FrboEdHCl3_N`91}G)PD7<k
zBx|~mzENzRs8!jjDfqDWbp31dFqym%sx(u7m7ec$B!uR#5|&_9J0UU_jyRMgtRze?
zjcG<B`o4sj21lOiKgo-Y7Du`OqUkV9_!!E?X8;KOSz109jio0FLI-6=LEMNiNcw3v
zu38|JOJ3!4*t+Lg!l;I3n9r&rE5{yi$w?m6&D70o4HLmi^DeDf-wvKGXYXSC7);Sh
zkoc^tj++B1j*_f5(xM~ZU;dDN@bf`R_v3p+(=FsiBypt|?Jpn8U{joTOPGK#R?m~|
z2kP!4u@q=N+o99OYPp-lN6<Z{$eZJiw3Jdj8x01yAHz*xw*^s*fGUAE%L`^A_5IOy
zAcm-`=D)!B=l}W9tAL<GK#peYzC8Y>>Y|s+f1X{OWa}{Q>@LUCzjt2F^pD;sgBoNn
zOh6A@4{h)28vOQT$G#MCInn*CaTp|y#jdvGsR?<#OtxkQt!>+NQR1=w71OT@2wO7T
zr?6m<r3F+Jji9;%HwAQjcGB;P8I_F*W5+HeBax9JvD~*WD$^Gc2sH1p6_?fs69~Mz
zKkV2k#@)??LUPI|*&n&9X}8QC<e5NbP~v784Mg1B)TKbwB)r0EWK#buO2$0nnTa=d
z@3Q6;IUXRN)WB6aNi-`|bFSsgJn}CN2YPr1Tm8>>4OZ(t<FfC|G2qYHC>}Q*8q*Sp
z4x=cpI_&4B#=fk$uo}$5>9R}u0p9&B6yns<OEGVU4Rz?tzKMCK<dvEyD*lE08%3o2
zx&etXgFS<+Y}NDpj8v}}AoG4tN#rtx7}R_C;b5LYs#jJy%RY?$vp8RBDZpO``60`+
z4NQw~0I;AZcE-?=DsL~*5%$^_Io_Z=N8N0~+wy#wD@+@E2Oyh2Z!OD>;jLz!e>GK|
z^8JhD{7gevk+lpa!{=>uuEJThamL&NJ6cI8wHTK84RRXwUSsYCV<`K)8t@CGJgT@p
z!$`B1QXfFTgEWE)opBC&WVGDI{v@Ha5}4hTtLlNX+ta)RR;IX^Zww}cy`D)nc!)Kr
zZ^Oz&j877Sh}(nsJF~1=P<FNL=Ioe2?S`MqB#eP8C5I-k$1GS~SIhT_DIFDqvRn~d
z0^lyoH<itP1YUmq55OH5h~|$&zfvaaBmG<$QYzj`b074xrV(y$71h;ncGt=!$?j*F
z@U$@l(e@y19$M4h(^M1BDH3y>Re5#G8H;)RogX;hx~IpZ#A8D1Z7a2Gdk~zDd$RsT
zv<LGKX9TN{8KsCXN@wwmTI<BHU#^g+Z*iuSD4F%020@Y7GqLP()Wg5g;6VYFKI*^L
zqk-m7wmVAO512)brLR;-?RWSoaT$Sx-xF33v8Y^x{eN@Utx`FA^BBiZ$A4uekF1|Q
zyRF;-=9zPK?JJA6^=|=<BFC7>PASJ`;%F!1`aA<K3U>shzp86g@YTelQ)3Svxa5Oj
zbt7;qUCgsXQd_^oLK=F644E+?S_DmNWR3+9=@u+X+5w0(WBIsNq({N$7p1Qlt$ejj
z-ZB0y-sivCg}#b<7opG1s(+heYnZO2_-EsiQ@$}qQDX{Ha*WSZ9*CuIm!&VJ0zFAR
z1ksz*Luw7AT;I*R+5EADF^n?FK4-B2oL^7HI*e3GG){-|IfAF1y4oS6pRLGkSNgyG
z?5Y8HeaY7NSU^@>#=rv9aPFO-`1OM(%GOy=3|Q@u^XnCXXDmSr_N`Cg^(Z^*dDm<{
zvu`N@!*p`Lp<n0y|LR7F#Y?=h({89mCB7P|l!56L3ao|A2^cm7d|fhUDp()N(kLS~
zL(?t4G@b;$%WN>U5BdASJ|SRU%fKT0+4k}cO&@~nLnej4JF7qZ7qxnr6BQrf8l7fM
zfE_~L!0qQz4`--E%@Fw3{Xk+v_Ns#WA7%|b!d!BD_M3qi@vDlUqk|<kbiElBRDRzB
ze2;BpTDC-`{_h5SxF=ZUS^K$UiR>{Oc`uD2S|;&n$wl$ifHa>lpUvUK80~U!5Rt))
zI2t7QeeIiN;S&ed`6FTfV;0czFsQ6KBS-g!l`)>D!{EF1>)KZgDPFJBuGA6_jNiWD
z^8IMkkujK+Df=ISIV`y(G{lowzO&YB5dHQ32~f!anx(2Rt0V~^WY_owu$q@48^HHk
zm<0W#Q;)ciu>F=i`|C&0S2g2z|K$LHG2a7m-^X^p2OPe*=5YNRgZumOGvHnVDAxUI
z5^J#B{4f2~HL2#3<Cgp<a$e5zu1olW7;tuB><zJKfz%=|XPt^2a2TBakBK{B8WKcX
z4HSV98lymWnsXaeM-T2n%YLh<3#~cwgb@d_#6zk+dmCdHzTCB9V((N9Kr&v3lrwJ`
zBrFp~C=CEo6A>bZ2`(pW_>u6rX+F_O;$hL(94G=Op6E6bqJT3<a5_{n7XAc9j^#Am
zBor+8&ixSq;{?zmr@-{2Mp<e*Waq?G=P$pskYy4Qo_Q11bN(6NFW^5XI7vrb@_>ra
zKS<7@+&;9(Z7P*>LO(Q>H36Xw3W7#KG?6h4O-=qj+*SYrW<1Q=8TRoVx%M{n(HXoC
zL1A+Hl14;~>SwyH!%JFEu^2+!?diP@kWY{d7O|j9BC-u;<Y6!}fX=som(od#(<nIc
z6rUWa$q(q+DQG^QW#qm5Q1p@rW>4#WP8*M7ez)-VZ!2s;tgQu2Oy^h{dQSHkNq_W`
zOsSQ$+(E7kOZe#B_NfmG5>FI~h9;iDZOTC?O0Kt45Un;YJ@Gyax}u6e27}{+lRZQ&
z7)h!rGGg5HkssQ$hq$Hycd?}5H#0j&@Ny|&Sq*~RhA^r-?ai>mvGzzc7g3B^o-<eV
zBVKpSp}88cT?V)GxS4}EVT|wHSbz!p!C}*eYFHE-65mkg5Hceccw{T!Z1@LrE2Nx~
z<nSMi?-A<v$2p+~M8daf!u^J*JKLE85`2Ad?JM^0WSS(X5`z5vj}Qg5S38lM6!|W0
z)MhA}NWeovC035JZJ^i~%MhfRTDy+rMsEWJ--wip8<}G5mNQ^{M&I2CC4dsCGVl4|
z7ot>|PBxj`cJ0&^zB0Atd@sbinD2_q62-n3GfA4yE!znD-S6v+@c2+J`~Uc%-zGnJ
zac9)zu4hMyMgrT~vB%AH=!$AGfcUz^gMJ*)7^ar;jcL|s=VP=;P$Wsnt|CDc@c2E`
zUy1xpV(@<g>%O4+9+Xn2Ey}DOMV<vmU_}@@;D;AF)E&yL!%7c`l;7M=0YO=Es3j_9
zfYz^ipkx-^q#vn_F-)6U!B$e;k-BfpPu+6~l00^q=XxcqGIPnLk&Bu1?wHC#X||Tm
zdP!<!`)lQQsOMj5v3qgrVhKcX1m?KzzattyRkdrEv|E=Ty&c-k)EuQit<p=~1xY>m
zcUm7h^hyOl%6M==D#5l9Od2bH0oLF5KR&*^xb)ZmBguHWqzCInlYS^)y+qRl7%+4i
zu>3S&4}eff8Q$wO6#8i>CS@cQ-~o!Alm2O>BxS4?V60_g#M^0XAZ20_U}Di}!hLFN
zEoJH$VCvdw>iJU!BSoo>F=LCAnzkpH_k5s^RP*^v;D32P__oum9tVn$GXI2nn3^qU
zlVElgZSiEvA{=7*LQ1GAz^uO0!s0U)+4ML&8{Y6izqJ!I)+sdifiELlxBZKC_)p7G
zlZUkc^QTfzerCJ-b`qNp9~O}g@_0Nl-~Pd|&GTXV37a5>(^$DB01Bt2l4dXBp{1f;
zrfcFlqpyW?n36JM8H#La9F(X}?{JG<T4kBAG$6w^&3!9&YRWF!`Elz1_EGOug<QH|
z4yH8xISyAG&I@0iJUNxkXkp9Sj^6^FWCyx_z&){VzNe{yc`oosjuv%H^xAObp8hVp
zBFg@J$;xY=!ekd|G%VgnJE*Pf-i&kW#R&{WrBh1tINg@<wEXh$ly;1!W^F5T>>lP7
zSK>=3^ZL-`#6<pdc=%~8&V5jXY9c46MB20bmlr{&N)tffmoy)V9VQ{$RkqtN7Vny=
zO<ED?w-)8Ok;HxdYf!t~R&3b65hZbV9b9_UM`eY0UYg2kg(`~E($IJi6)pX%sh{gA
zfbComT~0$-F4|%mOdRCfyc29vimw3#x?ZiR1_cL|3n#4*TiUy1t@sV!4|~#LB%se&
zH>Rw=tCv#G*929a<kShSP$k1DqV|ZD7b4z`0@qjkIWacBzWY3l@ojY|nu~#5n)RSv
z`8HNCT|oe@_n~hpu&^L39XOmc_&HUc9PKKf<n2gFk7<U}-ZJP~due4rP7AtQ0sRxL
zC+DmtOP@N;rI`c<r*Ub1q}#S4#d5E{_O%o6qSacr7qBu%Q6I-N+Q+%eL<y~Kz~^=9
zwj(3c<N{Zf;GUYxs;G5`C>{D(dwrTB)v#gnFeSPux@lK$Co}&zawbf!og<}irNdsi
zU1*h!0*cOQ7=jcqF|IO6Q8qDmWJRJd7<}Y(J-`w`Fo_KC+;?K-aONYhqts1@-AqVV
z+0(DWajQ4jnG`05RJQz=Y+4!e%j-qH=`>_suXQ^ds*+(XEi%1MEV3NsV2YMFsUdN5
z9GOAY7hxV}7`)kuAdWjv9jdNAbas1^+Dlo#dE~=>ld?4)6GTjL8EkT$m)~)c+bM)k
zu;4v!$RBP7*mAoF_j-7K$^IvhQ_8?urk<M#$$4<&)+I%gBb#y*;`&A=$;d9Dz$G^7
z+&cxOnv)JpQS(mIxFE!15r;#6G4z6E;d*O+;?90@M1C14KN$@aeKin{eInxxRmO`_
zuDu+n4!&l1s$M`%hAh9&NGKN?$#@v)O_?Oon_Yi!^(#Ms{zt`YRHbY|hE)NzZ74;<
zWT1x2^WO){{+6-cmiPQWC-8A5alCzs(Fmk}W1gkSWNSa3h2rrFjc5vV(KH|wK8zrU
z4<PwXTXXJ{`J1|kkG_yGG2`}LnaJ<1l9c-PkhZ?DDAAhZ%bRaMhT~jZni<VA-&Qt<
z9|mvsB^1de`o{<L6<~2LPs>8-P&Fk&8zoa_mpJxDZLJbA=d|NteUB5|cwa&2ls@GV
z!(Z&tq!!MV^kvvlr}bzq3V(KuF0@0kE3X6PpV^Afb-8VLBSi{nc^Y3dMmmR{oHn=Y
z!B#Zcds1hr*`HdZY)A=fm+@$mEV*iIOi@=q?e&@J*1N`K;W=3O)1cp8xap+hPQOMt
z0BkU6lktOpYBN$`MaHHXzg=Lcqd!CPe|a92kR+v$+!?kLO?Mv)I${TdP6`!z2yUNk
z7}|4X%8xjv_KrU;es`OU51+|fE**L_Rf^;vJmTxWVJa4uAHVon0{b)KdfHOt5vkSA
z@eI`ZQM=OyC3xtFXWV{&nNsuL{+oMR5OJ<od{gP{?%kzR<K^QWMTM`E!(LWww5FL<
z5fxUk4@}t>z1NJK?Dm{ajncG^?X4o{b(z*zAZ`&Y<2+wG`b}nM%R`UAR>bu5IDDT7
zb*rnvpYx3DQ$B+Jm{!x;6(mAcUrvIX;O@!qI`)d@-k~PT!L*9_ci-0w!T*Bjzqh3w
z!}<Rf=Kp<1gy~`Yr{m-7_Jnz^c69DWw8~efn~P*YR%hI?*wlh~rk7bMcXn#;^Y5yS
z7}peXmR<0=CPe*~5XguByh|*a$s!Vq>ck~vpl}fM5>fz#%T<`U5n6d_y}#++<KywN
zj=8tlsu#$t_2=tUZ?SpBpY<^-)Uu#!qHg`hy&VshEepMgK!Mpl<lFh2{yHo$p#$PV
zsMYJ?^I<S4dQ5X_^<#VS@Q-4%Y5O%PKPZ5;4IBYw+-wdfvknuS#?JQ26(@H8``F1c
zi!9mJBwJw_f-jO#!BIQT555?5E>DGj(Ja}z%RfD<Z8ez-qIb4dDLKuN-$@t<B(WJB
zsf+x2JzRQ6EI2;Y={6DaiNB%F*R8iELl(Yy-*b@1Q^^@?`YmE1n?lSR?+>@>S%)O%
zHr5^-(%m-g4B$3%JfQ`t-R(oge+9Qs8;AjoiN_=Tq=T%&t)FNoib8EhtG_F_|M&jg
z$M=Cc+n0hz#Wsqd=eK>X*YM|`>7K)m^&TkOeD)mL>HP2f>SKim;u|dOBSi1qap>p$
z>@PDBdrE^p{8^J2<96my9rI}fT^y$*1Ymt67+DYIV|keL9A*f3N12$xybUb61;S&W
z%J#Ro&7EX^GFeqTi8a_P&;4EV>AS;oKoeWniuIpZ<i)l%^wdk&<HD!)za_trZr1Pa
zA3jd~ik=VWR#(Oqc9L=Il0gYa*psEGb1dI*s?u60=Tca3%ek1o;9m3Xq>ONg2db+t
z_BD*&CP`Gt#r2HdJDi+TZ(Y9k(egjk_)=}{xy6y|6lq9g;>-MiK{d~SaErkr3RXGS
zz|e@OxTLg<oPv_Fs=B7OuD+p>iRrn;oa3|YFULO`7{3?@dG6=|$-E~enWw1PK1)rK
zC{D_lvrpo@Ni-*G9I}7Xkc6|v5{G!hBT>rP2Jyd@*~wt<ghZwa%gJk;11FIr_mJf(
zI3)w{%cvl7^D^6Cd7{j|r&@gh{{i3>nrKaiq%tcU{m715?;|+-F9y^jXsi1ElH&}0
z*<Kc@a!D+66mAc$<z|%^99g=PPADqg8Wvn(Vc_DvEdvVhg(_xKJSKx)7^=@|Y~uj8
zG@%ur(?to1F#odKY_!2D1aj6<-b=>pCT3;fHJx@Vzz2=n<CYkw2ZbfS#~6&<#Xe7@
zv8kj9hKTP^=LmgT?<D>Z38hH$IcvDq29wTk^ccZL$K#;%HtE#9f@_FMK|72Kx->S~
z7m67`M=C=Si8X9=nUIJz1dXUP(gh1tcRQG`G<pYRQi&lKN>g{es=aV-Dyz*=EbbdS
zUT(JE(7Oc&;J<CXzWPHH^!a5k(YrupR+ocu=k>6!od=8_+)7Bc@O4-KTQGrD$1B9^
zQgmb-V`v48i95^L99u$4KkP!vc#U&wxCi}Yql`lmKmvzxQD9Q@vnWaqpIf70XOWba
zgh!^=R5X<0J=jQs{&DOALR2AW7&cDg{n)Gjr&BHo&$W!Q6=x1zLE>R$0y6n~_Qfth
zY>qD`U_mdp0HKy9jRy+%Ab=p|ma|F(+6&2@%~y9n2Kyyd7B9<fjC-8o3*ULg8=n+X
z7VXs6jnh$SxyOZpm1&iy${b&7QCX>Pb7ON`*X!z=M;PlH+86oVoeK7&rm4lx*6TI+
zFQ>o4E@lrv&HVFDBz~O+u6Wvkvh6*fK+LuhlygjTA12~mm*9&W!@FnfVFgYf-*3FT
zlr5Bpu<<Q9VQf&u6Uqxxj<Xh?04{&IiS!+}$yY}(kQ%2mW(3|+K5cnD{q-sA+P7Tf
z^$6<%s&BJlLpYW|!0e3kN7HAmH1Ta7n#l`kT@Ubtx>XJd_ZE!6lXQ%)AyfGdr%l3n
zCh0)EoP{6>5IS22RS*~h2s+3~c08IF)=MRx!(PpL5AwICG|Y(hBmLC(IYOHB#leFy
z1mQOJdg+0D;dh6ORYla3thOl0W&wX0@JIpQiMyXqJ-Btb5KbZC`CN~qXGrquS$n+U
z3S;kHrjbqWey;t0(~Uhp>=+2ro*QBb0#0=t<u>CM0Y@~=5w>5m!}Z~yW@pwveC--l
zPwl&?3{hGtGG~7%iI~4lNl-$=Gf#B{Uo9MdkbFY?-R=68EcV!x`3dQ_`-2>Pz-IlY
zYClV3o~xd<X}s$F{k8qm(4X(4kEXx$OgzK_t%M?@xPM-JdVQO6?+aL6^W&{41s+H%
z8VR>T5-=U&i4?sf3U)rx>f(VU{#b|zA1he?Q0c1igdkj*75Feulr8~H$R){6{P=K$
zZbUSWCu`g3nl2KN2Y_&HW6vB8N7>XT0BmR_7!nanii9L6bCpp<9**%UizOKr?ee?S
z5cAuKC0lNC(DfgVi$sZ~<hI*2jk!!nl!>LfS#dIL98O%nq@a6R#L4p2<&FHV*o)9h
zJ7)RrHxEJL=~2vF?8L5`mY3)0Nmg8(Oh=O%%7)3ei3;ODb<7lnH^Q}I1HWE|j->E-
zL|XLMj$0&u3hvRCiRP>1maxbf>PgSeGbZ5A71b7)T+GH`xvBlMW{iiXbCW5mcq4C;
zj4MSlrmd>Pd0mqTvT$HAOJWTNoOU)&814pFgS9b0$cm6fyG#4O$pCX?F+ZU5Sx%}s
z=s5R4Bhs%$PQ2#nsunUh0$zHhj}^Y4c?ynKe@?0u%C#N^4ZklOm2i=7#5@w5YcJhx
zaT29=%TF+Dr=pdKggeRJi*vdxrimT*;NV0@q>TW%5KPn@XOEmlB&&Y<RW)&iW>W15
zm6)#b@cFwzs5_7a%G}P4BMh;wy;!ga<`#&88RP;b0o9!Qg?hPXXv-E`2<KsD0?GhT
zMnU5&KF@EacD_{eWvNW4@tC5iV7y)1gxJk7)}Rr+!l#gp;96ZIG6h8YvjUr3xsTeG
zyv_KSe^FU%)sghoB@!yQn*f3Jx&rQNvkRBhA;n`>?LWi~uO;CE=_kK2-g;au7!o3v
z$k)0frgMfu<(`8F0;e(YLR=DXpI|ermG{QT$k$FZ^c!o;WA1frpZ3vj4g9+Gga@={
zT@gJ=7O4VeBVTCy4CYUR!{o`gDeWL!7y?(KmW>u0>A~Y-T_-)UY!EYYXl4*r(RI^*
z&H?~^QUM(^dP`Effq)d|C1<y%&q~X0;-VqJ_~WzsC%&8H;B%oV2?ffyO>L#Jv+VE2
z|Cp==WN?XILd;;sFpR;{5rg196UhknBlQesT>pc2m|3+E`RC3$cG{7IZ^m|fTs_od
zRBX|?2(ksoio|JyG<i5~4@<o^sihB1l?}75;Rv4AFfl-JDA+<(KF=`Bxj3iMie8zn
zP5gV?=3By?4%Nhv=(DP5H3J+(*tUm)rOyBeZ%O)@Jj645t>lpYk1Cvf;@^bEjY~ev
zd&%LwLe>jr&bDI-mIQ^<bNu7&@H)jsSO;<JaPL3|Sno9s=<-adu%*_`rnP|CW_pD}
zxcErP1K^-|uKys5@^-URMvl9X*6d+52-q=v*BuMMk2~O_epZBjXjJ#HA6y5KB*aq_
z)pSi^w*+jTroVT$o@ouqK5@MNXYC?Ex}kb2vFMzikeg2n=(HtXGmQjm%PTETBs~qE
z!G6--cry4*swb5lXEoK-)Expj)ueg`r85X-BWqdlu6+#c&B=Wv%_{h6-%*H`E@0wZ
zXls@1YJ(<LCPP8|+*>G&bdupGQMys=S{TYz3?Kc5R57N6&3&smN2$SQ$`eiUyM9&L
zzpU`|a$K-r+T9fZp17;BwBSI{NsCPA{U~~W7l<GlsDG7}Nr|!kY86De)|CXxsl!AQ
zU{LgYc5aThB%p5=8dxx2eMZN{*7t~z$aU+psD*^$lh9q1K6o|`5$yEfS07c^^q2Ko
zvwsWNCx7zduRzq2IDl5+JV5tOi>Cm%vmqsX?EDy1^?U>*?k&NtjL7hKq5P}kmDra?
z#TRe;abF`n4}pqozZW>iFS+&q9lr!zuf+eP=fq<D6<<R~o^GAl2dlgJZAB6I$NV8W
zQ@mbi1)Ut6oPkt;`q^85y&j8Pj1Uf;{Tu!d+Ve?^A00$sydCvV&SprhM1T7gz}LdC
zVf;S>mD_)>%w_R}F-Ev^o4+?D7vES8JZJyyze31hrN(n}F(_GP6`A2RPf>g<HFB?3
z6HvE(8>;YXTPX50aRj&akrTJ_eg{LAq`b7CX0jElsH?<t0(rKl*Vkbx>k+8|w%tjw
zgktbE7A2^f42?}|&%I(rh3G*pTcgz(v0zoAI6McKS=LxLMJW;<vr`ZTgkd+qb!wsj
z+ezd$B^LkW9P0a%q5Ez=OkuZ7$FqTUga4%vchG(sLy2$OfWaI{Ln;u0W7IRMWqjvB
zu_{a2gxGee6#WG2Zs8!`E(e@rs2BoHPp1Pt8rpd*?T_O(9F}O|5cpW6h%Ln<$EoRw
z{tnu5@Rh2?qzIWBwV6k+*3kdT+lfzAvxSsTKsJeE@U&UEViTj~dK^N_qe5S-Ze=|-
zdYPm5^&&-S%YTM_4hm7FB`bR!w#(5p{!tarzK$d7`z&7uB3HH(j>t9nrb&+kz$dNg
zuq!WD?bZEJZlaLQF#HeWQiMxEHwhkw$3A2Qs=$G}B*U<igeRAu?=`6r$Jo9Ff}3~j
zB(--Rl0DI`!A>AZSjkW%)CAlL4k{d}bodIohSk0X6nWw!;xX{42}*ZlPqz!DH^-?t
zQmWZDPMO6eJ6USgP@$~6r}JYEJ`nqGAWanxRNLK1QBa|A*q6X?i#k+3xlS?h(slFL
zsHTY`*DlxmO<=M6Li<{mn9G33Da)#)vSrXQq6P~cDPe*;a@24?&91yf#Gs^UP|4>B
z8Llxmhk2^4d#ZhV6!Q*RCwoRs^dn&=`ls9qZeN_#BNc`SEa4mW@JQIC5`9H7aYNc_
z_%vnu7r#o|SF!8nvD*mdJ%CGr%V{)c3lWQ)vf)sI+cGzG3mX#}4BH#qSF?kqRw<Xn
z*z&7T`k-Jf*qsMsUaXOF0Mnfglv^YS+JPd#I!hEG`5I`02=|p^c-+OERb-t#QPuv2
z2im(lfq@{O2M3fcYO(o6Q%4785tUCPOk)u#7RsEV{LV*Hk=Q_8UCE6P)Q)LW%UY5y
zuP4=QVc<w*7hgA^R~OI7u$pd*l5U<|>~V7Q1C#Q%)i3W%n}JT%R)B<{C})BMUgt%Z
zRMtr6h>A$BL&|g%i6jWF3!F6APh(YjQ8x@{u14H>kt$~3d=pA=)sH()^kFXo`ev`v
zNh2a?&F9P?rlMB-W68pu)VCmBj7OTnK%OE?9#Q;_5B7yBo>;Rs=hO^Kt&~iL+L$Ev
zq8tHk)-JgoD&*C^C_D1md@t8=L_ARIJb8~&x0Yn7mJwIX=x{`_$IE-|EMQmnKLCwD
za=%vsL#0xhf+l8;qQrroDX4l33!s1lsOqZf%M=h)Uc73^Syig8s;bgP8R&}(oEBf|
zsG#yFp_(dxgaMv-42dd(>9}ff^^=u0LY?}ld5!|Y=xMO<ssD{ys}ABQa?+ziE`lY5
z!5EamJq>9+*4q9+fttEYF~q^}T_J0tPGgQH>J&jRROGnYfka(EA1X)5h$>a2Wx00V
z5v0J7SVJa^fE_+byB<MMfI<qWUnn@h14!%xgh2(Mm&4*|q4p)Yc5A>6!N5Z1Ivi}B
zz<|OI0mF8}F>uhlYJn2;C#N>brfMZHu<ShSNU)A+pmJ+OS_00hL>dsn9aw?T7U<8a
z0bM?c2juLwT16!YjFW`wLhcX;KuVn<r0EbX6l5*O#;d?SEGZyN#7=C*-r%*GZDnQa
zuj#B+I7BhL2u##k8?tRZ6vJT91h=^bQVs%HG{O}+!~cZfg;8X}K#HQLoTcdu0Z51h
zd}!;&9!cAJY(97dKk%5jmVw_E1?g!5--=Ie;a(?jZV!^FG(xV%O70L)Zk1SWLjEmE
zmSK|aM1?woQ@rfV#_SVhYAnv~Aoy(K_Uhx(?bBL_SCHZGA#U&%Z3X_$*gdH4jw(?k
zMKSoSG;omB+9tC4n(?Mw>rPaxdcvShRN0>G_%c)4$`gqoilvl^pq`1QcveYtN<_*n
zd$ccnKtPS$NRCwGqBKecJWAo<$>R0N6(-4&w1Dt!K>;&~lURvv@J7#Q0-y-W8jwwh
zj0gHw3Yip&qt-7rVlaUefPHw!gm?)D9Dt1S3jYBs$pU)<hHMCj@S}8nE+M$^3wy7j
zd~l+W#`<z_roacKfUpSThY*zT2_Hj3D)0d}6%-spH~dH^H87ThL+$dX%<gBE;D!Td
ziH8!*)SPda5XcU1@QV0wIrQ$EU<af~@RTgU8W#f)>o6L}2?c}5ZpiH_<*@pWG5waY
z@OJTq0Eci8$1N&Li6X8Ww{euPu~j6o@YV2!+_1r@!3>jcC99YD7T4VTje`cx%Fr6&
z*h$wM&ipD)#bnw`iG$sYRfn7nw5W}vvYgQfYAnl%)3|cndPv)#z}pDH$na}$X)@e!
z^22!Yz2!wPL)FEoK*nT*qp1J{ynuYt^8Y840m$4Fu*h&`vct)^Zm-FU)llfY6!XFL
z4X=!&GBdMsI5RX$v)#xtD8L)Z@J!P<8r0w$?!qh;f2IA@vy=4hj3M*H=qoX2O|tZE
z0f5c8EJ44y%|h$)+my3DAauBd%|f%x31nwPgEPg5b3scS$As#%RLiwwi?K3`LoW?V
zH?(R@b2VA>3_c?zTk=fH6ei0;`2d+s5&}+hpiX;__6(Oxf+qnDbrgtB##W3PU>Gd$
zbb!4M@$`^&7PTuZG3GQi4L|ky5cN_Ym4ZEwD;zcWR5c-7k5ZF$DU@{-FhHa-##Nso
z;(`EkVb56;=~UD7UE{SH*t8Qd>;HkGQC|}hVCOZg+z%}24=o7xU@LZB?==u5wraG|
zV*`?8FScb=&;@1CKFR`RS9WKcZDaos5{Xhbf01Y_l4*N3tlUrz?T}8l0&1srY>zK!
z%XV$s_HE;KZYvt+l#y=x_HP4sa0|C9(DrZ}_i-b4ax*q>%aL+B_j5ycbX#(9OLui!
z_jP0UAyGFmX{|A}$|t2$Ee+Epc~mjk(ypcgcXI}LpOSaCk9ymIdjk-AUj}@yfqaj*
zDapzQV5p(ccYe3hFP%4J*!N}d_oV!HWE}Va+){QsI4Ep4NKIElp@K>UnuUh~Pi-@L
z_vtycC`L{ARJj6(F9A4-Q~x*-6^U=Sh`$Pklc$6u6pI58jGK)<p%ld0cqAJNjk^;?
zU72I3xcTI`Wb_y=@%StR`7u)XV<b5T4tZo0`B5FYV_cPeKKPY)CUg5yO=T2X$$08S
zmi2@=C}=qI#1&!{V&SYnQZ3b3j~n)!Ie*Q<Q~;GwMbixm)|ZPyVx<CPr7)mIftUX{
zWK6|km6c+R6=OLT$_09yW7A|5dZHitV?=pyI!2xk`eQ^oSsfjfleXzndL~#omXo>=
zP<Qis!l-+Kc##(ru)3dgLYadCcg+KLu2z~;)ye5OD@?^`X_j@Z8!FIxD!lqLTKXrb
zdM%uUZGG2LGy9Qn_5U39lw8j_@p%`tLq??+t+E5VoJ+>CU%ORAJ1b~=h7!4`Q+ugr
z_o+)eIn>yEVHuE}m=%C;N*cSC@>xc_`<;bZo;8JqUF5L`#J*n{juo$;Rl|U7JAk3t
zT5On_(N|8BSfm!fo&^MxX<0_h`+oqsyIWbX$NSGH{89aw$Vbmq0NQwzp#++{$3uL`
zLxF%rPkz0Q%x`<jcfyf18SO3D>+INZU3~F^Iu3J?&5JIO5j@Bn{1O=bDwTZ9kNlet
z&&qp(&SyN7`MiiBMS)2@9v6MoL#)<&`_ilXm9x97!lA>hoVfAV&=sAF9?ZR4>Xv%e
zZ>jwe03A1!MgK+a%JK5*k=*^dvD~D!y|h7QsKMNdO@*iZdc!?hxJ6vIVp^}@ny&F7
zzzLkcxtifi@_7RO;}3p^AOPZzn%FQ~uaq2YiW;ePz0ocDq;xu?Cqm%!SLh%9>YIML
z$;s&Be(N7q><4<j?OVSQoV^{~6(F0k8LUFWI?7+1v+X|Vv;NY~KIpUkg-Czyqki=F
ze&qiC>obq=2ORMSgz@W3xs96g6EX7xi1U*i_a{Cmp#Qm{yX}{~*=u<(NEFpo;NM*!
z5V&H9!JrglRS=Sv%u$36VxVYsTE$jBvO;kbi$og`jI2^cL@KgSB=RhlPQ`<3geqnA
zgNPYBF8@1=I!Z#Q5F#={Qetv~Qh9k|*b0m46O5868DT-e*xS4OBl8<vG(?12VNp4W
zK;S?rN?U7tD{7EoIoObCIVcMwWNd<qx&qY`tpY5C8b%#@j2xJhsT?pVfjD?Tfk_;I
zl%%X$-m{Q_NY+bVXNNk6YQ~H^J(MmQuP!gr=Jp0|8o6ucoV8QOF4wMJzk(H6@j}U=
z7YFFPK+&K;1sE_$c#%;>1{F&O^|5%;K!pnf1Njw%S418zQuP!S!WV9zHEjR7ebY&e
zr$L)o+$q$>%NH=15huE+croL~jvoh%2$_jwJd@&34p7O`<xqA9FlyxJ(H_oJG2Om}
z8~<1CT)K7b-o=|&?_R!r{r&|UQwI;ig$?t_I}-{7lO<sCkzv&_wp??pY{h~s9tqB!
zNeJ4~r34IYQ5Y8mE8|lY6(NeCSTTTvinof3oUSsNtK`R(ixiMC!V;F52V}qqfq{f3
zxV8u29`v}6)d4GHSpF?WH8U9;1~};c-H&cu*E3^w>m2$s>5+d2AFc<1j1BLF$0Ob~
z3IZ3{BY5r%HU6-RNxjC}vkJKTWZGlC`UX%izLHRbV!+J+{46!^z}wId4ju!~wE;kY
z!J;BQv<fSc(3`1@1}fYRLiq5jO~2<3#AZ7CB*enO9ci2p6bog-FvDCr?C^{avHuCN
z2og;k07Z~iB&rG*VO%XjApgTqkSC##(g*|tBeP61&qOm#HP>XbO*fMn?6AWUvvIvR
zvVwwz7VfO#1Q^cSL$e|(SfNluS6FQe1W=$R3p=3zuc#JW```s4KG-w8IuEQuPd=mY
z^AQ<7cu^UX3h2O?4=FU2!bctJG}G#2C^d^nxuYPpGjcftR#5-EOfCa$@-<IcRT#Ba
zP-6H%R8m8+aR3BbSfPtS4>feP{iwB8Q&%~S!c%>cg@;*Zm90`fZlNF)TSQaKl~-M>
zqYczdRWKn6;8Mi1h>_BLrd}vopbpt*h250ceg_a&9CFz)cie-sa8BBFum5%TlU(BU
zL*5kxF5-lH^MzvHDYXJP4v+^R_*^X7#dbA(^>t6oSl`4sXPtNExo4k$CNoYs3#0Q}
zVu6LigseuZ0t6YLEJDy=-P*!B7oavxKgCcuVU0>iki}a)UPaoUrOO`i=~+&YK?X#-
z<%(4(kgL(?+|X896&665DVH$hm6z!#oW@$}0u#QwioDlu`|T<?D1im2My-%-w=sZQ
zCL0fEVVAf#_q;j82f-Up1T1$v3dkjYfpW$#&m1xeLC1Ozzvq>=W+*}%0ET8W;g`xF
zqp+@R<IQ_Lb+H|7tn|to$NcfgC;weq)T2*13fg139dJK%FM@a9MgIyO<>6I1-gxXz
zhdy>a#s@wQ=Ygibe*5poKY#t-5_)LF@ETU)qCkQe$WIG0Xvs0qqrkUp0R??n*<!Tz
z7$}Uu1u*c=YZe5L0Ftf>1T<h2wvfOgFn|NrSpn86ri!o~&TbwYU;!Z#!IG3FHGk{a
zc+fV&sfq4|&p;apqhLZ5nuq}r;Xno4@B;J@(QPW!&jDBvy0=J?igg=X^FAm;C^#{N
zB}AeUBf!KecoB-Iv109PR}k-=fjJ`N!T?@C9e<VYJuEUwCmgUxKBCKvSY+POwphj!
zJ`s#BNa7NkSjaD)PkU2TqaM1KLpSCDj$N1|`A&An?CFt@d;jz!BO_UbOvcX$LFD58
zRJlr4w$hcaoJ;?PR<tZCtO|wtRMK7mC_NYs6kD)J8R#fM)U2T>7eF3_VxTP!j*dOI
zjE&8rV1iv{p$yg2oZN~~N*C5LHw(k%3_)Q`?%;4&<5?IrdFexMMhBXDxTY6M6a^S8
zun6&VBotB*mALG4l*#DeGl>^XEZ}nl^PHPK2Y}DGWx=0sndCXoFvZ+tDg_{$k5xj@
zuRh?BST1l2L!0@-TtbAPR&w1zp;k|Lx~`#Ec&J+<IxmV2!lD?h*+xs^(cFMECL-O#
zMfX#)Vwn_{M@4E<mAcfO$x=?V4CFU4(TCqT1``cXOaBko2@l?-ErVG@4OO$?f);Y%
z1@40uNyRi(*I9KQSw#Rdfx}aMg`it~cu+T^8XdM)?_+#(X?e^!FSp_%s|<`wK=0Jo
zS;+NY3_EEVND^0?(KQMWi3?^Crq;qj=694W*<)D{*~fyGllfdI1>rGMd97+5kM+P~
zoMsixZo#tmJV>`pD<g%rs-5g%th5|UlF?qaw8PC_YHf&=!M4^Jxgbewu`yfRV#BuC
z3xvKZgj{w=7Yfu}D_5||RPvVByyrzPD4aT{x*Wg_AL4);pag*kXkb*gke>@S5CIIl
z;H-CY0R|jUffnQgv03ot9=bXJ6v!Y~x2f-ajsGz>7;NAIC#c>UN)Uk$<uw`Z<#2c8
zyO;=n0KccyFMs`OEyo0Szy(f3Y)epq22`NIZ~!rUNBkTZs6YY@u)qss_2Ku5I0Ex6
z@rg&1;{N_uoS^84g)w|X+@aIO1U4`f60C<D8yU&=HL)?4yx%5UOU5*|u_Lb1odY!B
zL$K8Znr}>pBFFd0vw#5#DzN80FE<Ma$TOe&4393``O6XpB9m8KgfrK8&THmCo8KJW
zI6GR+h2Als^(<&Vm$S-(V8JqL+yWO^s{sDRKm;(A)jGJ~6&zr}V=;YaeN-3$4Zr{l
z;LzwaPk0ZrK6IE9P3A=pfY*=4N~GP~HvdY`*wQ$zbEX5$Y36>q2%*Nns7w7DRI9oL
ztagE`VG(PR0Q(WP#<i{)UFlxK<J2!m^{OQU14TPIz4yj<zV*Go^%}-5eMsM9kaaxl
zl)%I;XqyUZH5vyr!56-cT5q?Ug$36E2BjLf`d$WuwxQqwQ3$dOmZ_<LV<Y2jEBL_^
zzHnVTyaf}+fWzIEqk#9O!6*+0Kx=OD^rbuk2$zAviATdIaHQiOXRQt!-nN$`xVIGB
zxu^*K43!66Sur=>3b0WC$0QsAFQ^{Y8%Oh!<2K;KZ0XsXS@v;FJq}eDIuyh{^OAKv
z=wA=J%(c!HwwFQe$w;~&3}AN@<o~<@#Z$qwNcNpr%b@Tx0(kni4uTl8Ex?!6d#Cfm
zc89s$2ynl8=Id@e72sX&qSsvCYmW9mu#u8Q7`*WcF9yUb9#V~e{Cy&SyvbKy2A4m5
z);0f!+P8pY2LJiW_q}}PH{bbc>NnAH#(<ok5*O%7QvuKl3hd8=P1F})1G*0(2apgh
z4%j|mz(1Gq>p^hh_u2ZfP=NAh;Q;901O3gPUinu+|Mtf}J@`MKp}$B%fKfU?x@dq%
z8o)H^KYgh`EV#ezYe1bTK>0wxe*!!Pj6k?Zz&&`t=M%vZB*7Adhv*{=`Vkxx^otc_
z!MJe27nH#nq`?}r!5hTE9RHL-6#So`i9sENiys6+7#hMNG{Pf9!X#9}C1gS<;6eJ?
z0M={5D2T!)timb8!YtInE#$&3^ujfH!Y>rVF(kt>G{ZAQ!!%Sw{_!8_Tf;Ym!#I?~
zIi$lnv_t&~!#mW&J><ha^us>{#5ByqKqSOMG{i$h#6(oYqZ-6Tbi_x5#7LCHNu)$9
zXvEJMflM3$h+`M5*?<kwiwGEj_G6O+(8NvLg9`9OP|OQc)I?5HC0EQuSR4RVtb$K8
zL0LpaJ+MV8WJSK{#WV><SHeXuJ4IR?#xrpM55TZ@h=OHo#+T8+N~FeWJj6?civuWu
z5@;|ADFaX}fokH55C0)W2k3wk7=hu_0|y`hW-5zq?8cS?M{(Q>ZRAE9VMli)G!8g{
z4w%L&Fh_J$N9}<}8~MiEpvRucN4c<o6HtL&e8+qA#u<5rgyf5ZOcRXMiv!?Ce>9VD
z{I!Cd$X^VMH9&z6NP&YeNt8SYjkLy>gh@lh#?6u>S3pR=Ajed68&04Pnd-WyORJi+
zA&>+N#b|(^%*GXP0TOrt7O1{)+R0e+u#pnVn@oliAdoUSN@k0T<uHK{SOJ96t3R;G
zL9ocZXn?YW3#?>6wZw}9P)eqB$}%BJz@m_}9LRd4$PX|E<5&>B6a%-6$-yK{J)FtJ
zik2*>%e}}+`~PzROmGZRB%aTBEOv5>#q0~kSOLleN-T&Ri{PBB{I$nq56Mg}P{7PA
zfB};Hi_Khv&P1uHvdoxB&7E0Ip83oH2u->?%hPO=HGoCnEX?5~&OkiO*({j@P)^UR
zrUrn;G#EeVd>mT24GGi^eN2Xl3rhb}&e|bL=ai2Kh)(hJtzLr7*Rn3^B(&=UBz@^l
z=EMbvD*yu+3FVBP1K@`6#6DAV#;t+}<EsnBD1i60O7Qf*11*`~=+ECE&_5$j|D#V3
zuupxl7W_270bS1dQ_w6ZfC!KPiztBnyq)k-Pj;{t1dvYzHG<}ZMFDM40Mt(n)h^?T
zq%u$=4F9bi1IU~MNWbFr(H|Yc<7`j%Xd7aQ1c!6A{a~BQg8^n@A12ina{K^}ivd<K
zj;Vy0^Gq(gGt#B|z0!En<8aa?71R7+746glSpm55iis;7(mN?qg!IxRErMQ1ACPf?
z;?ac(3)3crf)0=Y1faa*Kn*n24sFu8qTo_FMN(`~5%U35L1of<SX4A1Q$MZKfCHIA
zIe?q1%u4;!Kpj*VsD}z@o#Ut!Kfn~eV^hU^fd**27kIEW6P|FK)8$eOP%S#3i-8i*
ztxMIGM}>mN;xMJ@01n`QS}9f;IM!s1jyP4Fgutx@1=4D@RvZ-4<q?CL$c=kw3vm#N
ze*XYhf~bTK!AcJeH3mQkYRyh9MJ;;hR<<y(oe)=gRjrCK)Mv1aI=BN%f{UZj)_LGo
zQ;^q0panK?g9-DAfCvh5EdoI08Z}@6fzT>;0L~4-O6*M3QOGWWeTsY#R(~N0h;@Yu
znAmWDSJntum^fHln6Oo7g;#5#lnvF0HCc)Uj}cH#tiT>QpaVO=19*UjMu3Bm9e~Gz
zhMY()ngx^KfB;;>h_UDgqkSw6SP8dL0TsXot3|kv(b{e8*eFne7U%*%Yt?H-+q5mg
zY#qxgc$G1ckqz29isXZ)_18YY&LQE0A}NY|_06}Xxdfrxxs_Wp4HS26jn{~c+5d<O
zy=_~t`li5T&t&kCxRnq<rH($h0RQ9?01<><IDr=k0mpDx+4-$Ikz87ZRNc{Bw>_1?
z<qqt$4g$%XN5NdK*xUh_(h7|caS##MkPV`X+}E-UswD~XfQ(^Mtkl2^2#|muVUSG{
zSsHDrQF@eWPzw~;8@1)$?j1q4rOLe$C}VLMEHD`C`w(XYjt=ONi>XC-d6$ZPTw?mB
zn~|9AJKybey0@4V-L(|m9Wr>BmTEyx$aSZ18M0e}nCi*jDge~J43CP1nL}9(Kve;2
z`4C!!I?h@caWUS9RWsd;VESc^hrt2`zNHcsUl4}i3<?2pECBdn8A|!zRsUs&q8flu
zQQcuZ-VP4n<ptDHYTzjNV7XHpYdYc;He#h=SMPP=CpIteWryXB!Nswj_EAzSJ`oiT
zEZyv!fAr7!y$vmzCeyhdxM3gIF<kR}3$F2+A^@8z`eMZ7tog|%Jy;#;c^)+e;cx(s
zuhKGiZA=*f<SBNh5K5Y?DB?&BtwO%uG*+HF#)4Hy2HOqPMjn(1UJ@v9W0;8J8%7(#
z+2QH6zB2yX#^}xD!Jbh*TFkJ~>fM9u4VlV>;##)lrIO-}RpJ;FqAn68LMoyyR+hj@
zqq*=~)EZ+!iXmV&q#^ocWRAGEupkWLWY&~GNTSJIMx`3Uf+IpCG5;bXXAb58VC45;
zU-<=vD}e$#cvBJvqCpzvx$5K4I%jug=0?&SKl>|Cuw*}G*4_C%gsbPPxS+2>0c(C|
zIBJQImFH51f?k$nEO?bv(t|&WXIg$`B(`1~u@2$A<&Oqw{K;jzJY8v0g_AO_v&E-D
zK3Z&wDY-c2my&33Iq8;C=`O}scSR=bD1ecRiI*;5dp2pKVwbK^DSA>Ud@5%d8R%$s
z3l#1h4`}CPuHS(w0-fTDk-cPdc3o`}DRP=*kG>I`SnBnK0(3-HU)$-D@#$p1VRae+
ztk#?!ekW*tlnnkU*O6<;aOEUMsf|XBE$D@_4e7!*Y@Qiu{r~N1sS>Zosw~G2Es|hq
zm(nblF5QS;Y`$u2;d*S&j%?qQ0);Ao?jtKOvA5sozRC`2s@81H!6vcl6w;b3?kekl
zMrTl91(^=tnO2zKs;$SW?WTT|-D+sp&Vqf8Ws?Z*B6xrh#)8s5k<;FT&cZ6%dW`D|
zFXOgrlgNb@l9m(YuHWwK8ujbUE(z}t*TYut^?sAYt^#v|FfdaxdLuR`J2o}DZ#bCj
z&zd$q%gX~Jv}mKX=SVU!qi+?nZ+3gM{HC)IGqf;<h_2AE5W`aIunA2QG$jgf2j4LQ
zmu~~Fx6FyM3;Ug9lQgb0HU(F+<-Tp5+%N(YYbbzk5C2EB{HpH?4YyY#w|VC3_^$C3
zceZw;rwSu+RS;hK`tVTo=W_<M7f=BdPyrIi-AvxF4x`QA6EG}GgjUmWq&@I5Yj7PK
za3ufnC<!_xGOPPwaNW%Dal`2HHexj*b7A|977!Sv+&}i#^F0p?_bv&}JGo>+KA?-c
zdqO=!7rv$)=HKzV^pV2Dtr0-)IjT!OtHZoR55BSEJIRA^he3^yYiqGJiAF!3NB?t9
zZ##{9yGk!~cHub3`#1=(yV3)@Os6{@XX;KLC!jk4Fy1}m;W^J6bmhCfj+>ABVDZjV
zbwt<nDlj@&H}X9QbnIYpxC{Xg2!T5YEKt{2#s6$MrkgMaz`bK%bwXFxs7rN}b9P=G
zfo_?*y(@OdBlkFmW%HeMkT8Y@=v6-F_kQmSKj(`O{EZIuKZ57KryTe^Pk6sTc<*bF
zpAmS6fA0X~P=hxU22gl1iTDrXiwgXMGf{!@0s)IO&G3uPe~Ng!xIY23_*npBe~0;)
z2O5Bv`I>(d`YdGNwF@D%`JVTAFQoaO7kavs0TbW=4CnwBXq39(`Js3Er!T^whx(~c
zj1Vw^gXVx9jfpFy`mXnS8kG947yGd%`?6odus8d(SNpYRdm}{qwuk$;m;1Tbx3{PJ
zyT|*y*L#s}!xY^6zX$xl7ySIOdsq5^LjP8i3eefXXZ*%@{6EY?2lxPVTxEP?0aGuN
z1$+F>=lsq;!!Rs^7WjbCV1bgy8Md^G%YPHi_x#p({nuZ@C!BX_Spf~UO@xLA)prxt
zhyC97{omigzDJBV7C;sK4G#s;{5<{-g%IVZv*&zJeTmQseeV+k$am0v6P*QE#LrP$
z`AeEn?Qwp6LH_248ux;J(+B?bXaDx!izj4^vn}FUJXPOm9YHYFwz2<GIDqA-JRo2>
z2E+m4B#X&lnBqnTjjD=+11TvJQXwoTtimEu$JElR(UrX@RL3f+rB+<fSgAn#$nbet
zrRWAXR8;Ze^<nr|b)^(XbcDr3R{t<aW_gL3skzD7>G=s7DmqG9YI=&As=CVB>iP;B
zD?3YDYkP~EtGmnF>uajRBRovZLxdD^KsF*XCIdp`ATx4sz>L8sO>HfMU8JJbpyFci
z{W8R$7x5TTArlf2Q8@rUBu-9r@Pg7%Pyqu&%%&1CSX4kDp@ob}CQ3j!@Bjr21VuPZ
zgU|rOzCL_L#8_9P;lqd%qfM)JjSszW<H`|Hac)3586b;vQS>XP&Ye7a`uqtrsL-KA
ziyA$OG^tXa!HN|lQh?bsiba??gErs;3_b_C717GoD-jGb8Wceww!kzhHHkD3ONFf2
zM`A(1P)5X}KuslR7I}N(693u_Zl7(Dz;Qqc7;VW6&a*WiT)Ah{t}W7-o}Z<hJA3{N
zI<)A~q)VGVjXJfercQ@ZX~2j>)n-%-4+!z1NC6lhis07GyGV&CR9fs+A>+ebGSYAg
zCtk$(OA}Po?#<M9%n2BnV)P!+K?YtjdJv$9smVK$-%x`S89qk(%jC-~QB{pUzyAIF
z`}_Y7V1NSd$69N~jDbL3O$=aFZCJS@+W;2T1Yur&5%ES8Q3Un~5;Cmd4O^Ryk)eh%
zaOhqUGF*qrVq<_HUPUFa;DRCFnSqHOZ@4fX6&%c1V{$}PDB*<zl&B$xMtBIKN&`L#
zWt37*NoAE*UWuho1^>2oNeV3x(I8Z|WhH|PbaXI=9%jmbrcEd~0B4-_$;81MEA$wF
zk#5E*ClN2OxFRPmQlUpV46N`12NlHg0#*d&C<6+4LPx}*i7pyJqhFPICKW8a$)^Kz
zGEnD-J!Xk&s;aKaYOAik3TrQ0I(5ki+}%bS5qV-YzzHL8z`;Dn{2J^SCAi=TS>Fvg
zVj0MGNhw+^UXmRZCgjH8T~xq;l|{mCstj4z+1ewwMfeJ=u*W7VWUTJK3vayg&P#8-
zq0RbK1rZWq01POMWuzWhJ+ROv1b+*#b1EUQpqRW4kms^Rkfm@D9vBJZw3hURQv(4J
z!NLl0+4k1IXaDh`2Olu*8}i5l7i<Z|)t%Mw0BSvK^PKkX%yZ8^{|t1{ui{J005G0_
z!2=Z_2hss%Mt}eZU0{U(3@@mFf(j&DaF*3rYt8jHFl>N8MlcL=aS0VPPyq@s7Xi=)
z7o4!H3S*az!P!u~@B#)Ae9*$j1C@z^0~NFo169m$a6khVjcJhzi*oS72#FElHX97e
zz_{a3Q0;ZrTT@{-*=D0HgW7DnE$kc42@QMfvd>O??Y8Gcv}*%kpb!)*wB<k=D4=C|
z6)S|`K?ozb{oMh_C%=5VHiMu9;c@l;VP^k8fx-j2Q4fU+H8+r<3JA17-9Tse-a;h>
z^aX_q5dXX&@f>xGfbt$iI1PhY?@KYi<~>h&%==#T#CN?Y{EiIBdEM<E2*C(SaDo&J
zTJD5V9S1mx3J5qAJtSr{Y^eZ*Ai&mZJO~vBxa1N#`wI$<@WK||ssSxLfCe*R!%Y;x
zNjBWz2VZ1D7hZxAD|Ac+kBG!1DshQS?9T-cGztT7ZVV_8nH2YhIgu@8P&&CH6}8yJ
zFp6=EWGtf@mGVSW^u+`mz(5CBfSxtB@r~$F3Kw-EM>oO|VQ1{4AO8r*KnijbX*5Ly
zLSO<E{K`p(OynXvvjL6yqLGT^fDZ?W$xLc;lbp0&Av+1mP>OPtq%38XK55ESs&bXA
zZ2zSzcY?}S%5s*ptfeh)Ie=K=a+kd9r7wTEL|p=Nn8YlmF^?H5VG_j}BWNZcMX`b6
zX`%u#3`GT~0ZnPj;saQ8#WkymiD>SJna;!nHOC-MT#$1F&-4X1IkC=m^5>kbpeHi#
ziBHuib0`NWK?&UEKvLjH6J*h*DN-hifnI_GCupcc<%x+fY*T-sP^cvs>d=Nl6e#`t
zXS2poP-6wL799nsB^=NJUuC8i65T{eKN_HrvO=c$tf@`!Wgy)JrJ<O}Q$R;yQ5K$H
zrK3P-MMp}-7Wi|i8?{7BVPRBI1U0Ek^=DIq;!~kEW~#Qx>KNRyf)R9qFu8atC;z-U
zpau-J6>23aPj3p>xc+3HI)Q;fMfB5zB6Su~{RCHwumYTs!mO_7t0(@7A;EqIt%BNX
zEf`w`7vQ8XEtCaeH33=K*;THb?W`~8>WKnGKmy7rz(b${6$ngX3{EP56hTl8A7+*v
zm8BN88t|<GR0D;4FzqM$+FGtaV1)z4Eg4(@LQptBwF4k*0Ui*;9C`w{)e$anZ~HCe
zj$(s8L_h>8djNS%!n&ZytZu78hT`(kyWl;oeZG5%%=YLlHNylRD3RJpK=%^M1=(J>
zONQB2LA>v+t$jyZTKCdcFz~g+0Tis8N91<5pt$cKe5)G@PvW()^{j_KEdLA8a-tB2
zNCbFffB^7)VK!GG!V^qHDP6&INs*{;i_XzI7qkU_Fbz+Nm9Sz?L{$$sS;3v$_PO`q
zIDBo1K{q|Y1uuZ%zfzHb3g%?LB-}yB6eUxUj~oR@ExAlheljP*M1(Ox0?0M90u~%`
zBrqr06Pe}l>&)PQ9Jgi7OQ=~Opa5q+OJWQH-k%J}nu)iB00t-89vGt{h5AH!2~!4B
zuF{M%`7$C4^ANO+&1r}wAYw$G<{%Q-+=dc4!VGAD!WzmDg}jnM(TqNUqlFV|behP@
zAnvuVQz2qaXagnP;6r#&FjO#<WOFSxLOb3Ok8fobCg@OypbB!3IsYW?FA$I!6^@;3
z7A#v6M)gQrR=@%k3^i&dBZxr|pzZslPOK>S^d<Dc4}Sn;FNn%^jmBe<5nx0kCL=dR
z%}oV#s~c(@Xg9Xu?SgHmxdimKw<XX#fH6^9Cf0rlOYniAbg#SNpU7+jx(!oz`&;7l
zh{;T9A`*y5<USjJIiY7f1`Ei5xrxrg0iMu;1CRwI{f77p@PhAt{6laUACrt7SdRhR
zV}&*ExUf&cjS#iG+D59nkz!5~s;C?x3aP}&z0HZYu;Ax12>Q_7g7VjS*B$U6@UQQV
zcTWU66JU`{!@{$dJcX_452J5SVX78w)+7QXXuRV|poqRKKL1c#=rQFXCWEjU91n|W
z%o~(sv-cP&PXg%*3_^f`E0h2;k9WKx>;iDgPY4k2D9pnkfS64nwDTl7(aaPxddiy~
z^{Qum>mhIHW+$F46Dvz)8ut0$cS67rNO|xDvV6>7;xRV6jIIKV^Ru`>NsK@KAKoGx
zX{3KMvo}cyhyeSFP@eENe;sA$vY_mLUsuORepVt=1#qE%5ThI3M}UHHXrfmWfH4Nu
z_d4a*dgnJq>Nfz*QF#GnczLIR8<+`uhY9RqGbs`tmCzLtLVvWESJOrxWKaP{=7L7H
zAk|_MUvhzCFoK3=X5@il=kYCX&_Xf@GBj8K9Z(4tq5lXi_<}Gv9o0d3D-dHRK!f1{
zPM1&~JV*vUxG|U3TtY~M@^^$usD#YsAm6Zp#u8)laU{++3e;zPW55D5s2R$^3F<K)
zau{FXX9O*<0xE%oN!SE$!3J+3fq&qH+ChUVkUnA}5GRNkDR+j)QHF8=h9I&YCbSz8
zgB*4^2AODJML>r@*ekbE1P=IBllX@+5Qv*0h&9L@c*udTcy}In2}II<Cw3odVS-xd
zbcL2#knkZ|#}}eV1SX(`r1)(pR)9H}CLdBJ9)xbxB8&q-jF@nGoRA`ECJ>jG7>H$X
zJK~Hi0F7fXjh9f3o4|;^*d&0pYrYq9rND-F7XOXoNMpaaK|ewxHgXnB0*p_0Z!NHP
zo$waxu!^gwjbwrc*O+mOsEe5fQ%JHQ`RF_QXiig9BzvZhPJ)j6Xpcd1Bhd&WJz|V$
z=NAL{Q6Y&}u!xczD2r6cDQt3#x9E~$=rAHeRG9Zuq+%yis2I^m0x{5lmIsq<VsMhe
zYa|k5!oib1c?l~}aGCHY&XA3(M=1L9D59VTM0u2jxG_nI2~2rrmv%E_fRm;IGN8gI
z%b}HP7=9+XlVi}6Vp%G8QYna{D2#$LV=0#>Nd^bN0{;k*BdLm;kvhwW2TxfW3dw{F
z`8uBxDxw0HIoSzn(kWzsm#0#hb9pIt`Tri#SSYM0k^&i+&cT*4R+A}dnw_<hmVhqB
z@{$GECLwTXyCMg8SZDx~Tv<pWU_=CL>0_?RW#LkgX=yB4Xk?gRn3|9R(L#BBX)HA8
zEmj#L;$oE4LY%re2FIBRuqh&nwL9&yE?s$)CAXGsm~htFeBVJX+rpj7Qh%0^0!Q}=
z0V#E%*<9dQ1~izQ97K8A*@%j1EYHFT?8ynMDNh1Q1_GL%aN{Uicr8CEYhxgvBq^FW
z=ME2gnipzQsW}D*a|yjECT;R|eef_5b9i!BGhsP6I6<PGNdz9+eL~516tyx57oNbU
zqU}-uA)pd@f@qm=F*T7f7Sb^!6aOh3bV)j>G8Bm+HOeuK_#HXAqY1bPAxb7xbE39^
zcA*DYH9CFcd1uYCq70LmAfuaPVWnfLmm^b}mJp%zX@q}a8$VhELE4=)Au#PZG8OX(
zSIV6m`Zfr{r+bQ~Ez^7p+A)GNimnKufH{aP>ZBM7sh*{w927cWQv@!m7H#4*Iu<ok
zGX`-pH_a0d7Qq4WfEQ`AHf{5#GUNgq5CIzT0xAIk5ugFdVRx7slbcrrnX{$P*s8C}
zH+%pAFrWew&;S<j0&u7a1;96c12~Av0x^IAY|{cRpc0WYIhDg@D#5Eu>Z`5_tHMgG
z#)_=UibGG+sd1V*smeNHWB)pNQwhT93E>q1q-v_8NUOG535)To;YtLkx;ikkIF0i-
zSOKuAItcV?uMvP3Rf7T*0I?9ert=A!joMt&O0CwqH+}Orfm3?uDmAvDu$*(RFL5`g
z^RMd~up3o1S0g%_cd+d`05L1DoI|j4))(SqIEZr}vs$YkV0S%NvGb`2KC7=}0IGBo
zsY_c^le#|x6g}U8t3nw(+(SHH#b}Y@J(#y^HNiUyG_mgiv~*x)^?@8oa;eDpq1(DY
zF3>;Tx-nxLKlRZ7NOmIku?gf8Kj)K(2Eb#(^HpRU1Ng(X`QWy5A+N$Aw`Kbpc6$PN
zD{R7ZwPS%j3uHjyQ~xuGdsgdM6KDI7VjBTudu0jaJ2mk?@e@E3Q@NAZwE(kglJpvk
zO0@j)w|J|!R>rr0Ai0;3C#?$=;A1_i3$~r$Jjg>p((|>YOS;*k8$2dI^s||H1_kXy
zIwk^on9!yc>$y;Hy#ug4TFbQIi%d@Y5+vkUf&osQI7BKm3Jd_bx3EK?;J%n}L!r<?
z_T>Q4byY)jq?j<j{MEmiaKGzYL=dWzxA4D{z`lD~zm`BmJV6OBG{E+8z-;<L59|pe
z1VpU0zzSTz`Ov^f=@#mn3nVPQCu~dP>qS&hMJVjTo3O&WYM!icM=xx{H%tWN3w&&(
zM|Fh5Kb%K&wEw>e6^%b^#Nn&M5Q9jS6u?I;zLfMxvJgp5OvOx_#8r&NS**od912&=
z#a|4@VT{FIEXHMQ#%H{=WQ@jZ%*Ji}YijJqaV*Dkd{16{0QLk=%~Vdacq-|13-JUL
z@8nW?%uZ2)$D0rVBVfYjRKZlJj8p)~^Ge9ibjW^e3z6&-f~*OcEDN0M$eldNjEqiq
zH4C1+6Pk=ep-jhZ?8Vg=w)^8xCKWRVs2Jx93ojK=D5X-na9Iu(%ZjQWG{p%PvB<Mb
z%Ae57d-=;23dzfS3Bp{<xq!<jl~N<{%B_&hV=&FMu+5o}&8g7MAVtgE_zK|+2-SSe
ztnkgS?Eg{ByvkbK%6dX);n!9o#S57QR$?WkxUkN6npSJ&3B+6q^;`=5oTlRWQv@v>
zwk!+y{2}_>qqbnsjp)v*P@DesSo93g3w_Tsmd|6Q3lq(cJMmWU%vtfA&J^ue3>^!Q
z<usF}hPNQnHW@1d?F%z~(RWzU(Yy;TEm^o$%&CCWz|0CcJ=5+;)EwQ@F!j<vT~@Gb
z2|0ZWn`P1`ol_Wu3a%^)=A~g}fL#pMUJ~43;O9W|1s9oMVfn>c`*l*x^;7`n&)OWc
z95mLUg<v)VVeAFg_Xc68Wdsw3UY}soJSW$H?Lldc*UaJ8Eb?G4B-La+30<w!##LZ^
zE&tY)C10^?aWjKoiM`e@)L+f@U#tb$4mQ_kQP=bQQ=v^*jlEibz11^zULK@gd+lI-
zjoO$!V`jbC5!TrlRvm1u*ck2C5f;~weA){Z3eR=e9CiS$C1F)<Oeh`O4rFH{CB0;3
zYBiQ>g0S7FcHDcp&)EA8wRUSzQDvh$ifQl#Eyai<4au7pXs6a^o<L%vW@0o3-W|f-
zfS_vodIo9mYPbdkJ59`5kp#}+W{ofp*A1tO)@Y0dMw8awd+}$SR@&t?V-CL1*{x&W
zUElug-4MCoDvd+q%|hiJ;UA(K=`CsOU1>6jY2m%#7*66LuG(Zk;W1u;|Gm(yrvC<-
zljFl#;MlEaAU<f(;Nv%*<R*>@T@lf2s^YdL;Vm9%TL9zky^u66-<?L^O}?xy?gYCA
z9jqqcLN49DMBSlaa&c!Y4;OFdz;!U^5HdGzUe_2Gt#gE(;%f(VLU$oWHwW-p1^b|M
z`<8rTc+eha4=o|*94F8Gg>@<M=r;EfE@yRMH*@dta0&4?XP49#(omxntqkxDAGboF
z?i^~zc5devNvCg!s_Ekf-v~WxZe9j(9&t2>>0ejpVOQx^SL>Fr=XvXMe;%TO{%`qU
z=&_ENitgm6-sm8=b&#IUF5T=)w->W6cAZ{!whp1VE*!efa(EsRzrN|0KL6+8opU>9
z?0(*MfKGHT;BSNu>)M{^D&n7;i0Z)}=}SrPM%S><R(JdA?W>yRxU}XP{!?rzd5wsD
z23V8aH-MQ@n+Py|#utI}xqj>S2el{-?`JgHVj<72@5g<AMqn9=r}2-c2z?iT4O8(2
z$npqCRu5ko*UOd==<*gKm6*36DUTNQWs>MuffKkH@mKOT&+drqrNcRS5nuE6A*D0l
z^pBA7{AYd~fAk(-k+diBN?#-<KjVuo^efMNTEFp&F7|rC^uV`(?AWCZZ+%fOCR6Vi
zRWI=wZXa0>G5sfj9e?y6ZzLfPe<VNl`Cj(X-kr-a^mm{3f4}u#@Be<9onA)5fC=AA
z3lHu(PM$MJhMJfObQp)VRcPn4hlF5?^O=f`Dz8wugat_U8Mp7x5g(8!`a`n%w_%Cb
z$cdKl`<w8ITDTn!T8dz}AQr)Mnfe}&X#8;6`m>9OObENAKkRdV2@bD?Zy5R{O!~ne
z)p&^de7O36IJ>L(`iGc^-8cJAN7H5C{B@`^efWa)1zFQC``vLP#9zdj@Qy$*5DH7O
zp^()Ys$`$W5qgY$md$5W7?D-5LPTp-7*<wg^9nO)$SCTqo4Zm$Ps)MHbS%h7!jbVv
z1_Vlr>!@VzsHIPc$tjBLtSoInj?PZV;SH*Y4yFq<RCJWI)c^DpHC1($wbk_%Hdc0)
zw$>I^hevmpmnRlNCPKBa3)pa|<nzb`Z~);%Mg~pnh@*tX<)vxpIeI#Z80(;g<)Cy;
zc#TVafDh_JMhu23kns;nkZ^NoCE7pw1UG2XFi;y+K?VmQ9D*I`M$n+Mf#0fK%eHMm
zGAJNqm>Xj36vHb*F!uWg5DLg4=-{-RhmX-hi`wW735V)t%6&wX4PhqGTR|w+u+anx
z5!}ur<I0_D$c~-6Bk<(aBx$c1$w5bQRyv8&%S554y1uMeu_#83M>u*U)%By&wLY6Y
zq&S4=#hP}<a#cEnsasJjp}vtigz5mZL!{mdwAH3klm90Jh7B4q)L|isv;3Var0p%y
zqe+)GeHwLY)vH;L&ef~euZF4M3Q>uyrw|e`pfKRjZ-qw&D_(G@5Fx?~$U=Mr7d)W$
z0TxZ2rh5~$#JhL{Uc|iWC+nW&(3P@4;Q)R5k<5QfdkzYo3l}mvU}^5Ycl+SXi5o|*
zoG0xJIN~-^L<)o+^U_mKr(@i(Zk;!}gNeW5j!SO5+D6f^z>IPmV7L67tI$6TMa0i9
z2LYSzJx~a{&amvJ+HS(L25?LW@$^wq!37;yZ-D#uGo`B<8DnHP3;)~dvjN~4uoMpE
z`Y^;JgcPp73jwrJzvrT3(Ucb><U$4+5u?$&cK@)_BcBwZ=y5?HuOy{R?F`aF7*0NX
zvb8?_{1ebX1s#-7LSKVz7uoW}=`Y*l%BqqTy1)RV5nvDuhVh1=)GG2+6e5KeT6FO#
z7`d2^6FX8!#0#lH$V!V0<#NFkPD?pq1P(ZGKoncC@YPaGnS|7Y7a9ynhV|5<Rg?n7
zY-v@88oTs}Om`fn(E&Q_<cKmRt(4j!to;?E$UYq))KR;5mK{_NQI%C^T!pnwb2(v_
z6knrMDq3!)6_yBMjU_VMZ6WoRTzZ17R#PGL?d;riPhs~BcaectT1H;=OI8(2z;~2~
zL9v(!Oa?&cQ*M14xX_keei`PNWuDoVL;n%=1r}fyC9B{^kI{l21SrX|O%^2Gv`wMe
z>^KTacP52mE*LsyjjcSGZ2*oKar#WAkD$~+gOnaZ$59@TfmbZXCVH#22PoU<uiGqw
zY8cY&P?Q51qX%p~qHwm<F$cJMQLT|U+TnU3#`auoeU2>Xq2DeV@c}4pTk^8)g@Wse
z18-^SmD(hH2*WMM8Xm8a4x5|I72i-P(m|6dZls5;J55of^mrejy>NZ2+7rio>1#R1
zy1JIw30;V)g^)dKsXBM^^{)CRyY=EnVcw19eCK4J2JEJp{PN8|AN}-Avl&rEPdNZN
zhB!dZEeImepos|5_Rxh5BEaAUFaMy%)k;u-22=nAXaf%i4$uIGjIK-uM4$o(0KW*x
zkA7Z&0SYS6!45tR3sFNt3@~uO7Px>K1qdJpBJhD0jIV<7i2wpPz=Aee5Q7nLiwa<{
z0R%Jv129M%0VSBg{e=PnFnECqP@n=5Twn-9JfIPu7r`k~@DB`hU^Is10t`5y0xgIE
z0zPuT{2ehAdLv0qc<4hQ3bBm%`+)wM_c?Z`@C7V%Aq=zFzz1#xhY88xC;~Y@9mesD
zxar^j0ysb`PB3kK+#&=Ec*V38a*#>npa+jL3K0%~1tc^f3Ujo=7QT=X2aq8RZ3xKt
z3G$GQ=;058IK)R%k&v%6r2j|os7F*T(2raUm>0n)Ml$B|g0QTg8RxjaWGoVZ0<2;s
zAqmV$TJ4q;#AGZr$;nO*#*Ui^WeLMb%D0(vkEvW`4R5H+LEd4OZ?q*faXE@{juJC4
z=-~xUK#w92GmK+Y-#`gkP=g+neC&gb`v~@xMKR$YmC48)=OY6ZtOo-v@W%=kRe&Ny
zLj@3cK}|Bc(M4&&p^5uS?xOHX1AJ5lC^%;GOrnA><RKF_j41+SFoMpcG)EwaK{UMh
zHH~@$gk3nm3PRw45R4#!Bt5D$c2-iPk`1OI9Vt&7aMTtY5u*N(Xx@^AAhHRSsFDjS
zSU%Z+n%*==SrsWgQ2%<8q$UNZcc2V1C<;=HPL-or^@moaYSPF6l~OD9WH=4+Qh&(w
z2yO)_Tyq)?nfCOjc0KD*Wl+>j0rswV)htaX+X9?=bg*;fs#nnnin{*ep?f7lUoHAq
z!^SnWTXh&{4?Eh#o`j`Pa4Ae7yOOt>b_fp8>1BONp1c+St(}#eRjFzU$69u#V}OBW
zAF$eJd=;VL74LY-TV7cxG&VUy-f0++T|GDeN>Dg}12FU6_y(!~4j2^z)Wu&`G+<Qu
zz3(Vg&?ykGEJyI|f`G+A-zco50YEYhfNSC32G<u*?Om{fqcC3#CwRbr%I|*rt1eFl
zn8UNMaEBeNr~l?jxHKBZ0)tun;kTt2zxwUMile||R8V-vI5x$ILjfcR!`Qq@R`QaW
zTu}7#f}u^8GA#^{5GbIaa<*vFl)2nxf^ON%VO|ZG#aw1HpBc@jcyglD8`?Cdxd<lU
z00uh1f)})w7G!?&p7}f)J@*;VsQ7cB30-JIn{Um!h{XXaVB$khIRYUt0Sa<uV_9q<
zxR2KKrjLMWPJcQIo(A=(NnL8uBpPR?R`se`-D+3A8rHFvb*xc6Yg^wM*SXg9u6f;S
zU!V78Z2tAIiCt`C9~;@pR<@Iat>|Sx8`{y9_Oz*8ZDrTm+S%6jwz=JHZ+|<<*k;86
zMo{h%;Qv_&jfTPonwuJOn;YGL`hY?RY3_5+?A_&#H@NxTZ-4(A;ExvfDh^PB5+ty3
zlxjB-5PX_~AG}cx=m4(VJQ@~cdMO4+IKDNWt$=?V<RKUN$PYU3R%oaJCwN*38lD=s
zAY=t2u;B(+b8((E&Se@R`ObOXbD#fwea%j_D|C(pmiMVEsys#!kZf^`Ck5v%D>~4r
zUUjQq{pu!X1zZYn0IxrIU=2Vw0wRFq13+NEW$yx91hWRofkF)V%@G8mP=E)F$^mo-
zWlS(rUk$-;>}pR1*^%6ULlyutQ^)$^8Q*xvb6e}HfD24LcITtIU}xPJDhwp&fXT4n
zi2s_G0q3DEiUY`i=HLv$c27`&?INxKfAA}TbP9tC*!)J2s@`7?Kmr*I74!~)#^&FS
z#Nm&=^ONB~3dZWG$3GwX(U*R*BhR>&Lg0GHhye>KfPf0PK%kAdbCBS%C=-+b?GHc!
z3}&i=@iU<O#sh@~WT5vV%b*+^kU<L$&^h9C|NBHm2oB%{P@n+{!1ee@_f%&Ig0BHo
zzy;#V{dfib)(aFSko;zY09Am#60rFcZ~8(|1V@kr53TxWqi1;Mq@-dG7A~}SD)m~B
zD@qR(5Woc_DgsDA2X~MJB19oH;RoM<Ar?gwLI5<vWdImrO&&x35@#fMiV|edCjV@L
z2Y1jAq%aGHVD;PrAwJOKN)QagPz=Yg$xe__8pmMX1QQ&g>7;;-tiZKA?hC?T3?yL^
z+@K8#BM#za0P3I-aEfS_kTDoABlvI;s^AfzAQB{DXxK0cSO5@7!V9C03@gzRFA)=E
z#td(+7^VaYe!?=40xk67DDGl&I*c3~O>`inB{YM2s)9mt4<86|G9s!J`(hOM!XU~;
z2wq?kGZ7erQ5c7@H8zo8(9jc)ph|{dPJ$#$mgGc+<P?_zOp-?r+rdmW15IKPM<$05
z;e<iBWJFA%8C?+uevuf{Q61Nj9aF&=_XQbw2MQ3TX}|?w5~c}<Kw`p#vHw7c1yTi6
z;)SO)hF%EqV`_yL5i&t4=k(CA9Ul@RBQhP|@hwsie0~Na+y-tc=W>2Wd!{jQDz2sa
zk$aqHaInU7rYCjsG5g*od&uT>b_{r`Xi?z7Ate$gb5bWskRm~0o0dtA=!hqvsgb6s
zh_EOjf{Buj@{-(%n>NUsMDmmFshm;>oqj2XFprhmDVcU@3F4`ijM9=wL5iyBZCrr!
zS|}ST<0p60E#DF@t*$56?klintz<x=N`SU5%BXJZZRAR~EQhx;3$|1WxE6~Q*<k>#
zYo{XXxByYPunV)CYqZ`bx;$&Q{4!()(+ePK1sb3QD&w{MK_uhSH2+T%HM4ClMMK8w
zPRItZ#eyuv{DjEVro{dW#b$F9Xsp9LA~aJIID=C-!EH5x@i&JPIg?WWgFt-0Ij>FV
zcJerv6FQ?)I&G~uGZ6&nZ9214JGb-Gs*^jv6FkFHJPXA;$J0E|6Ft)t*qTi}+tWSY
z6Fys^JmZr->(f4^b3X4=KlhVA-_jT(U<BIm6&%0=`pN!6A>Zz8DeP_ESV7%JtpY|s
z718HG0fRy1>q1R|-AJQC{Ukxr=tEs$-ujb7OSEQ$4gyX<MOSo1$w-ZA0U=P}15)4%
z2e9K*<l#1s78LF@MxawTfDtB+MOCyuFks;}1v^)RGs25UGY;Z#^hW<r;pjx8N&h5A
zmEuY%(Vm{pM7z{WMFG_uU<aAt1a{Cx%gPo`uiZYNLEQukK=8*@?lk6OXGq{52fzee
zz~0J@<|t)TsG*<wWJwV!<?c#D;FRG;qfl!>MI|p=5VZ?%?@K3@Qo*!2k%j?=0!?9*
zf>5w=Ak}5&<4$$sPA82nuOP4npaqH#H3pT*4z)%(q2*`>29ER?=~7EYK~gJ~S9^5;
z298oPwHna$K$k)&Pk~a@#qLH0RvTwo^`J!zqU*k{?&faBB0vJnp#acs6kNcDhQ>~X
zz*N=d4Ni|9>W>tt0RhnM?9^qx?8I;6i(BgsTeWpw2k=;-fbjo@ELzFN>(r%Lr8Ml=
zHDA;9UuVo()kg62pvpkN>*}jraaCf)p<t6s?{?K!GuBIiRR)9=FOua0wkrl4r1yRg
z|JpPQIDi>CKv&iy_6AGB0u~BhcJ>B`W!%CA=#BEApaWz80np0!j-UdxVe~#g8?@8~
zK;Q(V2}DX21wa7?6awbtMHN}D0d(pG+90_;4~@Pr8e*UXs9{Or;TSy6AA)ZTh;|;1
zb^v`3_(JdaNN*H8;AV#)X9Ff0KJ`&!^$;wNsCK4g-_{g%_6U0RXE)D5L{Dx9K>to6
zUd%Qc(AG_9a4FpOWN9xNY!74QPGdV)KRMQ87XmL;P6Gcz$zxT(0U=N~hXMknK?PJ`
zXa3LovcXIC_ETgx0L=j*#NhPwE@;&N`;?+*Q9$KxkNq;Cr@ZbDa1j)eb`9tuT=Dd2
zyFdke3aUCHIY^-dwy*mnK%@5O{L*jzW{M$300Mxh0JV`CMj!@uCVUS-{f>74G(kei
zO$Pb`b$R6hBX9}cFaAVfcPj{86~ho3Ab9l_fu)ptXE*%rAa(f{Y7UrZW2$&rKz{GQ
ze`ka25F!MS<A~lje%(uEk05{5Ky?SO01q$$)5L~y)pK7sJV94e%|r_*fl{9Eei8CL
zhA_Egzz8QdA9)ygjgY5=0U<nKazeL5dNwAs0E+*d1O}+#^jH-Ol6C-I<q4wK1h#KF
zrekPEU=A>E3ou}MMWF~5Weu9oUsBH`Z9@Xo*F)S41~(&$2QY`7&|ji(GP5uj8{&wQ
zm_TfIVoTwSBV%he6$(#bi4VhxiN*zm>yD8K_3{xUZ#a*S&@Ge@3Yfr!Vc3(kQ-+7t
z{`R0g3K0qpu@sUu3M}CW{1Av=nU#mYm0y77jP@TJfHwkJMS6CBPLJL~fMp6`F+{<N
z4*&+TLyKMD1D1K27li|0paG19(ws_rA>{-<#0`a@XGaAd5C8?nPZXv=2!NSv76TDZ
zIVK$O6lmE=Uf`B<IW7|TP5BlXASDTiz!3krRF@~Xm#wT3;1CNmAy>uul|k~H6@d}(
zfK778y*}BY#WR#YR$1tw7R5@3qrephb%eiTM#P{@??C?$fC92?k!NZT=nWz0O^Ca7
zD~3>u%NP=xAUit11xi2zwD&_oLnhL~pJr7X`@scTBrlBOWc+!hD;g{$;xcZf4^$we
zNBUUiS)K{`LqHL!@luh6*Joi8J9UwgcbXIndU3j?E-Pc0)#Rbm+C3v$bSD}K&cjCp
zRBqm*PC8nwoi7lw@fDqf1qvVr3Sd<=;BK_qr0L^K<ioH_!HR_d3|^X4NKXr1pfsC=
zPm-iWwq$$ZBc`-~4=r0uAR|8Jqm=*O+DCpQ8YlDv`ueW}d$6bat3jbjsstR-L$3F^
zaJQOhMw>mxu`@u(v!U^>yJEIYn>*6P71bKKWB5`NCv=l=Q`^CxKqeJb`AtT(WL{gi
ztve&^0A-$5X+t1M9cPzudvZn_S9Aqs?G`c+0tTEmGthLq8rtXt#t)ECF<QD)wZj}J
z#XA;8Tp;7TcjaCbk`%f-Yfb>XqndJGy9-oC2oUBVTcM<3Qn%&CDo`d0{96dd1tbkx
zx{sh=T1B6eo5Yoqt)1JgPlt6bT2rZJ_gve#UA%2#N+Be`qEuwUb6W_`CcU9xvH#h<
zM+RR`0G`b_d|*g;PG>9D0H*&DKy0@odayIeJ8}Sc{99Js8D_GNQJ}_eT*0xMo&yFW
z`DQ094GVI-ygd>oy(b|-i6dWpkP`>Xp~rN{rnXBQ&*SpMU$k7>h?d|el{*3psPcrQ
z*eN}tEk}r)3VjH)fmilmQ|%`x_s4K4T!WUViJnNYmjf6|mHWKO{z{<TeuI#utC+%1
zlK$vpRp2-{;02m%NfStGQ(c&xL5Y~iiJn-N+$bzhlAiKA6dZkWBAuCzHPI8@jA4K%
znHHXS9neQX(i2IW$(xkL(k#Vgp8_@av`Ez}=+N=CE8oe_<*AhN=#*fHAHqD(*BvMK
z{JF~ox;P6n^F`33fHD7zi!uu{-$`=_?mfGfb_f!Pgk@_0DqY7bh^d_FdOM{Hew+wO
zwJzJu1Il*9lcB4=YkyD+q*QARDk=s>;K>a_m7w`AbBi99s;QnTsx~XF`tqu7g=GZ3
z3T%-u`F-D`VY2tqWiOM8vEVKx%HY#HGhbe4w=1T)tK>Icw?-4^Yrg4&O5P<$vMh?S
zs-TnE9qS)5KO<{GQK2?x;p<7Gz&66CN5jl<<HarvLE9AZmLfKnz`$A#$Xs)E(Wf<A
zs_SKeH$zD6ZDH>9)x_jG>jyt4xBk(pEWEJ{W(G|)5dX@ujPN60@`ugvA1%)2tj@sM
zWf)&IE}zcqtjGT+U-U<R)hhqdB5l$tEoMZGP*9)JIN<C_U-oBz)J&iDZy)z_pB8Li
z_j}*>e}5EsANYr#_<djaiy!%ufAo)E`J3PQ*PZ!aAw*3fLi4`UY!w!!zcjR;G`L?8
zpJPK+!~0ud{Ko+Nu|En3)Iig}KtG^ZPsaL9FGI1QLm3zS)2IB??feTR|HXg)fnXpU
zRt`hqW^`OKo6aXR>MTl+m65T!OlrH{FE}h7lgs8aI;~!_+wM0!&erkj_B&55K9ou*
zS%ue!OhH)53lzu6BBMhUpC6#!0OVhwUZrFchK$nD;p9=~<x)jRNk`UWpQRJ0=MZRA
zg$&9^il+Y%tt~F;z^jwRiOPuMYNYQG@F!yEk^>1w(}7}Y*QjgflB{zS_LnKD>Jasb
zwbnP&a%^+A*?QGrAsBa)BIBZQl|#qLNQAq90tXT-Xz(DygbKCL!GmWZlL)!u5i-=S
z35phdHtMS)F`1l?-9$ENZ~`E+fh3QRsP*SXgD)$Wm_*6Wn>HaI^c~1KVCRvVO<J1x
zumZ+7DKmqf+;%ZkgAy`ifM9Z9g$oidSRjx&k*Q4~^|~#3vQ$b-6fa|v!>X05SCB%4
zri3Vkt`>O~p=8|Hry~?vD@L%8vB56l#EKU)ZtU1`Lx*-2pM|2A-qR&3s*b4)$MYM|
zO~(H^J6pjR0vIUbdLdm(24Etv!EhoK*5lVGuH~#CL5uSz7Df)VIKjHhZapwyMa(@5
zwd&x*iyzmL{Bhojn4xSAbHD{Dscf;6FK_-l`t*t;OU{GlK<s%#<PRt??*Ie?&E-D1
zEQG#&Lg1&LSj{vLn+qS1;aLF>Bqd600z&Yh5S|?nL4*S!5W#p}oK?U9Au=J$flt84
z1by`#5g;Y`?H9!dF;q8Sh!2t&Atx06A_IjWipWF@CM=knk2V?@VF3|HU_=2Es#t(A
zO|B>e0vQev18{T6VACKSDn(?CBOcjAl1tX-q>5*vxCDR(P!(c|19-NfmrTSsL<9d@
z4$-BDVE$NFi6|<`B$`xm=meck;P>D>RiYTCAlm)6;(aa_I2VEndKZ)o(x~?-sG*8F
zDydMgC)pVlxG+@=CCoE|3`<Zo#0o1M@W)hH%IRExk`6*jt+!4!>i~y1(85$MgcSn^
zLxNNQtW&ArrK+sDI)no&49h}nXC2T|3^H(g1Og|>5H1X!c5#+eQzc_8vN9-J%BtsH
zI{>V*0v9Z<#10|a03@g|qgcbf`@*rw+7tl?CdkkM2ONyYu)`2b{E5Ld@u~&888efx
zykS-F!c;JPKyn3nh5&;MCse@l3I#S$m<%sa&;*uCe9*$bQ)$X^ZtZ>rufqRUkSv4A
zC=bwq3<!XLE-CpQLF@*@4m<D?XO(*{(&{oH@SZ$Z=yRVS34Jig^Ad4%(wc0IuGepO
zeMGj~>T}4<Q`wBMyOGNGE3LNn%NfxjAHnPyJsnmm<BdE1IOGGJ>W~>6bOJ#G7`(6=
zzOhcdFAFN1ga8Me_spLYmyHlZSSy4+dg)@tz(NHGs2W38LdZ}8VJLVFG)ODFP`j!x
zsABmDm}_pj2_;PU017bVemWB>jN5<;E)Y0?3J4Ftz#z9paaIEm)V9s+#Jhm|5XdXP
zxe!th;jinWM?kviW23&~1q2UJ{`o$UKHIG?cO1x`3|62571-o}t5W|U1A}6|uh7B)
z8(75ea03zm4sC$9%bf!{5h7S&pb&WyPSsj)08Rj;1Ot=+vSO37PZ)<1E*Jp{N>DZ?
zaPVCoET9lVh=l`?a2`xU!AUB>0_nxibMxcOhG-Fj2w><%OX!{>z^5m5$e@2>so{5U
zsKa&TribXG9Rb-l03nXBQ}V&$_rf;>IBL-*&3j(-a_2%c!f-Zonc)8Hq@C5Z?sfNz
zU9o<s#sTcEcNy%01!Mq$$WgMAmb@e;P1T;skReZ5f`9~?s4rTzY)VG}n9eFv0vOyz
zTQ!_iv9`D?5(o%sA;3UO#waHe@UoY_$=X*eXOj?yKueztWfT7pU>IN~gA?OXrl$(v
z6FK=$2oM;WEG0tA|M_bGpcLijNcqY%QLhQz+n8B+b<KBWQwG}<LXNVbBX54CYA1NX
zDY~gaC#-WD?cC-EU~r#KX{lKuG^iw`Vv{_LQwTGhV=)JSf|!AgjQr^*#unyIod~p+
z>SEeECE`W-=`KrodZhl?G)?iH(-$g;=tKjCHQ@0Rn;HdZM=3$j|EzRAJw?<qW4X{$
z9s#5O@?|eCp_f&*lBlp$XwSCU6Byhwmq$hFFPVS<7c?}JUi~Uq!%CjXJ%kKQ(-BD-
zxi1;i>6GXcBmz+2J<YInG)@!(3&d7{4(P*jm#9Fk0$cy9-z`OfOE`hp&f0|-{4AxP
zn5ht2@J<!T-~(;lXA_KCuqEVG2#Re&TIpBUbn>TRv%4&5YsyZ}iVdDTlIIgNyEGZ7
zU>=sUQWHEQTdA;C2q9=k0ZgW)o8>7G#f{}*VZelkMz)wI>&nh{m|1N0b^yPfk8nNf
zN1ZmSbECx8#?C@n%Ra%hEErD<ocjXkwidHY*zH{h&{^vOH@iX@Z(H$O1;%dn2q#c(
zQ7I_cz<O#Bah>ZCwAEJL9$~(F?W-mLJKz;$5CJV%L7c>@;SF=R!=WJS9m<fL(1LD!
zZ%w7PT<{>*IboGcaM%;5D&6_LQzxp-%n~?I0v7+cfMku`RWh_?wW+*vYY8l2HR<^-
z01pAi#lkT-pGYefn0S8$i0O=%uv;bz!O5=GQ9M<f<I&bf2HmCUbeH^M&(Wg0!qgH#
zj(c1e9{~ifJ)EwPNDGvZAb(%F=+L-404KLu2yfQz^rYEc61x?3S~J&?Gh81mOVnjs
z>~od_tmY#S+RTQQrG_9)Vfq+()H&X9k1Hz{LECv8vV~Cs<+Wlek4Dg5W`c~b(E{Ok
zxYxe^HL%A3Vor|1g-;-<H1`GB+@AOdgFt~qmOTK&)_MsfkdYHs;O8pKN|!b+gt48#
z0O4_<0#tl~u9m_A6gZ&W?)DM`IG`<CWqSVzTedc~!wuTICYx5$W~Pa!=Uy!b8sEye
zGZ*J6TW22OhV`~)!C8XspU7)f9l(>G<eX4J4`O=`)zt`G0E085fH{8_^Ctv-?LAfe
zVMkzEqFwG?pJquS;wvW;;yrI2NhEh6ANdeU{%|F4L*)}6gbOU*1f3@^DNLvL_sDJT
z2%vk_sr2}(EmMnVGlAM8GWrv=eGL}yI@o4EJKBRi>^hX;woVAaT_vJyZg*i2M&Lw^
zr~Pl_COBqJctPIjJ_NFFLu_sbEmDpEgLDtg1zq68j|ETg)%N|<8G^f8=MDvcUGwIt
zO|w5W<M%Ja7Ukge1q?heboh#X2>$<wSV!^{XGzRCz9z^Fa|dt%rxqXvD0PBvsats=
zyq*Jqfw@mFZr!+dlNOGCE97g6lHI?u_rGU0peY|X*N*`9QHcH~RE@914`K2BZSqsH
z-mANBG{Jjk@b>>6_$Q>mcxk^s{`2qEwYz5wdCDIG%mWLtoaTLAcFcpFotfUXST0C}
zrW8O3$cIEM4w|)3E_jlb0N^~Z!07D=<2BPn$Oi&=O}|-`=@pD^h~NK_ivY^fAQT|*
z<%Tc7-8^C63C2<iHddG=Tx{h==-}MIX_`Ofpb$L3c5%w=8CODGAPfXv?hSwom<|WL
zfTYD>_6=drXo?YL2=eii@(ur>jn$m^*&w-)pufx@!bM^GP~qxf6A=!;79xrnLeU)J
zRR?kc;V@y|sbA`7M*_MZ1HK^yN?=e)0T}8ZA||3Dh6?{x4sDs+6nesUC=2Nn1`LV<
z6<H1kP*DxCoP7Mj%?N?l6`c!gKm=$G8+sEAsDK1CfCaojdqKg4FpQaT;^6sS15`i@
zxPW|EjtW5H3wQ#oaKHgHfaMU&ENY@H-WLpP00LwV3>bq4>`uy5z#rfiIb>ojMt~|n
zKm=$&WmVCtmEtMBKq?M^F9M?^Cfy-fqQ5DMHf|y}LYxVh8?5MxiNxbFdeb+C<K4gj
zIiezc?BEg*q`mdy2Z;ZpF6>SO=;Gd4g+9)sH6f%zu2MjnW23;p3#b4Jr~nCgk?e7k
z5(a`)xBvz?fG#f55Ii9*lmIPKpf^NhH&Wz3USuk!#zuDJM-D+3mYMQRVms;+3^d~f
zoPeez<2Gi&G?qX$UL!r)WAibj<-nvY%H%<UV?x%XDGDT&Xe38^q!$gqQZ}U@jb$!6
zW#<s1G3H9am?TQJz#@4gRw^W{eWDD6;sVy1P0j-ZtYRy^Vk|yEYM?*`6lP(1-XbQZ
zVlHMuG@=<)%ejnzd^iBjpnx*L!YI1ckbzpS$j5iU09#~cEF@&TOiNJo%LxeF=53}d
z8Gz7OCcUtVWd8q$(5L_eynv=i#Aez=0X$8zcnt=`O9CM#Fzx0X4cRM|0BK4KwbV-t
z%w`Z(=4HMkvl*u@IH&UAhIMiea*k#Ml%|&$<PeA_cUnzDLFNf`V$W<RWtpdUf@fQV
zfCq#C4yjs5Y8**MW4yFLggoH@yyCfBUvUnZO|<8*B<FI{)_7cneA4G1Xi85?Q+873
zR9NOT4ZzD(=mU(+b_VCLtboX1Cldgu?~xIEcBfb*sA&qw3N&ba{)~rC1&AtxaLy=g
zUd?T4$|`{je;$E>64?QggUE&E`>AM$GyrO<<`ZzjX3igDJ}Hz&sT(+E;$#Q{s3#n-
zNEa}Gl4Ac$6^;Rv%+rZjg#&zP6f}U2K#9jq0+*VIm0~FvJYzt#X*V#yn(6_a&e4y7
z0F)KoT%gvO&Z%muz@GMLGIb)LK7pDd3ZN#c8|3MI6)KxJz@7dFrA|Yce%+sDshQ?n
zmj+R%N~x%hDyhl=d+b0C-~bNfzz+0ZslF<#7KEE9phR`x6VTbG%<2+Qnqune5%6jo
z;A*T6E3p=<B}K*#sH(E!zz!Izvpy>uNQDV-00wjb3m_O22&;NXE45lHwkjsKR_nE5
zqZw!`w4N)vrfXtEMyf9Bs;Voz#_Q&VfC-cw2ZZVXY=D!VM+DHTz2YnW^=rL$AHa@*
zzRLeA!X~W3!a-!XtFkUE#73;dPAtV%ti>W?!#XSuTr9_StjB&V$cC)QB1FbI?8u%h
z%BHN!t}M%PY{|N7%f_tC&MeK=tj*rv%P#B9?kvyttk3=|&^AWSJ}em!(Fh!^l~BPE
zZ~^d*fTJqL2hgf_94*p5fzl2E)6Rl=MlC@YZPiXeQe<slY^~HLgx3~>)rPIfSpgQD
z-PtCs+FEVf+Qroh2-Tu3CfqIDZo%3T!Q6g<*aofO4z76&t*VwmIuzuECWqxbZDO#%
z{6#=&q5~`N3OqcSAzo+`K&}@+14?<W7bNb%ncQ`_R^M{gzA^zn_yciHLp8uDB~<?|
ze_U>I_y-f*13r+eVuZsv978LFAL;g~?Iy(Kimn!b?ls76HUw{H?nQawLq2o?@4_zO
zR<HFwf#GiK8F&U>T#6GkZhCMoo5WC(buZ?gX;Vaj_})dk;A2#<B^YpT`rZWkwyu1o
zt`#H@VHBbiTt!xF#itq|P0X+NHo@@zsz&&Q?#e+~d_h{QMfno&`5LgKkVRMFi39^-
z6}+!LRp0>MM(tKGau{k~D6kehaLqXG^{y}rXD=F{QeD^snVHA>4guU9VG!zup?*OP
zbBAwqaBuuZ7{D<7o<R>Q3V6iA3}-8^5yu6uW*|95^JW`99>j8h!D)2mwn_h<6ohcW
zs=*ZxakC}Z4_EQYjqntI!F6;;7-X@AL<bAUu^cyn3vaKV7zw6~8Cy&enK%fU49b}t
z0Em#u5?n}z7_t*M03Y{o1egpCpYe)73ZTS?B&+TsztcQOi4*we$BFT?RI>L5N+kb@
zCF2z){|6t70;dQloUxn=1KFdHawr3a?b1hr^lyAr%Jyg}Im`!@#D|-J0GyzRA6v%6
zdGLRL^7)GLx0w<q0tPP&h%Y;HeFXC`(}*lL8loJ^CYv!A*M~CSNGbscrAWy3i1QNM
zvKidT9Jliv*RdINOy7J=yr>O2vQ<Exi!VUS)pW?nl+4Khf(NvND!BhZcYO=jj0-t{
zi@0<I1kel&C{c|SKnq|1CoHfA$I?8rL)wJJ*}NA-OEjYSW<=wRH*@kge>6Q8jS_FP
zy@j;+!W>DXj^e~aYw2d>LGg%q3`f^9m-tF9Adb~K=e<mu;0z0AM9&h80D$2Q&Fl>l
zY$jy!Gjl#cMVX*Kx%88Dv?sD0DIj#XD6~Wg8dFDENk#RLL6%Be5xJNP+?cc{@3dAI
zjy?Ma;E3W;!!KPgOWA_KRl74_TQ5A90r>#Z8L5vNS<WIT2@Avk1JKIw5Rm<?kq8ly
z8)0Zg^aLN5H1}Lj_H2*!I0E))kAQ4W0~El^G~p41z-nBy|Cs-g0HM(b;fZ03f@!1n
zP;S!^CD9ToDN3WXPSZqf$AThF4{VdeZKt+w*8*=dQ4>T`DrYMg-B1qI+i}Z|Yy%O+
zy$b704ezYm@3>Fqz>g>z68<b?SY!ou*G?ayMnlTL6w#&dsLy08ZdfAo{|xtfr%~>x
zPIu3dXOlK&r}s87nuff0e8--CYx5O(PaQ3nHwU)_1rTv(w;K6(A=%G)Cz6FvPa}c1
z7;wUU2R4ZZ?O;304MNq}Y?I~al0<mQp;2~31=K)!iZTHNEvTL}JvPHp$xijShU^pw
zkl#IrR1Cy~Yqudg-PGhQ!H^$M`+-!?jQEwDbc74A5N7{WR5f{>5xM0ocSv<nGI7;a
zA=M?kln}(!UqdpND>0LAcd@XNDA*D%?GDBrlQ=o^3+Pe^A(M)8(>R^f?aC4{HTW1a
z_<PyZmcuzy9o#eR)Bx-`cp;O4Ysv4a-%>~ubKD$oW4XO4`ieJmqbHbCrOBUbQ!P<d
zox3<zWz`%hO^L_4iQ9q3YHvKNlkg3m;Ym{RiQ=*$mT%S9&%D54oD7vUK)x-TWQm2c
zZ<7iLiBD}4MR!+{V|AiyA6~_xY(4vmMEQ30gw+1_m0Mwo$Jcy)dNOc(v}+enc-j(J
z7={tSgi%;?{lt3xL|{sIo1b5{+t`6YGhbQYC4B!@6DU|8X2AzI9={L3f6+~DWG1j5
zfqA_$EQ21#RF{Ft6=0M=v$Gt+EBwq!+3EEle~4FQ0cxj{yTvOp#y5?|cij>f%mjb{
z2;9sJ)Bp%Xz=H|AF3fv)o4{$wy3qIRiFXFBZ(5Ui4*1TGrnFyI7ur4B#0k)n3RDdO
zP=MbF8H#GXdk%no>CQHRKnpYg+56RFTl>Dp`I@Eu*E7;`$6UBud0el&)p1&U$yVEY
zJKPuYuEDOJUD_6VI>aG;mwC=0q?mf<+8Wc^(z$yJ{EW7?T1Gp4GqVY>vU!%rf~^^T
ztf?4XZRRU6faCv6rB^)NBl-}O8j?Zy++Y8@pW3~RA%52}e$kCU01!Y1kbnp*00H!E
zu6e<g+3L^_f6NxW7z7{T2Mo3?z3w!<x4}8ZC7sOa1Pk;YMPq;lY}2~A+q>ZvyK%n*
zum#}B$~LjgW(wLj5B}>9!OCU65RCuSynU}Pfw;GR+G}h3qx%xTKaC;U`~$&YaA2_x
zLS#}Y9Jyc|Bx<yzA|tX&6@pckU`kR<_>rNms%mnD5|+g26*_%t4XzHPS4lQlWsxPB
zl0BIMsw;%FLoTYVtR%gpu(7f;B^DG1&CP}+Iy)IWCYhuH8IYtaKrP0ltH&h<jun}e
zBc&Kr#j00U*tRdpH!?FBIkn?1n2G-r6aoT;o0C<gwOwAB#OrPDZtrjKaPe{Sa`SWa
zboF)icK3Jqcy=A0dYpUwd-UGM);3Z#D}->6(Fuu+4?>D`sUzgX2o4-XA*q0c4TuvV
zpbRMCB2C9MDUu<OK|+Xw2Pq$rsW5RHza@^k07SAvU=o>0L?$6=azKY{NKAEDk}Hi-
za4?nR%tKR%&87YZ>_pO22vBVUhU$EAtJ?(`Cxphp;7ut`sU@5afI5K85ey}Fz3@rU
zWwm5WDn<yAOsx_VFOpRJrH}<fR@7cfMZ)x7wVQ7T#P!+6qoTcilZ0@3MVAo5X&k3w
ztR!wiT%XOB9x(cEKuU1sBCG%MIsym)G}b1e8*YnYdBKGbCtlq6apcLBFK3>dp1pkd
z_OW)|>I!Ot28AFT*s8%PArC@TA&CNt1Y?il{xT$FeJLa!{vZJ{+w}O=g&U`}&K+%G
z`KYPSC#-~$fvD7uQmvb__A5*+Sgwl-!1;t2@T#DM*vh>Mzj1+$fnI2jn+AobE<*pv
zXs^DFv<hLwD>e|~I}n9HV8l3faUrm>nu4VP7%Bq=wIm4o5j@Z~lfkRS^fQq^6j4*r
zLK#|oPpBn!e4$4UsUbr(34Ot)Fa)^N3dtmp`liIzp!7q^La1z!t-O4^3IH2WE8s;x
zWZdQ#&X{a&P(lke^icmq6IFE4M4#g!I_bzcAc6=8;($`GAc#N%gd&*83l}zs0D~7q
z>`uD@{2PD;vKpwM1sB>w0EQP-KtTl(F5qoEQwl;t1sFC!paBeEm<U*5i8WTkQZb0&
zgBF6MBCfmAn6%O=F>P$qPCtbq)KN<vQBzJo@KmT~pN*El49`R`%?080=2}a&HIZ9$
zy#<$4Q|~SJTxPdaSK6Q2-EdYEDo|Kq;L@n51Z@4hhTd!=$P{0IIr>&qe%qT;2oz+X
zz(g2Ske~qzUTCO06)LFog(;q@QwgA!ghU1xFmT}27_t%qhF~u^fk;*{a23|}wlKlv
z5zyR);!7>w_Fw;fITn|a5knqX2xNyX_O6<lJirAPB0zux7Mvac=naG>lH6{QfZAU9
zN~plqkgHX5o4KX-H*R3|z1pofK^D2DnKcG?1psQe1%i@KPI={BlxA9OMl;uZbIv>W
z{BzLFaTHR0$hkrW)KjNMh15|Os||BqKwSmxvP(i$1Jpttg{%%(Ap{RX7$IaLPY}%T
zQb33S^_-Jm9%nNfpv4#jS}<W+{H{5@^$uBY{dJCFpB+{2QwM(l>1VJ0`hv6CP~Ix`
z)}DLRSLYu562v!#{QHwgpL*+I$bARm5dDO-i<HTLEDWMw_xcCB2*_@KNch+goM4a!
zgv@n58$kaBBp8Dc;3#ob5ri@v&;r!8pjs7x!R{V_gxsZ$cZ2!hyXHqf`+YAD`lB5M
z3ui$X7^DEoW1g98R6-><AZ=wJNz5qH!ZN&&YYzkk4v~NX6ryeg4I6;`cCo$I<<NXP
zjNtfuIHIuyQD(IfpA7)uMD%GeEF8p44MTTFJmyi4d*ovu&oMgEHHQIo+(rQ$ASe|O
z$wJ5LMgs)pzen0AlFJ!nI1n(&&{Yx~mpl%thNDSE6ktS1aKI>)aDZxU<2w>i#*93v
zgjZ_lkmQM_JV2QSQ7*xeRahl?FgYW37_twAx@8q|>5T^9#)hOcB{zoUM`%V<n$x6a
zHI@GZNJv4`098@~3T|ReaE4Qy+_=RF4%5nUildz8OlP4uFoHMEsh#trXFctC&pu)^
zI?+^%2{?d(4zS<_sl;bN4Z5fZejshEMCU;d;R1!qfT0d84m<(yMv7)sqZ{RDN4KHR
zd`OcoCXfOLn(0xLrZgP}_<#yZ00Am&;D8!ssY_w1(syWp1OOm`25|aQpaxZ_p#y28
zhI&+_CRM3RMFIx^uuP^#RjN~^Y8r}Kx~gVXt6Sx2=$tCgu7*{tW4-59aX?nIrd6$L
zJ;zts`c}Bcm2+m5YhCSn*Q`dM15f25Uj6!4z?OrqfhBBV4O`C&oZtk{Ab?_>bXfn$
zMi#Gw9mfGiaM=+Mw1a}$034N2ff4*N4V_i0WihMS3UJo5NigkYHA_LT;<L4xb(m_c
zg<0C};sdem=xkAI+d}zPIKr($YL!4*c0^zVwG;vg1dxCXkRSsI5WpZLdtL0-m9pwA
zK?y?k*tmGM1dLol1-&s|MQ}i|>pj71^LPODc0jbO?e2H05Z*43_muTzO%hlz({?zZ
z0}tt|_D(>^Gzgf$-8cY$!7Bst>X*LW?JpAk3)BWv_`wl2REF&f4hx(>1-YG=gYOIB
z{I<h(X`lcJMldo8jDQ4NBZq=VP~ZfUz=%qSz=5;-V<7W!yQX7J1E!JUDwzMb8|X~~
z3R=)zD7!avilu_@TtI>sumHhnV3U!7!(>IU$-e+zM@3dJg0xAj8wEh2lqpgRG|NEE
zP2%N|At7N`R9GQoMroJroCiFogUVGH^dcUs2olJ^1Rq!d4CYIk$9fsb>sav|&ZmSz
zcf-tap0gqvpu2bprOiPmb*Vi!<Z+0Z3Schp56>Iur-T}hFjy@|j4*^2TzY<oUNx-!
z!0SE7V{EWc3v;W$ne08y1;q9h1A#qhF6((!eD<iSm%wUv&^is;9@96jWQR3L`_3wE
z_O@&NvvXT(*-bIF8c0wPSq}i&ZZ>tj?R^|ni=#mWI6%LzeY^(T#k~KcJmvu)FiegB
zyjl?51p*@QN>dWtM%9uPK@0GJM;83xrPwA2`aPoWc&XfURsz5MjpTrLn+guN>4jMf
zfs9Z58%+Anj>8NCGSGVn{*!^tqpcs4Ka$BQH*^(P9_*LLd;kd0`6(@q@sevr6a~1c
zR-~?>stX0`QP)b=oxOyh|9eIh$9feeMe&Y*oa3iZJC9j&_9X-`)r<){%E{h!Dik0B
z5;y|YkFa8|YbEUmAo$=VzVvF*yyxHWq7Wj0^JL#!@{`ARJsuUvb2LbIX&Go1%XUT|
z!ons8kfScfdqU<ZCI-A+`Uw;$0~m0rX-YuScpI?97tq-DxTpWIR+?tUn%JWBLf8QP
zjsYz{sEXt_L*0WqpZYxO2LelkK?Phs00&G@1}ym03vQ3P+^bX0Yi<Dss3rbRhnX>(
zcRuQI*02UmA9dBge)dzxeL#O-2I1HA2TL%b0{FcNLLV6jffhOe7ODjTG{CS(z;6n`
z)afAsBBJUGH~nD0{Bpm~o51C%K)Fe@<-tGVGd?6JKJKZL1~~u_+`ftUj%QQ93rwB%
z^E_(63JUy%3V4C}`v4uxg6#N!7K#B_Fu~S21|p2W{Np`q89#4mJT^1G$fG<doWgg=
zw{U2X27rKXYl9eIfeJtX59%4LVS*S?j1^!36_|#z0TKT<@Io+j0WsW;5<oK)Fd`Kg
zr~zOAGFXM#yB*W(!Y`D7QR4_eL;yj|o)vh3FZ7_Us0lPwLk<8DhpUJXpp;K}ov|4n
z>mm`x$igioL^ljW4myhicmWh>fC6A4f*Al4c&P(;02F`$ZD_+l9K>(102v6pGzbAU
zIKObfMP2+kUDCp|C`3_oyTT~NQ%psmsf<>HIariME_A~~q&I>X0SF)#Q>+O^e8Wck
z4kIYO7C3;oc)0C50C6P83Q5F8bb&@J7!;TW>yyT>gC$~o5MzWxZ2*dRjDUH}3KhV=
z22cSP7^X=qKufF&e?-WP`L!hoNIV$Gf&`6F*Z}{<@;MkB#!sZhH;hAmlt&hzM+bng
zerp;GXb*x=ti59u2C$KZti+5tNSOSTLafFr07k|OHC~*ID5OH4{7J#GJkmL<%%cwe
zpoS~(i7D{{;Gl)`X%DqP%Go#o*b4y+NVH8f1vsLHK0FB1>yYnwov1{Du<Q<M7|9T*
ziLihVvRphRP=T}@0B;%q5*VSP>xT#FkfcOLB>(|OYbyIt0+R5Pv7C{$v;z`IOvQXR
zDnI}i&^0cLflly6#9Yk8bP~se%#6g#nUKl@It#z_3W6ZB!TbkmD9g&U%t!bR)qnto
zB8amrKmvq<k)%y5_zv5&O&{zKw8W6gxB~xOsmGW&N<Uzi-;{yij0^1`iRf`lU2@Lo
zyN~5`%i=Sh5KxPFQ@P>HOV9L8KL}1BY!9mB5`x&oD`-xitGR0f%fl4R$Fu^=yv(AA
zmk5wdo@_dx%uoGH0xL`kqs+@oXb3Vu02IK(Y8bhu2v7~_fQc}YUqOgh>dNi-N=yre
z*Fb_32!<T-gq5KM<{C-;Xo0lk!9+kl;hd0}P*6yFOZL%_z{CaAxKM`(h6=C=8?}iY
ztDY4&sl01}jiAgLy-^%p0v+X1VdTu4QBj9X0u^Y{GvTush|#skP|y(4AuX6m+E5Iw
zgYOs_7bL*DIh-&3QZ03eh5(9*pi2MNyUXoNQU5yA>`~J;$cq*b5)d`I{yK{ipi_2H
z0hH{?BW=?peNzlcQ*M$sMk)ZD1I(&>AM9g|J9SeG4F;ZQfgPm?D_wydlOHzwQ9#{K
zPz_Zi=uZn26G)&`Aus`eAOl)(fk!&S+CWuS+zljvfw*ivEjmdgkkC{yJz1@fBZvh0
zu$dSA7+4L|C_umpA%PlMJ`_Dwz*vj3Sk&7Q5)LQ<7H~)Z5LPOAG$A;E7PvKT0D%^0
z0CP2xmSnJS_0|<d(maq=RprYhpw@%1R&3SQ82we7*#&H?RzfI%kONaN4cIZ|f?|!6
z0&&qbjZSw3hG-Qa1K9}e)1m(*Wmq<SiUxX}N;8Fpl~+N1*N1JNh^5GlfK9+e73E_S
z&C^%0S=VroA96L<20&L)ty!BL08-5lQw3RJpoC(mlQM<Yo~;6FNCH`)1zQ+}Qm8#y
z<pYf&gg!tb(4!OeYnUc@f+$G0i~Wy=YOXh^SRv>Qf6c>0<N%k6fEVyps3oT&VAr*2
zAX!xeA`sV7ZP=$BTCg1ev8`7jV1Tkc+q8AqByd`O{n|j-M64lLE^tA`&4MqL+A&O6
zchOn9<yN|U1IgVGOxOfYAdS9K1!P^7OyFDxFbL&L0vFI)i+xs}MS@8XSr>g5G9ViQ
zI@#M%B+y-ihOu129fJS16$kl&BJPRXn=M`{%-Iv=+CdGz*x<<n3fcsPjVjpN`#=rO
zAPovlg1~qT?LD4_fP@aU%g|5)umGO|SfJ!}5J`QCZ*n}Tpo$~%i4pkATFqW0*j{c(
zfp_c%lu!wl&^i5e+jjj}?q%Kq76SNPy4jdtCV>I_O;uk5OoIB}JmAv#DA+Is1Popk
zc4`AS9U!RMOakVJwP=gXtzD474AvOmtxe&T^9LC40LmR<8D)!`IN^7Bh={n0N=p?*
zV&TtPzqP<$1m0h8ke~idiT^cTCjLp}<;2H2kvAE`0bmi@ShfDp6FzZYKPi)?)rE5O
zp|AWAf`JgSBpCk(HO$X|UeZt`B>0e~>K7>9*?))<j}?Ld8CIWQf%c7yF+O8zOM)=Q
zrFNstYZ&A!{Lh)N;{zUmJf@O8?&I3?j#c!uGT@0nJrY!C+=0E|#pQxDCO}=l;TdM#
zI-X+Kom`$|54Uq;RNmSx93?c&+b>e&n_*;99suzms2)yP<!j^hB;(3J<d@A(LvCVZ
zmb@pHTS}=HziADOshV)<mkQDv#EDhG=@-Z`8I)0(_z;A<serusR<bc0w3+0b*_jrI
zL$yd}p2>=$Iht6xW<_8dw|O&&A&B&=vSzNBi=mo#&1UiJ=cu`b0!SBVA(*D&fCHFW
z)cHzxUg!TU;|Ul@n1ykf1Ld`2P6LFwXpEj1g0>fE2I#=CnttgUgGT6e83l%RXmr+@
zcjg9yXqlIBqIiCldFEus^<>9ogqubhh>cyo3F&8sn|ujqlWvb(9)PY<mb<X$p-}>;
zMh%qym0<CjWuZujc@?{4Eu#Ksz)_r}4r*1Nm0G!#T(RAQaO0_#>Y#~g5{~FN?C6We
zF)C=hEBe%A-s>M*=4i8`DWcf$DWd@-95lM1HCi<uLX`|MAD_XZ)Y+mWP@>&wB4BVo
z6?#|9c8M6O>??K{C_(`#5`qLm-^BoIrlz9&A#4e(BJMfO=~038(U8qk0SI`3eBEqr
zhztJ%ddmvi=o9Ph8+z>r73|fPpw<Q>)gjB+o^7qD?c2`nEXwTuLmdzrk<Ml!!_?qU
z&R~K4(gDcs86s;({cGY5>@k8M<kpU*9-`-Ip3e&H(FP6qc3;$X?;`pv2|599RqpyJ
z?(`n)^+tkR_8s669^yHb+l_A*V(=)s?CG8e-sYY_o=-&pZobZN?DA`PD5ktK(kk$9
zW-=xRKsdn^x?nI@bW-uWn<a5zu6A<=5x)jbs<KkLwiJ(XOY)-`Z@5W9rDlo*76%7Z
zB5?sOBo`-?9^ZvsN&{olaVltXDqsK;7mg)=NH+$72##`3TX87Ya4_F%4)-X_6<YtT
zDs#I+^DsA*ZIY+Cga<WWb2$g|G4H52k8`HNbGXv;IbV)``lo<0(0AbTJ}>m*t#gi&
zsnM$Nq*8Ria&$vKl#wba5Jv|{k916LVnok$PVaP2|8!7ij!h4BQZIE=KXp{!g;7s+
zR&RAzfAuh5by%NuTCa6mmqJ;;bzR?eUhj3kl6B&u0^>>o<RTQ%ny+D(hhWzW;97@e
zFNbFzjAqxPXs3v2A1>U&Pj{$x(75*C;CANNExyTiY(K5qIxf|12XJ2wai17+M~-$c
zc3+=&ZUA-@!yXQ+F&#6yeeVV(TLS!=x%gsN4`Yph2Q+oR_ab30#d5QP-!T7ZD-;Ll
zcXCqr`^b0Vc=(kYup9dZ8?);P`!Ik<v2iO7jbDO~M~>^0TZ@N>lOK7EAC8xwY>o$c
zcUXCAX?fysxqhX0pQnOcci%|+vo_drCkHiMLVAC9wJ0ZgPk>A-!!j+aTU~Pco==Ac
zaWW|DuBP*|FEe^Y$h33#w1-aQq5t~iXpl`yGfjgtwl8J>v3js?2eo&5CM*t|ujLn1
z2d|HK;;8#GdwaZRbXpz`o}c@l@AaSug}pEOaae(O!yL$mH*ffNZ{W5rxHWLq%+Tdm
z#P?7ASb^-^wO1<#%twdG#~f$9hN}+_Qe3xx(D7koH@Nrww3mw6kA45+$a@hM4r}xK
z;dp&!`|@<){mwUhpJ@HW|M|t=w|)~kg#$a8i=TMI>m+kEf_whFGrYDGIpTNzlPh_m
zV@swZkB8IFH+JRPuRHOlIPu&#q2PWExjMYV62wywvj;ovw>$H%C4&Qk!(d1pA|j1q
zF(Rud2SQ>)hIv|{#cB0wWjd9GgZNo`4I7T@F=;(OqR;i!`-Bg)++tx+Nb@021rK&b
z4uAtJBt(09Pjqb&esM^7T#tHUgac(~l1g%IZ)%iXO?6pRl|y@dtA~1nSB680i(rnX
zke)@Ls!FqnikoJ4yS~TB$;!*j&Cbuz(bCh@)z;V8+1ffh-8lc>;NR1iL?trkU*#_j
zE$1!~>J2RCFBDcWAYAy#A2N&s{nD93r)0yqgECYQ`Otz06B!?pksC5FmpXRt;8A=b
zkDfgu2u{d|Ap^#iB^HUq;P7nXri1A=VwCZ&$chyQP#nxRz#zheXJmwcA>%{^qANCb
zlu_><Ph~DE#vC@YCP<MaO%_^lkcFp^BTJrin6izG4a^Rlm00#A!6Id<YBYjX?AESd
z>uOcvQi)o$m8J|WdQ?WzRU;0nU^4{5ypk1a4M?m+#?v7#50D7!m6zVJzM{fZ61N@A
zxdXsv9qWMWxz1O^?nODZ&f362i5f+^DDk<)MI4`l5n2Bj<sz2(w$;ozuWZnHghQ5G
zI-|Dh*t2Wj&b_<$@8H8n<K`_KxN&V8K)_J8L<|-c5L9px0|CYN@g=k~w(m;+WBo8P
zLJX*>$KF&&R3KCYk(6`75C^z00tzLtRhxnB;U^z`_HCk}elkd+!a4&m&<|<@xFkaf
zBd~x1bgH<7;Z*Lyw_$xmtiXZ_Cq#e%2Pha3fr240=*JW+9AHoj2e1cEjrr~O#D5k(
zF(YXj&WGa=Bc@@Z40D-K!W$2u07HiZbXnqw%GIWX1v0#n44iVtnBICB+NdR(YJM5!
zm<N=3CJ}wINn0g!s)D4FGBD}n5G%Y8-+V7balrozC^S&OQ7{-MLuHqx*p>>NHK2kE
z1`tZ3pH(VxC0to@sH&HS4j?9(X7aget(dj-W}J%3kmQn0f(fal8&(P-rkZl<DX48e
zL24SNqB`rE#;S5@rkldh>3w?2D&Dx{mTT_0=%%YKc;xY5-g(mWH2?(dWh<&M=FBz4
zgGx}@Z>SNFAn?E>d=cO#Fre6&uXre-LI^{kkQ50DAtNunG}_AqzV`0BiVPzxfy-2C
z!4Luln^oBA6Bv`Gu?)ftz!kr%paR+yEIA-U&ZgumMNw0Rdd$W3&b9H!Av?qc0=E?a
zvdGac?E=jK6D+Ws2uux?uk#j7mM~5yjoJUwO+T%4)M{vrnblX{vGV{r^Xvo%_Ua7r
z03g5s2i?yi2XI;JF~;;3VMA>(*Db^KGT3I1twz~mr#NyRSyRn+!EW;`_W*RyW%m$y
z?+x=1#}Sd-p+y7^QYw5jF8SJQe-Sznd{eaey13`A`|iB=?z=SYzAH|=h}WwG3k|)b
z#0fA2txu>G+$8-?Tl9kf3M5*Q_%Cg>0PzPe*vHVyN^EcY@yVOBeDhpF#MtC|bRY@c
zZdy`&#^~oL!~5J%HHAG>a6$l;R|MucZy7|xUlEW;DEIjy1`%oB2l$6ND<Gf+EBHtB
zrboRvVDKM9yPwPQCqW9{BZ6si;2i(BmYNR|VS^m3!vEYRKvS%sVnjGW@>E~~J&bNL
zpYj{pD1yTwv>;|GP$2?Es5la)aDop+VG^OZ!uqu^gD>P@2WL3I0p4(VJM7^ieptF8
zoQ^CsD&hc+*gz^40fy7t0uO!2F(>}+j(E(Y9{0#cY6MSs=&7Ii5T*nZ1hE9{BLWCy
zKnQ;o!I63B2UlF6iG{hzB`7dTwnz}9!wIrIi5!9<DH2M&F_JFlSOEq=*efd%!DQqM
z4k!y5M47Q54-=UJJi6GkQZBNQLJJKO%TdZvqS7#{R00P|zycS%03xwLCM!i%zXP-&
zNz1S%Hn;Xk8WppaV3DRWnd$#bXdY9Q)0CGsD`^E?((s)>T!=pg00R`7v2UjP+f-ch
z6Pkq+o!q>_AQ4H+Xackd%WUQ|QTWef4zUR9Jcc`Y>4bO=;b8Tw3_i`MPbKgZA^sGJ
zIDL^(<lyU@eN3rJSIW|s=I)R03Zy`1Sp*WqfRsw;N2(qf%ppLM3;jR=6VynALH0^v
zBX9u>SQ4?w*{PePDWy$uS_GXIfdL%g3Qitsg%xx%giwWxRBs9?qM`&v6E(#E30hSd
z>{KN^twaK&s)VUtHLHe+0s|t&feJ9_1);*KRteFU1F&G5$uKNpV_8(162Y!S5NuwD
zu-6y#^{;`&>sBiW(Zm0;vz^AG=m1uf(|NuiX7?mrEnC;o1){(Ku#GMMB)eI#&eWTA
zC2M3gt5?4IH3EQD0&NNFE5&}+N}*M&DM;JaJ)Bmfs`X)OiQuBx%2v3%^~G~dO4Y~e
z)}`PLuXx8xUS+`4JTldu@oaJ!^%cPc#Ng@k_;E`1ptiAYQc!I!0JK%a07mu;YdKac
zv-T1gzE@z6J*laR?b=qo3e3@AWM<YEmL;t<bb@<{fZ%^IW3EkPZ-UJ^0=*Rh20c|U
zR|k*+Wi6w{$HnC^&nIFlsCY6aer1ZyiAF2HI2jmz=V3{cyc86XX~GD>YMC%yinst7
zH-0e7)+^x=N3j3Ic0jR}SNvmS1bKi%hD(u;{6i(9q{*9j@-d>E2P5<1hZ}~}gv(3k
zI@|fqdpvJA(mUmhrGp6(G)Fob@GTGfC$3gFm?@bm%S-aO2rl?42VO8u84K8Ue>SI}
zrBG-DjKyhaE<gzW!34laxqS7?Gz!0HzXgA}XBHv!eFyMUxz6|{sy4!>Psf5evxg_1
zmM&KxwG3i^_|}{5RRn`QMxOLKb*E$Y$Iv_gV@ou-8RlH9Pv-%9Em9c9?gyF=)CgS*
z+mp9-S*}yFYiIj9+U*{;y{^4W<<4!}Jn8mazCDC+pRtunAh#{d-E3dzTaj?K2%z!I
z@P<45;o|?%GrXK}00z;G0}O%#1R|gTh%|_lF4#Z>Fz^CO+s*|Ta6koGuqF8(n!f+g
z$w%hJagQ6rTN}8*2~en@5=4M*rmjTAf4;Mf7q#Xe_&CBsKJt<?!W<}9Im<iL?GjX=
z0Ts}RABKK$qt6QlDv&?}EbxNlY0Kh8kATLJu5?5)o#ZAjYb9{5^N74!!!$|x%3BWC
z#G)PJYCn3%lP(FjiyZEZsQT5j9wOCp-~bJv8@E@qc&$U|?_Ng$3{X&k&Uap67Tmn&
zKko~!r+w{%Z#xX$?(`uj9_y9|;^QNKj(k%d_Kk-E<^!J^(T^VVuEO>^5%FKFx4;FA
zC_w+oF%SWU6gooh_|ZIgVtT;CK?N|_00J6-0T}q<^^7+LB#3T(!P}getdBeRW1pDW
zOWyWY$NkoK9|g^G{`bMEceaU-0plZo70cIrE%1CU5PcjleV0dmUY91>w|(9BeYY2W
zzMy<Bz<kbkQt4M|5VwIG*nuAC3lcXx&hQXFF&9Y$Qst0zF7O+Sfk-pa0^(O|wU%h}
z1R+Yr1}AtBH1k44Ap<Dz07XD{BLQHg@DuiugXcgqC7^;VNK7y22^e4+hG8^D*fBbh
zglJ-GMreZll!6hkf(h|Hti}a};e$YUcL?)@PQeyi*gz;q5lk3{sUw9eFc$?-5i0)x
z0WW|;QFst_NEU5aZB;mHHa3XD6o@JGhMN$Fz(E9km`ZkthkD3|bV!AP$R0*Wh{30S
z!)E{$fdX0B0Is0|7bHe-^BACLHYA7;b_fC_k#}?Ghrovmh=_#!wTNHXgpOE=iy(=6
zxQns~h$Yx>hKL)SI6wp7i3b6SSul#FNCXamicFI<t9THt_=+eOi;(DL&e#HCw1l}R
zhaWhO<XDa#7=k!pE)0-`gmeccv>gSYfqC#8on>58kK4xA3`T5pJ31srH;nE^Iz~%L
zhk`P?VWczzQ5tChMMp@3C`c&kP!JGBS}=b6d7hW&-8pa0=f1D|y1v&{ikf@Rz-~VV
zdiTI~nhZE<r1`Z<eR2~T_!a>6%lqCBrzPd-gaH1Vg#JnQ1+u{rYcRT|Jf;kZyCgIC
zfdkhrH4VuOb-ByMKnY{pWnuAy^4*r;Xo7LGc^(TF2$fM^n}Q1X<tmmHDvP-8l&S>w
z7QQ|x#5z!FDHZA6E;1-9G8!l{Su1+?y0G86$gGUQYO3glQn7v6|1b4x#jaEO76TF-
z#0(du5=Xxhx3Uudfs(+rl3N!gw~-|wO7|li?nm9eA5(V!&TdiI!2Np{_wj6{iAtr(
z4yErGX!bz{sRO0iYo)mtr3AJzlePN=4rN!7=hCvW@_{l`TIon(?yC?0AEulSeNWp0
znA`z0lcVJeA$;U1ulFkl<IAC)<!=BL4@4?nBvm{#Ol|V3pqr@ZGOW-gmal47en_Z{
z^QyGFL{~n);G!i1RqTX9_^Pg9tEQ*Q-VIc(H&GQeQBzoe1c(f$qugdMDOa!x;9US$
z2#61p<xB?fW0Ql>)tgEl+iY%ck=0+O<c<t$=B9u`3qZ^T;>ShxB&p_?L;6LT%H<R_
za|lRuq2i%$jk9NUeQnJOzV^d#?NSH;WJG+IP<^^qv$d=It`;qP02Cq6i%!>xY}9^G
zdLa9*>eKDO(?x(<LG3EB+Uq8(co@g?1pqkVCNK)BoXN|dNh57lPaXhCU_p{35aq>#
z>&SXdA(JbHZ%A#eZ3sxEluO4kcBX?(@Bnz7;Mq_Db#A6z$*-RUJOZsfdP4co>eA@p
zT4()@<obwmE`J{RYiP>&L1Z<cLGDgtdU=_`pia9E%vF>|{T)mKjr<c%ecb|cnR;uI
z*sx5dzu%13GlH#pnYvFyQCdyyQx46fCUXFoR7O)%-qef^dHkShg4F!=bMwxKi59l`
z_V32)%-mES<)h_|<9Ax$4KxCwurhLE6^82PDnc9CwB$!YlSC~OQ$MQ=Q+1?X_}%sp
zr@J<oaa7c7e;@;xzTr-4bNSth!vRWoV2hhDPD83KTfov<^b|Qq{5A7lGv!VOEFlB|
zPJ5iN&`NHmIG_R@HB)4hVSmpbi|$g1vH|JQkaJPUeuQPQa)KU?y7lse4j51_!PEK3
zzx<7(%+}ZR2AlL^uP$92pfv(;ncgZN+wIcSnk~S@CdyKM$f@y^y{B8_8kSKCryE~O
z{e`{V3&Za6t-F(_$1;Fr*eIaZ@rKVYBqEC1FrWo|#?0c*Zu^=+&t9i3fko4}7rX$J
z#sk{nYymsoV)YMA5q;7;ec_gR4_-0^?)5pK7*zjI)@VZ16Og(Q3`(60Zcfa1|MZO=
z>b<g|Cwo$TS-hS%4)yL}G)1{+=`h70G%`J(NJ3JjEI^k;cK?<q4aecBOF&K%Fnf4V
znmpLSG3c$S@R-DXk=gz1{Zs3vZr4~?j22(#o3NCy<fjGV5trac%rhV<62OiiJk`-d
zybc}B64>x~HWiTg-s#Hrj`~Z_!%!zZjUEcPL$QLmzV@DnvI}kGdmYa!Jg9YjZKSVE
zmR}4boEk+vItav-x4*sqtcOaXkXNF4=85_$Uw-Y29Tk%Eo1rEt{{1~l<q<x05dZQX
z>8yox@t#Ln2IN6trM&^#xX#1)8DWtKK!2v7Fd-?7<VqJjheM^2q`ReI;;kT^g%PC&
z4^~kkD0~>G7N?D^gi4zTi+50zKk0q`e#|Vph!p$0WK-H^QZe5%t({?PRzMVEr9>O5
z)O$G8oatusSI)pwF(q8yv-R=B6(?Ipib+q&pW&I;Wvk+iK$&KeEIxlcx4Z9f48jtE
zb>mdg#vz3cKs-2FyQkwWg;LS2qg69~QsBu(d8Rn$7EK_ZOm~;HGo-+TIe{99Ip}CD
z6pZGR0%N6w*QNfw9g#eoRD-z>N3$W(K;PE!c9ZPyW85{~Hq-~=!Xd`ys<UINMV2N{
zx;Q<SyrZnWwC4Uo`c?F}$eQ*M<&O16iL>@qsyMTg**A4M!0%xbWHkUv9pD}{5u*9l
zWa7Pv=ZrHvyoKHhGOtbQOZ+YWCt%L8=jz@8%El@Tvd#Z6!TzM4y0CdQKmk2>p3o)F
znG<DhjWB_g49?aG=bWI!8vub`y-%L=#h1oK5FadT&T`)bu``RCGJypCaiBGY42Y#a
zUGEa12}<pG`Z8`&@n6WqUz=S)TWF*iEp+J;+2qrMLtTw&oHKV*^EhE<ypa}K;tT4%
zlc)!V?8Al`k)}}gR&a`yk(wFROHZ0py1OcR+2iBSu}fy*%c^RNKUSA2V;Ama3kJAM
zg&r(v(u9~3`HHcxg94TtGG0|_L(1yWcK>eJ>>4+0PV4%axP7?!p&1tQk4|!KhHrVs
znUCJ4YVpb=FVVZ$7v&eM1|jG=tVP--$+dAgEmif}FFsw%n_Kvx`|i^X-i9HkrnyPm
z3Tne%o8*7Zkz@zOcZ*|1PQIs*;>$<}QnAB;%knjuxeL{n7Bv8U-CWM>QV-WkYsx}|
z+S8~Y=xF46EY}41$9fz113;7Ediux0TAS=t5Xogds94k+;@@30-Am)KW$~VT_uc8g
z;F2F*&Nv$ah_U)E8E)oE4DuUuc?0e9PGQy5QFA<7@}4Cu-5FY%7V|~^2MJ7l6B<kX
zS62pl;5Lcdm}%ZvclJzh;joYLP+`{m`a|}++S@6>YoV{eWi<;(6oWR-$18#K!Q~5t
zHt4M0%|-X)%8#k|f9p!JpvO-Ue9z&6&zmXqsIecftD=1A<|mUN3jsc64icjGQDkn3
zMbVG8u;DSvk6&-)>Lc3Q{4R3?ygCC9$8T-RZ>ahN8PL3E`|ks|@79~X4>7JGga53d
zIIVm=mCz?}!Le<XYX8VwdZ#~uVu-+K^)DZ}J~Vgmb<UA*RRz}3YyKy=`G$H2q7YP6
zy?J-8-}K%`?E?ViKS-8(TaH<Ar|r#$xqgNFTP$Cbo{`{5w>~8*vV4XGN#(5d4nxF-
zuLuA4eW6_?bf4wK_g-?^y|k4(;EsC(6F=?|w`ab_R#VjQxZZjDku}gRrse*RZ!8I&
z+dn8*BcBP)bH8O)(~ocvmGO3uf3R)$wH<%_JhZ7{pRExR@g)38sr|WqXTLhO-1W=T
zD(YX)!;C%>w#~x9c|S~9q8BcshvAAV4Y~VluMQ4{5`;?bM&9QO6+76T_`vh{wj>cG
zOa$>GrxSjJW20Mc3q?A;IeZhXociRDF7{9?{)cu8=$@RPA^4|-1)iIZd^7j^yTbjf
z1&|`-AvN0%#}}txq<;uoX1T!AHdfRBjc1YibDICDe@)KN&@7RRR>VC{C&N>{+=6`E
z&W3Lej85+U_#&ufzeNjHeA$>1Ta&K5lM-RB>3yEmLe45G{e}Ly8RtfMoS*FElCw=p
z344|PlOboDkZE{)a4Y8AS0lx|;~Xm-ZHLQ}<@;^X0pcM8c`!VAXTJa@M*i@eH#g<O
zA7|Ck|Ekv*+(v@=4(ReOZ~h*<yjT=I1^qXdS;|_l0C+fay5#on)5hs?NFi0(X$z(>
z;?chkul~i6|1DZPw8ARwf&SZeqYyF7{~XUneefT^?>{*|n(J$3?`uH_7|7MX{fGvV
zGmf|C=cU!#!YA0P*S;Pe28t_EThtf5KfO2Xepu=(U-R1UwERQVi;d8WO4lc!7L`A8
zul)LT2!c{jB53GP3{0=6y%dWqY~L8+n8hWfWaJc-RMa#ywRInyod5S%&-#X)gOkfo
zBQF!ht7bpf<^^H5+p%}!6OvNWGH8r%n^|VvFRQ4kxzDR*Vxgx<wIpvq9C$kPVtDjr
zLS7+o;`QR&m9_UDK5cxt+}eIWJ-2&!eERF+&%a9`%-L7644XuO613?jxND~!!>jKo
z=6mR7u}JwW^&c9JX>e+$GAb2#85Ro3-L@J3KFTL8KE%Z;6|N(pz*N9rV7MrlUnLX!
zJR+lj)`Xxpffg7n@>?_&ePy~4Ql~xdCf1ifJUFhI#=yrb7K*w0UYN3R5tiq{2nV&a
zp0F|@D#(d1{B4(R_l>!PrW;kX<UcQgl+<vFEJM!HP|t}7;^%{b5oiXBSf%rvvQKCk
zm9%X(j>j`8|COj#4<6`l2^qS@UJ2j(I+h{b{zES|=#fkrxJcZS+4_&iPaztQDF9D;
zKjw=|wML10)$jY4lR8En24TdMpgHflcqKA#bSn>->e-|tE`?vWUw1g&81`S`?`H}%
zQ_qK<vR=GAF7$xXt2;>$E-Mkp?1Scj1<h~m0oc?v*f}=!c#t#>r^#4ACJ>dgv5EXt
zcyt3uRuzyaR%G#7RDcs_dPQnV2k7v6@F!|Yx)vRD0EG#|k6wArc8u~m^@NVHWRVH!
zf0QHMG)Ph@lBR`Z#VoVnn7}R+vb89TilG+&1}>A;csLFWtCXUl6zS<O7NI(qo)w^q
z!B0_JJBL!r6_dVZ@*OU9>q?bDBB)so`A;(Bqh)zv;NeO7DH<A@rFrmJww95Q+Otjo
z%J8cHVo2TL*^Eu6m$QkbZKTb?u!CRZ_dz;G;So7D^#czGTag9rQx<ks(^M8=%nvA=
z7k(qj`-lHed~fN)r39wZ;)IlHG=@2q3Z{aGuz4($I0X+EGv$B{_!7amtef>c63PT1
z5IOzttUYw*LkXPD)u0>BlFCjpVHB0}NKSrga7%&r+mOPib=VaYEUe;RD4wQk&KAno
zKDX>9un>3TUUM$Dl76e~pS+bw$lKyI*QexuPd4>iM|M6pO07vukLF6OLZ!GJMvyqd
zMlw}F6x~o&==efPW!5=9Mb?^oEsIe0R@o!2;$i7lhnt|s8_e_S812SbiIK0lO<zA>
zuHb0I66`(mZ}e^Xx)qi<x`&SS?S(s;vFz1R3ORjnWD8!e-!nS6rP^h5!1R$9Ajtz`
zz6zcuGAECrB(BH5#E&xBTWHEd6tT5%1|!TNFj+>03}s{&#{03#TMvJN*@PtMz7JjD
zf_?ndfrYVY%w)q|hZ<R+YowIn+n-thuIE7Y(Nq_<)8aCZeIePpE=hJgx$W>_Lp5|S
z>&m+%C{{_609QxwfCSv~{^8d)q8}Az1XHeZ;LlQ{pRWJ76^cu*G<U`-Nv=!A|Jj?O
za$Ojp>L){E6G7i>Sb)m|xp0^c8Q2>M$n7Nqg3D-Na+AZA&svNncCdf%U9vp02?a)V
zJ>VMi!l?ZndK^V1%YAgkU%>PPrvo_w)ToYOT5e#x^uo2vL5u>Q*RAlXKh8U=vdU$X
zqzGNW#y7_mjcYJM3_{iQXITG`2y1>qZub{1<1nrzBo93pt+`%D)SZ3X7N<iXM5_am
z81rAlSC7ondKTJ&cmT}yww>+AL>>qxte{wIMBu{}$3WFeOMAl}UMG|^*Z&oyGwFqr
zzg=pYx+TMn&7+>z!U{YihSe2fS<xX~ciOCAZO^vis_P-wBHas*-#olE{%e{qq@bY0
z=BkHD5wHFqih9Oo<f-r`;QGDce2%cK6x`ILRq7$?b09)73vG63V@rKUCkCKQfi}J4
zFGf8F;g!m9m@{{k$tW@sz<#(fiJ4y{R6>%_HTnirTm|q9XMT;DwR(ejV<P2Ce)V65
z$+@(Eq8Qm-L#ePTX5x{9S-JzWB#Y(uu?T>Wfju0w%;PIZU+<g_oU_3t(x7@E_&`nD
zMCBz|F7S$2kWh#v%2Kb2!>Eh3h5|<<?laz?)E5{*7#+8^$f05U9K@8cBOpsUPw98?
z7e-E$hU<k%#FwNI^ErRJ!koMoy@PLnf_MCh)$R|O?j#t8>y`rB0R$m~K$Z^OmFLXE
zE%Zhu$?p=^gyhdUh3o@#tK=Pc|3*^BZ~<%=8SO|{+3gNvmqhv(c*mN?l1`%#u}PS)
zLb*@wBY6RkSw)Yv%$W_<Bbvapbbp)rF6M!D-QDooy}Uh>pEBJ%K*~sCh3^=XdTE0Z
zUuTfHjH@^m=Oit~o{00Tw{D2SaqgX(ZRf)ttco!i?{9|YDG%lGNQ^X$Rry-Q5U361
z)CNE+`&I-n*k19~pDgd1lmFw57H0NbrkWPU4i%g{o4M059ESLO2vl_X`R@QXhy9@C
z%0hipD>TJxp-F(apQPYf5=2fOnf<o)lKIVo?{}?^jd$nyE*MF~f^j$Hr#AuzT%@e0
zfcG}aj{(g;LbGcwpy}!Zx7Mrbqo-J0Q`GaHU0NuH6=aaT5)019{nR_-9&q?7jeb%7
zKQTVlie`qUcgCm#nI*OfVwohT=0LnqtawdY8(h33hHxjbn2DK40v7k3+(r-SDu!<W
z#2OznuD*OFEH*HmQr+`V(#4XQ5e<Xh1j1yI#DWjYasioI$vIemt?O6HK8bk&V!)$w
zz5F#QB*JwjqRaZhJ76g-vS<S5tIDGJ$}J?Pqh@8M*`2K`Z5j2jOf8u+z_wd@Axd{Z
z4bQUr2qe`p-DPRI0%dsm8uli#R%Xam%Am~kj6Se-?#Fh7n-ev%EvzQzz&8SMXC*aN
ztIn-s=T7|TS^+HjnF#l;QgG#$^Zv_uXwh;#YdSj>PkK`Tya~dv+4E?b3`qC?lbkXH
zhrx_A*X7HK>Eq5Q6%@4QR|ttBVH+}i^Sv+fop!49fs^gvVM;9v3`(PRkmo?2CB!8;
zR(nI74t7NEb1S)=@4dQ^lQLsm^}MMza5K+KZmLWjYks{JlDDNbdq3n%Alpf@yy_|H
zTXjfm6QB&d5Id~qklb0ry!%8f;$6c))V<>;hYy!6%Q`)OJx&|m1epw=Y+aKdhmf~q
zp5Iwz3J$MiDBd>4tE#Ph3|)Iw&9=gZM|8|2uuR%hO03KCgf9a4KQ1oE*ntrAf0@Cz
zv9*@}gkLI-#Zf86Q_h2veqJhlNNkaG-@AxoO_O&h0U7{&zg%DYVMiO?is(L~(FbVI
zNs#Cef*1IiuGHAef4l}S;7fLir!N4%)ct-rwpM48T@qjYx4-{wd7{!nSZvZ%64?Rg
zA0yK4wmqZ!{Ty(SjlIC9PqXJ<4jLa(H-Ex*EC_bgQcuf$%|mq1jpOq`X>{OX(s?!>
zoJ9gtU?DHQUvP#{RQ!BNh5dN*F+7LBc?MwHPlz)@gFe12Q#4)BNeAmC5u5>FP9n$=
z4U+}~ab)Nfzug88$<BZWcEInYfN6=qkI;}eU!WK?C<K}TK)~byKz0Bahi3VRq20z{
z^*l#=05A*UC5ZYpQiLC>4v4qG(RsG~qiUo5iJ{{<Y|(0%K4{XbTtJ<r8GeJ#k^mrH
zEI0<5HJEo{L<F%DLCd_txxQctGUTQp%}NIijSj=76tMDZp)(<t=+5NtNV-!3og095
z%R&wyHTJokvSvZ!JBImJ7F6#RlM@LV^BDHzF-j<u^_s=RGfT`POGF!rKJltjHJ?6*
zmWHdAxn&D{*`}TOnl3-|lM&&_tOH(;0yl<ozT9W?&eyLeL^g*!y2?R6=|H@|T;YnT
z6%bT6^J(6r)IJ}w?pko9bkhGJ@PZ*ukVClI5uf$&8H@xf@!lM{5{IBrc|UdGVIWrj
z66T0*u|-2v(U8dzz^e{zPCY1^3_WWBLiC~KnFCaSKrb>?4nX*}k8mE{yE?LXV4#d5
z(K+NRumnzDF(#aEbz*-@+-rQiBdBnG4q-zY>Y=^vvMZnoe%~+TmpCc<+EXaDz$a?U
z$LE2BN~%_7f#{Prgv0`o;02L~c>XEffAx63QYe%h2B0Rn+t5>ob!qn;>7U=4_+BT~
zy(LwQJC^s7Zqkvs`-ZD97j)SLE!{&1{%l?-km6zhyqA_@DMVOEOWB1zbuMu5kT&({
z5)2M|!P^bM9t#;43ab^$-hU%oOcYb0=P&D4vgW0n)08ggqVB`*)9b+tjxR^C_^m-a
zRm@}MS|U)j(PNyUoqCa)og}w{RsDq3x+j8c$EBU^Q$CZST|K5G9h-9+QKv5;Hh)k}
zA5-sJQv;T)>v7m&qWTnCgQ*t#fT-~RuSxS$d0PkCQ>dae2YfDrMV)MeY}Be`baW$7
zI`p(r8<gyt-+oUrph+1XiEuN(@!wiq%?KTh4W0XFT^^p{z#jd(CtOA+G$FD-y%LxM
z-R~(UsFZ}W@sgmeda#ej*NRT`t=$cF+YJIXnBU|Z4fGgS@ECl+a@1ql8;9B3Ls5<f
zoYZ8n4LS<KYdXZpI3`Oq*~8w>V|FNO{(@2YzJ>X}6LX-P1(b;kMT)SXIkiB^Su*wV
zo%f)bPc3=mtOSaU`1s%e0M7*kKnDN-#6$r{03+xkFy-ojnuUX#n;Xu-%W;i|itjp=
zurwDBA4*)FK~jlPN|{Yo4J{yuk(TCAz;Y>S@~Y|zXc!1$4X*2$NEnz)8d%7fSSwiA
zDO%X6+Bjm3&9HVZSbG;!TL*0?cLP`N8?HD*oUe(8pM_6=)y<$A0U-{z!kj}R-NIws
zBX4_O)$HB5=YKch7Ct#7DK$JbBPu;BCOQ3fR&HD_;U1wNv9P$f{$W#hPfK6_<H4uH
z!^4Y<i#t0zhlht37Z+DA54*%Bg&2sj=S|j!`IQ!N&o)Ll&hi)7idt^Imf)!^GWh&f
z)M$skUUf@PN#N}DT(Z76)xf=1v%I^;Q6@2QDXD2%W)@cWQj^ou@C0pNzW{?g?Zm>$
zs>*`u+PXTTLB#`WD$$l!L}MVcz-?DVYisx8fx)Nxs_HLD!|K}bYoa3Dw2zSjqEpt~
za#_!;=;hc9mRG$c1k;%1M0u~vG1pQF35jmiey|jhPTMy*xGNXBRQ=BI*!a|#ZGVdc
zZtB<@kOun9mtJ2(K#15kYD)8@v<UAkb*j{LOlqX+qf1vGLF>khpK`KelnxDEW;we0
zqYMkuL3ASO<Z`WU6Z1<o(fl}_k=e4YGQM81#srV#MO1&tqf%w2hY1x*(MIlmH!{-M
z;mKBNQXYwO4SZ%xc*?FeC-LXWlnlJU@oWZx?@=z&ZxM>j{I0WT27!07{C80e@JNte
z!FX6=mnGUFJ$)#U{^|OvVOM@_tZHoblTA&k?qG!G*X<l`KY>S<Pv2&zN4Y2c<h+(y
zRi3WRV4~YoTKg7|$RdZiUPc;#2lEp1R+&$+K{+T_`~##}<;s;0DeIc~zW1{uzPAC+
z3Ux#%HG{Nshj<W|O7Y2FLf_f1-;<w6Nu~)kcdf+)oKT|A2=j@;y}w-Jj>T)aqF>Gd
zndxQv@p@F4rGrbLZosMF=XBjM0TztbGxCTSykh~xBqPQT1xfd$ViA%bqgGK;f>-}7
zx}^o^9WA}SPu%3nhKan2vM(7o7fxB;<>wh1e&*MtT|*XYIouXNnefs-%C+>m5a9m@
z+4N%2ClIR(Os!B=D9_9{iIimIB;1$cYk^=*(DU7ticP~%-|CvSn74>5woKo9)|^y+
zsF$1%Aw}A=B9I*U&#b!-?&!Ir>BW<&s_LjP$|>dACuL)H?uU&+A*E6*8)f}R9-lKt
z<FH^S#P>!LB$kIjilh=oUT0up^am&=i@USB=&@$CcInt7nEJ-xoq$TCBFt!)Zo2Um
zfK(HEX|K`Ai~P|nXCs^pqMv+9f~c@ZfA8Cte_a{+Z`yci(1!N?TMarq2mP=vt7<ut
z(ypSFbdvdG_o+1+nGn<YCRVqP!Ge(X^krE<@}O4ZW=Ii|MJ1G;$u2gO?bp|qpsr2c
zg-*z|_d0>Se?G@0gIr7l0OMP^@5Mp)`)6E-=!If+o*H;UBKyYWa%87rC&wTvV-w7%
z9TmgydimJ1za2o7HM{H+d6yuaIcW~NUZia4;MmHYv23|T8J6MR6`Z6(U$<4dX&=k&
zE0lSl+tyQ^FWwgFzrKJQoDW`!b$__gEv)%od|A(4;$@>g=_);?sg=vY5El!)z6+Zr
zUN(T?Z0-T=&$hewGF)ni$sp2eizI|_DDmTwT!+OE*Vo8UF$(2Oj5dvIYm@5nT)@cP
zUs|MNJmTAw#qjayO2_YoZyfHLX{$9It&q(XOcL}su45TK{;8&)Lim6{p&G&p@4?-k
z<QoB5;nn`+d&SO%yQ1b(iER9B?59uNG}2c{kW_OR5^F|-BRBIen5(g`(^2GXYl2C9
z$=`T*B1+Qad03GN!mmGp&V667U-e%K*mEOjllX3k<zbl#Kq_707`v6vU2R2oItBY@
zUuri~c#GU0-Hho1H#ejxUs+1cCP@FO9mLWzYN1wYxj}6UnIFHnvZoxVpDtWt?`dJO
zPdm0pTYBg`<j}*XR=9+{tx15w-?|&E$B!{*kMnd6c{$gZCpDS7U};4jR6xop(;+k%
zDB{%e-<Fny9%U+D5e+28AX&%kjgxl-8Ogae%2%38srhY_g@1P#P1yxYmi1zkNq@1t
zd6ZT|Ex?ouHX1YBDB+D67QR$Wak8}zhGDr-vJNIjHk~Q<*|mXn3dy^aJn6cnj2}D7
zAVJItFh@}>*#=78Rf05CclWGbps)Pwu7u7I;-<tsAr{CcEv1+N8Eg+o%KL!e<Szwm
z#~n+CbflCUrH|WaeFd>|Zq+6f2^(SAUuRU~VG<oAkTCv=O!v6((rus^=;4@rvj_{K
zo5WMwU>;Yg1Ar-&ngJ)#*_7m9m~@+nw$#*BT{Rpk)My8>!7uT20Fq%LBs&XjtNj1E
zQ^|@8v6#=+#CdF^?G0gVji@(866Cutcw4CMu`m7OkDx&W-8{Eww(1|*1k&SfpopS3
znq89{8<hO5uC!sc6DF86Nf+TvN?a5pfmL-k)e4x#s86yU6$uBpEM~6s?!Rrj#|6Sc
zjUgkVxaJ#j0FRt+iL25ZS87|c##3cWut{GRLw}$TO^97znS6yFjbCt3rgfE%?SqC|
ztiHG$WWg#-cRDr!1WIII8995L5agvu@AUp<pM3LUxy$d7OoR_VJj{S~Y5@TSV+l=5
zI&gk+lXMeSb36G-YS7(4=X`|aW7^@T-<UwRx(9FY%-VK7^lXSPu>Qoj9!&{v_a}5X
zfq#Vk5<S%2>lO}l<J(*T{3#yEu#Pj$lQjZjZl)eI;^urk7OT+JEe^US&b{B>ro`R7
zP7MpR<o%1P(v!cDQ;h$@vjmWou+TI$JNV4nf*Us`24_4ZyrN&g%FCb=kemn4mChEQ
zflR}B;G)@{ygcYddn41t2=|u%W=ym!s!Pj|G-5Ko^AwTmDQ|fz&~nrB1RZRZyxb%7
zt|5pKIRYOnoM5MZ`{uzIme+)|YxX4r4n(aYFH5x4zSsz&63w*YGtgi$Z6Yk+XQci?
zq95Z6v-yqVh8O)2$qsZp>}?6hjp6z`mR3{jgR?#~Mr|+tVe}W{mQP!LeRskY%-`Wc
z$UgA)0=U^JuRam%YcC7`9xEEMM%&)|f;a?8nr<|YP#*!(1#$Ag-#aDbKKa7UwWpqU
z^gOd9zs&VRirugLr7KGds=Ugtyf&7sD;@JhBnW`pW-FCOCpezS0@<+%FD>mOM=o!C
z*J-RMh?D@0nEu;$X#TT?swOt5{NUeui2lOi3m)Nd4T*|*`nk7HX<q2<VV+9368Do{
z;j|EA5?m81DV+cj!i1as37InK7r1VZzcjQpDF4j-B(n0QI7b-R%J`1DFU^}KFUo7R
zQ}?LDVfZBP1`fbC7~wYurad(B`8O@0(&2=57R?)Ao4NEFNJY}d*G!EqDk01<BA5R#
z>WsaV4NpPSSoNA+XNGu<U2Dr+&#0G?2g+=7n?BnIvfSY0Dki-C$iM9cjA_?Faat|c
zpZ=Th0wB|wC1F$cy<z@dI5Y3UT#$G0w`HB@@WNM-C};HCmT$}QD<Q2DW2JxJ^k1**
zoZlS`y7r2{hcqj4@E=e>KXFBPu)6r8<@d)w<EB*Ne>^`_cOktxIelAA|0LS!n@rpT
zeaK!kWK99`-dDT6UgL<Kre>Q*?o|1*C_;T=Dds06o=P8bsUQh#gnnk>XP%^;kc}V1
z#?CQZf4v|piQz|2K*oRF1*FDnWAC<&#sBm59r1;5?dWg$0-ksQ2k*zeCu)ch6ZL<Y
zwD2VsdC>|?#=#=}^zHq`b`lL0<-~6W+ciR-oPa#Wb=ooJ{R+wAA@24HO0`-be>kTI
zF*VjFvD+?wAv*qp0)!8LyZni-!B?-K2FAe>@oRYc*JOTIMQdqf>hJpyz4T-%25V9L
z4O|$A{sxd6>4Q%6$+(|k(-9*~kDtS;w_iaBw1cJWSrhX?nxJ?C@*UP2ng4y(POyVS
z3;XK=!1g|nzH>HLUWjL*+2ws01MD=(9x2%p1CjtZEcIZ&S*C7(&U}0m(l5g=Nz7yg
z#rFzk&MXRdt~$y#LWXX7wI$?ytIcVO#(jv9{j~`kPtX1@I%b#^Dx_e|^4UoOPx*v}
zroA9b_aMiNIro!ikc3UH781+1qW>)>+h{45be>=`jxF7EV2Cg;)D^un$b9%D3meVK
z>J9ka=vW$_P#H@2ZcjjL=Teth?v)aXyqM8`w10&mz2kR&t_DdS0OXa@m!L^s`x44{
z2{0_-0mP8Esi31L8(DS>agpS^dgrlBVM>0%k40ru#bQZ6fYe&i69tgm?ZPcWp#ia2
z{sN##nOGY}?JfYh6vQ~okHd^pJ#XC3VPaEPr!2Z1k=fK3704291Bh1b^7Yv@_cIji
z7RuH;V4{G49f!^9q6_{@%qTxEH6~@ezyTylLAuP|NJ3fpZPr;!EgLMGh{9EB(Y%V1
zx4kRp?G3P6H-wdZ+hC#GAl%B(g70~Hkr3-0%Y|57G9YIQ$c(m>Mv7i}jwqHuDwgHw
zH~PEVlHS@C<Wgx-Vp)aAeO(+#773kS%UcksDjR?|W|XW9m|l)lNRzLiLf4cdDh^_@
zj##g6|BA*e@boJ|I{YAOl!a{xW$U|D>V8%HhLBCaY6fIwpHl4c6lBz)a^fOQ`=DB%
zSo3D8?2?+wt3^M7^+t^jx>&sI#?VCtm|axWf%qtjXn-Vg8xh%!62FJk*izm~LwP<s
z&r@fUS1}Cx$5t)4Eh>1Y`l(@MsVrjGk9cQ5NOC$z;9ae1d7W8*osCt%FF^>#QAL^^
znmnN<lbO2Z!Qxm4(#w2U9PUXyUDpe%U1TG?&3Hgls1keA|8D<%1|!k3ViuW>hb~v9
z=;{1OQS%KFr_ZBOZ2~AQ!iS*L7>F(#B{Hj6dbQ+3$b`V8juahI=IK)789Zw{9mMJf
zu^gxKzX-7F2Zi@AzG$qDwUTDEQ(0w17E;}N$ZE@v^DzQ6Z-0%O{>8SvBVvMX8P#jK
z%nNNv$jp`Fmr$uK)l{ytB!f=jT;C{K;vGTYWVQ-_$Y5shGf~FpziYJ7t+>Q$LBqO%
z49g;a2<>mSUS)Unp2U`$wWo}2Y`^nG{b}DRL+%a6%h|LNS)hm0S*x}6)=F*D%j{4^
zFb_@}Wzm5;U}ElwXlJck_r)i$x9bodH~#jC_j*i!ZgxvZagL|s{7&=VvBwjekL#xK
zH%B|uy*enIXsN(J;j9j0isafi<!Pw^S!B6EN0H$|3AJd~s$ILxnEeZ7h+(4Jhe^&L
zM|AKV$h=7Rm_@fGvI9H=am%LwhVmc(F0>m|NgnLA#x<6|ysbO#c)D!9)Gu;5s!u6N
zYSl+Kc_Db48<_)+0IEKH3{mQl#{B*RfKGbQU{u-z(fWtYO$qGCvrd4Vy9MWy{C^Nb
z48AEc6>u@~q-*1eW4ind=*a^}JRty55Rhi}j`RME5XV%91g8JOy^~^afPwW1LAqTR
z33P(fMma&MuKU#l3^?@&&ekSeS`8AT20w_3rWr?M?m78i@0)Av*DQEqpjfWu1n%C;
z7rSV8@f<{px*~Sl68}8?^R3<3pSJgX&^J8?%_$UtT}YqQQ5q0d-_-wH1(LicK04F3
zrc!T(eJ;4&_;zOKx>E53<MW~lX+N7x$@8|CVSSjatkEr?^n#?TqxdEKnHLoS<N_o;
zF;>~zlUynl^*eF@9nsTp{0NQ(&5Uq99M4CrlZtqi&i`avspLgB3LJ|*`R*5%JJsv7
z*Lx(Kfg}JYr4V8mFeg%s4Fh%wwdKSEJxKQTJs@73ji$4FAVN^9b?hK*%(gNBLjWRi
zKuHXa#>glp4dVH%Z|=B)I-5?G7tDqMzUKF6L`Vwo@l&Bog7_hEu^{FH0CNYezVl1t
zI3{`~8g8_uW39%RaQkJ~RoD1<l)#uy;8++Xm=gn3emDZ_pOhwz-x6cZQyo(hm;xG3
zl{}j|mH~1Q)ft#{xGg4L1D>5$OsOwfvXLev0pOX>gO^mYU}+Lalmrqa-HK-Espy)@
z`95U}ovMwaOwgacA2;3fcT9MAx;<{9i|LsOVIp>YVm|q0Lf|t)<QUO;EWUE=6DN%r
zeq0()XRSJ`BR%vf0I(D|LEr^8woWT0&lzK0JzgI=P%X}0pHhX<7VNy7h<#p!nbh)_
zw2XN5X1#DeaQY8?a&Pq26*n{P`vmWu$E+<-NRW-+btv-?H+qH^_+#>w(*jS>bIF#J
z*idYhm+3Vw8liQMBiKE~3h{BVg&NMOSyeD9X9`9hvk;rML)8p#0XM-Tbw`irF<>z)
zkS+u$O^lbxxn=TQ`&!U~vwU7O#n3YYgRAA~(gXtT4U18%Tpl7_7uM20&;|?QMBpTC
zz6kgGjI<~Vh;wxN_@e4<ap(^d{p1Evym(L2zm<eEBgqbyShX+~0*&0kYWDACfetY`
zvaVPMpp#)D!B`}F3`CCxTWpTbEP~p@R+59lJ}n9vTaHrc8QpK=F5^-e*IaR`6fvjP
z(Ds7l{NOBYTkBF-xqJ8hM&bLeyR6O%nPUfQwQYp@%$s@yKz2PSuy&?s;mUjh;$NVS
z_o6At;eKKIeuPV#KNK|nL3MIYO=f1jZs;}3dkWrU!-l)7G|hdzYU@#^pR|nE<^sI-
zzI^!k{e|G%M^eK_36_~3dgOmkYXccRUe4O-llUc}&)8ame5YO38Hn#M65qw=0H|&S
z9|pan_;20he&;?|Lj;>OBd#+yL|%GN?xI=O0c?nvb&9t|Jj+?Uqy2W(vs)?4bSTJJ
zu)3DkjJnU|<Mz<|7t1SR7OV0$8cTQm1@_abF93lMljGqpW))xV>U<GxH=hA{$^f7@
zl(o7-GW@H)>JdjDMD@|3{e3HJ=t4$a@g$Y59C^Rnl={K3xv1$*fLktH=L@L<1Z?qx
zz$+n|^Z~&uW+4(7T7u10U5p`e*A=r9MzAqq*r9^O^I_TPN!!8ty8=er#~@(xa|)C2
zo%vx{Ff9kBJEHcZLgRBpshP}W-B&>CJhG&HN85VOpyS&!;@*AQ?>&UQrxH|;s%xt{
zzSn7e(_h$2SKlRcFmhvot7gD|9^cdFy^OHm?+|4y@qjfm;A`@C|7xGW>V2z&s_!2;
zx(T4E-}`yD#kTCmPpW_Ze*W|C$DjY@QX#Nlkj6nqZVVmf0GzjfDZ#t<{9tMK;DWHh
zi&f92JshZG7A6DP4uBGX4Cc#2^tB^ijU#@yBSA?h&Cdf)Qh-oAoDvNZL*5YA;AOyq
zgh>y%3EyO19IJjhR=+&PUONdGUoI3m(ThJZs5vouaboi6#O(6q>Rw=>acbjsY8!uQ
zUvqk8L<&QnI$xgRuAN<aXq<Vuo%uZ8*U_N%eQ_4}>Fn0!S;)0tK0i;x+<ryH|B9*k
zb?3#eB%@y$4RGH#@Tl_dR>q})0GLOJLYf8T&5$oaxO1Hls#psuee^{sX?KY4{0MSU
zPH2$Hz4%Rgo{c^CCQuG(UL;n-#5b-vx?fNapSPGdHoiFNzIIVvL)VN$ESVxZ0lz=i
z{ShVq33~PQWeD}F4r;?;ZpB&#sO15q^NM>EWQ`ZG0nmQN(*C|q!PZH;_6oN2Q>&~Q
z`suOAi`YMYuzz&ZM*$BYT$)Gi4UnBz6h9<+MTeOf-BDH@|Gvs!UW5GH1wfk1Us}j=
z=j$PMPb~SFs*7YCE_+=&_3u;OHtaM)?(z3d^4_1@UK2JQ`sC3E^ay*H9-hQeU9gwa
zw`%5fWpuSs<pj{YX*^-}x6l*TU(Wotf0Rqhz>;@P{;xyFAK7X~Hq#T#Wfavn^Pgo6
z2nr4jkBrWWiMyAObT{*A{4g`h)_?WU|C(2T9?=nJ;^lnvm8w5?S9#m>+bw3e_Q_D_
zZ6<%CY@L$O(L%x0v9>qe@E?brC*9muJzWaOm4PehB-3ve0#V}j8Mprz`3a&T9>lT#
z*;lI|omobLP4l1*_Dt+Vo@XF^%uUZnq@CzBW|@Ly`;aY6^r5Mk5#vy~NA2L{WvC__
z^x5md=a-ZXW|yY6wJV>&S?oL~n7dS`%vv^7ZT5}BiDOx8^tsE84qpW8*;%isf_F~S
z?Yn$lv%emc6D_c6Xr2wRtka=ll~d0y+bX<rB0=s_GT3gWWXZwpdjPTzxE?SIjv0CS
zt>F_{Fl&L<{wc@B%M#a?4sZfz-`kyIGJaI-^)B5}AIb%{prW5|<mJ~i<p^A{-luM#
zato`S>TGq@`kE(7js}B6atMv?j06+4SKZbc9<F&%C4^6-Vpw92-_qJZEQOnn>TUV`
zEWG)1B}Zf%GqW>Bi<vYpj6p!u&yxo}|5n<EL%c{d3Cyw;U@RCC5%7W+X|upsC(WNZ
z%E#Gyxh1(wEsN(X+?mpQ$`KkUCOw6hB7@ljopHTy1o0FJkUGn&TE0^vj~>`#w6Tb%
z%_66iKi4E|3X$LAWt<OM7tf;i!5zV+=ft!U8qt%8Yb4|(g0P<&rkkh?uEbA^4Ve_G
z)x8-z&Xmu>8YJ*KSnU9%+R#e?ZB&)HC0{XPPmf9`zmXXhnNBo=0Iacz5CRqlqN+~s
zHj^z3VSMBL*MV`y=rQut+BC=kYcBTGrohnREhkf^!N8LA+?$flH+a)RT(K}1N#HXR
z#)ua$o78$o(K;EY*g6Kei0?xg&B|*T^}ZaL)dvWOYuSpKoAx>?_R1ZvxV~_{H2=UC
z@$ii#dv^L8uD!lC=GmK}y1dSO<Kn;8opb;(w5&S)FP#P8^NF9uc-iu46-4;ymksk9
zNgAD-J-;&3b-mg?^Nx*7ZE9G^dw8;#L%P%1JR*px)N$QX6SWy%z4f`%LN_2{jO6rG
zcIWe?q{BvT#LS1vlRYTkPSeJgm<@w_D*Me<uW!w55}&^}J6IeDvWyqjCbpEFy~~Vz
zZu=S2Wsb7|^#_y=Cq}53dM7tPYdk@87T8%Zoox~k+Wg?F0<;TE;TY7jxU3)mwkZWt
zN^hUXstzCeu^&%op&_6GfBf(lQ4_kjgU>ec<&j|LG?%lB#{VjFrzYNC4jn*gpSaLL
zjELnaZxwB@>4(%k*wjVc{{O<C<u`Igu2-f0&igp==fl`x^8Lyqja+l}LnY>Z&d@m;
z`}en*oe0(b;Bb~t@IMoaeS_a~V0W);t&ZFFiH5v#xl&VC4={bSG{JXC+Slmcr73RE
zWXAlLQ~>6=38Z8nj(rk9hUp$9Qb$m@REL`#(4P(-4Zpmzx>%h@-Jr=QOGo*7mGd2B
zM~i=qE?kD_MsI@DK?SzKU1m6#m+VxP#=a)VrQ>J>?MEWUU@1D5Jc!`@F~PM*%pzBi
zvjQo-+#vx<N64pd<3eDzaaz9jil72T{5bo`fuSCf@9(NTRA#^9l9OWn0qWo;gq?sw
zN{VWU9Fb)1<}~W*c5ey<hstvEkbUj31XgYmh?PL4!+=Ck3SwKa-}m4S6?FcL0I-gj
zDQ~c1G2-R{rAw7`as28-aBLHry`Ka^5CMiIz$X$VS~tNA@8pfp2^3yf7}yFccMT6f
z%>xuttTnMPg(M%_VQ}3TFTx(c!dOW*L&06-?a}&Ig&d5a3jxs^Yh!mapb~F!qjEP0
zb3x48g%<PzBIcM`4@UqD`&&r9R|$NJy_Q(Z>AlA|2uM|4a-rYJJy>3wk7gdOAV(x9
zQt~IIj9_8+Zzdq@kpyTA4vWO46_npkkd<0wLSAwS>t6S@O!kR*uoi>YcVM%E_A@+G
z{QF46TzOt}%$oXydQ&aQFZup>1W1O902IBmpn7Okyig=4N6|y$WCgfSALc_MKEgK*
zVSyh|=~iV|)}VXs^%g<j*bbE6tlImuM|$&Np`w=SJE`DcMc(*L@c2>3QR6jlN=ptS
zL`4apK?7{!Hfo6A<{nOa$bVh+KONrNj*&VahVh9w5o4wW`i}3;&A2a)_D@U38!}TI
z4B0CZC)n|j{L@#J{s-@rmH=!L7Q-Q(7$AE+se@$!9Bxc@-ie~7OwZZTF=VvqJfiL9
zWXj6<?t_2LUfW|35;RjU{o$Jj^^n_W`(@NAd6Iqsz$b&&L~)W9(2tCpOJxtPSW<>l
zA%|2SERFbcSvhtJ(u*_W=p8bNpt--Oz}YQFp$%ns$`?q!&H=g<%XGjgGDW#FBOfAc
zk&MFE)5z^S%F$?Dr!2)!sKMq?I}xb{n<&Tc_IX!B6UW9BzE3{qkj*D9BZxdctcMTT
z16^=&YL|_t)=Lk!&ps7f<ny9$#JupwZjLaeaZmri=mq}%#A~uYhDSLy7KqV*(-|0d
zyN5~lPC!XV|D3folQDeK>aF0JP*~;1TTpAfjbN&s22LNR=l}gI6r9v|64RQ=^>27>
zHDZa0Te|k5d`Eu!+rkWw9M`wYVPDB$38*wqEB1wU(k%m9x+Z~*=b(S?>+24thOXhc
zr;`(WILE1n($XshNb^W{)(8&n4yU6X|L?0s@UD-eB@MQFP7?-$Pt_$j>ObfTLvkT(
zWO&fpLhok##Dv=XsPf;vTXeqtg0_B|rm)Q)BG&A)c<$qp``t=PkDtK%VS6+idliRb
z${VNQxX$B$`%2GtATs!w)m7%gm*~<>0R?<w$}kyhn`k4{e})hq3ld|zN*a2t#&`Rs
z3fKyHr*DjvdCwPUv-3dfI6gBK6(`s8Ia-LJ?;G?v_iMC{$}^J}-YP|mp=%OgZrz#i
zztBC2--C<+NKKws<daK8(At&(Ua2IX3=;Iw{9!R+`abU<N^0Wn{+MtNubbd$C9Xkp
z#cX(8Xj_sVulv&c?-}8n8Drmzzx&#fHlOaF{^E_`dTlKf_il*!jL64x_=WiQRf?UW
zX3&G}4503~hl~QOMU}ErBeBf-$89}O;&JCC8pX<a!TYHcieF3Zam8`CUf-YXXHoui
zF?yaAdGDaly&o8&_WO3n(VqJ!FjZ<(5ewNFraTc>DEjr!+KTphCI9ooDH-~$8Yd2N
zbiyy=(*%t`?GJyaP2e}l(3`NmcC&D_*X6w=2qS^d3Jct7{U`Y9hbY}|uh~p#Jn|-P
zLyYcEb#my4<mc4Ool8&%qaFz)Wie0NG5-5!zK<q!a~Gb=Q!GjX|23AnIlmcVp<*Gy
z+L4!y1m2n@CN+N@i)%Bi-mExpf}4<AI&iyhjB6|=SCnZfjTWp505CEQWygY&*ckj#
z-q0;E4n@CT9k{)sTy^_zlo{}>2vL{u+~T-#c~{b*^P{v7ZFmz*?$H69J&oph$HqP(
zytOehdmjG#;7oKDyl`*_6ug<4P2GZiZI8sbii*L5InF#0`DD6INu-iK9ikIXd$=NR
zfO0|8a9C1n<atV@(ahDuuXj=%gs7$yiWk0|+J2$T!ZK_$Gc5-*n4p*}X_7cYsZY_Y
zY==p4mz~_K*$hv_cC%jt^vF<dBKyUwws|64=4bfX0+P;9ED+3)LyjTN|CUFt^jOX$
z`_ecOX<7h4Srf?vG@;~xmF4v<$k(gZ7Pe3@J7q9?%OSA6lbIZv=wAzag)Xu11lr&q
z&|1w?)2N<@&O=a)`8dX3Brz+ryzAHBoVmiEQ3SoKL~lJ$&=^>@fX@ZYYY5Ep@D=8t
zg1ZL&xrLz!I+BX&(04^IvAauEB0zX)VY?)5pR~Pdel{O`whdmWh2JwGUzo{LV=y0T
zxJ!*8!g?OU+pV1FzfoBw_lzLFIp@*LF2Fg7P%jc#3|;I+HoPj=78HsXG~ATG+&SoJ
zO?ggFjnIWAS_xC4C{3^)U1&*QsN^4d;ZP4zZyn6P{qT8d@s%*pJNnl)p<<o5Pq0+_
z$3NgkKp5?)bT9q&LOe$0HHJ<`N;_04?GVmwExu+YJ85}@l|g)zme2-?780TIi?V;h
zgu6{j3G*VyKG*XD*%BUeJIY84F`%s5q}R|&Zq{t^!ODi=GonE(D&WlpK{@lf3%s}-
zI2@<CxINy<I#sx#n6Z9uk*19(-)UeWYB-dwDN@!&MYNWF$aAf%le>BGRW7z9N)I_8
z^O5tlOescjD>=b`<5TKQwLgUl{|cf>g;FlSv4vy4(<VXjARYVQgPqF`*`w?e+9fI@
zP3X?XJCA}L>Z4KF6G0bQzOW;fF){x6tmuV#db<OvKndBOVBk&M2!TX-tS4rXZs4}V
z`}BZYPZn8na^8xA!o=uDtmIFLVy_!#q8{bJZy6xk;1?N?sAIziML%wxTpXm)5E<w8
z+f5SEPHdMh<{`$vQ1Wx(@+~Cjyn!ZC(u4*LH6n+aj0`lRO=*Hm=iI?|$x8bAW}edW
zS+i!Zh${UNNf8W8tBf@EQ-)K9ioH0U(__U9yonaCE=M72)iJdW6YRJ!=Oo`koJOH1
z7}k+U%S*K70~9#IsoDT$remfV`{rsmHqPQgXLHpP0ln-?8>!#sR?%{V_AdSSA{wi=
z2)nn64U0E4y=FWjZFxvnoGN%26Do@yVX#PbW{l9*qcbRcnhS7x*b^ziv_IcN6_KPN
zmdD*Adps`3+d_7}lyQk~k(}<Onw|#?CTSVG1z6y)UygOTn3X&tSU<N)FpqXcd>vJ1
zbUX;wk3MWs#lmuRcNLjDnMM!2+!?q5&vZuI#yoEA^unB(r%FSB06s`pE2QDXvZV+1
zZ464?rJ~~r%)Q!?1U!3DFbgb<hyXT@`AC6$DJ2A0H@ytcw93zX+N@n3*=j_Da(vnM
zH4d<!3irOcQM_-lYC(f`=sZ2n;FZg8;xexHa#=?{fx9~04gn3^J+V>px%s*?U|Y;Y
z{LCR!p3=k9XG4<Z#UpQ;`!{|S!sD1HIcbAK(}T;jgCAO7`_u=@0zXm@Oe)F4TBe6J
z+19w~1wGITbP0Z9Z=seG<(3@vqj?)X_Jtlt^3*J$;a!2_<-@P70Oal18Ro(x<tVjS
z5LR_j#@^-zc+H)J$w_&G?m)q7^|v*s@4OwOBcNlxM1|C*+-m82>WWUcUjZ1oM~x==
z>V{cw1Tuwt#OaRQIi-xX6ZADAWE;qNcVo1#^~H1Xc{m(EGWo#<9yInim?G9d8V4)U
ztWyMlt;iXI4OxnPLeLnF9R)?EXa>|JYhul0f*R`#4h=?=K&~Vn5vv%jE-G7lF9)2s
zMxP8u$4>~CK{Aevj=JHc4TKcj$t3xhlR#G!aWXMMMKSR$e{tV1*ve0sO8;(nxSNk6
z*nd?FPIZ+ANuWf*6mg(Nk!S~<OmBQ@(0L|9OnHyJ*1&4k#A>i04*V?DzI*~46T>mm
zXJ(jJ93lcvJ%{4(nhWxjWNnx|7HUs|Ft?>hdSy5DXNyo}y|$-SzLoQ0HD|*fvKf;W
zd!8%)iwbX_o^ig8Wz7KpqPo&sSXR@ol@`7Dk;0-6Q`R;(_0Z**bYu(6-CIq|*vR=(
zdiQ|!hTK|iOQbSeU}npuz4uEkys3T2N>oCTy?l9TatvGHgfC2ZAP4LPgRc=#1FGh7
zC0@Rd$X^ZhF1%^ILy5OR%jCke{`7ye(B-b%gyMk(rKCBz(!1x@4U45*7f*`V?zNC(
zDwwK;u+<OF!})PAdpziWM4k0plwH`aCt(JL?huFWkd~aGyI)ChNGWNNW@hLHr9(QT
zq#GPk5L8eEM7mp2!Q$iFdmqRC3)b_~I@WXD*L|LBt02eKKRlg1770=J2om*aQM7p_
zcYgh;!xq(Fr5oQ*=Iu%p{0e&jcp<!st@<F*^A0?EUAV!dT919mZRN^dTxz#UZLpAG
z#$3kGU2->g!<Wb(6Y%(i01`)rU~bD?GZBTsNC2ZVYz)E$0Y2vqh|!H2RfTc@;B|O>
z+f2zgk(PQu<N;{2lbLL)yO!HO1tPZa<7Q;CE-}Cj(=dd`>R{1q*gy*mkh#)#L_D?$
z!aS;S`_b;O95*YBa;uf_yw!3IkphQZgz=>J^}_2Sa;t{mC_2cCpW8vJR)Ig{uwvF+
z()r;Agch)iRGmFc9p7k4Xf(aon7Uf~0ttj!Lp`|CdTOCsNQf4I>XUB6YfS6g($@I(
zR{0Q+QhwWXrKX*AJO7JzPP%}`xTZO)+N+tGBBI(C#Z8~ByhbC5&KA-p^Ez4PvJQa2
z(%+5z`(1sx-Awg;pFjGbzdRKA{kkHL9;#l<P5wlzwC&uxD_@>Bl%+E|r2Q2w4M4M_
zNFUy8Jt0fXNgbj<AA%hXksi5`v)aM-6>4^0T5cuvyuR$A`VrGzM|iWBi9MWY|Ia?S
zt~%Ey^sCi$LL(I^8(?$-MWMmkCDqe&zvro0h|q%}aCbg*-in7sftoeBM4Xk<#fsZa
z0lN5Z49qvar2f`=CS7NUu^TP#5ZmH$@@ky5CcRSgYUDQ?fu!%XdM)6_A9xevNKt!A
zlBW$as0%s!<5_AC6zOK4y_K|82&^p9+i#556chfiz7-w;(k^}Y+B?0Zz>7ppMIVxs
zZhdtB9j}36Kd~9(_)EgtM-NiuERCKb`$<2``qrJ>M)?kd&K)`XK6?6xGsb-`8eyMb
ziD^InRl3$&#=bfWR{QYe#%`9WWcHis{8O}+GkF4}k5D@DsZh~erBAV9|MonSoWJu<
zk)Yl}&|$?V*U0T*MF#8^f^zj6KZb>;Z*pmgr1aO)9o2hVOX_o&w0*_f6(;Qf!}QC)
zD?p{ykJy!T!V2`?D%HzL1}qU{|5`-fCR_0uOaBs0f5b-L`cvHUy?&P*Ysf0mw9Ly%
zCm>V-305LNZN)bK3*UO=zp49g)AZ$*Q~0)P|MruABqIN|o3LQOgB=!5pc)oBKfd$G
zAEX6<W_<#e7w+cv?|BXErvEd{Ufz4vzhD1v-{)-7iT0qY|Df;R!GO}?NciD+|KU@m
zo%c#dU&4>R_8%?X{5x7xI?iW1+Uh?(`geS)^!+mY`*r_!LxY3Zf$z|W6Zo4GvYQhs
z<x{GpW4bq|cWzGEmCv{%&c41p9q%o^8}1^G`bw5{-hzT4sThz*2#2g7u?i3tDK_{;
zUF9xZwpfY1@-lVx@<#RZ-GFm*jUP9}Kc)#k%-POsXU^RRK%vU=s5kd+<LTe{tA|BD
zg;A5*Dc29#FNX*bsYOQ>#H()j^%oo0i7W3~-|+MooeA?Vvv20pvftmw49?!A%pxC{
z^cY;fkv>EVnV}#LQ0M+=V1WwEmllQ?WN&iu&rN#wLT@jWJbjAY&uwf*XI8l5;6EL=
z+^QL?Li@Ir8>yb7fM7QY&%i%CmEVJXp9g9;WuRpB%Z0r83ks@dEM&K+3i;z_kcSV~
zo#?nlq?^$>^LD|RWPhRL0(5M_xCGyz^05z<p6HC~K-tix?c)I9nc^hMR6g1+0d#12
zhF)vEud$WL`<F=y6#TTQ1v8B)F^Q=!vhyiUuc}|S{Dx^0CJQo#=RC(76a(jy829E*
z&Z!@h(}o%#p34I_;#FiSj`^mz)S~)iV99zXX2<M9JlV2x=@*;m1dkm94Xd%oiCVl|
z`lYSDRG;+(!CjKW7vkG_u{=@nF84Mps34+lX06Ys)1McnD;U%aw`jd*H@N3^cqY1P
z#-W5Gx#89s<}<1P{VT}$RE6qWxq;9O2E9IlfInP)SK*$mE0&|yUdj#XP=_-}$=0zS
zNDD}DO4wxZrGqq*DWdwHzOM_Cc+9=G&_;7M2sMTXSq0{njOvooc!Mci|5_Cn@YfVA
z^8750A<pi-^J5zP?6h#Pra1-N1*u`%(y$76+1>L~M`E(9%2x56Y~8|xN{1aw5>iue
zcyt;->yK|x)?B>ax5=f6Pom9TZfr%Dy|@dfu0`T+^un;Q+k)=Jts|-Wi4O)(3Ni&p
z5J5WOh^-)1BZhzV#6@O0lYnoAo=y;hK;F`vb%r8bdkXOG6lNX7Oj1ICXtSpQlu7t*
zrYsmFX=Nd4tyHaZ7IMs=H`3(=?n9(V{bA~Gi7Tz)jQ?gk86hE=Dr6vy09>?%1|M=D
zM@>i!n5?on#+7xM9KDrm>cJ1ulz!kp3N{uPa`Kj1wupKudnQ{Y?aaK!o%8TkW?ld@
zGIa*2>!SwlJ^Bz-LG_f``*E=$yy<aiw36|5nTN=`?7Vo6@v_vkS-yet{LpU4=N8Px
zD0La8w3<vaIadJaRj4*ksd{=IUyVnORYv1*<vUk?(PFU?h=kD~FO_#nrcgCe-2Pgv
z<LtZ2f`JsL+S;YFD@ccWc^40rYQwZg_mD_pQjw~WyKwtW5Za4DERLW71q|J6)lw19
zJr{dKZNT0r9TAUSd9yGY+W=&zUPFyo<W`rCalV+ePdx7Q2GNrIQBx%onHdD4B;IE3
z22(TO&S}B%|J#hs;FWkUManMuUdV`j2psbTsS1^TZKFD%qbAvg$@m+p;y^8?7zuR>
zJ$Vlk33)#PVJkMuC1#s~p-Cl%lAKADZ+o+R8XuGVslGE84<gj{v^D1*5x*5*@*y37
zKs3JqhN3VC+k`a{PEYK5l04h^<Pm&Lda*64k1+q#j~oi(-qhc~lZb(gF!W;p%JwEd
z+uPdMgh8jY@Ee<nEr653$aa1|nbB5Bs;%@RzZYRYr_@NBf)B3rZ<c>k27=3fQqp7e
zBWG1k4kf0{bf5f3#&uPIhbl?9V0T8pwNUtqCg=z38TNW9cJ5TY2`4++Nbz@?fB(1O
z0*}C;tyNd^w_<)~i~v7!F-ZWp-<kHkyC(CFkO1r_5a<rkuW<l=B$$EF+uf(4g~qG=
zqwHY0_<{;MWKjY1NfWN=wy<!U$PXMEg`&ean4C(Iz8i9QNa4^&WtW|bLuHs~j}l{=
zgMmg9nxHBON3L%i491Sl^z5q+1{n0>|3<Tu0{Y(U1CV!4ysR}RaJ?v1gsuvZVQQ7Z
zP2mxXdy}U0>^?-&8waIF;mXX0#h~R#=Thos+1t+R&HpLA8kOnXmR=9?(RT+c@y|n_
z5V1!NG2Ofc(Gwt0UNKY1A0l%4F$^Vnv6}S1dCfX+auG4yK#@+gw*Cj~3svL>ax!jo
zn5;Q%F>#un_GChzC^lzRZleyOJq8t`VWmg|1SJ*gJm@xoy@XVds=<*=d^AMjl)C?0
zdVPLddd>2GL?0N{jljfH^Y~Vhh{NC8Wu@nh^*T$}59+gqn*!@4dH*Wi#~G#gCN)VC
zgj!rCeA~_oY2tPi$dLLDm8T`4LJVBo+T%f^X!^{-4N-;i_u2d?XHg>neRKL$wA*=c
z0n3i+1d}oMqGUl2d$OJ@$-VGj5;<XvH{`^Q>4X0)d}A*L)}(uw;vMa2h$bDmq;yc=
zoKUl3qA6~wK>jFlYMdZLo92IOE^MrWCRweLgRF&=W`5*Sl~Osb`hJ&s6(qP<22vn+
zsero3%ztpHoLEw`lNnyZh}u?*isNUuHvS84dqGKcGTO?hLEE)P!?7H5eQ_`~Yyi0U
zd3l-n>&V<-fWRXN8L$WoC4+9z^#s*XTC6?*Pu^=%kBfX4l}5Fc&;;uVGob&Ojpw*(
z$HH<_Uu?Iq%xhsmDvSe0F_f_evq)K{0j!TcX8F9Ehb9KkKpo9ZwILwWRWDqKNYFJr
zvcmP)UpG*C%115oG;}fTRnXjA94wvun3E?0c!TxDSHJyz02@Hs&ktLJ&*-PQC}kgc
z*yo6lfCSCY=w?F^2qj1?eaGGNm`G#2A(&`qAKfTNOckZZ(Unt|M&LKU>8(d_Uh}uK
zLn7hvi6gWI=JKmwy}hJE-@sJ^t3=pDS&Dl%S7g5ec%%UlWXKlUF)U;m`yS#VM*J!O
zhx?v$H?e6x_No9wBzEnSq;9;z?!oxR<qjzP$J=kVU721o%URS>q)<VJ`_n1&zS(bB
zx9@pPOqTqIVeO$z|LnZV`=byPm@sO0Ui`CHZ?835`APJoN=XAL7M<E*v@MZ13-`{F
zpb8C;eAXr1-o4x=>-_B|WdZ-1@r4}Fo$Lg!>~sxRez@*T7KY)Bo)!-baBr5<%p@z_
zgZGLLwvSjwUN#q78L0ToyHQc?TVT-pwo`(`tx#r*_Z=K*<~!jNC>=_5h(MD{=UcqJ
zJ;T~OPy|nE+ZY|5+Cu^0#S>Vxyd!DY5s9>)X5Q5&uUM2oM+|_&{N)&qG=RY8zQg#r
zC~xV%J@aHgM~BKhpn)OZ78!RsW_I;I{_aa&Cf#9Z_F-(l90e|9G9ABtcHX)G%5UJx
z4x|#YEz6AnZfmR*ak_>0{={cPXX3z3wx~Oj`S0uXI@-;V4Tf}jlGFke<o&$O-xWzq
zK7NrNocD2s1l@cq`1&j@m@MTOUYp3WWx4VzBI)eX!hMz$c7+mN7xUprLdGy*Kx9Vp
zvrlWSY10h{Hl2*Fxp<c0q=9Hs?+VBeFQdZ>DnxyAdXyw^wKdyP`n9{)Z;`9KJ48A6
zMG$^*>tyv`yuw0j^7|~g{X?2Z$t1})Y@)_qo5RKC{i!N%3VtGh)@%?_*}*GS!A_QI
zUT>USrk4t~6;O0O@^nu@qmUtuRfbFR-ihn1!wwDm6YHsPtKUX9xl4E3;kbY5tgJzV
ztIS6uU0FY$;1czRV_QF4V{BLpVlU}{H>bHbim9=dDF9{wuz&t9EAo0I1r%_1=FY<6
zpVVJZNN-rxi>d$IMZxZZ(Qk3nac6KGH1DGX^5HE<1Jun*74@MrY~=$I13#vq_*ck_
z!7N@5wBIYv>LY-SN;cXuYUA(Z2O)tbgWm{*++ifK3GL{>3MFCbIQ^^Fm!)3=i6oVG
z8)R9i{vfH3W2hh8q4}^vBVa+BLZE$M$7!?Hb7$qB<uZLB;9)tzbGWFTy_5rQdwL%S
zO47JsLf<u616!=o``c|4jMIIwrV_b(w6x6k+@5OlWnwQjAc@Xdk{;5zF8E1HgU@)E
zZUITXL}r^MWIGzPx<Y9*Sa%DE_0OV#In=;D(ICfu1bu_+e4~$g^tKg?2*g5L(-E+^
z8*m`uTPq=Fmm`D^__i;zoy+0oYdlFWhY(K+aUOuoV?fp!bN^+TAhnt($$%Wu8l@~s
z(!fEgbcC|hMnYx4o(?_gvgjg3?gS{Oq%EWBETb88Q20<L*X#iFHBi#wlrq3diEMOo
zZ_;AQq<tOysL*Huw4jP3>Djs($I9EaRTYz@J0^G3_c%4&xYVVWK;(sV7Mn`Wj><E3
zdb1Byk8STx<pK#<=J|!Gz~VMX_MNFR;5;YiE0hLpzV=JbWUPb63}`Xhm|5uqb2|nY
zws|wD&H8Rr{mg+HRKW}5PN3T|wwfjq;TCR3llo^cs0|mXC)<|BYt3?e=>*)|s>N*F
z?8)?;U{8{;<*47S#e7-o4$I5@HLBobZKo}W;{YR<9L|zw#c4nt7{=pA2PDB1(MZxW
zEpFk2M@bqVh<V@Dj2Z7>8pueB=cNbI2UhkCq>H4Zn$SS^9~FZ~`7SA34oX1pe{*lh
zs)`wneU>*YpPK);<TMCy)b7R>`?G3?JHYFbtqUrtki2PdURBA*9*n#epPcLUc_o^G
zo+L4(zns^Fs;HuPriC>g2dlf)I8n%{1ncbheWD1l!bMo68>%28m{EbF7I!C?5K*Wd
zHB^)a3Tm8}2h20gdVC?K_04Xe$fgovfbzoI#5hAdW_TIJRyMjG-+Y)~e?3!)8+3fa
zU+q3?9U{vYrNbAk@i0*ZXXHEJ-3Uzc1lEijr_~YUPVrF&E}SRuSh?aS;j1=TFh>*D
zOr1)34-58&b#@E7{MK2HX6<EQ_9<1oQyVhJS?y1dYLEg}EE(E2F!GrXT_7E8R|=Pk
zLiwpLyZ>|W_z+Jj#zS8`0_s&Uf64#*J`j<%?ZA%h-F&5e=!$RCbg1K}Pq!&!9w;M6
zm&eSOlNbh-^J777JaxPt{rnwHBTq*(LYZ&>JeLLDxl+082Xt}!8tsR#u0~Va6#GUi
zcbh+D2A2G?W)>+8Sgx!Of2BOX7eU1);%T_T@17JqSWS+*DF#))*7!zm<c=TMwUQgG
zbIVQaqM=`+n76Y7;+!f(R%RUaHvbxBlO$5{)gW4}{ft3PO2AuBXD_W=(cVJ_4|kWR
zf_S`ORY1az>fA1pQW}h#aT?0OahN80k5-GL*5r`X!lUsQ_d`0ZM~dj7h1pv2&DhR^
z2&-rX)>wxJd+!3KGnH21i&{jiP~%1d!kdufNI<l{d~c5;Nn89TWa545GM?*Ne_Hp^
zc6HhyS%!cjLSdo3ga=P8_NuWy)aWm6);30E#A8@yR#=|_7B&Sf`d3r*fyavvz|);V
zxw!|oAl&XoaUKd0UmVWNk9|GSU@6p|AKOlO|M6zd88x4BB=%M4!@h^yAb?m8z&(!2
z1UxYw1I#DX=Legu8GKp`z^sdSZhF3lcwlE{NcIC!3!~`QCXcBUL<Xi&M1&(!0?L6=
zFmDozXvC5<V&O9uD;C1}YM!eGo|2ZHA1YM}Ttzklj&~AJyQTFDc@0<t^tb*ei);_X
zriDLgq>juUzPCMIoIS!d5oQB~r_XY~V4k!F3la-^?GeR50!4Q5ANI&yel;8!a`3H^
zh-?i)Csl-N1w6RgjadV+%b$#X^Su5(i8}Q?21^rh4!iwe_EbMP%HabbWDOLUVz5SD
zKl{PJxpzyTMgR-oVz7SEw~irBWbecG8=Oc9=lu8YO11y&4>{uwog0kyKTRPT0nl6X
z<rwO%zHlJVYv@cJs2)X0;S)8<@j-}ysK!ENn`nMVlL?}4#78N`8tGo8LLITNF#sY>
ztD(t*@gQ%4=)un%lrB4ASMr1Db*h~P!2fU7RMy@VJ({JKz(N{RzvLsQGG)uH?vI{_
z%Ay%z;*L)Z;gX|ZS_;ynmz{R*267H7Dbar#v5+zBm$AdiRzlGHJ+{Zg=U3`tMk`{*
zUpQo%UsU^iHbI}+laY>*A_cSgf0E{xH}e$$1Rql*UuFHh59hXShUW?JXB&XVQb}^O
z4&78q(@?N9fQTMFduo&rvF#0W&m{BfGe~Q*2=OD)o%f<%jzw~u8-FNx5ALy<#*LUr
zoHY8}e?*3w0&paHE$Wj==6n79b;kWdTr|S(s}&Hm=r=I+og_9vvcnHi&p_t@<=c?}
z*!oHTUXR_>QJ_?lvz7=+7Kex>-+N<@Y4Y=Wa(>3|9}$1fbHiQs=RBN5vXk=S2S%TS
z^#YN7v1I(^f)THmokDCTL7LOTzI|a(v@qJd+oWVDI?#-$wRO-tK}@1eqz&M8a~TOf
zW^d`4Zp@bz0o>b#@0??D8sPtoOPZ$(PnJ?FG}rBg0Ng2&4LQp#00+~?0ngQJYN2nI
zsssNi<G_<`&2~>O)}G$<p$Jw*3vX2bR;mo+$yiM-fF<#P?MmANndwKVLyfI%%B{GE
zscNr`tnA<5te!z1n=^6C5gZ*fAAMuYvS@D}mFg{S%W20s#zsDV4ScxL=28SXLbvZG
zM>z;)dxCR`jR;<*0L<GT_X#@6U>WEz&`bBy_c76b5<l4#w*0DK#^r>kIx>#?T2xuz
zpZYy}7V<0^hJJe6yY!j{O%a01WZYMl!NoGcf-*rvGAy#sLR*GyK0VXJw7?iO+*W?N
z2Z2cfQAD9w((;E9ELS)$<M8h?c!|JB`Kw63(NNXSY^wRFR25JhfVA#;bgEulDVD^$
z%G>WM?nNg9rt>By<UxGxRYFT(gl=HsP+-!;Rnq6c<ZoBW8-Xby1BnNLslTsM!9i)H
z*J(6C=|307JLA#?ub)c<y^z0tp&FE-E0wAnlxcmP=@69Vew}50Khy6zJ2EII@jB;4
zP_E(q=Y~8J1}J#-Gk-_Glb;L));Jh;odt!0U3nyY$AQ!|9E}#3r>^O}u>$?*V(Woo
zFC3II;HdA~<x3Y8QqD>ESK#ZQ{I}P9d~)NA!S_#sifA+|Y0%{#UzxVxs&%g`hh%G%
zaj%MC2i1hyH@`yOMnThpJ%;4!41dL$Uap5d7dcTA_aKpwRb}wcADbCKrZO_fYNjz)
z!s<}Yp6xdrVxZH$f#!$_Hj9u?*cA=c?WTO^=tnE<G~GCckba&J78HKWdzc>vVxRGs
z(C)FW2wBhIF>gYX1<wgh;mrh5LZPUJ*r9H)N>A-z&of}-xeA|me*Xlhf<2VQQNHgp
zT;wWv@VsJ_T=iZ7yoYyW$PX=Q7HXHb47UJFOH#=MM%Ky8G7Uv4Oo6w3(f@fbSWfNS
z&}xLxQMpg_0uL4ZKl0N3>1~b->FZ@sw;B9ky{n1%+a~k&le>IXCS)RfmrAy8SoN<^
zfcnQC+-zA*h2h^jHqi;8P!fo`e+rZ%3>O{Kw>9${5(Mlg#aT5*bNuNVGm8eb0z}8L
zH>A~}Z8zhFX<-&zBny5(Oek)R0k`<EuN|r6-APQlI$|>uZCO{(K>3Oa5dJk$edET(
zMyvm&a_gR=hNB)4SI2`D30WpXj{E|RfI4)v<a9L5FhBb@G^K}b=^tB~Rj6Wj`-8BZ
zxxfFm!aq6u{yr3D$QaQl`t#WI@5UV4(<9)8D*8y!{d;UvIClT>E6oMf-=ED-nOT)_
zjY1cxEBCZY?Ta8kMALo@`FnK6ym4Oq%@B9h0zBk>M+~vo=DB&BQieYip=69wwVQB!
zl^myA>1~`ZNtT=E#CV4}UB{J%T>?&3|KJ&a4STsn!<1R1ByU^v*YLMHmm&QxcfdCY
z+KYQv#jjYb0xe8(;;dD)v`mbQHp*OCOpw9V<An2SOUX1$LO~su+?|qETEE~!3BFvP
zhox;_k{;suq`cuFQmB)qvV{zjG?cSd4&#5Bj`|PtT1?(cVMY(=K+gU)a_LmT^Is1B
zk<B7_nMIZFRxUc*NYe=}tHu@IZ8tLjxPqefhkvcvKR;$k*VtKR5_{}s%i#1^i0Z`_
zVj=Cn`bIc#th|KZl}-I6sg%H7nyA;53WF9O*M~!f9&EpYxiU`Xlg#y@>>dvyBu}Fr
zq-({G55=iX&EtO=s-W2QHU=o|G#&I)YA|1HF#e3nrY5fv__fJ6GT2?Dm&f;RF1h=o
z`stYg0vUV-N;!^9Cq0mZ6?R;H)01_Y0##qikN>R-LbRJ~z5*T(o<m4q^ada{aIEg)
zFRN^$8`;+hFIeTG9=?gWWBslO9T{FIR<=r(%q(K>Q%z+fOKNH#9qL(HOhjx{sy11T
z-pB*44o1>2m@LT!fH&A~1p#F$r;Ad}JTf1LK}oBU2A$6V{i6s{QspV8f&B27a5kfv
zD*~888ea@u3+1%O(U#_ae{opXlLB|oGO~-Y78>U4U)}A|l_8?4(;<S{!pLLZA5VGr
z|C&8blcDUPNgrm`^VjU$i{U#VSR7m5GFdKB#Zhb09I8ONDEA={lk^R(-8f5|c4{2$
zeMg^;WqYQ_!_<Zf1EWz0#IZVC*rF%}l&N3<y^pNJ$%7LV#5<*}dVOI>G1m5dKbC1Y
zDt1aksLT20IDp->Lf8fbyD!2oTO=~XSMM+A2tO?cm!h3!rsY;w5|}{OkV0(7up}Gh
zIYz9aOYuGv?Vkdl%E_i9j3<~3%LgJwKFk>EvuA5@41XVFF|@cIHdP-xi1QfGvYLxZ
zlc%!n<mfy<ZloPHAgN!QQj5*;RX5__iZe6)J*Y>q3Hbb_?P(!OPseZsI{uEKB_n-Q
z$sMUez3se~9f!#doI||N+l{i}Aj#s$2+!sud%!-`Nz~?McvDAD^;LSi(?Q;)R+tj<
z-~bPW+{FNiY6{T!DEI<9NFkbuejU&3>Bf;kYr;4NWoGrZ$7elCiQZziiMfU_+caW;
zBw7lZ+agm_S4p#RunGvAZ45<3hdTQOgisc;=lnKX?doT$IUbD6ka5CA(-_Oz<-!DJ
za-dXX-T*S8Bn`QjX0fPsHOAR-;lrlKd?BzG8z{@Ink>)YKGhQ=luz?q5Nm11E0erE
zsL<RM5MB+-@a#FIUq5VpXd$0U?^w-B#FXPY0HqJKB}Bd^!xqO-^HGUMdQ>}W`HkLJ
zzCIsU=M95>Hh!$~6ndP}m&QCr&m7RMyWHb747lOVi(7nFRQz*=Y**ndGg_(p4}0@+
z_rc23?Of39$e{aTnHKPYlokaQvY-g5kbhVmv)X;^^qri@@gc7bfWQn(!!8)vZXmD_
zm^bFJ8#4&rAJCwPFbIZ+n(VqgyARHArk9kRz7E{!*{L^jkdj5iZHhsZ&7z^<G=r}p
zqfk0IGB+tnd&gz9p6RdT&${#1zK><M(qbV*+(tmp6TrZ{b{d}EQFq%6+5TReh@4Fi
zO+khn<mWSfxc6?T+q+to?OiE`Sa+F`p$h#&%FuVI#D>N)E~-XdJ5H5xesI;LF^~!u
z>0-9wL(dOYAvv^i_O^p#WTTjFUxMT}7ODAhVzJ+YCNrv{$i`H*Bcq<;NTvcoFnKC%
z_C^#=ulOqnV>GhuG7a!c;~viuo2VGBrRnuw6#nmCB()Y0IBBE8E6xrif!RSMFdBT5
z4<esV0>LUdSorY$51f>1jL!lG-)PKE3aXjrP@7Z&9akq-|2rq2o8*y+K6$5>R;Qbv
z3tsQWe!SjmNp8G&+zaZ4z=!?ddme@82+K&XWp>(p_)FfzDdEowJ9od+f+gcoQ(@4^
zq7&aK<y!8k7y*RsO}C*8e?sijluw1}l9acjdqd+3i5$0#%8WxMl1CsKY7S^-1HQ^E
zR>e%`U6N~?z&ql&0Q@VxHqebWS@C<~3KS97t_cqhDpEboh=M27jfBo^>eFow$vE-K
z)r`a-QlRPuQ(&a1`@#n#5h7hpl1H<L#=_Q?R#S5VkBJ5fNHwF%1o$H1YOXwSmUMwq
zgc@M$yDw5fbanB6xGld03h+-&BF35o;U@`0f@yvQIF%F<NB0T(u^-R!rFON+C?{&_
zq!_cp(ljXeAyYcfYm!?{JNlVtd2(h8kE~v398Jx3Py^+@?Sc4>yB^-csxsN#or*NX
zmazq>3{jNLiH+5}K|Nofs0+@?H$Wl<5C_}O1cm?C7DbEULq9p#3tjOo3ZD_@yIgV>
z%J?ionl>=t2w1!S{g!{^{?!EHb-!+KYGIHWsR|Jr1Cx>q5k=-bgYO<4QQM&E<>M^q
zxRt!by36h9BPU8A@*l%!lPnclQ5pQzO*paM(NRPspPtq@wN27$&9Lmqz1k*9E4ejR
zL7xG3>5plmy8P@i1H)=4pO{?KYRq)@@Lda)=N0CWr>)|>oxNQA#cob)-|h((x=5H<
zbvaUdy?|!HpnA4bA}wb-qoxg1$-El3F2*PDha#1wv8OnTD0?~j(Gzbnu|_7Ek~fBI
zgH<aR8%Sc=d#9l|-h8uI*T2z&?&B?VKNQyO7%!9}ma~iDN29U^pCoe7fC|#!WFlq8
z!Omd>JmYW74K1H_S!hFBQlWx{wtKrZ6C*KM)PebW<wO^Sx~G~?-+#7`VkkH}1KKMR
zwKe4PUhoE5LKUX8%^ueG{2c9I>bK6<SG@(*z5?eU%RiI7xyK}$Q_MD_x2Q`WT8i^M
zpq_e&;U^HX^%}2C5+<WKNj>tJS(yC4Bkj0~2+($xnOte7Ubn@oH9aH!9$U&C5r5Y7
z0m{y&flNLee~2lhc||^a<+6B5F|gzMK6l*M)+uf7D>?PUR&HO-aXFR;Vhqaq1!Q@C
zYln+(RAjr8`L}=-qVao|bX^1Vt!Fm0q5Jx)!QL>okFl`%=jP8I(=OJbnu`_>5ruxA
zKYPaXi{69@2hT~EVEgwlLJFI+p#xwpFV}xec{XuuD$@gOVv>w7qQ8N^P5M2tjea)W
z0$#w0-y}jDDdFo&K4Gy;UQ(}m2nZGp>$Sy3rNk^n#X?kX9o_58(fnVhdC7k^YmKgL
zdlu%ZEM?e^;}%D}!gg&Rsq879;F-#cX?CXlectyGD^z~HGVt=c+rIMmyXNHiMdN(w
zR8dpt+{!=I`Hm;H1cSjg=U7Sr0k9Z%pOB*%$N=@mMVZQ)ert^(mFX5hz29hTX#^w0
zBzPJL`9^sn05Imd^Os7C0<w$U8~gPXKpM!zL_iRq+?r6bjDu0#rL@R=zE8|}@(Wq7
z8zbDUj=6?Wk>-~7Mi|KdjAnxnZu1)?q?eZ;&2($r+yt=!(Fz#hsx-#C`FTussgzuJ
zgd?6E(aj;L!u4kWsn$IshNdk5&?Qw@Zm1|=&<u-2ps1d4YE?E?g7-Iq__sLpJ%H#Y
zq<vmq&}ER<Ms<?VD_t-s&!;BksJd!Ry4C^`E9i^lzzfPHm$3Aebt*XNs7R=R>2e~+
z2USD`heWFDx#NcP(J^bxxw9>KXUvL{usDHGx>qejiFR<t9N?}A@SjAaM%3U?;;?=B
z@S;6RPZE28Pt*S+wbK)6CP`2iP-d4M#az9)cQL?iq;la+X-@mbOE-=9W=0rnq@nIh
zwpGksOEn^GiNB)3)2`AoI==qhqM16bjApERQe931xF>-EWe02USm3^`MMk@$G`pLy
zNv$ux$;!`{h{S1e3Cgfr0A+&k6bcfGj04C)o&zf`fljWNIvE{)R_d`4p3X6!jHZYS
zanFz!L5KLv!>X)9yuk!0S8v$zO3NTYC4?ncCPV9+Uo290oR$v=yq6Gf1ImkH$j<;3
z2!RUCc&z4$64M8h55ehXS|Stb5v}0o!+8l@9ZJ1il{PJ_f*Q4uac&!YU7b`(2B`f)
z+n!Yo?EP*@obRt(GNnZZ3@`~RW@L#PFfgmtG^LfChX_zso7{Me6>Oq#%%BDvPS1QW
z;a&e|n$9QpBnT~W8DuQ58Re(~V7AcYD4zIi1k&og^?GYv_oOqO=&r)`2I@eAYMS!F
zN<q&jaSDhepZC;$<8KReYC<5?jg#Js`rd*B;g*K4lkeZG7ROoYRYz)m^3yo#etV==
z5sHYKu<Fn$ec6CT=WW1*B^tOpiz6LT$_3!_0=~S1=X-$wCF)3aRlL11g|uqUkv63+
z3>S!&NlwyD$xx)r*A!UALjfh`LLU#i?=hl)OmSQgLL*=)3Apu&#V7i@E=#t>h=(x6
zJ~bu1J~e4t{L_CTM|%o~n<$QgAX-|b+`(^c@UR=?1lhVF6`hfz!t`<;Ii2DVyEl&h
zueQu&5)o9GJ*?G+_2WpXVBP^_*&2Xy|L8vc(T;j}xCPH4Rkgk_&d~N+{^ZlG(q?wk
z1k7mc{+w^=6}=9>q=I*6;l&hRvYa&CeU|!kWHL1b2{g}%jIf(x*uY<IiV;c;$!bjF
zriz)Mnauj*R~{fni@OwQz-yH$(TDGaGu5Pyrk{G7GI`)-GyBy^rbSTX%22bo+)+m@
zoS%iMyTmK&{VCc@RsBHVv6z|UN&6P-+wDKl<M~GX{r?iiz9@LJ`$vid)*057)dp{V
zaJg*w@0S62q|9wbM~x<;&jFGfMImx<em59aasrk%P6C|EG--ilG6Ir%n?Hj-IG31s
zb~x*s+~U(Vw~WUju(!7ekY1+_g{u=`oELWh(zcof`~r~_VqK?^_cC?O<&0*Ag`k00
zBgPznB9Jr?Kq^b^Q*Z7Ejn9TdDFT^-J5%GO?mAh`BU~(wHwrxe&U#;>8CS9J-8|he
z$*fFZ%+vXt%Lff5mh&x^1xJ=wIao3=iX19xibjhh#ZT%83!al)#O^!;7HB^8SuF?1
zgaOiFfHXM*U_J}eUCZphmT%K7OTr)>0t*G|Ruy!>%KG`lOd9nW9r-DXluHZSA@g)$
ze8%Q%G1NSb+nm7N5qU(xbc5lIV$EnKQ)~06s0>@^$!sovxNryf?p_=CUE4Q_tr>fd
zui0CiTv(Zir=M7%vHu8lFQ5#Qh1Np3xDLeyc{)7j^vC-8uldo|{P{roVl45kP_DYE
z?`S@?je}<I&IzC{>}W1RJxavKHUc_d)3;Ff9<TLqG;PF$)qW|W3;Z$Ksz>khw7#{3
z+>*nc|Go&<tE-rssSmG^Ew3dvZ-bw=a6c?A{MuglaJl|rVu3a3>H}ybaO)DVt=_%?
zdhnT!`I4LQXL1!CY!#^SAfEl(og<}Z@3FT|@v<ocSLm8q=>rs!^+y~zO|=5#B%R5a
zQ~&Ern2~t4D!BmW#qv%0SkTk*0}~+QhqcvtySuHK3~|KP!Ovs50sLb2SV=o(KA?FZ
zK+F#JQ%)>S$|x}~LpmM6)S2Z$mqO2nV)(ZfZ%>mH1bSRw5g5FFkY=A^u@?5ew@b>7
zo*>4-#=~dpaL>g->ON4`mY$=LyKo~;&>1JB)YGfDfzrkbKETyXKYZc>q=o^h38j46
z_WW8K(p?*NV;eFrv9il?%E#R(Hgc8GZ=eyd2sydv1ByG_YsNI0`X6W>1e9}ou7?e*
z>3rz1_uz(5I+`dsphTP)`@ptrPQpAZ2GKD2W5l@F8f~$xNqxsX10KvVxsoT1i#Pj|
z)e&QtO~vC)rJJmmvU^!I=q>&GRIs#Eb$T{r78U!4UhgM6549ZEEF90LZN)sDz>Leg
zvie%PP7WHTj{Tc_w%cTG+mD@Bwyn72JXh?fcWAM*G0Ty-4~}%(Wc1sPhNF3j&bUyb
zm;T`(jGm!l^{B#qm*^}|%<}HRiA#VV6gt1{)S4n#+DSpamY)Uv&b0<Xe<UvM^qr?G
z$YPTSBz^g!x7eAlP{(bODiM0MXKDg~5oWTB33kt;4H~O>sx_;4_KO0r^~;%6KlVhf
z_Lbt?^wfEcao8$n5Pe(=l?wuH<W^7b{yJrMGtJGk)UEViV$(6`B57YS?ZAKX;FtWt
zn^m{wn+7*mVRv~Hpw$yUYJj+2aPOw?^W}3x+;<bTa39=twUj+f3Unj3I6Uq?(7}16
zYJ2FmyX!8ywI4_Fo&ZRSpOB0ZebP95qx9sh!I53{6B1bT68-)fJ*bcevd-fPS3BMc
zCv(&SmO38qHYjUr$&Y0oAB-L!&K@6SLASym9}|5)q4#=Ti93__x?ufIEar7ie|$PB
zvk~z9*ZJ{P|FHo*@MO&G*Q}SsE;a257I6h&@b37_a{`h%0q=M{Uetg*J|TK`LL7U-
zgZ&PRB_nUNBU$+Xp#;)bvmoZa!;wJRD|L$9CloTLG@7R*Z@ftjPwAhXGQ|3%<eo6z
zRGl(+oU*(<Wt}^{vvbP!^OUjZ^e)30JMS5X%o(TV8JGDP_uO~n<1^maGrsII{;D&9
zjx)h$-n?(mgm=zFex8XEpNlb^^Uj^!lR1~rJeM>-mwJ3I{rb)AW*(dmctNy=;5!QI
zK9{G&4fv74U_ieSrW9i=HS&U*@czxbpTa62Js?@_O{Dr;Fe&!Qar^nJH9sEgg?!ot
zYqp=9OqD`*v_7w=re+0N)PIBWsl1*4Ak#}x-b>DiOOY}E0%_`R&+C8uU?g?9oNs^n
zHP2t>5uS-cy7d&Wy&(b<!)Y}G8h>FQiRx~9@>wPPc+*Kbj{?zA;^@4)=8dp4H?lZR
zs<FB1ANiqLbBsT$g`V*g<Nv$+-8CEU_p{mG{NvM6pD0Q2v()6Ln#VqGu(TMUswQ3B
zDBO$q8UNI?2jePwm)JtPEAu<wos@CTZ#2VyKEq~%aVucQ?>m2V0=V3-3h(=`?gje2
z@s5%K!w9AJ-@(bsBD9RJPfLlj43pA#qBCRyvQu<olyOwDRM5a{s$FUu;vevAfbAr^
zE#kUxFOoPg!#@c8wdR%#;cwjzuE++}Dswj`y<6J^2NFLC_9{t}0oTP=dGiJ-RLjqw
z1pA~tGg!?9&HZ{NdOhhLvKRC_pXYb-cu1l>>fiRSxj<~s-D9^1FfApH{$^MEKiN|1
z?k2+9oYpEud>GKHDzr(tqVG*)l`{3K4$Z;Wz#+}hM2k=bOz^~)$WIK)bUC5#l!1$C
zVUIG$x+v18{DqE5{i9riq3xTCsXWW(V+%#NZ>fKHa)1oT3)=a?V47f=BJU_wA_xYU
z+X^oK1Qw=LCJl^wx}`XH5R&5X)9Fw6JU~Ra&tJhJL@CE0wd7xxM983QME6S0&!RAz
zyEi;(5sbj^m)T^0JHR0wj>zgD#Bk|poSs1TWToGpIGu!)uFrF>FK%g7J|>schRqe#
zF&6C_>+SOQ1^a{_4%t@*AEZya=EOypk8sc0+ZzwfI>%MJw6?#^slJIiSzDdiQEQJv
zayntBKA8l{er-3RiR0R{7!IDfW|I5mpG7q1rV<BfZ~RHhDx{#7G`ta6P<QBXg5I!h
zJ@GCVGkzSEmR4Qt{Y~R@9+%3-ma)VWBrc<GDY;&8@Q6&O)%))QaS5-CH-_cjA7PNE
zMB>w6^+qx}s4lG*CdY9A;{Sc&8teegSB|qKqP}<aaUorwhz)XhEBwW|0k!jN-X?QW
z$BM@<s-!iN;bBtfCEpytEQAE%^W!jf*kQm>-6BQE^o$FiLw2{JCD$}bEkS*L#Bc7h
zDyn!!Z4l2Z3MX)GPdO>#XLzdRWFK2at6vJJC`#JBAIX#CzWL0+m#3HGvt7QXJb%XQ
z!!$)N%_*iPYe}jrWLYH9Gy5WeUP$_-{%F^pJQHxKLx+r7Iw^3j!`q&~{)%-nVAxE@
zN`mYw^}a4Aog=4C=f@)8l2wp|T?(Wdw?3CLry`L%mh^z!%~9)9ZO+x{<^)*2-NSN#
zMvr#4)Oct_irjjC4%1}dL$#-+w;J&&3nnpxQq>@udb|>*j&xaxAWA#Ml3I@$p~H{9
zU~;V(IqZN4>nU%%47HZU5Q5(E3{6Iw1SpEP)msIUNQJKAh;7hQDq&|#O(+sb*3}&<
z#O%&0T@qEvAi|sfdN|HH$0aR9`B*jvLD|~~MbzBLt~ti@igR;^nkl((XGytSTZ9qO
z<H}Oz$~)~7-KB9TxSB6_0!UzHCk`sEz&}{zC(u}O>)V5GhnzlC9nG}#48rGWZ*`93
zcsK7>JWy(9+{D2Jc6CUD&%S1qI*@m%rxW>K*~O_rWHC5qXA2WDE<_F<3jSn|%FkS;
z*`xQf6{uqD7tt98x3AZ@ll8Lwa%$FWI9DMu+wFj8XhGzklsT7bM>(#EYYb89HtH1D
zs%>`d&?j(pIc8EBSd^p{(Od2m>Rvq-su-IMb|>pPwt}?g^2zfGeX;#b6k&T}?&;b3
zWuu^ki^FO^BPr|Jg=(9zgp62iJ}8P`<3@H8B4EvfJM&!&wNV?J3-Z&@_!ee-@55Bi
zTfdJ=*|E04<H*%JG(v}008+6uZYmBgJxmrAHBax#a5%;&g}{&40+D6U-@|=2di1%q
z-hsgfL?&W!J3qG|l5ArV5bzoO@Ost=520{Gs<H`Q{sn-#Kb&YM2zZ38BLYO%aGyRj
z69%*R3Qmk5+Q*alOd?rt4WyIuowjs8j%IGe8!1TVssyF&@bp8jz6(aTmZdcbL%y_M
zt9o6w&p$a<^!)&}egA`nm~kltZDrHg$*zm=9jlXyPmxC=Sld=Xq}HOVxE0FP_sNA!
zSEe0Qowbym$Mu{?J%<AnkJL`z-f*V(g0fUs^vGgk|NdFmbzFvixWD7~*iZdO`&{2;
zUqcv%#(H-$y`%5)$diAb8QT3riZjE|O2h~dW?KvpfRu*+<a~Kr`9<O1+DAB-&C6!F
zs{zWh?a)2zC0<G(kld`%R2_+CW1J;=at9s0lvj9y!N`N-Y9W&ICS(RiAckseED^SN
z`D$ARj4=$MS$(;prI~98NPXh@4GL7{Rou4}g_{xb7_4A@48e^=NZPfPsVceI`UFxr
zJs=&~swx=ZBOS8(k)}*mU9nitX=bdDjBdVXUU4k$<XhPiiMlvvPMw=4X49{3yO|TY
z{=C(GkUHPuHvYxJ$ainjYLYhJ6pj04wR)&bMQwwlgmEOaXedSI<=a{P1IGswi(*Va
z)j0n)yJ!Qp+XX7?XjyU4w-9w!J|BHfzFIo!VgQwf7&s-T%v%aW!ni04q^b5Rj1?PH
zDZrAX<3L`I7&#;cB=ndXV__@jl{5tY55Cm6>}ia1x!J7{ogY}tMpKRaXgr0yGow}Y
z0wqN%@R2sRg~-zbf8Xr1@4p6J%vY)@!{e`+9`v}9XTKq6exB(B?h6=w1#_xfnsF@i
zYJnj#kF^2w5woq8_cF*u)OcSn#P@U2_WX{4vD^D19e3DD+5Wu^ZByF)j4CfeO>>>w
ze}avz3FH-qBsY#IyjGh%NHS*>`N-^jUW!^JdFCYCxshAtl{mQDdtaJt%TV}vYc<gn
zZ@$~=$9SE@>QBEmG${l>&BFH?Z0S^93;kAXifJh+5)-ug@+-PsiPl=z#geAH%$)i}
zDi@2{k)z?cLpPR{C!AKlGAj20r$SrlP<+7K-;K0Rt|Q_uOLl$M(!7f`kt4L3JL<<5
z_ISFY$llE^y2URYy8X;j`Mg!D0az|BK>a6rrSEL|Lz{b8>xqpW{(hPSC(i7=*H2M}
zBxjh@vAv_@NZ;5nj({KZA1UGQCMvmIC^F`=pj8O1qH#e9x+P%V{OPTxl(GQF#Q}(H
zVPev(ayQGI866#(-UFmBSJ!}v>Am(`4KoHF)rrTvs!-1ar@|@Fe-(gHe1#ai*#5oA
za(y3vJN!1wSZ8?rrINR-$%A~+4q<%NY&Jm^t?Cg)bywQ%-+x|YtG|KmhYzgiK2<y`
z<8<s|E*ZV)^cfN=s}qk!XRE*Dy>IDF>Nm9o-3~sW5$WChC14pZV1nCjJjJ=^aB@C;
zfY02^TJ!di9arys9ZHks@cZoQKR(QNQKXIFeQVqYkn~yMc`qsC#ImFOzd;{emJ}Vn
zUled#vB=EZ>}A)Afq$w^>p-uSF0pfjd;1gy$-2e;p~`cG26^I7_BjKoXJ?cKoBmcG
z?%ce40*oOaLl^+sZfg{oI<VA$kIBa`ePk4gy#3&2NcKlp6G};80x#|&bd0L8=4^NT
zdUW9~1>A=Xvnj0%m|GqiSFesPN^g9uOQJOQ08XxfCpK8c@6){_SMr^`N}=?|ahAw$
z2jkLML>yy3^eCxucTzcCKw{m`XarYOCQfxBId5~^7(QMV6|nlqNT91Wx}iTZurNQx
zA266EezH*i+>mT`OMNP6AmyuHGB}Jt<E4_?K7~(B45btCZk;)}<NKVeL^zMu_jB7g
zi-ZKvfilHK-fQ`f4I#7}R<G&kH$9`PXa-6=WSYA)PVmHh;nPfi{A_xn{lL3_ZV>nJ
z0}-hxPw{(eyE@4GRC+1xV|Vj8*?Hwk{^GD<9k^o_li8IWR-%E9-!#!5f6LIkxe}24
z2cLGf>~AZ35-Mo7u%I0@qx|%o)1ogyGzU$Rky+wQvE2Da6LcE(=t;Ze%{5D`=a#!~
z%h3KE%0R=8>yLMnp4RR_O}Gd7NJ~Mmv50>*KviG&^ANwE`GQLw5nX=LMCs3n@~0t;
zCr&yTtXI19ZQMrjRv}PR(rz0{XAU7pDzagKMx5ZaRRCKWXDMFdr)IcWi-X}8H}xs3
z#80YInTWGkax+Z`4~pC%4R6$e7v9AK10mur&*%biOtL_hD=eB9r%$-CQb&s961j@4
zva4G_;BgQs*}x*Cx-1MR${3{3>8FXoiQj@ct6|>a7=vBNohzL9T14%Mj!azSB{B9z
z`J*R~Ax5xguVviqrlKD)My(Y)t0QAHG-3*WMq+lKwfV+AKt{JzS=#`?%IXi{)Io`M
zreW2Q8pY9%i$R#i7)>MV=9Zv*EeJP^D2W3r)yU*ptxd`+f;11;O^ZeGMKwH*YsrZt
zzcf*sid$fRnjUENWykHyTzpiNjiyne*%)3pE?QnTQer^wlcwa%oVHgWMA*+Jids(#
z8=n^!w3Y_?L!`S)oU*n{v|ojwu=hTek>M3{-QjTPn}^VI-{9>>BPya`(*LD?EDuG+
zz%7S~|I8cxY67X_NhoDv>`^$*7Ry(TQf8=B`T)IhRZwvp1Q=v$-<ooD1zWC$&{`VN
zcR|tz<CnGKiP9*<slp><4RJXT5u<?A0SBEN2)_|Xs+7?r1H!6(kL?u%nVYT{m&U^s
zL&^Bai;$+_o$A*4f*}{8=?V$nb~@*i`ezY`)qD<rbtkm?Kea0ew<|=3Gtn&mMZl`j
zMa3O<f*}<)i^@oXS2jRP?70Gyz{Vh@S+UWuR!B20<4_hzmCJMOk})*=oU_UG9)0Q`
zOeWE4rVnw*1IjG0rJcJt*!ioV>#MB)2wB5sT3@nn;s#}sG^TQpl^J1QU+8v`T45!o
z0!co_<-VDR$ok*$)AnC8f7)9evF?)J5d_)HL1bUre3wy<QV-{yqcbIX(%Qsh<sEd!
z7puWhVEEKG-5yC%tU08ecR9!|g(>uYn@Z|U%5HS;twtKwC2hw7B0}&oD~6F0R6oW^
zym$4|0f70C;DIQ>@2$cbz{~D7o@GGcB%JiebzyrT*Pn4lOq%m&`<KU#Bz#P`8&{vC
zQ}cu7cq(jmX;h)Mcab1>@$YzP=t9^Yws@zjSmo98*^Za_j>X!57n&#ezSA$YiiN(#
zyBWo&eB~DokWGZ|6I<LD;`#-VtFiVt$xL*;0Wkg2m&;Tv9nzrNhp=lxy!J|%I7Hq`
z``pq`mjOg)v}FqGWP*8+)B8oP)P<k-3MiNhdHf1C;ZP2N@`Ru`b>?Ed^m5M5^6aj>
z15`mt6q&gj*I87APBDO=l2XGBaD8pWx?oN8yj0>8L~gISfzNwyoD-Z7MmAk-D^}sj
zlh1wn<ce0e6JE1hl|LpXvPuMG!g5m%fFuaOPia7j)hBfcKz^j-{Xxf1cE)^ZxPbLU
zNA<E-T(zwUK?8a0=^!u@07!oV(%vK)Di78<sdImJmuVL$eqvfERz!mYy=QpIfB&T>
zJA~u}u#F*E4*I`PRo<p|z?Qrl_AdZV6@ZjfI)|H_i66e6sknY|L9TAUrjZ#dMgY<f
zWW*aO+DS;o)9Sy;71l1)gn%0<#K9olMiM~|nnoZawN$`5a9yVX{VFpRkRzD}-1`L*
zo2tkUB>sO~)hS~l%6fQD;~x^tKa!@W-sZH{jSTrs9F0wDat+7gQP4fec0$9xRY~pV
zhCzXno5+^e?;4I5jD%42vvQ6T{4LD)Gu7TTvFWxNCNwes=26;*Jd$sHAy)2{_xiV7
zVI08oU3Yx=ETxeHIh)vPs6;zTH$lO@N!=V0Vj}wg0jQ0x+n6>ne4F6}<WhiUG@<U@
zySfGRP2HAuGf!f(p%u7W4%oX7b@|=&aH5^0_BCRH)|*8-+p3DpK?*jJ7h}>Ho8K8Z
z9@6JVQ+?3hL(@jp(*pk1qTUEXxdUt6FnaUqY)JO>edt`Qd&@!YXku?p!W}K&lDJ&K
zTh1yD1Wqu{FA?b9k*S$n4QEq9@}!|*SpLUnn(s@Msl@adM(*yafVl<g-|UCaRDjOh
zGyWXBdA7yp?@v7=$xHtfsDmZwVcu}Bl2M@eg&F~`)0NqEeSRbW76(DMq}5h@&E+&`
z9Qx+3Zg^3%cy*)qV1^iFfdGw-+ac-Q<3wpxV!u%1BO*i@)#2d7>HfEJLo`N1Hs~Au
zi~phNuK%KHyKsR|!Y~ZoJq(>9Eje^|r<8zzG>U*abf+|kLwARiFmwn=w@8DE2#A6h
zb9ml!&R?*9+WT|wbzkdyEz>Yg4cPD$sbhvT(g2$!pvQaVdUOAyR?obnTX5RA!K>yW
z$+@9d{vh!}e&s@BQr3W~|FBxYu>RSA1J5Af1dfFbSzYw`+CoU=O5f#;{ERB?4jiq{
z7zLP*K6md3bQ)&y>Tb29l+hhH@(jq)c!PHv98?{4Mvh)7QPfreL`1;HXMnFLk;KR`
zzmp&hdJOmvi0AI$KTm+3Et`Q?=5c7h)7jWn`lx5^xQ*aIaxedJ0Vr*%tS}y;V_Urr
zndCdG{<K8Uy*YwC8&PB))?*kF#7+KDMH%QCEL8PSi&ZabGO>zGFWEA#^iUSck)#H5
zbNN2qk;V6Y?X~M{E09wzBugvgYKBal1U+R$JYBaJt_;39$^M~k0wSrpX$JhTWd#&7
zO9FuqSZN4WF#N%@E8F*%CkYctb2P6CNipxCZ)XkCrfR}x7dTxw05p{7+2zVPy1xW)
zJJy<=S(P?I+P9G5cm{jSJZ^iwy=}qH>^&*@!r|DQJ_hg)0Azc%@Gi-cV}KKHyO0S0
z=J1e&`7MU}&gudd*OumV4VT&jmn7cKy}ki3$g@^$18)b;)Ms-(BFlq@i}G2^)DEOJ
zUuS|Iu^xD?91%u7onFB(CJ3#qgbN|ou}{PVR%4S_<Lg&t{;q5cCMJ@sr6+seYOGn0
z@M|~BHDnHJ*?KD(U)KmQE3Y51h6=4?;ln5-JEh%v1`FT+6Ip%TYxOqTA8o7$tyh0t
zeKWoB_UlGJ$!0OhW(W=#bZ>Jl3xL9bG6Oc_-saraM2mGTPwRbHdbBa|cGJfXIr`|s
zhp!)QFEvJxn>%`22amRnlD9t9Z+)5G`ucV2RBr2=(8uq3AAdahc$NI|SN+G|b~@+N
zAMqsHK;dn${x;Nmn@~9AU-CBb%r?pC_U+J|LU?Dfew)gBhc0D@p<#z<W{2ezLUX#w
zg;_hy0V>HGa-Tv_BF}LEAUnEtU5FKK2okdgJ+2|-{|8~7eLjHM)5q=^IN*UCA6B@$
z2?SCgil-1I@2z6lT^?ap?UVxf88K1)y;aZwam${1^~~_AgAAdA%fAOYnEl-<o(?XX
zSC3d}n-1(A9JX-nv!03#+7ZR>0ee=&$Q?i{FxYsZgx+&++Mr}iA0a;w5r+k#nm}La
z5pZ7+PZQ4-HzKMC;z9Rm^Dq5P6~uJ*AWrD^`1xrg;*(DIr)9g)Z!j|)_7k>-k}eG-
zXt;MUdh}-DIJM~0T9RaOO4R-)L8iAK&Hk4NegfJwbGEa?{pSC?gKdg0qZvmbn4^>*
zUuazR-m@ZJ|D)Ce0Kb_Z`Jlg6$Ah+^_M+@3Jm?dx*{@o2Cr(ZH1dg3AJR+c{&{Ga_
zK6lciCnWF7@<|I3YK2~VG{egSAnh93sb3qAe+>`<#r5KNN%%MD@^i)xVUXku1ooad
zffPad;>!r;9I*l+Ymz9cPtk2U&tExbV@sjFkKp|VDW8F`-$$@2Rv!~kc4I)OSy1dl
zDxW<9eQQeY*XL=HA7tadg#QL5dtc^M6StUwMYoT3?|y&n`CXa}F7pja1~~I}_~GaY
z;WxZxeL*>SKi>Z&;CTOqcJfw&4inkZwRoM6%DoI7yj&mt>EHN6tP~=)4H7E?>0Q6L
zwEwnGv3_S(Npb*WyWv~fKu`|Qj`YnF{1#Z+V7xzPE5eTt^cJ~5E1V6G|Ehz1TJrv+
zsEBY;ylj{MCGhJP^ZS(o14K>#3j@QO_DAGGAup2pztfW4tX6$-GW?m^G_7t$_yn2N
zLj4<>54CZqY;1xh^uynNgHOJOWH}s#`QC8i|L{o@m(9ZFcq0N0$%4;dGx)!2ji+6W
zY1#BsCx5QmqE==cq)Z+u6gyKDQ(VryBW|9%?)gD$pH6GXj$d;mL*K3)$E!I%j1hsS
zYnOsr#L=9}IS-FjP0K&%>dl#H4!#@NcU0x{;D{d7DqIv)Qw_5`rL8s>G;%~G9IL7y
zJNo)mzu&Im6)~zh6ETME=zWXVozBoP5<)G^KNK9mdq<$WbQZA_adWpizxzDEh{VKe
zq2c=iLN9rmB;{DY>hj^T{x!*+#`#k2X<Wd>(mcS?SLfxAi$_|u>sP^20->Q{2?ER8
zP&Gd%^|FeKfQA|2oaNb$3|0fQF{Q57=O?u=1jRmeJa(X|ke6#c<lOOUjHOrp;&|=1
zsxw3tg-qt9ei&7j$4FI%8w}Q6OS6W>npQ~-E0Y+^6cXJkj04*DNpt?FGGwshoK#$q
zG`m>!7_I=?!nP0^PxE@4uE#WkLmHON&d<bUnl-}X8O1$1HHVAUZMy^)gPEPg-z6gM
zpD@P%L=Pvm|3cuhm~tA(hhnLicrS5kwhVZh&n5NEzVQ+7)CF;II(w?jMCqPWP2^ux
zlA#={`P@<i-~>iCx!_!Gh%#}Pcf6oxb4Q!$NGt`@fQ9Nv5=wJCImNTv&U(9-L^+s(
zj^N#4S+R5GOm??3!*a7{4rk6;+GY<`x%~&3w<rkL;g;lVNi>MY|CM#xxos4FcLCAL
zUMTQY{M#bvPP+1VExWApZ7;@~&cT3G2}t-&y~GZjqakMW^qo(CXW>ml{Tnp(9A-v=
zSTC+0#3a}{O<Ele88B`_H_<NEil`CoC6K9H(_6nERAR*$X|Q^p8O4EndhRO7Uhe9Y
z?YZZrrJXlK&dQZXVPi%9T<$e?-@$YAz5_StI{1-sMz%#yFg`w+L!VNX`IA8!dbK!v
z=_xZ~BwHy><FHfjzIVx|TKVdqv)V3T+~XV~!Q39aCCR0##)~;piT;xdWgc;ny6pKG
zD!hB9-{H%a4_;-N*W*x$f{>E+Na)t>4{J=s%y@hhkrN}Th5s8W2u5it0?@f%qQwq1
zwZ#sEtMVY1S5;$1nr-sjeFq|-yqyghE<M=F8m?6#R6ZqVFcQpAB!LEovY|0!4F5Fs
zqCE@>itW_o06(>8EiI{|sm9}wT@hCF?*W9zbEg|lsWi$uh1N8nn4IC+oR18DSV~rS
zpOctp_`Um@6caIr>bjqVH|~J0M(F!K1?CbzM@QVL@w(oLiw0Oa(80JXp$zshN(A!O
zzTwdxbZ6W4Fc01xk{i+EPaovmCD&Z<2YBag7CFW}g<+#5Bix}#`*lFs8#8NHd%lj&
zrKBMir_VJ!oj3MiZ+olNM+5SbTTj2deX{Ps*D1My8mw5jt@#X53cu5q7<&3TvZ55$
zLpakzJezDU`h8lKj{iQ*&w8u4LgY5anylcNq;-spcj)EyWBrYzy9N&;V${HI7(Lrw
zyV}Gt>hlgjX#!)9i4pY1&mJyIG=>MfKWF*9Py1y+KKcuZFReA2U3rmCsl0M4q;{K-
zhWz54`7f`rVBxJWQG6@KGwBgQFs_mKdPC)>`Vth<{Ux|wlhs7?EOQ1I@7!3kL~w6a
ziOl=Jyp!@>MkZI(olS1uZkvo7Lv<NGm<LE)Q{@|i`z`yFQgn~?AUxSOB2|bFs^$<*
zyd?6!fULUUV1_2w{|(5_s)+wH11C)>g%aEbWII>YsLGCr>qL|dMYEFYCmiEt3gHy7
z$jH|13Ic;as??S4YE;_JFh04|r-w*UzF9w*X)gyn=vYNzJsn2rP^vwdn=i18Oq38$
zUFPS7e1M!Y6TlFBx7lhgN?_Vu<$a>>mgA{Enqdioj(kk<nnKF+bloz$Bn#t%I>P18
zqNa-RH@Uf*_tf{28++|3-JX_8KKz=SsB20x>5f&Cxrk|!BVzcJIpwm<o|&c0X={uG
zQ(mW;-YqQtZC^UYD>R=r_b1X=UnElP!<c@jt{VX!o5zrb1bYx2(!L!Zxz?R3+{Yef
z)ZK&5KQKvS`+O)R8>GU}(Rhbc9C`1|$sp|W_n5zzZq+eZP%3FNl=Us0vPS&a1GrmJ
z;~%h6EFedlG7Uz;GNF2f#c=`JqF`ZIiq%j0C|Jy0JM1K3ytQd5t3(v)5=aET2dd29
zg$RZW=(KfcgR$Nf=AzUjSLDgBrea`bkK#q2Sw>OwR>CZ4%AduZ<;;gG!3AgIxXAH&
z`Ks=thP1f%_UENNBBPCH6>6Z(64k7Qc|7X_av)-yeZ>hWTBDZx`Dwy-1l{#uvlXV!
z6mMvbvXsn<c}whik{`=RuT3H3U<4QT)Otx94*5GiD);BYn%yP4;njiQ1H}z%H|r&y
zvLH5lrcj2#K_jc~d)_YbB5Q-@d=gHJhZc%}I~&6BqPh<}jNpO#D3Yr-i{b(0CY?$d
z5t=uybtvLO^5jRo4z>H2Bi|_FXY_t72NN3tM-s4`T*0(f^=ddmN{ZyL<E+MK(RA?9
zAlrnDHw0^3EFniVTcy!eZ!s4pVH`Kg`Ol-Qz`{+$6on2ycA_DC<~nd=+X?*TXYDr`
zUr(Na<)SE7`M}ZG0iB1;^5E0JBsLpmFUCzYnM#!1@A_eczC+#Zet(fM{b!?U+Xn&x
zT-7LXbZ{OvV%!v}89U%Y5Z*)Bo3srjGi(hPuu%EE8aHLkEnxi!Vd0NM=5kH6Ds`hb
za?P6^x|P53{FB+I>I8WB{?xOzK5IwK=9rm9Boy1vevrR@3X4Ou+KQ~rpvFh(a#Ob0
zBw2Fw7p!2|hQ<~--(yu`saad|D1qdosA?^Co|uGDSrUvJM_kCeG6EwxmPik9)y<n2
z^~)Cy^=nEimr@4)fn_<qUp&Y{r((YrdwKqL)%l$d({YM_9KZVc!4Q6}$0zwmYtLs7
z*M*0hx0CuNicjX<jPPlX=YRrs(5FDE!PT0ISZ@a$-1ACgTV7Z>Q!N5OgN|oDd@j*D
zZQ~b$AJ}poev-eU8!KsYIg|hp9U@dSDPY{*ZGg^ID}Hb$>vbUDv%EFp^FOi0+H&=p
z4-F-6elM0IQZBJHb6oqY-EPnDNz3BKB9ou?33cn^#u`>gm3`3fDWxOi{p+S=q39%^
zt{%%Au||14NC@>l75!{H^<qQHs~{x;RBbK6w56Rtbv}&LJ)cm};kJP09guZa@401G
z&?Bbs_Qn%mrh|X6)fTTlFYx{**F8%!7=C4vVgcOexI^S@q0ojupX)(fpFSz;)M$PD
z`bW`7*?N%DxL6IF@<uY|m!gg1_rjb%M?$YpdcVE>Ms@u=+F9tg0p$5v9(fOiZGY65
z%D>Ob-d1#dDc<X`HoW@{L&rLI!d$D3KU7~quOb!0{45HqJKkTiY2Jg-Pf=D4f4Wfz
z!JlL3fS37o;qXI1<sk<%J|y)Qyz=9*H`)06OJ4oo2=rg|M`>}}e@&ymfS^a5pQ)4+
zK;_%}j3TSPso#+fS0F>UxQevLOp^DhNtwZnp++VD?8(nYJZ*}VF<{s7;5eI<FyJh*
z1!2KFG*i;Rua9Z|iR77_0uAwlGDJY*F6V6%8*x~eUveFuniSfpM^RHr+|<-@;sjOY
z<OS&cIXxwe1rUik9w%)RcMHG|bglfIZk@HrGAwZ@xFzPSpPE!L%#l>5y7i<f_N<AZ
z+A)3dtWrPqG;rj)3<tHv(1v}%lQ%*<hB(@qU_X8HZkmVzQyHMSf8&M;@bv3JL(X|}
z`1B_Vq5-lT2a*l#KF~zRY%=8r_wW6BQdl})-?uzciaLb>S~D)r86Tj~c@4Q%T`mgZ
zt3s5MMw%~@uU$p;l-L)`*}SgdqHn|vpg8?APDed)7Kf!XI;C?v@72_x?<eni{+YfK
z$&e=k{#psTM?NfWcr)2dDn`L%Mq#Ll9XkX-@$9?%Wf-P=+DJu5#{O-t8Ih$!pUJ>9
zcBYod;50!*O$Mgv+58a0A#OflU?2>&-<fb@fA?fI*-Ugk7PbeR<RMNG;Nb<cS&1gY
ze1U~Xh{EA0F0Fxbj(Bty?r}z(<^&AXuo%?htbRn~fQ4JZfG|()=~C`*<EX}T5s`V)
z%nWXw&wTGW_|+~Ln8JCO;6J?m`90rpKA2>TMuM#8oNY5;*)21xsmZ%o&eDnbj(KSJ
zJbB`Ky5|?oQKB5*I7mNozucdPWka~dPKZkNg?u=-Mw>}LXTU;4F9*p46$kFd0z|{p
zX-P0b#p7936%08zj=kc4CjtU@Rdn&*UbB<)ggOh9nn=<^Y#uec{H0Mh|2ttC5izL+
zK>j?Oap<G6$-X;3-?ZSctysR3*mHMnpfQ#*@TC-ximAz1<n=a`Q6(&?k}X^r>KO}j
z4?wm~nic{ieC}@MdL?_$vM-p(*Mm@FgTeU-km$C|BnIk=0n=jaT^%M)sKCa!`9S9^
zR+w~;P=(;Mi!@e|BvbM4ce(!uk^({i8hOF`aKXTF<+5+LTC6J(@Yc~6bpWXX4!v4V
z=|SJd&)TRRKI*E%TrVJk+dx4F#h+A44Al3NxESSdma6O$f%EOVdnzh{syfsUPN)>c
z(2DY8|H-7E)d=u~K=fCDs#>P1QH#PiF-5}SSNWG(N~YqsI;k)R_wf+eQk=2Zm@e5z
zTOjfFsp|Iu1iNSnItKz54Ac|@)kS6?04mj)nvILDX@NR<i(19vx?`r0$v`z5Q@!&G
zDhE^bho*g`;z~dsQj%E1tVQ)ZW|@`_Dzbs~@U~Kr(cQV!z$t1yJ8|vdOx+D<y=O{h
zEE3Fgt-CRc+R5Ud^97ahltN-E8V0o*B*SKO?MkjV9g6m48U8^LGkEu<;efcdD+YQy
zqY=Jcg4Us+CW79iDA+d9FiPlo(wKb#SR_(&1w>fXn!pJzVR`SH&Xhq_OV-V1Hti|w
zGiHYPR8yUMONRa8+OZB$+9lBE?+p$}*#>UW787j8OPjZ56}W{Xm}tbGHY+1<4M8Lr
z1R;=fVqc+hQ8DLSU-;xPCbm2XSw{dxA<BzmT0ifAqIm6PFD!_}7X-gPFhjZ)lUD^U
ze`no?o;b$ss-z18ke)dA9-P{831oL0$R7oz-DXkt6Me?6CNvOBt^#twqW4XNtuZV9
zkKK*{s#|=#KkK4v_8(HHcpP~=SSxw(z{$uU8w&GuC#3S&kR-NTRyueLI$l<Y(VS{Q
zdaAg17SwzA=;Tpiea+CWrY1mZ3`7|N(RNT2DRu90c%-80BNXl<zYjU2y$i~b#*ZR^
z@Ej;<j)%dbNB_RoV29h2<vTswkD7-bIMcxmvI+7ZoBI4L%#cj>%Bt3XB5Z2mNBAU&
z;%>H~MbO=scgfg&DrtH2C81^S?5xVYY+z4WR037@C5IvR9UKTMlq6KHd^DsswTJa*
z#hxgFdD7#acF{_`UZE{{Gnm~GveEAP(aaURh+#!PGr>ITH=&S}@+g;LQdsc;zNz2N
zhPu#6X%6|luYzF&>pNQ20<WIgkWcWN1BazZcFB}GU7>2rQ3jS2nv#O^9vo~~$w%zr
zjQ$*s*Z;g6IgB(wEkap=!H};`K>J{GES9GQ0GjoVt#i`aA4gCgN85GY`aj#pC7tn}
zR0#&kam~BOZNRwb@p*MDoBuV{^I)<<OL&bXXM?4A+dv%Qcm8opxFjVU2})`PCCAsK
zC>}(!I3&NEN&4*)M|O6M+)kwdD%S6&{Jooc)fq|9$wiQ7K5Q9KZCTHXPH^VpmBWBU
z^FW2gY4ua|3P7NE9;hTd-DowF$vFDmZf3RDh51_6xf;wELvcSZTP=d5=&OOJRnC*V
zoY1wL7Yw<rPC$1|ZsOCJrSHImu3VjaxdjYS`QFj57|gA$@`KKN)R3Z?o%um)v4*(Y
zF%sAo)8CO-_-?K6J;SR7t5+*|uQX`$&AMJqgoE4e7RmGeM~LE?D~gP+NsQ1?)Li<N
z6_zj`OT3OHV=P{|mqnFd%(Pz2##q8(UBZ)JBCuW(?@)Zlx>PE^RCc{ok+Dq0x=cW(
zRAar&fU(@fy4)ha+-AL;p``4-b%k4gh39&O4`XG3jEl2%W$1e43&yHQ>#Eq0@~750
zJXlD|y-%X(biJx-qL$+(5J(xPxWsNwjfJ#yLvqjgRgpD`7%)~}pm&{aaGg%jAyF@{
zdgY)t9#^LbtS4iv&RQ3Jz0SYe%{~zl*<@Y&8`Nl{U8i^5_&z_%V7ETfs!>R$`D(k#
z&rnfyvNYGqToBu&2yKz)uV?EnyFDk#ZSP6LK)UE>csY!<cEP>!kq&y}bW2Tgs{+wa
zzZ$L#ZY9yS4rQSJHst3Jtht2cCziIe<c-)IT<K-R)2HpN<Q+Xxvk3**es8jr9)Uh&
zQ;u-w9VFD!p|)HXGqKYVAd4+4VAE&l9a`Xj9y+dDVBN_GQn>Zau}o4`-Hoz6l}<hE
zs5U!UebtRSv%lL?Rr^~}ov(vBf8qS)e{-J7LXB|Mh1%5Q%=XtkIOLzBf7cN0-w<^N
zBWi~M4O}dzY_XU%X!uFUa84}=##(<D*s_c<-G=&Zj1<gvQKZJkZV!8^!Nl&;u%mE|
z%3=vx5bZEBkFey&zxf}BZS)R~5A|SbM{@8!%w5k0dOzk)_!*8nmQNZLG_Y`tweA8d
z3fV(#gbdLT>usufmlv_NlOOpe)jHmN-0<h8MJ*S?EH_8|3K#-PpjEMXRfs81^wh*A
z(`+=maiJNZ-AFQK=1U<1k-SqqY9h<#p-L3QVW#He_3U4YNQP%4HnwxJ2@Chb2Fo1?
zY>~Al$e-GsrD8Ww(J@L(oavoM-6mfW8UHHambz1Zz05|gJcurTthubeJI6lw*!95*
zTYX16YV}v0K!%;%eAf!i-L3~tIHiu&o|5$sQ*=dd^EZGpLHca(H_hUD*WNIM?S-ui
zO)LX}1hApl7H0F#S8=`a!kyhvSNRY4Z$n#o-?o4}ABT3p3LC#l?AC?`ev%`}@+v;I
zi+%Yl&x5FfDxB=pmuxDfU(8-OON10FIw&_L)FavH*Rc%x%7(hToF{rL%YglOcH&&6
zgVF#XW|Qe98s4yTd)34x8qcIoq4^!hJP)VOW<Lmx=u==IKlzPfb#!(G9j*+JrS(x}
zveMxkA)yK~0ew5lN+bkM$rJz@)9}wWN{2!vpC0UdA{%7wE0!F?G4b!3Jny5ov`0=l
zrpmJ($2!LC<<e9Z&*vdeT7fL9MMrNP*@D@bezFQxJx9&&(4^SI$So%ift$&1wP*j0
z|7B<H?mH9PK`?uLuYCTs@$(6u@HO+K{ONf#vg{S5cFCP*>{P*V?2AQoyd`IJFHXcz
ztVp&)p<t)bM?ZA*SzAvJC+sI4D#N@`6#h;;u>Oc|f7x>G|LDQ&t3_N+1i-Kn(Zc^q
z=+>dLwB$%GIa+67{>T^4O6nCUMIey`Fz}y5XX&`oyR4Do+$w)Ge0ftHd2?vRRaFcO
zRU|}*B``Q7Gi59lS<TP$U{+PlTJ9jFxJ1)r^MVI4%zT}r{EXZZIz|!#*~|NHhPhr@
z*;W(}X4V_U@-Pf1Qcn#RIBwd0cxAX{|9bZRwnH%+y)^~(YUzN+^k5wAs~sj~BKpJy
zL!HD3`099C^i<*a3735`UXx-s8&y=a>{{kP!af(zWp!wpWq9Ov{PlQti8aR}_qGtU
zww79uL*#zzfW^<pf=SfVL=kBk(~;x4+2RcivnnJ+&k~@|64~F4vgoMqGgR3xh^RSc
z``qt;ApwH#sEy62gsPGEj;9q9bVaMrq$zQaY&B`Ay3Dn3m04E_FE$N_&8Hzb8OZh*
z(~OF@wbE5p7kzo6j_b|p?GG|dlQPH|S)&q64I{xz;i;GBwL4_n<cWQV;|0yAQjIjz
z_*uZ4$C@^x#vl9Qf4eG?R5?Diw{^i9iTLxqCJoo%957?ANLchGUTHS$4f&!hDY7#A
zpj$PW5zX%s<9yqajL)?~Ux|NStg(2xv$H30vZ_G7nD#JE?e*<Pk~8?;z+fK{l`=ft
zS<>Txkw?4J(9wpomzs~;&{t_F+-I9J>ZQ$@?6t3=xUHonT8Z3muQV?I`A{FMmy(jz
zC9OCj{VyTx-?ZhT)<|H`)a;fr>xm=<vEXs^AQ2@mc{n4a1rP@$C0C1ovhJr5!|)SO
zNr!l@SBifAdwTXGd8b)1lTTWbMG;hF7QG$Eb#auF;PQ330LatZiB1wDJ;y-U9u8w8
z$w`lONdW&22Q!r0k>DheaV&;kxJl##h;`Eq0FlVVVn7uxxHa-`JC1wt(uW<TiTgl4
zj&M~*ErJX@nfiFyOVGUZbd;H8uEpc+=*5U^+mO870wKn<;$qcdsr%3Ft4rAht)v%o
zTZQqSjS$1bRJDq<m#sLp2qhShnJ-d|KNsC}o;@TfPPw5g;AI3bLzp$M3duP)uPFRb
zL7FkIsuOtJ(!NIDbIoh_qjis_tI*uR8V)d)r}`IFnk!VXx{bRg%wg$DZ1iUjaz2>z
zm61>0Ju38|TSNlQHuAXz>N{><P58|RUPxnK1)vT%$cR39_*kNF(|?*>Fmp&v(;R{W
zy_q;p@cnu1+zJU*RuxWI!dX6`(NI4Y=VwAT4kxMU-Z491G#u<wnL<a9lMct}Q<OJL
ziqGNIsJ`ZVwPZ<5YE;WvGf~{=3POk{C!u*}vToQhBGZ8diHC+{e3C6L7N9HzK5C;M
zey}OS2zKuwmLO+UO>{Up#}wv3R^s~TN|Qd#6|@swfSlF{Gl--!CzzF#dZ?x;KiRA{
z4v@^1*cQszN*HR@Tv&`tMwq(BNoyZP1N(gCO5Um7XjbYt{IHAnYYAbHfRVDi%lj^<
zO6@`BxG1M?72UL{R<<Q|T;DGq@~z^VvMfWA*ryzZo;#P)6fgDk)z93BC~m&Le`fH;
z`N>ss7Xyx4@u#WdsKMWb<XE*(p4BfY`9E%^6crh>-7xQoc8K}XfJA8&jEvIZjy~0R
zW(L>TjN|%-;3Oo|Rg#F@-5?+8<u69x<|XArb#cDYJ*r)|^UaAUpWrm?HmXHEqMmOI
z#?4u1MGFA$ysCI1aee;~)G4(jG>CzjI$Y6@cRR%oKQJ}QLp&VsV`4q^cxV_7uUQ5O
zKG(uPTwX1lUC7WYxbQ<aV<!w<N8Z@hJ+RyuM0CXv*H0Mn^4YRe98(Zrp^seDe{&$g
z4`F3oB$7IzV=&6K0;;ofC<?yN$$BuF9EM>&i!1wl#sygq+a|gscGA*UkD~4zfR|!o
z7q<6$*#njRJXHp)%vXr~Ek}}QEuq2|=Y_*Y2sVPMe3<d42|pzfJ&ElC7~TO*LyPl|
zOmuLeVE#3T>fDAZJGu(KUK@8y@P{oiJ5rtB)v?X>V;9<XhSw4Gno)*BMCrE>VbwB@
zP78TytB2z8XL>!)GK6*^EBBvwPT9gtke7+dN}*8(ksf7PF_>6xmP&|Og)y6=)jInD
z$^fj{1l#L%xc5mJY-ibK;%;dzFU6;GmmbPGy&cEE(wXga5fHIxS}D83XW+n{S^0MA
zh+LCsCTpKEN7OMD&T9&Z>H{)JeQ@D2dlGL$+YW`<;BHe}-02x@1aw?P+6C3~{mt0&
z?TAm;fNokIV}vLy&f{Z+wOMV0AB?lJmetsI<zu;N$$ApE)a!h_RHMr_nfUbwC(Z1Z
zNx`z@Qo}VHp}d-L?WL3=O@2RDU(k*z4lFAcH4EWepQBAqi@qFqH)#c;86OarA_9{I
z#7<}l@3;2qJeW}TXU_jwl^GdypzMITCklJR`Au9^j^Vo$XpXy#c;|pg&KE>y$@eDp
zHv2KNsNrP%9te`a5lhM>>}PmUG(scKOf920VbQ%RmLHy$r`dmG#JrVAJ`Jq>ZE*Pf
z345okwh`tCqyiXAI-}R~OWfWH&XZ!gh=x4-8mic;nbY06`i<b#7o`*HpxRyuKna54
zeq&&2$O~yM*?NH}NNPPfy_tFR4_Q<58>13Ng$K{?Z1U0JBeOV(pRb_|^LBdQ-fmF#
zaXxmvnMh&f7%UO={dj4dd{Xjok|o9<C7{+Gm9(9EWk+mO0swDE1mpCAE`ncZ&_H_~
z%md?_Q+^EWy}Su7t)*(wo|cY4vHe15*$X&t@KbJp*2z=;CcR=h+5Xk=rT`o^fH20A
zg>n9Tn^^v?m`}`I;^l2<1Qu`?L(FKfCEZpgFH!T+X<a#j&L1VF7l1^5v8pr{uW=Nh
z=-{Q68`CN3cs|rvU<)ZZ)8wS@%wbPqF*;9DCaARGdm*bub4)n^G`YY)qd36h(m1e@
zgIc^s>4sF9*c08b$kr?yW}2z|Wpd#NB6nnFV9pc#hp*W|{2g*p!S6fWR%U)eI;P9q
ziOXYDh(zLk1^d!hsjRCSN-`Y(-BKIA+4@y+r@vng;`t7+u}&~1CVA{z9Qb>q0r9wj
z#@i<`wukfLxqHF^kze=pS{cpF)!6T6vJr_<d#q&Ag8N?I%e4vz9_n!+4lBmIW}mRL
z9rAv?6pBiEQbAAhLS=#nv{@JV`;djO6BjCb!br{ZxmCUsK7~CCU{wB0fR(xK<D`am
z;-)>%@2y7aSJ9OgAEOmyC^G&r5c(*Ug?sPrn6Y2+5XdY%zi&6P@ysu{zYsB|vqx}e
zdUVT?`y6NU$5_drfxFsnAWaLXc5_@~+S>O+1#cNNk3QDk&OL-o783Z*Y&}iCW;yK4
zayupRa?)72>QsI>!<%M6ki+N%MGw96SL>toAS)(mVE)0R0Q&R%`LznC;nVN0`(-v#
z2dlgE|B4s-M4x}`s~)}|JyZW$BW)%3<(O0}+hX3CQ5hDZ>riq*6MhpvBi4SOSBT~&
zkA(@5J~PYqelGfF{jgFv+pitgA0qbyM+z0<i)PP1Op9#0p$T5jt%CI<|43}7kg#YW
zw!aI4I1h|&HwhuC01|b8aUqktkk#Vb`=5V&#LMR-P$)s3Z~q97{6zwU)8ALSd>I<N
zrcp?`(ZvRm-1t=XF>7{&D8>OEf+SW*Cbq^;BZiT=i&&B(An7Tq$M!n;<(6`jSw#^0
zrBVctc7Ot802&2#reR9+!Vl}!Dwb$y2ud``q1kdff9fq34rV@gv2qkKo=n7i)5Jd9
zj3>^@4JI*AmLFA51Gwde|J4OIzD;U`?r6r*iEa*pkKx>XK;J(QfsiGp<Dp$4j8PQ&
zTcFit_2M{?J+BLJ^9&*_hzpoicTd~xd<#Ty?hGT*N^2<7Z6|9juv?)MpSP;m*6wG+
zU2d~Mq1*xWWCy=LP9IJRFJGxC+0CzZs!?YsL8{Cs+IE?w_sG#4Uo<(S%u7e3OUYB5
z$3Ho_AoiqVrnwrNDcno<F4Kc2@Fg_4OW$^i1?CIkCE<5YOJTbPfAumob@#~ud$d34
z8OQe=enn?9J1cdUHXm<8f}FkE_qvFj1)&`1h)DH{EDC-d{z+0QZ}?!4l_rIYQWd8H
z62Ox(%%eY4KRcq^lCrh5Igcp=-m1MxE~~lGx-^V@E+~I5C!X~bGi!S|d92BNsgiza
zOYk036N3!%gQXwrW`7(h(94D~dV8<~bJ~Mr2B<;FcA7hF(~>2}zjBTuS}(w=>uq@`
z4D|7TU@B;K4B>LS*oTIDnNlYuPHN)*Kj4Y^M-xYIXyl?_5s}QTfCM9401!(YF)oqc
zFcrSJLq3e>PH0AVJjEcUNI>HlgbNN52PiuzQT<wC6vDvtCk-SAkV`5RD#AeJFwjnr
zi$BI?HxdLRlnciA0xWpwkBsMLyni105V$1>x;ne!oR#Ts1y{&oEW*p|fj7kGhTFHM
z#7VTmSuzq{?-qK&?WT!?c%g-(Vkd&p{=${u>^)D9s2~?WU>^YC8)INRgct`9yQCAj
zrvhiW`KFG7*DIeMR)(}xhW>NIkn-NkjR@yIl0p<l=&J-MxCM6a#T)WG1d(0;HI6Ge
z3N)|$yn0Bn@A^@^jNG?s|Kyd%7Q(;99Sy3&BmlxQN);2L5?I|6A3J2k@I1??9QVT0
zdPdwgOMyN9H~TndBwo4NVG8gf`&h^HIJyNLL#mXdTp0)-D4cN@Gv#}^?Bdbj>PZ>*
zvc!EFxfwHvO6ho&pHcO~T-DXv)$RG=?i2=Y2`D$N=}ZqVLb+?qGcdY;ioJpQ27e;P
zRBNG%;(jbVkmPp@IUMSZu3Y9xIdKp9xtuRtLtY2Sw8l8iQx4T95{?6H8m7uUN<LJ5
zE{%z9ZmD_T7bDQ=RA%Hsun0nkq*ntg+TrsYqv|qskwkwOK%A;~kx8oJT97)D8uL+b
zaHNIc?nSh#;Bh)U^NTjFwznqDq!-=XG<|7{V_yXHrzj`YsSx>&g2f@k4tO)MAA7#~
zub+^nYQ=@$Qmc1Zxar$)?n$1#G0Bm71oj9zisRaSdci?bvd)SMHgvU2oRU(w*J9iW
zaoo}y52enc6G)jLf0&o#897K!kXThPM(<&Qp#ey)4n8{`C93>Ca24lquzd2zQ?Ofb
zD!cAcAz;!&h2M<C>)r|9bzLIpYXHTNs;%JL8s(JH6J(s{nztt{;v_8tp&<825XDz1
zL;5~MXlY-NsPCBf#A`+Sq+*@fO7p9BnHN0G%KDXK{3EYfZy`?G`pI3TdErM3`gN<;
zb>#NKrq}h7+x2fL!F{`Rd!(phegI+$&CmQO6@5BQ8sA+3=*h;HMVhhmZ3=BWJ^Vo0
zAekh%!P>wcRgHZMd<Sw;==DA+*|DZRIqegin5>&n@Sb+6FB=ym9<N28sm}S&+JxBu
z@GYv)N;y~8yA~E;Eo`6?w7Z+6MaufEz2lCD%NGZ0pt%BImo%QRngHUJHRr%(HCxO?
zzxMZ3*^B6Gv)$!yN;YWU=c6)ujh)!zc<695nvg}rin$5gBtT#y@;7A=`dS_IrIAfo
z1o{$4?6nAE&VeA#?A)86t&InKzDRZe*Z_>5Zz8xQPW#p1jiZEOPGsN7pt5Lij}PIC
zIwFDMy(tks-n*l?rlxc?l2!r`=1iRWoJrcR=C3aq6n{=$norCGqODv9HHi@3*#*0Z
zAa|k(4FOCh0Gd=~dc^@IlM!lSD5&i&6gNcIbB8Sv@~2OojqpOe^A(b=1$nLq-+s-0
z$Nx7fCV+vDL!*V$K$NSsh@&#x>mLQXg(%OH7M>R^#d8?mRDWu*3vki}@3*_WQoC%W
z%l!BQ?*0p&l{(nC66Bqz@M{9mTR_7FN7#umK4|%`P_k$1e;f9#?j!zprCP-l#l$rN
zc;2*#6H*e+dP@-c|HrzDYf7qohok}ERT%vAxzuYhnRouusR8#&*Ci^&<i=X%-hY=f
z5tIKYrf}5y-xbeQt0G<uP1uHRY>_9!w<)oSEAzA|-w{`lYEw}ZS2a;n(hyg(Xj8i{
zuI|>R?jx?@d8ztDTr;*!GgVwGr%mg%xOVHPMy0sUn>L;P+smFd-S?LQjcp<ZXrj!E
zc2_iAs(}I7Zt{)~O!u&b#h-{dh=^C%GY)M?2PEuVH<ps1kZU)z#K9Ux4H{!jLxHAL
zt7Z#g`d=;w|A>27-qs8KsLmoX-osiM1X+~kTeGzrgSo9OpvFAy?aLBoJwA2|Z7Nso
zXhb`VI*9!Zh|V#czh6nIp9T|*dtJ;3$;B<&qTx*d`)`c03>PQ5)2@{S>eM8@RhV1x
zRlg+$REQ($j5vKNDY?K-*@z!?yE7aQ+_Bm7cVklaBD?T>IiRuFp%A+(z9~6(Damov
z0W|D*@OlG+JIycd@W40xyczJWY!6r<gM^{+Bwwl--mn)w_Q?6^{_LmMn?^s5s|NwF
zfX0y^x2uP$KNod}LUJ(nXiVVZo4`8BT+N?WA!v9QV7FTe$p?7x`-*Dy$uk`lmmZ9w
z<rapc;VD%t=1MA0O**_b#xM4#d!&@7B^qQFY_kl2a~h+7E0N9-M7-BRtF4g2Q~$zK
zTf!`O;xITD;`|8+k3$n<ki4#v44Q=ak<K|&2b1X?8{a1$meBn;Tw-EW>Jjq!>zH(=
zoH^Al&v(~>(yeLzcwiRWP@u+i7NP%3uyJlEN$MMx^u|$eSQq<INAg~0iVtPT?8rj-
zFPEez92c~{ZGZsZ@-L6>#kzMQ<DcYQb;Y$kO?k<nky&&0sf&5_fOjf5u}`h&Ti0JS
z&aoDQJZ3E;EZdKXLv#X?y=1QXZrNE(Wn?$nHl!j|l{gH&6vsYabn}{C2A17jM-^UQ
zfUD%`P>6?RR8C}6#;`iv?lZRA=(EK2bnWIU)%JIjuLcyHlYpAg+#ESRsmjF6q?H<_
z1dfkM`lo~KWIeA_+0$e_BRfi32|8u(J^b}lU-zkJz%RK1S?{r)z{ZPiuyNnZr+f>)
zrN%lW6AD->@UlIP(XYf%dU>Zp$Vkhf-(X+}l1PRP9A?!wfa~uZw207mll4ss`6V2d
z$AkmcL&tnVQ#%<7M$9Kd<;-;HvdiS~eC*z)gW@HBh=<K_Y?0Gr+3)Zp(=P{X<R8D)
zacCk-hKdh?G;7#GzNwqbmCp784Zjn19+tuuf@q0B$Wd5Y{Jj@<C`7(J+-7ied*<x>
z*UJ6vn#C@NTArc}NYnGzs)z~VZtTSb1(A1X8nTT_#}(_LmD2w%3t;}uo3c1h*-Sn2
zE1X%fxM$TQpF8_@SL0KUl)~)G37`Prqt7t+&Rb37Et21Tu89V70D>GQKD=bubO!A^
zC+%P1$Nl61%Qgz6ZhhC%q(@TOAHnkL#Q&_K{*mALr+%UUJ8CMEe*g6a(ycQR;nR08
z_wQ_6VOFf4P!_Kw-2YWz=rb{J)kI&8BJ92g1cdJIHTh?^|If-;Q6d-r+A~Vv)q8PX
zyiW4pqe#D>Y%X7OR{a1kepKOi-0)uD0k9L2Hd&)oxkMU;h}$uVh|(nyHaU-0X5|qx
z5?WUiO-!|p>8(g!b`hhfR~PmuDMjgfv(3FMX(BA^dm|i01m}+8itNYb4|L0NG@%kT
zyBN_ZC836fu^HVlJ<SP}tUkYhU};kR+tO$vQw~)%KC2;p#x2u@hI$Dd)RYn{+rb08
z>+9N=QqY%-`HVStQy9NKqUEf5GuX<Qc%L&>Go8W1zvSf6*VCU*u1l!$2<aZ>!M`;N
zL$&cB#%6#DQ!<r)oaVTNa}3miKw;5Rq-1@_pGpo}bv_VDXhUx8)#K`-1ot5QMDKeg
zT$E0<mr|AMSEf3BAJHzK<c_wU%uqd13N9uY<+qn%QJzxXcWcKI#L(9JEsn=OI!TJ-
zyyxmPl4$*uop)f`JdqY|>J{LuJE~9NGjhY+*~I?7LZMQLMQn-JxNiNBal1z7vqhrL
zI|k`I|Ix|p%_OYZyN+=a&(*`F;D=Ml_9)dEdCfQaNLD@0#quU>gIfAvUZbl#K0^9r
zcU5Vws$pO~h@w1Lf~4;U3M}}d--(n|@OurS<b_^IZ)e7t=FmSz3yqddax`i0<3?}0
zJqd~y*JOyBcG*cf<D<mj_pKI>`9Jg1wWc1w;Wt+CPju?tnv{JH_?NF7*@+?-A?+Hu
zsABJh4aJ|e5cR-@!rvLz>_E5|TSfrHB;-5MzuJ_h<0zjtZwtllW_%i^{t^*2gfjLm
zj-zydLDW!AaCaq9cZBhXK1LipP7`kkjfX^TR+XlDt?BpcI6zbyh)G0>#Z-z^BQ!+=
z_vbXg84oKMAoIbI(HZ{*Zy|++04hrETx6F(;g=FsUF0@0nz~MGpBb-A<rhxC{BXeJ
z{axmI_V@B%iU**?v{-D_{)OYLYC-~HDK0=eZ95#{VmQEO#)ihWGvw!MMpK^#I>tbs
zpF8M(zby>qqt>@Xf%5&iBA~|zUnD}Gvpmz_MwloDMt_k|v1H*E*AA18O?#<dEIi$Y
zWK8-?YGe8R^K$yVFPYk#&~b??Adv%u;HqOHm(#K}`(S$^tqVOJ0mH8QEo$pwhl?~L
zsx5}dPfnuQIR-^mcmmtaq-GuujfmURPs*3tD<<MBfKK?VDgx_AW_ffjv6hnbZtSlR
zj?oN<+0MQUJpslAiM&4+O_|i&%;B^n&AUcAez#{>``dafyuQBvQ~Qjg-IasHk4@J1
z#fwrxJWQy^gKfYdmNr99O-q_VSSice7Kc8@!ruGktEX9w_fxE_T;K9`B@%ly?It%B
zHz;}3#KVHOBdp8@mI6Q20u_FxFnfLQ`5>|V?d^-Zp%-3r9lxD>Uwo2X86NWv3!IdY
zR8MLrk-$9yZ=bfD4ZVAKS9z-^jUCEi>b|4T;35Kyq2=W+8K#Q6B8s6j#T>?cT)}Mb
z#4Q-|hE!I)u@C-qRLTx*xl^SP0v+zRf23RwesS};@pb>-8@D|3i`BWUB`obVoDWM}
zIE1VK#NTUVZo=W5h65qj%_Q7MI&2h+Z50pFs)?J>(Rh|Ru~>;F2VcQSW}OfYFr`Cz
zl&AFAkL-PJzg2yzj-g5ZS;Ic(WO8{iULXTGPDOFpO`aM#2y-Qm4H&N>cp9$-&T#?p
zs?R~3!bgO;m5L>Q_$nx679ZZmVClS5<9bC<lsTFZQcxtRgl>BKvY~qMtGiFi91w`L
zU`{D*bS(G8>}0Mbn1|KFdV@oWLOntyx=e)~(ENd{-4Y_5pq}zDFoUI%=B3;z1wD2C
zI2-s^jNo8YqMh`<(5$8g86z-CX{r!1x;jYBFqvLc7f#6R`tB>m7%4SqW?Lq&#6U(w
z#U1xRh($d`lMxwzp$UYWNe?I;3v+}n?%AH=uLmol{1aVPxk6aEwFjOh+!f*d2q~ji
z^C$nFJ!X1{<S`rO7;WbJb~l3DQB+!cIh}MJF&{QVr1qFIAkVm~jQP%@UXXWV?s!rq
zXF*1?YsGAlQi+oI$ZWaa?(7qRK;*q13{kTj4nfSTM6B7ANZE`{BM>Rd!Ks!|=6`>E
zVpwM4aNU*FajByTc=)8_Tq}!Gsq!3CCC0;On%(DGDNR#jyjKjWN@#)_KFURt$c)*Y
z1!#rm4xoJa7XoIWR{1A`;ABJ7_|eNswN50#GprI>61pKs2AFH_P;c8;?71qiqiTsw
z3plGLK9aUAP-x1MKWz8T5mScyI#J?j=g(oK)p~;CIFMnmNxU;4PG}*9cD7_h#_SK2
z#GF%^A_*p$pSi(1g#?KY2(}ueIoqZBS`>?Pz=RFw3tTrUDpr?aom|Hh!J$ze7lUoT
zyQ}o%J>vkZ>`-mScn=?*NCKKj(~Q5HKAxT{+n=*xV|HX#uVeG$eV23l(e*)V@ll^2
zD|K4qzQA~#Mjq34aJ<YCWV}}5Bynogf?Yfa_;j&JEVR;Ju34!o5=wmUhNfvcD9x?B
zn%RStRAAK1I8-NeUAFTo`n5HVIR8ofY=k)pF+r1V$%Z9TzEjD+%#DKk^GGcw$A<mz
zVS-wy;J28ZA$l$fR!c!D)CAtLb?R>|XQ|<i30zW_+uY&dy_-bJ*YreuagQQ&t|OF3
zxh&LC?2u=hAel5kkE|_4t{!LP-K%VvZ3CFtnjFN~>wxg4ZH>opI`UA3zxVywiXGB*
z=SWA-Eog?9Sk$<zTPL<@o}E!F7Ji_y+MbG8A1_yxBLdugI+)%fR`kP5>5cFZ;EM$M
z$3?op$rL!YzTS|C?~5KpW0^LnSR$qIVijfG!7Sp-P8pXB2_<*NQFvPy`2UU3D%gVv
zBUjOk&PDOj0VHjYaUu6b93Bi+@-;t?z0?PIfqnPs*0~~>C*G0-l-hha;7TE^uzPeV
zS+L~O$zMh7FCywN*or@b{b)|botmYFioK;s=pE774*B?7=$B+p>pQ<k;sQ-80G@+E
zH~B%AmpjW}S(^q%fN`{*BU_6_(*DG@=g-)*cQb=kCrL2A_fj@@3FrriS<k))SUNnU
zcQy2X@hs}8*r*D_>ys&qsPo(GG25MB>w6w4E_s)-2z}fyIkx9}6l^;m)_K_$YjtB9
zq?kXEy%?H2w}WRozhZvq!^8i0>-%d(<gv<8G^i@&zKY8?*%x%<Sy?v9){YTW-0qfn
zbR51~4XE=0hu$ddRfSJNw>chXK2KgBahcPwi$tH*<9NfT3ZS^t%C?fVa*4CQLIgme
zx4|b|53hbWZD|#}$D7&Qb;r=j`9JRR4~HXt!}d2&+{N~~@fQyPpFe50^mhDBSAKTN
z5j7AHgTw5M&;H$t_9U64k_vEqz6ynJz(`@ago0QehRj(YE4`NW=|tH5q3dYle<e%@
zmSOuk3hiPbsxzoPvOmNF4nW*?&p=K%(BPBuE(b*hU&U+B#Kzpamts+56Mc-=Z*n3a
z^dfO2f}pc6{TDr;J!dqb>KjmC7m-*0RRQK&Opzoh?N@ETyrqIMT#3d7N6@S2l86q-
z?c=_uWS!7Mz(ELaLo*7pmkLB6E-NT)Be@F)7<;?9!~u}D=8E9H<DRZ)6)BZtiMU!O
zI!@&W#ftdvB9Q{UIF9iF$;@s!-|(7N8Iz_iQWr*^<H5(@Wnd<?U6wciGsV5Oe(+`g
zw)W8d;31wUS%O4WMcq!5mS_>v*lFaDgdso{(u))8)jLrY#YCTZ_ECOLX9yOiA@4f^
zs*zN~DaApirfTM#YX4-IG3aC~!3eWDRSwvY9W}oYTs_-Kt#wyfEe!fYB|;@BQiOis
zFRCSXRlvJOL1Ym%I7lvc_Ev(uN*)(wdoNu0H}7{)ETyp^DmR=wt<TOgqX?yO7%WX~
z*?OP1PoilImDxgbjF2@f`EHZszLy@OJthzdec~d-Vk}2_HXyvJp#X32D<o-_O_TD~
z#5-WdC03gzu;XHxBjLUG5Q}g4Il;1ZOrM>`sd>Xw$pypYK#6snNu1zhan6(^<*Vy)
z2H3=l6Us<V7)!`qmqbk%V=<2M9*1~Dwp^DcXGXzlWMS06<hquM`=qunSSV>Yr>?XD
zJyu|&F&GDEO2UXV0segfiM37au8$ibU^Rjfm77SWPwg~ug(IEXD87kWKt|n(1_}v0
zPasmNV=A`Q@%7YvURNKhl6c=;Cn8F<U_<BLu67V72nN$>W{zzM)aoAQ9k7Y)g7n^F
z7tNK4I2B-nV1XN-ri3*ovN-i(RLB<PB4*o&B<g5Uywe2n(^uLWjl+7YWnlcrFwh4G
z0U%sg%SL^0iX!V0GbIj@A5=8_0-Cs-q^z12+#YrH&CO!$yGKc!+?sB4-A1dFOHENJ
z?J*Y0KSc+Us+&z9L>CY=3+rwZ`j@>&ddQ6$#*yb{Q#eRg??+>p?<7P;cUS_xxWAl=
zC;EZt5ypf+&18od*8jDQ{`Y4vqd51cZaOg0kTcg%Grx?uo>0-quu63j*j~w3R?ok0
z_|N}+JZO?54glV(W^6LxIGc57HT*_xRF5<Y5o@4Ynqb<8f=PxiPX^jI=Q!RPyv!B3
zEM#F?f^a3N(!u5_vy{{8Gz8jp@^D5)V!Rhq{ise6dubgKrrVL!Jf6Wbk>6|-ByZSM
z+CCajF3c5+rHbu1n}^Gno53P+rs`Y|5Yj<vs9BTY6Qi?}2uT(b_8Jqg$YL+dgg_o7
zY8QF$2m5)iC~f)TXO0MOo7o|;j?wS82CV2((j0?4h@O7Q*iP|`vvVn=!Hg!~oTV`*
zF58MG**aRm+zbiT4By9?KG=jx{HW+in>$2EbDZfI=*nmGnjK-xCdIi=Tw;u*!{sM1
zB_iPe)Lu(~X<qpLEbV`2FMU(`btdfq#H$@c=b-s7#Q4pnc>s%ufBnkl|HR%W2XZQm
z?CW15Fha_-!HUL9D2QeeA{RrYR6s2uh*6y}ujRr+XJsFaFOW532%9kN^cErV7L~Iv
z1I_^Q>Cy3NmSD{lZbQqMXTa-|Wgn6iUTLZS$X?AXyP(1WElUQ=)fh86ALt5#d?luK
ztw4`8Ass`sijl3Nes_*ZkSC;`o}ZvER-3>iKLgTZ>FFin8Pb5XhCo`8a0A9w8;7;m
z2ie%HwUTzLLcR6!N9%WaiL2UItN*^2Sba}*tM=+Gg+i^y95r)ktV`;nQti?McrBCD
zfL?Nw74T@e%%1pqo9ZmG@(0!wzUx^7Hlo;#s<)P7nYRCjrL%sEf_dZhHcNL(EZyBo
zH%NE0qzH&egT&Gyv4jF5-3UmR0!vDXw3M)P$V&@|v4`(D=O36KX0DlQ<}=T8--SP|
za=s7-_GAUwO}PBT&#14+gr;?VS?kROmW8jXd|68UZ>j39?aNskT<?P2;sX3z0V?Ay
zkh&4Dqi%m-s+0c_G(WjguTI)3`29>aIc_YW-4M0NX|-jxn#;7pbM}2r&y3}*{alG%
zhx*EJx#h>U@zL)CGtaDU<?Mof_Uj1pZ|m9bQa{ogXMX*2WqZM)TqXfd_9fsi+2$_i
z=Z~Eqh*z8bme0xKLA|R$Q{d=j3nIFHnMAC@+k!wnyQlr;_}ALxCrH)AjaJurJF<=5
z)M%(XvWaumcbc6lxUU&ux<w=dY1o+PM8ZdrbjWBAGs&+qa7s%Ch*nB%W5ES7k6>Li
zV7EFN@zG8GYbZk_mw6Po6ij!1EB;m5@FpesTS9r`A|ak_oOG^}2M;hg1aORuq5#Jw
zq>ebir@7rpXwU$9OY&#m<F_|!gc^{nd3b=P7$@;)QRXb^v~8G?Q+R#C<X<8h!+N#r
z7<FdYmCw#=nJBIJ`-gvtuP2$@qI2>CV;+rYh&u^&XKq6eQ5FG^qPh^J<Sgdn9E{x2
zZHVWL-@!-k7`%}*+JhOlEA!bRYDLlwC$_k~cQqDwHRFqwxDvk>1EqR<`0W!JM79xc
zjoFk@M(f*5gsx8JGY)5Nj<6@10kMw@1tm3D778lASV9fsrR}eGEoAl-HPWB&IfvQD
zDM#SxqvF2!u#fJ#?Q88mvvf7HezN4AX!fs?HhCZCCY3yMwBPOGUUT3wb=zvQv_Jh_
zC7{<;S7>V;^WnETD5?-ox^_pgOYDt8MU;k)?4{U1$g9nr_i!VWMcQtgdnRGy(^b|F
zqUY#!?8l-?7}r0dAgSoG-luHtM?$r(DQ-Q)&F)o8Ppx2PPZbg~=HKh<J*ZfZ!9yHT
zVKP|F<E_X<GgRJ57LWM)p#G!$Vu<`v<_95P<;S0{{yF_465R}~cIrC$(V|KUPxMs8
z@JP^=HG6m(*m{cj06N@=Ml={PF~>qi063kOfDM=j;N?x<NN(BkiEDPG;dpd?Xp+Q>
zh0m+|gyM69>wFq|hDL94(Q6?-W`3l)F9M9~?0vRzZQ2nJ8oW+gQ-Cb~d$w@m<qi7u
zovZnqcl5Rbk3s7(Va+o(&y&y0-aGckKh{rH_YMdhfzy?r#SvmW)5iuso-Nsf&+NS~
z(@vb}PvO9CLQP=OV!)qD6ragygim2hAncUH2iS+kWAp(l`ao`yWLGmF&wcPBeb}{7
zx#BkP4?cu_K15%Ah&OylPJKvmK4hfl;G8qtG9Plqb9Tge9(EMq0AL7yLHGPr`t~^$
z={e}b3&tD`I<lxR!(&F=3&>}J|IY^2qCpt=ays~OJ@@5~^yNvvz`HM_koM)s@g=Fc
zU{kzUfWBb(d;!@9M8hr_4FEWDB+!x7Pf}QwLMh7Z3b1PLCtKwA@Ppr@K0i6qbA0zp
z>GVsvjT8AGzt>lnl(-8;MSnE|e{~0cjpzQFk^Wlg{@O+UMAH5`eg3*%{q;8d^-ui`
zaQD6b0RkQVM#2FmiUFnu0cH*X=FbBxZhVX*1FVVytUm<U^aa>{4Y0$zu-pi6zy%;l
z107icorJG-Pk(N-0}^MR)t2&ol?rrE4}4k_=<y-Yv&!G4Dw<SlZ1*RoKaE*MHi}${
z0E*`C8c3e&4GeGy3Va?E6d4p8dFFL9M#B>omW!2Kdf4h0MZp6UDs%4Fz6oXtjusA%
zQ4Egdz78Q}smCN=FW%sUf+yzKH)tttWBY<rz6Pgm1gBYC#RU;qCwnMJRE!8jduNqA
zJq~{D5c1}ENKRykuz_T2gE!^W4QVVS5PeJQ)SI0UQiKaBCJilN32n~|0pKy8ZbK74
zOqu0Iz4k>#pY<1Vht_@wecu;amvfz71Wmt#hAT>!W7NhFF*RR9TNGcm8oX?~xvDpS
z^6}%nGK%6i(DW)m-P4MyxPMn#z3e@G*@t_H$+>91!5@fud09<hH60QsHqk>G_Bk?a
zG(Bug@vMD+=#fMibt1mVObA#DNb})#j5K_PC45%+Z)wgi-`hz-d@vUZ>bV(4H9gcU
z9lr7*e6=sUq~i*wXEx#;sUCOmb$|BPjoc1<Q}CK%#EwD4ZeQSI+=l6>1MvDTpSG4k
zPjj&mMU+TLM^?A&5OIo&I3vZ`bzJ2XmgSn?9TpYR(?Oa(B)dKd+op~DRTO#m0jJIV
z^H%z~iYDrQBlrQL;~cdF7}7_}eaE~W7EM?C>(pC+SgH%0_%E~%+Ze1Xl>hahHS~-3
z$BnbjF#VlhC%2!{y~C#ep;W?RV&mcy5|ff&rKF~%qcbwIvS0fIhK9b$e^*dgR9sS8
zR$ftARb7*vn-^UBp|PpCrM0cSqqD2~qiJ3J%TN6SgG0k3pGU{WC;WTsC#Pp-=jIm{
zzb!30P35hu<2JCHTiZLkdpUg#`#+BVJ2^c&zi3>0dwFyF>+biTzyEZ8UZCC@ZYh`E
z>tYafYy+yaa8~0)w33E$(ko6x%F}~bReT}F{9u14Wngujwu%`2a(TH(G_0t2ZL1kQ
zE<z*fp=+E4pOBChKDqM0+-NL?A#}=vwW5-%454jJh66j<P{R`IXOxBoKnROz`56{K
z456e?QPS#fe?~y4FE^j~R7)kbRqJ@GU~2$EODJiYXlVp)po4PjSM$hKe#oK}>y+^Z
zb!o>lu*e^piREd#a^;9$W<Jgt+Y>Ay4q*0Wg}zGB<|;>zLz<jMw2Wzg-HYO!20awZ
zc|?_Q1dz?4)jFx^yPt;a%}=Fe6+U&oXf>(k=5AgTw8836od}j<RFg?<UM1cb{|mc2
zS?@0jIKS3<d8PGskn1^fU&iml^IZ#a6ut&su%o5Y0RBJuCM9B?6vQSR*zm+568Lui
zyPr;?AsD3nZh8@)-BLOhM49HJLOfeDv%sXP1sEja&K6-$&~20)2J<h9L|a?coPoS`
z(QljybPjk%@I`p~%c&=<N&s$Zi701k9X3&522w2v^4uyo1d^*QhmKBqCpWf?DpVhd
z&2t~gaHaJdk^DyK;SH?v@M1uMV%b_nR8bDZA-fbdY+6HwAG^jhN;LtCD)>V47$A-+
z)7XRe!TY~SD#bC(QK*vKMUkf!IST#G#0okYytQjk+454?>)Y)}K@2jQNNBp<<Gn2p
z`bR_0$lHZFHLv9XJb`&KP{`l~UqMx|H)mbLtjeorO=fjc74GJl=ldp-qlOHWq$6F`
z_1EeX|B<P1ah;ZE1jE@V#5;YA2t?-3l)VIc&)GzTJCW2NfmX6%qEh9VXnfT7x8-H(
z>s^pR9VFujSW+ey@|oF$b&m=)^D=J4+V|J+XsXU)RTfnh=z>CkQkjdLCn%$(VE@hX
z3%&w7*t>2R8dE#QJ4ev+0G){k_Tj%yi3J&~dc9y!rqphokwoZ077QJ}4B-aJHG%C5
z#t+aclaJBF$KJ39#TY^@ip};R>vv=~YXR&{f#d?6$e%s1gJ%>Q>hJ=AwS>7Zooi_i
zfaX@Zb>_YdG{>zNB0i-IZ;GJwuAm*&R+Kc=HJ2!OJ<`6*_0>}%FASc<bUUVtKo`Xh
z!oRIXfnrsa2M;ymcm^mn7%-;fpMI0bUG|vV%8}m)VcRG;C&|Ldm!C&&m5_-nEcd_#
zNQYfxBLtQ2U;-k_U%xy)4WFBT`89%KleEe9gfZe8^HX!Q2zXufi2e3?P~XQQ&?0v&
zYj!#TJP}Yr=JNr{6&pfXjM5(0tUiGnh6!)q6RNKijW`YQ3EvfiabNbkZj$&y`v{q#
z1{_g@nN_IFn9ZwygC#pn({N^gtVQ4j1}9?Z%k71=h&YI)((z8@|5N;L=?X+8;s_Ey
zBLierG=Jb|a)t4*Qmo}jai`71X}1`V%SaV+mM5gTJ!1P=+^NP(f=)J9Go|?mi<4eg
zCm76%W?7YiZ2#SlP=)U>cp}+If9hr!DJj9EN0rhfjlI-FILMo|Aef<{OtWrl>hQoZ
z12M7e{X0eqNGHP;Z&ZpFx*V31IGR0;@vE{0aU=l7S!FWeA~Ne##?qfz>l)xBx7+0Q
z+>QR2Q7E_1c9FXwn3gCGTsQ7UY>D8@`tJhHTxv_H#g2=npGUzk{gqN3hgkv5esFY%
zQpLDgly`R%Y@n4?fqmhFUm?neB6puiKqQZ}(H%0+ctFW@&)>S805kItL#)wyo-~d?
zUYRGvZjH179$ER*MtKBo0JY4Ati^Q<?oX&hzIc#8#mMN4iIGaJ9L4@+5Le2_k{(9E
z<A}<-(nIg&n(8ETe;$|}K;;Di6q1d|7vRw&w8mz8=}dyev})kZ$;G_8;u@eYhu^GM
z<_7+nR;siyyie9KGJh>u^VqC9M(pi$S~q2RMcI*)C1+ECaZ4R@TrIi4v;o5(KlqLW
z_rt1o1N%i3WH0QMEVUG*tox^|yfM8kWo@e&u6>~*EzXOW!;_C~&9nl%W%-2gb<~8{
z3;31E`*CElxrC!>8Kc?PClf0Q-QL;gCReXoNLS6-aUeG%rQlQE_n#W|HQFB2nR))w
zisL1|!QbFG2~g$Lhq|=FxMkiEO#Rd&|Acy#DyR~ehcc`8UAXs_oLY3*#8Sb%;Zn7;
zA&wJ#jw-bH=ey6H!ColAiVk#_z`)aCYizuNL@DjhXWozU7E-<2Ug?Pd?emLuIJ1NL
zpeMrQ?qtn8WR$&~vRt%DBf8Q=M8I)f6|BSsfCht&J^>TqbD;*=Olw<ya7Gi|NlncZ
zCV_;CfxEtcESX8;#vYyA-|X(;*a9dVsQf}SKAc_z5R?b^<&A<cqk;7P`rd940FZ!4
z3_a0ku~QyE`3c}7doX6C(g{d79UDzqCk$eLO+Xmo0l*6$eP|eXA!Y`nlQ^tRdTQ^N
zzbvsWvT_@3(r^KS+dR@rx0v<jQmOC^a}G9M9)I^{9L!NH!+!PaYZNo+-B*eIhb$#f
zF(pYNm&VsLohaxNYZTrT5peR)Ne%s3VS;-ZN~=Y7UX|`=g<k!ksc`awU053kp!dWI
zFMd(zpq&y{Pp-NzHX|>E`Vb`#bSzp1%nAkk-dWr6PY9WGRcNtY%IxQOC7xZ|Pzh@M
z1%ld+JY3mpuWd>#wwjP#YsUq)6?HIqrqQQhVT!ITihqxRuT#KYtQ`0c_pNy$(kVpJ
z*cxf#7=6wB={+f<0q4ILzAO*R-@ED)=Ptz(9{<4?KW!hzvyX{pVf?~abVa7Xe8HZw
z2H>oU{u*-PxTWrRq($dTZaNK;olt^tp_B>RZ}i9u;P-MzWr<WWmp}BYY(ZT)%e(P`
zZBGhDp_R%6ViCang;bBH4v*$cL<+mW>nCx)Uw;2qI0h*iUDlDt6#QNQ$(JRq#r1|5
zucvvPT2;d6Fs^!<VGjp|3*p#`Yy$Xl3F&4IjO#5BKOPGh@a}{Q?j?(dpKYw!{-?Yh
zRhH7>g=z<L?W>~+aoZhKf9P)df1T-yd_G$js9;4tnO~*<e8vSNAaaD1sCW^t%S8yq
z_hPuT`tDfYbTZ60hY!cS7~JCcBf+2yOA&6r$p`$aA9YpAQKrSvhI2J@3THw7;<@eO
z1@u+v@*ATF-K~cbkTp(*Ud^2Q7NT6nUM&_6%ZBB8%jLO2;SNpW_&gDSB~<V^%Jxbu
zFvE}3IEp+mN*@u~c@tKrX`~h?3|tESqN%l7h5TI=W;?I(?VE_Wi5H2HS1U!#J<wPK
z8MUVg)z6Jp9E^qeL}zxOmRh9<FQh`AkQw1YxoO#3UL#=#N~X;++Spi!rufD-_xEi8
zk!fkl#)u=_x7Ywns9A7a1f16THd1vuPV6i$SR5#Uh@a<#`X>hIPX{u#Cu9t8k|L=I
z4MBoRpx6sNf$1pQeeMp6uqwZV;L(UP&S+ms=K{DeL78J#H4h9HirP-9ha1PbCzfiw
zDyDnZeUJ<TP=A>P8J>r4cEp8m>12Wvpyr&_GMq1!lY<ixF;Y>Q(~jDhq#n4j3ENBh
zGwzhnkQzUbIEriU%18(O(o007XCFwJNyhE-Qh1u%@>ZwYB|sG;Y=oel06XIbm~5od
zRb3&xNMqUx$e8n!To=RRK~P9}{Ejr0$(AUMh#8fv*>+Tlt`hjyyZ{?o3c#Cy-HGVM
z&2wxoqMyqkPTe8rbm1CU5TYGIG$u!wo2lNI8D|0({FOPbnmWv_3xj4T&Ou&tqY)ZL
z#;Tw+-|)+}xP6MOdGV~X#7vn(=ZE-l^oLom=rRm28O%wJ8oxM=YMAZH(b~o72FvLL
zmJEz02Ga{Ky`&w?wIPbXB$Z{M4D=e3m^UdvJN-lS`UvQTjaKan#4H|9*yj3TEYp<N
z<2GCB`B*MfNZL>bKv*QOz%+wOTPyo%o|#XMXHt$&e-0PE^A29_mUM1hS7M<_USUqg
z^{8Xrp)|+SoT^JuONW_?60%&{GWThQDk^(9$DkeGK@6S$utusSPaB^SB!N2v-D|l!
z@g07<8di42JpvXC^A@P03PyhAb0~o#GeH~6QQ;w(|K%vy9{OvKX+Qp!FF371tnQj-
zm710S*%&HV`9;klLggD3#uHB+YYveZaHhrroAE@*Env+iIZrKkRnDwd)LdK>?XG1w
zKO{l$o&xZsO1QbxG(<pbzaS!KsTv}s&I3~U5)Op9rUq6{#pI=dmC_&I*mt<{jm7(A
z*6@t&hzd7m*OrxnK_$zk(#+Nnl3mDgQmFEgK8vLcL>8i1i=^8FioG?n<fRtbE7c~8
zvJDjO9idd_r9E;g)j*f4HlkF<`PA;pVPq8)TKuL*Ao0)&!G{)gxQoJ7lX!<@$kUbb
zKNURES#Q*RkT9jnSH3#Wv^icptTL#!a(Gi=*jR0zoHLwJ?c-R<@DPEAUt@I(B0a15
z`|G)$NJ-LRd4tsJo`5Rpw_#>FWgBr-2w6$!WyH1Udt*e+Z-~wt4?u1=DxV>n9a~du
zO;>9Dpj{__A)pQij5j*dbDD8iMS@P-^DDMQopc~y-#(u0uB%d&42Yo?%Bf#$s@Juu
z>bs>`33c0IsGlQ<d@=j}GrWwvvNje>w`g5tfC3a9Aa2J4t6CZ&W*a~&QCN3AacTsg
zxm7^YONTdUAD;k(r$t}@Iu$I44*;agZ>nhGEc*sg4x~55C6qX|l>B9IIx;RVaZ%Mp
z0TmM<0>4#FDj~=x5dORBf4&MAIxjo-fHau<<nAHK{mn<+jObCQYc6QNjT0cz67vv2
zli$QZXyD}m>X?V<zAwM?YceDRibgfhShqd*fRHq{$Ug!q{&;2?+M)-r|G5=<M3Y<s
z0soDDqjuJ;>C^V)sMVUV&F)bf(lZ_|)-Hx=QFzHOP#f>R3Q>O4df49-M$iFn?J)Z2
z<b2VgfiA&w>v&~a^Ky(X`f;b*%ZC-AozHVSwa>a-U$%FzbooSe<UNGQ!*%nF(tZq8
zTEynI>~=Wuw^lk)SKD-coamJCU=bpdjyC<&ssri6J?PFRcsuo@n~?6KDk^YfsJ#7^
z%IIny?OO-|x~G@6`6paWoI;Eb(NxL<WoGN}c;&GDs-A+dIcK%GhDTRQ47`(1KWkH+
zXViBy(R=-)ci5z8`oV{rmd>6B9e$qBgHFhzdr{S3AAsl~=!Yv`BWFiW<ISioQGT%t
z;t_u)GnI|ZSQ6y(6R5JAbH~GG2eSc=HFf?i51zLWnhAPJfn4oI(1UBlPELE}doo#1
zz;YHd-C6{{ZkX$mI|rak3pGe9nZ?eCRu?hT#|)(=WEyx$Y9NM<lM%`S#qpjk@?nr+
zPbKx5p+TULh1j5`(lFd@SU<WpWTD#DHsurUZdgtinqxH7DwgfwI}Djsml9~Mc!Biz
z)HOwDXZK0F^hb5j8YIa}SFyRfWQ@*>C=z^;A$}&HO%8m=2xQKbHBzd5k~_?xJ9Ml5
zSydMjBKJw75%fs|+VJj^+SzEp+NY1!V-M>Zu^D5p7sd*0>1?PbxIXnf{xdGN_c=ZI
zp}?v%TnQWtNs2H5xqCq-bmgbKAUs5BZ+^SO48M^0f64EdczgWC0XVg@Hu-EG(>Yl|
zcR2XVe}wtWS`$gjv^w<jkKR7flvU6@P=+FBhFdiS^z9=?=%SJF_Or^ghssc+!jaNt
zm;KoMG^}QTh*;!t7aQgrFs&hfZ*2UDn;&5L8#dPsxS;^y!%828y^(p$BUId<^MapH
zgjpmoF?PIB2mC)qd0hfP-g%ZQdbV+bGd5<%R>DCp9HO8HQTl?yiq2cBR#&Xd{`cfF
z-xoRgxuOI<(XcQGdGXtr*Ew3~`3>40m1mNw-~~SRg<2wk@`-ePvN<vBIfd>8jpAts
za^uHiqU=n$R6YL4zhUnljro);D))>M<BjMmEfLX;C60H)5Q|oHQGFxotxmc6h;g{e
z{2xwTpTF51rAxwgT4G=7xP$ynkSj)jm3!d86yfq?d8J^p_%}U}YNp4e&(bx+A#H-~
zl7ezWVDRbvNr{!8_JY{y31e`?ZiA`1lHv6P55&e&Ehp*~oAfwl1ViTRs{0GRb7z7W
zw^ok-3>MVKclfTE0hl$iJ`smOmIJ;I=qYe0$=Ed8@ou&w7{uu6W;n(j80BEiF;3jY
zkLX1>%>OUJydw)Jj$wT^0;EHbTj_@V;G`u-55&kh5dXu{MPM12!$r_QG9*wK>l-+y
z{yQ1MorV^eZW$<`ho1$|ivaha&z|-47JXA@Dg%%rXfaN++(;lP68Neg%Sf{6JLv4Y
z36!Hjz<v%MRf-8W%!&O2J$QzN>$?#Owf&D?Zs@l5cLz?fE2^-a9f-v*+|}>iwfh$U
zkOV$J8OUFoGUJN3<@6U4A8aOPy3mvD2m`>es^4fO!D1K?9|pvQj_R`<p9gQ7*zdZf
z?LJ~n^Elak_HU1kY+tr_J1nl<><dJJWJl#>f!=%P`Fn_Y#Gcv-wp@sof67n{O`n@@
zz#CB=_1`C7{r!Aqc5jk>t+=JMcZUJq6KR5bsZ(4iax5E3SId_kt##4I-qs%@4uvJb
zSyOweXNSrPJGao|uC)J3dMUdG4W|@<Z$@Qld`|Z5zsB9G^wwMSeSW;{T}c&Oa_B#B
zS=YvLJ`pZHw*RYhoObd;#Yo959poT~D?Ayq08=;gWYJ-Ll{fZ($VTfQ#HSs67CKo~
z-@I<}MBvhZz8|S+ac7Y!$G;UW=$>D&ImBG+??O`MvCyNHbp=X?gM@#Oz$lRXZ_}Z*
z;2T{zRtMX0aj<|Akkkh#=JW2Sp3JNB8Syikd&;>D6x=Y^=y|q5X=BNS(1$mgimPjR
zjqvd`o~6j1X<;)>$bQ6_r8yQ|Bm2&_;HK&c><izj!*ggQ4R7R(EIE~ANT<yOl=4DM
zw;hjPQf6BTAb?_M18||99WAd%-&s?&-ir&wZ>DE<^EY)DH)T6Ywzy3xzr(*&W||^5
z;n<t|MJ?!~<p$j4IWT;oD4BP@O*E(qB9XDn2IN(MT7d@+SxKx)pr_v~1EX#<QNLDk
z{&(*T^z3lID9P>``t&CSekXlBY<o^G=E`?;@iU6``cwMd_~|dNzQ2&to3QXrH?2Rd
z5u+(lfZ4u`Y2lpSDabLYS&Q)T6|+WV->=8t3|{6yCP*N#&1sPuri`{R^y|8cc<vcU
zpo@HB9&K|Q6`Q`+8#OKlkFNF7%Y!eCo?KgUggJAENYUj#h75lM0G<$_O&yKBVWL27
zA=MetI)d$Red#0@&i_<{EuY})aiXm~pFzUIb0HTGcQH0Iqa-S8Efp;tQ;*4bOFPGX
z9d;IDwDCQh&*6|E-58PdCZ@tB?@0nPiKit6t$Nx1eNYhZ@!T)y<&y$C#l{30+&_KS
z*Y!1V%z;I;SalDw+!#^tL<)z9PHet&Ig4BZX~->FCZjZ6mavh`M2nlfFrHL7eln=G
z3{5G1@%o;!2FlhFY~n56c~Pc?76WUj09b+A84*0DcUn)B_1H*L2wsTzyOx)7WHDGW
zP*mxGb(4-$k`sm>va-9tqmquEa+bfYT#rT1)#?{2M0%TPdvbkhl6v1>(Y@%ltVI%f
zL@mettgyrXVr!W`*k@ZON%?LVyws#x_l94(aJBshV<Y3U6Bj}TLFd__J8${6VErd-
zMS{<{YzD#5RVoeVEWz04Hju7>^-65X$nInnn|WREyO2vXcY$V(!uNM*9F<V@lW)D@
z`k)m*(^jlPVOYrJ{!EocUt##~t95x4?P;Nc-0ek`aB))+?&MDM*Y?-W<4hCpQruAt
zNk0@?rUIe$fG79kcMyW1q++)iDE(3C^dPA+k<k#jwtx`_q3AqXmGZl)=pgYU7bA@f
z0*UET`kHM7C8MIQ5`;z{jrz=Ll!t;)nez05v58)@W85Vv#yS@%YR1}JRVfYQ966I>
z;|#=C#*?CB0&|n%GrA^UB$vJB^sX?bCtqX_>*l5&olly4mH&0@H!72JX)>*hFE~G~
zO0H)*qkag^X47CzHJ#Pwt)HKLEXp)90~Y^pe$GId*lgZNd%+K9lJxdnF$6b1fsuG&
zAD|U`%NT=*rBWjkdkEDzXp5y2&!>JsqT{2xWR*BP0$R}UZ_9Kx(tg9__SN+Df`HRA
z&t+Wkvos5bC?+Qxw({ZaRr|q$G8?t8e*@A2=j8qDz+S^<7Nq;bWwzH;hW#6nc)DNj
zD_E?t8<92C=kpJUm9SuH<1<9wF+v1b#L5@Q8fWOnda`oKQN6jvs=`dqOdB{q5zSyq
z<`}2<&IB7v8Mt{XlieiCS~ucTsJ?Ht&J#GA$$v=yy2uEBML+#Nie=G?AL7=DgvQ8z
zJ2@^bR;0CCgDgdL+0yb_gQJ4FN8nhymD}5iKzKB%F^@8i7~Q=7Ftht~aizA!!uywN
z{ykwat{*?0_H_%payJFsKSQQGSx-TonM$KN3=$`{9!%1Y&$4#*=|7q+76AjqpIGue
zbIb+#0Nl>;f$VE!F{KXO!KEyW^e{@q<IJUm!TPp1i45y_m%YZW+}lNotd9NFW74h@
z#Skl{6uY`<R7k=O_(1eRj*9m9<--APuDGrzVZ8?j{j{rfm#cH@qQ4$BY&wJIzY+bb
z4w5K=QK?PeN0#@81csTs^NGUMYf{f=uZC_(USnW^r&Ro&%J_((C^S_g3~w?SNDWrW
z*LoJZ@UhU}^ej5BemZ6V$?|LM8<95}3l;DDCJ=}Vf^1m1F|UFP&pebqv6lP9iF-N@
zs>!^XQFnp~9hec+o~6OMh13Ws2MBG+h#`$gg|l4cpNz90$~vzET}+xbAewmFZ0nU5
z#M$kS5`S9QlUQM*vGKHnVQIGMsJtiyIUT&`-SG6|7ZUkQKy598wsV;j|4{~QmCpk7
z{}Goc6_IKA#Ioy<F-QGjf@(*Ns=T<!A~gaKsgTG2CT7iIBGTp`gigqXA)OLjV)@(V
zqQ&^)-?ZF1FY!eI=+}Ti!GkS<A+3?ot47HuLk<ja#gBVNDIPo?8YCJ&=<^XB(l-AC
zAdZjD2+{*s!q295sZgAu$Fl%&%g^HqZl7=uA~xR<Xgx7M3i-;q;{ps}RKa&caiYYu
zxiV0whLksykV(o1&l8hD9O!JQE>dXkxIjKibvz!(?f6OAeVj^ZN*3`S@Sj{Y*%Zwz
zT}JD>>o9k<%QI-a6BtO2K<Xpz_#nC{5ZcmR52lll#ek?_({oX<_W1f4<4;0Ra45iK
zJrkC;C#^Ed>y(oG_0`d(ooMDhZ}eSU{1=y!L`M&E+giH3WJu`){89bIhY2MNdgSW9
z+(JyHGw~Gx<&XFezuz4gWk+At{iae;JkM-++Z|B%;+duMgOTas5s79mK>-%tY70}I
zA<~SGt9H`(EB_^3vrTdg*aqzwmKfqpMdf}Ty0QboAA*Nk>3$!`SR8$$GXs3!|7hWz
zYf2hCx}B-wQ`LDa4Own?1(lnzNep|ei9N(TRVZgmtUHLNe5V5ZSEfvCYe-Ad7zK^D
z;$~{N{JK{&6Tv0|Csq-)=gzi(U+96t&$(mpl&WE3)u<4b!B<+k&)Z?{c*Ob`8vL^$
z7|p>lUb1-fsT3VE<-Jwd;|xd|T+BhX1PgxD3UJoVWw@q}A$?W}$|eIA2Rb&!h|kzr
zpk%zrmQ;w5hHE*WmfXeuc?WxjZ8L%?@KKi{6es}*Tv%y9vRFip%n&4+J(T-bWq?F*
znt=ONF|`M!2suqyEbM0KBThmJKOt65dj045sHRpk@Xgu|x3lVyc%gFA*yC8f)3TsF
zp38hauQ*vonSPbC+?RGU@}MVWFb<K?5u({)seJlW%|@$t+(bGh5i(;DK39|iWKT2C
zZ%LvozYvOv;CKIg@kMGbFEw3c$9Rf$Qa@gFM8=M`;J+LAzi@cTGQ}?Me%VYqiR2mV
z{HYfEZ$jgC6-|+6o*lak!>ENTfyydno-*qN5?*BO`5n|d;df(O{m<M}q$81M?x0$=
zcoKbyYfvEl0||7Q$)ui#;@8_RAM`KD5>+9m?l$9o2bYYokM~!sKj*cvNB7iU{O7Hh
zBZ%XHNd2<3^_F_-2(QMSaHIa*hvo<oN;`UdF7yJc5<DAU7(`rr9#2ShioaiWpI?fI
zW=TKX4Oo^PZwUo4bYeh+#Yz-L43;z0+!Qz@!3!Nk6y80PldsWZfdz#!{E8(Zi(i5;
z%Ee5FAa^j%K*GKFXap|;#P<(QXugAr4Bp(A|8On14+9(7+d-{1Lb)u-E;8^m4%8f!
z*fI2!b)MlcTWNMqHGSVKqMn09+$fmCQ2SxEeCadVkC|41y^S9mpkmc>L@s1$|I5tx
zZBTf1`oc%cCgb#gw7I8Ew|$DtWHCjbHU*1PCvP$?y@DPc^eKb}V+tsIi!{HR_1-NS
zV1G7AD`9c0r@!B$3ikODy60<{Uv3elRmptVCG#;j7D&5+5(LN4CZGPAAjQp=;C&=i
zNKd_G*&zM#LHYN_R{)jL4Z|tPSt1zr#6=5p#MLlx2fvgcMf04VAra>yKkVSs=dnoK
z#fP)xlY`NEir(i(wcc=@(<|fWWPeBjuZwY1sQapTW_>isgly{A;Mdjj|8|})o=kBG
z6~hV%NNEfyRL-d48-c`FxGK6+r16x_06f+}V2wTAi~m*bbQ0`*9jxv$KZbSx3^m2L
z<ci$9^SQY<X@weGoIL@>e8uE?!+YzniC8RiT7jGDXD+~=lg}RZjBt>QBl`?hR|9ds
z@8EPpL9$E9&wd0o{7|JCneXN58YgCX`2M~ehVpnCo(2Fj*TC8z!&6WciryrAFUmtl
zNo`dqdEh|Cni}gDWaC;O4i^Xvj@<%WiS@%}n&7&{wBavOj!;%R%BylDDbrO{+=(PE
zSV~s|6~ic+!6=y%Eb&7X=4e);c?|q|3Q#;lQ)NW)p|rd41-vz5F<Xe)LunNuK<kO5
zHHwm%2Y?v9K#CCjYTU(j9#nl;>W?$i-Wl-sMvO138T*eJC-j(bFNoJ(NLJ%TX&JGU
z)i4tiB4&)JG)G9Cj8qb1=v8N^`$y3`q6#}rFXLwzf21?fW+q6$Ir^MAx|(n_f6qxq
z_@OQ+$Ut$*1sNgQhel!opfa)m6Ju4LiMpEsl#_3?K4VP!!pViD4R0b7p_r6tPS_zQ
zw=(9y-{f;OAj6V7@6EuBnvt^^cw=H>NCb6ACd|JXeySmu)TruvA($}g@U|HGZ<ilA
z%M)kZ_O_OFjQsDJ5kRqlw}65UdPydZiOfBBIJyvW5M#h)Fz{2PHlMQ)*Yx%plWd|3
zY)?q|l_^&<Xx^njDCQ_H#|49$4`&ZJ_C^pVKg2iCTFgyeav0yxEeOpFz#ge-Ys@qC
zgRPSX;*N!qB+5ka59&WY49yz#c{04F2kC#|S2_pFiiY-X68<B{4IDXzx(|a=4j-lB
zv)ocpyCa$2DnVSFWnYs0^*}JFA$#2VAGU0<yznClq)d(Nr`o!F_#j@v?^2<NS5eQG
zW}Nb>-6T`rk>G`<A~BXsDh4tXPfbXa*^sU%e?oGU1qVnFL0S<Xz5od3VWd~<`kQid
z;*E?{VgItEf5Qhd2V`#WWs?Azf3SVJ#1w}JHSLk8);UJ9D^`M54LoHsT|EWo)*qd$
z+=(%D_9%1XORCTdZoMYev6-k8sz?9vsL5u-jgiBjDCGtzuQFAXyXL84uQXbkVP5`}
zx~aMe2<TOd=4FN&lZs}7SPPM{uYEDJ`z+>Nw%}#4b{rD7MQ~v7BN{@s5NQlBB5zXJ
z7jIk1;tzHdLiiV@J%;yE>BjUs9!1L#L>W=PHu^fP@^?-_v=vtE4=F@|{o`Q_X5w)u
z5|e%s&L^7<Y%&QgLNW_9id0EN3oOa1Q1e*08x~^R0FuL!0pF9$4<&PG(;~`Q6a?_6
zo4J2H%h4a>BpLy2h(7E))~`<udw0ptM$L>w(H~-M9TQXC_#ZjXZ6CB!jQIKKW1xno
zHb01hy*>yCqeTu5padyND?dppf70nX*%AW=8#j$N(a22<CzT7FYEktZ13vm`|I%^H
zNy7e6iKia#t+_CTdAxbIFUfoW37wQV(;H$04bG7}Q1jzwr~lfh#jfolO?gt39sE>V
zRA@*EuIcZ7R<i*!d(GhbZ)V;A^i-AIL<5zQl$@KgocXVvo(7U-zR{CrbtT5Ke1qHf
zZ9$n4Uh+Tx1REcgQ=x5X%wiThVSySo*Ar}SZ1aY*+NE4IK9e@Q(VCNZp3v&Oz?oXy
zu2}JgB)8q;+qKW8GO)3_OatIG{Dy2)ih@Dfiv{V`_r_Q7+jrf^o;S_5!fa1$kPf1+
z({#)^vd#Qv68tO{@vQ?%>=$`Fd7yuaX^{b*vRUSFPMgg?8%<F*hgkojnHT)DzVGpa
zeZ1I3ruer5wp}O#4R@jI?yh%0BG%&2`VJgNiqhu>vxldyGe=b%$x<(YKQgzjom-%!
zA^<o$YdF2m0iR<o5s9|qz;=0ciChqzvG__312Wc!1&#slSM}blF(hp}GeMPtMPY+T
zPEq%RhKiSl>7ihaj!_S2Don9athdO0WOM;d<j<T)ZcL=|^9WZeYTYb&-I(4XmIaAO
zK0t-P7IpnM6U8DEO}-ez`v!ht0lV&q4CnSaykP}cqVR(^Epw^FEMuBF+Sh{IdlvXz
zZh8JGJ*{Aijk=9_ETi$`hAQ+nL34@nto^y(muRy<!!k<N6he~wj_Jw8D307{(r+n$
zuaoaB5ZZK+WY;WH79f7sxMfNlaK!Q{9=#_Nh|Up0#NNjC(7hVWb?E=eWs7*lJRn(6
zocbXt^;<46Ss+mYD(#UpUou_rK!2R$65nxi>oi{WgW#m+xiLvf3FKwn$c1h1puA*4
zjZ0Bv+1Q<ae`XdS%O=+~1tFbvqnBQzllNMsj)#a!CG;FmL0!rq^0H{hva3DAy~oLw
zCoz9a^BJdk2J>i6T-3Y2qITv;@?GVKt|itzGdMtpHO-1Kc`=_jcsd&e@x7#)wek}+
zeOqPvHB*-2j-Cm(9D<R3oB7KN$1A*g-@DcR>eWb|ZnSb%?&H@(-~lMnd2#W?f5nvC
zB@g^dn0N}4s7v)MOE))h#O?IzH_IFV>v+Hu?Gn1Mp6D``%=;-UPe2xiXKJ!DJP5Y#
zu6vUr-Cs6%PBQNYi-m*Our=(MEo&Z~P0RAs8i9<^g3aZUtf0q(c|EhPnVRFe@0ZYo
zR?nfzbwFPIm{6MdyAswA;?MvR^J3U{SZ&!`vc}IfCDyee;17Qp0uHSURO#J&CB3C4
zixN?3@>cNXw+hY=3F<<NHG{aslG43@u`;Z_)muzESSkkCe0W7mv5wRXV}Od}h2Vxl
z1WWmz*RZgObk}C*JQz`=Xz*9f?D2Y=9=r@E5Fk?71WNc6NjbazBP30EK>7!hLyO>6
zDNZnbUC?AwvHKGjVRV$cjtQaxuz2NlIA%p70Z<o=3nY)E(1y75L8@%LAnIj%zK77%
zOZaR){F_a)V2yj^ikmIqBdK==XZNQH@y^4u(tA=pK(g!0gKqYgXG<Tw!fak8CHEP1
z7nCG_bp6?Xh{7DMGWYyu&9l)iqw7k`PYwvBy#7cMm{igc+}*S}q^_JY!B9_(=pB=!
zwEUp+abLUdH)ri#?~})6?(ZIWS`N(cbS6B?R9ItyGLAf615I^5mw!FO^=>#kX_Q<#
z^ZT-SAIdC{0`vZnU7#`07@-jz);rV5)&5c;{4?e+K2QrKn4+{g={UJxJW2bh_tjbt
z`8M>7ACM!2YYE}WsmV-RW1RXd#^1?kh?C+rHA~yG>YOpl`<T?0GiAvNATEviAF^JA
z4eW-{U`Pjx04(<IcRq=YkuVqm0NdwUx6->xhtEIZpLb<SMJg=_VxeIj%D;K!`1-$<
z<U()1fnAi`W1oKFR)TnFb^p%lW+$(9R|Ur3U<-dk-mQTGf%DD<^H7o9#6hsJH#=go
zn|;<TO&**XzMO}gd-QjXl;(fD`f7cc@8EpC4h(I#oM1C28-BEAm%eGYes0%)kE;)6
zeP2EaE-#R|`&fTS?&Bi_W=4E-L<vfS0o{~fmP$}d41|Va=@PIpW48fJ|Nb|eOP>vg
z-7mlrM-UvbZPMB&n15PsDp~m;zv^f=-_@h+a7U!KKG$Zq|1C-;_WMBcca|U<xKiOz
zsx=uhVkJlmMDP#$W1uhY;Yvwwb^YzyTzIF&h^1f8en8keffT8M0+-75-7+N1Gy+>c
zzWOBs)T*`f@gGTH;bu5Dkv9{_H~d>k%Ry34C|ksqL-AJIdY$v9=SfG@@Qt%)A{8I(
zH(PpFCz#iE|NY00J1+5nnPNb48<#Vm*ZbrKi7&K2EASr_?!<`p*N1Pt_{S#}vHeJa
zlV2J1|9JS8QOZV9Kg>4ve={9y$gf*Oz|D~a0!niomvJ>;!3fB7!s8&5aNL58oq)IE
zO;FL5<bPM-ki_}<PN@-)7-|BE%y;r@E3mL-jDqPFzac9g^YL;?OLb){mYkZ|P2Qwq
z>!{rKY2Rako05Yw-18PZRJNYNLO31JP8nt`hQygGoHlELJ?ex4+Wf4^>E@Yj!6k`B
zE2W9m;X`-2dYkI+I2IbUMiZ%Al{njUgPAx5>2=}8QpSSw?+&aSUF+L=hRIn|raAgu
zs0tEwvxyagUxbE}#IL+AtQ2eNZpN4!EtW4q+o_ouCKpn-T*urvsrUsc+ZqpeThX!T
z?CN<$%pv`BcmMadi^a7U?SCn(j7ZXTC>h3QmL=0oI0?ias+78D;o3YywJL0Kc4zL1
zxRb@KTO}ip?qkTre6zBd82%kO5QPhAUQ}@O9_Peo0aC?Kw)F6wgC^%H-}aGColQ-m
zB3{8HU4nM<T)DvdHEMi@NeWr1wkdk})8oP@E`!qBKTn4i@+8zs@r|46%5()J#v&ws
z%m6I4=Cco-myM4QxtXyfJ^b0ciV7-vGBzKpG|Z6&FxnGMOMdcv!=$t2yx|SD%H{Te
z-x|%kG0(M)4Sye6nwr`k`I|kvNls4i7l6}5VF#Y2QrNqvAZ;O(4t%7>@BFc=EsfJ>
zkW1S-Gd1E5Fe*$g@G-WABC|zTtl{OOo0HJsText<r*r{A9A9X+g6F%y5jaBTW{R|@
zN<fccZsR|7(D>iKpLx+s-bZ5{cBpgLb9>Nb$TxE6ag%28a|()0rI%{9?idi2)JRF(
zcP2|@{OJoG7-2rWNHh`MU+$6k%aB}F)EV_?dNh%grBj3&q?0L9GTxFsQ6ltaONK;%
zr##atY^fl_9-=)QzH@wQlJ11=bcrU*KCsKS7UFe&>=YfMowL2BHJoHsJ<61^CeJ$p
z7CkywihmJr6@y20rVWffWz`zaw@34GfTEn1xuKNQ)|F-3C{5;&bYttMK_=F3Ybx^<
zG}Q=%d>Cr0%T&sq(D1b?)z-dmUa5WmVc;Q2Wz(!R?tOhd7m|;<dVPhzL;~=@>viwZ
zwNhihl#W1orhe^leapiK^+ENCBC9d8P7gc~Ji+LGJfTqpvVA+#rlG4;<z++nkJ|2M
z9UJiz4WBM&J(bEQ<1K`%7y*^SUHFNZd(iQ%&6x}(8Wl~z8H}p#Cskz>t@)#4+cd1r
z`N?OH)^F{+>}Kmn(<pnEZSxp+*}LX({+6}oiS?+-;|cLO+m<iV+wWSY9$l`r)Qdho
zYMEB0v}>KwWG`r)eQZPE-=eF^)HZKoV%N4{;rzXJZrk;H+c$?8ruHT0EWL}xEqXa+
z{K1j8%9(OKUkc#N+4#zE-b5vzN`ma^ApEUpSzL!X<5Fb>R*}5nHT22bAJ;Mo9oe@A
zujcBcR{svwbL{r2*z;~gfW0w$>RLi0`{4=pYWs#CPW*lZZr2C3*S|6fttY5Pe>@p8
z_J|5lKWcciy;oRp%EMBPj>a2!LC}xKn?1ei$6S8ae+JX_?|N@j{04e+(KUUVNyEcB
zKrkv_i^1m(^P{WS^b8nCwjRJ`{ZTwO>g?V4VHElJrh_9=VuIQEwu1wBHy)|hsYGCT
zCM~ZEkVr9N`8}PGxU%#lqSD6UcSNbuV_DMBS?Bu?c-n!3rlS}le*{*ivw$+qkYDI{
zim1nM@FWZ!#wSt)Wm4~<0+1)xY=6f43BX}qC}AE<{2+noPRrLLK~VPGEqDW1RaD|U
zNlmMi;LRxAp3E^sS*{;`TMFPyLy&!XU~xWP7I$#}YcNCaM1xvlx@aqgv}^*Xn}J};
zQ4BPd4WW2kji+jU1Q9_mu=R5*u<`<8)X0EL^f6iwuE})OsRqekw`vRfH|z5zZgx{?
z4{46;#BARZ^I8OGi}YM@$F@4Kw+-ny@lHb|m7?I*B47|JfZ%oceQCsgzLDD*_wW^h
z@1;eI+)2};e$%wA!kW(vXGUgSYp%kPzwjK7VCml`_W~<rb@_5BA7lMpSU8^obUbvR
z!j>%ZU-RM&xcnG*oPqfEBH(3QQYBs2GRgBR#FTrja&a1+nj-Gk@ZN#refVudFpi)-
zt}aJD<G2sM8z~`;2(#|IsDE7Wm_f)E6ZhGHpZzqO{G?bZ=NFK+-~xH~n6|}wKX=gR
zldl<5_w5+v4&t&kI;`iW)SA0XdIt1;6;AIf(=%(mow{`jtS2MGWG3O-=-4756X_Bv
zRm+0zj;z{fwzYFUNgEJTcI|6ZYieDKJ`dwgk8}dBzcs*XK3E^u0eDjUJ^4y^4Gj^M
zUbO3;$qYwK1Zy#rZ9#`nSE+YMtg_fpg`aZE12t|hrJT+b=fZN-NRKqn*&3f3l)3{l
z#O}#i8Db!iSd^`q5e`TqUhv$bn6OoMw&f3kLrF8r26{kK@L8{cNo437TQ(9#@=B<*
zVFwC7_!4Qatn{Ldf*zoaQX$L*gnQe>tifvQ%HZ=qiBNWIVd(ZGAQoKs+a5gB(f+IM
zlm$J(3XQ!XEjws1CnEzQL!p>FRSbj&i+4hi*!}H`5Z~@cht)gUPZ&m@jM3i-_m*2j
zxlE<K!m<rW)RKP^tB@jxTypho>_<ZapJ*`wY&F@Ej)eEgOPP0Zzwb^($=(6|FdoW~
zB}<*lZDA{M{2hYR&Mt<#!+?jS>JhrA(fD1>*WsSUJetrE1sbZjR|uD8k6-WXdN2BC
zCkq5<m*c&0QU>;1L>rnB7Npx>NMo2%oJaZr>an$#=@V<8Df!z(lWG8xW85DVlYr7b
zZ2l}S->YkzM9o;exbj8txq^$|5RjaSaed3JPwiHs1k6_O+M=mR;KPW6a%YYf-e_75
zPW)&Z)oV2rgn<#Z*pF^&<Yo2zC6APnL@Pu8p}VzC?qq4L;1>E=Mtq)^Fq-NjF`trW
z6rliU@EHn^4+N~5$1LOk(s<oaZ=GI2vPMk%iJHm2gWO)OZkYhy&lOPrvQuZOzq0TB
z`}vfi^=@O+7(#T*M(o^8`~7I-Gw2iX3yIfC9Ml;CCy)$F!chdi8cCOEiJni!kB@LX
zgHD_=c-@B=AGEbkGc;skd>-gv`}MdX>Z3NTC!fzdnIyZezHkLEkNo}>iju?+<Pk5j
zq$^<@N-6}*qRV;QC3|K`AvE2oe&3Nj2P}ErB6a`bqHkVtNrfuILNDA1735-satcF5
zqpz2=Y&XaBK`px`p5GxY|Jf8Gr06NHlY(N8%`^vGno=+BYMAuAf<ERDoEDCe+FwK)
z=wf*z@pU{mPcq>*ofAFYv6r7-B51qdS`E|;*lhXYAi1w5Q)Lm~7_mf8#?`9P@4ejQ
z2={x4-Adr0b5?}}xk4(Zug-q!KT41-fCn^aj#|gGos)RQCv>x5Ky(~WKkcyhL&$J;
zvCBK3;I!3I>qDdLbit|%f_ZSV2ge`=5raR*!ja}z1`%pS0OI?USpWd7oBKsf?Pr?^
za_d*Se}>-Ms7CMm)J7o+01#t8(bWVa$5)8gDiKvOUf70s6M*mxN<fqXQUmlDfeD9R
zfkhHHZ&`3-t14tGEKlP=mI&As3TCc+6Yh`+!2*N;^cZuJ6C^B|ln}srD;fo$C?+=^
z1Z!c;Lx2SF-w2`+3jSC;DILO5C8_}wk(LHwCx9?z78DGCc3V6{Sd6$T6^j&)b2^d=
zIZ_g^QqiyyF*-V%mOvd#2$~VJX_>TQ@r3$7qP=0Fw?*`&n~-YO2e>y7W~W5FlcHa;
z2#5~i!R!W)5#}%Pn<E!f&0wm!9u(*-iW5>wqrb_*K#50FO6XN$UbltFECuDV@sY%l
z)MB7~j*iLzJU|9b1^^n$jBiCoZC#RmP(tNoI<`<kN}((`wM9lz40N-9T<4JX_qC{7
znN%~2v!OH7nv+oFmY<q)-)*)?B|tQE+m9Y2b)+H6fD!!%kzZj~@Xm9aaTLBNmPkg@
zTgKqmjuDPvX}VZ9ZWq1r9T>Y%1h({w=EaKt*lzTqZe$(JB-mMmz`tTgTA?h|L=H3p
z4sJ|Ew4?0WG)0=pF0HOWI&x+FX@JQj0N)f&Kgyty$Iy;zHQM3){0OOXW4SCN7gN{|
z&^e<dKTF2n*^$wW{i7FcnE6)2-3TF~uK7pPi0fXZxvLuhanr`MrJ$q*zrz+$x4Ix0
zAP&FL)yDdb(>r`FmpP_v)8|B-5Gyp%C<|mB)7Cm<sWYN>MaTl+tg&)!pngpY;JPf}
zbO|;$45Ts91@S#ozH?06{Q|UJL|Km;7o1n<na79}&)r9b>ADq6KCa1V&T9!bd4)>H
z#buY!uZDJRQm$?dFZOIZvp9kWp3(pxTqRhL?Rmf3v%99Tw4X59TcKnHSV&Pj%o01;
zzq6g%<8R-y+u>5CUiW*O>|g7KZ0D-0KoOyp5IE!_WEvo_R3_$X?7E`qWzTI`{MG4A
zMWNNYqsDhRU6f7xu0L~ycX3sy@m$2kz755AB+Xc0;C{3dFud8VFOfUsEw^Yzm8Zft
z5TcsM>>!kRGQQmmW$jLWkVf5#Iw6aSA>gw8*Y7PB_knZCl!7NRP=#Z`1$L16C-p!)
z?;uEQ57}EOgx$9*FVOF2aF2H(Pbt5k-Z0QAH|jOjj!-+M=Dji-COU%#wD$MAWcOW_
zBZC3df}{8nyM%I?K`QW<pOgq?J`*mv{8;F(e>$utx1xY>nabmxTrld%OE4jz^}IS{
zG=vkPHB4Lg7+uskHnX8xi={f|H#=63ank^8%P9EqXu%@(@pV7Pg7ITG-@~@bTsL4|
z;G+EIih+Nv!WCh)aa6T8Q;qq)ff}CzBcFL{jO4sgO@w(71rXoe(2wA)SplDT`B84A
z2XQAKbtiW@TTDqUV?70@jHw4{lX66LZQkn|D3DJ#Zd*s9`2VnUmSIi4Zv)=O28<jv
zQW)JZI+fAgNXKYN2}Pvb=n_XtD%}mzF&YFB1O)|QARwKBEib?S@qT;0K40$RxUc)X
z&NJYlMq5phaRyH^j}Hy9&TE|g(dd3>rDiX&a7jKddFYtN=rTEhKEcH%ywn)M=F`Z$
z(7UGU!h)*r5Mn6Dybuy9lNBl{7gR6J>{r~W6g(Wx*B*gS_Iv<z&Bkg2d`qZ?`-HTS
zpAY2r^Tyyzqw%{_X}*?;zN2s;6kjh^0ho#QnAo(b90#>uhXI>P`E+^ehxb9C2$ZFP
z2LD|B%sUZf3U9n5uqEy0X8?_97^EBK&m1P5rA|joFiUbz_c(s4w%o<6;eE7+zCbbA
zC^^Fn9-8F@2}K!hZX4-MYwcyp&1l^!wln=vxBhVPArJLW>u9LXW&m`leadt8y+d{@
zbk-X}G5L~FUQ9rhfd-a$n#U`%s@g*g`yxxwds?y~1_)3#XS-9DqqbVTu}I#<V_2f&
zvvZ`2#J+%IySy~FliddUjy*^H;d5fGS2&VT|4C6FE%!#t(XUF6^O;$)8VzE<X^0)z
z`rjiPQ%32ZL=Bw~pR^A_r0$7@C;F4)8ciGu&##kJkCS)ScIcWI#FCYpSSU2R!o03B
zgn#*pmxMH#zrJtKUiayvSjN?~2*ds4K0FaDU_PEJe8;}~Sd78?WJB%bs8#EqkQjr(
z(WL-teSe&kA^_+#1ngxXzE5)6ga677vc-$Tzlqbd^8pT$iRn&>n3}PeX3H)l$<3=}
ziYnzu0LjZ;;*(R#1)KZj&6=zAv9ZTou}!<krlo)2)u<P+PO;-n$mQ!}X^#etALe8a
zz>;h=WcQCU(x7xsNPSHfrf?MeeqdD#kfNI8l5^{?<4dg#@=twugO)9IH5B_npr*kv
z-Z_RGC-Fd2`%u)Nu(8Qx%!DJxjDh=p()AvY*td=m74!%~kWYn!SM2R~$IIYYB1{R1
zHR|US>P!Jc(yU5upTPBHd#nP`XgG{?XuTeOPPTi-E*?OW3!uEGDN+|ONC*_YS;s)>
ziw)LRM+ONP;|0tM`K~qi(6v^}wd_a|3hOK$?I4;{Nt(BkNRkUtI-tbwMv2F*6qr^4
zYKy;XLz;gz1YZUTaX3kb4~Z{Ha>O|D`uJ!vH3AKS?&oOsrUfhT2cHQB@C6?za<nNN
zoIqJovYk5taNr+PF-K&OK988zp)hxh)Grq)p;tR9+-;J^%>s(8dw`&D=Ng28G$!j?
zNT{@0!RfdQQ2qBkO_X%CZoB`r0ABCeqM@9G@yqr}NFaQ&J$WCfq>|}o5G=!}lSC}T
zKp_(~FNq|V(mIel-&12;A7V6S5!`-&pnGZevr<}kh)24DHT<<3G<#KRS_?A#u(@3D
zjOeHJj(k0U*;Yyq0ig7K`Ev8ZWAgG`jcri!bSrsCJuSvL9N51<M7G7lXD=od&iHkF
z%R8EdskhRJ`mQFC7*v{91$p(gV!v|06Q1?KI6^iszN6kgP^S15yx91G1IcBHR1qyr
zwGOm#xQ!7--JL}4;yL8y<l)Ua@BPHmhg#aV?nr@7-0yzSo$FVOTOC=6S8A$-E_L^v
z)Q<>S4k~rGf*7$jy&Vs)UBrS9u#e3B{rlQ&(ZCzgkdN&?MJyh!iI336eEVpwnehD{
zk%Q0Dt#G9)w}~qh^y-kdgK_a;csFC@(szc!1#ED_W2+Fgk#^vZ&Twv$h-taVl}>;8
zALN2R;;+Hr2>BS#9}zL~fmd2_j1vEtj{U;{%Ki_`8L`PyLl3GLygIL#1QM*E*_J;1
zf)Bgc0~#nTX@h?NIh1Kb%TRg~63=G?2O=ufw?-rfa!tB<KwA?E$v_I7Qj$r`h}f-=
zueR-m(Z!HqXJw4^C)FsNaa)pV!PiBC7{)3VRb+VN%J{&IE|I)ghJ#`e^uXBCu6u7E
zNKuTTuxHK*S1r1h8Y@z&{4GC`_v~@>97!1?wyc-0yo$kUJ2*<+@8z>C-@3NaN5c91
zUJn>m!EW4z;yp!j(m@)E4iA6bP~|QH-$U!#UO>V!*2Wr3ew97jDgItr7*n4s+*0rz
z{wQ3d!3l?2I0^b1<{YCKHh2<i_bbWqE3<dI3zH4#q^`b9=d(k2ayws}QYD65E1&$(
z4JlFcjA(!_fn(yLUB4@g72oBm7&T?9Inv8`@26_>o3I`w7uX-)3X}^WJR(Rk{_q#7
z=2tK$04hJhgQI)K76Iq!d*&VH8ThNwp}GFAQt*#1f9X94<tnajmHa`6b@<rg_zRn=
zpI>(JZI!0At~te5)G#WCVDcFNNuf5eJkan`nV3N7RrVJ2pUocsPW-kxj(WvNV~nn`
z#r$}VvHz3pZAmal2!(<4p*a3kLe7%eQ~Q6lq6ESpZy+!fh+p8<eCgz{VC~!&0(h!t
zZbdKu7Y~R~clm}Of!&sz`v5kGCCPdjHiLCbsFY~9F){q5z54T(Br<y#Kw^LaM|ICj
z-C6O(to)|i`W*o_ilVdlx83&ll_8!OLsaTsNV51>BUZ89CrbI?a_wfZLVlvjXY#*n
zKsA6o7ZsAze^24xS1Z-6lmTPhz_#n1{kl8CZkh*!QM9XyZWlyr2e;Q*Kdh7dyWgm+
ze2q|<`yKf~YUd-}00q5~0rT-`Z&Rx)_S;INi!N%vDavy6uQ6Wb(7gAzHsovg9oUQk
zacM<JzO|!>OIu!zYT-hSi{#m&vX!Q}<i|w~I>9sPm_R<}JPOrzmsj>&rA2v(j%qHt
zb)l2B%o26jDU3;}O|iFqu4xM{t1#EQrsZBl^1Je|)WY`aL*MfY06kAcb&dU-2Qtl>
zLknMo74>Z2#R_rr{-R)bHOjMH(KB->?Qehew10Yq_0wTKnL=x5v&n{ZXqL07v&2vU
zUq-HTNoW`DvBZ-XPdjALc^lTDlevOQ`gT4S@sr6C@WV?p0MU3Xgx#K^R4oS9=X71q
zrb;IJI!QwaoXHl;UmA}hS`~ujrK_0{(@3Jf1xc0=b0^FAtvwhYnJ{{BJ5ss@P^Lx6
z!pA19ii{qgQ@0SAVXEaCriYIfqL}kvjZ1SKC3+O+Ze!^r%wK2~?Qi)~)_DBrXZi)=
zORt^kTkI;<1v#3jCcG0+Js+xI5rOxiRJTS9%4P1D#G2id<>+i|ba0%T(A5%AX;9p2
z*#?6Kb(L_X(i*YsA$3Y_t=cR>Ybn=QIJ^G)+RP7e)clRyD=<GIe&60%!_Eg}<=GCd
zAAHdgZ>-ZEuJ~o(73}tjZINE(#gHTzk6u8^fLv4MS`&7HcCGy?c10v(>Dq2>Rr0}D
z>VdT!KhdoB=}gVsC$7z2qYPVbd7^o<16e$nHl_aC50^Jw*60%7!I}JOJ>i{SWmG^w
z<lbpFwUt*KlQqS?lTOkEJ=Iph{Ij_BchY1Mbu=kTRGoYe7WK-QoKxI;r|*ayH+1co
zRkoLOnNcYT1&C<9ZkW++LH@Ijo!6{Oi+Bqd^sWwk?q4`mD=l=^c0Mkny81Lvp{Xa6
zUh=Fxu&tgf*0t|^R(QIQq^qPw$?1xsQS~RLoLYfj`5rE=Js(5hJoXmgEKL%y#g_`d
zidX=oRTeM4(l4S(Dv$MG5|*yi+YQ#a4j7iPDtK@{RV8@7w}rKRd~mHXpMSjYipH%9
zbw$C&ZruTO<^7RP=KaPL@Y*Tf@WXRo-BJ*cly;7;>aKu5hqeDphb5qE#a*knA?ufL
zP=H^l9GvunUu@iNK9g#EaP50HU{u`E=;wlgqYj$DDN49iEcXYVmHfsx*&FeK?|$&b
z=mr8dpR!smyZS5n58E)69m%ez`>1tSKBI&Gba%2J_~;SrF|g-c`;V6kU2r&-<mvv^
zUEHaRmFhha*^5eoqXP#%Prv3?e15b@?T2n3q0pmj{-z1O73S<|Ev2KzI^7}2tMzy#
ze<IpB7cvH0oYMXN?>oKs2e18U1BOWW`%b$LLN@(J7_Z}qCpbK>^UnC#L;nOe@-Bf7
zo1YBZpSCHH^z;4F2qpbIXUyL#Nv}LfAYyczgFpP}S=E2_T&45&qtAaWiykgHuip;c
zU|v!_+?d}fUi`vq{6Cx<{dkY{|8ee^x~i`O;U^15|H98E-p+>|zT#Jjyz~(oSh`$K
zP>K5awQ4Zx_sN9HlfU0zmPR`LB)NHel}CZ#a~Kj0G>GAc?DeG^mO2&<=9O0^vz&`&
z94&5S5$K=@nTz27JCkb4tI_7b{8(3$pm)2};2m>u;<3&Y{RwKbx9)>@6WIuoCT*-|
zI4-VJ{4@d<O`nJeb2Gnb6j(<u`%xtB5KvWxOd8jo8uM&$g4I#TauUC#Y4QM`3vfSo
zgnd9HHU408IiqWo??nsLlBa-molkqCLL%13V$=R~a+FF41$hGA+V1lJ+A>h$Ff&|d
zvJ*qr5h#e@Dc<xQF_!u!cT~j*0vn*%f-MpQ!#B$5P)Wj!0@PMoCRkES6aFGW0+^qm
zRp@A`7hH%!vzAqS^v|mhC%d1OKUpE}JH=-NoXed3;XYD4H$4Pt6Ba}RIclCqPj}Pi
z)USf25)?Yz#~TX7%`qfqr&x`!H+jTe0O<<dIH(Do$0pC$xmmiYf^w;RLyH0#SDQGi
z;|0DAHcy2j0QRw71{WML1l{~Oi&?wY$SirFRc(R<C8y!Fvf8&i5jap<hy^c^=q|N(
zX%gLoZ(!~psURW6=+~qf0n*AO6dnQ5w3GBNEeN}YsdLe^%CSU!fwNVLHbjy;7Ia#d
zpP=YDXvNNcA+s<ajYfcZG9tTZxv)a8s`*X)?N>DRl$K=3n%>Hg;W`U|aQLXAd|g_7
z!>oKI^0{IwN&WkPS!q>D6GSw8rr44cLw>gkL1!~O*(kW;zO=7s>DkA?o&xbCN25W^
zUHA&_kvhkp`%3|k9M_DBdUtADCfdV|#M8+G$KOJ8tu&T&jd9HPgoSmun~U3}<Qt^U
ze@(DVVp5G@Z{0lg(@DS#PS>SDWY{p<n3o>sI3Y}mgLnAKYDVeZ{9G(~RxYSSIX<j2
z<CX#CDTvX62q=PQ)%3s{c=C*jW$PM|8=%1@!`amX*7y0(4_@6hkx>8FKV|bUzbgLd
zdvDxWg=G=W(g7Melw|1iM0W!{`fe64-g|2Dgq08QL_F7|dD>bRNk23Wt}}>hCP>b7
z(q%0H$U=cbi&q<;6LUxDy#g80BCdwZ&Mc(&RKtiYz63<#i@jrx?$Q{TF`h87-)U6G
zQQO8F6S}4(Dib62!dF{*<lMjeX^@3Lx2<(PvMu?IQpDz4`Au!LM#t=tz&F5X;B$(N
z(gIC}=Kj;uN@CdUYX)Uyo6pu;Ho))~sU<W|vz)TJXn1pnt`LzjDKa3CHbo^0hPvm{
zs1Kwid;sw^i+}}ey>%O77Oj0S`g9wGmbufi9E4r0%P+&`wS7^~TaD`BEQ=epL{&vt
z4C$Y{h?hH@AU+gU%(urfvr?^&@^oKG<%f-l8mdX@Y;Tab_g>lf1%irF49sQ+x-)u7
zuP1t}Y2_>y!v|?UC>FnOwXwASLAKeI)A#=8g89wbM-2{d7<eAKfTUp121?An;?~M1
z<Zwq1KV3k%{3;#6va^QY^*G=C_Z(H3yjjlYL#G(sT68=~Cok1$r1r`OLxCSYG)8E5
zPAeYPMtuHtD*i-pbd_dOlWd{}cU<y2yqVu4v^(LSNI_X4y~4@ZY#<kiMY&^-bxkLd
zo9qGM7jtR#PsT;88PN+l;F}ArB$HdGUrz>@1CS4gpgJX(KCv-KKLL}4mtw9J!gRl=
zO|sSiFt9B1o>YANz45B`k=-4Xxukqj&)MFiVqm9<6xVC04j0hy4Ib28nC7cYO)XN4
zmta4|M<P(UEUQJcf(SiI4;0&&oz_%H!4N%yl6sbU>|&@q{LtY(@p7OCC;eXkp~~BA
z!b(45M=a({rL9Q5;g0ag^H~FpLAQs$Rm}`ZTRGa!1<5Dz-$k8yx2te})};oI8=gd+
z<w;)ut+#l2xlH}nOpE#%1n+p=zNExYs-l4<l@C=pth>F0B!|u`bHS8{GkGsv6=^YK
z*%&g;wt*7-z-INJ;H1iSSt3R3AhaIe29vz9yHjZ=iGK|c2_%mHf-h;N-OU^@tHufn
z;Hg&!)o`lDrz#(bP@{BsIBc-w2mSs9>S#gbP+;&vYS3Vg$gW%22{yE02O-m-qx%*;
zt3QOa8DhMrnqL+zzyo?$t!y|6;x8`PvCX2(gg0JLaq-}dy#{DTvwp|WGKr{LnqgOi
zqd!XlB<;IO<VUo0Mh<`U79g?x7Z6ox^#W4qe=#GcI-`OxXpEu;m-UDgYfYy9HL;9T
zOG{AOrxH%OpNg=+eiAg03BzP61)}W&2|Ok}?gg|G^);jDT1o+o#X#MlF&502_eDGp
zVBFe(nI!;7ZVezi72(g-6a$I#!=Rc|(X==~Bo4@ciSdm9fJ4dbtW&l1K#aM-#xu-a
z9vB>reTxF_nqo+I)%VdrLLeZWDb9&vT-lBH=A4}xhWmdTXD%jz>x|uv&80(Wxl<%7
z_=scvXf+~q1Whz8rDJ04F>&Q-Bsc)9EII@%6Dl(C4>s|ZTsQb0klExW!U~+a2V_J8
zTf9mA++>Utq*W#XHF;WuARTP%WOVuDX0uLeVd2wJzGo2=q4d|fEnHL6dD?>2+NML=
zu3(ktvAWc_sj$;2OP=wFLVBZaEm_>u&C8SfmoaXo?o{8~kjY*~6Mz5{qzpWj%A+R?
z)vn-~n8xat+sB>TPIt7ELY8&ykRVb5AT3&ec20|NhQ{}uPMUplaV#+Y8xdP!Vh`Iy
zMr?X_d32>TrmAnEA?r1`L@&Pib;*MnzUG;V8J>KDQWd(yjA$YzdFpPdgg%O?ev4@q
zw0>tq3%)RZNMwdyerA+@q=6+pHusG%s7de;Opu;=IZ~bzq5H1ybz&?{j4x=#g8nv}
zhVX_q|LMf0ywOJs;3sg|wupukCOW9P;>=(+KXJ4u?^;8sTGJ>K>n#y|j5abvwcSkW
zpXLH-5g-y$GA(I|&flyoVKhp*X(k)xcjYzZIpZK0AbX0j(<JC3D~ZItH$SHOHIi1k
zJB{70MRBtEE=&lDETSQZkgR4Lej&?4zl9>PEU)H&Ze}+4h|%p;EMQDxM);VK#-!E2
zg);~|J5?l?Sm53q6~xre6p8UNB{DJNLcfzMf6D)PMD8Q`F?sfmZ7Nd(@M_d#i^~jX
z2%~XtN2N;3@6Jt4B6<9xg=8?o4T&O}VtE8Jxq4D$<h&}6xfx+T7o8)=fRfQvQqrWP
ziW8t`;9Zz9v4ir0yO2=scL**sn_urPU9T&Uud-2)?7_Cho+%3=oH=7rd>>s~tPozZ
z9NS`IU`Ch~`&_FWIX}gd^7@ZC^R|UB^CG9<VpDIdcQ>Q$Ly+-j^((eM*KqR{F3_0G
zXerHIvx*M}@^^(IP48v{Eg5Q|q3;z%jrapTWZ(<#JtT&5NB60lJIz`8`+-ok$#4MA
zsrsUIvsqT~Ty)LoZ4nVBdNTt-vmTWBJsFcL6dRGrQhx4)V#z#f!@L`lRdk$2LvP;C
z@-{L*FgKp+fu=QjYgA4?<}Ho^647u^`4;3eC3UqxkOGh>5-242{()c)<2`I$w~5(g
z^nxVKiS3)=<d2YERel|yN_m@6;&ol4M$Q-k4i})K%ZndFk&d=t5M`ebU&<$uBrHFk
z*TR4~KR>Rtjj~h|)8q<!qCZWA&gUF;dsU|j24Ei{S1Jwdp1ZFU`$cyi-SwRN^e^!f
z)dCnoW7~B}RpkSsWs-_5i!QspGLE+E5e0WLtOgUzxt3QB59~q-woPNT`ibyY52K&o
z67V&%m2MxqCfG3cKf5cRM5)m7x}Utqo^J5ME_B)M{pIkA!|HYDr{Q9pKR`q%`7T0K
z#PzS_<PlNtjp9D_b4>QC{FJ@n58JReoSWM#d^iU#q<uNco+}gx^n+@_G;|gzR@^@u
zOn%;9c7X4Gmi+NKT(sqw@>+u#us+EfM}x|wXy#?HwlcG(xO_M-iNFG8>*z@d54TsF
zg6s_g9HK-&%F`sZh}!-5yM`)XH)?j;m|6cDCrpnT-^%?|`^xtC((z{nA!)m{pyXrS
zhL}(n`cF3S@AfFf<mQlz&g+RLJH-G*ZNQhTxr)mdp`=>q+cXjq$1Aeun>htCwp9gc
z$FZubElwYzffwb`f?9R-KG8>h(TqiD<GBtp8*u7-64`xy{|-_Mloi1-L$At88Fh?>
z<~FyA;yJHqI&(n_QVH_17{&@$mKIljysPQ3kVFVjGA&K)-!t*?Avx8yoJBBqaj6KN
zNB9Nk_KvG4GtDaWdTU8$R6=%8eSm?^bjt~Q8>IS$%O9+5<Zhs~ZEv^v8*QZbf{l`f
zt{35^KD**d>Ao{&Vk}0E6m%kL-tv;?Go{LB#N?px;5Pf24R>BcDqH){E)JqJj+JXp
z0^4wTce`}nyT`FUT3h?YTsk49PeaR3qycnYdR^z+XBFF4h<Il$2k|>QZnGeA^p2Li
zr>W`J=H(cA>o_?r+ptP0`ENVUxD4;^ZDXS^#FZe~owX+)znboPs{a0pIc6S{NJ!#~
zPOc>76@#ZlO7K)_Bwu1u*4}EtlJqgyJ3viL(Pz{0Te)FCkJoR#%z>nHdqo4(d1#UQ
zfj~xcbaLdiJ2`YLV~l5&2FmdcOd;SP6yU9<K52x*%57{q+;O<1UrD&5OAU*I;;_Gh
z0MuPzE@kh8@tQ}tB-*-t&5&1xYhFdOl&cch+Ti#Oz7($jU{~5fH{YkU4j-cs5XtU-
z6O|9GS8Dx-*hSp95!gOkHugArzv{-YyXMlr<MZO*7ryEPdw<Yy4zOt;dSrIM+tL@u
z=>uw^d1<sA9eL1|bI=wwQ@Z9-oV2gzM-w^=o`d@}H;M<0dj}KzMl9nV4LD5ad<pNT
z{-^;J{dvHs+~QN|)0?xiU%WGVbtuSm(CT=k8{yl(yGXdB5GPMVRDB~B6F;Om9%et<
zoV`B!(y`C`P;m$D@l`hA!s!0hFkJm<#<oYLNs`ghxYu$#W|isq%72%LT<Vo0-Jd9{
zzy9L?_-<!LO6R@4PnW}-au-v)0~Zib8cdlRw*=-P=brmV)5BVcc*ivLN?tdo7l_sE
z6xthFW3zc6I9UxoVwR_oZob}jsBssxt!L-0^XrO0EsE^VGJccG-k%H1ocX*3mILJ$
z)uVWT!27WbsPlGFyLPoTd1(?+@p~Od=eDn6>E$p!@zSi1_X5^zf=TxqXje~Ofb`XF
z`+YnRSr3x*tQD7&8WM}+zaM<o0Tr}LdBbqZbaEy?6}_BPCpZ(lI^bY!eZlhY=+yB#
z$g}#JNXUsUKe5D<5w9Pgm`Sk)$r$rzfb?d7ZNYobtBY?e5_G-(3vX^rbm#u#=R1bO
z266zU@0jj@eGXLs3+Wlk^TLSQ!=#DSw2974?xBU%!y&SeazscWlR+@krJ49HfWJoa
zT3xkCoPS(M*mKmYDaM-v8JD^GG6WR-4D#UmUMbby%f_>ZHkzJYA(kJ#1&V3u_(Alc
z$G5jO2Cy|!w;yQ98-~lY$Z28jZM<Q9{+%tsy*NGTTYac_X9`Jif?^_^JF#!;SE!2J
zR|qW8XO8su-JrvGlKO`$^a;^P)&L{PbbmuHVt+6b3TqRP>n`ya^LRd%Kj}5;wZx8Z
zsL<}u;-5bip}$yMXMI9|&#fFCzy28gOsQ=M13m*teEXp#A7*YCc4+;pq)E9d;g?NQ
z+QJn$@BVvL5e>z4aI;E}lzm+K$>$`FUYuvo_xQM~iA?<jhZ?!MR%*I_{`f}ipS_=z
zZc{k6cfhR}e}}&(O-KHgV{{WvdfZ;|v*Ych^u&Ygx4-zJv31`7a+u&Dk{w%Fz{s`v
z^DPgh!1lS9=I>roNJh6ri-rlIBMUm$=rOdNgH~OSWQOj$H#ck+Qu8i9LVeUG`?Lgk
zco53ZB!N|n61w}Z<^;@^U?lT%?-ku{`dUQWfyVDk@h3~6LLJ%IudHXZP#(-R0O%DI
zjwgvEB<Ky0PzaPdH%FwBLJWqZEan3dNYc1AW|B-=$|SAwcLB9SlCbHN4r>-$nUoL3
z-jN9#Epz6sHhk<hx{0_cNxFF-585bio6sXy*&Nfd)4Mm_o>Ppa6c@c&u*(^`#Ehuq
z?t?6za^z6_51X!bZTa!-SM+jLkDl|7y0o9-Bx0a4L?aUEoC(EowXgI%6XfWpCG5h(
zGkRBqFNAp{T1>em1APK=yQ~+gC*)#JNmehn)iPCog1Gy~Tsn~4Bc;PG(JdCTva8+{
z`fyP@wfw!!Z68t@pXK&I^U=w4?CnSj91;CJQXbtb5ii%)J!l_lGV7YgzI18|Chfi4
zrC|PLD8t8XG~%&|Yc#OXG1Oljd{&@AMBe1isupP9ovOwjMwDP)W&HAAa=#>+^Bq|D
z4D8^dI7%l#T}p2$Rr`j}7JI|mVkDfgB#Z>U<cpZ}-H-7s+=jK^7~JWM)NCKzGS9l-
zmCP77Q};-GJ)@o<6$n_N-!<1Zee|MCC?U6wGplnzzTSOKyRu^5UiP{76qzsFrC}||
zNZ+e5m%QwQSr9?Aibg3?O+92-pk;D8<Cko5yXBHov{zpL`;g03GM{4W;ClkgA7mWG
zTkgciht7}(rR7x(M@RfrwEB>UBo05yL~AaFdg?+n$`MY)T$9&;5kF#s0IT~{cStvA
zm4Bd|<KVwgEEMZ==xCxZsi+Y-^9bi5iuG#DI;}_m|0rU;&wAvpdiD1k=MAOmf*aol
zOsT)pRU$c9JmO;5Pk3C`kdiT%6Pv+oQ|wGBopm}(WMAHbCl?T@v~WaI(tegVjTngr
zOD1Lw;nv$tUZ(L^P9jp*+xM(_JlGyDWQ(|U^Rgk5bBAF3XgXeUx!TE6m}SP)*91;I
zntQ6T8IP-h!o#`Ix#BsG`JRUYpH~B+sZ*|++)qnT<UFw`HE53V{8omCNODC^8c1lj
z+{+?tFC}kSRjA6C=TgwaYhaQuNu@H>Tjhyb?O{Qt=CwkFwCpVSrUBS3_g;Y%>{F@J
zA9YdZkSaR1*jW&NkZ197TkGIOhlh@Tu733gyTYIj1%JwIDn-?jY&DcsjZB}j|MQ7S
zn?~S7qiz+9SMPvTmxB8}+SRY-b#0vjSs<3eOe;CB$E|h6rn6>rMWFxRCnfLzRlM>!
zQ>gdGP?-oaMIb}03J{ElheYGsxIw-CRphS~s$jo{nF7Q4Q&rm(WfStH@|497r7Rc2
zl5F1dd}kwlO5MR2m|`%|6-zFjoBoi+&U0&B$^Q*vA&n~s_U&Dz)=iGh)gW{u&US`&
zk|<J`WpX`Q<&IW`oY#D6X@>Yl7nstgM8Shh;Q9vQPElu{{CX0B1%RP$4-`D)P3J<t
zlnJvZ5~WcG_PVx-`-jI?lE3KHgr)w2kaIyLqA3=9|E(RrB5_g#S7qKw+pi}v3g4Vp
zS?(qbnx7E9(<Hx0C#s8~jyic$)|7ntsm=J^88MGa_sKgFqo|{=BkPLCN$S+MFNTaw
zRp~f>JAS|O_>VaEkUHBH6Y1bpC<a7dj{nB~9k6>z3}igih6rMaDXCzQvBLIoT8YE-
ziq%0vz9r;#^2zjFggEK?63SONfW|#6humQa^%K%j1X*CB23Vi!cC&f`ePEJ-uZwjo
zLY-gFlwG>Il;OAB7_Txu*^+*PUjLpN#kG4&k_cNFGlUUIGY1Lr^yQ{3!+@yW2t;By
z;O=VTgz|pivxstbwrw44rK><(ESnn3lJ%s9P-_xedV|Yp63BeJ^(hnvBsW4}b-g8F
zbO<1sg$aoIK|p4?NQI#BUa?V>WLB9*g|LJ5l)lG#c6&XqIg5?F-G0#XzQYRfC(s!*
zS#a*CNTmcYL4V{{aNdk>rPNF4n|pe}`HS^Cw3%L<KHk9vtA~|xgV5Q4<lsWV(H-bi
z((HrU;G#p{Dy4PkTSR`Q+F5<o?USUp5&OX}|7>k5kI7F#vj8cYGx&c4=sA26AZa%S
zMVf(}rWYy((~Az>s_8VD2>@I>Gr0?x%O*3E!=62Z%BX7%f!>{^wm%2)-t(r?Q%pBH
zE2nL!)+FLw;4ROR;jR!AimWv(&UdcTx4@94C0mI9n*&7<t%7jLi`iFnao21UBo;Uj
zb?9y!><5ZW57*HcCF6(fvV<2%ckmX=1c>3bzO<HtXzCFbhvs;w5jv@{rKurT0eg<0
zuxkEssZX-7W%~wZT}hE67(=L*cte&mV%F4RZXhyghL0{ta|Q{T)H<B$StT%pKvUk3
zy63srR3<Xi!_5Ahg9B@*kgpi=^&W$Gn~IRlS1nIrU<2F-&PCZa##<xzW5`Pu^Gn)2
zFqpdbeLI3$^=*M`ChS9PbkoLKNN01lDA)|Jc1lYs_0Y~g)EEg;6eRR;Cr0~Mkqy?;
zLWrg0RiV3f_M#X$H5;#+PZ#$3Mf@P(n9}V{vlCeAStLJ36~Q7RzfEieER(^Ip05;u
z@5{Dh9v(2|k}E);07ujHfi_U+1}ZT(=!tt#QeL(5)fkf$$*fND(02@@{(LLnY1)6d
zcP=MdhshBX^R0*O7J2Phl6h<LZRPlX|2ma7e1H@NH)X*-#z^HW30$1PmXMRebWbEc
z_XBq<dl_Lu_4sLC9IcB$+YenY#Lz7+vK+akG1YtIvH2g_iY%VmO!s2}7I%?6JU%6T
zuDRH2a)EphCH4)DGP;R!`!|R&6$BJ9;qvexSic=Y$eMPg+v(h*W2sW)E~e6`Gfkv>
z=FRzmCPyl^)y$2wKWrqqaxGbRdQ1Mh%yN7AWoE*g35Pc0kF_B+r4MwbN2$1E-FS!O
zf{vuAp5!jSg3HtvIlv4%w;|*qCGFkjM?Os^t7M4I7+Z97eevT@@ez;uzKf(%`^s<+
zI!eyFosxmu@e2mn&c3Px_9l~p_QMc4f*Jlu0{M$v3TFI_VYFD(E<fz<UjQ7*uVB1N
z3{)6x1lj(KLvF;n2{i$O2GN$vHzsc~`EH?m{uhDr#4EM}Lljzj7gSM=-E9W-(y(hp
zuxs8h1sM*teiP-HPVb|U86>2~1*(2z0f020mrs7}qkBP)Jy6p*TEaF|r!PeW8Zt_<
zWjMBylG?BsCJ6pF+g3x|@=(17eWXNRl@;GUthNi^D@^O@RFc`R9{IT^zYK-q+eM=X
z72XFo#+8V3?lA8uvBg&XnBjJ0iZ|}lBv9pakQ05Y`X0WNfD|{H#j7X}D(?B**&Mus
zI_lyN``8rpt-SNkcAHUGoYiO6_jS>iI*<OIIIr`6Tv&TE{++t(Il6;)^iIG>mBO=E
zr{D2S9xc5~Y7h`NA<?KQ=CkM9@2@!iZgx)n`tqB}oX<a<(;@;&74S1&W+3nyXMR@<
zDO0iF%DD;pga;a2u+~4Pp@*aO0oXTuAU-vsmKID<5EC;gcfy7hwFy!Zffx=jrRP&|
zc78&uF3NvOMQehTLIbgyG*3V=KR1B_rzGqIAW<-{3=Wf<2{JPyl0r$cbqRK53kV^J
zZg<A!ZbYvGVv;HVB)c(Q&f4A}Mym5zb*30Ai8!?%F_6GGE;au0cQUZK80ULp(#t->
z0i;<$?4oE3aY=eOLQ*{xk>nCxcoFTu1h=S;kK*NV)3Fr~iubCflw#tNS!N}N#im%t
zQZOY1lX?~b63GOT7Fsz)Na?6eux6!J;XizN&|F{_F1^@z@zVHf6Lg|&aiaY$qUHys
zb0S^&t~gzph8<H}6M;_S0>q4vs-YM1m~@E|fVeLwN07!vb;YMt-=kaRxS#1K$VA#|
z9am<Z+*J*WWU}tRN32eqy8GzKyDsU)N&2I&PgfH>9%jh)Os4t;Ch2>m+K|%e<J6l1
zNo_Ir)#jqm^PVfwZXqbIozN#T&G#Wcss5#t{nqw!%MJvFdO2HgZlNM_&SR+YAY{ND
zljjUPr_fGSM!!&?3?_^_DNO#0IG+}9ulX*U4H3J|V=-u^mnxAM8c2=;I)9L5+u`V5
z$P};v(W1yDi$O)GENTpZ7X%B(+_l>PNf9*Jap^?kplcBnzW_#;3<lJ*rV&BtP!TvT
zIWswuV((-!JP2}s5uBxK1GX9hG3KRz4F<_P&NMj>tm(|r+sg^4Nr$LDCr3YLI0Mk4
z?%QIrjXJYUn5hhzW0I4YMG-^~p+u6fTcQMz2-+pcG|TQ0QsxmUbAYM}GyL(#oC*B%
zpr6mN3g8%<T>XGt+o|jnFPEn^7LG|!bY6g~&11WOyu3YNfmeDiCOwi_(e5n6&5J`-
zA*&#Xm=O0!<R_$bk2${sBVG)MG2v*+%Z=8}O&ZQ>`<bOzQPh$|w`fE3A*skuH6MWW
zVFNf0X@WGFQ-9J5)#nKWdu3vvM31`ZKJQ6glQq9+IxRBV%XLC$L|zK}ZwNt1;a_TU
zw`&0J9~T`1i-j;*VS*CR2`>ZzFV6+jWOIs<&Bd^HQAa;tU>2So<~{~`=MOVKkIH*l
zD~PVl;QlF3cQ2=u;#(9m8IV;`mLFEiO~xr{;!pdX!%&sTPm+iS0j2`*Qs(*rNYk+w
z#(TLelS}NbZ9(t_A94WE_D+Rnat6g~gzf&5^x(?4Wj^^91-Tf-8Cj~Cc)CqapszH@
zkC+bhTJ~clHMtAu30d`7h`4@LS(7SN8iRzLH*rTNSQ1|hGa>RFrGLb7>)t6@On`um
zEo^)O(IE@Y^5%G+T;a(A@q1TOSmt+KqV66N$UyO~$^c932dXi!W%}0|0lx|^!c_*c
zco*kad1uy?zpe@Ybjxp<y{Uzy!Ir2gpC-ZEZ7jjweh&E#Q`6N}mt3p)!?FsgTG{JO
z^IFRXm#l%SwVFt-y^~p=HC`W~<-Sp?zNM%V>J7*d0+W*l^1vXQ5;u-*x{D;{)Ud`Z
zsrrmXo;zRaE_$l=URRx*Rm9U*WAbmdRqNc*Ad~%PN52}G4<ID^O~mLXNlep^j;6oA
zN^Y)%E+#EJJ?tE;t?Cj$>fcok3sE|+xI{4)liW?W>>3`@3RdWO^^y9q|IWxOc_!bJ
zrl@BrQqVLJ&`OMJrOsgR>jGbIzo&RmD(5z=n=M-*WKprY0bF{e$bZTzj^I9JQF?j-
z5}i}EDeWNE${>>hdmKC(u_pTUJ~r3faxx(!qm3kT1aziN6;?}0KW+j?1|%p2xDxT@
zsuFDmQU2xbbZ0Ko=Lb>6Ge4;#3m59JMRgR^Li~ffF?HRpzsXEbySH+A%vQQKkX@<;
zH0o_&K~$RkoFdPh3n?-jS=E`t)l;G0^I}D|TA#kg8&K!N*dXk~+``2L=zgHt%W>5k
z$SM>`E_dHf<jPb~o)aPDN<3~?-<TK`I~}Q4-2Y;p?klESucS%@EsB+Jqu6dj1Dm}c
zzI@2q2dv}jpY9RJ?Yl0?>^MPpB^Gq4oq`O)5H<*$fZk0-vj1cgvUfmourknjI^b>Y
z2Jv;4#Nda?;YXb$hvamfFg%FO{zx0dzv?O&Fx*Zy1efS3wClN20vD$!|H}YIX%e-2
zm&v=dlWJRXDBm>t@GQR0Y%}!fSBTp+py*iIYzg3vCtJU#+P3$V1#kK{`u0XOMw_{q
zTo<>|=?8h1D3?P7iN})*eJ=-dEg2CzB)-^*Fy8&u`#iIm`Abi#X0?1UNDP_B@g>m*
zly8d}_xc0*J7FRo5bc5Ml{zDHI248icB)}wUTRG|?UNmB9VbRkeXFx#Z=Q%$771A$
zbVb#x;qP7NcoEwSnY55i+&2Jc+t(SyOr_UPNf!3F5~d<VBugU1%Kosc%A>J=#=_!W
zR|QOsh)le<6BJ~c__#0jm6f%d;`NUdiGKU>mwnSmE(0rllk(?eI87=F8IbrXU^|r<
z9)LS%wT0*_wD(P|r_eSRBBOA9M|}SM*t?#29(XAHUEv$SFL>g)H)_pQ1PZ?|_Ool4
z+1&KEP*2dGnXUupxdD4w?cdLS@xM(o5X1TAb{qm9;Xv|dV5OUl#RyrY<mLq0S+%*j
z%d<IZHD_%fGa^37)iBQW(S)h(n3%;~ahSJFIz+4(1Vb%qItWq(xfqlH!~)*tO)T1a
zj$cp2ESeX}<{ffmdJ;3C`<;s4>&iXH0s?+jSACWA!Zvr=5&*b8pbru#+01@pzqUst
zI2A6&i1g~4yE(s^beCJyG+dO+nBqeb<(4e1%`8RzU1IA8M;pE|to`77^x?(ku=`&~
zh~z8nPa>JW;k%Mxhrf_G!?`BJVj?9FV>q4qX6oMG<(IIJ7s?;0K}$im_{<${!IeHG
zMlLG-djC3ARG;v1w(rfI^beBFAL{$r5C5>aJ!KwoSoM3uyh=M)><0+%X;VX#YBbBX
z&(Oyx_uZjejw$-|R7m$>{i^fXB6X0H6v4E(eYNgr_0vrMJHyXm;h#Z8pL5gK4sLm0
z-|Az3?+3U%LMVjIt0C4)KQBf3eX_-T5`0w2V@SpKrqOMC{jzA?t$Drj)%&e6Zi;hO
zIZ91%)q>KSS5~Q<rZ7GfB_t=s9Q_9(jLP#MY}!75*DrcY2mXrNV>+KL&=s*LL_E()
z@uhm6-IcOaZ{pFp(44js=|u1s^Li^!T@bv0L#?q}DD4X#uxXyAaQ7ct;ZDHQeoCEL
z-01ly^w46KRIk~;yNcC_+iRN^jy;xQ&DK;qcNqCx{U@@XP8b~b!NXl^Qe}8olB8#s
zR?cTue7_0=uCC>M{UN&ZHgfk)3n(CMK}V8^6B$BNyhl@vTOR*BDJtM-6i_S%zRn!j
z)`;rA**bugzTb`pSQ5dL8lT|USHGh7Kl~y~58ulh*egn7Zn#6$%uYBcImrEo0R4;V
zbmR|QyIG8J$2$8tQEWU-d^aWr##50DM|B6Saa1BnB{w(n>pw?vZ*oVC73$V8=R+Fu
zo;Vdw2Fxk$?J?*Ubxw=C2TvjRnIJ7^0DuHlLnZ^a4i`mg<)1#lI{?&A613&86$_CP
zBY4FiXvmSW)W^p*DQ-v%D0q(gdFJU$#dV!?s^3Ol=P>~G`w`^gwOkzgi#gHdRG~CZ
zjBbq**Nwe@20WX8Lue4Y%tEL7r)M&K=bf*U#l%&R)Mqh5G}3QBJ~cnP=JH8Xd{QCu
z<ZR6I^vLJr-Py%k_}*9CH;J}q$hY6Z)?_7(4^~;fU8vVT*PSGNf5G&Y=hEjJ`o)!y
z_(vJ>6BvjH|B+ZgZp4Fn9q91g=Lu5`+aR|2yD$yqFv{fb<kd&MSGKq^G90K*;)i-u
zaDn1?!AC4;l_$Tg`y@rF1t>$~-rh=jLY&e>_IKgQ2|H<O$0_^v#^2-DoQ}ubJWl^i
znPCAUWiYmB95jYgWp{%~3dV8KLOk~5&xPvAvi>fjgf^Onwm=bbHvsZP{f|h|_NSMf
zqVvS0<_u*UpJYx><BOTcoB^z7jO;Xj7K|UeZm=<BPN?JlZk(J9KB2w##=>fiuajJ^
zQD{jD8>!jN^gPx0D&|zFsY$oQ64n1fy*teo7Xs`rZ2hGFEW)icj)HG>c*B3rX-+GP
zi03{`+dlSo){57R8w0BwRk#O`Vuf7Qw%oN6CrNeprlEStWH9}d=>s9(`a_X7=mt?*
zsvu<f&S<o8#m<5EI4QU0R;^}0$F6|a-t2Rt8(uec%w<@;65O++ns)G-=DfsX7_geQ
zipZX!I1=)yOZooZFvOB7^5HG})m3}5_;<7m4CEbr-vng^M#RD%(Hj)=jhBEzD%Ko+
z(!1+rCmkDU=3DHURfe`~G6|FqtG&+Jgp={yi&xjTaCz6la?N<`(XB}Q>o57<xyBG9
z$qCOEZ!p><H)eM^PqQq$uv{(aH5=%CZNW2u6tn!eZXPzJM4HNGeoT$VkqnK`ZN|r>
zJbcvbajO-;UtU98F;Gu)VPvl3!L@vgt8`qzfgyfICtWgzlo^@kn1>$^@OV?8@aXCf
zv-EBDJ37y0kJJ&VQql(U0aDT9%uLM0Ho1XXn$8L$A+L2qi9??n491XmdTXsP_?z8d
znv9%~_5W;y=##%FZCzSByrHOhOMa`7*ZRx}NbCcP{s$A65KHOyLV4Fz13>cRP{|j}
zljy&xaBCN%9!@b~F>y6t36EakcS<q0zdNQh#D5gI-j7y>XRI^~akASt^?&EW8p?jk
z$HRsxUy+MJ<W6G(20gVly<P~12J5AP9UoBTpgc^AA+&0U60pMy;M-oCJE<lbFLdhX
zG+IpTjWyS-A4m)`Z5*6E&2algEf4hZIac8CR3+$=mvEbRa*o>_Df?R3Q%&6u_~cpj
zyLIdB_@?cu8M`>+J36g97gNyrz(rRxp>wlpYR<TN#pW(x1NhijkbkmSPi5O$QUkSp
zL9P0wwFeb{UYeCOciFB?Z(N1SM!u3_FB%gVF}cf-!MayNuBgrVihQ}=!;jXG?EPYv
zxq@;rE>1Q9gA!x+>56ZxZXNc)e~RsQwYnX4eFS^PD6Q^G-{CP=sqj&c$uey^jN<89
z*ik>@`s@u*+pdHw{t65|F_~YFP~{FKC>5T<oYjca5eo_2mD<?DW7=hcun@aD42;l0
zm&Ch+5<p=)myE6?=CXKf=5|0HE_=eJ+x?B~F~yD!0{0jO|HbM8W{$^LS3=yVa$n?2
z^)fp>Qzg!oDlhpr?-G`HoVu4vGNmY0#u!BKYLGJT@p(ZB@8)f!yinY0KGIw%pT)z&
zVIA4!3SUWrWTy@r$BF>~Wb*7T{=AHz3LL@2DpCPtGpNGjN#2)#)*^q3K0Ti~bFjXc
zy=@$xNN@k6@Y_2jeN?JapG48+2Z!q?x2~4mUlv_`(sjbbuRcszxxzhMx^=!5SM~XP
z+LU$e!ECzIK!u?uuFh?zqLWeO|9Rl*uwTdh*X(~z$2ea8Ie(+_@_18RdmT;H<MQ$f
ztbyJDLkS5_K(r<%C17g!AO{9WPXIuzQAF%8><e>_LE2>$$sJfUO%?$xXst@_2#fh_
zhaQw%R;7-D#d6Ybkm_2i(Y=@xW0j^PvsqSS9Dv13WNlD*S*tU+G{!3|Zcsg5R_FK!
zOH?giqSWQq;AW>u(zV#6&0E$uqd5!RE<iy;J$op+8U(D{Q%IH3;-s+%rmKZ~ke<mn
zZGgD6eLERRbN0B{>+9I3mMy6D+((*W)ih~-^whVg<;R2^hte+dzZ{<CN=W9XhsR{8
zvz={EFvD9D$V`TK1eyEZ+7KKHYyiB1Q`-DSRLTB7Fl1%~;F1Ovh(kve+Ve00T8_^k
zMj0L9+k_MrGo-{q*FA~<n|fmGugq?yp2g&B+xpKf6|i%=*#>zc7y38*USggbGdZX>
zUg$hG#M6txJ6@}xt!)P;h6BM11K~}n+sG7V12aFmg75ntJ7(RlEo~t;IA(>g^T+N$
zmg2&%_4$fYnQtRE&0pdstH{~Qm}C5RN_^^oWLhTkG>ar4!MR;6)-VVu{Ztl};Vzs`
zDuvGX8~B=gHwPr52>LU6o>?r-PQ?p|VZJe2$ZCE;NZ00J+l#?Lz|_e4wgustVEApr
z{n6uxAf~yInxdclAIcvym3e5^;JRic&SdWDjM7Ov-U3@^XGMoci`RaG)eYw|OSTP&
z)m<eY1h%GUx4%08-p~FlZ-_LdX-5--)KR8VZSPw<GU~sn3GwU*C5&@b5Th7s9oSE~
z{BAI!yf1Z5Kw;})mg&~KntDTf=8x2;eBdm~24^iL#@+z^l0pmY!vJX*97mvaY1i`+
zU!i^Q=0@5q;7Vq}T^%~cU)exj0dyop|3Y9O&zh$xIt1xD2&5{c+(XQbLeo8Bu|3~N
zuTMUjc~;5!do<)R>pYT@a%|{n%j=c)vKtXvZ+iC}Ly#BedFMm(hw5$r6&cduy4ne3
zE5#|Vco1?U1|Rvv+frh4h#(e8AgiJzUjEx?a5Kroe!C*0@M!9X^%X&am&9)U3-GWw
zv}JwT2<3gHm!jGSWBGkluk2UHBZ<YpbsmkghqM?(ktZ?Vt80R1S_L^UzNVf-J6>m~
ztGC7g79A{r*T3hhywTIp8Gyv+qe}nJ0qzht8!Ah!kvs+BL`donD&Aad&i0?d<ToIY
zOFJI|hT5s0OK_pp`3T~}AZ1)12U3TOY%1q@Dj#ON_PvA^R#kZFJQ^L$JYLSbwyFfE
zJ`$mgnk55qA*@lMEGeY900_@JPwe~0uryh`3b!bU@15e;g;ecm^@b_6M>8|`9KXR#
z`eh8BKYlapq2oT@2ea0W=6Bk?_;AOM!yzW0zqBK{YQr7!?D7{?YX@J$?%6hyF~^>?
ztD_+=$;a2Y*R{_7vZ}!ECA#zHn%97SNIWDhMy%ZW3=|yG>EI`)!MYj*dt^0PG>bJ?
zB#iEh<~p2fD`+SSGpX1|8+5P{Ss>bo=4J6d$|+pxy%L{-P|w%N&G}M9v&3#3#q@Ja
z%Uu{oHk8R-*o%(A@}CgqNd~ND04obY=j)h)&bydkoco<(TS;_k<XrVN;F;9czCRZ=
zr4f=0YT<KpU)vGZp${Pm2S5UD3=|e%;N>FVtGK@EV{c@PfW&Q;7?W=>3uKJ^@6QEj
z#&9cdqwigE&f$Qd6o-MR_-4DdQ@O8Wl6Bk#{zr**!~se-L1!}AtlJmgP$(udo&*kk
zT6xnJRPDZ49+k~sPivU+mLJvkDgL$d4q~GnxhL_nnYU#<)<3MqJo#Q!FaW9MZvb-L
z|1C_or8Z=1xU_BY?L3zKimDa}^}onn0d#+#?VLP50sQGnV1IjGMOnVfiReT-=T_U>
zSOpD^ZzU`4ClYsvtOT2W0P~!Ftj1pAMeZH~6zWfQU!44i2mJbQJu+B)Oi`ZZ5;coN
z`Zvd>5#U^ZKHUG^Bd&<4Kbw7<w|io6C{E<A_Qj;RQ-g%zg^-k4GcOuOi=OWECS>&q
zYYUicQheEhjR>Y4cFlTEInF*P-lhEalyvhLXbm8K5kE&94QAs~+5-J;B!IjzGdd`U
zj^@nj+j;>6wb355)0hlef|!IY7-5L*@gO(`bmxGq`ZNu9Kn449W8?z!AfRq&^1Nr%
z8~~s%H$wSY7TGYw1D~OcfpVuntc&eTilgWepkIyJ*646+VhL*(in7yXigI=0Qadz$
zpks%cXr8er8j^*BzSN@p7yuk6dfm}L520bW+X5}PMpLf9;Ne?99>fqakQU-cOG9&q
z%=9oZaNG^W=!_ypR6y)8kQp+uUocSP_RKJX2tGko<qJ1H8_PvQ@0*GQoiR8g;I~H^
zr+Aro(`i%Y>(eB1MAD&b2)dI^3WYO)7ZNP%!$iO4gnj3sCoL4u_HDlfko}sYkoJB*
z902Q>S0@+&9~?vI5uDa8w-VAB7t-rK;F+i;a>QD14GnekWN-zl0eb>rODROs-Y?s6
z<ny8zVP}kfPuU*L-=d^pt~+y>teysNat`7+4b>15esm;3Yz}9X#<1e%Q;6ye?};%V
zDuYQ=lIx~3D*TT6E&%2=Zy4gtYhKLTc?}biYTR;Z?&QM|v-5Ihl!K--wgL?J+z>9r
zE{?56kjEzDdKhA2H)0)3z<A78<@xQzIdpL%nA=_b)aCA<r|c19ZfJzdoEhtQ2Kx+p
zM>$Z!X4dEmszMBA;~SSy+8GXY!Q)l!co1P)h-OkV9)mG}SPYHh0@x!{_V$dNH{SOY
zgj_>CvrUp%NV0b$NXj%3msasw(3#Dk<z)>dTzyeuuJk7Wg&Wd|mP<mWO-gh`CV_b1
zI2yE6ER4=<Bra$98$`8gyiQTPYh)<3;ES)MW6ilxG~`jb9rzqyM%GV<#G5O*w(*8a
zITBaiHl)5yoo2C<Iej%Heg9f8OvGHt4+;d$;A>k_Y9($O%~YptfBui8v+!&3d;Io-
zjqV=Z-CerTE!{D?Lq%HM21tq{q`{HWAfbRDqdTNUL_m;`lob5P!}s_66Zd^y?{l5&
zaxhnw18WG#J`tS*tj&IuMr@nGp}K(kEn3pfGm^hwsa#1QaJ2V&o1w0c)e`H}*yv<v
zE%cysO0BP|3_;RjrSd*9r`+{gLXYjAQD};U2<TcUF;D+z7NYed4$5yX^!<^HWUATU
zW--TIT`w8EZ%u)U#uBi8eC3>K7`ChyPux-NSVE~tm?3#GAo-yWEK1^Tj1zWRd#X9-
zPO%NKL()Niz03)b%z0!{F;GZgd3neQ0UUV<Kkhq3zFXk*u)*nhm&q-bbc(JGX`c^S
zL8eU_?}uv;XhO}-Qyr*E?`h&89vJi4+i{D(XA}Ur!9zS`JkCnxoLm}cy#==(D1nCG
z8O7)<*TEK-$?ORTvy9giuoncODI1dKW?dkgpz{ZD=Qdk7Ync|626b)evAu#;sdkiQ
zjE`M+wLN{RgX|NAarlQ00((mWRwf>+BJK-W3yKAttx^m$mdlxXfYsNM-7W(XZDs})
zDc8m|Tv(K|ju-xY@)!HsR<5G6dY-&~{^MS&b^`5xc2BI?lFf*VO>__zdaV|OTx(RV
z${#{(Nkg5f<r(O*T*?n1G?t!kdJUhx4=fQO@CK;J@~l~9d0gs2r(}ofQEgBcf)xpH
zRw8scQ}pCfhWO`RjO$(C2z-6pWPFqvqF&WGiGXaDkgp!<x5(W0sc(PbLEy9o{JB6T
zx&~zgRn=2yt4W<^5_$*EiX)MVgoxmwz3xb^3qud>Re<B}x&>hm_)buq^Z5q@@{n7E
z#h`}7C1h)L2jcpmlSYAdj=?-{&7GX{ptjd79&e$$Xk~awVRo5?5qcz`U^)8QU^JBL
zy}6plKC_n#=jt%oVO4N8B4mmd@vlF~^wRz{{Ug5YM-Q#pVPQ~-4-o0gHua-0uAV2P
znL*@>X4||MN!B-KE&{rZp{3Ri3N-CZi{dkvp+UXTPkJe=76FDHMJr*N&YTbm6c7#|
zR7L?Qa2+Vx|3n!=w{GE~j0zTGe&NJs(anpfp}mmOP#e0nfRATQ8=-;LJ%QgDBY!Yj
zO@;~VGd@=^e6Exe_-ie&&eaDUI+`@cYq7@qZO;4og~v4AFZeiEoC|^nhD^{%>;j-`
z5F$1Gu+~}Qf%i`8yO8&Z;$B7&PE=Bjjh1++kIy8ez>isfD`flJ?A$6|?W8D+QL4q8
zK@w$3h<K@GM81oFhUz{1s^H#C9DIZa+QFf!NEkmHDn15OMNy<n5RHlDnBg77OFwR0
zQ5X(DD%z5&6qT|T3B2*bOc5;7>uEf;>9kiQ!VynTY+n6Y;`(P};oaZn>4MnA4ddoF
zh0EHO!e2Jr0y17}WN;~^3;YQ|M1-~rzq)LDW%T9rk;3b4Z7h$UO=C_J*gQ#z8B}i*
z|D7p?=Za+62ENT``Ybo|zpEyy@Eq`faEnsTEHZX?5#XEqWXqfa39t|BgFae=!r(<g
z@CJ9+pm#V8!7u6E?WWYFV(Rii&$V;E*Q7kSOp)_UR@>bW_cKQSNajKm7~~cl#l{{0
z3XiM{8&HKTeaZP|NQq=8Ir)V4vlr_#551UaYAJ|a6h){sAmXLMsY^cS{kE)}L=B$I
zV>g?Ut9n$JgO>{=Pilc1Rmp=VY!JrXfc}G)1m%YjnXCoZjBpUHr!ltrTA>7wOXLzG
z?j7E?v0F7W`igQrdr?KMbOui&$YG{wRF02(Vl^~cMZPvvi>agUuPYX=-|oo14YWzk
zK_}-{yNq*}S=L$m9Ees_6BgHZoz@!(H~7HbwChh^chLWflo_<E%KlQes%#`PMOMvU
z^&_~NgC>8%rAe$dU!}jvW22?d?iqQg0K->a!*WY6&Q{rmN(D|R012^Lwxm>i!*P>&
zAQy5y1kMpl8CfnIwR72kRc~=t(nl8e)m6Uips25IH9u^<w0z&XZ2D^C{oC@6SIebx
zijx<%rKK6=V>hjXOWKMmM(g`=4FD^>t*7qSRUDB-LCTNSt5k1F$USMcS{|20+`*2w
zGpQf3d1?>KB)}mjU>$ZO)i<0A)OF9d6e?aYRuKsV6f;11eLuhoZpUkWU@K@#=oyff
zt0=95^Z+j)6nBlI0=V4!OQNpo`O1fmvjBfkI!H?}q^C7B^q{9{GT(8nf7`WHi1pD2
zH^hWH6*tmAjFra!Z&3E*VYk}hn^q0%UwM)IRNz-<tCay(hh{DWKBA-r&d91*;KEoi
z+Q9t&06zxw8Sac2VJw++3oS8-5~z*Vbfkqj7YG61UEfLDJVM6equ9$>TQY9iU@PJg
zD;oT)J@+HI=w4T6bWUxr003&kUI&~PR<qB`2fYi*-l0`9nC6YxX8EdptZ(b_i2;Jj
z(7>NJlJ26uQ>5K|(ZR2Cy5+pusdxlA0fu`&MAD0;b9$ITr5eWSd{&@|C<e?2u8SNs
zrmS_wrf)W0V9+)0#gxpc6(P-V*GM@UR@=k#7sv~hnmV|e_ugQ)D`p7fVkDyY`lgtR
zy%)^ws$me#q+BMj%to((_+rFJC+!+cz%%iFLqHbDtPEV2Qm2#er3>$2p97A!=fPzp
zC@*l7|By^M?Nk(8)C|Scoc1D1g(Cj_YkW?kMW~H244oqA$Cl#{X2<a@-0H&~P>9Qy
z4_)^i+O3`LiAExJh-tpn0PWSk0>-<d)zp4uH?WESBUydQP{Gb2c)MIc_-X5-wBQvc
zid;?P;v3oZQxIqQo`~zl2#Ct+<0duYZZ_Rz;n@}2KRoIC+QY_xQ(JCkqCqy!{Q_<W
zloU`8{Nh*zT$C)lW!vygSqI-XE%kETS&^4PPTb!;9)_P9MVgjxkxZ6w&S8YsNEf55
zrKCHh*!w`-Zqk`46ftU#viwdy)XVXgX%3db6=Q1>cog^jj%ys1TqTqXz-P(bhLvD=
z(glTjhRPQ+hvM({YXoWxd=^*CuRq!~hHBowDpLmXHXRcGc@krWDSdssv3SGFU-xDu
zo$vC2ySaYDpOGz_U=Dq8-hWlG8VgwhZO#TL{Be~SnYQME+pR;BZ`PLd!)jB@0gq%z
zoUmOPRaIGaVoLh52kFz6%Gv?aR?QS|3meY}8YAQ(p#?3y<>*Rgeym|G)n|uvSQ%n)
z3^^8?H(+Q<kY&YN=t$09;rWteJ3Y>s+=v*HrbE6)lgkX-)R^!%q-_B9x{w=el%Us;
z#h<6=kKB0aj@KGX5Qp{Va-mQ1B?}z(e3R7ONl_!G3;k=?<)5XB*}n^qiSo##ry~}v
zmzG@p)xfPd_vMyyoREcpCmd(-0}{)}yg;rTZ%qD@dWT=TGn{v+MS7v>d}eU)r2=Ms
z5V5gCU8=2XRHQjt`4d6nPBAwg?Rm;)h%;c=iTt^7tHn!MY=c{#Y4$Y4ar<^kmjDLI
z;N^#z$SQ3%nPS(WbTPjR(d8E3m&eEJ7h(<^_6!6ozwsjVUM`Ej>-@sT)OjfXQdshE
zF_-m8(1%zw10=pDr_`wbuLGyt%l_DOx`wgIaoT`&Kh7+&a)&SMO&Y(-pZ#4PDl;8d
z)A3;<W>2c;lZGG9mlo5u9VY!l&t)dAVcizdR#(9zRD!Rbrc45Vda(mGlP8r!557Vl
zWmr0qACvX`>?)0ODtr&z-<QC2d*@!S{P9SP#I3ynJ!4ceaenH@MTPXZHKj5@Un^a4
z#!`dktsEZeg%`)5UD~+fdzjNOq-;rwuI|LQb89{S)8cX`i*;OWykO4+z=;KWiQ*FF
z#fvv$V5?U=SOlmQK&}OAFT&<C`?$yGDgW7wrMDy6O1@_n!DsR`VNIR9(B;oov^j1K
z0p)1p1V2VrxAW&SP7ncJ>Luw_<a%G^IORv|wF|s?dhNpyXV!7P9m8s)Dfs&T`*At1
zy_I=!IQ5rA>XAYfrvXTe5{se|x-2sixf}e#Gg7#^s=A|E2Td|6T>EZRS){JDy4^AC
z{a%MiL)Y~+uEy-2vgo@3Sd@Ro*WCos<_YDS{Wm>UL}IP;c2Q#Q-GuVRK75P3sk56g
zCKhks%8L>&rj5oss_b;!h<EniCXrfqo-ap9d^)wos*@02jY$~&AyJj=@twS3D51?n
z@g_67FV6J2B{tUDQN?00M5)S^aALM>tY-*qcRzwSEpeZEM8X!pkxy~|@oz1ms21sW
zBr^W7V`-mRdB@pv;Q%l!2L}Wb6maGaaole{rIFSddN;(`y>$AKq%v4;!6?ZaVSVHB
zQf>^Q5p|5yiN@W@CHLvL2sp}2)IT;JtAvr5)c~;>UYlt)<WU)0y~Vz^$Rr{WZ<#kB
zfdWZw{66sC3~|TFd7DmJl&tB<^SuCzwJDot)Ia+-zBznPi(}{AGH}3xNcA;L(ZqZX
z1qfn(3(nk)6rD#M?CH1n3vbp9!r=<tp(;5Y)HNRhFA0Ra1Llu8V(Xv;{8s@41pQ#q
zOwi{C52%O*bR`%}1yh3m5tYa}+nq0hExSmCWS@Pu$SRV&B<AU_16=bMo^&o@wdC8G
z;2;|%1aYIQs_t>JXv|%gt*sv@Sh)sC`nU#)6G%>$m84-Kqa{;iRBz^NP?H-j0BT|p
z#nHziJ*URRJSXj~{ZuqEhQ=ftgKue5Bx&R<`p9|Ev}{e4acNQ|I@;Fl?DZZA>gq+r
zz9`WD_Cy>4z-N_{%2>@Gk2+zCnv=Q@zH7cE&ANu*1hs_iOv!C(fw1$>Af}wVLuB|W
zn1Y&q|7qPV#vw(MamRaTTkFJE4%;(92B+f=Tz@$}!b5*?Mf0R(4Qxb&wy2~@WNyQ`
z2_0+H;{aKJNI#TzIGWT317N7t6_kN<nbgxX3eA;5(g~7i6o|*fI?e94<8pkBL$WxO
zsZ#fMJ$U=WJ10k|Qhd1h=`cCf&L!ZyE_+(((hMVqz+jnPL(4sW8cFSR6v;zbjC36L
z#GNjJ<h{SCBBhS;<7%1L*Wth*@w?_6*<qHwE?VaELr|13;Enn_xDJCPn4ZWZjZx^W
z)I0nX?2496lqik50xm2#7nBi|QZlElrytl}O{g-BrU;z|w@0I(F2!REbdo?U7hZGs
z)*P?x*70J783^52|0ya9CC?WIywxc8Hmx#$4Jmj`dbcf>7bS5HYJxy814m0LPK#p0
zSou3%(w9LJ*gZ#ArTuN=FGbmlBbTG<!VI6hdzYw+_wz)2vA-B08nY#l^tFMiy;gA;
z6p_O_Vds}i5_i1hLvMOnv+^Q)H|5z*E4K!%r-RlFL`(mr%)iuB`$bJA0_@*&YkK*2
z-(ps_1FuY9{rE~tr=`QHTRy$v^_N;d?;E?ZH3kx^)?dXN!D)B=w6IaYHmkqEm-c^_
zX`!?=p4hLmZ<6?$U&aOmWgpvv%Z%H0IO`vxrD=E!`O>tn^mr509UbW6I=^Ky-IBwW
zSKS#DO6=hhCQ128mnEg84RXC?7dwEWKx!1v>qYxW)C}Yoj&MZ{=2_}Z$SC^)Oh^5K
z#kvv&Gd%9ZM-#&}al|l!@m{)<SfF7i1)a_z&_Q|g0M?EtZ^$0Zv4M~q!<mUY!=Vhg
z73n<_Fo)L&SWp*3s7gge6kH0WlQ%NnmjriL*}%jL-jE!(#J&Z^4OtvN+@s@k5m4ZN
zMBWbO;aT6}y1g=S^@QX`g?XCxi!r&m|K=>JCF3T_9fl*|#AVc2h8DbUOhOXG{n&$A
zF!GuFi{8AR{hw05z5qN!iOBX;6I2x1XAoJxna*jpxXl0b3d#eD$#2<4_&Otc>E+K6
z!L@ES!|MIDMCYZ=2$0e61KK)SKv9*6k3mo*=^M{x6AYV|<7o$HcWOvJ<a9`>lM^gX
zog9*A6!*swHqrH1ir$^djYkwYXZ}fA``%v~k6%iRAL|hfe#iUlI{Cai_>$HGgZpK;
z43b~xdRpH;%D+lLeTSM1-93c68zQ_u1=e1)9<c;dy3PTJ$9X*})H49dGwTLayXXe`
z$_#16a^2uJ=0*P(Yg2J$V<qNC+6e{=&6%{p$z$!n1RZdQ;37rmV_hKQG%`S<0Wt3N
z?5r$17b@O}2MJ;a#OD5byhQa|T+k%b=&k{ou|SP;;KeN=Cnv2;<1p2<Jep$)r^k+L
z@3h5Z+KO?eBnj}W+#ZmM5>oiUrehqz|E*`>Woj~W)EBSdQ2xq-tuIRG+2VSVY<4Gz
zyTVPeI4te;2i4LvXZ&XF34l1kocsx)$m-WmUaifJeqvbkrVA&yp#={S9bN~iQiT!~
zG*+S~;i#rbNWWXrNq$)8_8W>wCKD&gvh9uCqoT|C?Z$KXmnhBaRVVxu>-_tnuEUqk
z<eMUo4s<D1>E5rNH^i$k{52E(O!$dl-9Y6v!!tC9e<pS3t<%}m8|P)qH>8!T2FKse
zwlM#xY5t>+15v%%u<c*FTL6wpN7DcrS`JykpKo_wJIOwE+Tr7v(<^-H;v9X&W>?iS
zsfC?Nj00A)-)$uSiLLR;;<or!H<;lB#z+#2yDoA*oUhL^0T@dRc~*rc+nlAegOCw%
z*%}f+hpqFNQ4oC$Wzk|kqL*MArD&)L>x_N=8bIDMMutUEE24xYSB4xNhiwgTnJbt-
zy@#EQrVbCp{}!kivb6UAT>Y1rJmGZY>stN2RMlWMnjA+aSM3RF@y%KDw$Jj2KAxYw
z?0Tr|6gbOg*z!ESxU!Fyy?{8HTktn6UC3)4Dy?`fpy;j%+dYl<BY3LcMcEFqe34qB
zHvO7&eXRVhA1lE!h+a`&tk@{m1EZc>ao-Jw0`vqqB>vzF{{mb9x)FWC&J07a9BW%9
z<hXEcNT_Z|xN=Vt{aB@PgN0H^%R9uABV_LV=qkhtvTaOR^2kQ>h{HC7**AD26FDo2
zZ#ePtrnE=JL`QLXLhL_Ci``(=rO`&%`y}S@)FD0?TnvVe16o{}WD0%;a3a@ujqH`Q
zXQNL_#G&TWI9HV-PDV0j;;Z$^+yS^aFWgl_LA^|>f~j)^u61b2;OS1kFev+bxc8+N
zH4Op#Z_Nkw!w(`|1)pvF-T!8y{9@=StF~G396`AbXMqffmX4U_ihmqSV+pLDtF@(=
zWe>or&U=j<B$iwuB{0^Ad~xe^XOA_3-l<RB`qiZ?oF|pk>s$EFgFn;#&B&tHHali?
zS{R@zgOWz~QIBs@$qv5wk^rH~bEjE8$Cl_!!=+@=MBY&6lCKPg5Q78&t!<{Oe2iAv
z7DKHEw^?CN8o%r~udh1VmxjfUX4A1~kz1C(=4r+~DF+fJ2No(Q@fF4We-`4*8a~`T
zKGj=33-ADSJ98Mo^Dx)#_fIWvey@L~!OK*SuNfHGej-We@A)Idw|Wn*)NNO@!$US{
zb}B4w-r5+xjabf?;Qi_6$xUjZCECA0x|E=8#i#RW+Ifbxn|z0+43*{b*1Ce;(RVuF
zI#zcMAK|L;lwZJ&B<A*+HXXyCZDaLbQY=>~J)#Hbfq$BA6YWhhf=c*p?{3WRkuE@@
z=*X=!*Y|M8!l~G;(Tr#spy@sXszepSd&mk<<CZAG6c_2Id^Y!zZ90nKI|)p|depLC
zl#jLF56}p|BTMI}e$KbjV`Tr{b|icbVBZ7a3`FOGOyOeaXNaD-Rd945K`#FQe8j2u
zH4A+U;5e6;;n8Q*mtoSsEE0)BhGs(2?iNTGKCMeLe+Hw)B&=#<S0XMP@*<CLuBv3K
z0>+K*2<S1Ke8V5%%uAN~vL8fUzKe_8D|KS(<l18}*`sOnx^~%vi^lMT>^W@4b{_Z)
z#n~O)z0tC(x^=D>s)NL4!vNLLS-DJ2yhAnV(rzTfX2oDt=(KOFcukjFHT8HI%|qe9
zPCQZ-<v7ZLS}v&7->Xp;=uqz=8n5EstuBHNzy3WVi^*yA1i!z=yeEm(3i+k*63|95
z*!GEFnW~672fjq@q7}fDYKHyW!q}S*0UZxxRky+kYTJ~7?fPDQO?m9;`6RL&{|)C0
z!l6SxjIEfJbm?9DlyV9tJn8<-8XaN^ftpzLhgWLQmBfJBP-?s8y(Jpr5ml4?Lez=7
z7Fa7@B-}|IG~2|msdm?Yn9Sefvu+omQ^fy@KtYBJ$aK@e;cyl@yCJRh*Z+QImwcY9
zuD*4w!cT0})~KV2`?Gaw>+<b1Cq9W0jAL>p>jDDN3!{L=$N<BoJ=YgzytTYKalQ;T
zY-Ff(m}(uhnb>Ma-RkdvlIwtS(BVSp0YUUZQIF7uQ~c5>ixXWPOjewC^Wf{xeRJ&t
zB<xp!?xFFPh&;jJ+OvAz!kTsYzMX2|VWjv@DnX=c%s1s~RrMYk5K|5RUNA)PgNOJx
z?f`O4!=+R)_wgDPh?rl9`1*#(Q<%gS{}GL712A}t^X_VzcbaU6s2uCf+QgvT*l=@b
z2K6O>`P=Li8fVgvG1;<vo{LeITp3~CX?RkAuB)w=^%<dNaT>2Jf633UDZpEczuoWZ
zKOqUoUL9Opav%h!b%+B=sDAA|l9<SCG+dq_DS(-}m+Uyzxv6dbv6|BimSlGlT2BMO
z?)8!6L;dv|*<&T;*d-~Ok13;4sY+qgZ+@At4~$$KhDXLufuO;M$MJIsgt|skmW|YJ
z_^BEyRK!k5<=$Z#4qN_-?}YCXzOAP}oz|+Aa$264UL9oMC^@(XWNzL))c-{qrO6J?
z(Wa7!bJd^}Db))3Nrt3p)B^D6pau(PJBw=26jDsdlJ6EI-{=QORQGU9NnSA=(b7q`
zPw;Y!NE665@u;8~q{LkB475vJ`1wJ``(Tl&9+B(;=KWeqnHeF4-#n)hw<ajAyujaH
zle?M(#y}PzNoB*Ruw=8OWDJmHhS-BTc#Ycsb2k^jWyjeA3-GAah)0y}hpt3c^*t~`
z;8pSDlRy`;$u_pw*e2^~akynHKDxDr)LzWQhJS+XShK$$<UmQYw)yVDmluyGx-F2e
zL92Zrz4zShhY3{qZE?8h8H4N@jjAlYb_mt0*>^=Xq*u*a%Q5$wPrtFI^4_V!HR16a
zNL86LwW%_>TXh}tv+ozDf~m4}D&VI?XS$axPpax+<Fe0kPK|OfKJGh;ENB&ubGFCX
zx<^ugq7#GI5M#nerl=+$QZ_KU`k>sU^1toVyc*Q#EZndKxq`ffcURnb)<NNqVJ{xb
zX`KsD{-zB+&tV_6zO=Xb&;rB5dm~X~Yw=nd5MDAHd0HrvbP5U9`jI(%xp^d$AZPgx
z<D4Trx*=R?rS)-7SGwjj_re~eB2x!H#k4b~spEOuME<8%oz{X%5=gYmLy_YQEj@n)
zGf8X!L8qZAx_Gii07MlJ8HW4$9-B1_1$=#v6~E**1hW56u!<Ts<6$%v<waiVHNzK4
zLVw-~R)^tGLwL`(HRI9~6Ssq`!UT}}zV6pkVjDcz2G3NMxbYAkAb~M7f{TWu#u0;5
zl?n`<RN=`A5#4y@4;Ow>h5iP@WWjiXXh*k?w72N^%kb>5pY8Jg3Rmi?;j!_Tsdt`L
zY|l6(kFX_7bVt_G{ECU%5juWJiU)WQojZ)9$Qn^3jVR*E(ol_<IF4|PpJGgyX1qpQ
zZ2VQiDZ(vBF{uHj$8l(Y{}4U<fpRtMSxra)QH1~350Cw*!cISsxlghl5m6g_HJ53R
z(upHTP)t-9jOZrFd#h-5{|VYz5yLUMMztGa|IS9E_u1v;^C97Uk#_cRR6IunxAtX-
z!kf&gu&4HM<G^czMuK2cg@-I*lFeaxi*n8XdSAI+J=^_5dfe{ZCzCdaaj*}QHuDgb
z)!KVxT6B6TolZd#5`cSB%Wb>QU=pge9(rpy;sk{QpsI&wSB%VEXJo^#Ant(D9=NWM
zkPl0;Pbr<E36MMok4N{i;aJrRFy@`pnhs0Fs(2<U%tDG1A`|oB?MH;}Ucvd!hp8#%
zkYbmW-kG%=kxHmSCpxU_&ppyB2^4{pZmh;I3-uEfVH-Y`@wkoOvCzXPeO5F!5%YZ?
z!SNT}_v*7=NKDv&z5TD$wMW2%GC-}CCcJrH#!X;n4VsP&L*JG`e*|Vq=z)(%J%UFM
z`Kb&H^$n0}z&kZ+p2f<NMUU#7Y|(Y{VbwpD=Fvw*3!+p%3dHK$M130DH2d0V9)Cou
z3FgLiN@Yez)wew@_}l8+g<Oli^{EDNm1)2EI33qYI?eN9U`j(xwEv^bkngsS)Tb`r
zOqEU_@<q}<Jn5siL16t5Rf>8|)*|zV&An4{+>*4FTK}2;`2HKQ&J?LqE^ffbYazc$
z`l7z~>!3E~owJrz!I844i?8hC7RIrb?phx~!be1D_E`fV<M9!5aWBZU4~B$kuK&5J
zGTNWSMGfc7RBPJ?YadNPqQ~zYV+hX_Zi9G(Pco)tYzB|N4l-bMfdAb)y%`K^8$5`L
z_h9Wtvg(|=Ehs6)+gjYlwA~um5c=hGCjfMcYlZ~q;t#en-@LkS3+Pe50~B7S#+tUf
z%ac>Sb)haddu#0dx_#I;Ir%m(Ub=#_b5-QdNB(9$Kp10qGB*<#?bN+}`QLLq9KpxV
zp~2R#*^d|;?9O1;8PU_P=8B=q9yOXYu8WoAd(ALqHfug-F>gF<xoB-O2!Smx*DvAY
zmzPx>zB?no_i7CEul-nX+rkqwQD?)FwtVI?V05oiC>fcF_JWRsPd;rvJbio?a{lCE
z(B+Nmk5FTZjEGYL>MYvCsOQzhye5@`>%htTvBdNpRUf9;H4>=#_@fzvK5M2h%LQ&O
zeg2_?<<d&!6{;#3NEfoKcmFc8WsoD~F-aFD&2Chn^yF~!%k1_89K!sIDF57!X_?+@
zagXJ>D(RA>BI9zq`8~_qTHDt26yd4wu{0kr9=bEJ`|Q;0Py|t$y5@a-68&+p^#C(F
zF;;z|UVE(u2GZ=mg#k0!qu+(m));!0xM0qK9x{V;gGKR-VJ)h+1)WbUJyrd`^+FcE
zEP85_Sk!uc8_SNP!F&@%PT0NAsAnYSyuxwE5fT=1M(diof-*>jZ063*-oBF{mXnrE
zyyy6eGz#liN%gMeMO>SJapjdU@y9G$X@bIr^iTRPU{U{BhV>RDMF}5oy$v~xd&c=+
z>bqA7n^_+X6N$}&>xd!!Jd~>ZAX(6TB&TGLvISHY2mhI)8;lTmA#$jwb}vLj^GB8m
zK8EgI+e;!+DN)P--K}r!2^{R|4$`7|x%QBlR9CS_OPja94|C8V@_>}oQ5UGrr`Z3F
zh_=+CzK>tFOnpeT?F`dPCD9Kiqtljr9Q(D*!gYYb`K)AAShI2+M;xH)63b3*vNld#
z3rwTZSVN2eh><z#u{30b(n+vWcvBn=ZXHfcTTfja$GqZDa$nm#xa6~*F{+2y^w0Do
zO2~$YdaTwtV7`x!Pw5G<<bOGqiFUc+oN=mOg<3!DADX{Pa*TSiHIKl~V`eY3>C0?@
zF>*LFI`N4RVgjeiVoL%31WRIX0oE)^kK1s39!%TB1MXY*RO)NMRJiO6jDG;^6o{?`
zn(4hX!9kdA4Y56ODwB0w-}o%T5vngFWSCs|eja=vO8g~PGBfXsU01r->saEzZT9Vz
zrC4XcI+($i2yJE{_0-y)_3IO68wqx+Me_V_!}AFRUNt>S-0q*`-BA#JMat+dY{n$F
zXRu2>9kOyghQIT_*@Tr4&J75oI06MRo6K>!FF}U_>icz|DD`o<$oGlw3KQ(p3DrN(
zAO0#k0FOlf$zib)WNWuvIX??@^-9>YO8$8<NWXoA;B<ZuP3;+A;l5d@NGGPDIE*3=
z0tc;7j@)|p5by>~O4>{$0y<8^TP0ZnMo&;r^;a>cm;2l^hh2VZ&c`hYv*ykvkoi|S
zY#ZFSo=07wY7qjxVcepPerRTk<Fd0ox3Cz9QN^3)gaz{OZ;yFKgYpx4UJ4dPNUT0s
zO;~yO#3ACxUHj@kVzf2<N_EB9=Z9M_S-N$VmaP$~tqlGSk{}eX^#QekA$fFoS%Kk-
zK&D6_$r)Z~h7Jg%x4=Vob<}B-utcO+1+@B-U^3WR9FqmSh7-Ve(*gu?oq?id%LRzN
zeSx&z<3zKT>J@Ru#6-wt%CK0CE+Hi5f~Oa3*A~mtB#~s!yFwdm-OC}&nXts&OL2}u
z5p~v(yNV_g3Bb`@`^Q=`{oHhX2|RyosO^#CYfRZT+UzChgeCQLL=KZQam%}iTL;y3
zYV$UJR<tBZi0F^Neb+&`KWWdRd4B|ggj9^I9+9JJOBs@<5vXyvv31$Zhtc5?@x6zM
zeunNmVnl>8DKi;o_FNylCA*vA9w}t;meVwO18#8AB(x^wm(@7LZW}tc#sS2X0x|kE
zSEuvHcU&TSEk!u|v5{)B=kTx)4^ILL8hDqW`>~@#fS<|IwZKr`Tya~PkwrpHJU`?`
z;GW5^=N#B$6i<;Rd^Q<LP9Y%mR-DNl2wU)V#cSlB5?n)GEP_H%0JGnShudoUi7O)L
z=uCuQb9hMhI=;uj4$Of3^|-3Z`kUq=>u4epDu)AR+FhIF_(Ci1{Qs+ixZ-yt!*gYF
zRKS=V65gtlGlF0&-qZ^TyoknA@aXPZe%}Pr8BT!N+aLsXYcsE5E<m9*A97Dr@taSw
z73}ndB-}2sjMqceHslL>U-K49)ZzAWsGjRAlld6O`FqcdgplM|_8#`yM%qWaMiWU3
zW8P1I4o`j=6{1iyZJCe{-Uw2QA7=BmaA+cZkFQpCbp;IguFz3b-!hVUm?E@kN+ri*
zDpGRDH>=r63vB<9WU+YiHBq_RL661I(pM7t%F#L}3m-{KZbhB9s^_Bq$tDUk`)7J8
z<o2o0SR7Y7%-S5!YvEI*HpfYepiQw}fBJm3d~Gg!W)!8!t>gCSkk!JoG(P{L90T@k
z8m{`1I#=>u`<Ro%no3H=YO-`Y6J+3SS7@R{?6!yt_fmEPd0-H;Gv3*&16|>@6!g62
zkBouMIDk7GA@Zi0ARdN-CMT<>F7mq319Q#h$}zsSzwA!Vt%ynQ<vbDqSiMW1*I|)Y
z=TE{`9)WV634}@|7IL~`HWd5pj^EKCMa4l!R^x8U&0EU`ZY)Dqq+-VJXtUl|^D$2o
zt%CAEHCQ=<kWAvW(?PHeAf}0oT8}pez>^GkNkdx+4PIv<^o^YqoGaE23IURby!9qj
zxR%Cw%JMvbgBfj*Ksr<|4QIgiD`|vrSEU9q@A2*b&eKtmGv{C`$?weWIyIki0ajkY
zt;}qZ&Z0;}kqMp>qKU8fK_V2$)&NRr33DaTLXou0x2Tc&#qJ_RV={b4fVD&Pt?@ZX
z6c9t0WDofS4Q-qb@YZ}lIbZ!Otg}WC{hNOM3nKI4U81DF6En+~{tRIE-4@#Ozb$la
z9;DjnN7Vl|ws-<C>v_=daPelvXW+8q@*pt$?K<#oti+e99mE6)tcy#wF;pMi)kGq`
zre-M)2p~@!S=LtfoLt^%9PHSAS6=+MAlo1~?enc%X5oQJ70B)y1i{B^ic7SO+KMa3
zGUopz6#y-|IDM#hRQn}q1s@(OEY!bsjwI%tcFLZ@X$C)KvlciCgGD->Br`t!yiyUl
z?1y?%cmHCuw*GN$Au=?k^xIy%^UcHMdqI!#zXBdU09Nb<0zUp&2W8yr+t%prl~-^%
z3s&km9=8I~XNFAZR{~2Ma3Dk4o|E){n=f>`39gWMQs!4L9m>G*uL&JUv?b0xRB`(Z
zl3%|}A1c50#$sBX;cuuKL$<e_!j2v~X=lH^{Cd)O!~Tl7r0Yl2sMNS8F0tE~D+ajl
z(EyoUY?mYu1(HX~g8!#04Oigy<7*nr`zxLN6a;4e!YQDet7{KnVqyn-SJ7dCT<AB3
zHC<M|aD<A0olo=KP{obH^WVY&hhNA?s`59}06vl^Y9<)C66{igMxHRN%W%*xA=otw
z&#Hg|>S|HMvQ4}6gtah02Kr{Kjj;^FL`MeW1zqicpmcB8PZ;`KFaibCESbF!Q31cU
zUhzyZF>?{-*=m+rG;0|~c_%G}6u*U$bjp)rBFUw+Ks2Ed%qi;AH|oEL`mAR1cM@b}
zni*yN%jM=IEWfZ)sj@3s6yGaTN2sVj^6g=)jk!5x2vJ8gnHI1T$EBQ#N;YO+n>9$u
za>&ian3gHG4!2o}z7iX+mui8NwY=EO1;9|4*&0x%il{ZH|CS`HnY$+j*AI;vuqL2H
zmMPQBbxCP}lW$Knt^aBsCk!wbXc5(DUG-==&UFi8@tzJ94*Pv$$d{Quz=b6Yv8sY1
zYn+b|JYJt3Fpko1zt6Lz7VM9Sw!rv`XxP?hsI~VYI`db4^>K>!t39sLEE^!}9C+BG
z@}gycyHWd|DmXq5#lG2-|48uhN_GgDq?9b{S(FqmQTL|{I+PbeD~PX-&<%3HsKmso
zei3Tl%c@ES5v0&lDrWF10=c7rKEwlpZF!JzGy@7;=ZcoEjA5t-&k)I03xSGPr~%DT
zK3()jGZBGs7M?Zzx*0l#V@_(AMqNjWg)J+opjfM@81uWg!RgJJ)WFnSeLPx^lNUrC
zoF#lqWN^)_@x}s#qvNoydDlfZCjEQt%{WDkEQpbF+>BR~ExE4Azi8|sX6K{+kZR2~
zC;A}*q4Y!j-P+hYi#rRi;b6!()#(s74mfgF)O?0%D=-k7HRQiC;2|=sB4}*z2fbw-
zt0XXbq+k74ACI{<RF~3ft~E^dukN6p{5>r3S#=y{p>Nw+#%NRENRS}SsyhlZ+^7<C
zdsP0jO!;`YVL%jA8{K^mX;l4q^0(-#ofYz?*sAiBLjRu0><~<es=h?q1Bp&D8lq`^
zJv1Orqg7g8F&qu>uM<Kwf1xd=488|=-1%QWj^rC19lUka6f{X!9Bl?VB%8W;WFUNt
zoT3NiQ{m8z!=l%<#<YD87|JL8T9U8GT0{-I6KoAy`(@*Wr-5Q7v(d71A=+1Nn6laj
zA5Es2Gtf}B8QRXtTUO5HMtL5^Ozj!~B>>K=ipQ!GccRt2b1<ioLNxnYs#hFqz{$SN
zcjTRMEH@1o(zClG`rJ(Dk7ppJMjgIkbG!C8!g7;;3}fJKvwz!Wjg)|l;cW_zH8DQu
z)KZcBPN7u00!B&WcHrDTlX*6*=#k(@*ffSx3?nr+7qf1mEQe|YnTnkPG%e>A=q$F}
zG3NaSp!Bvo=zGAYFKEUbOk~N;G+!LqZ>%-{fKOw}bzal4&YI0Yeg47w+vRK>Bi*Sc
zOMcFIo!HrX-$s)n&AHcR6S*G*Pt;pkT3JFqR<X><z^$yyJAN=t{yw$@Gii7tteK+G
zgl&t;ji^eI+=IUZ=0@{dBpkeSYylwaQ&mfqu9s=5bM8;8F;A?IQPvUP1R~jhQ3H!d
zON(9`c`*gU$xl(y^GoOUw5f8S?^p8Nl4zX$gqJ@I>|qNPvZYV6l?&FvH?la2Eq0_(
zX;^}u@Gb5zvo9Zih-hU=?y|;C*x2raB401D1XN}Xd=}H~8oFL|?Ha1&)B8|t^HJ%G
zjJd6tqFu_owHP*|8H4^h-Mr#&WwB}I+Lp*TtihX$`5FWG*!9)^c1=dj1i+|k{=2I3
zI-gbHKf|s#dN*b(CDSrNJnFkWXpp?j{4t1mIv;*MA;bBZI~c`)1yVMmv@_6u9s(#8
zMP~Jf&(qAgb<wcXERj5i<+0R`F8hxY7#BJ8lWNeS97Za|@k{wP^H#?~HO$1p%2XHg
zMAM4!8obIcW^Cm?6E^R=C}zkJvqEpVWC{FI_)V!i^XpSXzG;Wa^A%#ix15;yojTBG
zKF2SD4t(CLd~1%Ka*lSpt43cIrV3Vr;+FhaoKE<h-7GOb)W%N(K*xNmCzjdqPbYs@
zt~yVo3dv&d2lGfZ%LD%gs&A{wyH1yK4r4yn5UW9RqZPv2c?{^#nc#)ge;#Y$PmuW6
zlz9ZgB$K#L2TK*XYq2HE*jyJr-Av{+DU8XKAY6y@f|1QCjr+Y`Q@&I$#)-de&1(5g
z5k35$n3F9p`B9Q4QK$>c;0AXBlD^1NdTg0rusN;H?vQOGzSl+k(CW{c3&*5J+ZR`1
zEG_*p1Gl;TnP@|7h&`g6*bn=%{i$eIr{#PIh90FTdY#2=lPes~5~!7af!U<80MQ-K
zUfbAO_qj8AVCZq;l9h<lt`)&7F6RAtshC$&nVaZ=ls8<!EPsr#yv6{lyF>f(){L9R
zg?o3|)?o;TL+A!$I(aKO@((ML|4!pIGHyK>i@7~UX|<~vFKpTJ)7#6VW=K{=M7CV+
zEmnO7TgZbf1HW7UqZc6Z68ERq`Df^Th>Q_?g{+_X^U&4xg}zw0*Gt#MQ0Ob0e;BE<
zF((gqq67ds6`=Hv-Dl7Gv(l73f04(k>WSt$C55E^#cbS!r^`JT%4ZLrW_dE1x}(^=
zG5;v6l-*%j`dD#qRv|ZTPM@JJD*_yleZr1@;T@TqkFmD9Z~{eNb(3cxy})4+HJe8i
zKdAMfTWx~kxsyASl26*<4&KxkyyP_(wJgQp#?R?iZRzbd=#eKrqxsBN+tYz0dKV+h
zUm?Gv*luuzWl$CW$aEnijKnDrY`-E=RK7i7FrY8q*6nl)ZBlo#`^M)GXryb<3Kfh1
zOw9UOeUg0Y;{V9*3&cBy%3DSS;;}go8u#E(d-3Y-`6DxNi#@BqPXLIia&tukHJG!{
zUga-A#;Pc}ZzXL!=LDKB8kTDLwe6DM6Y9#i<e!kc9a!;ZaClMFypUWTLlmyZ`*5GT
z@<6%kASmL%rpM2JVV^_RDNz2W@AZBFU4Y*+j}`uXzDkzi`l+6IfuDn3{~a9ssy~E|
z28tn%x(9Zm<pJ9-ddv&jtbW(-JMhQWdwk1k{&6Ar!w~tBqOs4|KSvGx=R*B@;roqe
zz{QE*zsadcGq-`z6lHT1T@KBse-*gfQvfp(7OxJVL4kv~1|YWx!N7d{Zo$`_06yKr
zPk($Y#{FWVoxgv|E%;B9eKyD+a?cC&$RZX?MCiucu%{*{Lormk%W#nNbNfBlZ>Lx^
z6~_tRvdN?V%I%-;-fR0i1=wRFzm}M6(B|OCrn3x?Xy&`p?J$ZNpZ4enfGjxq;tAir
zDUfvORPBhGSLrcnIQqq*{*5I@sp0Vt)esd*Nv2@{5mCtVo5}npTYlWxwFhvD{^1`u
zfEkM>%K^Y<Ro4~*iwa96O;BZVIV1Ogq~QQkPD-Vq$C{M6+BING@0PFA)u!(~tv5m*
z5S}yY`pbtsc1S)|iUU&Qpd4=d9$oI98{eLpeE1;${IOeuoxAmg@!M+RB|wF1+4OIK
zMMKQ@7e}7mRmNig>*sfEgczW6@f|$DU;?}orfIf>Tt|c=883V!LO-Hn{hUJswnM3p
zFU%i2*{9eNwmG+Yeoki|0(AcA^7g{!?WtC`w&8PWX6&mFaZprHV+wRJi1Lzv^j*MF
zD1%nGFi}K|^-;pb6K~23<eyVl+7L)5w@_r0B>wzb_z!xhj``}+-^*J#I6Uiqu%Gvt
z&U3V`^GT$5_`~PNSwolJivsYs5k*}ks@tdcx=(d~9r=#3*IhbP4@J;>MXKil8E`1V
zHUM+*Oudyz<K4Ypa@4(BfwUbsaEe?EsVwrjhyCs<ATnF5C``5_>pW@dge~+sO@ZY>
zJb*0RsR#Q9P8j5s9$oXDyedATK7N_+!=BrNP?XM(p#I>ox8k`CF-_a&^&f&&W5B=L
z8kxgsNQY4i7&JkL-pbBQer0`3F_1PvnP5${x3`7zYbw#2jy2|0ae7vmh$U<_Jh(!S
zUh&_~{hZx5<{<mee3A(1xljD{z@u)<U&6r68!-k!{dcTSOrJ4^poNIBKqZ66*}gzG
zp?|-028#FSC5avvgBu9}7^}KLyH1lAysnxoz0!Jpda`J8+gIM1md)N7lw6+^ETjvk
zH(Men0^^S@=pJHjn|Y;8f1BHn`*AosI5`tP(GY%SDkkb|N+QO~#mgrw7YU`2V@x%5
zv37s#CHKJ8&q^~;&mmauk$${pcusT@ln7N=$Se^oMw`kYlR%yPvctfr%*U>`f1*;B
zk4TSQt{R%HmsgNVDTn{=wDI9xSVT}=1GM!yy2CCcv>Ez+-SPbD+*M0wT0@9#XVe4?
z>Xe|h>jA#kU+*vvXpvO*#@mw95A1KT#2@vO5q0@?O70{K5+ylrIu^f8V{Lzm`>XX1
zCA@~m2xd@O*!0D6K2^{wS*e=#$|RNcokm^^lqnbh0(>4;$9apCTCFqHF&%t+p#F;6
zsJg7KxC7aDd*@A8H$mz@KEszK{8%G3LItu>)8%c}*K|q_4M&6DZ;lkapsp##kQfM5
zCo!U8wihcH%Jg$-?zJ(#OMuO#3!<cW4D1B>0DgLc^z4)zjZcP)#BRnw{?6=`ljIGp
zu3!q9zyDt5e_(ipOwu_Kb15wSsYHJ~--Nt8{xzc!rVc<Ts%{B(o9=x3+97a?e<~sI
z+(bc@a8Jmy`x84e!C9dVGD%u}P=33^Vv#-a*o6=sde+ld7}kMeWPe7Xf5{R;43l(@
zJ97*#L>);btj9ak<=|opIjt!Znb~tV<2wilH(p3M#cv>l2NRY82>(=kXZ&x(n-e26
zzm%AKdq%xWlw8>F<(8&DBall-r>O_T;v>8rPzHfITcKuVNTUqXP6n2MW)GjAx%7Dn
zKlA+G|B15~YFqnR5VAo003;WF97iIyw7dNV1r^@G#ZtWWEKcCB7Ay?ktAe~q))wB)
zC7nj@mdhB!R?D+7xv@F-u(lNy>FoM@RrFR|7*e^E_`RCY1vG|`IeP8RE!$K5tG@F>
zxU%XKR75ntX~tLNZh5ZRZ|X)1`v#0pj`Uc4KFmWAi574oT35_ufy9E9CKy8dP`|_W
z9TMe$j{UrwfVLl5Uk^La7IycW&wth&efoRx>!=$*D0+-1U^Lw6DuLA=_mU~>ANSo-
z>4={6(>+d>%%%6LJsD&T+dmoNj2Hb~#yBhgdqnVU?e9_15BtBzda_i7?+Q)WT^zHG
z?d!=RB^VC@R~cvTdw*e*-p_oS9c4uKIPQ30dFjI0StVQ4n?|KR9yxuBQuil)a^L;o
z3-Zs@b{G6$FI#4wRxLca<57}Bhe;}tm*0w-d=S3It4}ZIC6h&ET0Z<A06Zrr@IL?;
zq@f4L_HJgrHDOX+NFcA|&(rFOz=)gN6hjyj8$l*s!oj`7Sq?=WJ4%IX&MA$hyf-Ft
z@QH)%jydDc2XxeBH@&$$gEz^&etS_gjAeNBnGQp&`YJ>H>a|f{jZ{?D?Lc2&+YhV=
z6ir;X*xm`8xIgv&Y)(h&*`HNw<Mv<2f@=s84#45?O`qP2ULpW1+V_f)jHZC|`Hc*k
zRP=4mROT;&OqCv@-nS?~DvsiS)L{tvHYNc3lYozt{A-9*`!8%ggbztixU#K4e};LM
zy2Gxjud5F5*d>re5mJbRd?FFz3^S$bA&S@NGv+0D(L!4&j=C&i&+?A?u7|kFY1If<
z{7h|_vOz~|+0XYxN<jLrBSpX&KuGwN9e*W|L~|O$yblF-F_lo8zKxSMmP(c<DRuNk
zsnZMp1jZ|p;j*#^<=&sXeE8Rm^EnvJ@QF$ai$W8-uVF5LkBBh0ouA#6ACAD>rHOr7
z?8)6xFJteJUk4(z7rZo?xoyo`s1ajLHA6_=krJbKhy1SGA-`vOQZmC%AxJ=$GD-kq
zqME?YMr{}_OKbGq+m7wDUxSZ7A>@(aw9IxwKffJq@<{(QeK%?-QtOoShpMrnOX~z*
zD{ac+@QBi{EfoyPBN@usL)D}=7Kk}D9HS$bGNPU;Xu%Vd-INvX5z|HQ(F!Ced8<ps
z8V(d7vl$}M<m+6f4=#c-Qg<rV#o+0XaroVHP;|i@UO!W@@pZ0Y>5PrrSl0S)uq>7&
zwFQSF-XsBr)8IgxTSWNi(&+Rrlv*7+E#U-~K#eEWw*tjUxM@+;n~pm%>S+1Am|i6<
z6=&X&dJL*UxI*ka0~K-io8JIDsWv_E(yuJLf0<|*qE<+8%#NCuh?OJW9uraW8nV{m
z1XSNOjqJ#42%3eVK<aQeZ#q9d0z(uCB=jq=qoe!dr;)cYkiG}h`3nm23wi-^`{qBY
zV@LGiUKpbh-!5gg3ijA${Wgf+sNLK^MQlq-SDYKy?pLLqi<W2S{^DbRSH$CMGEa?q
zsmVzlo+Qb`tBlM-OOam{jA)-7qsD{iYGA&>gza`$HNa?voE<gBl5XlFo!86k*k{_0
zp;!rh-k7N>!81~B9Gam>B?Du&Sw3jgOD280i-Kjos*rPJ7IzHB#0YY}GzvzWDB?5R
z`g!v2I~4QWD^<*NHzw%A0c{j(sVJM<=-IQrfo<eQNti+t?w1|$jQ*x9FMzAi;7-Uy
zO+MNcxC|%cq6kd@M3mtG7Ah(Ya#_Q|c3Btbc=$UuR;h0~6KkY)az)t0&ex<O9;51M
zY`O*0-;D_(h%_z=b7cxV9pVU}>&bDyO2`O>kBTXEF1%Frk%ay&ILMQj7)~*4CQMa9
zD0}RLadqEY`aY=7TRyJvOEjzEzU}BUPeNRS=+2hSm(R9`jha;C^skbjv&9R)>Gx?~
za#;U>30jf-$4mYKhD9=Eu?$L(<F{|QV(mzZ{$bMe#O|47Y_fER#>u=e+ErxP;u{V}
zK$TDP#ls?rvdvEm`#zw|-P%XJ?p@Y#VEyP98=%})DbIw=_6@grmV17dZVx)B_y_5H
zT}eH9Zf&~(?&c&RUYBzHS;&Lk!>pT1qT|V_-U`MBzh3@B#>LPHi|6UgqPAitd<b*`
zSI%)#B7tO`cROGj5`_B?RP#3i4I^6wNH0~2*GjdIb)cY0e(en|;&jE`sz1$eci)~y
z012-dsmvm5SV#5TJ{u0A97d6u_!igQ2LO9>(56?xZNyX&(1=si=$~N_Lo6j^*$hr#
zfw~am90R^_N%)*N>7kr{D;}MmlDgP)5Bx3&Ju2kf4$GVj$=kFz7QTvH`tay?WaWyA
z0P-)0H7J=-7hjZ$`e=8z&6;Naw?F5HCWBFenK#QJ;z%?d;~KDDgEP#8F9ce7##|+c
zJkGeUIx5k9RUX6+eMQ)}z3UD5JXUy^#QBlV^c54sirSIhlFAG@AnMBl)P;kB(news
z;NWxsW<7Pi5cKUa$=}X3y`3(Bidq0gHylXdl5nc`{m+)O@wMkRs63wLhVbd1MuUs^
z=NTtaX*%IAtf?VAz>HZXUX&Ry+kJdH0vE=bHxv=-MHNnHwm^tk@&c#|XdM!UbeKF=
z2&1BUOA4_G`;NLraTlZTcvQM|xHj5|CI>|4jXvfJ0%y}Id6_my!d{!WfG$k~vIrz}
zshApJvQ$(ApUK7N&G_J8tPGeJOF#jqrCof;O!tVc5Ap8;LQqVS-b1GYp^U-uNH&_5
znfrdIh=pRQ{CAM#CGndCX5RsvL2YbDvV=!x<hi`SdTCH#zoXiTmwg(QX?Q%pWMXE5
ziKQtR#ly_~g7k~b9WtmkE&vV<kE&OvPRe0iK+!|rzYv8e5uX^THYI$hNb((yf3lYJ
zvJ#TF_8@O3frBy80AluGF;0(@V3HapC~q6hM0pgFl%ktF=90{Lo|G{d{T>+fNzhRa
zkV4pVn^=>^GA2k}PerNxE@}NLaW*8O-jzHwAztXS@ped5<fEvw+2jsgo#^9)uRFX;
zOt0oNUqRPWnsW$PUl>9+eP^`5w!vtn^?-S%z}cMS)r8>Z(}^idsq1a54-<l4>n7Hp
zVs7SN-72O#abo#%k|9E1!dyLC9M+9CmQ*2@PAWdB2h>j_L?htHrj*Dbl%corFfok-
zyAY;<e@Qr~&rW^st&|^5@rApflqV4#I~Bb5A;{$lGzY?NerA!F2HDdXbi0rn{Xgc;
z`<<=$ar;RKiBWs6AV$<kjT$v#)?T$|Y^7=xEu}Vz8G93}HnB&wjn&#kQIr-{MYT1H
zmU?`?-_P^>4bS=Q{CKWhSFUsJ_v?P$ag=S9*?$Mag7&W$NZmT4<jH=6Lx;$>`au&x
zlszNlY6t46&cK9)+=Mrbo^kZj1RgsWXwB&=C;Xd2={hqXQcGAh_W+k<aSpZ`HI;nq
zmu8*Yjb_ZO1!rR)<euZAbtw0%a><zD5s~>Tr#U7l&~<`FN|xII&5t1FTaM<-&=#Bu
zd&Zo5gy<N^o8%?jPf^2j7PEm%+2kjLa_@LN`Uxvs+^4?1MZb{ec-)aRW>G*4;d+TE
z<~S&BuO)q~Lt5rU{o(|aI)D>i$Guoe=)E71i{~6*Q=dYVv}J|c*K&pJ<VLV%G0hgs
zAdAmXH`edxy4)@43NG1!X37IIq&D;94?y<9AjvgyzR3K)qou`P@E;aq&t?4do(C=x
z0IwK9*QKNSc7RBvC`m8~X$j;eUd0)lX9>sXeYA!)Y>=A<GxOX{(5%v1I8axH7Te(c
z_LeHFhH@^Vu!%sD;BAQEAEQPM$1nFOyI}@J{guUQK$iJXMT>{()1VhZmiTQ2>Mdaj
zyvw~m;GXUZe>|CP0jYitLkk<&XN=*CFxY=NtY@j@)?Ag2YJo*>F?o8D>YOQ|nzHhX
z@B%^8<PSKgfb{VgLo-_B(QdULw8m}b#s;<uD9I8g{haHr3U(R#kb<^Cq{{YB4uuCG
zO(EixNQdsP5?`zOfK9vixGGV#zO#U)<xg>X0ksyddM`WfT0%PFMa>L|_+(nV7{d89
zwDv1`opT}#&0e=mr`1?@1wiTYa2C{du-Cl$Q@lyr(4*Zzln1>nXs{<XFdj7eM&soD
z<s!&+*I6?4&zdB$034rjGroNEah4i@q^{rpr+N*~w=C&D$nIm%fQG`eHIN7Z$Y|SA
zMVd9U4r1+~Ji)Rq*O@_Q9C-^Xul16O@1d;IEsnU>!R(NI7)klPs&`n{s9Nw1d?+^>
zh!i3z-2`yMNHGikKEaiYkNu!g=E(8qTD&bx-YtHAz=ANeaC*CDZ#%=scG@+v=ky)r
z_uJ&^+Zc##5w~kjYbj;+E6F0!3}uw1K$6x?i0F5SnRm5CQit{5b{k?x-fo=Zi?)RR
z+F<KW^7S?p<rOPGhp7`QSU;(Q<%OpB$D&2NpZ^_$*Sa@kZ<5G=@3Q9rN9yIs`}gE?
zbPCPTlO)nSx>-BT3P$4Z=t0S!E;k^L8=e!YLpi{)<9F-)U#LFKNUt}ez_$c_EiL`n
zReq;wZU<a_v*9a-y1pL$<WKJ(T^`bzXlqS&Wq$ENVDnN!%fI=CL|D$9=g-ZmK~TDQ
zG7c~T`M|lGz#pR*1Yo7T38r0!N{4XWTnl|D_ge5xov!)o{>YqgcCawP@a3asNe?2l
zj`AkbKf@pI`qaXv4r~Kv{gxC@@$EHM=k*#2gr%gR)aS~meNB1-PRL>4;Y=w)4CM59
z6&8{*C|;o>3hR3!>Dl!R>v}qi*W?VJOVfXZ3iZ82G^hjZl6MQCfyV<TXhQLw!9i8p
zOT8j4(brO=VO!81%{ntBs?_Wx8tn#jDg1@Yoi@gqVKSnB<;{As{lTxfNf>#OI*kW(
zv~TI~{xh2GT2$$9yP*d&bx)I_JoVsHj=q5;de;YUGX4ARPY@p@D?H?s4^Vt-PixPk
z%OfJoiFk1XLSS6FQ_02tlDrH`l^*9v`@~Y1mQ+=YX(eo$(rJ%UvRgWN(pZlp&z4K*
zRTrM~{FFP4Gx??MIKIXu2*6CUANdH+S?S`!o;<Pkq?wYIoflxr4{Q4k?SHWj+SQ{?
zXt@IDU%yNAj4wmfkx1g#7{Kts1dd^{&Wd%JZi45o<K`Y@tFLlLKUFlysFC8$_n^t9
z&Y{!usaC`U1Uu+R3#76^k2Qb~ib%KZQg`)@e}~oQx=iM>4$|~FeiUtnmOTfBW2t|P
zkLz=N9eqvqgF3;k*8w*3^kTT%W`;3p_N!d4K*}2^7w($w(yn6xhtmcpzuRj_$-_^k
z=TEYPvqspZa_^2})@LQ4?``+MQZJ_?zdC8umqg3^{o8|3yN_Eof|0b(xM3t3C#*$O
z1Kf3vab-piXKKj5*P5}g&+JJtDNcCSr%-$xqm0qJ|Flzin9^npBt-;vr2~0@SG5r-
zKsEJ&Kvz={G%$H`aovU5yQQ8_2^|-{m^BHEPk{#QlhUGr610Tjk+92UXoW$kD89|H
z@eTw=B8dYs_?6L&yqnvD#BKp8_5llPUhl#{%=-XlH1xg6lRTd#r7G7D(4)G3ayrq}
z+_vS$%Vi1F#53weYuUw63KC8v(1v^gv%1poW0_zO62Y~&@Plr#akYWkm4N`vjSTDv
z|JY+N<IK6-bo7XA?W4qXvA$(y{1%BM@w%G?5+tTnanXFHUY%9?G;ct^RlNGK@zb6G
zSnc3bcZ!aa;-qlP$CsBMk%*OiAF78nYtdXQ*)Mq({FZeENqX<ikr`jDy<C_hL#-eD
zkpI5=NsaeoY?08u&$`FO^{CyanU_qJU&>3khRs%?!#>p9kt@>N>)IdIwkKD~@awOr
zS9DNcISuJG8y8c4EEZmHNKSpZ_2UaU_b0H{rUZIZ{zo*45a}_=66bK3`oon2!PxV$
zt$7ScLC-T<n!S-4$hy|~Ck8FXji+#zzdluBq#%(p4+@^V^<<Js9YrE&>^vGt=6OJc
z(7bDXi*#-SREJo4xk7b6iZ0k>*L$7LTadno9#hf=?Ilu^ud~eJxk_QIZjoQ)P1+s-
zShn#Dy#04=UFn`bOL(H7nQ`j_^}0gWCz^?%opCfpG98`cI`swZ6@@#Vs*1q+07p?c
zRq+)`^SbH#_)kbYfE){>GogZJprARC(AH0|56Z05uYQ;!e|##r;Y&feAzpJd$=3gm
zGQWu#mP%ED{v{Q)t7P&0d+_i_z;`(H7ZF~{*EdSn41ZE=d=H)eA~CbK_=!cviTkc$
z76nkgf$;0}(~s1CW+0Dp7}s;$y}9CtHD`aU*nRs1smYEUa<h34y}2DozU>;b?54tw
z@1`>rOcc9trMM}X+NX2icPV}@Lt~ZMt4!WB5_-4#$I@=>5a>kC)VOYJaDQ&ePFLgW
zcH$fH`dw1-D1Ys@;_z*4Ng?(C7a>ZrV_xnDz8th_Fx|t`@T)6sL+jJa3fSoZ$DMMp
z(&6vFOlM+}XKJl*%2{rH5bp_tJ!1we_LpE`1pk>69LvWS?920*2T@$g@Q8=6DorrR
z{#llzkkPDwlMly@0j@S9I*8w2$h3gt><Kr+4jqXoJE_pkuYY@|g`bwcee?Qa;ukV|
z03psMN&~pWuU;6RpS+t@W#GR+R){p1CSHRpZKgN7_(s<w{%x23+jYD}q`CE-KHx)!
z*xbj9Uwq=5t^dwSul~Hgy7B(s1<m!BBF;*hJ6-2%#!{einaNI;O@~8^^^cs7C(rtw
z4)W}7m(JWjDOe4Dy`=cr&a&&nddOwT=hG`7378y8Nlin?aK*&J#&NZ|{d12KaZ^m<
zmXwUF{2e6~Rdvm~Ww3C#kdC>fwXMCQlZ%_jeedg%k;%cskf-4hQ894|*rXJiM?tbe
zy4++^^cnbC4aIJlnyCi-4WsTWJ=joPp`32#Nd82jDC6zw^x52n{N?cc;^MWAy{pas
zz9@!-%Fnc+o}gzO+us~BV%M2v6mQQYX*^i&2AkreUEYEpie~wFz}f0}A<8w{>-|w|
z5FXR4JTz%Elm#KGcwo%W1G|Q1VdrdtiIfbsqI1T)&YCGjPK-rzWdpUW6$XYQivig>
z7J_VEMdQ-a&<_F*xsgoc-X8A+TsvyOt`;M4jG{2^t9;ysOJ>czdhT>RQZcn!vr^^|
zwntm+y*Fsc4UZSaKgDVO{vFh6^*pOUqs;H2D5)C7`)dFA+rR=0hz6mYY}VJC<h|HR
zou%cY;Qz3&Hfb?6yfWYu?|?t0>cg-8vsDI9V_HxfL;FIMUU=4)aE-%vcXMvWFD+p)
z?2y!~EVu?JnN3Ky`}M?7dsd~GZg)+8)JQD5nDVttmbS>#8~X=`qD^K%Ye)Bsa9_8S
z2=TN|uS6K72VQUYV)iiug#Bp<ZTdAHJ0l)KXsGC&^@1{(#PSb{xw{Ua8rWArZ+fg4
z2V(a$Je}e<sZeWi?BaILgY-tC(Hhb@q8qQSE`C31cq>?5v^U0M0twLOPu4iZB2K=%
z!;%};l*QAP!`gIb6*jiDZ|LbiGT>+Q1d=hh`l(8hOq*p+iXE=B8BM}4_u}Le_GwT+
zsG^~f@}+3Bo`l=YtXUNqCB}i9LU!W=x1Md*kg=`UfL^dBK#r%@1Wy7XvXia@ipSao
zUl`q}p7h71)1u43!tPe%P%v6sbh5<C&j};#Z@=*do>;Z8D9&BeU%=nG+F5h6QCmbu
zv`&+6TtXvoc35;);DNn)uX*{Z$7iL=74e^9xN5--u3=FEy~{j+evVTX`^feIiIZ#g
zs%%QgtxT%)2myvX^sP(X-_{BFp8c^`m1Ig5F1$Gg1P1{{vXCLiYjin|5u<%>E@p^c
za?3LiEMH2gXk02T!~(ia1|B@i-!4rN2UX?d;PvdJMOi(sk=gDhvM6et{H90Jo1U-f
z)WS;(N3-wES-7aqBI8w9w9TWS;u^3h875<xjiBE+b32<xUbc(C!wC$eXQ%V&e$NZ3
z3pg(`G7n4d-dzY85wLt{2a%Mdv?L{s0EzOYWdZ_8nDb!se00q(0%GZE!UEw)mW`IK
zZ|dKHZ!<BgkxT0qmY9$I4S$2c8szsNQ`IOKh|kv2Fxr!>G!pb!PADUwK$1K+_%krY
z_DMpb<)5>uW+|?TIVKfu%d3qt-^RyPGtGTp&q0<Of4(GfLeAF)crKoPNz!=ba&kSW
zHeCt`^2lMqqjbUs7a3?RDzAFJKmH=Jx>F?EOIe`jJjNUS=^AdjUW?NokFo#FEGtJH
zv@iEdYJjW?)whY+k6g^OPh(z09j!IV@Q~^<dJ<$_pW$TGiH4tTjud!FTOdp9DItb$
zhlF9M(7Br>3^$Ku`4<3KwY9>}hf$imD1V6j=E8g{tCn=CNm9MSI(3Xi%!hvC`{q=5
z`Y);^^-ewz(+BhH)F>^Qe=V2;m@UQpqlDFB6qMqOj@oN2I?fMeklg^JBn}Ni=S9F%
z^lD+pCjhz$Jejoi6_tQkh)ztUX*OIv`<bD6l>Y6EB<(z777s9q%*-0;Oa?&o8ij2N
z!;?|60^u<`vCt;~u*_K`x#Ai#q#d7;0UrRF8jrD00HkZ$;e!0kTuc*q2=38<#5|*Z
zo1AIkLZAR?su>CE{tRS$<vH@{kfC<3)C0-L>VhquJlz1#f_Xd0trV=j0xu9KPy?r2
znT=+CP?^Eo7D+XW03~aE%h4oMD;%AVXp6&dUS$a-?hOq@*I`Q`N?S_JnFg-Gnb~WM
z(HaPmnlG5F(obPES%KDL4isf#6`}&g3V&X(<07-<c)t>~)eUkS1gmEJYt>2#v*{w)
zwK9IY5m)j1CSf8$WpAIVk`V_6{Zc*gyOQ@&DZ=l4TD9sg;Kg=5Jp-*G-wbp|EG%DB
z%=5{c8PEzuTlH*A^G)bO=;ppze5sr4d#F{1yY#*%wm(MzJ!*(_USFFkun>7bk5Nko
z-A_StKkpDNl#%OyXND6|Nj(6km@<gxdM*ptNmp=CyZUfE{m5UF11aVN3E%hrXcHP-
z#s_EuUbNYL6JhCkcr5JE(>md<ELHGf=%)9R7X~TMf}w&01Vck%?9#uS-p;*x`iI%W
zMex}hkTWOx0)bR=0)TA#roE{)63B8xRpqG+5$px)hEBu46o7H?u^anNPb8WC-(RNS
zzAGFh`C^>Ve*;C%`^sR$=#YOJq>L<1LIOA<i6kthu0#I~4GQJ%LF99;a|I0)sV1hc
z0ss9=0E?pNC=6k}kmP$(qWjfAPISqe2Xcd<+4L}Kg3#-^vo}&B2egNj!vECX4Z<8E
z!DvFK*xSx=M`pFW(~piB;c`Qs7DvC}uy#I}^{77cK&sKE3yi-EELkH(<q9ig?v4Zt
z*+i1NQ$-QxCd=4rRua<&-8fGnQ!XWK`9B)+$v5-k!Yqgx5f>g+q|4yihtZkCbYEpm
zLx@Qak4d?eTu1_KrYgVRiYH&$V0ruG&7E{4Sh#OlG*Kag0>4Sg*{5~ys={WjvU9iY
z>B_DukJIwAsfFeet{?frsP_);>D_YZ0<{dhS9zQo>D|U}9y8|?_a7c+x+xVrd=dKL
zEa%WBI}#0KU;jAO1Z?l0%~Ru1m>ENK6*B3OzER7K>wC!4P<HW4aPKcanC9`o{fR9D
zO5p15ZO{wqwTB2uU%Lgmht73PhNK1$R?3N@(g(yaYd?G`L}Y8##e=k%onGqU+O_+D
zjCSXC@<_;^=_J}m6G*vbTEV4v#o~b({D{?SwEX?+-^cZ`_In?O0!Dlk14tm&xnjbS
ziO3S)S$&0_oE(r9lJHjGnDe`v?7(;~ts_ZRBw0$CFITI%1>xF%eWwA)OHbPV0Zc?~
zF<RdHbOH{#lKc0H^w-53t<1);yCr4k>_t0m9Wqd36omhb-ozXKW$`2P5d*UShyPWJ
z+(vq!Z)<al^YN3H1Y<JeT<P!mYoSYfv6@Mr`AlY|*{>ogp<_Itqqw!OH><LLI>8@|
zsFJy)=-Tf7>+fp^AnwysMHNWCofrOadj2K<(;tGb@>_NzNtEH|ip|xHGY^UGDI@5!
zW|ac%e-Fp%&4j=1|2m5Om1ahB9;|k>Ndr6-aDY#;!&3~0ny;D~FTBuz#&{K^v28$w
z$gb}X5H91|TUry-!aTudW|)87C@*ro0ucZSWKacywy-Pt)!)G@?Sw;ifm1&TAzfpV
zdS@Xm^-G&yCuTTJzK0OO8&2)brx-PIjwA{NB-98gWJ>#&DiUmuH0Ts0V>51az(8zM
zDVO%gLcajDoPoM{uy&;OLK1kvcPoClFB$#v!8=Hh1dcDE8Kq7W7r8}6q*?ci6F2hs
zZA{0OPUVPnrA?<{p(_$Mq3^HdC#?i4Y(R4*0BuI8#7*)pzhsIQHw6jW6r@6tKE!c*
z@1HT|b_>nBam**={>T=oJ6igN5jp*@Ki&N7hA<Y#HQn3B(9RTp2lTh5YlD0wnFEUY
zv6|oBcM=SmEiIA*Tn90YEK0<)RmTmtWAd~Tz*nr>a1bt!*;%b~7zFp?7D$v)u7-Nz
zlSnm4k=v9s@o^I_a1GeqJQNqX5Fo7ul3{X{NCcPYL8&shtl_*^H1FVZGWJ7WY9iU`
z4eZK+oIb%N;1;+fsQ`%~T^I)W>w)hH@THOSru*~V%7AdrlH|j9%ztpHx59dAcwXLe
zZ^yVg2XI(JxMD>67fm>@c+NJ>oOplMG=LCIeT;HOa~~M<=Q$$Z`=<RYxmz08&rRs~
z8@SVrtfi9dj<A6w{X{4|&q<4zd`$!M8e4@X_f8A9(m0~tnRWFBXH@;oA9@rX85D64
zC*js)Ico7nfKbOFq8^0&c#ttb?{bw~Day00ux(0_I0fCJXHS8FA+6Noo|n?Q{LhoN
zV@Je)We6J|!e41a93rLNh|)5%0Mt=jWjZ?x-))lnx0i1Ez!`p%Ma$|P$ztEj8fB7Z
z9o;oW$)D0nHg9sLpm~g{Wxh2hnPqY(Ve*w5c+y}map;$+nYSH<r3wMVW^1GIFji``
zP>i99a(Sz$&KBRcRTx+n2lik_fqzn6t~mEZdzbNzuq2^L^=F`Hz-}^3_3ox?{F+Ry
z@o(wDS51;)H|8LUcz0TAREv&*4e@6*p@DA%sCEdppohZDARuGqn@|r(7NnpSYTB-3
z9jiG%q&e&laSjyOfvaEHqt%sK^A=mw(jys{AePK2FtrRQi<#<6NS8%cHY4&ufEgrM
zx<PsTZj{-)V4#qBRfn=!z^;@|8d0lS8pR<E9iv0VMXH8-3UW%_YG<tQOX5!el*O9~
zNoN@<Q5v4MinvPys^ipbe}TEzj2{nxvQnVCkNDrW>Qb-i-Z@r59sl{ArQY9e>f>Ez
z7w>ikPT9!PN`k!tnIl>1k#|P)U%HzPGE!`{=MaR=^q78!MjKP3NvW7jik(ez@%KU`
zM1m-Ne=;Zv{)8^*31pPt(no#xBW#r&XqzWZ=kJ`7BO@m$uELg}@)u-X+p#G3#-hjE
z+C$VXJl6WDgw~aN5Tx=Er&Nb{ZWgn;Hk~|!19r`-+T1S2#cKSE$|h8H@d(@`fKVO)
zn*l&nztO7$D%+#HcEo$lG>G$Eja$dQi)K#p7;^{dq-75%65yPIcL9$KW&pl1>#1eV
zJ`xXvaN?&Gi6Byave=PpcWZ&52;{s*Stny-4(BS6stNgxrps}K&66HupigeAxmBa1
zm_diUF5#7)Ez$}W7GyTR-N?a4j;4rQVu#iV?$0a^jmm8ghM<_Yhys9!;QNKao@F^o
z3Z7o|!60;wp3!fpYmU4BpmWNacM8lW>bBE;6W6pu75~}?p960u&^@%bco;WgxO3aP
z5aoZ>*l9%9C6a2P`Rkon(Nt0;qiHs&SjFIdmKL9~2kuucaCokN(%M5KmbK^#rwH@f
z3r1*tw6}Tk193|;a$jUPt$D@uuxt**s>?ke7WD15#g(*BfGnUHIX)DfWi|SUZNW+N
z2+9ZuP6vpR-QbB6R(2=anyuMTp{3UKN``_1R!G8{HJ?tJ_+^Yeo$q3lu@qf<3>i4h
zoc-{u8LUW+4yllGv-}W<mBmeb$gd-+6!>%QbXbogA{b_@nsP(mYJo4l^esvm_^G3>
z3z}&#1Qiw30>3_n4eXfE5@ya-w9=8+5ObPSO^-y657@;q#J;1vqt6_00*oZ5p}3+(
zlSMO$8ZTb$N?Gf`ShCSzFIHapGY%ImLaH2AC;%(_90DH`6iP@4Kl2awdoVtbSyBa0
zc>-|;6=aacrvR{%;)z_bkK5j0xnvYz<g%@-axb!y9?4;LVttD>60xwjNq@Tq#@vZB
zKXsW@EIPHK6G8}1DkS1~vJ7y!!H+;GT^P-00c3n&5Fa{|pQu>AwTe0=t6fZ)59;Au
zN_v)OfJik|lM8n13V2lRR7~0}9P-yH79BnP_>|R6ptFd;nxQHaLXFRP`YuC&EK?`u
zT9k>H^UKqGLNRiRDGgCL&wHALcX>$$^u*)J<yCbflbg@=J9;o@<B%&zGenoQ(8#&)
zTazqq2{3p5WRb08IHaUYSPQch|M=HUKwz>GK0j?ui1~NPsUc>gM|*E6-#$NO1t=OC
zt5iJgtE~1Z5$+ty21G(O1v{ZH%?ym>AOZ_27Lo?^Uw|unaHKH8wKm2ZT}6YlW&v2L
z0dQ2u@oe%5*dcHct0<Wp&}#72lySB?<MrPg*cFdU+zfONmG<god|KflqLqDX8IltU
zDJTGzhPr^Xvbi2V4*p}#EYFd>6-dtnT9QbnhJnP7#_S3pb-gEfmd^Ol`tR*AfeNWj
z7TW$+=Fiy4;uO563(AMhYTCfhg);pvpEo+noBis|;>Z=bI{EXwaH~ElB)IFa(Knls
z&F3E2rIAf03!K=*R^3cq)uPu@t@ANRF9c6B-I~zSknLrR{97ke5E&$&+8WwUGi!Z6
zqZJ`*=3(3BQ>Q#>3ibL6d2aJETBavyt=sanxfs8VMtx93k%?3nrl1<B-Futg^~PD&
zRGg5$jC+9{d*SBMEfCZ9VXCh!xp&D{-W07I{Wk(TRQ=c%(q2dr8iRJujqvtYUA<#d
z^jDE)6x9`{1U(~N6C_D>g<GM?<nTU{XtJ%raXA1<dsN~bPcJhfNO5J5gTy+O9fX8E
zh>*c05eIH@c9|&-O3;%@0zjf`;6GA8c@2j&z}qXK9I#zy?=T4XP@F`N*s~(qK+Re`
zX>H561`OUXcmG2wx&{=D6cOPZu(XpWeITTWB4)(o1<H9VKt|F+M;zBGc@zhnk_Y0L
z$>h)==e?KxiV8z^BiN$%FuQ^IBHg8xN#ChlK{QGCNF3)FNlxGBQE#eDk-D%bN#z9?
z4YN5uD{x1VS)ssIMAB;;8oAKO=*q+|#Yyr3meY&LOU`Lc)O2>yXi#G6_h4v=;#hT9
zqitUjpS_22_(1)|fV~|!BrM+*C2Filr*qyF7cxy5J}-Otj^q;0XWPIdG*4Z;DA1!V
z_j2k|tKUPBp!6}P)y}qCu_5bnPREPvO6%pjxV8DJqA?ZdvL)B5OE~P4dwyRyXbb11
z%sG?~%jgPt+}Sh3bNQt1<%Bh<_14bJv5WDB{rKz4$%jhsR_#|yi>J*m4UfZFzxBO;
z3P%tw!R_|c@)w`%Z_i{GPTyYn^ovU~m=9Ek-<Edx<Xz<u@;6TK<*Y<F!1kGtg9F%H
zS&mlhjUFeN>zA$1^<UdwrrD2wO>yY={{$8Pw5*q}&CTudJbqS;>-{^#9lM1x=TCdg
zIbYMB?XbPwR4M8J`)=7R187$O(+_g>(H*pFRhzXqNj(EI^tUBR1!8n|=#Yj@mL<96
zhM)J(?17&;H$uNVcpB8PSGUDH8`!<tttI1p9TSsCrVF#-M%7uN#Xro9{IFsVWCfZg
zg5fB#UQGYZ+O1^NKF#MtQ-l^_Q0G_48q)E|2=vqG!rD-&hN>Q--HdhroSZoHTlEWR
zz-z*a8fxnZt`>0|!#EQZA4d<XGFvn9vX|dOl4`@YbLtN=*A6L@ey80%^N#=pUY*@T
z6y}y5cPuWw<}3LZV{Z2OXT8b=FXHFD&->7bA9}Ti_nG!rnIYowyfgbX2FWr>8Cbdb
za#5_lhO1^9Vxzhf#^+Va*K;;uSU<LzzQnC;GdoOa-cBq>Xolp~sve&hxH1V+J25?^
zF2?9@&Jz?F-TGWRIN6JIOs=fYt+kx!>6o>+{$(%ZL72H(#AK)iP@1)2bi<SLbgJER
z;&WM4={fFv$<rGBuEx;|nAU<Bt>C8NS8Su2vrBaAI|nD1U@eBSoF-<cThQ5LNK<Ap
z%X6BZzO39Ar}iUr)5z~_5<GNZG3{8GiJB(0k^1%8n$>0ro*dCG2P2_F=ljb1_B?)j
z%T*(~yS-&it5!=cWD3uQ#2E9cCwx_$Wp$Ya5cGe1%3czlA@+%$lw)h6@UUbynkQ$N
zIv0`oT32TMy2Vzb1?8^b=qLi?-c*y_Xi*;U?cTg3J@ZM3o-wdTlCm>n@=ol}MP&#K
zj(M}NNk`G}YI#`iYAec_?*?rbQ=p~a7v8j^!}&X;t!$9&^(ASf+8f%QuYzsP6T6a2
z69pBQ)I~OJyGzmA(K3xoC*BjzG8N35sNi24ZdSS2)r7|Z#5bi0jhu=H-<Kz`zg%ww
z|MB0OKJx#>_V13*p{QD#xYXk2=U2NG)Lr&;XWs(G=F5b{o?Y&+a|;8sqn?r;oN|Hm
zR0Yh<&C);MW8PGq;A0s~tqkQ5-Nt3{90A(KpnvIQYLr|VR^?cs^1SlIo2`rGNfHBA
z>j~Vka?Z)J1=21l?Bb}HG!^D<=V)co5m>66)|1MNX(hgBiFh%#Dy;E;4ZZ62rU6S;
zxsK6n&#&@aGR`@(Eu3rJ@^6)dxaHV3ov+|DZJ2}-I62*_bN^S-yUix7%7BZErVx07
z#N(4Bmuo80)YuVmvFwR8<rx;*J7rjBiUr&q#vb+RiVT~&+UoLxy1M$-<+}Q23bt$-
zCB`L^hOUi*`lc6$%k|B#K^zTu^(l(F8+VS^VhH1s9~;`<sc|&6zc)?dZ)tV5ZS4FQ
z@UgM$b2LX&x3fc%kJ*><!lvHutsk3S{Q76p)U!Wpdp%aSQP}+IZ-$U>=QW;1Ad)cH
z5&B>Jx%s`HQfh@TNTbf#f`yjeY#C;8DQbDcairJM${EAiI>Mi6C)vbZSkyXpvu))X
zyOb@zXq}LHZ`U>{%R(nLb?0cM?VSqEo<9)9VBbD-mtU;$EeU+J{k@SoS4Sl`IjrM)
z7NfXhK{Qkp@ZL6tt8>vMlPl$|DgeNHPI_Gc1OP-u0EYlw@OxnV^$isZ2RAo2goBTR
zhnIr?CWWvh7cW1Z*lh+0dB$4`*E4`H0YRjsB!?`DOHP$fQBy!gTM(svQ$t@|+ekv&
zSW5q%tg)q>v8AG!ElST2WoeJHvNy1>R=0K1c5pLyK<lDC^qub;yL+2@`j~tBSw9T0
z^AB=-^u#GB#4RNJe&{o=@TiB8v3@b}kK(bxn4~AMn2@B@uvFYLTt*xt8<veTorgc0
zPcRpbC`O2tiAvPV%C{&e_3P?IXJ%(tR@Jt(*LQX|_rB=w?|=XP{r2|u!NI}#`T6yu
z{r`WFUqzBd$Hd0PCt$FNNy!WXG|A~1nQ?4TY))1zA9q0#EiZzPzNCOcphkeUDzhk^
zQ=lQCDVdPYOwro=A~_$^p46G#-8cN^ZFDLw<JFs?k+;O@nCjYk%)6L@1ZIJrl8^5<
zzHC;_e%;<l{DxWIO{Wk!Jfi$nwfeb$^62RN_Z1)o#->exWvKr55K9RnD9IVU&#Q@r
zW-4A-k@;oB^3c<SQ|*k#VO^M?U7KGv65;|V42z7{TZ=}ug<Lsbj0$@+^Ry`BaO7jY
z@s%b?0+`0kGPP2ZFzol(+wae0#)?;>%P3}I8Bf+mE6)#U=hd`5E>XrJKX_>nR~ut5
z-Ls28-8>hUQX<+nEqmi$#TS#N!>b13*TzyP^XQ!I!x(yst<*Htjnag~&Z3-SztM$W
z28(6o`+XhH&}h&MRQrjgW33J6_TPBB*4v!~mG(5ok+Mn|W&u7uxfXZQcwMnN3A-iH
zi$C+j9nU>U)Ob5u9Lbx1r+%cBQIrW@E?2*oAUFpn|2OSAVwJXQcMQ|qTY1xY)5~}J
zW!az8ukqZHBwD6ihM(9-V9(<B-9R3E?Z_AhGT8nA%@(5E!TM?`VIj<`<tsKKre;4{
zU)X&F#t)__M^Pg4VAu1QOJ88I^roJ?@tN?`!GMA@h%2vPxo~D;9AuR9DoieFWRgY{
zcTM|OYL{0ktB_ia#0YE1t-~x$GfcDYS&U-5_}C?5C~GPKgETx(+&(4-hPHC}l0pxo
zDL=!AYLr<M#`AEoJlt%?9FgecV=NGW=8INS5SFI7m>%WLcCev{D5;FC6ipu+Et4yv
zSKD}gfC%s^9&zn;tjmxe72zvWyLU5)Lvv%d;XP{=V}cEZ+CW+<dn>O%b@@_GLtJ~L
zaC5<m!U!~s9Z#hE5VZL{l#JAyNKn)@-7YIgz60l-YIXkE77O2;=BqLs7gdu)$Dt@A
z6TP>4G9GL-0$<;tU+c|+88^dDx1Mf!B~0w^#cb7D^0zZ`_z7K=kcXoNeJG{th@`{3
zIAQ>WFm4MjP4E`u&1T>7Y$D6UPLJU8SHvd;N<}w7!-A#*R6-1gkEX@lA*$J0SWM)^
z#0831hF;N!2x5@7;hnlo{zhy-Loa1yCR*dSzl*lgbQ>?419p3ahr+p&7m~Ht0Wuj(
zLB7v`(MF~6&4%l|U@*pw&obUfxjjorUA-nRS?C{+Vy7FwtX3KObd10~COeYoFAOjn
zsV)ZX9VuLxu4xp%*}9A#2cP^(08jbxPIBL;pSxL^@n<jzJYj@XswTLTXv@#}cO!+S
zykQq|vf9)4kcB)3l4SMp^vA?e*vsFozo@&8N*s$rt_re0RTs=BE;cEE8om^Fnp{s-
zhIMCEP9$E&>A$A@7k~Em<Y%c%VeM9?qN-WsGsLZX(^_v|KXZf99oTA+u=%5U;Yj*%
z^+gz`7KA(!uJoub4<Z)dqS&)Wy7QEl`kHp@^;^4(jHO?}NvnR)d5hwp>!*5#BDwJr
z8868=MB_373Q>Y7sNht=?s>0xjDOK?gz)i-?hA64zzpb78&smiOqxY^(wi&gaKSYo
zBXN|3JCcIb1~AA>?|iLUS*LMFW$+FVFg6_7!0XjHwF`ZE>x&uYlyU%5D^6TKiWv6{
z5EFsbNU}>d;{Cd<r3w#7PmyM#I`NE@=}f;8cd!Gnej6FpfZ<6W$5Oo70IF+Tdsd<u
zfubj@!)l}%S+UZt0@Qw^JZ=Ftg&G_j5$)r~siw)7i7u?)Aww_<=WOY7x^lsu0sG~H
zyH7YtnIbe|Zc=O@6gHg@-aDN<ICKJnK)k`UrQ;0Jk{_0GXVp9JaN=$)`gWnJ@IfA9
zdxQRFcDc}i0}fb4CBZiQ#SKYbqwQFb=0s*poq%7`)f>Z?B~#H-OV6vgO{K$YM2Bzz
z0Yf~98H~0fLd_U!VBQ&-J<I4U)rN>>p?!zV@cgF4=3y9EcSKHc<N+T?OjFR!;Y(`D
z;9lJ`m$mw||JnrLk92f292hfCuVx^;TDQ4KVzX#3=wnTp=;q-9bF?m+u@>b0=2U8C
z<<V=fgFb;4y2O3wCu&4;hJKK&awHge#xZZI77c~qXlLj=ZT=pTEHkO``$LN;J@=dX
z3*Hj~TOK&kJO#0L6G4=CVjO$sqDGCo^Com1CT$9WDqe$8#!*Sme*vU5kI1YJHq-=(
z!)*B5w<5tJlvcDb#v+&(-P#wlm7fWT97?8TM$|pUyf2GXSZg2O=;IOjQS~^8DT2B|
zK#9^u<e}&bk(wVqUykhG0Dt=yU+#e>?&Ohc!_aX^@qp}`kk#etuGcael&;1OtRpZU
zF+U*XUK@aBq%#wRV7n5LLbbntX87X!Nt5H}I}YcwEc&MgHP4uEcAtM+3S0$6Vfp)4
z%oR_g?tS^;M&lhxD)9tF{fq!y=5XjAd(sx^)adQ>7d^6^0Ll#iAZTWbP=2`&rZCoh
zpk=r5C*CUU-`B=OlA_OFGV)#<SP(NSE>K`}-V3V(M)Hk~R^L(P+AKMXjHYDf!zmWB
zZz;lqx~P~aL|*@mpMFtC4<dOWZ^0sd)=9;b_Nrk)wEP`yo`Xz|(}o4&B;xx~<W4Rq
z6|3H&$s7>cn2k{@dJOGemKOnVL)d<wSe1z^Sb6}V@5_HC{L~BX<>|Q%?`3om`~Kkl
zi&d*%PX;%>Ru!vUiF(g7|G}m)Ygkbe7S$oPg{(G@D3(Pn>|F+z<m~e>XJMsm*MP+h
zyz}jjH*POB$ea71!h-1A9WQe-KSrbbtzQ^eu(~GEvEK^n+MB!=*43bb+}e44^wO79
zo0507ZmtcE0;(pj>3zOXeJEq7NCh7xh0*ksLCP4Lshy?l=fC6I1N}_c)W|>yL>iGP
zOwu=Xek&7-ySEuKmRIg75!7NQEyw*MX9~aN=*vy}^!&>FJPmM2P777Mu^&5rvGQ(C
z=y%|vY&5^VjrzMMQ)#a(OBrY^co1GMU$CE~-c|b=i|+Z*_R5cLXJse;zWn%^=0P&0
zos#&YGrXO^(UsvyUzV_kLQayhU!BW+h1f2}SV#I`k~O>M2pkaVb<_Zz2GIMJ#1>Jf
z2e%8q+#XZtr)nR1(<^lOO_L?9M`|AyHE55H!33A(y8aGuuRo=DcNX3>b-hdc>r*@?
z17-#gW@xaLl1=Vg_clEr=U9u&|E&00ktWnmV*Vq&Ywn&7>Zv-V{wD9YP10{=znCWm
zH(0yEW`5n6Z!P7<XXGLlf>eHZol307MuuOv6%y7Wo>n6yVuO-!q4jqmcQiDx#+E<H
z#P;234}Tk!`a^~G!z6Gb33n|LaTb*OATgwZ?~D}$C=|ON#gJ~?VFE!+-;JY1ryW`y
z2RoY%UV&a^MswU{+3-g&M@pz+B;rj1UI=Rb5d>{Zh0x_0*Bwyv;b2Mlm>;Hr999sn
zyui3M(CuM}*+@*zP?Xg{G-f{TaxO3iMPjt6shk&)G!1%}3vwUP+Exd_HvCLA0#gp-
zATDvvHF0h=Pm=NRLJRSnRS=!-SkXmMSvj!?IY^Qm!~rhDUWO9UhR9eU^x(cM7>f{A
zsRIoal_x556<Ea+`olK~Os0VjLm<9#x`rcAE`6v=yKhysj_qPxbrooG7_+S&A480T
z903E%=r}Vl@x+L}Qxc?b3{e<z>rCHYE+M5m8hQfyCa8B}e6MokUZE93ZFfv~_mzKB
zo_~v6(x)!(HJ0eT4BFvtZdJKh4UEN}8tC^K41rFws!j}*iBCIA_Hv2m#~ZQX7^Ddi
z6A%j#mq=gI$P9=;b6zTyJcOjjhpaa8JDQ_!k+t8+is^bAPf+N`?WiD=D6olVfhpUJ
z3C(XtbxPS#oht7SrefV7ruBH^W75nVcnsr?bS8iV<N-k~@f^`xmX0LWRaqv~K(x-7
z=bX{9(7P(LAjX`#1|vG$fe49xEG{6+Y9<4D{8SMEac6|~^P4&@>A$HCJ<rB@Sm|=_
zXA#=tb#~$tiBD<;_@KXia?9!ZC9~rEa?sg1lkglL1P05SyUwhO=)TIrz_L;1+5V3$
zo`yis=ll{o(VB>e+vnIws36S{c7;Ay9FSf5B#B0zRX3k5(K@jVnkvJahl^)QYb_u{
zg0AuT-uubA%ut2%9M4-hWX3t6Z?upo-s~lw0i7c1ib$MJ_WknYJJt}Ae98wpka=rQ
zLaX8^RIR9;c0m9lh<5>eC{T=}D?g`iMfkMq_;z9od(Q!VwNM6Y$Ul~hlM3$-oh8fp
zL2>fMvBaVrSpkGGVtOlQwiEaL?3&px3?B70RK=6+TD+-c2@rt9k*o3RWEePQgdBo0
zGw4quJ!y^01u2+z*R^BL%qZ4C($<;i>;!~}P=7%2*wGcqdIf|vGCF}!@#MWV)(;sI
z;#?PkO`p!<l15+S_VEHFdm8|5qLzeAe(G@{87zV1@ohDQLZ=FlU}!l&0V0SZNheh8
zEmb+%l#in;HgulHMiy*8uhdrn8tPUeScQ_&&-9+>zUy*D?h8KAg(&|CAeaWi3!Zz6
z6uBhk#jF7WmMirJ^1@kb(g9VbyEND8iSWed7~QJN_2)v1`O#w)cx(yboIX{AM3162
z*{eF!rZ!Etdcs7x+N$1txm1gssgl{!3sLmiC29Ejq?J$;`W&=7Q|&jxo=8y#(khu^
zszRMm&pfy66Dq1Ji&{vmh-1zQeN)Z8fpY*~aTb(=GNU22y>+djB^@HZT?!Gh-Pd?}
zBx<vM{jmz=?z7|C(i=-nR{k}P1vRz<4W(_C@0TMe6=K#3>SF=TvBsshV}0ZB>~D7U
z{fEU7cw}Zz8K(#%w*oE2R~o)CJ<~I|*W1(t0;o_6D)S_BQp*U@uLHn>3YTD0iB>W<
zBiLF&-#ghjEGx4L7?pSK9<Vg`K4%O$YqdOwGoV0)i4cX4I2XCrZj3l<A;jo=pvg@(
zh>eRmWwnD$dw@V~{aG7kt=#igg2B@&fk>^bC{LjmZ5F~E#5qxWTSb*GG)}g;u1_mP
zliCZ$*aPlpLcvL1K{2A=JKf#tYOJmp9)FMA+vsqvw|rWdjJ{Lf+|w=L-*J+_lrBfY
z8(Bt2+e-&CA$P07*W3kQC2F%Nb%8fWce!ordoh0XG3fSzX#8$V^0^GptvfvK-Xfm$
zkY{)5uHpgGfR>t=uAKVr>n)~}H$Aprdhj=UD+`-{k3rgPn-{ilQ{!zpjNKHPU7v%g
z2PN|<5(PfZ_LO>;k{3csHY^&Fa#?h9jzyw4^n|#c(heo~oJ2aZOXu5RY4spw@LWO?
zp;dCM6_D)5c?ftDkKE3r*E@zYJh0g80r1g-pt3lnr`4H}mHn6&-4-|{nsu(1DE=6N
zgte{211u`~Py73$*IqM$uJnoJMDYg@<VvQCtjK*+4%x7R;V&RQMR>Y*C2bMw3ZH+`
zLOUHUb<v_fmN3Zttx5U8;1K^%sKyYOvo@6DdM+uhxSBYNfk<;o@AhYB2lUe+>Y`!&
zSN=U6W5XRB7P!B|$*8wdRPgqK5;D|q*XR=pEyXI0q*u^}nsKrFMY-k^Ce7nS>trMx
zC%8Lf?o<@5x8YUWkxb3$jiM54aZko$h100ifK((3TR=&4w5`?9_=_eP;D{vW?IqW$
z_=Z#rZV-!9g&;?V-kbNtLnv^d6y9-*WF-owA>(7vQsro9@T)98pZ;rhQpTc}Q+}d|
zok|K<Ao=>n#8o4ts^#=A&3U1X5I~a6kM}e2Kjc4GCQyo){v#P!PQ)Y*i&G*=uG#;K
ziFYD(3Afnuj_lsukefC#<3Qqo{{jC|p4O+u=6aBcQ%O-`WgRCY89xad5-7vueOIx^
zovvNY1wjETy>;?7-W_<|;*{on$BBApbbQOz6%k*>;sBrBHdSPMIm0#S@Z)0Ypf3|i
z1Tp|@>mR&J<tJgEoVmC0{^x~_>ZG0&a!#{x&Pp1{v8Is_r^{_T%kDJv#4fBz+M10p
zdky~IHy!hp{=eY=+LNb@Gmwfo#nrh_C-05Jsq5~}YlY8Si-BwnW(BDilsTa6VOJoL
z$=OeD?IjGRWpX<AF6Q?4W|0PgOa@w#w2TltzQEPD)w|}gm-84tpjG2Mo^c_OIPbu9
z51-P*<orS3=K;chifXmJOLQW>ijLd({bk^Cbc*&pgSm*wk?~U!riO+0k}KxnbGM{O
zL{UH*zv~|`9{X}p><3>&q6;@I*LdDE<?6Ik)HKE9bgb5bd&+`AA0#z=$@hV$6!k<B
zaXIdC>{;LYHZGoyN!umPS#nLHb_#?64xAQSo%4zBSA?Fez7H{2GFkmF<TD>b07d&;
zFTTZmTt$B}NZbDF)4BS2FA4HsNQZICmZfR(z8V9ABFT;`kPW7Xq`ftD`)aDkWXji0
zQyLA@jR#Z=Y5V-XCqf5|!~34vLA|bJ-R#r%jw3~2n|lBF4PIrko`8l`H}xL_G5d5@
zKVQi?fHtM{MUl~W&SrR$-$O`@L}5TlnC1?Zx)`k}iu)_c2Ys7XwzUbrqGJGBd<!!3
z1*#+#ZLcYcma!;-Kjl_s+V}?d2St4{jm7(lV`)8`wgN*I(@Kn?03#7Uj<FwnVki(V
z3Y1Ov(53_unraZ1icGw*%>dgr2JSc^b{=c&G%0jW5UwY~zv=(nO!v{PcYyd$eQ#a(
z>eH}U#r<~TrY{7!<Nebfb?oap1sPZVKKXCCV@xhVJasTN-!${;BTVDl6!%Wf+_v!m
z9h<b56oIOEN^etnTa>}zPaubnayAeI)NbGTQWknoeC6*e^Ma|J`+wiOC}AQ5_EAjj
zHRbPp_un<n*p;37;Z8NYTo`6xsZIm<g{I3?&G-@iN=<ocw<#6N{SGwnN$2zx+t*#f
zY=eP$7RX4-B2N5p(d>{dUvT>d^l(i36D&je72oY=0VEdyL0RI)1r5oBT>s8(4Wm#>
z4?P2k3AR>%pwJBp0I*>~S-t>XWsH#a@WEa;R$<53H2~1!xB4#`*I!WccVo%4=sl?u
z^?z7?BoF=m@#Ul6E{?~VgTGrNPn_OSIQ#CVKQaz#ru3${qD^p=7yJgWc4WE#8Ui7n
z#_yjoI7L76^<fMs?#(|=Zj1Gmpj36F!2W`wReq<W-3Wahok2rgl?I85fMk`z-QWGm
zQ3G}w0W}8C8feipxIdqdg1d~anZLhEDmPRdFScO~BPwd2aUgNR#dI2k{}G0P>vAFD
za<TN%sjg`G^W~?~8<Z%L4V8a)BVN-W|9vsK`0Ohru-Wqc9p%{7zo402K3Xn&iK|mv
z4&m!jrhT9|03u0C_Wv^5l+-lbb!MBDos*lFUr<<7oFgQagfFSAdR|>qTUX!E*wjqO
z(b8`3=+tiMDdH6Def2s4$|ovBPkcL)#c%}|77^fvjLyEFn_u`)(wDTnxccey+WN+q
zthTPM&7Ixvdp~~u+CMlvIzIV*dUl?@^{wO26@Y|-Q=5SAkAX0V*lFV&RqUwvb&IrH
z%7>F!rMy-~(s6^&xYQFlby_P&GllQfRh}NKjO8L-#)@>>o=+BnY|ATT%Z5mN+2}<n
zymVs8jcC;>X`Mu~qv?(HsMOq!=@RIR>lAwbj6_F=YB1gR8JbW3kfao$MlrtA(9u#|
zqE%cl;#1Zdq!%`PAM#M=b>hD6J$yM~9sF8!yRn@}SbrI2veRx3=_hAGD9ZVP`!(Ww
z;f7(6dn1E19UtHqXGPjF-n!zU9hX;SYD0-U%ta+~WuV7(i)n@<+oUV$es|fPp^LwT
znjC1o<q&Xmn33Mqnv^$q{kv%Tx)V_;Qh);;@Pl7G{bty{YJ9B0_e|s7CU4y3-@tim
zh?0%vW0KEtxuv|D`7Amf%{tLAzLRVCJ~BlVGa8ZDR}CQ*sKK)d&}+34X@rwu8<0x2
z>2+Qq=IFBcLRI?DVVEMn&rp7SGzP?<>Nh|`rsY27`i~U`q>?H!2Bp(VI`at7?41ol
zFnK6jUrD>Sn4lEVT1-xL5g<m`(MGLIfI`?31JSV<5a44tiyzCob>l6xD8Z^`gaolD
zmzJA6y;D+@yjJTW=^bq9d3C>9b-+U?IzWhn*R&j_Mk$r$2>?l4;I{aDni8}tBE%0j
z_(b{$A8QL=1=R4HGXGZ3?g?bssm$h!u6>>^eLk3(xjpusx2mMqwl4mR;%jW0r1Ljk
z<_jVSDlsuV$N$Fga2=muR@j*NmVI`wZN~89NDX#k4P=HO?hlfGIoPgnr2(HuQ$FRr
zj*>GbQ1;hR^7MnQI4k5lNU8<^%}L&Vff=Y)+#fW-%2D|XJky;OZOK6vX;;4%xJiL8
zFw-At1?a3)zh#ORO?^{BxPT0#<Z(_v8VyPG;f3!d9`JJBRg>i16r2SSXS-MCiQu<?
zJSXE;^tGqD)n<QPz0TCXtmjp?b(WdQ4xio_?XP_R0ZER;qbSdGfBc%q+0~CMV2Db=
zOR+`8o&2gik|ab^!6o;!U!fql7+DxfJ&n?;mPks=ha+ZE2m@T;(thFpc^N9I!F4Jd
zmT$T|<v!m$5+k(n2}~e+cx#&tF`)Zu({qoGcws+nRIF?;Ao}fx*V(aENbNTMXwTiP
z>F=}kJ#GnQbRbPpD&J9poMUy-%t!W~!#-P^zdvx-vGM8Af%x1agYka$kDSg_%wFt;
zM|cgHYXk)JQDXLGV^GW$WPjih=Vqd1*P+f@n5?tiH?nO765>x<$dM!Oie;Cc!Ei8U
z@$=>3+pE`lIs`iQhGg*HQ{`Q{4Y0815UD#Y&kkL=hszh(<=$h#^W;fdByAKw_Y)No
zK3d=?!}>4wyNVyMMj@#2BDk8BDybc9*uE6;k#UV0vz7sUcAEw>P5Pkz13J2gdK!#h
ztBGtkYCx6`7TPU75G6W)kQ?5K<@l;CEj_E5k~YGT{M#Ku-r(-?lfn)`mO#l;6iG*c
zqyOLF7;T9Q%xN^0c`Mw4dPGC}Kf$q)lH_%zU`U8RWHjA;6#ODX6)cDy;n_ygxrJ7B
z%?*z-5Vb)y7yZ|+ks_LXPtv3nf&U4P8^*8w+&8X+<54a4{{+XC;*L_f+E+OlsJHyF
z6l(nn4;4VUFP6VPqDL5b6wrh6{{X2rY9M~Q8M$eE-}ol)1J?16EWZcRz?G`_+<zvP
zys`sa3!$N;S;T@5svJ(RB{9koSP|b7VHK|JG4<|yMF(bZ{vGFcfm>~~hGT-fIZOJz
zq=EQ>2e#5NItIq^8MG8XCYyQ%-lcpRuKECv1$*j{*wPOu6l`v4I9i&h$t9B(>PLZZ
zhsb99lTzU=-qwkcpVO3^e}3{8Xc~bxd(OO3zAs&;{p&QE3jQ{ZERt9IH00&ex<|&U
zNom!d$d=yyxoV_OznVv#fiFE@(DN{qxOvDu<E=S7#6A`pz|I@td~#KzW4}xDlWbu_
zuAwd)@!c9>qN8n=(d5v+@@ox)8FOzh;$(`wOYX+5u9!*^aoNwisD+u5<V#K>Gy=C4
zm(}`ir`;wkC_Gz~o^3_oq8aV_Jfk92#G}DeVE{_BpYoba5-Edl1+Ou7X*Ds2cC<fo
zYcEroWg4%!Fz@w$$a?FyCgc7OdmDApqZ>wdHzJHq6%=V<(g+gL2r_!3ySr1m5l2Zk
zh@vPZErK8=$}{i#{vOBk9M3<npRb*t^L@U2_fo75pIzWed4%H8!b9~*Q9UK9N8ip|
zKnrRA&6SXBW5C#4iC%uFYY;k{@c0EjvUJ9qcLG9-AjTUufaA71!)Sp45E&}5V5R5F
z=KWT)4`JYOgfjwn2HqcuJc5<!ttJoq_1(GqIlw$`O>3<4)xur2pl>}$W~N;*<t<``
zUF>rYsah74WO^Z-^G1eYjUHbDsZVT)2~!lt;NV6fUvT)%l5~nF-F*m3v_9P2#sBzD
zUFHRQQk|WenAsq6l*IG0!!Taufx&Q~$y2B9365*m1l6TPDCw~+qsemrzHn;@SO@{h
zjq0Tq`?37Y-%e9tEm_n6{^HErk(W(=j3d4|{I~u$^)!VUvQoM#jeF+OwQHEW@2e~1
z5QVsRrx3a65$5qR`)IPOaRnJrmo6N~^$$i{#2~bRmj&Bb*qF7#Z+ZPlDA#sjxi13d
z{mLBijl<T=Z#{mfwvhSY!7XgDROGn+35hL^W!y6VaT{10bSU`ns3*Q^>$XJ?`aD>9
zpuIDAHRoW;Np`ujKvu@DId`eFgw?y<a-kmk{0pp3CvQaY?RSPv9I8wqaU(o1_Zcic
z8}nXJM)V#U$jGkX%1^FEAo@*-pIVUr$WxjTc|Dc?o4=&N$AC<)pWQpb441y%O~i{H
zgN4DWaYe?;fBM7PtSnC|mT(c|J#R^pnYp5V6Ewa_%g)IVE@g7Bl91cd4l(f2vSg8{
zNWS;N;FSISp_9RLb8(I%D^zcI=5{b!w&%jQk6KklkK=<LQMM(X2H63ra7xMXr{haZ
z0v0~%OC1Xr_MidBCqGbrM_*$Pnnq+d)Kc6PH-%?V+eZfuvUKJ<k++=}s$8$8-DdU|
z58N2LB)=?|ioPGzZw(SRp*g3$*LEm4L*MH7i_hj=pS%9oukVy4@FW1zPdxDOLfku)
zgMVwZO>PI?B@$785Lg(KgmG``t)BSEo*fBlqdIF*M={afzcU|SM+Mw=1c>t(W`crw
zQiCTmnLa!E;~xjFcW{E#UTyEV7vOosiD~`Rf}GKLi*orsl{NCRqgPmlL_PH}T@J1q
z@vG_Z59KwcI@Qkg^JLHTWCk>2D*;w5DGA9?b3DsAP)JmxPT3Iu&94{PP_L0qFee8!
zFUC|fNod;7f`!j~nA&;($J?b<B+4VwM#}ik3xI#kWW5~_!?{(Fs&wodgzy_N#P8^N
z8}dMH!A_~sPN^_^Kab`zFOJzr@~Q|m8n&10kf$4fhn!5jY-F@SWQ-pmatsNfjrLhU
z8GU%(-1a1G*I(HYkUG}&?z}Ux0|;YG`DfAB%aL3lzWcm-k;_qW4(Mmg&$H>#dGx_a
zCKe_B8omG_k`HC$4@@pbCO82}mmzB3^!jWWtw%+o8l%WsbR~GbSO{WOIf8vmWAe(?
z7P209v3texMO%zOPM<Q;ok5^puLjS&URORy`G9t+fUwEPu)*mnnph`0fnh${E*vSe
zX;hR))KfX*N~frr%SU{e$V_OAnMQmcdqV36%WwX-35MbP2UVd29pOsaQW>F%Zeh`Z
zozW;UEiR9ghba)=u7FK{bo(VLhdwb<3}TrM9#FxN?L<eyExy<b-~HhE^|6jrw!17E
z87G$b%M{Q^d4eUsyvrgYBN5*kEjuys3}L#cb<^ZB@8PysGt-v>9<rIsQ5+-wS?RAz
z5rCAlubf>F3WVe4tV<jo?}f6QdTcU(l8DCs$Qs0y=f!NRpfJM0T?>U;(}JEtKFDRZ
za5I?`>R4uHL?ZMPF{<%n0U|WnPTJW8rjN1t7xJZ8{1=&tu$KeUY!(&36hs_<RKwF5
zl)>;KVeerNZ*~MGdw(Z8_$sr6Kia?R76_F$i@?4irss5LW)Cs&KGV+l0AxOQ<XpOp
z=wZm|_6NY<a+8m<d$S+UG9>p=<lf<D5>v}5zkrZ?6kK&WV?CLO;{;e+b}l{JBrcBY
zRoX8u8PiQjEHaCiORwE5Fwi*zg~%DFwX~(mNGZx++!I@6NcgIgxuN5=B@fv~7jzaE
zBoujCe+162+?g&?*K~mRi>#iKY`u!qKQzMpYhn!%;diRTmB#KX(xqi=f(6D)Fw%wG
zs+L|Cxp8#q5BUir>_DRMKp5R~Xi}MOAj@-(Qik!+kW-0C^u5EyGV!pelTdg(608hU
zu_RJDZUekIa|2~^5U4vD8@HgXZ7^-p6A8E!*&2AV%*5zf7Ah$w&QHOXvEZZ>qT5}@
z86L$`q#oZ`$sxd`eO(DHqP>-`TKcHvvQj~HTwyN|J^KORFjcD>dm)XBv;U$x^0*v@
zsKTH1M_*UQ2~<U_6mXPRNMI`50)>_X&_(-zr$S}f({j(j>W5pEG2>;*gq{-tEcX00
z<I6>BfK4)EZK65QQsdiJ1H2}xO(o(c$*Ggjs)=8I841Ff2#qL;h!WUJIH;@{D2F^B
zs5MnXJRMKme+Kej;bD#}S4P6S8DDs2%L-or3j)<?f%S9QOe@!6a%c6e{I9_y$#CbG
z*!EDiKuMfWl`-A7RiS}E0+HVIw~}WBr70LsZk<vXb<nX2(_W3NdMd=Gt3joPP_3J@
z4E!Rt8JOBg?-~xRSubnSu4|NQsnLnzdj{e|7RErIPtP?rW$_3mJz{J2abT>MTvieW
za!b;g@BBs|qHVa2Uq>gk&MczP^qk7EGKrYBzMZxbXgmKwK?qIT(673wZ>^{`$n_p;
zjenBGPZHK7F7;Tz?xpYQd7DpI`&4&(*<8DCKt(FN?Mt(lFB2y+7Eqjsa&C^Y@9G$d
zsqafxh}4sMW+4|%+!0;WrR7v#M$?Et+fmBRGzjFfi#?<`#)4cEk)eW*POf1VMb^p8
zVJ3iW%x%KaIAEIl2qK>iqw4x3-2qEaDnPYF-0A*|?&=Ed*1O|(BZX7%!qLdo(-~^a
zXx@?luX%9YXi?khfL*mA?lMf3{4mtSN?GT<^#)U$%$eI$F;?1vZZzy}zNei&>6ivH
zam=()j5T8jGqtcBd>}uVv0B;kK?)Psk#%Q-pB&@igUwzy>-wDF(0}$N?E#%qKw`C0
z^<AoyXQNa2GR8cGh?8JbKB4wzS!fWBii-yTQ-mq<aRm9_;Brz}T7EDcM0pHKcGZ6z
z8XQ^R`S77j1Uc|_qa9_@Px3<Xg5XgvBlu^n3zI9L>guE3JLqCBDOxwAFH~FjTUki)
z_LZpqa101j8$P75+)q1(F}3s_74Xv2_ibJ3x=+&mN&4N4OSc6{QR0C8lQC8k*UIv?
zS6Y@vTdJv4;UF#$=kpX_GMtg+iZ%%$9K!iQO^trH$tcPoY3xl)@Wu$}Ais-ZRGwLR
zd8puUw-F5*I<{a)wzPEKDQ--I;FOF%ISlyKI*L;V67{%u!ee>(TT||LI7(_#gwish
zE)68v-*8oW-Sc*W+maU}$B@MTvi~2RMPu=-7)<mXn7)yE=o0N!#>h8YK~Ub9790O9
zX!_^P)LEVX|JZDj>#~e7Py>M9WKPdlU?VUSDl$2WU=FA-r+zKB{_S|vw|`ZZiW5QD
zf2%CBOk1uqyNB?P_Kd7aPq;VqD5nCb%4Zocvt%r`Uzw*jnXCTsSr|g1QDL%mUZQc9
zbjsrk$uwAI;g=MSbnwF6U_ES@<#pK;0*yJ^DU*Uvt$T__+v#BDKM*kxXZ%Y5mlH>*
z2!j10Y?Yn8SXdDLv!Fz~pmvw0$YW8ieo<c-a{rGQP4JwZ{!&8H9MkF?qudPpbEkdA
zMTtLi+sq#-`XTu7vu3;__=xuylaXwfWy4@;%ErZe&mY<!0uO?hgM7xxa+rj^&yy?*
zeVm->y&k`ooF})Pw~qYieYe3Qf3eaGcoW)BDTYO|xBp?XNl92HyEwOmM$VTtabES#
z{2`G;3hSBVFIi00eE&?Ph*n68Uk-^I&kTEC_J^<HJ7Usx)M+WTd-=&h-KXB~pT>KV
zQ^Z!DkuInTPrE%|lwnzpY=n3}2Y<1QF353WMe2^+C?64H%YJQFZ@x~EaCY1SB#Vr&
zMHdP@oL4OoOG0HgwT~3-A=cp_obvnEJZ7yFV7<y|g2_iglTiuvkF={G97n=}Up9)?
zj7350`gFl`v-g!fHYFw=af3L?*B)SFhelFMTyYicln?*IVD&zc=m@V#!KOF9?>v+}
zWnY+dvi-H$L%F5)il3!m2BxvxIs_Sbbi4TxvZd;VX70mU^xITo+snmX7G@0EueaV1
z&P5@%U(-AknB^RLbLYPtmf@jMP4Om0`1X^&?aMPpUf8w;>rT;7dgj9&J*#T}1m-;{
zGlRbynY}>Vm+i@oJ@DYBC-aL2?_G*V-7E2+jK9&TM|HWYz-zaAz6Gnr&y8a4$KH8d
z(pS3jUG<wd?Expw-gFqFN-0Ragq9rk$Py2Gm7sI??_NiGb*R85l=7Rf8;B6IbC>eF
zl*fkc>3(NH-LIB|maPMqpwSk^jqNGvDY9&McVkM?x9ODa^pkH1ZijZP@vhU5Pf8EF
z7I$2<*2HrfzyE!7%X-X7z&WmTi=zyFz28cYl=?x_2dG`^<K2L?jWD!@06Lrq&r;cE
z;NA{lUb)5|e+a8{Gl=MruyFzIg9A3d=1*S}yCTrUd^{Q71c_XnD!wgb3*m&quurP{
z(Bq%-(ea!xUdp1MOmt`S3THi!&MMZ_r3-~KFejlU$|7fHS<ur)*m+#2I$6>$%-U%J
zNd1THnc|`#XqS~o`DfU!dLPx#H28Vi+Rr$T^Cmd<6a1_aa}kUA^(cfF{(y*W157=8
zNe#Pv1G#J>x$@b(q((5Ngq*N?t}~w$hPKf0BYSfifW+|3q`TKuw`4`4*EG4;qD>$v
z=<jCbpR329X3^i-4YyYeU#|cr26quiRodz6h6n#+tVwBuZ*R7afA@!!PqO`)PbBSm
zOYu3$asW=kCUrA0OELq$T44K&N%}LK1T2gGE780*__P1@@6qkwW47C$%C{)Y-?Nb0
z|CVTO3MtRYf&aH?`~QQs1%*Y$C8hr#Xxr4>5~Hcz(b=Wl+WV&OEvA29a0n~fj*g8_
zOioSDRJC_^&tjSFhmR|tKL3x|zL{U>{D_r!2e1O~Q5pwp-hcGnQX=j@+|ZJ3=?w#$
zRJbNClbJ!1Fl$M8ETx3`t@cr}f^P!zvyxq64!&1^K^z-$+8gY|-1NE<)l;^^`XUrf
zY31<9sa#^qVj~9U{;6C=Ya$=Jqt7D$Gj{v=vBoZ6P7;SBC%LlN-;`suefHN@++AW#
zV*}(g9L6_|Fx`GMmB9NL#!tHuare9#KH8_PYxTPzsJ=aE^)vkXR*mZEQa4{?#o$|f
z;_jrdVP$ordWjdrCP(a}5kzd1Cpi6FbJ2=rrc>r+s+7D+xEkCaLG}}`iR}|`rG?7A
zL>aYM<>yj(=(SN4E8!ML#8jjtD4QSS45JP>!_1MwxdBG%^GwMy!MnHzRGd7}hsfX|
zG+PeUgqG1+-Ytw!%ps32`R!%NQi|g77jjOnFbuKsW%Q`cZFv%aEY1U|aZnnkFmn@K
zN}~Xx`;c{ZDu4X($S9#`X0yQ6HY`=G^1BxqR;-;B6Vtd`BE<G0W%IF_JfxIIMw6!$
z%wxohg{qSdm{3AZN)C%?Tn5JYs5n2y^r))i0SilCC+%dJKQJ8IN^N5<A}t<gAk~VI
zV~reF^QS{zq|?|pi|3RQj-kBoBkkE8n&1P(lDnIu1$X~=*s>$uNmmr${3PVhONlXI
z<dE!~eLy63a}0Jkp5onS|8<XZlvt!H0z@nfm%y<}Y(<2brPHcH@&d>PiZ~j0<^}o4
zZ{QDZ(+14t%D5fADU3D1VlD~Mky%c4g`#+Ogg9pJSCh2lc}#F-qf7;-5y2|Xn3C|%
zD_mR;R5|Kl#=1XW!-N;FQFt7}V&O!!NrD{RVO6z4Z(8OVT>8)7>!IsfIa1Od#oFB&
z?FB}W91!8weP9s(jw%Z#Y)uf=cSAPdIRL0pHn2+?nU{sJzmwgsDt~wiCOr{`S3syP
zqu~%-fg(^q(k!9@Ml}gv!Spcdj?So%|B;&gsB;$xASMaYCX|Fe0hX=EOW@H^dIkCb
zK<<yWwQh{C$|rmwF>t4W3Cnrcv`B#L=e6u$p_yTtbL9JoG-2)MNUhq9H5a0(j$4R(
z13GOb5ldB5fFy#eI}aYf!D`NegzfB6Oi2Hk7~%ncc0jHG*vfjKg#PUPNVs)5o4C1)
z9o^#AvlJQkM0+77E@3f+qkQV+R$Y(CRZ7|&$en}H2`lZr@HfZ-4js|&c3<=q8tTEd
z?*4mA4_rjRJNUp68wm$SU5#r&`N`e0vfp=6=br`NxXo#~M9h(Z-|CSZL)i{Kt^bYc
zK1qK7rMWCL%cE`YVOT>h7^eAeI|3xWVn}lNuP3;35~^}Vf>S9UC$}H9SY{pJ#u&hp
zosMznI-_tr#@ESB8!Kc2j-QE+!mYD1XecJv2&Ba5$b32nQ^cCkVT}_wx0WDY2BV^A
z@f(#JvgBf6$^l5e>INZ-2Q2UxfloU+L9iwXVJw-WpgIN-DSiW!i{V3rM~g`bn~>D7
zlenj5C1e3rxxLj0d}}p3&T)WOicB*q<g+ccJqV2Z2ZRq(!{waG(qvFciAr&0;}%Ab
z&2G(FhGR-upR~NgYfVl~7gQlL!(_!RaYd&zBS{$f!=9APgPsTt@v!WTF}$CZ_O0g1
z)0J;}lp>PoL1ZszeWjUrH5VTm#KFF|6lU>I*YzDqIn0r;N^Bkx7iJnqk$kDQ>g);a
z=jf++gb3w)HVLYUb8y2?>u~OF%14jxh(Er-3HXaFIA<ObyQ70$H-{LaZo@e*FRv!-
zQhsU*a>jSLGGw~PJj~9tq$YiBPe|puAUDg*cSWQy6Zm(nfOtx;kvS#}MrKH<9Hf3<
z>lp^bW02**#Usawo-`CW)ih<tot1+DX0#=?VWWE-ueyO$R@E9qymcq_Dnm+R0d-jH
zM<SCCs+KTNBpT7r%7%f^d)#+(VDHCe)CL6RjcT~omhT0$GR|NdEYNTlm7RUY{_*tJ
z|CeBaRmu6@!*w<S8Vo2Pg8xgfr0^HDU=u8N9g!u{BK8pHJg|NE!u!l-Bwnm)Kj9bJ
zP_<`Kcxh5d9PLexLCW{g@7E>x1mJMnTlS3>0pPoneVH+`ajD+WNXWJy)uIVA>5_zf
zhvn$?wZ9N)ihTm|kv;_xrcFSb%j=)xJzb$K_ic-E3MHu^#$h-v!{(h;VrkbxQ&cdb
zs;Tz)M=~FOA&px<+8>#}VOl*-pexwMvks&&uvluo5IXV+jbsY7Kpy&b_LbLyk88gY
z9(UN`uN`@PjaliBp>N6g<~r6mZ$flKV-vwArt&CqkdCiNR3yhEa*S!+x}C0#G0L4i
zqW25p<dQ%MUqXz$_j3|A3a9qu9_Ea3P7~MUfkr}x_b_qzJ|oPEyQsfJyZ7r~nXEns
z84UUPCWOW*;JGpe!<ps!lvl9mc0~F8nhymQ+Hw(3@OOGykv5uu9&%KAiKyiN5P}zy
znYbF=KlY^~Sv`-x>W^x#gMD!ZRZ>D~=oSSaqNIt6)-(~Or0fCnL8brEWI>xcgzWE|
z<|p|&vz%+&R9U{_#?FT!z?b;R3xu;smUt^%V+2a7m6H17h{#-d_&1m;-=|{W`2A8Z
zO`Wa|5)wuqnlpbDKHvTl%07SEr4RoRI1>YPwZ-+x>gFQt?}2{Ae|*Ot{ygX}Xf@72
z_CaG<NgtG{{zsP~D()o^d9c44cQiK&d$orq_WBrf1Ae>ASL%Pdt9koI`VHB$w~~HS
z`F>=wbtDK+Us=md&)dz;A@SD+N#r(P=|s9}89a?miv`yrM{PT_c8?1!UY7fb$g)pQ
z9fd_}Pe?33YWk~}cnhK4ee{EO=AH;)QEco1zN6k0DaJ!(O$<*0d2b|-^t*`U#sph~
z(}=iRIn^ZSiLQIV(0cp{$wvhojppt*2Y>WFUt50Vuy$VV5Xo%oSOvK!{(jkaeHce2
zQk(cXeO(86DL?q~<jie{+`Z(G_A}S&fy145xqY4uBz-G<l$oE1R~Fe6m#msJaUYYf
z`$xZ1xP085_La_ONQI|lxzB;U(VhL!+h&J__rovZs4X82zN=^gM&nkRP#U7Z8V}fy
zSFJ%0P}F=Wi81|Gx5r!VNa=xiyiYxh@0NFSNJu9j3{*&lO{S}NfYh4CI1glv1K3{{
z`mW9>zz(4rczP90O`jPY*%)j%^eTJ}A_@<E;1#+O&GEw!V9oNw@6@>Al^GrYgd1J>
zk3$7JkX&%i^=%D0EuKrdFfO?;CZ{lo4_;Ekt^$|Je|G@FPNcIR5YURG*9I7~bk}S{
zh=1a2U+`yghxEVD7%&cIi3rEX&}ceD2%{dIv_uLH(+;$UU+=hK?Gn>uMN!x*-;uj8
z-lzkDi1cq%UFqIu7vVnK;X3P#reJO?nZc1$<SR1O<%2t3;#l(0xtNCj*^ct)6j|p5
zHcgz1M{X6^;HUym6w2RGSshYg%Ega}5g3W0{SeNe9mec0ry>U-NC*3>;0QQA3r9X1
zbp!_Km}7S##Qs4w#z1O0Bv=l(#<KD?a67($E^Y9JfpG`Sae0H;D2<B0Tum=pR;?3I
zminiOZkeLwG++JHdbYG};7_OVBhyV8Ba3U~acasDQWA&g3@Pz7=CY?h>4ag)=dbdF
zU|e2dF+`;LqwiG~!j}-luHY4l<5QN}>b9RAZ7lT4i1JEZXj$op6UZwfte+wY$1EbJ
zKQSKTm9D{hDNQMiq5<LHoN234biH_Bl+4DE@|3`U6`s;#mvX(Fh&D(PjZErozjYNJ
zi(vj3Pb@FmBk>HumkO#>dBVqWmp@6FKP7xtSLF&YF-s9FXMH?It6Q3USV6<5<F#p;
z;NqF!=NBDdn;cP;T9&LOR>Y-a#vzYRjyR4>MuG%99+<4B{-74J;YYtP%&3gwc#xg3
zp`AdENJyTIMa{;(s(zFaB@)vW%M_4$<e!|W!N(63vM7r!#Sa=b1>X7tNdBxze3xox
zC0}_aZmvjGwCo&T{2DyI=NKaCNGosX2o=j48ly)%CRAPw(mzXnJW9WhlFjzcoBNqu
z)~^(c1RJA(4-9wF=>V;5#;=aVolJ^bQ-BO+jg?xxxN+LBQfrdds`qVL_Evl}G~8cO
z>}yw6bSY%WEU!=p;K8WGCKcv&75<UWqi4?yhZdQmU3RMrs4xX|zA2ksKt-nQ&S_YR
zk4}DAWJF_r6uhW3ien(4i10d@q&s!{s_0;h*U~wZbp<#gEL367*XeL!87<@yDCFiS
z>Q7FP14_*OvYzqL?eOF5eJmkmETCpAMSGO#Fc#z4WI3Cba|k%fj?jx8(~VcFP0G`F
zm>KeotCST(*uzR0%~@@8fY-8wvz34WQ8A@%xvewEMB(Mnj&iP{Wa}Cr?dq8b$|eE%
z_^p2>S54`kfReb4(t}XriU8xPY`)WgGy(NE0WVrdbD&NB7W)#Cvy_qBy+_*nQR$nr
zz5EHM$W{C+b3rH+{F)KWST6K{-%-wqmdw6(rQPlVB^>rF?9I3vOEZL5gXQRbnLm$0
zlOrhC90)e7Rq9A8mH~4iOVO}8cC9cfQ&#$H@pwf2{pfn?=K9y@=m?Coieawkiu?T-
zVG*dXN>;@$Gl)+a%*Pk_((Soc!@SX5w!M-mB2aL!0!#^5g76yVQtGR(OIajpXUrNN
z>6ATQX&5&Z-0DsTeF7*C9zQiJAMkCEkLDn)s$<6>8;ELMRODtEqddDB9M2PjJ%#XH
zbai&B!#&CqFf^$O07GrvBi(e=7%i(_9m%ecq}XlqrBQQ}LUz-YN*tnPEh{?`+DeCN
z4A2HX2T~rq5Y%F*PHN1t?tfNflCAftndGGTZ?~QGbw#l`MQP59fpn^!NF}YSB$EYH
zbp??7A+ItjoL#lU|1{~xQxS3lC!g3h6T8kKjw)g}E4zntt7+XeT_ef>>BF5B+|NtA
z#+0PcF+=b|3<;5dI|Cq*_?MiCwdiS8sZc$Cgj{!&L3g-EH$${;&2Q0}>gKmwkPJQE
zy+Gsp``xF!o%mEO;ZU%TlYO)W&`6vptJO1QClcIK)*b8K`?Be}qRY##=S;P}<<pD0
z10KhIt<2p#D?8dT;s;6=Wv=3H!ach5R&IM}YJkJo?z_ZI1MR(1BVJb;{-E>@#J&Md
zPw1@PvlG==E{$Hu%^N*ch&mO=jSNMEhv3f-p*<FFnFZ-C1$!!5?#=GMt=$*%C4NPs
z?@z8+1ug^e8!$7(RZiz(mNYwvjv=48?9+$a7}9jAxcc=4+cU8}SjDEm5;p$Ub~W)D
z;g^uRsbHXlQb-Jkxk!>h3}-m`2{RIWxfbnL{+LxUWUIFNzUweTdl=Ch`ah}(brf8_
zADRt3w~Q1jD!@|B5JU0eJ75ktUlMWY$TOgM3rqyfW?ky!Mf@{PJ;jHugN89uCZ_9P
zFKH$hqZ;E}S>HUcf8FiKr*A_BLc>SEztD6ZH_p>kt+(D|+4`OLZiaHdjj<ArmtZ>_
zbp}|ZX|8S(!aQnf_~xDY*!MFN29Hs!a;hGV@s#{O<rL-~cKptTV<IbWq-JugUWoD)
z!9=OPW?Rt2>*R^B$%*7oK!ock>a)Gg<S6I6H~bD$hIONl>!wX9Mm*I=9J@NgK~rjh
z{jT8Y9wC0p*(naV$+2LUHK$Pb%{}ky7CnxsY9UUC&>^SEHx|9D2|_~2`V;Mnv!hZt
zD?$@nO%k5Tz3=j-ihHLn#Q#q>g+|01vh4HgHSNt1<@Y^~8DAus^NKQ;Q0yA{-LIQ{
zJ3LS}k42?o&j*r<7IN}jj}FIqSSDJ8070=?+S#E$1UOkk)<$-NtT^o#><jzIXMPid
ziLm)3ZPhcZMLMe|29hk%9NIz*MLFE(LD~Yxx|!aNB0jVf2Ef-0pdUMOiJGxq3=%kA
zjwa<re@}q@g8ZfU@YD~SbB2?a4<K-Pr3@hIr=Zy(2r))kUtxL+Eq^lvp@iXBl?}-+
zLO=`4@$s?`B19I&Q$OJ;6_D~439smtEZZxJ<FIJ9+5su`yoD?)G+E11t;?9Z;DIUn
z@pthiUMtn4X+ek2*HS?@WssAnlSH!+E+~X+jk)X{O(qNX$keCtH~LRKZz28lpJu1j
z^`b$G^($1mD?v|nM1QTI>OUN~!uqC`|NPO|9{PCE8*5?rWyt333ze@eMynmds~5qm
zv1@DHr0c}>eKo0H(y~4h;K@cjdEUaZPW|!o%yT96QqWZ>1^1sXcZTT6XAKGPYS?Y>
z<G<ng^#?^l#@+QsZS>xnM+yYSx){a+AAU0!$g%l2^pUNe67wr*u-nFQu-U{E<nI*H
zVQBTQCJ?gkE$6!FKw9M}tSX>{b2wXWK_vT3aCsfR%(;Lfhb6{qZ&o8Z>^L&F<kF&G
z;8i~T;8&I`%^<2nLR(uEZ7}%#9#1M%2#AKO@$Up}f{vy4lKz%?i`>dU5xemqYXAfe
zKYEUkg9r@lTpRD9V0$SByM?oRXfls9=#KPHg$T9%^rHPL#DP6;BH8SI19G3{^<E{J
zb+*zSU%>;+QE>P4L8-^yve#h&Y*(6cul5%x?F-@JI+!}?J2g~BVUws!&3olO*tGx9
zm5kJ_ubs&JD7T1`fA;nM5fOYL@%rZI%<9Mas~;_mAgRV5H&%z3W6;g?kFA6sBOXV^
zIY+oZxQ^8{;tP(;k6Hf@QpS;moX{7ZFupxueoKVkkjo7BWU&SaVGtoP3r;qo`51@*
ztYNy~rx@F*gz~A>gCRESQ@O%Zg}0}QUr&{8Pv3jop2C&S)UD4nL(a4d&(uWEbibbc
z+qz`?^-%fOXUv&V$S>2vU*>OrS$_SMg!pB}c5b75ZfAY&Fmr+^B%zxl8=rQ1{uU5_
zN_dVWpIab=&5;+<5qi1<l1~X=S_8o$l!XZ-jE3ADV;7RLl;PGCE`=2CqJ&)i#32oY
zejyAo<d<k`l4NBHesRK3chXeR<>DW{*|$W}Csd#7sq(FTs~RA&?xzcW)Osb<`s*1b
zP}V&u=Ajee{x$lSf4!4n;z<Zvr()WgXM}kabR){b*c(`mLWRGk*OP0%qhL2BLv$8O
z#w|6#VhCZ;9C4c`QwF)Ep4$`m;v4u~uT#oflCSRkqV9=XmB0CK0O&E8-vA=dM6_<r
zu-U-$?SIe~%EJ&D6N?{>j%4LeNrlG6C1hkri16fu@k-=Cxdm9s3SzRV!ikmnI2$>M
zqEIo(sVV7U9i81d9Lhi(Zz?Y*RRmEJC$BPb?d;q?(KbR;8w+i<!zjfhdAZm6s!|rn
zr<6Hk1Vnj{kH2NGDwF5z#9h75;T6mHTj#lvd8ma};n+6&ROvK8PK+x}dWI{oQH1`Z
z>KvE^$sSIm#W5eqs@`~)027wL?V5k|=4F-otF2w}Z(1olmS`t&TVr-y(N}znThI-T
zoJjo@%Nl@R3NcW@|71&~;I{WM?W<P4^$h}oiUN=Qt-VyJLGkSTA5-3Y!k<(h*OT3?
zNnlY<0ZB`YkB1G#GEmOHPk&$Iz~13YI2^y@a`O0r0mGDsVTn2sy|R+ni%XKaof+IF
z&rP1)Na8}kv=t?@S=36))6B!VXd}~_nPYA-PkP=@P97J8(-5_6{=N$ro9Dakx-6;2
z%@+(K>keG`nq9`b<ib++GwrM4`Z-r`&(&c*uD!q9=rN4aCE4A9JpTIXG`akRiBWD2
zgkF<jmPCK&X{#0Th!DbNUW?)R<kIv;Lpx+qj&J<|TONmDAcI*Ll4Os4cHkMQrc*9&
zq`1vGnp$MuM(T=RV(`{go^<$Quv`J}iqi`HF_<);uo)B@#wQl43UD<hK#0_7NJ)7I
zU=Zm|yz|tQW+`Xd41EP>xDoMar4FH_zYdV?Kr2s&YivVJ12NWYu`-L{gMsrSu=FuG
zjH|0GBT~%KILAL`o+ny^wJRS+jtUqnj-;1Q)QJ}e1Eofi**F%vzhfZ9PR%o>=M&yY
zf$>@}W_&r-@SM1k2!j}|iVW9h&V>c4rM!jKF9@9qOLYyNl{LCuIp*N=i9JZqZd}>P
z?8cbw<Y&wW9%OdCwy8Cn-B_uC(Z9ihElJR(Q_)$r{qs7;$Itevs~=8`7sMTokG6ki
zggUh8>r!prW`@)9AHtdiIP9gpug_8KKgl>qAaf2AJe|xjdat_{;AZjfBAF-2M`Fr4
zM~Cp&xc5r%JMU=YkuWAb&U4@({wcs=A<+V36-|+h>)&$0#6`#*4-Q0p&f1(S`aWta
zE0ULlhRDwyhZFaCG`?R_ZbVcE$uhwQJ?4A421t}=p+!rkj(33-Q<pzz5_0cf;UqM!
zf6mAsiIjl8#F!$@KJv=(hklkc6`LcNj)VEE*Xpl<iLwLMz{${759y_V3WIZUNukN}
zB{#bK*D!%e10cJWqz}7es`5sD+g%O1NG`_Zgx=3%nl3(gI4Dv?(%kU)Wt|Cuoc6cO
z-(i=xkeD4ZQV2Kl{uYX;%EQNocC@h@SYav@`Wmq|eSKv3;5#v2|AJeVLMd_Bjd`Ew
zSH(>!m%h#&=h}M~#7ou<&R2cEKbx!a0&nXh@k2jF-hF2*^Mi&ki2pa3a5Mu#oD`2$
zN0@KM`;~r-xqFhe4*i}S;Uj!F8)nWBap`R`0981|V=$fRQs2Rlx$y=MGO3@pFW+VV
znCPW$fg!)6g`&77qxQ5QUPX1#(n)Y=VgTr`x(?c&B6nYT>Y-(!=8lG<0aW+#6mEz?
zKXFZxhfrJ*)mvOO28ToS+T9geWqhsRKQI+RR~FC=fuhj+GS&!#6uMFq6tQztLPpgs
z1LqbXqcJ&WeV0m|8V}rh{@GK08lJ<`Un0fIj&RCGfVWw(fRaS-ff*K1#`q+kQ<S(U
zL!*g};8OP%)hH`pfJvnybO~S2)4egWZ@Lf1p)*B*sey6D?hSPWZZ&i|B0`1h7)de;
z$J6NE#(^UG8OjJe1$I&E4#)a|X%7X35TQ>EJi_j16nU%IfR9PmKnQ=XthcV(zng97
z>0vd-D_h$nz4CyeaadZ#jk<W^o-C|b6%78)6HSuS{E#d*>zyTBE&L2b$gE9q=*_E$
z2fpvwjm#rW0joWQg*Ufi@Pu|pA&ST;P5KC(xe0hqNp&@f%)6wtwMz9?vU^U&`>Zq)
zsD^w&KV<s@%cG)qlow{7(Oo=ExsIt3HM^S6x{s)kmIi511nSlkwJ`tU154MNEm-(Q
zK)M&9?EZ}X3#Q-kh)ff;(#DMv0$YQ*<M(wc$AP|tMOoiJV5?s_LWPuz_Nwbhu4m35
zO2k6^9F&?pVMQtK^<uG%F!+A-c3I8*LIGa>&SMvw4;6v5+2d0C*2`6>8*GU=YOhA$
zSz&PopFhL0xLjJ~INX({Jzwwc;Ucxia<3I-iNJ>nbz=IDV*&%s_?W{~Xf>hf_`^>3
zIy&Q*j88(9jO$eHRUv6>4C#?Ff-|^m?1WFX8$A6eVk{&4!Yyv~)}~XMGa7~62*hzH
zfdTL<&Z1qQXAIw>G_~|3o@!aG$QXL>sgch&m|J@X#1Y1OpXz~-aKKXo*5RR{TD1E^
z1Ax})Qg7YU)IUg)37de1a_)}7_D`nRJVx2+p+mU(@GXv!D5#fevdOhwQV9$G@U?dl
ziK^=Y(@TyK`}L;4!+s(v*-{>|D_+jVURyTzt^q4n_bg)eP&&Vlv8dlC<k++96IFOv
zE4yvqI~f7K3w}jAV?-d|=Wkj;A5(5!C7)Y>9VLkarmHT?Tq17lKo$wZWOuxZWe;|M
z_aDZ86*a3pLnD8r?M!33ya0wN2aLiB2ws6-`yig>@huZ<7Js%GT$cf1NGf7z$p(=g
z6|cT~V>+i}*iw3RgNf8x8PhM2s-x<%1IPOf*Pnk$ir2R*Ro}*y^q46>_1V>`tQ_RJ
zJVr%Mes|lX!_O*sSLbri9kph@+<PwF7%Ovl*iORuB)0VVY`vRd$M4a|&TJyuqYYZ2
z-iixfsp7~q2eCWdieZg8p`>D8RTgE}vPT;@38uTe!%ZJ?i(U%!vAC%w)j!V=%L#X!
zCI`IK2JR$iRNpUJql1mVM^6q-VLw`|7sK0$BFr3OE^Uga8le1QPuS`6Ttq}|6vN?`
z6+;Rl(ejL*eIGt~2#J+6C!(Bm&T&b9@)-A?jNb;ky%$n_wMIp8gF_><tB|@dc&d7N
zL#50YL2QNedlND?7tA~KwO-hNAbMtsX`1PS;TLVaR(L<ZM=x0D!k2Qle9=`@vhb%H
z?a)QukI=6X+i$=D!n%F-HrA1`8ppo5QAwvW@^=?ls(dsT)%J4Oao=;A%I0lazAcso
zH4}<o5g4<sJ^Fd?<YTzk{L42ZLMYw4CBMSfshMbAU~l+y=KS%3`z#}}{(M?WjA_GR
z-G6AZt~6zJt|j*f?^Fo)s513BR<2-IQ;W?`D?}J>_OE$>6!N4FR>qcR4TGaDbUsuD
zlR&7yT)0Cz#M{A0dk1P9?T|DdNiMN4`Q%#&XQ$`;4!^>pmvNPW;bIWGG;k3dhiTa}
z?AY^yMq;x~o5|Fh<pZx$6<pg9bdec?>kFwh0<#(*PE~xQE+TReUY`)459~nMEX_=j
ziZhja<NH9>%y4~EM|FtGlU>zyUf4;rtv3Ow7~CFzGs?Y%Y3#x$d&q9ak<i(Z7>hcE
z@KjV=Y4MzR9G!H?xTFS8AY;7Ik!h^vDCsPGH=U)BY~-u6VboQrqZ2*)qp#1)577;D
zT!r4zF~`qRsC7i!=pLJr6V69TNJM93DJNz{;e+IJtD=Ld?iTL)l+a7$l+q|figfHi
z1YV#m{iDu{;kH>pb)(Lsh@icVTW~%qwk^xY$KSulDYk%KWlB5vPzBAJ$!ba$BX<rV
zH%QRpHCgj>&F7A71<VGEW3q8jZ%2vV(4&%|@oPBf2vE3pbC6&qP3t4R%1h=$K6E5B
zYQ=`pLW}%z6#3~Axw;!OS`~{$rsN(8^Pm^c2%?w>JbcouzxanYbVe2$Bn@29@vkuj
z*oGVVb1?E-wV&!TcQLVK6JikZVo2U}Tt7cPFN4d}Dp=&*pOATcvl%fxXi}Q44i_0k
z>i5iWGG3c8J_YfQX$$PJ7%`y&BzSlju*?=7vLl2wqqrW&7g7gRB}HQo?S)}DSom4X
zh10$cVnxW`sHKZn-agG<j+B(jNC!j&iqiDVQX&x$DJ0RWt9UGd)gh$1mII>X;|bnp
zxHDw>HYr*~XJj|JdC}2i(ji*I8FKgm>uLbapAtKkmB1gH%>OD9li@~~Nd?QaCydb}
zAoX_6^tMUADMrvyWYwTEbv(2B9DQWz1Ix$ap0(yRnq{{*GyOHq%|;VV@#nVgF_CxW
zRq8~BJLKVma9*FhaOR9vFHYDT$r;j#C=SSNFv~O#<?XsENM*>)(8==pg=1bFWaVEd
zum<hB%EmRz+8bkg`i&49IjE!{T{0{D(3L0Gkx#jkzow&;sa>#|9<I1cXxQ~c%nX3$
zuxc~pWozF8^=7<04&jAcDfBtKcdD!n%!;lFN*|mV{S8QJPlnL9BH&%61+cV_i09rA
zYsd?~j3gShtm2%;{9*ZYg)<w?@erLhwvX(kZv%Yj<p4oAynfcUT|OtfD8snQ7S~wo
zfFkgL0vr3#1Fp5)jHGg*aX)pUa;lWl=QZUhy2`PN5O2nOX5NZ4?`(&$f{*NRO(g-K
zZUFl?EJc#Kr4?{nvG*W?;>&ZSe5~|-sFO8jXO)v-=U;I>QlVBuSYYnpB_3q=q3S_K
zzMK|MCQ<(D_vKZX8j%q)()~E-NfmV_>-`H!_BADn<5~)+hUA%($WY~$Y-M;-RcsBR
z{rD{~^{l$(`c(uH^1HwCZDZ8I$%E*e%F%H^ccns@o3vS>Vr94JFtpaUthQ7V=gkU$
zVXPw;uZu1VEjX^X{!ko&d~I<}=zs0Kx*|&gVJj&uiI^+lG-<Gr0nUl;eb9}$!w>Kw
zij~Gnsb7-nEpYl7r>e#n&2T87cg5Od8yr+1_cx$cc6wiQqR38~u)&=vD2&|0D)^_b
znW1c~K?|>O5iyj8UCc^sw0xn92w^TE-_7dV1X52eVa?4H!Npl5LI4=SyB1W+J@)T5
zxkO!b#^~B&#M(sZi%s;z_L`g1_aPd;X|n_UOUK&gaa$;x>m#6Gla(?V3&5)OHfoij
z9T^R?t1A3r+pZne9@<^ap4v*M+Wuy*u9OoM%%q~A7phNW=Hp_NX;-Vx)cJZ}B|Mf0
zc?Zz6c%AXGqvQOUm<B5LIJiIz^(xmjC|CBy9Xf4`KrNR}-?=Ue2aP?-7Ib@Iesxql
zZimgM?qJpC4DaU2XN^xi+gr`MJ_8gb7Hw;k3gM`3rZK=Zwv0@zH_@T@L4YW~82Jow
zyHaXf;&~Gmq81ODmTNc8!Cnw{gsyyww2A<oxHMNKv55gP<V-CdmrnOho0RuTSBna?
z0WbrUTIoNgs9Flv6eY(Q2Gb`&#vJAEdrSUDd;E{}*ch0NxUCtZ>!(s2AhsMp65ud^
zz_iDZqI5^HGKhB#y`-gs5GWH%S6`p7{~PjyK|;W-IYgvtOm|s}Ky+prVY4m&1+4FJ
z`g!&H(HnAan{@rd<XlGCz7Gy6kqqsWV@NFTkz1zxQ$`W@BoI8bH&ha{gUZZ9cx@O`
z%Xd!x@0@Smg-L>$kg~%zL)w<)VZ^mm8@k<T;0HGlu{AD?AeSWUf4-=<rh@bhxBJcT
z3n9S9a-<vN=3n>j<>wKO<B_)%qq>Ji5p{(6heHN&p<MdIVY8!o`XhEi!<0f3kNpM{
zN(ZU-JY9JQc`IrT!J|4t?AQa~S9Q0Fxd(*rghnUyCZX%Yo<UY-p%KC)HH)>fwMOKu
z$YFu9$?_m2N$7as;b@Z3SehbGe=}s*JJhr_{$tX!GH9~1c0lNGKqY0eY*JT-K?fgk
z*GF%nDDGX!At~czKP$-qTIydr0ZKY|KY-^K$yCv&-Yk+4#3cJN^W)vx&YuF!mO=fq
z*|RJ+{p-IJvn{8n>?g=>#=g1E?qC_L!8mOZ<|zSAo8+S>{e9hGy%J*%Ja1+Nq!#&t
z--3i^(~MNG66t3g9GQplAQB9uPAx<YhX-Z?%qq63nem+&QOw%7y_Y73YuKH=Ezz<b
zyI2x{zK_7XcO!M%JB1Lf-`adxaG=8g{`rLXMl#%MT;xS6LLSH`neC1`Ll&;IhlBr6
ztg9c!WC215Sx(GQKAI!?Gcop>`U8&o2eQE>0e!LZ8(ATYpzkVm*!PdYkQHJtNa<a;
z`i4!yu2}5qhc3CHy&YXbjFP~yerp}*zaD8BNa-aDbM<raT4CuY!Yfqpm8N?s!4E$r
z2<LZxCrlzmrT%&G{2o)$HFw>r?C0<A@w}Hp{!EOF1qQ5APZB3D=&!o+elnqQj}oq8
zg?y#^{v|HubJX%Of1}T*x(69g4CaMl4f)czkk146KEFTx&{9ehmAneQ|Eb9K6Sw^G
zH`rH~{>a-yu3Pb295Izy0;`o=`}h3F_ZAt-gf9G-PipD&C2p`s>Ze~}`SURzD<52p
zcoH^#e4-Wa`#i9)!g-&I74umL{^f{M_RXr@-7kIcH&1yVzCZn=|FCaek(HC}75RqF
zosy-9M}NLO&gW(S4I<8#P%$Be79lApnjKgLADSdMvMMo)?2zO2*iTcBmuy2*3-76r
z_C2+~OxL!*zn!rLGV<FE?@NkOA`NgOH6jrA`(iUD3t?mjd$CHOt#%a)NSvpsUltI$
zlI@3E3I2SxcQd=Y6T1J?c$*BfL)yN(C%gCiWG@zekUYPqbFy809|{z0$AJzwHxKlR
z_aplEUt6){7TgjI^idNh?Y*5wkRx|x=7?C~;P>~z6K=q>goF392g$zQsSU`-{(jS@
z+TMDtlNfNcZzUL(1c~TAI%cKNeHbvn{14h*{*5>#qst_r+$;D2VmpS+P-9Q}@k5S#
z`bx<?jtP{HaNbgH|2@_}`9V2TIwK5u0^X$&J()s6Sd+kPYY@%O6E5qYJfiKa<Ucvs
z<{v&S=DqzNw9ST|NQsg%H*Uy=u>AwOv-j_W{J?f`_=+GgIp0+Z&ve~c)vV97tXbsW
zo?)4-k@c?}yHn%;W42bezYzanwluN7>_X0+3eTUtJ$L<j?sj|b@s-7a?e@ak`ocHl
z!oTn$@a;vAvX|G_3nbfRnDS+W^<`AZ<(=CL)Z5Frua^n8mq~0_Db}ZSze~xL!Q4s5
zIceaL*R1*E49jw)P$-1j)snv$lx~RKZR9L2^wbz5=a{|jIlq==+B=xO0`vT4hW`$>
z{Vkh#l~een@Bu09+HX0^-$kL<)rri*)<91p=Xk^QotPW^oNMmJYc`cXGhY#l%2(E3
z|BR?zb0DrIP41F+c#v5G+xNZK?TEIEiDEp!{20jcTcW{>)aUq!>+0L5#it7(fL2+6
zLr|F(|6kEIJ|UinmscP<F(WfUgeMElE0I@(&M7L$V^HQU#?}#TYbcc&GD`Exvns3W
zySjUNW3c$OxS{DyOvmtOc5W<oNs$|xNX1WFj8)YVMq=B>-lwFY;-PH(+*DucTC$ec
z_x2}Ne;mh6&CDe%EY)mn@76)}p%zO&K679v%LVk=MT{_^vDE(BCn}+((LcBzwpIb_
z0}-U8xZeHH`JtGELlxUH3hs$iW}kXJE>u!+(y3F5+`7bK7#p7^z(OIJtQ*8~FUi#j
z7rjtvkj#|=vVDi9e4HGn`(eKy&8Dm=CjmB6k7dvh{zK%8KH%(-C(T1Xbv}BX-Ai5c
zkV{oiv@@Q^E;jZexz{R^g~j&_HvG0TN%UiS8_B|kX8bLimNDK33&;B|YWMDE1e~sp
z<Byhz#kNy~(J9}&pp1KD=<HUgug6rUZSbFf?d&RF6Zgtcy3ct2&7A&H-2$UOi$%Ko
z+Q8!gJVD>3Uu%O@Dh4VAiiazS?a`5okSIb1k#p{cU+-pzo&VVM6LNpmxJJv?c&r9c
ztP>Olq2YeU`WIb(h)}Y9UaDt->o#!f++>X}<Pwc|;}3GgOAs#T8@e?lT8iee5xRE`
zq6IY04hTq^R_PM+01per|3*@-a7&w0+F6p{tf>TQ7G%W1n%O1olzOLZnK?7>X%l%(
z*^il~q&=xFPn8KgElb28A8sXEzv`OiCymSkZV3_60faAVjH;RPWB5R7YSsZ+pVJIV
zv_1>@%5*qjbrLfczQCVmJbZHdow}tlXIHctS?b-a>7xH)wERLPdkMpNvwM}rR^0%x
zh|x6;B)x!WpTkw4B)gincs#zYS|kiZK;|Jql{#gHoWUjyiil8&i{=|O^}auAzyhx?
z)4*)A$Ti5TK!s3OfD4)dA;OFkk(MzYLx{R=_(EMaC?CIWI7xAF<JcB~@$zv`dWdrV
z`I}pr2kmviC~R{ejs+^UGb?e)m>My-tM^TQ^v12B8!!cwc4AgUL3;LX<cBYH`b&zo
z>#f_;4jH>BUJ^CAT#ED(K`6ANk+)q$+DRZzKp!5eL8M1_EXP*MEHS|qPTazM_rTIi
zgvx~ZsFU73PkTnWg-c?V&g-z+`pD{qRNumSsTh|e&L63%g^zW*i}1?3(wuy3mLI#b
z^u@5H*_smZKKD(T!o0`IsvVqY0-`Yv4OKhBI-pAU!dqTBMRvf)k=ee$T6SIzt|RK_
zFA^)L+VxGlvJUv_^_NACS3~2KTlXQHjCfNSg?TuME}GCzP6S&u9oOOB_5MstF|%A6
zceB;Q5pr=}b&96HRp_yx4f#X<#c$$Jqx_WqbhnS_p7*C(6nwCGO&QX|xwK&9(Dq*U
z+W=uEADos{*#rDg4wM1;dyB+-Eza=M^;F)VP6Jo+5=_dd3ddnJprDb0K{8K~YaUe)
z!b9sH)Uv9YrXYMoaX;Y^H<)}H18KR$kkg7mKz(A=|J>MD$6#`Q%mb*C3K*{wg;xd-
zQ_kv#OPFFvMQl6-vcQ-!Aci*VTjaqp8zs7v8Nh54h<T)P*JY{G8*9dbwn{AR)-)O;
zl9}-8?m?qb)C}{pQDHA|A-c2b%56n>MA$lQAZNH>Oi_~D+{78Ril$J(NeEayhIa*c
zXEE%_tcn}U_}z3+LgWA?V_AYHT7^=^$JTCCY`Mhcbb04-BPlJPa<J0(6Dp`ClW?iv
zGEnw2pm|eoYrSbqJqC0Xf8u0W3Z;mIU?$iu=RxsOn?a0K-E?+q)I46y=^|(*-9AGK
zP4yB=@-Y4S2+6e2Vuym}a6<c|dB__h7PkHYh_Z$kZIInih3hZ*$2EpFMfxRMBAzq;
zjVG~Rafg|u(d2#-R0Y#^WyIyqNRDrw3h#$1M9wH#9}7W!4()K)!rIz6|E}S7JyhvX
z3M{5OZi$FR@bd~8jB>FyQ*wAXqcP2+8gbqf{HP3Y;{aVgBV3HTb(izS_57Z=Po>zs
zp-WoBS<1bnXr;3SdAx2QhmkV5UMy5lT>SCsH}R?%m_Xal3u@fMY0A2ocQ~e?@YnbB
zp<G$F@Lg((JjLcT9cJxO_|ky>hyeyq3bywoBx!k8xV<T*3_E__2qMC~6Af;|U4w2d
zFi33B{a3ohu@9(eC5M9)9UDm)YB1trd0<Djb#S*rDxT0R3DJE}6QFLWB!nmhGlM!q
z6pb628S-FKo2;6}#%+>_dX5cq!*1X2xGCj_gl*p}(^XBn(M3m=2P^195k$|=03>c+
z8*26ZyaVka?D_=u$)FXEzY-ZrVlxk+Ys82XA0wUFkwh;}#BrEExvCfRtc;_UyT9ch
z20X>AUe#TA9X&?6AH>$HOlA(|0d7(#CS~+JP{SxqI<`izwnypN>w8z+_V&>su@Nex
zwc?M4YDAQ2im%KYun`DsU4(pe!#T)w|3@TxZ=GtvuRRei5fpn?!cHguiU{H1or!(O
z=Fv4{d@{Ty&}}D>P51xM^wxh-y=@!r1hIwzX6O)b=!T(NhHfR5((fpWgeZuT3PZ!t
zol?>{fOI&3NH<af4kf7qQev=q-o5vKuzpx;eeV0bj_Wu(r<o+8uJb-ZM*Fn%oh<3l
zxCdRgr<KuYs!wF_`10qwx2rA1vl}dR<8Nlac5l$sX002yWBS)e7{lv%7wu_8;J+xf
zS3J`?KVyGupa{aOLNKCgyVcCEvGj!U@^AY9+wl-c#Hl;#5emvc%qNF9?7+;6OX<sS
zfib3y{D3_K+S_B_zQRuZisp%Ki?V~Pes`**sqj6?-*dSXa@tAX%3Yz^pF2N#(HZ3k
z>Wxn|i4&_GS2`{o4;ih&l+4-U0awILRNZhvc+<OE8s8f0nP7%)%*O!`y3cBwm;inz
zumvjQ4dVs<d#5HW)xX=Sh-1-s;i*a*+<_hnYup9#P4waeQ}I0@<C7*z+Wrn10!mi&
z<bp;X=knVA1^JjiDz$TC<Oy;0q?2}%4>B2prSw1Cj8Y7X03@pW0o_OOXusI>f*0;x
zOzVFv7ev4QNj?~u*gW<^wZe>p&84UBEc~3C6{%59FnXOPe(Qo*d-Hp#%!9p$kGAH1
z!90!k|3vjVv@iVUR#UN+vj*i<vWnvJ2r&G<F0Y)dpQMdFe)0Fa+2Ze;zq|0mM!7`2
ziVpBf%~8wcHS8+Q<xt#}&;T21<3962h2zcBi}#<0=+pDY?md;<G7<w(bY_7@AIC+G
zTXfOC_n}_6mHWI1aYA{)_lZO;S=YSy&xW79Yot%ZZ_D9zsp+MuSIqSb!xvwU%e>Eb
z?VjQ0yt&S+k*5))FMvkq2AIPJ1GB|Ib_gltk0@Pbcy7lM&3j5;uYojFEj&OOKwTQU
z!z0jX`b})NFO3imnE~vS`b{(85c)WdtsrQN#wIsP+>~p?`$dVMw{nC3yf?SYmN1hy
zt~Y|AyZB}YukN*TcYP)=;iG3D1y(LJqq--=;RI5~?bnj-QpBSrhLw1qVB+44etH6?
z)VMS;1oUDOAeNTep;l7vbK=sBQes54^9O#?p^Sb(0?Y?`PtWy`ljy5ZIGPW|0}4-0
z*K?py<lu(908>5M7A<)k8iNa+>H#FMmg&gI3Ykc~E8e9Uh>G;}bOgO%{V%8?JVE-l
zFxFC&ES!(XaedC>{s0i;6MlFQ86gyf2TT-MRi~4~_d*4@XH|SM!U`d3OZj-tLnQ}&
zyDG2n+gJFkv<a%n5_|_&B;=1rMZ4-nZ>_25Jda7uw=6C57ds1eFO`?X34Euda*$^-
zJ7S7-vh<3K=)N7%<ioN14kU?l?K}*B$_k&hHv41^+i40@ei{3;kvgOVP*uE)>lpCZ
zbJ9ElB32)T&$r-TeZq6`$Essu`|iO0M21t6g+(8+uUNZWKZ-m07}`dPJD3NA4<Zir
zL?lhUA}nccF<BH%g;N?(7tDJ_rzElPK*e?v_=T0F=^?TQ5dHhfq6_93WwFH(2+gQu
z?Q)5$mGoOW5K{wYVNfdAI<bs9BGx@FiU)tf8$`JPNqVc56c$&g^)#9k${NK8pGa1Z
zLYzB@QxN&JiXq)*G{lFPTIRR{qIuu;?TPcS&{+#VB}c)DFhOt63J`R37Qin6UQ?-2
z*u<mN^a@;RED2mv_#c|-=2$4Uv-w)%D#-o_QY6Gz<mBgVgDE$^%!naq<%2RkTB*xn
z%$3d=6r?Q6Pne7yNETak?#uANUw~+a+Vlg^-xDAhCotHb5uFJTqO#t;@OpkfyJb+n
zEi*H0BRg3*{ox~XtT1}jCnpY_J>~2a7bX0mEZXc5D7IW>8yBM)`DSl0CZpv|cRBMB
zEb)hLeB?pS@I<=3^#9OkvI{sf$>EA<S=WD)2$*6I-{hs{kv87s{>n@s@hJ9Vek&zL
zqH|cJ#s6gjm#mpnEc_b_qB*dFTHmZgVtxf7yVE)TnoIoO!NOu7M^GW3+z$W@Ramp&
zM|0}xR4~MrS<#X0a4M=~Gijxpe|QH+ZT3KbP~@t2DdLwT0?&sqg%_D;IZS9}5}1oG
z(Z!}&MdcdBpICUfU2eo^6`UpIxC`p$;6R9N21gqQE=b885i46;nrE#%yYvEAb&C@D
z5Ttuq<gQ>acd4ho$V`9keMn3Iy;XGEwWmE<Z$8Q8;K1GUK#rf%{3BRn$t|(wH@yH=
zS~)=L{y!kuj~`le1tg=iamU);E|uGpQF?ue@#u=sCh9PJS=1t|$r<va7uH3UKy)eV
zp#nb%D#v51QU-uZ5oq;A#qxc<Sf7e?cXJ-AoL?=L*ig--EFf<Y7-Y{JUaT53tm1iI
zH5<k7$*-CLRC&@`U5ToEXUmwn2&~#(a*T*n;r%KLM9PC&fvw$K**3z@-HH=Kk>iE?
zB~(;2(bdvz1jE#tI$`gC`X^&-Z<-bqsPGIES*U|7;9}R9!>kTrRNYWf&&*CIF(F()
zQaxBG7=<Yk3hPP~3ZGgPD$-SrE{Y4=RSr~0hgeq$y28X<YvqUYD2NS~rO{ljAUat?
zZn&IGc0oL{2;a~MiEzmwnp;aj-<3fUcN=3tifBwtv}x1hYXYSxh4%z>i>##;T{A~J
zU<Gf+<C=J~ngg#1JYs6p_fL)d1?XI3c(T{jhGI>+o%Z0k%*w8LZ$l+;i03~u#t;z}
zfvB8XAn6V(y$lAGUy!RNcNr9y-)1|1Z(A7dBobBUpAt`i)EqMu<7*2NDtNM<-;P%K
z#$r{KeRI3co(~z6hHYPGM&z}d#2o15=Xc!h?|3<x|LW9uEt27{IipNM_4{)F&0P-7
zPq5s`jwmecjTyeMU0^EPbH<f*)-`8-55KtAzU*JylL0SHXrno<wVdiWIa4xoB7hbw
z_OAKJR9Jp)2hOsyjpgfd2*ep)=3B!B6cb&anyFi?+t%p7TpVDWgV+Q4`Y}<FpToS<
zyxn84j^EcB@B~O;3Fo0_1EoyY^8yRjnD%E6I)lOQF6}b+Y}%VuA`ju6bWh$hs`i>@
z_m(twm%zc-se2+&mtm3|y%?&FbWpF9)}3~udCsCJfPq4bo9wJ1JHx<#Rmu;Z;6e5f
zqtEsf2_MhvKl%<3OGNvpHTr!xJ|<bT7{|1*E%t1=e&oXRIlQQhH*NW@+g7soF=oO(
z6V8;(f;+XK*_Y$YwaBW_N|WCF?~i3vu|jz;+Xoe^tp6sF2++Okjy5`28!Gg%WgF-#
zJ!C^3l2qPamerCJ*;zWl2?x=syH;jB$&CX+g;3CtFc6d0aQyvYi)-{}&xihK<A;`j
zkt$$J%zI*A#7#QSYz@-UA-tINzRO&SVhD4x`aT*7?r>4B9RcQEWsJvoO-+pspO3EY
zcOs2%6YVdZf(r(BM|eMrjS%d$S%rsYe~z)^>rz2iJtlRTXPs66740amK@Kq$IsUde
zIM;Y2<{-8~qsRT>xcR5?WwXiWTf+k1db)?p^n)iO-N&Y9IN9HfivLx;@x&7<E+sk&
zlQa3iCocBuRh{gg>D0-|c03o#4dySeltbO|X$dg-1{5ld#13T`?SiF=QV*+u{SHZV
z!Y8{<!0L6TgJAmoZ*T{3s+*yL&T2-kqqz^n(N}ukfcrD@f}HQgB9{+8wIS)<dm5d0
zIo#gR+*0<{qaU0*DiAynX9Hd1_`ear($xrn#4`DRBY+|yZ5RtN)(tF)?Q)ErpjN$H
z$Tq=ezFC}t{4e}3ynEmA&b61jK%?8N7^%WG77k!suS~v5<oDL8yD(2=bqhg=19-OP
z@c$e8r{EUKMi=bf-g!>~`=v5V7Y(;YGIYj{5dT6d#1>N2Y|~Au{+Ik?Y&}LFn;k8`
z=Uk$dUr2quGM%}yXW}Y$W%8X+Dd^SX!YvI|kGJfvGzM9-9V}g8)o1h*=5qf(R!#J6
z{wCVRxw3BZ<!dY=Eb7aC=a;|YkjvLggKGNpcBC}o(iqKhans_==;I=jl@syhEY9`f
z^v_Cs&=%7ek5+w_8z$(#ufPFozxlv_zI}PgH>vtTQs4$jo943dpn5fx8z@j)gghSL
zPS(;*T8>HC;FB<r0j*uU0mS|-O^O%Zid%d9eeImEIrnXoK3R;}bnE5!Db2BoH5`d*
zjC7u~dQ|=7J|nh!lGA-<lL5&fyRzySU@o5f)st#_ZMpE_%1RoD1i7Kl)IqS|+CKH%
z{MtSfqqXJry<)ubX3y7!Nv&P48n*XH@ZB7V+hd!YeMQ5NRr;H&ISPC4P4|i^_rwbR
ztBnP_U1R9rGN<=37YyH=ou2Ppu^RffpFgpaoI5wWzwOi|G(f+~aBsB-#8@+=XD!y6
z58w6W*+*jb(O5eCH^xq|(Us=+MmXpVnJ$#vECjSa9d^0f;;H#gc>YFL?s*O5;wHl#
zqk|8I2AIrLvm>g%vjA-%?4N`Nzq=$N!9a`@w<NQ~(AmBeEBT+st*f~}^zl47pX-VD
z0dXaSf{{mkGUxZbYb>{JvDYe}d|yn}Tq9WCqL%#0`rps<=Rcty5anC90(ek9<;vWF
z7~a}9A}by-2_U0d2(U)V?Fqc{{C3^eq|4({S64r##hm8;WFY+1d!~WyI2M~YJ~vt_
zyU-ci5P;VHxUJ5qnRkQ@I{1;R$rSiDQAzD?Jkjq4r_1>1YS`)Mz{YB&Uf8W8v!~rm
zCnr=&hf`^rii~gKgN`c<P91NFy2l@(zG#Pk3CO#3>Hqc^QHnNP6+D-H0y6&(V~J2o
z`a;L0ebU~4M1IVA|A(%J^~Ivp@8@R6l-g-sQ|A{-=ZUv|{^SiJSpHg^7&GU5BLY2%
zLp_<1^sX4kcjUXUnCic<$E}ZX@g<zteX&@U)PTxG#oRX^nR&Z)`PYBk*!l1uROhl1
z{gaaHSgeeu>%E*c0^s8pQRkt!sv(PFMyspKUdJcl;pz;@5ixPXR8a`wICWv#2wnXv
zrLBGnB7*|)rlvXrUegpo3u|t#Z)%7Xl!-vRPin-|3)c*GP$A#dbxgI70W|=!t@DZx
zS7)s0Plit>6KZJJKCW&iZDs5%MSMDn+Qnbae`^*CkK&b%$XMptGP+*qbF}^GbC}7s
zk_SsGYA-fpvWa07j1TO~%(ygO&??|_LQTzk4LA=UT^lqn)_`8`@7&-wdo<uIWw7E(
z(Y@G{lk~jtxW!}3G!dzHWN|#ssr%%{=mNd6hn-sf^i2WVT?A^Zs9nT2ACsmz6QV$;
zVe-&0wc@S&Iv0&VbIo%5^n+sepyt{y?~myJ9OUckz=@FzqW4Bx>el-cc#U$6TkGw+
zLmAkbMts@7_C)-a$k%9-wSMZhT(~=uC9yZBB}hcBu3g*z9CParW|g~_l0`aqmFs3l
z%i;P!vgm(tb_&nF5W{3j_dCvhkOnO(?_J7qN>MT_rwSsw*Fr-Nwo6S=L7F-+#N+AV
zyj$<P{{BAStbKNQBjDfr->sB+&lk&2zXSmSWu#zg`E61NQdej-bcbo1IgHh@Y&D$2
zYkM^U6)yB3oViPGElQ}QYz;5gw7nLM9=h{DL~7P)Jy!8+*?OGnX$C2#@|Vy?f;O}B
zMxwqzCT~J1>5&FZW}zNOWqF&eILX?vd^647YllC^_<1v&?0S)D5C2r;K}cXkPC`$%
zU<~f7D({R^@KfE_<y*P0PItEQa4XCLlFWZ5G+~V%3171^Mo5}4{-OzezGUMAt=u5T
zik*@iuU+Sokd;CZH8bdEuQR@Eu;daf6O#}LQ`b+AEY1jU*{g2(TCrDy3KyvmRDVc}
zu87k9<ibNsX17z^A-}iZFrh2z=JlC;FczXN)CRAMD6<i%tl@dElhYur@~w5dr1E>)
z{?PiKEXyDFm8KYWQwWXc7zQE{L%_kRzfp)C5Xo3NcG^3{Kq1n-((Kf&GNEgc?=Q1l
z5BgXiR~>$o;!&M|i&u$6Wm!B(AD|XAMr)9BZQFTNbM%Y-9Fd(<&Fg3EB=w|5l`Zrj
z(C<9Oc#zahVk7c`)yGrD3U64)gjxwQ3N95`;l4=fSbeGjVF+Ow8zFu=|Ii59$R|2L
z^sG>Sk<^VKJ>rz$5dwGzFXtX@RiCZA^86zK!FHN_FT4?pJ?6H3AAB_VTH*WodV>1z
z@8e&1>WS1M*7>bpLmYal!J(EoAF8a!s9<XJfJjYWV)OTlJ%Z;i3Anmtz`$pE75X#r
zym)0TQMw2SG)1!i>7T;^!DqZZ`thN-fxa}IAj&GyXMa!TA0t*564Xp>okv|I|DA87
z$6q`9T3Y+>V*goW!0&^8$;&^|w?Fg!J>ROm{MXw#et8L^&Ij48y$7=&-~eqbm|=iO
zp^OZGzse^Q)bHNVNl;`E0#^tm2fafThOp9UIEF)lkVP1>pKZ|)6uI!HKAq4G5(X9r
z>AgFUVCt$u3#ch*UfM0WvoH^Ehe)?*=<K@-X*@Kcu^Q;1Z$Z)-7=J)8G-xv4@K83|
z_>UQ3*27RjkfACwPwjb}E(n|CdQddQwz(!s_6kETd;k&#LBR}wC>_!#nd{3#l{==j
zkqL>odI9bMmDyhMb_at3OH?q^46P)UVmAz!>~BFOu?QX*8cDQ98-HJOlS#S7eYbni
z&gY0Ze}Ce7vD8pOQN2vD>IZUjB1G_?DEVsi2H$n1s5=m?<j6^WenAZZnU~+0`&2C)
z9ysG{W{>a;M1F-NU*m_1bzCza*11ls4eVwn6QWFUl;#KEkXJGiYkZHDj#^BnRwv0M
z+)H_;Y{m=}FQ?O1IUcKRm5<Ab1ZPG+;gfu$9n7$A!Jdi<dZRlL=V=(6`;B!=zILF=
zsugzgIn|ct;c<qk0f<6K6s#|-9HsDS9o+V-d#NSkBMbEmbLG1*11Tws_8bsJP0NmM
zMl0QuuqhA^N?5_guQ`1vtTb71Q-C4U0(*mx{F8m$O@l#8V<9VM(`st7`1((GKfFs;
zR2vd3q{_7Jp(5vT>ZU#p0;N+mmMy>1xy|5V)n{Fi6sBxhSdw^0`%$!%<FbkEoC|&P
z(I?Y@Ps}FfZRVQXUbSLOZ;jS>X+Pe0M~+4ZQQPO!rYINI@tT1g<%Vqv8(-w7xpY%H
zu>`xvc{N;~Deht4axaeb%r-WOi|anvvCt-Klq3{RAs&MChi%rl)81^kzVru}IxtBS
zuSHGw_+fe)hUV(|mS%(2>83kk%m7wn&POUF@8(-_0U<^wrbI~T#i3=hP_5{OE6cNE
zr1jY*g*l74(9Uc~*Kpy!xzx_eo7-~b<p1JdyVd=tGn1+a3O5S%J+%6d<2$DKmEC5X
z0YvZI`z0jpLkOMcoNv;QWgn;2<_imZqwhC+*Rr%D9QbLN-deM7Tm5Lfxg>C&Cfl7n
zP-m#4Do5UdyB~o(@>6&o%yWH#>Dw~Ze|{XP0^U6X`tqO{gocFZ<BdV0`|~u!>PIDM
z#l*iRmoem_o=QxljTViYKN2{_zG}b24tBh);i0Fj6kLmy3b_E$%+!G*g|H9_Z5)=h
z0<?WUn8GLAfV+rpS~AIZlFI2t9lF}Nk>dgQdYU%Okx*gQP|ouq=Z^5}V35(zs~6i0
zM|Q6s2jkP36d8RNXlO5XnL`JuaNI4h@*biL&2s9_6)fc3XL88qo36`kG#J=-xrahQ
zo}5HgJqyOcO!FD4XCun_!TVZh&-oE9-NFJBI_LF}MfJKy1I5>ATccVKXAOlL+p+YY
ztQMKq1scEv@DJa%cI*AzQ(~n_YzRDu1Q+zKM;t;JmmWZ5OsDI7V-Jj@TNdtAoj6}U
zG;#H%JTD+ZO2vm(X;PzyR-xBh+-=1@Jb%=zv5YImy5>Ch#VB*DDSRyI^)1eWy54j#
z#80+PetRa_!LWj9ix-x9@!_Nw6qcnk^IGL)PBwIG`jhf}^34;Mw9lZr(3gtFafoLj
z*S_`^c4rT|;EE9r`xbelnm1THKUB-wNGK5VSY(7)a<H3(!fu2;ij#KZJEgS++~C`d
z`s*3Lm;)I#J~){w^>5L-=BBgGO8>$wQr~$YV&nU1tM$TIc8yLj5>IBV4u!iPLDSiT
z)?6iHVLl-8D+3259vqaX6nuCJ>ibT^c44ZWJFIIJw2YK;xjnUV+HQeaW0AakW2{Lm
z#=Q0Car_avm~Q?%p7c-h{SSckg%V?`Sb$JMAh0BfIa4Qf$|6l6TP$zM#gV!NXa!~z
zbkkc|H%$Bv3v$jo;Im#J1?e?uE8qor;D+O?-8+G;&HmhJuXYrmBWFH|lsL$_O(ZS=
zPZ>0-AcfC|5w;jIn|+syaLWf!KBQC;gVbH#z<xnd;YXII5rG%|aMg^U759)rELb@b
z*hmkY_x6U&-ex<HzxLRY&MD{x69<F71U&!MFUp%bKoEL03<caNJi2p&6UT=cv+4)x
zMTQtU2^r7hJl1K<&LI{pp3afs(->b^cZ8aQuOL9B?hd(A0zqnA`tlq=DyRKkvN$JS
z{VAPr#r2V~EjW8`Uw@6)_sK0|fY(}&BXWO61#ba=u~GSvQK=J3CQbn!>;A+uaL*m;
zyXQe9zNlXjI8Gs$z`-kXh*$iqb(uBZN)P($6WVN5Jm8K*zpM|QP5?mbXAmI+XCN^U
zbkWo`OcNrquGy$z6OaK&qaD%wRHiy$2@KS;C{}(xHcbZnc{|Qc6DolP!!h9SRN%`t
z72mqjCoMI86c~{JmL@r}nI#}_AVWo{M~J^WS-b=qI=T*?a}p9GLN<aSUkgBVsMl*m
z$owkEC0Jm8Aa?kxoUWD7Mv~1aE`dr3N*x8voL^GUM#lcMj)xP0klCcj^CT%>K;{?K
zTp5iZCjPW6dF=p1Pk0oSpV%;)NM9a=aP~JFgkOQQdN8O<2q1n%FN3V$Brt`ItZBVw
z_uBQpKEV>L3GECiat0~7naOBEaxWp}_I3)#PNF%?%98B{>K8Q+>@mM^yusI0tZ<sN
zO{~^0=Y#n;L0<qQoIvKBF!NJjB`q#}PMmq2MrGYcG9MJ|3HZQL4V=?oZzQ~8OI(%7
z@*B*gB4y_L+EWqI&}<5S`@qlEp7W6$Erk#qb2KG8SdXX_X|^O@1BGh_S$(jKej5pH
zW=U#q_=GS`6<cZzEW1D{TWv5c6L~4xk_l-W%=QyPOb^nm0+L74u=O%FaZtQ83Mv4C
za=!&qwgi5nRYlx=j$u)FOj_n_ARCF{G?VVUJP%LEZP0|~9LTePsHtT{Lh|#PGqYcu
z<dZK7FtZmtQn>Z*S2E)QAnu;Hag<Jh%y3%Eb7aduIgn>XdpDcrv1R2&nnp$zLV~v9
zZ+J-ls+Z(nl<Zq)z0ZTsIFNsD3M0)tufeF0A|Hp<M<>`sR(cjql>z#@SnL*!LrGBv
z4#ZHx%<z>)lpjpOf_O33w-yuJ8<fRGd;}&+o@U*P%J+f>g-<%&3$Z8`^v<WSm38og
zKVqkuVNlR^vG*>z=K0`Km{I^1hzElFR4g7Bsd<$-D+k=xf4La!-|isniuc9dkyUj8
zsV6_WQQ*5MU;I%1ezadnoNZCa!?Ma=%V5R_sqW>;w)kup_)BF`OP2}*0jj?Gict0!
zMEVj3Lp2H)VUhmguZ>t8EmoarlLkCB#=0`=f+4W4O7~~gLzfbYi82b3&o?Vm&ySB}
zC#X6HY2F)@zuu^rU{PpgcX)>>RmYY(veLqNC7$h;O!(E#RtU}SR>h}OEGw6jM4)SJ
z<_xAaw(_}(-L+o_^G*%ptk2AU5J3D_+s^rjlzxb68(XIkEJXqQYq8{uX2nlbEXQa2
zh{HN@r?9j&pgHTZKEI)!(SkrJn#^g`fXQs2Al6%Hs)(ENN1zBRyJb)0YTFjYi@fT?
z`RaK;>!EDQS3xn!ggVvXt8RHoHjpSq*5la&wBS$Q8dA(H2X%c^(XxwRn>%Fu3=&mT
zy^4izIfIgVXl9Z%C(G_qfSNZP!`iy<O+Qxp@sgd%5!7-<FNXDSkt%Ny<eX1pV+P@p
z;5ZUrsifb_cf63&?&cHr$T}3{O$!2V<d{6vgeNtro!%;Pf=Ahj6@PB>_}P5X(nf)-
zY{x+VPP7R6+;2h_?(5*yq0D^w2KM+UD4edky`>J`UarzUwHVY=85B3%US$Vl+m&}`
zTaFlA%HH;A$#8Fuu59jyixu+Xos9A_oZ6%E+Xek&I*^?!rd{!T_(7vKry&Ts#nUa7
zZL5OIyt1pLuua;z^G9?mnY~m>BM8O7l&I30;z|wgpgZ^tJ+c!yR%wIww<M&$mpOy{
z879COx^Ga{t)qJOnc5KkZNHx@H=<)AF}^hWL~q%Sdwwq^2|dyiJ@1T~g{T?UnEp3A
zn)2wyr1s{P1)cvc>e2Wh_UZ!#@q=y*o)6teNP<|5ygkY8j(XT?=Ru6Z^p^U)lu~UK
zIrBfBe~_f>okH2CZ0vX)#W~Xu&39GRmn<jTAT9p0Txjs_lZQ<d?)O7XuQlR==#wuW
z?PT=`N!2jQzYOfaMNq#^-C&QzDr%BJ?^Xh7e>{GMMX`&~PHuN~&d7iH{Lt3sWuudj
z$Zn2<YuI2Cn<Ta)wr9{oYoLILP7=#f$K0!5s*Ha;9OMcjo^>RXz(r4Rt*%meBk;zG
z%o~%b8Ky#+8ftHn2mPCd^Dlh5*n{44jO;3p^r^l$ZEndohK0^U%Bde{$UjQL3}@#L
z?VNVTEcwmYhoob>pgJQGrb9a_)w#x<=#$ZK!pl>85w=nw`NC?@xI_{|jX?Hi`g&Zt
zS~gRUwEl6v65%GmCel17+XWhR<>g?9caL!67k{Yw<tC~gi~_F}c?lCANS70HJX0s=
zW>LZED!m@mXKVMOqzEj8A`_4mhfVw`@~oeB|2nPU_JCT3|Aq66Q}E2XQCsHfjG9}5
z<#L1iUuR3Zi73K|eaB=Rc8vO!;#3C`Ag}>CjY@Y}i#%s+Iv@Lu#D_y<H5<%FhZHfp
z{gT*w40iDU&5Mxp!FQ?GdAf~G<tLR!4)+IKXkNdOnRHpxNXCJ8lonD=?mUlx9XL-o
zEsn3b!vDKlcxMO9oG&dsVST0QR%gJCv<xk$Kw_MP|1~b$<x~h1pAT6Uc>e^F`5OLC
z?QIjyd<zY@0X^9vJ~AM^SgZyvtq#hq9!Vb&@7jw;qlJ?&3pJ;gpCi!a&1y@1ou4~7
zk-D3pA-Ba<`mv(l3l;^7;pVhqonu{2PkUlNhgQ$(D7D<}#LahBo~XW$*ItpvEPjn$
zio~t3Rjp{4t&DsVfqeT?T(}%4Ru-eG8W}SBo_f-QoY+<k^v8<rk1iH+l7^R;xVjd<
z9Sl&R<o>0sp~PuG5+wN3slRUB@noyX%4Lz5)v5=pz6EQnbTejGeBO%%-YS4c4$8a1
z<!T~_aahiY+=$HI@G#tfW^2kiNup9W3PRT-^4IlhHX{x;&Bo>`ee#VrKNV6Vu5;12
zm@h9h(mhn6jis51<^MX`H|KRa`_D-(q4{xapPbJ!Ye?bcwM|o@MzmGUL{Yd}tlCI<
zAHfgL6%}AN`2zYd>0qv?XbbAEBZ~A*omf~^p(#*v*-TKh=)xuDmWsD?9mc}mJVg|L
z-X0xJUEidteQIAPx_74x0O^zNk5!Y_mI}Jy=IdDE=iL{-xwsCrGvefPx%QNFb_{Os
zu|Jh0-jJopZH6Dpm&J8f$8C>437hfMVQTUl4R|47vR<sYD>!ZaDfip6F8IELf^_cp
z(||o&PK6v5Xmw*V-N6q!l6b-CK%?m76m3Q0KMgH~AH%Fe8RrAe>$fP7heyPN?iJGR
zjl=PpACi4P?8&ay<W#Qf9;(MpM`DhW-D9J3ft1+GhgZ`c3CfNA;{A&0BNy;beEyLx
z*9rwOi30ocVfat~&xe0$kD-Fcx|c^HcfMZj5hgYDInyp$Jr?NkeljHzU|an$HuYGu
zHaBWW{%ONV$vuT2TBm^h@@S%%@q%|HbogPD#%hMx)A%nkL-S9c34g4-miiN<Ue1g)
z6Dkv&Vf^#brW1674uXBGn4h~+$aNA)f~=p&uhxS|jIqF8<hCm8e|8+C4~`cWsV<2B
zQPyPfsO*zpUM*0dKB(}|yyX4;>O0>O)Hk<cM-IQAB_aFe6cwh$VRWD#Q`z(Uyz}ZS
zT@U2<?<Kv4+JnZ+rTb>T@G)l^v%9X>uTQ<dtPIP0A20E-C;q!o=byOU?|)SHn?e8J
z!z96PBnrZXmR;q&%wJmf!q}c33|u--T$lJN`RnvYTkOk$0@(knv<+cXX9$lDlMoM$
z<fTAFC97W%lH94myy^lW5@I0?>CutMn9`gW08v39n-pDBiI1UG=OJ{|hoeP8xTJyb
zu8vST_3{{E&xg>~_Ast0q&io~Sa5G&aA8qN@MntU#qOnvP%7b(knCoP-24c2s&F`4
zD4^aj^nHNpKD&0$Jq#3XEv2j*nWF>+^nGMZ@md%<^$y=50jG~*8VJW6YfG2z?qnev
zR*jzeVk5p_bZ!QSyB8ipVLd{+B#<=1*+4WS^HJP=?=-|eh(FLTvkgu8bdP4r%1J1q
zP)~(kPGtK7f|U(r?W57lS5O3nmHT{fs;+Pm6EkMLt%-!NNlP0e4<Ar;BGgAT{~WIJ
z75ax6Vl58xZPhihZ(93cHLi|CcBR4@XqIb_KZJnR#X_4VmOK1^PYt&=Y~6AcbR?3{
z+|ZS%V8b81mFcx#G?aZW$QG^S-9GP9>t_%&SVlGQYG^N2H~||FHZDS=!wcPHK?^jo
zHeLlJY+{xKbdZL)omQ!TCB=&0l_#a~8NznO{)4B+q{&&Y1BJB$;04x^w|SIK_kiiP
zeqyt}dkx(d*0JXga_-Vzdd6xDVGh$wMLlKHjN(bbCKZCg^716TKT2D1L0)vsrqMGt
z!G*%2AJZ3~1zR8V8ao(R10s}evze56-}-Z6LO#gb1?&pxXFeJso%1}@l87uu8Q$*Q
zAdAc_4JLOgWJ8EKmXv>ujcz@kkIJ0cdHbvqX0QR*)to{}yS25JfZN1R=$t=u%l2jl
z%b)aG2-EafCTMv%CQ3y>{O<YfH7Z2rrkVdN<EA1eu#mA5K~Sgs+n&P3{_G38h+1~E
zYc*j>=|8pn&gsomnyiRizkN==ZiLW4v31E4k%wj6&EFNEa7I=4AZkgD&`Iqys|hnI
zC&&M#mt_3<mj;O?l|zP-oyWq|&?#&%lrj#}i^FQD^x{M?RQ83T#up|{ra}4xk$K;L
zYrTgEj}X9h8t&5w$&6vm!v1?i{f`7|&<})c3VIT1;M_ul3jvzz*ah+ztgr6T3<Q%&
zb3B^HslP*)RnuzOQjIAhvL^HyAjb70f~8N=JI{BgQv<IzAlKeI(>#ASC^YB)<IYVj
z>c$a^|EOP3QGTrA9-Xd=L2<L(5!Z(}R-#x7Uegw0;C!JNO<0;quN3c{hJ<&sCVIab
z!|y}?LKnO;)jUT<D82GyC2r;X9AiG_C=dbAqm5mEE?oEex&0YFbq8GL*F~jP&A(lD
zx>WJHbV{0=e_lh-x>>rnMt0-89a=I`nfF!tsA26eGFE2&-Yw+Gi~^#}b3sx4X~X7p
zUgbHi8CCz+h2T@Gc%HM>HT+%m^j<y52KxT|;Dqu0&{^2KYCJJ`{)gb-0%VoMzd4A_
z9959I)spx#|GjJ6ka<q67GhwS4~8mDua<lWgPXX>IH2k#f~g8agbwfiCOeeY(*E(>
zt2cY)JRE(`N9<lRG^GLE2q5X#z-h3RC2XB|dpDM%)|9o&5TyR?o9SKshj-d-%_DQm
z*1$UNvP9w{KZs-j%oZW@)R-h4O%5~2hzuDkv=H=59EHCfs>9~tzz*<%qIU|($V)C2
zb!2ZsVrlaWQOA);6-_fH-<TQp!~s1r3^6Vot8sgS8>$hL$ny9D57#dz3_y^I_4455
zSl{k9EZj)kW#<#P#WSR@L!a=BV^auf05?e*O3Lvp7I|zFX<o9C(xT5V&TTMox1=uG
z%JLz%?!*94F`ST|!XuK`Vqn1|oz^z;g(oVCUT}r}8smTf`IX35hggpXNF~ni41!!t
zr_#er*XZvDk9oBvv()*Ps%|aZ{7^(BKOQN)apsI8!@foGua#mb4JU%xkMjYOGEJ5t
zQ}2sp-Vne^OOPr$0&=YO%^pM}KV*hAmks9F+*bNhKE@yLuHaC$+^}+6^^&fIMCoZ?
zZoIR@#OQ;9UcdTGHWa3FFOEwwG!>>1hBKNo$0bV3&SorrmN~mArADzL(uRu?<zvav
zjfP#rtDQLJ91O&krcy)z17R%7C*wkvTF(v5Hnp8pySoY6jN)%Metenkspe|?WAS!H
zTXZdsrV2}GG~dI1N{BS6dcZPl{o>*ie{5{kLqVg3A=}gXjL|Abg}v#1>BNS7nrbIK
zqs6JL(|2Vi)fly5`cG}AjfB|hCy$LjFD{<Gt$MWO<~{s*<>IuNNK@m^lx<gc^XeI_
zoG1!?`M&0AlOg-~$TYExgf<H>|G-mNewOYwMJSZ3r^q`Iyn?g7BxPdm)`)x@jy~d9
z??_gA`rKrDNu<a7>JlaB)i^x;o3^Jjdj6SLt1IqL+HK<J>S8a34r}N&Y}==k@(>m<
zHcSLV&N_CW4|4(Yl(>S~#?XF2w)XA+HxsxjWrcwmd`ywzUf`CS&)ed;_WI)ffa9QR
z!BsqF`Xb0~Dv-Ppc@Bvz&EuN5KSu%sBSW&WZg_HHP~?H($;XOFY1O<cyvVJlj|0Rb
zp-xpZ@jx`W7?!{-kPu9BjX0n$P!As9;Fp*?8Zgie&qTy*X?H7)3kMM?%}s;faE6XP
zl^`pOopa>-&NiT#)*zym5Nv3dMU0u3;Vq$t0|zF3mx(Tiaix(}bQykRo%q9;><2qW
zdM=YJg99bvuY>8T48WyaL3ikv7hVS3hN!D*zycz7G%S_P5s_>ShLgbvdoeOfuncdU
z+Bfv~BQmrpc@yWi^%ue<%2g(fx<n1PBz^XwW%-IXm1R3R?(EURXj!x7H=8dQ)|PL@
zoM{fL83j;kFB0<4g!qMigk&v{4bW@A9YN}3OAnV8Eu{62U;lVn`)lb7q1nlZ+XIi~
zuvHT6Hu7LXMqKXj2}s@>YVD+TM`$knu<VA%8DCYa7A}Vq6$WfD!Clr0sKFI;xyNOl
zj_P*eGNr#@Pr8n*Jv}KT2A)!pn0nn0+DiEYE`#965D+t#kxhnhq+yGNa7#s#pYP+V
z62b0Tp?8^{=?U@|`u7G_z_$|VlSUEr-k#pCQhaJ#M4<m|b&qi}hyK9#-B~=dk^lFF
zLhIw|kBUdyMST<GO1>DyIQlog?~b!0#JALM8L}4jiT=E+{q?NN?-OFc9yllB_e_A!
zy$13T>DYaZFB^SY+7!na47`gLUZ4Fp>qyr>W%g#-(%Yhwn~y{FfS`l50;8(FzZjd2
zjJ{FgN?zG*+}%8@)VF}}$x`H>aRgZad1T=AZ-JLVr!C&wBe-n-mO$JlC3w$e;Tk{)
zpfuA23xLhuffy!q0AyggtRLlb173<thktrER!X0u%mV+Wdo&(j4^y}bX9JvyKor1r
zFK!%V5QuKVeFYUf5(Z+xfX|S)gXF;UlpqSiV<sUVF5o)K3B&8e&VPO%23)6ZL5K>0
z$5KNM<`Cc0jUVxenBNZ$#f1EPtgm5hq~3y1(+@^+hYg^Ddo8GM&xeI$Lu}<WKgvK^
z?|ahvpzO**5GZvweZWya$VM>`FbjMppf1E3e%1R3whqHN1-~8$3lh@z)(1RUX#@L#
zPEFWbU3!-?-vKl@*-0X;CHx%o0wEt15UdLT#u7lt-N<`rf_}EpvzIMF8r{ww)&SFi
zpyrY1lN4ieZI`2x@I3lUUkZ1;*vqKJo>xdIU|Ioa#W~Ee-0s_iXs<^C-jWg|S`LER
zOPO$Zx7ZmO=K_T<0tNZ433Zl=#q)Bn0kZUK4-p6E>L}>Sl&;H+rg#Kil1y3<O-G*}
zCxZo>IdU2&$47hx3t?EfNMH*nnExkqa$AStg`~`c+@`e}%a*(dLB~Qr@qT#xMGHIC
zK@6}%ds9H_+}!;^XrgUXB5FGEB}LMIbpnoWA5uigz}S@F6Y;T5?0B&J<4FihxXktY
zV3uR3i;u?BpKj4F;-N|L{DX;7Few!|DKs%jaXpE$HRaDhf?Rom;6lQsPOMUEvgVni
zp>V9djen8FW&F-u>=z*qZD%=k4CFUN;`b4kq!P*qCS_&=Siw^6C;^^PNol0C=wv0O
zhU<I=2+<xT$pr9~yexV?X}2Wl7F!~(ZwlLBy2VbSbV3}oCr(HzUKX3?<&hi-rFZ+4
z7W@lH0cE%=Wfa(`aVMq!^FhA0NvC_Pdi^YpFCqhP5Y?KL5$%iWGKhlJ$>^4+o5{0)
ze}SP&a&STdMhSDnH)Z{Kwk*cGTru-wdE))dq?>GrPZ;3e3t_w&Kt_)qi-?|1^Af9%
z4K{tFzv13)^F)o2Va+sV(ZOl3%&N5ykr?S!e(=B0y*w1Bc~yXLUqbT48zKXiMX5#-
zE|s4&D<10pFL-Ct&Uf?855W~s3<U{ZT?+p%ct^|uN#S&Up@oI!5PA}WG>(?)pztbn
z&xG>ff*vsB$IB4zb0PDUdLd#20igpcDkPXem{ly_k`_nTOe|opaEjvLbA><)&K#u;
z-)hyd|5Jj2vkb4Z7s5$WpU=YX*uJ&RN&t!E-vt-)h?E2$UipE1!_h?)PDLv0N{SV4
zpUy(0CrU~n?BXb@!zK_Hj&=^CJzwmQUR3C1QDQ^I;j~!nN>%dIMb3i?{ld0L4_|s%
zQc9UvR8A<$Ar*1x3k55KL-DjqbmcC1q*7Kvu`P|*ZsE2mP3mbdlk%ni@vjn~95j6n
zp~3;p3FTfFCF#3YjgIA4BVw>dRkk6_?yR!g7A92zk#Q+Wfq*$ooh5Z4-3Qqbj<WqO
zmQUDA(CCsFYoj<SJ_=IR$VD-aVPQurP`_B%R8aA1w^Z64F|k|8C{qoaubdL8YMm_o
z+E$yB^>%pI@q3$Av~{-r3$QvVtm3Tt=Mb=>{5UJUj?|_%W?nsaQMO5XyG~d1<ZY2L
zl>_N(06r1CF38jK6(WLj=q<0A#TW0l6+7=1Z`zhOnXB+f)2#cVN1jK=m^ScD=1)@<
zP@wsE6dHuP>sai7pEeL#BtixQ2_}KKEEII#-EMuEQHi|dfk|N!%BU{10!)=rxe(t`
zYbwV|2OMv+ZXZ<&*3H?KJ>DA?uLq0Z0ZYk2sMEOv4`Hh$VFoM&-`?`*EK2%?@E`1>
zkmpTJ<qxGNV&;$*9jKOkGn!)@@X)CF9v!0Cv^dA8h3`Z3qbrAmYfGrRm|P|@9l}~^
zM&$;Fe?lVW@*7+06n`TbF3ucZv?JoZ+jh=cD@5C>Oxwah?FrhVi5BhZ?(I42&x?>6
zy_KBzH)!(P3l@x8U!FBfS<yVp?nF-dM0nFIxYN)JwvT2Dz4LFmPSLsZ`_{fFBE-KV
z7#%B&g7T4=B6{*`C+bp#9*_Ay8{TW%F$6yTzT{s1+U3QD@b;I8X>Wn9HrJ|j%}%7H
z5xP$OVJCat842yL2D`}%iA^f+TaE}^&FOk@=qv>sQdPGu-%E1o4NSVvG7Vvyh5gzi
z#<{Z3`b$W%bbOhWi?ZvE745Le1_N_3$~iJ>G4J2(wJq<}-IQrt#b$Ut22BsNYpF2l
z_~+^kM{)HxiO+qw^@?6mEU%vVnk$dCw9IWxWnR}u`UiX9(o<c*2|-EFjWZ*?vtBVc
z=_U8o*UI3=prX{wFz^UK-!lV*v5D6%m^*+lA0_sax3Y5PE#D8^IPQac6^42hFk}E+
z)}4`s7s9nUkYv!P$PL*ago_aeLo_ZCukC@rDz8|OhLh{?AKY+2%&_{z@DKmgat@`u
zrM|v7L1B`*0oa)D;31G7oiQR$+;3|&2HKybfBe&SJ$*#5V`O#^s9YM-W*+@6Kk@=V
z<LGogVWLx#xh=F{D?KWlf@8nI?*k!2m!3D&-N$!AV2vG!8aS&MR+(naokN4zLF}RI
zc=e@&NK72v5g1D}29i1Wid2Vg{v3-zb0y`7pV|uwn@^n^EAUp2c=e756^tW)50xB4
z#1HC`hY%XI#^1Q<@;zGW<!Lev2p`T}7&X&jH<1jzQTj)+>IpDC()@L9viQk^@1``+
z`!m{ZGrt@r?{<$}K|lZ2FJZz7;G4Qoto?|#k(QR=v#=#dM9zTa8*cw!)3O{fs1i$B
zX$A&UFjqojlkZCzEBm`63X+fLDV0<hIfawWMPi^2w(;%hOPXR!87X3jtPwbRBIbSm
z0-n-4`o#oh7_m757>QF~d5%hg(WAm@67b@{=Ezneog@xFb+&NqK0j>15r#|v-ygN`
z`22aj-S*vQr_OQuEpX|ZMQ4UZiBW*cIBx}67K7sB(C7(ESa|yQb7#9+OtN_h@iXbw
z(%@^2;n$p_uir7G$W&KH?o{PQ_AKvLKg`t|FY{c^iM=6G$T$$Yxbb=<^U2CvliGC?
zrt`akUE(~)AjiVxOW4)=1?|&MZ5I<1IYKMq0O`%VX2EjF=oen|)wI9HKVwOReX44i
z3GyzU@w?di68WuB;CJ;>&E3|Ol9zOf5So9abmVF@cAfS+53{L;YTUZ|iuTxZl1b%E
zdZ*sbGGy;>!zZ_o*#7nv6(Qa4Z7rOtZ6*NAJ=)iakQCIrK5-t0m{(wmUjHIU{9Pt<
zTDZpdb>*i3Ya(N%Ia5So*H?;pX)Ak4l$YiMdTBTq$F*%?LB+EG&!it0H~Acna!VSG
z3eELQjiozj1Xu|JDNlFKbfFcXR~t4hU+=!Wo3=qqEagJ6Frc8B|8u@GDi5xZpAp9Q
zJ^DWGP-<Nw0=c$v5=>lAAz5+M@BV%Mk`HOg-Lts?bbS9ZiP<fQ+m#+1088=l=3cvJ
zlvg1=9%8y9aK6VA5YlsFzwO>aKi5hadRN+XH>Z1F@XwA=!EV)xX#7)vrxR$7+Y7m&
zb=_sqVp?-Pu2UuHO9tlq*MQwj`pMC!Dq!%zumnu-Db-@YM!AX{n#BD)MkZB!l~eDa
z*W`6)+$znFHX!hO18Fr$;?cEdz{E}9bNxZG+1kIAcR9;iVzj&A2ZxaB>qQatSHdH^
z2zrLVluphi#)Y34gN=}>L;X0t%3PWJAi7TyKOIUdxa^KM*4utcZ1+h3t2aenT>BUz
z_0`qnvNoeDjhp7go$|P@1X4U9cq$ACV_tDZY>8Ug-<uSDO)J&V0cfuExWG~TU!tvs
zwrvv6rfCN6uhevHVIBs0MqP3rH9&Nekh$OYp&1*$=0sh82nI<yBSee&(BGm-=l6<6
zz2k{RtEb_hi<Ri%w~~`eQTwNle|_p+x*6#CoknV6|5vDdLLYBK-sO2=ty`G-tD380
zuoz=q?f1lBAXC!gFxRv4KYx$~%@On*Kd$`uo?z+^6m)!iU>v@1D~4+P=w<K)ml2{y
z6*_T>r6c^K!_hH=Jdh@<-Ip&t_5T5@ZC}37asPKN<bKWu0gx0Sp&=3yVHARr6bSW8
zhFEpxMCQ1Jxa5p0!EJQNb#?evxOzRRG=yJ<DolnqiXo|tqAt0iSyZ~JxeQ77o{lFe
zxFe*C*u(sx|NY>HP<VWls94yfKp2~Pd&eSAs4zbl*LYvE^!)5p*v#&ZAi7ylJxW}>
zfm!_n-*ISNZIly8meTERA-ybpw|)c_r-oy9I343h!)sd58v25aAdxhoV3Zb~!(aeN
zN*1!<kpit!Mrr=ic5aXZz*X13ICA?Cjj%ij3Ohd(kRr&P6ZT+JwfJ~OH4EWrFH2ys
z>Y_Riz^ZNPhskAAXtHt~@^Y5NTN;JUe2h(q_78mrwofQPmIu8{7^{$jQ(RK9y}V^*
z!pA&?s^4*3<UgLtTQSpxGYN$HB&?amJfd;2)em-Tb{D?{`FN$+wkN{CVai#i(Jo~?
z+wCuzK5g_q(wQ#G$`p94nd|+G$_?|q)U?DT^Q~)h<9cz}z412tp904kci+>B*lv4#
z(@qnL3d|l=IvDStOftV0^J-~!RnEE1Ex(?7-Zv~-LN7tGg7oIq>1W67FuB`Lds8V*
z9p(*mOuZ&>jqKcU9rSr(8TJ`bVhj(q?49M_%yM~r<hROqxL|r4dtbRY954UJY;#Q*
zeN(}XhpLEp{q<?o>?~>|lOo}X6n!WNhTZG~$0^f$VIOSs4`T1l(G(Id;pf%*k!T;9
zwPgKCf;C_&MrFm26ek{)g;&VprM7-ZBd4#+IOeXYH;`C#McQT+B^ibQo;_s9hX+0K
zAp|s(60VxiP5oz-AVeW-Ki3l#`pO{ks_2peOo1jItcxvizI;=}Vd}SAlu9d&pk~8h
zyWz6=as$N|<rsUOwiO5?oY|NZM9n|L2gNc(9t4L_;4+x~zY<;=!qk28iBOD^;4CcF
zI$tx}vpy>s!T{L0wW<dPZwt2w1QYAn_}ay^@Y1_NMKxm}C?&%~_a{ls%;ysIL(;C8
z&e$7<Be093y;^DmLv%NVBAp@7IQ!stZ-nm+yYVQAiG=P;XhTmz(Tg%MbO^Or88H~f
z$~Yw|0`0d$cSZ}u)bh}r{g!lRxbuhl<D8?BZT}wKJGbU9x*|2M=Wl`!I&YRP?s}<%
zM8)c?OHb!VNCv!lV%n}xaz8LeV?F!^=`5Qj6YYZw#N>uu-EV}9vA^`yDb%cK<;sV@
zSaki_Q9F*bv$?8qzeO-wRwy-ho4h7@4y~%6auJn$PoeUpE<Dos2rkeselPsNxSP=c
zZ#s2agF*IBuT4Buq6Hi%6W}i;Qi<*U@jlua)80ID?t%Yt;?|**FmAU}W|X`nn;_c!
z=lKYk0s8;TzhhWowabd1E8V*y)N?kdT<r3<FJ*Fi(A^NO7VN!}yAqF0xpVxeD#}78
zxXwB#Z+P7o@kRMEaCbGPvK5iM*^oihSW~|EgPmYjzR0|Pq4b(pN`z}~gJ2wJJlzD=
zfuI~l?nsbg(nisVDdvM^bqW}t>{AM(xXl7cjeAvuFv(CDJdo7$N`qvo?xPX&K!{`9
z9?N`lqmNR{I+#z5WNu?egqsqZkQ&h@Z#9Xk@*g3v0jzL%+kJTGW88ImsmQvPRhlrC
zSe1g{DEn?6_`89=tPEsWkXh&=CZmyUl}^=f!vS{7rxlZnO?YT*LcN(0Y!)Ns>No=1
z*G?&8;3p-C5SWH;7T}l@P-J{U-IvYJ>HBQ#6Jzklyu23MBKpkr$mEXu{I1UjrE}||
zxp?*26`FLJXzL=I7qjpFo7Z=M&<TVVX)v|Va^C(&in2FY4j175c<ti3aO={%M0S|$
z&6UFJha*KhA04CbIC?}+Fm9EdLX#ASCQ+*&xE-Dh1`o_z#ECuM;#xIGy;qU^SZ^tV
zUPrp`y1tA-UdMeQHNIvy7kyQVNGJGY{h;LThy3>=!)kMf<4RPXMF7tSZnt;ZY|NDQ
zui#M_hn=@9+=rBX?~;Vg%7^+H*TG-tx4!yFSp=JhWxiwFAOjZ0rKFO`HTcNL_VqqE
z;cAeweEJ#o&RQP3NEMB~Rnt3{7d#m&nnAaNyQzJowHec}xxQ>J6kA!{G|%1nXEW%+
zNccB)1E2JfAlAFT{opK8)GB`DQ^I`cu|D}zW~%MakaJ~g4)W6+q&~>(WCNf&|5Tgu
z8uTCM!5wIdSG_i;n=`lnf?6sw7@1!+QzHXmBRi-QhF7~7(A#uRF*Rk0@8@c_FW6|`
z=8NgXJ`*)c*xZFRHoIfoGyOHDZm`shiGR3%Ez#POBi*sCSmMc};m@<?XTg=5%f7yP
z_uf2Y4u98Jtv>=6Sk^tOMJT%YcUy{6ou@;B!>XSZD`Wd=ngz(c<^qL5DaTyr-4p~-
zN^av-Dw%Lz<}pIJR7><FBkDmfiuTZt!BqU-H^UD?H|y|sM%I|~y#F7b?!vFBH((q1
zcBqXJqZ>yva)bf`GD4+O8gw9nC@P==0>T*G-2$T<>5y=gq>>`-2$fPPrRCl4`8?12
zKkRdMpYOTu>uQ&ZtBY}Qb6^~C4H7Bwh+#tq^PaV~U#A=*^WV8oMU~0M_-`ul0nM6_
za;BgjOVEYN*}9mS53lGhn(_t_;5hs^jG=4D80c6QPCglZID<-S8hs#Ldh*fT@OcuL
z#fADgM(m}RC!j^ZF=->luwDJ++E{=kLZCayu(5zGXGK}=bRyv|RX*)cu-5I<$&BTx
zH)ctjhJL40c)F&t+Xh>v*{9QGhE2KGmekGLPe0ejHC4G7Y}+iH&a`^TR2n61-#t71
zLZEA|4L8_v<T@j?f7q@||G49<d^R^8*W6edyXs_ic{V@$skyo3<IkslXHzqjhvd2-
zCsr5CJ9&*3Z7uh;HVp)M>gho+i!shOojCIRfr7fC`)8W11@3d<2#UY3@6Yp^mRcaK
zN|gV$Jkpi9wmu+wUC)1$O)V_n%T?rK{-xmeb-@6l=GFgN)$=~VmVCd)bI7IJgH0Sw
zfr@WSq<0HyxuNh~Mno~A*C3U?3_-zrEEdAI8{}SV0_N53rh?oR<M9(ti1azlwZppH
z_@+t0Zxy5`SB7PJL$n<%6#oqM1WrD^-1#o**BCJVOi}MO>qF_V`MK%8W(u9`&+;m-
zZ7r|1(yszYO!t6t5-!vGVw-BwPh`|k_igYJ_ho<@Y9h9)6v`aXbyFJ5CCUAY0PA{|
zme(dD`~Kvg9q(|di|&>V<4L8<>unBwUutJHKmP;%{f3M)Nd$fvpG*!2W8YZ>VsQ-Y
zf#gpzJHGodoZmgXyU~xXG<z6`V~EfJ4_xV1(RzQ--fROrQdNgeKRVMI%@sU(s1DsJ
z70!{;qLj)wSu*kXXFdIXbZ_wWzds>osz~flThjo9N1#5~k8L{8u-k_{1RL!_N1p%`
zdpqyC`<bU>=^#Nex3Iy*LElk<`?Z13|6m!)90Oc{J`q5&mKx_F3OwW=6u{A1(fm^n
zVonR#J|g?c#t0$c_#A?F*c^p?a7gycTPhI78xg^Rb-~X4DmOQz3<iDK_5v-1NGp#b
zV!OcI^icB*2u+zibq3^w00`DfAb()*r>J!_sG)+)6f%P8-NVFEuHIK9doT!_Oozyk
zrn}Mr#JUN2&ua_Tr_w|qz86sPg2@rQI|xX58Tv#IAS6Or8f#nBquHMj5m6SwXXRK%
zgz&L3+7BA*WvFMgvQZ9-<Zp=Gi-=-j56<}>DWBn0x#3hiXx9W`<eiOt!|v*Fn<smK
zzEJdGX<5{FRB%f|6gMSVEQ#8{F_ME3nS1WjpQ8aB^(P49_=eahJL4Bc#-$9%S4HY8
zpx0$Y?~~e4j%ncGL$)=@<*VwA&>!pYI}Y@G6M%36{q~0CqYR4?c8<Rh@xS=vA?SFf
zJu-@0BEcBa<qerv&QGowi@ypL2$iE24D+YPxSpFq;^6En45ABzN~2cccT5tg-4ngk
zlY}EVN<!m8@zfOGlLDp`;D~1)RICt0(&GV3Y6RH53B-gFfMAol9>m;PvAwR49EM_9
z@451vlnx$ZlrK+VDu?WUOTn2WT^~xunJ_61sW8BAVd|2%!v16UD);0<AUP77l8s2!
zw@#J8fvlj`Hk(p*Cw6K`b`4iH2PBxGCB;{XQ%DK(wV0D{2=-`*tM+BOqG`I9OuDTO
zi@i0C@`=E;y335DSJZAC-nW|A<PbC)+9`LynWTmXyf-?#JSDE26h@4DQkTdt1J2`!
zDJn`-L-?n(Wku=GD3oWK=s<Gj7#gfY-@eMOQ+gx7myI7{9?XQ;eulk2;r0KP?0YlK
z8JYQ$g3NsN&Dlemi8iF!T*|o#_(>8yk_}UqV18=m+aH;2eKU6qlS=_b>EIG5iJ%YG
zSgh59neTv?lbx`ShSV+%H_CK4Br`f9gc2_iw_?`SqsdRukVi97_!=FX<a>r(d2j@}
zBSdEFz;^sMa3NBeZvNK93xGk>oCNR>y;%br3;wKwMUAP~5;)=5n`$Wh3`SE#o-8ON
zfBDWOwkIE8_ma68<t;W`K$8ywXBCbadqH0+39!G^;q=zuGBzA$zZ<5tUudsTbVb2e
z^LiGqG^ZC%T{4lGM{?IwK^{)Z!gC#Dx{Go1>lS-d6lG5q-PcVunJ><)lfgt4`fU}c
zJ}UV%RH#NQ<Z{738ZK$PFXXF>kKr_;3oWo`%BM@^f4RjcNYJ3~)5vEi;c6(2+AWSm
zmqk7*3q@2|b3${XG}V|n8I6lK@z5WK07tFLpBMb;g51W##cqOG4Zfuw0~LPn@_A14
z1@;1!tZ0-oDjPHLAK&@mbZO#tEApbu2<nx*jwNFimHgdR*CQ&4TUG1SW?vs!jLltg
zEb78YGR>R73B#5}ZK=Cwl`%SD<#!{u2)BB(Dl9n5ZRSfQ0OnA%<0B2pNO!fnN%0M}
zHIu&7)(>h!u(bzmLRk)Zb+xZpnI8__qHc}UyMFo~ws(I^K0yQD7zO^`FJs#!+xG(6
z`;Zlfc?c!H2OP53L+YjK>c>%F<aR^N|ApL*TA{LnG=cq%YTaIpL{V8HORHQH$=b#H
zB=Eb>(c6F=#);RsUa=pLKnRNxT}alh6~!t+bf!blgmpKFDW{%*!_FGuA0ISXi6akX
z>xH=NM9_`5&eY+X_P*Iouf-vPkLxvU8)4|yha_l6^MtrxHmj63-}B?P8!5=tgOh^o
z!3)U6aX^Xyz_r!xEHFO1`K)Er*03EJKGGugttF-sf;($P8Mnrw+C&`NT-%$oU_oz`
zpFa_YJZq=(6mM)XeOI~-zT<~#^s7fNG%!J#h2Ty9G@8&s4b1q4(%pB7=m?5afEq7E
zNo>#HYU>c^wiWNVtNeTe))7bg2y&-u5)Y~yk@ztPZV1mNq3t)ZU=e;&vbH@A)~29d
zdNKmvTWAZ~Zq??hZrH6)enowGW@_XLVy0oFm7qST1g$-OpMZTY=H3*c3^`kP&q_mJ
zROv>I#7cC8veDGYRn<Jw?h%$~r-U~n4mlr0U+O)DwR|9W3F%03U=xFP$yP}{;qZF6
zZIe((3uP}bvCx`t+bUyXkkn9nQkd(iSR8oN1D+7Fb`xWJ41#p?%k45Aov05VhDWBk
zHQQJuGSC`RWjCNLN^3zVl%b;{q|*_2=1+~@%d2xAILS0<RiXzM8@0YbL)@di_=Z>}
zIqqBo#3HUbCz{q_RY|Ol=N>*fRyi#cE*gK<6FlHka7A`EPg4CsKXzyl#B6Lja56L)
zw-=X^IHVkdn8%C+1&xr)vVeME6L?`f0iM&L`Cyf?W@Yem9bOKe7O6s=Bry_ZJwm}S
zO3480>v%cf&pmujHoH~@+Mst}x~xy1w8HF-EVyO2S`QJ_AB66(_pl9JP)0jXG9np2
z<(MFbcG$m--qR}>6Z$arr+cJP1wxTUnyUj2uxw0dG8G0w2O<l62hsC}%}hOIwrYsJ
z63_J$(tbEpKr?)?IKU?}!LlSQ{CW~;5ZP-vPGvupygSkPhK}}PoFRvqIktPOc=FHT
z6zdX$7Oj*7?KGC=xy&>m<IPT;V=B#Z>qiHNt?WmOq(N!P;pW}I$8W&G$9Xberj2sO
z8+Jw(9uCY8@-Of3DOlj$s%n=e`suP|mp0#MsD5xbnEA9LOgSXyIBDS|7;|>w<ay4)
z>+YZR67V|!*n-CMzFA6-UjjP&fHa?a0Rhh=`k`CCZ;)*6?xTR)k4Vqw=*}H}JjhaF
z{5D_x&~9%eD~7)Q3B9q1<aaa~F@!0SVqW94bDJMP48kgxxPOn&{vM})%5b9}wOC@Z
z7)hL+9}FGNnW%_b7}%RXx1sk-28LfFeQyHJY(wU<ful?FHI9oD_7Ex55~cB|YQD~s
z{lGa|P0|!!$Hk~`|LoYstVq&)s!#6s7v6DLmK}N6%*EIa*VlGM#u-&&sQ~O-4r}%(
z!00KUEGlyINz~xl@@CE=lt!~ka;3$ccz~D}RavNy&9>2+LwKwlzE~Aq2E=a6X}b}>
z5{VSND@CXkmQR=2(%2Qroj3B!t7`vN^&#tH#8urVAi?o<;S9jw(}(L)pPLQ7@}mTZ
zPd@4~EXeS(Lw3Pq<9sIn)=hFn`MTDAbbjS|3K=$FB{}+o+hiWGi#qyW1ory;RMr`@
z)t=J*kVX8UXak86ovTrz|2cZ?hZ3t<L+2;$Wx9U_s1<c}q&5PBXIa(K>BAg=F<6r7
zoz2P}=0XEjaw@WGmGDx-)CeCQNWIQM4#fN)Q^G7VUgmAzi@qy0E2Y>x&wW6^mpZSl
zb`!PvE=8JC{YRzL4p`2#-N{*w^JT^=xPh*8x0)9g05k2x2db)EVGZ}x5H7`R5k778
z#+iP+aXCL0M=VzT>ASLpaM)H1-NxUgU-~CAdgHgvDL(HmWc6t_OQ?zR=&vu`E9*`_
z-`)@g-Wyf~GprjL@bQZX>;m+ty-M{sw%2I#-#debDc#FFY<xeZ(A!E5&PBY8mW+`I
zhCQaYGOU=rgqNEF;C=qLy9<50!vXUp;5|m8y(HrP2Z{sa`vZyJ2ch_Vm9P8Ze1|M!
zIXzQ*w>=o@=xFVQ)^w8SzXp6E&)>L+3a3?5`Tle#G~w4modl8yQR4e@+u_IgRh$UD
z<=q{y)3d)6uaKZ=Y99yTQ;vb<fydJ0Ue=?1aQHDUkCUrXgxa0drWGLPem|^P^UM%Y
zY<YQ{gPQMwdo*CdZ*m|R(n&#nbY>G<-`2yg$%@hKw(-IxNOEpZl5=<D<461q5fh6!
zY?7k!M$aH(h~r@Tzaba^>Oj|=*S85een$_!<>1^!|Fg&BRM!3UTfr%TS-BtI7m2kf
zTwlm{G^DIODTSX?ViA3B&j!@yhu;1QC7gfCJH37XXMq~5>i6jrzLR-c@3wpAA@AdJ
z?nTDGzsNK?SOr7qBxQM7nV4h+D5Ikp)mUSqNlY6<V%o&4L|h1Iag1J#iLxM}gi=;G
zORbWULybNWB@`{E*4m~fm)#k|6yFt>kSNlTC@h~v=!>bSs>ul@S?>qZKG`L-E1OzM
zih8lL<z4H*YRocmBWp76b3svA*;rzAbZvc1WAnG~JDXjhWV2&ml|0smdGyM*@j(=Y
z@}KX&h-at@>g4u$xK~K=!3~AM@NZOxQX9Z^Zf3QX6~I{Fj>FU5w3+pHsRNv>?yTM}
z(u<OxfauB!DZFG?puL&?T%_Gi3|luYAG}e(Ea?lb)T*!i@^&W%!J*eI!AK?&AlQV4
zO47V=%YJFkC$Py+qh@MVu)>@ZZuM77D{4Eswxlu3co1=tWV>b%$aicblgglFncT|R
zni5IuHxP0btlom9VQz&rQ7-g(0g=NX<n4EEKdYtt5^bCwh%9*aGc{lOtvDCiPN59)
zZ&Q7Aa}{iV7Jd&N-iahtAn*!4^Q|gB;-7!oMtkp$3h9f&kU-)!f<J>xZ3)%enQ5GF
z9WnHWT-46?+pe@y$sQhoy%a_ou}ztJUV$GnlgrMZ@{{qB`C9TusAbhV4CJRD;XV9t
zErcWaoE4r&eH2o7#pcGh<^^eSXUK90WtBoMI4V&q-F_!T(J@kF-y+>oKFNX@nlRYv
z5PpS|SQvrcQgpI3N;=j~SiHkgoGf7D%CF0Cv!F=)xUApM-_kyv$4Wf$#6BY?#yZ<a
zlJTfO*v<8}Mh+$D{%3x@mk*|$%uX3a6<z@;28y+<ZA5-i#m2!)3pa~Lu9l9O57Ls=
z5)k)<Y6n9JvTEe5P~h?=5Ura{aG&Jo9Yl#K|D#}qqDq!+wuD`;9uR1rK1~yQq;@AE
zuP!@cf6Kce4D<uSqI#U`;{0f}C#ROY34IT46DqEN{0js-F51Xefj`w#SBvNW>(hRV
z`X03<yeV7%G_#;f`D@GfYM<%~HHj~2ehlxtf8Fb%RLPNMIL8+I4?Z&e&41KY@U=?f
zTCa5QKgUXxADQMX$MuDOhkHfsPfhQ+vL$C#294a1e_YK>F=)|8ZsUVNUD~|x6cE?7
zt-a4{DLVEkLEjDCPuU8xZOtO=qpllsweWX{{;;|FZtUHi#>=Y*7n~9bl~HnU6-|@x
zG+U~syEX=uk{8NP8TN{%kC`=$K9Y7x{<&NJ<JN_@wCm#nG_}<ydy`C+v_(5(+8?oW
zfFOp3hAK=z%Hs=Z>8JSvlItJf_LwW-V;&{9?l?X><*DdaqA2RR`rIgWH5IkZpKWM`
ztJmgl!tJE;5+})|k5DFbLO1Ml{r^$A)u&w*O62<R#1d>2kE0+4kBQk1UWO{6<;k=^
z|CxI`2L4-GOrc2$x7r10ySQpEgvA!ibuJf=VK5qoN*lLZl(K^aa;;qeqr>ks1q`|*
z9FWnI79#^sG8zmqK~z>~ieNMNnPDMT^Su9(EWCC^u;OMO3m+(m+6hm_wxY736Yo2d
z0j5zTU7kn4@2`9C(Xh>;Wj~{Qr>5d$yk>i^$UX$PM9ufvCzxQ4a5i8{pFG&7rDU%^
zSQ-odU@;T@YY0mrh6#eA;84*1lL%S))q{ix&BhH<J8Q~krb1C1a=!@2Hi}`*mXq~x
zs|~(FlP`Iz6?Kn$FYNPu!Kwfh0m|&2R8F14b=5<#hyx!L)VIo8?8BeWlEj7YDCoJ)
zp`hJ?3etL$4<1wipUqJ{BS+>7iD&ef{N2;i>nmiU#g8!k-N)9(tX-)V)vo>cHsEL^
zPx{?a=PpM<s6Bbcy78*&<GaZ`<(F>4;wxdJ?5v4agAGC>%}Uu%ZJs|nwM``QHmkk=
zR_(syQ>^sBRfd;mG8i!($1zcM>l&a%dJ_Rt@VbLJw5brMF~!_ZGWxh>W#ZXw)vrhr
zJD89NK_)9KmEEo!y4#Su>aok!UaGO_e8a+~9nqfwSQ$9~V@f3G9;Ft7j9ow0v>PV2
z8+N;+L81rXKLOL~6G3`0SjyInD~|{Bagc{N3UOSh+Tyfvahe|YrW|@BPS?DWuB1vS
z1auIviwk%7^E9p%8?_!)Ry2txXZHi$7Hz|_;fX;u+??}P4<j3iI10uDb!=LCG;1S?
zJ$@#u5f6oz|EyLI&5K{cPERe5RIXOMR#Lx`JdAtpkd~bFt;#I_l&sw5eq*=+i^a=)
zwj=hmq)63R<Xf>Z@<j`ZE`j?BHfS6?0Z)!lF|cdP|I%AA(@^zN(gvfaGnZD_oZTkr
z$O5y{@O7@{dFAHx$9v>6&a0xeYzwm!WvM?u3>q;=`(%^3Wap-UZum&y<(+Nx^ZN|?
zcHuLm>GqdDtNauyVob^o>+}}ijtIXCp1N|_(OFzge@jvG+u`!@?WWa&>gjp0XAO~h
zP(v>_{{w07fygMZvO@1|12Nnej#W?c?M8XtJ<RWNQWcR;1L~K^3SoQp1^i3vAWx+t
zFQ|u1FS(8U*N*dz%Z2%IT}5+Vj3jJy7y?N+q#|4dfd%rfV~eI;_*tp9>iw;x)Iv)(
zvE4LI-EbR0t9m2Wid-FyJFEGE?$JJk9I}tGDrDs21kD#ny5})e2%9WM!Y^TdS~$h}
z6L9eI0lx&TmH`3;EMTOpwA6z%*sf3EzK4;~e0+3=-uLspl^4Y{7n}Oea1?Ev-Ht@@
zP1koepTllYlV9iQFbbb%i@GaY5xT^pYpFYv#d@vIGToJmTY3Io&>u_GPuN4Y!igbg
zv)VezCmxn(^Xs`EtETL4**@=`wfy*}Mn~4I);+uJ?WY4Wn`)N`A1nYWB{a@8{{G5`
zA?DI4Qv8#Bdg*n$eJsnfwQtToInwrg6~m!TZHL{9^Yb5rmJu({kM@$X&(}qb+J*xy
z_fp%>zoCwN20gyqN*b{H2Ezw^^5*@Op@#XP{OtH+KX}i8_VqVOwRe-9vS9WIY*F#u
zchks!WdD~dXI1%A<9D%*VS6;$YxuXmR7KKa;N48y)4$E_OY1kKM;3TKftkl%Z$RN-
zm?0vl{fx&>5FJEa6TJJL>)&ofp3f4~*zt!#(cR!9^a_vB$?$W5U;Pao-xbDAKKcDS
zz|(hb+%`I$%>E~yab;xFa_n@b{okM3_|6>{qqF(9Dt~S@b^h`mJ6k^ccSNA?+6{l}
zy2x~Sc|2&;wVytA{$2U<#9jK)_k5#^E!)e}*|Dy_EpK0~oxKKxHeL<MVV|0(=6T7}
z^O9>Mbao}%f`uXip|hWa8H(<4bF&}(-l0!8C+h=#{e8JUKzlww_ium>H0Vnd33%%s
zkeY-=Sz>1?1NTLg;DZpVh$n1{9$d#>jD!Bn?15H{xPx$iYCIsCfzv1r5`ts1YeC2i
zoYb-Batp^5Jb)yE4ZgXPX5MBdObs1@dlVK}kLPiyklkV?w^hK4iq$P2;I9St1@BP1
z10o;|K~@!g2wVj9?0rM%&UmN`zjJ_hNZdq7KQUCIFtC`-VignCO$Ku-^TZ5ZLf8@j
z31gg1A|P%RYN;5?+8gE=@x;@|BUC$-HvzbU3ih=Kk9H4#m7%~y2)EA%MYcxV1%n5R
zgYSVOeUCi?B0|INhZbzGq?JX)YzStz1`9fX1>J!RtH|_>DD{YtP>YuW3DE)x%&N!1
zi6Af%9@CRy_P#Yr&_ua~FGd6f_!WZQDFUu_IC;_66;$^;y#OJE%b^RX`<TUT0uVx*
z{$P3-_R{piBxG?swhJFOLCL)ubj2+=ELA(~LqqH;AuhZ2YOHAd3_dJvHDYxoekch*
zTY3HR39}PTc%zjd9v-j$Euj$?x8a`9eE_0?K973{n3Ieg!CBgKsq(ihKFBNacR>P+
zPLe%1k=!AXVn~>@mW{#yvP57~^bSW`BF~Tj1e7GWmn5T<JUPfJfd**T1IY6eMG1+#
zuRQsY*4DF6P{?HYxu_Ja6gf=F4n9%znAF~fy@5=fJO+K+U~#!6K@^R%XAKr3sC-1E
zSVX3-Vq?~bz+O7Q@1ct_O>Vgzd+QIdUCSYXdA^7udp^jF8mDpHyCR7J+#KRMiDB93
zj9}{w7Nln<g8GOpo^+wjPdKw{JjG@({-HzCJ#a#cdR9bu<|-zuCn!tiN2V`jHaR#m
z-8D1LGW@43va?o1^#dJ#F6*sMCXY9;jZp3s_GoRplx~lN9o~Mkf_X!}r%{6ieRFW+
zd@go{5XJZ<<vo(S{{$G=giUVpevZTf-&6%x-t>{@3f5)B>ZGNxxI`cm6BB@gYq{Ab
zxgJoLH4F>qi5cJ8%MVB3V>zx~Qw{oH5MN6)HR@Fz6SQF0{K0p&n~?PEIz06_UM(n}
z^AYr`L;Qve85tYrl(TCW2>i=3ya5Mdy&e`^0%CM`fuX=Z3h?0M{J!R^R9|TCBo%by
z@Zoij=|KgCtA$}}w}m(!LbLLvISWfyc_p)q81TsrK;g#!82JjJKt-b<8(RSE7i!PP
z>-vi6`!XADxf(xuChsf8O|7M@tIueB8Gzn$eHO)Jr6FfB%*4NypVwRxmRzFdQDXFt
z!%vJ3^@y!-zclQ$_|`j!dI^hM0xciX2!bwiwJLeECB-{mmK#<sJzL`CTgbD;Yks{n
zI4j?utSmRJ*mkRk!cpaLh#9xVo1M=iu~p_U3`xw2PoB>nq!gJOf6fBeaPufj9IwPo
zntD7cUP6`BnN_~iaJ;VTM#fNCB3IdITqWXJh2aAfy6I-GSKXD#7i7xY1m)`<<MMl}
z`*2nD)TM2`&~05Y-*V3nKY+B)PdK6GQttfRMEaJ#vWQc%wL!>tPBf`Lpao6#5nlTZ
z#09T})lP)c?>>;l%KfS{P};kc%`S0jaIzG^$}sLeARTKk860^p>qS?=qFCr`q8Pl^
zQf>EbLn5Ht1bZ!0_ct|Oya1qM;3PMx|BkJ9Dga&BG!PnJKBgd(RB{!5+_;(0cx@q`
zcgDu=xvjl?Lz{6Eq5&j+mXbTeRQHWvBm<`90G7qjsWkEPJmxmB4cE?YxVsQ)x!u^G
z0JGI=xLa9o++SZA+z{B_06cCs@REJL{g!lcr!2W65UoQ~d1vmhIcNsil3>=d%WoGA
zyF0?)>aGyb4s$$<_OIkAKm+M8Yo2a|$2PU3a4spQejLKTU(}@T+fp^jRF!bkA-g5-
z42P?1U>|H<UttK>yJT+Wg66|oZ#Ol!k2fa}&@|ucI&0f>ZQIJS*(%QXwZz|Hj^Ft+
zwKs63(+gQ6&NBQNJ*h_Qup3;G#au4py4kmy)Ezr>qGhK~8`S-1CZlD4z&JJ^*J2!i
zZ=YcokGrNvXrX@5M%i>g2Xu}Q703YHsuVrXtnS+tC4fTEe_pnFLz^FhBrpy11ONqp
zBsa_|=nkRRG<Ea?t6}nCF<spm#iV$;az;;1PfwbOo^njl|Bt7ua6qN>v0zT<T!LDl
z32CZIRd!d58r4ry^MtFK$=KkgbwCdBf)~@n(@jdKD~J-jNotO+<dCR+N&40@hreXJ
z-qAC@mExmeEo1F!5z{|&UrW%fC!e)Xvje1Uj^8ov7jy5o-Wf<T=@D_G)zI$?t>U0Z
zfZI5rF5HEW&im>6`b9^EKr)ad8nVzyz)&-R|Bo2=ByP8qsc)vQu3;d06e6%Vh@}|{
zRv9999NJGAa_#t#qo0u1fqNps;m$4me6+XEW0>z7c*Jz1*nNb4rS}E5pb>ZfjYF|O
zlU`=`-g#tYid_RWyq44j^LT9}TYsp7<{d_O^lk@kgJ!e<M7Qqti6Lk(YH{H9HxxHK
z=H5*}M5e0?X_V?e)T%NZR@MF&fyzDq)b2Jezy4uBVqm&zbiI4D{Cr$}>hhC4&2Z(L
zeAPs7gD24R$7HbS?FM}8jmp^CsKsA>>f_M?xfGF$H^3$LI6;hC$N(mWos3|_U-}Ke
zji)rN(n>~wvYpY!^MQC8<ij_gijv-YPjNO7sRcV-RenyLtSGDhRG?%DQ+_@9Z7btJ
zNKGfGS5k~D=>w}>4nco3PY6v`B}<mO|3TZFz$1b8hj!r(uE4t`8HQ;UEpDOUxpFjw
zGin;F{o6NvvzYr1uk!Ev3uLRQ&lO-;7~wAkYEvk8*)r-B2^eFNofp~9$3RiPC>ee{
zhn`Xy1zlwB3zD4;^O=OxWydn)+6xDC*0^?y5fE7|omW^A>AO}gnLB9(x+f7+hlFIb
zaDMC!_a45NJVr^^#A$4c<2pG~covhVmD-;yy6-Po2sBq*pg&!Z-FtHFuq=D)dI-14
z(mVUbpOW`7cwPo3&c?-p>dUjZamw6D2H%#Xcl?((?U@164acLedcAXPPe9<ud2f&9
zNNQe>7{5anG5nFg%btPSfC11XuKje~UJ{A@xtzFE&MikoIU0YtsCzAw5)DF=yFH`I
zC0?V0E-uZn>=9+*E6W-yti4{Sry$w8gxH(_u=3JzI-6=Pt5zb;>H(vuHn+&rO4fs=
zk<P9~j)jH`G82XMn*k4-GuQ1WKAg(Tml(|VfxcVItl4{9&hE?;=uKuj6F4bx>p70y
zg^o0Sz3>!rDLs{!tw-;8@zD$Jz~4RKX#ugs;-U07Fh%(zahL5@+s&AN#Z4n3i=xP|
zTiMrdNF=+vNFW}-_vd&YWU}J9Dr&eEWz{#(WXI-WSg*|+3pb-3Rdz*Zivpk)IU5$$
zn^MMItEesEsqHNM2IjtGPi{ydY@7bYR;D%M-$dZs2t$x2aHLcYQjzFe=Khdd^}c3@
z@88xt77ZnapK*fQBG*G_q`15OMej3j{jl29WU?s0NN78Xwk543gMPZL?i?8!mW}@;
zKbVt1$ptqg%e$<sj;C-02z39u-F~)1_a>7=s%Pu&W#>*!HL?bJad$5o`!fyyGhqv<
zVh*LUtHCkso*3>H|3g!$>9n2#u)L}4T|iixO!WQEB1rPuQm8zBeGvtfdAsJTK`Prx
zL}Cx8mVR~Y|2pOUT>E7EGe6KBbWl=wP||zQMLggD9cuh$6Gil0CT>-J+7in9qpUWw
zJ4bj;vDt}9&nEuCJnKeneAo(7`OnDFUus{!MY{MmN7@ORL*?~sr?!#;Ub!SmEoM52
z*)HGIp^}t?klA$7+o(pYC5TS|>dl)47wT_{xUa*o4Lp34q#?9yA}H+ycv{W-<~Mct
z+j~kW>{-8Hf<_GWYSvAuFQk=!Wf8#z?=PFb@mg(kL8F=8vgKTnKVp-7aFWPzroK+!
z`5XRTni#Kijuem|pzmlM2g>q}#d<wDQD<;xg$~CghhnGkw>98fhP4G3XI&E?j2L@<
z1BLJR4{jQ^ePyfxK}bttl%Wtc-cSK)`dAz*U1(BrN+^>WYicNCMv91Bil|zsP+_u~
zKqv`wlfomD-(;r1kZNj@9FUash7?Juth$`!%IdI)P}U(z98;1Qa%7BBSga?DS40XW
zODfByR~uW+{6;B9EENvLg$&k4$I{0q&W=y6h0YwM@Jh>>MwopW%Mo`@V%<1n(Km~>
zg+D9KD2mNiz@<f)Z<!B)8`#J%3k?>$tMiHi!BkmQA?TaYsgzn$>r@T!*gIEgMT>;>
zyJ2k9@<?<lEuQd9{3h`fEU;0;p$Jn)D{fBKy|HSTk;fI0&{mtKLsZ?>TAWP`QD%Q8
zB{24e+78t3C0DAhqb+3bYx{Dg$S5U67#q0~PVNv&?^h6HK-vDX!iwkISgx18G?}|G
zVWqn#1S(s=>PcL2fQ?fAbzHMT_D4^vAqX$@HwW%FKAvL*NPi*slN<TC2svCm%F9Xq
zW=S`7<Xpz^9-P@7`vZ{#H7|~b-9WY}J1W4qB&F5Vy`yD{RgJFV=$X!_+_PWjN-x$c
z!$0&2KH+TI(p`jV+Fd?<()}SFEYe{)WFNY2uKg-GLeo&>hvMyfFGgHnTzM&M4as@U
z7^dkU^5g1p#si8TH0yN+^=V%HDs#p>!NH#gw#Z~|{v4;ljh4u;%+#>xzyJeAqN?1}
z*+Rjup+D|JQKKL|eeu6*4zJ5Yd_E}&abj%wL=6iZ`Q#dXMxu|<NFjOio<EwD;-Sc)
zjN~11jCU4ISvJ_xaW-AL17scXxOV84Zi-pOxU+#~cV?=&czNbVf$-<l<Q&zZ(0Rc$
zWSBvr&IP_l$VV4o5kht}GQ`_7Z9NjQ3!-4fr5iZ1;!uYTH2AC4h~APED{7|TyN->O
zr~zNcC_&LdW2Q@+S#&$bt*6Sk!tfp^YAFe2P3Z=e!+TW-r*Vjv-Th&x+0%4kW$V%`
zvMx3X9buisRs6hLIevf7QS-O-@xMXw*41C6S99^9Z$pp&)+_5!3;7U(@>8_+BHN+e
z;%|j7IXP;<I-KZTGs@=?=55WneojIc%gGWqr=8^nk?htIk!b?Xvi0Q!q<iPhl<RD+
zt%A{t`ARt$yTL9~S4B;T=}p8-a$Rfmp014Z;NyX$MOz5;&s|g5mff6@@?gpix1wGf
zGoW!i_?C*yD>Z#52yNWo2Dwb@t%e7ar_RbOc%$2@FF#w}H_KR3U#tEs8wry;HZy+j
zM;y*|vm3fx-Z*^oCoika@8@cbVlK<NjfW>*xaez+f__g=NV#wqAP$9P32;4E)1`PY
zci%r8C;ZN`^O1jL-SAc_*eo%@Q#=h^!SjyY1cwevvT8mRtjpGtm`}fBq&mW>iXz($
z!@M1(XW3W|5L!)XZ1mzgzN*puOknXzH4Bv+hat=-C+?L0#*4j2h97-%#HTIQau<JV
zac1#$`ZL_vmKhJ2i@F>4uqct5F4$6P_liklzgVlJyG<AT_8pW$BxI+Cam43}5T|G)
z6%L8xE<()vQ))28Nj^N?z72XV-xI@}5IWb(2VN1WxbFJHk35o(DPFihKV;WU6=wa<
zpIP$CC1-UMrYN7k{^}dk*T2FNw+A>VN+ftHH2w5BS6CM;M8K>J*KRv4P%T+#T(qHL
zL$N{UDv03CrL`!X9WItJzFTCowQwoaTAKu!wgF^cFtib)=D%9I{Y@vS!xT-;AKu5M
zYs47Qk^f_~`4$-g5tP#Eq%4~$@W%v~EKw(fCpatX(Iusc6zPrW%PQ*<OxSsmL_v2B
zv7d|2bl1c}PHGw|R(XDB*_td{Qs<{I>4N|cAMm9Wii}Qz2<FI8Uv)M%q$$Gt(yx35
zobdo`b}E-@>n^GNH+`!vne5l0i}Kett`a8@!0H1gmH&<DwvuzvvxFh6h#VR<kV~*^
zf;y!z0>G*`$DN(A@-w63ZHYwzBDDn4=q`?};68rKnBYRb5;W%ah~@l@A^}xl66bs9
z^-aa)I_)1QyE_Kp7$lX9G)%=jZ7lpjR-rUe{%L8HP^N7z<}X|u^vvIkv3M7xL%}z2
z!?P}*rFTL19w>M-)l@_-0SvoC0GKcsMurEGX0JIvYa~3c&}<U3NT$|@x__=@hHYCJ
zR0twGP1r@vk$U#0V^}YPc*^5S<H}R!jNEl9<{a$Jh3+xR(DnP1hqj-zu1zMfPSo17
zbX#&g?vZawtBN9DQ}Q{T&Z`;AhJF?ha^N?c;O{B1js5Ay@ZxhJqlGf{C1{MCl?Y}_
z`GYwPl5`Yem`iPbk(2v`{aT~AZB)>UT+iZ4d$aEb>h2)nsFzQkUXm&}_E~&JK)+xi
z+otK(1FgS5Z-Olmwy=cc6x{G{a-3~)i}SUzJ6G@cd)P*-PBOPq*6w<UxKG)->3093
zNWeonh-A?jmT%BOF1j-MZrEcg@U^5l8oUu7E0XW9L*#}7D|nt|w(nyI<=LPhEzAi`
zE{j#?<O}^M+$;EMJ|%>r=YWhegTSlK1*UxpCZi~+)-TxF6SM*ej$}YzUvrhYhPPrx
zRiZ~ty&5vqz+jJmM2bWKxu`&Qu!DQSm{f@@tuCsQN`<@;M*1O9KjhL%_K6lcd`AHj
zM3CV^nD`|X6DZc-Fv#uQ<eRPv$zAb&$SUYN5jHNHe&7YnnPyUKaa|Rnk=!(E*Z53X
zoLDJjkC43`;sJ?}e~7H6OIS8EhQgbvqmC>n8nNVj2z97UMV#9G;F$=E!|Ikd+e<r~
zjh#;!YC}~wb>&X$dRh-9Wob1Hqb=DXgqP_HucH+fbjL%4p9JkY{zPsyGj)e)w?S7Q
zN1#5<9zj}*A}?;9>NZR_r^%+8jgPE2e$)>@wragl4YFi|05dG98Wv7&v0q}%ygr1M
zEOqjXW}TCw2fGc0s!tm230x(%kv-v0p1$FG!a94csafb!DlzKlh*#lleY%{uD7||&
zg*)%_cf!kh;h1a7i@7a)gCE^zecnw;o;JRePdt31cY!rbe=!~Znt=R@qujW4{ZqQs
zV}t2q-hTbnOpz5JOmbuM@%wPo61F7{I527_r7oShv;N^e+3;{-sARGAA9qY|R@}4C
z>&2Uqf8|&AWgYD{EDJzrDg1t>^o8kj@}O=zTk%yqXd~3))K3M!MMv=0kh*uWa9`la
z+N87c#WM&5pUWswwhVbgAv-bEb<`^IPc`JX4|(JA->lykrDEk!sNxmz=`nvJM6K_f
z`7*eM?Y#x|ZR9*D>;BgAG9z{D9O5c;ZsnmSJN0}0^5gdU{Nz#K`+-1%?|!M+K#F6s
zdJ&p`BCqM;*hz20nn`SIDV#J4%&raoR{9DIVS>~K%_IjgBOpAYfgi|T)jQ(ET5<BS
zDiX&yluuyrBwWTS_*%v*D4Ink$VOo{_{MQCnmt5AF=Q(}*vu62>Sl;;Yl!*=GZG!F
z&mIa@C%a=6`cEWu#W>X53TG05YrutSSqWei!>lGe_%Ze{?XX7=afi77T?&>ZynbvI
z?&TBilM!w;5%!Ed{CQb8mOa8bA}q)%BCIUrZmU6f8IBw49IY4zCG7>f1G)PVX{`)`
zSRiT@jPQxfJ&we)M_DCDX3s_z_*_QqvqdIbMV8G*)ritWwyL~UjBd1wZuW_8&4_;2
z8r?A)-E|yo%@A!5j_I?C`QQ^Xm=QDF8Z$Z@^GQ3Thn<zwkUVV_JL3~On-M$T8oMYO
zFfkiTWRF`_j9a&g`|cCBaUA?LBW`Cl?$>eLE_?jGVtiw3T)ZM!$UPLD0VW?rUO<@m
z-9rY*z<j%gRU1Ck#sIZ7@ZzBgxQ&q;jjY*E5N1decK{D~ho5io07x2ES4MX0nB%he
zxr6u`#w301#I5uMn6-{55_+Xve4sR`Ks$NrVKOf=QLPLlHlBQAC{*DgII5HdMohku
znRvJnJ1-cmegK{zf~}k{aU@rVKS!8Zr(RW;&>Mv6{gAVFWt1XDh#<vCs4nMa@E@v=
zn^LViIkYi~7zYj<qzN;m$NeR{ULJ18A?Y|I>zVn~$2!JF>F%>hr?kX$(w0Ed|11;J
zAZeHq0CZ;BW7lipo6tZVsh~OfC|5>HYhd93`5&%hQ{uj4QW7%apxTMh6qajQ#hEN{
z3}9cL6`#q}aFU7&$~s8OOaXzXC{ycovQLi4L{Y$?5|Hhf9a#vfb<Kh&0Fz2NlW-?)
zxf~LuKg$OVDFKJ8Svqq*+oE6-PvFsH0{y{jL?lcIV=t3-ZD%vL*VLv5ku!_Q+xjBQ
zoqVaR)SX=|%WTdMY_u^RmqV*V4E}AV8>HbgTp3AW^Zd;4(@c@qbNGv0JcCUz#g-G-
zJH}uo>GKmYcFxcoSKtE@kVMPR2pEz*LeoI<Ss(eKhBH}gSofg!V<!I>(TQ#Njr#?n
z*aERE0g0?a<@v&z6HwxeqlRvg_E1sGA2FI!wl3rY{7nGlk?>`vsGlRtD61f2#Z70c
z5CsO`DhF1l(^64BJt#6Md;;lskT4{+0uA0iW-<%{Nf3f(QDhNFW)u;2xKB56v+S_V
zInoA-JuM9qE4c0>mv}01HH)ci%_r8T)GZ31`i{%8g2h}{AdfR@b^J2X|4TVUw!$={
zJa(YsKqskqD=Mm7Jq-`VJb!WIj^{3{xQMI>A66HPL_A+%+A7C2%&Ry1!X)3(s;gJg
zIs+pp{l+ZLG0y7UzhDz2qU=%nE-N>Lcoj7PjQidePxRK&QV*1=k~XdqP6RrJ4d(Vr
z3LFaboJ+ljabJ(YFmsVv0kgzlkW$$jYE0A!Ghe8+17&4)-XA(DXl)rDM3yZ8hSh}?
z@xaClvgOFQAX48feUl2=qsn<8gyM_chpK$wPExB2{sx_RZRL^D6(4LXwEp4ux2&fi
zc5x^i-O$o#mn&v)NnK}N3KAV*3`5snU_lHZ37KpMM)V~Xf&w$cnFY=yIc=fJFrBO0
z4dv905`2w$rj0Yt8@1Z%C1mOtwyDSeG*S&VsRuXnWGi|HHS#}i3WLjs$<|YeHY)+m
zx47hAa5ZPw!)9(bzaMG{MZKs@q-%Z0iNk>c9v9zzteP0z6u~7QW?P$7QCr^6q{~pn
z@}b4swiWxh%|;v=1<Q<4#`6Jh@!8I)3GZw?yuXXFq}w{!jZ`b@L0M{*M~Fy0^8jz}
zR|;Y8%Dz9V$!4L>*MGwKwuT^==}{ZBUwGuJ@^u5q7iJcI_dp6Q!;KNnnNHB$%N+?R
zT$Y3I8w<-5VP6;cizmAnOvF4+Kzt%(vg_1~3YW~oMek994@FR_jBrnqf4^|0sklZ!
zt%3`7!HfqU;eW}NY(<)DAIK#r?25Zr_K1t2REPi**k72OMuobTw4x>BVeMj<mS2Y;
z@JT=g>>db7REUl;KjU+wA_voRcOQ8WvWFRq36FVuli>_3tVCM11iEFouJU2`?ZqCJ
zTRqp`RLIegU8P}Ac+>m6pIXI^sR`7}LX%A7>XW=$%t6_|%=O{uuh(VevrXFvPln!?
z-vl1;(>}mSE7CBS=!>@y#3}W=RnN1nxCfqhxVD0>Na&~kz|ul?0S=7ERgYWOVlvI_
z`u!vX!p}`?b_VhsyE@jq(`z+n-3MCmm%XcqftQ+t$31;yF@r8`gRzUPK`TQo1d<A?
zM(&6;+ICdz^gW>IHSzE9y49a|6{^IJQS_wlmG5Y@?7$R3c|xV|Zj8E#)ypd#l*U)P
zgQY5aeLlD2CVU|8h5&|hQ0tnnSUZj2E=S^h`#^ti7$40q?$#oq9Mf$;9z*}*oNTkh
z?xbT(SpR<;S8fk`%at(qg^&NkrZZv<WsMoBcgIPdojqe&38#g92jmE$yjbN{0wA%=
zDvFLIc{Z0ni^Og?9iDl5e2jDt{n{z3vaT<q!Nd-^%Blp{It^J(Is)7YGHZS-%rGH_
znqY~YTC@Aq4ju=1E~hO?NpMv4sK%sl=R{)A1i9O1@j4EJC0bGdMgo*SZO&+x?*ly%
zt}GpwvYWd7T3P4gl-|XZ;cGb)Nl}5=dh^#bY_$2-v?)kQF7Zyd)XxTt<P0xDO^Jt2
zx0(r7GA4atEi^u^W6p>}k1=D$rmJT70p_n~0JXcmxBaAu!532l4Xf%2G{^j_&N=Gw
zxx8w6QbmJ8=M6XkJh}Nm(497pMgRwVF8(=XFFCzp{3X9{rs2uFf9(A3`KOnz3KLhK
z%=yt*sLrnv=Dh#TkHHtNEm<bqUqE6P-qDT(t}Kcb02B5|)v2Wx)%Hhe-t$W{0e@yx
zKTe}*$uwSHieG3^|5+6ps&ejYzrJ;`v}W({?e#LDyXIph4+*DLWXL}CikOw$UR?Yr
z%pTif2ld2Bz7?RmXYKuyimd+~2yr7X-wVnm)!7iXO3}}>O7!Q=6{w+Ji!RWptHlZ!
z7vZo&gy&H2R8HaDH8fqd%X5Ef22A+4uz&YToF7^i{>Usb?8tpBBXLb(nw5G*^st91
z9a~}g&l>LZjVk-w2F{t!40@B7L-`+>YL}79go^!h&oRG`UNEs4rZsy*n|rx3R=?P6
z4R7~xVJZ{8KhAZ}wyuP3!`%Z~C=*sJ12&LSoQ$<tobjqy9H@q~(ku~@eE<8K(OdoK
zTPlW^DT+~>LntNhWtzGD&R@E~AwMU{r$cHN*ak}Y1io{qe@A<6-7(a_{acBV1FO@m
zHxK~&f5yUCYafNJ;;x-c{C4?W1zEzD_u*EZ)N+g2j<m;))r4vV@6YNQw(fsxRMV<A
zbetuL$x+xfjypE7hT=B4l65wauV=)87`BUx;;iwXle{c_aUpYYJNeJkX6s;iyQ~o+
zu5o&u%yBAub1W@8;2|Y;5rUL7_C~g$pU)8>X&eyQymtWYi1pfgj}*0&6O|HueI;sZ
zwt>2{4;X-HW$4Rjf?=%g($@l|-`=mkK$DRl(I$)R2YI49dky$1pi)L!=NfzG^_O2?
zw=muggzFeVS?(FLta;}K(5qbGkX0-9#)$<S!JD;!KQ5cAg{emIG$v|LGb3^H-#=cM
zxV6h2pwylDcMrrG${+=Y$)H2QX+0ch-%d+nb^HdMi}&Zkn;v6-QUSW)%V(MHe^FOB
zBzCoA8U||-+rksNO`i@e#xw_y_QT-^QrzV{YN}TQ4;1rSKLtBg?~XQ%9BY1ePq=cL
zWOVZC3`l?Wvm)@L?D%O;{Ib9NNznt*()iQ6Gpd3K=fYXQ&?T{fUfOr;um2D4qk|<6
z9kRo&uj{(^|8<U5Hc<D(Z-wmxm0!=koS$8wN|l1f#dgDuRt)}AW+L%r#pN#SN(}84
zR*1}#na|YpG!QkM8j>=MlEk#(F|l!B)Y4Ma@rlXt86?b&QR9z^jE>Kb6OoG*P)o^(
zLy1(?6w6l0<>d&6kqkGSWW7~!92J@W`D|`D42dIAZfsG;R1DqwFzM#*u%=kGR!Yg>
z^-#)^SW&gbrG+qJ*xEYo`$o)GEMrtW?}x!*$`^aG>o9g@pBSz42;ol@!mwGIhgsuW
z<^s=JRzDWH3@-Ee#~emJn*MDiYYX_@bQ&1tkas=fZgM}?URHS?R>5;!MtrKo@E1*=
z;~|l%zaTn+SL{T(Z15HmTH`cuSQJ!n`v}?Z1IZUQG^LI6x!l873B%}SgQ7M!kOJ{x
zXkJghi0yWF6Iy0BC)ZRP79_${9-|RzqiLS%&{^>^&z|gVVAxgp=AGaM*Euk&TiNc4
zru?mhlq&Cv`SA=^_D*)@{EwbIMoYFWhy5|kH=m^9m&{)XOy|*-@v3mTxdvxjGF>~j
z?xz15&Jq{A(!%wE46grUk)@-Zv`E$)eZ?p@l|gW0s`9oY@n+;L_^UQ!aDLb8wTKjN
zOX6yhz`uVye_4zlGf*W5)m<$x2ErY7gUK@#Ar1l}<Af-hl^3CG-lng2=TM(HR?#q7
zA51qn)1Z3}n9c`f2>UFABiabaB=x{f)ZN*`zJ|!<UA{gN8jOIl*7x4OMR^VpB*%2$
zv`TzlC&V8qTu|mH#hvzjMV*zW0In%nONi1SRT}iB#b|E~CUSBX2qqW|dqEOUw1@ap
zMM^eo?{?wKEuy7AlwA>UaNKuJ2p_bfPKl$LO;vux*py|e8*Am5YZ>MwlIQX-vNW|o
z^48`Jx8(<esN?S4T(F$mVep$rn?<g%KM1EzIgM%5b75qzLl7*Vrx`#a$L@rsuJpX`
zn(8Z?W^P*K{ICLCCR^}Gp=Lg6sJ5RM=jKh|G5yK+g_7;5K=0K8agFd9HWz^x7W<l%
zVLKlpq{TViYiu^DHM5K>Js<D1T)DyiMng=HU-(i$t|~(VR_J8C+{bL`w%5Os)3WUQ
z1O8mw{|A9UtJTQcjHBu1^z<C=Ry>VU7F2U`8Q455n(?n9E^g3Yzfs@Q6IS-2Qa8Yp
ztUy3$)Y!f^gNE#2G*Uy79g1!^kQ31G7L*kh*=42gv#`v0Iau{#NgIZ_t@C(N?|0^d
zJcX%7rntR3OWOajvHDo-#^T`T5yXq0nfMHYhx1|M=5Hry+Ly!^mz6$hkIK$<GOfs_
zS3$q_Gx$V&4Ud?g<#$tv6TkD!d)RREW$5+I4N4HNyvE#T5*vr1;oZL&M4iAtb_Of1
zh2D)0ZUsjTNL|x-bK2(VO}82XqCKqn<a4?GNtW^_e?9DWdrHfXPkz6nKv($qI*sXn
zMK#IAw6~pnio+b;r@!m9_i$uU4tiH4>35d|$28x(W%|)g>DQl?X<(>Q)=*<d_DRQi
z)yCAkyAC@z_E9{gT(eBvgK+ZXwNI!=eF<e0-|ikWq=U>A1uD*Ahy^7F8oll`s!_C!
zuTDN6!W5kOXPn`tgW)(kBXCjV_>f1;s@4wM>Tv7~hDv;V$;j9HGi4NxLI=?l%))qB
z6BTc(q^9W3HYFO@F+g?;7#L)G{C<W=y1X&}nsv-Ap=$WjesNAa3dqq=<p)&mQ_x@8
z>(?ap3EuZF<Z#GPRF+9(Fl-c<IA*!L>0f;_EZ~q0>fqUfaE#@X3Ld>iIR}||BCYen
z&SXE!yWx)WvpdnEf)C(Hf_Nx>;`g-=l8G**vRS(?ViJnMbVIr_%?Ugxcmb7@aSukt
zG_=Mq?Jo^tRC7l5ktO#nDVfC4ViZ&CbtiI=Jw~sLf()CW4c@I7`k>`S9v7pcC5XL7
zvnskCxCguSo?G3}ElDr)s}`SdjY+?Zq*L05Bs`znY;lv7doVn<OzUb{9bLfyoLZ@y
z9FY*j<`Y99M<kGFB!~m_jFPV(O^uVKvysG5iq&HEA6(B!|3DgvH`Nnei!`MxlNVLJ
z*i?2%07I;Z6!Ja~^?34eYnL(w<yGV4FvG@Cb3Qbs?Heq_Em-Rw&-aJ1v$0gn?i}jJ
zB@zFN!Dv~DV)0P&DESpIbEq~OuX1)yP1fh?<y|;}1*v1e$@M=NOn4;MUuRk6jIOk!
zaMQkRGnt#&QyXEvV<%h-HgY?JI|@|_Z?Pv#vpgw(UASyR!eB;cM*IJd!NhVyp@{o@
zXO^1eY4su1EY3_^#_Jw44gRnv);hNOPx0o}ZZ99(6W_&txwhI8tcrY@z8_p}h_8rv
zwQ>zl-S;KOw5>2Sjyz5rH>N8aS$P)v@Z+iO?B1WcfRAu3dEYxDksjHXncLDk@8&)=
zr(ZrxSC#P4YrRX>ZYkaV@wZ>+BeOT(??|3q{GwNMXFr_$k}}mH{p`;f*}pEr`_^;)
zu&dn;op&eTpi%e0&R|1}2&<m195*jmCFWyARVOP5`IXtY1p5D|de3k+`2TM|!-!b1
zHxYZsrnF)fEk&zU)s_}TwKZC!R1-5XV{c+_Vzjo#rnaiRM@y+1RkN2n*Y|t>f4~3z
z%mc^aiQ@?8=k-2MX%bi#UZHl_AO5bRsEZ|Kzn3uhBo$@C!n8S@+;S8ouxL>DADsw(
zKu_~^u9InPTI+4|h=9SHS_BM@LS8b{C<><cCYaLt2+U@m$|Ozvf>dFS)*b<eU2DIk
zc`Oal>I@r+u4JRoJPYDTksGZW@1;cMY}r}?hLyy%X$0Vm<ik)(@f76x1ZdLljR{N|
zkEZ)LHl|%?YY@46n9WknL{U<hgTBn-DzSU_;|@#Lu#f37%`ELR_D$Fql=PcwKg^E6
zdZW-_sB!>^o+q%Sskz1g=Uk;xOX2^3lD)1{^TB@?&@Vpd7s<=-?3$iWdw={`Q@gP6
zVkw_vDf+0~GU|Gs`5ATnq+<T1Gz06D`qEU^e1{mdi+R|+v4elw3kRf33gGbN6{?+2
zG>?>S`uoE`mlW7U4>sq#wAJ6XsVa<}+rF@{xgb)1jo7H`dvCuSSyeB2dJ_h{+Eq}$
z*^-?p!#2K3Q}jsXXkdx=u+WIC36D|ac=z1&UH7jqmX9BM=LY-=6Y~?h@KO=d#J^%k
zYI+;(*1E(|a*Gx@hTIX;yTsO1zV>)LM)_J}T3b+C+H{X=M8q~Vb!zaWN8=x+7rXGL
zjz+U2nY#X%_Y@m)m+UhMl!vDzqX&8;P)b)%VA3bT7Kfi41c_x!XEZPu2b^6eJo=O5
zO-fB3TPMHW9yfpQ`O(SZ--?1CMcZnd8H}>f;1~b2QMY-AzL%$Hc=Tua^y(jZyR&7r
z$C?w#PAAQtes|TDk5W0z_m6NFv^{OVVYYwmK5Lo%z9;=>`(DytLF4yBHy$5$PrcvB
z;U<GwDnnqocL1^I7I!e<;5!83hGr$uoF)gb`(QShe0hQ}ywkpXCm4=es03UUZWZX1
z1Sr&gB-#)tJx!k2UIrpLgB1D#X;EMmpP*l=WS>Ehsuf1@B#5N|!wU{(*$~z{3Dgt=
z85#IppAHTiQzl<haP0wQ;b6eGV5^i6>xK}U>5xY!A-0^MJi@_01VdRmfd<b)qmuy$
za<~yG=rSG5f&z)7rTO>J?kQn!8^Zjj!vapi(0w8HDg6IJTOTYo1smRgjhx0tpJ4Gm
zkRTuPSSwtT4=yDIm)3yGn8szLgv9spXRC$hTZI?;gcqlTmo|hua)y_mgcCU<YW~Y?
zvEh|I|I2JioRN{q5%<ZU6(1Cx3_Pbc8sOyXvEYZnKvI-prT0LSR-k)^m;8vm$Z`_!
zwJQHyG5aFc?k7jkXEo7zEX`UU1G`zYpHpO?kK_<1|IZW5N{TkrEoxfaP_QPN9UN2W
z6GJ2eRx>=+R?u@tAnurt)|UKrbO*$|3kwhcaPp&`aZ>;V(5k(`5D7FsrwemNd=sS?
zN0uEd0huJ>AgR$e8#w?mH_(ftCoF3q@l$pcU4E4kcFlH%&b_GXYH{kG@fxx5cc~LX
zIOEFU2`q>40uAwz|ADLLWSN66CwX-HZ9PE^CvQw+&fOoo2n34S#;Lm}I#VTv!4vN^
zny{dgvbB>Ox#&DjA@*A!jC_*ADc>6|-ck%m2$mv5yo8bwYN&6DuR3baEB38=ax~E)
z#50A=QmJwQf$E@#L3k$hP<DN6pRTkRNoK}Jb)+{Mat~xQ`NV16JkQsC-ZrHikj`nZ
zWz&gj&q-Qa;q6C&DoWUExa5`Y^EcdAF_7Tz>{srl(UTaBRWwWw)k)xs%_ykL;5bQV
zdzyLWNUnW3V`CpMF@tGv25F%|h*8j#r(F3AU-Nn<WIUeZFj2)KEfk%}>6KP;%Eh?n
zax)aLm6|k;$Xa*KYVXLt*GqqD^tj!fV9c&8vj@cdx#p5X@G9~>GYasb1~Qa@_?4Mq
z?c^&Zo(U%c+Zh*r>t9L7WD3a9!ecJyGBrI_yHT8`3=NRRKd3_|w4>~W#+0vgX;E@p
z&N}C+eU{WU=GTvnrY+#hcF$M_GPTa|DI)Wm@5GP#GK`<{-IS#D^T{8+Q?N@DWF9VW
z$IZKU-`IFI#AU`neIIh|EdMSm?_+Cuhgo{vD}_Tqum*R2$|y(_z;tu6&?TwRt*bC_
zFQ2T5U2rd^{qex#i?WZ8%DblG9YQh74~Qvyx{9ae3L0?g$(bPO!&qz<yr0MRJ2&Qg
zxB&i+RlE*#&$bmE7*qm?`OFd5q0eGQoBx?HjwzRXO9+LR9j}&=W@)w83hk7^j44V7
zQ}4Xg1zq}K5K`H-)O(kLK<U~`GC9?Sz{|_Uq!>;F+JV5~aNP>1=I$w=CrxARGe@OM
z0j<L|$X;1e5nvLEp%ARtA;VK7flj;XJnUZ;M*^&(J-0j>Uing|^5@&iJ;|zqdsR-a
ztLRcIV0{(G<5kSW$PMf2k^Qm(sAhCvRm5$bG23^{0~|0vIfmy|Zv|`A(`qQ}{KW<!
zkaS@#g*WAHWl+2F4wkA<r3LqZRf>LcKn>y%cMUI3*-%{tpGLX76z{j&eEKUX(PmGt
zq?a-BAVlUA$KDdR)98DWY8%ojm3tTfU2HI>m^ak?4u0N)>Kb!qz;Q|@*>lK?^OT_D
zx^fS`DO6m<v(l*Vm*KJiSAW4Q?{6UgP9Tq+x~P;tPiPhw(sSk%fEbljLNbSIFrwlc
z*8xhJ`v7+_u+{`wD{||=zR8y3nHb5|T@}m@NCaVAD{px66Bq;tswd=p2&Td63!S$L
zn5L^y{5zy37xXbsDNGPpao)t03kW?2xA0`fhdz77!#q%yG|cmCG{W|-p)=AJzI0ci
zNdq$Wz?v4`+>SG7&Uq20iw^?uvE%8g5RP7}yr%B0L+33U11w*jzgX6QtTs23x4ECv
z+gi(7Nq&$H+UGy#?m}DuGky)Y=7v3>OPQa0BG0pX_MdVN!NQ}Gm@!Fb#kN4RHa;Op
zoert$$t4LaOfoua4<<P|=d}bbH<|T&h#rH;xOxJqxN<{q;YMp1p`-R({@?*^KN0dc
zwmrFw#Oey6oqwoL(-a7ADmZS~JA_;`cHT1Xm^<%)OLux=J{fUmJdkd@f58V(3M4qB
zJ3c5OC)Sd}y`cx-*M&5Z=)h86PLB+j@3zLIIh<)N7wspXvq|gO4{A9F(Effq4JAL<
zA-=`iZ}|bKJR!oioKA!EX|^dqGBU+;#q6}lwa}Rxd}h2W_+Lr&-&6I6MX+|UfjsgA
z7-gYA;)UV|$jH=h@<9`T)0~V<mxK6;C`d0z+7>Rp7fME^J#$jhwjt8FmoViwpJV4M
zPqn2ov}G-u1|&xZK4l1omkUMGfvbu>mtQ!Ser8yf9v0Uhj+pP`(*~Ed0Cwi3$P-|f
zw~WJdL*0=g9T!c&3U=X|;l5=K#dgquul-;wA1*oOu;Xo=^sSbifqgow!^q(y|B+MP
zD;JuIL#`EotFZQ#42mfHmvSKn+ac|sp#pyh?ZPNOTyMjl?YA^9@@Hw9?LfmIZ)Qsd
zE8sIH&iuXwYdoQWJOMsp<+$V>f-j7KqQ<)-@j`zG&7vltgo&H2+`l5nS~v1}ZBrg3
z_e-$zcGQkoykqziIr`IoywheB_P4BgpP5-3qGK{4N8c}B@x?#$^7D&@&sFn~B%69m
z9xcb#{&}~rB14=;51k*HFg?CHtkI?TG!x`d(XYwd>*iX2ssL2NgC4fJJKubo$*1;J
z3Y<%=5QFd%zT!iMrCsu1co!l&^vU}NeJ<?bYCCd0Io#$-AIbqQOsL4;Ih#S4M$L-g
zVDpDMuSQHXyUbbhug}ArikyNMBHj6zNx?#HS!qN;t~f}22t?FvadV*vuUFwc^`s5u
z4MEIbwIRpPL}uE9=l2!@m=>S>o*P?G?uvz2mM+a(I^_fBf3YstO&D&Kamy6auKfjX
z4E3MwYb!)u>v91k&Q*=QlbbbJUU69d=iyZVzp`3_rsu`wa-H6y%l;z4woq98-+!&v
zR<91XzVT;ezFAB&xUfQjS+GgtBcV{6f!&>*5E#EQ%PzUpy*@p94IVJHLTLC`Ej_Ay
zTMyjdI@9&swEy<%oZzByw0R$thHrSy+;eTT^^NT?XF(&NCsTYYYEcA?>U%f2xUw86
zzkaKY(R_G`3bk=JdV@gN@cD=9-Odb?5adSmrj!EEGhp#e!0dsdf<;Gx*-m>UA0M>?
zl*+@0ZoV_Pe2%qq&UFPC*bf)8Rh5Iw=)LqiBO8%XHFCDF&p%n*8eFFBOsoDe_0E&&
zrp^{Dp_T3g**)OqQLtyS13G=#abnT0@G_l)T{<C9zOAN0KFv_Xa!-uy&M`u*oSz}|
zP#wcTw^+%%%D>w-3_(-h9FG?H9G#!&sftl$SkVKeo^g6->U@`F+ggNFwC%3%?v|s#
ztL(p^>ok)L%6}fI{kVow)ZJ;gX7v16PJc|7$l7aKEit~qd+_q3<dnmgeAd6wJ60Va
z!us6{=WQDX7P&tg-CuSKLiVW8zgkIbY4~kQ@1Kopo!#*ulI*rf*Us=iJ7KM9(%F>+
zrUOn!4Uu28Jb?!*-5);u^SE&6<7o{*nVbBe;(Sj_UH{eZPug3HhaV+>KuXXvn%dwG
zKQ{xX@DqbbZe<|bGO$kOM}FH}rmwja@bZ;W4{cSf=kz~(@7f`WcI@G16S!~cub>$P
zwo)a4SlxX{{NseWQSOHyI39N|-dJJ0%cL}fcJumq>+mOJ$`&^3#u>B1U1`Di5y8<;
zJX?XC@S00)nQ4m4GG#HsG7k0)S4DzUSrneaSj?G3!%w-ZnJV9(Q!Jf|wx5@*ol{Gn
zMZCGu@tCDT>*QhMNyQ5p(x2Btv79{F9b=bVtB)TS37=Q0b9L&mV`JEzer~k>KC2r$
zPc*qWtG>NUywR~H9Lq?~kWu~1X@hX#5mZV-;pDk(Jiit@LuBgzE@fGAlM30X6mxJ|
zqJfEwL1a=J7#q)+n0%Sq8r@2YiorpV5`namO0?|}pN1kwM*H$fP_52z@`_d>ul!5L
z3Kc?2Mhl6>Db7&AK18x;4Xz#iIX*c(JHI$KFa&_1dSqNlqtE`0%Pj{K*cnzs)i336
z3lpIm?szfXx8F<WRBeq>M9SYb(igiXDw%A{9V)=A&>D%0Gmzt|vfj8Ln87L-R}?PH
zlKZr2x%j1Troi(ufz<rNAK=C{Y5lh&ELw`mwKG%wN(y;@h`E`uzNo9pdFgFe-5MAo
z%Ov4$EJb-xB*OCZYtCD5sRDG)-F3{>DFUsDo0bezkpd{TA)78Qv+0mm{huw>i(lq8
zmxS}1G}V<{5<b<!V}c|Te;Db9D@KLzn2&C2i%lp%oqgBW_416PjFm68oZ1St)~+rn
z5`Q?pH9A%nxwy0cIZ&3i;su~b+mcV+BUDuGH)2%0muD|>_PeLYCja%&qacl9z54wJ
zCQ9D00d01>*D*?gPOMqiNA<$yh1zpg;a*fu_Z}k_*?i!EYp|4@+lixkeeZZy^XwF9
zcY3jA{Ei+bR7a7Jo9dE%wbNHj3r2M`hmP{rqBZ|)uEkJYD2}42GLU!3_I^(gUAwUT
zqMB46DiIFTvvr`@uo|^gY;jPHi%&)4#u>v2a9uUJqquK~MAybXsG>#fZO=dxp@{^l
z1SI&<a>pJqkvt$_!7oH(g3`$tBBdJQ)MaKOVu=eW;<=G&-S(n*(ec3iAVM-W%l}OO
zyC2CWc>FF-u=GFB5|fTAFTv&p-LYOTh_t`bSLj6vm5dq$-hFoUJ%Y=rG-Z|hTlEVU
z1-n<(r9{J^ZnooX_&dqteBe)YRRQD_d!McH*DRf~j61Tbx{y1Ma0Mbn6-9BOtW|@;
z!Z<Gt>9We6Ifr2MOATzw#exPl6{m-LrpA5O*CA=&k-1WG?e6uA#)L<IhU2$Co+Ddi
zu5=S`i)@NQ=+vX6bNkv849!KQ#hYEb+8g?&V|5B{x~Kk_NfN@NsAYbSUV*CHU!ry|
zP=VEhkR#zIXHoeO&^$e2VxSeGfB16bE!UBy1qW^lthmW*^)*oVPJ7MsTjxP_A9VOS
z0)%V|<x1M;8?m$*-0%q`EiuJf;~-dOtXeEx;$*^U<gdqqx_TyL;z{~FwY3PfYmoIo
z!)p<(NkP-j1b?vuZ(_+iKb7>SPixCcgY@<~C#i~uu;1zpPn0&pZal2AdY3)?v$*sb
z^T~SU@vxz*nC$h&5xW?Ws)E_2RMXFJv*!yE1rIVWHs=-}Y6>lQ?>7D6C<<%_W<;=k
zZwYsL$avBE^11zHIaUt4^WcHj_=XyE?k|=0$ApI_0xF6EKUvMMeaeinnY(={upnED
zKNd6%5FDWRiq6R~ZrS1cn8G{D97{^8rsI^|4gu>G<#Lc-2DPc#i891D!*(OlisFNa
zbs%T%>0TI$E*Bo@r4&f|PQijkQ9W`K1`}<mc&$ia1!R!V5Fnh>5Hm4cT|qgBqGX3W
z<*feJN-5g$o~u2V{YxK4x~9Vr*$1GI-V1afeY29>Oh+6{M;H@P<atoLHw+HuvbP11
zKbSItLsV@yO_)TALqM;qW9<fiQn34=DeoXPRGQ3TP%C2*O=5z?em>57o?Vb0XQ<Dx
ziZjo6!ZxG;{tuKCUq7THb(gRm;BnG(QaR%Kk}oAhK6VwzUTP>~=+OvV5H_D$^geEV
z>(=dF4<Nk)p`U|<_85E+%;7)+u@OlWoQ4zvT-C<5O%^bs^f&2<I|C2CSx_a!qZG5Z
zM4c^a<BB~;P86=E+<aLRzilR@*3pRd`8*yD<qH-7N*JC^Q}b>Q@>6_C7BjLq@H=~5
z2qAEpz0&T?7N|%G3jZ>E7pnLoI2FKWS446S_5kHcizw<FTf7xL%ra~KrZ(U^{M!1C
zaF)$eow?#WYM*1Hy_C=#?cxRn_Q>au7gWY&CF33ixdrVv@9U8Bq*@M^4g<OwaHTtR
zx;g-GbgG4%qPY&k=TRTg@g7D53Ck8a0lF1AZIkDIIi){p2Fq}LpxTiFWa<M@DXrze
z{_T*lS6~fq%smZ2fmv)j#Doa#2CEGaT24bse-jE?kVpbJwW1Kd#Z7{F%uX<rf2<1z
zu)N<3#8!Ac@NPtj2GY{ex+YPH5az+d`{4heNbxOV+J0X@m$T5nD3VmI7hQ*r{LuNr
zl0mPBd5f6SYc1=Q&GT?HoSiR1quo$-095za%X;vQ?CWPtvtvEpZPOdWE*c(m**5i!
zvqJ*=tnQEXg_lW^n}WKyF%WYwnnGk*SPGj?bEJ~odht%qc?h)p4XUO|$uNkiZGO0=
zGJdOBncBysnQ5Y}k^{0S=YK=$(a_~fipH<;GFY{8^9XeaP|9>q%3KrsoC@5}Yv(RL
z`W<e*&d~*)bA_^hLn-n{x7-j#zBIO35|vAVv9-B{Y6lw#AE~`qHNm}99e?nv@lUDa
zQ4J=q++LES_w)9`t0dK$4b8buM|#nnItx-PtN+~(E^NJMsMK&v57g52tsJc@tuux`
zw=(n;xDhT7zR&4YC$d~)FEjAtZgUfdo@N>%e>#HN?LJIMucxe*I<j=gfw^@v2QG|X
zJ!Ea>fKJbXUef2=|MKvFIT=;_l7~VmG^PhXet?Fwin|`4O)@NdDQ09cx}Q^k245CW
z7`TaoVd;7^RP~J&K+Lma@Fj3;SNU4q)fa4AjkkL%sT(nBZhq1{oDBFsm7P}^*vp$2
z*7}qyzXUzU{o+nI>gjE_EZ!3sKJVvJU97yZ4uqy;fc{h-^=bwDO1SlNowb-^K+g0q
z?Oc3Px2AFUJnt~;SeH-24KorZ+eJar&3r4|G@d;CyYN@vriz~HxL=oN(SyG~G_3*j
zABW#WJblP&^Zjh_ld0FewG2atOS`XMhJVwLP!zH!m=80i$Bvvdl>B`pY8!aa`>DUb
z(2N(?cC(IKj~_Zc=V)2wAlnf%{`r<d*|+wl3o~Wf_Vqs|1$^#6@`9PTnRc1Y?kU-h
zuub4-r8d0fJCIGbBV3a82+jdsn8APkG>rT|dW2r{^FfCH$Br<X?Y}P~@V|D1k-xhm
z0cQrk+fI6K{d16hd9iux{b_sEKYyAp|L(<ny7+$UeR{3H9*a0;>Om$Zx_9Jq1r9Rr
zWh4_w>j~d$xd0I&T4dS#7>*t#0hh)YVbgTX5PEj}%X?GrBjwSlZkQoFrY-sX`7>oe
zF(bmslMSK-?L*ha2L=HGuZ{=OZlY0jfonwoNn((unpc7Yu*8e8pG5x419L>}f6T%8
zUw1-`s1kYOS*~M1UR>Vw33>ZRPT89y;)~QnH3r$`%eTjP*uN+e=B(un5+fO9eH5~T
z(2D`wFZM#c#KIhvF|T_=To9obc40$7VNFFLt%R^E2v&5%^Ve$saVLzT$-};D#Q>MS
zP;V@AKuYNIKIwbd5S;{UAQ2nYpv(fmtq}m0CqRQ@2zlH27y?Z933<^6DNF$sTQRbu
zKw@SQD`p7tu(M4KM5`D+|1tbAguZMOBms*E6>&-N2qD8rt31FbHITt-(DiA*V=*8S
zuPZ`~VsHxigNMnOf!uq6KYoK;QljsRKZpcGr!GgMR>k|{7_*8Qr;r$gZBQ#9Mk6@X
zvoEZ{9d}|DlY+pLVnNH6UI*frJOF2QDkBuc*ZrbFh^1d-=R{ngmXQ$_tMVNux(61A
zgJg(e5oo|o`=H;Rczf0`?f5t<0%$WOT8t2LX~+SWh!a*<7UN<dD-*<p$Q!OGMz@Ei
zK%gEZ{vQbZnllLH93{{gL=L2h7}C?It7{mc^whP!?E%ZWWk=ntBFK|YB3c42aL+Dk
zs=@F08RQ3<L?Yj`BEeytbltZ61{ORrC}*3sHy&Kco+Uzg%a{hQ*T*RQ2_B|2L-)>?
z?Xy+<o6S)A`@)QkKA8KGvHfv(>r<}grhb8ABh6Cd$$zxzGDo67JeWA6nJ^h&Y2O)_
zTpS0DbJ{aDx(xIsBn0NxN(Pd6SV$r$zF&aTJ$;2B(zmDI?BpB{PbcQ4x7=rxhQD@f
zj~oIdag8wuaNXC6PwMRr5P(_snJMS6%0p~llZpZ5*Xc<6;D|%7V-gQUEo+(p_@=JD
zE|EO~R;I<L_$q)Uip2gTxuybuO0ih8AOOVhVR0RV>;ks=2w*|0?A^~ANs5E)xt17;
zfL&BpoN)~X@gPZd?%CT6GdUs>+4Ua@J{AP(Svm*|C;?Tb{qg?a<t7?J6)yHqBSfGH
zCde(9atc^=&h6_Vh-|S)%_=Zj#~rC>*8=jG0cf5p$~Vrk|2dGp-jtmX#ChVF4>iue
zEp(Z$&&_%7O8)KKf(K6sSJHBV;7+YbU>P#~z(X1WC@htLuHxuEC*`XlkUOc2;#ZV0
z?uC$sJX~L)=zihlBs|cJ;r6Msw<RL<F!j8>n9)f=CMbg$Qyi|sP=-Wu^g||$)MpS7
zsXLLDn50>p-_Cc?caaDI32WJ9QC>H=+`7Y*ZS-@I6m~LhBrqx2^4D_nyEB*bF^RdK
z0NgneUw~gsl61P3%RhM9h~aPbUjehD!rqTPp1eY@76QVrNX`R+gGb=%Ch<s7Yek}3
z7q`RT1{p~L|62umX0wW^GzI8h>G}^*ceQ7mX8(q|aXwWUiB-V<DkNH&TJ#dR`k85i
zTY7djC7#6y7%F$Ak7>phn7zyt%_csztO0mlbuvqgb0$Itn4lV!i1dn0X!Qq=O8%V6
zI^*gL3Nr$0O$~RgA)-RNr>yOVGv5uAaUN5DF;hkjkw>uRNiEZgA|oRYgTW1AAqu2(
z<7tLM6^~uT>yu~PWRovidu2I}<~dH72jADkq(CgU*r?f>tsEwl4eiy@Yd|f|!Me{G
zG7qYQN+LyPKDb@cO%Y`rb<vSK0N*-6yl-ZT<)#xw-S*k2^4tC(oS%$?y&g-5RTR$L
zW8%)UW}|6zDGB#qzD`?sX1s9*kQaKvkOmVbvNExFNBIJgc3fhp%V<etlg-l*rBajZ
z#3tj;rVohQt#h{<S3vAU0IOSK&~lUN)0Z1?*F-ZAGg4mxpbAB{lF?$}k%eY^u)+pN
z5$VMbQ~X9=W1^MCNxo#X_zTJ@?dHQ^#=zR%Tqc!!tyU&PM=<t&tE5}&OuE9z3|k>B
zcwD8W`?<}cGyP;l>%H|)1%6GA+TgBc02Li4nJnh{A~(z0mIip|{VI6q=&zfTvQVrt
z%j6${r(FiR9Ws;@qJNya4&9)mng5heOJcAQhDmoU-f!oShI}6&aNlH{BhQ|8f_~1i
z{d&%Ju-)AJq(i*CLs=TC+R}wMYZ*(w;dYy*;Rdj&`7)CAW+fC^M&^pt_5iJnw(T1z
zc3yGa`Bs5>x@Wvyg>H~1H+#MkK3z1Ekd#1P+mLQU&^V}ZJ@(OaS1onvb|lP_!nLK(
zuj>}@Q=o@*uy*su0f>7>Padkb#i6$V-3z_2z|Qna?Db;i>l-a>yYY4vP<jzzaKlU_
zVVzHs_<0o0YCuUZkwAl<cSt|`phR@g5wv+MktuShph#4@WoHw)-I%T6zg+Yog2?wF
zH*3qe8P@}$wWR~BG6~~>0!9PF9*+)2L-LSK8!Zrn1BE;{*C|c)jICj`8uTX|=&1@)
zcLpRP#Uz9n4U~bRdn16>^ul<8Pe@rE`ZCP^^>CyS*Y_g^PY$|2H(5_zuYE8_1jY}C
zv7|D|m@`|9O-QTA2{AezYD`~%8$Pp~Ux4fB==hZ&ztDp%diC+O#TPWj0`wzzw-J_~
zDE@b2=Yr!$o+V-?+81>6)KLQ54yE7CT+M{YgVSME`np3+??m{pIUi@n{Zx2@Qr2BW
z1N2%rdOWOlyw^F}nx2uT^V*enT(v*a8&0kYYm-d@eeScN!ck+_zKEY!5AR||UC+yV
zcZPy<+(lnNKN7z>w~qaeWqBb3er2NOF*Gnr0`(1EkBE3ykeIf2XGYayMwn?7&?@t@
zZ03$LbF9f!oC*WFY#i7ZDS=Tg3cY;zA}w?1!fzy!gMTkV#vN380J;)CImPZuKJ~wU
z27FmVTfHIpg>wGNTj?eQL}FC&@LTH1V6<ktgY@X5U3syW9`u6tz;x!t^zo3d-P+4U
zYXtuJ;NK~!F+GHBV<di|?~8bA#S~qzGYP&_qP-NpJU8aMr2SA4I=K)`L&s9c)_hPR
z3~+~xmb|r8K5JcYG+(-W=L~$gIH<k+a=?~ASj2iV2zAZ<{X5s|u`rxF?{g@ZM^t&F
zf3K~x=l;e5Lcu|cw92%uH~W*<vje2<RVWA3DW<2BRd>Z4%+q2d4fq#sBrVof821c~
zN%PPvy<FpETe&jKt7$55jp1^=umvJVREqAV!v)WjftFJDHrC<bC()A2GK*^!^x}Z_
zsI-AA{ToVPm)bu`<nZ1bmBD^DpKY|>zY|Kg!Dsj9=D2(*v{Sg)y$6w%PrTI3D+#V#
zbfIl!h9X<EChj;hRSqb4*<Yb9GBt8}IjP#Pq<Upvca*uCCJTOrmgMve4{TOiKWc_Z
zvFga-8@L3OlYv`N1~(j@AW61AW@1@LrcNDMkj1wv&(?or6Ko^%fAsRZnBDFeVAheT
zfDrhT+M;(jENm^Oc4ljMMi~&^x<C8i+cK!_*d6ETth>|}uC~wdFH|54Sy={!AJRu@
z#&&l)6@RXb{;D#)Tssed_V5d;kBQX5bQ(}JNoEc0w%gtn{Ogb2WVP+`jP0_dB_uO2
ze}B0r6|%P!aA$XAFAlKZGD>&T=hL?Q)i1V+Q}9M?V&q*r5K@aCf;Sfq%wW7_Bqh*T
zP&{N&K=<?>!*@KxSF#s>A*MKdv#K|M3Il`6^Q7en{NqB;k%N)J9}at%TfJvnwtRC5
zr2kY6c^1Qylm>x4QGIrIpu7@Zu)<ny$54qWv0QP6$TD6|{!zC(a?rlzRQ)G%`S>M}
z!@YVZ)2>8V=J*TKUWp=SnZFgw<YM%gp|cz$G=>ZNi7SY4FFKpoGzo5QcWn0wlKB3l
z&i(8{`$Y8DrE(DdG{6g*^NUsZ>Y3zgUe8;6LfO#tUlU@7eAP1ir4@JCE>8oO7WwWS
z-`?LH8a<-PJ^vzq-u6m`&qT1}z2MbO$buSJMfk1#?$xJIqq&p6@74F~9*)zfU)<ZK
zQ+m9>e^C47R7IiYcf7`%LAs;1-T(s~HX{&(N(@OA5*kLuuEmaxil&lMfW}}IL=(cu
zL)$PdL|AxabWW6*7FJv#1uH9=P!XL5i;<EJqt!~LB2R5Y$?n^-FfOfltcYSSxl$I>
zogJDV!xE9F#UlK%Gvq^kV@Oa!Ay!6aelfJ6X*Fg&>>HMOGOT}qYAB?oErit3DQg42
zvfp8L8Sx_8B4KaY?yitk)Hs_pM>M|q_TDgGn%HN2tL~}S(HUFh10g5EW}>dzD5AhQ
zH9*ZZ9~UopD-6#67Ci*GWuQgxuf#eIyRLU`_|F67gjB^W7JqA6$uWRF7<Ols)*PY}
zT*ag(oz`DrecjiZ(oU&(KQrgfh#S9x#vpTj;YrpXI^)ERujS94xphNTcC21<2IQaU
z3k4bJDrKlYSsAxq?f%QHwKyHmQ&}9<63F%(<C@c#eq$6xp*tm69UtB}9N`j5Hu0!z
zFAg==|5_pi(F&Nh#4-u@#Y<feJfg-Ww1sEtql>MTu0vcAl2qJGAm#~L%QaGkW6?I%
zW%=!RzrH)Y)QXNgeE}66Li&Gr_Foss`eTQw$p1<hHl7|@$se<>1{#F03eA9`V}(<F
zc9eCJg^>BoIo`8e2aml$KM)IoD<xlJ-wJzK^@W87PZREnG(Cfa8x(wi%WD}X-O&;$
zFpM|WH1Qb~V(R-n&Uh-=@kCIT8@VbM+Gi;EmWnr#CCKz!@ra?OYzR%Tu#5WB5UT3n
zwbx%`CD`7xggjd`nOZ4YdUX4~XPzKK?i+TDvAgH@h`0LP$;vmV$e}4&`0EufgO?wR
zv&fC#+=Of0s$-#tIQ4H?ONnY(*;e0Z67QgxptkW?$+XFcLOT#RoxjiQiIyZH(E3t{
zq4@Mh1yzfSVR`Kn4|bZKl;1PR?m8DzMbu~*R&>E(1E~5WL~Oav^ruoMO}+d5`TFHh
zsojS4B#lA$0hxPPE3umZZ7Mm|=KxwoH}cgu*P!hz-O&>~C{ZT=1Bp)3%9hwp_@4w9
zWnz85FLrML^XZOtq`R6H2@j-TZ$at4454T#0!rHA3_mA0bp%qfbXn_YDfHpnDG)8T
z64?*=#a~_hPYx{&d%8r!u4#*bMlpZ=^(jOgsXeHDD-$lK)fvwYQeMh996p@%d)3B}
zi3HQ}-o$GUwWsYooKoA~;cor2TJ}oqSyAi9asv}0Mr`*j>+j1^{q4;PjCJ;o&Qs%0
z09~B!6$Rq|EurytD0sQOzgj=-m7G~W>w5gR9)jVp=vdafgnx@peQVS|W+b<uq<HHw
z$EiIb{-OKsr+@Z51{DTfN$DZPdUZq|!{@#qI`x$$6anCCEIU}m?zbxzG}dB5HgmkH
z)8TbIHK{&}(YT2_ezqUBCa<fXEv}@l%J(4-b(_a;YIL=U?xvIES$mLS+JnNQLK)j2
z{ZgvXk>?)qJ&c3Lpx@O$<TvuTeLq)A_T3a0Wg-O6!D6*dT-`ViQNY2w$L*H9&)NDt
zC~DOj#3)H5M;Hk}XNxCXzcT>4IWR(JVN0aLqNpyBX6!EqySqfM?BmR&Ihw{3d7Vk5
zH%dqhI6xl6-7x$#ib$ffDGG$~2U0pqgl<pz6jLLI-blc?MDfo63b@!v$Aliv_htqy
z+VDr@s9D))Ly@n|GE*q)B-?vb5OcyN5XiC!dV~&?VJp5qk20&hxpIZw5JfeGnc{vh
z%6D}&R>$@ALx~E7_UkYUtyueZVX2uI*#LK4G1LO$zFFBl1-Yc!^;`~(&>IiEYIL3K
zg&e<i8m+uj;GXWZ7xeeVQYhV~6rSTlu#Wzh0@_+DF`q&Vy%bVD@QQMF+TC0cR7@Pu
zLn&URF~0FfA|8DKl;~{ey_Pf>xYcqgqIJtzU;0W7>~#XIdg}Ee3(Tvm5hXo^sfIzP
z&$~<qHbPgm##(-{b!5cl3yZU-2J$~5N|)Rz&|Bdu@H(&vc>g*Rj*A_6m#dJt;4Y-U
zVTg<LQpn|dvw0mOF&-${lYifWU4*~K@Mgttd;ZtKw1{t?85ArPIc<dLWzR$a=7`X!
zlohUfM`%{F*AWwE+BjD=u<6czgb3;fbDrT;)9g{DS0;ij)syzoJJu3`0*YG#V2mwO
zZx!Z6%nScOt1M&N)F>ZmRaU|TCE%`2g7S_W91pk&pRCm)plvDrW~c#^z@SWs^Hsmu
ziOMQso4X7M?lxmUL>mj4=_g*o&mjXfNzBCyCXSuTbHf&^wV$raiikIJ^`AL5+zQ@(
z=}&93wt56>x7@k@*Lr@DbXRr!EBzaR6~H$8_u5KI)3>owR)17L9Q*{dzXV}s`p@s?
zHf_|qR>j9qCq(NMJ(2u)Y`eDeA)L~bc)>bo>&7QU334U|Z>6CL6*nDN$Q?4(!Ih<y
z3UY?b-Ho06E0aFmDj0yqnb6rXHJ@~YC#Bfz=(-udOn0-OF%TQrEYJCgd?5-$t*{5=
z=tGrgnbyQ5@2qqyoc5bV*CZ6(+_3CZduYkeK)oKn0T4q`NULEenljd12`Eb189DN_
z^BdKx#v!-p+KlfvFP|;i+<*9HxHju}@cXs%(-Aa79f8_pQ)m9ZddR;WvY|}_4RVJp
zx-LK2--&{(S4|nND^wl&PlwF1Qpp4LKOM5tdqd9Vhl&6H4%wSG%JE`mAl5l$@V5n1
zqJR*{m7W?TcrumJUw~#-Yo;({H?3}L2d){-O{WyAs7jkXU;?Kzf8h`P7}ow%>u`2z
zNz}BFjd#~w`FzIkQN3W#!gsGV?(l<2`kKTAJ3o$;#U%?gl*)9EeeNsBePaj&G2MH~
zgPQt#f`(d<AG*_MK>}udlC<s^Rw7_lH0NpH_mv6m#Cc)a<(gNlIUuIXazap-If=%U
zq*Tl-wlS}Uc^MLPXt&9GUyJxB#^@htV)B#kkLk~{^-XDV8H+e|#N0;c$M$2S-hkYd
zaD&bap2dt5TNI&a8q>wD63_WH_$QM|n)H2U*Lh(p)doRi<-UP92`q7fHtK%l(NeVh
z>%A)d5}&qreOTd7o_YX{DdG5)?>kj#Z}malryvg47?b6#=8(w%?BMmeolee+mwK<_
zva14r_nZNt2Bb6c$NJ%1m*1K%i+B9RD3ciAg2uqin6fT_q7bRpB?1T{-`kvwz3f^N
ztQuk7I|&X!Vt(k4f*cI#8VBC%{ptS7Fn`ZLmGHiDd@Avx*LCSqC;ofm*r$NQqk8I{
zXz}eiyZLt|O<Kl#Q@5bs9#0*z^j>z7UhnR`BMH8zbMzVy15G@8x5y;7ku0k64E>9m
z7hr|Xn9#WujQ(=(-PK?K16F(J*uQxN^Fv5l@B}>CYf>QymPIKrx?!RSAUUL`k{XL#
z1Iq4o;Ajy<X4zld2QseeMy7*pJ@m}Q{w)p=C^CQw4q~*TCyyDOlsH52XxeFv03?{F
z5B=vEvud%#BS;V`>3!&42<N8GqY%j5K8*1+NNPGzC?%xR%`b`!6qj8k-1Kb{`4<Ce
zV8<X?H#!Ij#2HGX2z%3MtIKBxo!uASV)9^lip3gUvc{|NYGPh!*x9u*1+?Zs7#n!P
z3~6FOvKc<Fe<pj{t2rcNX$txR1lhxvK@l;6XwN{Lh02@g6R$3dz%pcbneE#)!H7<B
zJB$E%X602G8xc*6$S%g3Gvi{&$nXHj&Y_GXVn=;I7$*R94}{l`?3sqhxJ6O{qHX)4
zrcNSNRw8-x_zL8iDAx2kQkb)S444YpMRFsf;89zih;pCzROXT2)#$$YL_$zel_wBN
ziAT=UF^c2-bJI~qYIGNBVJ=4yeLKK-k={E)nx;QMp)dF560Qha*i{w*Tt1qlHVEn$
z@Vu&V6-gC>qT}R!<7%1tY0YAy@N`Grm+{f$=j?jd+Z_B5K>RhZ6&XkxlH+7%QV`oX
zMQ5wL;>TX~TrhaTfuM4s-CIUNyk}UVP-9}#*Tf-(c*Bx}p>aloQ%*9I<m2Qw;&T0$
zNg`?VXLPUOAooh(_l@FKkVzGR0LMlfr!7905;v0>X)~kvPk>}*q^osFib8+NoIST3
zj>cDA;BW<|@9Z67ga}GaI;>8zK2H5hObshZw!IILF``$5vp?F32vm<R++@LQrF=U|
zh`*1Rkbh9(n|2pt|HLwlW;{K^D9sNiUOARlzn|7}0y!qJ*ndwWo<5@I%G81h=GDlK
za$1&aizozRrW*y<wsgzdFOyz7Cx@t~ix#A-^ou{6(XEouo^8)yU(K+$%P#FtZj#Rs
zUCA!5Gq#b)Sf74C-=9{eB(@;PuCE3>arWb&5t(@cY4q^$ba0?nagim-42ZmYL{@IL
z10_PPwKYO-G-zvA^C$~~p6Y@51anJ*VaU%0kQ`4&(o@|O;q(vJnmVFfo&c@ifJ6{L
zH8R^A^*pz|VF2~!M}yi)Fg_44_BR;*mez4YUy&%NSZcmmFDAKcUkWZvLFHFI&A(j)
z;5RN%%<+`}Du2OoU;k}>C8jVkzwl(L5NT#S^jg89$-vUZ$k@emy823Q0u!j-faM8L
z!L0Cl0{aa^5&N@Cu;Y~?=d+?fH+ytK(a&lF|0@MaY57)?#lPMZ#FZ8ZxfH+3mw0`a
zBlxydC`4Z;+$^1x8%bdqV;wpyZ=k1SKsR1g`Lx7k<%%DuG)}Vg?N$jxJBu)(%)1L7
zd!<AmF@Qe>XnVxj)==~~tf;`AAuK$Iidc}zS}{<{Idqn+`s0cMA#c&hs!y_V@N<~~
zQ_<DrT+SoV#90RJBuG@g;%g}b^;?Kolk6Q!dKZNZCEEx)OTsniJ3v`glr0FL42_U1
ziIRj)zlAJIYATNB-}(VGpREi9*zvD0{|@K-V_hL4#drY4f6OH&00?rgi&D?L0FqYJ
zX*HpE#i!$!d7^$**@j{H@;R&rUK~HdxWXw&$jn2F0!9>9Pj^B%3UvF6q^4szxnVZ&
z4ad9ZZG0{rUj3exsOCiZVOajd4<yk1`NtL1|Gi%KD2B(2v6txAKY9RSM$0LX1faxv
zGB15nr`UpYclx(s=EjfWI_n}!w~fW&j$~f?IE_cz&7N#yeFEgRm--N3B<Pn5DVX4n
z->63q$a!|wnKplX(F{Ow$Kec{Fn&$7qjgAI8!^(ymvc>x<m2^a>?>enoL|EOordd@
zE#!Ea0=`+bj!p(IeqImYCkfnVx;K=R8R}4P3~4TuGB1A6Tw2yrxy{nrEE!XFnb1DK
z7}Wf}Tgp38gEnQ3E4}Qa$XW{vpw+blv~XVM^x$Ja35`!#{Y4JV`|HV1<{;BjY#8xe
zGB2GshivdP#y<#M(<t}PZwr<3X7q1^lmnoHq^o1~l6&>l4<Ob9AI>+Sf5R=rI-A?1
zAPoaeNLbs@0BD4#m8JSqMtb?3&+VA?c60aUGTM3(tJ)ZRJJTQw&3q?4T?eA26$fW|
zkPZ^L4ib;7Ds%ggZ$xt^<Id!1Ar-oN1<j?xYRdZ-(y6XJTm-Ve-t{>0LkyrtY#*H3
zN&iJ7zAPRXqtuRteG*P>xc3?s<p(ivZQ0TWi&)Zy>2;X7c3_F!U#%}YEa-@{v?`Zd
zH8Fr%XGqubz-`z0?kND!JW`_ZS(H6*l;uS&Qz`d?Jb1*t5d}5V-;TW=QM;AL*MOE7
zH=>ykR!0(VBFIHBq7V2Kl4jQP6+JL>-?X1sLcM?!OO9(O#C$@=XxA|1vcYYNX_`p1
zmFD!Gnm|$5@TyIu+W3nGqBaTsx-4N}+g(AytmnS_P#F?5qY3Y}9T;$hE|}9x-xwJn
z49NwKFy)RsMF`w|Qp?jd^i-j@3?SqAotJ85koj}2TjSsu@0)*kH4&hw`a$_~fAJ8v
zQL41ju+^b?{IF-cnHUEW&&GeeQ`KkV@zs@e%4YEC>KzFDGO|ouW(a8colYW*Fv{97
zn!f)<<Aog>Gjyp5|HM03xTj4%htI%wbS_5-X0lV52v)X_3)jTaDa&YPPTZGaGn(#y
zsLy|$esU5&R#QrAA~R?v^VLT4VXJF}$HNMWFasHsTT9DL>Cw;9;A)y?lQ?4#7yO-r
zYY$};;LXC+#}CClZy~IF%Ipt?%({o&U56P4!YXwqUj3c$be}RgoJs4L>;;d{!|yI@
z4zKttJV~57>zZ=eAG2|sT-x)>zbg3tAq2x${Z(+b_$Hs@ZR1yLmD_^;wdKtGqi-|c
zfE*7%wXqX<B35LaE7CzLy)1f{R}-0f_3B^9cxwq3e+hcx!Y1=2Q$7dLg1#e-C#2R4
znbZbPKLLI-Tl$8UNK>Lya^rIn1_iJ!K6D`+AV3tG#=G=%JA3mxM0Ti-Wy<KHUEDGj
zu)y01Wq2gA<;^|Hx|G%cowWx@pe%u%Qo=+}b^0s>^@_0IN*HRz#cl-^MRVRNqA0i|
zI<|DVpe+>b2MvG#+C&TsXclBliWUSl?F5EB`|)Y)EoN(ci`l#(!t|`HlEXrKnF}?a
zQ{~VycNQX$V&igIEQsjEYgz2quWd{&vxlG-gZ}a;27EJmwDGG|#42FcdU#__M*VAM
z+$Z9Om;*o<wmF^*!YqESCw>pz1C6-rwGl3BWw!YQkSuA-v+HU`lNH~S|B)6aeH6dD
z`h_mbc9HF2va*~XA1w+?CcldM-)G-_e;>V2am|D}diHEV=l6@H<ArabW}88eHrZsq
zHD$ehMZJB0I4wdJ92Kx~6#l)q#Vv`J`KQ9atJ8A-`FX-~K7LcpZ?v~dZ+gbA3{YZ^
z(V8SQQEOa~?a5bv9|e_3ME<TMZist7pd<mAoe5Y<w%?7$FDd0jsdn+x+TJ}2?uChm
zm&Hj<AApu|v3C^U3#R5iK~TC!zv!!I85yrL$@Q@a{ODc#716YEI!s^u&Tq(1AZ>H>
z;87UcV+9G3v7fsno+WMm<$Vt(le4zVUeFSV;_|1N<w3ODKJ(AU4_vehMxsdAFYT`=
z@(S*TX}h3+$IYdyPQ#Et0W3|Z-840j+#bM2YwN4k*T>OcpZv(Da*tW45i=5Cm3t*l
z^JFd+cI5nu-ZESB9%IzTu<(PWqlmpDQOVtyoFkj1E9`qm^35gzjCy(#T%sh=ZR=m5
zizfiTlh995oF6pH2$1Q(gAAbMkKtb<%txD8F52%+RxvW@s^cKJvRU`z6XHSo%AXin
z^;FG2ET5#4{O9yOou#R{6L{W5-l8dzJMsSodBTL$ydy8r^<^_`p34Ow2YVB~Oj`i}
zPCWk0XF>mnE)y6FmwN$0n&BQrT<&gS{%%*hKbK?g`~$(oc2g1mDR9e*w&gf}dF$#^
z=B&pM26PKQK#^QQlc9hx@XKh)K&h}~KLQIb8XLhLgO!jA*Mh~Tk<()_T3J-GlCXk8
zMy!}3d3BK<lbM~9S6Eb17F`j;tQ8miKNT}98R6o{2)8O)ODqPV1;NTlS4|?3Bk`PC
z%<<LZwfP@l#Z=@>S#(Pqj?~fB(?|7r5Ia0N7DK_Lu<m4@XEduaX3@*QoM$Aq?0m47
zmxB>N@ZyBNZ?@~k#G$y0Rm-QVAGY%Ud``u%+-EDY&$Tygm~ZHbLkWI18)J%O#yVbb
z8vmx2O=h_Ko^xk*R~+$h=3}eE3HIAy0%AeECTW=|%HQzutRil(bSOcMX-kRpWp#w0
zkGn!yObUt6wWEhbJ^wux7#9Cy@!cIz4;>@!4&Vs-$C8#UzRiU>@|ej19dXjQ^XKQ1
zg~=V|{qmcP-&*6T#66S<fVJT)+~SXoxnvnvy_zqN=o0UFJi6W{_V;Rv;d4YWiARV}
z_Ut2YCWKM!5uMws`Ns6}5-VZlF}e*2YxJYg2}s=G<`*I7<Dfdq12J2G|A^8Klq;V}
z+i>eDg+(}fV-n<DI_#v6MoTj=kj^*iAUr7EECDAf_4*m<aZdTfts90>Dn>Ml_&*Dx
znhr|v%lB(vpOO4n@V0^|wkv^lk_RsWmxW}o-z_3>gVUx_Y4e+g(b?*tT<ocn6I#n~
z<_$r_yfsdThTjLdA_TkEA%wWra~zJx!MGU1vAkP-*fV^6&a+R6n^=rmn-wpfG7g6g
zP6vob;js3p*!xxm_J!V``}5+`Zg_AG5wsJJ%n5O>zAM(}63RjEsmMqBg-ljY+Y=4-
zYj8Qy=v4B{fbef<1{T0=VO+>fw6*^X>?(c~JxNglj61X1N=<S3Tv9~nz%IQ?^_X>*
z>sC<he|O3SH-!$3;(-;iTaGBVXjC(<9<Z;&i@JUHzAGaCT1Tl6KQsGk>S+R;>GEaH
z#cX!KXXY}2)MUi?wsq@QZuWWw&|RBA-P|-tyR7;-wpH8i%8L(EO~N~cXD=tSUbL)~
z!o8B6*rR-Zlq7F43bz>X-!itljYp@!ZOsvyQQKJB1>BFgEcJa~+=v`_Xi<}KaCART
zQRv_i<r{^oxa;_%O%DiF3^6J0X6V=5A?RVk2#D>~^fW?8EcZ|tDb4v&Na2=_visez
z4uv`D5#2vRFSHK45bmEQJr*20BMqD0dHvOm!#Xb99A{;E=ab@rU<Qho{j*%RXj!G~
zt%%m3P+H05jBaoYzYZqX7^ok8ERA<v91-%qcceRE(==FX?JxWHcV3n8YT)IjzG&cw
zTt?8ZAC_@DQHD$JzPWyX{{6|Hi)Al_lj>l34E68*`#Dy>$L63mn$0nu*>ML{NV)Js
z$phA_II7-^-$J|8Nga*KuR!3R{C&$F9zH_tm+b98*D<+(_1YOUuXbQmwTyGTpFmR~
zNAsjQ{`vX<wLZ31pi4>4?Ps11!i`Etk8tbV-;||}uJ6pDf;zxs4OqBjgO0sA-Hn|H
z`pb(jRkrb)!Q7syUo|(YwT95#@qIUajU5%hR%`#=+%BWo2hm_!9~70NSvi*t6IcSk
zEtpb+<|-zEob-g;7s2|pEpQJO_vq!{2i?eP9TB{MJRFQ7hz@m0ic*5zFU=|fg<Q?W
zR}mnz*s)LDaMb_TP|Fh$a_@@hnPfH(6!1X-83~3zioHOznk0}U;ECA}Cj=#H5Q1Oa
zARxiLU2tYAHa5dv#P_Mbv`cJ6JsL<YiU%70Bga!8oG&clY^3*FA>u&>UNYF|=F{Bg
zARdw-tNNCaS-8h*X}d4*?KRNz%mYf~$>TrvN?<M`ic%U0q~gW&rAXXP9#SGHzLyx{
zGOJC|<mFZQ;9FoCppc*o{GNu_F}|H^k@$Krk1wwd_s-xjy8LD^f=eQ(dwv(;Us|;D
z`l|+*b0VFl)lo&CICLXUHa<;FLT8{?V_jw|>vC|No=0riKy8vyqA~*@?NDM7$ljaX
zNl|=dWivA}?H05DZy`7(SKCtG@AP|uB_{5TgAcQcqh1APQ~Z6>qg2Xt{mc1^)r_w}
zZKXT6&R=aHJ+_jIhz2n>py>!*oHZYnqo^g;9*?*H9ud%-ndM(O`+u1Fd{*QKJ8U)X
z6<<Hl-!7GKpr=F70O@@46f}O8SXoj{?z*vMUw^P8YJ+8+oQ0Hpr4t9d_tYIfP%3{M
zwQcjF1o0uXoBQ%c!52q7NXhX(hS=W;o6K?Y`<mdh9!4iy5Vg`%3MEcs0WmvFYcU)Y
zV~ff3=}3;gk7|;@-pyKv)a^2CH2*lbl=Vpm0VT<b*ze48w|(3(=6?yF%Hm|{jrTrL
z!&a%Ktw^+H%j0g}9OD0?M$N3?<l}GWa6M-XXhEa-R5nmf<(!sTEN7{RPpzG{?WNay
z;=&!`ohE5RYh0Pf6H3Jff$6U=r%m@(X&&gc=;z!G#_8D6s`}(ar&J3u!&hc-u9-M9
z6s;i)#GC+66kYu#MW<=UQ)boMy(J&`o|i*VuB2aIWo)nO6iUaa-#MQsxBdu&=B@R4
zVI1%II!wWKt~&WGfWO2<KM<gFFXa|WG(2@GGC_ysbo4%-())%;Te)AS)LVQnik);b
z^ccGbHM0PbGN6r<Hjb8C1y%1Z_seLedIm=gOpk85WUStJ)};RYubppa`rS?EC>6dh
z+pqU+I!p5pzTByhJoS3P<5*=#a-A&7%)jX%^;DfHtLJsbtrs&!YHvI6FD;?0|A(r#
z{%h*-|FE|+z-<f|qkA-r8r?EbX{D4#Nu>ou0YMnu-61V4jf4oJQzR5Al@bYq5JW(C
z&-ds4J|6e|51jM!dA_c5T^=9gOUz!q5S|ZEyUwaxb~?Q9y{)!P@&_bVarpV&H33&Q
z&qrz+3-hxPY2JU9-L5WTs~V}}_3)lsz+mT_<9He_{CCq=Jd1YTII|Q6My{z%T!%lN
zrWym5HYnZ1J^2J+rVbi~K)}c#8<|`WEcyQLOY|M5Ll!p<%oIQyOiKYWk9%T^9$b8u
ztQ337P4GcMJjf83y0KrckK))kEVS=;>LIa5C2mi*WkZH0Lc)nY&s!+A?!JFKZ`E_?
z?5y(5OG0Vd#{NM{d(C%qE#+kk5*NEX{eykvT;M15>1Y3f8d3kpZ$o(fwdz#wMigEB
zq<A@?w=w8@q}Kd9Fp-JIaP^2@`|;;m`>x3m(H%*MD!EWtz*Ss9Yy}CleeGGWxJ-JW
zp9;Tq%6}cQ25r0`jf?gw+y8;KLD_G6eorU&{0x)`;^EOKpCe_+q<cZE{>1adPk*y|
ziGSwVR*(7Vh$lrP(ALf7Esqy?>VrYZ1~2sg$YAUDL?Vb84{Qg1mB&-~<6roN{B95V
z6OE@n#UoGIw%=c+%?V@&U1rb@fuV{246(JTq38~nSQrqu2CiZXBX!6yRY6Q0Vd61i
zyyjtor(rVY;l1*qJ9gnp9pNhfAEoV8^9aq+AcYuCt&Rx&g@_xc5r)i>#tM-nr7b!q
zV%q8dXGgGCh+2w{+*6No&WUpEh;m<u@;r_5Qo!G3j`saOr7g*hV4@JsO_CNMgGaN$
zGVhflPuX~EpLkyab0ammgaS!+*fewC@4ZK{G4$*>4sX9$@zhvtJMi^;_=r)exDHt1
zHmZ0#0>9v2X6|3z@ua{xFjXOzv;@U^#Z|P&i7?08lbi+n@dW4K7x%!35#l2PG@)cP
z+LZL$$srh%0&p67c3uK=Vfi-zuy9J^lDRc;jeTi^a!^xsZGn%u>fw+7Vr#Fq{NN-n
zY>MtHa({8dq)W~I-tx)X-oOb|Esr^L^%VWn9CN<F{>M3ji-C#=^;a=UnTbwL`cGYu
zLF!+k6TY1$xwNGm3k6>KjeTbhz#Sz8ut~4Jq{M<!QNJ(K8K#Z`VBX(s3mu7z%*ml^
zVBvl6*eO;*$BN_#;N4H>P2mz}Nn#}7!}#>{)iiNJBDr6fU~wV|7TzHFlobIePr~>@
z^qXf9kxtBlNRCWxn8~l$NJHST-3sZIfWcjpsW$qkK!hy{@jK)O+_vZS4HFfB`8`+X
z;6Y|>N@eSK2L}A+hqycncj1k+U=T*8QJZJOX;X$$b2yrE=9sdZ?&Su|q&~_Gpuy!X
zXJ-pcr<2qLKf>g1Zf0jsTRnA=J{wKFAHXAKo8^<qM1!_FiwZ0j&MRjTgL>t)y5wW4
zv)p%l#6S=MG(;Sq*_LY&(0BhiP*8_euI7U<HbF`I|9YgbdMiwN6-dhgo^pr9q-EM}
zM@wLt_4<J!CMsz{%1ki`i=}~<Y6zoqlZ$ijtrtEnDf0e8`)mO-Q28+0B?(FH|4or$
z&p$aO7k(0(O}Ru(RTK7?g$e?vrR{ohiIo`0l9$`isZ6X66WCGWUc`}OR6ROVo1%;M
zg^M`ikOKRh?ZP?T+@*QAQoBV!B2UTEtSG=62rmIifO7KiWmwlMP<jDHOOc{}{<|5D
z-Pv%8_NRGx0Ry8_YOTUM3ej9hZ7C_~dS7uUI!L`5B+bmsaR6C6Wpbj^`nn&Z$5R2v
zRk%Ycea01;!tykwAc9byD)~owATYaKns_+Ka~Fl&@<-u4DY0N3x{7GJN*zDBKPkS7
z)m)*EW$wh4(%>s|eX6r&j8hjewyc#5m7v&Nk3WW0R!rdT9jS`PG5;ocFKEPLi^q8x
zg}eU6<He=B9_5%vm2vXb<HSb^yB@xe^`WaZD6g2hrrJMVb?HW;DrGfJKD7-44+mUX
z`o`sY<7)IYp8x24{$7bYBChsHKU<p|gS0JGm2mZ+>F2;=ZC+y)=4!()7@Oykr*oX>
zu^h{K7oVO+y(hftOCEFw6Sikr3Yuv+m(!BhVxLFHAeMQxmds|*z)^F(V3;4_ntb9R
z<$2!Kjo4>43en<N`*hm8#m|6QKRAe6a6y-;MG-cSP6UC`JZO3uER8rD(}$UsYcm{Y
zr=Y`M5GgOk*I3i%O%-|*Hozl*$P2!v3}IYNIZtu8$;PM=3A{1nX9R;Uoj^oIcsH_a
zq>*wsJx87idJLAxghnwME7RX}OM@3T+XwQWncrC&%E?2vYZ|q68@10pY)`Fj7nKvg
zZpvk=NAIv_Y#vzpdRpgl7Pd#5-j)<IL${C0dOX-{f56u9Xt@LF+JVJ)TrKIa6X`N@
zdyz81@8m}BeBPW9=&pq65Ls?+UcNs^-sWdatEg;)nQaB>0vblv8ljkYW%|+y&MSTN
zwdd^tsofEQ41@75-y<=FlpP@5^jEoHwM?e(<K6G(LQZaVIVyMD3+%beCZ|x_a<IVq
zQWh(DhOJiS<}`XWYz5txYFlzM@jU@P);9i>>s>s6$OSe99oxB`!RaRW8I-LWYyrkJ
zz`)hmZ;VJ~w0reJ{aH3L%}lr1+Bs?pmv$!e;$Moa(L4T(lg|+Gg(t)#0K8EQlR}r%
zhPlM+fIr{#6iJX0U*T2xJW$L^`#%XmPk{8RyHw00gTE{RRPi+_r0oAXWFOw?kMAd_
zkVs+MU`~90B#9KpiVLlVl9q1|Qip6BPi;#T$}lMQwXV8a{J^0A=QL#g^;)-MzfiaL
zRrkR!L(jyG{%eq}jO2Rt3m3p;3<oK(qj~?9Z>3nT;n<qtJ3%_u)@}I-^nK{j{97zy
zc<J~~5GPXhyw58&rb6e-pi#w0Y=TGd%ILTK(Ng_UX``_>;r}vZ1>MA)LeT_|0@!^7
zv#QESvGKU5*Lb!5MEu2wHP49J*DOQPA)_m_i$b-^`Ykc*w0>*Nq~-fJuZVNqSo-9|
zl(KUF*P;IHiR~bUwV*qj7s#lD(V#k+90GVz+no=@@~O7%&6TmNpotXGv4yQ+uY&2}
z?&<2#ffaqorJywF3pOhEsa(Y5Y8`0Z`c0zOo4^(QA7JoB0q_?w4NMZq^atdE&>9p)
zW>L-0+h(aJ+hbN;RU{4WUV-ck(S=eVIoyn8aO~14QoP=`y?*wg>mu(8q4wvHAx(0e
z>S+)`b}Tk~4@E^UX&;Y%$Nf@yFbX}mMr&gB?sa2{fB3xF43Qa?@?gg#kLD>is0FH|
z3KsBs@BgRt0|hcf(rl_YR!;gI)RIdIYk$5r50V7DuG9KFU^Ak6HrNEEsaeSETWA2k
z;})3@eIQfJ%Pw7u=vIIKVN_j+PGIS7rQ%-AohS2uv===W7jkSQ^S&Vqo)$lOqEqq*
zqC|xZu|YP|B}Lf!h|e+7@4Xw`qILf^Z^fbD9|dw&E#dH$!uTvZG*5NDT2`^ZO{)g=
zt}ne}gNs`gX;zoT;UHDW>HK-CV(H~<B>a_!oG5s~bL?I12VOG|xq!s?$KEr+lKIPt
z%pYDYxY2%;!hUpc__#CdeewLw^I8MVL~RrT_WQ~E^XtU9bo;q+P5WFcF0P8@fSINm
ztT;T{78;kS_d4QwA`d4h!^RtsI0QH#l1Hveq!qd9QekfiD|HrB>N`|*iZeL{SOEK;
z2BeJRJw-wHV|m`2&9ZVjf)!Dp6`SRvmt13_XfZ!G_-|5C^8rlOM!Me-C9CVnpbf(~
z{vZY_og^iPzv~W3Sl*1S$jsv9(!03L&EgB5OxvZSD?t306^#ceZc`|a+gtaOw)zGL
zk3MdKcTwy7fW>9i2&|gpcj(=zjW-WA_u5#W9ZfT?(ds{7e02>{<RCas*ydW&U;*!@
z3Bba8xP4v&!J73F$V^^jo``rR@ciRD$d@PmM6=|}YJI^21%*2ByBiRm&qg=gDXH0O
zJr$qV8`uTQLgn`U>;s$;AEjTF-T4cbNRb*HLS&T7j9>oj%fL7V>-!Z8B)ij678jBR
z;<_k${W^fkU%*i2-{5;qtWY3$T}vT4G1%#F1YyVKC^5I1<z2Y@j#cK5Q5aoMsEc2c
zt!yS7BK3`q<x}1YOy=!h<7!X!?Je--E(>f6Xu}lBf_#8dJ3#NLOEePvHV;a?_TwH=
z!q@j2ikrUR^@F$_-;A`y)*JB`bv~j#)COZ?kZ+$^3v#xqJEtG06w%2Vu;J90H12$$
zGx`Zgsc?t%VBQ?2-R^TfK7!pZiTz2u$134mdgG_K?cuYYDQzxBKH`Zcmy3tmu`4aS
zeS^fg1L}`K2oRt#4Muo@E&@)TSgD%Rd=Vnv6`?s1L;ilnhQ>k4x5pY73t6p+UoH7j
zk9*lN-=IQ>08g|bBX)-J<?lN6kKzXjqKEXYyuF%nYozNW4|$Qs3lOGwg2@Uhn#IM=
z{(<NG2k1`3gHzzoDd%J(vd!=*jXu+(P)`+by}bKxiGiFFBg}(72D>KOe9+%ZQWA|`
zGF-hI9L9PvI8<c`J75GYZ~Eg_3k&RlW>&GetzEpBrvHJbKc#^RQ2bkEqhn~o1*OB2
z1Z0xJQEH576#pAziF8uD;iNS-iL}OM*MzGHW|QXFa52%^@J1}Qs)n@3)<}h=sr5(3
z#KtG4rDSJhrRC<6W?hQ1XW^CAFKYic2&a+e;M&#~!z0MJq|aZn1yf&es(r8HNqg0s
zMzcln*8&xzLnmlZoOi3s_w`$G&!ke0az-RtJ*-chmMvqgkdK+4;`J%mQ9Fe~D7-x8
zlDA>!y_$kClarX+gZI~l)dz$<Q&fW}g0~-(6Cx>}ikZz+W%;HIy1<A}Uv^+Ouy!1w
zVf4StYTt9o<g=P%PK-x_?ez#bYkjG4DNZ9&3@<_GtIfy>yOwCv(CLcCn;EtIF2mLk
zVavK%B3paY#z+dUUZH+x^XG{d3FyViPH7ZGFc>Xs8%poYET%V*@KR%VTTj$*<d35J
zHu~KQuZeSSSY$$TWCyvK6HVB2hKNh=80N9d0~H*1*n}h<TJ5YjJkoDF?|rVBrPJm!
zh_jwOyw+?M+4ELI^7p|Pg9la;)vx;B&DAp1&#&NLRA`PJh4Jnz{5PuF7GMT!j0<@W
zo~9IHe$s9i@=EDwJbiePyR{;h=p-2H`8826Hlo^FP{;e&e{=LslFW9@O$Msg>8SG$
zBPr2;RWH#dC0T3n-pW#`TG6Dy6_<jgBd}01+N+)F2vA*$y7kBBX(hZ2Q$8gY*czTv
zBDnQcm5tkMW~7<r89B>%3MH*$Iru=h(=y#alZ9WDQM78y&VFd#TtYZUV<6M}xlXpt
zicrln8~z0uD5AfWY(jzK*7&BKP{c8Ha!w>>x2inLb+=l~Wh?id&R<-AOvS_2JkiaF
zYB+#XoTb&PQLuG0aoRGeeKcTPwGNSX-n~=b{>M<=bE^I@8NM~c3Y77p7e9sAUmID?
z=D5`YDxG?Li@K?8{R<S)lPUtMud$vmeqk=ABjSuH41{%OkM2QVu`f<I_4Ilw#!#;Q
zo#vKP4a=cwIU)R{F(I!(_0a^^7%#OP*vFUG{h&sq_oOlFYxh$sZ(`*)dTPChO*J<W
zTXoqfU*FKY)zEfpR9}42gz;K(hV`dK)Ryrrp9!&#GhAo*qVbm+*zX&28sh|w3pgFm
z@PsJcoS=@~`!4)$pM9%7O>qe|)78W7n@DlhgYY)u<}1f#miT8U120bF>V+p+L06_6
z$GsXp;$PfkYS0CDvBFA!4_2jl@RL(MUo`EhR+H{1g*#M5iJxtkXM5Jv)cQQq6QRSU
z^iig=5&9AAqWd@s=}lG0H|BDjsKTijHXP1Ke@CU^<mz<J;^6lw^&hW~zMu2_A5RP!
zXj$>V!|&V%F3X=ZPRCx7B1Ga5QjXYAs05z~Jb6Wf>1EVEo|p(Z>1Ov6`A;T*Z_-ns
zc^qzt7yP;gHt4=f|Eu=RhxzwCzlIu&TWUXi^T|g1Clj#!w1xn6KWTdNWIz2ATFO~@
zMJ$GvldJ?PDHBQsefBU(Nd520``(NvF{&RQ^p%jE0?aFVceipw5$44JV-5(C#{3B*
z6w^<s6c))Aw1%)}))<(Xj^ZJ#p?#~={yrRvrg9r^yFv2bGd5ypTc}X{q1TvLu}Min
zpMK8@Di%lR#AW-lsgI5hNCzK81?w)2yQ^zUcfIB@Xdz<|tLpz&U<)it(}p$*Fp}TE
zhf=FJGXEhPpm{W738F`XnOcYC>YJ0>jHdPz{JM$5UlZ99zuL{MYNqH^G#WqabQEYh
z8otV(6!DRFjwa(?JnA-2PSFMU68i(aEXi@kq*5}tQpuGHArQs4a1e!0s=zJlDX|%Q
zV|ZNle*%Gk2e2xAtv8RCjtVQT*z8_@z-DuSrx5VM3v1%S>&*=uc>7qS8~odof}V-w
z`SjtlzVO&33YB2Yw>_}q`kFY<BN9cdV&NsPYfWGjh>Rh>&<RJa?15KFu@J_6fPOOB
z?pQCb{e&T}z7a>F4qoqd&jQ1#QDuig+p;@v;Z`X(ZLr6}*FEy6!dNq`1)*hX7KFM=
zK&(Rg`3{cKQnk+YT_uit#|)mCSU66kuexHy=iZ$SYOlcuKG3)Q-xP_*U(u-+E5*!J
zCmq*VE7j`Hof*D38+ooqwR`>6yjV)qKouiyS5ziop_!*ugoT4v&jzk1eSQ6sAUP{v
z<cWF1)p<GB<2Z-UdGusB#`>3hvuG%rY0XKCh_KK-N`=J?AE8YCCUQ@E!Nyy~h&GXH
zVtGzwR+jNfKT9m!bYv_2t;XPK%H6Vcyr%FKpGSO!I-SqVSY(VU1&#oz)5@2B-{uUt
zy!RHhS%es)twI3-#;X?bJSf*`R0f^zseWS^)8y*Nw)Dg7Mh<yS!>JF=b$!xd+V#v$
z%LHLTfh2No6MFn@rCT{SiF}-EFG;{KmD&~;eMh4hqnADW!2ozA9y{S`ZO5)GFqArW
z5NA*aXGFS@^-AK&G*lcoKbeo}fSaq31be35j^P!ww{?~%i*WMP#Ib4<#8Uq<NObn*
z<wE<+clvh`4Zx&#iR9H`cO{{@q4Cn%_)9{Bd+;h|9@Go+Od>lI8S?R+Clz?ruV1(R
zfwonT_iNCJcGM<kv#B#WaBKX|jWP`QH{G36m4Be^k|d`P7=-jC*%8j(ZIy)9-TStt
zr)E3fa#yC#@AclSPTs9onwihSzqxG15y;hIB%885MCtv}5H7D!gzn^5S1Yz#H57!J
zhS%Rb1J9RNsfqGC!5>(>4Wb~6vVN*`Xn?T*B)0qLp}!$X+0Cx>@znGeg+9KGYV-UP
zh^B*Z>7%nxZPF^#prfB@$}1v}FiDl%F(`QBAcQSQn&C~yu>90PQqk^O-ciS>){Vn7
zt;a=|<U7aBrVg{dux*MbcTV2BaTtG;zNPS{bILF24J?Q-srk8cI{JpM{c`uVwgJhG
z5S&k6z6vt*>*~t6aa?0%<EwS&giP0PkNjToYkMHj`YO_A9ET?B3IA0^Zy5F>8^4sv
z9cZEe%I?Vi!03BFjyxu4x8cE+?>b|F#wSzz&;34#+7}_#*r-k`a_}I;G#(~H00I8u
z6P_W;@<hfT(7yDfZ=TWTs%$j0)9p4tlLY>}6RAJrE3qMS9cct^;?9@$SZ^_6_c6`i
zi)gCQ<ed8wHR%0N2nz!s;MJ!z(Jw7;V&B7j2L3s;9_Fi7A%j8o!P5d*$O~4<$O_J!
zYCdJq@pVdV8pQp6coyFE>+E-b)8E*sH;G9dpVk;WU>9NzAzGE6Xqi#~(c*wKL$H7$
z;G7NSw*}bKojx%I5Bi4enJIm|6g+k{XxPkvX!e+9^hw4G(&rx@Vs1~D0<`<Vn9Tw8
z_oz|%C!*#-7$F#P)mKL7q4!MK{jGn)p-WhJP6<e9G+fF&T&9C{v@&QHh)~WE;L#@H
zuhK@$mPBYUv!G+1EPV;hwgdBd0VW+nLRi370ccnY&qhbiriO`hz`vBkEd;@C-hgYL
zy3?9(k`XJ(JuoVFy=WHT!WrKHM1Qx#eVx(zj2Iz%%IH&ObdJlnFHj!*V|&S%_|V9V
zrkGvzkaW9P`mos9X4FJhOl@)OAt4sG5sMIr%?XXe`}<o<ac4B$afvZtbN+u_s2+#n
zjgZ(KDf5a^{&FEDt2t4>oamo?ap^+ATvfuY&hZ^W9MHyiC%b5Wq3ccuAk~NZ`ApRB
zs-ks_16waCk27m8R>4Vbf(#yrI6-y6S^GnDl0b110s>yG0@gc-(N9hxAysBO9ZA{K
z3GF%YUlx*Aq*D&IlT(^PgN^)>{V}cDfh0b;4$7@3%lp|pYF{Y1(KuoL^iD|DLkTbX
zMFLPpK`ZSQVnhMK(z2csfC5d`Us+nARdB&EDp?&2(aY~8gDXrp#M_9qdx2R#H=!ad
zfuIn4xf9yA;Gqbk)vV5_l*`EB&a7RazYg;xUXl`Tf~T11+e;>hNrwKEN%+*7CLN10
zSd6d8%KY7*Y10?)q==={(GW0XT{^vs5zeM)&X6?8{`-K3r<z22*o&=Z`|Xf6-<<F<
zDq&oRxFYsfTFwSKhr1$^f*_LS0?L5pq<7|=AA<Xth#`%rjLaFq=Bo-ic6YXIbLdNR
zk{GhzN~gN{!?b>ZmmN4eOK}Ggpke`%HZna8%SyzFORq}b(_t4!1$I|s;rsbNX7gVM
zD6}?%$^&3;)t%q}zROPm{<9y_8U|__31+AOp$u=3*2~G}f}U#o0cYne|L_mhqFst{
zFK<0HKovO&X=<?`UoIAGSQNIWQLR~6(Sj0NH45$j^Q&%v3TIQF3dI!lRTmkK6}7Jy
zSx^+8^Asn07w*8GPPxD@VZgESMdv_iNQIL~T7jAr<QEU+&EXQKs*)dJCE#5y$P#Mv
zH!HRay;==l3BYFZm<AXX+_td(7!HzCB8D6*I&8a8D({waQe^cDKe;|rCUquG?n<ey
z3(b_$_&WAPpa#x)#%#nYB^g(S!<10q%2%*pP1cNCyJ3kwIX@J6O?4}JXA6EYXeR)a
zlg&0^FN&$)#WKxGp(adAMg<$6d7@oG_+6;yZlx$~^~;DVTGP~D!sXZK)M-!3+cl~b
z#{IVVgyYJp(^iF&U90l~q<t~4mL0BeFJE!5fcu*9<e!1yez5K{9T&^T9I?z2iX8RY
zmw%xFUUdkzua+j0ee#T9%r2M)?@qgjuK@W4AIRtZ7AfyD7W9%p;hvMCRy%%Frn2>S
zcECb-I1HdiB2CnaYq$FDkjoMwn}>Dv$BKSsK%oYQJ#D>>WIeGG)WO<NF5`hFhcqo9
z)^+PMH5!SIjf7JpipbpCCE`DJ84e$td{Ig|FTLV?i)$T+`>xG;K+gExSAKE45xm!U
z)u@q;k`-#zB<RzGgEvUJ)gSLR9kDi@kQzsr=9VuEAIVx?vbL7KW02W@{v@J~DDzO{
zWjY@gwI_pON^7#AZ8@D~I4x<h?Q2QGx1p?PP0k^=*r=Ij8+WvjE679^uiJ^>EYC=;
zEv=?^10s~T2HQ1p``WgEy_V@qSx(G#bX%C4`4-OkROpxH{ADlti?6VHGv9P=Rkdnp
zhznDAi6$DpxEII`Iw!Wd#YcKlw%^t5xXxXr<l0rs8w4lZd5+D+q=+N|YDN9etIqWW
ztqKmDV6FK#Lm-qToi2(QoUa0NZ6xX4-EMqyvc6)}J(*vvdE5zzAc|V+xu)wgU$*n6
zy%eT=K^(P^j;cw*zMKf`HmvD#h1%9Sz~ubk4ZCT>2cRbPyI(9=`Bq^E5$>FU;GTVI
z8KgBws-=z{&5ibAjm<m9dze#7?woSMnIg^qR@PY|*x9+?(Pqq%BMm<q+|CP8ECZo0
zK+qHmj10UtT1OlU5!4oFqNNrk0Nr80j|vbip#d=f%tgT(ku<QNUV4ndDVUQhH6u^4
zpTC=^%*@wtNC|PI=tFfIx3f5DyZ7s{_a423${_nF(L;zM5Xv?;2{-ULU_ewwO<2GF
z-U@vla%eT;KOsXSiX>!EEaRgXel%NY-)NX}t8UP2aL@w5YV~#4gdJ)3Rn^gbKp|mR
zq-0o3R9X2eNVSfg3Ngq+H$p;SAL=XYvmwJT1}H_-IWGDXuMkAk!I#``s2tL0_5D*a
zI6Hvi-G}cKjM~IYCwKR!T2CZ?9fyM^nh{7I_Ln+!8n`j=jZ07XaAM_FjJB|0d;L-C
zuR~@sW0@+@p6=l^clM0#n_(ibi~KVGvvF?O$%E-(n~P!C&k+n+=K#9%;}LP}`pR9U
zudf#i=$EbG1kp)nlSw}Jq1OO-ya1T|I;myJxZ$q%2u@2$h2W;RoHKY?00a@kY9#pp
z?#I_doNB|pUfL}OzplQ*f)inVibIzGoT^YMf+O92?|>*l@OiHAH^s5;Nx|kB*;i1d
z4>QwNQQt)oocsN)=mFn|*N;L+cwdbq&CnXQ3Q^|Is6L;4u|J(v+LMZ+k<0G3H#T~>
zCO$AmwI}O<U7fvs@D}eM@EJ58P-8jG#436~qc1mqu8~=R%cL`r8kYk)ooOaR`G(Km
z(%AwLHVY3ItAos#9{a<;k0{uE;P}W3$*$xZpGO5H(g$;3Pxs%w9U!7U+YV-nr5`sh
z2EgAJm5K_KRX$dLXBtyGQ_-FfP`Zbh4|MjeVRe_5=KY?8l!z&oT~Cd%UpkCf%BWg6
znp;xaU-DRv`LS9#cZvGN^F_k9ni^RqRI&R>@qE`eF5|_Fj5&<Sy%qik@^ycN$6pD}
zZGI@ZEBIjUy>@?XVrOJXK(0(N^vy-)$~~!mkM4fL!lv!@_}42|7SiS&Ag4dnQ8o*5
zvy7i!e{ABIZT+x3{<EW-_6=DQmxbg9)!Bs<yOrJ7tCZYpxgMZ>G035Z_^}7*mklGu
z?U<c+(~jTP`A|ruCX#5%Y<5jZ6t}$L0OV~7g+E=5rm7at!+E?SZiG*7<jHL4WUlxQ
zZp5u^gd464246Gu1R0Afn-zX;(=rw_3^d;OnAdC~KCsqqxVfw=u3or$S~8GvI_Kxj
zto>KjXv#uNobk&bRJ7?GW*uy|U@vIPBT+2;Rm?&91Yq*u<YNJ3(8l(COc@Nb>t@@s
zfiU4!VPE??&iSA+!yBTjR;q{ZgV&id9l+nbcfYNPI|ef~^3!u_?wr+#XZuhN?cOX7
zhW8`4v$5N6AHY!W=!?Efb&79y-d>ZOy<IufB7-y=y1MJ`&Lcd1dljj`=M@YkRAo;G
z^?gSU^z03N-y5xWyx;TnNP1T#m!6LwXeiX5tLGdP5C1qv+z|_7RD7n7JD_<}YNe|#
zDj*Hts!y-1r8%9_qip&%b?{!aQTjf8VrI*_W%?(-IsS<0+dG$2H+wYd|5k8no5TjQ
zRR!;wN$qz<UY+UDXiwtXzu-C4Z~u{WuzQ1LQ~WTMPgyW|AO53EVtOC;G%tp_pawMS
zxO5a|zE>H@EU}OIeiJ^V+!JlL%k>F}G5+S~!KOu1Emiz;Es2@bmy7?n9c+B8LsLyB
z3x`Q4QUWJt5+~vK6LU2v-~LH!4shRKnSyIK<`tZw0d8DGwQz&gfaZ8H39wSh)@OL9
znf%kG_vbkGPhuNM6E=|K<@@EY*{CUezsuD1w*$8#k@eG{X;R2&<I|8As41U4;YE#_
z^yb;U=2?54^ubcGpAWvTThPS9ZrB~RuNlrV)gSDxi)0=FOS@;R+=y%mtFdXeVb8P%
zg9}}!7b6m|y>VF)<MV@|uL}I<E1-qiD<a+qvCN~@Y!F1`!>>BRh3=5)K*j4ZiSH&~
zz;9`Ibs+nWyIqEA8ez+Swx=(+1={t-RMu#qf)wH5G-`AdQH-%_@!|ik$2KAymH40j
zAcEwt%`eYRNz2HJiit~zm(I#oBjL9+#iijS`RyytMCxb#6m+DTY*K`vbiR;U1f{T=
z8YxDWUzwgcJ^PkaSRKp%XUrYQC)U>QwdC`ty>HC_M#2B4nKyqeUu^F0oN&kW+DB9z
zFSM6#a#+6CEflq+2>!rI@0t-x;%YCNk&~<ZK3ghTrKtv+9X?;Qg-?xUH~G`@Z<aSU
zl0L8)%5A&KT@IK^)umkib}J@*R$vBGi5jYJq=y#E#%i`kPVl@fQ7D>9$YZd)u0ai(
zA+5k#<JV^>g4qUJ<_)sxZ?$@LuGV6oM$}WM=|VRxl7F1_ow||5t_{SbGW#3Z)4etj
zzlqDy4_Gg@zrTj@qMdz91AEdQkRc>8@ANVon{K)FT?<HOzDyZU^>_}(I^c+-r))|$
zfs|bC5Iy%x31^g2G0(xOYZCP~IM3QnYb_Tp8w=k?o`d_!zXu?BP3l!*NR&;7YH)~x
z_Ju!`?lql8FKn@5V=P-<Vuvl;D_ITdGp0=5M(D@>Ab<vFh&CE*!g~kvg^oXlMkWJx
zXzf4op9+r@JP7}(MH}v=h~$ucTOt<|+TS5x=(Ox)dONB-MIg(CLd8E;>3QpHNih0$
zGdDL6pjE1+7Mw$qoY#t4L;uVm=S3v4U<cIxT074^EJs)rW(CeTlccuKGB$&MJym#m
zc{pLf!h0LrsVxG2@#u9r#k9j4{t}h;rwSAu+MLm@{TAc7=<!bKLL=jA(9Ce_*v~Y!
ztgROJyr{ym^|D!AaYTzYCs#tnF##KX&EVGWv?BbU;?>mf3|mYMrb;)<y)d%NShTq?
z&n(mUHsDg-1Ke_IXkDtIcTM<yQf)Di63fF46JIE<8oIb^Xd|_?DcIZ_{8PaCN0s4Z
zXas$hxjhAGPvA~&qYPJ<0lUt^r3e;bIamedgha!2^9C$r`4J7b(CDhM;{ev0*RQ`0
z{~i7Ccq=w!;8h@rQofLd)V9M{1Qd7&0--RvK)wThhHUu;?Ds?I>~Z0C(H~gJJG1?h
ztXY#yBNsL*>uppoZSx<ARCMe7*Aw$ASLhxazpd`uKk;l+e{|~j_X<g17%kMAdNu!M
z*60Z<!Jas8PG^01(@+gj=1iAX>MWub{;e{*Ac3PmJ0QGmQ$y8NLw4vV4tt2;MgZz$
zDO&ra@hE=K={?@{70;Xe0*<}+VU!yIuJ_sS4VC>X&tdnpXnanak*Qw$kAiOpw=DXW
z(fOB$x6GEW$qM%PZ&0Xk{@%=F^X;mNNWsh=_BT#Hswf}MqW6+<T=l5XSAN=kT<q8z
z`?LJ(OP$_uyg};e5KYlvn)kefp0fqFH&U(*%RwT$5ec5SUj`1h-*oXKJXy*g?^722
zvCeMLf3?Bxw3yg6|1jqybrp4hiC2JY#MrMo(?Rh@#G5ji?LySIwn65FUYqKBoAoLl
zj|oJ?1w+5_bUENTQ1T&on&BBeAK4uiuxi{-`IWvg@&XY(9mYl+uWDtaxPCs^Hl<M@
zOe2B<v~CpvrKLL5VetrCXV59Rrr~v9%0}iOH5e0{#(jX&rC+`ur=aORI4z_@r%8s+
z8Zgc<VoKEIMZ7=N=y~NGp`OoMH{Eyj^4ft6*QA4RHxw>+Z5F9&jZ?p=-Ol!X+V6p-
z4T@_~6G!WvO2y{%gSj+T?Y5(+cuvkY&rFr%$>t0SUPn>Z*!VQ|LsLC>`=SNMhGr!8
zM#T9C9ytx@m5jm6dqMM7AB|q78Kv<|BL##_U|MBWp0v{u&qVdivMi|wa<;41umwad
zT2WnTONog1Bim^Pno)fCYsez@#Cb}6Ivsg3SP5C*q0=bXH#+VX<hEbzllyZ-3qQW6
zao_?XFGmNg`7(NI_f61dMic?`(O*yfdL6dX>1h(RuYTIW`GaP8=*o-j5&KDW`XGSC
zzwf0v7D6pb>IdbhAKsldL6onC{{g)P?iK@-3h%1bj0k*EATUBGro1g@`BLmSxXiPy
zN-L5ZQRN!SBooPXKYarG7L#zN(N^)K4h1-(!x8#8GKriLcFDVghp`%9*4$xfh-2s_
za~ydP8Kt>H325u0A2KO?Lr|uoCGB-vJ!vBJ^xriph9B!;R|#ZNI5T3L07Hato5<~B
zCFs;&nJPmoO=m4DORDR(kjxHYZqgxu@E1s~<Xdu)Ukm%nazc(>U0ovmsQQ0+vUs1V
zv9)Pi9)E<JD%&#4WLB$4Cc)zYoBYQ!)5buKJZ-#xSU;y+Q>x|H`HV-g-})cXSs!C?
zA^Y>NLD|}8W0YU=awiSN`@2J*l>2*&03Rx{-SOvcVP+N`*R17R>SRIJ-7QVeW@q^l
zj~j$|+^i^+J8V8Oi1~+Tn-B0Xx<dbcvt8b^zZ`Yi#AgaODT3ch4r);y7IX6vPP0T@
zxmttGApoRcv&u*RK{|!_Cu;dajJ@qe`7x4@LxR@ceJ9=>pxbWTUY!`_I5O89;E26E
zr!Oh3CM(?=g9m91kpQ7Eh-=h@@l#5h9eXT}XSn6wW>7|#>2Zxf%g$5c<Qh}?<dhmx
z#tQVxIn`J3C2s^>;D_^dxg*7{IR+g8!$$VN?G}29tI<bjv7Kjf$CEtVhPQ+913AXX
z+mvTuD*b8N)dW1n9J7e9C|Z~SY58)#;H^35G}Y<x61w05-BfAkK0=>AJ%PvHAo+zY
zn~NQDJMh^4L~6>-JPQ8RRmfT2C-QC(IZZ{GmK<Ee?|L{nDkap#XE&MA*KJ9K&sS1_
zzpM)yL;vZ;`>r3~JpD~J-}l{Kg|Qa6G1^M55g$3oQ?gRSV_xd6)A!0J^!!OaUCi(O
zopjA><kt(b0&DUm%kK)7|4W_4B$9WURC*_=u`h6$X^#F@_7Tlp;X0l7>oy9Q@-W#T
z_04`@k*nTzR{2XK^ZT81RI6-lMk_^*&ms*9edkhExZYcJY9Vna8PY(;p7zx@pA!45
zD+wl_SJIk4`8>iyp8yQew7r)O8DH>z_~z){)yt;4Z*_hA&a=}du=RJEoFC5LsU>cw
z2bgDLsMz%)8y?eLBKoE?|NZEhebK*s-On0A_QUaVW%HlNgO}SaC%i!y{ML9GaPtw6
zVf*Ps;o5`z4HZAa`!)v1yK`R|W%4(2MBHKIkH@DB_s%9pE?b-S9?bu^pB5Jq55$EW
z732@D%oVFIGVAo;%G5aT96@dBaqp>XKct{(JnouapVHWGAnJ1Cpdc{4?7c^Hf-k(e
zUttkTVX*ge{4@#(__P5f{uYHfoX#9y3<5VuB0w?v^aMQOG^A<+L^UeK%Ph$6AI6y)
z`d~PW9t>uzvf+{e;0_=ZGPFuFYz7G5UJYY1heH-Zt9fxW`yr?pr;+0DJaxQ!jxbIL
z!w^GFjf*fijSvt*T!{(2Q5DJVA8Dq5FO-TTmkCe(B5VbXv=NHDFp0F)W|BCKGCK_|
z?FVH2!<BjPZvOZg`^X(U5kGk)sx&Q1rUNEdb<a1(wG;<V&<3+YV|+#h-xr5`Mg8lL
z<??Xl{MR89P6agQVoOOKG9d&kh4QVe?X!-!x`nv<|8IxPKi<nbPUt6nO-y``IlPOR
z?v+q9sjoKdpAfqpml4C<yB(jmkT9)q4=)H@XC#%v6Q6C9h%gda|1Ybi8<V)MkhE!@
zwB?^fvdr#6rPUe}Kb$76btKhRC9Z5Il2)?&9SIB($)%&<qmks9oc}^=NDL?-WnLW+
zG8Ez5kAeP9L9(Qx6jSLfQkfLM@UawXm(;A7RLVsewz1TFq=}Xx*;O3bH7_EWG=G}t
zVw(8xG%QQHlw!J!MY>!-x`InAoiCZ-V)|7tGDVgQ4aJPB78#lW8QQrSx}6!D3hDwo
z=|W=}#)_FYEiz35GR<={Eju&E{h19H)2&&u>=m;dEwb(gWI5+%y;e}a6OiWmJIjkD
z+eb0m*CP8-Y`Xhm7H1PZW;*+cOOzi=PMBg&ghdW1Lv}wm`_7`c@btd`S#Al47n{qw
zDt<X8Cnq;IuQRt`F}E-_B@UKpx(@Ig0>ZXp;=Z{>oq2VOdG){Z8d>r=Y4a|-@V~JG
zn%X&Pg!8)>^Lu{h6Ico?bn<Ok<RY+!6P5Y>oduJN1yjEZrgc&WcZgZT0jy*hVl%l<
zmpY%WEI$3%89S##X6mEvVDHIUQSd3ZaJRGY>tf*)OQC5P|CiXp?-oTT0Y#^|MGs*`
z(zYi5EPz<ZrjFFh>LQBA#n8NBxKjGXZ}v;qiYZx3P)a5AmL+=&#d>q`3oa$>OC_9V
zC1`lz?dt4zicld#;Yy=o?ygeNrBZRF66PiSKNfJdvr@UoWeRy^$74m(c3>7XAO(VK
z-7HhGEZ2NouDz6h@tfx6y71M!azoZ<#!AopU_}(6phRtOZ*l3(rDwO#p4mRmFl7}S
z@lUX3t#Hn(aP6v~Q><`5tMFp2^jS*tRH}URxY9qba>Kmx@e;8z_^c9-i3?(_im<GT
zdR#>zSryY&m9SJ5P*at}TAij;eH&iA^RJ?p(3k@bhH5=^Me#JoGeN=JUN<RRV&R5)
z&sdTvm}_|Yz~i$urIzqU42ltyvp!l4m8vZ_tmX8sy%JlUcP3n<bdRtbUw;<g6Bk-z
z379{sd!}7ep$nhI0F^a%9ZL7AYih<?p4a9TjkzKxEaTy;*}(x7sm`QVKi9RZ57|j`
zAjN6Xbeza1IZ!YcLFNMhRxoQ2FVX18fsMt6t6>{C*8t+Eip+n6`ZGw>KSCXEZtNQg
z6+sE&qt*SJI8&RBPDrxcBw!f}3xsjH5s^-`&9bn@0c^8bPIK>QQ^bFW`jjh&Fus2B
zK{K;Z6TR|XOnfZmawD&FE42tURwRyAxrx7}RgDySsA<6bN2W&sV1bkZbCTXbvh5b7
zppg|o7SU$u23T7)^&?+=C<WbgYa76V6<@+GYJk5rEFKf}l((A4i<_Qd+aFRgIpzyL
z3<WY2fg#$C+j}pP)B(Zbj;1YRi@6-({hU;bjx1OMZ&!|jGe&S)q)r!_D2$Pr0r;mK
z(<<yPt^olLpL={38bEgSgI;F)%PL5#dU3Zfb)af^fTBIxW<4qAmrakYID_2q9r4mb
zZt}vm#@pI2`Qn?#_J~1~6LGziQSX#l>)nu3%Fz>SEmL9n|FqX2rJz!iSIYNP&R@_>
zxX+11cj<|FAN7P2UMkPNdgiYek|tbc)s=ceD>f}5wF)d9f=-4pL(>4)zQ>?L2+<7y
z*NL6GbtxMY_`(VBZo0RG-b&?QkSIaJxhG^8s8NR0i6Gd&5;#S1Bb3rJ$}T+JUE=D5
z?PvGC2@WjZG@`m7eCfLq!w<=`3@OJ#%3boRbjlof(@f(~^nJj95JDQ+Du95Dt%}o0
znju3$*1Rau_&e(7gE`L7Zuszn7yaCs`Rdz4My;`q-K=7w7&mt|57AWni*63Kk=~eL
zpO_JWCgPCtU@cO(<^5G$v%~QHoE{hbc$pc4*r52+_+BHGp?Wsh7aTRs0w92+tLq0!
z7Q|DQ#ktkTo^TJ@I<jOXj6vJSzN6Ak1jn(CENRw85`>6wc6n2MT8o6HBKC>-WAF*9
z?7*_PnDqp~dxFzwT)tcE+r7!U!|`H-gyDv3@zU7o!~D+Q<&3Z*E-%w*v_|4BJ*Zb)
zR4u4xg-O}CG29RwdyS6YU5n29`KL(~96c2TOdTW`kT-$8<U2|4$FP@$(&fBp<8C1j
z1?`CjR+WKJ*eE*uwIA$L<j%@aLp&Y^27i<IfEbBPd6Q%^v*Bewm_IYm@aEFf>G^9!
zT5{Egv>-uRj}X*q^na*4HQ95CbN%P+e`q<WCec(HJYu1IR2l*tF_a!QKSke=N<GjI
z)l5_x*S@_ObKoWa@Fr6RudYh1_F7QYW|rVRD-iT<;p#gpkGXG6Y#;A&G~z}r6W>_c
z=x{xS{*lpxro0o-54}S5_RibujrWASIo_0~fasmxqPO0a^Il7G@Bi$swu|jutQD?9
zG0I5N#$Gq6KWB<+44T?lh!+cuwt?O`pyrVQ-{X+qW|!X;MWudQbe;*OSDoj0sv>v}
z8k1fUpu^BV3;jA6Jg0}Le7blfA^_!i&3?0V)MZdfBzb=axD*}Q0dp5e%ClpM!avF9
z)fRe9ykV98T||3I9xr~G6vP{`qKN$uM64vsIVfKcqBJO|+aV&rZm?bHCP+|6H3pE5
zO6+@VNV88?>)@$<@C^trlHjQ}y&}p>MUaC~@_p34)GcWw%<h0XQl&Z;Yk@beKse=D
zYCZbqdssC-oxEaWsCQ%PX=nY8$@TU*L9PD9t@>nq>YETeLHj64bHvCFuxi3Gfb#2B
z+MGAm7^l_=*6TWVoByV)1Js+RPgW(wk(UZrr&TvT@6w3Tu1|hjF}Urw!}Q6b?L$|V
z9BI(!^WvBG=2t0Op95_cs8CgG!o<I$?p|I`KyK|zd#KQ@WgM;*Bobdh_W_m^ziGFR
zbNG)hWt9VrQ7k<kS8nLn8g0t?dRpF)q_`nW*(!MI#d7f)P0}@FfB(b@;uZ4LDgiJ8
z2V2g;tPy`2(V8Fphx}7FRf;>T%v*LVX$?-aK74PN$rlv?T2WyFd&{ZHfgiub9#hVH
z>}{{^L4K)M3-GB@ud5}kt;THMSN|H}^`S{)TRvzRu@EdMi++{;wci#vauIxMkKniD
za5r9I%Ih>_fm67F@>V!#(5f6AAiEO?AA!B?tz%yxxC13|JNi{3Y;Ncs?a2+g-@*2m
zNSj$bLT2?pkvFLSW%TY3P&m_lEz;Ep#}Bb60dW#RP#n>{?j1~u_AcpcM7|52y+TDg
z8|8)q<kcYBVgS=%^J^RQW1o()Xur)-S%X`&7jcL|AM*8DkX`<PoepgWA5hwQF1ZVH
zs~ujA{CRlehxGbSLn0f=;r%`WD}Cok{*%1m{Z9^eCZ&)ETk|*(l-|TkM~f1Ly}TN7
zD?H05CX<k#OPN2-KZ(;coM4g1HpF8A))ToO^a8!zcN<DYQ;w7kB!7KBQrbAt-2&Ut
z{)nCarTS_AyzPLah@ls|Pj9$i?)59dmio;f0FJ*wfj)wXoml@k=1)Hr3OS)zJCg}H
zt!w~Q_nuLz|J1y5oK68|pU#=k0u<K1aGd`_84wRL#2KTeF02~1chKi2hm?f|mf1f}
zWe+Y4jZvb#XbRv6^zLw@h$WmTC%O;3Z@if*gXo|+fBR<j!Pbv9Z$O9pmO}PQ0u{9k
z2r3L`QDdTr78H(#WBD<H(W$9SYN)hm8QyFPI+?JDsQl9Wj4TQgNSmC-hoOi-rZTEg
zrm69iWmi!oB&DQLs?lY`r7$#5Mrmn*R8jFJ8c{4PMn;^Gk`XJ@M$z&yx;>g-En6)w
zJGZl}Z{X`*+RIn9`4P-t(@4zjrpynDyD18rwruf6bk3ixMjJ~8qB|4Nx!UEWLvb|0
z=A+lP)yr*J_?!@magmyjC~bw5GG?w2`KZ+>#DDH@FjaE#S*)|m`pm)XQl;vB9~sk!
zvG8khT*siE^1<k-6LU(?sMmKXE?*EH({TyX*$(6_Fvl9c3+hu~*Vqr=;l?XH@YK~d
zO+(}(gRj~s9M^@`Mk@uc1i-hKpCisKuU+g$k6c01vh<7{r$m%?&T`I<%a*(kk^ygJ
zx)cv3mr$IsASJJ~0sU!Nw~d3KUK=A6JWLchjm@DG510QK=4X1FMY(_Q>3aJh-Q{f!
z`IRV-;($5dtY5ROxrUyu<=1Vt7?N2Q_Vox7-btG*>%MJbR0-K3X(xAvu_mMF13G0v
zR?fcJX#)`KT9V?6@+;`TVGhO>qRHo5UvBalK7W_R2g-bq6mmC_bSc`gSqDi|RIP>u
zhSQF$hKrO!b9JXi%QYw|a=cQM{z{$>&=j!{!V+YbgmiVQuA$!W!@ezST)8^zKbj!>
z@$?Q}ZLl<5FPgwNM`j;+Z9dt6BA^WJnD-XQt!K6^@|gXsxeyj@$8aZ0lA~iyKud1(
z#^r!BsAEQUBl=3j*ROMLVA2HHfusao#cU06P0UVts`k~HYm81evoG=bTE2!QvF>X)
z1vEhsx)QC$c{eMayuuJNDZ|v)E6Ps>E~RBC#npGAnRVdO?x-mNnYBkcO}l?q&5DHv
zhjUC#4-X+(jIFlc+QdeWxrs#`?DlEU;VoU~`0TF_vY=R*L5-Hw#z=;$>;%jrzj!xc
zx@)S3t)@G2#!VukqGnF4HMKj+>9SZvUVra1MFBWWs#W<)dm35<*7Hq@qJi(?@214#
z4S2UjCb>cFcd<3i{yqMRXF=mV<*1r>%?xH~lJ&A|`9|a@&+;818AErA2r>zKsW^4L
z(W5tN4({BhmQBU1*G+l$fh<63vx$$el)KuU_BP&elv`8kf%vD2y0!OC!h0pl=p;ST
zY^aqd6U9CEc^#;(KkLWwj2gy65p1~*o}#TtfJ)-(`7hV722%ycC-Jj_>v7VY&#wg4
zvW{(p()?|BXP(YJMkLi6S@*c#*}IA96l>i$<>q_q+3(UevDy0kZ1}vsAv)%@E4;oR
zGq;qgFEsYq`8tJfQd4}eDExhg==f#ID)hh>_$juJjMTA1YNQyu{{4-xh$E|DWbtYR
zCv_C3xFkr$<$V;w?1xdx5Rdy2!lN<MK6aAcP^yq*d)m^w5cwzqK_K71*nmeaF7_$J
z^|Ql7A7k@#ho=N`EHnKOV@eo@liMxoadLon4PW-k7T?)eEY_&ed-jxqwl9tB12fOS
zCJCNZwj2W<Lc2dDOhC90YYK66)KpUC>a}Yl+?HNEMw5VENi3R-X6B0b1u{ls(vI&D
z6iX`4M(_~XE$BW)XQBSCMmR__FlZSKoP9_(Y~U##NR!9G<eZrG2PRoE6$s7Mk`8QS
z*HLphw79~}dp5pYrts~nvaeRbIpwkB?8UN@%{7=&y67+!7m!q%8(owNIr;LMrov;f
z0Cv|^ekEu#K6Bqo+F}!Bz%p|2?Y;#@yHE6^U6_oRgjRyN&Pmq+pB-yO&fw|iqZn}6
zN)<krdWMV0M>}c93FKuBZbD?nbZRdo@Gl*;<cnM;cL@Awh@(Eox99=AoY@c%{i?{d
zSV8O3!GNrZ8Kv08sYmLu+~-&-gtHukIQhkBK%?lY;A7}<Qv*+_@svFMI>3NiEknzi
z5;Z<9BFQ^!^S}Bh`e_>BesLg+5j;Cc-lk+%EE(kCGT99`hFH33G?Uc+>lP`0k?84J
z5VdnCf@EO+F^1Nn-p9LGHrA!qcv(}vg#E%}Zr1tImvcX_<kR1uizGV^>pK!M=iblB
z4Q{EUk25sRUU~~tIZk2hx47(TEH0cSaP#aGjIcF)tM}EH?%q>7%lG4^O`2hKZS<+e
zxw~(Dot+XNJ89pnw7iw`_aXfqn_6wVT@zJSk*Cpr9Nw5Jn~g8YYE^fCeJ!KB*!8h3
zwf2vN{S)RKRnAgcYqE73ZAEyyW)o|P<Ajg|*rJ<UH1pZ(k-MM#vo<jel7IF*9z_!w
zv2&m-j^}M2Nv7M@zjElGr3!%&cfGI-&Tm0aN^gyIJ-dCP+5aj{;m4!3eBR%zR8gJN
zKlpc-Z&!%IV+LiHbg!wep1b-QJlff{zqYr~o}}^Y{HCWGH?U^?v%1gV@eey5rMM?m
zXzmi%ZGK}MZ;bKJA-cBhYm_abUIjchUvsVz4x0d$uV#!Dki`2o7#K%#|LCjcFBqoT
z8EctbbM>A<I6DIZVLxBh%y;P)Ux~dDQo~uBkvzac5P=Hvqc@Rz^U_N+?)kNTON7pm
z?R){Hyg}2D_Y*_d3-(y?3AqM@VzoGPR-<)!F&XDR!IWy>QP{-7!Tm&scFkIosPi?z
zB3QunZWCh5o1yD<>I<Hds^MAg%9a^*ur6BO$3=V~%Q^3^cI|l`Y^8n)<Wop(YRZ^`
zWCs9R=p(WdyU=TTmSe4u+ZyyTE-ICV^woT_S9%KEyN7&UYP~)>j!K^jn#_yecx^Sh
zFthP@%~uFo+^4ICc>l@%^U62lcD`|{WcJMB4;1*&`=j3+o__QaJIqRMjDAk*@TPwu
z>W`l*a5=|sYw5bLxMxeUyAn$1yent_-d&Zz$%wN2H8k(ei&~ACao>Oh*bQi`-J}ow
zSk9B5shNo|T6X%6WCS;F7VfK@ucfd2Zj~4c(6BvC?^3~EZSr0e^%rohkS2b)^vxRY
zs)1#BYZ35*O0kBr;ChU&C{CR9E^_KV3d>xKqoCBpjaN}4Yk&PeM7?J?n-BQ@ok>JQ
z>`m-VjM^jiD2m!MW{uX~RgFDsS8cJk+MC9z+EfRsYLptSqDpmq{r!H=|9PIg%ex%M
zeIM76>paivb9V13Ps}cgmtPpR{tHSg55K?d@T|{Lf!g+&=KE8xM#K02tn#N|Au2=3
zFwHCK+YA#Qt>fv2dQ!hTXWU=uRVi0xDCKkv&3pWJzFo>TO4KFRNxMSj*4?`zXLmxY
z7L2HWbr1bkE4?>Uqc(G8)A&1!zhJO1Z3iUyq)!6&{pnKHaA2WP-F|_%cqeyf1g?(n
zoawgC56ZR-?-vhV)DI@#z8Lvo_-43g3%PQ-+V&5|ybP9Xm48enUU)gO`R~-%_Dag=
z@zXYmTMCo@m-pzd?onn~USq^J1CMp^GPM9fqVnjMkSD;<?4{6;-7vDc$Md0bvp??q
zk$wCOgYPoIe<H%IEu5p`6-WaE-b#RNrJY3?VzbTy@<$)tk^rJIf#LvJ5e%5M6+oE@
zlp-q65P^)DAh0VlWjjFX=JMer?hXtkj0Vx*fXexi@-F0HvpAjJc$Jm-Y#^8k0K7@}
zubjKb1sGQl5{zGh455z=q5+cl5E`tU?z4ySw;u3YA=z&LQk~of*kFDfkP-(JItjB&
zic39Fmfiw>(vY(8kD>U14$w^uc}1uED^^V|P7VTQ#Q>Qwi88fuL9&TV#);Rl$ttio
zbr0U8?PP+$bqcK{kj0N&F5h8!J5hQmyp4~nN>}{QB1s$oZX6AJMvRlZVcifxe2d)o
z8ChzQQgpv?H})pC$bnlKQ+Nb`HwoOO(Zm~rA+Gizf-@=3BPr=ue2Scw%CqFASIKrY
z>9iU&K5{@mE0&f}$N4<3_8yzfUy0LWPr7vDZva{Ylej)u=J5Lr)w{{HVaeD%WjBuq
zQUQNw-30f2iZlS2rWL@BR;|o^(*BA(O-?jJE)^V}nrf19=>gcYN=o$LWm(PQ2)AEN
zuwQ)l1hOi|B&YQT?M>E~dO!g19wgED(QA5U@P+3R-v1Aqf~r1O=(Yb9ow`dBFm{)r
zWAj>Bx}3{kKkkm6>7!AY2Px31&sc<p)A1_TknXAdl}wRTym?qWvhAtqDhet1q@gak
zc_q25?nxupGYeS8AjV3XESu#e59>X-BHS}yd1-+~vt5G!qb{MuS3!XDI3|=Fru9a(
ziY1UyNrzFjW35!NU_N7`dI^wpE4TAXK4}ez3MD|L4#SSqu`d>?5<wlSDABhMrdzq&
z$->)Ki;_S<#b4kj9b|l`=x0>$Iy0EOd!e*3sPPPNJ_d>$6C+7>`xgsPZQ~X}10}H%
z3a<o2v8E$r!9xW+GUrAkCovo90xN>0A6CVh4hrS{L1rF>BAJqNePloTiZ1)E>8}K>
z{;Za5dy4Qm>3pLu9ndQUFQ;mbaFGGZg)ky7^BqO8AWkeOy;XCefE?UVB2E-*tS@?=
z41@O<A-pv9Ny=|>yF2-bSAL~@RizVG?kb4@(*6pq?#k*u?zgKESXt@CdYc}S(kEQy
znp=ch5t&8As_lcSZjwk>lM3jxLX9BIPadt2Up!MUc?J$1A=3Vp2mY7La%`;%SR$O8
zxxVo%amy<9g)pFuYnUQ9AH+V$hSjRYr7oQTq|s$}g({6AXt3wV2h#!^E4Dp?WDFPq
zw9ZqmE$!O!!bD7cZN2Ddm+!M5H@F5+p+Xs@bCHZ0Q?X5b41-&r;C1QH0jjYd$5U8h
zdsrz{Nbu?>&{Y-<hLeR072hk&FYd_ys{_wHWcz@vGVOoRI0}>6q$1rb<ZZPtV=7$f
zM^&z>5OK<HPhB?p0}!WxZ7-D#8@B#Tjr?4uIy0U-TP+m?z{_rc>V@-}(Bp3)pv(k~
zKsMDw37!IA%b#7qu1zbbh#cbWfWkkI$R@wBl72D^fTcmSJiwEPG*U%489CMEZ)eJZ
z=M{b}Urzv=%s8tgb_QEh@}lO!)^-8)=bO;>97)Y11s>JzHX7dN`sL5Rq1r@>OvV0m
za366|&b039n`q6nh;g;^*tC$3bSf*hgN0i@Gq=*vA=t6kK%3h@?V0D_09{vjfc*zC
z+uK0ttxk3F!Vf7Xo*%liob7yAdek4%3mR($JnRXZL6V(3UdZo>`qP7F>7{}8#Mt&G
zJnT&>>P;EAdC<M-<lXq&b?F~^JqCIy+qyMzeg3z53qSPv0>NBp)$7B)Dq%s@Xb}5N
zZ`CH~!`=RtKmD!bRK+X<owftr4+naS2HH~l`u{kyw)zhJ=^;b^51vMeZm?Ss$b$zR
z?*d&?2Nzj}2v-BIZHL}H99k(F8kreb`!KZeXK0gUcw2G!v+eNS!{Pm-zV)KvuOEhw
z{|uk7yf{;Qac=wK;sfgF;fvn`FaCab@!y{p09GOhaZSv(1(QS)VRm5fAQ7=nME)hB
zSVyRpMxH5B9R-?@6_3ykj<Bweu>T!FvyO5#^+JnBVCw-i#-Pk1O0G=ZRBzzhwE+6f
zj>oBh&cXpEbVpw+5BK_*%HJ_8>-efIQFalm9XYN{0K;bkM0o|p0E6ziAXBA@^+2E?
z5yVSWzA1$iLmLzk0PLAJcNAkL<E_c)i5veX!wb*FCx{by>G~Jt^&2z;0&@6y@IZm-
zo51R6lttPEzc+yF1V6h~eXkhgIr#XQ|CpgaLjCWnOxCGvrKtp4qTD7}nFuayn$rJ@
zGDT1svI^c=M+u#P`2D792jzQWL0pU1pvVxK8`28jmN#@6^qUVXX51(9s`UoB@;?R>
z)@p8=MzHnes_P6Nex_e!@>aBZ#|=mot$J6UT=h(KvWT*Aefl{o4$jZiwK#Lbi<N00
zFMo-o!z4a3m^vJs|GGYZ{1uh=6)cAvMFQC=siwswrx8ma=FkYgQ-pty5QiDv@0|9h
z)@uLxD@Lyefal1?af`?PLAK+t;8U6m&P1zdKyFRqqe;~Bth?dmD3Q8F&OeVmqG$a7
z&I=8_7Ww#^mUZDr(+IROyREH<n*f00pDPr_zwmdGrf8}mERX~H`}`^-&LbYi*~-AW
z652yI`N%}aU$sRquU0d|{I2J?6`B5^#BS~rg#QYQ6UJs<v(lklJMeESaBo;y>JqWC
zT;DiM=5WoNA`XTs55B$*D|sI=^!_jT^7$-z&vN172{o2hXeOeNA6M1nUpP_@i2etT
zHRN==fqA3fL~f5Nw7CQqIoy{~O!SYQKa6x8iLt1@l@{}`GqWuBBdWByj@wMVSsrZq
zFR0@m^SByKc5BaFy^5WebGtaQ^h9N#L<Ht1Ggwo-R^E=>0x3B6e*WM3BHPC$mIZkn
z_}v3A=~vNMQ3}-p7IQ|LPaX2oCLn55+)I3hsS=QO6C_P2TtHDQ<L*xQA*Nap#)D+H
zsOE&w45X7l)30nLC)Z@JlVQSYlnD`wCqF13@zFqmVE8LmYQG3>8UyovkQ8C&2LUd_
zDbThF`1}Qx`eU#f>plirdt%M|pP>?OHI=I~AnCr#POKS8+XJeJE#046M1}d+Lpw?v
zJ1WS5)30E4vCsNV#0M2D{+xvO=A4%!Y;pdd<J$O)gPg{+Kums$GFcpdmN;B0c^H21
ztGA;Jp9rKlYf!2@s{6>K6d;a^;+~4;q>KjL+u*TOUun-Kx0&Z))Y&z>C7KT0ardFU
zD3+KW3AF#alT^B&GQ1zfvY?0uXQqQ!nu#nw<R!+q?zw2oYo&|tC~m}5492o@phOF$
zB~4>9mf8Wy9oKR$LPB_M#hlof)#ZM>J>^YqmC#{S8=Wi37;1@IUK1!Luni(Lk}r)7
z9j{dA6N8&9NAUk)X7Nt~19!UFRV3z@8Db@`@SwK&{f+;=ZL%Lrd5kb<L2mg?Nt6&N
zz}m0*DQ_o)>GU6CrnOFkK3$=9a)YF&AWZK+Q-FUOLgQoL6UIol*I!$YyyI4jPQKr|
z39<jvW;z+n2G{}l3?~DOeoNB~o9hV%Q<oUiVH{49KkH1c=u@e}>G_X^UYv=1I-}D%
zW=uOiXSKoIvXPAUT`_V^tFgHC7&fr0B^JOp<R(J<-SM@$<B>TI1`QSnArsl({*zA$
z%Lv}cyFN$qahYn_Bg@l(A*Mf5oLHq@X+NF1Zc%W)aGuYzsleEqy><V1eCEe-8SvtL
zRPzYG@qDJN7hO2VY1C!kiJ$o%SMr3n6n5s4KIVIk-+{~r6U_jMvvYw=Tp#8qz8iHy
z;@7GFfWisno8kR0kCJo}6?bRGwe0d!F?SY+4Dh=f;n9BJ_3u`WKgV{LhhkeYIuZ3R
zBYrV{@8%$*lH1i*12tx&giIqpXKTH1fBcL8)KEE6c%Os%A1e1c9NGCd6BzQal)S6g
z<D2CvJ~-^$IdbTMG-ber+Exs9FNlc$m$<AxCi3Tm<NEByNay3xH?N+>O=+F=X8Q_&
z4S?6Mo4zrUcoJ2v1Q97#a!MvCR6I;ll8J^(T#7HDq?CkON`#h@K~lVgUX`DQUR)#r
zj>$tYVleQ8hNc+SvKJ&b+G~Q4DqXykAU!=3mn0^eSV~R9l0@_R|LrMTE*+p5O5kjy
zr=)+mwi8b#&09t;B{X|QlOW91ocbN!^~-7NuDoUICX+EX(@qvVoi86-W2i-rJ1}bU
zzT_rEQ>g|Bvg);0P2~vOZLphaubz2^ahWdG>!_J4k_$XspX#VxD8t6W*%}sM*_E2v
zLWVZrL`v3M75dE*o{%RTsyJ7S9JnzBR*%D#=*;5L>ItYv9VzDCwWQ#i`!A~#5Oj+4
zWoyj|y~Xoa>XfFqe_5l^{C8D7?(+&ZeN|_af(5f7D#sn;MM#crjX!w~^xM|uviK@E
zmO3JOQNXj**10!Q3=i)WV)$A+3#GW>nuIftt@pDV`FO8p#&Iyz6lgd1(?FPclJv`r
zhWdXVt#o*Qnjadt{JuGsD(*^qU|M~5S?A|DLH6M%_V4}Toj4UeSh}jbE&u`i&(otV
z4jZ)&{gwRqZ+R7wTpT6$8eIC1x;%>PkVg#;=lnGjBfcWLk%&$Z*iPcf^Vm)nsHxjd
z+~xFVk2o~!+D?<EKU=rE)eVUzmt@S}$-t5be$LdS_xzltyZvVSI@Mr8z&zX7L3Tuh
zM%((8zv%eA-8{RHgWYGi1VO&6+mZ*Lb6jc!b3mMNeRxu@mx5o4gWh?5DGAQI+AcWS
zI`~qCClT5w#L;{0mkS?+vzM819`09W{*P#zYvJW-lp;2<UtJt>cu-47xS=E5a&Mrm
zud8V|Y-s8}JZ#*_FQjeieCKu4+`HFsl+{k%cJ!P`BK);=oSyvd^Ot;$U)yJ8j+$y;
zsR)1Td}HDLtxHQg^;`FP$kDf+&9kZpH#KD5$9?-giaz~cyN`|sP8#}s2G8Gle;@kw
zTHbf~@5Ryg7l5)AZy=E2{>cc8A7S<!Eb#SY45cG-$}dWP>dZq0G-x_~$r_6AP1P9;
zivv(Ryni+&P`iFVRhQLCf=Y`uS`!W6yn+Cb002Nl2yh0_hmHc{Z@w_GbFgr5!UZJR
zIJv1rWoX3ZX(bexq?I{&`S}C{MKKaAvRF1bH7+GBUR7N_tgf(@ftc<cF&$%ZU1KSO
zyRycXa>kZQX0}*;Bdn!8*2-Sb)Lg^XN!P(mA9v5d+0)qF+tlNMxwoISPk^0&uw!7D
zQ*gLj_#@AUkG&p6`{3jJViN-5lS7hI!&B2E(=($ov*T%*Vsf6Q7ZdVp>gqbXM@B}L
zmzVeV_fJnxudc3ce)IqLA-N_-`{{}>XS|%=$KQuj)z#%5G}$~~X$qP77V%=UHOxS)
zXkouIV$Nsa(@Afn(en@Ae+@=0EPM&UN5?4M?BV>}RMu!Is4g#m7B6Rt1}SGgC$ALj
zQE3^WyrQzIx~8_SzM-+H`KEEI<#BARC7qNow}=#rRa&|ZMueN2UrdT!m#VmJZhm2L
z>GkrPx9{Gstgd~)b#z8skc!c16j4~d(8X|S@<<_dW=hu2e_mYvy88X+@4x@9+lR^e
z)wOhEnHU#uae?j=6}S+nmo6l&6%(n9QeNw?+A1eA%m>Ln2jHKL-q5JzU1eRZtGUjw
z|Np?q6+B~MxF(lE7t=~|y}ZrH6^E(YRF9WTQLNN2(eG+_+i2C1KnpV>2QlzRii!Yt
zs>hf-mJ}W-+-dyK<F_+ia=WLcwzPAw+iIy5&MhFmNfm9vr4E6!Wwv+C^!`6Mm5t;c
z`aH0x6>aCJ#{`0*$dcM0Q#m%?opZO*VXnXH=zX~mCC@AM4ti~Yyk@qu%vZ^DwNC$2
zT-bZMGwK%FmA$RyF)x*m%U5&8%y9DIAUgkdU<8^WleXl!m*-NT^cB+IkHE~R4YA?j
ze}8`cIO5kTT|_MiQA7g}0%kZu^dV<fI!a&`8;!yg<Ip7N!Oa*PMy=~p0&B?r^;RO9
zYl(wOXck34EmuFa2wuF!gG78G5-P}Vi_mXBk=v`=NpF0j3-R)#U9_Zu>f)*(Y#y(6
zvJGTzMuL*Rxq|@3IBxeTR=xgz2Zo!pN|fMUzH6T6p0-nI{a)ey?gKs%&*A?&Fqr)}
z>c5mmUew<!jr!k#p+e?Sp2XL%U$MnD{l5dF-X(pQdIa|6NlY}*@ctnbR`Ya=NXm~#
z)3T7FG!O}%_=pJ-?%b^gy4JNbJE>A3MlZT98<Uade|ClSbbZ;UjRGAlSq%+M^!_4L
zL(^?v8<u$#1sUGKCA{iuQv&d`rmljC)I<v)v{xYa&$V_wGz>pV#)d&9f_ZqPZFqiZ
z2RPH{A<5woYBpf&kX<Wro3V!gP>1tX*r=0H96wALvCKVDXQH)rl4z3}XPzS(y4p>=
zG&lItruFZpRECK!m8%^^UrZQ<&2<OG^y;vl_>Jp!8bGFAAFsDkC7`o$bXxq*lQZCP
zrNB9LO}`F$J&q?qLw075e20IVKIx(&4f2a2?RkA0!{n4PQ~<UMRfY_S=)$^JTsgL+
z=d`NqLpOpNZ}t>2aV2RMx+LS#4J$MzmaHHSRk$jDX&<*@r}1DsMjOjT#;a+UJ;f(C
zw#5w*L&>Ng<Z)AxF;Lu>1V@79ZcvJ`idom~G>why@0fXe7d5{-V*Y9A@yBNVrtiDM
z)5bK)0qkU)yBFn8M^TLXDNIa^Y^7P?Hu?86n8!Eam*sj(+jqCf?`Ids`G8S4M#&QJ
zZBqFA&`+%(@kvSQPuVkKL&TWtASY^t!KO#wQ_HCKF4IL2D7>`?n+@)ZupJ76Z!5C@
zR*W8bAN>F-h8`ie!WSY<Q3z5%IZW@D3<Ze?lkf>PS!Ge4E*+%{i*r;nWgKOB*P1AD
zK01>m3)$%!VKd1eA^*DznXsOV<A88^885~pTDL{16YZ$t)DSM{G3}5O6Zbk}03Cpz
z93y8<Z-I@mEnbve?ufa1b90ON?s^G9x@t~!#yI#bdW+ubt2%QLQB_7${IP#rDF;WE
zuFr|dLptvpn>v|9-`y$QFsw>OQ>KK0T@B(v#zO@!fc~3^&dp=gk#{GK7uTD@_Ar|x
z3ai<763!%_vtmV_6SZZ%)L4OQ)l^34DZca9u~!`w?jihfF2hUYyvFY2`SP=x4R~nd
zeO>8-oBotVNiWqLzFR%=cpv(5`?H488GyXl2m%JR_T!>1E|B-9c7iSh#n3k|r;{*q
z@`W;Hkvij<A-|3QRCU%s#7RGx6{l;Nq^3eg3KCgwvDL8h(BPOxB`Bm<GChhB$iRRY
zvAF_#a|OGsenMHmO29Sa#AwiTFaQQ12U6iGv{m6IW^grKT&2zJe@Tn(SxrE0wmIV;
zdB&Q|n&rsqdP9a^%lXdbH_|Q##%o$IK@$ryz#jza!%gzw(VkktUXg^uMZPy?QRd%3
zM!|<Bi5Jki-8ihJ;`=v&@93(+z29k-VBclZV=)-$2eSpHx7>qo8X(q9PE_9J9Z0OJ
zC`OHr3jo&U2?nVA^K^NeV#YH|N9KF$fl(P(+Z^lX`$m2bh+^EUWysA|f6*8>iAHOF
zzjqzhnWFcb(MzJROBn53(WjK#aj}DOR0ggs^zf6ntwwMAv|M=u?irhG1cd^6<S0Wr
z>g+jP-#wHHyY>m6R0QnPtCi}ke7kU8i(3|J?eA%B7I#K1oLi{%lbni&OYO#d-*D&T
zj7LRsN!l$6c_O);)ySNW(ivy*P{uWU%A0oL4)9lilx{7nH5rKMhMUg3apGgzRPoWO
z2{>T99XlUBn9bN5xNbNq;f{)>mWF^N64aoQdqAT&;;8ydb%+8E<QhZ(j|JfGEyiqd
zl;9_&@W2tP;=GTYuCW4(NGkn?b~NP`j<oJ1Ucyy^bn#efQy7%F#O0b*%`{`4;D+1y
z3hL<fiES%7D@-(Yg|N!c%xI_swHJ4tnsLxi`ZK{df`@{oN32X<N5QwIJ*A_71&@Ot
z3)io?Bm`?Gmg7}|vS~uycznahq)yH%xs}y!2PurTUPy+8uDjsQ8^@I#9BRNKASOLs
z?R$vxdh4HG9#u0>C8s|p{D{nSUf5jeWgIQ0Drt+={L?K;BnGLl*w|+?XZawztWk@H
zB4u-L%-rb)+M0GBgA{zB(mumkG7m<~KCIATySruQxO^3zqP8#i^)A?!A`@b_KGU57
zTa;p{{b->7{l>s-PIg%tw#J4Vg7U--)1QR?eMxmmA(I?4d=a4J<#Et5l7S1ze>k{@
zyy(S44B{TVFVMQ}(@t8d)D%8Y2+Qpbs($eVLcQOgtfUk3(y{c%_m|j=RIJ~_#CO*$
z`5Y7kr`*>_IOYSl9Su8$aWr{<%Cc<|5p(N<R;QX#9D{KOTrXwZ(i#;T)cuIW_xlmx
zKlU)0Nj#Jei-+u6Li%L4#Nno<+1h|;65J;AM1+5j<tA@8hS$=HvV<fcVi&2(!CsT`
za5Ee|O)jy95*BD{hRO$G@KjIHO6%W-p4;a0#z9sizc`&-aTY79czyRGLzacrprn5>
zazvfR`~B^F&XzZ;ga7g2H2@Zw18Yef`WlalILg{Mzl>D-VZT{?eZ$Frr-3Dvyi>?q
z1?NP?5Aw!+zlt?iy;?~OTl)f9xQE&x_1Fppv{^=cmIYUYMp<DWp7=ey2Gu-_kp&2!
z+|UvpzqE9FHyKh%8a5yc$*~N7_AEU7o-#Etlq=7EJ=BSm;3Vn?IN*ek_2Sn<@$-B5
zy-5%v3@R%ZMOw}zsT=!WFyOCFqzFit1w}T-3p$bZu{HMjc=-s}8wHgEP<uS=O=Nps
zi{H_C)TI-BXyT&<pv`oHdL%*BUg0$uW2G>$x02$P-al3+#u<4)jO75PD^Tw`XwWn0
zV=G9A4n&|8RCx&!$AZL&3>>72nP|v11|)!S%Fw;Vwqu-@03@Q4cQv`6hC$-x^d<a2
z+8)5&R>d5~l+B+=!!Xdjo#aN3<aSs}UT@%`T4M3NL@++$`UY*&c#qyzH(@P1`EoMZ
z4#UQ<=;(jp)TNu;W98qE2T{<66OCzgvS_;}Y44B*?!PDbClRQFVJoPRyZ6J!(3mUm
z(x8VJRBP$)7?SSx-tLEokGMZ7v^G7({RX+3aT;x)4ggZ4A)ExPdL|D+ht07&ji3cW
zUS&S`Y`EkEO`*ZM)@mO{r#HDl#QjpMBr+|GGojI$0;UeJ449%5>X}wu9dtHNU1p?5
z_8#oEQcre3h_9+CRx1QEL(B}D46G`D!Wi}dk)<VQZuHX%@ZWwmDOt|v-oT6OY{xwv
zz*rF7Dqcw*tP<|WCZ+$-EJH)jka&`N$2f#pFXQ@zGt)3Ubp~LoU#}gh$y}qxJQMg-
zxkpX0FEhZ6+W&w(NFHFYnu@7+8h4cgkl9H1As^*K-Q@u01**5mau^Pt)|g{+tZy@&
zJ#ZW`paNu3T0g^WK`mFG1+HSE^|Ha(d~sa<2^BDzDW~iwq`VIr9R@85hkRSHGs6S8
zTR~hWtQ<9<wXh`cW{~!YQ^`RA)vAMzH8q607y)8^c_4!CMtHP6U6com%a=4v6~2@$
ze%(jE+E?Pu3FU1EnPM|Z1oMB~%KGx=Y5r8P?Je7>gMvTm59O>2=3t6DOr_cRZd`ca
zv0rMG1ihOCqmZ^PB_HXQoE%#wS+ObTy8j*M!;fb_cOhM#2%AivkLn>)Co*!L<&_o?
zezd#ls5qazyr2R=i$p|d(N-0jqm{tPOC>~i;vx6j<DQ1&_)mLY5U80}@ygmK4GTpt
z2AH2zAb>g4HV|6<oF_WLMuaM+i7J|Dt|C;m>_NK3qP>(C*|8Ips9Rz7g{heb<X@F5
zkf>+ITxk_iZLALwL06|2lxZwhQ|MMYc|lc~tGFWW2*Ypt!7HejD|CtF=D*9u<wZzO
z(Iouo9HA~5dJxCoWmeCiVQY2Qx=51uH9fqQZF}DTNvoE(=j$ir<n-&?=s#MgtIG0<
zY;GVdB>)~Sp=1jy6}%vwhe_8Cnf1u_dg5Wd>$6NDbVJfxP<4afsad0)anasr(^y;;
z9;PUoNlW*dOfIyxHL$VQOWdQ-q~sRl?V5u)zBxz%!2H|6{TwK<2x63Md4Cu{Vbx?P
z$arGYa;5;d^lDK@gZ?{2@^3z06KKL%XZO6WjmWRrib(7&Y^=QpO8nB$&m63C;`FER
z`L`HOz3p^cQpP!T#)N3b6g7@u4A(>b<bg%9m>RA(Z}KS;Z4%|3$0`Dmc^<pk^jeGT
zQ5q02EJ16r<MlFxToFQ8qjwFhFWD~DUIZ?UM=8kq_TtkjrK|AtROPQh0<}n4k{sb8
z`hnPvO<Axdrc<5Rb=|6++wWQ-BhVe%r(`e#GCHa@_V2VbZv6~JFeO2HP(pgyXzYNN
z?F^TFD!pT4H+a$2HUi?y(nI0V`Or&@wg+VT$89F3M+ejEK^{o$qHieQA$!rIfw#{%
zBpBLyW~V$0{L>p|*)Px6PvPR{stCY%ssxeei!K6s2iinEpic@KT3vgS{y?%6`$(ty
zKS8^)Kiri|X6kmbbLoVpdiP(~!76Vf+Y|@*tOq##2Kv0Y25h0T108fnesw<waWozI
zaK-Q257n`t0v*VFA;f8|N27HZv^V^VL~*-S(byP&VN3Q)IKRMj;QGUGfhBR`YS^uw
z{r!j1o|wVwoPi!grh6&c#mO3Nll8;Y0WaW#TI%(8dQX_jmx9$(I&qfm&b7~jgUCyW
zAc0K)hIMRgo7xeTw49ZYSXd!_dyFOvjVrQ$XbxpS(duHxExIBNTa&bmJCh5cN^mOS
z6A+s*FyR!`ItF0dWXhE3dhe3Je-na7>+2gpFbAU&B4aOXAv{D!3(QN+87}w8mq<T$
z)%D@~O%GVc0XNxu^I7WncjFd-49!-w3v>8Qk8O$qM0++X%Iu}M$Yjv{Uhm@G8$Pue
zE6`&7=6OS{nkI@y#<YxIX`?3ZDUC6vjmv-S(`<cpt~>Pn1194B)Qu+-m)D=X4r!a6
zyw0CRw#?L1?7VcF;c^v(NP{@<dG{8@H?WvZPJ~bDXHE2Cp?#541qiCe!HK)V_q#ZU
z!#n0|FmoO2Ger1oyYQ@_&Fnp(_p7fK8|%>1BB^g_?3!QaTLTp^t-=C+I^XReX@0L9
zr6Ct-3&BBSLTjR9^ou`_B*v5g`)P}aZ3$#^Nif7w13Mq`XIy)6YN^=%zsMOIzft3!
zGA-27)qMjt*6=<mZ(E4s3$^wj3|CPrlStF;*FrB?g@b*oLKYjxNb-t$$vmv#Q4?_x
zF;+=_(fqs|kVB0e*+DORNvBI!X@x|(^wIJK_X{dC=wlK@za+=XX1O8a&eR^{+I}d|
z@t@-TKO8RhwSP=ai<Vd(vsT_wo))%5y7j-^R{-51xux|0;%1+B?;p(bqk;Fg0r2L#
zzvC6%>(J$;<x9TlEATsAQV%_6`9RH%M<1t&UVcgc*gKo10v<t2nsLhms}w)p^G|U-
zhJ&SP6)8{FC^M<`-VV$ttuXe!(^y;)`1#Ja>ceUzWNu_m3$<>GS*zfjCrMm0uutP3
zU0VZvXnVlLt+hU+KOFTjN|&(w)*hlUYXC)o$GR4V%ipstihL|F*|dkODZ9_lE{X(f
zs6O3LUt4dc_|(Ju>EhqVR;?v<!a759r`{j?q}KO10ETvucnwv&68%*1D*GDE#};yX
zG;v@aP2nWSnw#^H%tDT5CbLVGw=IZ)iaoue;jbI}##Vup+}V~6bWy(t<8ns6b6!V;
z0T3L-z;8=$ie@DiMnEpgY$DNsdm16ldL0GH5HTD`d=V$=1CjlYTHYa>zrrv!c6)E@
zv)plRm&UHR>*s`TJJbi0sgHJrn9-#EY?+1-N<z~c!5xj0&l;#*3HjZ|H@me1;<(Ze
zuV~+wDZKxF>vN*#Zu#I_mQqfEP?WS-1MfzPkHgyAht{g>9SL(^*dw6f4%vfW9W#($
zAl9wlb^6Q<eWnM+i*R4=0QN=v4<wjA*F}BSGLD@}8hK1}P;fjwY=FEjM&_3ev$%US
z@Nyq9LAQP1d_Id*=5iRL{S5m4;U>ysvMmbnE>)N|ikU-FX^Z8Hb3W6+d?U5~c5mV+
zcI?~G{x`(X*Uw_f{EH%eVqZua8=F-COUF=tkpBAYryXy|_WW0IUJykaf)O(MwXK#%
zghS=%N!TWLnlU315A4){3IV_@IAcZtn1lS3!C0ugxGd-y4`u6eDw2~v<207)>|+<1
z7#@f;28w3J&p|xsBO&51I@`1-W{)MHgd|23kVW=U?tcrG_$5sfX3|A~UW|dP1Bh-B
zK(~mddjVwlWDo0dt#)E8H*p30$H5Zx<95prQOqM7*eUg$)9V*UAQlwxS?IAwpSVrg
z55@0~alYZsW!<j67b(A7s0hGy-mtWHKn=%p=i@g_;u4XGK>bf3u|<@p7#ec|62gOo
zupnEeABgB5H-URfj#EEzMpuc;d%l-pl%NRlb4^F@6pCLKe&>2G&hHyV8i}7VCcS^g
zabb9UE?y6kz6P-eu72XZ0=gd&`!65e`JEnq8J@wZ{QZjy-|wjJ`_B!K-i}wKf#mV!
zXL0j;K5mS9uYqRIAB<D}zE1)!cDz)_|JGkPS6jHO^gXA0_IuCKXhroWRcjF>01b04
z`f=x)6#4hS@u=q8-&{%vfj&(dW8q${TU{-wQkGu;wz+QR!qrWOu++D>(;Z3CGgA_s
z1uSNo!^%olckB}LnsuuqrCxq`j&m?GHq#X&oOAtZ_`KhMv~$3)irLvAOKF*I<>VDo
zE6ZnS-un%B0(ao!j!Pm`Nj9ov3o#2B*QB+QkW-pGLAx7lXuHqiNm1^bhySTx8kC`N
zW<1Oy4mR0p?(ot8!8DvvHwNoqSJ%Ylj>_KJAq@yQ{PsOm+TPvWS(mYt7Dg3YMve%_
zooJlyC#PWMGtHga3`>hijNS2drkq=8@hpl_tj3^(So*&<O|jd?bDd1|^RQU!+R@=C
z?qMcRfO`TQB5J^Rx+%7apgeK57Br4=yaN-zmS!ID%l?$&UZ}3(^}h4K+)Z!3wX;2^
z><$4)O0VQm1xbR*nA<gRb;DOnRby-P6~{Jnx_xJ+Z*6BDCF2cdRGuiD+Y40&a#%><
zS6p1Ug^SbVTh+%&skj5Qo?1_~tPX-9)Sm}Js%(2>NKrmsa&&HVDe=_7k+dssYAmRP
zT$B2Yyt+n|C0UJg91+FZBF?n`0t~?J;HK26^fj5|5xaYf?8IIHU+nFojf9kczc0S6
zgclmQ{)iJ1HZ=pS!G{a(M{Qq6P|!EH16sPz2U&<c4TY;2!g5sr-vln>WRwzo;mAk%
zXwXl*{q;%Vchx@)L~$nazR{C`yr!^g5=nZxTt9UIzU*2!L)ohuj(0w3u>3iNKO)is
zL21!C++Iz`ajO8Xvv{^2gp6@uic<D8|C2P*@s5goC;fVuv>yPi3>K|)%|Dt{!sVSd
zXmJFNpS>apxLT0J_D^{lFyMOYDr2;Ny-o@_?p#_F+8-e;6UH^(UgT%C-&xelNv2KF
z)_Xnm+P(>o9W+vH-ogKU7nW;^)qZ<dkQCACau?f_Lr7P@9sJge#N!dydwYY4<9GJo
zbc0QC<bDK8VY8&eWRwGp?~Md%zbo4D0qw;biIfLVJ2h&9&CN`Kr@5xy&*KyA!YjIB
zfe&ULFua#)e>)2_Z%pd>_;5k)TDCOk$co{UD_)Ct^YK>r4K1q?7t*AWT7796ylNk2
zt8vw}w2_c|OWi39h541{rjUtsC1Xu^n;w2gl;B#eorg`2Cet=s(sF58-E);3vi=`W
zY!^ZwhP2r)=PfFa6*9Jp-mfn3Sv#mLPq#U&uWwQC0;g%)csBMKksMW)>qgvzI17BZ
zpE2-m>VAjQu>4ZNk>0>j@ovkXH$7OK6N&Y=<A)wK2KxXorBxWv?giByyVD6K-}TeU
z9iW}xC`IDB*A%JvU%wgoj4uy*6)7XYbQ(JA0F;>kFy^)O`#TUCW5)8>r?$^OUVQLh
zun(=^4pY8Z4gK;lbk&pcdick}JsF3q-2&f@t1sml4!;lTpKnCeWm%s8{?_+><IndI
zO2@yaQ{rVmzk13z{`<M=`|021R)*t$SIyej?7vSJ9IyXfegAZQ4P24?v&xN!N^b(G
z^082{%;+5!+`0`zG!=oui!sS6Sqw&r!Z+I^e-X*Bt^Gx8I0!H6$lh9)8ty(0a%svb
zWCcruvo`wEH;vtBks4;Riw~)*2xgMHg6ts_iMP1R$xP(N`S*>b_>?$>QeZE*^D@ou
zMppc+kONT07{?{eY%}KTc7X}_G`IV<%R)E(xKG>Cq-oLXuzWZrVe`hdpk83bf`mP@
zAR+>!N)_C)PG9}60kKN7<huNt8F(}_OTw8<Ka-sCA9)s0K&@lVT+hs|U0uq9^9T`6
zVhD=K!Do*0_c7?2#kJej8hj9Vf{Ui9+f4Z?H^M{-(9<g&d1@?B?H+XSN`YvaG7@JZ
z#w|GODn|tKGe#F>Q$^b{>lY3*>{TTtLufIk1&|{m8Ij3|78H|z@7FF9D}Y&XO&}w#
z_$@{qwSdYL$cTztk{u(P_b=TlB)-a#AG3}@+3f<(5Wu_hy}hJ+m6?%3Bd}kc3qts1
zZ3--+m}D`XE{w>@p_?GIfL+Q|A$R2UQ)4qonbTxH1e8XCU_6D0tn_lWoN-I}Nx%8K
zTW{bB*XGpHoX=i6wRG0z2fZc3uXPq|d)E^I^=xr#EhOllPldQfFxXZQV`M#mKUt90
zD<YvjVxsozehppN@8Q<h=S?BlQMfjt=k9oAV}GWOJ!PWhQ}y!dy14pz<3*4z@}kj$
z*Nbj?jf^e{2ea3V*Sd-}!FDE>LAUo2N^s-|vKta_7;o9P^+bw@hw>_osJw$%eC+fo
zzfo_<T}=RV_eGg7SY9OyEQkkZ2F1FhdYGJ=39ob`$D0d+<*c4Hv7NP^VPo!XIoWlu
zojZ8`tTuV>X8!_b8UCs(He_|weq4{i@pJGYLSWy1=ZPs?G`a@%3;3~X+hEYWTI~8s
z;fLWX3#S)#Nt(Cw&&K$P?^{mMCtJuSTFQ0*x^nz+y#?A@fEG7W2l%dgSd_wGTn7*)
zhzbP^*aq3(Lk#^S_gg|ch4HME3ABI^kwI_AsHQ`je_|2GZzOaz0d`R0ni8e)pwy-Z
z0Aox~Ex@QdS+hM!3OkD{`uiFGb$jFvBM@N`vYY(`Uc$xdW(05jyb-2nh6<wvaiIh`
zIL4-sN6)95Hed3~5of9t0U1=OQzT{u^SbR)rOz94*cDgJNHHCzrkw6L+D)L{TynX%
z6&|LGrg8c&JFj{13lQ~VzDj7f^r`y3WZ<nO+S?tb6-`2N88<rhSLue;YY{iyO#P`4
zVvvw=M>=NmYVjxatqPM$kL!zw=?S4=I%#EnvA3KcZ81OT0c*S?DYIhH(f8sb1ex<4
zYbJB{<vm8_YF|dhm5Fy<`C}Ac?Jd1OG*lmVnFQA}_2$&f=RF@<js7m2DYv|OoL#?o
zUr_I^!irCj+DpQOuj`*bWY244>dLXvAnx+ib0MZI{zg9m#y*-DdAaJsk58Wem-9jE
zf(pDh_byJTrAtIWt+hoTMPKI%rk<XSo7DSUW_?xl<pBUjO&y!}hE++HU%}ERYKmn4
z0f{(DXXxdsX`Jj|1C};Dgg${EhG8S2TjX(h{raaz2oa)vfF;H40Io}CaeLlY)M_|l
zVP);)ux_jxT}yFV^N-4-N+s;<YD@O*!YZ`hH`@0@>E$mjxlcauDmk{O7w9z%2|ie$
z0F6dDRx@&Aj89G&i>R~UN}eRzQLiN$RVc>)u$|;hp6uA8u4)XTzO|4luHSkb-}B7j
zSmyFC9Luqq&{MiM%wVG0j$}Ir4ROdkRj6`D$He7wb9PoMsoJS#uUc+hR4*vgwtNb^
z&{b7p70f)mDh(^?{Mo^XF;Qv}y;2(6Fnqr;aH+!-^<KE-z$infu+``e9RDLiU92hg
zZ{7F5NWb5+8QmlpWk}_pai0P&O1n+b%9ZarRh&%y)Bj2-=oGF`{(&l>N+>&lM)>jb
z?*gt=)AQhYqznpoxh+PeyKpX<iO3e-TIYejU4YTw*@G<j)p1>H<46bqZ=(^$hE2u|
z*Kxepmoz}dF`D!s1)_zzW8B2@2Jq61ywIa5guVe_+JcNog)?KJc39g*1eqop1bCvo
zlJSZQO>(FKcjxLI1=sW7q0R)ocbMPn#=QTvQhaKKIOA_N10WBebMs`l-^r4_jY^3O
z#0&sC0HBd4)GP#m+&10IG49OiBOKv@0)T>C6Kb|8WPlAuZUT*Qv@8_?j0BcV917fa
ztiB~=hkhYR1(j)|k*GqnfhoEsP*hYvFVJMvwI+=`6^W9B%-S(xIa3rVL6x&4$qWFk
z&A=^|X6>lxRkPCb@K7SvxC4=ycSOYk4>beSqX=M(NvhJ+R2mS>%16zT&J^9oS&_w9
zf6Dlr%CxhssK1TQu}vaDomJ~J%?wNL>Ccb{Kz%|{tSqr@WpT_cay;eaB9l=4jDrX)
zQSX=_iJq^2Wsal)I99>kUM)~07QRV9zo23vrPijFq@6lVb3H>_o&jvmc%Sb8&X<@3
zKljN1ikmbcm{WN4)>^wi%cFYctR-mf(nqwDK$$=P$Py!sKb2}LQbm$S{FKaMleP8?
zDmkKH6+mJ~&G+^-|0=b>7C~g`no2ZKgELT)sk7Z!>;#lE0&>T$yu=E+jCa6t1Sx+A
z-@$M^YGYDvqrC)5nfmjxW{<Pt*!4U%;=Yn)qg#w|8T1_tkFx|M0vK!kd8#DQ&s@4l
z2#2{SZVY_qD_VLa1sQ#YwEa<TwJEjBDWQYx)kc#P0!cK9Fh&BOPx=e1jv)F&<(F7E
z#DytrTwy&~>@T+c0!*a>7a?&&ywAw2>!|%Tr=UKea5OOp8XasJ(?R2X)p3m}nd%83
zjWsnzZam~fN;R0A{*}m%ks88xMtHQNo$mnZFb@;U@da!tf73t;Koo-A5Cs)#?hrag
zX_acw5Lb{W-#OXZb#zc1=Vjg&?cTD+J**;74OzG)nfgO=)MeC^dM0vFars9#$)@_#
z?`pS#7<h6&sn9}w{WJq(Rqg~W*-dLa_0Aw}-VFe$hX*Nm2K`&f@%_Asl{nFb;|B+i
zBs2CTAL#3rqc!`Ut4pA?F147urM(BwwYQ{no)GqoHldn$!AMu6c#NRQ7HHzlv&dY7
z0UB+;AOP#Ri%hG=`wW@myQ-&mDc(sL)aQP(%2n<+GaN%3@|z>fg61oHbq(Jb$h(6L
z&p-P3$=KtoehHEsp9>dIn3H$N+%@N&e#L1)NRzHHgucC#Q{j*vWbB}?JvpvOV{Y=6
zP@O~rZkg71x$eSxJT+wLR4+Lfmg~GDs5wMJ*t0pmB`+moo@SgQq<GbEu1U1&>kzc2
zyR)!arn@clUzJGy19^>FdA54+=X!H}v^*&RYUXNqZvvTwxY=XD&S>85j%{|0yY;sn
zuYxL$kKx1so#xH@gl!YEO=;sw^+a`E8~A-8;+WjKu`nJ>ASX%g1Sb}E7e&udPGE5b
zLL!iKd?BMkoeqrv$H%w11VAW<ZUF&J_j0^@*MfWW`5#RgSxiVDAX@I`f1M9KLPQIa
zCUm>@xIW;WM94dbM|pyH83UbQ57jo0dW?wVsOv(CXW+EgkFFxF3&dwU?k;&%lLo6&
zTz~KNJKp>4M9B-|go_8O8j9@BUcweC54re1W8d2V?$5qOo|_f4=4ty}-1!pYJaN+6
z8{%KK384>hQGDkTxMPyp9nhoZyF(wu;jF0e9+sQuQGe_m?c~E2+K=4jx4=oM&iI+r
z*}`Qt%qto_EO|8vq0bK?5j|S}WCE`48tclK7RxAShy>nZxTS>U{fwoExeSdB#h_)~
z=epgQLaj%^U@<|GmbWmc4zdN>y1&6tfCX+B7NJ9T%csZO76CLS1jrbXap6G<csXJ3
zUFzDdG<xatJ+^l(m?mo9EgotQji^RREw=7kQZ?cO$v)CGs?j6RrZ;er-nta>Es^Vx
zu5shwvYZ%}a)=d{+EkpRag_b(kKq=IU1ANi#-~#*U!5dOX2sd5jPMm7y@QEKaEp`S
z2?GRKc|T|X>#oExjKw~Ahx{7^(Dh+k0FV*+?lz)h9q%XDo2la&6QAIc4nh!Vy>Vqc
z$)Y>4KzBX3W<2>X^2iyu*Duv~VFS$cGNuc#CdS_iu0cCLlP2XnCOgxf$!T5vGLUoi
zr6@?0&rvs<O7rc6GH+&8GVuPaY`%CS-fNXKA#3(LjLe)TE$deTjdt9e;FwKL&{<Wc
zMvwBj6{7H0*{d-L>@O!$rY-cZKhis0pPRBc`hZ+ajOxTJPI*M(=VzgP&)#2ScTlS^
zKl9vB;1f&i6U)GqTVm|zm-$0n1-Io>M_f`HiK)<Fm=RH-0%ZHt+P1`4N<Wyv7#E$`
zsKr2=A8ws*i$GwuCL-f*o435&6!5VjYG-Y-g)HB^!~~~GHiWqAmg|Fhu>_9p=o|i%
z@Qh(hFH4LE;zm4L*sPeCMIGVB<gU)9!Gie(!0C4I1{&l5Fk&QtiGW}It@aNNgFb9E
zD)lF3L7*gs1T`kOE}8^iUPE(L6KF%&<w|<EmQjwcawJxL#8j(A$l{&s?o#*a_rUwN
zsNwW*=`}dsra+K~kl0@*epQ#;3(qaAH(_RS=ySeHj<V>l*1LvOd|YuT12hHp6KV@8
z-@YrCa&O!f&A75a%>S+`>2E5>HBYoQPvTmO))2<wPe}=l9rD_^F{p~CebII{e?h-c
zcx@TJ=@t{5XF#1vv03?HgRp|o5w@XZg@s+Q)$v27^@pcVt=gIio#cw0ChzR50Nr)g
z+R_gZn4<45fxVY=!rHc4*o$uKe(cws29s1%_n*Cu=)QP`raKP-SQhG+nZ*-}#WM_P
z5)s-=%oN*HsDy!Y8w7N1#Gw!4sXD89#o%v~DyaLpOsB%FviDIU!YHOACH&OlK+Yu-
z-w(G_8YswJIvixM8<gdTW(P6>7&0Fy#);2a7^XivyuR5+gAkd7(EWZS`fq-y#S1Fo
z9C7a91>87y=eP-cVhKI0_z=*Nrn$k=*718_EnhTGX57#+L}Ak}BoJX$tYg1kj9VYe
zT${%Hed+zdxC&34d^cI?^@88i?=phu88`BtvX!Fmr7Y6Oopn-}6;Aw1){E)xseJV!
zM%{>>L~;hmj+^Jek}C`QJH-Xujf`)^&+#h3i&&Y??ULvQVY0P7Hy1eOOx+A0GpRm4
z6Ns6O-kO~R8hNd1n-ax#)aDP?=cA*SzpO8JCCwixA#~$q{zVpe3QP+#yc+sO#>4WK
zTglx}$?380i}%1`Gx9-Iy2Afh;2~|5VAeOcuZKX+`fe_oS{sUqv46;|y~}=ZnksIw
z5vbprH4c&!aei?ryApY+#xsVw<sY05^DB6nH<|8^m}YJsoZ(1T>^B%$fdMh}g`5zD
z{86pnx2-nEssKzVyw32SHK*SQJ0gS+Xv-D9(Pyb+t$Al!dHslY>uPR;iCz2g%+O(P
zX0GR_tGmr*k)vF^5#{1s4Zq3Q2_cq0K9*s(_<Of+A8!rNY`GWj42<ub+T#GFWSmhg
zw+6SK1|BwXZ$O_tS5(_w9h>Qi-IFq#eX93bH0@J?@f=6Yu5Yfvs!7k)-C+T1e>Ttc
zD^_@2>2?<65c)A|UYQshMUk+vUOBwfajkJE@%C%*#=%tb*B4Peld~u7A9IHTzJJ^F
zJ3R*&;mt-J-ZpQ3a-wH48lHw@A?H<Wd()((kLmd~tmCJ)22^$)p=c#LnfjyO1KkUK
zgSDPDo^o)QEth<MEXDt|BsPyt5w{t$Yg=|1-td$NjMShv1CYoNTrdP4hqOy^K-@4I
zNohqbFhYIEL^;AX7hm>E_V}tYMi4Oy%*U535sJq55Z#W0=9?4>n@|-!I;#;nKBcNV
zaRpDx!ANvza4Ee$k=}0$T;dN-P!&49PnGtPqSjR)p9x0NXzhlRrgsoGfV_#xN*7uo
zSt1fyUsBI@CF64AEB&o__@B*P-+Lq1?9lPySoSY73n$eaf_91d$!rj-bkOW<9Ao$_
znw4%gER&4N5ZOA8lQ!$@-6X5GV&)_c))DG5?J~=ol8{vr@@je})=t2H@aSZ=gVQS@
z5=PC;C4|H%aA^%2Ma|}#-LII1v5Xko7vou*<A#SnPG`CK-VbGAYcSIc8ceHOkk0(c
z)|DbNtBKfWxT0h++c)NNeE9pXe8pE2se3v}6iV-WKaD?r>fBuJR;AtvD<)cx;^sID
zz*OrL3gJX_Yg}N+>WB-q8|hQs+*i&tx`ehEu>P!H^a!w)aYh$u_5Rpii927~|4cfI
z1N-=QodqaNaJj}Pj9&6OCyv(nj;j>q+qBjI;%cr}77`s_0kZG^`zqgG;LPR*cycie
zLNM$!$!Ke~@PZAQyR!Um-^7FAVh~0l9_iMT3aFixoD?%X13v?sLuh){$z7+ER<M|z
zCU!A8{*I(XW^nrLrR*bKq}ZT??Nz|uT;AD#!D+PPX?NZV;1tyuz)1{ZznGI31!OOe
zH@5axIHQ!V*mQ(?v9z&}SRGDhG__Yf2%#y!ZeY4)`R2iG3L~`S7}>XxV3@MbiU!G}
zi>+GRBdK-SM6f9OH7MkF$<_>leh@U0fGn@wfR#yO#t}m3#Tc^G`wSL7N!F$S<D@#k
z2>Ag54~$Q0y7qe(i*RQkWU8c78_NA*GvRt7*pf8<@YKmqlPsz#bUWG=w_lbl(6G-Q
zsixHjeJbrBkB?F>J$aSJzm|`*YL(`JW@|IH^1*eY&!&OGNhi@TZnK>9MAqSo&&dW6
zWYxJYHp$hQpav$~6WR7KS{`T4Y8Sln{3R~V4Ntq1gA0Lw4mW>^sZes`lk-raH4k1Y
z%-Ife$9q~#qiT>-0-i;8&1vte+Hyq*aq;uWB;#~FFZX@iRZ@=bq&4`tb!7bZ5O`*I
zp}+H7)vc{Eem!1JqoM2#(`Jdb9bJ=otNX5H{{`F6z3SMx-`~14NDf4@rsTczSptO`
zi;J03uG{aAtjJeBXiJ>S{7O}Lw!c&Q=szZpdlY7YBBea?>(x1q)BNrbbBo*Bq>c@X
zn^ed}5>Akmv>S_0$=qMxYykUh^Z*<AFNscAqHC+h?4xaF#JLjVCm1zHdCB4@6Z>0X
zyH3i<bQBtf+66Xu?eX9;tC9>2$H0-}_pUIC=+3-eiuXXo<lEp?o;kw{9%mN6i_qV?
zo3n2!SLS@S5D4~XoAH-{VcYYc?Sr?SrF@d%a?Dht<l%$=;Gi_w&EC+gPi&RoN3sUN
z`%y=Fp@}7-IuQpYQyU+@ASLj>zgBbq_wifB8<oU0vxR@~-2v5Y>~3YolfPdxav(!L
z;u5bPMci=K3E`o04=*2<{~wml`mgCX?At5G7&UsNqgzHONI7~m2qFSfBAt>V=r+1T
zMB0ILPD&(4ccTI#-w{d(3Kl5n9`5J9|AEivr|Wf{ulMynkE3koNyo`7vk?9_>#l73
zx?7-J@{fC5q+SV{BDsFSujbFGA{#EICI6^kgrpZe3P@kw*H(n1fjXeTyea@NgDdN4
zAc{uXv!C7-9mB&%gsScKGdm&({Fy{)jHh<PFe*;U;XPf?B7mb7@mMwlO8p~V!d;LV
zqp~LW#taHtg`_8FE1@h*E-bSVI2yUY4~W9uA#v?2oNB5NM;*3bNI*WxxK)U&Yj+s9
zG#BqALxDoB>I?D!AW{-Q$jq+3#|6$*4AT!&MfE9f%4bCSI&+`wj$YR{O%G`mM$vnX
z?Zv%(oZuiL%)2*cpskQi%`OrVmG&Apek7iCdr(ANZExJ1ppa9>Cn{;|WyI{=tX}0H
zDs8_vace*!x4B4Emio+y`bObd=bEV8!@Wr-kYXNJ_s57>uc^C2iun@`Vv2<;Sl9Kr
zG!`U~{(2(tLmZ@V4cHG0-@!2lzDNV8lVKCrKw|4@g@G%W>4g>3Y!cgL4qE~CragvG
zA<+_SzK3|#MVZ;F#rIrYP?Kt47ToDiG?)`VntCwvvD@ky&ApGhX-Ct6sxQl$oU3V>
zafA$lb^Px-@?sS2jm!nM<T)i~R&^YKErjd=48hTwp+Uv`M6mb~#^{LxGhd{HNnjz~
zqH7SOXqP4|0ibHZVe#GI93tcms^EJ%{28mSf0zx2v&~O!MP=w4ZhKKW8^xbD&3LL6
zU5bmbtH1kS^7MnmE&6rzSnzBV=Gq&f-sv+^6^-A-YOVC(4palH!u@*1aE?8f0K5Ky
ziKmSr_A=o-g|;0QZ`JbKhTMCsY%3I=HgzrT(HYs>g(P#-lu6X-@BymxB1eHD5>gKC
z?gRwoDrCI5Uc$}TKBd>DQbcQ2+Q@m8H5P}Z9rJ_Xgcigam6$K%wCMEFcb2kCTh}+n
z;QE+C#vHf*tC9D$s_J$%Sv37KqJTU)UU|ngtOC#Bpo4+9o+1vvy-!_s<lO1LT<60T
zs#)NQ)QEE1Et)`0hI6gIUzi54T1|ley1J-*$e2LUeg+c&frAY2rXeC8y%@R0U``+h
zZZ}z3e^&nz84jf!&LpNm%eX^My4cqO6Rz`ZBC}MK(QoC`VjSFf2M5Of!}~=0g#8C7
zBhpwF-%k=3q_8X6YKgP<vklQbgHG+bw?)4diI=(C6!$>W{>y!jL}@sZL@W}=&Nhyr
zuBhvW17w~1?chWLYZw&jub1qj0LhVliktQI0v<SOZQO#ba%a7Lt|_$N2D@=M@nHk|
zG+5EAt67D7dF0y{rN8g=ZB_*<*R^vWoO*5dbYiaS8P(EXv&nLkcqxR@t!mSu-b|=I
z<>(bVsP?$!DLJjG+@-H@<lwyPCU^AqZ2n4<*N(3n^*hJpmmh$3S$M$LY489Cjl;ER
zGDqSy{Y|l7gyO8&tL)A+IQ<DYmYfx0kTGST@{2S3&ew-u4{45a!wU<+dxb%HF5!>v
zhG;mmw?|KlEK33)p$~Ctpsx!q-p^R_o*W7j-%Vyzp8_wZL$eFdSzb_n={N_DvUKo8
zgaqSMMw1gjiQS6m1vbb*JPuZ$cCp*``%ipY{Lh~u0HuIq5fQWfN2I8|XXqD;<K$JS
zN%wY~8fNxxY-~|@C4d?6(ga1E23<7OrTecfIrnPTaJBDO#Yd*LGQDo3em(r$3yw^+
zFl#^M#(xGrJsV3X`BwQ|bek!tYht+aq;iX&G3-QDhJ5+em@tqNM}93z@keI$vp}cz
zuJpsv59&NPJ`a4V+Yyx8d^&2jwU&h2%`ZL{VR@?N@N5~$=k$B#-T8M@_}|^&Co<9J
zZv|WB{vG&a6n}iL;?d;!cSuM~rFT@~&}Xz;(E+DnjO}~XAJA$1sWDQ)0&|V;`2L^M
zn1F=X=gQ5`bsx_){o}S>XZ4>^zv@4NTl@Mhn9(xiC5BFA2pEWrBH_@!xRzKrE72x;
zI*%>SmXH~X$6=y}F!4&17dTy7I33pcCU|Iy9y7X*wv3K;qTD7@U*;LpMS&ng3=Gy}
z8_B^Zb41rr9G$K<Z3re`1(!5M1~oI{$g~VF4w%uzBNj$DnJhvsvYU2h<bi?;CJ}J3
zjVU(DZCPXtB{WB|y<G}&-(Wq2`P$yWS=>ZGVJtRqrhf&;Fi<{a7#?Abqv&5?+L1P+
zMb$(uvr?oOiu2zaPAE-Q{WuT2lvhkgnC#+@!m-Q%STE;*-)`_5=~5Vlgrx-2a=2^B
zlv+39>+{u1&65m?m}sm)G=PU!2qgS3md9*>QNV@o*IOYFL9@IJCj%o!Z;0I3kX&`m
zcEJrebM}h}<#G%0m=Wf)`sLzFT{?sWn|bJj2vj=O+5EUW^z1JVH`1;O4J&n)UaobO
z`=gC&$J-#8m3dwq<Arae+A7=JR_77c(0|^`2vCA<0Xo3UkvQgDLlH+o(UMUCGuKN@
zTP#Dk3j8I_{TC=lL1FI=?muIKnLx;N9?C@9Ph$Iwj!6?VtHz`C7r(~fP>$^#_$NQg
zO(su!8o0_9@iwrFh&*RUxPYs1^u(FjpjcQDBy3J!+Ya#057^iNB_b)YbcuLFfEWU1
zUbbm20JQ$&_WLP@;iCAB!a*eRtr9td8JKL%1_V<95QlzxB8F0W56ljT_Jjy`=NOOx
z4Bh6m+al>TI5;ASjx-Nc$FT{-QQ^KUVD#u6iwf(jTSbA8tkh>~_4n-Ebv)PH%*tkN
zx{HE{qk}A~cRMTGyn$x>+nml7HtwG+l>iV*f#}h_*}tN9nz0UVi9Q3v@NR%tCz)Pk
z1Wv-ik$Jx56$|qw<8&ZseTMB9UJw0B(???Wl0V(cb<ZY>_19NAfj;^0*!pf}IC}$K
zzKpo!K1Uq52ZWIW3dY^y-5nxytsjZsF1Uw0|0I}WvwE%KU)z}O(QR-$8JIY9$Hc>@
zz&(VO(ZO-YVblDvO_k=_4#W1&qh^}>-jFIkjMv{>SouA*>{vx@4{y5<p01Vjo|Q=~
z(?FGK7i6`sU8T+a3T4$ns>P@OUfrxtZj`Vb&`VMU5d;8__QmxQCE%oc9{#acba&}Y
zc2k<y0Ho?>7Rhi6Pp9MI?Do6oHKG~XmHNx~BBNp)UB{g{EA?o^ud#59__>9?1i(cu
z<y@`K`BTlC=W*};ZZH$TfMQ7Sbkiv3HQZ#t+6`naJkRU*(x^v8Z}!86a2aGA3<(4i
zN5KVo0QkI7&E0v2@hNtWZ`X8kVd?bP6gYApKmpT9)JpJa-}ojBC~-Bt;hn6Jq8XB2
zF@mkv(5~MboW@`fapa6~9bPoS#dFk67eIHq-?YlheZY6_B`ngq*jFS~ZTW^iu@*dq
zL1gJRh>Zxg;;C3&DF7%g!_(j;|HUxs)+Sb1{;RNk2FLvXt35N7`mr|2bc9ATrNv)L
zw3|`DjcAg&U)TBc)w<M>gHN7YT~fYuN`-XF?mk1Sbkixvbu;beO`7s*hYM%l`JIA#
zsAY8l(vO2&S5eTCp4swmm8`i{RPU3?CnHj_GNPY3>YmZ?$C_7(Lf4Ih0pg5D02;Q{
z-;UqBE|Yp)z!Kkh(3)Gf<GIyWBGmXpiu7lH)YaQx7c;HkwS@9p=$u{nGc#U!@P-rL
z+g{Jo?K?G7UwrLwTA%ritIhI&=ThF`6{Uu0DO&8_C>&?~i6qkoulspuI`9YE(@eDB
zmt82)qDFH_K?C!uJ7v>{4`&}q_nC>dYfiS8Y^q(MRL)2emTC;(eq19oE2~ojuB!mu
z%MJ)GE`;G?#OA)d6!W$HM<E#hpQd!`&h)U<2{_Yv8yOy@O^@^rRRPgRiJlG91&)*+
zRBnhAk=Y1oFSH6LMC62*)8Gu3iYT@Bmu@NF#C6|p>gISuQq^TxGP-2_<VZm<x{(HE
zi@c#C#{)Su@Al^f#61m)|E(z}Li+mWSK(QtOLdT3N~`{k>X0(x>)8zueG=x@y@L~t
zg8ZR?Kb>Dh$o_w`f%Jet0ZLOLR*tF~`v^xqQGJ6T&4He1f%_Qx(Q@DZ_!nywXkrYg
z^+PWI;(c*8Xq_<qe`TaD>w(`2x<6_G0(=9X+AzvVhx@~&GfZE>21nJbX^e`4)h`3j
z+@BrWeEsPvclzdXUYQoNPAXbmo}FrwyzKvG?1-T}u$vvosw0=OO;SH1F+Xp3YjS+G
zR{l}iGVgT)$Mpu5L^6NyGTqv7W%kSSw|?)Ok5(Cu>Nc^QP62uBI9k}CU{Sxo&apt3
z7HC!u+|p#o8uSVdgF4@2z&46nHHt3p<%J4zO`1!1n2QD6?-no>CXzXy>d+NIXhJZh
z1(!=!EaXEk6X)WEVS)wAx2yNYOGGD)Wh+@S0S{D%UbGQs3A;FMIkA(Ri?cu##eT=N
ztpXC)_4S)7Y)Q9POld_{{p^UCO=OT*rL4ktYN!?c#c_8F)@ap|`!D$@6UaO;tR{?A
zS4$Z*%hGs-u8#jMa09J8ND?jo%F>bV-wQGbSrptgxnd5|<kk8!@%`o8cb3zZ_;VhW
z7Mu#Rk`BAl>G2di@4FneKs!ZSPt7;e;wDK_uFjcRcT2#=RyRJd)!@G-dbSY%wN?x`
z1%9E=E0>GY(pHYc&?{kXD1PhM@I}lTUVo@yY|v^!Z(=S!#vX_JFp-Ad8L<>^leY#~
z=`h_2PPiGa(*<bLWhPsQ+go}t-H^V*k{F7Xw)2Pxbx644uy)0kZH($D*Y<X|(C$)*
zQz+xLCqKl|t?JH=<u%Rz=PAygTUsb^>$)knBAjOV;I>)F$5o~hsKD(Qh2Buyy}MU;
zH*GDjCdSR?${G86Uo1k}aP~j<@>DT?@5A!Dx5N1W^h-Z=Ox~%@XVv%rkaM!}uUb|N
zUt@qQNju<D?X-hqKHOA|A$tWkb|lVt{bWG{{K7D5x@7u9Zg2=0u`C$WwA@q-@bIL4
zWT~vKMgw2|<>%BYKMHVY4cF`ok9zkDZ^A;ibaMSke^?(T{5d4TUb$##MH)%RE%KvE
z?8N81kp=TgbnQg<70~aq@?+r>z-hRdIRVFZ8ZI2ubD{c8RHi-<PYE(7P_ucXJUSj!
zEkBNtYHg#$I`Np&(kDKAg$H+NFYWZ8;?lV~gotfOW=veum5$sbdL^1Y=vcgy=Zxmh
z`0x%xb5M3wQ)bF(6f+=LM)~L{Y~k89B#%>Ga6&F`MAo|>S%sE=?4-HT*RCEY=IEs7
zKU^*PPqE}~ONrc<KIhkD&#ws?%ITueU`zxdn05`+{`}SNxUPsOpHmU*YXJbFyAH@B
zI3Yhbwz%s*<+s}+Xj-`ED7ZE(Z2EoK>NnX!S_={5=VEz^fx6ng+HlIJ;HD6u8zJzl
zCU@ASp4rx#8As>PBAQxbD;R9JU<!|&nDT9D?8b)Cf~b?O-_MdDpH5W~DFd#_xR?||
zb4wcN+1I9~)0){o%`s|GK(+p#5v}6JHBVH^*t$Ts`2j5*63aQv3MMb@39sZXpT(=y
zrgtSg0Zz4@B~l}j2KCy$M;fV}*2yXLAE3W6ov`elr7Z@sAfm1%<|EEjln2$=jk>(+
z9*~Y6X0-xO2gtOxOJLGDxZdrld<%q)k?rAN&6)4`XMJ9`bCw*{X<j^O2ihQBywKJ?
z$)=S=7ae{OMg7~FwWZz?EICkqKJn^&k~X^Gmd(6<w2JrNc`J>{favGu1B=XIMDbLb
z^@p_Vdn~Be`Pn^vFCLOTy6zsV%H8c87qDGWi=j$BTUk*UHA;*n=cwv0J}@b<4C$}S
zy+(-t_B^RA7)V0IBopW}choG7YY#fNn$}N%dhtp)eRU9h&=6fM_ns4vf-pb;6O-W<
z+Ts*GpmQcVRft7_LF{iTsQ1-I&jB4clK7=<`+@zt3LQdI;vv1CUi7cR9)Ie%mW`yg
zwmECg(9uuzns=YA*E0%l3HUFaiKyca(|RRjsFG~gc~JI^de=wQ^nUVokG^|*7+fA!
z?|kyk?^yiP$sTzBGdhh+0eMD?m=cN^sn=FwvaQn!#^uKqnPTtn=L;6a<$L@ozFcMD
z6=bVkMtiALQAzmPZ7GkTKXIz$vzoshP1HZZQm<RUzrUTi@_I+6Sh?O8@)2V9#XZ>O
z^;wkhob#Ok4{!1PWqp#Wt!jM3J|yPJ3m+p0+Z9IH58wHEiZ^L~ioQ8hRS^t}^h-6>
z0O*iUZ}LavX^nhfm8>pYk<he}37z8LTdtHTx&~46%#W6$$uCLH8t~Vi`{1@zPwV$s
z*=YT>GJg@7^ltk`l15nTS`5;%tcFib#&M|QMN&5_3!k&6{NM_J1AP_ci35(b0nsLo
zDlccolhsb0FEVIF@jkesYS?Z(<F2^)es9Mbz{;Ji+-UwanL^Y~K{9*1^(6=`2s9Mn
zYO4{YgDEVg@a_n_ASjVDufX}`1a+AHs)TS=YTo<?225OB&Z(Xwg5W*|P9wheQH160
zl*8U)!TZe9_dm_m-uv8cIQ~TP)(ygjs}6+0bM{U{)YZe)_I#BW)`s=EyYm%JMezu&
z7}X53qy3M(D*|h>cX}<LgF;YfzpO)%BTFD0gp{);T4-$!<TQ3&Zh336AaXDZc25!W
zTQ&Uh0TrqIyXV!{Bbniy^gp~2fg6&hEXqk{Pu{8D9lxI63-_sSh9bS;FPc}q;fk49
z;iOYSVS>hbrr?asmdWeD-kTC4mRF|ig3GGXE3+?i<SJRFzGULFH-E)QTPoZ0p4FbA
znp+q-u6ravXW3CzR!}SDP)!{)tRkfkdLw=FLcSRyzGu&l(Y>+I8JkkDlm~JCMnKu6
zinnRW63P!)u9;4Ru<*)R`a)CBA;PK1{rW*OHD44?i-wMeM2X|vKL27Y4oziL`r)f4
zOLHP6L3hC}2owZeEH}Fdh@ayno+}lrSXEil0z%=2!}aWi_##v)sM2hV4vcUN+!zM(
z6;$7H60enbk$NLUuo;PUc1}UKCNfB&rEr1@>;k9SH1)(p8GH8viIDh@U%W`w6;Paw
zop+T)c)XWZFshu}E@FOlqLzeXj?}6l+6EY?Gyn_SEr57V6P!#Vb5IR^DhQTjLIZQm
zq$~HmrE=v%XgKxF1*z$~izoAg{-akec)F`TEAB5!hcu#ZqP&wc`e59Ytf%+FpdMD~
z&L49PCr)E!k<inPP*tTJ%5<3$z>~e62SwIkvek-Z)<xn;p<g}<f5OpL{@&KI_K)!J
zY5Tb%L*$R|a6a3;9}Z1^o@VnQxX}NlPobs0@|Tptv3ItQ3SqC3XkW&^X1x5wR>i*c
z9*^4lW?GcpWe3&(+g%oBs?O*9q_l(B(dD6$^i*T7?(a>(OofH>zvqj5f@j*-x}UDa
zJ!_nQrO~M%$<nLAW+B0>dMIoEvMe<F_uF^D3cnR;-ls<I+zy|syQ4UxL0K9)HPvLU
zIDEyH61iV{iK<iq98mR$WIr@+{O$go42{@f^0smLBF49C{UM68T)b5B=lJk0F+qw7
zOn>x?ZH&PzSP~f}<Uh>=Jn^)A?sRjGPyov%UH(Rs<7Q4UTjr*X<`|$SAlL<q(zLNy
zDKv%>BpW4|8gc~yi6X_C2a~<nKLNl+fkJwjII#s~eqPr8cm|{p{cnpwwu^N4g$jl#
z`loKN3Ng{yqQ67?V#Q)8klEx1Q7ls;OJe^ho`zD&{MdGgL(Dz?*Eb>Ei3lCvsURWe
zZ7?_zYe1iFDHI_S&)%1*E!6swV7+~ppXT?d(7t?DC1zVf=r<Ol4M}_Gki+>JmZcY;
zoMuLy;^C0?>W>P+fU0tE+>hVj3=7IGoGTZ@J0QnKb0ODkj0nAQ-`Me2HgoKcd+0dB
z(X5Nadr;S1A;AmR9aX9}5$mp0an01*rlo+~>VCEDwW+@<J|DVa7TbBv3^GJ6+ELn8
z5e=CMetV-Bx%3hG-?*vo%wh@KI5$j{W9Z>8tGrmW7A=|r<m{%T{nPc-=IFF=di$i5
zIZi^u12Ko^{6S<H_SAo!Z_MazoyUtL8hrHvAgYNF1j5V6faRiW4WJR;1<2e~wJLaP
zU4UxyG7IHl$?asXRQTX!5tq!E4)>`x(DT0Ww9~rs>YEz#IB)9;)i?H>p|;k;-c*~m
z&YO*4Z|a<Ad~Ao4E$Up|>OJ&)?A~<Rw70)$2#E7hnv|ODc>AU?eAvhFXXmZnU!g_8
zZHZ1aYPJKM7c34vU)L)5@|{X0kTACDiagHH-hxvI1@NHbKf>n`bDq&6wLA?1=i#oL
zT)dR$G^RfArOh(XEw^2_D=$|qTi>!bz1hDjtOlL5LA=^3Z;;iJURD10mae_0A}FE8
zAp?4=X^>IYn5eeeB><p#H{7Up={6p=&eF9U*PzPXMf3lQ-B=qmKLyX0O0fn9Ua%nJ
zQ^;v8@bAR~(GQ0SnZIhqB>-CR+FJwvlXAyqtuy{kNn!Q<Mxei{7gI=8j#=`y?u)`5
zNr<e`!+qL%i5*8Yr4}xJ?s@j&7Qj&6`vg1AQ}P?$V-)}S7*e=pL|Gj}YevBzX)X+b
zNr2>=4Dm3MZMy2GAYDF-D?f}x#w5l3<nE+WT#<PbEaS)N4-aBRUl7L;H8_}2=C-iU
zZK2~~IT3Ll(A5Nr{Aa&_0=__y>bra!tKDzUf{tr7a)>jcFs%Znxlag$cGr8puK*MU
zgv@b<q^38s?aE}8)H_3pzd>Q#He|~vB*T+W;A+3yATCeBQtzLaO-yqeX}YWIWn$lO
zm)4xPrSsleEg#XDAFU^r*s;}o`JUR+{@HKfPyEQ$xT?pu_o=*Bam!mu@^oVGi<let
zkOr1iC!Xi*ks<Xi<KUNWW?EX{R>c3N>Vdng`VUv%^oF&61zriMdta<!iHEIj-uA`5
zhb*<XU-4o23>n;A+jBh8IBEz$9=&H@=>5XrNU|57<K6h;ORf|alG3#Pv!M0*zi>+g
ztCmdEe~mX#mz>Fjxe}u7i57&0t6-Otgu+T8b|joJt`eOXM6Blu96QHm7NfoLcjKB>
z_M?6wxAs7@3>Zm#fz9u~yE_HQj*I{em<!ctzs<~hQR_I=A-w1LEpw68{wv_*lsnbj
z@dVVmG-1qI<1@?Et}AaInHDk=`GbCluF=1w?Np@74MbDb$^<NN9NXunF;s1!dgi*z
zdND5zRdmxH5E0koe4KWxqs0Gy2CHYucV~p^yfPD}?<@-8%iI<-`|ZK#SNyCqW{kbO
zLE2G1q+7s(wMM%-kBbAB@2?54SP?AcF28p3M_f-CN7y-7gvzz_>L2HYN41NLsT4la
zWcp13%(|cQ(FArJ`bJ!^9S}ekRO#^xi|Cu{f1ghF(f%$xy1N<E16)gJ`W932Pg*Tb
zqIds-;cA6!!Ct@i0OzAd`>UlMln9^;g#OqPII<G`YefJ?F*hn=;<PYGOY+!VvKpap
zudwexF$ETjTNfgKw%4*vE|Y^jgC6uQQkS7hs{O7K{Z7b!8YNmjC7NGnMf@VrA7C)k
z6#8AiDl(I{D<vBQ8vuzAHWjrFd9_*UH3g0O#|Aa|JFoXW)IuF-3tDT()sX3}$#g4;
zyLB%vDWyp5YpJtg!~?Z869E!R-E7IUDi9jDb4dwG8$C8C2O`SnV8Tu@m(Ed>@7u?$
zDzX9xftj?)Y`Si!p(FqviF$RtyyM?(4abM6LRdu}q30$hS=<ssk{uesDln=G?voEJ
z->Ul96`#Hl1J1na?gDgM#?5=N2*e6yvJJQS01%0}NJOmjR9<+XzTblcs1NS^0q}NG
zcZ^+IP|d|ECtrXhaBb`ol3ERb#n3+y9G%+(u<a6<c5%f)xX1Z;r=oPWqg-wruscbA
zSWv}-fR_XGUFROXKLv5@Hi#^T#N2;o@|qTg9Ai+#I_btkeV(}+vJvNtBc?bn-W_Bx
z22&~O-Pq!MTj1x3+}LUySK<YXYkXpPL@sdbsmNIJ=ivuM*tk}#!(?u1jzPM*fxF?T
z<VyqMl7UMRVMNhT*f6zVdo0>FPi~htP(7j4LO&p@<e7CMHv;cj`t;&hq@^;XD`ga)
z6P^zlWDd2Ih{OvmPjK%Vy}F%|5Cyri8_P)s8~|x12eI6B*uo9k?o)yndXlJ{FgC{z
zK^jHLOn9hIWK-3jKUkiWKEe`Z5^@~I?F~Wg7X1Ev*W0Eh+M^~L631I&(Vg31->yl`
zq6VFORKSm9?mUqDgwoHfE7s~9<xx|yiP%Du$+RdI>`>kW2LJe=H_h2JHON#Gki4v<
zpNPVDzU<jz=bwSZ?bx%vy_@hU1oVK|{qcv`;dadXCkfZbH2fo))(c-pG{Y{d4C|GS
zLM?z?%P&qo)3Mm5a_zBawgPM*;Lit2uhy>6S)~6cGjHfNzrn%={!3;}ypV+gAQ!m~
zeGKqPf_SY3Z#f!<P2$4fhbVJU34rH3gA7_u-UW#CtYAtse`N{ez_PKa)PN&!8?A5-
zbTyFb40zxi3u>FyPt^^XrwJL11E0<zLh0T`%$}|ZLqjbfW6vltWkMX5B5%N_Ip#*5
zbF|Sn>O29kL^U*S{#T(Tdt553tbxLC97hCDHWbfAO5w<hx${1UDNYVvr`b&g-0Yl7
zezG7OIxBVahK%2WERCRCS~mKrC6Dal9koTfW=oAROEbzmxHw7WO%4;$DjT~XT~P`-
zoc94Fv&_vc5Uq&B7C4^;df7^Z^xD}M55|G?F-!6vZ|F2Iu-;o@YpA$=b4keaO*sC|
zRn!f3z`W!~UY})vs<9%=u0{7yr^McZ+;E#r=nXEICOHK02W@pn*4isHpEqrZpZe3<
zhz4O?yy!m+cerAy6bewIY51f@d)=6UtD5HyAC04^m6HbG7UNq%<XhLDR`<1R?$LnV
z;}Wn>-o356^{#n%dktJ`{FY5cFI|l(czEf$C;{UKiZZ=K>Fz4QvI$<vXnvg&*V7PR
zG2@(vKXgWCSKMMJ-EufGHyoIeTQ=v5!gKA@RR-DKG<^+3;*k_uBmytyjElmX{pi;F
zxdvQprBRtm_^qG^%(?;z#H$pnyj#*!%e1pwi>cu+zac?DMsmlkbUCTK7dpBGqf{Ya
zDr6U^%os$?c?E{TcMZQUeJ^ljQt2|b!4ml1ZmF1SZaC~?m1UrP7a-YyiX-GE*@aMO
z)s{Q;BkZ9r@gt%fO`@@5!~A-6(@|qeuRlU_|C&GYd{=h!370DEy;Mw--g~&QgShRQ
zL!iU7EX{b__$<w}`C`<<Uw)exaRb-%3M}rdPOmkZDz;6_Jpv^+gx+acR(t7lE5`HI
z9`M6j&l|te_iAwXo?qoYKW;hhy#Z{5EdnV2JqMPEHxIPYs4v05>}Nz-m#1vT^4>ok
zULOOm-(guF51e!wa~kh<%DwktDDXp6OeQeG?8{H+*NSx!gwv#`(<^l+?W0RS?>W8M
z215jJjkc6;UX@}n{iOz3xc+~!<jX#{fd`$*n{f%NezTtsWA<OF4^Tfgb5q2bemU<(
zb#5&fC6eX~NbkFQ-d~?{5j&+k9J3Rwy?x{LYC;3uD_$JSdP`1Wn$iPeRftpAq}YhU
zG?QnGfD~}g6Zjv{Nl@Vlr!COdZc_sQfApk?*Nmk2c3e&cxLK6`&i4iLAc6S?eoL~z
zfDAIG+kks^>-cy7HbPn@0!J(pu9j^*ItM*K(jlC$TAkkYiinl}M^MmDuu?Iz7~9@l
zc2ih)`|~u$;+I3KuiF^Pt$GVwmDRdcp2WclT#3;}pOP$pW#0I*Z3X=ZXq+i^DY+T*
zk@3;?vHcUfFN#(pEfRZoKW>{d<F8GA$QR1wnA(W3nQ01<{e+<ACfba+vs!{3ncT)K
z@HN}azTm1~91air;o2~FqTap!(u`Z2pY#krX(VpfVZ~3MnnVfU?AHkn{sc~mRr`6+
zbP+751n(<WB8>L9jBvwQ?uhu}!`@OfFrLOy_&A$;rV-#IKN1q<VnHT^#M`?f@VU9|
zY@S}M?(S&Hw&c;ap8!`z8mrNIqVX5cxb~sUPcc~|xNOZmH$^<uk6TB7TUT>8_TMfs
zJ@KN0<|xc@C0_Iy7+iLBUrHaq-ZB4gHxWj}F`-svA5|ZNc53(7Wit($^Iclkh6~P6
zwIg%I$NI%@iz6drWP|Z}#e}}fy>6eRpd|bJEy7)@V+r#<Zo$Xuo7U8rEnYqCHKC>Z
zHl&IZyYd2kU=ZOm3QUu8HgG`imK`0umn@9rIrPsh8F9ytin+&F9*|=NG-DRi>0O8_
z9Q~hsS8blm8~UlQFGo7wQx5ZentHgI=f~7+@T&Bnqa^k2Hz!KGKPmVwCd70dDma+r
zxuW6!4&o`E$QNkV{#7$}qb5^W!ms~9EZOit-xCkb3?NnmCI)FJ3}5F;2yaH-mJyj(
zW;~)izl>iM#&-K5zPkgsYy%hkY)d)JP<RvBukZA~OzwU8DFAQ}{EA@0pOyp&lLAc9
za+!Vv811um6}-^0?@HX@NeL4`HE>DiP?8$xx7_G^@`is((=#6#1bcR5rW3^RED;n@
zX}KGuj}A&C`7n8JhV6D8$aFHnzLgZay?U8HD>-{67~oHF_2FsatR@xT1hEI=6qLUg
zzXaF)qveeFreS-ZbM$isHuyy2X=HZ7`eqD$o;!N(JJij>^ho``FW8tG_op8Ppcacv
zuoPGX9^{H+A|_=Qxzxp9_}SUj5?e9hnFh|li*G83Cr1ha&6Q|Ol@I@Z|6$G?x?$sd
z!-=^b^MlLc$FOHeTdBLlQIgbk+S|Wwo5&Z4?FOUKp}+Khn$w2<4I@}GAK5++)u(=K
zd!1mA@nbYEcqwMaOgW4e6Abth>_tugE(r_!bT{tD$h@x84?B;;X59m)S>fQSp9&QJ
z`<H$(csO9nZ&h~i+c?#nq<Prf3X9B*_vrf>@*mhMoY&h!!;v-?k`QLxn*XeeUVpOw
z*#M3E_3(&G;jH;5lWiw7<D0(oCmIn-$h^~vvxJ@K?&8-cTz%6%=06pc?ZU%<@jl)$
z?+W?E{X6@4;!U5~=zxl%1db=+-^&!A6leghQc)6~dVM;-kF2@WGSg)O2yB7s6{gk4
zLb0QWV5h~{l1v{o7O31{R(29bdmG*~de|f8&xShKK0QW9Je({pWrrn3ReNgpCFp(W
z9nJi6(QyRE=w@;N1)yi09?(W=mDeUz!-{yu_20I!+4&Zt>KwW{;YWv;E71NAeD#uu
z-KULT_YLms{m}3{pNfvMvN|6hg&%D_oXXfr#1Z<Q3B+B3j3u~!048(S$_4QK9T<<e
z;{5lY1Zv_^z%*?PB}0#1{A6L2);-Y;d5SxGfZKbFJ6^hap1!jb0O~Asc}ESMcx<=w
zoMAxDe|+eyCZUGOnNH(z5$Kc?@$!64CxF%Ek#$t;PR66tvVZ%^1c|$kQAilQeCko6
ziI}uv!neJ=o0%kYR{0c(TeUmH?Qcx_B=D7-RBX?FO*S`6XvVXZJ*-mlu*uFkeb!HL
z>u_ajr9AeS+=$qUk59k3Qa@F&{(AQerf@f2Ugv(U8|Zs^{9Ix|ZEa4=)*pD6B0`if
z6tcf}HRmc=$Y$<nn@+MlZ&jWxYAL1sll?@Ib+gzK0GtdtAJW|z{=0;ZA;emseh5mi
zf0Nvn4^~y$!tWa<4K)+C#}kQMvl2u3c~>1B@*+0m3Kc|l6B`C|rQc_HbwZ@97mmhs
z1X+$v%CC|)voM{pltty3EVYOW2)}WeES<ug4Z!{5Z$!H1+#k@Dyrdw^=pAhd0T#(v
zx9ledzuF!q?0h6XTDfsGC3m|Lohkc3Lx<JBNH`drDa(iZX`dZvH((m1hLbd?!{!Lx
z<_=v)z1D7M<_B>3Q}sg+OlIiD+iGU4A<vip+RCqzgbS^;)2hPVTx%_XLjRI=>+(j;
zZ+9*gF3z%XxlZ<?&Jvmy`|$4=pmr)>HbxB9YXpY=U=!Y<XEm?QZK4IX;xoiF12<nG
z=6hZb<eI*FFkbgQ1F4%Q(vi7AN<f<v9A5wS!|Dcli>!zK&fUpC8vh)dbdzHsMH>D$
zCg#?#*w2EFa5tr!BefdEFh$NA$-IQUG`xVo<Fx3%G7>=yyr?+<6pf{gN#H61tOBGj
zKp=3A?o%Q8Uk|P(-o~CPW0H7_^2*ZHIj_XfBULQ4=;hJXuC8EWW(Jo@GCmc~p^ILF
z>2%{PASh~UpsCk``4&M|;i<WPAR|hLOI6f*4nrd$<4#PHfCph9*4bWF8s>4_cCIwe
zN%&j`*TK>RRPwF?9lC?01wlGr`!D(Z-~5lcci{6I34-aiOJ!-AMh-VvJm)6k3{r1@
z%2%9=<8r?(Ij+s(*G>WXE@goS>7|H75FHolc$+N;>MdECFEFvkRiX;t!@kI^<*9Wq
z^UC+S@wZg0(0@QOHY3=qN`Q6L->9s}N$=Xdr(2@ITetcfMX`QX*gEepggQN;#<5cs
z*0TiS{K^x^D7{+&M!UFVZOn)kBSY6$v`S{O3!1!>6()SEX*(#|5LgHqRQIec<gkaG
z`dJOr?$>+!OZtDc9i(dUy0=o}k%F0@8+-mmLI%S9=Mwws%Cri}J_rZjSw)eeqDO14
z%|B-CCGxd<IYO36<pH`4XsK7pJ`%6BVW#f}$8`CCqV8MyVXR+{9t19p0seZ2-!upe
zZI1TmN~E(&H{24?oYe>oSFFu`&Z^P{+seVBzLVK5XbdDSkifCKIlAab=zkE++8-;`
zv5|Y)x)K}G8eJrB1`#yQ0485AwatsJPuAYv6#Fz@+q)B{B6aoh6IYs7DK8$*j_$12
zfO%%-v<Ia`I1_1bQ_dQf>SqyyFwzy$=Kr?9&sG^KOLR<HYT=0Pqnq)))F#vm#K=}-
z7f)Z4-E~g5rhLyATvPP6;(rJ?1GUFFD5v*Uz+g~yEHJt0e{j8->|^9##rGon6m^Z4
z#d}XQUbt5of*?<v0f;i3meY$xxb6{<C6!`2TU~+_QR)456OCsZC!SvIxX#Q8i2V}t
z-*2Nl*zbnqN9}|EvDigm=->L&O&YKFx4+Y9W-y1%lUyL+U%4+>EMpBQ#INeu0iQ#c
z#9rw#xnxd#WlAQY&i)PEQdQoB*4@X~<zMhWMB<?(!$3hcTF!bUoRa%UM%diwcXzU`
zlq!pZtFs7?LHrQ78y&CsBZJ0~+!K3_PdgMA<^zh29(|m{{d!Mb=P#}_kc(2t0a)Ll
zm8k|v=UN)xY84h31`Ow-jtCLR7c4A;2H4$z$A9ft+1!(0qD4nR9ZRB>Io3cK_ez#I
z_K#N>#beKiLP2jfgiALUKyqu%(QnxYKkjaWkdUp2R^EO&mKc%6y%v^g<6@aH%S+_7
z79Q8J9Zh2{3o<r_9Y^P>DM-;0#VE1R&IyB{krqExoHbVhall`hbG$Pc5RI&aJ}=q=
zinNAF^ON<o3KnuzF9vFFFCZVz(yLMeB8N57?KxWD9SPy!_*ktO@MoS^6;^>N_L36&
zLo9R8DO2*Zu=xFCsV3X30yA9`leuc$01B+qxMLhcE%&~es(`BFHuW^-MOo!H-mEvd
z39_r=Vakr|Z%|J4(bD0uA)0Z}^Jn5*M4gu^CR$l&urel0(m*#EoBFc@k9~=hl_@4|
z%Ywst4|(GxHWH<!T(-fB))}B6x^bt<uffNO{{8YqSbHmnwl_VbUhGZStL~3}o(AvV
zQ#64<d5Oj#p!6CP`L5#$N8>$Fku}QwtDQ?%?x3^~3OzRAUFF5`bgDQYGl@d;a=Y=t
zY|8qN+FNz&G))oXUF)Y4x9HwYe~J2<;<WR}D)jfy1L(|()A#@DgM(5j*N6Hc5=bpt
zzCsGjIAVa^ahSk+PJ#O%+rgKQ@X8F-O~m)$zDC5$B=giw_PU5+8UL3lP7GVfNo31x
z@my*^>K5PUh*9+~FEbu9Y@?pP8X+N?vocb*MWi2$oA_UVf)4D2zH?1jH#R?QO8qF~
z^I+0}sWHcR?ISwn!IazOmi*b&Psqo=pTpA0uuOV;22z`Hus#heu*;k_3ZQohdI<Zc
zPWV>vWhQAEAoSC4R|~1i!f{j^`SHL^{j1A-jAuyt2L_MQrTmawCjYX(47;{re_%Ny
zvA3=_xL9Ah{l-xu)bFAMZadley0HPL(IDk>TTOLZNld<wo&sbqB7#ZZ>%r=Q1eT=$
z&M}+zqh*c{m<UBl#k?>fTY$3}H3bZjq<qw3wji)}(-oZ!g$Ws1*hCjRY}w<C5oh|~
z<dx#`;W6d}wO+g>`%i2AY$!Z%PZmO7grUK^57K!u`UgFH{~w#zt3}Eo4UW38Jns1G
z64M->EyDSo-O~;-UE?T>Pn`q#PGvNM0${a0+oCbon`lUbCq3+6e;7z+Na{&`ChQLt
zgW+d&h?=>^RolD<abPptkMdwMHbty2UA7|uF}4f1&fKr$IqmbZ@tWkZOh0T>a#sWu
z&0%8O57X9HKGXVkpol%Y^y6>r%ZFNDa%f_Z2VYS6YP$eM6(!ifI;?Z?-TRL-zt}t*
z{RgFi$I9yX;hmI|L}^DV4-;*|R=D(OjC-&C-1>p&uNB-R^{hyQat&r<0TpG(=-_r{
z9QFP?(u)0ee3Ez0`Zhhx+H-+MBmziJDzU^pTZdGcYna$JopBtkpV$Tf&Opkz4X(%U
zW-i(7{pdZNc&{BLM7i<&9`(F<(eY39tI;nHsb~5ssCN=`h}T(1W}+9^lgFCC&+QL5
zC>|Ow>@QXUZ83B-L{R5b7#a{1Lz3@AGfrgUF5w*l#UImpqF7;(wKPne%cy08F!L63
zs0t$XS;S6d^aGEFFB4ohP+mqvJeC}>^AT_NlQ0|aAR*!U<0?DnjsRb^Gb%5dwvAvg
zhr@t8L;*N3j>>oa=k2R7R+SE^h7%gSh*(D*kO@LXSt8DQmxgTP`|v16Po5xq3|h7T
zNMmr1Ng%5{{xpo)8%q`$Sez^_7Jm|Fh<I!mh{9S#mMJQn-LkXa0UCfTcJT@knRb|P
z03u$%+0qYForpeBnfn#3W06Q3n7D#Ydb-PU`D3gR2AcFHX|(jhAnWo&pOXfWWC&5l
z1_BU)7m`TelqKNVm}R#-gfH}dnI|j2Mtngln30qup`6^QlIUb%(_0;xqhe8)XiyQ6
zoMZuDCZ)Q)Ob)gIu%LkM&dCu!k_>SvL4v8>wyBI(fU#Y4eRZVHT&mS^a;<pE3Mvg@
zLG|bwOPAD2(!Xh`08DyFO1l$ewd;B76O3&;B3(8sor^Y8U_Jv<1NndrP;I4U0e}mS
zQd(6YpmD-RL~4!%l)+G9%JWuQ9_+D}V6lNE?Q42EuVi}eR0B#Tm?cX!0zX8e%jY!1
zFJ?0dncX^KTkFWKRY~oU;AaPjo6LE9cd@>f5A#WcDAyz^7-oAX3V&G&VV##PnZLAn
zRW-`f&VCd`{eG!JSxtt>!%H^U$j*F74)?E0_In0%2ZCO)fjcp|XTiwe-)aeXe?|+e
z+#DN!+{GOxZkcb|U<D!pfpHKp2gzR=k4ajAS-XP1%>nt**bPOnt09v(nW~`(0RMA-
z=BE_#9uHy&l`4N7kXVx!dmrHZAfHpmaduI@Ixw#;JMTw(L19w9<F0zEurO+gpUFA@
zbw2j%T;5k&w!39or7uCGPig>5AaN-F`FB1Qg~Foz0?b&!K$3qKw@A;PS|4|jl1@>}
zR-Sit{`Ow}y_%vaujr8M;=45^?Kr)-*OwWOa@X#vM4fPKpg^w%uf2L<Pu^1-_)YWQ
z-qkIyVtuZXH)!x*FWQqA_HS+%E(5swE_kyP-dao+O{diRm&K&LVty&h>eqQNyOPoV
z+!&JR3^31vbfF0)Qt1qZwaVDxgt~-MbPYtB2T_+T6obp*_=CdkQDJKN>{pVDJN63J
zxC=iMAT@f*ce5d0wof+0@syz#V?SO<se<iKX^&sg`3EM<xCGs<d0O7)et9EN3YX95
zOlSBp*#rd&TR;omE#gFj_Y$jUekWo*(q7*14O%6J?871yt0k;J@?;PP4#0|wI>AH~
zl5S)tX9xp;g5N-{L4f>K0FATyvrVRfcx4#?c=`=67hotw1Sz<JpkV-Jbb(AM=x7*F
z2%saVRt+X1-veo}<cI9TH6?aJBMX%QcI?R$)hidAI%NHGqk1z+<>gH4q|Ry>v0i2#
zfIzbw%+=Pz>MH)Qm(}J`3SbvN*71GNlOtUjA}IZYD(}id^D6{!mjL9`tHCVS58CMu
zOErwzHN1<2taLVL&owmh)NSlXY#I5q>_gfLm^zHAKd&|lECL()E9boHFW;+v{fBqV
zxh7AFbBt2O3aD07RoDRF+*Uxeq)Rks4a>C+Ni4N=#<i`VnrTy-X^G7;(y+p0Q1O1f
z_YQy;7qTt_+R7|VEfoP3BA1dIC*er>E`Ck=)<3F6n|3YDIaNFEFkVF+$KSNd^o`fL
zTApaN4Ma*tV_L<XTd{R77UtS6AGOuua=h(Z8MVu0?v;D+w&o2qEhg8$-3LuZ(jO{Z
zRYX_dpS*fV%+c;@r#lWgQhHT;1Pb!JW_67UmB%okE$A=y?N`_p-6JbY+T68kAtfY)
zZ6;y^5WJ}5aQQ;b3g}A1F*w#h>$(!Tc1;&C3>!yQjfITzFt!1DbO{g`$pIR<#TmE3
z6k7&WX9J3$dKNEU>NalLVw5if1AY#6URvgtqdc`F-g%hW{R_u{n14`9FET`gidHjC
zJnRk5>U=%fH3M`mmv@j{?VjmZ3^-wHJ<?6fNeZ~o{_=JsZuJgWBCGAoBQ5$gBKy=6
zd(1bw73cbVmcpk2a*ORkEP9*_^{+ZUn_jWxioDr1BWOf}>Q+M1(6G|PEB1#9w!A*>
zwi(Wqskf73U_Y`)x;+5Np+JiiDmM!P+@IN6O)6dbRC;~B*AUl7*L``Jbn%=1baWR`
zt7q{uRBG<Exi(1tJ1tx4;N@<pMR)fyWe_7XG;J{yJs;^H194;+am3|#U6>wOdTu-P
zBx8h|uWCr6e7^eh(iipqm>i1JiqXd87E4zsmvzjIcIelRg%L+qfTPCQ%ue-i6X&8M
z<)_I)!atTYFI7K&VXRs~&&q!keCZ}=e;%|`J}7$ALY4&5*VAk>>9U`c(?(3v*N7~l
z!YapaSbWQY`|^DWG?yY9i3kq|4up5y1iDE~yX7H%X2Rr;I2OU6pYxNYUd=fG(DM`8
z2?vhlxe3Fg2~0Elo)Q(d&ByWSVB%A1#|e3+V19i0oW1sV>SL{dxW%mWeF33Nf2s2q
zfjcwDfZ1J{+0O?<>MDR!^`bwi_^mbiwJBpjbi{Eg<ik1pNi2h2jsE0A&W$<7Z`z}h
zguXARdC5fhsmVe$WRZ4y%Dfb0*NUu5us1l*TaWJ}o6Iuy@GBg$PIoUP>r9eZrWZ}7
zwdX)>N7t${D?-ln)q#tFf=g4<npY2LRi@Etb4%c(CFeV{X}Fv(7K@)ZX$>2e)?;&o
zC~qsmLH-|J-zuInem!^H6zQAdFHau(-p!EVTVdq<)^2*q>@Ubd<86}j;~G?r1i;DK
zS&#(-<R`!OB~cS9i*DN|;1$^ws+{xrw<A4%KJJU<)61Lm*tlfaU6&$0^_d)W8PLAL
z@_tAH%5tq@+E-TQ(7#4SKsT@P!b({{XZUl1e!IQ&FWz33RAKJ?UYWr7JX*h42>z&t
zcDjdQcG>`>erL_-0~puWGY#s~(9TnucLk_Br@fX2IM~P7kCA*yvX3QiAm{!XOelQ7
z{DtsS-V>G9U;C99>#mg+bA0|Q6~%7JyGqDNT$Kd<XL|chP4|CG*9QNYcCl!_@pDnK
za{k~D%V@vN+Q9+3;A#tNvN@{4YCkLv@a3PH(tJyMZ<$4?m<}3vTQ~oX=ZfnFAZ8;d
zNBFYib95v1;#S_g;k;=!aBU9*Qhqe8w7Kz-u{^Urhc}&b*^jc229dtZ=Wrjiam0{z
z{?3ThK_faY#JFvIe>*dCTg0Hk32vxWrg?W_(k$IP&$P4m(__S~4jCMXiM$j2h|?SM
z&~qGAnI;hP=>DJF)w}7)$@UMzuf5DIX!nqNDO_MzMEt90UBMpOw?z;J=SF_CD9aH@
zX#l`a5}JI#(fVxYUn;U8d~e2&_2K$XR3k&0K=e~hSkt2qFEu~6`hPUQfI9qVi~sGF
zYVPN!KX#;;l$db#x6<*w*n3g}>73c<UjN*7d8&VA(}1!k2iOn0e=z7JJKjrM@n}C1
zv}+Ea>P4=9W;)u*E~*~treINrKze=jhr|Ca?<-|5Y@2>D%KSQFrgXx@wWRs++vmDO
zk%?a6DK(gxWC>*T^5A=yBU_CxwVt~*N1<q(2V*V_$ovJ|w}rlQy!(*z{(IS#4@c&t
zV}5h|Fh&?91Ce+RPpQih4LEE`KV*?R*v;y4G*iH(UAlYuI~em_HshLHA4imTvjh>k
z58TlX1l?PHQDL%EM+#jeipTLjSf|Wozi4!ReBaGX{XMN&QFp|LXoP&#_Q~9@$vOi`
zBA@NiW>-`|4Hg>7`cneP;~B6L52n43gWor2ikttraM3x<yU+-gf0CI=e9mz%vG2hp
zDtz;w=tC`v)6uMRk?)h+*CH=p3l2EVm?b31{Z7*Q4ZR`ztO;H+cf!T5n9z6S1D+u=
zc9#hJbENPsFze6F*N0;zu%73_LR5+s`7|<x@q+_R_c>si3UKL6l2~u8q@IBT&oAFQ
zt`GR@k^zsy(a!&%9eA8j1>t&UeiG!!I(eObhI)Pj5V8IkmVOGs)|}f|e7Eo~|8)IN
zxWV7|BqRn^z?c{_CSxr#l5MmTjLXv_rr*}1J448|SiM9HV#dKw>r9~2OyH^196wG|
z^e#)*+poW)sh7|efte%;4_bN4AP=&UZjGzhS4R4&Jy>}?5xAdL8!Sb-8{gtd6}#Yk
znY^jluB`@&nR&5EWfKlKYh9pvbfvgm;T#D_`j`%@@5tcShUuhxdV39YF1`<Dc3Tgs
zzl{%X)4Z>F>vbATj>ye!ANyIzQEyGx<5^t&AseRo)ShlYT6CdWP^&T(3v~au%fbCK
z?OhRv)R=nS1~Ii!{8uu6urPW<E%RF<<Xk`2Im?^&yNE-_4v%ciKZ|SmSbZm~s7TV$
zx0?`TmL(&VajrU+i^I`2mkFC6;Lh^IEW3@5NLneWy7WYZf38*1AXK3EhR7x(`^a_A
zQj?ntUw!AZQE@E1YIXa~^_Ld^1|0`u61e(X&8)oUq?d2G9+xV09d5g{QKSB;@=c)`
zpNPu{wETR*J%ML?^10Hd=zHy0#QhXL&*NpQtShUDxL?8*U&%8lY5E?Mx>8nX{Ykx`
zZ@mr+a@F-|M-0g#WN)$N)~nu~xiUT7w>gOvfDZjtU2F0(jtGPz%W28z#~Zq)LejhX
zczl`mzw_sawRe5bGfH!ur+XMFPnvp8Hn%*WT<Aa|fzy@b-TMcM=|@YTW$v<bNF`!O
zEUb|(MKFw~7H95{`|j%E`gx@>U>@YXN*AMQA|7thF_r{k7TLtXFtL_c&tz<+Ug5qp
zPM5(%H;7YlO2=HI%?Q^Y$0$U`=?)|l<rKt>)#dfRRhk57Jff18vM2w8;!q$)v)_%0
zTz89t;`6`V_iBO*2OFjG*$4Jd77};A(r{Q<;A81?mJx9IViCoOZ!<cJ6IWgx+^ALA
zDVj3l_VRU|t#e!$)aMJ`mZzujQDBD~*O;{21aq-_Lz%Urw1&u7Zju<b7<=%vQhQiY
zO64O2Z^rR^du!RU53VOKBNE+g^1}V-^1x_OL`;tYfv-76NbOGh3b1kNzLoORzwD`E
zFNf(>>l1gG`>6N-A5Hh+&({COjX#Nq#0)W_R_xe&tHx~Xy+>mdMb)m>XkzcJC|aAg
zs9j2lQMEUvRkf+TKiX>DzW49`{SD`w$NQY?dY$KM*!>%)+&1@D<@S=6dCS`JrZ{YC
z7!|+8FQfS%{6yj2mZ(4bvS|tb$s>ojTt1oU2Yow}By|-+KWg~@6Um%!c-<ohMftB$
z{qs(TTE8p@?}UW`;A;u<v^f_B12q4OBy%o4M0Zf{RF%KHwX@fx%j3v&l0*PQh)~WL
zWwy`~5b{I==+0|ab(pOD{i16B{h*FI#uP66XRiq%+n&?(E&$WPYy*9~KLBdLC-qKO
zVRo6Fkln+O?O}$SNV3n|jLLcNW<1Dl(DWvfTqU6V-g2JluyZY=eG}cnTYALLL-z4x
z7y+{N^3%b!_%cLD_4X_XyuaG5W0@&@Ji%h~XJ3r&x3cA=vB0cDvxqd{DLp!BHlD-+
zzCuE)HBZa%X%OxZ{WWp?Z{fPXy@U7Gy9kxDNr`visZ*!Qg<hSL|E6p=u8H4|f9J?y
zr4M|gUbE2tbL@1aO%i~VzB*H8?Bbr?HG6PW@NFjt=A>Ciw{3cF?j!)j9X9OvR35ZD
z)vf$~@X=%1ZMLfyu~~!Vslg;gOS-EUE$IDjkeCmvf~>6SpD-UA&W;smJh7GTWgSXi
zNF5%F6rva$VN8~C?02moquo3bBw=N_v$&<i8$b*eoM5441vENfi!F5~kfRrxYGRo5
z1gE-^ajS_443r9cBf;}u^0m-nCOHgCzj84zVDAccdssU6iG`C<XmFKNCWN}&5`-mM
z%&!O)CiNgts5>SvOzccFh`g_Z0A#_h{i($P{G{C!Fc-<p>b>}DQRbq-kd2JYj<fr>
z>|nYW%0>Y7#QkbGeFRe$I6KzHl_ZKe&PhuouTeM>{ZW3@>|b$Kbn7PHXXZHb3Ig!!
zVj25WfjIx#Q=tg-mPAh8Se37TZb;o0-;XDq9tTdjf6G$n6;Z%Q9bzuY{Fdlc+W1d;
zRB^gu6<BM<DA<9%lsUSLr@q2C6|}0u!62Yj><eN{qAwQ+ivZ%*!H%!#D<rai>OHVA
z&0nIg6wt&_27fj6-ZTrkz5iO1U^A1db>g8l>W<C+I#bvR0E@Smo4!_rTILp!AddhP
z4yaFW!WpU^8FsA(Z7dpJGSrx9z6qLoT1a(OS0g9`fSO$!fuMcO)wFN|%t$<fT7&)_
zfng5^v$g7FXRMFk=(TxYYV}!#u^~Ns&qcu2df0)nF|V20nW5NvJe;wqm|@>t+tz0K
zrEEjNKH9_jo6VO_#+Lf*eXj>0*0WqCEp4;=-cP>S{`kk(+8y2VkYB)Vjh(4&(EPwJ
z@0(pVo!mR_%b#~8ipFmCl5iB(AdvNlaJkr=%?&?<b||v#pE#2EW{o}hFKsDSr1AB<
zd2i79^3rWHKxbSsKA_Oi{^zn~#a`i8V88BC5@xdV%fexRrqJ^Do1`%9b8%w{8-n@=
z(;m99cm8s)?@_@3QvPlHms>vpGzB<tpz<&beNzOH3yF#Y<f$h8C4yQRx#<2E6|S`^
z{9ja9>BKtFYb2IVIa5({sW<&pj^sRoq5r;71AA_V0>ACtrw4J8flEg&Sq6DfMtK4`
zWhfcre=DC=4}5cM3G2Hq3+a4X^$F8AQ_qQDezzF@Tr!laq^<<$=|yDWaR-^2B>^lf
zZ-b&9-B#l8zZrmbm#G7&$O-_{c@6=ztm2)tN*^XXa)CJAw4ZcQMPg({0Z=<tM{2pL
zUO3zZriB_fQ2|a9;`+$708%fr)s^1|4ZNF5^OQu|dhlXMn6vbuDu`8p<z`CVAN(GF
zFrUYGj9PYO={~<tNIrj&ziGb62Fs)CZ=);ha>_OKg+YhFu@MK^z*{Kqyofw-I;5K%
zhaUieS>W?p2_JuC9PISj!VX0vdd};19mbcxgt!y8KIFpjhreQf$#!@C`QDaz>bMFb
z(HL-M%wY(|J+$2>85HW&Pf-7mLOmc(-glaet-^rOAhCga2V@u(AVe5`2y3cn)98F!
z#_kQID7wL(UE*lOj~dv`E~qT844?vKEcL^v^IF5gC6VvZ^Q0>e?L7+>9qwtSW`-U-
zy7?-06>D{TqIwTK@R!Y}>-E=nz5l78t_VSocC-9VK3AKD@O#~TJOeNUcl`(5TlFK%
zw$;Wmq@n0U?p$fY?$DvVI%%$R#+6YT_xz*^vQ+We$W8r6Pv+hiP`0l0!WKu$tZ!rs
zqsM=@!&E#Zh3~?CdEa7B6E)d>ic`zlbNE0cPU&!9&JE=`#hh4y$ZFtm;I}8I={|t%
z>7HLpvAm9Od@wo*0KscM)3Dcukl`N>MF|iu{ty);SplHx8>uGT5`XmUn(jGIv24=x
zGEHqn)a^Ibz!5{(5)ChP+OHYXLB=}&4#S+I@gH;%|9%$%*oi-&B-dAO0bCf+SKL4N
zgTF6{z(NoR;REU|2M8P4oxJmxo+!M0=l}1~6$TEvx=F%{leN<T+GB4wiBXw|^JEM{
z+G8QZsu0g3LD@8#Yw<ePS~ZbPLsF_bDAApvmS*2<K+S35&r&Tv&IdM30PCkglIvIl
z;8#&TR|mXy6_5G>jwxe36wF6t`4e<m;^d7-!1ohDA2?~++~J$szlCGE*P$1ZrL?aw
z7iSo9j|k9>kXtrEd%e76(tF(GD1Vf6nJ`{jlt@~jZg(Q$WrdTJ#Rq~0$p1rq<vREw
z4zT-|LXRPOIW4nT8GExwGX2<;NT~)cZj&a&Fb)ZQg_p_1^~SSSf;+&VMJPlNGx!Gd
zxT2m0(+AEiCQ&TnWX1WpVi=ySfLYxjI6P~3dSq>liV+}dXPxaFb?emSR^=YR$e5LX
zZ2)lB>w1m~RhE9Mbe(<Fm-SciTTtx%rJjfXz^vaZP=Q#wTHgV#4b7~(Fh81}MOSJ;
zOx&39gB@<>LLB?J1j?3#gTs%5wn3~Ymb3Smvqr+JuAT;7#Of@`W_!$KiQ?9z#v1rB
z_@3ZfHkp0Pfj*PIp?o|cPB;3kS4zK^WEtn_I_K<t&evRA&VF3x6TGt#Ou17OM||p9
z4eV~k0@B5#?#C3<nB^)-LoROKKgSVp3>RlH_dCP5IvhI5geeijrWz|oFagC%7$z9o
zp~k4&-5EXWX-XtHvZsU!{UAMbsO)OtL6pR_B!bj2MemKl=DrkrI^{uKu?-pd9KP>5
zR1;<;xO$0^)*RKHE26`XbL^n$H6=>pbUD@b&%{fBW0?F4F**$l_9ocV&@k?b`=dc*
zqDL%sU>5(UHsky7{sOTGG#5&~CX?g;sm;r4MiKjS#GHX?n3f|Lg}Uu<lQG2KzEPWp
zD)cfq`|2`Dari35WlAnnQnMm4J!0*R+PpX^Xjb%=-h=9rMCq**h_lz#qn~uKHe^Xk
z<$I|~f4!VNCSM1y^fA*ngN9MSOhqh9F3ex49RXCC5xfzbjUu4{>1zo69hwrA*S=c6
za5wv2b^B$~Bo|V7^+mf){_5p4s8>JTkg~11hRBSw_>9JEx%#!~3@PSJ$Yw?jXNG}g
zX?+^i5*WcqL;&f|92m{y^A7Ktqp&xfU1mgWnE<`U%wH3xx7*hFwSd!DaYaK@*`i3M
z+!O}eWq^}2pw3Loaz=+cQl;%oMIgzjxyg`b*^oqrei1>s?5~l(%_R$%cGpw5qek;3
zL(@J>-Pla?{fx?^EbPZaO>qpN0AW~us?QuCS=Fd_E}_#cB_aY)pgBE#j*xm)WbAfk
z%q=5}o;Arcvt`AY8sbgE%xTDqWX^FZH;}g8HWfV9QU)RYj3E7LnN&}J4jm<57HHen
z`yT`cc0#e?mTBn|eC;Ge?M7uwV_F4IKeQT<$Ho1=9zq344wCA{+b9qe&T;g5zAR_W
z)SpxO?Ks(jf!V*C{n=?K*~Pd3PH)tT)_kHJO4gyQpP*QPi#p>eIagO1-i==Eqo4D=
zF9(JWL|hH-%^AQs*@b={cn|U1@vo{{HqJG6)b%IlJ!T%Z6hQ4FS0*KbOCboNe4{V*
z(02AwEII;wXu*i*jO_2+WEchUjBfi8?wTgYcCl_5st@ukBFpxL*`edxy;;yTs#ZqF
z2h~pHPH)KPIGm~hSG5PXip#5sZhDMfwAsRnbA^=tk7`f~R~BrNbC#|Ih6jdVJ5?6Y
zoGD4|=OhdFzzfvSbEPR7Z1tS?8khI@XOC;m630?Tx@#E*4Oy3K7aL~`?pdJp^@h)%
z3x<Xk-}q(UdniBW7(cQWni3f)5^=+k3n?)|pz2)U@VUbW2D)vhM}dz88k=dNHg$fN
zq+R*#uLnB3D|JvUAwfTUu7kqcEXUF_<w(9JwIJ&Ld)SW8Q4cz|maq9dVaZvz3|>9X
z833#_2s2x0lR_rVwt4UO)q?zJ2>z*YdxkciP7g6fnR_{G*Dh2=K(MkD708Oul@MA;
z3}xoIb>&VY9n37>8mbTsg{Vc9b9og9K4s<m3QnbLbpsgSqJNfVXcS%09V-isQ-ZBH
z_2wgu<)cU*(>N_hQ&`0~ZqajHCS3aje=}$WimX5TWf?A28OsvE<Wp>;hENq};>x~+
z-*$(zw&LpWQT7oIW<}=j>PVL?gZSlrcX}BT<dbrI+XI4~Je}x+sGnU14e%hN5C+dm
zabX|V@dzuzD~$6Zli<rh*uZ>}>UON$C2AgNxrj`8WgaZx>Iz@}se*z)KEpXx)0q}v
ziVHBVddj#1SQ5cHRT%R1JUD~~Xta!JBr5%1+}Qs8`w$884+GwzI6j)5`k1S3`A_$M
z8lb^8MZl6@oM+PE@oFk_lA`~jULSC3Ul2(t8Ci)7sCH^qWvAHZt&Uc&Np$d}!A)p)
zzh_o50DeD_Sm$;d4D<D~cLi?1yn9&v0vt=J_bZ{Ozyi1Yd(zR?^KNr(h0)v5HENs_
z3$RUBkMZ-n{;GRgj`up5w;@jfzuThz-L(DM^fSIF{Qj#rN43PVjg{N<C1Tu7^cFeh
zR$yZuWzGDHLVRgDC?aEk)8K1yvK4G>fd+Z2yi!wOto63?Qv%lqWRdlYcla0GJ_E$d
zA~KoicpKXm-O^Z*%Iv)RUHZ?GSEB49e>Tm+UMjpeE(2A(P{+SuNvjeFo~L&$e*MXy
zru0M2>zsGbi~>smq*c<vc{#L>DY-W9NQ~CO!JMyRb7<!9Dt3Sbm(1h=(c@OR+}9)@
zY?cRmW(AChKsDQ@YnD~$m4vj_a&;p<a7+RtXeg=^vVXDh<_nQ*u!utZxTQ-3GPF#(
zJX9btuswt)B;tX7O(ZHjAP2nc4O6_W&W}hPtGj7403JULDRCo^Vr-k#+v#gxfP+G4
zszWe!w(alR+t2@NkABgb%+i+qCtR|M(%~))5FfMEu9|QF^ZN$tYp*pf>9}iKmWcYO
z`xTb(hcv|&yU4=Dd8>2bbsP6-6wcOZ`MmLcetWU)`?t(iS(q-z;>!FUBCT@U1Cpf2
z=+;-LzHcG8j29Wd@(JM<FuNklhA$7vtwqFgQYKkC^g|6T`6BK1nhPy^eyBZr&@N+?
z4`9xdbuVDQ{)PI42>lfHLBK8)uv~HCvUqIqt)J}=jdVq7PJR9DUvOA{wki;jV=PyU
z$^MU?GzEo6=R*xJ|E<b2uE0LntwbreFJ9iyD@Kt%H6!J~OmF~XUsDZiaMQ&IPj-nE
z-!nTLK(&`sijSd1Oo_H-cn9QFpDK`)`TcFd11fmoew_l{Swhd>tEt;g<ILarHd$xe
zvLhuf!~IP@#smHuU}c}!2^k%-d0);LSF_~vO}!#cITmub*z?$YoSU4T_GfD)<(zpX
zS0NBO`><P0OErNy48><JV7*xR$e#MS{g-pVVm9|sd+R)*hnvTWV%~iM_Lm$9&;JpX
z!t%HDn#y^R@R1~8qFK{^Qlu>9uHyH9%7fX9FxKVo6l^vx{w`)Ke$Ri*IB&lJ51(M@
z9EPzZW})l@pSsPmu6ag|6y_+W{Z&2p869n=T3U`>4mEn%A-lVnUbOo_#FcKlCpQ=*
zkLl)EVXBlX;F~jGURf1t;N=wjiDsWcK6yG7=>$Noy_YG}gg+3n;3AL1-gKJVJ-kKU
z<H*Xj@wi~g)v!l5>Lve3G5g-Cw3mZS_)8)gXs0TCG4UUay{DHqqDQ3XZAvGU$S&9y
zzQ4Abxa+)gzP{ktvlI5%Znyog{P}+NKPH>=x6Qmi+wF($IUZ?usH{2+EwM|egi1`j
z6uy=xsXjb6^<5OXyUG#3b{MkcP4}+e*J0b4QwJP4GL7FlOgUwFnel5$LW?6>zHN16
zX)Q#a4bCLh$69k;G(w@gYa8j9az{FkDJ`vcF&zZy%Nuk2m#$o`)L9x(wBr1x?5<t8
zo5jMNGhPudi4(TeE6<I)Ra2@c4Yil9PIg1H@yq2;tt{1CH2TY&@wnwYPDp>xh_jt!
zKFP@5GV7>ftd^TB1@oOolX7F#QP!L7j=usSDHhA~ji8&?TjgK(!u&<_7YZ#fmV$CH
zL+6$n2_$I&14|m#0z+`B(+(Wd_m*)h#m1}sPHWEVE*l$k8d3d}*uFJDHp6qqoNM?b
zT?Sod1wxlH#wwAbVlqKz2>=>NBu^k8Bt;C7`&XihIZL=oOKAnmHz-apyPkVq`{r}c
zCygeJ>HIU9a*+$wv@dRbqq~2hl}-M+@5c*St%j;9_|~VmXsKJ`gywadmk=o~%8B{U
z+%<v+KJ|X2x^r|-I(8Oprw$mElUY?GW-eamr<32~GIOsNrlAiP`O)`Ut+GrpYn3P6
zw%l_G@1RwnnyK|rn=wIGm|ZXPD9I9^=GuD0JGdo188b3-|MuKjmtVq9g5uVfa%`@h
zOVIlC`&51JV#u~|_q5x0$;TU0qw6^fi+p5uU_YPk=tM;z$5wnt?(r5cRQCGo@CnK=
z!HR(nHrvY_;0~7>OD~={)Uc&QIkdXpM)lNA^u!{>yszX>)`#-e=U1*2&e(JXTPNru
z!6XixPVNG`Wgtosw1JfI@$dNOXEqS2`gVCw&FJagapVthNAO8HYtzJ3N%NEZI>|`V
z5ex>WJ7X=^qd>JM5lIeh!l@~DYkrz?GIH<Nh5dYe1M{9ZPP}3iB7OpgpQn=*Jhds1
zpJf^WZ%0MiXvh}_Ev83z)A9D1utnKqKX$lFvxL1_%mscfmA~^9y$;xX{TLL>9#NI1
zb9Na4O@{=a+0C9_t@r&ump83=f<P*1${j_=#hjg?bg}J{cCBt;U7l=d0nIjJ&XA9c
z|1s%yPtsY@7*n|P{W1E90+5*`l1_EdJfAsTEAt*{D6IHZNfUPCmC(b5j7p1``7e6m
z1hcYazY^#=jHRV=-buJ6xFqXmIyvm6AT)0yx-;vE>kChtTR%#F$-G@Px%wqXK`$~!
zTylEJyJ^e*`l3znUV%4gE4|Ufc(<kR!MDDoG#OV768_5<Z0#DN^|d~iOEO;*^>64Z
zDYoq@wK8>b=r^~9LMi4OsQSxyXp1P&E_c{ERHC2Rv%}YaQu9k6*M&4n0$~)<QSZkm
z=jg|C^hWpv0)BPtbmW4SC<5Xs-HRdF65hcBMLve+XkF9In@S)QC~8gtlqf1GDV@ZT
zrs=-#d#65z94mn7Csn9dw45EdsF6QGw;OJo(>y-!Ck2Q!`MM{1Nxg^6bp(woN%aQ#
znn?9xCY~ZHFWm0QamxCt_kPnDW)l!?oqh7(cbVlhrQ&mYZ|B0MjaSKY1aPr#UE4&i
z9Ct9VOib_t*gAJfVXuBT#qTrw9XX`~M!A<thaaVkKf{DCRg{m5nT<3NNQN%u(@~}C
zj!&N-rzy)mJ*2*Aa8pmkP<{`&ZoN<oIsCi3lK-p|(fm!6?RV$BA1YT*G?qb7;SpTG
z)vsNZNZ8H$Kaj$~NbWCf9Uc<p5c~VTE&#QU!lBYN3e1h}hMB-4b{g$TAGZL#?!%u#
z00eR!0D(H=NRCS!NPg3%Jeyq?EgHJgXOP>&pynMZ-oZ)jU)9UxFyX9p#R-o@_i@tI
z$7v~Z(PdU?&|Mrk>xOdCm!dxjnA9g&bZ{{?2G{ec-A#13;zIVK`z12!lU$XZ?OKDC
zq#Np!y+gTK*U+C8rY4;{0u0zrt3Ka8sZR~R;zo(IcFNrNwcLOoN8)h#B4IyyRPNFz
z)+3;7lF=hFB#`g!1aV#2Pl6>b?vvt^97E9xkp1*4u6@p-*0dAR3cC_c+O{Y&hrR4^
zTizkjyul9(ez2O6Tv3U(!Nrx6WHJo!#{affSu#gCh3UFV8Zr+EETxAT9|On@CV)>>
z$AIke-O%5&1Vmb6L2nez1$AFp?kKLX*AYmTT8f~*X^gx0Fb~u*0!gy!IUm{S!TMe6
zpDpngJtlzAyj2DvH!ZD@WD2#MxUqKO87JB>2lfBk7>CImi6g?EE8s&9PG2(Zr(+1O
z4Z{^33pRMR#HF530==3_7eTMF-^C4Ru+uPV6hVn>8K3jK@s;|*14Cn;2)ZLP`BDj0
zXvr;5#>z}3hIh=+8lOKu62r`kc7v%Mm5^X%z-&W5rE{$G8`=O6UZkq6vj^CZ?k>L&
zlJHj+m&~}`_-?BJYqvdgP1#*i4Hm77bxf6-USq{UV59^)l92cD-~Ee@1A5eR8t0W=
zEL`}vzW@=#6T_0C<u6Ge9zqi(W;@C10Jrx(tw!6d-p>MGk=%?6QT3oR{)Vo$N-y2F
za?3~t($IZRSm;~pi}^Wl>+F8XQ<fK!ZFsO4PSt?rsQj@4;6;B;wTp$(_ub8zmVtt9
z3Kv-E!im}k-3d|cD3XGkGCO4std->{fP@iu0-jZ1K%k$`iPZ)IL~yEXHzw{*7z6_Q
zJK_SK;pD7Ywttm}mSXjyp(@qmPAj85NorhJ-PUMJT&cSvzAd1o_|gE7*{8a_NXIBu
z+_<eS(eJZpV|_h@jG>B-z#9pHL@uAV_SF0KCl$ab#t%Lh&`PGOn}WcpO{AIk`^m9I
z2tKJ5u(<bNR=E#AD7FHWYNhLb$&kajCdh0P6YFD!QubY!6D1$^arW9}0n%6{dY)r!
zGF%(vnkoRF^LKz&*ous1f7qE2wW82qygCPJGIL3-JS>J1oI4NY#uIi_^grZF^a8WJ
z(30e+pA+r_uJ8$F5Lc0;y7Sj5eIrRR*&H+O+^<k6-hf0F+^Pf3@)sRdfev!}2Ni6~
zvx$m5Z`4ikWP6OvquwrNTqvMGm5o!$#n0FEq<gn0%;pnqTHZdU*zX*CYMj+_PFqa{
z^h!Oup6>|$uPU1E=kw4%P~#_2ZwA-B?iBr5FpigvA{$G5_O2b)=Z#LWp#vfZDh4zJ
zG2MfOUXlKa9{UFM#vG$o(SN=@q;l)&B}4dz=yj~VT1ljJDP0QjW!AzWZar{1u({ih
z8dbPPfBH584*L|nI=%2j_n_k_Tsj7r90YpxC+SmjLlIcLUgWWrcp{aRuCZ;quJgG^
z6f)FG-WsSH?1VzqzIWI2vK-F^eFgj}{vsQW#5q6ejOuviX2L5^2HvKQB!`=^>)g6>
zTg6521Qd}N`4J;si_Xgi6P3iRw!Ym4pPv>1Ao`bQZlHJ3-EwCDtDGxgkf2CIot$gL
zHUAY(?@nZOr30SFuRBrYzS%&f+sQM<4&!}efS~eECLwv(r`sk3rlfGWtraDN#vPKW
z&;QOkW25%lGyk0JshoU~>)43oXdW`;IJK8kIayOO*?si)YV*b4A0p8g3uGL>!)R55
zeGu%BQwNGK9Epr)h)exfmm8|r#q1p;fPbU-f3)O69qg(fb!3|Wkk-5I%QmS#_a4-+
z9~93lKIo>H|8AD{W8>jV<Mcvb)}q4)eIQv>q&CMnFAk_hN@`P72uz}_i(C3cIw?Z%
z@|mVGVYH+qg9Y2`-edwTiY6u(eZZ-@#5sHPcfdeD9}(jWAoI{HoUt~R;Z!xMzaCzf
z!IQUQmit~9!~s~FV*ZYx^hfb!VL*psBGYpSN%(Uxl;mS>F{q;0{iu(f-4@mdpfCe~
zu=o&>?ptp%qNNF5W_pY_=B#)RMG>Aw&*{dT4PNepyC4j2%voVmvLw#pDm-~d94u}E
zsEpZCjV6a0O%FiqwmENowWWR;YtVrW6zK<Aaq*RO;|B7W<2acUB2jc)f#6&7$4-3z
zoRBGwH<J<+7g0h@lLP}uQ|K1xd?6U_6z#*c;=ATlO{73_-*^AN>TD<@C;-4qp6zUY
zivdU6lwLhVmx^(zNl|n2(3eVo07wQ!$<S%bR;&sJt+|DjVw<l^n8g9Y2GJa2Tz3kb
z6}5<pEzVi%&de%298S^BnkBqV&Wvf9Ei1){31<)&@=G%jhymJBuFIM@W5{t~tY!QO
zS-Om6T1D%WRXn;WS+`d;;vWJO!iu3rB~+W_>1Jy(bI3ae+!9))oGmy146TmOmKb+)
zQVbOPEb_>0t^>=~bu#)zONhLp&IVZoqn7~VTN`v-jIZ@#URc?8&MX2th}ph#wjVHd
zbY%2qky~c>5%j!IFSTeI>?mi*>07nwH@`spi1Gg)A!`&%JI7`7(2>?W6RZfNhYq^8
zW@?QTSB;=Rt;BcIj4n?2hl3mTE<jHZnY#*GT-dc^Y(bpXj9$BNLdtPO$^#8&4B%fB
zAV6CKP1%hD#NN{az=ZkzJr-)P)9!I>bjns;QGCO+gA{cYB#Yxt&`MVqRdhgwyR!X5
z6UGM;gvWj^!3T?OQw#9`vKCe-i<Vn7>lWqZeLI)#crP~>J`xf?wGqM#mI1y;D)WFc
ze&1V!;2vmZmYYa_Wx`~o=sbUTNrE%!{1ANGb%at<*j)-<73jMCXf@T-#KMRHkTN(Q
zWH25Cc@;$+r)T2+V+8N;8hz5VO`zTa;45i;3Ufpl3N~<*Mt#Ohq!6tiPvo~BMMq>T
z@!dA6gz5C3#p6Bt2a@KtlU*Nhpte&Su60u-mni^08K{5a7!95|Y0y&Nb=(27JpY{M
zr2gWcmcOLio#v7R0wvCXGLP{mfPOR3LpA!VwWVfHqH<EQ-PV1lP51*ow*b5uss7DV
zM^Q(X!ahpdLL@Ix2L=;`T~zafUYC)Qzx!@lJ~vM(-3<#~8U#~LNdRMhMvPSv3+%AI
zE!NJeCZyH)+JhbPR@1lNH7N&TpWulTSsq!ET<m(B^!?G*ei1op5oMA;UrTm(32Qah
zf-|**3V%^h_n_;X;%j28?4TMsfxGM-NzgL-gq`ni9fWSXcp~(6T1-6OXN(p?JflZ?
zY8a`7>EC`V5ORC4ONaD~-qvG`x)zKP9u67BKa8VrSu6;Z?S^l^ZGH2A#a*NKL&CjQ
zp&E-ga+EqFz>We#_ey8+wr2HfzugW|)i-{ydIz^V4?QZEe)e8y_J{ZNj|tMv?0nXV
z8p!anl~kwD*z~3ca#lSU{gvZGxliATpIpV&p1i4rn3Lt=QDdxhzq<zn-6wuOU`G)n
z!Z4IqWZ|3u^43*Vq!!o+Lx$PBD^gOTGiek5_Qkv*t;W(zqq)k>?p$MQ-PVVmT;JjU
zo?o&F@Ko*4MPV95V{Yz8gtVw@*a98WUUNpU$V^y6#QUZLA<MWQ&V}!QCnzu3+-I(x
zRyCp6D+>R<*tlBrPFNEme7zK3?~QIfXd{Xu21GL;99s?et%%)?=Y_YG-_mS;QIL!@
zz+{B0)UI8S?EkK8P8<5OUHiVpY)g{ks5a_|U4Q#Ra1L3^K9Yx+KX|tDaD8f}e35ls
z(&p`QHU8}2P!>2;5fzQ<zIfh$Zllra?!{qrU=h`$vG8dA#&)Hzs{|FNzx2xBs-@jN
z_=EOl!+XakiT-R6Snj<0&tb3P=n!!Ej#k+d5Nid6*8xv~ASrd(?<KTpc+GGv8d*kr
zMOE@GRtm&jAbQ-%MdWG5k;sk06H?=nyJ=QLyu-&<oEBYU#X00yd%yo7Lyb8FvdVy7
z)j|=^a8Du&=jh9N4WPJus9TMpC>3ion)7-fu_k^*KL+?H(M#IO$<i*dcE&2z0ccSc
zs*l@IeNgL?;7lg30q!8Si(|<4x{pb%UcPvTC;$)vcl9QH5z3x7wU-Q@pZ=ubSwBZ}
zTh_iS#`73T9*7cnhYz2K133OjpmGwP3&&(Lib<w<vJXI9d8%ofBzo?jTzmWRD*<>*
zebI;Bh_n-mGYQs$6Vu!TAE+efqc~<awfl@L{Ez(@w;rGpjxF$1B5v+~{%KBUorrf0
zUzPaP3q!;yPB{)gLE0bL&mBKii+8w)Y}R`fD&TX+yn(eV)k~UA5|L1Yf5aDc{KLmz
zp)o-=GD_sx^^u~Ks?y^lrBVqgA_HZp6*=caClqT}GlK?;`)c?8Bx^%)1(`ZY{o9^n
zELAO63BV_~knS;aB(q<M;xSE)d92p}y?Rf>CNQ7zE_nyWkU?7JnfUx-lRiQ_wy$<w
zQr$u_>&|0=_htB!q?nCcr*2n*h|sSwWzufcqDGN+MtAX0X(<os^Tq^5H+@e`b<=I}
zz^SM}{mSa&c)vTw=c?;HY{L!4iSOid-&#hRuKnsaRs!0j@@LitLR=%PpGk>qyORwE
z{+$Yp!JT)>Hd=9urAG<Btq^PeefqCN%FeJ>?$u{I5-WA?7CN^U*=w1ksEGO=Vi;_e
zr0Igh=-SccxY3a&&^DFSn7@DYSPF3z;BMKh;3kF5y@)Nj@T`)3*LLA~+AZFE{EnU|
zj&1q^4bl~t6H}J+WyS86%XlaN{CZ`3gteSyRYgTB=rO<$t3VQ|vq#NMy1NrL$NUL<
zJtn{NIp2Dlb?6z2CO`{FeB$iG$wlV@u{-4QuD)6%%V4pNB!jr+F!Ab&CUFodlBpnW
zRV7gHZZkX6Hyw3VQ50T@vzsBKi8JvPMJ@&vkT|3lysEMrdRG$yVb*5CBwX7?`|o!b
zsK*lJ`(Bb!c*z%pwQy7=Rf-DRxB4NJF%vI&BgF^_u~dm&kd!;j+AKk-KN6hoiMl_#
z-j5~w`Dni={l`#pX6@1ga8#r)p5uE4MN_ZEFJWH=#o!Akw<qG4myc+g?n(b5(1|H>
z`604|M{Z#=blTL`FGE(MVwHB=S#SC{<nI6aFKM#vg}?aAFRkyAVVA#ut=YJc<*KK>
z2Tv*#h7AX^x8f`Op9)BHr}1V}R}Me+k4U>-Oc0Hk5;%x0{*NH{2=V?gJwvV+GKM4x
z+dv1FhmxwreR4gUwrTxjn?^-hg$GOHNjoqfTfi~t0rfu?o2RX<3p6R{>pkgntZmg>
z{aw_R!Dvzl8ZX7}R{MVAlhQg!C8`@K?AY?f)_6n}JU_&iMk($CLV2lwNbHfzz3wq7
zQ&Yg{cb)ch{pb^;?odsN6wFmr%<WTLjuz=?|1j*=!@Vj_-zx#ukTTVj)>DsOt>X~x
zzy*^CP=<8NMfX+qYS%@!e`ZSiq1mxZ@-a3#H1x?6dFA?D<u;|hib#{@;n+bjVV^&r
zbaBcHMpyN-p?1QzwbO$1i$aNreuFa&Dd*pZL;@?T<}|<Nj)Z0(w|cCXlFdl(==dLQ
z_@^&hN{vcNO}c;Fuwi-yjk2Xm5lsD#USSzz&5kaF(m!rMy21zZz5TE5FHgH~AE&At
zsZx4AW=HVl@cwf#>%Z?3Q~kyI;i8uJp4Ou>WXSGsDh8yZ9(mCEKn60Q5qYims_PUd
z4PY)v#4`MCL=A;D{R>ZnF3joPxv#?xxN~BlQ%+1wAJCDw7wmjER~b6+2EAQGKeYdD
zK<U3>_vPR2Qv=8ESWCC#N&&-H^sf#*pH=%jE3M8<je7RdM|(+2^E8%x#_bs*So>)a
zCikd=B^UOh3RZy{$Om+L$eME6RH!z<6R7NS*Neajtub%30*Y=08BVIbejCw&(H^G+
zzI@VjC|5CSuer=H4?mBqHS-bY<FArazTH_x{x&Z+J)$fnuevI)5g5lzL5yKm8cQII
z6YA<Ehiht!#iV6q<%n`qLemptHb#?1oLt;xeV;N(tdf|?tXkt{MBA@<YG=#^-e^`=
z(II2o@)+093W}Qqm;2w!AoTB=okgs<Yz)Sk7cWn~mvD<{nmb~gyaPoj#E`U4dr9f5
zk(_{f_u?^B5uW6l!G?ZqwvPuo@OqaF%~>7$=vKi|4`2-dmtyBtSO#f5SGKoHnvboX
z)h<v7JXl|t-ZCswjiwIEbpC8yrv11>Rs4bJsQ%}v<AAyhclt`>W-FnbYynp21To=u
z5Rt>Q%5vD^wgr&@40JH`%RrfX*rW%SiszD7ihXT;ntAm7!Q9SR*Dfm*@<dQOj!C=6
zK!Yex@7$wE_164E)_WZCd_zkj-@jpev|zSe%PS9PH>)CL8F@X)@Z5G@X~ARZyUlmc
z+0s%Tb{$sF@rpRNfV2s_o|U5hyXObifZq?d=(w~~zkmPp_-N&mq4XQGpTTGKZ53`m
z{;hW+gcrvvIcA6_a%hX0tsg(Gp8>jT#V{ZWVK@OvXJ#Z%;_HD?C2jNcQ6m?+daZn#
z)-cfplsoe&5yapeV?L-zr%OrbZ39SXtb$jn5zbk@{V=7nV=Y$y8Q;6?`hDWP<xls#
zN$8>$Cjf9WG!Vp{pTq^C)x$VOQP=vP=m;0`Na~8VpPlH6i(E<ciVsVl>Pb(V`RmJm
z3pmx6pJbixkl$@OHBdgC@i$cYb9QQYwt3S@uSOwrW^~hkZ608(#d5AaQO24bV4@?`
zd}g92H7l)*m03J9HBx5?G&9kanH@AprIU=HMV`?_E-vGn`QeJKLj)QF073hZ8oBa?
z7H9U>B1slWKs)hEGM17HXZl)LW&Cwph<{O&X>Pd|CxiB+$dZ-4M_`amZ>owu{bu@o
z*W$h1<G*lwz^M5yfPSahQth{3Q9M6*uldUYj|r6@J&lokF-c~RKQR)a1t2Rzm_aYf
zunjddh=?U(D?eib>zfE>BLHXglMhNoQFLPp=#~@-LC%I^o0r=g@o@^zKPNk;|KfOY
zUEemAU^rx5^@?Iq0Y<^~5}5`yAm;F9nX|jbT<5<f<YCCL1M(kB$*?x7zP-MRmC-EW
z@|6{@QcApHSLBN#5y}%nyESC^Kj4nzm~?N<yh;e5>kwWHZkrXf;ZM`#d$RGY!F2`P
zUwZlUflGh5^GRLi_6OgZ*E_70FK1Vj_>=XZD`)Vjo~z{dYY^n~CPSS;9f1>3&Zt-#
z%x$p5OGYcn935nL`3SH(gg?y^>DWiLgmQ!+Fjl~rFOe2o!8g4G<I&DK%P*Z%BNg#G
zXbf6~fB#{EUCk&EcDw3gC79!R`oGS}kigYv&j0ic>YjC;(emOE^-Ck2a#_Ebx848u
z*Zh$QUZKD+?CkW%zuLJ>AgCPZluNi)TWrK^Yo|W-!Q&)+GCDR!i=HS76oU~GBpVWj
z6l7Ke3hWVx@$7!2`cV<1(F7=qbdp19Z<!5uGYRGcMoT93obJd(GFb`p!=%}*vFe>X
zxis8^Rs^!vBj8r_1c4_Bhh&jgD~vwm(AZnClb`R;vxifA&BSZ{lLJ5!>iDFaIH_k_
zQY4*Rg6i-<its>?kli}f;1OGz@+^pPuM{9SPh)^HYW}Ykci+i}T*4ygvmAX|T5f1B
zZ+kDy_95ub@}FFog0s$icG7*1y_c-dO1f(1Gjyv)I7A$~?@)A`i1d`@@`(2gi|&tP
z8iJyrG0SQqJkDV|09S*!Yk@3=G=PhbMyllf2Y1{)_;HCWlu7v088|W!NnqT`d~Y2M
z1T_2rWbOp3hBkfqYJ7g!ge$Gv_85;(1}`8Rq%1_F0uuqGYi*kp#ji;j2Kb8vfA-7e
z|I!l?mVy=al`|gvG%N@Wcm;NL!vqc*hGuwk`_{S3tZN$z8Gs8LO3^6XME_QDVmk6y
zA(_)e&iaTr=x2xF4mCyzgNa6f+ddmqe|{TCe-5~t>_JxfG&dWyT<n7cQo4UJ7s{@9
z)bVveha6yD0FRU)!{c#qIIxW#^Ty1+OgP)8@Jmf{b(1pDNW?0oX2;w=^xRVvsN3_p
zwz-DK3}oYLg1;tH_TlyVZUMZR7djR&h~c6mNiK#y^w{jz)nmP^8CeqhPbg}63WO~9
zDF_corJ8W=4^14;%mRHZVAI+ny9VtkQ<6dSDPiM}9`8P1^5|}iOja{Zr3E6(c<QD!
z_RKcO8X;w;&Gi{?&3`JAFHt{cV;)?*OYUrU#AVs>$m#$Pv}rf5X<4u~(_=Epch7NQ
z^5J<QkaNjcC0MJw!^Vf;4DZn|zsQlks<CBsPD2bk1+`{SdJB8xPcow!#U{gwO_ztI
zuRK<I3;%i<K&mqlo~m6jRGLrj3T9^~%rp5fVs*+c%it6Z747;x`pq|&>RVZQiXAzH
zPTh+wnQH>+zj>nkKR5*}<xzCog!U&)S}d}<dT=QC1kh5DAlg+8<c{DX#aeY7GhZfn
zjFEBc;25B3%n*h&>sxSCoWd&}5SzFvi{b>KS{}zFWz~?NJq1R>*N2^Ri)cJcqif0a
z#{#H-05kO5pLI~O7y!!q`94bNN`a;=zMWCp9f?zam4QVZs1;lLx@j1m%5o#sEiCFl
zPXmi%8Q=qyB|>Qf<qOm5xl&bP`yK)vXqL()9j3X@JDjL*W5Lg5P;ejjdqQ6a**~2t
z1Y=(~OFj8^Sv8Q)$r&#s<@BOQ^fRSK8ri@`aR#16x`9G5YCvCUPM&a4<#~L-+{Y4g
zZ5$_6FYx`qBejGSxefhl7WT;8^XURjdthzX{)VqVXc_dbEO+n<B-P9L3Gws&TN&y{
z>LcyTohp|iGeFgtaXEgI@Vy?E+Erw`ezdjMfL3hLX8LDT_6|~EH|XU|X)gh6Uu*I1
znSF!VUGGWDV7ga-Dcv{b{s<q(_Z-!o_+a`&<8V16m0`b9OPqQ3h4{|<Zl5?=)fIL%
zKvc(jk56AD7FJkj52}V<l@<I58%Pnxq^X*0L#l|Rbx(u_G~k2<kCeTPeBe9GCZ1}!
zrn@c<yd*jtf#j(^K8WeKqjh~b@f-yat^$B~-~;HSs;>eP)cfk%GEiv%iI~;(w(^r7
zc+fHs!mb<H&4qD8D%X%C#1@mA9f>1^Z=&KD)sxbq2qr2#P{6VOr|yq!CY6yGqyq6U
zk|uKH9>;M)Z1RqEDnRop>uQrJ{F2KfsZUI$=<TDhtI8<=bOJ3B*V$5{vde;BJ>^(8
z&1VQE{PQO;RmC&lfDA_*;BEYpKj2NCpiM7+x9;{-(Ver#uJh?T0?T(U{ei!PVgaG@
zpn}dF-B_@)3ZwkZm`}xdUd8XIbKwP%JPA*+_fZ6`+OMQCm0yEJ5*ELGT-sH>P6tc~
zy%zouZxdI>=Sd(zL0p4XNv^sWN8YCy6K|QZh$eLlD&vJl)NIjruIT}tzfDV=209Q`
zEVNct`O}TDBpBdg*MFy7Dn%HIK4Ox%+RPfnpib?fk-Cyk*IdZ$JQjSDQjBC%r@BV3
z#*Eqz&)!qrE?}#&LYcZ!XkTU>eyBHIkrl6Wv*jX*GpQ~l+yc_eH^?E|nBnY<7{X|x
zM%e>Rd6ed=+9&2#eC7n^#ZmUZ2J+ixGVEuu8;zhl!JWXYPSMZ|BoyK_0haGm9*vAN
z?NBgW?1#_v$w^DJa(_tAXh-a+Gw4y;H?<J|^eZeTn7hNQvNV&nwT!`0s<-g8aljiv
zhZaexiTmJQq81283T83{PsJtGi>2ju05Je2d<>rw;hG7_n)W*uTld+;9ovhDPc1<E
zEQ1@MFgg!3Z!4dHJ2w=a4##k}=K)tUwQoLHd{DrG5$%UPH~4EDgP^jWB1^2xi`Wog
z$PAJ0S8PsoJoX5Ab4<n1YZH}}<gJF#?n6AmLn}~82|%n%5w9M$HBR}1H1w5Aop$mf
zl!|hI2M(&YiWkbSPGgPsY#8$QABtWdO1{)dCJfZu6*p9CCjo}sL4y$g;bV|i)zv`p
zmEv>Z^ki^HjR3%Dm6xiCfvSM-)t;`n^e}Ecr?64)YG4FdH=KKxo6v!ka4)?<MTN1N
zaL)F+#aAE823sgw`@G)Q(CUvA#MWLZUJH4Aem1YS1TJ_Yu3z0JpV)_;3(&_=Rww0R
z3*1M)(DR3^L@?Abd1j8e;&lHKxg(-9<Zp4@q<**R?}|)l#wWdwTQ`UU$ri-vKF=Lq
zD61be6&k{RXlDU6nHkKEV0S{t&{+M=B+z=3egU=~Ix$#a_lmyV068@laiRlesPj8Z
zByvy8cBmXKrj}1jZAFc`7o$Ccb8~S`R=1Q<#SPRLwpKJS!V4(FrQe>GaAS<V#gZ^s
z#bbSnvG_MVraZUyt78$7a`J?`ruEKnUJ=}sG@Ozlx8AsJRQf3PSi79ORYv4vb5i$s
zd>p}a83c!?aFX5ud?UNrDPKQ}n+mMcM~0Cw7govPph-AW*`r)J1_|Xtf<m*>;E^u2
zDN68TNwF!}9eI;>M8qVV@U~b_#@R&493+=Kd3)b<?8-!yp;G8JOoG?6&eZI`VzZ5>
zt^6Cx4wO^hhRF@YrHruyXVP`QlOj|L$JJ!&rL4?z5YgDesl3HW|1}6yhnLozYzGu&
zm2E0gH2uvbO|pj6qL9p3+(ZOplHP9A)IQ4`Z1DsTZ7<T{uwiUTK36?*H&7hJdK>1;
zFu?-{28F#u;4E9r>RFl-7@=5rFhQoO-6NTl2G<{(sNvt7fsZCpvHi&6Y$m>3r^{<%
zeLCgIMy>N3kDP~GTl0c^Naq;g7QR!Hi4P$H=N9ylrNZA$M88{#;4L3VTe>9QzM~IX
zaY-Pq&EM0Hc&Z5t)r^1sF*%9N(!Jz1{eX%Ho<N6JCf^3&^^9L~HI!TNhHDULts_-K
zVj}2=8}K|;=%Svt=BA?wI=Nr1Y&ck81j=3*6J}fv{cTqf5?vmZSCCMx|F)hqiW>dD
zhRxbhXa=5>ruwai&>V+tIir!3nxy!*BpWek6_0*|N^e}Venbx&*<w~i9~=JDY=rYi
zoe$05^a5=w%wx$l<6peMSON0P5~8|PznO5^rApYDV;1GA>>^0o+iGkH^LDZmUt5R2
zG0fY(8|A-_AL1Wipy*<#shN#vPX^8WRScfD7%Bh0_SaN=-EMKCW2EN0jg>===OVC9
zzuLYWe&dote_*Qs0#~ss&5LpQb~mEZmPzxqhxv~JyL$b^9IEo2{jdK;&pnxNIEb!%
zFQR|M@FN)gW46ww;Bx8cA^td9Er5rLBn1=+WOhXXIh!Wp<-c093Ovo=fByuBLE{fy
zo|{YB*8$p3YtY@f_M>c7=G!?8drM|&I3V8-fB%H*jeBpDV}8q6Q{HA_A=pz`2>c<e
z@WkQ#if~D3j->23HUx+Xo7iRBJVvU_z?;d4;!U%Tv<(1=9;{YlV+<mrNpL{w+N$bY
z*mV-Te2a9=>Ng9EcKm!qG{y2Kxm@Q}laJ29K${X1L5<l=pZSmOMCvNQKnPI&hAD-E
z?1ToC6jy-qgcvNueQHgvZdByJN%SR{g_A&*57m)%NNsb`n_C~;SdXS!XF{&4U7(cw
zNt3ER$<2ROXESEP^2paY%U`;*%(BuG*Y$$zMa1u)C9^`{E@~+N^>7)>ewc=ZOBHS{
zl-$ta;y&5sYC-SXYB~5b@&3Oa2V?Z6naZXM`=*@xeQonHXMmfzmTUCDz0KMCpFa&t
zb><=TqX%W~E$H3b`ne9w-H?T7KT7#w^^)*#!Es+|)4X%Zu8=Hv$>9l~_|urh>kv^2
z$+5TWneMsGuOvj*c#!N!<OhM373TqibiU*SgEyIc7LjJLSydad;uZ)8O$<9_l<Ss%
zq+rmr&U*5;Z?JTs0Z5u1AM<bVrb+F6VmtDiOE|StfjjO~)OJb`ERBy>t!FzP3!}$E
zB9c~l<Ow%#ErJyY34DU^bC3)vIIY+QgC#&+=8H(VLF9E?`n!`NCMs;iOq)3Jm(w3#
zE;PF;CcA&T-yfH^c{i68P}?v5xoG#D=B@!8_#h^l9^fT+d)GB2(zZ8luwOyBdGB%0
z-n&k)`L1BqrIP<klYqIrA5>Ku$$NJzGN_R`wpX5G)aY@Cg%-;FVcz}gqWc>v;Xeye
zF`xd;4D@pZ;`aDP@5%%vEkL%TA*4$w5q+JD(-&*c;ttq7-E8sqjOO=h&T=KAfvrJ!
zGV~$Yc6*JV%VY}cgZ;=Sr*5B9SRV(qU0B%JO1kf9dF@kgA5?f9wFn(M$egMi1_z^C
zTHJwhkIu%no4t1xQx=Wm2p?$2Vi?CEOi3iKpnA}?+L-;iHamH*`PS&B-hb`k%HOVC
z3jkyVz<WMxX1=W#-sU4KB)jp=x;yPbhZ$pre_)SVUpl*^0kF@|6N@9z7YRocL`KI8
zk-J^UMN=*_7QEkQF|WRjg>;)oOcMK|w<XUF%+~@bg;RND5Ruo}4*&+>$Vot6npBDG
z);n@7eD)<i8E)IH;@0|!g7MPB=?DcL$n9|+-P*9V@&O`(2@oMbTamv{-Kp<=*0<vR
zL@9C2SQ0Hcqi;<okAIh`b}ioiEdFEDE}-`8o05N8#3PYlfZu(8OzYX_fq?devqw7t
z=6}u-$j`e)Eiq&hs*i>T=FTF_qzvNxeKx+D;sUoez5iQ1O|m=m`?o*i0CoLwxWx{z
z6w?QnV~F_`jt}oyx7%s|*Jg@2{~%fSE5*WE&HtXHyDf*MhvkLm<ABj)zq;L^XfUtI
z9mxDm$t#>uG?s)3-a{Qs*u~a^;5Wx-43E=J!tYnl#G<Y<*?dJ}NzCtXz`NRo#rA^8
zv}m{-1=tlI{-@ym>Rnn_dt}^y<D>tTZpJsQJx0PFC;d2HvHO(q-#2`hPDE<7SN&s=
z`J3)g#ab=@#`Cs1_N*+V4cSplm=O>;kFOx&J<;VAT>$%Tulr_I<O9E}$;i@}zmmHH
zzd-ySKL1Ts^pr%stKr@6h^HX3%ij!pk+Bqxn6!`xUXU95WxfEO33CRmQZlIaUgq<P
zKiuAs$MatBD~b`w-SOn|H{CKJjc%}k#3*WfM-w)(yK8h{GNkjrkUyTkD^s5i1`?>^
z@ZX1@q?*W#ea3e_B1pSEt^9I(@;ziq?(fIgM(70oS_dj(vkT}=1wR9Y1~5jP18-B}
zt{8oQZ&Cjx;R#GeKzbt}-L~O}d$Awg!p6H)CUU~Oi~dgC30wRUCU_LPbp1CG5uSv-
z`t&F?FEX_G(Ctgi--%~eub*9GjR@_}2>I6DQ0o04l8AvKiMN!Ak(1T_?g6fi6FBmC
zch{mgXT_rt_+rmUuSkC8@TSyLdb;F8)s^!e4U7o#M(EDwVh|B@Get_-M!AvE(i*ZQ
zk=dDBTE~&_ii@()A_GY6gd*cj#l=~e_)!n<`e1pbM3K}437o5hNvWHTo`I2xhBwyN
zKk)IB5Yw<{gc7%y=O0L*;%J61U)1gkVM`~jr|f3t<{7?{3@1ymM76rY#Rci87{x^P
z+E!-QH%wRme1*H_qAS51Ro=fGsxZY7ebJJcbvJU-j@cW@7_PjP^35+<B%(X=t;;>p
z{r=$qn9f<U;gGB2_I!8gXG%Hl_^*Wa_n8!Y`UT2`lMDV|Dg9k1x&wY~4JzhCVa;GN
zr~XO-w5t&+aP<}hE@r2(Mz=CN#;P>+#=bo=l>#k+6^A0YAX!#!f<%18DuJ27m<$=A
z7OW+C|B+jPyuiM8q@-2GLE)sO<h`yOoV+`*{L?%T@2m5|k<*wsRVv7nBC)yy_m(n4
zxjQ-~FxmR`(~kyM5QWf!s176ZxNE5_25h!|t#Xl<BYKebQk(v_9?5*egXv}pipX){
zcyr}{ESEAz3(b}ERUu#gWYH}XQeS~ukK)C<oGJLjm68r5XY(8};pk;q3_6~*E&|FC
zC$47ES13Caxb>itJ>+{BlWOoO;bJjtXM<_crzNj^>De+4w@5j#(ah>frZ~+K6Kt);
zoU~Ov_mw_Hm67v76!`zpbQf+-zhT?JmoPTEo6!v;1f(2D2}qaZ0O|Nq(lNS`mX_`Y
zDFH_c2ug?`<q$zYS}_3K%k#YN`!DRf<G7FezRv4&j?H8aQ^|1ovah{XkK)e;>Sf`M
zd$n183m8~Jo$84u97Na_bNt^G8gtkqZK>@%*|_RcZJ#~7n<iYu^p#0pU8R8|S=Hzx
zS-iPr(rSL1{g++6SfwDwh+UGaN6+3dnGq>TjpMfrh#oGW31(KzQ&7Wr>BD+V8GEf$
zwO%&=nkGW#H|BAYkQ=vuDUncOl96R7sL<c3knx!j*&%(o(^;WSs5L~(#jw~+h%B6C
zCdgBNk+)8`{pm2}K{bGHX2N9AWS3bBr6}{!hI>k0{ZSEL484_SVKh3?SsEk8aF(Ct
zZAi+973sVr@*v{N|GEB-i8A*=`$!dQ`@Zz|lho$X*2_KYFpYe89HeSvU4QJp^elFA
z>G5pGU{&}LYMh>;L<>mn6P^Iq(xVzhm>_jwAnq_yzfp3v5=l-G<B}vCKGWJa22t$%
zeN2f^A~{39)2uVBXI`2#ElBeahP&_TCGnnI$EK4oZ^rP#|KokahV<IJd#Tv0^XyUk
zN*q?S<DHX%SI3r1Qt8x3Pwvz^Yl}~iBiq#Yx!xxO0NW?PU~qaLL|<-L?4>)j_0OJ}
z|J<Li<%wlywEXSJtAqNw;T)h&LG&oR@wM132(jXQee4vLaeXrQOIhI?TOaw$({Tn0
zd5{E8o8so=>3i(Oj8(=T%Q^G5u*+5RA<o<AF4p%a{@uTn{~O&E=VAMIb<}(M?|9{v
zIN_%LsolRn2TN^)e>ZjEe}4Qm-XtQY!~J9eK!gN<5cm|X^me(J4?O~tr|c)PJd0uc
zvI&ry8X;9i#n3ckh&8oFKmMig=hdx%6U?VZ=?Bi@QE3&VE?Q&Et*3EEofYIkQ)BE`
zXNhRiO3Fm7ak|g#HtM>S)X%2I`Q*=&4bm!UKLx2BK0Hscn60Gmoth8}Jx?WTcG$yd
zO-dG>r@87@F|X{aN!0G%P7HwGy%T|*g%ufsV3o7gJuF4FLv)1#4n}krbouDvQ-zN>
z*lL27kANRPozKUcvw|cI?VT)qQZ>bnoaV@ChkKD{8Sg!QEmc0zTx(qQp4{|^p~g8t
zAgM-#jd%c_E9~BxTf_6QUQM<~U5On%LL#5pv~(8-=4S*NvHHX~%XbMY98moP#fT=&
zmKUkp1A(O<i2o<LyQaE+8{H+uG?%#huWdXaaZTt6h;b|xEE?fr(V8>t^M7>oKAv-L
z`o3FCRhjF$%jL;k=>M>%@w#ddJ@gyjd}Aw+C|FVUtG+6$RN*2h5v+xMxJ(rQAX48S
zrPtOGyN&TyVfLhoL-cG|%fb9-II%gO#fS&5A)HfgFp%leU{X0mQfW-%5n!$?SeS~}
z$C*SGn+x8ThO`L?iYM;hZW;Vfc6Y>-%q_uLzL`RpQRP>eB!Kt}HMGP{kW)w-*2Xv5
z@?1C?p~1QGJmQB7aV9?l8n;}AyCiio6kb0WcoA-y-tJORFUIT>lXlY9`g6nCKJ|me
z=f8Pg&!EIs2lD1U1c?tFFS!LsAfVg&FSHpHuWR>)a<#(LtTMrA-PwlvLkE2g@Reb{
zCdC~~n%tk=Lx#s*{;48edy*|mhME668_1>YWmhrlPSCKHN|VW#3RX#+=>$;#_P`o1
zw7G8Ey;REZqBWA>f!ffCM)Go~$h;QN1T|QO!#=+~pj~Y_+iAuFX}d(nA~YrN@2Kpb
zesHsyp}aP=gSO)0Tt)X8N!LfTWjY9=+qY|%_Rk;7g;PeNBCGC#_q^ode@Vx=N(zAl
zn)5}rOGMOlN|1lA;wBXy0ZFdP*WcGLa*71{8V1Zd*8S-f;7vNcr9EP5cw?qKGfxc5
z26t}L(gdo{fXss}ZrjFyLM|ev<H`?jYz57h!7thw2I<cWLG9jk#FQ0WF;C`-JG8sx
zh#oU-u*QSOL*D)O(|^1*2Fq{?BBEmjR(|V25d$vD%muM!K~k{^Yyi-ARW#&q!bNW9
z;ix@sUAGRuFBqOXM{sZflX@*`(oinbv8xvU^>owyrJ<D5x&$@|%hOr!08nM3d3Z#H
z)puIngXJ#O9EJ|J=H=~sWbRk{leIkj#Wx>CeyNE(dtd<`c=u5zcJwx`>HchF)jku<
z#nY1Hdiv*MZ+>k5i0=V9BF3qYzOktv&mTWpF4Ro)gb_b?6z^t<A?6P%`>NX}&z)+l
zPH5=uUM~Hw=p+pOH{<LT+XhXN&Ryr!(hJ(g#c9D{Yv!fpiRm|h7)BW5g9yx);nG8R
zEDE=Mc*n4?!ork37gtktds2#YL~BfIDOt}6KYFAb>mXA*j$G9tRWttaRj%qV-gi=-
zWq#<$TYc^Djqp@I^5<Z4Eu=LXy<%?w4BARi@+24$>!K3K1Iq7{W9LW{yxXikLWy!l
z2eJSxjI=lmcjBkywF=zNFm~jASns&JtUtp%wdb+dz1baZx)2Iuc6zO8eVy-mjKj}h
zKpzH?`CPn+K{FsfZbTE>d?z-_>RX9ZB5aS1B4o*qD`L`DWuHVUbm;ouag=!k;nR)n
zHI5~MrR{ZYo~(F4<-I7&ELDZ4<zi1>?EQmrt?HQnG_qT~Kl1Ata+oR8E^K${{qH2C
z>TkNS+AFc)zbDO$GnQDO_uY2I%4hD+`NJb#hhWXIQL=&=R8O)hL$!Owg`XLnxd=+3
zqIO<$Ww(b-mq($;qW<;LQ0+VE)ggibjzJ%MmGULHWZ|5003IZF%^1{@&bHN%P7Vkr
zGNflxcUJhNHq1jLpw1D#0uaK3Xsg^Jkf5|Prp=wmTXJ;oCrGcyEM>uh8V8cd6xOnc
z)?p;a;^N-~lKek)6lv`=A6I2S$2^t*mjzMI14^+Vj&qQ}JOD~4XSlNf&0VnYA_iwH
z0oA9tZsk!edk{PTK!FMFs{s8O1DIBjS=Gnc!yLc9C)Vn)R`3M`CMAXjGYX;N)U_md
zQ3+1<%x)V0l@=t{08%Pl<4)~UVAzztTYR+K!3CRC(36C<;2MR%MCMcP{sh%AQuB9!
zZt>CdcmNwZ(TP_-vKGRKmG#yNZ2Fx%agkCjklL*!-fO`=P@j~xpBl-S*8L^P3Xset
zn`{GvPxqzG6{K6C<J#rO?6i^>&LBPliGh6)bF`ioaxq|obWKV-^%W2?2DV0-F=&zc
zDOk_;EHz3?hxBfS8YWW;n+flKyt0}y;{#)v*Igy>fC7F;FCu;NFER<E>0+5F<>yIR
z79uD?KmD_(<^}P|XK~*rV+0FebRSb0LIA{tnZ}dJK~pJVtHk7#+5D(%-f3UtYR)1u
zUW<qed5*mI%g5-WtZ)I1k{gUdg<hhaF#*eL8%W1Z3BIj8<w8M8%b7Ka9gUV_mA>e(
z25ZVW)2^yQR9r=5cR)Hz#3$xN`k8ri(f*oPqwqotVJ!%3=UEuNL)KjfwcFX=nGz?!
zdi@!xtq-FURX!CORC%{ZflnZthfSZ8=yx7#YJ<V<IVj-(u+>FV7(%U|Nt%G-SlniB
z!;m}q+WS@&f_;ihD~rijicuP9;C5s^;SpEaU9kP1fIVcf*Inoa24zn5WGJEFkhAc`
zG<2LqXmYw(_;>LMrK83<Z7GT4LIa|4+VXs~^g{z<m|4j-wxH#KOa33FcoN5D698wA
zeJ7J*XM@?C+e6Aff{7o?oU6z+(d8}1<>0f@;=54wuXgvGoaU&&Pwle@u-R3<dQ%}{
z&o9azZ*w$}lr5=Lvc&_i59q7!7Ktw3dP?OW<_axz#n>M~hAR+LQ7kK5s96ReT?C7H
zL@Q)a+O`u@Nm(ReS=8H}ce0rG4utI03^u@(^9a}$U}<+itW~(!fN8bBWJ<Pj<0~VO
z<_aj0tAc4s?$#2`^0%G3fP@nGhz@pZRiRj^dDCPUaX|hvII*}bN?Zsn(mzr-oNXRv
z0u(;0&l~`)j<Vn>!CD|jBoY;>9V}`}#|#9OLdg>cT%K3fI^$}sory#+6qPCU4w<C2
zmPGYMk&QEroR$qY9rbWNGWSs^Kc;D8UYsjaA0Qv-d8hFou*n176j7AWqYd4EP~GoN
zlD0-u(Abbn-E7s>?9|@CD=8j$$Z_zZicJ+_Rly(Q)bO>i{QW=^Wj%aPp2rv4%wJhA
z<U^<5?k(D`$<AE6)>%SWY_@K1oQQ$`^=omVY<;*W>wCzY!QAjP<)M0`-&rHwMGE9c
zQ9Z9;+j?Ew4LmQ8AXMW;*Ql@n@*<(f7{q)9bWrIC%Ba_fy)@%PC9uT+ep~`2Q2Yub
z2?Ck-KtGB9*A2~Yz5C3u@xJMcCW=KROnFeNYGrI8^2|vrgtv2jg_9pvX;5qtB_x$+
zMk|IXaG~sB)W9Hr3F>CE!07eyMUOdsU0^=KB9iHM>q3#C{$cMyj<U8c#iV*Ve5VU9
zz~~@_^Z%UB1fyQ^Mtcy&rIvf__I${0>f<ExxUEf-_p?bz(`dx#BSjy35G5d(BEJbD
z{gl$fnn)1+&DlM<2vI-b2IZ<3MLMu#o#*)$J;?@!{BnTj>pr9N@X7^XBf<}0Mb!MQ
zHC<xRn*bUFQw~_43I2OOK(huSGZ@l00D}Hh5SSTjh1-3@SOZwd+gOIb9CCk_c|kAL
z5!Wyna>1v8A2bFGg$NFDqK7_MK|VJ5nOPB;rizTlB^#qbZ!KsK*C|jeH7EVm9Osow
zSddtM%?5_L+=CL#Y%d?wJtVDExCG+<K#akG1n>YZ#nJUAxF3@s?GM5V58^FYq~!OD
z7X6e=&mScF01Yh0WCydW&Ong39{I$&Ts~pac98fyaF-G&ZXifH58OBlZFU+>Y%qHj
zTF^8xmRL-RR2=0Q>~lhc#E8kwL<VZ<M=g&4JHAS`gRRb}arN-=2jQWg2WW%`%nJ!D
z&jPHe1xBGVx?c7-gBH4zmf@2z#giGuvTB~=X=jt+a{VEs<T@MUY3HLZ^G%KLDJxP(
ziJJ)#&*9LLvEi@|4cuf>+IXJPpw7iudib5hqe&dfX<r@?!TPFCuwD$MZ>P-|6PCR$
zTp8OueOqxPLM`x=b=LgNG)MGkRRZpJ=S=d(%qs<+4n@H8>|!T_H`RE-ei1V0plI13
zjU^Ne<5QvRd!=C?q9&C0xVBxV=VhK6lap_N+^Xs2<+w)bh_s1m8;+4ZoP<XQrg?}G
zJOhy#$6Z&xl=%KGWTY<b+CC02`coPgN74z-1W9tSrOZt2H0s->2B%TI8zT74Z&$x4
z5C8?1z-Yb1Yu4UT^R|Du`>x7o@fS&xP=uq*_F}CfH08rWzt14k=DgJ&4bE~AoT(ew
zD?lDWgz~~kJ~S7JK+3Q&-WA0tq|Yd^=_6arazzZKN_ls)+WLj-`GemF{G9crT(-t9
z)Q8P59?y+_9DGYULu0e>yt4rXuywiw1pfudxVl;@0AwFF&9Cr=A%w>5=bb3$r<-S$
z>_6P;9lW3YUL%V%z-xs(b0yRU(%dumqhq-WGv;Ij$d-I7?(tTXk#a3F|F*NomYyWR
zN5EAH%9lCk;Qmg{#Pt32G6tI}P3#yeO8mDo%Y5vu{>rGn;;NHGU>gC+Om@5cH!mJ>
z_Jo9NGk|CT=0nHP9>a+r^Vp=xElT+A3G2rKR=J4o3T#;Ez{D`1CjjY7zs<eO&8~2v
z)~t;|QLp3l%_Ua4?_`f(UayFpZ5mE4{VZ*V85WisEK(pB1UNUX@mtn_Po-R+WP2R`
zvM~}w1&oI_1!T9FLpQpu76)3`@5%<Mp*MfSKcHMX&L4cx^4Z?7o{8qf<ME$MFFv##
z;cdehr-NU<E62AAT0}kk#G}pn`C;Ss+;%@^wbbG5+Tbf`av_<MVK8=wrm<Whax3_5
zwXit=<nKQ;x4W-|V><)+nbqJk{S*rsoaP;v7y9|)2am()J`&O~Z9^Ll!q2)(N0@JP
zOwWnQ%eh!uK(%LLjO9$_9`JgApX|2S6`EY@93rRcFfNKoiloZ*rW!wocc2iWXE<Ub
zcDOFALJu!wK<=olKY^l|0=!1N*<^|EcEckK12=gMfMf>1M-udOS^FF#unYjnH)7~s
z=YAL;&1>97%rG#{d%qA!TZ-N@@YQRGJSvyl_nSJp*Fo~GEYJ)|m5-z9EZg=SB-@RS
zXY~0diU+l3Et7Omk}Z@~*&a=zX_i}$Rx)58*=gtXpqsWNl8oOxkS8r-WZmB1`ri7!
z^gfV~gijA24cH!NT|jEKVB#o!ZDqi@UbKie1W#Z;%bq{A7uZ>xKWASUo>e&h@s?Hy
z_*wbwtKne??(JzVWx}7~V`GD}-m-79r^G~U-*>ME)wcFmabHr7=KyvWts=VuuMRn;
zNre}LEw>!UTYa+hPDJC$^|o(kc6+uVWne1JB?jtFG&Oa2zI7&@9WmI(5NJn5?-)1|
zBBpkd$L+((u)e@9w#fI<PcPnxF;TT0n*O<s`oPnVJNi0A{^hT)ZuzON_~bt`kH+w(
zDxSn$9R9ZFdBMdfyvP-+UztwL=I<%=A(|~)oLE{?aCVea+?YM<l>gfZ+Z_kKxfs5W
z7u|t=Jk4b+JMcm<3K?gJTsK&Rk0QxIob!a4-{-1Vtx;FZl~+)Y>uy!9oO@@Bfc@8;
zqVW{MN0Gmn7XQ4W7F4+Setyk8)pqU^ab0+iFQxbzeZ#Y0*TM3i;LOwds!?I3VM~k=
zqr(N~+^5h9AVg|gND@Vk65UP<KAL5IJwp0;T%?2NAm1Y`eqdXrqT58pc6qY7ua$IT
za#FiqwOe;FMJHH3u8nnke0bEvd8^ODl8Az)SH#xY0YyYIBGOB_DuU?!8Rwwb!>pID
z$0(VOc7|t=TVpCQ?baIq2DqFlO~P&;cw^%elT*{5X2tsl78I8TNmq?B`_xSY=X7lo
z)jZY4d>QC(uR-dK&ze#|UQ#x`AYLKZjKNt+`{Gx4TH8ML*H563vaKAlQAQA=98FJr
zekd`EX%_Y8_^g2Z4JOi6gVNZLv%^gq?h^)Fmcxg?19G06iaMgPPNV{hyd7~is*7Fb
zU3|J2$uU&<bQjzGaJAQS`^e~qxTlSjnYl)%4ecP)gFAU=aok32b|VRN3W2yzmv>XO
z%Re7_S@jB}mtfBGy*DvLx!x)rquzF}qJYHoiUmIQ!7v9NGm+)9ETR;;ATPy2KPOY?
zcQReN&yJnn*>m*)MjR%G-_<?MlUM-864Q&XR^%%c2YRjd`hNW|R2+nwEv&dq=v7Je
z86`s33jjxcpTM|u%NZAd9{z-HD;+K?!=+(Cr>`Sj{wbG*hkXCKP-p(CEF$ce+t~An
zd(R^yu790>z4dyd{{D8oM%=nNBqH-TFqN*)D?*9k{0K2;n!zZEVDr2xhVlK;DB0bk
z`7sI=Qp52X$;TSKFb&L+IBCLK%!EC9AI(CnEC+<_Wy)jX*ff(`Y8g#GV&XipvuawV
zLRi-xhB1M~Y;LIs*-EsgM={fnt7&H+lm&cQc&&dE?bj?8bhFqdYWTV1^}Bi2j$s+M
zZmQQK<mi#N3cQG>7^?vRi9QKM^mZJ%5%3L=LXWW`Nt6{C9Z$nP{UurGI0loTJ<v|O
zgs~7HFN8azfpN5y(;b93Y6F41dOcIYips|pbK}dpt&G&N4=0kAvmc2z<PALt8@a<|
z2VGi*A@mIF=dAUn{8Pbt5APTWCSC3=OH`TW8LH8Fy|KvcEY0uyFU$0UE;pC!&u8~(
zYyxbkWiI14y`TEv<HFA4e{2TZ9pE7pNcY@Nj^t+y7{Q~tUt3x%5hfckg!uXmr|a|r
zL=pwxo|S<*uc`GjA<Bxlw6Krkag+w+BOK8$Z*`=Q&AGU|!<%k_d}@uPU2BOGGNSi%
z8b~j&V8El1*!#-+&{dUC@+!A7Z6B4i`a3`07l57Hp8zNW$@kpE0{+Mq|2KxGW9oc~
z3ah4ZXiYz~ZYjGWti4#T{r1iCB%e0Lc1y1|ci>twKaNQkU=L-y<^GaeRhIH;dwLCu
zo7?+;-`!_Q&_j4h2>jCZ870#!K}@({ZfN+#-dX1n%@hD>>_iv_wiJ#{RF9%8qyFa6
zStGZh^h6FeuuYP^%^<u>-R4j36y?x_>Y&rVzY>VVZ_eDwQIVm7ozK|+*r!ccdbAEP
zZ@gu)EjOXj8=%~}OnpJvN?MgTb=p&oUTTNZ`v{_;!{I=1%O!~Zsla_%6BGk?ZiT$H
zMG+$eHUb=VB$ITvv&AvUI$&o4#*#2Q-a#^CwO-zntJYt%gG=G$pW}=&S)G(&PZ@>0
z{wuWDeiA@<60dnX09D<`)62i^rA^^Y(hw+@b(hPhkD2q$o37{y-oFnTz+oSBkHfV9
zLZ64?QnXAKND>%{MBK9wy!cQ5^Q7j_YM*xcCV`2NIe8}#m}aDfq`n8zly1zjGzi#c
z+Wq}n?qY$HU4RzRGC9&=f@OnYf$;DS5*%51y48C}Wcum^)Y6dj*N*C(B4uo}+U_GN
zlriwEvJ))b?qp;!R*OMq0kPT<8Ww9M8CdNVHcX!J177jxk`#~|6e%}W1)Tn<G&f)b
zD7Uz*2*<v$wN`oH8i&okjlwqU8|7IDer9Ypdgv@K<xPy@h3}$uHL|*L?LM1=^`_qt
z+}ZI(RZ^<bEf?7Fx!5vMAvA>NEYX#nr_kE9mTK5ZFK8HER+YoAeRz-=rrq^;jdfEz
ztWYOXwOrj*vF<*qaaMfOj}kicm2oxtor`*a5XFnHi~^11`DNYgG<O6P(y_!kYRLQ=
z@TBZ(yb*(BfXhb{Dy0s$1#4-l^wz;#A!|e9f(*Uq_Hz4xGC@P6<Z==RTcS~Pv`MnI
zX$@@b01zM#E9+D(Jq_kXDQ+WrmG204N>|DeQ<~px|Iedj_8Yy_`8(|B4+;+-24Ti7
zl9!Vgu<ng-_BjO~qR!|#o+_z2)gT`<mC=z%)z=#Of()YHzK@hh;;|bmH<vRY$Rzu-
zSuiMuEOvf*rzRqxqDaIL%hZmPVZo`gX{@L;H|U9JPBD?O06>=Gc&g#QE$|GywFo*W
z`hc74N`P`B*npGNqU+nuZ&WgMI0Up3uL5=0jkbwH_kKNAhsa}Mn1ai}Y?O)MeI#Vd
z`2+3oW^TY7ZrrT`z-okYZl6uH)n`NYzD!SVVl9tj>ceCgYPYvCDv}Ue36H9lw<De*
z#cssxUuhVKgH{#5zkXH%xKXikX6-TZqT5gCGUHNIkjZW#L5N+t(GZCZJT(Pil=>fv
zIv)A?#(Q=Ao7aD^I}3JngkQZ<<*if>iaXmws#8NP7kMKrDd%g{aKcRK`0L<7bE<ie
zQ8xe&&}g>fc+r~7uXmneO69`WW<Mw8Dn*llccc>zZsRmzB?6rr*Di)ws{izvr9?V0
zj_bU;&yKFXqv!^FRUMg+mns&<?^zG@k$<L?&P?6;EZUb9qC0ncLr-@j%y>-m{_B2z
zpUgGYx=+rRa;$<zG;MqIHUfA2gWke-3S8ho#GAwo*Q&InM1gEnf1lVz+wX9E?K4^O
zz7y1+=_yFN0()%(eL-A~@VS=X*f;A{8?^EA;ZW&P+PgFGS>e-F%KZ<<AI8!h8+I_6
zfLTTrFNW%4Z;zl~tFcL<!dv({(EKvxwHFp{jm-9p(S}f+5e})ez)px+j2=}|G)F52
z$h?Ip7fDj7kWr4!2)nZ<73D)}VE}|^VSKG%A^brL)#W<dB-~gu7<C5Hsx&+x6F}G7
z8?au&g+Tl9(Oo52U%q-YR6=URkNgY(%DE41X99pNI_itUHgrEhOlL#uGHUO!5gFc7
z1wnn!)5Iyi%72O#*d_NGSl@&NCxR!{jbetm@uy#00g!;H_%=J^BlG_xms>KP$PD97
z#e!AtnB7(>wUYtaEC#@xlR6BJ0O4lFDc~OY6MZJz(`38w9X4=Ct)B9c<158=$xo@B
z2+;A7)%EN9_ilUhA`igjN}tnx!a3;v?mw`*q9Is_0iSVPbl$fUC4{fXfUWHf2ipdB
zp4@9`06&N3o5%l&ctv#f4t?{*WdQGV@71Cg-WGgY@Dn@7fIU3tdKd5g4hm>Hn{EBQ
z0sXh}?hifcxJUbo*4u=@Z-CMNZdP5Oa!=0{DHt#mghR1qXUuXEaedi;r?i>BdCvag
zPHu)Nzz6!^R3xNSjNt4>xO$5C*Vgr(gj(o~!34pmAy#XP$sodrH=aOku@Gwvv{Chi
zHYOco4>7>^^k87bz)NoxO))3-T2xLmC88G(i{AetZLmw91ozs8U%mtWK81YdC0(c|
z>&PT;nkSR`hWGS2OQ`~PdqexgoD)t7N0ylg(^Ew3He3wfEi{WrBBnS-k){~XDY`)%
zForjAn|*lrfIZFU-4@d5ru{i+CTcUkoXRbU^a&@eU<R$NZ_b7jncf1`zI{S1h+zdC
zgv3d!q64OM51nzw0V;IdSV*P>Q&;`dv%^Jsug^sFUTVG#<Gau)%1hlb>c|e}vT`}a
ztgZb<(hYS6jU+_R?dh@r&xX-Dbu53LG%EL`k<=VY@+C4^pf1DN80bS*r{2{%&}B>~
zIrx(LoU_InvfYzl{gc8PmPR|`%f8gHcH&D}p5=-;f3XiB`MS+gbxK#aAYtJJ2+f+c
zkf29k63k$ik0F=J8tg1aguh(Wbo>|H34FZYV|a;iNaAvqbX+e^>#^$Mmr5kyQ!4GY
zgde>mmvDAS>o!x@Bp1IAB_)owP?IU=oXpdYSBID5oBCcFnm@!3VDb>IN=;W6&s|Do
zoKJ0&Fv8nK{Z<<)!oA3E2M~CoDG*`6SbIThs)Eo-5E6dvs|x~ZV4!Mvq=^pnw*<+b
z7<?c4MaF{AGhYu7b-I9_L^?*C2q&ShY5jhV{n%CFPL9;UqS&dPG)v9^Dn~*#XW--u
zr5Rptn3^$2l21X{w=7!_nEhNpOtQt#a^@}P`Zk_DC)mti8X<NCFm|?#p2Fa4WDKq3
zkxnNS5O^!JnTWvuXPem)0GIj}b<1&DVhhSJdVJor14f?RG~+#Z2wbFV93S0-RwhOd
z<*Gq1kk7b`h8(~iw@s-IB4|eu+xiA^rvpkfTK$9nQs!KjnTop!@LnAkSBpQQ-9IOs
ze3O~;-f6OGTbJAn^1huUjRTtN_jfwfehT~qGM`S)cpuWb%hQ&w%xiK_<;Q&q6F9xS
zn!<=$gf>!CfQHgUrGG|!iAZxP2XQ1tI%9lqfrf3uo~%=tT+R@#ovZm2uNED^*lMC}
zju6(V(NHj9G{vx&A!{sgF-b;r*cq-O0ktQzn+fmHry20Z>W5Wr3im*0XaL&WLtBTJ
z9MVBhYIvyo8p-wg0yc9|EMx)~>pnaB!8i~=1fbLXgfrmJ(4G6CNvHWR>IcIKP9eEP
z^fEUCDa~lobo<3#2Xk&U=LY}o)|Y^4_$PPxxtrRRo8FNY)63h!87n&8H|^y!?@d^H
z-=sU8#uk@nntExLXlkC0hEzZC(L-A@&=`Alq5Cm<y;!r;X)~7w{lB^Ux`40lB&-}%
z>#TI<6{a-W%hW+Y=<Es1olm_bQ##mwx*b4rE={wzpJoe0Q30UTlpHOtTeH-0Gy6)f
z7FEJVpi`L$WKY_tD*(3)`?++@C#K~#Vb3;|rug3$DxJhaT!=0Z!3c=8#IKFw2@ZAT
zaz8F<>67e<(ZePqPTZ2t*BIwsob#LLCV9YP-Vx1ddq>j|nQM1;RdG`EL`<I_f-ex^
zL+{))%Te0pqI2eQkI(fH@^P}+y}M>Yg<eqYeAg6{=svVdOV8T)ZhU#J$SYxYl}<8{
zseC-Wy?W<cX&H6iUGHTqO?|gXZT{@Qh^v1mlo{#!yd2agPILA{z$VE#;^*RIk7p_F
zzk?RPp=4UZ3no!vpHBd{Qx~5JNe{Y9NU@gJSJ%hW`FR6akD<U9`yY%%f4=0ph$fYV
zP@4NvRruODL@D;l#gheF)rv%@ynyT;r(q#Qr?8uBH;H|>97?0r#E|DT1QC1tbRrpG
zPH$+Ncrs~k7{f$poq33CS4e4xmzFsjXUr4PUbkrxn*$XoodmhA%;52$kcD3Vh-kWf
z9CWL~*%A|jj%Tm{KyR;FbQY`uDv?$RPyjvKSDraiGgiu;XqGx}`KoJqAyP3UtREjM
zsC_<OPGbI$F*R^FT*Zni2CPsHQaphsB?9HK<d0`Pg_|EfqNPioj+^e3Be#fVC~&F4
zLUe^`!YvG=8KdJ@fz|f0&weF=Tap=Z@%D0{$9>aAzaJ1+d}KCp%jvqd#!~dH!qf^7
z*^G|Q`jSfvlAhv{I^M$?e?x8M5+t_AOMWo8t|oi}#xBXEb)*oI;|rpbbK(krV2%&d
zO5For{Wxk~&DiNv{?(Hf`#GzFk(9J4YX_NbN6%S<qff)qH>NoU%?NzTb>3#=bT1(B
zvCsJSJKHcY@4r>g1=5&U^T0d(CW996lf)dV<p2u0Cw06@#RWV+3-U}y^4jE5rI-SU
zanFVpQqUhAn(}iENAvr;S3d)bTOe_o%Qy#4t(yD6QPFgh7V+uAB~LLW*IGqICP-c`
z7Yw?@3o1&CDcUV8d-JeV%0K4t7*<}$1Xj&&8Y!7BU<^?CE-z_gD*SvU1WS%BKIS(G
z0M5GCl5SOClbg+70!+$9NR9B{`v5c*J*;18vM#Z-N&|#6Y`?Rx8P&YGrsIH25FZrh
zNn;@Qv~JolJyk}uXSEgAYIgNl|La{qKf*JVLM6BAqcPk;moA%`^;xL9<yFIrKt$TX
zEw7is|A-DL=V$q&o~CB_?JhR!s#Y+!A<Grf9GX(c+f;*TdSOu)%~@}J<w$hL>-|+L
z+rF{>TFmiGvwc?94xsfZy0y&`e%5ziupdFHkSoFD^X(^D<p6i8ql!Hslobz@y9Odp
zh&g^eY`U7WhHS83*8ze5txH$`$Mmf9Pm@j3n$S8^YE|N_Spm08+si^H&9%DSfkOT;
zfHO;7I-u*$%Pu7rs`tq+lD9)9u>E8zy$^DOm4gWxa4hxIM~2A(@No5jKgrAEq=pAq
zIjLhWPe}&T*V9&h4oFN4z6J~~JV7KVScS;HaB_PYm5C6Uh+gWYsSg|4w(3(KC}H~n
zSFCaVDNz$r0dQ(s4h|z_9Q$`=$?-=<*>G)y<?GrEo{AZJ=9esi=6xw&WF%f6LWN;h
z#<r;<9eac0zp*rFUBgj8;Af}LC)EGB-6gfgL2U6a;AkPE4I4AXB5vNN<*@&vN)RzO
zumo$iRMzA`*ngZ1UmP~l>8}mm$W7}PjXe@=>&F9ct^(A;5&47m$u}Ibf-|o?W~drx
z`UfVYq9^%(Og{SXM(28Z?&sPE+_)@VJ4-5IoLJ%6CoFVBF}v+XacE#Zx;XHSBEO^2
z56ff65AS^+_Ag{ubA7SCClNh=?K<fZZdj;28ezY{65^{uO~X7it$^tCdHMA0W>MLu
z_=(8^Z}EcZ%|cuALw*}lH8y^M3Go+$-NGVH9N`1JJ%8l!(Du>(SBkUum_FvQar#(?
znqI)H0c-a_iyuF%b(F4`BG>xALWX&k53Z4tL-!?sv)^BKRF@~l{CaNek=puq{a)n?
ze<-`zMvQxHn>H>t8)t6{Ad*1}p#Vg~)h9A|kY`*=@l=*UIS9%AnE^^4x&ai!q$!yz
zpVM#C{d*}Fxt;7eioyYf%As)jHw7t#$d~BdYfC6b?xR-?pnww0g;|50&M!QovsmrR
z{S08nlWYh~=-dus%RxrFc<AuXOZaf^=+2GGkZnnJk=9<=;GPw33>=BidW(1Y0F^<4
zvdK5DeJ$(D_Pip0Ldx*{TX%=pj|wvfxzONxT$6P(IGla|Q%S3#t+h2dIAs`Wjpsg6
z?84xoCIF}j7Q&akTj#LX!v1Y3^4rI4mNn(0ZQBzS>`B<auf4k2+Z)tzW&7#Mv-fQC
zi9Tg;y~1ZHZ>tQ;*su@V;>@IN^BD>Lu`f?fhrg>!o_tl7@fq&W4E=t-^&<A=5yvNE
zbj>Fn_ROFmC&d#IdE5awo$yPFFoG$+__PI6eYO8|cq8uB_ui-<A4f_Gl&`n}46MqZ
zdAC3$R;E|~PQipSR>F}~@~HMxX;k!0h20fG{BngIru_eG-dNtQ>HiP*k}-E_1)3d1
zBH9@EK<*=2vok0ow}uj3T_bM}B&Htz{GC^8@Fv+f<|8!n&hGK0>5ZtV5~-dT-AqTG
znu*uyBO{^F!TR$0OlxU-_qRSW>N9M8nRl)G`dFJ^cvbccO>8?K{%h=vOvx&&XqcPZ
zkSC#H;uPGD&&V%}BuCE{$f+_pb9)+wo`BjUMP=ljV`phmoQ9-dj#fYIoHqAcOk|=^
zf|Ohd1Ud#rv61!|RU;a@n4<X(F5iSs5q_RBKtYRkET0rwt|8NBax{}$=XNz`Oa&n<
zT6-sa>Tz+rf;7J=UY2_j7OcYzDXIXeAZT<HXVH{C35lLM`_djp<#B3sl(yLLwZ)kf
zO%FZEG?Zbbx#Im3Io<b=`n(EtFu6#u&jS)ls({A*eV!K99@S)K8?H<|X{_$ymRD0y
z@>nuI$jB?~j<8WpOyNo1^f>x)cK);GvrG5*BnmDK<aFrw47=WFV$%GuRk5uJFtcNv
z^^=Q*YMo-|vGyk#=5cT)a+s1p;C6pKu5xjDiC^<+qs#jv1-&;6C+!MW6El$Byw^j7
zdki>hQpNv7tp~&2QNMrk<HE3XKKj9fqgCIu*G12$y;4-9Z-b;A{AFg;Y;u4o$G=ny
z7Ib8v*%=wgafNCE;e2*hScz=_0-h{2N=>2n1LmJFXODUGh8LC{f2Q=FIq7;eNHbFJ
zfgDwQuiKv5-NJ@TlPKCdBdQ3!O$i<v`oZ=bf7O_rIbd~R!kXqov|tUZc4wer2(uEC
z6RELSmT`u4QSu(Zrfj-8F>2_=Y=o%f@2R|+()=Q0_Y+8o@#jIU8a5xjk5y{-wzf0$
z!8p);@a31Br!=tDJvDHUyS!GSA3Yvd<>#E^R`;;}M^3}R6i@}*GAus@yb>HG2sZS-
zm2ae}U`9<hK6mAet}9!cxn)~WXANBASGQy1>CZxkEzMh0ja`BDnRGOqgY9um&yhaI
z9YJUv_tqu)9dsLArGl78=c4v>@4l*#=+IJ`f>&P-s{Le$Fk{%tI=GhA#s&eGv}4F=
zU!Jm&>wi0GJ=ACt&Y@giXdCqt3Ok=<A*6Ws==rQO3{+TpioE()G}}77q8D=(ye4LN
zF~J$e91l^@$?R<7;2@=_$=d>VFK8|m3oYtMZT=9}DZ#}o85`SNB8k+tA#h=f%@-?n
zv1~o7jybpWaV}M*GD8+Y<#$%x$NrM6dn=@)NrQIMyH@YhwCHcR3;!kb;t5;O(WFuG
zvc6@L!ui`h;Px}s!4zZL{@rJeW&L}_{{KjJGVY6oe07cb7kvA}>WP0+tJAwAO6w`>
z10w4UK#-1|;pZ^Ea+E5u@>ll3voRXG!SmNN!(pedxc_?snYktp|L)gpd+=k$@%hlt
zb^lL8zdprs4FBE{w;8JWQuTcJ>RZ>R;p@{ej#oE%#ZTYe{Mvc`>fiPEPp=3BFs0|E
zuq6QDio1;tMc+Q#fLR!Ofoo&Y)Fnu$u<HoI0TsIwTmFeJ8bFIh#i5pvBs#96G?l1$
zp>8Cxv0n^BJ`!Sk7Y%b~1T_YD#>;PTQiSb~aexeiMdSXb>XQ&db9UcAk5Y#`c7L2-
zRU*Zxgp00Ja$G2@oZJuNK=*QgLOezy&EYYgt{8`9>YG*>X5wa9-=CBnmB^S7=B61p
z5)hk_cpAFF&2hc|`r@+16-7Bh&6r8EAmW=IWzECQaxkSi;G5*A@|dd_Hm&0znNze;
z4Nfdbh8dKDV+X<Pcim=;D<$(9tvT49;jztLhFMJ|yrLd%Z>-!~^9;hQczqAv*ny-9
zMm>wfh%q3>)r#CPYd)#sgITA;P9RD^MbhcdtcQbC@mly7N_`wLDHabED=3ldb$jby
zDOGBdTdih|igCy@F1;w>SNc{sLT^+FP|QKoiMYLsB7mgJL3td?5%IEvfBehgHUjrq
z)&^tbr7NjR1=Kr;7g8LgtC%+h{(_iPGGe5wx!BxR#IzT4Dy3_L{>D8pKU{n^np-8B
zF8I*HeF^*aN3Hy(pnhB7(wsU563Wd&WRbv8B}oGDS}y=A`+z7nGTew!l~jgxs2XQS
zFyFwTkzmELrwJymK==^ZewEx7$<=&_I5hZ*eIM39=j|NNVu{dLrn0!xYUXihT(t%n
zR=uQlc(`iPpxrcT_9Vx@RL$mHAeJ%#RiWF2Q@Dgaq9msef{J2^4SZtAGaKB<&u}Cf
zXI#YPMBTcLZ$I^9X?T@W*@$4-23D~k%4#G*>z0`y(Z<GcF?scT6j14<<+FZA7epPf
z>V9OckhEhI)A!t>^~&O!<f~BHfKTiRwTKUh4xg9HpLz7EI*fSh%B)wzL2TJG)oQL!
zwpV?zb!q<EivKplp3CUvW*2}ZFTsI(`~W12S{VA^?{onAcGlk>mI{=sI36_0=iWAk
zAh!C5im{ExAQiMcbMOlIwwbL@0rs7IbPSnq9QS~ioMsgT33Bg<(F`Y{%EgZ8`Mzh<
zJ{zSO_eqeLwEuZV0%XwjhiLUQve^a;%QRyk++34@)p8J3`AA!C`w3gg#;ygh1tKPQ
zUf`r-Wj%-OM`Ail2Ce7dQM2Pp1U)g_7f)hZ^L<GC=aK?`dzZWTySiaS#l`o`_S0v}
zTLcBWMw!dM_W8=D@&Rs*V_XBMJ8q5y@uL{(^#WX7NaEoPs$XvA(4@HKZlk-HA1T2E
zbePzxZKMA;934;(%xYLnPTBz`hTmTM8ZTQEAm0SroK`xlN7`H{kM2?Ne=uS1Y4MF{
z*FF6_^T?U{Me4)0dkWD@A15VAyLCxytfE)&7y5R&>2{XpFYiBsY?IoSyRxrGCuyiv
zhB`d3oeO>c->ru%1uqBLI)jOhUSuQQtI`c6sW3q;fTR2)yW!%4ByhVT`hiA43q8a}
zwL@%e-3wo%!<9Z44LU+8f%jspdoYCU*Y_Fwvi=+}*;l=OIS+KC;{KwFXgqZ^own^(
z!Ry6kTkbz>1sOf2Rn`Y>uD|W6BN$`uH$vMifh4Qt-gH{&VyAsqqU7aIjErrLQnv?I
zb^$*dbtsO>d*yA~y#rAc*nP{mIRuZMFJB(+#N|^Sv1(Z2vnA+3%)v{{zZ2RXyOD{b
zK+u<Ew%?r;$`6+;#xq`*{U>rVL~^cZi%_DBCAWvaqDnFcw)5?P$8A<Ul8*rb?LjgH
z*W}G}5#QQ;0INC^m#;YT^eHg`3b(Cm$~uuV&QFMm)#wJ41<@yUZ%7}hl-pCGOi%6p
zlc?93aNtS!N3BZ;$1W$n>?4!=XIDk2`o1(X_>E)rwDbw~h(Z^&EItVqJI=XgF$Jn&
zAse7eU-<Vs1=kI>Hw_%$mN|af6#YAR^OG#?3}}bG;ea6NZcNKhZIF=*Gbay0AUKhy
zF8Fc?^zV2EyvN~r#KF7qsT6m=UJH{bh^Kx(jZ_1W_Kls>aeO;YnR5ajVxOC|<3lRQ
zK?WE~ZD^$Rb2jwE2<x`<{tU5YGMvxmec_v<x%haIXoZ5598v(q=NQ}IZ2*?D!MB3-
z*37LX*^C&Ca8+UGv|>(Sr#LA+9)X<XX|s)PQ&Y}--$XW4aJ=~oY1!u#`<>TXoyKUS
ziqwnAA(T|G%>ZHJ=&w{9G&po#i6L`(*?Bi5!XT&lF_lU?K-Uu;WsprWS<!5&LW3d8
zBLit-(W>KE%j(ZO5-MVPajul+w^-fK+}OA-sD2@>-RpstmL`cJ90K7cHNp9sYFMMI
zj9p_$Q0l}1ST8xW!7NTtXjGjNLMlfrZl+Ez1B4@uX?UI+%T>{#xdYhHf|1<1lngqw
zYK?bC6yBm0&Bhf^)Rab9mFW}A12p2FRH<QiLJX?jKY-Fw!e|UO93MdBOwhSM9Oa<N
z5+^%S8awwEcT{WRzIetX7^~Hg)v_sHq%*4S*T%~IbiCWhg=_|>*RnLk^9a3t96>mO
zNU5q;E`Qd;F=_rACrv`D1{<rM8L3)EYt=%u<$*dst8@mkwe@1@S$9c!cztK%G}+C=
zO>__#Tn6d0A?OZ*bO(Trrcv9{qON{W$=!(F<rUefLIQNNcW7n-R?MS!oOfhC7!qTu
zh+V6^SgUDFqU{z&5P=1zlTKWQyCKtSOz*SkSh+dtt==mFs|=mncz1-SENPM|oW-KE
zD-iV^sxFNSE~5z+*}H(j&(3jsJoS80tlT^@z<XERdPLP)TaFKuRXxR2MDq7+L*oYS
zRuVt7<v+9ZvfN|K#0klye685N?^(Go>eBYt>d40+bdcT=>j<vLBAQdF37yd}H8dyR
zgPA8Qq-u050WgoZm1c*9kajewYg`DkQ|M@1WMy4wKAN;04Mk!hnDx+sB84xRF<j0?
zDrhhUhbYHUvtr|9(7+@$<{t?z{Xhf``}heim^u+&k2NpA9<$=W^*b*0*nJdM;U+rj
z;;W<C$1lr8c@_c*qu7L)I_f0;ki~c`wX0qUdqyQL-q}?hTlzHP>%gs!!Uf2R)BvN=
z^V1{A&d*aK_Y)2uNqf7=+@jB<ZX#+E@OCVGp9vIzizCMg4=tHgWKEz18g^Z?Gc<!`
z+%i=ga+!7V4(ao2_f!1b5+e`zyX&b3>!YUXL-}48)*ciQwghuPg6w@Gk&^CoX}DMo
zfnu`}1Q|Yp+4hOvfh;>(s0Rm}AK?Hr=Ib>)2Qe7=)IZB!X@ob@Q<gMT9?F^QXB`SW
z&E6my%q&jA#SJ?Lkhn#&?_09hm1VePIk?0dHsr~;)~eRWWhADKy82%5@+7&s<_gfn
z3ET^AGFNNzZa^b&_t~xYkn`>pKbf28w!1B`VT<u0IFNf<rE8-VWE@BG#XYc(GJb#t
z{-ud#*5f3Z^VO9w8$hIi)pH0gGAuLFPLA^!t$T9&e<b%DDN=uQB$RzppZ)ouTG_43
za&kgaMN-IPhO2Hs$sv##-ssvqJ_BUKjPc{wVT5rUciLhXEA@<*%QqiNiw`2KDPy^_
z+sL!{x;`{^c7wW_i!(x%?n{#eQuNp@vDjdO+f}7m<QTVKViMOvZ$bh=>cK3S`?#h7
zNOkojsEitbWa@Y$kWEdo!mm>`wB7s>PYb>L2;$2(VNP=1axW8;Xvz5z2iBHVr5KC%
z)^pXz`dqCGi(4Pe_MUpizE1`VcY8T)HBWS`3qSDkb9JJrthg`~_&}t#O5eJs*ZSE^
z?B(4P<<7cCJ|}C93tz=F>z5Z^*BBxPQ}lVf<?Fpay|w+wMZRptS44|_JGUYHVorGE
z<KE&))8~`*LxjBIe;>3?0o|=%R9no30U3lByUF8dP1<if7T$(MuV=(mtXkWc|7s2H
zIcH{id2?lKrIguvH<j*BZT6&iOJEZ!(W_2vB8&eyY1FbJ(MuVL@4e>$YWyq%N3r22
zd7>&1eH2&$1vSs1+dr8IIP*fIRy^BdOa7ZU*<2z=zb}JrzV+h5oB>?h#p5#XH=|)H
zt=p}~XCQ|onUl57c0^N+Z)Y>HKk4k@H{0BHh_O-X2XC6Q0`1@ltrG5e`bW5EC*oCu
zwp;-33qX9pX?w6Xq8V2ohc$Bm_)g&VV@|k!S`{CzFutjwDZ$B$rJnq?7e10OqD_Sl
z5_vX@8sQ-IqNY#-Yc6B!O28SCFplk!gTQX!Y)h_BWNuf3nRx-7Ce6nT3M!1Lr8L;&
z3L?KyfmnW7puoKv0r3Za<-c(M(%`(_KniHml%R!kP8yTYes@ltY&ZDCCj?{91zCLm
zY<KpmNr-eEZ!vWmt6lIknIoIwLQ>H}FSEV>bg++gP><|!xQ{5#!<q!Y>q1C4bJlLD
zG?A$9@xjC>y97yOJlr6W-hR!f<}{h^J7A-uN9>yr|FlGJ(ZgJS?$>cVZ=$cs(SI6!
zI@BuAV@zxqZpX+`xmQh}w%~>(zISMh<OJj0C8HU+a3i;_^kAGu)ixqP8od+EBwINU
z{{x;D@Zcq*PO-FRmAx=wr7LS+lleK0`4yU_E}4t}!nzx$QT5}Ycr;Al34JNnNT=oY
zi4PSeDbaP&Q!l}yBdRJKz}wgCcUYA}d-<SF+Mx)G-Lf(&$L_ms@W&gyyRxDWGf@qq
zb5Bb$3a)Zg{N_f^S{DFdF2T|_H?jIKdGPtDC$g}wkg8C`AbdP&P%`C$Ta4^GNMWPU
zU{+q~ZVa)lNcf(OACzcc+n%L|X~YNt>0#}&pAj0f`KqCf?2*|0&Q|^Ny7gyPfhJxA
zC}Y;f7JzfsBylp4kzWU%L{@w)bXyuRq8prYR2cE(5Agc++Ur%1_e;tDt^*~_CXK9n
z>XN46SeeJ{F+hTGnb+4RS95h<Q~drcZvtVX^me}_oV`tmeg(e!92PVZ*4>Mg`?Y5I
z%xOgzA&thGt3cxpONRoPKgF1_fV{_Kg4b2TS-66tepU(eZAx}Ka7#7WsF_=pL_7=P
zwVJlAtCIagOwxWpjj$q)%IpfIXSs<^-g%ZJ#UI%q2bXIyE@1mG0Zx7;SDXOABKjEO
z%<RT+c5lA2bq6Ou|4s31BJ#d0c77s&K`M(S#LOgk);5hgO1h0V<SB<Pq!;W<J6US&
zk_7w3|JD#khDL~NOmqU^a_Evb{a&k7!|m9NHz|i@vXf?eWy^o;6`~ae^VqBbL(~Hm
zRWrO>z#T#eM3GolR+vFW3SAJ0<yONX&X~agXykjIKypj_Po2z6Y*kHxe@6OCUiaIg
z<VXbMc{Am`isc*YLUR>>O{YCfh66Q@S0OhVG9~e}EWH8rL89a5)U=@|Ls$N<2b!C%
zJk~>>>|7yCLPJlkB&#$#jALs3uOe>l?vh*=zZn3}hXfMsm(_{Pv0lI44hn*eR_nZM
z{mvXGr4ndIRPCbMYOFv%s}&ig()sI*V_=Ee;#_So@aa%bIfDehcwblVmFuS~duhdf
zPkCSI*y~!&yvIE>@~MMQd)spm!*=p*$vv(NJEfnJvq#Y8m*mt<Ep}AAGfj$NY}jc9
z$u<J--reUvh36F&xE{?SZn9{@4<q^C)rBjHuzHI{zY+%bNh!3*-l~3k))qHrj<sJR
z?zD{zE;vfO&5pA$Fe;Q9Au%Zl9DRaR+KsUGe7>zlyRHHs#KG=v=KtmN=ma(`E0ynd
zk*NKACeknP>#u&L9vqo1CwKK?{hGjz`2r6&Ujoi;45^=veh(gGg$;8B`0*uLDJ!t^
znkb)_N$#ykJX8*M6Z*%<3>rdQY^Qbx*FnTq{Br*25$nD!?){6mQ&u*%o$wvB%#SRr
ziVUrftX7DWM!Z~mRpf07JS3Hwn;#zN>O%5-ioixByy@L`x&OnXWVlQAWt7TSLc1iv
zK$29k7_5l?a}TRvf}S>vr`eA%V(79E>Dx0eaXpQ^_^u^M%@*jOnBa1=pUO-*D<d_J
z3s&RPYzI@*Yil^?eKFK-an5QmmkKE?&4_2LWsc?2?5IwC3`tFY{5|X2a%G-pwN>#@
zQwoc)lwUA998l;t-&o*wqrhAutfpF!tfg((UlPJ1;QL3o@PXwc-#BS%i5Eo=?l0yv
zkG{_>DJA7@Zi<<zzGLY*`a2-yj%4(7wkj+#;r5|ddFEsP<l8MKp8_hC&;YT?qExOc
zVb>|4;XFmxgYc6A!+Y{kq7K8FLcITBfp=<cvo&c=n3@+cL@7GZv~YkkPh1C(!0s$p
zEH!q&+aWlkUF%7;1v6xbh!z{KrmY<DWvw9C-UvgNbj%mSoH$;Q75O{6x{Apc_mKPU
zYt{p|$4=RHV#HWA$;Bk~H2ypPSc4yzy~@=v8*jS6ERTr%AHL2iEUGtd*V7Czz|ccV
zcY}zOL#H%2^w25Y^`99Uq#FSTq(!7uq#U}G5JW*hIu#L7FlY1aZy)b<wyt%u4%WNg
zYyH;q-1qeyBp0@eb5>M6PvJJm+Wk(mTPsYwsq@jBc>Mui^Vm0>)BIFy+!}46PD}An
zMv$ex;Mqd1&ILO@vo>HXYjDRdrN(SwXVO#9B97{cN!dP_PkWhac~GP9q@>yZzF_EP
zGELUb)B7oF^eg6GQ3~0A?gp%KUF8z>jzd?b!8Xq;6jd`bhr!By??tK0BCFRbI5u0E
z|EwO^hOm{rn^Cn{`kYfsPJKCG*sgEAj;Dd$`f{$ag=72`t1r?8qMm&=K$VoLw$;qB
z(eLG7Jvs!0{E<>Eu``#-)QKoR=mS=vw;nK@H)XK1IwyUl^Xr<|EoC!IBLNY1N;7a~
z?0WznCW8YGGUEF-AVV+={>4Wux*8-}=PwLJ@-=Sg@slx#bP5-=#iRgfm1i=}Fc=7?
z5cB3uVJQoH17{L@<Z2@2WmZjq4{*3-v$|#gl2`!cM|{1?vGotdbW5uf!R)0C;%SDB
zL_C$5_iMP^YlSTw{D=R!<&MNrdxlV@*oG+r#HB#ImdM$mUxf{FNrcN>%Bw!vGG;c@
zp!`m+&zpXaTnn+gJ6eQ>^UdMXICHRz=K5a5X|oxV^lwda5_boaPybDUfG8(3Ae33Z
z8$hYjc@X~A*^yas$u+0{`aAyOyFaG>)x;~jQBdrpGB*%<eE!BbN5azh3BY*kt&2xE
zpK<ZtWaupGFM%A{;-%Y~3h!6S?|t;S7<#w-51?zXaZCHh#r8Zp;E|&Zo@;}ibJ;zr
zRq`p?^0wmIr$s0$ADRee>5+T36!ZNX(;}^Qe~E2D9uZ@z&RDx>Va$IM?Ol^KU~Imm
zDPj9jmhXHD3a)Y~TTv*l+CPN%;Zzo1NGF9DisiJiEz+!VJUK4q>_&U5{;JylBK&ai
zgE}?z4!JXkHCN?2WiZ==4z7`8fP|%Z`=VU=Yi2s#y~vy(%(`uniDKVuXHpcdHC5`@
z!B?@qN)|-$i}>?cFBuI}-B8xxlv5cUcnV|f2q1~o;r)v;R6_&z7@N;XN+4@v79Ii{
zgY&|C7g}mSs79Sle9E>&irt0zF*;85ZEC$yY_Y<%_+LNO|Kt6Y6%NSpoFhm!@tC}9
z!?7Sm(y9CdVX`QVDE2u4RbC=gNW{w8Vl2<%u$F1j0tj&;<#W9Vg#MU(K)yUv_kBvi
zC_Y8FlEHIOHIoRa3a!hrcbN<hlX$U-jGT_^8pw5I+!_Bh(>VB03+gmJL}`-ZtH2OB
zj`&Hcak>~-n?_*4Pu~(p4pL~#fQ)zD@OC_|Q0b@<E<TU+C|^G6Y79U$B`Aqal}W)+
z|1o3nlm8B{Q0$M)09-RX=^K~Z|9tn*aIq9_C%J6|!)0lSfski-Eg#E+D2RBoF?Cqj
z1Fp;s**7~vS&9x1e>8>@kmg=qwg4i4G7Un(d6&18grVa<9meb9lQn~DeiOZuU?I{3
zKKc#Buc#!u8oH9nLx(iN3q$Xx^*~u1uOyms$k=Ybg#N1__2=PoXP7&HC2A1t5dxvP
zezn~Ga5Ky`nQRw+Lp%=^R(-@XEYOvcyjRg6h)E<~;?44A;Rnis!G`>MWMsN(96z#2
z=oT|)SK0Fl;Mj<K*4keUt$pJLbo!*e=|2~3Xb2FoIREl%7P08fBPU}I!^~rsK#mf)
zYlfXqQU%|h4o%d8ajadb04lRViwkYWD`Q+QV@*vFB?yX8wiG~H-?<e`TKR`tOrAl5
z{)3CT*010y<#<|N0*^7%F*cD(8_jR9en3u{xA9V<5NXmqOTX%+Tct(pHg!jw9X)do
zvcJ=r6^&WALEe*|eSbWc+bn=0zCB`NR@BP!cV6y!e`l(wqxhkpo687h{@=MyNW6q8
zN2XodP}(EvH3><l`%B5K%vt`gTa2&z5tQdPpr$o3jF-Lg#?i=gGDE4Jzftchc9ALe
zRdPUBUI*gP=3URiw;@VQkmE_j^DdaT6@${A<5}^$zI~l93KI97emr~E|0OvvZkKuq
zwfJseIQh%<&-Tu{GZ#8Db$S1N=yd|JV%U2jgYyHvSeW$HMEL*!Qza2t`#J_$$AVIt
z46!tk?}x9!g41+Vw+=wvx&lrouvh7>WcL5%mta)4MbbzR5tIf+hLIch#rr<7AHliF
zs_uNO%M%JueST#3xeMJ`o-|DfDXdfV5WBNHbz3o5v9-@bDsp++85UYPs_H3MvfN{9
z(^2-e&r|XF^6S8q(28BveX`I`_OP+gs_%VX>KDti|G~&%>7U~k(5x$Ssk&h`%>CZF
z3#iwTKLQ}SxQ|#INt?A5XH;U3pBs1%psJIFsf(wFU0+#j&<$_4cHGqq90m&G!dpzy
z%JVBZF%lTr5_cLue%lR*7z&@qi3YJq%--Ts!c!>UeYjZ6vm^)~RPr%LWR0BzCTt?y
zB9}oqO8-MD!N+r=$7n|^*#}_HlJl@QaQMBV>Zph=!LQV2k^a1ePT>RJ`vVg$IQk#|
z5bD;GIi+7zp>C^6dEAid=S?I+1#wCv^xB{eJQivkHA<z5CDB=hLj$6K)W3dnZu<aX
z5~xecXLsHtSD{y=l}Y0U$g?~>Eh@pexBO%q8N$Q)U-V+gL83b+O~!rF7OG(s7%@nv
zRjIlwE<7qi)WF{=`|$D3c+Aq%f$$@s1C{iDFhsLtj-E}<<}3#IwNWekpb^{a?}MZ+
zKc($wk$x(o3>tmQwZ<^v7$MpC+telZH8JlY(|3Jl5h@%NZO30W!v}+NFEk{*HrC)V
zvjk14tdd;m`^OI`;tzCYy`NC;HqHK`jM56ifmK=Bt;BnG3O1VVC}R)2=;rcsbEhOo
zIKiC8)Ny}>)dFrE%d1c$0@2F2l<F-E&5f5yGCkwr;{jc&4^i65_%7G!|I{U-{kZA>
z-a1uh&rPkN6#0*D=fD5VWuhK^PZc94x96<?yBPoP-#3R}CD(9UTW<J&C=iQlscQ^R
zMIv1c0RJr=SaSN3q8ty1qqZmDsYv~ZW!3f4>QAw~KoqbkHk&0XnPQ%>#eY+xO*Igt
zQvZ;pfk?&GjP^zr(z{baqJ+QV@w=TjxU7^%%TmL)IS;3cv1ZD;d9v-8q$#bGC*N`?
z+BM*>1|_gevkNc9x`xC@G=;>~O#B8?@<=c<;M1Qp5?@nHc^mH$aJ<p@;Zh1rCV&!)
zN6FlH?gx=!(pt71hKT^aRkPW3(^qK$3!)$t?*W*Cba)!jMl8jE@SMoYKP2Cj|BZz5
zra)b$0I@jORM}$!j?_p_OAfk8orM1vqNt~h_qV`P4Qn5yrO>6}xl|e^_=WsrK@6`5
z8WJOnbAu*jASP@YBeAf)cf>dhf7^H{#asu59Thl$6;BU&C5?F(>e7p=v4~wiLcxt?
zD3dY5$!HiH(-u7;B-)thI-z?(4XowQahL|xb!sDs-Tv$Z#wZ}YNb*;BgC8e=SWsZa
zgTLKED3B{Yz=|SkQr1KYak-%QKi~vTfXdJDdyUVSjX{in38NsO$eTWX6v3!AIl5&$
zHm*-JmoN%XW#mOi(Dy!=5Gk4?xZWQtEu1W?HTWr}_5#mdg)L=~X$UCg&GfE|&h4Y2
zO0I-JnMvg8d)RS}Gu*%T8Jgxmy(2n^8J;<4)K-qbatYfHPGM{5%0vUL!$6$rfGfnQ
zQ3WjN&&WTs9>goq<G5_r14DWyJ|sz<9}CoPNxnkUI+np5CGf0iz??!zX4({FRb|<S
z+W2Qm0cW47tWlRSDEZO!J2_xa%jB!YSFd+ok+yD05_xV8WwBAcQkgGx{3&?zv|j+7
z<&$e{ua*Aofc+*Kzyv5yb*M_?!Jp(N>3HW)vN5`s=6IVKiHA%pPrkN)e|scK*kcHQ
z`IPwUQ8UYF?<8j-qZxc{8uT9Vq}GpG+aEN}G;`8N*Kgds=YZc|B-k9h`VlsJku)oD
zNq!}P1u_NUevizyV25h95<g4y+PzBsH8T50fxwDsUn)#tRzif{n}HOn)=j6<B>@=+
z+r2Olrd&{p!Byi1s7#r%RjX4|3#F`^Yj?xZdgn8r_J!P(U}>Bg4teSGdzL0|W_g<C
z9&%RTz)S!DK2squ-kwK_0$<&m<-7idKWpq~3&@<9tXEnc9VM9DOCj_YWOABRhk${v
zLxl18?E52%0H~o7WnPB1tM_Xf>y(j<0+Se+Y+d5ayon?akZ&zX3Z9}72YV0(k`7N*
znlu;CU&z^beM<!PImtjkXHnbQYToiqLP-9j9-1%PuSfJr3l1ukN}vT47342jfF4dK
z%EQHCmbIEj=gDVE%bUAiIKps~z+^>#J$w+^&u52zTM5X%XVxp`U0gX&8;RzqJP<XH
zPp0WIZ@9FqVpkm~117a`7NFBV7^r(WEc(<f`8sy#-Yt#dEtbtgJti?edQobaEU-9l
zlO|hf6AinnKQZUxU}#~!&m0vRO@nzA!!PJx=4lwjO?bR5+-<_`MOTfCAev-3RC|iO
zPPtk{OCP7hz&N7a#Qm}ML~(qjWD_T$`%bi==B>NR|3NVaHwj-gL4^78#APe7uBAfj
z<)UzT|F`Ly$^!r9uLWUi-KI)|!y6UF?y>ud91a&+$1sB9o)3A?$h47_b88ynXmVQ3
zMGM2OvCb)Ym)6())}|@9w$pD+Fs%2;NU@P&_%G%GPNeZ?dNnW8iixGN+ufcEyq&7j
z!|?ZZ!5qfLbsw(yyEnky-aO(%F=F`FeKu2)zCn)$w$ukft-YKA2ddJwXA-Q@sVruz
zOv^2=%OwsiB<`|HkiCHcy&q=2ug>mv^g-7SgK?;~YVk*PtmxHwkF}-nH3Z|@ySfy|
z{Asb@$;_wr%Wv1#b{#J=*4E=y)hjz{fa_b=*SG&Z*U(zu^;q8vU$^|dwqLY<Shs%U
z*m>}D{nOj^&%5h_!|Nx|k5>@hul;Rb1V4V$`FL*q@kq|uTM0m*CM%w7b@AT+co5@E
zm|nZ=`G}u(KJMr`n^GwBX#JbztcT8~X*B;t`1tR8JK6Cgg^lg}RihAa<9nQH+Ax!=
zq@*vS9PKk_1ose31%O<_e(OP>$Z4FjZ!%15%&_&oL9{RjY)YV>Iaa9oYuN^ZZ)7k%
zX4HKSY9+vx@a2gcd`mC;BvV)bKsOg)TyJ)nrjkO)P2Nyp?y4r?e=-u;O(NNOj03Gq
zp3;&+D?e~9^9<XtOQOSFy|RZl=gozxsE3YwNHr?TyCMK?7cBqM_8hp|>le+cS{pJu
zuSi=#c1cF7id*x<RU%7D#zb0skF8HkQq~E`5CysJWbyJLS>+-eIDFsya7gVbs=-EP
zSxs?Q4AQNK(O6jkX?yMta0$G1Q*#u>NpaTRJe>zc4GZB0Ogi66isCAj0Pu~0J5ssN
zhZ5~P)xx3xD*w{$x(96bnB7xS9@Tg_EP;Ni^xp~bSoG7w7Vj>7qYLyL`{3qoe7pG$
z`(9;CKjn+P<wU^#huwm-{boL|`_n8QHngY!Tw}&w(9eAymYtlH=H<(s;WKrPlfsxW
zs~1CiA!E}xnOmNx{TAxGna^(FekUsxRgyDFlJwgY5H!Cm+J7Y-7<UbjSA)?3pu*Cr
z^c&bt`@_Uss>~eiV}PC>49tI*`;mt^19T|{GPObE2W(;hU6&eP*VmXRO-=`4NnPL(
zfu*S!qHBAE2st$B)+kd<e^87LE#-Y8<fE%e0-_Jin#FSd`Mx5esa3u12LLLTd??_r
zpK^<yi25;JIp&Fe7wvwf^~Gf~H0@O|S*OFAW*Hzm`{NYN0&m||7H=A%1BMY}=dA<v
zx~B#2%LeL;pV+|Zl^*Qgd@zN>JyY+UM5nTl0RKn_OEWL~;)UsR>!lIH=8SI2Nm(mD
zmgx1h9Bv|xV<Gf1!%T-G*P%KRE_m}*i;@`U-NYG&G$2bO0Fnz(r4=v_e^GNtyZTJ)
zv4s*Vx)3IE!e)0BC_jO9Ski?-W7CqY{K*gx1+_qn4+p1-*fwA3pC#KYqs>8ItRX@x
z1H&$B!hnXB=#9JA|J;>h3JBQ?SR2z~n$uE`J2p!@Icz;ylEI@?a1?1r%`&I!PFkMw
zgzIV9h#W84J13KF0lMuQ@dBslD&DU@v=52{Al}3etK;qtW1Rne;o7I39CJ^|O>B+U
zW^D)9Y7-uo@iKlqr6r?YTuqfZvcVI>Y7j;<l8#mjh#m`Hiuf$;WwonDS<8)Qahdy=
zHh(R0F|-977?%m%Zc^}~+P0Zs6L|_{^1LYwtu}*;_~yH;q|2L%T?|8tk(oRe(-v!Q
zjQRq96zi8jj>V$z{zovSCr95~$)kT-zgcLdr&mxb=7ennzUTbZHQFEhdue*N5FTEU
zN-3Qjaq!KbR`bTo5-6iS3ZP<a#;LkL>Vyol9`|y!p1$)Rbkxs4yp7tFE}WDHOHG={
zggm;pDy*UV?d9^s&$)%LkwlvtpxmzUX|#6uX^4#Q#pBF1*ySxoQQ$*|h)QEnl|*6F
z8%wBMz_U*#^tn3)nAct+P_CjQp~I%||1NN5H@8mbfM!M-TV_4}=f>lFy??;6+%Olw
zApPh$u#qM920fT?S>t*!e}0M2i8LsUOt_4yU8KJA@{*BwB#?#|J0c3`549P;D)CB=
zlg7nM8|KkP#6)H!n1;OCAzxOp|4O@dz;g@Ky)%W}5gCYU`PUJhER$wY11fw@Z6;&f
zRFTM{loR}*9S+AMW#ClsSaGR~&eSIdIyj5Q#JN?0+>6Y>{6x88Pa2r{BefhoB|4qR
ztl|f7X$+orq<GQFMj{B0urh+EHKmM4)$7i(u$~I&4}3Fo^~V139gN-EdB_qO>*5=!
z#QVo=;-cpU^NV+df}2*Dv){BwxPef7m~z2<NwkMtEz&2RCF*bN+;50~>P$m@)w?XE
zO_}ctar=u!!V3Q;eu&hT6zuf%Y1~#m(q8^B``4U+xDppvKG8ATnE3|Bvv}i9KW01>
zY^R3<KobCl2>^(PjDzU@zQ}p<<u<T~X$}~U<9W07>)KolF2L@+DGv&s3Z7`u<c#u6
zb8*>YBX~-&Dx?b*V<($5x-C2?Bnr3h1t6UpGz23^?0F-$O)BCDUHL8f!jZXlxlRT>
zrr^TxH*&cLGAX0`H^7Y}J7GEk`raZ|DaFNw`Zpl#M?^(421e0B6h552`IlzCLg=wr
zSMtSZ+u0j)dit-flk7K>^F^MqsXD|-=y))D_@*@XsAwxImMj`+zv;P&iBcL#S8rBg
zahsG>*a9ucCdu(hhmnTzrRYj!T*m;{OX-h!7?Q#Mn{Sd`#-0JC&S`M6{13<29DYRq
zfy?bAF^a&+rP{%KHWNh>_C0Zw^7XIE6#Q2D(&ZawDpg~DeJXQHovYT4yvH`*o<tq6
z-X+1c;Bpl>U|#hA>bV;*@|w2ND9P4nr8fOGJm+=Yx(XG$6`qt|6=FsOFt^*`@4Rto
zolnHF(&06ZqI}l;X+c7P(tIyVp3xrsiqze(Hg&wtwZ+nGb;p|GTk}0Z=oSzjGAVyw
z;Ik?U;DX68WHGHs>#=#BO=08jKP4@_@N_Cux|BIj*bOM5#L$<+>e;o)4o)0rk_Jp^
z#l(^ZlQK{lLKb!<;0+mdc<?FD-$YU72=X5`UI-2;_VL5ZoLevd{r&U%H<=ELQ-E4q
znFp+r<&%IiL>_JJ#KSyJdfH#IBN_-=JRm8aO_(Am%Om79_<pjxjVKMtjKkj6_&}S1
zqEconuu8{+&yD`=jbuT%eu;r<e6(T`wa-_P*{nrO4Rf02C;fCmiIC*vK(OjhOtQQ~
zcWp|xegtO_djf6_$y+*hJDs`ak}_CJ+dVybLqiFg<i@9;Qcfc$R1+Ji4$m*tT4Z(*
zO*bBM&oN^7iE>+u(jN)2Ws)(^#YCJEigR>gyyA0QrwEmnzn)e`tcij=<K33VK&}Z1
zN8Gibp&cN=so&7=@w4>|zt*0UsYme;7NtdiTNQ2)%-o2qM~ac!fFK$yVAzU+iOgtC
zF<RT{-#M$RqHQIH)H-y~B#}Nrg;5k55O#eQpshhj9VJMnj|id?%MH@7wZd+op^_sT
zr5U#F#}Zw=)j@TfM;#m-)brOjo=_vX&2%8}FcQcOTWkg#fg2fpMl9)K*BIn6`&6S+
zn0vBrUxZ>_k8#~O{fdMHQinj^I{C?WLPN!qo^K5BoapRUedv4!3;jMsjnW2aQhOJ_
z2z*Hn7}cYoP(T*dXdWAPA%nN%!O(AMec|tvXY9Z9{}lS$S%oov)H$I_op;j1)0N4F
zkn%?YVYjtJI>-50OunUseKD3}$#&I%=UNw;UBGf<MWm^i{RdvugSE+3+DkrO?q;P3
zSu6B{sh-+XjtK3IFWwAe-7F9LUFU&-u=SbPF9T%SxYHrJ2P02N?AJZ0*&h>qfV?BQ
zdDPlM9p<{<Z_@o8FtEaoB4qDjeV{1EpSag=Z(Z>Az59PaXwVR+ZbveBYIaW3ALNFQ
zKTo5YXOrOZ<3HfQ0bk|QGbwojXeZtm8OpOFR-YihS37-Iy;H6dSBs}iA|jn&Ww6`1
z(FsviWESgwceSyk6@KH30oH-9)x<alm+JGhIe_LXG!*WQr!--F{Cjtn628iNH6P|Z
z@qnbbP7fnRu0E!ih-qR<Tkh}o)h{P!DHZ=X3rKY5{URgG_z%Pf*LxZWS3;HOayvI&
z{r4qIF#&)aBTxrU0YKeHign^7aTOr*n3i;Hxyx&Go71$-gS~i9CR}u{=n$-)I}nlH
zg4loheZZZ7$g)qh!nY`=%rY1X$H2wcII*IfHWu78m|XxZ&kbH|v!Gb1GknpaK3f4>
z+!E#?c3}>nXkh>jgppV^Ly(j$Nu?5$d$OH#hQ->Uh_*1O^iz4`JI{1VI+J##AE1nc
zy(jO3x&)=Hqp!gvP77y^3G#s*Caf>`s<^B7#my%fJaq}c&wtX?{wwLV%?cqxBpWs8
zGR*E5cA(+caTEDCkm>vre#*-GNRyzFj59qlCplO|n7?^GH{+b23k3uW$-OCT4y%*6
z+w>ocFHchWD1?iIqrjXJf_~htqYnbY<?4+~ek464m-*ZdEVrx{yIy@&8Z#)NdfR9i
z-fWaCYA)uBV%&KM{x~vpWv8_O<Iq?0Ie>NG+1ooF;g1~E9@z&r02u%{2z%5c$1fT0
z`p%}B2j4t$CR4p9ffR`Z$rcy7%=hu9)*|V5TimWu+iu*I>nMEO;$h!|*>Q~MtoYpG
z<t(>6n-S4fyJqcal)19l{H&cmt%zc;d*%I9#50+jl6M0$Kdh#7frORt2Jkt1)uV{+
z5y!`O*Ov9FaJYhixjmEO-U1q?yU%FJm!uc3den|Nv5-|Ryon!ltthEPX6CasbgFmp
zbHqij_{}H(Ju?DBC2(MY2{Z^|2KpXS(%*{uBDHR_3ZO2n8~>a_Z5ISbp8tRdqVPd(
zL!dTY_nuqnrzVC$GeveAkdWZn6qO1HMHE2dipD~j-<#P?1VBUqGf4$OIEF%i3*A6b
z@|}?F>#uP`{jsu6ZmMn{`bWn9qz6;`V!>!LEJT0^$o2V?&uRb7@M=XBJ>i@J1vWw0
zHGznj`=EQca3PB&6T@@MJ;!qv0aSn}r6(4IY{6aM#&uR4B1oF|c-)E~Awlt7Ip9wi
zs&*ezS!Y|bLtXSW4@CvCe|U%IeWjS@Jl(EbN4djts~%HLlP*1$N+^{=77!!#w8<d4
zZ(xc6#y&FcU5|4u!Lh$~i-01cj9(&h&JFH%8ODp)P<8sdK?NGAh`Z*@|8x)ED7HRT
z_5539pJ}t=c6$D(kt<)@{`d0C3<%_Onq!$6yZTaGhX0q(6M;VB+dmujEVKZ;wKAah
zrW6Ty@>ir4`>yf|1I$T<49t1;n-QCQV~T2H4!NpQ1f!#n;^29n5~~90t0?ZcV4Re7
z|Ffo4foDDL&PlU+vwqq7ELTz;1~H2hWN4Uk`@!WJ6RAQC7S_6}uYQ)UL45Ee?4sAc
z=rsA;7a+yEXq8|xH)Ww|-;}6dk;-3eSmQUh{m^gGnNBk=iPw0FEW`lA_~<Wr$11zx
zkqt|1+(AavH|7n;HD6cv`#TiGo`g}%1=DSfhA~znOylIwF-Q)IgCH1A7zE*jCsOTn
zr&Y~oP%@g9s)axxu`OR8AfH^Wz@7M$S%+X2O69M;YQH_2IQ(m)3z=tBSA^r}&#|~h
z@MZk>=dN&tvfB`iix=kO&x|RI0nm2iq_090`JejrVi7N@_}gi}ZWw&Id`Gu;%4VRt
zD((FDm76X<+78c))a@DIe{c?n<1JC6i@9~WnaB9`ACUA!WNSF;$4;QynG2a-Fy_mj
zSmX?VX*Yp<%1Q@pr2iTe_usyh@o7}uY4lru75gnVCl+O<r_^URAoJt&i7x*=(G#HQ
zrmwz;JE^{VF9bK4dZRQlzB*Jce4HS8d2Rd(l9_856UpsRBa!@n8NIXaAdheW-G+yK
zFhCl2#gznXEhy6ffL0-tB0v=h0N7rZn?EQp4hOvZU0d5bNgu<Zh6+TZl8rzr@;snX
zB!|;wqQ(UE{}Oyx!7^I76zl;?EY}Jl19eSGRGtV0<ok2X*{7YQ;t!~<Fu*dx5T57M
zT*Sm=B1nuVYB-UU2@()%OI7ifk1S37EtBf|K1sAX%H`6~E-Gn9F4Pv2R9BirHkuF-
z&lM95mc_WH=jJAsq7+nMz*)^CR}8a<clh8&%Bm%o-`5O@M8W(Ck<Lc0xYG1oT&h@C
zT6be6s~lyx3~m&aInoGfdk^f0N+0inn4mK3t3&#|Q>ORWk~JVwK^e?L8Cj8nM0j#|
zWBQ~;wtG}|$U$NliuXVS{c(b>b|RTamK(H7ph(YE4R#PZ#es1k$t!hRw2@R0oW7l=
zF3+KE-isIKRjw`c-xjZt8Atl5A`bw}xE=hPly`_^o~h5{dKXtK3y$|>VLs0@IL%Mz
zlltzGhsw`?dKN8w3gW}Ed_@*&*%pfKgP;nKj0qY(R!Uq4s%pM~Y;;y&+E(yWq2Sti
zo`5Jsd|C1a8znY66DwHsV4G9wPLbRsKgA|L5^2?OUZ9O+{w~YSXQl#m7qxg%jG~mb
zoixm_fM{4}X#sFP(c#`rC6OU{w?y+ZLD(9CYeGkWmJD~WD4oU6()h26m~^<5TuEMT
zK_Mm%CqS=0$?txc_gRG6xGeVx<$d{J2MJPuyOtE2IVjs4)Ug0sV*wXbgKia4da~uq
z@_EDgK>Jnz8JSyo$cn;^`<!yz#U*J4c=p&5R@>A2dtgv$$9;pj`_DQcVgTN@!J?h$
z%#(R7@lzv{7u04yX)5=4KN>(b4fNM289zi*x(8QG@l}vdhstMfR>+0i?9_gsg?(T|
zyuCnqvtt<k)Y8Kuny86=kRZTjoC>9iVfq(Y+NTYNP2KNlgZ%kvRvhh<AP1#{v6tCa
z2p9@a5FRL`#=c$7x!yy?d-PzAjX@~4vi<Pkttp0aYkFH^<bZ4xM7u<g1d?jgD;TVx
z(;(X7DNhMJ)_9)q7j&j}6p4#K!>L-uOMbJ>y4zFKOiBP!Nv)A#y%C5%IVkyQfo3Zu
zk9j+dX;58*L7mJJXtTbu|DsA9^}uhRSI<y)>Owd0h~BZeUJ<S-*j$$~S)L;Xag8o+
zRe~ic8}t$V{=w_CWfUJ2n48~h6iq6vov#<iHIh9#nzYPH3u3bJuuZnOrnKe8-ff?R
zA%Nft==BTg@|$((n!-Q!>x=WfGk(>5lP6TkKAPoiB9E6F5K(Bc#|vU~<JQvJ87R6J
zk;`amO&;XD8B%itY0qBAdijV~0bpqcE$5-zrfOQJqJhZLWXkD%6nip(t=|DW0rS$}
zp3zpJVXI<PPdkd4T<D=HwWd3Ctvgk%fCqPYA5_UwgCEiE1KN7APyS97Wz%b(C^xkn
zw$IqL`pxG8GpU-|QhEW@80^*F%KIDK&LH0Ag%l-cI8C-y-`4DCv+H0q>g0GNaQ;i@
z**9VifMH;&{nOE77HXt82mEVuyQOV8`9n;{Q-F=@Ro~F?vHkQ@aFBxl@u?;{F&!;X
zmUjhIgS7HOK5iC_Q05pMGry2!xi<LBrit2H1>&m$0V?2^+o}HT$3M$^mXN{OHz<xM
zf4(<}-l^{PQ@J;_*+5I(D68_cw7n*O`ceK|9xGm8znL;zyr6}$XH&KVYu4eJsnV4Q
zjq8o9o}yl+?Bv>FYy90%b|11=2AyAF1!FoMg!Yv9wFViXgnd<#gHgQrE{zX@1|uR-
zDpI)OmQ6sPp9*^|HG>3CgX5$A_GpLWEpCN_+#(G@_BW!PZj^O=LWOn}Ln?si4u*r@
zMeY^@%6t5YeAHD#Lii4m0@;`3$Qu5%Gm6-)5bjMeH#5?G28Jfh@&`mQ8yA7rxwgF1
zwhsFjpo-FDkaS*e<mItk6^Fc7nAjQM<xtJQ+MSMVKS7KpyPfOH=YGrqFFIREB~Aoh
zfJABDh7bzGOIOhfc;DOZH)saxI_g9{yYH>Jr7+PuppiM4Zt)W9dxc)?r}rz5<Ad;X
z4keg*yztHaa6C#G?EpJf!vF@{sc$HSD%uTS-@HIIgRfgyazqcy3{H>uyGdVyj00XN
zM`kMe#SQOt0QcnBYPQEOf8D^#EBUA@v%68qTgp#u$$NjIC-Ohi)Scv(z1g+^dYCua
zp2$l*bhC0>iJg<JNMM{CJN$rGUhX}^q>(%z?b}2zdcs%!$~dlI@@?$#)l-`|9s5U^
zI&n%HFp}GHm7&f12vXDmPZ0d6=on?$<zDFkUfD#-w<4ySIVhbOrT&=7vKGkpO?S>L
zPoWnYK~G=lFNB77P8ne34!%#vY=`c~jb`~P^#;!*u8wzA%-jowXS&_U(s~sfI{gSd
zZV)tykr6uiGfExr3w_2)!LK61BYVA2?ZybRmAejejaKgY1GmDar<|IYbM>#_(WS0=
zHGzthbA7hkC^>B{vAf#oT~uBp3EE-$5|yg{R+`LQ1rY-7r2=UAo}M)=gAZDZhe-Xm
z@}Be#Q{Yf_kuVLi!^i@IoMz70EtKTKnS_yWe{k=HzDm-Yy~JACKO&Cqi$)Oj58H1j
zEwrfwUiBZ(*Y#*x_6u28{wH0yw7-d_Qt+<ln1T5(@jUJdXj`)9(^FdRxJLi(;Njbw
ze|19z)G5#3VAR;Kwe(^x%S-%kg=^<?n3l8wi@Yr0sL8py_*`fNKynU*QGzW%+%5}4
zs3hs07DArym_E`rSvn8BTW8YCMfqiMrGtk1oA#>2py}_$)Pe1l6L(|Yybrw9rgM_3
z-0iDR9)HN;GrnQIW-_-bA$()rk@3UrHSs*-AHdbepFgZr-X2xE(X6&sPxEoO&Vv>S
zR^3tIhMF@le<c6rvQ5RAXTL>D<EsDM-sq|G$R^d2lf-pBES188p|qQUZ!K?K2bcO_
zblX65+?yOub`<{%vp%T!F|)M1-V`*kcGa;-^Tx2cZAn(ybDwNoN%Z7Rwy(G5HjQBv
zTenqaw$)CyF@Wt`Qaf5EJ30gX8UZ^7tvg0DJ2bbMlyTr2L0}~!xcu$To$OuP*4_5+
z;>tX`&Iw>;r0PjBh8dmQO#n`+G5*?hv~uBk6VB-0x@jf2|7+7Z53pYowy)N{Z=1Vs
zPkR9RA#P5)XW42%?Fkar-TJHHp7OovsVk)Y9Z+}!C=v=Na607v>aMwTP{+D22lG&f
zbe+jMBo9ft3a~H;EiK5{96@fn@)Jexn^Xo|9NE0S+tA+J#CnSh?fX-&uq^wU#}Ajg
z+1|p$jow_sU6zAs6Ni@;2hIugvUBz#ZF(YY2fy=tZngUm&kwo?J)efNH=dz4Oh8*R
zK0`&H%bOV!-T?lCG3*4K{5E60dQaQGp!+;CRz3jQoB@ri_npspRb))Yu$)TdeR@&l
zCB_4?c(|2!>M4Sg0dapyJogM%^rC1`4K)esp83Q@-qQN|$s(a%ZH2S;vDJGP!!;=$
zigp!4c8VrPv=rG;GPhq#<+v1oD!VB>;_2_t5+HNUTMFqPHASQP->}EoH-&5GTGvEB
zz}(21FXQtp0NiuOtwE<R)mov*?lX1fGWoB{LLx8j)3XPLa(?;hC2c>$ea25`zI+&N
zIUag9G8~Q!_7M($q8)C6jQE)n{%0YO?0L}}7ojD*T3jQD1O@%+6bS!f_;#nsq_FfK
zo{617>~<|x(Z^x%04bsEf>zk*qhkby7}B@nV@y-7q<P*8Kt@q8)PD?aeDd?rwQ}U;
ziA?(YoF5TTukfl?u3inGtOfIL&&w$@+H&qoYX)OC)=&=9YO?L!SLv^NbAQV``#nV)
z?49$sw(iI5%nxlGli$~Ps7L}l?HkPoS{kcZ%tjdE{P!~e&(Vv^yAxk{;~{sH{!yep
zx%^`@`P~aRl8lx?6*|!@`TwYaCucK<jD^S~GqcLsh`}{FB_nOBvnM^iv8gG&LR*<-
zvS~b{_;RVLR-8F5DDohEq8d6WNTAwu7xIL`z~*`LdH!D{gal@3O!TuQ3;geH7aWFk
z1%wg{W~}b&7B=S>iG?9t_JR;wjqQZwq(hv$tgoT|6=or~$t`7yWbIvB<_qh*r|q#w
zX=vE!q6_idtJRE4HejW!zlhx6Xlo%t!EW_R@|EvcF{SMvE=P%)-R{f^QAiifWNJ3W
zuuG(?b~>Y|O;;4X+nB=5h_Jq|^gH7~A+x4nbHXGQi<pTvdJYI>WL{%$3?jRbFbEcA
zq&`pBtTrW_f}4oL^XyI)OS{D+n$fKT=;Y11K81Hp-lM0W)gL|;q#?kWNjhmkfusyp
z)yI8GxdtnxzMAzmT+^UqWTk5SiW@_i_k16?Gz&Ke7|yJB9JrUJVfL_0N*`Q_3?Yre
znM6`CicMwT8ZcJusx%8;(jakJ5jr#aAV8uN#Mv}2-e}fGzD~F3^d4K72DLm-+t%O7
zi``fElNo2Zir$`Xr3KAetP;^TQJ)<ay3#Gbn7oz3+$o!n!8HJbn`}8OzYK|xw6pmB
zj%|@r*d%EeRl+uUK4IU_s8T2@Z6@iBA$jX#<}|@*rnZIb-m-df<6(Wph&@gJgz6vU
z2vUbLZ-n8tD*Y%E^VY<}Tr~S3G)5*0tjJq+YMds0<b$KMXF5+L1_rf2**V6mK@z+?
zb6M$4-39yu%GgU+8tAQ`V^bc@93)`SMtMs5i`w$dNwykDJ|*w#w%ww@)hmo9CFy+)
z1jWPA4nXOmw4n4!=uJ-lq=Rp>=uU&=D`<uwZ}WVJ%bQZkUGE0KW2{Tf8?|jB<c)0h
zbkZE~%9vtigA8(+Fjarezi4iBeRt8y@=$@G!<-y|!<3=%cbGjf_;>Z1xJ^mkQXj8z
zZm&yo3%UNXYOv7xw@@{iWTa(1t8y}Pd0@@wvkwa?WXWO~FN(P@NvztZ+ppoS8}oyv
zV{aLj*`k<+#`P)7twt06{$<_3LAgse2-fbw6s*n))p<Zu&Exdg-%5q)EGu8#?lEH9
z+>6rYF>=jKC${`6K<y}?CCX;9*66^7h)H8KR8H)dc}&lS^5%aXwY_#wnz1S?q*blU
zSeA!LWBCKwgw}pSp%0bI)$1~tTLxm1CA>zNXG~=42~evzDA1?uy$DC~U4v-(oW`<<
zm_1dbw@b2swTBAL^M-_&!WYMT3e8k)19ry_hcKh0k>s1a!M@fqK!Z>t9NSUmV=f+l
zAx#ton9r5?Y|n4`gaoOa;}%R&9I)NuiZmg|s-8vETWnH$X5=;OL}?^*T26{SkMe5U
zRxG{T%DTn<bEnApA5Ri9OS*u9mE1O^2=TOKMpjYyc_ITQNaI7ctv+~1w%+&goBT<!
zvNDy0pmV#Ey;uC_=K<<ZF7i7YTz`A?Q8=q<D`~M-Z4iig2LkSmRJK7HgnEfKWm*O3
zpSjJaRezzz>1fTR{Mte1cxX^DiG!WzJ*hr!3m{1{)vzf_VW83=Jk;N$(h|vJ<3>8$
zGZ3bB-ee!ye$m(JCL&R~$+TSnnD8Zx>nK%HAj_9&?YGmVLuA_0)2n)#_xSvoa1yeM
z2y}7Rg`#rPB~m6+(b}LNDN6a%vShmK;KHj&8b(ir@5*Y$F?m&ey(!cNfYKs&c)mQn
zB@_k}Mwl5<h+&IayZ1eIju(H%?BlhBwyBCMh_p|b%YWAKh86W(`{hYA&?4~WW%|2A
zxXTKF7CN*Eh<Rv*d<y;lSj-rU>I2HA9eoTHe2?v{ObnV)_wYcjs39ua(pMhbxdcCX
z9qI6N5O!}9AVI8_uuFsa{<BC~8Q~R9qT~&3O)rqnb&gp9PG~T^LERM?l$|!K^Trqz
zdgf}Sz9LSr%Dl-dy-Z;?T~H4HVFsUc)%1*L9Mg5*BHA$#R6ZW!G^YxxA{P&IZ?2f<
zBy?#<TfOJ56Q1Vn-awF@e^XB_X-SBY0Qo|Xu@k2y4=v<2A^Znu3hqM64z%9=_>FBs
zi(sm`ja-y?R*F#>z|!q!9l|lnNNtIY4_%BeRuV%am<p|pgTo6P#IG@1`92IStmYPf
zsA>0rU(+(`x*qngHq~lKZa@{V75v_Ja|Zn`IKRNp`}CO2Ke&O3^ooU5tBGx@ytp$T
zFENVLFt5~47JTsp!H+$ng=X9rui9%{^wFDk`h^!#1w5rY(1ga=rOb&LwTt#wyhYpD
ze^_UE{^IRpr1lYCeid)NcQO;^4<HSOgooyEq19Z)49fE@3g~dY8au?L5Vq$Xo~N^d
zIlh*ba);fYt;kZL55k8W;_<Rhi)ErzK|P!=?mTJWpJtfaATUO3K(Xy#<jy#3<nLWa
z8aGP~bQI1yFn4#%GYvU@u>bh`2dhEDhgL^DlrzP*cL6j)!%5$5O+JT&ASjdu6V==5
zUcaU09${{a(Od;(1b0)P;K$v`$}pCDky7CBN|fClS3<>Q4pV0R37;|Sn%|6rnT7=p
zD7#_qt;Btrd=}8;;34kJHqCLUKXi^#+nBO~%De}Fkl;ku%RwkA2o1F}tMU!s0MKAz
z&j|Lgt0FVlU&*MzxB1=uJt~;A8IZ~fO%Ta)MRRnMC~dB?NQ$`EQf>FyWZcq9IIDXT
z{soki->rI1>4RrNbP2Jg)dbzGJC=uk7Z3-((}jaRzg_&m!ZeL8X3)m5J&~Dx9Ga!s
zDf1BQ$@{MI8-k!Vz5wM&L%Z@gY%y2?-iY9uJF6XmKCIh-mnp?<lR@t=IfF~xQVh%k
zYy2o85p-yB!*hP)^WEg$cWxp#24)_gggfhg7|cdz(VGXxcE%#0Q5yI7PGLJey06^F
zaAkRq{XG)}p<}J+QoTKpQ6yl&upCdxE}BJE09*{N3iYC#+FpQHY{2$Sx|jVe_!??0
zMaI#Cd6?>?lAo_+^nY|vsQVmJhOY1Y2r5o@3VV31GP<8;GO$T_0hENJpKP<JgmjP}
z#4?fS^sflNPIIy{SE`1>^Aisn9s*q&T3+HulTzauKnTTiY_+-1#@R-FrK+-YeHW(s
zXr1tAJpS0Rfxz4*13HfZqPml$+2Tf@j@{q<T3m^T&S8OfCyS_xogvODExIc>HRRa9
z5W)(lfZ*A_lY3K*$)-&@wdYG~-nGO%SySk;@M5*~ZLLplbz=wC6JER!ZrGPMr@MYM
zfS_rtqS_l%>DTN>TC(;p<t^bGACW#=HL5V21T=}=Q-_tmf-F@dquxe8BlegNEZx6#
zIsaheiS)I_XG^BPe(b}4S<uBpbe&^t03ZE10}pbu0n~E<x*+Ys6CG3yke2NI-%w)}
zCuv_m6S^n{!Avo&J_2y!KEfY?CpUnm`v3u?rk(hPP;T2C_9P|=!GpHRr=wvB<U?Vh
zH;}3mBpAOdv|j`2A_z%9!trJ>KVDdD8y1QC$bO3Oo<p!>De`jLreHuqE|s7s#9T(=
zG7A_mXQe6w^Seh$?Me|k3a6h#%pz$P%=nnh1cYizb$8gpn#{8IY2MD!E|7o(9lGdI
z$QK#@vmm;}I=a8PNa}ec-B;xDDNLk>R%e9Hm<X03fiXnyv<7;5dPaG3#v6HzD)WrD
zzA`f9@hJj+Y72n0NsyK%aGMNPpPuP|)Enk3UU@8j<`1>W^DLp}tdV)FvGc6|(W4|m
ztciK3%z0D}JzIe}+v^}y$voQwdiICr><xMBj6u^?Ui6R5IiBZn^v-j<3}(AeuOo&P
zKO=(Fb9sAQAxrIav%v_(jdFHPu4VdZG@4er2B0*ny%!9Dwex+FW!(6xMN7j;{f39`
z45bqcG4?yH_@ZU?8F9qRExZLVBtmMl`~*7aWafCq&iIlif%@ocvl{^A4Tvg$>**{w
zgla>~^_tulh!yeL_e03oDdIBc))<d~Uj7?n20`0FpiKybXP95sf`yPTNWUexfX2;{
zfC>-6Qxi;LSjPmp+l{VpdJFOA`Qq2jnb@Y%*2(((JROwwd~!@JS3hD~lo<F#8i5@r
z+ah<N4mgMt4(cCrn&1J+M!!>V6*chKMq{Ch)RqaFEIVjweXx}6CSb2a>PraIge&w%
z$m$7C+bgu3Xs5L8rnF^-<Y3mhHXyy8pD_u4Cm-M=g59X?5Vv2r?p%O;DaT!=p*?Y?
z&2+C_eSufR8;TO_Ee%PwIDj5cLIHzx9cR477L!WV2qC|oRtQXWQa4UsYMK<guBl|+
zs042D4=PZ~T5tl*fHB_?%JMg6(HkPk&(!fx4_^0$j7nKDDDD@iAAfu19*Xdm*9%Ef
zkcB!Mp8`?{0@sox3Tgq}t`!4Bz%MeRB_A5J?y9j{K%gxYN9WeDlOUr*{R&;fpySr^
zAfq0@%|w`yF)y0Vn_4mV)+7m7?<Q(b;+^IJS?%4F*YNC~vuqAUgdq^Rg$l)WkB!gu
zp4PX$BI*eHR(5>WC}+?b$ARiICG_R5GU^Xcuza7dW|CG$H>hq6=S$6ie=YGMGq9|M
z=-&wk*Gh4xEWEPEfUhKgYTm|+Atr7yv^_iC2R0|CaZ0Dyaa35X$5&0?p`9pD9TfCU
z>me1hRW*+{(7?`*BX{H4059iQHD>~pE5e1#sUv(YlzT^-#&GemE<O<THbpGd4>@FB
zG#Y>AV)=p}mBM>F$AzbhJi?Yyn=barx)II36KeDyGbZu7bI+p9_=r?1LC%op`Y(`3
z5<wmIP==OYmSy`k7g)~F?dH!<n6Cu69(VB`S6hs%zQM3Un&@>U0egQp#W&X#m#*Jc
zwbGkBx>2m9d`m;w-`{>uOXd?l)tTF^U*H>j?wYV#F1}+lLlOcdaQP<~aRpv(lQGu_
za!S-<Ir;8LKjdnAeFT)G={}?)C!qSCpem9mF{h;#V%-hTr|i-Gll0cZnZ?sG3G?8{
zXnM!^nfC1|-0iB}+gt7lN03fHi{}>}Lp0V<3atNkdZw@5R%G;d=|X+$WIXb^lLx`h
zL8l&0ZH)>%h*+}kCTn}?`#DuLbIs{EzK61`d$`;lgmgpz_=-(im(1KX?u->N`U{!|
z)dlF(-ANF{^m%t?LoWn`oKuKC4|GcEcdK>?cby(qV6aMVHX*_#A@5Gvzr!UmnZ0st
z{*%&kQ`$2k`+AF+pLzSbFCDvEjP<PRl_o6(-8J@~sYi^#1{#-`&S3$@yFp=!j27eJ
z7~#JofQT5q2>mA!M5@T39GAg*r_l3=63@UC-`f%I0w~ZyFk!z5QXo<<c&s`YHp(l$
z>zXhgf@Pg#7zsu1hlpi{8IL3ST0*w(B<!>1NJZAlm3WRP6`nU_{Tj#oOU+0@-xws~
z{!N8{mx_NyPK-z23m=^#j1kjLb?DU_6NO3>eH#%Q#Z*pdR_pRK0cp&&aNNw3od|!x
zj7UP2p({faU_j)acGf*z;D7SnzT_lMzKKL$?c}jZ6@!q}@Ztiq(#osL@8N{UyJ`8}
z=`7FHw(v`783_+D84d3dp3fWxn0mGhyghk}{`nNy8Av-(LR}AE3N_7&>HO&-ZT&O$
zu|LH(VXJZt$`b0z_Dai|OQ;k|DF+TsTMOUJ_%QvUBx2HcjNcQNL??$rs}+(z;~KN(
zuyYYlQr>|}nkRFPDRX6&DxRh5p9s{<dDnoNYNUJ-TisRpiiHWGHhZm*+L8=swqi#c
zraNRFYi(>h@^Y4a8iFzGB#bppjY8_gF2layW=pd|eH)7J6c|0H^E7&~WcZnA``AB{
z>CE?uu1i~ex=f|vxVjO-Njz1T+5(H?<>Gm2C5|X8vvRP_NhX#1Nz-)L>V6MH?AXTM
zq^t<l31OL5u4I$1_U(96KP2@C!E>XSj=kF1hN-%B>ujd<<#c!M@fdNLePFN;xp6vx
z4Lu1ieYIbmjP6;CuHq^!wYf)&1PrzS>-baeHnLHedcC{{9g@)*LY3A}Vr$B9eLXj$
zC^jY*GgWL{O>ea5F7V94@&>WL2IX4n?K@J_djxgvjTlShS>BsG!G>ENjA}C3dy@TO
zL21DEmy@;kS{PSaW`D8j1P5eTUf;723yxk`y!U!lVn>_C-thCH6VKaqD=Q2Q*QxRB
z39$9>_8k26T-@!|^Skc>AKsr-n?#&!CgE0U?yh)lEQ@e_ILrD_@f<;ziIKElRg{-h
zh64ZGUON#uIEvY6p2#%~*zh#jU1aLAKN;3u0l04De|$Ei%CT-1-u1AiYyR`cQ_1!l
zDiX%O*U!*<-X|MF{;z^sH=_dT`2!?Gq`pc?ZTF;X^O3fvNdMg)?975J9k4x~{?JEH
z&q|M8>3(t@W}o)!<jYjfv5n{LV3miAbg+}rJ1xSW)a_`dPCmT}2)~(pxtH_ug8YPR
zO!wU`@G;BkcPiB!aRh*Zbm95j@*Z8<66NKD>G9tEr~S(u#b5pn1YSwG8W*q~zj7~v
z>V{q@ipi|TtW-1N8U@4cF6FBKmD1_T3X<O-2AgKnTBU#6ES;R1+#Y=5apy-UmFtkB
zR%!X4zK0G|)aINzc4>VY5Q89ek-dZMD2PIdZwN`j1<;dCeihyZx18g#Ii-5%Kt1ii
zYtabpafn@ryN!TR&7vuP`#>w_sNaqB@2uXTuSP^iPSJ7AyDcQdQ}arh>ud!fsxTQ`
zJh0Lnj^kE1gX6*tHMUW67EVVUZdnH5ys)}ba(z8}i958VV!?jxt=jy8EqRccW{=6z
zyy2iCgbv61=&PX9+PnYOSlqbYr&hktTzfBT{yxWXxukOW{@<zmwdIG7D-D$^1p)I~
zny?PX56>N8&1)a7w8_Jc+Dv&LrX5#jxz-jO*Y5AHXw<B}h+o@wT;GphoBX@>v~vBM
z<Hw8s<<EcDdn-SJoi-?(7XJQSr{vybblRj_+4va0d5wFEU)_^qeN}LMOPYJzxnOHk
zZCho1`&I(Sjf4*xRXaxOJ6YyCU;pmhsoJ$yXR%cO;OMmHRkhdDw{~mmquapVmDo9U
z{Q%3o5$|-6T6J)X>L8Q*@M`e=xL=1!Xg@LG@S)RD!#`}mKUh`OQK!@Kb1`+f?5g9J
z+@FRMbXvHNN7p~ia({kQ`YBZX^N01%qwB{XovtvtN6fNt0D$)=1V9G>03^f!X8=QJ
zGcft;gpK<e$2DFm5jieietJnoM(LYOvdU}<YP^EN95>KhN*a8sI)b<Kh0yxqI>u7^
zrc!!l()wod#+EnCuJki^RITjLh9>Acj%bXdw!MqKlZPSJ%h=V&%+t@p`>wTLkZnMS
zLvXlrXp~EMv`2KjPwaob@%R8-Qcz+_NOD?4T4r=+c3gIDLT)~xplEP#aA9HL;Nalv
z*RMZ+{=B-q|Nj9alkh?M66`q>wIP#nIF?t9VRl`pd>gU$hx1ZwoEGDoZ@K>uLuVBh
zRTqWfGerzFbi>fyNQ=YJDO~~%ogyGz4&B{?Fr;*Yh#*6Vf=G)X;ZO<+2#UXi$j{xm
z-WU5>XYKcUznd6ewaTuR4D!FZ_wm{S#4n;}rnvX@gAGC>6B3iqM#iSmiSfxv*lcxo
zPj8(p_1Nsxyz+{QTwHZcHZfm)14(TFEi%l3q@kg`x%YYB3w3GP!B<1F>M&M5UKV&S
zIV&%cN|%ba$%I8Bt>2VVf<b3x)m4ZqiB^J-onL~snwXoLZ?BqQ!Y!I~V(=?U!v7;~
zUH3ozoBIKmRWU5I*erJ9o=kWZrvtz%QCsmWyt6e@HXo1HsgpFJXuVKFW*K)|rugGT
zsZY03AcD37F1*f@1+M0uyj9Y$l<PqG5Tm&U*l-#(M{YRwH8y_X*`2UhLH{YTIXMY9
zlKR9vo;V*(Dfk<?m7taEvCy~<Yi>ahi`XUu)J1M|&m6`pft)SPL>`#=Kzmbs4b6ZK
z;xSDJH>tCt<Sv__U=74kG1WW#FWq^vj_T8lNUcsRbh#&j<C-iaYa@65*_@lIY-!47
zL<ZHcmZ64Iay7egcRioM@h%^g9OH_iOLygJiY{-%?Y-9<uO8Qm3SN$==i=k;cQX8p
z&^X@I!gC6|Uso<Tl<4=?>ew73qckJDd;Iy;UfMERQc|BZ7IX`*AP|W|leu_&<g~P9
zpF_hvvfD?<STQaP57~k}uE``GTye+4h47|$QbFUn5p~lWWHZK9h<A+mq{ST?NYiOO
zmWmTSMl))kk?hECA4+9rgdf*e#+1i1<a#G4tgz*CM03~Bm{M-q6=(>OrWBbHbUtO-
zp}`0>BCrCGv1yXSme&%-{UuW=*ybyZ_=t4|onX9VW`uTo3a_BMZ(SYE?DYH@L+X+C
z7^#p)34KMhlHPumIa6&NH808rAZw<_qEm}(CpC!k^hoxAA@-s*8`p7R5qf0e@;iXF
z&yN8t&2fx(g)z;pgNQYlVE(G`-zc(rN~L&53L5Hz_SbqM2c{q3JW%j7KL|}W&T#Ue
zFTeQ>Dh|-JzD9MMAvEl$i4~5I5F{$dZD7Gk{|I=<V1j@3OW3~^A$hJ>j3Nv49>YWE
z{(jFx^OkXRfRgwghNGMBX@MxFF56yP>0AQPux8~SePq@5b^s!E73|nQ(=v?#4)>`e
zy5Ae65*?e-Q=Jel+PTi5k3S>FK=Eo#&`IX)h?MbT2R4}w?1~-H`+rIgf~d(MH6tW%
zrB=VtT^Ze$7{U7<{&>rGzgc!}@jtu3UPCH;3-w#C>IAYTnhu{XH=ULTpu3+{P#?FW
z*yRWje{RD*Ye_1PDf|%!g)tXx|K+6B3X+V6I%hfe?PiL^c+IGHw>N^ry@|dzx4-e#
zXz7&`y^f_J{`+NwOlUS=EfPQEhYp`MDzqOLwnk--kOs|;kcl&$MI4WKqoaPKr@B!0
zCEAgolfEIs`P>$()NsOV8m1Yt_FOXNHf!<j@X?X}36_WlQy)VFm%@UN2YJ9?9bk~L
z8_TyqwsD+l+{=}ZgKfoP=$08d|A2TyVC0zptnt9`00vg71cp(Zy*k18g|M*URg{=G
z5pu+#eoAZCTX`dAT$pIyGBgMU4A2U?m_GwJaQygKcrY&6@5$6zq9mH^iE+q4^#uI(
z9$NRcK;l0L($FV)^g`DW3sb@Uu78f=0_NCHK#Qc+3R*CR&Bzn~n2Y$?n>_z@R;2#v
z9C7)dystTWiMElO^l5m_i`SB*HZ_}kr*Geop5>$*ia3tt=auh>-6f;w=H`30jBcls
zPRbLh0%e_LDxvR&e-v>BN7VB%_(-U3l$P9QA!gFg%pgs1*?#BH{)X{%PAR(?#~Tv%
zc1!R_q3K&Tu{2by4rz?IgE2pS&BTlMVjzpRxNWjzWb-y(SD>!KI>H!6_u>5g6Y{m}
zgQbaS(5$!y%!8c<*^>w>!@#(jJ}RglW0UABC0?_EVGj6Ks(cJkRF)`V2#KNVLzZ6b
zxZd%kF^Rq~OAyx?h9Usa_TRkRd&bYGjbS2QSUiZV9U!Be>?{z+0oR#6Anz@!bmD<F
zSetSz(UIp<+A@MH4<crO<rtMwhK++51C7R}b17a#M%xPS;g*T<kUqLPvFv@s-g#$4
zq5+h7eeXOlsJUr8P{poCK(&j}5}IzoL*@rONk=SJGFXtv-g<BNC>%=Hj%pUcsEHY8
z$I=!Pfmkp?kW)2L4qME9Uiv3CU8zez<L{;iQQr|;N*}owe*+q?g&Za-Khh=3!L{w<
zOj}kK(<rg+iBW))jS{vyJm{WWLA|$Os%b%IK8q1^iFy~aY2VKyV90D3L=u}jlgQ8-
zQ0wCGz{~d4yhS~3uqjI~e{I)yx{)t*-zLGYhFn2Y&|B%+13f`xI_)dnC4v-b)zM#H
z5dV+feO4<T`)+n~E4aews?E1{c`1|I3<tG$qb5(Cg$NA4_;mY*^In}lcCu(9W=Rjz
z#X1nR{qZNbfNyaUz%-#n;5l-s{lBy$T<s{OJlcI=Qr?h0OV$GE2eP(325|`zB3%uh
z1+D73P!4v9slo--njQ0>@`{lDM_Rvb32bZh0dP+7DKg(8lCUG1!90zJHu$Y-VKS~s
z9YLVDrpJx5WfFuy#1hX|zb|=(QJH8!aij5HRWDOWjvC#9w<fBVRl;<&FrXr;Kd}lj
zj?+CjBJV<jwxx_Pl8MT1)X1x5WwMz0)lONZYZ?1^ADtE7t}==8`#ASi+@p@$a@7*G
z7R-JLuir7>lX>?2@BZzCPpm~pKPL?aq17$|(M`U;X-E#A?-Fd6+%ggMCWkxjFH1=L
zmcCTw@zCAs+S5xr9C4!ZJTTS&xL|J?T<1pWE1eMmyyU>vBpkmqio%IDaZ44lH^&<|
zMdVd$$#+V<|7NT0AuU=t-a8oS!6R#D>QdfAjX=2?T)vo*Vmm2dZEjELT3tup)gJhI
z8ynt5*eINre`7X9<n@y*^c#^BL}L1D`s(tw*tBF`tHwhIVFmaWof?_ZFBN$&kGGme
z;kKFN>AZLJg{%;2*~GY5?m=ZzbuBF17<1i>2ZY|~;<UQAN-DYRq8yQ8WHNk$`1Z>S
zt%sZsUK;^&jwF#jd7ycy*6TkehrF}g4pmV~#)?|Ri=QDk3T>rqR{mLg+r7eY>c;ZH
z2mfio>RTelx$gu`HqHK2*8zRGj`{}b!$h7`>uywIV;k}?r)?RR2vvg61U*PQ>$$Qw
z?_KCj)78%};#d3HP2tj&mXQf}l&Sw&DQ-{={{n$M{|fU5zbqPDfS=6$DLXplA+I=%
zAA5OHy{~vk`|IzE&jU~Iwttoj8~n)rBS0$UYUFXI>hF9>)x!kGh%kZBUmx8=b#Rdd
z&x2{72aR`zM12j>LK^;f9w25FEzurz{euv=pCl3TCi>H<tnhKr-#Vx`BWy7q5F7!C
z<G?2Z(D@oHS+WCHa?oBrQ-(a0gP_kKNhOZ(mQJGY#G2c4gRgi&EO=+_XMtMFTm}N%
z+w$~L9dH?q+ir=WVrcHMO^|RqV68(zi?Xw=L&)+!PG+F-5pb6<meOtqr@28r1X;{G
zdGvXqA<w8!WO>g~QQX<!nBNH)7xt_Iqa<R}W(cqFaiZSrW52g7cbQZq`2)*g;R!m)
zdxgpPu4HEg;G8y6DJUr{Ih^}ek_py#J6||HfplD(0_aTiwT9+|-llnztl^hJ2;q5R
ztx+bJv~A@B9ZTBbPN-hCx^8Al@cfvl0kGc}gx2@jl#WJ~R)V^$(;=wG>KOH4?IeAC
zdZ<p?%N_E`V#-7X=VpJ_a*~Hu#R+@(1Vg~|VTW!3N!om0Sh!W{o<{mZ!2}6L^;VrY
zS3z0xWW^}w1nWM))*~}vE}f=6gZ_+iJ=vGw5&2Ii^WNE`TSOA{?(%%d`^s+vzAriD
znJBTeBY6ot@q$kBjHcIJ;2%y#ZXs#Vq(JTE+`jDiSEwK*Y09Q-FdrUJD9MB8uqj$u
z2pMxLkE9kPLw|-Em5$_9nWWUy$m$z|uHB(Vo(h-(D6T3s*ewmDfH=2?!U<L^lAx<G
za8xzGa(qV+#dfX3oH!L9Hc=^Qp$pw}%TsK~TQN)FB7jYf3)K-t@`^>|?IeG6I6|4z
z)MpDsj|&|4IS!L!Y*L{2ETLPcwq}f`B7R&M%mpdE(vkZ`k8O%H{fdfppouBPRLH{W
zgaUI^p<7C!lmfJckvdATNO|Q6({8ZCSz@s+RMjbapAcA0T3EXxKO6dFi4itbQoIrx
zZS<@tY1tdz0lqX2T$IVbO3a+8&#X`^PSXvpv@T(iPWQJ;_iSJWXo^$*fYlxWcRUkC
zmiW+~We%iebuUUM&nc(&Gp2Q+vqI2$W|c+KSf2f;D6^>N47rCXIZqaxpi)ZcUp~a}
zz@2QiYqO+W^&2Tsppoc)E{h&qGEBr(jZL-zEfWgeHV)UufMa_kDcY+jP)6&f`BIh!
ze8Mc59w{SdRNbynxdyYpZeTSxIxCy9^!5UcW3e%{N(<w3nZ`m5gaxN$i7ufUOc%yu
z`}kc*rO8FL`8TFpO2U<jP_0jVsVga;C!lwjY1;ohNdbW`AF(NWK}~HvUs~1XnnE4)
zif1(3|0>qi@57)ciTYm8jD@T85%o`dIVANY6>o6fuxQ68N+V&uQT@=Y{$~>}G9ZX&
zmE$avAHiq-3ZkE?_7IOx70N2ypVf3ebyWhUX6v3amSer1CfZ`#boc}(%c<avqTi~n
zO^h2L7^Bmah9{|BWsPj*EXc~qChCc-E$L!)Nee_+&V7y2EcCO7r!hLmv5&H|pf`32
zuaw1eVOFKqkF%A-fVW{k*Ha65s5_3?Op&gxU<%Uob*FWLI@i?^NrrVCF;?6@zRjx?
zqlTsg({Zt3jczg30L$VUEa8lLh@%)lnfmVem-MgZ1|pJRQNRu6CqYccK)UK};3Rtf
zsrBDh2T7Xm_f(18T>fc~Mxo>O%gRQZl@7mWZJAYdTC)J>S)2B8$C-lXq*`a<&(3_h
zF09;5No}z<vLoB7gQ&4fSE+NKE>|_Tnq)TmIkPj+R5}rwy^rly2RiQSm0gp0*GYe8
zABOirfNmEBjs#7=Bxvwk$ES6+o%WV#=*g~Ry*B;`=pVi6i^;Z=PXWSO&$W@ggLS?4
zS4)2odXI@x{mBxwuzkQ2w}fZ0kP9zi&n{hDOHpZ#E?((Kk5pK)q`b5RWXs%O8mAsx
zbNM7uM7Om&g6zv=Kk6;OfMja-1B+#Y2An`*C?=Z%5IvG8SnnpY1m=?jO@ANoa(dC$
z-(&yt<s1Fv*AasS&%rmrcv>8oLC9Om9Bi!z-T59Y02H#|!I#HEtd{_LI}-k`m^?!I
zP5=OuXrcYuxg|kllAt5hz*5?P=)&Da9O&v){A8iMRaf`O8+3gvGIa0v%VFh#pci1~
zV?g*dc<1LGzn^&OskT>S146FD!i!+0=3!C%u)!(7gj8jGt<HiSTEund3BOYM24*-O
z5^e{NbN7H3!8gSSe12dqobOjMCK2-C6Oj=*yOAPfpwPhZ_w5l$16pZ=(F^7K@@3G!
z--m#7gB5*zE~)EX(E+f}fQtdee#D)FCc{N#K=;5W<6EFj*-+*dV7Ufj)a)7z9}1o7
z3;IimTpQb#qC}ky#t9Fio$+^a@nU~RZnD9GWy9t^y{F#tXoE4WW}lSF3P}23<-p+j
z<>1erf%lgK80Hq;Cdm-H(OA2RedD(@1`hY!%$}t|uhT_wI)vehReABw4sv5q!MXUW
z=KjQYPQD)jfyp<tgqKDBQv>8&l)UXj7qqk(kajn?mD{=J@_o7A%bf&OaRhkG0#G<r
z+uPMSF#%8g70lN_e603-N&d!9H~GMT@`s9|=GW<<3A6+@RtxKPo#@1U3MR@R-602$
zcLFkjU|Xw@Xq6g{QTCDTn|zqYOEMKf0C|2eBN1}D!;!A@rN!azS!yxz{i#9QkvDtW
z>X4}U6VP00o|MRY8g9b8Obg<_%H$EuoB(z%JffGMU7ZLs$LGg@G9VQ^2C*H3%+#D$
zvS%ri=5J+4$gj^+9nY&!B-~k7M`ui|F~hD|**V!Cs9p`s=(o(jte*B*pT3MllC|{w
zDa$m^NRLx_hhkrH|MJ0Uuu;z#h<G|zG}$ZR{Nahf#}h}V{`8iwyz~5r3oF$NH{IK`
zQGnsqqRDO5ib$mAl~zU6$PL&#C^yrr(wlkpL56+F`+Fa1b5`c*d|sSt`W1D<I+ma@
zyU<+vVox93u-f-@s*07mJtX2m6xiQ>amWCcGa>B{f?bh5rRQlS*sbRwr%!WVkm1Wq
zN-O)bUr6vIQZKA)5db$!udntN-(!G2B~qQPo4;njVBgP`z>~SuZT)85tsYqV@cH6)
z|Av?>Iq>=ZDLeV>Mix4mgTV6Tz2fzC2K4VC?8hN#yv*l!!$hks(2_J+^I1Z!6yb&B
zrYn9!4+k(%Qd6tKZopUh3l<jf4GG9bJ=azTzMQ|640I%c%!Dc$!L=%HCh{Ewicpgi
zR6~$?$A9xpaocy@s1>?=wc~>+H>IR*pEa;Bav4Eq+^E<b{_VDR?P|{MmZNqt(O*=L
zz+SJuNN*UCwSV#6*zxdPH&Oknhxrn01i!Zqit_&)HqGZM1!lp3ShK;ZXJ3=c_j(a~
zaW_lOS4`Ipd%3Fn`Q=}4gzd~Y&jMc(qFImt(!6w<i|QD}V+{7u+o>%7*62W6<NJ*T
z`z<khze)9bx5Ibckp1i4^6&kxz7K4CfA#M>p5tJ|0otc}FdlvIw)|l7)xp%p!SpoI
z>wgFHsy7b+hfC3i%jJiiw1=NI4mbWC5^iW`)uWl|!=31(z4D`PuZ|8jj`ZA*4i-u6
z=1B@7wouwPb3c(29+zZH>X995i-ha6lSU$swNb~q*`#8+KeAJP5I+|95=XER|KalB
zhY#+!-tjn@@Pjdi^hfM*BK`z;NXByK;F%;cz?ZBQd7_CVgN*z<65n0EP5#=Lz8ORF
z-Y>#<lTJc7Vqh4tdx$g1<};V1-1Vd67iK;nQ0mSQX|$omjCg+{e%Di+Xb_z$HSUX7
zLy?txj{;^f<3!i?GhC8fwCp$NzQ3sc!>7(eYUOxpgU39|cfmYE#IE<L-DgmqpSf93
zU{>H4D3(@5>W|6rpJ=KxTEB;nhkSJ^=|Il3c06b1v$P3RmC$K=qfPo}Tnu_93__g0
zK8sHKaWMuuj+mm@6TH|XbG*<f<iYX9ZHevrna2GLlEzKuC8bl_heY`~p+Pf3J$GM}
zbzHWXQ;q%jug#H#CHyia;;-=xbgGh}tBrVJrusqo?HBhyPk!cl1!5c7l;YUsUt+#`
zdrg}B^`cDzJVeE;Y0B{x^zS)4gP^2^Xf_zs${EFj>@r4*NndjT&}KR(V_A-zN~?xb
zC$a1~o~_^4*&JkzjN5&PL5K41XD8?fMiSFZD`E7lEp#Lrwu5pXrE}K*T!SDmVp1{+
zDr#E#6&DXSPA<<>b5qJxxREjR9*T&{l0W?wF4cI9<d%cZ8wDF>###mk*;W@%3NtiD
zpcj*4``ZB>RUL4xVI7%qm7Vgm;-%Y4;pLOcwhZjk9*~*UiciOD|DZI{_>AT%ReT@x
zT_UKZZL`|o&2|0E_J^G1h+PYo8`voYC5S#&x|OKWi7g~yfyxfE$1?DNP4+`}D_)wC
zj*=_opchN;_!4wHJ8p8dS=#>*@)Yyj3`@6JG*e|Uab&8Rh)C8m!Y&`gk&;d4{7o*k
z4a0SM^PchBd(^}xaJJvsf&18IodPG2tvMo@!9J^4^Jbm5!cE>vi7V_x*{OYfqNhke
zO3*;5;=?~o-qO1*>V0_;b1$CdUX@O>m|v5E?{=joPo7w|>`Bhx)BR8M<~Yz^egp+l
z=opBt?SJ|~%SQBhSq>yC%Vm5rY|6d4NW&eP9^_}u12a<A$=K=rvgJ+8(4vG?$XzZP
z=x<_u{oHF~XwcGq(kdvJ&?)lKQmSeuj=`5dPwne%PrCJ8Vr21Oc|Yn=?HY8=%k3#L
zs@vm>&RG<H2oR0J=(W8p3P$VH*wlu9p|i;(Wc&Dp^hWFB+t_TJU-qALg64>v0rz!#
zazUms0ag!>*nC#%H)ZmM-G55=nf4A%Oa>(1Z!>{TWfDl|yRQIhI`fI(g7Db&xgs7a
zd2GTMw@h*;_%n`kbp_H;ZZULtj9RQfQY1+IXf53-R=JnXQHXdpvND0Ra0RbLmA*!s
zO)Sd<qN0$!(eKd}Y6QS(dKdG?L1T8g2E|`ws^S@%w@;~5hL`hLxOsxQ4H%eaw-V^(
zzCp}ypEqZi^BA%NCFaAJThIBnrJUxpZvUhOp&Th{0EFlj5sZ$~1Du|~kKtORtT_zA
zDP)COnA@bO%vayD_|U^E+00I`lJuf4v{nPD0rMz<7P@qOV(Z=&KE@~4A66xYpudt8
zhy8}9x!V_W^#|M8QH509ypCY8TVZJ?f%h+B?RXa{y4R$p*R3`gnWBdslQU-JmbhJ3
z&J^fH6^QkO{;|q0nEBiHaLW8L|23y`uUPhJNm~7UcBY|y-)7Q#LB*K|CPcQk3hjw%
zAoS5jObFUHe(IoxhX1J2<zb{T8>+G_JZXixD&X%Z9b^Lu!ZN%6HE4~AXuRUy?+Y!C
z^P|-tL&PU1+AQ$moQ#}4YeGDI;bmG86$k#1MAkwsHkR=qTn&ma6&(JmYRVM@T{87^
z{Qj3CR3#vbjW{gG#7@T%3`NdX2~KwPp1|e*GlD^h8QQV1bRw4P=om1EZzbCueWs@~
z4FA1C$Gv`kgNbKoA!6Ey<gWIi=ETN$iXhu0yPp*;yROyrUaa$>JNJw?NXF<LA{D8f
zDx!=kio@@mf7*MdFkT?^m}L3$T?PU+N`ot6^}7Rg@z()56cs`c6Z6j!A3K0U-iS5W
z!Lle7q5%M^t5yhG8d07(lZXZa^MM~$c!-kbO$MI;>eE&$7gdW@IvxGfhkS*oGz$8<
zjU(m+&|4Hp?0*owZ+0Q7pFwv+$H><AkjDKB>}m;yP4T(re%MF#+lh)A7>XA9;YCBq
za4W%Wi0jE~#(4kq*CN9w|E!=6l1NC^<r<)h&8Z(8z4j!v!}z-Nf&Z;EVtaU~5u@^|
zykpHIPqxdxLQk~d<0k-y&N-P9k3OfsWJU1~b3zocYSQZ56@VIPJa2N3ZVZe@QA@<?
zc+z@f7e)`5Y@}yTS~RwxqeHPb1z5W9w_<!qKeaoy$1&W37$fIP8&*(};R9bY?bu6`
z$#K6-3*%w;yUgk=!bKJI%Rhne3oI<ZU4Pc|$bDDVPW0$SQ}o-BLQT|HdN`g!l*F7t
z)E|JR5@Hy3_~_q7s6Ch@yaTBqq4Yf-=u9l*9b-p52QDsyY|Jz!KMnShjSGE+Gfq@p
zWNVZJE54H*OX-xYCA)=Izo#@E5najYdhNj(RQ82YNG-cgreIIyQVQ)^h<0(RT(w!w
zo!KTaua&QDP`KZ3R&qf{N=fpKF0o%d`M;l32@wg8(ZUuyl8qHY!@|Zj!t)+XbhQo3
zuFR^8vt7~Y3_J(k#)_XTaOa-Q+VmQj(M_vImDP>V>V{mFpD_~cJH^IKUpNJAq;V&w
z?z;q^1zso1Y$F<v!*qU?eH)T7J@pPAa!qGqteIX)IxLq$SIG{u(#`JMz&9JeOeCex
zd(8b*M?vl3V}1TqhwiGSiw&zbW4Yp8%Yv5_wo(}{ct`&O@%4HQYjw-=pJVb$cW?a&
zOW8Dhip|4t_&xNxiNVr$&-C~pA6`eBV`FRSFc1!1O@DUpqLJNUtNSeyE)G~IO{f>#
zx!8z~!(egx%uKBa*HED{KYh;tW5e!HI3xRwm~lXef<1dS#_@}+ylgGR|8kU6_`qal
z@?#fix!uPLz*%%w_LWZYLxY@bFxx#?zxfCvvD$@C4u|pK#Y<IR`~oF~!ZdY~C25`Q
z`j{{K#??5ajX^3-Rc_WS62S{8ad20m(=(Dg;(jmw%5E+@9Vvvicj`a=8G9=xZ_ots
zsFz5en}QWR)wwLAgm2hZQa*(W=_Ul5`=z~evvPIlSz;U@-{BDrjdm~0>N)%VnftDX
zaN<8}L7Jz#WbzYpz(j0K%XP$!);!NvquAE3;~rF*#AzweIi}_1xFgl$<w>68^;A(_
zGf|EHT3_lTEtz2uV?Du@wbO(Y9}>@yj0~WeMajnb-#^VPUE6gVBVf(HfCgv`HHw#u
zE=p`r2o0nU@SKy|=T_KEw;eae4}Bl$F4T-F*FpA0)v+ZAvpRmbBUF}qiEtuGL&BI1
zieKWfV7lDifRchaF>^pJBCV|Mhg+`3-wdewmE&fCXwpPc{LjZ!m|g5fF_EC}3D5WG
z5yTMMByDy*{Dq;BtC8jg<v+6Ap@I8`zgs6CG_RC?wX;<Y>Fb{$5|Z&@Gh^K*&|@eQ
zLzN$JAjTi@X_lW}tK5s3DH#cS-6Xy&`*W>YHAM2mc1>k(Qq?X5w;#t@ZcHzVJ-%M&
zb{q2Yd^<JpMd(f}F_@CB#XC~$a_K+Q>*L_3kJAs6wX{E9NB@VX!b9RD1|%u(Bz|dV
zBjK{%`Vg=_ZFk@Cw|d}hE;wQJzFy^N{C(`^l}f~5Gp!(>HE+oK_QtWbLow^2x)+t4
zQTv=~gUTku4!R95r=_r$>(^S$*!?6(4Q@j}dN6M0D5O2+4pZ2pfu5r6B>1ci{8t<0
zzj1tQh1|e2^k3Xq1_~sq1K~#oSmV%iC<s%6jU?aSGedZpPhDdR$te}7hu39))}_wo
zmF*Apzc_H#H36)TgxqR3a1)2B7=Oz~0XA5G;+QVJ_WB>Pr&)}zSTw|vK>2ru<Uj(B
z%HEs=L1g?OcO_vdQ?}N#FirxH^6gvjEESC(=rZ=|VE74>GgSBZGXEz1^n<mzj<~w=
zmoWu<ZaYxaj;8xT;xs!_ehi;HhAIA7+&Lz;7k>uq(2soAcWb>(^RO#*7HY%$Z$umP
z9w{aIuw{CNf_Rp^#Q2Ab1l`{3kIBuJRAiAu&HjJJa6%odxdz&PcP!wLZOoZmu7mat
z^~so66IO_-#D%INgTi!J{FClZ@C_o4@hQIhkvp;5)c+##gfXn<0y%8SEuk5x4Yl(j
zPrhzK7@*?*A!%v_uA1GLYq2aLn!7ZuR7&pTy>kcrqtLwsINKyC1O$8@uj}NZdq&;A
zV;H51hqnQ2!;@XPbE;LXbip|kJ5o)1{^XK}B!!wsO0^P4ZWOm0DQdBQk=qjle?SL-
zB3_I2Q<MHj-Fk5X|L5QGlX{BCbQP0*MAVF!2Kh8oBR8p;FLAu=-qJrQeE0(ncMxS$
zvB){e*|&34Zu30bem{tC+`r=LjC}xG48>F}D7_Q(%?&*F6+Yk2n~g-KP_wpScomNz
zkH5hKq}fA$Qb$O$#RRw|{uIlk5lV0bf1N3W<6-~msT^`rzMW7_|5RA)L=0R{f)e1x
zOc>ET>9ffZ5@KwW5%<sO%BX;xFVa%{SScy`u7~l|I{Dx32Y$_NhnRVsC|p!$wr@cS
ztH_nS$_M<eniHiDr8pQc`J!DczYpM{j)qkz1_vsTX)MGA{&U=f2sF&L%gs5nNr%9@
z!;?DEUEf<VFfA->sS^OJ%U#CE-D|We+#);UlFgBU=P!^HclDQb@m87bJjs;`{MAb?
z&D(*L{3kNQutijh134LHndT|E|7vu*fp2Tc`)EB(3CeeV@=uJ*KYZscOnbW;B|RA1
z?J;-j8SaDX0+Wplxiby>k<86?OCm+YdpJeKu}Bj9NaT$qT_Y{Q>$*CwP#X2|*FteX
z*B9D*xCJ4t2KkU?v|s}u`^#PF5zDce`fj_rZd*NS(Ob@KejEcU)PYz7Vs($m9Za-@
zf6-h(bRK%?2yBros}YXosUo|@(oRV-Tk!|t@Oa9f&Ag2IU4&CNsflib2USw+Tzj%f
zf}$w0CtFZkBqVkOY>N}z5`YL}p&FSc&9AxjFkpb*_`@*h#v6phfCRCySIuPV#ydx{
zciC?laowu3#DkeIU~|G*aid*e)_-y|`lU5M!YMucW}N#4s&mU9=|W$(F)cVTP!j%>
z*OIuHLHRKtejMq6x#{mkDH2x(ZUL#kV-_G9553>!X4mxCtw5vii%=^hgaZ{?)@`l!
z-dqf@u)xc1nj6JEvl;wuQ~kmG#|}smZ^%n*Ba5^&1E~m|lAd=nEz($7+#ClObyWqk
zCP4KFP&B?>iC(0c{$5Xz&C3t$e<|#0gY0gc3e)tKt_AkL^C-N2TRsYU&e3C~U&-~n
zz$S$Lu2k@}5z5?#KyPbmrusq4b>8t~(9M?E?)@$6Prs>VE$rPtP|GihfaPp5a#khj
zIik!ZxCQ8Ck=FX-uFU`4vjrSq7nq9Cn=yJi`CC{;S$L!rD#3pn(*~Jzn7Vq)X@vf?
zZnJP-$#b{ByK8sv^@-8D1)62hy)>-^jT7vXuDuOEFdzoJpm2mu{6jq+@ug3uz7Kff
zM0>yi#(LhyW}muXY;IsttgR(p46$Iq7ZOkbGUQXs+8cwRF==qDwdHPBwi_woKazi>
z=*wC;2E2_%9phI~wQIfsJxrh(G+6uNXRpLhRk*-g-X%5orckR}GK|ndClLP^C<1f)
z$*kNxdRfsrT{bLiqsFiZ3j4_)=={<9qV|T!Hn?iYPW=-q()=i6=aFWN<Ngj5tRC`o
zD<bC)jmmS=cYi?Be^}=UJDJsCcL`xFMqw|X+mYkK^a)xAA7qRP5CsCnf%INv2zhdd
z1OAV~Mu@2fKJsfq^yXo-nC9cWB8rFCW)@SpaL<qy7SqT_ut0SM%~(b?)`GXuMQTF~
zk8kxw9EQYEbv9#|!cBrzS^9K2m=azaO-J`?bv|EkTecMJ)3qE9wt$65EyguG_j=`0
zVO|8aeh&EdEe;fl&?iPYlVdc9l4s=LG(q}HrcwIPm+=RFv0mw4r4a+mFhl@(O&Ud`
z?8hl<$8IARQ;CqmEm~Uue$ykcBN`y|Jey(#A^K6m(gjo#sA+8lX9AQMKr8VhCnR?>
ztMQ<Vh9<dl_$Tgu@;}U<(79deh<jZK7f@{tb^w9Pff<3UZ8Gh{$T1}dt#icNrknM3
zzOL1d3Z6?gtlDjbf^$WV`<j_0a3x=T62ZjG7OpPTQk4hWEcA|jLRwj{f&%52XnQHj
ztL*01B1@7I^D9cq4)yhVm|3!0imBd}Sdgt$c{3m}<y`nOVy>brX6o$f=9?}?)0n4J
ziZ}|z99THDLObrdPUsU+CG9Uk<k5X*r7FHBYn0(tVk|5OJWMvcdNb^T0aGo{f|CfZ
zd6R+DwdIgLsc}U|D+7k+Hnnr#$+S=qQ4GWsxr$MG7R16T9R4io;#rJR{mi?Xgnklf
zf^ga=Msgg)2o;fQTgpLzXyIvZ;ma#78lx`iJHne@^fwJEA(AheUWYeN^f$l1Xr5DQ
z`4HYxi)>!GXxY40YTXTQ-S2NbylAB!ZaE2WJMVA1x@ZF_x5MsToQAhkT((mychE<4
zFqgKGz3kvp?&OQ;6nfby79qvC%E$>om7ZveVoKkGy037M-arop)Lrd4MoKK@9`HoD
zraKD>F`7f@TvEAQQt@MpDt~l!5%rF`^d{*)=L_#rR_;#Wdj6uJ_qAh>jk0RCa&Js&
zO~Ga7)6Ey8F(9Lt5Yvd#x_hO*tSnCwNXPEgxI2OMbb7|_4TP=KoHvEZVzSy|Kyn1G
zm=v%M0g6HiwTYGvc!|YK4vEn<P{c6m;UET>MVd`O0|k8o;1R>plG3c4c6cuJ5lz|t
z+P0w=*Eu7PMn`f8Y?6Pg{=C!xl_5}NrJ|#+P9mf^u&G}k46{ZG-)S6ukpe>F#@=wf
z{-Hed8~+-j_G*6>VLMP9!v_8N1(3x;<uD^Yf3tG!0&xR^PuOz5uD*4xo@}z}EL>wY
zDnpR0;i><Mp^-2)Ex38v8^`fCS%j%d=*S9Yvh8vlR(a40Osly-*WL}%#Jw-!nRq^c
zNGvOnq?y#jL*%xApKFj;I7ZS>AWO`u++2_5n|JTAk47d*@-a{)05&@(bBUR60~Xsr
zd{RHfV8idpDxXd_LhMQ@GzPWU{vwPAM+#y_HHSxEVgje~7uzsPo&!`2sE^lQK15x|
zET4#7En`0l*ev%nNJ&R6C`Y-DFfDn<tlZ_JPQOh(fU$fuwsIe}pvW%k^Cm-t-EgV5
zc|3}H@@k$K3|rPF@pW0{=_b)b!5IE-+(vJtr7#-f=iT!^UtN*pV@b<!ee7eO<PD#+
zxqc96C!a=AB-1Pmv446U^}PJ{n*5rYsN2JPkG8+EeWV}Xrt&6(MQ=%!i>=*;64?LD
zM|FSw!uSP887R5-4~rA36q4L@u^*;IRq|S@NgvXfZ`$Cx#m1<(*p4TjKO0_}82kW=
z*;7AdiM(3!zG6bX%FcQ9v1G%twY(JPK>e!R<O=y6V$1o(46fvaprqcU;X0tW2654$
zwWrECXJ4^@Y5D3rNk~H;S~x>Yf6#6@(rKt6xxq-as^TNi0cC~aaXFJN=r~GMQ+SKp
zW9$2$WQ0}~Zy|W^yXpglJKNX5(bsh<jXNLDM1Jr66=Hn6Gy3D#yZB?WSj5@JE}tT!
zJ@;!S_VxL00bgFh;_b+EuxRrWu_{N?Pk;1|o0VQUiKO$Kl?;iPqVG^{Dpg@GZaYi6
zIg3v_Bm5TR-Z~c~soyG(`$QF|4CT6f+^Fbb?^w2BH^2QyYLtuDS^nE--q7cUUdSIk
zh)C{ez7>Q7nWQ!>#fHqmS#p)QC}cNeKk^HeY~*GL$Z27q+-m%V;gwG@xt4yJ8Y()Q
zSfpL1#W3#%Ill;EnEJrJR&d4TIWR`i+#|Mri$0S6_tTgZ_L$9Ey*(waThxXD+-kZe
zTn*`g+_$>}2iQ9KZx0yY9CIH8P0;Ks9`nKGS4h)*!Q5P@{4YYM!fjdfxvfel4fq<S
z`$wcBl*9(CQOZGYa=8XnP7|_1S_Fp0l@#+@0#U10F{ybxza!q%#ia#|aFCch;+<kr
z93!#lI0n<*@zizTE5Yfk3R`}qeBc};R;tE(sV5gPuEnk_@RBHWKX4xTPL69L*;^6A
zF_}f=NZ-GJ=A(gun-<Z=MnoBPMiujT{@4#O2no9ZofCo4v{r|^xa)JvFPcQ5&yBfF
z7b{<X=z{cxAHo?(*ZLk2``BbxiI9;xHoSWK<_iiVO=}q##I=<fHz;9ifPAqD15;UZ
zu}0z?$I>WRWM^6NK!R0^5hA<q;_UNkU%<p-Kw6DPny@~(+!4H_hQ7(#kY{BCrTLLw
zsd6`(joISi2mDDVlf&OWlD1C$oTH1#fZcZ=ZRmlMTe5IEV!cp4rI>^x%7ZpqhBDrB
z-!B$Vuc?jxCioXEO{80X;#{+-v(v3_SOR+oMeS;YeXT7TiyC^c`-v=s%ir25t+oem
z`+&ldNrkgra|G&Bd8`p^!)|JC^^tndUKix`CqaSt6^1+Ym*TZ$g$<zr6QkkOLtQF<
z{eo^i`ik!a8E)S&M(~y##8ziY)Q~)Nh&<OEH`twhyOqpWp3IlkFZRb-00vd$wWZ0m
zpeaRHZELAu3wrY4-GO}f^&Gr#R3_zP%ueMl@z_n#?>&DU{B-!ab`!dNmR8&=6VBHF
z-kNMEi3l&(bO^TFMxdaYTkZZ6!6+NkrpdLE_~?a>6Je2Cn=bmS><24)6#<2MHMFRS
z>hFMh39Wahp4up#xiP&T9jicbFP>Bc`YTb3Qw0lSj;MSBg-JA5QbU-tQDE;`-du6C
zP#+E}P35zC$oa|Av#nXYMiK-@AOy(zp5jMDnQ!XPa!5!hZyG?z_<+-6Fsy7DESy(>
z0uKsxV<bgb?9z5g1=!?cNwj29rNaUm@>p<tcf7>&4Q^K-t;tqAn+1*8TI_3G<I;ql
zWuiB2LrE_P{sP3uc2bYjMgt#6ax-NB^F$H^tj6b(^v+2gOtZfWJ8L|cOuG$_<`=B-
ziybHN06IJ*u*k$v2D(`22#ws~uZ0hK_JKo|ZP|hKwyR|tABk%W{sSBz9w^9)x}W@f
zD*b)cW%c133R!{%6;|=Rr`X!@sOJkZ(7;d24*3EhHhck`SZ8s5E5kWMAzi|S?Zy1l
zwSPSd?eB~tR1AtFI~JJ7V_W-OB7u(5+kDp>2}ic(Q9WOL?*Px&s#c3F4kV@=lpQP}
zKHn+?VR!#K-Y$9^`S}hNruEl%Zt5#wVMtM2sCh5zu`b?1;4dQ^4d4Pp3J#k$&Neb8
z-&jorLI0MlPys!|SeI-a82Jd$zw&@B<n5=WHB?(<2Bk}~+VESwVCnIw7J6}H%!#01
z*Q45|SdeVNRe*Kk`F=B7FO4}XiJ(F^^K?v{a1!;y&^txQSvcGUqZ=&P>{JVaiqGnj
zsT${x3Z~v2a*pdN-=#ANLUW%Qzv=%wmqKekLm`sv<gJ5`r80L<d8(rUAvR8v(|gBG
z-<)YQrl!q{r?!B3fJi>Izt!q@Hom6B0yHYKu?D<bP7)X+F{QmX2&{BIS9XSmU}r8`
zlPtHTK9)6&PMhKMBrZQbkx%M{E^oa*7R<$45xbmd%g>e9w?@+ZZ&?36Y!2k#ZC1`d
zI>8tkz>qRKK|GiYooAD#@Samgrr_TS12SUuZ(XH0Yx8V*AC){4%9lB(Gd!Ms&(?hK
z1!yn1c@dWhocD6&eJVN8eR`6GIdiLbK-5!l1eV;?Y&SN3G`c_d3*}FvjiwDx^P@x+
z2MsuLyx)vfAZcgQa*C5~dt`8D<L48_egTzZ?YS2=bP^rXHASb%xe2BXRgYfo@x_&x
zwk}g=1s)6Pd<elQ7VdyJUtfRa)FYTHRN)%}@_5+qV&2o#2%6m5edDZ(0X3a=aLBPE
zO|48V1=<asLL9-Uej8J{V;OGR7$T$d#exuULA84AYt!>0t4bPJHA~P38cyV-ar9Sx
z(}YIz_bcyOHq32uCUYE8oIb3$+)CH{)?`BZUo3wz4)(?|&0Z-dzqa^9$U`HZ*!CSU
zwV)nM=@Qe24iTZp5h(K%)mUi!U#B}EsGj<RAFLYNi4EZ3y!9EZ{}s=~-~QwO=&7Z4
zeAC1o1i$fb5vq`PU9F~Y6IH(hlt*&YQVykeKRaNdXk={9T|?Jvk$qU*m>uizeq<1v
z{Lsh5g#B{sd1cS76wEb$oPAtjT*BmQ3D3#WJK_Wo&#YKmbi(lG^9%VGMtu+IH<ZX2
z>6Xn`ZoLg<w@Y=EE2j7v1dggeyqPGL7RyLpBH}-w9K!kcIQ*pLVH0+O4tWB|I-1O&
zgmL&iMjys+51ua9tY@PkgY2yvkL9Nbdr$r-Z3+Gqo3-BM6=m#H<Co02>*~fkYLz!&
z_>R~7cxQT^{(0EFywareBr3v+FfYFA)?FU=2cdJf^)?HNPi_`~yxbkm6zdfWa~=Xd
ziTC;4Mv0LJh8%xF&EKpO0`G`&LdyUcn_mo^sM|$uyK>sVaKyLdFHBbZT@k0l7PSA}
zIy^dMCj85zs200x4}Lw%32&k!MstJ*1Gy4DF#6ZS5OfJm_Y|oZLhU&(E=IgRAl*gK
z*^3z10g3ua=-HUqQ3|={v!P(^ae=DUwf3H>RvNF+A6}e{tnr587G|y0tefx;?X91X
z(-@)kUN~=ts6z&PX0aru*>Yh#B>JIEHhte7&>c1c3lEqSXiW8d+cc!QEeHmR3P%sj
zBL_sdhU95<j%Hk?*ESDGJBHWnGxMEJo;-Dm)9O}!A8~qVt@2-Af~D7w9Pdz7$%kj7
zp3#0!YP7b(nnG@e7$xSjMr{Bgz8*Un@sD4|u`Bl4OqHtcu7CKudf;?1)xaCf^L=th
z$PjwlM-`yDuE&7F@5+9ct~R22m%0n_3;S@}bg-;=<z4KIyk=sbb}u8*iStmxnu*$<
zXP<BXh<L8~`CZOY5G(XY_<i8>VPKhbJu4maf{s4=rtvTsysCGq@r~FlLfh#B^7h?#
z`!er|8n<P}nG*&ul*X3Od}K-yV{5SH&^c+l@A>fu-`%;bP|M}U6z&l4rX$tC2ITn>
z%His%-F?chdF8)$u`o|d6t&9>rcEb}2VSMp0DXOKm|h7Ia`EGOb`gB0HVUc%_V_@G
zQTG4*pVEff1O28y9^CJMLS)TRemQEee^eg=!DLXAVUxs!55;PNWwe6W6%RZ#kc><;
z2kZe{dlqYVk|6am;G_q-VzR8nmTGz@71zH%b88@J;!$cS2&FVq_y9?Dfg`{+S1i;>
zJMpA-I6bB^zXXCP%J_Ta(k;)zjbmabb4MBsk{Q7@%<M>djG-b*qJdY=+b7YYHzD=7
z+}d?UG=!`lDX2jB@L-erA1C>@5tiJT)3DNtc*kYF^42~s_{b&=sGKbpqsZ$-*T2rS
zF~StQrf|Cm%mwm%kx1|#{cKXgA~(TsF}bhHv9>-!rL+otGFH{0#w)(XYqSAaZ%t5`
zd3bDf&^;9pHw3{yj~`a;QzS}!8i#k|Ulw4&@DdS+h3`FEk}MczMD?cU>TuxZ_01vi
z{7eBdF*JB5Hn0`X*c&k=HSqu^J4r?`B}#mWdzyLd_r#dBXNBOjgG)?>(wD7gY|b>i
z&J!>mSv;C_F}4cNS?sF&-n^RDuatR$PS7LXG#Q8piq#^wW-Z2k0(7>z0pk2PWH`HK
zFGz>`<6GF8sDZISnG14c1t<m*ZxYw<9d!e%X-*e4(+f1tQgr@pNOx=yXLB=m?<k!Y
zX>jP$=W8oMYsD#C1tM2&vDaW%v<!W#=%SJIh3X(LP+Sf-DHiW8sjg?KW;!xy+N)-^
zv|x5oPAdu$#DAt6VPsDwXjd&WXzf&u<vi?((Y_$HW>{PeDrs%5z3!H(%6iQ!3#~Jp
z<QDF%(XU&qV<*#2)q?1_LGU9`+0vyPx&pqZW|`a~d%P-VwIwCHB>6kiRb!4uu1^1U
z#gc1PD`TB~U4#tyT|bSuI_yZWeDtxb6P2Z=S^ENWvj_D7tx`N<7xPVj`B`}dL<G&q
zg{`c-@bVr!zi^WVv8Co5X?h+xLxXi%Xnx3^+k^6ApRq4a@Y>(>?yN2qE+xArOVt`N
zoIYqb*nEzkC4v?E)#d2R#rpz{Jp;8~Hi>e}uEmNgi#%EtUe$^5#V~fJ;^Ommwbf%?
z%|uSfg|3(fo1UX>P~U6tY?fqku~uM;;{ZOnfAl*S>IN#gZr))vP<66<VhUHO)u@Mp
zoAtZN;fYTQm0AGL4R?^ja_TpYG|Gk8$<+6If=H-PTAev5^JsOSW^QL?)cZY$7kn9t
z^?Jd34j&d6<nVe+cT+lJvbXN#@lUh+3052z%T3nP&erqT^4YHo7I_J>3No=Ocnb28
z)uljErENY=Bqe{*^QbZ@<v>2I<7=|mz31RspgJnl`sK#>&bL_>?^I`J|D{&C^0CHE
z#<fA@gsCRA?tSQ<f1NuG(>KZ6UMf>tH5>M|8?X;*HY~8x+-Yz=J3x90j^7wH_XNnM
zR*LBG#A|9|l8Z8v^zutyR|><#d#uz7%SG^aflETy<*Fib3c^2Lb2g5DlP1lsokY^~
z3FmzBQpqf7*=ZE5X=uZ+sKA}$gPZO(W81*qg`FeKlo|}LzP$w1ClRsh@ww25?sWNa
z^+;i1h&R+_C^8oSENejaHg?7Z1<MAqa>j#@D6)J!)KB!yw|Fh%RcJl_ZYL|wGG@$F
zG^^6*wdy3?8h|AG(A?5x+jU@FJQ%Sjf&UZcr3c7v7zGueZFZ)>$yw3*S*QmdRP))P
zrJlq94>kb8HAF}2L{WkI+#aas#$zsa-nT98&iwP4ZNw*u`;4j{Fvc&zUGNYEgF&UY
zA1_2_;fD*7&7-!!SY73(&XyVJaR>%=jY+4R7k<EPy<g?DzZy+EU=1ub;^Aw<&-&HK
z+VQ0Mc+z;h^13L~Sj%$mgZ1(U8?6sk|2zB~j3Tfs640b&(!#Q`hYMOQCN0g8C|~;g
zmi4WcZWFP0b+1YHM9EOO4nKKpWBK`FSNFxmOcb!6!L1GSUqnfcP8#b<Vp`TR#U5cr
z2h)963ErG`Eoz>Jk%ABRzi5-~wd@7+i;Vf6hBH4N@R|CT`7%89gyyJ`rm@vP;;XF$
z)bR&{@53EmpEp%Flg1B?QaR&bKR|}6hi{~V`+H<Jo)m=#8v|s5_aGv1Ac)@-#_vsU
zymSTtPfg;m_t`P>-F0Zalknqu&raj$Vq$Lc;Wxdx8EF)(`R38l;H_I*568&w)C2pq
zA8T;GKKzfi_vlZF;-6_wL{HtoKO|zm{Q%!z2mU+^Uk8N;>XH?|g<4}HngJQ|JyCK|
za~G(SohHetJ&2Cvl7+~#00o)#{jC$9u$P{=L*iT5oM5R|a-7M^Bgp#8-$R%9{1nY?
zSVG}i$Cbp({1PBZHx4cX!12(z5x$lurl7vJ2?_w&TjG&$82q%H<9SD$_1pc1(IHBJ
zt1FjBJs_x3%Cg?yFJGLw0vlHuaHDK8><;j6Pb3-Zw2LQVD=3w;`$_83x$s(Ob}R>E
z7eE?1b)ZKAj|7M#@z>y#WN9vGqcv%fXC3b*^(5}Um3XNYMfpgo>1dOGEgCZ+aCvgx
zsU|)Yz!{<`nC0&z8IVNq&$54XpQerPF-(!iR6)e+SL_=F@6HRBcVHKp*jy<JPl@8C
zDM6k`lA}K%Z>7VsMFn4W)C)Txi)>rUggFp_svf6m0;eh;{nh2~vAxtneCVWnQ_H42
z488w4>d8&>scvTaTv2_X9fsS$J(>G%fc`y@tiH^xG)C0d6D3YBzNEl<4g1VMhbz(U
z;{-Z(nZWvdS!uEp?ICx?V`<IHPVMT~G}qmeCh-PTU%PcW)Xh5LnVi|ms==h68N1L-
zcM@0)SPTem4#c9@B7%TOrVZ=PEdvkGqkVgUznKs=(<HH8fk+5=*&ic80hub1lmswc
zrr9Z@qAgITAHOApQMXe6a}Pm#3{8NHgE3asyc%-0C&k35Vy6Xq&*w3o)i5usUYG4*
z*RB!FpZ^^0%IUog#%%ZcRs?$yGrL^ga$|k&yV~nkJ@y}a@FRVafT5ItBDqIq@=g!s
z_0D>Ac7j8;f45{0lMV!XqDMpi!~`X2hF<?J9{i(6aJ!!-&pZEI!xMn+$wQ}XB1h@N
zKFTBG<&g*SP+oA<YL6N8ELJ8|x85mEJv5&9jM^_X{@z)Fb13~(%wJdE#E7$`xX|RZ
zv*f%`$D*_Al<Lq_{j)?XwWOxAw9!6a9xT~xXhu^=`k&y8j|#Dj9_EC;)H`QcWQw-N
zfy4(ecdD>l?a-ifERi*ys0P(7be?Y(R&eh;iTJ$0`@AqsK2KROUth5(?YuZIOn|rV
zsvs=h9ot-cp2dnHF2hfBpO=*`5vQZ1z3|wD^YUL|75C1bT!!JEpF@@v%fG+C@q|~&
zoRwVmRViOotB2R<U(}d|*WSCRbq=rd4#&z|)J0r8iwmz$yQt3#Zz#QJs8%Wn32*EQ
zZ+dyrG#cLg?xJ}iyyfv(<7#;8_lwqF;cb@}ZIFoeQH55rhz{1v4xWfkk;_h*%Uarq
zk~_dP$y#XgJ#6rgtezP(@!JYt8GzXQ;5zva2#fEFL)E=X=`B(x5_HB?E6dhLC>o%=
zt-^X}r+T}FU#hDQ#D#a?RUUl!{MBgaOPRjDyqDHMWKHu+|6dUmWPh70lFSu9L`j@M
z7Yzf{2h1iSx{8!q8Sz9e=|md0;$-kde!KpXsD4~zzi~bCRiE@+_q#0ShfL44@=?Ua
zc!2c}C>cwFBTgXdos#*Vrn8J|@(tVYl5OPZ?(Pt2a5P9rgGhr&iK9V9x6$1tprka6
zlGcGVh?Gi+0|Y4vNfG7c|GvNX<Gwv#c0c!XUB`Kx{EvrJ^1ZQ>U7jkfisNm-$(-^j
zPOrXuN@F3oY56uS)ZbXJDm3-_z<!dJN(kRk`B;<ji7^~wpz4>V0#~T;ivk!KgnoV$
z{^e@<ODPoGqI$dF>1fT<tLwcRN$T}8UD7UvyCtE#TN$+H{)QU^IDl%HNEB(Vo<1@m
zzPKA6O7LUDtUN&l>2(jLTvRJ#q;*oI-Mu=y<8+EJ5c+rzI~BiLm26>a*ND8`M<Mpv
z{H7()nG|N{N;6pQ6T#fKqQ5UEpR~^WP@59ef9yS8u=sD9_gyX1Ekm(e@vwKH*6-8{
zdg52!`brXx-?fk58-ND_NSz*3H{SHAG(UT_Y!DlA8soXW4+V$xf!g8L3G(OfFy|T1
z`C*3oleduF4lmWGLbWKF_yx>QUhtJifW7El%8}+<8hm{I<*{E}x1oZXk{b!F3Th6O
zAGQXlIh7mwTCzab^Y6Q1^SSAZqvm#QK7mgo6Eh3SYFjchi>H>pmkFEcD+-AysQdW<
z!&GeIL@sa{JkHLuq1bhe0i&MX$5RSNg@%Zg!cb?T_NZ#)?Q9kYy1ex$tIXiR2{l{z
zM)gG3X9juOL5Yf1`|tnQAEjKr@sN-)xIk(IXL{c!AFA)sZu0sjsw1SqM7HKjsuBj?
z<ZcY9O;eA|bh}AI9Uo6hLrX;&rnSLM6VH`qNQf!Yj^h<HWBNU<JH?TwZ_CGqC*h>g
zA`SlsVX>&}GAvZ0m?QF-QbPb$Ds!G?7%Vr8a@K-x6fRHZ>JW&6jj5+sSvGJ8@AQgT
z<-tqTKvP$sowW9V1h!D`$lf{NH#Y|2j?hahVHg`y2S>!t06o75OvRL8?EB+S8GZ*d
ziln2-eo1sL<;<ml^HTyR?h(B1PsfZTlkQfcz@Ibrm87_S10klEyI+iGl#XWFDo5%!
zT-xP!_2QY8)kG~{uPgzLO3SO|9uwNG;`@z3Pc2-ZVlsqo`C5)T9wbhd@_%HDJD37n
zBn}@H4ZQs5!egM5-0Z26-`4?R)a>g5E@&p!=-Lsg($31_8yZhHZ>+w(Jk8kbg|l;m
z#eznqT&M<rVWjwI2J}o5DeV+oZt*56N+VtnMOR<*(uEd_4m;R*30=QsoAkI7WV|xo
zYF#1MFgNW&xuXhYkR_vx##}YGrX7Y+@v3z2ng|95v@@qjUH5eCjk^BnEO|2|4vJ{<
z`BfuKi9h1g7^W*0fD!*ge5>aHdQ?SpnQ7OEZ!wZW77z=htIqrdhv;$LFyVyRG>^)y
zc~r*I*rIqObpFw4Og<_YZ!wc+4!uTvbw<ITP_VibOCfu96pKw%?n#Tt*_5{#cc?fW
zR`b!rYs6Ot3cp5tg^EWbuMyu*lui8E@hVAp%TIQ%68!}oT`3q|J4f7jW5=6rFK4PF
z@u4NkNSS_h23S`9*_Jmjs15#fM#TlEYQNbW`@Em8d9my5`bLDbey)?DdHhvs=5*y-
zWXZiy>Y&_&#FPQS)i}|YU^~=+I4(c6+^iQD+Tu3ooUHjXE6VXcdz^!oJUiimQIbvQ
zxJ<^{^m|<$%DL~1LT_x=E&LubKNxX&$(+u>`#U|2(n3lj`4RK{<7N5|p?mSjWB!$L
z9+XY5x7zJY-68x(lAC(GXB%CQ-f^nS=(CV+nv&<F-n|BUtIfxAsW{pv;0liafxQc?
zn5g7QZfxXNGc<6#h!f5BtB~dS%HfU{nmY=C#1P}!1b(<s^=y6aVnDLl5I_tzC97vp
z(#rOzDN^y?BlUaj_M{Yauht@Iby(CR-?K0URnZ1=ps=c&>h>qy|E}_>_eB{LQK75%
zq?Tjf!}Ol|S=&DU>Qp{?U7vZeobpcTv%N0nZ*~&^*8kr5Q<uYOJVs@`91{k0R{wj=
zqV)Yo^d7K*WC8z6^jd{wLw8-2r@yC!|EaOK+JK>ezU3GzO(GC~hAP7sV`VM+Pg7TV
z=%YRc>f*UbIE&PY6qx7nu54RoXPPBpsUdH{4&q8@9h38Ly?b%fz{)ZlxIcnJx?lz1
zxGBw=K7sv^0b-&bPBQUnOyIlih={Iu$HNo>WZq<(j6VQoyNPpJ@fHCUHQxd1iO;kr
zozLF>P}@69<uE&DgP;UE`D`cy#4b!YX3tS_UWZV-t7Dgg@9l3-DG14-d{_<`VF-9W
zMeP|7xgpimVTmb%7(Tu)Fu+Aax77qctVFTdp>XnMC|?;MmW*Q>M@6R&B$=^Z{wHVT
zWp(rjYmh$Hj!e0i3iP0Sfnyh9Y@zqr<Fi`R5JzvN_BoqoS(>jia`aII@X!<{DZ*@j
zjZhRQ06^LYC^EQt!dg#}nm_!trUu?5n&Ue>!W6>XIm<*f2t*JwLBA6TxS-&JSMl&o
z6vf3@pj3I`ukL%{{m5y7<mh~zgV&-H0<bKJ&6iR}wiHwsxX6uS2C6Nm8wpZXk4Lo(
zXFMy^LYyJlB0gnxVxE)6N;4I>o!0_|9#_S|3+B>D-zv%u4>Rn!EL+cP**7}xPZz&U
zgO-g_pbA4unaD)SXu}dcG+?6Tv3$MUYQ6tYqU5#`<~1dz2=s)7Ozi+#phAG6(d8w3
zd0%{s13B)TRBP*+PT_C*75aw?f<~F&M9a)N;~}Qg0D~{?bf@@&+q*7CGATnES?=bj
zpFD}u#(V{+N`9$<g$>h%sF$B}pndst{#~jyaY+?P?P+jZsdVYaI5O2n_u$qp`x3Y>
z?Se%vtUsTXTFV?N!Y;-*IZQ`iM34Y8Me=%4GxafRNS+xs;IG#}X8Zz$rbbAN_b`jr
zs;<Z#@mb@8{$zySSno85MT`Dw1w_q!D0*{rKZWfLtS*qtH$ef5l~;c8i)W=<Mq7iF
zkgZ8=p4q>_e@JH5?NakA7(nOX6w^JBtWw1Fg0JYX%=j4VNo?*j3cMXV^=p=fbEUs0
z{gB!s@k<Q@aOkE5THZf&Mc8c)u92;gaU;^9hCZGU-Lr)KnehE#x0CS#<PlB1ohu*T
zxufkfq)q$bhP#LP2uxxV;bxZbs}jSWW*@1Og1S4Qb=P0^jV8>P&U0|w`hz|S^~8Ic
z2-CEg7_x^XpOL>)lVAJDJJDEFXuGMo(@x!Csr8h#80YTmP3BnRTA`W*vEj|Jdi4@i
zY70X`GI3xDlir7Z)}X7s0X;}+28JYeB=N-m%fgqzU=F-zCeUL(8@-^>Rcmoa+W<}n
z8KkWQlczRbqZx8LlID(Rci~#6LVbJ)&4qIYZ%9{>0XJI;J@*Qq2Ny5xB}2~!m&VJb
zmL(OJ7}ATRglD%bmn;_w0@EfdwTCz147wRe8IFA(^wX(L*-%oXM2Q=_4biUBi`utE
zvW>r&Y4=?C?S5fte9FcuPY84b=H#!$cuAah`AskX$N$8|YbC(14O(#!(6s!)U0Xr{
zGbD$3+BQ#)_SGA;Hoh+dV*9A3+F96scw(m8yQULbjT0KBq`IE-hBOR7gz`2=Rt?v5
zxjOqy3Fus<tMG%HX;0ezgku79OTP3PcfHhy1h<_nRkgttP(PDHgmzVDw<X4X7}Hc-
zCwU>-e5{+|S$0kV#Q?(JFCGzAIL!@bstjB8`@7MN&5myt=1HC%)b;!<tt8gG?sg%)
zO#p1jb8`8g-@Gs@q89F7OYi-BkyiXM(ebL#_mim>bXp90*cKCH=cH~#T^kr*A4WVf
z#(_)-APPf(zgTQ4NLH%K6DxADpA5yPf$xjrjx})=W^XqF-WF-%kQi!hDMAWs62t;U
zf`RUff?#~ge5toCn%}_)@7QiApG9;O<|}g6u;1l|(6C{C8Q|cNT?o6kq}{0E8A8TR
zHsw|AyFX+R*^6Qfbl|^hxBBPa@}YVk<f=oTs(n_zwd>l(8=&66+bT3Ez<x<U_V+5e
zzPqr6h<;Z$b5$1cAz>23Rmjxv*kJ7|C1j~PFE_hJn|figAnt;Q(W3YNG@AwalD10Q
z9Q+}Y5Op4#E@3_`nPd5MP^|2DS}GY`ITo@L0BQFGa)@Hr@})k#ue!Q{8+tEc@FX|x
zh(<0o!egO_hYOqF+5V08t)-jxJ8m^&j7+~&v^Ww=wTAl|51}pMk}xUI)$4BT)fR^9
z`~|7hj)B*YNM^lD{z(DDxg(x;$?9+^@Wzt$3k}48bYe6srvG3(Xd>M0RB4*E!><Bb
ziZuov1?mW}4(ag51+-N8Rt++3^@@u{YUip=z-1oEf@lC(-QVPHh9Gpmu-|u_q{k3N
z85uTRmpXA!H#UZsRflVO$l<PTelv?kKwpZo3?@@!lob=o7Xx>0;XUX*y$4Ahr&cfM
ze!~jD%2rJc;~5BGeh<tGAB-w0?$+bHG>e>w+P8H#a53E~Nh%=wUCmoQkW4lJJF`|w
zpner@#3W5Wv2i3n5(HAg4UtvEkAn|yRDjUfkUl>8DJ@ZOYj;VEn+EPE4{@FV%jz7Y
z_RtJA8?b5_>!ORdwn#4$$rYvHBL&i%utm`#%7uy4y_b@z-K@Qt5ph?4aN#x>v-Egc
z>1ai29r+#TtR^6jh-p5=oUr!l<m!wo428nM5CBV`r&v)-r?3r{+6fyX0vOyJk2yEY
zA<cRbIzEs|zHn@KW85fcK4wr$Z$#KALr7mjE8(^`{MkiQoDaZSS#V4Xw~#5n#K-W}
z2fjM4A*?(RM*bo8w$ap@aeD6XJGK;pA;@=fTz%~AuVP~{QcVp*?7o<B^riZfmXEL9
z^mibY)tyD34MAGwkdP-sI;;~a>L2)(KOB-rIM(9(G9h)x#y%D!zh?!m_{0Ez=|XrX
z4GM7cvWB18#vhCFP&i@FSjJ{W##pbz292<~VZ~+FPLs^Ik5}It%@W58k5s#lr#RVZ
zdS)ScPp}VM0c4?|It47lFy=KL!w^b#I)WkP!amE-^fis6$;F6&oldKaA~_g1OQaSk
zpMI7xEt6G6j|Y(CUN2~Rikn#G@<ED0FGU+~(S3~qIbr9XVj6_Yzt`$|M!qvUi~`$W
zY^CBR=&%SI45Bhyh<`@pQ=;}Ebhs)}gV`dTz^uA%e(NizK#-XbMJN3*26j+L_i5I5
z#e!_poIZ7&|Kap9^(O~UpxMn&swWvR0;Zuo`N0%GQ`_ReM^7P$X|fTcV~M4&jN|QZ
zVQ|9I3SnvC!1@yNkvVg#6N@vT<=p|;R?{c*51;I>eqtQNXElu?SV%vrm{{lpS!}78
z>$6wK$(B3}H`6OL3)OC>Z8v9_gTim(yt3|S%nCR{KL^+&?bkmQ0xY=5Q~W8cr0C|{
zZ9Z9L8M=nPkyE|1Wk@+(1*O1Spw;L6ZsypETcX8rK@VqjRp)u`TW5XHEFpi9MVyuh
z($e9w34kL0(Y+VSo%5+H<>6<iAGWC-zir<+tpuH^YGz3&pN$*kZ_>J5!vg&CBs<b3
zYR(NqYJ*+67n#S3@oF4rD9T0PF%R!zKN2LkEEikZVcaK?N=muNqB4*T!(CJUOy`KQ
zAkKogm{jvBVKVc9g0yWBU{4)ypONj>LY~`|0m!dJ#x)(+jaw3yV&X;vk(F^!schO|
zS@1oZsd0;{_B>iNfFX9$CNIMA{bFBFZE7jK4AJz7KhuW~ITKm&otEagOkY$LfrIF!
zgax}rcIeVqI_kNvPl0e{Ci$t8%xR;}z^t!)QkZ;UESK|V3<^s{#8BbORnqJvioS|c
zFAs7#d<_RI8#&1S9-RtuxRf2yMoo*T13zgm{Rr&&r5blpm=@8yR2->H{d@VuZlv%b
z`RUECJ@yV~mJ`>q0C2Vnc~;E9x*f&5W14a^)dwM+r||Uwg(K~6F&bZgL!Ezz!=Fcq
zysMkn_8@MkIu-J3og*AbqwkTu1d(4kObu!a5-0=%OE5kNgQ53Y8D6F~)pj!6y-;*#
z#bGyHZJebCP{Bs??r$zH*F}*xE)M9${z~fet@q;fW5shW=PQZ-I+agugJ6|{-M812
zx2PZrqdo*OdVZ>d9h@F9I)w#%vhDKN9CPw(O?3mO79FYZGV(+OKoYu^y(v$XOCp;r
zgpwPV6rdnUb-k_NrsQx(-v%RLOj%-|dNUZJK}l*F4UwnRFkEI;cc3Cct(!Wnd-JZR
zZfZh3?uVqh8PY~bO_0b;0^kSt;gxQNi>sQH?%H??*MHYPqwc+3br0SE4zE6V3n9;R
ze>WBXrfQ?BEItQ3=X1L8=!)bAn&AP`59=@Yz<#10D)k`1eZw#K!Cw4ENOE*X=7T7O
zZ<H8XmHHn)FL2b80J1p@oyVJSflZv;W`xdWq}3)m`A5`7<_rH#Hz^FI0&pj8)AKQg
ziV1sr7US}EGlgU;m0>GQz%$i%GhJsZ(`qZreJeY7D<^s@TWu@%_123wTls@q1)sMH
zH#~3WZoMSgE@Id&7T7M4+b(5z`$}iK+<p6X@ODM?b|s}(dG>boo9&vx?b^@Vb*HA)
z?gKCYFi?($ta9B-#Cx%3O5X`USvkG476pb!q7K~jHZd(aIC6Zye&vof!TalNHzM!O
zLgNnarnh!3=G{Mc{1wBFqms9tf{*vYPB3Pt{d4+|z;1VN%t*HPFvsrmIB#U`&f7Sj
z`uZPJpUK|r0os;Xy*xnz9uFSmVuX!xp%NGhz3Xyo7e6Nq1#!sH6@%0R#(PHgm%i?%
zF<8rvTq%OM3SlXwup%{)U?h;bl7Y1pvQBx!wc9s#V(;v|kCoP56wx<)W)HY779rp(
z0pB->joFt=Unv66C;%tbAT;MLTd((?cs&9#lU~;Q3eWvq=AhYCOWFFjPmFl<`}KZe
z(<5Ct8tGvQpaM41MZh=_B%1}~`)oU(6A+T*6kJ#eF8sIGXnh3$lJSt2fTs9{rib~i
zP{Qd1@#j}B_uCW>kq?qs@Ax@a3U37aZoY{`*wnJi=Tjpk539*(uFz~$l*`fR%@_Ie
zr}f<Ssq`K|>Qt>edu&55!AJ~k#eG2~d_<l_<ngkkiJZ3Vk0@I)y?QqYi1Yi=9%k|-
zPP`#67;`iuwEvys(Z2~WUox8L8t`Z{K-C(8x?)uxBGINIdxj1$I%V@7O}xp3r9=Uv
zx>=Hf-sh+XYI3Ig-yoqo_*Fm?ukuA|CI6VQ^4Oq(V%{^-gfmF$Dj*r*@}2fX@=L;J
z39KLyEsN~w!h^&naSw}v9#rB)hjHaLxX&9WUDQX)TuDxMPDw0+42A+lQcs<)a(tdY
z9KSLVR=HcP7!q^SBSQW_^s{%K%aDWHm(y20L1t||Lb^B)-|j)7D0B3FpA$5w1Da#P
zm?C$?^n35AKS{@S)C2?A{CSX38wAH_;%9PRpdTIkt<6g=^e{PE^_xV@qw}X9l^WlM
zK5&m+$;8FxdV>pb@l>SRwD4z~@v+a(eOP}_RL49)r-bKJ4M@as`Tj0w2uPCeOF2(X
zL_!B^DhfkLO1{BwzJs4tb>w0YNm7q}_<mPPK2BDks2X}aGKX0*md<J_EgBxlwH&n9
zI18tK96s|nU^`5R*1JI!CuSVa<w?4um$Vy7e&*3^6sF8_7XtO9+H@l8{+2xGM5=W4
zoV6ntbVy8=SR;FvO4SShia{qyqmUz9PrFQ7Tm>j#&o5tyB&{+bm4=Yhv21ZMuV&$?
zeU(qyq^b0BlNNF*mnJEe@u}ZTE`Ogt?K%qp0g)%|8J}U}U#Q~7hA5kz66ST+Cj}G6
zB@_3AgxlON)fB!DUooz5Mtuqi|3vw3wCLZj_SCOekql!(l!{?BrWC}pz;8pcYZaF_
zZlsb2=aT5xAnTB;Iiw5dr;lLc|5C!ZnBcG&m}@K>7e_+bk$xasdX)N#N00*Zg1U&T
zMN-jw-I}Am^t73k)%$mE*>iL>i$5JIjI|aF!@#t2j!&f`KWA!r=$-(iExB%9ImMor
z<j$VS2g=F%<(>HpWirW~TIiGB7WRr0o|W(XbQ0xu$dfyAY;nM(I3GK^LQ^~2Ik*|D
zVj{v<`6brsrmVPTKvJR68h=wT^4IFG^pfmD|Kw+@f%iiW(xtW1Wgty7wSMzcG-}dr
z$<K@nQ=k9WtkmnG9v>jaS8IOM|Mj)<vjRgKzlo?=PcWO<(<v8?Iv}e9*8!J=8y?1@
z(>+(D{$7+sXfjO`htX0<eL{jX{PDdv;hEm;7Cq3a2XD#`jbuKM@sbfYoVik=O(UEA
zHJ3Kdk0GewMYXk~n>G)K-IP!EVYP6W%(|^I6jk;l3N(PF+1!Tb5lTF-Vh90o7FvCu
zwyZ0aD>&So>1#f>{2-<Bcrqbvmua7{zBFI*<0D4z*WOR%@AuaH0s6chxqhX{r)0;6
z38A^4V#4_Zb~U9T%{DDw89v$f49{ofyBv@Isq!^`G09G&GjU#F=-1H@H|KZ}S?gAy
zWPaLhcjHF?$BhWw+35sj!17y10HfKN#A-@>)SS^Toa6oOAsw4!VN;GfBjxf1zSn!g
z$Uxp6Q}&y4p4Q}Chxc<0qpKd~LRd)4UeA#67&d+p1qTi%l7ctnAPK?ORW;7yZxzy{
zBomoFs{EVRj8D*j2QfvN1af@`X!+v!lJmr9*`Ln{&rcgj_w>EQy}W{uOgljsXmRSn
z{XDP)Bg!!2WFJg>v~2dVYm(do9bkw>aOrxREXo8J1HXEDfT1=PvsgjWbx%g6OQfO+
z;&e-EY>1RHA}Gb+lDU#4=PjVJ$f6^)4+2M_KLtmoV@W`|FESx&Tng9Ae6dX8cr6(n
z@gA9DmIbbir?se>on_PW8$!_ICJt^U>tulk7Xan~q(#!BuM2%EzUP3SmV6>j2y+#!
z7vEIsFVy|s@uQ-c2c1SXfxFjN*CF99!T<PI7_zeD&CV`}a>?ax)0mtnq~YyrfRB_A
z9=}g2M#O563hKpUNLn0DL2&HceV}f3_Y+k6QFg+Qp6x5S-Fnt5FJ%k?CY3LxFL}Hz
z*tfsH{Ig}qCg0PO#@t7G<j0HJ$X5lYDv>q#(Z|wie0rq7a+U45eFa!<sYdBgJ9)r6
zQAT(42kFJ$o4t?9&?jVfzxnG8AI2N(z43HAI1bZziV}@x4*n7O4iHlz*(F*g25HgV
z6f>B2Wt9+b)j#MNERIX}3tsT%Y(~GQ`f_nP48Dxf!lX3YNp_yA<u|V-3DtY8+jxI{
zGracf1OX1ra5@8oQWdqufc5r@6PZE#5HdcxDBLSCJhG2eD73o-W5Ir>pOh<e@&nKG
zVlQft^}Tcwe3sKm_4E$Y)p?2SEv23t>kl0N{QPkhxBu^Ce#Wuq?;S7g$X!3G1Zp}a
z1JOjy0%T`JBN$EoIH_G5ssb)o^r3qGedZf&tRPH2d;(e;n^Ayw<`Y^1(S|Ef$rhnO
z*(+|)*(XzE9Pp~$`(u$o8rl?byb1Cxc(h211{n$v1-ir|OA;s{k=OD9B9OD|aj#1x
z=shgbDc*v-*UmRBLGT#JVKvM|a~{$sh@wP@r8=J_d&KZbOvPz1tsrmfW!;Cb-*Yo@
zot_)+vSf0l@=P0G%OGMn-uh|shpm#aVyW&1?t?WeM<^?bQ#{*wLo^^fG`k9{DxK5}
zH+R=Cn@qzRe(4EOY)JBTl%N4+Tx<vH6^6HNMn|>Jl)2+c#4#I2=jpJCP;d<&&2kYi
z5!!s+=gq^_YI$3>P)2hQ@>)vzGnFAFCJyXJNv3vvuTv#JjW)mDe#|s_Fif3Nb;-k=
zIInFfGNM|d1t1$U(H1#<pZAqjAe4rg&6wLXF65GQGuosdNbjEUq(6mmjM!z`)c5i<
zQQ+2%-}C{g#253IJn~1ebvo?<F}+9!DY=WtJLC6(4^aTP$pKcZX%mvjhC*Oy1qAVW
z@rNxu!nRx^tW6ehNp_TB2AA1cfoq;}kgy??$26X#rBd~;uzAYp3{56ilu+vSK$-pr
zZYMu>nEkp@zyj@y!DgvRnlgqfUZI(vs-G%c9<M2v9^yo<(cGp3BFq!n=lR&F;VF&!
zJ<9`em--d=Jd@rdv_FUrO@N9FZ_*y52`N3qh^x}oDrBHQ<-|zx7OcjDG?R2OhCMox
zhb1ga)Z-7=@3)32ezf{Y#Ko22!6Ks%iU&R7<N^VD!3sdnu5<c#0zkZ<p$2KXTgA6&
z;r8bgdt`|TOUb#G@J4YP7PU-UML4oqzgquc&=ANgu*C8)TV2qBkR2cLjO(LzpI?gb
z?QP!@zKU@5;B~3ReT^f;a=6Ch_eh)UsL#!@C4&aTf8ym8`t`!>BVY6(7Iu{0zeU(j
zang;)hvA0Wemq=7yvANpiP;IZE`O&~Xw72S%pRk<2s()OG$2`GIK@AA{^_-baVCj)
z(51(PO;zx5dj5v7XffmPc@%#6L1TNLUZrnxuPYx{&gV|fiLzKrlndg<44ypl=c&s3
zb-`3jTkqmaQYJ+v%fhOW#e7WCy(eu4s}H)t3O8=p6m4u$I*mWo+jU`OC6QhGts_(O
zOP1f~hb*nqRD{|LjDv!bMy0ddjHF&1eHeMEv;y`&UC~;)bnj|~Scq?cZCmB9g+zH&
z&e5Wv+sHcZxswQR5&rpYJknAc&ZV5`Crw!dYH3`lYY-@4Qxk<S{bn&*o)V*xW>2Ia
zo<vLsgEWRwKisb5r|t%JHn2JDKqz9lpp;`D9_-FEPJPY3Pl|6PosE2WbH(q=X3?@;
z1~Fa7t?RR6@tNZ8&)sYaMGX-;`3~?6M=R#pMH50P|7&V#p{G2p=Y|@s8TkFMwvBHV
zh|ssx<_CT`$}3B6PI7NY;sT$WMp6IRA1rM4-w#w;T929nNYp24Zib4Ja4J4cDm{>p
zDQLcKkQNQ3yno<!DLT9-M`MY{RIa&#%y0Nbaj8T;;aypSE9s6Fe+ejk4_X&VQKZ9&
z@9J2%{J5kvwS(aUugJSUYk$su=d2doki(v)-7vh6v7FM*$wF()iGdYKoD^I1u=g_5
z<<Q0lPj#+cjj?}qXlUn;MA{{OV15xQaNqB@tA~T;A}{AjJbUeAipz0?Jlf0h)$fGf
z<%;|td{+=ogQ=H)c3$Fx22?FDFP|OH7D(QHq~-X8NA@j~N9719MA}>N)7?UUbIa@T
zFJ{;Kie6*IQHnAZ*YZu;lt$g{L%?jfP}waNpziyv?<QE#E$)9Af9RNVVMPyFLz{X5
zXGl7{)U~D++Xq@K1+bXVK5q117Bq3$;L%vI8PL=X4Gdps3un)PaHGhBG0%&S=;=MM
z<VA2>c?ipSfF1xN#)W}wGNK!wCpq!>!u%eV^NM1qFJmCbg4o}J5H1faFB4h-?jMzg
z6Ft8IKt1gFV<M8!7=#dfCkLV;Cp5>1TZ*yb!DCZ`o+%1FSIlvCw21_VMlMDK>7V0*
zk<ntIfsP)0>~IrDbrbmq`hW0#Ktb4;fPIuYE-xoaV>0q|io{bPTK^!1)FU_q`7HT?
zre1~fUu1-m8PvD(p?`=&kTsK9C{`#IgBgwl3PtOkha@Qg(&vK1j!8fBLIUSlg7rv<
zg3s=6DA#XZhqIm!5O_`|LGzZNSw>Y39En`0(=i^@p#bU1g|z57d=Fu2uT03Mi>W+U
zd_R|XOCwQ5JKRk}hxT0jpKffvN9?#0gZ!|YhPsUjCdmz*Fm02#&6mK8BjM+|qI01M
zUm!T(4iMEmAU6iH87Nc$uc$W_Bd@CqIVF{%vG}ve9v~08Aqe}TOG2q1kbEEHG7Y<U
zU}A9oa55UA&kYwxg@tAE!i051`o%d>5pGgx3Rs5=JvP%&PXE;O2s%5lyr6&_MnOF)
zs;qc%roi-1@D)amuR-Y=C=eHtmKmC+kIX2L&2UR~DL+hySTnK3K{!048S_lqkm+Lb
znZJc#JYl-YQ9iBNy!u;FKDt>2sOaI@j9wv_XGezjaIk?Vxuf&ls$n2(7Vu;q;2{O1
zR!Fywagk%r%6Wr8BSJW<vbIkl|0-h>hNFqVOb>3pz`JQ7H_#f+S8*%q89Z(QCYW3+
z=6FYsywJcLbWToAZ%+92KdUP9D%XUgl_Xi8<Z+*y7|ru*D~m*`auWio9hRw|nm<d(
z*LTVXc=|a?7o3|G{24%0bre`l7EE>I2L~i;n7ml5OmoBMYI$a|5MTHs^~gi5zBBVK
zY8HNoE5tLCdq_ds@JvU!6ihQ_&wE9lYf_YgAI%=v`;<n-yZL)dWsjcbd4L{yHZqVQ
z<u5x@D5r|#ES|unDA@4i92i}R*sQ;8g{n+hZA3;mnj^5p2s-Lxf(Mb!--eppqZ1)x
zAdPYCqlPPSd6kqH6G}9RC5^I-(zm%Z4xJX#LF~3#Obb`qOm|DaXB7eYqx2^Mw(iuD
z#3Frk>BrL&W!ntzl~RR~;+(;Z+m)u=EGF|!uM8f0T6Ov#oRUzJy4>@4W%@W9^8>2U
zne8-_&4hrekCyu*D$Kn?DFvk|HX;1(uuz-m-Kg>yU`bYcxviyEoR?F6SYp4fVjUsa
zyn_5$Z-wFu-KJ{*X|&S48sc=3HppM`SR_7gyMm<A2RB-n?gcI1Fx6$L+L-tKb2n`E
zP1v>QmHd0Y@njiwJLo#vEp#0iwZ5Z?tku6!t6EtNNv~~gtd$q6oeTi*;n^#z3-5lf
zBw1&CXX_kr2xNV1T)&XOAYYg0^|JC;aQF+`UvXCy)m$JQC!qBdiQpuN83SmX1}#cU
zFq;7RiUe+&GX0;37WM>Ric-6d$z2;#<<4_MEK<Fu8?J6Qo_RI;wSXv;fg(;m8eDi|
zuBUgTnq)&j;L4h83&5BwkP5@+r&*>}ReaZtkp&GP!%%5!75|@+_Gxbe6B&L2DRf>0
z#HN$+bJy3GiHnZmC2BxqUJd8f4K`BNqNzYCF3~B{CZn+?6VcYQ7Yz*f2KJa%+b$Kh
z6#x|m_>3t0%GFUmzuEqAbW*=erVCK51|&+LcDv9KCx8T{EV=Q9{NC)2f0~YY-dK9S
zx!cw1HTK50hUBJb+YeM5v&a=pd9nG{P8nLTg?6QFy{X-ewdJ2uOI~1;ST87Bwusib
zy_gW|sMn$3-7!Vo!G7>YdMDdksw=>|+Htc*Jion%v4LGVvzCQg+uKpkyX#>>m+KVh
z!Jl@Gq7F5(7XJs$Ej7&oO&wnhAfr!Os7%bD33!AkXC`Td10nzMSlc<a-SiLr_Y8Xa
zX5=$dh*)Fys%WQ$LFepP&*#OCBIdS*d$3YZzFx9735SS*8qg3cVMFij`q(XQWjLpP
z?{jZFO(Nuc643VhK3U>ByGXB>z;@gdP~;yL0h+$=pL#Jwsp|y)N8N5wmG^`BeTVT>
zJYw<+;{x6o!uzqxyB1eH1qo0HYkNeOp*K>GR|*p>UHv-y+6nMpwiZI2h&QbzW$R_6
zT&e#;L@-fPa!cKW5}4i7lux8@h<CeyPy7=a0sO0M2}5^%wh@6gAg@ct;HAC*dS<T(
zabXK4Y`>Z@*RVH$bp-%oYXofhf#6&u)_2PW2uW54?1Dsqm=yI<JmrWh_2b0r4cx78
zsfT)i;qdpv$%eLWVwCO$LG5INf+qLM?cf!c!{?@htc#;m2cr$C8r?b+Sx-m!tlL!F
zm`M)U`41$D4In}TKu)x3jOnlmei(=yokfqSa)avGkljlxorv*V@(~$t*o)nu<(R>c
zB|S|~=$ECdksp`|#{%lO0)1Kobi}2>rf59$;6u}=51K_?!J}k<F1xs8KS)jvw_Y+j
zjSIbGe)(#NrD<~PBzvsOhwQ#HXH(I~E#$cE{i%Z8Nq{tI8{Q8*FMoa+1$G+W#Eiew
z8Y>$BaAL<{+I&<GKhz|SvGt7DByxft6823eVSn$%bWh&FbYm9=2Zi-G_{S2JruWJp
zuxW(RA(^%n`@Rj0PmD7v@_brJRo;&xMH_+=+CEtnPF`h`xfUvW6ms9P|DbL-%Pvj^
zLx1|{b4?r!N&qI;SO)q^KO25!;rn@w#i@$p0ruS#3R5n8tt8@B$w_Fa{h-^smbu*=
zSfbI@Fk2K;E<1H{6o8s_{=pC+^&yn};8}Qv$s>%8ZJ=>V)tpHYAgK;g(=!);zR<|D
zU`VoPO`I>Q72x1{Kv^`OM_6c~SgZ?OeD#5>Om)8E!@^)8H-UW~hF%)}>pk<6yRe6Z
z)MR1y?|f_F(xMUM^YtP9;p=SO;znicoV|11UnEf+HZ8v3U$k8Rb9udPf!=EAwCD3_
zIH>1CYNm;Eijm^H{kL)}uZY&gZx0LpeK3SQvtj`NsVRYnNu(D&l$K6&4D~Cld&*CS
zS2!tGxt2+OAy@f*R|SnpNRUN3QLEy6tCEy!(h_SojMr}ZuE{5_DNeYF>^*F#S-bV`
z3Zn87qE`P6P6X*Df2X8eW2XGBw6|hJxlaFjj2(}xVqdrRUG@Bb^KN7Gy0gTFtMSHt
z-;D>!8=fz@Z70?pC^x(u)_j)N9hWE34&;WuKe%54F@--&d;#oe(CGAa?N|(_6sW5b
zNN2p6FtM4mx0yn@l_s$soxB+@v32?vkm;M5{cKAE^P`Y*yI5ko)Ofqxce^5ayQ+S>
zW@4M+-&P&vPNT$5v++)=?@n9tPDlNY^}p?|y`6WIyS);-?~Qi{e0PVQt@b4Ej!o=-
z*xUU``EyF*=ghOUQRAOql7G(E|6H8-`E~DSx$jQ}XG^Or;y2&DAIW=L^;dg46MJ(n
zS5}W?d5Az;Kfse#YtOWAKkN7ZOzi*N+rOeb2!FXEo(kdufLz~niRSDBKORu*A5c*p
zQcE6sOC3yuDVepCX&Vk%KOVC0A970mq`y;JmwCwb=$By1FX4t?qF0+dx46h{eu+sQ
z-MDjf^U;y~yA|*^Gg36QCi9U3)v>zdvF4p)!CMD)#S^z2j}1N^8|@$8dG`~{*+9hw
zWSIn=C@PUro!t9)V!wal_-I?=IZ8BHz?SOtLCUFT!>RYT?=E*Tqwb#iNS+1UISYDp
z#<h1U{yzTp^Rw{%v*%Rj!TYDAN~3<9=P@bgaSi8&w+?!wfecbiqL@SVwyX23N56AY
zezQJ5-gHt;9y-gTx+s>sDE;<x#h8MI5_s-(TK4gxZvUdeap(0bm|pVt8md2SDStW|
z{v=EM>DvGEj_R`a<DZa|`o2e(Ln)UdjvGA<mml^oKT`dzH@<XW`}^t9-!CbDnfos1
zKmPr?|CjLY?>EVRYj^$?asFFR`M1^Z4|nTtjOr#80CZbojltyGv7<A)RG{G?fDM3e
zt^9^U11QuJd#Up*B=W|RUssJ|N<MAOJT7pDWq=vk7*f(0H0kocy7#!9v2xr|LnYwv
z*8BYUZS28`^i0x^9j^40luE!xl)ZP3o1!+`H)yOvZz6@8H-FK}S_H}pf4K5WmEA3h
zY^CSE=>_WdCojJK47O^!9X)u)m`hUSR2r$J3CwnmfPCksDT62)t_}ExjIRuo=;tqr
z^Fz?9<z?@`-`6-sX_fKW%N7_!LQT{X)W%k$NT19qkE)9PuHD`FLA8?W^`!~0>ni2U
zfYlXBRal7|0n;?-Q1i|16)FiJL(*=<7=NeE_(9BCfh81nWf!0($eU~DZ}7upQ|D62
z5E004nQ$ZZ>*l4Gw|J!k2DOBy_;k{edw&Q1Fe?g>V@Q%SBER$M-hg4^Y9k_|VWgI_
z?!+Y$*1>_%;V%msiKODm#cdswplGT2;0XssN5j|-4y|q?6SZ@L(^YS>g3Xi$Bz7#n
z9Vwtm35}(bl;PtJS&fKi$ZQg8S?xghnDAH?)cqY4D*#KT1QOYFPt##?lI!j`tK>ue
z;XE-eER#Rif@P+t^V@#K<4rIQyuG}@lDmazdh|#}8nQ$wWa}edv^ubV=Svp(ofl=@
z^<QD(0jsJ-xA=a|47?Q}r31@O=^3m7=&az_C^`;SC+wiZ0jizRWR4igsNgiI4(FFO
z(u5k&PHK?v%%o~kz1Ksx(9)7g_aS1iDa|ux_l)RSbo-6io^HpjLuV~q#S=&!+YiKl
zn%J3XBROlO<Bn~@u+Zq*b5SV)TRmquja8^K7|ecyign~l;Lkdo-V9%cp*2C4Mnw=5
zoT4&Wx?TeqaAJTc#SU~`yi%zYT_)7w9NeY7Qt3<X|9uTSl^AOdG2`0=3l3wWwagi{
zneX$=@XA3y87Kp*=*Ttdko2ESAq#^1g0OR^5q)~alUVSF47#*)my@7@KeYt&j|Ya~
z0T{3a7dL`VgG=x>pRu00IYIXR=er)XV>j+amz4*{c{l(3WrH@d3<glQhi4<~qEt&h
z-U3s+|0>yOk7IgMxziGFv{QcOAT@a3j2z;C55h#$*jqV<rsWcm5L=;M$%j3)ay|Mn
z&C*sTvv%gW6n42tpm=^b>Me-8{Qv{L9*#0<U%g9nT9$A?$&hM<aS-n3-Z$p)=#1vr
zfI|Y;L6HpZ#wA-7v@==2+mP)h%&U_yY;8Z=CJPp3L2_}wv|NC}qpHhz%nM`vFR2Kc
zU0<@zJFbMezZ0FA|1I~68qxdN)+eO|5DU7&fbfy)0tkOQ{J5r)*Yin5cSda2{dc8+
zrJmle@F%+^t}i<<{p>ac>SJ*dPXaZb9d(e7Y(XzlYjcR*`?-097YD9j!56_F6H2;2
zP}hbQMZMdwDlsUB!j@-yg0xvZKFEKeKmL(s?DDF<>)Y20KJw6uP37kwC+8d_RT<tr
zOg5owd^Z@pvI0zhWpnpDE%jB#X}J>anZZ^2tJ`w}YQT;Z4YEZ?AnY3M<pw^;=hEF@
zV7x^llIR@7O89EQ*mL$*0C(>CVWvzD0}wF8S}Lpn#TDKxw{y9cX=;#FmjfX6a5wI*
z{^8Fp>eLo1*EhXhGBbP}xfmi&d-cn&7p+A=3(cp-EqxkFlQ_n9E`D9Z5}H=Lw!|Az
zgVNq~NH)BmF%UreV0<jMUI-MZh)NXCC8){~nW)H3lbu2_BswSo3J;V4ISNRVkPCsN
z65}O3fTk_E{j^1Q5d0okninJ_3KIIsAcPAK8M7)0;RjUIiHTOCYFIJYD?@XakLgwi
zpQ!_7+#n4fx4fw?WN9kXS?D_dk{SvUhkDWLB~D*Q*hVPnj?}u;U1@IT>06Md#pW03
zifSU*$?Uzd4Q$KB{ql6B*ksZY=pq?8;~-9N!M6)A8zQXp2CDcesILl$zAjc<qw?@N
z^MavIbJ13(;L4whTu<M7Z=~{CQaoaIgPX4PBjd5Trk=-!@KKz}<Erc44kwpm1}+_j
z)I)f;1*q>eV$_<!Td~ot4?-0FSjJ70qDAdVgM2fj=1WW=Z>-`3Dw?cXMBMySM6{q2
zG0C(YEwP*X5T{fG;v<K>(zoHJ(ZkfGE|Z{)EgdaFc(nNpPvDl?IQM1z?6OBI*1&c{
z`^JkKLOd(?WvVsIUtLvO@jIarw4c5!m5+eDULMCu#;(S>$3r6ZTc24GYDhVCzSPxQ
zBDjSfFtoRz(k9WA!u`dRy1nm5=!nsV?b*}}XdJzmgwOZ$Yk9Lr+X+7wq|8f<Y+q=O
zQG<bm(ZG9VHFrMymbBGa7Q*dPafs`Sgo0V0huB398)(x|zmf#bhQCgF0$e}z?SV+8
zuna9+dO@;-;Eg%l4-s|n>rayiV?ZHwEYX`H^}DMv@e5FhD5-?ld&I5Jv#Fw2wfJ){
zMERyIX<o2j|4j*y&EqCO4yJ1v+R#dRcVXs5b^Fl616Kwjz*c;v=df^}y8lnXub0+{
zYa?~EH34*G`yap_N(qupwI?~?b?<J$%odDs0S(#-^g2?}jNQ(_uyZqRHO$iw2CM$L
z3Q(gBjqoJQH@dyH2&wEtut&jHAk$o5C4a*sWreTX4)R@}xD3|<cN(Dnxv?;X5>iS$
zRiRMc2%C<-`YXd_p;84zC`V(-vg{8f(F4FO0VyDJDzNWz-->CbGE^qfZk@6Sugm3G
zo>XwxHR$~P=K4@xqqq1U+q;5!9Du%QWdS-oqja6aqbG;WKm4n>q!=P<=^^6lojjS3
zU1G)gNsj6~E=>?l4~xk3&>o~7qxV9Uf@!0BAop)!<|m$Mwl32Dq&H+maHa-M4685N
zlU)ri5_S4q6pJ?zoWOBSU&ab+qElg>av84N^KWLI%?CMP?SSv+HUo?g|86Nrn!Jh(
zIfJ8OQwNF_?z$_ol71x7G-db-)1(ui&(|*2)Ym4Ec4wh<*bi5T(&uOu4%@48I_Y>3
z#cs!Y04wUB8}ZfIU@kO-ss)Dl1m7o9x>*n@F9p%JzG!J5Y84aO)hcSu2v+kIaBU<I
z<@drEo*9!Bb2_i>=s39|Z?Lu9EZ$KURGORrbQqKs{&W0k-P|3Ep^|sRP4n5^B=co_
zj7CFzT!7-F@5|G$LDgM-)-LxC^^k{rK>(AGUtf<Lpj98$5terjzqRF@564&?UBQ-q
zf39it&skhD#&=57`4*^+j1_*&yjsFp>{ouKA{<~Trm6J_xE{9P`QY4R6<N`vrzsZN
zZVfeyI91Hh1CDc*iZ9Pu6s*Eo-`IX*jhpH66NVbLL#zsW>}E)JJ8l(z|9m?PvB7uO
zTackT^bW`?neY$T{v5&k>bLbuO8=;!*k9tqzYC9=@J8qUBvze5>l{v7nZ|sZj{v(=
zSGL8PCPnm5DK{x4^;ACoT!=bcl>ov3>&cJ4EjQ@b0&2NTK!ST?slwzU1`u0-QtfbB
z3DH$#VpVU0QAT2OW0hPB1GNM=`AU+SkOM6MQ1?MF$0%sC7kW`oit%E)8g>(LNPs)*
zBlMio_eS5?3E?eXCwFc@60cpYzO=z>R03QkpQTL7H2#>N>y*mC-3O$9YUtV<!1z(p
z!Bme`N_Z9u{^fqhWHsqIp4^BZ9#JMuGIcmXg~_f;o|rUkB7SN@){%@vsS(Y6_Ll6R
z%fsjkI%#UCG{OvnEc{4q1g8lgq3A_XZlS}a4i$8yg(UdN^HHP~4Tfbk7`mv$&{S9+
z0UG@CcRCl%UssF%>r;J`aRm#bkftl#g>;s&c<Dm_Ih`M@T=aR7Stgae@ry8S{2fn?
z@NGmm_#wKb|Fl0sEK4<fe!zL*QAs?g+{H7bBJC}RE6H2*S8QaBzwQ_-5TF)Lw8zva
zn<CCT(!UN&nRZ}6kUy9Fc0E&*(J3`|^L7bd`T;rxQ7E-On@X{W=b@6}P9cJgWmNTu
zeCCua*g+~!KWYQ&y6jZQi&W^#R7m4Th^a>=VAGjAom1MZQ>UoCdlJD`3fUD!NJX^r
zp}=eth5!oK3UL+V{E3O5MQ4pZUL?-F{<p`V(Hjl0MFfOyeJPhf+fn_yQjjFe3Gu}p
zVMQRW`b(%*B1neu(R<P;QRW%~d-<5XtyncdUo*It<0tj1fGKoh+8|hbubn2YyIdSh
z!L~mw9RZQa(UNIHA}%VaXLP}!=3Fa3Nx>=7t5siYCu9(}PF3Bj|J@8DaRisiI1*^S
z(VNBwya9z|$X4Jb^D$DU1S!=dgjKUbPwdg`kc}L_cnF1@s1SCRo9UIFthcB<jF9~_
zgQc1_=@`be0+hTdu4fk|8Ey<^0I1eDgO+y16lQ)D7_%D<sKN+0;xaO0*DP=W3eps8
z*nLTRmxuKk)tCm$_9LmE0ptZycT)*W!|H+>gt7BSf}lx;-8yx1xJC$%7;w+|p#PqT
zg$T2oCNrI|lx&v@QDx=^`;w2?y&^I18id5LI`8pO3$Kbb#f`Lp8(BqaKjOqb$Ozs{
z`bJYjI+vu$Tc!0NFl0A{?4L`j6+q}ps)phD5lMxAOyDFV2?}aaz9d%(VFDPww=jq<
z6_gi*G6V*YP>GZ2iC>8~7xc?LS%aDkk&2++<PwaZN4J*{?&#c>tUxn%5O2|=24tN;
zHVIG;9iXgJstFh4@GQxf7)XJa0$<Y|PZ2#cqQQGQ!v=2SeX8gtqS?{3uUwY7YLJ>H
zmj!>k0z3;!PH$?-ryP_<=1?RdTH|bUKxyq{2%<;)3Pk8wsu*OMD_g4ZdRvN?T9TcZ
zaB`Uz*2;$8Bx7hb<@{vyz}z~n)n@3}_Kc2ko~{W)uk_BG-HzU>@Wi=3z{=jtHlJXZ
ze{#2HhIvKZ#xL_{%lE}(49QiShZ@vX?P`@=hN2~1(lVp<vU6XpyOp%kQd3Ob>2C%*
zm4wT!W(0}wy;7pR>j~<45;-N&5UX*+7GruFWofwS?B5udE$pWI*;s|aD8%fijb@(3
zimULJjE$9JTC*dqrqRryJF|slVjy7q=ALY;4Ku(p?Pk*373Y{^2=kb`HiJiLlm3{q
zf{n@Ts_j=YqFQx<<kjg$EWC`JfhyO%hA#*ZyF?1PCNfXbreR<)QLa4n*qjfiV{qsT
zHn28yTBX~#<4I5cui4X|+nfLN;SY&9wqvkFHsbtq>ZJ))9hi-5kd)1OmrmNhQOfoW
z1O2`$I>*eaG{L@uXn0k(M#J33{LjNow$<+sga1btf5kJUTOrXJ^0r@{I4R}BMGh5Y
ztf?f*S>9P1w8sY(?=uh6&&ZfK&SWWkrf*ruLU@FP(QbzRuw)mrKE#z#-Xm%Ps)29Y
zfd6nVu_?Yr{;V;)zg<FHvrg1-)+UDtYZ-6$o(C?@DTsfou}n7}XMK6b;Vy3OcfFDo
z-EH}P?dayBs6`Q+fIa|tC=;au0>b1~?2i2?LCR-?V9RyjntRe~{WJ(_(}aq^Mn?=7
zE91|Oq!@$E69W!^AXnS!3$g`G51e)8Fx*CW$1IHBIdKABqqhPc)XaJVfj-Td`+DE$
zH68}b7(6E<L|yHYi!oczMl&`=M@ZKxl$*H#mmf0O#j>G9Bpm>Wi-H=|MFt9}=Inz<
zy7K59dFY#9P74UI%*82B!HnALKaV$hE-nX<M6H=LFCjcxF6~wR=E4T?j|l+^17tFJ
zG!3N2r70}8Z}~8q<UR12H9sETa$&_h)OSlvL#2HS06)Z~J^&^BY@=IYaxTareU+Sy
zmCQ2Vbz%SQ>HZrtn#<Bl|6C*QaVc%C@H~HR&PQKs9vf!O@0Lm{&Y6l$<}Qh@i-#Fd
zSAjR}nc_m>ykX(Wj2D55o-TK_i)@U4v?2awSSH<9DB^lYK;_O)Ja^m?9s6yY;sotB
z1lypzt_Y(yE9em0ikk=X{G%4H&L(8H*5iJJ0WQN{0&HId4cslWLC{^qF}<MGBg((X
zOMA$izOyaHsZ_+M7yTaP;r!;+&%BZhkTp@}=C=$}(vXB5v+&N~*xsVpC}5`+=Drv}
zO>E^q*SFaq$d)MoRun8kpqATL6MGF2z*Ob2NE;S`hifYMn-sG!l}V4k)L&GpqM>3K
zpa2TG`=LN0N<XitHm8Wim}s)!!Fl19!dX<c{2{B@`X%oJQ%WabHPCs|=6@C6ME2-~
zibf@An;I5bOe>}&dHc)$-upUnK)q!t;VDaHl&#u-l5b+C&||r{wMO3jglm()Roz(A
zVmVamUh`c{2|E!eMNG7a$&m##oGhdRLu!+>+r)?s*Ou?esF0(E|F?V>{hD~;VZqw8
z_P9w`xsr;T#Pmt?x5`$>C$uh4-pnABwa>yjFb#iM@bgwRU$)!EqMG#Y;S(O$fDP)-
zVxbqs)jJJQ&zZv-l^a?Ye^)D4d&hM-&Xexuzu8)RjMeE-?=l|-R`hmeSNvAc7^&%9
zSU%9o^ze~|TXkA0`;k8}rMXvf+%+EWR`=}>{Oz9x@Sl4Ec3_e2t<4-Uo5j|%KRN<q
z>YK8p0K2Y3_Y}EHpcrt7D*yefJ(m{?Rfn*O8tmm$e~q(Tpa{nL$`jZdV5gI5J4}^T
z1~VSXW4oPpQIE45rd}IKvU{lrt}gFv=^&2vjQ%1m=%`!oes%3mc+#2XG%n~=t%$Ym
z5F0?uy1kMk&HOojUyD_TXc88umqKH|3@o$DtP&^YS`l2eLS7#gy%zi*md-n#>i_-!
zXFAI|IQBU9u`-enI%Ln2y&WTja;#FQbB;Z;lHD<rk&#fLW0Wm>C!`{jk*M_c^ZDL>
zx7+LA=RdDMp5wY6*Zs~=tV4H00v_>e$on=xc<~4wbB~THD`jFrQtzZw>?5=2NsA~C
zTNkaTiP)i7)#lat@6Tt@z+ybWg%e+5z5*X0J^Mkshg!)urvvSYb)me81iDeXzma-W
zO^e|r4u;C>-zV?>n~fKqeC=penx7hJG*cgC6zKxRqbE&@7R}x+_PLm-m&?SL%suG1
zcw=$l5gl;)>?uT|yj^?!f2{CQ;A3A+WO&rl^CH)lBAhPqLvs0t)++KRf%%fdOeiK>
zxqRM5;Orn+azRWKcJSMGpn}hmyY>!&QO>Z!xd@}>y0@!Cjc+#d?_fJGVc>V9Ad5pE
zl;^7EyPY*+c(Xk;alN>Ycdo1ott^Hi)zCd3L=TE`dZD2mjMByPPjogg@63l^X7EI8
zUYPu&;tpI(L|NWjveT+-KjZ7mCx)tS=?SzXJ&nn#yH_ZxG@k`pT4u^P*v>Zlej!Wq
zO^WI-%1#FDdp$gUKJC0=)RJ~Fis5u8YyHcJ!0PJ{8}lx&jQ>G69s{e3|D;F8N!la0
zPw$`F4{o|IkL|QWw~207u5(tYO#CKJFb&|i0OwLIE6>;e>Z9YNdevK4HIo(Ue?7<}
ze+(mARmiUbxM?vPu|QvqgC+dcmNdjD3g~_R1_%C6a{3>|U%v{VzgJh<kz`=f{r_%_
zfa7|BF{jU(KDwM0oU`1R>5qT!ePZ%@gG|{!e!Ft=iT1D2{q!>I90l*r&6@m9lugPH
z&6T_k2qLp#;L<9WR268@cM4L|nM2;vtt8jy$?t#JF-5gD27P;B?k2y#^KYJex|<_=
zx=<*SSTvW+01=BR<e{N;#GSgzUBqJEnTV8a_!cpaNcl-KN%_~vOi$Eo%kKCJ8yTP0
zeLp8(L-}+SVJsiixThE#>|Y!F{NQ|O^H1d$JXF*z74Jjhty{R;bx*7P+SJeoFV(kt
zj12}+y?@%9`iBzY-s&Swxc*(Hlcy&Tvc9|6?ieJOG`|5e=87kej;@9;tp|Z-mJSv>
zSm{Y%!zu@S^WFFAO2pYU1#Iq%n|d+}JxjWNATe5~etUm=^FVTprt^3tQuQZpqTKkA
z(v5FFrKYL`k~6dX4y9*m9b1EUz8%)6Rez>u%K872U1&ZlEMLH>*qrfpzfRQoADvr%
z5-6+^0r21}VCH2t2VAY1iRl5N>>I8Nr{o~-NLoD$_#Hgk@q|GEyZZZlB4fMODbO{G
zD#F7=)BG!=L+M4Z)+H*yGpM}~F_?8Ap|GMSIa5zJlJl%^#)p!}_b-^0UaY$%&2fGX
z4}$EAGUBtxXylQtx#v&0v5NPAiBi3qeD9gxb|t@a<ZQ=X<vsu3$)BSGpQ=04V0mX4
zh=T36i}UeMpBcP<Et^J#qxDst;76fk9aKCtp_@UnolZf+Xbn1W*>V6g2OVLci;`kB
z>_*B5&|!%0jUpn65~Vm}vPghZ7YauPJn+>6-06l%H#cPPVA4qLagO}h74$FX@wH^d
zQFts|CRZ4Ul8u}d%Da|-M<RdZ<RYG|(libV@saH}j`pIh05PY7pY>x>CD*Cuq@D_e
zw?OH1LR=D|ne2ncq&-T3N8fbckU=$LyV0=PhOdBM?N<S)Dh#<>;o62nOaa04Hz=#H
z1270k=3Vt=`^n^;n%G(KQl`G+&mVuZe@ot5Ad7}0U0#r%L{D<&SM;gL<3&NirZZ1t
zFIiV9fG~2Q#C25Q*jGW)5jw*coz?Fc1KN9dmEQD<8EXI>A3XxSTot6y!Cxe_smOFp
z33t@K(XNg^exXLL)xY*G4lUY#SG>%oEg1rrgZKSV0lq`X_6sL#D7kj8CF{qYYfsnl
z=V|}5kCNn9)J~CaTM<Q<hmBE33U6lY4?b4|yhokNnUZdBo?A+SL}>|8OwicyJI|0+
zoqy^$H<$rS#asJ#lz4u%fBVTm3#T=WC)oZwMA;i?Q%CfK4E4J#I|=KO`X`oNoMz7z
z#o@KgWBA2}yCV{F!Yv*0OTO;~4pIA=8fu>(Ix#;SNPHU+^Vmg})QxoCMXkeFOr3fq
z|9>bt{W<x9PC6Ck$vpNO@HpPQ7x+w`K!?aRlk+*{6BN7<A>aW#L$T(6WYngVK^KYD
ze^8*(0j3UspKF`#hS`kChVY<NN!93Uj|iW}<+klB4rPdLy@-E|Gyv(TWfuh{BdAST
zVE~lt%9^8w`~?w$@o`+HG)TSZDFx2JU9<ZkFwzKMj{7zXJrREfXG|aetb^-DXObi(
zqUTX!S0JCqfIu$)Zq$ceY7!G2xX(?OY>HR?-OvC(m;C@%3c0lA?ryyD93LCHp~Tj(
z0{%r4UURL`5y2+HySef3{-XlCT$jE^bROpjK&YvM91hGE;jC6A%XnwNq4sI$p9Zn$
z7&H=Y59|$wF^aUMP#x?&*dH6lNtt2s<rynnZng#&yEoy1C)@=zQURM~Q)W*4y0&R0
za5C?^f=E>vGT~VJ2@@?K^RI5ra$ALkpm4TzKrY{qVH_xccH!}y)x0@2-lCZSD2WH2
zT95H!V(P)NZ91^inHD`rHvOJ{TlS_H4Y*t9o??J=@~>=GmSqj`?_0`O(wqX`7Z!%9
zH<uv^4G0!^KS+c~L7gPTI)7(#zcplraAnofO~U3+W=n2M3y=Oy!RO^_;B?rl33+1>
zksf0Zl5kwDA(EE;qrAH?fk00%=I~fnr^+tk&G^5`<g`w3^yY3-HELN5=Mi07&0OP{
z<1ZwkrAp4)JT3dYY(_aKpJ^1l73)C1Pe^w|+hCviNF_pk2Jvw!{n0O!pri)`cX6;9
z^%MxYL%(u-t054qagi%fl%|a1WcAF2T+_5OCNp?VdR9|o3NAtd>YG$wt?jUR79y@w
zg*QI!Jx{|{YRZBvjTWk<+|B&t?DGx#0flUks<e1M0K(XYp@_32;2uGohacr&xNHGN
z>rvJ-Nz`213s4gm8YqioFCx~Gz$m68*!)L%<ScXwG^K(}`NZxd(rNyh=Yq46$6A7~
z`&k3nr0yVMQ<!OFmr^RCd!xH6U%27fz5@#1tJ%&=(be6(A&6R`&WQk3tq9C$`AZ;)
zguRwa|778!SHv$q<3bKn{5W-p&Z4<w=u_xyS*F6EPtt6Q`D7jXi+@aO=IR@x-16Y_
zwW~}{X)l{z)bl-H#R9f6UR<sEDu_(zWM!v-6FntwXA#IOrXu)A6ACA|`H978TYOFP
zwK@iSqO~Y3xya;FVMS*?bd;^@`R1T}3t84{X>=!*&<kSNPK12!SJaiZ_W~+VJZmy6
zFJdJ?F$E+kk`bQKrdXJ5;e|N!<jc`pT3PWni&RGEZjc=JgWWTs8(Z5ByClvl{gdto
z(DKdqQU5*X>+zz%#6rToNO+VvfC43up$t&V%aXgFDRpEhClL>|#aodM57;9Y*TnYc
zzu2#OgE$qwAlV8bFb(XGfU1ks9d&t}4{(Zw6oz)@?}925hR((hQHFf6oY_RsOiN3I
z>FySy5HMkofRjp<`=)1mI1EyDt_vKYI&-Zi84-R#a*N&@G#;GNZ+BkoJP>%KAzA|P
ziI_%maJSo?#o_d6^EIWZ9-;~hAEhI->8TBXv|<2oQQA#Qk{20+N+4drr0*n*T`y=n
zqAo6WBOP~Rbaj>#ymwiL_czw<M;%b2KkCu4H0q-g+K^Y+FQhoHCBN1Qgu#FsKRCSi
zlW}4xAtvvH87%be_wBFlW*G3=(;syq9b4BO*u|L{xqbd=2PYH3;1p?ye0daW`B?8|
zzyXw!S3;2HRuXC0?fg6L!o^I(E&kPdx*6WF8+W<g<_zIt>(#Ml<PNyp|MGais&ilF
zYWwG{v9v&Ds1|N4?8_DTKjS`4B?ZF&KJv<PKnR$_XQ%fyx1Ume&rNpzYI&o1-}}Me
z4+ot`otKlp-<LmGWq)&Qfau)Isz3RB{;_C(pw`ba`G1=xpMGCc#Z$bpQhIx1{`S)E
zQO*pPyX=N1?^%b>BRvDX(%t?NcJHB;useL$KAxy*Up_qe5%%^x4Lr-Uh1E0EdN_X$
z*LPAB1LW)h!f7vgdO=BaKrwhiEPBSU2duvmpE091(hXI?-iW~ulmG*3AK$Wv-BRv>
z#Kr#=?gFRNmp6qNE!pOz;*p_rwsP{i&6KQIKmQcmlotP9FCHcsleU9hdC>(CxdOGk
zf}TlYS-_ySb=Zvy=bU*OQw$Re6L<iL>8y!L*wfT3eBv_>`slnHWAW<e+C)?oBPep2
z$FxL7dBTNWqBABe(_exUTUC@@Rh|>(3?RzQ2_s_w>GrEa#>OT5CDj3gq>YD)&O=F?
z77joGURx1FU7`sZ)sQ&H%8A;@C_-b080Cf}=tE8YxqNcN?HT}xsdh&?jUP*I?C%1q
z;y>Q;sD$^q=X&^I@ZgjZQ7N4_c%VSHOJ%!>LZylH!nlI%w8Xosl3HgIZzfIYr8f;l
zZ`hlplz4D#ILcLW;);g`Mv`x;lG`}|GOtS2;@~QN6oLIxHeL7c8@zoAo_&m~fHt!5
zsP<a+(4mntqtSqR+*<qbl@6@-3)a)F7tZ{g8st_&skpvZeBQD&9hS(%IM%?3Qdt3d
zt%sAAM*1m3Gy->G>dQMbZz@tV8qOR}C=)g;$2q`w1HBdve9Di1*TwTAT+Cy7{F3t8
z+)t;K_Cds$_L&dyEf)W&e?(v13^8Umg%{`K7w=I-8keTN$6Y&{s#*&5TJjZ>%*?c_
zX0+!u8i^4TGP34Qy*9?(HP*a79^m<~fo$4|G~+!3cv?FNE;+0X&lK{{hNrvcQ~(;i
z#<{bi8pYl3>VosjC)?S<_8*XQ3AXBK;<Dm)D&m-pPds8-(+UebrUNyYaw=2h<*`24
zF5}JJ6z`5}<GtdHUF+>tr(`HDp2t}1<}c)2*9fd1^?if+!~AL>mD#I&^jovJX=<8Q
z-e^GX`=kpFQ4JQzHkKQ*eN7N%fOnTm1s#F~K(gJ@G(g%ke5-MW^qtvgrwcip7ovhi
zHsEhhq)^a68%~P(a@s#qdcl~xgh-AvuXdDQwvGN*aPtEp-?4w|EdPAPNO9s5inyTC
z(O~{3TPwDdb6+KjeYk(7MFAe{o_r;>0dC)w4A)Q5=f{IJDulQtx2!kZ2DOjo`r(DX
zNtRD)xEX%E?Gy9e;8P(+XjLY>`--gP__zLqYMGI7E1g*f=#vi&+D$vjCTC^<0rM!0
z^of*w&s0}n6ys^qkSXlZ4a$%3s){1Mvp5o4Bz<en`)14LI@txtC=M6v4)~WI{iV=#
z{;A-2Iup=qK+&Ng?<%q=`Q5HLzFTK)%s^0&LvKL4$TbD^lIbkxNZZeaZL&w@+t{47
znk$k7n#jyiV@%hy$+oj(WHnOLk{{DmruE?E3u(r^&8lx1pssHK$hdnXC;^ldfvXny
zU{?F;Gn2S6*QP+jO|z1lU8s3Ko?~~WyaLTO19AeAzhp2gtlC>?Q>&U2+K7I6txG__
zeS#v>u#i;4_>Q_-9aGAHRU40Ton~)%S}-cpPh19-4^K2?qTAS%wIpyQaZ>JG)Q&zQ
z^#T?2X&0>jQ+uTKoUb1`9bm1`A+h0)-j(rIn~lW+X{C4pplPLu_`hZ*;#^5YQF2H|
zbq^93>OCp=A+2A!>&@~esW+fOV2-|k87T(HGA%y4WjyGSV=YKQ5zXlN{O8r!IT_`;
zr2~Kp0Z+yPo-+&67JAU-c-0Qs3HKXps{UFxW!OTq6on_r6o2))eiR#JV#1){ck0KD
z09+i0W>=baHNCE1rej&IenSv67ah5AZFr#83@OkH5K&wcrHw8%d_blzB~`?kjm;F8
z{fA&X-Wgg)hmLdF0KbhTmhonPi}Dk{iij6z8LFEi@`QgUugy-7pV^y%KAUr_FrU)5
zzH_bKtcyUNO9sq+>F)ld&-_i-_^HFA?iRard||sUV7EzZM)urxTi>>{2u5{lilMHT
zY_s9&ZGTNN??&Y;1NbK3VWLr@Wd;q64MakIw5B8revbR7TBlzUXT6gFt0J?@(&b|L
zm%qs8VIL!E&D?%tzyOfIfAwx1T`t$OU9Jaot<4q!<EzmHw;1F|F~B}!HfP|jU<19x
z6ksdWFv<NMEoMx1oJT`uum6q{x*I@V`U2k)TchTnb9YHn>rgJzHruXS81jx@eI_%2
zxo?^;{87{|S?!b0tT=jvA6{4!fKnI)J~524wna$pv0V&06O-kb+B1DUB~7ud{1nuN
zZ<8=^F29EgJY@=6Dw~^?OTN=Z{uzN7LgS`=<DaIT8;HHX3`KX}A%;3k$G*v9zryyf
zF{&2^tZG#XKa$rKEL=Uen>8{Y=1XQ+lA!T-!Epgl$*wSWAj8{t&+-cVZ3Y&yG0ME9
zv4{R_ZBwvFf420d>GJQQe;<X32e&Z8<c8!poo_x|+6Q<&65l@e=ww@b@(F7ryv*>?
zK*#JC?-Y-4Gck+(a}TILb++DTCds<30}A(l`EBvg>|U+#^KfwUvxl7jWF+u0=i_k`
zOYGFhyQFYMJh(RmOkxs;HEF(wO5Dr>5}d|<r)+e7%QFK-<#K}pPP-GXcC8}$7}?D=
zFN!>|NA7v;=Rkj=ao<Gjq!Y$rWid}xm5`uz9uBoFq;oJ_5NL2JE<4HpuwzHxDs)@x
z34S(SoLkxV*Lm%hxn$sT37^osN<g3#tc>xeX~;P=w*&fExmXE#WvJ<LeV6iOi3EXA
z4)Raq%MON58inH=*lNky4`XaCn%_qq#{5$*EIR*pIVbrgEJYwJ?GEijr3v%$bLXtL
z`3+W}3xHN}^VU6{t#GGC{sPfZwtuRQZi|+~SYA}REsZIEaW}snxQP171!@MMYG)8J
z0N#JXy+!#|=%;2)`>vN4!q=^iX9)E#MkFTEpb7=ZT7X>j=>oVxP(uOPK2VVJ?@%&e
z0(`7LfBgNht0mxdgU(mG8yB7YV{W-0q;0OZ5UtSefAidh78=EWp=DJ{m{i=Z+%C`K
zt&l>X169DGw*(<+4E*GOoyKpuc|H0PXZjs0bB^w8t$W$sLO84N3b)=e83=~`y2(ZH
zEW70|+x0&>ck^gA6F%rYpSgTNkjzEmR?D-hz19n~M&ZSnOCw%(i!U$}u|mK*1xJ$E
zhXZp#H_6D`cD#EDi&ar`W#mQYH*L<tv}tH!swzKSz>sX19Wi(8{eIYiiZ^0(j^ZyG
z`cE!YN#O^L4kMj?24*1xj~$8>cqqC@i*F8(hm}vU!#2;BbG;B^pmp?Fvin=g(UMPT
zdO_P*Hd1yx^3DtWUxl0e@28I+8t^aD?!21%{fR7={(hJX<6L~Xu;?Q2t;5pj{!OpW
z!R*%=M#W@s1HgLkCBJWKWz|x<@}Dx#)CAc(SzogjcaLeJ4P!6+a(d3GpE!<iTpNA(
zGPVErbdlO{c~T5tSDQ%J$XnaG=hb6Ow$IML61nzDP#BiTu6~tQ-OW6Ez5N1aRW#+|
zUpwNmz;KtU3BPKRoAVPi`3`+||0cV01p7}9fk?{yp$PYhwnlT;d{NgDQ+M-g?H8Uv
zA}dwE?9zEvZJQSYymOBg_nA8<@3sU+d~d!a#eYgoc^J`!5|r9@xn3wISY`aCUi;M}
zg>HXf&!yLIJ!21xdgWKLU+XClmZ<B4dgv=X?_l6S7mdLukxE`CMsr}T4e;gM)&8%#
zm)d(?PQD$!96j{4M+;jwc&ah>12puw*C3|XaK+{1u-3#`SHDWcsS0wDqr)&=cg(J1
zdZ>HMtz#xob2db8=C<Zse8-&V+t~*l^N%$bdUWTXXfC#PEQ<Cnyy;kaulZp}P;b!Q
zXcqLJKq0-gdwG_6@(=+g0ZQZ;Pxj3J3G{xvEny?@pN^`Qb+g-*N5FNN=yf0CwdC$K
zD{b#t&4bP2P!8&8BMjdE1!qbGmC`28>+JkFjX`P+ZarEF+pxH?9wj|%a7G@^tN4$u
zK-)A~`DV96-1|?5^}coJ$`46{7dqg5pQIm;@4aVkZjHFNGvfN7*AW#ShuAgUecS~B
zm7L!Y#_ZCvKpGY?!f`l;KV0Xzm<JkFv@!pU?BB+RXt~RwVvha0ju!7Lrr)ms05=t}
zoT&z0mM^_jiY#y$x{g||S-zpd!#Ynslwt}vq8~hEweI$i8V(G1)_O9#b34-Y&DW!U
z_vv&oo_w92E4*c~oEc@A>}6?OC{1N;+)x!~`Z;ut$=JE%8ilg)Mv8E0G{!pPQLIRI
zdLkD~gJWE4)7VSXhL6joW~&~aVjkklo~Kn_4WC7QpRY(ja<akRJ2$@H{1LcI3c9JI
zt1HTe0UH>K=IED2!#<RQ<F~~aV5J|a(Whc(DcQOBayl434_}KYec+ZKe#FSzaA>iD
zj$lj-7il63W~LakY9!bMF1LwD>&sq!sr!j)WazxacBtctz7Keqq4ayNzdzGONART~
zA+ZNIm5<#y`tgOH{A<Qt<LNs2J%vNlUU_ciI;D!ak~#ESlQbJG@ENa|A7op)@n%n&
zoCwPnxfJ@r?=x?z<Y@99Z9OvSHf{N_n53-+YuhtjrThO%OYc5{TO|-`NjmfM2R>sZ
zdJiP($_v%5=n*YFZddAl_&*Qa>1q}*iR-05Ur@Tp?PSCo*Uyz2#2yqx&>MVFiSqUb
z^ZR6(&3~7|zbwAIet($e67hPdE$sf!UcBCSOm(;aM;8bXF)#1f;EIX3^_QgZ<aYM(
zIz5@utJLT`lm1!CmPr}zM_&Dd>gfV+FODW0trf^8ZNHOQYg^ALt5yH~EE=S{5;J*I
zor9oCgX}P*C}^D|<Pu|-oLN^(zqdyKHQMpVH@i6O0vZz-o<!_vJ(hM(>y-4a-P0F|
z)ad4Pu=Y}H1xB}L4*nsYBwYEdBP(KX_7Ks@XLD2qK`uPT?ZXu`%UL_c`=){nM3o9j
zO+_i$3i@n%!`*$|#^-+$PIcLBLa*vtT#-YIsFJ!AMFa;9Vwsav-CLpN_U^T4-L@wb
zWwd>4EE^||Nab|w4*<f<DF?A^G4N+lD;RMF%KG2lILNq8$HvCiMNVYus)@KqxuaJ2
zN-Z#5lWgsLG5CL++T8J2=Q2!~<F!Op3e<%oUAMz5Z1bm8Q1Ac|De)op5d!IoPf5sY
z8lz8g5mZ+phYVz!nf^)>JEBD&Z|hP>NqWwL^Mjg0ic^Rtan8nRWcYGQa?}M|*j2+-
zh%oEe%7q{`vo<(Wc-WcBjo^~A##I>03FT}m%7Dh{O8f?9UFGEVinj5#a}I_n9L19J
ze0gFXdFneDpNh8e)4yg~<Xl^?jnxYO@KmhjLaZN**z(2aM`mRX*={a3k@A<lz@zE4
zi~VNYNaeiuV?pMlu78$6yIT)oZK~5LsUse<Ox$57LH(kSB7-&f^>*yf%h+^*Mm34<
z&`5m*l9HQ=)uaP8d?_V4XX1$OTuRSNK_cqD!qpQ+grdVaJrE&d>5*!bXr)l(V#mk5
zwQ2aFu0gR;;44u|EQ>1-;qJFOuIo@~2*fj62NteLx?bqk@)MLJ|2Abcb?e_Sm#;-s
zSkA{lkE1^>EWcyF!$i6xpFd=l0J8}}$gmDzv#I9mKV;eCuQ{SAKj45f$M{5F-g#|z
za=YTnDWJ+0QnOllKTenm7ghxzbH1xKC4U6gtk7<AxZ4TvqqpsGZ%|4<;59)ye*v>k
z5Z!Bcbm>B9M_3Bl(mc_`%Y(g$n|CO$3@$~E7hRvEE+x>ML=>`+X?74UFF(Lpo6UUN
z0D|CMRTcXEfFWU*V!>Dr^#}#=d<cFg8nb6f87kv;3u3^?YCl-(o}#Kuyp_NCNma7V
zaA>2kU%zwZ9Gn0|QZJArr^O<#>r$25!Xfg0)#)MJ>%3e0po?jZDd4U$wryYie<g+q
zhR5Y-oz2eOO=&N0<9IL=PuG7_O5%BHUAX6@LY=5|xNxC38|lD=K{yj$=?s-VIz8^*
zGz19=*lTmCs+k!TD?Rj7mSDT})<BeTKOTCCs*p$;vTIVxFy+?9J`T5t{9^U^@6;8J
z_u4TS;ut)KjsIG2SsB_750SF(3h7ntlX@F$`@z^v+CRe>suG<xw3MsE^NsLDtv>;E
z16QdsQR&%1hYQL{3CK*z6V-OjjkfiNsFqhnRoI{Goy}Herw_=I0}&q?uLm)IEBdd4
z1FDz`GSU8~mE;%#V69uwNX6T*8vlfgSan~0F{zoRpv?=Wmx-P0wvk|+u6b!B9Z9@9
zAQp20F(~GrW7z;{RzEOjiK*u4b07qWXag;6y7V98t(kvMYu<E`u6U<Darz*?xeBk`
z?f5&%CXKoZmj3MHqxsiiY=81`{8;uF1G1QHE=x$9i1&AKVuP-jg4x44QNG>O)>U+4
zzoO?SzauJUtiRQQenU5r)roVsr3KQgGnp;nw4g<Ak<`?IJCmF@&K<##V}P61&5pC3
zw)_BoJpOcccpv!_Aho+`fq+9xEDg%fIv_}UK34|r%-72!*U;%T&YKfrjkP~-1l1TX
zE&07@$^*;aGZCR~CA|o@s$L6xKS*5u+1GhI^5fR)#rppo{SkwvZaE5(7Z?NQx>i!Y
zk)U6f!URhm**2Iuy3cyB99%3P{TCSe<dVa!nWN5CxkSoyBm=tYRHfO(J2<PzG=ID@
z4lYaxM#H65|0K`~jEPzLj(B$V-Gor2cTiw59>gkE_0AZ6K6ZKba}8Sq=OpDo!FRuJ
zuoP?j^Z9c&{nb9X`(Fy}KGUy>O;UBZx*!^!AVL}IM={n5@AweS?Ejs_sI#vQU6W8i
zFQjPHNIMR{`cT2v+zv5NavwD$241q+s+V9roZ5XDz;0O-GZHt|8~%2;HcNr{`DOTY
zwkBv%i?mj<JU49A7K)C$5o2m`*zur3K0`Vx#^SO3l#wCO?D5GBQoPd=H6d6yiA*82
zyc?uQ<enavd=*KdO7Q2Bz8Sjk6Q8_qWiq_YwNWR?(k>4@-PMv0@z>O&mZh82<6|+s
zsw68C0%$6|cSj05E6xGP2hXdzs&~d@yj5M_z48`EEF3-30!|pFD-T462OSZX{7lK=
z?Ju)`fc2`EfggVX{&Rs8gW2`CZ(c+|^<|K1?^X?cd8AeBb-a@6FYB=k_x{M;7o+z!
z!`l)DlCg;{w;yg~A{a+q+Cx2r+@YdGAgHLpiNC<?3&X_#OSW@?TG06~3bShTy{aGy
z#+kRDBqCRt?jOr$^I3w=D&7!BDM1H{mZYyX11sP;=U9&cuPPnn_^txf&;?@IAR{>>
zJ7KifU?0W5O^$RbyM_p4KSXC^(fsb@6|aM$)6<g(r-u||IzHv~kw%XBD=MP~)?2m>
zz86s+f;J@r*@@!@xWGHZ^=gPV1pm=%^^f9HIuH&k;DcU^d%IW~R6G~|ckzd_!Q?9i
zW<$-&QIQ9*W>fHckN!jXK+15m)@E7fJx|cr^PQdFl-pS~mo8~aG<1y1bWE0Ao_?Lj
ze(+|y<}o`>j)_R=``fWnR>naBqH?t`_7pn#!ndk7(+3Df2>vdub)%s3TQoIio_=yb
zw}GFdjRQWyU+=u85B_}vFr^bOfmk^@ZNfSKeR|{2m?%rb|NYChY>DULr}MT~52Cto
z+TzPs@F)J=FnYX#uDB$}BjI5>v|aNQ5y|(%ib_T)_7+@Gue~B+r6D>eTibSKS?!|0
z*;h&*fPB;c2f(D2L0KQL)5>k6CCV4lr8RVVwEvG|2>^0Fy(DhfyJX*+Lr3W->-Km&
zT*6TpxDyB(y{Yz^yz?0a#(L^a<b!@D4tOpI(2F5mlE78cSM}^bZ+89l*xC@1t3q+y
zv6s|}kFC^jx*&s-YS>Hm!?w5ca9yk1xA)Z4qRD#ZS-O;~y82UC(ur>HU0nxNML%7Z
z4JrM;G7ih~hgM=Bux~os1}BFT)yGSwm98g|p|?}@R+ebM3TI^4WpWf2V6^PQ4y)da
z>1_*9k);|OXS{nHPB}$JP$So6M5kKAd-Tb&EeXnc)@LM<LPLS8P#IeP<=S`7)-gfO
z;yOrv1`>s#=}JMnQQ?WKMlA|M0H#D2bhjZ>t^m|hsO$=|?*~Ao%}9o0Bg)hGN=A){
z+T<#0Du@VpHCIxqi;~D4d`t#I`;E^Gi24p>otMUqp`en;=nAjLb=#olp@^Nuwwg#2
zIaQNd>ttU4A&rEgi^px^WCSk~(j3EA6>6-yYtq~=Uhf=R+&om6VmeT0IzDH_6HL*Q
zWlB1(0pchzWu{|{X5-D^NG#<wXoTtor1P821endXLxvcm<NQqDhsXYZhNWTt?6%p*
z$dOZ+J%xEUwJT+KRvWnU*X*;i`Ii{#Ty3(hOe*Y{jK)!vuMB?~Hs1+V0&kGnSs#um
z=k4%Y?DN0>Dr@ocY!7m__!VGr6gqMcY4N+z;!mx`-*$@=+0^4<i~qJQPERZVOa!1D
z^&dY0tVw{F5uh#vby)&K6ak(}Kok*>0!*;O6a?8csDSLMjX)U=T{^=wa$jY&f6k~$
zWejguXT8d1Hmc?|jt;x3wE-BlrgBv9^D@Qqhf(?J2txm^N_Jmi$_24;Q&@@8EH**|
z$~8gZ0upLu;Sb~|WJ|X637jeb%?jj16kZM2c!?aB{V-9cYN<f8lyNC!!k<6A;S6HH
zT9qVNzV;$3Ln-7gOF8JfvfRlFVW5hH8dVP~(<#73c>g!GNdk@Gi~-D!yLt@^T!^G<
zRa9JtS{m0`_jUE4Nfap@<tq-jtq~_TH>q(9;*X+OU>MvAbX#9CL}&mw?58=xr<$!G
z=M<>&BhihH<W;)*Y4|iNaT-?z<p2Ob;)^85Y#{BHZctkstF4EbAQm-q?~bh}G_Lsd
zw8vrwi$X_)J9Q2R<h(lK3XhxnKTf1pNb*7YRq=$WTlv-|sb^-MF$1I2yGm4KRi0!B
z!+`t5NqTka?o%*<f_AJ5;I<FUQV7kQ(&DahsDiq>fTAy)z5ioDwj}6J4{Cgo+C}tS
zQWP~=JTs+2rN$SUaiJVEN7k-*=^ty?s?Y#3%pg|44$sSJAIIK`ZXA)OpCj2hh0Wh#
zax8(uOzWDa&gSY^O<ogG&!0Ayq$ih$B{vZr%M{=-1bDwM6||E4ZUgzcoTINFRjCJf
zGUAv{N8S%>y+O>PlM#pMF`1;r`k^@qZkcYPJ!RhHtwK@9j@Yh~e%sTFZ7=M(20?Tt
z)2<4q8r+f**x{Y#<E);P!SLBMIufzb>NtjKaG^3MG{{_V>S-J7QFuZ<h6Y>5sjWFk
zrZ0t)IT;c~A8<R)7rA)j7A|N@$?;^K(`FO7YIYj!1w`~`MJHt}nay0hD!LA5|3Yf{
zn*LyeJ_*ET{UD))HhZVHyQR<#>kqS1cRwrvTvxBL)DjJFJmltwF|nAK)48gNWPL@y
zkBL*gbiXI;ckB-E56D;9eiPaLb)>hOP<w1Z$C$$C*OtDqRDd}ZXm0fT2KBUR#_xPI
z?3v+LWVV}Xrskawf1&3NeR)J_@Tn4+G&w43!mHis^s>JISrMS6m?|m`{x6(9!UMg9
z5sH@07^V|Xa1R_zSr-1eV;LZeb;+12k=jk|dd2*wWQ7220Nj4o^EYS0eEwqu?=&{w
zAul&cvDp<pZbTn_zFIIi$aCX5PL0F;bZ2_)Rb!6Cy|sG>1x-fSM--ksMK`NdHZE2h
z?Q}>42j#mv)HDWmdASQeN_Bqg;ncxd<N&-mo?Y(18+vEG{kn7Z5LH{HkSt9}j-lS&
zoRKgjI{x`&y1XvAv3`01Y<25-r5eA-IJenV4;9ySeL=EggTa7~r?<awe1^w03L;>G
z8KVlQ_x#*Tf!`4ZLjI6vY3|88+;-+XVN(1OIoBMRJp4PqoTE>*d@7vyG*UBe$Yv}&
z6AnEjC&nBKvv(s(3Lf%R7cD-Oa9QeI8F&hvu#==;JG$<}@bqHHFM+8$>dN1+5*P~S
zm}mF;tYWp%dwwz-C)XJxEY3Xklr`5ksWR4Tv|$bF^T}PDlCLjr27U8cl%Pdr5BH5z
zac^D`RN%fYirX}%_-6lyc-XlCtMW}+W`X2xjzVTVbbutiJdsS#1XiE5t1L2Pck)hJ
zey@)~oa^dufm~9VONO5%{F`W!>wg2qc@Y4v1gQ5tP|ZD|(q*5ro8kdl{>`^QrX8i6
zIFHBSm2H`oQ8|j)nFw|2mRC>fJ^!+ce<nfn+G)89p;b!fKFP99xT<7IYg~H%>bodO
znnUZ$6fXm$093({#B4=z!?Xo(_6J1dlQ|GO927yntP4F~VAIlPo(_rW@2Z*CHnUd(
z-hT%fH<dq3n-iN0IM@j|JrLjat12ft@QpLyfK>0$j{)mxOl<h?`6-g0De&98WGBaf
zDF*fb8UYqGqwTu<Bk6Sim&=a_Idb94+-dG#&4m)k<%Om3AOgku&o_0d(N8Tg0`>c(
zIr5{q|G(ux5$?5T>Si7JQs0!Qs$M*qcdKiFq~8-;RZY03gH<^0nx<EuB<MbcCgM~r
zDk#1-=bP*34%f;AK?~<0R)uNFQ_5D{L!f{Kb&J0<U%XREe_N_2c7g9*b<m@bdRan{
z4RKGFd+yga(A+Z)PS-uoqX)&(jG21-Si5Ut%C$$0vJFXllQV!xQD822=U+khcKeM=
zby8O5;=Tlwe(&+=pm&A!J^*76PzikX@ETPq9xf%co4poz=}pL~tKm&Pr9F@IcR4X(
z8;U#BSN2va(B@AogKAfvU1WXL-z?BL`K&F~`X}Rq7%uqFZKML4o#@y|&1Hy*+_7b~
zr*NLNDpS}jFNR@k=AeO3-nBgA2RGWEKJz^+#&I87wl>+cB7d>%2_Mm{XAfm|4jrHl
z9v21lg#e;MwdE@ZGj|*8j+|3)0&JgxyPkS)8=n(;4ONtk<#xT*#OwD{ss8Cg%{yBV
ziA&Yzhr;FhbJyR5g!g^XxLxV`TE(d&ux0VQJh<D|U^!m*{DmGU?D_?#ksqS{FJR-#
zZDrqm6U%%Tl~2{4Dc-PbD+WXU8dD>89)qyjBK_foE64Erd&F0Pc_Y_;-%v4T5M9y-
zJrIJY->2%a2bntl7WKW;9)3qM;rH(mP|;CQ<v<I7dNYD+zV45ykIBWDcp=v)0nK~i
zH|2{J`#?0I^H<6kbzi42^#5VNyYUqLIWn^OBljm<DB@1NUC3)Y*Msv-><&+?3iD;!
zLS#c3+*Ixr1iYzwU1`PS&r;gj@zQX;Kk8;gLU=@M8KTZa9VIG47D!10Yt+P4I>ML5
z?13elbUH0E$GuaJg@5v<>OhnF`BKD~PsR1WPOf2*FKQx3Zliqn)m2rUr!InqFP2W9
zbtf!-CATP_E<J#;(UTrqMFxF+O~21-#&5q%in=7oIyfh*CKlPgbxSs3^<!)6F!xJ%
z%gfgZ|2m(4U%6be8vmGqIpLkq{U-VQCxu6KY&zS~+G_)P{}TY@eg-p^uxE91hW1~x
zx;&Sqx!@ls2LW07;7wo3CMWvYVAUVL@9{gt`&!Dg1Rdz8qUxEh{&aNUHhy#)aQ8Yh
zYD8u$`>_NI6H0fxJzrN`o{bPoz{#`6ffJJAQe(w&$zXPQkvsA{7CE`W1=&|w@_5T&
z=FBYI@&YW3<|1-3JS?2DvSj{8>_*gj@GFsa_D)?`S#Sl*6T&&i2Z^yoc{Gc33%Hy(
z`_dB2X-V8@@@(Owsn~Vh`Na?6@A_|6u6$eA`F;Rx<zx|%mJ>ENZ|)}(DY2YyJVvU+
zP-6i0Itlp61w0ZXV_&Qmt_ZRy@Htp$PdslhMCJNuE^VoX6-ti!_n%r`<$A9ON*<?f
zG;1kz`92^KF6PU+%I(k`u$u29$E$3xQK(d8{Gxig#{RkAhrt&$v-QNDBmt9_+WF_c
zljkzE%jy<el^Ie9Xk_fj8H2Pf*OP%$2NPmVki~nCB4Dy{tc@m{y@h>Zg(Qbbr4&UD
zA=OBLu;JbmLhehp?@BLzl}jA=-jfWyK;?>LF#XTt4qldl><0fY_z%g$T;@v~0N8)}
z;EI$SCn1axgFMiC|2UwWH3^i=Wq@?(yGi*L-M8`v0X-Gj&$aDxD<pjH)%nha>tzo*
zRqf3Bv3`}4%?GERy)%zl`xyDVgO$VP1c94o2i$r>3<0lXyAh5vB;9aqnYXd3C~T=9
zNIGRV)-_Vim+x*|qd^Qq#8ZO>_S(c>jsXwLzf!ra(7$p6uM}omD$6pBmAGS*RIToc
zDOkbH)l*?5>4L?C^#r+JVawpnI-hB>1&L>j>K7~ZCD$wG`j<T4%BNrQ14`d=I+G|b
z$Y)}bMsm_sg%yJ1S!f~#ChHvgl^v>pm$ZTNt6Rw4V)jcZF5w?57lv*RWS{!Q5|Oc$
z%(;E;xU}jDa-}YZAHbEdP@VIsdCWIRO)_?+tG0RKn_n$04&+}@ApNJeFgxW{Kd3>%
z*hsrzrn)vM(=n;4-W*5!X7g6Z|H+GPj~81l?YFjeT36y^zMs{(Bfb=nUWIX%wezkp
zaAfBC!(Z>u_{+a!%%=V5{A+&q#~b(0L-KF_0|o4M!6j>VyBRNTE7)vQ@;!3+*<$n#
z&THSGjg;kZzWJ6VUUt7<>`}n}0Pacc{-A8D2EKQ*_+eMv4Xv}K;$#}-`QhmH{(C%3
z?&p{;*Nva!hLSFrVUqOD&q;!T+~Jh9-HpR(`v(J|g$}oO4rht+a=%XJydK?Xv2}VA
z_G=-ab?4V2sZZ``$*-dB+=uY5bw|sQM>|I!#TGwso}oBy9<L@yK098MH;FuIWhWDN
zOta#{0Px)Cl|4wjH@@t1p8vg27;m}*IdR3c_+{VqjM40`-nR7P?dI8=5k1sCC<sO{
zC9dbaqeM@B^%1~Q;ZzMH?4AfjJ!h{!dJ_T`rfE$BdD9!TKgTLG01;ScRd1xS6}}r$
z%C`?dytbrPAmc3qHLd3S-)nL#N8cCzIpFs2{;`v=kX1g6nSrDaMm7wdv6iVj|Bx42
zUll<l4ZDy@Qn$hOz`gbK$`wiyWX)vgcDAG#s}6<i&Eqb7%1Pi(cV>agz=0^svCd!`
z0AgSD?pTEblokqr$`P!AfSy-+kp_?m4|k*5U;y`EdYpA*FH?v;9Am4Oq&gL23u(iB
zmFs4cJSJb}$3GPOwgr`?XF+ae;8CykQb{SI3;Y*VnRF=8zWcP+T2%~3PV9qA2#UC~
zDxITn4IsVCp;`{WDCsuHI;W&t>!^}hhD#D;0x0k?VMBFmJxE-wp-6ozRlk!+AQ!?!
z-GhvA97OO9Mm@1Bt9?4_qBtnNOHAt^IV`|0?kKBFA>PPz!F?>vg6?Tztfy~RT}FhF
z$S=g8P|b4(C|JKlMXu3P7=DEVnqGOk-0qYdAdQSg;kZG9E7f7Iq#s%svRXy1LoRDf
zAVSp#PDI4bbzZD<t!}%X7v&KlY0#ke=wcj(H0t%8_;mgW3n53NH!w$*;^gLyN-^m%
zk+E%VGaa8SvGlCGc3R%-2}oRhg(}@$nX8cc)RgP?FjFTH<$}G6;>~+E(?DjOJQzFs
z?d6C$cp`gPf{>{i3~r|XWF(Is=1LyhN+(23Tw;pJkLT-jh6Bau%r;kHwv8>sd)(qw
zjj!Vm{tkCpSgVma5ufE5;18>A-R*+uTmg;IVVJskDX!=kE{r|d$Y$IJH-k)TVFO+!
zbu2r7xNGyr%vOLOy3G%Xpn*?+lH|h$uJi?8iB(@}Rt~uV=Fo6RU|oVDZ@|Bto#l%Q
zX?2yiHRQOA0o{ml8q}Yag0fTqLh$4Sb8ZT}e4fk(m~F<A$Y*R#YB?Jaa;|L*#D8W*
zD6MRL;{pZ~vqn_x$v)q+mT$d|=w9WVt@48#_A$`TBAQ<z2X%qou=E+ALQc+?43Lk?
z9SpLN18E<g8JxG}EMM50&NDUwB<-hy3AcezK&q*9Miyf_8FKI!ABHx;Ft-6Z{9<wB
z)RHbX);Vbg{Y}pbyNBF?){&g&fN>WhY3wUuKuLQ_b&QEKgnpYThrlHBEW%N;;TJ+R
z!{z9IG83oYr-N=iH<ZHsv8~2=jQeVdB8`f(S#4uL)`pw1xR>Z3f*Y4CzvEE=;n}D-
zk-8gN!Uk`mhaN4*t2{=z-#=Z<Wr29GJ*${OzS986-w0)wl==`ZF2KYB8E@83R6y9%
z>5`Y}&_UrnYyI5?Jyu@zI6-_n+YJmvcA<jxE*|b}=C94$Jzc!;$dk}ef7#`(o=Z-7
zlItg|!s`pTj9WS}R&@)K8ZXCfD|C_Esh|Cv{x0ZEHeC-gM!(D%RWXwQAsq1tE?gXH
zY#$6VR&cwr{u|-E@$0qp=35YUN;;f@orl%*(OxLlI_>xEyY+Ydu2j*-1c($a{$w16
zM)tXI`ZMqWgRmG@?-S%rjVYmx1j6?NY0}3nRe70It^&um*{a6?w$9yq7f)6jz89VI
zc{cQ$0{^0WOdgFe1Qk8u{S<?2fg5WAFpz5>Eet6`ngl_V@_Xno^AVu9j)G>KwF&8J
znQ0w8e0ZI2PPKxOyOT+&QpN~ObM6Y`up08~e!@6*x7F(vz97(PZ84a(UUXdp@N#w&
zA?h3Kuo~hT5c6<%lvjC>tINqGK@u{ZT7%Saz%)O>@0e6dn%D;i`oQ#<rFs88wkAnt
znqqSf@ZK-E0u$buaO~S?i+wH``)FvkY*&wV`&z`$Q9|w0z@j3R{%KRQaFz4swn3-B
zwQF#bTmOEKJ?QN2)B<RXR$9LR<_Vcs05}@(;P7w&s#tjGVd<Akx(3kPXKp<Fb?uB@
zXEy+&joXXqe-XmIo9rAkpe}8NaPswjd}+815F|4O`dI1L%Pu9Q5MeqV^^xn|C%d4_
zO>E<IkTQFKDn+uNgZFpPebXRNM(bT@I2n<9K4_XeW*L!80!VYq{Eem5U^t`*AVyNO
zYQG>h>%QDEh?yGskP`e+TUul#c;a@9VQ$PaRU4<^Ez|&VH{esHh7Nqz!0!6%j)C6q
z1|_e+o{-s<uRsp_?h#k+t&{<IX#~ZuH~&b4y$WSF@rJ7c?I4C23_;NClof004wA(>
z&Bn%pX|WvkL7Y`^34&ien&Z<nza0G%m=0iKO+1r1`Kbbgi7~76yRoGBVoShXRhCF!
zIayzLNx1CaumrDLp@cTLbsP6<F(z>vqt#ymxK?zw@(ttM<X3IUj#mtVO1M76nR?|$
zSvCUrazOPsqxU2>QPnfDIsg4#$pZ<2ErZ*0@uEzu$qpHTP8W=V5&%_ThWCIpZ3DwF
zUz3t1kZ2Vw#}ZJY<6g3o7E4Yc=)>}Tf|6*c{jN}0Ca6C4s^~?Q8oGLn#DiE`T37=|
z%zoNmy@*Hy#I7L%h6kCIJ}{?0fK2c+Ycmk`1Tw^p>oFNWPGM{#?nX(aXVFItgOOBg
zQ)c^dro#0b+z^opFE52D{T|iWYb1v24GbbcSTNo378!PzmG7<?96x=#nvQ&?aNEO<
zZ=Mbk2?q&duT?`>25DkX8<2H)G%|yONgL9o!1xxx_<9W07|vLZWf>s{Yjn96lN^$P
z5?e%;wI24%Mr^;TgbKKr&H>r+?v}X(c9MM}m<Z@;w7)5(Ik}6t3KR~TXI?AG8KCE^
zu;zWB-F~*tt~l-qzRC*AU^VPwMgC?*E1spypf)6EaWh(A4<O_Y_r8q@RC^?5U7(m(
z@XEoIdp(7U6*ZTNH5j*frO4eu;lAf#-L1_(bNbd}KvD1wSK(|pPhKNWQ5Oe>P0)?4
z$SzYnTt_H`D73RDxHjMhWz&iI;>$E4M9dUk(LV27DjG*AjGlXxrXVI{Nia}?8CmAq
zx*G{*6)U$Cvw)!Ae{*vL7n=srLRjN^*u<?YrNx@E8ptBwD3Y=s-117Abs4<(Y(=|;
z?@xlm>{oqL-`$pYRUrMU6f;#Y>5176mW&&d&7c}RoWMkZpkxt=c@LAPRB2`?=W8}?
zbiB-Yq|}0v+QhzwG!2BSlzAB}`^!T%8z7rJRz|?f_Ib$lE0vjji=P8jSPqtYIaYG4
zmpTBIKCPWYg!_680?uK@gL`?edsW^#z5B!<q0+vj@>8%P&vV6{ccu2FBvLaPN6Zb+
zuS!B%-Mx#^@|0JJKCgaIu6PHKcC2sPP?i7csqIWv;h(28-s)1`sABc%%DdH7`PJRl
z)zu5t&;C?5{JB`mThr`V({i`Q;Y)JctD5$On$CRX=f;;yqN`lH)TBIX{YunxuhcG=
z)@~liJ&Tse09X1d*4YCuy+2>;zE(T@r)K$2U5Kv1<Roy#D*R`N#=r9tJ<&>A`L!E=
z()YVB@8(N9x0aY`mN;54aP@-EAGrTlP1tvI$T@fhLOo-MXmA)WP%Qxou%e_$78VLg
zc6;tNemauR0h}@tZ2sr?oG=_in8Q<JiQfxn=5Wjnn7lMeL)t%A;4ellxj}*Nd8|T~
zP!b^C5hFjuA=f|-$$GxJ_I#z`xeL0<Q>p2Wb(6xY`VCql!-aZJV6zh63x;Ivv{pm2
zL>n=PC7YTQbmg32x><y!`GS|pl9$Oc#QYzGnM?*aoA@xZmScim9Iwk7i?qyG0+_J6
zqs>y=Ub@8KG6JjV&W44Yu;<)Z>v`!`=DZh4d~MEKFNjWXM}Ih@0)hFJ*(luXy39*6
z53|tMFWpEju_lsPmoUX9xSN;cM8eXA)b598v^p(PX(kSGb8Yq1Hp_z7uamU-#$RFf
z9IjlD+Ff_>z&QR*6fnF1K%eRhR#e&$cC8~CtqK)vY(6)SJO^k!%ud<8|7O6k7v;#&
z2-2MeO3{tYu9@6O7cmFKSi#t?VLE)F5~ENjEH`p{%V^BRW@N9^69c9Dw>R^(ojO??
zK;c6u!HQoUT`~fc&rXjbbTlu(E<;6c>(RS2+V3`7Yaen0WNiu_lFUo!0DdHoEap`x
z;DgD%vd=bqQ<Zi=3ut;L*TN-edsm1;_m|&dBDL%%5w@@X_Pkgqa6bfgu6fo2ymVUH
zK>MEBDssWBE|Zu$TV4nu1*CeT>vX>p%gPxqGhsbUP0R49=ZfpQSm)%`2UsttsBf>%
zL@)gv<$L^Fi?yg9rxmw`NpG+ew|bh}T9&cR7DTa^BRs{*arkX^N#D<FZosZyBmTyT
zo_B`Zy$!-HE!ekCwRW~k;wiP#YAv2}4el#=ueV{&3vEQ$n6ry>R2Ki+kwh0RkHIQg
zSGNFHX5hfhVO#O7!5Q+q8lF3)0bVk!Zn`9dsx|0V%k7Y1P}oxZnBKtDL+7EeL8i*y
z(Z+%O7kx>Ly$eg#9XvfD08n)!rG71XYDtjebIQ7NkWY?xUFK-OhPUesEX14fJO3cR
zxc4PWytH`0r)_NgD$l$s?(os=$uc|B7RUDh21-ku1sx=>;=0Yq94*V&<y~x9IfnKh
z?Xi8Y7C`%YY8r6o#VGIRalRdF&aGP*Gn1p*_j#7y7IEHwGobv$Q5x1K^vmd4ibLNC
zr0cnNJbhx;E8sjQNANUAhzQjD>Ct5C|D4mGs57Rk;QG|tdjdWFz;+a3IWgBdwzxE1
zl~jq^bwH?w5{RMpH~4gYW;is}k_{1_RjJE4A%`syzuF1d1bB(gj0J55j0e@U1rOlj
zh~3;4bOLNA;Lb3z6=dN$2fHsfZW;fEq?ro*io3f5iPZFTdN{*(1PUm!DU{>jfibY0
zK<egZ4;LA~ewlZfgKozeeUX@TYlwJc2Fbf|Z;P|)cj2t%lhBGLAcrt4O#!HUF@)>F
zobIX5oPR1dv?{P<Cy;e(dZMT*H3{Igg6)Ly`20WS?(`q3KmHr|%$OOo*k+iqGi2Wh
z$<~Z@EEPib#u{ZO5!H-+-?9^9r>rF*)r_68FG(sSA!PfOq~`LwmjB^8_s*Sj9_P+^
zob&p;KhM|0k0;U&7b9%~{^o?83$S=8Rj*T=YVm3!Q@GR(p56jdSiDWjp8D|)%(<PK
zkN{fS9J(Bx{du6}it=P{0Xe4jGaLOQ{^R6D`lnB6Z!PId6xh|n(d2KV3$oc^H{UJA
zFEJ;!fL^&p6x8zEX7=5uEX~-$1lVq$woSxwL|Od;8>KxxxOi5lu`Ld;!aMf)0_*aT
zVCf&7kNBqg>KmZHwlNw7G1vW8jmH3*b@w-_3zy|fIMpE1yd(85@1|tkGbF{BrAx|j
z@NzDJlCAFNFNOUS^k0ENfG}YuqI>*b!5gqxAI7E0%hDA$|J`?dwQ63v>U3}Q;-@x|
zs?~d!z$)tzOrc*DX?H&{->X!jv@fqp-MhD0zLugu!7VdeE8LGxU+r)LttYTK_}{mn
z#eA7aJ;*fm9GjlByLZ)LBh5dZ^kn0lhScp#jf8vOU)VjmssYW|e(pH?-Ely3XM1ke
z?%Sonc%LH^t8*Y1gL!$jE&l|-`oS1%V8wkRVC<W%)VYM~7f;Kbf#si~o=UwRP)G=p
z0!`eTTfYQ%BEoy`>23VuNYq$9c(P>+ON_1?flSYnj=)!mlD|K_(|oX1Blsh&f8nn`
zYx%u}fDTxkE~b8lEIAXf?E+)4eQEjk-I~7L!T7Z2W%|tT24EpGEB5i1|LU@~7gNXA
zhhFi2ojwnEKhz-bUWU50C6u<$&Sm>gWukxGM0A7s3s3rZo~<lxOKW>_A9!eaw7*K^
zAE&we@!elbJ;2oNN3LX<J;AZLW=+{GG=MP!#F*hk&NqpC^MEumEfh}7SUX`+W>2ub
zzw2`$EwyF$QymXv7s$3Js2RF>`Qw3Sz<-8HKlMMCIxuAPE)x|t_EMWuc=|$da{x5m
zQXg1kgnE9nlLfd}Xoy<eB;-T_AY~;$3=Uk^lH)A>aNC&O${u9xll#*b>P-dpIQ>ea
z|1O6sda*+shjTPt!9*(9oaV+&FB)ek<$3=`=J2u?u?K|U9I>rMysd|i1M+$@Pl_*d
zb!Pm|eSeY`|0lnB<aQ==Ir|qT%i~hZ-w&_Jl<*d$JbCa`@ofZe4o*2|H6VwWl4Gup
zJ{&*30tc6mkTo=(sU*f#_e<%P$BaF;kb5a+I3sP!^~|;~A+G-sn?NI{2f?+z>tpYi
z@(7>x1h)}Sdvj~sG3eGMiA_6vB7TPryXB&txVE{opPZhZSCpvXVj%Iasif4xMPkLu
z=BmA;^EFp@&+9%n{Q`nQZrzTEynCM#6PJ*bl9qAR(>t%Q*e6lW+NH))s1%{?RC84>
zS*V6y+nChy>{>^;gl&y89-1WKz^F0fQ|i4&OjdW{NJhA*o9pdSdYL({YPKEs;1`gX
zszhHC8-K^=p|uqy9r?|PK-7}yp==MXUmL8*MYwrXQS>}=g<8UeN~to*G5DDzu&YQl
z4V3@u`FMT*YsW*qaeKLn^oK7(_gyBCH`tuBAT=%}c&b}$j|8jm@gI%tSSBnyzbSHZ
z=WPyw*|yEDCB)bEsW&@|T=*_zq0&0HDcBL*w3z7BmAJl(-%jeZZ8kqs9y0s9LhyUM
zd2OD2XP4(Vx;1KCs=w-T#b4DM>=>1I&8~xaI>ljrAD#z&n|oP&4&^yk;_SZ5HUiRl
znp&#~Xnpg=N%91}N9&QzVnD{+#WVCzY=F?gN*qAA{{?VW5%(5-`EiuY_LEP>_DzV$
zy}iqGy~l1Z|5YtNT63%>-_HBOrYTjEBKpc6nra9fp&m7J|JaEX#Y-U?JPG%CloZ)u
zkx0uvl!@GAAE%|cWk2TTZ&nR2yQ+S&7F7xux9PU{RRe7`l-2(?u-Gz&FW_);=uDQm
z)v$P>@6@nld1_BTcUclTIm2jz7R_o!qI6o5+pI7Hno`m_$|1-Db-8D&Q)a5msaM9%
zZ!}DgY3)^cj&OgAT8crL0tieyD?_+gZPxWAFiK#EQ(gb|0jC84erx8m^KI06`r`R*
z>s%emf%S}~iTo^M=8EM-n^_zCyP%mRhcufxd!NSHIme*UTeDY-CuiSXqp;e}yC%uc
z&D({??ag}@`pvz+UY=&V!1=)0YvE?=sO<;8&h4M`Hy)=3MI$^P0>Hr`PieiRw}!WK
zS*$j{0yx$o%Wp_)r%|en7Ed-N-12SyCq+p6ue^JX!1)hxy#5;J0^uTr6_j2J)#{^M
z$Hp98FLWu6#x_BYWgYUQy4h)@8-h2jQ1&bNzj7~wQBB@y1x#K|@6{eKMaF%Ta=KR-
zTkz%ReI6H^r{`B29t|QB#6ww=yToT;sHdc{3E~rH7dHRBnJxrfK{;i1fUy-_JkKFS
zyGEX*O7lX-Ih1V+M;u0vBmx=1@|a~`UA^bIVQp&Ry4IVtv%+7TW`9!fs`mFE%+Q&n
zirwDpmrmd#;<cVPt6%K6MK|bLl*bu4FE4TrV#XH^s;=^CZ@u?vzMI#&EL9QBt-I6~
z7ygh%`#Hp0PA``0Py-K17e%-pj@hG1Z`xRpb+L09^im$Kl4b$yPFY699S7R4(r#9&
z%h!W>{e%htHd_G@C+aBu`HoZDebM{&b5{++J^*>}z~gvRB|gGV1DOV8T>`M#ak~ly
zHlM}eyjUA1K>SCv(*!QYSwkOa@$D5e9?y;oeW&KN3S<ke1+Z$AGk?6z8XP+zY(OOm
z$T8|l6o)VRH3JDqC_%f@y!?Vf$2FPo@U*iY6X9}>w3oIVg7#Y(0tz!CY=UG385N~y
z;XC;IPOb(Hi713+H-xwM0Q5W!eCzL*m3-(g11aL^L^!WAEJ<HVwMR6e(Y@rK)3>MU
zJ^pCtC_MqSb9h6AeTR;i9`<MCXeNV!C}tSl!6g%v*x(Bkj{qW{D4`oXvd<qBi)n~m
z&A+f_ASF*)1W){o#)bm??r-TqU7~q{m7?WHTc9)4B^}!vy}1{+R#ox8!O&Ez2gR-l
zum!z1QFD4;>v{aO(g`5g!6=z&-u<x31boA2KPT%TI-l=J^lS(1THE|JV0d9J<5<a4
zeu7I}qX-`N*B<@gcbf=Y>3wwRvz6jzDJiY-@V*BPlfcr@ug6FAtoNHzMLsAc3zjNX
zvdFDK=xr{9!hyGuenBbq-s`GDh!=_3Pm(Y?gM7TaR|+-XWX0Ok%|)}LIonu)d{RJ(
zqE0er15IBvkbsaN17JiZ(KDnOAfH7vb{!1S{91pxafO`Ps3PNcs$bTaf}zydnA8?K
zS&m)u<XtjbwFkj!mLAO=JX5K$@yLNLgRT^{sW+F8zVei3wgpXR!v)gNcDq-kV>!VJ
zWFOxeJTEE`tiVj);KU~z3~07<+1|xp#=N-N(L{r2{szOWETSn-7;g8a!ev1#h|(UR
zJeFiZ0I6KY2DbeJOc31cy0j|+F<)-2ACi+r+*z1u!geBT&cvf%kU@Qwke2U_oUx|X
ziUPOVs^ge1l#)k*fV17gI&Lz7vhyFIQ{uDMmqKelL~nvHFJ6CCxHh}|v2Z8<^#C6~
zQjUY<_exsyD03O0vR3lIZuN|jh|q!Cesmg^r>Ad^=c?<kG!Y^&@xc*~T;e$kEgsK?
zm+p{=6x>^Gk0S`be~S&vV%!7sg7AkSv_j}X+{$U)<Lj6nxVdj7FczP0c(lf(m+2v{
zb-83}Mw!dp(p6FWs;cbIK%_2-V&;M!HoLShd~j|hYj;eOv8LZ!IHj@tQ%{6$Xs2{u
zRf5l6;5O!Sw?y8v6L>)Q?>Cl5UT{DoiVNV-D&$S^ZA@L_mOAQX3J=PCVALJ9GSw#~
z5nY&szi#{1u57FEN#qxjw}E8isJicACG#$;-p~Bm##giR9@3wS^MWUnr1t^VnQa+(
z3RqsL>6-bnnWz&F;tzR9?eBk-rvEyMAMrev7vBe?aTb_7A#!qtbGNhEhj&4NK!=}{
zrlC^#tf3bDyVet04nOsa@5O%tuW|qQZSS!NRxoU=Y}wXXZ36I<69pZZ0wTs=Oy5rp
zL)G}b>*TXf{>@2m4DriggT3f<k9B#?@Kd9(M^QhYFld8{CeaziM_}hY;|gK6xJ0e4
z%F9F`NQcahY<LUF^^Zs%jU0%N)ST7M&>wE51Sft!UNZ>qe4JGpYCo&WX5)8k=GIUH
z>~m@#bObJtKc2DS_ya$GzVo%wH$~;wZugT)y)+&>AKqk)eh>VaKU41lX0;Ri{%xi~
z+O}oaeQ_pOjOU|<9?9`c*>mI-T4Y>FX@Nh(X8STtMQ;E4Pl>C`_niwO5lsr8)IR?a
zf2$9`+Xv6tc`tOtO7?tl&3YfF=bA@1Uy$mhqv|uL>wHRr@Wce{P4|W3n&;Xd)fgKZ
zIc>;B_8;HN75?;dQhu7={&#S(|4>0d08#Hr`;XDe;Hke%*G2?3LfQ5JSYrCI^HP^C
z4f(B9E)4SB?zQZzRwJG3oZIy+hZp8c|2+isA>Ul{{q<V$WFX*$>SOS$<vB0++uq)&
zm5PU;{*M+CGHe!694!ng4(x=(Kw0-eKL5tj_f?eGx-%fO3^pi7=D(rimLJEP`ao40
zmzd9C)cA*}0H!PBor}<WPUGvQB#8Y4s0_dqR5!Vk@r(EaZqx$qXTL)n`PPMJ&d6ZC
zn+a?iXT)+Gw<sac8Xik2v8_YRXZ*o-YY79DkfCN!+0x0Dsbn~48EnWjvMuT>4QU$-
zuan2<QrBOJFy=EEc5H~gKor~P-oF6`o0}Kn5a(`tQQhh>GAtniL1o8r1iIi*;sJn>
z@$eb{dsaZivSQ}?u4(Wf#}_gSymhIm%HK)Ez33t)y#+}e=j??sm(#$>TVkOXF`Vw4
z8{b5UBJ4ovZ!UDM6dH@=WCn?j-DCP1s{A?J5?QXyw;hWtXJLK5NwXXC!jfJ=agaO8
z?qh+NnLxmTKjTgXaI+5ks=OG$HsGb?9#8B)Zjsd0<L{j0x9p8fG~VUF6^-H67KSkh
z{5&*Rl;$0(CylVBwX4!tBqlK$P@EZ%_4}mwL<K;X#PNzS>LBv=NzK4Ws_-~KI0Yb(
z(JJPAor43Xw0jx)JchCI3Vue-s>jKSEgp){rc1e{&sbS;`gsX{#X~~jLgSZsoGD`E
z!0Doimk6|Ez3(P^oA0Lg$UT)KyK-rrM4a>`zRoAIaTGpD6^sf2UO?v3jppY8a2%$f
zRB0%jh`<*bPzb<u+><$E$yf*ka8UoRq8N+AuAX9$WbjEe`w4&pT#i}NdwA!O*wOCl
zy0Y|?6=d!SN{C(pla*yF7r7$p*@P4Mp770_{?c?h_|BfF0Trzgyek^Wp?3u-g=Xm^
zvk0JBXUMFJOKiC@Y+C?!A%Hf=0XxW*15tjKlTx{$a`t5c`rZLLktBDH!le!5G7u3A
z*kx?sw~MDptP4x5YrfFG<t%bbz_uj*Gyr@kn^Pc7eUQomrGv5Vp!B8rg&$8<0V={z
zF!NLLYSZWCMKqB0X!3#Xr31d9Y3+-HT{9t?e-v3h9jH4m<NFg-A5O?BtLg^<<vc?~
zGb>~krmK5;&eDLYWLDNR(wT_>AxJci1tdZe5n3x3N~E2^gAA<7B`Q|LtSST!f<;b4
zb;Q!yofY_c{aNgH`4u<WGW?mvHzxNLGPUDD)^ygn=uVfQecur!r7ThIO63-Jpp=h_
z?w-mG)w8%&;=^c#(}w8CF>{8SlxeUySybx<z|_ZrFu-N}-CVm7B-<7(TcgLgB)DxB
zxdB(D30xu@8TUNU6CHDUs+Fj!`YA{C5zD2@2QQnV<=T5zR}NLXX%=6lvAe2g!kets
zRBdc#PuYHMEST7&&n8yI!?p@Xi)pog(VEf!ky`t~%|_SD#<uxMLXSS?XePdb2E@J9
ziFc*AEE9rr>^v!YO)$G^H8%BF0nO9JW~$@MS;s=I3pYgUQbaDa%sNw_oll>2n%s2!
zID1}Ym3!{L*eAKLDI09Mjbhp@o8Ql_WmS_K#CfXH)nj9c_xczov+6wL2_Edk%EVP{
zyDNO#m9yPVe(s6`h6kFbKJQ`H73($)c2x}XFlqO=7<NVFCpXUUoR~Pn0xE7~`_scS
z%*&_Ut6a>}PyPC>u<H@F*Mr)xQ`EiV!n|MXUr+k!ou%%R8%9nI^LhBwr(FF;WwlRr
z`;Eq*H(J$g>+;kW;xGgKJYBX}E+d!Ceo}Hd2_MFdAa@plUH?JC(_MR?g!yk^k54C6
zHE@F381*Vi;bnE6<Gj1pBHpBU<yPp->eoQm7-j1v-6|+nD8D7v$W2N;`1f@bXXV`r
zs*mZCPsN&tx};3cGk=rkp?=J6wg7)+Q+3cg&4mFT2X1rKUvLHH5UISQd%)Wvzc@b;
zZsFes$PEVip1Vc<<*jt?v)65D;$SE?Q#bh+T#U*xH5gj|{0<PtxMlNvFH<DUIVSRK
z{+$yp-YmlHNLPMEGh~-!l(O>Oe&f57=c2S>ckSqD-AWO+L5Q!CYV`?sd-VgtXYT+t
z$hBBfnaHhj(yiNW@k71wGEymz{$pwllGI3a(yfcQ?G|e~M1fTP`vi;;s7q>KN_N=e
zESyRXtfM?j{I-Vknz|7haS<W}Lp-sLZyZeZCHz;aq6dZRZ%yq$@#$1<E#{^4nkR|M
z-xFUg2SCD;3d703FaQgWrK5j=$FP^i@Pq7)(i(c%66Nfcw8{8bGM)06gPQ9io#$1b
zNAuwrkQNn7%KjH$G3E0R6r4PdEHw=+?GES2gO?d4zqCzeq+C#>&bOcElfQg@nYyW=
zeL*ZCVYK{}X|;k$g*yD9oas*TrONe3-9HbqWLlF5=W~i7k?i5gKQ<pj&DxGl6Q|9d
zE4^>wFl*JQX|+9F2$0GASq|=&Y3@sISo`W;bt~_@8B!bBw)6Ofxf$5P?AaF2f{Sds
zOJO_udvmGj%S+j>?#;idxYCjM9dnAX&v?aWXdrS@3VH1Z1bzdSQo0)6Ja2n5*@0{)
znu!@DsPx_Zl^PuK*COY4XW9L@oa*@|ySM$N`}EU!inm(>ZHL3znEcU8y?yn)JnNa~
z3icgneid6Zi;J^Oa&Ovw$B$Uvf_%21)V`6o0~2yR4rdwnO)o0)Zwr&J4_1)C7OK;W
z?`o6{^0XJ2Uc7zdyD<(*6Ng>Yga)0B$e!fcl0JW&ka8U$<@X?{>A~Xw`@fx!8oO)&
zd=Iu|K76{geP{a}mjc_Syw||wJghQ2XH+<qy@Z3jD8rR{IJ$l``dR7x5;T3uqJ{68
zMnkXnw|`P!OG#g?LRY**AY<IvfUaMQ2~Fpwn|^eCp<Z9r^Ixq931AT3#ruyuVqfz}
zU-NBh^0vdUtv~Wx26m|-#i)*+MQ!#Uh)?dEeYg9a+yYxkZy~eG%VhjxQ&bS_Vy8ES
z6Ys>_<{#PIH9cwmy#n};7|y(rvA^}MUAcK@zv#gFkWp4gICK(8HXC2DBXnMG&HCuo
zsL1+TGoZb&`KQ0)FY58s{&@ts^_eFS3?iQ{oSpt#0ATo}<;d3|tIy!{9Q!t%a`GQ2
z4h~UD*KgSsQ<4oYP8C1cS_mkk4+D6enlV2>oK8{TjAxp=Eg^Ef<uuyGOgN#H`ECp3
zTBdmTtm2=X7gy;})?{oM9@{MMV;u;2%+Z@LA)4Is(lG0_s|e^ct=laIgho80Xb&5M
z-7HA<7x0+7GwffE+Xq_eE;n<;h0`wBqeh#b3zxu%ORUmZ6vl5>#qy~c;eHBvK$eLs
z<-??r@|!X;PxDEUU?cBU3g(&!IQ(oI=X=Jl`R@M7_kKB(qXj6Ia`Vvy9<9$WMxqwK
z);SDcp|=5POqoto%6Ct-H~y`s#(P#H7xsl-TMAc#E}U3u7Inc!j;F^h$3#?0#GdHi
zZk16~IpbWR_TeOBVXsPmY9`Hp#^fZUDqCPNRXjowv#t`Pf|Nylxa<3JB+z-{>lcYK
zoTQJIOk}o<yoyx9zI5%<<hD%@#7dSm`_4H4;FIF?>_Y>bm#i(IX-DF2MU={<mAqla
zg~BVr>6|EC&TY4l`L!nsB5t4j5*7cVmA<xDGy;$wI-eJ()yJt?w>Y(Vr_V82Yy2T=
zaEF{_rF_nvzEC{9g5=`lYm?Jj<~;3x1sN@4Sg3+ddx=tQ55)gz{c&1wT)qo1Crn<^
zy!c8-gli=QuRHrl*Kb7mU>Y|5xc&8@-o*pGYFj1%DeK+cO|^$)zr<|SGwrj@3<GPT
zq?+c;;f$oK$yv3Zwuf&HdJKQN#TG}J34eKu%vEN?sL&|pTIkKx9;1srg>!Bf6WT6H
z-%{-<SJhQjvWnqTcnRCj^j1OI{EZ6vc~~OJY@v0_f}plT=d#4)TK11vMp!@Uf3)UB
z-?Kksih6#d+-0-=-hX~f*9ll#x|GZ1aJ!&#Tc1CjHgtREWtVfm99$_5*FQU`ft?rh
zu{p+&sB2C>6sIJLGY0JZI~2Hfi-ApN+|Om`|C|ji*ZpY!`j3zM&7dj+L|z!?t|Jc(
z(&pwsjD|SzOsfIF0K7%_{eQ1NZ~D2q>sPsd6!R;KQ?>)ZIATOvy|qOjjEFzoh|;Sx
z9YpqLx;<TxfByY%bnl81j08=a-c)<BeXsY+{`r^wuRnXX>Ab%D-79v<M<*&ZhwRP8
zqM{xw7^q>YBI<4K;^uXu-8B{vOY;5Sxo>Gj&7-i5-@hAs21drF<`zD!@c96ISC9XJ
zn33$?+Pn5qlCp|t&uLw7-*(Wua@FygdoQ0b!!z=JOhQVAtjUA2%G$^G1B9Dj_YS@p
zAJ_5S)t&hM<KWkaXD{|8191#`^m~a+9D(H81BVLhrLMCtJvPQEM0e<2@1b}Kd=a1(
zWZ4o^`Oe-d2)hnSOn+eNq8+j7p2gxlP@R(~7E1<m>p2l|_}H-uqm1av`2<)Dn;72C
zZgrImLy5a+l(;YVUvzVP(N%r}BRl-)>QgUM5!mGfZY%L5o#NHUD3si;63i7i3}h8k
z?`Wu;gF(=eMxqgTy&-M52%gA;0~#a_5f$CX%*~~r03B^YIVMH>qovq~(oO0-fJsrq
zb}#Zm_~aYk`&i%ReLL4E@qtKs_tNn?C6QZETi`s|%@Br_=9!+<5$j7q30kzl%&W-B
z+$w4@?27kJaAT1SC~nCVOu<ao^|t|v-`|!$c3p|g@~_?gVD__k-jf+2Vjj4N60Mq;
zJf(3-389YV7)O*a&o99UZnuK+c!z>t#uW7af8;p*6XQOhs7w$!4#E?-2xLCIN=sSr
zJ7)l7!&%apI6_0uq?r)oXvtQBOJv}1xg9ul*za5=8lt-EexJ!a=@V16_|MWbn}4t>
zl=4F288pnPurKKho5c#p^_mX16rt`R&un8QT+KZ*aFSP+bJK6Z`-XuV_<YTMVl~xt
zY(vOTU6Xf_1DQ(n&PY(OA{(6pX~t%nc95M=$ZiftM?2ltZ~4|PGG3@#Y$6X4XO#Bv
zNWbz<MtS4&l{>BpOcs-b<eAQ0Jp?u{9MIBp?;IU5(20w-=H=nuMoMy7mIS5v?}9)=
z;13`_&KA;Q!?HqhtTVETB!J9grGOC3PM#&TOgw+|T6)o~pl61mnIP2M4WBcx$x{3#
z&4{N?8vgUuM30Nn$yGh15m_mSlbJg!u>C`r89xYl`_FFC;0iK`c9>nV_2j3f7PxKd
z(qoSiLyb)TUe3kBzE1V#7cz*+JoDHmZ`-wLW%_M#Sf&g7+=qar<PX5kGiSHjIK@HT
zb<QlIzj_d8y^k$3c9dfRQZZAB{$7fu^=a1@cCsENScmWPQ9MGdCz>%eTE4$t`;wuK
zQcFoWaG>TP>kwF9o10A;`a<UoUa+<7GCP-&e}E(#0zFXTUibRf9&(lgud<z%AS1=S
zkMR^??aXx$8{XTXUA!$m1evN#n@wRd{u&EYs8RxgI6`lu5z-|S4&n{$sAE87q`zi8
zQ^UlY%C@pp5OP5FO|%&gXVxx2vL!GM<VQLBoM5Q*4g6c*`vkPpRNJD3T7NwL?_W{K
zSV)*w;bGm?uIXz3TaA&<TOL+4K$Fj{Q~r6up#>|!(i}c$CWJD=fe31Nw+ZFbQubQS
zbwO6JLS`m2L8?dOut{7bg0Ne`jGrQu8$5mN{4A0A6{drH`&F^)E<Trm^R8b4I1U>_
z(-O3Q2oU^dZ*aV{1w^Acs$m;4SCQ--dVhKM07PrIx^-~^qMa74FU7&6lF5;UT4rjv
zS+ct6J*aglmj9tNjn)AY9PcJuZ&2KeK<ya9)UM^)7YtZ8cSy_v=y-}R`^b>nupAp%
z0GUeBdJS?}M7F8E#_AoR!vD#<ffQ9ev0L<E;NcFFe!*t|+7|HN{5DM7jevFi9c|>Y
z1%Vw{w@dv7nOVW}#Y92UYSkua-r(G^D4x2texflNotYR_!2BeHhEyomXa(9xrDT?}
zNKF;70oKY4PNUY6gX}^s`?He=ZzbxIt^zr~0p3jk%^6J_S=1*6KVYWVdtoZcbJ}Hc
z%od>bIMTI0TD;oV$YYe_DJt8B7s>oN);o&~5td3<6JCm*nm}d9I7^!i5;~26X5ylm
z>m1gAF})jUHB2oV98dZsd8|TVjdFVJmx9UM=3kh4%BLDiEd<VF(%i~&yqrTvrbRMI
z5QB~}RJ<veYdr^iiyt6AdK=X3Jnr%JMv9px)#f++tb1Rq8{Q^(j;-nz;H+AY4RgVj
zS55u3X6w$KKOJHpmjY}*6jtr7n8wxx%LGIl>N#>)L?5crArV(L!-^KvAAeG{CH!~e
zgTRMJt-*6fr4Snrj&m<#irRy%#G|>As33dOiwsz(R*&$RKMQl&{m+shT<*-7jhw{(
z(0nVps@1~OH@$ORZ^Ae3Bp)c%&>Kn^^rp5t9;*22m9p&EG5K0cs!zdbhiCCNKzkRI
zFQ*7!Ov{r*=Hz1PJOY8TJGK#5<|6LC)sU)N{&uMbP&LPuYkm}P`PnnOTyO^hT-qGe
z#;=5^Z1gj`sF$Q<ZaAK&*tX`@9I2H|#l*@6e6IGzbkB*imT2_fG}r}9{jn*qv9ruv
zl#Ddycz3`?A7~y;xalm*cP3{Z_Dm48^XVL!13wN|x&%z#Q(t|j+4l@r^Vy-{*OEv$
z9)jd~x*<UYY*d^dy-@?Xl|qVct)YTh7zJk^P9K+PoXWj^Ar$Xf*%`8*Z|lO@qIY>}
z-hkHU@}*2S(Yqzrp-veP)*>?Up232{PqfcJwQYIsM*!B7E$17C(RRp<4$-&G)2tFd
zkZd~S%LxnO>0?hHGO6Fx`JOwzbXOeZuXA0lb*bir^?Jp%Kru-8WhTx<L8P{tws>1L
zxOP(di9OZVYy7ditWq2H>&bfej%LtGBQjE-dQ&gp#jF7UlNA#=;f4%^nMr&{I8f0B
z8s!V`?%|&{J9#_-^Sj=xm;C7;tS<2M_9)_-Mz8p!m#B4vUjXZEXNh~@uL|^6R{(7>
zepUVr5_(LvO=iBvE!IZGZ&u`tXbjiPzzwdW#}0LB+dkM4b6IYUAmL;3rF?ujXgqhe
z=~ZX4O{sVz?_YBIba;O*2~<>L+{Y}_87Ncp5F3v8BDXVSOY`|pl=Qb%gpm%*ZgS86
zakhO2{Q_#RGZc26x7|poQ!mYe!t!AV^4_55T@puFnEUzN%jd2K!I3|Sv?svi0Q{8E
zr`<t)-F?^jS@8Z%G8Uhapg!fP>T`g#Fyz(wdp<4NemJO{osgSers;sC4ut&|mE%x^
zKEH9}*f2NZBizyLzD^uK<B{e!6FbWAFWvmB?c(dvb6mT(FGP+hnjTbGd#t0B?v!v7
zjsuoyvL9t{Wk3J-pET*is15^iC&cut_m0i*(bF=eS>ewIRzu&aQ#eIRdKoY><GKFU
z>z#LlX`_w!93KGE+yuC4^C!3Lb!V}D;5FayYt1G(MH=tI$i=I!B<Kw)dMi2d^d+H6
z1DDwNmf(>d08rH>q<3GEHhIGvzXdjemy!^ru^T0{Cm3o}l_k^~0H<a%X#=23qb1;?
zK_B-2vHME!@De->H!X3BK`YU~b$E`uHd}@n@CquVj*4<JT!-6mu$7;F$b6CqV446~
zz8{#Z^}50lzmiVxyKK`y+UmfuETjjWSO+(_^3SnvvH}D~mcbLt|GY(5o00@YF+yI;
zEWxg<mym3XQ=PPk#9ooj;_u3B1xL1!A=-eC0Fp*T8kbc$CL3cVNCOq5|DLCced?Rk
zm_gbN(7f?7O%*@Hm(l9WoTcL;x+~UFD@a{D2~f@vMk`4iK%BCEb?LwxrV1+MoHFP|
zh)a;cGMBAu04uFqXB3%;M>@=)PTp2bRLGAYnFb!}a{(mph)TIwP@>LY+*~2;W)^-+
zIxA;ZEz=>Vkus483`{w_0$|zB7vRy7T7hCodr79{)TIUG;F-*=Z=(n(i3dNW2LFfn
zb3*+@@xS9qKn#ILz7p{gReETPFbo9<Fo&O@nC4T>WH>JvArXB8A89O!RmL@p^FVVw
zk2{O8hM%UWlU3xul_qRrs+iR<oVbX56;icIPsqtYMO;tfYo*dC97lT$%Rq#s5&fBI
zC8yROIa<fl8ol5sfPa~51WXjSU%P1J?_pdqML<;T1%0wI$}nvoRc<n;7r+qSV#Y3U
z&0E))Hgm7WuO<e50a)NW)&<cevlSiUbegy(^wXioS6i7mzD5@KE?lQHLubw1r>G{>
zGQZk-xNCbEEl0atpLjE#4$moN_ANjQygzgzadxjg@TOGn!a*lF)qVV2WQ39lCGejF
z6W6!ewzV6ynlD>k0qMgb*&iy&#mNmdNvTf2!-Oy)pr7b_ze^dn80i$yVO}_v;uj_!
zc7yI;kx-~a3sa{A%TPe7-#ER$`0QW5|750@RX=4lUq4G2DlVYf0fzSpc&*lm!RolN
zQWDzUC~fP=<8N_p-tmt>WH$YvR5H|#2CV{kiSVgw(-4Pm6n%_hOrsN`>k_l;Bs#nk
z)9b#p*2S-Qr*C>ktWQR0=!*#GiB8m_z#w%VJaY++nPQyf2FetT7R`))fY{(v+DLcU
z$aUM`3-rzl_Q}7qksn=u*4L*X+o!N-qp)H_Jk_V@iBECYMsbfcSA$Q<Y1p-}@i2I!
zWM!jt->2-jesyC*YQlif5*x8Xfvnc@(7<juI<+e`ig8*g%5%yqli433l!==H9-HX-
zzOp-;={w2S#QI?C{h60Q&OBhb8z2nL^4dv%h7t{`9apv&XAj0a`iG1dA-HTkd<=@`
z>f3C%H?~iWgOK~dsWZ){1XqE9P31Tj5}_p;(5Oj&$VG&QlHr+NJi9VNi}0r^GJSFb
z*wxg|_08If?>;*tunxSQQ{LZ#M`r+o0!#5qbvGn(9%joKhiDt4xL^n}zKc5je&gCr
zjgdgRlu>Es5RJim67<(lUyZ3Z4I}}O!CL72xJ?TnN(gxCR0}VV3@UNw!Z*;eWi<qC
zu7;AIzPjFXM^+<Z>sI)5eqbgx=R2k3W*1{~OQ-3(9V`8#T8_rjpwi-Zanj6dG1yC`
z#H0p*0~hmPIv-cVyZ{T4GA|G<H8gd}aQfdH8O+dWCxgA=I@lYGj$TH43q9i_%qm!M
zHdIer<)-=43Y97MT2QlS;)gMMOn1T^%fxM0`l!&>7}{Ugzn7&Cz(T{byrl`JlE+mF
z$M1YA;(=#3B-X4Cmq)>~to<K!6Vqc&(zk}H>?Bh<hO(nfa)@-GS8}-kp|l`rZ9lGT
z*C@?guRls?-|{q-Mz{!l{H|{L48~lQ=wE)6C}nTDzOYjxM(+le))2OfNLNJUqv1c<
z8pCLvg^61Ww%2bE+!cU7K3%!PIO2WGLcZtQe>n@@VUk?Vv#GwYXdS4yUxRo!KMV;H
z4<AJ={apRa2P}sDsBH0FM(>93_OeL%gL-K!EVM6Hsn(syZi6@7GjCp&#D3_;k1IjK
z&R+x%ru_D}C=~p5^yp?s;^>SL{S6U$aSuf|_#w?U{RmR^d{w5aJ8k?hO|QxPY1OrD
zbWz7F-BNnqU)pn{FtJY;IA@SDS9SSa)J3>4Yv&2;g0|Ri*A}Skdp%T;NQ4-d07er7
z*kerv&3wN!!Sz{n)T9H;O%ABXwVr*+xxAR_-$u>w!+&tTOpasWD%)-MQf>)u`P@x@
zZ_&C0%N-3*@o!MhluP$!Tmp*nrzgElji*$-tMdc82b=NgugL7Ks4J~Dc`C|ZK4>Y2
z8oXy(w&3*3+`cu*O&FBY%8+j6|3#eoyPnQ5%(2_|I9JJ{B7B@ZiQTEcCFuR-omF=C
zx_!=v2C}a$GDRlfK1J4b6XI_Oo);&J>`+*7Af%gCy)r$#HKF^P10<CqJuvZOVnQ@_
zl4s9F<()5J4uWa?irHJ`418K3hli!&w|1NV?1`TJe)(McB)=ztUyH7Dl`Bzz#%p7d
zA9M**LW2`wjP4@Fk(EO2Q!XA=G@y;6;Q%Ry`XL_*H@DCqpU2-{LJgsCjh~45p?uC9
zGLh*r`A>Vj_AfG;bCg4aLFWP`RoFiENl88P*I~8tN#p#qheacwZExm_@p7vCoz^xa
z{BT*6?ax+vV-utE%<{X-`P?a*E$3(pXF$ia7#D3~=d!+yw?W!4B7BM|7Vq>%jbh+;
zwff^l>{V-KE;SK5!fz|aOZ53!XH*H<L7(e%iyEjy4Gr@`Q`vn6rUB#}Vip(HH`Gm0
z{Xs5()0Xa~&u)D8!5@<(mFi(zAlFN8wA1)4r~Egbl3^NdIoJ4wytNLD%UL}YvrWpa
zFGvFY-q{7A{yQULEpk`*68~+%jl)a5c&2mae2rvSs>k9#q<1dXTClFWd}^Hbtr|0n
zlAN`A_zcBhxBV51S(O3Cpq^Sz&R@X*J=B^#US368&v~-8@Q1&5T|QO(^CBt}5LB9@
zIr#;w;{^x$Z}me|72pQt*NtJfC0={q&U4ydo=>hnpWHpi>HGD*Fpzsc3ECp-BS-O4
z;|V^00C@4U;OLiQ6fOA*GrS>OpY@#^<;t<CghTydbfp!UU4z2@6Pu`U^Sp+AU&kP1
zu1$>FImkF<uifL$5BbJ8*Y|S|25qB-Z|8nf6_)xHtkr_<<97eT^Xa2^HpD*F^;&+w
zV)$MAa~0gpcSAZ^937z3O31Hw9@s@?oX;IDaQW)%c=8s}{exfo7fO{^lJK7K2tPIU
z*?Vt(k@1%&4gTJ>#@$V{@Zt2F9&6W4t}brjuAJCyupNzR?Ts?G&;2@jS8|%{WqZ=K
zU6TPX4zQOW)u=9>?jiD!wKR*h=t(J>h5TN;d!GT_cY+G<L{JI~vUqJL<T=5A9K!8B
z9NPKXN3>nI6#U~*QW0n(+VOm{=;?S`>r00x^8Bwyk?oa&Mf|S!t3OQq_Z}7Q{(SJ}
zqrc1hCYrCqU%ZNoeEpTL?frP$#h#B5XJ5YOM=cd6(H6_}A9T!K>wH+;9`r#K8o{7{
z5UzB1`H{b>hDbj{fqL77$Qj=&g}TpcwGV&#&o0a8@tq^LsK+rxnx}aKgR8-YKvFsx
zER5n}#CCVM*W7H4N=(x};aSYT_8hgPo&PMk{mVjHQE{8B&Z<SEq@z~8yX&h>mf6v%
zw`_!Yx)5jJ?LlX;51kLWlpbQ`y+1g0m`*!&m%VVY)UmhMX}SI}`zZ#8`Sq!E8?g9L
z5<}}}qrkx-Se}l#I%kTm;fG;x)zvQxW*Vr)zhUclId|{o3y_}+*y$GF7CMbSJHM>u
zDg7)W#I>%8(td@`Y(}xTNOwkY`a)z_|GjhkIeg&!f$^~UjMs+Nw1e-z*)u{+azbBR
z<GxJ3($VRBU;lT(Xnl(Re!S{S(1n*#qhAhkZI2q`KqH?z&ipJZjC@x+m3{3ZHzVx(
zhCG_FTUsN1ZQ;-7%EW82{&BzGvmYCtEturt!Yw`6@;Vteh&e+C<fWe-5mE~&s9@6N
zFo*UIK0fQ)&7;2-xOa!8v}Xf<h}Lv0Uz_;4!DcI76K?~nWyaPWhwyQ+$4muf3f^-$
zARuNvnD|X8XL>ee>?{t@EN15JDGu5=`x`6X{QKd{Zf;+0>a}>wgrm%#I9Yo-ZSOOw
z=H7Vxs3%8YerroMRg1;l%=6CH6VDMrw_bice^-y}lbeEkmny@obH?UAt?m5$2W96L
zmQ*}<!T9pkYu5vA-@le$UYJn-yjhsX($a95Rm&#}NCzS1<(%zZDReMKf#Y;|TCbM^
zVeq;1@l6F}#W3@vY7?I=_xJiJs<RL#qWhE3l6uxlbD|^&deW++rG>nV@OsSFV7CXL
z#B=c&W;=O3d7l!C<j+pkXkF<y!d^BHCqer%*%a^Og^RfIBd)m)$=nQ9H&427L!z4_
z>pw%NgtVDCE#+6<BPRCM8@tHl%0V_<VWM}dXfG2|Zj5R@JSA>!Z|N<lSC?7dt8}fW
zJMCsxlj@6z|1^C<mQJ@PD#U7>auYZEj4Y)c`ofuanBxDb<ZUn3r7T#;?-YG{QAc)1
zvTN4OgHG2s%ta;E!8fJ9j^ru6h?w(=ywM<;$8KXkR`L5_T_1m7yZqq+`YA16nQ@!V
znfr7ai&fpsw{<{hI=<t0!mS4%j`e6EFbl^j>A@wdTJ(^L*7`zsc3LIN?qVm2X&~*u
z<%(Fgv&6U*YhpE7RzZ^v#8$wS(>N7+vcMAQXrp={8-AIIO&0)c@UAMP#-*5gli^G*
zQRUz&2UlvH6e`^HF)&<iLrm7nsnt-*y`(h>Zrd>g;V9U6R9ogiGb-Xo3AkNS+wuje
zBdp8GaomB?5MzN`menwVV%JwA!Y$t#CDm&hBA0M+VpBsS9_663O4mrrth-(72jiAc
zT)$XcipLRRe=oVMyj6W!;$_a85&9nlUGsSQm4xm#XxxTf+&ULB6wTlQVvI7`&=^I%
z<vf!Fxha@`xL?1az_50Ow)yki=y}dm!}eL@02`))`=NqZqrf<k$v(@*K&}Cer+d$?
zI)_wq>finK_4&2?42TAa0-Vc)vT4a(2Rflb+*~BsNYvWfmo(7a*sdTu9%$ew6qtV1
z)h;>periE8$sngd)ux6e<||Nu6q=hQZB6z}ezCi>VyovuTC)`}qA`^x2rYaw;qs2~
zO1!e82V}wq*%#Lh?j03_c*47qii?NrOQ@$q>{Hn<>+hgyUl-mXKbf_d-)g%Wp|wN#
zR`bID#g754fR~@8k4RDT@ZWk&Vw=&8-Atdg_WYsmsJrcWe};%4)Rfx2KXTdj#D74L
z`+D#j`9bZFNn^>Eq0^U*b#77q{CpwUC*SP`W|f=AL9lwlN4I88GVcCd2*@}3^)cb|
zdG*hJgAc>M=3jpm@vSW3Rp=bMzhn$a{{Ky5*KD-w9``-{{OZq-Y1p-sZ^Pd{MgI3W
z;ljP&-)dj~Q>ytkaqsW1Z?Eq&7|bL9L<0{}hu!}rMFL?u@KE&$3VSRGEY6e8B<dT@
z-A96|br9IXCSrs`jUf!E9y)I#R?@%~Vbh^Elf(i2R|J6R&c(ssDhV<J2yBGRZoV)P
zCWlAYnEBpOLEUC|^;npgG%ProEfQ7aV%@l^H4GUt?LBc!03fqBPZR8!55^Zzp~Z#+
zp~&LbNL$gcP^btrmX^pq4S=hYPO*QS9T$!c537r3&Rp_K38x{fl?0)_WH64HuDV+{
zxLRMH7La2k!d^J!H=h-6xk-lah@U?fwhR|na=;j#H?_*!r(AU+@Gz6I;1QN~VpI>U
z<jiIWO(pH7?*zz2tV9Ih0}&w+5dS*Z%v40cts4M@1FaQQSC<tPo6`3w`jol!RDG|p
z2Fvbz>${#UvsmDz_6?No_EW{oe4Tc7aCvl5i2zC`6iI(QfBDW_$o)ENaar-zk-MY8
z{5N7b5PG{<7Y7kYhz1$qHb)JXV8p<4W|;1_x011SkKh;Ry%@doW!Jg9soTB~BlZJO
z0*1u2XKi@?R^?a-EQjiY$181kUoM)PsX6zNU-t!d+|#@=DG?9fVOs+5>op)xw(6DG
zT4rt>wehi&X#xnmwcimZ%Iqr-zM7*8gtvKQZP+_oB9ls0h;~?5L6|&Owswk}MPIqN
za`{a}gUzWg;q2<edFo3vIJdzsldJgF`Pgp69X3DS0Oh$213J;0oEDL^p)S5zPYWCV
zIJH=rpf3Bdu(_w)Q$C!B5jkPcaFud)<Xk%(Rzitvr%0p^-}nkbwG7Ly%OP_n^cK*C
zbLRK%(4GJ0G^^S@gEP8biZkV5az48lbl8RWFy|OVi@l`E-!R`cwEZsaqWi6!yS~8g
z!O_Beg;7`gqn$4TB=KqNQ^bfR1@g9<l@=dbQbk*gq*Ltu>eh;+h7C&RwJ2_0o?wYd
zGIT8tfIgA#Fe(8AmYF&2D2R%l{p%aA*6qr6`%If>IGw}53S@`wfQX^~FDgMRG(SZp
z5*Ntm5}rO>Ab?<pj|X<3!3y(lKmtn>5~&@1(k*)cp3LfMqdw5L7>Vdu^VQzEg8u6(
zso908y|dJ1IP)l=mW=~0YuDMYxC44-K&va`8m=&xLPWc1f8o2Z`i2>HfE$h?3o23p
zCN~)4jy#z_bS5BM7}p#1ln&&^7s9#1>6e#%g$bMs6Q7m>)N%4Y0Lg@L>d8}c&2kDS
zwO&|q{tf(;muw=s4Xdo~Kd7~tm^-fPeLirj>6T6`JG*OJtqRz)DKJG+PL=D|-RM98
z0Hv)0sGJi!>QDKI90{dD-dbEFA)gI<*DBKt*JGcxrrFu6`VX%Sn3GckOI+@fVDU&w
zz$RomNEi5V9UINuv2l}>PzaVgqG4hW0Nhe~lT$pDD2H~CJ3HyqKWGQ-wf^^X<q~-A
z3lu`8HtBA2@WRdcm@{L)Eka#Bl>9iQCahoWQ=UYkq`i-tJat2g#-F|u;%+ry+&9pW
zjkRmex)Ouj!e#S@L4e`_7rriMkB5)F5{2#Dfjc9tU&35B&fMxxpem%+ztNM+NA+O3
z@F41s<b0XH+st;m96uy%`SgArw?7I5DM(avik=6amD{()u<R{066wXWBss3AanJB~
zFUFo``E=A%cg>IRs~INILoYro-%^Zo*T2`q=HdH&di_|?Lg~&_B_KQXo$;v6>pOF1
zduy+aOr_(Gx-OFSm_$!Cn-dS_#+q_j4|_UGbLqkS!HK+n8&M88?Dwa8hqkjEv2W>K
zY99A;t7u-Ev(9kkIZ+g>oj0%@^7@Y%<u0IH7}O$<mVAFx528~%0=8ISBwOzrLYQX<
zjw4n3-dHV4{$lX-Z-Nf_$r+Iic|J<tv(?u1Uje>fu$hRNdq9I%;o0u!lzqvr+Rc8q
zkz8vD;35H8Y01naAc5FwxSoub0>wr0{u!cKk#m~>2*<}VYx*hg;6QF#BX2CmPx%5{
z6y=p$oCJV^@dp0;BII*K;}D>u<z63XfUz(v$vq~b{`JAx+@&dKUO_Au?Sfxjk3>fg
z^J+ZPZVxY-CXv~rphVk3GC?K)Pw+sCOoA#U*N>!)I?6<>_Uaz$gSteyl-k+tfGgj#
zSP#$hO!IQAcN}oWzPu9CRKTR(QHsrJUx~@pH*M+OjDGZn@nFrYFEw1?;tZLzOORrD
zVeyvPiBC_W4&aD_;(Z`SCFxi|%$0^$KqcUPTJ|M76;E%VywwvZZUDNT3}5QwnD13m
z0%B<`3P=4CumSt;@m_7^svgnK+UlddO6rMFtJOZ$gV(x=oflLGLktGjJ4MkZaq4IL
z6zmb&)VfRIalbiYFC!oy+~O}TU69~;CC{6rZvg854!wM6Y!L<Z;RRR|nVc4}*GbV4
zq34ys7tRuSZ}P+r0y`Z`Al3q8H=3?9F7`*ogV&Cb449zGmGmrL6MZ}~mCG2#%bRP>
zWU9fN*%zn2%43Oxq>_j|`xhWox-Z$pb+@p>oH1BsJyOk59-&k)r<{lBP~ozpgx?_u
z53|$`sqE3x9+9~kCX&5gbhPXarXM9{!ieG4#Y5}qlKb%2EihU*fUfkWhY0DjU>OKx
z@tS8F-c6T$+uyLrk}uuxizAI`1JraPkzl}nLSlCg&-f(89qj~RvUrfE%r;F+UY^Ju
zN@ee3(M-OQ`Aj>#+d|hW(EKkE>qbubUO?U=v+NY4COO6~e2<?r&%D@kv1WDj)8WN{
z4$)`86mdfG<3-xVjU2nqJbUE_#+ICSqj=8rK@Eqq1Wn9Xx2kazteFo)|9p<Y`J4h2
zC7i-#GC5|Ng&mmT`igjfK*m^P8Ae7hOzfpO|9cx9DxF6U&Il?LdEf-m(I~V6Vt<>*
zIEZkASVy&5*@2iGQ(t0$eg5ww9;6-idvM-CYF@Gr<ewXWyG7f-;G6`^GV1pzT5Xck
zId;ic-hZhu%bxE+J=VA~KY61FQeWs&ZfR>BgZ&GwEG*&{=hxKa4<$-rGAHR*;zZ)4
z19@t2&-fbXmL-#u0a8=foviBYdAVk%<mD|ff1%5J`J+Cd-Xsp?ml|nKV5QkIw!c`I
z%Jgmh>3}-)%*vGJvuQ1PX2t)YYTNmr$^};oIWGJa%v-tg2VV6o21kHc2a!+hX=ClU
z8RD}mI@|Gw<@`UD%Mf(yUs*g*Ggc}ShY@UH=8SmSy_}gVhBhX*%5eaI$Zs%!4FCYh
z$pH2NrjQ<B{OJj=kTAcn2trClP~;3sUY%3%JeRU2ud0rSxFr8Myr2d_RNGMe0#O1_
zlr=P0AYN85wooKmoHf64&f=<u#Z_%<2fXPe{8eYXowI?XE78T%lyu$P&Bwy)rj@s!
z&CNi2|6r$}Th~IuU2jErM%?v@yno{^#h)A-7!w~Hml&3q5|NS~m7aMoGdqrpHxbL9
z$}5z?FOn%Jnj<2fFD6|mA^T8TzCuB{Rz<Dutombhji&Qjty((m7YOZmy-q!YSH{HG
zL=&2cY4n3!I-Nc}J-xoZzPGpc`}gnDr~Ci>U}lh+qGMv?;u8{+l2cOIamduH><4kD
zwr^fetRP=e3X6c4AX{k>Gp-KDQvIMLix=0B(3IMe#mW4n>qTl|Vp~dkYDahfz+iNG
zX7;OrzM(<dM1N00ZT;iK@#$o0MOECV%J>h9vG3~M$E-hE+xfA(H!+noyPwT0e*6da
zYXR4(Ei(UHk@`9&DP7EdsKqs#08!7ul@sVXP<|pgoRkPmL}Mg<a8Fp4#h4A`aC-Gm
ztdltgB{-xf>EJB*54J=O%ayek`B?@n8ql1q2^Rym!l*$N%Sl6HZhK-^+oPH+ac(s=
zb(?ydS|zw8E~w&TIkVU?J>`bq^~)s*j4sg}lW7SjLg>w70kNy4mr5hwb+T&1D~;0Q
z*t~JAbesrO#33Ge+F$<hRto>^w;g*N9>W>Zj&mLzAuDgwk>xg8LuXF+DRZ5@)VNVE
z+Mei?ASP(f2@*Y{4f~aO{8VjbRX1@$uAV6ilxUDypwPqQMqrMQ<RHZUcQqCvsL8cT
zGDM<qZy%?qetclgg|p%q#uL|)*kv5Z?y<KlBMlgZXL=AxEK(_cU8fctPOzcYj2y3x
zpI3z$oy$?i2u1UYA~OR&-X7$E*;;VROf4ti^ukk<PqM_45(i3PqN43_04HXtHoPNH
zhGQ9bj=xlG8K-hwNxjP2^z^i>#00$|qK9@dBIXozbAOKd_J6w4mp+0PQOkr_18NH$
zZV;IHHP89Z_3EfY6z^KWqudCuq6ghcUo{<qH@=E!AKM9|PXAYh&oCdpU!%AZY*s{m
zF4uk*BcVlV0t~29wbh|b8@0F9H}%0td+8N{(1f;3kc?OZz7Lv6T>qH5A1f)OA6=KJ
zhliAqLE`e^apQ>FLC?*Ba<Mi5#A~CeGEuq&y74@cV{%wz*5$iZ<%^+1cjals|KjN^
z+?xFVx4j@1#9*|<Haew4!U01%r9+XBG5|qZ$EeXGrNq&Vbczl{NtF<390(|gN-ALR
z@cI6Z<M}J@`*psr>pI1S6}fp>h027ck}NusvYm#zw~Zus<W`OLcQ8Aze_t)Tx?HgZ
z5U@X$R@^mHE4Nwk74&{)opj+sa}3voy+$xE8FU7XB_jwXkC_5>U@Vta0%SPcQ}_l6
z22#Y=ychNZhO1=)0i)n*XN6b70<60OU{sw{YZeiI@G2fh<J7yvaqNxOg16ji&1i}g
z7k=?q9si!MN~3Kg)H4PP7giJvtmRugZm2)~5bmc7zC|U3K(fOr;L9AY_&j=EghFYo
z^<pNC##oRy<{i_@!SdjiDRDVek|_fPVc>;Aq<2gq8@cW(vS6x4oG&n5P;c=PQ;HS<
z#GD--`YB(9!E&?m^M|mhd+J;>pv(}32)CdY5$NxFpZR_RD>%OeeMw=Pprlo^J{(zN
z#**M)+HR~&e*b)EHvBCZ{sgk8&VL<twq2`Ge7r)d_=9pVKbso5l5e-;x|(GFBk0{c
z{to20|1)FtaWVDd+Ack1$o1~|m{vcAe**M*J<W$ycY)^W&)(>6Cd|t370R&JGa##*
zMCJM7qPzhFZ2vakSgiP^ttxcr*c36-lXlPgGohZ5934X%k#|!iayORU6_>*?GDhn@
z>k?y?VORr%4wD6$2+>TuG}QO#E(6&NL$g@tN)J&8&CJ^n*`Nuwdj_$8?PVV5mM?Iy
zXI#NFuq4;Ili-8#&$Zjg?l23t$2W77@67q$1{*{}*a83-y73Tk3w=7NR|Y!l-=f(U
zrwxp{s`Okdz|trJ{Cmsrl}lD<h{w0qp_nTYCn-jtbRi*@OLz!va|;6LpCh7&P@vCi
zp+$;~()E0b)?Kq=WuBlwu2ldTJ>r03t{xa@G=SAR6CzDA5#v@Hy<}KJBP~X=A#}so
zcy(VqE^<>|d>GHqa)Z`Z9j8)~KXxVVfb^-J8$RkI9&{%?<C9LM{7kbk&0*%_EHMD2
zI-mXKMoh-z0s#Ekd~}@ANKTynXO(3i16-}H*rCSfgaJjNC`XCnzkfbo6rLRSx^fRO
z-Da(17f*-@^yOnu^)kAguj|l*&n0wuh^Y9a+Vt#!^V>{BN;WN%SEjA3U^N$qa)_mA
zt&Uh>g2k93B(Vb-Pk$Cegh|P=8(8@RD?NY`v~m+VCX8j9ZB<Hd;>-=^*{VqQDlZCO
zwbe0^&U?9pl`|&Tx$zuSBY8$1R1%)02_2MO?jiT*EevP|V`<IX-b+F!Uu%;99v;Go
z7*rv{NJmR%Om#g<MxA)rq@x`We#;}O)~0d)R%T3>QxQkW!rPYn2pff1n||);<hKe9
zv(XJG4`W+Q-b{R{C+^OCUi$(QR;N=M2eCC;Y`(!F6QVfxV&cP4$e%r1+KEqSt&Swx
zB3IgXx{pn?b^+g5bhJ|VXlO^haX)a6{H=}<G*(p5T=gT!PVkS1;7Ci(a#s)pk4@*L
z`G`|ZNH;B-IWxdg@wE1M+8cFT@thWTXd9XK#{343pESmSokQ@b-px1jCordCX)62x
z$`1DkVN6)yTkUcDV&NQgWL?)uXDwd+&+3(oki^eX#Sn%Rs{M1*VPR@hg7!|cX8~uQ
zxVt>4XuN<{m3%!uG$6%G3c?amJt(S71GAr4XK$jQ#0>hO8nFOIk368^$Rbvn)J^}y
zefX+!OHNkN#(C+K);xaoQG(DWczABmvv?%`DqzdteJH!?wNGiw5lU*)^KWfrE|!?<
zy8#aJ5Xi>eI0cQ&EnNBw{jWDdmb&WnYN>#$+9qWJ%Nu&4Hd8{CK?U$;KY6>l54f)2
zMx`@ePt4UYz{)5k2rEcrj%}#BIMqVnw4K#1vKe!}=7)a9u&GnNFu?UQFI6Em?+)C}
zSNuLZ%%0bo{ax>?sDt(~Yrx~DrnxMy8iPEz>+DU(IeDkl=Jn|ui0fJuS|N%Oix@&K
z>&>lIqG}i7_VF&!JZ`OGBJ_>ab5IKNzyg?ZKkD1*4^YO^dRLU-eSpilg&_Bs68L;i
z8iV}(d}<k-$K!dsi?|`8(*}KNKVnSTHA0ktf`sbejnf2Xhz_v1ys<xi+2vZKoyJVk
z4{M|S3lq-}EZ#{!wrnZwk&Lbxws$S3g+1=?fif19BHY`%M2KyIrGO(xXKLMy+}U}V
zAHhE{iMqn-hEX)qv3Pg~B4U1$dhWGqP7W&?kd$J3{5USgReO3bGW3ej3Mz$jaL#>&
z^}Dmaj-l@07Uz%98TIBJ@d&{k!2+8%`loy5As;U6@&2kaoQcW1RlFR*aXkOI?Wg#Q
zK2{fj`SKFnx2nZynP`C%J^u$rpRPUMJ4vgZ@oWAbDyo5IIQ!GR$hSM-##yW$?N#~j
zX2*K|#81J+D5WX=e;?!lM=F4~Du9|__pM%mM$tj<Hb5kD;FXe)Ar$~N#I}b%3f#$x
zEPY^O6aMiRuENv#{)`-kjWh2NWY!A;!+Hwi9X^2_-{siQsz4!>`~1id;oURI>Gl8}
zH}StA0t8YFxG5&yA|{g45l8RRucD<q7ou7nBYEV{JgjhsK4ioqESsJas|wIDi2aQh
z5o=;5R)xOf<k)-^)esVW!!izF>pb)-#y8uHfO2%2i*vMd@AHCGSt&^GqVt7}5-Bb&
zpY{D-B5s_EVFI8Sa<BwN8k`4t84r-agCafwtvrD`tDsj^5CSdB(|s<7BjPV>h!Dv%
zj&$>v+Z~7Z%A%^*VC#vgRZOrzX(UCeV_1r8Nl2!Gvf@Pe5c;6G2-?rQz)4`iD~RZB
zk{LKE*&dRb7ZFDS6}3Y~x>U!9i8uQBCRI~U5~9GA<P4GI^Ra5k!Ih-xJd=P!pfD&@
z+6!N2pW2isKL<(u@hTNeBJ>^`^$Mje=%m)sq?G2#)rqCQ{X*1jF|M3W9D_(!=jzQ6
zj1oeL34pY(RSz{3lIsC!%-uMx0OD>}N@@tGTAuZ!3^WUhwm=hdJ(JiCL>KJS*D9Sj
zxYeImUy=?BL%&bj4wAhpXA;K_Wy_By>nmk(DM+{mGtMx-jf>U$BFReyNsyWJM}(xv
z**`-s>8WKX#{$ftIoE=d9P%X%9CAzs95ezmHFWWh@)85=k~@jXZiYFw4z~q%fyz3d
zVD1osd4*Yf(xED3N)?i80LmK%6?};ogd`}6-E-VJOL13wRILo6qe}^&;}dpukM-yO
zCVal25Zo;97h^z-J4Spmh?Z9MOV}`sREaStmuxEmo@j$+rqU8fNt3S%XhlJlVtJQF
zAd(Y7@w<haEsFW`ffKXl#dGOalZDkHig)fi3EPN7a%6eP%Y+3<OJECY+=^~w6r_5{
z_ZZ%ifJ!fQ%NKiyQ@aZZvL?@lta+$K@QQTu$fMCj2-h60n$-(-Pg<}<e82&sw|;v$
ztQg5v97`!?-zwf6aUAYWIZA{~CW5BB?GwmP*p0|_YC^Q`h0?#C+!<tH;pY004|+Er
zc&rLxG<t$*Cf5(@qLYxo(>pf;F0KYk^OMg&a8j9|9I)9IwOy0j?VlAXR{TDn>`IgP
zR_L*uV0p)*tmb>A<-_=&1EqQr*_G6SSXq|KA`mp`hVCOSQ&mJ_Wrg4Sip1!O)G($S
zj-bSNW^bO@T+2%C`(<i90CgU}rg>0H*mWYdl6a$Xd@xUrCkPx~yk%IP%vso)n70z|
zjH`lNNr04YR5@=~Bn!r7P<cn%Ks6aI4VDE?oCT#0M2O-=O-=)03ZS;9)&Y$UJk}J)
z%GJh(wCC$}j^t%jh|@{<?X*JJvDXuJ>*8BI5=l}wXF}^)t}$>!dsHE?rkgynz;CZW
z4rKryl8JPMOLVBL5Ws<TKj*dYnca;HP)$#5Z4X25XvMuj$f^X{#kz4bsqr!o=&Pd*
za=%^*(J*Z!DqdTkfu*4&>YdaC7y6quw$#U<>f<LG<xd+o!yCmFo*pfv#^Ilyo&w(U
z_>7z;X1O-ZZF4m`me71{VqUE6GO8z1N@B@PSejD4EhL9z16QGv#c0xn<fcSK>+jJF
znPg<ba8s;rgo9-uVK<@puxxU#>}>$_JI6H{@n##N=0$~OBDL9*6=6Dtf0L9YmS;1f
z*rEn+kS}azyOeFfR#%h3FHM#fmc95fPYK3tc-f2pmZTItzC)kBlOoY69ozXxw=-s<
zL(iCOkj%H{1@U$2tQtPc!@{H1Pn#G}Pp9<Sjiy)~zE<b$*OumVMStyh{3_Vg8pK)}
zT<q&$fvhcsF<w{UUs~m=f(gPtr6#z7?kY3*Bwlx5agp!0?;W!pyi#O#qh?a<**g_k
z5v<FL==x$}Yf@7?n?bzZ@9L|2cl&<ln;f|d06JQepN)s6JTH{1DufJOsGk4Q_d~we
z4*6WkSS@X}=I>~8GNSHBVA?_*%d11_^`5@<LitVgB<f=E0!^RF;M0Sxr^T{;F$2~c
z)#$%)V_lt0alg8=+!w2}t-OiIox*%YzYG<1HBga@%xR0N+;cfj4&Xe<7lUVP8epXI
zBB?eP)gXfYXrTL<tW4r_?9~o=abd)GeZ9@g3_Zg52&e9?rzRV`$>om|Nd5P-mAdj1
zh}hn?y*lTs02zEpp>eymGQgUF#m)p`HSWAn{;FB@dAk$DWk>OP{eaZY060rFh4fmp
z^|f3AMyOtI!wIFz``qK)O1<QecOjuSPbu)$tG4j;u1j!HRrV#Tp05sFguI^DO+B}C
zBV(qRH|}4iD;uOm=#PmgNRaz#^Lo!j&<j4Jw}Lt0ySET5`towN>sXp523&3upn3p!
z*CTPXmy|_)Chp&JRa+DS;4$kRSsb;OlzrK@FcOa+n=KjZ2;r7{$@eet`nWUX?Reo$
z1FmUauIgK7<v(c0uO2*Cjd;UYGpf@`iJt&;s*AO1K;~0ICmxMxBIRdpl_K}Y9_dr~
z>YWG2@gJQb+dDy1&Z6J!rQ0<!Sxv6|7;okLGjVD%c;S!VU)~pM8Y1YORxOryzVl*%
zH!IF3mfo8Pz56+0AN2AUZ#z*+81lxXT7LY4fvCtgUY(tC7j+rdDX5wVl;w7WnN*C$
zEr^H<M3P#;LjmOrI{rPWS+IJaobVo3-yI&ocQB+_Tr>=(zE`82(OG^w$1<8lo}n9_
z`HBTG4NOk(M$tZw5bwL}dOJd1sN!y6cMNaQ71IxoSY-1>{i@v(7uJUBc$=O`jtpZ*
zx(Iq0?3oJ3gdi{gBuxSaxC5oBD1qGb(Ki@K6Mg+E2sttTIEqhX0w}aOcfF=1|77mb
za$wHmh3-xe2L*s6gKqm4e<IW*xGsua5t|BsZxk(c-sNH5wSRZzZJ)*<xB^J;T6Iwg
z&?N;zHUW?m$n4aGJQuldN~}B+*J_%L^@>ca))pz!OILo*WoXW`^n$o|0i0Jpw7pT3
z+Fk5_EbxhOp5x|9BynZ??@Ie2fUC*qd+^eTChI3>%I@OIWaz7j^U(o>0{D%IGzBDT
z0TM-k{w6FYAFQlOf8^I)IeN_4llbv#-^ahw3)=wds3w)Y0rKYW(qvR`oy)RaSznsz
z*~d)H<y^*3f&rl3Hz1=M3(mtsOn*z+yrqH9mwpX@{P)J3=It|MlXcOwNhhIoD&NO?
zDP$twqHA(yXMovLzQsgkg)i1#`+IGu#*cFW%O6UYZQ|C2R!EolO*CX6l1$4}QSvt$
zf$neHMN}^_Q8vH75|peE?kj+Z$WVjiRr<3xnGpzL+Olt>v+Jk%C#F{tHCc~`vVBh%
z87zR3l$z|~FRktKnKBJYVe$oUw~A#*R+#O~2Yj|n+eCb3iRQx3C^!KAHA8k|t#4KF
z&PRdb6|@$lRSQ_&$MpCgz)fa$#3sl-bt}edD<_s!5Y+%as?On7(3G<cUzq2ZIJ1!S
zS3WSDyQWgW9L=fB4${90I2+tp-%Svn0K`#49)%RAmI4!SV!L-P!d(Qu7ynRu|AVE_
z(sD~4Nnk~ZX3_t!&0Pbb5DIXAdr?&4Q-h^(*+E*0r6?63CF_v<#z2fL&VN(<#~r8Q
zSj-FbT$G9s^V9Q7n&s>F1s1`DmLO2A;EyQqp7amJix;^ur~`={cJKYii0D0@i%-P0
z0LlVRyf&bfNowRikarg-(C<k11R`lJruI=mUEqLO_5k~|K-b(<?`iYc7{jKu2#R@E
zvaE0W!4FwxW8b^q;U9P3>5rZ~+7&pRNC@3?d$Gq4{^{{<Y()3)!IMemzB8Qa6YLS%
zn1%D}wFY$7Z8Pvkp31>P_|$>R*+HGn{=<uh$(Mi0P4DII@1<Lwyg*C6T`d1Zd#u~Y
z1oyw%ZFc;$JT^6!tL>e^Q{RX~84kGK5Tlna-++P8L>b$}?`{Kf^CRc}^kU7VL!>-=
z@5Sq{)1f{-KO{DOWLo?w2pZ<iJRY6<c{F&SWiIA$<L@y)Q{@Yxw`Nvvv=VStf1fko
zR(`eq!qr7#8boq!`%Hs)0_|C2g8av9WAzQsnXO?Q1RfU)rzd4(6Ck<yG4Q;C;^OrD
zk{FCM0bWLW9Lpq>-|z%X&yWkrYVK-orOl^hpev~9hT{<Vb+w(jXPNo1;nbng?D5>U
z-7&qh6S>c)o`~|r@k<e!iaYvOVm~a*FEl@=l>VsN&dF_^-8^hzc=qSdQlIXu2|re+
z!VG!=*R;?Y6T5GjWH-h?n4C}Jw$z1q^z`AhGRJ8sgX@rek;%TF>YFvdeUg<eTUa8I
z4x)<24+aO~%aUpD{~U#CgEJBovywF0yfdb%EItaSoC|Dhv^x#TyZ#f{=+NEbkceKZ
z`%hp~yKyP_Twvq>Y4owNiUf!=^x$Xx1@XJr$|D~s2lIs9SsWmqXxdMr^_mAsy-6r}
zotQXAar=p+@$OcywuH;c{H8r^ThrB_<@r*?j%FCp&JoII6RWY1^NO2S`0foH6u}d_
z&2RQhc4uukOY-{LXKJr!>K_|FG3)C&`a0L@_wj9CZ%FtA{X+rs=g-blPt$eR-#zbJ
z+BIDsdt(0L`QP8i2VXx5uxs7;2cQ$9;%PX%&j(s7H=bai%3r84h$~{Nv20eIt{5Lp
zz`(WHAacJq5>I8lf=n5<19B*OMQayZTdXF_z83qG^2KG22Q0K+EePed_GC-wE=M>?
z@$BS%x*20}?k+*0#35jGId*`C#A~rmC&D@fWEp^B2x*wmU5Yvf0;pqUn~C4Jnp}fo
z1YaNl2J+%$0Xk3~vE8&xlS}!DK%wJq05mHy-~B8v$Z-w8BK|<f1d5#!+bYkt_4T=-
zEWZz62_#U(A*pMbWy+WD2nopuSEB}M>n?GFJo(5I1o^_!|AAoy3rsSWq65Qgw|G7R
zw~+`{|Kqv~3<Y9W=y$gzn+$JD445Gi(I80Lk*Yz5Xe3z&-nFs64QYORIsz=>kmnY8
zjX8&^xx^+N8P+BWq4?3yuRmS@=oxG(!M9F#)TN8UOl!Cv^T1*J9#$eb1dWIR+iQV_
zMzAbiGC{JL!OsxR!n|Mm<YpqJSxR8K4GYJx1yW#a%(4z*v`w-eK(Xw&vB4PL6lNA&
zwmJZed+F4I5;YgJm4W;zs5qni&tQ|udaFs4UIQNpyb<P40lF9|LS9}O+i4eO$o{%3
zn&MeH0LgDdq@m{HbxcZ~u1M^oP#Mpd%J@@nzq?FZ{!NS}5{YI2G2>uRs6-RdMktmU
z1!OU}S=Y4`)TygD3{D{hH5<Rk4nw2bP`vA+w`*lToC|Dze`EB06ME%o4;BYAxQRX7
z#T8kcmuy&92iggL=Ct9Xvr@)CUZ`*3-EnQQ{fot2yCu_8oTW1;)RLqDy#$Tv;d1dG
zO-e2syz%+O5tG0_I{h$e@6RssQ!SPqT>v!uQJ+PLM=&><(3zq`Yzl?5;UG_B#;x0c
ziU7R6HXph}<V*pe?1ulXfI1<{DlO&j#)_GsLxSuuFWJ}J+UzM%TNLxK=T|VZ{o?%i
z`u{+gus45|!7cz&PNDt717M&>>GHVI65(PL8pjC&I*I_nP;H?MdD3(qD1A&M9uBb)
zfssHS3cXjywf0mHT_{WGV?2rtukmSb5Qr6|`DcV3{ML@LhiHF-y;mh7y*GuON}mX;
zQbBGk1Q0tfwu7|VZyvOlEQGjm{*5P~GO;vSQn|d>t@Mp<ZE?q!$AMU((DF&+xTcf}
zDX(tcWtMb^3@a}GN;H6mRX1zU;4wHw4p3I#?3%wQtSkQ+7z~|EDsZ*qmENs&KZB+J
zmjLmwN-!ziutKb|(m2o|K<XXl?iHaNheWTp&QjYCa7}BK&ubF>nOuuD*l@t{wtl}9
z^5b@U;1+SO4+y!NUEFn3xl^qldTU$1#QF0sp!VJQN8yQfYizdn$YfghVOhrHW4gdR
zT~8u_EP)r95+Yts=6dD*yL{FVo?+!5Z}wy_c8HGT!Irf8gXT;YmWl8OvB_G|8dyd1
zs#8EF$LXp1;{9kSu$9*c3l4byS{)vJS*W>=Twt;NyWsTsVKfq-DT#xnIl$S;uA=<Z
zY+4)z#EG&-US^c|{DHkcf>k?>g+1D)Iou8{Lu1EBoq&wPre0tAdDcv7Nczr}NN`HK
z6B8B8sV3Dgt8LxVl1rPv49mD0?$Mr?240%JNheQ}O`&~Eb?^AXMnLJbw@B{B|0zCH
zbiQSi&OIn@uYg`$&Y14d;wE=UQ4Ne3<O?M19ngxhGOUQ0sDdv$S_#I``<8|&Sw!z`
zlJXLJQx1Am4|q>{4~W72?AuL!8hKgHAvG5dJbrUmLY0W%^eAlwS9`#|7heApuj5r7
zx2a^|>g36^)?KZ{)BD}_IS1RJ3R+MHs!Thv3?tBJ9o)W2AN|5+P?3ZE`R>kUb@XT{
zIo1ewC&vo4Oyir$%EUnvTb4g>Mzo7W^J8f-hEUozd#9gg2%!7tv2_vk`Ld&m*glO6
zX(%kGwT2HTTy+bIY-@c4drM15S6*}5@&(+H!ab#t^O$0%(5i57K<O<+yu-VKD*e6k
z=`Gx5o}W*g(eV~ZTZ-(2V`z+JVxjh=3Yph#71o*x=`Vk|>!hIG5xD%NV5W(wS|`(F
zrlW7A42c@st%yQ-MWm7mgyxG9dye7}06PHu#Dr?RQ9MkKZK<KJq!bmF=2^1pt<VeF
zfu+2^qyBNs62gx?KOYU=HRN4#xCrNzRK4GF@dhO-@G6pP&adY7V-|LcHUQsA`>Bw9
zg{Ivpo9u5679lK@Ca4hd@f?flz4`Ir_o7vK{NNeXkp$GYKX)*dy3t8sK|i@SXqfam
z1^~{6!mLYF$ZXYfsa?RKjT{G)cRv)>1b{WUj?A;}(2S?1p3`d(Lp22!D0#P^XCwME
zjUjYXn#f_|1LAPqhFMfr)5rFLFRkBeH|I^xzD(VWsa6u>q!<Pa4FF{9_k<lS2++{w
zuZi-&DN$MfY#UpG*>yF&-ml*oPM5xFd-YGy%b6J&M1ib7s*SF}K0W;X_Xqy7IYqzp
za%lrL>#C3=lm`o0XOTX4yyITMEkZH8TC8MEAZYV-*5mZ=+-aY)73q{TScNPRB6in`
zOl#!o>&dj~r0Na5Y`8N^dQjBsttXmi8K>IF0gwb2Ka4Fu@#krcNp5>7-8oBs4Uc>m
zYRq546Ry#Tyh|Fj&*p~mMV2zY$hpt>?0CrhL4PZq?n^F9^YIT-$xXNm|HL3FYcCkc
zVi#mIONP}oDha=bXh`^SKrWK~_XPaKgo^}KWTO+$Fo)mLmSrNcFi=4SD*Oy2ZXfn&
zo~~%#FFc63=%m#^JdQ7!0K(A|#PSFdbKC-5gl>O8=4(C(#YM(GMmaRbZ<3(e6{9g1
zqa`MI={QD5H5O+dd%_ZXB`?;fE7l~B&tNXrf-BBSHLhYW);cuKJ}=IZ$YD!_)9;F#
zx^V~(@VbYxUq2QX9p?7>awhK6#lc_7fu0JnZH~X;4fRxoaFc^CXeZoO<-6MzhZlPw
zFbv>BiGHns*R|Z+xx(&Qn(%Ux=p1k^AB-wSCt}FN$bQY6t6Fz&B<2y_x%6O#aUxk=
zM2nVi?f~IHh-jcrq)ka;q*VfG7a$}{hz?C|riu0}1@T$H#7WWpm271#47fJlxBKk<
zM4k}?<jYV*!MWR)i*w8#GDJj_4U0^40<xm-enUyWa7*6rkX{btSh^>(Rmwz*h>Rj8
z?+|rprj1);03xA`(_Jha?C2u{o|90PUtdzXKd?_iIDh9sgY?)>h#)jc`r{^4Vp>kR
z46djPbJ%3R>we~YIDO4_HjO7g`SUDK>nkP01mA2iI9gocI#Sua6-i6gA>mb@DER3q
zLK78~&hUWi2h8+T0C-O6fsV2bNL5OWg%O`7SOUv%haPdUU4}C2K~+x=GqnP;mu)h?
z#xq+dGKwbN6?YJ}3sbyvkS-kt70t_%>3{HJI=o6mfyrN0PR-Aco5f`ddeW8Y4u;Z>
z;6x$n?Wmkq)l4uI1Q&;Od{DVYRI9cZzH111MunTt8(mj}6jec)T~)ZdGjhXpXj;W;
z;~C$BHKN3|=_m3Zu!fHvFb~`_{??WnVe1w*bot`|2<NWS)J^=*1(<sYI#h;e-UAd5
zrP`y<3Yh6EQqdVWL2X(92&n`cHgq%=#L~P66<DVW<9!Gdm&7)&W!lNtcVC|RRD@<@
zp@?Uaxr;w$YE+0rsz%JHhS*{?$SksO5uDo|R@i+aM7Gf!axWggmx}^kj-dd4%@>D)
z3+G>2=d%~=bf>NPJo;JYz%UUdxhu8efNh}DVe2910`m9<><g^|W+^hNDt<V6^2_Ps
z!Cl~lg75^=?MJ@mUKs3wnxBL#(6f~MD69+!js_nBe>UMvJ=9LVlqq;1uAI-S9_n^@
z>ORcTHERKcwiWPv&==p;e<qB%J}mZ66eL3eA@S!^k!d|AemKRLVc~MKSjU>CGtkrZ
z@)i+@7zN~#q>*C#c&^6NILnBLyEBaQS?{>{q^W3L91<Z^VGT1&Xfx`#S&4;3CH3fD
z+1AAdL7Dw^O^hI^5^xJ4J!_#S<xLeXrxms;pw0jQqwM24i*kLQnm-PY?|S%@Io8G{
zDcU9#B~;^zPs$GSQq6g^97ii4c#S3-gM?9|_*$bu#~f~+yd#W3Y?~-9*Jnbs)(={j
zhh^Xu)VO0M;vNXdzoaK1YFHFwSa1l`wk}f*Z|nd^4;d<=@C<4njBm7g{U}iDAA}9k
zl+~%+COA3{XB)qZ$%2$avogd6v6pi6F11z~BcV@~`n5QP7*3NM2Y;T~1&tP|w!7(M
zrAzsn7~FeW0I0s-^K?Jfm~+t_Hf9WTN<UZ-JK8Sh|84v!z9n_aWYm?ds6dWpQRb);
zD=T3#C?vmC4((f)K1*V+Yi;T7A+o49ZMQ0v*vr<&H9yIR@;FA6#hUwtFoBLD+Z>RZ
zIu;&3(WEP_>WV_J3e)Efax%M+bKHE#Pf7aRK6lkZK@Xx7=kP4aN_Wbt0N|4Zs<?Kf
zC?K0eE9=-S%e@xklQY8-49~aCmKx*m*l6++16X8VZH^ANO>Dm~(J9<H0o**O3f^{D
z@Cm+dW8m%iC_K5Oys5`X1@j;o(HH?z@w~0#r%<L25W+r=qn?36UUt@hcDz~veJ%-!
zfvd**DKsX-!QE}$g`ku;dp>kuk#V6-GTiNzwONk$lcun{Hg}sXo(*E}4q}Bj>TvD7
z<`GUB;qBa8$C|f)ckIJuwTXbNNwHsH5%pgyb1Pay9QvLDDnx!N&hKl!jE9%>hule$
zBavQIh~8yu1ud~R{|VRP0k@PVUt6)O8@{Ca@nv!sz8`4Y19rA}+wF{6r96u3j3W>H
zi%8A(C;gRljJNHl8R>;BX-IqubfSCdSSp?C#mv+6vMEf3RtlH6HURkzebehza^n(D
z%6Y1|e?X4(u%<rS!nsY@{VS_Wpz5GF<>hLVO5M%pQ8{PNij{;GjuiRHpz0=oW^nj{
z`cU?Mtca^E*w&S<;{}*B6wV8Clz0?A3IpwUjol18$b^?P3-4QW|Ew5dAi<=luyYy6
zHn#t>usqk!?KoEtnN7yuq1}aUWraJ1-CnnQKaUvX`q0?A4p^i=*crXHc0E&VxVip1
zLH4HO{oZ5~8VVV3w-(5B1dy_jkG=(UYPs=hdZb@t{8i+zLg(Fjh7pQtrtw%W8aoz4
z9=-TsME}DZsiOK>l3UPc;xX1eihf)QHLi9z?h*O?bKRIvWJ@gIMvIEZGvlFChFHE4
zNVe-^Wn>Q^1p(4@$#IBk<8H1R59)#Q^0=09Up<2e$|j{rdD2RI;WmgY#_r$UY`?`h
zM34BaI!8UrXwTlA+}0h4XGjWp>DfMB$JwWQ+urj&_cVd(*>Lmak>F(E%%v&RWxLnm
zSr%Tg)M@K>#lTV^^EVmg$8gi}y6#1V*v*m``ZKnXea#5()AfkvChtJ+_c18dA4_(h
zlc&cNg_`|tnoj|4EdzGJlfQXqAv&^1fGr&*7$&J{BlXmijx~MCS3ScQ$Y2gOxyVT~
z%j%$T(Or*S^G>*FYEj?>7}2cR4t-wJkl-x;vog=eNlvgEgpA6wSyq*3h*)|(FD&R6
z!KYPwdtQFiH?P9CK^oGYE7o<tOR!@upX1EK(@Or~8^jsqR$mV2*|)+3&6)JaZ4coy
zN`iA*0e1@+mm^Ie_6>P_8MnP!Z+~D+Y9!tvVV7+9<lJw+wzgV~@n6iRyOquL0-qHf
z_;*Er?p>#d9V7OBVt9a7c7V`Hkg}y!T<k~sp{uWu0aD~(*pUCuC%_eYtYPQG?|8uf
z=eCDJO}X^<BsuHv_)dZC{7=4#st>)&>Z2Nb7Si_sT33N2@mUJL0198YgztrfiQaK}
z`BCr)u!6sQZ!_*9|EJ1lLBFqjvPlpUNDC+o_;e-X)2RPC`nfLRR}k$r2>pux8RHtT
zG2r5Cz^8#R?zeyoE70K@AU)u02-m8}tWSk~(o%m^=zeYU%4#7(W|i&EYA%d=%9yG8
z{o{t~nxP#`l5`HXbr($6!}S;KV?*@P*wxzBBh8kh!|s!)K^C(E5p=6Azk-=Ow^k1}
zZ@x|a<np?;Bf$Az1GP3#iazNkXW8!Z_GwA-a+UNuov`tcu;SYei8^27MRm%dAf1d*
zp3O+3Amc94^+Q%^0SZvSU)0*=B4jqoKo63-oSEbGHFc<Za0OfI02=m>PNGkb0YnZw
z65|Uurk^&R+=Q+)-k>%H#qoV_{uhP6`mMz3`(W1B!{R6DpT7>ZnkB3JXupGnlfnw^
zdR6|Aama6{<puu{TKt(yAODiKnnII`AH$E`keHp(w>vv!U%B5t`&%g1@r!cpT!VNI
zRD=4y@=HqM;@30x?<9-m>ajb0A?{rR3xDfeRW7q~p6%8ti|iITfXx*PIP)h}E^+j)
zc+Ipot{ncHBnUM#1a?6^=i|S-n8zzKB@}v9Q<&e&vizA~RFHcJ4#o1rm99QDrx!cA
zcKxUy1^X_VaCP#?M(5#iQ<_m?&H#{Ujr#KXM|N2`R=<y#G3H2o8z<Es9`fVikunC<
z#cC#S0+@>HVc~db6T*=H?tKP3LlLT^nIrcyN2cUS`Snw0?UNok?wkPb{1Wn$%Y4a`
zT<NQ*r%yR*?{eqKojt33@%z~sTlLcm&sHx``j3aA`Pyz=uy8=Vy2#mocA<ar_k_UT
z3wyt(uK)e;@bA9%-?<lmmp=YoEcv@4@Nez%zgNJ2>kt2ZdGb$6?Bn*wf8Wpk6-CF2
z1#&!`3-x)ya>UFY7Anp_0W#7<n7}cyNcz|qdQ>usftXG@587tuWbpCiX6BLN3!acm
zN{dS?Dyyn1lTy-ZGRqsA>yjH{TT>g03fP<bp1+{<54;>a584iojE;>D>l;o?P8pJz
zB_$HTd_qeY6!MigI-LWDdP7_r!bpAjPG%Dl?MmM}XpdpIAcSJhU_eXd6=2J8^hg|q
zMIwZ063Buv5{f+gZ1h+>8UDudJZxV!WX&vSwqCvGZjcDOt&MXCD5{{P<%}#cY^{7#
zsCsXEDePdr%_p57!D5NGNaR>DX+y19alO`t8yrXcde5q2xf7}k*Y?2Cvq`rwu5Gi|
z+Y`jF<)}>HB!~q^3>6C|mn%nFR@q*tVYjleusKlfl`!%Dm>MexH9Z-VZ5k})FwQL6
zekuf&vKLc5hqj;Jk#&=`b`HE0&l6x85&<AfdJO2Xa)nQrRdPJJC5_HjreX!y2i?+a
z!U#L($5_OoR72QUB1^;`Hr`IW)VkQ)>i%TB^T$uCshImORC`%L9O8pF|6{hlf9>AO
zRW?mUoI%;?Y&)+E>a@S4pO|06hZAK{!vHRJe+nUkO$iI6*RndF8sr6`qqEOFC^qyA
z5JMo{a637MDU3+G1E<L&CX!IQfIt#2fO<nBMb<DitD64mEn?S%v)G2~F_oah#JciO
zf{BVrDG4H$#2}1H(S!{fc~1gP`HO49i6+K96U>W15i$H&4ElV!a6OkPNR3EfFxsyW
zGA_n!Ca_|x0EKt7hP_f0Hcwn*z2m?16C>m{y;7b~#D%hBF;-Qv@tAGl<TY`LrO*x<
z*hr3z6^8B3UXJf}O?73hgwR3$mEkl}(@z7K@Z3NS99NEK28#{mNNO?F>*3DeNLLy=
z=cGGWnsZ&VkrW2mgs_A28Pxd*^_w}}y87(2Ruav9y#4jT$sx~dXH3&eJS?DL*QxXK
zS_}Y+Qyp{9>-;y0G?`_h{16RpKO&}2`pAM<E_joHSwn%oLRIwZ$=^{2AJljHYzyjs
zpho4tO1aN7^?nmYBmL^17L?)#fUK{M+y^<#HHK*<2RA^LF|m>|EbCg3fi9EU@s_8T
zmFvaFyGEUx`${HmDZB;$`9pM$g)Ga@j5I_Zjj_&71+-#fdKKO!HhvfoL=`n8PNqlx
zZ7x5Qe|#{f`Lb6IqkktnXqK3*5h!+<vwQphq~l-OPLXKdF8|FlR150>fQ1hcIM4|%
zY9bU05@lV%`e+gaE-Yn1p^<Kzcn@NtNg%ce8`#`}mom$$LE!&x^?wS?ymM*07CCkD
zx#a2}fVO}JbqnxP0C4HsRu5@_1~Rdu^KCrhd*ohB5rrTKdsaESk>>II#EeFc1XTG|
z`9cfIHLHs&2O}7g=n9b015nXFuY10FM$nx6sZdi1V~$+=jXNl|Q=c1=p`Czd{V;pf
zWAVzHKyh;Usv1XNE5b@ZCa?`X3Ed!89q^_<1tf*N^a*Vqc8mqWtMwH)h!rsckywcS
zm#2)rzW7ZA>MuHk7UoYps~Al*%t2MB1`YB9Q_zqzJ$of)vy23+;wpeQR0Hzit=>iF
zm6vRKq>uF!0_pf;XqT$`4j+jKwVv7|lAdiylOn=Dy=68I)q>`x5&Ge;)|K&HIz0O%
z;`tjX8-2ER3fb$*d6Q9O3&>HAy0C#~0lDgmb}$TpZ>XWK@~`5R()MpWo45k+7&J7+
zTS<wvQAKF!a%`>Ka<}ByDm}JF=;u8F;Uhw5W$qURvB~Fj7U29KXxu|4%S;lbEwn=~
zgn=|>|GktcEB;{=^k<()rfhJSLrpN{`#GgJLCl02(LOUX21gPppldc2Zf6y_%!3D`
zs2om7Ru{8=V`tWCszM}ciw7g8RW3)Ly?ef=;ET&!NDmi&r^47)%3LbSqBw8lsiY@X
zQ|~D^1WEj7kOpBE&KJMzYZjNeO>B}kzj#ocw})!W+2O^j>t%paB=)PYjI|aYUmExz
zFtq<1-ZbUPv+X1TG9|EOa0wMWat>m;&P$`b_><QOfkuLlvFa<h26KBGa|b>yn}bzZ
z0~4i3tycX)D+`*Va^fx)HdXrB!65pQCici9KRbbFz`0mD<Y?@(C_yo?;e)lMc@)lC
z+H2N+!p5P!8gBnC$)@lAk6M^?x;x8cUGJJri;QJ1_12KK!HO5T^4nr4CYd<$p&i^@
z5$h|wiqpY1w`BrkguIO*i)U^h>RdhjUX0e%%zBi8B@wT@)s*LCqjFlha;%(Y3dA+F
z2wgEv(q6hwNi4&`)n81XhR-Hvl@{MbNTPBqe<Jx)6X9h%2yK`xO1d`pD6v#Y_~$dI
zEdkFSN6j957^PnL=X>XiP`|pE6XWin8q-h~&5{S=&psq=-3<Zr6`J2B=y0)gJ-+bD
zHxOAuI5Z#>kX`GADlgp7o1e8~Kaz!EBVRD;h8BUJe+O`A5Zfd|8}yj`N39S`%`8EH
zo_yTO)F}^ra1*QI^8n{Slc&sr%B+_0xVy<3mLl}C<D`lGEcMDY9^?G0FhmQCR1f88
zbtoB`kxTc1B|^{g&fYBxH)L%Xt^>K|Sp|k=BRJoDxuVX)^*t_rBa}!SW+c;mUbcX8
zQMSwk^?~y5DKyzbgv}<hhEMxJOOw&C_OqL`N`CDkW|~Tm@CCG`BEed5ptnw+Pk|L3
zyMj7Yg7$Ivdx~v6NO7Vr$ERnyc*RhY9&tTYzGk7rAUgSay}ju$m(y)c)&}yMtzMbl
z`8wgj=3vuhRA<2lK(SJ7PSH&R{^05LD`}7<X$coI>6%6nLe96_6Ar5v7B+8o{F~zI
zGfbH;L<)xn3Tb_h>@1vNF_Se!?>Uy>eO`lJt76{v?WX9uEsrn-0e+a?p+nKHFv!F~
z<o|vtSp2i8dM1D?|EhpTOhi5}T+4uzjxAcSmeRhF(|)IH_+z%gv7}`)VL*!sT4B7M
z?Q@lRs^nEoy`bAy3)`R%bgM^YAx>r1d_7(wLwOwj*zW5O)zK!dx<-`H<`1`Sb$J;F
z-L;!z^%S6)`>``->lBrj(0Dp^b=lFd+J*ID1&y|1#kU_f!ynpjMx>lwOB~k6OtPdM
z3&}EXKG!Aeu4EqpM9wz-a`wQiRk5|p(uskn{3CCL9x8ibXDV`SFGE#BMf2+;md}5V
zht0JxA!ZN;YtAoMw$uR%J!m#mDes$A{0n+2@U`gItvCT3xR@FC?Q6wv8N=u!g%-cJ
z0>OWIZZn-ZM;?S6T^I0!ba4(Ujpki6F9mcTp@0y41ywupCjPk{6OTS5<a5YuTL}FO
zpHSvQ@8J6n&U>5DO4SLnF|H3{@ec~9(NET+j%*`Xk0of);$9fGpvtR}lNQKFVJveG
zUzR_#z(HlTeIQg6%mDHf9o{b-Fs+ZdP#rEc7oOP!5~P3xg(J}P!EEj^-)0FvhaO0T
z#Bm$M@O4F@szreYINs_=H`RELYKd_b2ptu)AMB$k$fgnaUuFl=q$526yIcmOZvu$L
zD$$a-Id%bjWKeXuIWskqk1DQbAot&iMd3jsta2t2OwO&AUsyx(5+bVYYqEgs*fWrI
zaANoud5(_%vNuwLASO^!epehu76_LGvRcCZ#S(%Hg3~7?{}Pf-JDi`&vJI7iG<6Y}
z-Q;xwK-vO?B&Cc%%ox3)A3vzX8K@Ow1ex(VJY)?wx#WA^z~JGeMo9Adkkj?J#8QX{
zMl|su7cs^F`o$nI<_lmllqkm*v0$HE8U!k<1WKW<7tSU6<$z>dflsSJl2}Z6g7jXO
z#?f$U139YUIH~y<Di)hQ)0LhG@VitF^aI9b_>)LYq-F0ki{s#cFX@S7jSs|B=bR8S
zAU&Q)q&^B?fn==DrWYIB|HPGKubV1<0+^>{U9ZSoMkXwBWqzwZOWP<(&YXy1u!}c4
z$+qZ5dZ|JZ>G*Q#)M!scTy<$ADT1^Uvj3e*O}21X8Bq&+axh5!s%0XVh}iCbffN*q
zMOqB%$<67ND9C(1C}8MSjpRJf&fFb%<eo2+V6ULz?iSl^%R!L|hz7l|1USv-l#+A*
zy5(o$^ULsgLRgd;(%j9G$^EME8++(G1BYMj;_hXfnTe9lVHZ=kBuVpP$zcJ4TNiI8
z<}&0IhCA5!89Fx47JMVfJ*kOLKX^oo&hws=6~=2?o`?PuMY5oUX*HMOT+mlgkk9~N
zV5;c;YDOnl(X=7twgbe3J&(DyAXbSjhx;*x`@y00+2hs|$Z%qDgqloLezCd&yG}{5
z<5ofTiNrIgWAMzy^H&NGdk(CJ%&>qw+`A@K3Hp~1qk|FomjEz@!bGuNIczX42~h^w
zl7FmF4kIXxTGW9kJsSc<?L*+C66ru=`EVF)qEyhUtZc6|(*hu6#3|tm6M&V=O296`
zN>#hc7-Y-I7Ucp{Wwj(BZAUJnZH`I+QoMpeBdP4EPU&Tdil7!pF<-dEx#PyM@@9DD
zsBF#&733w(gKlwq6d&z<sVeAF{5%%qZ5zKd0=jNr_29G$e+l60EA)rGvIxj2NCt8=
z0mWr;(Wlj<f@>cpfPMiL?)FAvuE`laXEj9<@i7IEKv5p%U7(-^2t@{B7HZCuw!1d~
zeEy(fa1MH~_S`x?^sA<$pswfttmCJ3QPFjjOZ9_}^{>P0hmGn73hKuf>ffH$Pw+IT
zcGgchHhc(gm@8;lfbqQVX*jozQ+XQKE;W`+G(-X6?yA79GIkDf#S4G9E1?lg0{YFt
zcek^Doig=UKo657e)lk(U4s5KYNT;$S~?|XRsxr>AVCD8<`R<6GT!DjvLfgrJ-O)u
z9?fYC;)cUSCv91NN4T>y2>6kK+MHZ<<);+pS#e=eN!W$OW<neDUn)Yf*(Ix~MJXBf
z0o`IN|A?oF+qBF?KKYEv<_7bj1*4E_^^=L#E%_F@3++~t0uW<HK`Lm;0yJd>V*bjK
zR>DBCltA_(DW7w_V)@^O0mS?}#3^kCT+r)qPYX$gumg^bFU@`zK;CeecL|5W5$lj!
zv|46o#BXR+FGm}VcY%M`!?CM_oHrj+6a-MjLj|a_C5W}Z>iaI6#~yo6g2+y3O(wN1
zP`$k}qDP@Wax?Bc&#b?7#8)Zbp$0@sR$fo=Kd%W`c3cqYzQC=j?tJe8Ls%K_cr?3A
zeD7=h(pP&C;+4?Bh#0?n&-&`1gEx5J)OF=p^o>W@(KZ2fjG^W5?r_juTC#lPBJ8z+
z&lsKsknNhtah8VP>*`PLIdppQn%r|a!N+@F^cv>M`vidDnvlT2i@TY^q4HvkI%p1p
z_?eyf&3&{l29|zLgcL{tNQpA+ASTeg@AZ*Bx)|9K&Zp75=$)9^I%wD@F$$dB;uI6K
zHju7lM}T)Ostf?8%}s}Imskt{XRA8!FYUddm)6XGmIsihUQ9$|CeXkcJp_w<f7S%>
z&t@}&Gn>Y#$l<-gRXuW&w)AcxntlN7RzCRC>GjP&@Z-V=n=&PwyQJJz_)ZgGU;xBw
zf#MNVu$_M09V_L$A$Q{{WJ+FYX218qNF{t<A$04ds<`DhI^}o!ZGpU;LAQohKzy&D
zN-e+7c%BV21V?*BR~J|xjchqQx*LHJJ8=2<DepT-g<~4@t3{EsHSmtoOA=~yWBmdD
zVppz3K_SWKui@zYVprdzu|%gq5><sOS}~+drna6_EEa;s$hzP3=HLP~{}K;bg30ay
zjkQ4!p$~_5SkLw!W?D0q)|n5u$(xppBVUexn`-gmeYgJy;&TfwNwT)e&afZUcWJph
z9RolhdIrig8P1nt+H{|;={mEkyRd0@W~n#rHM!#SWpR!Q)|!82vZw2#Y4@-!>+jwp
zCuV~6S=I?gZ93BBj3E8{GJtmg_yY?O^Fg^s|Ii?LzU#sO|6GesSQKVTS69+sGgsjZ
zr>Cfe<I|rT!?*o$Q8Asa!~ze_?=^;-rjMu1`DX6K!z}p33xja<cx`qMwLiR?XSX!l
zbrEk*LM}wz-vA`$V5dsK$SoF`xrvzTfAzT)72fS>?HvHy-QEJgA7b+KqG+bLq~9MD
z%_W(>vl-JcQ8kSIQf+zY!I2Zq%YMPXgi|)-*_z@!*O6-NYpa^~z`AS*&KW8f2Z7wT
zf;vL|OkGMJ8yA?)e-)RNt+ruSYQ{`}WKt`doNS<upbuVemXS*@O|PR#OQU_f+VwWA
z?NK_btSg6B_Ik^2G$B|2X1rd$H_Ko;;um6^3K4Bu9+ZYb5T-2*CSwgtvw>$T>~Y=o
zC6{;q8uoNvRf(IQh%#!EREC}|tlgHb#vA|ERLiH_U$XmH_1<JOD2AB|k_XN;#!_Vh
zKDP83Cr7O&HS`$IfPV4nivEcRqqQSqL7bbme!|YEUs3tO9_O<haW{oiRn{(xrln|@
zNix~`??HsL?5x|J9yLihM!X%daLW|7n892stp{Cs3o>|c4M~=_Xq4wt7+1{wv_<mq
z&36%Sa9F8$NhYr^P}Ub@KW*NycUcr%b#XRcS>L?9x%GG5Qf5PXZPWS$C_rHsa{Uaw
zbnW>%D^&^5;kluo<FibEc?VBU{)0>Ml$|OYzG$l^YdLhbe=+jAY0axM1;PxBmJD*G
zUCp)Fsyh4}Eps2Dv&r>fyV~iU*9Q-b$gQt~nU^-)i$Xljj-#|~U3EGZ$g-Xr{r!rK
zUplsoRj;ir(SLpLGi1$gpfAu+IpAIM+M9nIAVD^DPeqPxC#bcS)8GTym+w8*?~8=L
zR)1M!UxNKM`QTeNzIRb%#)nC5LW_NBMMzpi=u`3c1AeH>Ur5}2BVQ5o-oKEg2RZ};
zknCP!IaA+V%u<Q}4yn;NON-_AcUD}Q*OPJ(+<#9@5%|#<%JPIaW^<b>ej9W5MeRxk
zTZsQ8o#)^`o|EXnevX*-l_5;kR1-&h@AIhV71Pi8q0B>*ZB_f}l(T&toA2<?{ofp~
zXwhuTZx|YkFQb~ye=VIWjqY1qJUVh5r47Lhn%zpr2EJ7eg#9`)OkMuQuVizV&Ca}Z
zLAk<%S=EbK%|}4c@8gE4{IBD*12Ev8;m=zf^oK;sk<fyX=G|zW)eb@Z!yVfJW@e`F
zyWYqL19Pvf)pd6=CyuME10eMK?sBgLKb}}Q?F-w7XQ95NDcVM>c<|=0$v-T#ssidX
z&SpQVvbedO4hS!t;=OHnnr3?c3H*Ms-B_3%)8He9HdbhZlO-*J6yyKLyY!FB$BQ;*
z+nX1l9bSYW<?r)<A>(HvZ=XVghJM~=hAp0<mhVD8rXM}=|MxiP3^(9q{@_mdN8!JL
zj*uA7-^}jO73)(~FM^XUvz&n-BBJ0}Fa(E=Wxyfhz|y=)j9H9)DGX`(X@s<dL@-9O
zAP$4e7ZWS1t*dWneA?99(%RPE(b?7A)BEiILtBcz;W@N51Pe;ki^Y_2q@>Z7e~5)k
zKM}8qo8ga}YG7K3yMTkl(c&(|GUD<&m~ngsJYV3rPmMFoFo*rBG(L35xvBf>l`n;Y
z0gJ@!FR{1r6-oR=?>rmV{@OGFP2U16j!?^vg!;Hz1^`BNB%PkO%zD4?E|~XUc<D7f
z(EcD6aeRyZJ<A&#nLj?Dnym_>-2A+oAfjZ=nM6%m5fhQyX5AVCwByUs3!VY89>M|u
zPGX;`d{yb&q$&<ps=*SKjADMxU+`T5MBdO1Sze0=z!N1a4cFUqz&r4Y3H6_T3-_<h
zv<S0>UA)w-2LF~F*Y0QFUVXLh+MAyCud_|=W5uS6Eb=$Ui?p3=%w`ffxDirK6NGCu
z>>OMs7OMj&NGd(YmxIN{O)$eR{&HypMKpm!$}C%zrF5X4gCa?ys-fcGaCq)hlF$8D
zN%RoKa<S3BRCS#p;ZEm!u^Ls{LDS+D@1RJHCRRwSv$X+Kc!V(EmFCQ47th6H0a7g^
z2@zs&9#kSxsNi@M$V{r%PL5$&qnriLR|xCCB|UcWv{Kj^E*6XlLLlz2o_(EkfEXxE
zmi2X;5#vdt@klDb%^SjnO~@6w>HYg2Ieewn=}EkIj$Lw{l&d|GPoEuQQyPl$D+?Og
zCdz1;gUBG=*gqUg{;z<<vNVlTRXmhWL$?2}51*^RgH!h4w-83HDr-qPjKScITXL`S
z9!pVcM4vn~?Jl~O8{LhrF8zM;|LA%PucrU_e|sCXjRB(@HoB!l5l1QQ=nyICl9ZM)
zYV_!qZp6{0IJ%JrQAtI>0z^cN{rG%;_xIfA+~?f?#QVI@^?E$7YZCAndZ)xc_Uk%-
z)Kja5MzOxt{ZG$`l;WQWBP?FtKHWRDslE&49Jy3d-pO2|qYZ=xs0TB8s#aK;2#Q$o
z2pFn;pM{^h{!TP$h>9x`0E++oLROu+IBy<>r1TcgRDUK-*dh&Rp_Eb40e`9VI@esA
z9(Hd%=^3h(!k{zb^jhXMT%V@)J0dxLC+w&&5j23*TF>hyCj{vf7<(mdDN0T6g9;9Y
zwMy`X6sx|;8u`lE{q61&*>41q_O6R3lLEyOQVA>MX%iCKHv)o$M8tjMmyB-R#N0HZ
zd#bmj{&Hgq#JZY_f%12dJ?#)nk(TQ&^nm-!{=B~X@I@l{59_Ryz*%zFd)ZVvC$i8+
zn%8fils-Z-&KrPA8th)k?7CJxJ%772^#?Gk_)50(J<r3)&j;1{zL$sfbuE1olVWdR
z*QimCj}_U(Cjl+PCGcy`67wd%)nOB~)S#j60RAr_@8+gR!2J91H^l#>GrSO5qT5Ez
zJZL}dmw}qmJqKFK0Mw*6S=*w}ZHVo`%g^o617{nW53iqWu-?`A*(iY?K%R4ATQ9$O
zm01@2RJELc$P8uUl{^n2{`o-{-ML<deBa#%wK>MJ&6HCr>7=ZRrm&5F&jre7CDAoV
z#c>%_Kph7$3_Zv3*St5Omg^d9L+Av#nF`vFiD910<HVs;gfD6x<dEw`&Osnjnp`Ew
z(`n;Tsg+E1I-_DXC&^Ybl`P#j4&=To8$0}-56^K7eGY(}Lu9*kXkt{c?<CDHwTkPb
z&iM5WV`e+sG47ue<7$^D85meKf=YJ+(dTO&Z$PT%W1YMbA)IF7Qw5GraXPv-r&$Fv
z)j~>>lSWgSS(C@rB6oDBOo~o(>J4hHp?+OA?>o)?pQWwtv{GAu6(c~M#MZ5E&jlbS
zlE*NT`1)Z7v-yKe`z$vInJY{vm!V4+=|m5h>%dS!i_Bfg?#Wr-@NC6ya&-Ztj-EBN
zH}i_Jkj#I6M6^!O6XQB?I2G(sU%O^97%1;}HKV~hkiA$YCsRa$;GvQVqHul+9Y2su
z`YuoaUv6bl4tgzvD(g7-c#EtkDTbv(|2$GyQq>b}D{#jA-J61Jvj#{p;{@V`15w<A
z84S<A6)Vp+7=>IW-)ljYUgBm|NZ;>ZV;QPs3$0Mba+!;ch+xh)eap#c0v1j{P%zx2
zr$+;@fAJm)!dDIgoHUlUyqsc49Mf6f0FA(*gs5>x60|7uCMN|Jft^N6g%dN&_nl3G
zecD!OckY_w-;?vMXOlU}Sg<n0P!wjOGHj=orfkmJRDXz~4S~fKmyOSw-5aGZld*8T
zR%6Q*MWu{o{oFZZtSmZe7%OAdgL7qy(an<RL1M)USFaJ!l3wQ98y}t`y0nOF?w?|9
zQ?Fc#IWD6Pn)lXg2-}PlC<?nn|5^jYb|cql^Hs*k&d5`dQT^tGItyoRx$+5s_JH@h
ztc+P9(>CCOTU#4SByHBK0zk1l4@0|GD}L|iH=NmG80n8OUt~ffrnyneV_k&<GZwn?
zf<tQdoLlEC7@j}OA`w(xDi&8>#XN^5A)Rs%#dS#MMiW6$N)<41@}P{~B0f#w^E+rr
z(1??>@%N&}Z37)tcg@kYDCjzn^;p5-Lt0x-UCHG4>wGULtnX1fQNNCEB?`nlpkCwf
z*nI_Br-x~9dK)LmdtXmY>-5#UyIQh*<ps{ik?x6SofToS2)Cby<PbeqH+MdV`G8Ho
zIN=%SP2j8)JI!YWKM~h}Topdva#qNG=Zc2%w*5U?@ds*^AZjzsQT9y&KidoF9Y(BI
z|6W~nOx{Ok((H8+wLJQIVd-_UR0W%SN;D(zZ^0RZQ=C}1kr3t+4zApU!dA3()EWAy
z+pr6jnBRdUPkmxx(;}DB86<}TVmeuz$oX&&$@I2;ykm*LVMld65lRqikOz>K@RYw}
z_6t)-1R!Pp!!?EGG2y#XTWp~29{PD@(2s^BGBifemeN1zWB7u!T|C%nzdqzg9t#sf
zBbsv&8Prt#?(_DzryMFS+2jM@)D8vQ9~I7$Mvw_01`}>cXPQo9$)wQyP3Em9$zjh~
zki04}USE={e}=kCcOT9yd~am54F?Ka4PG#*eNEtu6Ih7tXyYFA)-cm7=2o!kT$?-Z
z>OLWDh)s5_f}3YeR1<hdB}b5EBN_TC0FdX{SQ>43wn6=#`T4vnl?^(R?AVHBTJkyn
zXIlBs8o#>!sno7XOHq$748_gaZ9`B0sT@+|@p4*g9X;Ivb~ycJln@3|J3-%4^$_{h
zGDg8qN|P!whQ9OYX&<=7U=}!48R@_=r}+<U4%tcHrMOt3b`$Jt<9{V5SAOq_l02VQ
z48SEwfR2306~^r_X3;CJ;o7Tz=O5u;?`1|*>D1#5@a4EhKj7VE$6NY{a&ovEBU>fy
z_ca4vv=s%$sU02$8Mn@A<s<~qy_A#U_ERfir4~ax<|cwZZ+o`-DT-ijSPMGFnv#$S
zOJHHN5yf}NkspY;f(}s&n$3wI;6c2JOzd?~c6WL%cY3(8su&zQ9>Q0Tj;kj)BGwsr
z32_g!LHZ((36<Ed#}K}42{BYW?K&J@K!087t`s2tfhBmR7RV3xee)gmH9x_#CxMkb
z+A2Zn-+}>}oPD8|p|KMrFw9t41IhD4iaXrO3X%G=OFOH@Fk4M`Tae|#`6eVW`r|$(
zu~v=+!I;@&o~;~LwH;AJ@DZSALE;(yRD+rns5$%+!>p7`ooG@kFwQ?Am)p#76YOFH
zKu0|tBm92LvFX$DB*6}k;*+E{3~LoGX;372G!U#goa}S~c|a+L%_2eg@$no4VF4nY
zDt$s6`cZ(RMo(_M_eI(^Tl&l0ga9QRrCeejKn;okNt6R=P5~0zbla<*432cq$8mm?
zi4=QEc@Dgutkke|w{#saa@#q*9Khj+6hYhoH{ja>V+a5c%aQ?4rO|XYXc$cWX+8ZL
zTSk2WTcbP8TBrAVK6~E<*jf(HPL}*DKeh^yDT&H-W1^<QWS(a~xbB+Wh)FG!&U(5I
zzq)_dP|4wwNu+3akdc`774Lt(eUtAvc9$*JL?w63PhSLW%Zq@LRb_yIh)reC898Y6
z4p?%VPP!hNC(X8kxGgJ-v2A!nQ3K?_c#a%^V-9lb03<$pdM{ThkB)@cHZ)KRbCbeB
zp~V3tA?-jRo0lO?8y9%hSP^?t4lV;ivQQA8+xcX05c<~@+$#9uQ1BE}@HaNQ3RToZ
z%q~V0+Au;nKBjFj^Yt;a-L6PW4MiW`$?fYce%?UcO)i-hkVU?f3yooXyG;`gp|79F
z0!zzyjj^A(<@<W1Ly&Yu4Q|Il`J)hdRV34`9lA|jCKHOx+6AWa3Ffuq8<7?Eou+J2
zhXoBiY^&RBJ~AQMC;3IF*k>5-<q^*sb+Ap$lLB>`-h{{$oDszl*lj`e3{twz${H9$
zTU7xGtzeCmfv4_)W00!Q;|#)a8Cf{9{3@wfz@~C5NZ&2c7Iw!xN1^1S4*5g{*US#r
zJd(S(5}~k!pkoMSG(pO0@F%r#KRo2#M)JImdGu^lh+{$ERx-D`o}`MCxSErIhAdD^
z18kNoa7GaD8LDo|^M9cMb_(!{gVzRR328Fc7CKdxfU-_sgPXI2TZWWtvsmq8ou4@X
z=!c=rEVVVVd=J{hEwMuP7+7rksvn+0-E8Wk1BC<h#9Bcj9Sk+`iww9*kyI0KdI0aQ
zR^EToqPdl6>=gwreYnRqjRtO&SIo9ONIwCE4CTii21rNeNq-?oZ!%nSvyf#Nu3`?9
ziDHmn->ZbETYlb^I&PD_KP)q(M}j^yl~c-=yEiJgcq#X;yZJ@Ff6X1Rd6j1km7)ay
z?HVfOw^>cRNy!iUXj}q8$$Qepr^+GWrDSln;StX_*8%S?Bdqr1%ZLi<**LmP1@FRJ
zpEg>kS{0=?6klzqNXsY*qm>-buL<InQiqiuKTxu_qW;MdbKKF|eA$X<(re*xZHH@g
z6sUU2+doAED1JiwvLQU^`=bDLeWcpXp3@72`Zqc3jfMwPjOzV4s2|lJvH7;+cIb^8
zxB8iGfX&n{vy1-nb6vmPQQa8AwA_v??zAb^<M*Ntw36W0$}FqP7n}k}5nEJ0T*G&E
zdcW!NTI=jQ?i>x!((TX!_K+Hjmts|dX+;pve1CUirVah{slA=AJ3HTYckVC?1MKCP
z{-W=}bN1#b^km)Z&5P(Q(6`Ge?k#!K`{Z}8ZG=t*d0+LtzAI>p@93@X?`wY3*K*|?
z`rX%dqrc-`KO0lOc$UHACTd1>XX8?T1JaP#(f^X~IW4oqDmiEG`~G3V^G=N6kLvzG
z@fTh9UaY>M=AQ;|qtW?2d|w1inlg=41qSNrO{ny)?-w^dlezzN$GUB2Kt!<pAUE(V
zg=I71?omJWVZ@6+Z(eq8H?EX}xc&G=r7QKRU@D0n`kk736of&CqH40ic093{IM57y
zS^A@-gOFHU5BhR8xF$*(e1RDHcW-Ddr83_Q97P@W(TiHrAv0fVXq0dG+3`@H!(da)
z;C}U>p!iGn-K-YWa4%v+$adsegnns3wNZzyhAWG#8G!#i@WRFZ!d&%tO%T<IJ#f`A
zc-KyUA(R%=u29Qe=m+Ql2~)1#x-!gqtk`X?IQYaPCG;zJkH(G!S*^I3{32PMQ%kR}
zj!(8T8LN&mK__ml!pWNK?IKxixhB%l_DmZSYvrS%Fcm{CYW!PThh~(Pkft~>AJB{Q
zlCb|KIN1rgn{RM4!h59IpszcKw%qo?%iFH9%a#MT-3KjN-7V-PSmo=7+!DHJZCF?t
z(QYBDL*?@>#it|}_BK4>h_xH$?a>OFTLg;YX&!bly#gx5W75dBSu+dVgC~6p5qZzH
zXa68)0$5mgY~7*Pr+ZV&zNJpPjwyL40$$9>)-%j@c<1*g3>Qh?rQUXNs0BY@c@@z<
zJ+Q&5Z0u3Y@M`qA=(sK8pVaxY3D*M*l<IiqRM~rRQBVre)iHmC=x67PApJ+6pD;hF
z`_tSe3;7FklI5OHZI`k>HO8I;M;`<iV1jMj$~lLZ;<JOH)pXxj9*Pb+2%G>V1K2NW
zAAW4}N#1=(N$+>@gX^7_>W-rChXiL4X?E>g-g1#;wVP_s3YZ^%U*;Z4zn_>WgPqfJ
zd|cq*ulb#1rfUl}51!jBm@|3j^M`MZUdf*;Fj$Lbc~@io7I(;<S$^H8B3i`d1cTN1
z`wwK4f~y&9?iu>--v$eX06v{RJn3FP-EaD_Dp>mWwK=!6rJ-N!yQS=R&@<PE?4VVA
z7K81$pZK=lmIUa&IY{2e$!iwmQ(Ewq@?mO}@8SMy5x4c*vFlLs^&p?6MW5alo5f-f
zXu*`m&L6Ctpz!8zXp~z%#!W3l81oAks#PAES|{+qN0m7t<UOG1%Y6RUO{PR5&nZS`
zBMIktzP@+o(Z6llBFlU-B1owRyq6{#VF(Y*4=r?KN-*A<;ojL$V%quQ0ZC8htbNC9
z7v)z;qDz`F`zE=y%<sV}#lI(sjHSAn)fJj%xyhC8_44n;tKMC%T^r`XDDrbi`WlGW
z0r(&|c5*y&svCKCbSnoEFYJ4heG}q*X(r<f&Jf;)tG%<J?Y-X*czHY1yZ~aUyaRBG
zm#|7~B!I(eOUdgS&O$I>%2U7kM5l)$UoL$}KmHJh0@--bJEvsSZA(a;Z#l88G1TKY
zv-9Y)K0=Ki$Km%s8)h<D-3YP+KazUo`1Qks0ex4Vd8bWb6XlSK4{1LWnSS5dKkK9g
z)H_|?0ee4&Pq7`wNgt-U9))mj1%6EvC2+pVW$6;By=@iu?ges377#s<OO|(3H)B@J
zLuzIY{V<dMq4JGhxFu9`A@u`jpA7Zoo0#`gxTE{Oym*~xohLS8Dvd7Tv*;{^bxj6^
zRuJFp$6LC4>wvXzCHFj>c+^V8tN@X|cRS_lm+w+Zk}+QdHlv8?UpHvqa`GR`?Co!H
z?Pe=|b+$_u#U$d#2Iapdj`E){y<$vY3(2TBem0*dEv9O37$nA?*0jAR@f`VNlNI}M
z*wQumvF>r*l|x$nn+SeocHld*zgLLBDGJZg6wR56N2=dC)1pIAHsF%hzbuQwr7xvf
zy;Q{t(_O+d?qr-54ubY&fl>(74TwMu&o}FyoWgnhy&w3CvybPfe7(ZCyU}<^A?X~I
zbOuA8ac2F{w9nD!9k;9csig~6>rE9g|Djc${`nwXayPSl{%4IH=sfg1X)9B2A;aVw
z7*lrE;sC+h%b5pc+&;WuAIefsMLN-aOUpoIzr5J<IMaCf)9uzz>dEgNq}F1uxpK^b
z|68}dXqQkiK{vJ1cCpXy^7(CO=)9HHpb_+i{SkN`y<ZApn>6cJFGgkiuMlpOuO#vM
zWxTU0hVlITWqmUH@JmYr)U6kK#54bax6tV8@oW5_6o`rodx(+qf!86}NtdKYpFc)-
zWk<N;vawf2TP(L06&Z^b5+@>@9H*5nl1C<yRh&ep#fTFX#qo(@IkaG;JcML=tRxSv
zqAD@I42S3L`~NI$XXjpBEp3;US60{7UvDJc(cRqI)+J-)NTie$#NxZL6y=ru$FX0r
z)LMtJ;4^H+i#*y>N*@H)fhUs&%Rvwm;@ifuJfTFlb$p#42-nh)Fd)a5iY02f-{d=W
zfb(a9C9Gi9;)qISeye(N%7*uRd1RC<-XUo8R4$+RT*OEJ>hY-a<6qC$uVv0ZidDvQ
zy+<xSOZdzau2<m!7s%A5JM7ne=Bc7?OBZF>v(PY|QpT1m7+^84rENu}z>VG>9ze6l
zz1HXu6Q3jeI;i=PZ2C;Uisk$4d(nVRtWN<+&TI33m$v`u5%zs|hG^>bhBRU!!nM%r
z3w&f)3Kp9V4!`ZeSaXiZaSqfQMc;R^7NrHp#S~yINl#0}&O^*q>IN4SO1L4c9t);I
zxDW1XB{3q!0A4*qpje2Q?dKe;Nt2T|z5Uc;{u%s_zP#nm!cwzH0JflKT!bMg9im(v
zs;nzGL{53yeedDR1wk%8G6jZIEbKbCLg#vnFfNYC$YBTZlRKp1A<;+qp3epH=R&~j
z%@Ca+b_2`%DZe_0u?GJkS1n8Wh0TbQFXW*6R1yTe2U9Y2F@erBLuKSx)duw((@L!;
zVFwN4d}&hu`113#{5&j4QAxP@At<}5!{C)7ZGH#>m$+I`HvGXlrqaQb9Ac=xn!2Rl
z*ANw?SEgxntZ?ICeGd?^SkJqkQMi9tSDqktR9~I<-_n*N*2Z(Iz6w;WRqkMVgQo}J
z5s^L!{nSjc9RA4}Yd`>1OJM+O<dP^G4Kj(NqD<7*3DYJ}B$7Btg*di+CmbMqEJiPO
z5R%XLVxv)jF!+e0xJ95~3E%deh6srJd6k1t&xqvw)Lfw~eosvcCq480cvD;_X)(O!
zSu@M8aNm}>(<AAYM6iByEABr@ZAX#5|4k88I0z(`>X+-gm2l%#zgEdMfclM%fmZ8T
zvnUQLX=?!>O-l_&2L6YB->EWI^(W0fe~SNJd?jOeN078voB;h%*VA}jcE)*vpd{FW
zR%Mso(!RR(yQ;H=Ap+J+LH%mO+qhv&^5@&2HJ_jFLO<S|ZEQ}Kqa*X<ZX@~)!v-dS
zmx6phWQD!^IjDu#+Cz8Z_!*R?DWuV1YQ-cUl*~B_4Fi>uvVMKcW1|f}d@h(i@%~x9
z(WP{NUJH0PpAOq|jlwoAf-jAK7x=zac<Hw^)FBGIJ?}hs`8DZ}Z|YG}$w1O+xZAV8
z=Wj#4{r$P!v=P#@!--<$6AY@+|FXj?1%}jikl25h7uv5qKAL_;`uFGOHxdZ|+x~em
zCiY8#<ov&Ib#14H0uV`rUI!o-Akv&?WV1lV9wMdPaV!E>0luR%#E^x@G%Re9sYzoQ
zFetKKeJx79#am=S+vI$H7)Xtb=3+A;{#xn|ZKBQyAIAw!$6!|$UC$wS{Uizf|3cd`
z2R>!O#HdvGNs0rkifvqH%+)<J@+x`4u{JUGKhU=14f_lFD`<O?9y(LS^OJ2{<udJm
zp{)joNyOulH{@0yM<5tXW?3uXsCGw3$A*vWB47-NBI?4Gr8$Z}zZcG2kNNEb%C3P5
z3NzN}-4&|Jd5QXfbkm)-5#!I~K*UJhfrF^QGV&z+#CxVp3l0q66QK7k>Lc5{z9U?Y
zjSuleFrZ=DGyN1!1&;w=kSTdM2Nst$Qp%;Br}ztDi&g{%6&M|joU1Vj#kg82HoPQ_
z2!`#8?U+(;5-uvil<nK|WO*Omc`Qc`=U&ww*tUF{fw0Z<^3M!NXS>Vmpe^DRm!VWp
zB9=K0Lm`S=18thKE6^h=L)qQ=^sdBGeL<y?he8UJv1yqajnyv+9uGQ}P4bfgwLcIZ
zvY;dCFkdH-<ZohT5Exdv8^kUzIECJMEuYJC)@Y^R%y$PaqHcx(^RhWo$2D}PCXDg?
zWK@T8`2(0cyx<~Wph+1=ezxpLV<L(KydO(%?tRwD;a~bm8q{yv|9OQq?wuD<(eLhk
zcyLrGbCxg^gZ*>J*E)aE^uU=Tbv!`4&6?(^`?sEzmalb9<9lgjLJj=@>p9^vRScP8
zzRl~lE&$bpWbekH+4M~SC|!i;ZRn;(_g>MD!u_fN#93HzT+=<Ljq*<Pf*cf%w9HY=
zisMhO-6r}1q?DWaaABDnEsx;0?_)j*;b5~}n!Sm|zK3t8IoE_hK)MSl=^-!Jzkw0|
zk>hVsq<Ao;^h)~=L)&mh;g~K&XSZK(2__!-=GVXMf$yr)su5KVyA2^72-*`){S=%f
zk(q+3-sS-<99u|_q<ELK4<a3mf|MXwATpLI^?R}tvt@#d_CnG#o9#@9Y7SWPfT*c*
z0|&dHHi`_(nmB912_r$m8ePnp3)5J3&Bn3m>5~*jRz><{SU;Hqd3L8irlPRA=`ZLw
zE-FS|p-g#{z@RJtB3Qh;mzXm=?+vWx>P%IirEujTPj~FxE4ck^w9B*Ou6(6Sz>(A3
zAn~j$JI137ZUv_;XU*iDc4E~Jf3@X=4v-#H;3IbhSg2_^4vO1pOW2IJR9#CTA&($<
zj>QN2vSqnu#`K)O*KGw_zgi%q`>VIfnS${qMuffp?7;Pm|4$2N+x#87IxXEihM~hj
zO(gVDheA0iheCN<l&YUfJ1Xic=azW)-O~@(j#HNDE^gaO9CQ(^2yd<EK+~s>0WU%-
zeS9N0-^Rj!dQac~mVqGxdmMpk-dC)bDMBt4mk-`-EcaIU4KG#Wcy!}ySCD4E`ezoc
zVTu9JFD_ehgpN8yqO{Yf0<jHdyYRE{KS>qW-hHpAv?{Ov#lnj7jl^j=i0$O$ZuMK%
z0$QuN5WCczH%*mP^A{i}MnYh=cH=)_>*4#|UrQhEtEl|8EIe2rQM#-D^7vMh_@lNv
z!hD9j#HE$5evX~ouW@&uGj)qGQd<#qc-}AHtB}naeeESgQ<!^GC<7ev!iMkFlvF*h
z93DrC8#3T_SI6Rrf!gcC?o9>EWW-DAUOK=|tuVGw_EzUS-NnkeNCTNfkC2M_O*slS
zaXusXDzN$?0EuZs?Ek^Qtw@&vvsov?I}rmDf9xxcwTkZ@1F1VM-mi=g{75-nTNf`n
z$8H@SOYVf-X^IEux!t@g8}`R=`Q4GS!s8DikHae-f6503T7aNzoFe6zi)|o*;Q0gq
z`IQ*9?Z$j!$!fG3*`?$~s-yl90`BVyNe0AdCdM#<rCBDfvDJr4U0`o_nCq}`&j?9f
zB(g5nfu796uVyH4XNVM<8>#71#p>*{;Oce)T+E3CoI~2Fl=e>5YC9p^I(&CRNox7?
zvA62M>TC~d7z1c2%w7|qges6@jWdO#02pV=h_?2%vX%oTWae8cu?aUTf<@sXDJ$IZ
z^b!vb5)Mu+jg<ica1pXr+og}n(SjfqaOj45oRy{5zeLlB9?$OiglHV-wwxR9e3ImC
zQ0aQ4u!AgRYi!y@RQ0@hvm<cfJ%}qbF|a$Kq!t(6?K*uYS=BKaR~}n0f-nWg64_FD
ztG)B^zM}`%D)QBvc94zb7UIWf4Ypgw^YmP&k0>zlI>9Vo$1O`2vDTH;=4=nY`=_~8
zq?*eF&4JTosccf=vf>!rI?-EP8>HjHh%9G{J&sA7PuFWx8M{E?q)8wGn0uBA7X2a3
z!`1S3Cxio^?%QSk_T#neL;wf9_@yH3aw0xU=P_Har9BmQdTfl-n3QaHJQjgZEC=4v
z0G)5s?cl)dg;}(^DYBhjNqA?=eF#59{9#S1h-fN`J%^;3nk<bAwF1HLIeMZBQxo8_
zD!{Ee;LOR@!7uymB=B-57(C2+)1Q%gG54*NH!v3LYVJe`O|wu=zyCT%>o~_)CD&Xu
zP^vsY5Dr}&XSb)gf4@>bct@j+4VH?|m&^uR>VkzJQGwQ}7YEc-VF4TY1<8P12}JGy
zeLmj>+x5B}{Uk87{OTL$#QoYnYaLV30Okz?m*TH7-=v(PNq|9E0TNL7w>p~eD33=Z
zDG^baqnoR&fbGH+9mmBKzAk!}1a1}0nJ6sT(aebp%a?Tn8_MBj76j=<s4Wgl67jk7
zm3cerxNFrwCo7p!6KLIWO7by~zy|g3;Ij?|FG0LkM8WOH^kpO9bO6MxhW&aS*j^!w
z0)>c%z|K_|j?D^GCms~zi{4r>y-%W!X@i!XLF44g@~xRTe^5V17XgKmphX@$zdVEh
zF6V8r^GU2^*4B9#v;LST`MM!JDqw~_{ukCML-0zcm>5>i#KQ6t)s3p~;gW1j>2Vib
zm@%DeH`~!XTf7Q*Lp1$!1AONfEnqc~ErwLA;D7&9p>#f;`A*R-FZ$>UWfq7EE2fs3
z0u|@hcNH22>$p6)R>5S+a3!j!#X7Kr#g}Sd2ShBeM(=oHPuR>jq8%1^uijqmY^<Uc
zs<VJh9G)t8Ww*#9wz6*fh+x1`9N0ug+*~H+VT>KHmGy5m$S<HqX{QnpTrX#nP3ovk
z#5b75U`sEfJ_8zSV{5yPs(Ol=UID5@`XDGL{?9u+#|w|_Ktf6smg^qeq*m^Ct+{J#
zJbT7GA2WG|uO64MiC5)uF$@CRhLBd`Git0EoDvv05^-$vR1Oflj+MX12Sf6kehW|a
z`yMIEA<Zt^@av*->mbqx+iWOD5)KX!mcR=~EDA?EJ?SRn&vp`dT_kegDQIO<Y=0_}
zd8Ij17nO4oRm>6<YZHBm4>*CwDc1-`?h0etDu&PiO(&psfB+^@D4$O_$VoU<7A!>I
zCOGozGV;*{6c3@BnZy~g0$N+8J7htY85M0>P6DoXxTL9@0s8G^pIS&vZE?ETzM@W>
ze#rBqXL)F;msmRyGEp%(MZ%(-MnUtZq3k!4PnMk|*DEE5%4L2MWyt0g2&W2zDCr+g
z(wl>&f-2rF)2z;Wa<OnlHqAPvDtUZQB#DVrmZH~6mz?Ps5-ls2r&y;GD`)bc{H~k}
zw#v!!0e(VRJe2xc!XuK*89~nNp5h;LpH`Kk=Ypb06F5t}Et$V>J<#J4D$A!S+XL>R
z;}0ym=RWBuCG60xbo-k9Ubo0vf3vu3OH&;||HVHO<8E<f6-8M=#(qcr=M3b1L--fz
zoV`~4od+ocNh7dj)2uGWn=`RAgMr{-O_<rfY86?=SMktG!J8`-rVY%n{!ff$<*KyA
zu;TfiDL9dcS1pFWoWr~%McjaUzpQz1^Vc?z<M|+GGttQ(#vDo0o=t4tBep0J`C%|H
zaZuv9^1t6Okr|yY(}iR(EJft-Ve#<wNbo0dnyGd6^H{Y!ZLwR=hl>UQv;`wjwi>Ir
z5xvhC1Md+NRnq96rQrqiNJ*<YbOdGGte&Vl>cBPTq&l|wV03<7v+6`sid@q_cFg(D
zm><`8fU20Q>iDC`@z9d-UYqgox8slhjAK-7BDp5wY$p;TCqm^XaL*@F-%h04YA64h
z$Woomv7H1lO_mtz4iI$K%O^(=`mg5o?%TpDo7pMm!^6n*2LMwW4nlc<rU)>nBytcJ
zUZ$sj-DQ%^S@5b-Ze4~kS``r47`eN)efMRdwRkxwH~a1oai$S()W=jaX8;3Rn146B
zo3=7DE1>*yd$9G->^4j%sRK0B0WG=uOS@ydj+tA14w3j^dh18s_*<AFJ52@N-IU*K
zXxmJDg=Bhd#q2T?wo+nJhB2GzHX9_q!Xbc~S+hHT=HZfa5JB4a25e-#G@qMk*tvzv
z1?gXin{S|By*h@cd$0y5c;yE#-mS45!&tu`vKo+{=XzQT)w9-o4v~5nhNyW-|87Z*
z=JuZLTu4t}_+iv8(*8s{&)s$T3;tfI=JNZ~dxP5dgU#(&G7%p;(|-``413D$sqGmf
zZ<zT+FFdd>&9@&#<C-b5c}t%q5$z_ngUf2&Iacqw8iIMo9B6No!^dpBeIONt>039~
z<7k!{ZvvQ0vzqf<bjE09Z$I!2_Zqa2NlbVZ%mPPQq=`4XXg_k+?Q#xEaDC*;dNa@M
zlQPM>F)zdAXeCe6T^Mk~rHd|0(gXhbF7fsorb8!5%+xc@;+{9bLERfXdeMR0o_JYL
zdSlN_mIpLBp6yO^PtQHC{d#UTks2TMZaqy~-Dly%0`xr(#H<uZx5g4u7t~}C6w>A|
z{?Q-%-M2d5kJ{~FMu%>5q6yddreBS(bRylZPw4lG;OpaW5T%wV;h>Lc{)gQDdkG=V
zvwZGU!R^RkGgjD@0$xMDZaK<DnRT0J_|{=9#Dyx9&M4Hon^A}Pn!gfW%?r}LR{Hwy
zuJl)}H&543@*?_wUMs%ymM9!OQiqp3_BTA@RvZ8~hR6*(r5^pc_jWw&j2Q7u{IQNA
z3G-l*j<O(%*>j<dDta)#l;tdf#x6{(Cz?+L#*c4aT3dBfD}L|x*tDh2oK^|agK6Ex
z1ap)%5gV8<q9hI=?kmp6O7DDMKtwS_8M}i7I}N!3&y&?F2~|q$cI>~8bcybefD2u9
zHF#=zyq+?hvWE#6o?zKzPnDb)-UEyjp)0sZjJaTowZhpIc*uuA>y$Y&tYD((Mc_t#
zq~lTEL1JM~k}`908C!C@|MXgYN+L1ki|*004UVgeAWPTAVxoDX-IrA!jii6{J5#wI
zLJK|?aLF~S<nW09y`cN{G|w$FjdvmXx6apZIt7cN(8OQa$;8a&D8FN~NbZ{?0L_&l
z{sRB(9@7mEg<t5*BAiJqemz^HXu#pyuuoCh>fyzlC`0c{da4w$*C2_)-GwKgl8BXS
zJg0p2qlr(CH~w{hp3L)ADfDY_Yin4>CY9#<ra4T4?GJZ#9@9N~T|)9KxmISG(m<Wo
zu>7^$r?|XWlJsG?p^&gtSO&@1AMA%kTdQCD0k=2ihKAf5EHZd_g7quu)+`Q4%;T|t
z!XJI^Za<co1_J*9&L1{=iI$EqR;}um?L967TgMg6KG|#lZXX)(V9V4wN^f{VtX~xr
zuz!m?F6W`HI#B^I*}OS0uN=Tv5aA#&=RxOhNFr|%PdZo;DlNcqS2&!s<l9|&*t?r2
zec-Wm*%GakWG0^aWZjRKC#;b<Av`*kqt@+qEtmh-yBilmAAZ|;CAJ^AW?uGPh@D}e
z4E@(wl4Ba}Tk6$-63%q6*Zzj0<Bc31Dvyy3eJwZgHyTN84Z7h>Ps0Bgu3J=X+;1!c
zLjie%#J}l{wVQt~FUm;PLF)qTAP^N;L>x*+_TLJY>}m#kwW$?nfia3nC6OVtIH;&O
zw6u7V%Y+%}I3y79+*%aLf?5p8v~+A*+;p(y#DbKxc(9~|u%IxKIeBub>FKl9WD()%
z3`uczIu;3u7BX5%VK_CDgxJy&6<uBNAyu;Im8dsY{4H5^Evde-u(-6WBK~06!=dg#
zD+LB-v2w5Q0#Nbs2~EVV%$LZLNu3o2B0V{ve2fwSX8SZH$^k6ej|>W%F^d1SvEAt_
zw+FAH-O2TjB;P1%3;7vJTb&S-nd#u}IwyBu>jd)PIv(_XexQ?qn6<9?PigziVK|vv
zzpMFwl(zS$yZ%>c+uic6KlJ;N;Uj^htt*`hAeN$0>zZ9Mn+gXZI|hmt6Jx=UAH|We
zaAz4>0mb;0EPkYRS)mWe>z4!`A@%-v5rIs+%8>w|xSaWXvQ{<^e6|E^Tar|=e%~GF
z$R`lq8tK>fi%gqRgi)s1JJ1dOR;a9tl-djbzF+=?Rcw2ZLPU2`LX|RJ<M|q$mY7sT
z-^|&H#~CyGou|*e9=A|O3UFPqM7&klN9*#5hjiphwz3=r!nR~n(!}K;FuWp@k0d&T
zq2|T8l&SC=neN(&)Yk7NOLQIV{$Hi7{Hptdv?vM|t9XYmW?cT0Ttw8(j}vZ2K&|v(
ztWR<%amY#sTZ4+8guS)^!VJuvGj$(#V)CXOJTO*N_2nA*w#J9KxgkivzO22Ce2ofq
zJ!Gc%er^Nk$^F+51HH$aA_wJhES?7yIHAUa%2Y)Ti}dUNT=FtvIS5Izg5}!>wYE{A
z8s#Olo=9p`!vD1+9FZEEyN-^U{M9)c99)dAiwN+$I}B2a5*!4Yldte+J+bxxKriyg
z=5yPO;-}B;^S8w%o7--CT2Lx5UlOVKa{yRMccXiIKrUQUrOAG6)7QSwU7x=8f3|4i
ze}1;=_3g#Qe$%&sKj-2t&u?6c9}~%0y^jaM!p($!09n`ZF#L|h$q19B_sQszyoBf&
zSIFm+aYUlT>4c2uXVyuPy5`d<iSEy*!$M1Xt3bpu4BHl9NEB|ozNXzitIT*AIIG^Y
z9z!W=1Q?o&powbNzA2nNn6S_D_jJX|?VbM&&m$BF%o5i>1LVU2rlW$b%PX2ZO=(zP
zySjCXymfn3ph4=2*xBcM7jSK<OO{Wymz4}DqTEF(;7#nX4H4G_LWEUs&XP@f`26}%
zFn;6Hm}k@cppj@!pY4`sCZ3~Ipr`u?)UY?owUIKgnRn=>kY2edJ*7tTsZmZy*^V0B
zW#Wtd&kj7&=MsTL!eunBI&>H}U<PyPuOI7f(PC@to^hx)`@;bXYF|?cwW^PG+K<14
zev1E{a@fw)V<!?Pt!_Gr!)x4dd6K?%>e+wy8x&Y};r<N+HgKrwdGrz}M#in2!ix%U
zq(@3t0rF0XKw4Ba$Qyt6wLeiFdS$8Yr~=Sh**alPnnZfXfDghE6tT;Kl3{+aETSl~
zTGm>U3t}5s`JMKV#dx?ypdogTen<W>o7UQlA3H;k)4T**EzFmYaJL!HkU!4givYM$
z={QoPoegj#pI`-5ci4s9Zw8KhO9(C60<e@zFckUGI|WhXWvw%?G-|O^Bd`%x3tEA3
zCx+qPU}*jzMsoKlYT5%RzEMxqyBgX?>}<3a$an1*3RApH-U6!XlA|qzm8IZ7C0PK^
z&iiljR{#rZgXw}008ClW1wYr)_fXj4DB3WTP+Gr|+|(>^S@Q(6Iy05F+CiQ0yj)03
zlgm(qEE<de$|lW&h6VYf1l?m~uWn2mt>oAZGi$=!3sb#)+l$rtYD9C9dSM)-$?Fql
zE=Vf~k1J^8$)q1K-hEO#<?J+nP=cI{+-xeM(xi-x$SwZ0eST@C9o{wKLKXDum5*JA
z_(?YHXVAxj@AXnuZ{LdOfPTfWAlyJwD>>gHAy9{1w@`Y?MEFB`As2Hdrti)T`nmv9
z=UJz6M#6nW$ZG~>E0j;pNVQp=o_VLA4`AaDpv=f&>OWd1W2W_|r;+*@HkgSc0Ha}r
z205s1Kjzg*jAYry0L1p-f;#t2?qML5?(SE2o1B(f+gK(801#f!BX8n|T^6l*T61`0
z`QQSAc<LY%*!&3|HjEwiO`tGUspC5i0ol`_fXxT@FF6WQnLA$bkt!v%uGdwqF&%dz
zYPFvtsQF&EKMrhnF5PopfPy+*$=YtkHQ8p<+qRD#1HA8}fDU@ugDmHSBn1cLZ3LD{
z5mEBuLd$;*YW*UHNYS|05;E8{|8g-Ej7{^lPW+U6v9Qwet6vJF7?^Y}_2mVY=KVjb
zUg6H0iG&30W~WlDDSgSDNC$n4Y(bm;51#G*ZsubkI1)hCFVwf>qaIA<cZ<@Q7_@0N
zLbU;1Y3#cgl~$WJr<OK^i`?-UnM5a3;nldrHO5B=?UfMtRMc1Ha!pn8&4SoeTo;Cu
z3iI&ldF~17@*DrZds@gy7)+E7p=sa=pw|nQSdSXI`Iv^Zpw{x5{<gO}=Hx+4+#7x8
zK!%vvcyyap(!8@$v?;yqzqb6JuznO-Sh~g|RB3Favu4C=vPI2LUQz9D5N^GtS`#RI
zVx7BdkCQO%AOBj*6K4!;W8sdGF4HuuNAG(9`1KL0;r`wS6yNN#?m1}gkJyr5+h^pS
zbISmY?N^K57VPYc9Z#t+UaoEwi#C^9T~@jvmPi1@a0G^0XK9x$;`f{Fx%GXcTHd>S
zU+719Fi^W<HTvp^cVT&YdVi*tH3-+)6Gf(KD34>dm{D1#1A($SXrs;4!u)SzoDhq0
z@PXvs=Ddy)B#7e;5P!}RpUNv<y9i7Otl4c}`PoaNawww3&Apq#{Cs$)=s5IR`sOq$
zOxEl%h^*Ch@i|iu-<3=H4VRN!GYSPUm}X#IuiZ)lD)*VD2c|TK<M0Ipqf9lP8Y&YO
zeeEEfO0{EbAh=Epyl|Tl$;cZpdVm`Xw`jBbo=3dCDZD)<%+!Dl47u?(^i_Y#vkfC1
zw)BeG-k?iBM$w%=b7|vUAz7AkPolQIy>)xiwnhcdZ7AO^wDPDSeGSQFPK{*IjEs;g
z2A<~jFj}A7|0T;rc=#%~=IrDv1^?~G;Y`&}j?3YH;Qm`)TWP-e&u^73-gy&5G#ogs
zn%{!@dT^>3#WM3+1Iy&gBljN!ZDn55Iv&m^h2l&#+4<oYd(@eKQEI}Uth>#T__9>e
z``pgq1PROfGVF)%%YSTMk&a!8pH8*yzr8XAQcGjXq=9keA>aZGbR=ZT0dzeVbhXc9
zP>!j|QiChUFkOJ9q_0=3(xeDSJf%0zB(fK1Gam_KWtKUY{9@Q9t{lgp1{t6fMtIZB
zKXBErx-M`4V|s<?cx4REg1i}jdKxp|OP#03Erbe&+Nj|qOb4-SRxz67@$3_9ob{e9
z`?U1y*#1G#Gr_Ct*05%2q5nHit-Vqh%+trY&^Mz&Gnu|Fp$Q&63Cf{NNM(STNKCxE
z$~&syY*vt^2sRXFeUbRMPl%MD1-FPl=Kb&HO*&w6h&d3KaOjYj*z?GGCw?tQGDZ;~
zUQQ>qqL*EVsSQoG9>z?fj54<Ut&~k#dSHS13?**#3I%Zk7;F0~AP3w$qdb;O8uYRX
zE5n-dDiNG1N25>xD(FU-*2T`mm}16E8@pjNXTZZehU1faIuoJ2?zEmukz)sm1b6y&
zutKpQXb;RZnui?yskbex{GMD$a-RNU4~$a@;JKvsy#V&3Cva;q1=F7X*7BjkMDSGr
z;JLD8e?0CURqD`z*AyD~q8ogC?4MZ+CKV(hGlPZZ(<`Y0Ijp5-Rslk<0gN9~>U**z
zCS_n}VU+VAd_2j152&rFm2Jb~eEQQxYly2v>q>*dk%Dv;gBbp71@Mn?zV30U&K9t!
zy^r#6jbhZ{-f^6nrw8Mm?y$xE=mHHDcy1qfHqWOadf2QFADO?-QM7jVY{>qyoV{GY
z<8ugaVPXE}o^vVVB#JOKcugPEkqtg(pGAfJu1$<=$S_pTaZFNliVdZN1V`;<$CnrQ
zE#iwV@OKJx?7Ly&i0FDht;+WN08uDcVKm(i&!a=ye*)?u`D{_^Sp@cC>R|<Abr8!u
zKy$~FG6oJEgfj}j$&ERb7K)ku>FV&%DTEU{8Yn;%=y0I!LDTotvk?)n5eJx|D>hRa
zk~>eb-{{U6nk-g{5nVd*>-3|xKBGO6rb9ns(rsljJb}~8&~Grq%cS9S$3lsShhe)<
z^ah!nMRVd2WehSvCP&8I!(t=yl3z*X$`$432(AlE$-hwe%%nj7ukz$G1{oQ~kY6cR
z!{Iy(q=*Q40)UD;UVZ;O=HLc`8+0NzrNe00IMH@k<%yYN*{AvP^G8n>dJ(EIG#lI6
ztGZQ&7Db2MrF=)FUxd?s@`H}bJ*EiEO%rs&mvlNs%u<6OX(XfWuj+?2pzYU18~LGa
zVYTkpr7dfC>K1q;V-Rn8-JZVZd5=UMRIt~_aj(cE3!;!?ETN6Yc>o}1n>wd|A&DWa
zl_xV3HWI4t7hYEcwB62hS@7pr-a)cDv3a$-e2S6ydcwWEaDzP{_P!%Be&J@TaCyl_
zZKG)&gs-k59Py~{!Nq&_2phJ?ec+5DC!h&Cxl^E{m5COieh<n0c2Kvov5t?81Fyre
zVa%TI$oY((v)!1p?XuAp*f?hl&+bDI)eT29pC%NsTlWRSD(a^ekz~@e6FHv3Ce3f?
zpW+@p&bQ_Qor>bC!53Pf8=AEOZnYj91d!J?7*5cMQP?SlaL<YU*)L}ON|=$X)dzXZ
zg9-vGxuCTZt#6hljEJ+N*GV~N<`idf8X|}}w>`*Vh<9%N64W;KlixOr#9)@gAVm)M
z9<sf~-imqO<}D+vOx>F3hGu+22m*;D1hqTJwC$Gzcs?;t$`R0<og`Ub**&qm(=alG
zw~$rxj4ZRjd@55QRxF^iAfVuyM%QF{r=!S!OI!EG<fmBiz9Dg~?ymVo#GDp6@`j94
z6JJ2T_zRPqkdy8pech-}UAW?&P^#{yZIbU!CDTL|csIl-=YhiW_t|14Wp;ZuK~joC
zz4$lGMNK_dL))#fp4#HR#;c+2y}tT4eFV<_tD!CQqOT*Ozo)prujyu2fB(Smej?{{
zo~8bwd(X!ro=@~&8}Z^deju$k+%Dn-G@NEJVw9ilzx!d&$KvY#for}*Z&~b31nW*Q
zgK75j{Rmy#SmjzdP&{L=<f#(XcQu&+3DHLYT$OTa2he^g=7FhVupG^CKSDi%H7?up
zyjXd@34KWoYWxn!58-7YAQ}C9E~r^D7*({biH?H+>Y0~j#^|4>AZ`Z`poxX!IV(l*
zU>2Ent{e-+2Troc0oll#wsKd_m+P8J++X|op2xCww2Pfm^B=JZj0UPs`QH)&fDDi|
zKXOBFmfVt2WgTR!qB9$r*kjgd9;w>r$dXS1`(@6^aT8Et_6w@77;mcH7}XeKwthb1
zJg9A4OV5qyai|zubZ5179-Gh3G^EINJQ;e<G%BY$(V#=>9IQ8uM`e1}N_`?5i52Ca
z?n3<D;}F}vb=#j8kLrj!XPygT{SkO;vHsQ{)5*U{lT;zM9_)q{`V}zF!v_i366)DJ
zGxg`~V-o(8^JZdKvI(jJ23s?yC$`fewyXfA!X-2+$QF#@3d9;r%)OOWNS%mBgK(cU
z9G5%bL9O<bx4m-M(3F~zC+hqocie;Sh`euOV}e=+sox-HxwCvHw0hRwS?Ap!l=Iny
z%4@#&W^@<huo0lpZ3{fBz#N8OIY?f^BkqoH2RQlcg^J26&KT3b64)ZxyvZ0>iy!>)
zN({F&uGje05oPm(iWb>>&ata56{|W^Z`C}9<qhIU^ZT$xQT4@c+gC|ibLP7`$@phR
z!n%*&ieBdyuznvAm^1S#a+!&7cF)XDMA~39hZEouDz8nh_yGy~VQgq<P}j=97i@`>
z*6$3`7acX07`!`c>@DBLT?C6rI9~Y_H(8BEn+L4WuCT)ejRn0~jmLCdx=n8ta^8cP
z9I_drC7N|A*quuC#kI*Lf0)P!t^`PC&c;n_ovhi?yA)Xf>>41@<Kcajcc70kb7ruM
z`cgjky2xKY9hVz*@W-6Q6x6QKryM7dn)M$n3l1lyG|bLvhGrQ)51UFQtD^*rK0NDU
zdyD>J%&czm$$wqv?^}VY<=$41QfOG(k0+;VB-^uihxJZ}!S(yBV|E+kR_Qgs(-8ZV
ze9MO}_o6=7#dHo&j;>Er(3E!CPk(IlPP6O`zGqS3@Y<Z7CBbng*W&$XWg*5+iXrIN
zcZUiqP<0WE2}Mq8$b4R7&0k~xXJwQ0V-u(7FudW|Kl%=OzC?D+OG^o-`L}(aen+nZ
zfRqLuqIQ=GO1ECv{kiWX>{{&PxM4Q9JCPU9YXMr+zW?{9`9uInxcque4RxO&&*RRW
z<IZ72C<}1Tj$_P`hw{D#j}w2wo=6u=JfXn2=7Xk`Q)tz@0l{5%+IQZxvI;XbcLf=P
zQ(TTyJzrY6F#p;!F!(4Q=iEx3U~t<L{fM+^Mn6A=kDBY65Y61e%(;ckdF2avn&{;M
z&E0x{o>Hd|&B(l$nnlaMXo_#&qJx8~?T*febNBu5En{4*ieAR9%G0af(%oKpLa!<4
zy`RuN!7v>0R2<A`uX6N{F1z}yv#_WReEMe!n)2lkDgTV8@W~R&UutjIT<~jAbFcC}
zsvgiErxmGU`IHX|oHu%0sq}eG$a!PTM^=qykEh~EsNa28<&J-z*>CpGpGYgr81mhI
zcX~pvE)aO5R1$0rR_&%Y*!?EzpMqw0`FJ}xg%E9q%t{sWUxeKwvIStGe91D*ZQtP3
z#>*~nU`@AW-<@bV;YY(+rfSt75j2U8aei5PYx%}`5I;q#sC4i@*Wg#%_*7sj#jOv*
zyvCwiYev(j_uJq%s(^}I*X916_}}@e{rZc(^O@K=kau2Hz~P7I>LVrLFG5&<hbP|+
zPETd7eeY6ReBbx|$JCFse96S)GkU#{N8Mk4AQw{+$C7K`O+vm!+RH3HWp<dZf4UqY
zJn{G(9pxVuCQ)&W2=(1#t!TGRJ2<mZe-2CCyx7WzCESfZUyH=TqB8NsK=pUi$B%Pa
zKm=Q%Y#56?scjPec#SG7*P<oWKN7KpQ+B!Bjk&b1xLm55Vsro^s=MANUUWI04q!UX
zkU!|IuEt1vFUU?Da0QVj5e+{{7r3v?Gi8xK+@d<J{ryYzZSv(~kPZg1Ff9uF=h7Hf
z_zX<g`gu$z6a9^TyEjp4{of2K!PPy<vxgxK`d^2Pj8=;=?muuFd&O;IxwXW_@ks>*
zbXs%;T6{^_6op9$t+)&xY)Tq7Ba@6zvO<fJ3@ReQ!AM6Z(by_gO_nWKEIfQ=M;K<-
zqAfs(OLD{tBI2k-MX6?r5~~w%acxP+A#8STK9;(K>?`i1wLLDoD^7|SySTi%zS-eF
zUF|rEflHv9iTUoP;<kOEzd)`r6Ce$7Ksaal!#zaIJ6UAt9h^2!OUsD1kxe!mL?ePL
zcW;<ukjUWrDHBWTX<EA$`fYz!F3H4YG$mFR>ZxAcV9NI+hh8wp1f9$PYxC5$NuO6K
z`Tv8qQgi&er$_IKorz%PNi<?wU<e^fUk6TeK!UYW^2lsHGd3I8@>!&>(;$Evv6Pe!
z!WjJy$xJYDT1|kZ1H$HN`57*3^Y%gpIf<2r14}(jx|7AeWc3wIvP14jNx)?XL2cuP
zd(zfI-8OJ2Q>=2t{yQm=p0GA%IiuxFy#M>D7cwDI2dESXbhC2;KZ&jbrX%-whz@5a
zw92_37s7{AgSHStFrf*ZK^o$sEORjazFS$6AVTifyV_*ZjZ!d$5jIX*L??Pdn-URC
zQ@u_UVD!s};bL)YDUNaGO2puy5A}QLs^<rL87NB8_joPJBv$*#U-2BGIW8u~NmXF1
zRS<PYxe0Xrsn&=yG+}Q`EY+D(pR7NvGbt|V;P!{S8MB~mftGj(r-Ui3$%kBPs0qFF
z*BrQ0P9=C3NWT(l1~4h)x_%W{#t8vM#V-musg1Aem{`q+SvyJmD-{J7N^KmLs%|g8
zPR}i{7161Vbw@QQ`DUF0Ws8GMK}CX%EDU*ZpH+0AP}gK=WnukQUCf53U=k=0_kZYm
z%eW@P$8Y=EsB7d#H={>NH#%T6A}y&yLcpS=1l-1e(VYU)EmBf~j*tdNqXHr*A{L;6
zSls*l?*ILNUOn&ka-Z#U9_RNwj>*BAIE|lJF|e9JK&d?6=ekONK<}G+wCLd{{M<kO
zPp1X02|7R(F;&;BH{Vd3)Ibx_hj?7Ld5`qO`2Tju<o^S0*Os%)_G-Mb9#X+W(V#rm
zfT>@!i$KS0RZd`fP*^z#VcH$7z0Jb0MW*3}&kfS74Rk5$f}P|cm}CjukWTB7(q%e{
za&0u@ghKfNW1dt9TJpcEXYt2>l5=yh&B|kG2*&pD-@9SZGc8cgdZZ-$VAn+XhK|__
zt4duoEK=jw1Wn&uH<oIkz;>@svWB3~^!ZaPEv4)FRl?hwGY4t7Tle<><>&6-X4Y^2
z^k}fX+8-o$vMWLI6C<A|u1$@&AFuag&XOS*=Rh12iB|=BruNhJ!RgZZ&%-A)`~|5R
zGOspBEmVWT6Dvrv+di5>w!BgD&hum?JjL_dvet~owqW_r<g{?`XSBJstk_5gR_}0<
zE%45lYKQ7CU(z}6MjsC9ml%w2TwEi(A<13(uJTEG{+#HkY9YX2Muzh5Q=#o95}x1s
z<WIb3${~)aIJhm+){5@DEhL-~S6Ev@hRE-`<fsG@>fmp*utRGL)`<kRz)cz?c<*_k
zGNcw>LCeBRgy=*VO)JDftUih&fUV9|ccnOiw{IAX%t$b20;mW;%1Jg2RgVCd2~@=k
z+6rU4&^d2RIa&ophN4`j?4+6}RW!0jY4Y}EP^r%*%T6Pp7@>0NY`0>vkEiAABmu%J
zL7-2GAAn@er3y5d@jDtqZFU=E($!vbcm(F$mO&6zL$BDIk;~4o&!_C#Rl@{wQ|U&C
zpfnoCXhM+_YaKJd=T6|i>>Bb;?nfo`NpNT{jzyBUa~s@!IPQ;6e9xQk3{b6MaGbEX
zXqHJ>W*-#PCmH)huot-rlGVA!sdj{K_cod9v|xi|VvP@E_QNE!F%qEv#HJ`+_y*8Z
z63%c4@nDYd+5N7~e7k+2)WrVclZ^&ukt;*xi`mwKmM#)>ylQ1h<<hEuWVpRWsb9z$
zKa;QiYIK6%%RWo&B00&Kap`mwR}Fx3dA7hQeXhg3!(5b$Vxw)^OGLS+t-p$yEO)M=
zU(K#yg3+B~=KG3%C1&Rv?FuFrYoFAVm=P>561)LJNx}`fl16)k^OB)U)s4TY7OuQD
zg!ba4X6SljMqiX;D<Qu5s{S?CC5x55mp@t}W|}VXtfJ!wjGNGg)1Vp_&r*$}3t{2K
z9?L2XvM;xiO6#5ZQXIzq!&YmWeKn_E%tjq`(8dL1Z)8L4pdTP2yo2g$$a#Docju|$
zg8<!ymzaL;uGhJr1FogK+W2+UO=f8cG=9wUhX1%{{CrDr!PMH0&T+4|Xv^ga%k@3i
z<G$6Imay)r^&T_LGwUo5sdj{o!{XE9{$1m}@ZZ@RM}5ct?U22<eEnno_{q<ihq1>~
zum3eJJ^5P<fKGkd(7Ja3(o6~5(Sf}8MvE7J#$Ehihg02f94f>D3{muH!Y<FBB3au=
zrp+5q2t2gX{3Eo*y;Tocs>I+4QxFW2(CWi6THA0notL`3?lz^7SjFMjv!Ql&I9h3E
zB^hBfv`T6lB4-2f=52+{zD?sZwGQ@GUEA(<;-kHIWR}GtTI^PYzH#GCTm0`4TlU8%
zGlA*fGCnnN8t&GbDoQ<rn!$a0Kqihmv-iMI_X4_5_?>WfY6^1mZFg!UTogG3>foTS
zJ~73){YwCorT95<IRDdfFOzC%j}M~5+Z3%2-|Nn4=9_k3C1sDRxiHTRV9d}#!g(Dn
z;WHmEb;QpqKT*v%l&?N_A(s+rU;tv`^byQ&0a<515BI;-21FP2u{E<iu@_}r7zX7V
zH+@2XmB4&dUx}Ok?lL}lgm({VGN{Z_cb(Q(324J2pUieYIi9%{T-<Z!_RXb$N(UTk
z)fEGOeH_it7uK$vpWiT$A}ZZI10AS-igi>^!^fH~D5gX|?q(vIYQ0K56YcS{`sW~@
z=0(Q?6`_wCq@hyP<orfG1oLidQ~b$WZY#qL0us-7DN4t%XLzi7^TaudI*zJKcP$v|
zovnE{3DqwzmKZzz*=PMEYvYF4=wH^yt799Nv2`-a%@I3ycAgRFXtU_N1m<LtG6^>R
z?8)~MB5R!0&eUC({mkM1IC%=pW6f2*SEQt|Slr%VK$A_FEC$}h#72Zi<76c2E3B#)
zkGjY7Ln@rv1>X68V}3sHWxe+gO#Qwz1MPu+#*w59BbB7qKQFs*k$%sx^bj+?VHlsQ
z-DJdh+o0!(OzTD1nh5}V4rhW$;KUqeQIT&2glC4aeKH!>M_=xo{(h<cxO6Vo=<Ed~
zoq}IH=$=V{ApvNi@Cb-$-KWn*{)IB&X(UFW<}oa^iskZ5o4}F@m|_FnNsN6!5ur)I
zHVnJ5WSv^kk`zC##Dbd`hhY&T&Y)T>q-v9OEfYcr1={TJUl{Jb&;T37pr}wa<&hib
zsx-b`ynDO?A|n7XluuhQ@V6VFvoV_FxW$KtN^E+GY)W@`BdCiNxEbU*ntxY}h#`ee
zkwcx2h$97>dd|?ZAW^mgB8`O+f}oSZ(5xCDCs2fW9M49wtfq+M(Z&XAC5AeCY)J=V
z*#+-m^+`d<FUT9pD$!rcIamQmlqs91hEQB97-dGgyZ}*vOV%6350^*8QGfPBkoU^j
zGf_#s?^%~9A{A!Zu@Qz1mD<w#5Nw=~C`IX2s7*6{GQU<bX%mvK0rXX{i<zB5<@X_^
z3J$8+jwg$_p#+r-v5^BvuR2o(ex_hO<LUBJmu;LRiBMljRCi&@gAw5j!1ES+(nDVb
z>RITmbNW<R@*0$MyC?nAYWl$K#9o8gHM~wdyYLHTmlK>+O8JEx93TmI`GHqVQOa;q
z2SjWx&~1ijc_xjT;x)3N^+B2G<(cRMlrRB2;tl;-FDqM~oUj6pd)YanM89COa^gT~
z@|81H>?wgz+e(3cgFEqtsneNIr3f2Y9F#WRM&Tq|W}KPgjMR3K5wXe5GJzU5B)_cA
z&OqOO=wK*>GiLw5$mxG}B`9y@jhE9;^q1AVODB1$bQwKnv9b=QnK*TnLIq^D3+h9Z
z5;bMafpf@}Unr~xgAY~W#rWeZ1>SafuU;&`J&V3)pBe41!(+~daJ*e^3W6y9V+1sN
zh&iALdcD`QKeW(M1`MbcARU77TM*e+>sK@)0*Jt=O6X6iBIU$_n<NfOez8j-SfmXE
zd^dYY8*?5H6|TQRbcsguMH9;TvDzggE+rO{`9n^aP!*TsK&D;_2ZyNSE=52yl({&V
zFTB@q1P#-Ga5KAroLVlIAt4_FsgmVvl0Vxcv~ckP+ojtqx(6lf2ORHD^l6m1;>t}-
z@d&`vNQ#&-j8={6U|H+FZw?8Ygy$9l?A2Ig67KYV@rPVPIt~>Bj<p6pVbAzF&l16x
z6~eCQqj>225hS6a#70$MJ4-aKRYVC^;K(2dISGH!!1vNtbmOFe^~1SHyDCMy`?22Q
zor7gbfx<1Bg1o^gSqBOm3#Ll#$N-F3caRu!xtLrqc*qU4B*1955H@|4GCM4c#h{xk
z`?HnmRQr4RSFi{b(N~b@4?imc`RjspB#tBvzByl&nv`*<)LTC^iw-ur8%+A<kcpM3
z^3j$$*PE&JGNQEIlqORFN3Xc~MkJh&o<x?-X+QU8zAnGAdVrSoix}z=Ony1RSFM*>
zM%<>Y9kqmMY{o18X)ipnJKto%IK3rLA)MAOu!~*IWxStV{~!r=fJmH%H?@#$M|J8Z
z`<jRSFE_ru!BY?K&9CDYS1+(v7wORdQLFAg483Gzyo}T+AgRa>tE6aEwJPaneDmxZ
z(<B~hZp&)z$VwiEXeD)M?YZhFB$X`%X!D_(`d?@V#lcRi^qq%I6Zy_=)0~5(=*kAB
z=0ij2;l>Qcnu9r-kkGSimaVG=9R3|LWFwuJ7iYJ=oqd;6TS(D+t_qn`)l9E?I9Ob`
zc2#JV2d$P8F<soDqnilqWLVom3ymI_N|>3y<+RK-&yg@DMCmNxIB&h>49czR%r))q
zH1Q9Wx$xNho67lmZ_@~G%Y2!J8kN(|IB#m%)yyOr_G-kyB*h#|DSO&!Wg%^Tulhn=
zG5<Lkiwg!856!xz7tMuU>AtG&w)S+5qPLpvOtWUUL@8NbZZbV|h#wpS6w7n9=DJ@J
zV+tR4Q0)j;7_f0b=!ahGDS~}hpAQ{?p8{-&Nc#|F2O_!eE8#lPmaSTV`^JvF=#stM
zGy7|h8?xnnV&;rb<k+Q`xOKR=sW_}%4%I2ZP1fyDwsTng*t>jZz>}fxN}KcPkW=ah
zr`vA^E=#&RHSTR#bl-ZMd=-MZkvQ<>_Y<9_0nfpK(<?5Sl6}`apB5TFc}nLaPw{(N
z^As@WPQXEbGCc)L$f2mG*q~E4x+=HMAL8(7*Nsi`liR@MK6eiJemZqe#y^9|PkGFO
zLlW*oQqe;v>O-jhA^Ei-#b^)NKSL^d!)orsrCh@rCBr)X!+OltT5H2-!4X5fk<eea
zeDGMtFtX1a*6P_v2z~@sJ7NfZX0d#RcT^lIHK0<9bu58d>w#=05)SguB6bEb(W9$O
zeasX{N!z_?B`@{mwwrh_3*)h1$e2a~IzoO-e=9)8@cP;IF-`hwZ}<E4#Kt|dd_1o6
z#9lWu>l!DLy@AxxT=zu42_Z{?v}Z!!aO1V)xG`GH_%4U4>pZWu(RF&<74F<=@`AW%
z*VT)Y*BN-4N??!voU+_6fmNCKn_2M0_D|L1pE<ZVG4dyG)?z%>i~M|W%ySM3_IWg1
zSDIU!elG8u;KuV%esJ1-Jn+r*@a9Zx(NvNR?nkBg;<8K;?uNJf^ry9JNAC(h7dyS~
z)eKn*{B7qb3=e`!2b~0m{I&~r)AY6_0DIYepWgr&)8|Qnz}H1~;j!mQ^T1lq8HU@p
z-}Ikh`OH$>7fiQO&OIRiEqSVof1b&e^0WCllf^tSGsG!q=I?ZH*W~S*kAZRpEGjpG
zT<d~fl+SNqlh{~-x7z@^&(E1=7U%-!nbR1}{#t*VUI=00RyCcgS(&q2nUC9FEZz(u
zznpbnk2&%Ivwoi<vNR0p-%l{<EQekV&&ds^K@y}ECH1`P11^d!U5rTVW{%qlI}Zs5
z)HpotuhmiMu|6P2Q4-38#*9UrTwz=sVbid?)x#HYwl?DUA|t@hk|89`!xbUP{$ink
zh44TzKLV&Y?|V&1^5$Po55t%9nyc~qQSaZ+$2YHF$SW0hq5{@A70Jtrqv65tIa@qd
zay9vz&o5VAOA0FW$}oj7KqG8y#h#TeV@pgJvtOFX%`<ttTtAqoNet;JjVc_ADga-#
zNso12z2mmNw6}f>;Eoa5&#mtUJb&8dM?eqsU!Qc}O%j&@ak`j&$N;5^162i*bQ!h8
z1a@&Zn@^dge#Q<*i<5`0T5uE{vG5-bzz@vi<*;Qm)~)iJvDS-%j&bb2u?gk)glBaT
z`z4(1pI0SVrRZW~e~uYnElh~Bd9#muoz<+N75j#{Lg3ff-9MjS1J?8UE!%FZ@j44z
z^Zt0$xR7cDaHP5I#rO8NLOoC~Z+rF~Q{kqNvy5r_8v)NG8nfB+tXp!Kc!olpgYeEz
z%Iiwow`-91r$U>nLXVFXcI=#qMPxPKj(6%H^)j2FyBc?{=WW~sU^M<dDUgVGypd@g
z1~>t!EYP#w<yQkdlM_FPX9>sosU)CebDaxPof|X2^tzlo5iv4%BQ$Dv!3-j*^h@<w
zqf@DIyMp+nO$&d<GyhaJBHqW5p;?O}6=nKGrHQqy0#AiM;_E+DbQX88auS_Cq2G9w
zl-=nn%=deFq50olD@yZzY*K|Vs-03GE~;6|o9-(1v2m99HLS3pJ!$-3<8sL7tD&J$
z%U^ugEk2bAPw%Gu2-}X1{(@Fc?$o;QqTb~6OX{*zYKHI!`14yY9|K;W9mOb0vS^Fs
z@Pnkx18lpU2Y=P7d1kyy-ba;tYh|DWoJ-mEyx;{;SmZw!AM<!can8{C!H*8MTe8Ep
z`MUxi(Bh*TA8DvPT*f@-?}ry39B`5j<Qoca)oWOs0hOu$bFH5fJ;mkj$NU0+bZ(wz
z&`kdrOv-fB{y_u(raw?$dyq-BGe307uzotf%5z8-W(vAhpvaf8r!t|4&fbbDbh^)X
z;r_7~UyiI&&Ih4`<WpbfRDhHv9KvAw`^%m`(eRc_l91(|YH`7Uc00F3$1;BPUD%@_
z3I6R?sIPm$D`Aw*{rkUh_f*<8YXUS5Y*9s@SROnqDlX-_MEASTMJ9{wQO<>qyyuaV
z*rdUSkFrEBIA4BTeqZ3)i~P~AmBA+#IW9##^C!8t4EIPUFK7#MBn!h_^5e7rY|I9|
z2%Sv6`VTcy)c+K*a^~+@9k!0%qNWc;1oq;O)ly%&e*XK99U+bwpFp)EB&VdNrJqte
zWSOSsdHDtABq>>fj3je;1yej#kq}>2QArR}OsQc@Vy*p;p7wwF?&AzGh4?4*1e7$X
zp^>>NPF{kBLy;k&qmGCX8^zF37rVqh;dn-V6b7|Ita%wPQBuR4zV#NfL(|nm=<6p^
z8oX9M<f!_^ZB(e#GrBfi#9UDbJ+gwQz~f0+Z_G6H<qFE#uW)}8!W6@XIFYpta3N=k
zTb6zLA;(K5a3VD9B2aD>=|sbxm*H{+t&kc1z7!JZBvuxe-NKK>lV-V){CH0D`RZOe
ztHCmM-OVebX^szlg(w8lt8PrPd9mgH3~kq^x*wiWm$o!a!d5-4Z-z-6mX$;phZsEA
zxEV{Ex8#lCCoNj4;km``6Mymzm_v#5Ecb+xcuoCiQw%2I=9k_w4JJK`N1L8M$XUR#
zHPhwIU#$;duq$J_9lJm1Bfe?*Bk3r-Q!8tm#@C2=RoixFF;OSvYs<t5)zT^OK=G|B
z{B0P)b@z8m_V}Ylf%R_O^ZbYp3!6USE*^P^N&&e+$v6UXfn}d9vP813ggBm7w=T+T
zwhCoP>o+Au)8M$6T)d00!chV~<Le0oB?>u(<)?}PE_umsJ56in|6{f;;$CSkhH3Of
zUWy@%;P6aHi;H_pLOTxk?CmKMM9Zw*Zns(8jH6L2f8pLV*nws`c@{RF+sg^%hIw5v
z^7QrHS&*<N{H$bya&H=~<!`gJ6RySR*yUkpb|<j5i;$7J`{8H(&G6TM*-IiWGG@QC
zTSeG4#Ki^T-UGtbW46IpZ{`jW;v8x+@`%@qcQpyQ$==e<8x0wSY9<zv5_GJ=*szH_
z!g_&eOyj%!Qn8imxn&kT*BNKIoN?AYCchn>J2NF^D{FR4Zy0iJm~THa{NJJN{;1s7
zbPRWqd4q&Ag-k1*8fD1Dhit{sDO?Xjn-}@put%TL>je(Rd51yG`CD;r(ZEHtVI8X;
zZtyl+bwcxLl|pNvAxxTRgQwn)k;$~OJ(TA_fbe`PnU=vBTDuy-tP&y9gQZR_9s=(m
zWIY^?US?GrS1)FT{ys}DZbcko+c(XP$v_Se=B;$~+mSYw`jDl#wLgJNY!dx}FM)05
zHYB_K^&n9N?|$Vq*7u*-nB<-Ri&q;iO`REA%h2K%Y(@K8v)P2d3V+`CZkD|#{Lyyi
zSC_*HnTONeYXkhjfv+w;RWKV935OpdNB+xt0oHe`g!<3NiBae7h12tUh4;O3$#`;v
zEKS-6rgtQbM7K*GKl)5spSJ@x2^=?jkP~Mf8h(2)YEII@&tCg?vRn7?->*;I&tp#q
zj5QjD+)&89at6hoM}`$NxzGYPk}UA=``EcJba7OoI@n%6$8DvKym5MOw9=QpmZp4@
zM(`&9h8@Yj;JhA-v4KPc_=1p~hdv4L4AEb7JTS%~pee`_=BokFtFhSc4yMtedss0i
zU+*62vT2HW8u9G}5~}>U*gl%3Ln;F;PX+Q|u=)}jsX#o39~LIO%O?FL1I}c_fUw2^
zT&ZY%k<b({1Tn0vgQJ@%#&K~KO1r|K{tCRtke3kzO~$VTzBOb)U&PRvFA~ZBl98X>
z!^s>-+VEpJZ%A*Qv7*?+Y#Z7uiv3#V+I{h~t^(+%qa9=2-x2AeTg#`;dK@O*RMtz}
zmq4JCNR1S~+%Ho#is2Jemwp`<JSATC8Xv^b5tMV&odK1v&N>FzDMjgse1=QIh+g^4
zq6v4Y`W-ufUY-N;@{^Q`1cV!$rYi|WToubT=Lr+r0%n-!be=YxXVc-hx34B8x;a6D
z%FErC%au~kXyB!zz}dfGXf>J^t#8O;OA@tqkwDaJ)Y)7`cDh;<&B?j+sP9$C+e9Uy
zVOtva2XM*pJTV;md=evpw%@-Y&ACrJXCnYElSftBPA-)F`cBP|?PY%QsZMY4{U5Cb
zA!5i{Q6+||wV<elFghx!t<Tx!^ext2`q6}CX>uMrwODQ+y;fcD6BS}&16|nt2Im{U
zV97$kbCAdo-*roOeCKjkz~+NUmS!x2<?0YWce9_uo+r=L>Zs09TV`6bw{+9Oh!df`
zaOQuZZRw-yQfSMU^TkJ<_2(Z1Tx61%Yd?C_n)cxORm)c|?Uo;P%{;gnKJ{N{dsTAJ
zXHF9z#To`hDz&7`1GZ$UNti-spqk=FVs^i7`aG@0-Yvi*?Dl4D;>k_%KBl$9;^Y1g
zArI)y$QuYE8H)R1>)7(x`SQp`(+<=oWce}P#(I-RZ1>g*mAIDXWyoTBT0r{ADjN7I
zIiv!B-RxL*hB}iof8N67T?0?)`+3-zE>Q);HpNI`DY{@G98qSClihm}fpTJto3q^J
zf3<4bB7|pJb%Sza_nzpw0x&B*-lKo>PxksKfPBw?MZs#!klL_OLj2hp_gTTi3%+YS
z;^IS7i6FOlwI0<Oj6Ij084Rnx?qgJ6G?U?sW<DK3D2@dSA^lwG130%0GG9#lDPkZy
z7d?Heoi)Oqv{h0wWaPK2nuK})aW-&?o1$4@#?9_bmLqVwZv(P{qUsuPI7wr}=_D`+
zD_;saY0^z4*K=kel*P{%y+k}Z`}~0bo&XO`nC)G~LAy%8>On8{8}wH95zK62G^Wwn
z&PNs;>$?GNRF0SfzbRz`_#5N`^Z)v*Xo~NQt-z=~Y+W3UA>S9tjC+C%q+`)?2cSQH
z9|G?&8PIkIa-xtMqw;7Ptv^i~eEl1em}A`)k57QlOFMl+YCZ;&6CZ{}Wq?kQEg=iX
zGn?-JTB%0b^Q?Di`rn>tX?L1fi#u<<+X}@;O1J~p&!;7GE&l2GKsF<qD;lo5(wJ%*
zZFt@}^XlCNfBYFneUP44{}}^Q=2%hs=SH``qZx{{-q_*vQuAAtcC(im?K(E;)-vge
zuJ!RIDIFc${;M$Jza8;Ynamw{6?!(^k|8=8Yv_$k-jTs+xfgvhSo0E??=@b}@Oalz
zH(-2v?baRn2Ph~?-`#{o*t-n*`6(--813e(bkVm@eCToe*W$|W{QLCed25Hh`rXs}
zAy?RV_US$XEd|lCzgc0Fg=fdA4}0NpJ=lehx0WrXhROs6apSk><wg9MVC_Aup6iq^
zF;bRd^fw@GXQ}0v`{eeZ4D!lwOGBOMza^^D_M2}^rQEKGO1=8q8lOGd8<)v2C#6}Z
zYAh54AVdvNJn$j|1(2jbRpX%F88nL80oHvPj4jkiDwc6o490zH3%Hzy1Ey5{C6x{3
z0bKA1R4^<e4yjRShnES&zjy;Z<-yUQK)Rlr;4UFM2g|CYBp)bQL=ROgk4>^Y6(Ay^
z>_jyIiMw`&w3RtQ@1S`0-MbP!P?Zi8XOEtOmg>)oY}8Xt@gZIWPH=`MT<Hn+&$;_s
z)4FsJ;3Ho;dlhA+#p5_f%s_{baKa-DarVyfiD>F|M{tTw9Q8cY18|oeh06v4iS6F{
zJpf&%@vDx68--^Q_90eVF=>H7+D}qsj))ttnEyCq6bT3(N&Fn1To1Zyb8D@eYF&D#
zS4l7FkC)U>M3N4r!t0}3l`ZMIbuL|z{mYS<G!HekPYLo(C1&!GvPE-8K@<v<EflFi
z>NEwV^z+*G6<XZg0-WN#N03C4Ezpv$F;i$yF3^a6&nntVwVRz@^Yue=+NHg1M|2_6
zhO|;NE~2pq2@N9|gIdBrQJDC{a0xOL;MPtLgnr<KG0KRtQPMy0qQcC;YY8eJZL+$w
zG7yiTmGrRPwyXD?jHGMCs@eUtdl0n#nN0`MRIFTuOG@2@NEPw<d2)3+qYir{6Z4bx
zUgWgpc?D%@9%veBXh+RdK?T}`sUkcZA5f7Zvq$kAzQWWH1W5l7ppi^3D*z>2KnXSA
zkRl3Gq29OTU2MpWBj+aV=ccq<J(}}!Fy$@6E6Ae#?<6u2?Lq!>FBu%10|&+N6{3{P
z>ow&4UcjCh<Z;~2H<h{Q@xrt9DC68*VM;L6#_&`mqqRWEIU;JJAXcUj{~?4!8x*lA
zwljg&yhu$<;#{wlp<-rqSN<4;yU0kaGZ1>!oAbMtNdcd9T$r3vFW8gBW^P_ILSTIG
zA!o9;r0z#7iHv)mWX7KBSOXQ|r})cldfD*Vd#Hq`ZXqwe;OnkTCEF>IolVh4soq5q
zoT2&W&1Kz<G*=r+wF<x|<*ah(zy!qI1T=o?AhO7iRok(Q!ME_MHnbTp-`yUj(8<Y=
z5Rk2XcHUgm7*@9V4y02m&&sTjeFs*#fDu1A7<BT>cl@&gOJy=k-3^1fA{i~hxjB>J
zeSvb+<@(BZty-n)sr!|$S`o~@xEHifE2p)qF^sOWk>F)ME@ovem)p!Vtz61)xLOfW
z`@5x|BRQS`%u8=T>nwx?scg0o`3{Fk8)E$Wq1xspm+ArGC`m?PPCT2Q^ra1|5NLnn
zN5Gk*06PARuQHt8jAei*S9v*yhmMTqaXP^j0oHPd*fK^og6aIxy=Kud$w8L+P^n*_
zzbwZ>$DOhOZv80f)JbmA_c9XDC{r(MsZ;Ok3dXutxAHgT+^$Z@tcI&ZdA$&RgU$Y{
zT$7@d_ZlXJ_2;h_g~<{b*CrSzB0-9Q;-@0a*bDx}x1w=?n6|UdlR%O8N#bRJVD^q7
z9a8OnP<`bJ$AMNp?xYS|dFuTJa&3&?_dpAo*()X}2I~OQcak3x_bb|h>zj&N;;>LD
zUf3ePNa@Q;8m!pgVljTZhl)^f6+2Hx%M^2&hv)DuLb6T#kK5vmn=YBxOhR?*+x43&
z6`nML<fs|~S&p_c5)mg07J(_wrq5k#N3KXoG}*OmS?R?|=3h1KYOiogP$Z!{ISwP@
zTcJgE%C18~<cj+US!r%N`8cAk=#<REt~}e1a`Y>(CHA681Mq^J-|E}W1DC|1a6kfi
z+u@arDicgn;4Fiie%-!899+@%;L$sdl7IVFVQzA@!H+a86<u|28Qtj-yw{W5bXHjR
ztb?pYP>9}0`?;jy(?m*KRhCy%)3$1hxXNG@XN|84s!AnmUw4p$%g{(o7OPfNsAjpK
zrp{Ck8uluA_1=r?9Z}Zi>fmNe)Xqeoor}bhQ|$Os^ww}XQ<^}B5>!Hzbx1R~K2Cjq
zQ0Lq?hjt^~uBw)$3f&O<2Lo}MuOE9mi4Tl+=q?8KPj7=$ulkiORXN+Aux<8dlOLwQ
zbvx{J<pIeWCnyKy>ED!x1+TOlF#1iQj4K>karRm#bNU}1OHp?8s)_ore*Mf>njv0K
zSMNQ2%5-hmtqJ?M2PsHZE8n0Y-$*X+&B7S_21JYI^4Gkzhz)Jms4{!W1m`9i@Q)bq
zC77RCG*SJ23K|oQU{1qw%!b$AvPE+akE@!VYm$r@De9%U)}uDOt<1z(4svdKZRteb
zd;`@q;3E-H^0d_{5{|@zsQY&~?7w5$MurO{jNHE)1tQQT4#xMZ@3+5w=1^kj^!=G1
z)0NcF(QtNST^B?1R10~F?pX<whq?FYL&qL{Cs%$arn;M?_m3vz3gPukY?uugG@i+Q
z9~9G@tZwG*$>V`7HHs20JPYNWa{w1G*2W*tb8*4YLFW_EwqH9vJ|BS@zou3xS&Vrg
z)Lxu^$tIcNTlz_gb;%vvgir)$=9)R4Sxt}hPu~fePT!xNm!APErm}F>NrATSG1EVC
zC*SX%)+Yng%kGn3{!r^ilXtTmwXfKZTs!-n`8mcR>rcOLP|;at%JV;ep8s;E(CfP$
ze&RVv6?dy~urj8&`ZO}=&vAOpaX(Omt@GUZAs+M2>3zo>kI=lB{=9?-FQ3Oes&rm<
zU_LEuUjFaAlF)(*i<_eUf=0}OR_Q{z<AM&=j_`K@y>723w21LoG>KVEwHz`axKA2;
z#AkU>)ID5{F6l#;=GD(^ai#woS9DN-g_0JrLdzOEu1K4Q<J;rvhk;qq{&(MC>FBS0
zGroRyYZ)#DlM7o)7QG>>;TfSXqqtlzmr3I8^2{pt<fVrRcP&+!-cT^Sg2bM4BFtRT
zKYfuq;Mx+;6{SrzAeerv_95W|3{9d_(|EAHV9nq3wEe4B=^sUj-e{a@`ll54&Lz@7
z*#~3eld<pHy*?3qbbFY*T8f88=BE*m5L{JNUg_GTf?Gk1M-g5;U|k#@1vb+2Zu@~N
zX)jZd*P`=9);yAKA_}e^)~p!?JRSvmyPjrHu03_?9Fkh;?T3yzRlGm&ZXQ_sS^7F_
zX{{(GFu3nLn0b@AdupRqo_;pyn@Q+#{w-FO%|uR=fb^~42O;m5H@{+nd$GX`*iHVM
zR`uMs6L6s+kkI!Uq1=~1>lN6E=$2<~Xm&q%h`yPC49P}s-%U-c{A{H*B=VbdDtP_D
zYqap&-{*%4OH*Nu5lv$ezVEsHOu?CB?!M!35c4YEh~wL5Zl}J8w%l-w?o77yCg)30
z9}-8Om%M#&F}Bb2POTak@Wmp5AN5u`tf3<2)r#DOFWlJ-G4rM|z0la3_!t3$_up!v
z>&IIkiK$6}=~?Bw!m`n#uEgE&=w~Kt3E^Fau^$R&o&Vf;>oiVKM8&J1&JrTxRCA~x
zBks|5To^4eQwaYwBA$DdjW65%`BF%mxgs7Kf1s6Iv&z;5d~}IOaOX{aZ;&AI9$$)}
z29Hp3#Dq%`Pp<DKBvRDyDtp92i$q?-<Z;eoXJ|T@Bp{kJe+kSdVI9U!A&P;QLr{rB
zAng0KkVxLRfpjqT=WD*Lv7)lCzb-l5``4awC1X)bwuh89#lZb)HLde7ZD+3(xGz0I
z-Btd3$8@*tthekBGsQ}d%-xC%#9f(xW-?rT2ZYRQ2H5rTk`$zNw(MO-75~y&!$Y|b
ztcw0$GL@hiau%2Vfh-e3Y_O~^&fp){tiJ>(uem(e(;SeTHI1D9z46_e&Ec<gMaq@@
z?)Kt<B=EX9=gml_K<$<d^B;tLh|5Hkbx)mrN{Ri`LdRPryb;)plbswF(9ET1z+8M!
zp8ENFWft7S4fjGXRNOnbw*&2dyIyoJva&2muN+obX@0dKvbZ7X6zRuS`S8R^>d*J^
z1AtPZ%?`}`N<JxnEpB^1?xow0uP&ts)%$S{>#9#!pSD`bT;uE(E93liGJW>I7*&m#
zD`V2B=xM3Ds3Cmrm$|a+@1llZ9Ss&`7DtpGM2P>N>MK<%80qmD(6|K@oIKATwVklP
zd*PX|L?g6lvbk93R|WuupaC8@lm`va?r-mioa(9kdOq-*^0FGUk5H<pMR_)C0H7or
zMw%ueF@ZX^CH-e?n@AnoCjMt^o10cr8kbs{T%IVVkS3~_kdc*;lSf0vxE-BLq&T)x
znx4MLDQRt;j}o{sU5RqY0n-0l-wM+(VR~0iQ(w}^i>6^-(>xnXm`G5-?0v-4PLZS~
zzb3>re@pvuOj2Ab1y|E7N-b{hqLVop@{?>T9##w|!o@90%-SlSrSPiiq@pWn@fnh4
zZ|BY0t0!_$_Kofn?KM*cN?wyCkzdWS?`efd@!<%VDmFO>gX~U!94MA%(yByTX*^`4
z@XH@LgkGs3J{wVIU-ILcyGUb(qm)<3j$G*L5z~1I(lJ&Xx%06jLSGOsmwrj#B8J^q
zw`Sh2+zx#B!9H}U#pn048BB%I=?LA%E5bfN&!VE)qc-?y0M7hghW{k+yHRZ4zpSzp
z&MY^Kl(XP+-jMXntDcaL8$t(o20-}K>6@^1f6u}8c#hoVS@(kTr8*1|fp1R8+NMTs
zT>3fz224RR8^W^7UyJp|>6kq%&XkhqtpnI1m;N<E9Ft?-F!|~S*f8{5Ms$eWN&H!t
zLN&%}&f-Yb`-Nxju-Krr6N!mn<T5bAqA3V?lNjDO{KUrcY^=cPr8KBdJTcQ!qVb8%
zt6Tnm1A_rr*}+95;uMAwlxF07M<EWt8&a}nBpcpl_gx17XDbt#cexHu{_pY}&N2vD
z(;&--7&(wi5Jou^fQ)H=fQ8U-)NexNkUimKs6E1V+d&#r1!0<GZru=-go_S}QmN+^
z2DS)|`$S_=3Y6)9I!!&L`z45+ao{%#ajr;|vatA{5?U*HqcWH;`2Vrgw_0eXW+${^
zhRsq`lW6`~TtjVQ^UJ-awox-8$kutXDT+ez*3pM77ZoO?{<T9laO+X<jIa4pn%nz0
z#XsuO_fVw8l2hU5OVm}Guzeq2!Vm#0dF*@jHSO>HU>x6Hea%4jMO^4W^trW)(t0)Q
z4=MNq<U7p&V@GJqb-meZUx074C+OGT<Y{8utKW2im^OqEXyi9_$h5_9PsKZT5Bm(6
z#!ASnh%Qf_i?$5q`w#{Z9K3#NfVsURk!E+=`nedA{~PQbk=Y5d&`>2M%~5THIfb#*
z@2anUm!DBvR`k1pPgc%Bw$36d`)4N=uJ){IL?}??MK7h}!0Ejnp_|FSTD256RgCzW
z31`MW5w?C&nl3D|S$SA1TVC@4X%wU3h_yc4M$#@%!A%`$R-@=&d(GWnetmp!wckg4
z`-ym_y3*k!fG-uaxg$=uuQ&%YyVL4m$+-HB0)>iaKmNw9{5l0n|GiRA><QCrICMtD
zFvgs!z91ZVoMkKevD1{Rhk4UP`K!00$$n1k+wjeEd8|gU|D&{3$Px;b4c6V^CF`f5
z@DTuro-Hkp<?%u@I%l4xcZG-X0}x;|c#t)UYP9`yAE+|Qf~vefMTt{zbQ(&7uj2!6
z=XpVBWokiAYLZMVwU8dtIw(l(kfE8c1e+A*BzvPnrX$G=CN_k&%nKxLU7U||BCup|
zknAvo1_3yf8T)^gwxWg@#k7M|KdREUE%&MVe>!BHSiW2A|5s@%Z@zc<pAMO_MabH!
z2(?3I*b<bHU`5T46=kDU{*xiAJ{8`qX8B`A&5(IZ2sKPtM;+$a6$3D{eFQZ15L<3l
zBfBy_kwnFWt+azI7gX@a%FX!-kv{TQdj&m)vI|r{;JCb0An;WcsVBKUX9AN*%q1yj
zkoB9vM03Fa6(w4z8JW&75KjxDX`4=|OWTE23;IyBJa<H88WkC$E7&EUMMyo{Dzc<@
z$SfFIrMJU!s44Ag-^UYIb&q?Ik;$78rG?3Ac?%aVWMUIg{wOgNn!tftsDMAnrZofz
z2Ic^*DDR?{sf8UXxSdya7cFDgN^yhdidB7j2F2L*6<t!1l&G|`KEu9{Y^GL-v3Y+Z
zEC9SmPg_y1N}m@i3(JOdNLaBz5GE7|r&c@%U0{HD_vBKG??~3E77z6LF1*sIn(nZ(
z%B84tIjMX}%qk6rPF!%Z7VP9<^k_Wig3&7Y)5-hy1MTJedrL$7%T4M1Q|FnsWG=uL
z?G(QYIkD~HX#{cMbgkD<zpdH>455_(8xC!#b7$I#7Yf;C6n-dZGhl*Ve)Lk;%2&ay
znjW-@cxgnYnJ%zj>T?q5F{Zt$|1o2IZ|hOIv1IU_0@q1bjjptJv@|4v6|vHzaE3tg
zZ;2FA@2Jz``z)XR2B(~d`Z}>4T&o@rM4S3qaXrqDZbTT%iGKDy>S#&38GBdL!)W9O
zM4^Wm$&l&6Q&R`{erOJDXyW4fd4mt&-uINY@?_MtLzoShIV|K8f<Au-1f&cTU(~Yl
zkZ}5Z&M({TYRetHAJE+?0+<#Nn|x1mI61BGI?hNtV#OvPl*9ATQ142J{L}>*<TD+L
zfOKA-xb<c|0%~@O><DXS5n+_Y>$1+}4t4Ip4a0(7Vy(`}W}HkKwFGB9za}m=#TX=I
z(w3~=yd$WM9{XH~zO5TXq1!APBVoxKm_NQ_rOx^WkBC^>fpqn!*GE6^;?fqT-$1_R
zK11lBXv`8|^Qcam4}pW17%AR{HfE!0`QOE~aFpR@;0m%uwNx%mQE#}g!Q~OIr`1*0
zq^W9r<tJLljG`_kzdx(C+@aNDE5Wtf_mC^St8;k5T=s5xq%`jV)Vh_h{G}fIqGht{
zaSW+}>Z5&lWiT@IP63;lxG7U0fPH+Zp0(Rc*9@jAUp6O(ZWvLMWd?=Faz~=JnS`U>
zg#~Jy>~y(rMG%{G-2ZBbpfqTuVRh0jN?cRpb})t%z^$#hQb=4sJ2-4iFohpWn>jai
zorOh!@gnY<*VF{3Hhr~vSv+rs<^-%yh!GzDaQhb2eFW@LLuGx-4<Z5gP3lTC*#rsw
ztbv|7+KudcZm$aO!KyoS>nv-U5@W_DUN_G7c7JWNPm<gHz<qh}Uc{_w78*&XsKhZO
zt60m0{iEX3{prO*NWphO95^ERZRlCdw@%gA_hx7C^F=MaY~x-lWUTutTi}m^%QT`g
zVV9MI5hoK17J}iPXnK>R9V6#h1Ddj~PggIPS!cTnA#H@Ukqfs<G_M@jeU3?Z`3?ZJ
zPA~kd@CzbMn#i1cgws#FHDFj6mR6?Tbd{amM*CmTyStl{XO)uK*3CJ1pR*v}VZV$?
zl$}(SwgV;Jn*a1DPY+`C4CUhd{{6b8EL=l>`Ik0bw1-&q3Of4mqQm&g-B;4l!hw#V
z;lW|XF?u=tm`n)hha=?+*R(p*_~B<6V#cL$YZskpC1Xtn)#8w>_K>?z0)6ZaVh!tr
zpO486)$yM(q9rQBe8mVuV{sRkaf!-YKi@;UaFP4_c7s>(EBnIuLE=+@_^vBj#^gU+
zR?|5}HZ-x-^p5*#eCDFXa;s;fIMlQjYL;v7y$brGIJ?yN2C#$-8zE2)5W$_=(7~}e
zRY9I@J~M}U{v`04A1JZU<5(ktAV5t`pcMvpX~;o33y=>T_7^LJ?;fzG_5=sl>tqz_
z-i-k9KW{*66Snrj8{=A~ejq*q%2q1`=Y>a^LET1SiWKo`Kdww0sPZvuhaY$w1&h$)
zsWc<hdlRnDAuE)*_VZ*(t6=hYO4!eobu2zR-<t^yuhRnX5orxQ$*E$jE_BK!X6KGu
zQ&yBv0*6eEDEFyj>Ks<sJ_{=gq*Hd{zdL6{&?eN~=DeukcVYWZi>F3c+a>dFc7cUL
zsZix`i1HaN?Y33n3wWscGVD(et9}*Fj*`{a8st=+--n<iJCjqN(S)$;%b)>NS*C_f
zI8urM#)nLTifL!zw==%9t3i?+CZ55RwDBDTHGu{=3!l<EDX7e5xSk4+#tV<p1lUX!
z#LzrfKRa_<Ge<Wr<{Q>&WHnQq!q2us(x1<X&Gxg=2AE_>uLGen2>?4%SleIVS`w?C
z4C{YA8U^;skf?ArEA3p>Ba!4R(THJ?(i0@Rdsj|IDA>FpC9vSAr!e({$<GK-3eG=>
zWM&4$wbhG;0-1qh*8WWH$zxS)5UdC(VZD-BKyjT~g%xTuCz7FOsd5dZl2n9z+P?I6
zP1t9#5PpjMIjI~HB{go}p}RM@+&ufS|Md%Pr^OxEBF4&+JZ&CY<;-(iC1aZ`o0Q~h
zp2Zj&{h58{IVG0AtwmiZkciHn1z6_MEXf+hHio4`yG2FInf2&!PP^Q+aRML7@6!tp
z85=+`^P211%kAi*vCXn|9A@ghy6!?|AEk5`Ru;Bhz#dR4E6obk0#+)@KatDRUQ`H2
z8D~szenIm%o`mJCf?xf3Xiti$wkj`MZdTjW#B$E*VDIX{%921Bh_#*I5oJKYD+a|B
z^X~mkRKwIbi(sn;kkz_Z?$Q^@me?@s8&;P1S4OC3jM^zVyo9A2oV(P(q!IwCMa8m`
zctekMa|*dgSY8sGD-lV38zbi?dx~&635)v4f5p7e{ljI1Ib#Ka`^+!j6eJt<Ife+J
z9KsLRVl0|s=et+Mcdrd3kJQ>ID};+zcud~OZWGBns4pJmYdfx})M*r}R(4l`IC%pK
zfx;YDU7z$KtHQt?gLD0HNPUZ2&$NLfMB|!h)A=zD3&y6QC2&bIL&~|JUDms*&hIY{
zc#wGSVKTFYXv|b=Gij%~cdvPGmF+=s%)^%tXjPha-`Mfdw<J<Tt07{m4c_Z>q1^L#
z-yNuT7T^C|q4QN1`M0$xj-%;oWYaZKUa&pyD5;sp5B#;qcKMqy91WIZTcAS^X>cux
z<t?S~^aq)`$9>3r*$Tm-Q#H<ym&MyJaQ_yoc5RpXeJ-6=OacpGQG)0g@egguwqD^L
zIFw@x<W;tmFT+bm4N0e=<@m62Jwq~j>>f@bt{LnyIoXK;LsB=dur+AwG>dgSBY^nI
zK;jjY@jdZ~s}LrNlpGLKv=2B|d;O(|iYY-Z3!v2Q$b5mwllDPXI~gyxu8|j&eob8*
z<gP)LM><n-H}A=4zUm%U>98%7ezMhZqfxFWyCXqPl&Zj8Yj5#ym%5=6{$5%-w30P^
zs5R-8G{A)t`yoF!)N95hBZ-umsgsTU-SgF^<CbnuQu!m&7T=MWZ1ok{?+w8{^N%k7
zmi(37+3>jYL8M3y`m`|J?a}##KF2!>@|g;+4x1!Z6k#2;#c~RWsPxp$eu{4IMz*{x
zyjk3BK-%re&SM?vXa1vI{C-s$y6tM!b59D9F@f~ZA^Yo>IW!to@(vHG(c)?tFSR3o
zU2%IAZT3gbdFtP$)Kj<BIFmqn@)Z#dzlbAcA5G!C6lisYny$FuDenF;(m<HQNfuVa
zojLfaiR@;tu`dUcwR)QF_4LZN@-I2jGoSSCd_%Jy-J-Lil@f=^n`kQ9KUK@|(}+`L
zXCIMY5I0a&GY(NxEYV<^4)dky_@m2Xx9x4~e7}c%@T1aTKa_kykL*BQ>`OnDTVvFe
zZ_-}V<YKx}y>QBC;jS6eFkrkisw*gdV?keBVC?<xG2FBgmW17t&_{TVPd{Q-s9_sf
z07r+1jUSDd;KrRL5#X}^n!N;bYZyxq3&SqFNDu*zPR!c7_Ms<QZX11wo6Pi_e8D#{
zE$OiKi1|s4?#qR7(*F3!-Xwq9S$NPy8g7c?PVQIoWP9>N|1|7Jjy^kLlEq^3SEemq
zZ)R~?P}D-1LCuPhcH;LpP6<lgZEwTgtQlA*n$c+1>Dug4|Lmvf_!TQ<RJEaeZVGMx
zxx594&e24W#B49(x!j^5`}Xs1f{mZ4%=UrBS1V<U5sY;;n`!4cda7B&=62+F%19gK
zd^N<-@l=v`ox<>U4!Q0K6QV-fd8wHB9o>1<z`XqWyrPGv?B976{RK6Tg>23RjnW03
zfd#z>CR*zYXrV<z{l#GK#!!spw1mmC+-Vh02&EY@@z&7%1~{9mHiwa1?$mL7An5X$
z-D91}?fl}E^YiJ|kSYvR91ayL68x@a65=SBOo?K^E(`3RW!tyOtGrOZxU3aclYL$A
zPT0!4ptzIs3Y#({erB<tVp-W@8s7!EGKiN!T;%kzeJZ}n(RMZL-Ky96i=|Iy;?#>q
zV#?)?xjs*aGjsNw-<C&|>kPbt<ujq*avYs?GV6&iV;(TMO-L*mzamOHO2Sc`i*T~S
z=~{L_AY)X`IQT-71Vxs634<KA>W+?%wdWmQeJg)q`tHS=2c`UP9gPh{+0WpXqjK|%
zfMpLiXn>VP=k?dK<|h#EeO`%r28&yQm*P8}f3u#fOE$fPqu|i+iZ%9jNU}d?$qk{Z
zK+d~qh`V&H1iIHn=X=48b?$#JOa?f_fejiP=-oZH7siuQlCYKA?r$aCDPyifH7-9L
zFMm_NRO=4R-gY^7wm4|KrO2u$xuGk4Q@nl4V|b49&7@iZwg{52t_jnVf3p55zVaW#
zWwQ8XXUR)HZoAxjba|}iGJX{MGw?0#I%Mtyjy-#Z_Ga9*AU!4}#f~7B#Xe@b+S6@t
znbGEnwtIT=+Ai$UKloodCNs4yu8p@m!n@MH*V8CIXX(8^+K9KATr>G_Rd?B|K-n*S
zhnsY>uepL1A?6!-q?zgDb*K->bg51S-*NrqV@uC-rfXCCXcsT_A>Qdq;!z&$5FbRH
z9D7)2v8~dp(eBt-V;SafuU5Uxm$_U@waO{LVfaIXuUE4Zd>puTQ{x)Z>DolXwb{{+
z_YuwC;Lw*FOxfb+th{muH~a?zBj*0HKGFEhCw5)W{`#2jwaEmWX4gkE>(7x#_9-o2
zz_VZEkS_@TzIvGL(zQY5!7OQ9Ab)wF@k&G>&uuzQ;ND84&7DB+d;9IOw<dW`*%gk1
zaaY6s`o8pF4>bxWM~4U1mSnG192}1_vYfeHhB)vt4S(Nt`}^MQe_xj9{W-flg-qh^
zKTQ1Gr9Z)Y-ygygUZ~4e#pxOmUN8#}zgu^UaD1TY7ePv7EpOe|?T*l3h&1mGtxE*Y
zUH*EjzmL_H*;_>0NBE10?f00(-V!v#@h+Rv*GRE2pduWYa*ew5I<%oXO77b00_h{#
z<sZ2`@&OE`HVmpa+4fT}XO#c#@9R?d9vw5>hh&QIF*V>{GR4oGKhd&AO(x#OP@>D}
z2{#n&VZ3?XS7Y<*6Xm3T%@mwW>}{Akw-Uwf-fhSC2PGbcLU+1n)-EAk{Z5J0XI!Iq
z|3HNwBw_0W`lID~#1+TY-bu&RibVGY@@SjU>Y5db`<?V3$N9(-hb|KdY$5k&VbV(e
zbc8=+mz7>`ycv9;ih{4b7ya!M5)8INJMXfcmJ>l*kQu{IL*SqhR$!n><;RGo@?j+8
zMZ_?|si|y=Of=jW=HjaA)TETOjMVb7R1m|RTEJG!)>zZi+xNJC;Qu#6Hf?JD^3|F-
zjW|YOOHQn^7=?LIEhb$pn@LkpEuqk-DD?irV^&OJl|Y4>5bww?4byo#*G(GVdd}o9
zYBzbGjsVJ7r2@qQN|`o#DTvdL@A?X|z(zYE5)w6dWn2AH`l7PkfhU@Q8@z5UXoHS7
zwGogm=e6K8Zno|Elebmpz-@M3CQK(7mpM*v!uI~N8p)<Yikt6xyO}Z;&*TDEA29mJ
zx{-vaVqDuhQN=2;h`U#3eqefd>9%1CtG>>pajmTgdtza3&yJ~`t)-|9z7nUL%|tRo
zy~_Aj(H(RPqURZj6AuZ!_~J8NpR8WkjZ(vnllHF9|An?QkGsFVCdV;d$iE@LE^eI6
zYp`{L_J%uZ+)&zZ;FpApn0lmAgLxc@Q_dOgqJ`8sQ(Fz}cuTBo(-LZvDA4@QMTPS+
zmR}nq4qAUT3MXZjp31DLA9_S=PXya2%2ad=nLo+0w}46XYhDH=3oD19f;uXA=-^@^
zQ&bgb#;DaWp1TPgD`&q3zDB+skEY24CSch}B!tn~<)RQw|5wC1a49V~g+U-}m5nsS
zX#>p|)`IycCA>RiOj|Ae$tliIp9v+#2%&_}7R_b95WUK7E-c<XLR+37sJJPb)6dy3
zp|A_Wy!B{eJKhE2=w<&`X`Ad9WRA>Qt1?C&%!IJk(7C{vy&L`Iq|&pqAv7o)l!@PJ
zpG+e!=u}oC9(I&r;pp*B3?bKy%~R^aPSk?c{o_n`9ZwkK?sOl%kVBLwTQoM*3rh{1
zx-hfb5)_)hI6)8&S<oRyg$Ok?45>6v$b3WG-Lre|t8D>N`Xb*OV)plB5H&Rp*V+_o
zZE#HbE;xvu47Sm~_5rP)(qL*U@Vs<CRnGhV)75t2mSL#9q~gVv1?k6Cf|)}FgDAJX
zhK69@|HIdN1vM47@7k#(BmqM25PI)O2Sexx7?55=2kE^C7$8&uLoXtRDk4HaP(Vbw
zs7RA0wop_MR8&9|m7Vwf?{Ck1`(Wp6on_XnnYDh;bKln$5Ev|*!m8I^(2eUeE<vg&
z%JMT(hruxeDn0o}dp~BeFolCTV{U6y<CJ0B>!t^OSy$k4+oH45V)F0|(Z(K1+lv8m
z>yyjlPhG{}d_lAYrLSiurXKI&Yo5W})<pNlqo3&XN;;@TpCP&4jMku6F}sx`fSb{u
z>-72~IlxTnZ?Tr_e;!`R-EK?Obi@xl`*4a2tu*In^t)zlxyGA}9fbi+uOk-+st7xB
z`^sOmwn~1EUhR1FT5)=!<jMV+8%BjbASB_aJ7KxHZ0F_oj;kPDF{a=J5NuBOU*g%`
z(uG0E*~g8)UkslQJ~-a0jQDTT)<CR4_OJAdfk<nFwDnFxo*l9WKs}~}dML<v$}zsl
zUm`A{#<)T(q5qT@koY-iiI^+p7xr&H>iu>#z4{6I=O+^-P|_|ply=VDI2X+}6sXqc
zoX%i92Krk7lIFN@O%im>+Kf>)F?G$&Q7^6@<DkZON&`jc$~gAp%(SR^2pekyBlB?)
zHuFLQFlnBnFI|Sz*Xoll-y&;wDnNt;KJZd-Jjjz`5QB1C)qPzklayKr(nX##bd~-&
zD)Zf#6uvm4P%$NBog2mOcL3#zQ89Pth)&J@&(QYCl&NG}>K8fCpJ<V@cC{2JFLoFt
zKL?6&_knT|h9UN}j6-{4FpSI|_h+RSMj+_1tio3l?c^anM5vVX2qO*;^v)Fnb7Fu=
zc9cG7K{QlxaRPYp5C93nKvA{+Z)!o7wj~Q?ndZ%6JUqf;23W8>vAT1pxtc&R%GSpP
zCM`_lO6_duiylj|j%FZves2J7Mw1w9;@Dt)Y!&>ha|qRa0Fp|{(n{gB&rh0OSY@jm
z*m^HLE{5pe&OBwUoZgbuy_HvRv81$ByA>)l2jsM;avb#tvYHaw@?%x51Kfkp^*@;)
zz{@BMCfk5emkh?^#hZO&6EeO1mZb_x)=;#Jh4p}Pq5+}oRBrR#j75G^H=#*Fe+Qs9
zV0-=^fdbVJQcW^k+G)MpUSxIKb>->uJ-Q*B9Q#hZp537?aTvM?Y!=qN1^U!V5QFwX
z;%sODF7nNiMy>R#XsPEuf&i#6Z5W2dXJC(fK+JN6V0CZ6h-HY+Ljpkk>^Vr)ndR`5
zLpg%}Ip?t=AJ9F~3?z2g@UQ$`sQ7f2&r-kJo9<F!j#Vghyiv=esf_y`nyru{L~uNh
z0%keQ{mi&nugz6_^X`(&$hZ*y%O{Q%dS!FQ{+rP&gKU!>iOow%+~k|=Rt$>Ly_>qe
zyPz(KitEY^ov9&+f{&&N)K7pca)Y_~GFOFFh;jApRo&H}LmKzQrRy&KTXwTk?#pEk
zIG?n%Yqo8vd4HfaQpPyc;?L0GxU@}IzSHZweX@nTNWg`gTBIvrWkUOcmLW)=N+E3B
z1E9!}N@xtdoJpE&rm7S{OY}+dF5HyzX~hOT01Ok(jae=PwaQOn+@c@r|1&9wQwb>G
z<n<LYzgx2;&u(qQ`_!dkvLZd5c;=Ohprs;1aY8)+&zkwHLo22_O6B9(N4!tvZF)}s
zle9H;8=D~4nBGkD1svx(rR3H0G-f&Ou%sbh40~f4O|385Y4)cyD8}77|8U3g!S5w%
zQE$5iaObCm(Tkz}@&AEYP$bTd9k#PHhj^awt&Z8;>#lsh7ohv<Wv|VQx+<3TR*wc2
z15`59xl3O>`vAW(qw%uu@8{@iC$G0{?hi0=hFNr+yxA|hKlsu5Yx1j;@y|p5p(A`v
zJ2`m=U^$+@$7+#){6mAE?;GWw+0VXz<{k6ZzHup=Z~1P2HWrA-k&=K6H8mfQP$1m`
zh>b@3v1~O>0j49r0np>sc)|VH2%qq4pjszeS-QSOW#&iS$)Atg&otq!r$1efKLphF
z116r*^M<Usl<rUVzja2f@;@EPLzmJ3i~wt<_R<WHxK{d;nEJSm^Wjig;v7W2E1i6`
z=ySLf6pV|E@ysQDY9<UbU~`&LLjv1GmO&cq>a~<d?Vm1pGc81Q0oWjMe6a#1n{jao
z9?l-No}CxHT$l={)qGUMwgCugOVTe<O;1Jl>DIjAj7OI}UCYDtmANphm1}}uJ0(B}
zEWkQh6$gSfv#;lz|Fgk=nK#=jIVJw?@jK&xM-`8@XZ1Q6`>Ka_k(<8wJF`ho?qfYW
z&%n;7vuZo_5V9U(4dHKnFCB$qkG~D;S2|M4&h;e8N1Yw|_jC60>4=o@H>+{>mnFu!
z4!STJz$C!;@dgf+2w)B}-%}w*(eEG?4kZ!~(!HQG;>3j{|0s<wqUlld05(SeM^HMv
zFCD$A(p82$w%0|G6&5uCEEM$0#|)k-V=PyCl2j(L5oBr>ud$k1gJDf;K?)A5jgm=Y
z!@5mm6^U*Pa$gf&!mAmGe7bVkwJ*zkD&|xZQG~(1UjiMjBsWfgq#^oAIEYN72GvAR
z5d-RlY8^TWUThTdUFBfM2(3r5OPa<Xzjvv4!Io+wr_RPMsH~`nKg$UubWY?TM1<If
zf%@@max_*Ll_zm2Td*-NbeoM?+11ZH^>4KMp2(>-ike+J#Vf3=$f>G$fh~VgC4ZkR
zIe^dCbVfL?B1P~{gL7A`SJQO;P3g6ctUl1y$E-i>5uC-BJ&p_JcnXh>vfcpM0EQyx
z%RvfMq1h4;JCT0Nk`l#0@Kt~WwQvazVy0TiQw)bdAjP=^=3z65^g?z@;jRc=P&1l}
z4R6{{K`LL}TP%DBcWW*~h|?0$SgTl7StzeiE9EM)Gb<N?_p3KAxLCn2*S59~AVme4
zC4vNh6{p1mKGOrmL>E^&R)H+iq6L@}Hxk1Z!3ag$RlHuJjKLqV0#PM0GR*t?LMSqj
z(Ir7a#$jX__-7PJp~j5Pm5l_QN{sWcB!45r@{k-vg`^y%h5zCazMB@_!m}ZLk-C~l
zJ$3PiM(6d_5p?{-T_0W$o4q;&?Qa3mt;}s!LB}N|e=;@-qHiZ@a9SYJOhv2)123wt
zbO#|jXu4kw^`n8J3O}mMY^%o-Id0+${a-SgyZC$>*MC;UOTxgLU-Dk7M(kr4%Lt6>
z6O48HB@dKALy4dgE!4egMf%xf@a45#Cxp$hLSu`wH1?v6q1Ziq82yytq=Ar`t0nMW
zU(mk(M6!Y&J>(NX??-8$QB^CzvaR-;Jnm+ja@5}G;uEw*>sO!|7m>4%;ly83#jL_$
zE$iD2oS$BDZUIlZd<?k)Mz|WOT;GOeL2G>DAeLL-s?TpDt88sT7kL>h&+RMoHAnI7
zt+TVoo6>TSX<gi-bM-_Ko=jk^(h|>=D4jeJ{+S((Qd{1Bn!qA&qpD70VZe27o;olG
zCbe5oYF&_~B8kW#4VcN{94k3r2noZ4bAuHxYm-wmM8DOG?z5RFv5DQniqTKT+TCJ?
z-Oe6s?i(dovl8*P1Ce1Goi9d^%9OnBEfuO-wUE=4i*1Pkp>iH0?Qp210o_q})}>|%
z&n*cP22FL>*6ifgi~fzviA@t3Avf4$8&y@Giy|!(<zLtt_Y<1H;u=RjawqSRUtRod
zED-|ir_I_ua!4(?pFUoK6s126pnuV7urUBMQ|(%bvTZDqc~k7I1wwR8UZPQtB^iEZ
zOu0>jJz?PX^89VF?6d)l$~fST{ld))c_GbDC4^%FL}?niYj@uMzJn``ke;g*rs&*k
zZb<Y!(<G&s<6YlJX1jvXx)YsKAge*SpkbWLahc~v6I!pO4X-RCn0BCDznT3PuXD3h
z$L@!IGgbd8ukNyuE=N~~af4~dQ@zd@<h+=ov6OD1Sl1&o=yks0lRlOUFOefMHD%le
zqegmz`?WN_yQ;c(_e>*;NpM9f>oY&sLmflCSi2y5vz%hX8MT~TLa^Gn%|{);*;rIP
z-{}pF9?>O<-j56P*LSj^y0J;D@lJ#AL91{Q#N^P=EXU6f7h*rA1Mt4o6Qyn@DS2&R
z-?F69#K{krD^iD&E%4$n{TOZ3W=of$m17`2{<=8zOMP^tZ4Ei1)Q~PB;E)>@KX+nL
zuWsq2ZQnL-T|~2{iQ5P++PsI{IE8q0FW%LSJJ;WH&gKd7Sp59S0pPFtfI_Yyq5J};
zZ0d3^o{L~5OSJj`vu)G01$x_l8g{@e*;XCc3QVwDmOCsRl>{|wzAWqKx@3Rd+rfFl
zzJ_LxFOTgvM=&V6ZI9Y1m|akQU!m$SG}?!hd4Sa9bkv!+a29IcJlr^je%MGnee?@m
zlmF_`zjN2o_t{>aQ7OIVYP|0R_a=1oK0GjSi;_XVUO-GAih21Cyq0h&^LHV(x(mK<
z?xuMcRpGCVxzsg#fPgMMe>_Z9eK)hv{4Gw3wVuk;aPAMDSgm^;lQ!uNf_Iu*mUmgs
z)OriUym1Wo2LPIve`I$b-g3+GvUK+vpBu6RkD720w%ANiG*FQUN<7|c@G$3;f6_<3
zkPoIms_ZLX7Wj1hB9wNu9T=cw8)UuVp9g(x;OLimM4IWNoQd~Mjt@vZLU}ZRv_1sn
z21s;#L`9=enS+mC#{@a5PSQ1GexY}x<4~iL($`H9Ul!G_=^?J8B3$-PJ%c4&yUm`o
z);{%hpByJY$*>E3cog!B-bqXey*n5>pT%A{&LSQ8tnJUUVS&bWJ=EI@>GhVdaCzy+
zdf|uh0OQBzGaS<kde3P((~Bw3S8JcIwTCVbK7UL1kO|C$E<N9HpZSn7vyD>!d<5Ei
zJ@e%cXh&f7yWZ?UDF5!CnXm4%zXxakyq+D2oIQR$^H4cj;^VU^VstKPZV5Xl9ym8V
zGUp4ER=>$F@Nwz|U|tF)sh!{=qB(E8IsZ>!p$#>sMh5Fs!I}W@p5B}dEbg92+%EV9
z^34JvMcVpj?3suBYORSkPWUxHFZkY05$Z##-a+a<M8>RCW?>TsR8BJqQt`bP;zjkB
z-X_m#DnqbjupSz676aZFP|>zVF<Jx^<(QWS^4G7a1&5)03sGi&*`9youTNgKT}8$|
zL`K}X(tC5oq?~^dmfT?0#r^xCy~nC&|BQ+<M0ajRWgo1zzeM3%9-9NX9EXR5O_zK=
zSFV6c3S){23#%4vdN%j+*MqbVZbB^&hn8qbYdOf*fvZ%7#@$e`5f%)5o?-hpN2zbJ
z84oD`0AyYzvaG(+TYV)ZO$`5tzx-m-eFI=7jlL^~_KjoX*Lt08oH1@qocRIh=S-UZ
zY=W_OfF!0nj=oXkd2`zOYWuUvv%jxKuKVp?uQK3y3(d`BOgz;v*L<Vx?C>}>9o_v3
z)|4*bj1bbwdZ<sMmzqNEDmNRx73&(Zn;tlMW2P%j)bFERWF^UKlDgikFZ9o-D?_v+
zUkR+|-EQqvEz9dZ%xg6AisoU&`N(7>*2QHz@%KL@Z|D5EjX_3c2RjQ%M*_;1RwRZt
zq=rE43vFqBIS=3DI<zwmM@zM30K};q3iyQLgrc?4cKko7`6jlcZ9RwZ&5z9+*N!!3
z13$?BBSao=fH8~)J~9{6HXJ1Le>#Uj!m}6Cvm43zONJkREqyQzVgI=CanbPOC9Nwu
zGZK;p&t^3@ZG#GuvLwh~D&p&s5`#9kIo9pm*Q0Ode;}Xo-qB*LYQCfvyVL9ZqHlXn
z=<TO}fln;QX7rUII%x2(K?gC$k{tyjQ5l5Lt=(IcqP<o__`W@zC2@0u4QO$7J^1P|
zT)+8D@!xGEgt2HNmos`Rai$0N(34ACW)w^X`P|(*eowxNEM9meEC>xnkl6;<lDIZh
z6FU?<73F7&ig+fze0giz|L?VWuGgD?^n((7G#o!3zBg6$7I^wu-vuOntK^5Ls6+7Q
z+bX5+6N}i5_IHE!S@Zz=xe{Dnr93R3Pt1#dckK@|FRL1VsZjgIpsgbR)x?1D+u?TN
z&)lzB!1Ym{(q{B`jcRtSB!Es5Krgt2`Lt9@qRiOh6lA(nLi+p(e?H|W3aqOP$q(C=
zE3EE}%-U-@EPBH0aZpk6^YBM<T|#xG0=3dFA|arRH#d{n$&t_VGDjy?2s+NK-qVy7
zxwjK8o+HA2E=PCvF^DDwj||p3w5jmzi6LI)uxny=d$jvQEVY>BC_L#{eeme9Y)wsn
zM-lqlIUBKXrSedV3qI$!qhEp~P7nv<RZq=%VrHAFb;to_wJOaTw|IrwlZ68;8jdgp
z9)lINQ8hP{;Qgn+l;74=&Y4heQEX5D{DI9WVZaVb5H0Egm6c-4k@T{Y>%rv!{*b!P
zhP(SCoO|mnUrwYB$SmTEf7QB_#rO3ar2c&zK9yyg|7rJjL=fOJ3!@iX;BsI(9w7^3
zoNX+W$#0Az!HoGxQpSSFY_O<Qwya1t9gUD(TSoyG!D_NljWsP<H!`KfvY^JT?OCFE
zS>g&0z>0!}#<$xAjo}jV<k8IWOksHvRAC~si*$FczO$W~MtYbnBb&X^l+}B`e{vRF
zQkJb)@Ze|^{&s!>Y0Sp(N9;@_RyX9U9jmr2ft+oYiD;z+0!1IugSHo6PjxjuzKSu*
z7qIxhg0}bcN}2+SuW3aLtv*qkEE3W5L}3k^T5Uzehwg|O9|X-eU28LB@3k-0F)BJT
zsZ|dGtpHhs2^^=a?c^NaOnlSo(xS{F&~xPu#cBIuJ&9Cy#<*$wEdU~(-$0$i-;#uS
zIrwcp{`uu$JA4PkWmR?S#m#JFuRg+oWbbW%CQJjtc}>(~Zi-Lm3ab4-<5%~EBRb5p
zLC%$XVPEGcw9jkIm9D|^*^b=oDVI<m<raBBvU+C%O_KA#{o4Qae2V{G=w;(^E_vze
z_|cr|c9!oHpY)R)c8;mq^N)u9o*e(!eK-5)(dj8*&8*Z~dwu*xy3zrFgqJBB9?nF!
zm`z2I)ZyNwwLV&*w9jYIbrn}8;xmRM)~->6F<EOlI#b#g>w2B)vz~=A*8(6dtZ5nH
znJHR;Q&v%)h7~|zSnnGEA_&WY(6c*6>NJdRS{I8df<$q$Y$aPIQ`3p{g<vghVkJ*_
z!@B)?Fz!R<P8V_QYQ&cYR}n?gy#H_d`dVz1KCrXRkXE^v6j*oZ$Ymo>hO0ZEkT36-
zd-OG`78XuCGQV~0rboX+#j2o-c|4CyWNTfD>i4UOogCvkv6=RMn+ObQVbtH)nUB^n
zc=TzvbC^MHk2=ovY@TSr5roOm{fs8zMd95d&GU#K<g%J^iGr(34%HHjm>>%9-rKSZ
zbiZ;vK1gN((TD;`EnehomT8|r>VQ*d?p2Q6cJn@&=7`r|;r89ap{(5RtEZ~YU%q#0
ze9kZp8_#w}7T()K_>K<1Y2|A}V2UoBZh&7N)#ri@SempJhjx3>@~?#TVi@&^S3js`
z;dIKv-OV2_s{FYn*~F$GtFFi$-Hi<{`k6mV0_f+;IrI*XEHe4MA*!;IL-tk(ISNOs
zewATIFC|58x7(bdMPg8f2N-)32hIxR=Gb?*sk0J)LNy-&ez=$8M2fV`!CYaB&*;Na
z%9R0Tsh^rJ(vv=mrCj>yW}5?+j-j(C`eK@%%Tf4sOs`e;MXneAiyJ8Jvh2vKN^&br
zdS`p8U`Ycn3bBd^H1*d#9+e-uznR%YRTJTSGj{)-0-NosORS8S`RR`wsqoydqTzmO
zGn;#geIg?<X^wO4nS9UZcfZ;Js(clNAGBHD|84n;RO{tk4{|d8auS53{2!$4VD8%T
z5l9eK57VqlXG&3q@WCfA3R3`jS3I3dZxe7SIhWyRv4-6*GE=bNv5^f$iiwK#oPR=q
znp1gTdH`@`B35s}zwgoi8Hc8KRZW3Vbg_;*T6F63D2Z>20%NiT8M?gB)-JO{xD(Q$
z(oxVX?cqEjB7muh;x)oP0vU9kV9AbT6Cby<O@uJ1bPx*y_PANxDksm_PzuYn>N(yV
z16U`ExiYLoL>yN~x%nEPs!iUQ#@17F)-EEHD-jE`C+ejg_(09=McK_X^60^8k-wm4
zI6j$95vGQGpopE!d6%-;zsk8r@*Co|S|({kDmgL*8xop3#=K1yP;fS65F(_XTPv(`
z>6w&J>wjYN#Wr<};HB{rCu1BmT-Mqod>j5fA7pi*w01Ge$#@?i!B>#9b`IIhW<Hy|
z_M`52`lf+?H`f3276X<i1ACb;g5(+oD@r4zrATr!g6j2V>f;c+F@&2)h-U9Ar|{t!
z@1r+rGPM8*gW+@*A|-#&7wW=8$!KWBTH5$c7;*mA!4V1sg(OJ8WZN<}QV;;8)kx7{
zFhcg&E7!75_-kqA7M(&Z#0)>n*y_Jm_#jvgmnM9&662$0yMpW0%cV^e@@)$%h>fg3
zIVV^bv85J3#~Nly=_f8$x@O))Mgfojjrj)hndEqOU!<xnV6YC``SL%*;QWP7Tx|X1
zH(7<~0Y+cD1Bga9BoHyb+%R~i!~XMnYmbY1EprFeRC~{}TEnL0PUBr<`fc|II9s+k
zmH4ghaoW+7|BbX&?ELLQx&Iu%08<?Yg<mRukJtowzH+m$L2I!rwj}yTT{WxSHMq(_
z1Wua(Vob(~+)-P?=<VFZhi;zUkv|7FvlP{7_wVl)IoZ5yR*IDhg#Suz1YCaADcSm<
zW*4z_e@NDL_`F)T=Wlr}HWW?Cly49Tt*R7b;p)iNoL*<XbUgL|6K+$Lh3Vm?$&sYf
z|JXIkrHE!ijzC=&AI5L6dj$eyE4qpjrZ<I7jvr%%@^ULpHm*ac-2cs$lR<&*q{-hY
zbpAx-<N?D=G5lMWlJaRkDX(A82+Vh@9$N+UFu6#XXwb_K8X0V)bEEB3*xE0_MCMw$
zML}B4bPI*ic;Et#T)s<zS#RU`f6wu1$FPEc0Fhr101E&Bke3B~2UtQUfLZhlULj$A
zVG)G1s-TD%tAYl*k~W8m4zId_h=dfsCRR|(P*l%E;;gv@)?CiSO40nhq8VPv9Is||
zK@;z!g?G}kccni%SSJsxvxl*px4EakB_YttHy9rfViy$V5EAJU9_=0#=M|Ia9hc;v
zlp1{L^2OBja3U!(Gdm_bFFyB5(v_l=B61qJgpRBq85w!;;>Gs%_P1}}e*OAI|9k)M
zAH(TzdZf8LUlxqaHm;>}1OIUgeaE$PH8iU2Gjr*)mISNpjPi}{-!JFepRuD4t<S36
zaQ9&_{(7<$cKQFubfP1jN=nPXs_IqMHR?tvL2(Qh)QRphl~7_Y<Wfp0&uQ<-ZN7P{
z)32ws?Y^;$NQt0Q<Nf}7W?d$t^2I0-E;AUPIDbshkO_ylRDv0cIDBw@V{_~MhmYGk
zpLVw^uU*5n%L<Ar$RJ%<Cey^l&m+Z!sA6C|MlAIKL;S0io9}8uiZhsyIdc{xe$NCH
z(BC$)U}7+QJA6bGsul7mo0O>10M6%H%I3g-6D=I2w}U>tescHb?CFi7*AJhm0}OAA
z!11f?cHhn;U9d}M-fQ>HzQ~agu@G?T&F?mo##!wL85<*HVfM#H+9U^DrinqUJ74er
z$Wz}u)4VcQUpqM(7fl0th<H5WNsA_i1HnQp0##ZR;#QSv7Dr@c(=Zrrui+c7ib~(~
zh6(Th`m3h=$f`<bW#$O#@1L5Y^@i^&*ME2gHZ4`eC9MWX4J6$)(8H*dEYArT9btGA
zy+5F|ScuNe>OU4oi{;<c^uv$o%R$}Tq&Me$o|QZcaF1M7+kUzm#f^>`9NdvoOfen@
zDGhTLL_5}+jZ2>dw+OPnWE{DU5HtRUMUE)1tYizsZ=bH`V6x30dl@m&hLM8G_ezjT
zO;{%%7`+~3$KF0yj1)zc8k*@1MS@rb;<jD^_y>tZnEXB3D~Nn7$-C4@sD2tG6FZ&(
zF{ThlfvvIPgh<r^t#QOzws}K@5#$Lu0JEQ%5go>5Sb>I<_i-h&9P<v03LHS(4To`y
z@mdq1>ZXXex4&@6BvIB6S3)vwwN@D~Ci)iP_EsCOcIaD@zz&K!zy!P%@27Hf!?0Mh
zk#n+C3z*EkYk+E9W4#Sl-tmLsb#!iJ+laS(AU{>czCg;MT6P--TW~a(!XS1OGT(q9
z-E#B^HYS?HQby6gDdw-edpl$&@6Ow}oqk4BbhIy8LQMN92req9J@<dhQ?D`SeT92}
zgpFRud;rniseG(?yssgn2$p(7Ic9kR5GgVDYuH&>5AX(n)S@}EnpB|YS`})?v2rE7
zGWndMedJMk*#molPr4}*hlK}`yU@&;wfm#&Vtu0wMkKvxR%t3Wrci!bWE&mB90@{N
zOQWX=&+o|au!^~;^rA^agzu9wO?u-?E)frpMvQiOgXhpndc)%w`;>3915tZj*0GNT
z1tyUk*f69^xvbiAjTQBAxM=$dy(am_x@&?5X($9&L^1Sll_9&j1uO>lRp%nj3QT+~
zJ9&Rh!xy(Rp2}DLJ5@~&{M<SUY=<A{Y-&cFyzdPWq=MiQxp?Dp+qAUdt&5v!#4m%~
zT8WHV!gUMID8IS$jYcWtu803B{%6yi#tRs`;BxJby#YY(DK9i_#c1Jb*$xh^H3+7s
zvQKLx8$>u|<bJmjKe!TWfXNfde@mCq_Pt!s$2Xye{1jU|aS{W8zV4789jA47v%tMW
z!BrQ4MIc2n@oeZ*_BTinPb>G71r`QbL2@|ra*4Jm2sf32S?@~zWmGx;?}UR%Eb-AV
zXqPnj0AMA4lrgTKE*2?*hh8C+p^W!0tG~9?@0*<9PE>J38E1eC;S-X$5pBt6LCAxO
z66U5;6)mthncwlAnHxbRm`xsZKQ|J@&P;(UBMhsTxo)W@+g=6Je8s~=CN5gZOX!LM
zkp{!X>-xjcW6ZnXrWQ}_YQC4H2H%im=n>U)4=Kjs(>WiAf}EML6*y_TL_cXI5fT}0
zVmSu%q&;QvYf|MI0GZ`uL0BfN1Dw9ejgp~qqDCZ4kKaSWEHWaP09g*Y!2E_MRCA~=
zvmmu)HB?JlK*y%Aqi0R)nd)<wfsVTVlo3TK-ey;>^ctyFvQ-;gEuOi)8n8i8ypBde
z$^an_kw93XOsU_{_ZyBqc(F}$`Ao~HYaB}jCXA%!#PsQ_LV^GsRC~~^hU|1o+jk6a
z$IO>jEOJRQZD+tO#f6!Ceg4>{%bDaoZQwg>HMhPfVQ;~q7%hJO-r6G9x5qu!aefM3
zNt>qHma1Y*i*%&OdwBVdl}IA?25zdFy<x2pQRL4pmn-#PdHh8PV)L5J9oGg=V#bSd
zHA@60KwjH<jQ_*kXt{!qo+mo2_r3?Uc|`3wbjD2+Of0+8d!(0CWt+R1Y3&v2&k!}^
zBke*WJZ-M&k?I)N1%yaDjwi(R4&RjAu<f;#?|bl7Mz?3Ybcl({EsI@S$Xs_1T=HZM
zfZJD-qiR4KIk_Xxw;@U|R)osPtT{bz%YY^(_^{)NcK_w@{~UB8oXSep5<n3x6bLG}
zGo|rm`Ol{bLo3ngrcbn-z{w73O4ynYWPdT>*!0~IXC6eTHss`OB@phDepZr}F;COT
zQt8>1p1e0&A&UjKt(CmqT6*5`CIl{^$nOJoC$Z!tGBXb;rLJ)J{$a)hoSeZGZa(AZ
za_;JA#_b~=8;LE!1dxz#Ix%t@e|KlB!X#j%xb#mmp`9}PkoYz8$*m<%&#FFSczPNv
z#h=Sexlik`k^EVbWY~}hRmcrwq<kkypZ^84G?1ye9fA~oCL<9lF#L^#R=Aza^)T0_
zr-3`w;4pdvetDom=Rs|O1wXJApSa7e=-!&n$HT!lH=K8xUbet05Hn(fPH#RR(iA4J
zJ}QG{Cu2X^ruJ~;k|Y`iAwPf&XAKqK$9~Lba)&sU#V<X)b-=D%m}7qHH=`u6*;dP~
z!Y**@yh?C7u_}xdqoWeFDw%PQ1(AVQdjHbD?~XuqfI@n?+al<-T3keE*g9uDs8@lA
zd>urJWbuCeg0n-R!I~8O!|t^J+5^n>mPoK7EEW{~chh`bOUEht3>KMoPaRp*w~DHU
zr`Nb~Jlz&s!MI<z36v+W;PiM;oB<p6c1T5=ro?!i>8uf?Iq-0%1B3${>-_m9);_%W
z$6!(*QzZ2Ki{R~;Ztchc(Ku|008o;fdn#4!l$Ck<Tl->m63(x#grnyq1H_j!l4DqR
zck;!aF(HfS?)ifpV)#Zd^~&;2IEi@Eg;Rj{WcsQbiBsJPEZ=7hoMKGCq>X<~am-p-
z2OTjeEod8;GgivY{F=G+??-Xpv5N&EoxuuQ8>wxGR3!qg^kPw2NyFpnw62S-b%!12
z$Hr}le&a9tp|?8$jPP9|i~um1b4g->77)3pG>C+jA)PQYOotKz+3_QLL0?F(?!N_f
znsvPF4o=y6B@R9D#2z^jYvj&S0v*`MD<;ao!$#1N(6!Xh5Aq%D`h@?<euxDtUp~|X
z{=Bbo`)BGpx4<tms}q<yW7Q@5@k^)Ok3o;PQ^s<LeXz7YBOv;ljfJL=$qg0oPF=m3
zDm5?37YRTrt2o@f^e`|Ttijq!QIMqr19)QTMIt(Ez>z&&pbEoeeu)LoG?9=Z2oOA^
zf_V1<+@*=J-I?>6seu|1V_EVmm8q}H63f4XL@}2F{2*<r;+m@&o(+MHK}aYq9V4CL
zqQd1>l{)mnI94T_l8}>Fm6NO`N}RXnij+?|!viIX3wo#O_&G$X<jQAcxe>$?K%o1E
z3WByEreX82GmxkEaUd=>;bEXKQP0&ZqccHXmcZU>%14^YbyL=~Gl4KrBqcCsQE1t&
zZKKOmV$uNa^==t=Uyf7Wc<5cNJkxbVbx^<$aBhDe=2lRyF)3HItKjFRtRf)K4Ifl?
zTySNo;IFTo6cNA?O_*F@ZI))g7!6_`2K7r8E^5iKd+R9>S)ll$k5h)V+j$go=X~c}
z3n|SRxcZ$$1&i(6i0@G8xx5>>2pLe)4@Z{uW6)+$geewi-5p_uu`y!18m@XZNILQX
z74Uky5OnBTWDZ&{PWrcc?ow5WY=22&VwCC#V7OTQ1Oi1;&lMV$rbdFKKLX3+Oo$sE
zzWCC+DhwyALU8K2laT;tEaqGp)Xbs`MWKI?m!1+zhr5$7zGe2+sIyP}3t3COB7LA(
zUaw$?j*I)Lesy^f1@PVXjBa(s^`*1UywI4J72b>$4*O+slI2c>O8H-vbf(jl4<)HU
z-sm{<KyJU^sxWa(2q!F{lTbBPUNwlRHYS?GB&%xrt7~6Y?_sM_M_9!uKrSj!24L$M
z6(sZ>AQvgAwwOfzg=ny-Y00bERKC`nRMW_Ht?uQup<maAli-w>+${S*G37u$Vx<Wg
z=zU-0Ke2hVcHQIJ4Selmm++@9jLUhoFSQ|yytOpmx()3*N9EeBq`K|ux=;OedoocU
zUe@jN-uSM4<G|%c^0&I9>KniNZ~S?A<DU!s_}2}P4h7;$VUWE6Or{_PD5y0Gb8-%2
z4fAOd!83|lUP7RA@L};35%wCH*vT8|cnE43IQA2h%-T>uY`{}tENcyl$;{kROn;R@
zGjrF=iKvefa+{H&G<K#J%6up)kTUE=@<t5c6Ji7C>Mm6HR^uWCYN*qMDph0j2I5tK
zwFgbEWTsd9(G8m@4|FpI+vJ3m?f223D=OXI!>sri1D-a&rs3XU83Jl9M*eC@thsqL
zGK!wD|GSS5@NF!OWG$eflj<8ch~efKHgRt@4|;YUFA><I!*9|W9DOr~${H9XRN%^%
zCIe03yyeX!z>^US#}?zLY!XC-ymF-}l}+Ir-4TDwAqMITyj5a(Gf&Oxw0jQd`3c&S
z9C8IKOZ~)l!B}8KjUi4}qN?rY%<p#6@Xfd4kmCUJ_c5F~$xd4Ui{NOkk$NsKDu{7}
zwZk>`>0)~pn#(sTBp{uOR)g87krY<vy3OkJuB?iMJ4>7!DrnZ?BhA(83Y}EzIN!v}
zkMXp{%Dx_hf8wJS3=95EhD3j}@uaqY2j1bi)-}JDvwH^gLKY&Se8)Er($*zlN)sd%
z3y-JsN$~T3i|S_15c(;?=eW;P{Ectimfw|<h-AAvZYcGxzI%RNVeL~?=f0Ha{n+yy
z?2zuOiX1ZgDts;`!m780>TP-dcsEGzLc$%hz>Xc}80;*CrIDI^DreLps2tEC(qpt=
z=s(xXD0<J|xQVq}FmDX;piIEwiZIt&z^E)W^tP}|2qaEdM1)tK2iG;+Dj2XPgjE%O
z)Yes^+mFNCN!ze;9hK1gE}`;WuF_KCWr^&E5(&2j2?sTK4}a+fI~nUy`G;)Kngubc
zJz#%RjBv#%d+9>kZSfnIWY<J>Y_sJ0H*&Q`<4txWJC&{aB`-YBjrLM*yZ1g+4=3*&
zBmZP{-~mWtTU4QBHGK6us1;PaqJC$6V~~+88yXoK)&R)<1j!d4xL?8`d3f*gImDct
zvEQO%1BkWzz8gRKBD_R8G2>y!gO&|s!N?^=C4j=~2Z}=+vZt0H)*t8i4tz@Rlt-+!
zoY$X;w%f@s?{=2)kCuh>uh)2M-&OniQ7z(!a>ftcGo|fdn%>+6ZK-KB+1F=98>0ha
zRD+Fln>JN7)-;iSG+j2-yVP9W7;V19YDmYhDZbVU#*EdoyH(!RR7=ENk3lj)|07s^
zvI*hX2T4BVC|=MR@76LK%xZk0+M<S7Fw#H!b6i;u5-A7rDA0S93-xXnM4~}rG?jd0
zw1M=*#h8{iKlD8T_uXVCV?u;TzFNbT9*kp7Qjws{5e+cq47z9Xo>*(F`y(6d6m5T!
z*+m}|1-RO--|4{q)+pH&V-RbOxFzsJPF}rjbF}-%ty9s#XME3Y3Og&k^|{8ec-N-P
zFzLG)tGdI9+O08np}$KG@E#-NBG$$YVtpw%#vZp@_CVX%SdTO<)jW-hHMJO5^p17%
zjYUF<cS3y4t9}j9MW37p01^D`kv!LjnrOl1D|-HBivotJi)KVkGuPN*$IY2M^&C7A
z@I3_reVN*MMWC_9;@YBx2W856c#gBDZT_*7K$zp>i`ogVF6%-$8KTX`7NrkTW)B4<
zc&^WT!!1gBRNL?t_9Tl1yZPSV7WEuc=Ls+DQ9<YZ&aSAM{hq5GtX)igdh-e>MGgaM
zai%ViY)zh9wY>}=L9Myl$414S!DzcFzoGNk7pFc`*1{(c%i8lEpDmvmL*(KhXO=Fk
z&*ND*`?Dz?#uSj!1V|-r*`yvMt<1_!ks#fX_?elYd|wX}XSF+RC|;fo4qIZlv(h!X
z(zUT-ODjwdgV4Bz_~vf@1VE!a#HIEx7zjd@u2&NES%v4;<P1S~!pwEf;Ke+Ye{gUY
z+;PeDSj`Tb<GxN-io8%9cqZooPR4MpMbO?TZjICBwch*lN!QuJ-VmzpEG}QaDL&{}
z<l^9%<xuDE-nHaf-|Fc0*-MVW(Nn=~o?ikxS(LS8lhf;=dGtp7ulu}%YgNAM)WZF|
z{Y6u<J9^yxLp|tiasvOM|G<RX4wE55+x_&QkT()ZV-TS^lewTnm?Iq^7e)X|tTraR
z>+sipTI}pfUJJm|M!h-QV?1Q+Uzt&z)0W&m6+$JyKro6P%VWjh;SIg475yzsp*fFt
z<p?-GRIiS$>iruNs@uw&t=XD4%=$UH4Bq`FJ;nik=GlQ>(fQX}#>N7i{7pk0DJ*_l
zS;nuf%PhyrJG~E3^{Xy;Z(rdRO7pAzjyTqsd<O}PX5fUOL;l<`^8BDvClNp>@^@(6
z9IPg|C*qO~ATf^XX=xBXg0;8^TgojKDepj+y1)sPhH(BG#fqo+-$sl$BuztF@e4$8
z(rJm{pY6F(|JEn6<30bc1aRc1(`#{trkjYYdvr)6q_4<>t-)V)@`G&sJ)62c1;l&*
z>lddaJI|$si9FnN>zEtbdJk%~`^wc{b5HM8s_&8@cP|$)#3o`s4fnzzykbn??Igln
zzx~AW&adn?906pj#*k}$anCgT16Kq&?29qsB12&WXH&$I9^^<-07el{mq6eCc@e!8
zL6XGy{f%I(gq}%*FrGqWJt2_$XKyh>Cnvw|S4?%;K-kWI?lpKVtYj=>`;8R;4K*Ce
zREcO@{*D)aGwZq3bbHU>lrlY|9^)KmqLAocSrz>_)g$~ZXe!|gYregDJoD{X2Hclt
zP6rlhiG?}wtg&&Ex~TB`cTb)B6Yq}r`+j?nm5_)}G{jg1qi-bWj2qf~{hBKjBX<16
zl#s}F_sC&ChV4Y`Hx?=}Y&ayst(<+}(5ObV5s3M<;5YlSnVC(T%2BEbDTf(1ip1)k
zNtm|YlzK<VJx$aO-z|@DjB7p~Xo)Q{v}rzd(K9(XXi4y~=JWMBIeYo!I`4r?!`xe`
z^n-v5*Q$(hQs%YaR)|#6hn&3AxI+_>Ed5sKa3yfm%y~Ny_~|BS57zkvM7%ijN1`fA
zIuSP(k*%~Xrm~Ibw##%O<S;+9-Md^}_A<*$OQm!zMM4>PeDySJmPjxsnZh9~)3<*R
zP~?VX*&kG@GgQ1`;#8;HrXCUfEg3byzJE?W`Hp-+-qS4X5KNIpKszZ<sKzP#?d1#S
zBq7j8lS9m&^33kz0-mOlLRilaWXUtkTnEzc_V$-;e&eV9khd(&CTIW{<GCFKMP5k9
z-W5la_hkO9^+l3P($cetp|zdb<LPz2az{~3^W(tK=;XMMOF&43?pGn~xwtFqcHaKM
zVNu04uBvD*dDr~%s#;1@?K6wN(<i?Up&VLdf?+0%RnoqX>}{08B4S#mRqSJOg<FNM
z%rMi}?5a9L0lo`m(rO3Q>r0H99Oail*|*ypb`Yz}r39$k`z>3y+2ztp67Q~O@ry$}
zL$T3-2^h2RDHiogI}&%LT!L><h490Ku@T7I)R#|#!o`gri8|=e{HM9q-Yr7%FG$rg
z$~g`IiaW=yq=1>*gSrT`^A4$~N=wvZ)+~Px=fTMN?}dsK?27iKNZz1&;8`W4wH@T^
z6?RgkMk-%<Zhc7StEb|yo4kTkB{Hy{=_El$)^ewR9T(On)*9V+Yy^i&AWAw{{w}65
zqn~_vR()N8$Dc1fpS3^!R~PLFikP*!jw^S?4;auTFJGFD*7&MEOATE9YCq7g<&%4B
zb7SbwhGnpXy1VFS$wdTmpJ}^ASH6)^rhRS{sWOcpW76K68)G^5a=Y=Wkn6B^r7JDN
zP>Y#xN>eJZ!80?mI4cL4XdwtR;|zMV7$aeS&^W<;5;U(bdid)pi^K^b8UQnX#yqac
zK~Oc-3HqaAq8u);Z3@wYU$9bnu=o)Gt&wL}=B~6ICOXv$NZVv58%sadT<>EmlIH})
zOsnt;u+{5$MaAH?Qk%xcaUZRst4#~5?G`L#?kp~xQ+aOx!qP;bOY8~}GEd}Ir!+!1
zG(L+h+PmBdTC`i&ayXaABR#V07IFQ~lE=BEC3}0$Hclt^xc5t|zQxv#Fa4{-mR%6K
zha64$j(_J0Sk<Y7Ob%!1_!k#%FmV@!+<kNJmCJ<neUa$i_sec^>xE8llXmW`yuHMp
zf4Y3(it6x}F_-~QJp`?eRb5K^=1<?FGHR@{kl2fO^0Hux&Kp-$W}G(*wZAxvq?#Q#
zZxvf8zT7IcwQ-?qWdk_<*xZU-K2!&Hy!>!2YQ`lH<#iPF@kTnc>vnyf;@Wnj!slNX
znySOsc5c=exqiB(?N}q$)-~h0d#C@)+HNOHck-Hr6hLI&KvL^c0~i~`PfCE9Un@dQ
z^Yw$BW#loM1z*2p0-4RXhk?xZ0k8JQSkJo$b-@7XU>(UhrLiFahK}$8X0##6TO9KB
zyZFUvayt4bZ4<y`zKRViu-mT$vDqX(D1(_356WSVcyBWX4Ga)6%aE)e-*=Ap^kFRh
zBiN&US>$UQm|dWDD$(SD-Gy(vU9+AiS9rbFe*h0w$=~<P0S1lFbuRm+f8Rli#3H$=
zx7fIBokbvAcGT;lAKt;&i<$9r8OEF#$?<D%1U>y=97L>q3Qz8-DF6#Zh^NU_-@tNA
z4eN`OE}xTm#;-%bX4{k5W61!HxgLGa4sw=4sN>HeZUd&m2)k{u+!JLI{V`n6urLQI
zF;g<69a=L7v<iNa_tVRB@wN)+q8-Ob9yRBy%%&+|Hm`akAvSSkyOfba1T~#Qu`x61
zge9xT8K;8*T)rK%&cDuMrtJ#PjwP=HzS|N<Mtl%ob%<ccKyj_P{ZnZzoneu`<j4A>
z8$dKIOX!U`jDK{4oHr`MGw47xHDDtrj{B+{<Te_pHs<^=#Cf$kH`(N?nwhz5@$*n0
zGbfv=DQqLz*Rdc@TAoSd_UJcD!*f|ZkFAER#`zxN^;~?+xNp-jMo*h8%r>IRK_VZ<
z4YbU{!b`8c@iP}(#~AhSv_kFtMnL1=L0sklX4L8o(vEWb!IlXm<r@+X94((Iydd$u
z=bWD>;n`Hv*LdcIz>|UZ6`X(w5S>B5JFpMDO{U1c2MX#qb<b=cP`RAk^9l@hU<n|J
zI`_nMV=t`jZNRR@j=a?Arx-R)XMzCaS97&SZllixhsesQ09;hyILB{c1gLl&aQa<2
zqbUdrmcs!U#o6Z`o{5!Uk&u@0Qpqz<F1_t>C@V1Xiy<n$ImIk2-PV|v!C?geqNQp4
zbl?tFg8~WU3~>=avv8Hs%6^8{B8m3_FlSa~V;Mu23xpM*GDSY8mIRgkm}BufnhLbs
zb!CmL)WD>71^Bv&HqB)T2hbE?a}(T(&m8a96>I2oqz8f6%cVpO<#(>^y6=8sm=_}U
z4CpEljs}Pz`)2+CKP-beHe)lD*m*_}4s%Dlh~sI{P62G#wS?DOpbNqVobb3i=eT|d
zV*19y45Q9Of(FaBAj7&N{Ty?ZxY*?`ivRgjmRHqfonI;+{q^v6E>>Qi4sD4H*tg=&
z?#r)@U(aABV!fIv5P2P+8%jL;NW@Ay*A|%dwZgW8%<G|gW`f%8oN~@p?QA=h_=zTE
z>TkQXoTFMA*qrPDxB5=mmZ@U#2#UHgK}%<3SRFOTC@?zj1J&I3fr^-d7^rH7z*sPp
z@t+m3sCG+&fBb<(+jsu(Lw1hW7fp>Ayo%G+hC^*oB>p2pxDXnoJ)4xHI;kXJNAN%W
zQazhm$48t^;aV02IR;R`jQ2RM-$I*&r5a)xXWr+ax#Q=WEH_RNgl8F66|EJiKtVg@
z5?~78MU4<x_l`G{(MQ$!h@h*8i>I%FTz&P8A*fvB)(?<<=_sERSwLvss*HWhh=pPg
zY^Mm2Ii}++WU=WZwc?>Zcb97tn9URF{${g;zPc>F8ee$!M@W;hnjYX2w$faX`@&-;
z=;wHPon*zo__+G*;l2Cw0R812=Ng4OLPXe8CIi+c0<^gLsl?y8O51j9SgDYu?Z#+?
z?yx0`vpd60USF5Xa=pxdI{GYbkA!fa@Y4(~&U$~w=c4x=Fnm0TBW`Lp>`Q&#m}Bn>
z@sK#2ldw?ae!q~UvT15!1h3(rb!?<i)S$x&#`Ns9#2x$(Af;ai=moWZ26l<Sr;LMl
zy4k)8#&=y!4fyr%05He)?X;J8TPea0fN-Xyo9hvw<>tF`zwI)fTWN1{zP%syyBjpf
z6NurtoH<rX`-<)Z+{jo_n%Yr|*6F#<{27=|*w>&E2lc<ibUp|PP-NgbMm`^KW}Sx-
zIA<U|%JSTHh#~{@i!tD#=l%G3?@o=@G4F#|%5Ol8i!@UK2r7m6Lt|O+XU(nId!F#`
zhvuXfhxjpA4t?;hG%~&~n;8;dlPZz#kw3JL<Nk*OZOk)&Yt%~v4Ef3`O7#04bk<18
z$30>Q5Q{0UG(0iq898yklOv0nEb>tWHJrpZL0d$saS;G3!qX`qL7sCsS6UR;ZJ;t0
z_}d3WQ-V}=vRIuGq4)BcCDF{X`$H&E$n{&h0%*`>rQ=#d?y}8)w9fD0Uk46Qzhfg|
zN&7B5QW8@l_d3ph?*6LGMd`C6HWNEZ1H*>}BX!?_v<iC6TKw~JgaRLN4K=#oN{yMO
z<+}O;y64;u&ZF#^Fhz5Ja)Y7n=fMpCt^skz5nrIu49a4JTMtZA6@x|>AWN-<vxnW%
zb~zCgtK+#wotx;&k((S{EDT*7%tS~ml;s_kWkk#tO^6^juuVpa44wn7Mqv0<irWJ@
zF70#Js&H~=L=A}LtKLqtn?j_AeRjq%tqx054B6$kJ8Up)uc_hiV4l^TKO`c&fVNJZ
z<!L*mA-XA%(_6srM0?6NV*v`!6{5hWdOGEushpL!hV?t&9BOWuOY<4S{0II6OlzVj
zHrkdC8*#c17wi*J(*p|F6TcE08JMt2HBC@ZJ?Hde;k^z1(R60W!VF#n>kPzzMfvX;
z3MzJSr-|@n*Ygym^Oggl=jyjm8<?N#ZF+W`Ceh*+Y|K25d9uCb$;I#!CP_arMY5Q|
zUWV2YXp|D9yqd1oV9d27dS)T>4E7VzaaIj0Cd~#(;2Mv$H`4bh0<NoQyd8Dx*wH|t
zv1}@myA3F>F@tb=bu&|Y@dL}DVP5Qnj<Oi;524OZ))q4^@Ry?SJX&J9lcVRfQ7-G&
zr<njf;;3HPcd3<3OiDh`9q<~_pb)p$hPo@x8KaW0FYbK{gPZtBB3XMHk}K)~O>&rn
zCN|){Xxo-HHvfFBi0XwM&ek9s$a{Lbhyx`dnqdxAjj>oGRn~}$9GIOkQ!eHqYMd2Q
z*HshoRMQM$w-L%xDg2>TKdZtDa#x&i@-bml7}p*_>6}Z~wl-D%W)#@;VzTuIW^|*L
ztfohw7(sE`ETcLKSsv5P3=%l~H&72phJ*m?z}IRE9HXpwqW+VZv%l0hpTEFhBpsw%
zymkDr3X&L5tUrB5A2*5hRkLWJo|TBjo%?=P<^ZRnZgl40wtTFS{^@}cy@0}c(};dL
zw>~hojSVtaH*x7P@i;Is3o!AHH4W}D4O@gY`v((Wg!w(jZ3TFyal|CrpOwf8d!22r
z))1lI6iQMPE9eQMNtze#UDDaIxYXlNc3|48ZY)>|)EQ3bQN*YQ#>BUa#->|Nytk6_
zv(lDwS?#gXZYoeDk@dE$J1wmrzt_|rw_(90c9iA1!{YyOFb93qxPO3;+ZT^Bgz8`!
z?I`MuoHneY{Z^%^TmGr?9rS>KlZJzcbezc6B5s?*ScCHd>r+vKB^JA07M(**jCn@Q
zqR7*22XGMaEy6a+LEI(kIT~}8vB8100XoMKOmx6X9AZeP<s!IVoav!g(V6oKqAv9Q
zwZyK=$Y!o`Q!W5>rOX@|bLhr?#;jBFeeF7+sLQqUsr&k*>ZXsq9*ykT1dx>}c9$vE
z$g43`7DiK?m1ATCh?>AncWao1jj<=|jyNBIcpOwn*&(tO6QCL98@-;DP2O3?giR$6
zl?vw7L+RI?o>%;Qy@RVo<I6}*HTlL)+hqh>4aF~<CC<iv;L&~5atSUFcwFvdRN-~@
z2(Zx`SnPLUsh8zT_l~P0!ZokvPqtq%B}n2~#UQ79bHyIdW7dp?*gs|xma@KA#6#9C
z>T(<F3PKNC_9)U!R=+K9t+Euq&(3dPjf=rN#ix`v%ovHKZNOlB2#f$d?f}~jOAtj<
z5d^l91-9Q2pFVuN)zAhlf^B~K#QWzChvdjl+4LJAOB~1j8%GQgjg}FtT_L*Mp*u3d
z=2z5O3SxTWHS*iqiY_WTysurbXe8`h*V7Ci<wAVhQ8v9Op_dSL=c3H_3Vo*8P!G|1
z=5aOol^axz*msmzC9%h~35w23hWMW$-g|8uqi*pl$&Ufe_D>sTW?Kme8^+w0hWLx~
zD{pPs+6-u+Hk2kV?8C$t`)_~3Hxi(U7A#myXC3i<-4kX50N;<!ZrMHRut--y#*l%W
zmDz<m_PdTS0Q8ueg2sZ~JJUw6X?c4G1*b+-_-z4a;+-!z2vcRWFl1=!N(hWCaqlC5
z<vt08?Bdu}!zYd_AE$j>F${Ok%nQAI`1JC~dJ{zJf6;UnUQM|F+h4*)4j5gdyBh(w
z(VbEf1Cf>z6cBV9-Q6J_k^&+i>PP_*2?GfoDJ7-y0c$_L&pFRI_qqRt`#$gY>v~<5
z<f5d>7D#+rpUcx&p1wBJc`pOL-P`fO#odm;(+)g!YP~vvJAgp(Ogj0`fp;`crX@w?
zwYcXw-iIUoWb;9SBW_h4uU~jSO+7t>wm<(hV`myekNVSbT#w2A(@gc0w*kBd=x3+J
z48;NP9OYQvk}`|15C;$>-|MUaHKxO^#St$p9yi3XF@&2QnavWHl^$84lb4TDHl!Q+
z5Sn~Cl$#+iHi6aXIyRU++ECxGGvQz`fl264r_g0VE0Z6iKXHmuii)I)_F#d3?{liF
zY7`htqj4p9=8uL_qv$eyN^Q+1Ec6%)BVFuE0A*f7?{<vQQ8B^?)?s_2pQlR_rbcF;
zAh&}@P0VIZ`u8fMf`g_Q&onAkE-GHJP3E_j-)6oi*Z)d7V~i~g*>}<YLEtr2>126&
z4u5~mzPScFD&WKba&7_r1Km(BWzce-U1@@B_0vev+s}U!uRCPjVT2=Y@xB(WTf^0P
zEd8=b(VXiL3p0L~c|refM{MTX$S>R<3wYztwZ>brC2`qb+5?-G8*8sFb=8&D6%EzB
zs(&;>Z+QQ0J)>HKDez;f=2|LfUeBo2u<c!bT*DVq1Ju*@D~0o&UWRz-z-*6ZQ3p*+
z<44*j&P&OyjzPAq&u||PtmtAgT0RbSyq#Xm{uU$i>+!R_t4t(1@r??sZo<dVpL*am
zo-<Yhr@wf5d(q4Z#V4^w?JL6S0xHYgb{<ec<llkln0&5K3Sgfs<I4*{dL&pwJ$pSk
zdLr6;9oBo5u8S$$3v$Q;Xe>Yc&*O<LW8J`jrscCT_Zc#p`e<r{Zf1N7HZ$-hd0%U!
zE2Hap({khd{2(&-%V?Q~;Lk^ztQ#N70C_=w1%I&iac_sUF}UmQ1s$g42N^^kew{$?
zpq`QXAL*K--`P|_II4zt{}{*zUEV`^_!HSo=<iI1c?$RO4B!Gn{N@I*j2vJTjv3~}
z={usuMM+R*Xm5#m@9$uiT{JMULn|hpHbSB_)VTSk*5BM56aT?;-?Slfo?&p^s2GpR
z;o)!&Y*Hcy5S>-@l2cz)Zj>7TeUpLfYL<+2dF#&^WpAFtuJXg}ujkmgNp2n+rGCb3
z%M<C##rw*rrIw9MkdmUxaEjLCNy%BF%Jdb>*SqqkdRad{01N-?4YJEp68uQwjLp>S
z`JD@BPKkCAUd`lLPVfA$`$0KX@J<LNOYB%-zG7(3({MiXPw*@KcchuxR&%PXWp04z
zJ5!JMk0nYT45kiSK_n~s^`9e$k5~^-vEhGN`6yOH4O+j?i+>MV0x8aahHL+j0YLMR
z`|1_*?4Wk-Hz)#h=9A~gvagSbvGcCO%O^_^&T!7Uzx2hfQf<|X2_~TC4TzjPSgkXM
z`|oG^q)<`ZE**)##R41h?6%Hgp4k+fiL9@>;s4BPgz)=Ba}M>wDmGP$cr%uq0vW0~
zE1c_$=X)$CDZtV{kfa&`{l{1tx~imgAJ!2<qnxwREJP0FC3{ShnRMtnuH|RrnSF!@
z{-W0V0q_DVcFAhE1Mn{8P4gB)UHv3R=KjLeGVN0py8h?8Lf6(<+*T;OU;SDb!J|k&
zsT~c%>QTt3bm;y^9<B3hZ%!@&iEV0I$`ptT2f9xbUj_1QR&z|NaH-(9`0EZgJoqB#
z*qzAtW~9K9s1Sy?T+qU0IYrKL>w;II^iw(OvBO74pX~;SZ&)9w+Taw47^ppd1abtF
zbd;7HV%Gz3#IL2Fx-p*p1IEOQx3;?&zWnjv3a7REPpPh>FKb69d|a*%k3J2Z0v}F9
zD=<=B-CJ2ZE~w>=rkrkAbI*IM7h!l7(5Im}b~PUC8Sck~xsFRjot~W~{Bb-Ng*)oY
zVcJU<f;*ST)srMLm-Q%LuL6JHU!`Ps2bzZ$1z(Pt_+eB@uXMl9BN*ehnhP+}(lX;=
z@|Oc$miNuh`p-o_19u`FIovBLL+d|rNo(t%w3|`kc5PNaOIPn?$T$sJWe`%}lCp}b
znmSkm6AK%AXE#r8|Ddot(f5goshPQjrIj^_Q?s4D1M_r`2B&KVudzn<O}9JRX-|XR
zE-{ezUL0qdw@we>k-|@>3zh9EATP7+ZVjSVUIa?>R>g$G;PVH=(Wz#WFPb=Ht09tX
zM`xn1GMuP=95|B!_BGd8sU+$IB7rrj(7ST}7XzY!W>}_tIzhWWFK&$I7Y@z%NU4v{
zlbMq~T}kYC+r|E-GO7geZLB9}Jo}mxV0#P>ku+!xP^10ahVQme$5m&FDEXLb4&o)e
z^wXfD>8EA`c03xlcM6#)Ld}Zv9eMBDFSt=PBXNadtwEdH^eegf>NjRuQyjRS0B?3w
zBk$c!>2eazKUi=;a@f>|eC}aliAtHN)gdU3B|0LiBYjxvX=I|6cjp@{Yc1NMRrWu$
z8+SzioH7Mc*+69$%_P)n!Ih!+G=X<gsM#<QBW<Ji=Dry}iMWRWRH%Z%g-hs8;lDPw
z_R|Wb9=eU)t=;S!V_eip;SJM&QI;ie)I|FBA2B{l;(lchG4t7+t^H>aGQ0+VH}(8$
zLhKSy9Zx6{J}-@Dv2m<UVD~JpPUH@Q83%SfnXeY5;!!a8pWEM4JUJ(um?~#K<Q5?8
zj}uIlUoWoBymCspq-?K(IP0<>;diF8(;&)3Dz?CE5baBWPs2H0ZL>p|Pv#QU>1`tY
zUU`<@oDIb{a-AAVd}>M>eEHe@w!!@ARv;J`>8TM_Op^v4$Xkvgf}=|BG{y&yYxq>)
z1xuT1(iE4PYO|b&MU%5_oSW;5JWHD!%EFeK8}p1LFW;+N=SR(rHKmUpwRCaq1-1@z
zwX}B6JGZnwU0+IRG1y*e>39j^ZtWalZrNxTU@L3wdabzJ+WnUKp0t#P#cWk03m(_z
z&&H!Z1w`R#LHV)hq9JU1Ecanwa%q|ewMyohtnfGN^^WKNc}vPjb7jvS!2}#bb^_wd
z%OveU9h7YntrUFdh-$(7m;hrm4ZG}#r~)r>K(Yjgp*wEnk42E#A;i8sJ*~&RlSXDI
z`hbrA6olvk(ID7JdLgLtT6W;+0An_yT3E9~Na=;4P(^s@F9vxc?cYKY$Q;()3xKQF
z&L8DdUl$*yp{eP_!ldiS?l9%*5n@#KpPI+)_BXzTN;u15p9<b`2s?xER?QAify*yT
z%LCMy&&j#cxOZH+6K^J1#ql9lRP{`*37=zr%NPN>T4{~9GL_qVc53q&gcpRG$of#Z
znBz;Figr>Z;TGvxJWN776i?&l<N*W8<fGxA)46%4_S1P@P8{bVKwKX(%*a=cbM+`M
zM~{XKiCCC}bo&JrO}NV-Q3}t7SZj>=JSdkMBX9aOE9SG&PW^)W%fFnJl>_V|JC<~2
z)aq5&*CGM=I3hj*7^3+DZV2$Zji>%lEBj!6<+39p9;A-D2}R{l^T8g1l*z$QIYw^b
zh?qA{j0DbuH^E*G>>u$}P#eDy`KquNz;F_D*mhcmPrYJXrV7vOGK!#?z%b5lCsX6!
zp04YnF@NG&GzLeJ5^Kam>rwi(TDtu31*$}CL4vSwqJV`u6_wfXZR@~Murr|GKM7EV
zY4Srv<qi}zd~!c}MTp-x=cU5vF|D{dK+}8fIk?=MT_QQ@6<bI)dnX!1al?@=`4c0#
zDqMDgoo+gQO*J#S4$4)Af9FOvXzn*>;>?C=CtD}hu2>;%a)8CC0Vb}=iU$7oyoAM^
zCQZldL}U>_GZ$EaUFkMp_ZZ7(rpO}~UsVveQT<JeQ-`YW26UvaUP2|&sK`-~uVs)*
zdz_Qb?^i-8*2qi!c8!Ip-goAc9znL++OaD-5@m0>-_l<CpiMyF;#=ovWg}ExlHCw6
z3wd)(bR_wWQ<YM#)s8gBKzFcYZqCKZn9lE=xh$fxjXn+2-nb7_R2>=Opo^#KRKv5l
zgaO4I33vbhl$PwmYCvwhtXqa$%HC*f2IdR5M}d3aDZ{EJAy43SxF%B^9?R#Lh{u3{
z&NyBstvC?drX8oW<0t9oR<9d$R31SdOISoqEr^^e$6*Tgn9~6uYCQsUF^?DKGCMbq
z9=j@d{0e9vl9?BD0A*eDkYum2^Y2n=l?nl3W*<SH*b6l%{miuQI3~2)S9iNSsbw#n
zfV`Q{mrs~Lza&j)jX4t$Y4u+PnVFxKnG|-VRgq{#&y)K=*P2#+!H4$EL@;8Vo_cm4
zM1#uHZYl(}iVy;>BD7Mlp8X=ehqv!i*-B0*Kk*-u0p(XOXV<7b-*X+^JwVK9;f?tg
ztKOj8vdiPiLZ}g6@X^8UTOgir_l@<U7{$G_+kLthtVs82SoB06!{NbUcWYH>$~mE%
zOI@)0eaDsG+)MXu8VXHA0EK<ynJ;r20Fy0L36>Cbze+$sJv}fZVDPy@v1)bpb05u<
zo(%BF9YB0vaNO$d5`sSp-oSgBbn@7QxfAUvn5mckWj9$e-~g!F9xB=4D>&o?h7w2k
zk_yT_Fen_9FH;XIYWNIj^~AuAHI7=*;iJ-3jVa*JI@krrdZ1G?Q>Fl_EDn4wSk(V&
z-&MI*H(JxSw+bqSAUJ$$fiW4`LL+G=IE+yB`h5UtT=J!AUMum|sBX#eFZ{IKA2Y*g
zC&c%ia0-{lng~w)y@<_gTFt){KmB-3*&TS`yHjy4p;mKf+dhDHV9rd=m*gj5Gy_re
z`({Q|cqR1tgu|xls@-=Mw_?7y1~I=aM=8dxk~0NMoG0XlgTRuS$P>X$?Qc3R%S-J)
zyV!NeN8LH3FUaj4_Q4Eq)+)Sz2J8;Eutv#bIY22w<GZQ_`4Ia~A9@V>Q6O@dW8U$s
zbhSOA)-)(={%;PGzN?<dZ;xm0EMK8<FIH*lME%)ShToYLydGVPfJW*^GHdAEW_7tl
zI~f5Zyb`4Lr^xRmjaA#P?b6Ou|7G8}RBh+6#oKn^(hz<5s<LbY1rdBg#cFLIdpG+H
z$?wB(#}>=GdJQG3XLm*@D;gSR9Tmbf@^?(m{~F|x)k>rOoGPTFzin6p55=p2rOSU5
z!iopE{Zhod?t$I-tcF0E!SQhX5mSMhROO+L`;#i|6ESz~{hY$E!rI%JA~?Xe07mx4
zjbrEsYm$SCJW#N+>R$JZhKhzFdrJq7GdyQht}-b>fg_gbsrRq-^sAu*WIoAfM}Lp_
z5i!fVAxu^hLvo(MrSC6#X;4)r-!}7usui$@-dDAhM}lLsW<{Xg9opaCEc^+l6!`7(
zQ+~R~mLz#N4a<=p3W=j`2_&yof98lspC{<jC|3#}^U<F39k&7L%|Cl}l4i)x)lSZ=
zC^BGrRHbTFFusbiHOU85Bz>!1h4i}7FX6feD+TEuq9W;q5H6OnW^}s-w6KR4yN(2z
zRYPgQ8(%yX>AG1{9`p{~qzv|Ve&IYXe}{k@V(AkzVy&W$*6z{)n2hq@c_`Rw;f%!7
z3YQF56{9BjpL)z^tne>*eEEpZDsTm^zHxm;_TV|Oq7A`|^a%)H$wCM>wy})$$v84S
z9-huB0;^_^sixL(;VDK-i9jl=%GenM%T>_gsw4%@>!M2w4Sxj~6$SAc>+}QbQfDR%
zQ>7O&?`f~G_(}u9>CrUmf&$2Dq3JJ6A_A_;fN|GhxxuBc{kGaN*f1y8pN}heKYLp2
z2+BnhC~}F8ivnl`ef{YZUST9!I$=Y%;w`IDu3#(P)DJ*wlrY|7`C+Vj84~~9%#~Nt
zLxvfgY0k@YD0FpzUgxuci9Up1RQKg154@lj<Gl(Ht|4ZVf~Rlj;S-c>h$@N@F(*$R
zGb-xiVroPM`a^|ah>I(N!H^-&Ft=*lNMEn?Q;W*5x?+<0Jh$|`mpNaGG#`;kb%;f8
z2x-S6Cr@H4ci{9Tan=pV$r8a@0IE8$-zOp0KMb_xXm~jqHeD#J=S*b>faCRPI@dsf
zLp0(mcD^j8ybxuE4NGUV)gzKsDUgf9X7FV6sBNRa520Cp<IIs$u(MqAZw2ZcLt(-%
z_GXZd3V=$?OiUa=W-XGpxQJ~RRLIzw>T)0Q4rr!zQ$-z!G#U!_+OpSK@Cn-jz(sEa
zja!5@SU&o|AA%7UH}lXTc}#JsJa6!@a1vG)-ZAsO>DKTQ@D>6P3wg1|jHtIBziD7%
zz%xtWB@_4#%y1yA5|@yu^+MQZ4ByVW=`C+dF3^=$z)fe-D;6O4J+hl~iFu7r^cl>;
zGnZ*;%%l^nO0Tbl1lTJlHth;K`(Bo03OMACX#Cg^;z64KNT|e(p^ZQWvwGNaQ}3F}
zm>1yKrAB**t!+rH9n$`q5m9B9H%XS56ipbmLJL{p-*tK@!WK@ohbium5&2{A${6f=
zpMIFSuj5L50DY6&4~*LnXc|Ztw<4a(l?Y=^G;P}P0eGi6V}qu$(ue2uP4qYwU&U)u
zg<0@%ALv=OGI{ijdKii2<9C+5c5g1~882q$osOD`8YDS86+ik~Htd%vZ!U%~f^-dC
zNW&z_N$fkXg5;^e(se(j>(aw3?=2b#O}sMAycw=M3~ES1sgp{9hPRsi#DBcPE5n+v
z?cJ9ij*Bm(#``xVK8iwPY8A1~r%AOo@l9R+VVe>nO@@s$*}~GeR!M9{^iaKjQgfw$
z`LDf>)QR#;&|y7Q#^OX8LaH+e1WtGArkP<mgmr7~7h_r|UC#SY?&o)=V!LV#isV!B
z?4*iXQN6hV{iXZ;vTuycX(eD&0f^M{S$KMn)WCee^QHagTxkQtpckhBFMsX7EN$rp
z9gvs<hqw+V;Ri#K2g8biBa-IBnt`Jx2ctI9?dZTU&%km2gK^KPu}4(BzNSy=umgD0
zugR_Kv!(&r2b0OkgUJR!VW-5pKoJ*_S4#(PmQV|LlGqvHRgS@r&_shO;utQyAe2t$
zIn`XMnaB^i*V|^Cs^8v1%t7s>&@sK&(q2=2)57wAX#`{I`{_4>^yYz*Go{}?eP&!J
zuX3rOn#}~Rq$jQn$;{^xS7F4}Jt2(j@YWCWsvs=o&+#qx%iT#1uL6c;2|eGyWw9=p
zxjt&fht1rKBtYI_cB;Q^dCKxP%N)?*nR;%iF-%3dIlqq@PK6V9w`D}$t%syye~FLl
zJb4>#fRz=r=Qpxk)WH6%d-cQX?b*t<Ow3z0CZ>yU=H}dtFWy0?lEIGy4>>MHETv4b
z^+_~9qZ%FP&XT9=xfO&-_tz>G>N-o4lc32;I-?0jR9pQg+Q8HdWL_mQE94ZgG9fRd
zMUt6f-;X0Ithv5T7fNPvPs$2s<7uWPe^_5qJ9A_K?`SlN4^Cufb<zttJhcgdZdAQs
zAT51%azUZR3*O4U!OF3Y%KbISVOU6TcBNc6F3d#8%VyX}ROIe71ifnQl*Kfue)FNd
zn@8+qk*CLNC>XE;POQ&2!2gA4slU_BphdqSq90pec=O5Dc4{j5JJ@$dn!|A#!&+Mz
zOp2g9#gLW2OFu(_;@_fQymio)6D~tqs(_HMk1B3rSY7oCubYd7yt!t$$m-^_?M4W4
zUrWESwy~t~{^lI(wVSV>N>A4$ZZ7K-YULJ1U1Kw^V|9Iw^bh@DAIs*K@<CMBI5U==
zJJ3Gd{9_KUp5)r&kReRyb8whn&Ye()y0uAGBZmMuF#_%cxB{Z?1H7NG4}_M0KH7r~
zPrZitgQMiiB?P#YZYzB;`HsEL!@^4;UR$_d;kI^R%Z+17aXnHhFBXJsWce-HN*5#a
zj?d>^<wcj|I=Qpo6jm$9kN7GCm4Bym7tYb(RNeV>G_VUEa7r01QCx6hXI^67EXhA9
zdAOz6lZj`);UuEfBNxb-5#gkr;Z&UAq+%GK-;h))gQYQgq?Go<sE9_n``glPX<u7S
zW9*4d;7Dhv?qiXgC+3ZhWPmNJ!#fJ@pC&z6Ie1Kx%D%<BV9J-HN<Z{PVfx!D#s~tX
z7|_Ub{D_|yj~>r0E0<>~Dhj?Xv6ujwce3%u*FW6}a@@H7qMG#LeI5x|PD*hZvaYri
zUJ=Yk8ZSh+W~CYjcglP7{k=w@7-B2l$&CF$e|g^qh>ll!@N1<V%KNEa$*aCnS*&{5
zcvR)TwN(xkm6FP<IJdXP!yEdpn@+o4J3nCCt8R>>?Fc>>Vx{n4sP><mU!I@Y%5~m~
zn7;9fdIOluy7V*X`&m6%h39q%oA<**4cLF7sB?wk^MWsCLLO|}Zl^NeE!29oW~%<4
z`273EPr3LaQ0fG*S-7mMaUtENvg{P}B2z`XQ~S?}q+)1uD}m8N@CKZG`hL>-;cpSt
z^4fNwT1bRcGE_AgX5|sg5=r<9U#LPqhz0Oz?l2CsvNK%r@nz?{!kk1U^TsXanG}}o
z|H2oJ1!mVGmMtVDhxufQl$6FYt=ztTzjPFKSlAvT(*B=a8bRVdhZxnmm?B<0)00EX
z14gG_7xteJvPS+YS&-Prj;?uv?;%{d$g71fY+@f(;NqkVWY<&lKYU#8A*j|I`yDwa
zdq%Rc-RN_xPWm#p|DiVdYnRDht!V>Gxx<<MK)>ZeoZpbw&`&{wnaHqIg7Mi;!_OC2
zJVJ%!xBB{SaDBmI?T4;tlEGJn=@&Ni7@}Ck(cy;J%79EWY*gdDU%v7gmf4n33FbRa
z8dfwS7^Ij>YB5tez_knS>M7?Y`p!o6rk1*|oyE;-AEav}x0!@7ZMvd<QDTv24Q}oa
zy-&S-G6}wk4J>$3il3}^r_#_J#ozw^m;gSIO4~1M6TW*ay1Xupx6goVURPxH!h|@`
zN-&MUsqNlp=C{VTj|A62hLd+s8zK*b;E=`;8lt-cC~8J@75=A@`_IsW;c`KesDN*X
z*zdRju=P7=0Yeh}ivFR8_%+g4+Iq#vhP!(D$b<W1$|X>iov$UmV|meo${!MNWbrI4
z*uB_ka=EF*JF%!;0&e~1>4N&r^kxd1#0>SVC%ugM#m70NF_OH0bC-VCSMOd&@2cbr
zfcpRm*4V2;&4M`X;oGqv<7lWXnMDwim3)%4+QT5f;mR|W-Be<GViI1S==c?akCY@L
ztUoyr+t`dKzyRW56S|_x|5nALmD|K+hjbdpZ|!G$>-S<euKW{<3=|I8kLTF`*W+n!
z6Kh$Of@ylQaqr*P4uj3c<iyDRqT;B@C;HtbDZ^Ey-MD}IBRZnV|AeMn5(itV&-Z}G
z(j}dC2fzOv6%8MNDaR}iPOhdNb3ZthqMT;IPn9U&bszlLNd9j6;OBM9&zDp`Z&1!|
zKltw<@$70ypZYD|^1#CUmlCb5``re=Y?EJ?QccvPotFjn=ReIQ0M?!+{_alvckcnk
z5{{Vg)%DC#MJs9wXV>H74eF_LntqfTJ-Hs_5D-Neyb<;(=8QPzdnez2tat17_ur-U
zUniTh-M&OoqE5N>y3&?y@|Zn#=Odj^>0TSl(I`x|R&9C>N(1OY?i!tzR?*fszvg=L
zRzz$<MnOe=TLP=%r5o3F7vX12(7LCdFD$U@jEd^Kb<O*}$auh6o~-uSayb-Pm)Z3>
z+TLq340#r`kSJ*t1<$y~7{$4Z_S2a4yleRN=syZIhZPx3gwhWT7o<%9ARbjH^vMjJ
zy0Od$o>8MjPXiflxYP89B(|py_+Cl-|46=pj4;v}T%@+#1jsK`8Aoy6-m<9Fj{OJW
zvfG)Br^zyl49$B@pk}TwmVVds8rWz=!x6c*Mj`}(X#&TJ-ad+xf%2hA4kXN?0uf>N
zQ<AcS2ZNo9?YI2z@-E6kxjJ3N>ZO<=j5FFY-Vw(Dk{i`s*1AH|wUMAYdy_y;S>&UO
zPX9Mowz}A;yr_E)Oe2*xp4hhJ(rML4yy*7xF?7`)-~8C-Y{lSc^`3`$;o@Im+qZ~s
zAG>NCzHHfW8Na5M0c^QNFF*QtH@DvCs<!PIZ1qC~gZ@LeztLykRvYCWh2Z1Zc^jr~
zp9n%-@~DsZJN${PxG)R^qllLnVz)@f#zPu0o^kAmW7JDFR5>16+`53k%Cb43pv8{a
zC>o@dI+><ei+u3%Z<QlqNL<qhNJH&$IxB@>)><p)t)JKvV0P=AC1xs0RYN7v6sz2H
z{#w|j3Pqv^frTVW&(pJCyiR{CQ;*0-gLBYUL(nI}%p`Fh#7P3J^)hHw)i|99L^8)H
zq{^r8+y*TEksi0us+bBHVbGM`G*vbmQ0Ug@@co*=8l>15$Ce!5iRbm$v$mvP)k4xT
zOnA^4&@-DWS=xQKjd-E@rF>F~RT=<p2dT0k8?@LX*Wyf#i^(>~D%|Z6xayk9EAhqZ
zpM(EZCa605HP-hoDXzbUrU+d1rAuLPb0NpG?)_?b9jpt#>mtqr93nuaan+DvKJ;E3
zwE=jBP+FJW8GkeL76C~$yy$NzHiZ~UK#HOP#5=-RfdrO93>qBuoC0-l2}_C#1&g!I
zJ~c%;;vCUz!_myC;?(Md1S=#!uNkO?HECw`{3du)xaQ!$FGx^g%~sJ32F)80uiu=w
zkd@uk=<cpP@9T^{iZIy?pVUTuhSI=#q2*WYianAdxG?cgxQuf1fs3)4Zo)Y55VU?u
z=gK!>m=1{?)ao5wEQ|U4bf}XFF$=Zf(b#T9x>x~Hb4=aVHlJa{&lBQuqSx{4X3r2e
z!hd^z@@;*xJpk>fJx70beu7Xi9AHFq`?}ex12C)%fVh%Y)5U>+oNP~2+>P{6;|QNN
zeVwSSBA*vg*E`?q8y2Ij%0vrb-8>46L+XtJ>rppz9APySa>2RG&UdTflH_LcH@3|w
zzO_1?`#?_N!=49M_Mc_F6!@L(OZu5yz-hSRh2uvPXQ&YMAaw|hVwqEsBMKx=7Z_s^
z4a^>Hd_n!9D%LF&#T+#JJZZEeZkeU(zihw@71xji(RdL2v7r{@O0A!J+QJ{V;;RzM
z!eBW%{!m$?Tz9lQjZQfKpJ_4OMABs}NHDWDoCA}iP9zGZy91>bTZGwa9(>oOp++yN
zi#`f@AW~ONpF>Xm*$-fD$s2}OMUJxn$#!Vu;^5n`((UccG5dLAh?)mETGBrky%_2y
z$l7mYpxPBRD+RhZzAY)7j5e^c0?uf88cTR7V&y11_7&Ue52uZc1WRi-sg14y_KSxw
zHYiLURY>EM-D$4Tab2%HAR*cp7;A$blA*rje1+xXtY~U@u2{Wh@dqM2c1g0YtI(CZ
zkOEALrHlq=f{SW5W_Y?j9@{_0bBiTUPy-nC;RM9<YrEJg`6j!|@zu~UAOa>%cs(I+
zS=8E9(0kx@MPK2SyXsEGg2eWc>QjrXH#Wti2VXV+X#m*%99yY4<7oj?<~hYIMLTwl
z*B1R)S*@5ewWYyVqpsC>0mT@0T|OAq_n<K9HCIGd$4+?qZ7a{-HD29<3A4}ZQZpS{
zct3i0hEI7{$3Rwd#hV}()T$$Fm?iSx2~vi=QXq`@)B7q*!`5%|uhx-0p!qJg-d<C$
z(RBDy%pkLwRfv4O2?i)v<s~<L{K4{38^JeYpLTnR{;_0o64MVW4;HVNjSR|$sR=26
zMF*4!s=h7Y9e;lPY~sZG#@xEF2Al}134LI1H|5zLS0n6GgGGE*=D-0gbMkS;-{7|3
zfB=8iXcp!lYY-R~4@p!pZCJ{BlKc1Jl-@d!RhrbFS&ZJ8wsM~FpU@ffG%&rc`3Y)o
zjeoG^fBRt?bQkn~@T-1s^!qfLY6b$WsF5#?2?_A)!&61RoZ#4R*Nrox2^<Fbk}sPi
z=MzExP_U#t=Y0VvI$NsPWuoIgCnbb~4Rr$~yJL^Jc1OQg2jfF8ya_;75w27>wRcL3
zDj?tqj1CJOaz>rW#?p(OdX6vudy}5=-~PLQ*oaiCS%uhyAyD~hFD-559PM5WKIc;C
z@Si8<ocRM3osZ`j_EMxRr`tk-)=Bc-lQAOGX8clV`FvPKBzD$)Np`lEXS@wHm`>)b
zuL8*8*r@cFH{q6s(`p8w9D;DJsld-Jmx<Fte#FfpZ#4!PR^@!X;Za~Kjy^$kq59)9
zKa0Cd3%j?Dn0iTdCMF9nGZmk(1@0wu-NB5+-W1ouQ~~K*7prVIfX#e7jdsCnl@Hb3
zGl%?Z<6qRd2xM0K<n$&`N@LN*Zt{1i)zoo_arI9W7EFgiocAp?`YUbrdQWq3#Otbc
zU8<TpfUpX*ieNQ#?fR3B=QN3q3UK+OLY20b+*{guKi^xJ|CeHSkK<+|Zn3~@N8ZOZ
zK;8r6#)lfB7N0y~Ot}ZxY^XKjm<4320T3*mPc9|M!3P7%v@&CnaFxnpw&YL%_tE*Q
zTYvpZKdx-6-L-6@mIwAQkN`4$j^rOt55!@sQa_$?cno0EH-B~IzYD_Yg4J*9BX0m3
zpMB}RT`D1Q>~B<dp%%W&{$k~^N(@Y%AEwLmo^@06+YRw6L5+Xc6Kk{^yey|ZwLE_W
z9ZT-gISq8BRo)d3q2N+oweO0wW&T9csWq;B|IM_uVn4mkI+6L*?Yv<I`l5U2i%m~T
z*RphUi=p55>%K;C3n&4)R{j0DyZstt@Mihaqrwb+tu&MNRdtSkqRG^!BGqB@5!swy
zUm4y%Enq}c+%15x`H~=;k$EgVC@?J2f%fxIKD9a){GX@k&yI(&DeCJG%MSor+4Z1(
z2Rvjlf&`YgdN^k$@qx|{NNZt5WQixo(G((Sad@~Da3qwc?K|7$Ka+M=N1~7TQi$QA
z_G+Ue53M5r<O1wh@1$<xV1o0Hun^#VB&o$0_fB+<S>!t&#nB(2*`HlSAcx?np(<<i
zX<F*xh!m1yMmo7cIt_S!XnR#czJe~~<tFn>Xdt=+cbVVEQ||y+NdtK>5>Og#v&clR
zj)#WC7bsl)L5oH2CQ6AjJsob5UK#Fw{qpbrOUjKBu7e>(@(Y$2KyUKPi+%juc>?PM
zo*K{2)+7N8Q$pPa(vG5^8tMM~{!)B4+sYRO)WmYHV1y4cMFNM#(uarQ(yp9jODT`A
z`YGpu$3RtjV)4TzXd0#}c2+cc{n<ln=NAs~V~+V_X0sZl$;cs_R8SM5*b(?$fU0f)
z?mC?XfaC!Mm=PT5I6?}uFCb7+TD<crND6{H2QZui5PigkD~jLJkgOr8u2N~P!sCe)
z)6&POAh2&fa}ytxFG~cS0BxT>vM<G5nWe-JrY;4(<1(J;80XvC%aQuZ1^LSD0EKf&
zBE&q?4h4Ea@~}6?<9G~+e~N20fe;SHHX^e4cs#;4pCtsq=Bt_DWhB3u&gu&^631u$
znV@I@{Cf-nky;*`V^6;;#Qk8q-CB1=dEA0iUEEkU+zb)1Nmn#D9vClX(@(sKF{)3W
z=(!F^?U~3P)|1H=Vl+19bDFf=)YghLu}Cq|Rxn`Z5VQB<bSNL|)_dJ!XDZ&L--5%B
zofn4+#zC`R&ln{dsRM6aV(v@htcoubs$Rd#j=Rn&2FZSXU4UJc%*u`hk5J0Nqh?h7
zkm-R@h7DS?cX`w5e#~E&K#%aIGmeizJ2Y?WOrCF=k|)e;t?+vq;Nf(k1v|6;K{J_<
zX$_qD>>o45CUZSgGu6H~Pard7q{U{yYoDRiN^U$eY4C+hWhaUd7dNI{o4659+JeyR
zrGvJ3X1;CC9R9G_mYDGg&1RYf&@SSUvtrPN9=|9&YgG<AZhFVX(wXD`3A^>Oekoi2
zs2e!?@s<La1<)rS#}rbZ<C(+>POr@+Ch(*87{NPu7J2TTK&uDxR*-8}XMMAf_joAl
zEF*Ld!8&J;nq^X%W6_^OUYldRIj12$$Cfb1Q833@KgV_L1v}-*9MAhX-mN*lpVnuj
zIeyl80g?Gj&{{|(0i{1La&ulZVqWZxwTMVE+{pY#DPW2dM!REfJHd@Oo?of5p>loM
z2q3%^PG&&Q_)Ovz{!%MvK-EOzR1)Sj>KC>aH0af-m^lcDsupQ_fzsc352~_yt^l-F
z0sTA)noYzj<iV>Ej}`*Clz3t4#_yDh0T@j?)jm6>2|HCBKu14rd<jIg2oMEyUh_?{
zIFEndWT$~=`GS9^S@7QJnp_1pkX=17CYr!}Y~_zgav&w1!R#JX_4y5QvKbM+yi5A0
zCoOw^jXUL9LarSFopDne93@VW!V&!RL4oh>gP@t*6pX4I;(ekn5P`_y&rK1}rjG7R
z3VQrOBl3M{)%)lt4nMly$8+Op$btqSxJUiqgT7j-YTj`x!bljr826#+SGMmhrA%~2
zd6j0i5M5RGySr#WnhF>R1J-dkbS&aef3-F{68u6CAsLWc2u-0}N6q4oR4E_s6?`gj
zt&E8v#k0J@R?$8qvHy)qJHR{iFMfKyL;u){VG~We)imESk=o`+_p)hzG0*w$2}ASW
zPc!c_B_cEM+M40G+!tkn=svmcj*GHu89^5r<ZMu;1jCRz!;+En6LP8*7v0XzbY&ZA
zp^BlaB9384LG^f9HH46L3sz!$y$_Iniizu|_@;~X6+A}KKWAlZZiT$i2Os;wpCx=?
z^|UYjx$>5krYr+w^Nb&9ol|g<WtRif;LK4l13mUHU@^{tz-tUjBqc*x=q`{93a^3U
zEYN-t^EIZRt(KDE)tQS{gx{(rVHKb-4k{T8I#&;#EpNCtObpcY7BF4iVP57<O3z1{
zL_ti4@^601hiar_fdveltTXZj*R1o{tXEZ{3T~vZetX}n2m?Zd<NmU`4F7#>2>oJQ
zlB%f~=aS;?c2e-m+TfK`;fg++!>IeCdpO4&cY7z-q7)>EYL(%P{1dT?bp$e`6{oDB
z(<DmYYLv!16(>e<h(}f|T9+|5a3Cpe)!8MI52}kEGI0#fl__SIx>a+r2yhOkluOEd
zuKeUtwf2~ek2@vV<C%5aohbIF0>)2sxx@P!sUANBclI#jyWeRDzx~b4V;?^xQ9jcA
z@FpHVCeiUq!E-W7gTJ?2jKnkU*aSqoz0fF~wO*TBtC;WCQ~2zr2mq^U#p(Y0G6}=6
zCGvn*Kr|CK6q7wa&1Ee`5tb#Mt?u$JT=3pSRDN9mVQ1W*p?JR-uhlzwD7yiT{*fIL
zZ&r3*6Rj%{8@2qCv!s~HPu&mixZxEcBFo2>{$K+o{R?GkEvRg@@}!~$T-p%c((v;H
zHMYO?VNU>jM*<s$7w~Tp#8TT+xE5H@Rhv9)6jlLU&1PyCA;SA>rnZ8_xtiM{>S$fw
z6IIz-x)EyNEhktxyxPx>sHGCDMW*t*TGZ+|w@{<M+H4aGcU>Rp<x~6n+?mN4iXa6R
z2q7mvq~-WX4+}sXf$=I}VXj53(hX^HE%z@WW>_8OS7JhCf4+U2v5@cjuCHY3R{00N
zxXx>83KdNM4A4DHA$v{XX=1YEM*Baep1q>4xdGR5#c%P%5u#d?=0BDbw*9V%G~TZl
zSKpH{+KbLriy5}`k91^3SLqJL?-#J<&8NWCbNY00p8nQSHhqdT5;qjjY<jJUOcQS@
zZc066@q%XlJ8c3^)Q?bRM2eloa&Xj7z3u7y-s5oKN&Dj4_<;V(0GUqTcNciZ?4;!1
zfn#}~!3J|yG{LQ)aX%VZ7~NBpJ4M9|hiee74oXa@g2&mKGX?$Uy;E8~?~>ULy<uye
zM2lAv?Ir`Q)6VP*U9zt<f+Ft^uy;!~j(=5@hYN9kuzv0D$kLp0J&4tX`>TC#*v*zJ
zPK2gg2}~bA51LDYo^x!6$;t?K=ts#Yr?q_o>D^p7T<JQL*pn#)%C7nA*D1Ddez<Wf
zU*dwVW5+)ZG&@6`6{5ToxD>egrxL^}?x<YVzA!)aaRzjlE3pKUn`V~#btgm-5t^ee
zyEXnKocoZYC^ViTpPIk{B&#w(HkCZGEznL~qW8M=X$3<zK@AO8dVeVfY`DRqfiWvV
zGQN-dpS|P@mS+No$!^F=F29%3rM`b_8KP+1V`6pp#-odsUcn?83CHeAyArh<@>69>
z@*5&oM!KEml&<D=>RidVy8PJ4R#s6>Sp${$B}NciBnD7jdF_0AMqd4AZ<q{in8C6(
zqOnP^c6X#x8U40L@%Z-C@OOpVp?Cf+bBg`6v7G0++rj-GNH7?Yw(rj&N}Ur2irEj4
zlRy1!s~#Hw4!Hr}K>~UBx8ek;B#I31BTpQI)wC0z{)rXc54Ez-?vNpW{L`<rPSD8A
z)A+609m&wQM&WvXsX){>QWu?#&<<6fPVGy%9g$|LaWL1H`CVOl$HhkT+I2>9EcVAE
zu;{cBP(ugobXRS)>|xtrUs#^RBR-9yXJ?U(j*7njiSCIz9Nn>PJWmyiU;hBIw^VJn
z9rWuP&>qo}=Lq{p-zk1<_<|3=z!E+bz?J1*q71vvE`5jkByybgLOf+KDcP+(Z102e
z3($F#H<spO0g=^c;78nRtgMpq)BV}s4}%?KiarkhF@OF(KzlKbet+#8c&sfBcp-=L
zmB;X&^wL!G-!tUL(>w$*FFy6e4S2QOg*}TR-0jKRfBvZqo^m28fikW7NNoQaRr)!)
z^a#~_C%uYtM4SKQeC&ZuI<@G(*ikh|pIaT)Xj|`>8)t?X8+=eVMLkO6t>a%^Jw5xA
zvwK%D!g{O|Xmu|P{W1FJ->XS>G^po~;^-gL9v0;ica=$3c~(#M{BP%8F8m|Wb`*o#
z{@wYNj%9jCV<qOw=m^`au8zy_RpGwPM<iOiSY6~_6}!<`-_hI2e}n^d`OL7^URayK
zQLi$MUmOInWhO7$f52!8buvX?Cr)c+L`Qj)xfp;dhKXenPLj2VZlxpG@6l0IX%3Gy
zt6y|M*<PRSG&xsqY>Gsi*)?v?oqG0JFMIvR%~zDsXixPRHz%lun(xXz!L3~*Z%67C
zZE;X8j4mQmN}Bs8KkZ(?xg<4Boc*IyOCJqPE$#iH;g*t;(!Fsn%~VOghL|#c=15*+
ze&QMGHBrS}k5#uqF<;6BN%KJXL8KtBept^5F~sh;%Of0rI&=cGISpIYm}9;+AL4~D
zmz$Z)uAzX2VSTZ0r#Ov!5A?f3FB-1J`FIVdip!#vxn|eK#(>oJJ&v<}Wx{HL`~`aJ
zWGK|^e_Dmm1127y626c;`}nu!!PHl@iq+}sn8dLegU>#8LNMWbi~Vs%#4)D3M)6Gd
zJX-fUJry#ftCZ+3-3giA<KVqvo=Ht(VH>;OlVkZ7f-xX%Yvjxu_Irw$JcBo-ltQV9
z&PeDzthAF7+L$Ms)92fSkbA8#-<2S#5A6{ToMoqW>%8&;eM)pPG@tCfZ@vEPKK+&6
zgHL7tTT=!8LpOvI2Z=gi_#p!)F%;Jc>gU2yDBYb0SaP{-u;gnEnpa2{Tf$lyO!M@R
z>JNZgOX=E!HuRqc(3?D@CDA47hwuPD=D&DS+`qrSG2r34N+wEkp_|yn$t!p3p->-k
zjIlTlFAih~`6BXD+Xg4jVgp0n;=2#?Ocu;E@=Ot}<S4uKbQSbEyo-~h$1GBX_hgp+
zkSugd-XA5Dfl{=>W@BlLZ7&6H8k^brT$5gT7CP{o`8F2DHwzv%_0`CBP*ymuD+~GJ
zhNvVuJ2z8YoKw6d+=vpQC4Mj9KILIE#y%ByKBxEuIJUz~sbb%pk*J080YoagnjN3Y
zR6eGissz3P-@0526TkXGw^WISd!Gya8Y}P9_&3#Ln)o+2RGKU|^i@y!x3s^Y325z_
zF$rjEZ%R#T8#tT_=y>suCa`n(MWR&N2wz%Y*Oct*!0wrKr&gJ_7N)nJd~i#<)w|@$
z+*ZhM0U*W&nW2KDsPTAN*i8dvcPgOvDFF7hViB0t^S;a(=(@FYD9##48$tpxYK1%n
z<4Kt7X^#t;>Vg4YOF+S7@{E@e=|om>QUjZxC-G-e9M1jXG?W=hxukmsj#GK2EG6~S
zhNuMttqw&L-nx7jp^NYA5ETsk0|Rqs1F#lu&#i_BA#!iR7c5@;AJcF${v-y_ml+c0
z8a{a`+;m!og){T2Id$>AZsj)pWDtKm{6CVH7zZt<Pc;{$dvzyUuCpqfIqKQST`}5C
zrJ`_;r#~-2#`8QNGjn7$X(89rB5JGBK>H`a%CU_p+2!8pcaa-P&1X#fdIVKz|B*`z
zbVF^s3$0+f>HlzEgypxVcQ2t`A7s!gs+{k4)I+4wkr@x9>$1DIX09^E{xI{Dz4P9{
z#SRY+a)~DmP^(+rzGLK~ZE=md{0Mfo6ifj?vTlCSVtz<j4t)_<ZEL-`xF7rl-v{lX
z=p3_>9vG{Wz=L;5Rc#&N;7ByBVy>oPOt4M{?(NUByAUerPPyWtc(A}ZoVf{wE#AS?
z>Um(TCdPE^0c8$_$O_3H)1oDLmGr^MBRs>2(MF3a0IIG6HdI#dzr`|0HVM!<h=S^e
zy*54chMaoTDbqjZK%@xh37e5b<RYs~2kxX?oEUJi{Vq{V^-!(}$MMM)n*j@tIc37;
z(yo(9<K^9;d%XBtqc}n4v-4b$`B9)g(sOs)8`!;AZDyRG$p7S+5S4xDg}(w4sKrfa
zb8Isw+X;(#HKicDHdt!x1dg-ucsAyvbjMK2D!=<|pRlyRea+T-nc$Sy7RSdh9f%>k
zOO=4^!SM@*U}!|~0NCssm=FSZ&SgdPIAumLz#z0CYGY}564d!R9_&~IaR=EJ|Hc8(
zGfyG3>eEb~b<=95w-Gl4Z3Sf)sgXw6DzG{dbcFjdXD<JiwG*edP4}_it!f5XUd==u
zIrOVb9nW$edI{_T;X;~oskz61k1lB7CWcBl25`4hi+FY5!?cfqEzdQa8x=APppGQe
z8eeuoU?0t@djTG5bCZmyt!&IgNYH)A9_>FUjXLT*i`1V?$s7So$gC0?8Pdc(4KH%>
zk7#k(+LLV-MZA#TYod<wXQfQ##oLW{(U5KfAT^5`x_x0<$A79FGjJ?*?I(it-~7z?
z{3iztMtoI2fsx)x4)Hc`e7FCgk=IEMV>V3*K1LiGg49Vhb&8@T+QZ&iEKmK;wt%t#
zV=Ez=#hzgsS}jGNfPFGy*5($YTt@129qQ#gmkQCCV@TZiRNtx`)t62~2+i8RqNW@n
ziCLneiMO*K{;bj_g_dHr!L7FY-+i|7WW_<nM>|Blw)!m9fZ1r4XxazhBa1s2Agn-Y
z8iFGB>C+mXn+qANWWqyVF%w9DcHS9i@V8Ks^Zn4zzz67;e^f5JQa%#4tk>cb&f93t
zP$1f)H3+TL1mCtdrDGw?h-Lr%FcbX^4hDy<cCz}Aeia&q;Kqy=838@{s|idT-N8W<
zCz)^XL=-J2RNJ+kNeA!Mn**54l+nXyWD|k4Hc)XqQf?q^OFEz*=j565?h(5^F}rqf
zSD#4jM&_YUMnOT^CIYF{4w|i1E<fmf)W->5lon}eZvVvj?>dhw@_Rr&aIXSZv|RgC
zv2W9~LGY;%Vv!&kq+=tf7U}8dcU(7Q*w;dB*NL~%^#J{S7hn46AUD8{Anznk*O=kC
z$d0@@{R;S`>8aJ8S<ELnB^rHTG;fh@^jR}Cld{soX(m?rBj(2CuI`8Qx4dJY7TtYO
ziJ|d0kf0bC0V(eQOnf9_Kk_>>rv$<LKKJ6U)Qcrsmm$5bDLAEJ+29icFo8Z}hg*uP
z{m@&@z{Uzt^N0lESk%3owd3QZT*Rpz&WCyFx}MG4koz=l_4Fn0;gE0j`v@Fn^uO6p
zLI=_7YR%^&7Wg+WGwIykAI9fc8wUpd&KUk`G}I+00Fp4g_f_lYqLnTYw0|E5^%(DV
zo=%Hr5~hZ9sbFchK^ul%n+hR-5~jWMcml`jT*5pc_|t_?s}T4Trh&_MCGa-4afvV2
zvF5rc{tBaX|DfK3c-Y<{j3r&M;2sVQ{`VQ5ZbsfW%bHnG$z0dm;oXi+@}Xr`1-t~i
zQI6f+%Vy+qa&>$JzYlp=?`Jc>`8kIm;5U#vv6;W#wcNL(;vSE@+ZGYP|6G}t<VT|y
z{I1_lU<)|_yO;^=pgg*_e;Kik)fYHw0ry1&jjL%Hm~*bMQO++Zo-C9+y)nK!Mk(>D
zf%@?~rR%Xzm#@!!lS^E_798{U5;Z<IFU{CoIA`Lhdcmoe>V3t|N3pS1gxQUON7zbu
zjue9suq~+q{2PZu<>lxmjJ0~BF9%;Nkz7<lY_Ei_iFblVSnfd;?v0ZG0alg<oe=Y5
zh_#ivRR~D03MhRnYqQB<7#_iB^+0Ehj@K6lng>ba!^99E(*iiv4}et_knxxTm{|iT
zpEJPi0+Xv?>9{*aWN&b%C0i#TpcAyx9jARBXGCTWLo;;Ufy5qD6XanxcBt_vn8G#`
zhoVw1fHdBOn~)$D0O;;VY|1O>tzznsNGiWhs+|w91wIfeE2f}qW+61h6cu>8DJGRe
zZvK_sa3VaB9G^x4IXi-MQIPg<?|(^<OpeqCqNzyV)W+o07MwhCo#EFpy-ZQu;<yQI
zs5U(l$M~8a>)O4F+YEdH$mI~fj=muOA>{rngYAybJr8A4livi6JrtQxLB({AqBjBZ
z?Bdcb*L=BkSxZ7$oz^m32#^9MHeO`XS&}o`clN>)M6v@%Acm4zH0NQl$&rmoHcZUy
zhXrfSsr=%g0XU|-<v=oav!g};va?<fQCx>7KC~sNjPM+$Nq9>!=Ak@qwJ7FeD11E*
zzU)DB<l!Cifrj%GexSgQih`W1!P(bg(k1p)9DG@wDCS%x#4rtY6-Y8f9PG(oM9OQz
z<W}JG<b(ux*YlWD@{ODG4beF@A)<m^LfW3f)+rFu9ck(kj?{TZLU+FFZh`wGjX5Wc
zrG#Jrv*?YmtR9cTTe*eZr!3N)VfMMq;<JS~zoNT-MV@e)6dR!ota#$O@cj$%=`cX{
zT`?FUCbGFWZL-+x)6Mz$;v9*RJmV7c+M<G#l9FahN!f)|(PYU(cxkmn>BIGsTEEi9
zl+xxD(fa1nw%yVWcp2YtX<3Nuu1!%rS~fhltlO$=C#<Y{u1pdvcs|cX2IX}j%6+@b
z3}@v^JIgl<i!HI`kBuuDjC1H_fqHpXJsJwEd0ZSyV&uuP)e9eSK?S63WycV@SwR1B
zXys=oHiWKLDXOx#^YSR&XN}TY;Gzpxl<1aaBq_c(u5#~B4XFb0;$RX0!VRcFJ>HV-
zR3)qnz!J?h=_AZxLc`=t^IsI#H@Nr%`|5{cxo)*lqAK@gjManW)x{SdJ{VRF0;`2}
zn?e0+jr|Cx#scBHa4t<687tk9_1f4HN@We8u7O<L0Ica!sFRJSF)oEX|9<5*`ATjR
zSBovz?Fh}C$XeIvRI1xlVpB|JJ5(J0Xy1{X4S*0|h|Y)tdZ$~PJzod#gO1$I2kH{$
zn`B}Lu_j>}zLHQgCk-mLfWIt_*O>SiL-_vHH$LdW-@!LU`17Yq<~@+S`ru9jcS&Qw
zQbSO7b7mFBs<0+$Nn6pcQPD~G8)s9aKXo|G)dyb9CsdAcdsP2*1EQR-YIb8*inRCi
zQw#vvrSh0;e@t#Eq}n8b=bgvF546i({aY>qRUY%WH9AJv=q8OL{+*$DJe!p=KrVu%
z)=vLUA-|(C=k<7FCi}YJUV#261*GT;!Q26~iKi?@w;6PTUcLuP$ltM^RSAZ0=s$)S
zqf%gK5aAt2d&_-J*i`f@6<8|acBsCqGAC79=WoxBtng;nyvHjhOrL4mSL982)0h*G
zX0;|--?*Shsd^@LkD2D$p7k*ii!idLEIUj3dy;VB<yyQ-drLk-s!HYR^{(RZE)O<6
z9I_RRXdR1gRlTR2^8=Kp%vf{R7<pZ_3`qx8doa8AMEhwf^>5(1pmiA9nymnGYTs*D
zWxW9TKaS4(o9h1$;CFJbYhA8ubM0%7tYlpKnpv6AwMWQK8QsgZcO;=AyCO4$x<+<(
zQp6=YACZyf{W{-2;QjvLeO~8v-skyxydDqG`&QTj84z#)5+sn7S1lHQq`#@8Tla!M
zlPqCZ><%N$N9-!Fxgd#LmDC4e*JECadihBMIBy{wX(+3zn>2-C@w9$1dWKwN!<TFB
z=@4mRa|FJTEkpT>s6{MQ{Lyc_?8TS7W^CL^FYS(A&WpB3TyMX_(A8#UD*&~rGV2(w
zG#|QeLl3ZchHz`=ZT}smuv8E+LGG45Y2S*lT1>O{;q7Yvq*CBwWUX>#zp{O6%33wa
zc5SYGGzMbE`&?p!Zm6VNrp<u<z(zit_~!cSm=HR~MqAM-Tb=i9*Q6<vFVg`C)@5W^
zzKVY2J<8)MXwZrMbj@R;k8g#cJr~gFhf1%ihrKNVE-)U)B;!;EK@R@l_4wfTe$k6{
z(LY?5+4hU+_d$@Fk0r7cE)$5Vz21vI>HB`9P%P%ee4Cby<6{p@VpDw%)e`GdM7sDF
z`l)~D{V0Zcc0w`kz7Yn+*mXPb{ORw1*}L$o47=ww16A@^8hFBCf9d(vH>0g@c5_#o
zoUa@>zqkkW)pRkka*+vfq3AnTZ#)Mx4!g`3ASlMY_uWlG-2J5;dC>M3JuO*Gd!25^
zu19(?8r56Hx+NIVzYiV8=MEd;K+!)`Qym>($q-?Kgkl%<#VO#C@C{o|!|0p+Px<V>
zBwee0KiW1r+&sqHwd8iT)6(_aBU-%MvT$Vgt=rEn*f)-A-B&z*sxX(%j~E|}Ed7Rg
zFy6L`y5*rcKL3(_4a(Qv{W`F_HPp%DN{Gj|BIxHmn!EdkhaJ186syM_zTuN`*V}1;
zX;$_J^GxZ1ihmgUey|&DNDitO`JTP?oyiM&%=O}r20RAXcTo&}%U~3JG~kffpJK0$
zE>T~Q9$-nh1|NlU%f`|1$MRWt@dBsjH?B#?v5I}d-9t>57}Z}6yosnEFK+P(qGJL5
zN5?JXyA~Fp$&ZBnwUhe{=SqL~(a6sPGx#FPZ-p^qjq&;V_~4V4*}BbazWY$CIEM=T
z>)-?b@~DJLpGn_(???V1@O%jK5a7+~wV?k(^b~{Rt8YQI-iPEN|GvyozaPY{t5>~8
z7xp*Am;zc>0LoD@9+`9|#OcdM%r%t&9vnSZfhIVTGOB8QOP%kdp+pRe-p8~SUh>0`
z5LbuFzw?L34h`f_daI!jm+`Bh1u!K@h8kp46q<w!*U3`eI>m6NEGD&l_!i{~+nQ%8
zc666<JbAg87q}p}^--W>@bxadEpCyj3f-+q0Uvy_frWWs!@lW-Em0f&f|fhhADG`{
zZ5|Kv9$3~gnDhmVL~CVU{Sft|=v`N%VnUF}xBnJabCr%FKQU)9GMsv;9zF}f)sJvi
z3u01prUE^aUY+ni*7|Sd-_ptx_7&}zRd8c;KYDSvIzn_I0vr-eZIf%f8i}`x#)qtd
zDN(^gy!^rMKyF4}DKQgTw_}DpZfSkaX{5DgPpuh;M1QKE5SaLqrN*7}qn*eZ?Q&4E
zCA*Oiu1@m@ba~nZLk72MH;nsZU<!Pyp(97)BdFlmNE2cKFy&8HysJPQy^FX9W1R5?
zPI{O_I0^83=41CBopf2mwaj><d?dSN?5)=xk^6Bj%bR&mq1Oa9hZo|4m*XY<XR~uR
z-P~h3=;>djDA$U%426zu{ZI%G-OOFxRB@Z;yGpclb;xJlwXs;G`M&QZ#206$JRgi-
zRdY@IJ-t;_Gpx1IJE2^!)`p$}us1S|6(#%NVS4AT*KIzp+GJn6inKaet_Y%b56FQ7
zvF4Fg@YQtn=$HM8V$?*OV_FH4mLR2&aQKUgY}>nz6?wQnXX=;u0m|-B3vyb>(90<L
zr@%>-0I`Q8?N99)o$VR>`CgQLzJCg!xy@*613;G#LT<*+OzdqD56l7o`8g(kcl%E!
z^*_0N`Xy#07t8mX)a2WZ@M%DTa0iQ+Uy2;h_YeOPy43-SMWf=;DbcT!HkXqGbpE@x
zwa543-~w!af{>O*OyfQL&up7fY9*!7GPc?BGfR-7(w&6%*YU|hCpQ*2@6^%-5^};D
z8~U<OA>n24JauPJj<q7kQLgNgX|$g^GDtD>L?QW-Q09O`rX_GkO)EpWchmVWOG|9!
zIx-V)owYp8Ld#V|Q%<oMnrj$K_^+4noE+u4W4X0|bot*-i-FmSK|d!kzqIl*Zl0e%
z++g_-{_9IBSNin##9Y?aGsc$-*_pb?r}BpUhsbsou1?yIAsF(;<sT&k_NvLuzf0_o
z6mw(VoTa#PH{Wn*(w=b8;kiQko#4KHRrc?OdQO(LT+PX#|BZkB|B9BsGxB`AJ7mJW
zny*251jpXuQ*aG@EyN%PuX{Z&u%cUwqbM+@8h)AXh}O-u5M84dpb>gI!Wun3CG>+4
zO_6$Sc<YP~m`G1jUHjD#&c$Kdt!;OqCU4psJP<gQnt6UO+?e6cJUwON4hzMF&U|OP
zU>ly_GJC|XY!^|`I!8N3sa%P?_ueF#PSw7!x-E)AHT+TwdHZb~U6hq7Dz?yZ@}mgm
z@FCTKTf_Nw@vBe2crLlblyoir-j0kqy=1%YZP4!_lC<$m=0W$7dzFZ{q`)13+ebdv
zho4=wNnkiyIhxg7FA2ddz#t)KuP?!(orwkN>5Is6>*0?*%lhF+W=)$f>RC?=GkMHj
zM*L*+F@JEue}3<nRamy<(yi0upX`2C<@#x8m0h^RK!w=@)yQ9{0J}Qdx?ko}4FUG`
zE}c;)zc>OND;$Q>RASIU&TZE}zKqNuKY!jHzBAtz!+FE4XKu}CT#bbI0LOrATQL4}
zK-LUhhymyfPsd7&$6Vi;3Y5<qd#-vvuarB&Z@S{bNs<Z<41X`8=SXmR*OxKkcBwm>
z|6MNvVZ>ayY^B~7u$o=P$13z>AOmjcF)1hPkyE(oZ4&_*C~ITi>p}(@E3YP|uH^LR
z=&bkHpNOFFrGA=u24V)gD~1wrf_LI)s{OM<%3ndyZrD{-e>7&5bj2>e_9f`26G;ta
z4<jX^)}?imz9@@YX3!UeuTdab#D+}Px|RlmaJK^@3x|`a7m$+$?oL^EbWDWtm^C7Y
zP}dx%(Z9kpYrrUHY~Z;cGn%B2BbO!^{H-j#JKBE6OMq}>)>4yLk^_1>lXzN<;N!<8
zLg`?d9i|tCa%&yv-vFeA<xAAygw8LwYJx6nt^BE&)B--B@I#!jy)eBr1(Y@J2vxu#
z<e481K<1oLhs0@(vv7@Pe^7H)ZLgHZTw6u;n1z``0E!v{)DUKfvMa}k9lc}Qdl2(N
zTiQhi3_J}aK*Xe9%iH7NWQmHaC(>m<Oc2Y8h0dos`bJVex}@>ur~Bdj%8_C+^-RXM
z71Ay&xaMVs0Uh7pO8^p*O6?gq|7rHQnSJl61anqybLPddl%K%Vp5pF(5?&M2!*dvI
zHzs{jPI7QVU5Pt^MM<FVeaY5(nKoyearP2+PDW!o1y?kQMx1VVA<Q<qaSMv3i7K4q
z%<-`w74xl^e_C+pDF2_Wrfi_G=V1=uwNyt+)x%-J*2BxSXvnjeQsJ*6r!v2`D<$te
z@F@wM|7l#5Q$$D-bY*pC4yLcQ2ykJJ2IdHBuzu9<&Isu>H<)@C?ORvwNf_a@Z?t>d
zmls0xsoDYa?$mr0z!5~1B)pEeUqlI$CojHf&n&%Z9|I86_FILri4%G_g)ubiu&)Ij
zr3@T0sX<>veA=(#3$KN6N5*|Ji9O7@ckR*7LcPr(DALq&6#_v{l}!UJtzt;*_POW5
zQkx<G5LU?ON6usRD<h+&bV;|rHpzPc>BY64Y_qYJVxT|L2sqU)+Gz3hKj%rm?Hw=+
z#c{+Dr~R@C<6^X3jC`$H_V?s6a+UYm&j|<ev3o|`Kam7FuP;QXBN3XlhK60GbP(o@
zw1o+?_4a@SHhd0Do)rkQu>$S0dW4uXu1q}=(WY;pK=0MA{Eg1<gQBRBvW=Gi<gj`o
z5&JhPe}mC9))EGVE$B5(2xrwn?@8MYR#P1Nd%F<gg6KBDlI($~#6z?cG2o{^-OopE
z*yX=M*<#TiDC^c9`G{{Z22)gI{(`2lHrw4Z3<o00m(<f%;Z^?(jr2$qfovP)$u}0T
z`J9nCy)gMz=6AoP;>l0ShxI-703CKvQykVkM+8+x>wC4H0!No8G%|W(jq66lW7+Q2
zB^H2-6x0^CE1+@^BOoP$%pUCzn1s2?x*PxzQ?QhK487_j4{AgpdH0eR#gLj_O~7@d
z00DIyBwqb3C(Jg}VNMu1T$>bcx(czru7`8^NesK&5=@%|Dc!3>05p#Ezpv|QrQuZA
z8Znx=w~2_p17jV0!J{AR>j+JMvv9|!5A*DHOr4~dY_zhnr@wNWlwd&9NL}c>;t&!~
zq?72t+yGB~oS#Y45uX;~G&m#1)pFbE02+g_9XkL#Mya8Pa$R1^8Mi;5`H-i)=48}m
z`Vq7ra1zWRx>U^2JqJWHdfce}gu~%!*cx~d;|uXIF^w$1<vxBPsC}HTblVRFsniI7
zi(vp&p?z|2cdW^Fig?EcH#d^bVtn)6GdC4ZCmq0*2WnjpmF|aw`kyc~8D8q;!*4T-
zsq|NPD+IN%UY`|NS1urO1e)DibXiGXyJbUs%syqW;<@h$5Qy$IILCuIVA$IJhY8ox
zd|LZe^)J7}lq=UzJ^(THHzw!$<il&Pe0?(iOj|Y~?7`Qo+fp;y_}Z)qdsbb00~YwN
z+5A+!TrJTE_EfSgDDrWIn{X!JS)5qlK)27NDGF0}7WQ24&aRW6R)qtX0Kc&E)Y8^3
zi>s9!iiwhb{O1xvn1B_D2W{m*gPxHFD6N*E&s6o-h0oeA&L3vWBd@Mmw!yT#D7k6f
zbnEjzFa{hDp{xLeHd8HZ-h)W4x0XeF2;fy$-Nj};g8%LTEG!>%ODJ%e-qR_MF3RWb
z{iSt@H`rJjPi_h^5Fsa)3Bx$*A{4@rtH0VAm+$er=kbE>NIC|{g!l&3Gp@>gZE-_4
z9CSX9oiM#)KST0s$rl88dyD(ER$PflH2ze<!$yi6j4Kv2a`i~QM;tb^JVG+Q^K@C^
z`9K{uF)$Td()bG2duZB7UvX4VX~m4b5m0dNjao3y2Z-?CzIsAR6Ff5g+ASyr=WEr+
zcWWLdf<4vDAO^Yy(4MMVr)FJBg!l=E)D=KObmg+9c6DI48+X@j_X=fI*q4s;ng6{c
zi!eEvuP1jUT158(-2+96E)A6bn|gyFIo4{If@#+&gS@zQf7@;t(7~(mx<;UIk<154
zho3j%mLQU9q_o=G%t%hFAz&qO1)OTpTr<9BRB;Qyq%KwZCyM-PhQ-Dv+B3Q*>yunb
zqK!&B^F&tTkuqZ~Ybg7RFz#nbAl7>f1Y?eclZY1a=a?8C0_lbJ6pTgeXc;8Xsv)@{
zRI~XT#^>l8#vQk5?3=d=T-^Fl(x_}6+Iuj@?^(@V82-%okAB7buBw6z;av{hsV1gN
zY~pX+1_opA(aN94Ow(}D5=E~aJg)uRb&@YE6j|K>2kFwWhV-F3`uU_A0bud61S4k5
zbslwG#ua-d?@Lr57iAH|{`*LdHytX0?S<>*PU=i4f;lj{R<;V?pvUo0=7i<72H%|O
zYd?3=7vsL&5&W~7Z)GK_Ny>k(&D$w9v`4(#W%c7l%Paq)PX<&V9=6X{2DLnIcoRX6
zn8jB(5*`mmr6O`K|I{G<oFG7zs6Z>f|LA0X7RqB7h*0bf@N{sq_}z|%^Z`1j117Cz
zL>Xz`v~W|P%V(a2_5Mv|!DDV*G%|yjOhK#-E<+lB#9JI$W;e!9flRHSftE2oFHU8s
zr?eRvuv!S@Ez9Yz%ZSjLlUGxSXKN>C1|J#9!scF3ShtMrFp#882p<vp#O$LbrNa~s
zoxXg<iV9Yzf&){Ju_EtH%Yf+=0J$2nu8-g%`Y>3lJ{|uy!^m_E$5cmT`aD&)Fc^fx
zedSpNoSL8P5oqhIH*tCQumlElNOYJ#(55<)(VF4cV26w$^Yy)pGL1oQRLE^n^i89C
zXh4u90LYh&q-UNH4`S=UqdrulU8&!S#JTT>W^l=yh#xZPSPU3RN8Uc<yqv*(hYWeN
z0c$g+L?0T*BDt)q7$a|>x7_(Ig_dbg^LHK~zE}&~Uo%xNXE7S6nIj+@r`T!x7?!oK
zECUS;d)FCZN}k`5d%I=oQ=|3(5(mPa!EqXBx5H3PL^|rSimxI~SN$|8B04i79}i&y
zVb*ppPBqF!bia#)8VK<VB?$Mj;qS5uZwr)QL{yZ7!@~q_-j&!1{b1>d%9Z9Sa_0<d
z;3YRp(0q*x?@HEK@Nf|&D`q6~?@B$Jk*X>aFa%1H$^~cK`Ohy_z5FgUbXR6<M&{v`
zM5G?dQjf=GO;`yexbR(O>#p3_8MzT5>2EgjKkmx^Zk9Njkq6r<(B~`MLMR~E71?bS
zIWOoi=PL@bD~Z@DP4+2D%qq#VU$~Hum73+EOT<X`qfm*8;&jT=Qs%VEGUbP57hoPL
z*5!chdfw-kFZkxG!jDXGm@jOGychMm3xbiCd)0G2Y1N(v0JhEea0d0a!Yvi>sS1ug
zveuHmtpG+_++E<)Hmo$<Y7}fj(br^Dy7Yj32U4dxHmmvLyQ$?n7#_wo@EmS#z;VE&
z{kUKKCqUOy6yv=P^Qb(V>G$ySf~1p|o>nC?_v%x{;m7Q(5oF^`qV9Dg(H&#m3>?Vl
z;Ozvv{)Gsc*(2qTv*;yT?t^;U-C4GR*$siD2oRJ<N7p7bwM)T!JGc(oSLbDQ%!*24
zV-~Y!Ff`_WdpWyKk7BEzQh>jarJohNuw6w!Z#XwYnKN<Yw8{<F1gQIMZ^v|~3!t|v
zBFRBXT;r3N>#Np_($y|^A(P2XaBL=1b3{J#pm`p_J($^Ww24DR+=y28)H#WIwlP%<
zAUHO{HP@9h3ak+C@v~uoxeJwCO<@Je+P<5{<3{f3&!YFR+{n2HJfvWsedEgHumN%F
zQo4Xsc`K;7ALCYZyyz|UE0p+}C@v1WE4f^WRVL;VK}))kjzf_IUy5+boxl{ke1n^>
zk&J=<_7d(TIOC7@2e4)%JQIg=MdYpQ2rc%^bY@s0Y9v)1YxE9FmLidH6tWdQX&@ts
z%Qr37@=oIwG9Xm}rLT6Dx7Zh&%INFzar1{wjT<colS`MDz31=xb0{6~%`uB2usi57
zjejr?WBcrP|5s#o;C}Y^RLFLHPQ<?D7!iCG_h;@{-Ma<WjX$75w=3U!T|UjLjkGRd
zd7KL0!78m=?(F^}KT!ViV1n3Ho9V51qi8d^F!-(G7v`H0r<Kw34<pc(5hIVBqb|=z
zJkC}`dc8EKqn6jIKA|gkLPvR`Fv|DOt3pG{vyA{LJZWMjmC0=dcK%m3C|NEn4JDwx
zzt{)s7<xz6jdn=&y?zSo+pQTiJ^VB0H!%v2ux|>e<1S2R@G$qIzdvQZzX>t(_5Iqo
z2fx9ckvWVPe*t4Dz_kj0(--Az+w*UmV7fxH1H9~0z34yZFR|Jzg@8M&wWwya6u*Su
z4hp`(dGn+q*t*~Oj$F@o>J97u{^hag^~~3gl0xD>WD5s&F-Fi*?caqkPG{pn-<VOS
z%<LV0uxgC=-~#W9248&2*<{HWlYjl~9OW%Q*BVjC$^Za7+laei#qd)0=GPDLx}G<+
zTABHS=F5(u3z;M8?`Dt7FK=9*2+RxBdjGREa}2U|3vTf)An5kjpy`GW%>JB-ZMYH8
z*}Ga~EInm8Y*<5M1U7f!eWuyFYTU0s{)VzyqFSQiZSA%^2l3YzlHaeHS`meHFbk)g
z+sCJr!T%QAD%<RA59jOQciWLELZ7O`+-NB;Lx0rQW&+mHRo}>Y1n-6WbP)i|evH=5
zi%*N#WE$={W7N2bUo<Q)Rx3gLiXJ;V_Odar0^Y-yPm{lK<;<>`<|aRzn@yRO-wn*(
z)r-1ZKzYN8VYij(6YqfiD}s?H(((W+sq==vS-)kL9icuZ{8US9=^&&A<Qk_NMq3Ri
zJ@_VbIYNmgvI_T8H95md-a3<dkd8Tg)D{@j>;(iC>Nqh(UCg<|U4&dSjSq$L;q~O^
z@_3DZL{I)e3DK{9vslmh=ScZ?o1LcF2zns@p#1W$S{AQ|RDgg2rzmTQZX@MsE|`}D
zddGdmC<LCUz-8N*ztRD%+I*0aQ$UNGdiY=po^n96qre<K!Wk)0Iu47U1JKEGI$x`D
zK^&d&JbVFx{PW_Gv__FUPX+Xe020T6Xv*W{Di%;=vo_?BR^(Qk_EE`WPs4C_9#-5x
z0~}bf{5;qf*L#23P?cpO=oiYLg{irT<Q-Fdz;gRhd0}OJGMg4x<}9YRZJNzxh!^?^
zuHfyFX-#?L%$+wKRB9c+ItOjsVa@zhv!Ylr_UU;iP(kD(_i-MRT$s=ooLd`3Fbl_G
zvntNwE@Dd(bzysP&E~S2u7w?@!B`1tuB1nA1Z`xOVAqwH{M014SjEc0J`l!}I>VjG
zc9)9+ja3w6Jv74bw(4IJr>P&YU}Jb*eHWzMt=e3zUlUTZ!rV1<dFi{zi(h0}593`5
z6N~){2+QYdNO_s)(!tdCGG(zNhqsgTq$9tivt+ST%cJwL%d47_SBEyu&v?69T)NtY
zUbQcFz2WUPDevlipt$VGVUsU3<$^K@SM+e<Sy=3@DOYjoy-)#sZPKEkT@j&9_&reo
zJnI5a*!ASNzwTe8bO}pymx0T&h<`BZ`CtKklDe2jpV?|};uT&w&2tgXXFH$)Nw>du
zTUqNZ{J0XLL4i1r3|M#HlUjm3x$yc5P-9VKu(Mu+g>NY7iGZg*RD;TR)xk_LmJJOt
z*q;^IWaluL<1JWXqowk(o1-|im$=qvhj(ld`-2xX05@8e6mz>_06Sbzr{%wVd}gIR
zgYwX9w?s1cMI_)QIItgCUc8ww(pf&Su~fza9KEbNnz%YqAIq>`J5a@wxx0VST6EJ*
z*><jU`sSMH>DSQ*lQSU_r4pMa&%~SxtDLJNOjeW~8|KWJW}FkenM0D8ME}~mB_cYM
zU5cyhHF{VDaC>J@g?7r030lYT-i%)SrPdF9B|m@I0oW`31=wjV)D@clCCqgZEjWe7
zZ(lf$uK4&2I+vBCmffQd$$bBgYE~ku`sA16OMduv1RJc{!gcITejH#}%j&<m9$x-s
z_?l^0MfFaZH!a%eF4R0aHATIV$F^>;BY4*?ODa%C!p?uFo?IFztU@F2dfA0~@ApL8
z6Q1spu6(TqG*{OgjfX;^Ks+J(QS$QH)3{=lq!MEH>#=d3NPlhZbr(X;DgTPZLnhJJ
zEAo-dfY$-Rrkm35uiSah8C)62vuyACs4!H!sz1Xf{k2UA-70j~K5+TgS08G|5z?W}
zMjSDwj01;w0g!><j@QOd1$Km&EL!qyLfgzDP9oiiEAfxCpC2A4-<$gKc|XaiS@$0}
z`)#hxP|WdM*DrxQR*|biDoN-K;wuBvtJrJLqzNtW16Cr5>yddKDi~_bZ2{`-X5#~z
z+kNx@rfD-OPkCTK0W8AC%?h-OK$WRpO?`psfr$^?*I4crSV_0L18@|q=^Q$Gyuci-
zlNVuf_44+Cq|hNde&&+SnNVSFth>v*8khH5F8TpyBPu(j7fF2<zc^ISi@$CexSzCF
zUE3VTu;|2tD@bKZ%+f!ICB<g$O;F|N-=x|<681U8R6-uc{jYHrGck)uCEU`Yqqq0B
zE^2iy?<IWq@WP8ClrNnX(CH_u$_V6-ZC=o*cWYVPSJRYxJp1+ZlJ<+0qu>8@2xVmt
z8M9V}gqiGs!(#|o!u*sTx(`t}-#=!s;I$z(*O!q}2qqU|H;ejx76!-I3w)q<#%91d
z8qlv8W?hIiL64e+pc_6Q#0tc!y^Zbl!?>ht3X|ng{bTfYo(tP+p4CM@ZRiYq;i+VC
zJNk@reUB2TKCE7_^*z}BR?V@t`4haiVp94wbR4)y_i$<rS9tws{8)-Dor~LyTaJzF
z5rRwM>@a9;EINE^l-nM5XgeH|_2x=_tKA;G*$g7pGkLqfpV^eoLq_{}w`gNvT#1K1
zbw&YKVjEP-cUl0m!&*l-U$y$Bv@N~R=rMFx_WG&Jr`CWE%|VORR!<CS^}0h=QR%7d
z?sn#t_faq0WMj*_cP|<Ra0fJ0dre3F03$qQA06ICCL18!0sZTrFXarR%kW##Qmvmu
z4XHAsb`dRq8boH8M+XPy*lc`Lru>(@Nk14E$GX5ClM^#eAuFGVTI>`4bc$PZR&*?a
z<y905<sLa-@h=Hs?n*+)0s?Sp{3bS6%vK;o6A`I0YW6qsn}!*~JpAFe^>5*a@S&^W
zZesqG66p~0Hem({2}fV^s232}TVh6S$bE-k{|=!P{@Z6lsY2=M!fEjojt@c}m??yK
zzxsD!qX%<a!kLQctPi-4rhnLK${VmvxY{g5W|{crqLS(Vl;?uDmHQmcQ5WhlS9MRk
zC5rLj1G*%8SS}UDfaVhs$pK>z`dp=2Zw?lM&o)KKedl7zqT=^l6&5s2jh`NhYLCjl
zJjzC0_^1|_7g~unu@}>0kZwExdB>;!=u?p9LL)1(^%#<JQ63j?Wzp5;6~-q*#cyFh
zgu-{?pWBaoQE72E-r(l(`n7%G397d&p_KKPrA*V{$6N*kSIj#ILqUg3%R7zVGOg35
zmt>tJp41L=iErQ6gEL0|4hoGw9R9DJy0+2x_;I2AinI<h@iU!cLt`J}@M&m(tUMP0
z8sL@dA_sok#5xX<YYcF{v9nOPQMkbET}{_t79v^q?5ANFH`ALPxo&qXt74VLUzgyH
zqpZM&nC;D4Ig~`qGe$(5tBLhZ$Ngsj1{ptvUNB1|E*B=1gS3Iuit)Za6PJGcY3V-x
zv>4V7NGS<^Q1w0a8$bxwBgL&LX8%|Z{5*t(NB!$~%Vg#DC+S5+&f-ZQkNnSl59Q~~
zWzYAm9<`OY-+$Ev=AYo{V4u^<7DpXK<cyNM@z!ncGeWPv2*CK20SAqqYEWS63AbBA
zGg$un0{6OXdyT<-rgDY;X~6gM-?j8h$tad{eLQ#l7~ZOjRr~Md$|tivPY;lao6&Lm
z94txj87Gfzu0{XpTWT!+(;(ffj8I-Bc8*}K(|gyl4_Cu;H2{6lLD?Yx`l$a_UTNyl
z8zT7jeB#inFWyPNcz69UR`s9Fn?U6<A`@%`qD0>TRca(L$I>tm5iG3ttr&xy5)Sc-
znE5zU@-mG|m3J%a^^UM&Z(ht>kEKuY!&+T3aU!ylNnK2C5{wk}<sHI_UNmE`sE`m0
zWOpc6KP-I9%29WV9GxuSk#;kLA*ClFn*W@6Ni<xaX2nJ4A>}H`CBFzv<rLCoG5Bqd
z?WBtYt_)NwOE3fp<wS;L=JJV{^tp>z!utAt_#?%Q3?A3r_0TKrNWbodzcyxb;W5aZ
zDd)F!iTv4zbj9Mz%roms<b{ZbbtaAZkN${a^(9BWt*zutUg?3wiKzV2GAK8W0+N{m
zQTfVzKTP2!Z_kW642BgBUII=kQ$VxRllRW2H8C{40{|m#7r3><kGek%LYJ07Bw#>U
zsTL4IfpE@ik-B~vCcF086mm(EU}i1jK5SU1Tq6b4-I?IYM{r}o5$S9IIg057(4m2Z
zY*1SDRXMtN-`XvP^F&uxT?pXM@fHMd8|6?qd*6r^D<@cHmVWwO^8;WLOg0$@Dhq*!
z0$DCzdIdwDzmsK~$l$Tv7Zi0=q7y)-V{Rl~_uHuG<@0$xNS=WB!!0y6Bw1^m-d*=$
zXOL9!<q6=PAqBKzzU~n(WX&dUcu|39f<JxFyr6?*{sTv`T$I59;6_3)muBCNH9v5~
zRkoG`N~kk)mzu@a-K+mLR_bCbNn7Y;d)b(*CBtu;mKu9*k;Y<efSOd0ap0`@O(hdA
ziQfsM0q&sVrwG{dVTf@-8PK>6Sx|P-Ach|R6{J$=al{FBqZ@@;aU=$q=!BwIVY6wb
z&4b+UqOx3NoRyIuY>y@N%!(#J?NtRP%Ap?>9QE9<6Nq7El%-AcegBC_885M~E@Shs
zmbK5%*|fgGILWGv6&&UMoS|+L$$f?rI3k09m*}E~aQmRbKEjd;KtDI>DSPNy7}k`4
zwt4~ppcP2rtIi9fry1Xhzug$YeE$9@sw290*Y`53TvIw}z?oI<@zQT6wnhd?&9H+E
zOzAWHd>ap<Q9k~JH;IGBX_H@*#OIMHvwof+7>=<GOwa5ENI!X!>*q+!XPN4=T3UrP
z9}&0w&<vK<z)^2PGY<oWs3%Mr@mRjkYtWmmTENZhE0=hGg>_32|B>;k55t3pv9<eL
z853rz=PFSvBD3j(5ql$>Lj7`IZ7iTO!3t13MBN_z^OGq^4qUma;4c#XYWC4T<=V*v
zFMWk6fFFZC{8O#><y|u5DME#}(FbiiEA_tdwMs*H{a4qc+xiuQ^Pm_-5R)STEUCaE
zzfado|GW(R>uUIm>tkql_Qi$aY}J=7_5THhcP+k&D*MmK3N%K##mKGTS$8P}gj6qE
zbXLFV(x(;7RIo_<eEM4L^-=vdXnf4dzkg~Ju-pNOy_<S-yS<ma;UMWk_bT%pb$2B5
zVVZ6C8v2d;;00}1+V$=)0yOnueYx+X@Yr?nb4#&p!}oiM&Fdn?lqVOpfUE;cGU!xg
zL1sY0!$iWU0*gMKktrSBIm7!OGk7{nF8T5AE^sRYd3KgHqR_Ty*PipF&88A4olAfS
z)#j%pV~(w6^Yovyt^r@Z20B<1Ayp+|T+A2{vWz{<W6S)BzeFE%5mnv>3tXXv{ZMTE
z`(I!Yz<Pd}jxLZ0!C>$5a2=eep<Zu!nCM=UTIr+DCCmm;H08g?pG@b!J|+)q)EQGj
z(gnuk6Po=P2oJc0b1c8%y<+u~CozG8OoU2?D7zXd@cbFs%4tgJt{g2x%tlf*$2gft
z**eKomN%PD>_Qq&AzM|p43J;uCik-tmz1ppp#y@D?G~$lM=r3GVEmgrgB!no&c6BQ
zeRc{v1}8BDCN|1){cc@)<f06<s00}B5gBlBrV%~f(#i7SYiPVK!laDX%Ub8TF35zP
z6ZnatNMAm1#h*+>Wj^M1#DJ5be;#18GIhUpT;rt(8sf_SzQZux75KL!h$<ldV{(>L
z2TW|}*(dcXVsHq4BDj%(g@?rAHgvwr+>q^?hOdHg00R^SS*;5!DyCN!%ICm=9chmh
zVeVW`<y?&JNH-yF2v1?e)Yl}#)y$Dk>tliI_xZN*=g&XGkAkqdX-KvktE*g7Li`bw
zdA>PaFRt6U1n%>GB-d&cHK9nioJ)Z+-76>(u;A5!;j!`<J2sTfW69ogXUZ0qwExVM
zth);9A1KSeszT>#ZqHCUly#0HHvz1@!C3=q{?FGkA|S*=d{?Ri;?Dp?GyQV}r2^oD
zh8Sky=|u*(U_QDfftd=o%TC{~$!Z(Qd1R70i7?DU5yr}SyRVp1;B8I!Vt|zWM|fG0
z5+r7)<A-}1NZA-S!oTy>ni<GAz-vtC!p2#7wn1lgBm{Pi>-fuB5bcX$EZ}o4#jh<7
zjQyZcEvQ#meojs1Jk&MN=rfq;2X?O^wuRk_hAvIGNj?%a^;wcs9b|C)aJQ7Ww>k@Z
zNR*SKz@Gz(p%x7001yu6`EUr<xCm6n!CP_aRRD9TIhZUFTuTTqAnsY<7`VIv)1?!x
zdc1P|&O!Q<+i1i=rEe4Nokaz^?uN6)M$WeA<zJ%A&<!M;*p=H1Fm;@akgio^BBE&B
zF_Yc`rLQ$o*oP-@TqW^t!)!IYNB2ZQ(P(w+VGEm4cq!4ukK*|x+3Sg(?R*Ns87Tau
zmsR-+uN4JhAf(G9`okLN+e~s{_O>=kz;Y3+YKg38v_7P0FPpNiOrW@XGLRDkUh>xs
zk^-{taabgfEY{XLvErV$-Aq+$!sYn>wV{mq=GsW<wS0+YdwLdE$)JBMrhdsFXQc2*
zqJ>w!>=e76rqgX^Kwhmrt*w8vdqi_CF|G)rP-<YxXdv0B|1pp3mTn0AbB(JMpvFk7
z|NG@iF2xFEs6!?uYS+S&dw*hPqJF(KI4=LqXA=iWO7KbYPw$0`R#eyHZt@KGYXZpH
zekvi`32aDS87NTit!*pl3fE<s#@ZAgki%Iu&s=TIfL@e`UQz()l~zrjz|Nc1$DfsT
z&35gVxQ3>!QjTkroBeffAB^R1PI;)W)CJK<TM%r}z1}~=Q{GepcdmDM$d0SIB#L0f
zebqlYllhjNgflFI5CT>*O1OABOm5sdGza{KNd3l6lj&@@)>8zt-+usj65*-h#U#yF
zI0l1?^jZLeR}~kkG6o({=8-^F-@WmACsQm{R3$ar-B>2}X$`;_conupero$LAgX&P
zVgOXa40s}3*RcQeO}$rsw=);n^f9*N3Bk02nyvu&ddH6x@Q$G-!awGh^@DLnyr|>g
zKn=UaL^0d5I}4*t@z&piSgHciTy%P7=|H=AW)zu7_i=|+%XQ6f`#sj>sc1kNH;Tcj
z-$(sAFN#>-1O)L=dHr^II;7uJ(@5<BqnXnj5(lF%j*S}kuHV0nYvLOd$0B$%W$q6o
zG_FB=f|*|=KOgoed6C^4%pWk9n>m!Mi(fLIDPx*FK;Vp+TePPGRG2mzN#f(n2*(eu
z&1p~78E>kf=38ZEO5e=@EQI9Dry)ho2ZH`l{R!})j$Vt<%&duj$Rw$f`Gv1K>fFLf
zO!MgKcXVF61<&rqV=b@B0&b6wiPtA61TGFU<_^AFn0fcmZilObsS(FSfsBs^=zhqS
zSw%NA+<VSdDq|s&6GsM~_>KHb${7z3?OF&NYOUKKWb<lfb5%0?7D;k%XIpqlPX|wY
ziJv_2nyj#wHel4vi-)#n(ttEw6JYl_rab^KdDa~^_^XyDxsPdKeyC_On76U-PC5ym
z>dnU*xDL<#+p51l!LfLpbL2I2pe+yPngRxap8uMZSdjX%EcKg9?q}hP8lm9EiCo)k
zIM3e%^NV+R^Xj-WYc@9b1bTZhNx)`u?k6Sd*SW#UAB}l>UVQ5V^ZjK}S2eib02GP)
z_)taRhj#_~IRyrvEy7gM@9a18q+pzigg#$CD1@H}VR`--eAN_|_$kkgYrI)okIp>U
zD+B%!PCPDrs-HJ~kD^fLwccgUB<4*LlcfrWG+tc4QKY57R`P;PUQx3Ak?{IsZtQ+q
zD9Y|5y~QnCPxKYb|7dp7mit1kS6EN+H%-`8oY+;{bWI+j;=64%>nNIr_q0~?wSfok
zoE6pF4=uPkIDgm?|Dry^s8&t7ga><qOwH&&&z9@nt1x;w*WY6pmkIGe>E42Hjjh>7
zzISNCIj%|{H0X)lw4c;a5_K4X9hi$yvW2cwA<w@{>AOj#0FMeou)p62Z!6lo{qOh_
zhg*-G`8$1)+3!6d`?#emW`|0lHcf_k5QkeFj_@!cofajfCgsZ)=F0`Pi2MEkuN&p}
z?K?g1JfzROn2<U0jjODv%uBarGw^zkec-$K)zu(>?{htHYLu%(RM34ccG)|tXmy<h
zBFBPnlLJVaE3uwN%E+1(<X4WfB63?%Di#{j;przqT$zn*0o?SdX-BD{-{~JO7~VwZ
zxD#-+iJZUv508`da&%?xhu}TSb&MDO%{j)Ug=dpm4QL#x;*(j^$|AuR;?i(N^juZ9
zmDekeiT{u)5^Xk#Nn^derO@EVX}aZ1edS{5jCX<e)3`s$fj<eG+6}o@Rk_!Sukt8t
z=@s=>Uc{vdRC0UqI4V0kcAO|h16)5ux^mLXlt=OvwVh+idJ8Iq$w51p;zvJEGNh6o
zX|)X<wApM&ddjPK8J{{RxA6}<J5BLCtt(D-jFMEs!DChZ5>=n4r~0Nu`Q^Oys(Bfp
z#^?P3=$lW2ws9;rm7lim{1>pI8oc$AtzDI$!s{~3+o_mw<Ev^YXM5;3sT+drVe)F>
zYVGb~?cv7l5tr2>zcNKQs73j<N8PyTa#ii-9ku9`_GtQS_MG-xkJWD1{BS8~KZl0L
z75OpSe3L(ys?0x&qh09@{<EdF$M>tb7<_g>;e53beoxy;f@dRfyfDohkX=Vd81;8+
zkiani=fBfb?x8EjaOw%a;y!=M7YHC=dBgkBqLV;S#4@i!Nnn)yTDk0(i_3@1pVvD{
zsW+yrMAWml)cfNW7kDl^;m&kN1sqFrj;9B%=v<QxkvuYdoSV`6D@cW(Ld|zs-)$II
zV~{)Tp%G8r2|waicw~rYoxKJ6BuFD_a96#!rnCR>4DZ^X<MP#6op5|r1-i>0)NgUl
zy~VG0a<x()_UBH9F@#`nbalE~w+Mx*X|Pwdz6@-UKLrY&byi;17%9A&6JyHtIwQWs
zo##pU<0hHX79mVwxoF`k%D%j&g2bQwDlY{j7<T+^xtu+{SL_u@B;8#!;FqZVn&zCw
zMX$AoF9unHCugKqgkJWVR*+tp)v8;)YSFp$x~cQuD<cKVc?A!3S&anQ03aA!Y4PFh
zJ%{V+;?PU;G9WuoU+ynnseXs|OgcR~)Na^EjCl5}SIA6V(h9(ZcK<ds2yYO1*naM}
zXQTD&qsa!Q-ZFNTtZt$#iyv=m{KVF*-fY%wz7(s>d8JanYw$*Qu1VKxZEw3L-eC<J
zm!G6t^;LCU?Y}x-MfX_%wl3x)yeVB&Wj9!*>gX*(bnVLMbuUh@OxR#JzZpG~;ce;T
zZRC@8teLazle}a5;JNsyG%Rp!J`k-NvRrMh829+5ZvTBCeFu&=UYswrI{vZlTM?Fk
z{Y}wLnW6Tc#l+&F-_beaTL>@Pq~)4Qi|%+d<c?3;o#2r0sh(R6WTa+nHz+>t(?C+6
zhB25ehl))Uh*a+1t{XW|P1ZhM#@ZYFvyU*mm(vRy4@?z4;l=>cUY&nXzjUK*0FI_z
z(LV0{re|+5-u<ms^^erzrz|&91Hw@=(FMkc=^Ohok}=9<^E|tVFVt^Qt%dV}j{`1~
z%6duNfV$DvM04w>s=H6m<MOfbTXe7fJzcJR1&nu<+SOq!3kxVx9y-#ILe0i^Pe&%;
z0j@*pe^zvExg1sf-kAcKP(i)8?OXh0a2B@Bqenvz`Bj}G%B}XpD4s*ZjeU1BNgeIR
zv$`%b*DY}M?D#M%rq|XwL*urE?Awkvvg((fzD#OvQ*WrOs;+^ylkf_oq{5oI`>ZcH
z4TLVV0$J`sXJ5jT3>!FduS~HOI5dFo74&|T<jh&B=r^!_n)7<u<BR9I*M>K3(`U<f
z+i%BTC>M~Bk&6I<9CmLUgdB!`4?7A!J|DNAp89eZNB_K4OtRPaP*j?_&xGxfv}a_r
zA|@my!&w9xsVX>fhM~Rb_(kiK2~=F#pDQEHPXwDU-t0j2fe-MoRAUGf<Yir%tMiz=
zRC48j(3jLL+|%Th29>bDd0Li#TzhL>DQ`ZZVJ-ZjG_I4mvZE^Sep9)zpAE9S@3TXr
z``c`>OJbljwk22r=CFFtr6Y7>qRQpNzH8IL_B1asf!xTUr}TXho3N0Fw4o#Vk)9d$
zt1_-RDt@QOa@;khV^L@c1;AN(l<{=8LM#2TDM@9yRn21e@5$9E;Ao!{^yLP#BTaWr
zh78_{z*OPoe`iz==|*@RAK)|`U@uy_JKlLGKpQ+AGB_TGm71l$iGG_Saqaa-FbhD_
zN^NENZ_L@@#-#kSn=iVp<w^z1Iy=Jy^3Z<3T9k9*PExXPs8k0?Js<>SSUqgssHn{L
zgv42DCNBE%Kp`mGoOxiP4ViQ91w|2giT#ocxjU(#zqk;#<?Ti?*d&>Y*^tAja*c(_
zw-=+Y?#4rRiF5TVQA_UbRf8@M8_m8U5!Bf>m&EFD^9bk8(f6@4RRHCJ!kF@rx$>-C
zzRd6aXY@c0`yv1dem<MK2mI4D)5sx1Ab>coF3^)NFguoI(YP;N6cS=`JQz%;r^l{B
z;pVY~VP=64%gHQOKT=Y)C9FKbjoGS}i3!CsKr(wcb)2ecKTHK890@`*K##=#RNyY}
z?DSO(q5)PMIh3`kw+vdxwV$J#^RhvKZB!Do9oIoBA>~TBBX?r#TL5Qw-a!(QO}MpO
zGP|m8mQ6h5gRA)aEbypXvlyCL*fiGAP429!Z$$-+cI0OQz<dZ~cKc}e<etDIZ6Vg8
z<65>SYsZ3gcIu|kEe3_XT6R8y&;U^UU^^*9kbDgL=X|zKu5^RRPcp#S*8nJODizEs
zE_N&LqQ^uipeVoCiEMsZyWGt6&iYB}lf2@KS+sl;E~Jl_mXXwYo`1y4yBTQ8S`s^z
z&z&JZr@2_{#x?H2#a3%^_JFxCj@!ns^4>!~d#t&|sB&uK>AtGNQu+^)*&Y5AC9t^t
z2^|)>9~<T)uzdZc=XcgVlsYp3;NbkJ`Uzl)p7s&^cGMd4G#tf+WuC7&=stF1opOME
zsH-!CenM`CefIXq5x?ndXSI6jKz^+ElZw6h?=WF2KK}OZvvzHZv7a7BM_r7mR;i8+
zFEW6fqpJBNl;fFe?CGK}1Om_tzZ3uKYx|vtdt3g=zq=TDb-{>0Ox%+$!Ak-Z$Y#$F
z0*fI4`C%8&fS7oeN&-|ix>sbKMQ41NLi67LPGrd}gOr!^(@lmF7m09S_62tYGMU5*
zz(BY{+?j%+```L22&k{Sv&5bC`x>yM>Wg|H51;hk=CV#R^IC)QelWlqS*Ney)=>4)
zhBD&&X-?}NoSlw_^2yejo}!cBfmWb+o^{ss2qCVIXGZFSp?vHZAbifoxM##VC#Lif
z@4Zj}D})Wg1Q~+l8Vl+dgL4x^y<E}U!$!>&U>SoU2rgteLNhEk1HX<^!pJo_vgJSI
zn-rDc1OY`cyqtI<z<^@xICwWK*b7IG^CYp&=s|>w>;&E((pwe7i_(|8<yXRq9`ivm
zk_TlP_Nr*F?=}zU8GKO1v|b{sBZhfl&PVZ4XR5ov7XS~YmreoB>|;X$iK_RCuO0x{
zL>08zU_h9Z7?71*X4AaxtHVt<s8d@8zJ>4oMO1y~GZ%_P_+=Dx6%U45jcBpOCF_;s
zO+>}!%b-4A)j!PD@RFf=#x5@5v&ya2HI<psRiJZ_6@;$DJzAyIvg+X)n9Ir(EoK}=
z|NgWsd)k!VhvWot`7vgzRzQ2#-EGEFt$bwObE~-0o4#GMQ+KrG#==NE_)qs6#Lq<o
zD#>=8We|}$kASV(9YF)ov^%S0ZFtpJ-e<LRsiXT>z8Tck!L~caZ%u;f)d39*xCJ(?
zS^)FZ3>ZTo)80Nh(uEzMcY-&GA9hsmNmYj2tX-)fWr9JOG(SjyV3p?lvZ@CYl!5DY
zR4<w@i_g-x@#m$dWLq|pWj_aXQUD7!ksSFPpMiWKT}uMG6+K$Po`Pc!Hk$)q43%xW
z!(;5<%9J%DMKC?J)Xxqw?S_w;WD=rd$Pcj}*asEl?yBn-zx}7$ao@W4qx~Vke7LRQ
z_r^EQ&tyUQKju+tk-Z2Ts%*LdkwV98vvd`cK<|z7d;81r^YJPP)J_#+_e-$Rn1Wo3
zj{r)lGayboc~E==505Jfqg>B9f+I1|M!oc91{^kbgluKUDh<L@*U%BR%#qT)HfYav
z^*x#+J5y&!^0hTj4B{3*_I&u+nM;Mba0f}mgpegP37pqE5u)~^5HfEHHnU?uLI40B
zJYAC&tQupsd4XTbL@C~X-d_YbeAm1;D=FF1H=M3FnB5H8t$Z*po(zu8p>C&kV{FFD
z53O^>R*ULtok>xB+n=JgD*P_82`Vta#R(|zMdCQmV67PL83+NWd(%=KiRwN3!cwpe
zv3H}u?Q@-ktRg<#-8p#?cL-utCji@=bN$~R0F(Uu&b>g_x!fp)?p0;b-(~N_fImT3
zH`jzDi`XHz1D>PWyps^ZJTKz@zPjf3_QGt#=^IA{iG0@@o~PVI$IBGZ2$sS?Grx;<
zOPd)NJ-TG=L3#P0ok@kr?nSi<Z*NL@-tK;R?emc3X|vPRo_i1A(`=AhlbZHMj(i!Q
z=JmYHpzD4(!W|;49t=+ByQdma`Z2;S6R~jNsCcDReOO$kyib;#$;rFWQikpMdK#ut
zkF&B00d^t@!GE=XJ#*Hnt9-V4B&p8tG=aX=>dqnX?|AQ?Ev9Li7!N4X(PV4SJvb~R
ze`l*L-N0Fc!Ae%fl89BXWnN@G)17Ec!r`DX5csuO39t%rdy<p$XLCRUK##-hQQZd8
z20|WO%nbnW`}HO=Q*MQ_$g*AN@0$}axHX56FyPvqN&AH3{{)kB(hR1ha^oHtr8g7)
z3yLRg`j)SY$nf1L-x~VnDw02XZOMPiI8OAe@aH@F<>0w*)$~!H;AGz`CrXK*5lV!g
zUwQ9%-x|I?Fn%p*W`*%&k!9k~<Af=8?qrQ{K>ELFvwz<{X$T!O(8GXWO-jR)3#TGv
z|8&TImw=xUk6Eec0m(N<=f%~sEXGRkH(s(TfB`N7M4tirsU`FwKm)AifQv3VP)Nra
z07B3qsb~&A@w8%HsajnIU4i{=)^}4cX4#Wi@DD*0vYP^<6b6`2NjT~4m7LNQ!jLGn
zAh2TID_vl)5NR8yEp(tJp-{_VEk0VCAgQUH<f(+oWG&hu(pEzIM2LMj5oI0-gCbQ|
zw?x0PMLr((re#e{EcUK>ZT|>YB3o*QLkP*7t4~Qm4@>Fyz(4)-r5%;ZELxhN!$^@3
zs?%_1vNRwCH-pj?2WE#W1Y-4ie<~;~C{rIm4Jz|YcbF8^fm-XC{K!Q1=-godl!Fz@
z5vY6Z&)eUJ6{(7u!M86|l!MZgjOs|B+_h({N8QEchSpYK>y91~<>pwYEbc_Gw;gX_
zXDSDwoV}M<<4a$>J}0&-p(0;fs*%l_wbo6+cq1d-3YINsJA~gc0-X0nI!g|wo+i%l
z#xb%OnV&-`41uv(MuY^*@KhhhRO#UaHm6}@JeX$KIQag+xU%m}%>^axGkU4v!Jd(U
zhJKLjfo@bO=%qpj5C)7Yfu`@Z9w)ptJA1&NrsmI=V56QSPhltgF)8a7aMuK}r)HzD
zKsvl>)gD`#hH2GR)2A^>7yWenDu<-Gd$K!B?_W?NIWh&4kd?8fbkRukSq40WgybGt
zl{S8_0KRJjV4@_T^auTC`V@{O<s!@&nnpWGW}Qo*8kAY}^Abwz=;dfw9Uo64YOD#B
z@R-_^C<B+;HZ8%yk_f4_d;@8ik|<@^*f{*e`P@2^-$x!bUdQWQP$~eJq+Zp)^AbOh
z!D(f%0>)Nl5Q)Q&MBpmFT5DcP8K*snMJq&)m#OD+N~U+|HkVzs+#D~beG*b9Fk-R&
z#C3+<ffPEMMBmm%zdt!x#;j?DWK)C8xn4cxE=xJU+b9p5S2;t&`DBwz3HT@R@hZ0a
z7xBea@)@JD^14~!Fa(L4ls*q1|3}_KwSxGGD~<wTSILJ37vBzN?GrPfCk~HdjNw`d
zL+YR@)+`Ks>Ii4iKvkQ^XK6(bf5?1y41tUhCWWo585V{>A;AAKCcd#JFfmy+0u!P2
zI%U|mW_TewtL%+45bnCAsKty@=d(mbBHA(cHaH1rScu)oq{Wy(C>*Rin)}C-KuWGi
zRTIF!^Y!rMu3PXaryd%^e+jR2lW5mdyS}6*;{cMgV+EDx=D|!JZ}@Iw!oOD5;b*f3
zbu%*$H0M%LP$vP|AUwD3tOy0Ui%A$p+5V5Ovy5u`jT`qiHW;HujfT;UbSoQ-Mi`yq
zNa=1Aw~^A_=tv3akWxoTn1G}rf*_(Gf`nMVJ$s(F|8xF(w|6_|yK~>?d)@cvx=sUz
zxWjY6L+XZ~v_zn3=9lx+0Jf!Ji#ex_CO6yCRI`-~2RS&&=$rYL0)~&-6ccd|jfC4j
z{IVPINARxA1M!QZ`F7l23jDtsVgUx?R~>w!^JGLoY+ZQTazJ@)F1sIr@koHd54fOM
zLWknCC-4S7bqKyZVEDzsxR!|MT81GBa1Tz4ijFM8s1<#Qwbr=Y5j(0voB9j_9xeOu
zIhHKiy*T15Gzaot1E8FNZ`fbbISI1`Lit$<^r%&e>DscbR&wamjC#%cRUS_1HO8o%
z)jKu#Oo-#{mkwFq9I|iW(R+^J(YfkUD@OE9Q7`e)Osr-994`tH0o|phS97lXDnjva
z_@FtW?l>E1IX=iPHeHj{p9dHyz0IgtVWT>j4Ti&(oLdH0?L3^#;~hU|lsLDPxB^{n
z3b-ivEp>RgnEi5bJT9$#v=+)ys;>DY2~&DM$Hn)!(*4^zKM#U`3qrZSEZCzeiO}kE
z)$M6J1Ad{r9tAv?0x;^R3Nuue*D}w_cO^E0=xBg*T56g8fMKnvM_{|^d7it+JmGH~
zrazTODcQa%Uw`?@%_oyLR2M|k+?81YI<4iV)Y;HaKO+7c;gev^?SGNF@o3;fBhRIm
zC7Y@1h=TW5w)&pS(|lnXef7_+eo%cLlDf|{(k)%}+vS=;B5(zg3ftx_oOQoj)w7NP
zw*z?!W>en0uej^6_@Z&$y=%RJv|O%L*)Xf*<ncbopRfN+qI2J=3_VQw1e*J_Ax*+d
zkme^^sxHK<etmMStWG&ntI{muxuxV#hhBdw@4@~m>$8Oj_M$rVqmzOYU?%|SeL0O?
zvnKt841TlP8}Bh^lLo>8ZgmUHdEy)QQ%w{fd%-_?Uu=mOUE*p22~NrLgm|pRd#2B9
zomJG>n<&hUbILand6{R^vpu7n1X9+kDLe?eC1qMgjKl6PPjBo;P2^q8D;_$Jz0^%T
z2*-lc^!M8Bs^yV{;2q)r=ozjwf%MX{^ryUxLc9_DW~#?R)K-_ZTdJXDIZa{r$CFy~
z|6r!fBw%5dWsJ9tg3mC~TNNnGDpKpdN19Z^Giw4X{|GxOFxU$UGtD%1HT&2e`dt4{
z+U`Fe4?$l~1z#tauNM^;x%>Kth<Jzi`sMoi-}R+S@C|tE8}!OI*pfeR!#DIl-!SGI
zzDr&|sfe6Se7FlQQA&GN1Q{uaw~}FqN=l7Ih}xQ^CnlxFA#Nl&EX#=8*XAVzEqv;R
zO2S0ix{pB8eD@>9A+*h+8B?N^788l<%6`71O+jy)vZ?#Sz@Ck;WF(tp{(vXdygg@9
zPu1n;tEUws2qhcLMYM!-KDsTJ`!Q?+ag{Chn!OK(x03$*a_>PMYZyUWW-?H8uL~<3
zg=<kp`%zCeOS{?23tL2Sc(%c>ZOi5G$SF;1fYb38H+ajVRL`Q1dyYq6#oXGe3ci*v
zd}&T<891zx1pwK4U8{x%Os(&E4z{!<0Uvdg4R!2ClUl2I3Dv{%${9o6oBju&fN6Kj
z+FWMg4D0tr{JqNT_h}gzCzD&TZH934R}qg6z`paQOy}3Kt_b@z3!Kkj&?`$>PHZ6E
zw}Vv$POVy{3cuWzTc(r*38t9t-~z>L)uyz8-*C;0HbtM2d(kt~AtAWzAWUh{l5&U0
zdAsta!g^*0Lh14g-p>7i!j%YxnT5lxxAL!e1?I;K=fmaqK%q0T3O_<xkgT2EI7W;B
zudI{M8bdIjXlLHr>Te05h1Fb3?$#4O4kwkr|2cefR+)PGF=Oj)&p}moF)EF@`N)|J
zq4Vy%2+0>>{=Qb;sZsqj_F1PQM1jL!V&C`B)Fk9{(y`a_Hf#PtfYUgKt5Q_0vSy@-
z+DV`~O~1hREIwmc6pw140e*H#v2U%Hg+189Jk!%z7dVxpvi@9*CFIPxPv~~9t}Ks2
za@TodUzg_PLhGj#MQ^)|)7gKVeY||%ei-(39)?pBBaZg-v);i<u^H+=8!okhW|?_i
zuD;gO%S7EyebXB#Q;zb%o_cGZx&tDt*@tXs-rKpVsnEb2vywr0HP%C2^G<02u3r5}
zH_h~L+fLa%-wICdD;y>d)0O}+=EFtF+7BXgA7+g-`<=04HJpqu1#G`cd!rsAIvnac
zZI2u&cmq!+Ye;BH#$zUMw>8t7waedhx^fL$&JE>lYrz3J-2g*f)QE!=VLRGl&C=o#
zt4;^$y!nlzi(^oS=u!Va?Q`tUPxM3HdLy~^I^pcGNyfCWIN)kTW!uwCE~z*#=mp_+
zYG9cTjSikNtb-rX!56y@MSU7!{55jp6LGAU?_S--Xm6ZyNpx1ScG3KbtyTPOwg7TY
ze*o*#Wv|fHeF;kMXe1Z&NbawFK`!rKqbT;v3o4iYL>|=|6KiKL%Y42J13pT&V*2WI
znE|6mZ>`tqit3gc#}QFS1rQ@+zC|e%SQX_>n7q%&`(Na5itRql-NG)eL`V=YL!0$^
zA{n}quv!CZFXI@=+vddX-)0Y1xcE~B_|x^8I@z1(LyqTNBQt@MnRV6S#TBe_Xe|^v
z?|bSro!<5Xy-JNgwD$3HA4F>%GNZ0V`-FydgiX@@WBkNVhI@?L<EQ>%!G_ecWsJLz
zvK7U=;n*-P23B#)+UcKpP#@|h?-|UHi-oS51H`Fmh%hnSpk(i_Pg<U0hE<n(?h{Q_
zt<5n#{Z`3eZ{%2sO`7e-YXWR`W0Uq?r|t?p`YiNl&q|Q$$zGVp*D6R&4N=yaZ|`3(
z`$b0_$C=3S=5@Tn9T&=7FS>E6DuZyZ-P(<2V^+O1)kRuhl;5gPK=pg3*A-cp2xPcV
z6$iZh{)d7m5R+3<)6z5UWM*aO<mTlU6c!bil$MoOV3bvB?%q?S5ly@)B^@YrskQBr
zSeU$#;3YZ?uZXm)+$A%ErX*&pkt-DA=u5+XX&T3p%ra&aYAA5Y{T4FL@RFd*rAdm{
zv(E0`{)a;&VRAPYTV(qxZ_A1pi;K;^q!AW3qI;M2+Io>%LB@a|h=}&^@c+!sU<e5m
zWcK_y{=SkB09fe#3A%R$b#}<~OKK0F$-$JzAw?LUdsdokQ77ijP^KVmQK@vNClbZr
zj%gq`W98NXEHVfwhzc4=x;Ou|!L#vMNlh|_ZT#J{{<f7)+(f2;`M`s<UcY}~Acz@<
zv|YqvgVY$Q<650#4pv1G1%x4ZC3NG+AS&Do|AmuNey~R?vgq(2?s(OCTJ+NH)wXlG
zD!z=IF?;vHiq7j~BE12}mgoB{w%2S~?MLHdtZ-Quem*QHg;jNc!Jh-#PC+ggw4ao!
zizwB3pcZkFLr$YJDmM+o_9Yhh^3UJDrx7qw>V4fCn)0el?B0*pU&zS}dh<LFB(t>9
z`=l`)@6^zHb}bS7LO%`FCf#D*i(9e^i<K=W!;Pf2QaBv^wo<w4`Vp>o2bbtP12ein
zLb2RRL~R=UoW7YnH?5~o7AxypfTNu{fS!6sl)#-LW&mg1;SnBpy>&DHCHyshH^(cC
zUu*J?LGz3V26q$(R_h}Xt~*7xpsVavhj9c}$?OZOXv4`>st}oMC!#Nfn6KuI)Hlv8
zo&0B#l4pF=IlCNxp+!p~l#}%nCp|QvikZJXr0SAPoH1D^rXDR6`W|5<6U|aTc?`~|
ziVUDxr0x|$<%n8;0g=MJ9S=nxsr?6i%K`iCgS)M=LVOY2&!mK&Ie>ZfTq5bv41HK*
zST{31Eo)q`b{C+stcjuV=l{Wo?dO=DjJ!!A2&kFW-DnrskV(Y#zGfbqyn;b)Le$)6
zdR&o^qx*%Ajdt3Mlr5XPL8I5Za96MIRkuj8z7aH^9JngdrVzRL%sE`>l-Z-R&rhVH
zi<M@@GYl!rQad)|aFjUZLqT|WC;lgRy#1Vz;R@}Y_+3=gcsZQ>!+L=+U*B`$Uup0&
z<BRMXx!?9Tg2LepY`wg;-$(YBoNlzAExW}sS#|O!IGIuUFx7MVv`{%5nn8D?n+RdF
zAQ2fp;OfVK4EQapOWrJ7WE$>+ANZ0b8+9;9zAH?hUNQv>6qc{P2Bb$dB6mR%oneYX
zbSCEj5N|_Q>{h)!_~Ck#aSP){0w3)ZJ+bER^(lkmxk+S;+`9Sn2-QO`G@Ee*;O5~5
z8quWiD{^!5GA_@3AjB#ThRb>%;URLQgYz$u^`GaS8Z7>z`!@RiP-ByLPaCttW5H~9
zH1Py`6G;t8Vh)Xv?&ILUCwVN2qHsoanY1UWkC1p4ZXEJ-MUN7HBRbv|q7k!Pbe98}
zh=@bc*(oY{d+!1x_W5`hW4TqY<wJPZadecIY3lvm-#C{>+|SiNr-L@~V#OD0R$^u*
z1b-i;ql)3Ht0L-yN3{UKFoMj6FF$QFic_Y`26#xyWT)1EQ1J!4mMBief)FSjYK%_v
z2nb)zb-i7VVz9FY?J$i2>~7}#{7VMR&mKc4zdqVmLk*>;<};n-#=#ONATB)4y&C8h
zVmC#n@O7>r5Z?flo}+{95wV7I$zh;V6@?y<g-E`juoYP-`REv8-N1f9i@c(j-x(=S
z&XRNlHeGH%Rtw=LiZf_6p%2)K4D-cU=itb{j5eGKUDk>^F)#FG-mpwIJS)w;n3nyx
zqs*By1!{@_ftyLNL=iE1<R{95`jU39cMs|`#!TzQ6uQe|;69u@Yjhrk^y%k}byt4Q
zzE1jmau2_^#OMj2;hx0N*7{9?-Wu>WHg5qKNy1dCsS(ShDg2b0F`W5A2M$xk(1q`@
zB4w;aP^T;qDQThI@+Vii7J>acG?&Nf@LK9oO=Twj!oJTgf#WvsqaZR*!k#Ta*rFRX
z#Z#=3dF}qoKZOf^O9owdX4DBD)-!xExLW&lp#yZ<hGS}TnoekAdPySrrH(Pmpm}?^
z$x`e7%c*b8mg(lB0~w_V?mvee*&^gSZ+>dKzHhcV&U@aKaW%+U9W&R*Tii~=_FTY-
z1f-q~K;*a&QVv_4x+q}-y(Fe~KV$Q^3zf?bd=YXkvIPYH+)qFuZgi+BX@S1~yw7b&
zJ|y<}yN%!H56Mg+tTt^f+|ZwcGgmtz%AT+9YL^X7+JB3@Z~p$P%g^D}mmM*0*se{7
z{2bY2>WrH<-}nK0IO4C?nXvMF<9zt%qobGb1jnjUdi-X+K{+5vfQtSvxWJW5ovg}7
z_j*=ipMYLr=?+uxfXFB5d0Cw)k``OA^ytTstMm84v#&bxLz(=fy2StYGU%#hx-eqF
zkco=$bqAsHN!_ySJPNvqkN=18&vou_SQJqaJ`le`MfgrjEG$k0m<`cO;DmdMk8E9^
ze+*<j7^E26KmLK_hWo&!zFsr!?<$|R*j2s`otQeyJ9h6cVQKRKik0_>XZnIQHO#=W
zf|H<Tr|!$<VIr#T$u%n|VmXl&A`1mF*o5tvU6iBg4gfHRhC<1JQkK{7v9a;;JwuJR
z&{-4^iqUvdFgg_@2UTI!5Btj1-~z7|?EjmIBphfxeKGi|zav&2p~`}KX$YWkTDL%G
zQ-H5CP-ti&n(Xsk9zH3EVZgZMSCmiAmB*bvgNob`tzd`GE?BUJptAzAZa~08G`B6H
z2N7_&9NmQvLvQ|pZVBV&t#<n#|9ts9>Es#v)2k}|sh87~z|*jFz5^gXdA=xQ7YC>4
z;U`;s!&)x`Kz&kx35Z7!uPMLvj5~<_5gzbz;71}pZIJVdW&gtj)W_x3HF$GvKv4+)
z7H|6?D>s}!m}Rrd<iFX66lxU_TLM)U0=#@`3znFP+hrEP(A6EL7i+$Uz9tPkdHCwA
z<NLc6@}Yyq&DKdogU(WnH=2x6E8%KD-Fg{CXu4s!ZNur!nZTQ-^HRa&+UTa_@SKN{
zHp2Mw)~{k&GV@)o{PTX-Y!=Db9JPZDG5bAf8lc$=TA?PG>h51Cqu-x*@6U)V59S2}
zvrA|W{9=NC?qtYxk)daQK|G-wUP4*350>D>$Ny@7rtcZI+`;GEO#F8-V|9fRKX&CP
zD5zEtX@O>VJXXnJ0RY0gq8u>fBidrz@An`A&Ega&Zk`#eaM44PA)dW584p^Z(B40M
z_u=izIaJ^}`S-ltzkL?v=$K8=a{8^e#!C4Q%>u%bzN|$3xi1L?=r?L`JBWZB=Cypq
zLg*HhM9H`4Hg9cCgQW=Z=DsR)*dzulAV5`VmJHy*`YE3S|0pIB$v_2^0Y|e5mmgJI
z#20|4Wi^6ciG%9Ig<;6juN!Wfl&6>tUVHJ-_dQ<dHQXZ>FJOTWrXfk6oXGowfKifQ
zTHzaSdLY;f5bH8feiQQVC~B8rz;vSWnk=Jdn`+W!_VEND9F`tO84S7>$BCQKaWs|?
z!s^HaZ$1}`OIHcBz|mIMWsGeCi+z<B@bO|~ko|cO%@IHW#i7g%6-B8_!ZSvdG9Ev)
zk;VB*!sAlIGM7Bk<KxnYlL3u`w9>d#bEm9<xU8|Il(F5L#&1}rk0dZCP{AkoXcuG$
z!vw{GDhvhUSF((bf#Eg)tOt+wVp=>3M%Dz6Yo^md1A>3#1TUD+G-oHP$&(h8WZ)SB
zWYA<-Vk-!0dIYx2ziK<@;fSSkorC1hh<b-HRzacCcmgIr*K9i1%vcP+c~uH!z^e!X
zIYstw=1X^lY+mFjH|2{%<OT-|_}2=W8nZl&<;^J|<|mrSo;kQ$IP)kxg8l;Z4Q1(}
zS*YsCG26wc#|{<vtnpU^=~By&2`i-C<Hw&DzR-+&Ji#h>9Fmk@s9`OAy2tJ(#&PDr
zF^%UiV?|#ThI%-Hg~yb|gaswXtS@b`Jz;0}n58rNSP(E&8szLq)nIu|i(N5|Z93*U
zs^twsMOO(6++r`<_0)`#<iVTf7;1&kEFc*`JeR_vwhYptapIk<e5rS$HF(5_fPyaf
zX}=fn{y?M8SQ#O8OjqkKkz>s5l(GvNic5zC`im+86$L*L{FVKA?m2+FepwqVlnxJ7
zjs7xtoCZ=l1Nzn(uSvnAM5Hk&>FbJ7QIs-qv={2-MVUHLR6D}I$2sTkPnqBziLmh;
zeQBtZjb(=#V0RDAAS&fimu7^o-d91do>o}r%N+Me*YtSQD$6u_)-V$D4e)m%0E^rR
zsoP|!G!!XSgmg<W>(LO2@hxfaW1y+GID)&Zj#bG-LrGJ`BJo6_m1uGXa%4=FNJx?Y
zJ(RZUABQbcWZqT~NQwABAAF}z$q0MbnnoEMsa$2NwqK}nXey-3%4l{{gjP|lzOO^M
zpd)NMirXq`Ju^{%ql`hRn24$<7%=0H8eG)MZB%TvwHuj#H{y7kfRM1K(Wx@{5U3(B
zBPMXtUpxHG<<>|I*3+O)b{#p2qK>MsP9WXoFQTH#@d{K5n!T<0v0L}qrY>Xhl?4@o
zJltTl{&GmBwj5{tgVXYag8RD$cQdsw8<DRZ_DTwQ>je=dVkWe2?^fvXLL`gz`MoWK
zIP{TI)i-f~w9`wq!-<ACgKq<ROs9HuVyMzp9hKj0^c)XlKZP)faT^1QQ%G$?nFg<9
znijO%nZE`)`soCv2u{wbTcwyK^}+Cy^5L;2iOnY6s^DHb&Lo+dbaf-2C?ot4BakTY
z<t+>%Y~_YETYqcZx|p+R>eVG?eoai};i8e@k-1fwl`Xhqd8hd3i^6)JB~i?BC#vB#
zPAn<4%QZz}eiAl?F`1?Gbu+NX8asJC?Tb_ZWTxa>eLgkO#I!5&^$Pm88=62h&akXY
zbj&Ms+Ko^SPKJ0RdRL$FLr_7%TyKJet-G3ymaDyxntcI|O$KXYY;SMhM(fYsFVp4i
z)^B4j+l%8H;4|$_KXPXI;lSun>h3Xc@RVxQzWUqFxKm;v%JpGPBG@|+8dQZSvUe`)
z&%WOMaKFTx_Ll(}4-!v!m^m`YRQWKK<ca{f_LPYJjHS=l@u2JS&;x5{zZ<$M+n)Pp
zs7`0N!F70=bGWH$xOHUs!G5W?%(Zr^bysJk@3}#<>&Rf$$neMr?~mb)rz2#((Q%#8
zvapfK#L=0m(PvLa=pR?PKmRj2$M<M7aCE`-(Q@LWO!G&pBahbKJ-XidXoK(ZN1exm
z(8oK8kN2t`|MPwP_1)vcKabg`9v|sEIdy&VLHx;i)sx>NPi9h|{QdI;z)!CI^aSKa
zroBl97?Po*WX5%}Ydx8ne~e9c?8frwso@xR^%$?*bwsrX-`_DL|9IBY*p&FV#LaQ3
zAbNQ9I5ns#KRT|!KcPH2rl>oieshA+Z9;Q&LifcJ?ez&1|K#DH34OOoqk~6&2rxkS
z7Z|_-0087<06zd`kf*>@>K7hCAwD5tn3S@Buqdm%I{PIp4kc|K)hoi{l6)E{0Zp`s
zuA#V|i8#tc*3d%1#7e;!d&vZ=VqvR+b=1T<>e{)W%q&rk*HBK^Fs>dZ?mlL?8x~&v
zSl>V!zhL{oFz1j6xA5rek#Qc;@jmgl{1a~n+#-bFQ^JzdBGc}~WMsu><=)KAr!J7G
z96ZFLlCiO|H*enT?d=^OAOHIGi~0-yKOb5OnGi;0C8>1zY?GSW_pqOL;O#D*t3lzd
z-<XS@H^o|{5lcSy{9c=X@SGifc2!U1o|`A_=}kN$ir^AV3{6S>e_4r>iW-%bs2MN{
zh#?UWM>-J^aYgnbgyPN0-0t4o)(0JZK11!DqlVJL<pPS$V~<CS2Mk5ztaugiW7j5(
zS;U|vD;N$j$=KDmOP_W>?|u2YfAH<_JE59H((jfL5RsQ&bYyu>6f@CvMtub8DubEK
ze$X8t2W}HU9bbHBxqBiQYs8{xU*1toVy46L+n^xXs)a^rc%?d;OhjZxu`W+f)5|K&
z$gk_Oz4zgi_!C_w6fzJB;*e_dmRtN-`Z~ru(uip>N~GHy@%n1}59;J|m1ycsJi3VO
zsS^_?g2(l|<=w-u?PoRSKLzGUwGw3P{th|0!C)Zi*Pk80CWsanrx~{S5f94tdd6Wx
z9xDK`Ah9iSzvz|0=>-B|IC92^hMcQK*#|@D&(ntd4Co_(SV23)n<efWX28q4q-Jj5
zGItkz%mn)La&=tzSCRWQid}L)0!m&_#p-P4i1|AdHa)!lYSj5=_$8vSiuyt{nb;td
ziq)_opT)h*duZ^O@!F6-#n3_$<HXX3vxrHppmPU$g1L~<94(6a91uaLl~iuu=B+gT
z7)=WK8k%Vnz$m~mP{^Rz04T@NRhN6(us=YRGKe6HfX<rZ)G;=Z&DDH3ADQYdlo~kN
z2FvC9;0pD$k6(bK^PdvI7!rOQ*q;Asj7y<aa}uV*HjjoGoSHZk<q`1P^naV3Q#_3d
z00spJ?rwW}c@CidUHd^(a5W8B%ez2N1SwgA>C^n26{DYmDN}r=c_T-Ey}Um6j=ot6
zjrBOr+sU#A&{%AjNd)D(v$1Yx7c(E#v{4kpWSm=IgoZ)^#b0}M{pZ_z0AKCjj5HEs
zT|^h5=(+J~Jp@U@IjFU=;r`I@INEsR)|aV}%7|H6vuYWwF%xlT_;Zh`*-T0+Hv{=-
ztVhhEOAcm`vj1h!u|KQHLZ<v(X*z&T?uZQLT8CzwK!rckjn-^_0!co=z73|X4d6*O
z7GWkRvm6e{ApYVU?=GZEee}#EdrZDKhiVAJJ4P~IF1sZ@lT&0ce;f=&;cR%N8p8C^
zP(OGN95KRmJb8R;XbdjZ<_3nz9r24YL|$ltNi@}DeRdf4#0tRm%hMIuGP<@Oj_)~$
zfGM(UsjYfG|97-t2rX5eVrS_JpB56j$~P-f->0!LLKsB>e+=ZGvuk}{KY4ACjU10*
z+T`i|&;wxZfqx)ug07c(bqv8(o)>@_HAHX4PB}pl{axCwk0?Y2C3AMHuk;{^47Yoi
ztM*m3GpX0TnIAwCZ8V&u^zqu0E62c0l?~!H<|h2dkP+sN?-x36!PpUL{;+x&-J~b{
zOk8f`!ahMMAB~Fc=>PYG_H!rYzrR0U3y+_gusfr=hJceqAxz749Dg*bzRME&?XArt
zBq}9FdJZZYV3Yq~I}e8MfYik!U!8;0xS<&6eQjZ%ug4{88TnG;Z2B}VPM3^L4dhk+
z;Ni>a02C)lir~*t>4XGXlkvn`#IY)|!7)g}krGPx6?NcjoS`s>plX2x4@roKh0JHt
zzNmv<2C(OhZH8NlY$5EOz;)iZEVg16w%)?L?tTg@ZD<rHv;aA-DAJYZfXdBCX`GUE
zH{><c&4q^gVFbP^rJRXoqEE+xQvc;<8n6mW^lJi?r!c(yQ9$INV+#A<ueqT?WqiH^
z&#uKSWIGPA(mNdy1fLcJ)iH_^|4u)5|NWzk%t#B+vmRp)W^nT0CBg(Ba<YoqLZ5@#
z7zYhTZ_Q3yqs@|k44eUjILRo-J!@7I@_k@+rsj;CzAEPcQFsuXoU1>kLPve`JHXz#
zomnrfgSRxSo8^w&L+P}WCkFa`sv<;L!>d~?ePMxj_ZivLe9mRl*gR?^%i*T4G{?hB
z-#`^IYB4o9MsV?Fpgpw3X_Vel*vYPf;+H~1s_Ze|WEO^;@2uZUx=@XL)q7V~+|-<o
zOw`!Tv|tD$m<uPAl<A+y@RZOS3)K^Y3wm-Ku>K>>4VQi%h_v!OGRwEbGy1DGx5};i
zD6TwP9vD7rcjRuuzFn>V{qn0#(5Pq8VP!r0z<rkcqfNA_ee=Ozd|b09*Nk<vu5uK9
zf!=&t06PO^bMp75U9D`@$y34;r{=NVX!O2RngoQ5bNx9;ywNx`BqYe*rwIRMC}LhZ
z8j?C75hXoPjpSax8`d0@C7p=aCrrW6G$JNrutJWBC%j|a_g#RY`E72yZ@>0U%QuAf
zD%yI;$AB+_c;9(8JI{rmcdgk|80a&?iG0E+(5dq0#(=ExU%N2?^0zH}T@n#;;mFH=
z@t(7J#EmU}33=^XK+=5~_Z1l7$$!@XcnISP%=KcN`>@eXXA8`}qY4qn;WLbbs@m~!
zlVUL~Ha;#Uam)k#ihI%z9FU?skv`p1<>k6H)Ttd6fS4S72JCjkTlt@KL6zatw@Go-
zq%Df({;<u4CB5D4=4hz7x>R=Xfw$Cj4D)59@H+yWyBsuuPx1X;6^0f}2;Gj+{0SvS
zvwA?QKMo|}MF2-m(Q+4)g-#x*FdSBY*5pl|Qj!?2y#3-mnRmz{i)k$L={tiTB5R{F
zno&7Vi;18?k{kEnvpPzPQh@N_ud9yE%Qw09!D#m1z=SJZj@RdxY$;!4%K6DK-`cO{
z-P#jm=7FyCf2B<6AEAj6Ur^5LVytrSpuVXfpL<7s%T%n`IESb0cp+K^^8l~DJ!Y*I
zNG(j;hAtsyy`C4p>Bc^owN+L0&%+I{ykLhNx+B@?%_}e}1{*s~`CWIfrTA^v)`2C7
z^mk1;wwC*#n;RZH>2n}@-oHaRIfie~#i%(L;dk$1jK=%t-uouLt3Gb*8@25UDcdc+
zi=0!>c4Jj$$={@T2fG+FR!B)@uia`6#Lw~JvgyOBwlPO>Bk<9zj^FD9$BMN)7p!Ro
zQ_Wt-rh50oSCq4k#B1zR)T_G+fp`S})d1P*h@v^>DtW<R_1t4)#`&D9Ne12bRTdMj
z^7Q}?YL7PLf*e@iic4-c@R7xfNx#))(O|dy*?`z_7@28GQf_1P&&H1+K^CcjeP7wT
zm$u%ev&F`<3!mz5qJ*>dk3vq~f0xd<#2~)fF)xaIQ|)u0<aIj%_31r*b6!n7eFY-E
zO*btgy`J&-Gns7=2-2qd_>wyl`n&%7kS@&pefv>k<LlplmW0O7=!z|N+)Bj${T=?j
z^7_B?BH@Fl;sgk<BG9(=6Igx*0McCsDP4R5E|7o{?Ccl!Z~rZ$T?hlkH38)|IW9_W
zQziA0p8*sWJW%YT5HTXScOE1c1`-bg2_IqHJme5$06PgZNTZ8SSN-+yHe&9!;T)`9
zQiwB-AT_T;Z5Bxmg6hy-ELc@*5p*k6TTe=E-@Glsj;9$^_Exf<+e$_?`|xT444hKf
z!%`yN5b4VK0dX$oGep`8B9!|UU=?o|c9{oGh;*c829xu~K-8_2WezB_8EZW!DvKpb
zmJ@5DUFeV=E}lj(r?lQ9nRcv9KppV56ce5Z;NK%4rHI$+Q$774l=~?xaCQzqg21NG
zuPzYJ5kP1H<YQ=15@V~7pR9AilXpQ7HUXP1fb}p2L4&Ed)ifqhdW1=O%xWS9A1-sX
zFe8gQW1|c=f&~m~rbqh;BnX2<>p`+{NoPJ+4;^!s<8r=n#n9TxbwA~Tpv1fj(iv2*
z2OQ@}=@VU%(h2}jkMJdLYY<aD_Ldr$XEpS4G(hSI$bSSx&cPz-Aiq#@-nAep;gB+5
z?%p7TGuaV?1B}^#Ad`R^P=U2Ka6JPQu*I?yXI$nBVf&SfQDQiYi?xj^*vQEL*lfaQ
z$|L1(*rqIbFbHX-%@dn1<W!ZF!~@vsoIvz6U{kiS2oN(FM7b#3&q(A72guHW@K^v^
zt5_)|@AnMV*H-koywJ?!`p@Zng{3=%Z1QUmwx-YdnxKN~`FWH-t9eZt<_2>xWsf2U
zo?NazfM!b(uRVBSmD=wr4g{6-_-2z)Wpkcots>H5WPx~pv&D>@?6vY-e~-5&Jd7kh
z>~;zb`f3`GTBU+W9_7{axrWoCt6C}+F%=GE<T?S+I19K{1o`&S(3w=}MMk!3#g(?O
zmJgYKc?f8UuhJct{4W}u=27`RTp(Ae+GwuAa1%)SBKTMu3d5qD@Rf}_6)##Kqwy8v
z$JIv2n(K-cUdSpd5}^MMWaC%)Ud7$7Ego@7j?o3&WoiI%WFp{KAg?l=*j&W*GL|L4
zJtdQSI$QTJiud-NNwf(hXeE1rGuLHh5HAkMmk**yMSB5H0J4e_#*0aRotc<^lUTKD
zugurNWoi@3ND>KkQk8X?U8Lw^fRG|c93DC84Ca|j_`U{|4AVMvtl!<NQ<SL>+p1S;
z1*){x86`BBR5mz}>&)IZSpIIn@;2HekSw$t9TFOyDjQvf8~@lgy8Rz3@ziee4q$e7
zY4WRV3K;(18!?!$rV!ry5!&~oT<+Vwy~`iN9-r?KPOd4z0Y5oIWAMmC7is1=zT08!
z>3HEpGIJI$eco?yPQd+QmzFTj7+yGBOc5lk=<;=rk$f)mSy6;53Q#c&Tr6h#EM47p
z#6adU9R9>vKg3MZSKq-y*s<o#tq{tP3}~bk!Z_FByy<342Jm5FF<^R+W2UWqfmSox
z{%3+O{aY4Y+W)f0h;D+Y_%O+#p|6Xz5Xl-Y+`3DO93g=GCP30*cU7$G5*k?{W2`+e
zgx_L^Qx}`~9IP&)GpVVw7pCS53I%Aj8<4o903ho^<02B9+!h=A^raW+ka?NTWtVP5
zpyKN92pTN#ut(2csbeUXxph+XQ!k%PzN04^aVTR_tK6v$lnJVhHF`);kqY+Q%uxFS
zmV$#4guC*(fgFgoTiqb0c~OcB^u{sEEN|~zK)rrqH<quTudrL`B4UUDZa5Z7SK?b!
z;_VFYe>-3Kb&QX!Bt%h03;qhP%BbbeuH`%1y8l>-=NDSY?Hw1)lXru)CwQ76F@kmD
zhP${glJ$Ae=@>7^A3?~9zOO9%Ia<i?InN*T!#f~kQI!D5Mj&2v@bIgppE|TA5u&i!
zTNpKn7v@0}L)`iJ^5&6QvMO*-0Uc@EN`?oW?}SX}1v6y(sjMUf-H*u+l8O>{9#_jG
ziuC^wt5FumkQDlC^2f78!#U(G(dNFi?RwKAMrfovIkR}xBVjz^LJ$#KbnUAv9Bm|O
z$1cfw-p_6SA!9hr@a!ZnN;8+@q!2G1<|p!qf4*qi(};m2_d<mIb)6_OTy}9>Y~=^!
zZIA3!7TeS3Qk1g=>3fCh=Q@M-aO#3L#`70kE6XoWD|g*i?%zAExG2aAhOuuy6eM<X
zdv07}A2rN!9!vN<e(_PB$xT9-KX>-o2(^`bxH)3d1u{XX8k{5>d1<_+(J7cvx$*|F
zDSD;KU=kBK2`^TTUQrgM(NHSVR-4e?(B=@`R!FrKw@(H*MpkX^t2^^++>p?^T1{(p
zQ+w^HlHiF}7m=~9ccKJqqZ^@bww71cba@yP@kCkYrGt*|O`RbxeFzZv$iQQ)XlBB|
zy46di8LvCit*eiHlun~FUo`o~_VV|l%RhUEJjCue!5NyX?d$%GnOD!;^aFE{W*y+u
z+eIR~+eMTw2KoovS5|2BB$f1j+yE1AJ{gyO_9T1KtbQ_sU$pyRVvhgi9=<)?Paz6g
zCoT4{N=*N99U|rP7_92$X18?oG+OZp^9*F#L2vS9$pjo7LF@C%YVoCbN{>RZF>9YR
zb-{?{VEnLym)tY~XO0mH%pK1F!ufNsm%RnXu@YqkjI=Z+yDVo#P8^?1zPvClz~~oy
zn<nj`&U#;-otUk0n$>%cS#GMWQAG&<M4^x7=yN0lbV<Jg%%t)=jSXIBa@az<K<7b_
zkRAK>MYB%SLN&X&1cuu8;G@l1z~B~1llr&q^t6Lb7H%#%y<}MZD!n2)3GvVL8Mjl2
zj-c#Jjzz{=V)H}RsA5z#z<V*fyF3sZYE7_3k@pYS|0XtA-V%ddwj|kXJr@v<wrLuL
z7OMkfNCrbaOef~{4oe7joOofdxPx5;%Y8pBaVDKlq0v{ZzD?OgI@)#AbsTnkTBfdE
z6<@v<S%!_`6hB@)Yz3|jv$!DNX-}{eTwW_?vblN=eEf(_<MTT&dB)hw95Q&&^}j3P
zJ@y|~>~Tw>o{gf7aSmO#Ag|xQHDAI`<g7Wrf4^~=9>wVVn_l<)ljEe1TT+o5BxZU0
z8aN<0mRTYuIC!3LDjR0hF+=;h!qG_~dgETh#xi957UEjcTc~~zSl&xr9}Y66@t{yX
z!O&GD%f%slE?QeYnLlDad{+CA+UI_4+x^J?`bo6@yVUD<wd|RhGl0tw2#O?k_|aMM
z&HFFUK14@QD}&-y5U}sHr>jvTUAT0N!Ewz;c3%ie;iH@L)`ysg5ASy@1zF;FVWQY|
z`yOH=tz3lBjhM6>T?pfvZ=M#-@w=&hZlxtLV)KUh4@UVue}eP=)$B&@db_&&$t>Tv
zohCg>?rvuQna5iw4bPtY+#6N9`4Zt@l(tn$`+3lKw|du~BoQFI>(zkx;^`X@S{gve
z6^vQ&YkM}<uB&c#1yEQjB{yBuG4-i?dAo0bVPHUQ&^L30cCXDB(k|#mqyL5Ci}+gq
z-_Gd9z7KpO>Jf1_VXfp1tBG;A`{S|XQ%_rHr1A>njRfOwX^@@ei;Z2DV9P>sL<H-K
zGfUQWgvKC%)5x;zf!6bGnH~SL34o(xlz70}dv!JG^gSBoZ<pvIRAN(Wq9V1XBgr4X
zTYc8IUO9CB3=yrH_Ww5~efDKia1^F7>lAiSwSG$sTuuW&s^Ex*qodIpQHLQAZk8wt
zvzFuy@yAI&q=X!;uK;YBsYR!_h>>rdk^!eY46}le@AA7(G-xB}f+_j0?Ze``3cu;9
zEvx7u)mWtZe@2@8!UbQh`Qiw$&a+Gie{9$V3Z2Fm`@g`eZB0Hz%@}{DR8Pb{))>TW
z-J}8Bf<aHV`HhHW32k&Y{8QW3k~fOcXVKs9D>Dm-g^id6Cg@-4Hnlpoc=)vwo@5y+
zpx=x7Q&?sb3eI@#)cN1JGRwL1(ZwUBGwCP4N?`}KMPvO=ci!Dim&hP0iDu(x)Gk>i
zS7#88zJ=zl5;_K-S>w|JGBR76LAri-u+2cUUvS8k-wA%de>P;a2pQ84;(g<$gXw7;
zu0zOs;CUA3C!lSkx$JArU2$I)ljl=G<#*0(l55Io?{R0=J7s!m#cDPu55Lar5xUc5
z!rnW>Qu{rvh&wGLBRjk~`w@4j3muqw)$a#jOqb>p8>C9EM8A%eo<i+2bcmJ82DB@)
zFl5<dMO+$Z6aH<w<WXz)G;IpFkiU_7Qu*?N+IBAbr4l%dpoE>}pd607qw+54KPM0!
zLz$(EG8`f2B1Sh#o}78HAyG3Zb<Ne$=Z1e^aA<gBbZmU$t=oj;)bu-9Ie7&|C1n+%
zHv&lYje)dAb`IA3Loi*p0|&X%QEs~fJClEy1DqwllXiJux8?FTlTvjYycC90FJ>lP
zkhf?u*c3O{D(A*6@6ehvHU|!NB9b}SJ@DAVygH%VW>Y1};koxPF^6n26<y=G3~;Ig
z5UaLH&O|T-&9_AvN|xQlreK{62@poEEkVQ9Gt!2(h8bmVX@st4f~NE!Os1vCo?bsg
z!aRymvuks#Sj<UI%dh2~MuXX4d@_*v8ByW@-poyaunjxQy8gG#!vMq86T|(7#OuB;
zvAYSYrF!@|0E@nDFp=x;+Y7ynwc2@~xF>Um#`K@Q_~>Lu&0NB-{+d6f-S#VPf&chN
z-((*8J|WO?U7<4G?dbwZ$H%(Adi~#|$ZIk^%_@Wpmhs~hBiHT}o9Q+@O|211{xS%!
z?zF$A5?}ew(ZBOWjf1h=dFQ6kCazWP=QQVBUMc9s{<jg}IG@#J*@kVAN3QTA)Ht={
z#8hk#*4@_g0rgQulhQk8I=^+@=3o%URq+X+;7v+BT0wi!#}J|9{c4IY{Dt+jK>We{
zv`|$dv$prD?JEGcYF8bY1K(FSBT?&pI3rf;q-;!UHe+KhZ=1!&CHHW>$NbW)+?y9F
z^A@%*)z*UE@CY}W?#}Kk@=yn3)lCSgO1G-tywtnZa`H;|CwOtrfc2`~ydh8U;=FNI
zB(r5e{w!X3SMUOt!iJi|W03Nxc8lW5@B7|Z8DF(uvUd(%T5|MAwYSmqYF}D*4S#9B
zaxMPb(#rLUDti;$9r@)|uY#)%Yd#gh2p*4nkq&SDTiTc326n%6c(+Xwh<Fz|#^ksj
zJ}bZCW;~K}vL3w_yz)MFE5~s|V<AUknjWP{InJa%Roex?0knkIz>9tnnw&vJPXi$x
zQp8YNvg~HN6w7WSF<$AF6E#@Z!Bq)FQU6i&MxqK5c4c_*mJc%=ost}vtnVZFbiz|s
z#deS*lg^}^wW7M6gim1yTMpj1_P_@Hi2e%PBRS~<?yZ0G2OKix&JEUDUj^<}JQ#kr
zhdGT6vAcTEJ8!AuoY&&);nR*&JoKiRKu36*Jbl|kDnASkS&-VLNY#WQpxYgI+8!Vk
zVZq@h?N-i4(3$K_A*A-ylKzsO2Rozc<d@$iT<69Dw(1y3`FKXiV#xcm6_1A{-+=1_
zb<9IP<E-DGV$#P$m6@)8q|t#=D8Fn>VtQQTK28UsQ*N1}>%pmYRuc#geH8eVtbwZ;
z-spApkffReg(0n8R@eWXtw~0nzrB^mr!dGrsLu($&?N(#KP7vHB*}#XfSzbhNb|ja
zf&juBZul)7S0*=V>!jUTQY}e`^pBU+2@(q<{E@}ewuj;Ac0yC!bZ|$sM|i|!L!9H>
z2jUA9^7l0YP;!(b$e~sr@sS9YF`1Xq-XvZFD{*BGSqWY=RVcL3u{e1>d-s;hP};H}
z6J2TdjubZn3~P{==l<|X!BdMKMF7SU&@dY>ZY~o`dI}%PV(MXTdH6h^yPSnJu4}w*
z=Nr>VWFf!5QEq5TFhy1Xm%$Kcix*wr&5fC>XV=8`o;<*t(V?m}=AaOB-cQ*{;VAA$
z+`41Vq)X>~wmd5ZrZ35xG>pPy`X&!kth6IQ_>&jvcBp65OLcd8p#<Hq<L4qFEHEhQ
z<4>>_*C&5A+U8^$MqVdFf6JoErM{<sdZeD*EGC8Y2LTN+o5cUS1;f40W`rdEQzL;t
zxakX^Hu2alTteszff+a4Lx?6I-eJ{O!*=r(P!TB#(j`K$X%M~T)O#$9pEX&#*toC_
z%wo-aV4F?QcP0Qt4*A*4Nl}2fyMJ8~B{dci3*hFT%capoOK^n|IseWzDwcd<VL`oy
zaNvZiDDaI_Gyl}A9r>F5pwCy1!X7hb?*Q_{3@m4--XJbGSQ%&VhTZCT7C>}a-zJ`c
zO&eh1CdcI^(3G4j%^aQ-1!4aLf;gB><T({}MECDsqr+dNmQa-&h(PBhR(0LeY1mYh
zgy6tu0JKjj*4=40Nw7T6Tq*TInq8_{uS`~|3mU4#@Zh?%ZTe?vg0xAC!7B7OL49De
zN8&OK8>?_nQWrCuo05c0z(~qFVtV-Z16luT_#%@2n1(S%K(G)qw=*zK^C*?ir!=#)
z$(~?0#u?~%LkWcY;hi_6iH<ep1RdvUBswbAx%6OIIQ;0v{CzTCMU8;Q^@SlPPxmRe
zj;lT_e^E=~TWd6HX<(MkCqY8P(E2~-JIj$IaO$}Jjeozci%D<MsL7IH!aq^Y+IC6i
zCSz)}*mQ<-1I0CN#SGaOER3=QNb^4am#XNbO^_p`m=%~K9Z4*VPf;e;FN9^8X3=y;
zWZ&9L&XqrYce5JB8I4TMD*@~{H{kl*=E%^=J6i8Nv><L302rCym&5yPl;b}#9o(3x
z(l)>$;4q$kQV-%FJ>&h|e^PU-d+ER5%TENp7~>fjAuOnqn*Sx<nT7dOXOqNLC-f5}
zBP938Yh0>v!C&Qt@l1mH++OjA@3fmG*ooMXjKL@uQ(OkS94C+s$7U=}p-FBjx0W$;
zI%Z4S2XeZlGh43i$*JP}Fo`}YZ94|CA@57(#__VZX<v7A+NRV0bwM1t8Uh~_GXy>P
zjqp+MbwMxqi)WKxs#=fz+E5(T?W}tLjdtbk*76NA2471h(*lroD?vmT4{?Ql=JT`x
zH3h{^L@rK`mcffSyTD2Vt8!R=nL}U-YKnx27I|=_m#VUUTUrX>6nO{utbqh(RQxsD
ztN){@zWV9WKY0T&(Qxihi68#Ci{Hro2SyB5D-T@*{l#r?R6N-NpDiAYMUHXYt0*fU
zhQvyXS%zP20=y4}12f*&M7M_uIQJTi-PG#>#ZUNjfYQdHlQba8=eG$AmcFXB!oUww
z7{nJr^otc$5&<D&Hxc<WXlRU4V?CqttL3=%#@Q8RNsHGs0nA;iBY=20>crqw10xM@
z{x4c``1b%uD~3XBkmy6=j}MRk2Dl)52mwhamaBiZx*o%Xbz=~{Ru*rrx9Rq(5Z=)!
zqD_3PuXnKAyLkF!>0p?UTZs%>@V>9%f!KV*aVp5>N=}}41{WnVzx9CRb=~{?7I5HO
z$xwix^C&NbXSE6aUgXrfm+edxL*oTX_9OxIqm>n5$oAyYKhYx%fElmf-n-2Cey4Zw
zl<_Hwu7#kW0>#~mUJ>^fN()P)OIuIYP&hgt+@!|K)D|hi@tAMJexdXnxQ-As-~$Ts
z5dA#+JH&(9Hu8x1p?^~Z25}%KR=z%b%fQc#XI+PR=X*1M#SiO0_)n1Pv;=sp?;)q8
zV1hVM8%Q7~fASRx;zZiBM1p4m5Ev=?f*qjXrY=7c##)y${*7ab#0X}A87bCNVK27_
z<dBY`KcAtNBqdfWRG!1G3*^861+=%=^*uN?L2xhu{-4z|oV@QxJoFp#l(|dAWs6N2
z&B`Loil}A9ZX+1U;vFbh<|efAkP{gKGdX?`G{!NGW7@|ut&*S}xVgGnm_-4n>NkW>
z7*~8ZSE@&h(+*MsB=q$atX84I1f-xqp%I5|%ed+P@vV~x(N_xyK8VYg027gnp5RES
z<#7p_<yyUf38g{Le~&!{#zk~`y5)@E@{8jyKaR_<>MQIK)ldei7oLAJpDQl|RW{M5
zQr&DWG?&6m#Leojb6X?Q?wc<*Z)u_@cx|{wuOg-j3Vv8AZ)O4A@Grw^2L)~3=q_*>
zMu?dfGT_7MMHJT`Ok6e+yW-Le7|%qEPQch2c&G>WP;a!a%^dj#r#qM-si!O8_=-0C
zig!u?wt<@&1+m+-RoG#2*pW`&mI(HcE-^9;0Lz$1$PN|CT19aE#TYkXOcPj4rh3et
zDZ8pFt74vtXx^9IQdaoX!~K|I!!>S0wFX(8iiuZ<UZPLERQ6QH3HN0k1H}RqKPxM7
zswnL%bLlslnx)$6KD7`zv77k>uzPI{C;dV6s$4!%DIqDLBUMd%Rj=B5VNO)-Bh{RH
z)!N0?uBoW|M5_DS#&l%Z1gL04M{2~|TH|^(2r8PXk($9f8va|?L9|M@YH=K?TFw%<
z%qfd}c3g2J53)(~$VaNeL%W`xq1u*SX7>{Bp7xs*-8(0`fhS_rRK?@nhTJzkI0;Q(
z3G3Y=pUvLyl?^`bw0Z?Jsl<t#LIb^R6`@+cd5797AIN%+V*$#6q>d&{tchPnnpIqy
z;{1tzJS(>_8lp{R7^WN`1dq7no*AA?SR+W7+oG697{f#l%q=wfHVvxGz|hL>XF`tx
zRuxTQk<$AN)0Jcswz~np0p_^z?P9B1QPuR(4|QiT(Wrezbg^E1Erhh^>cnBz5yjPf
z%7yFW@wU_IQN4q&H4j!w%+9BO!SS<lEbQ=7Y8Ng}3Tyhwj`ju}s~H?QcLcMuOQCJL
zEw^Q&i^30XC)3U(`9cXCGc4yfP_K}HOV5FRGCDsvkS062P|g4tGMRCS?Z-CozwIsD
zLTUiv3hfzI=S=TH)#FITK5HQfV2{1#XEQsKX4G%36K3tYbo<ahNgwJ+lb+0Bf7z+z
zFG!NuftyEAkbs<}l#K%$>Lft<EApZpwUZk5cXO6xPan|iTt-5&`=)-3vV7Wq;cE<K
z#uO>E6rI{lsM8lM%<!!F0ZLn?@v~x#3i@9&G$a6df~IdC-vEwhK<;Ac$p?UxdFVU)
zYb7|yKpTzC=HCNkC`XIX&_^iMy2y$LYqmgozHYsxXHGkW$t^QI#8cZx8p<(Vk`f;F
zvxFaMJ|FtUKSsOn1Iuv;DO5{oOtCLunHgM~{i4~2$;P)<X$wkIa)9#txm4gThX_$O
zJDGB)F%@$lhcuM-Mj*m01{xpWM0!zIeKOLBr5s135^tu`!QfKM<<f?zVzvmkt<rrw
z#o9{`b=}>J%`>3s!6xv#gG$J=hadg#ex(Oer%)&7E}ger{g+jR5GF}^HZVSG@a*AO
zZmrHQuD96)fAv+#=?FbJPe%nq;G*Gb59(K87b!=c=+7f!XrQNlyx=R#S{x(>0W(6Z
zn8gGE%t&snST~J!-JhY?N+pBLLboKsrg32mKWUiD1~a+tN13(W%oLGbsg7xBX2#dV
zaoydKj^{DwL?Q3JvaIR(+1%GpGJAG85EhymE3KLxb-67<yj65lBc<-)eW~qxyk)UZ
z99)KQ%^iTmey)~Rdw^0i|LRPM!`N1-`qqw2a8E!RKruwR+^u4f1wju!nD|^tS-c~d
zksKRX!WP)=G|~So?@(gD)1j@O_tfc4Kvy|xS@Uc-=y^(xwD=^8&I^_hY*tC}X3U5u
z!|$!&(l0<~(lcmgiVrZuKt9&C{6SjW4VxyG>(7(DXj86ocjNW%I7+v5aZ6Y3>wYE0
zyteA{ULBnDO?krg^>DGvfg5R2o>tS5`pfc7%;3xM-A9`Hgz?pfKYl*6F-aYXae1`d
z*wAO17dT!VNGcEfHpQ*$lLKiAOcW#!ZwwHXcwRq_04mISguH+S1ceH~rvGLIK%ZUz
zt|?U9xnRSnP#DY^V?_^@OMAavREsS3asI&}$ssf|Ng|~u4X$VB3u@yG1SyIVP4zTl
zp?6ZXVjb5!GAeX~hFrJyx0;;k!?eZ_b`u@(fH0m}shsS0fn@y{Kw3~1l!*cHV9aH&
z+I5X3q`fM9?bf&Qi4>W0^>&Sz2SWc{RMeL+z$%P<J!XzbGoXdWbLZLB+F3!mXA+u4
z!j<oN*@25dX+L>>LoHv0w}PmTMy6SMwnN;qFBjwDE{o+N=+8a6arLjc8)XQEaaz8B
z_?!xEFSXLB#g)z<|3lPS1vL5pVS5Q|qZwVJ8%KvAqZ?@{afFm0t$^rn8w2T12}z};
zMHC&Q(@}~7(g;W@C?d+s|9ubMlkd@U^c+0#`P}z)Z9-~@x_8Q+g|eUXh~5s45_O1r
z%eP;B^=#|AK@IhCj`!ys3-w}MvpME~nx%=!W05)fy;_-uN|^G8-8$}X1=IDog`cWk
zrDtieXHT0^rGG94Y7+vOL-%VK)?Ypv{KN?P92M|c@a)Bbw30cX&-U&H2jD7SW77>;
zsecXJrs&EZ203MVXsf~MZVDE*KW;M76dVKHce~7B>g{u^h0W69I{D*`fr_OtORTmI
zGQVK;#Nsk4n%+W<X?J{}jx5}W%X_Q*pjlgI;B0G~3j5MrR_flqdq3xnJU!KZ%4Q#B
zQ=ENyz-!q8()F7zO!W0i@}H)%pTu$XP~!YSJ?hnBdIQtl^uHh34pX4VGF>7}Uy}m>
zW85F3QWM$P+z5?)Bb-ft3!hlq>|xvs>}FeOG#=4VGg%hw3qF7`UJ>zl#pO4Umv%xb
z<OarX_V8U)A6A3=7m_7rkj(VLdV9xU`9j3Z_zQx1_X|uPbu?T3C-RDD&nw4)hcCXD
zcOgdT_8!d{X$KB0?JKTM+<V9q#<yVXUsTfbC(XZE`k?c;h`zh{eM3z&n+5~?5fADc
z*T}7J#}Ps&Z8;~Z2k(X#8h6_M(2}AWr7}L8B%Zt=HZuS_h5mj4v`qi`yUTp`ERWoP
z3EuW-5<g6>Y9PKu;W_Uh7_sh_S1Vp&p_J6rKN=10?)}e;^pV9~=WoV^ipTp!C%zVO
z|45sr#sKqhz*d9zhN)-O-_8<ie3&Yy5}jvX0^a|yn#pnLy|92Vtfw0DY9PCMX1Pmy
z?g4IJ{N3Dq%@Fl>_KHYoxH><W0v*-(JW2K2bNq5a3ffxXzGz}JUO{}rfcp+LsF)b(
znC@C!vP~EhpGkrxaS-cr+A8$*JI-hd3So*xyiOPNUZb`{(Wve8-SnFWTNw|CBFBT^
z+uy|3EumYCD7Jl|@(;ld+=U(%w0?-{x=H&^b3rJ%w)=2JsH8*R2`&C*RSdB9H=U8X
zL{#w_?I3z%n3s2Fc_AwZ)_`4{*Ay8jo@ZcUVGfRRi(JB|3-UF8Ob*(dT-@CA6)i&N
zZ;-Z_7U>Uo8Qe;~b~kPG{M{%+f0@LyTH)zl{-d4jVgAo`<OLHP)Ri7?Mf3D6&D!Pu
zTZ)NEX~mjRn~7tkk283$>fymnLtTAB*sds_ckc^fA%Dm_KH~}zS9eeBgaBU)*CglM
zpbqyqflY_Zb53{<HdJQRV);SEqjtvgm`S8pT)Iec<R2gO`y4kSsV$&K5KZ`PaP79W
z)}h*kOn&*HM+{%HK?>VDG}nc|^6JlTt9;#dwHd*?d2$NOOX81~QYx9mPA8S}nYf4D
zxouVt1&R*~SGfyyc({87YnUqbCY285zB|78FLqIk&*$vAph8>pTdm&n?pd^11<QlA
z^xuyz6gH(`5E^)lKt`u3GHYZ#SWN?6)EnEjqY<9Tmm4nbXI`^-ds>1=3PF3Z&fMc#
zOXnj>D}SZypue-Np8r%r+b$uaTV!MLVXTaHu^OEds|LNQq?>QB9PhtydT~^kXjEpL
zvb^P&6j_O(giP|l$i&o#&tFzIclN*kJo|S!6lP#yzkHktOI`WM!Oczb5zZ-1mQnW*
zYtE?je87I|KL(5`yH!%f^ST$UFJHgw9UOf>{c&DQKtW+?Fp-q()6^sYO%lIJKB_pu
z>OV$?Gwbl+4hyw#mvNxv>R_S4R6Z>Nt;FR=v*zz(390S%p3B>g@i7t+(WS}ppbb+M
zAmh#NDSm7YgV}h!FE>aNG_MVln10r3QSQGPCOKPc|H6H|HeBjsqicZnh5qkw=}#?}
z*O}MdlX0$dJ84gmx-Yxfb?;zx{M*UiweClkwH4_I^a?pHP2W5+LT+s!m0veiI+Azk
zHkVjX=2f7cS2&x?o;tu?F+SM@EjA2rr}dNK9Wm$o{$y@fw$@{9qT#{)`Vk4Gbed~|
zL}>XpX_7<0OEB%)Di5j2avg9;SA?T}f7fXQ$Rub&%3p@O3K0}kv=dko(H~c%jlUXs
z<!{=#7R$Bxrbk@w9%-JWH0ME}!bO&!O@#BOjB(UugM~2+I-P}q!?b7uq9=z0q7_kn
zJOL8cK$`_g%6%+T5v)h^!lj5L9XO2Mk^uiQ*;&lWK>XTwS?Rk7c4fcX`0-2HKhiRu
z8Nukg&TB-rtmG5$r{P1y(gJS7tgU^aSr#C1&zy@eoDQOZwG>3FJkeardd*<&Sz#cb
zvYUcXwWS^u9o=My*hsN0zlzYC_JAAll!9RTrKOc(s);Jpg{{@TP`H2@Nu)g6DRH1O
zM>28XvNuK1f$2x9>s43yCHg+^txj;M03YV}QJa@17*twoz@In1{w|qU#QMS4q6uvF
zod_;v3MPS-OYoQmYE{f8Cq>Yi1pG*r(*tT$9RVOl{_~Dpl!%}PGpHh}5m{pyGSK0h
zf9Bt|5b#xuNt7O}gGd8#NrlFuA&3fJmqN}$1p30c2}v7N_w4n8><YP7-)PskzcTD{
zD93pb+{{M_5hQYb)-i+h>Q>i~X;eB$E)58k-P<CgqQQrw-K#~d6Bd6>yqV9K@gO)g
z?qg*+HD((`E8!XT1w`LNB0%)fIGrrhLQ%!Z8&W2osrvo^Fo;ilkz5BhD;1!Xxf9XB
z!s+tx1oi-jx}R%3Qw+&-OS}2A&O%p4Y1Uq4IE<O4o>GYrEOI*ljJ?_$1EM{(^{9JS
zjntTANgswuO1JiYM$+cPdg09`$S!7jOu$b<bXNDhb#O$z-roI%f9net#HOqJEY4OZ
zvvFX8Hv*lG?m3#J?TN~2d`Z2v`>XZ>3k*>aTY0nVCrB4F)n{sJx&8dW<?ZjU?6W_b
za_Uh!6p12$Ac(6}odk=!5=6elPc7@fSx^9w*T@jfy$~E#b}1C513X_h)Dlu9*%{L~
z!!U|?q<9bwt<gmLj(w3FY8jYwMgse=DY5|=gQYERFnzZtb_Wa*I283S{;`vQ%w@Pq
z9W2%3QvCWQa*quQtlfoz*h^)($M6|6^!?Wuvq=wiad;X`I)QoYEB#X`GDz@L>Bs4n
zSg9awLYH{YHe)alYUzsjtgFrWGu@rUt+P+DG*m=A2d&}pd?!JM5?hBj7%jAv3aY}&
z15guC$8dd|BPi3CSzpi&VS-wWhz!X)Q9f8t*vycDz~UA7@A;?f<aj_|2Ghe@7ZE9e
zDFrr%_n<r}BTD+q#{#J5j5P77>{v!AjG7hf^%zDb#<+g>VK9vw3v=q(9R8suJ}(rI
zE%I>7G;76|R#q59TQEH6`fn;X00)#y`Y1s?w-P*_VT8zxPXX;pz{G}Zl4~bl`*bXW
z*>IUiH&()bploa7IYD{-`{M%3MqZTQLh1oMB7YYX)tB80o~lDbDHmI~n9n@3@{=*@
z%RocMXf<n`qlT|PW0jiU7B@;A(wTvSo(|7kI%J{dsrV{}9C2B<Qd8eEA$wSWh*grG
zZTPW&K$`!>tq;*%5T?_+G?G4PTA3ISTD1q7!;PEWw<pG09GVToX8_l5d=YoUX}Obm
z;N|K7=6Z%eG^H?;oSQM6Q&FqmS*tI_t{f~Qr#r_zz|dMr&<Mvt%Q}lXl+!c#mHj|E
zh4qwLW6BFrg>YjdZI>P=B1`?Qs|GLb=HO>F^@)soHT_$DRhLcas^z;cPHqVZn|>Pk
z+}M7T;&=2+w0kvyy6pi+z??-;96wj3*#^m%ohap0+ZA5hz2NVX=C}CG{RaC^9SB^E
z>Fi7h739NdoBmIC@8eUq*g)`3AgN5|R#<PGmR+q2`UFh=5b~{!to+>JMsv?cgo6k<
z;$rl{m*c21ZDVZetUXD`z3n=TwH}$KW2q&wZj)3XqVoV+L}VIcZM}P^;EUjsQc!w(
zx#R3!qOlb&lmr}j_a}yGEXj5J1ktH3dW4v_nFBD8z>*Gt41qeF++lv<-tW5$MXF4U
z-YO&3CGrv-Qn4NCD~Yso@_GGerp+O3pg0y!C2Fa|CJrCn9p8P>4vnGPx(`i=X^mSn
z?uQ<{g#Xn)`tSO=7Xv$R>?ucR!Tb8ke*ylwsv%O!`?f6txJ$q+ZrrpndPR2OWn@9I
z5sjkgs&Es=s}I^#xLv;*-^?)!5^84-f>g+*x6!zZwifW?HdkY}UcRFXPk3N*QN=3$
zHDdYZJV(T$M|KWw^d^-ele+nax9-)?r$)4~(f4i}JP^>gpxmKXDtn>Zh8myyr#R=3
z;%<`#5ar_7^;Iq++&!-DGR?PR3YzhroGO^t<-ot>H6aE$x7v?sgF-wvlci)=EPAAI
zh+0R8M}@#Nc&o{asb7QM`vb&ku`1!H*g5Ih*;*ye;-T0hidx?jnk88fDYX6@k1r2H
z#Z9SEwbCA{<u|}|kNaZ@q$B?|$v*AZooz{X!@fCvdcAh7qGRkwKNJ%JkU*)2^aVf@
zUlut0cR8Ev>k_}jbha1_Wh0R_OAqq8@?H?49z1g;)?Rnhjqq7`H2C1N>;;lk_j&4S
z^Bbp{8W}g}$ut15aDq2nt}bF)YI;U@CdpGZyMA|#G(0$e)F!r)Ccz%bb?!=Z>|XIN
z{pB%KWf3m+O2hD7Rdl`db;v1`!1P%6$3=(h%aihd^Zn8^=O)vCg&+O>WypW+2$pp$
zQvIspf6-jx94O}01ImUaL2T1UfHUS`Y6lX7OwReNCIFnRAmBURePY?X3=vV)rV&q!
zGxRD23D5b#x!&S-UI1?GUR^xrA>3>DTDWa?>*VIGp8>aiNsKTQ;|iEcLR9G^042}R
zd^gNXXZ2E(+Y4zlNDLAs;5HHrLjqX>5JS#F*%Ss}46GXuCN5o^Dw!kdF;p5PMpnMZ
z?O5vcTfioOv?ggo@8*YM?ys<wWPw{=+JiLtj*H?WOripxdYra7QNK9p8n@>Hw^0md
zrRlbbRQ5|#k-X)eA6T6*47He<Pw&4gJ%wsK#q}@K?w9_XojP_Xy>E^^`n1B^(SIb-
z^Gie<*q3_g=K7J73is3lMvTK$0f_34ou3#Ype&4c7lEZD>L3y|#_FIst|<otX2b&{
z%wcbwSkZtPoO_6P*6)o%lrl`<%cy{;yOTibDh{xyNd_8mE!`wTN^r7V0<@MG*5uM(
zw$mUa-FM=u3GMvwo_kgSHN7Z3Z4n?xdTo|t8pJqp0Yl+NiprlBeBP}5uzC9n&z}2w
zU-_>vq0br>h@uMKoDzYNajDDflTxCRGECV|h$&kL7C*X6*Q3fetmNh4!!*ioa!Wy0
zPjl7X@M!h;RESS~UAM9S1w{wd#3Dokl7xUokv(kZ_%Ag*F={=M4q$txPZD89!nWGY
z)jF&^74I8T<xcS8<T4o?K^!M6lbk}mwQjNFsUt{0D)L*Nt@Er4U*Go>a3Gl5YfDAw
zn9}2n?h=qQ>rwy_Q=N4?cM(UUN?9{K<@8=f#+#a9x9$BXIr$roErsf6l4Hwlr_2p!
z@@*HB9{WwQgS)Oiqz^-3)|$JFp>Es)d0k+iF|-@U%AOO|A^oO(5Ivq}SoKX09WT%C
z;F~61x1Ba`yNlXedwGR;c}Hz}^UZn@HhnU^e4lK_#Bci6Zu+%&-8s|u>+<p++4P^<
zv?qBf`%@Wp#9fJ}@_jRQ_bu|N5im$yJ0OS{4AKRvx@dOZ3Q+$V`e^e74mX~Wh+&Ia
z+sz1yi@T2-JgzoO6Q5&__GVo$IV24-pBu_8jNp()4H^JK!~`5=&0P7FXTk81=fK0C
zgS<1|M`6riARnC5<_m!H9BeUsvmg~Wgf`+y$9+wcu4c`Co+><?Ve6BJ1ZF2=@=xda
zmecu`Y1V=!V<+%ASmQVY;~CnG3uL<ZW!;9JuK+i)m3$_Ghks>o1K%r;=?id<$Rra5
zpVsb{rMvrF*ZlHkGLa8+QwvI$@mZ`o9$tglt_se}TE!<V2&edM=Nc5IaBX#`)4tKD
zdQ*)s88IMqB$4B{Ux$spWE_1X?Yi!O=$J_sMbY+9B%%gr^WRDg{odxsnej85hG>2U
z6eZ8VhBZxkz-?pf<v<q!Q&lo(5c&K$lUrSZV4mO3Gp^!1HehP*t)-#VNHgPQz0$Hr
z?5BFx>WS6rnxJ*nn^~Q7yQg$D)pYYS0?!OmKgOq?D#CvE?Zo*q9Q%9h=BL!QbMTZV
z93oS-0VC8r*S||MJZ_)3fa+gw%uP5^-AOaDX^A3h9?=W^+h(3I&kfmmRsQXF#EwO=
zJ2Zhpo0CZgqp(vkGl&c^;4zGJR!n;znaWZ*n;mJp?=S=~ddC}tjS1KLbC42KCCaQh
zBQxfMGQ~8l^<I60_GhT1e)9@&=%%+m;$WslWqvZR7t${lwqk~<@`%y_w48v{otVcs
z59akrKBccLvSS~rzD<1Jm29X}DqhvYPtWyKzR$2(D7I1mJ<LAC{$b;W!Z4MhozBaF
z8Wu|z%cByV+qo8wHhQpz%BVVxjU5|4nbPWPlLYFI^f*&GfZ1@iR+x$T;!KBA4^4cX
zUpT>VJoU>5XQRK<7e)>CaAd%H=DRC9Bkvmn;&bd3H)io~XK|lWZ)MyFPE5f%29Un6
zIu^`!3p>ur_ROlwdb4J0IEp3e+ird--mJ>Cu{L7^BnH;FrmE%@>SqT-i#n=FA(JwZ
z@)9jOJ^uZ<%z(gvMYg;61{R0H70H9|1~jV#N#RY_b*fM6XXz;d4yVFSF$qc2XO7Vs
ztPk;95Z8ud9nM#Oo!3*Ge$lVgjBBUxa-`nO(xAtDUCm2V%PGu>NoOiRT40h>wej{n
zWBWiV`XGnZdL)JWhvXq>E$)Y;tfc&WK^$k<?B@n!VwEH?G@Dd@bH85auwbNMVglcn
z63DDt_?sSh(Puun0bD-w+vOQ^D*N;#qp~Do_epiTp)4y9fZ&cW4rHz7ztiAk+QqeP
zhrhH!fTfO@5d$wu0cMYI9op`IM-K1sg_$V!4Q7`|WkJ<Z3yhV8RP}{l;}4#xHByrA
zG94GyR35Om9vu1EJf65hHyF5^ILMV1@PM-L&PoitUNjN=*f|cvT)`%tzOa$IFd&Iv
zmJb%X8iGBCe_CJ#TtC`3*PeOB%S0;vZ{ia7iC=86Acd?kh7~)@0%3(mYi{N1BKSQz
z{I^KC&F&-VgGIroe7s+u@G{_}uD?hp@#)BwjN0Q*7sq&EODoZQC*|hyg?9w5;z99E
z2hgPpMXeAe=TPHw6XnZQVuMk#eaMax|B2&M2|WSO{tW0Y3ZaTE(JrM+<fr%QQ>l1*
z*1R;XLxvf|z`I%zRPNkU%R)`dSHCXPr@FD-t>AvwbRgQp(_yK|vyA-El$s#G`DBGH
zF&!RJCc%wE_=w5al+L49z~TY}0%b;5SMFBX<NpG658R-sdrG}wW}`8Bf*3hM`Gbdt
z?CBGdY~@mtf;E+E(orET3+`I#f);5ZB4+NFv#51}wWj_NMP*}j0!~42-J7?a39zpD
zsMT<-L8mL_>IWeWgX2IT+1}av+Wy+UeNX+HF<vEMOQ{L9+zR!3WL`NOf|AA8*M2c4
zziv7jhD9i=TRxMxA&iQ!v(_PFYlNkJgz>+tWzDMiFdJ9eD&1|A5po+c$V9ksy=k2A
z5>&*yjudTu+sJ7HTldq?hRW?{FT?BJ8&6_@FRWcXJoJ)Rvzvb2{c+EFVbdsaLu*~c
zz~Q5gxV;XB8qRSqP~m>)d~e`<Tu+a#J3aIsFChGT@44!)d!a84G57Ds+>c25Wf%P`
zqVQK_#Y>ay`%$g;AH4phS^w+7=&$JMUn+g~AFkbh^zG%nSIW}In?BMnr5VMHX**@l
zU*h%p@YJVQP-1fHUh3kfK_TRTFd#UHbk15E>v8I<*osy>eH0UM(_aJ}hUt1px!?#J
zybtJ*N%l5wQ@v6dao<lb`Gu++KmxtxqfF_%?<HAtPrE7`L!FP22fj)dn@(Z@J`hx`
z8%oZ6EfyUYk$optPw+83jKmH(p!s;plN?VF{cfo0gFdX*OnxO6rY60h8Y8xqYJtrc
z%V#yShz!GQj=b{ijBLdx<cFzNMkK_Ah!;dxXCtEQJVVoja3Oc*j!8NiG6n_HF%=iU
zii%fZ)Vitvfh+$+uo`8u_;>N47xNBu>Y}Y4j>DZ9&T9DkUs!S!Wi4UMOIzL~7x*Dw
z<&W}J*OdPBEhHd{OmyB<_O$UNq1vKEhWfb2YPw1h1<UGu8n`bv?LEYjE)HZ~?>E<=
zmHueH{#wWICk%~f;KwuvzNXsS=1@cwOd(3zlTe3ed=aCK{Gj@*=AtiA&z5SKQG-tR
z2b!<o%kSxwewi9tSD#J(133I6p|V4$h$08}y}&%S5i^~_rZmDqeRY!Rk`{Gjx(I#N
z7jZe&d{WoG__=p0E-NN1(=L86TVb(`HmJurE9o_j_%6CARjM^sp#ZRm_n%c4Zi`Uf
zlRB7>*&m%0G?$Eze~m^sSpSMnOIgU9GJNCmfMI~a*;cK)mcFjtNw+5Vyhi@p^qNrJ
zRQaQBlaF<NpEc5kR7_^Me?AP>h}du2rkTCdUBJOkrXtKyQ68pM(_gTs$dIPJYt`$H
zP-)*ur2d<K3Hj}uwrOao=(Q}O-s(AZn1MKu@K0~&q18WeJk{GBDW-x%niXT%r^vpz
z*?w|eSqP=4<n&4Y)Eh4dxc@zP?D}8Nw;RsWFABJN_XXg^%u&tS6z35GeLM(l$b9od
zEekNo$7cK@Z+kG~@IRd+7VW((>+S%KlfY|?u#B%-B3oIObsiTiic?~ay5Fd~1_zkF
z25P-4!M|ezo)zl!++!qLX#Jaen`@Z5|0}*XHABJ&z*uCDp4mR;5LUVj^%n3*^RUf9
zo)nQdIGKk-VxQG6_ZY3KDw@dXA#>F|v9(~<NNf&UtZ^MH`C@AIyWk&j&Qf=jv!{Pp
zG%-25sItE8P2bqe!usy<IfRatS42ihQ{UW9v$!VsVQho3Bmj>G`o@$y;dF4nyP`N=
zf8P6R?u0w)48e7pP`QS2#C^sA&6pdFc6=m^)KycF_{b0;ybfOb@tFZ}#r!+;=N`@v
zM_t&_H6{Mo9k8aG>4eQ5?_y0(MnAgY5D%c~<*X#!pr>z&3&1H8QAkk<(d#_OIIIqR
z{^MQuOt1F_J0oJu`H$JCOHZe_;)`B+?hc)fl!kC-=YrKqr=sPtuk<mmBEc%(Jx7d1
zs;o>~veuQ{(f+dK-%tE{g+q**PBC}4axP!SWSS=zX1zFEDA=h?g3bF=xX&zAXphvS
zBsrFj-=N6h$bBG%S1XRkF{H}A*<BL>?CoEu7b8^<y_#&Gd4B^V)+~B&a?#)q$-xGh
z^Mjgg&uNaE8cdsT8OA3F{B;ycV6{{)MXjBgWGqV3>~wT?1U!yNs&`d8Yu7z8Vl8ta
z(uweV1y0xL!tSacpG=Ug9)$OCMfi$8A5H7D#z_f>yndh%0(?2cp$5k@JH(G?0J2KQ
zl^3XtUc9C7xuq3MmLhu9@@>B*>LP~8G;u5oM`As$f{tiT*g}&ar<4WhMe*NyPAiy<
zmleLXM|7>(kpDl3yph0T;T9ty^O~`i8;>posX4;^@gclu$!K{K34!|Y47gS_U7QOQ
zC9PFj^~Yn0;(sw@@F^8W0BTU1JoQ}q)Df>yzVP|IY9-a7Y(fqrs)r3J9VEu_lFAZ5
zHDMcZm~o97@ZOYj7;I~)^RV^%NCSq*VscM!s3k+@YI|()JnfSprYe%9%@rnV2RxJ`
z2;81gG2__N3sj6y`rrr_`0-TOXjU;(#*vF|T-bng$a}LmU|i<ET0|(bt6R=&iD!CH
zMnBM^ou<%N%$y8nWy5@Y3PY;4+`PXOtKu5@wd&=UzD!%|TzxYNI+mFOpt}4+4?MYq
zgHDV<;jz4RqgPJmG4EO9;vF*WnlEB{aBkb+-sKoh)ih|BXi$&t#@iU0wZOBPzy@I?
z1;dL})yRc>CCW`Q<qAFIh)XQPIc~ntxE8StPcY!niEZ~(P5w_S^>Hlay9P^gg`zzG
z%BGmVjHh<sFd<g4tJOl>R1IwJG<H)tyC=TDa4qB6sg5idufz!wo6Deg#^YYA2SU?O
z!%^QF-?@4@2fohXvP*x&jX4x{8bVUt-s{&09as7KCiK151>}|pCvZiJsng@^?#!_G
zWQJM=bn;2bf1*GLo#N2%jDL+B0=ApBH;etRT<37%e`y``1J0y)Uh3%PvR`XOU>{z^
zGf?hTM(RG!ygBgH{EU^n+;G7ia9()Ve?5G8>^d2e`p`Hhd9iG(xb#V*k6ZPJ*p~^3
zMJ6}Q|CL(4p5NFFD^&deu*l8vYKEzCyX!e%si}UOrGgh<@gpJCop-}WAKt*-VwOB@
zKulEu#r#QDqUl#D?UdLnL^s;os=9XZ6Y}7ETrn+$p!+69I`%X2^bt+0=dmRp1{rtU
z85X-QQ0ab(75J~Z8K+eVevrmpZVKurL-+j>*_&fZ;s`h&oUh0yRa<6z%4_*+g2@ZZ
z1;5s<26Elxv=G4v)|M?Qp>jyV%C`|dH4<8>pF!28eidMS`7cRV6^{xVv|1<={Vv@i
zrHglmG=ua!s;uzr7k);}S1X6TAGX|;D7_vFN2{2Ug@Z4)mN}?=Q+475a(ox89&H-v
zy8fKXdk67C&)@DHtsX|u<zt-3f(dM%03f0XgK!T8y!fpPc4a{*6vNDYOAa76F9%79
zDzCikaS(<O5*UrHqZY1C@T%tkIgtn~*~<`tIfJ|QSRj=d1}b|xb--3O?rospErQeL
zcPzKK_e2~j+e8ALzXILARO~Qda8!NhZ0$rWh*^J2v93nk|K4z5deashT|23&E(hcN
zy9LpKLkS@^l?+W@##xp&F;Of<tB@FedF%xBQClI_9f*)V#L-uyGP+`VuKoG_-epGT
za_EG+(6V1m3tUB38+@{1X6zEYCIPQ=;$74D7WqDUzpVhOxg%7aV3T<bBfah7P5n8c
zgsmP0W@y4#<HdX4Zo^;Db?dO{9RmJyzs`$l*>MawGP#>l<_tC3u`WEb?U%QQ-iS8b
z=aVv<%KgyxTtC21P20=?rw6sv0ouTqf$VecPo0Oe)x4bNt2-_S1Qc2t)lbyU*`+|m
z_RQ;FU~)mF%V3^U01acUo}KZJ_E2;NX1K|DzJuxUV?WcPMl2u%`O7qnNmu8gl?K8k
zk7kq6;BL=yQnon(xGmEYwWM(MW~WNW@3MgV!FNO!sXAX`Pa9-hP%aP~*|NdnSbX4x
zX`fgz04N!sv0r}&!75x0*kH{7J5Z`2)GC>7yf}SlQWAsiHbih>99V?7xedyEO}$?k
zegBEe@fK^R7zc;jFv_#zP_>yPf`9xORL(ZP+AnlZ_qMZQGSv2z%sC*C`83CL{eyY?
zEvnG`evQqE=6l9_Sb*45s}V!#(roH@LHTRJpzTPMtz8mXR%m6@pxTiciY2u&TAE<)
zj4==A8;MY*B<QFR-seRe3oh@{Xc}r${2OKE@4>valEfzV0D{klG2ZrzoSgZ5v7m`M
zIFzGHBKZ=_!nPQ1@8Le{IS}3$-hIbaWnio^s0@gN#xbLr-@iGB!!keKxiDF7kRx|Y
z0}{vm{cg;E{y1>2<H7NrhwbS+LKGZSIUNK^SqqViCc)KFae8;IPN)CA*Ex9e?){JR
zUw#eTe|s_>z~K}K5ox;ld^jDb+d%>Fs`hXmKZFuY2bKUIaU}L@!HG8(R@td}-^slV
zPQAad#!nqNq|etCT^zYCW*9kQ_ckQ=<w6_R{m8M~*Fv9sT-a0*qa6!=8(Q*f;j0#P
z)KEBISULORmZ4$P6kaV%$Q&^1SpuLbY2-k3K0#6gv_EJwdOwd50I&H&z^XwO)aly0
zo?^NmRleYTo)h*mPP?WyuHElah+Dd}k;4oa38ugVIM%yE_@QEoJl_T2fSbY!HNw2P
zerp9F$OzQwKBsT`xWnWqu1#%*V;#H0C-t8<ah3CW0<02xl!GNv`FTGxLgNnd82^4?
z$Rbest|c;{dK$#E{{-iE?Z2abbZG1v;+RZ=-c+^J5!ug&rsGbYZ|Qu6ELDILssA6q
zv}tE7d0CY+TMtwiC_1Vl$kYD~LzoEUVM+OqY4PIUjDih_*it&>D+Z$JV?-KDm%gDS
zK~8mnhtAM1qud;aZ-K|@pooTnPzZR2cZuaKtdax|gFNB}(is!rj5O1JKvHYob|LL6
zOFmU2Io3lMzhHui5z0VZ%V3Bgo~Ug~sbI|}vSw2AU1UNoQ&S<G?>1=g(g2J~dE8fB
zC{2BjzXNeo`>81oQ=E=LWRoS3*Jx)j%~K>$wK#Q?deEE{I*1w)Uk=8^?0wd$lfr>5
zd-a1JgT!C&MFD7<U@FmFAVy^dOI@YQwnu)~JwWeOP?icrPmb6wPi!w@(njNxrzDX5
z_=+78+I%ik(M5N8C=-em5ah1fv(~+tpl7j#>&}qMJ8U!z!V82EulGUZ*V6+5ZH|n3
zxCmVuTYZBF+`NyDF&5`YOXnwFY8r--L=Lzet4Tp(ri>pKXjcz2r;SxNAdMI;9dXC*
zz!v5*N&LWurGdC3f-#Br3ap6@l?1y;XC2)JI2LHcjUrRapzMFN#Uqd<utB~yEx$H{
zF491egd95~o<$1D8j>93ll_b=v#^zWnXd|L)1&H?%@KsrVRPv^i+4yh@kK@(cxFbm
zA#)laMMt8unrKr=OwsF(woPCt<zYt28ie4EnGM0h!+X|1#Bz(FkFj%vaf&LyJ37Wk
zFFj6C#~nFRR<GuPOk=Hnp{xe{Iw~%tj`w!~2%r_4jV}!{02&|6nOcmZLkvzw<k<{B
zD3c&uA4d#%3o`;LGnP49_Bw67HpBo1m}y=N%d$0%EV<*KCmHU`nGTqYx|EvK^^J%s
zf)y>n?QKkqK>(i-u<At!HDeIIR52N3#dohseA}degNJBc$t}+@IvIqo)x#};#6_?K
zK~+Mbs<~K1oJ0^}d>1r9gh=|-nUn%J;`Nc*`W#5&TqTjbZqjZ>rJ4>_rxDVifUg~b
z{c+|x0I)7i1MgUj=2pz}C=>no5!U<>%9~MEar1J>`@?KCT3g8{{*qB1S?<A)YZ$2;
zEEA9rfpi|W6UCCi8Jbiy{F29b*|hS(^2Wj9@ul%piP?XM_~?-Lp;*ZCAaI@pyvGJU
zES(HG#h_Jzz~YY7^`us#q?`yGBVdw|jx2FhDQjZsHUu*#q71eKTMv^I5{WDrLuY5;
z>CCvq1=A$s1~vO0Wszu_F5J^qnj|-r^rMH0?=K>gCV4BFDA>;AkG+mnwW?)$FWGKg
zCiHf-l}8IRvP<AO#&G}1e=5A3V&IVe`^`I9IKwAwx@DQ=4*a$5WFxStU>{}q*7luS
zOgfdM4S*><i_8Jmem}s$KFtvy>JKK+W^f&q&*cM<xEUi}By+I_OF${|vQ+i3$lBV5
zNg%_82#Kd1zkd$9bR29rLo&>yjZ<u~r5V@h25e{9I2<w@qL`$o8T=#cxD)88W|%Ak
zARNPKf8*1I8K+IV$x?P7ZnvveL}%RwgWZ2;kNV~mZsqtJQ~UfaY}w_Mo1B&}Bg$Nq
zP3Z|2UtPQsf@kzQDZF#U>Xe|<M9#Tp2CWp1VYW1OgW>rkZ58}p&$vx`0>NIN`UJo;
zBI^8plQt&eINu85C9{F04Puu=eAtki(EZ`o3Tl)K9Q2z$_;*U85_{Nitt6J+XxTxl
zhst+6ag@oyEBsU5xQh2pqFVTqG+;qa`;%m2?q0XT_R>#hVH|3Nii9IhHh(Uynk$1m
z6t@l2e<mM``nlTGiaM;goQ<nnBWdZ!%&$4(*-#9)2Sp^Hwv~hxt{c?N>2SC*qe0*q
zZicu~G#zyLBD+BeDa5S!qGo6e*^#?1p{1WQW&oDg)D3zWj+Rn;sn58OdSOoJeD&$M
zrn43C({PoGSC*svspF9^QBEdC8i+bSa!k|94GeQqZ|7ZThMeHJ18$ZWQA!$ooXR#9
z&Q@41TR8?IjHieEgNJ$g%b2I)fOsd<79Tt_{9Q|TAr)b!?Y3(Suj{#-t4Tf;tQ*8K
zG-}r5Y{XHv+FuGNmnO9n804w^=e{tz1CS<Vk~9WKtT6xTYj#$y9(4=9tCr+mFZe)Z
zT5R>G{AeV}arS<~QZ2?W9U9Adab{$Q6$l(IAjmN*9IBc)7ha>ex1<MJz8_RcBnVgW
z0!(U&b~~*mV7K$vgJh-hAW5Vxyu23kMHeoDS>-0&oVV$!3cJv2lJY6BU#L=XCo)kn
z^52B88VGUIgFPw;2ko=K{3^v^7J(8z!Z<H~96>}j?=NLZN8mAg+%zBCifrT36{<D2
zktum2`*XSvFIyz2G9~{zn;7Eylr!W4br<gr5i>5pMwW{`AU`)@lq`pX<1@usORJ5H
zYH~hThZbW)96V~HQtP7D+Lvpea`7<nNSSan6r5C=z6Hfq@o_jv|F`@O<4`~FxhJDb
z^tE83+COsGi4=*sesj^**YY;YwzPFB(U$|?SOW#jtn*0YVE`|za+WJq%x)~v>7TT5
zkVo6uyzqc@mAmBgDH_j-TUe1z?+?<x&m<K0CG7vzkuKbUwl`DFM7;&+*Fp`x_IECA
z91d|8Hig|bqW^(re9%Ijuy*(zd6(6R^Fia*6WOUy^cn&5osfCna^-yL1!J&NRlN7E
zA9Yk*vycs%3S6gSC1<_ZJnSrQFz16P0~nS99GP4p(=BVW&EL`TG)Hn`h!#T1hLx$W
zwD>kRM3()uL>Bzi43?5=VTXEFQV>TJMaYSd&Pl92mJDr?%GwH_lgDoO!cG0`!oK=2
z;&a%Tk_Wc&-z%S6d~N)>^MKRidc0!MxPq~1s~xIcs;O1?+X^O2sjHhKOzuuXVVfaE
zM?aL<ne%wPX;Q!Qos$%;odPW>mzn{++k0*I$3?`mHxrQVFA%Z;tS@(WCtk@kU&#RH
zZ$kMt`tzGLv%jOqu0hc53(>tPKIk(r)Z2sBM@acMFY_#)303L4PtW!oc$qKH&&qq3
z8O##hz3aHW{&<yOA(i>m<mLUnb^HB|f2&JBiE&BEj}fZ(@pm^n_P-76-wxm3-Q3^*
zxqo2aut#-pBzo{&IdFpM;D`OeiPyo;&5YxF2dB9Qzn=wK;SSCQ4$eOu{C!LKqnuo=
ztJJOwt)EtJTubkq{?hyn*P!_tdi`qG&DfVh$)NP{h#K>M1BbL%)E|NITm1skg=WZU
z;cmLv!6c3AAkB@)8{%7U#<>TH-!)o{g5@uox<A!*_h)H-8|pSSQc*XOp01dmalWL^
zcf$jTTsL5vltU5kkdif(mzw<js2lIY-jW&LN!|#4WkPdz$maNtmh`0wO&DVrp(A&T
zRIm8?k;Xi+R;zvjgrsQwUTD2&g(y4*!HjA%1HNm14b6QJ()5E`g8gXFN88Tv=pa)Y
zTRbk<7MxF0CDI06OC_)wIZ4OUMOushaK`hUPZ?nFs4%QxbQt5*HJXDTHiqF3{``Or
zq$@9cM)T<EDt;@1mOCBjDHHXTlY7;&!;SL$oL}mB4(a8kuABpYz6TtcVEeVA`!R}F
zUF*|4pEA2-hZSz?$kX&2Thd)rLOd=W5uJqjnXjJ&i~WjnK6!+r|5RXjxrueI9+1KU
zvRwQg9baPM!<<oz;oe6fZ&EllzjRp{u?G4)9;1psE=ZD&NSeX@pgE-yUG;j7io8yh
z?eaKB7@ntR>K|{6E*gH~ukbHgYciY|M04Bt@Sfq1N~vn7&6Qud_kW|W{t{<kdT?Ue
zM>|%h_d|Yer1zZpKTETL-LmZ%vuCGcft8VMdSkeB_4+^1VAquoGq<Xk%%{d;ML0k+
ziqv(1gc)JMkC2Q_X??kB?&bAJ71V@Ub<BSliyfB<%p7PbdP4Uw!f+YD?r`mMA8~%c
z$>w;wZ^!(r;#KgY-#uc{u1S&H7m*BLeapD*1Zd8C&mc+yj#4%Ep>HWMdM7Rs^n0TI
zTr>7c?c|I*wNv;yMOa2&@LnQ{SNTJb^%eE0w_8>uMq2$qA`|0HPV>ml`pNj%5{B_f
zCSHIrUAX?vH?qpVHLZr;U**4sY$lc$uI0@BipT}2rHk*(YzEp;%Y8QKPEQ@Sb!T{J
zv%_q#$j_*g;n-l8(mm@oYj=Iaj_0@Cng!nE7Iw`PSicXo2|w$KEit@phr&2g#nA2A
zqWrM5<yorMn$KryPZG!dUM@8LLeM7-uDAS7wy68K+wq4kZS?DL*Wc9lYu@c|FK#I`
zf#louJc-M;fC_ElDftax=*4oSKxPXWG`%tuG7F3Wwdy!-02Jh6tA~sfC)Jyd4^MD@
z;ZM$vRh2+LJmq|$E`EN0+S*8;hi)g-48H;>a2K0sQpmp{Eai|av$oFNvKGs?ie(g~
zYCB89_wdq8o!yPqmDqZhla;!!7Yyi95*~u!(uhZwkz;AO)w6r48ByBA)DveY{Q#9=
zdI?Vc|9gj4zW|tIul0yqee09)ut3v0v}Mp#vq~uvYI2g`jS{a*h(6n%`At}b7-rzl
zlp%E)LE|TSkykz|I)88on*PbUlT{;w&DTU!tmU$Zbj+CaZD0~3-FG9IzIjSoNih65
z`-@O*x>)WZBDk+5tI8F`GykQ<XuFR*W_^q$b#I5>))EuapaV=2ToE~@Pi%quu(^*C
zx=-i&wuulLIxe&6@?ox*n-bz*L~fht`%X*H2EANvg0^kdPf<Cvdg(l4fy~Dv??){}
z#q7~x%$piSAWPEEy@KU>2w&J=-)z(xwh+<x>_7fC|1M4I-M_!*fBxJjJ9ywDmI(pW
zW+zTwf|NE4;#Sr2ybZb<Y3@8NA_oxXFliZMX_)oolu}b7K{zpV&k^SBo<e0&?_O>7
zJ+`PsEds=@Sz&Ay3{(N=u>iXi86HJLqHx{hR$qz@09?Yxk!=)fb6%b2!Ai>a*3Y?d
z(ex3TsVBZo1QkS<-DbUQ9lZIUU*oV>;oY||@1hVdCaeb-RZ6~0e4>GHsY)BYc+QQs
zWjGrejfcyUpdcY?>83tn4v$+Vm9%YT8H)%BrJc;6@u>&gA(GE>>F^<afC<<#el#}q
z31XI`kM2sSw$NzNp<-|#fe;)Woyg=?f?plWi}*uKxstj-qRmq^c#Wf$`e2R>^w_Tl
z%v-%&+Kfik?OL0Ax#1A3ku<$DqDr+>EaMh#elV7?t5<UM-rRxax$qR$!$;KxV9Acl
zrqG@@+sfW#_?5AsUV1IsX7+FsJqW1qi5>ZNWk??m?p1?z1|pt>6Ts3JO{ye_W)D_2
zu7Eihi&!ecvC;m3MsfOsd2nQEo@fC1nfNU$({Vj|jDnL&6659SVQWq($kb#{Z_0ad
zcVtAk)2Ovo@TuMR;Te!|fGi?D1X3cTQP$$<ob(5(wbn5nVqp`e**;mvgunlG@1FLr
z`My_&+8hsUf=?G|496nYQnlzK*E11{M|#(j3-zrwY=Z&dcOj|2k<e(_0hsQC<xf0t
z7yHK`lw;2sOL5j0C<w%|qRxF(jrmh-*?ZMs*LU5bfB&Voz&XqCb(P2;6Iu)pkEcvs
zfAil)ZlnX7d`8xe|Dl)3uu=X23|#tr|KZuri}#QI><>D2dw5=84=4m7A8ZfR=Hq|Y
zco;n8uaS#D(DQFkfei5^h-45xEdCb%NIJe-ZT)|m8kpDgRjS4nz)&*-NWHR$F)@fJ
zEbRv3<)C4y4T_caFGE}kT{z0oaf<b2bb;}`JUc<=3JYZn|IzfJ;KA{F8oCTg@qNOQ
z!3k#m<)E~!K5>)aMBDmu)<58WG!Fpc0?`I8qVa1IqRC-%?(Fa87!^X8Qlhp1G)HJ4
zWBd`l-|;Hz&?%9&=ng8lNQm!ZbwCOpl1|hR1goRC5uQyEf{Z=SibSZfyG&Y{(jG$m
zj`?7hkYJE89&&Klg7=xqD5|fNwHBkIB4TOmEH6Z)UNMeTnS~&zDFB!<+E67T1dc@Y
zz;+!jndm4SQTmyj-JCA=Qb3<(1U!o$FqTgT+_7;0z;<K#@3`C0V+GAr-lNSGcBlB8
zg@;rUO3lklzatPFpOz@w7FV*f;M?^&s!3m;Gd7{1eKQ+hbkZ*c^e9E2?;PA|2^6AW
zP~40fJBVg0HZ->k+G<v+2MnE*v$QRG+SaQ9&9st?#}>O@x@laGCI*Xat#6+Cuq#Vi
zclE_Q3FGjdA+(GG55Xqzy_)M!#ZiNA1fRD^v9StA0V>!6U7(Z_YWg7DdsaX#nrsQ=
z!9JtL;FxcWi^MUKY-xE(z!y?}Sr_F_8v2$eaHtP1$;j|3L}R&Nk>{q<OTY~tJh;v-
z{hLA-mwKgSIJ{Ul%cjiaD#-~CjBfX3d&||;{H3vp50AG^`iiUd%c(0+y2J5S&8|9e
zMgf8K>py+|LZVU`(VV^GM0Zu7PhDHe0?@C}fO4E%>{Gl^1@cJ1+OXEsAs9$h*Z)gg
zSZ@rBd(QD>7qA23sKmM~X#m2i=7qanVIUkMxXD~4`9%}~;~P8zQOwAt_W@;A+{D1g
z$OH>H1eCgy!}R{W#qG_FTf9a+4HKYYkYb{zmG2C4KMBCxBrWs8Ec32ODVrcpRIN||
zWID*b$fhdNgSe|5)A0HN``4nZ>-YHnNXPu*!8Mh><zUi-(Qk87$ur%DIWNK~af=c@
zd9T%*{R4c-0G^~d)~)`5C^!4nd5rv<2`=Bku@;c@_-X%91KF=Q=yu-u$khv_q}Dgi
zty}@4J%x<Cn}ldKCc`!GZGj%h2(titp?>dL8<n#i7APul|9y0-D+B8}kfRv$4x!ou
zA2|~t(sjXNuN_xjGC-h*BRU}u`>8EJC6^2kjtO}kSfd&q*#?m9&sbw~D;<()5{5n?
z;Is?$EABj^=oksLmEFoqdoyP~T_nqa_*vO<Y}82xcOJkTC=e(PRJh2q<DhN=1>eyX
zDWPhwz7o3Yd2!{nU&p;;mbb5bzAl_iW|V~WXF_94rIZ#@9xVbLED2EL^7!Huxz_ow
zpLjf~l@51!I~U+<-1~Zv1B6HHDiI#?mo8Ow(9@bNR@?q)n2-NJR*7sVeDK2;niN7r
zIHUk>@aNGu@?nOrudTi3IfrrFx38K`*>)cPiqU52L4H9D6MxJv%{+O0-!2FzwMYBq
z`?Fs+Tzhb|X01JXrx@qsg|F47i@}=6CPxfO{mlYwR_H^@hnn6IpYw4bBUbIB6{LK2
zhG56(hj(~?_n<<5&8wWm75Dbhy`83bJ<BXB=~Vk7vgS9Eq+=i7%irc~a|<iCKN8xC
zgI0EgpIq$4UHl9z2mNfkia2n4cK{f=d+(Vc-4E|y0PWYnfbyY5ucjDnD#~^w#d~Nl
z4dvJG@`B}MFYSI&nz-2Cw<zh^RjHn*GT-b9t)<`n01EiL{c+voFsBXm{L$k}JtZpQ
zJ}nAzVd8Qtm_Nk;X?Wg&)|AUVWIf2lLHQjhOMJ@&Pt3!e;}`G9rJaDSdq$88Ydqxj
z@P9VT|K$X0?Bnm{xS^U3fi*UOIT92h4;3zDE5}^}o<hJz5Md0b`lRO5=iK6lSA<FI
zY2I#oItsi&&Pzlt^=5pkp?^jmjyHtx&I50O!_$B8{QHa5z!FDe6QhU2i=kaOGomDz
zFYrvyoIa6a>;Z7L7=Nc_(5EI`;xaC^H0JG~E8m=FUoI#bh`)})+ggUy%!+lp#pzHy
zEI8C>RRB~G_}B{91hf|k97`cd+>Uvy6EBqM4Kbq7y{Q6?qW}A87#};Nt9^nwY(do%
zJxnShsXY{b$XPoESv|@_jUK{BQ3!^3A~5vIKRakjgwmHxgw&ydQv{YdTSC~ue~;`|
zh6-MaL%X-oj`l(8IU?0sHD8EB-U%k&{Sm+Kt~jWY&=-q-7ZGho6R95|RZPP(o({X+
z!7O~@QI3Jz0aD&C!<(8Ce#s{*-cEL;i8h);@G!w_72<}!GJg<9`=6RW-MsLhH@xGN
zo^sp3`Mn!r#K-Mc#+`ft`gJUQH9$PhC>@%>@3;;TC9z9bf@qi18DL6_eV1njpJ9Tb
z5OP&SJl{>_>LklOk3geSreEK$C`_dzhXLwjP=*{(c3JSzFBzMrMAi<PgUU-&8vK|w
znMoYl9%L!(kd;%GgyLjY<%CzEGsHPFx-znnzv-ldGv;TqS=9ip8Hu%`nP>pBofWfK
z1~c0*@d^`*4JqfwQI6&Si-$bGW;^{QtJ%A}V511+rh_AEUg~$@T*Dw7eTO-!2_!=i
zU~hxo-p-jOq}5<^umS?=I&8i1L@HQ8h8hQrgd48_NQTDTJno_(79FC_W}e%bp{@XE
z(dMS!py~U-IcA-i+EidmA-=PvosegLFd4>bkJzE1)eW`KJptDFLeEi2Gi*=%ej}zL
z3fS_38`LDA$8ghUMS6_9BSMh{F;7a$cn-9=ia&YO$Q3^gj?zPOHOq0gYa`!Z(ubkZ
zeIK}=4<m%b^JG|QYnck|C`GoGz`^@0vZyG#pkfQgl3xxoHH^j60+Dwk=y>}83zNLn
z*e99Wr3~tf3W`9KCqM=((EW_Ya3j3)NQ$*w<7unl4Zss!V~Frn=>;p2u7wNLiL}sG
z4}D(z=sx|xb7q~79+G$f9b0xweykLQ^Uo`!0|-twz9_$6ULhS@wp?0PI9N8Il12k4
zpK>UY-GS&5L=4LPXsrVot&5P~nfbXMf=L2br>aD1i&d&_ICSPA2sQ&XRZovgnzBPY
zo^bE7mfJRg+Pox!POiF~amQVPDzH@mg<@BCp(KU)<>g$)k?IsDY6W4KFcwIM1}esg
zh*3bCI6&qH(6bC%hC|6_Yo&s&8a7HzRtP93M8bvwDsTb{lLULMr7Gl$szM}dS|k}%
z;g2)Lc?~mf;A)<X)R?zO{4j#Fa7iv_fX-e45?Vm+{VWWJ+6Pt4x`H4UN`2vKO(U76
ze22>`!xYWZF#RM+PzUlMv4N$up+d6$S=U8F>E{Lp3~i57?eoucHSpTHGrmT6-LBJ%
zH?cCG$ueURPvR~&Mr3gcv&3Et<kU|hKQjc}B=LP#oa;~=;Vk#k2~<nI7p+^{Yht<p
zm-@aV(dW+HSuXWvRSG&<M<W%t;}e2Tx&*g2i(IX<rPOjB)=HDFm>xz^uSv5$Xr7W+
zj_{%TNCtgskvYkgUz)n|wxBwV$voAh-ENd>cwNp55Bg~hSZ}ZMv{!JLYM(r5_YZYP
zVblZT<mfDwltLA_|1X6^Td2z6kmfoS7_}z*Hj>5lj<{91&)q)|Dn?h%P_-+$atwJ$
zM{YP-C3#MdH|Zl^{Jf=(Z{zizi%#bxp+|pA^jSI*Nw3uJb@)27UFqpqX6$N>RbCZx
zaY%R>g`i(yRTi(f>BIf(>W{qPLnUDk`A;N;YhXnkaF^$wmv@gk1HQ$lQWPN{l3ygL
z1$RNqkO~Syo$B^oB0*hx7~qrAr*_K^Uq66!JGVVfu&Aq3_WGs_Vrl>4-M;tjtpPD!
z0zzLB3PmtB9xFOR+p1l$>KT|6!C9t47OJ14_U@JdS`@mY*Phlg*oBcU<rfsrLq)wn
zY7KukoBhrq$QiP5gI)UJ7V%nZ3^Y3ydT#?F7_IVL*P6$lx=t4feDf|4OLlGQacI&I
zr=?={hxTRl9(?Q7dc$$_=Ys$94};I_nIYD2VL&2WPYbBsXM^pdne4-u_1p32Wf$=O
zjL|y#K{TWlyO_R(2K2xb`vGPBzgxB7Rs;590|92b4n_P(Pi>AqC=*hQiUJgC3gq$}
zq!Jip|35^Xhdb4O{P#a+ad2>~V{`1yu_B>kZ;pNJLw1s^jM6zAJF-{Gu_a`u;@dH^
zLw2%>QmLffx!u3teO>n-@wq<l>-l;<ACDSPra1EE(MWR0s3P=5YSU=u<Y?BBPWsVk
zuKZZO<ybg)tnl_&Y17zUcb?+Ou?oa^rTqB6&9Ul`@%r224+Q9Hn~=A5b#4wJQMmqK
zoXMY^aR|kP4m9BsHgSQ|loFZYm^0C6Imw`I(5+@A)@q(;iL5KoRa8gTAA5I`Es9mG
zmb9&0O!0RMlBd@g{5H)qyUb(8Cf5bH&qz^SkrqOeG=Lw?|5^?7!FkFP`BD_~^263N
znh<{td8zNjf~0PF33<s0cY8QwCRu#w41oR00bGUyPs$^|InaM63(v?SU&Idl?6fKF
z2P8IUg+3^+{wZ>ip52hA`(W6)z-e<lHYvfJvN@_MN3r=c4^!58^><g{jDh{>TZbWl
z6JmzEeFeMNC!^n|RN4BfCzU=Mh7&{MHXgu#qUazVFxbr*XAdJ)PMA$tMdAw##&MP{
z9=TP|q*4psEFsbEmU<Evya;yEju<(Kjux3k0<h?3#h|(XE6!O85af>g;${0;koR&E
z9<zMir}CB{ClmYNWrDp~nf-;RDjV!Vbuw+C*viONN5~Kd-tiu|v_Q?Mb-T{)a!*3b
z$H+<Zi)-~8x4?E64e!-EQTRX!t<Z0<*uu)zEXn$0x3)e96`4ik6?)2SrO73?jkoUH
zyo850<!by~Yx*QG@!^p-U4kWCTfaGUdUWcb20Mq}Tw{x~OyeZXfOeW;CrD=O>T8E~
zxA;A`tS-K03-^(zs^?ur?Bc6aS=RYkD}VovF!ZggpZEF}h57*YnN|0-ce+$8=DRt|
z54}HEw&mAI;N7kD4zc%rr`}}<_y@MhJH6=TG>*{^+RD7C>)?Os%JOE_Wt4REGj~ZO
zJ??QtOheS~OOP?x#*ptj@?+b@H8m7%UZ&;7tkv|z?q%Q{OpxVVm%5Nq{#wh*uK(v<
z7xa#f4s1<|4&P#A-V6)$M+Fy!Ua9N8cIp#($`xHC5rgUyb=|M*=A*xV>E6uF@1u>V
zP=hjs3v%cu(#XqmjiAnv(4B5};nb_zwGm7&A}V6Q?Wb=$x`OzA291SZVWGd)Ai1Vg
zAIkFYGQU)aqUJV<{jhQ|EQuvtG=M*KI*fK2ws$V9!#PY&18LR3q^bdzKtHi*&AUj#
zD41}P|GV~I<F&ef?S|8H>~!xBP7V}PLrWDSwp}9{jo-gyq2mM~H`LVy<GC@!51!Z$
zi}zs-(-E_q5wZM{Q=daWpS#)|M~k$iMCO^pthv?cqdpqde_R_0Ol-L(yYn!5`qTNE
z1+%*WujhvCE?>_yqcl0(XiZ(5pM4coT&G->8(jb4$@l1Y9<W0z*qh~)L&@z|PQ2_d
zqZw=zm>$jhycNkRmgzD<GHaSGzgYQ1*$YYHpZtDf>aF}i=`|D88};cD5gJDcsy^yh
zzs}Zw;T`kjxuvl}|MkXisG?GvMa7^T*8WBJ)_T0Jndr%k2@H<@=0iQ6*H73jX5811
zISf!edYiC;y7hS)=6ffO?p8ef(bqRCpQ4lu81A8(8{e{gWOlrn{0x+GC*4n8pM(d>
zl$RqB4R<^eZj112IuSDm(ti+zY5a*c;pV357wb}Bvv;uYRC#pjokt|C=oJ6aNX_TT
z8gG+_P${D(M<aH>`ufeSmS-;aXwtp=$qW9)`{jot1zaKgi>(PPjlIA}nVCL;jnJ+o
z3jPj+D-9~G{q#w_r~hBvDC30~D32ZACNhmZ9Jgpgc9JFzy-4o6`u*)4OCTF|BNR3&
zojx6tP>jqXKOc&ZO@G~x&XZoAWB47V6N1Gc8NG$J=u&u41is1!b<Q|KYNc_3Ya8L7
zlm*{MDz3Fqz1->1%7+v40>xa()>MoGqj1K@ZxDZ<DG>}pHUzpaW1hiyWpp@DVa_JF
z=_sTX!;Hg(w0sOjKVqM!vDiGaJHSfpDK}G~M(Xm>MbX3suIqqB=EUVK2YgNpW!QpI
z($Ey*@BJXi+^=#qR=<+{e27Z}f=;{Km(4c!yMT_z&3k=s{tD`PCfxsT{h!c9uUi$*
zD-!C?ZWoZt2%gF+<_wO@b_IlEq-ZB7RlXnd|07=gIUqR{9?O?#n2wa>Pr2>V2Bx!c
zCmPCR+P4vfk^2s(yhN2U%M1ktpZU>Qu~8|-<=Zl#z{-o~xCol25FaBZDSdMy{8FXt
zQ|mIzynOb=LqlUjCG$!(8DEKd+*o5}tor*!kcXW2f)@EvBSa>;3sjJ|<n5Zo^l-eV
zZO256Ht>;0btJL0eUc!-=(6<<uQ_}9HDSN#iO5ize=4Q$7hiP9N=MLA_f7ump>Ljj
z1Bsi?p!Ls*Eu`W5jiELoVpIe$yX}~nGqh5GfOOVRp51~1XQ-R*_uBR0{Olk1lftoi
zt*rQ;hEMwUUshX$(|Jzu$PrXug*K!#UULZVPsCVjS~pqEwOVKF4q&%X^tA-VtjF`M
zxE5KuO&eyqL8MX^P>gP6XQP+LadF^djPlFEM23ts9DHr14r+2jf$?zpAs&t@b}%WF
zj)3jIq=`%<(G`T8xo?j1KfeGaPEKm>ZYSkDmhW22n^5fg!#;@_zCHDL1InmaDNU;d
z9yXP4ss@ozxMxQ2);jx$e$iXzqS7LK#I3Oiz|1(~atcyX@f@`=2yyyj^5c}jp7@<<
z=9}!2T<A9fgI2O9cD2N50$Uf#F1f)VQQc|O0fJiN)F&y<@jf)r$yW`UF-=bExM<2A
z^?vD`<~{u~jCO(Ok_JA?vC#1m!6^f`fRD^-pSxtcs@Am7${rkRR%v(PdeiL}`kI=_
z%m3_t<Ssq}1l6-5E?4<<h<f!!rTOZqM=>Ngez`tLgb9^wCNk^tc*l;bbx@M#e0Rtw
z73`Ul&6TS3giD@40CTyU21zlq;HkV7h653BdLb$$lm33lCmk6#!WNmGW(}_dd%EWI
zfZ5?zBq~hHb8F!oOUxk%s%F|RRdOlO=2Er}-IMfO3zo4`4y|CWPVXm)B95-(JXh1&
zmN38b%`cMm$n@o7XhZ<t<{ogTe3n{m;^6-TQk+WkNk#~@5@CU=>peSn<Pc79#NXpM
zrB-{-CwtiB<?~7R8Jep<JPz7gyTY@XfU|+RN_!{H+jA%9uxYIxI(OQq^nar#I1fk8
zJAP_-)M!Q*(C$6XRYM$5h@n8ZBy|cu&}$j5*i9JCb;O{uZ4!QhMDO=(XL2*#I3CD6
zHHe-YJ2ieuUht~;d-~><@V|J}IgY6<%Jr8JZtCohPnnK@3CxBjiw&n<1Jkz>ar0(_
z42BR0=mUeY@&$lVmr7zKQlRa>+?lAhiBA~%0Vr9I0l7m@hq*%5182P=Z(jr$ab!9}
z3a2E%!P5gk?<V#?%w7Z&6)-pT37bDV>!tK@6y`IOWBNc&;@254lG)Ii&FCwZ?PMxN
z>HxvXb9|8pdaQq&pSZIIJP|S{lN{$!^d>*_M5I5bNLRrGN(0e4B%_SK4@5NGDS|Qx
zTeovZVhYF0RL?eV;#Q6~hU|RXN`8}H3QJ@(#v1VF5sjnbiUr5$#=zF?d9q_0|8`@B
z>3u(^1_L#+Nq9ri5!Rx%f<5^l7Yl`{Pa4N~fR-t3$E+?u1noR~!2nlJ-rpSXf)TKi
ze~Ey<Xe!%(mJm#`42<xr5?BZ^V0cBH!o<7+v4$APdQ}6Vr+MY4qx<IpV_E3g==$?*
zsRs!MR%;9S%$!LtF6_y?oW`jNPKP9cSHoH2!H1>i<Lb^so?4}@vRAPc9vI5F+InuX
zYo79$UqRsHsSO`2_`3p&4OeyP3V>P}s|P3R*X;@$3u?s*4=saS?eDIuRq+Up>X>WY
z-Mx*4pq8<Wc%;4JH_rNQy<of2Rfl?Au14F!cMi#vSE?&wkkqCrh%P3vB@lbpV_eoT
zK-H=JK38*)<Jo9_)oB^8jt(t+?|w*gb$+(a^(c1XeaNP3PTxPSRub0{fx!(wxY+(E
z)$z!O_ci{7E~-8Eih+-Wo6CeJs-tw_$Un%;WjX=XS;_U`ti-k&9dk~D1JKjA8Fr01
z%kbM^BwHzJ6@s{bt}*J$l^63Qo5N}#yvA?Z(#?HGi2DhHg*-gla1b{@7k(LF3jKTy
zU`s<M8J4$*WS6qgk+D5?KSE<BdJHr|ibMI({dDebcQ^&|z~Y+yAvA1a($lR1*_dI_
z{Dh|`h5%Vhp9Lh3L2N&`xna6t@x%NCWDnf_(DEZ$#@(Cgdy03!FUz&<ojV7O-XL)v
zjP5E|3i5?1^v&Kd82&?!hJvti3tJDSFJZygSiBSe*Dt>j-}_y@^F6>A;*d$>Eo3Gl
z^=89+cZ6<bBhZA^gJaA9q8&R>-Kv6UMfh==x<uOLV7J<@d8=0NP6hd!_-ME{uzWWd
zal5j|XV=8SNv5#04R(yFa5`PVeZTsQFr4)r<ZHEU&V0BcuCN`MPsiX2BYO_cTIQ8c
zYciPD{}xCHKU<4A{NlC40(W?u{Ov3F7GC(NQtq`u3-PrmY{uc4U25|3wz%u87PVzz
zvkpvsiee=axe`3yu|M=(QfrLJu6Zj7<te=VUq)N3M<3bu`_pQn<!=uo#mUOP=efJG
zyHvdH(a}+9t1}RactUPlpkode279x>`CNfV2A<TrZar~ctM%%|UhsxD0HxS_ge3{P
zcRt)dX3N8jqa64qq<!_4b559fYN+Ayy<2&GRv$oWhgY|FSj`1Iix|Q{bfcRCa_4h(
z*|MdEJ=VOe?0SK8djWh%TC}}3OZX4sC2iiE?K^qJN@1L@bmaYr!^*m!Si^Ey1Zwgj
zxF2B#{E%GPRsf%)eTgUM@qvDt=p2m0U!A;}5Q>f0`hndOIjWh57yn*66v8JzE8U6+
z^JH|*VQ1?>!#J=2G+Ud@mPT1*me$*N1VE6Q6d!rh<R$DT7=D3hwZvPQCPn>TfDG!Q
zwf=ot;kIrz`I_-K@loZrWZtiSZe7F$;cA|*1|P<~biY<b3n6qjbEVR;Sd&3Y^;rIY
zgHj2f&5<c`<QA`BLF^YMX(}|js8kDshMbf9M1Mk!au1`z2B80Bb?w31FO}tk0H$lP
zZT}*1=)c=HUEdsf-TF=Y_Ax6U<`$s0wmWagBW`6r$zoeW1)(WB;b2DNBm60uMj-ZR
zQDAFi)-O{S*9Rcl%Yz2r3~<=BNJU#AG}Jf;`dJ>dkO)eW-bCy|dVEleAMflVOb0A^
z%88~Stw?RkXq=uYIU9<nQhywQ+yTDcJ1Aqo&zb`Jz72a7%8Vqy;2)qgr;h@4t)_;p
zP?O^u6dYiW1wOGN262dLSz1}YK+dMw4}zSyFWi)<=A*=$Lo6KuK<1Q&clwMo$QK!V
zkn9IQx3?r_#%X&neNzmvb`06tHb9fvM4(0oGc1=HLAl~L9VoC1L|6g($gr8+otSGk
ztirejy+5HthB8=Ftv(t^I1uD+<G9WUp=2uiMMaK_AJb*M^KjS_HNu&1c`dGz+kSJ7
zFPCjhj=O8jdj!W@oXdNq5fPiSCE9>D9A|4mGj(H=ikeR`q*A__pfk>W_W-Z)5jb5M
zvVmd4C*kpir@mMDrzreM2g|34EHlZR4*lG%xw)gmxilyUnTj<nuT(7|$Y~S#nnaM}
zP3)^j9Pey7KiXnkw@O1mg3|2Vkz1v6)w~*cVi(#wRODND<`C6wHuL(3jBVu{eU+lb
zxA(zxlo$NMwVYjp5`=*}4&Fk^n*xJWb<1|q-7BZquvK?<$-QeC>xxQ1(&ju`Ld-xW
zQk)akucl^@Z&*9E+(24yWezrG{-du1u4d;+>f$uO`F`1ei&YwKqIB{UUe75&B-?PC
zBf5YdeiSL?s~dgHb2Ruy*5@L52!Ar9m`uFTTmAkY7U})bTvS|FTKsfqRPYt{qP)>V
zIs!X`{7uUtop%k)2Rp`zslwL{kv9zI$z)U7conQn&a9}$jHN?;F&t3q05t85orYKm
zP{A-&qmT~f-eZMZ9GXe07VL7j=31xdIJ~0$VyS*sihg86t5mJwYX5*;Ulsp<L+bhR
z%FKFtc@pO%#N%tM*n;{mYfIQnn|RewUCKbNza*GTBH%+X+0+1F*AIT+2VWdMn0~<}
zNAkl5>%>>;(EMDp^HORyUCoV{yOaBSlbL<?B;`ch;+P4N4w_1w21%-Il83L51Tc;O
z8%La<0<P5=!}Ujk36qGfkt=x0Wo^YI>CmgPZ^fG;{#mB_htLH;2SdxyS0z)g{@IU*
zriLL>4Qo@rg@<Z8g2H_`O@q`BG>l0^3J|IN;>G}AbgQ0qzeD)VU`&ol>`6oHeUqoZ
z=9m#cDylQK$$@d)#6Qv`3ZEM7nfh`jK-)FdI>=_;I^cSY6rwSgd#y9X)eNUPk7JGE
zm3hcANFoP2@VS}p{|8UuJS1kA?Sx5dU6YraX&?y&Vx$@p6{V9#rxj}gGv-VM{?TPJ
z24=dO+6|gYkG<NNHciut%F-ImqB}$4UMVa>r^rUR8`|R|#PhIYc~nsTxY~tOv<^Pl
z*(FGu(M;{cG)Hv45S)Iesmt=KG=hf;E6U-HE6iWSy0a~~zg+l-yKEW*x|bkRa(f@M
zlrETdXybS!#M7u(b;wQI(eunrXFeYDFjJ~v&!Fs+xE!!|fkg^u_ubQP8xGj#e6kfn
zj2?1}K6}<4FTEc`R#zujpnNY~Ql4;=V5qWgm{3Id*`qvEi#*OG^a-*JDeqV=iTNtO
zF9^;pf`ed1j(+ir0j0Tq*ZQ0OBR}kIyZ}WBr$l$MP@V*u1tp+@s}~iLoPr-N20ubw
zp3MmED7yS?@$&O?_1L*b)S{4y#gLaM?{3tUrJ^gZ7q8UnU)gX9eOnaz9>u-A$V{;4
zjyV;KVJiA_PWa?p_YWrxXz_p1gO7a;9)}Hv1x<7pu{X0Xg-Try9*&0dP#`^n;GA>Z
zEppHPfciG2A|Fmf(EM60nwXwhYMh(<puR1C4);BRiF2k?S!0AraQpIq@FhXKv-95j
zGZyTB(#|og+3i$)m=?fDRz|ug3Wgkc86k=Sn}ox|EgP;2mKO`gEDdV2Xf!y-(MCL9
z0rB6rhTnCv>tjdL<Ug*HqGqo{Q!JI7XDw5U6JCZG2wsIF2?52|g<OH~uj6rp;>1_|
zw_fYTZ{3c+dWraCf|apE_@n&G)khb+#NLEo1&l3cBOfPdXm+y8aei?!wYWN`A5&JQ
z@VeV-DTWy}&Ws{wEe|o@^<_p$&wz+3+@_k`<U=;b&DBK;z(+J5F)2ZAg8u9+|KfUq
zl~`>2uynsQjb@@**YG&>_PfQZJu)jc_1cf{*=Ch^tCU*|DQ~`sXBwvtYPz~F>rBRE
zaF9b{@X7o&=TTI0CXoD{dOPZ+!wu$T_FUAWm0%#VTV8hZaAsyI^-g}%8?}-oZkG=B
zOr&WP*NpS6GV9H`w}AN1Z58Vr%}{{cLaN%`Q~Px9<n2}<e9yr;>hj0^RZbWSI>|we
z8&jG`Pk_zWK<v=FL>5$ZqT`05t|cAFbTh>+yEpsF=hk_@N881Meg*a|@`<q}ZrC2h
z*ph(Qi}hwj>ZNxySMrU-%o}3!Aj$8j{qLTZJPTnFkhJbCvA(OJXn$c^yhu@?>F4e!
zFNX%GoThqS+1+}#N6yZfBKg!McQN)p1XgC|l5Lt@@KQ>}YBF+cYHfMtkdpmt6z$j8
z@>K=${s#X2ul(GLt3A>dB^S~8)|5lkCYBg3WW}eAi-R$a^9m__u_L9ur+h#A?5rPY
zeQWv3bJbMf>Qb~%gxuDrv+x(i3|llBDv-3tYnj-sBAV?kgs&z}q`(}mGR+XAdPKzQ
zklLICgwO7>ZVWuK>3WaWC(V~%Q>YJ>MVnTB)l~Ai%)NNv!B;29`URd^cl}cxq_$;`
z@0U6DSA&vv?%+50)!FP%0O!m4SX|w=U(kDlUnHTQQ5SwnE1!^mIsW@q`*Ue1auw-*
z^&8EusxJ2BcWM5ge9xNu`8;xn^-I5$IS{z^JJ2s#L8HcPyly`gKLTZ+fcr|n>K^?n
zq5s{f#N4A4hjo2oup0g*saTIf))c$-yd|$%ecm5w#E9`j9^)GLSudY}#KOSN{m=el
zA#XpB#<AsVhELn#=@|BGOlv_eK8MGCGAw=~)o_`*p9>SnGVOWI-0jLMAkq7k-(~yj
zQ+iBqc5@%sjrHwq;8SxiTd(RFPcibCt-QaSzXl?Bz`&66QuNQx<Ymy~u_N&u@Wiuz
zg|&{C`4=vOk#T-7s~eFe*ysJP50-7Tze+H5;ovur@cbR;@vggpIKI&1dKhSsUrCil
z)Q0c)z%#=VitmnVFm<7@dEfM*^M){%!{u&m#MAOE_IGLz4KUnR%*hni;!WW<L}rEv
zg>j-6)tzyu9K*J|gKY$H1zsQ<P(kevp8<sZYbqC6UP1((e-~%g$slP_9S+uV`qrF!
zv{iRona9_V(jIB1xeVvDcUhE6Ur4h&F;dA#v;U=XEUdB8*yj9ZUp@T&?32pH3izux
z=!MG*v#+qMW4|9K=B1>~vhlKTP2u8hAlP+n@mb!S)x(@#DqI>50K9EJ=acb=eXS}e
zP#(lc-a2bPPP<3PQA+ei-<!#Y_I&+q_=CF*8%SLKuMo>`BrLfoz7GWY3Z>D?;rigR
zF+zj44#LMzF58*w_$E*`V*Jf#!<Mp9Z;}yuv`iIrc@8|Equ<u~!;>?;UU_I^rXx(!
z+g{pa-?U}c@=O|-MO?1he%|UZHS08EtK*u!%OJ7E{g3}=4?9$aFYX?*k1oFY%eIYJ
zV?+X9<JR@o{?$9W9f^xjvY5I<63BFKxy(~teEXB+eF259lfs44o<9E;|BAm(eEId2
zNV%s2o**Deg$35Ezr2b+zQ@3BbOxA4xUOulvWWm97v8LIc6l;xCw!d6zH?4mt3@9R
zC%*gJ>_FdiT;U0?V@G?vky;s$MvKXaSH9CrARknHx-%eSP$l^+0idCT*BY)%y&Ty1
zxV>@y`4^hU$1#AJ&fd(ivOnnOEscsV&UqHe3!l>|o=xm(t>J1po<HQ|0xNbHSOk^5
zS$@7jjP3S0P4<aDuD<XegnQjxcbqP+(GZ_U`0xJn^spy-WCO9R>}yo;VYmvXE|r1p
zWUuu6uQw9BozDfBy?^pQ`svZ~FPW%T&;O-)Lzx83Yaud{is~Ck%D1QW=#4w6`qm<|
zX=-^`KC4$Ut~wL@Zz1Q-UzoRHJ4)9-FZEGs@rk<qg<)nyqAh6BxYS~<ly}g>mML|6
zA;)tLJUK|*E88cIrE};zvh9?ib^(K=V1s!>ym&~{k^GhB4+^2QmXC^8AAM2^YdywX
zYx}Gm-u|Wi*m6oWGIEMaPRZA^Fk^EJvek2O{T{tTy`Ed!&6XHzTPDo^6QEG8d)q=d
z6y3k;XF9TF*xVRxyFj00_@By^A!hsltFfqTNrs^r`E2d1pMINsp~DBtbh|^G@4*kL
z8FV~E(Vwho?cN{#xyMf}k;Ospx?doR%D`408*7!%hmONXri@y~4dPE9OuKVN=r@Zv
zYALe)=WG)b*Re1=IiQgh8BYE@ZDuEBnb~St8t7?mV1ryS7YU;-=`oGhc)Xiqm$WWV
zuogg{Yyi*vc(Y%<yQ0)FnkQx767o}Jf3i#?;^Wbi($1L_R+?)dW(ztaD&^{nZKdjG
zV(5jm@l~YgBG5y(=h;_$$I=<PT!=AqiBT~206}dk;j~|_=i9DmVE?vZI){ktWManv
zIEg{leTE;2n+;uR6)Yy^PBTQj6{J*0d3%$7aP6}+;XeZ;I+-3ds*R{6(JQ`v)}KGr
z1`vfQ{P{^wAzrOi^I(GsY3d~!*DT#l?CKAD4S902XZ<P$s^NYu4qacK+VtS9+j)8N
z36@?~!05~-nyewDgT5U@1zRANb20{kumVPy)>rqTM(_uqTw_;X!RXa%++tUyM^x^n
ziSMH}A|9p93^4L)6G&Ogg2j5_pDbM@5Rl+Bf<A4ousV+;a=|AR&YE_;m`!>}H6S<2
z30y!3<s?+YG~cE1P!b!l4XzC5y`?Wz#Qu_LsLarkeNbB#_wK<o88vlIcAf#km|VC+
zVv0&|UVQin<peZ$XZQ|5<>n8;aAm6*{d*E>o8B$-yp>WS;e!9$s@0DVFbbE1v<y%Z
zo!;K-zuc_zk1<61sk+60dYHJIkSzEqw|OQ6zp2oaTss>Q{EmuFR6vZnf%~Kixj)$b
z7%8)Tw7<Q2)WW>sn%as%UY2kFsPH~(=&d55Ap_okNt9oUWBQ2x*mwXit<qfxX|rk{
z^kRzVqI_YHf3A9^YsvqD>5GmdCgl#=lXf>U{Hx;)uy2%aQ<H|~`|{(5O#A{%BK)&o
zzUVzso|u_>w7(WEdHZR<nIyUbtujV+vP@hm)v61vZ&<ylu^#)rPh;ce?<<*&4|Vg|
zAj;?4uxp*@mQhfIFv}#vD&L6ym_qrhPKC@ncP&5&@#)34>lgx{ScD}qfh%9koj(i+
zOqh7@rzXU(Z!^S_@h+e|_6ctm|Hq-DR!&^bCqKh~Wcq^F_v4irscyy}j5sfTJjj=s
zdCL2eU-_@X1C#KZimNmo-7_BIE!|&-53imX#U9<7O0y{-EOZw=XSG0y*M!{)coyN0
z{Zo#)_>ZlXNT-bkb2Lz4Dj4<;ZZt>G76#0WCqQHfq@D52i!faROb|J9$j4L49BQ1%
z*@>nzY8c>ZZ%tObA%eIRm_naXM`Zm$g`00CZ<LBa(#$9ztuQc~CN^dGcq<^ZWKfW=
zE#3NtC}*|wu#8Yr${a-$)zL7l5Z;#Q`A3vz5Y8mmZhqTeTa52j!-#r&TUO{F7;ok0
zk@ItH+0ngXLSGwR{5O0pEdGxe8X_~Q$KIY3ceJC1cra?D(w>`rLtK0|b+pfl7;9e+
zz~$3<nFx<~=mC(lUXEVykOJge#;%GMmJ45^a<j2~Qtr~Mxx-w0QD=D#ohfC4jZ6h=
zpCGubSB4wNjm&Sgu!=N|98Eeh8YbT0_Q?>Pcsj38auv58P!g-?iX%d$kP?bQSny{f
z{kwe@b&?f?X}2bOZkZpIqK3pNRSe+9hXXFe2bEset-QN2NzojWVM<{4yWg!Xt<P|N
zjI9S-EI}Z}CybTCa<ES0Gqu0c7#fuU*8d%W1CP`w1W3bqn8FvIXBnQVC?3BN@LFw`
z3mKpjI{+9ZZ8O0=!38t<5011M?Q&&V8oJURRK@7w@T02i(VG4Akq$#H=x?U^F7JTg
zxL4(p+4W^lVNN?iGvvIkrt9tvjO92G&yCGw1*HE^wRbWWP2qs3DTs}Ql34w~|CVWl
zoq~faZ3f?~t|AR53HtLfwcs64!VUR0dqn(0QRYXG89A>@*OrG?eL4yRhv<$OGF#t;
zHYE}IFEV22U1OZuCh@YDrjC~%EyC{Cs>_8&TrlYzS885gz5~&c(fOs_F909i1PRPI
zZbr8Q^f4{GleWYMsP7;odLUBW1pwkUpQOlPA#*GFWw)<C^}{HJ7fxut80`|c#|FLt
z*t7GfHNyhh3{FHvmcz9*u31eDt#vc8eHyp!TZzY>)L6V}TJiCH7DK!lB*%1drN+y4
z^s2aY2orNsmDjuSV0^$%2~Clz%sx{f*ubB^aV-Wlmi1ag>unb74tOZ-T5E!sz={eD
zLmja}UOOAuycXf$z1>@AScwZGo{BrhsW&?^P7Wo)Ml)fyDqskfE=l^T`Ix0{-Z+oS
z9nUVT00&VTal~XB$R`5%BkBMmJ4n?{>6_Z{%#>Vq^cNe=ACGEp=V<>Ut7spB7bP+h
z?hfsb3Q*;(N7-7Yt1gNWi3pOFbIGF>1vjpdsVUI{%6r4WZnWXc=i?D&7Z!Y0Yco;W
zT>w|~<fh4Qlu}flyS$T*_fpHy+0dTYJKj4F(T<(4TaUcM*a7|Fhc&+zHV_cioQC6n
zjTXi(s^<D}5thuBY1r324!~swxy08GgreI_6l{Ed*N=Woc+7c6zK;t)(9qEjq>1Yh
zU`3@(s9fMZxO+|_!x`OMM|}XE7V|%J?>)W#K3X;DyF3--e%_2hR*S@`d4m%(x+~?q
zY2kv#;zDYzdhpm|LK`+eI;A^VMNvBYmDnak=|_KNPS~DG?~eJ89*E~)Vq_pER57s0
zuL@9N6Ue%_+^FHn7YE4VsB(vmKZZZZp7pJX+9Aq6>2V*)_mq0K_Ri}uav_t`0sVdc
z@39pzH|Z{%Wvoxv{N;5iS@?~_LCcEouQcSZ;}5hrQ99HaZXEH_2UCqdryA79*+fF@
zJw9&P#A^EEa52O9V}Eq~OPDu9?^73;Jw4;L1tn&Lmh>^2CIwpm7OE8fUGa0~MHZja
zH{=8we^6e1FLq1e&z4eHr3fi1+YXKl$SP*EVoEmM#PL}8b`MT@Ciq`sM@a!-<)CFd
zde>IrT;ak$Hh6t+p4mlwh|pKm7hOcR_+Lin4X>rg<V69bzR!Jz!$KLX_j!;5S3i&p
zR3fH|It}3RXox6^uX7a$5w7@V!S^ReV$*|{Jn)TeK!(fsd!Z4S50t8dg{Tl@dUzRH
zsq|FR+w=X99;)Z@y-l5dfCUR;gfbLSAk#)n_d%(J0J4gX5%AWEAzF)!UDT|2ZYT_6
zfq8WCx}AT0Po}6dR{){*nnNW~JtxsyV2k|^4Z_%nW_pT7Oy6&c@(#VRrKw%<bE?8}
z8TEO%QUEohU%PT`#;s?jm^TfmYoK1F_H*PA|CW%L%9ASz%a4X3=wAJ5+hKYF2e9pW
zzBaQbOt0BU|2H#mKge9{pCg)OTcj6)CTGv-%=0P^vd?ETb~>IN8_`%kw{n0njL1Z>
zWV56S>~0H$yh@M|H2_3i-9@?gS6wK^^oB1*&z?!cZ#Xuq6hCg8l@rg)lbSwrI*t+)
z!j@(ANpkw6tLJxAw>`N0mo0A+&o6Q^l<fSvhkZRiD15pltb3QO2HVU4I~vPB6HH1*
z3n_8>tQeYAH-Rp64_yQj)&9Bj;AxjGO%7n|hA!xmgyVcL(;`MryMIUT@?zI`150Po
z%+lG$eCrF0*aDGXj!$H^_t?OW%OFR}My>J)ZnD_WOk~o-N(TpHAnjgF6E_ph3Q|w6
zY$C?UK>7;xMppU_$ylx97qe(AgTwt9ECm|3%W<2iz3TcV5U}xIH%CL8ZkJnqH1pu<
z*SudLv|b}0Lu8Z(+_cDnvjeQU_QBG7h;99?pJg}StXvG+eJEgM?OMwbNX*V5N{o&<
z28(i?ZvMPdD?I9q6(a2-jAZMejtvrSlH<@`Kk;3O&JPmLF&kb&bw=5eL0_1Si}WOP
z^%x5PNN3$;ePe55(4jO9U_5&fz+XUGsm3*uc*<`7u^HzHeTAXlrN0v#olCr(6~<(V
zf#n60@qJ*X?#gyu=&$>thI$M&pgQ*v*V&T&W-L=v9?M^WDD^UNS$!pAg7&U2yobp2
z%QbRw|H_<klosiX(pxFb8^I#wBD>G0)z3&R<n^`exZ&F}<xrbk&vrZD+%GBC`=l)$
zQ1GFIU2EOtZpn}Y-}w7_)#>E$FJcO&Z*T1HS3yTsdiu%H`?vV?h*|>yd=0!c(r^C`
z275}U*wu1`1O|PSzOz0RG~ORAnpOK@%R7-=Ah5-D<exK;dez5@EwZ1xT=Xf%n6X5B
z&b>-hdokX1^y)Ybh7m3QvP(jVgVpcraa!tG`iumZ^}Bv{1TCi)^hgm0MB>c%;)M2t
zt%7*d9*7;g3Ln+GW5g5?)nXKf^UYwn22ueFklJ;KrUoVL4|up1NJTCSvpk^NlKDHY
zrym&PBJQtn9F$j-l^&YN@6h=C52RA4U#4b2wllG*Qq~OtGdawzJC$zPZ*2H;P$z#l
z+-6`~KA3$n?8rHu$Jg&LZeZSM=yU*ff%=PWR><cV=7&AVr@JhPko((Yw9@;+99`xh
zza!5Hh~_;MExF9Q++SGO&)EAS&+^jqz%7e`L8WY%^D18p+xsJzp(pb7?a_x#vxz>V
zLsiU%L=l>3wXD;#e{@WfzEl+Vz`IpY4)GGw7>5{sWKGb}mOFOO@ZwA{({7-KzV|B0
zdeA}|M)iA7?s%Mto_lA+TXPgBE}|D0;!^&$r{LlAJK2|~O%R4`fh?d1EE6{hPy17N
zC(UF}B%_e$@)LEFQtgR$JNhEu7tzZDcZbHbSLqWPhzX;KWK;KKKz1%Mb&hT<M|?aN
zNX^4AaEg~P4^W?ugX=@Yp^MFbLS*ad#@XFB{IbMj9I&?n*-J2{>1et6>C{q6dReR4
zAm58j9?8OnE23)*sk>wIx=r#9<CM*T2}NPGE`06Dm5tAQ>+DrYy5m{9raSlGS><MB
zO*FH+JS2w67eO<l8`h>oV&J{nE3dTn(_2XIj2YkCjX%d{JThNCjDysen!o33E~bX=
zOe<b~)BFw9^wM7`=u6|PY>Sx~@%9y;^QO!zz))M2u}R(sKikYM!bIQ5K%4l)2!aS|
zK=dQtQ8_1{dtMGXdzF%>%B`|qQxQF(tTCeU%=+ly`6=*4J${FKqBy`%uhA-IPcN`8
z;ikVg<*L`0(z!{Olc7f=hFQz-);{Um^!_cQ|HfV;YP}|{AipV>&02>Eo22`Ci0aV&
zGx{@N^~CbF$IaFZLN;B&1jFPf>D^B+f?AGqu3jn&St%HJG3mm}8n#s4|8|b~<d}xZ
zo*HMRna@Qc;ji^sq%aTz%4yx_Q*g8J&w&p=Slv#ow=jdBHTAwwS-$mP4wk_JZ@IsZ
zetxHU!~qo+ku&^Ts`q5N%~zB4!{}$Fw(M__?BEzc!Z}<*>=^wXESbux9CJr>E&FEP
zD=@s^EN2mSYnRZN5?<1mxeNM1$rkNYIcZ=K8w{5>(La9BrucG8oY%nGhYrZv1Kvz2
zeQH<20Bn+~NJUw+NQVlC$XVT6&E_lPw{T_7uYM&sm<LYnGTk|QRn626%{!_P7gc3+
zZh&+yOArx#i%~0IRr^JU_Dj{DC8|0bs=9AGbO$?hK6PBAsbc9*_&VCK+_X+TVKx1`
zju)lW3^Y0oE_Mnks2SR*898?v+2k4q&`G-3Nhl0TCC^Dmb#hG3aSyYrauS(4a?DJ?
zW+ujPPc_RIkti#6IFGD)r<fo5t+jlciU3i~mIL)wt>Uk*f2X~|4-QQaE^QHYY?i%d
zGx4xg4-31kJI125XK!9?@A!=49^Fdk3J2XpqV4tfk`tXS6<u&EyG;G}eg`M!KP!}L
zq>NnVZy60(C>S`N4`d7EvKBd1A#iy`EX3}u)e5>svPH}9M&WKcnC^Yq;&HT9=XEYV
zE6NBtm^u31DuOPX;;Xv?Zbg4?`>fU!mC>ob7Hu52j*^FNs&p194AF}0eh-g~qkR3W
znXn$blZ!G>Px<jE|F%WnL-nf_&Vj?=pbsLp7tMqBWZuwSKP49kC3Q#IXb7jD0y(EI
z3yZH;ai{X}pf9eTi8&(lmSU&ykuKcPvDf8~mSTPve<@gwy~a)YTN0N9PAt5BKBgZ2
zE{c0+Ad}1aym-y^Qy#lD9&3xP>=iIW12OEHVd9csGU>==pw{z~26-SLi|fZ7wk2Fe
zQhFs1qJf8~+GYutj;heipk=u-y=wm}R~ltd;kdG9_qySY&u|aX`?<n}&H?CRdI@YG
za|u-TfR`@`Qr9=G<dgHb(~T|0wS`z#w4ezta4oyXm-D`~@jOks$M&VDVJr`Rpi9v3
zPpDh#m9@uQKOg!jKU@hbdnI&UD4_WR)AV?2%@<d)R#<8E-C>8jHtl!YJtP2+4c)}x
zaDCGZVXdl9QyF(9MuG&Uey&gPme&#QuhhcfP{F%Mk1F1KO$0&nr*EpO2VUqD=MeoI
zR8s0`+n=HYbqdM_$%3h@K<%L5syb=4*7)^#tu>b)i<tiR-V`Ecq$zW~NDzB?Pe`(6
z{oU5O!mnR%_D<KIJUKHTv5ws@<5;)+`(}gAvu3sS-tV&Z4bS(wo}Yr=Oo6;Q1}*lP
zwbJ9=DUw>fFMc=3Yq`nE{TcImj@wAysBk>2nADV-lXy=*PJ{kPuQ)03GG7VmduLJR
zNstdD=tNTH*Pre06BzDq>ZNT36ka=Z_g)F{{u5ToR=0&CZ!x+qFpW?;i~Hg7LF0G5
z59c<2y`g~Lp)VCk++)Ha2N>BJo49?B$Oao;%7029<=s8p@&3}ntC`=c(f8^WU0-o`
zyNVBR^Duuv+9ji^vRF?>wnCpGzHmWQJlua^$*SG;rVsp5ZYDvw45kuZ)pHu4sw<`@
z`(96UY)$iAwXQOj?osHbnh0l22KBOjBUQbnH+cIL&GS!RKZY&jlH7mW8gn{~X_t~G
z`ZyZIv>K~}0o~?-YQyPEI(c-uqJKHNpG`A2YhMH;Olav)oQnI!zN6n(^8w%gRn<m_
zzFfTQ$9UU!e?fg|(EJWLo2vBQoG!;=`tsF(+a}<BpK{Qr-~U`JWA8cWUcg$cNrfm_
zN`9QsKlv_xd|%$zPC8F5%e?W(wY!!tvfBjS;MaJ|U+X{SaX-5=#OK1#WH-*0OZNl5
zWO{-1E@K3;2}2~~1yKdUJ&}Vna%_%4@wbdWmXE!{@Y<5aQvs2#eg2R8DZm!{QzRUH
z-Shd|?|*MmvHf}j`hx~ThQouUd@oE!%Sc?>;#m)vd7xF`k}MH6ks21BBoK@fm6e`K
zk5XVO#?0l>mvCU{OVS@sPE}676qzgJvQc+iSMs3wRn0s^x`@6`Rd8^0a#j$9F>~@1
zB#C%U?>v-OV=94(kGH>HSX=_t2TQI01{LMV@%#ft9i{c~&wxkt$QZ-I^S0ZW{bYLX
zGQCvjPzH)Gt)L;YuBz;gGm_en;_LPNmW(-uuwu8VDn3gUAbN{r6rVx5*chG|ku!|+
zl366QB*E$I(Pw0N+x7$d2HRTeTGxelj!iC))iOAP07iCa-6o#;2WOWSP5Rpew%TM(
zQH4%-A0VYbGm6%NdGCiRdGbG<TO9XFi+fsbO<y7ymdB8x@Sl+=_iZg{$mn0Ll$y6Z
zba_nS(vZY(ce!r|BGUn2?%Z6Oz6L){hpY!#V>Y$IxJyE36dp%>`e=3SEs+s30FLnH
zm<re-7;6b`^O=R<eETuR+dP)OgC04{TDpK%F6Ts7OMvh<5<MW)@VMS<<KN9cKfisl
z8R~jp4bl#)d<=oF%1cGe1^bgwc5%1iQJrA}BFl_CbaYG*vR-wc;j2j{XmSvcvdvP>
z%<vy7f3j#Yg>WsCQ%FE`Km>Uv307c1_-B3{Fx~0`<vpnaNI7Y241A6gQo<~zq63gy
zGZ4E`g?X842!yG?;J88>=S~Ngv}Iy4LPwUhMD)4lCxG2NWKKq!W}Dir!d1SXuEc@^
znMRe1*7gc<0Y?a>e(94;n!!(dhX!WgAjH;GtT58fT&`=Lnf5Oq3gU7q0Z0ruydJ4N
zfq{*a$ElS_VsHrC;+9d<B#<l`(c5_(_*r7Ixv5MClt&yrK%#Fy+9a(<s?n2B_`m})
zQWmpAbW)t9aP`ok7xBLLg1rB?53BMhure9(e}CxsfM&-`Nuv@1iGiqYxnk0$X@7gv
zFoxoYPXDn#6dj}^tu9q;*aU>1HC~e>PTqar&{2Bz1p#qC7~PhmXW8jUR~iFqZtBog
zn;7yZX!?j+W4TE%`M~~G9F?nhO~pzx8eGgEzyCjN-o=R11<Y$z%XR(35$)cSpmS;f
z(SX+Qu=`hVQ^%rfjwS6O+j5dQhRX}*@3e*HijzBYs#}K<lTq{~R309+=^1BH#t=OU
zhp641BM=LA3&NrcfR=j(TO~xLQV%YOd^6N6`p7XS-~&!G4+MC+uf{$zVw%>4!|H+W
zlLwf6-85*8;P<dA<h7J|^?1B}2<d9*RwQ)v!2jNk+S4BPvCQ0q-$SpSQ;5k=uigmV
z*tux@muc<w`aKR1tKCBB*lTNh2>0r`00Ui0ie3oMxkYXSo%;_$*1_|%TbVx}cW>l9
z__TEE*1zB1y`Hy3?J*8=KrB&&Cn9I<R=;r$Q0^I@xqS<o{uS$ntOV?BACcH@plJ}x
zHaP6YF%z$0BKUkD9klZ!qX?9I-yuw2B?rk2-%Ub%&(T+w$0o0}is-~?0s@Ww$rt1Y
zSxM4#V*ftb*-aF)-}_-GZETxy1x|5Z1M*LK2nNp5q}z2ro}b=Br+YP-|HNYrRO)OI
zd;kcbt2WjgvCWQXa^MolrI+uPQuu$EQIuv*wqrb%5sw+sQ`F~{M*515EgJ(pv$^>-
zz7h)Q@C)EkX5Ja5n?lDVwlG5orq{QY1zTpvE)n?Pwium0KtvLVg&j413PGi2Cd+ok
z&vyNkRt62d=<G`ddxaGx^elZP?Mo-rlI9ymECY@0%N&&V)tYIsRw1r)rDt;=jlR;<
z-~{{f9dW5ep_vBe$@=p5zHikASFB@3?C(350t}`U&Un$Q_kZsO$ZU+IK!{ihI?xv_
zi5)T*<YWU02I?&h;z(K!(t<JmILR}~6C<n&YUS}>g`(RK;!t&3*}!RlCPF8-zzj$t
z{MS#r5~nZs5C=qpJa$}801FibigXz&S#n$%8<^e%*>Kg`-`BE|l{xUm9iQW>;rqs9
z;BgyP>FQ9M?F|-2_R~4U0L(emhX&s7xTLX(9API+tZ0zvcQF!@h{dx5dT=tAeeXV3
z_Lf5`qZTrQlfs5@_>!bE*h;K(XKs5Z5B28S!_#zm&awJQjN3m1yNJr4GK#ha<HVmW
zHl>I_-$E97Eu<U&FSsJ~FT^huv&t3;!0KZ+SBx8-*Y=$rF9?{KAgQKm1SeJncrYgU
zZpF@1Qcqmi2Seq^!rcT?hoQ?yg28XWL5zhZ1gXb3R4MgMdY~(!Y=rwMPWw%rbKm=B
ze_tNAfl$(7{d_nD{H(@^RbUf9$P*K;msEl^0o$`qt0uVI)_VTH9BD~`7?wQ#v7eQ+
z^6pW>AdX0PcIXi>q(WxkE_83_5&Q{g3{+d6^`-cLv!>$BLBfW}mh*ECPvxK1YwpUv
za1d0R2thJl62+gBay$5Ziy?#{JV^WAeO=!(*-_IY4)F*unKsKyb>CBDJ|wBEe?n!y
z_U>mf;Ok`iqBVo_Rp6##KrGW)->Sgt>02NL^l;u%e1LX-N7++TcLo#w|2W+lI_Q6>
zBEUCc3kz0I-f>_Dy!eFUr)azaWeQqSpTmNAS?}mU{D}`+64BfT2x6|Aj5iNNn$QHu
z0hY0xlp|@;A8(kWf3cecoGExjrXzAw%`v&4k~+0uk+PaWlf(DBzm})PI$LaYgzDA#
zXC%x!nNT`pV-s=0+_}hW0t8+2otO&&Cu$A!RN`6`|7>K(>6`oUmHrfdk(WiUYY&?a
zq4(p)N|I0fAu><7a4+U)>|<&^x0`eP=gSyfN2B$f1jXyOT$dC!qb!NgwhLPilDu-h
z>)}3-S$W9N63B~Ist#y;e`nyVnp^zkPk70MYWb6YR2G}C16Vl$#+st}CDgOH{L>$&
z!wBpo9$U#`vJYvNo(2nGJ;i+!WoYJlObKj!x9K`1HKS6P?2cvN%T9!g!R9kVClPT6
zf0Bw#UomR!L^fPcg;kXCGi_Fdi5C2VlC)tm`w*A!-PI4SqNB5?mpBXD`uuJ<6F1ya
zBDy-3g92Hf!j(XYRd<*UX^H)F&Xzw%=|3JYNdx<Q4k`E>f*^0Db-3Z?4&9$shvJui
zW|ay=kUd1LmQ-5b(UpANzvf$Ycj)5|rid;*@zUQSz4{*}R77nBn7&JUq}9aeB{m)J
zIg=mIyYmnV2_pHNhiR2tWbLZ03!_gnt|wmSZ%%}qn4L(V`wnTK`-tU^ZQ-!AiA(=(
z0e|YkWC0fl3Bd?oZeSR@zy@t%gSltj3j^R-uv9~j_vakT874RQbCy67qLP8Bpk>5`
z`P+|_<MA9iXcfIcI*ONV!YsEkB4Z||g78ciy22ARAdkX4k4Pdhh(mh$6MZuCJei(b
zQ}y7=s`R_+qvrj&VJuQ<RAGTc#y|gw#tw)a1FKKT{TzDrVTs32S$KGO;fA@wLw9j8
zO7!A`G?qV9dMI4Np&!|)SdpmbaE;OJN9s9CipC`M0>g8(0MX7Z>pZmWgqQVK|Kp;{
zenmba65sWUw^G@iISZa;ZirBrL@5rP+arKl_=f1iK+(s~0eK_)+jX~Gi5IK+*zoFH
zfwH5)!*Vgh?V}AVaL9!}NbpJ(=m+pn7SK|Kd_;rK+y+-EA})qtR{=2l42#p(Dv?nm
zPP{rhkd2*xCWVxre46PUHlo~PJowtE@$fDSmf|a(=;zx$6+V1x6zUdP79o)6r%lrQ
zovC=j&?P-`XAE(@lgUaN^dCQjdlccdOC~^J(TJ9&@nLU)L{1<(5t@=TKis=zL<<wI
zm>G}{=agsWIRoObbH!9xzJ}iBNLS$*T|lCew_tHM(4v!Mj#1=OfR1YuX{T*eJ~>AC
zRnKR}^wv~k)P-8-UA{+D8D?m9cR;bEBUqk5)z{<+N$fpXkn?Xa#Ss224dI6;Wz3;i
zMFvzlax$B8-65%49OGQuM$c7}+8oT6r7bu$Cms<5_OKSD%89BY`Jb+Qy#k5poCERX
zak-pvw?jpPInC-du-%Uou4NHsjOG3qqD}x@-)m9jFskLCOHfUm*cu*}FAU$zX*=q&
z8kA30wcwE@8Vi8y;Myi@Ey^*IoSK%>IQG|D$<H~5ZV{f%OzLxKqG?H`fZeRww*0i~
zwwWjfw24bE3S)Q{Ia(NKO&61{+@Yv$X^vdUWs*tJ<4w}`>9T`&r6yS)mRsk;GtXN7
zT;oPOoBgjJ>J@8ehyF+ji?Q~BGP>n7pywH8c5icip*xHC_Y15iNKK$C*6#!$!NlAH
z!x<4x23h#zFmTQe1B)3=iQQ~@*9&%SO?G^Si(RJk!K9d+$Gz1~+VL?Z<fnfSpKX}1
zj##$A3Fs+JH2y^3-Y1@^{rIwDQXSIhub?{$=TqxM2RO^g=ESr#;M`7#os^*XZe->W
zIthO=B3CjtuV;=R&rTx|13k?t?o1EMMn1IK4bPK1UFm47W~9bQy0jsNFRdj*Y>MB1
z5kEsApL;k4Rk=R=`EL>lQf;2)0L^2lbDxMWu+7=TeijwDeRmjBP1|j8>?2zus27+Z
zR5zaqWt0?dPnkP#dYJCnGkqeA^dHZ2@7YI;zVdv{(5yXfb(bycHP}NseHV8J9GE>f
z<1o=`bpwldZ;D+(W}&bWTU6%l7&||YMa|$x0V+fkC8y_^O5i2ztaLuZ6BfF-+@Ulz
zMZrY2Hr0=L2)bD&m3xhs`@oo*`M{GL3p}za_c_xnm_Oa-w*b7mWbo71d=Upn?}nxD
znZ%$yiln8pthVr#<ZfMlyl70mRR27tl|xp$j|S4r6E8rLn{&R;BOBZBE(?iaT|8Q5
zNt}WU{+o+Af5FsT=i@bo&^HtB!-W3z3MjVDlaToyD;Ve(yryBv>Q6_{uw{AZgs|<4
zPj0Q4OHQ>Ot`8qbN{fJ)0)hLydc|WvNiOdorHH;26%tfhoL*YW`_z5K)l-=}(zY12
zQY4jzp?aeN&Ssqq&yB4L9fP>ua=gSetUhFR69-Vs^F=-`ueVJ}`;=nqpVSJ5vPx3%
zX?bzn6Q1V1Rr<htmaQv6X6}`TOC3CkG1uJVKf6AJy>4nQVm@?z@zb@5%gsaP^|<Ei
zDA1ce57j~vPsTUvr+!?{ZMrVXC3b^_w1p3a*ZBd$lZT11#e6|U0qLk6J&*tX4_oIM
z&es3`|7=7Mdz09^5u;WKVvpLJ##TkGqNSR|UX`LYjXm31RjX~x(n*a{{is#5G*nfm
zpYM(Tz5ls!uIrpz@9TZ%yszhZz8(+Zq;bXnCWH%V7YdgeOTzh!B7tJ-Dej;5-r6$>
zz4G+vv?_YfBJ}P_;g&G*O<mF3?=RR1P}%U=<BuQALIlVQ$XHE2^pn@+#h!)RmbZX>
z%k7uy6$#)lH>;`INqxq5*QsBs7PGS$8)S$KOO;ESjQ#puulVl)<AhozKs0utA!VTv
z{R^G?Wvd#__@?E|_*r@S@~l1xyd~6*7X7Aw@3zbG)SzKsdG4L?w^*5bZQF`p_w0pX
z3_H|iI%(O<x11?p<=QX-nU2cS7G-tv*^8*$nG)7e@rEHQx>l0k+^Ohk>Xuz{Ii>$s
zR?fHf){HtRTRvRks1V>Ix3^MwAh<7E>l(Gje%m+kkJDn0w^(X6OPCK+DsoDHmH9!L
zlw0M-oqO-S*A@<DXKhjyd1{oT$oSvF(NFSBbqF@B{{K#-)x;%*eUj`ene@%wREw#D
zGcWg$DPRNt<kdcAUw{}~41YjX3n$Cs!JgJ&wKYvRzHRtdyQ6NvHYQ-OmO%iERt9u1
z`=Wvpz2W4~4o(n6$A&X30OI@EQ))wisS~qX73`Em=!QioiP?q)#=gmwxhbI7+&Ft=
zE%ijS2SrlnuK${ld3{4Hs66x5{vt6kFiAJaKWDRHp+@&t4Y4cmRJQii>6^aa&SnE4
zNDm|tVFbyJ*~&2vqOe~6ZnxF&v(`oc;XbC$G%5hzB67w(@mrN>!CbaA->#-!F5tOb
zv2@v9;&SD`%T(6jDkbZCBEdDf!L`;q#d5)QVZjZF!HtDd^|ynY9|X5N4K6WX_81C&
zupj*JUof_Gr`4v>wNEBM3C`@Ysf%p7-AB%ChIgmd=ZPgfPAu(pO77=L>VsW*%7eRK
znB3OUz|IKloq;#|NTNI8o`mi;ffk^a5X%`9EWNo^E5wHQxq<q{<uB`l$S)khUpnX3
z->~jUv`J5g<*N{gNYmWcPv1><H{|e~-yRA%B!x_<C*9wXdv^>z71D0$5<_+SDDt^(
zzudpFwqGB7Xc`Y1|JJ@;J*i-H(rRJ$r5QCdpszUlf;z52VsjyLGCSTQhXqpi3@Q8Z
z!bwwdq<7|=gRZ0*xBDulU%%^~VZ%ukeOEI&pj`9Br}}l+#;?DZn&zd#_QkID_NMHI
zk-kcSf2IPb;h7s`#f5hcrGD>KD53W-^tGjMKl89<KJq$sP^MX_pVg}+oE*6G;Hw?b
zBV`gK<48A78u5T|@Xn|%=dAsw#LXteqX!mxzx0d+%vD@D5IWt}wv84|0?iW_VPM3M
z$IMX?e9}px@0F_f9&#%`Ogh<;ekjL!8tL$7_t8oC+#mWWa#z_WMp+RoCeqo#@C(Nf
zk2*Er;uLHHwO|9307`2p#9}Ci1xCUBn{XM^dFc)gcI>7uWSTa|E&(M`h^rad(1&YM
zWl=J@SZxz*51`Gg!HF>6Ay=#{XwqK0M^v`YVFm_{ezZ|`A?d0lWn?29W4|jGvmQru
zmNzTQxDz=@M@y7w9NV$uMX;*8vRcbG;Lx?}t<MLmRhW6fFq;@g`8%GcL6~R9_(Qrp
zvfGB4!EO;27O(zhrz`11_0a764bDebZ#_z)J3)%O%sU^Guk58}RWRf|a<}>3Jp+jo
zy&4%C9<{4+&3!$_aP2<|yfnQmFIgj}AHx6O)9G50iOaXg=jKF6`LPMw8h-su?rZo^
z!S8-$J(>w4sNeL_>(^k<?A5l-RVD-7z>Xr`*OeU_uI4iqOlO5ZT)NeHQWYPE6|xGl
z`MHdX9R_IL5!d8zx}I#&yDJAM>^D=k`4v8V{ifj8%!_v$Mq=(imI!@Y#=WfHtV8OU
zCUz$2R88B=`aW4QefC}DZkuSlvYGDHioTJ4t>x*yA=aeYU7h-T?TyZU@7)u&s^2?c
z=tHn}yFB^5z22u9%W4%Z`1R(GFK-OM*!KnW%w>Szva%7Svsm2I2K%SO40ks=<F^+3
zI#3CtNpDkzb?bJ2$N$&g7o;O#WzfqFe05ImRLzE=S2F1s0=zrvd@c$&XUhQBNczN<
zXjYyJ=6mu^oA(LeN#`ZqchB74G=O5-2j!Rlsu1EoU3mtMdv+3)x6$xyv%%%h^fSd}
zJ&l6K!-slX(oeg}{!QI0>;Lb@pNn<t0i?oCKspe_<BP)&n&N#(K_taI#^Mwi@`b!C
z-$?EBfIMTr$lhx-sgEoQ1qn2{5$mi3O61p%UkX~<rT8(Taj__j2Sx-R9D)xE2Rl0B
zU43G`^3(m15f}?G#k{2In%Y{ZBFaOW43?Auqos=l%=k$;=-xhbkbBsZ*Z`VCV$PL_
zDEzf}a8~G5d`en|OH9%;4=AQ7G*<dlA<(@A|Ddg-&g|357WkT?C=VJV_GJt+8QS0X
zWS@R`v~FIY0R*SeIPf}M8kAbL8mWuv_yx{w{u+g@^m!l2Pz$Mu<<!}H#x>?KATbDN
zP(wkprwQb?o!F$fiSu48Md-ipSZN0$t6W-wvZuytO!MVDUvxE1H`vseSC~I)o^5gI
z4F2zh+D^6rVL0=?G69m!6Xcve?>fRH!oHc;NN`AD&fux`hz6`V6||{h=I16(NTbC(
z@w@j2lEjqQIpij<SsvQv5cv3a!+Oikw+j@-YSC~u2Byx@H^p9X&yb*Gps<*<j*mWs
znYUGnI{#V_s^Tk_|L4DI%~Lb@LJFI77>~xpa!{(y2YfFpo4O-LtMO@#cXAe2vtwHf
zi@SRN{-?*ea&4s0d&^14a@^ox3cR~7{_E24(%(KdzzahVv9%mC#PebD^E@DmeRwp&
zEDl!|+M|D-MRbYuxWEhSht^M9@gt>@82{CdG5H;}+XLnNYB{wfZXa-Zc&IX(MUR!l
zez>i3ytS5#gUPN_@I05-DVK88oLsfAg+nOgkK%Pal;uY$$<)gz1Gqe~QwV<XHr9h9
zc%U8<fVU)W0B$Ce-&_;nA7$dNu{6f}*Gv?b++`o4d@l41FiG)FN)H%;Q(2nkge57|
zdI>aYh5}clP)1K9uR1*+Eq0)rCA(gJupm`(y|Uy^1vmjxE)#B`KXl>gREd@5x`vx&
zttmI|irrUg6b<e}*&vsge(y8l3S%YCqqFgvl6UWg19xigdIeWS$8G&Gzu*?REt&3|
z&L}4Ea_pzwC2&yw9R@jt<^6a#)n3W}wQhVa-&C0L-km?kyI-FH7!>F<2(ONLo_Xr%
zx=apBo&ggAuMmO%DTOWtf@O#xW&uk&4XiLf(^g!HHEC5BbU_Tm<!O{d(=drLIh@=}
zt@MfyHum+|=bT?LjR{13Q68U3Una{`-(4Of<D39V;N;dx1LOPQQO~iMA_b2L-Qh@8
zX@&lQ(bG49PqRCl!6UDl=kPLA61$AVjzts7)an|OQ=rusTUga`R}@)l_DB1u#2~r6
z347Q!!WsL*i1E^;(ANvoub(`Y(U1KTF}{3z_vgwhENLGgA3jZf5?BT9>jf*k(ExMB
z?>rjpdLQ<CuV?eY?|lz+ImT67bz*cpHoc83GkViphLJgRiac(4)eXC_o%xrKQ6Pxs
zbRig4WKe9Dj?xhkT`pFyly<+D;QI3Xy^(L5Vb4;65Nf28T(-59Xh~=feUT?PPgK^;
z5%!?uDxlvC#MIVsfmZv~|8v=5bl+q3laMN=VmYeB@p;&(<R}8``+Ua~NFHbRhW_A0
zubxsyp`030@Mz5?)Laox2SQ<FPcZ)6&0}EDlgmhdY0zW9#mdWZn?38gC__4p2-9c>
zR+kU~2Lyc82=Y2ZEBb5q_^8s2gDe7~#wnqwEhU2-=Mgl7*>Zpq6sXY5#lkJB3Ea9Q
zI}jg)iz--6MRYW2xz3|SN|ErXtyYKGU4GPxX)@P1yNu`rxmLmeHbv1laPTz&&Lp9%
zZx7}N|3Zp5Va!<CXaO&5^pA}7Y4<Z~bKaU}i!{VN@5p#S3EK6A_7aJo))knBWkiEa
z7bx}};>C$CVA9NVpjPh+bH%##iXE9XK&w;2Lj%CH{+u*qwuLVB@x2y({Z!3SibRp?
zWWs*lXfshqvl|?h_w?~+UKNm5x}RJNIDeht#xYa*6~reEaD&-Jxk2i-K_egUi^){2
zqbj5k1OHt=W10Jr0O=ro7_tq(+(nRf{GZhj1LQ_9YYAx3K)<MRs$n}ozVSEUd4mfD
zX0=cSjX|6NJ^cn%63mSnjI>*R1}%t&HjWHGbfN<wK`7|f@LCSu+%CVg2`THjeIevs
z8fV<Af{$%}9OeM9ZO1Sp4_>~YtGh+J(G0@21y;=<kXdyIApW|~v$}H(EC~ozR$`Oo
z!eIut-!hPgKvM1}+E-K(8)|P*u`Y8n4b@g>ZpC09R+{sx(?53^|Kl2jWSh@b6njHN
z<VPTz?9L(8Yh6uG6hIamM4oa0h?xptPHvb}{F4b4zYlmhpON-qN&RvEY^{$Xoj8xl
zW90uY$VBgh?68<qdvx=z=eHf97h2rSGsHcx!%NoIGlm8ID5+<}k@#7?$j<osuIFpb
z@e5&9kA1@*M&)pL-oC+AtJoIi!yE6^{aXD#>~<rW_ti2?n~%WhX-DUanF7Vppg)k8
zPjs8f@gD;bjy=zrglOb*o&_lTX1vw?SO8Z75iAM-y8hM3WGZKcNe1CK5J(@POJQ6H
zVsq}}Dn|T=E_1{d2BF)UERx$Z0tn$pcmT-eG1aI2iZ(Ja3Z_V<X&x9CUrJcRA3YWV
zA53~uS^Fd5p$*l={4SE@S(gBs?K&A%u8g=N`4W#VLcy;K5_7)Z@r~D!=i;%6)c>do
zl<i;kcjxP5=-mu5%`&{gjM{yY`0=y0!m{I!OkQm)%cf|S571T%2yzHVNqT4uzoL8t
zZw&~mWVyV)MOUGcT(@s<(IzC8EOg%YvpQtO&EB`pFEGP-+`IvvZZbaR^Lo<Z^44|4
zEwQ`k@!#dJ_}`1mtmhrY6bc&^aA7|qi|qI*4lU)VBoWk%DZ&i^Q!V3S?D>JXU%TJZ
z9?!)vxy$!K5pHkj&7~KElQbqxLiu#$;io+x`+JdJ@2r<`Exh3YV^SGzW6O&~7<<Q!
zo(kvk3XMZ<#XVuN&b%f5d9~qb><GgOo&0HW-G;CC&EA*8qFr~O(5>Fr{7T=_)&y5f
zc^|(kdUI5tR`wCzZ~mU_M^wxCeg{_8H=X71-Lf0BJK#&xA5%h-u2#tVNdMM<m3Z9U
z|93AuH=eJGm8UgG*wm4a1XE}uaTSln#1?7i9zOl?^wg7{esN%x_wC7;win@P4GH0c
z1oKZ46`Ut<@T4OmTQ=aT0O2}K^)yc8+P`n}oHw_f-~O8G|M$J^miAB(?&pW+L|FUV
zC;PE)e=q(1_k;H1!jRO}-!B+WPsT4kJv}^&gEzFFU1F3^+`D)2?~eQFulcu6k9|dN
zZa*jdUS@lC^8Dhz!?I^F{}nxbcJ^22X2Zl^TTKAt1{>&!H7<;wv5T^P@mBZy2Vk!T
zZYW)k6-L~m+`912e)BOAF;8TT<KA{o00Tf45ZuI^xQ`m#ih9c_0w9J0`T6S$jzha6
zBt#g=Oj2-89H$`7nt=+Gm?Z1wfzl0u65*ilu`CjV=++L997RT62810~l(0!Q-nwPU
z1(IEs5eFt2yCj>&F{q}qN;3Lk>w(o{7Zi$R@(Lo@PErVbscd|tZWAri90M+o)L;y{
z5Y7E_1|4EbJ{%J_>ah?<vw=>5V1+he#Z&_Y3P>l2+rAibhye)`L3*k%VV;z?C{PDE
z&F@j#cN>r#om7~f97Y5Q;*i|wtOY?CqT}iAnDknklq9ND3r^N%n3d9)wulC1-c9k*
z$m(**`fQRq?W~m$j?=DAH9kyLQBBh(!(+xTXp;bn7&8h5gopshwS{}?X9mx(#M<Z{
zs|73KRA|xJ6E18rDATQQ(6T+W*%`8|0TV=Jv36dMl!5P!GD4|Fbtt3rb=jWuG<smx
zub$jLG6~)*H$OFGxf4^(sgRa*6o<YA!!qCpPq@c&R)-yc0dr@;hq7=8K+=#<8s+<>
zIfvPuy?M0#sRMwo>5fo|5>E+>oF>e16Udoiel;DyM)em)Y95R*c{L)WHDTKwVhleS
zT1+!r)p6+&Ia>gJeP<adJX{{<d)OfqyqaQ_aW!Qaia-{m54#@Pr!b@RI0%=5BPr^J
z;cC|z!f0m|sKVgh!q&8`g22@Np1_B5AR0lC8Re%yaFSV3kVWa`#IPwXr$<#|ugOY^
z*-AxeA~*r8fl~sq<Iwvvz7HiJ=3@?kk>YfA4ypWNGoqZRH}l&e)%(eShh%R>95I=X
zxBUPCse{;$01|pRUFpDvHJJu+6IPU8v}XG1>TNj!@SGjn4I6m74Vw~@_yu>ix#!1D
zGs=_2ReG<p^<U;<K(X=76|ESS@bkbSW)MdPt4gNZqh^c~BZV8+E4O6h!uTnHe8Rz#
zGO>3-iUcX+d=MuQfNVPxy@14M6c!uMw{1?;GC+6~l$S@6T$f^A225+HYmB9GqV5HN
z826-a+1cEFixgu1KwbGJ{9_?V+DMq&jgbcj`^r?saYL~{p9R|_B}!KY&6t0}K;S3=
z^bF*JB*=#@kFC$SU!(SC`ySwzfGaJ#o1U~44S@9lpakEy+&F%lWXK7Sk-hwjjc9dR
z&36nNijHZVkW-?CSRn(x(CWNCL^v+6T70Mt8oV^$3y^LD2|3>r?E|4to2BA8HC9|N
z!A}_G@+*k~jpSdUyG%vk?Ml4}-CP_O3Y232v?A3qCH-VV`<c8UAaYR*(F7LZ%Y>Mb
z#xNRVX)~hyMpI^Ubu3nR_&SSZ4a;?Ll^qOXjec#T&EMfNN05P4))eRF5MwtEq+-kY
zl*swUiA_A*manel%Ou+YhRrpK4SoXnMPdFE&hu}%6{w7aMj)9E3^72nW@YvfB)m$C
z`B6ACXB@7GyQR7<IqBB}y1+w(V<Tvr(<p|&Bm!5i%qTP@^jb=wHX`m_RPph5AuvVA
z9CPl<MicA^HIBa8&?Zy})M%)FFntF<SEUB260RnS2pB+CPl1B#?WF_BtU{~kLoQb3
zvq86TG1(3ig;g<QGq~(>4PTx}>5Pc3w|*f;^!uP6xnA^l6+|mu=?M-6GC)mUBQY63
znSI1}!RStX(4z=JA@BC{zuRLm-iIF^dHsI0^&@vFu<_W<VzyJ7%egWHB=ZTxG^C*i
zZO6V2Xfp1W3eID%$y4JwYU)r?jEz^SYV+ZaNAtU7KLE)~YB7GmI(36&k2T=`amWnS
zd*Sg){70NkRnkmTN?#*kI~wrsJGVoxag7<kpK&NiBCAJ-;0AXT;AI-2-seu<J>IAR
z7Wl~C$b1yr*0VmGMflxM6CBVpc(~UaXg90Io3AW*TBC_Kgjz5?Hctvj!aYua3Cd4n
z3%lFmU#fM0HRU+f3%h*+e0854Awo}5!@%cXZ@`@W&-<nndQdbChc$<tdchcjSdjH1
znsWYFp+g0(byt?eD4CnZa5J28ZMmQhqjCQw^n|(pK3Mr7r*`hQf!aQXg5l<RDczyP
zL6JX$uC|RbfE-bj;p#5x*E`(|klro4#Sz#{7XQRf4ZvJ*p}I$Ibhhn>q>0)`9P5if
zO+Q4-XeUiZ%bLjmPt!NYT$U(E*T?q;p_Cl)9HzChiZ&#xBfKqF3L2w3NU8r$r=9OC
zkg4Tjdu8B`8TG`7V~==TAu&}Qocam6%ctohc3X|8^5-`Oo^wcc@5FkO(G=+f@vtM0
z+tK=Wl6{~1_!s$Id$5kPQ?sx<NWG_J)1lfqcEy5{Y%#5G%`eaK#6fJQ3p!K)89CyB
z#MszvS(n&6vlU|frz&WC2Xr!`?v%-@tY)-ZYuUeO`4;2cJdjm|v#KLlJuA0b9D%m$
z0FEJMKqCZgdE%+jrLuBs8vaFa83aymc$#YSr?y9P;`yr1o5x$vIeLQS=~XgqplbDT
zw3?kHclAb{WAi)5OQRs~YyRstPD5yy7$f^@zp>-R_S&-z)il@ppPktNF8_4w1*Hh{
z*X$vGT`s7NTR6Hdk3#k8TwhGO!cX@&s?^*#ZQSrEuXU(ptE6+bE%sZsSA}6n(4-gb
zyVqOEpjJn_mgtvt1c1ZwXrr1}N6ID1Q1_lX_W?)jGj5OJ?{4@U53hm#U(ie2RNH?>
zo{pd?NWEvA|LoqfXCb#2hCVG_(fw0H2PQT1<9qS?z+A|an<*clr5nC?t_=unc!wNZ
zu{-oDJ}k0#@=wxqb%lApt@Z)lM<~I3v2&$Yrq2TL`IV^9pn$-%ia?UexJ=a*JPdc<
zDQI(e-jW(5LkoH`2F*(?tw=@DVEzxjXbN+L8ctmK@h(Km6aHBom+&_zF8qT#F1V~d
zv=SC<Lho(hd9N)~{-7d+=QJijz!*yL3<O^fxEye|I8^O%#S=>hv}x61cj;pAe{)NJ
z|9kyo?p8S0_J$eoc_iy)I3JuwKkjx`j#`~u;@M1G(SZr_io)w`V6jW)z^EiZw8Kia
z9K}K7eS}PGWaeU&N!9ZA<xg?pVa2}TYP_Q718qQFbA^=X1K^U-(#ov#k~w?apLf?h
zFntaBtL}u=h35bzYVZoLU*6UVR(I_R)2bPI^^ZYZ!e;Dw1#YddxC@mDoyH;`0%0=9
zb=AssbJj%l+g!DQm<EO$yL+jX(w{eC0TsnJtskv>EPcK-zwRZn;iJ3Zw?DVxk?LQ$
z5&U!`WIvYxq=brWM*h;>j24OA{RxVz+`RD*bZu!f@!uwK$td>eX1vH&YT{OU<(3h4
zE4gwr^WPRlWIK<QJ9}v>L3g{ja=Y~D_T8nevVYrDksadFcCyk=ed11|?nbTGR@2hX
zgMT|qPj+sw?sj?Yb}J2Z>~B4Ox;wD6yH&Cqx4%22`(;Eam6o_YTKVP0(=Q)lzr6bQ
zWm05seDljYuf4g%y%v+b`KNmym-Yf1_LfBUS9SN9Vf*We`&*U!1HSt^OZ)r(_Wup-
z({;Zdd42Une?6}J`s?XeOVZar|Gol5=^o2pL6_*TOJ5<k=<sLs%}P4rl#aZ$$0~Zj
zb?IQ@X{9~@fc|-g*8%_l3UYu$fH`y;m~!@j;1v`U5n&V*6BI?m#pU5LSYfm{yP`Vh
zIZZBQEq>JtXh~_o^EhD*eK8#)Nj+0ZoT<E#rIP7IB@>%-rZy^;_UCP!HEf)99Nci`
z);MQRoQo&k-P_d5-<%L=>3i8G;EG*PsN<Dz*RV*Bh-;Uk;=He2_rHGga{R5}o1`#e
za(Gf|RBA>{de-%<+X=TRiIhBY{@uaB!RhJgt*xztgM*(xf1a)L|9insaY^B(3Ie&~
zweJZ0vW2gtqv4L(4{A)_i3vv<+beO+RF%HnlGS`IC5GMW`IBC<`1NEU@$J{&r$iDt
zDLExIEj=SMD?8_QZh+eP{DQmZVdA1jJW|;xETaWKmXHLOl$62pnAX%8N}jWMV51-r
z$R-hP(%YZWZNw`r=W5C!%^bp^r08kz<T8(#q{thCcQbSLlXzCF3@c@IZT<7c=GOMk
z?w7s&uXK7|VIfTEp@A^Al4`*!&B1EslCpjYC)Q5oYrS?QGl>K1my9{Ytm2JmsT7Jg
zXavsp0og^Vg1)A4RHZr;qz8z@9nTG2{sXhGH%wQ^a)>*q)*m>%hf9JBn|C!%{V!&{
zrkX1v8GnM<S}V%?h;s_ySe;<>hcYp1X2e0`51b9bHEjYKE_nP%UVsoy#@jE%MUKZ@
z>1-=Zz0mQ$?b_W7$H}}3U5cKs&RDt6DdHBDmL(qc4MqFhC2|syWJY5<C89fCA2Mpd
zMNy|WH3Q!>a*gY*@<#_TaaJZ6-&_w4TKLeV<?>e`E{~zRcg~ulCj8Duh^0Go3UxhD
zd^{yQbjmCP!gnwIoaU4mFlsXhH)2|?%W||-EBEr=#b;0d{yzD(D;>QcJM;QC-!cio
zoQzCDU>dozzzX;y11Mgn%>a*WYb%8+;km%(23_i>BhqlY#zG{RCyqc)e1c?;le^uM
zeAQ?fk2E-^gULfEwfPgXl?0IbNsMk3+YA`&`bfM<_4|@I4!fW#<Wf2y2_fx*`3yJw
z(^E}hxjtPZsOX2uj5CW{v&f62Pz^YO`x<JI;^VZ%#OS%pn-y^zO`DZTM<#D?;ltHY
zZ~zmNAy#{gMusw5VmLgc3c>{-GD2F(y5jg{9PAw923ksaYYPXt%&i<$rQi}w1J{o8
z1i~KZ1AWiezG2L&&i3I0SHrU1<k;cSI{=W=(Bxzj2j7cbq^ZD^0z1nw-*)X?sWmGf
zq4CLAGC(LZYdeN7p2bY4Jbb9cAbs-meQ{s{(y;aI6U|YXYeM=D%brgx1MmI6m^Iut
zajwRd3S^C&!+kdxDLgNYY9}IuaMzt7oYC_anJ`<$b@wG+w6!6=lL3b2@NwdURum_@
z{!3Oi<w;kAfiFIcC{MY_aq;&SBb|EBnhahVTY9vg_irmz)z^rvx@fpiNgq;;HA5O|
zd@1!FDm4dONP#Pg0M*AiD1_sMOPcZzfeLsX`eOKV#UCG|-{%+)-UT#AjfdBHjNJyZ
zMt~5nNJwn(Jq4mcj_G`eoSETC#RG*3QXt2a+OSYhj3U>H2D@DJ`-L|kgUV9GEry$3
z94~p6S`f$^Kegnm`t?tL5#?%YbFV4>sZirqn4JCo!7Q3Uu2%QFp~I~1+BWoU@?l%Y
zd&A<%-v8zUAO1c57|X`LbWwO9c6&gK*oPG2Wha*x71GGeasp4qKbs_AtC$;a>f$pD
zi%-wH+?q~%?s6<CI+z`f#|&;Dw!~htuf#xhKK)#Mq@@~7yGhR{tqiau7bf123{e%j
zA**`mWGa-^v`SZDnNu#EjcKL~1hOGYewajFG7Hc85i>q4@{68^`@$J8#LKO36dwKi
z13O4h0{l&t06n)wgi4@DydJfXUHu_x8w~ORzy2+>{Jp2eTV#af0iyHpBQOg`R!Dqh
zbdFjAM9GY)U{5W)ly!zUYcxjXtdo;Enf-*aaDBECUkUcr$dp1xC^ut0Ih4<I*DnUI
zvfd7P&s;5aeqzG<Mo0W|Su)URxf`8MgL)SbIM8+wPMa`@rXUER)S<1|ag{6bRe9D)
z8h$W`3Km99XJMYx_!Q~agQIQX13|<L;g-CO&Kjgov57eC9e-znCj*mMzrR3gbgKY6
zLbY9v@k|DY;;3ggrI_(?TxB{ZNZ44{)H$0_%|Ch7p!;Lu;-BP04%p7(VBF7AWstRE
z<Yh+YV3}lFj}gJ#kN|VtM^9&-97J5>0zoW!&3woQ)PjOfMj3P<f1Cf!x36TN|7AcR
z5*M{k5k|}wfNgzp!BK6kZyE2jM)D^sZ?KRNXQ<Z=7O|c>W^pY!0iSt5QsrQs88O%*
z<HOr#x9`m^uXniqExh9CK{?BZ>oYS6SRJj%fZ5t`%rQ{u8Ce?e7h{&L17?(UfXa0b
zOO!)7s4xMzAsj?zSC+maUJW~_1bu;n3ukmQnwaUCPQ0YX=W+(#gbGmr4PG|f6aOA{
zRIHf6BmiWd^sIzt2SJG}44QYe34AqYSJX<tbODX)s#V)_rP-1F9uZ6MbXhJAWKv^m
zmy%+92~#~^Lx)UJZ)}wT;{ADPiLSZ6k%0$Jk6-?`f8%k!M`*pA7#ZZn5_1>Rc4~`v
z1Mot|O`+^@B-0WKnx8AS`mbpYGXa%fCEHQ3Y4sY8KZE6F<G8<B4dJ->*}G4Q4C)ks
zgxwbM`UMTKx-YZIepE6vT>9=4od?0AbJ!ntj86||140AWi7c@v!-h0us;#((Opj6V
zjG$YtU&y7)hZ?YV1^Z<pNHBYw{&Q0tHiP-(KPl~>6E^$KacR^y;<XQ*9UNH(h>oA%
zhw!t=nT9iNNvFdsBjL=A4@BRD02CjiUz-OJuOCy1JYCB#EeKI6O>jQlmsM|G$8~ZX
zeS9S&_-iuVy6a~B$5i=FaUiGA5X+e*oiEx&hK-<aDf4>UI{w#mf{&`;snBcI^kOQQ
zpH8grFW>SXAWm+_Ex=t^cH9<!&GkrSHcrz>9?gcJv#J|BF(dGzJh5EQm1q?8`b&WJ
z?}hDowXO!My<qp>AKn+LcRzl;_rI9cbymISxz&DT+3%0xoag)Azuu4O|NS3Cuv%ut
z>g$cg-%BS-X?+a@sKTThn-9^F2A%pU|L3<5^jxauTwA(S;{uY2cY~HfPYF#}hM?N4
zl9ehW#4Qtq5N{ukn^-@V)dN7J`GBpB;h7G|Z){z0XF`+Pa7Rq9u;SyNnmu{x1G-|H
zBjuXE#<L-9Q~*R4P%?Fg6<fu5rd-j86Nw80G|GQud`?uGc>Lz{`}5>jE=2(Fd2!lU
z(eptMe-NV|j}K!dY;-RM_gknjk?~#@c>jr=b`Fo=J=X8{zqX=T78l0Zb4T7Gbv~Jz
z=yK$lT>E=K$wfFzA7?^e^?f;i6^zJUG#q$7{4HXBKzJ*RvELAMWIXwThrGi(_x7dJ
z5dz|z_^434XY~7>vzRq)$gyoiSB*NVrOYpHIhzc7ho-QEWOJ6j3Hr#=GxhqiA0yu?
z3gFLPtkOolClGfHt=@TA7GhuriBrUZ5;nHK=g{fz3qG;DDdPKe2bbWBxc9rRUH9<r
z+r&Tinwn3I1!qleO`F_mS&3S5CVu9<`LK!@x^c^XIcAwx=(IpZ=y*t%w~>!C4uYA3
zy*o&pWxr)a5e|vs5e`Bulj8dylNH8UJ-%a^U<!f}sEc-xum*sN3!2yNl3*Uk!Vuxr
zh&Z34gbatT92tc|s#~<7aEB<Lb`Tun<xNUDu1hjp2Azpd6#&d)90Cy>?A+>*2m@39
zc7U`^3Z@OK<0xwcu&~FZvPHAwBgMphQiI~8988l&B9b&+l9b1ignR&cji#>((wvGV
zae1iPq8rLn$qC;Pf-&j08quU;XOw~eovk#>@MHz7cxqz?yQ%7#*>5LBJOm9Kt2syW
z<7{liiL_-hPNn=uh<P|DQR2d3i<NYYluYlDJmp7g+j2{(&5=i3vJ25yiwJ-~8Bk^w
z=;A6sZW;7J8WOgd?FPts*Qip`AzK0Bn-Bww;f%=6^8H6Fjn#6ks}LtDb~Hvl>z&MP
zX^1=xBnLpgI5wS|m!HxI6vso9!i}FAsM-|B)5W3Td<OnNb+<{ty=7&c&+-5Gh@m|=
zO_IV3EChZTfG~46pybYL<Xq8L73t0W&?s9j#<$79vod~Dyd)=7N?|$D%_3c%K5jc*
z4JfFVv(tx5E#$P`xg?I1W0H{7a8-OeDYx4bDf}~A;xa6Zm!d>A`r0U;{th@L1D2<P
z<Y+ujC1}^)yIltHYlnc(kxC{=#Z%+(e9g;>+|__HpH$ap#bG-I79fw`WhMC<C9LGN
zvH7CJpA0K0fJ+*nmp-P380D=Y`&1@AIbY=zl5%GcR{W8k<|sxu65AkN;xu;Wp}je0
zp0{j!@#~r58d*ER?{=b+I0xA6P@~kEBsTDR%sG@!ix`+63}ujoaJ!aBd@IG%c&ams
z)#tH;W~EE?;>VYj<?YM+Csnn?@3fy_9K@8l){2#)%0z~gp9QKGWngP%?bXrc*4wtF
zQJI>O_Nu8Q6S}RfiW-t6Vm_udo1yxsSG9Gy{3lLp&rB`FTg|10e2bq7f)|g^v#1nn
zNdi0+Q6@TfsYY$ov>M3iN&!Sv4R!0sc`=+GBf!9-2bZJ*Im5rPnnRFs5NV>hFo%8L
zh#SpF<UW5IUz2{~M$A1F6h*A=F}o8vZksoK2U~gr{(_3(tYt4fcL7^%XjA=2Tz_&R
z#fV;ok<bH^H6R@to;={g{HniT15-JOq&YP1hixlFaZeS#Jt4^b!n<$nhFc)O<(F3b
zuoa}ew&t5<Z~nc3HEn<vHQ_@;RNED10DC_&<5aC&$)FLb9z8tbcUjK(R7Jm86IvSp
zn32qNkAtLVdMm4oE477;9^oR_(Y=}`{&A@;O$E=)RIR?B_cnpn^p)MdQCu%~!SPPh
zbV+mC3qq-u-f32*N8gURkd}#6rfxRAY3I8BS5CdmV2d9$eB-71hhW^#37+m!Z^(?s
zl>%IuZ~c90<)s<yUk$BFHyys(R#nM{R%EM~1Xw~<U%J2`{1IGnz2V61VJJ0JHvEDD
z5yUq6@ZT>xokwT)hi53|W8V0jQa1s6V{0fh{})qK;ayWy8~8V1;v0zF7pP2S5tRgY
zH7Qq7$~M-7SSEp-pp?`b5G5^SmsCevbDN<}hqOGDOS=uQh*h&_%fMQK3p)SGaV9~U
z^W0jIEq81rj2!%opf5!}O&S@snV9aH`1u)64n5@F4W!%ReB4??xjdG39tD|~f7!_`
z4}_fBESi|dpB>t@^#u)B(51vYQ-o9NvD@RAEXaqARBdt%9Hx@MjM{<lWPiW{1FD~K
zSq5V2XASi@uK3@&0?9B$>}GTp!I|IJ7#18!)ldlGoAF`*4|8Jg%t;4208*Bvn=7AS
zThbTT3?Y}@XuSehiZ0$Pfn>@<9zdke(9R28`F?gaSR<A9c*v8M?6iIXNn}64ywdi%
zrSj-~e$y&Nm8y>95Od5xhpPKxS2sktKYIZ=BM(_SLTn~mx6q1W%bwm^i08QrNSLxg
zfzM^~Ka)FPNnH^DvnS;<`9SaD1yi0PNjBJpo_dRCopGtFcS^e>%jqw9?uE0TGKWiv
zmvxvdgC5kD@NUs+7oQQ)gPQ2VL-}rTJ8tB)XH5c0C>_XoHHeI46LW$a^XErw{?F1f
zF3H;38X|`;+~qu7yf2=h>DHndeCHWq@xJ$>_>rlZl9=P<;ed*fyV@vRKEy!t?nupV
zNwu+&o&M2;7mmA8N=O3GaE*YW0h!xmx1kA*=~|SOJN^k{{FJeuX3mXq&PGV3vpGDz
zBFTKH3mIya3<amAfYR$+%+Dm}M5o|Ur$ffRu#mB!0fA<u?alA5wSypK3XqlRq(sE}
zO8{TYp?GcWBniMX&9&s9%auPa90V5d;UjY@;GWP6K@TSw?nQkF@U-#Ic(}sz<}WUx
zAMachn$R+Q9>dKY*ZN$n4m2$Ee2(N^Cz+p?;B@(sQ~IG>yFdG=hjYxIe8+a@P^kMs
zDQC(xmkg-ZYlY`ovo0YYUnGP~6sEYAj&eQ#J~<O`RvMix%l#>|?}KD&nA)2U{XVVX
z?&mOWQv>cIi*Nrk7dm}4irg!@6f5r1B+h6f5ol!A_kxG_CW?QLS4RWX?jyMl1uDBW
z{<-oJjv+u}2m-2Ib>m(>E8`WUsf;fXViN@ZLIBpziyb8K85+lro02C~3VK2~zqKy{
zW(tblS*y)(+0BFzrk}PE5MxsgPnggb-en|%q&%lZZcfXs_?(JJX{D8Wofn&~IPf}9
zyQC-e4kf7ho10Y%mKv%^fCLa2=k#2KGfnntWS)p~!cx!qzcnJvOII|aF8CTF?_Ig+
z6MMg#RO?M}nai@0+%^-sEj(5JA357eIBo;5XTm<<o#3Cx;9akaPlGrY8ib-g*v`Uc
zNdn<>c5Hw=hh>(D>##=^XKxnels^~&7GaH$MB|S};vdZ+lCH;q(SQ%;ZHaf*KISL}
zwB&qDAq1qO0$Y8Fd*fPBL;r<L)>n8gNj$!42E6=I{j!DW<3lu5+NSq{YEuq%$%wYJ
zQSs^5p5aynSAA-5^Oy$f?ovTJ!Y!x_hyRpA|J2kSeER$EGV;xZzZG0GsgMz4=#v;x
zCICndC97Ys;=~>@JO}(Fydssj`Ukrr^K?~VX%*bOswA>@7PICutf?lhX;iL#30Tuw
zTGRcvHaoV4(_P1Vt(Qx!uhAnS*TQ!wK-zr<_Q%jUn+O{^K<G!p+wjjK4IdXcBU6??
zo8dki>uxNLISLb$qzRxto7LOP(UHD4*67%{xQ*Fxh?B_`oHNe4;YLerwApzviyxa_
z?%lD8uz8!!o@Joyk9boWOOVZ0I_?_f_O)>&Ll&QSi`7QyzYvdWIvX7tpJ*G|n7CwA
zY&LLnl`=r%aFQVM-LHvDmHrrKvNIs?lE?r$z4Zg$v&3@4BrfZ5zxgtUnm3Hl4icY4
zapx~;99Zu<#AWkttAcmmdL<r=!-}59mR0Ue&Ta1{16wakSHI_L{Kt62#GEk|ph)rV
zdcM_M)>E={!_TMaa@+pM1KzJMuU;BWagpb_#O~P%h!1EVHVlcs>b*Vew)>%y-aEGU
zqr&W6s6dbBt*`Gb{SHZ=({4`pkY2whb`28y(T2Yp0CX~7Ee+NV5)@;+#dVQbca!*Y
zmVXUkA@Qo@9)VN37{)Q4Fds(x5i-(M^-UspE@Dzdfw#nB^o#y!AnR5ldi+3~k!U7&
z<WfYoGa)-jAGFz!wp!>O&pZ(qAvd(mPi<sU{0}n12a{P3(_135F7l;t+40nvmPq+X
z825;onP!n2TV6>NOLu<-?3Jz?Cd1#QUlv7&+*-K6_g*0XdI|;m&CyLjQI9rnYa*BB
zdMQ&=Or_~0Q<#=n#+K#5$F79^dD&pv(WWBM#%eg{M^55Nuc@TOYa2HXiDyAEVrZ%O
z9nFk!$ve|&ftSS3=l%55`;&hB{g+YMH<w)MN8rhLfs*Xq>{S_cvw|y3)ki_OuO4!&
zpJ*iKDKwE~wzuTIqz8QJ$*WbSFcZ<|=;06hYW}-*C*$z;J2u&ws|7!MbEKP2^e6T&
zd6{X0Aks<tD*{#KhFM<*H7l@&+XY&ucgGbRO(c@)3Vjq_4y|S?rV8J+=(cN;uv1%P
zxfj;Iu-)-9+X>jxhXFCyDfx*ZfW8JiO(*44kp@e1F)ox1VN%G?g-gTFjjL~!%gaUx
zdFGHZEhv^at;gFS`b1<h?3~>%)j7CC3(s++(niK#O~zE*tE#DMXll9tu)Xuq<KF%!
z&jyD_pHIAe{dVd~*xbV6RfMG%c0=FID>}`|FS!<(+9zasW){52#2=9wx9aSVVvzmC
zBS1edNiLEV@uLYurci)LjFcSe<Q1o)CPSSL1x<d($nW5%fhF430B?`mNPXmOtg<dK
z6tm<58Kgerz#yxclL2Fla&o6G0=V`e028+%z9J4iw0x0Cf|e>-W%7c%!$Gc6jeyy{
zTiW9%!#HCUM(uLw2-|~OjWTCV@${tkw6NcO=rg!8@ltK0tFlsy&xYUCzYvMp5!j-z
z@9I9uc{#>deC7S;S7mA-E{(`g>$38@V}%#WVnP=mM{LeLDT}@OX?3PIis53aJfD*J
z@=IxP!d(vMhOWsV$_pmG6dz*T_{YirvMg)UvqNwrS&5h~?G}$wtM5FDm#l#~w!LxX
zvkw_w=t6u0<nX+>6_NkcuUKdDxPVrmsyizeVcb$55TeXZjgv#%mN%>vWe4)feX=fb
z7vX&ynJpAn;baU8y?pzWmW)9}pAi?FinmIJj(aAD^e}d|Dm*m{Z}Z^@x&*U0i_KuN
zERuNtIio9{nsQ)TgEy1%j=v4x-Ur)`e4-)jUnx&0Outf@vb49lOy;~T9QPFB2ju}x
znWSnTtZ&N58DNxiI9$R9A08o!qu99u^Q!nW{P?bB9H?7la&$Hmt>D!m3L}!menUZ1
zQqLEoGIcM49c=jD$qx?T(%(IYo`x7cfOA>9fY2OaKc{du_o}#%c%!>R$tV8~?2*1L
zxGq|vKn{%5M75<tZE6Q2iu}`-zq{EpC~`<j+`+R+<+S-n4<OybasRzm2qJPse4ZY+
z*7-W4qUW9Ad20XZ=Fh$NpKbwJT?pYHqQ41quKKa{$+_TGNNMOWrTHp9jd~Kd*A@-L
zBoVjLaNPI%<={ns`m!Cr2Vr>K%QN2~Rid7DbjPY>&%rjpxpKZHlch&vEl0bMDcd03
zU?nppbQpC<&Nv*HdQck)f54YRxNb<rd+jcvP1C*M96;dj_pOfk)jL5CT#neGF4XQ1
z_he+_(>r+&T+d8u$Lg%%PvTY-!G!!pVy8Ei_w9Y=gZPhVfm972KjhaN%M-E>KOVkR
ze(Uk=3Ot6>+7K7>CdELPD`u7*QwB=Sy(8kTcrl`IHJM#&3#S=aIN!E+j)N7Soba%%
zWWD@b%IW6OOr6Wk(M4bN_N-@tSNM>1yauRLy*Z12;Fi4?eMbq60_+P9pEt<ten}&G
z{|=JNi@w9<Mf`5uBdY%i@ZH@&_oj)?!XmSTJ+X@vG?I9dkANT<fz>X=>m<fyE?9c@
z6m&H{1^#IRQ>@PtMoAJrLTPGAm%rr}i*^_X=j$BtG604F3Oy(fm)OSEK_z!dK@fzP
ztnT1QIx90m{+btXRWqK8xsQGcS6ekWoEYKk6&M0ZiK&2(n1cIpxa`L8QG=j%xCM#>
z<*_`%IzTg4a4CKmLo)7)`+Ck9#pSW?+^XSY6&v`<4gKa&+a+QuS+NBq$`2edDsDej
zh=n9`j6Q#M_3v9|(QvDK!3N_wd>!VNL)Ac`5-wAoT?KV4qwB{L1TNqp@2|{f2HO&I
z#|L?L?;ja6rX^t}ABDl?h(HFOWg>zG5QRnP!$b%qo^o$SrEMZesEvP;E3;52j|Q`m
z1b&{R*vh*D5MEReS0fQ39FZ!oK_qb^GokOJh!{^wlL6Ntl*0wb;DWhVHcN?nhS<QA
zd0YC)eUmP;9UL2zQIj<{f?fKUqWi!}#!xQWa1uVkVU8lb*1*G&cZrxXCPrv@h>GyC
zOMn>tRgm1KjM6d@f~AA7c~@`y)TEp0qh4Pa_)@Jn9@ODSAm{W#(iu<dhSY2cz$*Cc
zP2JgC6pOcQ_P)WriGh5vzp)bMP`EmN3hshS5TNcu7oJ5mSg-lUERWx8Vb6@@Idq_1
zL9;_e)`=YVl2%GjU*3ajk9Iu|`t)78eUq>C$$|`!N!owk84iRDR=81xAbjiAa_KZ?
zM#rHBzA*Gm$h#L@Z6Njp9K>WEy$_cLbK!7sCPHh_Y<D`t2<Ia#rPM#P@ezYi3|Hob
z`@ZOY2K8|iOg!Dkc4)239&}csQ4BN4?H^<2TLmTddhy1_lQo@I;Hgno5!;U_93#<>
z<!IFwuI3&u48;1TQ}!!-+Bznh>zL>Mx<}>;<X~rB4p{c>o%%kS*1Kxv$i~{14-e?7
z%`AM};z;}|{7-N>5fanZHU9w8r~MHp6!(PFE67W^+?(ZU@o@jbZdu0)z$L@nQ{X1f
zeXxpr-a5ij!u17s=Vd<MEwrBG12V`ugi%Nj1e8(72jBX&=Eow1<OriFPfh_)xohJ{
z#9)3E;xpf8yYbsUjq{-#{)&Q(&vg?=K(Dg=X<VRJsmKU)L5M%rxpz1;=3Ci{P~aPW
z#K@;f*HDhhR#^=$tJuPCG!Y_5pY6sZ%SUG_lU0!6X~|Sh%ux;czZJHJ;zEh_Ir^59
zBt#q$3O3KL6BiD)%`Kg&Q~%zisk0qROaf1K=0NbL1Q6Hco0mSpYRwT9S3JL#zJGG8
zR_yTiiZ@%?{HXeI`<;pqLx}sr>zL!tD&f$}7X_1E)gM1<uLupjTDJIKrAmeKUT8#a
z*~ic7KYDFLL!%#-{kIqMqkpAB^V;qhNIbnA8j#Hb%_e>lcj<ES9tAcv9fQ{#AlxE0
z;Ygtbwx3RL#%5Dih#w<iDf`F&`ocMBvh(6DmyDnaWu(HO<y9LTlR1%`5>vH)<+8Gf
z5i^-9J%mYy(mU=VlFnR?gZ{hC!u+rMTje=7khII8ILb2fLii|{RdfifgVFwBy9$(`
zYDgyUM^!ZXta<+U^?s05DEwJcn0)o?ao`H^l+)5vD0pD_!!vqhPT#TJ_p0AEVGS|e
z`KShz3+dl0;E^o-KS&}&LO1L0uLd4fkdoDYsy`jXWLV82o-S=9y8;*!n?)v{PY95s
z+Qp_+9MzrwyA5Xl(s8==h4wjTk+-VZh`v&#`Eiu#{NcCK<s~WNNyVOMyFu|DP!#u{
z5&O6gWkSzS;pM<h!CSvTkE<$w%|1>XaQt-m`bgXzvH29p(-s6J_*A?Syk3u_0=|QN
z#2D#`dJ-65Z_lTdwu`5~)+&*PNzMro1Gj|SQR}tde~wMX=!1Womw~L-^i&jpS06M9
zKH*t`xB({8$FAJ|%IY%A-|EjRG>Lq0O8xxcD#WY}(y92nk?@<tAIOJ*<y|~<*@Ys^
zu^aw;<IGP4a(zPlNM}7IFB4lgx`G1jT&AJEQg+||R@aPyW5AWR4?{-g^)U#1b?PX%
zHXL3+fm241NZO<b6?QPliKm7K*M%#|fLvZe`NNrus-YYDAm%CwkwLk7eF;o1M&sPx
z?Y80<&mn*5Y`}<ln{c=TQatGM*(ZdPf<}xHKpYocl+c{&-nQz#5HVblojyaBEKCB*
z7GT;n_Xfn#&hId^bew|<W??!%!dXONFCrDI`m%gjX36tm4VYq0NN4Vl;`p;n*&pY?
z=yP&SapLs3Ob5B*^toM52f0<rywW6i2vCXZAzT*)vx`911KF3pvTL2GQx0|{#JfQe
zLKE#mR-wp?L;At1Qf}h1Tx4lKVs&D=Sh7!GHb~YZ4IWfY(OMNZ@BvQ;RS`$kK8g(t
z)w69gp3_NECZ-PoR+LNqu|reXBL+1sLwUY;aJ-?wy+KHroY^0-s;8D1a&jUoSeeTg
z{bQAq{z}O6P|_PaI~Eq+bxwCnT<55j+zQrySEJ`*WDD_|LVlJ?qv?*<j28QhQmj!6
z>2QM)RIYzt>Y+ZhmUR0zJh_&7d`13Yva9N<Ss}wgBZL)9f~K+|Js`$_Bx5^e3QFHZ
zF4?3JtI%?aEA%;3I>4UuWD<TI1}%|vK&CmY6Ww(!juYQGZUo7hjoBV4*inJU930H-
zfiBdJ+*<6F7e?+fRbWPyXFM6t_5()=;ws+}o-?COA4d6|a{r!uIjJAruB8g{l2paR
z7!ys-MW~#=78P}p_x(>^C2CVIZY+!_b#)E|237^#u8&VVgCI!xk4*8SrU69BNDAj|
z^L6Y(mi8-S2#}<40Bi2%FyoT;%1jBamFhw;L?HCbr2H#oNTKy?0)Ep-NTAyL>e!el
zy`P<WQxa!%6bzm~CS=7mqC_&8=mnc5JUKG!tJe<?w9BIy0~%uLm67#PsFj_RlZ&^l
zPuCOhV?-X{wLgZ}kFu_IER&p)hz8L&MNlLzMrI`kxG7FAB6CkjCb6+fm${0l%Zhh<
zr<W3KnsKB~R&3i@3xRV<-%d|KHn|j=cA>T&OOZ3fn>Di-(*mLoiX)j8w>ou>P>=Gx
zznCf-H>GHFDO(rZ=|JVz67u;PEZHJ0(g39h#oVz?%N3AGr_oSc7gEB^u$c<1p3Y3Q
zxcIxvl>3@3x7vKb2y~2S;6XSl>{9z;R!nGbI@y-^XIAZnqk8005puOu+4_1W-E+Gc
zZDwUX6RXkLH3FY&%9|Yg<?dU{)j2hvc6@UtG&}jCs|(=|I*je_nO_}?Y92a;w*>pN
zV4L&K_yaeX8=}oYahVr7V2!DnjmeG@r(MUyyDiN)OqKV8Lh-8cyS7tmp1yetAjm}<
zg00+lnbNlIUn@@|uh1r6K2~j)Nx8z<CV#P(YNv9gQ_JFW0SB`AWq97|rQK1(o|g8f
z%xLWb?^uJ!TQ6xH0qu0iV;z;|?haFqFW|dG+6I?EVgqR->+wuW;rLje!sw-Qt?r_k
zehte&AC%n5P*1dz#O$NMn{#ZNIo3&?rshpAqrVu$e-UuVzPPR=^iE+yfr17N2Gv!)
zn*2YW&ib#(H&Dad*r*W$M%U;@y1|VuDd}=_OSiF&?nXemLC}GqgvjXbkdg*52qnb&
zayaLQ^Dn$VJn!eZpZmTpQSa9%TU)?Tz3<dw6YHQac^iWq1UJR;!(&d)?<Qcg61W(_
zGsFE-w)1An9he$qY4BrF&j0etW0iqrBVS(P-h#r^!XRZogDYCt84?@j&-^y<wAH_C
zXL%C5?3%Vbc@Ovmj@}##RD2u!i!Ml2K1Ay_q4}We(HdeZA8HXE`rvbj&CgIL`7pO<
z<jC+azn@`&^8P;Z;gN5{AAh(T9`5)1-q&g1mefeZnA6s8zraY1$X{uZ6Tn^1s?AY3
zw&G_I-GbZif}@V7SYLdQtNs~2^x<REF%XFklPVWWp*=89_vqpJBu?^VWM|*(A@xw~
zll2esOeXv4mvU#}2Pe}SMGP#BRBX^|=GhbLH&!D`+u$N2xvOx}*7T#)hmXXrR|}e<
zwzt;L8yqBmhWwj6ODTeC=OpNYioKTZo>>8l_6iI4_0Dg3`P%c?mH<pR>O9#3Do>4d
zv4-k*klPlJOHDv@k-uL`v2m}Q|7Y~1I#%?~b<*Q0Q=$kU{8@BIg;0cFoPd061u(^7
zWoeQN>#vb=?$2Ub{ws<+Ez<fiv@fL>V_VIqJLL2<GUNCObyS5yhKAURuN#eA@)5(A
zjEU2XAEMwz>VJzfH(eS3cK!bw%@`@I$7bh~aszyl2v#Yr%~E?eZ%9D}3MowLAfvHk
zejDFr(%fEZAg5Vw9YYREp#mJ~&DWVp{cG4>k&gkEdLx)!ca?R|P+{(L_)(!Aiw$@D
zjbc9MdAdSpDmyYeQt^FxB;$039&O=2PaB}GX0PC3%z#S)Uq676c_-)>5)5<Vfn{7O
zl(34e2=Ag(vQNPi#FTsKa6su@Y^0eSanLM4vo9c%AIc{~`V&Js$HU8svS33Hd*IdK
z$b+B)(r-4UBz2)kj8Q;8$;~Jq!jjx`*zJik&<OK3Ic9g`AzeKnbUWt0wstv$yBY!|
zHmoewvaN)AX}Bttevf>65y}0#&@uC{_Oy_D-UJ@n8Bh1y$QAG2cSaoPQ$~_ZQueSx
zB)L4zgc?&+yA`Yfu*H08F9BcI^Y|0H<ea-Q6d3dWI@1)3igLMgV9@9@)O7=cy@wg^
z+fa<*>DMqC@lli+Ci<JOk|jm_PU@<<EqGU#DY1{~Fj527tqYIV5~ZOFb_0rg^C|G3
zhI}WXHigqmvfZ2Gn}0@|T|vVs$vNqHyg8P{(#>QK7#nvBSWKZ`-Ggvjn0%?MN<bI>
zR%c|v2yToV|6cJ;E~-k=DV2+c$2cLQ{&e|fwzn``S^jBx%G-M1yH&&vEZ&`8^ryuX
z#r)K%gVB_kjYbz^N~;{*b*H84XDC>qg_hftNpG%wk-E)~x65ul`4sWGmq0%OV9<#M
z4tHb!YioM$!M)N=cgc!-sob4~<xJitoo<bL^1Vl3&Mr9+t`Fqvx>;u|kYxD1&Fr(o
zP;7zMD_$(11j<B#7quS}b8Bp*581eIC{}ZXg4i0)={}ee|EA$hrbSR<#U9l=(+hL+
zgNAR=2vSG_Uf0H6gRc_w7O2BtRJ~tIb>)b@HpdN90>=-8MwFe$n~{$ws)rc6Glo@$
zOYR8DWbURuA~oFOC3LgLsOU!b+ih!49h>@G!~gCE3Pu!@%HgMKUK{jc5U&SiH)%x1
z)_7@nBxSw}u27kJZxAX$wnv$69~rrYc({AEr>r!27+m<|oq2TL4c=p)Uz`GNGkdr3
zD*ZQnZ2J%So|dcZq`!9lWVlLYdZ47FDk3aMQD11870+*UgT|@s#&Mr>*(QK~nbbHj
zfa9T8Y$1ZFk2O=)-2+saOb)VRKLR@T^Looe-+vT{mLVH*;OT0O-?bN5m6nU9<pS~w
zc1o&-sM>A2iA}Tjei$_<G1FY>Atx?=A_x}0L2QzRZyo$jhYj*jy+z@CH+$lAO=R@I
zcs=)zI=q^qDG<DI&)#veA0q+rAKJ0?#pJ=b+vQ-q&u@*Ews<Bwv%iTUpao+JEhCfn
zm7@I+Z#q*)xtY$tRT^EC>g)S;7?Tl~n8Gh>I)``cej7;)YU^^K`~K}WiyUyCrB}Xp
z(g+TuiaIplGwB*SNUWta;ZIkf`*!!MsU@#atK;bFn<7Q8Z^%6jkHOHU79Q#s<rd={
zCl-O0-h2W9HCjpw)&l=+20yp&Sg_wvaae{xwP*HjQLhMjh-P&l+b1A?^jLH&koQoD
zM($8?pH3jeqdeHng*q@1G{$Q{E_V}Hy$!i_=r|*vM5y(<5x;#N`-G*O=)wtthDa6u
zBYy+`dEj-Cfc_cXD{gz^Bz4#4_B3Mr{-y5Z*YheB2ltPrPZcB&AL96bKb`mFh$Sby
z{v%X-ff{rYFMBQ^RMD72&a2}SOXovWn$UN*iua#v?MtsxZF2WC+F?#oN3IwRey(v*
z-Gda@2sJk&4edh=i+z=V;o-k=^onGsuUgf@mmAsc<0k`qKNNc&_U@hkR_#5#AtENH
z8eZC9<L2KiNK0hS?Wot|O+%H2j;fT~m=tM+s7H>9BDqE*kR_=hA)asYMpFylA)D(9
zY$~y-jlNlrg`HaP=5JJz2G#FT<yl};?-6GN>L+fra=D1zP0Cg)tdyHjxvO2PWmWXd
zsjDbZU*jOZ#{RCDZgb!GJd2Dlx(_`(J^AvfMXkzrlFUM&MbnyUmH>$ZGdeGO$(Dv@
zFUQ8!S>i8~**%o-^%HFWk8}!RW&!=7QM@)+E=D&Ue)}d5P!;`ItD;M`H;_XDOIKfU
z19Df?8kMQ135N<VHCn!Mo@xxu<kCu}u)aCM@Bt~{#*G9GWIQ*#&3aKy$eCdr)M3n@
z^`c-N`PQti6gdhf$(JFKfUQaGy;&^a764bpdI0V_F;6zKMYg7_f(oDLw6gCx=YNtd
zsPH|M8~5*+_7^L==Vi6JIkZ(ida1~Ihk2d&+Y<>8-{6=`Y#`^8esveS72U(Nm~N<e
zV9R*nh&w}p*Lj=2x=Tyq!S%;LR;U0c(T~aBatmeV8TRq=%#5?j?+X6?880}nZlo{;
z8|8k3+q)CP5@66v3?pke>Dk-7SUNN7ia18+f{J+7AO&qJM=o5s0W%VfCGS_Q08y}s
z-WF;lIw~<>TJ(Hh>P>ZrbIP4JH!(@%471m`JF?A*ePoeZxAOQs-C3gtTYudMAc=Rk
zy$Rt=43HJyk=aMY&<2Z<C+2mJPZsSW-D46Q1+c^Q#L3ii`Um#`1>%Gn3{+efk0cRQ
zV6-P=SQ&Fqm0ph6W2zj*?6E}s_$*L9sq)J%7f0)jtuQI>tSTZN)vcnC)8F>2^STlo
z$UsqzX=UjIHS#oWy*pDUrp3&vM-7k79z1i3lJ2i3SHL6%=QNP>K6(G{C-^x%uZ(Yt
zV}N!|p0zi#NRf(K@=<-V8c-nTI2RBDWz)?>H3tNK<|}Yc9^Aau7W)uh`wJ_IGfTWH
zVie#@90xLseB<*a8DzO(Ee}vWjzu=VJ?#40ON+6YVX_F&!Mm~tZM2MV#;~=H^5pmq
zCm_VtwV)500=E6R2Di1IwPAOLu%rahU@v3qZ5*RyYIzyNp^Xe!C)-=SR<Ny7K_KUT
zgy<*rJ&e=tq;3+`fWq=@h^Hlgc1h1fGY4=p>D|o&h&q-_)B>piYlo^D?wRcrVhi@K
zC(Oo8`dI^BtG=CYYIl?0tl4J^+eB{^Ur!4E5+#~dr%S`lZ7IBeO$2_?g@p3&6S*wg
zJ!^f_Nb}AlbmlHeb0J08XR-l$(t?+uFZ&9V?Th9-R9Ac1i@xV`9wR&+`@)(Lmq#1S
zvyRNuuT1^F{Vlxt2U#<rn7TSJwm-w|JJ)qE9zR$q{e91%+!*{xID$&)DywY!XeiSu
zaCew*udMgKKj&M$H@syOn*NcPC-`l^ug)EehY8?3AcutBoD%g{BAtf~Rv|AqO962u
z0&!rFU61f^YF#8-vIJH^6cOulgdm&BL@B(>q@d6ofUs8e!{1lf2R1k@kS4}6*8+jB
zozOrog?N}DOkNnQNwjg5Nd5yaq#nD&T&c?_4Kt-uP|+Z=B_$E~?@p>S8xQk@=dg4m
z7sgS@1*F~1|IK=e#&ZyqZiGx#G}212@u~_f$AA<bYGp*Q@p3`EMm4ylvVzTTwWg#{
zx)21>&F$X;%3@8XxN8a$2LQ{B>UB}1v?3X)`@AAH6(&!l@*3^=MC?9~TlHhJk`!EI
z4KX+iU;J$aoRotO0HV)Dfbbgw;(X>4c43HT)<U<5?dM4kb?Kt{Zv~<nGE+Xz($Cj6
z_~pAlPx))VE=m9hC{B1y2Ukj$e6bf$-a<_0wo8}(C>But>NOL+dtc*pQsC~N&ofU!
zGUXt@PiiFIvoYK<732<r8akG<88+yo`8EP6Z&V&d#2hs_6HrG7J(ie`C2H;>*AgRV
z$RUS=ANwZje?ZK~_si5u9nY#M2jHF;VZh8LwU&(%^S;YI>SZg1Am1;*U#i=+`aL(F
z|G8S@Xz>jVYR#IoduM=>qMgR=g`uzW5=-*%ORx^)g{f(B97zO{{+5PAsxM(FZ(ZK(
z??+_2Buvk6HV<G_K;2;x#L{6}C?lqHEIhndZlMOke`HV;50gQs6_`5fKmyq^OXBnY
z?$py}Cob3{ag2DhAvF@{rPtkBTU3DxY!J2hw2f(>`r5u26yrXIw3(3Gk1{#>=Ap4p
zyor;;pLDE~0{A2ZGt2M!Mq%kEGVSNbF`a(fgXGB~F?(um_|ZHp84?d-dISTCysl<x
z^C|A<m+SfB;LpL}Lm}9v32uz-Gd{OkZ-P73@ZH+j;Ip8Q&O6{Etr+i{8511vl@o+_
zd+;5661^4{N_8PN@Z`^*Evqv|bH*pR&}v``sn`&QTj5KQ+WlJ2Fa-`vOmd{3i;e3n
zHPvDJExXQVk9BXwRS=p*w)s_u)0oDbX4G@xP=>fev>Z#Gh>SRw*?%jD7<c>=FENGz
zkQr`slA?c*uQTBU8DX~%mm)5k&WBs(zb5sDxu3O+=9cSU38mpvFea~^r8anQgmorR
z<=;M{kpt8fp7&x=`p(N~{<$YtMbG+DS>eoR#wl4uHQyBRFM6jJS?O3dB;m8cecJ_J
z?Q&ZsT{kI}^6|re8;WQ=^hZ9|()iem)B=zvH$iEnYqQ<yqw-C>wyP%4x5#fHn^l@2
zGo>>y8rW8T2ACcLtXf<5k;ndn#1|MzeH>+`*meS*#sR^b8e(t-m`Vy4(%KQp!5S+|
z{K;3@{bPDUYY*YuYjwM|%s)0{)pR?$IroIgC8)h0sgU6^oERyusa9L>Su~A(Lz09M
zTA%xQMxs{4^-WtCd0kG5mUygW7J`{I9XVpVowirliEbI>@%a;|1K)@%#tR29O~?*-
zb-)O`yX<#-vQM!)1sGnN4Zic2jf-3&tSyJ~yW>v&2eYy+^~XJSjMv9xBGx8u|G@0@
zy6ZsU+j_de?Y_kt4Wwhb12=>jLXZH61k=K@#q1^34RQoXb4K}K&D;ixN1teAp|s?M
zV@h5+0pU4VQuo1j#_ArAJIIFa7Jz^6ebKW`3FWn=>8td2swcRoAbxEakg*3XKE;Bf
zsHDns=x7G(Ei5dys>L$`B4*xv{Nt#=8OccaO5<VtXU*krthx*ESE7;bSIW`oF~L&0
zH2EJq?yqj4Z=2rBuO73BBVuH3bck1@H0XzKh)-iUDIa>Y9_g8a|10W-kSnBt%uWGd
z3Nh8<2mr}Lay6O)tvS`?e><GL2=Iy*ZY9e>lVS^WVR&Zh0M;)@iRCxL99|Y=FLw?W
zTA*S#Vmt`_ScQ1z4Wclb$;+dJh*<SNL-m_C7y!lo*bZMNMLLk5P1j`f8H+gw+@3?d
zZCg8Wn>ZguHayhAgak*-N9U$|RfT{It^e(Bb20-a?`i1k0?5!#4B|{O;0>B9j_P~;
z@YwAtV8IV|PESuK2I3gnevDfKx;_g_u34dN;>0pq@p`smg0B<`C?HQ|WxKARujOLc
zoB^FxFgP&MCTf|8a`VLkB2YknLu@CRwH<Q>c#uF(TF#<US*7dj8-buqcZ%F!0vGKH
ztt~jm0ejKxA2w|GI_#l|Tsksf{stXK*kpB&(^mTc!6t#!Fq1BOgBd(D95O{$jLE3z
zqtXV}%x2tqILK6t5##4nOvK%g_iefy6x~OwQ?_FsC9w(>*kc-qW=z%<&7QBoSH!=>
zNW8OBt_8^!Ii07*Ldy3PqqODR%O91qtUhw7?!hPs?=k;%QP5sPHex?DA%UR)mli^G
zbBqRVMYWcvw4I<njiOM|pg}?hOmO5K)VYRO!Fqr_#h`y1Ce*i*J-)go(MfdL`6+@|
zc;5A1ZO&3*-|~U$87Y@AO@hG5GiU_0_~sn*H|LrHTxb9;bfuhCMmMm-s93TJXumn%
zF-OO4TBYfH3y{=Atcb%>p_!`)G&^%SX1aoutoT+$U3Bs}&b2(7j5o&E+wDg?pQ^gG
zb>pmf{>X4KpR5Y@#`b03gW7|n8thZI0%AQbHUz=>KT9aDJ8KBQsz|3KvYNJIt@|EI
z{&!qxED~xx+h$GZZ$P=*Zo-kQ-_d*wqc!)s4t<K~jPm;=$%)8S2!6Z#Ps``UGfjw^
z2+$BfrY;7yh~r4_Gkr;%8%snu*2`_{<889o;@#*i0ZJF)q;1_4zSUA(9QqS~N`=*(
zmGp_16L^{G%-b}7U&cTQNY0P*f9pT7G`XCva+5t;3!`0CnRXd#Pl}9EC!hqFQvuOk
z9*@ZcvA?sh`B)G|jMhC|K#4|>ntn_d)*n<CKwIZVOUfsMb;oftcmf&EcxCfZ38l3`
zw|vFT+M9>VpX&M!Q~Cwv#tsR^b(;2rYP?|HWw6F9|J|49u-aSg7>KP&^C{d-bCQ?Y
zmB<e*u%iMJi_*M%B*;h_`+fCRPsC?|$2hSd4azA&gM&<|A2ma`l;^qIwRn6O@}F$-
zJ$3dHirV=H7h;GIGE8JCA>Z+j6=JO>>^JlYNbEc%7KUGZw$^X>yAm7!1<ZE=b|}`A
z1c6Q8QJV2;(fYbntqtg{97PlhA%>3XaE&5UM@$!<z7Zplh!Oa;PVm`L<ohv4gj=rf
z2-_?PgUN7JyH_xquJ;9drkYSxy)YY4m!?b4L6h&1y&EesaaQ(2Yc^28y4Z6==Ls5h
zLsVXTKmRkMKGEY$5}I%1aJ<(r*H`^GD8}(C-HHyc*;kfok<ZOOLYi}4xj+>JQG*su
z&vFgR=nK{+@37(-Hx>+*LMKp^)Nf-({|ON_nP{sK)_+Co?eZ6L*{_4~-b1#c38`P&
zI=?goOyv9??*^x|@frrQxV;}u%Fz{E&`oN$*UNtg><z$V?L(l8V<m&k_22Z${_0sM
zd3FEQKVzoohq1OcjkmJBcs+`2Ys3zJbG<Kl%v#bni0&Wfnz*trdYhSCl{hgr9Mf5z
z($(~02Iu>(pzldGs%OKXqd@eMMsKozd<8JMXk@hoo+NyWOR_<39{RaI!jS=zZtyZI
zju*#UEL<$x&6}Vx!^CgCLc+flQk%DvUm^wv%~PGNKQH9>4``me4ER=;JJDG^(bWMw
z%=Tu?J{hWf_{CXkIJ=41&FF&~`{zd*#~Vgp^HG-(z_medg?*z%!>P`P>Ic3VYmZRt
zvlbg|lslB^LE5oL5!i445g!-L{K2R9_EANvyZ#HQ_*am$Jx+j>qkcZ3X2v74X_<^U
zNKX#E$e3oj_%hDDDbHhHME_mCh|TbBj6HM4UY~feo}F3-`d>q4_O*>DMC+~|PJYpy
z21e5x_c!F}oob6u#uE=5Hrf68_S~Qz)}K$gY8~(i&vJNe<b{95-+9Uk4!B`^=+D^r
z5ZWza^=(CA2Sw3b3lXcQroquT0clOMK19ICnHxD)@f17w=MAXLc3`Z2($0VCC#(6f
zGIM;#v*w6ERv9ZwF(j$ycLx7J%6mn$tS5|RsFZyaL$D;HjxGaGk|iXIA+1GoE}$Lv
zok?1fz4wfLuLYrE&RK3|aYnNkX2{8zi}*U@nYYZf?#|3C#htS(cle!0BM5mc$q5VM
z2xJs8&F1lENMbSP)A=C~6C~)fz)QD4bbm;4XMRLtLA|+Eu=|I|K#+7+kmy2?*!mB#
z-b2y7AL8dhcm7B@fBta?dM-g1ELrDFF_0rEaxNtuEFFAbLOEE*;QU7BzBC6)+9EfX
z1+$3oHP?9z2leDyx(2iO1}C)T-bWBherNo$2v+XC4dWL`b%n3m_P?6eDF_~M2ommV
z<sGCiHcw$K-RLdnUb#ND7|&aBI9PJLwD1O6vUz6zoikPMMmeMrY=`pfn7y@UmL_YK
zwC=NzyPhiNgy<PaNqO|?I)N-Uo&j6(@55L8+Vj~)Eq7>vzDXjKJu=Mbe2Qj_2gJ&J
z(mE*gLwMYWPfk9)b92T&m)UMZCT2zkl@CE_A!uQ%5DQsrWGJ^f3bIJ<RTN^Ka;Y~G
zaC;39Q`0iA(!%bjr`2F%R%PrzeF@q8#;oGR=UVVoF%Z$lbR+n#fYCF^o`Ag4(scAM
zU^z-k=y6VL7Jb&Gk(9=iAan&019&ojv33b_k6BQQt8aD&+xr&gQLfdC%|17+tJEv>
ztSbC~F3fK)e3X5!tmZ1>EQW}*C>OToP$cG1wkj`LlqXvRnzgCv*{yna<yWxgoq=s)
zCNwUc+jbP?)uN<mZAv<gEL>P9OPf>PW9$AguzAP)@V<)3d8-uoMqfbVT^u%H$u2}o
zWGWK--t^VJpe(_QO;CZ2q5kJPC+d#QHO^L4%)We&Dtp;1>(J`+`BJW7`nD3Gu#vdM
zPWp{ecII<J_yRrGbm!o7Ptpu<6AmsRZU@Zih0}ZeyooK_kl^6A%0aQe$EMV=rD$OB
z_F<9h*J&xj`r%=`wep9+&7)tXpXO$M_mym<>3uFK?W%W-Z7H2NV&6*Yw{hP*f@tlK
zL3dT_NbWwk6}J;TbR=Tn44=Hi+T?h?Go1ftaQ7Z(r!VK#CCMr*@(&mAuh-OHGM#@(
zA;2#W_%F7|{yqTYcQD_A&Ec8fWT!4^<XFqg6!6llxn*pkzk`$o((gyr++Bz)Yxlk`
zzXozKXCtf_QM!no7V#asTN-juRCOPEp;*CJKCh5NmnkfYCcolg)ehpNlT}_<22LKn
zy94jCCx6;S*#EHJK~o*Zonc&Q@D9Tl59arFzA1l(C1d);zGlGjWR5FY2-A&1^bgSQ
z{)Txg|2k=}dH$!9hqgBQjrYZ_ML&;JP|&%x%X_0wAkV$0-s{qid=mLMFZW+Bo>myv
zdZ}a|pD*%gy+o>|_xC)Hy8F-&MZAyNU1jm)r48YQJiBL5)UVr^tfw9y(NNu%<6p@N
z7=-S#3i4{`@3YG6uioR;!WoZ0M`ct*Ppv=d`l=9h=T(h0i35laO3K#<yjb15_v#y8
zQ|&hkalX$eTa1T@{hG7S%R>V9Y=MsPTngX&ncGk7?oP_jYREqu?zVRl+pE*({@&TF
zpTyG^=7wo!`KG`S@))fo$ACJdm94FNnR(;lxc0HEFMIRRHuMQ|gL1~{yYbyRp!HEW
zm4I}?$B3)CM$eun0{?<e)Ptq)FN~jjXx(_c#_jKDzd9|;kXiRsPKEL166TEu?q%Pu
zOMO4ZXr&a&u|$&uSAPd~E8vc13u^enc;s(-^h@c|R#(uO<gR$Z>9)wtkCaKZX3WDR
zjN-QwLOA&DEI3c<F;U(is`$Sh<vI-tA+|{Y`!L~4R%GrPUrbJ?WzgMMcQ1z*Kg(a7
zN*Of(dB1=s)QqhsjVU-(C?GH<3Tj;%P__++y8D6`qP>(j_1mE4pw#_`Uuw4Hc%<}J
zRK%Y@cf=QlT8tb7M}2%U^64`A$<__Y4F#NyS5!tt)6m@B)i>l(tY%YZMN`{5Nzx=6
zTC)IVnje`qgzWDyVLj&{3>S^Fjn{Z48BI_o%F7lBQ{SD+{T#vaI)IjsUR{D7m$@^U
zV^YE$rZ2{jOpMBtLx+YYHyn_^I;STm<2ZacUK%t;|0UwrP*4OeujZJ4{my%_{|KkW
zss6;)^=R7Tq8yu<ecymXs#0L&MfPg6l*m+09I@u8=Y4<ukqoXSPxA$IAv>6<u8o37
zdfu=|)^BsL@ct*GQq{-*fmzItstuk|h<fhy_k*A!w}@ET#zi5b27A{CbcGg$D-TX6
zU=|hsK0?aeIuk*i3k+5_8LcPW@Z!LU2woLsIg3#c(;f426V&bQ1427bEX@}5@ME{3
zJ|UnFr5?|C{>EXdi{6GVXm4=J%V*oqo-4&|B~%bhOhLtD<Voj@(oPy+D{Zp&Ao!5r
zoi9HMpT8;tg7c(x0dtk~bgOOc+{N>FBOH@YiOj3V%JL834DX_irH8?`ugVIyPdt$-
zk*$FpPf2dTC1Z+5ohxOy2S-o-`}gmLL;?vU;l(3~{vaCb^{=9QMB#E1B87Pz(dBV1
zwh_cw^I<bC93whqDz2sR51))NnxGrkVi`MtAx*N=!_sSBBV%bcL362|miB=>^pU<T
z;BHNs2|jYMT;PC^(v98xI|aiKpcdB?*DM|;w%GC{sADE7MabOHcz|B{Z$R0$In7Jf
zjY;+KSbkB&5Ag4T%$MmIW^~RI;%_5BhVc>hEeHjj>T$BWuXv>5)%OY@Cb;4V1ToE-
zLfgznLHz~tp8P@EedD_jS#wjJ10EDa(hFoP%kg@sh94e5s1!h_5dm$4rX+J1nY_@_
z=4j7Qe!J6vr6lK)v&$vxb8GZ8KZ`CJ2C?<rv9z1i%}<A<FY%@N)zmE8D7GFi+nLR1
z$vcF8aC_?zz9nmcQnNm|gAFM{a^)8uJ^nz@wLtvbAhC|Xu0NsHR&a`AbnkFVU`={k
zABjD_Lr<r4GfE)BS-8b+CH%@E#4&;xLR0A#{!?(vvvTird-mY)j&s%3b~z$bO9B{2
zqlABxRpj)a9+rB|0m)RJp{?Xq^US@-t5D2K$-AMhw#)m)t6`<Dv1N`XKCgO-m3>=A
z_`7{uI%@}g+dsH>`@P+YS3W77)wX!peLAe{-}Cd3)u-zZu}VN6iNL#n0pQ<gYKS)a
z5jdB!1!-^0^T74{Fz41x(6D3~8Mun41q~kKn%np;A?S}I`dWMSH{ipA1l5m&34ong
z8mXhmWm^3RkseKV8&&gdk*%JeAbP?7%!;k?zp`c@s+WczP%^#0^#&e)2GU-)?cwOm
zCH~PImfW0iJWA(N!0xYn@aTQ4Lt9n@fpNI>p~c}W`?0qJvF+G2&Eu^bIJTFFMgsQx
z>%g^=K+MM6AZGZ-16jNWF<7b}$QqQ*ri&n=!=P_t6$dW3U@T?WSxm4xCQjj#8pE5}
zxajM3kSn?bQrtvE{g;RWCojiFRiE&9)(Q0dQ{tzC{RF2DM>gDOB7G)Oj#-6F9^8>g
zGwsZE|6<hI@>*RyY%ay<`nfOux^dWWCovAi++2(SM91BV-0`HK&7-CV2n6U(76D8^
zkHGj{?nJQU1K}{Nry?*d{+)&H{`GJH5)kL}s2{|OmS7|PVG*2Z!Il#^BBVQyPPmcT
zyFe;JWaY4FZ4oZq6W6gM0YS0e*Fzu$Io+|mRz?b$gC=g|h{{ReGuMqux~Ps(MZOkR
zjIWDusF1j^T19%XZ#KK_HoxjDZ8qt4EW6F;ah&0ON?Ht%7WYdlC_m@%Q&x?aj_rL+
zqZmlUmkQ9z=jla?MgzWU2nidc#4nXkb!0Y{0zFFu4bUq`Y-gXA2B?zY(V}+{X)sGX
z2qIIj`r{j|YT-8M$rTQgZj*Hi+oq@L927C~oB<hSnlc64;p#*IhYBP>g+)8n_YhFz
zx}u3gQ%Ifokf-w2uh@v`;Cg?3xLRDfF)~!9o+U3u1LBRf;%-5k#d+Q|E`u!&dD}HR
z-W{lO;Fqd~hs$>iJq1#gjEF7*G&(yS<A!%}X%cxl?Cf8Y$D`n7<hjvGCEhZhGiwX#
zg<rWSei73QsG+mo*8gpmVNTMB?0;VkVXn_nl<i(+;D1=d9gt5R{{=wbQJ#6{vc&Tl
z(sn@#CCZbCA-csy=#6WG;{y|kxY1fJ+x<_?<A72e5(Dy4knkWu6ooZDm#qFwh2;B#
zIsVGEhq-Suodffr<TZAiN=}eF*5t+S5wXvuDpZ9d`e<1&VBoGv>b-zISe=O@*Z$&L
zTEL0>><h;$XYaOU`oo&~iM56Ia&KOLgg$W#Shrw7695eRP?MW&09YYRF;Mp;h;eo!
zk+cuYx55W@?qVjIu<U>PcZk&atd}|=Vo;sw<q?BG%%0Kb-sTz&>Q1QDLHq}Zy&m2#
za6Ohm1Uc9@WFAF{cf=-wAiZwD>^|Vof?^EO?_eQ1wlCe>oQ3eWXe{Vr6$B~Q1k%>x
z<9fNCli2?P+g$02OHJ4)efSlS#QND<d;5h=hi1IZuv1y#nTK7Qjw+pJzu30uvyH?`
z#2gca9r_FknT?=oSQ!<wjeY*_pZaWc%Y~`YK&(4Fh2<V>LOWhr=;J7$X4ho+OYO=4
zV=jhlKr4jp$OrI8&6YSTT~_&sm*{Q+OZ!t{xw3~&r8lJeU9$oIwblQEgJ4}(rc4Z@
zYFBko<`s9&$?0}Q4ry(ZXjX8}No-5iy(2c`(?!HbT^Zk6&z~W7>aFg$ss}7y(+YYZ
zUO)t)q{Cd~9TMCyimp}iI<+Hp>7cTLv}<tZ`yZWyiFFi|ozWSJ>#KX5TkGGt`le^{
z%BzSyQRe}kK?2n(!d0v<)eRPosGvU_xeE}W{zxw?`5my-5anCzP4F}54p<zGBU#ES
zr7!*qHuJoEAsNc@=MqNd2LR3=;C=q6Rn3>(ry)(34dI9XTUl0)oYMlH8)P|<YFPng
z`FOYDu8PU-QfpA4Ux$e!oPdHRtt=Pf;9{2>r%&~|${$ZZJ?vQfM{knw{el3j#B&<J
z9eb^MUrC!z8|NBVn)KZn#0gwVI-R{uObLjk3%~EkdQo{AK%TZ7nE7Gz>LJ}PN3*`V
zW{?oUFg%yuM6z#a!d_KoD^)6$pS7yy_q;4bo7M7c?k~7ktF<#8sy1?TVXyqTWB<2@
zxl%s;VgdUzv!uCw`GhkazF&o$y%gid8Jkw0{}RICY^lug9LrBd0~A!w%~ZZ(-~S3|
zrbPp@nA;l>Y63{mMgY*`GXQLkTtUBYT_L@pdmon58UBY}Kms_TTuEk#6bEKqKkt2%
zLr%7;#)YO;B)l~9L`ft1$YpYNVCjIHrdR%nC<c`Th5!r#4uxWp*QNV;M4xZC;NTb~
z1|*gQ(=RB>z!uamn5%A{i1i<TQ}ea?rwE)k07zq#Yk^hc6|An^!wI+blLX{3c7ULX
zSjF#1$Jg!r5+uLPhy}bbR0PW8-#tPRU2hr{WeFO8ey9tq45;}M$+q<iO;T#V>u(%Y
zXJ75Nis+XeOl0)rIF%;KaDp-?<`ZAPq(VZ;B7lLqFC~y5cw&4G-4G)}Yd~S>6grTH
zACz?+V0C_Xai&RIpy^vb$j3TlRy^dfqw&iphS4-$QU=553U`iq#a@K7O4YjG1lcB_
zEM_%xf5&@DV~kDGwqw+IZ+J(7nppUF?<5NWo2xV(T}K3%RHX^;B?>g$+O*a`W2kPE
zNI)N%`hbwNj_jH8Sz)|Rwb}@#D?{O~@bftPUtE&3*c@r1xJN>PcpY~*E?zS(T=c#7
zwyrs=X1Zs0hJAl}b_EdJ@WfCj2LlXD91-eJ`m&>0<UBS*(0P2JtENz?xIe;QP%qyJ
zFY?9Z?}O4pvgl)J+(Wcw6FV!|SR7u+@gwwo%~dUQfjRHq)aH)Y@q&1eAU=r^Jba>_
ztm@bRz=TOS`B8OuG9kS@!LA^&3ZEFZjf>J8cXN%;-0zG#i$BjCO|>VnnUm>Jd4Ivw
zZ-Id3cJKvS1D@TCYrJ^`VwAu#TDMhB%JJeyyX}*PeN_WZ40aKX8`qO>2O$mx6A<4C
zds-Z3g){^?=C?fo9Y}DZBk7R22WL&3DZEF3C%A7H%(cao_`VZSzlSof`<SaY9Ac=k
zm?HE#CPqOyD*&`#9Otv2&<IZS4ZbI~SI1eYTF5kU2A@gz#TpVJO^OH5f2Ubq$)~^o
zjRaE%jxd7+_*HK6&$c(ObyFBgOP4&;K4e0>6w)lZMthD@dPyms*wHf+D4GFMNxvtA
zT8w`hroBy^n1`7xdV&~cK_s)}jOA?-xtPj8!9dbPT0DUIG4xu7qNTu?ten~uK&EsC
z?&3B*yvc<%D$K##G4##GRG!9v;nfUU6iol-5RZvlW{ukeKsO<j<IhdF#HhwKsSYBh
z8qp?A0kbc!lkrR`GbUzj=y~JnggL}3@k`2K6%zt1mEQy_=umMTV)}c~WH=&zBr$cY
zp28;34B#ibd1ltSVoHCE2Zc^65z;@+reCb2ZC=l_4jS!Bqzm^*5a}*5B$})(WPIOW
zGzw+BM$!KI!wDv>7kw<Gvr1~_Cvab@k%k#)6DTTLsI(Q_dzeeZ(n7<Adihh6mhbyS
zf#A{$*w`W{_n#i-ZB(XtRwGFvmlD|$ed60~Is|j0h7uDKNmfO>g!z}qWm8JalT{kz
zjoy;K7ThXsNu)1MRF62wAx;*^<lish*po>SDIzsS6U|Mt@hw)cg+y`(MvYCgYtCXt
z-LoipF-~#Myu{+qi)1b#A(1SL-Fhob=rTRll3ry{Lu*l?kS^}r>UFtwqb8kK03h5i
z$Fdz1SfLtszL+1nYC@yvJI+pW#3Nq5DuL(w4+y3o&4YO&#mk=|CS#r-;E1J&e4Y8n
z`f3*%W9$OnD0$|qSg%PSY@HiwMq0`mwepMj2<XB*w?3Qc7G4y{PX2hcY-vsFh+cY|
z!FsHuAr$N>$!I2Qr<}MZk!hzQ*z@dQ{XHctgn~ZWtMAe3Qmj`Doq}%5_ranYn7shP
zzBg`TG|#>iuwl}|lsZ>H;L(UBV}=FP*HJznYEGJ%Do88bSkU^o=oULpNl!*#F4-wm
zye^E<1HepxFzM&3OJpCW3QHtymmr(l^p1+?k2|uPds>_OVs*O~n}@fI%(%_>PMb$H
zx8#Y<uS-Rrhc=H7Hcu`$Gv+o=>9@Y~ZT+~+J-Z~kg)PqRtQC#|YWZU4QOuVP!d^1{
z%Sl8_H1vP{!2ih-{gd4Sym{XH8SqaLNVihD)syt4qKJDfNfOWqy22>VmC8$~eazx0
zblKiHCp$)2OAD5rkxgH;5K;5<kv-h9Tjx-b*io$)F8^nv+nGfr*spZs>7-lV2vg&v
zosMB79%W+KM#w$ymBcd5auNn0ke5k-pjdKpdXnWNj4Oya=@lay_#i2s{tQ4LsZZ6m
zO4`bSxa#!Nh=oR(D+_W_C+jQea`m^_P!!SEA%G&A>lT>3+8!6xvz<6v7Xw)+jR}=!
zGLf{Lj7~(2j2f3m&`XZ@^Z)2}bvSnK+ra2BD#F(I44X;;;uoc!3SY^jQQp{pG-8=%
z&gge&HB0V4VzK;D+{z{fLC~0tfW5x~mFh2(jY}D%sE91zxXEt232OkT>vtqpT*#7>
z{CLyLnlfx_rL^j~g^EBn?k_0)_SNF|eXdybj9B%<>_?&1s2kiC7o_^`F3880N1uoH
zeo@u46<(Ejp55yjTRnb-AbuTZGTnY$*szC<@TZ7cJCY68*-5e@?x{2+=ou+;6<=mT
z+Yl;u=n_;LX~g?fJ6|t||1pE862{7tw9aN)S)gy&&h{wvO-v2AUDCV8%CppT7oGSJ
zM_#YEim5f^_F}2=oE_v(eJ}e^Sh=&iEZzM@u3Tc?LkZ%xIIrQu>Ud`Em#!ZHO3AJD
zGZBrg&Vo(J^;`&%go65H+pL+07f)H@FuOvB3L>%DD*X5tl9GJc!n9YxDvlGA5ZKqa
z`Y#DxUj}v?Vazl&+zY45Zrb&2Y<lVUAvA*}LfO6}T{q_fWZ5Fb%`YC$3-<&ie*Yts
zTJp8XGG^R4X`-@6Az-+Vcz8FLD2KyO_?Cy33>d3y#1(u|zITVWLd3@h6#f0p)xwG*
z;p?ES#Bj33sQz(FL6iUNH`!g^j4<3*X(Nrd-$=x9C(f-V{-nz3i&Y@jyF`sX@g-Hk
zOIDF;3YV8!av1Sw$t2uMnxzwq6|tgdslUlmJKQgsrSJNhN)Ru2pE;9fHQ20&NeSji
zoo-5;G58BrB{D1F>Aw1Wv~DRrQ~ru2GVaLo&I9m>OEY(1w%_Hl?+tNupOQ2;Ls+Hw
zNdx|wN%0%R{B!pQ%J;Z)kckXPDZ_w@(kDgYSmK)-FuZ<Q5#cu@cdW1Sn(PIBNidOQ
zK=LL&ha`{kfemtf`JEE!_s68KC7+*39etM}`muukE+36!d^RRl^n>%2IoIh!$~!-l
z(odwUn7L~WC-teO4rG?>-<k}_3@*Bvp34z=o<CwBDmri1RhHM6mQyU37YKMi>LRQD
z=&R%UTffmZ%2eLyKXQ_!^7brmi)TBxO@Wp?_OwU!0T#1Q=@c*q)I0k_zBz9-{{)L?
za`{8w#G3S}J_UJPTp0HfrwnvBzAsB#|DhZ(Y!IGeJsaYC9b)n{lwO|5Llf&_l|`=*
z7Llpo^HtjuEUT6jjE0{~E(loO{{i2MG2bFdyou>>_PlDX@4zW5Xru(Br+g2#c1b3h
zbiIG^tjkRLS$G1MGuAfk%d)rUtN6inVgW*TARwz;nW$($rAp|X>ujIGtbSQYSM4F_
z-^<QdU&G5-br#mUnd8Px0V>sUu^gh^dMH6Nz;Trcmi`*UbY@|2tTIj1=Fk-X)*Y+w
zc<o%L(in}Kc)mNia3yaOIg^q+E0RK=tx70%_wWT~ax%Zcbk!b3Doh0S1=G@G{-#s{
zHh9P`i^TZ{DCaIj6(p#fPh!4i<x1yutq;d6#H9F&5;v7~mnHQ0dSh1&!b#4(+-9Sm
zjLd%yxsLqwC%5p#!N|U>?LD<Gh$xkW{6?nllNnL>quzt=XQ;9mj@?0`w+$K@KFqw2
z_$3}CBmY7|Tru$kxKZqvCpdxVJGc5tV@ynM^z3N(ua|sMG{vPXhJSmkg?>rjjV|u1
zOVD|2rKU&<M8NxbnGWZ}Hil_QX**2VXNcz2j`^qZd=`-ZV&20vWe*gvc9=BZaFlZy
zXpK`g>ypGm_uA+DdTR!}^V5twH|EDp{O6fR)X`tx*FBB;;BL5m=#Xxr8>^mrrilQI
z(Z&ydS!&VceU-V>X{K7Y=%MM}5apU8q<&aP?jRm;`6z#s*TbekShM^E5A)?$8Q<<1
z{}mGuk-T|GZrkF8Ijyt@BDRu$N#RD%MlpelE>Lb4v>+KL^<yzhu?9iptXPvD7q+BC
zZ>`ne(G}(%TRoU7zckyz{krn3?US1&{en*+*B<hK+m?*yzMmLR{qJhS55IoF8+&?0
zr_<g97+k8G@eMpA;C@IL-%u2&YAJ^oeK!vmh$#jJHwLlqx)J)s;%t~$tUsJMNJkr2
zs#b(Gv%J@XHFQMNW;m*9u~Ht<B}mnb=ZV^NJtC8?oh+2`S$mfxT{m5#5<T4%$WuRC
zAx}}@DJe8wOe@Zkhu0Vygg%u>yoa4L_*`ve+rjq7WqUA@ik+jn4Rb&NWw6jkH1mSK
z(8)%oUZSqrlFb_}?;LWuF{ItVoToN_`NF9wYv~-FFQg?Zm*I@@Vl71jdHRmRB9<m7
zsLyy}qd9)sD_=k3LpQn()^>q7UZTcxt;8b+)zN;hC`BLsEqIHx=&37r(cp`#7C73J
z3>9Wf_K@);8mUqLY4}~Q>JN)Vb7q=G!gzzsQ(9#iiZx=6jo~!6pVdEx?}EI$WV*1^
z34i|FP@^#*DqS>|m?IH^L(*vFn)**wEHO{T@+WY&@_`4GMGb#yO52Dfti}yBxnnqu
zk%*W_f(=<L^wosQ*#O$wJzXTv4^wVOMx{(HT{f2O9Xj#~v}0VL3Js28%QFU`<sq|5
zn(I++(Z?nZQyhoV-(=(LqxF-63q`m=L0l;-6_v{wC>A_2Kyg{CGHGlyaV5wpc_B5K
zPpP2<X=OBr%@_20`-wMJH~^Q-Ia^Sz$!)32FX~=efrL)TF4Vw4G)g1!=3r(=buYy>
z&u3{yeYg^ru!7y3M=T~^;B}y1o}zA*WBV^0kJd<Dk^M*Ri|?m0@NF695Lv)ckRPDU
z5SIVnRR&+>LYY<2D5&I_sm`rs5Sg52qGF&0ruD@ngS%Jr_Bf%0GaR{KJrYDL*oP1!
z7HAvAxlo0C1y$z=BICi(5CX3AY`pOJ&BrHSGqU&c*P%kff;9CqIyfGUyfrW#i^q!_
z^%i0ByOvl>GTO|3tdRISycn@-#D_$XLFRlP?c;_Canh4v(El}x`=Ge|<<nmJ6oZGd
zk)pOZ2vOB+qqoAi9;7a~O%(O^NGhj&j4xaawjxodDL9rE@vnNGSr?!VRaK)oZd-CR
z$ez;`q4XkGw}TzuG9k+)1`aF5j5-(%#2O>2YU3~)A?tojE6!z>SMY~hPLUtOSu^F^
zm!0h{=Jf6~kAL#$aD;ptoi>U-ezTPxebRNe;#;d0`+;vR*Puz-8_m13>at?r;tBVc
z>S29QG3|(Wa%Rb}Ju72DJdTtzQ3A9qX6p>p7DP&Dfu<)gp!7VIS&2VKH@fE%jvx5%
z4E%6xqVBmU%j1e+N+sw@Vc`Af?H6BeEB??n$FY|ISUvk~2r%Tnx)C~!P6kQuJxZF^
z6i)dKsO||c?|U(Bm3DrKeLCl3N_-}eD!%kec25BcFvdt*?CW7Yf~Nxbtx<WfajbvU
z0vj8Qg1H_I6uZ51##_DH&c(#e1e=j0)@fdt0-p#KKPVfVQ}MaDLtnv?;hTA_!mkua
z&d}jRWm6--Z3#@%H{YXc@l??=F-;=VjA4sZNVt3QFf&%Pnu|JVRP)Dl_+)YtQ2>8R
z?2$f@TB5+nTtbZ~7A-8eLl5FO8`c*^<Qk2|6Y<-O#eDv(mk+-=;N1u(wq`+qxQk<7
zsjZHe$RP90k#6FD&H&sOb-;dCBhvIFL)WVo@^|J#QdaYZ&r;{}t2Yj4sub_}i6RO&
zs!92t3hA3MR1^sI)hckVlKM3A7WqciaBq>#M2rWQUR3Ly=I7<;vIqhnRN}@T*3Cqb
zFIrP0vHv^Wx1fTDL$n0d>APkV^+PJ*&GlL&QO3jvuX({y$z)2IKx+Ip1jc8Hypuei
z+Za+K>epcKfPA5VR<Me)pNvG<1wocb09PCV6jDO(7m|n8Yl=0RW+X3G3%4U>*vHMv
z$d~H%LmSPT8!cWnF4oG?zOX-TwCW{a#wUk1xh}<9-o%(Kw>5?~`})1G+amw4TGB2U
z*!;rbH2K53FQKnoOGF;rkgpKP!|<_UqFn#TMWLz4Vq-kO#jO%UqZ<Z>h5Ft)(J32o
zXgyUF2IA0VV}QQ8`&+8X%Q$6ikz@E351N|w18I4NY$bEyQW8kt1k`kyY1s||3p~99
z&^}tGWmLeD3;y9`*lz0>v8V?d5vH|u2@tV}z2K_o_-!gHAiDyVgyXrxPNQbGxamti
z{j+sN6~rU<6@>oiy1|v|{q~FISC3D90KK+@TE9PM_+~`l#4q=af++&*=9LrZ7J~$+
z0!nE<AwkRq0I&$+-qXqF)MWQp`onb{^*)u~#MAE60y&noW4Np!C#HuGQNjt_=$(Rx
zQpY<52XdTEttQRNJvu3ENqXUOnV-AiqnhHaPM7O;W~4{GB-{afv&w0kUtA%)$cY#a
z-iCb^cl8%Y4SOXIGL9Z6st5l`cr>!PXyGwTdA0#&vyTo|`XZ@F&oG%Z_g!R=h12XP
zz*AfKPu8tW@3h6+DyYRQd96@mkB^8lP6=#r!U#}x^*(|k-V5T%LP@Vqs5(Vp$zTHu
zv2vIkgX+(0C#%3Hb--PX^3Rq=O1aQX!V9H;pA{>rlf()`>G#j{bUdDoFv$U432*_K
zNc$!&6j0F7BzCu$RoWi1CAwIN2b?!AV@*a(@3aIqO4B#nYS9a_+H&}f+0*J%nrXLn
zZ&CWc5H9MK$8l4jv5q8zrx0!pW7^wg2z`4CizMuOJ5(?p+Wg8j8XxW{ibVNhFt~25
zfd<AW=zaQE25e`DM2@pl%yW{M!5CBki{lTDe!q0+MZYlWA!SyI{w-4yNUjLSUVmgA
zph_}>O5ru=CeR&xzawWSQ0ZN(Aglh>H>q6?am7A^pdm|SY?46mmbX1|B9VE>HM8{S
zk-!vD#eH^t_S3c(kB@~*-hR-D#Q|=m-jA%oP*FUFEccp>Ul3Tsg#mR%KL*p(FGKMc
zEu*9>K$>kS`Zutj_!i{NnWL?*Yr=mEGEK?f(=)UvPTphW%u??;-L`-85oPahRL>O5
zfO;ti@IKP<B<I<|_}v_CD#3^jO6BKY=m8OZBCb>Huf%I9$}t1V0N_ElU1-Qt+)Oe?
zSLf{@iSyaS=Y{0eu4RfV7{hx>d51*fy1A>|nMY5UwIST$7;<}rVfUWH#Uo_OpMXp1
z4Bup<mI|)*8)^(t*Yu%0xk(EozJj>s67En5dpOJ{1q+kR7N-jc2!fG<<RFET5E4&l
z4Fn`%!u1!=4Xws9%=3AhFq5M~4uRNkQ#&bF&RTw=njwW16i7ZX#^MUh9uB&L02y<^
za3NG;^{_J74Xbtm0~f)m`ix5DC<d9xE_p_=WJSg=Ay>;Ew>~1bUk>61P?e%U*$ALw
zVvI*{wC5}<iJPiOfQfEv?3E<V<##5iC-l@L_Wo?3qhQ!E{%H;YL?wv93MR&Q>ViE1
zsc#_h3&zhSAp!)`msu=!Fnx7AK=3Texj(=yn0yNX>Wu@8%i+2$aIR($(KCdjS)juL
z_c9UaRd!<Stg-B<b_pt_<U5mHImk}RPn?0s6)sgd5A&)3;q!P-F)3Y4OuSc==DK8}
zh$rlCQWq@Adgefm3V{ygA;f54yKYKZX#4|B2sa{~CJeM&pD;iQoBl2;w$1k2DY=#V
zhG;IqQL;SYmpsJv(``DP_-8cZpS5y)Vq#!xB3~Bo<2fK70VEwG63x%lPYA7$NxnR%
z^!!d~Pn*nTCMDnonhW%<!eo-Kazinw{!Cydch+`2c{P&e0l_9WAd^fF^<Gf1uK-eh
zL~~l6J#t3LH4CbP%Q6Ib<l-M#5OUOhaibK|_F>_kST<e^-`?A}U_hu<mfqEOe=beh
zC>nNlw7ft$tidV67?YtL!v3FUzDH6%F({K*F!O1EnK}|o+yYGkkY)!GXTZpqR_X0x
zC}h=%A2(34D;l^2nF&ZT9{vOeC6Vr*LHi^qRtH!F_2i7Ca&yWHNKLhKa&92(ff?!Q
zh4UC1=I@Evi`<$W)QW`QK7p(hKz{5l7#JUakbo@~%4gxG=Kc=2GARhtgK&2wjLaq&
z1txpx6%Tn8%k5Z+;L+R|PH9)Js6M@qrYujn(qz?{Bn!k{c8iS>46c2TEf57&qlxp_
zXb+weD=waTVBvS}!c!jZuTEs2J~L(!rC#cBQeRVjHf8y?!|^tYbxRL4ki>ENy{y3o
z(mO|z?o_@nke3))=IhKklf~KcTFN(9)-AH2Z&e5rQOy3Of>WRDiL6Te>j&$<;1WUd
zrBV<dDPAoztS)T|bA5?lB=^!7idVPbt(01hIz)I}IC7RB02Fxi`R3^sDQ%;fl-Ych
zw=++nUJkxrP_jVy&8)_x0@=48PLuW3Es?}ev-t`?ly?6p`jaVW0TYq<A_#XD$?gy7
z@e&fz=P9DCeGe#T#MktO8LSdlMvvFU9atIu4@+nL*Mt|g;caX%V89qL+R@!egQHUz
z9TEd65fo_<b)&mm&=Cp<BHb~%y9IQF2#AEJUsRNr_x-#-o`2vu=W{>zxvpK%c`HbQ
z<Rma2gxC=$xk{TgDzXhoOOm9a6f%Fw<-UHCkQ*2H?kahq8I?_tl`P{^&%%Fkt<v66
zsJ?4(*$?~&%1ug?HbvjGz6-QvU|APVdP7ip$fk04TQT_%Y-0a1M@u$OR=GVq#`-;!
z5{1qtCN~6Br+gwOum$T=aEp7E_bV%uHa?wqRgMUttDsV}Kq<OdD9S`BQZGocg_A=H
z5YvfQGM%4lpNPCWSGJ9}N?4v%XOFMK*9HA<)O20cywdU``(C=fK=~7($y)wSyF+dB
zTy1ON^?XpFV`kkFO4CBl(MpbguT00~yDD&<TdD~pHCneRNK1xHQ{s!}s@4Wl*Qn{~
z83p>Je9|pCFE)iE`G=A<FKSEy+Ei>gPu<?u{c<(nYpja_U;-=a>+}S6d2Gu;_Hqyh
zzFRUV_vmkc@0AGEBn6s9|L;^SF86KXZ#E0j8&pJ-e=Il5!2z)Ll=<4(3b71_f!g<;
z8wN5P|I;u|nKkzAG}&%yl`|6-C$-cMBEm&zC2|pKf!a%p#<W-y5$QHBPp;#^R@bDf
z_JYSYZk-6hn_`!XnOA|icAeVaA-5!PZH3hx)z$Vz)rc1=Vq6e&o}dIzB}Yj@TX+ye
z)UUDTOJ}c<ZS8Y}#!VIFA&a|aZJ<g(ZIC@RS=S78_YeNAIiv2S``s&lY!;Hb*C)C+
zzjQmk>i#I&vt!ir>5KW+{hovBo-Y$U@zFhBse8{vd(W#;$<fx`@^+(3H*#;9UUo8M
z+_dZdBMK0+18p#rFrgB4+FNpZb7Ex6Vo>0k-q>j3_xpX{3|r^`AXl@@H-2~8e>BT$
z+&P!)S3T?Nc%>r9(GN8Dx$1KxEA8*J>aRz&f)E3qXHg$@gg0Le*jqy;Z}yQWuN;xa
zgZOycsaX&T4izI*M6MyImZ7v*>^Ht4mNo_xV-?#j1jhKTkw6tCPrg+I7T7<;+}htr
zRJV=l=vJ!aBf7S$Fo<)wFj%`NX}ikX4~8XsJ@alJ?(4+*5C7RN#J(CDH6IlQl10_f
zh#%dMbU?)!4*)Yq5ziAB=~>Rr3!!5k;=~dqGoND5A##jIxbgVC&o;&fRa$q4JDDCR
zEqK3Uz8{kAT_oURitsMey_bvOrk?fYW&zH|M!fN%YS@D`8hgUABfZQ<E#$6u=UcK}
zE5?r?&0UjS^W)WBbp6J{?>OM~MXv9=bUrdq`S9Fp@1hg==G@>h-5Y#0!QU|5=R>TB
z1q|1)77cnAEl-y(dmUf$&2LcD)d1e|<u@<up-`;L*1X||_tTkuE*&6rsA*HFMwEar
zxx+Z}iQCURj5g^8-C;q13c(7GARu^Nj0_F2;pWVvM@2qL8-dXN$4Xz}!}y<DW#_}c
zEjI>mH`V3mZClwTPQ_3}W@d95&nQ3;p`K|VZdk*A_0-OUIW$nJFi<L3i)z96_PoI7
zIlkf`OGDusn@jIQ=gB<*B2Q>g^9%gNcxAnyuwe3E!3%d7{Xq)LV6bqzbaMdb0-N-s
zhKywwM@pn84Xc6q#X^t|-@=n(h)^6&9XyvDE8!uoTNonGQ*gB;$`b2(isH;Rp!qu+
zt`=}JB;dYUkm`TUeB^<l$#d149c)v@um96M@?<`yct&a$X()!D*cg|iLu2Fkn`4<P
zDyE7Q$}$u}BH-+~HWZwfZZG3P!foV5(?x(SQl<&(P2$E%N~~Co4bK4Zxq__q*=o{G
zxW^oz-gBKlYCLOe*|K}_jmt)}0^}3T;~R@lJBmLn1$=CF#B~?T^*V<4i{DsD`8XQ)
zbZX^8;nv1AKt*>egg6o&WfOYkSeJ-oqT`Af^=&R}*+|zUT|O!ET-fxjCw-6OVt*Po
zsrEQiFKmaV9GDuO?Wp!H<U{<Jh@36xBa%kwH2Jhnq&M$st5h@MR~cX=FG8p;0!sUq
z4)A1N@5!5~_hv8Vey&sKtAUOg;^@3IOmaWLf3qO+@r)O)S}Ra`)+owQUsRi#+fygG
zdE5(zv~*ojMm%jAo>n}PCqgEXIc)of?UF=1r;HOs67{s6doP=`%^Qi6h3-2Jiv&*Z
zIsFx$M#X6&?$Z11mwvNzbo%_jD}9xc6UOpciv^!2v8U&cf43N!O4u7k9u#pM<l@U%
z4S0p}_qbUOI70JZ<?P?>i8T2MkyPB_nU8VyLd^6xi?PUtghp3Z8a!N$KD&sP7697C
z*O;e%eR}v_GC0V{9P}mL!sO>yD`F}ykIC<<Jc+kg@kRRy^1s}EZ^ir7itd;|K1~;2
zY(bfn6BiknAI^P&Ehc71<jG)}P`H!$f1lsfAD^dCz0*9gz@B7sQIj4VXW@<uHO|Vl
zlAY5@E%QDWn@LO`({pS)A7-%???aCNogy~Rex)S%ZlylNe|thYe%H45@$_W+!=&dx
zV$VEK;53ZUEF~4!nTjHG?I&5e>e}H_N3h9;(aBF{L33VnYY%?-@pn<5GNwJsp?WO9
zzwm>(8hTUg%oDp8p_K7=@Uy9II+zZk^;fw<Sd(BzFRql&Pj;yH?IibhCa7D4X4cf8
zhN}B%=A?9{C~@Nt_kR*}pShydVD0CRPA-sUS2^O(=(G=ha#3bc8~oIS!z501B`Gs!
z?K9*MKg+nb4@~6j4SqxP8<eXSfB*LbG-Dk1@}gIugS;;LfRz0n^;_EDrO_2<jx$bl
z%~U7MP%rGq#Eq`?r{uz?%-s0r5!-I_l8BD6=Y_~|YpF8+FL~~yXRqX-{evf!{?Aw5
z(I&e9rPH;__Q~^pJ`d^3C!%1A3mMY_Q5(qI(7G26S^4N$yD@93D11z~SV8KJ1y7@D
znt{i;ZK7HGNM-r`ZuO#AWP+$xNGCrFlFx{Rt=eXUC!<SqO?(|i%WoJ{eJt_t-HFij
zkj`+F;n5pdov3%BxMt!+O46<*W|%&6{7TDXi?U=9s~zhdG-pH(gEQ1=#E-^{i!?7m
zUhh!44`v?1P19zG_?Ci&utPClajn<$#GzGy?jF0t-q-xDjY|$S$0x<zn}0dgou0nv
z`S6eHmh-chy&tb$I;OCbQ8IS{y$0J5662et4YTGHtaPb%B(RsoYr%@AthP)CqY3n!
z${1~%Z6+oL$rm+3gXG)wiqw{VJDC~O)Xc^99P}CfxndG4Xun6JL#1GP$*I5P2zPot
ztC|k@RDb%$Ts6I*b=L)4^f{w3jTq)GEq`8)9^#ua=x&B~mg6={drPc1taZ~Zfln#q
zi^^L|KXq`p+fbt5QzQS3@ZGYRfh$av?PBPGD5|>f1uGG?6a9vTb+Y*t2+78BZ}xTa
zE7#zus7WbxjxYdFAzG0cK=%DFd#K;mKmt<XDMy(9r-_f0a$d8z7#C9n5&dZQy*oHx
zl6{o++6nN*l-Vbar%Y&glAP<Y8>HlmayA<$k@&?tz~g*NW2Cp;iRZVQ?QWsHww)Vr
z{xxD8*Z0EDg&#5{e43zGs_8D0j)-<gAAR3>P)U~tKWYBUru|NYp5}reOQxw<UG%HJ
z@g3FBi#88>#F(rk?YUDCEhW2}1GwkI1IsfGiZr1kN>)#Uclzk}Nt2z-;t^Cjcb3=v
z`UEBZjEN(MWeHJ8<L^Sx*{-UH(l?hk+~$bLGgrJY|GVoti(J8a){Oe!ONLoAgfn|q
zt@v>&3aK%1t+luGGJ~)v+7j_Ftds#zjqeam*UD4eG;j1WT|Y*3yy-yPKw6Pojf^K9
zOZJ^F|GuF$Gj0pQgu&p!uxX947#LR_A%;b{pDx{0xVcGz(T(Li!R9W+#o9nO0B4Jw
zv>?(`GVkMJXl=4fz|?g?%oexZNtTh_tAB<!@3sZ?-SHcG%f!b#p|*0%UF)_@<ZYEF
z{mveGIVFoYXLK{Wl^wtByt~ei{TQT7Iv|?aEBO(lOTx|Ew?RyPXr4!7+N+B(tQju1
zJVl}HQ5i<Ma2v;~updmW7#az|1>6c}sDZ6}@dOQ0F&!0^IMsP`#qsebRBP0>p!I_v
zYjoe%_i*O6P2TS}S3rSz*?rNf4)o)th=@Hx5_d-czei^8!2s)0=@uBDC^;Rvvp<@H
zvu#-Z{_fQeDm9L?K_=&-vtiC>9O+v0YNMUZM7ut8nr8ggbL<TDXLd6B)vf@_v^o+!
zt1HWvF?ClMGbmDn?khAR4TFWytHWKuo_ExSQz*ppO0IR>?so&HRgU``B)Dkee)1yF
z2keZ>G9<j;%bOFgVX=b!L?QIUGiakBM)1#J`#Ux7|IlwPzfERI{tcMb5q$D%+}yeQ
z$BNnY-E?tv?hqP_tAjKV!Cvi)r->C*humTy$qUZIp1$6kuW@&z{6HYC%1EfUcu40L
z$6UFJE}*<yM0%lPR%MPdlO-smW2g9Jb%kEU#q{xV7I479Mh%cS^HkwC*WP!VzW>y=
zK$4i^1Gg1U+Q@+@gwKMv^+Gb}4GBm2-Tcr5E=k9FV77_hU>UR3m3={<axc1Q7Y<3H
zC`zEBJ-seQc~L@Ggj2s``c51MGg(pwfZ@t|oIv160Ez?*a3FH1eZwi$46rg_M|jrp
zqk0Ya^mMmf&NS{(dg06r+^M!KI80AV9iO#}#w8dZsH(>j(;mUx)!F>i$c{3o>x?O`
z_*KSejX;s+-A&QrX1|7mPZ7vGOA6_wRbx+ehQhh*J-M;I;m_K#z%Sb%s%UW6BTN=m
zmtvm@QK`s`NANjX8Km$ld)ha+vFI%Ov+9AJ>EjO;Da+9&a%QfPv~EN)u}~n_`stLv
zArXRt=JB1ar3LU*yu5<#qyI3P;i$3+G)w!sO7G3mo-&sE%zA3Pu3}_hEF-Hp0#Tfr
zPlIu22!A|U|7)N5UOwY15gl3+y;6(9e~gtHOoy0+H$@o&Zz>I}4$TYRTUMwuy)olF
zG^60Ls&-<kwp%*1ZhwCr`$oOV{&Q$MW^dj2g6Zu&t7<}jhjnWYQ|+UiFAfJ+zn5B;
zncjsheR2Br-lkXixHhqoC>G<5r-!#FvSI|(8KpoYsi?B3Pap~wkD_69`7#FxURhjY
zP3{4+B0)UP^UB_SA-Cl%r(&P?ZFD5;f>CLuvc~-JZpH0<6X2U4=q|3=PFgttCzX%}
zWf8wFopcSjUOUw<;eMOHE&94`>x=Y%9C`4XtYcp1sM30Ulff;Qnhph|Ho<PhhlVth
zn!(ie-U+*zWvxONZ<QM!JCf@1sIRFLx1l0<2B~w7i<At1(>qwQiRQNg@qONA1Z_s*
zvLdab#@=PU{mtc;QWt5!@&8dLNa4(8c&MEGLZDC;E5k7u|KzUAm3YAlf-f|;(J7sV
z_A$%ge!4W3*O7rdfdCm`Y6$nN2hpj%k^c;6NRKmelZWPWoHR$r8^FjIp5Gl&qovKJ
zLEZh|-h21~2qgA-SFqJ4TTK15aLr*E{NFC+OZq-t7pZk=*HF`Gj3=cn77S@Zg@@fC
z10l+287smRgIWelfPK%u*?s1I@<EC)x3%AZ{>>qZg)3X4O~?q~e)8ES5jB8=zu#K7
zcP#9ts`-9^?QiQ@&^6|62O@tN?RSX2S-QS)-}&*6srBeay%r|?(1SL62U|7`COAIy
z?YH3JYimknit4BXD>EV=M-M0Y1fWpQxe4+d^Z@+VH&>c#q%&v>w}raLV|I8|4SZrT
zr6~HS;=#Fu7Uc3SeX!?{ACwT>Rel6e<w37+#I}ZYsO<$-^K9&p)3Y<9fH!1$7=Jmf
z4T%FIG1<H&UvV1MV*O_nXZ6$`C8rErSXWEWHwuswn%>Xb4+B@8OWaV<Yus$+)OPBm
z7JmnFg6HRCeD2`T)YE+I(z8up@N2~^FI+$Bc1(0rIdr;^UBrD-i5dQO`2FL)iEG{j
zYeX?sf*Ef4_D|xmUv!{UTQVeDh!!qHKWs`OUW`TpY$A4IKKtpgNi^Zw?(?<N!d2FM
z?*=y^&4Tzz^xZbOAs>Zs(Rh}Yi+Nsp5w|Sgt9`%pbsMp+Y4_CQk1R?bKDviakNu^L
zs)%g+Nvqsfte;G+h(8?c)4s+a3A6s;7_X0bY&3{#+-LDTx@k<io2B*X+Ftl`m)0E;
z`1c5_@K*@78+JH~`rhy?a!lPN0<B6s6L=I0?J{$E2)+0FO)CypZ9B^BMl#ut?^WDO
z%lmTv?@Zm75F6+8dKy3{Rr%&P*nt!Qk1`QBx-(q9Ak+`EBtp0hsBMWLW-Ms@=(^JT
znh^lP0LW860l&B#bD%)pG~O6&|K2;W@7=h{DJG{04v}ddZ8Tl-XNWvJ$O%wCcmh5C
zWapF)aXnpdMUyGblBEH_#lGN-Q@1N!6iDO~WSDF~7e#LUK+$8H+bix)cm+^=J6wh?
zW>6nuH%pfb4?>ea_Nc3OBa(j{f&f25pJ_m8&<=hW@<6GzI_+djTqzrhw(XS7Z*PI<
z$BrQY7q;MYcn4h+WyA>!AGVK?#3lhi7@-knI7FFbQSB@cP7M0(0eXHd?ZHq!nT2em
z!#pL`zNKHLg6Su=D0R}o7JaP0eNOBF3@<f++8K=X9yDUxKt*hGgeka|_bS+g#fV<g
zq#h*cM`JffLl0+ftS>=Kx}Hkj6{3<xYi-tEpENZv{pcd@@HV2Drs?9~*<Pu;nh8*{
z6yS*lkhkd2F7&ZpMVRuywB`3|INZ)O56#H^$T@%A<#Z;y)Q!I6!IgMV(6nI`;pn+a
z?BKG2G;W3)?{)$<2kE2v^fJL6WJCFU)b@N-%YYj{%ry7URQ+O6J6<=Ojn{(rg^S{T
zKy^`T3A{?af*~dx+9)!&8u}?<ytg!;fjOTn@EnU1O37piJu<V#jSTaG2alk9{cLr3
zRc{$?PZyf+#wWj}+@NXH;JNnc63!AA7PlR7C2rBpNYOOxi3tf(nsg~PM_E|UvG)zz
z(ZJDX&hMhlPRAfUA>20zyw5Tl+SNb<u7E6~#4AZ)SR%D6!7BC|r~S=w4|M)o3+y_^
zlQ4t0a??sq737Qk%Hr`&*396!`d29!NhVEF&BP_uqqL7udxMYXwmo+GSb{0~1nRU4
zmO-_<qEX@~=|WlQ{C&QaGMSe+2+2pz%4L^8E_Zj~raOF?W7iB#98pI1*%A;qS-2Bc
z(XNqW)PnLht&A#G0u(K7g@s&`mf7|LiyD=fz`)&etc(Vj+;Z3ii-wp(n)JPeEM$ZO
z<g3pqlNpqp(MmJ^KUoIVrWQEm7}%U*6BW5Nl-y`cG$4~&5~woB>jB9zZtaRljdrYz
zg^b{;tn~dw-8p^W8Wy6OLOn?v-T;twj+Xc}3CZ@74a=7OQ2WH%MOn;M`QO>#6>LOG
z(hKF81@#q@zhP(=n+-{nGb&G}*~UU0NE?@UU?&lhwGGt=*ej#&nh;ry7X-4J7^D`!
z=KTh(4LaWL${h^<F;Dpgp0HbEX-ATam#eyzqi(MNfwVcC1pm(txL{@gq}GfRmBTG8
zrsDaKCW4W}OV8*en`(oRoFr#-Y01Q~#G#DSPYFys_Mnmvx?CnIRJbZ@5+ERh2V%s<
zQ4Q<3ItvS^<<~&@hl{pp&5!(>d?z0w>PQPxvb1|BRs^0EK5)5fW>EkA3ELKZDpYvP
z6Pjkuh&6)VEs2!@>u;fH_ldOG8uXWhofk3i%pKW(zTilpej@jWD{mQt<$2j=M#jAq
z#?;YZ`z@)-AF4v%OxIAzSOT;OOm~*Uas(p*YB*~At=viDQl=(jz`L?J)V99X)o99L
z0t{gN8Ec_29>hE|;F?k5Se5hO#g<k@NjEl{qYBIZfhR_a0j|w#YY+?@ML9l`bkAVA
zmzDcgK+wz>r@JtH=?W6?2oSf|5dEmhY?)<p+r^+NQaW_u;h?@?XsNKkj^Uh@{8E3K
z@eU<s#|`>M;thBznwN5wBn$GDW1~3`nR9*>An%wWuU9JFW_^dB%xKm_9J!2;*ZQrz
z^FSvGG2z0%n9G4%Ml_{UE7x#}AsJs1Z}w!$JfD#YXMAzh#iw4htt#*9Bc$-NHdoRq
zh{}2=V1hyyb1s*8B=3J$A>Jo=0;F5sLi4XBFef)ODMTr|S#Qde=Dz`hLYKR?gy*Y+
z_G5jr)bfV!xv4Oz>YV057K7;8@*lG;VPEdj5JLR?ckK+L4Vn0VS&of-8$^)u!rX9Y
zG9kv}gX#Z{>_0a>>MRRu{0~~&N==okX{{>+$bU955(t-9t^^o!?LM8_UE;7M4>vJ|
zqrpFUsW#|kzJm?j>z<5=Ma@J-DI9gS0Ze!pJ*{@1O`QhY<AkX$&|T4y^b-+jZXRC+
zf|a;qk`|;6c2$$_>!`F*hufNUn5z`-io!3_KddBNr63c_E?Cl$-r^-#0diZ_*S4n^
zx7}g4rd+A$SbMKm_ivVa6uoAi0^V1|TG_`yYWeS=lD&I|yr-?a(L70U?ny4X9xW!O
z411Q#D*y)p&JA)n%ubI+&njd4Azx&a1<szs-8EF#adk+%+}*1XOrA`BFMDsUaL<GA
z+E1b8&VDHKN?XdqicI|8{fi+!`4S&Kl8;DP2Kzh*cFo70Iin0hZixkPpc1?S^N_Qy
zTmUi-U_B2Z@0n6QoxwvX-MgjIuKytVN=o<mE}*Dux*kN%Xw8WknCIT^PG6ejNglk(
z_fU+y@Q;8mfFkyMKtHy?b+O=Kxt(WSXx3HQUZIva$CS|v>XC2dwuFqF#5>#ep9P=2
z2>SDVfmeAy3idwHW;Av4bFijYtV0{mB?S(K4JY=6&vHL$p%5JSFBKnH@_9P}a8lA*
z8ELDRE(=vpLnUXri+dJIxuF@vxf62Zsg==Tme?{guZZi{fqG61oaz)iTB^4%Kau~*
z-|LBpR+*<uWsJ~Mlq7lA5+GRlp{Vb(rr)`+5#Z`^Z;@V2$O*d%!Dhmx=GG7Qb|SD=
zD9KU-$5#%v7pl_xQ4z%!x9C}3wo^UF{fb*Z@!MMuJ?+}0)K?mJQ)3lt=A`PG7)wm|
zuXnF5t{n+p@4I}$2`ZhTWTIR$RbE$Q2{iTxH~bQ)0u4A-DKo~iRUIB@>p$;E9!p)M
zejj|m;*^`ugXISHjc}0O-W$ussAyWz<a<yyZtky+f8L%SJk<nrl(Ba-a_7e$uy{S+
z-bQxL#l3Xq&DLIr17K}&2^nvmtCq8OyLfem2xqfl+aIQPsU&20ALRS5_o%V=<}f#%
zXc#386jx$1C|>oR9rh-;gtC4H)|&T)!F)PJ`jD3*?5e$jMg6TA_o@wVkQXV6d6)8S
zD9Ux!Dsq&G6b%|}4ALL<4^iFl@m2~IdBqqv^mlxy^UvV@jp2t8RX^EBLW)KnZ;U)s
z^*84jjVl^W+88~%Gm_>omRB@(^<4EZb7QQ`VZ5Sfe2Z$lnq#8TVWM@Ts<ulJmQ=?#
zaYJIFo@c^QUsP$7qhVaX2>=4}gcQENWSQMin9rX$;h1^;=B+MjtV>%Xifravl<QY~
zd!o^7v569u+M^1wjw9-vz=`Gq;L`V`UZ0Yh6<|q3y$oBou@!aqq;c1%C_#^@+a#Ye
zm_{IZT|VOe+o_VCpPH(fDl?wN%V$+@gM%%TmJ~poS(cLu7~_5+m@$4}DBNXk4K?9L
z81BCZQ9c@oWWUiiIYFEZG7EeNH2L=Q;czx*V_x!Dkr-7nY;3k~J+6im(@kSpJZ@+_
z((+{OB>^Pzdg*@ghcBD`SCS6wEW>}IqgFx=SLxLhCFWQ4x@C-cmU*UTgueEiMnc-*
zE1`|*gEy67Tnm#fi>oCI*@}x2>Q9Z{a?Em)Mv|AHUx{mgWs#l;b+P%c#h>ncNPgh>
z5g)nr&v$K`=7V9U0%%hkT>GBm!DhPP*7Da4j_A*n(`hi;{np$2>t8?Lkl<3|*=7W!
zVrsS(r*|%P9&?{_gi35atv#qh9}tY|kze;i&%ySjZqZ#YAong;&Ti8Sj`vUVi8-Gf
zQV;$~QKvrL`+fWF%MZND67FT#S;rTr)V;~ro(c=lu@l`{|1tY8?a>0A@K3?@k)RK7
zI*x`Pry^y?)+ZmM6hp6i`<_vpepht<ah%G){PN0m#t>QZvw!O+hc?EUZu*(|d93N$
zDfBOK>umYm-*D)^%6C^BGAE<3tJ=-hUpI$;D#&WJapb0nYyWpq^fK7y!PT3Yt2#+Q
z*8M+J7}Hxbxn@5oeLfzFte(!?_)F(J`sgoqwSv~=6e;6JrZRi$fi#thCQs!oRek!m
zCaC}%k$!AcEOuv(SF4zhnc3%2#HcRSkbbTPs`Eo_`2`aqWz#&_-OkoQx(e?-<lRor
zzd#w|+1)TZ7nzkDA3Zo=lW&(dPVGt-pFEfcq$f8Y8_S5CfEp$slk)Qn45C3`!)$yM
zED026oCKOH@25_@B8!B;U}G6ElVl@f2E%z!!&g%7jeUB_#f`7d^Nh!!)Z>qu^Ry=^
z-%jd;tOWg({}fri;(Pqy<RpWNx-=@$sGq)&?K!)Hl%k#+PH}#OgCM!sgE_+-a}UNN
z1kG!_&Ul8C*%bVb_Rn}n(|PnV#qNFM8_yQ8X;`$~A)m~bdC0QA`zk7#PiB`D8Zd^Y
z4A!&1XD%2uFni09$5;`OU_{B1)uYW4qfKf0(!^!ejNo2c>S2Za%J4qm^Kz|okVnqh
zISTPg-~Le<V+(bp2)0MA!5bYD&nsljf-31xqUzPnXgP%I#oiUs)g)qY;EFC=L8o|V
z;pwOX#RU9HNAA(8opZxxS3f)hKX^02#jOpZwJrYu;bGeuOJgWS#h73Nw(-C<eB#Yd
zgVS?*`Oa2(e!8iP5Um5Yk=>ekT+&9JR4P7_CHe55>hJG|D~%6N{;6GF96C=I*#!(v
z6@}#cMmj7{P)aE>XleZ6|4)aHnm~%TO%&EB1Ue~s;GmKyJOBpK4MbWcLYNGx^(;eO
zVr|ZlCC}ClkjRisr2%e40-nUd&zYZ2o+1t=@257$!Ap@KD=n0$j3uU={w+&MBxPtx
z^Gm8=k~SMi+*ltRO;>+<M^=6tN)O^f$7gv@ixK*%W}5&d5Ye_@dsG|IN_#>)tCZ`M
zSHZ3$<yqgd{n!xV7wy~hVt}wB*l_l#CT#VdC(a>na}<<P&LMK+b%A$>a7A(WZ{f<4
zMCC)R?@P#qC%+E(Fis4*pLC!y9IG0XVr?Wxe3CN57?n($9|3tctOQ&wOfJi9GOq#N
zG3TOMjiLO_SzTl|=#;-*mhr+$05Qo{N2F{T5>7!vVX<I_K4YE8M|5-EqP03ErF@y>
z*<PutigT-n^xRD(0MShzo^g9K-zZ<_t=gc08C6e)RIq+cSxq+^EuZPTrh7&E>N7m_
zzDUj{zyRf2#(eP*<O`z&XmsXpnMvshRoSVV>k+ckOZnj<w;|52UpDLQeu87JxK#L~
z)M;u?H7S@`zG-TD9d&54;K;uaU_%IBG@nEpYG9fDX-IUPCyS#kOh52%(5eQzRFg*Z
z-jE{;W0Z6YkS1{U3l;IhR2;RGu@`{qBBxAl!NdsA-1TGr56BcLE2#AfGEi4P>}gY`
z*|`+WU9LUYE~*9A4|RXEU;OO;GJX0V?lgJ2QT5J%cflH(@3TXPQi1~%&XxH29SUX7
zhS;B}ej5|*Rh?9M=}n~CPT22%vx4}`-Nfu+V~3RDlXI8Nu+`Px)z9`VUDhv>(xl*Y
z6P9l!FS>F@K6o?J^Jl=rw>v&Mw$D*&yY=k@I523Bfr?yFpowMi6&o+<iVM-Tq8L6W
z3bDQur|Q7iM`sKKaYdu~#7=v>)3Kp64eZ(uHmUTxw3HG;&f1nj(#x#GNJk<`y>bP1
z#NGEa8%lo9KDafT6CShW!iC7X{)Q`4pJ3uvdVUyC#Db1zhz(%hz_~I}T$Ey<&mA=F
z=h`8wTf%=0%^EGEbm};PAi+2Bt)qL~)zKyB2OKUxqKAjw^#u`uyrW5sjX3h(v@DKZ
zYj}s*TG}q0!^7%qWG5PoZgO>UC9F_PB1B)*0WgmSGqvSUb@|dE8J{9|*R@e8QYeUI
zr7<(2QmV}xh0fVjHdHY=?J+j=%*x_Tl8bDJS3azT;NHZ%zv8hnw0lwle4GshVZylY
zQKb}`b_vKgR!#Z(TZEZ4&4BDlkvE&hAY|*Nznk_WVX8!scxZm2G66tA;xkt?!!NMh
zQ<S9|*5Av*32FF2zn`7lkqQNVwnRt1%+><N5)CL|j|fmeHj3<PKD8nW59=ai;1#_z
zk%kyGL<)mMIuWFdO3eNdNyeh6f#(nb#v6Wz7Kq^?99SUZX@!V@pFJ}mG^JpBp1Rxo
zHuJ85>3d8jCnF;nNVyP5d0Cl6WO<|VR$$C5m=`E5<<R(41W$OnRoNGbrxGCHsJn>K
z9$!I%PDB$}=+r}3jcWTf?|u($t6ED=R#QvB6&bA<5y*-I-Yd<#wuf1=3BxNP;5$0+
zN-SUbp9y1{W1?->nmHbdi+)gFpPI{TX?m?D?mc#Xy8s+n(WHS#FNdlPw&3LNcVIAH
zWs%S>qN^`q%4R}{?4BQpeA-}gc#wDfb`2VQ1CAF2*rl#vO_WEM@<R<#v+u^x5IJ*n
zz)SW`ka!4HscpY9kt%sY90(%xarl;J;om13+4bgV!1{y1E!(YlX>%CJf8Fr|b9rVe
zdkmS(>qtNOgzOC(Jz2DHMsCV!&#zb7uH(Ca6#=TiXTMU(`gNW&6rFRk57)*OXJ9vF
zE;PC0fxgQL311Ie%sFw7LN?c9D6Wc-E#W}&5Xs4OT`RtUDJhxQv)uRmvh8CgPaE#p
zB)#D@9SjC6Y?5)T(W>SeO)#1P4>bwhS#p3tZ0u70jRxFwa9?3l1WtW%%R`|;QPZwv
zw6J;(r}$VKDDH*NqrQ`(Y}z-0_ag@#JJ9Qx^38~N1bjF=0%)q(Pfwkmi=C?O-_~kh
zc=1oJQma^2c;MPMHDL*w70Q=v;9F|s<EYl5$)p&>_BGH_ra6=L?woh5^!&S7r=#Ot
zh}~T*p!)xoI8I|%qotwX>k;;$HmH?Hu6e>NhsjTA{lh=`wgK_u6qpJx2d*T74+Uai
ztR;)JPUu*h>Iq5fyei?SX)Sb4IeBv4`SIV+p!O^AQ#?Z#iTsvgzY6DRv~1TF?K8ze
zUWv2+#3HttdliReYtK^jy0$s46i2lrzGY-_G;>KRja$@y%W3TT^j!IucAZpYLC9l1
zX59D52dRjHg$PU48yZs+WS}S2gCJ|$nVHVF=MsMCZYL?_>50a`g{iL3FW5RJ8f$}+
zBrky|+mFnsQXC>1R{>(Aq%V5V*mP2K<ndqodX5hlGeL#_(s*WdB2}T~CHIt5+n?}@
z2OVuMH(BXW_-9s{A(9Rxun6Gyi3#rOTZ^7=rL>Cl_JGJrjG?@LtG=}5M)Y<JOAKGa
zP6Z|{W7gB{Z1)P-6^?NZm)sYL7~rJ)A}sy5GvX<%o!`~a;Td@Ke;eaCl#@4m;Dl`N
zFJp<2aQ<Q68DtNS6h@`l>Z9;iLD(M#`lm+Nmt4mSA5I+Mw+w3^(tl&OQYf@iH65Q7
z&z<x5HQjsbU%TCdptpOa3B>1GLC-<Sa8S8D)B)IzA~FT$a-z@&5kQbW5o{YvrdvD<
z1_6V0z^4TV7as+#C!Y|B3B?9p&EdUQfWj~|q5#lHgLYEPtSSjvPI?ta+8i_mC=UQM
z2|ykaau>y~dJQzXA?`wYRUAp%Lr21+5Sj$AIhNr;B#p#GNIb!D=>?h4)>p?-y7wsR
ze^)4EKPl!r0mMfFk(*!6Vr2&br#CGbov@`tC@mPbX%jlCTR+y%>fcxH8y*(zRx!W=
zS|6gV+NE=W5E0eU|Hsyra#ceNo4N$eXLFxQ8Uw)6V<4e%{NMCX#1qMiR;W1)=zh?|
zJt61W&g1Dwx5fjgv5~{slpr^a6mH<SzHu9o1;)qKSQ&{_oz+_8QMTIV|1f*~S%s{a
zhdVXB6?Io67|5&46JbXq%Ut@aXoVlKMSH*|l(^04W-P1B;&*d<PG1W;l&N6OE9K=H
z8#?lUk4M?ur9j{Hmm1(nv87B#nUyi`H8B%;QJQ$6p{cq(ti3JzZ#o1=EwXpT!(Yek
zyfsHw#CxwP66!Ebc^V0eFaz7}Fks>~tPIHYZEwVu>&u%FW0IhO%xbG->V6~uw=VYw
zE%nPus5Z`JOA`gt<PJr#VsCS)_KBztbGT`&=8)a0=>rQn(*>C`lv{R|^NH5*HCs+E
zAGsBX(I{;i`U7^HrJ#JX@W#`Z)Ju+%9mx(P4Tg(yv|K;0c4SaDpXCRXbDO)d`GoOu
z`6H;N)UI2uBERu)fyzEe($-3W@e_#SQ$lvXaCyHe8^C0dUyqgIR(*N{N<gF%#4*~(
z1broU`sq&p4hsw)SKepUZ{aqKYw+81i2QV|3fKVb-rjq~?M7+EcI8%3>HeYa)AdV&
zKVGu{^V-!=L$pg%Y!W2%mtWPE2~Hm+jf#@N?dq!w2J)B^hj@IGap`g+uwTeV?B@VK
zEm1!Ti>5VuO#kJP-knP@)KBLb-v`<Ph}rjakRwTEc2wDKK-nvvUBf)Af1VMpd7mem
zt153Zbb{KCl1XleD#Kk9J0$*B+X*U!@cVq|RpF}d^+W&?%Hw6u_adei;(wWJ`vU)X
z*fX7RDMSJiS!iaN{~@5sJp7H0W1!IEQkSSo-N21Z)yhgsAEqa%p7`NR7^>2mc`SLH
z?n4bJ4L_{e!kt+_DPa{SrZ((``smMs^YDxH#A(3dV*_-rD)OERPgxd`!L~`42}o$7
zLTJ2oNfq8QiabMb+0raAIevD7+N{GEN34)5xQDE(0v6$DAKk8Dt@5tHSr-G+y<R2T
zX0^trS%AG206S6nv~1#s$kTg-Y`RA5A$?sHg0%76wZCwj?4^TId<PHCixvSlcy6v4
zDK`48UZl7urP%)s@Zvy=;1u=^Qvw*PHd$9s_LkwNfPxRxV-J@G(^_p0aZOvTs^E;K
z{tVTn%#E#e)dYk#Wiuur$2j#bUbrn*^mWk&2n<mOz3cz#UP*r*Xo)Ljx$+<5M6@yW
z-T8D`7WPuU5vnF0eu8Ll#=KA)t|#Yn*2c~)(3KY|ezlFoRrXc<o<?-}aT*s5t)|m1
zMw717(A213FoG$jb6&tJ=!kx`Y8U=#&2QO#ar~|R%E-S>o!^F@-4o-?(C%-7!--;-
z#Ok&5$fu`NlWbPQJb2mLqXYj0lZdaTWqi_wj)sEq4-BIxhm-JT_lLSnES)BzFQ|!P
zIgsr9wx{B&siHH+Yshjy`r!1@C@r5f_50VpUz^f38oa`Ckt-Ke>)PNRUCkm^Z`mgC
zuYrBkUXhSNoFlzhUh+=gq1pI8&Bu$|9NdR?5%*8BUky4{Kb1b#5s3Tv=50qTh^k!t
zGYGQr?Zu|gF_~f<EawROBIU#0)V$o(g7($a{)-z+*TEu+_DEvdvt~+`6?brK|GB>^
z<ps?#2Mv{F%IC=AgJ9rpEHK*m_{P}RjBT2|pSK?<i}I6dx22{RoibU<CCW#mqF*O=
z*HyoX761MET^MoW=k9D^7_@v(ZwitwJL&t$WA5elOzZs2NHXh3a??v5{bkh`r?H@3
zS5P{1PQ2L#2sv3Wh=h7s-4r@~EWZEu=dtxCLx8BbfX``*HQC?!7ZfYA5GJ3Sr*DAy
zxSy)<I(<yHe?eKM=`Eg@-4VmTn`ZuG6QPeifJv2R+{Uoyb+jQ-9onbdztUQw{pbSx
zq7CvETu+d7e*ekk@bf3Itj@yR)18S|#BMbr1s+3x^zL`6G;7r0zbSJN5%*}+nT5wU
z`ge?6{2WaNwKTskm)!&QgRNo-5b}CyA_C@k3^d!{dio&40kts4H;7U)7$>}-uJp?Q
z`QI>mpe+8anGei9QNezd$-+FwGFQ*gD=ozhl=RJ|{P>00j)}VNJs<y&Ag@FzY+B@@
zmF9*SLz>KwwR&cntiUsi8kmVd?-WwC!NGTl@5&4{p3y*s;O_po@M0c0`HkJ;49}_|
z{E}WUY<@NHfH$XJ;n}%f_MI9QGO%{89hBLHmD$yR+e{}L%mGzKF1yT8s!uIaD>@o=
zXUAeJ(Z8I-!~y!0ar$c7n3^jKmF_I`rL;3FSM^;0@-+K!)KrJkGPe#uc95+Y1aW`0
zXt=g`^P0zU7H2%SsPctQHepluPA;Tk;Wl2*R6}32TJ~PDoZI4}s#KHlm9g5FEaa}N
z@etHxrg2t($(eGG@(-0tJA*3!lIqfe=Z1y)rmPr4>a8IQ3)v+-?rgN|qBFQz>py3e
z^(O8AWTS<0bsuHxExnaHWmFh$!i3-vMc)O=1NA~?um|V2GJ+^#gA8sB=zUo<a(*Zq
zpKB$VV;=a9iCx3_ww2YH_BHQ@fyII$4ek=v=<Y19jpcgcSl)m_^Yi==@5>7el}{bZ
zmnC0=DrV}mtUP=5h12tjK2!-AcxEZHz~#GUohuaB9?^17Whca8B|b<41ZDC0YMZ8W
zBf#e;l|Ds~FKno0U`rjG*3Im{@HOJzr2h`&;fhYc{YkHf|1FfXcsC-c_E*<&|2YWR
zCKZUOUB@W*CLjD*zDH)`Z5s3_K^NDjfS1nmNy|&h3FiBl;??@I_n0gt2${06`GlG#
z{3FIEv@fvCCbM?seu0ADh-b)%O|*ytm6|LsARjjrf>+A<udpvMXeFF%Exw*rK|$D~
zS25W_bBO<arxFe#AC)5Laue`SyT}e1&#G~2BF9QQ^*l$1kL|e?8@Qh}gW{f!kdmCV
zQtHRHV~zK;Z&u50UXf)#Kf>rQ0Or?o77*<bO3u**znIz$v+a~3N>Gh<qF!F<+MH>o
z+NJew+Ka3Ox0I&87Q7y6dwJCkta~@rR*0;bJd`o>FCqdh*n0{oN^X58^ca^)Didrv
zUR@Ou)?rQJcN*86%S6+f>r1m9uUF)ayf%8ya^J8r2~_0VQQiBy!o6c^@J{C(`$Dnz
z86N;zi4(@Hw>ML~ow+l$ul#NTRdYk7;nv61T>A!v&c<6RO`?Aq^i-N{I-8wU&PSD7
z9;&p4bhcV-G%&2Urm3{&b+%VWx4i7^c&F0Y+KDWG9AUg!p-~*+hAV!iJ+Bnib*Jh-
zRzP>>NYCfaK9{RaLwJOOTydvh*F?@83dRA-e8BcvcsTS!Maj!>%a~`JT#rT21CIeY
zdeE(#^$X2nUkxLSFsh?p9DhK#x5e!zwB8P=T>ewX2?pX;3`3?qMx5rD?x=C)8Q^vu
z!Sdv3zl6Kyk{sGM^`*r|5&2zVM^1*jFQ#lG!eM6)mmlbAiPYTyYGW>j*0uc~n~RES
z`ug3dxW6lTQDoR|?HV;}BQRAHU~TGeD>)f9Ik}$UQAh&dLo4`#{^i+R-7M;r4(#tM
z=D%}-|AzVhzT(3SI%NIcf-Sw&3;Le^hu-Y1ZS2c?M}KNn1yDWqX?nXB;6F<<pG*g-
zik|MHrJbv;;Gm1y!cO(0ftNxvH)IxH&h98<a6Q}q{Tq~iT5^NxxhRo5m>bAea@<ui
z>xH7Q=jNBgexROW=t=o@&cy1?3d%+m_hMO;QDB}cI_us8FBeel2w7M`9Q*3r<gdql
z+pM`CG3n0)Lr8z>lpLDtuLs+YouNPHPHZ6jpbLsQsXpDT-IAxkw3HhB%GxchREN2Q
z`K@hf?)ps;9xDER9DsLtcqCs(q{Y~g5*ElWx-+Q65236p%|!CV^{Wr-j_8f*j~R>`
zP8dxZPu-q2nK7Nk%$d!b4;MbSTv}o$%VK^-pI@581Ys=L;NyWH3RqZk`?V-?H}a_3
zayG6=L+|hGIYuEosQKv%V&GVoFEx1%YJLwzXgxfbc%$jRm#7Ex7dZO(KJa(F%j)Lt
z;lfXiY<JDZ+{Kz|M9GX6xR#=a83jy|aX1}qO^Ntq2?;(;apZ^=o&Byqcgbj97FE*s
z-%B;nL_1wKdc3DL7k$8Iw{ls_uVcgf)Fw^Q8Qi5!dI<KReRx$AjF-~QZ~t8G&{CH!
z_tQ7e>!K;Wlv`09Dp)52`l|!-?G1t|l9^TJ)FoTK2+~4s3;Lq`HAX*EfR$FjVfEBy
zFo8+ZV`KH~?r^1Ty}wmPUJ|0owo;MXMT3G-$MPb8(61AjDs5|PE9K(G&A>m6#$C0e
zWj$vINs94OdA#zB#b^C>z9f7y{j~^T0+&7xqO{l6N4dETQ7;3W3EUQqqqoV3F^#Af
z;Xz+kbX;d@9d{4np|mnx(Be8$JWC|giExkhy%7cpc3{jT8_<yQLxe>sc&Q<PJ9Zl*
z1Gx1U#zK=cZ$hmVOXWzot6Ayu9-@3ud52G<HCJ&K%Jff$fL9aY+rFje#itdE(8U5F
zWh`^0x5&5-cl4gi9J;DOyhKk#nHi-jAdo#71K@8CG(n6-eR2C*^{rT<$EywXt<|X{
zARwakm$RDl##+9G<VXNibM&z3+(h+!F~C&)&-X@?F#(IA9OUjej^_%QU@Ji6p(>o<
zBx6o5(ewWPCvlEYXC5dPlpT-K;i<Db=YhoofU%JrpvJU!*8JPTe^VK@is8M_^<vH3
zg@V{<Lw2$$4XV7UtDpi>R^&GgaT>z|aGVQR$jj2jnhc|u1b)GXa=G)sfaIlPs`1IH
zH%VRFV2$dAxTd+3v(T&}YcfQdtK2?j+afg)5JIz?j9mt>vr@89#bM#xWX>PHZdbqd
z15K1ZX#Wwr#WPv*GXuNseb|;_MFk{3hJ_w#1(<|tfW6Z*QL)^kZo50_dIFk`JgZ+T
zZIb-{26(=B{PUM5A&NPCUjoF`#Kho+bGbKJlmRs7H6&G~UeQ&VZAa(xjC-+G<`Ms6
z>-e5o;zAGS?ziI|Q<V6~^jcsWJW+X?3O%h89xRD{D-ZhO#oaI9#($y3Jva2?@I936
zPCipK(x*%)*`DX!(9)ARgv|+$ZKb|nzl#4lj(K?_N(Js9<a&(Cu>a%q=!dUkOdPEq
zM-|(>6A+M&Doo^~peBoGl$I-D88pUAvGAW{RIg%{aF5}h=zT)#X{v4z?Zb-57v5zt
zv5v=Dki(f4CvSeuUOURE1Z&MmxTgN=$e&kM&z}DN(t7pu@=VTtcD&LSA0z0aBbaQS
zi-<rrBI<|`(kdIE>hvb>Y*{$Xg607BQ~bD{B>!|6=<4t=H-$2o@4mJo;W45O&HW2P
z_1HF+8j!~_iNWjk%|&AMF*j10QlW6UL8v1=5A!%N#t=?Yl3K#m)0aS4&j{mzZ3BYV
zCPMAD8Ud+13HY1+*pz)VHP$ckU3m(X<E1N0d#EOP%Mjmu)(fufGwy+ySpc^ep6sZt
zll*&Miu^AO{k22ohQQQQUN{jbhX&DbkN~se&b*wz^!0VkGgDVTy8WhzX;E|0qa(Qq
zZkiDjMgccz+Ds_K(8Wl7-Yh!CJn+zGe0CcORX2#5_9>P66Ifw=*<tkzjv}*<l;JNE
z`y|YtKE7CkAs1>J{Y)E$7avUz=Jf-@*siR_b@$Rk$Vny89CRcLM^b@`#tkavgR$<u
zZJwC?b;)9(TMu;45@_~`GCo^3)+xnarrH8&IZNK?1F~V|5qM#<g6MZOX8iMy`wI7e
zau@30GhF8q=6}!5DuDWnK1UD*pFmCin32Fjm|b8b*^I$!%U7cA_l$r+O&Z<(&!&&!
z4_@Guc=Cxp4FC?9rGW)+;CXlt*n{3gDv~ykV65fMNzLIE-=?7f?(EW+tVT{cA`%5q
zvXQ3FOfAGQ08PN7eV5=x2%83j1vDOCeR`^0vb_jsR$R8dsYvr&vm}<sZ{6}Q<OPkd
z?2Gl9BE%lguvlr(%M_vzUkhWx)ktt$wa%%x<~l+xr<~}U`Fr+I=ns%b6#y!WA##b;
zSqgY9LyO)DGwvF${Hdn{aHFe?d>`N0*t2fUs^oKbOEe&eRGO)A$B{LF;~N=WByN3;
z#5j&g+G_%8(%Rx#LOxdyv1u3z*B^>LwBFcZ!$HQ1SwnlaXCRE)nmwHYyl_-!V_yhO
z!-A$vc{><Msw0ymk?ypzt}t5tXA5z8=dZEkjNA{jT35?u81ho;PrMJT_7_yIZ=3l~
z0tn<mkLpA(3H|z33PFF31nEx3pLzc$kn3J%sE#%I`1YP`?N0H3i;vonUj&CgIYKon
zHE4kfJOidIG7O26a5}&hF1OR&KdboCZS!X^QyvVJU<J62#L?<f0J577>39lT0wfS*
zM!`tJRRDr>jN@@&`P1~nXsYNBDU2{D0*J8^2kxBb$(8ntOs*rmrG+<A|6YgN?G3YR
z#vD)eaO_DV<2XHZ8znXxvn-DDG7xWaVMi13?mn`MK%e5~Q7o@`HX3AljsLAW&!)u)
zy7@kpg>I|Tu(aXG5czb^C@vAEN#qmu(}27_fn^!K-?B;8{qu^apOa_Vrb8b8SarJ{
zjm#s0qKAjf86G<eBr8`+Vfw%vet4vIQ0-eI{9AE9_eJ%R%{jaRufUT%Io>84@fLEB
z6Gn&<!`F31t{)U=G6`m1&~*4m-bP#r{3Q0UeWLwC&^x-6F~P*glxzw*6o6SLp*V+K
zUcq0p<s244cj5-2tK<g6axvm40TP48=>;S3NS~>3GO_-EX9h-)|I7RPaOV5GiKPIL
zjy`V63{Wniin?KXvVwUh(w{%mWhQR}oK6A5@yY1!QG0`%S~cKRU)iswwvRFHet3(|
z44b`vqKp#eW`Bv(@v(J5=wOhri74^N^L{&gQ$*N-&GRsG+=C^vCy;0VZ(8j@r@x-&
z(6c8h_J4dj={ayo4n=@NW^YFdTs_06Z2$LmjK<*@CLl1>F(vO+w@piFBxJP@ioJ0)
zK~2-OIDNABvz_k7gz1%gj}h@iMDY(Ia;8*J{Usw8McCNeXHSkiouvg$bp$w0H8Jn&
zx#`+M1ufHC;Q3SZr|wZFf9e4LS#V!ASO9)aF+L2+zM?F1{u<B~TV>$YW8ww)XB74C
zcaPu&RTyRB#X5}%HcBC^_h$i`it!pK0Q$3jOUMrg;v=KA1o;w(R1OKSXz)c@BzZhK
z86U~8K_urx8|)MH&u;afw(&2hb4+S*ZfF>jdaN(NF6OW*fRe>}0cy8TWh<2-ROCe%
zfH724C|dLKe!oynzp%FE;69EX04VR*l)TiG+R(TGj^Q<ic}wAGM*(zL{MGb9mJCd5
z2%`>{iiJdLsYH~Eg8>p<TIxqyw;ZaZFTu1z)ryQj1~jmI{+251;4R~1FaXGuo}yc%
z{bLP)000oH0K*M!lcT{~l-k#xW-|^Q#U>4NRUJ#?Aq+sr%16g0LMN|O-L^=_zGmo}
z^nGVi$8lpwJwwOoQU`mf<p9%l71O;7hEVFu&{e*@>!a)G*5DGMd#^~>dlDomEG$W1
z<GrE#VDP1vC5&31R;CU|z7hS21sFJZ%ij`2>(%uPt~Y8sB7+_Y++c-Q_F&Ms4hA;$
zFS=iNfgmhSYaT$3!VRA5MH}mvuny1z-fmLg=qEJ^=2M4Ug0CP#cmy%Vw{#R@*2|x+
zKTH~xA?l|jM^m8iPdH+_P?6M%KqeM^Xck~D3H&JvaSJ`Bw-1n98)InGRAfn~9p%*v
z1rQj=wQU8cE%o!>01zzr|5&dX`*N>}4Bvduk`4rhG*Jxz#`yhk)7bd_Z;9`c+0tO5
zI+tL{HDbMGhTwa2+Gs7t*1%Z`2)D(Lna6!6NN_x&r3jtSL*to=`hDNWXbPAm!=oN;
zP|_<J^H$=X$&SBCHXbXQbnP0inG}g7jVt;X2`Ga9hpe{_Yw`{M{<pEg*ociBDU9w;
ziP7DS#OT)1joYZv-61L6AfTwD6ai@z{TP&rAUYHkEPi~y&+qx`x&OQWyN>I)?&G@8
z^L)QwZ$EW2t2j0jsG0d!HZo`K1VWnXtfHe@nlX(qa}Btjwvg9sArK-7#`ip*ws_rL
z#U99XF;8c?!@cA*Y%a7iucXQ~qft|xrJ@i>{-v;B8N~7q_mGIA5-7pbVyIL^AAb+x
z0k<y+QOx^9nX^9i>4-9eG0QvEOG8E32y2E9P^)+S_e6*c=W7!gs;P?3smjildxfb=
ztD53-shWI?QMQx9{T2d+MB_7}BuQ8vze4Y_l+$j!yJ$`SdgZF3rND}5Lg4sy*)(?1
z44*>No`X#Jo%;mT)il|j`ZH*M2TiLB6b_(i_2ORovy?QTR(O`PAdy9HN*l2Suiyh!
zlF};!(V45XqbIAk0_((fGwyPsl(9sXcQD!iCH4*$0>2LCaQeYN#^;O~t1{NIT;Q(3
zk_4&t6#*TAN}_S=s_vi|iY3ESJI&X2Mc-D;N`^`}^LMd@-*9>TI!r<z3x1Lc&f6Jj
z8xhM#d5*5PPed8xO!D7VvaGZW^p@Hel1kLF5Q8;^f3QW$s|ezd5ETVcJtt1#L-xxS
z89P|;Mr*MXkPdZ4$?_RVIvYQ*Od>_&q94l?OiEf;izN<<Wn4gVasb6+A|na-cYXQV
z8j?2%j6Tn&xke0a<&sm+=i0Xm=W&X7Dy98bTy3Guy@SOQNZwp4?c-yMSF7;z8ZvQk
zveRMpuwHll)weLv8gZ@^Wg}-iz=6h9pj8>-y=*;AOd5CXqubSU#?TkSg<6QqAk`gI
z+yHguxMDF!PKgP}O)rjsXbW*!Ak+HhP21{J6O>^CDzlL-EDLo*Z9ZfWC5#2eN;%aZ
zyWDzuE0VPeF;G)xjP@AkyrRqfP)AvKyEZPew||lgEm~vvLV$|Ub<^P1(<d2|V$5IV
zK;Jqf?4C$u(D&R)+NyoRz6B&87SJ3T#P_tyDK+(^zlcz4!ly>~*a2@zI*3hm?nOBG
z)oLA&6lfn<&yL`o6RQ`OfA!XeSNN>wR-M~?&#POsu82B?lqXzQ#2cM-npx1xw;^`?
z+1l+w;xPG_@WbaKq%I5yy~cw+YH#<9M>e}Rt%o~^Fi8%(TU?0oz+^|z@CB2Vyld%G
zk|F&sGk=L2pSNZ-3S8|}gyR>b$)>ZNX;QYDGN9(>$n|3-0smR^1s>0@Qg7$*9iNBZ
zF!H!Q{i}8ZCgd$H>Z2>HYI8dr)VY5Du1`^G)0){$NLB%?Ep6;=#BO`OsmNQuHup~1
z=Y+O5^kxZzB5#`=(R`w*>cYuaJzj=%f5Er61+8Q?y>3YdY25QLJ!r%4J~z6Y$eXBr
zOZGzLds(BVS#eItez99ep5tpBJ%=6cEA=9%x?-W3$!eRwO890|ad3}AA|$JuD8(<_
z)&8VQWUK2zQ|I~y=uMeOn54^$_X_XlPP*HgA8mS~2Y4@*(I6Dgcoi+R?&{5i+Ytcl
ziELwyNZm$cAAuDYj?X^Y|MtvK(_v#=-=BJQgZdav<f#5j|K=*iF2vs)eeZ4H+ka)f
zLjJ^luq>Zh<M(V|R|8pyo!s9oDjJ_U=pKnS$N9g3wP~CEubg}1Pvst$4RnZg2ecAZ
zYIGf+$udOpsA&#nsE)C+`3qp0aK}{G2Lq$VrkLyg0hV)ei<<0n`K&l#qoS`7m4ckW
zP-2%NIRVBxH_W~@Y;!zpRib=N0vy^qbai1!(<e>GSt+Ch?-Dr_bj0tzH*z!4SCIbB
z9G7y|Rb?`AqS*P)x*{MTRe8AoLzG8WaE?;KBjpS37s~L1J3Fsc!#}=Hs<}VzH%13l
zm2oX0G7oJZ{wHFLN0C?5gq8A1fCvSZC_9yW0b+cjijPlPb?>MU#VuuC_15Rz0EXbk
z-bWZWz{<7T|C|FV?`ia0<?1cDFG;yq`aa-3N@MN6t7-z`4b19I3U|Z)F3sm?)E|)^
z_-K+P0wz;|v9ekf3#Bt9cikG)WB;uAnQA_PYtFCJ{++`wP^~ZSO{6Ct*6tmoN5E-N
zS|EC=hgS(__x!{w#s6@jKK`E2=G6RnO>-j>ym(zx(!tHR-+9gM-V{&pnsk`=%&gg?
z5&edTOxzEj|7S0*s!b(sW{scxPmO$LNB;ZG^1?r+kH&h%P?Y>DH4Gv7m}MW#90J^Z
zfDsK0L%br7rhgVOzOJ!}VQbM@U%Gy*{OCq#no4&GzdaHChgry1*FNcTgEW5^-DP@x
z{b$OT@Z;--XP?#8rWM_$m0vNdwM;wNKX}x5%gTkYk#XbFtaG#Uixzf9s|cW{Kf~aB
z{ZZVEF?hw^9*|jkYgraY|CaJZAIETkLokLTMK~F+gfnZ0vsj(XiiWe^2xq?;jv58C
z6@+v4g>&_ta6Am>c^l6Afx>+QnvnKnvheXA{;$@mj}uNg1lc3z#vV^YA0JAm3pqVz
z4>r0_d~DPoVH@?8_sds1@GK30(9Gl^KQ?!f%N=HcF!^KiO+ds%ag<p>#$?X<$>fUp
zH0hg&cO)xpHzEeS>IbUZe^Nhu1+rqoNQ$s*_*S0uq_WmT=4KQx-ORW%+RqE<FZ|TR
zcmeFT@cYEn{}tHWlcI71Y|#c*UtZJ-$n8Hp&HuA#eD+NUU_LoB2aL_Nl}Qa2CcMr4
zY*}c=(O`D(RC7!=$XMn_QI3C>I{+B)+5+*^f-YK%5Mzvsu@l*~?T?%(jA4q7HpWMz
zn|w4If3yQFng4Ssb7S80ed^X8?Q<ixf^(WPVx%&u>C$`MstY(PwTebq(c3M3dbOmq
zz5G1HlHRNg3izBLL-j+0D@8>fiuiHy53Ivavdwp179vG3R9oGoDbKn=y5_T+a}lRA
z_A|)|aLRI?#%lc&efBra^4q7#Q<gKu70b`1@%J(3TJ7AwPBp*UgFl8Y56PWDKb^Nm
ztb90#`{}#%!wsJp5Ko_YM*NVT>Xcb*1YJ;P^G{j&H?fBIBx)o2fa%8O&#1g(V}}al
zPs7r!&VvPx;Up<4&+Q!6vS4E1T4bE<EmA`$!iH<sCS24lN!8}4KfSp;<BklN{j63k
z*M{OtGqmKM;8M}pV0&kuBv_V(ykqzJY48Kjo+nP#4r+hqAD)eAueGz0?yBHx#}dbG
z(2laNkM#e@SF}mS*Z?nWr_G5Mof)eucmEoUt>RW}ZXlBV3#unXRx6p;Jg>4v#AQr<
zf%4JQ%>=C*pZ{sXCm{(bFW=G}FVlS1=6ZZ_Z!(kG%<gY?b@k&XRiD3GNq+y^{K<Au
z7CvkZpExU&7aCNM`aSgaBG&5nC=gU->?O)cFaB(L+j^YIC{^D-3teU|GQ3rkht6Mw
zUw*cdx>>$KQTp;5?M4~ubuRq|Cp!+JhVmRx$21{1Nj5mMlzb?)grs;3oX6L|#LU9V
zO`gF>nm6o5xQ&EN7Mrw;J~iG(p5IVh#*Cg%p2^0}!6<OtP+Bm}vDc{IATl~OesGxj
z&e))H^)<tLj+HJowVqx+7k&XjAx1AY3}8MCP&QfFscEAOQg&{>un-c45M6wQ^)A0o
zAI!SvRFruB<NKb%6eFL`ntTw!=)jdl1sBIrlsRuer%4TF<FKJX1x=VlU3SO#HjM=2
zO>?mXv|g#p$o0SC)C%Rm@*GZ9pzAWJBfl%xu-cxMn-dw#U8WkoGz(=BYU<~U1~+P@
zByi7R8}X^RY_RQp-ArActFZ=`Iv3n-+EY>V964NnpzrNNJQbYRe5`+Gn#3&Ou{buc
z_qb5NtloTl@ZCa6$g8cz@o#x(C?Fo_0?u!fCq#uyy?!!B+%V7Q$dcV5ZQV;lcPq<&
zsAJ(kW#jR3))&CgheA!PNVAbS7{^ncA+50O@2{Wp<zfPp^+ydYsn1C$vAr@Yutz>>
z_|AXiobE*5jUNj`q)%@?rE+1kb?+nBdwHDF3@*Z*ctX9;?ZIJpXjR?uvFQLR3F@dF
zE`ui=Gp}U(!uxAO;Y%X6w6fg+2ANaH*rjklQ^tRuV8b1E7LLK6OC+Ik&}$^srfLJ-
z7Zgn@l%o()g8XxCR3EP=#(phQON+K1xyvykP)z?I?nxYVLq8EH*p9PHv}q7^q@kt|
zgs(Ul8#ksKR7Ow1(SmIaEOK#!?EXnVK7P1`rxrhGNMj2=Xe9A=Rt40*@b{$)WDt6f
zlyW=!?;=*)B3Qq5ZVtoGA3CM5hm2J9c56XT;05Vk{4H~15g}uRqE7-{!EFY$+e9Q^
zlGxsLiLGEVt(0U?E>V0A0P5-V;w)~PI{xL9O#Mn^BfALQC^=MRNRUXZEa#K#jZ6wQ
zXjjbtoevYHKwG-r@gOBM<c3{8%Z^Ioi3-V^*YrEP?!1(0E&svl6MOG|0vJB4)g|*#
zm;+@sVJJ&iO_LwhXfwFLq&JYPB^Ej}p`EPJ-CY1R`_xToF#8zCH_<=?rN5%XY49)G
zK_}FK<N&$%`GG<vj4FDP8YHEEH=xN}<@j{n+DPjAhP{*2K~ru-jCVw=rpWYjtkF+_
zi`yQlf0ar*ZKGtTDwlLP6N;LULF~d)dfqJjnBP$NbZJ;jR3K$n_s-DqkIzW74SW|Q
zl5`)W|I~FAPgit@59gWvdtbS@^xm^Ex&p>i(hDymUb&A><%P-`A-~=40=pmB;`l|m
zihkAz^*3Y>>h)Zom0BLhO0$oDdDHpIPCfHi8NTN}c537biws2`dIKUj{pxku6C=8h
z<9mgp-h-hp|6>R{H+bdI(~3UsiAjt;vjx+Z|Jl?zk)cRCN^5<i`~B`{4;;N+{(wz&
z8_yYn-(;I3Q>#-5h};G+KWU^pIRhaUh_c`%Pcq0KVYxo>(OCIFQ`Mfpn&qe7Utk1M
zt)XoR(t%#sm7m>G;1Co)3xAIXh7~@8jT0MYOo|gq)!CrYj7>14sUHGGs@?Fj+lCwD
z2lk9Up+M=K(Fe{&dW_Y*-lB*dXeJXC^Ru2DpQwUXhUe^@Z$L15Spyo$h79(!?%cDc
zX_hqB$Lxy(`LMg`aPNaDbi)boRl=>IdiLG}0&T%4W|Fs0q&rWw7#t@!13Pp|law!F
zwWq5Rczaf2GY^0n>AE57>`cDb;smAfI(MvBt~@+FDPZdN2|Z)a{C6Ll_a)E<*=-9(
zNiG*Lo8OkNc(UlP{;kTf3;QfX4pdr(am{W)D)(R&v%!}3_gr>TdQ~sFkx>m)wxP{W
z%=_<hv3b{|%~imH&n3(U@Hb8ZE1_D->4I!f{L;5{sH<9T@?G1@6i{#eW<aK+`??HG
z;(_d4+JYOw%)Da#n<4%IkRl$zu+2X#bV<6aZ*|}d?69DpEK#7yrf*H8@OmK8dC>Ok
zkWC*GBnCZPH9E^iJmfaiyO_25+M^Jr>DR`8GG0_Y9*JVp1W{LJ;!%NF)y%FRrT;#E
znEUb*PCE59%?|)!P<NY+%~(Y7`TVmxcfa@GlDiZ+`~Yx-G*Gr*-!RTMJ@uH??8@#w
zNdG4nV9<hr_FXM}wApbVHw(mhwOTvrZHc&d)!VE%bNM#2p)Y><0%de}*_*dPF&?bE
zb;<m?tgaa=5#@u)ub+Be=DO7&V_+F|$0@lKpvb$tX2pb1Ul)oU6?sy`8~F+IvSKt8
z`4jqB3gjd5yKY{$)Lg*=<%Ih^MNoV$sPS6*%MSt2s>P(<W_XX4?eFeF+Mhg6R-wLc
z8(%Pr9dxjA$OIidC$QVIT^@t$1n&Xu-ban2)aPNditi>`PehBt^ZL_7%y(edw&Wti
z?B9F>0pWrReByW@4I6?Q)vp5#KG3Dvz%(KX#%4H52$$jm&jdER8I&r4jOHWIi-vI5
zd51+~DInGc3`B6Hz{manbaZ8kKFPY7@6uJOUcf{fs9=eId>-_ZI~n2z;n@mvrBPT3
zt&d@}l8E<`w^V0KedN5q|6qrdRxt%K40`7@_$yx{KOIDbm-U4LSj;f95f9QDyh78Y
z7tdB?`sF_1y7w>-x8{u!C*ksZz-j}>I`bI$QXLS9L6i)12NX32aew^G$-i)w`BsO`
z-;rge7jwpr@=R=bAJwPhXPFuh1<7<EzKS&ncOf42=jaekekrPv4je4&`AE<QP>WaM
zsiY~y>hI%EpAQbf7i&Khr~i6lW4SbL<Sr+h;}Ufyq<>Yl(1+022+k}ACJ1D7*xpj#
z1m_!G{K^DaL|(?=jsN6u#aPo^3o2s2$RC>#u{_DXsxVzAMlZlU$_q~8qxSTXPqYp|
z6r@fhxSGyB_m(Bj5AKDC;_;Hk>^$L3kJDk!1gI7tvFm_cPxwt7{EX=aZ?eX|Q{Lg?
zMNAr4kmkKgBH8hP!kOTY-D^;oV=?x)ZBK1@Xl=!KgK1$(*Mlci;^1u6Mk`{iEa@2i
z#emL_98tkl!XQsW|H^Y8(AROv2M=VAApRR^6!`d2KA#MiZi~1(I`JYszf}Z*k7E^m
z;Gp(4etAezwnX55`~sESQx)4!<6U_5;~Wh-OS{v?(tjasqZZ}MF+)R<f1ud5yIUrw
zfJU=)O2AIe`eX*NX5;~TY{B^ja?IlAx-i_Xl&0n#`@>B_Nz<2pnu+Z_`Jc>m1xg>2
z9?U+r`uDZw;!noZ*t5b@z|ozZ-#5bnf8ejT-YFVF0Ca>epE3riI1T?%wo`5r0E~c}
zaM_z+XL=$(+c!BBO(2RE$_Q{qF&jf+);G=h2-K=KU##EEiXwpG7*J5oGzf94@aFHw
zU~W+kdYr;E9>A|kC$%LHLJ`s^c*R|U+88&&5HDejM3fUK+eAYwF`bYq-;O8hq#Zm@
zvph?)Mx{?Tq|_k2XjjyXwuO3$<}8n3B4m5pN|d6$sFSg(yRF-$amr1VC8RRr`dJ1J
zl^HST$m&a_C`+YqfuT~y>4cYY3$Fk<wt<oWIgCg+(>92&pOs!UQ(+^6u$ze&C8ddG
z`UINf#${DjW>t@6r4yBu@tF;(RLZhmOne|=j2RCi)rbrvvpUfNK;n4D+5`6PEydQj
z?Ds9%Ud}nw<eZ_iOQS;WlxnUKUMUup9dDdFKbE_=mAiD7yMoGN%T$_!X0OHNZB^#I
z9LsxknTzF&+HlTOpycg4=f983Kd8(<G!EZ!&O18Gr=SYHsur9&7nH8%&xz`=QBs2f
zf%N=J91UrOCo}@qh2KXDY{<akXYdPS6fCHq3<&by%7H&IXF3;QH_2h8E#iJrWI-xu
zbmot~2)|rCXopz|*IyJ~nPAz><@yyMtVSmr?@DO^2w8(%sKdof1jLN>?>a*@Ujz!M
z6$_wrU@Jh8ZQvgiM8O4RQRSlN!fudt8DfKyT*>A_mfA<K@-$#lPfGC-Wi~jVh^$qf
z5Kx4ihUYJzYb@hEFUN_6^9AJzBdDSWWTGe~X}f@!ZIS3zN68n8Oe5S@AFLRxE7SSy
zl7i5kREz{#R30s(=n6>1rOJ*&>1Gf_jh#-03<@@ZX1au=BCGkn2A8^23E`?*K3b(t
zmWS<^2VO#(S3t4|AYq`IcuC+yQwgs~xUfQuBVE!OYhw1w!{ck`Xq_UnGN~`HASEAw
z-K@|)4V8F@c|n$FfH#vMp8DS~=s%Zg0>9mh=CbE6%2@_L-5fd_E>K^aKq)@u<ej=#
zYN)TY^#z6XDK@u0W&wD&%UE=3_c-u6BUdEw86VE;&Vo34)viVR0DcSB_GFdaFR5j5
zZ44i|>|@kAJ1WS=F(CO0MawOz1^{`jfO9N_$2IWEyg&*inTi0olhwo|3)BZR{~-aK
zP@oj7I}`vkqjkpIz4jZ~oaDeGl+ZMdBiN9O6S6oq_fzEXw`{5_j|l*&mo`Cr0Na@s
z4O?yr^+xkTOVSp*KUwO+p+zve$#2D3Q(Z$WxCwR{k=Nf`<A)f%K%`B}wx&0>-NHJj
zPPVx}ZwO*)p5bWH80WUN2Uc9hPbb`V1hf;pn%>Jp!B9?pQ=zm&E<%88H>fe?1W?5Z
z$>3ykNvL8==xkS4LcOeAegPY?Yk<in@-+bp<k@UbKn$|cGKi2wYh`CFi-lkpj2IVI
zVr@i2_0|h`E<n{?tc@7WZugOB<WG)E09P^lKJG+zmUMXzb&Y-KvfYT2vj#1Un97`X
zr+9Ox1Oo~az{fCwW1Vh|7m54<ZSQ|cass=iUS2(Q)jR@<>20a<(NK+r_h=Kk?#_4p
zSKY6H=9D*-_ytqe@?vXg7E@G+I5L%?%~tpa?kAn}(p=c8AZ4TH4y%VvWA9X#{Z+r7
z_e0K!<UxJZ%atg-{fi%sH5Z{oXe$kR+6{hL(FSgTIJR-glS7NaK;dg$4-@(&B-%TE
z4O<^6c6Bxy9Dwwqn9Oao-^n7i!=YISmLGUV&sE06R3>qL*j=TVdHgVZmF6Y_svSga
zg=7^Dhe<WU{si_v!P11nne@Y5JQ@)#tB}_K#8X2i%bX(LpY68lL+9@#QAM&IiK8~p
zv`8ULW?udha^uoEoN{u^O5w~)0Q#$PTCs|ZSTn=+Yb;A%qaB4TOGV=W*LZdStdEpg
z9l}}lz$m^W_TyjUiaI5Ki|hNm(4jkQ$J<=jF7DAwu8xNfjBT!o%Y}gNU!^0!*#>mj
z{0VGz(Gy376U$fGqr)BIz1-@nTRu|m-?}q#ZDoS@q{@ct;a4tEyL&-;W(tUJ+};X^
zDPJCoCjQ0s=-;;=8n~*?9&*_=T$#4vW>{k%owTsD6*~30TSp|5Paf7lZUKoNw3iL(
zK~urvu@oZUsH!cm3ockVB|cHt9PP~99G#geAgoKqvkKWE1Q$&O4dwMsyy*?G{WgRA
zLR93ZIx6;Pu;buE7b3k|Q@YpJwtO>ap}3&>r)Z}BDe+H|h1nptTFIK3*^l39SR+*b
z!nu@_R9|q27)xrIGeI_w*!|bkf{TU2FSdoHeltYqio`VW#(O`g2zp$LFsI&qs23{m
zEpd)y{;-xmpJTrJ7(1dbBFEJzZ2^)9JCK=AZBuj*Hy~YBxts&vqK}a`BorpY7N2a{
zKKUB)<cDs6S+(_V@6L)<h|bo%!eAhzdI8cYByV7+=_kj)yzpG$NvE3}{q!xlJ97W+
z%7wkM6Wm)A)tk38STy=1DFslFXJ+a-yl1mGM$VFxT7ZvrFWmd|)QAss5Gp8wUvdK}
z)>3(vy4k_)6u8QPoy=5j^7joWj~>+UsQX~Ghm!XM73CcjpA!{LBOjz~FG+%z-+(-Y
zsTQ*|R#`MT?Cw3S{7+?pN+`cYYv!W)>bZdImL9TZVhn8W<QzD&^MW@N98YN&70ydn
z++SrSYVWaDoq*Lhzcp8Qjc|7j*u%mfd@>f6)l?7DYz1VTU^ZU)fZy0r-(ptRHlJ)w
zQ~9vIy0W&mERPV-qzhrzp4ZW~4n_U>vq1n3&T>H->6pK4s|QSH*jR5EtpJDPLEilL
z?WKm&!nOH&v_a3!!uy~7(D9^>SmVcHp!$%1CP*R=ra4ueo9DTO`)aBCi|w(w-MP*W
zCf1qyy0^hb5&A~sQJ!EwGD*mHS>AXboDjViEp1_OMZncZ#P@oX=`!LaUf(dk!$>|u
z)GoT?z2xlcPo}!`nl^Y7nF~Ra`}gg5;$BrnY1X#r-}04|6g2IlgN)>v-n+MH`+l=;
z12&*&wkh_?S97RF@tMk*Db@V53>HK0{TEAhE&WK-$-nHQf-mpdW1l%ejx@IzL3ATg
zu`PQf!<D!BuV3Jj!E<3R=-zA-!&htSG%1R5;q<oNbXQy4hj&=k(>H8C2reuiN&eIq
zK!ri5XL-9u0=|ZVP2Y8*4Qyd~cJCz`D|MKs;TvhI3orfbWJ>K^lan+Z8YtN93w?VU
zhs7)D`%kNs1?sI<-dh~YIjq_^OodFnJ7(8U+4~rV_F(0sDD7~0$?IA|BfR!SJ>H&%
z?+7>~<J}?d`J7)6j<OfBjzQjz0R|Ae^Y=7g-^B>Lr#{@q^Bx!gb||={yF%(Go7B?|
zZmXNGr>)m?mEA9Wv{m1of0#f&MZ?8BVl2>}ISlTDMQ(RCL*ELa0Bm@jxI;%g^+fQy
zUM-Y5uk`Mw_+ol`zLp%P&PS-V$0veE!#nAtcY@V#K4vql)?03Ug`gk*6i7J){h19V
z0tY+)9X3oJX%F6*sHunHK(=Yv_X2a9tnbJFMH<ZEAl`jES6_i1aRMKkX+~ln%o-K}
zq$@vntS?<VVfYNGJy^Vc*zxZRk(Y96e2{GS(*9B4`)9rfhQX!ZZZyRoy`J=&eGgTR
zHGtznjLLme<!*excy^rw;V&iY9~~1A;AkM;dmXlXeegY{Q`o25(X8WVDB*+~Vf2mj
zSkkrq-9Asp!}34{p_5UGuqSsy--)Zs-;(E14by+fw{<)0)%!5Hod7&r{9Z<Y;mGxm
z84*ove$*7dD;L+TmbOa$Z^#wh*s4EPDcBoYJ^k-lSlZ;WhBvOxux5TCB+U?Q>KSHO
z2%3HGm1g*T-~Sd)dvk~y7y9qBgEg*3`RA?MIICy4`rvQj56_?hL8*_Z<Fro`w7+c$
zolocXg0B2}V@#>Ge_8)HCUmPWgNCy#Hs0&uN^@I4tw*5x<4CQF0pI$h_yE8(O|+*<
z^sGn>>lfXL4~dx<BFVisz`MWVUb(Y&v7>frek0ibrbhx_b^oBuM^_+zYo8=A9+f!!
z{$uP3eRCx-jIS$**4?=xW{l>KL&dL0j2G!5NhGJF?M-%>%-DqrZO4(ekF;R%s#$AA
zPM=1fRYI|*RnEK8>K2cxuD0M+c@AXb)_R#-Ifm)^v+z&3e&TaqCli|323I$->(Hk4
zyJ!y#9k;I_Lnd1m!^rO42f32Zd@Wge<$ZZ?r*Ri>^NmlCXXX~OS2ni(v}^TYJvrP%
zE<3>g)7?!>zDY<;&&<lnD<~={tEdXOULVlZ+MLBBUto%@e0iIN7g1SYPgkJp5i@?l
z+Z)Zkbz^AsqGMumU?K#07~a}{*7qk*Ull3sLWOtw`ca<rj%$jB_TPQG)?@3tSzp`v
zoIfn=7U#ot(^$j?o4ZoSIhho9mkN|5;T@`~<F-vtid5EDk7mCL>3b;TP$qW2!WP{z
zslRkOi-YXitQrl=)XRb$y6oz7YJ|gFCc3DZ<_`M7v)O%jC+Z#UmG|@v+r4p2#uKl<
zzFYV5y^`|tUiXQF%R*nH66ZCYi4^%<_WhA#@BFSKy>F8qHKU}*A0=*=@POs(VzxVf
zs-l9{+icn#?^j13ZRGOU**zl6xYDA{8&In{Z@pgj5*Ys_`^Dk*9v6u?J*bV3{P471
zDgSS6LiEMa^MQcp59$(Qzr4+xtY^49B;P))wmChlPfk4A<+)d(eJdsT_s^3L&o6lX
zJ^OnBq_ZXiX(d<4R2>I5IKdpDE0Z+*xz<y(FKj6Tm;CL<+hUSi2o8uLG#vc2`~XMG
z@M8?E$LOw8q>FeI3?tYRQ&-v8Z%yH+c;Y{;8a<b6@lRtktrZkU_#WhCTiDVW5tvMI
zpi-eqx2CknUW~0tT>nH<Dl?g`WM-Y^Y>kSo%B%5?fV8SkI<l{j59YBEsMADa+<<J=
zXgiZPmwkLnWu+N!v)&`!7l#G2s0U&zbTo^B>BTAC8*65A_r>Qp=x~is(CUR=;!^J6
z+ZSMi>SBDkn7P4sI{ga1=n9Fym_~?bIQ_7!><5=g2$KiaOU#c>i3sK}2Y5kH!IxMv
z%NU!Hv^U&PeQKeIjvut41^ui}qS1bvuGbUAp0T<P^z$(wUGe-Nx8eIS*)Wf|$yM`{
zr%rE^r*ov0Ej8WI8#X1rmp4j?P6f<ml^C7HIwwS*VYQ6qXNI_<4#Xl=fU}zd`f=!2
zjaX5yY*u4ym0eeB$MgNN8$m8_ay7=DGe-WkJ}Y2<rjLaTd0WQ67h;35S)>$Mx&|ey
z9GC7Aa@uJKu@&tBKzCLWel{^5yM=#)u*Q7KZMuCom{xes_prG@^^9>KMECgxkm)}4
zz54ECdCX@ycfPhOw5GO9pBf$wyE=jS0)Kple*LH3jhJ~xgLEot+2HNz`p4PV(H4gf
zjx;;b1EC7JtFoD01Cz3}V!U3H9uUI+k~FlmroN$Z$`~N6@vFovSc8<V`w*lL<WFVa
z8u#&C)s6bcx2a<E?5Q*gfh}@az&lf#PlY?_u+U6>YBuBU{VddNDWaF)2s?P^u&;vu
zw}52a4(-~pk@Km;GVbmCV!aR*yLB)2@Y?1w%XV5=2MF(b=1k|UpAM<TP;WJ_LT?A8
zRfY8>zD;EPS--6#i|uDM#58~c9szZrx)4Kv4m`I(oa0O?n2>-!o4a@n<{$y6EBY~v
zgi97lluY8RZrZ>6?QXizsi-3K#$mn_`~?SqIB=Es__plKZx^x~O!XNmVvbA$#^DX|
zuE?n=0vd~>)zi~uk(*Qg@U$pDdWP||UitoE<F>t98c^F5LB-~b1v1Ay^E9^x_2>W~
zHx-+C(c5^s2>^t;`!Up;B1fa&;A6JsbH!!bm`Ve~=sk_4zB8=-H*BzE3n9oafuu^A
zgOyyl2E0UrcS52XiW3swfxJI5a+G4hk{Dp4eIW;xBEY2Gdk?96W~N6iQ<y5b&u?)C
za=yC_`84JyE!4l@A&mhYG7-RWvDA5DWIIvW7syWy4=*m`yoziwX|wi$Z5E=sz|trH
zC<U6T)Nusl2COq1SeppH-=&f>e#ez4H|xdrt#YE$+nQ-0EyWVnAd6^6+8654w38uP
z9q*O>#59g{O1PIdw&$f?!L|wHe5H|(79UfM2p?^zLv-uuqFP3C53POd=2AJ?b$X%Z
zm(^>k&T%#Z_|K-VO%B}o3yV|X&{$=?-b}PdvO%3Xf-PF+4UdPdH~Kof+qK<GK>H#@
zI_{%7&vm{3a<|veq5VCil}hKlZ71uIvQo6{j!-cwyC-3)pIS5rXuP5uZob(rZ!Lg+
zq&vSTj|ML$>{r{z5!p$6i2Y&=-OGM!x5^95pfjn1MS$7~HCNUvCpZ}vUL&ui-z}}{
ztmB@&;u4b<Y*Axu#A^%OLKiw@BJI6=z6S$T*mg#!u>{xfYWL&oPFK~-Jdm9~*~cD<
zBFt2E0?#n{hw)GoIEEnqP<@la=`~@1(5XOR)ZOEha_ppJG`s@wKOV%IyEbgx%p(&4
z0%WS2w5+0O0AjIzMc?~YC@}~32Ho8-!okoFq+3MH-y!$&#SvIM0`0HOkP#%nTO^kk
zfED$mH>9&3c8KhJI>Kkzc^?8lOh`Zcr4vIJBP%6IQ4qTLlr_jaSyB*96j6zJWYXRF
zMm-eI)=fM8>@N-~T||(W1>C*hcqL)p90*`es=OB#^R1>}@3j#zw$+At!C;<0b*CH;
zc~#3#HGmhC8YAmrzx&o5a|%SyirQNri~BVndY*R1ClJ}N7T4p`$12H-W|haLqN1s+
z4f1_;Z?;<|YqQ2$T<>ayiIZF!=EW#B?(JwDnXpx$*6;CIj&!-)@9?Ke>Eb-lu_2)D
zWoEtP?@8q@gHyK}f3(?ufLluj<^yqQ*btn>?zJ6Hk*7f_!$)9JU`NO5r_931s@KOc
zu|fM9&g#FXw-lp;yL|yg)ZN<<o_>J3C%y+m?P}XOAA#A=IY_u?jSuOMl|H)%*7NaM
z6C@FUHdsmt5BKt;yBBAyDfiN-qcCuZu?&wqDT;{zEjrw5JStUk8x#?D)0&3>$0BrI
zZ+XA{`)?EsdH^-}Q;pOJ@d@|C79D)YrT?5xhvB4rgU#yvY&=g`|8oU5!?|Kb<H*k^
zm-5D(|G;n-koh*VS;Y$c(=Rc<|J!*`e!B;74~?6gnB=2MjC}!i<|G8<0jNShs+uJz
zlZD;#C_lyAz8I=bURPhy7uWv-W&ZMZ8lTZ(&iBuYn_c|<K>v5KP$Kuyolf%A*Rgk`
zb-q8#Q&QG4{}yG#Mn%eVr5jUEfA~<3qFW%BYqzqa(VbOlM+6ob(gNS<;ggGHK(sF(
z{716Ab~;Lqd3HgM`18Vj931;Rs_o|OrtPYf@u0rX(R=kN-}^4aESOW{nrR+Rd`Wg-
zIBSnijXSI2M<2r5GrP%>M3yfr2R$cr01&Z_UGxTEz{|ltof|;eQeON9n)LbiDMTN0
z#U9eZhOx5kh5pFev1VlXRIqUP<=>^MKEv?G<%Fh!48iqKd0=p+M99}0%%#|flmety
zLl1ee4fmw8aPD!a7ZuY=9AYY>UBdg)%g_Vs!13Q^*#;Z8(73;&(J8!n+6d~&&N%3T
zxJrQOMPFx60V09GQUv_~hW<t0rKa*}^=-HtpgifF$NuutK_4A28RW{>N(V?)#{jwc
z>@$Qf?CrPT`pO!h9?_CTIt9tl^=+BYE4`n>fY@zFgC)e6uRYi+R*=tL9Z<K$58@5a
zSPMeC;i&|%#r~8{ZZm35<cuhS+BTf^sFfED_+L`vHppXpI-wtY36_y0U-A^{r~@lL
z0luFWGX9lCR1YxzB|vZmsB2`%DFM<)ZdL_QS(0yTw1Tx(2QB?O0X7I)Ihy1=B$f_%
zC`2W=o&I?lFf~w1wr0-nXJg`{F8u)YHiZ`k(h6C!$FH(CGu~OE@azq^Cz(R9cq%qb
zF%}>**vRH$bH$dAUXskeBg1hO%hCD;=4`<ZVA|)SpRxQ(?+_tW(H2BUzPJwtGUj5L
z*q1sU9niXN%K!-JP(sFH8_{t40%jbG%jZhl{?EVo<dX%^5d+r3fZ1jtKifXOJQRgA
zwmVKT+4J$BGU~8+u3;qC8b(5@iME%CPo592f9!L(&G41aU~os+k56RzvI$F)&f^1i
z8`uKSl4@xmt+5QbWOfNsmoJd+hb<&w?I&posqY0BB&0|JnJKI1xqQA;Lbn+d1oeRF
z@AcU;avco$<(uELfJugfgJ~ED!#<wjE)C;nST<AoVw{(Phy-6)iBNQ;%FkJ$JhJ>r
z=!^IKLi4>@Od!-FFWN<dSgtqyl|!LIqH5QBel$p0R997u;X+_TCqDxOFQo|Od{eUk
zS#V;a(||s%7>(bP>@6jHX=q{R7BxMf*c)c{m6EFtp_<=IRL+OA<z`h9y%e|5lHiqr
zuZ$XCd(4+Tpf?^a+`{0oef4jouGsKXKq)&*l$3C@yfoE=c>x`fW9^OY8MJ<<BS2L`
z(ZFFiUOI|B+eh}gfJ%&>=E&Y99Ond}4=iNVjR`VHJ~ayOG$2G7XAK+Yof^|)jEka7
zs)kMK6hD`qnzTllb_|<ViJ0~%nvF!6ji2iD51UOYn$Jd=zt}T-a%#S+Xt5ckwispc
z`qW}a(UQK|;@z<2@u}rWsn~&{)%md1-&3nFFDqblsP!dA;mF>aUde_v+Ge~|E|4r2
zh_?}nwiO$(X`ZI$o~9O$wo@Ci%PW<;PNwFKrVb=iUvB_tC^<MpJH#^EH}5&n;2r#;
z9fQ8VcKhydiysgi?G!)abbR0#?f~%KbjliW&ik$%uH=#m0PvrKF9$>bfTTF!E5H=8
z4ots%p=0Ob;^l>Mp}DT`!vrK?qVhca0!S%kW*IdWIdu+2O@1K}E)@)qst#JiKuFtI
z7-KA9U@mQJC2eFaV{ENpZl_}Hq-yP?Veg7DwZu5NW1QXfuX!1J_?cn@%)NuG{X=X6
z!yH0zF4rU6!lOMS<GiBd{o<2@5^n}46RzXaaH$!Q8Cfx;ocNslr2N8^!s2um4q{2!
z<mBY~`uf4a!O6+V`T6<fQvctF`T~=RGnV8`&n}8MRaL)b-DZI7aqZg*4evZ=C|S52
zYo0+Y+a3Hxd)U2Dj{I(+t#Hc?9iac^_k~LsJ~b^pBa@Vsos*lFUr<<7TvBSOtXf%B
zt*Xb!CnCTBb%F^Ai7K$=aVR8}Wp?+HTH8AMe23dRNA)EIi}@6qN5}6N4HyW?Oz1NT
za(J+dh{xtXFj(6NGGG#cFK+Mb?(M&O|KZ@{VN^v;jc&ITpOCC1gA3E66cG_C1`(!b
zdFSkfHV@oEdEDTc8&5}!Co|-(UEa5Yem0!a5!T+1auM#vi?Tp(NUmBgFAQn2COFRz
zbzR&l@4x-DMm6&A)svwQB^NQD<vE;Jg6D{=ip|!iRC?vhk!InBt?L^*GNh>~i@c_8
z(@g^jW9PH>bk-?io_#eBv77`gFu65fXExgV`d-`(5dC~m=zjt*!5O7~)~sz2STWj|
zVnYCBQ6p4SXzidxs1d@r67x>pPh^@+l=n8DE=Yh7q-97S`IQ-r(9+8f^(CYw8r?=$
zhHWbxpbInIW4yUk4yVVzvzp{N%k3fZ;}x{O0)~KPHoA<`$6T~eN%}2Dl%A@{{S*D$
zAuq&V3>5WJbF1E%NKpGFFq;P*O%bG?la#8orj8{W2tUFZ*o&l@0>vSEvZ?QccG6fJ
z19#F<Oao5V)cUd)R8UeD%QT&&;7Az=U2I$ek&a{0qn*ZWujVSWWAu%9`32Kx6eJN-
zB-w+&NjR^jaZA3X=pF#hd*2#}l;~~%i1Yq^el1&wVTYKfk0(zdRK){cKovT%+*JmJ
zLNg$dMS!5<D^eDS&L9^Pz#7QZC|sZg>JX^8z67AEHO2-tRXR~u3n3-%LYootYtB9i
z8B9oE3DFh*n%UI*&{siXaqIw*clW#<xJ`?s(`8IMTy3YOa}k6Zv2_NfS%$I-7td?(
zt<y<2u!`lm!B#ul{{#Gbk4XAg8FbUpbqCNyo{j$0<!vqjqEo2F0!Jn2!h?#cJ(Q%1
z$s>gqK#4K`gU|OUk0icK<b)pNBf_$`YhW(w4Mcbwa)9-r#TlG};2CBjP;pG)r>dE9
zg^1ue+8qoy1UV@H0|ddQRj4&qvVDBBy$xvP`mvKB=DE^GFv)hn3W!HT5<GeGmkT%b
zh+~^bqvuvDS1QxJxC@WmS4*p=Zl~xn(}TY~w@*RtOgY$yO3l<O;JD@BR~UB`H*9lW
z_br7t<qS;%xe6&zxJu|y7?a(^)0cri-}h5Nli*a(tQ)%J7o-`zbZPf=WJTt#ODy(J
zcl!I0p>o5~al1KOS0k7dDwDpwpz#?fTk(cnABM}}&41D{JB5<p!9;m~JhkFNTzsd4
zguRm6%4OW~WV;kJ1GUqB5Jf)?-c*o+!{)Y#pl)yr`AzaPWfU>VcvJU8mqd}hcbXyd
z?`*%~#)JD`^bP$b?hko$+q|-R_rRv^+G12DGeS=4XL<G$foJDrd?yxD{i}{HR_Ev$
zLU*%Z9)(Q_k>|6)2!f%D4FNn%c2g^8c_dUPgxZ=Jls(0k&UXkAI+&sRn%TzD@=^Q3
zXMqlk;$VUSr4ZcNKtECo_tbLAYBm6V{8;-6rz}`RXNwN-SPcBKk1$dNq`?P@u@N(Q
zZ;F9zZj;18Xs=Ae{VOc65*-h<B3ZMIw+y%X4HmWvWfx8N=mP@N-qK#=g5wsOo%uF<
z*hvint9Lm@NGp$m#&vu%hapTh#r<7#2jG;;E%3%MQmVcbS1z^)t8}nGfC>eoBT^Bj
z){^|g_$)hqKcwY&Ge?wB<N;H~h5y%d4$`HJDQhvccclnjyKPAgWu-Q9F{SEf@{~sD
zn&fWt3-&ZriUdy5xVMW)bZqNQ?>8ceax@6Rbr|2iE9WKqeZcFR=B&nT<r}3-U6g||
ze!WuhESxzj6e=9C4^zsdEQrkDiC?00W!dn=mj*kxUM~oNVoVkt<ZZ-KL;dA{jPnI`
z%9cmBVAq#iz`S`wwFdnH9ZmXcqLW!h;wZzZ;<c+ciGi*cR_abkp<c_BIb^GNtDmnc
zpQ%~I*ES4&r*)<)^fahRnTJr)B?y^SQ@69_4dP3x$2^jc88$j&dFQM@uHyl+gYx5A
z5!m->t!vP1pBL$H{TJGT?-U}Mp>1UVrBv29ODriEVEir|GJdBxT)<bt{a741wA9`a
zm?UoBTD{=LKi_Y|3ev0iv2tl|hI;w=(mHR0&^EZv|GFjmlhz4OV}9suQ3W|YhB-j8
zrJGuRA0COCK3a=-He?uN=l*5Bt^1i=q0M&HjXvyu>kn86@?{@=M`Kub?%I_8k4^b@
zjVxRd-@f&<H)gcUy*XtKD%LLwx2E8~R<oztaa{DpFJGNUVH9%)^=)swh7Qk-HyC`^
ztO`v<_6Mlz+&@ajEPJdl!e_P>m^STT_exoN@?;C?4>0X5rFR7Mne&c0iK*k%TO9jN
zP-H!Y8!+K<nw>TCNeM9jCIrk<!LA~M-MywZ@|L6aHc%o?=hE~%!2Ty-7If^Ym7V3o
z^UWEg<tW@w`49e;TD8VLU8>L54D@qeHpk#icmcoU&fO)i2TFhX5&FUD+`ksZtmZC}
zeHuM@!RKspmg^3SpFmDHc<11|-uj=5AGAE@?p5N5b%y6p<;r_k44uVT)_$dd9}i5Q
zLkwut3wO9|PNT<9`}~l}X$0FnXuiiv#l>~s)zNL%F$zY?!{;MAl7$&|yPThHz|>Qu
ze|M<XlA$l6N8j!8KW2hW7iMZwI{)CqnlPDE=K)H+5WTzZ?FZQ|w@CB<76~r7Z9+@@
z>zbS4I$M#?)Qm7V=6C*$>ZJY#oec%ZJL&kU6DMiNRr-;sEl(93(#<n1jMb*@z5K?&
z0j6dkI5@mqhFXnHv3oFJex~<O8w2P<l@(vwS3+4U=7vM>2+!^7H80i*wMewvNkxJA
z8OGi?d)5W>JoR@C%U&4msv%$KTRpjO!JP0Wg$s=Fz3?9X&XFp2RK)1_A$Wd_HnE*M
zFE+1`*GcJ7jaC|Ctz7q`deM1@r3)gCp1^wXLUm&Y=2+<Q_^9Jw0feSGD#_U8NFIFt
z_*(7{nog4s%2MiDFOENp&xF>=a`-=QOS!TCQunr_5&T&uCAO{Unw+)&*uIF>`8@N~
z4mI@X2OpLY(qsUU-6n%j)Kqd{LlEr|VAdLxuv(%;PiqG(xJm&jUMsj{h7t?~E~Rcs
z?cRq!DAoU0>ek@Js=oVwV5P>dK`tpnD+O9qtui2SRq5V07b#qlBpqsQKr(yb`v*)7
z93}sJzB4)F|Fp|$&e}fw)s<bwa^R$$`BOUW$HTXv6A|TSKNB(t33u#oZhlDEqDfSe
zPaJUqk5(jdZYEqjuShOB0m&2snE)WEhKOGqNz3fXe0st>4FHBhS##z@h67lKH=vy&
zSaKO6OCqWnB|XYant!fHHHLS@C7g-?MJE#<(12L=7^TTTrWIKkSuSLI;<`Oi#98RC
z3e{!ms5)y>Qf6?DVLEah)W;@ntV>i7O+WkL--!pH+6mkT1RooayK%DC2qx7xKFT>W
zCN9$uAJ2Fy5xvO<-IgTlik<@;0#7mpm`K-F(AVWbLnl(a1P}si8Sp*u&vPybKF}3D
zkN_UWXXJAkLL}8sUtP|D-%2v1gy`ceN>stL2w~BctBiQDzCb+=a;5~HEmc(PrVa}{
z19CBNM$+GbIiE$}Imm1kCG|Lv9#@j2r%2au0fkWJ1(afM69~S-x8RiUkSSXhDJ+fv
z$^ar-nW&aX;>GJ+(g3QTc)%NIK1&OrqB5&SG&<t|c{>m?ZY*%?u{~BdEjv)S4VqVk
z;y6a-&!`HF8fT5L*}9GeX2*eUg<BX;<@@dCE4=g144`AM&U+qbwe_v=H8PW!W)tUJ
zEF52)ayzs91TcYAq<|p|6w@qVNpb_I4h70H@L^+)w?UNj$x%ZofY$?nK9<t363Du|
zz6+)la}F?a0c(AP*wCWJnBwg^3}nuEW98lLUle;5dfhAHl?(zaXSt|xT)A+eh0?Fs
zTE8gk+bPXo0a%$BTNa``Tp;FE{*m#J(5&K=^9nqNy?7RTE-+l$Iad8#IuZwJR*tWT
zhNpKVlQ=3b)l22^RhMxNajVGxUxtRYb}I^CMFXX`g(U3b3*zCmAFCR~sw+8a2GweY
zp9EBAvHy?m3=i6hsW2b|T}1f*S9hjbPE)&GSaa`1&B%+|rSsYq7p+l_x(%1QXYqAg
zRdvE@buVAky*aPj=BVF2mwu&I|31F{psN0GyuR4F{?mCqh2z#&wOf>r^{4T-&Z=(x
z8oyN<bnAT~%_~-#ATe5w{)!YV4HDE)Nc8_D26gDCiQZ|r$mMIa1~mSOZ$!=0RXzv)
z!GVM+bPwX;a}5DfC<b0z4H&tRm%_0`2E8FdX7M%xFyVl6*b*YjrjUNKpZ84zL<NQt
zS8sSqq4S_L`}K>N*fu}y&*H(kYniqb_KT^jqh7C6IN@8$TU$8pwz^eAD+54sWJbuQ
z62B`g+a#1zhg}H9@LxHv1WxHv7k0mdQDPhToCWv#JvhL$*`e@u78z;V4w1BB`kn!i
zvx#s3wEs*6-!KJ*2e+~k1n4{3iaV*DfAP9<N+_X0JabpFTsv%Fs;P%ezid=}a2@Qc
zt(|u}Nt9MLAux)pzW0qaI3a%<YpgP*aeozbVKFO%_3m=8c5pdlr3;37$+4AWUk_M?
z+#s~u;JR}<z3+AcCbA(b)!l};o`xNuB@EJ@AmEyv;Y0xJ#z0<jc6zokQZ~D3V!>}O
z?_$oruk#G`EP=w5PF*~xkF)%~7w6+fRLCIDPb6>4PG8Rs?=LTodKh!fDhCxDlB08F
z0?4Hs%mLZOK$&=f*D4tAaliHI@|%ao>_!D5=^n|s_)M0VwO#2g>O7IVvSM@P<LZE6
zI2Uaq@4vL3uKgkpJ|N?6x8wHpGd4Bx-`9LrVv%4^ejlEiCf?>W<X0Oot969W<dvb-
zV&iKNaMOTJN55eM-*bY}ma&8Of4vuvriRV;hsCK!{IB+1zuMR9Dne!vvXd8ZB%()k
zo6Xh)WdkM6AQDk#LgqsfPMadjy5jn1(P8;aJy}UVCf*}E0fVa+GN(>UOo9nVV#!?c
zH}9dd&(PB=#ICQfeQ*S~sGjZPO3p`N`RUSW@ZMWc$tjRSYm}6@u5s9)WciWE3b8b|
zhUXAntixs8cGbu>7UFUZ;$p_)q9|R}#1wZG-Ml98kV(>1ADlaBkTP4S^>X~jkksp4
zQs9RPov#S_@0^qH;k*p7cR5O{iTA9y?mhc`=k(e`1H`E3Ht0T7LB1qK$wwJdqH<eL
zRVY)VO2JW1LE$1q4y9n`u_t%ICm<g|R*Qu|y4Ka3oE70X#h~%~cfTnODUhY?$Ry^g
zG_O=~-&B=L#7mop3uLWT)-W*Z0MV5kCdBO(1uFJ_UXrf*M6rCEK(ZcEuG>dNA4?uu
zR~(7FI=-%SuVm&y^H7UC^UKs`%Wch==XZ|TjD`576<_7dNz5ANTnR`6Z|tc!r>Zn6
zkR{PGKC4$d@7&ifoUp{t%<G|_Do`y)My{uVl2RXa2x-jtfSn~LqT?SuD|ytwEE}4u
zUKsqa@Kvj4HQ{KA(DVeu84~-&2g5^PlQrVD70k3y;(E)b7pbquw{38Lz%XlmK5trQ
z@TG292;g?Eq2k69+BD~j(`kcsCVj_JR_7=<Jl$V>TPHIJAZTqmUYW|&U=*Jw=zAJA
zreTC1(vIVpSK4O@v{?WuJ__Agj2ng*u$ZixI+T{qx^G{ft?k<>UQ_`uCC=RU*uE}m
zz5IL_^gUD|r$s+9M(31DWIfmLy?2bf_hJP1te>^<yENmI7T9k|aNdkj;i=Kj$mz0{
z2S${Yy!GW8x|M)Z#z~GR=;TIEanWbZ51S5_5B9B_qk{hKgQ2so8ZPrfMwX*3)(hXS
z7eFk|et~)2*7-Kg^eJn9f!06SUBQr=(rq`r6%en!#9QkLy+)7(1t>?(+p@D2WYxYA
z5M)3Go&CBof0b~--71F(tGqS=aSgNWDYZr9t$tjy!_^ISoo>h=Hrf1uAz@B$x*?y1
zL3k-95x~|XH@mYa)^8gdq~sv1Cb+r+IFF#BP7Yc%eXNt{Cinjlb?*O6zi}VmW}C5L
z80NeU<(%^=G;@}7$hnd8DRPL4wwd!;$T{cpu_Q`0XBBczNOKHHNTqMd?S9-p+<(L8
z@pyl(>vg@}&u4B{193iR-CQ~Q3S-}u`iS6S7v02<<}xR<T3S<0Y30XGc4-da%nipz
zhls*(Cu>7HOZ>E8jctSNP;auhVrPxv{`3nilSjD@u<MRpPdWoIj<S~RiDj=0X!5qP
zqbiF1EP9rNyO2o%Cw(HQL)mC>c1gF~iCUehOr6Vf0h<ci+aX=1x#H$F-jh8(n(Kj<
zRC^2?<3{1+5^=-FGPaMzmh~opf{~zUf)1mW*QtBYQdhJyy8cFI=Jd^@WsKOTnOx?N
z%n<GvE{61_m1y5)m(~A%FBr-tU;FAIc5W3Bab3N})5uFqlGP7)HEA>QTHogg2fa9b
z{E|VN+wG^BPXg2Bf;^n&T;HXEbR*#H&)V+aPY)O@x-lkP{Uu@<x~ymE85!p(|I*9(
zocq1FHCP%X%<gQsdS?>~E$Klbm<?V0hQq|N+}BSuLGRl)xn$1~WwpW1tZ1m{dbA6~
zFK^wm?gNzcIVaao>xy^wtYd&HIC<O|-nS}Yw|*~ZwXpP|cxm&@`x;|Pz#F?dXmC)k
zUi5)&mzu0^&K#s}B(lBPy)hcxu41Sw<aJsfJy1CwFdjd-<Z%o80=5<oZfDkqVPb?m
zJRLc98#lpI0zu)wc7*kIYFxojRW{-3!)&s1*>Sa&`vCCO;QEQqJ-b~w@^0uq`U2~l
zd%ZV~V&|96&A^ok$V*ylEY4vqZZoctoTWFQ^gZ@4t|iwUAmbj`JJ=4euL1sMCc1d^
zavS-sv_y6>*eG1)Mfh#kTSV1pE81diSA>V$t-WTp7tUU~Pw(lOA3E0__~9Z9*q>!{
z+WC|SW+ecWADUfn@3!j?>3DFZP4l}|-iB8g_psFA3)-Q2LfF%nL9u(c260UU#;8D6
zXIa|!%RZmVdha_l0?y+(lRnSioQXK48yuA+f?e~^#8@BLv?I6QeEXLkdG&!s+5`KH
zTH*eqAD-{u$^L5ecnDEB<x>?tps?k0vWeB1lfkec3@n-;9d9+Fq#Pu%Y)JK$OVxFY
zJyX#;PEh%{V%Dz4U@!LfR@}S%YHjrM-PB7Ih2vwp3QFBC(xy23g?tFn-Y(YWPj(Wc
zbH1E2HJ$eufDXRqyB*62qkdGS>cbce^Qq_&YWaDxg<8Dd>ODJgXx^(m+8KZ=VaF2F
z)Ai}OQ`?{U;=N9b?B7AWzFlO&{Gp3JWP?Pii8#9io?7Bf-ctKdur0=n4U%pV%fkeQ
z4v*qQ`H-zw4M2XqM$mdsyVGoYN6GDoq5`e1soAU|XO)Lm^~^&KY6@~~<>1f|QC>0J
z5?e;fU%&|h%EZRb$;HFVFDQ%^5j!s-C38VuQCU^}qShrH-9G`rCT12P2vbMo)eaat
z!QIQtS)p@B$kE4XGt<P!+vcno)#=P;OYybn)b!%+M0#mfq3rau^$aY%Qu$?wK314c
z4$^QXudw};w?S3uY*t<M&0F5Lt0&`<Ue!8JB+FAWfJjAVK1(_%KGxt3=m*)z2loJ`
zD2sWv?{1Ll<SbAOi>LsKFukQ1&sPLEDBi({f>E1trd=T$F%W*cCiqKUDVw3#bIq>#
zXe`DdGm4-idg0}%UG_of%)6m<VPUHuS3)GM4Oxd^P7{4pC5MiH6^g_ah?#_-7gK+C
zT*<{qgBJ<}+Kt+FtYiX;Ng5(8!*%^_kky-}`iHd~)j<-{c}*X>e6I~D?dGw+mn-ci
zaVr=8f3eB`eJfiQAx`ps>`)gGx!I%N8%wRQ`Fo#Z6;kzaN@yvf1OK~1<Jrm4zmK&~
zao}mLvG0{H*lsbfJD<}?7kFL=UDh%96%Ff+1=sQSe0qe@i~jR-SeWom{8jZyZock7
zr|!7O0QnRYKz;dVFZ8m8F^8zAHtdJLY${Of?*(=ib?R6@n-0QifZbSna)7fxGf?FU
zKI(M5AMCY-L7?pLlWaVJqgICRh48(@!uP0t!&vogb|XxjsP${Hf`F;l=gU*AP0Vc0
zX1ql(l?BbIF+yYDb~TzBlCG7W9#xz)y)vf!Az*q;btQG0BzYAa$Dpj8g9me3qRV3s
z1A4BE>oCd8Oz5(k*-Yy52F|c+c!%0d8A~+(Z?S32X4*_$nZ<fRgT;2n%2;N0=8Bb>
z?X0o3mgnqMw=~;12jAw|IVVH^Tz%)Lue0y3ky-5K-6m(Apxm>}>^^uF1kQc%{@ii%
zJyHhU+ovtv)yWAl*opwl*ZQQ#KDUPG7)&E+$=0DfysFBGvb3wqQQLvj^EL*@r)4z*
zHWy(NvddVrv+CB?xeB=+%=^++y}KlEIDa=C%=OYN4We0{neQGfrl!-c>+ZL*kbY^e
z-z~9un+|5{&|hCa+m2dy|BTjN2L@?~Z)fF;6#?V^?XWm*l_$l2b!Bk2oF}n*5y!3_
zn8O-6?z2KAcH~UzerIy_@s9z+4*jUq|LbNs{`1(B8It`I0B4_vIO~~9miKhM@>%zH
z?CbP`@EAps<FdsV{$#!I-r~=G!ugtyUD5`*k_0<a(M)B|ndsgcQ~$Q~-8|h~15s0A
zV5HX|7^2CJ&SCY0aMW39vR}YuFDMQ9e(L)vqgUn`#NZ~rlDYid>va9c{2y_0Tn);n
z{EJ??#ow$gPs2WjF*Y{=_Sq970t?u#ZZdMd`kVQF$0dtvCqJgyTzsdh#bLlV{o+2r
zV6Mcnjh(JY$3g`ZlD0RP5%c3d4P2;j=_mvk{sUeXXY-jPiUk;8VVH=++GdCmUF}ec
zDBLlX_{J0$`$M-+VAEUSKlvakCbm~6=5qpP2VOfmlLk-uoQUM`f?A(_nP<2p!JBSp
zw)z1EyF~doBfJqi${KRhC=O&^tEoHVLYse}FB6pIv&Zi;jlg6)reSanq4<kl`xNHj
z6`)%I5KisLPoFnq{->B|b8Mw7KTb(?ZUY#4?Gw^%(oTc2+70Cz@|0c5^!)_zNpkaB
z25KBuqIU=02r(ENG1yz-<9BuM{GAvgnohxR$YG`c+{<reS*iZ~h&zs%<l(Krv$oDP
zY47^}m+C9Y%OfT~P`$<ssE}KYRr*o~RiySYN=_JzQ`;G%d~6If5XkI<(YoReLv-??
zv`tVq+B_uvyPfMg=x-^RQs+Q|$XOaPxzj*!Y2ukJg~DV~b_rHSD{&$&z;J*Bp0cv^
zn(tnSfX^h@dOCdD+56(`0qGVPS;Tw%K$s7f9mmH}dgx5Db}vh3vDN`|5OF;F^%gPX
zx)3)7JOe8SD!~<4fdSVD*X;vXgU9l|o?<*qxZ2*uu)0O1qY8LzDoA7v0C0uWhkDsI
z%~@s&29Isvw2=&W+gZR>&jI9RdUjl}ZsaqR`;SCkX!XCQdb!9QzH{3Et}eW`V99x-
zSslpN<Ef$#IejWmC(M%UVvFOHcilWa&F@hTcq28KdbWsqLfSX9729gq`?$$Ws2sL%
z@y%O^5A#w4Zm^tqBFOJ|V(J+wG%2SEXijOz&MP4Fdv=vj=aeT+R@zlqV!=j8=aoKl
z=5)<oxE=s8m{il5r%Xu|W&S8a1q7zp#)f1yIzxwOSXVPDldGHVUW9T&8rprm3NONt
zN#~*o1_d*H7}G->7{0OZJ<W)}^6}{?p2aozGW#VEqJA(h;j;osL_gT<6(69@I`aZt
zJjI^LBERo}^=?euDtx9Cj&@Vi34*c5-q6%_Vsrp7JMSdS#jo)4rDvh^EET~$mQPA^
z`jWdR++^EGTw(3<u+wq`QlNIQCraMck3(B5;hV@iOC6p3Jkh?Sd6>VzDA9&?;dWi`
zYfD+zrST0Hy|%KZAO1S|Z~x4`e1hr4MCvF-`U2q64zI=UU%<tSgS0Zff^VC*0UtR-
z|1F60So@Iq!g?S=H?UyEe7`yOeeZzy^4_AJZAr;uU$YyIRy?kJ*AqBiiQKQBe7a3K
zbf#t92ySI#<c)=QoW@=ErWOi)uITH||M`L7$I+1lKF~UOwh&t3IQyObwS~0CmnhSI
z8u^8<aQ-H@m+I<_w9%6br|#fh0rHSD`lz-#dL7w818#T~LfRg{CV#jsZA8$zrv*n}
z*57B=!2)&0_?X;ka^WB6YWSAsIqv**JVOciGnNKZuy?OdE!!2}y)*2aWKq28cc`S{
ztHsiny^Z<iOJjDO0K)T+Ag<)kSXK(<K57A1J{D=Uw?!c#=h*v}DNT$*P>ul-x%Fe;
zu&(w^rW{Sg8RZjgH-U~q#%+#AQ15lO?dbtr)<q3XI$Q6aG06@VEkE@=8$2+goF_nz
zS#{^F6e3Qe65PND`QV2!QFes=J8-Ak4nBJlg>kp!n-X?<oQb@Uq2xTn_R5#(wsXkf
zh0=qI8Vk&&=RrI$&ky>>VZFR6pc4}y)HO)~%Q}U+Abv0;+p0NcL9b;U$V94Kc;SCq
zW}<$_`um%0O>B?c>I2n}z3*6K_1K^c(GnFuPhLJ_f9y&{p`M++k;J@8I0e8=g+Yw%
zfG;2NB2~_^Ts@k$>YsR^;pKjjkoT&N(LtmQ&Vxm<d`+zEHQ0wg?UC%SDprOCR))Sk
zJUzKOHtC_$KNq;I7r0i{2V72uc)Wx6xWh(+@|pYY@il*N%@~ZZV8&p^{8HZs%Rcf;
zXpKCDgSi5MZ@qyto_swNz&81p^jCI!Ob?X>n63-#CIQm`a_K}lZTb^F77N$?WF_NK
zRyPJEq??i@^uRR4nYODzhsa7MK4bKu8UxMoMiG{Nw=K^Sv6x^TNppf)qzD`^lpxt$
z#0S{q12ValUz(XXUD{{i`Q|g!2ie=X5oQ2U-pdSF0k&bPP)!Ud`p09hb{pb);lAu{
z9sk_ckSGb}*2lBoCe96jx|Z$QkieMB>?m4Qehq`^jtZ`f{l!WZbdU9r$Tr@>B1Z?K
zWeq@CzHhu4FVjE*G|)3QR$Lb38^Wo9&OETshF~f>YbaGSe!0018znInpVFJX-Z8h4
zHUOJ{>U=R?h72q~=IwXP`J0apo7q|>pH5ja<;b(xRj@2$SU1a9O|969gW=YIbJ8Rh
zuv{T`8N&kb6jnZiS>f*{31_Sf)6d*xQ*G&9`OmO|IceL_psd4Qo}YyCe|s}L+%dR`
zG86^tLlHB;Vc`=u9=Y*910tNhWw~A!DbSHox_+)rY<C13bBx11nK)0Ph+IVq2<oKg
zgA^Jzu`D9Ew2(!Rn*wWP+<JgShdwN!7FKC>o{fCJsp2n2CqKXO7wdWH`0Q)$D++BD
z;5m22aS2%)qHI-}?A@9~N5gy}%oNT|@&gBk@la+ZJDNFLR_L@>|BacJZ1O$iiiR{+
zt&gN;Qi*4E(-Z=8FEMEQ)m;SL(86H}e~AQ@@+e0-)8`-#k`D)rkwf4yo7}qmuQj}+
zD2FI#aVG=2hN!HSqVk5dV|pCNNR=Lu3YtwhojR1$P7rjZE7*prMm=8LwB~Sqtk+p}
z`K9RK@r85CO`)>xkg9gok~3f4uBwQRWtg7D@qmSR=qieMtX3;j{{3R_mDMUm&DW1L
z$G&Su-&bx0YkhdE_3^vb6Ccf$Q0?u<+Fv;x*1v222)%UHYq~6U=|m9^3BxmWSORj`
zy9S*KIXNFyoAHGyadbFwE9v1n-1Vp~c9o7sSBO1>gpgAcXUAG)$uNQiSQmbzw-_ob
z3;<hS_`vN(WFC^ah;^H%8ensXh#F&}lA*rd9n1c7*XxG&Mh!xA{3$3yPgHGoif5g!
zXa0<Pj?s0^qo<ls{bm~sd<yOe0Pm0>VVp2^vOn~@-<+su*jG;H45O(Wj)4x2yGKf-
z8QrNF)Ak`Fvr030N#pQw?`K%mZaN>pFjyg!v!ga})a!dyZ)r=I)rkdbyH9@p<ISTZ
zc6&zqxiCXnTMo%tGvjwkt0)zPC+1hLU-_Q%o^|EFDk6ulWmNufR2hosH_VoppvU{f
zj>%ff`<rPq85OuStP&D*WX&hJMFAL*w3A5BPCt`4jP7yw#+=*gz+vQX*&3k$u~jSN
zc?J-Di0YRTYjE>?^Am^eTzD2eHgUwMGWP1dw^wIvo6q^!H|A<A<jQ6nU9jf5mme<Q
z4=|D!zs3S1zp+)1QRWC>1-6}4D)FXByaPj?^A#WG*UB+;u8UJ)u_PEcGCg5r|8jHh
zwQgk28{4=lQd|e3GC0vLP}#G8+eell8g;#3S=>0lyg&oz<?oK$-l7TBPaKYbwqr9`
zH#5>-k7duKP8g;AC%?^lv&bi};BGI(o)v6g2KOarA^}A`*1h5~7r4u^K}??1w1@NN
zU;mQ!|4Bm1-BMX={QbG1Gu6I<5iU%pOhH9VXYhY-K_)Tgw4ibv$Udn=Lpkc^cORY*
zX)%fP;7%N8-+x=H!6&dxa1!D;g5f@6)=mz#ayuj;BC}6CkQ@OY&Fk&K-FN`x3rr7`
z*+$O$!&ecVK0t)d&tC#hbIc`jgZ6H?yp~xr$jh<zj8@eMnFZ((z%BZaRlk<1+09fQ
z#CmcIH@pnY{K>!%YGUHT<p+-=l=w6}MBpo$;+*^>E`CieMLj{f%K7a~?&e*EW!`$F
z)(`R7yRF5vz9%`$CldCwzM2N8nX;JQk=X$~_{!aM*DJZCi)X?)`CheGbdhS5RuXyf
z)~m9sY*oLQ>)uzDfhZ+cv3aKr&G{jBR((r%Boas_b(<>>LCF;LFNH|v>O+Y-J3s03
z%y(T-6X~~N&HC=It7Z|7E1hX<&u_&`HDH*#YX0-{zcNc{yy_*aM!x<=-V4Lo|AsFc
z3V9RYp;b@4o?nNe)u90OYWdB@CM-8i8tUFO-2QcIHoutp(9hQm+|mCfUgF8^7Qb~g
zEmHikN~5<=<9q3e_KL1_)3<zE_Uzy$@4oAZXEm6;{PdJ9VTE8-4Y~JsO{bvqQo$+Y
z+qs#pWuu~g8Jxg-liZnDsr%uK#D9&Mx)bT%nA}V5up_jnjRV}N`;j)~nd#R>zRyqM
z@uvY&88Yq}4~HI`PIn_t-7~o=GWokRF6SaO_A_-YSxmlkFh@Og=6R&&koQLoD$La>
zN(sHX`fkQQTvylN-kB8W^0Q>XgXYFA0h#B3%b+2+#QUz&?k!b8VgaHFY`-_L&h7tS
z!CNm(VClO8m+`@Iv7xHoPZ1ybV*(LFu@C!c53A|m<#(9PcNu@OHoT1d1!X1U5gwWn
zM>|^;y1%m(M@JB*Bk8&o-K2_MrD2exIBem*^KH1e#zZ2H6dKU0-6Rp-I#322w9j~h
zz?ZKLe+pWdh`fEDh3{uX({Lsq)8FP1*l*`YABIhBqh6F>(x8D?U(3voVzM8Hf4<IM
z7XWM8MW^6v_07s2o(8<K+#2=a_5Av~CC*Ee2Y}Yb(N!L$lMk|-DYJ#Y>!b6;1HO)k
ze^4JX7an_n{QIA1xg^q=1XBL*)6dzkN4N9S10jBDHQjW?JI~9!*hY~_+C29M4&0+*
zwzfZ6qKu2?r|NB1ePZas-a?JfU9|QG@$+Xe*FT@n`>i-Od|i0CGWYYcpS{!R%h|Tj
zfL#P@L-5xp=8Kh2Bm(A+!Y=-K{FbP~LRuF6vRpUz^aS*KegP2lXR(5%Jt1~!G!3@O
z(z@XkeW(bzE&c7d<(rq&<dN(vVcItZyQ+5`453-!{%)Im<TWq6c4jZz{^Be3HArDE
z$el*eXk%6=VjDf>hNSFm#Z;&}w^mxL{!u9=U6AY0(%d%aeD(c~D)nox(~=PAu4oF=
z(2qsH?)c)(BG#dnHCN{KhM+Cepdm%44U9ww*?B9mrObnsCGhSywYhNh%*r9w{d|F5
zUj?>|eDSu6C(h5=Qdze<HbiI2zY^(R38>NgOFKc9i%Xir@<lz%zhozZct;{$9u$Wj
zUirS;TUB&%`0wB1seESBT$+V*q;0GE+B>jcP4E5l6N-0$;s%3=BuI_QaFxcqWLjSD
z#E%^_aGAWs9o9e#wqG&)Q@@_SV_W%dK3ikua*}WH;Hh^n`lJx~<EJ)@v(fFNuCn7!
zz<c%=40de(uBTcFwE_(pI=R*s^Kn(Q49DsI_zC?58}*N6v4p>U48SsloEs;{!ANnp
zl9S>K3e+3Y-S7U})p$3n<&ZuEDwF{d0iW6)xU={!-`NE6&{bdVBM~oVSTGF6C^QZP
zJQ$cv+b7mkK1d19W^21k>niK%14Ei`OwB;hB?W1j2xAv)!Zuh?TVbmtm;K*zlF=vq
z%sfL^=9bJ!j}s)=Re>WD%s=665);Ql1R1tL-!jt8v^My$W)DBWe<y!Fp?whkm;P+Y
z^J;geruGHanp;8FnNI2j-x8soFURh`1K7o=h5crH@RF^kk>!2#?ivIjD8qok2wk2M
zSi!SKoZ5mk4mjUVvMem~<kuiq{y}nvn$?J0r&yF=*42_|4k>nstUTwfD7HVrLWqBg
z^Fo5&)XlT!IpL6D%?j?b7QFf8P0=!;Z&n+PB<{fWNEP<I>w0_q$=oVo*sVz+v!zd-
zR!28N_TEi?eK2yQWd#a~W!Vxs{00BUCeQV!l*{+k-kPDnBt6#UCAR{J%?XegcfiGX
z@QcOjTj0Ov-bD7whiH*f4jFb%-L-?jOYA0>_QFp$#UEasWoMh8jOqEb-}~@Tt@Ovm
zPe1;|e>?g2b?lYA`zvm5VHhH-;5CkSj1XVls~}~pp~!l_yU?Kl>S4H&d5$H$KrdC<
zo4xh)|Ds^i^D|S{z6AvzMDC4kLYP@OxcP)|=OkqnR5Y{+1}5g#c8;#@UVcG0BW}m2
zEYMT4^H!xjJ4TyYa^$hpfu?63a>h-oEzkI9Z^kG59J-o@QZeBErV6}V{rY&ZT-2y^
z&v>M?L{sA3#MH7;l0Y6!vu?cO$YF))=lC4-p|AR914XeMdWDUmR-5>Re0jpVZr<hq
zt?6npVv_#9vm3TTnsBQ>I7IL+*B8M)>hq-&imLZ~s{3$*y^+fG0)uO`e6=nG-9ZZX
zxuM*P5B6+d+DhVjkgD1F?P3_OVx=+~1i{#IdmJoj!>@XSPCZ;eb4<!)jFo;kRkQ?A
z!P%0<UW;>Ioz#+Mn%tZYgFR_vaoa~q6F)w**r0DIV|hh_a^V+DlABf$NDJpnv4s+f
z=iaW1$w$xisG|x&I(KFy@)-S;wx?<=D$Sd3D}OmtoA-~OiPGyOVM3x~Yh|I8A7fD@
zR%%2xbJJx)56w5~829O`z{kzAjQ&XTDd$nCd^vmg7F!$q=D5*aAv!hRAA7C(Iqv3L
z2H-mv?a1d#2j5ZeDbBaTEm_26v#xRd5$jvVY+-MfVBi>g{a90g{b2Ock6L{Ox;%$l
z0RPST@&sWDx*|~|+kTbf@uWd=QkJNkE~DcadGMx`d*7J|V<KOKbMM9J+-i#Lz<haz
z+?%?}EJIvDRrY0t4^{UqD&pOfYw;3B+ULT~pj*;C_=mZ2HU&lwn7@x*@&yi$7jhkf
zK2#_8`@ODy;63F~TXJi)ptkf5pM+=fZ4(TINj!Ced^a{2!}#zQsf@tHF5Tc*!4K8&
zDNh)(lPHfjSg5akNa1U!t0Zin53H&vY-nhFw9wGl+Q-+})K=iQ*z|O@u(9R&;X-5U
zD^R0xb2ZqhseKq%)b!}B!s4!9f5TQ&$F#Lm^ON`PMa`uX=@rdSKT-Hwy4JFtWU))u
z^_38=L%&|wZeJcSzEE6_@<L>^d*GR4F!8<rkL9A)4$NPBqgQSmrvZ+A@d5!Y{cO4j
z=4a5bV9MaR%uHYn|K7^CR>Q#E1!R(hWjiC6_P!Y-i)aO&NsQE=&n@V0MY!44jd<*n
zWRD>*oqyo1&=Y&~_xl9dCZK%^^!Wh5BwdVoj5U^u22E4j%6zaYJlP7&QWvb1CTcyK
z2O;O{NUa!-;xad!Cx2h~K<KoKswig>GImg0Af7PNsvZm?KD57kZbUebPN7P5;rrmy
zfGsLBjs~p9JvCyvPgnkQ*Kx)F+g%uw6!|+SbV2D~*CHh~ov_UYr4Zm3rel-|Qjzpg
z#-tJRKW{tXpkH$(j5zfTIeS@+ZN+@^&N*mm5C|qkJGI1u8UVt7zsHUQKK=D6wiU80
zV?*vm;HsEohb@GbSJ04@L4r4P2QrT@8P`V0a*x-(>$k%O3U#|Oe1_+zNao;UOzMT-
z!F*_XO?aj>OJI6lX2vU9Eaglr!Dw#>TVb!bGZzK?cl4enhT139urCXt6}!X|iCiDx
zU|6?d&;E*B0vo?@>c~?txL6O!o_|$ElwN&b8gq@%;fhS~;fLVmk>_>rhXEpFrm*;A
z!#nyZ1i+v!765YUNawz(I4JoK8E2A8n;5+k_p|yyS%joxJ=B&`Sym0Yo8OO^u!jNj
z*ps=kix@VkBq^_~w2&$sZ{YPJ*%*1YQ&Mp{nCP8@rcn{5XUuFo$yl$8rj|?s+7%OD
zOHv;pfl=ko(pPmM=&aDZ@(dxJHR}57^B$$n0~~Kh;Nf!CaJJy;xqw4M>pd&>e&;@^
z>t~i=F6)G;;?1X#_HpWtZV+a`u%u{R&g5$fq^!Mw;a_hLv&{-np@6KWSZ5X#-%IJr
zT+mYiF%&q^<rFa+ZVC?=Sw*RWm-HwW=C8q`KG@P9IfGiaJTyXI0!mKoy)Rnf@;QpZ
z>4pcNeNhv6X8&1UXhbHX8YXa(`xinjvkJ#X<>9pTP_Dn4{e)ky(NsHZDIhu?&z{{4
zDJ~QJW17lsgqctc)5}SeJN3i411{+=ZIvbKQm@$78_Vd?ihrR>LA2N7AradGvh(`J
z-{j-O=s8RWqYPKr%gvo_!VowkgPH91S50qbK*5cpn3f0RccP$Hm5qk0Qj&RXFLMf$
zU78*@6|nFqc`!*4$;{xVB-XkK0BSdu!G;dn&%r>Y+h}L~FRgR=bSq{OfSHKTdTnP1
zdN9_+fSVx5m@+^p(~bTcIHWjE=X!!Y30#Z;F{xd7bOF;W=PEZOGm0ta82uXLFyYjm
znAcHbRs*ztYcS{fz#WuCVo*2(26o;6%M-=?(m`b$^VcOlB{p#aj;vaaT05WW6C-#q
zsp$PR;H&2Mh*PTnnP}wwv%f}PI983F*KqGI-w%i{;tNLE?Ex7sCbz;j-zFl?uQG`c
zfy{~j8NQGpvhlz|m<*g(@lDonX0=uZWM;OSQe{cWNfYGHpKCEQs<i~SHsG8i1S!(@
zyfH9Pc?fff)QK4^ES6{XyL(+<eFZ4cmY<{_jHd}v-q^(h(;2F+zoX0z%L3%CFYay<
zSJGJSMaLG2!dVRYh;02#FwMjE6nUyA*853l*@hzc_Bh`E=|me4j~@;|*|T4lYez+3
ziATJY5oR+b0{ZJ`Q|N82SfN<eIATqIR_u#f9RPqUb{q5LN3<zGyhaR9aat<`TNed$
zvAUc-ZcMhZN@sPi`dG2WE9W>}T^a_^O&}%CgD#zf{oo*eyrNr2Tu9s(N9bjeC-u2s
zH4=|F0!qF(F;Etlp{ktD2_Ww#+Q;E~A<n8YaV_1t`G>NqwPTiYj+M&K)McJ{JsB%`
z{Kk=Xfg_lkfd3{oe}@U6)eFDt<-s&SlOU>4`>Qz*G~W^5{RjOi)A?)jex-n2<l^}P
zEPt_-QXTkx5V_*8JdTrOjFhJ_k20-%ku+sc5<1C(X$<>Sb5K@dx_&YdOkkeR^|xfR
zKaYh9C6+vgxbAH%A}(PeM;(CZv-n&&^R|GG2hB^K)&V*C9C5;)``+~UcRF|+%zb*?
zw$+NMR_eNVM7pe6a`IgwrVsd>bv+Hz&vd8q^|DW`h0Fo;q?{2i0!cSFgh(CZ5fK%w
zPoE1433T*m>Jk5&ETJ9c+mXFu=5G}ElQ(TzLCXb5P)DQSv}G%3RsUjCNy>G^R+Fix
z{f(j+3th<hERdYjeq|a@-|<}C?@|AtTV4e1jfGFz^#c5fubJITezcX%zS}zhKcmZO
zw$d?Md)&#Ie+<o!t*S4)e-(3sL!#hiOjhk5?)Rrgh56TBlt28>VS?pFmd@Y4&@`yW
z202KbER~7(vO)+H)6f`~$00d?lJtLvKcI~X4*(bS?E5ozg<iRpE&;iu(D|p~VB;tH
zW42}(5eyBkLU<Zi0H5y%l>v%AVrn)P>H99`63NFa6fGE?@vs!)j-j&@qdw5FVR&F?
zoM3q`7i+nr#GCiI^pFk`18HR=$`b407R%*ESaM+WBQxy_|LR`hmred9<Fa2yW0+qN
ztkCBWf<!3Mn0xSyXfn8mq}oh-vH@hwF8jhhWYtBJLqcO-OmO-D1z13_T1BV55B2NZ
zK!@eRAlywB_Y9Ukt1_Al+TAZdLpTj^1%)VwQ49;v*pZJM!9<R1+Ii)L3u?HDlWY0|
zabm6lZN^h{UOYn>jmw8~OByZJx%eOb{SKPYW9%j@Pd4-<o+??F0SD~4GA#)b%t;@y
zLfO}>Rw`1t_~keR2>9z<M=QcmcX3DTL5Yqk2Ue0QAo(HAL^GC=8KmWhRh)HG)5Z(k
zrpxrL=-@m`N6NWT6}hIin0aTeeA?KkRX7cREp=~=Gspdh<1EIPhvDCEUp{RE{Bf}S
z2_YbCdu50?=TRX)tMz`FUj1a^O96fFUGnR4XcC0-d)@*u;LaKR9y?lrq?+q_-8ZC&
zMhCAy9*i@=>D8<2FmqH2E%Dg7<XXH0S*r9Q>m0GiYty-vK&5mMYPAY;C9n!_0nr=N
z@({vQdwjLftYfe_bkdk|cVs5$+X2mn)_84(P92jAE5rpkX|z2wjR8+{C(sOl8N|&Z
zr<-i21(pQIO;7FD1TRa2y{iIAaXxDJf_9qo9?*arg!@@>MHUD~Y~YqC)-JB+Ry>7v
zdj$g>&kgBo%Nh8@i1-doqtDtJ9y$MbX<xN+u^7OvsP{GHL{1|cp)R~vI1Nr@KJlo6
zG81Hyhx}W-{C^4tEmQ{P@!g`N&q(9lomT~HbP&ddVRQW9ILc_7H!l_jO2k_)flOY2
zC^HXl2-c!Lo+oU1tJtS;-vzXNTz>J@)Ozb20aFt0SRL7Lo^!Moo4T15*L%%+h*w}s
zR&?tl(~LCX6C2hjVZrrP__+%+C8ux~v73^gQ{25$-_!+|CMD+sOj`OebpS*#Al3t~
zKEf%ZNfJE9@I(U9`CbtwG$>W~rgHT;?g@Au?RgfU8w)B30YHlZc5MJl4U%9N0ID@-
z?=p9(qY4N0g(7_6sQMHEU)9+~Q*>|G0z`n^A1c%*Ocj>jk;p=haq9J!$>=a=#zA&{
ze$uSVA^<my4Z+gB_tQBMT>wTSQdDoPN*^i5TB2La*I61;5J4*N1LpZ{+h87`q#MBd
zL*z5Y!CeWpx_%_8mmSS3cosVUC%}#da#US^I4+2&qk+{(ZXOR?wYm8<0Z^sYP<=of
zvsC-J5x$OI{+xnSuY<Y_kT0XTUv-O)HPSCc&`(*VA|TFB^Yu;(--qe$Z5~>EylXjM
z8=0R*o||tF46eDwCw0N7vB&O9`cI!IPbu|)#_D8W=)rcc`*Nz}ZXX}TYt!eV&*0^-
zvdiTRJ{W+FCiI=lc`bpJThFSj>*8!Xe6Uqi1-X6>daQO+rCh<ZHr}Z=TX^vH@)fms
z8+()$!rNL}|B7gzJB;!U3Yr-Ih-jL}prP(QI*i8@=3;59iWS-5T}kSoeU844?e&pI
zah9|u=Z*juOzi8!qN`;D9S`bD*pP^9@8nIfcg2Adn>?CN%vL<j=>jWgJ_-Zv>l=+k
z(+R5liRI})GI+KS5-Q$op(OL3Kz#*ckS~+LItQHHo1Y)fdXDOOElGPv#@}L=G2L(8
z_}6?HEbD;S!vzHS1lw#Y1ne{fVN4NXb&MG#>|Oeh4=nL3mj1D`pFxgJ*xgf0)`>M8
zky>Cy%JgaQeZ$5(MhYY@d-dHLjTL8y;n0bPQ}kQXiDKo$AS&(W%?rO27-Nxr8smGE
zquFBx%5TZOqr+j0T5B-A^1l|tpAp~wvKsDlf17kp6zTakS;u%$;X-QM4M6K2fK!gM
zqvf3FiXVb0bJR0QRBk{z__=a$wkGMhL)(|c^$weT$a5zs&pu=9ezQREIn6ddnsHHN
z@Tq^!et&UWF?Ao_AB^}i0lVH;<&j(#VA30r$Z{v6#yJ_m5Q2oacTemi`48AdLO7(_
z+h%;8N*{3QhM+DVpm+{YP6u4qL%5{^xcozS?i}#M9w>!`pznw979H^VzeTskKTn-}
zc^5>RPoZ@kG^wxo(b^Z3UiYO!LE!4rEqSbxsjs~RALmW%<+lT=0QYg7FC|bhC}^zb
z;O&6vW=jU_iNUz(&H3Zed85RM-SwZvW((`^#lNlGIr=%}1LuCp&Pto%)L3Rj1BBWh
z4ORuSIK2K^bN|i!S8SqLIN<X)-kWmp$1v3ci7@-APOPumqo4p*Uz8^ukuG+B==3v~
zV8u%K(lfqV#k#I$!KL@^Xk=ZgIL}{OCy1!{9T58M*!<@bXm5-4+vvE)MT(5BsBFgi
zx{W!mIP|-m4y379mMs(yKWZ`^mH+OlkTIn2G+z1r_tP19W>zG#)<n8E@<jC8`L>CO
znks}cBZ9gppk}GUL4lef|F|G=nPJz$Gvjtdofp2J{I&EvylHe{VC`rRzZPab>?VJI
z<G-BT<U@)uc9QQ2d$eT*FH<(^BvbeRgoFIpdm{)EeIlJi#;QNzmdUpK!@(n_BU+#!
z&+%U3YqlqV|NN6wocdItboexqlk+$bfW2>|BFMhcYcEWY{797exaM+A<dk{aQ%ZjN
zCygT-$srT+Ugkxg9V5j>WI*@J(RE#who}w<xU-q^3@~q6QqM-i3KcCKWK7JlLVC+8
z44JHOE6;OkZ%>;J9-92j@V&%2n9gO=^mBd^<)=7fcJR;~G9&lT#!}u!`04DLm@V(v
zYo}&{a|xSE?yie(uB!y|wI{mpzqz+c4cpoKg82!y$^@J8StoALEw(<Dp9`U!d6v9(
zmy@_0Ts|4AmphKtL<r9ymcl$1e?^~v?IH5mY0Hk{a@8lz&NnUeRy}v56%~~Vh$`T@
z&0c#O7#|b3ZesI3oN4|!(jKnyb!lPFs-b|*PA!;g-WY?vAu}IzdEzv-#De;}v*QOj
z?nF5|36c<n{`w;$o41QslUKvYfj6-rEsHnrpf|4s{~)>`oDKBZ4VlVMNzAerzN(m9
zk51{fm(ISWGLfJ0>r24_Is$T>kyaJWQjl~>;Sq#FQkIRWj4Hg46eHZx9$u(<;=pG<
zT*vDGE-w66?T9JcY?ohX(<!`vRZ-sWvusYWm1dze@t4y6?>nmVkKBGG3qKt0vF!Xh
zx^7dHI-<J6%*Q3VG$Y|MJXl|0>O8p7AL%795?;dO?A>eY8MQn8%oul?x@c0$|4hg6
zX|z)lKk4~d4TP)KG)Ca%@9>9N&aYk<4wSG}{`#beb{4{?73$tO?GRxq8up#BU7Lya
znq>ja38JIneRH!Pum)W->?M=AZt>oqtq!k!<s~hjSaL%@J}D~8|D|jDrbLlMTQM$m
zN-0?@_;_0YG{^Lbi(6RaQc;EIr$e#nADR!d7~dJbJ$xzLw>9YNUzxcXvOL-;xYbPB
zvUMHopV-!k-GL<bzH<HXLiA_JR_5o@N45UnBuX($bsf`p$L_<Pq|pC_ubeC0`rVHI
zFFHr*^Czw@Ku?+1xi`X{zr0PVFJ6wq@TZHOq!Inx|1c$^Z2zgigG^cW*uZbfjM(~6
z|9XHXd%VSWUWH%*x3TC)jS#>Q2Hmk{u!5tPVWkIIe-b4!Bu|n5JwYa0zv3;Q`A^o*
z<r<^hilM`a)TmY*u4C-tzqLl_c*=wEN{M$V5$B(Yh?`jYq^+9dyH7t<iA;_V@vArq
zq+4-|$||hN-VWHPtn_bmwBi#{=zA+8ErRH%xc<2E{L4y?oM`T1vE;oU9Ow@1P0*zs
z@p-n&W$(;Gk<df?N)e;VIu`T&d)M*tB0AY?Ql)D@s=dpen=#SF*YDr^eXnnz3162)
zvk44zj<{;-SOu2<^z_ah^PMPa%1hu~4@Rno2ucj8=f$ntZePfo(wKXov=b&|66@V5
zhx00}5cka)C78U;Y(Q|ndozmYP=Sf*kM8EAdD3UtP0OjLyrKC8{Gtj<Mpjmi`B;hD
za*CASBx)BGz+1RbiSyl7%7%Zu6D2B`RDM%kOiQuaulS0!N0{c#54siZ6sff%0%t70
z*7fdCGdowWpop0G^t{rVmd=+$<8#ZKdq4j{*?5G{U-;G8Ykc+EuskejMaeRlSK?8h
z<kYGH-dZu36q2mZDH1sJw}?z(r{D_F&x$5jQjzz5ws?H72KS{#j!z-)dsGRdRr%EW
zx)VaK6*)ka1f@APS&B1KkBC%<$+r)2vMBED{Z%(^#vvHDd}3QBubwcBmnozXmZC4O
z`$)Y$K-W%E!+T%!Hk6!L?xtp`W0_-;P@9Q+#^-bzG2|e|Y#ydW@9><t5-7<k=o@~H
z3nJ6NNAz8<W^W~?DUFOse=U6-ELqfF?C{-dyhQ6BRM7FrXR6xlo6c~02^k{eY;R9=
zi%WrWAMj4x@`z7Cut|3$l5gngL0IQm88md`AWS-6x{KvegQ?6Fq5%*r*7eQZEFM~9
zIVg^q1D!3AIicx(yN$i&`J^mIJe-w7p$F->e&_gLBQ1DX=24V$CXvi)j}PKNtI_Dx
zf{81w3_p{D8^CaZHll_(RgT=fLR2VA<(R2Fo0TmJ#4gt4i{_cNNF6ZnuR<n($_;W4
zh-bfdF*R9bpIMBIF1<q0W#d#@9Y|h1CF#U533SmRmXSIkr98L$X%HTPMG?xmhp9JB
ztUY=j4e>i!x%EN>MgUNAll<0~e-5Q^al6t+ilsofCQ@BQ>^L~Bt}9I6SPkLAFgeZb
z*<ocU9H(S$e7?G4>ZbJ-Gr^OZB5e60U^Gow)oH6EE)t2axWa{tbZbMpY=w;^2q?G<
zp=YeiuefB@uU72+v?4;-wUKVrZRd|72$%3ciT9pSGT4juxmPX=xg{xgR=M7Q&ypCC
zM`2K0N*f^F+=@hN@Vpo(!C-ySrM&v;^^b;U6!eknY0eMyY~R~D*)o^wiiXhjHXIen
zslFB%ltfGR0mukmlUD93_VZM$A87uyYYdiJA55pZ_+K_ybGgV`O|)enUoA0@;xu-&
zZB#CcMcbHNO}g<ekUEmI?XpHj>jiJFDW=wdd@n!ndgfdEFkZv2zE+!M+H`TUfLARg
zn6&9AjP_%JkWf;)-Zpp@D$jr~z_X*?@=gJS&#v!_2Qm@^RGZr!2r{6f7Xv&u_o{#|
z+9jGGy$;_OVLA1HI~l`|6PF6!6kzYNF>a}p1*!?;J6{_A&HX%%Ta8UD>_o$=#P9vJ
z1g(e<-nB1&jy8?k6gKml(PhLe)f$SI#s1TZTomDQjGN22@O6=g&s+QUc5Us;+h1BQ
z3Ei3vOIWcIHQmB6u-TtRk^@3svfcZ8*zRou;&HVvjUJ`i_ul>eZTQl?lV6`--Lvkv
zW~QVzk!)a$2cN?OQQU^C3^+^jKX@8Q64*P6PNeV*5TVLlI;;xJq%T`Un7$f;BX5Fw
zUeAsB*DoEj`iZy;R5ygDnl9hmM7%fAO(UpFSLo+N!X>afGES{fz&$Y0P|uwsw@dGw
zihP`Ym^-RkO<&S(GWlvM3RPK7Vh;-e|6GfQSpHIykB?1p1&dUU&krhjLBRw4sSpD>
zgPTnUDR;yxIn?A@T1K;!qMCAfzM<<?-6t~>^hB#Vwq%f+SO&OeEXc%?vMs&MA4p%D
zk@FogwwtofK0O1=Yxjddd9ij6fz{{Vw;7A&5CenNJbmmP8qJfZxY#hgW}`YLlFoFn
zBzm1!G?;QMHkCiDx2e!EAJ0t!m`jtE`TTCCaqdfAKcC4nOUN6$VLENS++?6!+k08n
zz*~u~)TdHUf1@>!EwK7mK*iVn?aOLry>*N?yOA6NCy5A&LBi`7@=Yn+Gi8>$1#3G`
z5n<*G(1Kz&T`{pqAI-4hYSDy?mvkqU+c@(!l@j!|2=BC-NMO&d&uWL;JaSFFa5hCB
zQ%^@r@jP-7H7P@BJ4xtInwj(qI2nXOs(@in+}L#R;5ib2$&}7!TrCoG#2^aRJd4`Z
zoKIbDI!g7DtLq5W2r$f3rB?<IN@MW06^T;q5C_(qxWqc}4^KxqK7xfo1Z>HYGc7?}
zH-pE##f2ULzPsdxYTHsSKIbD>s{E)=o!!C5NxW(0cvHzrOK}(3zPc2q3=bUZb4}Q>
zt2~!ddh??$!g`0fzmx06Z&KqpU@@6nw2700L_Q~a@yhbg&Lm3|=+VxjcSY?0qb(ai
zh&OSm#j**^wnBTBGi~A`vn?bWtD`TyPch%fdmiEP`8(|gWk=K(!aR>Q%}#0E80v>;
z-DHC6S-Z3&yuA$2tXv!&fUJ)Q=rhsR*_IPpVn@APzimM`TfTfs-hc4oR8aO#!Rckl
zy5z0C)DYRQ>cz?*+)qW=0aqg!8sP^K$vqm1_IHZ-8$YXnt0oSH8LaQFAVY3Jmvi+J
zY)37vYMAv~?$Vyas`7dK`-C-K?vsAwiC})9`lQR%jJpWeFpc?F02PX#jIIjr7r(w(
zB)Qw%vV~UwGVt*UK%HHufZKy^_%bfExV}z5E2+#)lGt*Vj#HW(2eTtfDW$&yz@4cW
zP{8e8i%~}?dsVFnYa-xsE)jwvDvrs~3`I9b26;87xWp2HaH1lRd@f0HUTMMt0ob~?
z`#U(Gya2uf@ii{mg0vOP!y~8GaiT_$FaD%+kC@DhB*|Qi|0ws_2)?J69|NX^7&_au
z^1QEJvCnDZ4zq(tZ~YN>1f@nC4c2M-M2Ri{Vd6aLMnFHS3#1umc^xJ+oDBTrwV3$t
zwZs){YvjA<%RwKGf;C;h0au-Px2k?*=%)GefQJX!K0NJW2;6t)UzwLMiD+eew8g8m
z(8^SM_@we9x0p{93+$1{D=z#uZ#D{qIdN~BqY@BW$q(K62VrbT@?=QFV{hbzPQ<0_
z$>3-&MYinu8)jkBu~)X!zbL)WM3I?hWOgv^Ej9=w^m`W=YWL#5XU5tv*OHM!wy0+@
zEz60$0R#Rh2l#6d9i`MSzc7wy9@WX;6b>|&!`4uLh^36!9D4fVV$_8ZM4nK@r9Vao
zmakr8@Ot5m-!;EBb>D^o3I$Rl!geF(7oDrLqiEC2=BjZTF8KW)&*M)HO+U*=u9$z!
zqpqN8639KS!Vxe3M4zqY{h;e8!AesorM_G|d~?LZ$}F3&-n>*j95!0fM@TwAT|dlX
zAH<FU>Tx9MSdp~D4j<f0NcqcnW=8=Xcb4VQJuY!A-C&>52la&Dv$&4dFS7S=sCJvh
zyI4{<F>(xQ?5~n8iRHh-sga$1U~9dv#2kRf8e|D3?Q5Y7TRP{>=uF698tw7Ll=(|)
zZ@7?cMPMZg1ko1m_v%U;<-afO+@flWJL%&W8GvCF(5YrDIzNf$Zyf|r{=ozh+6A5J
z0sxvIUQM;zg)e?rfVlHH%m4%|ib;%`&ia=I2ebeAlD+o46R`{4ycp|_>(i-YMawgA
zmGuHbbT%SkopdnR2e`_6>HFjUi(%NKX*SWWB-9;l|NHoDkXFq8t7kiXO>5krBp6oR
z;4{y41gWr6d*E*ql+Jptf+YhFNo385qxnwPv&(Y%!EFlsYHn?!BbZVz6R1oFODd_-
z%9(6^)b9e+lgyI!*cYFEROPUX^1u_$Kkf~u4Cr7xIEdt5lX=dX3}$LsG7hn<at0p7
zN&2SgdGtXYQ)rT3p9o2h^BCl{#3I{m;CiYvh_gJ?nh$afXy~Rwvao}L?EN03q3i1{
zs%UC88jU+1biD|%4;{q8$lP0eYiLk*Z-1<w5&M*`h!I)B4Ty>)CFU5l0&5d;Mv^o^
zwp}vWMTvjE=K|_^%qFr&j+KmNsQm?awYHIzyMV$d^2Ih18j}+!(DU-Lbm*$GOjj**
zi^Qqk>ZlpZyrhx85L+zTqt}r?zWrKZEh)FhC|QracEBiR!f1N+Tz#t16H*))K4hox
zns=fIYES0b0&HfIc+_B){<TyX!!gI@M@pAFL?2~!pqm0-&pR2m9)Z(lz$l-$=cz_{
zRlMbh*hslI-`0#I%Z$S{8A?x&j0s7@mXU8CnX+~F7?OKOo52PNNl!k@@oZBDsHm~Y
z-G^~{h9D_2+st6N^;j2!h^eNYB!DaXE=7D^CI+d=x&JC>w{FgPND5G+TxQH&rk9nU
zO~fS45)grIrV1D^JE_$iZ{BF%nX$_~T$D5;3OW96Mi4Ri+#&jv8tX`U))Gb#n;4r8
zOT`<peqW(&h?Z&FTjbZ7Nf6C^Cx(PMdtAE+#{t!QXMe?=tZe}kBzdf-xam(QdL?<(
zJktUn%zk&k^w8${6?&g>ei<W;YB~>|I+|b`dsw(I049+i)+yJ6-VFRn2{TEILqb<p
z^*(frkIW}77GJn`3P`l0k148IJ;px&R%P5tvsyPo@GPnUreC96ARnc*)x@p0>ddQV
z*hIyq8qc;k9$RzUD$l|A3+R*5)yV9%6bpEgKuI#)n3+011<B{iOlDT&gEgro@`YQ=
zxez`~Tin~X-il0AwY7Sx!N5bbZt_VQ#4w>{D1!l-MZr>{5)|kl%k!k^ffUQp0A~4F
zjRv3bfyxFS(4+;#ww_#3r$$DQ0Giltr4^F0FQ+*P*_nxC0>EuOZB-A(H+<50=#@p+
zk&NxEyYmenmJ&{oY=>JK?Q1Nb0O^bKla*GSD($nMe60rWX6$akxJMWeAuNqk9NIdW
zv2~g7)7P0zk+VNCZFx_aJ?A+Ye$Uzc&6RtCL`)(xqUP*gG#-&=nXp~A)8-1TST}=N
zCF!$JUc}kCQmvR>(dwxsp5k%BlF;A9g&hIA!JS#`wUsH`;upBwvdllI?Tg!;mc6&t
zvY+d_8XB14_fb-<ob3-SLnW7W2mQfu5H4l(-f`P5B7BDYV^+`BK}-FE{YFx7?$rva
zjlPcIYW}>5zAg^K$=9A0$CY(MF;xS?QN=RbH0xOFP;*N{F-iyU-~)?`bzZn{QrnAy
zb{F}(yuioU$JCJmTPGe@_POWJ^4!()vJsE0w-dee;q7q+EysPAlqleRdDK>Z2@?<Q
zG=#?`i6=X=CBP3{WCI=4Us_+}&J~BXMla<VFVY0xjQm)7(EI42o72-1(=c9_CuZkk
ztx6ZB7H`StO7FMd3*nm1&9&%};_2dAs&lc6%6vYS*Nb<W8Z*!d$m>qy{ndTpV=m*e
zZOW>ri&L5ND~1PeH!7dnx=^mThRZLGg)bFRY^t|;Y=O%pU&odZm%QFK*Qz3obyvv8
zh2Pbm^mQ)vkgLX`peJLEFWcjvT2Z<jR6$<~Pc{UMIGPyCibfq8dP3rL0Ggvo4bVNs
z%mR9<y0jcc=$~LeeAA%ipoq2&9@qgt`H!y`NURgrYdN6%?F;mB2(Us6J}nl>pB~zH
z(~6jdihBseIUT|NsCf5=PuO#-<8o#Vyh4(I((ERoQZ@2warwuCR8d)>`Ve<<*;VPe
z)r*?$4LZUH*oWlo)vXX=Bt8?CzB;j#dcjVZKTw!Q?mFM{s(Q`!@-OZUzGY{R5<)5z
zU_~hy0OZPi%73^vF|x*(%!lV*pKn+*h*-~mwq}^OZd|i&GPhvVxo$eQZno+1sc+pJ
zx?#z^VfC-M(HCoNuwi4jVXJ-V${f}%e#1U*!(pz>LWKp7!>aqO+#CT28VKk-5_VQ0
zY4wR*;$v~^6jA*jmd?Vj3HJ@xOV}7Ox?!YrH;ALVJA}~<BSb*NZM1ZUh$AE<BqT)C
zjRt8EDHV{A5Rp*)8XSJ-oIm3Iyzle8_kCThRoW8`W@}*2x^4eTZ;^dmpc;^IOi1%6
z(}|xii;9Ntk|gIUrU`BErR!a{t-cm2Jk+(|>o(%*OeORy864hS;p&+Z*u4|D(n2Xy
zOe-_yz3#_!>^I3K>kbk=Wf$htR6W%oFc<Hne)JTP!?QKip-j`F7pZS?P{veqgi+9Z
z-{QD)zjhggXT<=M-4=o-gnep3ITV!H_5snh6qLw4A7Vg`4+WDy-e@ymTnx;N#B+LV
zSzhcBQ}9)^sic+qg#YT>#k&01WK}Q$X?218#s0FgI5ndBFZ#yp1lhSXO-5BwgYDFk
zf>f3^VTbhw&M1HWLI2<{fxeCh@-m`@o+*982bPY&ZKmcHUBEvs#@7_VMS;oAFB(g%
zcN#A-Uv9PTk8}q*gi<n+0>QI;5^ZA5D-uu2#YlLGXT67-P0f!9EsrB4*1iOj86?SC
zfcAXq*@@IS3dw=ZL+a4IrwIpPU%)Z_^>3ouIhFL<MOuzG%O^X&PX0LTiVH#0NXo8@
z&x6FvvXeWFC13Gq@4JCjqEo2W@5`b06=#oP){lJrCDC^!-)bgOmbNgt>I6)*d^?1k
z*#}n)WV|sB9_<cOPYDL+9tz1zpUpF$ceKS|g(%sco)D7Q4^~f&pZ?ls(jAie+9AtT
z;3wiz%p<FI?|X=)t<q`?HczCTT}Ac^Cf${VXBl*4E%1}~G#5)V;KaM?CWn6TKR&)(
zS^Xfgz>k0nW>5-=%Lp^}Ut5*gFAsm%At?T$eKXP4+Au;T4d_=qntAY$VGq)6Nf4p@
zLT`{J(+QT7??jq(+BnL;@t42&nk4_CUHWMe;O8+1Z^!TG$oc;LJ}hwJp)NDJi`KG>
zaD~a`?5bZ3i*<Q^&xK&~nb8ic%HHxUEVA2_k+q6JC1gh>=U~+(BkO1SlPGT`y?aVe
zf_rXfP!@Tq-eF`7HBtDGr81MNE&RHk0i6;nQ@sDd+)C}t-nrK})$wiyFm~>Au(7vN
zB{?ed3~N$vcsg){Q#I82MCRF%{A?b5%$V@aM7b}e%%e3qTpDckAj?bTlEmlim$}dD
ziK<L0JyGh(6|2wXkDqTBHe-2zKF}!$SLf2~xmB2O8n-K%{)$1llU__gef#6f2WUbu
z>cy;hUczNF|MxNbtCRv*-QOL&sh+5R_Oc~<miMW7@*{jJB8J86V1e@`zv%TywU;w0
z+G%kMcR>66j-Ct+RB#l&B=uK;wRMtvepb)@RmNXygZGEuKK>YqSns@;$S~tK$hiHn
zZ`&o>j`bTSBc6Kcn&W$}PwYF{8R?~|v5K$*{xqrkyj*jLgT2$@{Z);7Q=01Qn%{I1
zk8OT>w`qPm%ow#%$6Zrh?flu-qm%xs{lSCNSIKu+3SZlhv?y#p8*pcWB_eY!xybyJ
zgu8;t2t|6TieME|RI4T66FeS_A}#EbAN-vXZ4L`LHhAoSt_A`x!qY|bXoM~QI#&E*
zd)#_0b3hz6@T+^^XH>cbb=;>HH}tqCZh!~(5>mVk5Oisjd_H&7#{do-91%`;-@O;I
zHv7lwnBXU(Q)cF_7`&ili&vhcQmxhbsadYL03taIyh+u5VQ^WMahgA{DcC+lM~j($
zWDuaxWl0=g7UT&$b1)E$`zt1d0!$%Os=qsOP33l4&dIy5(RZ4+Lv&Jnsl4ikB3}9u
z4-m0Tt-h^N|Iy^U*=^0&*wLsqFD|P!B*>)-%6b7=J<^hry*s>#BRjsA&y>7kV?7rv
z?G~(y&-@pnY-7?IF6{4jV?CeeYbB*9!<0=pDFq^eX6HbWo9OP<-<*GpelsiCv;1L=
zzX%3Ix+>^cFUWqD84f_sZz3y0=FsX>Q6ZMG0c8QCn5|xQ3-_>lIgg&cp853cl1_$5
z!b1=o8fh|B1IZM@>oG7{ep;}w^O#c=h!(*_rxv&NL&~I_9Zs#__`Nz23TJTJvMRAM
z=eN-(8j5NUC(`ptxlYciKAq(ij@BQ^ui1hXX(&AhCifK78WoB;_4P9dWFwi9J>`-T
zJ@k{*r3-p-9*<%7>9wq?%AOn6(la>mO|7d92IXb(+~865XrH|V3m82wV&<R>73(qN
zh;r=o%%^ub7y0DE*HB4dXFm)%()i*%Q6%|LK^`f&k`Yxs?=u@c1a%2Glo~JU<oMv0
zeU}%PMAdNgeq$(u^G3GD^ONn#2kQ4iXRCD6nIuQZu==D76(MbA+3*n(j4j`ze@LpJ
z9bcz%k3&_qS|^o!_TQ|+0AZN_AW}C*ddQZ^{N@I?-bR*#8_)7=Y6|jZ|Hw)>=hRh=
z-Q&3z03?fx&JYU|@zuR;*xaT~Ps;(=pkJAqONH=%+2$3kVe@eJ+-KkL;CgChqnrHV
z!q6i0{EWP=p*v4lr{AgCp)8mc$tSoW9BqccndD=wBIIQ-9FJsSVmBx>FfE(DzszjN
z9~Ia-?)xD072K~PV%n)9>aCXT2faA%?<;o=ZW$DSWoiet)AjqKKURh{j=H5Bu>;7|
znC@W#=}@Rmakg2xidT&)J=+)J9d>6(wH~Cvi5_u94VQ4K?LvT1FZqJFx~k_4piI7j
zI7DOg@qpE{tu#m)aZ@DoW@~gJzt;fE1}KJ0Nxkr9s?hI^EInip3G`M<2=TNBP`1%*
zlZLhB<3fc8aZx=Zib#GN`K@0SpB>>Gct5_aQQ7uro4Mz)@qPUl`o}I`Sz1*&t6h?9
z#Zt+K<?6BzS==+jM>xVJ!$)DuvAep=d+e!HGMCsk9GIPicE5c!P2!-EL)ZcaZjp7g
zlKennDTFhZ513e~*$1GOzB0B_31ZN6)YrVQ1F{mqUvQIB8i-WTb)z;kr9_k%=8i=>
zuyax&F(PuhxW6!qN*t)}(xgw6No;-59R7(uX0TnEK_r(WHRo<2N=xZr;*GTucbkF{
zL=!xPVv)k4v?!z@Z}zOBRzq;(B2ANW43^mNq(v$0*YjyTl_}uDsLDTim=<RhdectE
z4f0yZ(Ngh4LB2Zd`CU$WAhnq3IteO$Y%rcBIu?o_FGzvEJnLD??3}JsZ2ZOtbFIWf
zP!|I$>kMP2-+~Hga~Ll+3&N6iMK7PO$x#<LB&aU31~k!L9^RoQ0jRJzhy)Q>!zibb
zb*OeWVF~lZq?aV8`AD|uBG{5}M~>Q1`WUk8>?sBF0)>ta_&&%UMW9Q=K%x>Ixg-E!
z6CwblZ-}G#7QyJOu^yySK@K*Kfl@gm6P34!lsOpSqe&En0OlRi|2E70ajm4-4BpEI
z$7Xg{RLrLJM}~UERPBX2cYbfm6l0XS&=ZV(gg9Xl17Lt?$Ph4xi`4fclDH?Z#+_AG
z)ZerR`3vb8$2h#Y<SexuY!6_hRc5ZXGzjHv3%BYsPiA!hxgT=EQo6P-OqoYEVasD*
zv(Z(sw1G2A5TU~8%W4J-RM{Ofs(b@1TFhbDxMDIdn9uk##bXspXMU|x1Jn*MCw<ae
zEV67eigD~{i;i-LfoCHo5yV4$jc>pi@WEy@aAj4LLnkZ<wq33U_+*gp+pM=<@6|Re
z$L+@WDk;(cDaSzbL<L+Wbg*1u1DOdYy{+h?hJko286r|JRn$KInx9A(0vLH(dOb6}
z-E~}y6tRlyVUgN5D|1x^RMmNdzv1U&3zb90+SA|wd3UO}r4vzg3XezS>ur$hsB6GU
zYsC6y?b~veS(<CJbR#@CLamrx<JW#R>yo~OI;vYwY+Ih#J-z?V_hX?N1il~M=S86P
zCV?el@V1xlx861Tnu4SN<oA##i@g)KTBBN;ZhjM6Xwk1lai!%(xOx-1qShY<?~A)h
z7Xy$DM2MGavllO7dCWMvqwsI4+jraL$-wB&im%OnHxMhc+PfWe^eq7v87m7<qPv<y
zzS<h8)4!jH?ta$N5)ziNy0!@J?)%yjb`P<(PIbFiaa%GxCu8ku3Hy99L`p03fD4g{
zBO2C9p_ya|huOqNmNX&C|I(WFwCi6Ol3Jr@sJM|NF+Ny>*J$a^+Qr1}S7$<~FoRqn
z!JT}SkOig~L^Y0~5Ep94wRF#9eTw4xoa)nGVK~ak*Qy#g$dMTg@h1+?*noL~%_YI5
zI4&u>yHUlAtynHKEP<(s?InYc2jzrp4rMRfNPXWMor8?eTn90uw~R3XK8Z=eZ1u0N
z(yRRR{B1VuvGnk(ra5cAXQ5QAEVMWgtRNzVFi3;Q%K%~a=t_cJ?r>6XO<QZfQXG*8
z1%=9&{U(CwFRI(0;W{fk(0*6T-Ux-A_D7f0U(i1jd(fJM+>Fz$*ZLPUu*C_&>np(S
z5&t+VpB8UNW-fwv!XxaMj{FJ^*03I!e^N6{CBrSt$A>a|cHyRG|MxAl9|v7ze%2C}
zb#R06zt^eLNb{3SM!PN>AU*L&@!=nTcMC1xWZk=`0YX<HdLVGP@+=EUIt;&5;!wo!
z%Pj^{3Pa-WP#s!RS?G|0Jv?44bMJft3Fgk|_cg5;!*@ILj&UP_eT=`q9xG_RM38b7
zT+jTQu8RSVH36KoFu&Y^HxhfUCh?n0w~tyA|G*wh(o-mCwSi+UK+{)Z>H`e0G~Yj+
zt&o&%@ZEY)B2PI>C-<`<*C2JBY>Jo-JB{)rCxJJ2?5*D8?NBQ~37`MT^AGwO{Gyp6
zCnUV={^Q-Rt^DG}F_Ay>4~Su?UqboQg7ibVbh3hWkeIRWcONm(!u+);7Jiyd=O**W
zI)0PsAACDFRrQ`?Or4|9^58xq;W(-O>oCp3?=RSvK@vE!+5hueT>=@|I_XVGj!-lJ
zn*EbNCqV3A^{&ejNF(!eBk`K)=HGXN{+Kl@+&qj(Y4d62-?w{OJ!YYq?q_4qVCp_u
ztB!_B8Tw~<7SPr^2+(~yN`yID*RGygV8mpajFPb4;M{{CyP^1Y<xjsbvugVS2~)gG
zs5nX#Af;Lkkf)NnsdgWY#C{s4^gK3?t=Y&HSV~I|XI6T*u5CC=S(GHna4wQuk3)>%
zp4^J5{0X`A1SA98KUhhUu@+u(;M7D>10)bDr0ke`_k2i%!4NMD0=FNtpP>UrPH6vH
z!}gE_nKr|xvf?%ae9|}rdyvC~AK(ciweSvMEMM6caOoysC^eD<vFVT^W1#jYN%xT;
zj})3qhFjN;uPoHusr2Ag%X>W-5Y2)>Lkh)%JOn$*r`p$NlHpdL3|<hB8txyUNFg5L
zD9yfvi)~1~!{$Wim`p#0dXUG$f5K`qYWN5Mg$O|qIM8B=q%0+t;0WPgH-lkmL#%wH
z4AU+=xHFd0FxH?u^PuK%{@gZhA_?N-A*809v>GA64*}6ZHBgHJwYB0O-m3o9hwcHO
zVn_snz$lr^;%<nLAf`ZA#d%1m&sc;D7Q~Lj$gZcbp!we!@^fuw&R&4#FDMX0sh?ok
z8x8ge{-X4yI<_)tCOy!CTx!o;iPayM6nV20^?)lF9L?QamSq`2#4KUI%H{;a8YGhw
zC$BG$<9m?HQi*1RR;v~26YPX#9F)ONi8uaBrTE%QZMsQaR|_jy;;>T@|KbSwgrp7B
zp?zWLkJm{_%tZ{YBS=`>ouBz5vjI^4Y~}O<)kf2;7=JVq!<aoowH5PYJacvm>)9qj
zGl2Da9&WKX{a<fX6j{_D9TGpsxdUQjgkdKrrN%mP=$vkeowG5jnzJ;*ZM8TY@}#+9
zVcI8oQ=U@EKMcA&(u4}cy4vz1aqN|Rx69{BepeOXMN1Rm=>9Gcy9lWMOTmK+Zc6Rs
zrWzC=HJFYc&*Mn=0b`;7T=Jf1`F0uPWZ;BTBKSoa`0FpU6OQ=}kOE`YEQ%*(>endM
z37PLtOXu6JbN&)cMG5Ppg|F;8zs>=!^Fk@JWr8G)Fidgyda*u#*$b?oKM53LSo+rJ
z;k#d4{pV=Bqkl%M=vP1K2gQ^Pa>5eI`Pc0rM(nspAknFD!k?OS+5(A?GqDFd*Zh%^
z(lU}etjzD_a4ii*v7aT4tpZm{d>Fg{pHyXf_5>04Wv*UR7xXeK+L?*R^449qtdjs=
z2oiCrjLJ&Vl|bpRHh3Ak_%Cmw4c2S1v07ZMw7<((s_l;WI!I>Zp){ksyp6nF?)3os
z<WL(GX{2&ax9ZU8rAmi@!k&?Wexiag*gerwJvmaHVOB*?O<gPMMscF*t9q7Oj5n^y
z->8a&)CjQGC91g>h&F##)8$aN3j|m^QR(#p^bM-BtgCmb^6%rX2PR5CE_}egsrmVB
z!qIJmUB>D#nX1TKfT_amu;UxUk^ci(_#fY(IM&$py53{iI0vqCMys94H0m8U{;i3W
zFn;owBYR{xtpo>BeO9Wi0A^Ky>Mdw3;37;Gbj!ecSV2PpTSmh`ZIN1S38sRtzJ~VR
z`Y(s<Un@jC=P-C7sAUpk;7>HTe&#MCsPjO<@T;X^SGZxiLY`r%&k&O_r$Q6Qb7H->
z31^Z?>jEw0)@8$Aa%BO1t1`b)DcWLW!Khq;?$;C0BSEV*M>^vrRflK(b%AY^O}JS*
zp);KMqJq^C!ELjfZnYL_W{(tCq-5YUx<c%NldUL{EhV<wp6#}W%UA=yOG%<TPM9d^
z5LP03831N0QO=m-Eo-HWHr1w1L_^z;T>BZaP4rJ?79CstA{RO&_=zrB{R|}9*J*+1
z5?|>&Kkl3X+I#BRXNz15-nN$qIP?wMOCviY^I_t%WmXy80S^jnOz2XWui=Co#Sgfy
zG(Ct^7ph!$;DTb{o2&5K!{CD+ym)V-NpBgnH#ws>y{R|jfrBQCOD5uZp7`?ub#$u9
z^OB6q=VeXL$2^`tIC%aD(O30=?%_f0%CHBumfL7yAEk%e@~!TfxxV@Xu6-Y_dAm+3
z`WI{4H|ZT9-9dDpd|aN1_YG#a&YlBM0Nyq%f=(YpJ%<@R>xYs1p{v4g)t`*Chy5uE
z9`ksKMZV<oY=2|iwQ&Fy>-L1y0z`IzJ)Fp87YKW|$JZ?nFO&Xr7pIYPj!GO<V*Qye
z8`8?&+kH=#R>p^FBiF^`<vD=#YyFjbp8vR303_b~xB(N<#J|<V61?aublf-HPI@d*
zBPbJe_M7hLjgK3J@8^Z+?}4u+`<<lrb@~IkOWBZlBhHk6y5VaI{pxfylSsNuE|tkk
z?`&W4`W^aM_G?O$k<S+EBvB73^IrBU;}ypTq=JVFhFwOlQLeKTFAmlDsEER_p?h^q
z%R9mBo;@&R$Xop|cJbi9Tl(}e*wC}#5VcShkC9+XpqOi@2`ucU2J|+y@m;Q9e`<?+
zhr=gtZn#z`dT5ML9f#bKu=;Puq5EWHabX0L8N6?wQl<e7${g_$8y}1aiH#@M&xefH
zg^G!c>Q9FJP{lnVjGgPhN$v-D#E(NeN3m;lEgI0Ac&2)?=wHs!c3p_8-`IuzxIW3)
z<1CCjet3?{p}z<Q_K$L;jFz+3d!HF~tzK7*6=CJTX>%KX-W&eY1E`c5xo~h9j=B~h
zSPdw6CcmZuUOoif*|e9w9b!yuZis=XN8XZmFjyOiHI(5o9LNQBSjpe!1wOp>I5O&7
zLlmSlv%L1=Q-6dWYWk4K%6wDM&kr8pFrK;i?5M&(Xm?7qWX?H|Rbk^+F=lR$YaW#w
z8Ok)rVm4u?dyADiir!Z8?{)-{gZ-p}@&;>EhV5;pcT}L4xsCo5ynb*#%2$@x!PeKI
ze=1maKr^~6bJjhKfB5t@2$L5n^NPaJ6ag*1snMAwv_S^qp+8&aCEmyQxVE4`JGGzz
zgZN0(yKy(;E0sY+Kh?6ic=_XacZs{Xy_7BQV+D3~ChH&*>ag5vv4wt@vBU|G7{>c%
zfmrNyw!xq8iy2DF%9ir~1HHIL5xSnJZgV$r4zRRaX1E~zQf~fU$t->EQs(=mhhBG|
zn&~G@y?+W@!$~exUwbo6d6)ci`Oa7Uy`BVfo7D{Bonjj7$NJcc5}jq_Qk8NX!agp;
z`@{OrxE#ql`5#mVzZUvit~_^G?!V1gOBr97yZqn-uuN;Y;lrI9j-bD(Ak4zb`ySDz
zn+tDm#y*Pvv@nGd!LLZmz{O=gHRvqudM%CLg&q+VC2CXFQYkjFKA6fSJbeQAFFiqo
zm~dD^`;GOUzs$WU&{X8t&8!1274nRLrIFIugL`}TW4%5<nJ?is)Np@uDX8s8Xbvaj
z<`P1aK1X2i`Z)Ylq(yt%=V%CrO$2qGwyab`4(v+`=p&Co8U?5(5eC}|Cv6{i5aa>w
z`i4{wq7#j#C9Sd(742Dg9ZigAOO$CjY{s&S#<~B_Zy~$z5l48`g)YB}1wM33?4kr4
zy8Gu#<v&>BrCg#xH-&{c>K#L(VM0p47>(P}jK%Fe)6m>1H?O1I?N@s#f4%mq-3-Ea
zY$(v6JN#|RACoEo$=P>daYwOx*kq^P<l5O}iGQ1e2@X^T00T<#sx(Lq+bSRb{r;s!
zY}<V$P&$5zrcedS6Kf8Q07bM@kZKPNNQZh@P~9(|jC^I3?&Z;<)ee|5gD+a(F$`3v
zO6fxjU8EIn6Vcn4o=g~){PPh$8+!BYE7**bVc*!U9|7`#M<tEz>)1$|^XhSdV>%D~
zm_p`=`{awJ14?2x-Rd|!pNdoC{r5#YVB$-xLe;nKuM5(>$Nc2da#4o;*0Mj}ze?T_
zkR&1$B%z-NJD5B(cAvn+aL2Pp8Fq%eA<CI{riW%0b~Y~nAAlSO*yfe^dao^7Ch7+{
zy>UNESuPxtLCyU8OO3SC%FuMa);&-(W%1>qL&V!72BSRp1OeDGygeTBBfGYZ|L2a`
zd6M@zB>mhMsjqzUb483sBmX#4|HmPW;^+eIe1icLaB0p~CV>ePeHU?2Q~A;L#*eIH
z*olg{@5}`;2hsTPr-9XuT37asSV+svZiw!GI1T0aHc`9`b<U%_pym3Ne~Ej!G<?f6
zf}*r3vwr3|e=NTBVsk-@9z}PxWY<pqBz&hGm<x4JuPkL}HZ`i=eHNviYpIZP1-<`k
za11KL0A*#&rPx~Z`FK9g6_v{r=gl47qh~XH^z)cbY2_Xy8_13(%CI>$jMDG1NeRin
ziEz{vPJPVAq#kVCF~6r15R=y?AED$z@X+c^s%nqBCBZN*Zu_#DCdAeTDjwQ;Bo)>$
zHS9A2o(K}lly2ICOAf$IXfnKK=wyO~kY<ecZ7w6AdTm}lzItOAZwe}po!qF#uU}c_
zrZ9C$Aru}Ww(}VApdo0T7u;tkCLnj3c827Ug7_Waau_@wEaD|RPlB!he0?9@^_Aq%
zbW5mw_3<Ci4flJGUVpme#h~$EIEz9I(qrJR5>_GV0!jIZ{+n?x&Oo$4Pm|kML&g`#
z_{gNFIHt5618>pSG0*%mOa9!?&_OJXX|G)p$;w}mu*B28F_e&S^bVBOg_ucpU1Wms
zP%oBT2Hmv#B}~QzI>J`8R?AT%HehDy6j$wNuhAUenWM@4fhTzA#`@HdXXMzBgARsk
z^9py*$@lpcnb5BMfe$R{4r<-};kF=gsa>^{+~Em*N{$L2X=yHW^wsnt-5;Jv+H;(x
zIDYc#PJ!Xvgh6`j2q=Gxfm+_YHZzZ}(oN*<Qy=kZ8b()<$Qca`;`3lGC9*-s-;3O?
z{dM*E?Vta+<72*m9xqX*tK`#7qmWQ=$p`3*fj>vkB~C<Zy8IsArgLh$ENv64YOXD?
z_Vk9q7CQWd^SN*v4=Or{VJs4DsvczG@#it}!pH`pM27`%gdQ%QprK+7=9jIc3pdJY
z0y}Vov(TMCfZU+6aRxp3w*_j0w-aaQnuIiELer2c@^xA~e3{w`;noM?s=rs-ER24p
zrOCb4VVVqu^V0xic*YfU+s7YY4)t9{NuDX72TUia=EdoM1QEcOj$Ci`k-rTkr-CYN
zr^s5WTe6BOA#aRH60TpKCbEv{61hZDy{R}uWcGFpZxsDWfi_K2%MTWcU8j3zYj?Bg
zo&C+b%!`f)V~gvl)Rren)TlNzRFK9JNI}bjMS<Botx2@mYHeQ9m}H^FB_S2-s%%62
zrnn=uIZ_S;SAv;<NS<d@TF)^tT2Lli6c8Ni8^M=IDdEqT(#ljcwCs^FMVrhX&sDt|
zrUiSS_lc|YJ@hw|r7i)ghT-cHFlk#~PslM_H1lnj37{CNc3MhK;Z2!CM>yn{dLks;
z_}%@bi_uP5ss6F<0hfM6mL1ksvump%PPF!){72(AlBop&Rmoa4vC1D~52oIjLAlmN
z<^r1Dm6iPcuLZDATU+P+KVU=8hewZE*m=A?rX2|{K@_YqimvNu0(DxqHJhLBdY_W!
zR^4i-5isTd=c`w!(a$%bS}g3IF1|Pix40LceJAxbGHe@vH+8`&mC2CCq^{E;0yC4>
z_qhFACu3*5OZ2D}|Jowqn}k@_DZ0r8pTFD}>&d*87n@nBMT^b?<xio}_Q#QvNKZ#f
zw}lm_Q42_IeS*agmNLE+`mtwd?t6TgU;lkfVJn#_Vsg|<qSIxoa_1{k=>Em-j6FPc
z>VDLJ=kSs|^K_mv88Ye3Ez(v3<N?Uun}Uk4kGYHgSx7qgHF4v0g8`TkMm{fUzUxuG
ze)>oGI>7l`-12Ytb0P-+EjcWHTZjCszhmIKDvnv%1&uI8(kW`7?)^4_gTh$wtV=V=
z2RM(#;x-vJ5g<_47EeEX^6FyhX@Y2bm4-yA_F0$CT`%^fpSDQ25)C=s<BL1<NN={B
zHW~QWc@)kfqP44)lSo$qR7+qR>fH$A){dv6XO1cRAc>EM*KQz@l&=5`NIfg>QKlS6
zE;GJ*29>DKw0F|RzC9#))q-rET1IKuR5BDb+HQ+EH9pyT7sx_~V&u{hrK4P6$ifgl
zU*53Aymle`27JSk8iUi{$Zmjvbfj%iX4$0j5}1>*mr_3O7tXJGqxfP>n3suY!eiw5
zz=<e)-B8w4Au6)i@{6zr5`c>Gttz>~OvuD~PZAU`_;`Q6>&K#Sr~S9(@oauRNluLs
z43VZ2la$&|Ju>5!zCU{V%n#h^l#|-cP{aQ2i@xg0oZTzy>pY5R&{`6d32Vgg0x8Pk
z77ki&w$%`0rZf8FjVl;<hLXGfMjg9i^XMN_gBJ6?B_(M7JS|FC_zRjsgG6ABk!RF6
zZ-lr4Kxsw=4ODXhG5J^PUroiP-%I<BwH)@HmCP*xb_dQ*J`1U&LNVbOeaiXEbP8Ig
zx_USOPi2e*cGGUPHr_vQJ^0Vz#U?WqUh&YAebsSPv%5XCi`iS$#p#V3OJ~`;LtoWZ
zCojWpzDnk={zfj&Z!1~48tuN`K)>jJ_ll*vz36LjfQ!p2$J4H!cV9zeS6x2+W9jXg
z3c;qkxPIngeLij{rJrh|fmmYfU||DBjTYeV)9L~RW{+UR|6C=o7(dC1qwAy>u17dx
zUA&02{@m)r9|K-5cZ$Bn8$DR1tpL0hzWOeqx>FgR^s~dy^_@`PPu$-VGAXAp>3<pT
zgd%HWb#dVJ#JNv})@+EM!{1V>;xwRZ@4*XG+JtXfo77>YgJ&|~nvS@oODhZ;f{y4;
z$$`mXzFj};*h_*ZY?{Gm^M<9&!I^t5-U2#GJ;G_g1gm4vJ*QF)S{2|K1HnCu%F)iB
zod8DqS4-Yjl>@Jx6v}ID-O&0qJc8CjaIEdn4o*xs#XLe79)nn13+Y^=Z(cvE5b<k!
zJ|z?*pF?WS;d(zj39`k*@^>6uSXR_ic|dSq3<%l0F5`qopHfJ|jpRk=3|P(^=E}W?
z*)hueXmM&lg|S2p6=#?;5RTsTQJGtrIc0k{Klvx{won|jTZyO1fDGajAwoTpMw^3f
z()sRkm=9!+c0SGm&@HHNJbKk8=zE(2g7M{9pvb9B*Y&AwzN~p0KimCD+br<*>)-Wt
zN{yR80sv6m^}Zj%Y%GVJfUuA1h3Bts>(LVdi8W+R7*^r6kPMJd#B~UU3V=~-nn2L#
zA?Ep*ypd<e+~eDy=w)`)s&GCEL4N#unfPZkZ6`7%9qW|Rr^TIKCr%>NpZxGyV3O@S
ze+e|GzPxbcZ%e>s%;_d@RF!<qEnN3kBMtR-;+t<;=S;umdF)3ATqh;D4T3nGmdj+O
z+AZ<ac<&9JD^|uX5SwsqL7eAj9MdcEpuZu2BE;|~1JCiT{*=2r@0Zm3;qEbZ6P#3x
z<aF_^QW2<ST%1JODuQdB#CmL|rdomDk{*nS7D-9F6xp2kfyw1Ws4R1%uyRSS?~r>@
zD3;K|xJ?J04rp$rAY<zvH7UAeO8?4J$#@U=ardKxLIYryv-+Fm>0w~Xt4VY%&%)^l
zA|Im<%<37oIc1d-8A81@aRj8)QG!{9tEpE%{iTj`hfcWgoO<2=J2ip7`;`t4ZXHeD
zlt?@GS8(Skr~C5*2-pTC0!Hx07V|uG@k(JQwP6u|k_4#zDa<MV5&<hzvyX7n!fjfR
zg$)RUs4+hZD7ik{hhKF@fk!;P8DhDajyc(6PI%gW_e~#%A}KB4-)G05I6RxS&jeT9
z4O`qP7aHoiUe<iIUcdl_ac_%BkpGN<mnZ-fLvphR!1U^FaG^j$LjY3{v~Cj8VyX6H
zY~2(8dK35stqnQE-E+giZ+?O59)ido;(zq0op98n{1nA)@JCo!wdGa=mW~D|ppOEj
zZ9}&{XX>LUf@js^Joig;wlh86_s$}UWN2@qBRRg)OA8>9E$RNuCM%4x8e<^$iFa%P
z%^XA;bS-Tv!1BLb_(QCg!go4(U0S7Z+Hig*b+qOpmSP3_X+--jOG-jKmPg_EGWaX2
zH9eH6nH{<hV8+mM1At=&0co=WnMk-nIHMw^AWMUl=NxNr7W*6;S>Hxw1>($<ymUqb
zU57ZV0GwUlsnMH26~OCDkRikx58bZf`6e6n3eWj;16GjB!b)WNE<wr5!0#h8e%}|G
zN70;yS5^q+;`fj;^cMcJrQPs7YF$v^MkpM%mH4U(K5=!Z&>p^Mj&`_kCr;qckg6>W
z&t#srZ3M-{jsU&ha&Zl)XL5!g(6ppWgKAet;+BN17?#XIhG?<+{Kcchb4zPQu{5b%
z28xDE=E5n>gb2}T)GrJgB8QtV%wuUCwurKhKz9fZcc?7X3;zmb3$GSb%@zUs&!w!_
z8LsD6bnN#xOU%egmf^(eI|`R*p&XqKmQ}I^f^SoB0@E0Q;V|J&2E}RAVlnCxJ1<#c
z!Mnq6q4rkwvYf11iGm2fMegxmny*83F~X+0AWt+LB*$YPDJ^DWtRg4B-2qRM;7=`3
zu@M?y<BN*Ry*K8;q)`K%Cdn1ALniirCnYi0(u$jbWb$XO>jFwk=P&;R;52t3=4K4q
zrwI8Z^(KsB-KpsCfFQQ<T6yp>k|4ll3|^iF$t2#8t+^9TgE<yZtHCMlobpR2s=mc2
zI^vX?X=G@9d<QmdXCu+9iTo?4++#N3tu`7ajZj;&b4yUbJ|Fj^`8Qk(zG5CXe!sn;
z$4I3M&=>s*!7yF3BNmK7)gCgcvD$`Xg}}lR6zI+$v+WF@`6wzuoV|6NePsQhEoxJ3
z=;h&O>Hccy8d!Ow%7{+TpnY9+IZ|Y@Q)STBbkvJ-4uJTDJ|#6!O&A+RcS0OV(27Yl
zcVofh#Jm3F>*#^&`_}I%{Een1uBDzO9zreN+g7USJAYI#=kz(eAksLJp>pPYakFeE
zorb>vXc~aH-2}vc)9Tu_!s#fci6=HfWQk!q9cMn8D&fD>%v39d&9ru~e`lGx%r=xF
z)b*b8|DZg^wlY~8wtH28=d_5ER_bY#*|OGM6=nrBRDd~va|m?(^*8GPYpd;re9wB$
zOlI)Rx+dMwb!{RvrSX;oV6__WLIyfXi%1#WQXFA&`)sE^!Ne53OW%O9H)&<PtgAvc
zSA}KrscU_?(v#9pJhqrJOFUzq@XTX5%C&r>_c#K0Wvb_()}o6UaM!HTh}Jo3BU!t*
zn$OiXn{HVATld|67p5OgH+kmHfnj#uU}j^noG|tj=w@a3p?Bz&WjVN3h-a^;dS}YS
zYs|!KXuFceOl4T(QbU5hLQ&h^_uiI}_bE2q!@D<a+{*MalGO@$*QIO&;hxxyYha}5
zvuBxEcgtB1u(NktT@0ZkxLNt#erBrWE+FkFFRLcN0s7(L;3?}05<Ubf_u<S(L8f!-
z3dI8+K0_u!Af+TPcv_9(OCy;R9hK)bu)6OKdwe#^w-iZVEtJ4dqr0^)wR(b+Cq<{T
ztOQ3xZw`jn5V0m09dIPJ9iuz|111dmr~a^>S~Sf00Vo2?S24<If^S(;<*^8cgKGnK
zff2v>gQP{Hlav$7KdV+J;-3tvRS@4cya%K!Kh|W8{Zt(PhLv}7F_%=WIXxi30||NV
z&Bf&9XEARM?RI@7$ooZbaD{bcmZYccZOL9@S+R9jdK=lG`{({svw;~lk>pjj3H)Qv
zFa=hccxHoEYxHid)wGDo{B0%$M+qd!-12jjf30q9(tm>WmeEnkq6PQ1m1WLZ5j=X%
z5Cg|1v;8IWq;K9LVWkhuQR-?wa7{hq#ggkr+9~fEq0O83E^A{ixAD+*R-0$hHZodi
zs}NgVy~)-E+m7}7VaZZM-Zwx(>C14!%u@W@rQ=zLtJ;=t5=CT1ow)sO(2qlRNwUj&
z9s0k;8$<dxmmc$Ir-Gm989L%3olzc}8{u5S5uhdSrGkj9-k|;7z|ft*SuIj`3Qzo~
z>2Ri?$zGkvk{*=7tN3w<xm*tAPR>qU=ut}gp9sP?l_!p>*h2vjY!r($2xl|!;Y#&j
zW48o|L`oTy3dKgstz(eOk)Q%Uie<kPz-<*z!4j(#mFI+)hsB6pEW@>fCyGM;yZ-qj
zDEx@eVqx*kSeP{i6Qk#U__f4fCp}Rh(An?);~q}mdjHFTU(pGCw~N^%;wWz%KaU<-
z4kic-|EntsapY-czok)D^^UDNCo{{Z>{GYD8J}hDi0=J{hO9ZF!@@$I&e+FwgM=>z
zzc%^uCjD}ks&cpZa+v&cwBs<pMREZ;`D<x4*NxJLc8fmzO5ed3t}PWLa!^TafZ~c6
zR7-CD-Kr@%msm;r7tx(wtd+IH^5j#R0SDcf?w9QN89b&u2VivXAFPJ^GtMy%zr$MY
z<DW-O%!}%IkX(N5JiWMS=)`U9zo%6YHFgv@mgH!d*<k#GNCcZ2LRZT1uT~N@79YIy
ztPzJtcPkY{7(!KyE_Prgy(-!!0Z+wWJgwP%>QoE4Y>oS|9?)QMr&YkYtDx!m1z&~h
zyNWG|Y6kvFx2_KzfU0~W>k_Y?Q^jtl!0wrV+5Hfn<CWfP0wO+-A64Ufw>_TEp?a?f
zYkvd^X~mv&OY|@sKOhAhXp>&N{{6z_j_L_tAH65BZM?K{Rh#Rie`DhZiL+l|<DuXL
zn+O%}(rTrf3-WlS>OU8Ti#uK5ie6_I)X0Ro|3vKwt39<V>3|S?vrB`AD0{79;GnZp
zuwp>GpR8OlsCS<PCXip$G?h*?O7v@JUw!wllTQ_gUDk%(HHtL3P)r9J6mNvg&F%cT
zMzXX<Umrx=<{C?M9UHfe6%HE9;TkV+9WQbnxhz>5f5bIWvljBeb)so);wje~p}sL4
z@i#Bl-n{0TyqhsGSTXr#ZF1(S39X?~o6*-V&esw2qVJ8@ris|d8=f!y-5*WVktkt1
zqnTI@f12vx*@{^NcU?pfq>VK%RDq$%g5jSDAKN5ZgMD7S<~`TL3I?-5%gG_H?Ll+Y
z&?}wQD`d0Gt)>I~lP%d1+Q|{ehiz8WuPMHb9C>`0pJel<hWa<Zdr@yNv^sl_dnxr=
z&$P$A!NK<uNt4|IHjgtWIGAa&x#t$BXV)fUHZvdF<E9U(NtBy!MW*IuB-a5}jp=mR
zsIPN}Y*dR9vyiWAze{)m?~W~c&T)kB{5QFHDTec(R$Th|@Kf^LHv)tu`0txN;FVzk
zn`IiW@U{6Yz9rj6QF-#xq2x0ESI!BV@VTrR44OS0^q%7Zn;H+3#y>eU&qgZ^&-(Ra
zq<O$=GxAj7R?qZw+>1|sl{>G!mTvokRLwUsX}5Zfwpf~XWVq3ut;GzjUZb@eJV(0^
z>2|1F`)*5pN&UAoE3&(mbLgw0F)aNh=A&Rv<L;-U14Ww83L$&GReMaB8<<qq_=o$~
zeXk1hNBWcBiq|`36~7q^@k~VarIH8+vG90v-js8|uh64+jchG$#}h|~zNoLH%JwkD
z*&w%*Yp>NqUoE{o{V^f^^JC7>&2K-K_%1G^IO4~+En9N#zSlZ42mN%0ou7oB|M#qr
zI5W>T`#bKx3vGelnlpd>dE+Q7iDNU|(-xMagwtiZ(<r)sz8?SDIDUSc0i1k`YxdMF
z*{t0N9a6~^xsj`^dn{;j47pxr?121M1LXAV_{RImi@mhGac<3ZmfKW@f^P<REBj|i
z3P=)r(Ri*wUv%>O(<PpS;$p}c5$NzAlzm`cK~@xt_SK%DzLoFj*p}SJ<mJRtuy`n|
zP{dCK+gESS=Fgr)2tlTh16G-kJRRMUOg;KymJ-%d^5A3|VPMQO#XUc7sEWRdk3WxX
znUHLfDZndCT%V=Nm{`<Kt;G8~?d@I8nvTN|#`<{^8O~tdAfGu?!zIUMCyvuEo#nF=
zZ(81DXdeU}HqV0IXQm}VZhcM9B`_Hq(IfomA8=Mw3{q!+MolvaRYZaYEz%JOOiV%|
z0#qtgfX!*J>nYPd94CAf!h*8Jb_-*9W36tl)p(ZEyvfw|I-qJc$K!P*v&4dm<p#f&
zLhy5HktjiLinJT{=maiL2Dl)dV2NDF{+Z}PgLS=iOW?WKVzYBk#Mk|E@ufD;(R|6P
z3n*8}qEfd^yLO_89hMwCfE3=&y|b51+(K=+&A}LdoHasqgz{kDQ!r&g#3LTIQYOcU
zK6oMhaOt-vYYNIm9zzuNmy=845F2=Z)b^7HKpkBQh8HQQG+kXGx$273;*WoOdhlXm
zeChtsKWD@V@_kNp`v3sWOlEmhvGLO_)j+;ON1F*WqQqynbEN)VTX(;j!Ba&>ro9oq
zSC*~$_|t#44ws{hj=x!Wb|QZ$rh=%%Cfh*xXYs6V*yiWTI(ODZN}T;@J(Y(vC%5ZN
ztboxM*#Z9PD*Wj}<uUyCMW6KYXGr#4@MoGgcG)wASjjT6>{=Gzl+>XK2T>ahAq#<y
zGL8^l1W|^Xp<D=L7Nl|i7!)Fd9AEG;vwr_sT@qO*SfH27;z8edE4G|+*A`!fN9C#x
zrQ8Vj7N$pkv`cz;Su_5#rsN&ERQI<2GfOU*G!Cf!NcTd)-SVd`hIBnmHxNf9jI>&H
zb!@;HF)yHIK{?-KhY9MZcY6zQuv%3E4VLC(v1V}%-6S0UlGrM|Th3wcF>P^MJyLQ~
zZx<;c$e|s;UU;lc&GDZ|Jw0fmz(4by^Bu|V<-iw`Js;wJhuoK+hb1#9k8In7XcQv_
z>Br=jwBQonU|Tj@ellf%6j#|&u_N)tO>Ka(h_itc&xW_iVXG|DEBP-$N#cgh;xnCk
z{YpciYm?Y@A*_9~DH|1Hqt!z%_i!Ca%o@=areLf})^5&4BaDtGeuG~AgvssI+6&7&
zFniajM<6a~*<SjBO^bp8ZRa_{!)?qtaryq5i3+R%oIx~eL%OBM!IY9D?7(&1kpRG$
zo}pwCj5+bQ(pvbN>&hQ)t=_%evpMho*+pgg_^GuJBbm~i#_{ddIN2}bM{RVB9}p&;
zAc(J@O(A=M@xAK<+ZNAVAp<&5*CFsMze>F=q={7D*lbw>grKJ|3k(oXV)YA&>^ARR
z7oEWsB)szK7})P=)E|OLkw{*Vp?2OEh&1t6nbWxua(jsEzX~OMVNx`Mi_Sfj=~N1L
z7S0+y%PsO3Y+3XE&S+np0REmEsPrKp3urCt^wygN{WpM??5A(TQD~q*j145{h+$X|
z`=wbLH44O9@g@Q<P>eLiJf+8_!erJB>yH!@L)f(M=)i75E#9i~RbU|8UjTY-&mJ>|
z!V_y^r}qrgIs%z;Omt)H7}jq?bdZf9BM)qb6=JSEUCw|?AoQx!O5n+WF#wwiEyz=*
z$rO8R$ouT$bn9q3696F;312{Bj)8m{08nTWfL8)JXqt<`%~4_W7L_1;a*ywhGJ@Ed
zx5cT9n?2DQ1nmZoA->>Eoj7kT2)oF*k#$FYalfGO_71u`2}Pmi?7VFoLmpNE2vcBy
zw8<D)_S#@Pf|N9oJFLNBeH6yR1cDHmie}7OO*57ud7h#&JS+_IB#kWCrCbO6wP{Gk
zbDQn&7dYL?!U)G&h3)c~Q+iS1jZ%Fqa7yi%kXf-~c4D%f*pSLv8NLY~)hYIJBag9b
z`e&Cd;iOFRH6f)oA>7(%x!v(e%{mL<wX`aAJCKEcsIWkztnkZBB97&7kM~uiH-NKk
zpzc^6&aF3KATK(fm;bC*_`2u^rM;xaE)ulI5s%2X7j(IQA|-X@R+N|}JhZI_Q(@7}
z{~Vyqg60*WR!)(=$0B^XXwU@&uga!l16~luB5-8HL_LUMDOr$8#DH1Nl9od8ywQrL
z455MoYGfA3uxsJ1UFHUFJ-*c<?cW6C2Y{JPNkG;Zt?D(WOAtbZ1j0TZQFBEBok-wx
z<*7Y$?!5BR{j0>pf~SW|Ien-w8O22+!CPx{84QV3U`1M7+<$M0PvkT6HzA;-av&Tv
zQK+#DWfi#(v62)5%3>=u^U&pD9FKM4wwv66F1#8XeBIKeAtBr~AT}%pcpC>){PM)U
z+gA{3*+q)F(danx?`f|Qs>~)u+%+yc<)z47>G;p$pMK3dh>5k#Ev)y+GF=E3+TPsg
z<H1oRRDgkv%cWHO#{}{3Ns;mwk`jm-+HJitw2OS!y{0GG%xUXjem0;h``XlTh^Y|E
zVtIfu!0sx-WNLVmlA3>LS+0eR92S8~FzIZdzNEfDr^Ny^I&cg<kQkDrib0-ov^T%t
zI!XJV2VJUV?q6*j?B3mD7OxH=aF8S!K~Zz=hM=PKHiIJk@sDc{*BK9kVEs3ZR}c62
z1liJhBc(vuR{bKjvOSDGnvvy=E8|%oY@-w_wK6_2fFTZLF!aZ7x!=+XeYGA>NBKT|
ze9*LK7TNc<a%AgnnI%N^T2+v~IswFkHc!tlS88f~mZpP|Zdbs}7@$c_kNgh!8aQg{
zNO1R+;J`@Q)%PL3#y3v$({FO3-aQu{2W4MRq5!CiGlq~m#Rr1(&-x_hrjx+6Avk9N
zGH~_Z51UrW&=BbtA08zr_kWiB7V9p4xnNmJ_0O{q=RrkQJ)gQg@a17T<q&BS^yn%}
zm3x>d-@ie7Pi4r?JM0O7OTST8i&AbK$dVNBikZ%7h`lT;B()+%-2c|NP3uWfXaBZ#
z>4mKdW+3qYvSRRv&b!uS*YLZd4kV77ZV)Hf%P;yj)aGx{oYu;}+%vzYwooH=UL$>X
z-~P4QVrT1lOXP=8yKibsgHk`*3tk@jx=*~HY5mdF`SNS%z2D@wv_GG}eR&l9TK(g$
z@XtC+Pe_7+s)Iz^(Q|l$#NA8vUfLTVQU(mtsgVH{tl}Ro=sVV32VgUhzsQKS@3EH}
zU*5kuqr?%DxlaS(#sCNPJHyDb%hwMMXdeCd?pnf+BT0IMuNzBkr6I7pC-P87Hb~&O
zl8Q$4pVn(1;8_gr^yc_odMPZ3S%L@7paLA%dHVOO0oP87KM=M!Oh|UQ{9zSf$iUT>
z41V$mgV}i8v+mA(W&{0CKuq)g7G2{x;!`+-CWz`8dY=aMIT`v_F*z7HMlHhSyyX7x
zN=1evQAJtO#~W*g^HTT{2hCh-@q^=v$^Xot)ctM~$;9qbjBO^yP6g$>{wbY!<(lEm
z|HC_U#_rrev>BsUA(8&eOa>=_1h}<UU5OMdRrIe`hlWk{;)^Qwco~JYo+!S5l}r-M
zWdxZHw0nR+x}+8(5+wL?kVTDGSc1g0QLd(o?rIrwY8h&h9b+~p7-*p%w5&8G4-S0K
zXJ^5mTG>I}CIYa0?uMj+>l^ec8yp?wOkz6B#tVFE9H<VAaAsA7D2@~DLH*s0)7~>O
zmX9s4T1{con)Hd2>cLADlF&R#^*JuB%9-7qf}^iocaB1(aD(Z}|25&Eha(+GK!uJn
zcu}}|K()X`ju+8M&k$FH+@O~dke_%zBswD2niMRtV(LFYElN_@)S)gK7#TvtF$0=O
zbZsh5l9D7MndIvTnC{iDDs`6>am{^6vbIb7y0v70`J5Q=8QF{5!jTxy$3|@FLAHdf
zSW~%p-I1+J0c!7MuV5oCCLm?r&~k0o>x$35f?L&+g7oVGiqrIe!fQ1dfXbRn%2Zk^
zp)_qcZ^cT>+$sS<V``1iObs>X#iZKuTV6($=K4eQPv31B3lFI|!>4fsW0rLdJ9^a-
zB96Y?7{zQsG4?s2GBNhE@4K2s?2ryW-3y5f@X%+CO7D`JR9gHTzw`_um*0Xf1Qpj3
zVYnH%sgsx<+9aCnYI@(G3r*4QB!492Ud%KZkO|{@aK$b)tM$;apTlSydvq9cuW9k%
z5>;{s`Qo%+dy`qB@Lc|>f|dlKFBM-D64{Al)n1T<#G*1x%X4waEN%4Bp}>x%FS8R^
z$^SCZlFQpv#z^+hoJZhC-siX@cCv0n62Ggjz?!fun~te%O(2KxpT|3%9ll<hK*^*;
zZ9`!_mEAz42WVuH)*s(8+>S!C7H7W}*9C-o2_Mz>ju%3BpXqm91tb{kD^$VrSY$Uc
zWs{n`b2}R(MI<D(fDDfb(%#FlYQj^wb;`2@hNI7IxO#tW-&@6Cy)j`?@4<F<Z3lXw
zhV7h2ZvFKuNbGUqjdiF=ukLM%Nw7?k4x5(lf{pttkxar$@A`Xm=p^jWF~~eCg3E_K
zif%-N5+gW*Ii}E=pD$3M@b=F3ex{$t157?n3CPt?!w_<e$8?B8MO*o*RkNh4{;$eH
zUFaWHEIsv~m*__S(Oi37><Bb}8tw3Iq_oc|yIQySyLHk27ahnR{Bh&C%+|yCy)jEn
zVvL^%SB{%4rTm_#4UMRObH?w#BJy}rzS3&;zrF1Iq<`Ui1+61~Oer;?wLzqm;EKlT
z9lP=?QvwyfEN(A1^vQYB*map&Y>a5+n(*~2*ZNuVIhK+HnIN=L#TJgl){cg>rDlwX
zbO;B5>>h$m1y27M)5A>Yj~SjZ;Gaz|^i|D~ZR@gOlZCcMSKiFwEu%X^E?u<bE)EhL
zX}v>av<Vr{Yz%tTEE))c{vz}8CQ-uLn#vP0vHSDc{$&r?$j>P<;8vGSTdqxc)N9nt
z%|KW2r;fB$_osWabF7f#13X&!67Y2z`06AF$k9wv@Nmdn{7yjNFx#6FY%sKyDu|#x
zGGLxPO?=hSM3dJPJyf?<K?2;u!85fweB5yg#;)y*{JPClK2+7=RE6=z4I(ui`Yj8u
z%vL1Pff~AIZl&WO!^LXHms~Y>!UIy^ncBx=&H1{osvL&KB+|<$nBjPYu29KQt~m$b
zrFqr}cCv~5NdG(RLK6BiTk=$}_9KVEYG_MoF5CMtqT)#1=27xkDBVgoZ5-5~e-e==
zk#V{GrhS=uhaz*C$KrjcsbJUS_@d=OJdFo7)Bv5eBTQc5xzzeZ@usNuE9|@fA8J~f
z%9Pi#$-A4>bA9%u?C7m(n%S){vutSC6$gcjU}`3LrZ3%dc$4aE{Lcd2-%>{Do6<i%
z&PcIThyGxo&y?Kpr`^Sv8*FiY`vPacKK+X%BWe@>4`1gQ)KvF{`&4RxgkB}|4xx7q
zJ@n8+4@H`&^dg{12nYfidY90Ph@pxI8hR0sE+F~>Rs<9Q6)Ttjo%{KoZ|B3A*)wO>
zp1s$4p5Fr<L6^_$m$o#X#!T!j%|4kBeXbP<e1DbYFW;}*Li@s)gx;&)#oN+r0N<4(
zl#(B4a%O`rpvechZyUaR{xjPvVz-T<Z=+IAjo51@Z!_B8`4T>BUYQ5Jfci;%P#GGw
z`|<e>C8D4kq?BPKJ)&?oVNx2o#^Cl+8g6sY)TqgFnbG1o<IRX~{P%%)+E?TJAHC2M
zO3A2|3UBb&TYIP8rYoSQMWTcPI^Pf5djt223f?HSQ&<PFPOB77M1KD5uP|l6x629y
z9f#86N%8yUzu*Y)QP9jQl&OKW1RE`#&A~J?a&U<v+!-XG9WEh+M*a<%{52;SPN8zD
zFd1Ebaz5jGOfF-JDeC|hCU@u@7{(^R$sQZU>_Ud8Q6gSNOlQz_q~{Mx+tdHm0zxNi
zjRU1`IB;bl#BDmr6^Pg-gwOy&ScK#d)~<db8Yj7>C<Wk9b8ZpjAONZr|D`MB=4-Eg
z%?Ge68(lUtaQ0c{<?uYxGHF(e3f20{V1eWIix>gvI3@1CNAwaHH08v#rOfP>#a=`|
z7*UViJKZk|QICq~tVxJAMF5SDs^OALa7E`|K8s$|Jd;LS1*I;;Gskx7qI^zgg<)5)
z)@Om=oTkuxa-xQsTz;&q##nd}a`z~jM_zNy)ue4(-}AXexcSQy{|kOy6+J5lcDGFL
zz@{b^!{Eg}j?1hj>dqG3E;hm)IuHoq#aA1*SZ_Xm;&R-X>JeKUdl3-V&f-wG!Wwut
zn7C3{z=LfS`}rB~%ERQQG#a?&eDSBLUTp&|Iu=29;po$Jc7U+ri|iiJ1H*5JYPp(z
z0r?5=79_ibrgTI0Sa~;;Rphl2|K8IPBH#_b`=xzz&5w1n@4>nBgxraB?|knrR5*$~
z<@0Rp@pUQ;pD$W<KJ+%>wZA+bc6r(Y=HgJ_jgVP(Z05!O?D4wf;{8l3G^x<7O3Ph$
z*%KV;9r+?+c-c|J&G#=)H$dA%|GAGfPtZ$lAB&YsH(Wz_vivTsJT60TI}hD#;yXO}
z9+_%`$`ZJIq4@I4m5_I?9Gcz9*4+dS9hU^(JNE(pNIF$_x-}e>*-R#>2&P(J)V@t`
zv32Lw5UeM2qyvvx<N#-6-VDtcX-NU1QK^MeLiJZ^|0tb&U4a|A9+a=emzx%dZWE~-
z-iYXz+3|R<m%S^<llrEFR0U-+mu}jHlC(=cJhg;$3!UoAh*B|rs_kdTyC<PKr=`WJ
zs~F?eh+$k(gaAp7KbMejGX<A1&yW|;l6$FiC4I13YQ5NL)%Pv`cd19k!;x*Ddoxu8
z@}1V;8l@{EC${Htz!wUH4BeVs-4b2Zx<93=yn5yPyohaiqOV><zUeYBpeN1KIpNp8
zu5~BvG?o#;H+pi9D+HYhzwVnsQC32Iuht*j{{=gca~kP$0@V7k51or6^_uzpsuykj
zp*LY<)uHPt4M>vA<LY2cZT|hso#JWswz~FWd589>;p(+^=;PMmU##k$ofn{OLcs2`
znM$x;AJ@t2S2IrxeZCYO@u*-EDhSHO8{?Un$EV$oeHQv(Bz>vVr!yv}+&}&O%FAo)
zve$TFLca_J(j;!MdTrv>;|%`(u}Cj<A?)z)fcso~L#+MdH~vT={=8b+n0dG1c;Y1`
z1z>7I3v~%kH8M@U@nS4E1~nTzV}0|^MQ!4X!E+(X#1Dfx#(_DGl>Wa4^P+|eG6M^q
zdGjg*ix&)+ECwEG3@o_~Ec+U+)Iyho4PV3$ytpxtJ>AqKC))n}#rshV!(N{&)`t^!
zE}eom#+>_+=wpFD2b}-=+3X!+)o}I40NvJ$QMihk0!SIc9L$%qHe~n*u7TnI5C#Os
zF06|6(iewo?+4n(K7aN^`kHwCxuxjKtnr_d#`y~z6>o$@KWMA(yb!%ob=p@;#4#GE
zIJG{>K-U~Q_;S5YbndUq?|bs!>Awcsjpte;d4a&0V$AQ-QQ&La?b-~v(@|ndhH)!e
zrC)=o!|m`#71Kpe06YFu;(0g4Q%6apm+GdY4*FRC?BxH$mzDa1Z}ZoGM@|Rl2Y>y$
z+)QA~V4HO_{qu732nd`+X;6Zs=U5t$oQV5twYv3=?n9rtj;G=Vd?RoM(#12uF&+a!
z4_{qP@H*f4Vn6=RTKbzGe|5n5Mbg;<xdtOTCAlMG(i8!Rh1$*1+YLONS)~*?C?9K0
zo&cj-X6an}ePzsKYvHUV%}kwDE)~jO&^|qb^Rcy)$94H^$wTfi&`$5smKDi-isV8b
zyzg4|`)Zi8c&2=AX;at!gAaQ#-(tVV{fIwF_?h^tdEn_&`k-_{%GoWJMO>0vgC4ps
z-NuVN<|a;Z6HFkSF*S7Y4lyQiWIl?RId;<*F1Z;v?_$g(Hd--Vf_h_~VZs}PXj<Sh
z0pIs}A_Pp8%H@BW(bQTnSfHK3ds#5yJ)qG}#@34fs0Dm@N&r{>(SSQ{E$2${M3_+y
zSu^;9NHy;I7eAHtIP*>e+};6gqB%Ljw*2Wk1uSpV!%06?qziik!^TV_tR)H`uhaNL
z{I;_o{FJuqnc>K*F9vMOuC%$WABQeAyF3Vbb#2x#Ipx@P=hU*U48;BBcC03600S%8
zQ<%p8qsBO&Q6UCA-UWL2*|&DAUVPhcj0At;ht<Y!jrLCe_b7Oa>iO^%Sz@-BrS|%i
z>h5Z{6Q5mjdgR-wan-B-gQLCtRuRya3W~o4QJ|?syj>ptcC+bg$-?D+rE>&-2EI@7
z2a=ektgSrdKVU5SWyQ106*w$`*uztL&98U+wor}1Q4sn$^S3bv;($D+Hy6e*&U9$f
zOAhl_X3NZ=KiQvlpq{0jB@GTms!7(Q3X~ytjKCY0{I#js5Q#_ct~8rM_=9u?NgDSB
z{4Ea@R~zz}xWdFzuVC(-nQ_Z1_9g|A-#j;ySG8HtJT>KViE%I&ianlJ#AmU=jml2y
zATM#)EeJF3M|`oEGkzAx<3(*E^W$iEA~O{|LFN=Dp+})=ueuiPGb50sD`TDPP`h{J
zYFF^N5<f`R(lf$6d0q;h3n9sLIfKUsxBQf^sAb4ne6t+58tl#=$K>pCaoI&2Us$-J
za3_aOg!uq?S`hv^&LWr$Gn;8S<&tU|$}ThFg-<u;n+KmivdAatsiGf*7mI3PR<uaa
z_QA5@jGXKYp|Sar-t?Lc7f+sP_mKLFO&;XV`!zzarETqOWN?DccIGoCN9jI;+!sK|
zD%nrXp&q&H9L3>7zmUfG__H<ikqBt|R4nehu{ShG<RK?7x9kHbv=3-OtV&Jy3uzSH
z+$3{FNgI>B54lsrxe2^wA04a>T|yhar5#_TgZYvphFDLH7gj-uz~?Y@h@aKVrHy8x
zb05kQxY-nR#j+mtF5wQF$};G5vDWgvf|BS%%Nl_VhFV#9+S1&r37xVIxN2V|7CRja
z^==dBZ8dFTlIAyV<iz)Ci$Fpqhr&v|R?qU?FtmTyY#ZP@S@UvxrN0DdXrDyu-`rwg
z36zL`!hBBS_xR!T1f#$H!4Xe?eA~L2!m^f0O=025_yC*x4N8SWQjhAt2(3Q$A@h?#
zOf7f@1p>0km`0BCBSx9hgijwm2_`t<t2vQs=)|yi{T2ZN0spbWSJC0AHNOHkAB?$(
zhP}(xkA~F3Z$bRAERWKN=>l&V<aAc`IKpJf=>h&+l_#dM=JSY*VGHE17%jd6{6+IR
zW9I7`WZrB=Yg-+oEZ#cm^RFTHb?SszI0*^Qq^g`wzytzyvQ-2(A^#3QECE|%)%{pw
zC)of#e=2e}<Q|$84Sf5WD5Yr!yv7<b$YSSD3=8ZKY<u}ya6lW%yC>nBGh(R*C)GPk
zcCb!mN+OV7;qYEGcYvg^*xzyUoOh9T{-_(Zcrd5)2rgh6!rkOi&6BpDFR_T@8xVH%
z>Gfv1njMqqqr+2va}Lsis2J9Xp$DGIwGb8N&k_V|cFcS;H<?yV2{LY3GZ%UUvc4S(
z%pftP$2mp^zTmFasz0$OFgR1eY2rLb4$Uqdn>?C=<Hvd0&?_r6h+@QG{9JFlO3YQ3
zuhr5STELorIo0{TWz%29{q!TZKi{!`mVp#qCujJC*6`TEAHBywF|y;(Thr#e19(kn
z7xhvQ{|>i?yr4S!AS7T~E<M2t0$E>T<)1MIL)JhVPYRe+p}yqTJ5%|_5a<=q!Zab&
zwQ0o;qi(Xm{Ry-1Lv^XzvRi!A1CYw)EFLCj>!<ru+bOFLF8s;)gXiNkC?+n3Ni2j2
z7S5VFy*LfZaT+FF57T%dr&vfWe-|EX_<JpZe~F{h{o=VycspaAYxmxKizV{{AuN^-
zTDUf-;)?gE?Z~ZF`Ub#xA5^_Q_s&PF97OCxYC;mMeJ9zjTw*<5U!8RYb=wLmJc(u5
z2&#nxoPvySDCe5(L)-8eW#$D(BsZQ9#@%`)bb$8E339WILS<sQu&VT{w7|XbKxk&}
z*WziIVt_x*!?PTj^8*j;Zn0Imv=io2hHSUqwo%pvZ$MU`pnJOZO{Exi*<!`{+Za}n
z2roJlxGu9gW`>l(agU7~)jRn1+CidGQh@LW+_?U^)R2p*b8dkTAsy30vT84j?>3!6
z7<y*f@?xGX+?Yo8UK2KA)T1`Sw+<hBYzFX+%#)p3V;(uq265RC0%69QyhqbR3YLGC
zV@+ELf2@elX0gumx!U#1C^@b^hXwhJk{P4#pb66hGl}w_4doegMP`c^WmGum;mouw
z=INE+f=H-u#j}YFuQbzQS=RF2(c-7`FIc(6CT(#Y_!mDv*^2H|#*;rWrXK*9-U@<5
zhSU)LDW>-EVoOWnXM1Hzc%aPhs`Kx`q0E2P7Aga|mm&e{22OidP`b7D=b|ITkR|#r
z3T`m?i}Ih1HdUQEAHD6-Vx^^ITfq{5U={^!%icWSAj$tuPu@ufO4`U*2(g_e#C7~=
zie`ZtjlQ;n4_exZ^<Nd)k$m`<#5%jz6S_OKzFEEp$L>7#jj#~5_nw=E)2{NccWyO)
z->46b0#zh$rfw|ZyMhxVB9m&M7dR7$iZ%@K+F~!;q+7KE+r-MMzFR<UsN*~mkMBR}
z#8>CTXZ4lyQmXn{J>2464E&3wjT6@jNE*^*t^ap6a6lSVGT$P>4Co-Gkae;?6~KrO
z)#m<i7otU>hVE-k4bF_RIuk%V6l83Gju0a%0;JJ_WDtm;Z+O#NNq>0VMl7|j8ZyN{
zTCBu<dX)6qVM&>1x(BR+RwYIqeL=}K+EtYg>@}lSI_<>xWND}9FG(t)_83-c5sE8D
zd^4W@>;+Vqg6{W0f64FvXN$rPLWCoTd<O{Y=3@FMhl*z^xL^kP#H5W6KJiTrf4}Bd
zCBO5G`1!RA-}A{bma8@B_Xhzv(9*;6-=CciR?A2q%>|6F>2x{i_eAUS<DR@vB7Qj1
zgeUNJB}vR2anJ55t0E2i7az0lme#OBfztp`|GmjoGG{_j<ug*!t%|Qqg9r_Jm*-<x
zh`wL|`onO4T8rV=ngQCbk?0>IWH_lkx<`IfKXBr<{AB4{xdL7^6NJJplu6+0ZR&j7
z`iY?SJ}=`8D#!sRA|`U~DQNJR0GW^^2*H^9ql!ub;Pf|UI6zKBQBu7j<S}cgu?)eO
zhcYzDnTr+xeiUNiBLEA)RFMMen)=8_A7O(_FP+q>tOHG7fHSMz+3~x@^oK)e3jz8G
zG4iV7a>zgPBJv-YybMvhJNZC2aOfUBKN4x8Zff!rF)F8UPZ2%xrxwI`GQx!&HWLOj
z&T;Ti>q37qN{+y#`b|X~YS|Cigyc-#h73PCd4gg_8!VaBfK}^G%tR1l|LA95)$zc1
zycW!bw#Kq$&3n0^fzu;uG&A`K3*(9bWQE1GR*P9dW9<k)d4k+{7=@8;q>ClqW+j$$
zrY2v4<-MsOFOhh6#z`j@Dl`^U29w&R*(v)WNHd#Y6_~?7n;>tpWYlH)JR?~}h&qH|
z3iKx!v31>x1MmdP67r<c(trljq$!TjxG=8#5tDa}sc4-jfmxkvXCaJCG=>p=$%Ct=
zE$?nmsvlsy=$NDmtCrTOi{;#FP2dk6jCsA<V7lRpRjYe81vhnoY5o|C1OkhPHIv|E
zi?el4EApYRbziIX<NjxhbPGMWbu2%W>mvbn0N{<NTiLYkH(+BfVcAAa<{Q|IC)-S9
z+f0tA4pe~I0bOwv00IT%ZtAE}%z0K}vxEV_u|!-mX^z`=*~@k%-1db{&Q!AP+F5W?
ztL@8v+YMOL>a^|aJ=_2O*q&~}?6$b|Tf=*{4D8<8*uC?zdtWg9D%|d4w%tyJ-KW-B
z*=u&Y({}qCcAxj`zJx>e0vTD+yeJwWEgTHx2YwR<8mc~*+XRGGkj`QpMIpckBVb5`
z$WZ%p6v5sd*Z&2E1&Uyw3l1S@-T(N_-BHRRS<m&b1WsAvM#;dH4Eq>*Gp&Whju&E2
z(=}@+h#UfbWv4#xC2(PZ-={&$tE2kSKw2q@5efVYOXXjF&bE)`5J?sEPJJ%hK_X|X
z>=7n9Bm^o+3FVd`TSqBxM+<==E+OsYNo?L*ZVSBLQ>x?qi34qD@OlPTrSh3RUPv7U
zV(R0NEKKc3flklb<n;-l2rjvDKW0YC?O&dvdIJNz2MbJ<&vXq9H9tCF7ahe{A!jA@
zcw1TJ<05wpfKk{{I>i~2v$PVia59o7``5;u<|x{&EG)^87;#RG1}&X~x}$D3gR3L>
z8ByM%{AjZr=5)Ojm+%shy(TySrF#+2Fb!L}&!rkB+oRIE9Fzz=$a4-bbPbGUv`Skj
zI$<>Z%Tg9`rU##}pg0zx0rhmI;CD=SB3yq->Vyw4J;7Bq(p;OFhRdm-TNN4iWi#eV
znKO`?a1?W_CaVfMOAQAr4#_Si!1_zFr+Txe6BbdcwRHt`xJvVf=oj7F6*fmzH`vZs
z@UxxL0op^<z92IkPs(uMKJL!nRehZ6ErHq-^w2&$jjx^K&w=PO!Gb~h2;iqle$5@`
zwWeK^`{x7p0{{@n2_~f)vy|qswsZakDR4Y`enmJpQyuY<AH?H_C@1CqKG7Cby`y4G
z5cV5aJV3<0f~l=>sH>7S-1D^@IHhyB5bJ~4z4;M;NPi!V0>x$O>PLeTap%A0R}=D#
znkm)GaBI!sO##q_A+$X94g%^vV(T?31<Jk5rvu^h6XVU(<%<{=ygy%j>k)sV+`4io
zzxP(5OsZF;7;k`4(Q&wljbS$t=*_ZKPIfP$wG>OX3uNS$M0WBgta*iP@q7I&IsMI9
zTBpjF{|H*33Mm|fTyihFwZL1_4)W^oirW%=Pzt2!YWKC5cMgIaJ<EHlLA{}RY9|DK
z0OqOqM)M<qmxTg14GVTPg}~E7b$%=_?mxCY5Q-G?%9#NLl#Y(>`<{OLZ|s{+-e378
zOY#5KFz%^3+mTgY-S5`+8Nad=f#WLMC@7uE0Y)wS0ir73>aL_N6(ZjD$9;2RZ6d#<
z%CoPEW1&Ji;bmN@hzWptH)mWWq#8l0{#9D7p$-r#Luk&6odb1>g8oxQ0iA4gt&Si^
zMxqD?F@}zFjB0r-c}Nx#b##5}-1W|>T-2ZT2VGKPT%2A{emzpg10nx>Pc`h`1hV1J
zo!iuoYA)!gS0|a62}%u3EBOMobp%1WQJ~?&HIeB}qc9RyP0qaU&5Z+slQD~nM^kci
zXT?dE-(qcDjb^7ro$@Zh$Dim+vZCrV3SeZ;PAX7aWkni04@G7$;mo|gs)7f)&G>$^
zWinH47(_P&=3P90MOu^CfR%d}e^?_&Z!kK4|MI7Xt1OK_kZ%+LYMKn4#Rj)o5-c~9
zf-a@oY5nsYv{r^kDz|O>(K#QoDz!03$$#F`8vVp>#L~=qKA5FiVMZQaX*JOlmD{ZM
zOr9nWA8Z*TH-B~VmX9!H_{&J+PCWxvVgJ#vvaPq18b`w9;C_my<7$Si5lgqCvEB`y
zDor2K@4qzp8L-jZYCfW<&eh1?d#}ImKUJ;&E?UW5ItM&+jIberY&rxm{o|$C(D&2t
zfuFSmC4xULpmu7Me|EPWcOc?>+^e*j|I0IBvJ5-xEijp=d}DFN8WlFHnVo>NKh!*M
z5>j>+4*7lfR&0XCR^G<${L!tmi=r&9d2NCFk}2;lX&6lJ^?m?6dho3h)N{QN8h~QV
z4-<0Q&NNbXJ|c0RJk@9*aG`<a=K&G(p_8{~#k_zJUZD8PAl-_$>RcNlcI}$c@6IQ6
zdh-O%-0k3M>QG?ShOMZ3#Byo>?o@$m%s22lX=s>QH_x7PK2;hHj{5m@zB$O{_nzw!
z&CRLN_l<xe?Jc(n)@xDIM+nS`-D|O2{loz7`E2&;S=ZaKH2l9V<#l!ZyM0HlMpQtk
z@%cBGiU@E30S^B>dHc(M!b5vhG`Id`j+&mhq=&c+?aVhDX~O~at`EgddR*#33OsMK
z-{=7N>Tck44~RO6<-HO;y`u=WI0ZR!mPph~w%p$z$RYJq2~xHCXATWOlV|IL1#SX+
z@A@q1>9E?pExq20IyYIpa=w#=rAXY`gt{d4&lD~2+5rhOD82y4;DgS7{y#RbpxcX9
z{l$0306<98&nJhQ!p2shw0d_SUxwnJBKVyC)A>&FDckX)*8B5c-fTR8U6e9<!ep9(
zQt2PIHUQ*cwmQk%Nk>n!j`F*V7z@_4igW+od$RlNNv=!uio)oD5aXfx*qq5zv5@|6
z`uD$g8o2R`{LBaZ5@OI=KreDJaEZRV5rIZ1(mA^XxTo8CzL6mOqm~NB-4`jwUoM!w
zDAkKKa+V>13ycISOwc#zVi+P*7l9cv0&Axa&yudbPZJrrU|&4`aSs3}@l<^JePhJJ
zd?81pf2iJPNH1n6tYWBc-^A#H>Gu-TS4|@*H-ggMkjk{K3SmSr*Hl5WICdjf2|8kT
z%<2s@E0HpL*|sI!pz2Zwa{a>_tU*wJ`yEGiKUKIneuMu9`TXZ_h<SAKS~_T)?>Q)P
zj_Y1-!f&p8FR%Cx^Dm~OCj>)_ARCKh`{}?s{vc;!+EdMtx2w4?d?WP0xqRa$&M!kB
z#D$Cg`l)P(M&DN39QPHU$`H1^<qRg0WsNGqjmM<MAELr_D{8WqUB_7k<n+R~!Udg}
zh8t702DsyJA}_|f%oJR1O0L=iRkq4!#SrQZQmNPG8w;kCbrRp##VN>K8!VnV;06yD
z+-$2Lk>YAPj`yqn4KijB@y@nd$q2<S1O$K}FO)pnI5QNV{-}-dDa2;bG;r9`29BFn
zW=VNqJ<WIUyG6K?N9W+*Ofq2Z&+PM*(-(h|Q5f6hIh)zzX<2dGMbjnDbr+fw08(gU
zFYxQE+5t!++g!>gH`~__uJ8GJ(Vw4jou+rcTtBdI4SV?gK;;JV&-Ekw8&V=SzFj><
zn%?+v=XAdSApZk!Qgq`FqteOq8~=jsSOKKP9W=KGY@#k|GF-1}t|`XqzQ=>r*0^W;
z*Pd?D5^R*qpMUIN8^7{6(t9-I{I$Ar-qDl`Ge_@Y;*x_1(WF!tq)3Jhuf(-%Y+9`S
zbt_?s!aMFIxf!?aRwqkBV1kl@Fo;ym{k8|R_Kwc3?w*Gpm#$v5<Uq<u2rxObNJ+`6
zTVx2Rm-hNi&&H3APd;~AnwaWVl)Qh6R3GkGTd|$DmQu0b+;-c+iWnct+;rp>mpVtu
zePzujBQL9&8{t2w>A-VlFu+rXm^fh^Ru!1`n$awN^`V9Cdu*IRO6UT@;1H3A`P~Rp
z;`SyPlH=;}#FQK*WCPZmY~5S1=hpYsEuS!LoSn2+{BoBX;@28#C@UF6MSmZXyl~aB
zrVP*y8hawi<T0Iat+RElGi0&F``LHF@!Ju+8rB_nsJpDuD4nwM-Tig>jlsQd3+hV_
z9>iM7%TcRS+tLcgA??TzAdLGii~38g=*$d(fZw;y+4gnqEH=qK*$<%)WzX7iV|ugH
z-*K*WvB@H{kb~K97Va)}0`m04jfR1nhLF%h5W}fE`iO^whdNLMCu%SyNhdF5H1&cJ
zz^E_&3j;5PHYJGy9WOMh2q@b<;`+9C^?6+0$?t!w{XZEhB3}L-9|1oTz~Z=<=F`2C
z|1(_XPezQq*oYo+X@bP#Bzf<~Sn4AEbgbs$z2hv;qBvNQ$v|V6n}LpKBx&^_goNQ<
zAu&5(0AQU*_0n%Cro5qVa~tmWWC0P=bN=BDqbM+Ipi~38!0G%&A}e(iOVSZ0NWX{4
z%Q}!sv;;N>VXS1N6imzg02Fdzwls)q=S<cYqGC!OVNsAJz(Vp;Zb}te_F@}2ku-{U
znGF&}Dv_sY@0@ZzosS)YT@9MMdzpa>80M77mLILR3T%-szcLGG<YWzB-$}pe%G`3L
zTe<yWv9CDdeM#WLRA`ZvDXsAyui}a6-SO|uBVdJ$%qGsqQS0}BH;J8WT?;D`GL^{H
z(2ul5*WA@oYJKS}*neizIC!lA(nR&=?Yr{$i#%dj+=oI7$&8O=UGHL_MuK4K6?ou~
zf~22f<)pvML8Vj=1*mQ$-u!h;IDYTzc)aXn7O?ylyox15k4j=)m&@g!iffvV;uO)~
zB7z0_3GUZ8d!<Pb2Ek1<q+F?8n&pfeoNB~iFlQ5y&!TR|tV+WVg19nbCs-7lHWxr5
zd*Oi7Y2ybQQ8PauZ5nZ!@C}TxsCW&$W2I2b$Sna+@fP4sx~ped+u(bUtHWvzxy3?e
zW@y2(iTV(j{B$K@DoEw4+B<a#ha)EK5B;6j&V#)<*3=%h5@y+vG!%?%V${8iyHrVL
zmU3nyHrWW#5<lokL@qI@(#;?5_eyLXOGHg0H970tu6(|KIrUfHhVlsg_{*TeVD}47
z!oblnYk272S5nz@5X;@5K^TM0UgC!XmW|njK}A`35GxDnXkkaT?unjjTOxpwOgS%=
z0Z``$mxA~v=nQ%kqIk4Pl=O1;h5$ieFV`BF3+IO|m?dIlan%$!ky*AHFXUyMf4a~m
zJycCjStSj|qIEPU(@=hv87s_I$GHN5l=P^?JRow@goo4;R2f;uM8WHTn^=I+mZbmw
zjgk3iLka4rt>z#?vvD`}))^`B%(E@PA#Rjf1TGX<G%-Q&T4!n7Y(cXU%mvfw3L51`
zyG0jGs<&v&QCoC2iwQ}ke}R%t<YgE{U|4`RA}1vI+-Qm9!1)@8!c8*qznBRVa7D9v
z@t@oGOew@BFNBOFre5BXB0c^pEc}6U9g?+&sd0HhFn+^ghQ`^z)ejI&7`BAj<k1-g
zk4h$N8q_p7jqcEtto|IneM*@l88S3L7B$eCxio1ezsS6TK)(>v$x{^scbd+HnxWF7
z2#}Ki(&MM4gVw`LGFLB>*~@Q;<-ejCt}a5Rm(4Ph%Vu3d-=6Cx0mAfIH%(gnN=09(
zkp?phDAhlj`502$_dc`mit%7*d|wmi$7awuqS+nIz()O2c<LEwOEuhh@J-E}qhtw}
z;*Kc^lTVqKJC>>V$P~hfJFpKQjcHh~4Zs$om)<69!Zn@Jp#U=%bUh6$-Bf0@sGe5F
zn=Qt5^af$&AzsjC1>J6P&+(u?@K-*%ACYs<>qA(2PzRBjRmbU94Yc(_*zx6*zi$E<
zIIXGjezuQN#h-c&t4Ov)*E28;!jOZSG6y_3eN)n<f-O?WsUFNZXjCRsSZ@eN41zw>
z|5z!AbO>W<k1#f@;9HAX2q}wWXu3RpalBydsdV>)QjxvJ&t0CX7quGWU)FM&cR(gT
zb^Nd6U2#{^Yu@}B^y>~FrhZp)rpGltMNv8A+U_Fm^P&w!(+E8n>AmC3Yrm7T&xxmv
zD4ZG3+3u0zYW2M@JdtemGyA+nBlWC{i$Rnk2&CF|K%d^pApG`0>ORX&={joDha^I}
zw(xU$V8XCq56kkkC5sdiOS_DB`In7RDIR;aj?IuYmJVHKZi3E;Rl*><5*)l!QJidj
zlDS32U?yUb9z-jN(Le6x*;0NJ9JYHfuWT}du)yg<$_Xk%A11F9jcY^=S!YHEz7g_#
z2Tg+A-^Ck%_cZ`lL}-9HAN&K<FgH|o@_o54{DbZtxUh0aJ7@oyUsZ2wTrW+Lc?iaC
zz?fC_%%!Wclm=?AB=<P3MpsFpgHLaLTMQZFc3lYp@acg4Qqo$<ZZn@;ANOIn<BXeQ
zrm(8_?ycBh6}Yv2Lrfo7O(`>&GwN*ys!zUve5m*u70I>;h14-W2_n``J1;#K?wYW~
zk6mhB&3KVP7_+Bo@dvYp%Y>A#IQB|+7E*VuHd-LNcE&6Xa(wT$cUH~hmfi5!rZ{!6
z>ge#wCx!Gcl1$~RA2WW`%k1pNhN(OSoCc4bD@^(F@ZCe^>M`Sd&Pg&+rg{_l`+??=
z-c>Vy=$S*1@D)jqVhXvp`r!7X>0rB~)RA@2U0eFaYav|6F>_k`vL*F=DB*(e$2gfW
zjmU;<i1?5})5{3JZq!+wd{1VEzFhK77IEomwz^THv;@+^1WM@-LMMveaM7RmM>U>g
z2cGK9-FysrC^f!oqH-;M_k6r$GWAYgw>H--_qS$+kK56T1#^B<w`(z4Wr}D6b(VKA
z(LY|z&9zAefB$^)<zMqBGUJ<kIFb}cCFg!eZ3cb_n43`WJG{$4)BN|kl+N+Z_iv;E
zuE*o(_3wW_=oTieQb{Bjnht{OXP>g*>1PgD7z2rt0|{FJQuhOX&fGZfJSq8sy`P}M
zKmZ=8Mu5c3(IBCSJR-J2xS^4eK?MtBaYlpqt+s6bpHTm6%0K4S56J?66l(&k$lUm2
z<MnTJkSYbpPQRfXAwpa+6rsta9mY%HfgBmIc}9(;;1qMP;Oj0CE+#GB30o^hGx>C)
zU<gonRcBg;0BI6BC+mQmFi>quNvs3C`jK*^dHo$@>Y6q|^AMy$0dfLBO8A6ZTgt!2
zZ~W7i6QKgwvFZs<>IOO~=R=(L2{43MnsZ2+KjV!<iyPmywRAD$Rcz|A4Dffv^&LhK
zgBqtY9mq*hS2>+akR(BTFtNF=H{(Od+i)O?3gX%X@Ew56q@cF`peQZ5RbHh~P`V37
zwp}~wEJV^ggKRZHZgT(`E`nSdlWsWT2IFrvmE3BXfV9UM?UOudM8N%RGJeUeQY_2S
zIBRK0szMF)x*bI&g5YyHC54c^hcWUE00ksS6bX_bz$_Sj_dtS5SPt%S;m(p9ui|7N
zqn=h2z(;W&-ebTx2^1y9CU9^|0boUZryUh(<&3^Pm~dMbcSW@Nc6&(<l+4+~#QUpB
zp`Rc8q)DMkI{RNq*7}52ay^KZCZVF0qmIqNBW}yXfhq?c%i@%4tL!XiNLV~46FQgo
z^rz(1MD{FG4kNQ5bLo|RO!n(0r>KdnLU9k_om|(*oR9E)s%n0?x-4^mkpm^y**rUx
zGp|4`uQ&nXC#Au<Mv<;}?@s{1jc?H)cJ~qraixV1R&Gsx1$-RTl3;?eZ`wW<EApd)
zUh;xIbOnixBsrpr-c&=G4gl~Dz-x_SrD!M=Y~hM8j`|5moP<P_LQ~fu7biIt9g6*Q
z6B=sp={tpan}J{2#VC&;A!}Zj1dOvR8Q1^?(_ag*bEWp!Qn$@y>}DwfROYx@Y(EDe
zt`&O-ly~TsBgP8rw}kHU$Y(rMY|)aWM1U4uqo<`<d)*0-Ez2iLE2bV*&`*QQ>m#M5
z=YVIBZbgD~c%mdHT|8;1SY5lK15mkOS-CP<@z(wB`^39f-&NF$0mbnkSrkZwT4qfL
zl5Pqz13>av{ihaH-SoSknX3*n?}GHG5D%&)h;KHK%F;)Lty9^5Q8gRy!u6`TJ*s)H
zRrBi!a+XyKuUDV@RgDy^38qzxd(=o@tC20M;jyZbU$0UARf7_&ZJem#^kas<XDVM~
z5jZFdL@__|t9=5xzSO~tn`72wWO2mTT_)C5QOfP8b!vk3j(xoCyd1{(GiJHR^9Xjt
z3V-*Uq}(yU{TAa1mBR(io<CAAmsgtIaq~01VNZ+0_#oy7g+urBmtw#zsK300s~(5_
z3ys7+=v0SS#4p9?t3b9mXp%h3)FB7ZNC-kKb4E2KI5s(5YcBCXv=_M;Bb^)(R2qsq
zgT|GzRo?};DnnLY<>hfw1-nE-FG#gq>SMq1iN8ot-e#U#3J~3D#dAfjq@|^J(1Y;k
z6SwmwU|7ECTd4HIPlEDDkaY>tiO^bf=3T4d@giCriRpWwn^WWOl?t|PTd|h+Wt?q9
z47KP~F~J6T)~-6kR&JXz7Xkf;5j|G-s2<H&xIn(q1IFG5UvFJ@pn-tap&)%IWLJ<e
z3viCogx$Pvs(Mb~CV=1wWmb5QK^2h8#Z&<uaDevdQ@u8E{f=&I+XxG<%uucHg5@$o
zNKj2w&QpABP<T@8zSOqx+}946IC7A9?rmga{0mE?OA?B^NWI4*62_vPSb1LoFk_Z|
zzN=6Cq1b<d#+C|QBZy8t7jE$(h~l=m!%G)?Yp2!k-CmnrKU9MTD9EXf4$n*7)>t6?
zo#4W?bGC#Y98$tSqgXQu8E&n^p2>G%yWNQ(!O~%IW!KW{ccbLX-rK*S()S>p-(`r~
z`4TZwZ=;x|hh(lVXcW6Be{p{F?ND}ylXUq|I#NxhjZ?Ydqe6<NZJx2*Q~5`SJQwdD
z%6s0Esrao}bx#VIsPxspFoOz68g~r11o#KK_vMs9Zki?cXNUhjRY_N}Z~2;vJhRa6
zL+E4@G$9N6svNSG)WfL2=X8vkaO5vhkb37o@OeQ%^C%|^g7psUzqS5YI|juJ&gKh#
z60yK#tt-N7QaBK&_}5xz$6C>Iw_o^2FKmPE1%LG47O1hy(3eXqpG$ofeBK@Ga3FEv
zk;x#ptk%4Q9cEEIYgl6(tT~ncfEs|RsWpt`I=|3eT9-zWYSpl*9oz^5h<F*41*q#R
z>U&L?u5qz$BAfqv2HCCck5?P|h}B$rbK{IxhTJp6Gw5&U>#JkWf2fUfqK#}M_1jZM
z>_$dE=0gL$EUph<_$P6lyl7B*wuU`#-qWsl&3;HI3~Fd_!O8yuqVz)E@L0>6vDZ>)
z$Owc{!vZBUaT+~%k!u{QIQ;Jey})Y{M{Bl7P_@c%t{@9XADiqPS^8M`bQG9eHxo9O
zv{U9be<ER0^LEsZVEkys!fFZIeU^g)GpR{7srzG;{nng403%7lbPxc$*B&zNT4{*^
z@6}m_9y+lFTLu+cmd8wO)1Gw`c}A>#>$^rBm!_MSthToY{P!T1{WEoeR{z0f<MT$G
zRB!Ztn`Laczo{8!#bdcDY;~R6*3Z#5zE$Pj9|*DQx$UBdY_WCXh&A((b+9pp6J>MD
z2Fmnz_&aP$Pip2_*redVJOiz{?Nt0aXLyd)MQP#Kd3nt-V~9O=^U|d#rV&rO4}sJ3
zI%N+@`H}%`_GdZll@OK73s!S>vN<Gp)QH+>ZzvZ3KADEAcd<mdoTV`a6(@cY_qDy~
z%!*wq&|0`N<ZL!ddnw~$&$hf*<RWD>>p>auskFe0tV9)zh##ytM1rn*`v%53;@X{-
zVqQ28WQ-I8ci`ZE$<L0HdXx@bs(4*vUtJe5lMdCi^P6`ivl8qd#l(9r-0eEU2&|Rm
zK;STeL1rAiFl46tT3M&}-)}NiO3MwG@b|xZ-%d+x?y%Umk|+JW)Vg2EXujSTu%6`R
zt+3+Li5$dI#wUrsHpw9ir(C{I_mw{vuFKVI*r9!K5x(Pc&=K1nN8~G4%J^G--<LtI
z+ful>`?}T%An1|gDeMVw=1RZ!YMw-r1rl#(inprAF&5!ji(u@m&_lM@L>{j<18X3=
z$x7Q$7mE-Mq<{GPpa|*U3N2%;%l_Mecg%T0KL0RqdOLHOr3L#wZokpL_p&o=Hkkc&
z=w0rfns*^CADBOeb*BD>$ci=p@$;D+fMoUf%U{{d4SFN{Pv+FaNA2!Xu+mr|?^x)r
zwm`90U|ayR^14;Tn{-PPk$>Ax)KDp90kQbi70O%iib-g67;(AWr634L++>-31HSv7
z-D{JQF2fSPW=#mUIW>L0#ki$lXKZP)#TdNQKjz%*4bs_%Y>yc^e2<H0gG5~coVy8u
zGWv8OBEwc#KBT@<xZl&0zTtE^QlWv7^TqpA8DE}Vh?fskDEMuN;#lpKS8w!#q<$F1
z|9#J{Jzxh%Yw>u>5--1a6&b@G^(80MV(wFHOjHjLEdN47=|j{cHk>|d{$SRktnK~W
z>)!A-!`g(zYChxi57*YxwGnrx?)}}e<y(6m9pkNy@!hc4+}xT-m``(ipVug#Wx*#@
z`qFL+c_kC@<B3b#{G*8trWVGoxz@xQ#(`tI{b$|nNfy@{_@1U5d}%l*_w?3EJ)?P(
z1vIf0a7=@A6+?PXgJX@8_PY@|EXZ3g*;V+<cWu6X#=YLP(oG`pd3e9^Odc0v=>GcX
z@^iQG&tPBZ$@z0X&+Vh1Qx`wqw1X4$64rh`yzzHjqd+#@l;bk9?9H1I+42eIfjT$7
z#Y4Bpfp29@VIK+bk_RF`m8EeXH*X)?_Z|Z@(+U&PHX74rBluH7+S?^Fi((bVY<H^O
zWpDyAN9gI=6Os-WZlVAg2|8brb->pb_U}5M#3h_aI%nK0$spd|NdEGJg9Eo&FhUN=
z$Y{z4nmH;jAzPn}h3cfnoScwkuSR7gt2YTr;fOL%U*A%8@C(UwXa8?R^;acEr;7j9
zvK?=nuXw-jFXL0$R1)PEvE-&J>W{mj<*exO!kxP&r#BYA-pORh<t!BzPt3J{4tW*g
zHC96U?3Ookl0Ev85vrSw0o?ZYzwLs&v(0bj{N=ht_1~NL0{zSaTM-JF8Nx6J^Fzsd
zp>F1`#Rxj9KU?Ilbi6-1v1c4RW^A8zNh>R{-`TR%y9iag&(#UZqXf6qN1iEuf4DmL
zfBHOiTqcZNwc}kFIhZ}SNbm3Hm#^d&5Rs`;Gb|N$W#{v-DS;dNPkE_*+&h4m>fw%%
z73XkMSl%G>^TWnDaH~~kaUV2HIOug*BQ?j|+P-{j%8t8VE$G}`WiHDj8;49c&oh4E
z#UJU_b&98N+TZ`T|K;n^w;w-$|2+jVaO+U;MyZSlY3E*wAD560(!3x;f|`2S){0*8
zzAcl)c%8Qew<0;hnk-z7Oo;gU8dNl_cBO6`@pk%ZK70wbJjrS=e?G^wWcVu3DxHns
zIGM;1T6X8>Ej@QQDQvmLTvRIMM^`nl_>N*jsMRRZRl@f_+wQPs5!;lI0S(N77MoXx
zN@ezF@b~bQwi`f3UW1Ydzu}t*8CQdot&vQo0BJi^Z7LVH0`JqTiqh!d=eFmlaKmfI
zGtV3Urb*kbYlOXc;5S}mSRQxz<wHO1IAKJG`RJHU%)};fG;5_@`;F_9ip1y-&#Ntp
z&sScHJ>7l5_VKmtS0p26sZ<7v=x@qc***~9_VjK_(vL4&<HZ-Mo<#3I-u>|6Y1NGz
zr>8&|mJa;(__-<wVS^on3WU!MGKys%=z>M_=Z08Sr?JCqx_fgbd$I)|hY^;F^CMgi
zHV&g~CU0}pS<UHLEUbYV7$PD<c&qo)!8U+j1>ZW)C3>b5=xBpu&zgfKVw@<LYqsN*
zTyv`<YX3?TkwGx5mso>1A29@qhU^C9UAgXzA#z&b-rka#i>ZO+_oKL~bVYYI$%a2S
zRM}WfWe34xJpNmcrImGzpdtelYHsr95a0tw40hq1m6E2h{rMlqi_KQQRW-N`L=*9+
z5N^E?fT)dTDG=J)n(eaU9$N46P^f3RFkJ{1A!chEjGUg;5Z2ksX<JEf;tF_Imw(G|
zUu>C`+XKJoVPAzDTsHF|Xo@+M&aFV;t^^}<h{pj#m8MnGBrqTd{=PE)8Ksyx?EXbA
zPutCIZP5ss+_*6V(-2@f)BF7&nJhjDM#~;zw{hE<hD)~A-jDXaxq<bV;!q)6)><CH
zRR96$yeiz_fANaFp+J5t6KwO!Yl9VL#MElBBEJ=;6vDba5S&((8fSblC7t2gMSp{Y
z69hpNvC0hb(cvcYpoFA%YU-~Mp~iCTo_p<+ckQ*aqnB4RZ##)GY&AbWbUr0AF@2k0
z4!LBECJq!vdCD<MuQCAp{zD{w8n`IAOnh@-H+kpL2alVxqg4@pb=T1uTX!FQl{c1p
z8l5PFzjQ7akS-Q;eVfcH-Uup4^3fhTyzU=7#8+;j4GIHuQ#N%*@7zOsOAxNV1XRwd
zQ{yC7R(tn8RNwLW^?ug8oT0lM{}R9vRC0@l|8>P8(K{%i8Z<XnN=$o0Q?2zrpMm$!
zI9S8R{r)@;JT2p!(y2TH>$-91Ej@7Oz`THY;XD0i?l9w==;EKGbiqBKcvT(83m8;J
z^UodNj^}?GK}Zn)^d^Lt-){v52ObhRycRIvKDD`=B`JS~(qBUh#-|SYtPAWnA10Al
zeg^{ya%j)i6DowG1nrS9&6K}IK$z1_B_eW|pQUcY=vszKS8}tw`yEYN;|+c9&jf6k
z5ZlR2sdfcO21ObjBu!CXETNvIzyVm6dPfkZbf7?j(KH!;0i2Cw=#550Lf%8vYjUB9
z8g%gW_J^`T$iz^TmpEJw4W`ZKu=1P0^!#Lux356Yu;1;xb3k;|VNTWCNthK1#7m{8
z4}WARsGzX|7Upj!#F(l-86yf{T7<4*>7pV80N2na7M%oO{2pk67_mwJeu9R{he8yt
z)x^;Xq?C^Q%tYfLrBh^}`qqIF;~D)TH=tg|8(?+19s7V;o!^qX5^Z*Q`yf{xoyrFk
zJfn^~BbQBtz88f+K8s8NF45~%!&kDa4F>t_0~vTEP{0!&F^S%@u)@8ESZSRC4pf2{
z+m}d7r4Y^<iORw1=_QBST$I#qM7lLcJ>e`~5F#+=`n<#fRL%Y^*bX~*`Vok3p5Dxy
zX@W^s3EqL1T*|!3`JUMaE-P<^WUy{}uWv&&vO0+7Y+sbKPhokM%Ng4Q$bJ=4LnF=e
z`?V<UtXB7JvHLdF)=wwNF{#MfAiPwo6kax*@n9TC%0=xtvEgy_5JNJ^x_bDH$i?ta
zWUiC3Sc$E>lyn+^n}3`Y=~8zw_L?L@=ad!LXx%J*VaicXya#%~r4$-`iznc1N6+{X
zAyh98%8JkF#XWOow3#z+J*a0^#hI(m%CLnt5p2eP@BVe(ym|W-#M|Q6Cln5_)c#2#
zj_G8dGtJX$dmR-g9`T^ZZu9k^adjV4?-k~eFfy-j*h5>q(N#7$h%*Rpr&^+Nem4}?
zQ3jyji9JXa^U_N75AP6GkTA?7uGvNvwc+Z_m~oq+e>tXMw)`MDFQnw67BR`7{Yx$(
zuI_f?5|{ktp<6q2KX3^>K*pS!ZDq+Ma-_p%Fv<v04!FZkz>R$G|ERt##`a?62rCjj
zp0%?MVhq>qwL2Q&7mZv+<u5axn)lq)xw=l4Q{U>_$sg8BR~%*M--FEbehB~8Y|yc-
zIF$1JsOqAopSKGxNy#ql!dCJ_f$4hS87q-d5ea1ONAri<48yUs^gpk0`RTI<7r;9p
zH9}tmjg7@R)&?{KRa;ENtTjaML0lS*+9*Q@l7fFfV(j%`GlVFOZHMmU?N|n3;1Scy
zxu@|>0LmLSnNl|FuKEwuj163?F!m;iF}(a`66Q8A$dIdm-SO6Umxv`nSV-)H@>jx~
zG3%~W95{mxEsRyI(bo0knhS+EUj)I(?XUC_dxc={VlY=P`(mr81|lU}T;al=zrQ^s
zx(f|yv0Tx>1@|!HtWSr#zqCUIovQy+0iNWmu<XgzA)h|c;g&3frlJfvL7F$|f6lRg
zj$usgpJVumn%i?I(jI)b+oUZPwELC#iu_#JFkX=J<&|dp%1><9eiVU(!HdW(i@QCa
zFXVicW~6ep%W9yt$@AGkNuwNboCi>;>+4CUT%e-vZbv8Cmu0%Tl<Nse<Jxz>4BUa7
zp-CnM6+baw+-i+B_am;&-;UZDdjnqPMVZ*{IM!d+<`$yqKQG)?GPIvLP_{Lgi)<or
z2{#^UJ?=+vu4$FCUzb*bUs8Qn{Nb_|;J@!^!o%yQ#`A8KC!^X={MxP?I`vWu6(R<Q
z``aSQ`?i6+Aw+}I$yY$A4mH4Q_lzj=ipcjT1ec}bi<R6=)Gv|#b#i@;wd6jCb8~@f
zARj$`M%*kiMgIMM?0wst0G6cR@uBWRCIQnAh#(aSPy|3|j6)p2;EV?eZ-RXAAFM7h
z*dP~bLM~zkuh(FH_o|SRmEPG<!hDcmNdN?vUQK9#NYa0S?i?A20sZNTWvn;P&#j%e
z0?EyRRB5eLB`HC3s5@nk3SiKo%Blevu8@FG3cyGlx<>~&)0s;F%$%}?aa%i0XnIEm
zOB@zvtF%6Ka59HtTRuSMeNjYCxFpp4rOz^RG(l}@`EQE}D31fyKQOStB`Ij;7UY_=
z)hYWO{2A^UY`W=ua)omRxz?h@&JW~;iE(WB;XtZzUKB4oQ9?^hsKnYvoVc`!&ObPS
zA7c+|!p}7kg)ui14$wlqTSo@KVA|-dp))l07MmzEE*&e}LbP!n<n<zQz7$IeH-bh0
zH6|MQt{d@157H0C_{s@_)`%}FD5361p)b{JMsLoE2RsWGFHew(EvgYU9b&es5j);a
zo5*EZSLJ)%E@S#!aRVezH&<pd26|AT@4w1?Cn^XIDc?mZZVxF=)hG|qzDuSle;QKh
zRTY<t5?`bX{n&bWK0s}g9XP{2cMi$mjO4aA<?Blmw>^|}$P-g^6h$4X6HHEZGQba4
z_t|~Wl9qw2uE-CLQ8I}gG6Q(2BQZmN34^g(gMVKKx$*CtBny)}<SGy46x2G{S>&5L
z<j*=woe0_XD1}EI3IkE?U55&zQHqltikGB*1|pS~qm(Yv6<-}HZK)|sL6p|=l-?aG
ze^pcYwh&&&8SrUA`G*<`8jWH;()xI)ve<#*iB=WpRAqjHLM*CEMXSkms{H_}oi3<p
zMyu;Cs;PD=>#J*+MQeOJR0rm3IH+s7L@U@vE4dwM`l)L<b!aX-YF$3kiaa_AQCE%b
z)J{3l77N#Y$*Ggssgo0(MLyCgjMgnx_s{Fptyb5oKQg@=t#|)Oubpe%xJ6z6QK$Yu
z{)L_+{r}~Y9qA2q8qBL3E_Z6pMjO65GTc&ET~|N9(|LZMOYHs8`ESt|es&7|c65Vx
zYW<EzGk2kH9A1c)LMJYw1-guWs9zA#FqVoj7>+VlIyPSHG**o<(bdq`>@qRZFfBeZ
zG3zq5)zG#)Hg$<Hb5b{RKQ{AQQb%y_`gfUMj#2kMHjj<5_@ZW!cx*v*R!q^rWOiYi
z)qb+jF@-Uf?$PF<ctDAURehJ762s*%B%ndVy1PL9D)jOdG=LgoJsM*(f5y~mu#P}7
z0RUn@Api~l0H7!jI0RThM}cW)F9PR8g+#?zWYt8(BoInkTq?TUs(Jz%hGJ4OLfU8%
z9V2lAGpP$0X*5Q`%tjewuWW%;!C=*GoV2lSI#@RYXAiWM9oo$sjq^73^uzdEw8975
z_=jSHE;)u=cDWScekIB)GS)Xb!7n!PVq!{Y(v7eb;uQipA~iiKEh8=?D>3VK@@>j>
zN**b{aBy&NadGkE$B$pXe*O9L=h^c9{}00{ofv^p6ij2JaE|EcRbfB8h5t`R6du{K
z&z}FRA>JmPRJh&oYi+*u85jJU?FIEJFMkGd@#3jTqOWy4AwB%c&0AU7Ik)dna`W;F
z3X6(MO3Sj<H11YWHB4Y4l1N^t8>6_mlnPe?uS#<HosO<M|A(dX{%7+I*me>LAx7*?
z?7h`08hh`pXi%*xiqe{GV%KV@J!6lep?2|&J!-@(TErgJTCM8zdY<R~3+`X;`~G~c
z>pafmeBJP-)vK!!-=inSm&Ywr+y7s;LAxHmr0;0I?v(EPK4)q^mfS%-CP9%neL6wt
z{K4Vpqc2~NPfpLyor+3JwVTDc`K82QPCT+?y3vELAc8zZff&mTLCi8sHs@tEDgRM!
znve;_jM2dTnL_XGyEC5JBHV8!;isE%6px1DV?*W2$dXtdCo)-{@}~}7l^|oNxQ$zC
zX38$UMsc7~i*T@Lq`eVk4WzOByoPqcc;s*>H%Gs2ivyD1lA75a&c_MSOQe)`r%lhA
zbWf*~s`OZW-~ML(x?n0}T4&4T^3I%AohT9e1u&G7zAuF$>|n^eVJ=g(Hike711fbi
zaz|lLWDIU<{)B)53Sg5_@fy14Uh_2ObjWufq0tn8mjP0Q->1xLc^WaAXE#-jhD62O
zVv0k9yy$Y0M>P9Us>9;70_}@`_39j_@!VKev+(v`2kGV5)`pKqXvl8$!ZYbC6~Avq
z3r}31sQF#QdQNI=^qaV*IOvK)5>NB!S1C`6s02no^vj)6?p|#qAmT+g6Zsgb<^i<b
z#6CufiS2%v*uI{9vP?JI7K=p7b~JSCE^+pyOd%3%BBiHDAeTXq`jVw|6@f4*KWJsT
z0rD-9N~#F~q!+~npe3Z_E_0J*tD2&*y203fxUO+KC-hb^iK|d=PzVeXoWInDtupo5
zQA#lZwQ+Vtqu3%t@v*zQp@(C8H}0<OR~IO*h%SIt7e~wCnjm(;ig07`STe`2s(nu_
z9i8g3b!E~0FUzPfwP^*k0c&#09aOI^EcBQAG7WWCN(21c9tbK@pM2}5da|l!S?NU!
ztii={sKpi)fnHR>hxHA-%1tkv2BXb&M^|4<8FgI|V7x6SAWFuL<bHUCewdHxXY1Nm
zR4k+Nk}m)hk|zW(EA@*PKcMM*6x&4sTOg786At>js-M7v40NS^lC;<AdzjFtp8ywL
zbz~77rh;^!H_XNoYo%}s0J66(<Raqsi6m_*Mg#z8@c@VIr=;Y=X^m<-M&21@e01~)
zAmJ;kJ1)VB0l_pp$NRY!soeJfB6wmfXau1Ia7dtU0y$a+YXHh*I@E)x<ml)xmb^ax
zm7RNKU8^|ENQak$az9V`_DHbcXl_077Wo+nGWZen(PDq%?KF~3E*g4x15h&&{rE_3
zR67w84NLS}`?;r0lr&(FAr*dGWB1g$Vp*7VD*jF-J?g7=s4MFhv7%Ei75niC|5W3q
zE~)W&*?&y~uq>0S0q8V98C4!qgu4Cc65}G3Q&EhT5rHoa*7~=bFEX{XHfc|_M*ng6
zUj4n?d-LBv=+^l?69ixtaCf7yYLG5mpPyvok<k366bhR3#4%dm6%@qiA(%y7VU7ZQ
z;`l-7&+>_IHz93+*oirV?|4!y5zVSjqc^*p>*{@h+3LZWQ;VZ*;!zsS`0M6qC=d(_
z8PJg%jaHA;B7gdJV0dCE4yKN9Fdt>2Y&0>YOCbR%pn6OfV`M5bOEA&BSUU4BuIApx
z<Q$256x4x&fAKu@^EFzuNmt29<kX1;`dRM|h2(?-e1RS(OMSfLfr+C7n_X>&Z#4K%
zw9M2$(&O*PGO7e&9=hakdbb(5q2)w4lV7|vBt+BU!O3(1K;&WjfA(ExS@@Jn-Cq<*
zyPcx+WbnSWSR80PP%lSszY>nsEk<Zw?@JzyvASUs>0<9Hb9RADl8_*68j_vN_M$We
z!ZfY{1yzy*K^of37-|UdDlG*`&3U@w+@7@Dm)C84RZ}m1Oy1!UQVC-e>)&?H{_#jy
zt`w;te)<@?s;(99qcB{^90*;oB~np@$9f`gV2{_)F#G+96<wQxK0yH{E`=#Rjd|_8
z7P|~t@vN9L2Fa^q$s%<Mq=lzuX$9lyN3~L<(Ym91`H!%^>@#LtM^Rf58Vze~Mw1+6
zErPy2v(mQOc%jaD0p8+bOb;hyXqLXW5%Nt5?xhl>U)e+E3_j4%svgiK2+_-DR^5mr
zVOS@$yv-4xUm8PmQ1yVER7Gp+KGoEGc_9lKB<4tTR~SNiRUjegp_VniIKtB=l(d@Y
zcAH_*AZW~{aA#4W$18TSED*rklWmwve91r0oXKz4M}=$Yf6KAK_Qn|)rU?JITvrnn
z@O=xa6|o|LRebuGn*dEp{ODCQ+#(e0%YPvU9tgjH`gk3+!wZ&;JWi>)v!wiD>fmJz
zH(K42uU^ct<wNOeP{5PbB`{OK!mpJdy_c;%_8J>t#tKD<5DJZ^_@mtj2ql1bvtio;
zE=R^9R@7O}2iaKylzWn$Be`r;ZK|<k0=Ym7PmGo@3AB3m2Lx$q<8Dzma4e1_dvj*J
zo`y2t{|hUk*6_&ScZp>k38m%H55QD1ZiDxN`ULy}63G5+knrfB7&GShJ0~0v7c(+O
zS#}s(g~EeOB;sR>JPcp&CCBXvVHVa-hfJ8aXv(~65YmQXBU5Ca8&8_D$kY2sVikiM
zhElQwcuV%!ctz}$H5#IG$Nr$DUbWX?p9K|pXzSI?^t<BB{Ga`glJWXO|IIu^e?>mj
zkk|E-y-Hf!rj+=hKr?itI1CeKRtlu~lxrqp_f<jJW!QFI$!IG8pKgt>;;UqmN%{Mg
zQ9!~zihGxg>lvu|Rn6A8a|g7!rs2)wq(hN<4!WV0Hn=JNeO3Jhdnb>UA^A`qi|qc#
z|Ei)TmxlfMJ2=Y_H6bQLem4#JRX@1q<GafxLC@Ncfkff{mZ78}dkbQEno}D+19x0F
z-NxEyaT%FJ<FBg1t+<O_<Yx}#89C{2vBbP{++ixnJvJP`2&e}-qg(2LhVPcDM)eot
zT5gu=Att1?pYU-#q-=-p2u}`!mX!OwAItG~Q<iGP@eE*G<alW`$z$N~t6RveKTruv
zWq~4;X1{&Gi0MIBk?&doyMxZ&{UcSIXa7DH>O?`gyaQaPi@w#$X+X}y`C~#gNA4z8
zHg<sjd}I#}ZXR%b`RJ>s>*2G|_su;j?)SC+jBC2vF1jvN6qT=JnFUVYwK<J`-Vzp;
z{`B2Z&%j3y6WfP#yV=+N#E$8|oNjIo430P;Bfi4boES}wAb3i_V?229ax}S;B7@4B
zXLI-_#=A~rk{wh&$#;MZx{KF?Qs^Xe{a|5ZHlP%$kJ30G8ZJ2#^S&8CCX9<-qrrSI
zPyBZ(h5f_dq5ZX-;n~(6qZkRqf(LwS2i0Tl(V-L_`w?LxAVxI$su33{JQq1VA}?iS
zY7hXp&Q=0E{j}j2Min5lxAM?+7W0FRb<~tSS5ZtQ%HwX-L{5|*UXz^|m0tN=zJpT|
z7e+?}iW7pp=%1fEJeMaE;Rpc0@N#!-qCVV@5pSh$#0x17nVRm$-p+aU`NOkg3MIMG
z=gMu7Y?lC4;IqvSK#@5*2`rHAL{1VF`b!RAml!=O63^l7@Zki*ae`JJjaoC10oBAm
zK*mdZ#|tES2!%#(mH7^M2^#0dxtE1=j=&%%F)Z*{9VklxA4s4aWUd_XvL>R!F{vsv
z$>1c2tU~fd92*2LDAfeo<cH(DSl?XopC$;Xfk55#GFMVoAR3&x*A4JawGP7*fanR3
z>*N|yrP6ZHAFGxWCox{Ka^Q25Z^JcEde<q8un+=CZ7IIKq{~7`5=F7L?2Fx-V-kyp
zY+NRrX~Bj>A3k<ZYYa_o&ed&o<h%?;zO@$U?ttWyr~FAw{;6_fKL`Xx^RZ@2O39_R
z&IpT;0FngXt9=kqHSP``Bn5y&5a~>v+M_io6Z<I;_GC|G`ro;VA4jEpa>atQ9XU5J
z+z0G`_c=xN`8L^Jf_^6Vjb;pp+DmjM-3m%u%X&V0njUzK6G36RA-t5GSeTGRo;GMm
zFbVb8sHP*!WjX7jGO4%^FeG<_iwy!JV6G^Le61fKBJf}yS?4Sr(UTkG_g`>$!uf_`
z0bFc+m~sZ~ZAf@n4mB}H&oajimCId|O_84C<s=j|X8u4mdk4tlO`n&wogEOyn_3H{
zLLhgnxe}dnpO0~+c4kK#<vNn`cKGt_;JFq!Kus8=?jWnhsi5t^7<Isx1#}E%3-u~}
zASh2EXzAO<dcOx>@Ncick*{zttYGSAA(6cZlU~5n&me#UvfzPYSSucIA^#ab0w-MV
zRJitna`8pc%2<&juy|8dclKxT346)ePulqdKBzKC2>Yns3CvD-%Ig8(4geKi4<)Ix
z@S;n8Ewci|aqs0yt|=loN9k3XWeLOoVMO_*9O0!*UH=~=;#VvCzECRozZj8tSDEB5
zM&XtJ!HDG5$`zf<olnY?^2^n_%GFoOnUl&-5YR#vih^277I*;~MRCekL58P@vaHA^
zR2cs%_Oqn4bB357mOFP<7GDH$Si-Nl|4;ameiTj76Q0jleu@^FlwiP}E}-Qvwt4_{
zT6I*L9oXBsDqXPpU4SWgh{laj<$O|!a)yhJ048gI-?AWy&Y+}l${KmVhAeHmJMG&r
zNV>Cr-dJVfO0D(xAOR8xg0TwJscJo;e`U$=JiYqBGGJ0ia6CTc;Q&Z1ptkx6xMp0q
zK+XNCsta1@1MWP0;)rK>Rl|U<g9zb3_4xXBa#oQOpw1G`j#N)v0nLhEKaBB4AY)e(
zqs<3Mp0m)q!`f}<#vf#LVnSeMg7oilme*<thd3jbGZxxGsf}|saiWt=X;%G>#(ECQ
zuXPam9EWd*iIyam0C&6v8bk$y<ghV9-~sk0_+q}M%oA=U5rfdv24{HVU!O(<XY)l&
z<G-B7f2VAXeZ2Z`o)@P)bp0G+w>in1o5$%n%B?u0IU$+u>~BvIou!abdIaMc;we9m
zDva}II#<7}sArxxyMbesSiO7%CjujH#ECdLZN8d$@|zE#UcjzkB02pEVQv|Ib!!2S
z`jKLf0NPNnemDgC7LfZFKxk*#cQ<*MHn~xKSb<hPuG<i1c|dv>cb88qe?&*(Z$3d2
zaD|e#8%X#LnN(SsxRXa*!?|74tk9h^0gqWJU92d6Nl=$45pgE*XQcwyY61a>NYTGK
z&wR+o*0qf6lp%<hqdRjl#BTB@aAG8S0sti+5<~MFTWZ?ceXR9B478n+lky3@oRXy(
z<a7NU3!rz@8B&4K-S9nOQnN_P-8PQ6HpY<xQiyd{lfE5Z?$ae`AJ)<F5&7jzx_7_e
zyN5X2Y35G9jANKh<*eX3U*`j~<aod2i`xY9NT%duummwpTSt*5RPieOv0Q5T&0K|$
zPg@$eIf5QppJ=)K8)0Qx0fk0Sg{HaJ<2LdlkIfuo0M0fQHx}e&bd=?F`fhpl70zkY
z3xH#6R4U5T6(Q<9C@ZhuuKWmXo~4v8-jMdKzL92ycb?BRBh?c5)ERZuwNdI0Do!F3
z>NW#|rL5}gdK!yly;jI!1GEPMfD(HE4&X!f!TkMwyY&P5>d7=W&q3QZPxfs<SOHZz
zAS?BWX77FQ`G8(~+elQmCQ56F>WOMDXo!MqEJK|RR~Pn|Klac_8>np<<)Keg@kVsM
zH~&*BrV_(ip&Jrx@sPTnTTowNurb3+_j~ZT$@Z8QWZW*c_sYRQ=8+;zpdd8_j_>DG
zzcF7x1_ybc0r>C}6MtB&O~6<2X-3S3G4pzMg3|HxYUK}Hlec|hvoq5L4er$=HX~>v
z&VVekj7HRuvvDze{lsMVL?3ag=Jtd$(%@{|NMXy!y<))VhH+)EF;ls5d?chqP(SnD
zWLTyNjWGP5>KL4RCKpf_(X0tGO<hzM1Tr&TZ#nKz+77g4>nMj1KAKK5O$1GF`&*|{
zy=wIH?D=k+_;O(e{(XkAGJ(0(`p^mX`Nm+Mt<HbZwA!K)uGaIe{CfWu4F<5*EJM}+
zX6smpg@TtW;zz)Gz0I#do1Mr^M@s-FGOF6d;n)LsMI?cS)Pef0^P95~cPByjG{}*y
z(mHl8^lxODGBFwkflR$DZUXI|7d(H`pu^QO^C{z@7-^QFXer5$k}?t;y0bLsWk2@a
znPcwu)(!1R%J34{L(^^hm&^`-^@Xf<2V^vy&U2x|VvBeow~(jR;@P(YsVHIf3;!r&
z`k6t1QB?X<$+1=!M)HsLjLSL**KQ`KMdrZe?-sX*T$A;{TSs$VM9@WHuZ|(;bH;3)
z{pyEQ$i~iXiL;j16tMm8N{3#PetHha%y-`4Ypi6~j3BO`W<PeeEq!xcFSKMckpm@~
znVaM9Az0Q!jlJd`dpRw7d-Tudo23-`rNqYFyZTmRu=whg_`SO4EYaRME8=!uV7Gfz
zyIv?^>d(L0rvADj2<aV}CD{85(^!|sO72hE%>MmVj8qC?{u&k?Z+hpGr|c7N#`Xn`
zMsiW?M|(i`>q54MKlz;gBs2C0mf1v$x1bz-mmMQ;#uHIF`YnL;eZza}E^9l_iA$9`
z!Hv%P2W|d;CBZ)ygRNv|`D<i<-h1du3h>EZ=Etua-~)({pXfO(>EZlG9`DwC_kZ4C
zP4<JB4nTSRasBM94MCyBib;`ELKs$?b0tA?ipLAD0?r;=gJuFAwDvq3*PFil<YGo{
z*9bu$L2BJZ(P@FtnAXUMfiNaUyVPBNWrZuD`$2C4Je$+Bxh5Yee(7-2JQ~y_M@_9y
zo`h021V67XYz`oqJB$~s?xre}BkzOHLiBeg!o(~0b{&=`p6yKei^Tq5>XumCe*L!9
z0q}XsJixt^*r2455Y<!nX;U!Fs6{&~!6fHCIIlg-X%G3Kans|SUHOkKH&okEZ!<5R
z9yHTi#R{PSB)Q3+&S+9^{bL}ReIO%->zstMFhoSeX2I@&d1MwTqn?tAkDV;fN@u<f
z@tp65AGt7mQBO>umP$5&4y7-}4uzY|q{Wlfko?k~9gaNvS`AUDiQ&G7hSq?nRJJ4c
z6EZ_K^bMb@zl_toiq&F>YYE^9NrYUzIaBv6aqzbWjk6zP&>j;by>-Ossf0veZv4X~
zkl$tet<bO9@C#IEf<z5TrQup+9=+cB4Wsfy=OsAcDq7GG^W5YRddGQo10WRuf?ubh
z1ki8S3q2Ibhb{8?9Z2yl`N5|THQvOTnA_$+W3>%qi!NW3UbYwB;moahp&NQGF&gg=
zP57>vgf+WxmpbpiRj&B_`OLFq(J|qfOY8$&X2bhTpR`OZr|%K}*v2|iCNGDrNXdcc
zugHk0x6V?(cD%Z&_>y6f?maBM7?{DV+SOH%zNhud>b3c_r_uLYKV^`>jR<hw9RWRB
zFxkeIonkLff8W6+znEUpNL}cav*^t?(PwxcR|?3>*B#BGS&2DNsk;?PLN{tO9t?3B
z@1Cmqvb>6wv`w)DeRNS@VPTJB;LH<dVKq)MgtG{+-WYW=KjUCmeT~$aq0&t;=W<jd
zXTiGN5p);2V^s&Y)h7zq6w-1?xv|OL7YWn|35y$4o5WQ-YcOTM(eSd#?{(+9p8xs=
zt}CSPC#PrT7CtP0TwUMT+Sxn!Jm=+o_Wj3$Mb_w<L~p*kz+5E?Hs7YF{mdM6l7sBN
zHfSIr04f>IXlTiw6I%rjlE9sCR#^&jmfCLOUUsHkFxB`f23hMX;t>@ss$<-GWI`HX
zX7O*8VtIa=Rn)Dd8s#d#D>!wQ51el-`R0u1rD|g>Jf-SiT#`}aYlrd+VwK&yY`@#>
zk2Z$0Zsz!}0xvI5U$v(<Vpus=GLh~-IPdf)&?l1_^6Pm#qBhpemh8;+48)39H2VGz
zMpUAez@m{K{9x|lWOt$cDQeYLK+$mt8$Gm3jJMcpQ?4W{EbPKiuxb{D25ya{i#RkY
zwH`h@m5)XIAq^xlAQT;GxTC^;_>-#@!Z!#JVdr}@)&ENo%}v_9yQYYqMg9J9`hOIW
z(8>9k1p!DYNhFZ{FGZ9<W+_9?mtxsZDOUeK6w%RCUzGe2aez*X+G>#AsQ%itYJ5!*
zF+2HQ%?z=+2Y()ngckt7^@oI+A~NJYJ@{jguK<}EN0XI7hcNzy0WaoTJsDwEoJ74P
zo;Wiu(KKQG{_(vd3NY;<s;WV<<@Q}R{sUDcm|lFjDplbl99X75s!naLIDc26Ab<_(
zZro;#rKO=VRM{BO=jpgxC}xYVoxasGgN`*4^OI*HM~Z5ZK`tkP=L+0JOKYTzq!#9F
z432`(%tR*b7}m8qMo9+RWxr`97Tk>~Rrd6d2BVzWEPDP=NB1zcZk81d$QkHH9K9N{
zG_HsWF*xg!cx`I%Ot!ozV6b(x`Sg%AkMN4l_Bxz>G@$`>4Vl5BAuK9-3u_UllUK@G
zc20g<3y!TSDUJc#)I$!f&fd(0m_98&@Z%oWWGAhQdb<~NNr?7zh%>63CV`KZA};Yi
zF*HOAhIGgKo9a7x)i@e%7)Cv4T;45swdJt!yx_sTRh#av3jjqhHDzi{gE$FY$!=AH
zF0lv$M5Bs}*=gb}oWiT4ug~%adbFVc!+ct6?ROP_&rk;yt+bGbH9Tw~XagpJ@G@EP
zh;VxH#iCHOE8dR}mdehj71zL4`n!OcgUSHpktxf1Xvwo~dZv_U$+kDCdi?2pI{1Qh
z5vUZ(Cob>2q(22Ag<>F-L=+;A)fzCH!|y`0hu(Q>xti!<a_ev0e1!W|DYP$DW-+rp
z4tcQ%+`fy(vf8V}{?MQc$WB?w5-q(Ug!HC~oyjt^Po(~*!iQU@k9r0G8-@Zy46`gF
z`LDgY(GgCX9WmgWZun-P3NEC!z){N7N(x3D6VMS3{0rBT_wN80Z;<lfe=;!sE&%{`
zm%+>W3sw3wY^+eQ!9J1jb~X!b&uFLxGvx=dR-mrW$LQ8f+2~U)9B@r%>@|{vhB%@j
zLQAd$asY^R-Ump_Mt-8b(9fD53zX@gf63!mwbS|Lg+<C7^}~G_Yp$-nas2{iM?0Fa
z9wo6`w?GBH(W{hu97QMlfr1CoR-iHy^~`dO(nkRRx!ZT;@%R-EPP*n97#b2}Gvg+R
zA8OnMHvoDrNZ=6>q?MNpWY1*+-$Ln<N5_y!6FvUYK1jNOMnHtnDA9?^3|7S{rY7A1
z$sZTdG`ZNEo^Lxc0~l?gniEJg2Y|i~+~Wuzq!bIokbBX~QT(Yg2Z?P1N*vTY`5!-(
zvK$5Su+i=|Y=_mVfa$?@lPvQ-Y~)r0C61&fpzW!0P`B40>eQG|1^03!(hXQ2+B#Ty
z#vu|`B?+(@iscy~o8!1AH@ydDi9|5dN1$Pivg40ZkWp25US+~^G@T>C>8zeyQarJj
zj{3R;8FDa?n>Wi^A51UiO(`3gZ&Q?EncH~9;d-D%W-eM;Mk9E+cKv=}XE#J)P*E)e
zd!L0U`F9!ZOTZf{gi7FrO<f>AFTY)YZnZWu6}Me9RZ1QN9gKpIejft%_v4>=*n~Y(
z)Th|KH~K1Aptc#!4WbVP$;AQ7D$ZlI-LjOKkw)cfh8QCXsx*)<O5shNgn&8;3>zJT
zC>Ei|k*}L?d1ZqOytMAK%SGeAX0|qj`1OXX0X)jUI30~cfc!&xnnVOdLe@>EWAQb>
zn$EygPv>O9egT*ZGk(*x%Odm8MfB4XaQS<Xv_0z8@~IXjm1QFp$NlLur{Kofp~BxJ
z2QZT(GMRT3@hB?U#8D84A0ZxINkP7g$IRP9c`UWGSWwI1A?0^?%yyJ@f6>rXB!lrd
zuNy3%qRF>{=-DE^#K{$Iunj$F8(S6n=3fw3A_{<9|8l`+qad#_BC3=>+UX<8ZD7_u
z#}UWFtl2Hwn0?;H7tlv<a<Zw^k^$6HYSyLRo1RR}!EZ-NyMBD?1i9{TiY~o~Fw^p2
zEWZSbXG5Z1VhFD$tt`Lj>R^sf5<cc{g7p<oR4qxn0ce|&1)PF_F5a2uIBz;?3R`Cx
zFb9mpH7HyJoUf@xtH#L)NLku@9DIvLQ4i#LW95PhtUUR!fSVlNB>WQ>$+EHyFEY!|
z08wtN_5cGVFS;o%>k1j0nD@Eal02kA>;l#EEM~?#;9HKDR<dU<VAuz4%e*=dlAU~e
zjp!qfHKk(V`<?WT<RiI5ePe;%@2a9N&fELAzXEH0sI{bIt0;eO*!sqJMjK-QR%Ql{
zqd%jl((Ud^7@CXDUJlTpT~voVr-STM`hVE_cdy!3F^h6oziN>S3u!nO)qz+8vT&`i
zlZ>b3?rcf9kMLSk7_ZGXJeeWJiEM4jA4OVUF!vf}wL;TjW1&RF+inyA0A|7^r`ld8
zyt`m4V~l23p|7(ey*RjXM9;3vQH#wAA01xGi94(+hOo&3nNzHwTXO^;=u<;NF<^)T
z1x$~$qr6)Bat@Tt>AzRg_yF93hWKe}K{F_4)q9P}!deo^Ry0jCl-@ujuGf<iM?nz+
zfdHQmIxu-Ony(FDSoun^*xphD><yq5d<fi@Kt>M(*S^F||6IG;e9D*T0%mk1fW>D7
zA8wU7x>5XoJ@Mo8mvR5yYp{__4J+-LZvuYusZ-YZA2+KvEzR5K#bnL_AgCl7B#CQ-
zd;bSzG;{}v;QlDLJu*1HE#AI4swpt_U*b2JqQ76B-g376-fKJv6bf`u-l?vRp2TT0
z*W-4+Y*T<)UJ7=RV6iAVNiE7F3n(oBqKPKcMA(Q@-~NZ%hU1~m{8UvqD(Zd*DmZoF
zRVg*XkOuLv*x7&<RL4474>sNa6^zmSBf-f_;f-S}RCVly_nDo6OHW=RGB&{3rL4~|
z-~ip7E}-Y=5P7Hfze19zKhaKYgOPAO;atk(LD4$6LHQk5(sJ^*`vlg9<=V8MEc5G9
ziKedu334R*PGI;}NPI*O$vO;87DAE@C=$F`5grYM@9}f+(R6Maws;uWA|d9r9OE9v
zv`v!59$XyszEpCtY<%=$a@10%4025z!&t6>0r@}t>l}1zNKZKqG7~le1bw2ihK8g`
zGrFEKy9aVB1#+p)$h!$B-HWM5#wbVXm{g%53{8rcl#p>*mef<WbUCJbS5{mdo~*C8
z)S6=y2|DV+d&ab=<wVc(j6lxLCQdVV_8vK|p+K&&88<=`*NhzZLLj%+HrMhg_l6wL
zPSdSVfjnPMc~0ec9}lZq>hk_Q<ps(kbjo?&xf_L7ur2Tzb?NYZ?nBTGDRMFJ&1@R2
z^&1}Y^Sh4;$Ah!|?{X=f>4{n+^sHltu|PHS+|ql_vkJ5MP4kQap*?q@y>W%R3?J6|
zA1!U7Hp_(5E!?9Y(g#}$gz7PgR$8ZR0R+9s1ZTJdf&kDV%SIuq=s>}1C)DO6Hi8Ml
z8prJECp-ppRML0M5O64_<^lODPR()=X1VgMrJ}8+r!pj;Ru0i#%`iO+q9^FNEb8)q
z@sK(dJk&<qt2*Njn03PGIoCiE>Vo9%R2*2JL?v2{_y%z?2<y$tD@woO5<ll!k(XMN
zmzIAlEzlsXvmt$Jmtg3ru%&x1$Q;t$!1HG~IUY?fEBuq~T**Y&?$hX$>2bHTgzxB(
zw>h8RqVU69;oZop2Nm%?NBV-%!n?g=z+YHkgu>qVAb;krN<kH{X2+j&&o(!KmYv8s
zMef~?<LKe{|A$w5cc#2NC*YB$LPt_te_Z^lYL;PNbq23GLwv|4LrsXkResNBN<jeq
z*y@wW&GvidEQDLHcA3f;13Rj;STTWcD~+Bx-w8%wzAm52Rj_aeqZ+%VT7rU8(yP4s
zJxE88uAc`?lwUP{Q*+t}AFmhS%cvaK!u>N{|59v|%`(Ef+GtoTVq3)UGl@0GfR9*B
ziJAzz@S~0&F%u?)##fVNByieShqxuo*QZeS#2L2VSFlI#g_BV&-RB=pAY1iG>lW(S
zy-%Mz60w4a?81zZjGdw>j9-Y*Z0?zL0t|ob`Fx@<O|^vv8ayRO8NCDyLvL78)Sz9U
zw>bGsl2ImO0Z+I>I<ZVvZ|-xRRYSQ#j9-ozzb&<*4=OAScBrVPw$2m`H=wlL1$4KB
z`FMucRsTfN(|igJ{WoZSkZA3C{|oN==E&A@0AZ$arN!?NV$XOZ3XhylM1cx`&t+TX
zQKiod0cda{I!(knkMaZ4DD-i#%ayM|iNG^WfCRCIZ9XwIQh{;SI~7im7@L^*i5ht1
zU3E69)FoO_Hkwvt*x2YDY0Y5LHyY3M7+^`-_Vzm8_I16Z<rZbkZ;u%HWfx{FnG$(z
ztXa4XsAVI6uzgg=s>_mg_^n~zJFa3homLjBeE~<bxmG_e^sx7c5>Je;Nt``TyI`jA
zS#*6ol_7g@F33DhdlB#KpB_4zz(aNa%lAa4{uCne0q2XPdhZ9&Y{6$w)Wj^qq%V@a
zp}@h!6s)0-dzL#d!M$J)HPRNTi_UVXrO~{y$3kmATRs^|vzPM{^-X`GAaC!heBo<>
zbH71yJ7<1rY61R*gULgh86MErWIu2RX1F0UJW4Zky}WN2K~=_H8Ncq=J<uNu2^JIl
zM};ucLJCbxNc0<7CVPdfSBJQ3<v)wLj_hZR(+W%{3)t`>O~Ko!QlWs2DkjjA^%o(W
zBkO9~!-dJz_s9L073Z8QvBP4;h3!wwN<HI{1zqxa0H5$ILTJ>}y8{k-bI2!KK4`ph
z$;4o!(^F#(<96dIY0M7@s}>FJ!4s*}e9&-y$|ml~kAg^t$j?WM99qK@wGwl+&p#Y^
z9<d^`4hpFxD)j3rGGLLVKZ@aB;L%r4V?Lii3LF}}joo=eZx8<fJTR6eM}R{cVIkjf
zmOjOGRLcSHOCyafi3wogy0S*{^37BkBjv<{8J9=e5#om6P}+vI8;A@?%j|I`?@RRG
ztUBCw-NbJ1v-X-^3f3ghi;u_`%6<!FUi8<~!=ch+8T<b2@Hd}^qs%Ag?Hf2+KHzIY
zQ}6UA&j3<BDwyYoM#vmnf1-FfZEOkt%(UCCxISK^UHXPPxz=>AmLoB}p@SXoh>b(O
ze77M<f7xJ-YR#w0SeTCL@fo#$*ew3gA{U*yXPcU3luSRF#e9+SJtZ0F6lRO6tY>13
zK7RIdoEf$8rvG}qShch85+8YG+{9)Q92c5Lf0vye!CZCs9Ro3h`;zV#K`}?A?oZY*
zF19nWPLgc1ZQR1$L@u*IHK^Gg5@a__+iAXg8MP^brpnI$NO*?>cXzv|Z8b*EniLyp
z=gY|!G`#`62@|F1$S=Ur;T@s0Vb()GUwXlMpC#MhrhbR_Xb*o_mSfVXof|v-lT$Ho
zWChoiHd?murf@5^Yi<04en-iNWWn7I#`hLgGH;5~z1>S;GFSKWw9#t_)3O~2mhgbm
z4e|eU^ZpC?{2!GzA-A)Zd7H}&)tWdlnp7{4d%v!hgWAzIxtRLt&&gqVi@B~+Mm_4^
z&uG()(RHsmXdFqD!UV{ZtLP%W_eKAWZyx52gGPlx(qoB;mE4I&8mYNhbL`2=IMKO*
zolsXo@%p8&pBNs?7STWf_&8qe&5EhNgBmnG8nmW<bX#&%y|h@l;C=T|V!!h~|IH>L
zn<Tx4k!KV0E|M*`cI&n3X(A<=Hjf%#r+9w;<)9<^_Tg`DbOg-`(taZM^{r8u_`X_~
z)_awA@72v~Vw@O63rgRcW;(<f&el^dPSo~9BtC7S-)9Qn4BfPqVnU=Y_)Na0^P5v^
zU^9?P2;J#8t?$On22<-5Bnv?-Il}E>i+>PV@f&@hsZ^IQoPbXyC-cE8@1ij8dpBAN
z5r1+YieW_}0f}GYq^=?|tDnsHIzpeBwPpUCx2B2Ij09*$0#wY%)TPX&KXGb1&#%?Z
z8~(u_{BFMQ!nC~7O!29%*Lcybb0Eg0m%jGDb87ns1&>#&K}YQX7aZEGd!~$YBG!yS
z{!iq~FZP*}G=*Q5?*SA4yE!qVqkKLIa3)ONeS06wu`yx8vQGo7kA_ChFEU~KAh)4^
zQe{3g&?<kZPnX%?5`88a7xqK<`IeMk76d3R9rgF1nPuunZ{J3mci(@%qF7v=X1Ssd
zIwOHad28xZm02EYQ2^bqaQTM=9}-r7MQ)8dIPID_P~iWgO<NGtcRKqs{gG=}XYzHM
z)>Nte;`x{1upSA{EA8uzDKzscRxWD088t-JGyS6w@#|Bw=F;t0jeY@t$o9n1l>Qc}
zVJkGC%P4Bw+?CSY|K-Pa9S7Tq<tWurv$q_$-;(e%!D&$M@i!jyvF$P7AnMFK@96CB
z(F*BY9&x>Jb+XntB@y-Yuo3)K`nZmdc>?jdjaH~}_5SbGHB1FVWH=h$t87CWyJG>d
zCl$!c_^G~3bDaK;I$rM=Ubi_0`u3k?H^UTVcEoym9R7XxI6mc{Uaw``{cXM*)w_1=
zItW}lVu~lx^zLIcsdsmNM8BC9_;)B;{CW2BbH8+>o6rG-r_HGUwE5q~;Mb`AscYHn
z)^oQl7{mAYtAEFu&lJG@C-6sZ9<I<q&1~-cuZ$LaIE!C3)4wuNd$)V#eR+0n(#;6F
zea5?OHl>|f@o!6^woQ1(USkgQ=!%k$?R;tNOGYl*o{ekKV!|yB<1EfoU$zZ}{9Wn!
zK2n%y<rfaBvDZF1?2;#+Bscb3w<NQ?2@th)mMvxO?cqED3g8)b)e9Y3gZ#EOA78N}
z5*Jf2?=lI1LIYZlJ@6hP(rX>={~x7fJou;XZ<_!hr1bZLJ3mT+<b78^^-c@}4FI1}
z5R=l259<_<fdP1?t0d&r1UXdq&Bj>YA$3N~n9n|lIituyG0d@*<+`2ftxHQ=L$^mJ
z-b1*3_448MrSI0+wx>6*W@h#8<O-$`b;X`SZzC%)S1+N`!U-WD6$87l6pkhxG3ZpY
zRJtuDS3#YH=td*kWP^KaWdGDQcMY=#_hb&=&>S{v!72?};k!EslV8k61DBb(X(YS1
zwL~l&%HVu8DJQfUTu08`-Q#@6`6cDmuiw0FfA`<O$ouKJ4<FaJ_C6n<|M-1HMjdKF
zo*GR~H=AgK*2*$~_4Y-0f4w%CW*!z<z8WNhh44Gub}gB2HpYKt(JqWZ>=ee4^Y@|w
zkG#}#b`5(6R1-E;(*uKtOP9ZTjv6qTeXaLyM30q^DAJNtC~A<9e4<>){ROUp3~D#c
zD+Z2)eTDS9te2+I)^01tdyT?+<K{;K5Y&1fbIntk_1<S!AX>>#*^T~qIuX7^INv6k
z+|3(n1Bx@ire0|arf<sMkGe~9D~;=Z(BABx=Cqby_>Iqtjduppq#~5QtbAjVQS#<2
z#?o_0`Wp6W*QzeO+oC*_y}nmp8m9R1k2^B-@xZi=-E?Er%^zRa{)?gGrFi-^c5_Gl
zQnm~Xr3rfK1r6jW!qAH7s^qS#{M-5V`Qv}p>zaT1L`u*U{JGcKI{78k{q3DyTr8ut
zV`&_#M{a36XV8-SO}O-KX`(=eW7!LlvfQ#H2`VVRr({1{d5XfUV|l9b<~}Z&V&`h9
z{N*hWdj(d9L2Ns%i#e|%!$f|$;+2JV*m64LixSX8&K%I6mE#oPaEk&B7lsa=26>U!
z9A)fe9~QC;-RDk>H!oQ4J8&pEm^i2^jyPkV&ZK;RjK&GXqO{PdaWT6oHeAlRWHM}w
z#-;CMWyNk%BqBf@W9k_-T>QZ;u=4J>E)!gInen|R6yUDD{C!)F2RECh0>$eDYsRxG
z&ni#|HC%sqJULajjs&V_Tnk7klG6E}Ebrv-^MlF@r-s%K;-`B6fewT><v=E}#vO(Q
zjJrk0EBid)uRpP2<uUy(tsWAfX4hF_Es@am74XoUQv5DQK;xUzcZ^gLu~!6bs<6_x
z=xzZGbq)eBSr*SlO9wnwAFY~ulph<3(}w+Qh&hFETnz;>@O8^-Q;4?Uy?{lIDQV+#
z9tCfw!hLQ=Qw7?d^i#06;cA}#b|W_{B*Ve`!6MT$-{wTyb&f564r3H=^4y9BEle{1
zO@xX?K1NeLs~5O2|E1>djXD47FW*+A{E+pNvn&a%3=ljD1r)Vp`7w{F<udQt9X{=Y
z-za(fc<rVRPiKb4mE`G~9Ty3mW3P_9#|+)h@0`ee*hmCc-?G*N3QC*<!0Yw@>f~RB
z1$4PU6cG_d<DwNTpCd$ozog47bh&0XFCf~m<4(X+hRNyQ+C32^SG`{U!Ps6xPjYTs
zsR@>P+!~>>to??zFwFbbx!1Rs^m~6b!U^!DO#+zOY186G`|ae2cjWThHw)S-qze}t
zQhtOR_xQ3794LsO6;e+P*^kf#$n2mc^xXM+3u1t;aPoe*Eud5`Xlt9;2Siw6Jb`y8
zh4%VcixY!_EQ=WcPthh5UjUL1b*RKab&!-zh$I#Xd?OdjvkQVKw~&qd%Jl$!Nf0P%
z0Ol;)LrGnp#LYI$$eRw-glqF5Q2PJwU4m5WrIKuXW0<c9AOx*@qFxIbL+1vV-q!t&
z%|1Vh78~zsD@%*9O<2(MN)U<mVfODRxgf`naEQ|<TydBPO4y@SSS8KSf(U(PfgAdY
z=4Yu|nOi?dqPqNF{Zd{TZZarj$I6`b(OcJi0vw)<JfXJc#taGqij)beDu_gT+dNuT
zrxBoKP`WXZz@BxIOD(wZDloTzA!v+Qpcj`$yhO_w5|dfM{(!z~G=;`CwX%i)+VCz_
ziBko7e3dQG<T4kcgbqY(zS5O99i-B=9AGNMxj>0X%5UgFNFfS>qQ}6jWr1KM`rbA2
z_l%Z^W@rIOivntpl+L#(*vx6IB(*x%@@52ONlew8<)!l&G==&XGCE5>0ml<dVLbAw
zF}8|fHZ(b-ic~S`yRRegiy&zEEt-}2>JX4i38IiBfFwn01X?LTtV;^AHYmp%MaqDO
z#pT#rz}jz`dbVKMK8S<W2Rr)q8MGz}XX{m?Gt&iXy|4u%47Dil-nf?Q8vtzp5Q|rM
zr7jk`GM$FkRua*mf|VQ9SFx{MVkm4%C+8Eq-}STqd13OVOaLoGl(_S^E6wGfJS|1;
zA&82Y%yM}MrZC&rp3Yx<tu7_gE_no~`KeCS<gaBJsu9L%waL_x02`wNJ|@JK4;=ds
zs7KK_)8Clr#>d=~QT{O0L!tx1wiJv1;@X)%eO~rKTf-BhCPf4?TPDy)?XLp*wJ2@a
zbfCM@<SVvkAn)<^|88Rk%CCyq^zJN_f~*~jnXk>66z?&4yT%8^*}mH){Fe|a{d<as
z%Io+)?F{q5fXDjZ)9XQ10C%zq2Z>8GoS-snu4CcEYlYIue@#m+9|(hn(f}Q_{xc>9
z#@s#u!tfJsZ>#8WO@wS1J#ifLW^B%Uh1jr!HpKJVzqdeeB{16ND)M24ZW6-NsD90i
z8uEO>dU0(@+vCAOYh+a0rgn6LzIigT*r+V@9YfvD><E^?!d}M>k?FpPeOZWNmJ&Ks
zU$}CN@Yp!_0Zt|Z4dI1@7I;V?sk;u`nTrY~cLMG}ZJdaqCNi&Y_uz`{n%@1j9ltTl
z50V$rf{-&ra~Yzp*s1DD7xy{>xyl^rZzb)LRa(paoZ>sE*$4*+;&xQwG(+X_Kza1n
z?{64s;zfIXUaxypBXjd^J+u!1p>Hdb{)pRyK3vjG+G<mYi+sJ@?VtB3Xs3{HK-1X9
z=6zq$p@{VGa~tXV@X@@(D>yyCnX170)IORjzD>`p`vZ5<y(W1;<9+kmg4HkP-#%!f
zg0j;I+svAMN*7ArclB?7fK@9?X%H!3=y6EG?$bxBZKnzXKn~q{{Tq&r*c^jXupMew
z<(_c9W%a<m^m@p|)5-JjcWR%VZxJ=0Hd(!iIUT5L3acDxi*^S`C=3)|wr*Gh{A7S%
z9qx_1qe)h7xYFof@d@tq9{v~ITunM^-_GwP{ETMaZ;|<{{x}))S+Y$6vxLVEK=W1O
z9wIb-d@Rh`+lS6o*p{aY!1qnc$Ib_y6d#S6{#}oVc={!3l`Di7U{pe$1h;IRNZV6U
z)4p1Et+1yQ&@IQ{!xF@v_MQb2(W8a{8d=BN*mp1S%QOE{Xc>Fz2TH0i6O%tuYXDL(
zc*kluT~-d~I_+rnpS||4|9&`Be|Ak)>M<dpe{ZeB>+<?dm`)sNObMn<fN_;VRYNz1
zqax>S0=Z}(Q$3PV7PSC&c4Ou_V_N+9z!W6y1pc}X`?h`sA(2s&Lh}ZgGLhWGJ1Fqv
zF}CpPpDAzZX}U^Nkxwid#??<5pU%ZZst$Ie$=4|w!+^XAH$>A9xK{;3c&-}UHhQiT
z8k(a@64nf*=&n_WPZ;jOafx!k|M4W!Tdu=PD3*Eut(N@zj-%m##Jb`hMcJ|Z;)MZl
zfd1saF1$A~nc0HwFnr5ns0ZX<g4jaVq)F};?9e;u?(7~0T$hMHavlOJ@qe^FO5;re
zPd-6olg{wEFgS`ypXcKP(nmd9OKSo-_BMmM8EYkBR}0jd7qh9DXVJL|n&Pr{^(dw+
z8I~=oX>n7jUuoLrIkvK7F?OfsK_ncYNTz+tCuOwyeEnJ(s?=p%v1Du=WlY-aS37Y@
z3bSPtwfyp0Tq47+tPr#3%t$$uySk{e;$eo2St%tcU+l>Fogx1;aB3t)=f*6M^Ph|2
zvIm3r=653<C%c%N<U{W@3Qht6#y1GsN(7!PxYn=b_hy^wJmmt;+j?E(g7N|?rY<^A
ztsY7A(^5;7g%6*OaH(NsOr0)ZB|uw`4mb8CA#CZZlml7+rZI@aFzGH8_O6OIwc;Os
z(02O8l8bPq4se^!T3XLpokqNqWYa6SEu<y)tb!>T)5YW^t?1d^SK%Cq)R_mO`Ox(!
z91r;l6Ee@-xyaessatD6IDSEDtdDB@+FuDc^DaFX6|((0>0r!<K3KatAtiAIAaTns
zwPr63f+}6=vZ=66W<1f;UVIk*pn0PEg^-SW{(JXX&b&!Cqwq8f?<$6Xdq%=l-Q2XE
zJYLq#!unmi59?y|eJWK8k+8b}kZzVZV1-kb0ImVJ(Gb`k5P&Hq5^^9BH3At5$w8bK
z8Q%mTkT5)fGLt|VONejMdFq9PV9^{ENI6OLqeg(68%Bs`Ui2=`SR6sYQw;gG`^YUW
zfI&oIl18Bj30M)zKZ0?nRI0h?Q2!HI3ZZ`xYroa11JVE}JRq1>>IO;QM_gLM>XGE?
zXxr5tK1J~JMN0)^(YWhiUj+#(1b`*cvP5h5Bmy{A<ccFjCu}&29JlA+Rs9H54L=c1
z?H_vTj0~+Kg!+3QFAG1d>zhkNM#nFyK1sFx$AWnw`XYb-=F!$QP9LE`h<LGmXIa?a
z8SUS=7HhwssT4~I?g!8BHffNOhrQj}Vj@|py*x^g+05&fwOPNY()%+#g9P)yHQJ`N
z5Zl_(LHq38U6sh#oM)mRMGuPgQ#1PSm3vh9{_{4nw2J7D=5N*3lZ;_i83>#e=KYrQ
zSRcoR#jxYF-sTM`uYzO+wWOAS()BT-*k~~vWldFd<y5rulD2|3_?q8mLW$mz>Q~Dg
z5TO1nhhHtXM5^I#v#c=i=Dz3QTIU7#BbcJE%#>pJ+4_x)Ukk$f^&F#r?Lb6AL7Rj_
zsZpPXaqZZZI%~X7{nV~1&WEzbhXG0^m%FI;RlBK;G(>{8AjED;qUno}N-du_T7Z?>
z{Vk2N^4v$16B5P{D>2!;{AQghhJIGSU2dNv1*l}-iWP4+)%*c)8zQNM#yXoGa{5ZN
zX45x`*Y-YRFIPL9kS}ZdL}pp2=d2Rvb~l#GFz#l{kTXed^Au$@IHY<4wkLU6cI(YC
z<f8kA?L`~xb6JfciDt2J-yO-Fnf#nWAv4Z{W>72z)^9o6?>!Y(Js5I_IAlATHgB%C
zpe?dQ{&IOmO6cf_SRCUz81t#^%hgbK!zbzdIS}t8N8`g4-&-yesMz?sSV3ROuN#X4
zoBEA+WYI<LjfGhrsV@GzE6cma{`*PN@q*H~Y#Z<BQUpLL_F0Ax(xm?bZ*KQ|J(~6Z
z(r<V`YbZk-{~VtXF;9+J`l=2%=AwRd!f}0VaU4tXKa+oSu6BH`{YXEXB18Alcjx2p
z9*-^#2hMyR{Rlt)5&h^}(4)(YM?dqAfA;TQmL30Ue)PNR4XpMURb!;)_`(hSBA43q
z@32<!MBkrYvMZ&rq9Z-vr_VENm8|TO*Oq|a@&RP!iEU`4_L+9yKggQV)*v~!$~!3|
ze4Hu^CEz-#x@24zN%0zse$55DS`&r6-5!4nZ9Hl~2IUbOC#Yy{FE>D`I@wKHLSxsM
zu=q^gn@9LW)f_U;Q~IZgZQtBuTi4yL9n+s+cOrKcbelM%PG+UC|Cy!`j`aIRF>HvG
z{_cQVpQzt=P*04eco-pgI+FuIzJsED|5=(2Wm0nu#B3Rs(G~EICQ`#LV!7$iVABV1
zfj~Y^`54hakisjJ`svqkU!VOzfvpKTDuIXfOVwC2wnDS<OJl>CJ^|4*lR6zkaVMIw
zRM|GOd0Tmb!XTr0Gc{7v(!SjKrI`j5EvI&MKk*CSd60~<0l&iOMZLKRe)`14^3)a)
zRjc>CVv4*q_A_Bh?#;l}5i>yHe&D6L`!7-O!Kb0`*s-hbxS#O1@^oy$jW1PmbicNM
zl_duMa3OVw8+^D1A0vemZz9X(DP<HKaw{5|j=gF6ao3Pnt&2wGJ(-W0yC@fYO%NU!
z`j$(@Qcst7VfhXDLxKEvkp9D#CxG*_8?QL5tT?k~MZb%Xq2}cBHW3{FP6s<3bp{*_
z24iGpc*lw*70x=ty{$^$>sTk`^xAAOnZ{`L$G2}n+yN)P44h%J2XPr<=?wBOthv75
z2i91(H_uwq0VG#}d0sA>b-Nk`M5C7jN+EN~adRqmGdJ^IO-!Yzy$Bizb&|c_)a4FA
zh4aaFGODxBsWZ1;70>ji>)&z68({l#rq6lduB>nH`+I9TlPP4u4#A>Z+Y}(h?4rVK
zYs75V#B86MB_h#h2+Xpq%*;kpR-l@2Au}K>Gk-ekb@TRi;C%9w-NS()?=N<D(sfWY
z+4Saff<<<osjQy0r=F|x%awz-LzwJ(Y)!oud4279vyo!u@NFxlK-cxa*65&+r6-;C
zPxW$CELkZXS)cTLR}DbJ6pb^TzbU4(`0I$>WPm@_`S4VO%n$N3knFy{8RIv(@4cGZ
z#&P@}uuF7KyhpnbsJ9U3=U8{jdcu8hdl>lQ@8OHm3e)>b@gaa1uiL=)#TnLKIC>|O
zH^ndgoK&lwuM(@5(}nWhv!}lLuAJ~CX9?mQqilz>%FPBk<>ayC3Sn~fI46ENlt19C
z&~Uz%q~CUP=Jn>NzOh`5xpy-KpwhPC^4gxcwu5moqo9wiFe<fZCa=g(_m*?MQ?c_i
z%;kI46$vk=fZogSTiR4eDa`wyg|K+c2bE}E&QA}@TZX=#N8bLd(ciOUEXQ%1pHS5N
zW%6Q2QErN~uw1~D`mt;!zx;LFNb3%v64TdnSu9Z~C(l)_S(v>utu?GQq{;w8aY<-b
zOG8#+)ZB%_G4o<LjNs}lch+2<P-i7N`1g<h?86BQj-xLMAJ}2XOAE(^F!eI*3uBmx
zFty3_-K)u+Pg5A{H`ADDVp!Y5cXyV4^0%-4kaFj$DbBK6C+RhBc)7(TXNF7Xd8?;-
zPpp<5gY1M$c1nL|5Ay6am8f3w1gG&(W%3j_M06PZR=!+S7QB2TZ>HQ&;+l8M+~B$C
zjqGd>N3OWbi*~KH3JG-=d50n|OCdj-1{f50vPyLRD`AOzuQmLxI1)4SYY1~DWpl2<
z`{+mJ-C{CL|KC&Re>8)C8@#<KDqLpv48avog3>NfY@wJK!il%;+i8&I-oNX5ImEt(
zpwcf}a_sr=cM|~Rqt_nf;J==w`opJK8vHuBt+z}AgJd2K1ReKt4wpiwHVWMS0BW}0
ze{sKJ!2aPq(<)(n_~G_D*Ag;ThF*Y~`x@&eTSh7Scpv}Q|3}hUzcu}aZFtE>494gl
zqdTO_(IMSPIJz4Z5OEvbEvbwYkOnCcN2dyi2#7jDBt$6{<0~)k`~C%=U!LRmJkNFC
z*Lfy#o;W*MHw!k!zVeLUd7jWi0xZSjH5T`~LOsKNYytjyW_>o1zwafZbXPJNL!F7)
zH9t;q@Uj#09J%tse)*q3Lk-H*6SW)1<Kj8z>nW6MA|5}ZJR-53we_K-CaLJ(RX5>g
z27n$_j<&fAt&uEP)=SrfK|P85>1hnxL)~v|4GB!S-*q49&1?-F4sjc?9i5gRF~oC|
z`**hP{p(8TX(yDv6h{ss!5$k=_|x5(HgO9yj5ZBB<dYL5TbnhD75bJNh48tq5ydlm
zX0W1wfn~7?+?{mb3;J8;WOwnKYvlmWB_OXGsG~Yf8-$VkjpmA*M(eaU$j@}f#`vKQ
z;+BXeo00N7^Vs+M+_*V`^g-u6%p$Hz@_Ju+)4<Fc=)H$HFXcQ)J|jP%LLb^%Fg{vx
z|7MJt#P0YquV_hPckRUNOLcU|V-qU<IR7COBoxykIjC+K^COB6`7Ba8hbZvrD6Ak!
zHb*A`!K0PPZndeG&LZVDR${efkj<kR58<%hHp&+=d#JZ(MTNL8<+{j@$Bw5{!-YwX
zRru6$etjBx%gzx{0=2ly86<p%46=7DYgd!o(3VCfixx%mSEVJumen*ImGL4KmGJBB
zDwkhKrJ-lgD2ctG`bubVy%C3ys2)$JV~}j0_kKcc-=gQSu`v5q1}9H{y#n8k2hp;a
z<)@Xj<3P(dVfM|@c&skXBkT>hP(Ziue3gEVlJUj}ai_G9el}nMqYFiyQ<+BdW4_iY
zh*l$vn%w<u+-I_RBmgTT3H0K&|Iz;=i9T0w7*SH7R5$f%Onk0m?E4<RJzXSFAIkn<
z{A~ZN#jZg+StsLW+Mj=jOgPg}8D*$l18k<SIK%-MQkWx2U`}V$L-J^BMr3sn%G>R_
z3|Ap?dW?pG9ePaVj(c^*vcvmO=~&bOqH=pa<I=Zn%ijzt3_FIv9FGorSzMTN=;TC?
zo0CG!FTy&EQDy9b1{iwm2AEz80DO%0UagrH{?C1JR;1uOV2aIrcc)Uf-bLGZv=3Z6
z$NM^}dYsJ&zmU%5syAE-WJe#4vrRk>f5m;U@oN4X9p!jjJY?3B$m$|lMGzOhqphS-
zq7gbNd>67v{dq-Yf_m#^p?{*duxvph{M(UqHAAahiZ(_?NG1#VWy}TxLtLjUF<B>#
zg4tY{n|M`U)!HO@zUuC#!HVhQ=J7%Qy-s2f9=Z9N7Pk9CFMLv{*Cq0mzOw7hx8BON
z%yvOyS>HGpuhFWNtKbQ)C#640cl+Njf?3V2(XW#JNj<_jow=q0!6#UXo!+5Yjho2V
zi=+f#n!re3T6VcC`;BCg^b$@e?^h!}7NnBsc8Y;kqn8uwN*_(qu_M{rG$6#t`ytmN
z2U7qsq}Q(|$3V@$uGnY5pYCH4n{bAt^jrLuMNtCHBkk(n*{!`)c|f*gsIx29>AWxK
z$y=YN!Mz`o)k7Gnl7CjWP1<=t5RxlsDC_T{KUGgf=($H>_Bg`sh@1-;N@h#Zh?o|6
zG#D|fSnE8VA@8@d4%1?<f*=)ezfOczilH}OYpdZC-pDZ@-dy#4^z7EVP+zrEmhjKd
zZhyQ7(~90m5gCd`-Ml>={i)b@DCTozidO92TYaq$du@|icMf|$58e6Z-}bQX+vJ7F
z^SIMjhF9-?SEaeJ|NUdi)%ahZA3gu~=H2sM0P+WHBRo&|-03yI5B1;it9v`*lz;S7
zRrI1dx=a9Vz?DMsziAJ=-4r?c2%t?Z-$wWWc8BXvDg9+60C~_rxTNKP0yh?dA<x7Z
zML-evvyvfk?sQo@I_&YYx?;O7$=QM!-hCv4GGvT=B0Hwxhlf}sZh|Hi2@I(?Fb^Fy
z@--HSsvr@gqp@uUDhBfRJ9LExi8N}YV&+;zrdIP5ldl2jDj^scWjf94H6^VXtC!8T
zu$f$<QmwT~mt$Nwj{ar|Vi}yzvzDCZ<41v{anN9nOIU%ZDv_Q<f+}7}kh9SK2G;i%
z3z>#*JW)smOlsHWa{Fr|p8PbaS+Ex97&8)1>J!!(SqL;4OTc6#w9s$JW0)LMoI>*Q
zO=rNU=n|F|b5*kd`!4=-usP2u@V>?h>c+aB;d2_CA_F%C@KhA98e@<QQlX$3@Br7f
zH2v5yy$Y{O=bxp0Qt#YB#V>q<8q*@cGGvP$9!;JMa>CzR=z18oqQ|(N21|@@u6+M@
zS${MpCER1U0s;NZ!!B#(YMnp_k9N@lm$WH}c2?0lifDYIwuw((Dq=Btq<XJ0DW<=h
zMq&lU>o|aj+h?LjBsFNNn!L=3C?tK_#nWP{trJ*rJcrC;7sl$3Kz3G_5j}ELv_;jv
zGn?^VAY6P%G^UyPY_=TcctE>WMrF@v4Dp)67so<Ug&(AdOvGx_?#KaI`{2z<?>)!o
zSw&fyCuBuc@DJR8Z%wBaB_;4SFl)=4p$G-B$N(MdMa#01TvDghydGze6OpwR2x(DF
z^?Pht_MG=xyPIrFu#I|M-%GnEEY*_EpY7h7zAu8uypgy~3|tjgL0b}~8U<JnswYei
zZ0B5yN?mX+idH&wL>&3%-D{8$&K_{;r(o~N17xVuz6R#}-9s!Bjaz&#wR9MT>dCCD
zBi6oC57!dtPWurmyWBDL9d(=L$jN6K0|^7cC?gl|1V4ssfD15$S~t=Ypvv2JCb(B4
zYc+^=tf^VVKu+wM-x|Zw7f7TlncBYH!f)zm{8s95W~IC+Y&Qkkixmyi0u+CfBm-YI
z6S+*VhR9x$2pxN&YC)$?Y(E;RNWhD-<q?_YtrTVlFI)VX^7ixo(1@^+Jc&dQ>r$ef
zWNL0uId+ZdZ!mxcsml{w`l6D`iZwzQ6x>hVW>)E^zS#qQSQIY7p7X0$DWp3)eAtr@
z?4&Nk-f1>k;aSK-nWPoP*S6{+7#%rguM3aB^#HG_+F1>n0opki5wyZYGBn;=@v&?0
zi0HvLsI8AeHqU>^P)?5N@3K$K?2pPWzM_Vg<7w#O)|SNg=4#7DA0mo%YY5Iq{nQeE
z290f*c*z?AQzgPDHEYd5DtyP#U}LbqSIGgmdu`s?Xc&0XL<GA4nIB368}#4PQDo6z
zi)JN8t$8TZqm>PYwj0!JUogn+JsSTe`;p+7@ZA5d)7Bo!LYmr>5|w|dgzT>KQr;6-
zDX+KAu6H*~Kr+<zmzdb^#XO1AO}X=nAJKdSyR0Tuux0iz88lQWJ(~tGDgb9NIl&9Q
z@2CrNz#oj>>N2ThrxoXHX*lOh&$=$SG~659#=TO(X!UzuRmbc&m&9;3=~r}wLicr-
zE;CeY_Py>n6Ia7KZ@D(j6uB=9ssF9$UOD;zy2^uY=W7QDmH!J5Rv~?vNK+Ro`Fh5N
z{qKnPvFh$M`ly!-|IP0{)9phWWJ{5NGp)XtmkO;tpY0-uWCLc3k3w`);NE-=)B0`F
zkn}{&5)x)js0@zzs~~t!L?#zq$n<Wb;PuRL`Z++B7GR$u%8wAlOTAE^_$#hb2^VzK
z7F8K6+QJ3^1j86eFzn~2wJ*v&QY~SNACbRke`6h<7X3cu+_upg6(E1k7^2~SE-d?;
zX;-|`Pkk(RKp1c}hzwIc=a9qVQSDt3VZgX4Efva;pbFOG4{PPt<LF2R#5Orb43B`*
z+Mk2z3ZYx)?0;z!{=2x6^^NxVRi`T|gy)r9K#2qPaeg8LGfPV}y;2z244?8@9Vm}W
zdTb5UKYB(P9g$prxB=!6GHN+M6&Om;Ka0qdBeX@J2S-jNIDjw!gkB%58M`+ukJlPq
zk<<X_iui*l=LsxRGK$<%SGlVH-GM@6TM%F+%?2dV5~3IZ*NM|&mjl7%^|Xw~G$eK9
z;+W;>o?SU>QrsGo;}}-Wz_yj@!eeL{jeukQ8G?X%btHJ}vhcqEu=CQ7yVP@?!c6Hj
zf2e7XmX9*#4mfHcBm)Rlr(-95x*9k=OxT#9%D7r{hkEpgI8r!liZiug+)lDt=dxxY
zN2SC*j=cy>mKUJaKLW5g;%^peKbRl6ojAF>F(NJt{8^$zMV^csWOE*vj2oK_5mi*k
z>{rKXi@J}hklJ3IQ>z9wvSB%XCS;+GChs+aSflf)!w6+!Q`mBi-ykq{D^bDnGUunC
zS{(cKI8&2dD3@8m*u@CLKAoSL8-F%=SA)K6X;Lt^$zn;kqIL?1173YR5pm8b7tIdE
zT|wlg!*B$vm1*22Q4`Np>jkV!%&0e=;@9p19vM@G)u<bdW<k<b=?D*)6HvJ(30Q(N
ze2O!%T^z1cB*^`H?UCkuJ;l!`aTP2u*j4Ld()@Qq$csp#)58Fs0v!p*CCu^_qtO>p
zbCYxrW9V9dueGJ+250`N`VWA$3ZWgD`AT|S%!>d7@-a^{kr5!AY6_Z5)aO5{*6N$~
zHU<4GVbLGEfBB0UnXPAtp4Di05l$LNh%@#l!x(X9?SrOHB{~6=xpY-?;6`?U*m!y=
z+194|ZGH*sZsMmzlYu@WdgP_}yg3aw&tlZe4EVLt$1nfML%wm(XrSlp=I0Fe%uaqo
zK9~-_jvL=;CNk%mk-`{=+*4P}H8Je3$bu|NvV`4cgFPmTx4#Oga_6beTNe}OXvgQL
zhwJ~!<5~NXJnx9M9c25F5~UpLOD^B__!o+o%0v>FRuifnO?+u(W>J!I_k!^BSMAVg
zuJ-%^<X%mi`4mLtZ?b|5a7j|t31F=Yf5|$Y7(i>x^+Z+wuNn&ajOjm+KAkwSF7cLQ
z^3Ou(of0cC$LF|n6-mW>MPtZ{=<CJk1r5q#s?n>TI+um9YQ-Xm$qIO23nbH?^;?iA
z@PJ_`f5FOTfv3P~u`I=Dl|30}<L^iBVPq+Mw0L`$TbjwrvDCuw#k~3VrSW0DD`+6C
zA0Cv}|7QyScO~Z~p4NUI->;(Zcb?(jN=HKp4Qp=Q`byS^2HG}w<14+X5|xZ@N80Es
z@MR-}PeRgfJv+O)H{#@UCOhy`a>l<x#F`^8?ssOeGZJ%Y@m|Rcyok=|i+%%JVOP$b
zc(`g0^*8R!O$dEM_cHa3?E^b|AqU52EKaU(t{2fX8G&6tAwK#o$4Y_rNc0CK=0iG&
zw^*7w91U9xv|-o5g@q0<OXC~qxI<2Kx1;T8AQIj?B(OU;jK8I?S<XGl8HeX;W9Sqe
z8Ky~@;<+o%Z%CYqQ&EapNp@NH-elpEvI3>jgQNx-bJJ^axzvrsZAbc478YZKp>Qt4
zZ|sWZT=pUU^)J0Oi#Ka6!CVS!1&GrE5TN<>N{jS@#69FYU*r2<Feu~-8)A#-2V{Fz
zri%NITD$`#xqwpbX5{`wUvB2?C8qjMLt&r=WZ<8Vnkw+WU}Q#g;@b`j!qKB@P4}~-
z;1hN(foY5)il$SDcO9<pOiI>0tllLGv|_3rk2f<fvaIJZv3jU3>m56*_%T~j=fA%B
zE}aK2xCgb^%i|k{4L-}4^dH9n-V5HXSwN6w1q()jQtv;xN>Nx6hTmV6N||Y4U%gAv
zHFh=0a~`W>?RinyBDrqf=t>E`9%g&PW{+`2sLlRYsYJ!Qy{)z1Pd-*}=sXtZDXW72
zd*4vHn#u$(aiFtVxjy+1fo7E#%OaFOZk4315IYm#rFrnj)pD-k4eCcXs?<o`tGNDI
zoL?<_yn9uZe531B@jXTgj2|ZgchBl8WnyhylygtLNTqz?+0Zy=fBd`jFMC;-HO`5I
z^BJV1P-g$=Zwj)qO-ph;{xuqu={lW;M4i9d<ETJ{do(*;71MeyKI9=pwI!=0AS_)z
zxLQ86hpi5p>r>@^u|IhD%L5_jIdsg$E>*51jG$(9m)qIW5*Cmj@|<VnS-fPFIdOw`
z@l1}2U*)!u|3`X3Cv)l9Z>O0g82s2WUG_Q$ZkzqswxIfCN%hH`^^>*ICmVxLv_hY3
zeLmUW`sAQhXP5lRss7XTo=+!vpPZLJx$b;&V}0nNl}BsMOV7zhE4o>@Q7N-V%9=*g
zrju^}MJM?Aw5RzLHuwaT_}p0b=}Iq)4zIqP{}7Nydg0obPyGgrP6>&gfba=0)e4?@
zQ9Wv^DpbtZ!Bo&~AR#mvb5oR4ytA6^AJeV-sW*9_-Hoqa6!gQIti<}c$4sLTVTP$j
zeh4u!>67Y7>KcKGgk7D?<PSSJ_xb*EjEHPvrE|CG`)i`<sg2jlBIy~oxK(-GkrXV@
ze@mUow7Jl}`HnP?K}0QEr{~pl^%PPqs=c-?)4%?Sd#PKk!S6k*>wx+mc=iV|TD1a(
zcKT~ntc?@3=(SpNaZ45KlQh!)1FF5QdcHjRd0+#;)S1V#+9!@TZ~0Ck5|ABwM5k>D
zs;#$9HJVtK<Y7h&(-RI-u=QC*_5l}I;8UvpWXCU0hrq-2sgof=Dl7QZ`$?S!wMnV3
zKv;s5eb5B&mps3EwIpFS>VQ@kzdHs8%RAd4td)$82S8kHO&O{tfWKTEWNIW<hG}|N
z-%)X0BrWz)Gzj)lIwf2D(Y>|gN5s^-+9I1uqID?o?VaMmibaMPsl;C_Y5e`=`TQHL
z`_NsnxDQYgYV{5%<XuQrtxjXziRjJ;$Y=A~M{%h)!c%W(hh~t!wP$?J%LiS3Et<U3
zsE`Y|4y3=9{PlV%yeVDuaej#Zf;d$iIRqrZQ%41GI9z|oW+52*mMZ+zDiG)lxd_Og
z-ftN!X=Q7We#F%FTrs>(3Bh*ZZbcqw(Ufc^tI6Ep1VH{2n&D&>V#dA)8FRfoU<nOp
ziVYuFYg70x%_~CMe0Dz~Ok?v%pCdwMeE;3+qZIAVHi5so!o3pjQjZtm?X^6zf>&kb
zZQIcn<*?JDg_lL*<hG36ZvhL!478HSgNjd_GUsb2zskBtKdBq(F{l<73$Yc^K4n5|
z$!eyw`XD<J&~m>H=RR*nKCzZzVTdZCKei|~TuG*0-Fd{aYs5^Em)Yvk%}^+0?6s+3
ziS1Hm*S;D2M?S}@OVLICP_$d*;E7nlcI0gLbJt$w8WCLwd7Uc?B%_`PT3V-%ih%`B
z_#UtL(lR3E68?pNXrh5F7fPufv)|K=mF(Snu0MUUiURuA^vn(RIL#{Aed{4Wlpk;_
z`%Wfa<GOV-^2*posf6tEAA=|=zLuy;rS0$7py5;2-`$q8Sua<+-S6D=_Ee%w6>KU-
zsWF@j<A2;KkhuHqL%a<Yo~bXn*CIi;Pu)?)f?X)jH~Np?&Df8(y`kSri+S@N=Aa&D
zD@<sV(+)2E9?ap|&+a;TU?Kj)d9?6Ouk6v&_beJX|JYx2YQ5QNHFvaXQ+g|l``>K6
zo_YFIcj_r}Rm*AQyvm7CdIyih{^{;LC@=+gjQt*C%50k~p3Kk~tkvl3%AE@&zSvTH
zb?2!YbJ0SEYSpy_wS*I~i%K{we9*J`PqxOLCx&-8B9Jxq8Hk#=CwExvQ&ZT;s+Bpa
zeQYeSna5R6&;QIsr+Ykm9HYtS1zMf`8_=z}ZUYKldG=xSNImRs&lS^`-&9^1YRK08
zqWJRW(KoNlet-VyKVZ;MnDZ-|xmzFGwF8b!55Q!kBr#k84wIrsR~%|!Z|yrkz9q~m
zYK_p2IR!EkS(zCl=WcoAQ!|qi%g?|3G6ZJ*(O0w6)?FbhNQ2n*Y|-p=N^J>8sd~>?
zjl3R-ere9Gb|_fVk#{TD0o)vDDl5yA7(Z*ulYaI4Zjdr9*M!w5i@D`rt(i@slrwGi
z6CIs%{wR5(?GXwih`LCwMX6f8DU=u94)^09*{oIpcqE-|E(^ln?k~!<A7L2FMc$3?
z!o~EWtkH?S%9f;Rey?N9x?1j?vuM>-FR_@|?*7aNEze%OKl~5DE3IYj780NRuyyF=
zhp+$WbEI^2Z-iQ0ksawz&L6n|$x`@@opPh)L8g}pucR9pwb)japkb7X4*M~(f~V#n
zJd18W1nS!sXKVa=Gh<s|JLu-Zd}36SN;IVZU^O*gCCD23P}GSa`=OHsLun6)!0M-y
z*7R;!T{#wGDbq2iIQa$I?PRUh8BXgn(4GW}^LkXPk?WC<+-|AH5EiYdncruJbUjX%
zP#)Al#sw{oG+!WlO)jCd+U;p}f}FP9X#RsL6WgX0+vR$oudZV!_CwPfp`)2=(Tj9k
z2ioJrH_^hPWZ^PFz0njV0Vhd?-mmWm?_7qo8hu9_V;M5#x4*d!-3=f&8(R?xXM6rW
zN--WdJcwCR!8G~^ukZaitXiofH9TRuS;DP>;n!{Nh2HRwrpeP0sk3K2Z+$<0cz=7N
z5ksWad}c{BDug=>)6%owTxEpSwihY~X)9Xa(@Dfp02YGhBg9aWB~g&)M4*~YFq1!D
ze)(C^`|HP5@*iWr^YAZTTRTcZT&7>q4vB{6P!vkCP+>)A-puepGB~Vn0w@EpHc@;;
zy;s8txQK;4jD8aBbB)(9`_>%Fs2M;+O3nWOT@TC@dk45CKaIWVr|s|ZF!t-TZ)N;H
zYCjUOhv*XVUGk@0x~*x4fpG7!tqHB^6WNE=W+e^_@#oK!0n}(e5<z|~Ot47tADSN&
z85)PHGioCBiYcaR(-3QoEcf#oLOBR@`OmdKr{`X}7C<&fMd^@wTgP8eS6-ckK#4G_
zE7f&|VP|9*MlE&>p1Yq{g=ALB+vj9r>91+mYznMxn>{k}ViHc>WmCv(8kW*~89SUO
z+l<)=K!0hnI;ahaqPjkEim_@#Iu~9l8t9d=;b03>(g7ze!`^-P&)B@su7qsUh-u-A
z%FKuv@kyJ8s`K4~UCyaOP6rlisd-}lA9}oL9V&_T!2g?KE}aU7dS~IquO~#h0gJ(=
z#`&f7impEOpOT4^*dIxkQp?ObGhlrT{|_$jQ}xS8OCdO_&rnodF<VVDBVU9QajNZt
z@y=Bw(oO1r;F5^G=DqIZAf>zr?!J{MSyVLB)bXw9&JWI8EV;ewaWD=c>VXK^8j<3;
zFH@b?JS_&+w4FTTi{W%%^l2Qr5|4Z<3E8c?%aYOVOjBMizZm=8ZnN&aEO~gYH2g|V
z=~Ut>!`-t*3yc5Gq`1=ko`hD+>rlZZaoV&awjD$$o$2MqxJ+sFFp!qg5k+ykP&oon
z(QA@S=W_;Au(XmDmPDpYXzjY6_D^vvsH>I?WpxDnwhyZjZNWhquy`u#T)zMMQ#e1V
z-}t>;%=mM-O+H#>__hL>sIYJd7cweWD#SMnkdOG}DrUFK=AWZXaVhG0Y~1t!UJXBh
zhIUoue`@&Wjm>B<Lpy-habB^neLjiaZ<re04xnkrs|snj(|G%}2q1wpv-{}ZORy5K
z@H{776p02cnwXYJQLo28;EYz#oz-thcbMB`J@7Cz)K~y9?BYF5Ml`<>EaD(e9!!<&
zY)t5I(7Me8P}p&pcEB9&bOQRL2hUCTZ~Rt_C>c!~GZpv@3t_-sR6dFSoTQ<)RhX>D
zeP!V1v!kpwXm%8axtD)d7;=R=<ncqfoU}PF@yODRKDUU@6iinP843{lXv<Cl;Ty0V
z&;}6JoC07i(T_J%A-E%7qj(N2;4thkOyvlO?6wRKD<PL5m+%7Y<Z}4pf;>BZIDQD5
z#2NR>w7t<R<b<hWQ*Q*ab_!y{qtnCty=co|u*iup#&Iu$%hZ{`g#mJOhZl3|>2O7r
z+MsvGASnJ=(Cg@|2NHdL%h#jX?}b3BQBW85Kb<BKX)@(9E5gseIuYY&+$(`%gsXfs
zNVc%_$bk7>uA@#s1+UJdgUtyLO(Y1?Kw^|F^-;W_6(JVKM+R|{d{PTzA$ZVOBbcS+
zgq73$Wv0BT#jkzkaT9w@Y#}6H!e*j*4e~r0-u_ZH(0;yY8R_25lKNf8dv?{zC*W3B
z#bL8A?33xILQmjC>_UL`Bp%+m1u;4$_jb#zy33N<XR(0bkGQpIUi6czbL^|Ow6Ior
z$-dLTy(wn&x~g7ouhq$+ycZBy<s;SO<g5$yd7AufV;;PI7;?Muaq_lDLcdOj6t~eI
zs_j;H;HF}m5|Z-%yv(PU+;SNFgsCQ^`{&RuA|u-Q_#@!nEiy#9oxnhsGrv~DBg2^u
zBnv~h?l%v^TV<^iu|%7y8MCiAEVUNhg$Gjo?a1L#SgNju2kLS3xMWC2#*It}lrNo!
znbn-dfCQusLPI5u!Yc#lJYQ+ypgd$;R2|p0phV2HX-H>5<rglF*EKvGvSMMKibPag
z)6l&p`9j4&JblIG`8pvMKhNAzcpUR0DC7#UE|WodHs)niYuAHsnV&Tde({8T=&HP+
z+r`qx&L>Kr$^8l1)su)_$PDSO;Y0ZA>BcS=wszOaWbK&-+Ao%U?S6C>v2U3XyR=D(
z3Ks?t|LkkO*--(&-4H}Z3$i1JWfiC8ivXqDl#pXl>_&cnV9-*TGDPr6M^4rkuhFVk
z=-d)r@N9YM5Rjwi)+A65O=P_YDfGRm|0b|aU|jKX`m!zEoAaN-|4m=|?G0(-^e?9`
z=;gp@0QJ8=$^4JWj&$(hwkHeU?#Z;S?|d*Ij~|BwMMLT7avxE-jb<eXXa`d4dd6k4
zj}3ovn0evuhtxiEL!BdepIvL7n*JXAd$0;3PVSj~g<y!dJ&NRu2hxfUWhe3tBL#K=
zG(n0fK_i3I7)I^8tdtj6bB#T>%NJ~iW>jqoYQx?jMpO3;I9bTSW&Lp*Ab6yg>KpgP
zOGdp)+3j#VMnf4bVm@8m5vJI!Np14hjCL^_k@>w2>U?=M?Z2z0*xuy#j_j1>#SY3|
z;=!c-RHI?7Oq{R@xd40I8~wO}yxlq62#AZW+8&)H(v;pktCe|HvGCz|3*mXtWQdPs
zpy1zqWnKT?_#ZH&jjE6t|NUh&0Fv4M=N1FyaJ28)HtP_;l`yEK=Qi=BXx1FI-3wr(
zqcL%@=z-m#{9u&Cf^FXun7qM1CVr3KbRYS1DaD?<#}_EUi)0@O^wj_L<gxP6;@>cG
zpn;j=^S(H!-T*Of00TUkWOTkQ&@?W9A>6M2jAwuoq>^JZ!)aLE?WNExRqX)aIH()x
zkaP?ZBS~1YSQ)%k3lEo@1tF(A2uq0s`ZvhnMIfRhSmcw^-$cnOyrt8I!p09t>kZK0
zgp7ta@pr@p;Cda65T5l(ClePO$rBCXz;a=%0rl<np-51AM7$drfEFd*Jp~5pfPS2T
z{%it(Nd&c@96mK5R=~A(MIqz~BAPLAv;CfcGQby(^mjzTaPXzGB=wF2<|vr`39dYn
zFM%NR#e-&qjgSLR%X8FZa!kFX?qZaIms%PbE3}v_5Doz9yp{601wfDz)rc@O1wa`E
zVdZVm6p&UofF7sek%+#erO9+a8+QV1M!emyab1oX!kcOEBTK(-ojPQO0thsJ9NO5I
zZr-i<Ul<7EtBoZ}`GOF>M`=|?(eQZ_nIj;DUwr*IjloVb08clb3}I*16~JDk*Y~A8
zX=k?X3k`|{wDbX>IE&QRG91_t&`+SyN%ATgC{6Z$5M`&+Y4XAm1bS<?F@6u6n<Lbo
z^IxjbjlN4*KS*vd?Q<V!YKrlnf^wP)!0oeuv#eeIRKC<+{=9A)?*dAQA2n_d-Nn#O
zjLXWjt7aES8ty1wA*95>6+-0VWGsVt=0T$TLP%=Z7@OfnL_tI(we~7VOHjzg9hht>
zp!G}1@COuJ6$>VV6g#1YN=0`)T{_WW(RgWRERA6pNWsyr6lxnMKs(V6jV*=o0-^$L
zQ(GHdf<!`EPXW?o2s8~LaAX4}<;Es52cH0)Icx(NLB(mMX}%ZtB+uM;^e}wO)c4Y0
zHJ-v)eIfst!s6UwE75EnT)wEPtQe_4#<={6fB9WhLBLzoeFawj1gOJzq#oAU0uK<H
z_uR2A9BgFdJCcGTxy%-<!V;+GA`q{vD<=2gH!V{w_$vgg%iNA2aDM1)1l0CewxbXu
zp+n_^r`mWU5UWpHn@BtVgHCFLwjabaj&ppM3re|dnEO*LlJvm11{OaL1NpM0;ozxQ
zcm}qTrvUR>_CZ-Y!$T~Hgr=!ID$9VwWFyP@XsY>tbM>de_7WN839JDfDrIuYrLd5z
z+RlrO+ML6ToE!Jo0Y!SH34R1F$10W<5?e`bgfZ#D-3`skX~k-@01-EdGl(I23AnH3
za?o~g+{l-$JgzX_WUOaodO+fA9)=dZrQsGy`RQw@T_(M%nCBFmUko5heiG~h(q#iV
zgr+6isbLqG>N_)!?v~LDUME;}nfn4mE{1tr<k7+rXtalvym$lGk{T1Fagtb}z6Oat
z;iu`O6Rd7nJEhuR#hB0tL?omX`3oqehU&Bnfi{Jnj5>JjNsOOfLfPtnda-l&PyuR{
zd<GitvgNrUWe#<OBTzh19wNo!@kaB7t^Pte<f^_p@p$o;*Cs8qJMt++klHU`rnP0~
ziD>JuVlZAJ;Iqrdbg=NJhJA&`hahoX!;7c|v7))fm{%hb=1o+uG52<3ZmxDp&2382
ze^S~aiZ5^$>FybCq)W7}K`T4tus5kc$3Pgb$X(inzH)*ffgF*3hGF^jDAfprIslPC
z&8I7UGH?ZOAk#v8bYHpr&3>oM!K1rMX7}~#->W^at+^sl#CQEv*`kaU$yy|N-k@91
z_CB{}(f`VHLFTP3x>5lF%{^t^O&d=Wl?Hi~N`hd+>u{4(l?1H8OT1NQO;<HUn6?}?
zda5Xt2O6|7P4B1sQQ)D`sqq-eUs9v2(a*LY0eJWt;`gVk*7(YlfWTR;nju;3)k*Vp
z`9^nL*GSqPS=#<Q+JL*l_7Y*)qU{$Tq;J=@r<N~7=kQd^<};)489=mFXK`7Fw<P6%
z%|uta@BF+9RKRYr>2YZ5g^mswZDR(<^oI1TY_<t;iTc;a^!YdSdkoCoWDQJ*`*{;H
z86O+aEEzB)q9XJRv)QC8nFqSN9DLqE>&HNew%3G)8Jo9F<ZZfJZ~&BDeMh0wE&jpy
z#E!!Z1Vv(~u^ZmkZS-{MT5c31f61gskiW!Bo4v5ljZ`hOWHl<NdrPdJfo?cC*>8N+
zR;{yNx5)A(-T`q_N<+~~>sp>-5tRfBQp&sQ@XY*J!D0n(om^%8Sr3}WV)MwvMu~;?
z`pr-?EKw6`0PtyobR-zmU5pw*9ZVG+EXHjlrmdzH&49y}v35PwOtiRhN1izL?oU0l
zWO0EBfnxn$w_H1+il*{XL^_N8R|oqLZ?k;#XwWBn5r6|dlVw!WZH*B?4F%yQS<F*6
z$@pdR9=BipPHRv2bvNvdXHV#sl<AwF)ank<@4ul*U%&VLdz{;M5YBjt!s7f^-+Apj
z)%4A&4-_|dt9zevnZ=JXR-yFUEDSZxRR7fpO^>@(en~}DgZ}(LfPPHl=VqV%^{rn<
zU?)TvgcGf1OyPO%=!C~+w<g`|`~Wv2ha_LTt_UK}Ax7pzl<#}0CqI}|@Y26EJu~N{
zI|1^H^JOA{5=>tl%w4?9^m*|v%!f$yzFrS()X;QS^4U`c95?&GC_za++J}<!;Jg0c
zOy^-)^VBW#F+TIOhw}`G1;+n85K;>)!3%6z3n{l+Z0;}c94_!776o+|_{|oDf)_<v
z=mp->v{D7`o6>jnn93p;B>xML4(3)c3ynnu4G{vz39ma10uc?c#vR0{kEwdrqOs<S
z{0RULMT`~qia9NKt)6SC-qc?6wap><UPSO}&zooAF;C@gKVNub+mij>0GeHq`L=l(
zY#0_-j<}@AJ_(|C=LtRCarxo%(&WY4{8YawOV%q359gf{DCkIj-}c2WfJiZys)>Ad
z@QTzd!u`K+EyoLP)qxd(&(-2=bHRsE7RpfyZ*>+1xr!$vwb)vJl@8r~u_j~O@0SJG
zGi}@ryG^88O^A5+!SbE$PcBa$?*7AI80w9^G6v8D8_CrjJih%zr7*$wbqnIX_gml9
zb6sPvgm<j?P|N9;q`T{%;S<Goc8l)}!Qwg`p5Fy(n2Oy^4tkHWzWWmJVfp)AuPZR}
zZ$QWQTlvk+tGW2PuGrO^AFUQYd`o{1&SoaReh;&}OU3K(#o^|6p3XMk4=?oZ{A+1u
z(t>S2i#5%AZ*ZUlMSdLSp`Gzvee&qTFGajt?!8T9{5m%N`?I8{lS%aP5WkAh<Dcsb
zEn94FeVMc^zMNg8@R!JqeNJH%+Ez176y;A!UTBku=9La7)X4+o*x932X*j0{P46TP
z*^xz7+xP}LiCm0+J&`XYDgP#fOHEJ^w=IPZ3w@MmMoye1?feGbkaiS@lXs-g18>A{
zLqevsc~k9Oh$dP|Gvd3|)hWUGX$%jS&HW;;e@Ft#?Gjn+^hJZkc4gf}#chUCt{5@K
zyX{HFB>?jhG!1MM;Ui^3pNvFP8^7w_RH1h=QW{d+12Cp`B9l|F$v&ycSs#>>%;-Y;
z*3?73)TQ_Z{R1Z5ylhwJ)tSb<2!U~}<|Q?xH^T)fQ;b_Glo7|m;uVwrU0LwWJN1A!
zG?Q5*(Tj9sN6&Ht&{^QH<LHZXtZ>EVp`2It#1s;4^?5F=g60S!@blJ^6hwluJ2!x`
z1b;16$;mkS29zm&>2?U%QaUz2`~}Tg`M|a@by)3jd}^Nedn$)2>Zm05>xTxqBlbHd
zsp(*rtd`xb_FY}^8|jZ!z7G0*4L?3+szeMMWmuPfojgai^<~O0eJzCu@-=>Y^)C12
zIpTm_Jw*3Z(jo_j%Yor@FgbaY5da{j%1t(R{r=XZ`H$*kKRY-QO|h85amF8qhED$A
z))jK&Ff5t7A4+LZNGr5zFZ{xsLZd98x=Nl%LWPHxVZB-PUTZAI)NHj@-EN}Eu?&tj
zx`^}UaM&>YoO`t(!X_x6K{ol%gAj&YwRb=6S^SLg`+3jecLZOVwp<xLr@(`{Iog@F
zcmr^`i>Sll(%n{Q+W0$}ud~Tw|6OwT6%5L*^pAs>Y3EhCCA{?Hx1ZOii&XMUOVT7G
zolNfz7DTTy-f4`#D^?c5Uy|qqEe<b9bNb@l_D^GIA^g7Ly=dhHOX{JMTPHWRisv7M
z0y@|+-7{hk?2$VnHOW4u#8z6rO{lTxGW5Mxz1wY@lwWJtnb4``Rv;w)Sg<h_{pjSA
z@k6%<O-1LT&gyO8jxE|(Gr?lnep^ZWdlY@o*01K&*D|gdzY3C<@~2%0%}sUB@h@n&
zh@^PwHB!b=XZtM@0rOCQ^f5ylLsg>p@lDcwBhl%pTX^d|W)<qlT*)hq{$feNxZa-*
z{w5Lf_ZtTMbe%n;Ku}GdaSvn9F`+tjYJw`e|AxK?;A1AA-4jO%3lSQm*w4rKbVIPD
zXwy%mhh7?!n0<FNqo+X@m+Gyvb4D+tJOShT3NffUV-5w!o+#r{8lvzQD$|&7CXqCu
zmpvP2jZCY#4jRW;=loPRMngSeNgm6u!@7)J`O)XLSH{uhS~mbZ^9rxilT0#4!lAqR
z!#ZKxNNw!q&Hz!}P|S*AJ1&O{EZ`paj@bj)dw!gFBHJtcw%qM>NvQMtXO^l9QmTp7
zdeIc4uCKP4tB2xS8%8nv_67kC+e$GB9f<|mfwR3f^Q!BYoEj(Z&g?uZA^FX$eYWNn
z(p36n7m7l<9#`T>N@P!MGcF(ciD|leuj~b9Eh?-E#zH$)TuwrJ$9_Lp?Y(`$8z1-U
zbnk7iOvI<z;sjI2YnKTz09t6+dja7-qG7`?2sHUd>xz>u8*?E^Y=VU|y@77Bln(1c
z*&{5~fV=i1Y8St()Xv{1_cX1g-^oQi`IguOF-xqKGG>__%Mkp7xF7>B8VH-<ywS(V
z4bT<LRYo!l>O!C?BQI%07`gG#mk<x(eri=)0F+gsghGHh`bo?zUAT#AGcXJ@7nol0
z{^FTLlg3S+0eo`G?G>~g#Ec?qza+e1(`eqa#1<o&nVC&UMmc1+n8-Q#SL-Pzhd-tw
zu3$L#eV|DBr;?+8Of^~F*xI=ky|H(_%VMu_^17`~8(X3e(XP+jp>b_d*=1?R{yJ?V
zJM!mWZnDmk4W*xR;1Z|j*##YNw^X&4<jOS6IRmxM4H!6z{fuOI|5O|j7*IUh@2(Lc
zk|Wwvhl<J{ns^|NmWkdYZ-q=np#&*Hsex)$NN`J1&&j8)OIz+`KPvI5<$b4kxfwbA
zJC*vdmaE)ap032YTzUp`5lqeSv+Gz#`nb+_qm}oH;43Jri|AlNf+golKS4{_PidKy
z#9Ovoou$ROS1VFhWM3l89tZ$mk1ph&L<T1JCP(Yj@io04xSkVnd+W(cG|Z1&l~$JO
zLtu3&Wo2k_a02o5;d$|nr}^YZEy>njYos84)+R2I)8-yYelXvOZ`AKl*0QwkuWJ}s
zwDjmG_h+o$c~Lri-;DZ2h7l1gp4OgzCEy_7T|To>>p)AZreUD;<wlTZ)bshFr~55J
zBkZABHPq!lUO(8k{J!BWK>?4QO;PyWp6hquHN!2ctL|S(ipg2DG0;q7RvPZ(Cp~uH
z{O|0|jmrOiyuVioulMI6i=!m{a3D2nt*RtCq$3$5b#XopoUx@x6pAVQJ>>&HOA;e0
z@TQzN?VkL3;y*h)WHO8lmbFZQ`GF%QBd*aph7m6lAqY$EOqe7YPkrgVCJ?xIna`gC
zlpaGKIFC@NuMimGr!G@tGOdGbG5E6VcgZoJ`D?AlXo^c!<;DSd2;`b|h<=;OCQW|d
z*lmt$5#TTkvj}=z_3TwLf*Szj!(k;*RmpUMDODJiVIfCZFuR5Ucc>$T_0kA_8T8Vu
z+vf;3lagdI-MP5K@zBCi8H*}UuEPfYv29B}a99ErH}y0*Z$44fc7ua$#n9(c1<n9R
zFlaVp{eSLE=KH)^Er_$G;SU5}NO~L3GC!d}kd6STBM#w{>kjdX(A_}k_L$u|5nj9F
zboGZN{wh^OZj#pwt=<uyt@Ux-xGLM<DJS#DhfELlY#%k3*-Ioh07OKMN^u$#VmTTW
zm~QL@+>d!Rez#6XCJYE~{ZYiaUJF6s^}IBI6SO=4C?ACk!{+LC@EhWf;s`Wx3c3<U
zuOCWwj|>%JVacdrfEl)-mYqDN2+bt2&hO?~*Te2g^W!AbjjlQTCI%(RX8v!0sJ;Ix
zF2cL=Kjuc1Fmj&28U=#67U*P<Y~#MZ5EjAWX#n!=nI95s#w{DGxXGYr3g3k-q<9&#
zSBT=wxMmU2$5QAEajW#}-R$=NiFiwQU2TolhiK95QVY6Y>uDvoOzCFhLUkO4B+)4u
zdCao&;`8d-#GtV8G?y3Yjs70uOte$`_D^Z%$GsLJur;F_%d6Ml4zc!h6b0YeepG2E
zOCsgy2Wzsnzf(NPhTrL&qMrFgm>$HaZZ{f*YUjO6Va5ZW>f=MJW~<UDU=VX@h<+0-
z&5rf<(`Xey*v}2uz2En*cUiWwOdPlv<o3cH0^3+p|CDY~u|4CrB6}TM0)7%bo|DKe
zx02LzwC5b2?%LsRii~_*)nXrEynmD^;PURj+}D6f0i7s1C-JBqB4oWf%y59Yl1?`m
zz|DJ{?zHZ4!S<YeLXJKy$<^bfa3&Vax`L&NTX4T55kPrx9=E)M@=%kXCsaR#=VYvV
ziCpEFvAW;+$M4I_i26W?kmd5d;#|VggVz8a6#|@F);l$NRm*X?ld3PsNBKF&%kcZB
z6%y9o_vblY#Vnsb{I%|T^`d|JRx&k-+SN~&k8>f-{;c{M#?Rm?=VIRdvsy7%e|Gh?
z#nR=ode!&-7WdS&N~pd!7`q18RC2y4V!b&pocod80sv`^&w;XY=Y#Qpw`f4f<EN&>
zc@t$Ajw8i~>iA7<c=_FN`<%{F!WY}CTx&JAx~YsT4;d3FvX29%+N**bZSpoM>BvgF
z!bd>HpbPAB5DNhwF}2o&aEAP}BlZfQzByPvUHg?RWAh^GYg+1^w(o%Rwv(1`53>JY
z#LhcezWhf+WorxG&6^^x)*K00;vp-W@4-eCN{VB}wUg{0Q^vghhR<u(o;li-Z*>7s
zbFT&8gz!B(jBKMc6_)Zl+R!^$;)Vv^eUc6BlU~%xtJ=B@g&lt`{xpL;D8_%*>Ky@v
zNi#MXzNRt0@q3_rD5pszZo?EAgDQ(4G9WwW82V!c-+&_?J;y=Z9ajxER&Q$b@$`Gj
z{QB_Ae7Arr62KBoh(xc0LL{<w&W2%2mPlf~?5VH7*_tliQ0ke;huqjU>MJ!rX(6Tv
z%th9{K|Q@!KPJP5c<T)B0+rCm4wPqCVtea_XviHY4MUnCY&>%*;Y?2*#J&{F$9+t@
z@mKZYF14{tG9!;=V9&oW>PT(CH+l+Q@^^8|iyPy>zK<U<wVJ;f@MJz3+<&pm=uuuu
zd<gA4J}NXM<Vfbi@V(C6Q@%c@GoKifkWVgbBwo5&2qvNy&?l3@83H_M+oi}1b><8s
zk$yx|0W~aufAd0o6I6@^$zZ^qBT>zG;3EAGc!Lu<j9L&K>;wKwGjjp3%=j7_Njmt0
zwS>459<y%4t&jM1klZQ>ka6k0_*du2xo}syUxgHVgB<`yBA*`n`HL9TrSbEHOFC3u
zjJXFx)4O3%Vreju9+X>Mc^&T{OjdBCz)eTr7ox$;HOw?*1n0H=+#{zUQMwxb53G2a
zmM{Q2fVRA@(*+9&@CPaiB3{=pN{h2!BHndyuJPF$VZ@-#ETBSqhA>1f&Vah#QeOD@
z;m$NPGYi8Wj#0D380EpW7zIqjd9~&(TukWRzodrlLp#Hm#N@nZF54t@u?qh5rN%4-
z0z){F_4u-#ln$xhH@bc-?6!dVTh(t%2950TbCX#_0IZc^taZ6eDG5K*=eeGDjAtLU
zN6|=_Q$7_=1)8I2*(eZu@<6p9R2Tq6lfLHTAX8reoFvF~Z1Tm}XKqDuAS)TDH_2o|
z`P7`pr#t+p?-immivvk6r)o1*ONVZEG&*9J&x!C4<LGB%m-BQEiZ<__9Q515?=wb0
zA!-OW0PlzopreJjkhoSo+5Co~Tpoo~?G})Hw5~iaBdL*fI)4o-+&j$oG&O*-fN{Wz
z!tmu-%2iM+Z&(B~3nR1bu~<z$CO#YhqS~P+3$c*^)h6YZ?mX{~dGt}DrSf8BI@Vsg
z0uL71S|X@T<@tW*@gDI*>2U}<3V;(Pc?~N$y@)C!0_90-KlZ`A`kWSGl9P)>7i}Ik
z0?&In?Ra@nO?qzSf-9Z}+W;|6SlToyL2hT$=E6QtxD4&R?}G&Suo++Z_jg+xV!&X~
z2)<5Eb;F9ofP6oil$i66;>VD@DM~kRg|-EeVV*3v^FpVHQ$haXJ`tLklp}M-@8$r6
z3_ql&K%FN?dOgcAw@XeEsOAjVsV6D8SJn5_GM0^kqO!U9Nb3CsLG6(hc!EUfF!Q@p
z@P~r(GIy=s(=b!Uee+!-nzN{#m+F!m3h#B4-!KK19Y-(c9&Ik3p^h;wOg6mQ%qmd~
z8dz<iY1DEq#F4zd@)hVpqTys>$0{hy5VW6<YTKNGzoXC9m<%JkE6iWgN%=wbNHt!C
z%;G@ShvZT7WA?rcmQ*3e?kYxBBKt);Uj0_Pg+>72Rw9RFp~{0LF+Bsr>?K|e_uh7Q
zg{>OyxNM2{KwiNO?j<14KkDd_Q>PJa-RLS)K3$_{1kPr{_Z?BDwI#C)W3#O)ak=)e
z-%EtKVY81*G^WR3Uc1jm6f0^O7JK(=`2;4(;cLfZCHs@0%@<JdZZ@tW=^NVYN7{S}
z<8<PRXi0uX_=x%?)yn#S-_cG?;f=1jyUm`h;hi@Q)5hG#WR>nsdHm)Sc9eh{Rjb90
zrF$q1`|+1~@W&UN{MN%Q@3VAwSCMtC3IR?C9VhRt-Rs*%$y@)KZW@}sfmUtZ+~+qx
z6w<w~t7|Wik<3!Ff8vA@R=MCOy3*d1Xz5fnVf;RLl0D;n4J{xt@P_xfHW;1;IT~i|
zzDa$;#M~gD)VkHxGm4YiFzqjjzqHuTkiWaRn<y`$khkQRe<+`PcW_?z&JlLZ@N_-V
z)3deL9TGGZ*Ef%#W-noOOZL*)7i?%M`uQ*N0~I5)LTAJbmEWBNmvB~dNvN54t_y7)
z;~U*0G6RF?vWo%}!v{qa*xPcs*33)k8EaBNulq^VVqkBNt#J_tw?59ffTct4+I2(Y
zhhsh*`h&cMY*II+1&G$0+tw~r-Slt0eq#)@g`8{CCCIkasJC7Pf_eeV{zdrE8}^aP
z4t^f2UJZ3O&bo1HXuS&<)`L0F@!^}G)<TcOFeQ2sXqnxm<(+vA8kqXJDm^Mnu`$Zx
zw)@l@&(=4Z|G-yS7`-u|pi-P?Z4Cpl_)4=a=Y2M2K{iabGN$i`cuRil_ek7<y^p<>
zjjnR+E0XK9bZ}6w9Ec5rt|!*+g?Uopdd7S(!oELpePiqC%D&#=QHWF5ja6mCgQM*<
zZgY|MB5;J@?!8z^Lj%(76x&|^+mo2oM?ChQb+&fEKwszbTfsjJ2scFT5U-^S`LqNX
zVqW?pE&HA)J{CKh4>mNRu7|};8k-kQveL~a#;~gH6N#mhF>Vw^F^S~15s-t$zUe|r
zhj8ivLE@6Ua8WjXr^(|Q93`jLCnvoRu*ETP!lagdZeh=nbPjgoyWn9M_rzxx$8Pu!
z!SpN<gS#+72Nk2u%4gg2noUdmsbkL8qX%DuAbvk1VT7Ee-CPuPa{gv1FZF@tZ90{P
zqI^Ju^!BOAZlbjj=Ex{#L?kuY2%6r&+tZLy0>AyDKG$_Omm{r!Sv8-xA-i+@U6|O}
zgg?!C@cpjVxQ$!N`Fp_od;FG->9*4r+^Z=r{>2{t_Z_iF88N=7l8yBK;@n@wME{a>
zf6fi_Qt7_vG)08j0uXOpl1iQ1uZ(G?&V{7q3NmGF!!4utN*G5WaiaH@{IYV5()2ir
z`7n7Gn$uk$ddpg;D`q>z2KLIg^<l>fU4K=}=lcuctEKN$F#%4F-oLbdmQ;gF@TI?M
z&P+Im0&2RoyEp?|Wn-yL#od)vB6!8CFWJc0N4&Y=P5J1$uxiMfJ$3YcUEEBqeuHw4
zTyr|QRj2GrMLMbdNy`y?7bK>_{(vBctth52$OM{%&}9EJ;bfn+qzOc3l;w#GH}M39
zmb7o7HybZl8hcAi(GntlzaPE{=?-ac(%Emyt$O@a8?3VrX%MFlimeZi_4sHn8$ZxB
zR&qz@am%&GokqCcC3couo$aSItuT>xJRQA|PNTnQqsTz@l|SAN2!WBu&Tj*$k#m9<
z`?Jm|3=A}M121p#+N$>_Uh5tY{Maso8NA;!iB%Qaytgbs#%uTRd-NXT$egCUNHRG6
zU0>F_21GN4$R*S>I|!KDV#Qv0@P|M3PhXBR%I!`M%iJ%t$H2mDS23kG{0~cjbJr_p
zyy`oF>@S+;lD|S?>{hs*1rA^jxb|J%&asn+4!E9we)s(1&+t<D82YwmzUgFi^Yabe
zAz;NY*ZMHuUrk7bz<jgTQqXK-@(91nsB*=qdWC@C`lznUm|?}3CSvRw_qdJAxWnKp
z^NR5s+!LNI6Ity!u;7VM?#W1(N$1(|+v}I(h^d4)eBin*?!}wv7lI*DZ*L*=FDkOu
z@xho1jk_fXAsU?WLdwhy?HMbKNYeW3bB!5p1Z2PXi%H;WE^ET$QvrJ1`?W06#^K4l
zi?{;AN1B&kXAakG%LQ-@TM8ja74sH3U+CWmYSEBQ<V!`G*0uOo^AeyRk__zpAzrtU
z3;K?-!`!d0{I{5@VJp6(Df_L%O<EH#a;e-!V(;P<EDm~F4<1VIFN42DNq@B@MP-n9
z@1>Nt`W*gUJ79I9wtuj<^z}e;b0JUnbmr@q>)1eo``Z>Q=%3%BqU+kD|Dox;!`XV{
z{+~&R5qp!Ev18V3WA9CCuhOFQi=wEuNra+Q>|J}WSfyyi-Ze_As9G&mT6C$>Jf7$J
z{r)@uo$H))opYb-{dwK5_j@Jv`%A$s+Sc#2rDm2EeW=`)->q?P$6tNNHXpcp{XSfG
zq0i@8j_0qW9Fd>fY!>AWy%44bH}^TG@+1kY7EJmCFu#n;S~~&&9X;i11vc0o6!AB{
zb`#<J<o&O#`5zMl%{wz-GtCy`>|e<BcaO1WW6hg?wu9-(7s(HBoMY=6{*RzF+R`1o
zqb7{D7OqQ;hJaBTPic>aXr}q^gj&Pimh@x*?gh=$tIi5{rF-IgX!Q6_D@s2WK%pI_
zl2@%a-!8i?xNfw$f60j7Xg+78%sw5O{d{yNUPrF_J6l^Mg=pbm^V$%9iNNfUY9|gE
z6jt1rM&ZM^`J~ehzJLU>5fZaQT!A)p)(Rr}3a4Mix&QO#rk&wVOY^A-;c2wdg)5-S
z(%yTNURqqV=Hp;*?z~5hvO1n79rFPB{1wo@{&Du{aPj!7HM%qXjQMi2_?K1X7wvO-
z4OUc!uH??qn^LHdjUr~kOU&h1j0+>alPGc1?)Mc%Nqy9t+ZLDlUMMi#{3Bu`t8}L^
z{R4WMMN<BbWPzfz+4_VBUaGd#YTx!m!B_t8v3#v4hE_?j^D~C+H9corz=Kq<D{eCW
zUmV^O$^KHm#C}}SRj~k^Gpdg56`TUsx1-IS8)pwQy%{*Gvvkm*mEsBG6LAPj_wO6^
zB9Irk&1kmF1;F6s2-3T3Q}}xMmWWTqwy1CAN3k1KpTuug?@0L7?4tc^KT8HwF)-e$
zm!783!!is%P)6X?+}T01IOoNSmas&2hj<dEgajs9kDB%4j2}B>3{FDWn!W;>zhRBc
zeo*=!r;Gge>~+T}33hn9NvT~~g>B++{^VYGr`DgxoI)~0wBoi-0+C*?oh_6ARh5ts
z7FN9aDUL>$Tjj?0*-Z+`xm%Ip`q4&F>uots2J#`nyqraXl`hHtj<Gr(!uZv>hFnT2
z&^1LAB@q1RP=Y%2ERsWFW+?ktN17*Aj)o}FEBh^R628`Cb6bR&?=P9<_JFsoL0^8!
zu6A9xcN-u3FV<gcxglFC2H`TtIekz-&3TjH+MVv0pkoFdI!=5Z`SmZ>oe`jrBZK6u
zZb*5UtrS%r)him86h#ud)X$Zb_!(6b$G(K<%I>B^M|?L7k=ur;Hs`FC)*9s!AHO5|
zYAWb{xZ)}?vPf{k8eGlE;HX6C*vW{Lf&)HO)%5)S`ay5#p`Qmy|6UWgQ17jn_a|14
zUoYtM8pCp-!sK;AOw0)?JJLLvl<&r<ae^eWn5v=TIGiI<@ullo*QD>wdBf#~IY{p=
zaAAt0v2X<$q@P5mHl}paFw5=B&dB0@GjB1?LG~OYysV*G7qY}Evc$RtS9+FBU>D;Y
z7h(hH*kb9>YGwE&nNJ~U98;2)C^sMM+D_gQx$zNC53flq0Hur_7m3oTqAEo~ErBx#
zs+Zgm^JV#yKR2B$nY?^Fq}s6rOcGC*1Yw==2$;!Zsv%jK<s2<pl^4+MFTocIn=H7G
z_cMC(Xkl<j$sc`T#^5zSq=01rtu)E<nH2bgH?Zfq3Goa^Q}og&r!Z1CNUR2d>cY%4
z%5Q5x=x4GGw-FOeq4uJ^?2pFk8ej6>Vjl?ONz0K5)+5SU%d!N(A9kBH3QLH_B@`ts
zzz=#;mQ3PO!MV~m9*SWwn0_0SCa%LW^UkZX_Vc-m?-yoFa+t#<Mqz~KR<FXSW#q&L
z0G;`Bm;Pbe9=W!KP62cij60lTl?B)qvCrVP=b!75BDTi2E?|ZKrIh<4s8_z$eQ%O_
z6ey;K-i%3Y|B8LSf~4w(TJ+iWnwL+xKKNWoH)C6BhGOiX;1LYU<OuMLx%Ceu%3Nmn
z#Se{c;^L{sggl!U+wWAE*d=w9*A@#vwhFVud9<)k_?g;vn%QObk6A8FW1~@w>v%X`
z03r1RO`U%Q^7wHr(u~<7^Ben?meQ+4C)t*^@fZ2a6yFSXm#r4n<FchM)N#Skg>sil
zN1#yh){MeqWr$?T7USJhR=GHMa*lf_ZYOcIg7oF9p5G3P=K1RbKj3Rx(ADF~@AJKD
zw*1(Eh?U>3&+T;OsFs?2(ha&zuJfrkF_!f7Cr%>smtas+JU-_h6$ueR_tV)16Y^fe
zLH1<OrQI9QpiPI`2Q45t#uFq((z~V{jDs%dhJ$N{>D()UoQGnOdQm!|*+;nJ@O2=b
zu4u+Q4#!Exx=X<NFR_OJ92a%L<bY&wL@upRclrNyCtc`eIlG<+UYbH3<@*@O1f)Hl
z{Qt<W=k0{95t#chZOb|s9b=7xpNG8&k(CgJE|ozAXMuVl<xIknIJ(C<8eNP70J-(a
zKNZ$SL%3m}pS=j*`>up;g^g4h*f!E)hs5avxNxpw;hu^q(l<gLPb%p!O9T__H$@%)
z4_sa!__=zZKj$(eT7;N-!{104(GpjrX4Fpk4tyjukxc3S*%LMaA^MVLmGoy71Pc4Q
zzyl3D*b$Hqr1V>*?r$DneoLq^A953^|3qfO5txJ5!N`P9YP9|EyMJnh4j`GD(P){Q
zFGk|G9s4!n5RKw=KMDq&u*&E9gdnl9Liu2PZ7znTB<#D@g{Ajxt5F*C$7cvn%qxV9
zDZ%4YYFaEV)9j$###9wphAZ0@|0WJifAGDcXrr*$kb9Pv;Rj@J4hMhv4j_)f<~%C{
ziAG66X%J{ur7UBGoeYN?p&j+^=TeS?8jzb2esppiB8m$}Of)i9UN<W(T*N{MG0`Qy
z<<<bp0&85C6sS4Y^OmT&6P4u;P?anrKmg5?6Tug9^cXjNcOIK1TjV-<jNIT+M8=I-
z_O~W@HqdKnF6jhE(0gmk2H4dvFNP*JG}H|B?|S2=7)nhW?jsy5qFs!Xv!DU*WrJg-
zS2tL%*)_#M#k|dO?*6}E^`eWh3y}q_<oK#$efZ{cXlKvbxm=`C$f~Ii@@7O7h1Sp-
zRI07odqW+tJn-1;_k8EeUoYezRASc7jywDQoy+6EGV5apcPTWNF$A`Tb*R!38}v4Y
zC?c~#XV*2bcAp%l)Ud&Lr)yAfjXVB|%qB}l*O2&S1u5OL1Td~-7`Y@TA&y)&8P8>x
ziBL%X9J<9x-QngC;1-m+plNvuyhr5)^;0e)-5Oo=crrpUt$^%fan3z_^`)XBd<w?|
znFbvM4g4=R>jyGmm-AArdKGwGA>)s(m*DrSuhT)_^9M?9McpYVD)}_O#G!ld2C<0m
zs7&XAtBt=LmdZoMm-wcz-?;&T8V3_ZG&g{3!-`c(FKW-b^`Qc}hV&1l;||>hW@8-z
zbi6^5_VuT16;-qK(q4O}TBkDj8)gkoj0Kmk7{5*F`YB8!8^>CMof>%+B48a%<f6>5
zcUZoG8_ojRDGeF#_FJmj8V|aYx$5+=xQIEHn<njm>4B6E;;eRJsLSTNTEH{sh4&Dz
z|LCb}i6wV$g=r+rbZiNf{Tpg?o4+D~orqbvtTrH^yr$9a3^VibX%Kq(t&GF-nV=d4
zxa<r_ZVTgw2IJW14*@XT_LjaNEeL)230Mu=Vn#Zd{Ii^!ay<smc;f5&CkaP;rW$h(
zsw5KH#Jr4KrPHL!P8A?Rq*$*ubB=aR<*h+z*x$cTz^aQl-F^oS9DSvD7dvX?9!l<W
z-P@E?ntrIh3#C|WiwZHn>zn@WJ>}*VB6P}*esyFN=_Vxo-*Zjpkze8s$l{ceG|WQz
zP|xcdT5lw~o$6mPa+KH?7b`>#C^biQCjaJ*A2rcQ*Py8sIslYD?BC7twBbtd<QJuG
z?6mbhuSWnopp1C{eb78GAv0?2Ww;ca($x;uUx=&fL+^pxK>p!4lfFZ?<v;7QDCK0>
z1QtL?`T!dK3r36KawaLwD(KoLzf3x`Ls}m`_{s0_!$2hbZ^jI9vD01pEbPssRq?5>
z+TyRP|IL5<V{(}1P&`(=$H@Mr^mX$R49vd%FU{`jeVT9Th5x)<eowCy^FQ|Su}eRJ
zef^UNv4#BdFOE)LKV?}j-Y>?<01oMj_kX%K%A~Gf;q-_P#ZwbBG+C)#0FsHWx^lsm
zx(>JsX$~8tZHLo^^~2epfPZ{|Ead0NkmwyLCxK5n+)>W^*M8jxm?d6RTT+3%7+`Ib
z7f&I6auEbmqe%MV?UD2F7(j#h2uKY_aWbT<SY~@h5nvx6wdAVDIQf(Dd{|0{&gAb3
zUb&BO9zv;i+IY9m0{@#0Z8Cti1!iae0njz8N5X@&^!kX*gN^Va6`*)_apSrd{jL``
z*-&D0TsXg!TX0%B-pj5R%iFZkyYDJMDSbCx=Iw>&490UM3kSl4L5Q+H$v7C!4IJYU
zQc}trFxR_;fOX+g(IQG3*O!-sM~?70as9gro9`Cc1;kSn27vVb`a;oL$AO!G_OdH2
zWfDviih@|Bx-w;M5k(q9(I<R$kv1x)Fnaz?S$|4zgAQLWRfnJ5h=pH=)f@!v1#JHu
zo%1Z$4k*V|P=F+TKRSfEPd{fE9xY%=!_E8qKGxPA#n~ikmNf8y1NQ?@xd<`rbM<6E
zP>Z#3b<x3nWj)N&w%^p+m6O3s#K8$*rLa9zaXVI5!FQ|j)h%-a3j)nobLN9y#8Y-%
zJV^+dY;5n#SlfcT8(3~7t}6)|P<0%>6j`~MFay^YvmF6jzWmq;6uU@loZKP5KUUb^
zw(Rf{Q^=-y3L6~5;0;{$O)-O7`h&{Kt6sd7gD5eNkxJpAWe2IsE4v^c(9nP6k2>39
z*U~xL&ULRK#J?q!T8R=hAXeAcV(p&L`a8$TZBvJ^>_d(bdI5^Wxkjv)#!#0N<f@;(
zVP=YlYP=l-z=VV|DIsn)3<-CLh8gaNYb}9@Pxn`8*>*=Q2IAZOcDy4wLukaT0W>#!
zhHr$$KNS_r<fdt#{n#5WafyUm$AR}`2AgCSSV@4`LSOD}d`(*ZwAx@yzSy<=<ek|!
z`eC?J&zldn%}+49h)4-J+|C@f=HlS~wy~$Fg;&CdX!Hp2O|pRgNQ78CqEI5JqB@QV
zcbAuu!CgG_gf{7kQFK5S!Fw@f`SIfhi4(VvQ6;15S~Q8Q8P1X^4@pMGxwO$0Mr=L^
zdaXC%(BY8v*|+-o@fyi;#<bzvuflz(w4Y2Qa^w9)h}@vwL3Q>L&7d9D5=pEHxH(Ob
zfr;WUV0U%jSXOnlJr|ZlO#aUD`aH#4pk|Q%$GQX4NAGTPys5!2*^NtepIP~>uSW8U
z97@2{llPO6<#NmgrkUlcAB*ey3nJ>OkL{cm{KRkXl6GrDZkRmA1vHMq%)G{v+NIQe
z4O829s^bl>x{05#m^L26o|^ZUof^7$Nwv&_>Ti$N%HZXvpIngxrlZHTe@F)Y2&mXj
zjKP4e`)`Yk)n%JY3f)hv{TD0ZTxVM`p6@wGn<&}ytp34$QzsQX9R|jVFz-(Yc(E)E
z=ALRrg5=wm3x6f6$a<2IvoG*ek2-Xw@W=WWOtf&sAf$^T&#@OI81OR%=7`48tm`o*
z)ggAPuWT<3=a(H|@FSrzc9{JaQm>k7_9=(AgwJlVb?v{T*I6quBct}=HT3me^bKQ4
zyg%yMwDj7H%{otHx)2Ryp9R3|eqVoW<W*@lQS;aAGOvZ-jL3QYC~SB`-#_;NJ}dVH
z)LmG3`3s0M=oWgu-#X|P*;1GvOCNkoB<5h|t4-F8!Re;~{}^a{Rz0v?((5!|0X2>%
zwf(p!&hz|DHH8i(OuCfp{ZV?xIW@vOnW4R=ar2)D$lRF(FjyU+i4}d~pq6B|{kmRZ
zl@`s~e>A$eU<v!2*GfaR^c9yYy<fZM;P;6h|6xI_&J>*Kc>5$|dTQzR>(%7a+ZI!3
zy;+9oh%q@a#~bsAi@&vR+rqk^P5Xb+{CE71Ksa1>5ZA?Bp3bjp{9&rICQP6sV>4|&
zcn}ibC)um+-?m6kAr)FIlPy*}W1;kNRKe8&##CTCrPp}Vu65s4b?6ud{({81{IOb)
z18TizI$A48$z-~;ev=J>36ukREq`^`9I*lsj9!6}NL;jM!zg_}J(=M*;{fauqci<J
zITsU_K>mjf`nh^&D;ErwzQrVRh*+9Itfxk&KS5Ul_8e!J*dBpyGX<eSn82W~m~<Mj
zcjZCAk6)>+medf1Lh{~h@Dl)tz2{?tJsFL%C}e8n8h&-c^n_C+_1F=L=nf|DWt}F6
z{Ogr}u1`czAN|HzDb)Jh)C!_<hE}D#O}yySR>sLZ7naOpmFgd2)yA@E+i+_gOU~KK
zjv&NdTW6ANp(KExJ`1yn8^jFC!o$L<Frb-iO;=<c;u*{~Wh?1>9HF1FGEvL^bJnK<
z2frXwa%brq3S~Fa<$wdf5-1SJ9c2?mHZP)>9=W*T+fD;kN3iWn(kp=IcSS3#l1Hel
zQR|>~8=E%v`mCbpEyb&$#|#R2Ts~NIERDvBVh|u5$zn?uqod2S)>xaP?;t5sNDNV-
zuVtuK${$HrcILRML+SW!Sf^>lAGfil-BJD$DoHycm6j%58p@*bLkbSOq;%&ivHjAH
zr7pM~cAzBlWlF9<K$v?$$D@h6#g-=}R;+T4w}VB5!G_KpXZ1I%kHL=qyiG7}LGWg*
z1fKQsYaJFOE5Pep4t)p8D*RapFRff@Dm%dXbDP7e#}&VD+mN5Yd^Xrn7VGka?VlU@
zH|`+RSG5*jYyZIrn}fl@>#7|g;Ghoc>0+7mJyveqzD0(U`l9l?vJ+Po`X7UrkL>!a
zb%y11?f#f}eIJ&*0`<Px;Z7a#?wP!H^Vb>5(`m+|r{t$q+)sBAJ(EB7w%!@4AsPGk
zsS6ijmmgP{teCygeLFSDc&)h%?F~DBS_imC%eCJ-&SrXgEbNxO;s5<5LtP_&s$B}|
zjktaB96Nupp0QQS5p-(p?8id=`8#bwf{)ymg}a8%KTbJ>$A`sccCE?={AT}{@)N_K
zjr@Cq*G}a@&QdG~#b<HhRIwiv_}+;nRAeeEk+|2(l9+F-i<2jb9{%=ncmq-Zyi+A$
zwtYp6BSjDI#@#u5c<*EgMW|8fn!DeXA)}W2^KO##z|00QX@=JAg=AuZ?u|H|<h!hK
zm#m*ut9cZu;jMHZ&&b|<aU!PA`PNCnKkBNtiEien&WwB98{QLvz`UTwh;0m%&YF5F
zSn{otxjLJ@x@+VgR@`%m;6E9~>iN=knb+y>sB?vxyzSRzvQhZ}_f!kcd+yZ!=Z?YK
zf7yhmeNn}BO^>S7OS!rsjp|h;Inga#BAHy<+*sN|ilSvsd0$*va}EtM%Gp(;{E==Y
zpGM82(~rpRnw;+1VvRa^w%Tfq`p)k9zUYw#jfNSG#<$&#dI=35x|_afH2>C+-0p6s
z?IAO3wp?fGeVHAn=H#g3bRn~QB%l4*CZ7$h8Jh1BYkkjv(Mi<&U9dx*aIj`o<h`Pw
zC2Y8REyedLldqNXEW?P{a@8KM;_MfV!zyS&a92-XdM9g()7A65deekH>49EmD(L0h
zKq<;u1kGEnGw_1;uCQ_pTf^V}>wH6Y15|aLex*fie@eHw*2{vpMT6xEox+!T1H*p>
zyQ{S>&JoP*?6Z_qRUOxyHPGNYL8*@WE*yL5{dBlFW^-VDih7R-c|o~1C*l(m#8J?a
z2xyhvXq`T)JvbAQ!7V&|J}<;4VtwDnCFYy3wp}rWmU}{9obcw`ykwV)jxk@yhAYZ+
zVEkMD#He;W`E1pm!gm?bW0N;GXb`Lm*ULR;WiNzI@U7ZSO<&g{NN2trpP@0CPA#W=
zkpHKx|KOzwX!|YjG!T0cX0CjH2Xe9iS~H5cUS7}9rTlrdcN!xc_F#RS`r?Zn?7hqV
zn`ds1B;0Nq8@y2vbXDhH4<A|k%rO^NxYYlCT-$Br^WwBNVfOvyRp7(5@zk$<u5S<S
zPh|{DYGoH`Q9d&Mo2w9*$kAD0>>Fn>davUD$3y4G^&<E4f6X?1AC6v5HoDERKV=TZ
z_%1)*zCfsEuZZoN34r^tW5F;xl-Kd0r)ZpTcJN%7sry3zwgWq7A^6+f_2Y!;&DgEO
zpPV%pPF+8JdWZ5m$8&qG-*=wl%bUd-s%!AIeFh_jqef%K<0ccPlV(%q(-yBRXRKze
z=WNV*^6eJv^YJWM@}z80_RQGyoE62=SQ1xG4!cZET&4>roqFbq#~}5c^T$;n%g4m#
z6fOw!2hP0;x@?!1|9$Oa@cqbE4I+Jqj{a=UalI9I5aPATb=}8zy*V+<MNXgine7I)
zIHZD8AaZVlfkz2y??_&!osZ?BD>nZNio++lNDHbR(KN-Xp<u>8qUQz(Y*{jHUwan6
z&62%G(~Wy7Lu~p*VZL*%abIRfNg^3tv!q0?cw>ZwN%+7I)<t=kJ34$5@Zp(GcjTW|
zo)qXjmvDw(<i-#MUISiJPn4j!B|<YEVC!_asrQ&mR2*QKHYD9e=k@p0{8CF<slg)`
z@g^ltuE|zGovM#@v)}(u(<|<_{KJ2t)~vv`GAT=1Oj>`;lo~=90z-IBMb+p2>rdpM
zdD>;H00crvj)n==uS@jdkoKUhH$^`9*d*S@tga&NQxX@FiQn;N|GE%_xjiP5GDJtu
zIYMo59Q3=L-VJ_s*Xl@{H)M;{mca3eDfm?%a0%3phst<*b;i2Gzz{AC&BoN-sV=hw
z=7@VTtjRImay?G~`s+emiayBRqY0&5VjGQh33HQYp!Y~)x?|Jx9YywjeP9c>f`~CL
zy?)?#K#%Mt*h87GLmak4RuF_OdPB?<y(BE<*TudCm1-QCH&beFJ;c#+p*_i*QePSq
zKM?r7ny@P^2<xGESvOy5^{{&n8bm0QNA(}5m+(_Lm}>k)mCdX(rZw6<kziJ1Zly#f
z+7oh`p-@n%#aay5vWvQ#%xbl0>k#g6)g}C=gX8tMtd2L<UUASQnO$rgcbsuNF^pJK
zQ<UjWvE^+#1wAwG@}ZMiYDx$j$e+N}VH22~VX>uVJfG`VAa^cQCx$2d$SVOqBR7`)
zhGfH>6xx&Oo8<&>02jJ)|9;)q^nO61mTC+oE<#mc9gkqWss>5X)fxo)-wov|*JyqJ
zW=WJDHbd8>OyiiUwf!Fb?q+#Vq*vT?pegZw-wB7a&thY2Dd%M}F6SK)%k3LK=?Yvk
z0t9W#<p+&8F+aWcZ?lOt|MCWuJwJXnmdd#Y?|kBwF}t^v=uuPNTt!4ba(%vBHaVj(
z8?Wy}rgdzo<)|%P4tTbQegxsXOsbm1!v%xWp1(bIUgAm+@cfeIn;jl9!gu#9WK1My
zmCgB<n=di@a#l*-z%&9VAYoslmoIOe@DcSW=0J-%p@WZ9O1^@HFkD6^x-hU~tq71M
zP6e*_Z#`fIVG`!dYT>sU{(%Nrqa9LY2M><z%E*jQJvsMpetzSn<os=HU(^<7@hkb(
zPGjlr%s1ryg-cTBVS~b)o2UC7qg?n;C_W_5ua$G%Gr2$jJaB{Ne2-S{qK5^#6GEKj
z4#@$*tb?Hq#pl_ds+oOAT%u!0>N`u^qhv-o-tM-+UCK@3S`-q)i6g+rerdL=lkrTS
zClxsD&;c<R0pa!$x&cb|rJ9oHhks+4^wcz1nXqAB?|=XjzxC0EHc56B-W*Cc&z)a<
zVn!SH^Zf9BlHRfpm#Qd$*^&wWRos5)b{6})Dm(=dZvpqZ4)6O%(eAdV@nBE}GhDd8
z)h+`c=pwhArxFac^Te3%8;{UuKH`0Mwjn2I-4Bv6!9rd2ABcY$LppgqQ>QO|f^ni-
zn9`eYDOu07oTZ>%qsJ6pVxw+{K}233kEuM>Nw%c83I@<zWSU557k~b8(s+W0uCCvW
zQ^KD^yGQc**PVJ6=IB(YB?L}ViG1z%EvVSsgwo4ad6DNEj753X8d!M}xTHdi3pZ|9
z_}z6DvL##fdEDLErugsn%`4}BW)>Y^U2R<QW*xi+q7k((9V!!lNh}APT;SCQUO?qg
zt~?7+D_njFYdsGlJqbwn@N{;68FN=RWgPs3kI`RG<i~7+<qsf-z$;-7Yfv(GyE4a;
zE#(Z78yy|W5_txa_4-UibWzHs0ku5rC3v6NO}JG`z<uNdDA87#OYQ(%OZ2oi`~j?%
z$Ltzt?~GS`LItF%Vd>*d=y*)$bHCxOXOqXxCCJ#+@5&%uj(qF*GKbn5>u;V~=NH#a
zE!HY529%DOR8aZ$I0PMCiV#;16-o#;H8)6sf`3o1Q3O@!{GopS7WbSNs@}9a2BvT>
z*1h&?Kr#=#W)b!*?d5c2e|B_7;Hfg_Jdgx{@Xq4?ahF1iyE;T({2ipVOkl}6%`P`@
zICxt3iMX1So*?L^XYk9JS6X&cj=>Kb#fL*|eZtoihJk|aJ8+|5IbEMEbPX0xpnsjY
zI$g9k8k4%mi^pv3gfpRm?|ZJCg#PM@!T|3}v0N)wENhF<2D@i?f>;B5!&(=8AKnb1
zF$vjyp5T_`Jsj+^pY2ts=A#hrB|NYqRtn|kCPd8?u$*f24?DA!!qoQFnI#-M^u$Bc
zQeu1-$kaC~koyNb#+eF<Dc6A|tVEJ@nM?97RU#^g5+Q_7`x|g=LiE*OnHKMR+5hw>
z>@D$G-(Tl+3qC=LJ9sS#+Ti|$qh>sJi#fwsHx%#vc>?&iCtj(*gn^e%em0;~+UBzw
z?Nm=&cD3d=>iMp5CcYZDmx>q3_QS+bklcxIk*PD!>zhtZfryT7)A!ixf;b3i1J`43
z{Eo=IJ-bKWCTCyLV`qep7ynmW;80i|%3Axz^?CS7Sf~5IXRAdI#|YMZ?R8h9ytky>
z2>oBHL86abR=31E*|Q4i-$sXYO8Du}AZANAt#x>%$pEl;2}m-_0!$lOZ4=YsLaPM;
zQyD{Mgs#!Ye-><l%BbnkSt39Y+M9MfH2}JWTo9L|C-ApBP>62Qeh&ejmU$0*agg$j
zq4D~Mb3+*yON<R8dHuQ}FHZK~YJv~u#zW%Tb1PHi_9OHgPq;s`i}I{sJv3%r0NwTS
zDhW@kmH_p_QU>_`9VWbWhOjMl$<~yFH(61>#Jj1x94mc`{-F5*Y^~9MXCIQk(o5+M
z?0;SUictHo11f=|fY21sr?P6OST1%0{@<uW0cr=QI<@xq-*1Z0_g9gf6mUeGe?$-8
z+HsTSLgj4)8|FS}e`ElNeae?+#>^_U)A=s-+%aI449M)%Qk5=;vefLnwOpfq-F&U{
zce1DU{kLb>Ua0@?8NGquU0Z*SC(mPcjXX}P)qi6}K77_<NAjU~*d}MoKr-w&37>EP
ze8KOkl9olj$t-$6FB-reg98fz@Uqe8kNQ{3AdJQY;D`sv-U&iOp#`jRpR09!V6C_?
z?H+03k9(RQ!eEG8rC7`h&Lt&<NZz8?6s2{FUn!23RYQjjoLp1Q3lxcD0ak%wt&037
z8COo*`c9V_YCbc-OLW+Gb7^9*&{c-RJD{I-G$nt)`E6KloxUfI{Vr<wT_;=_EE&Mi
z9_>sXn#4Xe<5LLMMI{d)l8MmS$85$(1Ss~v?D1E-0Ztz=52Q5pUj`Vokd$g7b9+VS
z`yCn1o>F~)o`NVHrzp^y7ju4ul{gs?TOE``>qW27Df<i<BZlOI^)H0Kp9}O&8}!YH
z#68V83rC#MvY45$49%gMwHhAt9rrGZsC6gyiYo--XwaQO_@|DuJ_9@X5J8Axk`A+*
zOdTqa9}2_T@|W8|z%++as%S&&Z4s*>ta;b4@yW1O?yxz9hPlS@R)gV<sU%a<$c*3c
zmGvPloS~8<K+c@*T5`@Ub0e<p5#z&=VC9hxI-YBgQ6+?t33@bhY1nMl=)wL){rHdr
z44R{n(n(fAov4rV7(Zl4A)JAT?9e!KSsD^=QeZx{)5UnD);OuxIC<YV^~{*Wa0y2o
zn^t7>=LRy8ag4^mov6YD1`~V?Fw@>7d)wG7(j<4vq-fRT>Ap#EVObhO97Boj>qs0k
zH=dPS&NVZu^vuKtV_IQvYU^iO-C$bZYuYen+PFY0Sv74wGbJ;aweXv@%9xFOHf=LE
z>u@!D7HHNPV|H;Ty9&*^8_aro&3dOMCDP4a?3?wSnNb+b`}wEj*UbjB%!ka)hh5D_
z_KgS4Q|J(>TN<MlNM=Nr`Ds4RXac7e!#_<Vj#Zc|t(!mG1H{@VfB-oU6sHZ57IPOP
z)?|x!h0~#YCWsP+bnd~q67{t&<~C{oDhmSWGW$H~&;p%MxVg|?S=i`x24bvX-!1Gg
z^29MB<c37z$i^UgB%Td`{}ByfrHpDi<Msc5XkfraAL4gN&Q7xB=R(ULy~O>q*sU`#
zP0ba?u?l0y8F^e=V1)&M(HeL$YMvjO41M*Fo^g$TbOpxfmqDNjYX0O}2u+y1*qCoz
zGoyqCa=<K^J4|G;cqxC*xm+uEZafnf|HV6Yn*>SbPSDw=^ZsJR!vSXcIlJCI4y~~<
z%eDG6bfxta5SRr1Z(~l1qIu45E#_t`o>G{mWqsAude+f;F>+Q&R#qwq!syV;V-U+h
zel&5KydTpVs{r2N?N`cer4~jp$D@=Cv3OMjKK5PP)x_6I2_>S_V4=lIx&y*1DID`1
zh}t5kLkGYaSubv3Z{W6IA7%T&2aX1Vg%1ds#?8u(!_Gua254*;H?ucASS=xe7Kc;8
zf#()@0MY;}j@VOshyogCBkQ1oOQaoZ`!UvLc7M_I{-T3}rQc^lPzazoz~S5p|92}>
zXNdb*{-S3{tX!^r=LTWFH@0*WtgHfF!yBm=(zh$Tsqd1$t6=5-zFv11rXRd0N(RZy
z64X4AscgK-hZcrK*P<KWS_RufRMet#lZ!log=3EjCgBfo$*_GWcM2jFk(9EV7|<1e
zutJl55}&O`M>RPE`SD#znN6-paLm9a4m!~Vb!FzlobnyxADmyiPvVZh56QQ4gxsNd
z_}cMRP15TMVzru~5@P8E3DgH*=tnXPp3qOMI~9Eajds2HXaA-oww}ArNii`e_*|-V
z`qd=zv8USOX>0gFD4g}6D(FB2*mkW&z@;?{5|d&ZyT$Z#mstpy&dCANQAcRmAZS7m
zFa=in&&j9|fsUU{99}HPnCy@3j)0XFR)wq>7nUQ~ssk^8FYUtUk;2{2(v;w$E13m|
zTG6LGNs_Il(_#JWn7&7GMLTI?YSX1_A+mY)-iLIP=TBa8i|gBD@_)`$`IBk<9Aw(U
zt}vEKExit53dUCw$(3=BFeYv$j#V`sZpL&RYCKu$X{mO3#j%=PxA){Pg_m#un_3Ut
zzn!nOaq!31XNQ~cKRp=s&f{Wj%h8_a(gf9q={Q8RaJyMM8<B0vNj&zA+(ES;6ppx`
z(3QUGwM_HpO6SofFY{#D<i&XLz@zev7eB<Zl$Jf`NuSTF@M3_R@JP!n|Bz+x+Gt;)
z<3DIEpo|r~*x)7r^^Ljl?@!q@eu_)fte5wDK0TtV3gN9u<JEPZt4Hw<>hOcF@*^w>
zEebM`+|RBU1Am;mOFZy4VEoXiO_|?Prb<3d=Lc`oxhQx(y=W@>1%JAfC-6}H>d(#R
z)UyM53E^Tnwd!i8;vag&r6xsSB|*&7VtU)kzvDumz7&J+l)-qB{t6}gI!NfT+L0?g
zZ#0mPAS0|$mQoihc#3*l^3*Su$nN-h(_-y&8d70!iyoBIvs=QrheY9gh<au6j%CtJ
z#q7?doYAO#hfOU{#dk5d04*B2nvpL=Zx2BiNhYrQZWk64QJc_8{pI=efQl<b4@mo_
zHGPh|D)>xAIR+#qEhyF~DdwP&nu`&m0ZHhWUAI#Fr2BncE<WF7KtR=d@zyV~))1nn
z?t&5GW{9q;Q58)TD=K`shU{N$Hj$v^20{DwR>$qcK2U(ayBS?qeeaYI!zxA%oUhV9
zUS_=|C+T30fB`^VI7Al!gakyL`=)cQc*ZY)Gn=xHE1J?-M)GSLd1aIk^@SJjR`iYa
zJ#dw&n#KI{GmeJJ04aqMshTL!vTUiG5vjZ~$@`L$*CF))zWP>0Ov$e@H5XW?h6Adr
zu7TjMX|5V@k=cX1C2;doijQPoQR=U1-@gC4gHt}Z1JUwHTIaC7kG?@3DXVOK^>UOl
z&zs6Gc2h7Uo)zW~vR+BI3~UuJVdoxTUMK%Dqg;)5SvlSSjx`0FG+*A81NCfWTDG0=
zHf`n;170m5R|MuB^qeWiE*dKEY{@4G8rF#G0>8`U94Y4jyL*LAsS19W#y8FEfA?Yp
zaRSoW8VL%h+!kIX`5)0l1Z@BD?JowoU*vo^;gVkmKeq^7Uwo|^i{Jz7Z07De$cQsp
zyV3xdb8ig0e-jfJ4@7IDQ}&4~Dw3W`*SFrO=>h0PMWufQ{`sU>A)s8W+HPf5VNg#t
zo{TeGDRs?lKh@|-$ZLI(A5=get1);Psn@PAg}bV^c<pbj=XX_w;NXF%7n=5}E+XV*
zYp#)#_XgZu{A|3z*S{oxKBW71xMvvq+nf-v^`GlshtsF)f8pYucXBS5_*QRz*8Hm~
z&Nayh0DSfRPcn5A<Q4}xooCa*bIi_A<({|eskh$JehAOWxrd|X7N|31^)$1pb;7S_
zS<=<tQA^0!DPt3?P-0NM+3mU8+cT*dcU?_=Mgv3F)4~TJf6;jCshzzgpJAt|<*%vT
zXB}(({k$|_d$0!+3>f{cNx4I;6VVzhK<B&@HMpz2@kCoVPusOt+k8;_eXJ}O^&-p1
zr#-p-NqV_wHtgkA*siLd3*_?3R?5ao@78xM^FGX+$crTe-2&e?EzFKl@XOzRFJGOT
zTwF|bQD_j?Y{`(2F93UqHt5@T9U3iK!F?Leil66i;yAh}c82}I66%u)eShlv^m*%|
zLvxVr5(Y5<P9J@@lHc6DzxnLr`74z97j*74>)m&v7`ygS4bcM;S9HNHL*g+5hhfB|
z+ySFi(Ib}=gLrMu$wA$Ut6`nhSCYe%tK>`ZL(Lsb$yPp$iC*av(t4tUD&|8H<VY3Q
z0abGXaN&wtMacKCQj_36cRx@9evjXp`4#jq`dy}3!NsEbM_<`<w7zq=-<Rka2C_S2
zxTp2emf!Hw>>D}kNd2{uI_ivRu%R*R-uKnhds<+p%)gN#22jjjGnhCB`CjglVPEk`
zl&e8kCsRz=sPX#W5C8tU2F8$kf1w{mkEc$L#y|>Pv*N=DkN8ujtO(Pzag(&>G{Ja`
z@+9!bTi_x90l;nK$GojRlj<YRUdzfbAJ015oUOS}%^y0q%sub>ahH=6RZrw*&pjP<
zy$|p_f9vsJxFN=<WMTwAQL%udP$8dlCTwsIMzjE{{FAGmwhS;J00w06eDGbueCNu;
zpB@jDa529gQhUuGo)ka)^k4L8AGI^{;n|0WL7fl((Gu{%#xlIAV-=y}ff~iLHDRWW
z&do~=5e1oZFV`_CW^x5HyY11_w|hPucEwmW^9k`$K6!onOU2;{vBbFeICpRFN69Hq
zQb}p)8JSs@Y@(u&f;_hD;*!#`@`}pv#3avaw8%yzLkJsfl}T$*Lle2UtFb#)fH#~C
z*@o+F?ikkNL57UJBv347!sfwK58hayKy+MG6c-&xxc%d&o!!rS$u+gtbr}Rik(^LV
zT47-^`KSMJ%1<wx!@FpTFFz<@`1<7%+8{wgz<o(6`#)4V-awxme3hk?g@*6bQQB6p
zvr&AADbwt((MJTms3lTF7zKebiOS$$D6gWKVr(qEKwX8K6pCsehL{r`2BDcRO0F_}
zfQf0J8@z+qI6hW4`PR6HNJ?z#>v*R6O?QP@It#P8mjKc>4QSGti+e5da(snaQSQmR
zxU#rb6x6;KXV~7db&(zmDc1P`KsY@_iD$1*b2cYLtnVl=QJHhraco4vY%GkmFH}p&
zvEO>=adoi$-Ry~Luzd|Vs=}(qHg)jva9M`5$E#j-j)}*ctd~O9fj3c2^&VWIxH~|w
zycWM&a0C{A^oRv6xxQ|Ur$yXou}bw327O~=R>NT5N3$F+pyJ(Gp~_f~s82k23b^Zi
ze?b(C3F~p+AoCK-J!6@r^@sli(%c>yh20#wyOF|G8exo?T?2I6_`QobwHOn)-cb9y
z7|iyPt2j!H6<@|)QFQ4k%L7?*QM~a`E-KcT6tM)7cbp|^Lw5;YaWqw3Wo9tLlZ`ZU
z)6z186vy-Ttfs6wm08lP3gVBW7)u6VMIDH_yjLG<cb>*Hf!(;lYKOYCCj5w8xO@dA
zFXNH;#1cfBe}@2L^9^35R>~J*i9w@L9sL*W^*BE`+JZ6=67h6zk%d>*`Yl}Mhcbj7
z%}<^Q5oGY%g(pa94AJMa&gszW1)r8gAzh<&W5+pJ+;4~;p6bGFIX9f>WZ8kb&&-w0
zhT6a}yn8ih6yl&}G4yRs^BcjQTg|D46VjEsj!FJimz&@z;O6vY;WU}9XxE0@Wx<j?
zdRQsR7vO~@vONQL4F3Q)Hz|O&u1;EZ*n)JU;To?($r4;T(6_05fini9EK&Yty^i{B
z7?LT}eh8vtTS^9bj|+Cnu$+}?;7!+<fL{^Gx2KMuzpk3ppMA~ro(nE4bnQ6dtwC=q
zLU|>*?Uf$(;6JLn^+57PjmBB*&Emk$gI_EAUF8#ixd)gHx|edn1N3JsI=pM--Ra*5
zUcmMR#Y(m&AmAfE`@u*iG7dbzapX^TjqyDQbO=y(Z~du^BETihaR5ltAA&Buglim*
z<}n=DwSDim+ey51AZBPgiwh5eSLsdYDj2{+e$d%7mtggWqQnJQq=#ztkHENlQJ*9O
zFGG&WGE~sjHu&15`O$a}&5d}GCbcbQH70fCPt0<qn{am09r%2oVfW`65s4v~FvSK;
z9#%)OGeI7ix$Xx*KwN=P97xo2C!s$HT_pBk>&sG0<nNNXEG8f+R0l{)(f+9L9}J;I
z0Z=<6dbXpQqei7bQ1{uYI?+8qwrxM~pF;Wv=zq|`EvEDRx1cjRe6-P^<)7n-mz)vb
zh~{b(#J9IO=lEc#u#B$T)vN)IP$pAJ$_6}aZ17K3$pd?KUDu16YI8LUn2=-P^19)u
z#`4jVJ14JK>1UM?$-w}s->mQ2ZXWiAxT&jI85oI$pkJ`~F`wEOme~SPVI|N%Iu*Mw
zJ9`SICo)tOMYoircy#GXft`|sl3rW22FyBCNNp2dm?iz)lg3|O2?QUTQ#XvbmHnZv
zQgr;9iAy|<bXj|{`1nqi50heA2m639-}5Pynq7t<hT-)15oE;^YAQNLni8$18hf<H
zOTI=8_<o(on1|lXdmB^1>e@Du9Bi8yB}tKO$smR|-7E&@KDou+NeK3qfWR#LU|PUR
z&))e`nEywFJI^H0$Brj%63$v)J9MKeG;?u&M<K0hmiTL{Y~{zaHu#iqR)mb-%XHGC
zJ+#gjhE&o7`oFk6LSSBsFJ}(!xBHYZTE_dc#yE>0*f%?-2OYfB&r6^`-r-@<cYxV(
z3{?9psJB6-(*I@5!k?bvpXH8PT9PeTj46#k?m)fa?z#(uFoA;sk1?!~V6jGCyWm2z
z+gI00*7rKE8&q%$kZ-Z6)-93+JsSuI0Ix=8Vgo0qPiV*f)vUt_2dYgrEL$5`gebQY
zugQW1S`gso&)<pYLx5t&Yphq{Ms1vcM(akIOFMLSFF4`3ddB@8zL%E7XS2J~Ee5bG
zB_Q@fUr>9JTw?{K@@ZyD;nVdm&X1&>RkE^Ma;A-MZ2g$u<^*=n7d7o0{+)RV$T1&u
zs1BiXaNA$*yr{UEthU6Y4LF%Vt;7OsY0cL`T;a9ftgD0S#9Hq0Waho>c^krT%E#RQ
zqy8y~!@rm}r`ps$EQo_Z>u#OAh$`*RjShA_Z6Q?a&P!LmsMn_fxKHYv$(7!ETgMJ?
zQqMci!87K>Q$KHJY@EoTUoOOI@_NzPEj3tZTuqmdfvoZdQ9JeNTMSIh)mSP339-kF
znU4`Hv5lU(yoZXp7VkC+y?rN2!a&-ZH6K|3Z^zJMAvt|9bwXQCGYF<M`hi^t`e>v3
zZAy#S%|PER{~s?Fx6o!UKs&TlbzNh>u%D;4H;tuH(=kkKr3d%iEOLHD@Nu@#b5iyO
zEU-YDCmjtpizFZ-{g6Qm9Xf8x7x%$MrS7jC&G)wm?<?%`Jq1cHhj;FB=qJ5HihqZn
zR=pR2xGXU&A>ae*K(5)*&XKLk<O3V6`=-tp6sKcjSPZ1EH7rOE-T5;<(991Ge7`3*
z(h+z5h4$dylC-4if7RdrbKi=G{;~UUtDT?aAA0>RFEtmi?PxtYCx#LhOGt7RdPPXE
z(#mHE`32v1I}FsT><p9Bg+VSuVkRrO`G22)(e99(X3gFO6JRNP+C*Pu8@lP<u8sKG
zV07==JY`Mg*+#&fCRY6Jht2j0rzT>qS<I*Byd5*zz@O40AIo(eb+CcrUb3%G_x-GT
zinm7=L;@!-C4H0~+q?~-N_h>N06Ixo+Q+CVJuolscNJ0_)ONMNIP9)$jZY}##TPA+
zK^03cv7l+p)>-d|zc|+{WYjTT#@gh|gpUTKNcfC4T}1P6i*Yf8&Go0E<FlJA^bhre
zm`b4?<}X;7;Km03eZh47)`S6OxZk*Vy+Xz+QycaFoA|(nIx#vKP0b60utARKoQ=l9
zh5BkYx-VBneePvVTkD^f&^fg@`G<P{rKc!-@|VM_=$VdG#LrYk`J(%mY1ij)|1Keg
z*^rR|mv9hA+!N1RZ0p`&Pk<~!^F^EBbA1SNE;5l_GuckiM&W*4W?;o|V2vp5*AN2k
zsjnLxX@J4QK$c!Vy$#j_itNpN+x<F-0L$yQ_ah+E){)1e(T*%E#iMtp3}cOchhNNl
znF)l8iF7s|pDls!4dLV`+lp}Bi<KaV=7PTd4)1`7nI-_(Y(zvpc{}bBJAUBHt`Ti;
zF(~89RieZS2ea#rQA&=nCd&SXh}b3SrH2e0Hnu>q4)!=lg*cD5vEh!!R=GT3#!*Iq
z1U+PeG>U`A5k=&9<ZNvD$nfD)N`f%w^#(RSi7vty9Y-3qqzcERFwa{e*=&p$pgi=l
zEC~q1smYeW7momO<v>z7gT!G{iyyEp;j#oWgqH#;RR9=d0y(gtE1v+&IAAPDcyk_~
z{2C+^3=#_lp{&iT3=}yj0Jaj4lRcrJQ@a=aIJt${6m2nmk~~WS$$0|dhbht|p;x~E
z&30T5VPR~D)W6urq&ttF`>Bs^gi&o$f2;k6MMG@RpucLsbK@suzbC6lsn<D3t#(gd
z?!x2PlAjqT8w4khpIq;ua;Nb;7yRG-DTe@o5|C&Y<XH>o{YlD3t_*K50B)^j)Rs1|
zo5p;H^Dk0b**`-~J@#Vz@KQ~RC^4;%+kidsF>?vS)NZl>K-jzm#B&Hp90akokQo1v
zlvS_lCQ8%Srk?Fy>41@})KkPTz`*hBQA3NIu1DwVPY%(kT%qZb&(lTK_{8pzI>NF!
z^0K*1(#^)Rd?h2HxE!hR^uilij#23_Z;U%j<|WDOcM>_DN^_%mBtlT2gL2T;(!D}d
zUX^2hRaCye=PjJFVrUBo6e)EzL(T@}<#?2zFp#n%CNBp7!P1pRZ9t4jM@d!4+=<mx
z1OR;q<Ua%=sbpr}C5tvSMJWKIxFd?3SdiN(C9hJb=Ls0G1w9-BG=rZ0^#L{{f*chJ
ze(Un*u!LD4FW@I0piSY=8x}jC^WV~CZ0i*yq!s^Hf$1G6*fEHpyesakE$$Ifkf6Bk
zS3=BfRIYEsp`J1l>i`+deL#1ChuZbk7Le>AJ6oL$XMpKgZQ<1CLK@zJP;oEmjv~{m
zGIo;kSFRW55S}LJl!};^k9w7x4i&$U@UqV}4)OPZpA<c82hdNHu&F#fepmh_uWTui
z{deMh6Ag)%EajK=9OXZ9p!Ss1qx1BWDlV5-(22;4B1J&rj_z^!fy-65m!W|<o}c;w
zxg#nNsuPE+n6N_&RH6hgh`BL4u2QxHfm0m9Cm;^OA~4Sy29i$Hu9*$F#@<@&$+Gd?
zBuJbyI#RJFz5IgYl3X1KK<QSSmQ<Ts13u0Pu*_E*99A2WYJ*Dv4=cn|H0mCi*5XMu
zJOd8trciQ{O4c&uMG~ZS*~&z>&JNRHR08OiYWVN8VV1X1uO$C6P>@~?AV!K~3W(6N
zVGza21dOudJsS;3jq}k>yZKFfytfwi*q$kXcs+r9Bv9+e^i^JVW-@5-7(_~n*yM$M
z<8A)#-2BCvOmmM6>)}7xV`Dx9idcgN@75TQfI8hwG_ybn1Quf45<5#~=4+v&^0f+U
zwu;_kg1fY$3tFXmT4h#RgYLA-@wF*xwkf-`ss4pw?zL(3v}vuhUH;o<PHMwyw(GmJ
z8{TW*le$pVwwtfCTmEe~u55qe2{%z;C^n_#oNaKyG8$t$CaseLDII;mjV7D)N;aHU
zag5e*+GUK5+8j`Y$P~0fbLTN6pyyfSE$Fi<U>+7Ef&k%ez_`=wne<?UV?zc&SNPk`
z`_hs0K)YBM8JsghA_Rg&vEI3`=-52Z(^R<{{2Y0hZ9?kO9CJdkbl)E6y5CbJRNA%B
z-^qtTRhZGx0(u_x1L{`jZnJ_UaZ1f*pq6_O42mt;riWrCG{V>GKrP`7u>lEqg1DYR
z+1BkQR`~QWy*F>kiel=mOP&`fK9AyiX>sv+TL<MKT;#1mtbb{59npA)FvV%YMn+W%
zb)&>eKz~SmNWVt`Asm4^v=uB|cWk)!Gx<2~MO~~h)<{a2f+f+p&xS&QXxWHa_j5FG
zH}q&C&V<kiZ5a~CsJq`8S18CZz#iED8=e^20+jD~*gfBmI_z)b<&L%Cp1=+$1P;i%
z4y^u#_#8Px=74`Sp?I5q@<6RWfSYh35V@;bvh;$sfwHMNY`{_t#(<7g02~0bX*_S}
zWGNA2*VbwszI!#PhHDOv0h}S*Z1_BPXx8}fk*FK?)Y*}~xS@LnBR300+e1c;v7q&P
z5Om3?zOEl_3CK)!ETm=BZr!&nc+BkCRqOamec_x>WKaqF#K9KH_`>nw`SG+sK|a7O
zGc4z=A2h(4>^tVfE+5Fq(a>f7VZ8ZpyH?}X<l&FJ9yJpJf9HhO`qeP=A{^;LFJvyv
zIKp38I==vgE|z;Utnelf=@{C9s1biNB{Fs<Y_d7Epd;dGj(<p&&HV(*tZp8?E2FC`
zbfZ-?HeZ~cRXnsodcnT?jjPzWmavoea~D<#H`bZUtm=D^8S6uF-+4|$R;ZP&#mMj&
zN^!=>+LWq8+IEGMKl3B1%-NKPOl!e8&M{?F*j(rD>mhhP0Ra|9@5+D{TXES6MVf0l
zA%PHCZ7QW6l)^nVC9)7`Vt<KowGjC$dD;N++IF!-&|88$<@9$7HGFec&vnwm?4^_W
z^&kW3XQ7gFKjfYWKL>%OTS3f>h6?ugrH#HTfYjw|z+BaevfLRXZ;@WthK(i&qenFU
zFuH<@vc+ay4BOAeqgD)GG$-JMHuYzrE^bbL9prN_^l7*xQcp$Xj>;@S(Xw2HtxY-o
zU}j;1qH3>nX{*2q_ST7B`CM29$6<acSKhST(mX@a5~*78g7ry|N|{St{)^eGhmKGg
z8F}mkYv^_1!?Bz8koX{zBb9;~^;HY1r$RuHg7ouZq5w;;#ie!A>mhGfwF6Awesmtb
z&tK*9US^S4t}M{h$okChCLbV@Z(h+N_6=8tf(-&x>i;~Z$hh!aC6q<Aypi>tn~+~d
zl^JF&gs=!>Q%u!fv1IJ9J`j;c-mZVG@e8K8GN^yNrE`{{fo8`_iT)3B=l#uQ{6FkW
zB9z455@L^9B}O&&R(qG&t5vgB5hKLjlp3*BZHlUDD2k$HtJ*56Mzv~|PLI#$`#j&j
z;kkdif4R?jpF8K|<dy4nUFw2k$}QkEM@=O>QR!RWRp_w+Gemj!rP>~ol3IxNn;yt&
z=v9Gf4dxhS)_>R7_q4YYa9=uc+{-wsJ*rkBWbDROejJ-1?v+`$7&k=Lnps1@QsZ*S
z8gf_zv!P+Sk)kK9Iq|1aF<(<9<hrDk>Ih2POG^u5>$ac^Veh(XJ78X`tgU@+sm%xZ
zY(e>KX1ZZY*y`(Yf4i(E%mET#bsUoP;m4bH&X(>e0V37<$}QBD?rifkZtJ$)dhI&k
zVgekA-*&YD^>^vq%4fPiw39!;ShKgIy+3!3-oi8hqXgK513(Vw&!+C{6>jS0`wV)I
zAvZAUc#Mwwu)b%ePH>A(8uCjPvu;%cLz9UU<BH-H|1D~hmm6uhKApKIzS4#Y$b%a5
zkIY^V_9)9SQ!ZfZykpQvh<<U+26OWac;7|A%1qkiO-0z=$cAwl^F;NqNeoPWQ{HVG
z0_%ZxYZBgPErR&)z&Nx&gQ+>}Gm9@ae8<k7|Fhy>c@vh86R;)}^jzDV{#h~tYE};T
z&MfG<Uu0H$OMYX^EWSpc<JEQQlLMhFvs&W!GYk|qa}Y5-V~~CHD>Lkg1>MD8CFA;h
zW6>ZMkCy#gkg*T@vL8)$2d?TrlQXO+qYvWNOF7mc9}l{U624lzkUIgJp4ewKTk=V;
z{xKK956V@T7lfeziwS!e>yDj$S}Vxd^Ve*#Y;sl>Ka(xKJJ~yZw7B+JQRC59W5Ain
z$0$i>NrhMD)T-YM4F~4UwP;PsZgbo8)tdW-wx<7cyIl*3JQW?-w{`b$DCvg$+){~V
zS=2*(%3O4-{~T5x>)8A#ip=O>Tt?NPvyp2J;3DVn#yRb1>xrBf-L+?S{w(;Wg3qqB
z&vEL+ai`Yl<WZ>q;;-G$H*~y~xz6p(wVg&no#rdN-c~r5UWW{^Jea)<&6tKvYH#b9
z+E^0aiy;izpDV50*w5AZGiN2~0fm5FDi@LTmKEyBMBBzp-8nHatx{9&qSQbmsr%R0
zHbcc=S6Zda$3yOrZ|<x7YfpB<JP8Wm)TVXPsFHA^Z%j0CQf5V5v&|%>CkmNLTsD(v
zl-F@I=R|61-biP4!cZ9rn>$<o1wda+OjFIhhFi)f!ry3BI|;Z^Yne1!QYAY#ny=q2
ztEjB5t$*;axwXCXQP1NiPoE7wf9~NuG4;xaN~c8A%v{UN>3n1BC{fG4QI#%BUd!Ct
zRzi7wuQ<WlY7EP9sPTqCLpR$Wj{7z^C^nQC60ZJ|1Lk4o6rNohfFmcJ9)8pO#6YIF
zWNZ1P_pE34-W1ou2BQz{Xw~M#THqe0+sJ$~ox9uwLSnxWx6MCVtdGw;+jS(ACG;ZO
zRx)E`Y&qh~qJ!pq#r&8w`ANH6w@W8Q_d0KifKiz};fs-^p1W=qrgn63_fgp!SZqcR
z3e)}E%pf})8;Bz@l6VcHmZUFz2IdIUwmT9J9MII(OE>I?h#E7D+RiN}AWMBxh2X{N
z+3zc#XU!1XYICQgw;HM6?MDoD?rix%4anrz*BdG4ZSL(%Z2S_&xAHVp8*HW3rXbMS
zE(U}`QHw7{1M)8aT18Cs@6&^=H_u|#ltQ)_T&R)EsWgH_Ms__@b<-7xbtst1^naDQ
z;c1k331$9Dyu#Qvk;OV3t(BT6E>$lw6JOVi5C0WV$;7n))1VRULTHw21q`xf7&J8C
z{%Jf|g;IyeUgCXA_|gWiYV?+d@Ks;veZx%~XkNfCPqx9u+qI;m=FCNmN_Iy%cZn?8
zstHi{R5wG>clq2FBruEP{!8&z4U>GuHyzX!B6X#k1lhm&LUNkO3qb|uk_BTTi@o=@
z975WHkuyV2UM5vv{Av}%h(;;soXO&PFpZ_5?gwJGh&3wI%FLrS-^%>EK_CG4SL})z
zn)20R*yMVD9e-}=TXWsZv#Q<_PM<;^bpu^ls-S%v9LF5qJ(^UnR5|db4zmrIx%a`d
z#x@^9-`?thpZ}8+#(62wX+y-ckS->ncu*yD#C|3~&y1X|q4O?P5D2*>zwJ?yoT^+k
zDFS8woS-D0dH~G@RR(@U{`#w!N)QOTHxdnxlluU!usgn9P}we*8lSQJhEdmwB?4=F
zqt*acOq7lzI&1sfDQFkU)JVh{v176B7hk`h#M}qMN;K~NsP$P*ob5@yUyCg9_IAwF
zx#?^|QJfP?w`|6+$v>z%|LVo;xwO$O5cedt3kj@rL|fyizN3$M2|!_oRUB#XW9Iz>
z5d76*C%H_)M9{0P&~+{8k&Jhc^B<@!rn>!|vW+`^7B&#g?oBzNk}sjSn;G>~`8`4&
z*h}ra|MubZV;qB1c<@?=Vp-@mPwxUrX|AUMYQJ9?W&_=nUI)_e*^;Oh#_Fn?yrKqV
zyx|8%0vSp_<cqhep9TK{!q>)`g^H?bM}WuemL;IN=J;6Wf61g|GQa-6-vC{)Tp;s}
z?=bmJ-Q)o;Vy|SPuxPmR9}Fx_S!vv=0!({zE+qSqdyrXmjSz4gmwuSyo$y8+a<nI_
zuB`njv0Q%*oOaGQ=-q@M{LSNfWw5S!w$o@JW#_<RO~G7h!(Rs9yMMV?@reK?htEiY
z|E%<R-#b&o6zl%^>`^Uk`S6@HtM@N~diV}b-nArMEImI0^&Gd4NnIi>jf@Jl(<&r|
zxY-GWOXq^5gJ!HcY4ObeNY`BY5r``<E0NWKdRlsOu^QYff-=SW#{TA<BWZ8?@0zum
zmXe_yILd#(mMhzSP*ywzVmZT!4%Y%x+u}G!6#-`aLqG-!g`amO?dt;upd@~f#vmXb
zVM*qc6!C!S;R={3w}5Sq>P(t(B`m4{AgA8oS<+7X#S(uZys}m@@MocXDMiB&v-npn
z7=G?MoDio$7FLCE@N|fd10}IQ2rCZAYI#$f%^-nF>bSt^Uk7+l-hlQ$1fwkh>ZDo;
z6EdA*47m;1>aSHb>a9yR!B_iX3F;iVrs7>>2vfiV!>c5cn!S4oYeOBpMJX}Weiazt
z{SnYLZhSlQdkq7&!GOtZ!lEwd5*v??zQE)8^2XKrQ_@BHE7cg=aa=3?mlK_}KO6;0
zet4tIk&`n!qvNU;L?=29B&VI>$}3m=G9Bdb0d5o1k7}*~lElSvRjsR6E=7ipmGA;y
z#vy++hiTt*ITg05X#ARC70{@obnzh-%PXFh9)n42AW=Uu(AyAE@!|ER1m<&Ghb588
zi6yP`ZN?SG=D$9C`Kbn0@Gp(bf^PEOzZWCFFgBIS?*-=Ee;*QYc#WKxd<a+rvW-<2
zFnAE)8-ql>Z9`t+i%CgC$IGXWUTAWGXMIfff%JC)5H4tioKQeBTRyoJEDZ?TN^A0x
zUcLV_8u(yHv|-n?hYd<;4I7Ml!}yc}MYVm@$t0Ap+6Lv1SPchU{!_zdim#CU;C<tG
zH!T(aQZAL8{7!3T23mo)XQi}QsJg92pzeuDl~co2<y`wr>kv!vb|Ri)`M;;DA!GIw
zM-u{o<xgDbU&+JR*d)m{W?bJwL1l)EYKB0V&A5@t0odATP3-ud)VcJ_Hj(mhPelVe
zkI9+Q_mBxZht67xgZ}r(ceLYJT@zP`G12NUpj_l@#5BE~G)=aqx0Z<gOTE30R*ksN
z55qSBVV<o~S32=*%(R@cdwXGqK#fJX$4ig!W28{Pw(|i9=_^!OUBsOtmgODqOdov3
z@h>eco6X~=KTcZX$}Vk!#<*y4(`KW2##G*mLc(Ju)Od|chO7i&1Tz%W#8ay-$c3b~
z?Uw8R;N$81jss0afB8dU#_jLAz)dL{FlymjXmb4WfhXIeSmG_`Z7!}+R_&*)gSXAP
zxUjs^XM+q<o><T4AGXc0EfqYs7+n*VCs{i|UnMQPRR1i$tvgrjKV=Pk{DT1qQ;fLP
ze|0Y?>(Zws?_Nrrk$gOL|NAQpKc)i9gUfVXmbS>(6XrY!l5q8k7tmkRIpra>0`Wk>
zfM4?!QX{o#n%lpAPyVh`t7x>T-2RgE>rHKWXnR)KSC5YouRdR?sIE427MLMG6|zCB
ziP7PHioZV`l!x{A{QVYK@nmIiFs%1w*&adh&l<Ag%&6)q_whI-Yw?7@kdC+HG=03!
z+ZsM~yZop)U-dKFouAWb>qiA_f49vlA{Sd%IMT0E@4E0sy?s^w<I#T~7-iDubo%u4
z@Ao*qyK4*;XCp6^zGqb2{d~FN=Tz9gqe|zf4c&@gi#`8N&f6=ZzukVOHvjzt1c(1d
z6JE+i4H*2Xj`(q4g9i6bWc{3VJ_`<|d~r~Z{k8Qm`$ucqzu%&`%Et^#zgpq!1aK9N
z`E+e3C;-UO2HZ(F#o+??QpYEu<pHCAw?6^2a1aIGUN{h}ja%Q>1S=t$*zsUyp}IW*
zD5~|HLL2xM5&BIXGNnyLodGccoNKHB^~h_bz)4G-jEOX~IS!}+0G!f7)$u{>1W4&V
zjbH+2Is(9e1MA_zj2`gkmGD+mSmi#Az$nZD1;5BAv`aIK0H{NyhbCvP_wLhm4pN!j
z8c?P{!oP6|t%9`x^hA6Nb{YtjK|l{~r0bqLH44J#05>EMV|qB~7TEh&8?ri)>Im%3
z3xeWS@6(B2+mPl&A+Oz(hP<g|I>1Ae0niXCM4REi4p(FHI-^{B`*h+H9Ybck8B-Q{
zhfMz@$*|75{hcW)z!n8f|H}5PaxO84J@{ZZ94Xb}3T9RZ&5CoJJY>Eu!;&KdNkZCn
z1af^c^<W3vC=*y70U1j7E<Eh^7;+Wl7UIJJ&&Qlo`oLCZ<j~zMrXwQbfu^TvwaD>j
zhQUfEw@vz80p^pyYa7`)F+$8zN!49V(4`G|YYLw;v{z#l?c4rNsKZkt1wtQ$laeh;
zuafTN|6q#3$aQf3Swk4iv8f)Ov#qSfl_X=VP#>6s0771Zag9O+Nka3tU<zcO=t?HO
zc<!g_cdS!m3SHU98F<SMMax>lJyBG60F^7AYR-jMfS)l50DK%ITC)e>CU_5hb0@D$
zFrXxNn#Fg%0a2?6I9{S2=nY3n{?%f(Q2&Bh1xn~k9A#YA&&p<g&YV3HyOJUKw;mWn
z1fsO*PpeYY4r-1WrPJDE&Ot(~6cIK}DXx@dgdCjx$Yd4sI;IWAZO(b|s$}=%s|eB$
zE2q1wt~dh#2?Bl#9R&CJyJET1=0Umd8KpiSDo?vAJ|6WVeL~~Zu{<>jdKPtwngY2;
zN-4pjBvPmZ(_Bl&x$NI9MZ<Wx2bJJ|LKD&mvGGpT3I-=nve+WiMWW4KS{m8z<<{5)
z{UgKkI}HjWg)Rv|jf56A2BBK3gINAMzB;@u!styoS0NP2i3|f(u{q?#?e9iv1W<I`
zgZ5qfE+otB_-i~unp|Bo`!ZGv$T6o?aErEVi$^4!BGBh&&rN=|Jx}FagSBsXw~y~T
zW5SkbXwv2txrc!0<}`YIa%&niw_J4XfZ9i>ftISc_ywvLAi{<H+1B`_Cle=owU$Gj
zVzi5)rn<l~GULKuY}*0(^}=J7!hzO@;pLcF<sI&=qF&2SEQer;xe(Wm>V-O!KyzLp
z7X#$r`E}i!j4&3{hbXM7h)$=rUd~`ct}B?`(;gS1`8`#gCm*GWhL9gtOTAE4zharj
z;M5RwwR!I9b!}FDfp&8;l(|aR91lVOK-MzST6hUAGQ=^o6-NP@ra;|4#r*LMx=>5|
zn_F?2>4hx@{1cbFs&ScBuP(hH0dHk(VO+?#_MI6gpy~$kKLG@V+Wp2kJTCBs<$_E-
zJ~>guWmlo`*~vn~_P{D3dVuYP6?%QQ-Zw<WKjikE5a8VCiV4B-VduNAEY4*+msQoB
z+O1q+;|_sVHf0p%rNtWzc;XipW8{zeR9SFo+l<<(Y>Opl*XrTSqImV1amAXuX52Y+
zPEwiiVU-3RYKp(?r~|PCUs)FC|FB^ANaWAtZ3Q2omtc^W!w+FT3KY?dz)tc8DOele
zwUvLk6>R!s++lB0@MW^Hk^SLx#KIwuy4A7{F~J8>b<=iRDbiDWSDYLhXam(PqP0T(
zce+nkM=TeatdIu+V*nGes?OsPIioe<U}%ehw<ijZeYMK#IuW-%f7_YdsZ54?$H~Nm
zP^Y~N1i#_PK_lM3LMDJ)RBe3uyWX3Fr8F*ntDN%Nsk70)2-ViZ(kC;hqFCl}ChvzF
zZ+I&v2>9!;NtuR)TG)vAo{IaQ#sy7E{34(<dqRs@?$}g@pTaqo7X?mC&oO!3NF4=E
z9kK<}Nr>~j*Bb2ZLx8J&rw{@FnR|KNaT9WetH54qsnH2fK9vwrv=SPNPBBql@3~8(
z|6<iTwzWkTUK44z8u?L!u-1cPz86covBM06meZ@=d=vC%BaCe>MqJS_HYvvLl#Mq;
zgr>(|zc<n5yZ-?z)o~&3r%pEZPnaJ>$f&lzP#j&1wg7?*`R6Z!CDA#aDe$5h=iE@q
zhQX&JQ;aT1Y$kIi4#}=Q9Bw@B%epAN#wb6?Y>G~_R_`~LLyF8O1h8R#EsErCv6tAU
zKpRpe(f$M%^uKkI_$c*rv4xKCg<q>_U?9gBh0eee7F3ztfIf$Yvu0Z2Q=h;24ClCC
zN0G_jpnZ>{i)pyKh-FGdk&+2mZY8=umhgZV@C&tCmmy5HnBF}u%ggPO4o9xVW0O+=
z!!d=vpPf}?*W%S#%0o)7;W}10Vj4ThBta8lguO?MI5uU!Z4)m3NiN#NHR)t9+|E_Z
zb6>Z`RV!vBF!=#mL4coIMmp`Dy%$!kk^l0KcxC%|vHf*1vQ=15mAI<Z*aFzo9&<I(
z#d*;!{hR*8`_0lKFz3e4%L5V4rE#T|Z_9ow@%MjH7;;lpn^3J&7k`pbmes(?C~#jZ
zm(#IM(N#0%O0`lVxH>FBUX1gKr9g7~Vs&h_N_-{SsN`HR=(%FPx!FT9`Hh6xu~HdB
znjHKG2N}GZiSkYQSs%B&pZeA^D?&kMy+6q%=@v#qDADlFFz?WjdwdNYtS))VPbaBX
z3)`&USFGXHYucE2y#r!f5^0x@u^qMdrF=1+#BjckFm5Dk_kJ$(@-f-eE3000IIM}C
zQGU1C=Qp6-sHtw(=N_W<&6|F`)ry2=FdNu*O)3Kx4|JLFmzXU_PR^ZVUmLOZ)~>FN
zv*?QK)Ff_8@0*!GfgEm(p2V(NsI{+0*JY1F?EOcNH-nkERHz-Ao`JePzvj#war$$y
z>>bsc<KOVcqA2DNye~+}t%Tz|3(W%odYk!fpmUFW8(7oNMx;*g*HK&9BKuoO^-)xP
z+SFbhRE)2v3@vEeZO}gH@jhbIzS4D759{(|woEiD?=&1`Jk#m_E!3w!T6Xf=r%Nvs
z(-!I^d?#HN60h=9T;*mG)vd2loQ|7;XH8xYEB&#;aEZIqXLayDR4I^pUYM}IxtBYp
z?KxZWFqfC#H7|<fy}Rjp&#&YaH3rkAsJsaM^K}wUw6g7UJVO+}i_qJymuRru@ERa!
z;(!nSb*My})MWN=JrQM&cjV8MAB)abO~6B14L$A~hdga}OZ*jZm+?VH_?Y_F2oj$3
zQk0Zr+Thou>L=m@$h<p6=P>zKWO_|2yR`khyqk?PMn83~bY=K!%9pz&ZZqJ%gPFW`
zy6;+#^j*%Hi_Nd-6mtA*yWX9i?YZ%>SJh1-s$~K?W%6@l9cSD<ZXz$K$#W0aGQE{F
zBBNqOBxaKVs4&$xp-=N7Rf$EQ`lc)F&|70Z8KrHD7oE%2rSS&a)v~WL<%hwQ7n<rW
zhp57#dkQaGswx{YzW|vhit7GWMv6a7T<y?Ht<L`2MMZgE32!ikSN2~OeKMh;ruWJx
zwWKM9)iw<p?%RP0x_=?94v&9lA-0k?kstE#ffl^eHt^%`50AnPtM2+;j(=(4w^Mz#
z-PZnmt^P|l-VoZaI8!kQ;Jo?JexfPy<vH7MYC`JHhVz%EGlOP%VtcQp$9QTB_GSAr
zyyHjr0RPukc2t|UD}9&~YjJh6Yufga!B&x4<Jr?sUT?22UF~dp+OqnZLruI(j5E9B
zusr$UI<<yHSoGI%HRg1c+cpVfdah$uJ0lv8G4yl`%wMnZ7zM`04CS5;PtZ=x8a|b3
zo}DTfp0@q|O?|{EAK`R!uG?>PBZiHU@5NHc3&)WcUwBmNLdG^K$LyJ2i)25Oy@u7(
zezA=n^=$5YzkM)x_vmrD{H<^MFLonUo9Q-I$}HlJw$vD`zsXmxxf&%+ZVyg|OHN_O
zPPZzj;#E8%l4eyM3?(IB-PQT|yU81naSllg0+1^hEt}yjAAf<@hbk%;a+{QrMa(dl
z4uA8$l9uHBlQ-C166&}r+<<;F&Hj9N;On=FudfEgXiNorj7jG7FsdQ+0R_dMOw{Pu
z;VxI!W7ze1s>TBIigWSiEOxxyeN!ro!6Y&AgBlatZTC}JwvOiIE!IiI$4eU?Z=v=)
z4Gn;y6AlGV4OdAm1#M$1v@z!$NzX4VLO#kVE0?HVqwN^YWO7*rr)BJ~3eB3YtZ#nV
zJN)tMABdWkfr*WaPe5RNM*2DSn##x2E{p|dzc;FYY#A06n~=;T*IT-jTCM5i#dNFw
znQn_;@F&@tw%(!L??<P<&%tye0juW)9#iD2c{&+n5}Sa$?NY#Z*kCH_<(R0p_z|V_
zZBDgx?5x1GY=mG3S#SKpCMTvplr9=9G*zMi<*bR5M%U7zCDhKOt01sTW&ZresRsb+
zS`H%Pl`jhpGnLv|%C3r`;%{1<p2cey1$%Y1dA_PLet1XnUAO<op$ze&G24#d@9R?!
z!!Cauh&cz*r#J1H3??xMm^6jUd>YN<v*5q5Fn*pWyzDmJ6d||enp+u4FBvJnGgo)L
zy8KtM*O%8V&d)O?qkeo{^zivK-5jO(ePv*9Iq4t@d$2y5C2+k(y!UW(x<WHc>W2K$
z&g)jUS1r*h0iMd=f*3BxsQx_MEX=aH)*5s5_m91i`q;~{YJY$IaDMTuHTK&1zkh!>
zPb&yuMq6^6JT#mfPb<4bPAHGiEev2Vx2+_yx!%)?=LlM=Oy=wBL6Zb>ZL3lyQo^fJ
z#XFYPeMI}%tJCG?!r9ZWtlz87R4ES?$hrpNsL5viiLJ@e<uArWBIE08@~&%ect~j*
z*wq%;@ahW|It0C~O&f#)0qCC>5dr`JARz`g1Q<X^fJqlO9K3v7d}z3cEDu@$DXGA8
zS&3OjnM3|6T2Pov5yyj7=U3Ghyrw6F(-YS=lG3{_rE7Xw&s5IHLebO)YigrvX^%57
z!P(rv+1}7{aM5$}Fu;2mx%rrS`k8y*vhoYC^AB<i40R3;cL|N~h=}%yiuH|-yG2M0
zNJt7IlJ1bwBGNMNW@g7^=MtGYNUU7x9K2av=xiSTe6(N@MzmN+yi8QGN=l|)_DX}C
z!b1gYi;_ya%GK^`>fJbv#~NA#x_Zy_^eOrV@p%P<gM;()^V{3o2L}f~fBw8U-T&to
z^*I6jUljkMPo9dROTIwyGnuG!3JQzv6%+GH$`Vr2GRmuKvdO7cwT)RkoDXZ6Q2DK0
z_32rqi5#fjj;?2v!LH_^k<k}p;}b6@r>0-c%+Ad(ERN~wzg>Q(pYT82ebIlodo89{
ztXloAC%%23*xdfIUwg8%dqxyRFDN6>Z?1oQs(A=c!4LYb3S7eQ8yGEKo=;@pSD1|d
z(TadF3j6a!;y~&nc_J2#j^iD*FN>tzJcmXz?vw9`DU-Z&T-EESspGWob`gfb#WktC
zp;Y;Nb2;j<m#h{8OK|bR_m#~r@&eTlvkV%rx`pdq4~jJqqB)tw>zROa>IXctK<%`Q
z1b73=^~Zyc&j?^zUZdVNe94tZmvF282oQ5L+UL@1*YdS{dDLG2tRk$eeDG%eEnRJB
zYfTZ=ny*bh@gfjO1Fhfhr+4Nw_(=OtC!h3u|42!oWk|;c_Rwhgt0?cI4hgdrCD)W^
zdI&&%UV3iq4V=nKe>@zEwOj>44A!5i@RP{OgJ60(c31y9zyI{F@UeK4{~ZI))2{9p
zqN`Z|<j7r?p&Q|!c;X3!m-^HN7Q`9F8=-GJyqt-QoI|*T3hklt;C(cSWLHU4tN_Cb
z!&YJ?7+qb2XF}`C(6yJ^0IBqGieqpdON}x#6+ff16ZNkp-t!y|U+UEuA^N#E+LHW+
z)z~W17Mc|JAL2eobtWD+eaUOH*t_n*W{EFr(Gq|jf!ql4eT>tBN2`b7%EC&n48r>!
zqd@8$+nypwVFZ7CB{O{+5D5#%d(kqRP~!dFoR+uIw36BJ{t|jP*adZ;o$23*9uh9U
zCS;&TElStX;D4VL5ML=w7w(5%Qqln-^XzeWOK|>-1{%ffFy4}Q{6(ZDmr-354g15{
zl>Ts2|0^I0^lnRt08(i{5qVQZx>q`sN#F_t6?IZp$g+P!qBJ4C@(cZ;7x@!?b`{R#
zZQ5n+Lf7TEy2d((I)RxfgRdHNU$uwfJ%73K&uLp$8C%G<IlhgR4>;4BIu7H-#2#;!
z-+$BG_xYC|tcB4W=MLJf+XHFcodF>+Ms0HN-EKo4E9`BtPB?2<r}TXz#c#*+rn*z<
z_pi_#?oz|bDPKUsO(;I}jL!$y8z+XUI2C${3&5`fN_tPt5YkW$e#CO<O{4SlUA#V6
zdNuP-Po`T6OsYm22ts@<fWt*g@ysC3uB(J4<vV{*-h%1dE?j>SxYKTtwt%w=iOHd_
zsA-dF4FNc;=6&!mfBk#-4UM2a)bvVO7(9w0Xy^;LtGx8PgM*Xa(nyiy*jrT1(>w1N
z26z;;^Yi|m0B>G4CA^Yc;Jv+;EIe@k93?=axPnIyuL6#yJ0<nJQN3ixpIh~pNgq2f
z8i}j%mbX=fW)2)bFhkWKf5xGA6Dt0c2!aqbWXKRd<oCj+n!5CKAOpeiox3h<nI=9U
zNwahvf_z$PeA}{0ZWV5jjNrGVAS#xb|I!l%R@Nk-)FSzC`kBmXd@E%6lapiia{`?f
zCO+|ua5G=%k&yC1ifOtl^8?Sk^ENuj7cQI%)i65-?kevPGWib@*J(*J1Vo@9)BUz2
z?3FKOH$W4#e;4CV(*pyZ3kbZT3cSoX_Eku0b)APpt{y0l%D#np{nr0e4+Cud4miLX
z$SFs9Gw5$2frwKiWsiCw<IZg!#JdUJVCOZ62}HPH)_8Q^Hdsn+W_n;CoQu5%mi*=g
z$YaWlNgc>{C0Dba!D2ohtwg%*+4O)f7~4Cp`o1hj(V<$yVmIE7RNUN6XLu>_b-iPf
zRb&e=_v=D1UN!DE(UAw<{=^5(88^Pec(3f8o9f$MwOa}uh-XhWX<BxS+}0;qV!+#1
zLmuaJj?|iB@IW2&Q*O4i#1!-N1}$NO*;F-R>N``nGFb%xa@YtVw!h-7YER0BubY{D
z;kve_)udYsD&_c1u=yufXDHE#z?fPq-+qvt75TsrV;h%GC>+zNq|{?f2L-OZm5|%(
z1Q)BUbVFp*=wXYD+2@lV&U&>WnQB)Wc}^ba5B`vDABEOt@4u_lGa$8>1B@be1bG7+
zEi`-aCf-*QaR^h;s`h$Ie7291?=SUE`+0APTMNcCIiT8KwC2%Q41o&SshtM`t;xM?
zwjXs98=W3i8}VqF>_U}mlwaQz5P9#}c?P4b8(C`4&t6>-lY6YT3xOy(6k2A>knE3p
zD3@9SlDX*8#p)0+TT96If)1CC4#eb@H`2k!u<fRYwb`kDquF`w+RI%n;C-BzB>Th3
zI-_zhj{cf8Wp-C#qT4)3&w9#M@&lO=>;54h)CZr_&~Y6Qp7Iw}vUlcx-{ZCwy2qBn
z@<G!$td0(R<2)X!ZoBX^*J73Bwz_t9Jj=vR0zxVgxAzDH@gY3tEoTZVs-L3bG8imq
z^LJ$dtstdChnWmTi9By-5t=>y$xF9KgZLlPWrYpikH73yVF{{oS|8>au*?p)lfN|D
zJ=B{<yV)fUV`#tw@!d@zlHsQ8{hyQ1ulOr)yMSJ(Wdj2;gDrKBHnGotN+#0gDO_69
zc|vn`O>33g%LZ_fv8C?^{aiNVG4oRK%7n(05@;9Zy{J-c2P&cRvI+HZQ3VE#I)-9j
z3l&K3jAip<%WEp3l>`&6aMp}MxrV=HAeE0l6D)Hl%c00!2L=Lk#UiL5VGQ{xf(qfh
zhkI{(p53S#>mi9d*lD-R{_1hx43$VP@8)-Fcgnh`qChGLt&!~)mycR5z^T70{YKKh
zrm=w2A2E^odu7Qk7xp>*G6Da>Uf1Z!G6TN*=EJ*LOQ8EUfq}J~EA5^6aconFtlnW^
zf1xX3pAh4}R=u7zFJ-W4^kkcU7Z~EfpFFVdLd_7U^qL!t81N9eP{mADf6~*W4FrY{
z2Pgbdf3ca=bicbc_HqR5Z8W7m`|PKP*{z^kJpm^C<ezQI|FWA|qaDm*6KT{Y?$Lf4
z`z#&1Aw@kKZyD#<`stSLw_IXTN44W;&+$l6_tK-0!<+`o#S8UR;C^JG{-#YVW!Axo
zbl$e>=b&OU=EL;XNVBaB;a}fz^9}M{vx=OQFHx0x?+syE5pXf=?%meC{%g)=czx$q
zE6^3J2M5B^%?9Dqn4Wv{0FUjCVgGq(^w^9zMuc{omoI1KSLo=GP0sjZk59#oyrYU%
zu>JK1UeP2LN@;mkfSOk^uZ_Cyv+k*^zYDZ7IF_B9AF#H+$>Wz})B|w$*H3<ZFJt`E
zTSFO-yuSGLfp+!`si^u?7xpb%?CBQl^C@2mF6^y4*X~yA9~NFd0t?Q?sDl{8qj{Gn
zBwA88c1Y2nx99FA2F9Gr_0bG~XCZXgaOQe>obJc;AY&6|u&+E|0|jg=o{`vl=LyQa
z39W?4b!`yq41lTadQTweKeRhpK@tU@JOFrA0|PseI;2DcTRT$K%?s4MPzE3wka&T*
z6F2^Yx(CgnvpS+M3;z#wm)5P3k@+9g9VUM_OPZ+f4K%cc?ck!k<dZz~kfN&>`(}X9
zUeI@SZ;l#ZMXuO)VGt96v_nY@JW4d%_R{sFp{9_sk4S=VqW6+-=V5^b+bX)f$<bqy
zMN3x2OV=LQ68l3ywhct$43T4>NUTZjIOF?Y*qw)+CanV$Y?~a01@u$_soMZvdCFdz
zX(rxjSwxnd0ND%Teijz(JC@`ROU`3DPrEx7WK2q7XhXW{CGpIlRsIXS`#lH!eIqcU
z0TKRmaas_f4ZutRr731S!ZHxTU|Ah0WMX=VcXAUkt&cq+i9`}3la}N`6L-Yb!!BoZ
zWXzDnz={zlJHRvc^yjweV`vbAX)?QQ0&ADK>RGNdN1k*_q&-H4s*W3qkPN~ahz4^h
z`3S4%!+wJ#P^)}u)m(xzfB}IU2?0q}W0L=uYR{(cO?E+6bBW=QP*FMMl=LK2(AjW)
z0v<qb0kRtge2Xuva|bG<fO>$;S5q9%>S%mZ^3xCKP3#PkHVczLMNTyN_{aEQ4qoSR
z9nBq(_G6k$Md$euf%kle9fb)1=OAx8eTYLb8+|Z{o&x$;a4#()qoNHYxyl4>D=t$K
zrbZN4*cI%a@@4zb1o=p5>lN}WX0ENv8Y-03>g&`G$u&Vs*w|^(b8ho>B{Jp}r>Eo_
zh{8O5M7%}wxjKCf--^_yh(Gw5BQeH6iz?2ivEgTz!r=KOl$4}I^R|o2zodA|bMVr&
z-FB~W(?SYrYA`<w0BLRk)skG?LlSb@0A`?y0%<v+cmQw$a8gKvO)x3OldGlWXzXDC
zWjIqGH*IhNi!Y46gyyJD;J!8wXhO2a8dI@fo<yi1k}Hz3E2qeSzd9IzYZdDk8d?Ll
zzclAGD>~%N?8NN-Dt^wYt0m@eMCHBJ>fMMMy^<Q{#d6Oeo^MtXXNot?<Y+OJVCALC
zv(=gy_F7ZTTI*#qhWZ*;<vMr!I?=%z&khj*GLW?mD7tDh%3kMt2*4eR(nZz=DPQuP
zsPl){n`zd!4e4WZ>pkrok|G;Ozi7REh2j-Kg4sbhWf%u4*4q`p69C#|%F7eu<XdgX
z{-srz`rwi|?0!i@U1VcJNn>_fL*sH|%df^Z&W9b!4-+YkU6BuaOCI+1T?lzRyO$qQ
zIGcu)n}+S1Vh$dTmNZTDHBBxzO*hhv{c4(1ZeFl&e*L9!_6y@<RA4)*Vi6D2;ykD8
zHWhkjAmt#EKQPlYY)bP4!M*#1?mL|3TV(UGeXC?#Bm#-NVA#(_7-?hzMROSghji#D
zt;rMs7lJ+`3`P}adoCva`|<tE>{do~&_EF*TMlx?9tKT|E|_Ug!nHHy(4ZXP`-g_e
z-Ah&vfNq{eRN|NR50U6KZj4J!K|n`oZpV+lPF31V4Mq0ISsOp(gVz+6X#(pr<b}66
z%w1kwJ(*i%756H{*1?7Oh6|^Q468dD#1=)T7e(Vc$f~u<dan&&@{q=JHz%gykw+kn
z&r8#CLMOJWb1V?VhfA-vr@74)GKJv3K-k^F<gM#zf}$Q>jp`-+rn~m!Je(z4&U~1Y
zQrX3FaJ`xlG}i7@w#}TjUhyfJX2B}>2Z{5p-=*v{nwFd-0*pok|2W{jf7AV(>fOGg
zC%jxU9oeS6skt5e9BfdW*uA#CPTI~J<}p+GTnYDSdTHBJp7c*f(WO1<)^o*ZDGTg&
zVd%I7;D@}r@qCIJ7&;B!%{bmAaem_twCr=fl2txhkig0lc8u)6(V)O?8pC+UZ7D=Z
zc)O0}L)1@~UX>u9qlZd1cIZ9y(^&_!K|FeC4Wku5kS#4(7VxYZHAn<t8gYZ1eSRwx
zL2kw{r-NsSD4+w8ySi~8nJ`$47mSsc`}ne*o6dZ7T-q(DKWG0O-M@Ktf!5W1;nCE)
z=W433SB5YSFZJ5P`<@GucXBTa%5@6|Uz;tsykj|x5)e;c_sWqKEeH~w3zFVa0(=e<
z;qwsh9eP~58Dt+ivIlA}ca=Rk9FFOb`Rgh}f?iscr-)3pSwzuXvKV<BRm@y{``|M(
zJ5x}=dl~blZhnDb%qP~PxnbvYaoOjxq@V<8ror~#HtLFFwE-_&-Sxl5i+-OI)cYfe
z+I-OysE`=I!wka{DdShZjz-qVsRrkp{21TUke7PErmy)t6aP|EVB#&Pz3$KRVaLfV
z#4xE1^z)8-7L(GjoWeO+V@*zD!%a=z{n`dmopV8{;z-A@{aoc~wfRpbtd@gDfPiA9
zoU-^vb5oOw=(x&VfhqnjD>+NeFLLUy1lkWe+h*EqGFK-OaX_u?9+_@Q(6KZ$1V^(V
z@Ou(R4^ih!R$#^`O}-~_b$RhFm_adWtvR_uiPNH5%CI^5^>7-%4Vu#Q+YH~@@AX$d
z`Jt)4K)kVjZ9?D`TrxhERX=!WA~9et)AZGkU`?gOVpVxn>8Dp^Gv>8Jw35hLk!+E=
zl3K4Em9CV{h_|JWmM)I`>7?9~e-5kvvLUb#qPt(CD=nnM+-m{f<WmwhpjFW2K^QxZ
z%q5ebA*b{*clF84_&_ZKGK<l+b`dkX;ck@?{h-lb({n)WyNRN7zy%u4fB@xQeOqW4
zeYem!(8uA!vGJO`Nhn9WSE7l_t(a$pw_}b>mN7<MTGv-XuSI-Qfw_${r9Un+HYw10
zoA*>SY?AesH@^RaN1UH20i%bseEqIQm)lB2b#y*qb-sYY{%_bBSZltEGwlyCRjoEn
zi#K9eHN759^Loma=7q)L@tbO`2lizvs=qtu=7<xM1*)|oNl^QcMSEh6UG~gt2dG8d
z6^qoXl+5gi84r6~kI{x7<_z9p)_L`W6A7UXn;a{o!;e?(hQ%TT7ABk+r-|6j8ba#l
zpo|f_yPxaN)$RI2>|iuE4*rVidRkdJe!Sl$3Kc!~Wz4s~ihfrf@FLHH_$PafYkKX@
zBOgBL4PSMT=CoTEi%sC5b%L}tyd}8)B!RUJA=UPtig$xe)#D77+g`9y8)8k$b@)`x
z_H^W>Fz55Uu8pI=8|ao5|AGFoQak76+^Nt~(Y_SZLf5<UTaUM<jC*b{EG<X&OAZM=
z&J6qf>Tv6h35?TIK}5(y`Oi&Ecl#uHG8-^+v8RI75?K8qedUfDRiRtK3`q6I<A%Yl
z!6SlJ_jba}ww@=9$lJFz>yCBW&BA>t0nDTyDBH5?2d=sH$=s-rQXkd>VLRtZEAvIF
z?OFd^#BBpkXLh@<tPu)joTxl`lz`o|G;{yXcbTZ_h+9Fo)%H#}w;JN&o{j>-b#9I(
z-JD<z@LVX+_87VT)Ap@S88rI#sA$P~fzN!=_Vtw7(#5@nAA6ws*-L@`Vqk_0!<qD{
zHWl5SpNlWc)%-tG-J(5*eM$0bOpCLwwmcB>mvFj`tNae2V^N42dbwgR{_LQby!+&J
z80)Ct`%UjADcD9gcbL0x^X_}%{%xw(_~)Hv&scAMDpL}t1Z-(HB%qG$bdI{~_7txH
zl&<etJMWEFvJ13@Z~ZegKUK$Xv1IAqIoLZ`+Soebr4M*R<2r6@Ee3M@4m0S%zkgAL
zcMf;u>vi<L(_b3qdr<~mm`lQgBsOSx|D8w85W{?W!iY0rUPX4Ew?p_&Hj<L(@8^c6
zGM+9CzY@Flu3+`J5OCD$7U9~p;e7pL^-!$=k8Lp(b8-J+>iaty*8}py7;0J#?y<2*
zwnapLim0fkmk9ga>i+9sJ!l~6WX!pFQ*D)MDTX`}_aiwLOiKRQ9Ch7}P#qA3roG$z
zPJ<<Q6v%LwhZIk!iS-+dW&9nx6O|y;z;~a>ZEUnA-!KSR*x{Qd1g{ggtpG@@LBb`N
zmLND041*Fygo)|t;sO$^>HJzuL|RF7I)fHZ2AH#;NQ;+PNaWL^u4qb^s%?VOHYc`b
zK>0|Cr5s(&-A&XOx(seD1|qN4c?p=cir5FvuLqZwS5S+kB~Fhe^3+sN2GT`E(x+=_
zUx0TD_rRko;E74F=)1*N8Pmf(og+)g#uv9f61?Z(b^@nag%ZgC4uev?_NtLIb~)eo
zW9`*1vQV0--1;3g;}=8QZspvXi=nMPRl4b#A+niCQWj;4uOwbG5SNg?M;?NLG*BdO
zY#YiFtD)ea6i%p|2giaH5K0COfSgN-h%S6!)o==eMWTDmE^hcyl$3-7s*k^<6)bM8
ziX)>(ESen|Vgw<UB4*Wk1+t-VTIL)kCSGqmaGfj1TacvJKpH|-PcLxB{j*%>ejMoH
zkbjR-a?<~V0VAGq{xo%Fp^>MBm2uWpJBgarwrvJV-|6{I(gbIVi-S&SRH6*)N=2N-
zn;V6YG|FAxcnv?fuIT&xdyXujx0pDPN<MC>4cDUXoWu|kHeTMp*2-St2wY=Tor!}N
zGsowdsQ%Qlz5NWT=!h2DPym|PuGO+R$1E!1Vh1pfEG@JWJLzTjDM!v25To}ih!$xd
zVD`FF6Jnhbe#eynX4M;uQ#m<iN}$kqv1wMfn{No~Hr8z98Y%2-<eBP-e$KbFRuVLn
z9>mPY=!}l(0eO27uBK0Z)@YE#@KyjpbonZP_O|xO1P%JNz6P40F1G}rChr5O`3Tu>
z9T<&gG|owa@}?x<P52>?65ZKn5oCeKqk?k0zMD{qufi9h(sZLX4U!ZA_uhlJx~QQ=
zH_O2((9+E)E<le^2WlQDS$LKGI2#&oK~HOLwS+MizH7+RwsdS1Z!#DI6%+M_s;hE+
zeM2`;Gp+*tG66zJpBPt>s#L}y?=r!=Hj+pwcVA>OcyhuZc4ql!gVz3B2hJ-CeKCBV
zNmQ!CjH(g7(lq&^Hr+n6GKy9$TN^lQ`@R18Kv<w#0IvFNKPvti;C{RW&7<hKSHg!*
z>oQ}&%SN7q)SY5x6K&Hy)l=4+O-IwJr(cg=;i&)0725Sd=0Jj%&zdF^xha%v;WC`a
z`Be$W;Sd`-j4={qFE{*dZcsIvEu)zk5ZXQP{^i(HdS>xsVR%C{?SgC1y1dRVj&h3@
zzw2=4b@SH+7>JkIzjw`Mp1(&c^z!(l%X;&SVdAtB|IS_~d-3MXdl`mAh{M^lb3WgY
zV^rEst8NZozTLC;Yq#x%)bFodQCcChGR4QC(^MjhdOn@soqq4PzR}TuSHM~^U_trs
z{YUOhd@4t;uJJuRUh-=F`{RAs_rIrBD^ADy6E^zeFizVxb-0A%`JJDuFDh~edCqE2
zR}QyY&;R{7{eFH9phJBdE~?FQC)-#@{x?F0@FoY}Rv`m~y^-LMRS16oKpdlYK1d(A
zpMavPgz4%Hl_5<H1&u1<He*Aqefvb|^h!D}y&R^2#3bxwC4Jb~bKYP3$vC>IOBt-g
z{G10QJ)<hdqOoD27<ZCnU=?${-iVm}L8|R!)iL>=ie%(L8lJA2{e_;6M9{1k6F_~3
zQzq_8<^}*o5`eu|Bq%8GgBh8MIPWh3FUdauKwdiY3C6z=uB}Zc8P)K!6+e@UCxCC#
zapV_%ruEu5z)&ONV6sPz8n(F(R(?=HyGkJAy~F&FyYC=ssQ630NI_8?>OT=WrS5g$
z{19o-l6-|K5tYqyASg|9L8h0;7E~aFbX`S}$i!S$Iz&Dda{$ugyu<{N;#Q;3Gd|_N
z`88d<*IlGW-e4kU^@`Y<mT*O=iRoNb=`)MCi!82@VDTY88lmNBn?02$-HG_gtxjz^
z6W_wJYIO1kBCLfkg0|^vZUlIf<SjuF(-sh#TQ4+=QYhBgc{T~<L26jdV2a+cXnHmw
zpkZgKu<wG2m!!dt=tF|4QoX)3jp=GfSO}=+8%XxLSN=g4s$+L5rk1FcX>w9I>>y11
zICGfov4uSu-zZ|NWi=jX)mV57EO7!gk8Yp0Z6k0%adAGFxy2?{5KuyIP~6SnP2X}s
zi`=bY?31~I+!#@bJrx4@eYm1d{=5_vOK^3YePgQ%I0roxq2NVx=N&}4{ZwuM-qP=q
z9uU7VdHR)rwcfBa6d19=NKU}WE#QboGvLxaKWaxja?tk@61t!4o@ZxX^Dm8?!5fH`
zwTCe_5W0?*8!!Lr1ic#AtzWhmL$l8~KzMPAd9YefE;O*7F<v`{XYTFl2u<b6N&mL-
zcmAUZ(o>KQUXq+7$A%JRy*cXghhGCe)-A;*y&yXaNWQy!+<2NQI#B6)(cpc!8oCms
zmJwMX_w-6#M7lYJ7!b$jGyCye0}7=ky|yr*DC!W%!$-~Eqp7oj_^X?S`aTv4nya<%
zJK}*qKYZ^b?Z;{6;2r%!2{r4#uV)q*Ls`$U92a$rNu7;ddCoa$-Bp$k*I^NZOt>$=
zLs20frn=~lbF?A8eIoqFt^j?XL<dF7#hOX0rvaIrrT52HWSBI>1+iX*4ipw-FAB<p
z13(b=B&7R3;1VhjuK@&6?<YcaYB4a!{Sqja!U1JXEVrO+?U)<1>$d|Sc4l_-H<smM
zsN_Lf#Ct%!lDTwmB+T42-bHqKc2MREz?6^`d^pk|5jh3Fm-7Y3u>1rTj?8k?6kxvS
zTvfTM@013P1x>z~NiYtne}jI*dep&nH~ts|$BXc^lYku39(mWKVS?8a!BXrec|{M=
zcJqDXXYnmKb3y;0))8LenS*nXNgHU6HEL1Z`%2ote9CZx(u9=<rF_%qAl2bLDO5<P
z_>n7v33o2zk!|ujDz8nRXD@)K4y?Cp93C2lmBNz0;%Gwx0sO1)Y_NVxJwK*sJRAC<
ztq&q-)$nn5brv_e`aZU#NFRE)t!{&}&;H`nQgh^fGF9G79=<k1Vv-Lx!AALwzgg2w
zDZ0VTE3$pBc-ED%jZk10O`!E$^G`{q7@Am1Nv;coRB_!vqhbB4^<tU7uvsP|0V}wL
zmOxLe0RJ*S`(jvoI?wHUBdT}8o6u6PbDaMikr|%S%I)1#i7L82kVjRV=CB@dLsQ%j
zLJcyQQF{=sBhF&*m%9Ai4zOllvyd_K_zq`I{MK0c4|j12RU2cf1!bjCOOG4tJ0HjL
z)$=3~rM_FO#;4>_VMt~ltY|IlqjUR;6=WQt!HBYZdVhxW!HE7=ZEJmU7^vwvapfd7
z?Q_;oW+t*VsKMHpm5(og@KXy!Jr;T}6yv0RQ>F?uoD_Z9#y5cjv920PQ3yWW5yUN8
zIdmjHHXd`PUbE#?G{^G5Ms31WmJ<aMZ3DsYT=F=fS)Jh!Z_^n{78Vs@=NjebDhz#A
z6x`4qEvxRS*voTUA;j65X$-9VpdNI4F#fH2M44qo(xSx-K$ZC*UIv@MsmXsae;8o%
zn?%5oYb;!w=RmPGfdA56ml4Do#DhcTHkgw5r}Fl;WfGA<{HZNr@Ej&Uh~~thFm3d2
zX5ym9BD%8Sf@h>`_LPI*c&;}IPC25V!Sq$tfayA5&H+FIKpXSJB%VSO?#0*RmBK_#
zA0ZQ%ubs%~nTW<Yv{<KJ9<|cBl4>2A`mvtDHYY`k;8@yb`7W2}^_=FjF06D6RL;&-
z$)3b{L|+wP?YkL1y9Fx<5|Q#u957`KAtCSF3xCCe{jCFA@J>p^`O&pyeuW`E%cb3M
z3ofaTPv16M6;3(3m-TB&*((uLehPf;B^no)lBgb+O<+!^=50g8sy>2G&zLpb^8qUb
zVph*_oH)n(fHW0h&N`WBeP~X4KqlQ=_=>R9i+$j0b()NT>^f;a(f!0HfmvVBH!1>L
z_2)rfDD*pCG(vcu<smvoHcm-^zS$dq&RYOT#}SRnV*+PJhGp(oCTGm#`6Uqf5!p@T
z+=_PVn;SPW8xVd!+(lO-e%ls$MiiO{>A0AqgGI9MnP)E$XeROWvLM=BvR_hwSRa|L
z$Ofk39m!NIdMO~XuO??%{SvKNT2yf)bq*~)!ZYl#!mMd-#Xc-2;9e0~Ab-nlN)euc
z<a`j|V5C`8j^S5UN-9J#j1!2b*$fn$5_UV52awAQ?O`Wzw6hf2PwaHh5r`w)IYOU>
z6IN+?Df!Z}X$dQ9p;axQ1&e&dLHqW&)LW@+AtlRe<FYv5mdJ&bxj<Nql=9AneI<vT
zZ;0JZh$qiXv^t+d{0^6O9LtI*doe$&y9=wg4DyX27blJ@MxW)oozMUh!%%gPNGTty
z<epsP{&sRvt}kC&r(MdCC(iOTTf^35c!{RGLF#OMrs7`@0DEzm@-=jtjM+?Y9yJgp
zT2(Bu&M!R&|8dd%H5EJ7$#r4lJB=g%3Pj#H6BH{E02DD@twNPBlIa;QArJYPha}kM
z*e3L8CBu>W{CxBZwTlt8w!b30++qBMQmX9tXf<3`=R{eLgc9eR-)NkZjpro*G7@(V
zYj2MW$ACoQ%}XhtU4L)Z&2@0S;CCZR8#ICtC;XBN@e;MN#TQ8Mh^>$-r_{}wjFb+M
zjP+W6O|d<5xmI(TTdsA&sU@#EWS?0*FzV5fF`$2d)7{sQGxkyDFEo7e*qtn<k6)LK
z!+@eoB)&b87M_uw7Zlym5akPZ<02s&BjxC=o9r%zwy91IU!+;vRs7i%s;zAY5cb^Y
zD;cZ6SNV*2pZG$+>I?SBh=gn3X0E5?Irw3)4+Wa5j|?i0bi~M@>h2cyS**dKQd59(
z(@b-PsZ#2Z=OCgL@Dl#OqU~j58!XCcssy=zB=>Z_2uvaVaXVL)wiCKK43OHFabgzz
zli$YsyWOU*jeWN5TCmzqr`n?z*N)w;jX%%8x=TxBryE#`ix6^9QJvVRK>jEs_l7cj
z7)LMP`oT?|eZwYwrc*Tppp~M1H>dMLpOV$vX{z$b(&3RcSBiPmBl{<h9N#?(C#q;|
zJaSd(c6aD@$$#W|zxzU#a`V2X_q*-@uAU&39^i2|BTzTUy_45P_viB-(YT(#njRH!
zZ});+0<)lxe4BwrZ^%YZqN!eUb}u{d@k;RjA?hu>n(*Vk{cY4XYNMMmI;Bh00i!{>
zQRxzuZgq?rDP01N6p$F5;^+_+>2_ezQW6$FzR&$U_wPU0IXh?P?E1Xk*VPdi(V1re
zem4%_Hc2mydr>f`XLO`@q}lb9v&(5-HNQo#T3pcOtH6Q0;4AU2TE{M<QFD#w*~^JR
z!-1EEOpW?=<sHbwu4W5^{b&Q(=bhuv3HIAGW}}><lg7~5E;c{oZ&w|^X29N{K!e`(
z)n)ixH@sn4pwV9N(=y$1H)r?#Wd82nWD`@?SX0Jy<9C|m+z}S98BEBs(<V`#Z-2ir
zjwm8>uqfEWzjwpcEw!j<u2UDnArq#G+1<CNi2E_!d-jaKN1%)-i<(0L-B_=y7NU`0
z2f(4<Jxse#n{Ga+N4dGb1y+Bj&#wNbVD69&mDAPPiA}nKElreNjaEQeEbT(JSS1Cm
zf`eisg<bmrWGqLy!K*G=ny~THT8T@UK22H5&|6Y%Z~<>88wsc!8cIgp*#c+i`&@#f
zh6Y{?^-f}Fz5fWRMh@s@4rwmvCA8Ww_uTQBu$}}Aj%M3_oOa-mv2Xo3OyvjbiXAYu
zz7q?pX@NNmxb<i3HhNfyzn_(NsJ!=a`nCPARKbLH+_sY>rG%)SV~V3A8sk`rcdT9k
z-qWEIWkH^{X7gDIr+gf{6UQtL<Nq1(n9q4cChpa-E?DFWUz5fpCtVx#oKt+A8A@=2
zG}KkK<4%4PRFsAtf5uXXWBI#orQ7$qq{q9Rxfgfeoyxe{x(_dE-D~P`HqCYU!#o~-
z@$xsuCCK?bBXOMOl;*2X^D3tkUZB#M((%NQ*4y%}kQl9_l~X;SkzL&dA9Q)+lnZ&c
zjqb*9AnIH0rh{vBgo&PZUMAO+O;^RpA7BNe@1V3VMf<zssHr`a?`Y8dXYLkb!$@AD
zPbFo4GREWioY%@rZC}@b&IsR;IOd*UP;Vu$>)Vu=(baJ}c;DGe^)LH}INvG72{Me?
zT^$-IfNt}oK-2*|a5}+s&RTGaEM#G`zX7;Y^b$lhEwQR+NITCl?<vR4G9Enbpf)eg
z{ZLT);n&Ld-G?5--`>djc`mhiW?}EAX-|4m-j9u2Nc`r7;`aVXoF5g0uZquBX)l21
zy&FzBbc$v=Hy3MJ*iNnPv#URNL1Hb6d4N+~TnPrO1p`RIfWIsYpA;_nx8kB+5FhGk
z^&@YrAUi53U@nLQ?q|Zm11AM<>#E3`>4aYfas&jx!^Ug3{60ws81X-Q*YXHy&2MB4
zOZ&dMbi@)ZD))4Y%`P|0(`t@DVh(GuSp6MHr%66zL_JwJJ5{(U{Ste8r{L@AO7Y=J
z9BFl`C~$tpm69hc={vSo&x-Ue@C!KKHulPe=kI0iUq8HB#i~oYzsl&>yK^J#7b&2s
zbp1$XtwxFd#{8<LbzssjK(ugZ!$y!|bglC|wd=@Z4-beJ)w<6};3FN#55AB<s;R-(
zUw(HGsEKa5!XP*f)gbyc1rb$wrmwC?y^|7AT^i9d5>GIUTC%?6w|4oOjQP44pH1fG
zR&1Iv96M{b3R#?a&9migqeu7q!CYrZSl|@UF#21H;nym~ueSTt_U|R*)-d-N)?4t|
zwe2Ad*0G8m%%kz*^Mr^=Vm$UX*!$*2T-f75kI0<jrX#;^Og52s)}L}vVaP-<Z9-2z
z8W7I?pFEE$-I?FqKVv)meuv8Pss8&f{i&^voLbSE5c1>rM+NB(rMnR|lOfxV^RK6C
z&ZDb^W8S&On0DP~7Uz}vrYPYL6(>#Z>}|en`kvx6!G{IC;GFkmjLmh(JfO`B_Yd2?
zO}=|GKXf~+VQZI(Zclk$@84Ys=i*r`H}2IIR$3%_$Tm79?J`D1SD%_bE+}yCx8eaM
z*EZM~9PP=jyr9tY%~X5gunrT?#NWuU9!vA|irl2+m>k%g&xm!zJvfichQ$vQ9}DKS
z3LS85kEZU3$TeIXqkg2eoR5BGi>wA$=6p=dg}&9UN-*(DM1M-<3lnA}f$o^^U+CZ`
zcbR{d05~Su5#RP-z`hrzncjOeXLt|nY<${k`cwVUDZ3pAb?a=(_k_O9!v6yR0L&hY
zJSaFi=o_6YI#2kJcUEo#s$2lST}Z|+u+=Jy<u08~8Jy|!CZzzLwT_;*pR>O_PYu7u
z5qgm*`}-XCB2$t#g$!^`X}q=o<_X<yQoZ-v&TjY4%;khg&Ubntr=B<XYNmaM-V;An
z0CP2vwc4EW!Z1sZ?Tzs{*u<cguy$=s^21?v)|vTxX@yUmJ|cSXg$DY+tEYb^4?aA*
znDYIX3jYJE{AVE=jHTb=;?-9i11nei?SD?E_j3Ldak)qZMsRS@kj2Fz#p9EbQ?5WQ
zV=5V4`W3iM77>Z#MpKcop!o`fGxG`xGbPG1>$A}G4e<y`e7qzN8FgcKPEUqVWjwen
zjwYvrYlQY4Z82kP^VQIHZhqlvXuGny_KCE<@%hXDD6e;R_x7iC^p1{C^vD=Fk|-qw
z<4QB)q4HSrgUL5qAlk!i9f=Y?U2X?Uu}e=+GB`Of!AE)qgOm5kgGzaR^adn4rO;8j
z4kpFu=rFQ->3%b?uDV-<TR=MkOWy0qv)8fpm3k<cHu*2L;69oFQ{qB@wNy`S5%Ef*
zstz6Cr~x3%oHA$>_#Hq$Tp6n--((53{P*OSGn+!m%NWmN_V8}qtaqur?3UaI*&Ka(
zGOTrvbp<vs-El`!s$q%lHvPO@8sjD@8}Y`;Pzle$d6MznCd@^Kh2qv?3z->SO+t|{
z{qcwY&f2^GJGAA!-P3VZYTcfVFzVNch6qm-d!_^XK-7}u+@S}Km6ZGKl!pHe;!E;{
zg#tZ*SX1h4W?kjV6M*LBXDZ%&_Z4M;IyH-Mmahhw*&=!j$|5Zt1(lL_W6)1Y_TUa~
z%SMskiB~rH^f;=5gr%UC=+MxhswMQ3fj!f(4sHq3>Npnfk)jZij5FMGHY?OQQCuqM
z<CD0S^9^zt9;8#4Y_QH?2z^Y5K<syT`dav&<k4Nq!*^%pVKI#+Gi2OVC<X;8p$^CB
zI1J$nka|L39<W*c5*VSP;#xxPRlg_%_rIXRW5}hNDjsC|ycEb>_wu|)b<T~{pcZ#M
zxY9Q)X~h(wNnT*LR5gyR@@$R`6tysl0HBblGBFb5uX<T&l<8DaN$Jy7P3`^as~skn
z1taRN#|Y!=za*p9SeQ2`a12^$no!)?ZJyK?-)osMdtT^&d|n26fyR?KoOn8j!q|9J
zzhrwoGi<*@n_IRI8rcQVaAIsBdO&E|!ld8=T%|9}O=x`qP+s2yAeiO-*?1X^k3kGH
z%5NLjwZWh+#ouS<svG$IGy(_ATiGE2Xlg^9WGv%0eB0~uyMMI*g(Mk`AsJ1-zKNlz
zm2F=`w$u;pbwxhxx^-_?ss}x4(D0h|+m6M@z5T0SI$^{WB6fBEE<Fg0m8c+-5c%`4
z=XfqmH$gJl3NtT^*;^n|@D}=_Osx6kyM6`lij?WTz%0Au7Qfb5dd|^(M)vsfby93(
zhV;>;gp2SyUjC0>J&NrQ;`a=^-v~4lXUyzUett}e7iMe1irMdN*ZwcGU2;gOy8)Cj
zSwK?fJu&)G&xI2Cu~CRWu$6GFOWSz!J9Sc#LYfq5F@1dq16(=)MJa+UZW)~{7=t2D
z*QhU{$351cZs<x%{J<S_UvvH^K@myuG-f0sP0e7ftc>`XG3k@|zwgjhKl;aaM6-aM
z^S3Bsu5kj&i^zp_`=E9QShfiSzfZg*?GqopWD%eP%iK-+-VGK3-6%->vB(A+ASMa6
z4)xF-;8;5Nzsy$s>jaGP|2Yb18sL%>d>g8S(!IR{Zar5%_$5|(5Xp0xa0P8y+DC_^
z!apY6aClF{dk_WBLcu^jXi9y5&Hus0MAnau+Mm-tCVLi^@tlp0-28R;3^QZIwgn&6
z;5bVAKhSn;R9m%)GkRi<Us!KU-|i?QZ=zgCsWVk~JUSCkQz4?GH*QvNl*M`?ux~Op
zZq;>^O-QbgaH}4-T{_C?n5d8n88hIRn+jswyvHXD09`F4LG)@PKorps<{*=oJc=6U
zP&af@)hNL4V(z*}8Bu$iD}5@|R*KMj?_bc&-8ut+%&A~uHi(o#_>ep+gx%c|=`9fO
zl3(Zm2=^ft#3^IIXh*)3eD`AH!VCUw$R$Ipsz%XH@+Ncj;)kd1(ZF9lp4zOykGKrS
z(iEb|&E|BFVi&Tc*%8n$j|Zfr&TtF5kzY|}kjL!}VCrXW!`Y3=fL|vsQLEaLIwWjR
z4u*mi`_h*M1<I>)DPnWo^keAjPV3u-@pYud+F*#*la+A8SayA3KFj;bK@3;wMASUg
ztkydl?9e(4s!dGkJld*>)7`P7TC$3rY~{ROG-P`wT0xJ~OPwX`JP%}C0J;W|bEBdp
zIZQDReg-k5-0(7v9$$PPehSmHoaGZk#n1;fQXCgL+9nJnJtz<$@9W>WQNGSg!>%1v
z5H#dH*0MM@+9ucXHD194usn2W7TwYKfE@ZHVr4_N9l+_iB_SJ;xTYG*e0y=ww`ln}
z(Q2rg?3`v>*L!OF$!X6fg}0}sh+Ti$C~%C%vrL0Ao1cdWeE;emYCS29>^#Kzwz`ie
z4*+Pw1b8zeLZrSy`n1Z72LkSl9ScM{j?cB5fUOYx<ux-aGsq`Wj{AJ7B#=*}0^(oL
znhmQXCmsKn*YplDC04#Y57Lx5`PQ^kW6fNAc01rhfNNv0=Zkv_+QZ3dfNiWGsUKrA
zC_HhXU&=~KW9SsHem+EIM@o3hg9Tc<$E06tyv6eJY{IkmYdEWElBUlFAUR?h*d$iZ
z6e&<bEzM3XA4D^Gbt?ZpQyo~?Ng>|gl`OjB4b&3CSRj4bt0^r%_m;=N6in-0rI;}C
zf5CeCi7uHs%*wsc`{seVhV++$MOAQtXxF*$GMVRx0ve9WlHzYCT^}xVI1Ef$J<^}_
zYtz#RdeHc&li0d~S4b`S1GVMcSXlE_l$prj%M?{51l(SF@xuolUnHXc3jy+=#BXV_
zg#e~*dsSETCDAV=k^kJbYP|^Dv#J_q&Thqs^y~ue8v~XD*A%M~{_e?h{vlO51fZ-D
zAf>mJ)uN?uA%NEy##%%q(pMcSgaLqUPGS7G&p-|nEQ>Ojf?g+`a<d6QMdJ=&5mh(8
zd~oElF!9FwGF(^zhN_+N7j~8)op;+fzVqkBPO}z-LA`Hck{|Va=2b$E9vb*p4ve|e
zb<k0>nHj@6P@~<4X!4J=Zl+9|9Ku$(w~ZTtB@F;0i~(-`P3#dPD)K9CvSWGuCcr5Q
zK_M6_sxZ;(!~J&d2Zr^J#1yw&-c@0iS_JiaxJ4$>p6heC4zZiWQ=8sbu#zv`?!*2g
zvHDrh7q)dRC|z1qJU2iT6y5XX({!Sv41#QjYm4ev;}5Q}Cr5($p?qRb4ts7rK6cUR
zILf^oEn(66<Rn}A{6fLW^iLg|c3;eWJJ|&1<Yj@GT;Di?b9x49W0%_#n1I8F>Kr(i
z%lXk>${Jp$E#m}jeG~3qZ2gdPKxVrFZM2~yq0<gU9A9!$VC?FNp~3*KqyqpS?5b8|
zkAiy<@G^f!*y>C$k^njL&oWjY1Koj;x&v>?10YM9CG8oEQ6!3E8q?7lI?;v+b;F8O
zVZTmc;hrY%tw1-~xJ5|OH0!`jH?Z7C=$z7nMJ24)N4xmR@Dq=xkCnpZ&Y^4HsV^`z
zww@3)8;_1BxK8KF8)cmI6Cfqc@mh!W4x6B^F8Tb(6C5$->riB%P5jk^Q|c)X4Xez<
z1<~PBP#p%EgaQeE0ZU2qnn!!Fdh%Btdxswaq1l)lR;Y2LOdJZd_Y-P{3*=qD#QBYa
zV>&RYPVia&V4bgSyV8t#!=W4~3(*55MgpX%19F}f{5d|VBm^vqu&We#JcdPKtCC77
z?(oVm0^mu_x=FI@iHU6YEj@9eTFIvV$zxT?$s`}%v=mz{(4y{BVQEzWBkn01uCs%6
zFP7z9x``Al_N#Ji3Mzco7uSmst|{U8w8>cK2p3L+$??%<SFn01)1KwQH%7sj^MoWq
zQgBBajjb;9J6J>s@}yG9$QqX(#qW#!4~px?;>1p%3G3HxfuzIX65;Tto-ZW`PKwQh
zgqs@(;}TZW!1TLS>0B3K(XCFa&NA>}I+}SO6DxphRt5`O2F~#^{Youca@7H72EAuY
zFT!T&Z$X9gXf;$c4$qT+C`Vg{(I&IH?)#~E$)vAr$jIeqeXRmIYk+!4Y*L-si+G^o
zV*2w;@tQuj=X21SJb3u}e?T4Ml{}?D9qRS44waJ<kd-W*O}m(vdZ9&M?a<1?DM$q5
zgynbm<rHIXKrtW*JaGFza4wz$X8fX*p(3YJ?1)r#QJM*UDz5AtHJ$PGoaq`wfVn!e
za4R1_#$A>l(iOy)CY|4{ZU>@FY0HUBbxbPl57uP|2~sKxN*88?K|in;!MyD2s|!b~
zX%9L?mqepi&k7dY@*+(0bG`EO!-`@-@pvU>U$0BrqKo{Ji{~9?&vHzPb>`y|n?aWS
z^1rcJuN=+1fT3H}#fhEZ$%{OiCA=|HeuXbI(S$vz^H!^)YA4BkaIr8xuE1DEMF0Vg
zNuy=g<lx;B$=`&&IK=2uWda$K%{)r9Ji+YYK{{U`cmy<{gA*fMjJPOhv&!<BPhFx=
zR_V&1*C>hl2K^OAo9&BPwGC~aET1{ZZV;uplg?sMQT{M4dmk$yZYTBqv?$rP#L8d%
zHRkHnn{Q|mI*Niz5@-ZI(|mwI9>-Qpv)~w)MA6$7biZC=64ha<?3pTTbd7A?sIUq+
zYk6l$QU_T1xP(jQuFz>1mlk7>Ni5;zB@^>{$+g7lL{*I^a17f9vxF%7Jc8pq&Z|b>
zD1W2uWgGa#$IOX~s#It87uLpAcFNhNuv}9>K40Z0DwU?hbXyfj-F9*byf#^;)^gl|
z>cBL4k|Q3&@}P>jefw38*ex*(!*i&zMJR1jIHTvdN(P=|COln`kJFjM3&;-J%&c$l
zt78<xE~zGrj@SI+sQR<i@I$(aV;dUH5DzXz&`dEkn~8@o6L5`u$r-%G<GfE85M=(r
zbH0MMrAfRDNHJ;T44z+Xp1)|j^pB|!C3Og-Tlf)!utk3cnXmA?v;vDrGefn6CL}AF
zC|2+PFjkh|z>L3igK%t_{zBtYRD$3g4`}Y;$kyT%%R-4&V#P$o;N~sOc46RTo#yc_
zaG9Cd%M39yJKF9eK_`u{4RvnDe!*g-sP+y_h$u4ICkS#u@?EdAe%{n(mg~JF==xjy
zo~p!<EaXR*sEth9YqPe#_%>btETf1PnIwC=R}M0p4O#Y`D*%GQb(x@mtifT0+kJ`;
z2MDP|88^`k0ZtQg7in;F-8Afx(Xq^3bI?jBSUx~jQLd?DOxpe!o~x-)VxX#LuIMMM
z9Ai$KEe9F7-eqG7VUnhuiu2BtqYW7lu2=6$NB~C$cr|UoJfk@)!juyRuKVSf7e&cS
z!Cuc1F)|_#sHJ<GIWJ%MQ>a>Ix*40xX!C;>#RU_~fXo4)+sAG~{N3#lDb~x~_sUex
z7F7U;Di-{zFXQ9|Om0Mr^NjZsOElk*oZswW-{8t#&!_dkvGxd`P63Dh#RCJ9^vzT=
z4a~(&>Os2U0r0O(+B?iQZs^e{6{00qz-NqV4=V1>;|n!bz;poYvLko5I_hNFDH%VQ
zdeE;vp#~-aEgXg{SCW$tdNTn-yM&wd`2G~qphSA)T?blopCPM1N;hcKX_@ZLp@#pG
z4I9-Cq1<DGefmQSM-F_iX9UuDTyS2C@li66d|ErwKm=&yjo!p1X2y&rO2j1ljAp2f
zCB^iAGa2m#UZOS7=w2JiJi{?O*LbPgc#F%}R}-BfKOK*9pka?hmEkyn>ur<T+X?6K
zmdLjqg>Sod@ohbCd;h#8a!nM?zU_CI7>=A6P1YYQoS0adc>iZ2WOU>O`MVj1cXN^N
z>{=$?m>ShZ46G0g-<=rt%H5u^FkC{tuZi{9F#+retFI3lRS(gzB)vOv_)unHfIz(5
z2c<eGJ+DU??;%XcW9<QTY;y`di)op%>!v$j-2QwqUgM(6S1?xyLMv;H(072uNY{}S
zwA`;JX;Kn->&&m~yNkA(MSIcm8`aqOe31G(m0)4;Pn2;lkF$H|x=}V~D~FYkk=4IQ
zS}3=sck88fZnou3u(jkJx|E++M7<0M4-&2RwrnN5Ikwh#ZH@G`O$=&HMcpa#pFA_M
zi5IlCdJJYD35wEAd%vEG7nnYlXYBQxeq;LT+t=y3m1%~t*?k6w^-j7qH}+J--DEX}
z#x3_1=H~c4`(=!SngQEK1=_nQXsXxZbtV9<C5JHzR|!J6&+20Fp3Xy~X{O*pJ{;gw
z&`oW{`PN@%iZo|{He2}~6S=!%6?b{o*QFZ|+>=PoK%fi05+)bdFz@R!?|ZM8A7(+h
zY}LkUGyLK0m|K=AZQkav&8ztjLiX}34<;ybjJe#8<XUhh?rkNmynU`4tXT3$bFx2+
zyQ`OLixTfnrKfXMn-Z*Gp+ep*-4EGZdd*TMF)p80rb^6ry^`iUpDA`S<Iuq3`)kAZ
z|Lxuv0{X<TtdV>8Y}e9`vv3Ry0DkRJ?+;%)q-6c8{piyDQReeUjFC6@J6oNST3PqA
zmubuS_dNxlC;~majpiS8Q$FOCfA}bWEfX&U-&;f9{nEs^bW9tdrz2r7&-8#QsLCbW
z@;gEf2(r}?bx?X9FmnC=e2MJH7sGg(p%%m4ka<VbzB^AK`SFnwonPrZLc~U3#_zuo
zE<&Q(X=6sf;?5>!so}kZ@VfSogtJgVSQya*+!i14?jyK6gt2NAC<QQf9pBIq1_iHO
zzRxPINIi>a@es(djx=ij_Gq4|$m8L|#nfPfgw6Y3YS*@zV!o)|ed65p)V=R<s&A}9
zUn@DAGNoq$cfr%mmrsDL8}*{)9SgEveNjA{Ph;Tmqj#~X!O^k<Sk-eZ9a}$(@`J+l
z7&~2A2j#MR$^a+jxIAA=cU;`ZzfgWsRVGixz!R*f@}6T!G!yuX-tXvDWK246-zz=F
zbiJ58^qWwxkx8ELbC&x0G?4c0HqEDl2C^M(ws4k@3DV?cWU$0W#l+#RWmdmLoL>Rc
zB`)12Z_ebEwkS6IeG>Plv1zL0y{fd-JIQ01<T0FaU6mjBr1xl)`lO1u(f7eP{qmVv
z|FhAfXMRzMq9zObbe~HafwIOav&v>yIgme7DV$^{cB-jh(d60jYb^NG-Oz)B9WcLi
zE8Wvm&r1o|)1VH649L<?h0gTA{Lg)hS+fC0=}=7}_Cu3!=HVw0v(BvRTUp~lrI<H)
z3Mtelxi!&hwEm)JgdE~`Z-~IttCV8=!>24y+4IuV<{A*6<UK>DC$qOWKTDfmJPygr
zWO?E-mZ#m3^T6w%ROvLi_}uI1?~ZF+_vz>LpLBJO9d_%z=oR%@SOgbK7iE3B`Wycn
zGf?nK>UBrZkw+(fO0Njck)4eCyI4(|cF=pg_`KA%J~;mc`S^<@#3w+w6iDon@c7PZ
z=`CvYO_$0KU<*6^)g97K{@<Z%xAwiBwn4yGb_6M&==f-)81DZM75-;OD0p62RQ%$9
zLWPwttEy{W)z;NF5Xf}&T3Xxm$V3Eiyy93+G&q_9&51>#ar_ckgd|nGWE>d>nkJPS
zJ$Z$DQ|Qo)IAT9`a2P9aMTh6}=+{$88}Xw!5fSX-^6Hsz>M7lN#9%+CkT1QEO0=Tx
z5{3fJpuwc%he>!E4Lji^BJOI^VcF!_77@$jA(<KySPNbAx4IP9Ub~jdtd}Ik%X2WT
zQ#;B=U2qr?gf<6^)ekDU3l>F&>TOKQ^o#UcYc6MB*))5vj<>#=Z@{~+b}3wG3$m!J
zFz3uZHjOSkylv8X$STCcX++MbEs8h2*Db-*QT~yGeZV6sc|;e4=SIKZ`pvlczH5&3
zSPEy?7$4d6aWZHmKn-x0QvVqho13x^u&gWo;7Ymj+*ysTg~CZu88PHOlG0I97!%dV
zUl|YWcoO3v?=>x(jZ{TBp95AD$vD5{6a;=(&*J1ZY0S4j^_imJyH$>86#V*(bUlN<
zt@rQm^W&XQAKtvVygW}(u#zOZ!hujmgftK;E<&_YDG`jD_`e7@iwx^XC1FAf*S8Gl
zC#Ux$_S=!UYT7~2y3#l@dZzilOEQu4&n&9o7Ggg{un?v}k;Qd@O2E>NaU{!5<>~$p
zUzH#L@)Dy7o23X5pEw-YP!&><g;k#HhrlFIKx%P4(0j1J!@Rpv>9m9rO716~U^K&!
zxhc@p?f^w4HlZ+Tf>iS@$!TO)N&rgXLsy>L40l?DJ7;(a739@YL0(9lL#puD!buHE
zu!N&J^}g@omrT<P_x@x?T;d#5Tn&Sv6vd3<D!aU*A<zu%f&x?@$aA-GROr?2f6P{*
z8AOLOh>~DXM?+vsI5t%WSv<B?3~vFDo%?V9i-%m{+BrqlulJ(MXZ!tyZSMatC-daw
zQ~hrVe0enmCOUVe5nUQyFV03t_aY}orQpI6xyT;uXtzTSK*gbcklxaO90JpCdf2^*
zF#AFHymVixtNE)J=M8EAbz>Aim+a9<Egy14P}^3inqOG%>>G$Dx=^${ZO}pL-9Vn3
zWNd;bjm!u~hsi@SoOIewD~F0cc#5XuKwU^($xM;o<JPOwrT^0@^c{KZ(?aI{7?O*X
zAo}&tqzM&&NM<6n3kky<SmbI&U`LVB2Bqixk3G!91d@(dl?B0HCU79iG}&Tku7O#Y
zV0w2(*i=EY(l5<dta-l#Uc9-fw?knjb+*^>z5e%p&sp#FRhJ-a`(sMiU|mS?g;dDp
zg79ShA2GXT!rAeR^`pN(|6AHx5i^Iz4o>;xu#_x5X&`FMqc^)`;sjF9uVPHJ#;=3<
zN0)!kzc;*DSzVseqwHz?Kz36a%TUW7`1|++5S4*4S*eMFCFB1Ov~4PVO5TL0R2u!?
zq3r;&jwbaWM&y5owzt^Ihp7J-+OAW(C`)qx&(IbYuRG{|Nci8Otty;R=gS}vh0=me
z{$OHETWx9@O%$~{O#FF>WbR|jrlS!OyDHkVxbSI<-^3=xk7DKz$aH3^WElM;bJ$;8
zG25FmiCkM4RS67n3x^_?;JC~Y>yR07muX6hH~jLH4mRd&Do6p0p~$Y+&_lEAr2j-Y
zJVEIt7_Av)rAz`KR%80IbXXv#iB9m{C_S_ZhFsX!g`dY!{?@OfT#;m?lEoxYs=_gx
zqWO!E)dh|s%`xY_zmU8okjur=oM~bgE%{crvDSeRKDELi_Ji@ge%=%Vl1&(?kH>0u
zO=pv_L7}L$SJOo2=U6Zhu0084QsejigcX*i(l`0b-FTlp|Ak;LB#}j4Hil-;7=2^i
z#F!+<^1Wvq&71zd%`J<8`!P8*jU}N)jgo!Tkm6=1S+O>omMKL_wc%OFV2NRXs{WE&
zV+{HY*?BEs=$Ht+q$9P1XnqD^L@{JnM3o8!;LyMGS(-cw^8)nk>ZzXVcAch$Het9*
zGsT$9OsQj-j|3ETt0ML2Co~C-a2Y%pv^5_$*YRnoPd)G=VO3{_*R$a?xE(Det=SVN
z%cSrdgDQWw0p+U9H7Pd+@3D%B5-O$2sR0h=FE|QD-O1}x^X}ih@p}&R_oOP<#>c<D
zU>1##YEHI^S{F-~!`ToS;<eECpd`8qkQJfFRQ(-v4(kIBtQ<9Z_#+jZx;Sj`!pb1(
z12P=2$)Mha>&T}@1M+CNY8`$O<_V+gEiC2kAPIt%-}Ecp_qvbnOLQ>gnD_#oiB@!>
zaZ>tLn9C}<as+&Xb|p?x5l73XVQnF({v=@%yL@GG5%dHi3ro_<z@WY_tp#BLrH-`M
zJDlf+_M-)3@BMW@b6Vcp58)G9gwc-x?d5(r0*~(AA3B54q%8*3mEGC5bB76qRitXw
z)}P3BknK_&ViOD#a2evaw@&7!-4pKqL@x4!H>IO*IUppJ*hVz9^;B5__b%v2V|$Nd
zM5EO{{aU)uVfv2+?%kRt7rX&L6TV9Wa$O=4*pR%QeIr5$&u*g4YsLk4t&K7e^{!!O
zT590W(kc>t&p!FW9U{aEZ+V~#ot~eRe@SIZ3sWXqNGupc(P+ic(|9RU`vMH;fyoS)
zYH}YXMRas#l(mpBe}@0qDZ|y5PY0st4f|GSaRXp-%XQkWj&j7xq{-%k9YR8Pvde}D
zBjW}2z0>{#U`nI)l%1)Jw^0}3Uf)x9JhyAVtzJ*%2lC6juJrD`e2Y%4u18YWbj3}D
zEQ`l;B^|0SOQz1MsC+RN*YJQCN=pIk4Igr*Wo3Stx(g@F2~5E?TeEhx7nXkeAAIHG
z12rg}?8L-}f6B&HwU$WuJZL~@ir(vN&@=yWf91N<sni+5@ChLG!|w@&_KwD5q5E#K
z8earhb(<bk04>c|zA3*UfH!SHQunYRG;RmsU!i-oqh*8X^#OZcVaf91FW2efL#a^;
zOq8yU*>|nq-Q|(o>ix|fVk$wzsKaC*>KgLj^{85x+t}%eiU81Ih<rZ3as89w{1tql
zG_x7(D@C4#^EhxXCbnU6B^Dfi*`qzxn)lkac;<Y6bm5EZIuMb^cK5kE+7^MeW>7!M
z@H~rs38Yygx*T`hLI<-L&whvqx0$#$`JE40G-|wd5skaK5p-;<ZsD?;g3=B~^De1f
z@BKx5$&mYSJTxL0f6N@vd)jy{A*Gi`YB4HaeeK5uz3`g~TzbSaJp5GPNi^z7yzkQr
zIEZEe!-t~Zo(D~$!z<h{x{dJAx&Oj3zh)wI*D<sUcfkZu1?#2QZ5>Rr3>$X|_K*Zz
z)uH8Fzau~d@nUGE4gpdmj>xkRwS{PJGF^J$onRplt`w9%XoALpwMSX*&%nJX!~8%r
zo=$4K2z?3@2ZUvW0KzF9Yp53rHprv9k&YZ=6!OE$#G^pse35N0nSM?IMYF>aTj+mD
z$E6eFekjHUpT<oe$40~AKC}yJdBTX3F&P{2SXi8}v;z+Kq_8B`VF4@!;E2W1_L+b-
zSRk1;Ojfwq5ougjwmXy!=F-k!sZ3MsiS_kVd;yO)0CJS)(WQIF4KyLneUn5;j*A#T
z-liOJBepdcByI}e#4yaF=-Y5fow|%-7*Ou<<xMg|0&E@0Yzj}x<KhI;2m{z=C+)?2
zwXbhRZz!h@gJLXVY3M3ls0SXM5uAAgXtoDak6^L!a6S)tCJzhR-4XU?Ha40lpHzJ6
znXCv;BPjS3>4y!w6&J6c?lzZ^l)`Ab=chf0hR|Ff9y)o@>5;?2eD-ayG=gb!M@)P_
z!EnKhAIgC0P^Z)m!M`~6+7ci#4YYU6eo*DkrQ*@RpDCYz7a#R(E&h>+EjHcpsma_k
z{sTr7B)YjJojV^69Zr|j@s_jAB%EjTV$+Nlz>5G0@ibKc`x9N;h>y|{>ZKs>5Qv&r
zwxl`d!_JI057<;rdRGZ3{4?J==@Rj!BR8^|_nR_Uh`=Cf0-`a=i|bUPQOJu6%Nrqq
zv=Sbr$=v-JN{3SP*fo>Q0Ni|1V(EF#5!0DRLzIyqP+v`2s>?8FQdIULYrhW7*43&7
zAaNr242O@)r!ua)cnH(T--SQt8iOT53UKVgeVuu4;Xcn)jE2VY$Y6}0<}!XxK3kkr
z`5zE0aC8NNJyN|A1OfCov!eO@qGj9smJOcQhxx<oiO0$k1u6i($s)#p;ye{FLG*b+
zz>7Dc;EjYLO|xPTp(6C8mq|yqafl>o3|zF8frGt34*6vG0z}htvL|1B2@`HHO*teL
z?zeGQ<vtWadWz3oK6`9iDpbJybdknkl<_B(TQCm13WjJN#z3pC^{4=@rp_bGNn`|?
zkvNfrgHozQK<5eV;KjY4j)^QeOsPcLI5|_rpFq?vuy#pgR~WyMcczC>c`_!(fg{UW
zzO3-Df~7=I6&OB_QKp8|PQ%I^w!~LpsQXJW{q(Xuf}rb?>yT_>s}gLBKo<gq+%BlV
z%e=&rU>;TxHw!Sg<H3P!FaMDk&rIUti6t41pp{@qTulbsw(P?M#$*rJZ8lmO0R{ml
zhLNDsny#9cCgxOL07<;}ynA>{Soo?RX1<@*YTKd3ldU_SEh)Vw!w<vIj!*D^HUH8P
zQ-&GAUA~$=2!0|%3nseN+rHXrqX|0$PpZlcD&;50)GeIXro+?yWM7q+uy$>GHM`YE
zW4NOUocJ>~YJeCa{V_PMp8ZfN*GcVlx>{2So3vZQC`Uj9)Xfjh19*Ouw9PW5UkA2o
zcuD2qC)1E$j!7rz<@u!zLmi8O9Pih?!dW28;}+9ojbsSU(2X4C_4?QSoV{>dGAy-Z
zJ+aoVS#cSn6T^O`grbFsp9_hVJBwAB$!MC<aySZ{D2i41iw%Qi1e}op@*(UdK!G$V
z-6M9eN7<(uezgt$=ehX-R(z}(L7mbSC8aGI_qioNB~A?dHrKiS$HBtd1hUq;6t~C~
zpT=+^rGbHOk^2Y%w0{ddUWJ&JO^9x9FKuV*l*AI-pIirGp0}vKZ9!k}(2Z!zzTTp)
zf)w;e;t;JC&!te^EroAIiy1^FA&yMWd~BtBT-aQa5Ym{si?JCgIYrZWU)W-(^~Mo@
zyh)cA^>r<Kf!N>3hu8U?=LBm(LKGX_cbDs{**h~MxTk-&C(8&2IZHAucezmWS-<M3
zm@%?CDg*TO+yk*?n+bVj2&Jd-Uqwfc#NRNo2``Cv7u7T!V!ED|c9GkP#Aj6WE>tPm
z6DheM{Q@3bDh3oJd8ZvO@f>bi9|d|JIT1=ww5I2r8OX*3yR*>o+w4;2A4nQhR>2rA
z=FcKk0OzHnQCR%x^~o}v^1yWg>tY`*DVF;fnhd)5o;q0$uhE0pHTQwDudUh1vJeJn
zR{D9}r9TPw8AdwqVfz*ZOSx9$nRffb_~qX5I}qdgNk}Q<Hd*qrI~I}MhfSbk1`d}<
zDg4K4mkiQm(L=_Wb*jvLCoBV|12@Tq`u!aGw=xD#`v)3J1_vgGB^dE$+T>z|BfJuj
zN>>>h=Qi4b5p%gPEwU8hoz(m+MW0&PhbuW8P&tPQ`RF5Q0mOCLoiVDF@%let)TlkU
z1z<L7hzrt^zYmFx2J^t4{mE16+y%FA@fHy6n*vmi`vBy2mk<~*G8Z$EN3?&d7S<{;
z(OxLu#$`9lRYd%w6q{x9d_(Exta5iG`1J&M;1Bc}V^3Vb`>~RVF|~Iz)~YLiV0}H1
z`)-h(74V4!^p)KE0>HZzq6+ZuIOXHX<h0WFW@=O_fYIZjo&lHurW|=vY~DAygRZuU
z`Z!YdvDEP+n0pE-iH7b;Y-ry6mYE>jbA9*oy*D8m2uWt)J2$`c*Vai-i$0j%M3?ff
zPTzc>DYz#=W`UwYLjWz;|I2>j{X_z1*3c-*a$u|lvnKbf`CrKGzteWFXQh~C9RAKa
za?d$)d)>V;=l*!kvuF-&G3UKH_wetWFSmvd_k7@;%lY8P^UHGcp|9s7SLdJnjTRKp
z{Aa4ekfpuM#ms{EP&%o7qPakprt^D!A>DBy^u&a#MJEHW_zt^RPh3pHFFxg7nh!wN
zwCG<sQp~rQ%LUYVW0^^$AR5dP#k2w3PS2}t$>ZDGdr`}*%SM~!%QHm%I<#sdIp{Z7
zr6~o{SQJtrxiZqaveeS01cA^Xq&e`pIe=9Y8JqSjgRKFBf)%EzqUF*%YjXitJ^;|G
zn1p%%SqszKb!kTLr<SbyN~v_E1S|mtIs`AuPt!%b|7gd0??40>!Mk5>$CDc$p^d-k
zK&UaFat}x=Z^2ZlqyvHVXSonLmM6p;Ou`43z$j#J24-EL0?Jxpd_~t?TR-Iy*7x1k
zr0dl-_j;Kpz30qL!{tdfKsd*54Eq!Cwd@*BEf=1O&qT@<{%nX4h2vQ==;qyx6w(*X
zLm|Clh}pl--w42kzhEh;+lT9g6r`7#zF$pJq2fUVDK|;gRnE_MNHYJvwab0p$r8Fq
zwwzY8{bpiQre#&Dh0htX@Ex*vHfuXeV}Y2mj*_#=C0Uuz+D4Uq-%z)^>&9IZ#Qfe@
zrRNAR#7uZrt^0KUD}9M=G>@eU(9Yj&`>x<t*h9OhXuBMft#6ax>$8<^^4k}f*q;bP
zdP;X5Iqwt_#TC}UQG(#;*zb96+zgJFT$+5r$*JIOI!NbFs~+Y}TQY~IqqyMKt!mX>
zpI%EmoxLy5{zLxn@hGPU?)N^lx;k6ApnY95zIhBp(LYpN_jQuYNC12dx~tuGH)Z?I
zrwT#rOWCu?bnWCH9KmM0`}=%wceBEKH{*t%IN|Fs9z8XpzxF%}iwzTF+&5ZA0~JMn
zKXE%DrSS|qQJ=c~czC5tc6VdBd-`vCb<n*Nb#JqHndg>))Z}FQ8Y%l=SK?4e<r9QR
zm+!>jk}%9E*yd6nbW8{V54jkVU&<}MJ7|V`Mq7Dab3RF|G-SQjoc;2r?hj{!YaYDU
z_T3+$qf)5(Nxfbr1*5^BajT${%1d9npdkHtKMw0ak$6G#b|0#RzznbZamYtqmHwJT
z{`+@)>rTBF+ynACB3sWMVxQgr>UhQ)&*0vEChh5sICJr52(oHSdbVK}k$Wg4Dk}HA
zSg&2mw*7wmn}8FRz+2+K7t=3vJT870{gS3<<5x0x#CvAd{!599uX-#fSPkMRypc&d
z)))W}-O3xeJpM{$L~9MAXZ7n@e<ba3R(p?56E17V@$+5)r0rSod~0y>Zg7j~-}zf1
zl%^pe?aj#tzzTZf-D@EXFaJ`H{2h3D`j7rUW*ZY57mrIwOiI$ZDw3q@kzFYga=FDM
zXre{X0x=X=7BqD<7|n9UWiRQYsbAo#*ozvYOJlBZY%C|5FPa|BjOCW>psG%eA=Jcj
z)J4;vdEX+?v1lG_FA>{6NLE{qCE(+mzb<vchR~%*$uDnDe#TQsA`+yQW9g+Tb^U&^
zl;ZnfJz$7|r!MP&<;UK?V!?(cvL0km*hkjgIqlelse~kDq61(2KROP>h4mukuvoPs
z#+dsKgaopT)^kTbayY!tf+aH4duSs3&n{eFUsu@p1quQcRK;xJ8ElMU>QSvR2zp66
z8tk`}EK&8U!o{pj+MGCb_9{qMPTeQ7ZvBr8C0~PyE$!2xQOx4FT6~9qO{8P&**z4J
zjGdMzX?j=GjsNmH<T$6j`TGaFW)hE4SIgFPmHDf?@48xd<_UW$83G9m=`0=AIGh@B
zdQk&;o5^fF#gdOf@-(RG=Wm$4MlVu0;yQ^e$zC#Np4tZ->#HGPVKboZxr*70uGCa3
z=1QmD>jiUqC*TJw7vAC(uDNDcLbpM*vOp*~3l5~sU@ABo5Y48e3*E2`;Wk=?ms(Q&
zhWI<h#rL%HgznMy;}K*Wx_G&h#gXTTUhWMN0yfp6?m8)8QJMfQtpGtg7N%c33w4v{
zcT+3~E#<rQ1Yd3}AY%ItAe;<?-tMEd<_eS6R>n}hut9*RrPTDS!_=)TE6sTNk?MNg
zgfWB5Ec5WsZy_BhITPSz3W)uNZ@9%uNHpxsDd(Kod$R;5RI^!{thl{dmWGt&e2`{R
z`jt<l9D@@^2X1ev95VG+L~`KL`k@lAk~@zI#AG+Z&<GMdh!LjFEq^T0oW`e2J7xAP
zAz1|%);p@7S@$aDoEctTkXTdm$}m*dptu%sudGY-sEkTXg7hE-y3qV8-~j`J7$1L{
z^-i4tEd~H7;sNh=AKC$S0TsmsHNoHMWWA-nPH9TQ=Yr>J`2IpO9wM(V24J9~4oNfl
zZ~uhq4xq-T_5sW}-)UbK2SaO`+Tf*8P{}kvQgA=idF@Wv*WbJTgbon(HKl-_n#;Fq
zn@T&@t53QOI+6p`c1QT07WnW{>umq0w3YlhV`2S3!8_ATbqt&vOy$WZnnffoxW33f
z07$Y+V?ZJVd>=Wz8WDSEP4dXQk>>$PyiXif(%!*Ie_+n{Ms})6`!DJ7?kA6zR|?uk
zBR9^(qy(nSApMcAJt@%2_y=i{0;{59Ny*D5L<2?!jj#K)lV_h|MetF=BDxaS_hK6N
z6j%Jurj_B|NjO#hT#tPPq(?(B*!m||n#N$Ut>Lp1nXqgbRnBH2`v+`{QSf3led!-Q
z)_1XP+SlkcZXmmK)~-KSY|n2#UCgqC@`?L0b#0dOYP=a)Wn4aEb5zVox%}Y`HpGKi
zM~RfG2T^3B92F83xUNo5iiFVgej#!!0ai*8IK8rkD^)(}OC|qLS83IfY-jp4jJU;t
zyy<(>NkGafjB|$a`$nHSh9DhLz|u^KO576_^GP~~lW`CSDO+4Y5*9IAw`J96Pbn#)
zQ6<naU9j11ZPFwMimKt~K)SS%9W}=q(hiw}97e~e_BbQ|wbL*XP|ovj-~OUhAK5ac
zVeaI>Kzid6HymMM-!nh+c`Lv;!~`B=7s~jC&-)(COc>>H3GhKh!TaZFWJNxuj3IqP
z8lFe8aTAV62zlTC8`^q^f+16J*tgOAaMO8yD`{8YrR0G&l%NbYi<x{lAYP*VZw`Y9
z)@HjmXiaofZ`4S0=8^0yX*2|<-=l1f7@RS`<>+*yg;eTmuaR>DO5`hOk>ls8nJu{a
z5(fa@RwoP1zV@iJ$lV_f1Z!~FfxL^IupdLF{|FHe62O7}391rPUvCPQ7J(x1I{o+|
z*?I`ac4KC7Nyny<ys8YE3qvlx0nqDkeG`8o>o_U!0ty&14aw5WaHRe&CCQ#r_|>rD
z*ikeYpfKdDdd$KOs(B+e@RqVqKKbNa1X&*bEM)4a#^zm(RlB!>{aoCA<{7~(yEGvA
zl^jx%4J>Zu2&6PbQAkP8DaiX`C{Ul>SOPEKlS$)isL<N^Pc#jvZG5o|g$VNXDyoOF
zCP0Q-F$yUH5wzBYjmVz~qDNsU%}^3tQgle4AaRGU-mkjWW~C;Tfh+PvP%1tEAc*K!
z+ggW2&IOx$OGMpXHGg*}rwK-d<CK?&DP1T#Hat!-RQtchMF}DWh|+#xK**{BnMZVW
zxenX)4gsww@ZQ;55{-#Ft@C4s`(GznM|GlMjYSXcMoojhsj_x;_@bz91EMHQFch*`
zTGaZ|Q6N_3v}F9+gRqE<zo%z!fVZ6=(V7A_uj-8XCYv^I!{=Ir-u8Y-*+&=>*C2(&
z0hYd6ca?}~2&;2_rR23gm(uyoP<zmT$Y;Yk^Z}-Qd#X6b=0H*+*@gB+-hij&{m0Ka
zo!?rSq)1@>AC*tcirHU`+q{?c>fwMmJk+nHIKWV=4$V<kSW*<3sk=gniMNZ0Kna`K
zNa~X8w0Go$r`G|{o5U!345IC$#US~qHI|a5AMij(1JX7Iru4P?SVaOCXAS}68P(sl
z>z+LSY>0!Lq+B7dK9x_;Gnre6HGw%zRtKHlVrGcG*A)I+Xq^mI@dwPie@`G!$~<oV
zW}h5tIkED013HyC^7x$2R9*yqlRqAwLk2v0M(4QQJkhD%85|J60<%w-=_+nfMApJT
zdQ-AumtXt}9&(7he0aME02E7OFd8&;PsSmZ(F?6(!-bDD8T&sL*`4T|59}L?bH10~
zss1zG3J4jnUlaHx4>_n3X32TZPWS9ga??mU;<Npy(~i&@TO&8g=YPJ47^_%!I*3k5
zpq#%Sv0Si`TxSbONjxb28%wqTN|Qo3_&khqnLj|23-c{eS(P7Za-1fjvHIL+)D%{Q
zdGyJ_LiI=3fye}=PKjdcM3SmTb0Dz7;s)H2l@_E%JZ)=#ylZ-9xa7nbsMVte_qa6(
z!l$y7lnv}*zW-d=GY#p9C_3Of{Jpw35`w?=_fYI=ODk*~M%DBOUaPWPN`rs@YWLK;
zprL2_s>*YI`Q)E`$s1X+uKw`aKUODIwvTtZkHQz0|DASxc)ec~e4$q>^fSSE2rTay
zMO#j~NlpH5A1)ZV!O45^=EtX_m&Sj$?Js{VeCRC+|4=}Kdu~d9P6X?x^;ep|`@Ljr
zaXxbI$^6x)IC%Ev&v)a?UrEKkPd~i*clP1(-|s6&4I9S3QbAG}Lm7$z=V727m@8;Y
zAM=!sEs8-oipeI5B{Yf#9L3fV#kCN{a~_3Y!#0;kA#Jcip;(bTtXK#31ciMjdljS$
z5kN*)_yG{U(FhZLMuZGI5e{vMJ_SU}hk|e5EV)g>8%zNz&M~?;u$HGt!VuO>Io4wH
z=?c{)2tVTm3lV9E1(%be>#j@|2vB3J@jWn?s)vGy4gDP(`g^5d4iv~=IlfhxmJ_1^
zrsNcLL^Gj4!fDZ0x+a0iP_q`07(#{y1~TZNN$802Q;zqyiJ!vbN*d$e9>gUQ0Z%J|
zXczjF(1(eXA(qOC<u-|JBabhRX%Z|%9(aPOQJ}C<4y~V10xpjFB(ZV9q}-i84+j>+
zgIw5>Gi<~~0H8uGvva3}4NY?XNubE2W(meU<6IXBkf5G)r#OQyc!IA)vo0bD^CB+z
zlH{bxq@=7zycpTy=741zFvHbtsb}Jm^0O1RuqtreRJlmqf=F`}_?u@;_vU4s7n|$i
z0+ToqR*OiiR8K7@!oqYlby{hNOw8(Wu(Uz2h-11N7DQp2-l`!(K>!}&z+X0>k?ApB
zngeRl_8bXx5`Y^&*)nBSGHrvN)r3;ZH>Q?gSR4WYbcjHG9q=8n1cfg^JB(f>jGi6<
zbT$RtvZZgf$<pyk5`=3}5VDLevR)nl_F@1IUS@Wknfv`3W-2inok{2f8ahHyUI##;
z1r*grGe1Q`$Cx9Z4i72KoFb%tsq!<+;)aib*Zo4Jr`cJ^a!b^2U}C^D#9VDA2l1&K
zaU}4)g}7?iwcFY^`Z3Ss7xRlR@~vGmg*17FG#*J}(ym_hpABDvn!mClGC|@SUPT+A
z*-g3|N9fzLq5@3fl@~C^G_m%NS7ld|IO(JWZKiu>UamRfZ&XzKZKY0R-6b)Ik71nP
zen3ODLv?3CU0C7ifnCQKvUU2wxAelCHc;mV$Y_E6YIqYG242__B~;V#!c+yMJ?;6B
z&w>la^W+jR!nv@#;CS|Ll{!kT#bFlUq%elxD!?zHfSWSz$Lx~hdeX-L+8AOO$E+-N
z+PO~_jb|@Ks+OiA3$prX6DgDEmO#TukW|{0K^Xu;q(n=DkO!HxCLjrYb_5CFF$9{6
zzKtM(I-3A=lWDKhN^j(Vu5Yt)I%Ul}UOW4esAG4jb&aE}IOpzdj%dX^=na3+SqVT=
zhTd@;;;hf0m{_K|RBA0&CT~Y)sb6?}cvrJPJl`KgsIr~=Tq>Oiu<bIs<&-Q)z@4Cg
zMP!QJS(Q|2W!It9a7NbnQBx{FIkgEOy3!;$3+Uew!%Jdr8U}NbK;PocDO4qph^iPd
zCk{s4Ogm6^cy*y4=(rOgOaS!_ytL^8+1ZIFvuJaLr|-zo5;RM%l(xe)970gE$T&L*
z06%tQSST}{8Ki5wU<eCUdOcO^X%1IW$Dd3-yRgs_Xk=%Kq9Lz=JK}uE&S?1>S>OMH
zwjtEehX9Qz*enNqlmMf1Ckq*>ezoh8@rI1DSqTFa3($4~BU$TwKy0J^+?hc18ip;g
zj|~ch^}5mXBdpSA(zh7}Zo>&odJX1L0_s!Dc74n?hs={#X!(TG>#*LZgbv2c>YSlV
zT(TFH4jQ>q+Ad!O6)<_ZiDe0;Qzf^pVz|bmN^j*NCv~*CZChrXxEJ8L34r=vS-LVv
zKJ)v0HT`^?W-@;=balH;Vtx53vB<_!<f`8-aC9r2Aw%9w%H1Ae0Dh!~rE`2MbbrJA
z!Iba_QuxA3SUpA<fW#-HftYM-AYuZ3_5#{XF?vk`FGvC$O|cw@!d47Aw$E=1kOUpg
znuFAv5&>2>?Yk-?x?0IETQU(X!cg($a`=p&;-wke`=)CjomK4BrEkU8HN3jL^Z&7R
zmH|z^aogTTZKFm?Ge&nKB@P%VEe+!6RzOfd)G=ywca0E`a-@KwBPEqkQjit|l@<`?
z-T!&s_uKpV{&au2uj@X4$L}~ns7^MVMU|<*w8A@a<4!GU2fpXk0O`@k(sHh^rTN6*
z1-e0o%AF1}vVk(raZ+{L+NN6c^kkVQu<nT<gNRXT-M$-B$D9Oeg=H-#CYg)`VpoEL
zMIuJ_%oj}kUHfh{6WrBvwL<3G13A$axh<wH@@jBObQj$vvA>}He7j3Uq1*F?(vLp1
zOn$n0epFuOeH`&MOOjFqldYk1o0S`q`wL^EYj2ahnuD{NjH4PhttVq$O<-O5@S-@u
zL;ZfVy4V}_&3^C)?YE=ozF$#qsozsS5l}vz=F)n7(}4f#Nt~H&txulRpnBqC_Q+5D
z%Bwd>0b@)6k{H7t_n_q;n=|aqpr1tQmpIVv-@rHpZ;xmxF7jlqY5IrdiT<C&-Ke=s
z28^+I9r0tMKJi9b29xN^aHox!w+Zjv-E^{7TGhY2*A4a$Y|Z$0^aO|2^H2e2ZD^~r
z+*F<xs;<1YykdZz0NHh*jE_;%Y#^UEO_S>`#_IRxnDndnq%4E<rJ4<^uLF_<z_bz!
zJmDRxi-RL?#%>QiaS`Iyy7ivPiV^B=rmJX@&~8u>OHHq+Ww7vi%&p^V_|VX~<zKfB
zfTG~vv=2O!^fMABOUF<Sk8bs`@#0xdM)wa2d=`wWS0(Xgw{K_j{d#j-KIbhN-g2~;
zT@-0)cKRZbX!CB<-1>x{HOBmB*8ppzMGR(Q=aYqt3L_oF%2@WcZj7<ln1+-iy`_%x
zuhyxt%PAR2(usPXYNwhci$U>^a|_$sLtQsc<X*JdH&`|73p#usu-QAYiF{*()v=9@
zv0W2)Y`1XKD|YmtbUFL{=`+P=?8==*7L*gMljg>BHHE!@jMHMUqyCc9=)V2IX9#1P
z+iyXa^9}Sr3iPqe9TF59z{J$2JtJ4u|9p&E>7g@wmFvw(SAi#Bx&|;M%m?1qPIJP4
zF>v?MjnUtA;FvpZO@`JU*>1dpZg!Gjff-j}%B%71P8Z=P;1*wct*zO1t037Mi>=9z
z&un;0n!Tdn<Kqv#eXG2|v)-kwK8r;>pR4!`9(dmJ@9m!Pd?qwyb<5YS;LF@8pli_g
z@zxij5_C}4Z^=L49_trr^Rhf8@C55iUzE?MhdvB3>b$S~H&jSpN@%$&3R38|I_`~4
zHV{k?bPy>l-G7igPHM%t0ddG9b*M$>%|HD1mGk|5_gLSV2LC@>9{+@BQ-uPG3~tcC
zgo*=KhKz$|9To+g)<pHN(|M{oRE|;a*KT<}jlez-&gTg8T$XbJ+h4c3bNxXM%LC{<
zySpd7;ytjW21mrBV40H81QL26%0XWNGDx|46?AR0$~+WD2#u537@G*S{wX6CfGg3&
zx!hZGbK1)MhBYjUNY@IF!8^qFZbh$b<?9WI&#nGqjZDcY@Ob+zf)3;LAu;%;!njSu
z``on}+3k;>+hJu}VqQxUgq5pmY7zYQ6Q`Y=#>dZ`=zl#@+|_%^f!u5sd0ImEy|iiP
zc__ec2vZQULjrAga(5becAGVJTi;>`PP-i?yIpU0=N|38`L|2t+3PKFf2*-K_;hcm
zWDjDwH?q9<;osf_59e43SP2)E#lwN@u$uqL@%d@g>_3quI-Kc)=mbP`8sksZp{Sza
zAIc&>O|*ZazWn?u#j*b{IuZ11vgFq>)m0=7=|<K62BjYBZY$!OXGOsq3zA;6<d1c$
z*~eLA#5SkK_wJK@oZAh59iw$%HVAk`!eK@^VD~K`H`i**lCIA7Bevsy{-i%__$6f;
zcBTgvn*bi9fo{?@;`!p@F^LWXM`w{o5c1=avZL&wVFKSlBB)X0D_s63M~i;aVCZBF
z<DtdIzTjOhV_r_d9VSvgL1?t_+U23kGk5v!MzGAz?Qo9sG>q2A9qaq_zITr=*wRv_
zPPZ~nnw8Z*#isccCh0x{KYVt=_D+Nbayt%?exz}lK(G15Mx2*Ezc<k|?Y@QEa2O9d
z3+0`~97k>PBFiYB;o*6yx`DHg!Bt*nDNl|dulso^?f!}Khj(`&XMIc?#tc?3Q#0|>
z)J^w;{q7W5JiO4gIbXn>zxk+>Jb&YvbPjkTv+OEl?pBuW>?M0-HvX9;kv`j}^}=!|
zr|YYU#`y!Md6O39+-0$g8@XA^%NI#Ic^zN>UFSRReu;nmD}GO!j;Z%=*umeI&;E7Z
z1-~bSwxWDwF=G5N@d+{XlH4eo#Ei_W|EVGS|AV&KdIl}6Z3bj?DDG@3K9m$nG(C}|
zRLJOl*V7lzB#wHApon3gm_Z3AAZFetkT_f(qU2Hxlf*>I_GUIhf?9M!f-ylvgz8Fg
zh9`cQ*c&h2Ec!hSF{$LW2W0^`|LDh}Xs$8L+kk-(cS#9-u^a*_Q3tN!l2GI2Qg(lJ
zu&D)S&VTdnzdXS;9L-j<&If#Fn(hw{g~*tTC8G^E4?|FtTxXPUsuO}zr2g;iEcu02
zU}~d_;;DjI>x-=k?jHoH8e>9%mz3&|6(=>N7``DCkK0tvjlmmcd;b<$&i4;v7{+)5
z)9EE~X?baEI^{96yo`zoSrdSacq1{3I(?Cax9rzhjIZ<U03HQwPTjFYddzmm(C}N2
z<>A(~DpGUW{gnB9Sy&~ISe-W=2kS$b;&(s1={)*2ac8*My>4QFo=T|r?CRA@Ka{K=
zB)q`$;?Hjs2M!ZJN<0!7S$K_<FIOVRDCnYvFRiiBm&}szwA^qiE@B#my&VEeEoy`T
zkO#^}X+ee0;xLr^ELzKet;p-h@C=sbUds5D>QVs_!U|qq!tD_|1EaYD5ptgvPvoxy
z=1fGW&=IiixoB&g$K|<=J!buLC_jVBy*cO5w<<fualEzfOCGZ$;Ji;xMG>1}WL*2p
zAPSioP#RQj8y?-qB8LUjaZO<KK&%-gl|r|TzI6;{MJx6Gpo(w?nG6yiiGnNhJh~m!
zYZreW|EQn<th}yOEH4)CiijLB@XSb;m|q8^nrHzT=$Ki@u7ICw0x$t}&pXzjl9Y-b
z`I1HR!byU|L%2$LIjBcf*}a7LJi#>YDtBrn+Z|}G6l3cBVmdLrvnatZx{eSVw%fdg
z%m6|JF0F>B_95TwgZJ8Zf4<%y6#w<+c;?S=@TbXgnD%#PRZIXMB26SK5m1C9O0jR%
zk-<b<@;VbXnt2(JthakgBppMDL_=A-a+i3N4i;g<?#S>S^vgn@3>A$ltlZi3+NOFv
zSd$iB=ua*|O{zph_3<ARu<LxaH0mE9W5ygA#pkI5dP(`2!Y3}DSk8&2K#7o1st0?T
z)Kb>*9%?+EHx30rOx7p8$RklL>I$h0r9lqg8*NuJ`B{cpm5Up;N$!SGY4U;(gu4~^
zRsUGeLOnA%de_t90+O6Lm<>^zu{=yI9~J2LL*{nugf;-yR|OMGQWP2;>*+U_$G>fx
zJL-SMBtHQWg6ORkw{jhx((FAP(LgE+5cYeN-fFD$YJXqYy*!%Glm2`B$>tr`+w)}$
zgi-cKx-34|T(REYWHspd>&~VbVS<d(hqUsXkFJ2!sVe2eN{MOkDS&yWAMAXKL?K(J
z;pn~yxnyVo&-L-xf)gM0uKlkbm=o}|5DX@tjXQmTxoX*41e?M36#-K2iN={R2%t&@
zXI`-a?6=5qp-KBvkvDa=UouLW<wJ!Jz*pp1c-`Eg)z0l|*q^Zb(XOwfmz_Mc%2*H-
zw3lcq0c8lEVR}MU9XZGn18OiL@}OJebZN9xmo0y=LC5YgJL}7>dQaF?t`$=ADeD+S
z$R@dbGNZXaC?O0*B!mn{!-hi#wVKUizx54TP01&LYVeQ8TS^4}pB+J+?(|R)Lhjcm
z=yYJP-fT->id^^mX@>Zjx2+K{M0k9(v%Hnn{7#FMk4P231hvAF2gj>9#kYAtOmclU
z7@RrotIz59Rn*joY5{pHBS)|vEkOK6_DD1(v|#w=ZESsX;>vSHGlPD^ZR4V9iD(A-
z%zlG6{tU0ki@_F1@jGKzjYS!uC`;=!jpMPF60t=0{h;U%_p98qe@yF2Qju0;o1*g}
z7ZW!pWyj<0$(ILOI_6oXNgA`oN_i-_%D$3I4xuv$ekyTCw{K^B&@QVmS4MOvuWcgs
zo)#HX+c!OGZ{2(-J!<Z_2+E55bZmqK<{Q;o<c@r*QvK{ySV<>n1RG$^!T?F3?UkYX
z=X#%zhf-$lUrv=|jYN}CgN{A&6NaNY>b=_DMJSu@5kPJe+Knkd^JXBQDB{=;{yxH-
zbF~IQi`wM*(CSQ<*d%2LHt<G0*c_j;$My2e=sY0p&<keIzcewd&)Al*7VN_|C1)}I
zB9{ndPD9Wd;We%#@IzR!0~{lBR75?gy1-eyLa!zpoW<gQhdajXt)v3E^OGuP|Ml`O
zKTm;8ccR_%3vHiP;wyMgZ1p?WY+g~ew=!z(pzFjPuZ*uX<pJ&+cy)m{JbF7{#{ATH
z*tO(ZlUp1UP>@P~9n+r|RAx#`z)%^jfH*@L%^N-lXvwM3*lR`5<&g7B9^5)L_+F67
z0tYMLBL_458Tds!9ktn<d9dr`mv>NFOo2;nr~@(+2}-U)57U5!bOT;^sUTXtXQ+Us
zBMX)?f-+k(Kz1-PHKJl>EjCbjE000Gp5VW1YZ{Tp43c>LjHCF`XDsppJEP69DtjD=
zRG0V&|0@?|dRqcV6#J<Bhx^GP3J|7GK1|1(3G5E_$s!t^QoZZ4=#@}6W3UR-v!C|7
zvqe4P!dhctC0sU)Pvk}kX2o1Xx5$*1FnUJBJ}SDl8a?Ch7O%y7+SrKX(JBD4R=Bos
zxY63e7+nLKkT#2fnQWD4JWDC6IaXVI6xo0$N+4}w*kl_F+QEH}l}&FOEmW9=zH!~a
zBEV<VZgtdYFztHACAq3pcifC$>g;G+$;r%Av7+Nm<JkvQvahL#k<DR0TYoAjHQy$B
zteS1igmgkne@YrXy`PNeqiYV8sWnX2eayKz7oyYJz#cWtw#Y23K<G{O{P8_sT=y@V
z&eiwg3J3ex_1VUI^(;YzBv0%{yv+F?h(9pHU}7z(<mG$8Cp3ABL9xu`EdmJd2e&!@
zZtI(NP2Gs}d9u{(NSjCeQSb>%1IOQxWE%v2&*Y)~B<v?#bMaX+?PRWarHuovnef@}
z1e%5}pbG_122Vb}d)4tp65Rta48X$Rv`mY(krZq)Ko*qvyed!XT+`2jhz`!{LDjE~
zELK3&68L@bi9CDWfU?k}FE5!oA~ae*oQyu{&b~9#4^;YkPP^O<J7Lw_7M2Mga40^|
z6z!hn1)L6K7PIfD{2`lqd-|{a?~iug$MczkAXeKIAh#K?*;}8yhiQ2~#05u5N4UZq
z+e)5!*}Rr*%b>6JD*dzk{^9cP<=^i<4*ec|*FO_?KYW=<@Q}OakGDMmOQTM_ArZjR
zbp3JLZ^Yv4lZpMXX5nyuxo3ACg_|DvFv&zRDO-=XKZp?kXFm!POACWeMtr>XWT-v-
z!DKk|D&}PN@vGmD2~^=U`hKZE?1b<Wh0o8fW+NC_SRjE<!Cs8%*7_9iC<IvGh!1pF
z28#dYzFQu3Yc|^CEZWQ#ZG4^joaNfWCw>YzT~Oq;0kok?MhwyH$(99+6ad6v#fdTl
z(E>EPv%qYuewvXWULuee06Hi7{zwb4t^vuF`PG-jxP-czBMcMJ06%lkzuqf=ZX_<w
z6=?0n`E=d50wMFP4Uzz+O&Yp;Kh)az2q%Jx!H9%nR%22b5?s${-l1caSMU1RCOC^E
z2(GaR6LcO|!o$I|5oc_Ef&aB;z0r-W)wj4LwPx+ZC<uw&HF8w&I8syC1Ik#3P_xQ2
zO@C#z^SA^$KE;x=n4#^&VlUcK<phl;j$UU&i!B*8FWrWRxPQ%nX8lCdCLE~m?j7Zn
zMz-Xyp)sMSDRJmzdQ387uo@&Vi8ejSip+v{miFfv)BYSyjXvnHpyw_k&D=JfH7uQt
z{l@K@8_*sA%{5Mjd<Zox!&%GE_820JiQ~bThOu!9he7!5AiVKckOqbfFfyY-Q?Lll
zX4?n34uPuJL1fP%+A0t#bcU99ra-(sLeo-rCp{-1OCcYw7jG^KF_jqRyEP1ju1E{?
z0aS<S%?u!#!%~U{$^z$^c(bf}U`{DMCu<_x9tE+2Km$}DP*_gkN;dm^?$h&J41}6f
z1x>l48E*#io5`r$LI{|_B6lD!Sh!<`eaJ9*sbTqf`S}H%`9+W$Q7Y&~84w2=$e9L0
zqO<|l=qr8L&FTD_9jP*vg6Clcjdq3YVTB#}g<YNCQWZ4)K9JuG#Ho~-m<IeNg8q*Y
z0|>u<0UkV;ddFVWH(&J0u6QP_cuvKqJHPnL{8jPtdGQK+$(l;Zb3*Y(Sjm4qWSu2@
z^CbqJB|q6q4^>K!?MhF>O8bGOXPu>&^QHgJO92<f7wmX)dpu=09$bL0RKkCh2Rh8>
zG66vJ-?>=vxi8Rgcv=~L3s0(^>5nYq;E?7<<_G7O@pW<W8`ARB;!iTl6Nvz>{f93O
zEv3S_6n!A<gmQ_l3Xc367v;bWEf9$&lM$5eEvvw&1RP{gZ}kFDV$PZzl`?G1qzT12
z-dwMX)eb^UW%k^rR)Z4>f}<k|XpX~g&+AZJRq2LhM1ZquRmn=_*N2dMVpTVK0p=W)
z96FF7pDbh-kYT>MCIIlPKqIu^syeX@Y*GM<?*c~~f-pW}0vMOZgPQd3H8EmP4-P58
z37}9~RkaN8{eu_7O)tohz)UEJ=M*47%q>LM*0eoWSFJPKtguuDNg<_fX2tfib5pPI
z4rxjmKd;<(@emAx$y<ZO%$|>_K35Wgyi*nPtK|xp=Ov9a4)97tz&d)$+Lwf?<^sq}
zLPOWO`OpGny`aI=9JDvm7}!)j{;)A60d%t$Bs!6D=mQ<Kefhhq@kedFf+r_ufLi__
z{V@mV^n3PO84%@$mvaySvd9iwe2FK#;LLR4Ua2o%q24nj|Apr&>>|*<wn^#NEFm`V
zF*mk$HSf#i@dNb9%&vfOO~I0w%4}5qPc4-bxQf`o&A@hu7i-;^xmcYI-Qs>mJ*GJe
z*6KbYA;y_4j&60#goqGZZr;i@_l4aShYYkptkihrl}zUY0b(+ScNbgA;q9D?hUZbH
zi)C&0W$kWihT^mQK@RN;6Xp-ZA*2b4eh8#cm6yX8T58SklCl|T@hTJGDzpeO++~&E
z>^xa(mT}0(SOPfK0pXn?yFo1A6=y1#a71CJsvUrWG2O--AV0!E8l}vaburlkVs?NO
zSaS+edE<y**JzMIOIP!$0$#i;c!#5Zp>BwQk>(pnz8w@g2MKrWqR41&T6MO^>Xi9r
z(qnYOGp{u0Ga=Ix9MIL*(8$*jsudm_=4>$@MYoja|3GNaZ%x#?i;3N#{Q5Sxa<|X?
zMb~Q_Uc9;H<?m1k{<jFBnCN;b-lgVlWZC*IRmu2>j~()cg>Nb~6V{Uo=sA7Z)9D)d
z>krBc!R0;wHo}+KUHF<T-LWvByFOhZS>SC9=v_RrXKMqToCx8T0K2xlO&jHl67SR~
zDs2y^mZoO><4S*qr<X3HK{qk$%F-ur7<xJPld=%|L|8)>W0xk2OBvm=s(RJ&jkE(M
zeQE~LO;>w;I?4k&<2~ju;6S5htU6!PAo<JpO|s(-V6u9!6tcX3lhe;x>%MagsSfU1
z;MFx#8qRsQp)XrCn?8`{bhgAvw$vW!xfQuib9Oofg)dv|5#~cr`8cwgIDcnxeAcTv
zoE<7idtXYBU4Ys?;}jYd0J#=QB;rSGf%<pm-n1t{zNOK*^{`A{Pk3|*eyI*fhA_~v
zj=i&R{hnvqK|?E6F&4;t-_-SfrY6Za9zoj%<l2(MA6)BJXLX;1@TEn6UmvuS=S=tG
zoUP}qnjFhq(eE+u+hZE>7#a398i~5>yBy=nT4WbDi)XUnD~jVwwBSjW6aCODG-f7Q
zn&C$RuqnAY)8%CU9`HuHh>$`KosqXk2f&lbII%;CN2~(wm%i7Y2!u>Y_%iYpfv$v0
zv_!11!nSfxpBxJBO=)KlMxVws2+CA1ediSFy`JSFny1A-;Buc%a$4V?e-IIz9Uvw}
z(@-}h_R>PBS!+rPD>0HGzIKBA7(T(3G10&FX=aT2>)L1ZriAWah{Y1*^%&&7B;?U^
zFiw<r{2EAnLZ^*J4-ueL=NXqRLi{Zb;kW~*3SxQ2%`6U|%QTxUOs}&s22uj&lJ9_?
z33jYoNG+h}Q=V{?B+qm1)p#fSajbB+2ZDqr_>CpS$eJhPe?WRypXL%i&02h34Eh}0
z^SJ}-S70m!i;^;|34cy2aCePQ;;%&9?8h;GE~(v!9)>5?qH<k{s`9z~A9SyjlZ}?%
z-Lh_QQ_!CVvNJKCP-kx5xRo=lB6P=Chm1{MTg{_l$w%8CHK`PNqEwZ{MPb&WOs>Z{
z{ogLpTeEoj3Dw4yA@6q9)6?tMTOPXEE7$fZfSnkU<e4a?R9?HPys1z*Rg!PtAe3be
zYnKOBx3pO@t>XH?*Z!%(rPTMi_1+sOv(U}P_(Q-l>&kpQ+VKE5JnpgksPKeJj@^e0
z^eDx>l_mIcNYph=C$M&->n$bCiIu0uPWdUC8%~bu?_CwG{%vp|Hf*F|Kf={SCK`F^
zR0qg=BOWVPS|Hb#G#xwE5|R9O>UFv*T4I}5OQzRyG}Q;A)YHe+kJYarM1G|pRvE6N
zHJarwNm6;5V`h5k;=rXi;N?wyg$L)E1)=K3e_bJyry7?lnn$;9K5~TQvdU3gcBX_(
z&Gc&?MC~Y5?vSB%)cV~uP=z0XmTI(mPpBjO1NB1Pq`Xc8o|5YXD-5=17{9u$cdM|<
zp?`J@qZfwKKN-0BqEXNP_;Uf*Otq|@jho)oTjRMDeZmKq+NY3@_ul9@tw;Ci&|F92
z(W7EWc{e`zl+m0r!%r#M?>Y*`M=2~4=wG#Tzk(isM2JACw8U8CFW|G$cMm~{pM<WQ
ze$n04ppoAHb_nEMp%%a&6hF|9XjNqB++*zjWzb?m<k8(K2X+)(frj2rzefImsPMPd
zD8!Q=^i1og3ZxeR4rBWymYuY>mbXz~p;wNOE(Hihj3G6P=|7YyGmBh`x3fEoCCEzf
zeB7TuriFU&d*QZb`uT%H@)Jd+2FG?&AtNrJKP0dl3|M}jwI86kX*L>co`|{acGo=Q
z>*V)Q^Ugm}2t}ocwc86CYoFVW=gG|rkY_FOzl)IVb2{sFd%tz#+fQGE|Mu|5z(A?j
zclVZQc%ql{?<y629Qt=-T_ZTO;vL8HyMlb>3QH{)g{6GWHvtV_6)Sqr6j;-xH+9OM
z%@mlCL{qm_SdMmvSh`;B#!lbhk+IZqrx_r<PU_hoDwn60S0pzjRPWs_16!x$Uw7(0
z+aIvp!99YM()ktTS^I9jA%4AsaetG#8NPA)x7MA1?V|%)$H6<)VGq%Ao0de{O7UQ0
z<6=bwaY;B*{F+Qgmxe<~;`pR+P!1842o)A8BEi8#PcIP@S6o__lAS~)Dq5bAM2(^+
z>q>u1hC<-DQ50knd^pqy85|WyfvS&9O^*{5q*?qzT~va9)qx!z9nZ}#T#svQ-|dM0
z)zY?xV@1&&CLhGX#U(jtvH?A~(zn0?>w0)|+1Ga%EagI9oIaV3CKWCiwn2|aV#$7n
z$+v>s^l)SXs*leY7_fJ6Bit?zx1GB0zw8%uyqeobOOPMx=W9K$O_OpWVulq^@&f7U
zSVO3fW@W7vB5zre<&y&Et9#f9?x~HI`uP^G>DoJ^?G1~s0@g>0Z`u4v7YIH2ZY+n6
zP6!k+(PwM|<$}H9bO|eS<xbQ-k+bGq9wfys9$R_Bg#<-Y($b8Xq{T?aJb(8~1I~Jk
z%XS|lQ;54GsW0pLzFs2so~6;JZjTUp4+l@!?98JX0poVmV*r#n<EMY{%-O{HHixUZ
zh8uQZJVfuY707zG70!gE?e?p>F!TM91KrJ(qW@cV(!y}#=G@;uJ!==oaifsKVhS_`
zDh;g<l(IF0DP9Dh&fklL*PuOU5nAvoet3<xg*>ZN-YS45O$kZO1!hFV($NuI{P=6B
zm>%swu%&!T-P)yaMr;+U;F~vOS|PEH*PJY}=Y(D51@Fa?3{?tncd`K^<f^ja!W^@6
ztm3P?0q9uKtvt6J@2z~Vs<2t7$0sob0_loDA0NIS)13!NDrAC!l}$4BlSlHEiN4fw
z0;HJJ(Qbx+n%iZv`000Leyw!Ig8VWvu7{o_*gd=3m0c3$PQ?SCc7O~bJGTLrN%aYd
zbxBD=z(CmGsb(>mdPbz_uwwHUz5?saB>=cJR8+j=bl9+I5+%0x5c`E`LsKusX1F4D
zyBA88S+bDS8q0j!_vMqR7bRCsO)6@1ucpI&s|m@CWIyZbHAEowOva<6e=iQ(U4S@F
z6+<bp;seI)!fUtrfSg){p36aToX&I(&Z3X$nx8&YF(dJS$e|~=--qKuV$1h9*6x*l
zm30sihgP%|`}~v5@N0c){pXgTD0TB8fa|8XXL-Yn8uBAqy*jB8n|##%-QkLZLbtcI
z|H)@t&xVtk_4;8Cr+XmEnpjCU3=zcIN?0VdHxh~DVjY-yc@8cDM(4xe&Mq07*D)X_
zr)rT2BuNO+f(S>OY1&C<-2p<9t0q=J0WZ-qQdA<x01!u|*^Yb6X@C1-!00$b?Zb8B
zWF29=mW=*$D60Rep6Ut6AAwza`WO<CLWU=kECTd^m<jt^s#KLO>69;U>wvFMZ-)*;
z+11fNYQ6{Jz2sTB$X5B9uXjGT_XgaI{QX++ig-A_IHv_+>gRp;mXxzCD`q$#JE1wA
zvE3B(+Zd>_B4(@s{h&B8>tgOVAg~DU=Xq=KUaP0ZvCfZYK&}-Pd*qE>=U+h?aIVXZ
zIOyMvpXe*b=pT-U8jLv;&L}UWJxqy%p*|J-x_MR;?5W%@`V*%3#+lApq%WfZLvgPT
zqt(xVN~8${Xhw753vk+Ss5Y*)7Y~5oT7H=k9)De5U1fZw9A@T1UK6Sd<<xxjDcMwA
zzsXtvdWF}a<v=8eu{o5ow)c8{B2AGLI2S&#veH@q3g?^F<7IEsXIf72O-ri$FSIoX
z|KS^PkT~bG3A|?c+~4?iA+)v}1Z7!~u~La7vz-v>mR%#aF)(vSK6+8Y1)$(vAyOe%
zZp1gZf-L#8APLF<GQ33|A&iPlJ<bS$5eR4=&Jr>39&xSB$VNJX85{v13-&%(zHj6t
zWpFQ$c$mJ$%q%FfPZupod~C(1Dfj*WXKMn@vFS9cQr!pmmtd?|+1#znWEyVUZx$p&
zYplRx5|1f&cuvXbr1q$iTzFc@haHK+xBw7&4VpaG*27BX`&hL~ux9b4Ko_&B+0{j|
zcEyWh5&hruA1zZJcrko7Q=!7hXcj#{s4UGLj7?3i`7_;#+ZNplcyY@~YrIC5(dVx|
znuSpWz+k2$#@uFrEp*FfxchuYSM6fb^gQl4K5s_yLFcH`cURCtaF55b^Mqw%5I=J^
zg^`NbwBKNh$8Xy?Q-&s+<_`)=qJkiizFyO3%UMO+Tzle=?1x9}Pn+|`{p_U9+g?em
z2)Wo1mFbB9*vuw5;}OwiBxo8WgZJ1)0{o~lStgaRtyL7?dhN3v9LJ^w*UuWrj`MS-
zN(_MS#%aiC0vy(teLEc=_>a5oF3w}CJsL?Xo;8Wo8_Vy>R%q{s@-E^wzF+mdvF3ki
zXO;;5yakeM{2>{}f?v{2v+4dEBOOfNv#j0mDDFfH6G}zH@})fHbq4-d<dK^BT=;K^
zZ9(e*#apXThqK<CO^HG*KWhU!zzVmr6r+~3%2;^TpXP>ySdY1|{$d^QxCp4Vm{Mc2
zF&^Y=Jg~F;vc~#uZV*Y=oEB%~X5iCd9KshkLnjZSwMCPOqI*)s>oySo1KJ+W<n6hM
z+_D>WSv$<EP<NLpJRkEiX(^x&a_c4+CS&}(@Sl1l(hL78C+4W&_t-a$Utu3YPH9U1
z`mrJx!zQ9lTFbAEdo{MP`z5EeRtg*M7&=@`<$Y)+X*8?!)?=ox@c%coExh<tW72j<
z2I6h?`r<PorLEr6c-MZB!>D9ywBgbCuG623St4CKA+c!Jne)%wkV$)U?)aVuJ$^2u
z2mr39*714034jkNfuE{J7P<ih+<V*GM;+Vf#%vkaJ}7nWy4=%@Q1ksEbsO0FeUI_|
z9~jLFVB^raO>XATR{(v7T>>qZ8F)bON?20<3A`u6jU-3x^Qf}li~k(UxyE>(oJ?tg
zJvT*^B2f4GpeVIaTHL^zwfs4s2olTW=fFsx_Ra3%1vcF8&ANv(61?4=QW%B2O9PLb
zh%*5N8)|(!*1%Be6M$Fn8&ZazUE}c@$3M2!DRfG&2Br#^!8xxT&CS1s54Yd*cdWTg
z>D|LX^p|rW5lC{EYp9xi@%^sF;`xD`go*-Jp%~LFavplRPB8UZf{i~($xRDIu5=1#
z?Cc#PBl0b!Kv_1lhkWo}uqp<G&~eS$O^E^1RD}-OnDbI2H#q{$F9zdU-&ZK8I$PbO
zX0C^mOXzFrdSB%@ENlEGtjZ?3N=q>N0dgqc<9-Cb{A1)*a#ZsB#!;r|la*?ULw4XJ
zDy`C-v6p!yRZuoL;nC;Ug;$s3A0GEn4gQupFZRvg)!U?(t{F4mk_k?w-bn8|?J`?F
z^bUG>tB)fY&+%1TQc{Lyj{y4pn>m3QRMB)5{%QbYypBmmf&e&b5kTa3M%JGJ05PN^
zCtG9yABdL?+kuI^bmwS^6c-YK!u1`=^2CWj*!~kNMKl&?2H-S%x(*1d=y~G*iW9NH
z*lF`{J2%>p&G)+vL!G%W1@XR-wuJOU03E=gQitYiD||8l;4}v|6N#DJClQNKb6j+W
z4Z!J)`)HP0Iu<}5aNAn>P9XR}=WY5f;sZ4{&esev4O0NcKEUO}hq+{02R6uOOj;p%
z528Zp>e>KWU=y2;xW;UD7qDQm7ua3LRMLzlU7wUV-CYR=huN|k#;8>4lOLZlG9Jae
zy)C}V2OdBxRG*2tdBtY3C1%N8nbdo6C(Cj0mnF8;#DjAarsa|Xn59@n_#=gJ#Rzki
za@@Kl;1wHZrY$S?3SV#Y(_3@N%R|xir{3XI+Sq*#(a)gY*Pf2`gIdW1Id#ZI@gf0M
zEK)Mz%^fjWQy43t<kq&qHW(#g#!}3d)=b4a)|ATf9smkK{?@emhm)e&PdS)NTa0G0
z55cVjhfC{_^CDSv^jNxY13sc}$E^UyqEp0v(~QbUJ<1C!QAq#3n#LLi6B12h+J6Q;
zH;}T5PlBae12elO(jg!tJQ}PR&vJd9h9yK=3=NFjWO|NM=XgQic1Fj(8v1)XO6WEV
z0uUu=CJjI!X*X|Kv0sS;<5{?oY2X8)lZ{(hYf(i#SaAj^KRcG`rmTLm+&)B(kf5ye
zs)b&B#yCNPp9m}M5d*_BB{5P=0Xbyz&+_qlD^by3ZS!-&yp1~^ZHgFS9+951BUV77
zGC(i@i1!5Z!$CH40Kxry8FCOEMo9uL2A$=*ATg;jQH6G(;(Sn}0pi0(%ttg3x5d*L
zRoIm;T5eDf;I681;tn;Vna(Jvn=c>)f+j?ZDdVY0wVj;a)a*!d#p}|~iA8$B)KoHs
zB+!(ILW-#{Nrb5h%cN5y;U_W0Wemlca&$ZA*?aTK-v~wEiK3$ol~>xuRK$YD7t|}F
zB~*YbslS~iKjvvP^MG2_R=fnTX&8)zsN!adbLUJL&*<O_U<st-n<GGSK8-j@m_Y_d
z1n}ke-Gb&>@+W`=<^1QW5<(a&*vv^P_lmfH@)T0TNeKNOGpii55^7s^4JvWVu)^@7
z!Xljaj~(*+c`11%kQ@XR4gg(XOUdx1ni&<n!xbKZ^#5Y-=LO~8yQnJ6$=^^GF-{jp
znd!#KN_HU~tqZglEHYpLsqX_IJio<T$hlI@bh#%$AsGzeUUA!QH7&A|sS`9)69JKW
z64j4h{Okd<8AyoZO-YUJmG-qT5gwqkERh|;%w)l}BVXdlFuq@6#8AovWRae{LKNB4
zen!_m52xjU)j7zCX4l@PIA?raPW=MvVw|DSyFjxVA9=r8ihc#OOenjM0cGqkmKj=J
z|L(BFAue=irvw6Z9CHJLK)f)92?kI&IlSU~U3CI1DS@HZ3;cbgk!+=LEnMv+xcaiK
zQK9|i4nu>4Ov9(Nmt><aw*&}?L4pM3tptJ#L5!~1$GXA7;*D71i9Pc72*;u7%d^^?
z3`|Hsc(ceY?;urKoHILf1_LaR4Tl8THPKHyvn$@F0h@vDZi!>pn%N-?yy!rRiTFed
zlZ*n<@pRCA&@FD{BdG}ylRvg>JLXd1dLPr<KCZ&MWW@CuA&vd)HGx+kurO`Q0v9(f
z6d|J|2H?8QDQ;ibCaKjv9z=Ib&607(BveuD_w=h^2a$0!yReyXS30{GfMHIIUKC!r
z`5a{9oA7m^BUP=10@R7agLVsYkUhCd31BAJD+h6~_G`GVI5;m6CPC;7y#>nl<rl_)
zxa|!K@;YC<&M8#ska*2mUDw&J26*l8I^rDITNow)e*^mSDi@TDTH(E)2(Bn(e@?A~
zPXy^d2lB%Uu0J;reck<K*He7-X(5Dj3f7{yD?hp`BNU42n~Hq{geF+Y8&Dg=DRqt(
zYu{j7vE^<t?3rXbMJ(xWf%78q^Y3D9P2k&fhiNwHX4Tm6D+J>-bL$98dpP)4p6Mku
z^q)BW<R}YgH26;)JqLg|Uq+<!qm!U!S>KfxgWIpk0|Pqg)<Ye{FvJ{RR;oQ-c7{$>
z0hrEpem=O2$OaS1pL$xzc!NverlTBpp31f6mJh>)6_NerE({{-@67i4%7X?h_84ut
zdV270{>c*AlEk&gn)6lZDBvy>b5EBR2k-g0fAwWp<y4KSj2RPTu1<s2!B`h+Vg&cW
ziyZG-1(Zi>VE*B-xV%<FUDgHw9YLn*dD?rONTyXn@g9=?6Nu?9CruKk+IwJ6D<3V>
z8`*_@78*0@Mzdji22Tfzw|^GiLs*AVP45LRhrc#oB>~77dzf!Es?)_qspRcRD{+k_
z1<>;uX14_~N=Aa+U&O?!+l+8A?0Sxwh{UkVa!(d9!uc3!Tp1<!#<>p07sdvTT}Rmp
z(JA#z2?I>t2jF2rQ0Sk*L-mg`)_x+yYF;?+p}6X}Gv}vB&Q5Vi_bM~rb;wP%p~-&s
zl2!hg*mo0%7Up`_C)n|lM+o0me$p;9C}TLVRX*K}hlu5{D}S-4$@$B<h<>Syno6-l
zX6ia<G9EtZXE~``J{+U~kXm9Mw-=ziCV1OI@XIyOK?KjTthTBjm~#otiDjii+>&VS
zV`!d8I7HB3EpIK+KZ$rOw)RP83ZZs`g;MY8Ge2TR|0EZeHjS1LO`hUU$AOVkV4+(d
zgKo?UTKg3rH;2Fa_zUrfJXqeO2U-@yyX+=*<d8un`8JPH{>R?Lm?nFY3;#A^q}ams
zH$fu3xV=+enrrD55hEFNO;o=^Arm2$v&Xyznjb%GD7#UgGCpM?KVRy?tn_12Z(1^h
zL&5Y&KmHHhlNN^p+SrZfmM@d#^EqU7$HBbXa$^yn5|+Tj#rm!zQ+qbDF@L{wU>6@6
zvd<VZ@{=u51k2$F3*J8%b7|$NY+2<Wye$eCsy(#r>xQ4}%^u$Pnq=n3Gk_uUdAwOY
zYq+R%pXvGoCXHG$?S>W&34q$!_KhEBSL#ptOfgXtc?eyN)~d@F>NQguSmMeglOcDs
ze#oKDx1$^W0vh-`8t5zy)(`5m8yfrqH$5-sxtCrc<yErDVxE1Xp^QeB^g*eESH*wc
zhAHSXxvlZNy%!vfVn-pTAL#RL=;LJ8$V__m=#UQNT%oNEue<3eiN;BAEh*H^<kl|%
z2oWa}tqT{1{*8t;A8nIXdOgWiH#Z$WjqJVLt(yrb8azszh_d;#<>jeuA@I%i_*;~T
z&Gn}r;s9%`D2W((-J5Q@1-ZK1UT?ErXl*iYb!mSsc)N3lDW$8u#X8cwC3>!0-gwQ<
zm@35PX`AuVC*n;p6AhMI7yVy-KVMni8+aznvdcPVt2kf|5H#~{gU?icp9JmExLY(G
zo1OL(PvjTn?irPpn7e+qG3zxFpkTZTXQ9ZpO|;shK3S_&{!u6bO4i93?2773F&6kj
zy_OPiln2LzEFa=I5<uon%$^w(pDzVPPM@+c4z&81TLRgwiXX$;maR<{_w6b6Pj##g
zj(eTkzTb(lg3?>FNL$Oc#orMS9&EHWirK$65B?=(!|@FSa$r4w`zxIyzi9dJkj9_S
zinUD9{zJ^Y4Qs$aC*9xYa_suo=x4<KSjj2UAD814r&zQIF=!9XMl{>8M%nQntkae|
z8m8m`r3@i8Wvb9SQd1fnNM6ya{gMZqolMFcM=R3V+`lUwg3f*mH@R=};`0%oK%Cvz
zQzbd)x0{FIA9rL@S*>&plplh9-u#Xq1V~MoSF@gh_@;}h&Mrn+N12~S-#pK{dF=_w
zXKQNUvgPi7=NvU-+UDz1XzEd|baCSkKYrr8<lRO6m0!tQ*6=F3SRt>5ubxzC5micm
z9_9FSy*ud%x!1;f+4~Hfd-HPe+2v5_<;YE;fp?c5t}Z8d|4#k7SXKTz^X%_j>EFj+
zFBiW4UB3Fe@+<iZ@4t<^|F)j}>s9)9k#<koQ)sEm{g<@R-pdOI`K!#}`(6nDhj*`?
zN<$9*vm>y>Ntx|`c7y~f_*E*LCh31j+azv|y#KG#wyC+LwNcNYqqEB(mWEpZ&PtI>
zg+K_RnA%uTF>N2o#y$`R-VaaId>$H^%M#^VBI8E&t>PAD6Q*zoiI3Y~a5S7m`r@OL
zxvw~80pavSo-`!75#JL9W)gE8B9!&T!9151+HS$*S-4TH`c0VWsNfp?G;}K_x*Jz%
zSW<K%%QIpiX%#Qf_HwZ!2<j?kG5mpBsW?surU^t)q|@X@lepMpJ7Y~gT+%kCd>|4<
zVF^n=ZYCLR(R~Trx7znc<C!1OA}7XRAZABt;Em5N1$Kl7!&{P8xk6XUg&S-?i$66w
zER%_^#lxqX7+nUEivJ~325pwnquQ63#ybDkj_@=_Nm9Bjhw}z5(Q6+=R>#hbmaM@5
z5j=EUL=`;dXPvFDnwjMaFuIO{3s7xI2mG<TNvAB623Gp9^qKa2X1oR&wYk7>z#6@x
zxsD2>PI~slTm4ti@U`rl&!pNBvor2DUnM*IzPL<~k@*5JmDO8*fYqm3R%u-d9(p#y
z;K>!lzyU%FKlXpM0*Ij{0I<IKuW;DI_)uPbR-R@611qcokyw;=hQ9AOAp8+y`a%XI
zNZ%?$hpV6v-AF^RdT*o?vT|ksbg;=tKl4r`3i|O!2$JMKm{RJ2=6AxiRM_2wgcyXm
znr%I#XbC_Da46iJTFRKH<)QH*zY6g~0?o`Ip&tN-ig00!Ja}wzg4wb4W?OvRmFS^-
zkr_&Co^a81QA9_l4v67?`<#8HU@Ha;F1HTa;mfZbt|~+k!@!`zhv7rnMI`%U<xB2b
z!Q7&!Dnohsk_Gt2IAwxx5rtgFw~{A3y#S~Sf`j>`Q_eabzTSW2*IGYp;7Rq6&Y`X~
zZ;!&e;D-#Jg+bhw(zih}RBWg{KmE0JeZz<^&X<+vWEl8Q0|)PJ57+Ofl7wmYl0z!c
zxTatev+0CK8Z}soF+lvrAlIY4gZJ>n=K@zcSig&&Sh6C_Hb}T0xy1MQg#=_&inCl(
zo=$=kcnYTd#+dP{qf6n`%0#0A-yC#Cza&fnKsLUu^g<>Fx1vQ74+A2t1IyBSAwqn3
z&5zijJ?ByBuSQ>?oNN}ylks?>){H|l;LD5H$^tp+3=tU<pRlrrL(oiP>?`;Sq3&R)
zF=r6yE7_TGzoEzU<>A{7>y-9!<=wHCk4WnAf-S{&gGVI(`HR--h*R;&OaX+%KaVKF
zYNyG*&}e;7%X}gUma<iP{NvR}&NhCDHPpps&fdwxN^93-Vvf|xztFGGIOQ&Z?bn@@
zHZsUk#BZW#<{%WC{4Sr07ay5UTqTHd!K$ECGOizi)z!<r-?88UBqd@p7p^hUk`%Lt
z`CmH%k`%cky7MjN1N8Eb2s)TB=U577H-gp;8jv(2x(U%%H5^e1n)A^NR<?~FsCU!h
zXCQBNvE@ue#j10;jb@ThVmLJ<EUr61K54*leY9{Z3a`<(_d<kOarkQ}K-mi%MwC7W
z_CRDWnUSK2k+v%)#xW`DTHy8zmM}9I9SO`QdiBwUkC0ifa_zFNYP}LQ(g4c4HdSuJ
zlPf71{JagREc4*3DS?uH8<S^w<lV#0Kcx*?M|t1PW$E`O#b+XkP_Hu#Ec7swuO?5(
zd%Hu&VhUY|vA+^~34Fi#Wl!1}0i@O-<jK>m0HwBZK+d62Cz8^Zs4ztqQdTbFuLVQE
za^RN4t~UZq3}ejw1!j~331#WgO^<0AQqF;;$AfygwloNRvsxfBQ6tr23s7#?%)*8h
zi}$i9FvFWL*5GlLsL$-CD+0m2G&bu16RI!X5Pl)4LV%jb$VEQRlLuRzr=6=huQG0c
z{9!_;NUml|;Qs-0P6-{U<{KIYU)v*;C$N#)>j5f;dBK=v34n6Cig}t`ui~LwoIXW5
z_Hj;fS$61-soKg%oE!)!h6I`j0cxs1hSB;~wFnX0DdC18Q)c-*Ipqs{s$r(lW`|v}
z<yFAg9m=D6FXKA<*@QIbT8gy91Ljst$opp>G8;pFOc)#IPixmh9vP@tnWeDz2jtv_
z@xVa=Z`yI4pu||M)j=rpMV~@gwt1xNHv3ma=GrIUO`vmIa*vb;#GbMc$^}1GsU|YL
zPl?ZZm6YW>z^vU(Np90JZbai*aJ{g3oj|5vFRqh@Wf}91YuD*l#<zj8yfGbvAr@B_
z4z}!TEbR%c9(Q>uzA)gjT158i$MKIHjopRb?DnKW*S^J*)#nx@h29GseT{hRrdanz
z=gZwsTa&KgND6B3{<shx(9S_xM>ip0RaUJXC3?v<j5Q%_$W>^CyfkAYAtrqXbfsf*
zSfKBkskay_`7kiP--_&~vXkyd9XH!P8azF<t{m{1pVw>LV}wUsV28khTo4Dw8n00Y
zemrRH8n=C*X`bk!DFPqT27X9Xj9Aq-4(sFkE@Q;?;w_}FLskO4<Stsqu*n#y3Qa4d
z6oM<ThEDk8!?hq9<sTGU(Bu9Z>&n&vYub+ay*f*E56h^&z`W*RrmS)Sdr9A@I@lTF
zQ{>X?GC`*#{cU#aO9b1vhu*c?xAwFld9o+D+H`1&5Bh9(B44jq|CiZ1p`*gez!rR&
zcn95UjZAzq2B;hcWowp9Jt&CQ3oxvz(+_?#@1p)g^|{|g90GgC`{CIYv;5U%6JMU@
zf{ZndBCpvu0Yb8hctVE~%IlD?<H@d}^3i<Uwj%%2ak@~>Uh)yQ#QWo|(?E&WxIhII
zwYtbJ6nU0h3_nXKrHP;Gv@ZGS=@24H^21FPBkn0~OfP*;K++?%b{6@_B@MnH<5|@e
zELyqd*JIj<ci)?@Z7Nf3eZ~}AhdT_Vw0(H=;ix3jeTFO#;7&UMYVMI#&s<hY2xvw$
zr^j9AJwF3$tM37iWxml;41>;uwF4I?1lJ>-m8w&4z{Sa^)5o5*FuXLcFgNL7Xa}>W
zpE4G{{_ginY#}#gIOOO_vdLZQPx3z>5je4Aj&wisAQd5v)hlaPO2_EwyY3A{5vQ`$
z-><1&zQt9{nyp3Y+PKS=JW36hIWqi>-kJQn-u<bY>7{VWO>^F`sQKR<b~=}ajB5EW
z*%cW)KAYg5m|U)LUY&gegu57^BPoqArCGk3lrVe?YXF53eMdfJbbAq#e(41(LF1bV
z(Sw#ilp>qEODTo~O{uN`*#f2}{;9egwqhuRMS37wX#=dyqaYd?pqSZ>*a^Rcl_%3S
zPg)~sBI9)Tg`d@@gQQ3&6C5KB<Bm85xVSR&M3ce`APbIWR#;)-{SzEPC?N)do0Q`0
za67pU-~nTq;MkO-C(t~&K!>rAt&$Sk)4)Lajoc^S;;z8o-#@J+Ezk%*?d}1QPCWVv
zpcpa4?erN?8Dk<Z$`Jsd4v-Hgi{88*y@n1W!_Yh}4_vH_ajXgdo%`(1>@(5nC_{b7
zoDG(q!1e3eGj16LjwTTMK0vJxv<ZviV^g!m#YQ8*SmmfD`8ZYExKkSt6D&Uc%o$@D
zoS__#14w#X;2c76;&G2>%>YK*(WGctiw|_O0_3E}{;@26=yw8vEwNc2io8a<E61E;
z4yZqTmZxnaUY2Oln>als2$$iZ$z&It06agok3~M))^(x6{9p2S2p$sZ@?^IhRPT(j
zZAuh}YaKrXU-l=(q5)|ZAm)C+<MOK%2RGm=97z0t;VoDng?G&(rVI_SeppGek9OG?
z5js4BuZTz=gC*YCrr`*J{a#76IY|p;Y4_x9gfW)fIvxvo>|biQ(}Mnkf0qW+iY$@@
zW0`Q1AZ~L2_j$S+bMmxp@+@0=4_iu5q)pb5ZE8l`8w=50*3@?$8SqYjjrl~dw{~#b
zeZxmtIHIX{c}7-mM*B4%yG=f3@ASSJnNQ3SH{Fd}=CYm6vxjUF+j;=It4cz8jQfh5
znKBV20U+LQz-1KMb4E0t0NA(6$uR@aAdSHRxim!eJOaX}AMykO4Tt231?427b1#~5
zyhM2uyoDavS++#xLa<kU-(|(!^1=7w!2$W;Bs*#-(rV!#H<^&17?20mEFiUoWtrtA
z;Q_cXNIfLyKhk#I$3;cpm8P95I4p==j;IMr!A7{p!n)(Zf`FpV`JxZ!MHB4B@q|L{
zW;T92kd*)wov>ho$k7u($&5NLLyN%9#d9x;zlaw9FKDZwSFC*q;3ZvG&HNg}!0ec;
zH}gPYq#7Zwl$x*f*t_(n-T#2L;nw^4cv1}+-31=TQTDMD&uCx98eYa$P{uKWWbP{C
zxhR8k{AWjiPL>ITmx~mXi*=Pt_<)5L%4Ikz<Wxx`m$Iq@Ygbuddb~9W)m2NNWtF)q
zoCiPvO<>goaP&SMDj`Jig0UctWRU>=@YK*etZYL+&q}K_?t1<!tb(ozh|v6x%w0Qy
z?e6=`PQi>3NE&2S;spH_CS-pi%puw+P?Y)s^f_tjp49<9BUb+=R6qG%eUGE&e1h7!
zpvI9M9urQ7?gENTS3MAhQtj8Q^Z?>Hs-z~XL<usVonIsXs&#z$@ZW0$058hZB(%&y
z+-Oi$Fq8>-s|HFtjHrbpU~S%zVJ*E!BhTM{_d#9<Nx>N<1U-Ly!_+mY<z+d%M_{mO
zglD-w8I0w&Im^xO9K#nP-6M=0<;*$^GC3;^M(NDj2Mxx~Bq+S07=G2bGD1q`8-LZZ
zBtjeFLg_@1$`T}zKvv_44|Edu@?wE{pW|gk9Eg)>D(}hnn*(%iX!XgEMdbHO8cqU~
zn$T$vp#aHDPXLXeQ1gSvh~AtAGdR6(gKdvu8KEw;x#8VHGZkySh9H<FK!*0ywK1_+
z>Lx^145+N~y5TkYsD($X{mo4QZ1D#o8VZoq$W}xlTrbhcKn<cU&O9Z?X*$Yhu4aMa
zyndt3zdwZKr;g$6-ImJzwwGm~x#w*gwnesyOdg!=F|Samy-opYuh5C@woO2aE!vp%
zo2@cH$4G#VUR~yDSY|Z4>nucU(ad4DIi(KoG(yb}Yr&dbfn*EwU&?ZSmQ~RI#>H>J
zN6*MzP{;jFldG4H@BJhvUJY`Y&N;`&^K}yPQ<lG$lgk%~kP9mCIOTz8in;HA7OMEm
z)A*h*GNH&2M+cn|-UzKi#6yJ_^9OIF5Zy(9H@U1@w{=1xE<rPY5dVj%xA1E^Z1`}u
zQQN4EZpJoXbayy9r4b~gQ$<n%QAT%nD5IpiQFMfKBS<KY5U@!>49=eCecyA=|FGZv
z`P|=K_jQR#(fxZfP-@0iSHfij^yR-{r92W)#m|%$_0lDjXXrU&64lGwrvv6wEW82;
zRcpm*fYU?@Gh;>nwPZ2Uv$KW`PT9bIg~eAKAz8pJRFXa9j}f9Vi0^**i;U-kJ`^35
z7A80(#x+p46Uo2ZE?Tr8IzY7j$uJaCp|Bqq-Eb@rAT8Jg5^uQ_AygPsAT-<;uR1T>
z?S@8$n_X+dvxhtsB}89{IBtu$Br>iA!T>R8WQdoyWn0$rLcA9lKWDRlI~KlRkeF>B
zai)<#j!47>H%oz<Z#RzSJHP(+depb4r=`sf3Fzj>nfTMh4PZk29Uz;5!&^gRE>#0T
z5#SLYFamcwmdl=9A&-)^<Fr>RO?Beug&u54nBjzVZQqg8`OfK)c)Ke&%0W=65zN<`
z4AdN@jFE%}rDhgPj32XR8gsE$=H(!!O738G7+62Gi#tsZ4!twtxx*)d%eX}*&!H%v
z-XUF*<FQDl60o5D8l~mLC_im1s~dCO@I)qcN7ihoa@_Kn-kA&)N;y*cN@2;(A-V3R
z)AEe*j_ksTGDbwDb69P;ROQK%3ja;*!5Elu7uf&nHNZ&3Q=;lds(5q9Ecu1nYEI~z
zuWAoZ=C@^94z#KZ{TIsc3(NLh1%!n}Nw<X7(rd%9e61jh5U{@}NGg_XB{3uZaEv8H
z)zXqq^joJy6BtP=Gi-NF8w<=>T&%qTQr4XZx(jGNS>nomqy1=NKl56Bhm)8L6X~C#
z`~bDA95qv|rHLKLG%-FGw(vuS|5%IsH0S<B&e-K}i0<9_L@c&ZpT=z9T27lPmw?)v
zptj)`Z@Cy7uO~{GjX#mmex4AlVfI@yBo7>Ag-dE8xbNGz-PaWAywaREdWE!dw7;%h
zU2W>*p{bpz6Vj>clcImUT#xt7+~Zi7blhX%ziw@^MqQl}_)`O)Xv;L&i~<jXz><MH
ztD4Bz(Mt422e+YRmq8iq-4n!8r_Z}2$#fnN7Z?Cq?B(;102L3EE(!bjzcUz~p^edA
zOAmTamoqt&CPMWoe#NnGX8_Z3-6%X~^HtG%57g$dTKtbmQw*RbF)pxW_W@_chQp~z
zY}Iv2rFSFO)3-p-l%@{*0mI38!@yIK_TA0ySfhT~!4$w&^!x|rQ=O*_>uuF#5o+7o
z42@0g*T&wZ-JIf+qv+Zh@s+x6x1T$;%EStxuw2h_VoJ3?)4u9UCC=8n?$lWapeS~t
z5mp!v|2sn#+|<;6_~);6lfpAM+J>!6&aCd8uj)6bOHG+-pN;B)tptbi%)6{?(m&#I
zt;XtCeZNB{9U&gK+~KTN*Pem2$;HVR#-;wc-FW=*>Ed-I6TAE3bfTI2>goVA;2zlj
zzr<>5)>QC*oH(62|3|A?=9u*TT%J#{eg|ZyKwcO#8t}Pz#+v8jE1~fsS3fZB7UzrQ
zeG`5x2cnS+4wVS8wg{trmhKnn@`;m2<)--!w#PVFsdi+R`Bd=NzblsL&96L`(`m1}
zi$Wd8$sLB|Zk_0art0iiy>(jBu}ylb+S?v#`eH3C=<31dEZ++0$&1!4_5z2(*A5ha
zpkt~K|3ABSyCpYO@5Vm6^P$V`!214o6FZ{LEJ6YKWBC>&(ucb29Zypy?KKhi6o`ML
zY_v=ht?g@ir%mEZ29`MwzIhzr#4Qo7C9*uv8_B?T^<^J!oA+E2VJa^~&rDnUO8X)p
z<@}W;#o@M`?JJ(nk*N2D2&V-P>-3SpN&HSh+z)YH2Y`U{1a>S3e;S!(AGYlHckip+
zHS~Nlc=N#PmafOLpQraT&nG{<9rYlCdl?3?t`Aqd7|!+1d!O$$>m2+`b<4Qv5$WZ1
z<w<qNGe}neEY-o52KK+>TT2<9f(?lKd7dTjp5=D+GmO&5jPlp32XsX%w~8WtN`CBd
zegHqo08g7;6adCj-hrUjWl4v7DThBl<-3dEF5~f+j}sOY+|(@{wA;!qXK@#^{+BOW
zez!aI9eAB2Ncz@Be?C0BnA*DhED#X>%{}{vk9pE58Sc-(vTjU{Z>YyEpO|Olk(X5d
zdAzf?edIrWp1yzg4<g%>=M44!{=CPL5cuhVt`o26s#Qqhtvh3TkXaIFOC}@~9gh@_
zPfj7@)lQ}-nP^E)gZTfp#WIrrr!AH&mh+#sSZXx4b~Pz3*3{MA)0-m1-z#1lPovHF
zjH@qmsEckq`AG@})78#hQT6Oq%3{h@)^MtTX!U5yCUGl%=VR*2gXsM(L6I-XpOcxj
z(S_nHpWcrCr%h(N(2-zTR`DPe+iTkyy@CrrCubfP#IPx7h$X9`F<INAiDUvCvaz^v
zvH(G*ykLwzi<12s`7bhz<Wq!)U{G3km@fg8qn`Db%M-~zag({g<;^%gYKgK%;LQtb
zEB-|wlDO>q?4W4oe@EN@KWKY516^d)<ChIYF|292<YqOd@X-r7&JVdjz2n{gZl@Tr
z6M=c+25-={gCr~eGck*hBf(eRSVw~jcL<|LV+=L5a-)75zU+lQ3ry`Hjta@K!ffk&
z`@y}<)GGm4*8G>C<d>w|<h_rf<~1or6nt##fv1QOu_jZS+@uf3E9Gw|CWX`^L_T!y
zNoi)x{6SJ^%WhcR^Va!lCF(o%J7VhCD*oIjvkZAS;gu-7OOaE8_{ptE^c@#k#v?$V
z75E-sLIMGhs{q*MT~S&h18SovJ~`3}xHoRp-I~AZeeH>?mDzBpK2Ksim)H0M;$Kz<
z|74QWEgdP$%qD24V?+1w3vdnXV5TedG1uyb&&NDlPoI2;`)hFpx4I<vOsLrrtvCuX
z@SBPMt)A&qg8ZmN@yQ`%i4*V0*hbE=*RzVcCrDuI|5eVubYeXz(BlP~SL)O+`ZVLa
zxmt&y^a#8LbcI5B4S&1)muG3kypJF}v_6p3O#_2LcjI#<xs)+%YkAG_yO$)I!?|G7
zYbfcEQ1WOikU-Y9Ju0e1clgQcI<m7>lak(+Fcia+EU8i54VA5-4B1RF?D=2<YmT3;
zuNdrD>@pi7KV3B16pNd+muMW_eJ=6p`9ELqBcR0gkC*55ivU}4db2wn?465}FXNH*
zn96w7M#GV0%yi;2(axKL&vw0y$;YBqNt>iV<yT4gs2`UJaO1zVwc4M^6f!*ZcaPW`
zr3V#T7#UDw(DB>J-jD6d2C1^T*Mr6t_NTKah0z-*)Jt*ct}D{gs!D*k7biU{UU6;s
z7PA%nK6%68r2gZ(;J0_r--qruJy3MGZ}7ID=b-N?m3Zsq9-mJ=p&ly7JP&CQR3t=4
zL`wvM8VY03z9BI@xFIU82tafb<({+#bz^>OD}qwhL>rRLJ`AXBDUcO$uTGmZ*iKRS
z9=@B?@dDH!jx*a3x%63&&gpd!KU@vex+;`r+Lb;cAKn-a63cQ<R|+e5NS_VnR?Q@N
z?d|Z24VcV*#XZ7Qjr!iV9|wQW*WO1mi?<)}B8@LM$`GXrq7M%0BhRVLp#)jpe<Vw&
z_Tjkt{Fc&uQhIQ5s55z82M49FD-b<i3SueOfOv{tJw!X3LzEP8%oT3HJ|rn=hmVHi
zydIvo@rDVr^)I{@<XS~-;!}^*#|`{A%t{tgBN&F+SIj~i4f(tyv<W%{SfFfYxi;9V
zH!E{4BGc`bc>Oq7+D<(Dp;0Br+woEP{(!VcCmW8F?En_*FLJJ21Rxu(uDcW;%maR{
ze9Xo`c}Id3tXL)X{UAs6ds{~Gs+%|zU=VS0k)=&0mJADGp<u%qLdVe$*bXN$j@lHe
z-Y}3fn3FfUvopJ3{L1ci{I=`687W{i>P}b+sI;A>`?N~z&V-S%FazsL(P}>bI<RB@
zurXy&wQSVscnkWNWvCM(Rvk30ypGIWxq9I)`ayp-u=u3(z<A$g`=F;=GTV=mFoTQ^
znSD@y^7P^ll+2JY_xR_M-mg*%RaPqz7m7|pvL`hfJ8h<smyCF-v|4RJ!-ZtKH>F>{
zW~<oy_n4$&$yipgP+P!)-1<oc=6aps(zbbKa&DE#BO@a%<;CpL(`Sk^btVrcmjd12
z7~Pp5T<!hD(UXdCSG8!)xb>xH%5v2@YQ7d_zWKFCYcj)XlG1i^xjB5<@LJQ9&6wdz
zd-2)-Y_^jt-4&?D$e;#?eZ#l?>u1fOGYz-Spl|!Wp0(g;8=a|)R);u#w%TXAIl!k@
zN0ooJWu`T{3pUKYoXsMEwvAVw3R7#d;Wygzmp90<{?oa6E230@C|?b;MMx`#tS869
z*XH(8(0v@<Oc+3Ytz>pXIvU88m`m0kE49gS-a8(0+gk&lmFlx#IKIORcm0x2M(WCS
zhd&jqO<~rU{Mo;Dmx4^5nDKBT{RKkuUarOAHE1T0yzwIsq&tcFq>jkHBPOAx)oSms
zt1yu441iD?J2R-Zu+R|iiO}JJ40oI#LcUAbvVC>_!%|4V8TdnK{<KkE>t+5P_ahSX
zXG<sZqO-^O2Qt<&nywI#=2=9bB6$$rzGyC-m}yIY5V17hjC)>Bun4{f)I95t)8j=)
zh3OC-h53GYU;w~chpTw%E$y&LYl}8MO>8VY7(lUnSiJ4Kk*uGH(7KU-JTcjZ8xxvg
z@fi)&;i~T?vtO9u)zZ+i&5SngUi0xfdiV4<4UMv35*V{e_*mSar<Q=5tJrNX7&NBS
zxK=zL-zr-*Sm8l?{Vj|e(P7&=ZHjCq7%;4^fWxLglSbPLb;@=@yisi9txpp@&c{t5
z)paSsps@iKn)HRmPp`h#GN%JLO6(CJ#uma`Z8mwRCg~fOxL6x%rhpWuruf*Dz>)eI
zLUeeLNjRseJLJ4~>Tb$i-YS^>Vn+Yj_;*%~1orJ`3WEFB{Y(tq$r?-o5@S)H*{IP@
zlshuXPBVvB@hV*R+BT;fZ(HKF!mlgC)No`>LIyfCH<9m@aN~0*c*?_XKo~~nHLE&K
zkQKYDy3}QgNXAjYEOrtamH5j3WS8l$j_{&~=B{-grTlK+ebp6OQx=*+)k$QgP#}j`
z;irwM9vv`N5tr@Fvlr9;u#m?TdygnexmP%R)M5P%xRo{5T%xHy1WaFF^8-KoA*~ur
z4-Gqh%!H!H0S)OF5?y^xPD<6#I!=02EEQ>{*Zv%3W~jbLZc3SI$ES!Lp4It`fwlpt
zcy0Z`$Y{1fnI%KndCz4xai`wt4w`7~P-XIO?=GDBzDpT<5-t_1vtiv&m1zJ22M>7%
zS39m?Z?hbNRO#>$#sJxiLe9r#>NsVxN;(xfyyITiixE2}ECoxZ&YPI%kUh(_@RixP
zU-n1IxO<7#NVW%%LOsdSwI2y77?n~NiHGj1PO$fu$`x>b(y?_Y4?y6VZ&L{Xz1`+c
zBE`mpi-A$J-prr#9yPW<qJxW|@DRWj8ccjRdLGWc3hZE|=flg@4FzVujTXO%me&ZQ
zat&*#bZ5*2i6Q<!n$pelKQtxhTL6D%j0_k==Pw`%<J5WvJ15bU&Ucc{ApFiTiWv4m
ztX&;{aQBUe&t>EK+hf!c0jn{>WaO66L+GwltWIcbTM)>1Jl;9<ikb;aE|5U?pfDkZ
zAmSGa&`pfJ#^*<(E6?S4!r#P_xXPMJ8S(-k*{CKjfqFZEjzmW~^(K75M~>o?QVF0^
zCeg8WG165RgA*c0f#Bsrl}mSi6+BL9jYBF3vY2t!*YaJv0c!3A<7;WfGd0`I)Jj{E
z`wo&b*pjBPsZENhy}hX{-mb~xiRs%gjzhY{`yfGoiNJB_Z8nbf)wnJ;`gSu1;C&9s
z(DZ}C^n2B|kI&o~^f*M}5Vj@A?h)g^`%GLr?8!s`3@fti>ONy0_ZyYbJP+y`jIgyy
zNQGraYw%<dVMSQS$9kAa)~rkdcwCTM1i(O|BYA#ZWxW{<;k>CUshb5qVeBhML?+Pi
zz&z{xnd5rz%EbH86G1P`lRip<g!PfAzNFSf1GPR^-R<kKAW+$`40#ZU7Xd!ajlS7~
zLj1~lHxH!z<bx{DHHOfd2<5(7RMW<$+d@R`e3+yrKr+9mUDk4Sv+~_0a{mM?VdhPv
z=d*Y5&}b^^FI%Aiu&;HUo+eeEIeRu$Ky+8D%jeL-#G=AzL=2N=jND)Z^$@egn0Xfw
zRBR4OIE9k1N6FV*{T7f6A=5OXBgJ9x7hD8Q61pECP_P74^emcU;%&{%k_}E~KcVUU
zMI&lelBw-<jMMI^&>r^(%~^BPnL`B4t~l!vun#>5MRq!&)|9p?Q1_>t740XP+90U+
zlVm)|$S1l05Jfgj&zM=#>jUG(7C#dLZ}#06g+1l5!fgm~lX%90amA4HCqMddRavEJ
zLa=X;r+<_H!2YtUb0B!q1C7HQDapSsf;{L`YZB7^lmz+mNpi2Qq(lm&s;?h*WKB;n
z9N_~t%4Q{pRbavuQh#Mv!BvW2MY&4oPy@cLZV;@BU3%<sqAt0JzkXekinws`P#Xdq
zSiEpjDYzVkhHECWq;p$VD)d)<-KiQoRNc+L_r<?jv=C}`sbzp>8uu@c_GhjKpe2+G
zgj)f=lkDV))ZYt*gmKmHims{y`qie-a~Ou{Z7^I)aL~Eb(*wz>Gy|T892}2*T@Rk=
zsr40k+txnf;Pmk2px&;H_OB(lI>%quF!|haRR(}$Ln()=Fxcwo%WQ#l&ePaC9i!F=
z7=YX#$mb6v#{%BvRdk0p*tJ(^P*z2^tE3!4%c=kv0*C`3LQeqIw#IZHLiu436(zv6
zex)Kw?Uq)dJzKh3rFbd3x>PSP6c6l+1`!dBBfgE}mpsH|Z_()6R9LWmz25g^x?Q`*
z>A+?uWg3|w&{Ys~I}v>^S^2V~X{NF+i>ZaSGlKF9Yv=_tc@9ntYo>peyJgliETawX
z1<~7!yyK^isJ(&;j71c0wZa~%{H+Jy6K>}afwHNzQ||Cw_JhlmE1M3RwhZZ*9yaM3
z8YLcD!?7TK$p&)&xSHe!ZTrqUa61g~9xtAGF`Oe?2#m+lszyPlZc?|vs6kZ*Wko8b
zsE{idOg^irx2Ha=-E0lsF0KSnTYyTrTmvo9eF5}rwKA^YADGLatOJ<nT;L;Sa8n@j
z5G;fbR<?IYOA}L*jOfXiDLcSQ!pva|8}v@Uc{4WPT(PheJd9=wmdDA!GuRWK36Gxd
zLrV2?ZS`?kG3@2_EW$f#mb+zu-Of>rP0odG%oPA4Q0sQ*i;d^*aJ$%(!h7qTRoNWz
zd{?5)aHhy)z?kLjAfe*ly<Hm0r1&<wo^pJ`Gj@Jy_F5uxEeg6}&%HS)l88zFz9r|n
zJD_tci{&eoJLdaci2`60=6q-#fy_RBdDLxn-}o5GcoUH@1!lG2%SxeM-hh%#%aZ{J
z3<Ze!62c|lD|jdz=D-WAAcT+br6ACAoaJau?)T>GlihT}$d1kA4sCLyzf;`9o(h}*
z0Lz!>(yGI+rqUm1Xw7-Xhj;sqq@eF?3-}`i>s`fVE`-~LKs_e`-P>XF!eSrEFb*nB
zM}ZhEt@NH&(V1g$dVrY8AHl>Rv9)%wt}U6*AX(!M;T4V1FBN*<wngo^BrYwkB%VK%
z4E##dA2_NV(PCjKV~vuxJ!w2Ep{6ubMI$AyTyObX5~4H5H5kW!T7)$OwQ91<%=GYf
zpk-Nyr6tLv7+5EYJS&k}((D}*(lV2y?b6StC+Zv~b4JEob_O|VWInZz#%aDTx<jKI
zBb#*j;>YCp0E61gMqLg7pjT&jG-CS8c>1D?NFAe!S}OAkx5SrZ*YwDB;O?q5HMLVR
z*z-yy^9T;rV2ukKCm^}{`v~yIAoWij>WO>muPkT824~M?UR~xef_K%lUUvgeuX!>t
z{NPdzf1z!I*1G9FV^KA?^A?P9K>rKUrMhwdZ^T?-B{tTcj&Vmb%uu6j=}L>u9n97Q
zrY1Kw_NBjjxgf}-BTTL#fCdXZp(gvL{Tfo=#5bqXxv(vY>%xYM!-ko+K(zgIf4NHL
z7~c#TPmf2u(NCi;XLkNV(D&_keq}|?{np4yQ5QFI_b$+6Kg;l0mDNPB!iLrL^<d*Q
zCT|jZXnh^&yj5~zacGoatQEcNr)Fr#Y;5hNqwRV9hcMh>z}QC3Na4ZC!|Rysk&utF
z)2dJ2BtLp%M9U(WrwgeD*BK7e5J57*Hd&5l_w&|n8nAQ(`Fd6Z5dgqd>*}+#H)(&F
zGoI+moLN8~RqS<?-Ctgp3$f{ZU*u9wgE?GRmRkp4*K4@njh3#<4_;Z_bGNn(c|%3;
z4vBkbn`bloWTlrV<P!(v0|5ANz@dTnFOA;4`}>}lrjW?Jx%;GI({c0Q$)=g~^y|jW
z?_y#5e@Tn&2baOk(?=iZSU+40eE8EuEAayOeB%Si<mROsk@EW{qogxd#kunVk#5$O
z!jGn-+U|uIOLMgaD;+B%kJG2lE#`kLFGKh%<yLQRZTbJS>niqXc)isF+kVCk0%ZbP
z!+{V4VDT4G@t<wl41k+RZ&fc!w9fWva}?6q<>1++ZPs0hbJX<Xe{zGLS3$vu=ho%4
zqtd06{!?nx=2Zq52q9U4fPsulciic=<V(3phSue5kl&LmXQ?aa;VO3_Yj?}-y|MSZ
zUjX~AZ67TeK8D0Z1kcjgre$f)?t45wNHn=o?xBKi+n9{nKbQvz-Lk#^T{n-1K3kn7
zo`?Uji9*3+a7=TiSoU1ft<TTCTa~}AncRNu!J;;0VPTmDIobsx3-~0?Ls%0+;|l^4
z6I{EZ0P30s9NT~gGoz>#y<Pt=$yNYbf=uC}p7NMlKk_S9PrHvUuzxlruE)92<lx5o
zw`ZL^9k;&ll6?oVgv!JOSUd?e``a*^0@3bKqwo(EVKvy}p%bSHA`0kJ1I)*%LK}{*
zDfaMu_G4_D<(}~ip7sgs2nb$FKb%buu2Da#;jx><EpZH8dBmX}Szk(V@P=0wsEIp=
zlbI!+=ZN<7fE!sK;-r9oyrMN{-Khy-ZvSYg2-Bf~0N%MH5xg9?KTha}To8k9yriJy
zZ)!f<2r>VN{=nEGk=8Ef(`1-%J}wNGb^40cK;;KYwdaiVR0MtRcr!;-*(rjHzG?kI
zOx1U;k}=^Ytj<HM$0J(DysXS+tdA_Wj`{TqJzgC_{<>?>fA05E{CwulHh%ns@=@c^
zk+kVa6!hn%IY3K7D^QR8jTe1Qj5i65D9Yf@roV=5KW^4Ls&d*h;@0Fvln?g+e)zvN
zy$@>maB0vRyUxHVC&<N15Vhosv+@R$BD(s$*$(<wDc0BH)xoio@u0DC_osopt#i=E
zSD<R9x-%*57jq)RpJP_tdcpeLq3vnZ#tGal6X%PtQN&q1_Du6(%-}WoAU2-4AB^qS
z{{5i*dvcX+I3C*_DVpE%`;0`|QVWVul95q~@>5eViiz<hWap4zcp*kGOjw&H8-=8!
zqU9F@XLD#H=%`te6G$e61cW$!4xTj4CeYMVQ6aQhIuZnhp2o!GPUn*B3e(hdEc3bf
zg<wVz@tT~ug`A|6G?Fc$ud;e`wW#FD%uHQFQ%eFyv}i+=Dq35JN*ZP!fM1WHxB}6M
z>hG=qA}((ns&q!_Lm21<s))=jm17x*E3ITMgZ8S49E@eX!$f=aRDq=1WT`>NvzZdb
zpwBPD&`EP;*c>ilgmGSv)-sE}rsQ-{mw`cn{Mo)sHW@evW_NHvtgA}ir&MhKH0ZRE
zS!yJEV<3DG15DzJJS)-9e9!EuB)=i*fbi-Y13ZQw{c$byorz{hix4c(`a@xq+o)zN
z+R0V}YX6R{v8qjrFEZcV=H9wiPWivQVpf+OEt`&~y8V~mt?0!rX$2TocGiddcBE$f
z$GeuN+dPxJ&3o4l+r5_ZM~$TAI-0l8fB#Ky`25uB4WZXxez<r7+(?<y;jS3?4ckgJ
zN>+P%R|1&`_mwnuf7JrHJlZe2l8beW=hb;%u1kJXMecwY1JlK9#WLOS-il-Mtlf&w
zIc2gkyBUX#rT)!LTE}v0&7Ot`R467TgOlG*M>;^{u{uw=qHiSewqk9lBjP$)_|csJ
zo4ap&F_6@R%+_c$H{SnA8V0jg1x*SNn1E;p18ikPhcsjTxK-H~J#!@EozoLfdpru9
ze7!ybj04ZP!-J%6W~ENg7rH0!mr4$yGxAvHGIN;LvZyt_vzv;7a|xi56w0-o42^Aw
zcZmF~7pfw=3inY#9%|?vJtOH$63B8W5y&wk!XnTxrFG*xZP%ns@_*VfFr4<`<?R;w
z8H1r(MZ<Pf!nFLCuU8%Ox+32?-`u$U&5-Bu1)~hOG0(<9J67bo!+i_Vt!-<TKRSaa
zj(znBGxwQo5@YX8r=XX8!bwzan>m`Q`xQoh16z$|+s{+-3f=*{4J-B>(XmFirK&cS
zaG;;{nV<A%d5`^H1g|yNjA$E2p!+|Cdx=j9RgU@TeWz6Y&W9Bct$Im3Qz--s>A$H?
zl8|9Eau7M}3z`%C^QV4*VsrR79Mwm?QKLvN32OLgVi8n4;6vz`(-7B#ywa8F@YAbJ
zz6sFmq4_PcF+x}J6F?oqwLbWEujza<;{4nB2OO2UW%oLCITcd*%nU@9s=!lYD=)m+
zyCcwlxFB<ZR86{ipAK&W=4v;#M(?AN)C@%9nK(0cb7WwG)c39vqZd}iJl8(8OQweG
zw{TbBC<Dp~HE+f=P3rWxudT4dkF(V$ehhvYz1+=6P*VGNaC5WyQI5l$qO)kO!g;xM
z<zp#z4&y@tnW(I%fnHng;dCh!-=hAz<u$VZBq8*Nat%w#`V(WpB$&6v?QC$_%<Ne7
zX;aH10byRa#eNBybPTwM?EU)cw!Al?DQ1Cy;Qu`OBJ+`nKgPHmYBN5>(tj8y$XD9E
z4FuUF5sWuD5p+da$vfuJ&T`Q<5UrpgU?zZ^V;)EUs6(Y;fW~H~cS{cu0)oj_-hcnw
zhF|wA>iv~k<%9Y)wq1~I3sr=(3C|~FUH;n_NQ(*%mkk%yA@u9e(|Hv3MLd_F3rIxj
zwVC;yZSbnK7JC<7>cJgd(M$8RO(u)mElREo88&0N`gZ}gZ%i27s-@L0r8F{fNBC@X
zk~HGcS=0JaEM1i%bap#;n@{uPtiovBY1@MQV#~!JO#BaMo0>#(?Ns;$JD!3cKl1<+
zkM&@v7h{p4mnq}Zoq6;zKSQb9DZiGbMHIl`uTd%UNfXjTa5H>hsB?eU4K^=F2@HeK
zvPtwsYm73YzcDd#UJosJD15I}D=RgvzRlQMAV_G*s@NAA4yN<ZaKg!!C=4p$nDmpb
zWa+iWHGWv6#?j)Os5)wWIXY%SVW&laR6PNkJZ|6n77TP^G}^x(n6LNVtALAn$-?_f
zLh3)ow46GNCRLkwf6qzGwY8W0uhRCc&g{vGq{fH@gDoD&NVIS<ng5R(lv!+i0k~2C
zrEN4-bvP5YUCT{otTiPQZLL`8w*xY`PXg%)*a9Acz^uoK`2VRvC2LDWS^;DN_-Mb_
z4wTQ|dWs>#B!;hVgu~v8RR32Eifa>5OgZ4e0Z3gY7dmDjPQdwQTXxqquWD_bV3usM
z)b7q2HDPhi<iX|c`$mp=q8{)gyAE|g)1ae>a3XPqieTMbaaGme7}c;cu~!Qab&jIo
znFlhPouY0Ve0AmgLhIs91W@b09{#-aZomFIL;lCS@3SSF{sS_tF=AgyPP&^Pqum>4
z<Guy#=d95kTC0fJYEbeJp)94<y=@`J_j@)RlZ#mgJ`dD|vVU2%ls<0?ptbh8)(|~^
zS$S83f+g95oo+UqrStWn$W<u|p?3XZRB@Ix+D@m|fhdGZGi`&QL?COdNZUJ?n=XlW
zcIV%pSXXkw!G*u-Sz;T=X+v`e&1<^c<wP>B3jkQueg+dSH!h54Vk#NjMO_Q?VcA*C
z=Xb$%IsC%JD>dm9f*h&I``qKg;<JSYb7_)ef#Kr7t1|c-4@3$zg_d}GNlt1zztQ@{
zwbXX%XMeOr?9o$NeX`jbpk_t{mLkSts%SXRvwyXykIs2;v>V=h{ekQQWjhV(Tnn5{
z8Dd34nNTpS>KWI~zQhL)uI^HmVPsdF6uii8U!W+pC{tb@V0qi(!L31wFDg00cjXG*
z@Cp#JQxo~lY<4puG4KN^-dIXr;5)q&zVUnWVwQA-y%6h{#7*85ve#!p_-o_rVG>GF
zY-+I1^g=&i1}9`t1>~Q_gad-~u!9mN8rcZ64F7_nq2gv%QrXDvj3QwWwV9vFS{m`%
zrEgNCxiN-5u1Ll!erRmPU*koo0F-c|uYL9OII?8M8m5;txf5_yR#x>11Mh!XV{%q+
z|M#=<R*&g@A3zp&1-aaejb(^dw6*I%uyv)`+aq~E>v=ZLE93dQeUtP46AO}D>Z6@5
z9!Px$L6OtXZpqskO;^gYdp{v8{wK*MOZBwC-}FBnvR{+-k2OPoRI}@ufzXSk?Cj%p
z;<WQojIrCtx!}L?@*l!zBc8_9>kWMMGX1^2@shph)xh@$bH6u#|2rqptD6K${1>zx
zH+^|rka2HY=IYmc#>><HWXLSXf33{D{Mj@2_xr<ZzgDkaUW}RkJ0{r?l;|S61c<?p
zOabKI$}%aG)pMM2#D7H3$j{|dG*`cOc+uR1`v(d-pm6|~vke_q49Ld7PKcb}jzsvY
z!n}h37~IS}j;t_>!<(_F28ce4A|ZeyFtKGK&THR%dXd?56oAx+&>TidUPPS=&><0^
zd}}xUP+GMbQMu3<L>8zb!HuRBsF$mRJOZE*ArtwrK_jskVC*$_I0^52!obMG7K6q{
zH893vPvA6?o*a09z+m*fd<Lrd82P|>dD}QNFwVCvhLbHJ(3_!%#QYsbWxK*#9`I4)
z;B?1PVzJR&76#GIUd|(=T{tmm93q1;lUqr+2$U}vj(<NKXKpQl0f1_BxcJQhrT935
zv!pu$$)>BE-oPtIZa}h-IZ2oh(_EXJON=K{BqW$g2p$4A^Ki&EKs<)AAlLxKm-130
zCCD~)H1T0vhZssyIKd1^73e1B9372H<X}Mf19`tN)1$Ge&YDT)BWZ4@G5Hr(-Fe)%
z2LpYW#9Kqbj=?6m^XckV08T_aFJJ0ed%8#z$a#e3SU-b@FO^O&Wi^D3f?$A*0<HFD
zh#sYEvM~U{FvQSQ2Bn0M@l>a=R0@9<I&9<!bH;<g>r@EnpV};L8vwyf{<RsPztD;v
z0Q`&3{$>Mk+y@c>{v;jdk)8>L*(|*+TbU%(6Ushn4elK_et3Y8vkDN$XIhwhDve|a
z`drC>CB4lFHlV?$0NAs2EorcI!S8}|BBZHV6_`YX^51^U(Td9Xqo2>uhq5#0#%`zU
zu@$JF0)i*R-t9!&u5m7#`GfsoB#o_vP%f`|DDNPXt~c951BjcBfn}H~12O%~BHtiS
z*!UORPD$?$IF%<L@2@3KT3yWRs0_xN#UE_4a?P~-`Bd{goF<V--FTYyK@c_GOBCTW
z;4j|ZS4=fu{N>D7GZv7&0{S2YG|(c)X3M520zgsHH#C{n<I|_-rN|DYre#X^^h>&v
zO5)2)#!!CZ2vCo%R9kDQaukb6UoH=v`d?`56Hux0!Ck$4rSIE-aNW}Oaloe1RY@1S
zc#i=CNrn(?&NNNI20jAb&;_NNN&my)1KaR&6i>Do?mEOjG1Mb3Wn*~i4O|AKaITk^
zkCzAfa2C0hZAF*u6CG?ifCfy0V3?Hd3h3OuRB#<Q$<BZdEDVEip4Y)$0syVQ=<l?P
zAG0gRWkGZ1LrV3Ztc8L<8!%i7i9f$7RqXTh#zJK~xC(`=>bO}Yl3DnS{n^Ka;>mUp
zdn`!EAH-&E#~DI1fd$ts(G_EpZ!khX6X5h&&u-TPIpt^tyOda>;2eYSmw?DYNgBO6
zR`w{~FO{CZ@U#pIkB$3PS+n4rgLDN%y5M5E=l)D51ZcCr8ILu!^W_yHlY!opgTB>`
z;rn(?S$19Ky30%~IGF%WKXfeZr_0Ns{Q*cWv!myvfM+Vh!9W;D14e1y2#sp|$=CQB
z&&h0F7gHaL&;V-V@_llR5y}j__$JhP6IpB1UR&jka|2209BU>`!uVzaKv6Y-HX<wz
zN;4!G%@?InYzy*8EKI%G@bS>mPZ;dq-vD25Ig9o(l&PD}tVd=wgw`YEMvMOLxAbtZ
z02^ompbZ;{2G{jAx8hWLFH^2{$Bc8B*>KL16!WJo`dv+Lws5qVk%veKsusi%?8c%j
z&B=R2(lE>ZiDD~W&|YC@k$>JkxWy%5#5{I%Ys$Qy&f*HN(2FT3())VE^DRKIK(<5V
zH;srZYOBow9>SwbEl2O%Wz)bjpv9~HknNu&f(#_;H^sZq+C6u`4sCZrMgc_T+Y5F;
zhJ4M4Bfw+M=0Ks|$S>*1<NO$WA~B28xq-u8h@%$Buec#_WYz7-N$0)rA8{r!TO-L{
zI`y}C`g6|x%=WOhE{JQ|^siK?5rpP8!@g8Q=NGus?f%Xq{x?xP?}od0em~!}Nf`eH
z_N@2Rw}6BN(%~1;K7x??ZP~>n1Nm%Gr74sIS(gbr{bOm!?fd**$j+%@fvKVA+KVqt
z)-j!On$swus+){;h$n3&m_Txo4h9j^{I0UaEA5J7i_uKq@+`}_=Pz`3g-`8Yb!ESN
zcU!axEh^M465vMr{<d~E`sFQFhMIU#(q}edGbHW{{OS1M_lv>KK>=Q~A*3dVpQiH}
zgLFg^VH6-Z?JuO&Cf8!|>Zb}5C*g)^){tQ7(BFr`lO->z-l$F6TC=o@ivv1aR3Jz8
z40HC+w-gyf{=5=v7uq!%A(Xt{)O!YSyZ`RD>}Lx(_ZX;Cj%-o%GhV3<X<Z59j>;Tw
zsUWSinZy3uTpDg#_P1hW4N*zSR?_7;IZ7_icos(P1{Rry=~!7BUS|@J{VL^XIr>m^
zR9rOAyHc{f)$g;sRiN8MhuIj4WGe>1P+M0(VL-r{9Pry3yz0*6XYCBqudL~7`^Dn;
z^4gHcNd<#ji;*Q#{We3X$W$(N3WAgoV+^yAfp8EV(Kwh!`^fC=@%!Wxt|OT@3}swp
zr=9PN_0DVCy_;DYd)<RHVeV3FB4f+)Qa@Y5o|9>uBW9m6lpg6Sl*=ghG4=Y1YU;3e
z)>PO>#_=$?gFk)6URWv}y1`Fk_+}HEjHh##@$)|&-0bY-C`VqA;js=oDnC!K-%sXz
zT{OBYUvlR9wW1eSaC02m9cef0>&eHT#!K&UPMhusi=~NM54YqvFVMM7aRb%(Q9PGg
zbHZ)Cgovf>Ai95Uvkc!BCZ(AtmaeMEu;WLt`7f%bC2N_vxTW-W*LIE7)*Y~h-)5X=
zB8by8@J8;3RR-1C`qf4<E#@n^_|esoYuQ!W0vcWA+pm$%S={Bi?*`{)QG{nBlDE|W
zl~%m(I`v~!(iO`Uc{RpkaSRtK*b=7u=Aw{Cvd#N2!#iptWw5MTrj*e4hUg|&dM?_|
zPMuViIfM&{5m-%oxK3;K)NUNm%Dpk4iRz@?Xjgla|JOkIFWesu33~q$V#Oo>exvX%
z(raez9J`k7pYioT$Aoq{NOd)i_BDeMq(F>$^7%WP7sW2zoAU}Qd&t?y$($F@O_=yC
z*p^qmi(=cE->%D6lv-TZiM#6N%Q8Lw`c|-$<@4P)E;h7j<>rg0w|K1w5#?6Kf={44
zaqoPJW^ht#zek1hUWrwk!HghMT@sL?P5IXrcaI!-G>EF!yz17>g{q6ycei!(*7fr~
z_!(msjCzk0ceqo{)q?>yYq#k0<R49l{X3Q9_h6tn1Tvk_u-Bth)FGTtWoks&n07wA
zGxx+dqA$6rf9t=mV<KKRoS~kjx&D}FI&1bx?IU`D_-C9bBffd(>0^Wl)6@an?=H=R
zhhsy#%WfXqX`V|)wFSj}XYrTz;ZaVp9=7~PV0JT`qHR~Sr|VUS{WFgzX)L#rU%Px<
z=4IO}e!g&vPhgIT(FqN|VwDs43|JEKd%FrPg5rNpz~r4<kM^~SovBxx=~<jdt2tMz
z9p8O)EK2)yb|#stev9i1{4Ry-{ObeB`>xebwoRkH^0T-d-yIy61->!)cA@#1J78zk
z&*D^Vh(*EWx%l?A*`4~co3G>!qOA`?r<le3L9kW;69E){J%D)2g~fh<xQh!q>b#~S
zCE)CQQ_dj~@Tsq>b-uLt<?Q~5#}_!Ivj?+_UZ7x~iOUNU$DusbrTUk@JfH9MeiN~r
zxyy5Gtg{I*4ya%;oieX#l4p8JdFRn4P2kEM4EMbuN>5i^Przp%TV1b~`+f=e-YN1Y
z5>Jmm?D?+m9nUrSl<r-9^60;9F&%%xLT}E?#spxv{^AwC)ZOiNYmAmS^6(C$@Lf~O
zyNuy?MI%q&?ac|(rx5#2$%uXr<Nc<ZCrp9o>Jq2Xbni?pc`WC?slPd&@!#2enX(e^
zo5^_*N$E2weMcc<3-!IkMA1L)$Ez`U-vi)Jisb3*q*->88Y|H^7qKT+_S246oX-4G
z1$yyX>Q`{U@p{xRCPRk$D*-wA-^j?{=GBieQGx5F!GFDimD_@H2>t?5>1Kk@abM@8
zY=T?#a(PMzjke%#!dc%A_AD_33u*+vqW7oo+0*)!$0o=)c5jf!?BCwKf1A92&Ce0*
zAChRWkwdQ};7Skz?^U40*za82-<ejx(uaQtAQ;RO6B|oSmPkcIk(idAk(reNCheS5
zd1Tau+0fjgyt3?ytSWp>ZC!msV^ecW>woMB{~>Mr`k%jO*E1jt4jBv}#Ri%vwK+2Q
zG2<^r=a=3ruVgO1T_>aA-~8}_W@D#)ayor>_jBHRB60i6(ecUY+0XNfUzfj|UJVbw
zPG4r!aF3;==Co+VjY(K^$HP$3;h46H*Ouh8NUQO~3esr%zng9Nzkd{8^7uvusCadA
z0p(E(WBGzXe#3Pg`>KV~KI^9jowW;<`Z>am>zHaoSK~^<Cx%`1%MG?2zV9cy8c;RD
z1IgT1M&18M+OBY{M&A98(zd7h{d1DiHtmdsxcLf4M$Kc~+qyM8e+ivZ0Fu`jGxDHR
z02R`S=^4mtlYj~akEudbh$3qbj-tAfPl|}Gh>1zAGY#0h0c`uW(Hrzdw<?q$Ojo2=
z`vvP>i>B6AHdR4rYD18W>4K5y=(zp8xyl&BE$Qzu%))4yRV-*E#)e+M&@k_@TE)-S
zUM~TQiWtbjxNPR?+_hlgUu-uEAY_PKd=#ij5;o+ME{grY_gv>cn{CB1rzBY;-T}n{
zlX3{ai(-euR#b6LXk_-Pen?GWt)l>--J=3LdL2s+MO0z6DVvz^pey*lsBKhc77aUE
zSc=Y{5S$q7?=Hq)JO3`%bZGUxHptL*2f|xBKXkiJ6bpm%U`fx!MG>}J#do?t?U}PO
zRBoZTAA57Di8l`+F=2iWs_m#d5kn}d#zUkAto|4X*KTk3uFO#7umf_|`c$LjZzNGe
zJv=q*s`Jn{C!XrG&pQG!syR?7-|Ffov}hG#t)z3s_e;~oNYPe&;+v$z>lC<8iPyp8
zVK}l5<%)6C2>bq5;5^H(hSp(q08n61z}}#2ShM8oQ)=>wZzvj^(C4-ZhK4%y6w4Z+
zF_j5m+L|_^BGL8gB{ih=;+bYNloE?9ilJ$L3kvw6d`!3+%#?4J9LhvsW0QA_e+ve#
zBclmqNjDyT1FTiFYf|C$joVNkk%8Yy_urHv^2~M2*C!8<+d~Z*h2tX4s^?!%=K2nl
zYfvx!u(1en*uqe`s3;yq@<iaIp{Wd6AWz0dLM^qdJfz}n!i~SA3l6I3bd|A{a4_hb
zF|(hPo(fSwE=wJv;3B1}gx*BO!_!46X{=nOP0Q-(l6gz^*^1*8RC8GndqDgjn?v3;
znXr!qUblYir0Q<!ukoM<PKC+K+R+(x7v8`?$W{H&7upzAm9KD9nxqf6O#wtQj#TUj
zC5QLC6bKD-2_Gb@8n{n&w{jcgQ+e<YeD%X?EEEf#w4X71|6qTnJRuD;e7Td637MG5
zQ++Bme>f&_^~Z$IMH{Ze78P5n!g~Ef;>+8Eg4)DrCSw2)b^+JYMS$Gp@Z=yaUNBcH
zfVve=eyallcEGk#C<2uHWb7b-!f0?HN@+g4l)^V3^3rEJCWsRNq)o&%_7RvOR0tHT
zW`OA~q9IK%f}F~hKqk<7Kks0kTqJZ*7muT$n&zOE+(O*+z=5|k=*AlF<3v0c!c9}R
zq0jWYuhbB@?^)zj4ul~+GaUGD{Row0qKeK!+x;LeEH}4{wC1<g1hEU378AT2Qz?<0
zNo7!z5)atUOax-8Xy7*rub{|8gdV^1E!1Ug<F(5}LqW_t5SU$(ouw^aq?ZqQM;nUF
zyaPB0ioN6+R5!o|lATOdlSbQ)Tm&$ZAPQo*uOoQO{>@OJK8>cS1~O%x5kfaqM25)J
zVDHA>BlE}7WPFlDVmipgS|_q)*DBcLHB0<ZiOI&NH3P5b$;3j96W04CxEIoj=#YaC
zHA$dtHx#}QJR<w>wXyzVe9<({U9)@#A15xW%x#gSF_mb1uilkhP>}+318@4Xmk4`!
zXF>05wUsJ0IOBujVA{(laOh+Xm=&ejUwHad7iU?T6I^)hcij{IE+QG}Jj27X7W2X@
ztB<&x9%SZVlCGrmpS=HSqQx2TI%X(4BCW6*<tvoL6r5Y&Oxs`^l#~6NLMCzqT`a}d
zRTTu=g`;8mXoo|?N{>`UFlG>mikj79OXIt%GeXsFg^Ot$ihGo@WzU@jV%`;v7lfG%
zINL$`HyN8jMc8`z5@E_UYlisP1~+cB9F@*kXVu+3pCd*)y*~}9ILCNl3&}TTwE&8{
z?+T!^a0}CKEbxb?@Oyk`QQLtT<gdGY-4k@ybe%;Rguh|O$c=1=o3lGgJYdyqi+tbE
z=e-j;BY}b&+;I0daAAzZ4ePzte7jlDazK=|Tak6?+Vsl|HjRg4lOO(FDo6+^iAXLf
zzm!g{xB|3y?V(f=mUKx73b$bX_wD46ZL_-+>|YvClk#gps|Q?gwMHez5|cipW@tu8
zNl3?~Ag!w6P)pS~fbEa^uysYByjXh7tef5PciS%PXn>s3p9b=jJ6^FCQH@qxKxR?m
z#Cr;B{^CEo6xw~&Ch^k2Rnrr?jcjnu$9^N(4^W29(t~`DUz-XJ8f!;{0cN-zmf4og
z*((dRZXu&$ZW%a9?i4g+*}jRSx_+Q(k6{Ci@<u^?i4)rvgXstp0@I;3tuYZu@2pV+
zwuNlx614Z<zn9P0JK$=;-p;s1;o4DW%SewP7uP>R8RxzHZdOc@Kic{1)1I$^8+s-C
zsukT4-1wZQvU~O7Q(G&F7Kx0x6I!nbq+H93=5MG747$ZB-1_8hl>fuo=I_!-Z?UPu
zm!?1tJO`9VtJG49lLb?FU(Hn4kENlJoMyb|B_G<&wnL=G#^Zb05oga|j!PogwATt$
zdH}=|8=@UGDpUR(yq0$*2Z1y!2Hw@tQ6woAV(HXwa%);xzJPxey7iSw-Zk6OYk<zi
zTH(ECw3&THA4h>PwLEQ5YUR+5<8@$&ZpznX6XMwDsA*S%`jJ=7B@>_I1<DvZYAuNe
z+TH^M2(&ggcs=@Zc&NNGIJ=j#T$<tHCyB{CnFLljkcnhy56G?T0ZRv-e$4B=LW`y+
zTKUwOM}OZVxR3|LasE3@lz<FVsJgKN?t9Pb`oG>{sr_Ds-9vxNjoG~mDUqETc!O$l
zy8b;_TNaR1@7EV^L$1Ks^;b=57a+raCu|y(urE=sDl9*zR}$O<2kL~kv)ctDu6Xbr
zsehiEM*-j5Ua(w>)4r#{@>kE8w^v^k0FgvJWM0^WyY8V*VDIXd#{SyyvLz?kz6E~^
ziu^f4vDIpOg?y{G4G;#Ooeaodn20(tQ<yz^g~Yun2&E*o5ig)A4{qe+LGcz^r1Z3J
zMMO>yh=l-P#DnUCtw{=l8>5((MLt1)9}WU&@+eGOhumUGfqp)Mn{XvvsTH1GBPB)v
zE#3$5;f?EKe7Gxsg+JNo=A)a*V_tOsM`pk>0@@ylnL3Pl6)nJWNFq@9-ybP*Uqp3i
z!&nldI0|($5z%Px=(NoLni(>qL<ry^ui)EYcQS0eXJWj(MpV5sKpf`|o+sgRz=-h#
zK`l8yw@3QqiADa8(0P&+fH({NIAYEHbi_lXe=y@A*I{OYye&wvHU>`w{J&QQ3mZt%
zILKTvE*gDHEE5Pe(+~sDk2=TdCkkk}fFu-wf``f99{AGZ033MKUsj0h3N)4t@)`^o
zE5uFqrcU?b2CJmz1~L2yXt4M7`@<Mv!WE1Hp&&>Eh#rQgRH`C~VNR83k$DiT!XoIW
z^>Qcxa|q-*1X3VfKIYz?u1dE)u|^(7+i8(kkUjiai=>uR6vP395jQu$N}FtMEuji)
zwTgd36SQ0afih|1V{XF_f?vONBg1A{yJcNhh)K3k8F$I}R%H>jnphr{9hVrMPzxnv
zSEdxYxmqK};;*1kf&326IKJR&DImR1Ps`tl%Y^0pQ_MNDP)>D?5*f-UUy|a;l>N6#
za!1Q9>071&yfG-JW<vJ-a^S6rR9B_^#QjvVc<IJWTGRWHDVdOO+d_TJcdvZ{GR4z8
zB|-}b;&%<WL2dcXhxr)@3AvwF(C8xSiyBY>JG2#>`#iIt86i>q1}rF95E2G`H~~!;
zf|Qs+9wZ@e6&5x47sk{TRw+T<!-{Le{5|Wu+YoNQo#|$9VFFvlHwFRXW|_Xgk^@AE
z?H~ZEfvaOL9a1X29_3B@wzzqeo;?5tX|qw%D7kUOElMbKXe;I1D!o~L9pnFaWbMi3
z&HT}c&^7`i1CU9^oKaolseJ%|(8jVS#N@b@@`02gGsthaNq$yTcKP27*|C4wKXyDw
z`9B%5S^%E17!U2o(<qmo{{oTh2n?4X+W)a5KyT11mopasuN{G@y_}1qyxxtypq#ci
zib(`|MO$Xh{_ZBdL~+FhjB{t6t<r~9hO{CkgF6PrG4(?7m#kXC6}ooiXk{{`c`_A$
zGD$#reGIqQ81;CRyPA3R8v@s?R5iT3dM%5-B9IoNNPlZR(3V3XZ|$)~adrmmS-&LD
z$EfSI0N#2)&7Krpg(eW~50ZsKg2StD>rXht$+Q6EN(3^ELo#V>`PaefmR8=pOr$<v
z9shRiN1wVTKwUfW*|OxbvsT|+U$=Y1&r;<Ad!12=6{xRNIFe+ywixxZiq>FA4Mhrh
zw+0L^)<^X>4E@4ONs_C;%B2p;WC*oE$#sqMpc}qy4fo+QQ0hr#>QY16r^$lj%2zHQ
zwd>uy>$}Y`E@Y)qqZr6eQzKP#KMZwjW0{E%da>SI`wK5GNiJ(vF{v5*cs-EHxdkL6
zG)V-`AB!%uODtKSSE9wnqoJSMCAN0~S!<6k>(O#2Y!pPXs#=Mtu(lk6R5n3@0@l_P
z)AmZbwHn`ce%>lGCN8k?_>ZB$m9V7H6fMh1TfVa>RYSq>o+!w&BkE==qO!yAxV^Gp
zg2{**#30VO5h!#L|1DM=q|(tSDGBhBgylfZj7<DKbs)&3&nq~jQovLbf;5bk-<7+s
z&hWC5<Vx5U!yz>TOT~6w%$+Z4MewY&Ae}YOpg_w&&miSAqN*X8TE5*Cx5+RjX-E5u
zKyFLB+WVbucGn=Xd7$P4(^Q5;3V`yzLd+vdua;=l_e-GN5e3*Om?HsNR1%?AnH$j{
zHPN9u$<UMfu-*T8udP;(yh~4zXHfD+H+Pg8Zn()?x!0^CIuW60ebPUp^?aFJJ`MXK
zb_xD?N?tJgd0<I+RAG<y!?e&!1@V#RFN64}RR*Mk6=OwSm~xT?ODf`Z%6q>>{v8eY
zJy*()QBnvriCh{OuW4#_OLTw!3ffbyCP}UgBjZ*El%we?J3+KxOrmTF#aKfIZ4DOL
zyPR(S4_{{$7FGCv`$?D?hVCA^VL-YZhVJfg=te-K)gh%s8YFaRR8na{hmcepLJ5hX
zQ9(gLP*D!Qf1KxBoqe}&_OtiJe&4;<`mWCs;KloMuWNncND_$96FP?HY_a8e`7nkV
z=?~M1=72=d{4Yf>t|Q}#wR3#j&q0q<2X>hB8f<RX{t?d*q`7Ak74Ip)^c?i^a&dFf
z<IK{_>oL%1<d@nfN_G*ewuZq39lB+mqEI~@i-F%u!?1GLLnZ@l6D7gM%W`KO%0rB>
z{OfVc*R!dYQC(S|tPvhALveW~mvW-kADDc(S-qFGGLyEd4M_dikaZs8tFGf=qAj$K
zxXz@Xm!toi3UP0_Zii_!%|+KWS(oxKK0$p97w?120shf4%PD_(9ygKFS&44Fe0>^0
z$XXLy^U`6ZHj^kMgT=0nDUr3~61>NJV!B=c>nn#_q{Ls-RiN`_?1;aC<d+SOik<C<
zg$P+XW?jH^&x87^`gevw9Z<twBx3%JX=}X+tmy5OF2q#fO?%eVv#j`;<F{{h%qI73
z3{I@v`%FNeOls+#b}uXSp2v)!>LW%~m4x0vue=*7AMHO6|03vx=)-lZn!k%M|FvvM
z+iHDYkjH5oEfryv6F$w>G|dHtyQ@rF*II}$aZA_QXa=ZA9s(f=SA?Nfby*XNE7t^n
zgXD-4SUlJw!0mpH+w~Xx*%EW$L&tq|?M(b!P$4eKR_3~*IGWYoY<OzHV$L25iaqV_
z>zQjx2|u{`7IInow}(Z|3p!Izp?!PXbUCJ(Z(;7a9Skdlt-$o|&2@U2-8|@6k#*CJ
zym%MC8#(@<@aA^fP?7zD7`#XUVE$J^qH`XMo4YqrXUx5DPhoCDH~-y8QzrL<&5HWM
zdq?^k&gqUauTJvjnU}V_a=L91Gum>G3nQl2=gVC6M96XX_+1u6I+a#FUd^AS;{Z3t
zgPFvAzoaeF_}>3*BCc=z#JDM*C)MYsl6bRX77c69Si|x)Z-J#YP~~p;cI0!Qh;f;*
zk0@%e^$YB>Iad5I|KRzD3eZZK*D8O|@~^bzpQgSGOIU@*m5`tLH2qQU57MM5+yfXr
z{XZ+P)=5EWJbfuV-W06;R$t7sSZt2;{q%ROLr-2NlHAvcOQlAf`35&&yqy$*R>Bt>
zMn%<JA!LRRsTx0h-a?1CQ@w2?y<b*rDsw;dwXKpNfiaj$G5q!4Mb~FvD`~rJ=}C`V
z7a+ZpN}8MxX{bZU?F7>7c6%CZ>8{F363iLNpz&vOlSQ6cB;T!5*j`=8^F)UhZ+^Jv
zPF)=CV$|SMq(FJjmeK9Y7}Bou)Yf^EQvA#7n;*=8U+MbwAo+Iw#YO&Q6hT#5yoA)9
zjOM@={_P9aJ>zD?Q=j$w<m=|@fyp6(`BQtmQ$f)t!GbS?Co~osrZ&<-1AFv7qqBK$
zQ2H8szfVKUuh}UyHgCR^zDne-RHK71iG%!CmgmCu15N~&UE$`^yN`cHO0ZrmXwFAD
zm?=%%UWlKtkIP<(m~~5_jDzS~T}^kuoCD|ojeYUvKce0?pHGu5Iv5MyH}sl#`*6Q7
zG%A8}L8CaVTNR+DZ^1i{<KKm;?81QeVKdp^+FCzlKyTbW{gh4krevRT@$hi&AvqUw
zvstsxvHm8BUXAM=g7RJ1+vHq5-zY^9*%hFn=Pc+zEE4tZ<}0@!FOCTc<XL(ISc?Q^
zDjjglT*h2w>gzHbalgZ?89)k&Rp^f@D9*5#=JvcH@+&#k_*VSeIk7*d-OrN&oAtJ>
zqjeJaFgpouaV*!t%j2TM6Q`?63eTskUrm<Z1?ZdKzsGi(M!I$H@D|(A#c{`cTB$y7
ze{mmDkE59K%!F4^TgIc{@8OB>srv;i_M6+CJ5$}1@fNQlXEh|r9OH?iB<Mn2XT9cg
z9`5|Bp313%?6;@#J(?9SehW-&4jhA2(GZPL@D&_b6V;Mcn%TIQahTIWoK2=ZWP7=m
z!9vJ{C?paEQem$$m`NPFg2^&tbnpGrl`g-n2q~;337l*vd7<aTHDux)jk%VV(CAbe
zQM10iOk&Atkzjg33Cv_K>GjoEzOO|G7nxyh0bl@(ONXD4icv@h3C<LeVuw+&NM(R2
zX=yohE*~fpd^sbV|L}nbV~Hf{VWw0zvmp0FLQY-*R8o?Kmit0nitj1$DZh>c3zAV>
z8kUJFrKEbG!&9SE*YM<$WD9+m#_(o}q%)HVladq>65(Th`n;-OfLK&gTK<rRmQ9D7
z_K07~&MO)RWbHC4mJ5z0`4gL5Uc~<8AejtZc7;(OB_bsk<zk3$3QI6~TVR}MnhBt1
z49j1{=bR-OgQzvaG0S9^b>hdyA4(*s4%cQD%a}7#Xka2iHIvZ~t(ub!{~yuzf04HT
ztJ!uoIX~0S8<WCzNw2WVgaFtFPbsPUG7-_Cvdty+l$#9q)!3s$-KmJejcmK1VXYde
zkwQO|u`E5qLq)n@dpTnlsk)RF@#M?(x5~j5C}$yS2DM=_)j|lHAj7xHh-T3g2jfKa
z+Zsx=K|(pK6UgFsUwa@L;PFmVn`WlBPepOMhN|QzlZNbx?F(Msk%#@V*N2`8T6c1(
zT*-a=aOTvl1Lds%5zoRE2F)xMt%bc;CW3-8$Mki)DgAFO0wvm8@!GJ51XR%DrVmSj
zzf?LO+0Mt<RfJ~H*IQoAx4p5>FC=c~dS|m7K)|yJ*R3aJ(m8P2pnH;6bSg}@=Zx*(
zpV)J=08xZ&P8!mzxe{Ec_KqS2+qFzVd8Rkk12Eq$=l`i8d%W{snr&I=2;9o$#-c5&
zTl4@Le1VL933vl?3xJ9mQv!a8IEtXV(<mj83xoVreckT~y*F(E;DqKxOx>O=4q&gL
zMSNdZ6g$CCn;-t!uo7*^fqcUE_!7^R)7vW!E*>8ew}oyw`88*WssgH8CVGoN<L<go
zn!72qpB8jx7w$XHR(;rS7@;8$>#HX|9dwaXCBAlV6$O6n37L72ToLv2Q}d%eJ8!%&
zu>hY~eN^|J4lcI!MF#!urAiCM$?BgLdmwM);UH3J|8R&-U-D?!@$uwW*Ka??j?e;r
zxB&{WR$PNR+}h<mSR#U0-XNUh9A3s1hkQ0Bm2@2bR(ZGa$JBpmw*F4>VIv&I=fogN
zfdW7x1@Tz{FdxH78i4aF1LVuh<KiM_jFl>Ge6YVO^>e|iIQZw{7UHe+bad6h&yS&_
zQm6kzN0@xvSrG&-`p=}T^cgvsHRNnPt-hnn_0~|?*=CNu^slV~`;cGTT9X}LUng7!
zN`65un_vI{NeRGrfFX1cm~wf-&cn;e%ZCt^<K`2fmr`VuQDKr*WtZ3B6B6N6!f-2V
z@vG|!T{RHK7)a=vNE?_->s!beSX?o&R<f{Hwy;;Xal#mxVeDNo4z4=R?gnn&MmS#+
z4}S}vKr6ps+rUuAkZ_l<o7ZkcyWfoQj=AL@cPHRhLNGo#G$}PaB`q>7GbS@TK0D`j
zPF@NVdt!d!z`(%l?Cjp&-qF#~uV23|@9_U~P+SlbLJcH2C@FIohLu$xS?q4nH955`
z1cg00pvj-Ci!w<~EZlhZdvUsPl9BGj^y-yIE*=y*-#mZVhuv_ByPbMH_-;mK)_*xo
zdH==XE_sl1MWN#1BL(b#!?x}J1KUP37O<e>OLN+u-+$8B+#b-=)Y7LX#`l05-7sMA
z^p#nsF2Cfs<CMe5m=no@LvVS;-xkSPOItjodx_kR(x(-K%^dz;rzyLfKmfOitETzo
zdT13<zCeb>J;Os(Zh3KN79`WL>4-4XO4)eQ<SWFm-#3V7IoQDGzR!*s|5=lqVT*pH
z^#A~drZJ)A96pN*Lb5LCxh>k+<ZJK<HaSyq*NOJWv-K9$KiB8qF@hYm=?Df0p_)f5
zT{WM7d@hjWZVilf`pxz(h^fe<qV=`i3>-o0M$_0T3QE;7QulN$H`oFrYr+^M+}?Dz
zZH~G&*fnY8ALfE-yJ<otAkTdS4XN1h>+8gXKro_2*vZBKNU4ud$78k?0!7B?lJz2q
z2|$5|ndKC25hwW|>X2%)V8}qyE4?=?4%u51;d5hdYGE|4(LP!5gga5;sN=nvq5eQ0
zKpfslv`69e<zL+$mz_awQn9I8$8G+Bo9jgZb?gH(AeSTik9Qn3x+;>2Wes%V_2>+E
znNHnD%dTs4m0ZjrxU;n8Kxl`Y*YUapD?Hm0^T0zo^~Y!|6Ky;0jc?9&!)CVn&%I6I
z{Fn^@k}q#Jp9)=*Q{YU=^`ORtu`#rSiXW9f;O;OO3ZlQo?UPH#NyOtR4LT3EA(C7^
zo~74Rfp0;|1H?p#4go(1Y~o6__caq&8AdoWOlu*yJr;ceP`DUSL^_L>lbs;ZqAp#x
z#1>1Xi^uyj-(xu11Gr~9?i9mxRK@VOq}f+lABXVO*4QG#yo;Qw#6RWhDAUzH_|`KH
zD!=>I5CRs(eG;L!G-Lk)xWVp8-!^hPsjif}b$qvJ)MMSQ_$dv58mvFi3UZ$vZ1us`
zt}b1GYOytOpXo?EMF(YJ2<L`kM|sYN7116&yIt$q#>rG6jbRuwv2bRYW|4tIEh=;l
z8aOP9tbAI^7@@OK$@m1PC8_*R^!u1#agdx>o~;6=hL;qT_=u{!b?~}Q_enUT>^t>j
zif77~h#ScQ(pRwjtwUloR+5az=_WfSYO{A8P63c(9!^#D4t$AJVkUS1M87rxix5#x
z##3Oa!hRUa&Az!2B@u*9o-tuf08zQ=j}LNH&>VdNh_sTDK_d=6cHTOT7-T(Kxwn4S
zq8@cZmq6>Lyp8U1_3y&_Hb19RPa<C-`K#F<Pp>srTzN|g>Bj&WyIRkjUE-)O6g{w6
zsKndUE~+Ph%KJR+bU_JZkbCcsuP;RHL@YNHo&+{a?M6hsxH%8g`7}6ZJGmbJA%IE~
zu#Psd`E^#j`|=O4-~4Ov!L_>@r!(cA4KsidM#acQ+VYB@Co#?gKhK2|%L?$Wt^@#b
z=?bKrOFU-ZnJ3*U6fg0Z3}{2?e=$1jU69HaMveiL=tPrgVboqC#{V4;SQ7C5i<xuB
z9KN`7CL|%W<WlAVtaxgXp%cfD2u5Kb47q6g6~yd5ofUAS1Fxhq=k#lbrHzj%6T-*<
zq75^6{FKQbK;6y9@NxKgy3GL?yH`f1X$xpX4#<_Qb5ZF4WZ38~a>KI0jL0Hbl5pL~
zJ#5Js%SYzdN|Av%;6wMBe~NfMmbM&iObtIJIiYet=)P4sEWI^4`RQJbyH?N^_f<JM
zWrl%#vt<4kg79(i(7N0YWgaNm@kWuzx}0F-q)xcwa}mOf^Rpl}5vdPNl*#0hF(eRe
zun3xTk<BEQ!>}w-tt|0GkY=SPDnH#Mn-2#as&V;imX2oVsSMa%))k^0c>dZo9U^&#
zxrY4(U}b}(NWZDqJRN^`y9k*2&tNGRvD1X1)`DJoDP=l13qF+1eO3>i(c}`HWj-JU
z^bf`rfvc7{u7wFM%mFgqSI{U#0BD&(a65D|fz93EA{aYhXh=wuSDdoeQU~T5IbE4z
z_oU&*J!YO$#+#>zQBw*un5hx1Q(5?GQ(g89tvTw_tnS?~6T%vqqpPb(-=&neu?COG
ziTt*<(jMXoXH^y-7(&{sv16aL7(Y*h4IZ<*r&yX&5~iz&w!vx|gH|!I$(<m^8va_p
zGGSc($Wpr12nO$zkDU>SFMx?H1OgRvC>{cn+Ols2-LS!fJ`2tuf`#ZS6hE}uhu*}t
zBWK|`16Noc6L4q8^&wG{A6GBI$&W-qpx@ZX9@9@UH12&0%cWvHG+`<VMikmp>E$OD
zPFJVb3L<yViZ3LiO5}kf2$<0u#ao5Z;(QmM*Jf-P4~6Do2x5cwD>mqfrkTlX%AC6e
z*==)1ygbb2YnaNSOJwNOE60tkYx4&7O5XF}k1G#gR;`Kh%#VqQPtv>hsuSS$B?j0A
z>Al2soFuSBFS5feQa{w19xPLmo@EnfIpp?Fx_*eMGt`BbYyJC<@sLEfX_VB9jXsuv
zQV}a4v;)6MdpAvI3nvxG>N5AbU+PtX%>bx#-w}HDa}r1MyyP{=#hhyZ689ehIB`d@
zcuq1P<aycVXAo1FRh#KhOCS!Vbli+Fy7j>+@}Aa}2daEi;Xars2mEVzH(4?2q(ITR
zbhWQjwqSD>)AqGyNPr}t&BvL@aUs(*y4E2}!dl?#0_7-mCV#zM2|p=c^YwLaRGGfx
z4s?C@Cpm#BfwcMJk^mkm&vO2B%1;W2HG2YZXZ!;ksXKo3D{ImD)o+xTn_r|hKFBAX
zillFGQs*cTVpqSk`1;>G!5wo&y<TUr<Jm_;wf2J$P9W6(`5@4$)k{*o3_4^MHB{9{
z_2Ki9Wv2EPzz$87#;x?iGrN0O#O%nVpodYPWaE;u#QY^}8P-uTu3TB>Yi;dZiy~dF
zj&Fqo?h~X_JNHNL(>dPc;+vrsWGem{Q1Z}2H4k;Wg<kweLd@05-PFF8aZA%=2bbs_
z3OCU?ne^&I4!_S>w3c?u%mr@pl8Il+Z$$NzDZEr)nFUU*Mn59`p`hiQ-Qm%yP8g59
zz{kf2;<OKD%jhFIXcG?Z3Jp$XVot@+=Tal?^(5@O$%=5DBZL>qSk9#(o!UJeCG)B(
zto9u;9e8k+AAXOMELmiKe%xT*|G6nNY$9hKAZ6gZ;=)*=-TawDa3YG|GKuat!^<jT
zRxF$8efvyFOr)KBFZHYTa#N>>EZsv%=F<W#qi=8^Ot6D=uQjol_Xz%8zh$O>$#;LK
z=yzAkUz*uh1}g&iQ?2W&e<+CwIBfTqOeM|lE3?s3x5ZEElaWC{cSs@VudjBTTzvd!
zywjmk$~<cleFS2`@M7^)Y-iUt&IAAbRAxOaKEgKI5{>^}7$3sG)4$8X8%hm3GPI?;
z-92E<0gH$Zi?QmYI#HrOoySnTX790OO74iouq9*J!kQ@E1#v)XG*H!B^FQX!;T0(q
zMadCBy&9;01tvmDHunQsMjMJ?f-X%gcUgcGDVZ4qy0!(l#N_BC%FlH8ZqI`xLqS5J
zAU?9bEs0eE2mB909F4&eqV;l8%wQ>U(}-RXoxp|Ewf{D%$af`(oOeE4<-jw>S>3rr
zi03XKtfJ*@qf=r&c>cCa_f1N#)w_))q?aoL9~!7Q`K46=GuVVO0vI!0795>GsUFc@
z7nlB4t3z7P9*5**SMjAcMgaYxw2ND~dq-Izy$VR#3Q+%{r2ZqtW+8JmlDY{aa+YNI
zA0)QO-3Y(C(J<xig%n$KO63_KiI5t!05rHlCy@iB1;|V0aBex=jZ%g*E~Iz=xZj+n
zHqDkDYZdi&?=F79AXD^yof7McL86Y`{ZogmvH!;;i?fBo=;9dBc><qIR;+U7qI2XO
zLSI+_UPot*cW24-fpn@t6Z1(4%Hi7G`Ra@Ll5?>abkYi1Y*38w-L|`_5iT#h3O2CV
zaegsWD;MJpwoA15MgdOyF!j!yFXjKD#hb`+G!)WzD?t})s5G&`0)rlCd9}5J3WS0v
zC1jzEq!YObzfA2Eh@wm<z1i(${p~}GZDN?86AJ5D4C4(8g2ts`l?A%fCCzd|mOW4!
z`@-CGK~qPak((eGN+8jv2#qh&9gq^abmlPE%s+t&d+uFp1xexPpt#ZoM?u$Lh3+av
z4`K?|d~rE&hp<ml-_OJ|zeC;NMIP*T;?jj~Ek<NImS$L$sR@_X#1slgLT^;Ewy~#8
zh=7J-*j}qB#W2V!K%i}*E)liX!E$BO4@$vzV;XNVRQ!72%IwjC1+gaP<E!&E7a#rm
z^+=RakZqR(iE}daw6$mj(A)CBmnbiFP96)^3k!0f$Wf9lfiNmdAra08qqCHl330^m
zN7X>NpHw0NRl4{}H$qi$f&j}z)nE#N;+dH9hboFC_DV%=fE6JLR>=@cC?o*3e-U))
zD&a|0x?xp{s?~;`mDdT?j;I=QV)b2%hbLjxmKIg!1b{&-)DA(wanyNmFk>DFRBO3`
zEkKkDfpoh9H!vX8(R?Njq^}bsK$Z5U5hQ8}c0;x9_V0Q;M?;2XoyrXB{{YEb?XFMP
zsecEc5*Y=0^KVU1rDil_Of(#YK2Gm#7*?Vv6mO_feR5fzID=_W`ENLRPPoGp%Cjy3
z3KCGHRqgKsU|R<K$;6Y3<^b9kOHVispIpa3t#fJ|iESL~g*B8mzFBIV`rSz4Xqqvi
zm{e{05Zkm++O*W$q~*}G{JV+F(Y&GBytTx(>eRef+Wfh<d4H*SLYz=ZZoce2Ja%gN
zS=zi?N{dH_C0>r9l4@_`C?B=8fGuD~TCJ9(7FS%W+5?y^u{C48H6PVx0cbmoZDZqP
zKkTJmMqj@FZYLOOrYPPcw4mTHfcGQw*Brzo+Kivm{%R?$Oknh>HtQ0JdKC{{N7K0C
zpY^jtHL1dtC#fHCw0n~zikP2E^A~ZDy`6CFYFhSt1e(%mnrpF8gFuu~S)0qp4n0z=
z02#DQutQsbE(VRLMET&H18jm+wETx*R3xFR_DtWCf*A`t(NCG8ji38I?XVy-pxY32
z`izPRjFQon;ZLDqaXFE{84?0xGbat)aykV0!Y?C76JwaP$!<$yh$fH;Tgi1(t*2*+
z&-qJ7!(<2UPcGO3NVAFcn`R3xL+;p!ObGU*gt0y1z&YaGGi6`IME43PbbaY&P1&gF
zG-e$B0}%~<aW#t7lhikn$;nA>x4`tcg!fAKC__V|>{0#Q67U4~M136FyL#wCVDIA>
zFCV|?z30rtnOFk^nf7Y&Fo0fF4Dh|SL@{r0lsYp#Z$rtIa_qWu%q4Jvk)};;L@Dg6
z?_sYl2HklTGI<9GVs+b~VP^rQ8GN}X-|aXCI0NyY7Sr+(>S`Ll*o<_gJJ;1zZbpVz
zpQ#3y^@|=K8eIJXVN<72ae<(!DAbm@(29}=M?62uy5vkC3^+^q0nEIm!(<=@T_eBb
z_g6MohM$8=UEKwCsc7sPc?#o(_c=#SKEKo<ge63aY_jW^CQA8ZWCk|wRgteP%31mC
z%bbGZ_56j$@`QJ+q|O~%N8ejOb41DMeN{eQdP2f6Z&+Vh$%L9Hgd>GoutFe*=Ti(w
zO6?)=;Sl!^S?4T|yMt0xLdrmG>G*hQB3XJT5%Z)^dWd1Xj!H88`&iZTV1W<)dEUqc
zTA~zm1p@g&L3yLQ;bho?IF3D>^v1nWhUl|;O0!>43(OMyft}D-p;y<2R391s^oC3z
z+gq2>w2ZRWi+A3>k;r6x)V(hI`xj*U{7vKFNZsUQl<>&0Nwe27y9C<*kEfzvl8Ul`
z27u`*3smdihuWW@^j~%w)3%+to0=;(6yAA4>o(C1)*{jQ8qA8sk4SN(seIlQ1>h|;
ze++5zibvItD?^*5XE)Tx=^T~SyM(>8UwmOf{6!vCYb?*IJAgGdv^95TXFpv52p(wi
zY4j>oFpT9~y@^#kKfkIZg?R-ALu-7LxS$A~*Fm~(yiRUd1!HXg&U~aF=A6^I@K#ov
z{-FZAH_KP&8)zfQseyKKg=qh!VYJbzPS>)Q|IljvA&?s@;02NGpDJEgjqA_yHNE0b
z{r;qH;SABTdMZ0U*6^;K*r+3RtI}``IxMNY*iLy%hoF<XrO%BsW<7bYhzuWy(9=#C
zJAJKxJ7Uo$!Xx?E5K|ygUBggYfaFq04dv$kDL8w5*mQJGn1;>xc8_v(laX7k@#KoJ
z`(MM>eglAA^oZc{Wb((iUP=${@lJE=&v{AD7nlwNuT((HTuE<-B)Q1<OszClmm@?+
zTtMHOtj~nku&rjr1)&}V29|Rxv+V|un?ioa_hM`ydk3}Kg4gyUY+LYa7XmwG^o-^|
zY_7bLTF@htW$M;6=GF#|*RuYuZy-8%tWtlK7yWrFWZj`$EM%A6JATc^ao@$#Kq2wg
zHir#GJEfv^;~xm;Et_lTM2TiAsSpQW@5sE`$L*osxE0y%+Tlter;n#`RNh_>w(V}~
zUP}^kNU(*bGH*%byQWY&RYD#8Q?>+dZlqX2Y#(xz-!y!5vURTDRC{wZ>|j`IW=G)X
zj`?k!k#pefuZ)7^UGP6Ax7rOcx2S-Bxq5y;5*Y;k_u-|>uGfhdy46YYlhesB{Y(Mp
z_7pX}>8(2by*Qse^V$uYmz$`EpBG}^>7%_)f4ZvK)zmC_sj{SneTH15+$|B<^OzTk
z(jx{EoktogGUDveg$VckE%%PEFZOIDwS=jExx6Xa0XmI%H{<&4ES8sq=cN=A`&Xsq
zd_3!!zM`nqCwL-8%`yaw8K$JYx~7D5e?kmWp_BwKcn~=+`<pHLn*)B;-kse>&sZpu
z4Z`wGtvX8(!ylrt|9i@7*X$GI6k)v+*Iu)A#|Az3(pyXgxFG$F>6J40oeM?FXTdv7
zjkm8)hy(`xWGzGlU9g0bSabq@SrO|qZc~ITQ0O02xDToZq;tiuJ_~tu^!*)6aC=eE
zWD&AC^L_4ZugUitmUq91+d-CvgO#sAwnzMRa!zhwjzO%)uSP;H9^R|)E<66dgR{AQ
zJu*Mdhj{&T^)SK>dR7Ph$1{9?S1Ggldj`vwhfjZAH51dkxIxJivd8k{n`2T-=qYmN
zPUvi?`E_W<HE*;>@N>Jzw%5Lw$TW%E`6)Lac&%8k=r~HQC0_IAVo*hiXmOM)?q<Nh
zul)GW+hz7J+1sIMdx?~hmDggtPRCdEpnj~#fTH)(a<MhLh(}KjqP>;=+9RG^e|TgM
ziMxBX$2^rwbp9$L@#p5BKE)rM*L4GpAi1>A+|!?-=BG~F{|46#wHjlTYc|4mw^!97
zx|1TF3!eQli<!G~R;&rwH#aD!gtU(1mHoofvPPaw)5~R8ej-L(Wbotos{9nBGH_N*
z6V8f{ru|P!S0Z1nhy5yd>smXC`TKC~^x}_C00o>XP|s${qOnghxeD=;C!NKqox*A?
zgG(cWWtvMkQxQj(fxs!Iao`9WJUG=lc^y`q>MR#;MtP{AX}X0iB{5Z0DqXHxS<Kz2
znV+(}N&_dqj9_{5tgEA57$-<_37zC}UBun1$If@@xO-DNOxMy$qOPZZ{Sj8EbVC0$
zMbhYn;%u7Di=Fi80uS8{=pVY^ODQKX;w_(jYT1K(Il|cFu(r3OVw47RoJ8PAbFyQa
za=88xUv8R+t^6B<nt7)DfPb&&d;^P{`1I^MC9Mt^>QX;naCDT;$Rdo3!6k?aG5?jf
z3O4nzKR_%Nj?aCk>ug^X1v__LU;j++HAcs;OI=^?mkYcMxJtPsIJzecK$xZR39XSh
zU=tp!Sr~Q*&~BvMyL}l`Xn|%j3YjH0kn3KrA_TYG!`<Bz)|r{!aXGYI!Y-)AKt42`
zj%4!ST}GJ@<fd#BBO{L=4wxu{%n%yv(Bd;fo`}w_(2G@mdh<?f_XAgS&hpY3SXbEo
zYv?cIOlEc-2iyQZN8;2Y?fb%mR>R33NUrPeUcmu^SXpYe8%Wjx*cGJgvFLLXp(}JV
z(yILYH^wy1wyN*LD4mpniBM4-AHBl9gnJ^hecwd@^*8l4X~Z`SQ?3r<8vZB?wDX*t
zKx2dQ1N5JLr)rf_%(||bVd8Kd)KAL2r}!~cq8`TmRvE3ep~@EksL9#Lh4LmaF>ulI
zpph-!HBY3~WXF-u#Q6XGmS`1JOO~SEpCHdtUEM_3khI`Zb0lqg)8odTJ^o?oD{|!%
zVAeFwMhyxZlo>Pv0Z8g*<ihcF7}P2!bXyy;)iS+JRRN^XDxU!$dsfz-i7aUnl?nXF
z!#Q@`91hTR%^ep4SfQY!Ff>uvp0l^mz2}k0oOT14>?h8J>0}u;8k*bBIO{})Q6(lM
z%C|BF49ekDPUfDP+*Eom^`V+2m2o)yg4xc|e?`!G!y<G#@s2y}tiV^hP#;44w<4br
zZRslTF}R=aBs2EvK_qZ5O#tX1&lOhOUFX*R-JQKf{+DsK`=PRa;j{y;H;&%IJ=t2g
ziHSFsx0Q8GRGx6W>RL^wXfK&nLBA7Bm;J#QEt30dw)DER$5QsY%m8e7bxx^ISs2Tb
z)x%p~?WmiLbz=-Vn1eqaTnf+5Uwd|a+NU|bI-tJ%6qPMY1GABS+-D4Uospt+PLrC@
z{}F=^Q(*b}k%|bt4?2`bG@NJMuO~0_MDEl&1E=7{gGobt?nFSg%_H?tYN1ns8%lag
zn>W?y4l$=IQRd6YcZ=PZLvZg%7ay~h`W*mgw|MjgqE=(x*+(m-UA=u%xrmqWTP{lm
z{7dQC{OudP<1%aKKc>yE{k^guGIxKBQh~^EnJ(r1cXFh!{Vye>;o|<EAG;J31^7#q
zo7@Xp=mcJJTVN(+Fdv&1-0ZR-FUa`M-uIU*ObDa^2@h4w0kJ5z1_Rm&zg5o$=(6eP
zgw@xn+}X6*r*cvi+SjR961B9?_`rgUb6`z$A_E=+E{$`(lyo&wh}<;2VK75Jo35By
zZia3926NjP3pWdYrt9$r>j0acY<6yzw|q5gmqFT<=G=S15u2RrZ2BrwZCU<Y5bmQA
zeT}cV_ir6<@&Xqr)Hb9pa#G~C_~;)P=t}41hH`od@Ua^jn&sscwhN+o{TtwTLd@Ep
zATJF7WSK}zV2pO5$Wv6Z?sU(8qyrWgS^)m5s0FA!B}l#pOm^(;=Jg+M%Ot?lv=RaE
znI}%p&%CoeDz*XqbifFrP=O5t_~wlp!}8NPCW>i<Qa2I+PGmP@FiHS&UM9C(3W}J{
zazKL0K(WQ`XG+H=(EFYkSkPi>+)h4h4Jo2LYG@We<6e>TrH+*iEkP|xrv6iqC}l)`
zfio+pV(t*7r|3!apV^RFDjx(H<V-!o2*vOff|SN7t#Tg@R8weZ!)?eW4=4&?WDF1%
zs?E^B)DGjjzz@Jw@rf+*Er17AkC||Mpan^ywec0Ob&ou>WMb}te#&Rh4WhL?VGc=F
z9-vIz0w}uJdNY*JYRi<`bu<^|v9I{CEzit!=R{Du)Dm2}Vl8Bq6%-{LDA@!*Q#MUN
z_}$I`VcAZ}Mrk;NC=954_Pc)6gIPN_WzMVE4o^)uK{{z9xz-OR8Z+ULL7|df{dfRN
z4Y4rj=0Tvlntqp2LiGSF)uGmc7s5jXHut$O<-yB9T=;I!o&yISK*A3uLf5C9>CntL
zt2rs0E7ag?c$qT<qE3wZc*1=>z4ty`tE<BeCM{Ss@bQafJ_DnZ*7^cb+4+!>n*28S
z;+f09vKSiB<pll6&O-u;2o}KvEe2w5c`V8i_xdA<3@mo4fPcb6cQ-8I_Kzi?@OFOy
znHc=+YZ)$5>Pn}O;!*m%vNK`egjFSQ;F@DA-n|XOrHdoJ!R3GoU8pIfEdp+cZX~~Y
zD6S?|H<wxa8ngj(7@y{n?T#<x4w0jxXgB<xr$*Ykl|vXs`)O&?6SoC+e~i@69I<++
zZ*sg!QZ|#;?o8f?GjZX)sW{eOHOALEPOJk2#t(WYOv<m^fm84jnc*R}=wsxU*Xp_x
ziZ(dlVHPvRv8@vqZYxpaRU?wlhq79P@E&|tV3kxST=+vBzr>(*ThKC#N%TSuA0bxP
zC)#<^6sDog%v#x5BdTSfy#m6e5usuw01yf{$Df6P^ao?$$#1`Ss1Ri&qf_O}JyERP
zen1*j5K}z$K9i2~;A{S74@vT{7|FJ6wUegp-aWj(M#FMB(z{kH9K<3{gdZ+Ny((VW
z2dkGYA8JNEQ&~Q^ZY=o`3>fHa$xmcVo>QDx?C!J2d;=0O5M`-^+Ib9+Enb;j&ZF~r
zWiZ0IRS}GC@YSQi9YC4Lb`T&XSPo$J`!<<9-wjOZLLQE|r|r#ksyvpy>R;<%wj(d|
zwtT7&&)7(gWqqWCCLXmpu)&&j({A>%5zAceSL}PYkemOEdt8((Kq!6#hirrBRpZVc
zknF+%5WGniOXD1h>=viHG?mX%(=`)<i|VQAiy&UB0w-NKuSexiJSAYizpDQ8k@=&X
z*fBRh-{JW#Z`o-|?G4rN`xHBix6?JdE(1G<VxGaE-|zGpff6}t^rRxEs~<Nw+`s)5
zP)FPNU#r>{#0^jqakZ4)7*0+5A=n2&59MgzlcqbjcD;FH#iHx+byzJRBma5(wLyB1
zfx#(@S7$zlE!(_g)ka&zW2WWR{gbYXzn@YgZJ%lw{a{REGQcIVnD7{^=a&P3M);II
z{Esv|)9>qinuJmWhKMu|W;?v7LP5<0LFNgdAt4rqi%}a@RBN-2dv7xlLZ{K_2^t|l
zM{&M1XrPFfDg!051_MrV2a^(5vJ#-Khfp<rs0AT>upR<8<s$gN%*Z8q-UkNjkg5ch
z@5WG;!Cx~dDDIsA(;KQj?dOr94DpAQpC;8b3CLR+kO|V?)MU8jI)e_*)P_iHPRD2l
zk#HITb&o^m4&PUiznp!xJd~k>hS5>!Uc?65Mtbs@G;sXX1M8rmc9?M{y_V=o+>`x$
zX*x#>cRr#!pC8}g8}gxz#e`K3Ob^hkDtq7}_y!=n(u|)(j4&tc&<lipIi8BZ;lrfS
zWs+ggQc9>50co<w^cH`zL<ZR4JC-kq^n8{K@Fr0npqM)8i*y3Zum>X}7RrL-jLCUE
zgQ?C7`7JrgX6)gwE`_Meg?*qI-GUm{;MroN3=D`YTM4xN(*Mprx5C1Bf3@*W57ND-
zaVXekNuZ*z(+6G_SjYoZc<@k`VW{XZJC5(S=CG=~<$gI%ad@hyd>>>g3PC+nkq>99
z!2soPsymH>=Ff1?DEOH3_%8cLsTc+#b87{^yK!Xl!=Ke-zneFkQq!QI1-aBN;e4Y4
z!jFVGc(vMb_s($yXW}$W$7g(jd}T0qmPG!uOdepm4=Z^_E5iph!UM;iN%pS`#91MJ
z2l?)|!H<rfe<ty6hf9CDkfWi1LqooSd&v%TZScDT6xBG01tnzoKFkTgT66d|JPg1!
za98}<*za%@CAnN41BRIhs(xSDX>CVjrAab+1s$mc<)Ybl(QE76v`>TuzN>RsBO@5l
z+i#FBt*A}#&;V0}0VDSd9kIL|#36`Ens0x39hQfOmy+QND9A=0RhPx@DV(CQ-lv(z
zh-TbDHxY?r)b7?sgk-~xEd^I+kUK5Xm!sNmXQ?Rst*QjYWxmT$@=JE*v%?NVIw+kv
z%=i{Aqip#~d+szkN3!M!o}jj?))J2_fUIX)SI+q~!BxU9bqoLn)Z&n<>{vFa4G#h(
zxL{U~VPwj`czr!FQTA@4Qeil((L?N?*#_D=aETyi05cx*_+uihEjGyC8SZa^6*4;(
zDi4=ft(3sdhKGYt%~c{^$I*)4B?QIw%o8B*ei&93<WfBLIX7Chz(Gk*G}Z=`xCE8y
zyp%IG-Ey>5vV@!oo^NNgu{OG>m?2Gdu)L0d`bZLsJW(B`qp<)sT-7#I*NOWIHj6RD
z{Hr#F6k?WijENCiPa3uGn`ZBAsNWo8QJV@!UWS^2I(juaML(jPFuD#9m1T%hini9n
zTvGN1J$XxiYdAnz+BCI5caaEatW_(buqgjw6|7_3_FW=Y$2KL|ENjc`r@VOv!Egp*
zlyQME3fNRUCn4F6sDn;a=Y*ZA+nt)2b9vxE^I8aA*Z3rRf=igKw9YR2jnjTUzbM72
zj&MYu?KKZ?yF_`WdaEN;ou_o2ubi;swQbiwLc*{S-1)W*K+$pJrXxok&u7~osE+k^
zZ)i7E+l|rltFEVm-otQrw_Bp8s@paMU6#D>HunYs&F}#=uiXsD`Hg65n#qJ#!Bgpj
zO7TwEgIQ{wBCjMqUzQWMNeaK@9Z1^9NNS3+;lB5&G3`3h`~CazoS#k)I{i;X^Ye(*
zWM59#(e&Ga`f~?Ch}{U%MqKFiK-wn&Ctt}CJE?ko;m3B7&pHL4?*@It#fXZ~bY6^7
zF#!g?0@!VF!D{+6%Pe#|KdW8F178To{Zmx8Aw1lQjK4kV&)yaG0~WAOOkwc8v*)Y!
zJ~6zSct?Kh0~-;l*O{9vblJ!rVR%}FI;9p=vb2IF>+H#$;BMNF-K_0oGHvvA!1(+U
zWwO9T8h1tAQpz!#rzVJo6#1oP_%$bvMV~~{q_V!IA(SwUE8dQZeQckX*cIER6xR_I
z_v<LO=QM6WDgJeFQ(sj4+tc`IrCW@T<KK7PS~<P7KA*Lqbo*1+?Ss?X-hQ{g1Qw7D
zrR*Lj{_B#&`WHk;Sx`6>AlT?a$EBRoEoi#$^rP_UnBtj@1jaL3mgqZh<z|+P#6-1#
z*+ZpdTCsdK0(i=hWtQ;ZVS4aya;f-O%3EwoCH$6GNy^&b^ADhwg{ssFWa@N~R5V-V
z8+gSM=<XycEpvfdEKDl2yJ8idz(e%Vjn1&X{6`q0w;_O8grVi~h=2Js#7~b+G7@c!
zq+XVUOgYdDmJqnENJT72z3k4a2DHC%&<jG;?}gMaIk>GfN=9d7=PM)P5e>;14F&fy
z=pAo2MbqWzy@>3ho>8W80+gML=B3Z4uH*8)5Ytvl+~KeDcB9kZZX9}fj`cdwDnGct
zvT<M6v7+>H;^%X#vShA5dlm(pOWnr#d&J7z$mNz1V6Jsr9p9at*{ymZ#&H}d-Yntx
zjEXuUP<&<*xNlc%y8(dsULOnO<UsYIDsOau84v$b`ig%zDD#2ZL79keaqg4i_lrUG
z*pl>Lf=i1dzXR{rWBanZADCl>ri`UdelZn2=wTZz-u={*wa8aTmCz^g=&FBZKZa?W
z>U%l+t89s`&K{&NlCczP4%y9wFO``;DE}No#lS(c|FrCNXH}+8O*;7%){^McQ{>H&
zNg>8WmT)wb8Wo0A-B_9nm~e}i<Zv?cI^>_IA&&LE;TFb>_eoBoAC!4zDf{hT?juv7
zy^|)v&<{1>#LGEWW7+Q~e}A`fIfT85R#78REBSXJm%=yWE16s_-f&MWO@8;EYmKe<
z9&R=c9>xD2rNA|;KxK}d>Zw3;R*t<@929j+BcX5V)f!vgbui5HkzgMKN=nCt-CMcU
zsCA|rwAtU=S-#op_2YQKv-5j$s`ushv&V=762m<;1fWr*v$a@qPP(#5EVKUGZ{`=s
zj(H*w>71?=Ck|+8FB>2^?R2m<b#mWJ$uyerh^?!Q%iu|$)FkAap+475h3Lw@sKk73
zFk8alm$o*SI;prcaq6G7){lS8&v-54`S$mzS3dmQprhf&hiw#{i1hz4?o>M<<Owcv
zx-fiSsC%vW`Zv$e_F6B);WKb?H4eJ3f(ZT7w4%0v*IgrA;MewSUkrWB^sad|5ZCYL
z-uLuv-)s$O?vK0rd8~(YRXGi|?fC-D*Bnan7KQZoa9LlI)Hg1g4G_)tnCZ)R)N6ya
zulXGHD9&sAxHjd@hA8nvEuc}j^bosx1;68#L3UjDKEUbgc2P4?mS&)%_EW&u&Ruku
zHrIIAw~2(AH;+Q7O3y!skhUPr6YzW6E?)sSnyKJs=J0GtWb<xSTrc(CR35R;bTCA-
z?!4W&YEfE^>lQES9m_t=H#yo*a!22AT30#lALdA7*3I1clIFBbbl%c_Z$&9M3<OCZ
zG6px27+ko+62A8-chusc&(Qm5Zffy9po+#}Y3ujo3;y@NJ{=0X#))%3{n{Le>R;f!
z<(t?-fARG>lg!tGY(dF>6q=h)@A{3sud}@Git_%R=UtK^zlr1A+fzIFCGQIc^|yZL
zxgRJK!GrpPy?;7!aGDDEkdOJ$R)zKlzFoh*T1!~wlUWT0{qcIoR(I=cRcqzxt>E7d
zi!#`?TP@3}<n__(iOxG`dG9hGnCr-#kxY5+5F&vF_wKA(AT~(kT{aq-O29je@>|?2
zFG)=Z&E3Qeu+E|ACu~=fx2b|;Y6rq8$sohmM4y$WtDz8EM?^U)P?flMOXKaD>h62y
z&*nxu?*FLz9?CdR?z~vtmT`ywa32&J*wsh`uwKme8EH{W>+&e0+3GC!GVy!!<V=ll
zny}C>FBYIy+7O}7S%E&VrX9)z5=&0&<!~v$9CDzLL>~S9r3<w`pZcX%_sA0GD|km~
z>ySc;ISP6KGd(%J`U>v*&#kJ}G~)?^>hG5KMY0(ykcjhLkoCZ*tA($*Em9E|d}bF5
z82`Roo5j(u@v!~za?_^d%5sM)9)Lu6_-@~tbZV>i)&ZW&WX=<Q%jDg0kYy38IyGGx
zc<L#>3(b+@)h<~>Q~7SB<VHT~c;q+DeuwvK{Sa&a<A1@j%%`-MBp5z~kNTj&kkE6L
z_)9u#rN9zXN2$O9gO*&CWJ;Z0fm0i<;^HeS3y)Ie%qOivRg-$El2DlwT4J*NO=4C@
zqb!^zAyh1O*in|5k6ny9CLw)Wg-=n62IsF5E>~Dl+jMZ^2#gh{q46V1N-`7ukTDIC
z$5Upa1qfP3R!&|45eb<qN@`cN^^MJ~?VYcA`UYM%e>)eSba&q5K?Ab30Nv0sFE_4G
z+47t=y&I+t-?n`#6--1eB(}L5Rx(RKI2d2o<N*0az7OY*5?1I~jD)+1vtDZ=^vOtS
zzu_$wL1BbElU8NexSELI8!dMW6E9-kKLAaS0!h$Fi9=wb`b=krf$#&nD3S6m-SXyv
z!>|*`s05pc<`BmWV26?^X&nkK8b=>nz(r|I1GYaiH`*q_GVAh1BOHuHxE|PWGw^@P
z%NJAdSy?&>9Dk`{tG6+_g~?DGv7-h+V5y@isLI<Jx>rQ92DO=K{Z!l1uRR(@4^<VX
zjJtUxyl2RMqyLjvqM>%=876ZaL8t9xBloP7^Jrt_zJPgiyvmQAOZ`@V$F#g#3}u(;
zpj9lYaS-D(z9paVNAJ55_$wC%luSXro|%qP@PcFtiB74GOE=ObGQK>>n_pnwx#V@m
zTSSi}horaatkP|290G3-vF(}pYL|~X#+phltV9w%opK|;nac9`RYvPiCBsZ?jpCi=
zSgoies7Y8u^0p<6r&sqvNZ_8Lbemh8VAY<9>vn?Z8bFkgqkmUZ4!Ff+t{A-m5N^e6
zqH_#=Qt;9AeuEhVn+05=K8qu=ur_TRlG)a$Y?wdfaw;I`(&?dF=87K#L`j9BAz*5{
zB@7=U9eYJprrc6P^?fYI<C^?P?Fwbat!K$VsRDFzNXEeBFWjT-_F<liNcztJ3p5Pn
z$4*0-rK8SjFo{2xBw=k%RmLlxJiC><cX`#L%*U)W1ZPb!lNAGqB`Z0oFs2d1+a55b
zsPmldUlNb-e7GIM<4)y-oo*HGOmX2S&pr?Lv`G(Wb%LWw{32bYPrj(!h|So495QGL
z<2v!-;CMC8e_{Nz6_%8NEH$PxrnNkvISgtSsts)onM&k*+Wx3V?YeCA2jP@9?S0F<
zzR3?|ANxLLOjNeGMwl?jO2|w<8$P!PnslL%h~^t_r^Y{*wywpm4Z%d5i0=xp+#Pe)
z)~+4z?XO&^s9l>gPJ~jMgbwzJwC4apR1PF;G-b3xCWTv*PUoWEQ&&l(NJK4=>OyK7
zyU3hFB!Fpggc0z!0r9}sQmvs_xJa@EFdp5A1A-YF$RIOgvxVek-+EIoIJ$vK_7e17
zl1RlOiT{NN<-(D`Fuxqov+tMvm0zk`RurW}mDXvIPDKoV5YOkcgEp?OH~)e3$sDPy
z^k2OoD;{ba@b<1m+rNrpyzL86PFkGjmY|Y!IK)tj@2Q!@7hZd)Vs_6jln8omphk5X
zdm(bjP;HE-?{4M&SN>XgRLd-UT7q+LLIl}q`z?yrVVsPZPZ*K{Qb~+mlEXtamF2HT
zbs)w8-+Up3mLoAFP5`7yNy{WO03=ti{!Cd`9+T{Iv&nkkOL+Lp|Iounv>zTA&0ygp
z_Y!6~v9L!<Sa&A!-Orx9<xZ^wG`Cyfx&Z3GuxRXJYn9iI_8QYiCHzqu8CddVnIR&-
zLCQlaJG@+g`-|VGnx=N3vvCn38=uI*LIg{rvD+L><=)WnoPsY4?6e>-E1qnB!3d!F
z#6j0@<l+IC{5TG@I0Vwf10dCb@B8OI=(9E8b^0c>`QhVZS5ysx492zqNIG7D0^AKS
z4u4=U%Ky@lToB^G!bGzOVX+-y>l@yd>FH2;eKdU^&r~Bp?FiSgx{+&If*0TuGc+n9
z=BbSP@R{nS{|Cq{fTCbw3!Si8+9-;;0ibevZ7L9L?Tli_?mJmzg2sM8j!kq#uCh;9
zE+v+?ywR3zi5YkFIZVt}Pq0W7dmGK8MK}qnMql`u3T|mD4ScfX2@!=m^Y9g$I1p84
zd(5;><ciT}=Gt1N7P>{V*4#~%Xomnu#FKm;hQFWQT@r=xJ`n_*-~|WGtyraEx%G#J
zD7RM(-ZttU3QwI@#O+^9aA`PAuprOg8$CA4f|eAfP-#DqH^Ugw4yTDf{q$OnGy#9c
zQVl?&B|tMz=2HbdY3VHVt`#5IbJlg#`)d%L1d<linSQb%DxWg4WzGwsBiW!9h29n9
z55mOv@JNkpP=pEt1)vjN;Vl%vTx<WbPT|=ETN5Kq8FJCAvb`KF<ulrgTvpWrKGvnU
z-XE~M$*<Hiu`TZK*wY0}u7V3GJBSrOUE<3@K|i>fxs`)g5~<yLKXS{&Oa`w0s8Z_x
zY-)Dnsps<9|JGTO7LYWfy|fNmltD@hCqC6LrV?7>FFplc0|+P&Al%SNocp-P9ZFnd
z_ed}!;=@VROaH;P8K`=hYfvT+%#hI4qCxJ|IEP_zH`z?*{S8(D<v}uD_FiDnCg-N|
zsOqZh{c(xS>&MDtSRT3D%%Cj+fu6CeJo<TM`&%N~Dic-@<qBClw!}SECY@I0ieKz|
z^IZEi>A`d5!DP_Rm1>m$_vR%C!{i1WPkcMoMhtBV1JIG#A%Vd+80Cmv8_O#1PF>9?
ziIeG=%^1>x=rP@S`A(BuFC0n6kg?0}4LB)hYeSE#)wnmC612gBY$q^mE8OtY&O3#l
zYt>JP1{5Vr@G2gKCgxiJ`ZQdG9k%3&F5QJaX47fj8b_q~Ff_YSgByx~btdId*IyG!
zS{TWWY|P~grkl$Fwy*wd{sH)s!h@OPBz*3AOdrCKRR&*L{n@|_{=$?)*4Z`dVid)I
zF6jJMhi9X%<n^1*+$2KY){Q_kQJ`3X(KVA+rI+kRi5o21>oy6U^%8EYLidT#YH2MF
zqa2StNjzlq!$<>Pzqx)2%)85k1TZ3iT!vhxXJ?YeS};c&>OtzFfP@3N9Io`soba$^
zcgusy8xMzwy8_NCa@ngtgwO<tRdFoui<M+3+O<Q}K?~-P19J8Fn>n*5IN$%Wr@?$>
zoAJgF#W0KLn~?r5*REq>ICLV-1p%iQD)VRgR5~h+5xhrPBBtdvmDOv^O(7Y*q=<Jr
zeX&~+4c)6=e^9l5zP!9qYA-zkmrq6z$zVW8!jo@fpY;xaeWI{|XoqZ25wG@MjA(B-
ziAnAD@ZF<D!0)?7+Q)BbH-EA(Q_I?|{q}@i^T-kb9#-Ja?@tfO-Xv`QaDRuqLU#XM
zj?-i`Be<rgApS_&0Hxm9Y99q&O_~w86RbpsbO+p0FT6uhg>z8#?F#d-Mw1xx2mUN7
zt?j^3HxibVvhcep#k;{QS5+_-ZFCe0KrR$<kP8ns;Mtca8*mXR%z#`>_*z{u7z5ym
zCzQWNM8ps&@@#?f_zQT^1XY!BBOcXbgM>PfE9u8S4H!qbP`dR1CXei|sG9(TP)DRy
zkR%eM4%oCsU6bO|R)O8yAHcr1YfK)c{9s2FTUKkh+>%pBYBOcfbZ-w^e_r|K+>j4x
z!6$N#lB-$Aw!y^0aANK2M*YYmSuJiJZD1M-zKZhNo1GnYFF=n)w}Vk~R6G=gJj?5R
ziW{=&S-pksq~Q;2sbts$fl3;3jY*qPkHEY$j6_Tb(hTs24}wwH3wkg(hu=pFNAViQ
zKtq;{wcS-1xVdoGC@XuR?f>v}9{yCm|KmS<7{|e}N5-+&F(c&IJI5*+*|PTv?>gt$
zBMuSSJ7klPa*XUaMky_XL<u2D`T0D)kH_zCxF7d*U)Sq?Ue71t1EUpPUvi5KUak!f
z(B>1N0&o-Kz;BhEWAl$r!OD+`Zf1CHD&S10n)FK9KG@6%s06ZnnUEuHp@f=K8eGM3
zYs)wAC`h{7MBGC_rpEc`!WsA_WJvrUt18qo;x(#X_OJ@RB8cX?kKzF8IVt!XpQXn6
zwM0JLPv8$8<_X?Szvz`qP{qrcR}BV?pz)uEc!_eNpS5of;JJtN=|&-^AGNHe$C!tf
zB}(L%-4(jmFqpwVZ3Lba{81j&ad_>7Ge>h|4QEpo9FA8}NdLliPgAtgykYcLqF&nZ
z8let2!Qg1qoW_hL+lq={`HPHi2%C)P9QqHyI+F<k9`xZ;gd6UbC`X9|08faHHovy|
z&Hx<0hV20kyI}3CYF?R_Lc1-`jCX2=|63DI#7Z};?a@}<-121HUejS&>9BXlW;1)E
z%gm&y$VPz6D_uG>00<9Qml;41-vE{H$WH2p(FT%G3#*$1sZyVMvwThAHL0yFpIU&a
z4Avv#Su#iA(TS36)SIE!_t8TJFtRzVmb-=;Ae4BMT<bk;=u=u7HZf?X23TqZG_-Of
zx&fx5@H=bT1S{A~9+kVaGM-xNA1NBrOx)0$AxYo`rRja_T_OUfkz->2i6-F)0EQGH
z;g9D<f;pf#Ju`zC2=mZ@ml`RH2bx*^5x8kMlB3|Y;WhHmZ0aU<Lpy#4n{dKd+zkj1
zWsMUZx&y1jLDtXY%QrE05LUB%?h*?`BY^JI#4L>}GMp(cGOuZ0_GEpdq+XDBO<e2H
z0C}*<(pRVMT}&DTKs_j#{63yz&ae#oQH%t=xrC;XL{?~xubOyDR~F2>mZzACT%g?c
z6~D7%McLUHHAgatqvhW`^r;lZe;XjOZ<1m*;|;u}ZNBDR8i0qJxO90G{PQ`mtMdxo
zNa=l;s^C>U!8}sI<kCDtV%BEqD-R?<(j86Xq$l}lIYmkywR3YVdQ<)eP>eVM-U;|t
zw<2#=(fBgGEQP-$r7E<!q1eQ%&UXvbnle|zz^Y2U^P7pCC>DwVd~I_jGu)t$BSIIP
z6g2T?2)pga?KkdR(QY97#t#q5oN`6Oq;4ko^>li^XvB-!N_E-$1+0<F`W~@O4Yt2&
zklp-%o+5j#HFRw_KOAWo&D~~g^?SOsZL;Rq60;pp<EPN*Eq}iJTq33BvWXIjV$2q1
zrPQXhMTbk;X3bLPAKgcTlHDHu(aOltfA3P27K%~$@visdrBISW*?@8SWZ<{!Z=|P^
z@)uGW>CBu4mdvv@lh&B|P0_=T6tLZK(p}`F+ogU%Djr*pefmsD@b}vhBjl-ez{{8s
za5r9ta|>tJG(ZMD+#i29O^<Obt!|fDaCxtM!syY!!oRBjr4CRmjzq3qW9<gSV@PK^
zjOn*DW|uuD;KQ%lB|RN4jY&e0pwPht$uF_!=3yn$$97kt<M``)@X?oLDpTa07al-=
zYHaZo1ULRw0V#~+dm?E}7hU=$9I*WH^Kl(%XZ*&cx0@^lvRk#y{t!aG5%9Ac2dS89
z8j|$<_TU3bGU82u4RvSco9vGprh5kT9|z+<qrf|ZKBND<gBtKVy?SW^x@HZ;O*Rp{
zT}@UX>yM*A67P-_1OB%HJ$<>{Q4aCgZ4g-wfOi8l@+yDN{jdz3L{fp7!*YPdA7|4+
zAdWG39R5Q#5&TK=5SBng&0sWsls^v=Y!Bk3Xphtozs*%hQmH>SQZa<xvprNWFpIY4
zY4V0nmoAo}SV?YOfwbKffU>^pzCrRh3JyN?je3<nPzdBU6Jb`Zxs2FR)aQ`)oah@V
zjenDl+5oOyvc`L)p`CHh*+V30;9WKy=0>7uDA;4p_1C|VCibB%*&iPRfjr)WEyZMJ
zMI+H}V9>Oq=UWneVJ^l@-iRt^DD*>k*RK|4DEfAf2cs(h*I~O0+W+3Bp!5x_AL^-n
z!A#T$IqcAtK>f=|#pWBa>V`xIgkBDB_tkd(<_H4i5>tH@5;ma?akA|96r`D`5>Ff@
zM)&hs+`I@vtz9G`trYPvad`|enrnzRHsr!0LV`3X9cEDbP3KIm0F6U~h2udAIyU0n
zZ8@8}7j@~FEJ(W_gB>A>zHyMN)h}FH6Lk@~4S`k;yu(QlzGSNrL+V$9r73@fy({4y
zx(rmm)-b!^Rm0pDAN1gxHFYO+@iPW{%^}+#yI>ZlFVKhsd#sU<fWef_Rd;V8#ZMic
z83O@`c7T(aU~-b$g+y1I0~{q>xJuCv6TTOHpg;^wejQ#cdw?6pA{z1Zn2f{_IR(tH
zh9b!Ve0Ww@7?`puO?1&z7_@*N-YNLba$sO177_gyZe^h?CnaJ0c#IZGHfYha>`zp{
z1D7ijU0e>VfIk4|9jm$Twu=b#j{yGR2<a39_3*_rz4)KbT4}247aVKHF~j5DBSs~9
z#;%l(M-YoA-bR$x<XG(avY^Y73_9BRM9Og2dWUmU9DMb9>~3A9?YER?$E9LFWw?h9
zm#zSL#8TNUul*AtyZyR**fefykGxNjSG;2kOB^p4)_K5?xKBp>yRQ@YWuVjrB+jeC
zJf$MGtD^W`NsaR+zqe?F7-G}Y3fMSJxDZbvsIUe<k%^1?CHN#t1-SU%$Ci<aTYpmB
z04A|fzi#D6T`9g;wu=e7b`GY6gkETiF^l}d;wP_83OE}nnHq8U`KxHTHm?6eIcB0l
z+&*6YVklFYKlmu=Vw#H|vunTUF|&U2=Hn3~(=&JBarf9GfH;HVLB@yW36asS?Nl?3
z<iV6D79$XI<5Say&3UR)o4o2vr>`F=hW^M$-ee3Fo<N7`^U%~i*l%_cvNJRPHko;6
z(l{)fhLsXdVxBF|@GnPCjw#=@-mIH4yYKKD$I19i^;fRDX*>7tX!}paVZZI*szacP
z-c82qwij7DRUhxF(buJc*3_QA_C42)lqZ|at?gBE&{sGpS3P1!qK%8T&Hgc4<Rwow
z=0?hkCy@%uGryFP@2Cm5T$&R%?-&Taa%$G_)NJURSv*!&itTq(SadUee6j_|^+_X(
z&&=H+ri}t`jt8{VKQYjXD_Z!j(QoI@SK8TUJ(L15>ll-W>X|-5F@ML*vKe-@I-uHS
zERbxpqqV!gux@n#nmlz@mC5nxkau{?kwGUFiKl`H0D5l~zT@e4eQ37gX(+UcErbF$
zj+w2dAQF??^3?~wWDfqc?ssPD%%?KUQglmuv300zkEcx8mgpCQU1C|x#;5&fC+{J#
ztW9W)G4t4?5jL*VBdfj_QHku2J%<LL{+*3ud`VU{R+y}?glMYis{40}5o|1zX!n2&
z$EWU<Okf+LcB39`X7C>TFSp=-+_wL{mU<@tM1$>bC~Ms*LOb@ek^1C)9kvYoH6@TA
zJ>f6!(|W}`Hoe)=_`kS^%&$kkp7CTGegMyYD2oFpCd1g`*tvA4Ee4-zH8q1(THYnM
zJjqe1Pck_PYJ}uk^(aQVvvjmXYm;)s`Fe57o+3VJ8ud2v()Z-pn(jWCSAPb#`it4n
zGP<Zgm!(y!#WiH>x=a0fd00cjqT@YC>GM#NJX$VYnonCal}h+vuKyil@Zz7r*9Cp!
z8ePFDBiGaSGe8shd6V<FQtflI+1$NPHp(HG!?IVu`WN<paHz7x8`*-44=+c@vfrX=
zu^b>!e!nnle}pXs(cKzgx7lc3Uc!ZGxD7cX1H(S$sa<Phv`U76?_mrZ*kX$t2jQWI
zY0~{YKcRGSI&}sH^ci<M&j`SH?OWnjZlUCyLS5^QC2u`RG?zw*OSU~x{(Uj$?zi^%
zfq6v}hoWtF{3X(FjfSU_?}R0HgMkieJm{~{(Hhq&YoUn&|CK0;dId(_PRhJrTHD<9
zd}R9d$Bmu9;(8><g_hYH$5JdlU%3q~xrpxuYPd@8yJQEJdEk=`HiK$2`SPRoxSzRS
zr7kN%a=2AuyoZ5E|J^laYxJHG5C%io7Z1&Te&NFlWd9A{Tk8lDRKH^SR=kQC!tejF
zufFBMh_{BZ&V1_KkJ+(C<jbGCX?0kra1XCCDB{b6mrxdivQ@4ttxz>&OUg)Qqqx@1
z*2LHN^}~+G;(Y%Sc+RfvIQB+-|M(&n!mAdFg>J070g{r0MF@cBM;v=@BX{|<U{mG8
z9uv9OwMS0PaIV5higyCLdUjp?a-^<3XRtr?ecj~LpY%Oi&N<}vqIR>APJAMxgk5#!
zhwaGV)faa!81k$C+WFXj@AG-u=1I`<Oq26ysnegxoDQG-rv-v~8~<lN*Y*kCd;g(7
z`9gp6@1I{6C$mg1Jc~K~`}YivqxSSwnd8AsdN^$;hexY6{6Ydw=NDqlREJ(}7^lm4
zajjLCNedFfL-&WSO^?+=PhOwxnn#;HNB{5UE{>bkZ3a9+!}5lFQBz*SA<+;8Bf(^B
zyOD5K+_WK={8<qI(s1Qgdl494&XTZIt|0_Q?-aIANbzkG72SHP_a}P>u{x6@w8lq(
z8<e;#b79V9VgicSt`VgAYpug#ESCWeLDA|&T2L<CKT<At<!%F*^@yvS`mQcYd~x4G
zF>@Xi7Z)%K9tUZ`jJS)=8v%Lp5X`bp(yt_pR0k&1_ysCt+=!MHWmmKq*|=dk(en?S
zv`g+m+_OZqt-NkC-cJE53Ao1R738tl`=sl?wlltCE_gkv(J2*V=c&B<*4ski*OITJ
zj2np4WRsd;ey4C5%)Ib@)v5k;?TPc9$H2}cHc1g3Feh4FX|~R2Gol&3aW`>A_$u_<
zIc9zq%mGDP5e31P#t|cKHpVpt@{w?aU@wZ`y;2Q=$Xn+m>k}kD-&OajXW>jDj(BBi
ziViAGKza&LCAVZb64`WI1fh4?RSS7U?gw5Hst^<IO-Z(VL(S7>vMls@m}PV;A<qF;
zwAD7x{_d*RmCM9Ap-U;(i*m){Nzf9k3n@|lA5<fFpaL1aEX-iQIXk0wyVj$RQ_CaK
zUGi;y^}PqAQ`u{Lh8Z6&XZm!fFj4FN)U)fUt^&sANfn{O1jK+-b&=(N`>($UkZiqN
z^7)X=RxY0bY~qsSUnM=iHIG+##y_O6TDkmJv3AeydCJUV6}Om`)N5?fTRn1>M8<z-
z_t!k4On-QhC(+&&3BqXaOA`ZM9+rI?MDhbd9Q+5ugoV(!`E!XXHi1*n)qr3EM782&
zIjaGG-;IF<s7dgN8N`E*7a$9(c4z?-$V5p4)bDH8yWo(PB<&7vRY2x$5DQ~D9r$Fl
z`SAT{!gLG~uC2<*#o`*4zqPESx7p9$jwb7Gt^nS6(mi;*OxRQhopY+Wy5)q#9JG$o
zNgI+)NPw>Xo-@1Un@75Q`WZBFB1A$JPY8Ake4<O{*p>%~b<t-Q2?+DTsd`o2*$B_6
zYy3T{hF4yqJ;0ko_l(})mAPlhMw>)>$}aBo)l5$Q`}x19s8*mq0H%C4u1_!e@M7k=
zIVg-9%3wv{v#}$2-Lc`74uHcvZ?WX!(CZQn#7UG*g?9(JpaE9VXe*CL<LtDD(7TC*
z=c&MYM-lUa)Jd-ot&Xa~BchjSAWm$0QMIceLb`$#o@<rc%<_dfGity^RM4|0MbxDB
zEm<nGqS!@MZ2WfEl*djy{S2?3#^Z7GAeKtRui<rwBU_q5-xTN(z=X~;@#W28%M^^V
z0K-@mQSO|K9FWo`NM9nN{7DF=Kda0J6B)>FbE(g<^~P}GoZ9p3IIsZlAO%2Xn=-Fe
zdbucP+MtZXxz&luZ2dvpB7{li+Az_m2$xnMqc>h`vJ-Ts9FaP6qw5}*pem4K__vYS
z{a203bJffTU&dK*W)(8gDF{aj`Mh5Z!buGx^l(&IE}&T-$N7J*c<O)HyCMijS}Rm_
zImW={k%RT_A`nNkqQ^XhVqjD0%13Qq3;dksm&qx`R5dzPo0fx#YyJ0+I_ovb%IW8T
zCvP^YK?4tSp**^rKnImZf2XtCO$KvD0-*(XdV73BIJaww-m^D9?b^;!PO3z$C)77T
z2K`y+S`U_924pbFn(5^K7{0mfd=aSeVgL2r7mW2$`KAd!J*jptPl$g6P8d+#E*%|B
z0ZLct7?+mrBcuUkuKYAB_5>HGxZRAA{uy55l_oGkvgAX%ta=TG+hcH=+YTuk2RWZd
zLb0m&3*r<MUGnkZ;j^G4dw*Bkmv+M@jC^rfMel!awDcyZ4j{RcJ^;Nh+T4#|NmiD+
zdwDa}+FH{ux2CwN6LkMxDdg=?v196u08pILz=o*T7XX5)z`upyW9CJhNwdBh=kq3M
zuU@s7o_2jXj9nWtvIX?G2BB_1xXY0Dz22e#K&j=AV4YTPgVE-@32oBV_gq_VTt5Qq
z?E;qQVBn3=cEpT+L;FcNlU%7bjbp*Sii<JbtZK*wJE{1vWz`lJ>(82V|3J(>z|-oh
zO4JeP5bTJ{_<PA6;wmyy(f>Z<4A=pkbqvn0o+AU$(kobD&4C*DGFPjRYjxVy$5qDM
zH*Xr}BHoIEo@D=*7FmgbUAg?E>s3i@U_0QAk?yZ9rupx{wb+mEN;9MgcrG))OLyA4
zN-v1cez`Y&_q{Rhm)Vfaj!?n<*CvifxysM?SZ#03>+O2@u8uq~(F;-i=#?N=A1V&X
zrK%lyC^G0><`jw}+CuAul^Sn-Nxij{tPr6OcQk}>EC_G@$qC>WcrS}l`tVhpIw*RD
zD~(X@@<ETX+C%?BC*k6+d9IOiMDue)3LhVmHM)0xCYapxlk2r1O^5eE6Oz+RldHl-
z9mKpd&dNFLl7EZqX4;1gOvc&qjHF#JQE>`AES3h*EEzGf4gPvVWv$MDQ(|czby)aG
z<4bI{2EDZ0ypYD_OfkIn9a~D__&u8gd8nGisce`~=kxtm__J+8=bub*0-o5-XI($}
zFDI}HX1_=owDjkHKI3=!`#{>3V~ql6F6{lu;t$Fw6aSx--3M!87l?4ojn+@di#5gS
zgB9OeK@GdS?Pb`@H{ZYDGBI@jGGN2NTrFvV!~dtrE#5C#2X7Qg5J{J@XXXFl1Jm%W
zvOpxRDk@%TsBiw+0|Y#NKv!$Soe;R%4?2|-KGqPzcc1bQ|AxT;X273SPp@=8^+0IT
zW7*<o;Xj6y*zAZrN(IQXZV5MBaXbMCwb2kf8OTd1dJ&eC?JE_9%tNb6Pbm%>6!e>K
z=V1?oMa@d+ZTMDw)aFc{c+?LL<qRBe>xf`MQtwsd90x^D%f82GBQ&0?Zi%0D2%o%@
zy(tcuIWG_oJl9;)Wte^bn5^YMR9G?6;@m|*k7XDOi126t`!ZLLZ-TA_DVghOd|J;A
zkKV97P&ozir%L&kDSVe6XsiH&(g5msk``W%ouFqBJ}ivWw}GVaTq0rsI$kdL22)s;
z<Z!e%E@DgR8ThG-35msp=&m<Xo}#Z4UF{q$o5QScHJqa7IBdX6cJv>x2p+Kz&a+e`
z^RLx14nMqkrV3Ox<8#1D1;y$Z*S&C9iwC6lF?_CPN3$LfM!i*Y&8LQe1*0*;WtUrJ
z;z{M*t_ioLL9u#RO>QE;(pb2AZqj>|)4fXCTLWf|>Wgb+PqP;n=SHs-CnaB}XRdpG
z89Sb%K_P0B<o*E0Iz(2thjSFk%-t9?PW962gZ`p;UDx=_s#w#;8vNR&tkc{Ea;5Q!
z-svN1t#x8<<@jxHlGwNS!d^jE&gK+1ZMYfCp_ucY0_o9DA*)&4N^S!;a-Ubqgx97C
zF81jnP|Vod1l?zFaqfkMk!dbobuuTH{g@l(O?>W8)U_<Ti6CW5gBr|6V>4hw#mVit
zN!e!&08}SbEqKtI(}b}ub9Ai~M41Y6pDM{Q5VGSIqE4Ob%laS#EnF|hG~yRLDqbpe
zes7pm?i<^?m(VfXd(dj;XV;-Lq<Zh*<tGS*H~`Jw9=MMg&M(e~Znj~(CoeBQFem6j
za4BFqtwMDWVeN80mJBO@=G(2M0WQhaAzoZjEOniZT6?gE83Fedd`yG+4^LQ(4G5tX
zg_Z$2Ed7DlYF(~L<Lul-g2k$Xp>X%ijd2TCx|u>rVwLJlLi*$*e=1O%5G(#1WA}uI
zTf>V=+$qL<WGI{P>4L6<eqqyd(+sh8B+&%`dv}&s5qKx#0R}3~E~C%-xZUKeV>;2s
zlKZfNzJ!BIhLiu*ESD2gW<w_Oh0?`p^W1ZxDcRDOk~^!0guXFUf6u|pm|6jzmRYwV
zre+6^fybHUYJT&4W-xJGg2D;_Y|A>gc{9LvfcRUo@oFS}M@xf>>3~O1<70@7e-jsQ
z)|a>Sj$BEh8YDFFiM*>`{4Bsg4-Vg)7ayx2IFcBmiG!=Ne=sDZ9T7=9-;#+j60OzN
zxy;vXEWS^J?G^@t7tVajkVIR%Lz;XVA<2X!wQ0j<2ZV3&&_@$<w&Y(Ki$Z9C%oQ%%
zM9HiF0m4;D>|+3kKqGrMgZ1|Xi>9<2e{I<|<s<4AOurW$wt_v+kgqJE@$jZs9^wFh
z=v7Jx2eTcHtxoUrXBsV-Wa3uFl45&ZlN=n7;Pv@hVf3rG0M2+HqOV<jr1{nI0o)yL
zl8y{X*W4ySnKSW2C)u2Dr5ymPBbw{MQ(uTDIL$x$X_v-#UEStdK*`H{<yUQ-%950A
z^dgd!c}V&gF=0&q5SDyLA5`*TF@1Zk47%il;M9!=;lxQPhy`sMxH~BR75#-0L8w_l
z)zyZ@uNgJxPm<jme(eo@$9U<AUV>;eh$jFN^^SUDWl4LP-x-jkPD}ltktW*Slw!ZF
zCaSZ^*1?xR_zDh5puQs$k`w@SnoD(@iB{qmn0QUq*>}Zf(D)lYiH`W%i==n|ifpS?
z9qkEu&WNNcI~at#WIC3hLigT08)`*+A9)LcahRyYl-x2m>i<4IvrhJ^a=Ml0B%Goi
zuRN&QEyN*`B7%N*o@&16egA`UTIN<Q-@%6t2PdNUM-?2ne9ZB($yi>UV;{6gkMmt2
zdC>5D_FBx!LF@AFcKTBB_$TAip{MgrPJ3)xQh)bA)^Q6c2a<?RE1aY2DM*FIAfo`t
zvl^ihT&k8ew)iexLo1yRXL?3wUKfJCASI`r!oo%%F`ah!1{d|wtU?!@KYRuG8l@T3
z@zUL<>qOH-x)RTtx|xoW(d{m5DxFV=DMx3IS9nB|e$~KO92sXfGrERX;I04;YCPNC
zN<3thMQt_Q)Qx}tE(*0Oet$KPw&JtA^2#prYjlr9B-$lflWlx;BlrUY(tV4Xq^wJl
z-&j@lav%I{wOgKal*0J8HA^Lu0zNKet8oA4lC3$iT!Lm*XJ6B1U%Du|rfaaKcXdr)
zG*i-R%`j=r=>D4V(VSe(n(4@z+3Pjq$Tjn$H4E4}0k(97eceiB-P*v@OlbY40BdM{
zI+EhLN?h;p_EetEu!k|K4Wx^vdfuY0s}*<(6IjjaS+0$soUW{UT=lvY?F`!_TF6ta
zZsl6nr|S<e`32_s99>_;<puCR7(V;$-n+TsJm_V5-iehhbnSV6XCLGCn^S?4L$M-{
z@y14s!Ft7aFxw^|!U!lnLUnG3xeL0cW;4mz-3$`%R6FwWL2vqX^FAH39%~hiFXcox
z)3fe#We6o@)Y|o`K4@3t$sdr474?ZlamqDdAV%&b4x8TIB$K)9ge1lX_mlERl9HR#
zQ*JX9s(k6AmM^*T$v}Nw_iqO57T;QVIZOJG<K=6O;#BY$HC_k#S-mP~`?Sl<z+_hr
znJZ^g5HctfFl<OW>tQ)H2f;a)v6L;{Zl-X80E`aFSqM41RmNAi<)W}1+NRt4v8-i-
ztS^-E*lR|uZYy4VyYZuM)EWAlntb&$l}>=0@L+RhO5pZbW_fFKdFb_T6rYDrJ_-oT
zRiN9y^~zR6E>))Ruu74W1a$=1K^kDwN|B}B`pC+fz^!-x)`-^?e`qE|S=C6%SAciF
zM_W1Jf=So70UuaKAH^?~_0>4~a^!DG61#Gt;v(#-HLJ!iD*uyRnU-9=L2BCulx!us
z7D7To-wEwrV%Fns^cAhLVeh{LD)dh}?829}i8vaG`%Fm2NanA=0_S1DhPc4Bt2>N+
zmwqIPE#vFr=nz&Q@Hc}RqMOLB{*DIJ3`-VW_LgWSOGKRnDyvj%G<(<Ti+UD{-CPR(
zcl*bHm*L&Wr0%bqLT8siL=c!nCIxKOt|^Es`!yu)Ur(MOycZ2M=U<XLCgxFO33bgt
zl?suEvfJ$n147b6CuPvd5CaHmCatH-zI8kXfgNf@(WmV8N}=?D^q!n<0XpJA`{whh
zY`aFX{RN-snj6BcBL<%=F3B>GeQDpu)mnc<q&3PtY`pzBtn+TIc+`GmXqdz&B}uu)
zp%a0q-vF7YQvEwWv755|^x?7;sowTS*|G!AbXr~)?hh0mAl61-q#0XVwBSCqPT8jz
zTKGNi5xZ1Yu*=<&W_r*^j<C^s;(SwVi=PN8f_W@{h`iKd7bJYN)P#v`xpF3ZlB4!V
z2zWXt_fB>{@GO6=LI!XE1K!;oQD$Igko>i%5r3jlr%+|F@O-*pvOVfgRdSKy&E@u}
zFZ}9&3-Lz3tQ>}7mZ!_9)A2)=0X*TQYRXztk>{ff<__s7v805oXSbr-6N6N5i6}=K
zMrneMRk#&XgU)NlQDN^MoBs*_B#4#!(}4pkE2QI<!VvysMYZ(qoQI0XU5eFH4hciY
z56B4rlUq7JuX~z44wmAsDpPiccN#vDE>wJZPpkXJqbIRX%Uw;49FC5fZo2c`AV#sU
zwyA^IHpg3e)Z4S3iOat%IU9fQIb*#ek;5NSaDMTr6<mjo6~@OlN=@czlgUqd#T6vd
zw4SU<y^B1X8`s*JG7vbWs3-6$KTTEp(>~fiZV_v2_vc&N>21HK{UzYu(M!8SeYp;E
z8NNL-JJ$?|vFs;(eRAYyU%oj@M$@hdl`F=1iT9>G{reQ=UE_fG65H#w_qV_FsY?6P
z<F&YF!felrG^y6WfzOf6`TukyJs@=niZuM=h`rT4hcP{^lAC{ojqHDSOrOvrcAvg2
z7Wq+n=&+NjLSyhyrmyYS6d1hNshZ)nsRNQ+XZSA?CIA?K=?P8gzNeyJfXuA*C@#3%
z8iJnX6C11SW1{(Uu*?%vOxxJE-2(s1vG67o7rWcGzDzqjl29#}(>@4tzgS*txL^tG
zU>Q?6vx_cJ-P5ZE{-i`CjnsV^*%UAsF;r2|!|Hn`9_ss~a4OqIyz**@D$fz(>V5Zz
zp4U{>?+I0nqA_BYZ<p{8*+I)yTdrtteWq4{XW*B;eC0;q?ab2V=hGi|{-G|&X<0Z2
z-N`Cz>9<g_{>g-MVbm10K^t3=NrQ>6o@bnpg9V3_WK$Bq>X}?)7BNdveM=agO=H91
z({vACWCMl7ui(<ev$b`Fr2EW*<ui=xFV5;wLK5`HIK+&ei_^-X`qRlCMw|>o_+o;e
zzM8$_^)+uRW1PtJxvIxyuz>OWtPq)PzL*NOTl+1<$U8y7UH$*;FGiVX!tyK?Cwq7G
z)#RewhinnS%tMn*i3cSQPvVdvDpGTjIXfF4-aV<?X!5{vs8I&<)fO5?ZyE5$JW#kf
z{r=-EKhjb@n?OqEF=R-ge`PqGM=MjKXMcUFNc|3quSAOkIwZDAyFpdw-|7aWanrF{
zsO0wB9lj|*Ako}PM6I5Nu@q%#`i`%tDP}V3v+-m;%8~?(aaTJIoFK@})uRo59j))O
zPlX?mtjl!`v2DY)8PWwwk?eny%lJP5g+Kns&vGt=3t<)}lfYAk!x2NBgoTtCRTiVb
zpciijGb)=FKgRMkyW2Cbv&{<eiu)T)0u*j*3*TelKfb^$+Df^ndhN{1c<P?M-UBnS
z&IfKfX(96HtMt6+0X#TRWqAyuV_<l*B=TeG&C-~i@tb9_R}A^^ta!`+@w<4vz|RA2
z74c~(TRnvog8}h8>)RpNBtFJnW@bhzPApDChBlZfBi|#=HEwoJ_dY<;%&R$26dnVx
zsuc#r&Y<katk2Rm822>ITFS}RGo{qHci(=Y%6x6r+b+Z81PaPa3aRhlXB!|X=$*C+
z<76`Jx3o>!vmGoKtd<ZAt*6@J#4n<kwjValNd~C(_tI4wylGdEj?u5d$vy9ZP5HDi
zwp%u;F)CV7uWj7UZuWO8Ts3>rMRw4mJNjGbP{;hoICNa}tSlpRLb7FQUzG^6AG(0G
zqfsGZ(dtyBj0f>t2-peu2#gD;1UmO`PIb)S=|MxtSRbm+9p@cKAd;rK3xK6)?0&q3
zlzIoE7t0OSL9kJukf97_<z)Jz(h0<z=9$J#B+e|&=d}a<gZ~k_)FZl9UfkUO2;ITP
z4{12yawJ^yfYsn$1w`O8`Z;+eWo9elAz1q3F(iva@W~uS3xBYtmwV;n{FN$xWiA;)
zfbv)MnP*B5rCVJFz<hOtW=Bfh%dU6wmqVzaqJ!S?ZNe|O4RfSva35@3uFUU^d;Wi2
z-;JN3GHG?D|EO|yejk8~MqRBsFebZJb?Ndmb(HVnqP6A1Y2~68@wh&JCQaAeg$V9s
z!=VN6pdBdcjG26xo2->Se%`bfr|!i3db-RAU=@l6yc5-v|M#CZJ<9h1(jsLL(-52}
zt+6r*(wAcM2SQ=eM7Se9vGX^bYFE1;D%mgzNrAv*0opYx$3;(-iQ%Dd5be(m62Rrl
zVBTW@;#*|BCcyk0>LF2<YvC6*(5`yo%v^yZiE8KpfJ~(hQbid6!|nu1<`hD^?Vt{c
zE37bHVp^OIO0Bmovv7`3xob33@jf_1ea)Sf9XTwA$fncRScT-+kws!4IhQhWxvmfa
zY#9Q)aV`LkXKxZzR9*t5UCwCORPW(P`Ltk}Is>51Ezng_oiv+HA@&Quhpq%BC!3iG
z=geIkW{q3VRQx6=8<8rjx0PLRe4^K_lg;B-x~KKzy^gGd#DM%WS6~^#y7&bpJ(ggk
zb4BlUqyu6mdLpd!pz)#R(4Nkg5(#K{ItY4=%)FDd3iu^N9$p9`OWYz}mTsR?p$QUF
zD$ZeAJ24QzWHzrrm<z2ssxLMHxVt4-$paPFCWX+9u4BqG@Z-8~@wD5wSE`4_@ilG}
zNeL&U3Q3Vn(6VYSWrti=F}4{-jNz_~$*rM7`>0W3X6j5L8f=;xZ1eBUYz@x?7AZFd
zbmTeeO~??5?ybvbgAKgRBk2f{<A&>>=oY&tBAUaSwlzDrDYv@3A>6H0m=%>wz71?T
zilfq9qI732Df1_oPv7`+vPhMUY|m|K^ps0~JJkhl0aV;fFd%@A#%!3lx@$EVX(ZMZ
zDzMPj(5K?(Tbi#+XH!#CKv4R-_gn0q#eYWw@6f+rri<zxmT3;jN-zG1g7i!UG>4VZ
zf7mpM>OHWLjc7^#@Xa^s>HF`^QM#@lexyb9t;w|9no0k7E9v61Zvic_pXfgwPek!;
zi@b%{6~09h0sRwgMC&i-*erq*0(~aOr6BP5KS(r{ToPof-g;FfgzDRvD3*{K<{B*U
zW`K7G_n#~549!S!85TwWWp{InAfHuYA|#<)TrO?~1R~_rXV*th0QB@3tFz>d;b0We
zop1Zx)nR9GVL;nMIA3^NKvf~fy>CtE;%|Be&bB<mK6e9ZL53w}57yne9?eUg9ID&T
zYcpF%R}&#3yo$)@jmcb#1q^{niY4QXnHWb_R*_92vH_cgjKf1BMKeps1#W^ASAke!
zgDOgfqckRZE*F**YPd{h&R<50lm~>d<3VEY+=rz-<V$oqGgL(D5Q6_F@Zi^n(Iydx
z64;knLardFfRQ6?q;31g(DLFcqN`=J4Pcu;^kzsF1U3N#cu(Rc8?01HEL+LwvsM9U
zuvsMJli&;gpjhjf%t&PIGhK}TvX|c_#;(UN0~9(>UbX$x?_OaXjm=W$qhty(RKEuD
zv{b#KB?0NJ(z0$dxqNKBugpa!piAl>?u?~I)X3f5Gi6Faun`B~YfB)uGTH*oc*Nck
z4Ki!wcGh5y5I=flmA*Zsl<?U&9ew2s+Z)G=EAwhO(I`~zqhem=GqpiufiO*kldBJb
zQEtI5DOd47z68YZye{cLuDHC>CzvCrxEWOEH%YYp;rs?pA6Xac0sbVAG$=0^5;Z14
zjQ(ucKiZrON~Q7A!TsjsQPFU}Vumk)gUh_TpZ?YVSZVBD1oBcuiVT>~_H@;V>qDE_
zbXuoCG(rz3a3K>E{0e;k$4wwN)p<mB>w58=#y0bEG)<9Q8(yFLFg1+tL9fetrHx@W
zoy%|O-_gKdI#e+FUvxVEompFM1BGsl*gJ!Olc$u+hq`TlLRIga#1Lk4WtlR*nSQ#O
zsakhDZV8x<<v(z(G&Om~B;xH-Dfm5T(JV&GsyOdc`3d}zRImYzf#6D)&jav`lgPVW
zvKUkUi}isZYJ4;rlXuHsfCz6BKK>ON(HgZvAOS+nbri*hIHE{~<Td4J=U~3;<(SBy
z0e|OxRdYc<Dq!?DLutI`G&@{gRY$5DT3KO&8e~pi0DYDRCZo@I`GOG(1`w`YB&!ub
z2M?XVvdIprnF=JRL<K8H$NT5RhwYol3V>Q&d_x9#;WVs&@a@xw2^Xw%w4(iLb9G@0
zbgBy=#1O#APR1Ia><A0{XW+lI=>Ld0<ufITe4H!+1P3f?bqRp3UIVdMr}WPo<y)mJ
z6B29)aN}qxo+pOa*AQu{01sP;K(J5_g57+T;o@Mb4FyqaBy#ikj^PF%Oeukqbg7{g
z_<fHpjFT4;mTFj+x{d}3Kp3LBp_jyYF6{F7AMyNDNH0(YQtqdrt3d2%h0nVg1I%~T
zLjiIK@K_y!^g{oEHF^E`h8U;56u`)HS-v7tHM-+0!m<q@)(YbGWS77J5da{w*o8+C
z07e2xW>@8VomzAU097u-X$7iazY99wE_mJ233eNHi7VIz#_j1#Q?hgtL{@NYv%%8z
zU$rHcDQU}~<GQR<BZ%;F7T|hL>wXYwSy37%Aq@k`E{Ad+>3I-Rg7bmGk^jkE6M;XV
zh^FS~cxXHlzD~D{=o-wSe90*a1)09ht<m<=#{+T8F`p@U4iYG*>!>^<l*>3wc@G+}
zuKko1Bt--n+N22K;0a;++jbB)E;{daXQ0Y|t$_Tms`)W4_fgqCa0(BGhz%L%5dj!o
zM&`yR7Tl>vWYrgVlnebA4p8a=K!eYW2daPvc2Kck5KJl0av=93IiI;F9|Z<~U`1K{
z&H|1@#+T{M>Ocwg4EeuP3f0tu1_~61U>Atui=3$L2M>yRg!j4`4!pC(da|V`xf_U*
zjR>DU_q+YV*QJ4A0-U}_o>fvoTE<Q4(I7%{KiR&#<lf!|lU89@nkF9&6hHLe7<*Y8
zQPF!pWO+B+AXs|4r_hO`^sQPcsel2w3P@wqjHBEevIGbw|MzGl!RVs*vweUdzJjeV
z^lFcL3#e56fc*-^Mb@x%bFYFHikB)kVD+uQoLoV;RPw*7bnOZKOs(|2X5h+fi2#7C
zb43!PLBHN!r8mq-OsSMOIfLyW%YgG${*SRkV=yldK^tnJ+UF`$drqba5VIt=@g;!P
zM732zHGbkMEmBb&9q?&27{?_G9fR?2p#}F!|FPqAeJfB3dDoCALEq4jT%@-Gj6b-x
zXqWwJS`GO+;~)}s`-GloBKLu-jE9aL!%>pm>y*#V+fkM2ymrS3q$9b@ZoCi03h;U(
z810E+r=SEOkEDcsAj9MG>*4vfAcL*85Gth%Oi28Z-Qcu{shGHzS`OK+zEGq>K5j*-
zUQ00vK7T!hS&5*RTa8zV6<jL<rAzWWQHp$oh6p6%Vp<rE!zAFhz|2;o<5AO-#s4G$
z&A2qwdIKCAd?vJY0+rkiF&cw3+vPtRX<Vgif($l95Fq<8QqqK$jt2f86Lexk5brXm
zP7eYwZ7E6-9KXc4ywVDyZvzwBz^0H3)V3xA5N~XmSn!q2?ArVHtW$yskCq_+><vzO
zTgXHo2};vSG6N2;xtgmeT!afEHBL-up$)~8Oc;bFrAm71OSXh0@U1x$oo^E}O-3X9
z(eROKMBfQK)tBKu1!^hPl>1Zf3SPVbFJ43`pN-+sT8VJdNgQpLa4CXa^=og<d2GJw
zesLd>z0AACdHd1T#@A?9|2L20Up#6c&^P0<3vo|qG`c4=i$8<(P1@mut=u_&s7Pam
ztjRMGFV3nJLJB=nP!A1?FofKH1b0(s>{{*l$kH1=5}u$4M-V{94|+M<dU0y3flq7v
zYkTi0JS~^%&67~KZWlTp6iNR>#}vxw5sQNER(%$rw|{qAb+UbSm;JwV{)8OHcL42=
zXw<wPBuM_T0}k%3-)-*q{0hC>84hHst}`soE-%O$l-?B?!dYIyd8p0MGN<-6M2doE
zu@gl3guuh!_HPuH=~)_$3-zZM^_OLH-dQ1ft8<#q^YVSkb0(y`@8J<jX78-6=u6}B
zC}%6yhP1f$KT;VqaqSAf&&{A}Ez`%1i$hhb$0|(W>{C&RMrkr=xr)T3A|B3vlV|-`
z+Cdu9nv(Z<9D0z2H<MCZhcw?`;C6)cF$?Q6ys-5j_OEfH{(*J@IYj6Q5~uV+d;MS0
zuuRdx!#~uO1o_(K7Yk48c)sya2OeeYj(qy_+@p=!$Ug98dvxZo(`x&9noDc^x)5#^
zd(#A7$^0m$yx)1UAHT}Kv0TkJ^f-<Byx&IvkwYa^Ba+Q7+*svNZYPCj3lF99BD5J2
z#~u>q0)gKK{#IhG28A!{Oy1Q&^ZB40LQ#FiLwH`g=Z)}#0#xFg5MLX>?Vm&I0^?z!
zQ|9GU_SeQP8pGa>gaEdfXWvga&jrpDzZ_b9S<Ld%5^x@76n&-8=WD{iTY1L+O@90<
zfzGpNtc&+qfClV~*>q6b%jdI!0sEpMLczzUcS`KXv@TBG$)FL7pDVXMr_#nYbL5;1
zWrMVFg2Q9+{@Aa`a}|P|7eo3yPSW}zoGD(a<eS=O7Ks7tS#*<Zl(mdoLD#MoN*FA!
zYB;a$(ebD+l)ppQFJ&_Gy`0P<c2b9pb!ZMSBrU}-yB{}X)+Dfg8eHR>f8N!QeF(T<
zj>_u>MT3?9>J53&W;0q}k*T1(&{z4DeN0?(?oCL~5AqkPnEe^00vV+p%@-ePgTgB1
z^{Mjc5)nNaT&dN>iz6sBCq~NrygD_5QG&((m5~~prw<zv3L|9RJ!1^Xreu)kTvi&C
zoorMzJCHI<GMKSo;%wtRb(tI$zj+nD75uMxDW(8y%)QG_9kW2Jiif+(I!>L7piHA(
zyu+%xv80t4rkXm`l~lbnJil}V)}ESIvS3w*N^7cVqOik=H%;NTbA7Szs&O>!3kSq(
zYb8K6Yv;3Q+jp0Luxja*YgK*5j{SW98~m{X{OO<W<s2ejq#REl{t&5$-|zeM_k-b5
z6FkyqIoxphpx#)qFO*m5a&mOb8WG>~QZongk@*U&h_?LD72#_Q6yBppKSw4bR#xx!
z@!70$Hm}CpS#zwZQ^6ztyB|-jSKf8JTOrU1w{qwJro_e1KD`+l$!JpVWBtq>zAA|u
z(@8HuxoI1eYLDJhul?Dz&8QW{heBS~>8xF^`o6wrv-I7;rWk{(2{-vMYi@}!Kjyh;
z?lE_MXUaBQ-_Bg9U}4$66B?w1BI_BR9c_rZZrD&;i}%fz6RzZ9OczQrA1k4D7B<v3
zHVZ)Dr26@qqALvDhBsZLys^(mJ?t#I&E|4VK6Y-%FPPn}{(4YpzDzN{38+7hN0{Y$
zMsj^c^KAoi##aUIV}cQ%r|xOp4tS>Yg<)`8Z`jjh5>YPtyj&IVVrSbk{A<eVZO4so
z+T*Y_OyUMc$8pfC*+nX3$22_fYc7PUY`du(E3fzbjA1>2#Dn=R>@@Ls$M|g~$qi$i
zMl>tGf!c45=p6asjM|m5ao)mP(Vtp{*V_Cpw{~tN@Id9+9^0%hTS+8ZgFW4I3|HXQ
zd-t@fHfT1N*S!s(*2w-^ojhK|GEkyrU-H6|B?aXj$15X;qMupp7X8U&xZeO`xKQ>@
z{Bg5v#?LeTpP%-l{Ar50J^RL5tZYH33v6^6pAIUP561aNaQ%CqZyf?#4keX#cWHK`
z6;~6!T#ea3bT~t;dj-y_G={Pr-Bdd&cy)B+G0MB_2<dthmGx`+G3}6WG_q%R8*1k_
z!~0*^uhqj}*&@fG5yvFw<GVkOf6@+r?Ap&TpE*=|D%?9e{$l&P<FP}L#rp?LClxL5
zY`K$~pp%DLC-rBpUmu+`{Wxi1`crRl(q{4JanPS9a`hcqf1b|#dG_Pax0*lwa;HP*
znE#C9KoIZA3uoAUCVEj9=zUh6BX@AEw`i{G9|GX@?Q`<OpY=76V~WYr_w=*HzvXgA
zf!ztu>W)jdVkK&s@b}$2H~z)j9st-qh$9|XUW!`Pp6$}2@OZ%z{P|AyRvZOw{6+D%
zT|LTpBnc9O?=dnMoBMvF!$A&NB5FQ76LfrwMp3c7*j<t}vwbz9@TC;iGazev+BjuQ
z+<1r9YLO)+GVBAYtsa7i66WUjb+P;2z_7Cw*7E^x-s4w?Y${hH?{~dEV!wDTD*wsi
zFOFmH+NAC`-CodPW3Z@dJ-D_!fHXYyi*zr2>BK1E#dV2yEHEe*DmwJD{ZvD<KtTfH
zRSm9zGS}mwNqejgdfYh?8?;;Y0w5RzQyr}9rxi$O_`i}`K^so^i!`*fm6CQSZbj!h
zTp{q=G0rVD)u^@N&G{}g*+4`sMo%cKR8tSD{JQw<&o#+tBNUYoS*_deurDy^5<-^>
zVVA}bJ7U=Ut~NRJL>`{7`P;SiCh@7?_rI?Ahz5#zVIZG%@lj9-uiY$Ca6u(<Z;-a_
zw+WzMg$3*G3szWZ(%Yxh#c~+mFg_F4ab%H54f5!BG>R*7{9Vb)EYZMA&=x{^PIegN
zU;a=NmcuHc^dvx&s^p7}R}XnwqCWm(@d}-P-IC}o(KIc>+$Eu0A1Q`VUFC`8i;evL
zt|#i(KR%7_cCYjb^FirP*&tLYM2~tp286%nk?<<2{!RqJk9CpVAN%0~b#9s`z2)hu
z|2FUW5uwXG022J4ug7Isp<;^2V2Vj4Ms=V1aL8h<<4Pfj6G%hC-tY+E*bKZsli15|
zp;g!zQsQ+vHFAd&&yVyWhFCPQBEFZwtkO`-qz%T+a8IuW07Nzh8)FL-+{T2mDVF6g
zxf4jna`0eF9$eEwyGixgu!ft_P@kQA&p>7ZVGsacXwk8`6ug4;&!l6b;h}uFG#y4w
z%q(_9nCXF57Cwl`=z^z$Ib6JfEf1$dOh8fuBSaDgQ{<AE;0Q2!*;W2kO0XMSvtVU*
zuYj1C;L*q?E01PC*>v~0x?JGAx(oxdxTHiF!Y-Q|Enw3$kLCpE=h11E@3mjpuP$4&
zFL?EzmP0vTBRHT~-Zz-}3X^d*EjDS+3<GhU_m9dgN*zVsiIuCNF1ov-D>_+3`#2=n
z6tMe9@?rU_*Qj8=a&Y{Rww*KQF&`1KlnHQ!N{N)-UybNVId+jTF10fid>Ov#=pe?q
z1!OcJx`G+cl#aKrd)#a~v`VgjC7i%o4ge;pv1)REt<Jkq__Y@7l&kTRLbRD<X}Hw`
z&C&}NOhlrIE@ih3(5}y6CSx(aRlIiRbK>fF)xx_@%U(cubXeuqBWrvt0G6?u<xRgo
z>Aslttu}JInOWc!wCIY<00LUx=Jl<8CX#m_h;>%ejl5S5NMf@DIvog4k3ZfAPZ>PL
z%qb8_X#-uV)bCKbg7QRmNz2SK1{&oE{B`+n0+<7qOb)lf@N0&P+tI$Kun?k&SJ`#!
zfQbWa?AjNf;>8E##qM(q1)%|p@&Y@bO<{3gDy|JeSx}rA<gwnHTBqxAVy=dVAw&H<
z=W6d8$2MM^OUQ4LJ?~0jR|t}r;$_JDXva0tsD%9zi{N@rGidqp6Gm0W1VPLS!q`rS
z^)|@YD|@MGL8$(Nd3rn;pQ3ECclqY4N0`g!@=Pm{A@**c^F#A}dPU3-s#8EfKbt+{
zb|ggbBrWXC8z*1}OQI~pIG;^;ZV}xt2&54Z!-N>%9Jk|=ChZ|{d&LuTmUN5<jIf{s
z9v+S0tj_N{5hX}{@8zhpm0NBQ9ls%tfV$*8V={%%4bf+JfkTJ@=!NpE!7IC@%{(b@
z<WEc238N7_uYBqy9UT!lHKJLj@U=HaMhsc_382wTE_q6r{wSL3+Tecfli}(!0bvj;
zMsE!fp$AdCAzo1V_+grK8w<;4VH1(?(2U?)j;!X_##nE#7QJ2AQ0aM)hbetw2`=Z>
zN?{odtb-!4-r5|F<s!y>NN$9<_D1=xUSD>{gCJfiT%+oO?C<!(qqRI%t6lkmaDXns
z`-^yLE-ko`87MhciYE{((<|}z%q4XkjMuBJ!c9Dc)Cbb{f$<-Vw;({*kyM-V87&hb
zD5R63mzAHayP;jBETTPXQ-Nc%n{zc+<;qb}Bc<D8P^VL)TB8sfcEq9k*R}eND@5{Y
zefb5g#5dN0qVl;7m@<1t-)mU{SDQ<}fqnAe$T{C}U<O7@)SO&geilq%kg(M>Q{J+a
z@6BKiepw-$;(HP4U^m3i-j>Qoy?D1xC!{ObO61i;#OntTCf=WxRoAtfI)??s@t>`w
zRCDmzyOQJlD=a4-FmwbPVc3=(smPkskGrJG=zYJV!`vv~kDmEFMU<^ynHv*WM1CpM
zXd?I$W}PLlIJ%XXc5*<ZV<$LynJv2o1p7PL0N&fYw_zA;V!x30#Q2fZAcJ5ukEK?&
zJ-hwqJ}K)Ur?Ed;AI3UDW*y?=K8-MJ7XHlpWB%jas`~QR;2p#iA2BQoe@$*qCB6>2
z>uYNXu+ss`r@h)uQhV>pq;=PF9r;ByK<5S12@Of>&IS>vpfg6ZWgwFa$*Ai!)H@fz
zLyiOaWVzTM(!QBViN8t(ZmIECsq)8}kU>hj5|}rn7qUrh85hSr#2g-`?-`S#^gGvA
zE(uP^W$tD4cS6_O2V$-S@3{PPD-9;m*|feKLcZpK%e8>|995|$6}W=Aw|@6{{YaOc
zxu$_@J#IQM1r~_;CQHKnj1RMuW#@u7R-<>oPa&(ODhhLj<Aj=I9LB=wKc#m40dER1
zsWP>g&i@ToHU95zqmPrH!>3;M3>g@m|1q%i#7-;SAcfUnnG5|U#8l||*Rf2s0=GiH
zl<dFq*&Qw&(R^c%3E?{WJ-7lBVfBHc_lz$t!J(|JXUmft1{WnW?`E+}V|(7BA0WdS
z1iwtnBV{PYpSWp1V2xW#dlY4s>5@QMffFS3hYt99MJrv3)CE}z``|r70HgTE3QdYQ
zTtW>NBjU%6Xk*L@{2{8#v8I1ydty{C6Z5tou0z8?&w}jC;OPVJzCuWk9R&3RSU`)~
z94EBYE8$M8RaSp@Z)DZ*ePb1_X3co(L^q)vn4McWjX;e32MfNgqx;U*{Nf%nH*v<+
z<85k+FoQ~G0+G+s5^GcD=l!04(cJ5LWW!i22OUwc$KlzOvs?U_Dz#_wISzWs;E(Ac
z5!f+P@^~v`lNt5)*JWYOskML2-Pc-gFt#p7pJBxQd@iB=t|#3dFTB&j0nh-<YtbFn
zT5Gu8kehz<^yAMbSxiWbb+jMv?VW@ASYv&wBVrgyD5W9`#QqmK8MgBK--Ec>dguSP
zot>o&TeS6lw0CFl!q5M^RkTV|iO4#Eey~6x4Alzo+RgrdJe~JD)qni|&oqv`H^<&O
z_U7Q&BikW#?7b<XI_Efv?7efWY#|EK``AKO2uZe(QdCy?`drud^ZD)d2RyIq^?2T&
zkNfS$A&UL6o8JG+p`U1D5r^GWKf*pBJe(oML%)25=wfq!3k(<NfZeGXxG`6WgI5BT
zP<uF-ml)*!{0M~sv0^|bfU<?>e^+k`$%TT|>C0&0z|BP9l8~AR3F?CQSyBzXO+WlH
z)d@NMS6AR@(oFkVKZqCZ9$90G!rrqbUN^E%Ge`hu(loIW;@d)I6JK;iYrc}UX0z5$
zS)RdFP!8m@Sdqa|6s|ihjx#|r05qZY|Af8wg@d|}WYNS+3FIg}korR?^}*5QeiQ8w
zf@UCt<|7dhM^9mgq!>xnGRgpJ9;rHE0H#C$oh3EF7lKLgtv_m`wt#8w!n!a_ty4_e
z49t2ntnGBV8VG(9k_g~v&k2BL1U3BZ6TqxNxUo=c167l4G!k>L;eFo;Ab|l*5)D~4
z1+!Gvz;6tHbs}@uQX;U|d`UydIUU>0wHs1!^k^R^49@D)%6fN`vt}1lFhfli&tcj`
zHJZs$W}cep!R0qoIYA)j@^rL-R~W%MLaiQjr=I)-$X+pndDhK%YK}4%!oH2Q7QpIR
zh986cg?9#PV6U-4S|s+&8CJHR=qf1x_R#G?;nz}a{NH8yfBuMIw|3G9PwK`1cUpPl
zpHID+;S>lL(41x+!rGcu&-aj^D=-!cxzySuQGEuncx$o8)>gVH?2XsmoMdLkeE>W0
zS)#xiY)xEy9pXI;KKEl|1}q%K1A~QVOR~Oq&q}^zl&A^MNHGBRgtMCIK_`AbLF1%e
zxSv~>OO&ojlwo8B!X;{MNLyJ`|D4rDSlyay%WY(o3>zz7v__QbQ*T%sB{Iqh+Q>De
zGdt>tcMJfWp67@}NL>?4zgT^dJ3er&+YdHZxGG)icg6v&*ThxcE8b>O@~~k~X(Mx5
zm+JuY8z8|_7%*C%((9P53fq8}QNH^^d5`kLlWgVt$1DU2=mRE|N*lGB_X83UEOKj0
zEt^0s420JlyppB%a2@d5{L9N1>UU{1)F(80<u$|n6$Y5JHf^-%#?^M;|Ifw$*hc$L
zw)U-ZtqUe3*cM5igQPlPx_XbiRu8e|=v>Q*a>;b~Y;{F*bS39>Z!oh7FzYGj=&8@?
zX-DcPGRq^esAM?12u5}QtRK4$FquOEtMyHp)gG3ESC835NO9c)2F5uC_6n48r0K+d
zeQ>jZ&YV#?v++oU90w8H2JhEGL9S3F@P{v~WP(NvLne+2CN&C{v>4MGddVz7_OCZ3
zdu&bW#7*Nj5nSu0b#swz^2VFC7Q2ybMq!9+zNwfb6!2oj7f55-##!Lag#{kIskFSc
ze$z$A42Lu8s<0%tGp8gs`<!DTId6SKk+nU<=pO|5^u?%uIkfqNiLOK4D2he*7Yl2y
zLClP_h@HYh`>T~4{WWHrfO-267Rq+IUiu>)7z@;|O8ldsye3xrr-$}=rRLn`)SRBl
zk<h1=c-1O7Ep9AgQxL?p9!<ZF-mL;~VztP2qh(MWb^1;Rx{M?i?VNet{VJzsMf+b9
zF8^7hSt`(*aMvb)g|DLH75|ow0Yu<1-tLzm?N5SAQ3sN9-Bp->{N*o7_CcND`3PHr
zwfNSpB~OEL#`B(Bm6J^rss^R@Qd8lM#}9~u>4K-a*#*H@giD84YUozQnh!0}OV7(T
z^oK2IBdVZv)m`>0X4_f}?{;s;ZJETyim^e%uNsfunq{VYvO2lmfu^;96}&H<sx=cu
z_-iv~rt7+71br&DU9#5#wJavPvA%O=Lax=;4;CC#^nDWDy>Gv~>G<0(V8PbX3lPpa
zx&O}3#a`TL$H%V2O;MOXW5K3-C^#J&au{OQgK_k|<HPCgd%+s6ZKrT=+wPVXy7P+<
zK-tAL@m4`K-;>|ISJ`*m0$D?Tfdjl4Bus$LgV4L9>$m#7oIM>h?HvLNCw;uOJ!3!I
z?Mh-!)z8|mcVs2v>J`Vm2PjhRLg%tLkeHz5ogjfNMlJYoPDSuH5z3zl_kIrx%GB!5
z7}7D01dxWmTEc(S1Az*d-keuDY59+qQ%2kV_&7}j7<qk~OAlb1$dmJlpsq~5W4Cpp
zNI97|H_OU&k`S^w_E54m_X*nrHzkLa{FqXQpvB>!MZ!G{>E328UhotfNPZWV>D%=z
zZb0Pas6mvBXb_Pt{&T_sGL6gHC+f|gkp4f$+MO}d`FgY?4rb9|_VB+uN?QJ+IHQ6D
zM|1*qF)sTk=BiRTz9|Fx?e2?uVifIKlsmauvr6)=kJne_#N+(f)?wL)A5x~G{ft@x
zEvyhs>N{HzqwX)MOM`{sVw86%jJnrG6UDew5(`5I3ODc({uGp2+xJ24X@@klZ4k<_
zVBNHoeyPNGW$%Z2ddZEWlx-<ciqVj0F*<5?O5ON$w=W|veOFH0jW!CL7*%tPaXm+;
zf}pdUb(I2AYQgZ`41QYE&@Z`~XIf&CWY-v>f9NFd!nB)=?p<r6-eP)Bo0188X;M|L
z1xvY6dMQM4`mc-58md|Aqgg8yX<La*q@|F-LYnTSkQM)&Rv_cdV(DiNtHubRQ{FUc
z?OH%sc*U^$^d{^@Ct!PDd^v}fbTn3GpGTF@w1GLWVH|r}3Mi`{GcjTM`tp#%80n7e
z3gCd1w@5n>`)JiL^~-?Dv-~|s(e&4Pw?C@czn03+mVE!I%GsVbeU)9LK+BgPOBdgk
zo~sUtcs&ILm;bISgJJ79)hKzFnP5?cf0PB2qMvP=+>Ylge_z-3d%t#VtyHD8f@Y@@
za`ULWh@6k2rg!Y?lYWDBj;8nL>i?L4^dMSZWp)QnnYD9{*Fbw=bb4jeAYh`GSCTBg
zGVsO>tZsp9oZ%kp9)<myX8Hv8caN&GFOH+@#-&aX0P35<>#YpY&nczbV#Z<PR{5nx
z%~yJ}&4pqP2DkEACb;R;S}wXe(;8lU;|$gvN4l!NiZ<*}A@68Ps?0s>NDO-T+NdM>
z?Mv|;rTC;8I;WRh>YN)vN5dSv+tOSGw>SYujq{wZU)+)sn1cw3{10}%|5lG^Rq~r#
zJtMEVbc3A*L(+$u&+LOnHP$=Vhb4zNVG|cU9BVh88mc;Dwb*YxTQlH9aDF2-zO^=Q
zE+<vg2vbrz=X|;lu{wNfM&5H=+*1erZ;DI8zp-OQXkaE5U?80n)Xg<!KcrAIG?+3r
z`*9e-KSGiks!5rcBg|*54Ga|D<Qsc+zdBG4*;@mZLG^Uq5uNZX88+i4t7n0!aKo<t
zRo7g|beF|~D_0syFF7{6**k8Hzv7k>I9crGugX?c>A%$YElcyEw)aob@||xRT5k2}
z#6{Q{g<$+dEGIA#KwNhpN9noCN$K&*?H-*|P9K1GdZ;cnxD{Sk1&6PwHB2(aO}xe|
zbpu-UH)qJPJGKdfBk7ANG%I9lpU_`)G?ojV)P4GSC?{nhi&~pyQTixz_oEQ!s8921
zg6CZe&85k@_rEZ+Wtb_CAoA+iv3F*Rj)WGk#K!rO@%+-IR$YhxCIJ<K@5MHvx6pda
zpo0=&?M0dAv3F(+zq^mz*f&~yQ-+M4*E1d*n&2-)w8wm3GZ0GnKJqQC$ey@(m9ey<
zO3ulAe|d51P<L|$$~rrey6mBP@KTcl{6;#CjuLw_W90t6&^<&m?R94VxV!n+KbiMW
zrY2JB)?y00=9-mlpC_~Pb_qWC=G*wm`1FRPs}V_JU#7q7zoIeyoo@HS&!uT9;XO;S
ztGiZ-N;i@pa$-Q3eohM_R1N@KOkin>qG3A%(gXK$pYC1o|JzB2_KV+@BZ7?JUfda1
zD~jXqrWt1F^BstnlOc)YnyFb2_N0k>LkrvAPk|RV#jTMWDwfw{auVSyaN!TP!O?9K
zONLTcphIXZ6Nu^19SykZ%e@bvpMhMs?SIz#W_7g3aMiT(X8*mxKX;LXt5VFtYb`H{
z|BhqnX~{FUUjz83S1+fh1Vb$$ntTTb>2{ikE6>~H`~-%nBY-*Iw{*H=I_>>;)!#nl
zwuw!HY6Oz3>Gu!e^fuZQA)0Brp?_{^AG+OUZ00?=f_#@oem~P%td85!PtgDQ?{ZMv
z8oom2^=tPt-@n%+3l~Q1g}lpthRL>>e>1C$f%a@T44m1*34yMY)!-?vS|>|jzxGh9
z1Anc@A%)RCV!U)H>4g1S_e3jEx%o}CW~nX8KwWPox2bZRk<HsVdc83Qe(KQ-{bh!+
zfoZ+l*;VYI6bkN|X*YL~O{DEQay~c1!=?(2<1Q_w_Y$6{-jg)D`m{JWmPuvQ*UXTW
zm2u!4+&B#yo1w&y8PybU6mb@}5?_E#7wMnhXt5+WLoAq#<Li_rC|})Ou>X+%N4o9X
ziBQm?_4aMY$K<`sb=e(Ltnxn7RZRgK&BYo1=?hyQ6_4_}fH*RiYa(hTZw9Y0j@!~&
zP+ixu%Cc21A?fK8IiJ}^zhjZf61BTOzwRB2P7`$>GfMlPh|N}+<jeh4tt6YPwGOa!
z%gCI-gH>PLQNyO%=#+`>Q~n_7J}dNc3ku(k?C=I&Ppt3)D$!<O2`~RzV=+@m%}Zry
z_7An7L-ziHuajm0jIyi^@2PhsL+1}Z0zF0whQ^}n@YafduloDUhJS!Y<;Am;E|zKz
zN-BzHn}aTtzO8iMJ^prhp?tJvP-amo(Nha#=N!&K;$9AgEk_tvB?gz)Y_7h|PxgCI
z>ihfq#z^*!kbfHIC;J~>{Ab=1J@;D?nmUbf(}S_zu6dN7Zi69DJlf`q`Fm(kcK>wG
z5N=K;cM2ykn5ghSVsVOIxA@*?$db?&htQ>j`(|*6auBB7M9CsU@f5VgFU3iHnn!Ml
zf^Wo7Da!kug6W#)r-B)*{uH+}^f_aMvWz9VgtE=m&O9^qSjmNR?VMtS^Bn!Vg!5hG
z#HzzwpQwrydKJZp6#3Q1@E2G&or#o$jj4*3MlJh!7hnDO)FoPW|NKmph=c8~Cfs|b
z+!x?t0nn}Z&oSeJ6*(3mPH}Pg(~+zq$H1?eC5rTk*m>WC49uM|jZ5B2b+UT4ZER9k
z{oKNT&%9yhy?<@j{u7^aOFty2MUa32CiOYCBo=Nle=G(g#5Uiycpv~$9i-u$DWE{&
z(NKp6cY`0wCoJpmWsGf3f0Dgi3y>1N=>8roG@)eEb37*S+~UhOJc?YTAa?Hgd=~P+
z?A%@m-&u-Sdqf6X8AP^gXO17TGhG#jbf3X{Bu98c3Po)NI{|@|Qt;Nskn6&Kvo*=S
zwlPYe5k3rBj)n(Os_vE;ykfDMJ*Jm<(G#Y1rCnAmn-fh0fCM;JY>}K02i9LMw!5AP
z*3mRUMN8pYqV%HkZoJ|{$^qO6C135dZoS-m+~7N14w{h__DZjpBQXcPLZgZ)L_9kS
z=?Ir4jpgE>7>R-G1H=ee!<Etu?5ioZ&n~Ldo*9Q*KuKrGMF013p@hYf6k2d!&3h*j
z8Ety10&g|dBi*gwjt3{(!L1p=Krt2N?9B{1yFcuMo9(KisPDZR$2!0NDo0?sJSKs(
zNQq$}U84*HWbJTO<b_6m9s_QF_A>j}qyfO$Lsh1~utSA*b<PS|rU941L!V*iO<~{v
zUUa+H4RUNM!+n8C&X($Oo_Hxa*{i4GV}Cd+q>=vgC#ZU*KbluG#8_1~^UI@G|8<@`
z#|kOvpQrHm|1F;uN%=AQB5nZ`KH3~DkK*Cr4b^k<!h0o*!e`T<+7Jz-A{2f50))<F
zQOUqvV!>c6TJ|s%htJCb&?W)mU-k;)sGL(7BYah5om&K~nDJzFMl@k|Eiu7y9*>`j
z_VROwQoK<ov8^c)zyttUgi)UZ{YwCfgoQHFgTX~%5adfBG&)dsYjH;2x~BsAsR;WP
zgV4+N3Z~{D4sq22K#vJ&)RotE;|+tis_1YEyigTCL!A*j!kT*RsFGqr2N@pOrbG?^
zi!!Uwgm<Qi(C2uvT>UyuWI3hB)55ESTk}Rm=Gv&G*tZzmjk9lc!}BYIw&lotAdJjF
zvdJH#<in1Wp9|e{CMm`x6qif``$&HBxFTqpot{K3yv%W{Mmy#dC982vF=O@ttbhPX
z`Xa#rIsnSc+P6M#vqYY?Dl=!2N;h>R1vFQ5;Z$tKUtof>tK|_H2A;6Bc%0*IB+Nl@
z%=VMXviFkm5Y@Ujt@-;$I?h&vCyrvIoH0r>d~g+}#1CPvT7yXHVaZHdAO<qmpV*xL
zWi;4xktm!Zv1B<!Xf>wZh7Vv@Co=#XDH39|SHdwD%rhm6eHKd+W)j#~2h&+@T04@i
z>|9&m4<l{&Ozk*6kWX|pdreC?^qx<(yh(3N<3XC}tYM*OEHu!Zo5C4B_c3F@6`Ub1
ziaw(ANShG~=JBw9^#tJBiBTF>$NI2YVg=ga9yvS#*VX5bqYo7M3O@z<EG?__P2Pb%
zQlyloJ2GbBUPJ4re2Z+jKrtioTOyKlDYr}<-tWYNZdJV{ud1Ias=5m}V9|^HoSc+K
z3wR|wEgkZ{8rV>De7%<cfs(Zf5blfz-p$Q<Vfovd0nr4J-QvA}nEaXb<W7BH?Y^BL
zXlZA`KDh$818`P@6r=$=<j<PCf<8LMPrN{MeUg48e+N|W#L~d^OgbjHev{|Qa5qM3
zv<9k1#6zX$=`JH~Q1@pgp(#N820OKyTz|GejFBl;qwK;G2wI5uVc+90Rt{@_Dlk*C
zfB-8f>3JiabiNyr*YPm!a4&ON6@x^`5BLVz00yG^2QT&)z`F1+I@-<AlDx<l_ZB?w
z!-D|B$4IKLS+fRo{7k={BUP^GeRZkSL?T4KU<U&e`*iNAk|{;;vMOV3o-aFBybLIu
z52RO0_lAZ(9R@oSY0u8hJ{YauY`**VW~nR?swQb#^%&tNOVO(6ls!bRM%q5dJF=F1
zi(GIz0#cn=)q&wJRns*AMy8x(dun-E4XJ*H#p)%*bI-yl4FF?u-_?{-YkRqRl8s8n
zt))YQ@a{qlOB2hY5i;%0kf$}qFwrROcb2IXx~dSCDpPt7I4~0LnEv>t;EYFNzr%yK
zrF24pQ|2WJINVM`@>Ce-Pm5!1eO`t^THxmW-v-Q_cFS3Z5#r*~)x7~)^0&^Lzr0Cy
z<IuFADXMJU{`zf+lHEP!;XogBwWX6iPzy`R-utC>R8`deX%s1DD?^xpl6oSzIV-Vu
zXBK?Mn;Q|rLPYjmZqYuk0V?)fMSQP2-6aQoHe`gnnXn3h&S#d0i9`bAglhV!|C{+$
z$>jmQZR}?T(?0E|T0fGm>l}Q9{85<B4~;m%@=0M4Y=gyn$5;Q{rvu!7#YMP(j?L&6
z|Htz~Hs#H`>bq+F@i*c=a(6J9(OhW#o93G{b%Kb8$|Q0*l&0M(6t>x=<?TH7zt^Gk
z0}RKAx;8Ib+v3#6AL|^Kg|s!;$Sm(nJaY5Pp7R_0mw!8MtvvVJSPGq6c{`ilRxk6c
zFZNjH^Zbw7j>OM>?R-UwMQtgN$VaI9`-97c$$$E&#oGrB+>&8c$V(a=c`edk3b4cS
zUV*Sik%w_i#Q4{)#kHCN($MtcaIk)k>Rv9ZAK(3X!pl@0x>Ox%B~0cF{wF^iEn7;~
zNJAM-P)@vU_Ngq4W$pZL8G8piz1sAD@2vTl*V#`$AKky=XP43c@yO*%k`62f0In+M
zWJNv9&~p_7-1Q?tE?KBh79Yd#|0s3HEO;d1Zp)nL@`abt`Sr77`9w<`SyFDB5_P%y
zNnFG0+*(K;f3#?Z9;Kx&$4<gpm1UC7dTXe_zbI?oJRCy;mddi6{wu9SH5GRomV4H1
zMPcJtq^^Awi2q3+*qR8j06?CWLhpT4$r%ts-~I*_cv*!d|GB2c&M!)>C+t}w{~O2f
zkH}tI0g&UO>BoV5k@6~87fk^8H$v+f{Jvu)bp-=wy&GqnoA^_AKU*$=*^l&tyrS(J
zk|rCVPjltf_LYA>a@23C8KBe?_;pyfEK~ToSFZRKsd>0DE>}t8Kv@H-MK_VOKCy3Z
zvI`}NzR0QjdI9_%EI>Z)6k3ix?z1k!_oO}wq-PsV9}1>pVoamzJJiZt5>(=*HTcwS
z8#UXPcW_24L5rm%xQbMnqCgm_?p2d9lvy~)$Qrz~=MMSp4&Cpw>Ase)Z;DS7C^bHq
zDFV<+fE)AlU_v!|2dI?eg-#PzZJV&1{6IbYxphwOwSui-KTcJ*;1*-`H`y(}OCj|`
zDy57nEfOy?ue&L%&or;<&7mN7k5~0CVQJ7a9s6fq`w-nMoURgn+miry9tYVj0;-T0
zUMl^a0eydA6D5-NCy1~D!wxi6<IWX6s;f-k=lTThnQxYe(r~Jwm;?D<79y>9rB7d+
zg%nm##>>t4_fr`N#n-b{cGGn{fJ~U2nt8vPDkR+7djFZZ2pJ;=uR7?h@`>8++eVB5
z+}mZMhGx^4Q!wZoMlxsia}(|Tf1ILQF866B*qv*nJw=t?kbyKz1z^B{)oR%|q=BVw
zjvMgd6Wl}m+JC+CnH?Nay1Tq}*ui;k1gE!o;O^(`&GKA^@GKpI$XZv_Gf5Y-s997}
zw|=<mvlN+|-f4Z_GCEYA08r=x$AmKvf&{5WK7LdX&JCd4pRu;9qE{h-F#vV|t3j|A
zc?W>11W8$fq?ledvqY2GUXkjkbzq&>+FE2rGxpOwn@W8y8N5Hp+q3wuZwBq2m>)Lt
z8FO#-9OXngSqoN-ewqy-dc^G{A300R!rk54`de))JB|7+loNiL>w>7uCPTqHNH9+l
zIFgmha_V+<4jHmuwuO|giOopbDOnKDf`Lk4erZX-r~Be%__~6uI#_{tWG2e)*{(5R
zuOP2Z6(w%60|vDtDb290oRZ_r{&BNU+ID;b+&8sYu(eKrx@L3dqFRxo4M-eNi8>(H
z)h}<70RBHFW8#*JSwP2=XWm<1(wva#SsT^f^|jsvO2{Cjgw#_ZF0aE<tmS52vY(lS
zuDo|8QM=$!qqPr?Gk9@*walwe>61)%kLQ?cc=oi8hf-q1X+7mZVA-56msp)9ssCRg
zv%Y7%UQawvrWBt_pGl7>t1pl(8kn%7r^*0^SD_jN82QEVVgO0Or+uh6ePGLgUItV-
zDW1<8wOa)?zb@AqNpo8^8TJ97wy5dCrvbbu?Z9$L=peELiJs6Eh7$xd^%QEqDj^}_
z6@i8_K?Z>kF#=O_MUCxK$R`0Eaf&80ZYpVoqWON@16mo5FFyBYQM&B|x)8B-ExhWI
zuEv~{=ENXqE0gaeaJnjJlM^g+jXkFrRPU0ID<M_f>z_)%le)!b+oWF4^a~eU1@X0{
ztQSFco11o5<K+^ui)q2;bHTejoJV-6ALquOFA46%1pk6z>%au|NU~d<kDO12$gTB;
zs}1~&5&(9n)0AO_t;HS{Qd6p-ujThn-{-&Thscf111a<`zU7h+KEE9Me*c_k;oEGP
zG5j7ulJZXg>)bFWe)ru<cTdzg>+b_)<p1mcew}Wh5#KGv5Ws;c;AhC`gODHIEky1R
zD;0|1K=KI4HOSy7B?}Rcz)n_$PQt&WVMFgGwxknVU<cGx0WCD25y7E|XhdZ&eDwa7
zAq^h|-NQ!8%@#UIBl^u2#v4D%z8qO@jfPB6Bqk;f!^oL^j#%VnIcBaXSOQwv9)^vm
z$g-!)a^$yil(in8z#bE2xn8w${U^(v|CoJ5mghq&&u3ZQi$U&PS-wB5d{?sE-(}%+
za{O#<{0|%92g4PEeAiB)#z>f`LL2+q*fY|Tnm|l0GdABiv56gDM>L6v3>UQwxAEQM
zFO!pKF#e1Mkbebzn@`~9{q}<Y(NN^<D<K;PU#g*=v^)w(6hGtZPO6(5$pMTJv>eCg
zfwa6i$p2KH-GrER%pra%2!T040|jelNHglc-hZF9DL<6YJ$VP?wlLW?kP;mpn>OH}
zq>*7ul~3Qft3)Xrooy&%{$9g8?30Za*MQc0$kJujvq&W4IN<~KD)psNgvM)Y#Sj<u
zTAGhy&F?aBkVFZk_!s)O+p`npRbTT4l^h2zx~gw3tKWQ)O%Op;?ClB_n%7R6w<vIQ
zMoO;G-iX~oeuNy_CYap>8$XT=Kzn>AwfxYW3=F5E5)w4vQ?wRLGDz1^wJE#^%^=S;
zU}qTy(1_-8#6wDNQgx6qmRtVPatZK^Qh&wpiF=u&FJj0{F<1YWIo49Lk)EXhq@>Y7
z`A$)EmF_er!#o2EI|;czW7aV<PTMz*`AAQrI^$caxTL@(N}tIP)o~FAXQFI~Yc67T
zqr*HJmvf%cUI((ZT8b{LN{K4^<^N8V>Sz$K*XXeB#MtlyulDQTSt~O1=}#ZaxKPU_
z_4(hn773bFKLAf}z0@scmbc^Q_%i40MQuJad$a4M(mROqOoTd)DY817uhAx|A)BGa
z2H44@GZ-iw(-;^m_j@io`8U(X9gx=cr+eA~<cIKZE;C)}IWmPgJ$+_LE8CFUb0GoD
zUKf^eJ}E|LbD=kwOk{aXDRE2*zxll@{j^mGH!1utig{)1Jt#jU7%w;w(V=I>-eGw@
z&`MRp!fPo~K%ZT->_YSsOC_A0Hk@y|K;@D3Kxz{y19W$&2mRnz8M?Y4;cZ^R)L<B{
zGd%1AMm66)nn3QIA0^%u*$0RUtIbr-cfjXIyV&c8USX*gOJi^qd$swo$+QKxOyatf
z6~ASsjj)^j%;&nyXNRzJQ7<xapp$oVhy8WqW0nd%bc$Xdq`06{|DI;jiSx#xnYvdk
z-&f-Ld<e?jl?@|=fhvC+m%Mi+*{R=S#|t$U3KO#{EUQKG`T)hoT)!YnDVyatmqC3{
zum6m@%{OipyL5NB6xRgZtEFKs%ynug=e#k-(@?!~FO8#)#-q0Qr$P$gt$k4wNA~k-
z<xdK+0c2bcV8Bj}Ta)lxT`mEa6K&EN_wvpAJ6Je7{J36y+IY2X)|zyy;knNfvXW}~
zqSrLQ9&we5SYOd9z%%XcH{V}Jq0aBwM~|}9=)taV3wAt{swy%jz^QUIXXxc<t}}gt
zz<@*ML72418^|}izPppICJWBPVV}0{^Yp)x8rR8RUO#->aP6a2B#rQhsBas~(|_`7
z{A{lNrylT`LwZuQncnv)U+7bB&$tcQ-=<jHrcRtDHtxd^=)igPzf+BMsOv7J=9eF?
zLw1*Y)vNm*yb??5qDZ>`9$(w%9{;DT*iux+AXnCA%%3Pu$C05Y--xWN+A(&&9Txn#
zZlF)>_hYsV6@dFXpzSX(e0a3XK=C$4^~*kFwdtO~14N0YdCIY8<eEbzhH6Jg|Co!4
zcMsB;wjH6R^!*Hgx}0XyLh1A;`;=AfI_jTXtx>tIOVE~UQ+Toolrzfl_ul=xUqow|
z-uwOPK~T=$s&OfC)(Sydtfs++ke0o$08qrDC%D0zFAJ<fCK-?<5J<B%<lv#*CLq)=
za46byyDUMyAJ>)Kx$#GBGk@?*xhYo0eGcR^1mAQ>|0g$wQcwaatX>^NJp2moL;B))
z2!>U<@%ZwTe%ined{Bl%Agf)s047~hGV)O>c^#u(uPcRqQ^08M^^nTSPmv%+(m>~H
zcLN!6`}77;L;Ax8BZi|!Z;i)H#!V;8-kDEYOx>KeoUxj<eqUM0Id8YX$(+@Y&Qeap
zPN>w9?ANSf$m_`yEoarCVJGVr6BM|5AxU14)UbT3d_|Cvo`z;?gxt4#*H?&PRggJH
zGUSI~Hj~f|`3#JZ`>SyN+xi~CjX60Dx?t8ghSQ)m0uDpVnzBPjEC;?1wR2+zxwA4!
z5v1LxNgnZHOs72ir?Nt?vUqRa;ZLmk^jgj+F|bOnYM>+Vqgav~<#6?D!K0Ol3cYV*
zs%lJWlxLw+#c&}UZ8bJ(Y~QZYu_JhUdH%qm#ce1}m`cK~!JgOoNWBFFk-o(gm3iwG
z@lhf3mo$0?g$&bakmdE-!5T1uOlrMqsL3D<8DE_>hr3W}{s{<C&NMUVFZWt6@HwIV
z;qm;Ni~fVp3`+K|B6Sm}-EKHvEuN1ebr`u0tO@)-Sp>B9n0+G>M@RjK$a$WhU5o-5
zM>VOGR{}|9QWQsK%n**V3J@QKM?&U0EOM``A=_0Mqwz_w@CCOe@Z@|~%rf1mx{?$o
zxIso4s<J&McZ7s6*@o(naYY{KPzbA1HQCWyx?OLO762ZxFk_QB|8NWXK&jXZkWjYT
z8NGNgE8>{~e~PLbo?HR5-UO^*e-2?6Qt8K$#~rKzA4F1Fu|b?L>jXv%igLU@Z8ULs
z;2ATS5r2}#Mk<S3^z|Mp8g6DHq1e(^gpiIVf>|uNFhi`jnLP&?Z<>WMaQL+|jL18;
zU~o(h6oE?dM1F;$t4HUT@|OK6?cNMv=Qa6SR+ECYS<^>M_@v)0m~XY?ZKreBcU^J#
zJH?Ofw67&Kn1I))+AWc{!o_jn4CGEKKs;0ovo3(L@X|3?`oz6PV3k8+fK*Ov38pvt
zn6pdyMUi<;;=D*?JToT6<UdL3N@E6#Ju!!5OF`SaE_Xgg{c(xj%vH{z6mN6`K%xo2
z1V&_}Ey~Ak(E<7Z2KV{Q#EsFB=NBP@$c!o9|L9_I68lEDFW)R7Fr3D`0btfzTLaTa
zd!EvV$W5YEQtVdI1b#j(ovs|ae}O;|j7ncWL%k~6=aFJ;JP_vw?__xVC-sy9{NS5I
zqMnyv;>)YCqRG=ex^4d|@vX!b)pkL|H|9?3bo2bL-;GR*X-gP(9G?lGq`N8Ck*tND
z*=&x;+w4XF+02(w4_<S2{1y%yFJO?d1hdfxuffQ=w?8BsKU$-sB6B_kFt+Y}(MX=!
zWw{?YYpVP=a?WO?$`zK0j?GXe${eYZ4Htipat=)2B4krtcrio&c|&kv+RZ%4i_oId
zOz?sX7PlcDqjhfl#YX3kJ|P5kVVRh|6$5Tw(_Hz?q56;EJGmqFd~IpRHSvU}_31s-
z>f<Z=3%d^wAO5@ebM+AL1Rv#Fi26zIi5+k*hg8Po1HmfTiNmkB3==pbt4g0BDh)b5
zfVm>qJk_C3uq5ztV<ce|<j_oy|KIutt>}#6=&oD;=nQST`iw_11UK?B9G*SRGEq;+
zogp=PusJ7#C3_SbMSp^&OCds*NUpDoPW!;2fF#Qt0T#_pX`uwG6b~T}j(43D!p$2g
z0iGUQpH2-_hON>fG+a3CbPP3itkPq*Jox^ejwmnxaK#FF^3%i^p+u}RlY5@PInIoX
z46L)Vt2~9Lz8IN$TW1$<d5UVDy=}$FF_Hsx#C7Ng&CRe6zFTjL8Tpym=56Ozr)-O>
zVc8qa0FVZSA*q|HiS`2g;9NcYjrizsRRN})aZhjgF1#^WB!G*xb|VgT1qbn_(lDdo
z&w4ud#sa);T*xVQm%6h+qDAiRuKc1(?_$cvl8A9=-x?JLoP`wv174iA735ueW$-1t
z%%M+|Q4EP^x|E~38Z4LRIk!xN^<|<gb;wsUK(w@Y`9gT#a7zn-@g%|(&LS?RRNtKK
zT2YxR_Qh_2GB0OUqzX_d%HzJA9{H?|68<GGhT95&o3|DhTl0%)oSg+;=iq{00I;1f
zC^1jE!lqh69%|f01k99uFF{dt*Nqgbi8Z?X^%u<WAMZ=_YIMx-5m=BQya=w4K7bn<
zkk2sJO_J-~!sA>tXRHMpE32ZLyzFRV(FQPUabf9ad93FaSK__RF=#OWNHY`*UTg*w
zNb|bE*055{Ye0HLzfa5_@9F&-fJZp;baHcX7ju)nc&HJ}iIDl^MhB!D^)+!Yy?KPp
zrJDx?vEC`38C_;>YpJgBmrizElKT)flzI?qZTk57;N8pC?>DuI<vmQe(_T&UJ)-J$
zV!`Yk=OC8R<^D0izMAao&fZ`_CAo}4;wz|C?e_ien9n~q`ZZThrFJ%AAuK1<UKj5q
z-FYrC`mmoIy^_zYx$^Pf2d~RA3BZKs848I>SOmvu(fvEE&n?U=L#2JEAn2Cof8U^s
z6<n}e=rzFz6<mnr5@JwoBAul`#qg?y{E2u2`4G>Q4xJ|!1~OXPWZhEM+LHjnas#*Z
zq&O%M)?u6I%QVqg$1%+}p$St4JA4mM-DK!n>5T&AnJSkCw6nOA8<Klymf1&iG04f;
z6bStbM|VG#3AOW*R#oM%Lx{vMuPtZv&y+)-(k#&#YSGyOHR2?b?_T+zT;G_5=-bM?
z)mD9#AgUCT2hWD}mo@(G;^K(V`^BV2!%9E)h-K;|PTG1q8aE92>x{IxpX5*Og6M8s
z=l!9FIU@;yo?^vIh6pkWZju!1rPnKyGg6L08-N^gM^>0Zyyg~?hKz*Cuj<iL1a9D&
zJt;ssiiR)?`q`kr+vvBhF9TAoh%85BD_0v@Fe<q%MC#T$FZgJI@?I@g>_omgS-&3^
z{sbz`ha10?xC@))dHL8-Bk=O+Z|_O6Alymu^8Op8g7&|F;8-q7vHX_-bQy<GX5zxI
z8i8U>I^^D_9%MNPnX6-anCEi~K>*^Y6cq90e8ew&kBQx~4dni58p{$sC^Pb>GG!yT
z^dvj8->OF)Gj7H0zQd}`q<%{%6U402XhEPDOK1H!EY*MBgik+cKfLI0*$?3}g3%(~
zS-9aUQKYWPTWccK2soH0SI*|Q#a%Za*W=JgPhbW${yzpCRoB`$6Mep%D^`>?Ef&Cd
zq)sseFK2ysM3xgihnKC^V%Va;nnWrML(&;{PL51_+1SYnmxdl}_Z$D&S#1wx|K(;~
zpv6Un%FtnN*J9vc>mT-`1AjDqC?C5gxo=w5yuK;<t5XMb;PO27XS&ue-spWmN>~_n
zr7<M(2!C_wO7O6_Kp7*oaa>1B>P?^NJrV3}Dw5rPLB4)OCTb#n&XjPmsco~_`*Bfw
zf&xf)Nur+?fuMocOabyxoDzF3IiQb@S%+~DKi!8sW~Uf5dc}E}0CQHAhs!czaCC6;
zzbbvqgFWvgbp^Qvt(*W<1H!uWax4YNmIz(>TIjj)D-JF!`4;=jS|XiT8EEmjJ_05L
z2TFQ?Xc>XxJ!BQ53|C}~cqtT+Ul5qMrj-y6OW6awej@IL#Vev9YAc=6p8e|1yb3*d
zQM1Ql3WMS)#X2pzTgC$(RxQIM?eR{K95;k*np)zTODl%s)g_pD!frtHl(DFjdo@zb
z1A<0COp?Nn%t89T|14Larl@inRdQz(Zft;!1qr+xFTp~pw(1&ko*Vl5Wk|xm7DzFK
zJ7TC$N?^hcX`u(1FsY*e2{)mB!4-pGZhk8~U-%-eb_56NYfji4yK=3#6nlfzC7ZJ~
z%vp{M1fh@ur-~wh0t5JnmHbpISQr{8a+w(kEUu2#5}|q`8h~$<G?Y4`bFQz|KOI>4
zQlN#=y%PP%=E9wRe+%gY&V617`#oFxVrjG<uAf>tC|ze5R<6WwEiAwT%dJKP6G0+q
z+{O$xFV6TKc7*+mIx7%4Mr^;wjeBG&p8ZwpfMlE>CtGf1Y+wsHM`#!v0a(z0hCmuR
zH(r*Ev1@jIsT9Q{u^e9&lLYzrhs6}m6($Xl48Egd!EvUYCkC-rf>H=zA~IeP15QAJ
zdL~TC#AwUp`=*RiBG1@X6Y=7w>7N=##6qQ2s^Z^FjDy^O=mG#6d%hF_cW}_$zVSv2
zz$T0Vi7uL&DnLRKg{M|j=wosODc*@h<45OAU%bXI+JZ?X;2aLKP80BdQnXJO<*srf
z!NUaHkrjX$1Ee8ll4EeHeea|a@r*}g{PGrCwiY`j#^OZKstR~D$Ba0Ew{0|3g`4xA
zzRP9??VC-CcUkDNPkQSSz(<eYtKl6litcF;PPfMNjcy)X#@9Mh9HUHT0V>>eH;cQb
zI?XJhzsf>-+R8&ETMh;!7a!{#87@kiJ-MU{oKEPs){he_8}XE+9Kwqsu>{amWLRPt
zHt`ukHI)Cq)vmgsa{#|Ofwi<P$=Q5}z*WvM6O}TpL$t)GaWNcO@kdk6QCT>Bee^l=
zacV93#dw3JCz(*F^*!tpn)#$K#B8&ke#<SDs)BcA*re#%|A1I)Iv(s*9GZ|)FhzY%
zk%3Kc^0zT;u|7YUs$&=jBCR*%!G={grSWhTmn5jPt=>G}5X=Z%d+jup`Pq~HoBjH)
zN1a`Xz?rpD&qKdsA*WbQ4@xWRq&dkW&AKt&k62E2M~yyu$l)3|gaO~;1iZaCv`wO$
zpW}?nY?}(S1;*Oq8xm;dl;c`?&fr{DEciVY{IA8{@fNBc4Ezn!&P^YyBS<}f>F>c7
ze;aMM{kK^rigbfTsvvI8lLhbf&i-d{w)eK`=Cpb3&xVUyVLRcB2iS!Vqc*6sgm7r8
zcgw3ZA(nak2R$A%-i2OAj+(IrOV*M%g=F<|WA!;J5SJypl8*tng)Vyeu|62h=DbFD
zME6kF0vIvuQaIy9IkQtMMv*Yaj~@1nvJA{X2Fpi%o^KZuJKztDQ{b{onMOcuU=9^W
zcHmN8FayK^$Ksf|D5uJ_^pQ<DD4AuNHMnd36Vm=2YWXt>ow!XVSB`$BnOF2_Ikz}7
zt%*B>#W7*VDOEq)&6wqmG)%lUyTDF`)y*_yeNj`~h<}ZNJD%yamtAg0ZXWdGW0#Mp
zFUu0Gi+oE<{OjbtXITi2>?HFQQF>N)E0*rm?E6+9@;jKk%ot7km^p#Dk|`g))-liU
zxCp7R39D1T>;2F&@xiyn`Be~EH9fGPA${kRc0n3_b=@w96xMd>0L{g*{Yf9iFF4l`
ztHV03$XoLC)1^)y^BJSL`F%MeCyMHu;xjl3vp7BswJTI|Bo#iY-_$IjQ&%niA=Xg7
z`d<?FAG=q*?5h-)oS#nc?-cmn?y;S1v-51zP!VryseHby=g4(*1=-72C#}*oOzjUn
zg1kvBSt^9s5X!}iDt{EF7#BQ>S%o&+KWSzEbIL)xK>hm1Y7c+Oj{a>5yVVxQ+k<uG
zLh*JNhrN`%-0@3mL<Wl=@77R9oW)@k?2tu$fO{^(M&w&J!qWOxV+yGpgNDd5Ci1@F
za$oCpm--E}y2pF>R+-U}``3ORoEPDT4u~$p_-adszv0q-|4iQo$NMk9gDm={0XxNE
z1mX0oPSu`InP>ix(L*cE!_erdVsP{AEg75E(w)Aia`yI7kWFh}zLTV<`W7Bb>kzLM
z!k;=%qtVTTs?GJc?pD0pO}^7JIz%itmda@Ya1X>dI-*&`--NtYIOx64^s=7xaxsvy
z;pO4+FK5#gcD66&+{XrYZK4gP8&AD>@d|f1c3jfD{eqvl^76<O3DAUY3U*dp$zo|$
zaOD?*!T+8F{1*7jvFm5y6ZNmk-__^t1E1)$UA-Wmm}Z~YH$HJnQuii(9(?n8_|L~^
z*$2z(i<j|@zaxm#@_pp$n-Khk(!{ro;@OqbY_--)7!|<F93g_KNOI$Zq#8iHKrb^U
z;k4{a|EXtW@)FWmOLJHs<xS#q@Awuzpx2qjrU~E}C~%JyGD5-yzr&J!YBk8F_oUeU
z>%~4Di`8%(>`Civs#)%%I_1sj#pnwRbAV#UOEvX(AoVZ(Q~Ui5F=EA_149+bYB3xw
z0@&OQDSoq;7Vh0?J)2PlCKKbJ2{k?D_s54<#G8oy5eP8M*bfWcFO&&vqpxBJ#ijj3
zJ($^Pf{WXr>t@dUTEwhBs28yPB4b_zq)^U<coi3NUOzwV%UfETu-8}o6bDeM=_3!H
zx<fvAD;gw9_&htDc0X);Nvpn=eMO5sFc1T>bc(G14(bcuhs_t#`DSNp5ul{NMx;cw
zyF^XD^a^cYmq_5i<hSR@KujHgJyeVCr^IY|;B#W%JWZcN?`oV7`N+Qyh{0fo9?|!C
zgszPSSp!i2ldRsh$Fj{K|Lzbj$&T(D7Xx<VX-EO1?P;TuQ08c>TD7CvH^IQOcOVLz
zaGelxJ}9X>rH?bzSnONmTrk58s&Dqh<kKcKU+H^lH~Nv-j=~#b?oEGepHB<O{1A}-
zLxHe~X`ZNP{CF<DzCRD53TGRU;nAksI%@vS3yrC*7%#t>VD;qU*?MbvSP`D{&ppx8
zCjmzlH{x&#R~2@t?k)fBX<x~bH`8bwKN2`@@ji|WjVQo0O5X_TEPuM$9rjbLiKS&u
zrRD$}Ahm^g4n@*Zp3+p4UaySdMSY$M(xvRShK-&b18diyn>U*CB9mxNK69Kfd_NH?
zGPPsJ+2=gwR>$(h($a!EG`Ko6<Kfz-?LZZBn<@6%g7zUK_WI>TKR{vjfqbs4?9|7#
zi@Z^~x4)jTDzd{nsP9E>QM4<KGw8<OnY|-?1SPQD_Y&T;-p*=IDOX^ZD60KC)7qzK
z@V>*#P+`R7muE=SMb;tahhk6(-QD!87&iLo8&X7*4(qpf-yDN71@5ZL$8++J(M%_R
zx{PGO?JnN|95xU(qwTA&p$=H(Kk3H5BH2ENem53E!pj7HOQKIu(H*ME9gc#yz1|LU
zNio;gLHD0mCxz4*2KcA^@xS@}%t9>e$=lm;J<4_S%0-*qE#U6Y^gVUij<EyEG}Eu1
z57>sstETHIH+Z}%9p)>z2riT-kLP+#_^9=zc=VaFvOmSWE{~v!hp(TuD+OL8NBOH2
z@jYU!24`sZiHm?>6bCOH&+js+KNeU2^RHm|)@wnr*m|amuK0leJRrUDE=DSshM3Eq
z*FF6vm$$Po+kX5xKD`)`ANLBtGpPX0!&E%6oq0yDq6WHuFPJ@*06KMCy7$L<oSkJc
zUG&zFRiAPl{W=W^gIx9f_o!c8qtZ$Pk5um%zf4d~cx#H5B3_~yAB@D_&x(*<5`As<
zGG_l3WRN${)+767N>tiqGt^9z1~t!!(wryLGVGljI@S89PFk@!PRIZE)bq`Edq{d&
zulS4JqZ^4oZXj)4dI1m++70fnNj6#){x(ppY(kgnBr>LmuHa=w9O2E{v}YlYG7loc
z8lo=nf<OG;o*z#ZC%PvI>y;5045mT|g}7n-O(-N2EL~)%u2Vv4W7kCYxYTrul(bSX
zU1oM}c}P`GUVhy*GOa}vA=V;n6m{1qCe|pY%LIzB%{S(e)&r9xSn~^u-Xf&=SoskG
z#vN_#EwAoGU)}3PWEtI`Kn3Nm#UnV4IS_nCaD*ws!PLIy>4Sqq>aXB`seQkKrqmgw
zv|73zn`G77K%(j@6@rnf$S<q4??+lIN7CVXPq>ZSs@`Uc+0;9~ZL1#7zu_}iVEn>6
zm0`xI9nJ5~!pOW)l&I2*8sb$lHEOS&<)@r};<F>Rv<7o}4dg=$WzO1`Aw|RzCHTt)
z=6de^sXe#7!?L$nZQ&eQeI8&;&Q4*{azrU_%UgTOE}|0(f|9dI#91KwI%Q!Id(7fG
zf=fYJ%wDgJ%){LwEvaT(?q;yNtscV}<PAt%qYaS7flom8zM5j!eA6#}(*6CYul4D1
zkB`NBu5za6MjJAbydlWlsUDO0ZR$!erqL-g)Li#tYZr(sZbx>&Sv5jv>Qz0L(}|d-
za6xvon5PbeitXK$L@S%qk>L!%sAZC!kdpcI&c0<7NG_()x+JiaTLp<QOv)u#RrcjO
z-sZmZW&JTcL2M&YD9?8z2|VhVZ7vwN2!V;K0CQLsSV0udKl_f7$posdsao@@EZ5n)
zv<?es-$fCK1aI*hiFqM_%YeJvJA?<uN6Ms3<5i=_Y0)RA9vLXl4}&hqCWK3phE8TW
zBYCL16{QTk?q-gaU4kH^%3FR%Di<#fo^&nHk{!eC=CeVdL=~}?iMO_eRJAEiVz{bI
zyGPioG)JlJT?2PF#H;<#YNT3XUN?&GCN02MbLOm{oYF~SVL8h|l_N``!8>QL;o?x%
zBUOp9br*1dqg<Cth<=tO&&aoKu$Y@c&D(~+ZMBANCgVKheHax}UsYv+*%u_i&Y4=B
zRPeQoZ!5&U_na&QeD6KoX?U(B(QIUsY)RNg!GsZ*qrT0aTh!EK)I<PG$`{cGrfVT(
zkWj%1kbH{ZmLr%XX-(G9v0V+Tc!zR^vc0eBQT{za$&^7C8g1?$gDjr~@l-cg>~vXK
zi_pMp@6+CGUVXvxlvkx|Z&8^hqZ&vGjQ|l2s+rQB$L|<z0$cM<rsKx0fa0F@H>tiF
zRMIVZ-*!@}F(<zJ)@m_oF6DgZL$p+bDTbzju}!TUONJ~z8h3#wOEF6KzTCgtVniQ@
z=*NiabTEw-479ZyTXMlZs5~r{e)UnSIau7X31POXF#CzH_u0VpXp34X?(6o&PV>dL
zo<H9%zMuR)_--zPXNjDX)Ntb{Tf(iqd(Osp)joXd%}N-f5SEA|iz{ub@&xDf5-5h$
zfAqz2b_MPdo|L^9q<E*Dj-vXb@MX~Du4UG*M2Pmr8311E#Ax55Ev6DgX?Y8L{s0fs
zmhOY-91QT5IIx|2iBTTCe@ux6yb?hWf$%_*i^#O5SYS)Mg^HWul@@zHL*8^eKeHRB
zeV;CUcS{&u3fvb&4mE*D#D0wBH^lfb+~x=3lhHSSmbCN$5yO<GPD5u3n`OYu?+nbg
zc&Op4rXc<>#Qy2na}_Lsb1Z{Uek!1vQ`-YoYsHb0E4g=#M%0!w@Ae<Fk)C2@MJ#n0
zn%v?!S*P)uRoAML#8pAYPT7Oj5KkI_g<%`1T_h-h-YyU%3<+cV)kiHDFXg#K@AxE^
zzMnN-#~?SjPv}1Ln%XT~^&L!?5RfB?vRlGKvK-Ybg!swrPpksxl7P40jbv0+5hi8C
z$1DRGVb9|r1hpS#>9+4FXTFvTi3*JinK6Za)BsR+J6xIRa5I$z=py}{5(q{xSrtBC
zbJl-=nlPF264m7aK3q8oljTR5(l)KAzQmWt%~;~Fw!!`K(M|iG0#H^pqVlUkb9c@N
z0ZytdZ^GVKu)PB8Q%|Llp~-Ak(Httqd4|_ZNOQ6s4yL%?qIGJ4DK(Nn)CE}Bz7X9V
zZn)j-{^omLEN)+eB+4Btr0PV%Gv%y7_}4&&ky$uc2Ha9S6bEG`zGp#GM!;hMAcYK&
zw6G$(Y<!=2M7NFlJ3X-WyZH8>q4*>}EOY?9Es4R5+W??(2cSl#SVxfc@Q`+xJJ3QB
zAjd2c?;bM^7<#Y{sNkFz)ko`)@nV3iS1kYza;%iPNCVH5(;AQmy#TonoAYY6tI;@w
zfSfGxl#2^5o6Z}QK6gnhud==>F9-^HSp3ly|ANqczh7B&>=vegwWD5Nl<A2$o-(up
z(p(T^Q^q-Oqe6s=UK6y%Ncf*_$6a+n&mvqo-xn@KiWVP!^~uKIX*I5s3Zft5MmwlA
zD>uTZQ-FDu(?ME@na8C>4>-;BX$iggM#8r)jHKHOm1OPSe|N*otNyl!U*3zSfBi`*
z>gYa^KUHEDtxp^#+|#Ra^mn435Jb0tY`*Ky0*H06_Kbq279A?lPyiK3cush<!hom}
za6ya3(}k{GiwlE=%Mrk?T;dhb7(q&Rv&8?3!UMgw!}$`*w+i+OMh2I{Gafe*C<)Zp
z%xav3-LrO<c6gP6NUId&wGX5p3o7m00Qt^0M`#LAePtZX^n<_{7XQ2xt)-|)5>A9p
ze1W|FF+rG<+R`iKAk)0#z1+6ovmN}NG6&-T{HwCBL3KyPOiZ!<rsld0nsc-;ubJ<z
zv!o7U>8)j6TT|;tnH$<03kXs>Ou^iPtARx>?E#>wyaMP`1{gO1ykPB?O2Kz$y$`e(
z!&Tt}z2sv7!NDIY^CS<1a@0R8*ZoK>|LY6iR9(0?`KRI5#P<gm7oY!&4Kp`u!|wG2
zSevT=z^I8VCd50i_torUDJs(c<LkVlntB3mp9&<Qgb+f9&|Byo0Yk4sr~)E}-jS*x
zs0qDyP>>R;fT&ajK}_g~g(f1RgeItnH2tHfx!n7G&-c8Yw==WWnKd(e@81TDs{(<T
z*D5IFD@dxEN6^cv>2ZA^)aT)sAPN9BYW@lZy{*@qf1u69e&c)oK%yke9_iKT&a#3-
zN<!-@Y|Qx;DNUBP8j}$xg9(rB<^BUxygCF*GKl$b$_d~ujGwEe0O}J`zSwR#&4+m&
zbb|lv1lsj4ZAwN|bejZAs!|o139fY7^=|>sPQLRJvImF7HsWrbIJbK(b{~HD-UHD4
z$n*Mm?99J?vEUP%kGs044zK@_soHt^&kG;OEu7hQO#JoY^59|pDJt#!>)#9ggRr89
zhSsX>!6<z?SX_qu)3sV@>6yXkAVWXva?QyH1mk$ZZjf<sOJr}guj<!y{@~GFyT4y9
zFn%vyirndX{dYHkaYE;Kc06wP_ggXJ&$ivO-)~?4``Lf?;8o3^lPx>O@Ar&<$FCU&
zFCQ}goiG>xUJ^)~^mFLup(+qdGU6(T6psX8_ej`1TSPB}Pni|QOy*pK2`R_Dc}x~@
z06Zdl3->};slfB4>QB^?@(E;7F=xnek}_{{8&3ijZx(hX99wt3$)Btg2@u1A7A0Lv
zsL6hvGG}>HstQ0o=_uBA;5#4HyL$i$WQ_1e3Ko!hy*9-f50r=i@nt|Ak2z<XK(RBY
zh8mQEMXFsvnk_XATbmj-<|jl1NnAnk<3VwZ+v!>3kceZJpZhGVNI!mJ;9V*}lqhg_
zBU-gLBWE!~iaVh-**g44R97Zef|RNtYQK9WbG<&sm5_d`BSor1;#52GGqn@k=kH#C
zGz4b-0f=4KKJA<Y36VetUEF6LrGLhP`ew53ZgaLaXD=0IpF`$|a%Mj#l7+B2!uBA!
zz2xbMoI>#|5<N3A4kXf!lUalz_I#WrfYqiMdD?j!u6Z$#Oq1Kp5)PRMb(w^{^mL}I
zxy5983R5U0!y>}q9t+_|GyXUbb-mZ_@-*bPOioG+Tf}TW?|we?Gbh_5gagJZfXz$f
z6|&zDl_{`9Sr%F&v!DCqHuf+>8G9x-B$)ta?6_&oPrXIBcSXlZc}2b4OC7mOhU`W$
z0CuV@{FZ9pOfmCb@u+t3=rI5p!3-@ZzB+3S-75|O<s+~rySzxt^+N4FsR<Hb$dxAr
znZyK<Ibk7KwU^#XD*0m)X=It?IEk3L66h(L<GUJr!d*6nR}Is#jJ0ICT5jSx0SIad
zN!$apI{{3BN_>B@$SeC@`wU6c$&ZL~s_KpWAP#gso#;SGvC}Jx=`h8<^3!`GQBbiJ
zCGSmfwC2JobRC31`s1e0166Rc)B2y80tU3zV$3A(bodoTN*wrCgfU6XOat+qmxs|B
z>JEGfw2;4}kcw@97sJ2e`UK!XrdxAMMO(b=LtgkpFW{7h=Gzt_B}kR}L4^P_N1!pt
zSraihU&#eXe}4dZ*H>kSEz75{HgEIGQK~NWLB7jcp12t$CgZ=r(m5zV?GE63FgFWc
zzOkI2i++cMs;s4h1SgoyQXnr{psywo%mg+~sp>ZqfC<^t<q{HQZZ{pJ>YP#zfJjxp
zt5f`4Ck3onnYNIO$o%>abfr`6f5^-u6VhS@#iwLu?cZ!zIzV+4)ZB0$cqD<K13={v
zC;R&UN<pUl$f3RBLn3e>K*MIQ!5+?{*j~><_wV5512i@u2mt3MPjO@evvR}v)_T1!
z^}iVJAZWb$?>*onKuuM_U3E7X`eBoiRfB~QOWpyy@39Rtr75(PD*<WBM@ko+xZ86D
zo=!_3J-K`R+FeUx%L=6R{ZY-yW^))^Q5vc06$!G70#)4wTwP^i6p+|^Sub8w6(eRz
zQcD|J)tlfgm7>*%f>ty0yM9kV9X%4BW>V7EisXKCh=c2Ab??vrhN#MM=8hoTu+C(9
z_-It*!wkz}Ah25pVhTuoX2QJ$2Rrz&QZ#N!7<)gPzt3N&f#T*Y>kht-w>x^mo=1XZ
z09<P#r0>(Y00K-Pd1-U${F5aP*DoB=q=)?^2y-D40fe!ywj`?hB-gf|b8Lq&?sO!o
zz{RrJI+PJT(`;utjd8#E^d>CFDe8N2@K;2p=UBFRlIp{V&i5oMRJJ{LB<B{EB|^D6
z`9Jnwt7flS3k!>*-u&(+e64#MY?<4Qv6(foqM>t-WUdzSG;8Vixp9XU=KFUF?aR3y
zelgo$Z8X0cj;`z3J;ZcH@;66D4v?$bfg#b>k41Y0+Gxz2Sqh1!y3ttC%NO(!Vw~(n
zk8knAWl05g^v92XW2>$DMrgfA2jSER;a97VaQ9?7i9$%XN1tbfa`%N+_t`cI1@B}F
zZm;%n&kFOPbp%vJBnTq^6?O-%hS|0|to#SimBykd(YJYf#u5fp_-|@3keRi=gsm1Z
z<EkQO#H7+3a`n{^!9Qd^f3cuZBy5VTEi)g@i)-xHao!wKr+6v63BhG{YUUP2HlyTr
z?-kuJd}=5bzFef(;bX}?^Yk%ZvBg{QH+A6l;oxuNv({M{3y!*eAbWr?yI=Rref?H8
zKJd|y(8`5c$2Wq=0SKy%eK^UtbXXeE0Gyh|y=d*0ectV=lDW(b0^$KYNDvPm0KunB
z+!@vtL^;Y=_-PJ3a#KUjY3PVIy**Kz`~-R5ZxHz7lpuV6_1?&O!Woe7;PqmSF92Q7
zdbM#e&04A^>x3@v6V1!RobDbY#}{;6+w2Tg@b`)}Yj{GMOCtOjiJB3DaPKzF2T|jh
zEfABVK7zS+SA=%(kCAM(@sJJe5Zsw=$20hxGeXP{?{p1)=k;0S0ZI@+nl=EZC&Sf$
zCWSZ?Wa!-@?IvdhAM>Kmayy;vPCMI3z+3;Zv;deai>Dpv4u+c)1-3$holLl5vN0*o
zU(_24b{nb07~iEB2^N}8cd;*Z5~8Q4Pz}~u(;&@2vk5`CC~@-n4)?g8vGsp11JTH}
zW&NkRfLYdw*(1AdT<(oZjjhU8<{c(Rg;S|pM2Bv?8-CKR0Azd8FAM+(69y<A(@a7M
z8jmn95}qe*gujd-aQRtzJYtDXV?8`=C__%YRRiowpzImtkN%CQquvni*0Ce2EGQe(
z^Stb%C-xN$9dDg--bT(gZoEi2!z6LtwvfwyZ1e6pf|C+@4%_oea$~kl%4AB?b|c2V
zW41H7!`6LvhRSRAnNTxHw8Qw>@<J{Cmascw2wbC<)`-||#aY6!3)zo>0Kh2IhlTJe
zvFH5)KU|w++Cfc2)33)|I!uZ8f3U@BP~w~)EGqY6g57?mIxW99SlV<VY$hGbx)=Qb
zl=v;?#fytbU7|qWHE4*kF4!b0oPUt&*xs0Ct>N+5+2iEXTsHl}NDoAM!7<{^+n_dL
z)k}o67ziol)%p~|gbd&rU%LBkiPG!w@cMjLQyhkI#r^Y}`4FRv3mU-19(eZ4i+SfH
z=#rirev`l5-YfQa?fSjj=k`AGyL9}<YZB?=<LvThS=RR3c?p+gThV-lCLn+`bNTwp
znStx^hT<2c8Z*QEv045GX5t~A6gv0<xSw9SqRF1Up!o0Q$SEu4bYd93_@Mg0k=ei>
zWuZk^R(G!i?YRKxpMrqw!CAM0M~s4pzqQDCipweTiP_St{O4f)Oy3`sE${nFw1@NG
z$uF8;Q$JYiPrcl7E~NkOYH!;5Dn$lE4e6qXpoBxY*`Wx0XexfmqB?YMA@uMOlYnqg
zZBW=^8DvSyzd}cWe-d!K&-v|9d!p0|&TQo;BX=bxe1J(NNBvfW&0`tS^MJ>2sKs3f
z@~x=PTTbV<kqN>Y5wu8I@}^v5wEKUt5p%I}G#R<Qt!zLHHfmeQFf!t^AO~}iUBR{>
z?eitMD_UByg;S)HMvyNH%8B=Dw)slv#jQu|Jxtr2b?23m9z$Zy9r|D02+j+7@b;_K
z-q##v|K`ja`~VPuqW@U<TknGbG0vSMhiet%@w;tG3xhXi$3S^`R~K(wdmru)NCIuX
zN_@o*c&+$t*WiBNM^4(~Gb48s_)qusYTu8q0yMX;{RmIY)pGfo4ip6dL`lH!)q4)s
z-{32I>?@+(|MpPNiuMimF*o-`M7MaK?W-_c_XQdI*nH+6LI)BnH-#@9$T0ReC<_Ak
zX<5d>+SLQ)vxl(;z_{MYIGIZIXNL>YhgEbE^7gKX3R&LlNEvv<A#)^|bacs8Nsd>H
zW#Wr|1{tL-gxf}$t%$l^Hn%(LAc_URl!ti=PKVg1ck}0Rzzx=E;Je{QpXii`Jd|;-
zck~L60ZU3`zS7nFl%H#bC9Zd*JO7h#`7Z?fMbhwCFzHw_5^%K_=)h6nHk|6oQtH*L
zggR}1zz$%Mpf{O6t1sP{w}r_~15FD+$GoLt<n;Z?OgYU!#Tr!e%9#!hRO?yPjqjp6
z8DjRIf9JnL4SeV9`Of+5GRnpbFU#QDmEp{OgU@~xSbFyNuW3eihn9abc{ku5$}!?b
zm)-aHo0{4?oR3#T`)-Q87tu(w6ML60rXR(ebMV@20$~qN<>dQ&#8KbzSOOyCPO$X;
z{d&tD0Aael6(Pe~kZiPH5F=d59?-c*Qb*){D!FGO#=8tUqAN#m<hRddG^zGa82Ox3
z8dYVCi~S>=+ubYrvevx2Q@3_>{A6~a_YXke4V*)`B_(62NpPLFfyu!L&cRGwd(NVx
z#H>q%KnorETOZW1oUuIlH$rbRaV@~OK1FVB;A;~5F{7&4#K{*W*@1;Y_uIRfFht=Z
z558FD$KT)!oxKKyCdE!>F(M3ikIeCJ-}euH{P*kRF9XPg)-E6#CNpzNIrSEJ8K-l6
zf7z^3=sn8MPK;?rgVGSZvZu|;!!zO&vRp3IZ5faiQ>l_yWrWyTV}pbM5xYn4NPP+9
za&4~UnGX;oA{?51MQJcNn%QdLNI7F;++5yQ_j7?5>|Cj7DJd@AsB%%(xCo1#;WR@a
z3gUERXT0GoPu5@P8lC~%wXHUI(-}L})H*3Ero-)@>d=TNv+x)?)k*JrNw60^s+ta8
zo_S$irHtR7RYi@-*Y*yrKW_@0y+wk5!#kCEU(X0w_%oVBhL_3@ica3~y}VLY5q)zL
zb$jc=M3J;~B-}apJmZ6H4kH%T|1H#0$Vp<qc;8n4tsL9clW7oBCTz!Ef`*GZlnIYq
zM-#kgpqy)`^g99-2*XWN!JIY(8kEn2AeN2eC*J39GF*ccW3;_e)hek9nTX+uh+zqJ
z5)i_SX(y$k2IGhzUW3z$UI|PD<yl>X92vsn7zhMP@G5t(bl@^ZWq2HJ1Ar`v36NB@
z?II_T&9xh8%%+30uLQa*lFS75i}Rq8_TFCEs|AZ8B(69CJn(!Hm(q)xfk<!YNsM7M
zX^l8tXfAR#^zfzbeOAt?;ZGii&p8Wa_D9g?L-$8{18^mGjG48GqfmI<L#Uo5C(u%|
z{78wB$!RiONA9~3I&Xq@ZgbFB^~i_@I63=qTZnRCQ5;AmzawFeRA85keX$8ZlE?i`
zvE5lMaQC7>A5ksGFnP|$fln!3^*M7>Takdz-HFKYzzb}s6j3i36pYiNzz>SFLV9I2
zP=|hyoPpn@Qo$Y$tE7K}Gu;qd{hsfpOsZHiWUKO+H2Uvf$n;va$}89PT%Fy;^?a^G
zq*2z811!a*aNAB0vSivVQ#u#?Yp`V_nVK1n{R9#h^rFt?!wa@gK{CF(InyU=rrzBR
z`Fwy+O1}PX;u8EMuPNY_>beo_<Ue?A-dA;f0IoAB2pneT!yEqr>O!`EWnvnT5hyu<
zQOdk~PL?0$z3>07FFbHCG|cPB_T87;Rfm*RT`NcrvSMu~?X#@wE7Bgd!!yB!)4e@b
zhZlF*FVHP(w|_4V^)%FWVzc}8yT=J-(c!;72@0fiUN*Q+YRt8-+UniHR0L+&?Oh|G
z))1oiI2>Ptk51Hiu@l?L5R=F;9}%h~%JrBe^+F_q%#mfNxbo+4#_rPJAMY;LpbO0(
zkj;wfZeER-aEhpO<=hp)-aK`*)K05&ghUTbin9Zfe_zM)M%^CQ4^)Msmi?}#uY(v(
zduJsIh){aQYjo#A$-hFZ9ym_uP&cB7UGh2ig>5|Zw@9PG+gUL`E;yPwF)|FL0|~a{
zUuu}Z7Fk~|?xp|K0qQju=wCFMhMk)E5lxs8#a<9lGO$>Yk^y0ISSA0QqO22`F)M%T
z!YnNeVSaH`Lm6aBrY?|OzwpUS^E6C!0LG>^ItC1#Av+${y!Ag6-@}ayyX`PJJ^^N!
zJb-0JO$giC0#Z@6#?T+)H7CmDmgmBYimQ$qPUu>y&u2z->dCJ*nD979E2$tVi;w6I
z3$;?B<Aze}$^zEHP$CY%bRo_`&;`cT^wa_+-!A$st8RqybSTBo#*q#JgVDWHejWsp
zurqyJPbb>0-T2*NDDTUlHPPEjhK+KybJbTh+L0rzblJjbQ^p#p15tSgq{Jtkgl@yi
zI7a&kdZ<)zvk<_)H>BgYW2Wj$9VMF+{dl}}013KYkTC0YoKXA=P?Blo{EipT4a=;I
zpQ&X{GvbPclzJYhG-Qq6-0;75uTK(v3bRWBDt77{i`c1PIajKkwK@=*Sk!EK%Gxcg
zaB3V>x*@Ti1hcxGgi<E8IzQ#_XmEGFH#h}tKJ*Y`%dmeEA5<=H0dxDNVjn>z8Ov<f
z@ZD{7W(v)O?pKfya%g+rhOqnQ__;;pEh)B~PqJ?|KrqM5@h}6j-AW43y^unpSw$n<
zO20a9`MTX#HFEMi?W=yQ3&3dGmgmp;$uEA9Lbo&UV6FmAMBsuO>E|TJUq@>2g_9*}
z-%wkAEGV$WYW#|(QeCjA5zCV$o3U$ZnFSvL1tqLqjgD9E^(TY~#D8+_KKR*Y3!uT>
ziNmPnaKXoZ_d`Sg@5?`$7Y^`#bK6PQQY^fsKdtl4VgJshzq_}d{k?7>BRUW5A3&rv
zEM6k_DO)-qxyroWgrh6~Ahtk?_m7QFEQ_CA>alTIIy%7kjs&F#FB(!rBAP@%30f&P
zN)YmYsj=(CHEz|ng|D1D&gv|uf_aQ+sl+{{s7eUea=zcu06kS8kjJQ-<gfq92vOB!
zBYB2Ai7Zo2C9@*0=Ba2oMr2{^mKQ&z-9|J1&V0&$%If1=X5Hpv9FijaA`9N^$gViy
zCfZb)B6l^pX~1=(pemq7^h-GyA55(kpjN<7Zq4LgIjR@Ubpl-Q1&yoY5v?W)#=I`0
z1~g+Wk1T-UvEd!x!S!TjLXW8c^ep1IB!<}bxoM_ZKkH%_SCUmo1!w4ebz}T1z|?2i
zHo)*z#lsm7!}X3Ez{P~ZSQVG!PUY)Q?BaQUWSt3PWf#o7WhPaB&LgY_oj4t#4({o>
z1%rAnMJ(HHbG&pCN)HhDT&sIQ=!QjDueRicvgW~9_X;+H&|!BT@vyGTj$t8ZGOfY5
z3{#-fVmP;5>g%1J<45cBVQPw(r*0)Ok|M-~q6+gXHzc*D8{~(k(lv;n%Q<r}_W~fK
zp&1%tF$}h90P?*7ep0>rOWZ03^j1@FWIrb!YC$(=)&qd~TF{mue^N2+bcm$3A&dWG
z6W;%oIBuKnX&)ti!ZiOv*R9P?DS!BU%Yt0Rv-g9$fYwHz#XAH(3gfiF?%H?s<wOle
zYyO84VQxMt+57lig#-URv4*sA7Jb-Rqwh#MPoXPF{HiIIkunZ2oME0$s+ZP3Fwi=q
zdx~C1=mGQ|YVyB*%Kp<|b`OA%DXd7^jX!uL*QiXiQqv%uyg#}2#rfH_g~`ERk;{5}
z9L>YCcRrG>BEzA4ailDUprR5T>-oa|Qo@n^o8!Uv?niw1Cn6ex%-fIu&S#tB_wVQZ
z__o8n_4@Fjas-w5{$9#jY^$si9Q(uN;g7uyQxmGG6LtX|u0ArcA-D$=RR&2Gv{YE#
zz)`iFK+w=eK%UQ6tiPUwxUKfIxZa+GL!CGti}`3QX+;6vHov{}`h*<-H6VcvNS;iu
zWP;hj&Xf!Dp^%%yi_<&Mmy<A7s{C(=UxT!o70D031G;1c-h}AtrTZO!5#}YqstEf7
zuY;5c6`JkfzHqp40eocdmF+OpVNc@AJ?P5<$asO7&1VRbE;Jj=>|Dp(0)W|3fv)ry
zwgfiE<noP12K1N$IG*OX>(3Oj$5cO*PilvJ146vkHeFlf8@@v(#nijo!ztnKa2u%a
zpAd}&Y;M!gQnQyIS(y5eXucVyNWvW%tjtau;$yQ6G7^W5eEQE0g(0$kZ7;mB2C>AG
z>T-C)BSEE+eB~W{B5a$LRxn=D#}pdxxEHW(24w-<__+$PdI?^Xb=qCK`x_{LAoGu}
z3g&PE+x7*uO+=n}MI4ZYPG~}iQvd@{M4)yEZ!01@&L2zQ-JU>At2nxZu`Uw%?`;YU
zckn|^fF;TtfLW29ePNLyf$uG%ePpy)6cSw|vfY71(}jN2idXGR*sDr9M_s2xiWOKf
zSk&S1yVK7eksxNFlDD=8Ss_w0dCL(fkvIp%!~^NfPMO>T8T(GjP3D$BZ-_b-q=|(-
zkdZ$53UndL6Y;`@2Nz>z@f8QM^-*$<4<d<F*;)s=^I^C*Q3~%m6?80ROTYYID(;vy
z7(ROnqJ8h#3AV*LFRLmkm??gC7}||efOaV&<`lT2RrtD8l$aES)Kn#-Rb{(W6%JKZ
z)Y!3VYC2tN`iE+UYU-wrvvLu#=7;L`Y8uYb8g5-0KyS5+YMOr0nn7KfVbM6RL(SM|
zt@y4}KCf1`oYqtTNGb{>O}wZ%2C_hjUV}m^ySy`^;i`Zmb}?P>h^}N8L#L*gt1|kG
zP8V4HxhQo`xQR>q<)L05URHzZWkG}(QR~&4&Nk2S#dG*5uf5`>>-Up@+os^OFT(72
zhzVAXpI~s+N0b$fN0ngNiTYX;Z5^7SsJi;^!?TCv(_F>yY?LS{2EWx{42u!rFM$X<
zi5z!9{y2(AQ4_4xMa;TQ4@J-BvWaPn!<3zjPe>4(1L0tGCv}uQxkRfp3gSWaYHPMb
z9pW)WbI^!aMyr9683Y*$91t7zY>0EBK#ROwD*`O_w`x#B*1u?$hlQ4WXy|SV)PZO&
z06b@mKliSC)O!uw8Dl+87B{1S3B*X0?-c4DP@Z;f70nQNP-5GI7SXPQ)FnZC3%MY%
z=l01~zaHYRq3wQ@*nOv1{;4$=*)mT)atw*Kux5dMdJ%`c5B;Q8OzAd!vU;0<g?LJ|
zgQgAO^r-`yUG9)0C&Zb@q^5!naH7@<Z(UNAbp7t-vPpIMX1Fle3ecn)i456AzLCk`
zc1<nCe6)s@#0p9g**@BRGir3t{UPkB;Uddzce@8+W3#$Pc8unBT6NYk<^E>IEvn|n
zuU+e)`3=oqD_D)^w}^tZ8nQkxWbItV?9>9Py|}7L>_@AsNKqjx@}(K-r5O@8Mcq<l
zNOAim6l4wB+cw?l{`iqd45%Zgk%<Y+aEUSoe_IFNF43#r5VPmZUMA{o?gC@iL{w1L
z%3ADU0V_BQ9{f*Elb^yn1>*T>Z~%twsFV$-xpW1{lk1B}#PpD^0J1b;c~?Yqv3(CX
z-=+N&)+-b7rwLAb`MwoJ?@0u`4-#H<&cL6Jq*k7A#duxg@|kGQr`btO;&M_wnsV!$
zdd9LhI4oRR)c-xw{kW-X`%U|r_nD-+Gl9lDVqmG=yMPfRNllfs-j)vRTPZjX6J8wl
zYFN&uT}2q&<C07QNsz4+V9zmcD=k@!(yeJASbnOOGE%#UUiSy2(`KwA6QEEbekw@f
zD%NBH=g-C5dYPmZ)psQ-eeH}{EJM%xYSx4ElAT(#;J5!`yb4Qx-ot1`sEumcXhj;=
z#b@{_epypw3cB3;R@iEUg{CD^vL(Ex)e(ivcCg{G)zT-X=r4l}HpJDgC8>>Qo&7ny
zKIUbhUT?+$xGtG>^=AE(Bh6&};>(+<4+l)Gnm3Fwsm2AVPU_sSqtr`;Ps!hGJ%Tsh
z`LnoRleic+dVa_70x{)6g||&fY7O?N&ezr5D$dgO*u}x`Qp~8cu%yduu8VRUzFCId
z|5nIou-%iZ!F}}9^8rrRw0BCT!hB^j?9H-iL+;BETM5bZAEl|oo7TidkAEp?ZyV1q
zLE&^$&+SdPh;$IEQvSD9(~@?^&CL=oL4Py1w8UCS$|%&;WJAbNJJan&sI7O<_l=9k
zah_i`^Y6J9<STqN+AR93Ez)!>EZld=07N9>iE%H9NV6mK*jfHhUcGqlJWjk;qoapg
z3R|juTAbUOQ!=?+HQnjQF<7su=&I(+n9Af>mMwRAbKULGh2EV!l60V%biV(QupM(_
z1GAZ)R;X`Fh2)n&33JXJj)*T7(YG_Bt6lMM()mX1c6aXhr#huZ^y+;+msGa4yv@Kr
z)K~+aD<i*F1Y5TCm;>-~6}4d%!){mF;^PcP;(S$aj@QOH$i>g&u7*xX+LWRn-Ax#j
zhN0hlX$WeljgO+>%U}LtT-kgK`~VBH(UMm%sZ&`J{`5;n_eq`n)yoHbHIlTt{JTx2
zzi#fYmT$#hd-Cp@ax8#<OQ&}{VP2wi<Zjuw)oa>HgJ}zw`L%5S>D+!=p_bmQU~(C1
zLb)*ZNIt7MQnFc|8Jk`5sqNgkGNeWRu>~wVSdi&libSB3<!arhCpT`h3@t9*Z`_`Y
z8p_&R5RH+m?!#~50K6X5I4P>E%zN407k1g%cV2CWP~+47={_)4NnNwZ`DD>B^rh>+
zjH-|C@|^$$uK0rECrI~xZqI&h?|!79KxecrJJzx&a2rgzBW?lcJ=fEnxt(3zJl{~7
z%JPsK9{LD8`RKdoV>c|L^Ux5Sp$;AK>Xd)qxj)|HbwR|eT!eM<KU{cWUPi}G{o{+N
zML5~;d#1eOV+Ju3LfaR*E}z`{@m@uTw;}xCAKkLf7Exm{Lh-c<`X^8)7<xB!(s{|P
zXf*`x;!FiS;ihHEe{bn4U!rotZP+eQq>e-<D$ry7_MIh=C#zYpIlV4h-Evu7w74`u
z>w2;0=mnz+`k~$5emX|4-o~nS&7_f~v2n+6!VT^bzcb=kc_aPjP!)3_S++`wxryDX
z@12(YgO(eemJJ_#CJOb~)$x-$zXbg{C;I<PjNWOsBtQ3SUAv}oWTlXRxfA~7?%f-~
zjFjiXySfRyS+8=wGF*Cto<XmxoZLaoe(zcf?o#%UcbFQ8l79-?ntt<e+>o>9+SHid
zSKLwDP#^u_6Am<Enfn!WX2$xd1U!_j9}*m5_z4%_cmAcN^qme@TK;Bt0b)$Z^4&6P
zcQN*fOh{_0^=y#PHJ;bA{a>%rtOp!=6pJo4+^RyOEEYb5g>I!rm1%OX1A0Hnbw=Eq
z2Z!{HvUL2Ra}LT6RDKAJ4G{c8zm;15&hg8;e#(d?c|JCq=kJTB7KnR~8<vcfsuq`E
zow3!6qBF){UthjH%~?Hd9Su3Su%jq5F<((v6xw2}G^_TzuYH~VapyVeeFIetit>Q)
z-+=qt*v1I0f&>_;(x=52xbWJxvqva=!}FW5US8p)qbKjC44OAK|J$g#H+Gl$;!}RN
z(ntCqwpZ;hV4re=;1tZb*XI`MXJ_;v^MtfJWx9HK+RMgjKWFWpP4Ib-9FLtFl)+aG
zAI6&pX~LCG^?jdTS0gr_es%l!@jU_wQ1FK+*gW_+jXXEAv$|WGHYj?dGS*;~?U@2X
z|K&#5QX6>L!*1>Q%T;OpevHz`-=ZtsO>gR+AmhTy69*%OE-fb>d|;8DXR`lr#3F*-
z6*LV0v3V51*N;N&X-52ezu_CKE7D_7QzI))cacd*{qRv{<plQ(;X+#Nd@Y<;V^UND
z=jT3!X8!n|%2+ojfn<mtvyIQa2t3jfSzaeCI$d5YV60Z({P~@fmpC*c74u7=@z*9v
zVBO$--!sPVwq3sb_a!V=V)09vhQEseEZXhklx=cq7G|-*6{l@#vjtv=^zK?5GWxo4
zt>%MrU#LO-+!u}hZ#Rb54|JY}KU+WieLddg1kALM(_B(pSy0vOi^aKiE2Ay%yDHl>
z_hQjxYM>x4kV=iy7An%wBf9FFV8W<@2DDJLXm@*MNo9&tdk@Z~z=ON7*A?gS0AD54
z)~1IIY{+>sbmOJf5W(GhEb3ZPRuLw(+D0$1orI31;y6mE7HzdQ@o%&~y!R=kRQBZz
zd)Ey!l3`iyDhZ?q#Y13QLW@`i!6ciTPuP`6^LFbBm}$yQ;10n9Lrt*{jATqkAin!Z
z%&$_>#dcuR5T#_>WJALp9J)F?ikO1%iedZ-jz@vb4Q_iue6D*GOtV`V#)&NR@|;o@
zuTD~T%iLYUJd+@S*UETUEQqJ`IvqJB&l_Du40DgI;c8(THP}2u1?F&WX+!mjdD0wl
zE>8g-hxglhfrvEM>Zm?TU@k^DhA<;$$=P=6QLr1RYhqox+Av#6pB_?geqY9Yq<LSc
zVj&ND3-l^Ldw*>#U)=6NqR!!`slO~JlL=(70#vUTX(|hs;I4DR;;^RkFlHPh_{y6o
zBXk1l%>BuOc)%z#y9j>dUZ%eh!d{YJ+lv~fT%tV7$7*AY1u3_w0qpiIXFptBWpn))
zZ*m`-g}~zGUY&W_t<1##b+f)Yq6=om3uQ={*<Mku1Q7Y1+sB1DP20}bClnz|M03R0
zNtBxi&10;kRBf|31`{U@hijqUh>%s6oGxN?9{u;xLUPjlln?AihC*>vBCCK;SrGX=
zHE7Q}C!{Q+Rz_ku*6f;_$A4>A?3@BWDyuJKyaSLHSo{>s;>k_rQe&UR;+?z=>o8o$
z+evo8GObeez9vm+aXW5tqkbl#Wo`zDd9XN0E(a^k8k1JL)Z|97Vtj19Z$PfPQo)Wj
z%HII$tYsDreXi^n7rWEeIi>o(tt%MMBZQ5`5dt16pgZvG;VM*tNa<}Y5;Ly5;~N*N
z>m4T0=L$pnN1ueJ!}#{A?MaUVc$-ZJ-FCiG^CEEV4<q3$f4KUi(Nq%9@Af_BUbmck
zrtK_ogpN@R^ZN(|Ux<ep%~Ym6Lio)!&hJlSJeYvv!qI>B?R?ci%2UCF#QjmRia%pd
z{8HM~UN8qB)M*C8dWT)+;#J+V)@mQRqh_owfJJr{L-5jWN9!>dr;ralZ(q9K2QK`(
zO~b<i>T`bvUy?t=1CwpPSotpK?$ayFSJ$f^e@r<1@OX}3eTJd&=!KO^5)&r00ED=r
z_OfRs-?-XrHC=izZo~a-yAktTb7J3CO|tNl?fPN^UHZ&^Avtu)V2{QkNutmu&)xHU
z^6lE=f7f=pR>IqWLY3Gg@Kdf!1N-CRH3J9WO2vtT*Ty1GkLDaNJ^k_4r$&F}C3D@=
z|5lPk29MW^FAe_MIy3dRd%J68@Z|fj$g@9(b1OZ+Z_d{|`*(7<@{GX%Phb15xS~r6
z0HUly$yc=jEc`5>F*YJ-;W<9}7)#sqn7%B8ybuMa%5SPnlkdU2z@n~CJt4}eavq|H
zTn#)jf-ct^oR|KhJq3>10*E0E_4qea1j2JY5&_;(8G(#+a3BdHK){MPv_An7NT-xl
zBCjwWbgNJ_TCSN3RXQ<(QwE&nC*TF@v`xAA&C~VJIs6HWX^M)4Y+g7T?>l8OM+P=8
zgtX2><4xl5Z-VfLh>9YDCX6e*Nb=NGfRR@lziJL7P1Tk=@wS2`Q=~S6>MLNer=%Gg
zRTOpmHQb1rgeFFE*p3*nz~_MIZtO+q9y|Y20+e$vt)$7M(SdjboME+NyDvzS_bG3)
za@jZWo!*pn%;dQQa=Z=6Vn#5PL;Vj_*$}*T*-ThqZUJZEnxM1}qQ$~YcUGq$6r=hE
z3li162hCA0V{xDtfSc*X6K;*DpQ6u!j6^)Tr@<LvLP@>$QLQFun>7ed0(I7U!6Z?B
zKux6WMz<q^ue4HsrjDSld<5fgwvrFE2VK2_uKBHQ!jd)nvZk^#f3s5dT!__Rw7+PT
zM7)vmW5VecfC|Ld^I#VG=9C1nEuOAsz-v!ZnekN7bETinY6|9Ko~m64ImBGP{l)2?
zoCYgP9Q6^LsKFu8b5AgmG(ml?_)w9%)qy+MpEA!L;#vH_;2f`A50ykbhz7K&4ujpN
zPpewV5V^pRM-UBCf1M#n8E;`fXq860_M+pGtGv&Lp)6&{52ABp5^<+7wJ+y6tUy26
zR~7-Ds;dPnPB;0Szn5kkRKhUS{Gf0-LEfO!TeM1S#u;IC^a?7G0X>WWfgPa9=(aQm
z{vpXT%e70_S)1*LU)n}y8cFf;mf4iqG;wqZm@uh-=Ch@nU|w}z+#8!5_#<XmPMx~P
z3W1yD8Pb4j_T`}&M*Z#B@Jgw@4|}$v>J4mjn4JZWpZLceBHJ9WV=y>F7i&1W8PGDJ
zY>k+(V!H+0@Ilx^_*3Osb%jW8_=lDKgsn<Az9}VuqDU_O(nBv|ALMl?FL5E7AjucL
z)6uNHOn1CS6|NYww3#r8b6BBeHNoLMR9N|M%_;YfQQM@ikX4jL5toG_!dn!?(?A5V
zkN^r*%Ai#t3ebolY$=1M1I*j$4f#F006ZOJtUv{#UJl7yVf|IdlYp#Na?&{JnF}E4
z>EyAY^0^#<m7h268=K{AL{gx%1;4g*dnITovc3be35JtlaEAzxrJ3>TGR|%y{Q9;k
z&*^=oFP2qMAyY^Le3of+NImh`zxFxb+glydHy-yw#00Ug5i)?AW{wq;{?uZLe^g83
zN+$MRx~CZ6r<k>Js2X|{Z=q;x&sz|NDma#|@XNjDbsy+fgB?O>)8I?jcC=sXAkOAR
z)n|D(JN#Qx*fh}UUv*50z3T;&(HrjNRt(j2;>)pEQyo9EyFV3QE~wm`7TQWOlEr^k
zmDev}I4TzNGRHhfL;sTYf_OynQrf`^bc=`Yl=mtwzwB_vvL$rTJtYdRtVzq>4{yQW
ztNy-O{1K#kv4DM}^82y^q2?uXRzZ){CD_=3?Q_48rob*c8h8w?6SQXy!qE3|(pL<5
z26EFlwadSH{>Qxdns7y${`hM^#F^zrB(nQHGc*v9H-92q2OUk=0iB%*bc+Z#y}AoY
zVqE(ud8J1Ta)Yh@(-hc<_<Qa#+WgK|!j{et2k8dlrbvzcw~*J}1zJ%X>=kWX?0fOD
zzGR5;LJ}fvKP$Nh43uoI<Z1pVoN`>9EJ6wZvVJ|}(m5;OW<k!(-c6}DW*l;Go)Xg-
zO@Y=6J_YYqt{*qrUH{5s2tAF)A=H6>(%N0e<>lrrR<TKZ!myx$AsEhBrh5n%S@5CC
z5UyOwHL>FJ=2B)Ojg$KROdp9}P6J@D-+}YYiFo-!60<k)cRZQJH50DKiP^5nw-=7+
z9`=Z#!nNstOzD41flzl6)EmnmNM)gvXV_4UVXMYL&%v`bf6Euco_ccHq<_;{<uY3B
z#IvzY;8{mVtkZZloP+J>>cSETvrb;`;^?h6bMS&mWnX9BZe#s6Dy^-C=Z2?!1VQGH
zBj2A&V#+GZcJ+Vyf_K9*j}@voL;=??-hSAD{Y^W^H&8o#eYNLhtq)%XjlpfmGO@%L
zi07;Jx>){PYG~!ZLNl2R3-PRMc%Zem4b`-Yh6y&5fWswQ$xIncFpsg4AfSvVn0a+&
z;GK!suIY{Ivyx3DKBHx7ZW$=C8a@w^|Ck})1jIce;fw?={Mh(q)+JoT_<cPv5GQn$
zkJdGxND~B`>#FuC1+jVUR;;Lag$eJY;UO6S{4}0kISg*6YFEB1=Ct6B`6%{pwXr){
zEp$1DC?d?h0!X2T{wUv_OcMENf@!Pak|8n8gKu`w&wj|n?D-hG@ZdeIYVP9^bg>-@
z?abJ^-a@_9&lPk#mCNk|3XmyhWl2H%@@*vXkf`Qq8+x_m?+jB<Os@o{(kI8+bgK~$
zQ>NOBZSod0=*f*(3X8?Zlf6w(hbCd6OSTxCS-5Y=t?lUiNn%XF>!HM|R*|1ug`|Lq
zHFwcEcOB_e@nzlhJR2;6$sr-h)TPl8ZC(n0-YTkrPMojM^@PJl@|ds-8@X?P16OWv
z(=>}P#zrg{y#~7n7wjpQzCy)nVNG1fCMI5gj1%=<BCYN=?c#zZqQEG)(U<EsJ{HFk
zR4Ib##<M~#!HfRj?qP_aKTA#{SIVbnXh6^d!~R;sP+eN+LAIi2g9Nql+}b99BIRwg
z*}zI;b{fB&=WnOE>}A!Ycnx^PfE?lN<2v@yjZv``Unh+*nR3q)zk;uk8>+RlFwDe}
zdf4!A{5$|h)Alfv6vL<Qz2l^>9m8&Wu;alIbb)2B`WMncY{Oj_d3=Q}%|ZV4SSoX=
ziMJE2L?PfRrrAtP26CU&)(AcyhPa^!(`at;w;?0(lbjQ2_X^7-Whs2kNgr~yZ-qgs
zUAYW&_;>@!IUu)sK>)1nT)OQN7uEB|?%f!prMUa}iy()*qT#%7!~EdX*xS~X5GN7)
zAaS?PJgg3yM!xu@k}<$%hgIimok4fTUSI1BU~PL2Z+1gIz-x~NXoe0;`nnq>CA&dP
zbSjN?)hBdEhojic<Qh`S0wo9=Ly8QU4+G6m<B3sYnO0j9i*VnR(kl>ki{Tl*z&f*$
z0B)L9_XuRb1Tz6SS7P*a6Vfu~SO0OSo_$nJ1?sb7T5n^f-7MqZCS^Hb7PuGy;WKrK
z@ysnF14A=-aB0~cOcBRWXGj`Hxmj71>DL)E*Y2SQpw<AI=>^JY!&qw1d}@z+$OAK|
z;h)jMCJQgYv}IYdjxVF#PlWjdfo1w%<9?Y%<lMUR`|Gnhj>^t0yW?9)%E7)4kZb2A
zc#bAh>86bl7O~eS%=3U{FD7ZW%@^V(uWvB(BeQa~$)j0P`M&I@w6_8oi@8nNJjiot
z6<C7aWP`=z&F)~aZroT@<``pvdHlhJCiE0Wy{-9JF1y;QwUT<j7v2^J>?||Hzsr67
z$||A{){xQ`Ve$6fgj0G^%7Z}g!$f%e@nj+Nd2V8xjLmG4I*}6}w)l&1NALOTCs~b^
zu<{J)sh{%YOq0+jzz!3I_n@5>(C#mm9rtRS03r8LNzMSyQK7s{P>&U3@*<KomuJUD
zSi&Y?=6R&v11=Lq466feBS*j~ocD-Tm|hHj@oMW)&P<%)=QZGDW!c)GB5O<@PjfhL
zjLl5On~F8XudTGtYx4hoDL#XQ@AH5Ek5y4;%#c^=++xnTzuHP?H|~B@CLshBPI}pt
z%s7&q=Jv0B|F41zI}*goz<sxodbxqkTZ`B_rd-}^`@ZgL3#qXC6w3b1mcxreJxTih
z@8B{u>vH9o;WuL5>8WOC$8HzBSD*U|INkK?kL@0{?7+mB;Sd4cvOCDDhn~u4(GkoE
z%ALe^?i+h7#SySOd$1ZqmSQD%R|KMe50UT?{*1~x7r{2X$F?4EDwK^+MzEdiv4bO#
zh<#)if#XD(jVlr*zmHPu_{F==`3%oxy^nT`<Q93&CDOqivX6<5<XLAsjc)N|@ADQ%
z@||Jkec#S^Z=b&_Qs5boU%W$LYF}_JQeb$W^=+i^*L~sh`$Fa_BH$=2LY4hwA1iPm
zDjvnm6D6h=CGK@bm9BUoZhau(*r{a}CFv6-71CLD@jxo!Ksq_<_#f@qC{i%}|EXJF
z?WFHT$@d?~r*p^;AK>Pq6y)=9@1qpI9w;WTD;^#wfuoh*zh-m>$gX!Ni$|-<AI>yK
zAWuz*zaRh(004lK0~`RXprgRl(-%Hr5djfVxQwchs5qyBCYO>9T1A&nU0+mET0jdg
zq-`jsXDWHtLK1HwZ)&4xVW((LP_iJX**Izu&TA9S>p8jOt!(k<FXCM<nq2U*@bt4H
z2H1E95&T0O0>hj`BHY5GJR)N+MaOx?#{0!z4@$The4QLdN{L8Li%QM7l93&sotKzb
zaHF6oskoFzqs`6DZEtVy@9+Qm_3QNW{{IgXgG!FD!11Rt7obM8b!!M)8_4_a4;Mot
zTfeavPc>b&NlPkS>-_z0rfrG~`QzMKwHgm^CX?4obJxi}VM(cJ=^2?>**Up+`2~eV
z#U-U>*HzUk?o_H9vkFOIG0^kOVq%g?Tm=}V#9P@9+OzMr-0Sdr)Y{f(Dl1wlq|`Xr
z-)r7wDuyc@e`?AqP{-juJ6}vSMN3FuHRq6E8Qj?Xw6*>D%h#Q6yM5(VRYniwgv1nN
z5pEn4WC@9C9M=AuP&pYY^ds3HS^3NW@HVhsz0I{R)fTB3q6u3s<B`EP#1#UkAO&KU
zRuwW5BiWongznqM4Wuj{691Rw$*#Mv88!H1I5*nvV-t|Ylg*GM7J$wtyHE4~X8&S$
zFQ&nY)vRz)r_KJh{m?ZcRGm}lr?YH=W|&0T1B#@?!79|YHSX}shpER8SDx8s@&Aa4
z+ARcgRKkJTrv^N*ErK_0b(IRt2E$#O+#D@{%;s=C5`I%{OL`P(qIiW$28w4yd#34|
zbotG**#;;kxv?ZM2j>zMrV~iv(oa=*PIfk~?um6&DQoU7!hFSxWG^TR|78JBgI&!m
z?=SWyuUka9?6Ce#+@5LtaI@tBv@Ps|H#1J=`|^`S@xMAFNR$a~FA3U&j-!Y$;>*f;
zUzmc0t>tp|oDjn$%!_HKVQ$9iX`0(Lm1xFBry_*(J{2L98t7<O=C(y|Tdp?ZErb}l
zn0!%hFapFG_)de)q=cmdvlW!pfru+!6B{IR<u0m)QacvNDMN`M$z6%xOU+Sa?-<HA
zi76OD8X9cyvFKGJ1@D*=9-(1M*i0g)Yw5HRCw9jTT4^$&11K~Tn?!<QmMl$jVqeKr
zR*aD?>vLm2$&BRb|L$#WFww^Q6|J5AN~JC+8UU`BW@(bE<*rM;X2c49+0p{)^eq<B
z%Y@whgRl5RdZ8RKhme1f8d$HeEDO1RrRB?oIwgq{nUd+2`BC7)LKAOS-k1M|m=y-_
zLy*-v<&?YUY?T>><oSiBB<O=cnYI5-bGsYW=^0J`qD4xl^ig5*17@cnGcA<}nsMM>
z78v15HG&Q5N6a#FOy8{mM{*nb!XPd0hqS@Uds%*=Mc%0_iVey@5OTSM2`*cSM}qhX
zIFq5@oT2T*ukW|hkcbFYSvYRMLmUwe&`qI$E2&0Ya8@5)msHLU(0O}pg%pZNdgaiB
zvBkNbH-3m6wd#U{fp!{Ln-w&I`ugYnC?9z3=hE1@0X%Ty5mf_?>u2qHVVr{<if7xl
zj9TU}*NbfPWCJ82qGez8u1{50j*v0mUMgdV+#gg56y%>KA@c9&<KHMrH2ebQ7C&Vi
z&OfZbuH5i`08ouVAOAx%biFmmBg+c5*Tb269bN)&fIlYDjVed*OaR$4Bh2XWJKz7K
zrz`zC-Vo{du2<gi>-jpk7v<rw#6c=Ou~yi=e{0K#Li|(JYANydZ!^BloyvdW3{-%r
z5b!CaR;X_C_3-`NzePo2qUzYBEr;S^ly@fw3oQhUbOM&BLWU<e9B@dQv?t}+*{4|B
z<C9CUOIYfQf(R93N)2RP>n!V#9ShS?4N`F02+OaWZqQxB>_6Mi!)oi)Azsm2;d38*
zr8V^{EghCwP*OCIMY2$)uop&+$k}X}P_x#&E4Rx9o_~j33|)7!(H2^1J6-=cSjfWv
z@q&Uy>3L?_!0)}yC~zOmH+^Ij6||=OU?&5DI|jI?$eiWb8BW-oYLL>JoV5MDkyt4+
zowbaGa25oy$i<1d*tn%Q!O0fepFR3*HlFpT6qbn4E&P>ZpxtOP<kS`4TAkeF2&a|)
zb*CY{Pwf{NAav|>ljyWZ<6*MONZJ9YTxD+bdQl60-VI`*`CG3KkV@>0XEfa`A-=DW
zt}`Z5xLTsBOb1t~hYmS4cz6u#9?e2cOhU+MzZPdbJtR^uqM77UJQmV!HRfz_)u>to
zfIin4SpYSzHrdK6m((vM8VPYyKxkKAkegLd*|E7pu`u~M19YyC{9r`!a)(ik#%Jk5
zTLNpkp#`*Iq(M5}YQB#DM{@>X(>{v?=w607msf~s)$lpDd@^rHZrCiy8nJVzPAL)C
z@l#HvlX+f{{cTCXO@eVno^60CK0(6STc1lK;rp&wd%pLS22!+eSCV4Ns(jy)S<D(Y
z^cuInvrz9Cu%*WwG0+;5_sCTge-y-(JL}3!a52lmLgk4LP{|7^UX)<y_zX3`IJ@r4
zFYYK<JT9L%WGt%{CSuA<JIis$RkRt?T~}3n5qY8VvmhQi*^i0x`JA%S>C$B17IaSO
zMB@SA{ykr38tBp2c9;yHh0gXcZd~58F?a|jwa5sBTTw|rpWM3b>h>^U<$@ItAtu|n
zZFAjBTmAWcs@dO*@BGuflmm4Q2M_(I(XPk>ST9}+bG-sS<#awLub}AR9H6zk`>nXm
zVakD6(pyEn#lM4Csu6*dW~j;xdCfBz9Hnxdnc8{6Z#eeN8G)$QK0m~E41H)1m{nIM
z=X3yWYFrsowwlflgqK52G&_;$`zu^rz;XDlbHA9!^OtGVK@-A$+ScBN%vt(`DN-%_
z4C@`V#CZgBgj#ei;geX+J8P!aw3x__b?r#M9Iz`8H^lwsWzm1r8MfVZ#=f3*g0*&y
ztkP%~*&y*_G(7A&=oYi7s{oTLntvLf!MH`90p{RuG37ZlvbjrK7WA46_Z&0(+Ifam
zoU=Vw-^j}Vc}`~fTAIp^`pqhO*31KU{FL?;uFcZVzGrEWF&iuYT)MSb<?m!0K_kT8
z)gTu~8h7$nu7F2u1Z0Y?v>4%0SylVzU=C61k?{MQondYl=8Qjn*Gq!k{*-$C^*fd|
zDNx^G=v<QVodS=RyHuU_HYV)>U?=~NI%(VetP7Pwxx!QkJ(z^q-ihI;l;gw?3W$Gs
zp>_K+^Mma6Afx@RXFMg^J%2j@UsT%P{^xIT8SVP&A6s+3!${5HcGg))VE%}h))3tG
z<uhs4swkRf<jve_$J(<Ey}@FArmQiHsD=i?6^r>_NNtMQtDn4C)6F{P9f*n&Yx!S2
za7=B_vuq#bdk|FeA1}WB`{n&_<IO>xCzPGtpVaeJFRzYYMpx%mhN1p_jLTD047U22
zQc@bCG4+@;#r;m0=bu9g$J1@D!u`%7Dv0ei3Ck6ggz*IcIYY?2$U{JS5Y|UM=<ipb
z8m9Cr$^<`==ES7@l+}p@A;nU`$|SMhy#u+9mw^adLK0UBCGDRF8Oo~+<Zj>npuJN5
z)$20w9giXRMUl0GI~*D4-ctkN_CL7m;R-W7RN`2?pG69J)A@yg&!hANVILmGPw0=U
zH#a0=jVL$&XaWD7*IXY@$hA*kY)O#T9w%(RO)vl@4xNXLUQHx5CTs-UD5rsNL?FjB
zP>vYwWr%zK_WDYI&Q=TnL02ZMCkV12+EoFq5t6FSK=r_6Q|asT0oNCKG&paQUGNFO
zV}N>X;)}PyBQl440gwZ$f+Mi9F5Y}JB87KNzSv1pYQO1md=nj)V7o0KtOX36NXr^G
z4OvVxHFE~9r5f_4K^_OR5dcydNpcfO(xM<tJ!o}2p0&ie{#HiTX_(s;!uQr-7=((p
z2bg>FENL0rmm*6h#1wm>C2Jt;w7`ZpkK{DKugk@FFR?leBC`iPH8f%=aQQ9BF&1~F
z7DOrtuC>psI_6{$#4HL-Axs5Ql2ij$yyR${F$S3_Q-J(ikZGflwm{0U1R`3sLyxFA
z#S_`Ldd;S{`IdRlwmC@G_Cix!vU)i4pde>yyu%3^)2W5)brlGT0<lv;y_$IxnX9Ef
zg7VX#69V8zTt0UU;Qnz|N5<tlftlyFkSn)sX|7fd7P8^0QA-y2VMYZyF@+y*%R*QG
z4^L;|*VG&L{UwZ1qsHjb-68Ghl<sn*2-2XWZlfCn5hNTXAtE3kBIrgaph&mqXi-E!
zL<EJ0-~HUr^B<hob<TO6b6wxh=lzCTD+d_>?v@<r6O_=PlKkT@(y=NrLoI-vFFB8O
z#f5OZDa97grqk446lga1=YHX!v*Omb#Tm5#S|fQt6V#$D;k-mMZ7ThWYf!^<PH!s!
z9gY`<Fms@}<cvid6hfVy@6nO&8OYu9z!sgS^2=H`@Hv?j`mc&E-7C`l1FbgX&SWmc
z4-{I^=m#%Q!vVI7x<%Xa_ZbC>ivY!mYE+(oAaHE41Fl%>0wSnZqW`M^C(jW&m>5Kz
zd!#@u6e?1g>iP;-vh}>AFy=vh$%96dk|G+EzdVQ&3*^cJ!3RqY4*-%_5h<bAs%_e*
z9Hq~kOCPJ14LFy*De-?ogJRqR3R;0S4T}x(fC9t(RO3L=7S(Fe^39gA(LZHx|CCcW
zDppOjht(=JV=BIsRD69=q2XMy^QU5u<KcnY!$W7;UFV0#B@a(tJp8-x@LuS{GY%q1
zod|Iug5X4|2Sj)`k#3P#mrmTtqds3}qfQW~K~jnn_Nb#nIpZjFW_$Du60AuGdTw0&
z>os=46PP$0%EMVD;}XVE2L$MV1QDR#dkiC?{u<E?qRf}+u+<hM`cLSHF+@nekxQ0U
zjbSJ~dN1XZJpGjbdaJKBpMW(s8T1e3s$Cuwm<801^H+0)a$jD|^9coDM>yz+wTdH%
z%MU<nAg*h%5M6kcF{19ODag}>sxq8ecpNB#ON*2P-Yu+?+}DqA;avfgI3Oh2yY9=L
z)UV$Q6QqCu`Bt)4pz#t~&V3lu1iMB6!?puj$16kz$f7WDf2y^?f3+SC6c=S;7F;oK
z*lQH$e{7F=+?oNUm1{hA!98B+0|+CU$gwPLrb<0<9<df>sXWlmv&WvrmBXB%cPFYO
zi6&u8lVTEx3vEpI8#<x>#K5XiUMGaAq3M0M*yq@0Z#3_`E-eo_!iU04b`cINfvxg4
z*JbdeJ!_tN(U^DgG*zU5OBlkoC%szDR<W47i8XebG_qp3DQw4w>t^z<6uE&HLHSVm
z;ah(N;DRPve{8lK9ig~fO*zaUc}Y+)blY^1+uK1W$v9>~4XTF*P}x(6c&Q31kV!d^
zTY}_-zQnE-_soB_?Q$j$*PgpIns@dmj0H^vql6{HTUC7^Q4<j^q<ZVVM!-^so^Z?7
zrIwr5c?k<V=R1|0XO&#uOPp>oe3dI4qApx}`5g2F&H`(WXJoDymC#`_FH?Bu#ssHP
z124R^A#Yq%cN^5{!0(IYE7b|&Zsi*Va$nbYVND}=T7b6Ee>9%|!kO3=y7^+FEBrYS
zN_>o_k*8aV>~=<T*62L9!-N*D#jpy6;-Z)X_+LIH=w!JT`qp(D7Iur4vL659;ZRm>
zMwkKnxFP~M-N%906e!^x7bEDonL5AQ)JuV6ekWJx8!lc;pUzs=7kghjHsfTml3wIO
zVb?xE-2pMFRjFz(_SyrQfDNg>8eun(@@s{Q)|RwspU}izNtR4;EiZE@QCl0-HY4Oz
zcJ%t(q^;3b_qBGH)Nc*(Cw;j{e#sX&>1Se)ra=8c_3N+t1W5|Y{Wel=5a~&;*Bxzr
zLw%Q{SPeTRdKXryFYQ<>zD!axS2GRdj#NldaRm*q_B~Z-8B@(PjDHN;5$YlmijT?t
zd;OD;2StL{t#-26>};u$2X0#HILGT^jSNMSWB{5>9d)i;h=8#$sSE|ka|Kd&6_g)w
z`%@U%5F)dxkWqU54Y7~SEsOg{c)^1s@vnW#drQ(vDSbu8wOgk{hj(8Yw}4ng%#|Y)
z)e2PL{g;w2(#EzHgZ*lBk;6y#hcP}%u22P}qKc5WLinEACG{84)$+#G>VJ_=b4pI<
zjZz9iQ^Tp?kxV^}Dmt|YK{a)-<o&gw>`*HU?7(cIR^1%5HgV)#o;u7*P#&e+1=eU|
zdH=>%WvNNy!EXqe<+-EP2M^qbhcEl>i60C|SbZzdXqS*iCrHKsVkiZowL`W#4ePZG
z9ImU0+tQtA4*!dX?8VC!E^5kRfc|Y`1P2hy(fb9k5F%k*>E;A8Pj(7WOJ7P$r49%I
zGmD0TB39HtepGv^Iqpt@8=;_;<|;$gnzAHKy{(BmEUIog6BBNbk6;~rPA&B(!&-{!
zud+rn;KQcU0(WBxdsT#v1<a1T;bnbq-#Uz)&|@2SE-6PdfW98s4pSBgIj8Eo>^Y;x
zoAl0-<;GQaJ(!R|yZvPkAA>)7YPCdzS5^R69K`UialVp?@PJXA68hTutq=2-f=WiA
zKGNw4a#JAaog^c|6QkP@V|T=YJ7C-qw_rGaBYv9;J)Y6+IUt%hd!Px3x&bjPGb&i7
z<pCIO)=1S#L+Z*GUmc6x3`=_Uq@@0e$Zcs8t7l6cS48@PWICmr2uYwmQ-{M@<6Cu|
z!G+x|+0r9@iv%sSjbdx2J2PFTv2eBV=(6Q&`gvg=6HEd$b6WpSk^ZfN*}&<iW;~y{
z1sWz4v<k~IMY*h>46yCa%BCER;grp-#=|#~q`PX&V*imXiJ@bxSI+q!&0b}>aUDw$
zIW;?{?}PX{m^uj2*uTmQbsx?0)R?jDOtO*aut}Snxqe6sF1<qc*Ls`Pra;+DI?6^g
zXVu)^CWRKQUa_!4XQUMj5h4cLV+SNCIxiF$JpYcN{8mM8i!y9*+>cs++6OY#Zn;<q
zSm*^y3MeC&`!;Fa;r2k{pzSMPGrNj)A8o*O?M>&uz|dW0A;8x4Y}>y{J)FG8JR4K6
z+s+ovHv84Uf<{Ikl9i%;sIu=?&;Xm@?ad2J!SXjqMzG#rX=}FIzD_cqADr>ujfePe
zY~M5RE}e0vf966~9<jzyL^kc8M$I|`kk@`U<T?b<q`6mlK+bD+T_4GW7@IoQ*;i&@
zh96~mqJ#BHOsrjRx|Y_u_T6*rU2&_+Vbw8r%S}MNt91+6q@LSd^9XfYcqPX8^2638
znE+PM_9egrY3LJ=o9F`N`tsZJ1W(^q42&)DyT`7&?T(<n>2D9jrp40w?vHJw9^S5S
zt)d=T<?rdg?5{Py?+IIU0(^gRFI8q3KFy{(o2+wM;l2b-`Q!^_|7_Xj%bwq{Q`@;M
z#)v8phIAj(?%cx$Oq3R~_~`jv^S>F<(0o<a$k9H<%VGQi;grql*CpuiZG6tR7V7iV
z_NR@*)f=G=S2k&(fgg^uJaHoa@pI-Qyv-A(UXpJ-%@}>pRdPK8sE*cp#KLb%UuV1)
zIQIR<`S)8!ztrE0o~K!SXjr^lai}Hh6?GYMi|@AqMeg+)nQ!`cJ3Xx<BP|+xtXY4Y
zb^iO8H!1-s7R_tsYsq3qh4mR{G|_@Y%^tFj!IhQ&6i0>VDEiw+t^9cJ9r*h|Hsw%%
z&sY5NDOcM8y+x+}r_YbxFahg=bf*szp4-FcWj93v+$jrsh(OHUZHv9YK-MUYkeL^Q
zr-z2|ACcQHPlK)*(R}N$LcO6B%{+M;>?)Zf{3zxY+w|!#WQgQj)Y)vv^Cswz%T(KE
zH}?6A^*z>64lN9JfFINl@XGiG2XDSHvvIX2T2gkhg>v48wtOr!l<bzAG||u!%OmGe
z;GM}*Wb<TqpO~fJ!)rXX9Zk(B?ZI&OE=VJ#=s^XHqkwylGZ*7RmFkj(L@UmyP#>Lm
zoQ+RQEq&m$;!>YP3TpjH`J1HQjxzAbv$ArFiA%VHPfSit&&<xf;CtRLDJ_3kS)J?a
z-}vO|bt*$U0c$MnR1Q2P*n}GCa%OWAcr`1j$DMC9S;YfU@1c^!>EV*h*Q1)Gucyji
z^63S<&}gXf*3n-6#HDwX7m>QNJT!+gw&~hyR864mmE;sG6se@!px}F#Mpmdx;;zu(
zbKGI{vX2s@$qRlUwSb)9zWbY-Kaw&cQuRgeCikCLz%xhueXC278r72rjPWEd$K0kp
zF?}#?o)PKj>+i95^FZG*hA--S#yTn2Oc|IoAiH@FE=%qT2Rb}mdS%3rhkfVy4RH5P
z5~OkZnpk-)c$T^Pw~m!;b^d+7k*NljwU@d77MtoPuHJ3ZGiTJ%LL+*gX(t1qN1QYv
zVbZlwcI~q0u(h}OqK>b6*p+Y0w}%C?=1!y|IS^7U<6aX_*pMi5s}%u(w7b+u)*elq
zIzKg|94vku?)54GjA+M(RSl#g*a+8Gy5Yt|$qT+5A|$zsQw^KU_CKm3na7q@r#)ax
z&4VO4OYq^eSv`?OB$_CN;EY{qV#b2bsgh@MqM7RWeax#MHw8@0((da=V|qf|)F?m}
zGtTg~->cuS+Tkuv{E5_3SbPf*#o|eTIJ*t#A+B~cjYx_P*}(YIr%A^A2a=uy<+&co
zyGjc;p0TU0MHXnGCQQZHQQJOKqXf=l(=nc_Us{QDu!)I#e=o3+uLYxpm?yeDV5~IM
z&VZ)`YSGL?D`VPU)=;!of~Soxz4FX`P)$1p&tTV8Up|bLWHp!HpUS;_4%peqXEId^
z88_@Se`;o~L{rD&pqQZSFeLCVKOZyS%_8dOo@_r0Z0fhr*!8=9Ff3MgSZk>J;fjF!
z=6ulHMd&fx@l#A<#I9Ok)wgr1p--BjmG6EO`(Tn~?EPzTuHBksAo5FqY&uJKRx|^x
z^vfUrD`#@5d3>M7<x3mHj9Lz`!fu*Y&rT(#|A&E<n%IR)r$XRg;;)JoXB4pcp(fe7
zBY}`Sea=2I61N6j<w$nwR!8ww;@AzSivj-P{@FsrG{IN2Ud>wwo#Drp#*3h`tC*GM
zM8VyX=4XNqTyo7XeZ&ymdfOYp-Taw8A<d_oNK1i~AkH_h1$Q-|+i8^#KuC`?!HGVu
z0VnUAUe4A1A<6!<Fd^i{pFcEj-tFMwOCkQiDGfec6c!o1pUiUM>w?U-<<JGac-tPo
zmXpw`{^c~*^IT&knUU!`w=aE$*2-cCpKf$hT@XF3X8A*&Sc#K=x5Qfc&>GtwWg<0y
zQ>p75|7&x9{`Y$&WcO2Gkuy55l#%m}ITfmK6Ozl*5AytyOGh`fT*iQ+`CFcdqo!OH
z;vUKb9fnwkw4s@~<x;)GNPr=0+(>LcjzNTsXO*JBN)iE#O?k;uLRdizDht*9EqUOW
zk69Cq8E2{nF#71zZxH%~08D8irbLKA8WgaJKrOWD(N@CBn3=&qBRT;#Pk)0`<<&%|
zq!s8IyP<qeewMG2x5AF{<?B*=?o>nXn1byLRVwmxqBN<%rg=tMUt3*n>gRA>0U2@s
z2|HKA>FaW5<KJrSw&o^9t_$*Wn3z~h=3eia<8(zob<M(nk@Fb1)41{P(fqr$N*m&H
z#~_PX=E5p{VMUdNVat?*dmZf?(qScL?%Mr#$MOxSKwHh!@mPp3mO%5F`n|hMK}iR<
zpM36uxu51#F(>AcQftYTpx}biA76zdyE!bvatg{el(y6+N-Uz9BRD?S@M)}YSjK!P
zsQA^srL|u&X57Vc_2h8tGLX{>&rnE&D%UF<J7*`#6jstlebM9Rv`$}?uUshpVj%y(
zIy<<qn&+Os!OSHf!YRy1$o&lvlV^iS3kNyB1H8{lw7J*amc;|}34@QT=T=NSGC9Wr
zsNw5?o4*3;{%dou(AXe~bz>)NEhhdRfr_dA%UJ?5iw(INj`UOIJ0u)v$T)f_vPBO<
z()nHifn<FVvvd*{<i!v;js)T*h%?SQRu0cnFm=tO$E7F?h|Ev~arT9Pk4@A5C!MK^
z_BwUR8dN!IPU4Z$LX;Bv?&h`T2t!<#M~a4Hk8H}7uM16QB;7A0f<=t^6h-!cOnFCW
zF-ZZNuu|9MPs}xv#a~@RTe<611R`Va8QP{8gEZ2KkB4-c4=1TW@bV0HSsi?&eRA0}
z13#p32LKmad4QiNL;#s|+?q1ozjk{8VbyMelN!tXVm7&8MXB>IAI)@G<MB{&fM;Cp
zU{>b--0Pq2H3`5(0zD?H0gMWTopAN<=1^X)eCNUI98+NI-Y>lu1N4UCvUWH3p;E>V
zAT|2k%gx1u(lWjwcU%#hbeBBFHlPvry}hYR){xJm_TbTfL4230`#b*7@T+?FUM1>5
z?t>K6l5R93de(b05)=$Pj0v0FAgHYeqneFe8n_;l=>AASs(%Noa7p)_k*W@y7+<QC
z>zru#VU$T<Zc91Q`F$MnEtOr?;;UYvfp^6ufk~g#vx?cl|H|B3P;Ua{K7$V;AY^=c
z2&_s;W6}g=ui4<hS)7tZZ$`jqxinDd3A@Up{`!dX)U^mDW*}qq$|Dx1Z|vO<97@u5
zYI7)oSPJKqmXb0vDs-D+=>r?1KUo5v4P%3anUimmpNg_)d0Z_;+ybB*B9z27YK`yM
zMHm3Bo&-4LY6w|d5T4Ir?%!`uT7C>*ct&F#a_d`M{4KfQHu=d*!=&-qItyhUC!Q>Z
zNW3^-%3(i0Z`du92R6UDjDEY2yjh-SLFG%H?s(*ZI?czRTUREW9hlZ-Rv-eXy0;MY
zZ^AXb-B<JvCx%1&-0=V2U4bFWU%OawP~qIx6OLcJcisAG=Igj*E{k<af0bq)kM>EX
z=g8q6Z_5gK&LUxrht@+if~kkMd*z<XGFTm*vqIJ7-I?*lW^&p*<bYrRH)(+b_)}(7
zlRI+k!kzbN7sH5ygzj2N>-Kd$p|AO7vUdtVent#}KQUx;=+6Gu#(#g{4>|GIos8#I
ztI?C#jDM=euiNsJA<A&|$*q6is&&F%LFRact(rGo5ll>7Xei4C3GIzW5>py(ie5}-
z_ZlOJ+CLTQjhA5m*bbnckAZc(PJrj--p{W(T%0o}Jg&9;=e+mnx5Jv%lz#)x{-f{l
z;N@2%7I|mCmOiqvMw4q3J@5SWhFE^TjN8wbW$BXwhi?KZRsjz}fN+41Px80|rp09o
ztSPW_8xM9Pow{wE5r99Ub<SaUsM7ft!+3pDT`bfJrxU3Uc|+1seKeeh1Lt39G#u5G
z0$kua%;O(J+z>RFJaIQn6i6q)&l4Ik4&_0B_OoEFp|G$}8Xd9)LT(png*n53+t5K4
z6v#)RvkJ_=P7r-(E|oljJMAlM92bq1rJo6<zoT<BL^wLw{1Ll>+!bI^g0YG~`Ey7>
zG-W;D5%e%aG>62C7DUI^f?WVYlMG9*WD_7vBfA3VGpygEk*+<#mty;{5z}oiPv|BE
zsEcMb2pj1hWtphk+yz)GkcGx^Z2e@g6kXRD4$xuV`DzE~h87kZXE((B`ZUUVsbvHS
zMcD@`cfu}XE^Kh;Mn)DCa1uJlMwTWL!fGVXY64_p3)|@$<e&y{+W!#t^9l4I(v|LW
z+~Vh?#vz?aNR}$@m;2nFWS-uAj-N0uD@<+@04Z9HhUEMztYS_DaB1BTt8e8D6FBoQ
zdo~}+&(X%8OrpoXTXo_84%$W*q6<)DC{-UXvp*Yx2=O1*!Vd6?9As+~AHyjN1Uw60
zzCa!}ECt}DPI{}PAOfvQQDwSpM}gEDvB%r6yVTu`K3IM)6XTMk)VBgD8&NnT@mc_c
z;9g8{3>0*oUCW!ALr3iG9yFOL<>p<2F<_s-L}N$d(7-|WR`y{=9k(Y%M=3%L7~y21
zl-@Z=nnjkT?_k*i0KKS2Y)(pjpZrnAEb$~&W=ui4wqFixtFBFyf0+s4Ea19lBYv`v
z^Rc-@xl6a+7O==HM&kvE{*l~C<~Mn!<jN@EE9JM#&nLkw=-bbyj2?3Ugj4Cx!aUhL
ze4xx1QXgAiKao5SfxI0rVIC$!<A$GJI+2r)sAzOmu3zY>A<*K2GgdR`r1?@)!NhT&
zTCZ+Qo(;W<Eo`*~ja$3)(;A9IYtedvsK(ghX$fr+C~S-R(}?YE1wrb;BM$<<E=hX!
zfSvG@{)g`6=T(=#PYu7J2#)1q{zOO(6(~P!ZGlHhq3mFEhcp)?8EQ0x&KgelJVb3w
z0E2(WELaIZh|{R{E7?aHxYH@Gj9<E*Qs_{b$O?cuVZf&A7pMWAn@^b>Dj}dgc52)u
z-xR;a?>brSGZ~6oZd1A(!7x?~*aHHUs5A^wGP=b|Qx$3Y%y63l4gLC){gsk=4B0d+
z(ztC}qr`~b2_3pBhq$|`MUD2^dt~B{zsz~z122$F_B3Y^LmV-pA|Vh5A~blUxMpAb
z@^@$+D?QDORVu*RS<s3WbUqo3=KW>mNoCOw@>5W@(dw{L?l{<~xss35>-d`1sT3sQ
zeIZarfxMdaDG^TX4nZ^37&vry4;)ZwET1%)goQ-<Gy88ae`?8hIQK+=_={5_g&cqC
zBJeb2Sd`PGD*m1pRl2gAGIFahoDQ%43kN-lgqdU967f!R0B1w*D_4Q6`ku=37#Ir8
zW`}3H%@6Va1sjQS`>BsQ>R@WaSP?1oLzKv~pX|(@F1Z*w3NZqNr0F8jp5Z)cXXy+*
z>CN$8+n8{rP6j!<t9X5+Uo!hEdl<9IqQ1>j)&mFUPG5O=&55tT#<Zh&ANRNp57l+S
zfOnUfaQ=2ee4qUp%h?Qn2r6QuOya5pBEgp>y!|o+uE`3DA9z~11xet@0q%NtwDlfO
zN5!b}b9;gP`PXF6a;`VsWnZn%ZRxy(8~PZp_gE@S26EmheO%?n;2>QnMFUxr-f;*P
z{VwCuD);qBY6y7%>X#ew4Por}X9d&r&B|LvQFe&eW&8b;Jr(~lnHEIa2Yd+{#tylu
zL>kN$Vj6Ga=zt>F*LGQcfhpF?KAIzInpwVDhBf*Y1B?$_4UzyR>xtSG9bV)5j@-3$
z{Qk!9K674*F{S!e$$$w_-xRZI)-n*AA*`Q-iR~YV9a@hb6LOrcvDmDEzM8W<f`~R=
zB26C#&H!A?d|j)2?HZ|l=`sGFuEej^=#R`vh+T8<`F;Dm#%2>~XXD$Ogw^)eiH<SA
z3HweOzw!68wN-_7Q#s*l4G8S>gv+(jF0~1g=ZZ8f?2ag3N8Uk4J8`F1JIa6V-MKE5
zU>6<few-{$Q?r+7pl|5wH0O6y<{DkfwLI!5fouMuzu)G)2_-!`xqZt|>dh@V(LGM4
zke-y_KEE5xZ*JVY78E^yEmAaCfGMOC6xN;OOa_L4w&I5<8QJ0PGr!S3sW<n6jG7Ij
zRxhDc6Qz4l_RzO2@3XTyOtW$UBH&|~hv?FPT{_+<0{s@NwUt_E3tv>sOF-oS|Kz#8
z&5z@cn~xS3o)d4J_lK!PG=2+k1JG~1gLcWI4(COleJ%8izUN$0wORLYQxb&~(_(v<
ziXu;$MoJ2<q~zez)2cID1k#O%irn>zSI&K#xwDE(hcZ-$INq2;BVRCP082{1k;B*0
zJ9oIFjY|@xnIHT~6(B!2#a*>DP7f6;{k%SFM{4d7lO)&QTT!ccXPlCWFPwjy2iZ>M
zAVK}#R_v+SJY%akTi`Ch`<k0qFsWA#rdOnsD;7kHoWzCPRpWQsD$ub-RyWIJy6@$!
zFj=9i+0<(cV(+42QHA1J_2Lg4{s1_$Dr^=X>}}UpbEE_Z)C8S83T&tei>-^f0QR2L
z@g3Y_gV(2b*Jq#98#vbG$2OF7H<WWu7M?WJ#x^!|H(oZammX>Ch<*H``|-Yb<DlJz
zom|xges3gJ)kmTh<Ki(H+q6|%S9GpdGo;43_@LJ9>vM!&(=cswZ}-!G>K8E?pgNZ3
zQ2~47*G3OoP7v^^;Puw@wHET%EVM>zNp=6-#5aq+ZO=wp_vy;tu0Ixw14x}dHF?>7
z%OnM?163#a*^nMYw4orGU4`EYGrp;MaMkL$qP$K~hNr4>r|zn)of;aVx-Xw!Iqk|n
z9c(#a_JjkqIZ?rJC>LBSjYRj#+iq}DH=f*;x%NC+{P{5XnR06vS@p%}Y0o!U&5@#U
zQBBXJk+D9_{RUFDCU#nve%6$Jh0bEx;zHv=bP@44=f*8^H}z&ex+9`DO`@0NMBhTy
z+=--b#tM<}Pom|r;W^)z;pY~ublh&Twf(YC()Q9T6WG9(*}}+a-}z|~OLI{^VA{BT
zaFBl)k>fxqb=lV^dtXUK67yA=DEb<qX;%j4)Jqzw$eC9p_CvU{uDp%|56i~SjK__X
zbJp<U(|MX+{;mC@8E@XMxo*f%ctwV1pUOCtfyRa5i%0X}2Zi>MK%nY}H45JJdbAb;
z<=u;TfCKibI%&`4)`nZZ=A&rX`!zcjfkT|kHg^3OJ!`>HIi5?@m9ZGjwm2j($nW*I
zL`zTEo4wZ|0Jf=&cij#T;*C2je%fgEtn`?vf1s;wo=Wt4pDMYbE#qbC{==tv)Wmc8
zxn{Nd_xBnasr)re*Ulk7eHdl}d(961j;?W|jDz2AW5%zge)7P5tpWH<`o%OYe{CzL
ztLeRw<&-Q|J~G@}@9Pw)O;X4V2DafA-M)`j;FcW$$#C62#UWAw--WfY#%KJ0%Vv(^
zA*TW$x@#>LhYY_jLdpb2-T>VfLIcv2f82}z=+_FP|0WpTX#eZ?j2WE(n@yzM@H%_L
zB|7UWYm@McZg~~J`<r5U#wobEvAnzw*%Upa|E^`aw`|l{{(1Sva-cSxEe~k<%5TVW
z<=*>qfR*ppgg>FYw<>?Y^3MLP+f%)G+H(E&r%JB4M;F7WPk+6P-!g~7p9_C|#<-He
zczmG3Ty*y7deX)J?<Y6t9soApj1<`2`UH3`ux5R0&Hn79?deD0!#dwC0E7pENwb~M
z=X&QLiCbfMk71O3%9x6ozuD(Z8^+Bgz(hUC{w4H)=Ey<`CWJU=9tC_lCNIk{8m2^i
zebKr$_>)Irf2cbi;Dn`~z#O=fe_cA{SDi)(gU~wF`)r>>!@Lf8UUwcQF+O<`m33$5
zFzhJh)z83h4Bq@N(RXeMzxKb8qHinz^I4eKgNIB;uMQ%b<%L?`Jv^r;cb&REXQ1gs
z8|AY$-!T@x^J~A4!;wkWZQt}jAXF9!Q+oQAI24_bQR-N)8r>uDLA)cN*X!A$^z(23
z2>q+_|F_J2{{P$D&G#k_PPBr$VZB}cs_A7`4N6yZu2`}0ipcQz@W^|p_1LLP%d7JA
z&@sffsIs+3MyB^z<+rO=_DDIYS@5gpH>pMu?cDv4l_-n+dRBbBMQ^lfc~9hkhqOaf
zk1<0eC7i=nSh6=18AD)@({LPBpONrVp{mxiv21>J8CjlX&L$UD+uZ5#qKp%<J)#5=
zc8Y%oYDp8bc?9c_yxVN1B-zW!6LFVNtbTQEH-GZCEc&wNnF!IifjK!jc%~8HYH)*0
zO9S>-=rfrT`B3`J3%=IXFeR#Cm@9ClF;aZ$k;OyZY>6lddx_}dy#@l>{vGhC2kxBS
zj9_Zu=sA|dgZ8p3YU^3Q9*ai{)zcVI!}#0A9<ng*^*ri2__dSS4&HHa;r}pf;FBKS
zD<+5GQt&lE<N@B<C^&anuzs{>3Z?ZG{RkPU{RVmFM_bm*OcmIb<~rXx)jVUfq_Wb^
z$n&Fi^>-~5lej~Rzk|>vGW%19o-&)i(FeGjIvdJyr|)(JvT63E6$Au>#=y5rZ)eS^
zhHnJ)GooH4zhKMHqa7ETwB15HRGV9H98kI|E$_(mN6O(IfmUIjn8>J$s!U?B5qo3r
zv>ldA!(D3y0`n1$vsgN!U|wnOUJzaH6csySjkz$LeQ;S)8a#dqwP&VpTX^m-02W{%
z^*OP0A<A!U_M$;-U<*SJ?V^N7WJxj9!m^xY^pwGMu;xNG-fhx28DyjGcqLZ^lwNCe
zt)ku`Bk0Lcb*i>@KOq(jNlS)ZdX-lV5^EunA&i<Ng0Dc&^+6?JOzYZ1JcEl^;nWc7
zkzqvDaCuBt$#YRQej%3%qnp76L)8T4fG^?koAuBtC!rTUK7amf@jW>O)~~agcSjRz
z*+5)PE&a@{O&4YE(>KYeBTp#oEDc9r#%qw7jG%GGqmZ9t{!~e${fWTNpZS+aup2QQ
zg8Y*zsU#Y-laB`+e}x}p#Fs}6Ewpo@d`c_jRT-fE>V<!*Ui9l6?w4(UXvX|<Jo2O^
z(%GvrNRU~>Q&%6h9%Eo)QRZq+JJEq%=omGbd>T7;mrj_5k`dR+u}n{T;<E8*y2Oan
zk{l)=Wodm7zLC;1IPCC#X~_KFiaPnpx5L87UftTwZ+*jF<sGxG5f^RltBI{rDXG$a
z7+PW0iKntp|9#6}JXY0VS$y0|Kj<G4Qy8kPtb&n8HTbk)Xmf#sE!S?G7A|xd#R}<D
z>V7@GuUyAJe(&jNW6U6Y%jK29dLF-9N8kOZPaA-c0vm&%dOp-|+K8(T&tF@#e5hsN
z9@w5M=j|7c77*XjJ-r_O`#nd&{<1P)&-O6T`EzDnf+|XB>74HP^{s2#(A~S=JO&Q>
z_!dtoZV1a;OgS%`-%p*ZjVeulBVL7Esl4;z65BDp{QtGN>vV27>F{3AV{tTcdf}q}
zI#h@j0Bt*kiyB>sP{P#TmukT?W)WGELJ2w-KA$}}Cs-0gm{6qvQT}hh%vG1n_=!*{
zRUH}&1W0^m4Jz3J0E-Yo?C}ku_CrK4ziKmcPY%0;4}Yf(1w<=FN|mI%2l^ZWApU4*
z9l0D<rUDc)%_BVQLbDa^vCG(nK^@<(UiWYkl!;}^dWXd_sj1><w21_tCTgBb#Rx`%
zRg#^*4vnR%5k2QV=3<Zm<sApIW#zh^YwWBr()-ZSb7O(Js`MTndt^;`c=%JDsw)qY
zOs)_H739l2=|fbZ0w+w_UhNdH$K5`*o5W;_^MBSMyn#(vQJfS>fa}kYv4=uIDcxtG
z1lWKKfVoi6?h{LOJwg0L|MHK(hbjwOy#c2AiorE~lA0h=M3rLsS2s}&b|F$znFZ8S
z2fyBRA^gGlrk-bHufs#f;&1NCDZ(Kz#3eiuR|}zcG7MR@xopM*fbvmD)EJ!pPK*@c
zARZ5I5gs`GXPXM7FIFqT7l~i&$7udd0#L-kxv(1#kn{BsLe$XPHhAyu1A>|334tj`
zF-WOaR9m-k?0|BJF{D5L0-^d!AlR%BY252=_Qh>3$8SJjRzPF7TI-g`LRN`iHDIUE
z=Z^>*4R12dMIFWoPOR7_QL#Xbfciv+M<J_Ot?`XjADdQ$z<sb5J}uZ3H7t#O><Tq;
z>sN4m)|>(4qJPXjZaO|!qa-CPH-2(sLpy{4{Y)~d{<#ND%grj4jz)LsKv&n~Tf0C$
zI!qZ~)_O8@zLRA<vy{^Ur^QH=q^;;Sc@SK>G@D)tpi`9r<-8N7YKPM);c=)38dMvG
z&*5D>{WqV6;+97kX_sd*A`~TFuYL;abUxli!bzP!CTE}b(KP=ZIi-TOOw-PGfZ|72
za-l@_?3eb<3FiebKgzGqb-+F361jG;-eeWMKZ=-x3@ZX9M!9?j4eaH0OIguP?xX3J
zJICy-uvDuKN_fa;)*)6jcVyWF$8k`VJW$dF`Ipg2hq~Q(85u_&u*{dw4$4|X^-~X-
z{`XYutb6x%IiJLls12<^p%X`Nj(MJQx^X;98VP9mp|7Yx*H_Z}#T{Q>#nPpn%}f0y
z4Awb{<=<{>X{@P@U6lFfHs5bu2CI(~c$F$?gZwXZ{kQZ=)m-1d7=2@$$g5DQl?>W8
z^H!ho%WHq6@qODeQGL4Vwql*Q5*~Cp8id9u+e+oRU*ZNp+NglhmRFML%%8zqE0m)n
z^3RFZah2fLegJ9<u}v6FDQ#ELc(boov)|Mr-SDTrHhj?cKv~}poM_;4BLrwpv;OLf
z;Qf8p$aI_nWyuZ;c)m0m6mj4P5x@xaSpJ?e9KQvp&b!q6JP#!Eya>n@?X2}ej{u2S
z0aB;F>3h5PqyAMhSVZ*+XXp1|=0kN_#)p=#=7Oy0#n5!yyy6^3S|LA+dp`TlcRg0m
z`F_8@hdzQAPurD{H|HB8L5tQQZ;`$?-+L)BlTm6a{}#uL=Gi`Ix-{^$_a|YBnpSCz
ziR2i_&Wgiia=`R}>m^~5k;@^+d+Hoc7Y0n)FW>yc@bLBTH#-EMeEk(3!?Y7lU_8eh
z%&$wva`~(Lk|}n#jLcPAp$*~p^Yw>ti|a!3h>OT9u0Wl+m}F}N=q0upE`;h~I}2v`
zaLsZp+$e}mF+T&qPA3)m5cFzbH)&S38Nda5fqWl)f2JA;EqVQU=bzTe#&~&gx)|m|
zH#X+|?|<zTzyE1tLXNleKEoBS_9V0a@Ca3<%-ovZ_$Tvh39L%$oO|tkv>%51nfMPA
z`}QpujZOz8J*0&aTc|%+E`gMAGYyGLXDe5sAJC-VgAZ?In~iUj*=U*-y&&yAd9x$*
z@ewQO&jK<+iWEFS2j+IA;2$2xd`7jf&u?7)Eq?!`_5&<@_=Lw8cJnh0LFYVj95QTD
zF5dMCsfnYLv7oo;Ukx=M<ItgMG<vPd4$=g~vSChpKLY}Qx!1`I9zd$tv2yeAE-Olx
zG4Atx@+bZrkOC2T13MK{IrIn3rqBOsm~q$OGsmlsht}k0U7&ktYl$cjnqmtV8gP*!
znYCiXImp=Y71o*oU=P1&w*9A}!OI;uS#wNy4^CW&dP+@)YQRvR6(^5_dR{kq(QeJZ
zI>pZnqW#G4w7$YB2jI)e^nHPYHO&N?Ckk>Vi(>7Vq_9YH@b?&UFrC0F69?^IAA?m%
zW;_D#vb~%R`S%i5X_LHs)z~ENf`nry6~_mt(X2GaGcuaqN)~J93hG5^tZDph0?6pT
z*(jYkXUuC#h3eh4fAu8Q4`>z}9a+MltcWge_FJkX+Ps!GA~!7rUU^e139!TZnBUNN
zAFo1MJ_3hUXz8k5&;y1I*3|jb$@sM*ipl2SDmz5bNyuj@zLLFbO@Mjb8|8yW`|!xr
z$W*PER8?|z&RA4p;AMa@Po|wR44({%rU~;HZ3;IBfG~iCbfaP(47d<O3&}U@tDz!&
z0I6cW6AfwhxOJFonf^}y;Q)69;Sr02)QAkDR+5DZ8!hpHzF(ECHo%V4*kaem@?;bS
zsI@ZO`17|Atcjp~Ke~^@(e4p#SO+fO@XUKpb+x46+(tpzMF3-~Wowki?=FJ@a@z@&
zn7J}+ICtYL4r(kpuef~>-T`Dd3Zx2+>%+MLLX9M#{)cNRB1ZX}88`eqZ~9%zt98x*
zLVEykKQc9OR4o=Cw7AsuMI`vh9P=sPOF@KRm_RjO6H!K@nVzDd6obqYJ-Eq@gNw9I
z8%QCO*?WNDR&P<*HE-=V=Ha?mJ_%)5J@VvCb8jh(OA|IYs%2~OJ$~VP`w!3HzT++C
zErs!#E34~1;hUaS>vxzxy_cU<)t<~Jzqt`=_&N>tHqt->?cnJKe2ZJdAMn*7R=qJm
zhA0fJ6;sr0GOdHoO=Dl?JSveCh7?2cxaODht14*K4`ZyVq+I#oigjO`Lfv&W9Rt72
zYZsQy<1e`$6(3q)9RoD1A5DUyNkghaB$N7#Zi@?nYTk*zaF3Yx-{Q2+!nKJ3G&k_R
zS6`7|!+ix%5ic-Z2AHur&W<L*Tk5A@V5E*k=wEFIOZ1hU_)W@#;X>|ALgHZ;-}f`V
z#R)^1P%+hLu^{8^Le2o%cpMbaXR*={v2#6MOx#U`Kv2OZA{&fx*O@Q^>CM;JzW7J=
zl9Dn;48wIE%3ME``ckR><@H})+(<y(=tlwONq8F0h)j^$F;<T^XKDc<r3PeozIL{!
zeNF=F5zWMV1dvuB^PQo4g<n*XEY5X>zKtFxwonaV#4_BtlQ>532;!&u=DvR7fN70B
z#@e#3@SP!STQZ8R*lxMy>?;8B&660|-JOKh|2DZdpz>Y+$>D&J$u}$1*Qe5za3Tp<
zB`7v<9T{2Pe{yBO&{8*^GzbFGxJjiig0=r{bCfu!S?TC;!(z)MyKg4%{L9z8apO(!
z4XuGdZJ|Cj<AL{`-&X$^0G}k&;u_O40^)+nEdf4T6I+PECgbrP!13474*^pyrKWJh
z)O_2kD^&4AZ~wFyMRgIT-_Y`F+qr*)7HJdJHip;LGRLak%r$3(mQ6&qQ=5!0D`}>l
zO#quEAmCWgICD_1J!5><+w+&|z*trtT-TG?SJX>Lr|EkcO_aCSVjM2bm@c%<(DFB3
zY6SSl;;HKaxXMY$xEIo2W=oynd$J5JJJ<qPM_C<aB<uwEq(s<lMUi~7gMrmm!Q_T!
zW4bpcJiDxagQ#_wX~y+2NfK;%lI*O_;1Aa>QPCfLk(p_J@}nqo%I4`KohNMZ)3wJ#
zx%#p`$23G@MokxpO#0HQJ>6$DlI1oEK5}c?fxBKO7ZqDr(QxF@ks9<f8oOwaQl{1V
z25S?WtlS}o5IOn^htIc7>ytc~^5CH#Wsf(1RJM%7i^(bM6yn}ztQ}CVA0?fBGFmJ`
za*on23)tNdDq$;>JNG=+gFl4E-w*|V9)7DnS8P6PR`cU&8ouI_44YDDY&7Ge_Vhe_
z#x0)4zu`7HU%y|&gf?P79NgAnWZeA$*iY3=L^y{2@(QbUmu-)wdqYRh#!5d9kty^E
z(RdI7du`r@dpx)Yn_Hx1N4<YNZh3ts5ak%a1iK>oeO9T){H>Tlsy`W!o5;>3_qk0{
z&2zrN0yw5b8T+^&lf;P9_&i~UpGNdehVI=D*i&~p2)7#j6N{(838UmN;Noy_Q`O?V
z1M#{xrZNQy@4l{{J%HSS?@-Iuu^H!Ea}LZt;C;CCslp_4crWrQ+eco#^><ADUd);1
z?*O}sAwap)_vhhsiXVi+k={RRg5=fmL%#Q<{2H<pO0Yc4lmFx5&yk+<kB;;+55Jt`
z|3mC2TRa2RSnCYk6-ru!z@^;3LivBvm>)V6|E=Uba|7z=mGK_bvf&J$ArJDr^hLT9
zy#g$E(*{(RT#qRcO+}VFq>Z)uF_DM@QXiw{+|MteWKDLZul76V4NB!M<o-`gZ>-5j
zhlA2vcH3oC8WGFXJyfj40p_{1SHOq0rej)H8SgY;G>C^vEnDnPhuUWCU(1SgJ~J4w
z{8~hS-1H+=86q98{d9ajuX0+c)^8)QY_4c;BOgytAXnzxc*nePm$p`sZWuwoVD;c8
zklz<albv$TqGPREna}2#kG$8eUI%jF^HZo~7B#SiWm~<-pJXpAz?RMW*aFj`2fH*t
z`xqeawzaf8m0QH;xV^iwKo(UPi+_ZPyc)C6zxOV(DvJAgiu`44N;k!<r><Tt@QIwI
z%8V2~?ojq*fi3;CuNZ}(FNL$0`M&!}r|{csjAHtZFOZMr+ai+NAfNkBxchTvk85~v
zJBbEE0$BlQt@s9Po(J;T@FetC6duX8k^+k{GW>Zw%lX)6*0ynYFIkp=tqD{^=QVIw
zzUJ=$MVmkkKj)?VxZlk2ic;owH<J`)oou@T(tjO$;V(PSSoa#qgxl#VIS5a(rCcRn
z9i}?J&i35hy3jz4h%}!07TW1gX0_~{_N(OicY7u^^PYEh7fZ2#-9JUuE_<_5hhF)_
z{L;6=R+#bKikB9aSH-RLq*Jl>UY<HJAH|T4JZWyfjw_;7eWS>^-m^|Y$jjHljW1nc
z8j3EtWfm5w^LpS-Id=?_bXevMG&j5S$0w!-B+*ZIZ@pgCqvM!O3WHWDt8iTP+MY>q
z&4F3PD4M3)mjkYG>14m19=olRR>0=tX=1}M>&#kK?rmQc7-J8#!+v+Vmx!;o1wLkv
zN$&4XyvNCr<#-4}-Dz;-8Jc4SIHDjZygmE!(e9IPF3l|1IIS)RADy79RI=^ci4@24
z78Z06J$q{^nfmNAz7^PV3kZrPJx|o=Vu=~c13v2~-wxx6>^KQgdnhLIl8yM1ZMwU7
z`UoT!*K^gk>)Xq;!~0wx<6=fnS@q+hq~pkMPsoz<O^@+;%E@W&N6JR9{)d$V-lG%3
z%Y$)41hv1c*iLn4%{PKPT>^iHyr1>e0S9HF`7`s`>3{ReLk}zCry6_mJ2Z!v{*IpJ
z4p);Om<*P<mr(V*B<yLLGH9us#y?nzpOj1p*#0}I@o!2mVfu6Ylv%=z>%STA1XBUt
zEZ>B=xPNnr|LUz1<_i)QO8+f<UYM``xA-h!>E*w~1}&R<7yJSz561Nghe^l&+<B8h
zDbjo?oee<eH~Luv*ve6wgwRHQ>9vmjy`*urwl!9U2T<$V_Xs2}9ApwlbVkaHy7DV;
z?YmA$ST;4z=43w-W8j932fK22lV>{nO5(mRr@I&82GU<~IF-HZh^NHRZON0~CIqu*
zakCALcIln%3tnz{zW~oFMaV%nPl01R&{56hElb*;F(_8C>Rb(@*?SUm&X3rWcn-7f
zEHtEwn%h!O$FsMTFAXp4zHMC9{kXib9JJ5FW_-awy>syM&bciNG32l3m9OH2r+Qbr
zIhbTvYa76}7{k`&8vOhu`bv)(Qzk7k#I`bQ>0ip*Cz(ZJu}-zrRdap+V$Necqrt3Y
z65Lr5^Hvm>#0PSPaeDjnE;sDF*CZZGU>Bq?Ivjd5>FtHOSQEA4_~h(+<+V>bdIv{m
zmN&lt`Uhn|UYro;uqi0$+7QCMCOO4I^9Y8<h3cW9wd!3SeFP79uC~}iLXq|zT<E<|
zySmjfcdmWqcG^qHc<5Ek8=Z7FyP`{Yb~UovhDgRpLz!y@zgU%B7K2k8mcmk#;NW?p
zRJ3R1Xd=?-pj=$s<myNP%tMnn8A3x6MtZpU5GZ)QfNzV}zqM8MBk#-o`BVL3os<}V
zv}ce{RA3$qL)CT}3q$D?z1@3nL%AGwoZ5UxD-22<q-A`D)1)$2&u@@Y*kPJo(G$9s
zB~WotYaSpOn1PYCSubr7$fIQ%C&`oBp0`v8M}A+Op-nd+-YpdmS)fj~B#!x_>S67D
z^{?b?xQ|CQ@SBvr)Nid{PA}~h4`gy(23sFPEc5tWdeHJKstv1e3uLKf%C<gs-|~JA
z6c2xgXXkkHpNVPHM3OT2n3er@PviY&&u`FUOn(|Xmy&<6HUOB;UfdyDf_>JbzSl&{
zu7qyv74uj#@4P~#icUJCd-+Cb+QTZF=0%Yl@ue^!b2YiCnADg-33ZV)U~}|oHDJG*
zByY%ZExuOzd5*C_vuM2}K8e~V5C~LoGxh{Q(3tNJnDo!bAK{q^(|b?^_l1H2X?iS@
z$>{F%otOH?NmeuO9dqCa5S7<fMv<zAx6f8NQQlqp#y>eU;D)%{F~-mpjt3P6u8@UG
z;}tBKzG^C%$d(nijYyVY@K6m$ESW9OWtakGV`#Z9+Rrc)Ic0G_EppOSGS1T+{d0!^
zW?w8M5ZJ|5SHV(qT>Z1aP+wg~j|iJQ8f~*Zmhme}sygzl7OIu+Se#J$K&dQU7KpMQ
zAu5AiAHbi?e3n>MuW|DCSu&<XmD~xv``w>W|HpepW(VqM&w3yxNq69}VHRkV-XEfh
z#Z!xPVG|h*qouf(36D#7wqp@l@F5sdh`Ihebogc5p>H1$);6u1gzVmlwy+bt?YRn6
z_Xl$Bl9J#0h;iqY<j#<yL(|8L_K3;1%7)b37=PEJ)XMcR>f5$Ofb06Xr7+|uqlzJ7
zw6Pzs{q^x+sF!ksrJwGqyrC+d7UIw~pGobux8^uL|B0=)W67Zb^3pOI2z}YgP275T
zb!g#HCOprEZ^*?#qNe4Zg*yGN%P|Q=^WDiSq~}*>>9vQ|9|s<7yG?%BYyn<7fkN&N
zMShLD<wNimGi?$`ZohB`-CPQJt95Jn7N6gW4`&YZOkkHrd9IkTe<hrKr<T@03Lyq`
zk??1*6<)o6Ori@j4fozE3G_=4VXHddJ4<4c5Gc>s5ZBiJ0~A3CpINsDR%H0*^6}M>
zFwBW}{$1L=8n{cHoDH*ddc>s%7juL{>H*M&suZ}zmWriui--hp3}Sx(WH3#GaNAw@
zr`fwo&4D32LySl5?DV@p<J<dF9|W3Ll9X`ciD)+h>|wq(Qz1QEVm@h~m`B*(r&B|U
zCDPiZKAqhU1hiE5!7_$4BpfC(90$CR9mN8l#RZKR^w=K595sK-lfl9_2rwH=Lu|fh
zvJDC3>3|dXYCu-d&~z8FnCsXbZt|%WUt|8Fr(M!<;kKH>aW44F<{PYJi7}6I>9Hz>
z;vgb_!9-zT*YKf^q1ml-R%%f1o<VRuk<EJ#2S>J;a{77EHn?qoT!t0x+Z5=UrHosO
zutUO;3c;!imS`)Ih{zYF0HHwedKFqmZ11i|Dcal<UeIZ%>zT)CqeE*9V2+b-y>F4U
z%HQ|gAiQX*Y)k)|`sl)-0Dv*T^W)0vBgD|XUZNm8t&mD&4@cdCW=n0nc<}&KeBFkA
z#4N)E%@?4-p$MVdZn``MdSi$#T;4<ApwNAsCGtzb!!seUR_nNoB%lz!l%XrUlxTAP
zq+PjKf16F)`F?cH3M9U?4`>rQBF}B~plq99dFQKkrD;LMdmmlHp9Z?d5*Toj4q2mx
zWR*Ok6Y_3);~Y>JJ5*AL173wnS~d<RWrXX6J=Wt>Ef;$r-Z=FnBstJ+Lw&BT<)^e*
zG0%|$V9aX7Hq9J`Kf<)AiL|5HEYOx(?w$oigF~XycS#mw0O3?<_R7OQ-mGV)5;kAN
z;UZ%7w<j+-#iEK5W($Sb5N65c0V;Q7=qV7T;mO(dq9^fJ>h)eA2%Wc&?1Hctm$!r)
za&nOC7Y;@-Gksh^vOg9AKN&9`ftJn(0t%k&NOnFj`;sy%tn*QlO+^D|ZN<-=4uAws
z2S67lW_o`lhs1Aae3qDxf+a+d_g<x0_5F#mh@97ltH+Tqn)P)jVOd2dA|pTSEwk){
z0I{FWDZTGA{4B67%^!T;;IZZMByi5s<?}ch8I-EqIFX;_L1(MkE7ri4WuFYQ`|vY|
z4q8;+9yH%MpVbskfPM*M6^kYpaN{6<D0=~#bWm~w$SujtASwG>I%5);j+13JzdFxH
z@e!jrTf^JrrL>FfQKX%-i!2)}cI^kmnL9X#s%%^1n)=+rhg%mwgxqnGCK_;Ca!5b>
z-%Aj!92O)&no2dl1#qSkkhD-GYb%pLewvTMW#>l$+<O4-TR3rZM5K-jiBMXBhDfaS
z*{pl3-+tviRely}?3jnAc1nlJtktn7jR%Ca;GoE840YR!bc#Q2!h(Y0g9Z7Y>yN#I
z=M^c{mgIrhov^@E4?NQEo7X}gs^Gl-sKY)l=;P5XI;v2hWB4S2*_^bzE5hL^_imm0
z-4a|cXQ}YvN+6cDbb!4FmTG`rqAA2M!%$HTmfxY&?Gy;Y=^{Kg?rOQGG2d_KNUMOu
zNpzr@1WKcxB=9h>M8|?e_qtk8Cl^y4lI-=0K0$Gy^}*!FPtk8;K198WsIb%-gUUyv
zO-YSbV?UMfR%B(k+ynM95>RR=G~@(KfTV&Mr71L@YSdm<@%`^)1iMFfXQdABls#ML
z%xEe3XnP9Szu@=`=U+j@Z)H+Vl{5Ux<8`+^Nl99o;$Z;GohN*$4Gg>SoX3@cqvA{6
zXb=}5pRu$|%RjpG5{p>cpSZ2!A#Y+FdZ!uG1CECyyR1GrtVOkCmhX5tVaD^<cGRZ-
z?T)oDq?`#7Iy1E|bCS%axW;AY>3T!0VRhI-81;wJyv@-cF^9F66TZIuwM7WiQ+6z|
zrNSU|Ph@bvdqW9rap;a0R)Fs>aRAn+>MM))pRpmr8K^Ke3=FO3I(9_RzPCBU*U!+S
zOmHf?fm`DB&u4_)L@=<40QHvuxB&puxql^VucU)%rWqwkq_1lvhC>n~Yw@>&#8#V3
z1~ncLF(85##XKNzaT{M2NU~%RSfxa%jDa5kWbX56GS9kBBr{nROKztmGK~Xh=W$$+
z9wbelWGujR0Ta&IC!ndjy&&*F2QRckmYVL9Ue{&+qoX>6dt;hOeT-ug1CD%s%}(=w
zXgbTVsJ?*PPr@+NkkSm@jdTp%jg$yOcZY!ZXJ+V9N?I5i5h(#_hi;@)LMZ`}P{IIF
z=knh7-Y@6dd7krO?|t@Od#&Hn3R415;YFlnwPZ!>@{fj;+J}`#wAwF+RCb5ez7MNI
zMo{!4t}DYDvLjmBBihy@I>$qr?jw2$Bl>wG2Gt`GJ=w47M~s(8Om;_1ziW2{kC@Sq
zTJVlq%8ptk;LN|{zyPcb1SndXNQOsYvUQx%I<^U;ZC#@_Go#K27&^8jvKGeHl~LP9
zoI?VR!u*wTu#VdYob$4xxAv${weC|o4Uz-QBzLX20)PeqjGyjvY)SPX$`*#S>jXjc
zn7@n#RVy~@!(CcrTkOWeRr){mW(pUMN0!P-wL?i(Fq3OHV-YJrpAiSaVs;bnR|9Aj
zfL_aK*v7GxJpIrfwUV272BL^Q<#l=+ly*Wy;VgU29+L$jfj^+hjfFl=NW4#x6h%*-
z$7YbzN-Bby<l515NP*BF<X8BBPft}Yrb?cUNTc=PWXxD96mX~krc*Rg8$R{%O0i%I
z4(S?7hU+PM14Hu$irs0NGU6K@Crgf@1r+4X%c79)q9!X)m8^`+43M_ns0vKxCIMJ{
zDgBhDt~_?Ce|H*l)vb@xuSvQ60^eQJ(s=beh3X6w%9IQu7AA*Hq?DnPy#a9X`lMW#
zdQC6}L_ZU&fRT$P9hXf`u!H%UL+-4Q37?kD^noSn)5bE4m&0X-t!IbWjQt75qwdE3
zT_%Glcq>Hauf8ajFdiFhFyCmbb4oT<O}bVpsZKka9-KC!X;5^TjOUtLqBoVtCm%DB
z<uk>9Re65LcrGOh=3oyxswP_mQ=T4A|4J}pxl$|^>cwOs`dTO-^~GOTX9;F0jbW0E
zub$1jDv`c?G$Y6l{6g_Cyy`;~kbuEiC;(Qc(_lqef3$J)4n_1ZnMHik)~PE0DSyml
z8v2}i=ud_~DsJ!)N3+K?tzbSSxzGo=MLzl_mxz~SJ$Xa8$ONeN&M#U}ylwv#oF%?>
zGYQQ3@tG*Z;xC%M&HB3F6bin~T6QP`%9kZiw&+;h0#Y@4J&pKV%FO*VQ+RZq=WS;E
zmcg_&b^nJ)w=+r3?H1VssCLaC^?hNI{+JMClp=RBdI?!ZounOodQ4474QEb>um{dn
zOKSI%MyBTIw$ctPr0QP+{yR@n=r%GpV&JrY^4*xuW`vRFhKFZCMz4>hJI&4?7Sg-3
z92tW9V+TxLv{n~pP_N1h2wrH6%J(i}l!7AeIRLk;+YuG5rhIfV%orzjfDaj?ZQ^o!
z0?7N`vVKjDfmjM>G}fr!#5bV8MTjws$Ypb1C`a2ORYMUVU}2-%{Z21+QS1wC_?`DE
z&+`3N$2{&7c;8`FZ+N>HRluMx>vIPlD#b`}%?TIF;}Wv9`fFvcVJ33QAm0H>&IG+C
zh(?>N7y%hfw)1`h-iLCvUQ7WVClmowR@51m^X{xVbq#<37Kp-IZ-9)2XB<Vdd?$9T
zkFJ;)Sk2-aIPxr*^FxZt#GX|au@6m%c(>RuEK(J;G{KCxQqyRgSKqnL7FZ+MBDDD7
zZdj;h?$eLBdr($NtD?r+rR2ZaDqpOs6|ORuFt>ax%(>?<zfk&`*>*wb>0=0E=HzP1
z+Uhu>h%i$agkpm+zv<>%n=a-!C3Z7AvjD!GvCa(^Rt&CZ8kCTt*{X|Py<AwAz_2<E
zewg{_*q#kKC~^EYQ7of@l%<KENGvv)pr=J+sc+WHqLSFVs~_He)aW0%wrsst8RSR<
zAwlm{=goI&sIJ{U3THWh4NI3M%e;bXg_$IFvGko!K-+&SNV%}54$KV8vPI0uNn!5R
z*@_sf415?DZ~*v5xgHW@apclMcPMq@0orAMx~Q;WQeQ4?=QO*v$tK*N(6b)W=Jdmb
zLl#%nlfv=vE@$q&3Xml4^*zv^%%T}Tr^;t58^Yy4{?d}zt-}b;%jgOhODL(~uy+gc
zLqr9w_$o;ZUI;ny<BD^QNDF3%^Zg4@qR&mB_}%vrx`Xsw-B87O?0`?|7hi~M@H+LX
zqKqiX$0?dxRcQItq%C7|6wi0&h0r^w!l(NB@eBan@!u5V4=FC*QvaJMc`)lNWcPBZ
zTVFzQQ)rItHb-snfom1bO0lxCZ_Lhk$J>`nZeF2|XG5+~)9Tx66uO$z3PXre{aqdS
zJ5_kT%2&si!&}7_b$-5|JcX5=({^>Jg!C-8tYvEKt846vYfe=><Y9Yq4t*xvyKaLU
z2}<mCZ8bMy0N4JWQxa597R!Ck*aCmP!|v(o321E-ES_l~dC4;&^GdWr_~ROgkxj^Q
zVczFL*nN(gv8#}b7>rGy*eX2d6+7h@Ob6BB8nBX+AW%H7%IC|6lD;;d`&N_O`1k40
zIby{<?}yO2?|g3FNj-_F6)_ch;QKCit?s|ybsl9PEO&jl&B5cTv}eBcTx<KWol~RG
zYC*y0s{9Avw*?=&9$4fH&5evd)!e&B>mHM%{v<Fy+sQjC&BGY}W$xKtl2F4?u#fZ4
zFXdlBdhQFV!JBKMnU#@DpFnQ=4;!QNMW+@4c5KZAT%JEaxLVB{;yocWfnIM&<~D3z
zuz%hqq?`+xp>FXNhWSw{+tfAb=?)$4FkrhlFmIJ~)r*gWQ^e6iTY~t*2NqL6$rnBU
zCVym>lybfBBu>GP(|l(uj~>qME;7}fuYKyD<8viH9xOXlPXf_hzK}wTZ-<IYoE|^<
zmo?LwP#j1(&G^FPa`Rs3u#8620?FZ8XMpgf5n2`y*^8X=&h7XSP^KygVIrk)^Cf-$
z445UYumx5Hv^3P>Ogi9Yd(`I>Xy)}oYlW9FhEPb9^n0wUupO2lyehmBDC&K*`}1r2
z;mOtqw=YzrbknIj95ONFU-`DAd4$oQ`K5qWuRumm=)lZ8N*cs>Dv#{H#`JxYLQPTx
zeq9hcqC9H(E)@)_V*1DNzKhHlxekhbK2G_q6;3V1xXx=l^$q$U%lgEfYg&rx^~tSY
zU&@tvXo)wVZiQ~Iw+fG5V)Ej%9Njudqe%1CyB?KP)TVcO$QDr4187^CY@ZhliYg`W
zbkIuPwtnvU(XA81*WB*(j!od4nc@_>-7fHp#P_9~e^}8IzwUzJZvk8i@kWq4OShfk
zK|O+dC+1-Vxu16#yX0-jxNb<c1s9yup%R;C+>d3ivN}B%yZBy-qlo9;EedfWTOP{o
z7_m;buy#R%?*`9hp{#)T^-SX+*+<!-i7!L-)x!h7pWOqWKVl9ud!EGzQ@lIeaVP9Y
zz-5ASuL3Pkggc#-QBda(w^#S$UkP?~ALOq@_{qCHmM^;cVPYE~wesV?;Vv`-mQzT^
zLp{}<n0ywr`7zB{mHr?HG@+`=%HBQPzom7b<7rPr*OE2!z{Q=N(C5PM$a`C#f6F=V
zA~)!P?S+PU{mQv_C}^%Mk%Su($r!d;+{rbZW&JgF=YEAfQldqp;z875@X@{0%QS^w
z#FXB02TH6NW#N@s!-ZM7FgE&e(qkfQ-ObGO;C{80QvZXVdODT7INKUKVB@s%c2{)G
zWlwCJYDn-^VbP_>-)F1a{rnUblt#bj{d(4~qZi0ysxE%<HujbGs66~0%=k(rzM!ZE
z95YZ7S&O{_<}1;nvS;1QgOjfZ{%9m)kfa&l-p?eTDyPMf>UulJ(XPe)$#nXLF242Z
z8APsF64V!Q09hA1m?Rbq@<%QGgXwF|2w`OUY@t)h>R&Ggrp;19f?qGHqJ-xEIP1TL
z`l~~iMSrcT-9_rJyty87=D)VWj5@#WdjIgr9UWY@h9F*}XuL82i4`jw;1f;S)YCYv
zVc*^S`#Jf)Bc7cPshT|6n(>{L{KtUT!GFra{&TJWC#1c~boK8*o_H}{xgo)%prS>o
zzkR!%8+@~|MblCx5DP?yf7boQbjN-F6^CSkC682|r5Fnr%+y|xWg6BkH~dJO)%0j@
z`en3~Hon_-m0|k){c-0t<>Tqk-+TT(dUN#a&j6A7U<69S=pB_(Sl>0Va&QS_7E&Y{
z*!x72De502u70^9V-Z#|bnuNyD{f$E=w|MOvx+Di-SvBrUh=&6Xr*V8oJ~~4*wH^W
zqqMPaZ;Dwlq@`3ANXzc+f{z3YQ4UE4sOAB4+CTp7U#{RfsSg|>Xe@5G9L&jb_!4WI
z6W;uzmP89VCy;m}vBBCfawx(+O2ZVNMJ2%k3Oyatq#+@H9Bi!NI+P3M*3OIKI-eL$
z(b8@av^{q><P*|tacRLqQb?^ivQPkMooSgy*w^E$urxEgUcSvUd-tJqT6SZ+br_<;
zCfpJ)9nzfuOrd3=*Wa!Wd300Xs9$=TG$Qn*!;oOumo6W~gG<!yLfPR)iPq^@#w_F^
zNrhlq!rv4-4R>tHEeRE-=u^;W5}kyC_Mpnk6qgarV`1QI!dK>J{}(B&VF+Z9=#q9h
zVfjh-q1jEZ=-yqqfORblU9#pczz7%nqg<hi%IfgXCe}Ps548_dsf8Wp!?=suJUZl(
z6QZOl!D)=!Y1DBJ|B*%Ze?MA(HT-KDLnEAG9d$M+F4pp$%nc)YI;5n9N8qeK(S&Hi
z#qL0$zGgG;m+u(a>5TzJW@J}E7O^Pi2;C^y4mr0pb|*nZO~W;qCqGI%W1OJ{YtK3+
zkFn-2#ty~nZ`JddsPJQ5LPYayZ}QM8gZTLH#vk*>)s!wgu_i>`Xy*c_{}grqD?PP^
zgpb;XW5BEQAq22I91Do>=@ifgdN&wo14)mg6Lg@lw%R~y6k@hKoXQ8~@j%YT3!E%I
z=<W6&$bqdiROz%HL5lD~*Ti7vK~<Vv$ZCXGxMYI0gq({@*#i#W_n_sDo`w4jvpxwr
zA-W43I3L9`!ZT^P1wUO=`fHKrL;qHm+X@u#LO>FZiV$$;`K5U+7<o!)7^QR&tTk!G
zG|(<uiX?PsemL}`X{8kyY_SBge4(i}#rl<j>2DBB-yD?_;5?!<qB=AGdcS4|(EbuH
zq*A9iqjQaHb&k`<^dRA+rMw#m($ddE<U+xFi=bv=KLH2Pmc)QOxYzf0$HdhYm^~^e
zTL#HtQHW6T3KQfCc^y3Rf`+;4_?#>nm(~8tK=Piphvsfy*c)UUTG~UX`Gd3vk6s7J
zLp%j-Q3p1+{?0b_#BZcuCkt7DK%#6alC+oo@B4^KqSnbp%#EHSs7jA797KEnbZppH
zHA)ZkC`y$;so66ULI=)%N6}@QQH|~ozk7z;Egx2VK@)Ff6BSMEEjdKa>Wv?4fMuO(
zzL^AN#*k{uZ{u(VrG84=bd5hkP9$En-`|X*t{5cO<~?Lx*4Dq5ux`fo^|li1zxg3@
zt_WiF*3g4Q^xD@{)9%Z9YEI`fE&(-+Q7qA_Gj`<XCiU5fOV*b&IJamaj*g84$Raq1
z;QpQoEk#59XtCs$l0XP*OI4Ez3zK|{p>4+qfl(R&Qab{dC;@m!So4OgU$`A0c>{o=
zTVh&-1RCstslDIh>=1)wjTq=!PvJ$ad>LJ>Bvd406U?J9=wgqEXW2zxptdkjI}DUW
zg*A}`0J??uqoUtN|1i9bA^o!lpspZzo%1Kq<evuWX=AAFZH-D+o&l^KQ9%BA9OH;r
zD(M88h8?CsW+@4$j{?@@p8~<5f$&6?YC0A&9-T*2**UzX+@vk~+<?cha8WG#S-l>Y
zHyT@{I7p@+hU=$90qMDjaIiyHW=0B}Oag)RGt6q_@?Ug|=yT)v6i)yOW?^f5KCu>Y
zGe`{J9T!<aKT^=D0;da)Q5xoOs$f}$tk&?Se|9Ajx2h<RyanJccm9HT6XzsL*dUuH
zII|n1uoG1Fz47tCpTnR@dpua!yawT*3%a43==8|i{4p%h{l=x?P;is?PsU`I?1`!s
zJ|k#r)(FMp^r~jG4ggNfNPbx>*mB7MLfC=jF}EOI5ACg)xC?+8Cunke4>InVV}N{I
z#R3sUI%X_5JiJ3g2gatopujwW-q*)o03ImCRO5d0KjXIcW=a-bZs$TnMLnL7Yv)ap
zqHotb>>bh*JJ;^;r_eO!8V@;;`j))%Y=eaFQNRxzbn23-qE})DE8s1qxzeOnVDq`=
z5v6x|f^|^N7DDtt0Z88(L$l_*h;`y=)-3}OF>8h)OS;3}s>JYWaMV5`iUnH0?akio
zesV`tWa?JlXK!BgASpi&Z+GVpSj+7ce<>sL#gKPZ<uB?&9$!Cx&?){{?38l`cO+gz
zqXFG3npt;fvFhxY@zGAHCrhqjgFf8ii%_~_KEI;zg$fH{ybJO%f^R@-zW1y?Eq2bH
zA0<>bQ_g<+T2Dy9(BUy)adV(8|5i0bS*Splfz2{bA%VXA{Y!6^K|<Qa-5W5S<2ybO
zS<5<+2P#lldSiHod#(yF2ny!H7^UF){;u>TB4b%rQo&2|B@EOe<MLyRq-wz&w0{(;
z8Rx8$u-Aff;RK&gVvnM4>Kbmn_W?WlI2k6f?Q*@m7>bx`fh~(b4(AGBv>Z6nJ}+QF
z7rGt6FT`ZQnn+200TmY6EY-1erzjBc5@^xC`0e4=rNs5-UXyqsDRMuav0`Q-puH-+
z;sY7$V7&eT%VML$5_f5IGq?UARl&_kC#nEuJ=}t;uEg(ul-1HvJ~#GIN%%!#;Z-Y6
znKB#eY!Uf;iH-jojo@M%!*@xle^wwf)e%cb9;(dD`xK!2G3Tyr%WP=hYVOlX9!lb|
zgCtx2Pk@{%Era6)8Hf2GXf9xno5twFu-XuC#UwDSik0usRI~d{KPKGPX5*^%e!GgV
zaA$UV^W$Q64<}<L>+#69M(E?$&EY3l;>BW~i%)Ipyb`xJUYQq#ka-rcMl{q|FWdiF
z8tv+(tk>7R_a*4X>)D`(GA?_}owAFfUr#dBV?L|A(W!od!D;DrK_~=!7Hq>q_WO{m
za1@aIhLX(EwxywQ>o$wg$305HhftTLn2+^$rnw7Gd;&<08x>)8%>oZ=jqfWh*Qjxj
z@?*LA2pRKVPC4~7Us}(Cm)8zG)x6hxU|hi(77Ja~^-t=)m_7atu2qZTHg_kQh#C%d
zmCviDJ-ACo+7jDqwi_+z{%^5Fedr*YWM`>&X1$kQbEi)4lvfZ17F$|**BhAFtJVi=
z9{<^s68OE6=i_=}bE$@&@6S%G1zASi^(V1-WS;ZrTz|nO%C-ZSQqK`#Qm-~0#~Hh=
zx1o~st^4W?b$Yo##i3plMNYjc=p5IeDu)04vG+lQgV)1;B<ACPR*6pepT%>MAiSE8
z!jMR&+Q?IZIJ4W3AGhu<YtSs5A}nec@3dRh<ml+!`1=lQ4))OUOD@b|QSxpeG{4xM
zRGc;do0b$ZFb3f#Xju>dl<0U$jNCO}e7P4ySwCJrC0<ZN@pe?aVj)o+<(*Ir2?ht_
z44EDnog)0J=>FY@ZoH2%PQf|p%Ae>3nBpL6+z^r#tDw$Uvrm{>(8HSCP}_wB=pBw`
zdKR%QX3oR}%@s(1zS7%{L|sW7kzVb9GzBXNKeYAv^-4EFnoFh?aFhp%Q!xMO6+v4Q
zcfF&eIS=R^6~@~@Y;5j$*g>eVO!V29>-*+u6Df}_5udO~rY<p$FdeUb<*ZN6*V5@w
z!ad8IWvwff<E;ZG8G^G-Q{@YOYXf21vhcFu$kc~CE3~XV!0H0h4AJT4DXH^a38sil
z1IbLoVABZcbk$ng+;9Ldift@~X`(BmyVhVbCl(x>O0*@iaiW+CLllcOAB{$3Fh{0b
z=cEiB1PbGwR=suHQ`qVSZ!g^UBJ+9F#mEU<w(?oZZ1;wc+uQ#xluwXiwy8{QtIzDX
z%*4TRxSl~1q9DijAp-LtW(>e`8FV1YEP@77NCJfk{>D{6()pk_?m4v=0HzjWxdfTq
z!pPu7kZ3T7FBrsiYE@W}!+@lw*#|MU0A#vBE$`Ihv{21bX?a~3NugZXNqV`|+}R7`
z*)Whr9Z(cO;~7TVy#f()Qwz5DIk*FQRPR!=!*w+RU?4=4zvq9Ri@Z%wMKzzRZXiAT
z1V}BZBZ}d_y{y85EQ}ZeU3~}qX*YE($_@EUl$TP>o#}+Y=0SXtz$(RJTkZk_L^e4?
zakYK1RC{rwPcc#fLK9uApH+;jRm}APK3Qcq(}#=+g6Jfl2w<u3K6(1j@=Uh?V!@!B
z3=lm51X1AanJhVy1qeRN5&e>r@~kk|fQf(p<|BZDlMEcVCoK3UQ>4&BgM1&shukh+
zP}I|WW==~k&<<Hvr=mfJP*I*iIcZ*wh!0TA$4?}yFx}^g4xwDT1y9ah!cA5|BMjwL
zyct;%Dq8BVEv+stKqNM7QDLAP>hhXLMQKQw7AC^+nb7}2pWRxsO)z?S79dJV2nj}>
z520sB00>l7VV_iLF{_KM66HA@1dzg&pgJvAFsMnNiDMDONygPS$-Hk>ql2OGY=_i)
zFo|n{e*DDJCo}OM)`-!Rxm?`bTyYn2)p9T27BF|cWdqPxs_Y!A(4B%%YlP^9*3{c)
ze(9<+!Pgax)lsLFSox}Ld1qdC0D@TRzFZ12&dV2JnMeth;_#~BLI^oQYU5>9$zeUn
zijAqK$n!VAyP=llmb8y=mB^>6MNK64FGyIitU*jDnUB{HeS_mW9&bZX5pDKE7Uo{1
zhUf6y+O!5s2gp!QqqT26E&Rno4CGfelpG~+>we(ZF#wq`iGXAV2Oxe+ikE^AzhK#v
zUGPGn?M3N*$;cd{!#=3luGq$kAo0PF1b+I=7y~G36RO0$m=cCwIgluS0z&;-pyVyV
zmQYYS$+aQ$k7o4o_ZQn!kRz5BRreQd1<mBh7OHCq<UtF`HTPdbC`UR3j%YQXZ)JKe
zcInV|)?>aX{8FX_vK&L=cb_zsHXUqU@EG$_Rs^bk4Wq!=>KNIc!pN2G@<$4hYx}iF
zCAOnPI;?sr<orl9?~>;Je{A%>Wtg2&$GJs}n+WH@V22ZVr{{EMz)@!ey2B$2_(q@f
zf3eYjy_)}%d=<0~d3f~7H{w<FbKnEkuH^Kt)Lux)^RCRJuE*rv*(F^WBHjO^)T9%;
zi;leWo_9Yz>MkemsYs`|u_f2|_0*;JJWD65e%|xqsHgcx`?w})yi2+~A2>fxvQMDo
z$MtG&QGb0$8Jta}{NUCf0tpmlibwZxGEiTbQ;+z`wyu#F3H9E@swacZkdn#IhMtE=
zMs5rCd!cCgxk^N~#p#cvq|O?_1TGIGy<P>qL5QmEV6ZoyCE$$lCHL#{R?u3z^!Idn
ziX)rryVejkXag66wF^UP1Ju5P;g<sR<iUW86r)E7BRdVVRd&n!=|T2B_^-T&y>_IV
zevq4`X3lfye*6GmAxrpkXkWJCOC|kR+05M*j{{M+K4;$)DcQ<Uh;}S9NyZX~i$4u(
zf3O*=;NzgP^P=l82e2<%(3*%23O7R52H7{xAlo#dU?eb?td@gf%%u^IWP3g<Gh{nL
zIv2?<5{o%f9<`t67U~$>)8-jD=MtwSwRV+1$l)_@Ny&PvE+l;;3_}x)AxSD8&VAl0
zprk+qZ&nVESRbFiXu0vuO;-=!-99nV;Aq$5$#P@3yXa6#m&BuLk%CIG67ERvna87N
z!VfJ4Vgv*eET{H-tz(7+=tPZQa+e$q4ZwNCv93aWIfIi&HuIXIqZH69OQAos)3A$a
z;8On^S4j(klh9qesSo}W6rvxF?Kk?w-WQ4kWJ(UbAs>eBy<`(F*CUFT3(axr%yEG8
zVsdp)xh0Zzg|7PUhqR91kKYje$toK|)U|Ij9m-6+RJdy;mQSL-l~C*UsoJoBTkhiC
z9UfVAI$5ok1Jskr;yk!XEp<%1Q(f3X((pWQ{B41%c}ujSbcUMs{9^PD+e(;9*qG{u
zOjVrz;<H?Hiep9MXAx1_;VfFESBktks!Hk)=iYZM9e=WK{G`;vqulPMtc_9DtWswE
zsQlGf%)~?mX|;3)Ui>ef$uqX<F^}J2D#SRf32^c*sGk({(c)*K=8l23F;HJ$R)1+(
zn;oiSsjbt@FYiFl%$pY%@j}!1%<wJ3NOIZ#phj08YF1|8BA-h%#kcF-TGo3QppDJb
zwjeh!MVrPILn_!^4o2ULxSOmjSFDfF75p_(wPfAV2JOnO5%thyzH7$8>xqsAI`iwj
z;|Bc+tCiY@8utwmm4=N8=IJMzZM%?;aHGiwi7f$7Pufx6==H}Trnz<woVRX6QX$Q|
z5y1f)pDAIX?00|aSV){&J-zL9A$&*T?Y)~!HKm2s0VsoC$3^`uFu}vli~h!fZr!At
zp*?>$w!{1}cvEE0-c85)v%d}D{7!P3o!uRq^VvqR8rJ7OEY6|Hn~_OyH9)(^-L41>
zL*TNWB#5!Wi0<nh{|@IK23uh@(VQpDd3-w$_Iy`!ME<f7(*R8tx74iD_+&GG*lA%t
z-Pf^wa(jpInLP<~b98T86X_5N4&BLwAh8?wzV1ciHwHYM_k^6qyPQ0f0ild}MLEuX
z>2W#w`#XDniZ#z5JSBvc<YN&Ztd@7)WrlCrXHF6iaS}HH8#kp$w1v&VOI|`1P8eqC
zwRE51A(h>O{M!Hcc~m0n-vTGdb=<Tw4w9Sdi^~k`_EjAspY}O?$%@ID9&r!*FF=gn
z)d$OSr<SW$++DrXL)X(=C(Ao}&U-V-(|62s`^7tbg1U3l@$^>`m%w)#4*Lq^fju^%
z#S?rs^!`O{o0|6f@XvRDOb_W{J}c@4V70<lI|JT*B?c@F1U{XC{E`cz!%sW`2btgG
zup*!P3DSP%xGMp&gM+^P<^N`e7}_)cW`a1Cegz@>79^P*1UFMc$Y-bq&h=<37j3V!
zJ@x(e0YX)mK-(Nerx&7N3sDj<WcwUq7kKPk4RM_~mY}}y*gA&Hp7?$a$bDrP_&F-e
zOFK-SA@W!HRdVDL1uI9r?*oEg^>t$R#uv1=9x}g+Rpz`e|2lk}Hl|Q7L{o;=_8Y{4
z`u>&p7w)s~d)fBd=BMj*KjO#I{D*$9m;dmd!vzHihZ4{F?(@=bwzU^9Z=+~*oj0uT
z4<f#Ozh9m~xD`9B7iIj0f7~|mE`^sE*HbBptK2t4idh7Spky;AN`8I-!?%g~F3%B{
z<oxRn)<7av>*oD>pv94Y)J9??vqBWpoN!bUcpewc5ofj)uVIl)hmV)(D(j%e!k&Gz
zJ4g_vPY%;hkSk0uL4dN~BoN|M`_&Vc;}UedlX2>hwsKsfX{O~$+;itdz0kxD&57UY
z@W$&O54O%jtM~K>dwCMXi%rO{5t%*v)6&fh?(noP^=YV6VagP+Hg+YNi?pnu)-Jq{
ze_?PxQIOGz)%DY8%cIE!(hijux;oxF-EOMQ>80<h4k&1>>g)GL<Lfg6D?FNK;0TFU
zG*>pvoZ|c&)nZ6vvt{sL+snf+!lTwNP+|yjuiE>Oan2%~r}1su8O`Eb_=Qbmr1T+X
zq`+JDP5U{TVvsw{C>UUT8F3Wvvn4tVS12yjmsrfKFAn~}7kG@)`B7p$sW>(I(73`#
z>3zQOE#g4g>rEmj8ifUuG0H|ETr?BOndQPS5w6;)bV8PS8eliwOxcWjJ1O8GgkFRm
zF<8mR)(;G@u|rF0B$DSL%h>Gj+d6n|1vBF)JQkY5Ym|1Q2Ww2l+p%+8Ds}7d;TT0t
z^Au<*HT%KT|EX=KWu$;>_KF#47F>0bNEz)~&}|*hlbW~J9HQnmM!C3UZ?B9z3)@T2
zmvF1B=It1PjHVgTXaJjRRY!>F%y*-Wy@F;-6cwX2=^9WUd!x-vqPTW|#u0A8Z)LVL
z>z_>Ku~K*Si4+G+G)AAz-Q$-f?~VGw2!zO`vD45o8cQk}2;X^bcckbY0vZCrMXi^~
z)k?#&>BOXwcIb-H>X$z6J70L>z9gItP&L|}0kBE*n9b3bI}pYH0(smBQt(FDAcVm&
zYmkIJ7BK|lE6o~$llFL5Wu~AA^`(ZA$ItTm?1WSqLM;aiKx-3UAf$GZ$th$u6J&Dy
zdG)mejQ)yTbvNbD+#|p)rnCRYs?EUB<jBMvXVY_({|Q0Vdd6-iJSdIL$p<n<Q5Zq2
znQlTFt>Fu$FNsW&XHfbhV1kib<ra<1=0=8<=~<*z>o}wH_eB}=50^PQQj?;ZW2O4A
zmYhxG75-Jwj!Gg->86u$QQN_a*U}J188+kQ;Bo<_*B3gU;4NtM!csXS2U~2_R0rq9
zRD!wc@@Lv|Mjy%&7^X=Y(P(upL=;!&zbP~!ks2^Xzx45Y<I<4ti+;v+|BjFO>w*10
z7>6ljSl*StOtC|kb5o)5EYj~D)?gyRO4vz$JG?&D?n(n=5wXfX>?pCMs=t{E=Xbpq
z{p&;?4yCYzu`|%;@1rMacjfUQrl_d77}c&<<#EJ8g={DjKli3IWBp1>u2AaA-Z0W-
zH6@4`Fu?q|G-9LZbJ;^RLB|k97D03XWz<j_?Vro&EXKnBVgQ~#iE9;A6)BoN4W!)p
ziP(;REXOUQ93{tXvyZsFL&$_3*5!2P2{=ki^q|GlRkf0JQX4eZvrj05HL&~3PvvYO
z^ZJt05eDbdvoUsCl@kiGDU4+R=OsFU7B!D{Efb3Svj$cG+$)}z+3dR*x!`&F<K4YD
z_Ma;Z8ID@30k7GAeTdk6`fKAM@u~mXZBW_ePNq7?)$SALvgoly&R16lHRWZ$4`00I
zxIQc&7rg%3PvrP>I?7odOa6+p=g;@I&gFl9evFH|x*$^mB>dJu^;M9${<9~h9=zg=
zTP6N>{tN2DQ#l4`&;bVjA!G^He3fw)6R5WHaYCZ@sTXO&CW+$8VC&>#7{vjA428xn
zduTzpCE*=N5De}+oA}RY8y*pfVKx-e6sl*#1<G=<HXxG0DO{|mcUfGPyD6lK7!v&!
zAi1=5vJD<UW_pT}Rsq;>EblOO!?+M2O(?s95xg%SW+RvYvF08I>6^1Qv@T>K6hF=F
zr)0@8@}^N7x+ESlK@}V{AUf_7oWu}448k&%hYUz=IsYnYHyg$kH3(C};26I@2k;A{
zZz--Cn2~7zH*UxXqI&;WjinkY(Y_%RG-imarhTm3IKd&bJ0%Tib7;xPBEl>&6yf!)
z+*uF^`wr}x=|kG0N$Y))U9Vz=f0d%P6gxJDKbsucX2GNis9reUBuT0QKt;HTWn(ge
z9kR$^6DEC#eZV6P8J2aGamK#Y6cV)bt;r}9^Yz4>f0RJ^U0AZhBnI;^A6x8kV{oVG
zG4=Pga-m=cgJEz3!|Ejq(qPPVqdmj{{)LT|-Agf%*D^w9iL>swRt`wg25pqVZ!;Y*
z*&Is8Q#AsppL}NA*fI57&aIWH5mKBLS~P9>1ohCaH-I)sRp??XV-<Aji<d!s{-H(o
zZx0#w<P&55YUXqqY6O}_V_F8#jW+tr<c>%XzdO?OIhnEPAu&AXZa*GcSOg#sb-gpt
zhRC`n!bqNF38BYt0h&US?N`%moEuS1-~$wVW|7C20mI)f3^HjXa6+>1tzvdJ9g<d{
zIvpUSt_I>&1z_sk5pK4)^!L_FZ+Th!q<z`7(XOiXUFX2<CUk&k;IL(5pMxw7){%fF
zXVsKcw0U9s`^3DV0-_|j)jh&aaJpW@zFv#$vU?ccK4V>nY7(-oMhDP1mL&F$b+(0@
zka)Y?z1tOP(3EWA|M-K2lSm(9bIhKIQ-3;1Use@c_a$ZIgM@X{SUj}37?n^U2Owp-
z4~nMH;ju<zO#&E3xc0eW8rQ(2r^pxo(>cGP=tT6bu%i(6JTuMO!(6nWVY>RW<Z1*4
zmz#Ty;XloYwZd&id;)M{k>A8vkn(@%tw=0}pRy!PZeL&=jA<>fnUN|zc7yVqTV~ZH
zf*3K{x}t#Tm{dYJ9fc{-u-=68DRUyjL@0$n2kL>5`7S-1y-INY%P7kadmmgI=4JRn
zrYN*q=k5x=_KTEZN2&KCcEC8fAR!_BLSE3QXiEF$#zk%ou*8zI@Mugb;@1vtETd<+
zj;bQ(%P$<i?bKpz9%EMGOp;l$J5+ko*y|}aQLS$OP11Hp`-W(e!V>qQ%FhsbbF{}F
zZ{+lJlSp<p<w5;I@uV>V_~fvPm&T6hqP~p#0W_vOF#S&3B&<N-Cc%86^)6mYk)#Am
zXN|2fZiBThTT;lJPJdz%FBO3rjewBHZhzNVdVQj3IQ|p=XU7EkuRUTrGCt9&luINh
zVDPTo*In@l&CJI@emeeviX2XIU9^4yOCyHPl6Tb}JTHUpLTSjC<v>4|MT|MOUbucH
z+Z8(N4#_b*%gL=W6_eMTRHmUOMSR>r+;UyIr{+NIm@^hdvODQ~C&|qPY;GeEL;dF5
zxS*;Z%%iumRO1x#Usuk)|G^?N!X-Qx`4`GnFjSW1K_U{adDLUy&2Ub|OGsAv%G-QG
z7FyPU&}MY-j04Ik0TX#2a8MGR^{7k{KwH|DEpR}}IN0$t1<T6zvz3$+_J+X*l7?&(
zu6N`N34(qks(KobG$tx<lz@=|08T+yV57t1o5U5Q;bF%67|z5^IxIxw)H{*XS%6+U
zAM$bGiag~-9hKmZJVSsHX}bjFYv;ksiT9z3BsPD!9XSs%GpgJzh}iS5uPv$g_(n{>
z;mtb62+)}d;uMNZ!97@z3z&+!>cn4>00G~`Q&@r!6B2Ms)SnG%@&m1ZL%7w0Ap2nN
z-$)Jcwi%?^6Es`_B1J(<M|<112<}=e+%0rj-1M5;5Qw?{E`;0^Ll*2xEB(dS$?Ru-
z7Fk{LPr)Wi-J@<|?e2U%rCB|spqMu$C1{-@p1f&HwrOm?^c%nkDBAFXqIO;nF-mCz
z!1gr16s}9&cmqQ{w+@`8sP^D!;?Fn)LS6!d5#F6&TUeIOEgI%qnt~A!gW~#8#B?CQ
zwPhAIFFJ)lMdAv6@(<eJXsS?T9Bxo1U9fa^^9&cotrtcdG=)yUZ;_t@bunP#Jh@&L
z`DYOUa{%?d43wY|G(CuM5OFn@1^eANM}ma39W&@kL1m?=9>L8aHE`aLH;C<NP%Eo7
z;GUct$gq;EcY(F&Gg%b@G9m#r!~o}L*q3S^Pu)C25RMqyIl_sJq<+#!6~s+<<e1^B
zE*Vi_|9T3;zMc*IiG}{>4sygh+nmZaqNx-m`Tl4DWw)dd<TO>tKiq-2D~-(m0vUgV
z0JuZB2f2~!7VP)kct3{lZCQ|iJm7t^z-WgLJ%`X<o<TWufiuS7*d3r9fw@eSCJzsp
zL$(FxKtppxqRu%^wD>LwY*5Q*EK-z?trS`)zT0j6N;zjZ7_Si@YBw9j?MHDygV5m>
zx}fQ}!N4N)!>X}@nV|y8VConIC0d&5HE_n2XK1II;&ryfb<X{vke8-LkTo;%*>uTq
z0*q@=Hpxu1mG)Xr4?J>oRf&eA9dJ&fC50-0&r>LDB%x6Yq9fFn=kw}?O-@9+$s#p?
zD4mP!<n{quuKePzB*PSgmkgYi4mU9^mrj7}9@+_pfM4LHe}RtE@X%7A{P+#o`H`ii
z2<p*Gn7%%kn=UKT>OH^@DzMa&UweD}=yt^rkFBI!6<X?b4lN6vN)?@SRRsuXq3?)1
zJ8x7-1t>kW5Py!B_b@U|kbpa&!z*inpmt!RQQx0M6m@t=@fS);JT$cNy?X=qD=L|W
z3c9Q_*!k)6ElK#H1s@)W9NTtOI+2cc)1>}(=g~99AUd{&K=!W-%z0R5aq*p-FA<he
z^8!8_$Q8}p+LW`@EOMdveW0N+wIkYoZwsT14QJ{ZVf`7RldeTaESzH&w(j&#5Htj0
zE5Ear4r+N-XgA9U&yurcg&&3H@hr)}Z4kN@u0P}!q-|tO9@3cf=26%nr!ksN=M}K_
z@T0ABW?~+z;WoV`7x8$613_;=cUvRT)3Fo-5yb;{tBl5~ROWb85lJG!n&KP)MZvc!
z^TW5Ih6FG>i4GVQVGIPVEt(IiQ3%(rtP*b0JpHFD=?LOan3dYHo}Tz*CBfjAfD|3a
z2_<krw_Yl$?1&wITKhT7oENWH8h>j`)9SOUR@hGJp^5!Py#1SSy{8?DWm+mxZ!HBh
z9Qtuq!yT3yPsU<)1aL!e<J(|!23?g1$1j=+x>ZY_Z8k(Qu<g~5go4{Wy|?%Hjtof&
zg79f)d9WlpLdo-q)7u{mQxR6#Zg(b!ZoShITNx5V@ZbIMNqAv-D1o7-kHMh|=(P8?
zCA`Bm`Ry57u8YSL6|*Xl`8oIzuM2U=?3<OocD#b2mgk)+3X-oV`X}D$Km7($tc??y
zzc$#=WEkmJ019nvC#-r<C@20It%MrOF6~T52A2$oLEeaoSDUt}Hj{2%ZMDtO)Dpbf
zoid#OnAz3BH`u9FpK^2g7`PafRm(lnIk?2ysc7eQ-G+_MfX*X*upYiV;-+|;fU0!e
zMw=JsZIE^weU4W!&l;Pbt^Vu0Ix{0?g(I(c3(&+6h!`i<%no8QAa`ekQMb}2Bq*<)
z#n!C8#qhiC%QR$g=3Zcbq+h_Tpa<GM0`h)Vax@=)BFNrz98vn;@$i2Y|AJQHA^{R^
z`(91m&76>6Q!lLB<ZglcSy=ntd%Pg_{yy1l{s?1!<npTu<hIaXtkb_LI;o5Hd5?$p
z_7lXhK+`1mQx`X?FVL1I&fo7jWot*NzB$k+&?xz48Yacj6>86o`q7fmGBGKvCF0iK
zxhZ8o6yf%O!*Tte;*31GcjVz}o)l$muF_HNu468sq3kK!B(D_*z=dBUzfYG$_fOiO
z8;c9-Wz5$xjbJ9faD@jcU4j{fNd<+et>a0=*CfF^o`G=vlsCFT{34jvx-?eaG-w^F
zpf0_xD|Nguqa)d(d)(hxFHE71LrpJ)0uMIDEVqqk3TS6qB*%U&%$zQKe60{&w(=Nk
zpG8`fMZU@jSk0od&%RZZ?ZcGK%ACVvpCiEhlcOj{f;m^lK6iUOM}9R|ojFgdJ6h?=
zL2@FBUNC`X1VqK;dOV&sLC7OT<B;6>e3kjH$FVz;PhMZf$fhK3NYZ%P=Ort8?Ix!#
zdP6jkw_fn2rhTpwc84P$0rQF|m{10?7}lEYWN&XqCqeSegTQRT(kCgYr4yX_^{L2}
zVk1Ba(Iu@RrGU=0<i1;3au9af{wc9pvE;}FWcjA_8u*l`=w2VKk#+Rc*`BIR5Sew9
zzh6+usdRVO3*v~(G{iI;BICFq+5AIU?fXSSyfQNPbqtqe1tlb4a4^uXO7V=#riVjm
zjngp(nYKH}B$V{Jvz9fL)9^Rgw1<;7HAhtF$*rL${$v&OlePC*jADAA=D!(upFuJz
z{VuV!w+!m+J*t^UDlt7d`(fmolt?BPnVa6p>9yFoLLObzpA@`m*rV|9$tv<rO{K?c
zngrQDJhF(J<A_L2XK-Vf!4sy0f>;BnO$h&kXB+T!<pWFo%ipFcskL(Ga=yy?zbrB|
z*9DAso7wNO@B@@s@;FJ9TZxp)H0FdR57|P~ZH;sxfgNTBOm5ArLua#2<@*?>_iN>{
zX;1hJ@fpaf!nC@zXQRGw&ayP-l!oeggF5<Jz}IIOw>14>q59Yd&lH4N)P$=<xI6es
zI2uu)m|@w{VuqT;F7S~f+R%W@x+e@+4?n~=2_cYa%rU-Q>vs*_E8ohxE(JiJZM@(4
zeV1im{nk(~N0;rz2f<elg;@npZef(EfzQji4_|*<cuk5TteW>7Re-H6ZF;oHgdOew
zX;d*m$x0il`5P*0;jre326KAa%EOLZDlBcMHJ<BZeAS&VkR6?2uK|pGQPZLj5dj!^
zL)(!*jZy2)^sP-J0<q_)S8#ivOuLCz{C@fz*ZT48B9(~(zljnN-wd|U)u|VD0fNWf
z+>a!*Nb$XQWZ{pJJdKk3L`7QWZ<O?-sb8YgF61(QjN}f;n~z1hqEsg3%?BD7fbDD+
zBs0wv{x6>L&N8<xgzYS>vIWYUvB-(iJQ~gX?l*sQ(wTrA4Atxnrx9+grMU0d#{JNr
z4k)npVUf6fF6;PK;3>sBw%|cFbENT*pfOz1c=(S}uFA})^3r=VmsfZ{nlFFU0!vq!
zdB@*+K>u~FnQl$BWX`+J%v(xNA<$DXZXefXC2RZFUS`g8o~&e0OcG|_wJERhpZLF_
zSXrL=`?d7VpP6-Hng4q4$6EvU-kG;91d5LTgh3olG+A0G{8e?w+Gf2~HOKw+JJ@G&
z0sIGl59U-?rC)uJ(wWBxjDL8#)<`)m`ENUOc4O%w*7xMySf<<T?BqlM)b1aHF^`Q+
zKgG`%n;aeZp6aRkziVy&)9%MlFF&rsZ|mQ$VoKebBN^OtDWi2C=wK?7_l)2#7=Zli
z<UlyFBsh_8oB(zLHbe(EPG_xuh*1PO9f1Om<b;mp1CE=YPSaCv@^ILeJpC%5S(!LI
ze7XZ<Ff%x6+FirYo10#E+w3itKwh1E0!fhVHf@xBU1aBE2zoTW-~VSz;!KO`ROY>^
z$EUaU*6??a1c_^=nuQWAseq#|#jq{m&m2gI!{(2Zo^9$I7O#!zzti)VZKg4Er?TQ_
z@Yk<yFP{ZE@A8_d2*06r{mUR2#PrzN_BIvP+L^_e`iFJ1U}dqMIkMs9%rCCxZ=WuX
zUE_4ekq6=O=^ZndnXOm1iB|&UoEsF<cElfd<0$hs(M6k_EgPHz<xT3})*DdYF=*s+
zpXSg^`pEATCyt8KZ3hZb2@=`o3^5L*f(v#JEfP}-bXH<foTFkY;^j+6Kb6&*H!rUL
zsiW~*NSBIjF4xM+e2UCZJiN1n38VDAG#Dd2oVj!&H9yTRm(d`-)M(tZu5@@h;oTU+
z@?d(>JSmafS|eSUWB7;>?#-B*#y*jrpPSXVk2*O4_?-DT`d&=mavUeuB%8kA=CEKc
zozBhI%SnW#Pbbeq;15*|9r9U4OOMp(Z|BjElkncnpJNug>+m~3@vJglQH=1%W1BvN
zd{`8gs6AX`1e0(ETaO$OK!X@6@Ruy(Xz4ver6c|J2e+CZHPS(oW>`+Qy;6A9gQ!{#
zQkm#2>a}&rNc1-I1J{)r^&QS@rj%v;hNi1r64L4S_gAZun`;d6>@V=(gn<9y{%#Fb
zDsPRXh(b3gCc47_G$v4M{g>Q<R8IY|>WM5hqUnT?9098)|10VJnPT~{uYGkE)%v-v
zM7R-6@>2S8gF$^OiN{Ad0=H!&`Ybs2iz0KygeIBgHinFl+A;`^C}I-)_-{_AFwx#Q
zs27tSJgdW6xY`k9c0F+dtz&3ar6$PMoiI`gJ7i&|+vh?uOo{g8-&Yjr5Blqj;@eo^
zAl~Xo>M#?F1XgyU&gXT&0|TB?*%1v35ZMsJElsjWbMFcSQ_f4L2OkzJsNx(-EgW^a
z$*Ne=8$I+&0=|vbjb>;H0!rcB0hdFG%o`OP55AsQpvVM2w7NZx!GC@dDK$6xDK`ST
zL>{VA^a*)OShR(YhE5Po`s7V2mL=Vwy%x&1`>dP4B%tStzcgg3h}646ReFt$I6RWA
zNk(yb<;DEgXCV^^7Q}$aS&UB!V9{zTddm>OuFW7;!Cymgkv_B!M<Bki92P%dj%K^O
zU0)vlq^t;9k;L5~SoNr38^`uBZ%eoO>77#?__HdDp4jCFi>kPb7jPX|JMH(CAkvx`
z;kr={SR#le7&jDEHdIj;I3})eul=KYj}IfVab7cy4}+QM{?gQ|*Ai(*vjG1Fg4Hm7
z2ps%ej#;}rtjzqU1ZX80a-kShrCI)(@N=K$8%Lnz3fr(|{qtQyI9stdp>1e1>0V@O
zRw*KOwnV32v)$a&_s6JI=o9eix&#>euHd*-@u*Mcjq3HEi{gkip-C9AdavY2{mv*b
z3&9f$!QHZNKdm3gi7^stH_rm#NLbiBlY^IP@s%vP!)L&kWXjW9PNmYSlS>v_Qn$^V
z$+_M#@rI2Fup5nWm3|DRSHa+dmg0@p0vjp6YHkF&K&@PY(!)QIx_<0@=lI~oXp^|y
z0j?!1e1QBQ77#eDZ5f8<9$>Ig%Uldbsd9Y0QV2X{Wc&~D<pB9)VEoI2uJdPX{c#*U
z?Ek%&>RmRAW#jwKuN{-b^z2RlZvcgC%R}%-V?-C@qL)TLOKXrzS2pVTYqjf>UgCdq
zn(L``Y<Ij|pgJ?Rx8H!oQnEFFC!nDX{iY7BQH=W}^MFJhV{LRHk=jw3gj57y&zf%a
zRu*}n&ILIAZyuZec;>WV&#_MZz92#8d(P0kMstPGv$t$icpPZVB{;F<F>9>GpwT@^
zKYQ~V3HMcj^ImW$Sq}?nvIa%s>jLFk29WFXkqY3r(i~7+?CvSDqF>2{ZYu%E20YaT
zx6CAfWLr!ma$SQj2tE^4JBY^mA<?;Da>r$m&b(ZiB7sIS)SZjsY+gfJ`cpI)ISHx5
zt4F)lg!ET38SGYt`t)L!n6X7pDt5bMWnD|E(gaRHEukrkoJE;)a>~D^Rs_0sBp7z%
zEOx-B@;4Gd6onYL<5r2g_ZEO02?|HPO(R8baZyK&?Gf`*FpMo*5IzMBm@uBy$Q=*j
zMHs+QuK<ossI*`OR4oSvKv@mA<8Q?+7LaOm501V0PwiKw1mkox&hGKH+c};SQhmr=
z%IiWLvk&ooz(PEjx)2~TSeFQvOoOqYt^L_h#%^j=N+J_ClZpUR#Dzh3c<U6I1t6)6
zOZYeX)iC~+Sz5{L;&=3uOn+r8a?klwOC3CA%9&?HVR{g1q$bJf{8IS<vi>U6QG>d8
zp25VgzN>nBVV7WNJ7k%E(mtwel}nXG`=f$-g~XN}z5sSju9G+wGB4^$tma;B&{NG4
z(QT=B*FO#N;%l%F303BzXjioRTVqoWA-17cY5=Sq1h9464aDllvk=Vg-R7v3ktP8}
ztA`$<UaPot&+w{^#!aWc-7os{+uCbY#eA*EldaNfy`zQEK$R`r@^X$Eg}H{W^=Sr3
zmg}}aFn}E0GbJ4@UR0_CfU6O()EG?7w~Aqi%}*SyEC5b&a1t({OG=U_(<>2G5OOzc
z{lizr-q)1kX19NUZeh>~Rh6UNHcX_+rx)T6YJxrqBIh%F(47(r8WG8(ZSNGTb%>Jn
zF=hywueG%hFF><Nh56Ro57e)~+)lyOMjuTm-V;_8K8M_pefO1aO2n?%IgI<9cFBOR
z9S)j<z>UybpDg-$S3dcv3f)~J!qZ<hC^k!cAhhkkx{XJawdy<ZuJm5mG4!bfW_!y$
zy8b<Mp=UV9-hcBq6~4JlRwDS0i~f+32e4id2(r$)C1^|-Q|R1%U#n6eQx`o;xh7Sc
zzz2d{+YDItOW?a3*EHyQ=9Atr`*CTcK#wiV!|b<#OsDqRrCX{Tr&JufcL5}Q-BhrH
zb~d*Dnjk}^Bsg@k`V;;h-K@)7s#8Z!#+JiLLG(NDr7XAHJwe6GRm2k;(%Qse8b}m=
zWlZj;PE5d2x9Ih|u$yf><)F7^-5PZ;7SMcm_Q+G>`pLU@avUiSkKIam7T@NBoAv-F
zYT>NQVZewNtCWFvID3d2KL_Lo6mt)hg@zV<r2)bG31ekf%9|wj=?EqY7);<R2vywW
zu-U_4W&e1Hdr8z!WK&40Ti+)RqQZpMzvPF?t~5{qGdf*7klY^$-8SEx)Dge<?=@;q
z^uFS_7gY*rBObgr(m59|{=I^(|KJyYH!poQus{1Vkdq19BOClxLG0s!&9C^Sin)$w
z&g|4A2Lv+h`R7f!{l}i_%4-tw-`ijIp9ID!fA}Q+t9wb+)UR22<D%(T|3&|||A^Nk
z->5DJ=>|@d)Kzxqnxj-<|D8RGQ`zN_xSF)$*vxEJ*_Ua)nhhJcC{rKVdoK$_blv5s
z5%@neon>5;Z`i+=Y$HdF#?g!h=^Ud*hjckoKu}Ub#0^Oa=?3W%l@dvR8z3Pepfu<R
z5fKzoRIL4Zp3n1teZRRs_nZ5=&hPg;j!_`CIu1#^4!TL3CXOJt;-;rP3j}O>ed(+H
z;+qmqQ$GwHM0^ShOnCNlOi#CFnHhB0u{vAY*Tmn3ylKRbg$NS@Z#6uIM$6!S7k$w^
zP{AfLRp_!}=J=raP|(tH4rB(kL2s{61x~yFCys!PP&pRUslWYq*xK;a<Ni|!`a8w^
zZ{cMW^)h1rzMutwedX;4KUGix3rDlSPkB%Ls_CwwYnf&$>n%`7;1%p;ei;CQu%gbG
zjbLN>ff=Sh0V2q*f`jOT8ZvznfT5oJyY#{&<T*SNKtGY?NnN6;B*Qu2;hO~JPw4W$
z%docbl}!>0s0JB6#+!?3UqLe;RNH6>actA{ZPYgy+5vR_`fS&P*y-J_`(;9cU;hh3
z^N-c=cTTR6sNgK>&Av&hjAi>nQwEE-{?lVz6FH1_V`r>+de!JP1zUk{)_Hy;H0};P
zhc`cW5jO{UYeS#Mh$Ij~=Cd2)q%V`GC!?*l5fqC%zQQX3!%E3E0*1op5j%YnF%*vk
z?V>@mHFBSX<v}=su_|~X1aG({SE5hlCxVHt_336L<sG252>%}=AaX}e8vu!?DDMe(
zaF8!<J2S|UmvhW6GS>-2iS+AW={W)9Sn@^Hoy%ySZk05RHCBzaTorF0CHkd?f*PK^
zI-U?$9dYW4KrOPFM?f1ZuRs$P;5N`c*x76c3E+vtaG1&ql75ft$HQSQO{@WKL=l*w
zcTHc?GnXS|<g2!*p4sk28_^4q#7<@JkLThke^PND5dB^FT+w9ph9duL#pl~t_7kFB
z?+7T8i(xPasQ@UgCwq0f1oe_xbwwj$Ug|Zcyo)igu^WY~7>kuaPzz~0gk@6iNQ@W#
z-I5o8l1q-bT8C@;#5N}}I0IXOY5m*?u-%@}qVE<2ahxr(IpJ{no)|(Nb`{MO2kxRI
z8-f%X+K0%nHjCso3xEbT8X=~?mMqaigkqNj$j}VV#vC0ken=e>;O;pC^sjX@{?6V*
z^-~bQ+DxN-a5R#4<5=*T)vZN5;x+8`#*A4~qd?9cphWya62Klae!VdzfG+Q_V9`of
zBGR}C`OO#pZ#S}%3aQ63{7iu-J%^wH5Tp=CCUNB)R(vRa2ML6$17tdg_cqw!z2qht
zA~@LF(sn{Wu<1Gg{GmaRH&o!0FYwmd`?h*=bPtb~Y=*usIKlt@4IG82Ig1#q07V*v
zp~?Ch;&o|YdgTQ~_9eK{zJqFWg7~{=9UmoU^5ryQ2JupajxbDvIaYip_B^)F5oVis
z%Pc^=c@8i(T=oW9(T$=rZedeG8wEm%40zUzaKoVjK;{cls70puDkqo`V@al@7mOj|
zY0Y#=a|ne!Pz9OZa6Pk3A}-PIS{y?vmcrDkpP?IAu*O*^_nzMw_+`ku;+f>w1W>`f
zG?K2h`h`%`8?Q*wR6gWeUTkw|K%lM4-eYyZT&_)2HMRcOXc&1J)=k!`B?+$NJe3K$
zlm>LIrLTR4t;#NVdYC+dymuuV)t39Bp{lhpT*@RSC}YzQ%kw_-);pf_F31K*0e)2>
zQa?C}!YWE(QwFkHQn>%Th1<*`_FHq0r7XU~*pScp(IhqneFdEggKF}~LtL9{o<;@b
z)8E#zrJS91vIqz~XZhf{{l_p}M31Jwpha`XInwysgZ~!1AI*LQI7<u0@W5<o+tuQ2
z!*QN9Cx)up1}45Xm|jK>f<a`Yt6KcX)E6+DzD(%uuv}7l*x@2mpuVr<euR3)xKu^r
z3YXz1>6G8$vB$xSIKzp%5LZI-yuy~-?kgb*&f6lD`=`++5#mL55v(UyWRE&DC$Ewz
zj=cs>)Y032jR;hb4g9%v+c3SNF-r2e%EW{xE5n<5!^7RSS3yuM{KK9l$~oP|xggnv
z!}ry&;r$n+tFmoxJ{|3;$Pk?0YnYBqQpPfZQ{}s<(Mcvv9zj$k$D}s#_?+P8C6lu1
z;Dm3;qCYu1gJLnw`~5{@tR8+lbmO7j%z2S%(%Ja@jj<9_giKoSWEu^a{wGB_hFBCj
zDIG5?u;PWP_(X2}#1Ak{TM3NvG$oe;cW><LbuhLCk`L}4m03+?;SI7a@X6GS)Iabv
zc)B2Rk~~TJ?0=oI#JPR^@T}_k?pcUJ%ChonlLx_!ZSd)~*DoTs?k=W1!Z$z~1L&*Q
zfX&(OW+XFO80S;pJ#Jlcdg5;0gMFkB#qiHN=U?_zVJSnua;5<J`nWnv!Jk7wwRb`q
zWwQ6f0N$z8<}e=kdDy=F`GzlQOG+TA9eMoeq1fk-(-!{~0O`i>@@5?!p)>ik!O#JQ
z3)tx<U54k)$HN`RDmkB(wPk<lDsp_?T&p26CJ-0eKd-A>YB|unj@*x;<4K$f0$XU-
zG(W3l4lknP?Dqys+j^F@73MvuT;OI4*fd)K%ek}nd8tD2z4E~qG??q^F`-XR-;(9>
z=pmpR@I8R#N6fwBWa28fHBiBYE1X|gTInOf*@BYIukdo?F!b9n>C<uc1?!Vf`o*{<
z%JB+G^wLSfj6OX&nB!bDIlj3zi5g8rqpr@;s^<YJjncxzn}45cQauHI=0G)y*WP^Q
zl@N|ToHH0xtOn&Gp_hi!_QYR?Sr&d_BUxY2&sA@nL%Zam4eohZEL<f7i9Df*G=%eW
z<Zs4*y+DG{1=&hOv1(m_bEnULL`p_vM)2Nxg#YBg*Fhum>C9`Z;dPehIiJ{|_U8pA
zBGfOwM{VF~*YfV)THs$)GKuaEdgxL1kW5;m{yPen-L#WCTDVMk1)h0j-9glOw>A9k
z6@KQm2}*%(tKg#krPeVUgVkZ@#Yof5$lu{b#$opAS(h|SyDXSaO)Cq{ECJ>MDdryR
zsZ9Bou6N--bXzqX*fco!7EYPL96#djdGRRw$)Y~|D)6z)(HbEE+lwXNayoxp>~3GQ
zOMc?gp<=MEuX@?hAuv%3h>A?&w7Jb`@~7MBC|5>Z!l!1j?m&fu`owKDYG+~*Jm<iL
z`yTk6J&;Fc>wpx{vKWwFYjR&Th&H`>>rRk*iK7qACaR#}+7YOvhO6Ac<)*1v{1YsX
zg>w*xQ<DCjG{xeGv(LnuwClgWRDE&3FGh&gScyJY8LbwlB65;RuoNSwJCiGy*_W^W
zMuua!!irbY16K>qO<>8Ty5YwaXO5K(%h#iM^VWcCE0#s3r90%6+mp`uo7tDd_2v8{
zg3p{nNQNP>)iAZ^IUTbLZ=wx$)e62mP12aX?Z!hZR7;2`EmkDIJ|I;*ajtIYNxRqk
z%iWXpE^mEd8NZB(00)3*R@iV_BRpDOwC63j&l_Yn_Slco5JKt%X59U(-~XJ_&y&d5
zLca1h1`)pA6;+S6SVxuc3A?-X)U5Z+l)KH+MENEA1o`{2?y(dNh^61tC>_5CE84g)
z>RusQfl{d0=!pHCAYT)vUe@68+{1l5jEkp8<NlAnca^aVXQZ-m(-#ljr$P=lIDgFu
z#SMMgFfS2!dA7j-*c|Tz(MxvSztZ1WtX>VqEuLB|8Es}1do*9KqzC}M7H%#ldl-3d
zsE25_jmKe<tJ;?PAHLOmbm79o_nMD?^gpI)ZXId1vuJg24RqvJwqF?Nl-KG~8yFHB
z=rS4Tw$^$AX6jxB9(TO;do36g_FLUotMM_ScVzM?Y;6D5+0(~WJsBq-F^c7to_$S@
zgHBpQd;?TPEG#(dy<NpAC-sMsS`g{&(;u|oPJ4_%)Sy4I-an`M3V-}};2*t-UKIRK
zRhr`THS$t5fzg!UFFA<(_O}03+V4fJ$>Ot37yWGeROd+g;g9-^Cu@jC6qDna;4h1r
zACxI@;<yjp$b)qHF>O(^K_W;;#x4F65e6@~bY(mTCFeE%gD_(&l+85eRy?@)QVDOM
z4RY6<D*rC{r{?XZ_RF-t%L4-fhkyLO#lLzo$P51~Sp8QmJ<?%TRHjV${55V#c?Tu^
zUi@*Z`jJQZBXwJbZ#brZxa1wpo;uIz9ZqPy=Z4Rnq+R|$P*Bp2@eNUfzn-R_Ks)QU
zV2fKj<#5f;kEGt1g8Mf63_iOL*7k4H^0(e!Y#-E>ML%PgOxS`kgBk1RQxo3ZsaF!D
zLlo8TI_;<!|NAqUuxrJjhTHjm3!+{m@^wW2Q-n=8-p43={K2p<RA2Nt6U_>}r!3z1
zNh0~HjuGx;=xr0t>QSZi3MP2?UC8i1-19w#(c7W+F80i1_fC9$+B+Z+IJ^`0L>#<J
z7>?uAn)b1i;_N`Rh?@%=)i5{gP33DRd5&_3^l4gZwbV=U7oxCRuY_ao-_3{TbqQy*
zkW#rc>+^~*$gyFZF6KW{7MGB)2nI_*;gl{aKWP~;tXHCRx1<+}bLE2SGZnNk_O=*U
zTWxv)a$>mkLEA%7x&j3Uj3dp-xjwsi<%*%tuDD-)Lt~M|0co8pm^!>b?Q4;uD{L%;
zwSL8H9=&<{VoK=EmpjFoVJ*y@rp!b83Jv6D%y?dw>+!Zh2A8Nf)-cylQ2sKWw@j&d
zI5C+E{x?h1WntH}0ORn;cXi>Nd5NOmY`x2?J<AG>s874Auin1|Dg`i#xfamnVJ|Ra
zHEV(>>6~=<*!%_inODuG%7cKdb59dWEC(H<K-szj6XsF}1ir9Cu=!o;#uAf&%V5|i
z=NwhL^La2k66>6bG`h<k#u|Xk7(D>A*};MryZjCEo`f*e5QIuNGaA66Vl~QC2!jfJ
zbzi>SwN-{CyyI&=ng%bT;c3{-dCPFk(}OowHD)Nh%Fo3u*S<LDdP&<VOMsDXcD&SK
zB8c5>?)wk5W9qP}aaw3-HKn#6-*e+H?~O8Lq?|Vk_vL@upMlZ(yPNC9aVPoi`N9`>
z=#FQ*INk9qN<H-2)c!-)73TDf-QmYbde6{mQC7UV9~5bZ^rDwhZ+)r#4bAYL=wh!9
z5RDd;0csr`C}xlt@#rmfj4qNvG?&O0ju*~QKEaFT+lQNqmq(tMmM1B_kQ6-(03|_T
zfR;`mGKOR#3NiGa(tGy0xf{q&Bw#O+!m6?60b2EmS6p-aFDMM$Vd_fD!;X!J)(b_n
zsSe4&(`j^`RJL?A%T=kK0bT5H4^R?Ae6Tcu2?d~xyFVtYnAUPU<=TxW%>w11La!7#
zWiMJQK8Y-xv*zU;skM1IeaTU7=+EdK6t29@p81D1`y6iY(B!!r4-;pZvtfYOGvBk8
zud}MLw>TS|Wu<JgSD3ftW<Vs)8xP{PWtbN+NN3<G43`uA23f1Fzi?idlT1==UF-I^
z%C~_2kBjcvM|ecxgDWUD=bzYYf2J^f7IaPbPw&i&OEEs#THk;A<e2A$o7K`W`VmA8
z_tg-bV_6RGFs_ZqP%j~km<r>jc1X=Fn}5V)Y@ecOHU=N#3-Co{`S^+Y8V4ndYBoz&
z(LlC@H~<@n?I>BdOoxPSa9igno6{ur*V|s-EX_>33DzokP$@UdQPL2)mRH8m$5Yw+
zQNt@qGfgZ#0Fx;=o^0@ij*b^%hRqTk&HbsdZ@_d|zJ7bMq5LYwZf?!((m!VH&72kE
zSawdE{i}&`uAjHrIYn>P$`SKqF()ZKEBNOkhAj4>=2kiW4{YgefbZ@aI3~pIl}G=J
z-LEVD*N|(f+v=gA+mTYF`&`xUrYqo~cl|Z}<+HrEwyF&8Oj31u5i9}5+X@6S3)rQr
z)_E)Ps{{|%+QX<L7E%n5{%0*FTe3O?Y@>g!64Y2|X1e9zN+^a0ke{tQMoiFOqAm75
zr4#^XE^ICkekASbF%Mk_e9<a~+qHwl`Gev!q^S&!Iclf9$P~!r7-(JXKb9LWMc=*R
z*R)p$!IfIE5~55WP?4B_w+x^d@|HT)8?}^Fttd86WcF!3Kd)VjwivY3k<8cq*+Kwb
z-FN}vP|#5yv(1jE_YpXX84t6+=Sx-~E!o+C=pc4EW*LhYpc)eeeZ=^&M8ny7Lb}8=
zs?sZGeQEJhoZ28($q}3)#4<@V>L44ihXR=eOnI%1WO;#qJVxoN0Zix-hD%%UB~W-8
zI%`C=IFBGIpAK<;p`=`;Eh@xdXko~U&lU0YWy|52c+pO9PyCueUqch(goYY}*|7`^
z*G`MWuyv5sURPC@_L*y{47`N}zV88NlkJLKMMm|B^akzI|HSmmZiQ}tPKZ5^8d=5A
z&iV{iPKge=qZRw{L^aBUR@x`_<TY0VoY09r=eBJf-@5=4onN*&jfVFwfl@^5Zm7oA
zf*X?2ReC3>7u78l9F7d>;mXw{_k%!s5v0(<BUEZ3E-_33FS%&JY7-f71UA)9lFkRP
z!FabXJO3eDk9XL2oG#oa6Aw&HPdcm3Y8rN8TFl11K#j41?qqaDjNyJ-*%PXxk1S->
z_qo7%^Y@V{nq(Ok<XDXSQh+fRUT7?`7OjqAC+B}?NC*Vc=IZM~I2j_t4QTqHxYuJQ
zgow(GrWK_{pX>MlAnb4f@LCnX%RUi^_xSC)GUnLR6|#VDQ3n3wsfK3FTT~;}lixU|
zTe}_FU9RU{bRT_PoF-Liwu?=LS_C9G7CH!LKB&d+Mz)V6%83!`U$_YYEC%bv6dcK~
zroszz=jNoK5|}sSO{w0NUk^F<){9e+T);6MNciV+2(yAx!qw!_2t|=i4t__+r!PK>
z*8|C%jtZ3T4TiO@zb{YEL=4b<BG^CWqpmQ<_)mp!KC$Rblno+6mu0al;(zS*LQ%B?
z;4n7BOvvao6Wini1MR@yK4_TBgaKV=NCw-MfC`NOx|}hCaLoZi;v1lK>HycCT3|PP
zYSN}i3D*-2y4Kp;Tz@MZinq~#X#>CzQ*$<S-=f?TB2+?>g20jG{#%**-*|yzSK^>-
zZ_>7hT+jrd+g3802}YUH%M1{8A5*Og<H_Fbp$`BV1W*ngxbUHSyUcy-1aS>OgRG?#
z+m*Oi?E8_|={Db8iszkTnLByFaP*Fgcn0*YN=#BB?7avnolCLeWN<zQnF9>_V?8NV
zzyG{{7<e9Lte6Ep<M&62atxov=_`IhhXkn!4Td*%Req5PcFwPVF+ivCP_}cQxm&|e
z*7@962q@zG@8--GV>~c3E7<SHt09`t>JfzTS|~esL`InKqqEnh`nvVNnomv#cgxmi
z9|<?;lxK{KJ=R0;HzvYRJa*DDA-v%B^n}=}1<f*I;u#0vLY&+z%ts_bcrKpjp*k4;
zNGn&opc;6M;eI)v`73ZW70mw=n--(qiy3f-3U7%jgwAGr6fRyivQ7l<BEQKf61c>U
z?QCVKC!iGRwAUwgQkKFu+I?OKie8K5CU~ZnstxRI48*?qI+|HU`%{Z!DR>L>&0<Gm
zp~O4=nq>;7*jqZw%mfk`_!)Hnzf?x(q5)9!Ht59#sSoDYHMymtqbhGl9U1<2nSXoc
zt9J0vX^H;eHV<u&G<9$XLPw*6mJnPTIVQfw!2cS^3MNBeCw$R*OW^b?oO(QS@!hNQ
zY4F3_f6Ln9C8G%BDA;a%o($j*Ea0KBe|TbZTy@iC>?p5`@V~H_x1z8xT@d*;a=W@-
zs1KL^*Cmk_M*Oc3iN&M!ZXYX7H0vGvJoug=agwj6B>5j!@e%Bt+gc7fm4<-+AfOX@
z`N#hW>67JvDfI3LB!mt+@!!7@T~x3>SG+#AA?Rp8P+N&eZwG<$!2(GS=g>g)H2vnQ
zY<!u*w}3biZJekDPRt!wT%w<y_kS2)j+hE`<U^P<Ne#d$t}HA;!eQ!h(uX)D8H0=3
z2Fi>|61&Z`{~`EdC7Fn1+yvmwy5#==$IvXw^&=92BWm3k4GRN(enXs$p}}s6ingJV
zyP<Kgp-H?UUS`xV)6lHV(0tI)V%pF$v(9wG(E5*|4Wp4Qzmc7Cx|NKPy@ip3yOCqC
z5n9{GDbvWM!pODF$gM!o`CAFXnS4-A{5!$TV546?$AFX^J6V5@nII~PNPF@VnbT^O
z;>YrAj5YI&g*wJ^tH<0njISNyBwhmqgh;G#5_o|-$9W93p(+{6uHZ#v+Lvb60)%c5
z{YAm&WM74nrU=8-(@XM^GD(>+1JMvt(pOllC@{_<{f@;%0Ra$xsKbVqLUfm=MyAt<
z-!c+jmm}wiYC#isMe{NYLG)>OWWYlh8pvXpp7WZLd1!pzszOB$vxWi%!Ya5VNm%zh
zXc~jie6FV5xCASyP>F#90F(*sy^bZV5=b2QNu#o+%K9Q6O>7l^dZFk8kdoO|A(aM3
zU}K~i+u@7H+Ud}rnoYcbi`>8#1S((BJnUxr1DW<B3s6^Yan^cHkFvQ4VzS%aoL{MG
z&o#Z5F{LlbbVPePFMskS4{>t1_`+4v?E=B-U^ddKwq_1kF07_O9l%Mg&O;0LNLdte
zPh%vXOjQ(8SS4q_O@FePnbk&cG;=8ja%xKA@oAP_>QnZs#O!adh5AI=@VBRNl0-S8
z<?8F1s@@5zS#JaV^n9BE)zIQYg;n0AX@lPtpk8(ua!hJUED%dv(j=ZpCLL-gAGO^X
zY!(ib1Pm&t!OjCd!pk@r0N*#_;PEq105Pr&e24ndKG6E@LEbUHH5(&a)U>Hk7=+$8
z-_=F_^`B`=4Dp+&Mb_~w0!l|mp2~2y2IxTPWDz{&bgaAiE5sC5SqN8X>$`|_4k(>G
zW`gl~N7x6egtj?M4w0;!@!eMuA7EREd^wn&e5W~&d4`3lA&XNW6-K3dFO$wKKrF1E
z-%rX+ueXvOveW9c!YH(yeE})NOkIK}hhpJgD^S@SP;xIFt@Z1ILI7$qBID*nlHnYk
z1QC>10{!I0D;=1)Vo*MeQ;DBTLh`0?slN(xPII94ImNU)l+k@)&%1?{b6a___My6o
zuhug5QbMFQUm1&KR;q_WA~C5RTlnl2_C@Hg3R2GNe!E3+!s19+!={(*X8b&^7jE0Y
z6iQBs4DGvN!;ERC_?hx?7+EoH3i<`4rKZ8FwPf5IQZL5Z@0_KHpQc_Jn(z?2^!nIg
zebnyy-=+Qe1s2nW5qzeZPv#Dh5ukxQhEKEi-GgGBo@1S|0?z-)3=F0$f2sH6_2=X;
z8C^L~&pt3herCprI^HBNZ{k^Qh%rWsv2gU|oD!I6KSIZhv+i9RGA>O_Vx&wlpXDIK
zv=(>Zpc+0h78&4^bM}i4-jZ8tyV3`k%6^B$VxFA){&F~T3yy938PoY!a|@|1#2OS&
z4J)E1i#9>;_lwz)sM<A=*JR*~L9XS+EOP|HrGj#~R`YAKkRSSU?{9Kmh}E^bx>{$s
zeBkU_05uN{aeE5oDb?<|2S`)=!%pKbkPBoF-C|!7<w)&X2N=oRRN%D#0MOD%4hGJT
zI<Oeu<<R4-rg(4--_1(dUmx^9xlJZtaS;ogbgq^JOniey>lfXm=yx9$$JB7eDncp0
zP{wRrb;H;mU-tzecRaTT$!2pgiZLF8qa|R{7iNlYA(RQ#t|?*MX_FqC@8GSn!1sT7
zIYQrz;knmB3O(o7mpLn56hKo;3iP6+S}hTNwybvo%gbxtc)66MVLg>&iRnV?dDzR5
z9dAMua}JYdpUzzVo6J@!146g}S*!bD9%UshsXe&6nP!O-Kw;L6M^E(K?|;C|B|DU_
z7PRg>c>cQKb0tsJIV5bX3}T!Jb>y$<hm5z_RjZ3|Synzv6S(3FT$|@z3aebkJT?yZ
zV4I{Koe0niSDt$epI;K_uixVJN3W8+u1pgMp<An_+m%rbRGzB6GB4gYoUMNWGOA!U
zvUmK}R;dzos^cwxPe)oiQ7RNji_dk1sxGZ#(l$yJgO0b&g#@;|HnugY9QD0k5e5aV
zN)`SQUanr&7xc|wU0(k~nSl#`u@yos(98GR|LSmjhZ7MyuJPwx#Z`;X+(b`2A1cL_
z3KS$7&(?7L5(Z-|0<bB3L2Q7fR7`8Bv=U18g@W2yk%&~=k#L<EYp=E3jFWD<^K7jl
zIE7%G=wgg$b=dMW-g6!D^*~jyx$ah)2{WyzvjwCX*!r;g`{4I$?e=Q!ew7J|@xO?(
zlr*bTp;uFrLWI-RvgG+=u)?^iD{;nb25%S-;>2yro>~lxhio^d1Qjtn@>6dZi0Z5_
zP=~PJ1m;#w<MF~LWm+_K20w?B_Yt6gRJ+E|e$#O8yh*8rOYr7FA;~*tprqP&e2siJ
zhb6?6py@%itarL{P|f-14|ncP8%s8qCwNoiY>-<Y)`xbB<wW>zHhFJf!SqV71?PK|
z%>dz-Z#zq7Humah=vtLF#*x>7KR*C_B|jmyFx&?oatGFHSHLbG;;gPd`JR5WDv{Kf
z*naoU@OF!7smB6az;?qqre@$-KSn2kDH|&#W#f$}w{8bKE-kBPX}mh${_#=OgP_Wk
z1_0vE-*i3A2NPw9lenT6X7Yr9&6%)|{2Ov}!W^DAWH7|GzZQuz%p6pa^rc66%eshG
zfrpP&W&Ll=o68;1234rN;xhA&y?aWB%%IEH-q?-5X=_Ej7omnc`Bh*j`S6w5!$q9e
zdlY}oYs#?H?2}K|J~yWK?16GFW<R4UOkfqDV8oyx0;bz<+Sy*TFJDx9cUmm{bJ@AY
zHRN})+_y#rx&c$z`tDECSZ+YaPXjDi9?~V5g6sW^!zw<UcnX-TV5*}(vy!{itoYMQ
zravOIfEaq36PgG3GKu^m#Y#Dz>0pj~Ex0%XMw8I<$MC73lcJAngZ6Ge)w!i@n^F$K
zVmcga4rVn$yzB}=c3~~84LMq0a5-Q2M%w?%G1H5muScDHeik0ebREkFiyTlH4pP<q
z+Vw51H&i-{_H-5+!|rUobRB|zsyWbAaI8XzXf(-CzAgLYhWe8~jTjBU*DHKq6LZxS
z1W+D3Dj7%TR*vI5Y)Y*6w_mFT!h@TMTI$yhTvFEQ?H6G#3@S$JYNW!VxB)evj~U8e
zza{)u%gTSG($u0V4>WuHEpK1lLJ#5c_C;#`v*V*)-Kmc#6GSGsH_O1)O+?k^sapI;
z2KKb4Vj?})6;zmdyS)XPvGNf@sXHP+PwktSJeI!*Ja9C547O)cciK^s*ZXLrccb9v
zcf)Jna!10WqfKS+Kl*ubFm}g&;z8a^Y28@Z`5L@t`s~oWk7iT(i39gwjREK}1GrNQ
z(K|5Nnel<Pk&n9h`Dy%lQG#L6^4fQly6w}_rv05CpjdW#o5!2^ptoA!mrESwJ~~LV
z(&e33Mjw8xzJk9S(D`w#Fi$N#|9(g%ZD{J(&utxZvIuF>bEg2WtNUbVcuHd^;!Gwf
zw&O(~yLyZd_dx1>(1oY{ccXXSiHBdu{&K$**T1V#>m<Lw&e3i?C~7p+sFqXwQYHHb
z*S(kg)wiPu)TZ6}$%6>LAJR!|hv^I)e)ABz3w3(zGQYZ(;IKp8J8cUm?vyaXI%_6u
zYEe)419?Q^T#O51*^htuIsTj?IC&wRgCmbUDT%29G;MOLN9R@^_0P*6@p5N3zj%-r
z&adm2$+XwSiHlB%N!s55mV}b&-zC)nVm!kJQ<QAQf6-R}A8sYQ|NBuSGGV{i^8;7H
z;mZVd;e-;xKT+TarfvA+6}HdI319VYf3v2EQvVfG4J5u8sDE?H2)ljy`1bGrZp&P`
z{paoNf1hvDV2PwqybSNXiTd!#V9onVWsznLI*(V{ZcH7;{YPz&v5+f&x!)Z(b8X=5
zac{iU<Mq!!2NPcYXZ*n7R^pwc<doF3^t&0ES=sk;a`W;F@^2F_6_%A(R94-uuBoj%
zpW8MyhZL7Mwmf>=-qG3B{iNq<Z(sX^k~{2Zm<2l}7=|84Gn$SV@t`fI%>{THUWGzY
zjY}4@;heO7>elwo?z_DkgG4Zz--ul#N<bcJj*@@*Tv%94o*n=FXG$7@0zv0<2vsSp
zU_ql`8JKd;3RZ@BSooZ(i%;1FA|S4UZ8o-H*wJ*cN(FfC5q>P|#iO?1$#=r}By(<}
zWR1RlQK=DXP_lzsF<*zzm+}ab_Ne9rCI`f@UVoDZ6%~9IJI8`>d<a5#&crDQb#whM
zW_N26$RUku#{(B?U4(=@Gxv$LMlXO+`@yu><OlFLgEwQ9Zcisctn!{Q>Uq)E-~Q(*
zWd7Yd0x|0+ZxwGdKTOFV&z0cHB_}3ZH@5psRap*v7ihAl!^$c>k@D7c|EqJx*huTj
z14}2d5Z$}e(>N&1&1j*fE}eIT^!PN3mB~buaHjS>-M@&tNOo1OK3&n@d0#&`@L}4w
zp0MqhroFu4)dQgC*sE#sWQ9*BmxjQ_o2iM63n^~m1FZAq$TUuZD{Gq2oB%6KJ+#`C
z@5NU>f+0sJIo-rQMkwW+qnnw0ftPh7UgF>BDu@r{=)=b7zEXPExImP{(hLqQ(w@<n
z_cHs&fy_@f{w8U7MT%TE3YMM7-(eGNCSYyk`Ok29R=w!ANQXEtaW;5TdQt(H8chcC
zz3Hui++oUnb5|rUV6@C6l+)o(5-MoFCav+LnxmgdbBj(MO(ikNcUN!FuncXdAO<!h
z1wfxWlrx;d-i9n?NJR*3BTw9UTf=c!DNI8Vn<9`Q*DqbV&3xK9$=`!j5eZHlYRBCm
zpJ)=nWv)T_ZTXI^!QR0t^CbEsqa|R9TLSMvGY)>L&mf<p0PF+MQ-U9{uZX_xHh}n(
zblk)h>sgome-HOK0W?Pkf~rgn%RkAk2M<IG<Zv}m=@o-J#+emskaYF~%npW(>Pi0@
z6OVD3=_xY*1DMEUmPTscRje2DUA)E+l}^Rcv!ekdLQ)nwF_ozR&^7u){ake<Q&8RN
z@Ub^%6U5wZ0-2I)I{pe^+=!?hM}1qp+HR<DjwQOd?A}Ua$cmkLf`oAlVS(>^2&mUA
zgB#q&@@>sY@Ykgf2gDX@M^UHd*Tai=oPIHdL3H)2&6;7yX5u=oejH0DnuD!JUf{O;
z%*o$dt@0+|^X3nBeipRGyP~VMzmO0v%Fnfsw^5*8hKly#;;G~;@=8>L+K*?r826+x
zT$`@pB40_{pOa~|&)QrWuB<|H9nV6!oZia3_wRkz8Q5WSMH4`o|CTm~qfAxl0P2_j
z%ee)UMc*JZ6kptWz{=dr!sG0|+3@I>;4#D88~>qTzk68eiFJS=GLcRbse?miA<Y2Q
z$ck#Xgw1`{wb!T`o4TM2hh_k2CC)DXY>3QHfG=(K8-R<$FT$Fe0?k5GfHvoY|54lr
ztCC^Pp7$hXd&duE*ipt>Vwy1@84i<#+!SrGlwG~tGrdg_;{ODujI1Ej)Brn7LQwkn
zD(-Ron3AwmT-Nr?i<6`tE*pcJMreJ8JSr$b{{VY}#Uh+-9{>45Z<kd1mQN3jBKsm3
zen=-?xZUs^<COu=5FJLe8P<Rv-OCaW+o5wHCcd?x>Q(=-Hn%4}XKn|Go(bEqAE*Or
zBIyZ$a^G|rL<>9GU&`8!!soT0#F3c|ujeOXY|rouh_<4qzB>}<onSr0A$V?@0a2a)
z95|umS;RqMocBdda0o%4f5Z04DA15x_LpLK*qyl+O_NwTUS;;h5MkPL7{oODt>g0o
z#dzA-2UEYSEDTY+_@aq$T7J??7vQ6x4flm7!1mJWHlnF$>ELIII@c@cb@OxZ_=CsQ
z2Hg50uf`u3_-7J<0s-FkfJ%vO868)IK3jP;DM_xo@LHmulSRK#mxY)q=vE!fzMWWW
z<p=uim8h3`yl^yWp9=cjVpMaW^W)eaUIcMy#uci4<<zfd6J|mr4a-Mfv#s<T-N66Q
zU_e5M04_KM3da)lJ5C?Ph`H!FI1Uwv->YW6MJeVWf=~ej5K9bz!Cs_GbfOO8zS=0f
z=rnKk&!J>YY0>Zg+`JIY;<Xq0c?N^{l=MGFmWGv$L!jN<f&`HOm5r%mI*Nk~^P)QL
zR%Ygg9<UHgzt>yxv$F~tK6<!!fRHG`uzK>jH7+<J8X~qs@0*+4V6Kib{25~1WDlZ?
z`7tnaetN?xtcgrN7W0QPa=q%Wh~DEwv7+@6`)0(VkZ(gjXC8;lr6npbQ^C^vSAzsp
z7g*Dv5D-6(!Tyf9=!6LO_v8ClFnldQh8iK>IqXmm-Q$<Txp10L2&)BpRkdcR(@+7(
zfb~zJkGzMIYktd$JfF<$d=t_<g{8y%CtE44(4%TsaLNYJF=XYO|N0o|eqIJ2EorUN
z<jbiUq#QAM(Z<`R{E4|#OJvg&Jnxb;Yj2|CN2|&Iepx1K1F59njb}5V#`L@roD=Z#
zPkTE#GyIuP5l4J1;JZzhO+f}=w9PDCs`B`Pbmlft8IUhDPo>2)ybu0jK5s-N7Cw*l
z);=dfx;j%VRLF_CoJ5ODzapxyPp>;(<&~-Ux2>wh5P-i31oxm4o5dW17;F0B56mfT
zVoV+%1&I*8xKpIJ$5rRQjSD#Hiw2GQ#E`^a0e)7AAkTIei3&}`TVq`BPJAj8pn84R
z>S_NZ$r#d%))=@mb@h|XoHpOo{|=@nij0`}3BXG{bM{t5XS<!9In{Xmrq`zc_h_OO
z2hFd$>G3)UCHey*q)uhq`$lXDKzDG4VMl&I!{#2L!7OOk$2^~o^T3TNs2K7SbhPPz
z^gy7jBn5KgS%lih4^ZL#-sjjh-Fs(z)E2L(?8~!>B`^QTeL(a-6ElZ+s!{-Q)giBw
z-xLWG={-L}F3#;Z9?7&v>sc0S1o|!~GNK6qvT5mOR#hiUf5spz_sNLusuE6q1|YAq
zc~5TWoJ_m`B2^E!y(|l30$_VG?+xx=C5?SN5m6EgU>xdWa`iSch9+SE?dJ$ml*NF3
z6Nprk+xQfvEOE!pfx1WgRm2iX1#1DT{$}#=w3DkIfMR=Fa0ZQUO~f-9<_>6xjgW>_
zSn&@wM-Vjh)R(u_`df|g(1*e|oWv(~XVXs?k4;0-57fN0+{*qjwBFPAP8FEmxzcg5
zBj?YAjGiUO-KC*B@@&8JO~D0hyi7I_#%fGyG|Sg$2qVGDHAnw=n}`RH@_*1}!(!QE
zNZfe(!f0)0w5O4uCu6k=f4DD)aH4Z4=vAX(ayK2lf|@lEaN<PwpQ-{r6d=?KRcMCL
z6SaKM0#by;ixZme?RP?R?tDKHlHKQ&Q&&*j*ObDtsW(H+@ppJ8=(1C<Ig}*3N+S4r
zq1(xDP9Kt5ce3p^Xlhv-Iswwhr`$W=od*EW1X8eiYNR^cqZxXcmIlxH|AftW`_!Wv
zn@ikEXLmrNl4)tjDF8s~-JfYW&amhbC=c>h$}!-A0!R#*Dn5|{L;Ah|$K-M&xRD?L
z62z@=uB5*ksF2?F^KN?@gA;c~w{wOw^=?l|Mn5+_XK%){{fyq98N=$CS#ueqF_{mz
zGtWW1(`hgk!Zki>#Eg1YUQ_1ln5>lmI(8e4Zw?xS;w<V<|D_4Y7?CmEnQmTz{zEg}
zyBNmz&hVoN*2H$Eh+_szXT}NiJ(Koq@EnuhF#z43Vy1tu5(xt30K%ex2sGe7j%;Sc
z6}}08z#P)0PV^U<<!t~RogzJ79~~?-_fs+a0<Dil$OZNj2!p4>MACC<MB;E~qBq(h
ztR2ZDlm(e!b2?#N6!Ma<xo1RWP3}FfU4qay)@US%;YW^Hsej=W7O6SlUOotf5fN*F
z7W&BhD$-vD!n*h19;;BNNuHv8I!p`9qpwgtkWQ%-;uQ-CIfH!2MO~eb%C6z@M{)O!
z(T&;i#OD&k5-*zblq6yxM|*k8$!W>9g)VcT*G7_;C*k+{pqXb-i8DICQdsVpv;q&^
z)pSVyhtjM-&q*QV@FL`xVr0-R5Zgz$L{ZtVEBmZo(rKC*0J+5XK3vZ<IHJ=_Rs90z
z4p2f#SUgeqtG>_;c6r$oVZj9m4=qmwiq>N$-$^Hxi`S@dDpp*u127$PHTLMUAd>`6
zEA+QRxb1|;CdJ>n+<9Fpd)!%WI#<qpQcmF!{fL2t+LdC$BThR-Kl2E;y_ewctoWK+
zK@_SExO9J@NoEBj=uHxN?oy4xRVyd~lw!{x-G`woxTPw7X;jg0diLM*T{_D?2Uc@{
zxUIcwe#CP99JdwWE$`x~8%Q%g%TMI*RH)4psccaASX}o>A-*}0JJrWMuTaJaAlnU+
zewruUXkS=Ti>cW5gN4R|hwB&(xTUdC0y&_19v=Dw#eZs$4=Mm~B0zMmPS!?G;N3+d
zBEeFj@qkpnprmlcOxlp<-Jn}m{vxr7sZIi0CiQpXX5RCr%?`PR#QSBXm|WI|@j8dt
zgQg}>GkjSp>zC|iM}6T!{jh#>TD`vUue_=&G6bQfC$$p2c`XCD8Xu6}$0mM*euwpM
zt*cz9yZsnb9#I1)@k3Ghz0_Lz{bnW+xm|C${cRW6j-1fs15v5E>0cRz(Tx{~JY98+
zPa?G9%nZ)CpW5o2Xtc6nz9Af`CVvb}Ulj1~3ivLj_B~K#469cuc|Ik%Sds)9F5)Dr
zU3#@<w)V@~w-Zzx^~l)9*}KkW6wq`M1|l^BPN;$ce&q&8uIrk1VVWGa7gd%D+8MMU
zXRZ$y`mns+9lvS6tT#24jUpnp%^vk4I+udjf_BuE-}8K-FTo+zVRIKzQxD&`c9tY_
zqt6Ae-4|7~)IZWQ9=YbS7Ce;x2&sg&ADdkq=mPz@VfsNzCCXOCFhgb1UPCqyBzMfa
zRVFBD&V5<y(K~uoE9u9lIA9ceZA*(r-*+`*Y?rFJdTlr$HDCSOiKg6DRMRDm(|nC5
zbagYDy=~61P(UMEL2V%_0<GzP(AB%V*h>YQ?tHCLQVlc-G8O!-`{k8!v9zG0I0rpM
z$}5RGhruZGX5hV)Ai+l4@r#dKl(k!hY;0{6DxZVuE~yj_K<M0bj`DT7wfyfpmgU~m
z5Qyr}d!V>Yd!>@)7B!mDZ?;=3w##4h+uLC&D*vNP;ega$#AW_^smgLwWzyh%KFQHN
zFFTHq?)ttJ@UxRwgO?OF-StI(ghNiHWfn91mkY6a5JMy+_~128zThfb3FNJt5!z5i
zSahgp)Ih3U5yan{q(vECNoHtQ=xnewss^zw+43@4KsZEniy(q@_}5DKWP5;9l$wZ`
zi2*?B;!nzkGDNi9Z}{7l5(aPkWwDNOE8YS5t1B)njZ&)918fg?#W##Q3-tw#uPVtv
z_~RcA<DzWiO@$9z?1NFu_NG3Q_%IGvvcJiN9YSuWN&18tt#DZTbQEm!-0bGFUl-4%
zYC0sEvP}|)ytWEw{BZ1J26>Ug=Z4f_$gpYEsKpF~%w20vc_OB73TfLldx$bGsP}~U
zn$rr*2fEuh1}9t9)8POf*{$XdiRbduH|3XX>=8G_WWw}0HNfxsXMtnMYJhKdV;bAA
zAB6a&(W!!seY+8gol}}u?xKu8_P*#0x&E!dYHmP9%|T6VTGD2^mN9<pFzV@{Lb>US
zhUuHJUBk~RE_7;-*?C>+Pkqsrh#E`eQ7Ht`H{9etwI(Rej2E9fiES@KZD#+>w$h_2
zTW%gO$X6Dora7`L%)16_*&8KC;!hzTH)hv6-OS(5=o$?^Y%?_Uv;Ui8Uokj8nWmIU
z3x|jw<1up{Z{K+|FWHKCEQlW|ynAlzn4-twA7Qc+9nU{SO4gFZMqM^s5VI7Q!3wZb
zLAU3pnEIqXh}nSZ0K5Px$sD%su@Uz#*(N$2N;(j;nb)H^3sSch4(b+lW)|EoDR?q@
z;;KEI7oQJ<#!eKRlcSu|pEwgN$8tD%jR<bnD&5{&yed~&lAdu1wFo3wc!HJ!N*b2g
zaD%>@A?_sW3|YY-S?6?$>yP~j&?WaV=op@`+zVYsZr<|nTJjA-<&+zP39D|&tNfK~
zchfSi_46BTu>ShGmU_##&th0H#0yOH;=KX&K-nc1ymA*`CnW>;!XScUuK&?a@atQ>
zOMWaE{8fchpk^gxs!|p|{X%6(@SV)Y+Toh%9HF{KMwq+_Ci-P&EY+Vm!1jt8W(W^7
zMp=8@4?}#oP^km5GP{4rPAvjOIK5{qR{Dp8{>I0RI<6BB*D*cb?lzi?SYM+hmiKrc
zLxNA`rkjV?o7}6Y+cJ<#;=YFdzO4e=InL!dR{$DZ?z2TN)+)C*3<5-iLwbe+l>P=J
zniFn*?<C)XTn1NfL^QfB^t<N|EvLA&k^qK@uQ&g;(>Xp{lNDc<ePyg`-rBL_8Zmg~
zE8iVe1^G`eN2a#H)xkJ&a24yW^7|{Z(g6lF@BYgS==9qgdBCguCeM@h=q;Z3>`}|j
z+4lhtG^p8E>kh8g%`KV9YwfoB__G~eHKy)S8r(GAt^Nb-rQP5f9;?!<y1FC2U6M_T
zP_<&Jj&|&cz6Og{q=X5=!g<$kT)zU0|6vVT4wF%kyq6E;#Da>&!(~mlW3wYrP9W~4
zFquKn&&KPv=2Nc(^qb`ljL0l6o`;Jr3%FkeGE`reM(ZW~01zc&aMgjr3c&eUmbxnE
zhJOGI5VO4jnfMY-GFe159&P9X-y|H=JUVzQ7kNSA({a_ogGa3ouZ0>RKXxSqR%d^<
z21Nw@==@Lc@V6tE@sI03i3?z-(8tgA5KluH?nNHdeB>$)%Zofbp<Vk#{bbxYd&pwK
z9g!L?mCD`c8OC!P8?U<+^5gU0e<$5m1aj4N#O(-;@d%yqp0!GmjOFW$_aiyq1VORK
z);}WboNg3;`g*tYgVp29mM$^@xdPDY+vG>`V^EaC1)`IDLd&wm`@~o<xBi&e%@xa=
zl7ySR<17iER%+<uG#RfsUe=?NGxf8E&;evh-(%=j#DQKwyL+HNJ}*Aai!)6^plPuQ
zdMoU(0Fw1-#Jy9uhSS{7ryrZ*KH0d7DSRi|o^62=WaHGroMb|+h3cH*nqc)M|8?DZ
zA4d%PwSI*y@b=BV=s>p%JRbku9DIK>`m@3?S7YYo>j4*kUwwR2miAbp?B!W*{+~*d
zUrAmpbK_rU%SE8UzgAO!ZCu$Jw!K}$nvmlvcaG<^q<!1H=j5?3TG<Q8|0{n1bl+2m
zPSP17m@|_tAa^M?iP{6T3P&542r~j8DU=*%WfYhEL~g7hf0?Z}NhnyZdO=b(j)3P{
zZ;NOXyX!h)^mAVpKeRVozOP%QY0UC*LWKrQ<v@a9$KQU^!&V+;&b{X56aynl55@1-
zbF_&{OX%qv7@3%wTUy&*a&U5S^SJEg<9Fq<U%<7nh`@l@EJjb|Of#E*f;aCCq~Psx
z$}6)f(-ZDwq|`|?C8xX9JRbUwGV*+Ua%$$~{HsNWkf^9-b0eCkv9gS+o%6Hl{w?bZ
zj+*s03-{3M3G=)2U8&X=C`qTE-bF;U6O1yr6#ZZK=K7f2yS>&oaymbKhegDUIENj#
zNI{Bn^6ZD=lE5YJ-S1vZw-cL6)VlO2zVNHRZJkN3xI=#drZY!4TBT64Fv#J7Q-}Xz
zf8kZ9R%@g4)^ky?OV^e8Mu&l-^Go5UwXs62;%goQ(O>o!`3{Z-hHe94DD9F^uaVTN
z`U2@CVLs#cgiMOG&-~xIb4wKTX#tb`!%*rEH35mrX(=X3e3Jm&A{dz~8F7dWSvu5v
z;PZZINbBLdTwXln0_$+%%W#xu`_lSW@|RF%PiM(t0vJI<vXm&GJ@<)lRxwYDfJFDR
zQp0BDL83rLf7IdKZu5I5#3Tvq7l|#sS{*3j%kk5E!~Z<(Vp`zzcy&s*_<omlE+|9e
z-ctmoEmZ35H68+lD^Z%1%ysS^ses~Rtc$3b-d3a64V`Pw5sFwKgrtPURdH#T?2?Wj
zNzSt(EKRTLh}Z<zPT&Xyxno#Vuj05kz0FqgtL}gkC_iTho4LphL$5pRo>Zc#M3?AS
zZg@J}tBTnsfYK$|1c6%08UhxEwZ2S8h%iR;=qC$H#cY8)TqRk=Ij2k$d%%uAuLEMa
z^@SkZ_w9X6OhoLB@Urw-wU<8e>KN!?MH`f9cUd0Q+ugN$%9ylhmaa}J720+AlIFxo
zIkf=8u(P)88CaEB>%D?nE1g_R$JMBxua92_RS6KXg_uLp%0U-w3Yj7H4ND}o56!CG
zAZE#8geHCahcwXn*8JT_9jzZ+EH9!S5$U!Iht==TIXq1Z84##mi-$I{&11;G8tDBO
zc-%8#ccMy;`LgVCmk-zcjkL&@AwM>+!&V{zx0_0yzPW9wOMENT8v;(>=SVN1ph_5=
z=}RRjeekk$V%S8v7_;G(PuPD>uD8@x6M<3h?Y$tfg4MAr*doDNXHwT+Tc+~jqqUEZ
z-2#`aML5JkP!49m=ND!yHm{Po>;jr;vrtGJ35sYm*fQ(2*3vo}k{-$(7gmh{0$JW%
z1HMA&#*_9~6hnmX4E@mEx{Q>fox!KGRyvPI*rOvq^?#nd`MEc%gpe%lfh1+$ff3}w
zeVJo~?#X#J&!^Q$2oAz2B9HTdn9I(T(U+{z@n6O+ytkcTc8#GxO(dHBK&MihtHKX2
z_>n$In_sWJv6;;5>dGmD&HgAJBTq~7O9N1zm(0-WZpm`b{Wg2e#i|@ft9_c4yJ#5}
zU^aaCFIo2#It+wVkSo^2b)J=8iE&aATu~^|XUf9`&$F%28xndrDyj|Pb6A9Ta{vF>
z+#HerXLG}vG4beIGSlYHb#7#KNp3HMH9iTdPIfYubVrzd!wNE!fRh-my}Msw5N&|*
zg&6G8^caYzH5&?%2ED&a)j*0VLe1kj82#`gEt|(~n#w*Cc{~5BbCb;Uh)6ltxdEnl
zro(brC67UQOj`+JUn-I5F%uWZkigameX(r3@kP~+i*@PD0t@UFHyX%LdIAq8H0pVZ
zMaSJ*Z7}Z@=Miy8c#ePXTbNBR_Sdc2TP)N$V2%OMlw+arGy}vJ(QAMc6@tP_D(FMc
zK!^O*+2`O?i0d2(Oi2Usz-LF&08^fpmJHJ}q>D9}8IA<6WZ8O7DS@+brbqdeNBoH^
z&N;d?hDa=wjVJL9p3ohl1Oh7DEKo}RnHaBBbANZFNjDu(Il-Cjq}57BR&&YS1`T_e
z;P0iEsY_lY=EA*$_Zb9#S+k3IRa;F|^17;Yifw#h3ZVL2Jol)GqX|&4<dSn9AgJ<F
zq@BB+FOCz#!hSS?WfV&^5b9S5vQ*X);vdd#cd-@6pGE_WS}fDCuk!W^nlvjtWId2{
zE~vy}*WS0;k2n@wP^1SQe_Q1nV(g5Vs?#X}wK3XMapCg_B3}f^po?a4UbSo6D8PA+
zlb40isrUbJ9N1naOGjH3brRUicWM#C&$15S!qhiNdjdKZiD5b%*aUoQ?90W_IzyRS
z1XOfGt4gZAvqTRqUV&jjEXJfd17zJ*lKum(994R`UXQJlcP1<k@1cZ6n(1xO!f!08
z!HYV4sxYjgxa4cr5m_94)#92aBpT3B33{25BY2yW3gs)AwJ!bnY92*`G{}NL)l+N-
zu0Q%ss2&B)ijF_t$ppaFf%NKB5U0ZOe{AdWw>z|moon(ersqA0-x5{q+9CA00=O+J
z;-nWarXwY5IED6Z%VbNndsqb&BhBZ-Bk|zQgR;ekZP5*+lM%2yzU{oUp2$+Ul<G>A
z+hSby3L>ZRa>*v$7?E@-y7qcN;MT(X0t@Ni%r)bB%qKa4eiFh8Cf8}w=gtr83Y3#0
z|5j)vOS}``pzPI&0p~Z|v85HB4~7-ldVHiSYT{EgqWj=5=dY#fZ7|L@FW`q#qQvCE
z-nLn$E!gOsY1+5sVYXI_MRnfKCkin7a1RNn<V38RGqK3TF=eMHHw9<`I6uCO)2jLk
zZ`Jnk`0T2tk`1B{HBaIwAOfGOs`CA$@C!)-pfYo0$fJowGvN9}o8?L6Cd2&pL%H>#
zn;#e|H2t-MYMverojhq+^pxe(Uj-9-x@!Ic0`Fg>pZ<S*y;WFL?;p22$qX~ZP(#Bo
zbcb}#(9O^x;Lsq_p@=bbcS<=lNJxu?LrSTHD4^m{3J3}a2<lH>-v8bw`(&?covgEU
z@~mq;-{<qWZ}GwG_^eD^Z@!B-F``D8X$#BaJYxutLuzLRpG23dNm8SkDkKA!zi-uB
zeTo>&nE8I^Ja*nN_1r!C>qj#eQ}gHRS-s=5uBq2ApbKh<sAP}VAn}&cP6Ma7aP8pd
zxtH)?Dlg4+WZmA4Vqc{`Q~o_Gxc*Iq@B#Dll5x9IAv~$58an^_7o}}4Es14Noofb=
zVEfDVu7>9$3*5r}H*HZ-=ksvE+$Zj7geWaorWyg4U6?1oD^^O*z|AvN(0*UTR!Fa2
z{Sp2CMQ~#3pT~Zo$+Np(%pi~0<9?)8^~`bQp3#gm?CO{9Z@x$kEnolCTH!nN^#%Nw
z!1#ZgwO{gRwLe&amz2MI*0g+4;pd|n{x={IY|V<jYX!tso{q9-&fTLN39>SI3`M;K
zji`}W>G;(g9-io)vkjckl=fd2y&j2E%i>{?7v1B1-KSZ_|KB!y^>49W!6|o@?|kz#
zDCkVZf3>8$Z=V4|%u#o@&l%#@TA$uYI@p!^)D`px<a;2JeUMEwvSj!#QS5hL^BT=H
z&3;C}8-v~(FDKSA{?#RcEglXcJpM~1|L2lpB$o+3X?=OaClP~;gIx1^mjJaGftu0T
zI_ZL>zi%9E{v*wtCWgXuKxe_<MqDsp6fxTc$G_nLl_CK}a8QLHfSeJSfjs+e>{@%U
zHy;3e4VFPe1w0A{pvX`sD#Vlu(Z#g^1j-c1AY*Ee>I4W)L^x6$5U*DGD2b4oza19+
zWCEhO<D9u&4mn?IKerAcTY#N#YDAdk?;Ja-c?e{NIfudpe*iTlf;4AYt{{$gsOfWh
z;C6pH9x8H}5bQ#PDo}x2sn9JF-TUu!^P%(~LLaJ5J@TYy*z900*k^~zBN{spZ#r0X
zn3fe^oh!`z$Y*>llsT6ug^;AIDuP*n?dzabR4>ZRhM+0e3UI<y@sX;;P=@-XbUW&f
zFRGW-glA%wCuS3pA4)4trtO_(^9bWPM!l5jWUkJGL&GtD2H{z_vv<NV>0do&$noyP
z!3JEYB?ah28h?T^7i+BZm;b;3fNGP#+5iY;7*-1?Yp;WF;kY1;khjgW9OUz0Cj~Xc
zo4-BN0s`S)LiyMLvnVGRWGzRSqaJEE1*hl(GP-E9nZHG*aYoSn(4SokpVpTP4>2``
zs8jjdHy|7yg3Y6XcpD+k9H8yjbwaq5m4YyTJ#E@okw?wqC1Gb}Oh?}VTpv>On+_K|
zlVprSub*@Q!n?44jNaOXhN5wIEdei7ufcEFkPqv53z%u?SmYaV0@eF;?cq`Feqvwe
z#8!9ZX%8=o#k^(ptbYOP?<mY1WPYnvR63DSXw|QYayX7-%3M|afKgf{J#M&AjOP2)
zQFC|zE$=)~h&ZJ*ic&X(j;FfkS~n-dOECG8dbRDPAKzG-C=NGS&e^JL)oTlwWU5)7
z`Lk$Ot6aigoc5~9uc|CuQe5iRn($C`jKk($F#SDFsd()d$=Yc+7H6PNY#h+^B7$#+
z)36c*MB-pQxK9yy&d3C+E!*F2c0Nym-3ftchJ=gQIjbErwg<0uq=$bi!>7oW3gRKv
zh)UJyFKz254YAoN>U$^}`q)VuMj8ek8HOnuMZM*|8fkR<$S6+HIEht=RZuVa$T&~Y
zq{z-NHqxZ>$fR1))UVZ~HtrHiT8ZePXgciMQ3wweWOGeWUl>yMtp;GF#6J>D7a}b_
zbvxrICpSgpV}a3fGX$4vjRElMalJqrfi>@Ht#&;eDDfP>lYpzE!?Owzx%7=30QU-g
z2}loIgCOL$9-tm)(@bOY=WF?5kF8b|rhM}YE8~uToMq#rkuRQ_2)BQwXB$0hoLKP9
z(;k`cZD^TZGri$zm&TrMU|~qIunR#%A75Y>MSHwu*##U0rpzc1%U4vVDQ{#J4m8Fj
zt8?tq8D*Lg$*#|~X56bhCe35F;52fL_3shf8{xM1mX5<9(ml#vM7TZ^=cHW7`X%wK
zD}#1R$;<`waazPZ&)zW|=b&$(^n;cd0rjXPK~-fg^PYIT7q{C})GCt=IBNEhs`e)o
zd>XQM`8VqM+Q;iO%k86qi{iUn-xSyBBrA5@xtDpLmnqu)^cviy8DNuqCHTbCzTQIw
zfkKF1y=urrGX`HFA@rklN|PNcXs*^7;-kK~1Yg~lIqtdjMOt>I@g19IZ**Xufu~XL
ze!fxI^m^>BFY|W#yVFKLx$dYtHXlD8n|3fp7JfA-Z3JT)uVX?&;zjvWzs6IPBezaW
z%ZxOuL~k~{G>gcL?P&}jD~_Cg2OoQR^^NFl^J)KI;GkmxT5alGa~l$uaVY;q+ED78
zRZQj&+0R67Gj(HZ!-(7Mdc>{FK%eW;KSlzdE3M|HrcX98yQk*89ZwD&&(ajo!r`*F
z#<Lj=b4Wg^`)t>Ro0-M7(`3?|{8C~P5a*Q+WQ3r}b<v45De-iwaRG)@fXOP<HKBX;
zK7FL)`n<mr&?HyLv3%JY;|nWId~`Q`yEH%GUfK4&nt-x~kuqb<(8l}7i|EABzWCW8
zFhsn>U1hF@oc1IuTD(7AcsM#repOqdj_=z8-yMenfCCS)9yMCuH?^#++AOqVUQcv|
zbv#Hm9nG9v)0L<x-tj0ybk!iDz!F31{dYa>Te2UtJd=o8l4$KSvDYjhZ%Fj-q_^LI
zbVhbQgdjQ~-%^n+I3qHWmeyJ8&8-<ko!#}+w9~davW}E$)<UVgoYNa-hW;jj)9`P)
z!n^&RCA5Vtx>=b0vCymTf$-_Tb1zeRlxu0uCdb%sj%=WFpK03$C=c!*qO*bA*_om}
zZ1Fp7d4X1q17-f{n*S-0c}`>)CbSNx@7&a<3$P;>AQhp1kB^@9XH-%t%$d>;qXB%=
zPq3}6W4>9p&q~f~vR3^?en@4*_OkWH<|(bQJJN>fqE}8!(IuJBG*Kbtl-!WE*IglH
z<=5VfD9~`~4`e^4qigdBiCN%ywE)6{3pw8cCXYwFa((vRM$0esXD;;Y&w{EiZyriZ
zX8FkN6=XSucW+;gJ0mld89s^voGxYkS=>*y{8-$!<Yc*0wUJbIw$lE!tUFtz_tomV
z?3-#Xujwq0`VVXQE!qFHo&%+G*VF@FD_Ro&S}4PA0>ZPyxBB4@GAm#9xV?hE(A9lO
zC0`D?84_M5_F0zu^IRTu40v0)xOUcQQl`53$%D}~abFA#5kTWfq=^PXJ9fZdzSeEt
zIBb=3+GNPyl8OHDJ#qbAZG@RHvn&-L+eFUZ=i_Q;$}t^qmgf!0|6r*r!N__e1sIz1
z^B-|1dTetgMs76WSC{E1cBvugO@|U=Cr|*=pnmnGYL0$LlgS%S{?k$4g$EXYdR~Co
zeTgm3+%&#K0P1D$lcLt!u-|vGfA<N|=5qm;(R~xhZ!5p^*yLCdOYO*+Y=N7A<Z{~I
z>Q5_vzrl9&iSM7oxzF2|t<MLLk2o*O4dxkL+gG(W|K0EB`oS7O$qhu%KJ|#Plizt1
zK<J@e{-mppdRy+Ffa*Qac=1p`sOL%V<7GN~vNabi)B!N(AB)PEMa2P`>e;e64uCvN
z%)|D~ET(J^y96wk(F?is^F0?N9uCXSp~3wjs0F`Q7`j{bgCY<6!h^>_>KtEZ)`@?k
zt8zImf@Z4noJCCWwPfB-`8()m+>c@lV<3FeWFC7e&!7eG(k$r$1MZ3md~sv@h&jA5
z5BOkqnxSh_<1%CJl0D#%U)uh~#IxxoAp76)Uf|6Tr+oOhi}b@p>HoUIBM%MUy%X)F
z7jwjkr4S{erq5s5K9kf@5HdPs94Za3>v|`}B6*2rrr@a{j8`h;<){U-{!EwOII}c&
zxHLCN?PLB+c|zLf16jR$Pd$Q}un_?Z4llXpClcy8kpXFH+_c728I|t)c((voTrDg9
z-JfTdz;n|{w-@mOLUXrTijtM@MHml6c=Zxh^afQQx4PN`wSf3#kMiY5IJLWeOT*Q|
z<&`SKELV*NXY44%N{V_|M1%j}$AD#c*QJ%T+bi2{teO8U8dU4O!0V)tbcW+T!ziBx
zj+zeQfv!}!#x>#RjVqi3tFKm9<~2Xl^6@AX3QSh79p9ibuJb$L$T}c(0@<DS&W6dq
z>5$b$58OGcJ1egf>!-Zx%@k}8a2-%#FK*tn5vKh$7P$7`<*&E@eT}QCyfM(5FtC;N
zZ|lH&Yk_C`-oSR{ihLp8()~L-%>z3J*d5!Io!&d&9uG)$xU=>YD(Y*qK6xuP`OnhK
z3onD+U2x|aKjLU*<yovUQ(8B(_V_-ry7%<Xj{?3|2bF2+6m?38+jFqym@C`Kkr?wi
z+y2{q`I>_StsmZeX!8Y5%oPB;&a~a?p|pgm=6%SRyCs7Xe!0pFQS`(5h1|fMayv43
z1_K>=yT)*rIlGS0saMQ+1mrxJL>vDLUwxA1b9klt@Zn%m#C<DAyuBF?`mFX$Pv<l(
z*kXC(+~T9kMZr&YVBr2F7^v%BXD#5yIs9uC|5p_FS9JBNX|LCdxW9LeJ{aNctpN|L
zR^4wmuALnJKDZ(~z-JiAf0>mH?p^@wG}hGQ7~8}@mf~=)8m=Zv5g5&Cq6neao-?MN
zw9xCM!N2y#hH~^7pL7Ol#&-LMfUopK1PN$Lk+tAjK)$_tH?^B_N%ZLCSDaV}kv*j#
zyot3qgHy7+enX<1c6;^nGx=Hi$Y+4$zGSw{BDK@3hG1R>t!?SF4wN+IX0vb$lRFJ}
zTjZ(2vN~Gzc2E&>CAvAYPP=DZ!S;S_W6Q(tM^9f2znpqA|Ng`0^{?N4{QULj989-m
zMsuEZ5x>G}s!|3s0$O#Sg&trH6o}y%)4G1|p>%d8gUAVL*hU76p?+qfq4zKn!Y9;6
zP>Z|p*D2c9i1%TVjL^)PWLy||#F){5fmku_n`9!$Yr~4)W@=<d30e`jh*4>USh%tN
zt=XX=S#tx^9w!jC?O~hY69(cobHn6AkC!VZ55m$6L~eS79c_VxnDT_ozR*7{Nd;GV
zir)BHKi_F3NJq$YH5b}{Dbuw(9v`iCsq&tZ#z)OVN4L)xCa+E+d1yTyX6?MYdp0lW
zRO)?JCcUPsCvmM#F81S7>SzjD*4R8WyT*9EEZ3Ue$?`ZIfkeBPUeG=?&knzwzp1r)
zct`8c$@kCS1pVa%bg@L8er&kzdOVBd8po^)(;xBK&vy;{_d#$5DIyRltau3+!RT*u
zfvdlj!eS<zyASY|#^4}egpEfLv^r5B9w~mI(1mn&#_1wNBU4E<sGXPh?*c?h7XXsi
zhyuxjOmQHjboj^+XD}P^JwS9snFQ)uL}T)p9ZW_Li}gc7Orb%Gt0@9I>=!~nZxdp)
z2FR$Wj0U8Ni$^M7NW)khO1<K)r5{p3Q2qCylFX*@nhZI#d_4TAA_;vjTw<J@pnAs;
z0+;btBh_T8OJLJrrT#C=Z&e9W<@MI=#PTKkaSabr;#J7^?D`&`k0P<8TwU51(t|Aa
z<$N<@sY@1-Bx4Dl{mLNNDXl*;KA6V+BIim8Wa7u2y4~0h`_T62b3Au@|9bxA_Qzkx
zjlj2$?Khd=ISl)54)ABhJwU_cH~Z%=RUe}uhEjeHndkyeK_w}6IDMFOf2XXHn9pM#
zS_7i;0l)r6OY-oMy5dD4<g_1^N9(J$1}h$*6j{5AaS)yDIx)ITg8x1^Oop^g&kf27
zO)J1<yy&_HPSzxQ#$HH2Qt(pxDH%Ejp7~P_lcwfT$+5U=s}cS)<-ixFe_HmXz!$mM
zhWKaHC@DJr)zD{#dV9)B4K_yJ@AP@%KYbc;am7s;RNOw7&4Z;L$3amO&qiqVYxa)A
zN3!5*SX;-SP>(mA`#@8o4pmoRxr+PAR&9a%lkLXZs+&67?Jc=U985-uaEsd!z0KXS
z)u3ppO+U`{DE4WZ)y}&_I`)l<ggIuR4kduEz?7v1(-U_55W*l*?h`XaHZJ}MoJ$5x
zN-!>>j!2herZ{<Bt+GnMB+kGOojL*k(EZ%_=S9tT9_swa%uJOyZK=F7bO4(&`Qp0}
zxPo@2=AI|v(Qq+*q0K4|%ld<HJj4BayGZuuG%0(;Zu054vhKc8NEojw|4OPIiM~Ss
zZx{ETPo}@(zJH37o@yNMF$q^(aq-7EnT+s+ovSYh$fudQVp+<!Mnne^qS{y>rgsu5
zhMnkct3Jk>NI7IO2B*mD=T8B>M5`C`q+;lJNHF(M8qVst48e(-#Q09oZ(xq3W6Rq=
z72YN6WU9XGhl_wBN`o!3)l4+=bM0Tl7dkX^4B<z{=*#`1!vve?u@B%+B9D84*E&r2
z%xAeiI4LpJ5uu7<<Lt8-<a8_fIv1{9f}2@du_n#4^sjd_Zv1&cYZydD@&mJZGffA;
zCb!qr0BISW?c5MvG}2|k5Wz7i>(OZBBNYFC!?Yoj1R#M&RBbBYbwtgj$`;AgCk-4l
zEQJI|x>8XsJzt5KxrnMl!YmA2VkCH;JDY-M{(w+dm`Q1~MgtD{xc2W^@plqESwiu5
z?kv@fc!XSYKjdDls{>BMeeO-Md=}{QNz76>B*BE^LE4D%OR7Cp*gZqq!)B|c$K?B$
zQ@1T(l=v0_Iku6=N#q(CAQ(Udv3d?po^DUF7gAB5H6)PvPweU^YRIxq;#QoLA-@Zl
zOxI;Ec(`d_B6<NX4Q-a(>VvXU#n|k6cfh6U7QAc6jW_Aaavb(A5x$3K?eIu>AOjbN
zvC0>7Wp=K2*rzA*Ytgx%hESZ=FSSyYWTdSFj&WoleQ6<wD9@k>XIagJVTZ8j>9>>A
zLQqphT_Qins(`vn;twI4^Ux22bFhJzsY@>6e&uXpT%muQt{6u%7JVA_NsDt4EXCbC
z;@bSrFz{LLX*E>x@^|#xUwwFw_wePtT|W<j_^(}KCD9rl1aH4jYs=wx2WA2<H;K5{
zN~M&gj(bFA$+=lI*Fkwu)?ma((oCXqC&FDWfqRz<v-Rpc;-o<K{Yhx5m|jlqLng&r
z@^?nru98&sgJH^Jt6kT~{AQt1)tvx;wuwi0+cd0@$cuMt`pGVr?{z6WQGhsQ)LzP>
z34r#c@MT!^XMKFY6;H>`2=g2#IMAg2r?GY#t*RPL#mPM8w9~z}Il5>PcM{*%wVB8P
ztm5S6rgw%Y_{I20o+ry@&2x`U*Fd<0q90~>&}~Q_nLV;PCGj#;_vzpmUq9M2y>n2e
zC*#+g<yw}99u6Imyu~(DwxZamv9~>MqAC#7?f@3)=vVB$AWr)ekQJmvn2<4;b!eE@
z=J{1*4;Nn8`T>m-#RaP=31-9KU-Il<pu2^vfEJxxE|hqdLMlXH%NgWI1k#w}plvm!
zna5s%4#V+c0>0Co1r{l+{S**#`~>llFaujm6_s4?y1+#T*Yua^c2*rTJFOW;@=!k=
zSc-?ia3Qf)fY0FH%I!bt1N9C+e0V_fsNISZctuuVarnDao9IfY%tbK*eFF!x19(*r
zP?i_pDWBhKt%(CmVepowxuYIg2TmO^0R5$`DG!;S{2JWLa}6g2994l=p56S+NJ;3-
z`xK{H6a?kGK}v9%ffhDte)yn#+J<Tmwcg@hGxIY?S_0yr1QJvjg2=nc7m-6%DOu3h
z2kL4c=HGYK#qQ@Kp4<*_OFo#7=hs|ChTI?}mbsxzvy2G2&7fzA%FomxBHfUfw7QS(
z6=6U)D-&<d1xaG_n<rE8-lI4^0F<9ff#Gn4%mp^eeAYl-^Vp1WzdOiRN<(YLS0G?x
z=!1Pvl9wq?_MOZfp=_fon<Y5e%&LS_vd%wK!mZyQ6!>y;UOw-=cb8)-;>u6nG~=%-
z=W9Go=~c*87)Q7z2@s00JCP;-#~*(e1na=$mCNe9-b3x9S#^Pn{QuPSciP;)JzwE(
z{rqv)ri^H9r}^pB!@#bGYkijgMEpuIVda-I+?v2lzrbh-r`n^aZm-<rq;P+pUtzRf
zJk7)XcxIs>Wl80Ar(dShuMruT@oSG6*yRA}JYc%tLm;?-=q|pYd6;&i7<P@hx?@zO
z7tHh>i24murd+r-1(Zij)TLnabzpQ~0-CQH)ez6xHPm;jh!X+g%%795uwo%pizPY$
z0U(~>IA*jh3r+P6F#tV18|w-Pe9c4sFO`o(Wn#r@kXHG`D43dIfgPgIfa#i$4c7Aj
zLzijGO3iy+bdQDk9cM1!nmtyoGetxOPaEkOOSd4_<th1OO>$`MrYlyhdIauIf?mTR
z>~aaT4r*E?#r;I~t~H4VM$#*uGT&=rQC?CCUYFF@FX?(EcG`X;V%4-LuuL574F?`B
zJPpB7B$`4iWh!;EHrCZkIoRt_p_gKpm&TKI4a+sDp>@qUFRkTutu-(0=rYY6FP-1(
zIv{TxVgpwL(_!AgW4(1HHgpw)wB0>X0D!<51i%OY0Hh=VhX9j{!_cIQ2TneIZhirT
zm;$eWAd|E*i>w-}ygKK_ahtFxw+fC|6_3?45Y{mk#u-Z*n9CSj$rur2jR}{`ZB+=4
zssu+(I~Sa(CC<?e=j5h;*~8e~$CT)2?ioPv4YctOvJVV(4i0w>i@FkV!y_ujC+2oQ
z?A@!k<AO<vp$W+m$!XE488I2zx3Y8Z<mSg06b%jz&d<+pZEYPK9Gsn<UA*4^|3!07
z`CnBK2Fqn0QB}WB__~2=b9uOUE$qP_L%~$Tb@Sx-qP4EyOS7$0EU04(olEy!J!$k`
zzWL)2b77wkO8oy;1&fMHt|};AR0S1v>3D@OXs9FXf5pB$wCt_Y%!i$sO%GbTd>*y5
zJuwg$DCU)Ic=7D9QI7#uDt#(<<~EE=i2H8dpaH9p=yfATA^3}nrr_7D?VWGCd*5Bk
zs;a;bC3vyY;z;KUDwB{<l@#WH>UJ*<DscSMXJ$fI7x3P{MSt4qaf%U2A)?sWt0dK3
z^Buku3&~(z7qVbwUK>qi5OX22*x*Jp6zL;&K2CHuzB#{-yFFI$k`~x104Gpe<CzE<
zE_iz7W3{5!wrN9RXbndt(@T+#QEA5bO;S2ZqI>RVNym5!yGre3rP-tQPfu?|F$kM_
z4Q2FMGH5!f*R`Mq6JMZYh}5JMFieU;3=kt?QO1zXdIJz=3WOCaA@LoHi$EAnCPs$Y
z`4}~sd!N;x=zQoc2<O`cf6ZwK5^}s|rhKww^8M2Tn8vP!cNBFri~o^t+h2IXG}ysV
z-cVg`OB7b@AawXAa_d#4=-qQ0H#5h@;uj1~9sT2>(}q+XwJII;jn#%~LwBE==0;Ax
zs@sn!SM*Q`6>MLYRPJ$%vV~QmB%9@QSs8n9=jNU<Nn&fMLdE`Tsj*C(6eKU{eLhmQ
z4(H?ud&aSD!_o>UL1H-yfUdZKP!JOqFp-Pmenuj}<oZH4AX1b~k3u8$*=dkCWi%e5
zPbLikTPT}@?8=j>BM3d_Sv*3ImDaJSAP%rWJ3ir@=w+O@uUmlTu(qd_W(De!?H5fT
zRbZjV-UUWjvgrL+MQVZ(#>P*QvSUxgMsn~7&h07{=2cv=tZMTo7RUT2!c25zK;1q4
zjsDsOaHc3kp04+|geAdr30RckJjqxetni)=tb9=yyqwGs*HmL(eABx#R2^{@c{_Ny
zxl!*1tw^pH0w2UQqreqdSpTo=+zckcO5>QZA>1J8+97lL|8xik#OUN76tbB2U@A76
ziGz}ustd9$oyzY1aAuv@8^FywsAXDTnb09bGt(^Fn1%oJ0g8*VMggHa2t)pir^kcf
zy;ol;lJ+9bAUyC<E;G0TC*mjWkoy1D2Q31~xkI!N0rKFaE=lwA7;nj6DuSD?lQLac
zL(!d8>yk6-*2Sn_e76*<0rDhzLeUjckvDV+todi?m2@NdC(6I&mGWm!Tep#yaXC`@
z6PSt$g}09%(_ON($@q8xl#nG*2Be#yNi+J~Sw|?rRDcVZ)Sw7hOK-XL%>hiJf{4{Q
z?&@M%q6g=o8Ef{H12(rHi%XaE5}se|C})FIR@BPBYt-Ln>`+bsEB+grl9zmS1h&+Z
z{`o_HF|&I`<Nd#Gc`P}Kg1{7FKyrm+cL3Y5vc~UnE_QOJ_`(vR+85`uQ5+3m0?nk|
zp^%8*CBe<fAod%$v{$u&@c5+dckw*6a01*u#sC^3ng~rYgENo-Oz6l#Y-^LREWu1i
zBD4ivnw)@7Sh;n$Ak8&k2<OsA&}D%hURW}rj9e7j3_@4m{w`Qo&b=QIS~zr?W+Uaq
zzo+li#Qss-)x>5M>7;s3#4{AG#zRl{$-Z9BkTIE$m5oh9)ld#(ow9UDGB++B;^;f~
z!TS%sLMl+k7!i5t>w`ug(uu6v?<SK{IBPkjRi)x-XPp#wjT{P7>(o6%Geo=@SgPlg
znfV6oW1eL-l@=IW59<V{>JM>Pkw$=p<SPQkET6>;#<gD0&}$C+$ZVXZ<oj$I2@wZj
z=^HO${X~8mZ?Zzk#I&z^H!s6(;yd>Zny?8QxWr7whs>x~K=1DSYEIA_o-<?ChSiG!
z?iZM<0w<$ewXp#PSWQEHfN|-De`W>II?Ryo_;i_yZHdq>FQ`lM?Ieg2^Ry=XA)eFK
z;J+2+_{yZwexa^1KieiI{h3#{6bg-bUzz3)nP{knvEFx98%%chGI?ljcmMpSVmy+n
zWFv|K1BHz*v-wISMh%Qr{t}8eY9p40E3DTq35W@^_*mO}vL;T?H%0k7TZz$i##$IO
zsxLVM$TwNiUU0#lhI&D(WKzw*<sOoDrhH~1+mJCa&Llg+D{t+e?KfVvxc_>R>>nPV
zYcN^d(#JL#1d6<@T=<41{i<DSS$5jOk(pA)>FZJk3Rt!@VXi`M(Q<QEcED-Sw%Vn>
zxcxP&Syok*I|=kLCesFCEUFyKkyI~{UeD2s4s`plgkkHGcn)QDVSUP@3T2n^Ke)Qo
z6Cgb0*;nG_j4z}be8i%L?Iqz^G&LG-0>&qy3YzWoF-B8keG^@Ra_3D!MTsBouKD)1
z^=5e}2in_om56llQm$Kx4wnyR2`{${McZQB(62f$0TwOc--_8<dVh6EIFS;~l!4Iw
z;~|dM9m)5%-&^nuLLe4+S`OSAGpthrE7O@ax(Q;Kn1MU;4h0>Q_b#;IjFcG4e9~q+
zN$LWl626oKCsZzNKSe=arks_#hpkI~Hs|#`sbxS>)rBFloR;OS*?rfEmjjrWx&%_8
zvjz;)ayl|C|1%wiQDkSdc_p+$kL(F>vD-U^Hd~Y4E6M>&J29?7ecPXY&su18liu9<
zhmjBd>w~2@k7q^d<}Y1aLiO~MgW8%(2CuDPQ)4C<w_ak-x0ft9K3tzS_f;&#cf_NK
zJrF`nd^OX5BprUIw*IQ0m0g}=K(ZD5bh+3^#eCP3`_E$3_P%JQoLHCvE5e>>usaLm
zC`LM=EvO1(kI+QWU$~#S4R+v*+v|eH8VHr+F(#2pkTO#mIV489@RRZ7VLo6mzt}O$
z+MbL>cj5d|w6blcQV>@8cx6OFmB~ERqE_zx$F(ox<c`_+Q2Re{2DgkaB9@8ijMX1L
z`z8;4vRyG5?l$|k@k{tW3$I_gt86{b`<N!P_H57ptYh|1Y$W7XE*$fTmef;}<^Trr
z728H98b55d9L7MZ0TMz0?UbzD2bcfbaeA59CAxoZ2krq}{rJ?pXlju=LrRPS&o$TC
z(K2PNSx$ky)Xn4QB27n`eGXL158CIrKF3w@J@pBH!Eh1@8GhEA?K;>W_YX4oFnjX@
zU)C!4%86+HMcU?R`P@P<6`SaG(U2$6$^Y38o&WTG=|Gf$DeC0aeFu2ys6WE)MRDkV
zDE<5ASsA<m;eC-S2fbY%KKwUYG358V_nK%FYuD}1<HK4Wk~38_P8gop*H!R`9JaGz
zl@7Cyl8*G8mW{MN{{l%Ve%rEo@%z0FjgMC`1np0OFfSMXPe+7vMvh=gVTI;kxu39;
zl)Jx6XoMp`x0P>qz61So1PaYusObP46zut4b&$E87kmaJ6$%m#1qo0L><L1WL?E3U
zPy(lU{TBpWdKcYs*PsIdq|s$Ij#JG8={y36^n)70ycTPL&df43q97JhLJQ@t+|Ro}
zW0_FA&4a-N%by8u(Gk_ZK)S|>7QOM%8yrTZmL?oZzh1`6z}?|nccnT=^rxg-Ka-qQ
zIWI&-=zYL${7o69c;OrIqXm|*4uG(iGOU#3b9z&^1L0~z;L1&jHNL?$9>)id_p42o
zHjXmxNCKP!?xNyY7J++ljFP!P#$1KB*EuY=5{5*RbQKdyOKI?`i7bRf0}6?gO48Dg
zkn>GvTfD`t%9XYl$Il^YcY$Q?vxBtT2#4FG-V_sgR7`wK00f;Thc%(^2!Nz(K{xyy
zmGmuluV*cmW^FZIJIa-6g>pbq(vw)+e;v|6Oxbb@*(F_q7$Wx{5WDaUpnK!8f^SAv
zGDK`2$g>aJo{w?wygN|?QWeNJ5y%$whbS09Xbp1oh=5TW5X%Ul4wUEa4O~eD1zBfT
z&M6yqdOKqB_WfBqiE+OcvvBcw8y>kEsZL*;^1t<q?)5_l(K!!S^Ia}EiIM<ZHD2Q&
zcF-BuXgG+00+LS=mq8T_`Z0Z-2mK)c@M?wo;efOLoc|W}w&3hA6FVujoS_Ag(p2%t
zAqf`oeCx$<>viYz#p`(qN7>f}b98aJh_qs#?OQg@Ie+^RJqAGQ!w92Xg8f=y1gPlc
zjmU`(fNFDr<fdDxE@)Lh%P$~nnd4r*+P&D(EX6^<llORYI24JqSslE0I}~*M1-RRz
zmWcK6nz`2{PXna@Ruch23uR9WpvW#mXFz%D1fbg)@_>`M>YmS675;~h?{P<!A=&uu
z#c<d;0`lW33^8Q}xH7|;@?0{2r7m)08`?!%mIbKP$5cL}g}!g*nBau=iw8bUgRYz0
z+g+;qK7lJ1$7ad9JgoCVU4jWwgWsnzZphu2HIB{OzOPTX|HGL~bCV4JO>-cAaqa-(
zA_BQ{LFejh@x#$r#tu;6A*k>1oxdgw^uNhW>eYp3)hLPT+)}bwS&hVG6;cArxDONr
z1ac9oZW3+^djfbvK{d5moW$Cq{TlhQ2*sOOIEh-lCpE@pb*5!e(ogCvf7cPX>TT5P
z?GSJamwKnNdY32luFLgHH|pKF8a&k-yj>c6U9iNP4OgEuTw87k{@swB+YqYW80pd&
zeY5eZMB^?7K8A)Z1<;~%s}hJX+TliU2P}iwltpeTFllP-gnTB|B%^2xxS*-&jiu`K
zlMeI%d5{3rWd}n)<}10?ffXJB+`r1ZT?<4<BbsNBmY4_E9Lf?gE!|XuC<6U^GW7f{
zk^ZiPWy|sdXA1pFXiXZ4&OW}?ZKmaE8I%sy>LLdme%tCqX?-DK*=$PNsN0&SuDXV!
zY4jBCDQn&+tD95?$pBDlQ7T3^X|bztOc;CJO@^-xO2G;tcLq%*W<ZN^P=n+4?gwx{
zEcD<36#Nt^<iRXv-9{VB{7oFHdkFlq{Lo>BS(b_AeHq+f)G2PZ0~rfFlj!`L4wbeB
zwOkk+o4NS@bZ~|}EF$xwkt`A3{P!=>tX>UXcWGD8sQGG2(4|DQ_24`N9=1j>AP?=t
zP@p?NpUF}-C{<Vpc8?o~?)0VgvPSy}T=$NHI0r&4%vcDqP!APjXb13oXa~-H*}bW&
z*Vo#qt2(fNsV@#g!^x3QKHTRP2sL@yBin-ZiiL#CUUv%Z<}T{ii0y|icgt>dPseav
zD1?rgv@py9Crp^`X8yCdiyO0(SDCrWah}KDQw<%$^OXfY$^XXtBEZc6d9zDS?8#RU
zK?G>A$<C?~8XEste~9TQ?{Sl4G@AmZ(}U;9EI(O;cVM-@#0)dQ{cL0K@qIk>!y|R^
z@|d7ij05gz0P(3~N5R^e=R^i1=L3)YJkK|em{I%3?O}m$%b)lD0X>R^@`eW3%RL`-
ze6FArf(jofnJsISv|P*+NZUs7VfzW80!!5vuV+P`1-7RCp`33w_Uq4F3po?^@Kja;
zNpvW*IMoOzz!8<bgGb(j)HxBun#2sO^w%{>if8kOa0`^8=xMpWvGA?gH6gl>gR&hG
zYpg@6o`pTS5Bh76TZOm4n5Q&GkSq`54IdlPXHT`7rKW9$%c6(p4@XRYiPd9q70g2K
zH>BDB;@8)l9G(qrgQUEoO#Z>40naP~|3ZXoM_zD11CF03K*of5q_{F!elkmVl?;Hd
zI<tNp+w>nX`Is9~0qqoep?!JWg*5VdXZTvA?Ac-VgI}_9Sh=ejoHXmD4h9kpHE2#c
zLGD{p6J1iMiphNOL2|$MyLm+`u&RKd>NT`x)x6zzu+DkI&q=K&t*Hdvaj<reAgmAk
z;LohW{7+T4LnSy$dFiqH;4_upk7`B<Q#C)eyTR^h2?`Gi3QdmGUxeCP0w(mR>?}uP
zPgN>iZG|fYHN{c`VD=`nt(xEdR;V9q(h6w3y_9PPo*Hm{<D~Rvc=ysHJ?$?E+B+<Y
zuu5&dG}tRgmE`G+a~7Ntk@fn=H_xS}Y`s*$xl>D;ckWJSgcY!Dg45}E;fz_Y?e`Ix
z{c6a{8E4#UN9ybWiy#cAb25xM>(-%L)KLNA_WdA`9<=C_`I7m0E@?HXcWP>fuOIw<
z`|Wyr@C~_LYz;Z_Nd`pEAlzu(-pu^gg38-y(<X!S#zNDrksF{{L#mJdyr8wCor$-!
zj6$N(*g;0XhAgRvE&d4UX5XuanSZ1R(U~)4M1hiTFPd`CHH^K^^EUa$_TKZ8L&Zq>
z)&Gj!g1Dz)OHD_*pb^tJxY-RyNY$PxIS6VbxftXIr3jgiC_*mkfUU>NO01@1xeNYo
z#_5$GbWsLtb=B7MrpJ%RkIS#5lr1}wl%HEKrUoqz$Sn`@F0Z$~*a<LetTY45S(Yeu
z|2;N48(Q{VSAMDg){$ZsIT9EmWVqC|@O`b8@M&c<y1jmgB#8lmV^*e7HsQQhY!VPn
zpC$3BTVD&WXdAE~(a=TuOweXGp~D^MZgDR9E9}qh5yc|s_+(qG1d;*$$#DM;dWKGB
z#*~FBjQuVwY-jfzMrUd;TJ)AG!(PH0dI!dkdGb8?WONNIN8Nj?CjoGf!Z;xQK{VVY
zwcI6j{y})Yui}x=5H?5jG0<{_S%|uUziiK)^m*MiBmgPO=_vUIz2RZ7v0f?5`x?Yw
z1?3{O|0cW^lv!I^+q?ixIRX~lhz_zOhs4JY;AwrVu#ma7W0Vi&&AqS1kv6&pbH+s=
zgYPTp|5k1d(hBBoeX6;yVCl5B=E{0U_2XvFk$pt)FXA5q=YOW+QOXbTjcewcJ`BOz
zGX}&@Y#s5*Zk$iyKk1?2chvuwg3gi5vs-5CyP57gK088cE(HxPp-fkv{8ya+`kUD9
z_8D}iy-s$91r!|%`Ny_5{~f{=`t5Nrlyk+P)@Sxo$*z+Awot*gle@bc)8z$k#&-HW
zT7f;M+&yX1H;L!G5Etmezwht=L3;V1U<aaf*X{8|1k%^!6N7UHy9dh{!tW0RdY^4g
z$#r00i}mic*1sk<e)&J0tu`<Ai+$(Udx8&LT8oIuP)_y|QZcq0f1<bJUF%=W^Fp2P
zu0JLuuy>j!VNAM<5^-P#`R^aJh(1WzPpT+7K!!0!#OhY|QGoY}ORe%@o?FiFBY!a+
zNb8rY?R)R1-(7v!aBLm=&S56-{6#|~wdIx(`M~4kAT4^gL|@MF9b-V~vD*(Q@iX*4
zN*BxYvGe)(+#aOc;pg&83|I#c`c3M~ZKY1swMynyeZuKfl7JxEoBPTU+m$o!=z~is
z*N+il26DkBb)Uf0un^i$mC-wO@NkA*x5ByLX~1^yfz5xUqhF^~UFumI_;=0SFnWX4
zhm@5ZjHmVf&j&v!A`B*!((sP+!`F>R)_{m-#&U!=f3u^0tFedcQzBwEBK+MTi|1Uo
zmZ1N<pz?gbEsajDx1I_9I%9?TIA@2--n95+#qycIjpTl%))#W1!}*i{>+QP`T^J+*
zKXu9J8Q<7@{Rzd&MBNcdp>uDkTD|Pv*`Ubc%w5$#)0QpZ*>oPZ=VM}a<?fF@AH@7u
z_4(I15DbOUBIy~KSlHM(xqo>3V}(Tn4DEIa<YlRj8pKESESEW(FEy$ei3&e>bd!|b
zQJPnj6S>?+0Q~Oi<BGaDHa}Dg5-BzwK1m4wq?OV{v|*BIH=*{5>1%BmrC-Zk@izj!
zGyZC7Ld0F@yKCYH20O)H(bW?!KPvUE$HG!;d1BcD9onSM#xNbZNu1B_1UW3>ONE{B
zm-}~GXGHYD$lx1_hTErM&QH`2w_+6T2}8AFy%=)Gi-fV9mcO+fG>$<lq>`XJ`Ofn3
zqeD^xYBzZzUNe{~n4iDg`g4Iz;j051%D9<);pMN?ZRa%!Po!M}^5p6ROMG!tV)!<X
zx27~foxs4sC%;d3rDe4V_k(@J7OgL;f=r?g&;C~xWXIR&PcSzWdRg|2lZbIi=*KIq
z9TZ|bf_)N~sL?@Xe<P-Jphcm48=Ov`Dx=5E#E+&ii|X2K&Fe-$ng1<6>F6LIA@W5X
zTW^qXdWiSnU`C>^+|kxtV^ZC_jwihxS42fLx8OsI89Bm>2l&-=k^kPGn3Z<TM`fll
zFp7*{YtUf0fqNcG*J=ufdDjMsFu6DhB*3JI_+}tOYVebt_Nm~fVjLBFFYe7Sdw{-B
zxkFRevSZKpx)Qi}<PnS!|BG5odGazbOcQf>V}-o5Zzt|E;($p#jN^0etzhM8#r5fK
z*Ac-VN#78fgak;^_+g1OKOuBXa+DP`e&tr?u(lxhuapV)GN-`vw>P`ir`hLPbH=4k
z=W9*hwM*%?iom5Qx=6k)TvEXFtvDl*ZL0n#FxhoyMxWhBvip^Kgl!gFv~^!sOCo7p
z+ukzCe8Jv1Xko$8Ba6*pLZqNhLA2a;49won`YP*<UB6AzJ;aUmNtO%T&|}eV)zwKq
z6AoL>y>Jac5~J!V0CJi;<rR-^m#U5vqmxrE4>%xFo<v+BGHS$!t}{4!q$#mG`$V~(
zubQ&ssAJ_~3fJP~)GI#OrpD7YJY+-cZ`lgDUs3gN)ryWeaei9StLozSZ(e1s=q>$q
z#PtA0e^O?3ugIdLb%$hn$Z%!poU2veX;Rkb$`d`hhp(b9zo;RTlGqEs>G{`W4NYs)
zV~YFf6BiCjFBS;#U4dJy#gj$9AIFWJ<r!zoo+VKcJz2FGBH$gVQf-GXzC}li(1K%}
zMnFG3ddNewPg{A(oknR&O7Ket2awHh{MTf&U=cDz0WJ17ahT;jo97j^JCt=6ns%?C
z`k((?-_4rHema`Bw&Im{39KK?g*GM2aSbsLscJ@+TPHH;za0Glnx=Q)IO>nw^H1>Q
zppdI`jlnO#ZVFXaaQ+IQGv@a&Yrnh78tvI9fQGu2&@XvS>g~)n)IRRN<M*E>ZtZ1}
zuBd3Rp1LzFuABV($Bt=QzkR+5(|HY9yBllF|7X!Je_2VEak%#We}6H!?*?A+OJIG#
z9!6&&C^v!khzi4(a=cr3z%&+E1RRo2{(C{a7KmI$^2X_gd3z*XC*o*BONV)67?U%t
zQM5KQdIlc}De4>5sJv2rVVS%%i%3sCL)ClCeE^3LjyM{rjyTp1YHCB^D$C%wzNDvh
zhAUm|w&Hu>x1%4KL6Pg+s~kpZudVH^>+}T`C}>A5Dp*hq2v?-w-frfdXD8Y5^8W`n
z#&g-o)BIl@EEQmAnV(<Ovmq=$f!DCa7E~T>h~ha-t+VqB>lHV}89Pl($oWNWk(-hp
zoMz6i^NV|X5+npY%-p``mpnh(l#Syw_uvARv~z!v&%0;tBU5niRb&G)<IFt3vY>3C
z=ZjM3_O$=lRS>3>IyI1%3MP>%Fsf^ireffAB~WE%fFHAl-0%o1HMoGsPt88kDm;3&
zU})lt4v=fc7tI2>JY&7d^HWwM)Uz^4jRe;R+<zt?Nr#o=7ZiI?n#s2Y;KB^j3@xRy
zZiN9@F@v<zCMmF7T!MsK9AfhAY)*0{9o=Fv4J#E^P*Zq6`8>v7fBUCx+HZUVW-r0Q
zj5M!pP6cD-B>2-!=gX4GRYqd?Q%IS8TX0d)s4HHt6O{5&?Co74Ot}X&KM7jeTf^=)
z;_{{p#!Sdz3}q8VIG{l2I&ysmM*v!PKb|QP0F{Qj1LGHL6?SzYLY)rozn0${R#L$k
z`5Sy7jm06;Ub%ohvlYvD$LEK~MocZ&kTT^dl(l`R6y++KPs3$`YtShwpOh3nY5(ba
z@uTV^38%Y2&aQ#U?&yxKEf;{pcq#^Jp9gbe`uYCZN5OX6unN990g!^+`^OR_8D6@g
zWYD+=qe{$_t#a;%5!Uyj%@4rW<u}~460dV^EDWDR!aK{eHh=?fK7kRs9og#Jz7H$*
z_Trc-h{FG(=?2}#6l}iHitq0O7)ptIV{)$ftW*GRFjxhF^03kbfb41I{j{b$7#}Hd
z72JHCEbzCG!3qUrM41B#TX75_rQB@E<Y?c&s~kE>BO-kr%)6lE_d_S+bhDN+y5=-A
zt`1MYxR1PiGaxxJWuy>cFei^EmtD#klzllR^;_sBU4xIfRy3eg-i}+{t~7SnA`lqd
zNXGZ3O#9vemi?RovJ*>Qed37VKY7Q#DN#C`6|JavSv2jTvQz5>#Rd7@V;0()0o_Xl
zff2vrS)2Sp;epp;wL!_|IvK{rU)UO=&J}yu{bT&eZmqYc4TLfjh(2>^x>v_$s-0Y2
z_#Y?p(WWYYtMj4wGS$)|7y$Qiacib+d?zi(@<8W#E@b)+az?XLlb{p$cJUO@Zw$Ef
zpDNL<wD>!f(gH#nKWLY2@>7u!NKD_(W?(>r5I-T>zf7xV9>(?cJWQyj96tDXpCM|v
zo9Oqukd*EWz>hv}`yqMol>Q$dfO3ukmHDWC-h)2kWBxDjfo9pJ^!2lCj_E#Azu{IE
zV?44@0K{HL1i?u-&sw>7V?HvF_5M3q9F_FCgD8lA#vxt%0I<>$tRigYRZ$o;Bzt}(
z<Joalon@5D?z6A;G;aW;O6a*q3Hggtj_%@K1n80kfNr$uKwX<i23C`Wed}M}Sq%>A
zyTbd`!QU~()(aS%O7!AfE{=Bg<gdQmzm=q;8*z``mc&Eaz9<7f;^<|d@g}za`bSdU
zdJbdgr$%S~m~%7(oN2Uz-9#TIY?)Za$Cm81-qMNttkm(Dr7#vK>I8&{T1D38;MeqB
zQl<`fGRKD9Pom>XP}lCmEKgY&+h3wCCJe;k`Mu3emGd(;mWaIR3hAf&U%7X~6Mqy-
zTMVjR#Ok5d{g&S5dw1h>G|14K(<{G8&rd`6cRktXFncw)#lJa!(23fm)z#x);L#!4
zO<&b6;*)$c9FPt(`1w9j8wYnV-oU+#+1IBXS-n`mNKHz|J6ZbDEQk}infbM-E1Ac}
ziqVj4B9;O9N`V|u;Tvg7hA2kg4w}z6j_`430w(3VAo%ByPy_MTR?eBtXtxvYq@9#?
zClp{By0IdYlt_V};l8`B0(FV>OL7!_6dZ<w|H5q6V4z<Z|J#>iJVv43<_P)*i!hMr
zJ`?GT$!p6L=wBeZA4Z2FL#CVPl~HIw9-R)g27#MG$k{80qMWgxIZ%Ic2g5+tRoGCg
zih3~37X+QJ_K+yEK_0U-6H5{fYS?knGDItUr#l2NT}+Q4u#3!4b(1hXaTU_P%1$<i
z`kwp4eqx{xWD)+I+`&wrj{rQ8Z)#kr@E>H39BUbEDmOR-GGNW^+)1xbRj?z~o$6mN
z%b}y-@aiOb-%fO+Jo^s{m-L0xUY=2r2#J1up{8Si*f3;bxq_J3%@{UEtl+^ujJ$^e
z0*A#|X=V|NFEqM-kXcj`fM-M>Tp9>X9^=o>V4x7S9Z0dROoD#?yuMrPYm*Fgx!ME%
zkdYl07;e!noKBgblDh{b;0`)M*%FMgTM32^`E+gyh{f+`i5SQUl2KCuikp)K!I0Cs
zXl^<BJA*={9?6<GC>kSm*8}txDTEFZUz!&Gg#)9LAlan#TdOmn39K>aR>sK+CS_SS
zYr-X#<dJ)Nz;OaJ7knW~mOds)U#3WR=Y(8^Gs3&Y?}xLqhXWe0Sm~b%0$q&5J6P$p
zi;p^VzzBE|!cxR&@sXf5_^&$vI#VKhxUjIs{7j9Y$|*)9%0h5GbY{k~HB^vQKL2mD
z4V)DR{sLacwo_db+0qYxM;j_1Ck5k(P#0X)KQTuA0!0fJrQu!ndnBlFI-+4;>?72*
zj9z7rqOy!pZ?qL>r)LDsB3_bM9BQz&M8r*5M;kJPgQ#<MiMPF5kzQXT=Tb=e)YNjI
z$lC(-4+S_~IhH>X_@zsKGbIJ&yLF{|Hq&XLTRY&5PVbX*54u#WCQ%NNN@0xI;ynjy
z9(btTy@W6Z<SLS;;`14l^Hl5yStYt<Z(UM03*)d1=5?^9^SI>h%4%p|2MQiznft;Z
z({66sBQXU+PLs9m?by1>P`Y&BGb(Zj&@E;M&t>&P5KYc-M~4(slegriBkgS>{SMjW
zVUOstHE%8zY=bo~V%2W5GGqj)Z3C=I;>?BT8Fu$|>5mDVZKcsrl;oV=0)T^KQ_@C}
zt@SE5AxLnd!>X;#07gZh9)0t-6FCF=18TIQ3yqbO1im*2WEZTrid?k0Y_*gGPb4L2
z66l1Kq~_u^-qg(O$8))^*_ARe`g+B*4>{PM$K$>T$SqT(6|;>!J#F0WcYA6Xj=gOB
zSjB97#L_+KvZL%wb)Bz3<lIG&4Z05ojz@=57+?Uo30cPRV~4@O2~@B9-f=<tcBlh+
zcVFTWPp^jYup&WE2_U@sT2SlVx{ZmPHd@GVBlD8=g5fQ&DyBo6Zo{m<?qUGqp<|#c
zHllmeT(4<Z-LlBVTtuHo2w}RRFM=@`BdID-REv{*2@Zysci#0R6%l14_c7~ueT&o$
zt4S}7HfAJUy_j5*H4V|EIEtkm$w)`KvP`uEG1#9ZTI53fw~wsLlo{QRy=&@hn-YmB
z%CCEbyq-hwL*8^mkIl#tzu66o@pC|+mVs5IO~;oF8b8KhTSDMA$xUsJ(bOQ=V)Whj
z<4~qY`8CZ<_b+tHn^(SWLX$^Xb~i&<Q~ZA$c)YM8GK~3#j#;-sFZU!}KEz#<xxlIT
zhJ7S^WkbE+jfQ>L^ew*>RdB@WFeds2;oF7x9Vm|0DN$>w_cQ#pvHK-Js3ZIUYD$|F
znw=CbQxaBjV%z8$lkON)+z_xr6J=HZ7M;>P&<E)F0+ln;$bBDJmi5Z~m+81KqRJZn
z;1`6OE;j4BRey>9$}z*rudsg(e>pJR=eWool}H+yFxr07x_@~qnK4sT>Zf0x+%Cg@
zCTdI+IVmbH)kM!@%=8R)3w7=lzcAERBaraL{4RE@e8-4s0}thBA}v#H>i08Pp596I
zi(5&*`}b?oWsZa`BIyAvrP>rq+=;)%ag(k;HS0z;>XdPyDbm|GsXeNstTegmH0$^E
zaNq5e@5}{nM|-pTGoCw@<S#N7_eYM2W%O;?IyYxd!LtgCBN~{B=lrwOo7o7YtQV)*
z2aEYb{fzK{1k`p8$fWe2Qy#}Q;O$Wn4{bgmE5AuFhxaVcEFec9CSUw<zVunX@L9f6
zOo7_t0w$#bEww^}m_n1KS={47YqcW#n4<daLg%w054B<+&SKYlxJmJP^m--5xP*77
zcyH1Eh_=K_xC&ESPIo@tc<bzBE&v}TRF|rjSrt=UA5(S~ip@#`s#6W(6c`h)lGr?I
zE8rEp)#d+(tFwHIstw=uBn&e&L)XyVozBqGT_TNAQX;L+3|-PlH%RJ$APAyEgET7A
z4I+&oV7#(9emg$wKVW@$)`xYh=f1D=Iw>xLhr@&G8>QlWtS08Ydc1iVg+q=}#Sc8e
zj^}(Py_F?NQoG?VV)B34CKW(gaw`+*Aaok$SjSQ;nw|Q_6XwJNeW|&IXntjCmI&(I
zaH-k1R&yd1%Yc|Wc}+WZ?BAW)O#zU`O7B9AR_+F=8Ku`SA1!9kE=gyNg_6^@ox)y+
zeD^$6ra`{&LRw^mVxAq9w7rykffc@BfPB4n1f^-6>iEat{Z+nL|I5yoThAXvG<0|5
z<;}Q;Cv?NN5;*d>f_#UVxQ9zzhjS~2TPsIU*I~VRFAP==>XhCX{1~JA{JW23jgSk9
z@HMRFm3+1S^A+DgQ>Y?gbNwZ0@B|a<O$l2g6>5@W5nh{86>F#<NdB_aUR(C&@yLGt
zgC@87mQ&Qg#qY{HhJ)6P6g4R<bD;jIMnh3as*ABHB#WlTAG#;;O}7qP%FUQ?8lxq-
z4XLbIO>gPf%-1t1Hq`g)7>z&Q=&d_&^S=CiDPq=%VzVz}7C+j3QXK!}C%aIh%|wan
z<nn`xYo^wYtHV)p_BPviBPMFVyyM}@Owz{S+Qttee_&A8{-^gj6mO;?%~ki`6-IVm
zZhs~rc8c-yQ5UU~#4L9%?nrhu$sg(~UyC6I5A};8z3T2fv>IO@et>Rm>Uz*j$L-K5
z6KK-%r!u_B#$jgwQ?)Gmmm8?c@%w@@C~!4bV~InY@!8svpU$%PyWZ6YYt%j~Nq;(u
z*)l81=GC!baVF$R$5$<Fb_tVLDA@Pxmm2aLM~<lDBjuC1**)KvCnV^7>R0<$$p=x-
zYJ{qf<+ZNfu#NV4s~ZiD-Spagq~xXV{}78g>c<|X%QU^WhgDEfK^~(>B*tIFPA#?_
znO;uxjJ>X3f^|gwm+AMtmkmAWaNN4|QGs1k`S>hhv-dUnTbTF+yTC8u<K2br(R^c<
z(g_de$G>L(o^<#Xnhef_vmDeI^RHho9n{250(U-R(wL@~4kvaduY7)U_>(ufnFKBW
z&^iQ29|Pn~<}JF-bY7hgubrD)HkAHd+LtR>`J;~p+}+C3-xq3HDPBwI{fCZ8B>>g$
zHiNs?!BSP2<QG$067XVC?K(-w3xJZJi-^3W5XCW!wb)*e+H%Mlacew|d0EF_8u{xn
zh{sQWQhnvS+sbIoivJYw<SyA!>Q+MlkH>FDOLpYOtB~>+{)dk-CzERG+vP7%MxX#d
zR@^r5U#py%C7r1@CPv+nz+;7ExKiV?2HgKlp!iD7@?MgBy`3_`5gOVJ&3FFpMj-ds
zA@e^01`(E~)ehO2ag5IETi4&&hEVLUmzbwA=0A`baRn*~1jY$Z(-EZC$fl`B1H1NC
zw6~jCYr?>#{piq#@7oyZ_ld7fTUjYfZ_7E(UHm(Rf{$LKk60tWAg=EoaeURd#l#Hy
zo@%g(Xr>G^JHIW>z}Ec2{=@NepokJDi`$bU7kXrEv4+Cb`F-5H%q=d<o5Bcg6lo^v
zn;8pDW&$foz(%wUj#D9TnaL=aIa^9%?C#;)Rp~w^;0jSt!^kc8>0b*S3bg%Ys8h&D
zI^TaM<u>dJ;LwTh#J^VUW@RqW-5`KG^-l^47#uw1<1G7LRTuL8r-ogO?&hXkJ`24>
zs@azwe43W;Oh-7^v)G&Y->(!7vx&D^F-?vyf+Cg$U1N>bafhe#6s=K4-7yf?#8&6<
zcWi842~~}RcY^<vLR7mOE%A5n`3V~nC_LY(_MiS#!c)X4*{bOnry`A(ci8zd<tU4)
znVSNQ*lVlOCpdD_Yu{7GWTQ>;y@M!4J0dopIFU)vwu{#`MbwIRv>OY$|9_~UU;wHI
zPeR3QSR26A7x&M7DnT%iJ5`e3lIgY?9ys*uJ7m3}qPbG{mUx*}-93>l8n-=pHej3U
z03z=k<pT5|!jkB4I+^Y#(=dbzor9{%kK~kuB8iw3vls43Ac`PUUUpLif-J>~Y3e#T
zsnJkMR-)OmTOTesQf_H`Z;9!=G9l}=Io{<?5CGw-%QW7nr2P#56}0utJ6QuJ*FCz`
zEoe3%@TD)2QQ?_TQq6b=CU#*l$>Te+M^|Ic3jX|+6K}u6vqRN2H2nSry3w=T7fnWe
zM$ThBW;@buv)Oz1yUJKXETf;zl@4-0Ry=<8mD}XY$10acD<7h%B%VZJ5|Bc1z;c8B
zB;N{BLg;6BBaao4nC|B#e?dcwlJ!Kd8g;Wtfl#VuBsx*Av3Mfcbm|-X2Wif-L{f;i
zHUrbRP*8uQj_DZ&KkopWu_RCs;(RRvc6B2Ko8CAxosGMe;w9{5xj|TuYaUP>n8`CH
z;&z)PeX0xA{Px2p3MK7~|NdiK<5Ao@E2sJO>y!sBs1>#f;NKnQNfI`80U_)>EP4>}
zRl9iTnJhDT;2K*fTb{*%9yvImjfkTmm!<Xuml>i^;qlxBwH3+I3$>ML8Z31@JH-Oi
zkS+>mG-8f?YU!~#cB}e@1@<?^3mp`|JC1#$eIZYdd76lbo89D*M6|BinBY?CNf=gT
zG5a|UJrDa8EaYC$3R-ZT)L4c#hV;WplvPYx3W__Nk_ePjqIK>+lgPyyVhbypGuG?8
z=^Ld<8Ee_FZvDJXO0EsfZ}0VQ(~KK=cz5bxxd(W=s>}SlEJm({eY;9m+_nL>y+bpd
zcU^(6^v?>)#qtm9-6!EMyovaFq0StMWDjI~(MJYOT%Zn_{d^Gtnk`y4uCQ73dP3!F
z>GkAI+lLTER=P6=OjksG3=n8d2Z9i`Q=rGBqO(aP$!dMApG*xNj35LA8Kh%$TBm}c
zyurIfFjK$}EcVqx3>qO?WZFx{WhuD^XONV{!Nu8Rh%a%T{{??;&BY#h`m{grg!_rF
zUBb=TBtPANKj|R5lO##ZR-(z>pA5Ecfh2rCE#LQU=Vw9NX^JA%fxEiMiATFswnm*a
zZJbAPa~-cG<+<-w8byAJ3oYhGh}xc@Nrl%ID+QzeTvK$U-(e%5MOfba=$ZrEq8~@l
zI=sSMEXt^aE{A@5@OQTRzNXw!<*k#H1>exM3!3!C^d2ySD3#@<PZ3M**LUBvCm$^@
ze1@>h5ubh8g>vUPk-(Z+xbsXRjq|bs`*F!2rm66$vt(iZ-FBK{L))N}nMwQIUdCR@
zIO!rT@@VTi<2q+b!ChOR>KaJkU|jQ)*=?$)ifW>USbm8BAWTOd$Dmjap(rcnI;ZPM
zW&b~1PP$?U6huotypFJRuI-5}Pe3=$()h;2R!!rK@_(2i!3qEpPjP7#d^&Xa3X)^V
z#X!AeW^sTUQhtw8hWD3KhVS;t!OhaIy~DO>UZiUYNKPl3ri>voFe4}yA1VPf7Oq3h
zRF^TG;$61+m5m6pz8jQi1mUa|{)!JqVsiuns<~S_2E?BPX6ityBjfZ26ptjH>Z{`J
ztSOQziKDZtWIgO&4ma)e;~ig@5&4&paaG|$&mYchi}X$Rh_DT@&WKj?<>-NA+YD^i
zs<_nly(S|!WJ-T;#ZydHl8~hM!V%bSsw8^}V8Jn4pc1f4H2~!a8)W}2>4^gAr-3A~
zWiXUy5)*+gDhdqxHCL-H`FmQ@6j{Zly({W{Pc$`1Hl;INkcrxRnuma7ftuzR^$<;O
ztDaYXHN&#+V`la{g2`~Z*WdNr>akfXm9>A0gsmF9zcjc$QvFYhN{xb$<jLgAP?Ik#
zq?e9wly+}iJ{7JBqqDxLM0*)jEOK|>+lIyO5%<OUG)&eRM^S}^l8tLyaT4&9p2k(7
z^a=J|eKsFJ)`a9@Q4bNH`B7K-*O$W$T1UUIR4HW&EFD5j(q%?bEM;H;Y8+U$i|W&}
zZ#M;FR9<&|78f_<+dG$=Div92RzM0Jz3k$F$v#V)+%{bAoAiPT_m{qDD0I#gi$8Me
zSlV+{=vr775AE7tK6bq9+F+LmAN5%|tN2>7ZX^-8xW97QtMLBE;ZOvh94^l_1cV~`
zhl&Ee;Mo8W5J`{o^>K16IZT3@Bu<BPp<sz*65JydLwF=ePC+)Q(8sb8z?9nnq{W6o
zxUhW{1zFCEB%)^R&OBiGHBQ*XP9N)<gt0aX-``BQ+j|C)H7rU+7RghKJvmjQM7gm@
zYz|*J6BED~Ag!t=LBmh_7M3lqEDi^B{ESsS>T#F1ANpt!7L*M>1<>lXak$0_<|-ZR
zD71&Z<p}^L7!VR^KVPUIP{0&AkSlWylbJLNR@f8(8n>c;A!v(%*{0)VSNZI9=42q@
zOXlj=io?!==jBf6yW#E`)6e39nKYJnb-%g+gNxw*Zx)YksaKdwlS^(J&;7eVTK4tY
zKH{^z=GUIK1{X0OS$b5wc^t{h{c0aYO_ha}oQJU~Wi?d8ZBT&=yRwn9)MZObCUq7#
zzi<z^(nOz&OH_z@LHB3+gheHV=JB^a+Wz!qkqm+`oUm=TMB*2>)&E}J++9==q47O4
z&HyecIH4MQc4yAz!l2`KRJq+DcpdKA-l}qRx@*pg;H$kbP7MH%{tcD?-G@g~r%z?^
z6b1<jd;xlw=(zta*rvjw`QU2+7Di$NM{PJ7F$LiLlVquHVm6U=^rQOU-?G-dH*blR
z93}8`=!8D=Ri^ijCw<wD=f)}M9)F0g<l0xCT>PX@!6Qjh{5}{E`}Orp(eUfVKIp$A
zklbbYCHkOtGSpI~yH-b}<&!>$iF6tfq%NKOkDXKUez<NRWnAn1eu;y32HXrzRAW?S
z^Kno6aUcJkeyV)`ma7yWv4PF$pI_K|`OgIoIgf{KWk9!7ZpQ9rk!tUrP&VGHex7nV
z%&>GHR9I$ADxa|l9&*)!qVRNi%(<LxloUgZ3W$JX$g)ZK<-@DTDpEoqq2NN(RVB0n
z<(?PTN+sPnMHZ20@>>ej>~_Iv#E~I!Z}Xb^$J^BxQhI-tdj8^i&a`Mj${Jh6qi0{D
z!LFFKb=_+tVgWnxpd0Y3C*C<DV=rtR8D>?H2&Fw(2I#G+CX~{puU;!e0gy&uBy$Sb
zwk)sOLc0zN9X3>(Dx<q9b#h;$eNc87?)<NMg@&8Uzo}%T3C%@j3@-wdx=hp+5s$@)
zWQ|1KFWPWJ00@n3p@;dfqrur|1cVZfE=PJ3>qN2OYy&&JKCnX>^S|5NU)X5UnPgE|
zw)aF*(Lv^BG$a3XK9TIg!+>pKUCP&m@k#l&R4h{_7ds0^1d9cuDG&krWjHJX#t|Yr
zEH78W$)>R#mO)o@r?qvRRh%2doAJ}Ifc51d(0K!dB+~Jjx}Vr_E87WP3=3-LlI6K}
zU%3jcXu|73V0S=5&$4RO8m(aJ$hfOmZmN?dm#u@#HA4a91}B7fR0z+R{mEGa=&`{|
zP_n8UliIE<QPDE)Xl8a|+psIyRD~FApA^5_G`5G-xsMWWFFV6?Xv@XmU5@Z{6Unrv
zy+H+MbBd(WDAm*4Px}i*?>;0Sc&3<~Rtq5jR{m&Lv89st7vY>NF@J*52-9b?^L+}$
zyCSvyCC+!`W85whw-BvVIwc10%i+2l$r6IrNf-?QM_r)jq9}?8CybE2b0-V94Kp1C
z#}F+v_&#7p&oC)Q@1fo36w<MRukT3G-1Yt#mYGH9S!#H2psHyEtL4h5*Lk<iU-HRT
zIjdv>5K-7PLV-nQwWTWto{M(kr+}aHUBB?$mT3h^nO4a-R?S!frJ@#TS~m>_x5(rx
z)eiKaayumfJtYo3&Oy~Q!+duas!<(i<r6pgfF0f+!!A4SuAodC;Vqxu8ix_)N7+Vn
zB{VB)Ab1@>>I!CKNy^lLjvvM><Ep+jmr6$wHOctE_v~8BGH8OexiT?tV8em;68+`N
zxQl=oxrAb|!bfG%Jn6J>Y!cl0&RI1MbdzQ$e9Oh=_gQYIRiWD`lAjl$S05PISbwt-
z!@<+<v$hFDDkq0eup_Dj9xH=z72lS)Jmss_n2WGTwh;)VHWKu0<uN+0lZDKE*I?ya
z`$>)8kD4fJ)@fTJX9vKYW#c;bLNg!^{OdEBcvP)&ut!V<|6|@l>1=-4v0d93L572!
zM@d@IgZDC6>eR(tn95vGNRV{TkUu4nmztkHAUdGrizxDioKUo|AlM*Ir?q2eDV9oB
z>)xPe9Vfaj+a8otf#)Q!3J&)O#^};<SjzCm%9=*gIP^U?_eentNtmW&5t8#f$)8Td
z70-f821iToMORpZD|OaZV!zocGCAbBwX5=QlM749e!nS}WdPLkp{dBCqPerbJ38)(
z`f3)|7^Y<Q)l}@5@<zXF?NhPE^^9vM{e`|T9^$ICs^#z^z<t#Cgt*>$?2c&PiQ031
zM>GZud64U}u{C%jovzD6;tT_H`rPXkNqD|MHOO9K-q>at)zZ7DHUzknL{;g4bOznA
z@ddKW(w}v#*W&!N`rbUgTN;sQU#?TefeXru&M$!)kMBR&8uU9SDPlY5X4qV*tD!;b
z_WAKbfCn!l1|3BAy&CtW%eJVU^*UNS)rv&!1*Csu(;ev4=~C4V_NC=Sd!fo26=|a#
z10Z+NULPoZCiWT;^dbzZ_q|L<c>e08llNGEOl;NA%%wa4T#;g<zSU@t#$=OZ?C``{
z;yNgO{f~Na{bch@iQklBGh^yPJY#tB$O>x73XxcaFW{)bgxq)Z{Y!~5A=@3fWLyiH
z3-!Q7jp!9_@b&79CfvIw>+1H(U14bM?YxtFQ@JEd!gCur3Dmdm)z`#NM>Hwri;9mu
zFy138MT(cf;N_}^JFa^hv&oxBzI*lJ6X%T_Y(8(XN!^C_=g6@U!ouVm{kDZe0PmQ(
zAvptbv?|q&$pLZYEcR4utZB;6_B8pVM8CakHIH&kZ7PMw(qH>+w(!A9oUcefK4tjC
z3)L?m`B%KnI%TF~jGO*gEh>c%d#u`e%=`Wo%jdf?8s*d&XO!WNZ#tlfkn*mort2WB
zzm=0gQWM{J+!7<I_W9^TPGbWl@mi<OX65+K*4#60&2c@#DDeo8<qw?f`&pCmHSuJx
z;Dqd(=Jh_e*g9L<q5H_n`S>aun55X`fNY|b()8cE)V7MG-*XfzOPcfU#QEUiO<VL<
zEpZE5u<iV8hwb=H`u=%8L1czN5;*xa#^_`!^UC*FwUIhYzhF(vz&;MQl#K<enX=xd
zhE7NS-7@}95W2a0^6v&Y{c8dkkownH^g}WYw!CpvAjKj=qLxj~O80}M9R$?jg~+>c
zl~Su8_-n^fgUs9zeN@+1RDkhUWLs1-ypz6?Qu~HS51iBJZxKlE0%1R;_!^qY>WKUJ
zL+;m0ylLrwP*jhdf3Q!!VvIj!6!BuJ43I>eA!{Y^w#Nci$xPLm*aVB8r!(-U7W8DI
z*FS#KGKSN@?)TAYn+c3hvt<)8u034e&A5$Zkd;FJa%g1sXJpzlXgy{aWY)#L^r>o}
zolU>?HU+#g)b$DYL@T!W_4dq>o=lXW#ZS3U=mv|QMixr`<npJu8XV>p_()anTzcgU
z^nA4dwM?TGwA5s=T4%;b)9S+9D$g`c7I0R&HLZ{(Q@@}o({8TRCM;~SpnLyZ<@;;Z
z@(QEK8A-l}n5Ra|Uu4!}PPM7d%s3xCKGoD06ER|zM9cM?7~wQ=mf9Yc7R#DiZ;=*a
zUqW-)JZL>^(@2b0qD@&LW-fB(MrEXgM|avEjeKTTob0u*8!{VU*DaUR&nUP%3BCq(
z{B)v%+UVw3RI{laJTjD$vmcgQOO$it`ROLmHWi$Uk(~`8<P3M`R9ecr$3JwA2ys$B
z43Hw;j|}mAc;QtU;vppG)-4*UI_m_@^-3PP_afxM;>Cl_i}J=0G%+`9IM;LAuHrnz
zk1jNj^)gVR-;d`qNG9~5N_(Nu<wJwZV2jX4J~qL3LPLBmLmn#lxrByBhlV9zhS_`x
z&AJS)42@_|*w?@CPmO<a`V}vvg{82?c|hYZ(NRw|syowTrL=&5A3i<1#I1{HV7DW9
z!tkVDgK+5eH#AQi<J*J$afp849MiM!XU_tQo_Q>Md&>j^c+?3ohsd(#)8t*}m)of`
z<-&PmGct%NV$3<(vf0HQTq7Ooo^0PS(YZN*=L3p)`AK#nSLt+b?~2*<d-tVT&gChC
zs_o+Y6vMrII~1H*USrN*GP6{aPgE2yxY9wIyX_n8Ub0}z-;}IM2mGq7UZ{`7G$$%G
zHHYWieOstQZT@?qVDW@TkN9KFJLAu<(obJ95GEqN@iCF{oqS8#4f93OLGQ?vqLx_g
z1o{iC9GD!6d?Pgx5T2?+*7uktq6?<_Q#6snKMCm&e+lc7Vv|-~s?~K+;>K1!kS+TZ
z(KMM}2A04P?!L2L{*+_?`B9ri?MFiCa<AP=@1esa@Q+Z7>D+wLv&iV{d9}z~8poNo
zV&I3n7$J(~`Mxb7b{+P}D=U@Na;<MJ5jKCHF9mk3<9l{~Ew6_huX&UJkEM!rRTu<I
zu(kM2GY*}bDBxlQ5%KO(n*s$Y9A^FL;?U%B+mZ3r8Z~!@O6l7?e9~`^M7rIVz3tOK
z`0!_K4_Xgadn;vNl#+usWmJyN%id9SfxOYoDEa6=+rKy-cc93<&&X#{ZlH%rTPPCE
zXnp>*QJMQpRcjP`egC*$N^Gebd!b1G^$a&a$~k*rj+4Q^RrZS~h(7<#(nUpbs(Rle
z=dQu>zI5e*4=X)$VJ4yEv*!kQY~=a54pmh&tW~f*`%mg%<OwwIdKMa5i|tuD7Qw)|
z6-X%8SP8d`-R8b+EFW{f5?GQ1@i2H&BFY~t$AMKkc~rTdoX=HC?`*0MO3Mad5s+*c
z`d`f*VcPMJY9v>psK+&fo2vZ(jv&19^*$I{_07kXbuViT5X|iXk53S{A|wARyVTHw
zn;8kG>f|;X!wbRZ?pJ@e^ey)dGplYFI1D{`_a6Sh$93Dgh+l-d{^#>%TXT%#-nLz5
zj{W=T3AcKW7T~=V8u6H?E)hEg*cyTw(KAGUcM?RMVhnZ-4ERlLP>b>OjL{(#r;<J6
zZdR|b$+?2X4wT={hKp63NLY4iowrhIkBexvzGKktAJy2pju4C>@Ysh<3wG+W0K##5
z(r1}0dR*oGW1p9{4$l8VDCpVw#N^bpjjZl^Jb3gtHZ`ZXx~Z*uV4Oau{QJ-Us_lTd
zdY*+a7eQq-BubXst0(xo<dgiYy)cZR%kA8tFd-S`3l3Xjwku~LVbAh^yvQ`rbN@Jf
zGh9WyGP9Jhpe(jX`kpCuE!wPX7=ol=ueg#yYiCl5Qj_ndPoiFUfhljFFp0b8Ke+~R
zsFVkw+5MrGWuq3)EZ{We{I0DDW|c2wHXW;Ydoy8u@f18P-|e>gW~gm*rG-bt%Mt{%
zEti;y+bhOYwxS8n>-Y>Fy{shO9BJ1V;%^=-zmH|TwmEX>d~~=nP-t_!V(|_Oq|+Ij
zZ%)<%RM63k>wWbR(XO)X*%(kE<h7KCHCHsNXQ(5n6jfWD*)b=|lPVN?ff+OtNe40;
zl(g2p=F>tJ8LqEuXnFbH39@e(2~ec*m{1Dsn&xkV-C4<O@29QfIV?qqj`#5(6I|u_
zKlUg^lh-0Y=SX5_^-5>7OBl%#ehozZe%|tue`X<pgkDUKEh1iY_hTU*&7&TWDgkA5
zCtyf9V<a`m1gZ!cwts(*G9K?T8M4;Nn^GkCk~5)!NZToAJSm5B4}!*la1cuit4n$v
z0r`=xOr3bsmq+h7H{HtWWN@f1sDYh^%_Uts14XVpM`>hHsfsA*vO3TumcdWNCC|uE
z%S@Z0K~YO7qrfLfUUfpGw~Jvnn(mg7G1Fv%XuD{|==sM{H)U@511&XmY&5sgE<wK>
zLc-t?+}Z!kP&&zjn>Jk;1eMc>X%pRQwJ^B_m9sR{<!k$FBRQ5%f;_PBj`datd+Ii&
zFu4@#Y$c2%$_dT)u&PCtEyD}JqId|k>=c^cWTV{uc4Ug@u#TW%Z8MdiOK}T~&UWrW
z7M$Qb6k90`1ln8<^R~X-sl6+KA~E;Dfw`GH%T`EQ^3n5#8gtnR{&r&MCAIRf_L4Bt
zTzt1zL-9u|{d;2E_Cin2NH9FG>$jhY+@ex#ZfUnjl-x6P`QN%5nvPF_89yo!yIiWX
zf41JFQnC}df1GTjE7O<?vF3DkrVg_@J<CZTNf(Np_fOi=;Lup1VS!V^VmGS<lO11o
zn^-fMfEg@ZhbB`WIMUsf$*1$$yXXv(j;+s*<E}B0L@UEze!pT#0`=$e!rMuOg6Is#
zxiEHZ$<C4E5kx<hfZ96C@_N;UQGPc=<nTpSx72)5=7bT6TJW^4KzHyb0j*!JqOJ1)
zz&PtQN?l(!#~u&~ziCfwFWdAQ7P^<fTU%;*zF<&#76s(xW(&g}QE~{z@A}es;-JbV
zuyVXHrEN1Mg|%-=__y+F3GQZk>989B_lM*AUn9c`zK;<c!wEY!w|MctY5CVmpEk+-
zN`-Nl#*=FSWfV4wkFodPWXKW#KPsJ`79okGYcF+l(hCL1*FX{&93CR;yf&eMg4;_X
zqtDnN``@bmheo!=LhaWm&dN<5AFyJ{N)&JmEn~V=Xe^02wQ7~8FCc|%04P+hB_w$o
zY!c&&tX9+(wx)sCfd>I^Fr~CnIuR`e<?x+Kd=L_gI8(xbZBIJL{_aBA4(1WW*%k)F
z`xF7LUl<bu0LUmTm=k~@OMgwKLG)5TeCzi3<E5%X3EDTYh^j%AyOfTtpR=W}^cA@h
zr?VFxlzB~Ki<}MMk(m)l^)WOC7s}k0wV#1KNO5nUt&%W8CFGVyZFVF{>U%N4a&6PA
z`Azi_p{6rAac1*T-tEJrvgW=l0YDa3G=b}5EfqT(7atRf!R*8wzJjcVH7Obg<$fyq
zrgi@=;R?YsB~6$11GaiG3?STI2ORy?RnrZ`53x^Mx0({~tK+cFA2mw$%lp-Seka4<
z(*W|i4gf97@Ubl1bRg(}X5h4`p=endkdI&ItHqR|o+XsG+f!ePYbN;3=W2;qFGCNO
z*hjxBkSCVuz#EL9W&9ko*jQy^(1X1RN0(`6dz<HUTGqU2t?BNlE4t{7rST+!SOtZz
z)eG&P-`jC-C;*VcTYp=%<bG+quk904q91MUUX~RVP9)Wt;-j#XZ3<MvzB}qHDLee~
z>M7LM8QPW9MmbA}*Y<U#@3I{fZX=||`nvO}*nPB~ZJ~%b@Q~}Wn+TbGUHYHzJ&cO|
zOzv#!3++P#?Lzz6H?wW8VjuXLJr^#_+yJ16Vz9xzB(kzri|(d@2M@azyJ3v&{a>_6
ze<vlAVTtYSk}v(FfDSzFfWrDP0PI<T@%G2ruGQ27H|8mzn;r3GCM^yIQR21RTJNj~
z@(=jb<p^hYe!mf80AGnn-W(rzzej&RO6KRJm7Xpm`5d<S-w+u|4Enig7=X<7S{d=5
z1`folhzqW!UMGwG+Q(@v_Mp6gls*_GB{X*wcWMBq)uV+YZZ?vdP&eiwkRP%$P}n{y
z3Ep1)!GT^NwcIq{nn{sPr3R9D>y#CVbxwdD^n)fmwVr>bU{vGRu+W(TBJ=h+UA4p$
z22^(hU;ZqJqHajHpT=Ki$_>#*oC(d1ZT`2gF%+CA!=Eq)=W%nL$i8|lV9!q_Ud3eZ
zj&em(yKmodR-!V_>aFNAyr*x&66`~f#^3R6Le-yz?lMIK7`%rAvz3)V1=~ce%mJi&
z<p3%yk<Io$ha438##lH4WCNH9_n0sv9+1}?jK3ubHYi1C6T#04+^!uA>gk65#k<%S
zOL_=={z}d8;sssAzS(n@xvzfTTALda?Yk_#LZNLmN94YwwJftOexa`fC_1>vy6$K>
z5}T?I_d=ujS9D4)ZgoEJ#)bAQPR~}nmw%W*im-5_3Lvdi3iRv7)$jo&K;ZsEUU~;w
zI_k;6cVcQmnT6g>Yr6tD1+?SH-TiS=+g}L#BaA{P8Y27_&*c-W<Ko4WFIGDQ;XMO|
z>cw?y%6rS%m8o*eZUOK`lf2IVbn>6OK^YIw@Q=Es5h|e6C-q30gaiPsX*ZN=B9Ls$
zQrtM^F`$QMY;qqH@;c3DPc$@q?a1*_!Q{}6;;MV<h5Ff7%WJyb&Dn=D-(H`Ge2hPS
z)%a^XoOg(OO=R<#z+cli$MXsDCoBFtzfy_40I7R5YJq9|Q%-MxB_(Jnvxj9NwlW?n
zTE$+}h?Z_R5wBw213qpAw!uZyd!9~Z0`o2hxztbiSKlT2QcC`XM7-0VBrCn*8+vk~
zX+78S6rC%O_X}i9069M83Rp9VyBe9~qE<x3i82|tJUzqFkGKOV!(@@qrVHUUWzg7g
z#&4Zsw-jF)2I7#O>@dLVgup^3M8zrkRvOc-guT~5TO8``hriKyI<I2+4F>K26>epm
zpJ0aXRVmwOt9+e|APgfh_kk(v{q-UrttEhNsrsZ4?R(9d3A4QA*bsdY`QfUejIr#4
z&t?ysEa}x9EGQ4lKqxf|qk(7vpsg)5)VL5IK--@b&fr@=nV<aw0U4)QMEW(vik>r4
zqje=;u^QguJ%~{lMb{`1DII{zbtM0iF#xSTa|_L!+GvL8He>*9F5?z=<1KZjUT)EN
zK|>-m8w3vnrfkB%zpx4&>fB5fTwHzNVGU+g$Z`ihtDuNi6vyY=D^Qh3?%7P*pk+j>
zbQnEg8=T%N40r_w;`XvI)75OF1AkA!ntHONSOAZ+qG137TOh5*6i13D&f$-?F)W5#
z5n|m#e%n0J@pHxf18}Vp%X=lAnPEk4NDt&XTtxx^^R*`^xZw&E`&^b{7#ic;qi`Oo
zL&<NM<wpkZiqiTXL?<XhUQ_G1M(L3E4n2thOEg5&k0I;H$QW6Xf`4@R0*5wlr?8x9
z3r4HmSA{=e(=#4^?Utf*7EK%OFqpDbiE9LhumLofp1Wp)o;wU*<PFBy0j+`2Qm|+)
znrzYloLWaek8QKBXql#7OsJ54Mnd$Uo*s7xUUUwxwRyWVThXrSV|{k|m_0V9i=rNj
zZ<y-g>O#Hhr^ys%aywAU6@oo-j=!9OByfQ|6PTjLvI)Vov;j;hyLH<_w8#z=?G!AG
z7caMqJ&btm+Yv|EVPFIp!zqp|UQ-)}Z|L(-8$^IdU&he3kQWWN!W$Fdd#1xp(V&j1
zm}g7|`onP#P#Bj8(l*(Y%PB+dJi|1kKsv8(R4qxX7U?V`^|Ce^+gBi?+S$S;9fTbJ
ziG~rlk}AR^e+H1{<>`xUz`U<uR<wx|*|dT{_?c(o^E|$W^NHgkZ5p?RpKJJp09DoB
z`kwQ=0V8mbMRO%9)-9VO_=+MJpzE1U$IAjhPIdCzn^^y%2(-m*D-U98RX>6a#e`Ml
zZTrq;L1UPB+WnY;cLl{2DkRXtGs~*v`O#|#<T3@X@M%hq8}ufsYmz);U^k~sl5(Vs
zoLbFvY>He+ka9S{Z2FpD631qC5!E;E&Z0C;WmrM^n~fr_k%*E0Pzmn->oBeMG4<PC
z;Xuc;16cgrdJKyi<#)s9GBjj#sgzOVsXPTUt99llvY%wSlfQ6-=%y01T(WfnO${xx
z6+8gCiAa4EBsqH$PLav+D+7hoP-4!g=_*Uj|D-_A%Fq!*7J%~;GR-McjfJUT1*xD@
zfH5>~IYH)w!^pR6{Owp3^;nR>z-ONT3+3%XHWe!^XpD+gGxUy?B0E4coc1p=gAqj|
zc{_vNE5kZ9gZWpYnOeqO_AKzvjIp{H&73bBYRc(1Z}2UrYyLYo=x3hCMXCc9aiW}<
z0V@x}%_hYB^4iv<E)#T@KFd*zZch|!Pp{HQ)IpqQD$Mf+X@81nv$<pX=?*Zaf6RJ%
z^Xq>nmebftwc=t|rCj%4kajk#ePW)*vW=1AIQg9d*5*vEPq1VlTk1&klcd)tSAh6x
zNQ&GoMx>R{++6&Z7&bcG({1V|_>`cnouTt{3}(6!r5o3sGwunzdurMDnb%o}vA7uG
zhGFnXoUb}Ho959?oUUwFwe@J8wV{3SoZVQEI4}1f(ae-8qM0#@>t)$^j-@$cMxLEh
zKYU%(tb1c2;&dVM(PDcw)DXb}_Qb7Eq5ELdj}0jZ)A>JZU%ZeSEf<=v3?CSjiV;{c
zN$<WhbsZ)p8aCmdoxjFBFmeWhFfr<<TJYH7?7bBA^BhuOU+`ZlMst?B#}`@c9Ny>9
zeAu4KHdy9XEUK@w>-(7?V2CT}Wp-Z5SNxq{+<6y&4(k2s@X6|RBD?Vm=BgTcN0uA|
z-oww?G9R)lm-7QNC+TBdeveEtv#!zK5f_V|Q{x8zSI8?jU-#LuLwofc8r!x9rzK!X
z*0|z)%Ndi(nHMULFp!gZK1Mtjvv9n!B5=b6w;$9?UJIbbvYdvO?h4uMHJ8v5OFUwF
z#|Z38&6*kmF~1I-{>Xta^;s9pocYvR2wT9C-OabK9L2&dk;g)lhoxoU^<OIieq1HJ
zo=bJ}oH6purw4Fz!Iura*BMK&Oe;>mf3E(iUO#SL=U!R6W-kG<I137{f#X;xUasbv
za*^S6;O~o<=GnDO%W5~%0dcOI<*IyoC4mR*(i9w|?@JD(KqBg{?1N5xl$@90CEC8Y
zv)iRV%@S)KxxwPx)@fM3J)&f+a23*Vhxo-UeBVIKmi{~CjA3?s9LOz4xv8i3wOK5h
z)D`#3t~~a}jwoIJqiw6qa@Ep$ySD{9;|6XL!n#*D6X&Zg61F`HJciFysHa}=7p2kW
z)evQ?RE6!-fAFAbd3R&yC0Tg#*9;~ywmp87ow45Ikpz_NSA^8ph->r}26`Z`J<~L#
ztFFI;^*jg<)MdD0nf+_10{+E&s>1{0=<dXQdmqW;c!3Is-V3R{?<HIFtj}b|=U&L#
zTMO69g1-Ax#XMs3(dHUFauK9%|0>ZMGk2_OCdL=-SE{{9AUeN0xjpR@b#^dG3pO*~
zoE;OgtSN9$fYO~qM)mXDA7e@(0)2v>2}h2tH1V$9d{{@A0yoaN!t3Uo6>*DW!hnc9
z!GOn7!JmXR|3IGLK~&gj4|zx}e+^!kXsEa6ydh}ghW&9CqZy!UdgX1Z=iSV&Q{%XA
z61i7h6Z87bm#`Lr>X3aSPk9f*zT%NU{WDP7M`-#FNS$L!{X`6MlQrzR_gQD2WGoBx
zEr(UxQ4FQb-bZ!s)4xo`dkuVfK2vW=Xm=-Ddh0r-d}W76p+bk0>JO}$9*l+@ewBX_
z#ZF(}BHXAy{-(+%-K(ZC64%1tFdK(hcwgU`M7{pz(8h3XDeiFl-qB3Pp;=<XTjks)
z>zF)#dhjlmu0x|WNTllqOs??jzB>9|5_{x#bf)7!6Ml4l@Ax9*_)@3-XWa3xn&aPZ
z{6A$J|Cv4hZ|C^mQTE@9V*uj`P~fBka01djf!Lft6=K0dh`oZk9oKya0${{3cDGjm
zcK@TiO6)=J-tmFB11!*pAWouiI&CjP;VDJS1SCcHcTf}ZJ7v1A0r7ztNoW?Hq|Y<5
z^HpW?Db=G`cxx;xDKNPo!afP11VeeLp!@=P)C9<tY7i+MRA3U?-$fwblqKVV_D3@H
zsh>(dZ){@$GI~n+rDrgPBDlJsd~`X?uaYb2Q~4vMU5lj6hGpa@yHU>#gaXc{f`^Tq
zr3KEqo8O=9A?7})2Wv9A`D)@QY{A_d5TTnNUz1i5FoW2pw1gX}E)pv79Ir-qX7)l<
z+9}!JCFT=ZtHQ0#E|k89b8*ud9TF|eqaReUa>l)XCTROeXy?Qv`RBc>0Q+kSo=jO2
z)P=!njJp8!$zmtt{SecHkT(IXpVFJ%IH9KTc9H@={jP6`TIfa>5BuD;@OhxAc*meN
z>{Fq`V%t+aIh)0H)BSe4O^BI{BK}jMtLA=^TYT89(1#Y6o$tR`R3-=2y@=h{<7TQ!
zL$F0IhG<SHJl$-!J!@A2beOVsSd3mh4VCvY4C@K+NT7Qgd(7t;U$A<0;@jzX=eiX;
zv{-d<nX;(ZaH6P6|BJ6QJX}*b;qs!yL^Pm1>q~%gEf4qPXgAbUxrP<HS(!GrIBCfD
z`!-DNzq7ZW5z4bNokksMvcE}R{Yj*HVG2p_sx<jM=o8`btNKIoXK+r?uC%+LZQQCw
zxGCVqy``MH<C6X|qN3~fueEp5Vcm0u-9!sW@3m>wwUcUf{2z^Lh+$yjy21Ih`>#x@
z@u`VSx`L<?r=TtH;C3I#>B;-u!uRx%e@kU`rbB5fuT9@61eJ#V*8=*jW)IBSnxqRr
zQ()0-4j&rx`h?EUjSl)JYyVs1OjATUsGi?aGt>la#b{V+dAb0V$Lt4qhfKAfFmF8;
zs_G2_Jdr_ipw4^S{2@|B$)Cm`dfEM;o-?A<Kd$}%<U7|G4{jY$q1D}=oB_08)LI&b
z{hDK(s4zpv(xGT6y(EV^GEhYXSJr3V?d@9c_S?_n{|Hftn!n87Q)?jgI_%R{P8ag=
z>w4e4Ny?M4Ib}M7mn58I2Bn`?a9{qA3?Q1fT$@Tx&(LPd_NQYsT$}0Tt>YM#?85W&
zgER510WGd&{adol8yX!ix<(iG{~*{zRSg|{qf&|*-;FID{3T}>yUVBP_Bho@rq^|P
zxx80e4*NsH+$vq`4LbG&q>S3o^YEPbQi9QTERAv8K9R<Z#xd5DsD_zw-HvDYkFsOY
zWA`pS#g9x$6rQvnAtv#joXPgYStE=dkt6d^B9SZYHXGXX3RIlHkXBPCGzE%bfrwmK
zO}k0POqFwitd%^2M?X~Q>vLE_Gn4dU$+Hx*^~_>E$DeihC3f&R8fB@^|IF487W^bG
zTHR@@t5YOi_HfbfF>Z=+iqtFirH9*dn`?bd77_>1D5<h|2GUwn%jyJ3GS%tAdz?Z2
z#Kz!lju(;5;<vj(UE3L26P4TczBJzHdP1S{=3u@x*=jWRL4UG=m~}$Bfp{wejX-Oy
zDZL3Ik>S2W@Gz<UxH&GLoq^*72c<8Xe8jhcuLz^36_)mEoRJzq2hJ7>-}f7Q`<t<-
zJva<krlmNKjP=Kqf#Cmn0zX3p*%DB2T0UGh^Czne2YR9GOS4B34$qfE#DWz7+IA;r
zy(CsqL(oL(65WBIYp7xwj*O!Nb;llA*83>%r^Z)~V6FfVoUNk_@1VS}y^$;h;!lZ+
z({naQ$3cR7Vc)1_SIPb}m4&9tU*CJ9lWoB*z(GIsR)8zEtvK;sf%nUidxd`Q$-YUq
zuZN7o?gic0Mee0X+ms6QfH~<oroQFDgc^yx2)3QKgVC1c*`olcLoHb~dv1(wG+VJe
z@iDlhoJN-e(^*_C<0a+!n1v~+wnE?Y{@~-SM$=WF_r-x&ctSs;Z4E%_N+bryU%nWX
zVH~kc{nbp?`sr?<rzzo%r?6;!jCscXOT~q492^m4Fb#p9Wb$yJ*#l+)zt%PUUhQ-?
z4A#f<|1RQ6Q=Q)eu=*|71*06l9=0Q5RQ%ZgRJ?$fKKU2!O+PS57T8Z~Vi-8U;B>H4
z6zu&_Ak4)(LxYSw#W2W|;@TpxR1{uD#FNl5^?(f4<%FA>tCL`#;36@@qZl`{Q@piR
zn7wXo^|PeaaeeZ|?+D@72hw94Vu6E?`Pj|_edwKC27yAJKBVuwO&ek>4SZ;B%qh_c
z4?iiN9prtu-O>4FQr9KoV#?U<&!eU;z?a_MFsZw`Z(|p?x!weS{h7S((75ztl&ar%
zru)OjDCmXdvyD}_@^_IdzcBZSV*po{L(qz4Rche=%MX;12Q8BvF9w4b>ITOg5(vG_
zH0I4lv?xhyZG`mwCd+Yp4#XvZ7h8rS(b$mccXFco+RV&Z#w0c~w)t13nLz2(aQdGy
zm4%yoK&Soi{X8Om6>^>Qm}LH+Am=|t!A3E!vq@bE-uplb`!6z@!1z8jb)qoYNfzg(
z&Sxx4eodVYUCP21is{0lA6VG}|IA{0cBV`aTOuor2RRZ^`D<>6rm>0V1Hfdx06d_%
zjKSJAmO;2Y^xp6)&Xcqs1rJQn60M-ga#mSdJ0kB~1Tp7Hmxb|q0Q2-T;1{}3X|}X`
zK3w#RnNtAqpT2>Cg{~2M=(y&kp-6q65oCj>vgngRo;Yf-%5O|7kbF<MQxN;~-uci&
zNDx5NnU-+|)=LxA^TblJkhOh=UE+f3zDsKv;2TL(G<x5!Fse#_O%dMJW<a69!pHbG
z4<ja-437t1y9@uU&=YoOhTAtfz@HA_GRf;vLNGcWT`4t7Z?5NV^V|2!^q@i-L5#hs
z+o)fsV?6o~3qCj2$VKP%FS);h8!h#c*{1_<ny^7)c^azL|68qaz=GAeSrFpZJ(4LS
z03^sqF}i$*$$Q>Fgs~}}F2<R+vqOtS7!9JVCPEo(iOM!7LJr>#fH&@J_=ModZQL<*
z*HS>`;ps$}`Butv<(^SlB7Sl^5Wp9P<GMsY`@qXp6KT$2uw4s<w3b2WcD+ornR|uV
zh%n?dmS%4g5V>K&CS!*o;cx~r5Xv~2V+)P1nWu1r<G0*DGb++_-j2q%39;Y3uX6q9
zqebcavFv+-+pA037LH!PyGzb!Xz)&ZM_f~2Gjb(XOWEYk2EqxNUJvCsp)jSyKr~E&
zKh$N^x_|T$60CrNADAZsb02yc$JSf&bdrn&eX5b+JCrj?Uie%e()MbEUp}|v#n6p3
zS)7Pa&a#^j6xCpZCXhNBuK^fD_1}OMdwMU-tcw0`uzPC8xW0!rOb7$6bq1`yFN0*%
zgTdmR%OO$XZw=hAe$lP$haj5{D+1Kf0RU1RgxnGF#K?Ag*>8Sq?fCeIl%0}U`2zY=
z9Ko6#_+Kj(P4F5}C9;PsM$=L6rV?VRdXbNG%4*N=vh$E)DQ-0K+A%O46TlheacAI4
zTxQoM#)%74s%J_NZnS+#aIcAoz9SJ%E^mui`$Pud<rD5`XQPDhKe?XSTm^-zw6-;A
zA;;EMSDqte)LW8_Mi)eV!bcsBg4i7*Q(Z-g{uF;07%7Q>Dd|l};W-iX=yVJuSvKs0
z1{6oaIA#2S<KBb06z!kB$pl~CQZduFTdKlhLhHu;SNa}b+wKTyf`J^ht<_>;-`W0Y
zOyI1~r3D{<H$cQsejvPNL81^&VfM129B0h5clR_93!|+s+nW4S?IrI-GYdqf0!6iB
zY1ht;x(6RUcrrf33tMC!@S_0h0}efP|4hD$eA8NO^uX=fCvtJ==uP{b7d|W}1p!To
zL;pL??R<;c=c0Y|Km5ZNk<0T8aX0h!<EZ_})xSrf1HI!Z<k@+0R98fpKA;=@>h{_{
z{*E4+m%v!Y=yi%$9Rm{2PE&kTnE<OD|6{*Sj@sgtP#RG7`;pxcwJqxZcGO8dD7!Ce
zNA}g*asOv$MIVfJl#ky|KBYV_Lp<IMTT_}&dv;zW^7y;q*Y;^A86fqN9i4^3AP|jx
zL_HS(dNNA<mVOGLc3+rf*OQlp2k>&ywtn~Z?^;~_x1D+y43YBnPq%tKL-%x<nUop_
zv+s10K49la6(5YP?!i*1nq;p~U>2%1@K!23*U+L00GV;wBN<iHkN3`!Jgr2)&>!w|
zFRI6IJ%W>5`jhjDR~qa?l$Ud(Pc9Ux+P_)mqYJl+5jU~y&BD`BjjJb$u>ynZ?Q4lL
zyrqnqXdp~HiAwhmgQKj5l&qjrEOmbuSP-?6Qeo<^06DZk<f%)1<g`7lbOsMLsc=l0
zn16rq0ZyClo#K^t{db>p=MAT-w(aXk0!@^fWmI24lzlqg{d8;>R{S;%m0LVWo93xK
zL2dSud@j_`97qyI^W<y_q|s+YJ7*)qhhM1@xIx%{nc};sahg*iFe1qL^-~$WXt|ES
z|KcMTd#E^rC@Wkrq$i{u+`QqJLePL~fNq$+N|-(s0GMh9z;uwNxX0+}MG4aw>UTh)
z#290y7*K!o;;9cuK#Vq1oZDRVp0rvUh{3-)oYfWA0g6=?yl<<>&56f>%Rr%D<1VLh
zx6vGRZ*1h^ux!#0f&dR*QA|QIOnx{abvI!-E}AZoBYnnQYz-?)0IUswBs`elpKjKL
z?&2uW4>=Sv+wk#>_LW(pp%gH&g_S*Bu<m)n)AGAMT%h%`J0g+{*|v9b=Nw;la5aYs
zAqdnGYoOcZFa#a{$gY4(P;!0(V_|}b1odO8^T*3r*M}WY^0h<@XBa27VlAU$&=z3L
zBataV;y#+^W+3IG=eCHyjuO~4R_%{V=zy}AJxZ%h`!k&O1(_Hq!^yW6NtX_amP8nx
zK-NfAp8#NZY9S;LL@8;U384FrfVuS=KzX9|nJZnxH2rM=jd|#!qjY>|v^z`UtyV1H
z&6F{CIs@XB9#@{ATT8<bz_+~?Nlh??Mgug^5FHeyni51i-GuZz#MBvQa}q1W0C!!p
zZgIDGd_szIPLIRFl8CSbcX+llSwJgU@d=rcmwV?44_v`HoSMm>n)D$c?E)4t{wXc+
zhAO$Obv-9>MnfBpp>@Mh31U)(X`YIkWng>5o+0VUE1n~!sU2xzYqs^Oae1cAO4HJ`
zNnZ4h8T5CWuTe*}(4u){)Gq<09C6Gv<5LXdbE#bEIFE|c=P_Ja38x~3Gz#fvlv!rX
zx~B|viKIMehxobNjd(_%`>EtJjM}(d?|_Klx}wpMA||)z&!ssJT!hK0xKC+re|6=&
zD(7Ty&tt%IA^O?fTAkAJ(R8%MNoU0@y<CZXCJZk25?cI18j1jJl*R?OWKhvJQ=W7W
zs+~+X!xlHwiuf$<eCr_fzl73GJ5nJ4{&?8>V2bA!-jPaQ@3Ic{%Zr5YrHJ)oIeP^E
z<gcfr7Q$c6eCx~w&omU;ZRI2+MYLy&$Ff9oTlBlAqtZrXsVuCdIz{;cUEGmTDV7y;
zWMrM0*J(@z5Fl6_5ct#wCDD}Wmb=OOAxIKk34b0Vs=Ft4TUfj^Ad+9FeAk?6pF5n=
zK5Zc@k|U|ctG;FmP?6PPl2xTFc`BR1Blnt6VYBH>%uHI1mS$^{c~FUvOS)y)r_8-j
za(OC`U8u~DQFuhhV3;Kx#S`sO0O5Eex%CE`PA8Z3P(wLH>4Szc?2NhiOeuFyAWz>T
zq~FzVq$GXHD!$Lg8wFZyt!eXaX#b5^j{|v}0#%VNzvxttwjSr~(b&?8#I&e8oK!s6
zQk~*aEB=;um4&|LUK_9%Kf!_yigtmx+mi-!+fz4^BX1D_NODO{q@_Qf7IY_C1E_or
zQ0%8HJkt;}4c!sO?A9Z=&<&oF_*>-|HZ3TJR(aoB=tyD%X)=MVfn;6h&cSr`2VpVG
zD){Sc?faIxN?J*}aNpD_RT}HtJ*e6@f?@^zw^*P$3>`P(ukcs(hNYI&30f~*&$6d1
z35r$*hrjE97(={tes?RqwA^c-0F$TI;^WAKKpBQ6UOh+sI{Pv}z*|zCef@i=Hn>ll
z&0_F62};BiAxHp0!Ob2&&7MF_erTB^UCgPl=E8DLA9u`Ct1J=xlr$k$06x>+L=mk=
zT)NQqOWyX5FLq{fR(w8I|J>W{zeqUHTRY{L!iGDR1C77CTffCxd$(B|HC#h6BKBM!
zZ;Ij7zszlyOzo2BWmEa?U>ZnB08WMo_PS8<giPa5Z4rBv{Xdq5d(IW_OuMSvoVt?R
zJ|N!RA`SR8EwEH=5(O9BiDje{7E%~=)R=WX$!WGWb1DyXmI!(Gpw(ggr^EEN2;R+k
zD8~>n>r9o~{kOFnxzpWuC0e%YGQ0i$%Ycha`MWNwW?p$hYmBSaAl1a5s&;qe?Hy+W
zlI}1XQi0j{xzo7q-VbM=TqWLA{oU^T@8hd`M8N;z>Aa)a{KNjAgpkCJO%QwUt!QFX
z)UMr7iW;@5N=IT9HDa~4*n88KYQKrSH&v^limF-KDq26!^PKbh_de(T>mJwnT-Wt}
zy<`r7A0~-5O{ChUToO$;|3$FED`HyMU7rdnZ#!zRMf!_432+r{Qw5FRukQDU-aTnv
zacVv;(cLv+UR5t?J4!A=()reT^F4pn>2#dSVpM$1q`Gg?_6bTod`Ct5JIs$e(%LKP
zYCPsQhUq&CBV89U`y88K>DTYo_3UOP&23Ze&A5P_{($zi{$sX*5n}(JevFh{Me{L(
z7@p`&JBX9&vX%-UqJjdf0;yjG-b){3H0+Jj47>;f>>KK_3J<<Y8oE*0pEEjCusc-b
z{3?caxYTsG+;3P^bhxr^xOQ~7zKbhwceq(<q}6mJNVTs$X{4iWq@8x;LEr<2-vd3w
z2RcfllZPYr?4vC~qdB*@JqNff-}Lt9KNuYa_nCrSD``jaM<>Xm?{>#5mxE|0ffIK!
zA}1d{`%M}`hNIgq$NP65Vh!cDXeZi(o>wzr>-Z-s=EjF8dr0_+XT`um<fKs37|~*a
z0`n-_3!V37;PdWe5H!$(0OFBj7RSU>Kxjt>B73Oy-v5pq#ZKLaPk$gxQSl5dFTZYO
zdd%w*i}be^CV-xb&Vc{Y{H%K-NPN=M$piZ{sWq1GSR21f9#G01f8T`VQ=RrtpX~~q
z6`{k5OLO1&D?#+K7DJJS0-tjaA-PZEwD;yxI0AGJr|c{<TNji)-+Pg4;;1cR47X8#
z4`XgD#H7QYtFA>mEHKgo;uoUk@c_r4^0A?I06OG#Ca|N{AJbnw-H~kViotO~{tOI<
zrn>Eu75bN-bh2Z8|9*TjW)c=Ytq~vRV*N2hImY7e$I>wdC!>$;!JpnEV*_~Dnpyz2
zI2O|i7F60n)8#a%ZPjf;GT!C6oekrow^R(|IHkXHLn~oxzZg2{po_Phio~8i3j$0&
zf#|>!OS36Q7ex82U(BL?-Va{YwHMzml5z(VsDlC0%FpKflRok^Im`fmoUSOAFj*OZ
z4JeePZ~&S47l!WFqfk0kj^Hyb)z#KS^^MQ(nvwfFD>FSt^z@(iSl=&d0ha$d>3FV8
zufR8r@K@97$y3nupvej(kyZP>Sq97Uf+)h=XhS+_;_s@=zGPc`V(+d0ItM2N%-2hr
z$<lyJvdUM`-B+>OJ?r88E1x-1X7y8eQ&MU>QmSf~t+k^8Tkd>hR2>=C)bw%c2fL#y
z#F<x>Nj)u0DD!&4JZJUX*-1Lzw?YAj4B-w+NJ8d1UR0DE$y#26`3GypzvY=#x#v13
zWkD0)%}JHwCKUuaF9!T}Q~f14&qKK$pJKVBj1Tw#OWNN?TwDp4zb5r=xv$E4@Y>$p
z&(ITRFW%q6BcaY$pi8+e!=ahSM7+%(e4<!dxpwyc2I#tA79D2>zj21p&^M<KJIRmI
zeFHKjAJKF$euw68zDS`=PEk!_QJS~~@_A_a?CAUJ0QjvANb(`XDFNmx4#qqZDnVX;
zwHe=UqYeZIenw8Z>@YUUyI(&U&pl{@|2u@c9EDR%7Cdsuv0baVOhFMk7|sIYP8(#L
zr|1!IgJ&B?iV_)|yXMePgN&AkCA~&cfGGB<17FlPBf&#t%Mq(2qEvn*M^aVdKHQ%_
z``^Bv^aN|mCs`zYj>p=osW%77vj=*L%y$al1v-bfa6f*U&wdfFzjMS=^ojK+;mFW!
zUZ<U#4+C8MNZ^%vL6^$V@X6$}+wm)%ymU0@(evEztNT8eVPbCplVgUxZisyM>w&ky
zcdYmyQWgEqNSw|oypSvR#b2LOr(eu9b-43;TsL+3m8S2M*|;vh-~=fVZk7~!$(KI`
zJQ4fBk*f5V?+*{7QK+m)aO(9q*_`nE)`TL;umj=psN>m$njb;G2Xgry_!SuA`JYbk
zSEW8j{%eg$L?LzgaeQL^U;q3p)x6@#uQSS+(&}77iG9k1JVi#T2yusWf_LMuPZOb<
z&jCk=^ss1*<aNg=YX%7o75mq9msaA}H0I~5z#SuE;c$)fK$IkEBSk4E8u~{&g&hWR
zL>-2kQR$bimy6eE7;LpdBD8K7u5ZT5v0dek|A*@UGqB;{5z&g(+fuKWNwl~4#RyAn
zq^_?x7Vf1tDf>F~<tx!hSI9H=>(|tPK!WbBr#@5S6w{CUCBCRHUrADz<|*(R|Es@Z
z^`Vc)J-|HF@>tTZZg*U|{j1>5gk$+&4DN)3A!jhv#Nx!$O>$P(6Brq)gMPbo&aLVE
zIKON80-@#dq~QI^Umk7Or-dI@|M3>N#>M^jxu`z{%BpXbi3wy}QxdJsXVJ?JOrdep
zF=-C=q<ryGz*&W(xy`-rMat)Uj~=@bu80lM2yG8S6Xb<5v$J>b^zf}Tc7Z~B3Bf)n
zyQDdbw_0@fU8cC3Mzk#5WNwRlx{6lZk9w;(%%u6cZ6eYL=vOd(BU61Q*sb_0<eMUV
z&}m5ErG*5Fq|*~a&0tR}ePhT9$}gF)I`-~OqcL89J8_RI;2U%P<;@Lxh}&xgmlB7x
zUpsLnF{<yvfBtBXs$)^~)LYb+bVuiAup$%N)P8nbXs^6`^!wLe?(o31|3N=Iy*T~w
z>~a@7DDAHQX0WY<feV}kugXs+(N}e*1^q9mfq1n5n8x(L3NB*96L=+NDK-trj`~3a
z@=Y@^DzLy7{>iy_3ZNd5DSmgZ-7l7C80@Y=Q|41>n^Z)nq<^=X+Sf8MwO|Ck?PMzc
z4><p#B(}_v!$kL*lqIFg8>&EaeZYX^fhKH9ya{riggk<>SY(&>GVf(Kk@j}I>$$lK
z>@9O<Uy{D)it5C~0h=7j1PB$^X$$a%$RJaP!k8xWn9}8(bH<p;%Hw06uP?uQfrOLf
z2(gn?SZPt$^v6*Xgd~)~gaG5=%=J4`i~H|@Y7!+l_CdXgS767$8^TbMjt!@r2oG^U
zppA2uq?M6VYeOjosj&gQQ*@90Y4?}vb)tlL`;;NIMb=y~XhkP$|LIEntj<Gyn|NR{
z$GoMWn%V<^o<~_suZgU%_n_wu;aL;c#}Xi>Yt%;kOCL>=PpqxaS)LnOysMqJHI`{%
z;c~6~Ayvh2!6FbX3Oj^3iDIrvbI#dB&fEDU8<Dhl-SSRus|goouO~`>;P{fH{K0Ts
z-3JvzNyC**ru4q)%}+sj)eZyi(l7Y3(EV!pwvl;xE8tNYyZPh|3bt*<5^$y@(hWt;
zOGKtqkB=y8QaWPRV&LYGV$g|Q6BY-x2}G9y6?n?-W;uwo#;_;t9c`C|n3BLWY?BdS
zS9-uVAf=K~@vN7AHhHhbB~Cpdr-&%P6u9YHy#FpJma!}CWHS=<Uozx;^FO|LheH7|
zzH3_rvcLZ%5EMBgh+{!vnP4`lZ~_Hu0}m5(UHhg+q7c13CezOFsLSi@gLH`>^xjAE
zujS{#T=%N0!@5sGi^Bi>Ao4X0d6!+YI2&NI8zcj1thQo%Yg<<xO9#$hwn4V#i#`mn
znPV|PnEm8I@_reT_qQD6WjbUIX7uDi{bl3|0L33g?QMnz>E6b>w#!p%Ge$98iDJd=
z(Ltep=8;xFE(?sL;Ugm0?QL$Yxmzs=YZ23`&`qiH1H_KSS~E8#f8vts(89z7rNAbD
z7KcFk#{f!CYqoaB*Ch5Tq~Yz>9;hzIHL<{LsPGL6zC;WF9$QT5!VRD}y!)E*?<mNC
zCAvPwqFXd3UUZEt!1muMq2ZfJG~xuwY;Dx7mdzMz9txuAIs6~h7NzpC5wD?|m|8vn
zD8YetPUN5x3Rp|j2m#P!_8GEwGul4Qb)u=T#2OW1(w~uw8E|5~(u`KI%pJ+~W${!J
ziR1`rO`s`^1Q65?c5vS%T=L9dYQdRibdIym4>c30EUXkvYArYA>2n748=7K;j1obj
zwhF=yjCr4CH&r@5nceRny7PAdM4|RI25icV*edG<=0Btj%g4m?Vp8Sq;gW-^LKweZ
z7yvo2=DL4E1Zh!2YIq<p7zrS(khf5K*qc!znFZB=Y;|CwMbK<W2?eH7JDJhajRj!I
z9ShQAke@&c+wj5|MGTI`Cxh`B@a|nPQ-(w<u$&D-;qRvTqebhYe=Jq-9&&J#57vUC
znDVQMzGr7O6iybc`ia@OpClne7N1kIPTsNWShQ_?%39|J9<a!XHiIW$!5<e;SMS02
z?$HTQavQKpdnsWT<~^tCW%k{1>7Gc}B5M<lbr%D5vR6u*<6G35gqWasQ*`(#X4Wf!
z8dv^DHDc3d{B982l0BWKom$@5uD7w1<4hr2dpD|1&3ei4;|I3a%~^YXK2A<gVlwz%
z&+P>~T5|e)<rya>lkbH{I)CA1?-;V(56&5JUI&$ROl9qdRy(<TcU8@s=-UtLSaLad
z%HFkR`#elk1(*rH;x(w<50t`Mha&)#M_}CX=y?q7MIFy!R-;q&60ml)=fBmrjp0yd
z48^U(jw|wUlp!NXp$e*UD!q3wJez2vfT8$ugn6Yv8%0;S4iI2Oe`@fNfZkl^;paW7
zW$D6PvLC-Gg{=}JiirT~>o}myd{Dw(Ab@iwJe7};loXi}<ztDZJU0GFVMLg@&!H|O
zqIH;A?d++l^^j7=J`jqu1WnR=0fkQGwAeJ!FhOcvNfrvo;k>MJDRxXYP*H7>b(5}C
zjTbC|gXt}Marm-;B_UVeD0w5!l?mk{K`LQ?kLJBDI~gsbq^5&;-O`LK{fTX1lF*8x
zCm{7L#E4Xve$UNjtcUIFe%3hfAf#sQ16ae+a<3Ob&})aI{ph&2o0~Ln@v@KC6X^=L
zjp}XQl%m9pLe;p6<0-1JiA7ML*h@Mv91+PlHZRsjk{8kanxI<AJD>fh6&0L+8Bx6u
z@U!#NO2EUeGic;$)G~tXn(RJtJI>@I5P>zvS2V7o)rrJcZ<$6D&wz{;dcd>2WDv(3
z1%<2^kPF~}f$pr+vbTSrCf$!u|2BGiJ~>3^-Z*=eocN$od8n%`7FWvLM}y@U*t>Fu
zdUT?Kg{kkEru&$@B`n%m*{Fu6NEB6;P~4Sw?g97RjQ)5^uC&|GyTI(<mqYH%L~!P~
zyWV^FjAz$P7SvThMkpe|+4UNza^38x<4HH5iwEv7i3reo`<Kq!kOC_(R3$}d0;}f$
zgaT)PMw*=vPPN!57&2CFR6#=65di`m_?nIs?7MVc%aQs9VhaBbzI+Ow38a@h;T`Gt
zQYHF2{meY)H5XIR_0Go}n*qXdF->5}o0;j(hoA4arNrp&Qcb4)0|kUroZgn#Dre4y
zy(<MC44-2CjgY$X93-F%?L~#HZi1x~*^NB-l;icm%l3DN;Hk>K@A_(YoB!kcw<i*L
zW`{Ruls6p>lbnSfe!w!<VF<$lU=aWiiJhJO(n3!Fnh?O9RNzC|AeiUXBXH>I@$2;i
zSrLHmHo&tqAI!}+!oFhf`pc%rgCY1>du)H%x^&e#h{1?LSqA`}1dRDp!UKV-7B(7_
zK)X2b$;Lwz5xktLDn+^~>>yV%nSg}8n&gIgfFuK{E}5{g-p|>bF#wuFfO2Ic3lXkT
zhYE`tGeP~Xie=aoiQhfoj!%VqfDn3QTCY;dS-hPq;ogTes&i@Tb^xap8NhNAOi!>=
z+M#AA06exIpm0D13@P-0LPzkTYYhN9V!TpxoH9sUFaQJvXlf53Ul>?)n~6=P4~UHq
z&Lo6gk&EF#6^wx1-B`WH#;nx*dYiknc4^lx#-(G(^jARRjm?d2^j8(2V@u3@3=aID
z8~kvJK0%MI)NFg1mJ>b(+}Ux0;UEu70e;e~j2JLsisnNaN(YM=30gcX*IorX#sIk7
z(`-($G>6}NDoRhVB#=Zhz4#iXw{-QTROz1>9NiuuvCECGahNZw`|7r9=H$cCVzw+a
zv_(kZh)AL1PhE^YYA_pg?7Qxa;Sy-(mbmgF0l6HfXrj{C<}LN~(uAGTiA}VsQ5FBv
zy%)p;aW({=8!?o@J@n2P)Hr!trw=qyda}DgvFXDdJMqU=KcSamUW}iU8WR++z=G|C
zhW*(32cQ8ALpnyk@3^r%mPxZf74=Ww6hRqHTN&9kxWr6Lup3-owbBf4@z5Y{Rg?l$
z$eIS_+%`xK+M6`#3<%KlqC}bOWjYvSeSOkO`eQIhixfD89+?N=j2XZjk|_(JnuM$Q
zBbMFKV|JHPD3)K*p`7RPzJh2G5?nYf>@=fX>-%q)45UUgRCv>e!<}J<HeAIVPvJFU
zXtA7ra}>$kfS)^B-`GweBUkT-^I>ugT(wkRRUfCS<wid{1|LT<Czk%3HwIrc4Sbkc
zcP{T;R?zTVQ(-`>hM;MAX?etf99_kfH3v32WWPAsZKXuPcW&AYWsuzv1dPB(!g17P
zY{|58#u@2#r*rN0ay9Wkdrjib2Qm_hRb0fi3IJNSGjy-Db+{`s{0nkM+>uuJB1DBz
zqVG`}Md>v+Ud!H;&=wGCSm&OMf^Exv%q_hh)1533!&YLgXw{|!{{s7>D;FB4<}n5>
zAOoxbn#Ba;%c4w|#4*hxvVy{_P+*N%ihJ(jSGxUHbvpvMx4gL*C&%h-oMve{bTVHk
z_uL9?#B}Fbrm=GNhO|kG2sK9K-WQdU5XM~_Q36_;K1!<O*hGuPl3DpJO36r1X>1oI
zV-};8Pw5RP6W>Fsg+NjQdNupqknEePTUg~iEZVtG{fUxQa*UO4w0_+<)V0?}sCJOp
z1~El}sY!MN$2a9{d7_1!tXP-uF`Dmy7UJmnsw%)@zv=PuW$&8(8<fL9F>4C5{ym`_
z#!x`bhETKKjkg{zu3SrTfc~~Q3%w0XXt7?5p5@0Z7ylQQpHX@_eK*PFkZoa1Tc4Fv
zo8hIajdc%&%P7A?e6!UrYiqwgxOsa}e6J&=Z8cSe>sW=;OKXiM2c?f?+<%CdqWF&i
zU`Mr=j?ytEb5raf6=C*y3#$afhYx5@`fN8%IqV1)5pmWsVT|K#5Ijm;^@`6N#$=DA
zgbqSaqx%Q-ahohoO#Kj+I3!mE&cNEM7~m7aeDkBe+ZSPkx81Ciox)O<?>oCYt6BO#
znLK+pL%R*b2ED=)4WD(tWS!oOcv*4V5cH_z?!A3Rgx>Q|whI4M1Ms>5{9Av(A(h($
zZ=un!$90EKXYC$_#(AN(>@I}DyVqz<{DOUsZK+sb`4yBR*bwzM0!nW}v~IzHhIcO)
zsQv4xKR*qP?A(fs*L!@o@^Kg_SZHgtq%u^Q1YD+my5VI*U5qUm@U%`F@KfQUG*-F&
z^`RkuIPMs1fRZgkUN1%l9S@-CLrvnz&upGQa2}9;%8pa=w31L219(SLS3L>{dGLO~
zOZd$~uPQ_0nD3WcPerNxmU_-D#3TKN(#A`(d1W&f=II@wtWt;ShVGe9#o}My<fu!H
z+ZRf2fgt7wUuZNLGXFCC`8)pfcg8>V+%rf9@0-%zP+$M5-a4pXXDO=~%Gw-w(_z7E
z%sbmJgx>wzk#}{Pf;}cQA<53iV!C0d8~xO|iq`Dy-RJ;iYg~L0GQRXDw??YL<@I~f
zX+sg`1FUR>oQj5MTP8w&7$AKC&pVN0UY!6-VDq;3GRS_EIQC+O<7o3^^5+H9K}jBj
zgzg^H#Ale-Xqas_8Lp6A6#BDBMnZM>^wHtlfz$7wyVoG>9ooboGn+&Os!ypdi3r-9
zADVy+Ma~T1=C<|}zi<u0W;01CC(})*>>kW~Z;zXHtmI6s82N|LY58(3`=#%nra+ob
z@>*k9Y0Wxa?SjXv9Lekz9FSuyn|)7GvLZV*XDa>E%OcKPL#9_>-Lj9-jkAgM`3`C|
z>K$*@bN}Pa?@@nOq0XyUtEMs1EYhFf=v&bDso*nbp{P;Hmz=`yp9&9h-d%2T7X8jC
zI{#Gk;6~A<1A#i1K(p8YS|l(#7PIFTGbQD7bCn1>mWXzmF>0ty`@Y{9;XRT3u<e^m
zCDpg#`(ap!_@fvw+!VF@vgB57xx<eR6w&FHk>U%vlNkQ)eRQ9ZskM1h>KK2egXsX9
zY2E~I1ur*but=XhnvoF!2BjH4^F#RgeGQhXs+|ZVXdpyTgYk9tlW)ua<EpFN?f5kd
zHCR&(K7sC<s_vMMI^X9#Nt!q_rHordOxDk6j|oJ()9~LB)seUgEmnVLoeJE|=Go&8
zH<|?GO-t>8<;I{w$OkF1b)tDKwSINNqjgUx>Z5yZ@V8e!j1ezo=ez9P6Bv}H{V;9y
z!*Z!`EX^lm5%N-8``nP2(f*F^n$qti2pwKB?@gprhfE~LbTqq?%;zxA&)NI<$dU@#
z072IVGD6slM|h2mzQe)X*!hZyd&Y5h{H@Q?CKdly@UN!YcMkdVoy950WzY-hvYiht
z;>)$$0e!VEu;DkYx@Nc>rQAMf>3nl8H+#ZOq*(3<%&80MPnNj(Ydz(c%CA4&sK2yj
zv6>7gdItiI6Ho;Z=~n#V1%co9#8%4rmz>(K25S;`<ed=U@6bk6#6hWcIcbLB8s6>9
zX6kI%^CD1?qPY0{hcTEqVH@kl5gGM#c>6=7Rhu-rB^E80kdL_3A@h}E-hiElD-o};
z@9MmOG@Hy+4+3GnhnhbufSgUf20+S)$w+KqN9<&D3I2AwCdC7}8=4ld<(ZzWn6Wo^
zU|MO+K7oy#aEY#_I}aIPy-mnr#`~F+qrWXUFBloY@|+^gl(bAt#b_o@c@F}a$*k|Y
z8WB7UrT->N_ez;{885UhH`@nPvFY6JjvjVenR_@gOt%cmIig=Va&tQ8&%$xlH&-;L
z-Fh%(8*#)wLoIykzNMJ1aL5l%k}hxB@uR>m6#GG<2C%0i?YG1HUvwgG#G`~ls03}(
zz$yw;yhK4|ErbD?k0uy!HZ`Qb@~~Db@ifS2apgKZ9dXIt(qmTNe!JlF`AVDnldEjG
z#Ga5<bIaZKV2vzpVAqcY+2!TL7D!4kjo9qMGoDYjiZTz<Wdzq`5{zX-42)kcie`}%
z8sEI|%B4}W_R<c)>C8BH$$)<Z0WMnL@K$)l@2!$ol(g0y-n?@6S5aIu@*`XdivE;=
ztDiGmzfsVTON*l(#FI;p+1QFTSiutn<TZI9LE)$Rb48Y<5R;K(m+=rbi90(F!L*C5
z`5Nz3QkuD8vm6!nIbzxt4;e+?648zP+;PaE+po>eTeW?Zx2$ir6$1_>L8v}7>Y4ib
z4Ucbpd_PDv-xRqGnptdjuE3MCvS&^msWy5YtA>~NJ>?4*%=&mI=vWo8Cwk3MH$G>m
zfd7*-(lu|K+jwECX9~C5z7w}jy!n&K6pb-U+xd_B(kN37fqiBgTZD)~Rq6r03G$tl
zUgj0jfC)zwHKjkS71%_S8_x;0Ghn+rz3V(5u*q2Kf)43O<%4*Sb7jx?g+gf$+lY63
zCL6BGgAZ=$c`Oz6I=!bf#S)Hl<*51v6*#Sgle5^r*#|o0+LeujXw^5Ydd;fUN4!t@
z*pmx;wY0CQDN{7_{ns_^#?Qy+|E^;QWTad18oztVy1<>%(n8wg4I$y==Qq-(NU->+
zewwJ+k+`(M$tj&1@s==Hdf$tAV)qRwTnBfVX0eYQcwsQ}NpIS#YN5)q=SIa!Pjyyc
z`nRUE5W{cBbu~<&PtCh&itV%12iOn;E0T`&ci&wp#|ybVx#wMJ2NK_n!+%|CRpof;
z;NUhAPsO&`+jN}Xml(zVv7t^fJP_3#>)B6tdbp0th%ei;DO;E{88Vc()#CT<hwx~&
zg4cAN&#}mO{$l~#niy1HA`~J*urDSui&+Yq)&HMBtsixv(S+)u35VRy&pt%DRRZ6o
zWQOyv#Ya<9T+_tZnTo$*lQPd#V=4jVQ!sq^w@5Q>wAk*S8t>gK&_h8Z#p3RJrc~1$
zDIg-1ZK0Ck`hn{L6c7aJ2EnAVFNM%Y_W`zacFo<TSrw~YKrowA_$0bdMUdGwJ{-_q
z#A***;Rs|>8QNd9pUKir1|#5gbY0n-Re7qnHv`6#4oz6km~KD&YV)7f>hPn2osX^e
z5B_Ogoc`FFX`G1nnlPqd%p7y<UI5(ZX|<uDt-@!)Mp-Z>cA{#;ZoSTWd{$6bQuz=}
zS}9b=j;Dp6;5SGc2!Qbg9s(hr`u1^(JYm^!Oo-0GIEbIw;GA(RXFLYQhR9}x$rXNC
ze^GTp4aOP<dap$BXh7UF8w)^7QWZfzXCOwVfr8L4!u-n!UOKNBZ&?eszI1xr0L;fp
zO%;{n)!!@}D=19D(p>V*ritWU;mj(Z;9weJ#j#uwVkHR@HSni@rm(%){w#NUL8AOY
z017T)Ts1e?+hhPL`Kwz;04AhPENit-)C1CTU<@l<^CKuLiay}5ulV1e4FDyoFyCv8
zM~4TRsupmlrrgt9UqoN9bzJKUlWWrLbB>YHuRq=6HZ1+KmUhpa>LOha+Mo&Ae;q-7
zq|^3X0S}@Xs<<Zm{^w$(?1w))PS$U<o-B1oR3s5_U~VF}kHGdm%>adD)1*wX7Xf?N
z&Fb`6zMs>#>!|pzU6di!dDU+swO}S7it4opTw%ZyLBzE~05b|>%1e(G$JM_(KOe~4
zy-=J)(`YG8UFvf`Q8Lr|{#<Fs?Al+YS<4$*Kf6qB=qS%S_`X;E=o0x?naA!rOy!ej
z-V>EYpW65J3%>9Esw@YMXsND5w>=pEBDd*4ebJ^wzv5?t>AzQ>Z0WsSjk`Wg8cn%^
zB9c>)<8Rob1k*@CzZ6_mw+bRt_Eu;^Q6LCgRaZ4cAk(vezsVz@>U(tMht9{;qx+&a
z#N(F-V`V-ybQU!W@`I`s<r$+?leP;f!9w|{4ps&{;Am^k>DhZh|DF;Z>ezDR0qZ(I
z2gGeAg^I#IFD&}Uzdp0|fp6n`^ToPs{y)ftah<H$(Zj)m0T4%9h2G=@gg=}F(ZEKr
z$<+d=tu7J21jI<tGqfKhoD{?;C$GMd${-!?GNS?EW7=7ZK3?JxjG$(QN8rLA$rbZi
zFh;G=GBSZ<`qUP@C{r0@qO>pg8IO^#SGEJKqZ0~?PITnWt96}u)rdegD}Wd%g&lk)
z0pbM!@y_zWJLLXs&2lL9?v9mVSyn~AqP|!}F@VmS%pUs_@aTa>QeITFL75nplp_!r
z(iH{odDW|^f=j3i7GRk%GBP@9#`=@NAjU8Nb@&v%vx%=3W;`SnV5yQ<HYdQjnXjxc
z659$9lofF>_=HqQw8EQ-G-MC`wb<nk&Gu*ro~qGO!2y$5a$qgJC2SC26k1b6;qsZ-
zYsL5-E9y`Zjg_1T6E8Vu3PE2mDg<)%z#2Jox<0S7PP)-W03&h$G%Y%#p)C#2UMCc+
zr8}w>0R)Sw5z~m4W{NJy5J|u|lLj8t9n%U06HKDbb+UxKJ+BLqy=c;JCC_96Fh&5J
z{!)|0)z$n-r7daRv#E_e=G<vNkaGPaE9sR%@RE{_Y69gXQ?(M3KHf`Rlsw4RPg8ju
zlbLlkWCeR~BbD8?p~k^Do3$fS@O2k(P1$lrJsyv)<X=s3ZHhYi#9YLau5ao>iEw;O
z09#~Z9mal|7fmZdUn_Z+WiA$HrO(v~p}y0MDr56%tSiq6aD5xhB~VVdwJA>P?h@}A
zkXS%2qak-oJn!x7XIpEQ6ce<&(rJOkHjz)4$Ebh7@nAK;^WG}(S?D6@jvOG`qAc;-
zD)P$0g%V>7$7opxf=-5Z1u_f39&g;MSr-!8Dx~RXVp@dRE<8&Oy|<zE7L;HJ?g@{O
z0Nf7SEvfbq!lPe*->S(`*!Uq}wr`*a!R;&*fB5EQpA?nql0(4hCb(F*Eb?O{fGraP
z1fzTdg!G-3*5@IDj6h*-3rm2f-G__!LRZeOs1qJF5{-(EFaN7I?7b=mJMX2a3+^n}
z(ua#l;!Oe`o?}<1+1pCWZIl=$%~%ltHlJ*Nf2P1C-b?K**pY`zECYdjG%WyDcnVDR
z*A)17#!ft6prcSgX(xpBvc+ggy=;B_{xy%1B+>{jWgd)92$LH%<WNj1{sMp?acnjQ
zBR<;v3SMM=DQP3&=W7@k|5OxRg*cz==xDO$fuVq*MSo2R6VJ(OyPH*yfV!TR0NNJz
z@^LpDBxTZ3<z4YRiqrl4+ZJ2KUgkzoGD<l&L+&XJ=#J&b$!Fa%^Jb7cgxG&-VEvT@
z6LVgR8ZC~k<xi?%V>ud?#h6p?*Fkj{Q1kbHfoNFGEcn%RJ)RW`*Zov&m<N@%_e?4$
zjd;bp5dm7f*ACO{e7|Qs8KL<mPMpR55NM6sx&+ExZ6&qW9XuJ?3uq0$`$bP~23Q4%
z<zWej!%|pe>4{5s;}ugG<Qh^=8Uektie+i2sH9vG2Z&)*cQPtUW?QE*@HIV*${aKu
z&eaJA7C~YUU(w^cW;mZUNNJO36I4@lc_8xxsf@wT>_xW?Ab&(T_5*!rH8(^VH{}EO
z#`9iimYM~U^wOV#`420*{E27ul24DUlw5YA{I*;hO@0E)2xdILyQd#MVOt>fvluU&
z&iTGAQpFaqg%nMT7mnAk?|xwxC4=qUtD|zh=6z0i*7fOPjLsU*U!`cGLoIz!Y;|(5
z%fRksl_KA|GD<7i7gjkJdBh}0z!0`Ck3<?9b(2|@_BUwt*X$kX=_xgp8hP$Eh6pGq
z?vv2JjewJ7+yjxwzplp)Ob<8R_^7OPmej{n|1K2y{#q+{)qKr{h9T~H+dR;Q>d1}3
z0F}VQ7taLBJ}2TEWcO9{&TFdqNMlYDB{OeDR304s+xfYGsJneyKBIiXw^E?<>(NJT
zOrNpPZS5*lxpN;Q0=(gZqzX>n;K4!h2Cz&3MGOJbU_$+b07=1!zXkj)z9ol3{78tm
ztS81SByfu*G47fS|KWfXA}Q=)G<qb;w}4ioyoa7#@D1KMGp=wkELC>DmfLDx-7=oT
z`l0yR5eW>JD`x%|3;ltF7G4^#7h-fr=dS|)93^Bx69C3k=vTf<m&*>jiXn&hQ8Zzt
z@N4sPQHr$rpx!maek>1Frrj74p6>>UVt^N4>0<NXRmksj2$mKG5NP#H#~O_uTSo_)
zZ<wElYF%i$N4#onkCRkQ2N31JIXtr7@kC0#7MSrPFkx)OXPtkt@<@xI*ZnE?r3B(l
za|`e(RNh#5H(huV>T(0qu;R`fxN?l5;OOLa!^ar{Zqt#Xs_=|VPXIy@B&9Rm@mSaR
zN%A$*7>HPD`KJ>04fn5VhUyVG=;$oipAXG?=LnPestqeu^+ln9S86v!O8}_N3zUPE
zDrMh^7cW`Nx{Pz>|H8T(_u#R+-vSSu<Id_3={heOr6c6m^+meLt>>>U4bikm8DOk}
zWn{!jR+O2rjWNy@0^5ja#4C>cFRw15)hE04cL#Lrd$tPZX;NYoXa&`hbtUYVR8;cJ
z?k(x+4-2@1E$_vqyQE8n_K<PZH1$|{ZKpuOE5^rPZU*cAu;;f5j;Y9Wu<EuqUk4p3
zXP6H6Gc8Bsx1;?$buC+>hDcFT<PB;2LCZfnU*7gGkv$a-?ak7KZT}1jm`7jNgXjvR
zRe5iSi;0v|E--nNuu#%q(%pRrbwP_15ktb)8CUG$m;@Tid<rW*#3#$*uWW5Z%D{Mh
zK8nWU63}9g!g+VQV*2iC62k{Y{DbHH1N3h_2Gewz(~RB)<FCf&aeDcdvWXDTAlPL=
zzhI7Fr+&p?TM&%E-Jic3n658P8SSX#g(?HE+E7`PrPDTKQ}t#@8BuxK8!&jr1q4&U
zAL{@<kVO2lM&E9+(#JCqy*!=c(nl*Ex*G)i0^eubzP~7<i0KQA(uX6wsD!*?LPZ1n
z;r<I$0fTq$U_?E7-EA!}y6CD~Mpc$Mx(<`p_v#GnOv^*(`&^K~IE|{OBHIBe)FCZk
zMV5Xyp?>#l-8+uJSV!;7)7u`dTX(!G0V?Q-_^NyODmK)n+$a^zY`;IHeeh`<3~}lC
zg^rj}Qjwif{oZ>bb;I_I1)%Oyc|AM>UnQ>8{LLZ<3h}0No$C(mg`_=(sGXIFWDX{j
z4W1gC;4X}!kR*J|aIT6zvziC<;NT_?4ro933<Wd)OI@C}o<n7v2Zx?J<C*$N?@kB6
zv3((n38|rwN)u8^gzk%QiQ0bg(s7?yq@l!1RN=5e?dzPZrW<nYZgxC19QJb=bw(<4
z_Y$W~;+k|blm??sDHF0GiB(2*cl+u(Nwu9ue*5BX3r0HpJC?kpg7uxWu+1j0Z<&2X
zp#rp7+qc6?p!`JQ<*3gqXVR-&?wrlq53Vo%Yfl`O0`z17i4i#AoSS?xmnQIV)E^gg
zjZGpCt(5)(x>k?Ap)IX;7AW17i?H$IX*2O?cOXUpdmYiFozy`qzd@5|eRV(nJ{U<N
zg~umqWV)(KtnN?QE?@RAPiDoi6>Q=c7jkSD5xC1LMjYq{{@ksdmZ^V2EGdq^u}6pM
zXmjhl07FrNGh(AADCv&u<q~h{nYj9e{^S|1L?UAnDV(P`;6@K*md0CZ8e4CY?@vOQ
zwh!(tY}T))n|<Pf4Q0~~FHbNvCB5cAQRf4q&~$4J7DM@_!}cTV`}G^<0UuAKzq-n7
z-fh@4z<&*B*m^3n9k>56v|;;Y!?!}2oqx37DrCODZutH|=6&6z%<j0%-h9K}^z+^6
zn6JB|U&y<H_Qa_((uT$8em4umIN)d)ND+t){*h+xM{kCqH%B!JSls6{I@r4_3y)8x
z!ZSdV06!oBHy{(^Rd~~U^ba{A6+VUDjM(LmJ@`kz=lAuy#cfkWs$KWWSrqZx)aMhi
zt1>VN43)ib1pZS&|BjITLpuQcZ3Va{cdoK?ekOy!HzIZoprKeOdAuNo$kk?jtjW-A
zG*K5LcXFEjTnF}J7EST}Q}?fF*tKr+oI}WEBhM~N&xfX8(+vwrSQ`9IXqh!M{=j56
zRp27EIQzb7Tj|?PR!DC~7%dT)g>vW}aVsfcVveI9xCFwF(SY~ch+Qg}rhI3b9_~Gk
zBO{0<BR;Gd1rr)#S7mXiLha1TEA}4cmdUgDCNLiyF_{LjUiu+Cj#kD#x9}KJqwtCZ
zB2{3#(LZ^RxJ7++4=1;UkSv~k?U0pxga`~qEHwUsObV(^1BDqyxNU?da3b$!*bWZA
z{|d~bB{Himz9(A1`Q}U~b-wsrEqrtv6E>a_H&{o2Vlz1DV;t=i9&wc&hW=nWwBYc^
zf+c)q|3js4e2T9^{Sj(Kv=*)gDTd1_swl;%l_n~`@D<VXGH2_SKW?^&;6Ud@o3b$}
z{ijQxMUuGojrKt+H&#*KNbxcgcYUO3aP+d3b@rI9GEn~AkKJyCj<y7zYAgO&xRCL*
zXtRk#8dI$WlgVK^+J}kVC6to|CFzsMZQ11H?qo7zh0up16HY2<pTn5s1u(NZ;R$*E
z1%mxJNE%$y8YYoEC6N{?B{VI$mo7S%e&aT-v(q$Beu-NXAkVZ(fF4?Bpf6pln(Q}W
zO4j<TQw@(O%yoY<?VoV70E{B1Z=bfIvqH`6;HC_yUwi$=7dvvS%vUIN)>F7-SzyLE
z+WI!*dG<7DHhr~&*7UoTlzL;u-}K3E4^B*fUOQG^Dz-q<-8^DZ(LHV|HSLD<D%=ZP
z*80j^Z_2tw%Ft}L?UA-cg|hnGxzx48@`CWpMhUgn^~}^gd8W-Uoi(GQ`jv-cR}+We
zo8>ANW2`FeHkLofjnBpj>3*E5Xh=-$ma#6{EzHiJwIt=&t#7aGN%jr}wvGiVP7Y}6
zE&b4kiI^wVm^Zjyey6-PBSnV_8ol~Qe81w$ewT0m=Cf7}URJTuinetyv{yG)^9KC$
zN69%RI(vex>4<Z@K*%ftQ`{SIY#%EMy#3WiTT%IG?NA5Z>(IaPVb9vDT2#W9SY5x(
z#pN;o^-vRLV6%ONesON=bIfe*#+vZ^;O_GVT}j`n*M*7A+0Sj~Bi1-@NA`F+PAo+I
zz7J79iDNqpbuWS4w_`r;?<H^B?8hhVVZk{ZA@6ZVU`TlNOL=5RO2JY3?FBn;HZLvv
zmXiLM_mm&AfZ#5`9qNiIy4HW0Yzbc%UdmNxv{rfr{dv(Boi=8lJVcRuu#lbqn|t|D
z;VTlg{imciZwkIV5|1H?lo?goZRQ^KGruCXqBZipJ6Vm+?CiX_Jr;a}7R=5%9z1^e
zgh#_55bat(gj#S!K{@k^dKhFiz)C@xW)93Y8deGvnZ}&HuCR>1AA`=6tCrB1R%A`4
zJz*lTT9uT`?2shhnZ9@H89FjR>Rq!au;rOJQtMrY_|Wq`Sgu!O>YD(D+utxNaf_}?
zlKkb_Ok8jKqWRf#!?rKaO$C6m5gYhfhn6*mf4K|}cPL9gy~?Kets3W8@HeukV5xEF
zC>QGFcKBAne)*{I6KwQ$=-(cS80>K41udFihm9w~)=8_+mE^T#U7OeWgge5s%jwD6
zx=hWRpPgDVz^ow<n8lGs2*u<;e5u)9Xx^0;k4SA#1U@-yyL?O(Bu>wG+mJ}zvfNqH
zC1a{UshGM(;BC962-P%f*A#ao^lw)ElO<J~cb~Yrd(a{knj^KE-#rATxwWo1FzqXU
z-~Q>UBjm|E^BDi#Eu?#)J@~h4sQLZcQqpbo%KbiVwLJ29blb%F*I$9^JX^4Mly6b%
zwJaX_d&?4bB6o5x|FI%2#?6+g;|p%}6#T44c!#j}3F_}oB<aC6c2b?@zgGUi=`j8m
z!mmcCs{+8hVNo;lvP&5!OV%~-yB>(5m&P<tdwG)n@`&wRtkkc+{>^pF+)N?QoB9NM
z#>WV)x-MPh@Q0?L5M?X2Of@^wPo-HElK=ar(lb6F4ra^2lAN0+*)FG2(8n-h@BN@K
z<>Q7r#^Vje$oInsopt)X(7vE*j{dRldI)dV12no^Jnks^ZHK_Mu8g#bD@}BZEIUIb
zlx4`6<%OtWCBqn=9X^&Skj7rgk~L!3KMQQd#j+>Z$=;II)$1!kX><!{X*XS)D_N{w
z0;VyGX6b*qoT`|{Y<qw6*|~Ss)%Dx+-w!yre;9Za<j<KKauS-$WUY{yDVzD~(b@PU
zn<zuGU|J^YOLi}+t{buXH!{>9@qcm;yI&PhPxFQcS&bS!XAkATdEeat*Tm2qd|gtl
z`urcZxa=`W?0z3d@QhtNG6ba$%XWfgqU8P8Ns=td@x+fFdWKORPc?#AgY2ZF^^7;A
zq7rh=@~1Sb>?h~ODZ%E9U02~e$vL<X*GoFf^~@SJ!Z0Bscz)Nc#ysp7?ffDCCju%@
zY6UJLd;J+;0%4B^nL*iM-@7o~BW`K+F6@u#u5|<#j!@LtIJ1pOw9mK$RnzXZm8Q*3
zD&^Z;B1WpEWJ~i{T94J!8b@7QL(R*Vz9>BUxv8#VH#<0$Jym|Q(skwR!S1K_`~TfF
zFVF}}vOq4Smrzoie3N|h;k29h|IKhTonL5ReLr;+w&@m~++x{5ncnRy-uFO)$%9v|
z9Q=h~Kk8Q^ar^!0X6=Etjb0#*HpwJAUUNUOiVUXypoWaC<H*_m4+EhYO@L8D)_Md^
ztYIX9+^C%aF4_F=5^M~2%D`VYgXrmalkJ=J1yT0J;M-JUz?e5yXi`1@cZumbS(i*X
zjwC9nK$_^+*;RF-w2=b3XS+T38CeQUzrC8EvIpLnN`G8jCHG^w6~bmB*)4GC?XH+C
zGq-@KPT+2hp&F;#IytJYgbCL(4CivRO$fab(w$j(DKD$_lUG?_8t(Mqr>*^+tOs_E
zmB;(nLc2qr>v7#e>avI$*h6F3s_yY$cb(c`z{>-b{ukg&PW9%3*Fo5P{6w=DT=T@b
zFX6?9?Z6o6DEm8>pFC-j`XN1&d!vFqlx#^?JD!HNX-BJ`IDZ|uVCY4+V+EjRmgZTJ
zQ#DlIw)mr~0*5zdok}hjy9n$beiQ$^NG+{H)48eahJlf1wxyuPs*b0@VJwxSkGzV&
zm?%W1u1sXoe|;e&NXb3cvy-t7OrMC)c7Jii7_n7CEr<KqOtvjwyTnw@XBz|qMbtS8
zlF5IpmfONR6RMIoQ@u;Y8`NlWZpC$SFg^Y&u!i_k^E069cs}y}hx2{<kD;N-q7H)H
zjHZH?SVscbdhZ|j)87WVAq5I<K!0umrG}2!EsK8wv?}tThus!xUI?dw9#kKz%oHIS
zJ*xAf0;~D6h9_-_+8gpRPgO>zDS+QD<WtT$tHd!D%C~DSNSt4<?#;XY<U0oC74ysH
zqUr@@PW@;1*m-44F{#EvhD?zxGK`w;&hz{Ha3v42`b$*m{yS)H0qWmokCoA1L5=2W
z8e0=!!ml~)d#sa?m^DDu2~c)74R_D_*qMo*s8t8_d?uO^cX^ph&{(?I7N_%=p-3hW
z1rT^^g%=oRBX3IPf9rv|>b%EMQ{AFu{L`mj+!&sm>LPdc?6AzsY?QxZ{y*9mOKn+4
z1kq+=VFDpC&k-2KW9%|J;t)VfxdD8Zo!_c34`RzFP>Mp(;EE}bupO2XWQ-eRv*=^R
z-_)mw0DzS6Ab^6TvzL1uOSQNDP@o=#W1B8gG$iUQKJ{jkqz=@TpYD;fB&K(S=_vfi
z|1l4c!r~)Qu}rhi1zD9|JlQ1x&o?$+xa|@-o=-=ydXRx^7}9C_t$ej{`55XK!!)!G
zeUetPti=dV@$X+^Ocit@Ntg=7qRT(;*yG8-FnhjpDl(QW9{{2u0BBzKp<5EBb3Lmo
z6mR~CveCw5-HgAhG4r-xWt}0(J(Kfl57BU}V+fk)A;d0ynksIGL8<%1tJGF?-L|ML
zW(ePAiSWTuhoZnUOJyQ%Jti=dXt9oEPuZVpBx%Ob7l6>!R9N6tQb3y$bN%+1huzH=
zEr3$4uio%i3%#PN(PdpHo=Sl*Gjn>OYP82a>w+_zD)T$>ZzTk@_;aZl-eP#Ix`Zig
z<QP;<(JaSmS3G1SUQlC=av12q+2@J=KL|2TSh+G0iu?u^_Qo>N%FVy;7GtHo+Sj~I
z6nz6v7jp%F=Ys(jE?WxQq0Goh8fQS%N6%hk>){pl`JE}?<N4N+ZV*^|t1`!K9!!;(
zR<zJIAAvQcY_Hpe{>Yrq{g&0(L+cd6aURtap%__Z``t<qmMkYUWbw6acQEE1;D(H0
z)7KE4;H*~K@AHD~$M$<{dP^}By$>25c=Gyv11bn^Jm7uj|JjZAM(QBU11O{>8}#&+
z1AM_Z_gkN=EgL?c8HoZv_wIi925V)2%r<Bf_T6Vmf(+))!K9y<NCKoVpwAE0&)z%Z
z5`N!qaSw+%tki^fonsfnUeZ#@$ap&-Y&iz(`xW=sZ2s#>25*!ryU5c}oT#NRFV9iX
zyfE;hAp+LYE`dPfr`;(b4*`6Npy3)ZVk)P+ON+}N*mgY?b8{&`N>{hfDKJ=xkqlI-
zR3E$ZR44mR_gw?M4h>g31$eBfhx~2*ag9&Md8^iR;ERs2?vU0nqTgL*(KAJh*DY7a
z?|76`&seI6Zpu*Lwv2DbxYA~5rPkkXdkgkFU#gfM(jwoPXf)g}r+QFZO1ft&N1$x2
zP_94N+S$wRG^y@auJUyG?)bU$V~<E!bMlkj?05~HGB(=;J$VqFJ%&OYgKIjV^7Z)5
zwe)F!t+iBZ?_P-0@)wbZ9b-@SIV8Dxz6@e#O-`<idt?(X@6gr7<N)W-+@G~#-gK4P
z9z3CTCSOvBhLh+%fFBfnA=7w;_wf7+j5l;%XRbW`45&Oz^m6{fy%j#7^)CqjT=NtA
zz}rEyr@@((&R-?H9*xYH1#`W1-c+o7H0J*_B!5eDO@89h#FKv^1ZtOU-TObsy_A8B
za*sf!n^)+D!%)WMh;QbDfTF<_oXd?$z&PF6Y%K{uKPs>PxF@2%<|&;j+-1+#>zegL
z`lyO>)t-f7A<k~h&uj#WQlLr5`@mdK^S?wOKe_XP6+jk-CsSHpc2gKxc$e3qz&36~
zDgyZW6Rj)Y;(w1_lu%K096pD!jTBJRXAw!sPigY0N&WW!HA5exD2p%qKUYuT;h{vz
ze*epEvNhqQw9wO|-ys*Fu@m76h^NOfmm0^nc}_*EK0xcDLze2FJ=wkEwN<pZ9Jcc>
z_K&+OLSmN*`a>ABeWT~(vpvxs&BgPz5mv~9LN^DW+WIowq@=qCfuR6{0qIm)+j3nI
zz)K3$p$?GXhGW5|{ZbSY6$7#^T!URiQ-_wFC=f3rae!GKIz7~%ymodBZbwq#_&n;T
z;)|Zn_zP}q0_utlSNm2HWX=IRYrX!ScwMxL#2u4;Y8^}S_&;fgPMXPoyg~no;<2tR
zjk~@&qK|cg7qq+bXb)zj9QgmcEwAJ4jT4`xVu9e|7<GbA(LD|X>1{R;ZCu}#|8fij
zvlK%MqIB670U{o>s=JvMgRneQqb#j%1gKiOmk4aq<*K38kt&#Y%b~<5yhHBB8TVk+
zfZ<|1$znY$8a<B)Y&SyD2B&Cgpf1`b7UfY6BIpvC87%6Mlo(V+w9c)^`t}!BK0DC0
zY>+F*H9b`HxjKLvn=S6dD7gXFQv<lqCOFL|P-C(3Vp!KCDpm=AyC&_)cP6$H3Rjjk
zO*Lf(q(L$=O7NP2(`dF+WK*Yizw<@ECQ)AygKa)10dK@oSAmR7!Eg(pUmM|DByc)}
z=}~4*Z4l^kdVm+rnDmxM-vRedLv8|UwB>H}@-T<nq~BA?&|9ki5;1KMP$!cwKF}kV
z5_g*PaKkW(@DiVt9TxhAlDWqKQ~nH*m}QR*@+eQ(?zXQp&TAWT@QZR}5rX>yRfS01
z?!Z;~+>LM?3z1`Zz2R>w9@ECbl}kNzlv>D=1O>!j{|3MU>er@(h@EUF=k=_CEXHcs
zZCDwt5&TDBECUMOj)H$c{Rf5&7wc6b?r~Fz4VNMY+jl8{ws2F6Nfjmi2RjF8HDUi+
z>EcXdDagc6mcX8v-j_B^{Rlv^BjJ&ek$w=a&f2Iif3)*(l&7mEw|Q7%aCjPLQlmQp
z)`<e8z0~Zu5ivO8mD3Bvr*FzPbT2oOx<JHyz|A_Y%dCx2>3GvSRj(TrL_X&rQ@s1~
z{LHt6I`en6?;6u2n&8;*v<${LC<*|XBnfZ;nYR0=#Bkr25sZOY5qF?Wu@GY*(9i)u
zz0muQVE$R^ri_}D`v!ytp!WAq)9Eg|@PhfUNd-;}d3-D=g9ao<;24@1Gy}o;Y9m9f
zg}ck+`!RYoKp`{G%_E_kvDirp{3JzFA%(>RSPa{hTNsDI(#mN~p99{gnc89~{*_@h
za8w*x4F<+wZk}sQ82bJyNtKH#(ZPyKN!$}>F#qn9EM{8e5w7ip@<ph|lUc}V=0uXi
zBvpGkS`7%|Ol1yaq1VD5wcTV7#a+NCE@!$$*d9!Y4o>}boMICOHb_pv)uveVjiE5}
zHTU#m8VgE}$#1y?8BG0_rj4G<yX~@!e`3iAM%OGc%(uu2f*dabb`TdhK!p&f<gnnv
z$7aOz9lbZu*VNR@wC1KKl}b+hG@kn89^)-B&0FMXVCRH;x=o~oh#Oh!Ml#s(eNy=m
z0Fj^MsdfX70e<QsQU?M>@KZJ%z$v}x{y>AfbC!}h?d^-{4&38DtW+JRWsJ!D1^dyr
zO#pKaD*@Y<0RPqp%2CX6X5JigR>JRXcm{=7t0XDL60)C*@c{1V+gV~VJ^knD&p&#U
z)3}X6uT9Qm%@#3++sA`-@0YY+`jxj&JJ{+KH*A#7>h0O5zVFa4*SY&Ay6*(s$q9ga
zt1PHRt2MDFp|Eg>s%L^pI$g3@Hs}kMO3HLD<4K&kRde}}p*>RMZeUdAp0!d{F7%yH
z2@lnXeVj9aS#vv<bq5*hugFin>ADbI6B}i=9dnbo$S((C1%Uq_U+)=~gde|c0|Fv0
z+*`rDS8DDM_ejy)n&RH2ra4jr+%w!;apWj1SFW_woH<J?&CHoO(zM~oesTN1pK(90
z9^UbW12_(jFW=93ea@@NI^}h3h1K8qr|6Fv6Cc+ToE*)FA_H#{tB46rc1~I{bsi8U
zER_mO)|)9|qR8>dv-b@$&Td7|^>Fs<W^yJ);J4|S7HeROxrDc<#5->n<r*Y8?*WwJ
zFUQMQjxX%zwN|k4YKI=yI?SotMet#C>Xjmc0(rDYTcP!J=_D9^$`K94`hdfdki}ay
z-7H<S9Lb-+#1=bF8@gcp(TD~<nfZK!UK32ewgz7Zr2E>h^bXKA4}6w+>(Uk?K>Nc*
z$SD08dGNjQ2cc}*Ua-;6MAyp(af?0L&*1|7Bbb<nBVTW3+)7;X+@t?MpLKLV2kfMC
z9bW>DFOnWXAN%ESGkrddy%9=KK)?W?ZaktJ073#v^ll;;*7smb<z~`wCN@+RtJ*Fi
zC5(vRVv=)YXJJQx6s*htyZMxr&6W%H#+hZ4t!gXW?R4&)Y3>8nb;M_ki;R4+?%<QX
zcP!d(q`qJsW*uGebh$FWSS(TIv_l(rigP4;n7imXrEIO_i(M&V#~bSeO>WW46Hr`W
zyYi~ShKXe%58to`4XZ_}yUaGL&N_>z3vP^WGY>2Rd%w=Evgx|y%$W{g7AG)>0`^$l
zOrCf;5!6`M+89ZtT(XWeoCR)d^cpWJ@18><CRe<p9t+}&{Th?XmHB<!cs`Xhd8K}K
zhZhV4eEvxH<*7o^XYNuHnIy6dsAC=U%(%oC1~f1)jxJ8BDdzO#cU^Vk5;`lAKyYFB
z@n~C5G4i(Pk++w`ice~RZN-vIOR<<%#uJpcwXcO3fV-Wmq%LavndNZ*?~*#8w<wpV
z;H@>4__ZcW<y*3hS^qgR0sxE%A5$0Kq$f$`lae|A<z4PSSMV3}Gx}G)Tas#<kXD~d
zp4R)K^QbIJ(`IgCi5v5nzq3jh$~>RV{pd{<u-n%>3hcy>=SVAmi$-y53Hx{@$ounr
zN13VIc~85?|KnZmk;Ee!?aE)k>oc*H^F)EQrE$$}zKhhdbz>v*-AYQU2QY`PT=eBD
zx`4FqU0_O;1m~5T6*#d$<a<@WE*rqr3O=^@-Hw?odcdXB(D%h*fd8Tz&<O~%8JH>Z
z^(YbaG^v$#l;~}tGWsaWUQ~<gsI4j!i6h2ai`HU$#Z>m}B<_eLr#viPs(1VopZ!*(
z`fZBC=VF}W$4#$Y4~%fF)}xQk-wdk#Tx~Zr@e-7ZlE%PlaW;HIg(wwOcazEuu?UQ0
zbH{rx%%PQgZt6zem<%YGSu9ksepkE3JNi)n)2$oTw<4_`VrvhkZEI%Ui#cvsz5gfX
z=KoX-+qkSPUhWP^j83HsYgp5kN&RzB@-e79O(JVgxY;@2gg$9rR^p*-@M1ai<6%SO
znpVgh0I+EG@<}jlp?=Y1QJXY@QnVwcZax?**Ot>VVI?#5aben@@LK-qmw|7jB&nWi
zsptO9!cj7v+;C`a{BoM@?~jjPJlY)r9d}lhaIl1^A&*NsTM$ylE4y<4RV3XSEc#YW
z9T}yN893;QeIkmJ4V*c&6*ry!Stn6>X;lfO(6=}BGc<eAJmnOVBjApm%cWQLq)y+b
z!*ZK`JeD&G4lVuolfLu?tw*S`K(O|KkK$y=@{iD(5a4M(RBF|RBmO9u6byeEZ2B^|
z#%at?yuEj)-Mn70`FbL9l3M03)a)@-HD<-u=(qHKD^@_s==oSs3k_T3Z`&>g+wWRV
zt59_+5e=bm|M74Gp?INy4kIch2SX}MZvKr2P)8s0);T5DF$NlopQbNQUd)6AEOy$z
zc?M(MsoS{g>;d3_$rt`S5p7tt7nWuQE7JpjfE4z?%2W7<6Msa6{jrK)jf(UsPfUa|
zs|Qf!pK2_1SDdScG@20aBN<7JkF1ZNq}=wsR}YQdER8Gey7{#<jiZaINT=ZW+5L9o
zYeUL(FdzU1q)Um+f4Y_G8dZ2d%C7NlQDxMFps13UQDtJ(CbLl$PmN2zN0Aw${THLE
z<o@hmMAcYCKa3dc`wU2QiEg;9R{J3OQT;iMe7})O|CcAxPp<Yf+Cl2$dlOfoPxm|8
zW;GggUkJc2>Ul19#WfDl>b?&cI_)k>CequfsH0wow>=I^q6Gqt0Q4{LU<Cg0LG<wH
zAG)tZ27JMP3DEvc4dYYj@@B{D+2{TH&yi^{)0O$F9a-O{m}V><P0Gy}-{072?|WYZ
z-F=m{s;Rv}dnYs(j{pGQKnRGUNy_l*f21qD@>l``GObs{FW6`hr8#I$du@LJ!|(nt
zK>lCA+21`_tlc2yi%+IiR}z)>SH>`Z1LV-RBR&46Yo|ZVKVPH#r2fXHN0oSu)ch1`
zXr}h{d+B*Hh4By>$4|X?JO9tvzj<on2+oL?-<G9%M?_jZy<u+aOO)f&#ilE4f{rc|
z>#zPq^>cpgh@QUneD$b1#{B8>_p`pZ+3yz=Jb@UW5TK}(lA5M;!^44^(btv{XGhAh
zr7qHgK&`2%A^H$9wQV&OgrS}hQTM3MuK`x73u&NcfLauqSM`-Ww1?2Q)|fZw!x*ny
z<hhki=#4tQZ5(TSY&$vqBAa42Td-R2tg(Wh{GO`cmhPi-K>HU1hJ_c;_~hR1^_+Az
zKiy+<`zp$-=w`0h!r6xV47g>7WPdZ@nbJwnXYXrS8`aOh`XA|GPVHXmbJS5%183D2
zo%9$6+KDpb_PXg()jNBiCfe&~D<c?W9Jki=simngeZj|q`fBl1`HJCto<r~}vU=p#
zxVrsx7X5-Ef{N!WS}=c6CsKouSX_8(!o{*1naIV?OeU*htM|vktxDY;ft^OltR}s$
zuS2T$Q@u0Gu_z*b_$`NwsyacvR*zN;sa>Dy?D+%G?)xsMIY#Zy!ld<8yB}<-Dol^<
zpIx4=zxVeWOL-SZG*Og??7gp!+1>Efj}K7Yg?s!YIR|ausq)+Y7oED!LeD&irF^y_
z7<M}AB8PQfSirNA6{jSNgbgBtOo430iJ<P-%kin)a;{dtUpjHZW+VZ)9_-XM<R%^Y
zO<Y+6ZjfUG_;5Xm_wLSmGBQbgBSn}QwSY~f!!1$&qYDPv(3Z6f$?6BI45#}Jt9r!B
z;nyykxLUBpdyHnsgH)UHTLT=S#Wo-s{kl02NLPMNNIcVloW&;CO&S8j&}4p5@!DWe
z9?VyMD^vcpQBACVQwxxZR@#`KNxTJ6XCpm~;byAqN%;(bZ_QV5Mlj47l`;7re?`=(
z(RhX2U=A6gkP~0b@n<pjN-VpV?HO$XSkGa#Bt7obEzzpz-YgO=D;Y<d>HX$Qp<9;m
zFidb^9`9q#V7d1|=ZV7#0@)ob{`3XN=}SJfXR+C1jW)NMguAc9_ba5j5lv)Y&t8eT
zq|56I4HiQp(!!l}25C7iuR?5hWk$aNU)nyhgi{AU90Iy#gaDe_I?+;LKA!knF?uob
z!bu_q(#ONBc7ewuoIcKDsp4-3inx$58Uq~D$d)(t<|MPF31+A|o(kbP+{UJ_e2%Hf
zvz7<Pbx*~V)rD20*Uy#FRkhudE{$10&|6#UO`BsED)I%87er41wmFZ?8DVt*tsuh9
zi!xPn^X5lG@AbdLna05DdiM;kZT$qOj0UxNa|2=RQ*=BB9iK{~=7<Wc@6tw?5B&5n
zdjBbG{rJ4Fdj$`Z;r){^@z3%DX7+eVE5g*pDNlUk_G)1IvU@O5eMK`V(|7f-xuu&E
zwQ%b>tHo5n2u+pLe76BN9nR~>RurYWUdK3aSwb7r0>(3TBf-PmcDMigz3B7wzmrcM
zg9>S3CTxEZf~*D!@T6t?7c4u4zcK0Vr~g8$z1>0wXgBY-kYwbVTN7A>5z~N@d3uo|
z3z1C0%fSB}5UK|B$EuRktZ~Xs4zI-_P1zrQFr_m{W9c7oqibgdDvx_$@fP;3Oq7rH
zIzh&yL~p`sJA2L0PyHRRv}O7Fw!4ZT7(pv*?@0HQ#0bvAVI5%`h+ku=|FXX)YD^71
z)2nahuTCId#jLYLejw0UZ3#M-=CUBjAXZ@ykhoC|w<SPhB}kXvWWmTqbfHanEtqxU
z$|Ma|hbgB47qhTmfuuGb$8i53rR2RjO;Q{c@vT$qM>+0pfhImrnWM-xbAJO*WSTQ?
z!#8tFC}34EW8ZC<S1(4SUr|GU+8ZJoh^@{ULr)~iW1FIYJnuqeAZr#Prc$L4i#zP^
ziscKR^EwJUrHY#v<oFilRe!Ku%3o4r!djZ4B&cyFL#arJRPf~6YClS1jFJyT=Iy}M
zSAMJsiOjwYF``%I<wvfIdX@_9pcJ3g(oOE<RBrDXXi!&!;sysZ1F>SNBTH=xbJ<xR
z608%}!g`OR&=A^jaedLbCwkGpYLN7eMuxAe^ks+Oq66-5lL34|ZwFq*vC-7kM4JOY
z6KYZ8s$d~DI^Mh{sdb&|OBsogy9!OzBkh`T&C#<<-vY@VQG<bBdL7d?EFGy3RZ4SZ
z{p4>n!epd~q8_*@t0h+swrBgCoA%)hYh7xn)O9hR8-5$sPh^5Xv~-51PC@Mr39oaZ
zqIhBUm|9c&aYGt$lnw+|(84GmD09E$z2I7YV^G6a>xr&u1Z5!~248z5d%)z_3GGlC
zbT)+3MPr-&2V12%1Kl2znUZaZS@-hI5;j!uY<L{(JatRO*yPg&_vz&*@Cl3ABbZb|
zQj9=eU1#-0g0{CCyyTO#!kdpbnDJ;TZe&1InLP17dPL*gI}DS>(XyCt#50;fcP^zJ
z$CnQaZdC;gQ_tN?JTG7f(g-Sb?3c$fVIwr>M~LCA_!U<EZkVVld7`ZtA;m!M8|QXr
zay-h0TqDE_?FaZa47v%#UG1ZZ3f76PU!m-NfxC9g5ef|~jUK)S$L3IB3~Ss3^SV33
z=|U4?IjS~-il}V-@i{!fe8-Zf6WFY_ym~spZBcg$s8tC~`+itButVM}!X(My{T9C;
z7BkwmRl7I5s3c~`$xW-uDS5v9rFvpY@#oy3LHtQJ{@o8D7|!1I<(~w$JdV5eM?Ys~
zdc99!AC<y8^*?Me?*^!5O))C`M5kkSJ%a%ipT6y{kF$J*Jscp!U5ppy6Vf~qKPJ>~
zcldpz+mwG=gpm=QE#}KKL|^NDb)Useo{cY=?~Y)6tEhYs;bhJvrdO*jFt1qDFA>dO
z`g(Duv$JdZK-->+sZN*x;g$z}4tfOPLIX&SNE#zeydXC^N5LF_E8GdcqNxsaQyw6m
z{NY?-L+Z%$T_PDy5#t8GU%HM1M3zg*3yOj(#k#hDXytJr$s_iPv;FGmr_b4A2RroP
zaYxsiCPB0VXYk<TdFt8;S%LEom?-JTiw+*+qk=A$snFNTyaX*dA0>-q<ed_Wf$f4H
zXZ^ST-TJ%x*T7_~tLN8$hjAK%I4)SE{BHT-gJmK_x@CY$oeWZ=G;MIqMz(O*5U8Z_
zf`n?=yYm$nJ4Uix6c=E5g&_ic<<mN%Fmmkqi!kMGjjxRI&_Vjo1Yyft5Uxlx$sV6p
z{h=&@s^#w+1y>KZ=RT7xu-KiDlHorL@|O4RKj$h4S{9yb1>iU|mZr5KOsvL`uu)Cc
ztq%vEFaDhlJowS2<qiB@1cW3@qA8B=Sp-b<+O%H#z(+3F`8e<c+;Bx*8tz~nTV~X{
zt}8WMdw{@*C(HT1_l}+-6R-1zb52(NW8wY={v1^agCZtrO^}LEx@1bjjhLH+n1?@O
zJbr;}o<aZB$BNFotcl@Va524kF~@cxkVT$3JHkQ)n`ua_4U_Zo7!7w36DbVjnWsB8
zcx&`STp9Vk*cw2Z<oNC@Av>4O@Y3vy1<1nUP456MmxjM~`Mnv730RBaT#S8J3(g!P
zJQ(z2Ho`Nh;t$?LQT>Kw>$%zC0v&`o)OR>F7qL19hRjw(F?;YE9ng_SkP~N2;9}CP
zvm}1yn6d$Y(-1<j7D7uw>XwioT*B01!LIx`m$(r`Yy&h(l`aGepaWckA$8MKC4<OJ
zo}19jq7*tns(ElqFgdjt$)6~W%7{#M7Ubr7mm2O1_6(<`(n)p#rx1OUuT%j9ufPi<
zArE#~+EwYBVAT035I8<Hkdz**nlWsjF{&yUx~NrwFpWs|k3X|)MT1g8GRoeuOzwb1
z)-o2lGe0e6em=`g%*$A52Mdue73M$*yq?6FC1VRH`52TNnW6iRWy?2fry*;t=)s@v
z2Y(kIpix;XKLG;rAd#b+^*dlLeB$dxpxB($N)hQAigfAW{b!%e9+k~moE-)raW7^6
zPahXojvz%Xhx=8wa8!=?|I9^lq?dC1a5=JExr%DJN)EXyG%@l~x#~T+noGIb=eZoY
zxoEXKJ%>Dls63+{1-@KC<}1MJlpq!W$Rd@69gq=?kU^6271r}$ySJl`0LY_M!6o37
zILxyV%C(kn+*1(fm;0(7xPt)+AwYn4C|7bpzfT0(l9lcifM@Mytr%1onNf@c3C?k_
zh8BJuq%QYizE1-p6hr9Hg~9U0DM=7IL}5vzaUY<NM?T*iSFGa3d+D4O9&lke2E<EH
z*G8#6T`XwfDwR}=5n2Q7gz8;HkThBWSV5MZYOUyV7N~bpFBo(;TWy>yRs2q)kK(7c
zl}DXvTqcey%WQ|zBH8PbAs>38g9ZR1N9C)H{AFqg@fHwj03?AfvTZ4s6=JDvWEGl2
zYpK9r(@;07aXghM{nJy)Z(M4x1ZFz|+1zlJ!54C~lxYDq=kegwY#lH1J^k@}5_y&3
zh;oAg@)k>=0|Ih`RQ^a9a<B`XdIeqegj172KRc?BdsTQGZ?-`+<DR!gaHTV*>Tgty
zYVU)8shO0<w0$ydA4&MG0c`;iF^;E2bJLN7;hhM%G5}&pKL65?{1Q($vIc$M!g&1;
z_y@K&I)yRE!$*UO`z@ND`^{BZAWPTiLl_hL#XN#(kS@d#&HANwpE7WjVi_o10x|I@
zCl@ff`#~Iwpr{bKwC;yh=M0%`%reK!h(}N{1wgYgV(Vv}Vo6O=Nuz2{UWz=3QtTGl
z#t}PMz6Rte!t+LCN7z^y&t@CMtaGF)uxmuHPj<0;@30rG^D#ft%)X?-bDZ9D2}n;j
zADhQ>_(yVNUiVjzo?&C>-6B4;vYh6|8DPshaVUQy3zwSvABp^<WBmUuaMS(dFJcln
zAqe~-u)dd+yH}EUV4^2CXX%H&3o&Xw+=E_L9%tP_e$9z(*hUU#GrRkyFaBw80JH?S
z@fy25GFfZhXDTk?Ze?B$(&#1I*ogXUg!;Qn1X;-}=ScNZBIM40$Z)2M@;nyKH!!nc
z7ReXXoD-DsZ=ri6SQ|AYqb6$Rv#Bj*Dlzz@)t$MmpC~uuE?Z|Mot^}r0JSPw>Ny<A
z9&gB_?lyj~5|g-SwXF)dijgJXl~}iutqqmkZIk`62R1LQZx*38*RO8B1O8fw5B~M!
zIdg~5vf|~68h}cP>c-^@Niiux=*aRLCtz%8a{*dDX0lanL(+CxW>2j(>!KTLQ0f+e
z@~qFA9yDuMQ!CL?&&sVfiZ3hN_p(-c?Egwd^G0)F6vW5zCfPvwmAaYV4fViRJu;g;
zp}A^NKb1W1NaxjbBw_)O*Y#~Tgx<0|yM0HaQ;4I4qO49fpkb<3cA<%Vd?gWPf2lwP
zyfW1oPuDP)Z}3~|cSPU!4+c?{WKtnOiN}ED$$ovn3qQP?jIQQOPtUPeLQHL%(?2zb
zHMF4jAio1-pZ~rZky~}J-bcDO0ORc`God>7l$U7%39iL)|Iz!#f|A|VeWedJVYP5?
zy!rbE#?;egAmFK}!gXd=+oz@N!=Be(Dygxb=sJk&X`Q<Hgy<E*VeEVSUU_toBg43O
z8s82Bzl1vJ(LSf6O6P@S<EdVpwSz~;t1i^AZka~#a=(o;7`_0N#43N*5&88<+-l0e
z+Kf8n7wAryQ+}|a`j+-RPuV!I(SOf1#1~cADRlZ=(Ze)lW6@?-Y>!Rm&%g_w(87-E
zE7k)0!`OyjV|HtUz-{A0PuUk2UcLI(ZY7W|FwR$5`==2&QCd3L`BH&m&PrVp4;VDE
z#4ZF|ay^XZeOA`3qJCCu@h{ITPhm3LIPo;Ry2-2a_S%aAM76__aC+zq!P9;_Gs(&r
zR`mNoV}zxklI8u)@lOes+z_ZoI%K9ylR$U9wQub6-|6IqG25d!+hB+5EfeXTv@Ie|
z*}plqG9VdKH*+D@Qb{-71#sqPK)e$t;K?)DH8T&Cos{$KFUIUOnaFqj!H>Nd2jB5<
zWk4n$%as3i(8W5|d;zl`*tkkz8^Zy#l;(Qme^6J_+@C&>3=RXCnDlR%A&EFlW{et>
zoE|a_tgJZ={5E4e04ru*7az1T4WD75pTTG?d=#3&Pr1ID(A|1=O{mlDa4Mw63Czf8
zAPRN4D*eLv;dt)PM*B6_l%d)6h(TSvTlCdRDy+NfJ_30Hfg8i55+SPFjC3uYW>Bai
z_Zzltu%C6nE{8`wMEvUAb{~z!TS%c>2y(MEK$g^d`Wkxuz@v#HDPP`G>V{{;Tab~c
zX4s0SKYGc?V^H$$n4G~v?ahzu9t+Xs_dK)dOaVTj1%Zv7A&!VyxM4s@OMs=W|G;1H
zZ~-HZo*?_}W8HR!E7|{I%-@jWWFj+lDVs{2)}o75g*<|LzcB57`)quQmcE<Mw|_L?
z5mg}XbzC-`-k2sh{?8}dHPeN(&zG&Wo};&W)kXsW%P97xsj^E39AxaJeIu{=+ja2l
z=)}alUuxA#X&sc3NjJmSP`9$ia0^EJt&!(-h_laat1hr_a)^CtbgbBNx>;yuGR=*H
zVc1awBS*+Be7Iwwb$WTIWJ_q$hftl<W$S|>t|xbG=kGq^h;VJaZEF{=hmQ!F<7LHc
zJ=#*<eojvoi%zf!3gNB2&T%{S0}^={$;ca(YZnFc4Kqq!y%G_XgP*Ll1DSo^3R;`Y
zq#v)+W%?Acm2P?OdU9DH1;6c;cr9kET<#z`A8^m@>Rqo7;=x%VJ$4KR+VIw|U%l<t
zU9PIx$wuKgR-fB#_21ZGblEL<0&U>aITDLyA9vV41xfqTYH-H$ztAZ76`T2OSlcLW
zJ2@_h6npVun~HS*=HUIn7W~Br{Grfn#=qUF3V4ldJg;wTv+cyy@ih)TRA0@vR4Z0i
zY=GU)mbrI=ORGe^xwa{1(+Uzl79svgo1n@38O46!<MNqGzG2d3#`)&`DqY~M*2RR(
zwLylYQ>~;y$E2=7g0FqR7t&#|QBsCKtx(FrLBm1fipIYe`p=_x>AtUFcA;hVnappK
zO8~nON6F@hl-t;pG>Xyd*K5Za<|%b&utwkGyuo^L3c7P2)#jW2ED|nvpT&0_sO0)n
z>A^QK0qV^3p9%p#wO8rbp8kwDOILpY>2K&&T=>yf^n>ZmkvZiT)zMMd+N^3wraoy)
z81ox*P`<YGTl%4b^Y`DYQLnJBC*E>iR@bN<@3Z`l%-S_NQExr*xpo@ndfHli5(>!H
zMrA`9fua<a=-a2nYi9`-d6BMXDV1kwFVE`x2QnyUB!TlB3M%>9dBOejqRR6-*z=Or
z^9ss&$?SOoBHv;npNP+QoWPxs3Ss~SnihgS=g%{)D-fywbl$(<R*ONBmbw(it`NvL
zZ*oj9ASt!z8KtgZHkDe<S>%D*=SiJn<u@gDsU>SICAa6YD9j~uPw^#Og_~-K3Ys57
z?f(^?{OP{`Z|7RZE1!85H#gJL+5M%`M6AVhPtm=Wzc=K|$0nfP{0{E|z>RZwRan0P
zpY=Xgn%!D1Dc4a(+ohU#2Nm6~X?u*fR4lE@Rrrl}OthC6F8TOhQX@0Fsm>_{NCly$
zp`~YJVqxRp;^7lO35keFNXf`4Tv5KNrlG~-<*R3C>}QK^P;$|xR(I*NA8A<t>Dvq1
za11lp`cn6WQLq@%0qw*zX_pv*ChZq>U=ByUM@i|&bjG)U`c@?j)<&SGnU4`0CGH=V
zmRDBSHz{Af?(QFaKmPffL)X;Q;zqL|=rKNCvIU{{ICOxZE=A4C90Ca-=Ypu^9Z|kV
zYgDl7aP?nT_K^nJdVx$1h&MDu>cN?QI?jw5mTX!Vd(JJvQe=`?7i)@b3!ExzJf(qC
z=c^8_o%DYstQ(GQRu|?H21sZx9_Ek-Iy@sn-f6e{ys5K!UJ&Heb$fj@=)>%)INscv
zY3T?=pyrTsybOyYM>yD-%jD6=U-aPxEVeNrRU=aRc0{g=x04^_aMLXIF(KTJSLVHJ
z`eG!4(slAUq<Wck&>JJG?CR-LPv|*M@y>jX3$j5!^^?lAWH2J_XXzgKa@t@q1(a$U
zMUVl0&miqiw>}$to`gVrdly@4qVw<bd7Y7bIY&tOQ_#kUanI@T*AFi%@873TfC<S@
zdd(yrr}RM=AA_0si;#)z+h-$*tfFWDQJj@qCn1Sj95_Vf3K%3nq;XXVuTubniHp$7
zyt|jl4U!J^HDMvWjGcCT^);hMn<MjO2)7|P>JDlMXpVD(L!47(CPYewF>K772}lUX
z!eb(l!yiuDBM9d)*JaQuqpH8H7^#y;mFKq&VBrwQ_p&E(k~yJ@<Tgz~ZB+$L9o1mB
zG082Sgv5~E%Wnc<(jfXmE*-a)NDpdScx$RKZ9RWo?VuwExZg`VJiW&YprpgG(I}NN
zgjRj`*XU3Hh*jU0FtU%Ac7JMRk>3EZXBhV*@jnhmez5j<RXqd3gbAv6(<`y*8D3{Q
zDPwbtMJ5FGh$LZ+vNhksn=)P*Q}N8^ThlWZ0a|C2y3PmEEBJ$T3a?Rdt%KF!^tDBY
z!>a34f+j7p39;7?3YORZgbOCxYGvAQq)I$lyez7l0bAeK%eNx;v%*h4xq>B$3G9!E
zx8*MSFl4aEh`fq{L>i*l;uchVpwVq)B>Y)Us!^4ep!qnwNigkj&3Cms#{KObYc!#n
z2HWt_pY?>7?6&kTSVyW1vH4_V-rWB6uKKAukliN9%FQzdXiT6uDs*P~Lv*Y;yQ$c>
zaSvdRo<33E@1^E++sR<Ea6TU4y8Y?6OXZ)KW8GDaoTco5hePpy7=C#t&aIgm)7h~*
z5xxLD>)hogT{(M-vTb_8Yb#QXw2bn~IjcNZTn3^IKgUutH8m|_*Gn-l4qd8Q9f9Xu
zts|e8QaSdfMs~Bcux^9{n_{HtHFXt6XLTaqY8oVcS2BS`;O1uW*!lz4f9JbTSL3b;
ziiyO4?IKFvx(3^U?XdblaU20EdW5HL0We~?<E2dSkOVeU=l^)d=lj}-<9{s>!_~xt
zG?JQF!T`h?i-)qu6LZVt6ZcwNm{RQ8S$P?wwjX1FjFh4QND@KH<3{|VJyuc>`vCSD
zFnN>sigOe^$0&w#wFwl5dWB6eBJFi(4OH;VW;2WlEQ9NZ90m$m*%@9+Le4*~!dcOQ
z0D*2N;@QSaYfCrqCxFiLv^kJwOHf$ZjU+^DU9YMODP9;rfGQ#R=K*vHcfv65YB^s?
zic@LJ@e0PI;4b6APXa8%hWPZW4Zog~@<fX+SCOs6!quuEyhsogH)0a%Y>;gO19Fbo
zrLgoVATAB4kKt>?rsK&NMvYB{>|!%7+1%m>Mm6GpncJS*%lmNtBFfcS*0b7+acvJw
zuvpThry|_$IMCIyG)y#6l=0rlM`RXmV?~PhFar3+jh%nbkLiwmC?F@0MX=Kr|1fBt
z=Ji_DBO?hF24r5D9^FUqs>ASI5QvIp`k_IA0T^QR1IcxBkmYi^rV}0#!}A4)1gj_I
zrMW$v4%;<#<GxY6@wHe9jfY1Q0FRo{TDu+F0n!6_nuY-*3I7!!I~jgQ{s2rv=jSkL
z+`@sZyUW<%OU+M4RQ_WG%HRkr76_2_f0y=5>qIE)4uaZVS;~Rljn<Y#pw2U@)w6Ga
ziMHTr^2p^8)B7&V6Bf~(mo0GeO>SO>W(v}EO26I!tn#DhzLpyVLKfp8`~&>zY*n0s
zz9hK012+B7AV7Alnx%8pUaEmo4fMduu&G}FY&gHFdMxsa-86j;?0e7MTfTdnz~j8m
z@PV1CM28Lsi07QbLmRgCIZT3Uo2zRf&F4fos}+8sZw<_V1BxE77JtN}%bqqYvBg^|
ziFEq+Qu)53Ry_h5goM%AV>dX;!d7il0gpGdfcDaBC7)Zx2QqYY0>QKbUY|Zx5f&Za
znAF@H4Lf~alfX}6A1Gt_v=DfoMUKXt`YKveH=D7peC|EKO$v)t8fvQI<Xj^Xm@p%@
z4Iyl|%$)hY7maD1D6s7)#&0ojL9ZB1A@#cZljU)>Dve*zC7LNL_y_?1K(PpGu&^X7
zQIgvYUAR)^C1$w9NP!JBg9bjO1UKNP0ub%U&r=YiCa$hqoj*A@{(5MAFP@F%7rIF@
z_531;NjQ^7?>AuOuUQC=^1NrHvKk;}$d<g#@BH=9&4fdTv3Sm`FPX#OQnDF{d}}fK
zt3|uer<0QwQm6g<u^V52gNNCCX%bLS5iovFbB#)9u^ReOGXTvykbkCwS4%7p^pY!G
zqBQ=lE9DFFvnc)eu2W^pz-`~jwRCyq<fLnm@0Px%)7*y2Y0sPTTj64*pY&W#pRe=X
zj+$M5c(AS1e_Vb$_Iv3nOM67<1z#|Mv1|=;ZSrMTP;jDL**bkhw-DlAaH>Vw23thr
zuuMfr=Iyf0oze8jF&+NU><7H>1;oxLEGt6uXBW1lBF-n>_<x=~bKX|&I-d@SlPLLG
z_Eqcje0I9+4w<ohNB?T?Xj{;Jja>Qe^@u;Hgnwa;7Ug?-52D|-R)jY{{k!LM`sc%-
z`SFwF@^4;OFJ6qrT{Z!hAFP|-TVCgn=xNv3ovXN5Ij%Uhe|htJ?CHg-N7@k*06?9C
z0hbXSfOIk72Vfce2$*>Jgo|H*M*syESL8zpG0CW~$f>a^sB<Z4p+v-ZuA=!=bp$o_
zMXniLic+QY&18)%WDT)$M%XK6H?CssRIzrN){bZsbF|$}wEayzCpRM(FB6=PnY$m>
zJHX2KmQ6sg!>v%~kZ{*Kk#6BpUQw}r_wM`05^muWg5#4y6I1S{q(`M^#blA<NIAsZ
z{K3J&`T6;sot@+3<MZ?L%eVLc|A0~k2*F0u+z-aLf<v+Dl_ONXaCh|6MQLl3XZ|nO
zbPQQ!ImF0yQ9)bg{f6EORPF)-<iyz7@9|@C|HJ(glaepFe|kn{)&o*@hN4n_L7`F(
zyIgn*wV<Gg97|4MWmU~XBMDSCpB&_oZhdvFVQIOppfr(NE;^HrM;OWIN{3=MVHAdC
zHR-boi`f`W&9p6jT>iB3d39}lV>33ds3?b4cr=}{am)O$GgeqQaE|n}_0tcdy>Gpd
zkRK3fW3Bj;4zoxCNH2|pt3?`dypfnJ46*LRx5Fw)2swi=^cxI)b_UOSqw_@D!^uK<
zkJoe_hh-0oUH?okEY<5jp(yh6?e34Vynf>Hvh2*PO=*(A_EVfaj3_ufly0PLz11+j
zSr-LJ^}U|j-n7*2JOAir`ekgu>;e(YhsCV|sV{#cYtc9Xrd$XEY;<v83-J<zpw&6T
zNoH4vu`$Xw=_zc)ULF!|-y+|;1bqKBQ?A^F2c{E61kPd-2-`p%DLH<vCE%Br&dL0@
zJT8m~)QA#KmA;a@eRIi>Rc&>g&hGHj^uG+|T~~EbZx}02NPo6Y4xdwx2kCka(t0^K
z<CK4pN2E554z03m228z$o+L(ED+pHHYYT*kui?S$zH0>IZm)S+TFqY|T4n?R1gB21
zdJ|2J-x{Ko7-*#o(ddVfh_Y;`LQa@S1s0K}e>o=w3HP<Q(e7w@yVJ<90x?+@Ek+6H
zRDnkz5dW0wgGhxL`%O>oP*o03v)4OYTvFCsMA(HV);;aM@)C-PL3MEm+=?0`$0L{r
z0dSEx<6*GP>y(Fx-c+WKB|)J|Kw7q*v3eOUlU-4Etd;efY^rZVcmug60O=C!pNm$?
zofX4%_&SiAnvS>5K`EH9UXg~>wmF=>-zar9``&pS5mK6`!d=1E<M)}mBuAc5Cr-!Y
zUFq5Rwk-8+KerTdT=em`wkeg16yn#EH4K~u2_P5*lSxA~`$)15jc(b|7m!#J=>y;c
z{pII}>PoK-*cp%qFwcV9$Vm@$0cry@(wB-iDK~n+62`3=*~D@N2iB5AnsmKs7r!lk
z2T)!BNZq!ifLlyh_fO6}U#llmsc7v7K;0W!Epyb2Eusly+?DqRCTLk(0%)nFP%_Wn
zyK7vA6BgeCvY0MFpb62MCLWk<0;FS3k9H6sMy&EBxXQ<uLGliVOowNFJy`>(&}m%y
zOssCmj6_|WSuqAnbdv|%C0`D-O=dKIQsl**(&3ckJgM~`8^iz(TlF;)b^sOv@=71K
z9|q$KBzap>6|NLwe@+j{4x^#Jr6m&9sgQ@?b{p!S{Mnnvq|@jFiVNoefivcmLPRNR
z!a!7d|J)#gUKmoB`U0Tzn;Ijm2_Qj&e{kL#ZbJ?sZs-CMf6%@RZqZ;9-u{aKeEBE%
zT}4nb?)y%0*Jl8O{i^J_UYQ*KIe(r~f}ENd@ZzGArS+cPD@WIh9dNqdGbB#`OrYEm
z$8k1sJEB@+W~0TU`ahaMz9HtfCoXeZ3i4POHNH}=E<)#wUW$m3w*bqiHvN<FhP2;9
z!@P}jA9E6dAA}J2%{XM;MS^X%QLh#fiqifRgYQ>G18FWzL1|6jf$GvLtM-N?l8(n|
z_Tc1wS)FV_65g<b#f3=^Es1Ja!wK6DA`INY)I~6e7cYRun$*Y9LGjfRJG$vJVAy2W
zP(|h6SHX8bfekf?O7M&<=Fdcr3YKMiuw`rt#s4BMH>BEU3J(ce%vHYfofVJg9pcDc
zBd%J$&AE#~(}->-SY??b!$Ka&3Kw6a5gg1+*%M^4LK~X!|A3_a1xV8(O;Klp>eC(^
zzhhMKjWXti)!@x^Ydq+s84j~ph6RTdak2^LB+GGs`aZ>i`biopyV$EeRXl6#%oY(^
zEpuo8YCIeL@n?nCVzr1KavB&(&cV#FGcRsQh{&$<Nf~V&A$}VR(n0R+6D;+y!OA-_
z=D-1^8i{+XCW&mJMitf#dR$g-@azlZFH#^Kt$f6`Fwle|wPJ-yD}L(8PpH&C`^uzG
zBC;J#<jE=zNiBAOO#Sio+P}*Y>^b8b^r$+K&~?S4)JcVtJK*>PYoo#v%WR<VP55%d
zK#@a3+}<xaNfIw-_pSw-^jh<aqJd9Of)^_Oh1rjy#nk;C$-5DrMWz12JFTmy^=$lX
zNx9zS{<LA%WNo2JPL+e#&JqN*KWV$+M$i&nBQ9J2HWYUD0J6OA`)z4P6<CcB7E>K-
z9ZH7PPP+`}IDjGKf=dvg<0Tj1Forhh>N{vg)Q0ndL07v6a613E_Y%g^R4$ir3ZbHN
zitM<=Zlg$jnomq)J8ih$cQ<FHY_TF<dp=!#E0j&sM#sUpqyY$K?$PO##^)c*z@|x-
z#~KKG3|PGokJ3QH7kX{y{U4G4(<4R<UI6wt!tKABC5Ac)OP|x@Amyqp^~`;X4EN4n
zAq`AD`~cTc8GwS^em`XH5gd%&gjMnl;l~zDn-|ABbQcrs$JBL*vB)fw76pN8>dPEO
zT`+b2!?X{jlOi0097hi0SIW)6EO{XjDqfz3Tw)|Xt~!W4A@nY=H?=IP7=~jPfhm!J
zPg3x&9r4VNJ3U`$MmTDJ+FU8^A-X=~4<k~M+6vNxHzb!I(*=56)@iKZ?abDmO|-8f
z-Ue3m)q%=wPh52`OVk;RGT&tKLux6yW_wnpe-?5$74)}T0cBcj<K4Ph?w(>6Crolm
zd+Ew(7Xlkty0PQ2{t(<e10(Eg-l2C=s~8*0jEs^|VApSJT1{>nL5}ii6l`Sw9RjA)
zuU9(o3q83>U+VIO(`dV~GxDUW^uDALWIIdwQh!+LvwADw+rumNf2Cb}IUQiX3^0|y
z_kDJ}?!7w@>|#Anhjf}eS1Kn&{B^eWgE{pr1Atu_#v(q!Z}s~d7<$GH%|qoIdM(*;
z17K_UPCK!6u*^6BWbz*LBn7jw7zKdFd{tcR9stqWpToalK2t~TqwIG(VWNmI%Sbn6
z#{XHsHQ+)4f59z67T$P0rUatI%Xe9Vqr2U;@6ayrCdlNfzZ;XiQ}Sx?@{i9GsQpnc
zumicxh8#3-`+T>3Ir;y|2qf;)eUbE0Q^D3=W&{Q}{t%yk+BHYNOcBIT;rcdFtNZLN
zYhV#o9hmx=V%zgrT0iRTk9S`DWa!SQlo}tPG8-kv{wnR<IM&?JxA;TgSU=<%zsMrU
z{aqJ~`yw+NOCvfEvwfv3PqpIAc`-qJ`r1DX<NE+fI3RM6#buqAiSXJQ5FlY*SuA4l
z^3MmkP@4~BmXd2mX|XqI)0&V(qAZ5r%LGitxd#zJC`@l5foEC|Uy0KJ5r<eTuwA1n
z{F2z>pU=}!x=wF*$K%Bj>=5jI@i9ZXNKW3!`_}FvNHXVhD<+XS0J0m!w<rq^2f+pe
z436X2nC>SZ|L+(8(l!`F{AP<rc7SBamzvLbbzc)|JV@ZOJ_-P;Zn5MUCknzKv^x?U
zudI64qC=_$b+LrkdH+)dXyI$-p6BWljFX5=5^o?vJH(Y?)TLPLdJ>pHEY^Tzm|~S6
z5t^_R;rG1-AjcWM$Lbq`0X1xeM2^R$b*E&&+z$&e$gf~pyvgZhnKr=$hEDy>r09U-
zKdgZib3#jtz`2~zhnxaOz|eYMa8(iH!Eal`U;rJGtNR!nPT<K20cmUlTNY#~c}6fe
z5^q6HS9_Okhe*vjPRrhb4H<EFz#z>HxUwS1^kT~U$jrrY^#_a6{%DX;bsWV8USEa9
zU_r-q%$xS$ZC}`WQRd-U))D7}&6do`9{?$&pxjZa$cL;P^rgk^f5!s`Or+Nz03=9Y
zHP~PA2Xsp$hI3M)ygQeCGT0r!7Yx#Q6~{8c_&@Q07VlXj2FAH;fkq%|f|`dW`~SlJ
z_VVuk2mAZ6|9`RnJ<|Wd{*n@x<Uh}BDbM^okFPEdtCnx=kZ&864-(7=5}_{};Oz35
zgf-|pJUA2$4nx8yku4ea=hRz8F#HkNr>7uPt?+kkexRk;%9??xAl>kQ>o_*>7zlrc
z3xujVk9Jd^J%q(L(2bGkCg<oJj|y?f;xi_Y1X(JRrpN?cJWINENwYgb=+QdaNydeB
zQ6<*GdDJ0==pFjoC!%!gh)dT}5_7Bt(r3Dr!6U5bE~&_%rNj_WX5WIKKSlt+5EeqL
z5uUlG0Q0O7GSMg(lK|o&8CKlQm|aR;S}N89FbnE1cMX=+__6k-mTX5=Kn3%zx3Wj}
z(CaACVs!)|mTY!FXt$r}mmcVg^LydR-v8}_EtuH68o<9K%Jt>hr;Rmi-N+VLvZ|=8
zaA*#NxsBXe3}%4SxG-`5O(buggLM)sklfXQz}z|lcdQ#2g5`9?aft!>#MOC@-|#eW
z3N|~WK57w4apRN>(`8e)NoV1VZ!MMh#rtlZX8^_f9;Hdt<yZ}={^(X+2&}Qh@{1~|
zb}sRMKZb<+J~Tkzpsgy<Z+U2etTRChyw%}2X{|j6@=y!KPaX--NGd;N;u%5JPBYaD
zmefc8p=Wl$dRYU+t(cs}jUvK)vaKX6-6Va9QC96%@om;2p(59III=`(QF%f46-xEc
zb!K&5$!(>#7R4VZ3je+;n)_Ca??_Cr9Z=jRp^KDs&e5yDNcs>ZGd@B~q9Nf$Oq3R@
zfaZl7leOT_s$e9*=Os6^EKMM557Lz*CB}LCC9&ZQZ_eo^{Q~ac&Me)&CK59*m$4y!
zkNe4n34>6<B@4XDtSAS=%H4D@Of)g3uTk`gr;oiO19+?Y;D(aW4MnjVQ4{k@OLOif
zXdvNL&55z}%^N!N%qkOhDnHUxrfXGfH_dNT0Yk3XZAV`XCbjOUJJar8?a*m4jc!W3
zqxu0JJD%o&^-L*610CT_;-!!?ZsqJNYI0b$u>!TyI}zpWOk`aUlb$+1hk%mD6-^%5
z&1&V;AFaVTF`Iunuu`;YJvA2FL4NU?yuY7t4;%6gW7^ue+KU5TY-sBaT2N*`z=nTS
z%7JtZ2W%Csb+06dcXN4+*5m1)Jrh~bDSnGqR>Z_~2wMk$38sRr@m4g$ogCn<kbo9m
z7JXgQHo1G$BADo1H^<wwUFo?^CS>$?H9aO%xIx%8`iCN>3wm#9^fkiT^bozC_HOQA
zo$yJ+TCQguPS1&?+_E~WkOfBvQ=^Cz(^PBs&|x>snn}Hq_oF=0!<Nc)o$DRrwjc7Y
ze`F1mx7BePHGQc;dsD<LS?9*sLii-ux939HNyUU_tIrhKKhINF2eD{Ps;46N1f_e(
zCV_Y_?-1jXb!`1_pI?_>Hrf0I`m&W=J77FLYA&{BezJc3`#lKsn=xf5$5>b1cqqNU
z^WGq*8BC2vWa`UPSi6_=SFOPSTf1agqj0;2L+*5M#1DF5Qb%}8l5K<V%Y|iw1ASkI
zM4x{Jm#v0Lt~N=KF%R;wnXnnJqBBlS+5Ur=-JjAnOMLgEt&ZM5FMnP@!t<?xfqqN|
z@R(<saUuqI5is$$t!bdW$=nD%#D?vSmEAKhuD_$fW-PZuSUeKZa)4I{QQ+46z$kCD
z68z>{{hRc6ZyqUoFaMTU!U7>Y=~M=(N@Z5>N=*-K#$Ci6x4a0Rs%$!auH<#s|9-)N
z@5jwEyv6kU6nJ`0pN;1-4Lhd|+qd9|-*9a8v9<DU*EV`@5ZovjvYV6pYdzega=6Rj
z2w(t_^_^{Oyll#WlzZM~y4pb7zXitFVq(7Cel6UWSP+%dIqA0jI8Io<JssAY4;Bsf
zt<SiPH|R>W^4YeXz@X{w**+_oil17T62|!U+t0|DCD%Rl&Di#h{4-wa?`U=d44of-
z5(Dv3@#9dK1Zx6{RkVi`U)+r-|JUaWpocK6XfOpf?KfF{ZI}|&daK(q*d(pkG)nHm
zJ-cf)-JKjPp?8Zp;+B2(t$$Y<-9OpbV*$vqdCpct+K|UA5uL}TBg)R;J-T@hFOx&w
zV8gY0F$s;P&0bA)!DC6jT7S9+{Y$lDXI!3{1ueb%tNEH@CqMt=eX^4#fb%qH>X}T8
zk`BMvd)=1zY6rc`27(u&?<SY#W3IoAyP3b28WAn#ag8HPQa;QH8|L)&ExQrZX<_7q
zPi&c3ZwN<to{w08*nk5%mTJVTtT_wypP)=j%(UUnjP&rvtKp0|W(M*d&9SR8h<okS
zk)8Fgx|0FD9MLsmy+8lnBWlIG42pS>8MBCAu3d@Ii~T4?|I+EtlFeTZ?fg(Sv`gOl
zr`I=o9FR+kU+4U$V+mIy6C>o;uf~1(8uI=+#|rgl_*jHj#9gTHa)(%z<d>yi^uG6F
zSM?<F#9;V9Rlq+xL0}4mDTT=5+psoiQC0FX%q>CVOq7!CNaWY#!ocd%z`m)GV2(p6
zxwSSandA?#yaEkIf3G?_iZ?*kXK>>Q<~u&vez5Q2s_E~ISNic+X_Lj+W^~bYjtB3w
zJXaa&87#d<*=9CxltH4!8)C*+*gx<RcIrsIqsihHT!%!WWQvsUePuzA$Uh0z&znZ_
zU-SUmXIk6368U@KsW?QY9XX>_HQfvD*JYGhs`1rG#%2?d;egI~Tv}P%0G=2ZY7wW=
z+W;oG>?C~tvVlsw^@1x^ekaLg2ZBof(a-g=0f38wyzAzC*_~#9|LSM{HN$+nx?=T?
zGtEj1=}K{yUQ1RYelP1XIEUD8lifd}Wogmgr?k85*Sy&8dqIEK0scfb7s^GVYTUO+
zeCx0H_WEDPOIaF;rCg!iY-AK{_QkjNaR-|pzb(Ev`1JW8xar_C|KW!Ap&<NlEADWo
z;?UafaPRZs;lD$ziNho9@4sBWGpf0}`|*06Kk|PL_2Y8C-3Wt_ivx9fPU4PW57f_O
zi>4B2@9t4g1;EmaKjk+TS1-X@kBdDf_({bqQdl+pfno>bj|Gq7BCg`B;$nT$t(1x*
zS;`MphrMDf27kiHxJu1LnYk-#s8I<XmM9%N2fuNs+DJWC+bkDqolaiA5^{GeMd8<6
zPx-t<xm<AhxWsR}r)7FbAYN=sp7I-apPhn<s=PY#)r<7=?uYODso}?dF|2V_4y|mT
zxB_q?VBU|ZGJscb$I8;{RS{=XtO~pLp1uX|oi>ew!0acN++SYdWEfOCi9*aASL>%$
z8#?k`C&`*RR)1QrO?^{qDan7Qs>VjW&JJGhh^v!v6p-cqapz-Qd?a;4CFD-n?nuDG
zx8;XCzaPRfU(d~d&k*=KG)tdFF%!u#{p^3gCc2@n7o6uVQHz%-*#MPo)IatAFDXir
zQE;J{`&YBGbibrjb8C}?=hd0lQZI6v=hNcC+?qqwy9HdfTz*ZB>|ONV28*}NzIsXd
z`xG|92&P&OUT^6W)vX%OFF}e*abUVBQTav>j34Rq$-9tW0e`izCX{eU&>Hu!ViHb%
zM`?1tI<JkJl`E}4TD$zqOAvSAW#HnvsmXoK1e!&cY(?TU)Z=B~HtB`3yI3(Ox>z%0
z@k1HxP1xb0j*gc+f>Uu(no~rAmM5NC)p;&KATgJk#3<lwWbG=R$5Y(Mhl(FmdGfsf
z<>0H4v5Cp)**Ej={%`L8|6>1LFW<iu;9Jfg$Qwe`kmQueK@*sc6IGKYFS><DVvxz;
zlfR;unL^-6#d|8HeLyAB={Nf&;2^046mFC*dyDjpAj|%@O?V4DgoC+w8a1v@(pKYg
zB7H;fo9W5*6r+|ivb>XSnfl92)vBrOt|#=a3C)~O_Nj^${3OpG2`5g*UUL6@jlx?u
zpGO>Tzk6PI+x6w<9|+x<!a-GhBDJ_?9!8%Hhf!kYJ0gsbKr-q|H-&2lXm9C~{D1ar
zji8uiI8j)_&?25j95-fQX%%EMBPnd>7&WcGZOLpU%9X!03==6Aa8z?Mo2~?PC+?gS
z40*IY>kFDxBM^(y$`={?3+PKvNc$KArGL*WV(*=PUmq*HRv8z2aRj3MXQ;a9mfMie
zS*4WXa^#Mm5#H2QRK{8f)uUX-GhQ0NFwzQu<fAo6U6Lv~(Q0`2H5D7XxMe2I#*P6M
zla)P%kO;fs?$x~p9r%W*e;c_zNR`R#KFrLasxT5@3m`oH*0;NdFW3@yg9p!OC>Aq9
z`(|HDwN6=0%Jh7DJ1Mt0VR4Nx(1wLk@(@5>6ef63flA{d5YOOZ?*^I83&zrLUc)pN
zCvsZ;M5xp6$U_jiQ%@3GIOzkfyRo7P5PH$>c!-ffwn8qK1IY-+dw(eeFPLcGVQJW}
z=El5F`c@~UtP+qoE9?ZZ;AC2$y7A#=)WN$Ct^|79McnYhZH&R3S%V1*cW+)%GZ6^{
z(<?0+Tfjv6ygE>4E!b9o6weTtUDfOt0?KXF1ymP1d%}b$u&Rcb0n0-SSUTTQs21ju
zd<j&jIh(?p5%Dyr54dX2-w4DfYj=o6kjP_O)JN|3|HJ+5H#5}^yGz|68t+@)u$rVJ
zX`1mYAEEpnTOTdj%YENp^AMG3hWK;2=Z9A39jaPN80e%5?Yy(@Hd6&G7-BCAgI$ZK
zf1PvFIX<a-55hl@(17afANwRu(;EPNUk*BQw#Vx%Z$4YPwS3UEo^=mEqEcUDP*&=$
zalXW^y;Pda{%(nM{4ID0dxr7((k#N40I{)vxitY@_;K6ZPUB<{vwxlbof%`NK@e0F
zyFLNrmUAP%vpc=AVNmORw?k1$6*=CLRu?h~V(3~UFj$W}I5Bl#DeJqs?slU9jttE@
zTh>lxx#uDdoc$n;$@~>F6!TpdPWtxm&_4%bjCC<RZ!G>7QD^<u<o}25B`k=I(K)(1
zq{MB6bb|;;D<DXNAn0cs-Q6|1Q$$eI(IFtIASfjY0)h&P7(9HR=ZEKic;Cl;9M|i*
z&eQqt$+Ew*>=U5Cj&%*~PJ_i`rr*D(*-V!#0;egVfd2<}!oyFkdtXioNC|u4!i~47
z!d*mQ3@(;GP3}s9MU|(`*0>jflF?p51xg*6JX5jBfa22sYm{er{DU^tMaYc9T3|`x
z_G0$IMu3oz3o|@U3Bq$v);Gn4h}6QS@vFEcrg&BUrm*XZn`S22XhQz{h-QGY?{JFN
z7t#)#q&ABKy~s?%>>C5R!rVk)3y>Bxa2Ez;PU7LUByl~f(DP@eqz=qfY3{R+`u(vu
zXB@{?v!Dz0b!D<Lod+tf9J>PA=qn(E<amw?fj5SG&WKJQh@4r{w@Ay%sZkPc=QXH}
z67zs?wo_@eA_hZTIx`sq(4vn+P|RcBa-JP;%aS-I`>MZ5GoDgmhH}!HPXxhSjvs*k
zwk09@dIgJJAC)@_O~O!C#qW+kUh3yC4NS9wtqOfon=LdAZOty_R`k@^;4q7r&MrIY
zdZ}?xXm<ZgcKP39PqopU;r|$NC{X1c{QX3;`^LD8FIX@PJ7M%fQ>pUaE<l-0g663?
zGvt!T#V%~7Po2<J8PO|7uqd+3oz|{6RVC{K#X)FnK>VH>(b&5&pILRDH{{%2#L-WE
ze&;W!HW9w1PA;0)_9D`o2$OVHI_9;_i4f5pFF9Tu$gwr2=?0IN(P0NsYQ2i^Q(RJG
zDS)Bj`EXr?nh)a*QF2xHR!fdG$@nY6CagKvM3x;-YmREu)*Ov?Qr>s{4Y!qD4An}}
zy^2hdV0iwyswF(oSK$LE<7lOe+mH1<v@vU9`wmM-jq-t7qBk8Rst&*r2;g}G>rs|@
z=m=%k)@EEFs%{1r2IB<X9bUp#8S;AaHjJAYHdb7gQeE=z#QJje>*+D$vUu6ScPb)V
zr;JrN8ikjD>il%O5*3{#Xut5f-vF3g4PYnMIPBSm-AWq2`G!5<+-Dmnw{7X=AX(3$
zO6Ag0I{Mn9x7w;>eME581SrN{K8WTwp0=I{1r~$@kwitv5;uU<vu6%-S_fIOyFo{b
ztq?gZtVk9Lo#3hkho3bI<kWmfTFk7F0hknfS%O{ey_JgPM-nI7tr7kQq|`SsH+0>)
zM%ra!)>ZDZzr8rfi0W`d+D{Kb#p`f}3!_{&)he4fH^6QS0^70Q6xQLFvR2WHScVoU
z1s6KVst3_J>0qQ~3%gWR;8iHWH;A~KP_c@DLPaTBPQG6w=D`p>F1(B2^e@J$Q);C?
z6=%dieVK-Mh`JS`!eU2^L#v!Lbf|6Mur4TRZPI+_x!jb^V){#@YCmGfu9s!30Y<qQ
zQ(cCF2EqGBQH>LDy9`?B%y?+Zc62#!SgPB9h_P#91FVGpY!614<zo$ei$A@?70Hd2
zh<4@HVi1T{iW<=LR-3QW!OtRwOQ9`cSSqHDPDGWo7$Y|%qW(3}*Gh(N&+oCWlM7wk
zFZg;HAeN1arBNuTQ2wU%xTj%b$tl}+(L(jzbLfUYzu(i9srRpuIsh_r4rSJ4#dZ*C
z8f%fW$=tA1DCxqFwAX~NJ;CCu?pxfpzBv2WmB{_oBVF0qIK<7)W<ECr<@k2cd5uq?
z4XGJJK;xC5<sCZX8=rQx+bQb0Bw|<oV(9s(evAMB@^rdPhBh;0Wmf}aXrSlHMO$)N
zC{>I64qurQ)PSG#COk2;Wnwmefjf-yZz>vSg-~EOP1#8)`u`YC{8it4POK=`){oAr
zetHA$>e;Mke{}IydiDw2jn88glB$lyl*s-QR<E%vjXD1$2(o8~r1G(<VjArkt}2*u
zGbk~`1*#2@>ePz{VX|?T9X<Q@G*E`4bBWqKURrP6_t~{|XntSU{>PtlUWXICqQ+%N
z^I~r3L77;=)!1vSU(-nnKQEC@VPgH=y##{Tpn|Ul{DbWCxW@0#x0x2)fmKlLdjh{%
z>0(r<C{rQj@U0l)pp!y{Y8u!&=R8`CcS|j3u%CPgv5-p=*|(s^UpH??&+R|xslnP_
z#5i}93TQTFsAnFN@lGx(dE*@;dJ5L-FYZYlw5H>%<BF2@X<y+6Khl2Hxdm`LiqCUt
zWp{m8IU|ig5%&Gb3>DCMqON0%nSvzy4&<IKF2lB3*GY%K{NXbt;6Z`R7E^`?uP%;i
z4j*cVljM-jZO&a^IN!F@nT>gQRU@x#^E=VtqhfT7A#k!7RJ?;}-V;i@4c*Z{BfD<1
zuVe5Q)^=235h`@E{=2yh=5D}sbwLeg9QY!T9{AK*Z+7eW_FMbe>i~Vzm~|HSOl?gx
z^A)rgyCi$;S9}4E19mR3pCZp3OR@6%fRq)&AcZYOYAkuzEdhA;ooWbdV5m9MQmRH`
zXUKG{*4q%r9v}Gqi`)!vjmeLhUrHA6sIRo1@~Fa_ue12MJ1n>qb?+(wIe&iOSMZ1F
z*XUJdj7kOab9B1LF*+(u4l!;1?&-iaPhj=7%#8_`>#L8mGSF$1TQYmgS~!8&3c)Lt
zZ>{6l;z#JjgFxT|;rt26qhSXROZbuQx1b~2IX}n%)Tz_cDJaIJ=a5YkDz;rCQ5|a^
zMu7M+ajT|#%(Y(EJVZqW#mS8J=HRfoK=I$gcU9%!L6*+Epntc8ia;VaXlnVFJEfIB
z?)ZtUsiMQ8&Ozx})BWm)AU0X9Fq(}{AaFvE?Q&40EmhQkLDGV3Y8@2#0V|h1^CrdU
zZ$_PrHh~XKO*N$v61Re7(FiN)a2mzIVnm@T2W*|L%u?T{nEbr!6O|kkxa{Iwu=9OO
zfsxE8eueq(o8R~W-@y;TJz5lH82Ou&ppPTw3soUDi=wC)<6UwKQJVIMFfQHjP`%~D
z&V@SFcog?BD^Y<KxRgo`+DBy6_zMU<eSbk8poG|B1@}JyYvGtqes3KY&}$6oAJvZ+
z;D7uP)$DTK>S}<H*2+HmFZ_ez&b*c=;7aU{#-QSr!x6EwY*Fq7(2(L)Q;MY$5t=j+
zta2{uU`ip#=G<-kbeBx4wC53G_$kC|G;CpAa1pEhGg~_}Bg+XpXn!1*)gH)O2NCcL
z`g~QV!tlzk@4z1;n&%^^1&;v4r+^eZe`m1nGc5k_yL^H*A@$hUejS2!0g4f!40@5Q
zBVvvVga72E7_09ZE3KUp!wpA;IyO<$qw2d|rhD#C+5>V9MWfDW4AwIHWH`|@c9#wp
z(@IR%Y#<Q{)lyXQ1C;QGPu7mKV)loeOef}pI5tLWPi_|IpK8D#CEY7-56nT<y2jRT
zd?#>#boLztZ-OGhCS)ujRz<wO6>suwK|^ZL++Zxm^3jy-BRzh1s6AGckYI7|+=c*2
zAkx7|ox|4WU0ec>EX)TUGzY+sM~6Y8*Q6^fIEJmR+E^x124CaS%XV<#k75|mSZ}vj
zy|LH_q4b;*5z~vN2PaN{L6}!w+^m4d4?c6A)>o|W__71Gp13lfeo2jMdWx`RKg)Fv
z^ywq>=kSIJv#OW_s&y)x(ua&H$xYg-d8^N1NXZ|(-8)xs^r@#~E>HPA<OAH#b2({P
zE$x1Ab|ahvRXo=S&hfF@`s+}m#JmrLENn~G4}w>yig&JUNw|ugZv$A4-_-!_y+zJ-
zgy#X|Wb4Dcd%Jy_#B+<r-RLM_QzGV`xbNXWL54x$Dd^6#A9pr><TIa3`t5f69pw3a
z`r&sH=KrhP^n15I@KONu(&@jj0Q#Q+=r`?%OMx7Z19|exS$}GY;HpjsK(}pqR41wi
zM60=zs#_5yrU*X5H4fFEfhLcA1m9>)NXjx)YO=e4tA+QSE`>egZ;1O`Gcs8baND6^
zqM@uYtnfBi=5+#LeT1EQcbQVlZ~?!)8~(;uBIYh%PjX{(V{caycaJ3d^ifFfHP0#W
zmM0#eUkAkB?9<wqe!Yc)PUoxEgw_v9w6+KEa5q7|Alh_rZIB&TJ1o?XbwNi=gPj6_
z*b(9Q2n`7IIRC$Az#+)#KrMz>1Ud9iqCL#$!w7#QmuuwHyU_>dizV2XMni98JleEv
zvC_<&_`IQ*t=9YWswSJ)cvPAm${}?$s~NI^&|8~=(fks9B;A6_xMvkNK2V^?vk!&b
zR0Puvy|OsvdY-GECLSm~YTSELYxI~(dYo28P4an^_wreckErdXTPHxLRk29@O6@VP
zFZ%(*elHVsfiKLjzTjPdeD)I7u)&A^Lh9(xkQsH|jW<0mIOnVld)Bin)bflj#SNA6
zPprECY#+(s8?muRcZf`qE|l&Mdyp1CoS~fYm;r7xXVx#pKPDwLX*|syJMB_G)o5(@
z3Bq@P7u-MnwsbdjCO;Moof(lbL#F0PPUc|fLs{v^g&vCdo*!{u07E=ET-B3JMKZa9
zbsywiXD0wmxqwray>p)d^GbJM>IY+5sd_r83wcX&&!tKnfD_i&XQb-$Wq*}g$>qME
zV(3IJQK-6c`LsM>WET<H2l#N-a?|C@#@y7p6W)%kRpv~Vg9+H1L#gly7D^#*olb52
zi&(UuLS>jN7qk@o6xz1^BB!_{o%ew#ksGb<!yH*qom>quE#gcA=;yjpv|T?M16e9b
zECFBMhnYGAxw74JWs34o-8cF4ZEABzT3+20amH3w%GuGgo8rl|_Zjf#f$xEqo0O@5
zkgwerG1<c>lV5Ey-#%|D2pD}U@DQH6Col~XK?zEL&kw%iZZ@&Kl78NL3_#19o1NIT
zahc-wQo4&OJlsHwZ9oSvNO8*wr+fx|-e3K%dhB$!WW^!L>jAP7wS@Rme$hB}ZHeNe
z&!!g&5X-yY8cetbdd8&+Z=MYt!v@oFBd>h80|2Ii=iF5lXNTv!*LfvGdu_MstfQ5C
zZfcGVR$UcoWvc?tw{~CA2X!QYq-Q#8u!%=0h^%Evk+@&aU7vi4fi^o_9&*?8GY0EX
z;F`UhN*Ooy;{Rm~%ICR@`By<sCcx#}{L^Oexi*RA%135TUsR}5um<}ymMjhU^4z2A
zLfT%#89`%5^lj||i!%{>u23gV1udNnO^AiSIj7*eSqWO5{-3WH%V&C``A=Gb$g)(E
zB=(woqxc5kaIOf%wuBQw^?Fu;;`w8o`%v#TjWy@2&jTSQiw~U4vq8L-h`|Br7+c1_
zPsfdti}NzkmYIFF4<)a6;E*x$b(s@Q7M4TuTo3s<W{(ihJ7gqq=)661ImfACV5@~K
zd_C~xw#Dja3swVe8qX3mj%e2)UP!|w$@4_=S4r0NTL%9;zEOF-g<?rI`7Zj-2;*&Q
z<}5V(yD@PQo<%grT3|+L-+XUUF``(S7zRIm%9a<4WesLC7?k+0v(rb2tH^z_a1&OY
z$!lxMK2lQ=bf0^5_2|Pw)~(+XyOu((=e={$8<St_0FJooLN#_jdhU#O3VAoU83eu^
zuP(+~j;8BLrPGQ{%!&Six-8thkpXBNvHY_CTm0I6Go$(WcRUr8zVs6XVUML<Cd|ug
zbGLN9^QX=4nr3UB;FMGG+G)K{2?lp+eNs-b1rBp>e|Ju;e0^m+LWc%<hR@6YhlwG7
z7rcF)-PYx`O3vfjVCj)tdFc08Ja6EW3b}fZ@Zay0Sa?hdgS~||)pi-aRA-}aJpgFU
z?;@&{2^gu`h<1kOJ8OS;Ua(Sa#<lVBZh7}F+fXipk1xZO7B4M+uME*hOf?Sel5n%u
z_CC&a0F&6AI6hjN#(&<ArH)udCtN?T3yrf2egFQgaKx34WBtE0Px5jC=&o*eIO#rm
zz;14e=Q!@&*YfYoneXm0deODORbg`Qd~5N!3MZc4iG}7d^xGn3>-S)rL=D~N`+Gih
zd+rZL4HoVa<4r7D!`GD}7XBT-u@)dGfvNL^bC<*7g~MUdgNPTgng4#G$4l&O$T1Xi
zjv7eOnPuh`D@Mmf*%*hrEY}y6oeHn68}!&&-K_t75{=rz){<nD$94zS7z`FqJWvjI
z3>-vZXKE)722cOsQytsha6MNVviJMlTW7;A$kF}cUmXvOW`Ms#_4+fXR+A0`sf4Vy
z?C3=fDJRB#pMeuMi*XD=S%5dY`aC+=B|^Ta&M%n1Ebr9-c{JDYI$dIjCe}o{OL&?z
zKC31zqGxDoX>0G~cI&oZP}sc(<hZ1?th}PK%G$=(&TiX@nW2g4Ic9!!7P<DD0{iw!
zT`=iYRvtNK9ZoY=th0cQmZ%;^Eu$w(!WaoeV%WAheR(nb;RWU8k?#2N+i&g&)aO@K
zVYn`RKT{Wv@p+QH*M!N?R|(&*zF|}!z&{wrz(+_C3ltbmVwLW%)ZG(!oXjg47BWnM
zjAsdNMM){oRU71pI}fCY2a8M<srYYBHhj0zOYKypSrNCk8mrJt7cglI5udL$Ehp40
z&wENIa}acF?kP*Yxv2b-&*>$@q?SAH)Sf9dg-Ne;`>hS6O5T-u2lP^YJ=JtqcJ29t
za}a~$k1u-tag2hd&EfJ}BZ=@=K~fP4+Y@=R?$dp!Z)Q_vSE3oD?<slrmbmi(DmY_a
zieNyu0Im`zpI<X;c<I|=QA>!L|G<ngQL0PxN(>1oivf%5OPz@cF7g_`g7mbNGR9ip
zsWdU$C7NRc$)UxxLjNozstIereJ&bPHx&6NistR1L;gb9P^2+ND`930bv=i|5J)Rf
zKp`Uu9;+xuIZq_q0Vm2Mf%<p}2bU0f!+*Ca{HhL2Hf08gkfyUHA_6=>6|mF)$$KSZ
zs075$qYfOiZ1}nPkfCr(fh(87oR?slX^Q?FQYu^!h?EkeQgW;;uh-<}tBOJ5@^$hj
z@^mRPTiX1HuQY<ptY7g=e0rTYq<|7X0pZI{AuH!nPy-N6LjpNAXUw3kG|!mG1d`4%
zhk#TD?$%VL6F9}at}`5MV`yDC>tc}sZ|Fe20!KuWy`I<*;#xou5e($de#y(A)DLI|
zXQ&Z5vNUH1v{Ft4GU6{?{V?ij8fPNXt(!ze)|+NQi-vB`k&q_1(~{~pZpAI#aTd25
zu$CX#c)*g++d)OM(isFMDSaFR+^}y3be}O#orvt!-Mrm=w=V-^cs*)n04ZdQl|yK&
zo>Tn#Fd2oh8QS$;{an5uPY3!4Ar#QFmu^A6LQnM!3`V#VBMo4ps=xtcs^3cIOWDCy
zo5v?I>%>Cc|JN-Jh(XSN=u-rtns?^lQbQHgR<Eq04Ws}ug8*kkR`|sUCbZuM3wIqE
zvj*Qf8o1~08wfx`S<M5GYX{>vnq`Z>_)3iP00}AQ7yJn*Ni+wQ<cF8Qkat0im)0J5
zev9+(cuv)sOxNb^{h&VeryX3QM-quyyUDv>3hi^bQ?rnF57)<MC%3t#g9A+=IRY}d
zz_Mee@w8%2KL_q!ByZSq#wSGBySx-)CpRC=VxV92Zc4Myi3GVX?j_gxIS%&5z0DJS
zRohv4BRiV!`RSIwo{eX2*nbf{vdo#}5wMO01dgYdyGlD;S?&zv>Z!&*yUNrLy*5U8
z%KanuY}b|X31)z%c82b}LPz(M(@EH}U0t9a5W(Zpuc$|(`f1!Bnm@J<P+98#X##*s
zIPxQ8YDwswW;?-fzF)V!2DvuPF}Xg`X90Rw_*01YkA80eG}{&UvFkTvz4+gMyOhYP
zpU%XYF^{mL%6sz65T8g4fN0mRxDgqgdCmLfSl3^`V^Wx+f(aLD?q*;N)`E|F?oeWO
z<g$fWTA>*6+gnO4H%K9aJh{P8I-|XVl84N5x}n3M%|J06_}mSL$Mr4JFppU<A#gyX
zk{pRvlL);$Pzj_TBOlULB>NwYaMEJs#PvxDnW}h^L;#tk3*gMj#3KxPQ^Gdc$n<z}
z8)Zm+X^4Ye7NBfki+3kIyPGpiR6jhXhRB`517U)vR_OQU3ZjOaIXM8}m$(_S1)?b@
zM2_?|V`+H#dL5J-b+I9Hc}26|Xr2cHD#n|WNcc&pb#{#GW6=SlKiL6LRK1AIXcvF=
zdgM%rn6Bgm)|-`7wBo`LW6lEA>)F+S6|n8#yv9LM0KN+YGKMaP?30&hR$UzpR680G
z2+OoR=<+ZY{|KQwx&UI0RnyoJAA{CkIboU4$spC&G}Y>^^>5^F3pZEQl9Uz$^NF9W
zzK+@?la-s@?j#2?01VH)0XfeDs9>TYEFa*0K{+Bq%NA0^0AwJ>y#G~<ixt|~1&Fa@
zFq}LCbT!(*7`*!7*b7-_JEa_q(tcoFO9B_j!*^E6>d(xHqSx1f91bg}A3|i>{YRzm
z=p=;c*2(S+)UNpZH!xzw3FMEhz{K_zbeW1np6O<g;A!<lUXoSbL3d<d%blMipI1K-
zu8EJ3P*T~%S~Y4`K(yEpdjc>eP#6zw=>YWR)%Sk3zl(cmF?hwEwu8r{0s%G_HQ{lM
zm;V5ykF(R}60?IV--mS?ve!qR7ZX<+4e~-~Fml@Pn+d|IB%n;frZA#;J^s4t6VCT?
z@je7`GiFHUyKo6GZ$x6CkdMCD^i`o#izM|1O5%X3zBr)3+KU-EGFH=p0l=sXV6`!V
z-&nkX1#`cC0iCNW4pE@=K~!69!c6>|SejG;A>c?dUz=oBv%f7HttM>EI&8}vOpJH{
z1wNruEMD3Fn3(cwDyU4cbdNhzbw%yfz4wacmr0+r!0Iz(n&WcXJ3HEfXD?$-m8!T7
zygtd?V`=k--m#v)SzukH$=08$Edn6(hziX!7b~INz-*>h)E66B3Ds5`+=f<ly$blW
zAdiC#dufkr3VyJbrup-=nT?cU=FC?(2htue##7T*;Z^#zgMHD*oGi!!b3%9$#wSuh
zqg*wN5ON>wYxcY1#^;#ss}+J%Dv&pV60?bx)?J>18k4hni0(U<{-#}k?t=9n%6)e-
zBYh??zeIG)et0;#SADx>A4D#)<2sCIT*jAuwpO&hxygQ+szU2kDT^SA=dn<L;%9mo
zf=zRFP#@FP`vXl`!j1el`!wGvN)G3Ir3W9uthm!7Vmyca9kH1vjc$cg@h2emz$lxZ
zZ~$b<98kkZ`dGByFsjJn>uT-@WBm^_eVG!RK#y}a^ZW(S3SEibqy6l{7Ad#46>R-p
zf~oiIVhz9F&yI6W+8YRWHnep(@#OVafZ(_27jf;N#XLFanjs+$LFxR$fWPUeW6QK5
zEIYRy@1u+Tr20@iW=*-B`+*lJRN~561f16?Ru*JtWfs0tjfcxJ5tbU8?BD!sQidCW
zcK_qu4{2$-akBB|v(fMM<@}=^Jx>TYVXX*mC-1}+0{N1hK6$VIlB2$0e(#y70X4bd
zN4pX)6{05>eJ9!=lI;PSp)a0M*%{F!drn1k>%@pR|6G%I5fJ#e_7v<AvRyiTL^lgz
zK~z)W#tB6?=itomK_yhg@gN(zAK_&)CFZ!+aUq=oBKOH3(0CpmlQ}8+y<7yZ4OT)I
z1gp(DFHkb)s<1_bOrcV+LKpvVRTpj?1ybY^_W{eQgKa-$gsD<N3%T5}6J=2Vu}33}
zUtF#f(7&xuMTih)nAe{IEnag|Ur$m{bgpP#{t>Y?0Fj84qkrv1|3+tUKg#~L9i5h{
zE6NFE=8FA@a(UH^bA|&!66;_&EK|j6q!j<F`%}P}sU=u43j;kX%}oDw6AWd8wUM8V
zn0j$*Ssof&mcqU50(cLza`(~0ho)9l9RWp^cH8evZUQ$F`hO}7O3;%!kK#JzjKF<F
zb*~(@cMJRajK~LN1;n%+O=eXz5ZOGvkHdX3;RSCq$4HsVF#(IHl^QovgiYMfm#?SD
zEzAN`aSAlZMaL>BME}7l`P|%<D<n<D&{}Gal}**`QWC!cU{EegTO$mIw02Y(VU|y*
z5_WNrsTDk<SW0G<syG?5E|?yK<8iH(Bp$~&al{?|4}i%u0;`4E?&cRdI^=2EcTL<;
z4_>@%Q{U2BVuJB+LVtY%V6y=rkx9kpqKx^C8z_LyUrDIbO+dnW=Q^X=!Guf*z}S#r
zN_H|YOp{qoCpCMZyF3^->5Lv+1@p6M4#TZCT|lunOmzu=Q2l>aSsV3la_u8PIe<B1
zG63FB`^Nz2JF8+>bETH?V>oZijJcr*$c70Byou%s*hYoly!e>UA1=R)VllrT(GPbK
z-qEQ6NAS1lo10~Nc-ULNM`xlBKp-ckd%zsjKAgRoS|o1U;C1sGKiI;ujOjuXsf@SU
zNJd0i2^5GZnrgET3*5E`XdM}asoh-j{#csgAaG>uXV_obbyK3W3d3D^(}|YldgfI)
z7kWR5y%`W?Y=N-Ov^s!4KV>X})p1U`I>sT<&{>p=NI>3%aRdn{{0Xh>CSv_5beheR
zqgL|16`KVGl!)e_ALOXX^f>#3wYVkt40mP0gG-+tjP)Yl8(bgCL(=KUXr&VKYCq*#
zqjlzlY?zK$g<=+XI4r#^rf+T8)eA|_%5Zy;1?tu9=FSr<cceeiwXQPj<N}gv>rn|-
zFka6RRHh)FNi>2<EOAanDhso32*<%T?^uf7w-n=l+1h;J9bjph6ia=-<Y$WcC^VPB
zS|6dse2;e~^Q%{+Jt6C#SauL8s#cU|wLb8RJ5*~_(k5T(@28Tt83s)KDw(32aI!hm
zE)q)(XSZyqCT`+KfB!*0<1V>$U7XXapLWMvfLo%Whf+>RNl+(M4ltIhlY|qAwI9>W
zLT{CXH=^3DE`Jo8o)j+2;@5kURd9hE<h^JnW7T#C)qV-XyofYQdUf{(u1wS@Z+i>H
z+;*C~RwU!ms8#p7U!>`6V?L*OL+94r^%~R|=KS(Ij8-T<er~sW#8`ryBWn7(Dy}+o
zeM%z9L#E84JpnF~R8f$!fbkWSM=Ywatkk?;Xf?i_pg#T7_VW`xea!W(7c@rF{D72@
z1=-9!)Dm+M`)mV&HaNz5aqI(E0-Thgt$13D-kmc-1BVeL=}rThI3AJH&u1lxR<TX1
z70oJ@yZHpE9tKk90~Q^VW@DB;p!7aUNlNE{`S_3Xl8yLd#KEI#H>ZPK-dbO-|2d&?
znszwk(n!!kmfNGn&LhV~SdL2r6=A)aeO5tJpIq?A#)Y1>jh)r)G7hJNinJVfUyxiB
z+v026xRui4f@Y;xXqhLpye?%q5Mn)N_}GH}a>u=lD$2ql8|p@54S>tNoKtC8*F$+F
z<{_xQEP2V$9TsQZ=$o#2=L?zV%wJqPsKKYjaec(2K)+jmrz_e4(xo_<6vMjKm-*N4
zme20I6);|Wo{Q}wI?m?afcgjtec2rO<iy)Fd%IQp)~%bfrk^T{AI|lAcHq2HStZ78
zZ~x`IEA?h3=&;*dBs|f?$5&kDxS!8_s$HVMkAVcFUW0pqvxP~&K@NpEY={!JdzW)M
z9Z|y6L*&?DaLoHv24I8%>8}?4m(!OKYqp{z5}#1}1L1z3jnu!t+WZcHATYt{J&<Fl
zR49tAH{ngB0g%NG2$2NBT=vh|M_@AiAm)_zC~qD_6o57gw?^>=7ayK%$kN;9hoQ;*
zCB#c9{#@n(@Ez7;8KDL8QM_1FZ0`{}RgMWcNb@QGYXiROkCaZ>A?p=Gq8oljy&pte
z75PA@IwqXw7KnI|F1ZbG_<&S}$n5@P?k2n9p$?AdBF0oZ%&NA6Bc~z?&*%T@QUo=4
z?yGW40cWs*IbAefm4tn0C(u)HB_L23)ADPGoJ$&($pBQ`iW9j6nI_%hi-3wbd=uv?
zVoTTM4<SBjm%mk@psmw?@%W*>xNPq|iy;Mx?+WD{R|`{Pfgx15$CM}FyN)K6Hianf
zO>MnAEdMh|3B!3VaxGTL;k&Z?ckM|BmEhn@k%}U|-!CP9SIrJq&Hk=d^-#GuSp8wJ
zhW}Uft(dy)4sAQ?a3;B47}P*dYUnN0atDC}09)NW#+0|ZN5O{7U6Mi}0^D61S1_7u
zI=fCo+mlGJF91%Y%Kf`aoD5DGdOO%>9~%zoxJlM^SGrs~8d0*O>#4-|lr}0O1nn|<
zKZAH@s4KnwSgt6<hzm%BC5Xjz{dek5TR?1Cyb9CF$q*{8wMaH(>$m)!bEvx%<uzae
zo(LX6*eDKl;6o!+ABpH+>@6Q@(=yfMI9Ta-=^owombO^vszM2k2dOUK)iUn6!PDDP
zC0gRpXF70RMj<+Y^M&gZ^qB%3nv7g92C1w1PG80>@94)1#T)IPSpHIWQT*)8*PU?M
z<`^9)yz~fD5-LCG4`1Yoxv(lv0*mPTpA^EHz5oRWloPvDUdEgdl~hEGRq|6F$*umd
zZNmCIcEHeu$vjRUOj5qCjj5q4v8q<qHLiZ$0ua;z%I{b$^CQMNAL-v62uddOe+^a8
z`S~~`%)T`-z#sQtYkSCAC3eyvg$@z%8SWfE?l*i1c942+ZQy?LU2l$w(8r*=KUo9c
zq>Ek!YI$HUtE`3xS_>`w;C+2bB>ZRp0pq>%T8vKk6X8|zB|JHp5PeNG2$?k$`tHsB
z=rPxU^9j<8CHmvBywaHl9=?@09gXjV3{1+7HY;;+m&@I)`;Jss{OjQau%;z2<#eRw
z2ISGZp;8`^)gCQ@?ADyhPCEDO?=-B56(sJZhLUYdi--lZPa31RFf(9Yjc37zCkhoY
z%@Hx$Db4pn^^wBMGL$xLK5fopn$n++i|miT-6nS${<;x7k>xoslgYg@Jh4I#EVD{3
zJy)!x{kB-k_nH)b-Rj|K>JdisJwI&Tk?i#=tIQ6(metOut6q-gc1CPzYZ=7s_T9q1
z2t~^=-WY}VK)6oB_#z&ZGsp1V%PhwhmH)kw{T^D55%Uo)Fm*8^pX)}XXmwtmLxn#3
zcusovGH-9R>8W~WTX&B-@c8TdV-o%c3#lf(Kf2F+>qFzEA!jB#XVI&?#^2Vg8i+%X
z#iwRg|Kumjz#m0U)gC4zf6lshJjOryRHi~>{I{aqZ8>sqtf<px?~Al?i#4C)oi#qn
zadmWhpil)?p@JsJg=IU?mw}2jg$;&O2yjx2bOhK;2iZ6`mWKpQi#BvpZVH(L<d%K*
zot)zqTzgh4UKxY=WGFOPS1iNki{oT|djXLmO<yFCYDSo9Q?1Stxcf(KYDM!8yXo3~
zo27F9yw21@7inJmK3B?L*^MZncK+J>$vX@QQ#pnsY=1*_)|oCO#w8W3jhaWz{pVcf
z0EegatG=fTzwe7xmWc$pZCgf`^Eoae39mkFTv5F&wE0(vb(7zzvR!9G#FXEYEU;de
zxc<0h!(WR*i^4sSz9rZ)oNku49**(#ybr5Xh+D6&%u@7YE>iMHf8@^ES9R&$il!;V
z;WHOg3spTRJ=D(Zhojkp9I3{#H#onKyivW<GYq=6S8NnKjz^{5nt(veFRqY<pt(cb
zE=&f;OFy?L$Hx}U$=(a4rk{1h%0-c9`P_f!DJ+-iGB>MUtNk)Yz)@08dH7kou0DpV
zwdk)C+<daPw+kXN?f7P23WiG47{sBQw(q5uz3!}!h%NeFwI@lxeNtgCKP`0**Nni!
zrNlqqlPk({KdXw?yqCl@$L<o|F|_X<%tiFkT>1P&@*a#UQastwM-ilZ4=s65fK%Tw
z#r@s(!O34J11qnHjEa_?sjbs3zpw{!ycrc0t=+ZaZ+!`Bt^yVt&<Iyct|fD2^)Vgp
zD+1o6kX<qLpB|sX@nWvmQ~$*lE7Ot?%+Mk)_6-4DDqM_POUG66TDcm7leyAdtN|iG
z*L;jzeUN~HgJX`>BAQAw?>;aDa@n<C1G3~<p8U>G)X6L1D;iR=(}{h>Acdmandz8*
z352Q~M@P?&36dbu3c!1E8v{;!cI@IaZoHUe%hUwltRbhq4lt?&*MHt0oAlt5DJ1q`
zQmu)C-u|ZUrS+i%L1@U|O8aVlop`1?g@fK~9kVd5TrCxmS09qI#H|=)qD~Kssgdp{
z?oiHsSM<BIdavrQu&e()y0bP?>hRO={j>Y$A}R-Om95x{xmC!A5<-C=zLaR#54D@1
zkJ7@;zZvQzu}C?kuzbyBc%Cl#8sy9mngg<kPe)6WKugRI^(GV=raguXnZ*TWJqa*f
zO+}d(dz}u3>_1k&4`1|miE<Lq_IvnDHP)^=2$M*Cdjg6fFs4Dx{zzO$U9PYF+0W|a
zHa3Pk<iP>KFFqiu+Crsv^ud$gtqEXTEGdu4F@b@y=o^F@fC`-pNmF){P{}2FQ3iDK
zXz$%47&vw5RgFu?hv}ygkX1V2txC;JIl&qSPoj`upVz>R8Kuqk^m?iyQm1(<NO=7p
zM9CaaE8JzSeIMi3b2}-!!}KK0+%Ny5ZKO>3qRP_uGB!GP9FW;=#)VAF>$1Usb|gZ|
znQ8;*XAn*S>qE@!e_mNS`}&ecQcjOiHtF`I?n!!=xMq5Cx}`vTrWnXa;`M9QRk501
zKP<LL6$a$l{$H_h@r76zB70rj!_l|=8S0&V)e5wn#Wox`@0i;3)m|jPW5CK>SNMcM
z)$OEX)EdO;0u7|i2z$%cY(#d6PIhsf5Xji8F_dUK?+UZ?poR5cyA?TmX~DusxZ5~e
zFi(Lsp3yY??d@Hh+LWH97ztSHUv_gVjd8ozv;03Ab+3w218WOkn)UYQ*S|ic%VPXf
zQfV1RpM6b5W*FShB4~efsa@pgx&S=!zbXzUj2-c{R^;9OT&a7C-+}@0DeEFx)!_XM
zs#dd%8|16jkL~@gPc9VTAQ#mWw4hL?eI(*UZ>i44Ejh3$;zqLy8|Ath$(9@!8v{Wp
z&A0?U+S5Keh(v1&_(b-|fFS9~b`|I@)JJUbAo_(@?ux_MeE^1d-);Yf)F<dKQKhs<
zKg|8Wzp$n81&8oW#^0Au2N=y(k4M_l??ClW&+{CfSG>A<<^IVV&$aGK7U|ZOYwuY>
zTZ=b`u6{OJ?)M_G-coUv`hta^W(CADgRF|9EC6JA5-B6x1*2-6#nmzevy6DVUNF<m
z(O@dfUPy5GOp}P(Y_Yrbmh107&sHZPU`VXDi+x`n15?3tY=|8ms7xhqTc?RbPpLMw
zsMt?D8*waA{Bvm+@VSw8pki|Z?bcP=s3{R*!%k6(+}9T7uB7O?!c?~1VUmxlr!Tr1
z{4FiM1H6E`;xFlnj>sfSifkYk6!QYd!~_*NE0Qq{l-(Jxn9Hpjat0X_HctQq(v(n~
zOGI^uz_OO1?Oay=kcZs+OC>Fjuwa&REZ)IVt`};IgG%mfB)&fZK)kTfZQ}Gl>&^@6
zJT*rr>4peHyO2Z<h(Q#!$iNtf3kdwk#)mImt=>V4ck5%N#rh%D;wH%J9*|0=_`mJS
z5~^M<)@2uAsoYU1?Qxa*|K{FOR1ohRy`A7UA+gb%$C|YndEM4Pne84V1Q%Si-~mz)
zoMm%5RxCQtLC5PH0aQ_e<^MlI_0}3nx`H-DrkXx1lI{5j?(C&!{E-b673+r+T%f-b
zE{23Ycuj3@o!57a^82Jl)9uV(BKlrp5ci4VYu*sD#78KSMZ#|BLisCnGxjRVi}Mi&
zTzPt<WY^L2T;u0BBGAhvKfoN!Yq6A5qhbR!GvTqck+YVgS%`*;HCfe#fXoD3fUI8q
z60H|X^I8Qa3t?{sV6njf>+AM-n>CTds)CqY3Q$iD$5w9+3OgVJ+oFIsodeqKIvZ|B
z*Z^5}K&<1>|A*ls{Sg7QvGo8Tv{C&w4;IJ<Dz2#UK53qy6+FV+!gcJrG>aov*2x&}
zs=%pJCU7^IL6i7M6uSiDmnV&A**1$bF@Oob$+MjSYzF2_OJREshc<G3SL?le#N!JA
zxd1bvda207vlTt!U3)8ppHE_B%-1s*ly99%i(7x+E%fslQ?rc8D=Xq$naU$QI{^Is
zxnv!(GY=vu(dZ`Sn+{#wg@F0#{>x9aaJ7B}7x4NL%;)V!tHS>1yJp3>@un+^kN*Xm
zNZXy7C0B_kJ1D<j60IW+YJW>;_;Tw3_nD;IY8rcoSzJ&~O%&I#y&x_`3;<RV%aHaN
zS4TZTf&UbxePg{fnUNrCE0B4MR_ZQ$*mf#tZa-OQ>(k57Ff#3N->1u4%kaLhiW}2^
z=v1qgyT1j`ukCQBfD<^#X|>UyJQg~Gc_7fcSTW$kJ`!@YJP-6fro1WXHbe@}`x&f&
zD383Y+Ljls;zFBmUfx@0zhe>mmc1qP{$~DHGB6GhhMnl!TV=<QbOS^>=zs5>yKuQJ
zO~i$D)m*-Fo3CQxv50kR6TQzJ|46SJ>?9hgb`tZ^;L0bxyH6IM`Gx)b_;x|gnkMDV
zmw}1m_k>6)tsY8-KH=>BIZZefsughk#cwaj)$jq9=K*n-RyP>0_4M;=1twiv-DDdL
zA5os>O7vgd;-ifi)71*fs(QL5d^KXi=6O)w<JIjaYQJ9I)Cw+ov-<JUo1T6~0H`dQ
zGKsM>qG7N-V2IjNf!ZBTlC<b(0<bv%r2TA!NQhfI^QUX0_g>331fvtE&&G`hX3!No
zczG<u;DrfdL=VVRLj4pH4v31~aAaAE26CZpFfEJRbzZ%EXrfA_(QhaHEI7aaj4X=Z
z#Jo@)#4sFU0i|pFvUnL(8HXzyO}ya@5TjZMzh%}R_mLX*IRDZYZ;`(%{1rc(m9*Gf
z4|T((BE$M}u`~9g_rHW5`Z)|fRUJ=h9~t9K8B)B^=#}19vh$BAO`(9rX6#)FzxQ2u
zLe;nlK$z3+4AgXuZRw2`b6Nm^c_9rdUcdh}ayf>np0am%7=QNC)twMi{(F7xA3BUF
zfvtW0$5WV=y4Z8%a`Okub6^38d5MUJ@qPq1d`i}8KhpXeiQ9?J+Xmx4fN6diX-RWD
z&z!-DWB|e{+utenV|4JVs=cyFkY&j@R+NSZ4yaY|;vE&IV;`e-9?mHSqOykPgxCR7
zcF5-|c>G%;6E~3$O~}AOXj~aD72_GuXy*2EvF3guIzmq&RCr+kX%CGapl7cJGpON2
zRDtI%@l8~`)eK$&m#VBoy=a{WRrE8&G^!7E3J#?+R&#0oN&LRo$;>>27t*n{!;4E0
z!RA94Oga=*O;H8V7If9hsW6%kHOVDNWi!<KAne5yS)X1|1(S^zkfxI~#C|HDdn_#q
z$?Fm8U!cRsk;s1vwH>0Jzs^f7)^)&Ud$<lvinHq!gOfMp>~nNsiX&}>r8mTg7s_5?
zF@Qx5gKkthsD8-Ek;f}>=sN|&0EgN9Nw?LZ4>+fTTbEpF?9@ICB0mbmUrnJ+DI~K?
z4MkLs-s|dquhAnbA^i}>cp%WJ7nlGJXglEoNENWYL6I3V^5`>Jzr)j^R4G;pr6r5u
z(3PkWL1MOxjd9ffECBgUZDuVXZX3a2mO$i~9Kd+w1ofg&bv(zTMBkiNz%a?tOXyb-
zqAFX$wqP9NJuU(Rc5`YU+7(n%^6z_qq9-x3goJQ@9&)d~=B)l*+#qnB)x%h1H{762
zd^`y@o~b!{mz!qW_3DGAR+eynWu|ys*JyW$QHjRTncaoHSX;+D0gfXs&WZN!3NX0{
z(*w{DSR>mh(PDWlMH3)Z|CCETm-(D(1S`O~NRh8KrlV0n3tu9W7pV#b`e{B1?x_H~
z09PadpYKU1OcIA2+89+K1u2l;qe}=Pi?hpA@hKeX23m%&qZ3N_INJG!#uL%N14&?)
zqWrsR@P{1!CU>YY0I17Mi|k42Z8mz$J~<#&ckM#Wyb*`-VtzSfJmryZ)zdDtBVFZ2
zTo58H`kJ)iO%}Od%sLY1QX1M<$C(BT92c^lPQGMWdbzF%GG1zXEHncee$rD7zTryC
z;R<;&i)mld?VF7WouP3Q1MvqaGR=214>1{1W*E0)cA{g+lVpqfek&CCO-u|LWoQ7%
za=^z{D#YN$VsNMgwsUDRMl6#RZg^-(%hW+E1(*UtXX!#g+}pB;>obvFKz+w?0dsQ?
zou?9nhvhmrO;=M3{pft0#flV2S~%ABC<guP;v53LT%RscXhD#RflfiU8X9L5XVhxu
zi?nCNHb;9Z=x-HOuPmob*Nf&J#pPR6Sv5sRfEGF|=~cXAW=~`0>Jz&^$1=0emA51E
zKOox@>B`37M!E0`ETRgRl-$TvM?{EAEEt_ESQB8eM~ZC#q`Df<0EfK9O{C~Wv0+Ch
zSWcQcldOMY>GTXaXBVq`2a#mJTWd!*Vs}xATNvN5#+TAtF4m%Z>eYu|`?B<El(Ic&
z&Xf6?(0Jag^{}Vay@7S#4r%TIlG{MDD;DNtECS85ouim8MW9p*0YWJ;@z)tyyfY%V
zYocm0ga~NC85BcD2BXEO2sSg;gzz6!GodsZq_1Kdj-CUQiv7L3W{(bI!SMB4+@Gma
zR<jiX+KEJ1i+X2=>%LazeEG*?)IYTtSl?JT`?`2|Iep9a@mE`sr9$V1Tvzcopa#~P
z75e%xjtBgO6$jwS!h*B2VX|xC+Gpi=5?HELzLQs>W&`VAO}0CUrGCHi0s`&opV-s$
zyl6IYXm8Qdj?G~U&kygP|7;}SaFAn$E_}dGUvCxP;Z-2G{-&jdH5a%V9cUl%=#{JS
zXw~`2TjSXmH><DTVIuiVEl)gJja^x0n3yLbu)9UkPYZ|HHS&7C7I&6L?<^N-RMvHH
z@)}Ti7lFL*Hp<?AjYUx$H+D;2uath_u$xw690Mkg%il;K%}Xwqh^RX0pO!eGc;>`q
zQ%!i<n;Mo9aZ4Q&H=9d+i8l_GZ@hgLb0AHAePeWp$EkxE7Uo+fNmvodn130%_EWcK
zveZVJRHgTA^&VcS_AeHuEh%s(iM>*=$nwVQVwD0R?aEs_4v9elcF{vM0VyMe0$)L{
zfhqDVf6D|nmPtVJ#+r5g3Sxw^%Tp~7Ug;VAUNx)YJ8b>eMCC(sEabW6!nhoJcP8On
zf~-a64~bgF1PY$r6mqo|gl0Inuy1h3xt!{53f<x>-KsS{t<B@C`>0UIiW7Z4u>Sj|
zU189h&%5NvCpAjiW&NEK#h@nOgKJyFrcwpTE>L4NqS{#w@a8Nr4J20oO_QZ`EBaeK
zQe7f$bNwV%EU{87*>W{yZcAOI{y!#`i&2N~6T(deWHv!O*KIl=X>;F$TyR!hSk(4?
zr?E{yzjRZ)eAE3A(*&K*)+0*^<vhv96NaJE&azFL&4$9tgf}iIcUl&yS5})&Kelo5
zs#`^@ABys}3G$x^3iY=wMvA2N>~HLYq-VeJez>kcGl-#G*~FE0@HTZIszBW5kz3B;
zMZ+C!n&>u-Fx~G@WRJfwY)F6jaj#9SDJy6MQ-4{O9@7e(vS1Xr0>H?D6hYwMw;(>Z
zpgtg<FCA>ra`4}`g!<&^qATNh;hch__aAHz=T3fAQ<%4xPjLmXiJ@KWI*Gg;ng6!4
z^}KcZM?GAWU3)Hrfe&qwivK-SvP{<XaA9Pj?3M$R+=xo6VoF9DN+L%9t(2H^qk(cQ
zubS!nVj7M*y+_x$a`Jw}mfSKj$hb|?-);GLJI!JD`>x83-#d(wYVPynNy0-fzrAR^
zwbw1uT!1WUf35t9$tDYYDNyiIaPigTi?wao-U}LEZITbA<MC|`B8^aQ)cMNe*=6rl
zpBif1{upaff8PE?_x{U~{otzo$&dTfKlWeAG*8hS%!(Y$soWu;59VzT7H=KAwvAf|
zJ6Os)SgyU}efoLLPJLymx9q!*_VS&wy*sNJ>T3nWPuw|cw$EPCt4HY2WD;&yaC~{2
z_ht7Bbg7koa{i$8_mdxLfP;@W*9r#TVMTDeer-*QpktgT_WI~=4Hx2NF2|?cMqlVR
zH9mLy&v*O%2cxdK^dIjYy0KH;VE*se{qehpf2UzpGI1xjK!1L_>#yUE@(MmiQ=!R|
zzekQ<P5Td=9e&?Eaz$yovmdRB9pQc*UA8`~=XoLJL3`yPA;l?<E2c{2-1rmS<G}H}
z9tw_l^%!jc(KI%VxBeER<ESI$LxcuX%EO8Jn-mc0TcLgs><+>zge-goja{RlH2_kh
ztoSD*U{sLI6=ZNs&||T-JC5lWKyLp0k?1fzFW+E3^!H7I&TWq&q_k{*iqK`}Ya-R(
z+%6*KJ9(=4X|-a*A}#<0HUu_WBe3u5)luK*$gzZyv2SR7P4QUpQX+q`;oFEhhI+&5
z5Nx3SN5>!r(TsL}AJWMtcFKd?43F<2)kL8>V>1yD{gc>0Iurkv6s1zx%}`V4l0QK}
zGz?MG_wnmWh;w;n8+V{yjJ`z17+`qJ^ykOd3SrKDNkeMMx6iMp!m)-O=9YZd!+Z{*
z_lGbKlwSUq6XWQ75_WiU*FTFPgOzP;qO9uz{-f{z!hB$VEDmBIfilQC)-1w}bH*RX
z9NsqgWHxqO^iLJ|!nX#bKB!<vJaEiAaRP2unu?z>_c^w#mgcC7$719zL8<Ys8`v1A
z<2Rlyt4}uc@J8mPNut)T9LAl7zEhTjVcEv;Z0hMRAdt4FX|_6cPs#Y-+%Jk5;aBym
ze>~-J>BdKz#L4D}Irg(kS~Mi9^ssNTk<IMj{&Xo9x#{#*Y5eV;75OK}lo3e8xd&Ue
zEI8){Ywsa*$$tw&!6O!PZv@Pz6-vPqzM#g(_oj6wU!BvL)Loj=3x9RuOMW}#9-AMP
zlXvXXZ%!NfkaFrE)e$S|l`MLjB9@9~lgZ31FVK*q>j0O^x{>&XAh3kcf-CXjg`hmc
z`{D&{#QIpNOUYA@S)H2kw8Z=3x%}@gjhGhj<v*U8lAB{V_?eG-aOXuV>x_m^#kdGP
zd*adGcQ10$$#dKOGwwEj7uo-tJM9<OSBK!{XjSJm^{rCmz2BV7z)NRPJoAHqc}%KB
zO!=RG*W9ofvvETLCdZs&xz(?kPVA-XD(6Ee2x)_+o3x=ks!rLG6Y9bZIg}5_+t<sS
zc)aa?VdFL0qC4k9*<Oc1>$<)Uw1*s3@?Z758ryxI6PkNXB*I3GxFf1crQEftX;2PO
zP_Q|2J8OsuSv=mI3tSQ%i#H#r+)>9h9rt%y&shFeZ|K^68X~S5*9+0e?W|S0b~m1<
zxBBZQ?oTH=jzYF<S0Z&zr@5g&GKnTo|2RB75|Af4kNj7}In7*&*`W#Fv%$qy0a=+A
zBVqEDLy63i_I(NRRU@g~8u$Ld6spHEg^Y?c6X&W?f_gftg_|3%0nFkMd<02RG%=*o
zR;mQlV%~H`b_RV<&>sL|Qhmo#vbmo`)|*I^*LX67s$)COX+G=iYKX176uh|#w^_hE
zRClHiW(hUC{?IEG-ty_2p|Kf_Zna%MIqiJKEQ->+uAv+4OeNDAQ*Iv(M?dm)rrc-$
zX=pAXo1YR;m9vYivl>X_U6G#PYBFS~*C(;N^(7{q(>xcADChkzY^~rM>uwVhqXaAa
zPZd0VVtcY!<3EPWPmXsNnjBuF-S}Xbr}NEp!yPxyffqNFQ%x`9N-o7X4zX6*jw8|6
zPT8TCU2H6c5lT2b+ToT%bLLgqYa4at(l@q6)2#ocel&>Ksqr+30_&^tgToTm$+8i~
zVbD0t+x`J_a69>$r%r4g03qci*AHfF$1=vpJToWoj?>Nj4_Z*b%qQ7Av(6-73CkoJ
z`HG|_fn#PinE(D|TggF509S8YopWb^d|9SwEYkny=k?3}wPlugSHAi!lO&O%gUo%l
z?hzLDKGC!6-j{LD@(2ImJ3K3acOehJDMzo3H4HIhsjw1&C%du4?6%nJD55j(Z<AS+
z4_Iusz=Kcf3|{L!9z8~GN(sJN*QRuqNED#n8^*V4veH+T7i7?Z#1s@$J^e{DAUEkT
z_dTAd)7csGA<klEIM$0oBDJ|eB%*p5P|e{kU2pB!TlGdvdcXzLfymA~pI<(-;`XWa
z`@7Tc^M5!x>$fJ~hYc@bY{Y;ux?yyOlsdY*OS-#30mtZ&Zc#_4bcc?T5<irbsDy-w
zf`W*-m+$)@JU`sWbKJ*uU)Op1JWt8@L$C>sV!{99iBphOGQHqYGR~~vF}TD_NzKI2
zR1H}~_rh%S_Q9`0x+_V!cDe#BOotU!f&zf^8;R@8Na3O95U5IMO{SC4u9k(mS+JQW
zG?sbK#YLS-BEguV)}tb|-v3_<gnWSNN3#Si*ifqWz3^hLiYkqvg{suw!m$<q>kFeg
zV>6FwFX!#~bEzB6Efbq}e2P4*tS0?wOI=XJ2P+jU`2Wg=K32-kNcH58@e$-#q~1|U
zyo%n-zD*tTAz$RHq`ppzGZ0MQusw!H`z@=H!9<-^5#SPBbq$R(b_%>&w~dD){GX|*
zl2iT!fLLk>MN2#elFG*;Y+ThhSf-g+d8A*5{e};m-jcDF6S&EFMh}zFKB_Lc75nu8
z*OQT>num`!DWrUfYBl=Z$h%NJn+W{n9*K7Xgg~n-B*0C<zd;A(Veg9My|)2~vlJ^H
zw`b%83A0OE(D8*707$oh6Yv8fj7;$KNd%Djwf3feO68RO6c`&qJht=VDrw=mK7iQ2
z@LlCkE<pe(%E#-w7|x!aYw-V(3ytn2a;R+dx|Gdjw7YO4MyLbueaPwGC8IE{igQ?v
ztN9e6{ppNPNT$O{72|W*3uB8`{yKA@k%jZq|K84n#fcOLW4LC?mkHwLk^s73Gdwf_
zAEofE=$EMTi@ID<nj&D8*#R#t*_l+1L>g-T-3#FqNT@7U6u|oSN?NTm*}d4`jdZ6j
zi30f%Dh?QZh2aullfyBU{2_fnp@R$P3&C7QB74kK7C7bq4=RCv8tDaQ=$eG5wyKDl
z+_{RgrIM$rqyO^-APKL8A5HLi9%ytb_U<#VM-v5&iB#AF2o#H|=Q1~Mb(5`;#<->+
zmAxz7ciqeSzrGok1kT003WXE9vj$rPwGqi71c+FJDouvTQC0`+os^L#`s}|y7Bv9M
zD*+IX-r|`7gcC`a))bfpJa`AJqIqxxRJxos&b^@Ke4wL#zRE&&asn6d&;m+FE|ond
znsex&7I=i|phu<*+zc98Z89sG)7?B`3`rmj;k+75c$3A`Cd)Rv*U6FfMt3eC6u$V^
zInk*~WVkFaX#~C6-4yZEKcLzE{W0xRYL^!03s3UsHPe2(q}FBCF_^4#0#yx;@vc~l
z3r*(wgs@d;Xss&Q=7uIXd>g_8m~!R(W^?jCUx46fx98oBg^bAV8nLH7GE3{rO_4n<
z0Z;v$5O3Du873OJPXmH7-)tR6_6<AQ_})WoZNsDbC&XGq9KXKV6OI~q8PFQ`<l*WE
zwWz_Br>zlfnQv8eZ-mkVfF|{Bzy|yW0GHr3X^>@h-5ndp9s__m|JtJd1L6Pnbn0$b
z=KDX#j3#fA*`z+pl9@<5gO{ZFEOfYDE3;uCJXl9`<Lb2ORUxm!@Hh^kLQ9qeC`2ww
zrpAqu0CZ{56MWI_T+{?0o&WX_`rTQWnKKVO7hrZ22f&Mg+=dOJpR0W7$azxWK>NE-
zFuI)Kwl)~_&SRUJg4RAC(j-O4WCl@Q)k$tUV?y!$gzCpngT73QJH`G?qjkYjyo&Xd
zDOaE*$Bx3)h<FrVbd7WTR}-}}JZ)^HO_U7p-A{RL&Xzx?lEk|!74x^y?Ij_kN$Oki
zp+nwWz`D}VZ*ps~<id#`W;1OPYTisxqLQ|yTq2VjbmM60D3zA)gwA`Y-8=?M3oK~+
zy<ivq>*cwy$xwc)yX`)ee|k+Xz~eg+NG-VxlEqD0uiL(Wn*rwX4TX+w;=l$<?OLS7
zOT~$?k0MUQ9df4erSB$Y!0f+|???bfVAsKE(e4+!9^K8%tIO25udgC(C#<#THR#g6
zeX%XvWL(XrQW897xO+a=*=+?ByAH!|eb^kMyg~bwtnN!X`Mo{1(-1cqlQMS{f$E&{
zilLo{(;{R)Uo2M^fhKCBvAIqjx}(HjA3?N~1=AX%;d)Gqr<%dG48rYz-C2x@V_@bi
zC9LLLZ@f^x7f|Su_iGNf3{)I&p3ge!d?u71ly;`7_<h<*CYUZfL7?+sgg8b1!NOJ1
za2^=zA4B;2H9d*x(N-%#+34h526%hmfqV&>L`C3swn+TfjR5~4&U4^(iI4=P$KnK+
zEolm$=<M_7euJ1T;9G+Qp+%{<CpXPEz_J8Lr7;zZ4XcEPJ#|+hPe9O}Ryg$ILGMe)
z$de*3(gb~g)Mp!l4%oYMZG^B;t`^W$uHm6Nr+#ssG{jl^Qu6H1&KEX?XCtSX-?19k
z)W%1$AL;Yjhg>0zPH~^U0$FpLw*gYhxD!SbfW?<nDavVF+U-C00Fx>|O75R5!v##D
z5y2o4f@!sNOw~kemOui%j^p!W8qNbMK6*H3ZcGZ@&8NBKY!hPo)vRrv5{@Y}*8_@}
z*I4m{d-JB0nUPRfJE-jvAkGCH{UO9nOuVV!%i!wjrH+qrhBp&QcPdaWy;^ZcKZLel
zn8~eE-dazzt%-kYO&fB76d)#mO+d~_koOtDY&y{b7XNHpME}y8fMvLnz802vt$4w?
z>U}wJkl!JRiqlc}?UdLZs=5Va-nNKPA|!D|7Ui9mYUA*HGR3o<*LNWynGi}g216{0
zfw>TP0Hys`<AHVrO9@>?FJwQMdV+vNdU72vP=7)On$(F^I}5%(gKZ#9I!l>G$aOzB
zQyV8_G+wz_Ud1ttLTM{OZ0kT#ERE+OQ)5HMnMul33hOT%<}MDdz>6HRK+fbN5tWJ0
zBp(11C~ME)ZQfLAI@$aE_Rnkil6CIAk%yKu-fRMqm}7ew-?lULNip?Hviu$Q7wiBT
zOnbH^Fip6yX%(`KO=WoP@jao<s8VG?2%(KlT@IuHtvmemJDIJ)c>)-}mkTjDKpt+%
zdrpkBJ)=zDYcz&;gr4Ko#}-p2L)hGN<60M3ZC&7D9fsG@*+D~rGKKw-4&HVr=TkJ7
zLUribv~VnxLuHr84aC=m<e$a!Dw(k}IA{8=@^|Fv`Hxz5gyy2htW9>gEa-}@)x_;O
zVb(wS=cCD)Da5x9;atuJw|8vmMvL{iFt^Pxx~K;p1k5v_%hnktL|VW;1{$YZQ0U6R
z+{tYODpvVenqzDCJUMv<V6`Nf-RdmtWlbtvmcd)&1pUuaLhzz7I`>{yWlNy*U2x*3
zixMO{$;Z)=sz*gBoz!?q@!cgR+8LH++Z(<!S*Q*iooZ2uDWF5W<QcPSr6S<0s^q>o
z*>}2(A9S3*#w17}N%!sag$?=VuI_k~^d5?`9ihi**BMA68@4O2R~L_|=Bh}S|J{Du
zvFnCafl_6En4OyyO{IbsL-6l(kDr9c68(@jHi3=<;l8G_0bo6fDii{KgAmCRc3yx^
zuP`UX{}W=MYlNTmfVk6dous8t3q1kP-Wcd8k=4K_y78reJs{<rk_-y^gsL7b$|W3u
z<rvPi>HpU!bnj#J?M;F7)mx`-B)$$AWnmNLmx;=Q<H`?XGI@_~Kcr94)KJ|IyY;a^
zjv7KhCTPl!W;ou3Ix5g8e^9>-5pUO3fnVI@>*f<!F%((>iL9teXxx16raoe#z80pA
z++>1b>pX-BezukRgm`D+pym&?wiirhAE@pK<g+VawJfSGyEP1xZvR?_XDVq5n`nyr
zHr#P(G!Dmo1FLP()r)>m69rVcoHd4it!;tTbO<+Z<T*4XX{RXxA`9tbR$MYaXn+1$
zBfc2kr$ITWVf;r{Z>+F(GTZ<uMUJ^_!6Tnyzk*PN$0y-+YZf{=SnaJ3hWt}P1sX;>
zN=AIu50NQPKi+82Bg8MWka$X%O=z@$2`&{V7TRy!`Xlc70)sRi-Nqj!_4v+=#gALD
zdu`NHdXF!(-u*JX$<nqon*mjBrq}OS>2N&NGX1TP$nqO5v18)jYw^Uy{8_NM={`KH
z4wdhUkK?h>va~R`>|96yaA3RS?7OJ#S$-eD6@DXS{JP{>DHJCyu-`2VzEc>=nbE%P
z<cR1rwC^xR^kB8@)pOZn8G1ZZJZ=3rs1keZ?s>K|_qd4k&cAkw(=2t%?Dc8BW;@V&
zh_IJU_J)Y`h3WU<w|gTp`(m2=?lrTU>w{wv{RtxdiLA6y`u(Yy{pqZIDb4*4KK19Y
zHfJFQ3iJnx?xj7@B;7gq?nO_yBi%szWwI;5%t^=;@S{$W$9tf$d61YgKzZPNJm5WY
zKuhR{Fp_~1HeKud=!WD0(pqlFC^z~Y!}BO8hm|Lvyz8w#exY7h<^$LFR-nqE!DaoC
zS49pRod7e8%R{nCQlp0+8LeCKW5Eu;=sGV!LdBhsyE^q@Z5Ceabv?e9$bd`Fkd#hq
zu4gAa!0+@0uRlE}{dQPGG?(@IGO7;cc~-03^WD2g*X<b_9qgxY{ZzCJQdOky=xwz(
zAyzN=3b%JYX(zg*0771L0Q|=UMD0Npnun48F1aD+$RJUM@uLq?{+>Zoy0p+W|DOrS
zttkM5HU&)-iJVru{0V_<*Q1g-R>vpx`KOH$D}@Q&v@vso$-&w&@d|qVsOUh5hNZTE
z1!II$mXWQtp2Lms<Ks^Bi%6DpP>>gMuToURkC-}Kl$K?<_+Xb&LnMP#Buzq=VOlkl
zVsL=Tn5F-8s=?!U)`u?GSQ=5P=^wbcJ}v>SI6j@3jI&t%Ju03{z}g|`?-1lo>Ub1U
z*>)m+?I8XFaG#v({zVDvCF2OR|9<-ReLet=Xgv`{1d0QyB4WsQe;_|t8yw!4MO*Qu
zWxbpcwX=>TSJO$;6r6lQN3C7TVo*x{Lo2a_HpNvZ1^Fq=tARBe3EyoYzgNl<;>|3I
zP3?>%rGl=Iye67S<)Z~Nly(ge*I&ueTq(Dsq0dS|oGmYbVhaJ2FY~1zp0Z?~^-#HN
zQ!Vuh_bX&n)?|G-dw6a_L&VW6995984|=i4l~iQy(JP$i=--ObQ5fyGjr0o}>DBhk
z&kLFFZh+2|7UTk!tt}VIcZw(|Sn3vY1IBY3RO3Esm;)#x6ZP^h*DHQ>R|x%NCA`Q7
z{mh5{L?#GLE50P+7xMJM`IBs;H>g%!ZdxiDKGmNpHJ;(50dctvta=FDu*Vl`v(rZD
zVszZASOZGG?W7`oU)%biz3xGoE;8vCk%2!cf;T{+9|x@eQt)7xU8y$mo@%;}@R5s=
z7`-*CRBwnM4nl^@ifMPmKe??H9@A{b=+w2Rg>*^~oFBDO&~l%x>rz&9k5P{6Qhxu{
z;Bxj~{`{K}cE!TaQeDhc6q^K%M#78FtBM*`{d4P4U~^u$OLbg6uAs`$Tp=^-A^l6G
zfyl~Jc?O^QYQ2TZw}hrUk1F#Zv^$2BD#vd=e|{II+~eb`vb`r2c&uc|Q{M<ze;rmI
zA*_B+Z$<BG{jG_u&N%X?dbRGoD@DGyOW>O2dYZ?Iqhuy}^EWkU4ygKPn?SXV4}9D1
z_NzGjYQn5God)a*+@gI@tLvF(=pVw&vtUT2-+CxZ*!69VZ88c2*`le9-{9M(21(n|
zCB{P+ZI!5Y@WVOUKVF~V9_?2Ybj^@+J-xxXy`E1XdqG;0cq&?DqTrW(r(4kc-$?y?
zH>BS9d){KFz;ttHcI#BowpN0geHXQw%{YOF$y@S9%7@Oc4&yiuGXA(xZi6~MC}doO
z#%CX;KVx$ZbbL3llqo|dC^?#8^sz|XA7|uE-oBYxt$ZDiKY2!*MSWatbSxlxT$_E|
z_;|3s_4rz%o<4WnCjP0bwXehIQ(yKcU%yWrqXPnY1N(9x*S~%`^bn~2#P&A%kVop|
z;hTY%9Ve5woCd@{D?Ir4Y7v<kaM=20|8A!<Rqy9lqeF9x-b;(0+YsU%L!*1Oq|Y?+
z!0`3q`O%?g`X}ma!^?rExn0-O!x88!+6|E4zd%~G6xyA~bbChZ>&+t;xnFoH`Jy8|
zC4!H-BE4dIy-pY1N8?YKIcr|GY64CLIE-mCifJLnPAXCCTy1CnRq}zB<&`0)Pq(Mj
zQ~g+s&#7em0}2#+_W(MvA+mDjv7=*5J^oQ$<1z~4*meKgZBH~$87RodPgl=P{asDl
zoYT$yr!LQb7={#f?r9hY2t)?(JPg1{n94F-MlH|8BLmV@zmpA&9UY7Xbp*PeewWju
zRLYs)cn|cRSMhSHhLv#MqMVrJnsC8RFgcy4=deG}^pH%YmyX&X$0@n5l2{UdfRY8?
zDTi9iXV8lngbtx7zLcWws6?a$akoT;;^xUXYzjq7L~3aC@Y;GM@1^v3ekVnR&1^mc
z148}tDEo|mW4WjJBwVs-zRHlp{jyp{yML1yBzv0wRHB%|&9bThe@aR2wl(2&@-2Ve
zbQJo2SCJq9>7T40zy6Fp@U5UPJ&g<|pVF896RtwMn>v*dM2a1|%FP1Q9lFbgfUwxR
zT(Y&JUkhC+(e*_;4KZTbQ?Kg=gKh2<_%clXkK((!1G^hXE@AwA!cJJJjr{kbhw;gK
z%QP{`fX{QEz4vN0ym@M&K%+ohD~)dY48^g?f0<%FjUOBJ;1e#RB>bc|U?<^pZ^wn=
z6`kxkAfnQ_supUJYdFF0L8-RSAL*<yu|uewFuh1#L49v%<(l7b6^<GB8H3~gwT+$M
z9sEYWycQ*6l9|~Bw<-0X+?Ns_ypXkgFn<QiKnWxvbuDY(Dv2|IY8S>+SY^C&(8D?*
zT;m7^^8T$3OHhgU9qlX0X)Hb|8G9YsDfUu(8kEWStaiuHdl@}aj=8+}N$+h^sh*CO
zyNmKMtJN=)f69}nWzlHvlSY{M0Hu($eO|GrwhzNI3R{jGnbeM=<f%E-mdU<MrmB+O
zQ3@gr%?U|PHfarX)MEzslaG0h<+y0nhoWh%e%fh@+9r_#a#X05FLfpdwb>xA@MRD7
zJKb+~V+&3t4Vr^Qd>Q!U)je?)H|<%uswUs8Nx0G+E$nUq7r+|Yy#rBV`){nzFP8q)
zo;!@$J8~-CP`o36p3MvP0<$)g_3w_y2*usS72aXiZNGAkka1<Sa8T;G&v`%o@9&>K
zevmkc04STu?S_V`Sz&n{Zx@mFc*O)N25MfHWML&NH?p^r6##`j=Te1!Y%2W>>0(>S
z98xm+L{J-rF?UG1H6e|LzbGkuh0&_CsHv$GE=!HwL8=<(eggr&Wpa=!xFogS(Fu42
zx$VBd$oPuIS;y%ZOGwgj?fjNTW7ANDL$?kGO!1NmYbX?t;$y$2q0}b6L3y4tQNAE^
z@ii}`#g9t0lo4BWKrO=!(+JEX)VE~%S9v_eAd7~MTOhF!)Utux+rnj|n}1O&k1175
zgtyku2(NHvXV7Fuhqxk<d=9%xts6ID^QqpPskq8Rbb=Y6VJ2H9`Ha36J1<Kk19-J!
z(ao=|os+3xtJclRRr6NO4=j_Ueta-`<LfAM&M6ot^&MfcxQtCgy_6Ku4uUpTzh*ee
zs(KsM_Muu!=pCGK)z4$Mpo_C{D<wB@%{Ed#!Ih`<C7onTx?@zIa&wh3QZ5`2iukAr
zCqHdkyzWga*k(|mU`6}Ij`7R~r5=yVJZnf={5?&H%`w~s)N#6%5V9nWUmED{a$@p5
zxj$2F65+|`tyg@D1WVKjACty}d-&pv=S(axQvyZ!1#RA=yz5;V;!l6n{rc5na%x*s
zRY2dUD^SnDLv2m%F+YWRBE=n-N^$4a#_A-Mr9TgoiRABFvKg!ZzcUAy$u8_&5$|$O
zdDYT>%P&AT<a{O3oK}HeE@pt>QBE#4kq6(`nNCAR%$qY9unJYl0Zt182iwV<kFRzg
z+~$aR7>Kc)4fycg7D;QT@&^hrTED5jZ)WoyL3{8A@Jgj7lJbt>@ZMemjgb?1?D<G<
zcBpE9zuB*Z`xUp4Ixf43>%ZcpxD8!NQq~vSNt8heL|G?qRmY1PZ5AQiaxlInP%{>U
z^u~fE2B`jpf;ws=+HiuUHehSIXDLtri!Bc;2t*eXg-s;g*xoP!o^ug-nLZ}7^}B$h
z*KtY)*u)w7U1YkA1}_I~x|;2~gciCSXcixrV3M}=`a=0relK;Q-v*9KOMQb}Sn13>
zmI*6K5IRW;<G8i)8%-}S8TmPKV}LqRO}*@s#RsmYQa6r#25n)E1hBR0Ye3FQvA`t{
zlzzz3@yupCY~2&k&}7N;oR~aV!=Dz<w`{0#RTq6`Dj%bPvu-s@oyP{T$Ien;omc>{
zrunf!X*)0E(bIjD`GLwjHl*4?`~crSy3$e9fn>T*BR|g(RHPjM#t`uLN(0#iyj97N
z&KYR$c1Zg40$9=+ZDa8YinhVZSR>hHs8qq!jrv@gk_jQ6GHCMXWR&a~T$!84QdW_u
zm`-@5ZgJ}8;#RLL05DcC=qg9|AJBgI3AlE+5mvenq-ugeqdqw3`n?@l5iDLt*Sre;
z0EKvUg`;i&WJq;nNSA#yh;2{>liT1>p5}|0p5b0=GoF=X0Q0h?i%c=+Q3}0aJW`O1
z0`}<0faTW$IbjO8b#WjS+=Zu9*+z->XB)C-ECWx%php*8sJKN7H`Q=}KXbzNisUn^
zfa!Xfh$7M7B&_~T6s`s>DWpd;PEOmd1~nVrwX(1=80SEDq+6c2ZUnz<+)e>bE==p2
zFsFg8Yo4uUo?KUqX>`yN1X+7VvmQZ-Oo5Nqb+G};XW!fR!Npz_rN8VOYPZyM`Q+80
z{(9Q79qQ<yv&^v0-P!(WAH=%LTQsrR0f1Me#xm9f0LmmEZb^t@?FFuF#O2+6etK5W
zDM6w)>plR@=QkkX{e{;l_)%Oh4!#%nn&RcXS}<W7%ytEUb;e*mP?s1!yEo_cls|`B
z#X0oBnCacM-;688#Zqi)E+H=8(PZbB2>#97SVztG=P!&>Xhs85``$R_^OZt=3_2p^
zUfPftpEJFXDh@egvlkYAWFUYr>4*q71CX6C0hN0ZVCj&8jOYW5>KCcJwaPs<#7{uk
zOSOUo(GOv7nZiut#aXLF3qUVT=N^BqCjU?b6=Br`Htls578w-!j%m!xxDtzfmOPyV
z3DdfdzdruC<#n6Hd|NJC?=Ux-g)W$8L7rRoKBcp$ypHH%UhzeZkfV>jliq?N7=u^d
zM)El+-6ej?vDEs1VK4L!=zEjxTVLzvzh0NU0&u5#<ESgJ%<cciTF48Z(H3sw!&kqz
zr#t$)ao$TS)4J>|d+YCYn{{)Mx~Q|(F~HA>_07iWWp55PAn-ox)(-kd|4e{QPzj0k
z?MJI0gBx$Z03N-0`?dJT@JGj>dr_=jX3V<~Z1BN98?OH}xyfNLagU=-Auvn8ED`bL
zn0f_{p^$hteySc)rt{|=^O{1(PJoJzU51#8JCRIuT8)YT+2@nIVx;B*(Yl)_JD6Mr
z%)Trve*P!+bOZOClpk8iSWG4G<EOsXozMzNE{Jzw`hxkh(9#;*>f7cRE+(QARZEuZ
zE$g3ggjZzn-0iz&@c@clhl1AAfMZtc-<txT0}7*uM@qjvX)ytSQZEi*{3Z!=Kfi=?
zHU<OLt~58x#_ExLJP$?B_+RTUT)kifA2}^3zjutMytVT8i<~Xddy27O#{AtW>2~Iz
z3QVGzJ{C|*-7s_b`_=aqws;6*sEc(5?cK%yG+g}G{(b>|{)~R963xkJqUqc7U$o7n
zs^C$qAy;JUl89ze2NsL?=3Q{PqVdziarA4506i)RM>FT7ed%I`qjLWHu{vi>>1;C-
zl!pAh8#KF-zKlkv%vfG)g#KEd$G#(R0_MfuSB;6Y%!6OJ%)tr3=r1|)Ge89P`}#H;
z5<5%n%)DATSAqG$c6J*Hd)exzU`5DLNLPkCvwh+JfhKNCw*zCc4DjPXkdYrx8(3os
zGvNwZQ-w$&Aw^&GKNuq;k*^L85KLU4pQp{wbdROg6Zy6?uDC#-)j*`bT;zUZAbX$b
z7G5}M7e<pf#PPy_%ny?#X++R?EGr28E&*7}rOMG>?d3OwW2uz<zpmq4%4-Mhwy#h$
zJvO-dKtTu59R!mBWc`y;{L$^CYB+PojV2<Li(23+X;?v<nop$Vl55m~fYeN~Hk$G6
z^lAMkj!^?7yH-&z7-Kk0pRg=q8~`w|DnshoKQ=(mMeaZ9?K5e8q>p%~>?g4ru5O#J
z)a<l$ej-S>N}gMUC>^drR65#m68&ggd0GQ1iYsy7Wxk(EOATgxJ;&3~L>JdVHI>I!
z5CHITX0Y2~5Y(qU-l6RGR65e2y&lV)xp1UZUiPXo^X;;dmee`xxEZ)8Ae}&LF9ajF
z4XrwZY7oEZ5y|&cY~Jl?<6S6cx68h%vRoz5mq97Xs<<++D282V?kpzj1qR*8&G`+6
z3`Icq8OkvHQHja7c=#fBBvp3k)VRZsMtQy_&{)*RrsP>O(Ro{#A$i7F1;=<K)p!-E
zXuPEv{mrZlK>UT-{Kx-Y63qAlL(wZP0wPNsv#o4X`JzrKo5E@z|LjZbf;i5TjHr2~
zLO%%GjWZI#BD=gwvAkb`_x@c}8{pbftO!a;)zDi+5Oq#32NwigAT=t%*OeMpsvh*X
z8ve~pP?68dAvYVsO<gC2QSxIzoJ%rxibLrINDj0#ECo`E36fOwQq9D#dJrhvDeM)P
z<!+?{)=dth&f>?<`=P2H4&$;5ll2jqVadCC0TzGhcDb?#TOYr<txkUc7V#OAH{FY5
zn@}j;>$#{CeNL}Z|Cuca=71LPb5|3j-C^?95NFU>Vf(7rIg!w>@%j(1`>M;3$+ptV
zoGK1ikOmB^345R<B)x$(`sXtx-eq}=bd@C<n-Qqv64d<hw<{BDzL~E(gXGAiu)so5
zVOdUv9kABLnU1qYg1PClI>y{2ZL4k^b+>%i7-(=3iZd5fUE$;nVkg^&!Y5nlCMVE|
zrfmG2JRW9NSr{`^yj6HeVNJ}gyAf&3T(2Hw-tfS9Sf+l#Tw%l8JrokXqKW#p@49NN
zKZ_}2$`!IADhwDv#d$FBbA`IEi64N`T3jxA#;UXr*j1Lrx#lrRd;BgSBimNP#S4Ud
zxBwZ0blQTORt+Pdju=>Nw4(tw$$$v&>WRxBQ4t>}P<K3iA}<K0F;MrxHhtb1cau7V
zNeH`E4;9DjD2K#_lR`be*H*v@z4UgfRg0_Ggm3_eHe4hg_LQ1{i(r|Ga25z}5C~y`
zVuiW5=X~$|36S5jNIqE6-`Eb@_H-c}BymYc_~Q|FbOKEgT6LBJNK1j25vH~ck+%-~
zw^D%Dfl{v}GAU6s-trG=JtD&HFa&#|O}_2OE~oq#aPO{{{W}>XS+T|5>%h+Mh?DPD
z0>!S6@SE7K(2EQCDimhZOS(VY1~Hwr<b0`=k}%O8v;e^W1ADKILf)BTm{#LkzZ<Rt
z{{1nXRYBW7lM8dji~W)=R}d6ny7ZtbqFRaYuGA2<NlQUTXeL{6sOjWgI{SrN`Arym
z#`U<nG_<O{MwDMl-vy>dYo`(`Q)3$tYBc_HyFS$#z9Q(ry-UH+2uP2P{2j9g7j*99
zb?Kde3}>G_wVAw5*?hJKYK;FCt<!{EZPR>ekU(sMTX|{D0x_@)#*?;K77A&dk75QC
z<#!`#p5cmo)qtc~Z6uvFh&M|5OgzZAk2+5t!(|<68=}?w1>xTa4{rSTLD2X1OgKe^
z_P5or&uS4-#i47!;7>WN?uRB9fGD>MNitWNPl9PCKO&*JL3L^1-;rL7ixCWrvHMoB
zb4x$2Il)JmiWj=j+4ROMp+`6d!ggv<YICi)bSn<dBHGm4ez+Goi+Pt}Sx1ZG4Dj_!
z`-K4{(Au!F5uio@5E=)v!MVANwH$wJ6gF?7&T6tFHnnHe^fs9W!tW9FTB7BV!c0$B
zGM;+6VQQQQLDA|=>j~U8c<wzMy-l$Hs*DRG#{DXRHyXbo(RL|ZixsX!>zOGlG`EgJ
zsQp2t8lRhQqgrB1Qxey$AMDqw(ONuQL!33$7zx+@fwx0M(#T2;Qkb%W%o;Uj^^2|&
zN!GYM8||r*?6p^Kszhk-L<2NFS?V?Sa!~diY1sU{9CF|vo=zH8p&XH39Dx03wgNo!
zt(sH_V-XmTcEW*T6A-=ol4t;`OHI_2uXh{kKuI}zgrqNP&I^L&^0suo^eQyY8j$qI
zIIl2@Dk5%`olK_|D7&PB<w~CN7rx~l(#sl5^6LuyK%_f?7-@i$K0z)@i-JVPRBTIq
z@Z+<e#(PWMN(rUU+u=(hld{YnA&N53HYWawlm)q!nQmZSmK9pU9)Bu*96|Fgc4mr{
zB`=zVb__mAI?TfV{W5n!d3#4x9fA=6Y~EU;1aBBT@!FmDod#pdtAv!)o`W$c7J-y9
z0oh+<PhZY_F%V_sD*W7{a{vPh+tsr3y$l_z0R#UFuc}eCn`YXqr5YrBvaOG4+xz3T
zC|C?+Gj3otrm7ZeNZtIJaksvtyfMALUfa;+p<Ppbc~dis;N$Y!(eq7x<;_Ez&2hly
z=XNbq<t=lYf@7O4%XUxK%AbOP*C^iBJ-gQCUr!G=TTfZqc6wXS%iDf$w#`T_Gf_h*
z13^e?$pW?ZqH-b8Rv|c1Fg3k{_e*;Lo{zM7Z7b{mz1erpuJ987QL%fV@UV*%{-yFh
zh~l~U$+}AkZwOR=H>Eq9*$4m8B>PB*8iJFrF8G4+WaUR)8)+7Px>g<QZ6EvN`vMqq
z#96vZ9uCZh0P6cPAVC!8<7dcID2nFx70spl=^Z|($7e74Anyk59E?rdx3K~Llk7+j
z*K@T+%u9PnENg%D;m@n>3$vi_m(&+cSddPJ<wI5?m@Q`b>CYqk+f@>x4H82%>i1~X
zk;KCxm)-PLS!8PtX8JU#Pr|q8p*k@q*$XrtH~Qz_5cf*XLDKr)K=i~u4bX;Y2xWWW
z<`4}Vh8Ume3~NGJH#_Ujpv=N#rsNpkGfZnRJk9{o*ouhZ(}C^)Nn`B|sv2Z|M^SES
zu+tv$AbhGz)$AuT>mb1yTO$hH9EuGhg_wk$9Q}M>#SE{(i#J>Iwka=uA6g1_FczdI
z!@jbiF6f;+vaZ4bI*Xms>A-AL`9dj?@(yXg5LOTH5#J;W?-t|263PiT(Oknc=R4v^
zHz(mZ>t(taB*pkV@8b9m-8nbYy*+6+TFeTe`~B8yr?<Cux7d4~d19nRE4g_axfMQE
z@lt>uHMJ2LtGN5YLINNWaUNdzs?2UP;mSECBOZRMDt<0UqyiBteE~D*#F%sn(tLaA
z$1}H<@P^$CGjM{g>P#Cl6FBYQ5dS8C;5P3I*GS9X%H)eDIkUe%|9jir5!qg(9CIF6
zIWB{em8q3X4vbNj^?F>ZBA+kAHmy$6y3D!8D^gXE%!yNKGsS2TP#zxH%%-wV=W+)0
zb5lBUj0JM{r{r{HPFalQePr^>W$q0HDMy8Q-RpwKhw-MG?`NKSA?@BL-Z?74zvn&=
zr3yFtAcKTGR;^!DC4G>CK;7=jPT;~#|E24MtSV)9E6rz*F+hAbg22Dd)hw~Mjm>@k
zb*U##D!q88HlC!>wX2cGrE`kcO{}>oBA{o=&+omWwf|Op>y}2&QpWr*AZE~n&$%k(
z-VrP5?TaukpW-k~k%2b(nWBbUg2TjLi{6_N$7LmMBnQi&FZA&`7|VS<4_~z?!K?8Q
zy!rDclQ5nwpWW{z#Z(%cR(+aQLQW`A2J@&pf9`OSc3B`G+;yP>B96N*A$799|M|Q6
zsN;wcH+6^VFk>gJ1$(1t_XZ~Wb;upBnC3gq=VUjAf&f;}-C_lrZZ`iqPICytJJA3f
zJvd8kYk&Dak(hq(B0=ujjCD<L=0b7YL31C;v7zof=0{oL;hMt2^388Uhu%pjh;kIn
z9h}Rn3Da)!FM-9LEPuLGzSZ{r{P(}x&V=plQp$O5SDyKW@i~p+MBc)*B|3OU?hAza
zs&=i(UIB8J!g_Dd%H4rcXKvJNZh1_9>!kWKj->k$Ii{b6O#EPiAP*i7QBUPPw4N?n
zoylOEJI$q-^DE12V3xBuZTjA764a9xj`l!dRwwFm56v2iZ&<=9T%P^Ab^Bc+Ie=#8
z7p<uG8P`}6oKf1pbRm~VGb_n7J;@hVoB2QqRwkEh4dh09Q<=VaP$-n4E>3+`7@(5?
zy<ATZmv*)i)9qKtMeUBR<)ZeCT$pE05GheMsNwBWeoPUFQw@JN&t-Z#!PLWd1Fa?e
z8u*}9ToJq5fPB0YZ^b$z?f)X(sFKY@O59KPp+TJy-%!%W6e*J@p_9_<+`ALe@&H)N
zmDGpnd;#-Te?`uTv@~j!Xo9Z#VF@({iSP5-c0(FkL|Ubth}X0+6u?A#0`b!s3^Yh@
zoysVHo@m9*=YYRl_BFKK1;MO%wS62P3$^HiJN=>IqkQ;q?-?O61O1w;pZ=>e{;jCi
zI8$&4Yi1pp-QzB{ZNel43?bNl{ROHBegnyEoZaG@Wtihu$@}=faii>rcL@UTkOJMg
zz-wLk0!XIu>FTDROPTW~1kDkF4IKJjw}$`q_3%C2?Gea}1e+C|$p<ALnaaoj-tD}(
zs&GZVJWUowZO`(>g=vJL67wqxBl&b=hPtN<A1IP3q(+M*`WeySXV-mTiBsSWYLtQA
z27Qd<;5HM=bk!QbZ=*y6X_MA>@N<U$jRb>0!ddN*67yI66L(#r@m401X50b{h{A0?
z3Yc?`XTcr?&<A}dnOmr~IKBh-1P6x~kc-O>jL}-&TJR{=_a+=a`6fo|S>XQ68Pi~%
zakm-4nLGNidco5BByWa#X)kA1>9=V2qMq_+4qacZRM2y?5J2@Xo1S)xy|+CY?2?{9
z?7Pp5({>atMZD-YDYVxb4u7dkHfS%J+lt)q?7)tEI77S~(r6%z5gi}~+5Ia@S=u?l
zw^XDi8SG;_+*h@dzGhSQ0|cj(QfBbQ+z%ac$+!RjwJw37KhiIy<|vb2(9Qo@Zx$7e
z?NZGnEQtN5`leDEKoUX3$u8-NP}$C>i;gS+CshKFLFV>1$;h|?ND!Izy}xqnE{s)t
zJgyJp<Tp{;74mNahHi!}dpy5+<86e%i<Y-BpGNv}LpaB7Y$qV%$=@Zi#w+Y5U5)7M
zK2VOo0%rvfUhfsz#}A-0-JU5Px*B6a6ah%U-MB{&<CWf*|Bz7~i(~_UPPhQ<8=pG<
zGcq9;JCp&!o|4-tpY&C~GJ%2kf>mLRd|Wu#xH9R_R@13WepwtF7amqnEWYu5gV){!
zUQSnKFsc>VcJm@b7YTyVQE~xc-2G2({r!GVY~&V#C<QacUIvjLeL&ud&keF8b#a2|
z8?ew_V>|L;(o68+0{*zj1@~K!0Dj&_qzY|M%vol$L@qo9nd}3oZ5SPm)JyOqH30JH
zN;G@{7c|oB42#CjV59}mw_xytDm@@uZZhjZE=+hr4e}sbIZ$&FU=+=b$kBn4!9oD&
z6E&EZ*I0s72n7=ggkaBY1*rf)ZLr-e1>Rw?@DK{Qa5oBLon*ed?b(sT)o;-Pp#1c7
z=s7DCPA%Dp3E2a1pDiKGf(sc4J^*$dpjL&&AczmBpR5Z)#U}#jxH_Rv^U1^Y7C?gC
zV~A1*{2lo-5Txc9D&{<cQT{mtWTMN<sHpDnZEUiqn>FMi=#fb#V;nJbV${fG5mH-!
z@=b9<&V4oj_>YBwAnIDDh8klm3d!?UN-wc@RV}bv00vj#OW$3n$vFnkAH}M{o)08(
zJu2i<+U<CJIehr~;s}qrp1C4T63lSCD21~FUa-Qb7$cGj<*TMIf?K{;F{9Z!2u~cw
z$mli|aqlZ|&<YcrboV!G6s0?KcWz85HFs8O)CDBuJ=&)9YcbbKuo7Wd&~g38PHqJx
zgBKt$HUc*~_Cv~-E3DT-)$+rw!eR|aED*B*f=8%AexDrP1}lMR(>j1ve;7=XkIQqM
zkq~jFX{(`Mmd+=~$-3=Wo8npXC!yRe>VI|g-p1r7G))sMH#lyAMM&$TFAQ@0%b`WM
zbNqyKB_{c!X7gRC60%`}J30Z68Kb3i>5wU?@>csU$f$~z&3THHtktqsdaPvu$QsI@
zs^##5RIGaObq2f^E#Jc}Q@fzM!bK%Kl>s#UuCQ_iA+#VZ^#t{zF#FF3anbg~6_Y@U
z5iWglI}^1XYGUu`-_OqpLvOO~t}13m@CHyczx&?#!!;!tM4_daF^lQT6K0~JSlH1i
zr`+i*_U5B_oVWHMlvj^kaM!7kkmVnaeeS??re|z%&0Q~r^R%~JaYVZaZdt>w^&gUY
zeLMW&SA;}7g-KJ>;#K6N5a%nrG|~i=6FCYs`UyZd^B853oYxT&FF;AgYEEJcT_akz
zr1K+cw0}~oYE|QE9!N&K6Qgj04$|ZATM9n|k(Du4!~)^l8FNcgwYI{gbBX36aLa#9
z6k?hDrIRX722xg{3wd>g4c$|Ph1CBQ(v4-CraK^HHUuQ1)5$b)@eH_Sp?fJ(rB3bm
zaQ?fC59&g@r2XzF-P>8jT6KjH4BV+O11oj6zN-~eLOlqQ3YUUFu&bD#SO<WUK6tdR
z^W@di0Y6_%fEpe}NH~N@k66IkAFU}QIkk1qOXRKtk_=D$YXGaA*%31wHlO|6hT!5l
z6#KpN0j(?QbC1Nkd7awDp#&V1g)k4c;et2&s*;%by)}3@J_kn6DN78*T+&U%1wf2<
z-v|Z>v_D#&mZ~1yp}w!6`fezR_CquZ(S}d#K<?3-Am<iz6B?S&vZ4+6R7=#l9`$K2
z(Krm#f3BDUtY^7;KVjQ*TnK*Q!LSg?^oh-GAvwbQB{afdc=u_ksi<^Em;}e*kXnvW
zNa`pRUAqA|>zg98tdw%T^**228u!Gw_+`hZ(RM~#faQNR97V&34*eg|ak3$iBiqo2
zcU6g^^wfI9R^0CPYqht_BL|kRD%fJ`mESODH%#1KYlBIyX*EcimQt#U8O9Hycb90J
z>Tu6_X_K{E^cg7s)p$H|8Wt2(9-2uEv2Y{N#Tkyd&?TRjNxDD3`6bL4I^LN9JPH|Y
zbNJhU@bFg8Dlc^EFetCnS<Db`CxRBb@N{))H=fZ#jWr|_j*K&y$A21l69}_)_ko&&
z9r0a=+qjdU`=GaN$ggq}+`M#C3KAX2ln?h&8w*<C-h?p=4=gm7=&<edb)J(xd@3qw
zieQMZvBjM>0?s^E!Y#<Tnb)3NyeHM#+ZfFL(IJnpNfiXZ5EWR83M{M}{b&El*Ek^Q
z^^1F@Pcj@hKT~LX;ogU602@DY&|Gfki7|r#D~JYw9qb8B&l1=yLAlVV@WTcj6ZTP7
zdhd1y>RGW4jJq^Bv0NwJ>H^djM*=b&&)%D^@Ec8sI&;G*HGo{)%?6OVq;ZxdJ=ROJ
zf>;W<9&GD6oW6ZWG!I@3nN6o+Pla*Qj%lDC6CV+5l@f?YBUl@P4q_VeNP&W9mx7i+
zBo8K%<A^mcHQ8Ec-}{X6;L}UfT&Q-JSYOOg|Kbwq<+;_kX^3QFJkh5tQUyu^o`0CT
z-gP)8jEbJE4qUwwzucu;;9+K}4u;W;a_`-M?a|d}X`^WS3jafPn^Km|$=-s`#$YEI
zs$~M_PL6muPO?Obs})yiMePjabFtI&RI(gN^p3U^XKRY9)i>YqvefWS4$tzA03?^@
zl{p~%SvWEqB3TXK!49cfO`K0XaCFxl3)aj0A1E@o=pD93?SG(1EJZt|oIIaSN{ym?
zu1;}{?qfc^Z(!XzKK<Sr{b%mXEqn&A_zYKT^k-`f4{D6Q)ZE<VGycbCLRP!}(>?F(
z)s5psD00sYkaH4i_$6AEEPN|hWuME0pHZXM#FKx6mOn3cQB7k^REkJu;uv8Hpa`z$
zw57Qu&@f2?j)wU^_H#MlsqNDEZL@*kB&?us0@=%bTMH8nSB)E<KyYvsnIM+wV&9=|
zpIvYnP|9!TISRJOU{>%{qO7y>#5Cy|1B5cIg(0h^%y1ko=qee>wgd|Yz%?9iqc%`Q
z*DXN|7Dz%f6yo5{G=Ut+%2}R1zg!=cvN5h>0$pj`Hr1W2fSzW{Phzpr7I}=Y!(g-*
zyCA)96UJ{0g4Gp3*?5NX*L%hv(&W#-2b5bF)$+<uh;~zEI6(MOWS=apZ}npsb8%6g
zKsZ1^>?z<LwJjq73+o5RztYCx7s<FVjKTHEuf0H4>Ocq314=<IhsArY2?E3HOk78N
zf`ZY3N6rbk^f3UG<|JkMD61(4y+VC@h6&m~4{gIsUbUv$4U$LmMm?Hk?)P>Z6=a&E
zm71+b>!7dE!m~xt2VXquv4RY+#<BMFVT(MsCexHiNVN_YJCGPw+<+8pWNsI{`<BGR
zR4FK_@G*K_FfY9zIS|M|F<K!19-y)b@)k&aAp}krpn@!y6Dasit3<_BOD4C3dzM5f
zJZ0q4Ip1c;J~Dr}vZLg&EDTbkrS!2?u#Q~tWUN_M`Ysd<S>jT)o-Ip|W@=#UCl>WI
z)Zi29OOG4k!3D0&(gQ2erS!hhg~($vvRjoku1yWaz#DQD67yr^+uRg745i<#o9&QK
zRFdH~*sADJspNuYt3B?|W-VkpO~m?&J0j#_*`^}^GdZUrTU0fL+mogx)`}_p^bE_d
z1-Cs8ku|S@(F_JI&L(e*-kK)c+J3r1K1Q1m5f*vMl2|facAi;+;{%46O48DuM*vkH
z?6;rZ=oLGrVH_;ilY;5G!0z*a+XrLl-}9GUVPVo-^R>l;R0lcBLHs93e(JNq0(0l4
z39}QTTEfs+bL~qtI2%@yoAM4Dc3O|Y@~<B;9}pc!M2U(pp7~Q?i~h@RG5lWG*C<j_
zBid^eK;D=gL@WBxAMIOI@}zYY(Lf0OzFKHH8ga8EP<JiHY)utKgrv{G`K%-t56MkH
zH&n2&EwOk1>Nmtkqa)B`<&174nd8DP)pQ9WaX2X35~JPPo9xj>yxP0n07dq|UA+_J
zglC}+(Ek_2kApEdFEKbdz|unfF14y;h}9FcDuSzZcPTThC{XebNhgiU`moMstCP5;
zwg&FU88CfDBN?k|OQRA3o6}k!u?xJ$oSrqjI?)2+6lX_6o(k*QbRpj&+imLmnSKhb
z3(qrEd{b5b+W;qEZ5oy+Op;dvX82o9`MYOxOo4T`Qbn(Ef%{u%6p`%YNe2Y}Qz;N{
z0QlV+)V$sHuWF2(?TkB*2n<`Lfbh`Qtfx__rrWla|C%y}edd79jW(@#?MslE9i!K6
zBK!Y)tfK}VGR-KH_$90fY`}J1iOVVk)0e8}^fYSK0xpExsBh;SYakEe4(fGJX9sN=
z2oDQ9@KsWF=3HJQnwvG;6L8T$+XmwNv4aaT#8SxnPcNx@H(iz1`vl!0?r8GWlzMb8
zKY@w-krkwTKnPvmBQ*E`tL%e~&LxU=i#B+uvfNXx6$*Krt3h!a#5!aym(=Dbmr340
z1c`QTCHOK`J7oOaC`5I<^j)ELl0LpTYYJT11xfwkarjll%`fwIu;<NCgx2$(#!;WG
z((N~@7TD*lg467?XP!PW=nAyt!?oA%n6e-*G7?aQlcIiLrvJ3R#huU<vT`>!_E2pJ
z(x}2(q#a=;;;dbaM{k6t9*P1wBUSLyK^FFBhkzF1y>0F~!kh67;|z+emYe53dNP=)
zu)~H|bernRb_tBZj~-Dy?ouR!(f}s8M<XzAjUSOd;uYDy{ZsAv%ceDxsfPq}K54u)
zUa=Vf{A-o=HzPsXNu60@lsRYg25*-F<dLF#H&vTD`j3dpFk3xF<{JmQsDGHz7M>5_
z7;LG24k}-f1W5CZOGhUdCI;$yJ=RieP~nt2^!}DR`)J+Qe|!G%lgls$6Ue6J_(w<h
z(FljmN^@oH@n5<v7k}t~H<x!u>rHTuj7jgTlpmdpEU)pGGD$*f@TSxWnobVzXDM<F
zu@`^8X<C+I#QyHn**vaHKDXD%*Ao5OTcdrlKk4<e=MgXx?GRx&eNl5q-i4-Q;gOt!
zI*{_y_g@_p_A3)E#u2Xn^?a`FbvY3->yv+}Lox<XZ#&cw&o!UG4W2MgbN%|-^~+T4
z^zY*a90B_81>)EHd$D=sDXQ5vV?RWH0AB7Pp|Awhw4TmMjAW$7e`J)qFMd9q7JuXX
zH~9(T8IEHY7T&FsctwtbO^36lk$vq!6Mkf>q=AfJGcTMFV_#GI$^31=>7_byR!^eb
znB)7?5(!q&4Cly~7ar<qNs`Xj_M^MqY?Kmxi4xA6%!GdoU*l8LLT}tiOKkVciJsQU
zY0pmQP^&D+)wM5nEsI`9g4x*2KOs3L`8Lz}TazA2@>uU_@!^3T4Lr`!fw*A+w1vIS
zTTd>JXqvr?Oxnq`uW;96eirCO&8h$Kf;8*;cUFgQAeT3d$y?DQTdxto(=@#!kd7;|
z$!}Shr6{~1JJ8SYZlW$*5zX$(BYx#^p3eC%z3fweWs74UGUmx2?y`7Sx<PnL`(=q6
zurf$*C%?bO*Z|DEE*5!lzwoQFc&KzdpO_FU#UuUkKi--v%*=u~vx7(l*I&pOT=Vl^
z%`!?7gvR<DC5|n9$>TZV6#@--nS(DKXs2r#zw6@8%bd1nR&$q8l(JKMwzYt_QTsR2
zP^srRrS*Y2c9RA?f$1AR_`&k3H|m~${Jox%A(}hN-0njIZOTJ^zv&3Sxtwc;{!<>Y
zRvunces(zY?8)fJ>CkhMGI5#m5gAEklyP_zF&xb?JSOqy*^hfnlKcZQsxMu$ECYd7
zba=S*@Qa{Wbp;is3gepp7U5i!l2;z>v-_^^W^M4;A~)4LM#C*v`+aUlGQNVc%yqm`
z39e)OGSNvbVJZvcH#wt+nH(-OTIgjXe*4D*!w)<o&OICJz6WKfF4GG*N0z4yj#FH_
ztNw(dEk<B$$&g{KSBQ~~CviQLv7AhQ4ZCru@sfFaP<*Qw-^}2Bkf5Zx;J@OL5Z5@$
z*XoH&d+4qD{&p-w_03&@c=m0YY*!)rGjGOJRh-c8`+~iU-i^ViMkZn(+BrUK)T`Vs
z?+WWPuP=l$X$*W3`sw45LNzJUa;tN9>e-2M&8B_R$U#Wmi)HASw@eP7(Xql!#ZD`!
zzETL)){HsKjb@RXBD5NxWVr<%EH^D}2-|KqS)YHreD&-yi1dXjc9ib*^`)ml$lr<C
zo+%iISW%k5kIqG&pdC&Q7;g)Vi=xwHX)jKuS67V6PAs{xD<Gh&Wa)6y_-L~XWF&XI
zg#0I6f*JqZ`Al>`w^Oi<3Z`V<E8K3xv+r$Cw8O3Xwa-zpcb*^q_<Ns-9aSAulVL8`
znA9v!ZV(`cVe0FrxC<Hc>p@RbOVWGt=sS59x)Mu@X)=*bl1U7Pa*U1jsmQG@q`8Hq
z)mkOpP5~ooC!af~7);`OP?F1?SpwxtDro`cm5}op9|5(gYO+dlbj9Z0y|&70N7;@?
z|BU%{_xHU&v47+K#gp#ifS<TrC%nfIp3dcjW;p=8oYZ53THVD!%5(-FxWDtl$uc8E
z*d)08b?`I<C1hDe?Csb?dez-}>96TpHvkmS^1myuG0`9({LE)LUkyq}Qzn|`yaPHM
z)9Z1#TXE$+VVYpu6S%+m`jd6L%VajceKFN2KBF`vL8+EI1Le-wY72Cw6fW?$@KGf2
zXpZFvU*76?@mV*Mzv!9E-Np3|QChL?ECR$_6G4|v*O#3CL()i$Q}`jj<K~6WN~2|)
z=i5!W&2CwZerJ;MAdWv3%NuVI1}bCnq26Y?7s@sHUcNhp)Y@x^$P6-n=ICPbR%v3|
zPHllK5zcz}=5Zd9!~<&fyZAr8-ZG%c_l^5r!h#qz8b+ruQra=PM~B219V*fo{Kn{R
zNpUn%QX-gRq=15mfQUK}1VIq6z~bS5KlkhVdUw4$-(A=F{T|2X^Xb){p!e_oUOhVR
z+Z^-bFgy7Cfc+MmnyXF5SDKcXgckKG9fAg&HyS+4A~`(>KJE>a1r1@gGfU{QYf^vi
z5A7nEvnetLoL1@w#@vohmq)ukDok*EWWtdpLs$f<;J-)U;V0_Y_#uNc+ys0M2(!En
zE@Il31WSer)laDK>D2=y_5FLaILSg}FpSxJTQH>6(xEC-&mu>eCpsz;Ce+v(nIZKA
zHHXxovJBf|_x&&18T|hC)eZ-KHfdtY6!9_T1THd5hCX1@BBt_);Bd*@kt`p`%-q)v
zldX9qhXK3-f9VxWBeaHApiuBC1cs)PQ@^5uYg6E%9k0f$;=x9irz)RU&Th^ANl>K7
z7Ncj&HdqV{L3dG8%f!!%B{M7XX<BgU#1laQyI21gw04Xxy7;i7<Wd&2G;(5wf?Wym
zA4=oAuk73{n>DfZsO=^c`%~w5ExSzT|Ne^lO!S;W*-VM$2qg144au!`OE49DWQ^4b
zf=DXy8h%Ncf)cfBs%YZpl!91+Ism(8a5yx)=SA#$UR&%Op)5=(21$k{8afro{i6Vz
zml$q1ue(~y-c41pzd~B-(a8Q%ei9j&#urGf)k;gp(HzhHau9o}ZZ1;!x#uepu&ef1
z#1Gh2NT7vFqNxum2MXOD=<+yCJji*_#xD_Z8+rCm#0Zz`A4QYEfnS&T0{7ET^)rhf
ze9#yBuSGrA{rM+q_9<>EbfWv;W)hDZM(>-NkZe=ff?wJ7*yS)gj*dA|<}CnQxT~MT
z`()n4__b_i<j)mf7ziMC3<0nM002b=z#+f_N(ZK%zVM5P3W|y$WL1U5Bsk7!aw%(b
ztLX5n>x)Ur2%g0WYZ;2`nMj>8m&TbZm{=>B+bNk5l+6ih){bWhu37|FJtq&Gr7h0Y
z3+Lu#eBRgGJHV0{WK9Yo1co^TUvLhKaK9Moc{#=>D&99HAt2#;$kqQsuP0q3r$i*D
zMW$xNW@IO1=UvMyNGvF#6qgPS4ZVE%a%*er;Nal+`1tgA|L=$Cgq9Rxt|-9FT);V^
zrE`n0xsK}axU&>~xpkMVc&aJRI*n4g*7NK2i}ool)OVY6YPUQ|OvcK~FRw>mNJ>df
zOV7y6%FfBn%P%M_DlRF#k*=y<Syio$XAzdfprNkJ;^I=uTm@+5Yh~G;UD?gI+qwh#
zTiXXs<itval^Y*F7%=NK5m!tbe`G8m`Es6|OEck?l!-HAmxMiD`>?+8adYd__Ri;B
zzlxhT!JYEL;%DTL?(7puFYS=#dJ$&Q44T;=Du;Se*X%isC0SMl&CXSh<f%%r9`lA2
zgcGJiB}-OvB%4E+&{uBMK+fV7=bfy!=xusdr4_Y34OM<8eFC|YhQV=sg^wGY3EuUO
z>kE8&)?%@sM7?{(QFfYB-(+=_)53L@4Sl>1`Z(7c{Ib<+s=wpBwSl%xyx79iBxaL4
z;zPgJ$rB(Z?|7{U@){YG;@;2gKpQFqv114!?MD_WkpHrUBZ#yKudq~oc0=o>$mGfN
zY(6xFkz{b`FW(*0$bh@6q}-c*iMtib;i<+3KmQ8GM+BdHoQsXnBg&UdnVhZvN9x!P
zo?&Y;x^YeG>i+s~lA3L}<PI77pF8i{-StmdZ1*23D`BML3ODfPt$Z9ChS|O*kE9r6
z2s)UN1XG=J^kjPoxaB21xQ|DO>&M_yxIEN`5CMaj6TAw4iPRcW1|>$xpk3Gpfke!g
zD0r?e!oq*5pg4#cvVnj`a-xzz2<8?C7gxOJ5haD2ts9?d99=+1$=nF=17b4bL6@A-
zV&w!$p<_G}jg|C<pWz1LE1dl;Ms9#xChD>gVzZ6ezKKb`MJ8_X&1pg+$F(T2JabaS
zRnAp%o{ue~noCQ3Qi6kpiV?3d3SU~i1$HY7Iag?lFwaqoCHNJlrUm(xtf>sstd!d^
zF7>)UCK}6#St0evi+a3{%>k=}G^A+XJ_ybQ%ci5!pSJ{KH#3_n5$FL<B4yqsZ1?U`
zVD?Lj0qg7r^UIqB>mZr-S$+<?%r_^H!H;aULket)L?BYC>j%wKR1feD#71^b$&!LK
z1S3~jXf%ZsXNxQz@qq$51cuvp5Rh$%px|J^ggdD18rQwSFNc~mgdoe%ohK$#8fZkY
z2b*4L)TK>>E2`JhuraK&^PVvsv~X@La!8s6YR2uO)ZgT&&3#C$ZtfNCy}AeZLP33b
zc)AID=P}uMSDo{l5&_qJ=1)%PFv=?Y21+8Mzzgh;w$^xfIH!;jgBc*WzPU917f!c$
z*o7UpxtBfaDASy!2@<?dh!|!!(^Hw#V2@DqvU_txfngd5_?u6(rhWn=ME`~%m{VHl
zz)qHE+>+ltLO&`>rQl>poyvY-_-HP4=l2&Hv+|$)j0nLQU+2f-KlPONnVj}?vNyB7
zQjiA<g?KFhkmCvdQcJx2ziB&Y+&!xMcNV{kf4hv#E$O6bM;{piJKHSotBE>n<pD|f
zPZG*d5Kx6cm58k?UeP2a!O|kSb{juIJ;WW3SdKu4!cAm6YU*1G#Q*^cN^UoN|D9!n
z_C0|;1sq?4((B@kdqfMj(<*dJ{Qg)1AO+qTeh27_J4<3=h%igiS*PL*W@`zl=}|5}
z92y^QsaT~+`@M&jM$(#u7*?WPWDB%g3YV;XhB9sS&PoJUb&Zm$n84eMHwK}vF^qMt
zk&)kC=&rp!ImnBjt{3SD&`WSr#t;4yD^8<=_%ux*$=rCcRBGKP?0&W`<o$BNKE?Ao
zP9ptyhR4<k!g*SH6>;*HaB7oH5J?aPKD=cP^+`!#5kww<fh?xzE63tWwjvj>A7_)C
zJjBRGRqH(95Gzmd9$3>ihN^kUq$z%t*i4e{wWZy9@eq6c=AQ-*&wWggh%X;Z)^MYa
zW+Ubqsb0xVSII1}R@iDRm9E@CIiRLQC%=~5Qf#sxaU`=gta@pByyKcYZWH;N#lw8l
zU4uXBnPy=N-<Q^WM5Ob$zQ?yZzGp3_uU?qhasz=ft;G!xDU*O-84V8VGX@t@6fGum
z$tQ!AR-H%pEH1Foz{=%Dqt#dk!&ec2s86E^&}#>Vx>KnEMEb|N6PlYvsZ7%WC&lA_
zj{4S-%;{OE0e(8qt5qtlFZ{wzO}3^ht0hhTLVoYG#|?odwLq+YiOuCoQ;r5ARP_qM
zBOA+N(LvM^=u+?&HhysXxs77@ncKQgV0N;vqanQy%{aCuE0q$y-<D3rBmc#v(%xy@
zc_v_v=lbPRtD@k4-m4aYrg@O%iS=E%9pOP%Z_Y+XbD3cc_4UWe?|!+I*sOM3y862^
z?R#@(d-QD$tA$~nh>Ss&-cQ))sUU~vy^vukB@Va!$M6AwMlO#4Z=pvPm4lFe<K+pt
zfm|{uK~uf*Qk;^Id_2dCbA=%YcU(6yE2|(^y}y4ubi5)~z)WtZVm}~DeiqNC$5b^0
zp@K=8s*FZG9kAsyg&!GC!g`5xp0Rh>>M$R1p>p6r3SHMR;3W!ml+IS;ab@v5|D&T|
zKl^=bhA44$Rufq}K<K(ro=Ptq!n;Y{4Y^P@y)Lc$y6)bq5sv2#wmz*|&MumG<66|b
zOv+;I_tZ{Vb!yU)(uY<Fntu#`>Bgnb3_-J_NJNc)-IXG#vMphXLTeUHV*fLE;X3`M
zT=^@kuJ4R<Ctd7~P_D(V*Y4uPZz$^mbLz-<)8K`P3htL6@e8k?IYp$tKGC#Ev1Rw2
z4)9KEu-Qmaj+!$Y?+N0VI~5q=?;`NFj>vT4wofLS7v8AOR{?$I5XInPHID_SsQ}f^
z9lxH<>+gHb86aRyZea=@8Y7JHo##n<bK6}s&oP)UasT+L+?>2o#np2`WzC|<@|&oI
z>YSzaw6r{>P!52AiTGW%+s1g@-t#x_B-%00-d&|Xx$3sH(G$oB2mK7M6hDy769jJb
zYjDUbLD<wen#&T;s;@n3=N|EZbz<i3D0#E&Fw_gA-)mJZpMG1XKMpA7N=DdnqtAa`
z@jpbzTlt&1Ft{0D?p0>C^OULbodm1L|GMY(mCyw<Q3bBIw}Kt?PIf!5{@o#-HM@J+
z5`<JIg1ot>;2s4)$V3~IG%y8z*9g4c?Z12Bzu)I9jD1<VaB|=RFD7{$<(D=C$QMC~
zTv^}e?kE3W?EjE_bubi7q(Ph*13#dZe&KNspbT$_bB^xS3|Bpj0|SIqBz{$x&505%
zP!Z;M`a!&$w&TnZcm2iNy%YItiTnui>&2SKx#N%aWN23#QoX;J9A1}7V*m9pKk<vq
z*6;V(n0Wdk`<FVIzrJoX5K@l{mM@6oR=RckEG`k?JVyhf_mwIhDg2Il|F2254&grf
z-@os?5&66c#jXizU#~3&K_h=&Wv6kbm&FSg2>t9jC9UiOzS2RXw8YBs1Ze%W2lq6Q
zTGv_2_0L3rP+b6S8t8kp1MT3yZ)YV9G(83gfc2ont>(liG0@LC(5>c}uS^!cyeW9C
z6k|TvD^2$HHRsdH<ctHl+{{o?3T-Vb)&bJL5h;o35*T$rOU(kzKR6oE;&)smW%q$X
z`#=m8u^B57F)l9;fPMSHXXBP?Ivd~xNi!k>S{y)A!+;EWI-ft#A_GJkVz)oCud0V8
zPNbe1fl2X(vr-x2_>40u>2~HW=@Wc6f>W=rf!qh6<_oFy-I*(D4l-oGZw{|E2lOQ^
zftE-R8x7<flUlPBY2YNOFbn!c0NmlrK4Fgp1jMI>v|M)FN`W&AR%ofk9~p5h$+)h$
zwH<*vT7r_@GGsN3@T!WS#vIed>>j>kS{e(InAI{sz`c@@WSARF<eDty?H%RqyFtw+
z_*f#M7SyiUcL9bsc?q-_?+DPfkHGSI;=+ggW36jH+@Rl9&0*vM7L1?UzJgQ<lvSJQ
z8?bOCIsflK{>!!eUoC<H?jpf-j}h1WKw==2$d{-h2+(#1C*&7W0U#;&&7l}xZ6@j4
zg0Y3gUW7tBDu6Em`i3vx*uBK`b<Ec-bdsUdDIZA2tl*U@vm`F)rD^eCS4rc~k`KgE
zv)85G$ECysw8ba1jOwX>1$ZJ@0Q%6EXz7As-xtwQEqpOn+D*6-RB<EBf-Rc=#<kaF
ziN|G+u{SOr07S7MsZ+vTL4ipDQ0y#*X%;BM(DWHEU&ocFWtL|pz)Rre)vqgRjw@0z
z<y7s;2KUOQgvu6+^K})K?XN34k1M<Qt8}_6d)%w~6RHL(s_uuJznpab!EqIhznZRH
z-C<ERl2AQSQ9U_W{W7q6r+~SahgmEHjz*Ov?K8&{_^&cptY%qFv|$B+QwQSBY4@6s
zAtkS*Szls7Vr2JCDobCZ+{P?sa2OznK`{H@I?9C35W>j!Tw}<Hhtz<10_z_+Rzd8|
zpD${D+EeEXqDIoGCkPL@OC{7|hR`yNH37)x-z9tYuxOLNPFx`Nl_p3D%ewXrBvnw+
zP3FkoM}>;rx>6Akl?1xUWok^QKYKsgq9jTQA%ziu*{yP5k`Q}LIR?WZIc$k-7r>t4
z%|ZY<$TunjYZJ*Ji~9|3L{5iaAVp$929`%UiBmpFK&kMOJEL}kqd{W1>EgD()O`w=
z0HlHR?7Pvb@@#(Jpb7w1nL~lm&E}(*_3i*F{=Q2>zeP(jL>}v6PX>u$c{42`7gC_H
zCQ#<t7Pr~(_Sy?Y`#gV9#{Nl7Zqz3JgQk|sR%>)~<2{O;yJYnX!B2(w7h<AkYWcf$
z1lD~aCj&!5tsMNtzHKx1LMbYO&<Ft!qTs%t=zcPPtXO*@LHOR%g~t)n@=x`J8~EN1
zhqiXNN!M{~4Yh683U=1IXda4qqhj<SO>fk1i}j`PzAzr9b-w>b`UCH1Jl!2%ZDSb`
z`sJJVZeO(Fm-Rn{5&fWJ;lst&`&}$;XWHd`Zhez56c=CelQb`4>RM~;IfUz*$WbAZ
zuQT*piY{I%lGT=%@DZ2C!DJ;%&7DY6-w^+~n)uipiQ_6Ix<PWnQ!-_wZ0@1(!3dLm
z4@oV{YbIBrb}Bvm9J!s5y?H&|a_TZZYx;Ic3f|;If>xg`1GINv?oI&IEj!cWH$-ed
z;lzxlz~5sqq^fv6KJsaiEJq>X2Jp<zRzSv~xTJ4)NSm$3u)NKiF0$ajldoL^THZWS
zDt*l=*1bwTVC@h!?eGtp4Ij>a4OHQ)A6R&)T*Qt2Nm7SKVIxsmdlsGN!6NdfwS&e@
z%TaTA4|TJzM%ne6Ay}P8iL=g88nM0q0UFLe2G|mCKxNt;W57dtc9dy>mhL^R+^<^Q
z$U!wn?XqGuyKe29U$t*|7>$;teTad2BB3iWj|N&Ec`*=7e9*p~v(3dia}zq{Uv;D~
zn*PIzccXLzf*=ou^~?~u2M-2B{Iv3>v=sIeDY`VsHH?%;;tNV**e8SiDB~@#$;r-#
z7NL=PmTSUW=xb|^hQ`Ky<4X;~>-fKp&FtKU?Nvi)$j~$KA+f$_i4;XPCm!575*pEb
zzZ)c9jn@pviFFO@3EhU4dFn12|JgUTF*af`F?oj;a%(Wj42H_k+-<c10d3H?3Qz?r
zh@B$DUT;+A<**)$kb2ap9oG1&hbdE(=>yHPVd{z(A!b{uW=B_{!RvTq%@(<DH2gFX
z`f&VOJ6h_OR8KER9FQIxE<V>_>$+h9c0N}Nf%-IwhhVKgrdX)y_5bX4xg*(Z*L9zb
z=V{va(B_33c!Dk4hB-sh7BK~DX%v(vgU+UBb$ZI3Q=K{o(pNx_JR#VfP;=~j;;j@K
z1^%t$T`bK{B;;37{ceQOy}O~dRM6-&Xx!6|3pdrvqAx(KJH|0VzJr)}^4f7WM&pX|
zks#DvO(jEna2SLUZetfc(Gy6jTp2&qo6$5JFza&snd1<w;i|o%M1gvg3PSVSFY<Cb
zrkOaV==fjL=%~``WgRCB;>${;AT=6pS4Nwv)?B$JVU!hK`L33lgBOBc(H&!?UbOok
zJ!Y@(&KB+N)jUw(u$t86E6&vEL|n8p>g6^UNWG)LJ_pLf>R~UF+)nTSMSH}uIJS;@
zC~E<I1fiyHPdQ&RGBz_V*I%jn&X}UopOC#?JA0}GYIB<Up6I3NdkP0lYNS2;?&(2e
zXPzHf*Pt(an=NRu_3iNUf9uyZ#UwxJ`xw_edR{V0Q<xdM<Q*|JHA_-9EqiGKIX3Y-
z_Xi?7`_dEu8ssxiw-_znMkGCYTBZ-FcnkeQYcL@%iZSKk#t?%{uClHZ3K9OYQj;cK
z%T1-C-n%}rUJ#|UR}bI5*`mJc90^n@IW^jkB?T=6J}{Pi6aS7<e!B@88%%P#ZF_JH
zl5FY{ZG)S>I|ast?FX$iX`VIdwwiufUck_{BZ8DZK(_VgDoW2;m#B7+y?u89k`Wtb
zk9%W>Yd+@;=xBazOHlHly{|ub?=_1tbb8Hr%VV_r>;#Mn7cvg-egPT}#7_2yw=u#|
zB6z!z>6O0{kA>I7MUb>z3H{(p1kk0!kI@~uE1;VTF&EB#Y7Z8Wnf@CHMc$Kp?M3>b
z9;xuJL{8=+e!W-0-_4Bx_?NMMqmUE@ysKKq&{kT`88y~#c9nmwh(Ehnc%9GO%ur7N
zszCNj3=(7td1-`kHfmcpMSa|(B)L*i{wg;WpX;&YX&dVUoX$dA%0%6ojdxl;8W(Ju
zc#mtAtvS~~$<Ny?M0zFOZC&?VtN96GFkk<Xk|21LsKiGud>49~Hz{O4WBKjv0-1!8
zX6Rej_^<O<?lgnCo5^F%!2a?3X)d33$CG*_|2t6*{_k4Ze_d3$zh%&(qNt(gj?WKY
znvwy_n!w4<&&)}mrMf;(carB^<0LY!pk$NI;F8ehiTrM<W$%)zdapgZ#~UR>iDCex
z;wf@&Z(Z7xzZ`CygVhGwzEEbQj$D+`cH7(E3y?ANb)LI>=xhOiC9~Ene{fCQEK59B
z{G}>x?Uasl#y%N-C$YGOjBVQGov2fc|048dOXU5V0)tC|=X0Wi7hh=QrmyDag!g+(
zy7-#U*5*NmGSWiJq32ubei#6*$ckUffM&PU<;w2l#<9!XVtN=X^|-wL=27PT?Ckp)
zQ16l`dr`*P3k)|QOwxJW{fXPtrNbbo)H65q$xQI!MHsAT$!VcH2U(CSlm(TGmxQ1F
ze!i;Z8w478i&d4xxb!abClAz2`G<wizC)bIdU;kUC2u>UDejVL>Jx(Gf0@%qH%K#E
zLSId?^G8X44l3CPo>xFcL&PO2ND7}|XDlF~*HF!;fW4b|37cZcPyBlBMTpx6cnGxN
zCcZs-cpFok=~ZAGQS6QSt+)mp@%b~NY{``HJ0RkBiL!B>`kyhMKMz%Yc{7S_0VRI8
z<%Rz^hR1)uy7Zgz<akYa=B5wRRd=}CYYvasY@6>(ck^NPI*o_<USQ6XugZ<L_5S^O
za<b^~&mRD(TOhlsixgUHILKYeRli}AHF`qy?smTrHSj%g$oHVUo#)1jknfdmW1p;E
zKCbq@_x>Q^Z_WFkCqVFye=vfTJ!DPwbeLGgz|<0_ju03^pHb7u#h%qaXJ}+%W?^Mx
zXYc6j>Rt-t;5Z);6mqJox*Qb~mvHs^e@XxO__8MF<`)*1mQ_^Uyj5G@xSE#9)!f~C
z_uk-xM^A=^M=jbi$7f!=e6{%c&D-~@KPP=Z?CgFy`1<|l@o)W2zmQ768sG*Tx+4VW
zMy2pbG3WaO4ot<2(kpd>Cmd;%9>hOf8n<?l|5IfEdlKVRGzdE<?CnG%t&WbQh#Qy0
zs~Ey<s!WW#s2PqjGZF&klFnBSY!RlWC$a@vF9=V;oG`kcTP;Ye5Nv)n`Yjz}Y$m}{
z(xg$jp^(|-BYh2Z&_6-pl|q-#KPbE8^W+0Tz~i7eBaK(t&)XfhW>~|lTdH_5T(YHl
zJS@9}kW{SZsB4>>5<dqtL3SG>TH;r=r~EinAJw^WP)rc*9%!wE)m2zB=ac{1#-`WF
z;miH^GXDLgn7k9`bn7DQmtBe3S?qp;@C@F6F?^j!?~i_MwV}11Pi6dNR_CY;lMy}M
zCw(u2o-xL76xK0-Jd*u5u@rdh0}7;ensEtm0+=U((*IWoNuXMG`#xi*3B#<~C4RaB
z_tofK;{Nh9prk*ZtZ_$Z;H2wRqKlk?9U!!5W0ID79HYz_*$HFbHp=G=flGSyhfp`G
z%cDS4JWX42R*jU(Hlalw6=RmAiE$MYapOOj2t!iRBEi5Wsj^cf4mht%!Jxcmo}T)>
z1jm5N_eS)>w1&56P}#6;!mJ_u%>1ml0ZVrV2lEmG3ek&LO+_ytLX)_+{0u3*1nQSm
zZoMiZ^p|IRE{xxfClc`1Ns4Z7F4Z`n0e7R$OnanD^g4^X2`kAmIbHQlJyIMk8MMj9
zkyCg{8dHT{%n^nX(tXyHB->BmQrH87;8iH6^gcROTnKw(?#JiJ7*ifaD*Tz`=g3$)
zo~-!K&y_#=pMaV^^=y&7#XpaJ%|_XpgHm|OdQPjU{1^Fd8N&t1_GVVZa0<7_fDMG#
zp&S5&IXwu5aCn4MQ*wAao+d#RiN16o0Xmd=bUM43^fQmTM9R73N0k<2@5kvW*0t|^
z^g6r82ekK^E%(be?99*LYCZLCmIsSagT=j3z!YxFf_pIQDB;2N;_ja8CoJBKtfn!x
zh=e2%{lcmoh<^ej*UfxH#K%2i&{At%FYJ?tEGK5NuayyNhZK#mLYGG$Q9soy`7F^^
zpJ{(t`5J-w@%$BU&D^ilshb%yo#S%X#F8%{C3z`M3LN5L;zCQWUd)L;c$kd#*I_^(
z-&s1T^lb3S_|o0%aA)WIJg9?rb~WYFDi~>8|1g7#df{)(1NB4gYZH3dGaJoI287Nf
zV62!j?H*q(QPTE^oWVIJ#pk0_h#`1MZO1+N^Xv;y49fsAM?+d;@?mnsx0@I~L%3}L
zZ!Oo0IH8zRwA>Wj3}eV!!~p4OBh0aeIC$%gloeK)WaTSEeFkKzV#O!q*s$<nUIFF5
zm|2+U%DbCu(J37~L@=+4b?3z>D96HQXq6=|S3)F3#qf(<o=%cAORp4<H8Rn|Jn2Uk
z74$oX40StL{5RJJQqJHA3`lwXM4AlJe$D|Uy`;gk&?DkG3?J@qA4Gxt69hNxNkF|7
z3FtkcfZ`ki!_Lnqx)2ofDrDf;PxA<JAH7;X%Q#aAkkk}V{)Q(%sj^{OoEb~`QauFA
zHO}bSax|mA-iIx`p)g_OETlC*X4*B>a+tf8^XkD1UmlVX=z?j9Lj`1(Dt;8EUV(ZT
zj?6Kl>>s5=gQfFfFCj+2{pOToSW)$c`lj|LoVl++PjTgW9(iB7^#7R$FQ<V;Xq4~a
z;c%?nkl)92h$DK{d3U9_%XGt5c{Y-orH6<8`}SO7<RuI-i)$vF-rWR%(0PBl-cG{I
zwL??8M=2~w%kjI-vy!%Ahc}w_QZ1#cY4s+6A%q9E185G)wK$<>=JiFqtPYeWdBj_D
z%Dps;Rw})16Vs~D?hE7A+Xsh+bIa6j+KTLP7-FzK93EXYit<2dXsv~1{y4rpP%g>@
zGbE|L-zkOVP8SkhY<)cZs%B-!{X`99*~@V5PKhZasJFvGlMO^RT2Oh&kR{(6z*9|t
zG`nS<LpC94vvv$R;z!Zo34V1Z_{U}FRybeeSxaVv(z_io9hh_6a;#}BRQHY2*1fMK
z+$*p2yL+?EI51pJ8V=1NZ`Z}%=$sk@ZCIkem$r(iS*$GQ!e9lw;=S4<?6i+6cd80S
z;=&-61tnF|8*t`<rxT-W7%1?rFK;gy_|Y=6Qh+#gGK-*^Ns#+t2!=x5w+ED8?-mVB
z%V$#mw9TGbkAt(gP?CKFec^TkBBFRQ!iCYT)k*fb8_?#G8USQE)sxyt(1+9`$WXqt
z>uK6U`nzFVPP=`X>sQFvboa^G@qC4QIVfcC6$;9e4arPv_Ejg(bZRli;^tHc9$lwI
zAZh?)YzJX%P2yq)JUUGSLDE#NbiQMtxr^$aM+69_NCqj=J_B@4R}b6DN7px`{A=9E
zTW$>Czd9ujm?VX{K&yN0rZSp^L8(jZ2@8l7=3ILS`G@EQT4ktP30&a&LK2IU7}y-@
zx&1E1y)vmRO&u&(9qN2XKv0xaWV?0ZNRd3$8pH$8*PS8?L0#Mb^MTR~wB-Yna08hK
z2-};(`sD_B3ww&s{|{z=3$hfIdb@e8KHN^<7NU**0k84jA#Qj)9J&HTl*C>5)xx&$
z9=|;wdpFGP`>(}RjW7LOF%+bo%F;J6U;(2l^|-y|*|fOG&p$dLKOVn^!R+uub`PNT
zg_c7mL^AR-GgG>Z?}u+j8f}Imk%dT!)>N%2Ubl*ANm@pPDVgJR)#*^Vnz}4fASTSc
zzgMzz){2Gb$j66?l9o%_AmL~&Jo{0aM`lpf&4ifM{XI?oo15068e9z*Q`%+1*1dlI
zT8vuVR_Ti5X4>};jDNs<(sS>_+AkL-aLayl*UZhmnDn%z(XLo~Eg-^yO7YyJ#>EDY
z=8jJYBLJ7;MwM$0?$fUF>DXtP8Iw5i_l(xxUj|HwfPteI{%jhGUh&ZL{?>T*?<e~i
zr@7{u?;UY}cX;}*EX~yXxO?xqh5vt7-+rn2`RJV4-gVJytL(Rq#sCKA`S7KBxOLv?
zW+M}HQ9J?XbIf<}=MYYUZ`VIPHZI7}RCTy^kS~fP1>u<A$*Z3cBFl>Ymu!~^JgHhA
z`CCUk_xJClNZ&`_v7~|j?0?9UWaYRf=)Kzj>kN#16Um~Tv@`JqXg~8R7!TFK!5naV
zP2;RZB)H@UUL6#>=E*iUp1`8n#eyQR|GL8w{0W@2_K{A7EMm@XNz7M@HyZmv%s;d(
zoaSm>%yu*Mx^xTFrP^(F77yZ!KfVyDJFq7V*b4^acxFk}5H2?i%|*e-aX45C)4BTS
z2qt0?(I9@7`6=p~fn;STZGx{LX+8q(ebIdSIXFDUG<?J)5@HrVV%7=y*s5Sb83&f^
znbb^gz?u~@Bz;ezJ4%oz1yqapix~)eBwwL10o)>cO2NH|Qj6G7Kd3B{WZT@Y)HzUm
z?0+KC&YpRZ-Bro70c+K1!4o9O-U~s$L9yg)qP~L-3m_){uqY&en;oDjU+WQg*_2=p
z=kA;!p1k16EVQ~(&pn*+zKCl5yn&^|{`9PIt<N@$jU4(+GN>DX`v;DAlO;<N>7|d$
zoNcao3J%gxwct^giI#s^QjP_wu=Op#a<1)2q5DKP%!N9ugMpIij**Q3wlo9Uv!=tW
zur0`q$^b4kaOp$&E`dk@Y14Vd-lZtOUHs5w>_G7Mb|t<?$YRuq2_x()-~H=_U`3s0
z_y);Zg;#l0M0?cHm~(cTLn^4fN0IIPzi!ytWrvS1WIa@6@6qCyx)GOb+=8V=f4=xV
ze<5*T^gPYPGrmzf$HWnzfz0eaOFk5AJ3LR{SeY30^yiE{RMuDyV7YT}X7l;0Q#GmQ
z$vUJj0BB2uf?h;Njw*Ekl)tM6;D`Yp9|I~=a0Y-|<@CVE1=KxK5FxEQ(NrvL{E)mB
zVj%6G1%NJRtLWrc{^<!kJltfdZ{*HWsZFg>S1dxU5%b8`TgDKb(vP+STxU_3phK7^
zSNVcb5L0eYe{*P{+MB&d^`UO%Y&C3Z2-bZppfzmP8>6DDq7MAJxyGct)dc<b8BxR(
zs$LA6{s^#^R+TahsQem03JlD_=#BRVNvj1DlXY^{<Z7WB*P&_^(wSOcA$pEr7A~E}
zmtylD0ZU^S25#%B6*CtXh8K|aU!-L&G+kh0TtFLN?D;ygZ+gj`eCbah0Cd8pWcY2z
zlU3{!7*decSQHSS_Z3FyyYEzzc{C0T98X~Bs_o2*v)yzek1Kd{BP*F>MVcMm%%nY>
zx~J*3kibF8gsI8XwYsk(N~*D_Ozg$+csFw7wLsH5#IxBLiN&@!YPw}M)qK}Dyg$v_
zXI_cqWL1%IX?9+5vRQ#e;;dY<rfajU2&-u>&NO86rm39Cqn$WPv)TI+*vYu*fAi6n
zX6Cttrf(z*N6b_c#O=R)gB5ju*#CAF6XTd5ZaZTp|7sk5v<X}pH+rjTY+w3n|03|d
zeX}uj)(Ozj|Is-g<6;&xFAxR~?@Nv6PV;X8BtA7$o=e}qTwX+W$vvUDWRfAq+3Ju`
zR|0i*9%AWJY&*~lu6Z6mx$R^eW>w#JwjwM!5qADN*d>4`Wcs^H1;#a3(u*0F73lw{
zoY;25xhad7+1Z*R0!;<5`}k!TQ+V8mGi;?!0ZiY;V}jLko#9Kb5~^V{m}GBevfIyW
zWI7x2#)Oi{4VfC4x9;t%(|_I+i|m0dC&%ypGCAK+H25?~w(Nq5w&h#RFhDcMtJs*1
zEcmS6Z3{8xQct)jTovva`zFP~+=cNg+{xQlT4i8fOjq^BJbR$RWU(x^<#Fjvs#!Df
z(@Gusx&M!({=neBXA~^tTt{MiDb9^oe!vp@v5}c~f)`+lCl+p=kTM5M(Gj8~Mb6;)
zkEBT#IEts#DMT$<(>$%d0Tb(ReW6eu&GH$2={DrDHd=KKEpe+(UH55ufkj0urGoGy
zO3wO+HN%IN2DJVeog5ry`7_#PQTxck^<OmLB6^S;A?<>x?Z<tQMLb7b2)881od0<T
z;1BX-;ET{X{tY4BJ1|8=y?X1_rtc~Zb_tJ4Vk>^uJ!chjDT{H8bM5DiNsy{*-;I5I
zHl7*KMb0D&TVC|R)oeYj*|)ewzjtd7L@ob$-NZ7{aU-_4Eh&*VUWE|KiVh*b>oj}g
zZb^knE_OxVyME>ssTk0}h->(K=JE`02fEFinbzokvfyp_Gx?U~5BW&v`>!H$8&Z_F
zy#AQE#xMu{{@J09>74u^ZiY*%y9+18*NFtkJ55|gmbv~5s17YghSV*G%T^iyl16Wf
ziGn>l7MmHG>Cp0&GGhA;Vyay{9A&jr(hm<FXp4>jz}oc6{Ljx!!XQ(yv3Szzq?$1<
z>(f`lPN-VKPTHM#SM*V)WPe&AhQAb(J2d&6Whb*=%j8y_?<ijnAF)R^Os0W7MNGTk
zdDj374u1uy78v3x@RG-ud0<51zMES|P5hw9pzWggJ+}Be*kk*$0F!d=d!%%{V}O3U
zf_HCrk_$DB6$STC2)VgLEnmM+8gy1o(9%5N*G#n9F*trQR#Kh~c(hhuIL~{>_IQTg
zR<S5iQQWxXPZ=1K-W|(^nY)(?YUBZV6Br+!eAY5=J(DjHd;f<rzu4z0R-1w^td-fg
z%JH#B_cx6;wTplP1*Dzxid3L9`D#xGR22YpYl4n_p77q9ZZfUqUj_;31bDYkyJ1Lu
zYG8RX1d{eN!kVk9<Gu%A!V));k)vxAK4NKouJp)D?tZPlkxZy%Y?b18xj0k@IgM3}
zzxWfV!|u3HKlNB~x*=_P`ZLgW*q*QK4CP8o8*h28!1PG?)xhOC(d8FKIk&s7)P@Mu
z`-aztS=65MAlhQuly$6rw9hyZbvIA$Hs1ZL`7wMnkkGE-G1fqkDQN86nQpN6XcV;V
z;Ig|dvD|i9rdh)t){rw<2i9D0hwJ=mSBQ_4aqjfFpFcP|PgNiNd>^+`A@eN<dNe&_
zDKpDt11&i+($=MVou^37uFPIAT~Qecb$q*44+s^Ua-$1n=1O_DLgZQBd85P5DQZ$}
zmRmZ4s)|+|j)!8aE_Ds8cIL*gke&T^6?04$D6=4c-M0}BVrVcVLuujjh_vOh{^P2C
zsnLF*X<(G@{i{_@iC0}HR|k5HAMc32|B*X5ZnGHwY>|9nEiJdo2lBc{lD2cfkboI%
z-hC4N;8DT@4aV>EtgFrsZNxsDNcI#{6~ENY;eX$(ylSGP@s3+Ba%zeamiA=S-z8=D
z{f{gS?DxAND^dHlRw);Ooq1rckE{}YtigE~I`-Wj;5O*EaY1XAK8Sf<=g_si2_Le}
zJ?hh8oYjvxSizr(tAD&|l%@nPkLNZ_d~e%YLG6>CZ&30QL!Toa{b7r|$O1Yl>6dz5
zOx&3eVrlV&7d_t!eK>P&^XTHxXFcWWYxBwZKrwSh`d`ESKe*X^@@#I>i@(?Ap0dwg
zO8QbqL^x#Vvg-5okudewBqblQW8Z$!)aNt3Ip^$kr1%#tZO18Vh{W3QvrxgdWPfwg
z0(kY6f--;f^;b#yM;`i1nJ15ya&H=?{aq@({<`9=WYMG7wff7A`XV*gmplG0cRvzr
z)qgYi=#(nY-~X2L{uf~;(DYv#sPiFf|CcPg55FBQt&CH^xMfZgu|Il4Zw-gu9pK(q
z0Ny{*ryD@zib#-2x+>K0-<lXyO)PFb6{yMRxG1Cak-oy)@b@3{>eE;*1d2sSWUXpP
z{vq{)AtQE~qI9KRu>i+-NmtW+Y$cMo?)C12J6_4!n-%N5wpRzXCc~f7ljco;ZFU*B
ze=zbtFKUFBea(mBcPwdt*5eY`Y`eDFNL#~<t*C?dj{WPwfczp*>K>f|OoHwLm|_f9
z&#dMKZLB<&wtMhNDf*;NJ2WF{B+<Dt5jkPNdTNFdGTv1Qc!~b3+e^j~h`WCuYX#P8
z7RY}wvQg6l%P8Rwey4wVUGswJ$rq#H-HPPrmy=aW7<*n@GCG(85inGfd{y(#?&U6Z
zG{?UEIcBc0?LxreBixUQ8hEe|J8GZFOVq^e1W9~?==P=?q~zz|dR5s3s|$Fiy-%4+
zG=%`)b8x)kYr<6h-d)V`A`bce@q}tSM&lN21Z$y5i{fqgeMw=3JH=2d6xT2MT+!us
z@27~G_uA|4f2TV9x}?L_CHm4bAr!$2GrmKo1}E5LC8zfsCp_YN=GQY3PI44ebj?KA
zc-JTm9<k;>NIl5~DUeE;gDyY3crUEfX@lo?&bz{m*N>nABI45WN~)SV26$6TTL%{p
zZ&Kjc)7j`NiE}wE#L^rz4~kVti!VZ0&)m0BeB{24P(&@dqhFp!2+(#@r$ryfK(D;x
z;mZIvYx1ZwMDVvv**DQIiaH$Pgy+#QEWTkPls>or*cBhT6~qi+3@{s@US6L5>|0HT
zrePmfEA9ZHBq_D=+?;Inw57r1pe;jW<X<LC{0lSqNSw*acd>h9D<dTZoh7-<#(HCC
z8}YHKpcb-<|0K(rqeKCtg!i~I{)2<PMR}o#Q%;M~3ldjD3?E7mJ5exc?A-0YqD6d9
z$+qk?IC<#4Pt;T-WLw7w1j$j2f*LOZ5mT%}iJN<C&)VXY-#<<~0kMUrbIB6wx*EPx
z)^Kpy=-AZw)iskWk4xwVG98cSVv-edy+|Ql_LF5x#oey+A4Wn%r0)^*i6EpbPuP@n
z@lf{%t{1p(nxV{EH^$q&hFz{}f6ab&^PCa<tv?+ht7P0D&YbJH_k`J-s`ynOT!DJb
z{%R+0*}M2GixbYh`?9*<cu4Hm#LMsArlXb3tr?<-UtQ#i!0N*F0`U*e8YoaR&k|>0
z7Pi?WIV&88Hy4qWL1B`UgFQ#CXPS%ie&okjT@Yq8<@*h;j=xE;3dYirg2B|J2ypxf
zQ>B(<0~G>OkX^Nnd!YsME&Lp_3OE%b@xam@(ppkdcDwhzuX*sO1PJMy@*@BH2b869
z+AeDjVNA#DaYYy2CVfN_#u_dCi!JUs-`IbIxkdaBB+x=l=JaT(y~5#AE|Y$_j{@^P
z<toG3F;qjiWi@K~f8)2=Fr@}85QL(+PQk=i=5X*c7{Kj@5)Y3C@KyC84|s9w(@+kU
zhX4?k=1#QXhv}ilnAxW{pvXFhak`xsYBA-q@`^_|;{HWwYfA$?A+)uv-y?<TkxmyG
zs_5zAs|_YIKxO|Gaw+k1KSc4M&75%T#XWPaBh9tqxSPnsI@G6z(xwxu_U?%+i`T#h
zw<BmA)_)#cxDD6D-+2^!E#h{OTZmKo*sp@FDFmiuUluL&7z2XImCVjfI+Ii)c{Shv
z#y^hR-`)Yz@V&J5-z2Bc$Z_dYfphg^G94}xzP<}=B|S(%N}B%xL5)ocfpEzQPvdd$
zHNEqTK2z5K_mSKvA~MEdFr&=%SK9@e0!z+;n1kcnR$V#0Kll-@ww~BGXC8VP^RdLU
zYV!J(>DR7aT&%dwT@~A!{}wcLwPo{GvdI0d`r^mtby;b2dNSIrypi{$A}S?<-$K$@
zbgyK^#8f)*#%~Q9Eu4B-%tCJz^Y-VpLNTnb%0<zKi4kUfmewa$51%W&V|%bCk@(Gx
zgAIqZ)fVsD@AQH80q{bwQw3|&nL`fBpRdVDCRh9+x2krpJtPEu`53JnzITMW0}Iao
z8#8m=tIi#>)J(fOK$Hwn07C6%)e%idh23GNZ%hOVur@eQq2eX8B8tB>Gr~=9{w<;^
z0(A6tHU5MkvY&y*sS2&SW7JL+wOzg9pVJ_UM`RTDH!`e<)z(mm#8JvfLSOUqjCcTc
z6Tv+>jyYXj>BAtf8T$Whx{X-EF+Z6m>UsIFaJwAR3HeA=`pQfwXNsfnLJLGrU=`Zy
zC<0R99-9NI7EpvF#gOpKmvWP)8DUBFBL@}2$6=-?W|`TjE*u42G6WU4;xBZV4qcdE
z(-jq<F>jL!YWXOxZ!cF$DRZZP;_>yUHLlNA%(O^LN!QTHafN&Gwp=#sfx`$uL`q{H
z2ia1Ki;q>!jH~~*MrLqnI3A%iVxii?iQHqbR4u97NO?M3%H#`F0k1aM-`E9j=di%%
zUmN;zatX+1h-7;Nh+VEBf$#FUqQ}i`{Ya8Eo-OvOV0%j+YEPQkWFT*(xe2Qn10u^H
zBb^Ayg=!4X2Yd!%7A}($+IL3AJWF{w9@eGUTk(8EMsD#~G;X1&veT0)q5e9LH{zv8
zxIl=yHNxTY-HqymZ<f6A9uAh4kpOw>$vUzJ>u7}6Xmz+L?~F{HpkuRGpf5ucsRg=+
zzC&Px!FrfO7iBqI)%+&6cbKKlBsOO*VXM2=qLg}bRo&SmL@V$7_sdo?dCr~z`U>$d
zC#KWOFI4AScKt{_h*nw)5S?EvWMVx1@#ii~lQQp-!BkWwJyca8Om_Ra+6dQ=?e^S1
z4aylFiT#G<Vqmk-s)#nMrx=9)&m>>zEG6!+U+`|sXv8b*Yh4;oi|76Jzv1O(!lA^j
zU=8;@6oK+k&L;o5)G0|jJ7ozJ^#Go`A^IU=S!en}|387<K*#uut;(4Dw|1NK$8-V3
zX+OF9);q&^0dI7d78_=t&bXeuu3Bsr*BU~2W0M6hI}htQt6MmOrum4gNI_`34aQ7?
zn+!q+6G0QCBqO)Mg_V8hCxTsJw_1DG1|x3=xDA8}6Wz%nPj|+Y7qHp7e^ycXTCBHp
z6z^`UtUhs~dcQRX`s=>Y*2NVgr@t$p@fa>`p^E=JD(={_Yk9Ce_$g-X(m}YdBUA8b
z2jFKqeVWT#vbQQvd%Qhk<JBFgdv=iJd%S9)D`PEK<hIDiC|R@~3yI?#c?5TNF^(?r
zK)Sje_V3g78PSdub9OS+u{~^syU@F1e*oqZ7$VHVx^A4GG*x>yy(ycE*NPYTviSK-
z@YC7QkkLjuZ+}FZneNFp6IgeNF7m@k^iO7c?9hlO3RpO?Z}V(HO89fIVP@|&>Hd#L
zrVNN-UWPzAHah+3#f<$AY&o@$`khBroawMS)=_DKV2iO7vr-<x`!TJZMLOb!FeS)9
z)tDdY_%3U31B+2}dlNoruMrH-ON}jFX8SFz#>+QL&OS@l{YyR1CH*{A@^>dd30B3o
z8?nRsV)}y@;n?Hkg2lx!atqkCI;!}HD`Z%gb(c;@tkDS;QAAh187)rI!B=1(W($l>
zl2nVll=f}mA<O!}ut`)zN&Sbnk8NTmwyGdaQwy8FE$`2&bROuE-&#rs#PZi%h#(E?
z??v8vK+Sn18+jrjl>VENhH~m9k63JMTeQatGu4oigRcTusr8T5qs^oTCAJe-;CWW}
z{U*Q$P|7*Hz)JUdh<}h5>3Xkr@+aiWTl8<fI212z5&Bv$Y0U;UfPYJCxDu|qI<OeH
z_@FxFF)w`I?Oe*vQvzUqC+VOSGh~uA^OYr(3>|}50Sy4TSN6M}>+|<r=?46!)zl!f
zfByJc{or>R<rcl_zZ}oFyFRz4GkzE~2L5?H4E&xIlQmv;e}yj|@bOJeX!ZMjDCOgK
z$f8QpA}j6hcf)`7ZhwU>)*D24u^8f`<#)$ZyF3flnD_tqMGs$i!Lk@IwBYuNmyoO=
zZ#53-4>$ppTOmg%sCF_GOM|okVu9&QLgfD{(s<pfz<K~Cve}$aP2L3~WETxyLW8H!
z*rA|PDhsrLoYp{_I74Rb1mFfKw}vbOsptE>-mxq&SktW7_80^4GXvG+3=^N~7v;>W
z^J3Rb1D=Vw#*AOS3<UMz;MO?NAFDi&8CV8ig!wxq%+x?IpywJGh45vTWIb-jG3n6;
z&2O<U0J$y2EV0#Rzr$IVF|iyB;Vm)IU$q&&hQc?JAZ$}2H|pf(s$qJx0smV+uG=B2
z0T4w1v<sJ#G%DM_#&blH1Fa!pYhaW(FSV`|Q_HDZ%cZ)8@`gy;`r54s3EcEOVQ;0o
zzaT=7UY|_?DlQXmm^?p=&PGg|1G~uEdgN5tE&h4WrwJZnovxC$BpusZdgvtnLyT~E
zoj$c*r^oMRfuGj)TNB9-at-y+_Id>DJ))n19K%Rhh)adm3VZnXJd%KiuA4@#Z!USs
zU<6e?&I2EsUh9J#2WK+o@xb<RxE27p?#=Ipx^!gAA^i^c|8sh%(@acwGR_dLPUhsJ
zT`2+FDg}bE<Mux+IhNM*hA_9>N|gK7t#m|U+?Zi0BI-i8sw52BjS!G3#h(+vdV%#<
zOexMK-T&c|@Vt@h_aSSYv@aQCiOvo9XLH2kcMb3j8!76S3nnK{_#r1#Px;DI_Dp~w
z6P=?WfNQJHzd-0rqH)L{=2NA!-^X#NX46`GBeJg%$-!#7EorBjmNwDodKpM?m?B8O
zx9jr1<Q7nPiccCt+qX+C$bO7okv7JS!&$g2d?$5lcu)B8UIsL;%6AcycxQTpkET#n
zpV6g%O&70}vfU<;(3#P#sfH!~GQYCD@IY^IP%Nd%EzsYrF6c_DjL$VmR%1G7JvnU<
zt%b#zxX|HRA|VxXhkT;o32%{qn^&%<d`eBeo|Y`UMHj;~mbT}Y=%d63h(5A3%DW-g
z`$K1*1%VT2X_2z&9xd4Kqv@pL>mK+Nwrs@5X6Da9CzuRb!hDebBUye~oU$Z6rw9mY
zL8ty3O%b4kMF*!N%#xHqd1Fbr@}N}C5Pn(^|Nd5?=2m8BP>JQIk{Y9{Bzz0pRIQ+f
z87}gPC|4@KRCdV1R44~66fM`J+$h4A)yZvPaTP_MD*8WF&xPDvzAf(dNh(8*2pfV0
zlcC`_#1SWE_tQ;Ihgt#oTbv(mF>O<&x9jnt4VK#t9;NVDkhDMT<?$%^8VyzgxL4S+
z=`Y{NIoDDYN{nc2rflEt32nQ--9`@;UJq%X3+-6m?pO=$+}`fYW3(S`-vNbnA$Gbr
z!@339#E!PR<#&2i!+Ldgdht6eQek}#VJCMzcJ7kG`a^dlt#|sb?A)V-4P@;MybHaD
z7=s*T30vdHI`kPb?ZK5d_eq9KBkpFgv>P=>K;w@+lWpQy0JHV#82R}l5yT@^3Rh7W
zUH&uuo#9mqd5!}b@nckQ+v`y%9hgCeshb7}Cyj1r)?#t6&pTemPXPn~ycz&Qy#g1I
z^R{1~R-i%Q063XE)nPJqe{_1GT_G3%52y8}C_erEc@cHt9OMEomi#=@Vs1{c%o@P)
zS5YduT|C7Q9!-W<H*=<hBLEZ6sO^&=q2~+Ji$y+94N@n5DJ-Kmv&1`=l`P<Wvcr?R
zD}iBGNy{IAOrx<wAnQr*iT5XF-_G37qAwEYAS#oA3%<m7?0+<-VBsQJ(UQA48Yw`;
zLzbTyN|mt^zti5vA<FiL5V8Tc$)}{bd;{ShzP*6|G{*7F{bJxgVUvE5%a{qOVYadi
zd|%1Fnq~edmRwDOA;QT}!}b;qzYhkT%APE{B6mJ0-FRID+!4R1E3_x}+31^#GTI!c
zvmpKU%9o!P+umOJJg~ldpJnoWzwjGz{4WAs$oh+<waJr*Q=)(`R($|OMNVY!qS)*u
zrLG~%cJe=jnfodo*h2n2psbo_4+5J2f~fY<jQ}na#T=4%*O#3O7lr&SnefSfVhvBE
zZvn=D-=qck`Z|TNT_-28U&e13B9O&fJqkyY`z+wLBh8tlMm&Cku8DFcL>rwu4F><<
zvBAlPu+MVyDICl#e^?LfB1TOlWpPJzTOoit3h2()jgPO2q$Im}g3&t>LB=K?=Ha|u
zCVwf#h*?>)hY;4m025i!SA!!(<|9FwcG$}k7UT?tzROl!#@0?ooHAey^=?}&Bc9D^
z(lPd7h`GJ&P%KDDC>ty(vC9`0>brOFgY4lIZ6d8g(2rMS%|4Vxwy~ZC9<$Ldm-vSt
zStVi9qk?zI8}J|x=GcsxSnSg)RJXA9p7555>Mrwz!~81`VO|Xlw`5JP6a8|&ng0AX
z{vTjt=*;*@Qgl)ovD<wja#$~_Lj75VUS{P8G+N+&74^U-SJ8~Pr&<st66=$hGo1P`
zAd&tdjiDedGo$z}DnYXP=PM@caK6$^nCqxd?uvQdXIMF5EWd^4f%^GjlLehPy8!ov
zv&CI9Ki}u}_g>wHt4_Id0nAv6Bh9nFHB_p;Yf`<-n7o@}HJUSd$Od@-|FLxL;Y|Pk
z8{cMQ%wc2Z%$(26F~=I_kkFhDIiC}nGdZ-)`79!&a!QUFQF3Z?j>xf)GN%$Ml#=@7
z=X+hhf8Kw;{&`=o=ktEu_v0o`Y>=?eD=u|UJM{#oO#jHXt?uaby!86-xNgeM-co_p
zrMZuEHX1K$vqa7e+Hw%UKIF?byvX*<HRX=4Nes2)@n1_itJPRN+lnwdUD0ZzKycHS
zz=OA|UuPYSwGe!!#<Q3M-L!J7X8mXWG4VO;tG(S*!qZM4Ip<wBj@LiT@l3E6@Z14G
zw!sy|oEF=>I?Z8X0^v1@sCc-9VPDppy7Jc0`I@Gw1^c>dxM>W(ZZf}3vNyrYc0D)p
zTF=v_5_SAR$I+gJ$Qrvzk=Z8j@^L*3QSiEl*WHc#wH7*GuB+|Jn-%Jjwf=Gb&%aY_
zoo&E}2%6t(hB)T9cD1-tYv8?G{Q645Y*bE!wV=?9VDWe8o|;L=S%h>3Y(EXLhQoeO
zF-K1Ors8Gze_byt$XR;A@P7LS4-Lkw7WNwca<W2uS7`VPyY(MDS4IrifkC|dj6m))
zqeTQhS2O9#4EI8QMF=9{(L{KJi@WVya{tfM%$lxyBhk?ZKNNBc-=%UX9sE%0G*Nyj
zc;$K5Vkzgz*b^IxXX@Op8hz}CLhmiN<{STWrwwZ*B?p=ZdJD=`T7PzQ{c9H;cH6W#
zf`uL>%yL`D=Q(E=mo5$I5c%9@h6}bhXKVf7yuSMdwo7G$w%QsTst<`7!t=6=cl@*+
zZ$0~H<eZ7KMta?kG<o?>Hgf*&fqK=IIO3(fT)(a$u2l1u+ZCz5FEz|{SEZK!axkll
zeH5=#{8&rw-DY;a!_`~%2_f{OaG>{5COahNY2QLp=PK@R*FRp~fX`(CN5X|n{!R~9
z^#ni(h&M&2lC4ZmuA4mTxt!OI-rj@^yq|SAy}tx}68{$5OcDHM7#0U7zA6b_dQuDI
z$!sD&jQ~G4We|R25bpOjyv$<~v5dX=mND8d%FVG$;!mz(e9S>*CqprT-c!5vDI=iW
z-onjfRp)AQ94+x=Kuymy?S{L)WO2wM?0B&XQuYz<%*@O8&-3n9Tj_%~%@)U!@ITAN
zpZy|2mL8uIEFtq1@qEq~Ew4WE;XDIJZq4M4m6t7)Tg>v|SC+VT^vX$tuRr<R?OS@3
z)Fb%g@9p}sjtKC~-LUQ@pf>Sufcuro;iHH!Qp0cpe-5lB1l`Prow8k?G;*m}_?xKT
z-Nn&6?c-4F##b9dg3{dv-~IQV<4Sxr@f4JZePW!j&~~@S^6uN~N_~<uB7NPXJiy85
zyJD5C;XEsWPTqV(fp6S@#(4yXMD_USD{r(Pf$H9Cmd?-I63S<NzXUOa(uF1<<l!>6
zndkZ_N)m!tp`7D7`$(T6Puu%;{sp)Dn;786sNkr`#jTpvNy+QIZI@Q^`xalCeD3)-
zTy_4lyxX=<3bp3#pDf*l=l3?R_uG|feaJpNmUfEoH<9sLUS(J{_5E-XCEN*}b3oCy
zFFKDl-Ccj!xtXU|0IR%wUk}cjl04d^hE#ITCxy=@=o`<hRdXA%xZU5QP`2yvW)s;>
zzB*Nxr^2`6yiyzHD93vxd~W~X-<MA(B6bCi#gMbRI%sAIfjt*lzFAM%?d5T~V+vAk
zylZn@&SzcV%OKZDto9gqA_$--NT}SA(~)yy6A+MtEyVi9&hS=0Y2waRe7xHnA}&NM
z`X2se@OCG=z3;1X!#;?lUF;I|tLmQ7C);z^V{WGB-+Az;_1TNj*Kb!pefxFF#EYk6
z$q<g0mACL~hWt>w=2D_3D2tmVB{-Hug=vf0IyiY^3{qja3|LlO3ZS&?qOz4mES5Q?
zfL&ROP3FLG0M5kmFEVx->hsc2kO>_~TgPQ`iOO~8?xR0q8k$pn{N;<x_<xjm^(-9u
z3fdWXs|u7U9{8sB2zqKG@sf~$M{|YS7>ySPtkhfEVw+Q$gzQ}TRM%27n8YTfuK7+8
zv&)<dN=gf~)zn2}thcffw%b2WX7XJA&+bk@HWwU)_pBnn?i8)LSk&H9hHOD#E(eKc
z{|cOaX!+pq$5q@lR7cQ~PJ0$kd6h?jNzjP~@=fKIua@`U>$)s9w`O0;-Q2gocJ*GW
zcom!SdCkY}w5&dD-}9VWGw<WRGGKc?sMTW`IB*yP2#+ttfJr0;GjJ2`ol#X2-uM_?
zowi(G0qpX|rta7U))HkKb!k8p0pU&NZmh{EDi0la3~{uoS2E>HqvJC`IXZw;4y|KA
zN`;eNZH8dPX$s@0WXvA4p2w}xpV;nOR+-8wKonz>n+I4A@t9SxX-N?NHWzTY*|fF1
z=x_ET^|*!yf+bv=^T4Nq%xnVohVniyca{YJlSX5MQh0-R$zLEm3S)KI5KICITuoQA
zosry{Rv*2(A2~m$z-lZuCYr4m4wa7D6Pr-1(hZnIIyRHRLW<oH=K7<yQYvo$6>$yg
zm`dVdYVVi6!4b8%HuL}TxXD1C^9AYiO3jj*mdww#o?f~B0&>nZ?Cj_REQ*5Fmz}%J
z2b@LOJ<%78=O=L=f^OxcL6VVONa2{`kgE4_Cqf|i_;&`LuN9D($_ET~_%+X9sMPjq
z^!lj=9GIPoJ_aY~PrqG_WtFN0<oxlBy?^_+nNvr|Zy`SKR77+cJZoZDJK$c-$L9eL
zZvHG8h~R2We;>xiE0xU|3*=|6xjSOI%oUn;vR!-2sXM6UyB8XQ()^$k+%_uJ6a3^g
zqvLi}HhbxctjRQ$%+_1?_S2&o%}=Dg`jL0EXB+qLrgr}kzKcRKO6!FU^91yUjYc{A
zS-GK#R$pN{&sznCs}~#xjEj8Q0I*|k?jOE7_pRc`0|eS6>a9n*e)LknH}ON3tE2ic
z?_)mo#jM_BIv=~1P7!*)mT!7KZtG4!f83`Br+vq%m5=&w?6!`ckN@)Q(?6ll+&kwJ
z4n|L<UnG2gZTev4Tc*{E#9yoF7m|K|T1`si-_Ztu|1-d@JYe=`e|O4K_~O4K4p;E}
z10Z6a^hPoega&w$;bRvJp>Srtde#fV01)MO4(SJj7u2{^|BrDKg9LyCv2m0`WT2&&
zInDS~%{2MgDXGdomVlv7&5RE#!y)C?DUsU)-V4)LMK_o*)Da?EWq}$G3|Py#IjDdq
zf~70bBEp^xi0GMY53n2aL?xM>APEtAH6V0i0FpWI0!qYIFMi-PCDkJWqgR*&z8M%p
zAYoTxUkwQMkcJXv+Q`aSAk=1`JYVVqlqNeE9LuD@dp*HISOXZ+0f3N&=R7zC`^ku&
zQ%^<HA$&OM+6UlRLWgJCijU-L?>G*}uLtRj2Q?}F7oiBajYt}+5bo(ANIhB#oRukI
zAmyBPecyn)kJC^6q4s3h(q)xMg@y27>*o4-Huq21awc{H@h{S|LTv*F6r|)aVTs&3
zIcQET67f7Yk&B6d9c-VTOk9@N`6w9hlArR@A`%GXpzz9nX~>8kYpOW!B0T|LW=aaW
zb$7XfM{5#eb<-Qk%$l(+;iq!>#+n*=6=$dftAa9BKDqZT_^PIUW{MNY&a2M?)W;sw
zcF!MJicsX{yp1;YmHZBuQmlW8UWOD*dGX6pYztlRMP)W~jgG@|r)M2gu!Q2qLZw&(
zmJ{RzLxM(g6|fkFqh_)~$0e;Mtjp8Zft06oH7-wssJe1TUiNTcb^;I<ZHPh&5^a`c
znrfzWQn>Z}&nWOTOjAt@sG`={Nb4f1IRbfQp}2n3%$9jMZD~eW?1>p=%60dI4;=Xu
zqIewaO_O^Q5_IWl_9S=C8@ZIHEITUC9x7f2Tywm2czBJ-y=VF<<%-8=2NO*`LrXl3
zxW)L)I4&`S>G(wHiOVygHdov78+_F}%|x{pdxhXzMEBQEeSt#Lg|L$wLMG$Vg=fVf
zQ4Ccn9D$kO$KK@(X}ZAkja9yK6hL)*w<qJdE)mI&1t$N~Xwb3}9V|aB9oTBW1`9Z|
zk`kz(0kO;)^^Xvd0&`y!9pLW|6qh85ldj-7y|9>@%J?d69G#5BfkF2qU_$gU9ZsIC
zL0%LHlS%<uw{#6VpXJlV*2PdxTOCG=d(7Z-0Lc7iW^=C;rvqU^!PObskO<5XC?fMU
z1x>gmfm45ZdP&Uv&<_taOuqv1Mw}^;O!ll<Dp>(KyWasx?pR=Z3h&AO;wTn10L4wu
zGG>&>h_D}ITm`umbrIDH>pC9RM2&~tml!ofciexExFih=7}YNsW7#I}oQq$Yj3=te
z5@{pRbyP^#4hZ57n2(mY2FRXA)pOuKpK8jBLYM-ZSlB(YjP9UkvP+V^c?*D=Nt)b+
zcuMlHerWjJnv~)ecBqp5S>kH;U9)dY2%#cnatZ`8ycZ)9DEd}Qa6@aqFQEVPcc^5?
zfl`R;XTbVoTf*H!V+!F-e<FVl*QYH=Iooi)KkukhI~M%;2Cc8n>m#r-j^9`-Z{+GS
z%zOOL`vK=;>%$f>T?@PU<LA?XD^mp78`vU6Q8m{p>;3bksv7F1<jHd(%#S^b)*67v
zJz(L8nAUbDPM#B$&B}1yVBZbJ-?3`pNw>K>4uGQA_~rbD^5B;P+jw*uX59+%z?6wM
zJW!t5X`dtu_ykk}7<EnP#|{*o_M}`q4q`B-J8{FainCuEZYWp7452>#PM@q>*$JH-
z=r(|D$SATMOP=|#<xyZt-b}@kxp8-{>LI3z3$UQ2(#`ey1;#ubN}JQ0AvvMIK5etS
zk0!zWr0y7=o%G5ZY`VDz;Z!p{#Z|}_%-~2mqcQ(Pe}CqVCQONH{Nrp<0pIqVXb0Ss
z)8jbF(_7t198NF|^~hP~8Hb)4Ch-t~^CFpznsQju-BKtLO$EKu_R(dDFuNeR$V{yS
z?G-)xGMK?d2YW)nRzX5E`Chh7Y?Ds!aw$mG<+1d|n#G7F^UqL^Mn%Jn7r^aX)qz68
zfkK{y?$G`If7>}@r~L3|LE^*IWbQ!p;-#W5*-G2|=R>f{I2{e$xstFzA=RLC@d~}_
z<6Dg8hDfIYgfF*LN;_8yXN7s;ujv6j1nB2rd*!<<f!bc+Gyq{n+QX2M5-H_fuy6Ea
z&4j_;0SKQ(yD6^`(zUZGLgSkN>37e7<Yw~@b>J?(y>ReOdYon)7Hdc~(u(9#jst06
z2GxofB%2IH_W|5aL~C#wGvFyZZrBd|kOOyCkkN;f0Wua0J4d1%$ivRH!+8Xtvkd6b
zH5$*}3$Z=+nrW49P0WdfeV7bmS6`x>7fGlLz=JPEx#lQ9#nk>F)T{w)UD*S22E5h!
zVnnIA)AAS9P>835iRj`;Xh+r+-w_uid(4or<D!atLW;N3NE{M`LL<e%yw?&)Y1YL5
zF}-5}C}`>p!58ZCpizD^l#E%!S#%=-aauI$%8EM{7*c?e+;HS5T&+Iv;&tD_d%9{8
z+C*dq?xK35QtViUp4kiP&@;N}<T|oQkjP!nsu(8!&35<!c>K4Q@$60p9cFZ(YW|<V
zsKUMh3dtUc<VMZ{*h*z*jK~OVweMb9?Iy$FpxF69gW|okWm|}DcC9M)j&pY%2cg+W
zX2M5nG-n&`PJ<xm=Glhk=C0$qaU4AoV6IqJTSKGY6QJf-*$)KBsN>YW1O>NKndF}U
z;E;k*NP&6dih2CvLsW<PK=s6w!b`c#K~W4zt|tBB9(n8s$M9a^Gdu&;we`#0{vpA8
zKu;ngWs<SraU;w4`%TNewmP&r5ruA({(g%)GUas_v!qOW%@_w^`q`t~m%e<5J55h=
z7%<A0GPdYh#j(_yFHN8nhUF;iwu>EjEb;aD$o0KsZt8g326te6W>>9Yjn-=@D`ee5
zOKHVQ8UA_;NBqb-`JaN7Xl&ZKeN*>tD-$jTQz&H1we{0FSSzp+;`bb1Y2|KU6+33(
zXvFxb`E@Sl@{f)@6IT3T1(T0Yx^}F-hm$3fZ?b7YnqT1gF|Bm(ok@Yy;hD`g5iK+j
z7D!~K-jccq%WWf~pegmGENt~G_Ix%7wb_!`%u-L1V^ChFC!!h8UX?Lby$`R&v(yo?
zrsGNZ(9BzCmM?lmQi`+FW0_mMS(|{Yv3(7g6X2E;DSju9$@88uOR6TE#9TjDp=Hwm
zV3bTG>eDhbh8XuSt@_4Ke*b`9fXp+)?W86FVu`c6XuC!&yGz6KCV(`VV&;!#F!>`p
z={_pWiNoZ|9hG93T4z@uK67U}4WF869rEh#SSGDJ&$*LbSuqczzo4PPB%wGjnK;)R
zm~wKQMd8f`7R+Pq(*hsb`Jt^{$8u+5nS8k5uMC+ziZ8x7ttJ0JvkrRN?+505rx&09
z{6;Y9ZOnqTjTk=+&V^gg0aZ2~ipfbLkbzW3O1OPpMIo=3`F#bTl7WW7Rq^@+9#K(F
zab`SGv{faORsD#Zz~)rftCngEVsPSO`z=GAEwJ55y<rRtq`#Gn6SHN}joB_|Re3n>
z>4d{9#Sbs$YcW1Me0%rkX$J@x7gnrpv}j0ot|~8TAT@edIH?{WoUazGgx`MP)=hQ>
z3Ro8jmT|jciqkE*MP!$IwP{joi!w8JC*+m{wVhS#oqriBx^CY#Xlp%BEom~o^(YF)
zV@a+ND*4!m1aS5~Pkl?}UU~l;TlBdClJUq0>uPw4Z8%S{j@U0%0F-$ndE=Z`B1@Ty
zfR!Z|nHa|?F?jObc&4dbrlQ{~SaVmyu9a!Nid<*62{Si==9NSpzO0=GsdA;u_Qm<u
zw6}`TQfH>uUsmQq3hs*X#i8BKJC()K@6w_^d}0%i>l5iPC`S)vzTJ>~U?<pw1`4g*
z@3~sAW6!^r`r%Mx^?OKpmBQT@w*<PYTt{aF##o+z1+FrBtx_ATek`p1x3vnkUTs$q
znp~@hJ{BBRA+l?cF2Wvw@(KVZ_x`2Qp(S+2->c03dwim^nyj+Cp|k&_b1-_bZ_?pX
zYn+;ET>q*OCTraOYpCe8lUpBnO4j)5*7#5J9OJ(5!MyJ?Wxa>A0oJ$DnHvR!KDIcH
zr?cHy`TZNs;Oy;8MGK^@%ZxDonE_~ukq{Zx+&AFj-onMpD3@aesc<pF#p;iWr9wOM
zN+p9yfw;OLF?c=gyeCnnFkL(Pvi8$;z5B|>_3LcgYx&h1vSLX20kIphJ~w0@p9dJp
z`fr*D1OD&<c|66xUs6*Hg&WAh^~D5~OW-fmb8#-UCWX>w6K12SH3o<2njbIWAGb!w
zO1K>HnB8Dvlp(o1_CqXf*i>b}JxNH+hFpQ4feG2XyVhb^!X_^r_c7Txdei^0m)YYN
zXZm<n_C1$nU#kt2WFUGEn<`7V6L8wt=w{=~eKv6=@pu(p5HKeBG@gra3h-@Y>Wg4H
z=bM^tpyeF<DO#z(ZwDXHnD<xzDeW&jJo+Qq-7C<c{AAEALF_};`c#cfLuuokn3vLV
zI*+298Y5yG3=6hzu}J6Xq?5=@={EwSbeQrow~JWViramYGhY1#ph&wZ4c->2NgQ{p
z`wN@__sV55!%H4`%N+D>n0Z~iLC|tcN+~y62VyL<cDC1tl#8awbu8Ok6aD970p*Y7
z8kLmN-8b%OZc|LWQcCh><(miPO24|i*=Wq$H0Sxx5Cl?h7Mw}j4{ysEbL{En+FO<v
z<|lt}DICR~dm{8aTtWNytKHC3|6MA7b0Fzjy}dkCallnGV{*6A=Bl5F0ftS_d?&lf
zpxo)Zi}G8W)@5`^wT;+u`0d}zde#oq5{Z<$`-41M!$z2#ioQLgf{?B8Tl971QxIlt
zRvuKuz;G#j^6_USIA!g=1l?tKI?t!A<SSHaHzL#-30Ku$Ac|e;)QRsj-R1W4d8#%U
zD%J!-C0l6}sql+;3K-$;s;C$=Imu>g%qj%u+|@hse^PiH3O;Vzzu)1<)p>qX&2nO)
zcV8VU`oajV>HP;lxD?uZ8~FpJY?|HaEPvZ2TaE2)r#VR+y5G4hOlHh~SA9P{pdvtq
z#x8z!$vgSW0PFri8ad!J`{~t)<e(nSjxkLv{i*O5GSgda$UvC!T$sJKYU0jy9@_qA
z|8Q8E?-w)7pw<O>;1KX(cfwtARa5xH*j{pcplI)IQ9SA9H4;%E=;E!<=TjKHDog&1
z^u6TzzA+Yl&>Ik^+kL~fo8h_+^tYb4duw}*EEN{6i|^^URK&*JYAQo+5np;d*WbE3
zSfWU7GXh}0r5Kv(hAf3VjZd#Ta~=kMZ)OJiYw23N{lW9B>}1w|*`oY&lWyfki}_Md
zKkNrJd;eU)s~#h8QM1l2Ziyk}(DRdrS(0Lh6A)4FRI$SH>&evD>=2YnpV6`L<VNq&
zM2I%ZXq3hD+-Q5(sX~9#(yN6zcSYz0W6Opd%mt#ApPz>^pqH6-<;aAW3X-7SnH$5s
zCL`-#{Ou|EV{88Jl4)Mpuc68qhRq+<<xFqlnYb%aUuHAj2@~TU{bIl!1*DT1Q;MXC
z)Li2EJM~yU;xB{rm8O3P?fQNozK?L>X&~xn$*SjPA>bJ<_S+Xj;XSBEhwizKA#_pd
z)d#P6d-?ejUMOkdt<GBxCe7yt3hfWmB<AAuT{j-%YE}O8A!|jC*prIE#?}(UGVp^b
z#);fsbE6J!$yfPCzPK~O-0s*(<INJTme^N$@w~7nKq&CsaGK?Vlt=l4J(I`4#i7Do
zT+!d5K>CUEsfKX`^zWBHgUS-P!RX&(H$Ut=&3;;uoG@gzuWzCxZkAjzHbwbcn`~wF
zaEv&b<}Pu9x<GKIj?~_ny32Gn?j~efnC0I-;S4l`mic?ja~H30-ACRI8x1l*Du3G@
zOI;f&z$HcR8BOCZuBQLl&QDjRC%$Q2W}L0yyq<pN$6vzmyK-F1-Db{v3WHq8BniN&
zT5p1Xu*sr`|GPVXk40R^zk#y<E9eod8(`&|$AK2WiD+JE`VeVDLpIbs!)vXRuMo@6
zR+BMlRj_E+C}ZQ-_JHT$;1GJpa!pMKUY03d0-x7`U)dpjj4EC@s17*bR4u9R8Y{Ia
z3>>I-JRO?$T*7D}#$-}TZb$vlmT*iVtNJgJPO5i)wPT0Ok=idaw`Kz_r8HfNY@gM|
z9~iE0dLv#nWjpFp&r$Xd0h8SKe8UY>2r@%djroC@#LUc&hK!a;AtpT&b6<Xi3zt2v
z-^_o|`r`HKw^I&GC6xq*@#|$^M9=f7^Xnv-`J|NMWZL~yB!aLc>($CmtUCHEO_COF
z?}{{M=90#zr~~XcEak;+;*2LAj!mnJCZABem`(F0^9^yFva%A(HKI^WcHYhTK^Pm2
zh05=vVeO!BMWT7RjLTp7vX2cXLI+m|2ah@Z^t!Zp@xcYh)G^NLx%;Yd@!7${)%4KQ
zk{37!g`>fNhR6N6ChL|)A>|rD7q!d;#JGLUvKhv_RU)S>-;0*e{F5rIRhF&D+K8XJ
z{7(m#I<CFz&((eQ^?h&rpMPKSMR6IN-1h_{s*M@JFoh1NL_jKpk;|?tkimP01i6WZ
zX|wMD867w@|BIXp2ar(;R=2ef)rJ(*xO_or+4>@RM;<A!Lm6QCpGTJE!@Wn=H)bpy
z-$%s+j=qO|cpg3g<_M&Mpn83kPRz=&4`D1q#j0X@lI(c0k8!i(09dIT`o{Xql}csc
zvGVg#WX~}DASKp8F=XU$q8fS|I!O(H|HSb^3(c*lweZN{S(a?&fl^khzEg~5N(LX>
zfhhy>URNsgoImwWNw)7JTJ-w{M6T}w!5VuDr8iAt!7*EZWLOAu00%n7e!g=rcBjEP
zd_v<_1^fb|w(qTfDu#imV)h$ig!0hwtB>v{u>{pu=bhve2DR-3jfp2)Bp9dpx$y`&
zv--1W`<Un&Gdl&t73)-i_M!|ow{hMe2oldqR}ui^bhR*50~lusx(?1rKQUwuAq)^n
zOQAJu0BHYOeRIchR?FjFP8AvpXE%Usi)RCR!rEj(dv}aBvt2Vy@f33kElA2IFtbvW
zlHv)J-=~B{?h|{ID=_7dC*~Q3IVh&PDy6OX-%bO&3UzgguBR-t>pWaXP2T`W%Km`L
z_ljow?w&?YX+Iq!@%15SJqFanSu|}ydvU)D`&#<1V240U|MHtb#HSnI#AHR@9|9bU
z#-rZ4-(-tk^v>6BY<M(V`5I(=T57kzguygmrS)`)OwnN5P7_vS2n>{<JfNu_I{4oM
zniCTKOYEJ0n-(fpV2x7GqW6`Nfzi`XI}{pAjr(-(lRo2CqCBWu?{56pIJfK4Q<<w-
zGKAlH)lI*C!Gok#we_DgJsSJ!d&-`$KfrN0;h?fS@$3)U^{3hyp9M`0M=o;+GDy1S
z>;FuP4@vyFbp3MT@p}H{q~9MO<R@Ji<9L(+>wBp}W<;F^7l2^&2)V?QlW(tYp8h-K
zpaNJ3ME5HqI8Y&w{P`nL<c#1@Pu00BSwKWKS3;CCXskhmWWl|1pvWu@o<&HJP^e<Q
zoH2lG#3Mu^$5=d|gS_K}H1*~xw(IrzC{1v>-d+{QP3RDsB`m{pPINgVV@N_SEYl*m
znkzMMNZLFs%dWYayES8Y&3NV<7r@}l;?Z!DAOP$O1|Cb{J6KbiL^uEjpZnhc8_~4@
zYliy??HQwbJ7M{Fy}L$OG<&p0uI6`^34W$<03w5G<g7L%x<PoBWFd=SU8EwtePN6#
zm3hn;Ng!D)nX5F6l><%sX7(J!jkGMPa6JVxm;ol73ene`wa!oi6cQ$nRBVhN7x)c*
z<;fCJid0``5&q5e4ylTOp@CA&>wF68Tt#9T5*MTzQh6!?U`E3tMHI2AkZ-662c^MG
zrh&-KHNul_5m^s3=#*${xW4l6m%s6Z82TDS)YE{)>S_<c+W=&215n|}nog0MPZ+^{
z6okI4TE!J{E&OHDJbDhY9$UM!%1lG;T!e>LODQ_b4CeGNfe@_YHC*LP%+1VQ$n7<N
zT*itRo;q77N`27nT7UT_%Y5a(x+-I{I)N2Baj?ZN{;ckeXVoFaFGxa(seZ?^K&O-m
zi{*e28kMAW(i#t2s;3u)L8rn6&z_9<7hYVDMpVy?8&3x#EEShcSl}6ty-C0j?#}??
z(+s8#Px#j%5VIY;N8wd5;$5YHn(`CTysw58fw8rC<?N+bK_zJ1!<T}K`yHsj+Ys13
z3WlA}z2Aq1R9$`Bv;JIk*q1EMd3H&<NxDSS_8`fr&gZiMZ?wR>mlk}f!{Ayr&Y_%V
zQ8;3Fn1DuiB-TZ#atr8Aw=DEhg0bQiuN57VIn1t=%!cPM^h&zivNDmEqYx`2fsV!s
z(THS>jP&7c6tlL&<D*wrm(RiI09Y*5XuEkd!yXi1g@z~wCPQ5d$joQ}=!@W)gi4=h
zyj@8XW*{+?51x`AB00fI88aY3BBEGg@iJ>@^0{8E5gsQr*%|sZ(>4JGz0~E#Zdmpo
zV<pi*VQ<tRZBN9rVd3v04-6S=aHaDugyHk<0N)1!SGDLIYcIAqP8*xSgC_=lxe8+)
z11MbiO)~9$ixMONb3ZjfQHyp6F<un0{Nb$P!khpBO?hz28u*Ie$^3y3AOBYwCJN4H
z>KaWcHf$XL9nxf1jIBeMcYr4a%cT_w<53%p8FUt!f*=sak3CE=B1<j=>^t4p755ow
zp?YyZNiEmE%v{NcxRw(UseZO_c}CC}b|uu!I{wabi~*%N2tb85uQCzM=5K#24qQ(>
z6G~69%3xH3#^aEd*5Nwh3`yzP^Vhkf20dh_yIqe3S4APea%qqjC&Mp{BqHZuUS#S0
zTRo}!Br}vJg$6%*nE7YAx|!8UsGfiD+fll7(KX{Uq0(E*Gb`tAb#VklrmtbG_@%{1
zaIyv5tb_o1^jEZ1u0Xs);9w^%*$yEQn67A7@P(aH$$TsX7}4kt3z8PI-&X3L$^U?h
z5{Po0s)<C@+Q8T{&}XnTXZbNXXh^>&q*Gj@?dcI%JJcZWCMB|7EsB5{dpE!lr8MGS
zvGPp*V|5E3z|v3WNm+owj@`2xzLA=I<WZ2sB5My^uaXRr>6g0XKcw<oH-C5M-YJy%
z!+@0`fwzd%!D{xc_tS;fMh|)T_gGy1q$xc*yA-ets2c#-$vz#&S`7{?{aOFV^5i^+
z81^$CY`O32kMQowGxiEG1CQ@m7rDt9dGighci&^!Dhb-)k+|z|8gnax1YvPa7d81F
z8<3Intee2Gx#g819RUK%2a*J>eV4xX`1n<}zWDFk1w-*_YMn?R(_C^PfdS7HgAX>`
zXMIf3PsT&Vjlk4jH*K&G2Mh-zQ^NjFAvrPeKN^4rY+%g{e+Qm}U;=(cVIqX{Eyu7C
z+u6`-Y<vjz4FYo+-pL3K`XQb8eIG`{u(I0%RBHmVFrmlNDMn@~VBb?*%WUY{FXDg(
z677YQSQ9d@Vmsutj+%>P%ZSIWaY{>aAf3dTfY<D8OvBqyKHEZ*OsW2l;+(>iFCX(t
z$w*(s@I55)i5Gz?M1z!{K{vuKsDJ05cZ><M)<^?NnH(njz<CqvU^lnHm4g|^XIhy|
zCbJjrLXkC;7$)!Oaj6SE?<KSd6urK#!W}Nkr+Rhyr>GG{d;_TR(OQ8S#I!pj{0$-U
z6fb_R8mL{Jr8k>(#{I;3XIQmMc#G!X#ZZCu!iv*kj@4<Z=NRuCqC+@E3vQ{&)FaXg
zrQ_El_BW;FJmUq%QnNh)`(hsJXY?{##S%lQm1CwQh@UgyH0qF$=SGhHu9f*KBmZ|P
zhxP62v}#2oYUamwzim#1okNAk+-e8mS<!Ek9BG&VP(iC!*cqbk)w)6j5ySih!@PkJ
z1E_EsshEbTEZ3@tFR2JYRp~OSEJINB!E4WK3eFWJMjSF<ERwenSLZZTZ^9(w@Qn10
z!m>h;rW3eV3arefRw;G!HXXDi#bJ`E8pu?9VpeQ_wb+MZ{2tCqs)_ByX=MWJvx!>A
zm~)qzY(ckllW%DUl{s~b>NM5pdVzKSVQuBGKA8Y~m61+l1E{f9w~wLJQMNQ$yVO~m
z<M$KU$?r+aX(Yf1K#8J0IHy=^Tv~j!><%+LP4<){<GJj<_=O)&u7go3x;%QOM38=F
zSwlm4le1@1htUznplSfi4mKb~14v*!@IZOb%QF*B`Qy)bX|ffA7b}En%Z4*6UN%%r
zT+|<ZS@D|r-i++Md+QZ*SMR;eytgC^Uud}Z{`0+6=KD^c%S~|{K6WPc&p85d`a90>
zj~7k0e+zuoHh+OIeL7=2697MqGr5YqnPF%0{j<Ok-+hLlvMWOXAq<2t%ADC@7RUq7
zQ`d(t-_IH{^BAn;J`qUL5U@!V;K_>S)L{v@2p3*f<*E#RjuYVDQLO@3QvJ-qEHy_w
z#%D}_p?z^#v~zP<$RXg;t4)hJHA`kMLXGNa?a_42ugYp>S`{oM+TaFCEC^2XvwHg-
zbh`o0A7r&%Yn5ON;6~MWWJMMqgRZ3j9(|72)e-scqLH!OU3M1^#mc(wf?8->?Q>e4
zC*UCj;aYw+)N2VOrTW~nw&4Ul@C>RaYu+z0b=*3za<&zxbCrb6=n3QP|5*dPqwM*s
zlB_E2UAOFW=t!t1#^-7b`*exne*FpZTqmKyA(fkr`Y>rtD{!GcsjcxTMz$o&KF6r3
zbEsY;ExJL6@zxHw$fdyv-5kH*sF2BhNu&9}PO-Ips_Dba)BHU58XG1HngecVm1aG<
z2yCd4YqFwWt;>Q0F9QeP!lERbVmnWpa8yU*Dn252P%?L3dR8lgKhCt06dhpo_|T0S
zCC0Sh+O*)pxdEbR09;BiM6%-3VQ^J3f{SvcZ>uiP(4{Wbg~5~MtRC|RP8lLVVW5DT
zW`Q1bnZYQnB?Aqk0wH6JXeg80Cl@gR2XHJU2^fn;WMAPEee%i}4DN9izw2=#)&Yp8
zv~D3;<uSzY4#s!H?M}~ES&#)g7tU~({T;W90%|Nh7Eg*@Xoej~c~R6K=F68lc;m!4
zvLB5c$(5!QFz+Ij1z=L71d(?(l%H2tqP5cI+`I*#GidiAxZ-kcmQ9m;=<>s_QLVps
zy2`nY$B%$FBS5R2fER?*Mw<O|N5XUY0;ijFFZ5GnKqo}RQ~VRb=f9`kun{kYeQ*0>
zAr=-b9ZfIy@wS+43vf8^T^L(wcA*gklvvVzQhh_$A*u-b%m^bYjrBE@qIgu-Q!jO%
zYkG42mLkg=??1D>1rIe!c6$N{V!iL4KhUicF_Ea*m0pYL?x*+N&u;WU`TtPq(?)r9
z>WbS%1Nh%`KZbXIiqDcji61w;P|~cU$opi8_OD)pX{LF5nDyvARjj<$FZvUWxyIS0
zi{>wgyCHyz!GUekAfRBs`2xQy(EvBb7v7AVzW)9aME{^SUHS5Z2HeIFYCD>uwK|Gy
zW9;{+9?X4%IyZAlEcDmadvzV&bXA#PI=6MzgjH*$C-4Waw$;Jl4s9@31FVb?pgKky
z(b=rZdZTBUnoVq8XG0YBgFaw~uG#br6%NJVM(zPpquSUizz+7VqxqUc*SCi94Mz1W
zf~`l1nFWEy7NPIxmWIt)I6dVHvpE^Bu38Fe#IB5zj^aJW`X1GdX1mg&<cGt&Mx3d=
zWva!xIZ`h^c2CWbqil&c3Bf~D(D)mh$)CY0dV|lJ@y^cyrzc5b6gjy{tmoE*G2qn@
zr%975>c2OkmOKP2bZm|%i2)0`b~Z|=y~5#N8R8?13ap#}3H@S|T!;|{N^dhjhxU-D
z=M@ngd`jChQFc5g*#DWJ{Z0KI{3?t1D!}Wti*5L2%nLzl@LUB{L|Q2Y!+2bGJ=J)6
za*y$K!lY5bBrM@2)DdhH_u3gV#bq-Ya7Tk51A;qf2&bzx1m;Tc@az)9<)l$=JK;}r
zCY1Fp$}<7s)2PM;OqE5xn3{r<W7A94wp!_E%eTWwzZ(u(%reCG(&{-Q&k#cjC_66R
zLv`$X;mq^1K)ghcF^t#JvF0g$!DE#3Tg-wCx<`}kmcE79CANzt7QGwi6kZ4OoVqGq
z4w$x4jk1s7(Nk;@8;FXJd7Jbs*LSqfzols9#!!$WSRBK2L!TV-SLovVIVYfgH#H_!
z|8zF2UX5TmmGVnvThuh;Q7l3gn9DTx(9&Y+Du`<h%1T{s5fbq1TyB|Mc0|MnJW6Ai
zxz+b9{%dsx(RMx=u1nVgw<*4>5e+#136#K)urJXffEe*L1CKwlG!_p^hg{SDy`p<J
zekdSe&J8Jve)lAIZdK?5EB4*a4a|z}3SH=fBP|gl|CTm7sZ6}lIC?{qoES#@;DkAo
zh7*1!CO)UU>*L|vb6ZLKGU?$oFIxGyGk1oW>Am2eT$jXXfPLbxFE<F#*mrLe(bmHf
z0!p)Ds>UJ9l2fKrnNRkp(1G45W4{T@FLQEj@0SHh+kBG@$3m+zAjPRw3$%Iqf2Xtp
zAto+b+;2%M!HhSqqHH3VHQxe4pl6@jKfbuh4fRW|_Ev$v7&Zb(TMPy4x`M0clFms$
z*&}AUJ_kd=MjshVVYYZkRoliddMc8QL%c2A2fx|u#c4T3%OZd$x7#7xto)(59v=b~
zw8WIRyEoCvQeU^JzBn#QDI@(6y_DZUSVp{>*Jcd)uL`AN1-^95nL3{Gv?g~z-^ObC
z(h#B5bp?@C!6R^p@~@X<d<KfDylu;l(g(g7u}PDD&qUI(-w63!$?9JA7D?ZA8hFeb
z85^6t$KKj69SY4$q<+3;kZK*4I-iGR!0a>;K11EX+>3|@NndshhF2y|ceSV9xULmN
zz0Yu~6f?8VRo4bgg{GE=r6ccut|_m{XWz$0rVM!k*)TwAJ7%0FIE8>dJ7#)*4Ct(s
zfvw7<m}K!Dn*F#1{Hem#v?z|y-e}(z-e03#RuH<s=)-v*%Jo{NYE4ui7~Ff@WLzck
zckL>$kj6O6G|Vd*9U#upnq8$Ndd!Rl8KQMocPX(F`#&V~TQyi#59?39YjGa@0Ufbk
z$U>11j4KZWuODTTkKT@fVhVG;`lDD6GiSD?(AN%Ju4i3VX%PmA1-JkFAbQy0bf_Tm
zGdnBWK;(O~*7tld3942M*T&B^n;+V(GppPCb{CjUF(6c-P*C`3UgU+`l+bTcsz1}K
za}y7x^)h7x`S)u?Zfra!N%4t8_SFL(c!)g-YT}UBE-NUq=~^nx<8WTQc;VK|c7;jK
z4Cj6EP~C!k%v$3&xn>XWm40Qxi{Q8G`Pp-db08%N(n(9}E%||!KKOsDs&(C~@dC*z
z4IF>0i*A9wpNxw9vB;&cyi^jiQnbSSyZ%sJi+K{{EN|thwp;!0+rYmGJ7p||7l~8e
zcuCt~Wn`L9{|+p6zvNHbP<^am@r~y%CNG!cTjpP}IOBVxJ2HQ*=*m3xbidjh$syPf
zYzzGAlERnaoXn{)zZwD{1e6oVdhx2KsLFRgn+R2|EvSK?@9E>bO+YwxJ+%rSZXaFp
z^vzGyImehg&))vx(Q=9{?OHtM)pm|6d%pDhxl@{dd3X6p6H)YfltJ;cD?jP>4pzrQ
z;}gll4z;OQt6X^!qT<iJ>wyDbVBXRHKtRfgeJ8ix-MJ<#5%y%AbP?+B`8fI;zbeA<
z@>-WO1mm8PnwQya$niiH3%3#<N*;vU{S8+YA8|!E%I-_UU99fu#{K;9n=9~atj$De
zxY(6zTr(}^i>(4$FeCR?R2Dwx;#iulq*_YsAa{5gTwj)G#G^u7I<GA~jrxQ7+FEPg
zFkF1>ox%tcu%VdAPBgiBT-VuWmf;PdR~a9E{qlz=%=hJKk*wp>1ilFWN$pRweNW3?
zCUc0J6Q|L(4r%a8KfY~(VG6?=oV^IQ<+A$DQcv8kpZ_aoTPxL_6G{?{3*VY3I~Vg$
z@Wzjg;bQY=NkZ|_U*0{B`Snj<_2?n}<(+dkg%fWa?JiwId9)-Z{Qmy=?X#OA7fyaf
zegF0ARD=qE2o_N9|GfLLh1uaG6a+^pjFa!))&``o7!Y5<Aha=bL6br+zMp-dI(2XY
zxAJ+&#ay9a80E(LS}jN&O&UQMQn1fzTs}|tvb&Fk$uPNZ8|Jf_0Spkz{<XI*vcj~n
zU_?FOVSx}0?sc!Jx`MNi`8?b!nMu@(_)@i@*6*e2sjWBFOd`gMZsIl@+<ph?&;+^U
z!dq&{00}QEGLgR1#>L8FrUk^A37@H7?$BYi2_DINw{6<lYrVicfeNHl9&<opJ;coH
zkdI&GJ7T^P=j4^gg9niES%+*y$6X-y9bBO%eX6tfhO~+@;d&3rkUJv^Kxbe3v4s-O
zz!rOOt`vd$4Ucc1A4$x8AIlR^mHTu`_v%aAlB<`Gv8gEEp5ZHj*DXKJcpmHkQc(_a
zo=Y(SnK7tv`Tuz6#JKKAFn51FJ(Z*M8fkPK|K7X^!Qn(27aKPqy`z=(4SRT;n<5B;
zU1X|wIBz_JY}iXZK8E<f3`A3|s*Ol)<(_Kp7on1Xy1%nQPF+s`$hz)_A0MoTq?+6G
z9aEu+elu~!d64_%JB_KLi*)C<rH=q6i684kCiFW-pmb0FoolV}=ZPU^Ph~yb%!P?q
z?yljzC0UL|lNKW5*XX;2_ggar1f<3tmVhceC+lkinV_oFy#DEwF`xtB>K%{YUh$IQ
zJn+acn(+&<FRey@cnjHG;q@%8N*n=)qETU9AFsGS*y4D2<mC8?a(ehznc4N_erlKB
z!1hn~DR#ZPG?*7LChStx))^xq@&vYBw(S<|zDoPBvp@WZ{~89(15RbA$9R8aNLdhr
z<WgLT`8-Yq=y>a#j8j<Ef{2g*@~Po_Mt34np|=teP>y{BUnE%pVVrzeuqXuxy43Y5
zK^ZXkv=obF2ofa)%Q*b^_09{G{cp%zI8BrP96-c?BFz-&rq#R!;mOJ1Desx(C8kO;
zD(ph!@%-X@6hkQ|LbBTT)f25_h|stg7&)JsPw>wc_+Xg!b^!9lKi$Y|^D&&g-UGC;
zbzZj@kjk(x3Qw(<V7oz+eQUVRQ?5mnKO_TBj5f5?4@jtbFVIcFWx!A%SoOnaE&*#2
z#0A)IC`JJJC9Db?9}g;ShbENG`%=f5o^oek;j&t^dUz$UP-PAL_X?HSfxw06LPNN)
z0Px{fDq`p(fKA5W6vm$lvM!vx?e0WmC}3m+m3Z3S+LYwt1wfxV!%d%JsSI^TB&NvA
zaD@U%A*cOk;{7u)OFe&8TZ)CofK5q<pfFcxnU-651b`oq!hrGwqAJ?M&;+1V{CbUv
z0U0z5dj$2gCy%eKXAVe6?YQ$@0#DN*xrNfu?W?bCr&KD;|86mu$C(>dva`0-1C*U8
zjIO=JN?FXd0?1rT{>>ChMseGq4=|!ENWTx0!J@CAAKUeN7q|Et8a;bX&QPi*Ms|Qq
z%J8OTjkoJM0t1v{;y5j9=>SeU8qmdyv7!X~NUv|M<IL2_Z+yfcaZLgh(LIOy@q@L|
z_o4jE>2G|^zlfr^g{Exi2*||ctWat{8$FNicDTL4fs->VRQH-qm@i<iChWnfXbDdQ
z-qoA80VW=RSXv{8rxpYhmN!sbFj0W@1OtB$%F-~)6N*PlvsBP0;-Fr$(BI9AK;E<-
zZY_s2#bY8Q1u{OJ0(ky1*O?bP4xadmx#*4c6=II#oquE9UZX3-Dt>@<x5(~cF`yI9
zzTm&nJg$+|;YF}4dLhq4cQX_}zM#2aaUwTHC)o1BpXE8r7#yeimngNL?&~9WqS~_-
z0p-la{#FAF$9`nJZxRMYiJ9FT1QPsBP&RZUdB9?^b?u}l^YknCu&gkg20wmtdbtjV
zR6>xDWtC)IZXl~fJ&S}ZF^~84`g0F-rHL<Z2?s9gS?L^?8Plze<{2_o$TfiLzN#HT
z)nK%JyY05f=4C6=YrexsK3P0I9~6ugKLihhQ{MPj&8Sy-Kve}E>k*N@xkQevaNjGM
z*;?|lwz5>ZoEcTlwL*ImEg8{xX3Nv;`90}~eIj6R0K5dt2A61lVYVRUF0dD$Eh}xs
zG{UFIdK$<noJQPT!QpJXd9J(x|Klt(v--6+$AG3YKNWo)MweF*dOX~spSXd~cgc;?
z?93{AAN(gWoV!0qQ_Q=m6c|f~piu@a4%4zC*C1mI7CYRHdc>=#r+yvJk0T!UO&dDz
zEhXP)&+cq%2?>pluh+ZwtckomS&^VBC`Xl3OlkW1k+ZN$*Z-5i!=Gn0rr71A^T*sH
zg)qK>NFK<G2I_xq(4!N>jlcHgN1CzH`h~RGH^Q`HjRGakK<|c@kuDxXcNkl6&%2hn
z6uzK)@`ZB;R^BBsW_EylNd5DyC&zJGmR4VG%O?QjV}8yz^a}?XRlh92%QAF*h|+d?
zXZjBhU~#G>F}oH)%vqy&hu_zOdg%y@{TUWIJSL^QG;ienxtg+*pE<*KSHhV7z=o`%
zpVa94wBAn5H%F&+{sDU_L9Vbc=Bef{ufLwM)Z#UybVv0689z<p8QQp~buhP9jA|+9
zRoaQS9gkVrP<w5>>p_l@`rEwuPTt^c-+8<G7<a!1Uv#5r*m#$mzP*5(*kx_ncUMWy
zUs#^72YnPW`+o=o-oyAu+2i;R5&!MJ_?58m(&OJ(*Z=%#J-9u0^vDVZp(2WSUB!<I
ze$NKq!%Sz1jMN-EsLem~`@yKvx*z{SSJD8dg>0-V-!dd}m^ZHv)UmQA;J953T#1Gc
zeQDtCm#8j|@9dBNAt^W0M&3G*02hM(NhtNIUw(!r6_aTU=iooRIe7I5fZ%bM1##pb
zeT0>blMoDcBsG`P!Iw>cGEx~Gf&cmepqM-^JyFL<%FolUo3zpbhSCOLJLL?6ezmsX
z#f^ghvaT1r%4eN`>rA&Eo3)k-N-x#>0_o#ZBNT2MJjxKh5667v$AY2^SZ`ZQdhSAB
zR5tyb1bn-^ulbSfn*?N&lBvFS2q&f{Nl1);nRcxMD9lLKoxOs4!GEtY>=>|iY%@HU
z2WO+N`i~(zyajY-QYqO#&a;rGQm%Sl2KtYM$W;T*AJlYYa9<BYou5L5Baou7U^BY1
z7T_Dj^2PZ&VT*&B+s({&*es_RQ&kh*m>Cqx8m>LY93RSApmOo{3=GGN(hlQDuN0#m
z%$FQkl!y78V0e_QQJc4f87EoKB;`yH+n-O|r<W@ss+E!om5`AtXcrMEg@xn=0Tj#_
z*y-Dg0Y7&3ftX4b%Eh<r`(M_re4XfEb2`}2^9f<CMYR%S1`x8Lo>c$<;o%V87Uu1|
z8g(KE%gh}63>sl0$~P;z)sVOO89Zgh;8bbklEI>RE0Em^*(EOvt6D$w@|6O}RoNf}
zD<M_@5Q+$L!U6(BgN3p8)#>H?G@w+w*w!P61DZjYdf%y1IDu0pbym!?{kFfV825U4
zzp8@9b@0>_8D!nzUJ3N|lHF>SYgLthVBu?ymV4NKEXB@yjU?B?Dc^aBN*HMsMpNh*
z&VMRsrrBT9Hj2(f#fWJ(DXPe6riGGUd#2bNMs^Mrc_{ikjH@>cikkyr)ZB*rTyVtl
z+A!{vTncem^}3o`VwT$OOSOe<g}HD=H&v}ima>-0B4_neG2SA(vmxv<8FG(=6h1@j
zuxBkw&_e3yi3*$GF1y;S*nKoh9TgQKT5y8Klu-fTGh?t9#|fQ7M?#;AqDzA6wHXkV
zfD#$o>|$-gQgx8M16Fn=lq)<cB?XjJv^?YoEX}YEU4ze}FHQrt7O8AIbTIz__5jPV
zGs*z~>XyL}g+tgcUr{9?+`^IJm=0?fAVLYlDLAKWI$&aO>82GCsS^V2D1u>su&vW!
z>R6aN9sKb-?)1pkcy-M*ISl*q$?yC4OGaMEI%y;PngNlk7#jp6N1C<K%$}>^iq&}n
zk*q5}VDt{1Pq(cetl6ZIBzi%@-XQ)dAS=#Lc$)<Dr_@31FS`wh<Ev3xhCKLhk_71-
zsV1HdFKG)y>lYdL>s6BI0S27~Tm52#Ye6U(Zs`J&oxoA3**Z*tn-fK~X8ROsb;Nj~
z*kMA{I))^Lrb*pcv%ik9A5O6k<F@gua@?JF%8%mxs?OKUCPNjI8^I`+ayy%9I5%=T
zpX6hCsV+_2R~{`~d2w{%HaB1Gku<N7^07B%k?cw<c6+zrw%Vybbi^ApC=*(vZgn;;
zal4=XD)#uZ;L&R2eroT@RN@JH<5?u?$>HF|Q{pA?)069sm$-wsbcuHpm$y91N6o?K
zoMw?yiO&U;uaSfApoR&2Q-*)&uKEz4%#b12*sssiIGpS!Uwh@AsBvW#pgKr9G#cft
zDQy_;o9qw>{Ah!vvwR|&#SOfF)#g<KG_T#HH*doDAM@QWxx_-dM3t~jHwa*bSXcO3
zXW64Zcs7+bSd{ug?)(VORf%7&g*XDOBBN1&)DR(K(;Ac2_VmkzQy<@y<m*Y=r8^Lq
zel3}oFgA0rZhn?7iI#|#lvY*d5_C*SSbv=Yao&?AWRpBn{J`78z_zNAWB9`zgDa;^
zQO>gt{r86*GCtXRLpnMhn${Rb)ztb|ePsHMYM7FAbGXjE>=#vr1>uUWGvA5Les*37
z5_YF!Dv}(Q3JO0c2{#A=8T$Lit_OZVaF%`)yt>AAls8TI<>!0dZ(G66%f#R5wesuW
zSQsrDMha?0pO6_{0;&T0Gaz!WW4}AzY?&eyz0DP53O%L~UP*;1MSbgN0%$Q2(man?
zJVSTth#JUR&aRMNX)bI)Feu=ff?-Ihe2Bd%Pl+j^Je~AF`bIDH(&(ETPh-v)5)ca}
zu@6P4!cP~yO+z~sqF)fx{IVZ(j7~+)$0!^}P_ePK#+8q;$z`7DFay@|=$oexc(a}}
z#NBlWQ$9>aUrgB^g_@gj{E*2-Rk6ELGyadGvv6zje;eo$7Q~3r(%oHxZgh8-LjeI%
zX(@F~x;vyscY}a{Zgi=XNDF)^MHEB{i<jT~FFe=hiTiraeU3vbr%T-1q>VPjK3+pu
zlVvQd&yc{QhYuT*TJ($?2ub345Dyr8=Eak64%Ga<AN6k`6`-Hiw~<cs>6#JkEtdG`
zp3QcqZ_tHD=&v<QZJxpYi!pust${-6eELpPuqWHqDN>)FZo=9)-)3MR-YZ|szO|%O
zrR?|7v#_SN5J#x-5D6@&$z9hk+pR7Bs{fVWkLS$GpGh=1eLUw)Z9YeoM$C{(*FFBU
z3xm&yvM2dvgo`pa$t)caL8*s;;#{;t;$y6LT|_=Zi$VR>I{horhIQ`-Cvt-xpmF|l
zI!`3{(uv#JK$N-IyV9++Qr4dNkNsW0Y2IanhAl+Ru6IqtMN``65|8~&7~2B|RE`u|
zd8TGgw(W%7Wam*+>(sp$HIpx5RA~K?^k34}<PEQC*%J>!(A-^&$0jeCdR{an7F_tW
zxq<vm0VyA?R4*~)x&|_fxa|$`*LkD?JHVi~?x6CQVx%j?W#-bCOqw`IoHitWNbJu^
zoQOIg{dn-oY4}ys8=$67Azl4Ynb-#=qgsaDf{d|t5?lR}t%V$0^GTSZ;;*b&DxV2z
z*oo<HpE1ODA9SC%^O9t8e8XxA6?=|kimhvvA@#d9V|W1DR*h5@tqB<PMqnrh?sf>h
z^gO)qk6s)*Gzo6}umE4IqMfoJh4Yk7Z~4vgq6kb9{T$S@y!T<=*NgMC=cJA2%tX9C
zzFi~%mO$a*#Z)W%_V4YCo5HWp;A(I`mR~lnsQ=1M@M7fyvVZ<;tnW+naUS;Qu@<Av
z2G;7=zk#h)-lO~ZED)t{$cmIctkg>$n$?k<^nzKY2Vd6%A1E4z({o?%B$%{+loVGZ
z?r#7;IgQ3YOgNW)+d+!?FJx0jKrKd>Ccyu2dt~DiQ`(Lb&F<Fol$4g;9FNde$6?z)
z66dO*!)C$94?*yUfV6K%Ia0?X%_x?4$NasAw<GdCy)FBe!nm`7#D6=HWdE@5+kQD`
zLxt%bp*Fq9Yi5UXz=PyJ=orN}r!G^3>yT9{QWlw$n&B=|3-T(<q$Ogr+SwPMvsY4o
zlubu@3iV>X!Nv=zUt|oQ6~247WnqS~xJjD+b%J6(`g?;J^mIjE*thT-)8_0V>g1jL
zxm4^{Z|r9yPu^+$1nENO^sov`z4dS&x+2Fq4ulXHsh@<nSp`kW0e1KzuLC1AFz^1G
zr+myqp>i~J&rJ7&+WUvn9~Pv%r5`^@_vTP`rb>~9AAV{2y}DF#O@vAbX_k4j_cv+{
zMbkNh-1SZ8qQeTMXTE12``O}AsZz=M`I`BRrIp{Wj0!eeM%&xRNRM=SQH_<$>gIXy
zpLt5mHKD8BkeSs%jw#_;eQ!FpW&m^0abU>I={fM3WCS1Mt2ymf_~!-WufNM}g{+^x
zFqR$zBHGvB#|Zu#jL1?Z*A7`3KTbL3WydGOQqhdUyQOA0sBg@4;}<~&dO=*K(A^P<
zetOAqyH`5w>EpB1@>{zPTcFCbd|3L#uir(!&-Ns(^R58p3+9ra(C=S&yB*~zslF!J
zFZ-E`#2)1)#YL35MG+Lj$!qLv7|Wof5TF!pNnOrHMYTa=gDoan9Y#hg2r<Z%_{(H_
zNV7{Y|NAE`HmCUCx-yVn1@5n+86clef*730tB)U8%iTeJRJfdPv!@lg)Z_|sF8*Qt
z$Ak_a|CM0`{O+tz4%570AhT)6PS%RPA;}zQbTjbhv9Ee522r!IVV|YRZguwF)3_*0
zYq0y2l}h`JVf|*E_T7&(W>1Ww<xX=+hYazCML&!xZ=!`eF7qff-L6vd`x@$hbi^2I
z29aB=Wd`?4je4{6T8a9pfi)>lwQ@W3OBkuX&spLD#~|v2#91+Y4aNd+%)x(!7Dd$`
zDpb2Y>YXH%#W^!4cjZ(YUD{W^Dyd19%pIIwztQ~h<oCauxNItF*HWHj2Jmye#2JnE
zKuxUOwjH@*MSnDlGO+}ddFAdOh`ctyXD4jU@8RH;N5HN{CL|mzU3zD4KmW?{tzKl2
z;ES$VAT%?Gvm9A98pu5V?#~j$9sJ@{@ln^AQb_l?a%fNJ#>S>A`+pZ%<irsxctY>r
z$8_`K3QsOMH4#j;f9S+LkGKb-5X`bZ`_qo9LD7o}pM|!DVboU;pw*8fz9LF7yCbld
zKmHlBuv)Rtr|$w&d9rtB8$Jn@X=(Y$Msc5S493xO%Wt%K{QyvwbJ2}ie*PgcUt>{i
z(fFC7TC3in%m486PqD?8+oKtWvDVH@9o`?>?jM{=takgi7C9@ONv`*Woqaz%IFssm
z83SOD^f{N_8cJZcM60FCY>#CKSvL7x$g+(_Epq@iSs{iu87eM&IM%99_NFP!!)>UW
zH0OL6Fljf&+2nUuUp_jqsk0Y)M#GP>6GrUfVRU*g&s(MWs{(i<(!@r~(tdsS7YXw|
zI2!2I|FRICDfRGQ1o<PluzsH;JdBa09eKxtz0DF&DZ{)?DPPi~arxf$Bm2tz|E`5d
zz~eZdQLCPFbH9f3tN~yRfg^-~4$P)2D}`PO2RqZ4vm$JEn<q-7uA4W}?T;cE`OEw}
z{+>2*aR?~Sx#s{p3h^ZYyBPs)_rW*|JlLA?2mq<#w&zFZag+E2DV3!s<y2Ma_{EH=
z;QTC5c{4}z5uPJVgb6W3Ki4hm(@?s82BAvW!NTtj-KEMxo>1xykXK=`gEV(_<O3#|
zN?{s|3Q5>FZ(l$xL3F$#Gh@qBh%H$IAyjDX5-JoYk)SGCOZ_irR<JDUh=7!;*jP@c
zY*_wWZ)wz`K`$AH*Qd}w|1|(Nams?=!9GVI5NF3S2+z=xriHww=IDdwg=J~bi|cJb
z5W*aIEqcxk<@$Q@MpOgCwTkJXmQpr2p;?Fu@{Lg{E?gMi@M@X>B{Df`XdB~EzAQgf
zT_4h2Srx?bu<c%-*Z+NXJYa0iF!W>S+I@MCuKyq6OAd4FF5ty)6SEqY1xd5E7xBam
zu@P<0DbZ1|nz!6zs=h+4ska(phaqhyebr2tat8_VWMgh8t*(#1!X7e&<ftmVx7Mw4
zdBw#Ts?mrnYyst%_fB^5x;$HpqR>?SpIkW0_sTl?<OooORNioE9nDGmI4%)2Ktf>#
z964BdyVC|BFbr`3DPEd30Kbs=8BFI!i&M<;8todOFkVbnLJPN~oi~cZG6U%hACd{Y
zh!COj#o+<iZ@?9VaD@E1Ua#~~<a})i-axw%mPC5=H)v5Y<?){-?F#CF<@=UTs#XJI
zJydo>U-n~w3?0)0hd7p$?yaPDc>*j!5pX2>PWM|dT`FM%bhuyt?#YeFN2j38Y`KyM
zmeo<kb80{k*lg`T-ZT8T^^~(s_$4=lZ;bgTBfv#-Iy!)YH!5!U0fN<MfFhZwnuQ_3
zksDkr78za4X`VOGakr3lQ3C^L)2K7oW#j`ph*89mnH-}=9mO=Bxk5kMQjh%$Kqwlt
z`xSR4N(w03l@e{iK#T!S@KGG8@>+egR7mO70&=<Fj}{HNFGPk3mVwFSX`nqL59PR?
z7V7OZSVCB5d7wHvk@Pi6wUB_4<<_W4mwxh*6~O1I8;uz-i{Y^Pk9E*jL*r#D%rR<t
z@}C`Jt$s^p@gIKs`8!ee!#a?CZvtW<me<mRCmSA4E-T(3@v_XoM{kb<x6GqxLvF{;
zhz@F3VF>tsabs;<CBvnYJ%ql2Wd1WxL!tmru#~if=J=G&5`&{@SQwH&5#0Yg*N-uL
zMW6e!VHMe}4|OZE$S%Eomo6)`!48z-aKwR^HI)V_x2DAm@GmktrPYOcldr>sBaeo-
zr=3q{^<Jw9Dje62ilRCY+e5BO{qTuo|BiASIsupzeQVL<FR5S*o&M7x&3o~YnKKbP
zqQpf;76oYhm5P&+q=Fyy;;DQ!%aio7g|H~USxHG%5-;gc8c|#E)Z0H7^meIO*2&7%
zMRm_26A!BXWd)}ex3LWfnTqk=)N$?K)XY|#3EHx%22bN*7Sb7kDQK$o&?Q6y#J1;#
zn6-S63-zO4mom*Mk(CZ+qNal+{Z!c(ttkp{y&@dw-c>1000;1pD-dL~S8RW-UWIgE
zvlC@`Uw1tMyGPXna;kjc3;0QsQ&k)NHY^8t>`HztxItKE`3bf8v&(NrsjWd{3YI!q
zu&uvBG2X^{TB0PG(}UhGFkyis*74Gw2TN~a40=nn-8|9Pmw7{&+iP*y^I!IhA70^@
z5U3&wL5vd9>ZEV*V=R1^Vdkuj`_)PG^G7y`4nkQUUPL3CwOd(rjC2AMQXfl4@inB4
zAsTpjQPm-dL9WsjZ+fuCt~EyNBMUUTU^d^cs%SMloxIhH_XEDz^dJxoy0iCyp2__t
zapU3=Wt)Pv;_Rf5?xmGyp;CSF`D;bE!{@5>rno3S`;TyUp+IFSuHu21P8`S^;o4|t
zBa<i*sw>p7;bPrHcx1F$xI%5j=Keq<-ZW`PBzJSlO1W*3MSPjtu>0MUe{x#>7IARY
zdw>LyV_)&-{B41-*y6!&vc57UT$*x22AqC$F>zb!vv+|TnI7pMz-49Ut$x<h-phG%
z<Gjk0!RtNDpe^OqZ5vmpcuF~o!(q+-NFWKF@pG2#K0oCo9i~Z{XNN|>OGs&H(Rc%c
z3;68r8uV)}`>|ksZp;@wc6tVtWMf2&#OH7?2jqYW3jKmwgOlR)J#oFA36W-wnd`k=
zKYcLx(BA-rl*fT=@oR90G@z9o5z09}1D>q{zC`nFfbSNNXDGxku7tJn|6C|UF$8Ya
z4IqnNb&(d;@H{UODz1FhctnAunNFc%Eda0}5yaduFzkX-Ci8uT@bmZ9a8ibPT5N!j
z;+S2rnptn=8lcY_a+x;|Gn4M?`%<KE(^5Idanu)IAs78gy66F2A<a*?-n9_r*z<V?
zPTG3guV0{d^_NXBeu<{Q|JZ2D1_QocrRwldrVtFJ749&rhhtZ^`a(g$7Z0s44)QDM
z4SWz2bzjE(IEnT{sZol5c6$W!!G{YL&Jy33atQ~9y0{uTm!FhryY3N}uav&rk@_uC
zGYU$Y6Fo!_8~FR2e4a%YeRZ@BaokL><`zyk%P=EQ0Gca|Q9aGHcml2O2ACTIsyy>N
zTB+xjS4^G#8vC%mRpm9D!qXNW2t@6eUV*;0@GrY3;h0}c)CZ#ve<ufhO7Hz>D?Il2
z{Acm^sgE>J?k3hZ$4drCVXhN2@d!?&`!aQ-hIFHm8SKkt$cX7J#DiN%sXW|*t5XY|
zBtB1EUm&hdkL#yB*J)@xuowt)F(0oeVR`(~k`8y$zy9TroAw{89vUxK;V7;@Tjpu-
zay(Md7i1rAsx40HiwDX?jk5uGvZSA7NCN=bWO%>1B$aC(?s8K)gh!UKG~kURV+Mf*
zVaO0{DP}fM)e296xbB!a2*EblSa@KSn_@q>xlVbA=6QxBusJnAy*tMW28OTNxpsh+
zVOwf(1zb91{3g84uw{>_A#JxIoxms_jcC1^Nu)0iPMTNQtxU&POT)ZOw24=27Rdc-
z$P_YcMqFV$(z0T~P!?i-amPp`Xo@4C<{f3yG<-6}WHBZ_S;2By$*Vv;pWF>Td7W~3
zix@eRas?MYMUOj9R^^Jp<w{TZly#s=F?=dH<toK@G?M;P$s2K=isAHl26f}Pu{u%}
z5A{jIQcN%EuJUmom9uQ~sZwlz`5QyANC{8Ez?3iFt7uWWtWv2|XmQApD5zq2(LiV#
zDe3(k&bU|_3m}+<UoV({8DH@@Dn`q~jZGS(QHI54ROna$C!!)<6$XEL;X#F1L&CP<
z1lEX#r0wBmF9Br#vCSz_is7uJb>O8=!Xp<cH8z<go`9cPRdAx>43)Q)-SVeuATV4a
zw+gu~2}4OF<pmAi4t0Z9xI4(E=rLWb++h5N1Pn<qMBolGLV#7A)bb;brO(|-aMXl;
zv7<H7Toss9NTP%l7p6tt`sa=tz#7Hu*yRWm=Djnc@o?s;^bo8RNCCK`vCuvey;pRc
z(+*GeAbfaaL1t8&N~_#lK(VlrCG8U9ddhe!hx6WBI#wbEMjE?M03!bE(%dH*CjiZD
z4DYkS!w${5^02<a;E6sD^nPA#BiXOX(*HqKaPa)YkX^M1K@JCfCW;A0z42l@cz%e%
z_Xz#;q45g&_;kAjmLGBbfAq7G;B0;4Rowbn9221vLSi*BnmPj9R8*3BgK$3-^d*q<
z^BzsDP-{P^J(-Mf<4Vah<4=!7!tOTO@5?5AK+_qVrwO^TMSAODf)Gnc@v3JFDX}@g
zu$=1jFKf4BghSKE2%<I}6`rhA6UiR&-Yg3swcTJQFFDc5N2+9!US=0Q@iUCNu_bDv
zg=%L9tUqitrz|qxF^Q14Od4m|ZU2Itj;k2`gHW(G>r*SusAFk9<ZMUnPPiFn-ymn#
z#mvl4y$R8EG#QO*8*omTF18^T@lqGuw#d9e-B=s>i1CVw+w%MKiPcA#ts7rHdrLcm
zs-uu99^=)6+J%1S{8Ew3KpM0aMOQXOz9l8;7EV)&U)lD!UbxncGfu!i;jVVmp~|C%
z6Qb=zs_NTGoe_1D<f?QgvG;*{cXQSs9x`t0rBLv*pK{ZBroY>&sQJr5`t^rqPQHFt
zU}ev4d3`AP+n?lrR5Xz`daH3&KYb_nxiO#OT&*{4zj+><^P6-QoBqOy{R1%lphE48
z(f;ilsk8<{8}@BvFELklLQ{MsK>wY>rxbZVF|Y(1`^Ez6xs7cOX+RZAUZ}ZJC!=u<
z?)Mu|!m~gh)3XTLc&&RU^Yy(=fUVjZN#%Tt_=b^Ua;JwFL!lXh1JkVatf|Nc?wfjM
z$DYL9FtEO~vM-uc<}=gu<<dy(6Uj%PrT%@J-lJd6O%yJo9`x05&ne!ZxYVEP&(OJq
zHI~g}REE;A1YxLl^kXz!SC_5+B?*4TH2iBll!4}Oc>(!a=>*)<<N4{888KeJ4iWoi
z&C|P-S8g&j3{0zO`*fFE1uGy!w~ojW6cA-|VrAX7Kt|x94HIo3i><22in{S_g9ps`
zru~cu3^kWKXd>Q$De~H8dKlJXD5>$gudcTuwpn~eyXWivLJ6Dn>^D$~+WZ_~wQ0z2
zbgK>XU&=JNo5UwA!Ky5U^NaoZ_5PpQ5AS27Y6JIPMZ81A;m<w^=4fZhLNght7+Ay^
zb)vCem7bCcP^nOThjieHNhG!82W7Ok%I26#k5nNri(%}cws|C$hcSICa<_(nAmYV1
zCgHe&d}B<Pk8hXO6zFCy;GGo9SQV4>94jM<f>hMYO@fr%!_ehY1o%?YRwEvfDOZo`
z(n!=&={JrU9<5sbuCqf#RK2ptcWRLbRq3b=oro0kf`!vB=0(}vv9!0)kL;u=Z1)-!
zFQKO?Sait(ZTmM`q+eS?GiyDpEe3l#`YkRV&D)9Q9DeTvongC&{d>A>RK&2BLr%s&
z?D8^)Y2LC-D?5Do-sO#-M_Il>_v-bp<O|MN#1HZ8+GZoPi9c@+uZ}$fgY;MecK?PZ
zzmh*)g(Q2#_gK-{f1GF<>IDPfJWM!`0>%k1G^-Ovqw{20Is9+6ra#eZWvp%s(?0T2
zh^DN;Gq|inq`g@Ha*qn%%k;D*6t&71ATn}VFJl}cD?vQ}C54l7Bh&$p``Q0GI5c<K
z;9Hs4rgXL0zBSPa2MXA$+&p0<EgXfMJdIp<yu&;eq3IbWo>GD5S6bTLzthQm$%5`{
zS57?=-+4}c0X%#F$6UFEAGNWa6|#!V`g2k}a%)$6R*8K$PQ?>wYTv<hl>0QYy}Qs%
z$}yJlZij>W3Wk{sqG1BrMjBSX)wyMJ-%Ab?P0}@$Gb_+#1K+Lja!)YE=AlvUG^7F<
z<C^z&xr8-Y>gd9tre1)2j{QmCSC(e|P9QVZqKh>@pEdPK=JShVMLQ;zJp88+{<sc|
zMU;!Z60le#wb(t6E#eLPs=TA&53OFZ@vR?>K1;Fxq>Bz4FEwtDSlx9lnTHu;aa;=)
zuk#H|TiqEHulea-P6Rs1VZaf=;C(Ok+b?KYU!2$21yFQ)BZCy`{c4IX*?X;4bP@{!
zRu$s3e`dHZI~9;C%&~Rq4nhaddC2XylZv4;FJ54mU;gzwxoyol=9o9d9%u<nn)1pd
z3vPSPOAB|kxfj%za`u&Ct@`%^2gfP92O>5qeMeUqGTI6XyB0Uxi_`Gl81^rEjxSVJ
z)@5}cwi6JAvthjj>7=gjV@fPhj+vE#$LDQ9i;oyKltPQ>ivwG8Su&q7%buk;_?$c{
zd0QR$^xQjE*^w&9R6S_DbZz~W)6^R$VN&9bLh=2~g?B-ivBQ$)?A7tg)rr!`wfjyC
zuxm4{YdsIv5W+<tKHXB|v)H_{0lYllB6kmsukCBEd(m$p?YdaHFI`OEWaQi|`^dQr
zi3-gdq)Cdytp4d@jdK~+r%Y#83DE?-Z@hL;d2#i9j1CMn?<B!7B#;>Z8R0RWjn7N%
zxs>b(PmKictCaliu@Te%_}6)ZdOiO2nq2c$!~nC>f)~pJB>!gL?+pDQVO;htwB%C7
zdU!DNj*Gio2-8u~M_}<rx?X<C#l3e5#owmO2VYh^E!LGLRNe{u*dtAIywn&lsgbDM
z_7EEX@xqdl>zf~n4|eY?bey6Lr(sD(*UX<Rg?QKEemdWZbzCx%D!C}V^<Hp*YM1Lr
zrA@~j?#>b-C7Z`_4+gZAB$h;c?m!lQ9LXGIU|@#t={!E1x}<{l-J#mmeE9)aGyZWD
zC1#|ks%kz-_h(*Ic@!5-``VUVno1rLBlm=-K-zqvY~x5yhGgcFKC}FzB76~_+V6Pt
z(Y@(WcKy!L-*xRjLc}p+do@#xx5$)z_uSORgvgMTzV<{e-XgV`z2A(m{#PgYb3(oI
zV!ak4WY)GxHVp#DE|y*ud#wzsW4?K;D9fi>x-iGfsT1GAm7vg}E}wm$ZEWD$*Ld_R
zY+DFmeNTN|P8}9aUdSa+Rc|lv@z4>-GFDjG8j$+tz}ms%by_X<l*i&@e5^;BYb&n$
zlsCA0`ahcV?>&lEZ6YfMJmdRXc>BM>eN7m+M&O|OatEwC^117k!>fOLA6{|Ayke{P
zr<k`TSjCIoe|1Rt`iS;5!^RV~AGekNY>D$izB9Z&x%v8#{pJtTn?G%Dy6V0DdH40{
z!>5k8n`cjNp2uG5TKAvlzP>1VZ4+|ySM$x^U6<IJ*PPw|v9$1MOy6N=B#n4S-;4ob
zC^YtfWQ;ODQ?jm`MUR_ek*TMZYNbu1t&dIbPH_J%UpqCy+&6av9r`^O+~q@@Ou&8#
zndafsq3E0(W>kLzm@YjdH@+?woek!ppdZ(#9~PuG(5K*yp{7rx6p2A43QtYFsm)3g
zq{|VYNTa8Q)>ux=N9SflV?W;7z-_v2-Tv>+w%d;T<?ilIS5FTb%bU!se&c2(G{bDK
zB37%;m+lZ4lkp=EeOyJ49z36qjAv#{%gRlvhNkB-)0(dj%gIYk)Y&v=%wIpoY9lF4
zDd-D@BB6;6ALSoxFV6g@o5rJ^!f*ebufx-?3f&shn5r+ZDXwiltuaJTk0>C*Lbgc>
z`TxQWsmz=A7>W%MK4Ucy9tK-|L<>%V2tY9ErE+3Pyu*BXuEQw;jtgJxJG|ZpYvpH*
zOn85Y@)Se0#wkK5;yHW)3)SmBT2uDwX6G>H-bY-R5UURlGr?hv>*$8$W+0zzb(&eE
z3Y@@vt+)Y|yxrPlVdms>Un30e`A~;t@$seVHVNEsPANVuwmIAv7Efu)xuxns>>SUQ
zy1Tx55wJh=w9^>=NN*Cz?!tYvv8A0z6ldBFCu@L&7%yEarmwpW-(=p2f)syzfPei|
zF4}YN>ov7>xZQbmG!10l6n?gm`4E8GW&>Rb2~+{;PwnQCs+cVd38__izF4pj&9qR$
zdp(Fbd@;!vuXf~pojZ!T@6JP*Eemch8hv}v1P0b|o5u2RGj3@LvPBrF@@HE4>kAeH
zejj(ONgPq-X_;$^dLXD*3WY?W$kB{~7yu}EmlYfJicL6j@&M$A10wB&ORtQ6zC171
zH~`xuvG&!r$pDZ@0~Q%$IKXy^T2Bgi%aw@o2QXSFm$F0Tae;Bj(hU++GZ7aF5q3cV
zOX%g*2n1&OfU+SoUE@-#CKplw9=z>D#KRptOY49pd47=$Hb-A3rRjX%K`{qF`LS8H
zz#qcq`U=^Z%!>H$4nFPggB>6AI-3}H)p!NGW)7jQ21&VJyFw)HtljO>rSt`WRKMMG
zwc+7tNp%Xig?W_9BtAI}cYg8Q7Irs2M7}?GPn35~NJrT<K8(gnV~FWS3t*(6+o5z*
z$Zl93l3^%m083KX4S@xjwCG;rQS&5A-Kzt+)c`SuZ%P&iY7KH3D95fCVHAZwfX8y(
z&Whgxu;f@%o)hMMc~y;5Mf&a#{Q+W6+Yh4|{)!Nym@<4z<quOh2(%Cb9JVdu?9JPI
zS!AXya1nxgI=&-a@0?sdJ9q($E7B|dk6+IYm{7UfI&vFgg(;mA&|<m`YLFcj?HpO@
z*alC#@&kXAg}=EI2b%clf1B5;#=wWy!ps#$>%vV2**XdT{l*>sxzC^{n#J|BKJnpq
zAg!9RDPj9q;a})}`9s-z*+bCcRd-9;ULRiXYWpZg8&r$@TFM4rKYBi;;N8_|R#1G_
z==U$~d-BG$Pb5pbvZI9tB@L|wJ)S$-%6P;pS?Hv(D_%>Fj_$OorLIC({j*mttXnCH
z4xkUF<%ztMd>+&hf_9D6J}1poJR0c4a|0mV7?|YMK{}_6maA~39@kJ;_G!GgRG*V8
zX~#7s41kJHlOUW&SJT9{A^WnnvRyTA&++Kvg}Qf$b<JU$Zf<y=q4P#@9OT~>d7G;W
z;<i$NGNv5^M3lKfV3ufkrqW1FVnTV{cTtLM^Hj}N9GwPHyM(I2{A+kQYReNshk6&2
z$Y==BGXt^E0}M~@xCuyv>fhN&qYw^Rreso5;<TU(X0d|7Ja(_pDDZ>u5HcTtEXKQ^
z__&l~KuDe#Y0Znx))VHT8`vEF3r&Udm~GP$qN7!5$PjU}k9CNPC^s6{6b)%IGxqZ2
zrRnT9PdluJy2Xs4QFIz?CTVR>I@BbEn-;)H<X2t0FbRplX0GLrn%3|P_xw1zaaucm
ztz8y^`Ju(^riEABx9lZSV{^1g)z&|j054tRh|2&ipL4*}e|AZ5mN-v3Mig5u)dNW`
zX<g-Y1$=^NDS%f(1C*^X>s!p|&OeQ$oJY&OFAco4do*e^V9o}r+lUuwO#Oxvg=DgA
zmfJ-P7-;^Q577xiumb>=m0{Km9zWsFlQ_(hq6uiXiqcvJffR8P9$o{m*O?;$nQ+Ov
z_Wwb2<^jkWYzdHiOYI^IpnDx(z>{QM0`mkSM?wgwKL_+uc?aOn2FaHt+cg#!r2Wej
zPikt8)_h%QJkkx;N5RjdPU(+9np{bo&G66!ejm8t(ej74-W?v{yL1NO%kxbOa7))n
zDCcx!?9pe4#25gyF;B3v^M$g8U<&PUGz@=&K!c6dXfA1co;9Y<Itjr;2a)I{PM$s;
zmS&qbj?@7DAAJYz%~lHea)`s*_5`$m|HBGGC?nuzQV;-%H%L7jf<Y)A!zXN}38mdW
z1nP3B39}<0O$3ICJ4k~7@u8tetA-Him=Uk`C*gI~MLNPft8UehTzenju>iRZK(|#$
z!!z7b2~W%&j)LkPLDH`mS-(6<MSJQ&o>CvdDXM|rq%Rda3a6!GKe*pn+JAtMQ>>B>
zci%bHu?By7<Dc7~G=4_IldHG?-vc`XF$yyp_dCUj&r5s>moy}>Dttziu4PG@(G2?F
zUlRSSQ8atN<~xh-6Gg>(Jf>M}W_IX=`0O(bQ?56A>+R>9MguRSyDvjrt2FX+XZU{R
zY?N@i;*r4(p8_f{YBe4|(eeNg0FUW!tO{x@8u}y>62|(EC6YqC1!&!#&zgiIm#x%G
zF~U|BCUsZ<g@5fmbRC!Pkvkb>0h8`(8(==+$cBqAN#I4Ex$Nh`J<0e;6o4DTBK@d$
zO+Cl^wd49pN_FL@#}6Z(@~vO&K6+i=wPXL=apMwfI`|6y#5d{=asz%hWUv?K8>{QI
zH69AER+8R|zpM5i>O;t=I%fu4k2fP@dVkb7#WzK66TppAfn}{l!#DEzWt0Xd9RGd4
zvsk#JY^q5KdJ+T2V|Kl!dnTFvE2uDzRN8wgY!Nj1Iqc4Srd(PuNE)8Wg&PRMtd94m
z_;(Ef>93t@m1?-bw6fHw@Mfy|i!K2jck)@Im7`XFniVK){A3O^y-vSw67`GR|CQ}<
zNJyH7qE9IDTd<PO*8iL?dg^i#>ja1ffUpzE4GI4nwnzET1ye%=GZ~Td$>b0bJzn^#
zvYMV<NsROZ{!<&Xzi9f8Cm>qB(`L#`wIWxpzOYq3E?M=#L%El9eS@A?f^f3PHw(dc
zy0?BAZixCv;qh*ouBX<X*p<qz$9M6!BG(@hj^7c_aB;8C?hCJ)6261x63KsXTIw?1
z?LtP^N~5k7J-H$)#=}@zSL`Ym*)hYJNuYf?THz$JFn+*{Ye+e1*fZ&sC#VmDne+v`
zTSStUudJ^~N_i@NVLXLd!KO4LBm^)gRtP#Lt(8&D=O@Z#2%_baX{M;e<S=s>4Ac!X
z=}@_ZB3wKp_em!sR>{26y|ii?!#JvXoQ6XW_7GW&vSMG`pyt=Z&i$9@F{|;bJ#P-h
zU)hpiRfFW?CVL<TfHldN3`69MIV|6ihRBA-gfL#V5UbEYjoz1$=0*KGxrzCsYCM~(
zyn<v&ryJiWVUAD#>6r>hq`lAb9QC{G@AFEo->E#XG@uA-Bp~|uobrSl1dnenx6{%R
zPoX^k{MFC>qdZ7)LCMEX_#Mg!;RfpXM0&B}2kbL>r7H#VhKn~+4d+uG`m`-&hIIl5
zFI9%zAZfZzDE&gBl*S0FxiHfVy$_$<F?XsNqa56O#3(`sBu9B84^DAD;@!t_6#z2n
zfOz|;{;M70tx0Der=w`ozLd@muu2V_VvYEd;sm)#$McGBI-1rKxH66o#}wJRHIVJo
zfn=TX(41I!@#UjF-8*WU-AkiSYjmDz{V%?5{%q`9nqG+c^?EZP5)f5|)XIhQwv<N#
zTZU=PxNa>$aCA8d9eD+-$+#uVRk}r`=M`m5EUhx{GdqBKe3|nRgCd-<)Uk)^;>B+O
zgA7k*Ttb$9kECIG>#Ym@4c0<5iMMj-H7^UVj32GXbG>Ml1cs0Tpc&vsUiJVS!)q7m
zqXxq9=jzX9RDVHtXH6D-&TgL9NBuWG05MRC%q*SCFXLyc;3pJM>A$N%yO7Y%<Az#o
z6EcxEHnEvtv&`321|x2azgig7R5Io588EH@Y`Q@^17RF8DYQ}2mc@Qse-dpcwnR16
zGsJy4&G^PWbkZ1Q^s?i+RX+CWQZ=)%>2iy9$TJ-Sk&}JdPD|()kisH)!jilZN&M}{
zq@oS;H`8v$Azp8pLrj8dO{RuS&Ry|TX;Dsp@G7q3xqYUY;mx2BZB%z_LAs!fmT1q#
zy90&_LcBnjeJ((P5Y2n_XFB)kCp^Bkz=^+|?3N2_y;@KMf!?rULDWQoaJu)jVm$SS
z)oZBl*A6sA-G49+`MrTS6Z#9;VQ+*E;*)9K=O6MDI25KsR9K*IhB=L?^GowtEJ4NQ
zW&xtpk5tT}4W>yg#9&bJqja;#nKYiFfegNxz)$&w21V?Dsknfax4dV>|Kz31uwG`E
zLx^xjl%KJ78kY>;^E|&BP2;t!)Yaf|i&(@QFHu%zEmkq;jS@PR_kLy_%k#o>z|+M9
zO5aGA7Slh4^T~<&`HTdp@(__Ok~W~|T4lOPW5O$akg_pIvZx>|jH?e@L`g^}=P964
zmot$7nW90%_66pa!ac_=tvtnQLHRUsH~(#dTlVoj88eImxmMI{IQLrn``3KL3h!Pc
zI9#*l7k(c~WxcdLI6pHL8u6aXTcqPc@??poi|$2xPeGs8doMJ>A&9Ve{k=K8hPL;D
zpq}m06%91pHkMy#G+#I+0(DlVb;eoxZCLYeB;7|-sTnT}PT4r1B_9`cTu#s>N2=>5
zsRJLp5jj)_-e0WDQlrzaw92^O?X3xTs+auGsl`-*pJi_P_mR3>beX+>2}5lxL;9Qz
z%=Vj1g*AV3?)|(3Is!Vc(^B2S=KC`>37zn`H?co!&gj&I^32HywkmC4wX;3K+g=au
zAeC<4bm+ixFV}{e{vlMYSirUk$aP%WLgFKwkm-KT0A5@xnT#(X&o4i<o1I&+Sf%<v
zl_BWpv%E=MIci-wV0UUz$O6d|O9!ojMC_8Zmr25o6}1U!=xOkbW8Tlvr*=+`HI8Ys
z(Pn8*<DIL8Z4`ww#d+qD(2%v!PiYxN&XFrh4BVV*v*l{^wFBeMmuowG7*%xx)%O(j
zWny6<=d1Dq#*Xi3O`T21?0@R;g7U+c71t^vZc{_2@joz;d~m*K>e$@>czHzDc^22d
zLXmrG&P~p@C;;oY0p_!72>+L>MaBcnureOeGCl)dDYy&Y#xr_f-qht=d>Uot8(^_n
zAs%tyn)}D)4%txZ4>!LHf9<4fLGkjc;w}Y1KZZA2D$$BzPGb_zerZlskt?}1A7k9@
zkm&^%of|*ygQ$0JL1LI06z#Net_6{=dn+iSqFQ|`oq0#P9-j>VR$h=Q)D=iclwo(^
z=UzV@7ZPt1a3T;wui@#Y;k)iz0=R;)b_te$_EJ2YzVy?V8lWg;WI5mup4O5ew=n#@
z=yvQ&d77XV!Qv(U8(B9YX&ZErYE^>wG#ro;1PL9M>(}s1dX+ak1Z-6;EW?ttn*{88
zZ<CPQu+tUr`0WRxe27FhtMAtlb8~!lg7lKEN!d<{&vmzI1t}(KmH!DeLAQm>{<~$g
ztuMG{#YAaKF<nQp;qe6e-N91`?@|bl=7`^RuTlUQ34=X>Ix>c_n+{%rG$HxIC^0SP
zMte~vP@KVTu><p2RF=}KJAYYdf<OId`IrNG2rs)`S&RW#ekwz8;?av+2()|R^E(a`
z`Jqf1-X5#KH4*6WuCM42o)c7%ki4wo$hIkTW)ykpL@hj~u>UNqM4`}==fcDM#-4DT
z?P^DA$;($yzry2p&3V%AGSjR)63iP@clE>F9XpJVK5gP$-(z04BnW=WW}?bb^}-WS
z&Wg@{HC}~VXnh`cJ{J4=_}A`Fylo1ER$B2Cc}--FrY+Sbt8VI15c``9nJrmKB&JEx
zt6`L$XR8iC4-lo?ub=KFZwZJGiUNl$8U&7Fxi!T)9dac9&9y9i=EXo{x5Qp&3^4j$
z&GYyU2jFCj<d-rp^L)UtPE_M7@#ZIZz8RWMYn9Ojz{EhY2tBBP9yneMn4mal;5?Z4
z`gv-=XP)U^8wF?k3$c#3fKCe0hL}UyKG@|)P?MjIMf>c%b)U2sVf6@+doRll5740g
z+hSdW`Vh&6K?CveKlk3pP)$C#|Jw6lpqO&!w&dPy%#7sW+`sg#m<KZ{U&gE0n?@R%
z-?DnfG%gOb<}SGMX!#7=07r_E>;D=zWTnTyf2kP%diE84kaBqJ@~~f6>g37S|2Vz#
zY#{5O4=-Oi(g_=s(z}o2d~3e?T7mo7TPf8<@LY2BzJ%6A?qhyr+x3tkVDB?-$w+}-
z*&OKMgQ{%G#1{CRhgMtjQ<9Xq_+F2&AJgk+8|E#I*FfOKX6id_PZwLzop_WkP)gfR
z#b8rttVQUNtQq1yP0@EcA%AK(r5M-uOLPen@}yzYY|J^&4^1g+IWA+j-CER{&h@VO
zuWIDKU(NDQk9VrF!3WU47PRVTQk2i6;hGR)SOCLAkSuNMBIbL4B^~dxVRE|vPon?)
z_=!5Du=Gtoz1MeG0z5g^-3{&he|mlonvqeBjS_5srCUN|WDel``{QPI0XBBnB-Z!$
zI<?J5&AY2B9=AV7XzSD7JU!i#zi!nIRo>zCJO!`DNZ{Lf^V)wa$cf@l=_)|izYM%-
z8>Ef`Imej`3wMYB&fW(E^G=_>P7CJ8JyNkalMP>c?b|+vBQUKZbu(L)+fVP>o{3{R
z=-lwWUCEDMBMHng58e&Dkv$W^Ke{CAor|wx>$VYUmUzNb&>hX-l)KGYS4MZ_7bj!F
zwlz%)H&C{?G~>gwG$D}rK}cR|XxQ(Nj17fbV8!mJ1RfWpj@d9X_oM8Oq3SIcw~&hY
zH^VA&6`u>i@BgRxFo19`fCjveXTUJ%B!sQ4ym&B&PcRK@z6?8Y2y5XAZ<7jd=Yq7}
z4DY-Z{^H?pQN8f4)bO5?-!EdrU%n3Sdl#P972f|X{PktH!Om|Sv8NuciZ=x#$Ic~j
zFU!RU6_(%;DT+Er!q~&#<IHk2cK3Fo;wP1!z11a*Qbs(Tt8ioiTI`3ZpI@)XzIL5v
ze*6Pswh?8-tuhwZn_>C4IXdEU<tAYu@vj1l#>(Pfx&6Nj|3NHJ(8bYAy}ZYFqzL9U
z(_m5*wOPsDt%y%glXl)g{<1);frAG((PNovSr<=0yiY~-`oe@GX`~~6wG-gD`A>Jj
zqsXVAioO$}pLyuNGhOp^zCe8df&Rc+lqzMc!hhUHwPXVN3E1e6%|9D7c^H;nlzVJ=
znqV_Nj)WTY%j)TP-LUN!TpjHfsT9-}cPHqEg&27IJn(&XON1vhJjpih{zFG3uap$0
zb5??1U{Jbs-t$5ON?|b`aS@n)WkH5sZGB_2u77E83^+`fUFb?k(b>>sz$3+XO<01m
zqi(cYccjZbWmt+EN7a65G7%spj{NAfq&G43cG>_MyzaJdhTlCsJHPn#`_JEhmjLkd
zOl&!k{7hb_M$ck%m@*PI*|EVyhs%>emx_m!MlK|{<WI=((7`OE#D0o0Y5b(q*NZ!8
zX!!AnxRai1V-{r=@Y%pPO-f6Wr$<}podB-|<~mUWNnhUfO2Bz}9&XMrWYNv|pT#FY
zl}V}{%g$bvZOhZQHbGrjY<8aa*53jYEjE#!ZZG-JT5+7x*uQ@$FhjO{^Qw9x<}%fN
ztVDp(iCS6Q-b@GGp;4A@*(N<B<)(52j3=?Z{CV~FbsiJ1q~cJHz9#^n!<RWz1k2()
z8(#*9+Sl<|oph<>v-DLf(?+6?Wk0co^_k};`<V{X2-UYg?JjulgMo#l-3<U4Tv}tK
zB$Ik0{*gnA3$FQg1*UJ&5U=zuI)c-0>s1nA;_gAwhv=a1L7N(;H-?o;=$HL$r=IAG
zvkW8Mqi5CuOu^=W`!8y{%ww?bUC#6pddhe<-ej0gyzZ4?mW$=p;_YNzPZ&>%q4e}e
zKD{Ju*HDUG%G-XQgJvR;l!6zIerG(nQK`C9e0+?w73ZK(6EhVOt~gSVGdCsMYd7Ds
zs#frMnzqNZo4(N*BZ4xEsBd*k<i7!=$QX1C^dO0koF%-vbeCRu+N)Z`(aV1pz}|<)
zQ-;6roxOx;_N8s1Qf1T0MURT{Y_QS?i;!9aE%c{~Y=V{vQJjiRxAZy3^AW`JZtek=
z=^bIBD`nxnR!gEVU5uk3PtaaDUK%%w6#EekfJ<5Z+5k{ZPu#`L+0=jPjQX>jFTkcU
zKY-*n@|8rqPOlq>@2j9{D)))cA;p`)Vff+|!I{QRH&i|MGZ$FjP-}<TZvxCPd)g%y
zXU9ZrLDM@ytDgJ3)TN|9!1~d{_^<>UT|8bV<=Q>oO`W2$q^MDP|37UL*H43@`dCfz
zZ^3LyM*|dWp7{0GAFI-9M<g`q2sO5D_dM0uANxLddB7XlUZn~i_kSR2C(V>^;AAXy
zd1cSKcK~>EgZ=QiPuJn;itp$f?Scn_{KvLpaYt4NA)`n<MaZ@EY^DF9z;``+|DWy!
z(9-k8;T*sM9T;jv#BXY4dZcnoE`55AboASty*A@}6%GJgFm25-84S5G4Em3ufi#fj
z_bTnPNNH-Z#;16x_4EI9wXW)H^PVlqVC0ped841OL3k4rjiqK_?BjN)7mw;34%ZF*
zcfpk~_lkg=FC-C^5K-ni$CPF?e*mA`zrCX0kV^l1Dlhu87D369$Ymyd9Wwtl_<hJa
z2tjOO0*t%pk!<m*3f(})ufBHn9|6mwe3D-t;t1y(^e=Ox=!wK2aU2$QX@duCVZI2O
z)WTr~L?wZ~76g^@8qh+Cf^NtcD%Vg-ueZ<1oW_lpBH|67unh4H34rapb7<><T5JPp
z3C2HcDPNaiC|-~vb*J&03%&$~AC*to`?y{Nj%i9IRe~JxC4XF6=`Q;Lc+hs)U>|G*
zeIK5{5BLDMfzNHes7R#dcf4{6E7N7Y!|(MLuL|mq8#sK=_)9D(&>?}E?eTZm)HF)_
zlww+8+SgCUwd@tQ)FqhiWzFalz)#R3ZJ&TC;C(<)T{_Y5hb(+T%#eo50t(~AT1&O;
zAbo2M-j?1|-(H42;{X6}v0@<-L>C=|bh;2X4%!%4hUY|G68xVB2%R&0c=P1_lrOLr
zu;QD_(9sSHv4}z$j+MM7U9<%}XP{;Oq(=jN8H*bs^XMLt<kE<Jl%K!4K)@v;>G+As
zp%eF8=N`)SzM7JrS#WRVanN!k07cvYzv<b8$9W9^#qYzF_^WTu<X`o^c5=nkH4JZs
z!Tdsf^7Y3)0fHwwOw+f)`TOx^@uJE(ZHd)^C<?@W+H`b`OujzK;)!I!JB}rJJKBue
zn_QJQf?OhtnYPE+;0ct`#Z{%c(xS+;gl5WaB1cRI!I3rLJ<!NXzTf9Aek^8ufbFy;
z&iD&Jo|U!aaVs<wX;f+?0IK4_La+1-Ob#0m=F1w-Hq*SFa$bR4T##FufQU&#ciNyy
zDXC4Do4i(tn*wsTcX(^BXljov35J})(#z6*MgbHfh2L3~nPZW<{<8c=+~(89jNLy}
z05dUnyR0+vq*d`w>~)^KYn2Z|vl7$ybZlRGU7KHcaq1v$w+oT`Wqj+N81~582A(%O
z5&Y5-3Q7BbyrzEeG<MbrC5VO6egYs}c;wjWr~3Aa-cedi8l!oXbCGX%d?+ylP~t8`
zcmt2L;?6~i<&ksZ=iwv7zK}fSLFy+m38_bsY+}zK3W9<W=5w~KeYl$&&I3_T+Z}|8
znfpl`kz41;=#LMy`okBOQ+AO2==P9H!(4N+*NH>4h@*Ua%QeiCp!z6AAG=mhllJEy
zB3MQYcBjJc5nf<+7=1*^;F}(v7CyQ%Q&{p#eY@-k)B2b>wjbeJpIa3Y<DFN&n^-)1
zrT;J;zt{CO6h<#PMP2|%tYY~e4q8Ooj=0O@=b@)1^8=5AR~i*+OyF$Y^1}|v1lwvk
zFC$h35$}$5bz#+9ClP<hwU@n)Vy<r=A&`yt`=g!0m%A#P2<`c(2G4*jT$$xFE)7(7
zf?w&ht%TtVzoGk9dM$z`SPXo+dM+^iy6<T653{xYLsD|@x`HL4B~{<9QPOp3=gncM
z`uwcKkSa7{HzhGFIri}iliu;=iz_bVN{Vae6v}|PD*CNoJuS=L)^XzBEgF5#DEPAt
zu3ahE5TB6d<GJF&uiSW&^w*z#ffkwrfC|#U#a5!wA+>}A&;1$dK2K=3tSWy^m-HP!
zC}JdPue=s$TDkH^TjgWuJFcUX0_j?~t8gTzQ*nCCQ7V(jbSM3Yf3T$x_4^Eykq_xa
z05xNRiSD!tGURIj;r-vQ12cQT*?&HFEh0Bxpts7b^F(h?DwVw^Tuga2MZIn=J$lcr
z#tNc}CfBRiFR!SPjTQ)VG(U^=Hu@L_@IOk1y`Yu48gR33AEv=`r%KtVPsTUHxymWy
z1fHpX6KM-ynsd3Xc<0Y$|F5DwK|9WGue|$bUlS?yRc{?UHa*xZ@1xwIT{+VS`~$p&
z)+O1KfB$K+m=b!2e;%s_3DE8NvuAqwtM`K2H$!e|W_R<Z{PRqKJJ!0>AWYX&8@WKM
zy|7j&2y5wNh_WzD3*IFAKZ$e>lMeds9&~9-KNrak39;U$qnMUvigIU>-h&9@F~&G$
zH;l8du1DN}q>(h!OCkJ!%=hIzeGJnGdCWKZMjnT7M?S@|3IZILf&5Q5Ie!kD{N017
zgh18oDC%MfqGJ$o;V^?~l&d*Fl3UMGnVzZ!NGy$hJrix<8|_E`6x@Q)#l+;g#@q{}
zm%vbgH)4i?vB8&P(Hn#a1G6ZHp@?^<Q5;M$H2aYD3S-0RNZ|oEk}?Xs5zF}AwlSJF
za12208&8d*2y}&}!R+$iM=8yC##=nCuuG_l^Em7BH$?>+O5Z4@OXzO_JkA2i?%#o)
z--YE}y%+#?3k0qJ>sDc`ahmQcLZmijVxe4Or(Jk;3*DLxXW#e05RWihGr*dAvI#z!
z_8inUo8XuQK^!H<od$o=Vj3U-KJW%vw<X>2L+p>;N&6r&v~RdVX$Dn5%mzX@NPHm_
z{3k3F$KAmo0^PUs5L@ZgX7a7V>SR!S96NuC<FvWh^nErG2=G1HfRyMYn@;7Pz9F0f
zRx;DOB&EA<r(55)U&m&E&C*#)GsNQ&`~bG!c1(X^VQ<XSn1T>&`V>OP%+b1u#L>8$
zo~a?ynOO^WBIM*G2Hjt`@?5ER9`7U!x1u9}=}RHWcA*IlJ=sno@LD_6#VDkq8zM9f
zV#NdA%z=*6;9@u+l{8S4^Z<+zW%C6fiE1ITIj$!FmX>R+U=b}_4umJOxGzY+7sP`%
zbUe~#H3RY!c}1q9k$_yW7S*E2K-wdv2e>3cZRGun9KU#EpjU3l62n9QNZmG_aYjsY
zIN8ZeSRY*AFDMB;d-zBO*d1T+xKxe$N;F=s#s;`vy$Oi;l=}o^&w2!Sdne=fr7(y=
zIzO16wmdX9Nfz+tqL2Yq^!})TgQu{}ub^ispw}kV%N>^P1<b4kWrwngxB+QNGLNko
zX3Fx-H(Ax@ifDb=+(UD`SZP1Ni~3>EU~|x>NO9b48xH#WZJ(qz@(X$|K>hL2>H?rM
zd-3%b&?v9GxZ1oYTBQ?rO2y!%xl8&~W<b41Y~CBC+q@=>h}@R!GW2r_Bt!Y&O!2o`
z(BthpZ;nfrmJ(UR^5R3G?eZXXUD1Uq$ejK2W!qvS2Y@1?#0^|7shR}*#rS%wqA0Lj
z<z<Pd7tmY8ODwH$(ks86wZNm3=$v2W{j$pNC_A`4fx-@uRR+JG@BQ|&49<Vbo_{1s
zLjsk!;|DNz^|(Dp&(T7|KrU%bn<dESGPnS$6pRCe8$cF52t-<dma%kE%lR3>)sOg@
zq0+TN)77GFyxkTO+^A$0a|Q{L8`j-sAWgoNO;KN~a;MtUV;6c8D(X&GGrmiI?Fdkf
zkh1?Ne$R}llufjPjejIeLoT5Hi8ND}1HouIPAe3W5hj#}Kz8_p{-JLz`q$>ONlyP_
z4?swKxD9;sISr)JcsGt%s8mnfYm(B9{1BtA35b;rswncSiT4(&Gyq<R>h(A@BA!XI
zJ%WH7B?wm6xr8{7_04*yR>BVma=P)Occxr-)65YtuCAu?@)v~0QDRP)tL$aN!bAmA
zRIBZlQ+1e@l>yuLiN<dkt+{?pL17GJ)rO{DO>KyJ*hH1a^^TLhs&;9M%^61~-TPFS
zs<W%(dH}2qf*a$w)c2)q6BP~aiBe8?m`->8*z8!^G<IWGWbYJ2nAMsQlxsFRttSCK
z1uQnboSFoHJrc=yo6GOI2<LRyla(%YLvwfHix|3YTR`U{#m-Glic@UWpGtrqJCw<g
zB6zafH$29?z8kd68S%U8i5R2v{}FYb;cPwN!_Fj$AVKUATkX9^>{(*ZYV55jimJxm
z#Hdv?_NYx!rA@4&YIe|S8%nGFX^Se=<?sK#*Y&>V+xd1rp6hw;=f0%|zo%)DEbljj
z^cofqHf!1VSq^ml9ytscIE{$O?&W!=?(k$+b%5c)Xo$-Q3K5OZG6;E4TJ&Hn7c%K?
zFn#tK`iNmv;o9gD&)AA(PG2tbgIvx^c@Q@N$U_3vLDXJqjcsW?EGr#*{d(-3)WZ)?
z#@<SeZvTF`&+|ycdF+G)e3rw>yblzXzs`*v3GjY&$U_0;iJd-pgxr19<4*aLO95|C
znEp_L4IZJiscarp_CzXYHI=)gnPrs9|A&g@9T(Cb7x5TRS)z(nk4uh@OK*(J{uy`6
z9+%giQ1+NOk7%k_PyEJCWGVo$`=P86LqIUd2nq6FnY17Q2TWOwLnr-LfJ3h#S`L$6
zA8_KOQBZuZ=ATL1c>wQzMHmN)cVx=fW7>VM8H>wYfOes&RSqMQrx5@lEGYJ@SlLJa
zdet#=l-1+UlK>tZ2utbuEzfDE{WykKEma>V5&^QFhcM$nX}=-k2%P=l<K#Uk5(RSm
z14%;8+@JznQFE>&<%^{A?Hb_R3B=PQ&>YI#+A%i_oU7NKvu6QaAj#Gg&E3t@$=#S4
zAU}C}F!vyjQM8p#bO|Vi8t9h?nyJj|?#lb~K3%bz2$xJsbkwo=cwRX|J-hexCiy;~
zNUyf19;iQ4+%fOZ!uoj$saoOZm;g=aky5OJZFiur&vm~xTbx=My_LMMd3Et`FvAQ*
z1Mrveh5XVQXmnIwiGoE2hqi)b%>SEbT1G8TVHsaynbR=RC(nS6XM501g7`KG!a_2D
zYdw{ySrPJhI?$rMHctTxdRmblEBuwx>&0aJX8f=RQM@6RpwDi#&+*L)Aw!Of1G6PF
zV19ZaRqNbmVlW!LtmEpK%f0ONBF`<ypbq)$7Xi<Y3>8Px(e7c-?>*)S(#O12da>yM
z2s>a;!*Bq5vv(pnP%8+7j+MBYm)lQPdIsGe7YWP>PFb&TEfzhsKjrD{6}TBDaxYm#
zr$P@(S~Ig{d2frIY2soV=f6nOgZ0fWdkK_B#{ROM(>oODZA=?JE=SpkTomH{ffm)V
zd!;ZwUC<%wDD7VK8^h#Hcsls{>^PUU><W1=^srBmb9PPe48%Ce7~0GtC{ZsYy_G5=
z#3u6q@}yJP(rx2(8sf>q`fpmZ`A{(b29IZt$myhGLe1OHI+Vm4*D0bGt_EL_J&>$I
zNu?bsXGXM-)VIrl*a|?J`)?#oN)!+u7EkM?&;CBG9Z_X7mH{Y9{d_}vy8=piwo2#I
z`yoX(-z^tPla<4DI4Q}w+AHP{ru`b13$W*B@>KrX!)twhhE%fY&`&2=tF+srvc9Hb
zbw8x`sU<d{+b?2MttFD4ERXz-SxT%!fA0{yO|FShh8EB>sw!M$3WaManh_K&t-GXr
zoa~vDWG8lB%UB9MRMPpbq_3nbWxWaRx?sz+;%h2-?QHCAwCBf5>u+Bo&-Kfik5U;5
zM6?T7$x&(AiBQn|d+nv~(JQMQTT0Q_tu=>9hI*rhhrrd-)!q3+vwOnjM-BSCN4mwV
zdTFxiwOu9_aHvq)W^9_Nx&iJ(Lkd07?DBRTnvE0?Cy`gGf81{zzH}kgQ!^$SaF%N1
zfco!xsoB;ffGA>?=5YP1lz08@&(0AW*4Qs*I3vv%gNk|s>1_jul5t##u|+tvxIpt(
zlJRD^vG6mC*cc<9I-^}#!_WVWY>()z8o$zHznMJEoWlNhL&RkG(9NICp{YQ4$NJO!
zAoR-Q8${qornCL-+>g#b-p);0X^&eh4ZuzVRi2+gLSL3%wAxR(r>r#GXjyq+xt|!k
z<HDY>Z@v446ewEJYO167*EUVwewPg&g2@z=w1TMsuE#hIBv}pei^$vYkNMghZuf(N
z;hJ*AC7efs2$3jbXQa1toXWHF%UC)y+dq@9Jqh1+MD0ZU>?H1W2kbh??nEi1f6pKs
zjviqxe>lj}Cx2>$^J<=i2srO5I-93sf*0)*m>sWT9UY)YAeghsJ6?-IThEw7ubtz7
znG4ntPf#~cD;BAe&ZrmK2gGdmmL^wo97xbvkcGvAAbw%;IYdZ++-&T__94QNma^mG
z|LWdlr+xR7)Ze%B$^Y(on8f<79r#+!d3v3Rxu;A_?<*e_G^fg<{e4XIMj!Ft?~dro
zj`I|&a6I00jumkG;Pdr1$mH)8@HF(9^*>4>lnmQ0zeSKA^iqR(EsJ{fUh(>>=kxjO
z3RcWJo?G~Y8IoEMEWb8tonHT8N}^rYfZf217uWR6>tK~}%<RoBO<9tip?fKw5YM;v
zarJJ07PD^0)w<^zHh2)!R(ea>#KUgyE1gLPr=YN?_ys8$IRzyZH4QBtJ$*xCQ*+CU
zHn#ST&aS3@fdn7FASWF1a!x_(lBaTxk=vH`+XZDKJ13Xjq#sx<PrRoSjg!w)Y%BUC
zAy;gezJgy-pi8i`cb)j&BqA4O=1D%2DP7Aey7hNsbLZ3g%<?y0d{GK_6I5=JZ?ZXp
zSf##LdX)V>0+1CO;2D?oUCw$SPJmh+&ryhfWN}<9qgBzvYnUA>q3EiNJ%?@i9i*3L
zeN$2_?}@-ghG)}FE*dcOX^@KSm(@kh;#k$NM%h}{a`F9KUy%-N#_iLt!AJAS7?F)z
z5xq~O40@cXV->FbX0O}4=+|!W&?mdA$|-bdyccVmxgmO%_`baj2WKPcdW5P}M)^G{
zR|t49T6r~K@s7Stf=UScQo@&kgID`foVNq$=p=AdgNZbHW*1J(rqD`1%eHle)MGJ~
zryO^4wcUHShQ$h=XWX%UEC#u9rixHDGSt7Q8uog4mYv!)wtuzvLWY~022pT=Lx}$&
ze%v5}Cd9tp2-l+|7O{zP!tj*J$tO%z<JeDKgRi4}7CVpU>aGY;H?T_s?6_a8_bjZ5
zxkcb5!zGpud7#3W)<y)m?Jv%y4to2rPn3y8#<oCX`|DNoG>b3q9u#8(jv_W41|3Xw
z`F4;PSMxS(r^Sl4pL8pUq_sU%%`#u2d|Bw})v%sf7iB{8!=KJ8EnC??Rap;ReX6F!
zlRw~s$K~cTJI(As6;^T9kXh~^x^sLrm?|MwP1xpA-xxm3yV|#Ym50|Hpbutb;S(QG
z$6lmg!eJvD%nZ(6EuKA2T-g1FWOYF)6#u|Z(v2x}$_uI&N#x86G{-`B%e7_D_lory
zp2J?0&Gp{Oe+cm*tg@?1q$Ja|hS4hFicKPEith=}pIZbDOuja=29&k_m4v|=IS`f0
z&&(yqlwSi^?v;qezLz**LUm~QK&hYKfZqYDe_&n-fjo!aq<stHc-iJO_M9&#2b;&@
zm7B$3Z_|-nk<Yf5Zoge*F1x;6Vr#wbtMRds3g%E$v7Fxe^+$9B>V}d|f1IfN8OuzM
zBl2hEaMDeis;L;*J<kaw!)+XlU%dqWgJe}Fq9WGR8)E$@7#sQ)3ST;uOs~ARD7e(h
zTf3k>Bf-?nn{hUN;m*2^qgvt@@x8EPDI)GHuB)PLfNzp6JZnc+7@FNM9re~+K8}0p
z0@s0iam2|__x=8EcmF9Zr+xf6U?vH=YF?eRae3MN8}D=P=4kfmrQD!5deaRJH{h@7
zm-u+!=Bg9Z;+ge?BL&bKw>cW@K2E-zK{?PYt)w#>f6b{lyZ-)i|J&Q&->4^PI~r)b
zS2`R8@P*zf{qX&Xo^uZ|8Sdcn-$PF(7h-mAr8;$R+0STTWE2M~Ou%hx?h~z+_bmUH
z>eP%*K{-%Z=!Y3ul_PGasMCnicyhE`PYP0-0+R0G+c1((hFXy!#r;`yheMBs#!S<t
zORJ#*XGDF*kp`$}1%>(M%zZ6Xfgson_`oSpH-U|k#vVsOMX`_WXaj)UX29-<)(LvH
z?f=7ivJ;ZoMG)yKp_`-i3imjs<@u)*P<=gABX)Ik&X0o(7(Y%gdy2}~o|^{rSQ0Ke
zLS^ainXNBGi~t*p<kF-YA6G09tqETXG!pgcIP1*J)KMv-q;olMs;L;^P`Q}RQgPck
zd55jBxWU&@^vBP+6PM!BHx*4%Qi7(M?bw`|2ZmhEaVGq+hb3h_)38vVqHB!r-HQk!
z!nN_4ff<EW&j&uJ^j2P6$SYLV5Ao8rz>3lR3d)nr%0wtS67{CuLzoEE|HLTOXB?2I
zz{3l<x$Fw`q_vQ0sv(tLeIJM#*pDf~nr1XNE*7p?Lg1wz;V@s|)nbVE=Ramz?=&j1
z4Zz;?PnR4vh<H<ll&lE_isogMwW>5lSX|-`S7Xdn>9Mg1Kh)g#GJE0A_^<{E+6Hg4
zzisTuDzm6Dz2*Apit}6vr0cVfn2=I8$$!Qcm!Bro`B^2+Za!;cZt{}^IWPIr&ZQ!C
ziXK=Kzlag+`2MWw=BQg5bPtT&(=v2_{ENPsov!-|AMUb3vcoweR4(!P!sG%1pUm=%
z<sdJUA!3q_ZkT|qocYWrdt1&ZxTL@4$6kQ`-HYK127Q$k1=hNg#Fgx`slrp&PBCjd
zo>{p8gFxByA}D}0h|#^GnJ?jbCGO6GH229blOT^Dugx}`E{wfNixjQ{&<YH&l5sMk
z6}j1av0~S2vO47hU#nVgACK%6rA1#B&Hm~=R9TFd<$3rdV?B82!Sk?hQKG$<iqgs+
z{r&OnCU9P?>?xK`o~V!X$AN9E9$%#UY2pmxAi!^j_Q}@ti1Q{6j2itMubA1lSD%N|
zH4>r!ec8{pt@g%ryI`WKl9RoVsa(==hT*?fVakMLM$+&->0<?deiHKUzcqXH7Yc>h
z+SxoG;~q=z_A1mJY>U`b&N&Vq2JAS{I0e>Nxi~M}=HE|7@0)?ocE%1X+jwM@e;dyG
zsw&-@(Dt_+TW4|f_+E2R9iWqIW$m7EPz&S>)Mu_*N>@FqLqE;Y{mn&}9edOu$QNX8
zQ?+ud`9uBR(4dP~s#a@`k6QHkf~~G-JZn<@(Pmo{?ASfh-%y}%*NZR2b+PKjy}=j>
zkG~(S&+~?3bjhU`6_S64+pLvr-s?^tYxX(OTrdAb%#cw6qL8mIa-kYs694{Z#`anf
zNdv$&v5iV`JR4hI>F!;r36JT1@Vu80-2i`)Z1J=qMF^$O&@zos^UzBCtvWb%P}2uK
zw{z8)Q_C+1<8EbRN4*8(9zq{~bBt?%@X1q~CBhFbp5A`LcXIagaerk9*vA~o2gneT
zUmmt0VSOVj?xG%@L_KM(_Er7{d7>Y=|5QTT580A7=Vx8nbkqt~xDH(I$3&ClYR;#s
zl`~#A`yw)V{m+FsaX0LN;cE|Hk9S5dt`_Xi?(_QT-bs6T;XR{X`<qW;*M7gYr2Ekg
z*-6dA--o(iCqBkdsQl^_pp_l*QEp)N2a^df7LW;2C#)UeC~rSS0_d&O;$q~U1TzTz
zeDr$|2$OshjNT`HZEpuu3{8Igo=P|I!0?Df(GvL@9{=`j@;9zitq*>3uGml7<zM$3
zwjVW}{DkOY^SXJrFjxNcZP&6CyweJATFrz0R0yuR(!77hg-&={=XuxqDN8v0O?q%C
z(|&~7+39j&$Tg)`+)&3k4v+m5Hf`Bpdg7x$A9vQ`bBO$0xLtnR;NWP%7B`Bs7>>)6
z%v=iGnr@u*&4D6zk)Tb$!=TW;E4BNJmygY0b~sI4p?3(1&{~k#K3HtVTV$&n`p3f2
zf;=rb4i&6}D2z+c$wO~Ip{)22S^0k-zA=6N_Aeo#jX(D+hjOOqTNo=37BFr`kWNbH
zf$xDJ(I>*C`0k9J+FzS))A@+h9v&1Pm?;c@un*^;0fl>n0O`)01wgT2sJeJCh=e{`
zgl6Fd<nho&99=HaIVy`!m1gH(&s+#b>4={3H)p`pM2uIipt*X{!obgT0DfKE`Qn$J
zgX|$87c999myLuHbI-3Hf#X?Fn$XecCOBO96EEP35LEI|0_sNKsP=mm_XWC}&k`#P
zU7`ogU$Dm$BF%_7$`nJ@A|3fi__nusgfGykH`E_|W2?>aYk<(q7NlBQwRSVq!S8Dh
z?Q(`FV~~7PN+gJ2Yt^v~XT$RBP*@6ko#k`+bkMN|k!+R<g`NP6UpJ>#<PZ~)?L53G
zMusMs&$4)NTt7gX;2@mcKsUS<&X&y*CJV{BtSu(U(I?onv-@vBD7*+sD>}pqaxku>
zQw}%~iZ`4nNgK;MRSNI;i_iFXXxyvIaz{OaOido-O^7wXTNxm3ixbz$;Br;C+#wYR
zm_QdPURY#iF_h;&PlT8HdcXY~UTiD56C6rM0b&VFp$aUTJIDgE?hLS0lMEH=mXg}E
z!G6H*iE<lc@YgE_F7?Ubr-J@{kSaoZSNkD@i=9_+q_;hxE&yG{D5(o|auc@FmjR{!
zRs<4##eR89mWas;f0vvvl)AstEx{_ILv$e7?rHnUJl|pZl~THq!6<JJ+k<lw!oAJf
zq!(AbR9Cw>^<`e0Ttcn-Yv$bTC;%R;=*zCk^C&qU_J}ZqL_OS5^AXOmAcJomYSgWM
z!rFGxm`#ibU`NWCt;3Gyd#u)v#!AGrRLKWe-h$X6fw{nr<(~+X8Nsk#@cM8G<EWC)
zd=uDUPwi&0PA66^m%#LyLZ0)tEuQcYOV*q1m*$_>QxVr)B<Rli2Xh|5A@5<7{!pPK
z1f&5uNvEts((#fnI!rdG@v^a?af?%-hnw2V0D0MG`p;SMudZ@mT=L(-LWhlalI)EH
z_4QAt)S-`m7qb>^5c!<sH1m(lg2FV7w`^XeBTj;Zi>J*wa<~?{Xi?EYc@ts-LUJ<6
z)EqI(Bs5E-GXLHb&yp9E{6#IkB=DzFAX9^|z!6j9V=;>b79^YHr*WoJeb7+*j)R}o
z^QrU2=-E5KbL*87HNzEXWgBOKpy;7K{u_;}-iw<PD7sHA8}zn7sK{V$asFJj<N@L%
zl!LIhl-~^qykfH?I%spD_~#JjUMfzu7tPlxkPez2#1}`74vtW9<|3eD8!X(vTfCt+
z9Tn*-orhj-fE|{g6I7hxY0xEakOx5jS*iSk$=V~l-WEZd$=8`H8InchEe>;!Z@Sav
zW7)dt8WSUmp~od+Tz*53B_8Y1&V8n2i#;&MtshW=q5i`L{Z@a^_wUt6WcL6ceTuMq
zxlcmguIFnN*Y{x6c}F#m9!&~H6I)8)qPpLQFiweSOJ|@>oP4H^2!1MljxU}Cs+=*q
z8$w{Eo`TB$HVu#GOC5!qTo!RY?cqA>1W4dr*KYuS@l7ri4I=VYEkKm71Lr)`+#xS!
z{S7CnO8|>fgK~+y<F*0jFRo?{S_G)Fpp03<W32*Jz007sA*^`fv95MM3<>4>Ylh=V
zXUuAHh<#zFD#o{<DziSwbxt-$zqeNpbzruQlAXQ^at?VQ=kV|wQ>nem-^IU9gHbYS
zE8AZKk>pH>_?5&6MYSe@B!5?{t>B0<_5CBuDpS_><}f<Dz*C9nOH4=<he}CCnDo`F
zeVEXJ4EHxGOiqBnpw&ph=J2DmkXr#Enrc53Uzlp2NG6*E#!mgsU}0P!pT#{aH4LM}
zMwkQ$?S+ubqe~`g!?&m-%>h--vG+d5M;`bm%rfRUGd4^_-+UR{;va21evnY^OuKfC
zXDB39`P~ea;~9F$YA*_{p4^T6oRJKXCIiI?OxWh!hZ1?yt%uSVQU}eLMqzoA68677
z-gKe8f+&I|0UJnIvNZE0jSDGat(HytNxP<^9J9e1!zp?{FW4cXv?P-IcCw_g*-qHQ
z=GL69zzjQyityc(1g}i|Nu)ScdSfYTQ6;7bToEc^FR_*?7iU)Cl6t>2RfaRI2$yEQ
zmTS%FI2f0=OwO*&Djz5h_Kr*X9Ki9y?B*+2>>u$=leom+b?HL;X9a$N6&{?WzwGm_
z4&Qj6S>R}wlYWrpYM5p=lP2^nw?<v+y34UaMWG)gH$BKKXDz3v&)3J<NZl-b)f_59
z2i+=SY&K8!(kN>|vWR{bPL$M(lFXQ;tBa8Q7wroB2!~jRW2v*HGg!l)vpIjwd!OY*
zWe!#^TyQ6F3`NDaY>`7Z87kLljk*R+(-)h^KkX{dm0c?-Z-ThXcui8wKfemFo35;n
zSTFBf|2)sd*nZmi0bkM0WoS27!9c5ZZf}A~xvtAsodBBT5w+XdwSRurx>1<Y5b&(v
z%GI3SJ=faIlS+nP&?WOeN@Wd?<cvu~xt;~n09OUqh&R)dPYo|!s|))}x%BI12Go`O
zfV=p9PJCHRLW{VS`MD}|>FG{N_v3RH+}4vgZdu!%_EtgQ{lt(_PQviRoiW8tEK-S;
zoU0Jc(5gXgyHwbEU-NfLRj?cQUfh%Up2aaMgKtj%wdRVojg4478F|n*;*&Ygy23p)
z=+?2g-4*|<8_4tIh1_c2r-?O+g8Gj~t;vvTrDfbLB_z){ZnGEspiky^xBH8#vb`BA
z2k+lfGn%xVF79QC>q@E*X4|dX<gVXybuUwTU9~m;RGRwa&l7+q4Z_B<68PH6`}%@`
z*O0r`aJsu+oh%Fh5Iltdm;eBPv=rbFU=AGzrk}rX@eA+>2qGjD`2>a0GODa{8f*%h
zT*^9vqT-S=va$+_JZd;Tb$uaiV^KXbF`Su{v6ZZujjSnN&J3?)Wv_;JR>wPQJGkR4
ztZ~kla4wgO+`Y{_{VWIpR^CB){}8*tFgI@>$B+ou@F<VSn9En=ykg@0;%@|9zZrZZ
zIgFSVk(v>eo)w#w8=qT{SU^f56{nQk%Dq)i?(C}T?r9qsq*AG?tE;=ay9Wmcr>Cdq
z-~9g`x-&|0gqbvV;W<@l-oab3)EaHk>6U(L`TJaxH}cZ1ml3~4@xqor+hD<ykAsQU
z-3)rXyRR0Q-~YC}X?2~Lo{^cAos*lFUr<OYDlRG3&?>K})Z!Jd5j(eLmf|@TLmOJJ
z3MkgMnV=LojhOhvh0(^<H4h>!=|x2)6ftH^Erz0U1&^o`rWip{K6gCRgO`)|k(XoO
zfx%%1CbGlpQD<op{H!IDummsC{zJ{1oKME=;*$PmXmQvu&1Zb!7Bv;dD(NxPQ#X;>
zCLOfmD`X<hCg)2Iyw^j`j>y&2AMMK#9%qrQnsHG`NzY?6!VdsUR^JxG77F4Z7aD28
zXVvRjq$P<x<5USIyoBQ`A#v79<>VjjJ$*Zt7Z@#ONWc`tvsTpxq{r6xN+d?mjY7ok
zgj_WBp+~A5ctMfDh6rUwDJMRCKVdKfztwQhIaLX@tj?M>Vi4l+O*7k|pH`SNv5*YK
z3Kx>VvMIqjlD@{yvbdJgu+kB;bafbkJRAj*XInMH<(BDJ%_3MFY%HmrjX3&v%Ple2
zi;Wb9M^L8@PFd}hH9P%yCV1~HIkp|M3Lk!(hoh(8cUMi_=HoKo3n_jd)C2&niood5
zK?6#;uBRY$-ud!XdbT(tDQJ(M5fE**Z<KN-XiEfoU;<f)%tphL>0*MdXN0Q;`{g_k
z?j-+0|M>fgAf(vlRHd}R@V-7rCpwUThN{rs0DobY>(0?>TVWP~Ndgq4IM11$XFkly
zfKhOuhn84i+s>uQ60N*R$J>F-P(>@ziA-J={T<A|Q*|6LQY6r*%pmW13S5oalXK0C
zqCqJ;-Go&Xe1=NylGE6O1HJbYj``72OoDHK<DsG(K*K34m|;w0m1wCrila(Pg~kM_
z6`IUp6zl0kjp!AzfRrZrRyTbU#kI<!cC%1yd#j|f8mN0r<{$*!!bEAm+mqwZ)>4}y
zDcRh0zsC_NI*_sjxJ%=n1)57zWvmP)Y3mrn<I?s!Ov<8XsSK|iv7N|ggNoAVDJFb-
zt6f<L1U}}}i-^K!@k|ZjEoRdwj&l*Bkm_ko_NM)UoOy;%;Zt8xyfZjRI&DGAXbk4O
ziEDM&*E)|+P_PqlOsjSc3VCIx=W=z>YYzs_(v$$S!b>;m#4U>r)~U~)iMz{Y;+;n;
zR#%I5jdGJd7{Ckq$m6E42>IJ6N!)89LUzsB04eQ2Btot;dKth)bcrA&@Rq;I3peIv
z0AvkAl|%^qMGm2uD(q<8b+}|4#33D}f2ZIfVeo-msY}{p1GWd(-bw$_p{)7csTo9t
z4E>GW0Q+i#AdH0l@fQ*WsEJ!e9R|P9?0KhWk#Lzhz<ah|Z)?=h)p}nIkd3zsMn1dS
z>*B_w=K1trxHH$up_@DiQw-u(g5a;xyIn?K1WeGPnAaa4YN4Ip4kdu01IX0N;OHCE
zFTGBT2KOg@mL<n5Brjh%eWNA7YH$rO^fzBgTAkSC7D2S5Z2|rZ5kS6e(W4I~vx0bW
zF#m@BWaFh9`z7yYDPn`a1u2(KL#hzYGvn+dBt@Hs8HT8gWaa^)cYzyM79Bq4Ef#L#
z280LnU4w`uKk?MGLZb=EQchH6@fQ>9xw_v)Ivk2%TwrsW*aYOPW;%PNM4v4+a7cuk
znq@$<ios%&wR*g-$`koS5QIv}`)9-~FpV8)KuoT~UxcBt$yj=LwUE^nfYoHt__$er
zf?!|%dBK+HU|7shvk4|Sd<)a+-M{fHr!dI~1p4ZdegMxVrJn2Z^zV-eN*hC^Tys#k
z2#&m2ikuGbIP+5|OSN*8$H-Q_$oHSKx`T&i&YM>JpdqV(rDATb@3~#Utc<26SUS^B
zShm_AOOHd7az_zi?3L5;sH*SPyH+2Cyer_W&w^9zg`cbC<5Q9t>!3-?7HDfgs>meH
z+zk0bN;arNo-x_I7M>io3tI|CJ@Y(f8;A3+8s{(nmrK`FA8=$2N&01P-XU4EC*Rj^
z;%i0T4WS~`y{kQarFqUUqynoZVTz#`OB_2Nh(UteP6Vk$won(LmmCL`DsDn96d72C
zwaGwQj|_k%c2)rv_J9~llLkE5DKiSx8D$HNo@3BZ<5&jLRy~Z@KA~_uibxS*y7Bp-
z9qWDv!O<hcnRX>o*HLMV1>EtJOX{w}Qcm8zHfZg#7%M>PMPk{Hj@u>w)k?H4%()%+
zRXp7TtgUm-@z=$hVb{BgT~d-*k~^2AfeaobG%>{quEsasJNcQbJx(ll^!lz#W<;k5
z^6DVqvz3k211GM=*n6FPZY)k{Ne;8GX!{U52A1J8oezU0y?o*5jW&-v7G?3$!?T9B
zQ&Y;#lileW&QfBsBZ!}LU*7ptGoC<g<I_Svk*j}$L0dk!bUz9wBTlnAd&u(+IA0Fu
z#mj^|nBwv{y4QW&RDRjo;<f7_8OWJ*fl`XvEZn>{;Jz*wsW0yOwCd-igmq+s`t|JA
z8-pF1#>rrRE1#A9a@bt}80@qUVsaov%Apnzgn6YD(6x(-yMQY%MP)=k9$P&2P;|)0
z-3PgZ-=xMI=9hQ)@c-tVY2kVurINxbWGJM#=_AL``XCKs#EeiC-7QPUfrP^r7ED_e
zzt8hdTW3VZT1gmJ-KF`f^xrRq78ukm519#Re|#8OtdJiN`X2oRx_Hu7U&}DME4nxQ
zSg!y_I{WdN5ODNknT6dzHj|cO--?_pGXb^h@P0D4cY9z!9mu)%^gqwv34+qGg#r2U
z+xsFvV7!hz1gA6(PFUrlypm#B(cU(2Ed|Ug(S}wJN>h0sxMoHxAaz-3N`<)giMhne
zWYR((_$w<-?`(#PFOP{dVx#aCD%Fp3%`_~XG{1hx9iI3Zdhko*Rg@8E?G^d_R>c|K
zyq)rpo}??(h^;r9``G*G^vd@Uu?Da}K(hGP)fk4lH;l)3=j0XwA3>}g<@W(Je%yC@
zU(46h^exlns|S~V|M`exP7q4@;_ZF=^cujx5zmdI>co$-K{GoCp49jXYSZ30Qp^qC
zjGaZBicym-rzM^*jvY1k(>_gY&EG~7I@Oqno$qrDfO!b)NcU{3!|5|L<slgr0TDOd
zP>cOrQxpCv=1V6{Yw$R9Ka4e5i&+2!M&87hvQxf!Y1eN_F&`M6{Qc(a^$otanQZdt
zMu%B<<9)=VABzK&+MLVKOA2}m6!FcyXIhSP0(*HYscD`2{cd+o3Vw|6P*0|QG`FkQ
zV_w*JeKjXOOxu$^`s{x8>!Psca5g?PeS!dnneidF$QTX+1&9gMN8FrB1}kHI@=QSx
zA#$>aLKoSG8IANLgV<V$5L*!_>j01=0tA=>DG-5-q$F8+KNA4=Ua^X-VC<Q9O!$Y)
zq|Y2`dmoeb#d*0JKzh?axd_BdA!I^J;2(C$n#L3pyl1@#4+fR0z{!LHfF-d&MgmZ-
z=Y}a!08LWh?NNUwfAhx)@Wk0owg-qNYsyj30-Pzr5-R8!AnUG#|A$nZMB1`HNbgvx
zwwyt6A7D;NvGh$<Z%r-5@JL`&m0TdcaS${;R3$D|V>mVH1f;|URDBkG@cqVSCh)zQ
zhxu??+zk2xAq_(YB}=3)8m3PvW(EXi;(L<6iC<`Jj=HhK8$X=6Z-@~ks&_jhr!tL(
z>$5q@nZam-B#ESLdT{DY8WX461@&C|%o~Goxx<0{uUa5)u3^u*y%iqVyJ3XEGD{3l
zGRD0QgxUvnO$GEcUhY!~`*6%9g#z)TK;Llj_$5X6WRSN6gpQcU4GgrP0jg6#W>E-J
z)%*zMyr~L~t=7ExHOMy>u<%kWFYsJ+dZS|UO3yR%GZ$ZWYz~%AkC7k=Ktt7m-q?e@
z`V>=9LfW@_5NJnsHLB1hs^C*#`aghob3oC)U6?mD)#E#!{*=^ckASWhCb4JYBZ>u0
z3eMY2A`KvGj8n*A?td(KER}iGabQ^#`@4#wH^W6iX(YvX?7?uJQs4FFGFIivJT>z|
zK_{Uc6$sE3VjItH565Z-CCx0A1W*f2NVohx6`uVm%MHF?7Rtp*Ri$U#7f{Ra(%A*{
z&d^Kt#9#?LE`owgsQ3U##SFnM`ji;^Nk$Zdbs&`r+KG1K%$*}D@+pA4S>bw-3VT$N
zF-;P?R9U-T>6@*)6IWiaPG5Y#Vi8krj;l0V0_0@_7GtW|PAUi1d9)3x%mKG8C;<Jw
ziu;vS#S>Mgc2)Jy%BJJ1XW*e<lHuv{0i`&>NHu`0I_E-VbxIMNWl@cye~nN>&3aqd
z23PHtM(uVy<O&@2Tm$ar1>z+F`6wWDqnci)+9TIH$MJW5R^E9ZS$m@gxL<-mqd;Or
zknp+jzYX=T?G9pujC@6A`bAEs+&M#O*0H(Ou_x4V&egC~)$zWn<NsBM<*t_;s1tIl
z7fYy@sH&H=fQyXO%l@jD=WbBsZjjMzP)%r1uWHbAyQ88BcioQ&BEhcU=-#3m4RNqM
z`NqFQR7wvFO465m)@VU&%tH~i5}I79nns4J%jH3eFCpruurcGraxd6C7FpwqOzJ~Y
zh|P;A##I1(u8#Q+h2xA;p}zw{LeyXOFx<;hxS^TQk7pRdDsIa&CnIX#9N&3DEjOhx
z?e}=W%36aO(RFQ26;*9j+-Q#xa3@_xv3#>h4{HbYN+UwMU=H?6k<DWHLU}NKqyk5b
zS5*9g#(hT_m-?EE2Q6m?G<G`$hy(Tf(D=Fq2~(yHedq?tsdCEW=5K3f39MsJErZOy
zVqha?7LT;O8tL5l45J>mxj1;|VcQ!b%oe!ezYe*7o%rWQ@L2=3HWYF!DbY7eA@}t8
z?xVR|quL&!c^z=P%h!0V0Q@t@9e|YJ<;}>jvOw5ADDy=pil>*wlK!1rGgpIAc)b|g
zO97D;5%H~9^KuSoy&!)SmhlkFcbCNM2oSckx!EVI(`N_(iI@<&u8~8mNMhJ=F@R!V
zf{?gZ0t8JEKWvAvKEEB%m~R;&#%u<Wvy*qA3>f>Kn=t$H=0rmh6fYl!JLrpX^9Xka
znEPq=`nnIE`QL_M7}|fH<n}5m-0s6XO%bj4Q>3^R4v)m~7Rj{sVJ<$C43&}^@Rka4
z?PnG(7%oOm1S-d9$z1zwe-hO((E|C?hxJlWTx6k_Xi$`XuV}cWq-5Vl-@>6`KhPO(
zY$OC;|7^3oE>b5Bm5rCb`=HW+L5cCZ(mq(B%wQ<XT^SqMYe-Qr*tZva?|u+FIDLK8
z|MuYKh$MHiMir}e?f3BWf#{SE;&H!bxQJZ$`++#&u*6jLN>;Vx2B;5;fu8&R#_fb_
zFEk_^#?Cu(Ydq!<Cl%+_ti9m==c{4NDq{@|&hYais{u1q8fXt}fQi-@C+YKuTzT>t
zsDP_FTWiqSc&}p)(8WtpKPcUMr9gpd>kDqHi1_O5X=z6qV)}jJ^q@GlKVpuVqvurR
z>-N#X$x#~-lTil~65N_rZ(<2Cud;RPDY*o7oUlCt+8bHnxgGw9O>QXz9y+vzK+Fq5
zOxiOaRy3LixaI~nTD`@3$eqNBaa=TzzbJ>l_&oCBy3vR!0kotF*ie<9VzV$dvfz-`
zX%#VRXM1dWY|-1u*3UNGs%FE+VcmQ(nE<saMvs2Cw7TwV^`pv3136KwJ*y@;@pXE1
zjEE0>Zu^}}7V9{=p8*gNy}430JKl5-UwBDs#brvl20P+K6{ntwI~e&n#A!m}r?}1%
zf0W+DG&_CZNOg4KYU0RlntpRUV@h;byyj>XV`7sY*ro62cu#D8KE{CN=&|GI@&1XA
zqm41Zb(UScbjk_-$0^cSI@<ARlai;g>Fn1(3sS+e|ILp&4B3`txN$ZRX76dxJ&1ei
zC}c2N&=TtYwJd^fc23<pXk%(|GIzmoHEvn0#+F2wnIhy)UY{h-JyG&X3H7T5g3j}C
z6QmI{Kv(Ti`tvDc`W;WF{gKa2D}ss-xOJRPe~^ZoRsTT=pynB-d<gv@-xgxgK<631
z<l;lAB{%;d4OPIMW50TKfAt5x5_tc{jiJ+zCbCPuu0xYi{y{PRdW<qow&jpB)&C|}
z2XA|_2RD2uos0<1<DQ{{y1G@}Y7!xTTOcXybTwtBAsLlMv=#fFm#H0mtZGhgd_tJ;
zLB{*fby|a>{QRn?yL9x6jV`U1{UuWeK_o7adHS>49iddqyI%$u5_=Igc*N6JSDY>-
z8%Bh!`$HpN%!U6{%)o?4rL+3nSh55#(CI+tO&}82mPfS#8XT*#*US~vuBu$SYKH@r
zjzxGaMf}Wgmgt1AI!7AfH&REhZZ2Q-N7D-iybvybC5@Ubzwvgr<_`5(vJ%-<%jfF%
zkz-g5f_HAqDj(~Qp0iYr>Cgc<4|SyFE~)P%W@hSU2PE`8F0$y5X$Qrh>899y?+hLh
z-w1niy_r5y)6Zu0>Mbk$%|wNGuaHDtgX{jC@%_JPH7AK8OmQcItwzMe)6PW2*NI+i
zgI}Q6VV=_E^a+!i@j@4_#fsmkE`Mv}xm}3~wZ?FZ4}fHeyx%S*eJoG<?<E&6?7q#<
zRNJhft^wy7%bUk98NTuH{P}njpe~<Vl8%;7^9)a`+{&?l<qkqpT#^u|wJb*$Zs)iU
zHFfEKr_<52^hpzZ=~{Am)^bQnX3I=AWkiP@7d`C(p(7NUkrWKMc85XPF%=o|Ga0WA
zGE4w#hXEOtNtw4Ra$N4`5Z7|LU9#5mvvStn+Q)sYD9A7+E}mKBp7qV#HF@~oXo2#T
z3v=};1<P^I$6IB;!LXJZg}DrJoNYUH{e`0N{G*L`^!WUj75ReU=E&?@4bUQQ^P=Ub
zB3`co;~)gWdiZq#^vBQlqOLi!Z%f&_qQvb>F13AiypRJ};PX0|Lj)9?nZM(oZS_C>
z^gK-Mj34SARC2YL<MM0?TE0k+t5g#I=`FeFLsF^4saS*`6l??GTl_Ne_CF!LL#Y>S
z{W$2=Acvvs3M+Dj7pdI1r#u&19TQ)9gIsyPlBch-a&hW*;*zIK#KYSfRn8GlJbJ#{
zl5Z<<RhxgRdSrgYyau|iS*>yThsezzE_xC=BTO+jP)l$D#D8^XOenCbdEJLVw)4M+
z;CCVJHmFNCQU9&ie&f0$^lM*^aP$MtAO)a>ygNzKs~1~@!Zlfd=POFdBTNF|@-MRM
z_mhINpP!x`lk`qYFQ1lmLyB*nRy{hc?mn)3cS;ucRey8+j^3~4o4;DGj5gi*)$#6E
zS9jChGooKlV;-ULv)6Bb&EJVvP!=P<v$0JD`wb~8zq>F0nJzp{{ss^rFr*99g=r4o
zAU7uq{mqJKUV4XmA#j+F>&eA+?G*ieEbwpZk*nBcgv>s$$<g8E6ur=Lm4Ki`%LvSm
z5&iu#^vgTwMmOy3P5vKx|Nb#Uz?&o&W&R@bo#ORq-8$P(rEX{UOs;BuDSKczV`4Zt
z2h5+5d?_s55&LK}az{gENb6JVV3qNRo}Mq_AFTTjfo8>UaPja7{C}!axPN3s(pRXA
zNocNsDc{7hkjWtvf%L^OG0|NLU@iz|z(xs+L|luk3`V=9BZ8T+NW6J&plw({34%W@
zJNQyQN{E|eUD%)5RX#~S853VPJmy?;ahYUS;*#&_6Y!M&Lm}_8-_<B3RVL8=fN4;j
zp<~a>?yJbhV<mRoSsKx^Wn93PY#-A?0sRa%jbdN(5^>v+&1XRj5H5k;A`;q=E;pIy
zWVSJ=-wev3=wH@)4;X06C7D$!;TB*<&jmZfEu~STap@d5uf$;sjCnQ(qYL1Me)3EX
zh91ubRj>}Y=qO8KIi+}K*^xaK^CjBr-vGvpy|XnG?CFq5?)PYYV8aY-+Ug$*T$^&i
zq0Iq}EK8`6@v1eB;1B#ApJhW<NJ9t)A4#B>Yu)u>?!zFQm?t$yRBMu&Q{R|g!Q>{j
zNy1rOKMVK6+<h_GeT~UMh&QHl#!!q|KG#WRck%)?lS8jIG5-6<<rex!#XAMSR6|a-
z`jh}LMz#V?HGh<M<By>_0GvW69|wdA4xfso!9=*pK$!ebYgh|jT`=Vp0f&RpQ!0$*
zkVhKzX`C*t0N{D0ME@4X1%F00fT*iSJpA?bi5%r2T|`}~Ab%dJ8{;Xz+`^G|-#Tm0
zA+8Qd2Z9^x!S907VH|&mR&<mX^;Q`OIbXpE!D5d-bNQe@-^@pUUhOdfKt+~t5V=w>
zD&6Xl+#@hDluSerh;?(KCejC!Y>o<bX({|JR)&HgUM~vBPkN!7vzl!jZ-jZ%GXd6}
zZ(dNj9eA{?_IJdtPx@ZS!4&7%gyopCSH9y5*PzblFWkQo3Y$iW++MbVLVN!)EM%-n
zxG4D2I+FM3h&Yf?ndl2x`Eb<dMI~9(7MQcx`~|#8^3rjdU?Pw6ZD4`%(re&DqInj*
zFQwO20^CtLfl8A<iz3b<0ET*#`w4ZBx4v;NETqLtH{H1UbRNI+&NM536O)^6x8;@Y
z!v5T!aiL->>%DQA5{fV^M$x+kC^zMre`AutsQq@$H4Mr{hHy$=`sf#SAF~C>k^83(
z&(E&7?~s-*!Eqi34SV&erLMs3b6cCN(M#*NXW6METio@~Qu?*lw664@nqH?_v?WKu
zR+;e&j!AD5h$znp(YseJ@@=I(9$;9{>dlpR&tmnE4^I!O^GM!1ahp;5CT#1tDH^}1
zEQIpXl^BKJ5Wjw%mus6JcgQS3Uk#&5eVB{xz8j4QOF3{G+mm#Z2lAxf#<ypUm1I#b
zy)1%3fNZ6{XXDodcL!fzy3JvF2~I1d@jAYf=pOz2U+<#l|5BCz8ty)j00EoSzvruz
zRm%RCcof!kok=1$qfgNp$K3S~`1x<y6+s+HpOd|ap!;HAk2NMje>Y=Eb(YwvzQT&c
zI{}1<T*<(b5b9wW4JY%r{c_zCBt*1g;Kw~H7!R6kJHK;Fl(wB_tnl&;d&PsljO3eQ
zQs=|I2+XxM`8dV>e1@gzWS$TEqQ@of|BT{vS;Uevm#=R;Y&I=F>3n+KabOG6TVX8Y
z$(-n+Zh+uc1F(}RKtJV%QB_3~rCM8<uv=XziA-tMPEXRRuVhH_HsxX$M4j65vOF6$
zp{MPhLEpFIklVtKg&D16Rg~-=sj33#A}DGB=I_38U!(h^eh}+g^-jT;Y$|BgS3C~e
z=3a(1+4n8`E5!LMr1i`x4!(yHCf<bkubG;IvcVX_5<}niG=Dt}nd<|PyTJt{aGTP_
zAw|)?8Z#UBS>T293j!^}#$n+lx8EFnP<!;UR>tU?g6NWmYDtu}FeI?#xS?K1&Bb&q
zp9tm+Y{{w(1f2v0M8?>DM5nc+sImcTrAgkG#yL|S*9aD4CkSgajwV<d`Hne$w?y0A
z6rWQJL%-V8+pN<h^?j;^{&{VdP6GAa0ES+gZTZb>$i(TJU86H;oQ7w&7n+Z*{c)z8
zq0xq474{hLUcKA;gHq|xBzvpvVoW=FWH|lY)eDd(6&04nniI?=c%BraQzj!bGN-%U
zxMM2#He+nWl3IXCLN9H56S{6OnrQALQTACGvg%A&l&b-80NeKb!Y6w-%Pf4;uPS*a
z-I7bh8Y_=N1!_T5jNfHHXO~<T$V{ydjDIcU%q_=ebi^?)6YN?xY5{?uTKttqF9(U=
zZW<8s>KD{B2%f^{PAIOnUh!}Twx2j`GL;WcsdUBHx2ONB0f3oXiQAG*AkI(#5R#&Q
z!33QQh$QO2B+15f-pv8DQObGasJQf{7Df*m<Vh+HqP)+Nop{&*OQD`II1oV?64`4g
zNQ{mbpUgf<b6(RPzjik_`9F3+nKD0~#GTg&_DKMk5!J&`octI@k&t#h424S)HU|jh
z`meuqy(S)xI0jZs)F_2K+WWbQawbd?s=`w^MhjU|zfOL?9~rl9<oTs`2=>|U+aU_M
zeRY%u<;<ecyW!k$f7K{p&r(nI2qGOsLhHSZT+!*PSHMO;HJ2BP<$n|2{rNidsQ!0v
z%5&~*xuH#f^aot#JIO-6t7;&+14c|C&;NxgO^l-6q$acJ%LhQS5O@z<hf;O7T|x8g
z&FhCHm3b82L=XbO4`>E1ME1sNQxFEUWK<qj#s{+;!*TW|#ffu`zi>L*h9<7T#zF<e
zuCH{{(TMA08Uxrd+SUo*X5LR%cA2ovn)dgTx0F*Y#chC@C+t5n=e(7!rC6`FiBGi@
z+G?Hd^iZ9jE(S}64o)<Iy*qP2Ki#0HI3V4`(^sL-xai(ioOtei>9TK0c;0z@+%)tz
zE%Cem+N$*{+ww3r7YnAPjKQB%3bm1W!mlt)J)NlzqiJ-l6+&jPuWSzcc+{SfUtths
z*0^h{uzUj8ZAhHwBi)gZzUzY@*1#Z0-|Nyn;KD7Bb!@_qVo-mt$aeEf`FlnMXMsPP
zn8l-=!XZsIz9o8(z&$GbvAu;gdsaKcorGk{nZj*$yi!_~ymiEq{yS;bpaA*TPin7?
zeXIF)<IebcSQ8s-1OUuO&_9SUzXuy8$U>Er-zW*jjq~syBn|!9QMePI4}R;!sscpp
zYFrfx#SUClqR=};NaU8(3fI!>&>MBfuP@df-&+*=7<T9Sn{TxzV<$S_BG0aGGT-?*
zrS|XO5m(~&d350EwSV919`Q#83;udO^zTRSof}{7`u_U5{_lh;kaSRZ^XHtLIke*8
zQ$!y2ZwZCCU^Cu^p4VG&{X=|J)B`+f|M;(PSC93m@DC&ca0juhPJ^J9AZFM!10jQB
zn>LXtVGjd0UNYF403n#eq-hXH`#;1cz~YPyS*hR3p#V|)5HtzG1%;w}Fp~QqB@&#M
z0BoQET$jN46jea_&adR>>O>%!LT8Jj-^9_Ykie#d5+NFd!i2~pWyg^KO%aG8*s>Lt
z4n>L^6gifx14>V#Q4vl;J;KCx<-|b9ILJQ>CuT(hJCS{*f#RhUAfC+hpS-a{#Jn38
za*D_3dO?>W0;<Wtz52Q`0Q8u|Y)ORGwH@V<vkPdf4p>ON6<-wqjfq4HP+{v!jGH||
zuqH%pk5oMgaq)m{=rLl#?A*I;Jrcm|>xWeFay4jKs4%$j3)JV0V%gq@Ta($qGpG|P
zG<^9=1p#VCV@*3#fIAVm3hThc2)K!@5ixSMy%8|K1+VI5iN<qeA|yC_(N|lzZF_m2
zE(bXjQJv6SiDJUFb^1cNmsHKUwo~~|sC<Q+>`|MX(rBJUASbq-m!Qv1t`q7IL`VzW
zjivIVeEGpF7?i=hIs+?j>SuDg_p2|6Mp^!y&%E-We-;w;)#OXH#Dm>UA%-V$)dw&u
zJNQEa$6vuRN`}Da@f+L}P6?dx{1OXm6wIv{vD+)OP{+pJ2RYlcQH)~hGZ3%CicJNI
zZ5CyQAM&>KNrs8?Wm6PpcBEH85_qWQM!ncoL%M09FbGV2utBPS;^o|&Vqhw)qCvho
z72<q0Au-boI08xh9EU5nD)NU(PDZKD6{{_*aJCAoj7#$ryk|+8ey(fEST4#eY`fY%
z5lJ%98t&5~Ss*}y+_$lG`!@WL1GqOqG#{W`P7`hMQ*Ab&rxq)Zg5F{~?LcWSA-1V>
z0F@T3260QNOcXNn1)`n*#TP6U++ZPO4@Z!p@>qk29`&FJ6;nfu_tj+&0!OE!);%TB
zo|OO(+Pcf6v1*>9f1@5w6mJDFu80E2?f_VJEQ?JXr@!A#FiIMnG?4eTRZsh?F6ufg
zufLt9?=NG9BABgo%YEy&q_OJI`{}&?u5;7aVMD~uEd(L~Wlb}MOXKLCZL;#75x^*U
z(OWnJ!6`+XbdPOT6W$Jv+hh_MM`r<Gw8a@^5)6MIC|zWg_m0jpa!@%JFdsMC{M)vl
zPt(7VLfNBVQ)E!{axe*EgYzrfm!(6Qh!SozKrDj|9%u72Z9tpNsPYNSfQGAHg%6Zk
zrk7gH_nVm;nRx)rhm@>$o{4ny%vQ0^N!kQ0hz6<~`f2-TlZ+XEXQa&oYde~}x&7To
zcFeC>2JQ!RfAzasJ2S=J?DglF{@P<dY>8`LvwAq4mOveVfQF+eP`3<;Bn3z*$We$0
z@%Z6bqTru1O^C3!(NGi-Wqm2~J%E6P$m7InFD6<!A}m;y2|pbFJ0m*Zz_?^mm_!4h
zd!(DX2ex<9Y+eU;F90+y=SuAF1X@Q6AbecCN)ZnM{(%Z>pH0I81Kn&)R9rql9d5Y_
zVd+NetZoy1tv-}>JooSUQTE~JGO$dzqeuSNwpPGX&XW50cB5-q#A_s4oDu8;GDhb;
zUHq}R10O5=**#cbexwK{Nc(ZX*G#V;(_b<G-gS?oYE$CIdr{#c@U<{#AN7I*nLVu?
zG%pnJG)2j7P(dsv0p--!NQ@wp0h+i`nz;Y{9#{@WHbyl-V<NC<kja1??6(DJA9N4-
z7|ZVD)qM}<Lco+WfJcSsMjTTc%PvOUf)xa~&IoCgTn+hj))G@N?q3<Du`}&ii3`_n
z3jqgs-H`|d$40=*Sw_CY0I*2Y)_nig41jM|G|af1;LTwfuDh9a+zyWzzZ@iXj2ejI
z;`r~+$H+*DsMq3f&}QbVE9i$M{BA^xY?`0`1?975?hwbX2Em9VG1FUQ=R2D*&gEh8
zYVbtody3Zp1ejKPV>(eN-G2tcp9!wtgOp8Oidco^s5xMVvdTo+XsZ0hCuZ$Nv3w@s
zI5N~T{K*nU>H0}scy|0c{b2?mfng}=%QZC9OPFRXtiFwJyWGEGv%-^Hp42u}N{qTI
zGhdzEP(ec~MtJbdUKJ4U*$Qef7%BpBRw9P;ThHL+!Nv;tI?R=5UgR8BM9h>QZ=|^f
z>zE~$5RGqP4NTM#<mW0D6^N=qMDSXiS6dmN!Q$6RN+uEFw5IZ+DZO%;O2QH0E|o9p
zuPdl97O!Udm~}@?LSGR#79RWN6LW5<mCcxu{#?t*`kD0fXWkC>rp9sW9O_OE?#`i~
zThYt(_cOYdoh^Ij2rESB|8R8P;Z*)_96t+Z7{@+1IQHIq<=C5JW+k%_zDRa;j=eY8
zjulxUWTj(|RA#oULdl9!DnHln@8{3wx}MMHx!<q*^$vImu`!1w2=mH(N&9u4>SCA{
z_QhObKk#gVmfa;K3qzJL1eKS6rHZlo@B#{Asn}BtsouCTM@pu^W<@{oif4vthq*c%
zRHuZvnAc^z0Ud2*2`LnmXJK;dVVPyNhJ6ZDwk&paRau!ov!cHNQ?7mi(<=Wxvb*IN
z)~INcH?3G${R=kNDY}u=+Vr3ek2>P6%BHOmtM~1w#Ws9MY|Q6_1t;Gj?^@2$EOJXM
z5&*v>)!qNK+YZ{=!6&oU?a~JiLT8jHddTBMjM{_lJ*WG+8EFI;7IgdG#jS~9dxync
zDKR^X#}^R+9Nn&v`Mahhlxn>N_FjE0H`{WTtK&C-J@MYZUqmU^3O!4hEub`HDPo&T
zNj)5@shkH=t~mR^D7gFdYnOdX!R>;m;xb~nkbPNA*faB%!ta!@EXsFHax-<5rf-cO
zKHsk`BpbNl+~<_ig2cW(OMYEJ8e2|&EHpV_4;U;YzH53h{NZXT>Q`<Z*<_u@?qsjU
zySN4_?u<#|#(R)HFYxkEf4)w5qnW11;zl_{oVU7+^ybI1%E#aDTJ7JrC6E3-Xz?Je
zGCUE%0LZPdpldyhlQZKWD;ZLyMahQu{`VYpl{USeHgME<G37*+Xx;sTJC4p^ZX(tR
z!)8IOFB2J!3urxQu){jE8C<64Zq!XvT6)<hZI=T)FUKnm%$Rywo`+$`R~YM7I^xgX
z2C|U{_q;6d@zU}1?T%<)$a}V?^1GO|Jd-qoNwxLUmG{7Ya3rjQ4xiEZ%+;DSQJBu#
zioGZ%&344Rh-ef{pju`<blF3UpqO8uU!pE9*Eh1Hhp)t>M*GQre}f59*Xc+PZI6OH
z?>)rnDw<+Knf<glB8fi~czfQ$APO*jwEbKbOyhGT>GO!$_Z)WK(IS7(xzx4QZ|JGU
z)NcFPA9Pr86Eek>;p%TLQLC|Ws?6eOeq!ennWtmf(u%Ua!)B3~$lf>SGh;MOeP3P2
z&*?t@i}0OroLjzpwO{;e(hS~l7<Jo^Q8kUWDGl1{xBI#0^Hb8-Qo!jCG<T)=yMq&0
z6I#PD&>mo2u5k*Jx1cm!;?r=RRVtZXbBz3qe5LW1`nMyT@^6P#3b3gc$nkeh$PP`c
zm{oZtQP(u3l?D`k$m=4%bJ`2FDskjtzw<S6aq#Ns-TcO5k^VylaG?QcDJ-4(o8<Di
z;7{VM<*&^iiE1nD?0hMI;l(9%yw8uRX;wrwS6=>IomN{bdcM+#KbP%4*OX9Qy|uRg
zYW>^V&&9v%=MO*rdi9a4<MNN%2HB$x*gEa$s}0&4n~aY(<2N=~{%vyI*qUG4<m=lK
z`?pnDu*Kr?H=p|Nh}OTo_i#Agyk++)4+G#Ve=GUulU?5rq%S0)OEwKn=RRHb46TaA
zLF{@6w>AtFV#q9~U@^y#TT>t@9Q;nk&H`+&<ss|65Ez<7vGfEM*GHyy$H?Kv*Y<y>
zNUG#yqC8*u=VTH>W1biCJJv;(t?n;%h?5lERSV5qBy#o`29<hV4xndj*=O(Kuh|w9
zq$R(Df*o@l#^OQwK3`tmIAMIe-TnTn+s{O_#(~?XgZ~iZQRmP{=4`RkOkcS@3#3@y
z|3clI@uXF!_}Q0Qm)ZSXimk+%&E*G~bI6Iu;~x}_Uw_gZ2(${ms6*{+a?wPk^U|@O
zWpZ&=Z~>%4C0+>(ma~hLTzAkw>@f?Od~T^50+lWvIqNx<q~8z7`O{C?A5ZWH1gfbM
z1Y&0do^e)K<o{TD{Wp8!$Ln>gKc~_lONB`bCFyUnNEs0Gcl#p{lw8wAFAgy5-aO%t
z3mebj6nx?3YvVX=`wW8~Z;+nyZ&xN(xLw`Tws|!WPsPH2<IfoC$Gwyn|8b1@{5i>_
zl|TQ>HKy&T(X1`jl0nIyF~-}XNSWKK*rwej3lE5)Vu3y?pl*cm{UflW-_3kjUf=rs
z<?!^!?|&c)1Pwhi8z+x|h=h!Sin^Abk-+YO?QOTC&J^2Rx^ZH$wpB9;1I-<3w!-M+
z{on;TShOlJpC&gAE9=}#g!XTHkP=XpF|v4ke`+rG=18uJ0*R19OF@nAm(0kx@#r6b
z&XKQb9?vLhm7qle?qtaS=NXpJBK0nrzTG_s)eq8PS7CC;HZu+)#fp`~2JC`xV}!?4
za4S48ItzKNMv}#C4gi!N9JCHyW!U!X)3b0|C31NO-F+{@pkkaX5+c6V9elL)wmwAS
zW8b4I5VdiweTUCVcY(0x18fmu4>g|YBI708z)OM6K;q(_&`IV|6G+X8TY1uGnhSuN
zGqL0GXXJ2$lKZlBR?(!pYIh!t@$pFCA9|=Rl=6w;kj92<U}L$DJ~rL7V&ZsfG@dxt
zq&bpwfYBgj=opgE$5O?Kez60!X2@IZUeLB`=tA2(sH_#zWT+9JqprXxA|6a<OC(Tm
z=M$q4)Ec%f3+N9q3Sb7{djMhRWhtWo$ytx`uDM`z=*<lR0A4!8W$({u!>tv`)hnqD
zl*H@n)AHB@b$vA(t}ugP!JR<}#MrlhC`3EM6d|@6q5uGiHDs)Cy>oGi%e`}!vy)XB
zJN1cAAn00xDV&dI3){Q+ppCHdT7)3PD1lM#s35xNeC2h4n7m&HA7Wts(x_TuG@X5I
zc|3PvZ3RL3f+)YLpO3N&?@lm{HyKmnrr>Md05M>KT`4%!y76xG!t%2F05YpD+V$1=
zJ9@PN8{=?u{=c+UVzeW)`aYe=yTd@SX6G-WR$u6R=nd^ODp6MFwQ;Q3VRvF-+yPS{
zN`XnBYa`F!<(O8R7|cw?Zbea3_t(~yrk<m%`Mv1gw4bTk^%K|1%z1eN#ZAhFV-N+S
zHnJZPS9QfBtms>{uV2Qs{-&<)+4x2j6Fq&FWFvP=_`Sh^J^N(1XnzY1*AqkmMGSwA
z@(~x3c(aa_5S6F1R#D1$@lO3z1p<>gGmL+j6X!raUJQUgpD~hIYnwIGVsCdoW$K7}
z436>V9g_Zhncpr&$57fCm*ZN_7&_L9dt0vNs6BKG5ikHn`#a0)NiV8tcbT+p1~k!d
zYF>96dCnu=np7P}wX}7nyxEkB&Knp_Zhj_*_RVY2M7#CBc<H5sIO$~kYjCT3zoxRZ
z`%Arq$pd+P+fZzb-~Gm;@c(2bbCIH+H-<FhCN-o%U>I*q@kz;YM;#sF1hC!-d3}II
zuwTW*e~gGRP9}dp*pIghW;o{Y<MNps!D!-M>s>_1{?h~Q6a_!x6IlF4m<-HY*wuYm
zWW$3IlNEhfBsFw7akGFwl*a9a?QJv)N<q;o9z|D-ArtZJpYNh(GYjm$X|n-R^GUVn
zs7L*OxE7<sh*rdc4K=bXYVpqKP+(P(K#VL7BTKuuPQmTWwVa59Lh=0w-KQWr;%B5}
z4i{B{YYVg%LbuQ}0EFAXsTq6%0wl4Nm<O>Isw8SPI5otX2!hFyKoa`PNOK%Pp^sM9
z?F_kR;jSxN7vTRTq8}lNB+z)?lM=@FlOv~SP^3W_@kK1;&q-8j6*2yb5#@eRiW;`b
zIZ5$y<Uvb6NLCsE=G;VnA~W)uu&j{It@~p}{(Q4aRvSq66U5!;6R(dOBa$%*lfo;A
zAZRb?vEAYTG-33*z!gBQzMR&UuVwW4mM0n4F&3(uL4NgD7m+Xc8HonK{6z<nMJ`Yu
ztE%H{zm+?Nv5|^?G?(zp0rIlC7BnZrp7Qr*r*$OkwjJsukZT)}nF(i?W+0O~a)|NE
zR)h<35`lLNOXlJerQpV5sx<Z;@{b`3d=QfyNk{E(O}j5_<UNyJAzLlXo>J+!Wa4mK
z52R|00arm19@v)y<lAH6%`i~&^cFx-2hWr))xdOMMH^9j<s~i;r+m5|RU6@nHD}qd
zigC0~&?!kUN$;LlbGJ@#z9nS$#{0vI3hM`rZ6o60pP8*NM{%!saC&5gA8v<!CzE+4
za{Kbj!fVivpnGc?4iaSf=lOUrY7c<GxnFk_3O5i;XhZy!m)^L_zbIVu!ISqSQ#HJm
zpoJ1(ILVh)pgjP`Mg#ZO#PY&`d`D}En3Sr~%F34f%kDL?|03?Ktb-If2iU~}k{$X#
zvMO{<+!DWE^mP@)^|NcHMEpVhy|u4jxVsnE#6x<%t{olP^t6-4pcD7(+^jb0VTMQ2
zWB1lUT_KR&k`W5WuPJcbA@P%T(TJjEpoFyB>+oksTvrfE3@BQmAATdpm;D&n<>k&q
zA*cbHnc{U9g^;2r{3C>XTrR@%s{#uk57X_Qz;5POq5TFL3JF^@J=Neqtr}^4;{@j9
zd<l7uC^Azb=vS0+C4xgb^L%S5wrvAk>eBDj@?_hwc*EPo6R$|E<8e(NML=d+B`Q{v
z*|i4aLN=u}>n2@^H=^IT*%3^s7bzv_qb45#zw;R%6BrZ3YK{b@%P!GR`kky2MDiur
zN-0ID>aE@ZEP`5*VpUV}T9d&pXN>m6pX0|5slIwiOK<#niFh9-g$M&HzZq6juT-9&
z^L!>Z66Nvq0_o1%Sm6;H9t$FZAj|~@K=IbAP6ES*yHYA1;!f*x-ei~%HY;R_Au+lP
zvmz~6&7Vtv`Y2E$3Kp7Jh+?D19mG9?(r{{Nj4zqr{lX8e<n7lN@dL-B!ldcoH{+^n
zSdX7c9Kp>GUK=+E2!FZ!FeD#Laxw8#^zT|8DYOR1Eq{x=N4xg*=~hmxE>wa6z|r3)
z*Rj2U50}tgxtVdl=Q-xY0ZrVvdKcQY|Eg!W4Nt^YOh2>s{a$qC+Fa4kj}gyI><w6=
z%g^YyZYG+DQ@Y>y{Kr-zHzbDlnh?ijfEcBpF8tSri7(KKW=-HeE2HTr+xY`PD3-_Z
zGXg047(Tuv$I?NHo%baDO(Hmg)6rKf!8E@A#ja4YJ~$g<|I+kJd7412IKcc6Iyj`w
zyyNyhoon4EJprPGxwT)f$MuyV)n>D?Ikf7(J3OJG(O|{0Pyyo-UF+8w?^SLi#1+&O
zOD?np^FSe8Jx|ZP75{!CQ$H1;(0mk}uLX6+6x90b>3XMoY6(1#nV_L^jP<kFdBPaV
zH}%l^>)gX@d28f$8Q|Cb2YtNj+1sEt02ra9_-^Iskz%O)A(w5jwR~o7qwy8|d^E|X
z^xITY=#V;eT5(FRKi@<%#lB7zqO>unZ8fCh4)G3%y4f~ZdNO8EHDpNH|8MQ%i(E~u
zF47PNvjLgB8JZM&z;0d(NRk9xap2?fy6ovY@t-~=bRDxRCV;`~Z{U8KhzUxHAGiP6
z0g+oDLl3mnp~P&YGZclnaZ86nI@S^!Yc+*QHYchS7phK0tI2L$v2W_dtTUrx$|kkc
zR-?6XF*?o=b{`1s?~h#mOV9}pvZ!I|Rw9C$z*OkMe7XU+*g)J^GRt>BPinMG>LJj0
zKrRO4PT11sf~)FS?NR&g7%0glviWVWPfQ*H(l`P)l^C{wXjg7cT}$j1gDLl}4>rf+
zHWV=Q`_*mHi7n1hn`NDT=tXuIF@Cr}*MF}9X@~YHp76myB$OwUR<r$xao){wQiuKF
z=pnSEUi!u8*~QqE_>Up(xrFbN40YNQ8n~g7MGVjy^6`&Tb}t}P5hL|wP4Us7t1Njn
zU{T{wMYdvP-n?5lgPV`L?y$%08}{f>PebV&m6Q5zfmU&naU(tq>34gVxr=FJq{$>e
z?mv`RYQrj**kdBbDwVi*el<_1mh#w&=^5$k1xW%U6^WcU2tCPAVLJX~XX(mZ2M#Yk
za^#V`W1!R#^G}UM+n(IW#?Xiwk3EH1PmaQRvCsxRA8jmUF@@;6Eh~#pfIl|i3-oCY
zK&f%uq#}_q$Rojr(cFSbdc?Gzl#rtMhRfM>6=jnyyJQpf$rUxuKFPQO8CCR!5*K&$
z9|CIjb+59CCRkf)(N4F7V!l(K(c3nxH=9!P#;Xf)!>OW-8`__dF?<F228@MkaXTf9
zkz)#;=8477@>u>4fcccUF%P(g?YpRAkE(@EgBekNXKu~ZIsS}<#cb`wty_t?bN%R@
zDRdRD)}9A_F@WgFzc9Ds@}q*W`7@yNj^8rDol3(KUgN<aKrbp#ZG1<YN_%O~05KGA
zW%DVl`*si)Df|qwE0=vUFGg)`q>solkZ9`@hwK{~wH+EYYW;LK+`=H|mf*O+eLy_2
z6aR2iK*J)1`K&s7h&@Cb75Uqxo_9&~?2}A8JVv)4ZtNMkJUj1M5Mhc?p4-*82PW$F
zU%5B%iTFRQw$;EZGt`7m{G6&8$e7sjF|3J9LLTpiqGOWY?cU2`c+@=)a71i8*o)5s
zrT(Zz>eR*?!p3P4t#-OR$eQ5pwPgmg<YnWtuC?bWo&@1%F^0|xiu*q&fqBx}dExtc
zY4I1$hLLzIV$2HB1%#IGmev)9Rs)C|DerbBjlJxMaN+lW)NB`)N8Wow8-!uf+sCD;
zl&UKMPK5G9WBR!m`XPLaXsvSG=F6ZIMo9q0*%%9M55QaF*IZV+zOf>RdsbQ(>imT`
zaJNwzQ1Q>CVdG1B!n-GTChz`E<|LmaF--Oc#SRbwgBji}bSeGF;Yz2JA|n2ZxGXG2
z`aFo<f1gqJEHFM4kU~-wY30s%Sy9I~&<|`#$#r^`cW3|6SrPLe;bIH!=~eG``>)31
zUtV%(cCw1Jb=<pt+PiM4MvaX@m8m`CFOwF{Ok99E8p0Sp549`~=}v^Pd)hsPH&7E+
zr>HK+?{I)}t2JweO@%>!Q0R@_39JAy)O3yTPScsbpvxYbVX2&`{c+Lg+Yn*0B6@tF
zW@woZx~wr`)4;B8I@!C|m!Ay7Qw?oFDKkvoo;xffdFRqhM&FsN<%mkS*B=xlvz#@g
zx_(3Ie_MRlpwCC$L+(=~4SCawBJzF{w-|o&B`)7vWGXKubzs1lnsl|)^sGmEXcfd`
zol%V>k-SZYz><gH6pk@@pB<Y8XKSn@3xE=@4Vr)^ZS5HOXrB>BjoX0lH$RP>9sm?+
zb_&@Kja>~^MSt(5GwSoq!-0>a4ct*t0P_?s4E|n<aQ6TKq1dRC=6l}zW&cN0!H(a-
zK+WfW4pQ*+y;I-atRm#%dyNemheO@N)yZ4`sLu?|P)wiVPEF|}CBDpvAA~oFMT!L-
zj_koRk2*AeZSfvWNUX~z9=_AufQxFa9^SA&`peKTX>0af`g!*1f2Q9U{|<<=96w)?
z?mr(fkS-m%??ecjNbog0Bv)8)9v_D}lfcF^G;~>9E&%R+`zwf}Ig_t5jB_S$C<CsL
z*@>JXE5@c`Nz?_yy>fL(+DuxmY0-vwM9vhf8kyefXWe-WTQOlpQ{CC~rzxO93<1bx
zNw6-!JzF{oeRIGQESX~fD@lv-S#xr;q?b0ZXCh6|F^lW$7_j)BIsW7sl?B%;fB18M
zNQyptkt94_kMey+oWU^pqNJaA3nw#x^A|0q-A{wA1y-J+jqitV?jv*<=;t$DZ)U(-
zG7u++G?gS;zUh4QX@6z_N4h@s_o-eXIv%AN?2r`dCLVP^kdIAM^!*9SA(Q263r!C#
z`Z^}n(7mz&GCD{xfs44W%rQ!|Z1)31ilrs4b6BB>7SY*2`V0$wT&uv#Z^2DT(lV#6
zDLSweFd)@;-Cc&F{yxPERu>n5c)+Ly170ID!)tL?V^T(&wq=){UBN|Tpn{~Gny92S
zdrEo>)TfuTn?0MD5Yr)uyWFRH4p%#Ru?wV@$=wr@EfF=JQy8Z+qb8};_rravBBMsQ
z@n5*C7!*%-*y3eXvt|8oK@M&GYH!AjzspE{B0nWWV|Tx6nAl;d<{r;DiGQ=0{c9n~
zQev8X6w5mscAUk^E0=&dleM0eTWh;Pe{{5TrvFMnS#WN-K*D%i#sX}anh+G97j$zW
zTj|vvIO011Mbf>b$NrkZ-OtgZus129zq+yAc9hX>My_XdIb#>{BF{AzH@a$J6vyOp
ztWQ{0Hj)qcYcs;fX#ELvr)R|qsAV?1m+17add%t$^L&AP23XtCONGQXGk|X95z}WB
zcSqkdV_Es|qpyV7*}G$WDcD%909VfR`q_J9z{`KX<`NI(Wo+lYW`D$D=fRB~x7;1Q
zZ`SyJln+vPX<PmE{)(p0C=l$fz-7DZo~`g-;u9h%myt-iCEwPQFbborHDvd4tO}uT
z2npK`c~rR^hJd>YF}W#y;GF!~g=JbAC*3QX!<$7vmauVq*7Qg#G)9K`F=E0q_k-74
zkY{@`FcJ@+)Uxxs$j{943c!0AU0fwrb_SS-CcOwv?zu?jnMfMENSO^yUFp0%c9Ht^
zBJF!<I;U3JWoQQCR|b6;8W5Jr6P6|ND}^)6>FlP^=9331VDgxs5-1c}wJTDQRod~_
zElj?D&O!w2*OQQJiq&HbHM~F~x^T4ru~=9X6%&Q_5-cA8liYV|uoW_3bxP1Z9AAWr
z#)2n*5%uITF{s*4U5PiqX}9vhe}2`oN53+kE?0=Ie7`8Bh%a&bU1>Q-d>>Zc6Z_OM
zvp9sb<^J1dcL127oCfW#iRaYG#6G@mXCBl@|C_&7`x}<?yY_2$4h^t4l?)z<g`?~x
ztN@mW%Ce+_Mlj0&%uZZi`6?*tN73yC=K?IH_EI7~I?-$}S1I}l?L_Iv*ePL-khX$9
ziue$B3PF5$ooj4Cz(AWwbYX!CFO*Y8yXRqtie$r5*UMmu`RUJdm%!?t?iZK;K&p&k
zNLVibG525q4Ay+_JowS5KVr0hVGSNc3KkT%6jdE|&?s43GB#8lR8hr5{u$SbcngVQ
zen^U58Q^n|r`*eJT}T<*w(GFNi0?%7T3&|OU2ZsHjpeB*eZry=B5u`I(R<mOIuR^d
z|7*F7l)XM)3QEZ7wcht!O4|N)b5=_?9`#s7QQUfn#{Ly;z%IrkYQ_edFZ7nvbx0pU
zE4TF#`gWrg1=jg%SO1z*R*H@;TWvqCJluHscVpLzV(%F{o@G~7i;SejwxoLAL4nR^
zoqUaUn7Djzc5|veWCrgrF&#Ya+myXwHQ~W_Pm#^<Vj0|COk!NAt3_XsR)G2jz#w#1
z%F5n<j)y$h{n39WCc@8`$cE@%s#}onJMA<!_O<cE3|6lk(GXv<m!8}%{?UHJZ?*4D
zi{;p-8^;qx-&a6slfdgYc?qRBFJsekV7vTdxZ!u5QNF&UL?66~y0kRT_Nwfh8?*hB
z@OK-ClqDa`^9og!chB6`<3|e?XbGGp*m7r5k7ej+y1G+{(b2YWBWSO`(_BwJjhXp8
zQYW>?YV=D*UWsg<f_S96*%I&pzqJ?+STAOj6FgOg!&tnVgAUIAK&Tkm`NZVZbWE&o
zdH6nf7_0Vnsl2g$P0DNfdO^kBP6?aILawBY$xO_2X&LfyW_eV;XwTyG`43fxIEQdc
z)6|y?4S;zZP`xgc#mP}mZ?(C@#+<FdOsj1nYm-Sp;qfkIA*I(`gVd}=|8O&k?}F0*
z6j_lH(t>5rI04d*Pz4rCA{hy;EdLD(Q<HXx!;;LFaTvu+<7@bqJf5qUZr0I6jN2@4
zbJ4&6ijp?9671g62SyB9RS_hQi>rXYGmgJ11=2}-DBk{3JbvG53MbW>%U%DevL#>I
zFas8M^}fOWmX`J%Q5l6C<zUWLjfNu6{1NGU>BY_g?lH;ygd;ke)9j?}{_J$s4^hLP
zGHVZnajB&Km=tQXViiFso1d;v=C3!EPSm;p#k`+9tNod$#XAdi=A@KbEP~QiQR$27
z_m@&l3*xVE<AE=9zRWk?9xc6f8GN|b^}hRo2y+%#-0;G+d`lYwLF3Togk}PqnY?@0
z*&IlS$;~s)!EXZ@oUs74^TqoTFzAq?0h-~%WeSN4o#7G#rf#MHCnA+9K`fdHL^@uZ
zP!081r-VV;`ZSU^fP%|iLo?@iHeH?N5BL}W^g!dI;ar}8Xy)~zy>eRD{C6tCBUc(j
zAQsH@RxG{l$+Hx4rkHPie~>uAI8Zze*bPMa4^&@)(8q6p1An3?MKfw!#|2{TKjTB~
z6|pHo`m)nx4DpK2W8`owJWkUFT`~No6=Heg_W{__SRwmt$Usnix}L%4QwAN3!6pG)
z!mRJ_5=%uf)>b4$A^0DJ;oU6vys2OtQj0~_iV?@`7%MknEs?w#qw3MTk!9`h@Bx&D
zeR1RZ>Z`fGcq=>A=BATO#4Jh!7TZ6?rARc3W3<A#$jFb1-XDNVOdeaA4Rr!?WF8pH
zBq<-E^AfS<sJ1E1Jl`Kn(wd>~JI#K4d%2?dA*k(!*yWjpL88FZPS<3Ks}V&vy8-&6
z*e%HmBAHZt?dOFXamYcqXz1w(AD^+jR$Q9Cydjks#@VVkRws#>8^tjIwO5WklyZP;
z9Ydyp_H$v^V7F<-9i`@cyTljQAaWGnFF_!=;VTh99Iavy@Q%le6g;GTfq%0~@eS!0
zZ|%3N@(hr0%y;TKVE<*S^m=Lc!J9=VHZ-3i3a>dN1R2$PlEwjope)W#a4bK%t~aYJ
z`nGKPMt?*wKp@OIA8@(~5dazyZwxg=*On`WAw9#Itcv0y2(WZIq3S!Z@^tGiR*mBO
zkJS*f1oQs5{jLkHv@)?$dM9Xq(F>o)PC`2^qqi=XaDdxn0sU737J(CAsohef56Rb>
z_+#$oUT8m};7F9rrSLc!q<`Xak~yia`6&*g_Qj6IR0<i@uL>mnSN<QMI0AO^nLj_)
zYch&?$eCQOQ-eAx-mMK~^3vIv!$(zvnlJw?tvwF<pXVmzRlXJ_R0i+8v3*CWCsXRT
zLJZO!giMB#ZBIywGn4akKIt)34^&hgDu*P-6Ux!<ijaWGH0o_^|Cs1!9yX_PvZq;t
zFw|h-?VJ;4O)#2n>uD?#H-U^m`;nqM{|U=TKw9DK3NxPtP$sX1-!Na-KT1oRx0om{
ztO)ri8sF70CKju0o6l}S0H~!61eFnaQExCK7Grf}`d8nL2$~~3F=r<!s%I{oczp=2
z51XTl1_{ViMlptB$i<q61h}>gNjP(I;n0M1*77&FAAx|Oolk-kNYEYbZOCLVJNNts
zHs{%M%B(p}nkTJ>^96xqn)FnU4i^)JKr>EpY>Bc@wy*(!7lc%lDLvyN?16AATe>Pg
zqHK@MHgKx!3gU?+Q^skB9!GC?4Z`VoC|1U_yl>5dpbblvbj>8QP_8A-qh?*+3%3%J
zGaNlTbCRrhW0cO9n3?<$-aa|n3jGYhPr~8m1I}C2rnPa121Tjw8|7r8i(Y@Ee<o&8
z6Dpr1Y$0{Cvt1&;TcPv!mG9)U25i=4-d7}DnMDgz2o=xP&#f*4Ityxb_)qG10{0{z
z=~&k!ao1z{hWS)ZJ`i2qYx5^oqg7?e=#Vg2V2PGK+aBGkzGu&~aXC#ku>b~b$`Cy%
z(ag?^>0OPy=i0&t9xZYuErqfVH9YFAtzQmSJbX(_HpVVU^frICoD7RX8{B1AT*}jJ
zBBLTTrV9hIOvgHqRJo&dPT?`t*KGEvj$dGI5qoqXW%+%KJBuwIL}9hijYAz~9Sj2K
z0*D~4@P4}rmH5iv7A7HIvGnd6QL$A|s+L^MpAXbkJX|+P+~qS-$WqSy7W}h^7JBs1
zPZ-RQ04byEAr<fV1DHtG)UKTjf=O3Na=IQjLxQm&up*AinUc^WaV#DxQ{zJI&{9ho
z+$_)ycku7j5tH5+to>nb(|4X`KHGlypdITP;QOGT>PHI?AejR59ym}kx$5dXrM=po
z9vq?*L%&#bd$`kiTn|gg=B(WS1hVkNm`i8BaC|F!;0<*dk=~p7qbhcf-%x<89u+yc
zO)cRyamW{|KNpig6OSSd+n(r0@od*KfTFY{U)atn)0-g+bz(^YY3%s5zgd96H^V_s
z<z9K2(v){?hKXy@tfoqp`j>$v2{d6+DyW2zIqxB^M<<a{wE3SEOKnSn<d#z(O>jXj
z8O9$j?61qy-JH+X(yafeL~(V!3`!|rJri`45vBf?aHBfkKdhuS_BM*8vfflaXIN6J
z+aPXPqr-y97M*yjvPxVil$Qy9a!-+uDP3Ps<C%(-AFg<XL8~<Sbz|evjE8vtYhf&9
z0{OAYheGhE(uD;>Q|!H?t(gRI?IEC4z&~pUIR`3g<dPJSDd6borwi(Jv(ZpGVygrb
z+Z)XYGPB&kRXtoVaT-RQ8`6Z-98wyi{|Ts2C&3sy+tJ}18ccNPk2QzEHP<z6bvN1F
z%9zZaKRod!Uus}$_QJp9F3;gf=${`;Ja3La#`Ast_3755`1$o*F#%}Ne?#Owi+0!_
z-ho=MN9+I)2VLe^<`okIStrld5%EGg)RUDa?kMf!Kc{h=tzR=O%moP$y9_5BIeZ@Z
zT;sJ}wr9Yg{Ikxla)gS;-KZk&Y0s<K#q(-M!uKD2(fiEmrd`rbi0&s~F#qkm@@~>|
zbSR+*l?Le$V4of}dlVP1Zt*~B=>nM2$82%Y@%6FDC3x>qdLK<KJ-X&xJnZk?H<;fK
z0xN%2*N#1({`Tt(XulT4G5#w(<Iy(>L+S61aJHG(1JSRNu2;=N<0lbhA05hu*aYgM
zNzfb;VL;gd+Rhc;E=M3xVeuFOLHC%PnFOGy#WVSfMr`20o&ZksoRjVX=oCH$N&DTR
zhZId<#sL|wa6mfGQnS50s!lw8J{J?NlUz`P+5ZWdn*@YF-t!eKjOeEo?WaHBWOVO;
zaZJm2A-)4<ABf;!3GFqjjhkT8+OsH~vsXu932<jE`Bh5JFu+SVE$1d4X+R6bYq0pl
z(Jtem$gG2Vujpz4JPdKVSPc>0I4<arMgv|GlB0CMsS*j3^U+eM%3c^y55j0tN)9k#
zHL;<<^hA6HZO^G^;t$UOJ<3%56g-1Df$9KDd4bglLg)q!nPLHk4cDgUK~z+$Q!nV2
z&!9pMK~cMP<bJYsae*zNRcTBIJ*UCpp6Y&<>EVNM<E2q&=|?y}XE@2A!;N@BM(M61
ztNx=L4I=6m{E7iVbtqB8OvoPZ<!3s)Lww;Q=+%A>ZAh^c;ixtK&T6c%W52fcs|{y8
zbKc=tDZRk64hOI<PFp`Th1d2Bi`>ytryS-r7W`Arl@>V$gN$b|j3equ_MKS2HzbfC
zMIJJ_DUq6mR9!8YcsmNuoX^GF#u@*cF}+&_o5)TB1>R)2p^Z&)!2*3`@derhwfhhX
zR6_LuTWO@G>m?}{Z(t;dFR&sM@+!nSC(xo)Q8MHr5v1Y<)e|Kn-TnesLT_6gQK2GB
z=RWM36*9WOLv0go8-gjD4Fdua8;U8KM0@%mxjF{*LP+q-UhU`bG~kuK;XPYJUQfUZ
z4rpk|TO(^I3MlFEuYK(}ejdft*A_QWtTHV7MkPa}?awQn2&2Y95v6AQgAGNC?u0T*
zLl?};MPu>`f>Dz<qH?2=XX@>eaeOZWlNidh!r&b)-?*mP_*?`$?IZj|5wOBw7|1ix
zn*vn*3Lyo-`$hE|J>T69zn)~*H-fN|=A|bMliapR?-?|DhKy<ijgq$Y=X1b+(Bpr1
z-v9fPMpGAS?a3}5#kFcLNin5wivu1&2v(q2rPJtNMXa#lm!NMIVC+<?{|z~P+})iF
znpXvLn;3HEiE4j<enAXn30NIFos@{XdnN@T;+mF)ndHF8E7J5e+5NjW%3ub?@i&Gn
zRghvn#^N{{!Y)AWX)cBmz`RXiS&OExRwU=M(Ay(TPECupgDAh@sA1B4VzG3uqA+Yz
zN|<R$GIN^q_i`Sy^1iWIRb<J{&52UipJ|S$LQ94D*?&QR(-X_%r75*n(aIjJDvVa<
z7%MUCpvB&-I$s%9ZB9RT&Y*e@ho5E7nEhLU`cD!_O~O+<1I6IAs*Q6Na`SSZtjx%)
z&DE^4G6<%B=WwxeHr4a??eh*g*If|_RCxKML_AWGAi9kge~WP%o_Eu+F}<93Zj^IX
zoA+R}xoh&ltNMd?3HDa|2cP*5zMnq$oqza`Y{CDkk=loGAy97NzRp6B^}+*>o2EPq
z!LbXWxeH;{3*qfI!yhh0%r89rwD9PB;W3$Q{hI|m-(r;9Vzka;jP;@gYBA{<0I?qf
z$In=jGH9C@sd8<_76D>CX-TgZ5x?=8!{Fq<wgmXnH$gy!oh?GyPRt)bgB*ZvQ$KWE
zDr{fEznY^(b_eNK9Uc#?er5Zrh^G?-y40#lO-UCmr<IG@{|UfT6Wa?bsq6e9Pvw>g
z70X=BczPUx*1r#`2$cE;=^e@z!!Ofj*em%1=x|F<Raf5n1MX%z+<n%oWb2Tt2B20X
zP($l_9>n&ptt=(3bXBj2VSr56T<erW-&L$h)A_Q2?P>|gaYQb*fnAK@0?)89W>bs*
zQtoJikra5fG|jhm|J9uKSLwuGOG=*j^TjmSy|sPZ@}Zy*jU9m&PkwKb`pttF*etO@
zhn)Tb&xq|%+e_~ZO7QAkTYWf{1<+S&zO`yS3i~yiTkF98z=>!JWX2Gfoe669@CP2T
zUv`|1th06bIKSS?VcY|pEZNyCtsnk%5`(U9iaA|~ef%XCcOmz2q7jqgSw@p@ZG|O2
z=1Pzy;&GJkW;`~?Z5C$dr8&)SwalSDs+9}BO_LQ)$4i!f+qk9O>`Yl<zib4#%@zmD
zGe%`d*aQHnKTk7yvaPNpF!jYyU#;^}#x<ch>XM?8nIu_IKQeY1$vEyXa$X;4Eu5*R
zap0Kx25A<$bxQ7F*T{RWJnPZawi`-g%O2CzRYlq)gz8a=Ed~F!be}c!0|-VA!DcMQ
zV*$Hwz?_3q%qtnneHp~?1gtHmygyhCBm7ASufh-GT!!4$1~;5;pR2el2|imgkLp;9
zzJafie}r#jjnTKww+wg!tAy;TfTziFw4L14owxNc5XLWdx=t}2mk=#`3!6;iUtw=?
z{_b{%=!0G)*PG%ddpb7zKDCYQ8&hDX(gg7VP~bK{&9$$m31oF=ZPDS5=elT5Y)pf%
zlGb5`oF~|YV_W&6h<GKp?a#F9rQ^nnb9-z%em^wrZbF=-adF%!+++IPj?Oc_P3LTA
ze1QILl4ol0;_83@5({$J_L?X1B*D$LsXVo*(Hk*yi!glC^1e>Ys$^2dj>^+c3b|9N
zI-Jl9IO%i3-FWKcbA#^KKB_6cq@>SOmCK$R7rUE+)HWQ2U0Hi}y2*t$&o@-@9ia%D
zP3AjQh`}LKE849XTZ)AXgok};d1(TfZi?_d%5w6x2}|!u$*0w&pNqV_dXQ8zl2mh8
zPtX0`h0b*)Y$+bS9bogd-Dx(^^cFLhBq}qLj+psZ(W!bOlii%2lLd&OrQ<#s;8{u$
z;c~eho`Flul(;Hq4DMp|5>pWAr|Ww5Rop!LegVVQ#Mkh|9C?E$;UZs60w8<<;mB#V
z8=G|MiQt$`rk1aJFATTT^J(Ije1Z~HJuec&rtd|t_~uVC+bl6XR${voz*NDNFQ(<9
zlLB-l^Tl0!QnK~q-D401Gn#WTnuJTsXXV`kdgE+;99rt=#{9fba!a9kE-r7pU0lAA
z=WmX@JdR^L?qE7eBktpTHx4uXS)K&8a2o6%9Qr*m$1}HAOLy=egVe2F`eAM_v#^8~
z`h>CEEq3bKrfk%B)>O{mdylnyzkmi`MufrA<~m?>upZ#u+2taEpjO@%=Q)<*j~W73
zCuJj2g)~=*#g~l4Iz_o9w;U~pg7@QWm!kLnE^!U-cLJS>6+#eDUFlE~03v;elO#~~
zf@Zk-3@T2&+}Rfh>`Ub)7m^%D`++?~&Y%r{VkYMyfy4a|?A?KeEX8*qE)X18dN^IO
z<o{jyap^G&=kc?X?=D@5_B9NTIc1m;AGwONJIlIt9Km<bbpN{ts3w~;@$c+_r1(Fx
zjNqE%O%ZmL7j?CMM=CcI5cB=b^_1KN`MlZk>sz_;gx|&7=Q))s$7{yRJpcXXk#wKT
z^w-b=WtYBUV>Mz(A5n<3=eqDbm(__095{baUn3wI6AXXKmsI1ee5h}`d0t-?g_!jT
z;i|cM;bpU2eG~rOPnxe3^T4{0%bo70-)(jK*6Mu7Pge_m&)Xet-qjCohPXxX-;H|e
zRQ6PzM%YI)>OM^o%T{HenHxQ_MoG~?FXSS=Mj0Z(%Gz+<hx9xjPOKfMT@s@VuzTJ(
z;GY++nZYggC0o+!Nzq^7Cepp+4(Yq8Wp#PXVpoI0jlW}#eOj`)RX-}fKr;v5wry+A
z3LAYY_+bE1%q((HEXLMX#1A5@Oo%0oxoT$w5u3w|guUy{q)szj%rbH(S)&G*56zGb
zGXv6Z;1QA?^#&OBkwDSr1@>{*@R_KHmgf<Yx=O{C;rOz`ay`Awq}~UPa|Cs{1cg6?
zSEI6t>UT5sB>slC`~$UI!JAoFnn9O*r-nVHZ7+T#y_rCq81{5ZEj4p|m%O5DVQ2fR
zTp30bY%O~Iy2PQ7kzZAhr@oX^ZQ%##OO|XTQ3m!+X8fhPam>TzpABLnGE+iHZ8LK!
zV;bBmzlB5UKct(A&juI0ke1qB{Jj1L_&n*W*^BuUNlrqRgo@13T^VVuC~b!q{32H(
zDp&ah)LZE?SiQe=md{mW$kbH07PSBT`}r7yg2oS3oFo_vr+1Znhpjc54rdrGW^%=m
z+3DG4F`7thLW3~_Sk1Ia!k@7j6w5v|(>iIXvH6lONcuX`eHp}19-s44kHMy`HR{Uh
zr%T+^kzgyksy*AB)2ukfISjp&b9aq0X~4p2hC8Q1Gsanffm^<+cD&~zR7aVV7%DH^
zmKWaL+pT{uS>;-ScEGiBO#F+v8K7^-oy?G=YRs^G&$P6P+vic~4Sz1JbLME5n144U
zZ7;-RpReOVKa<*Iq`7rznL~D_w=Mkb+kuizN(}nQk2(pg@vE9TkU~8#%`Z8Xyn|U7
z&A1<o<KR{(f*^ixxi?X!=3R+u#P2`Xn`%?#+R3bHNwUu@xJ@dq?Y7%1KxUq1&&@3|
z<92dM*4BL4sx*E}K_5mW_wE4zDXoa|8ruC*)&S<{?cYzF9s;`D5VA-lZeL+p3j642
zMR+AM#ZOL|p3&dW7qV)w?fT_zm`!m<b5TA<Rois?)q@*UXM*_wnINhZ6tz((%O{-%
z`O!1g7#%ULG|rE5HJdMw#&m5(rbC80X{Yp2RlSMD3CXR#PPMT=-yOb=oulw?HXZ6R
z<o0v5xG&=VJL72K!PW1ozTf8;>;3df{;oaWxH?_R&_t9?q37LfukJs)j+i6CCyw{@
zB|EKR=uGupVws#0T;f>$#>$OMl+Ga_u}&Ni#MrO_0^9tOvc<S`;t62JHe@s>Pul}5
z*l*}V9Hp=ovOmO{D&qrEa17gzL~0{fDQF{SDQpNBz#u}HcnwZ6Us2x2LNq!)@ktxW
z|Jp(Fkv0a%X`PRw9v0=|G{B7Lu(4G1PG{vEX_AmYiDu9*J_;9paxk0`9WEH4XZ*pq
zvT>DXH^G~6il3Y|a!T{&<L(Vj2-KehO2>C|c|yi&0fXdFSv-(3zL#aUcmUQi;1s+i
zq~()h(*doPuuXdQRMV>YE=1<AW3?dxg&fT2U`X<;$UKN$qiruF$FxoBejWi&4a)#p
z_#(UdX{R$at8;C=4PrWXn5G+PE&qNYkri`qH?e)9-aKsi##DdwdYjxh={f1nGS1*W
z3V5&Vb#;VCo<mkvJPf-IJ+wz0-4~-{cQEpe=T0{c9Ou6(O9`A17CGliPyvLxHwiYQ
zJ~@haFKb?>?v_|oR~?`qu^szWv*~S}_0CgC#ahiKQ-sz1<i}0OC<?9=|D7oV!L7Dg
zDY><FET5uXTRL@K&iy8lp}7~c*Kn=PvUI~=qlK<0tN1luz7`Q*5^CecweEZx+jt|%
za{x&lBYYvI73iz5g8KyDb_tyIopSQMLbvffRN2<wROeauTN3zFa~zzo*LrI`SU^;J
zcG2cu%t7Bil?q~OG3XG<)Qi#5{^edg1hjHUJ-^=vmWcH0VV)+z%<A=rj`|Vu4f_Ii
zAA6CjZm(nZ;$LQTJ}z?P$Ud>YU2-nTn8O|&rG2G{)Pl+_J%apekM9k<`gcV`0>J(8
z5N+)@SlQPPiw&SuiYpJ%{v|wU?1SM%qKOqz4w(ZKqI912MmqywnvyUwz-F9bf-;~Q
z7pvffg&UzXc|(s0OtKUp8$|&5(3Aj$rv}11p{ZyRsYN{pBTpu3@GwlH`5@fjT%uN=
zkW1oVXSs>9X9lHTbCMMrOXGmo;-j2qaup@AyiXXp#&}bG+Qxw;QQ2fqCjq`fAUJ7e
zMD+`;z?o$~>Zc%sa>b~AD1_G>;x($d?j9hqSHZ;z8`n1s%*v^nVyi^zp&CRf`8NRM
z%A_b}Tys{Hu^Z&Nl14pmhQIjiidRslYofI6G`k%AN#(Q|<S-KWr1zj&;;|CRNE0Z)
zhG(DPMuO;xc%&)hsf<xDAX#;mZ_J8crp7MYTRa>5HgdG48TQUU>3;FfP@-fR?p;vb
z{gMNp8kLW*_n{M(n!7;*sz-_MBfs1)`*TpEex=kJ-bYD<h}CM)Bu&K#2bK3Q2x@V{
zrxOf=Di|7Tb<}pGgPejY(cfzI)ZsH3O*7>RN+hVMGUyh(8swtNW0dJ?kyCf(E~U0_
zEO189FsudfczR99Z-|DK%T^nN?pvTY2=tKvkS?~)qQD+fnG{rK)mW!t@C8pp2?DS6
zn!ybHtCkq6sWp6g?5<pX&o@&a1H3+cjJ0*1tmaL<{=KW{T^6=+9V0gAaxuYgWJD!i
zFgDXG)mzgfFAj~&mOt?9r+7C6(&Ha!R8Rt%5JNyZjZ)!-e1`v#U)Yt}+6eeJPB~K8
z-qeoiU?{Mj0RCWQeMVvuyV_`Q{V#cC)zy-i_FZ56V~c$W3I7~Ib$FGMoV}SP-(;xN
z2(avd?C2)gR#r9nJx^Xc09g`;z8oOCWevBZUWV3*0N6GB@nG#{z`o8}6|uVzs*j-}
z!{g27qwuG7p8&|k&5$=iWvtxMulD&i!T;R)S-CNwTa>;)h-wN%;xo;$*g#Z|;`;b!
zxj}BxcVV+4SIz(h#=2@TTUXujkBp|x&>F_(huJ*0fA?LyRw$9gPxP?L_%;JKtC<J^
zom)JPor+2~CP%V9t^Z){2QXPZ4=$tpBv@%o44YbhsE<@-X~sUNR|Dj^5kGzFeecPK
zdqaK}C)%e-<?t{cO=)Zi+!zOta{`>4IH&bTUSSNhGKPSzBRmq1lqR+OH3}2Y;Eg-p
z!DOA&@81Piazj{wGhi7?60<#nXBPA>MyD!~R4MPUESvN0wEB7RCo#72H_<i^_Q!ng
z$X2pWHZfhNMn6B(Nt8EHP05tCxF~AARu1*hO{Q#`r5Yyd`LLNKQ}XRkjm<*-LLbLK
zO+2Zx`$`$(TVgNQ4ifkvMSrPW-4UeMBnIIi8;3Xv4lR9H^P^Tot{!IrBfsKYguX^x
zgON#E)y$x|XV`fv&-lj_&C7(r@(uCDayDH6(B>6h8NqJ@?X_}%=J1OPj`@(;0>J9H
z${PM$;7tSbC{#01n{I4L!G>5g`KV3>ZWh}gv4dq6tOc^xe1JRQDt;yoQ1*~It~muG
z@-c#9`M0K^{N#*^8V7p2z0MZwJMOAMjs0R4>|2&c$1(JOKC4A_4hi{*vN$>pIdMh|
zUdf)2GY~<N$PZ1{?*gCD^h5ZXkHE5TE8_KvP38>jHMs{vUV}N<B211_O*vFva-y$b
zLbsJb_W#&|XfP|G3YiG+IhglJ<o3C|%4R(A94%h5m-PWcu`H#)Sc~C*F0l-E=Pa1E
zG$K=<%*(x``m=$!EkNxX)TF!7uU!0%X%W$Qs#lRYi3Eb^Fva890A_A?E|;YIMGEKU
zk6$Z$zdl7?54|e#b_I0*yhNqnO3MFx9#q2mgAM;VY%Z24?A<OQNZ4}6JsiP2DAIet
zJN@u}`Qzr6$gQ6oeJ%KDW=}Bo;RlKvUnnqJ6rlVm9vlT?=O<E=AAHIE(2x$V6Ue{*
zfN**GaC3o{X)JP^nf}vgIPvNAB%40T*?5HUF(m_mUJ(UTjMlyDF62(PsCOksNfZ*y
z@EjbCG1-f$!dg5#_K3E+R&#=sI+?9)AvZl46}72CI-<cDWUa9rT+KRU*t>%On6^Kt
zNFLCxsbjAXaTJ6e9s`qj2@wGiI{u(7|Hpby=+fHk10~^{8`MU}@irQ9waf{+n0PI0
zJk<r%W)W$(5&Ka$vBmPn{eD8aB;Ge4B1NRjLs8h{LCtNDihRV~{5a=~#DwNJEkM!_
z1^kjczMDQgj4`e%0b=qUXq1!i`2|ex2NRbi#X;VGX0<7A#$wF#Q7%N<ekS=YMX_*8
znyGd<zxL!nDb${Z=$<);_g-8{i<IQ9RQPwoCWum;XxY)h9HDi^JF1)9xJx@DqmZEo
zssDuD+q4}-rkKx?MO%6Q3}v6Wke$<qkQaz7c-~~a1A+e{G$#0#c=B)8N{x|#d?Zk9
zmFl7=BoHSej#p;s$|P0NeO%;`0%ktZ31b>(@<OHrwuOLeqwN+mnC_&D;M4nSCAIZa
zB>L57v{Wbcb97)H?-U_I7-~^Gh<YQ(%uc&}IL8c@>r6x%5~1tusiGigITyHClUeX?
zW*|~4A{1h2kW0ORmB5lQBEeU*aS;QqrwM*_v>a%hh=@O3|9m{OM$`cJq<kdxR@jp;
zCAg<Su6Y-8f?aN8K<-klV9I_D^(klsk}jt7glp&upgs!3(g7uK(doZ3qbi~C9R(6o
z1x}zsCs^JoPl2~kUV&0N2t>|g0IJx3(w!gM83v)mKe;ahClpZYD5i)o#6A4Xqx-D*
z%`bQTFqpG{f<Dro4_UHv^5hB>7Xi$0S)vhhp>7d`xKG`Uzr#PT^aM%-4Kc<w0T5e6
z#4i*<_o-a}{4FkQsljpSYaHH@C9kiXZtj`AooA_9h0&0-3P73KD;UA>jM1%GV>AN>
zu}=zWRzNC4CYtH~0T5t#GFY$_oKe>6lAKA@mrE4$!?_J3D;_Bos|%%sBBcZU@4Ox@
zmh-OU9=@gQ0f?=Td}^-sPJwnogXs?Ns!X;p-bX$^NCP82&0Osqa;HG_23+mTzr-b!
zrJBSuNt<4X#N3x+4f_Og2i!0qR#&ueTV$c0Wmao^@m<sme~hnQyB@5ZF`Ik4ftxvZ
z#)#f=ECZ*ka2cj3t*Vn+CLbyN$8|TsfhFO5)!Pd-Wz!GtOw_!VEc-(rr}c&QqWWne
z?kTN)vHqQy7nM-ImhgHmJB6gWXGu8FFp~ftNP`2Ke3!fSdNc+?D?$8Eqr%%Jgqye@
ztJCpH;A|ee1Tqt?3<r3HxLjA1_^j!q4x}GRa`VUzaO3P%dcEs|d21yy8%$4WL;*rF
zTcFEfp;C~r>WpM-V7-&3aCF7h!>%pMq8XtwI^oO2r=i^fEn5OD(T#mybPfvZYi6E*
z+#n|j^Xgz5MwB^fD}-N#L&@(8LFpT%q<M&X$srXyU0Vn;1TTeAt!@;rc6>{irr;ND
zDQ!}7`<LfEKXMt28c)5O&h3l5TKRojZvz~JU1u77MqB!odH1`YTS`6OU9Py1sO(nJ
zpgId0i{hsEDOCq=H;=Gp@i0T-ZzM}8i8&}_4wBh9C=CY7nv;R0x5ZlA6mZ#9gzK`n
z*&EFXGRog+K6JA>A#RX&tIsMz@Y}M{m5M1cGB0!}Z;DieYoT9mJU(hxl%92P&F=`<
zmd*c85!BOui$}@%X}hz^6^KbY#C@eb@3Q@WEZv1$6Yd)>@FffwIJ#kUcZa&s&FF^F
zAt2r2Ho6396mX=ppn$*^aCC~alsZxbMZhjN{LVT5#Cu)u{XEa-hI^?d>fG??4GNio
z;=d?s3k19W=`dR2c(^N2p`dhJpt)-S$T#luf2Qzd_j#6v^5d_51;<L+>CgXyZk8SQ
z1TeB^Y^vg#?erer^t}}{ya133>B)}qwQL^Pq%pTx(@9`_VpQwV7t!=NL`Nr2CwK<6
zp9PWD(X!hEh<WK=^U#uZrv~<1`*O@+zdX22bA4Asmn@-uF~j<B6~(`7imr!T)6?#%
z(cSq&7ZyR%O4a6OVxs<wE+}DxBrr9N4)DT<_xH+!k_~i1^gDWuYC=H91{nDaJ|PnW
z_3dFklM$uB5e>QFAVuRR5mpMChL67js|c4bqyq1=J{{>29MMe}F`gYYorPFyU~+3s
zU+YkhbsABe0>$T}Vcuh0@?%?_j4mHXJx#_<%16Aj$NgKzZ)qm@&W>LV&_X3AtoO&m
z11F-hCt{s3ku4K<K2F?)PwtFP;7uk|0w>e@^^;8GErrZA$A*mYK#p=gl#Qmgw{dnh
zlUbLwX_56qE}Pts$!a!Zqq_1+x>u>hlp5c3I%+EY<Ft<;h70Q;f&~fUa)mtYzw9}4
z<x>*20o<}zJJ|q1S;ln<W0hYnF)0kSnoLQ|_94Qm$=)2jvy3meX3zO&xN+(un)M^j
zvug>UjV)`ECg{P~OMUW75$x=4!sScd5WsrB7JUdvVGm$G0$lc_`^+^*l!WxvLwGXg
zzGuHW2$|Cyvc-0>QnuQvZoe`F%s+uITnJ!<5#Zv;Ou~|l&a$JCoMUX~3@3p&BCjHV
z5dXtpEin%?6)@F4n-AI;<fOI2{Q*ARmsBuSl^tLleF_rfCj7wj3!Z``$!J=#0=XI{
z+PZk-B?A2kt^RUJxPn^uQ;>laSYiNT=CWu+yR22g6*nPsg8@{QpFQ?v$>a_rt!eD!
z-xYDhs;unlCyAAt?#_$4)P8p$Qrru%cjOuWX@0@neNpSoBb6)QNu8v~{0Kqes}SNN
zzb4tbdfGc@=<cE~yRIL4xt4uLnWK#2x(=fR3N#9m&T3_TUA6AI3<8C&JBBJ((r$D;
zOLos&aMj^24HA}YUw?cD(ud?KTtq;TRPX#Z>tE(W=YilHNYtnF+?ShoPd7(M8)v<Y
z;ie9e1CL``U%!@;PYBZgZ-nH!>~=mJ6%yxZkmtetRpi}EsF9u*SZ)=H@cekkjrYK-
zITZT`>F$hjKdx}wyY9)Y2a)RL^F^TdvDDmr_eX~ZAIrVfO?`)L_q;ytcVzmuM$ro{
z{Z{6P)6f>HOY%D5+H}>yYqBwhwd)LM)9>QR{3k`e+GMyYL^zQwpGTIW!wX37R-k-`
z(ZFG}<n8Nq%C46>ym$y5%42-goo)`b*|Ga>ewX%Suk#Dt{-->v!D~8iU+M9@ogedD
zd%3@U)&F;@`Tc!rB8A@|*}L&O?Q*e1yz<Q%mgjK}2iXIDp?E+rh3}lL@6vUEuaAnq
zPr}f#e^<|=s5Z}m?t>S~w81<!r&fWjoVoXd)~B`KUYCLytAe<wX=0-emyB~0_>8u?
z@4oByDSUajXX_sx6-=1p<RS%glY{$7M`y~nYl16&_}o@Ha}@8<aQ5^T9voivN&Bx-
zLh-@zh$rMlFhyw_WXw!(So#Ba0mO!(gh)h2KvoQKVv#jUS{DpG-$SXw4?2qv9+|0i
z+I=dVE0DQyS*YE12>Y=3eD6~q%gOM;hq^ySqHFuVDw#I^xk!f$$UX+iPXHA~Vr~6n
zOMlR2L<8=!hTUNaKiJ^zORKg05lSmVFZd&-!zDBzEtHBXqEaOSwD!T~eW<<fX{-nr
z^{Z3-bGsy!(D8bfw8wm5<RO-j<9>?;N(?0nF|{J?6s;O5@;R18A|rVz{Fy+EZ(5w8
zUDJ?#e1}T>F);o)>$kd)uU$*=)*iLS*e@6x&{b|>A3kt27@+pzix23#H6G;Yc3tJ#
zzUp0dUpGdVYZU%6-*pfmZ@EuypU|&P=A&MGXIYI5NdtxHM@RjL^s<XZ|A<XQN#1$F
z@Ie|PJa`Eae-V=>RS}oS8>$i=St6Tp8FkM;_Otfa-@(5xzVE-_|5QrIyj^;a`h>9K
zn`A$of9$*XKKk)VdhM17_$_7P-JP9u3|S9xFZ;)9qtjf9wLgyZNl$ob`PY(!L~}(N
z`1~ek0Xv`)s2bx4ry%*?yUX=i^FJta+>T7OeZ#{wc|tb}?pH}}xml8SI>UHuvf<?L
z+robhc6UWgKzoM2P>B1qGT>d*Rr{4KIRA)Ex5sS36Yix%o#FT-+EGck<mG!ghFfr1
z`H2p`T`m>*eWcdnXTzeiiYcmqt4K!Irw%a&gB+04wNpnMf?mSV6eA5f!XVQ{(crm;
zli*98aU<aw>f@Oe>hKYx$yZt5ZJN&(M8on;$HM?t;kc!68Ya8gvflMy?COqj5BfHK
zb7(llKm2d=59gMKZ(9FW!h{Zm&zrivPkzv~X0OwRv67`D$hgwM)euesCLh54fqXCt
zRMXSySG5F;zwn`h1vpr|n#^FCF{^WoJbeR5sX5nOe{H@q<l=Z^5{28*oeY`fhb|F_
zW0@dJ>y}eQjqW71L^_KLx@GTv0a#tnqKnFgiG{Of>s-E_NMF=Occ<OI_QU<h`Wr2s
zmRApfRL~+iJ=N;*bs=6?B-<%IpwPBG?gB3UBlyjKvALu-jovcmk5Jz73h>f4m;OsV
z>Q1&5Jz*HTh-_gD{q7v5Mkk}IR3hdahiEnobiJdWk|7GsUw9UFt*NL{UoreUoFmY>
zqxmaC$-(VnM=9H~u}T-tUBK2@GUxhr#`vgDo4wILF1Qn7&UQO;G@|Dq?pcz9qnzi7
zUxX7a6rb#22q{^t@`7~sLl?{~Evl2!(<~fB0$4yTmHlA!d_TRIE?!7dV4VN73T#}O
ztHS<q#Qf%ka_C`J@lNPa%h^WgK90p+_81^8jpj?edZXtvf0s4|<2pjJ`78FGW@?c{
zHRGXp##GgSVd{8AIw_gzej~Lz<8k$4tTm|ZWJoTbJH2f-qoJO=pJbk~%w-N>DO1v_
z-(!|-ET&P<cWdkEjM*xjF`0$qr$Rn8TRI_$1*^(;@50s4%3NevvSmSl-)M~W2RZ8r
z8(j{JfkFF<<I~SYaE6!tIo~w5&}?c6uyGcSY+5u<L+nlns0v+s?Hu{0=(X#ef6QxT
zvl>szzq<Aw(y(AcaO*x&jVtNJa5fyC*_BKr!1!bEs$O7cW^J%WI);MPInUkMHyMj*
zVQ9(2lu`TtnXH2^rF@rWuW$Xn5%}DtE}6~Qp9;!XP4gMVzIDC>VCfXJ-cCjhSS%$x
zE_ywYX^1FY;mZ|0PsbIx<C0=**Px!F*Z+DLNuj#=E0c=+e{Kt0>V*JPEnw{K))M><
z_JWw(bH89rF=mt7D%)SxJOr4GzA-<r;&Sw@$-$v*BL^|*Y|ahRzx@o>xyewN)K}eg
zpNgVanK{qr1bf~am<F;ZcB~XT@x2Jalsy&e3U=t?j<NN;mvo)$Y?Rrp{A`>%*Tddp
z!Qz@vSyt#!QLVC2C`7*+SLHNwlj6B+Xb}e<Ovm9QjLzlmu7*qxz^c^w4!iDm$Hyw-
z!(R!x2<5NTxb)IK8?jm~VsecMhm7Qe4E>Z*<i$m&2K>0MU;VW{Y?55&ug$;VVB_$?
zZJL+t9d?Z4VBLRbVxJA9POmzytMPkFeVBv0<ojI{a>*QV>6!V3f_T#hFi-urCj0UV
z{-o4A1xhvIP7%onZ&6GloarI6C64||Z46(Wab@h!BSxoxW(*f#PDzOFk~{mv$P=$i
zS%-OunDb1|UD~FLUDM{hK%|4yxjM4<sc*N|88PnYpg92G&ii=`cIrE<i>%VWs%Bu<
z+OdksfG*U~w$T$maFSz~Mm#zt!>p5z>261+s-_WJ8vZpvu|~m%i7fGKYFGPvDU!Nf
z(h}i`(EV7dwy(Ir>M6)dDqI@-)Ej7XyKvYYfq4<Ddq3Mf(1A(Wu-2B!olc7VAsd(-
z%Bq<OmMP8qhol$N;@K|D!w5MTtt+5;wu|BlEia`WrA<5V-zP{hRIqqVWw{COL2}Me
zwTcCkf~hU{8M6qo{$+;D>PgVRz!4g!6gc~|Ozw;qMxmyZSxB$oP8+F4{f9wW6a{_d
zS>b!l4^z#2m5<Xu(N|Do+kp^809ZDLQp6btq_ieNBR8%HoB1nz#UcWcj-&X=h|jZ^
zi!QnHF8-fE3!Af_ppXtBT(sj7X;BR{wp0A!x&R;-b|}RtTK5g}S0a_vycpZjJRd@Y
zL449yJXcv?Ym%J%GJQg&WTVm+3WCd`(9i~>70=N_D8&G-ch0vqjGd{9I_EwOR(vVD
z7Yn8*k!TWQ0YSP1@P=cCj@adIV3w9i13j{dzSx04-M|E8;kxDEYjgu8p3}xmYv_H{
z0b(^VW{2ek*tEtaLyAyO<nvOb7^`_(!&aWklL7^mC9<b1qY6QzN4^%2XEugWO%1f4
z{FG=6%4$h%%w!R$vFOHZF$*gcD?!1JV^z9W_2?3Qh;ql-c0G;M>dC<cLpL0rj(4_~
z@27Kd{GPYzQF<1dLy{)Z*!A{B84SM+2&IMcCH`h4uDmP^e;qgLt++z-v&%r`c-`&t
zf|UeJ9lyRHpb?Ya20*3{A*eaz@!eS1-72_9>i>KW;!Ug0VLmeB&1??~K?xY1QcIRV
zs{ca6OnLyvoZ>D8*l@#=-S_3WWUbg|$bP(ouagA&*VvrcMl2dgy<UhU`bi54#!Pzn
z+r|{_gfCNW=}$$Z00s`|2B6V{6=HD*A0^73f<aj;Ck+QO;cA6M2|cAI45b*$rH_2h
zctoG72@x=dfw6j!|E>bL_Oj3IuIXP|0=vg3MoBKyej`OSSo}XfjEUpq)AHT~h(2p?
zV%DJbSBNUk@b>yt^P*zHY?QyjBkwFQnMCj=f><?1mcLo)fwyWv<&&xM)IK4v7rF3C
zn_er-iAvHzfj(Tf?AW0{&r*bTe139`tbb<TEUZBtQ@{Jo*LM*xx$L|xO!MHy@>|)v
zQ0L(AN0*#$ZVI-mwJ+e9{vDcM4FipbstDG2oX(t|FOX~A#tun(=ZO2kb4~Vh!`XMf
zuj6Ccw+VtJFV#5y+Qu9lFy5ApC<4MK^oCxLZcn}yB(I?XFay`~{JWdfqMv()UJ%3l
z4F0}b3hAv?dYfG~Qr&zKr91BA`o%c8UsjkkPL}#c=&hg5Y-%@oU%lHoEq%;+WKr^a
z`EJ)qSOVB>M~;Ng93LO^t~go)#IH4P19Zy=5HOKH8~?dSbxLS`3M~1v^}#jzzun=Z
zJyP7*_z2bi*LqEORKEYGFmjq^_jiZ=UChKyp7Z<BdT*mob7*yLYyJ-($sPyR@SdDs
z=G*BV>bk`(J>vP+X!q}kUO#sA1<&`6l7Aol-QqXj4Ql59r+yOqF8<vm&(9&&i__S{
zxE)^JUsHA$=Vk8_wmIMZS}3{r+UR!Y*v+kSe&XVL@4Gvn@ACfL_D%gBZiA<X^n*~>
zUQt|Z)zkOih4h==jpiZ)3qZ6b-!B0dA6hO-W*q;9Y=fyk(5$`E&=LnQVt}ltKd!E0
zuApXd!0W-020-J#xP61}dWaFSeXx;MT9%6e0=<ERHt9eN+l_9_b0)MxXNQ4TwZ(ea
zLOLASj0i3q2O0nXoaqpIqH!mVBIwlARhB|OgECr{^3Lf)XFSXs0lRfd;lc;HG{bFk
zkw#UCi=}+9nh*|qz!!-0yFn7Q1%RfCkJ9^7PVhb8>pa@c(^Jt`&<z=e;Tq5Yawa>(
zPX3e`E6QXBxHf?18$JMQ@goFugiqQzlZg;pF|;if;zQj-N9r&jL+!ES9JpZvU6?Hq
zOa}xpdN4?Yj&q#R-=d+D4^=}{F?y339VqFI<QTLU7zT*)mQv_^66U8&fEWFT!XcXf
zB;j3T7HuSJ5FK+X4zwmt^Cpk|;R5@6I=cNl{hk`SNP}y2d0TxW$(E8UPirz5TAxu9
z7zx0eJXN{}fzaQ`>~R39K|7;!k86bf0fCR3G1=Oh$gQ^hWshF`a+03M39!@Ro0UAn
zN{xy~eC7o|1*l`$2gs~N+Z?Spq}VR<voW_F3@E;ES$SVTV^IJv%29T}C#uaVCRU0h
zC#XtOi-#0ZlL4;zEQa|k0w@qq6#x^)ZemH}Xp~`43lxQ=Ix`46Boh!w(0RIuMQeh(
zVWR7~DV$hGhvofN1-&87*F+nvDP`%%pR4}KMtqWC2U(C#Cjp$7_#=RJo|D|cv5n?C
z5AuWfJ+efxSqwU?pF$+S9!dQqAj<(C<4#-ls0e40bV{}Vo<9EoaVZZ7xw$CE%P7w)
zBFLvF;jHx<i{f%40s}un^8;ojQ=l9*bD4qkX}(&Qg0KgvSOeIe{IhD%cWv%NeolQa
zg*2i9jj44epD-!A#d5*Z!z5LYaY0znFw=y)Z`^QP>&apj*z)m9Ros<5*lb<kkE^FW
zdAk2pKEOmy$y)b8HgU;}$bDN_>zqKdXvl}7(KOW63_3_{Pu6%D4r8j5mjx&|icxo)
zT{qUb@q&?2j|vnBSGYU}IC>6gDR@N{46%99xy>>ae0eZPW>S`ymsr-4Dbx^Vyh%w$
z_IUN#11P8kvGzm|0tG@!3Yrihm~$WospI4iK>~=bNRxwx*tI$!l1OV?F!r|{gz7|z
z?);@AGs$Abv-l_smUS!?gUdnK{7#+AG?OY1gT;tW8-6}L->(+dxKlP%;e!a(7&LTl
zpWhmXo?xQ4CYdz9G`g+_b;ODY(u`f9v-OLh2lbFqq@D?!%Ylm4gAAb~(l!M$epRHi
zAewW2lKmG!1F*q(<1kg*W~{>I6$h9<iV&9V8y{Ng<GjqY$1%T{Sd2aZ{5pZusIhxA
zRESRCIMY)-MI#qf6@%A!a;pAnD1aq=76sRiU$MIzsi9cNTD^lr>cF(7*+`;DnIWcK
zk}47fGEuO~ZqLj|+h`quv1HjEiZgy8x>0~u6#<=0iusAS!!MRiTtQuAqlb%%i^IGd
z8f@55IT#{$*$^c41H<JsgbFYOr}L3}0|#DZpb#MZXP0W=_H~L?_F*z?5{J0>X8sy$
z)n(~x<WBPwdo2Ly0p5nguGUG=^lViraeSEscec@Qj0tF_LlPZnS&LuMp_tkJ)~e5K
zWsYQ<mGsCgJ$@Av!sj-m&`yz%Ge}sp!IA0=#j(RTc&-=YCAJkA*Op||>x)WPUhdbT
z*;2|Re@j>t$=ujsw?|ss<`)qjRRn3vi#}dL5M|iF@|dJB9`JhdcF<T0`=PD6nP-sL
zh<vrEf^v<*4FN^HB*koGkbtKw8$rq0Q)wIvdIICE_EfJ|mWlHW!3$WIcLw7}Ng*r|
z+IA5+DBnxYuOkN49udi`D2R=o7Zy?FJpI@)^gW8fi-`qtW*O~W+wBoN_HZxKfS-Y-
zGutqvApD)uJnjcgp;t->A6?D3?kvG#5OQzzndx-0*}R~6!*kQ>A2il9@vlbB`k(uC
zN1L+^nFCUgPunqcLKemDaj%}Ij*t7t3)*_6*v36q-}qrANVvtmLXGi@pe)7R?v98p
zj*9;1@-@Y=Wk2}Bn-S(G<S>gZRH2T@cAibK<9q5+>m5!D!BW4!--5iOL&0h=?uDsW
zm!^u1{&4G;gb%T*#$M3Bg?y`+41yl|3Xb0mtq-^`3Ha@961C<(s1OkFGckcJuub?D
zLD}yzD&$rXTbh1k;9m+`fPM%?T2M79h)r0+sy<x%Ae^Q&duB~Q>^2lB4bg%nHI7g>
zrHMKE0Z_j7Vhut(RWU8!3Ae;+<Ux_v6YTYr_n`JRY*aq|bIwZ>@x{P|7T*L_s#|=&
zQoI|4R^PK5ki+Rksb&2VXTwZRCkhkr1$?Fj%wGzqCUM18g+C~*<kQ)>U<AQ*LiZWL
zvA3YHG)Z$Z75*Ww_bj<h--kQj=VfVWRxhoX`4H?ZR;@4>9hgBT_dKP_f0I5YZ0PtQ
z{a7zepHVfdufu6+vaE$F=LVk*1G~#M3@AF4KdyB@b)wx_RZ5eh@O=N;0IoXuam8iE
zRLP-fnoGuUrs2vxu}3eW)BpA6tx{#2B8XOo+v45v-&P90_nPKUQI9rimrs=wulP(V
zm=lrbyf=He)KU58y|+|V{uZ=34s~{p=c3m{oRLP{Su-1@M3T{CLe1m;=A!d}C+FT;
zpcw_mnKtRBvL)T8s?#;7CZ|yG7HY5d_T!etrorxSt$XDDY*Yg{+&=a<^j`gwizX20
zn7eYL<t=*#;#M`&F`p&}4^J~YoHQA{)7g}XmOg%N@+<DyG_bp=OSP!mh^AXq!YMDP
z>pMqhHR^?;c=usk_eoqyu*CDIX7-N{I#2w1){Jf58Tanp(mtf=yNBv)FfO}%(%ho!
z7+JyBLC=}$TTth81-`!e=DKrzb{3iGcw?|-g2!W>F#9z9<6K*rNogQldTb<6V^ptY
z)U0JDMsn7x`c*dV%f8l?4ar;N>>h#n=egOEUjv~(Th``G@(ZH3)LZ7YcIKzQGy6T3
z)BAMY=+gqRXX!?eLb2Q`vTT80YQHmZP&>$AEgrVTx#T=lmDIYDn!|pyc@RLm8J4rc
z5y)8k@Fgr|#rY+5C1?Mc6Ac$C{1JMqnmEE++~wvps?Ws{Y5qCn13QJ;+Z*OWZdHJL
zOspTJ^a&Pm;%yax6Xw!jPDf{cZjyK%PHUt_m#oNP`9R)&j_yC;!61?KGIVJ2dh3+i
z_EhK=bHoWvgyw$Uz3Glxs3V3Wj(*nAd3NIO$)wC!MUP!~TOKjfBh`E)C};L%$Z4hK
z-0{|&@vB)d`%5_t#f9`Kh0KY3%FhH-*%K~S3J)mg%{*(x0-wyQhxo5d`d?J9MPfA<
zQ$7P6I~Hye04i^mZVsIBa4+juEE~UBwlH5dcUiHkSaG^@Wcg;r(`D7SVm0g4sKk@i
zaF^H76|du=tMS}xNiJ(?E*yz>gb!|~r88aZ$>_o{c7^}`G2OAF$kU((WYSNp*WleV
zDmMS)z8YNsZy+ghtTn7<*HzlVQiv!&XH7c58*OKrs{#mX<VFAPRsMr|`+-}uF)z!R
zG$SPeF~ZS^Xpkur`6FcW)~{1PK<GPU&kb<z2vmM@enRU=1}i5+gHIr-vAfM%*X~X_
z(_6?6Rqd8Um%jYQ>^K6sfraj=YMi+2JG|ZBPcwXkrnhTUqDE6FK4TBN(H>LDE_?Qv
z;ey$Ko}mWG?ndMjs{HWq?TPd6HEF&D-6pyBJxAMA`|r`)9YBhv!Q+llDxiPOCvL4M
zCR!g~SnYKtEHO~TphM&jH`cgO`sprP*c%rku5XrXii;oqy#2g??|fM>pz}9hHyy<F
zsSqvineT|0r)A>FQ-I&1aH#w`L%3iH`crf9Sz6fM^`J<)UE#~;si$JvXLVu9Mvvak
zuC&@dhVrv=(BaPY^WS+r9sb9l<;csr^HfOQO(3ycNU)Us2H<BX+V1kp$#q`XjJ#Ug
z#pj3be*McjrvQynFRRiQGI`bU9FZ+$L8?!p_E_KwDR5;0kDJ3hK97=>)s_@EYi;`6
zWJCXRW=mEYx+&3ciPF~kvn}wa<DCkA9)(AZhru&x9qJmKS!i?)NFDhWX?hMYVGWy3
z387@&6dU{6TMSK-ow97}R;@QY_KfqV+jz-8j@Z(<2qqA#sVr@pBIBwp{4B+C`Yis@
zzK~D-fw1r6_ac4`hob(CAH)Khj>K;@A4>$be3T4owVX4%Y&$ubBT?B36=vEbWoDu2
zwRE7iIy&X@;pyR9DDbG$1Isk{^prdeT<d<)?BvjppdNl-u)u_jGK3pL3CSK^ZV-m$
z$Zo#4@8Uh_a=`$V+vHI(cD>rQ4zHO9*R2?Gst198JCy`|;OhV%I^}Xz3(8Ekd%9P!
zK?oU0ovLrowT7%2!>gpw^`jPuC{{LKtzkZY1|t{~_^sFSE+2))_1n@R5BjL`kXpcF
zKBOP!9+VwHEIh^@OKx-qynY&V{9S6RC+z)V>#b-eY1e)Vrc$pH?0pql$!XQtF<D0S
zDCAeC;h+XRc5BK69Q`+XkLxGJBneBc<08f~<;!XJmh<qMNo`(<Z50Pu_tDJvOx@aX
zR3E*%DAzR4_($Kz7+WiLD~K-A(^+_l%9KDL*;ugZB-_TH=u;tj54g{RDIFdSaaX1Z
z#lZv!!_n&kj2hsWf$2QsN!}A{9>0|UL=U1hHRWzJl`0Ys<%mHNsKk4aNwm}XC9Zv<
z3jiwlQDV98w%7v5Yo=G<EY_rS9HJ7cNpOeBv;apaO9Jb4e1FP?g5WhNFun9gazk1)
zx`hp+8SL^y+YED4?zLRc#ViP^x`>QCxVVn4iyrO+y>^y925Wj#U$BZmWz2-B$h9z|
z(r1*y9&!sy77{5bh36IQg+u2Wb)c6LhrREq%LYW8>G@!e+f;;9av5CX`{dPvaSMW(
zNm%j-Sy$v3Cstn;&?ok|Vgux!JRpfD`HGmLp-oPH(Vp~1T5{E%@&IMw)LE>7OF(?T
zy-v2!at{Pnh}}72XqW!g%pfdCz27p+92(Hn)IA>H#oNun-`V(EpSvPKEuQNCTEMXm
z0sBHFhV4J+Fk5YBQZOk+S(!*?SzHE<z)uSRwOioulNV(q$}wc`bkawo8PGb&G%A_c
z{+QlaQ*MmeDM4<WJscE}98lXXN+YT&D?jx{&*!vLbhm*)<>dpLQA+t9G66309DG)K
z_H$Zi7U`h%aXJ+_s}H~Q?sL|e6fEg)nikn)@mMs{K=}si?%kpSOZ1bjz5xA*N%|CG
z)(H(a9qPbRzBJ(*z)?qHWInDT<Q>mnd$pF92k=?H#7bIItp(K6`F3t0lP0;H42eP2
z-5iaJ7*Vd{x^dWxV)8K0tbOw@55DfdZ7)T#NkB?dHMrbOb!|-?mH19jYe%|#)#C+X
zd}=RGd2`i&9HXwml=-?OGFoFn3J6|%AGK~yZAvF^ebqJ3I|g34i3o?*H=~EQD^vz3
zJ>SiA{Ajo{(*yZrRC`K@2m`>>{+`X;y!r3jrg_O;zctRCo`Mv@i&`Z?5<45B<wc1c
z9utzAv}B;)#$~cuAwprrzXqt)LH{w#nhUhrMx{h!5{rzKg3z7f%&o49y4xWve(Cm5
zS@uOxara(EP^{r8Dv<zXXE8h04(v;&;F*Nn(`>nufOn@)7nQ^V1E?rf@i%VN(9#hw
z31BRVQt3=fBhZ4*rJt8=M08v(zayJ^`kgevJD<`Tr`l)%ge&846j%VoZycISCIrOL
zEtMM&(S{Iy;xi-Won*8Da93Fs<~*!?qAF>Y9|xdIM@LGNaA5Iy!V}F!_T_DyLM<4N
z;>pXS3?I5m8S$+BNbyHsh%d>a`sy3^sbaQpJilUQoLRO3m0o6|oD36ct8#R+qC@hR
zj`Ov?DSiz9V~HD<%G&FiA3(7}6#Q2U%+9hI@~C>@lE!3S$6<ind`Y?&me6*^EP_i3
zMr_aKV4YvYPnMIOU>c2V^`Q4f8vrO^=2I;D0>f$H2zn(Cqafc|MR!M3N8pG`(Fg|4
zBo0%D*#HouSo*{x5c5^|$k%6DOPgVfbM>EeZ9_tMU_&qrR?Aow1%JZ^QNL3J6YoUD
z3ngrFTJ+VT7bT6}SbiuC>|VGx{jo-f`vU`NgSO!u+;EHBpr2;H%*a%zDlSIyZTMg6
zNpe;)0rj<niZd&Uo5XAcpwWj`N}7@akSZ;BpmI6qn-#6NG03m)m`hM~W|!0Ln1}0J
zh$QWx;pVWA77nDu!jxtA)8YZiJ<$hQN~);jjEv*tuQ(m^23#&O<c$ylGhgB0+1Y|6
zy^&o2%yXbSD@t3r*~kh6wd!XTm{y*M_)Kso5n5@QdaJ;_e6J1E{SYZ_me`!Oc8~hm
z>VS0Av*tHYe_LyiJn4Di{1Z%j)PGc#l1@^#ORTc5`%mu3B<xDO14ceaJ(2@b%FY8>
zkc9rwhqqn$QPM}jnQ{`P5;(>dGE|{w=uyLM{Qq6h#zsu+k5bGYV0*Z*af}c5Qne*_
z=nHy=5Ylp)RxLZs&w9qBQ^zvgBzM`Ddd8IpLkXVQyWE#wdM0jM$mKCU-bFI@PU_u|
z&o3x1=9B21GE0;%tbuzA&s2jt2aMJAh~A$Z%BVO|kHrqxU1bw-cb|yj9%=3yh&}6l
z8B8INe5D63w1Qb~1HRztFa(ClWyfe`NPzKnn}aG5T>Y$?g9}Aae0~6d_@uCxV)2X(
zSV(;qu11ZIe8}RzP>zXsz)Xw0^#Qp2==)cOd*lL@XMHPew$69n%@eNu%!GQnY8iga
zyQQW`=A;EZpidY`)+Tz)_t7DkqAI9-TCfn0^id%W#A<xKVR}b;Cxf^b;aUqR#sr(x
zB{P)EkdE1~CU$era@W|j62YTq?Yzr5!LH_<m()zy{Q=k3&v(9PSiKo*)TJw@Vk55?
zLtinq)3EwkvN_Q~o{x+u01bl@4pu)0zUsTL1%=drHvJ#+yQs8L(G2=Wu|0aOWiAb8
zku;=WHB(c-(4{aplw)O(&M(5-zEsdO{5RWPEu&xwI3)nM`MK0Jv!#V2MwP^&Y&1;N
z2q2a9&IdadV(HTx07wWIHA(`oRD}w>1skBkTz+3}KFR;k&<gW)11}WO{ix+7A5Kjg
z{P6+X2k7H;w-fg^o}ECR6+n-8ZsVPTc7L=<Y(u2hq!>Z*8KkzEhb(r4J*oS#iCpFH
zD=#$<{TE!uPZu(nj~bXWu?2qqe%~4|11#;Yi%7KO^EK_^Hz}{&6`_wuf$E-5Ox@ar
z;F;VukI|#L>>WAl(VgF8`mSe1y!uXIJ+8G8a=pp%Qkj;!8aTu|$iV~rG|-Hv4gUFu
zJOyf9=H;Vt0{D}LWmDzhLanZWV71+Whi6mems38m^x1$DSql-bw*Zsjm6S@5G!krP
z-C!^&lZ<j!OIAuq)-eDp*^la&B#AkIl_x8;3W3^^6Kb{E?)_YhUtOQTMz8OI&xFP)
zD=BE=#?XSJD(Pf&p*B_1NLk_Na>rGd<)&^3QZW!q5l2C@GxClZZQoyU@W#rr)>N-n
zr?zv{cyv^CR>yQp$IK6E{__%oAunLklP!K4G9A3*(S%Z87y|p2qC!?U?Qz$;_)fhn
zz;F3@4z`7s?c6X!FnhxlI3e((n+L)}y#v0XGwx+Q?#))s-9S959j8Zb-oRvms>VB8
z^!WQIX6^N4KJi8tI(xzSYd*Nl7*==68r|)rh;K=Yhpa|LOuRF+wMC{qE7T7E3XU+K
zjI^I%!Rn8XRWl`~sp`63{u{b(Q{)u_`c<nh(M`$3Mh5if^4QiWIqqgyq^F!-D}WoO
z>6qWg%m75^a})S8iMBxNN?ug;NAkwq3XH#BUUgwcMuKr>3k+m2u`Xnz>PVwnX}&vV
zTBAu_c{)}3lj>Ld<<JAk?HVayamZA0w&_h=Mk$e2#lVmrWB5Q)aM!d(^f#|UA0w!N
zbcGU|zjU`|udPJx^&3tr4GNk_6Yt%h4)&sHLOKl#ZK+PXK3krCPR`6~F?#~1MGu&1
zR*uh$8uKk=s=P5uRNOLg$?5`_#xkQVq~UY)$o5H^0VI0RL8~X*xHn|V!KOg{>gceu
zg3{fff7VzrR%kGyQk%z9QJG%w7bS=Y5V`MWa5OYBDu|`<nUh<eK;}#u<V>AvFNylR
zNA4_;vS;UK-TW!$;6kq^0ec_N!!A4TAas`N?z6Mm+-AJKc?eGq#I&`LH@2SaRc9-X
z-_)7WkiSH)241cDkzVI{E8WjoCz`In0h^;fO|$i~^Rx!lwG4*>c{=-h3w3fkRzG0%
z5oW%Hat`}jW(OFW&;8Wq@_91ZW*@wU-ORF%WYNd{$mq)PquN)#sdO<%VC($(D7}@O
z!%2qn$G_WiMe=gN_OHGnffF`ne~`JsMqUhx=D$$pvG8kZKSjRF^8EOSS9CRG%t4Vw
z@icy=$?ET&kAO;+BI&7q`M=7`eq95kV5o}T!jyzF_Gl%U@!-fk)%^(wpAj^&pvR$_
z!gRr;OC(#G&wn`GU;celVI`9(?4I6y;v6SO;(dm89DD#s`^o1f853|gU(k(cCRXu4
zF7KOrR~D=aF#?3rOV{ZwM7gJdET#v8f_9~uQ~MbW<#UbNktH1N0M6d~vM(*=*7JEk
zEItC|Bg^u0gI)NgECpOZf^x%xHVoCymcl`n+Mp>Jyd@-^L5$XtYtKr&)lx#rn}si*
zzX~9rW|{C?O#0u#8ALo0)g&C6e-m1W`aoN7@kR@Z3`Z3xnl|Fkq00V@D(G=JAuBmL
z0pZdDXBPCqo1<`b`d;iJbT*q_?pE6OIxc5#VT^==Lss`<<MTub?XeBrDU@CYm8}vp
zlR=T8?uu1KVYlQvPac%<fVBy|*y$P*HDGJ#<FaW)g?zmcW}w*@QEV|J0iL>SHXbT8
zVV-Y%ddmRKT-kX%=(=o3KzJ-PS<iZ;<7~d)FLJQ(=TIa$cG*}D6>)_$x`D(v^@>#~
zY@fW@v#VrkG;QGas`QX67M|a6b;z0{G{3r#EWb|nQNrIo+bEK=D?dT|%MJN^gF>is
z=mlFvRZC(^SBD)yi&{aqdZBo3)I#v^Qj@<=Dk!40Dl~$?NF>+N*@X%bktVELpw_K9
zsehO<XIx3yy{kKs181@n<6*1#=_jwM*Bc(wafVWFgxhw^ir-9+{Xe7PEyH^!&9=m|
zlI&mt*{m2hfZDdr#CxCY+>`$Bz+!hg<?2o#B||Hf-r&fVjk5Go>Nr5uJJNm(XaC`#
z?ZkHV!%5rc|7AI!#lE(kvOGECkvW$Jo(ao*QGW78_~iV?ldonn-^_f!+RA+QdGdX_
zc0R5|D#C%_wO+gq{3$+EvX1}h_<*;NoxRFov|WZ#6-W8;KI0<v@5#`wx#0&vGM7ie
z<uBJ^%j*(<9e$oTJgR6>191H2Xji=<_G#`_eV2I^x1$Jl<2@aw{+k&^IAJ1|@qc!w
zV!LPv%CJzDDN>74Vv9!=WfF>-btN>`IjSIoFIPj-$2UypIpAxK!lF)3Ej*g2HVJ~x
zPuOSI{Oe)nyWojeJsF5+YMg?9vuFYqnC?0;-`1kM2`asFi97TGQFoFmQ$krEw{vlw
zo#+_CLahGPI}OMU4GfTIHru%_KfVwOk%w^!>y&dGp4A`La+HSV3tkl-U7L~{8trmk
zypcU!ImaOWbUqTrRil%Zt|Qq3m}UkD{ux4My;*5PuPdT|vsu5Cn||5*iR;nRh~MSE
zQ0RGGm#vkG(*E;>6qjXs*X25HH^^I_nBq4<6^Du3Qr8|HE0XFgvcPPW>s&Z#Pwv-|
zgx7HkU^aS<+ILG-2&LDzfjZ$*@8v~QU40HJ1Og6r{I%YVndlXMdB;3^AE^*5xsa$s
z@-yUK*?+p(hs!KBU*b|&6bz@F9+5o;Lt*p^A9tVgU3wx#B*aA`#G_?CRDJ$Hh33LO
zvM>Amo%Z2bmndkSN8cLob>EfYS<TIOUS=4t+UxhaGzu@o-Kcug{tnUp6T>qRjgC^j
z{*ZFA7z6aS;@y}eOL}-&W6<WehRh3^&3xZk$UQRlC5WkOF}V?bRek(d@#uzTr23OE
z;{sr}E~<PP{-G2O`m6PYk3v5eum73npiFGYzRT2I$%~7m{pu@UZA1WOf&s_ciI3>A
zyr&_d=;n0$$8V6VPO-ku=qh`a80|Ja2O8e(2TRqadjM8HCBN)XniJe+wyTc+t9@@4
zi{7H`NZ2-qK)u?NjY*@hIk26m`)i8{7z)7s?J}9c?<FeFSjex+l$>m~rpzkd7#Ix=
zDlzoTB?>iE@hb8Omv8e6q*(6phS_EO!bPz~F;cRDdz*07d($xpAb8Y7;1KKeh%A&)
z@T>~;pz#^wHyyt$cYV!d=rq_joI$~U%4A#VpvuYNt5Tv&=lpq!+h2E$=q%)Ph*;{g
z%_$zQ5Pt8N9ROAjW2szCyc#2iQZ)JooF=U!W~7CE`Oj%P-97v|rxmmWN&wUl1C-u@
zz8aTNn54e6Eh%%iI<4I$pf;wA>!-XcDCQ^du1-vTNLt55c5Xp|>_y(4`LsLsb<aCo
z()!Wp9IDDX3W3CGcU4b``XK=l3WmKzrKEe@FF3w`4VC)nCkC<;9Mh8+LUp+Y@mzTR
zbZ#^4K&9NxQ@N5yMS7_Kmwq!-K#kfW4^FzSJmg?mp9J=zpNGZqRP(ja<+dm?V)p*i
zJk@6Cllf~@*|29A0`_Yq$*b|`5L$|HA2ou0R~POQ(n^Hy?j@>behjX4R_l7usos3q
zQ-#Q^V#3$N&*y*sW_Sm{@K4RH!LyEY&k!5NwQNj;PqQrl25j{`hwG|H4;8GvFEE>~
z;2HMVJ|e#F;^^@zkB(QG^J<h`+9V5h9qv{B@Up5@t#;S&J%n2v^(FJxtqRW^A&iN)
zW9;*1Od5r|o7%Yoe+CTZof9va88B8)Knb($BfiyL-0e96ve{xuYIcKl1NK@@QQl+5
z{Z6YhG!In*&lge^ekJ||^-{}PsP6Y^aLpa14sHFxtO+vzObZbA4hvhN;z9#Eeoapg
z#l-#hN(Jdom~|I7^=LcqN_f>9@9SqIEd0@E?&nMIdqGI^pZ%;rvg~h$1bJV$Zctdx
z>z?@KKSP>pLn<!yq>{Q4wtm_Q+9r{|pn*f7S=!%pW~0wvZjy3@U?NR_GvDR{-?3${
zju^Bpv4BHJOf9$w$$x&qT6g|lXN25v<fvaZp<RAAl)`Zyta@j>OD*D}|9$x9L}S7}
zoX9mRQh68~J^U{^-%S7eWrA1X`#Vwcn!<US)wysR8b+k3J3Ix)bJf+B^)Xj0kM17d
z*Ypj>{;X>WO7xfQIel4e%R)L0TrK8rta86;ikhm4;*<}+-M)F_{ot2m&3^46PGsI;
z`wdal#cEmZ$#Lqlg2d`qbDthvF!m%Kr8jc-|9b!V#oT>A7cda6#D?`^=I_W8)brvM
zUZTno=9}=-Pc>li;@;6dXee$TH#ipn(;M4+fc4}bR!p8VKT7!gc;P?MYh{Z32=+c;
zF|%+@H-1pCceGEntV%Gs4oKI7r|34<vJjl7o>#Q8G&7&qmy)h~GA)|ZA>TPopl}p;
z+VJMB)0TUEQo+00q2Wus_B4N4k~jn|{6xRQ%aNS-68Jc$!SmBq%InKtGXVTNS^xNH
z5=&97b9I+~ed%BE)b${2|15-46hTHOQ(cMQYxCRM>GVQowe|};y4mbX!Fy{9yZU*2
zatCV`i+fYtX=d0M40=qIUmP2Vng@X4VX{81s%W8%Ia<v-TItwh?PRa^zQ5Xl-4tpj
zaRX=77*a|W45r!+gBqsN!0E(0)9JHT@i2PzPy>k^m_?1jFH%ScA1IYoM!CvHA}I*+
z9D44Nep)rg#V_!e$8Wyzn6uqu>OtL#p)RybMo-Y49;}_zAze&#^v>)Qx5?B@3g&x|
zZs~xf<4C{kP&2Y(VvacW(ep|X@z|sI>l$5e&*Vl4eSr*Q3mx#Yp(s+d0gkoTo7b3K
zhXGTmsc0qp{i+f|wnqxR7CSSRXkGq``6g@_x?C5}Z`%>DKb<={s7@Cu!M8Ij+MW&8
zwG2U1a7LV>VFHCATGSGqr&`p8T2yuXj(OW7%yANcWVRcS=1gkrPecl3wL$0@i|6l<
zamIXHPQ_h1dp^iDEw*j-M}DEWW@AL&P&Y%!IVP1Q`I)DlXjv@PG{+m&>6B|WvXfMz
zH@)id@4PTTJc|itCr6Sm2A?U&ZU1yCS)62<y3sEOc*!qi2&GxlL(|^V@YNY=;T*{O
zM7%`YOR6{4sg7w>-DBb=FBs+1(DBJW6I?PmqzLpfWY;p$(&xDYIVV!I{W*n9`%PKT
zn*N7e7!7F2#+pf$k%>BTo+ciX%sHK=yqAeNe2`R8DeZOf(y>zqznY>b$AIRp?~Z}b
zRt!dHO^=3wx10P(R-qDdqWsK+z=M=z1d^43ZAbNo0EOfANf!k=!1GMO{UC#Pc&-?g
zY7k`5pps=+ck*ot^JqyGfi}e21+ix8_b!D;*>g+%=uN3RzoHpz8xI7j?HQS^MqNP<
zQNO%PJ&R*~?)Q9(O1njSDnZS}hHr3tFauCOOyx><H>p-wECW~GF?&$O=T`c||FWsM
z`*%Rgv(>ocyucHdO%)R|;7YiP88S>st#=G+o9X!mE!u1o{Ma#b!zoyy%^n!k|L6Ok
z+axe+!fAH@TiH#RmMk!ZUKP_*MOzuG9yUy=N=lmcH%vGi=l$W-Jgd!mCt}f9<)8P6
zn&zFzRj25Gk!zkMccM00P5;$ygulKM{Wku`zi4t&$*-u}DJmB+dj)ohu?G+DR{YE_
zFG-9$YJPqZ_wm_hSX_D6kBj)z5!Sm2=XURThN+F(zT@aOc=4aV)~sRe^VXsteWtvL
zjpO{YIq^u~AH91bJvG*V8q<8<(SkDx!BNJ6@RSxpc*a`n&p8zUWda!@K*C+Vm-m4D
z_C5v(i4H{~i|z^NRzX;3reMafa<@oq(f}0|jbMok!-ICTas-%$dsJK4o(vI>dBkl$
zmgm$(vZBk|hWWt|lz9L=%zX#W9s`o}IfIC_Xfr)l6{jmFg27*^b?Fe}a;_Fx_RjiD
z4((&&<rdjsMt=G!z6r%laLy4JhA6<`jT4Yi*--<i7KWhd2!dKQV+FW-`@gVPL3s@r
zXxJPmB|V-RdHa#5DjQl+A&Uj#U#kqXrXZ*`EX0{AjqvxXH>6LVULt#5!Vn2&Ou#~A
zW9)#MUvEC2B0{!}_Qk#Djc|$p)3It@Ifq{oOgah=cy_9LiZ9tGn0s&#87$Dd@E4zt
zx{m(FUcCbs@}+;=FqOn1$yipUDKPliLyI17>1Z`#=yZYnFUiN+uCX|#x8PDlueYK%
zQb`ztl!3>1X>-SEo={0J#v8-nT9c40SE=GnqEM1@K+*O7?R?JIePw0G5r^V@bfUFB
z!;Lag!(M6%Aw(L@)g9)2J$I-ez)SUux77{uGF$}X&mFa4mDqveIA7ZfiP<R1C`2_D
z-$Gl}psa-(a8Pv6gmu{lEK(lbWZc?hKj3JKjlflP#t0!PjqX$b1*tsW7Ut!Rv+M7^
z7mxc}E4K%NSK!G2N|+rGq_H+k7lnN&3V<|YaF;Lx6h}^1GXu^&CvSimkt~Vx_~qR}
zL8JxJ_v`_Yn5PS_=e3ofF;>dqdv1!~JFbbAfw_+LQ?8%X{`z&SXh74oS+7X<Kxy1x
z#z|I4wHQBSs#T^)nWTh>28j6KM@NT}SH&SHfsr=2vj#w*@m721TALtN9;al|+7H9G
zc&%Suu5D>IEa4{16F>&|QPzPk+_-SH*tcJg3~B$;uE*A3o%s6~VMoS6>>C;myW)Fb
zxdsBG^aDG%Z%@S5e}um5&>4mfBs(XT={m&Tqhqc?wY`)XzG{JIO@Q^uwfQhGF{Vry
z<QT{haav}Xk9S(;O@)tWL1riscG4v_lMYq@*O`R~2slhJ3)iaN>!rmcqja6D?=Mjk
zOC>94KssS^h}*M}hC#3;C7`3Ai+-QMv{%Ec4S-1L7i`g7H8iPQDA29)W)D%bwk0Yc
ztQ7KCuq4ZdbLq>r^1N@-5aOiQFvn^@uK-PWV^+3SE$!~&wOG}~O<YIzO_b-?;`iL&
zatL*0A%s@pacBVMn~GKtm2_g<iuHU~tAh(!<etNLq*=0~$tjdBgzOw*cFts6v1esh
z#v&*i%EV;lK<n$Y8K&{>zP7AvYkn0_JOm%9Pcw<A6=Hv1jP8s7Lj~(Bq;f>zMULS~
z_NruqBpVY-VAz46rZB~&WCH*scsi3@-U&QQb*G|m4N)r+x|&dOf>%j!#zJ!EH571A
z#PuxecK0~=DnluBqQr<6jT&`MP`d&`S^G&+lrcm6G<ntU0p&3NZl&7ce^g;k(UwS+
z5N^NV@bXvZ+pzSQ<{nUE_U-;%XM<lr+eDl**8ouEwITmjA5gMS8KP~kh|)xWuTd=Q
zZG00$86}<z_7fYgX92R^P$1S8l>2>YbWzK>z=Np1Pd4*EU_U>-G5vb|rZgadeUC1k
ztsHPH-wxpYI~T(Qxj1%bJ>KWMM)k_~LRt5<`s+s{z_2tUsQ4l6*c3Ljl<DI1!Zw{=
zFot|L(CNp26PKI62LD#kW5!_=a*IsQ{=EA<2u*b)CNm2D1hRdsTevI+-s3$>m4T{n
zFRmt0zdBCViNPn{fqt$TlYxrAW&=vEc|i<L6MufOW-?h)`PVT|<#WjC@RID!pne}#
z!3n6`Y}lSj{-ANQB&_jg(oIbO{z8Co8J_g{R$)uNG8j&YX}|eL8$`*K2jc=T2sCLM
zJ%gnKT}A&3lEnu!Cw+S+j$`XeaepBXsEs7EopRv0V@nLI@c)j>fW&U`bj2S|s9)Mo
z4rg*dJS^n#f*>R4wRRZTd#(!!f_MXm5eazuSxTN-En&qDDK4D2qMUzR26LXUb_~ik
zCKVdra)}E7DXD7B7!LC}lXi%zGzkK4XSA=6KA`yxL2U9GT%9S!QQX<B)@n&QdHCD|
z(D086$RZ9nR8I#aWFN(M#h}yQaNu;{O`=%5V|>Q7$wt9+;3L4;{b`-k0N}u%8fHIT
zJ7;_VAcf}-qo6$yUE5YlW^w?KjNq!5YYhyDQ5H<DNa+LW7+t#-X6AWauCh8;lXl0M
zWY%PmgCwn_z1}S%N(zI&(ka#g@c+>0ZfZ>y>#@#eFq<NKxMUJzsZwfsCkv|BYM0>3
zse7ra=asC>A2KSPuEU?M|CR92x|tAFPQh%Cf0k5mw@@Fy+!ge3+#N6(%Qbo7VQ?8|
z-G!K(bW+D>Z`}-ZrdG<n=OZ>QPSzJXodA;bz5epk$>Q-3OJD#XA_UJu1e6KBxISxG
z(O-N6UZ&DeBwWKFmZxmJHTrsuP`Ad5+Ti_LFzU-hI{t4o9ARj`GniUn#IM?IGO1{9
z%|@5kRO;C!O2fRtX(XMW)@USrbDL3;NCG;63b)i;J8#@y64P54%-f!RTAR|tL~<CO
z2F_0>{WM~M83#DeSds{XwInlHn9Le4!VgbTI&0Q|Gv1^aZ-#V^b|bm^6a4X=o${{~
zlMI?wu9k%vNDz;Vf(m!2kF05_f$2g^qc|GCl&31YRlPQvJZ@qnzWnl1EAQo&=1X2{
zQ*0Jt3_gWtpK1GBvl=*^A`0O3BGAJCAOw(e5&%NtXf_Q$|26abVE7xO#DW4+s+xb*
zWEDAV{-!g!uRXoS*4{ih5H#O=D<;>r09d6U)(n>?2?D7-L03mb@9crkv4E0Yz-&5>
z^)weKg$Y}41!M8^qw=H9Q1|IqLOmK>4`=Fr>avNOe>Hg}8Z(a>Ql`^=_M-Oj6^sbE
z1B9ApQ81@mH#8A6Sil)4gG>msTmWWwCQ=KeK~|l5e|E00lV1refYV4$@1zd_vH^6)
z)fSWOlYVIy0%I0MO$lO9iJoJ~K1fu2-cqb9hg*oiBV=_c-9@WZH;j;H;25^(g-Cpp
zvj7*FOAcA`CYke>;uulDE5ZiUpi&Mo*S>B|N&jlJXOtmiLY;_Kz%BR3nm>~*6kH>E
z3AE|3Panq{F^V>+PwLcsrLG8jV8Cvr_;n%VYBzGdl_{?`S(Ub12SjbdXJd?KR?OE~
zv&MiIkm1WgSQ{M4Mzn^cBD!+d*oMsy?9jCUMB0K)lC}S4M2F!hdsZp!lX|pZ4C&*d
zF*X8qi^+i3|A()$jA}CO<Nlh_8##J(<LJgQLfR41F*;Q`1;?n-qgzKvStA5gVx)+O
zAfX^AAPN=&qJqW4ec#XX_PO3&@2+$H=UnH1zQ6D9^U*<TW|6y@>6Wp3ED`!}t9O7%
zvlrHKfY_&U1nWE=lX+vx3#HZ<!IB_UymZP1Qlikyn7?9Lf0x{2EQ4AVyd_C-Wp`xy
zNGH-cL_PojA>&}Y=3MZXJOCO4VgRDp`WSrWS-2E?7s$ecX?YTsNz3~CaY4T_{ma`1
z+ZYD7Mo`G)#5rdOEit|B@9cv-uKavbfJerZ+TC*)1|urAay+X(qoDX{y6l5z7YQo?
z7{{1j>amsl*E84x2Jjc?uF+<+kXMQkw;*oe9F;M&T8nce^h&{otC>6xFW#E1l6}|`
zUZI}$@cY>TNzm0j%+45fNsu^{L8tqtc70DDdzVg6UhTh78G%UuCg;YLSV1j=hLL57
z&RNC@6|hzyV0Qi@`PCzS*@Z98OKZ-%wv6TB+233XtNXHRUuIv!+N=uYG{lomUdwSc
zhcmTOm}D2GZ%*dirjAXbm{;|3yPb1;Xr$NrIeuov5BhTZU#5R(E%<Z<9bX4bgy-Gh
zmf9794H7-+a6ZwOtgmUa{2tK7qr6$dt#9E4#<T2OU)W!N%pF1@RxTELz4V;j@gzDI
zyf-WS+2?tTuY{QAjR&!WH`s<6gTSVR+h*q8?GF?1cF)woD}6Gn1g~k@lMstXFxcJi
z{%>CIK)hVYw&2rQ46{YoqgdqYFBBZAd_#t?p_Ox=)<?XFq6qFnES_w1I1h`asEL_v
z^4&>e>haPkV>=Kce5QGCeqnPTVHqb#A*etAz=f!_A%XCHL!&S0zdg~<lfWanT{g-%
zBZ@@)ky@EW*`JE7L7vO#GT~$719dP#wwM@FqM0BslUJ<6W8pSj7Bx&%KaK0@oZNWM
z>x3;nZ(pxZ#W)Pe^uA~W(hWOYVmN#U!^e3tf)?W|CCY8_MQpho=g2nrA!JvyQ16^m
z)8!eviWCaYT`My4<Ya6fcUda6vw5stq{mi%$5@oXdY9vIMEQUR56U$_CINQ-3LGWK
zu46tJJzXKR{MOza6n4i+sx`p2q3DUkeH7>RS-F5n#=sYm+s-%Md3%nk2KmLyaU0ky
z^VOE1Fdi&9K-7^>M)-T3_hKYd-}I$X1BJ@&uHk%T-W;=v6Peb^*aTi`l@)X!#SlgO
zE6AO<yi<@uAsH&dn4KCGtH|E)q7PXmK)z({N2MF$F!%>D7FDT{)@RPgj2usGMwM-T
zAO`PPR0fx(1(j)hxcng~I{=j9S@}F9)m&~ZZ!Va}D(L2txk-Ncjo@lBq2{KPV54F6
z%5sQQ<;=2ZsFM1HEHXa=1q1}u-Yp2d4<p|y;CUb_&{gD|!ub3?thV>@hxz-V59dBj
zBR}^Szy~4#y)a_$Zs?<w&%oACLCb;@5rWxN!AYLlC(A-pyMi;0wNrz^CCehLXdnO$
zWStCK91MBvdGSTc7v>E>Tjs@;*tHtjYb!Gs*HREC%dod=|Gun+UR)Qxv{^uYt#oN?
z3A15y>HVcky&s6r%lx;m?S6K-^l@-^;|@S!#RfzW|NQULUdN>ZvPk)d>tZ<$k$mVP
z%;k~Ha_BEI*k|{r6bY6{g)<3qAc&Aj0LLT|f&fH9E(3e7F;7uhS1bzv_2m(wLSmVS
zkF7jY^>R1Gr0w8L6_;{l+H`cjGU+yCm^Da-h_SR>mUShc9)UXleX#t#)=Hy_Ok)nc
zQPNfX>pyOe_(t`peYux=y3Zqg_aZW7WU)A)p~~BAjD)ezZA-w%_IdyZDpk0Vh(xCf
z3xvzJTr>0Gupj{~Eyz~<a=fMKwux0%pCwNCN#Rg!*+4rVJ7#X*5T8Ptr2F$54i`Y_
zujajRlA2eg9PUdkIY=5jLPz6(As@fNd9va^N}KO}%U*9uX!vS)<}i*R9jB6MeDzSG
zRa)m!i{+aZo1ZO#fL8Bg;tvBd=>c211t=piHEJ-@srP^!Vg#Yeq)*DI(!RGFn$!a?
z6duV?i?LK#8`b9^htNiod(2*>qzw;$avXD)aL~AUzbibph+oe0E-C0tc}GKg^VE-=
zmp|@y{<xK+es@Q%Gej=oH>^wNXUz7GM|L+a2Hj*+lDN<BB6IVm)3Z3|p)bW~o5mzf
zNiBtuPFU*sTl<N(wjybhBuv;7#c9x)lL3Ra8J+kJkmB60+wo+~8#_gu-N9CF<L<Ac
zJn0Ha?46%tdhdUo3y2ojsg8@ir9{y@Q*<Wn;!FkQOxhj?!^0f4zf8118!|)Enc$rS
zkSZN*X#R%-bF4!4-c<_NOK7-Wk)FI?`plhYES}&TU++a`Z0y`!h@+jq#P;d!pCHw<
zU_&n54kZ^u^b?X|PzP_Wa*&a_YvtId`40At4*iVMp1Vh)zjMTNJGI<8rF4__IQ|4!
z4s{Wt(ks;nFS|xgG8A5Q@<#A`TdMess(YAqcbnXoP}7-slUW_7rWJSZ&tx~p%kG5z
zZr8UQwgT1;#lQJRNuE)ERWQk9$)6|EH`MVr?;3^PTN+Z&IaH6SN|fsRqaxo^Zmi*-
zrZQI1C0YJA$bMfg2p8HoMSGUgu^m^tuMwWq86n?GX?qxJ-)n`w8aJPrVfnLBVj<~C
zZ?dn*Sfjy%^z<9LS`~$^=7c`9+k<8>DHZ=ck_9E=VyuNJLuWBCWfC~@%_QwnMHhMq
z^(HXJn$foh<?mQ^>+L>LMSX=dI+uWr`u%uTC^rTpf#X(T6Ofihd5g+`ub2h~2rEO&
ztb(fpl+kr{wccl>-DKpE+-J^6D9Km3T_;F3gBg^>WhA}3>aEyR#2FaGRZt!GaD5N@
zn|iE}%F;<HJXTY^_aA0u=bq%dEl;n4H($+I!Cl=_h@|vPu%MihioBehrK8C?^IyZG
zIYPPLa~ZEQ2asZ9CTaDfSqO29TC<LZ@m!Q@$m(QA<D){fQI4Q_r(c1PjD7p6GL@+8
zeSu{vh_d^VN2g$V{T8JDX*rw9ChHC<oX&viV0-z;pCyk4|8D7N5%7ys#hHLapK+;s
zmi?fSo*mW3OKAw2_*mxscE-~d0Mcx-&eG=-Pw$1SqgxKKa#_IPf3V*m&;(FQki;|`
zwP`};I6po?)o!b2<gVW{IE30pp^Re%1cix&u^dFBzu`R&9K0PUfl1q#&e(Oob*@B7
zh}!U-_@d+N*L<nQllVE&!PF-KpHT-NU*B<}m$UxuJzO8MrQ*HMCp7^x?4^0+%uPe2
zf)<$`4}`_Jzls?~@Udl@ye>Za_UX;Dp`nu#08D0`2;qUxnakfEGX_gcB1XM%rDy?8
zMT+K2KHh8f+$gMVWG)LLa}Sh=xq`>ryBYIvqonDx2sf8G2A5<-XVFmxwG585?8FUc
z#yr1!0A^0^TZFA5`K{;*3S{m3lLC8N%pz~}mD4(}8<CqGFE>_<l7w~xy!}}^h%<a}
z%>CsMwj0`hDCs@~@*=o<c7@@L!@gmDSI4QJ&y2sSge-C3yj_>TKfcWqk(o+ll6QYj
z%8KPL+c~+03;*CRhI7bixppNnQTDoM>B>6ejbEo(YR=>6YxxEw!yOk%4!%|@A)J6?
zQP|p<Xn?`wKhwr|LO*v*O5Ob2374wmK*6!)^GxFx+}tl<Nkxh%fqxQ4R*I=FS<|!g
z7a4P`TAfL`ZbX8x(JPfXMUBrY-XxX}wRrbp>nVE>vr>P!@8EB-E}mp7!C8_JyX<th
zk>DSJJ$kf)?YmO&LbZ=x_AwJrI=Xw7KAC-i4lueOw7GW^I_EMw6(I9Y+9<jq93*yX
z`l}0J6~*0g(0HqmK0}yvKXk*Pi8vNz=m6W?!F2kyzM-{0hjBLB{ZY^D80#Y*Z0(=+
zKZAd*`0n-LN||kecdL+~!6y@nKUbq)T>QBfzin;XHPgvu%5<fZNCKzx?ta31<dz-r
zd<*#XWr6v&bQ<$_;~B2iz&5wLTQGVq4Uu2br5&bB90o8f+`;hwuR)A7-XmRaY55n@
z-%HyIH)7Z^h?TtcknQ1TszcuX_-!q2c9E=>+KzjR1$VNU+<3qIu2s!?{(G0OS3glr
z$Xf@oApVs*UT2duyw6h3jy5>9qJ|Gzy=k#F9RWW)n{s@>Jp6}eCQ0OEMw))~v@rBN
zKlVVQ2igH-kNIJi|4UA~NQo#fNPk`f)0`Y;OWaFCvxuUO-Ycl)5j`X+B~mBYC>T!&
z*#HaVbykQYAy4V5!oS8}aWRzfT^xppAJlrFq{XKhhs^@l!G$*Q!YIGHdYPLe+je`T
zH!-9fM?ElS@A_Dq^DS0h%i(mh`F56sr(j$-9lUfzlyE?2)u9bxy+o7jJ_W8AJ+S`g
zofc+1R9_j-!MWR-&Hoxvkdkf+1j&kUU-E|B02A~$7$<8hm3@N*0g}%~%&h+vm5?NS
zLF4fij>lg;>hNNmEZL*khZ3ncS|L2p{E6$zL3!Ww4P&!PDpToY0E{>scSNX2i4o1o
zF_J=Np^PROH-NQ?aFL1Pbm83_z>N60Z5TplGVEQY`Dq+M9XSDgn1sl|5iL1n)v*Km
z0q^{RF_4YdGU{4qyldafaXmD59AgHQb3~|$sUbBe_Hu+vgY>Uy%z4$ZZ!9d6BF66T
zNp%tH(7*fu(Psc_EzoQOY7J*x*4CqDcM-sCVrAybH#^Xzc2V9$*6eo-k&|9@-FH6_
zY@5IvgS*j)?0E9ZnP=_?cT;^JR?djK{YkUV_cnZfyMz4jld`^>NcL7h+(ZKi6$SvZ
z(g7^%W@J|Pb;zW`Cl^*|DxB*OjNHSks`6?>=<Co0dmv-MJfnLb8U$Yl2;BMrV$q_4
z6bUP5*booL!qKs9!JpjTTAbkxLxWHR6NRHw;KPX;6(mD$R@Mq9!X!*hYQHN4HJ%D-
zwRk$sIRl^py07ANEPA>#gix*OV{_#{x{v;dm95|bjs!F)X(~X|f||pV7ttcTm=5#_
zr@w4K_dZwyU6wbT{PG&w+pX^8BTPTHfzebB_%O~n7k%37jbSEh-DP>6i{hjF3_64P
z43(*<K6(&4xK{>@Lh72HG-%QfZd{hmsqxzC!QOB2a|t;s;A-)b`|hiRuV)f{Kri{k
zlXj;z`T7N59A9H=?5#U;oTfK<#Ba9C6&W+Pm*ps=qG98*p92YaL9W#bGrjWE!i#>2
zLDTB)MY{B0Jp}0VhQP^2NTV!948~{^P9_q_claIv^xMK)CSMXm_5G-%QE$MLA1F&8
z+Fp<wyAI9NQO$oe;=l7Djom})yyPB>zJ637IrL6>&Bo{Px5rJu1+l1VnsJk|y?8cE
zaq`vrWMJqq-+20;Z-(FcGqp9g3V0CC(u+?XN@{9%+p^qC!)XI};uG2Y8>b%kP(Rvg
z{&KzBu6{FS4Po4yFsCb2Q~Oh$M>31}*v2t{`H>*Fu~`{57(s4+iur<Zcs2fVrl+U(
z>6ZffkxO6%)|9u@q*)0rE{BzZlbjI{T9^k8<&uI5A6C$&MtN%y`{ZqjNt~^(8DGT(
zc1{AW1R8rQqT&K1Kzk>Zx?&$rV51L4_x7O7?$XsV@se_$`#t2!H~(Ja#$Ju@dJ(^~
zz)!TQS4IvlJ^b?yQ<yM4l+WSMx85|@2JiR3W63avg|ZeNKfM|(bnUYD4k1Xuq~Q;#
zK;Z8OeBpxyZ=0wgNoJM*p|?RPc)xA?>;4cBPjscP$0zrnIt$MRzuyVHFRJe{{A$$Z
z=Yv;&ckkUwT>Vd*d$JJB6gLSw%=^hIj4rX;e)#4h>Znrw-`D&=GXnGZ<0-d)2T}97
z?=_zt&m{f(Mr9w^(QQ4RtNC}>dVb)e)3aZT6@%Ytg#(`h&;MR|l~R6pXka()+3(lC
z|NW%D@qa@X`m-r;ax{5<@Z{jk^`yTJ*mt9H6Y%DfAKPi(;Khtz3}oSA5G`^1)d}>+
z_t6*cYEJ&_ob<mJ+DqlXW-W1La<KD19q;s>x|Um)7%dFY43zcX^#q_a6(o*{6CMU7
zN)aKg{-;nu{}x8y76!NXM7E8qZ{h%g;UFPEvKt{4v60G|N*tnH#WynxVnSJgBxW%`
zn~D^rBNE0eX4EO_$}C8PrZn&zk%wp0jfb&@gL>{M^npVejY)O0Y2tH$upZB{S+vw1
zP@aG~7A0A&r{iTZ2neYnM}!9+^tL$z7SCx}d0Bq_G~Nd(>=6mn^zq?z9py|>v-ki)
zx}tG_=pNzw$vk6NpN$n3c#B9<KBYZrkzYE-IFz$RzCd8mS3O6`0&3}j*sL-dS+WBZ
zGn}>8&1-msbZ{1av!yYP%nXHt1I6U)ClTdjxazkvS@oEowv27$?0Q7*c?W<HfE+lR
zU5(Cm>BB;a#!$mtztl`YGx9`y-ejNQ1!*-oBNvzWC^VME+72))lkb9K@#SQOQnCV(
zK#p+KtJcWBD*5K(ISlhQP-4C}A)R&IcHxL?$yp6gltNPRE0g(YTbbUopgbNV1E$dB
zIR{}RpN$Hun=GtD03|y!>cdZef8i^gl=qXWnxfq1vm`D?1HV)}(VLPu;T%3z5Po6|
zgk`|rs1{t?Gxk^~KYm%PbX**1AERF%_GA{VH31SPG0dup>I5tLjs;*26*Z;67y|E2
zyr85Q=7`t8R1NU)d9>XRkX?iI7f7j5_f@BIU*EYB(o$-+BZGE2;1|gkLzPfgD>bPq
z9?10BC`Wi@m+VV{Md`kpqrN{NKs(1$hj`^bOCS^mKSbkXc~?PPR!Jer+8z3xZzv4J
zntcRV#%Gsu&t@|aN(kAkCPe?M7rf3f5O(KFJNs-W@Oc=Q>gI&%-}Q07Nc;=13RW!p
zQ6``rUD5GYv@;tnim%ZG0>{Qgaj^6fSq7pg%NT*>YYXF!806!KJogC^z=84Q%+~s{
z0O*$$pUwtwuY+<-_`9lVW@I3j5m0-8lG7~vCjgg5Ba;HUmhYIEOoiv|C5O%0Z16E$
zz%s<1PL>hpzaZdgRQIpPthZo{?~rvB)NqJvWv)4M4~FeVt9V{pxj+^6?=c&q8FYuS
z1{qnme7}wyZg^Z$d%7?na0Ahr&>&OY(59WHu)#5|4B|aJ>n?6aGLLwOgw=z&aE4r;
zQn|hWiQedjk7C@>dpT!2t=AT~o7K3nuACprgy-lG9SgyCEw(8K!ab?n)BC8-_=^I;
zJke;>W~Atbt=B&7#*8Rm=`f`_oG%c~8p>aX!%8pK3*I{cihSv|t;4IX3=7Gx3*qq1
zKf3hnR2z{EP5X#uD<Z?7Xp_WLdS_EZu})iQ4)Vq$G@IQihZDyAJoQzy`6@@La08d<
z$R+5W`ZlO~X-w=nIMvM6SZ%Y-Qd=N%M5tp^u`wqq>ZA0j)=axz_QzY>5Umy|9D`lM
z`HM6;`z}ep9$A8zR0~&KfJ&wBNORIh=?0KoR=B)5E`;-)bX%lcn+oJFN@<_g<~G|V
z|2)_#`~r%0byf;e@bPxwDc!)a?Wp?huLsckyo#3lWrPWv%Q-&UzqG2rq6WTaYmUs?
z`9&K!eQ<|3CvBad4O*6b$^daprdT=D2yyO*^5MxZW+7GeRVPN2uJU;GdBOs$^<$}^
zed`8DMa)RWlbBn*uE(L-)qJ6g%~tiad#^80FY0E&xX^hUL|gP>CNNwx9Rsq*f}&~0
ztPk;lG^5{%_nd3)KGg&eIW5!dwbG-sJP2;SPdE)_jXsY;I7@q^eT?63(Fha>qKa}?
zr-Oh66-k)Txb*IF>UR0+AewXv(t2i^TfEVYIARyy3!P+3y^PFTUNkHr%HnC1fgw!)
zcKf--x9T3IrG^3qzkRXSf8P!&)+)YPyN}i)2=s(MgvRGaS{Bt_w!9Y=f7d1HVc)A_
zw<H{L(=4X1REbM`+K*<|W1+EN!Qy?-?xef@?AX=lho$BZ+<qKN!@EqZW=+`2&Wb$g
z`NGFk0RfY<YMpn~hy8=Ruomh__BS==A!DYO)QTcY5n&6ap6Hh7PIE=?P-cq<oJ_Et
zC+gcDA9l}{(q#losr}?{t<{LO`>*J1d3jHcEQi&sM!l_a%mvjRTL*r!0s|bL`xO~I
z;C?BQb&hGk<k0#&%;vlDz!jp6fqI|d>OegJ530d?<85>=3{rFfT8np@jYsX$uQIhW
zLj8$M?G7BjY~{EUjB<s!&zY&m*#BLS8^{)RPaT<R#&90sO_9}~E;z8Kj=3C#`~0B?
zT$!kGirKBc;N}nYggW||IC|c5B%DwkgCx&fiV=Tve;{Vjlh5&n%sFkMq_dH$b5@!2
zXd-hyRE!4INnmjj?o=wzaH+oVDC)|i>*lVyxvrpQS8mv7^x|0Ex);RJ=WxTV=GLhE
zZzxNw`(sJ2rqAvap1S$*Vra-z*GCoD`>N|djHOH;*3V9{#nxXIbo6~kE2(u+E(3+%
zxbUc-g(T>lCOMTlW#8IoJv0qj&YM_WeHz^oH(DN`k?C798j?2ado~tssNt80q=D&=
zo)AJFJ0fhCe6wV9T&n!tU*30z>d)dqK1%^iF*CSWuhdfn2~S{<qc7FHpZ@t;!Gwxu
z;;di!Y~jPH{qi7e7Nysed+0=UtQr$sO{IFuje_Z+{J|G1rMmh4h6=867`e=NYs7*E
zpn}*LIm!%C)L$n2nG`E({})2?Hm{}j!s{ywX8KVIIl{c>BHlGKqK=uxU)-7b6!B?N
z=^#_&5Voj1zu<z3l&p`Cf3awlCk4^$<w*_q|02VIT)a4f+=VSVb}#DK#zw4R6w#@5
zbCJGv3n_nJDD~bOB}KPj29O=yr5~fPyjQHYmxzB~QZ6Qt^cBJ?Vk333s%|#;R>%zU
z#+@eORG}4n&E?U9_`E=5THL)XhASn~D|h~`6b~%W^j~#*yz2QI-IV<5!N99i|6!l>
zt3jdF5&hM%x&*q%>f}k?>eRsMucB9C-pSG8$qP=5vjeR?p9|+T*X+1cBsY@hD%PNr
zBCBhRZ!1KI)2lmmuTMHszG#9TF>>rXX&we%eZ}==1HZ_v{N`tt=*bHVUtcQsOQ3o;
z?UZE#M!n{&oDAInC9<;o{enQXrZ#;5fDAzI8{ULvi*nnnGh2;x6W`DYBn{oELg2bQ
z9R9IxQ*N+9)md1BoOUTcJ=~|sn5=1Zlx70o<UyWEnta}i&pdSlu%yD}F`zIiL83m_
z5tX3;&Sam<uzvm)!L}9Dy1wAHbuOiV&2Y<f<_UX!ZW%q7K!gvZX0gnnS46?qz0i~+
zkoe$cxbSxQ$y9?uJ|KG%Q5p|R5XMoovUEI=`(k;l!#TaPAhi@VHy~fZMP!}xxDhaC
z=|M!3vrom&+w|R>GjBoJY+Z)ay45q>hkm)22Vue~Z~nZ`g$goV_Vbv<<wgGcNb^KK
znJi-bR<~oD&w$DAGsyplg8iJtzlIk8?h{;4l&1aV{o;Z#T7lt0!C}y)&frUwpuSM}
z2r5BX{ekmn3J)lO2lAna%kGYwR1w<-C8(}2)ZDuEjtV!QMY6E!7dAyf7fQ!rQI99v
zQ-fm3gtM!cJ_qap6D$Q^2z`Qh?OCBqcxy4`j1{?a{(2wwHt>q0xqzVHQjk$;eDTKh
z4_x{ukg{>nGB)HH$K#FT{wj!3Iccmz=I*=v$Ir>xT8ww~JzszEUI$z@XN<;FI7H0E
zRaKN!wTAIYUFG|r6VbSE1$O3{Ki@4C)sx+1^>2mQjRxndm_;5}wUyOAhG<rJehY!U
z94>7N-t)P;*)Ch*n^teSSFMDoS!=5?pa0QgQ&+I7^?|Qe8HgCyMpTUM3rvBY9@iQ_
zJ9w!5^Bui@#r)bI3e>&q=pR*4UVn!*kqx2DWQDnYX%Dg~%W#yykbq~k#Mhtju><+9
z7a|zZ$uNd?#sy)vqBkrh&%UY)B1;RgCf^wTF|s>S>O<fBe7an(yk9RXcJIp7J{7>E
z)QQfI$+JHaw;M1W_Ja*<Y9WX6@FwWP#_>0e59XR!bpKG4c}y(IICSaJOLF)rsC^Wc
zruId_qvgfEyHu9iLD5EXeQT<6ZMyQ{+qu2`;TvI~mR=SJc!T1s)|T@aC9^Epj>9d4
zU~xJf@E5XtrzSS!^GYj_^gVZ3rW?h#U&@HWV^NWQr<krKl$akT-NH{Sv;Ppr@28ci
z;nx5&^~>?ABs+Kx(wrA)28Kqbk*uZld0YDnPA+a9Uf#a`fx)2{FGobh#3dvp8%4#Y
zXJyA_@|*ej@H5=abmhnp)Tn8GR*i1W((x0_WJ6`(JTsXH2By;TXBcyB2o?h;cXB(o
z8CJ5LU9b5W{3%{N8Wm%IQf#N#a3wyKK+j6Pf#`O&r817<m1h+js6q2$7&$A1Eae<r
zlbefSeP4r$We&LFSm0v|DmAo&3n+yhQ5?pyJ-Qj&Xr!PyZc@&Xu{PRx-cP#P6eL@`
zr5}i+vNn_!O8;Npu6VJISb0u32AMWKBq0_5uUNO@lE=fi{r8IxD=vEtT?Ia4b-d+l
zhck1U#P=V`BT3f6zRWtr8k6!3m;*iU5k;oUX!dp5xv`sdwnZPTm6Q|7*|))nTKtu0
z*|6oym<1lv1M*W_8JnP8D;!%JSkbvsYP=r8%v-I(vk9MgOFW4x<JgGME#@Qhu+rbQ
z(TSzGNcA&+*^~w>_H7@P7+w1#d_Pi*sKb6gMZ?x-B4^S0Dfxw62r!eA$M75nhyi|^
z3~CM+gTTNyXGfTor}3k#+Mj1f*$ugTFe914Vi{S^*x^)em*`NynFHoD{l}l%ZVB?~
zpf<sL?%}|5b_NgggqG4@&H?P=1sbl2K_p1&s2l<@ZOoB&86ex%t@2p(%C~7Ks*(?o
z@$I#*sDT~Ic>~HOM@Ex)E1kzEAKQ~e`9<3|M@_z^6F1I|lOZP1pS3$GrN}{+D66;A
z-3OFooHo@~dQX1D=5xAP(KrtS<Dt1U-B50_=y}Q9iHev7S$^z-%f-b-C-3|VOD=&z
zMaI6xDDQ3#cYuj%QsxnNu4FdNmRuCcwV968T1QLSN<}NEU2zp>FgIgB$HGH0&{K>C
zTvi}=zSMV}3wWiV&o5CF4#^B&L8yt-Zvxp~M@RD%rG(|^$b_TxDDP8KMP7E00u4nC
zFG$WnB|XkF5h_aK-mbB}IxjQhV=8($a97T=V?7pdxn?%(Mv%xwXL6X2U<0SCcY(|M
zs^B}z?`z!dm5nit2+{$loVUKhYyEI1(?<K7wy-A@?#<Lo_zm$Pq2;+|AZnMz|4G<|
z`Q{)|M39piZCt8smE;iccwE#yyfBS7TApz7MPI`Pw|g1|`oIl7*L5{o>s8L(3~~++
zu&lJ01B7(f_338!d?o%KzRy7URdTz7CYTGh!D{XOfwd&<TpZYK$$ncq*DuPjT{UY9
zOHmu&mkQ{uiL8xy=J9ha;p^H@uV|@hd75x5J^#-shye`YrvqT=-uQncPD(*a+K15$
zG-&)R87<{|#*zn!@<cg6Ih5k>K7u3Gi5bBOWAs!eSMtWf)3vcQux8o(wWP1TQ1E{P
zy!g~D7^08EfePft4sUWzVi}Zn0mr_O6V&_kF@UA2BpD#AK}lzof(CJ8>KWZMaAH;@
zFhdYPcvh_C!!!+W8s0zzPe}I&kLhWL51EjNb4=hdqE&`P4O8~)F#8lb-2^N4(jtCD
zgR!1ux#|UxGsSV4MdZ}CZZKb}91W7VobWWsvjyf%2P;WJ*HmBgwe=1D82HMuj4`Z{
zs_%SWyP0jg^A_>%NY{|9n3AEkCF;x5KSH2Fb6pJcm;fY{%mmbjGv~S=k;K4N52{>{
zIE#AAxTk&*z~F2M*F%tydWc}>aQbf*M!3rD31EJyAu~dQa`x#YYyGO@&npsO?mlu+
zL7uI0V2Q|?KW+YC4A<Eyf1tG)3%X=u^m^xeSP~Zzkz)&lcp`*`Y_s@T_X?TBIEo3-
zZxC)~F<Gfn%abT=!y0Q!vx<UjdLk&IBHQ`>)#~N+(0|gQ&X^X>c^5WwyG{>DK(nUD
zSgJWwREcr?4Ie!ENsOEn?6DjPJW0w)cI<Koqh!TwtL@6}l-^KW%n-}AWn<XMgtJaI
zh#5ra7KyP!miVC{!9|I^KP2GKk`F~e+kmF2kyiD;#`dSz`Ko46>-E#dsCPsy&#VI%
zo||Oj-B{nwua;{Pg9G>LEaj})+|*3|=+?DvcYmhrPRu=dOK(>(Rz85L5g8$09sL4F
z;;JJ(eIoA#a2!=C@5qn&?3+~K<Q+~%{6F#C<UChu#^+tJJ;A#v<vh#Iz(DgF*Tp+0
z<@atc=K4k4tB0r4A-<acr}G`Dqz8@x3~<!t&^d#3wu-)S_1y>)Z+W5hb(khSmCYyD
z{ew-#gT;HhF&#B)j(KJbPrvW7MpHfZ3o82GseetF%bi3j|9m)O{WWPr!0UMCG>ZE^
zPG0%s@q4#o=<oNhSAn-Y{=EMQ18VH0B5MiIGkp~B%$YP%L2t(Ml_T8mbJJdhdb3`x
z92NSpmz7Q2_)4lAlhoMHwhi+{e$pIQjNQ-m7W5sy(|2E`XForp)>r6B-URgZeqpMh
zpD6pXlD^bIQBkd*<QYEHD4JGSCFn1EzG~`>Mr2t>t-s>sgkh)m2NlDD0m>yWo;dny
ze5;zP4R~Je^7LZtx0;Prf;6YrOia(Wx_v8ojqR#u$v?hb_tM>F09VguXdKoDb_5!q
zsh-P^?QRef3N}B#GDB%TyrEndtmNi8U-#p%C2RF98UPSIh5*<B0DyuV-~eC&9S3Hd
zzVHc)2#AO>$*2g4iX#;@IL~NvDeLg5>5EEA3ut16v<$`cOeD{mNn*|9O{|p6&MTe6
zpE1L$TG?yjowV>ydJb+_3mdGH2iDoc*v-ex)8B#+Xyp@(4+ymjx_BWp+~rcFdqj*^
zRJ?agf`3ACaMIO~<kXAA^zgLI$P98UIX5A<;7S1{g;Jcs#YZYB8y+5>pP%2^+1cOU
zKR!M_{lfpx13RIohMOty7fv=sVt_*B)6&rvw_Vw(3S@6}9)&epyj63o+B{3E)g9WK
zy}m0pcVB%y>Q8z0_4f%em6VpAk(ot~P*u;%FHi@g1x+}`GlVcuOCC&Uwl9O2m?VbN
zk6m8Qjz!}39f@Xp{=2u`jaURE(CpqUq6EjT?jCPhQF}23OBS>wKhtoxL=Q7YlKJ}b
z%B$72*KgK0Hs5Z&d%wMrTUZE|zh=absi?AKmgwIxWxwJ3TdW#~Dn)7Gp+mBg4rEue
zFc1qD+KxVn_fLhRFnZDEeR!@8r3s3x<>uZP1Gl1}!^X>^N(hev^<9m5SM$>vt*DQy
zkGoo)o#=jCQV;oQW7eMlxXQE4d-Dm2N35KJ(uQVCh%-2<4Ulh#z_XlgI(yg=(ySy!
z>m@Ahh~phVD4vQC_yGs;$TrEWJ?XvsW{3!87PfLekFTe!a%;;$2*5HEfY_1Q77;vP
z%7&jP<x(mFG2lcZShNqo@bkjHnGMU9Th9QB0<&>6W=8I=5;SqHek$j+8O90hIBv2g
zJ5=#`A}}4e)osM4N9~WLgQhr6>FTx*y0%3hmwlFZ?dw1Owljaz>)Bv(*(fessa%r)
zW`PL1(}Oz7#zEN_8XAaXp%RfSvUrVQCe;1CLPRZV>SIR+4axN6qYsZnkeoE)i7m5G
zd{8|Hv&IoY;*hmy4iPDYWioxF%smlqNr>d(Qlcu4136>7YYTNg!oX2RS^)IbSs?_7
z<(H(Eu?h<cGRicqER_z_Z*U&V!EM2zaLlduuPgn^gWp#LHMdC#?%fs_LFO$xjp%bW
z&4NHU@;Z)*6Aef;9LqzG__LOVOY7BX(TGrmQh=y_Q6F{-#1^j7P#e9Hy$xWA=HRd7
ziLWr$L(5FHHo9^QzXQlLg^%dNgNPpyDzU?<%ndxlAVx<z8fPqth=V{^kK+Zo20`+l
z5l^@yu#L=I7(-^oeswydjZ*js)BO*Rr9sROXl+I{Ov5z@!X>^F$4*&Du5pXNE!nUA
zhfASf2aaYIq;zwJ&95gf?Y^A=@G3j8-i`HlvG!oY?zKvZbz}XC?s>qC=opq&L*|ZQ
zS{Mg2=N#sNY_&jnDqOS2Vca1ve1wB7zx7ncc7-rpY`c69H#I(v8hM7jDhYY2@m3FF
zD6MBqK?rwKo%Ak8JYNJn1lnV6^D^67Q~2n6z{eli2E675#fm`Bj{he``10cw`17a9
z8nUYuOQDXZ1B6jgVgnTZBl}neBuT^ajaP*53bE*<U@rjCc1SIb5ABI6EcPO{H@RiE
zY9WmB&bB<t`;&P@CYh}VV}*iK?;g0*^9q6#L>2~5BpB~qO};H@#6?jbKEqi*;+Du+
zL}D_E2Y?xQB;JyC%WlS(eKze-7=ura-v0YzHSX)*pW2W09fo3F#Cd(q+g{d0PMuXe
z-GPgTyT_a(_^dOL*w+D1Pz`q*jdXGzjTK|hiW@)kQ?MB3(AX9@&<efa+gjD-K;c!U
z6|itf;JU~N?F$3rSOy)$h?rwKveXJJBWkEljG_avG&rBa2!jP|kbh+_Q){}OZ5eG~
zI(s{jN510grU~u4IULq?3KDasrZVcS0~Pvmt`!rrIX;WWo4)kgOoxNT*Z`dJ1Pbrs
zCP_kYHcom}j00ts!8!dAUMuqyh2NV1H=R&PJbI42JI?8>Y{QCfiIxvh*hyS$M!GTF
zkgsD?nO1+k5VzilG^Pv)xgHc(PB%#{FBzFp0T)H!b;o^XW1Fnr5OHAYyjFZ!yx^|w
z`StXB#uG!|)SGjSW;0-FdsDWuyKq&B5rgM_*iVL{kTSiIp4Wg$(MlrpxMl?UXx1u#
zwGA$Xe|w26JtbbLQXHjCG73Xl-7<^>EUF2wXgr>YeekVr@3W;e1LgX|?>DdZD)?W#
zCN>$)l*;MUHX(onP~dZ_$tJTt$UR10cQz_;C^|=74UVwEFmR4>6)IN{Q^`Drz-=53
zsPdwcUBX|4>v&sz8TVYwij(OCijiHi<F5<mN(Ia72QA2zm*%SZi_ojkJc@~9A09iv
zWz<1tkIXWPIuG0S^V%I+EEe09ysx#)GxgzVpejr>Iib23ioyW7$+>>~T6EB6M|*rN
zJ)579D$Sw;uwyZUv&Cc2>0;_cuPoNXgMiGd@gxL`6%Qu<6L|Au_AR`uBgf;QfNLmr
zRz2lvQw)(=(0KqRF^m<D#4_6eQlWSvw2UQ;QHt)mWW&;(qPvYWwsf6u=xM`r(7`%H
zj?g+Pln+a9a3$oDZ==EN1TN-cAJCx9dhd@bw_swqFa9&)er)AgIRbbk9{mFT=3aaJ
zBg@wZE8*81l1_@$r@p_i<8ZQ&Lz@DXNJXb`2dJSxD6JAgBH=;+F2ROQ#XKXW_u_(N
zjsOe>vw0ModgDLVOs7FFX{{d&4dDuav#Vhxr}xSp+2fx3^#HyXQ{8J{?tRU~Y`)YP
zAA3g{0b%1w^ZRT{$HS9MWO2~o?oUY7JTZmilMBf9<%p3?2i#YXvYlN&KD8=S`qc8B
zoZIo#0q(2f1L7pKn~TnZUz<&2tkJAR4;?l!al88RPQTs&$l+5f%jjET=?N?`1*3JN
zM8LEXx|(USD+Xe%KE0bjYNxB#@#eoX)%`U`;mIq1L^O*a$eQ6~QqKmC0C*RUrZ|6`
zZ#p?={n4&Q$GU{a=*D<N5i*Dl5->~MxI|*&K~%T@HUd_ifBMPu_pcYa<}oN0jAex0
zI#^r=2v@@dMhOx)E);OnTCBf>xYY=b4E}e7eJQEt#qz(NzDL%(ku|@IHw=0oym-1B
z`|y?3hm_v_ZR@XzuWF?B2YUy9KK+{VTY&vIAfKlPL1ygJmWF)=^K{cfBNX(QS*6GL
znC8;cPBu0m=Wrw0)J!ZvZ!@j3kIq-XR&?@vONKqIoNpHBksk820i7{@NN1cmXnN07
zcx?I@nPdBT6)}s1cp&GZs>FfY#xjJNWP>R8orcjX@I;QBe^Hms>Oc}&h7;c-PBu%E
zJl^cQOJ~wSbZ}kKW(-R=lE=mt4!#6`j5kX%*qX__*Jb#Ti25bH^Y4e4%wP84IJmI{
zZvO1LN24nHx!DRe5*w9JRs>vlA$|Vxtyq%FgC5Y@lUYzr(&caO0m%@3uZ+>(hF`N0
z18){t;2HrLxWH#=A6__rzl42c*A0>~#o8Rdj!U}6mil}4SNr{Zi>&Fee=OyCi0T=l
zsoI^?T*0Kc>IL@zrebY(pwC<4szc_{9J0*wn#fa-8rJGHk{cu(9;<Qbtg3ag^;dq?
z<baN|TI*gen}ug%zML64E?Kmk5ruR~UoAljzTg$C+4p*5%f}eR-zu71IehiRn-aUF
zX)YciWJXH~4CFf=P3@Le9ho!3KzV!iP@dr_Uk?PAic`8ft{%4-{^W%TAMr!ON#8Yz
zV1STZxNj&#O!!?A&g{~+?z2ITe3s88vPxo4)s^rD^zV0Qz?`~3v+3alOTJDKp68+>
z9Aft>SWZ%rARI)o!P9##-2yJmw*+M3azu%$LIG0W)zuZd<=|M5%}bETsA;Ahq+Jaf
z6VHt*_7xaWh;J1gA!VLFB2^Wo=T3^+#)~<ia3M`(8#{?}cGBaS5CR<S8_$eBBpU&|
z?T#?#7Pz31=n5H#d!L9Win)9;$yr?0NlOebCh5>%nAImTQk-*w>d0~E%1xXktCmPw
z;8{gxPm#`w>~p%2mCjYZ5+V)R1rqwdUXX3zd2y9lB2j7Q)^iKVc~fxash#uBTQg1}
z(b+Fhas*&4I@btQIF#vmimM={DY{b?S0nRHh=ofXim%VfH9wcZ(Nfs<f#(mArKBWd
zqAWXJI%`Ds8VM>qAC}N5oqQmTT$H<e0O(MW|JPc0AIV<T1@i2sEOi+tccNz<^5GH?
zX-p^+k&$!Mbod-Zo|b(MLFQ4FW^a>KkSbAo?6VA_{4s-w2A3|{%jM!I4&NxAB@{E4
z(%*2xteE0LLrF<`QHof?3ssrZT|cBY0JL1%>VrQ)qh*cJGU+}tr@l}dY|$Bp5{D1T
z_LNwe;9Pe;rFR@9?wAto@pA7E<%Y)<Ms41oWFTX9S55J(33KZ0Sch99AbGyCc6$mh
zh-HhL#ix_FrIOMM35vKXdq|KzNwz$GvyuT&#ej9F<WrpQtg@mC@y#-cd;=C76dd%`
zyw3EDAS2NTUprsxCnKh#E))rripeI%+?3RH!4lP|EGVuaGMcR&gHh<zyIyZ+Z?8Vd
z=YTM=V|sUHdQNuM$jE(D*F+f`{0MYyUUvFEL@(H2F2VAXHsq1H`b@TiLdo^l!9oZ%
zm8Zwb|IA6&-_+!rA*b#0l`4$vjoSF}+7l#)@<^|M>^)^6BSENZT~M#>+hYmsd+e9%
zuZ>7Z$eJ|Vk1N$FQDH}@VSSn0#EXJvWt-91-gR{=aDv~l?l<jR6I%TbmxjO2F+5CE
z)oKGZi}N~6>bO~T`+Xp<Eid~z=q0tLKjFp;jbLU<x}g||PeV`c6g&oKe(xKk`?Ef_
zODq4ImQWLq+L-3@vA?HI^Abphqcb>uTm{vmxjf%!J`e1uh^<6Jg=Vb}vagX)w(+Ar
z{d0Cva(d$vriD5XKOJpzN>j?u8<!(M20Oa0AL1^D7@O{C@|2vd#A<c*=+HN`2IiYf
z<RE?)(CDmYh>?*ftR!E~+VFeJN$P{BmJ*%DBb_^7*dhk~5l(HUwHSvBV3ynTa$3EA
zwSy5i`=^51nWz&}?2o3}uJ7yqhyVdLEIzl2JLcSY&lEP23E%~?)H@TrSMG?FO5Zw{
z_w2sOztJ4Hf8!*&ok0?Mn*`a*LCSKf;%K1C@)q%8s+Tdl{)2pW<qC3}16)1U0dxH-
zw**@*2q8dY{n+T&>cjdg&U;D@or}2`qIA7F`p=5N-k!ler=8eunV;fX{Og?uX?KC8
z_JR*>$XSr?2O(erE|ZMp|0JZ&d{)zq5`RQ%z{Q1Uo>Pgnew28NNkCNk6Yla{;~#A?
zUEOXg0TzuUrA0ck{S)>Rr{B5~33m^hK%PC0H^RlY`Fn5hT#};br#YCV8{36N_r@og
z<u25RpS#KML&kdx|JxN(NfDR|fm{hSGp5N~t%H1UH~ozu$Vk&OO#prZT873S`RLYf
zdQxRgYtx}^&2NO=Y+r&vbNdrOiklU9;ekhyjdN08d9E>-YHYP-jF&LE8Vb1(Z6b2d
z*!s}eHrhBt*R=Cyg7B0I_NH0$llykmhvTmv&gDK3XC}n?MX*@(tW2?&B^g&^A3j^T
zeN9{Ji6x|3e!w0((4W-rn|tfPa!~g|@il6m+{E3;heL%tm#&&&GWkg<y!3yap^#5q
z&SV46Cd+<5=o_x?6NipIu)Fxr`k3#okhrb5WqX@HjOMk(fJojeA{1|7N0m`7W2P(7
z7)$zLwX}k}J}gXMY;OcivF2~0ExF*@ni|2gpxa#O=eR5x+bt?LM(=lrvDQYbDcpP-
znyV(kD>seP3mXgHBDf_%o{bHx$qzlM9yYJg*9fz|JUk2zA3@$6yRbJ*)EehU4*7>N
zdFRz$PHn@@f@UWGtdvKr7}34Sp%kkN^sHdmEU0yaBFEXBxk?0?*z(7wle_Re3wUFQ
zZL*-F_3(KG+=!gN=<5g!_SRVid!45V+{O24PN{$qlIij*w$`!w3s-F2Rr*@P25b83
z$kX;uwecr)KnGLGq<O0SbiJM|b3=tfjVvt~Fiw3Cmczg;@yH7D_z(WN9$;`4+V!#j
z-tZHLk}3Ct>7&PzU4P8P-KHGYC*HU<{vMO0-}2CfKH2`=*ym1Jy&`CnF+ABX_MWBj
z4{gS(%jeE!$KI{vj-QVpLg&9V=}pfAo|V}Tal4QDGe7Te&WmzUfVq$O1IIFCa>ku8
z5O;1Y$gs>Q37XQW;GFL7>=1rhqjU_opv19S$n$sB1j}?e-6?Tg;J5;$L;y159pw=M
z-djcUH)aM^fcn-<2x}M4zkr+GBCqZR7_z!_2tFpL1GFSTruslLk2$vdIdjFi^6>@t
z<hc_*4}AeeC!so^$iPkIFN^s_ZVwmTCee-x$&NC`j+b6JW<#BV259EqPC+*u!(yhS
zJU|&S&M%%X`42#l9xhxL=f$mACNkWoposs1?q85t#c|=w=l)ve4=mVGU2ng0wf!{k
zOOW|gfot#u75>z%^Mf<a+5^zM;C-8y)q1ICec4qgedES*!rFvg(oFdNN@V_Bu|0|$
z_3;AB*pSEUEbDo1X-RfN2`I(aCqrFsLhyyYpROsR?Mtsx;*ccX??tCK%yf}02Ef=u
zV0}MXa_EUddihPRYQ0|*iK3fjzcwZSoSeN)Gm+e}2`9#DGIYV;w6$ceK?jWY38=uY
zv2+BQf@b)~_ww)BpSJb<h>a(>oXw}ATNhui-S!<(@%`@a`<q|#o1&Lfkk=73oAqEL
znw#(v<HfMKNgsaAG(l)WIEY_ci(~AZHYDs<OB-lp&4#V7u5JG0cHp6Itqgb{QG5h6
zrU5xC2fBcN$>>vHv0COPFv1UVZQbs*uHdyTE(5In63Xh|=5g&iscX)JnVjDypkw<x
zdDWG31KT^9D5E*utffj<cgWSHtB+(D0v#d3n7gmL4Lmhq8A^7(;b|hyDJ+BvZXkF+
z7@Dl{p@K~%%?46b!2OUXsqyu>`q%zm&3sYiSHkA_Ze4<8&lr45{FsagIuZN+p$fTE
zRR1X(`#}I@UB~v}I4Z63jv-S}(eNDzQ}}0x@X#y5Uv#*_bs~aQ^IK|Lhtfo$60@1=
zknT*v7h`JhbI;xPHl7Q2IB)+5=_qfv1niPhnZjB>XhObb&~|B3p=DQg|GfUHUb?Fj
z5%#zzY{~#I7Ap*!1xjONw4(P`(0fx8VgC&FxvrZ7y!KJo_xXqR&xP*`p6sJV4(4|E
z#k>xrt{(K8AIJ<HD7-oN+kBuT@=fLJxA(Ab*J%-9_7Up@;EVx-$T^Oia}mV7Z>xkz
zRn_p{HnXN82tmN}yk$<yXAHJiA-MD3c0O(!NU%s?KtuSwOk#9cTH?tv?d(7$^Fu89
zIe=NWAu5~U$HB*lu#^0NGgmqT-vM}jrmRN?zJU&|PgUrgmYZ1<F9i+}xw~jU()`cp
za6nce-!1eJgaZ^PPRc*4;L;moWPd!<aO{hYVY3AZ5kU8T!Z-mp$Y<eBamNFP0FM{P
zu_9fLXM3I58O7H@xA9s_>)+F7<E|3o&WirHju{m^Kp?&IK!ylL<zE2nor@LGd9N8#
z&;3c4hC^SDB%<TTz2d)Py*edro?remdHqk?UG>%LeD2(!c%(1S@Ny*mwRY9NUc^7x
zzCC*f&>Vab{^Or4-7jxDUWW<7upl>PAqsn(N(nNStG5kS;XWY=6VU!y%HLCl(-5~D
zNF6-h-xFOk3eE{Rd_pU>5<GeqZu4~f06`fTnOWJ9oZP&80zx99;*!e&Aqr=dLt&;4
zR5^lyl!=L3x9RyI9Rd@ck(Z!W%H}9lYD{?EYz6>}5JG<bbG>mT)j#-RL{{6aA33&x
z`In;>@i-}h9;mUTtuglJt&V$*#&#ds9L%U=T>?+%7Ki9%Hg?4>CF>PiWeO=}dc@8%
zYdUV*M||n0IV?y$xtK7Y7D5t+C|W4^zGo+Jq}mzKCw<{!C~tn-W{3O5{+1PIym4)%
zvh&S0c#Bm*Jo*ig0oEiKkFhm3fEeG^YURub<hYJK$rYyPNP3;B97V9LzA?d-AXumQ
z(_WgPlZI~z^>$)eaB-vOmFoORK%3k>Wy5Z4=#R1tSvVmYahTWUa35@=gl&fmgD;!2
zKaBaDvBxcw{DLM&ebipp>4~D9#`Dr01%_FP!GD}ty-+FO`{>?B>YrtZP_Jwjlh{%x
z5r$TuH8*_fEw?hZqXCmDu2sD2mM~HA#eu{~Su1K|JaO;+T89ykMbBa<Uoei{Isd|^
znJtn|AA+m*%lq!I`brUiZBiw}+&L!Wq2hA0i)c@-T=QWlU)bz0gQ%XLRJBrvY)*eE
z7MKB^Mg;eOCr-tvTvES$Q@M<N3`u|Rh?8LB2DPo(@#Ra%$CVNqL?DpeIBa8r(HSB8
z0DbvT49x4H=PimT_It`K)fgT~6pZ_9%ddvl^EHt~1=&h)G*%LzMeYbuk%yJ?c9IHB
zHK1IUX8d@)r;X*rM5HqTz>ac6vjaH@J99n22hm8Y2>|zkn))^gID_##rb1C>l>|Gk
z93Q(T&i)9rrO0n02a_zgeZCFh#dXFO<%)_HI0qHIL(zPj?mZ(3$S{ONTf|!}eTqJi
z#K@+2fXzg8(JFlelaP}8ZVc#+YZ6#zZ{~ok3o{F$mQQ=YVRb_1na*d_QVSW>P{2%9
zwOM-2S+IZ1tgnl8teZLxe^Q)}8(I*5ZZ1FIz!>SG-dp8_QnY|F|8x1wOftL}!05nk
zqVP=rcOL$2zV`0Rw}r?m3eH;Vz7G_sVzmL`5XNHD@``CKxlkKtpd8ZO%o_wj(|sF|
z#`yMB4%c`e0GC6+vVUb+)cSR?D1}u2s9YOTszQ^`bI@~#BtQ+jFb2cO<^0mcisyM6
z&Ox#%FYzN+yQ#u<T@qV(36&kCvkO$497%;L5P$({41i(ifwSHCj;st3cvi+4KUsB=
zH+;pRHpUcd#hYg!`V7d0hiXwXq#k^GW|RfopXv|#6R~Tmw{FJGcC;<t`P375u?6Bq
z1z5TT1$>b(`+gGSR#kSBuN|oORV-#~Ib45f8D8X>GZ}#!4&`x%dqcU*<Q*Yt0l<1l
zX`_rr-c7^FU-zy|#Dze=%@u-@WQ4<0(^tHybe@ClxIyxkC|CkLOx^5F2mBwB&cd$=
zwr#^pV$^`qHF}hE*XZsp9VH>%DC#ysx<Oi6T1rab8J!|hA{dlNiGYZR=w5!`_fOn$
zUFUfmmEyQB^yN|3@=rhgZGjFM;YoZ+z=)C!$c_)^p0<~469@X9v(<>Ya4YG;m)Buy
zN)tzyf|+1rc+~4meIN~4cB)J&mGlt<RE$|#;_d9+tAgTPTY_SySXPor*cQDVj}*)w
z52frNbgRkB8H(|d6U#|3m{5w1e$5bg%+lK~`&^U)!CEo9K-`j<eL&%hERJA|xFRWO
zjMt<ZVMDKDPIQ?^Er_Xx$SPk<jo87>kNBMf)Xfo~nujPyV9*5Ev;u)m6$vRl-;u2(
zD4|;0^y6i2OT#ju*AIab8HP1ND(xsEH!0+^a}TlGv?-1Ibjau(I#l)sPzhBLI2@~y
zTPF{&xSu5%{vk;iteI$Z*OKaBeMIItHjPaTBXmO_fvE)*xRqiv_zBj7iFwARYjn9G
zM@iC!c5|Tz6tFd!H2p1R>F8vQJ9=wlqyds_Ap%1s*GqyLUk&D^O3<;M*g}a{md2>-
zZHX7oU&42LAW<!g`8sDG23F?{{ZF%>zQm#=!G(~=?SS&JnLDgeJqbCtC2ks7wN52I
zhMp^kWL4tNeKQ=ZwYYwkKrzM!YDQAEn;TnZV6Gt@aGJ&#GX!1m$;u&F(S7C0%?Q2(
zh)2+I0R8X9ex4_1z9ySY3bNsvhy#(=9>h0nk&(Qza3*iR%pP>LQ56O}yVYc4Mnz?-
z)k5cKYqW36UyT-|{06ua&C4-y_Omth^w3@ay*hODg+WBKpv%`{rTfzkWL?P6WU*mx
zMm8K^)~ts?vXMZXBj78}BYs3-C>^A$Ysy*!l^q`!SR-v*B<4pq=!j@jV(1ZtA3Nl<
zI(;nxK-q(EFoCo64TVUDFjWn;t6I`;B;Bu?{f|Sl{@`d*agc*A?mkSzR>dpfupB5k
z(OyWXbe8p<&Hl85-;l(+Ieb3hMAct9<lLnwL>KCkR?kXVl3$dJec7Uu>Q)bMskli=
za9p(F6CHE19|C=DpU`D5pzuAyL*Vm)a>cNx%~d9cu8y*f!mpCkTCPGue6wFf8b@(c
z60_K?mHh2&*y9=X5aSxtuMK>cD;cUycm@AxD#7V;w|=ftREtg|=ak>lPJ%$4M%;5e
zDaEOZ6myYdQh8J?LvJ2kOn5uqT2D=ym1Ei;)wfJ6nql7&X++K}@{SgN?EIpNF!Ei!
z)F&&bg{<G#n2>>*R`H?|^zX?Oc1Vzc49iD>n5(xE>xWt7j`hY`O3Ue{phj+DVvjPt
zncI&v%JTOr9QO7_a42ezQwDo?NYrZ%Q23LpIM|mwav3aaPw4m~2lRfpxhnguBZV^C
z1C{uD<m1If_Yg-C+<jP+@9sA@BLX1&g)-CHU21a#T8_#X=_gu{=6#P+mZLNRJnJx2
zaAhL6w=WF48L=i<IqW<%QrI|-;OqZl@||>bJ+U4cD?ZnpZPstfD1-__{2MxzwT=MX
z<|Hc^Lvo=|Xt3CtIo;N4eDpizLea=xXW<8cj1k2-kWhpe88uWUT--2Pt=Tsv7a#V*
z>0?G)FG=)qZYh)7f?e4aLeuo8hixO&g+o@9ztmW^ZtL@*<vOgdC5}jkeK`2yknPc`
zwpizbhu>VB4*<J@zdGrc5YEq)*T<l}j=T>lZ<P%%-Z`FZCoO>w+J9hjQ~Qy0FLo91
zTlB5oa%!;v_jhmsBH7_3$?SF^%*gBhD+^9g-jm{=&5?f(Yb1_gX{)0wdX#}R@MZrW
zJmPnKh6emIR#D7_n}$dr+1i&@iB)MBr}&eE=Wx1f;Mw@y|AG*@gg>sro4+V7@WKZt
z8AFZQ`*$RUj{D6!G&4W!OeNwI`cE=GoO3F<b-(Hme(<kOu;Q!-lK6vkOTf6i9#F+n
z{lYr4g*`}|awm}H{0+Qej)GI-FQbH9_C7tL65vd*Awhz|DSpck0YVb3C^-q((sxbU
zj2}g=ki|*}d5x(f7MzWRMh-)L%)u`FC%G5^cijr=AkO3HGW$DxRX@8L`>!YCY-jci
zfF~`kXKC5hb({BPEr+q88HC-aO5o4S8$cg3ZsGtJqd}BYK_eb-=%$-5wqBTyZ!xC2
z0`Vy5@cc1WoN_Irr9pgyl@LHO#8eU=Xu8dCWCrtlqKLRfvwlFe9Yp;#h5a`70(`@m
z(+A)<dpL)G0RzyNLfE?E;L_htJp3fk2h`%T%-8c`B>bCoSXv^E9gbw^K5B)%P0ybv
z`f{&rrLrq*&^sCbP_tm5Yds0@5WOuqNb;6G?Ixj3oavIHJyf%RA&>|vF_<mZM+OV+
z83$KjX!2;jH_@`$nX&>cG9uD`3<ir@*IK7muqKhSzi#6&*aqkWgd%7a?zf##S21VY
zBJXK~2k`MlnNm}jkv~i)zgNNOkotV#Z4~pDp=7))T&lqLz^4aAYxIR?sGMa0&07y5
zOrP*-Nb$Yfpfn)4lH$8GEr&`0fPm-F^9@E@!cCnMWQ|@b&<0aufL94OnjmLR02rj@
zm-xL9bj)*uY&6_}Xd<7jmgA+$LHcMVOAMF^D`1D7H?B2vCegWx%dQCvc(n^W+Yks1
z5%j7GG{t^ud5fT&qf`o}a^!Q}S{UsjetA~{<`qDS|HxLkss--y`d#UQhigUHHw0tb
zwH+}~sSO}#f+NxbB2X^;8cj24DX7Xv&M7S=h><D<Nw~U7d<2RA%>J}gP9*bFuUimq
z#6J+-01ome-qjG1#fm7?yQuvD_VMuBwe$Z(O7rK?I2g$Mqzm4)Y$0h=V9`?eMF+d0
z1C3F$X%pn$B+93siaTzgazca-4eYAvGcW}4ubPn_?Vx|nBIO;*c^fJ|?e%jVfwdi~
z^afNgtgMR_6hC=PJt8kJjZUQ#%F7lS!lvnBKNVCfEt4=#pGleg=-BN@KKP-wYz6gu
z!~L>OpS4r=j+I+j4!;<I|0j`KlBq+o%@UUR<1e~FTSrRgW)kP==5hB8--N&=46CQj
zBj7*8{|oXexl$Li0b$2Nn_&DF#@q=~c_33VH7r<-5Hm_kDXPO~2v8v<0HQh}oHUfo
zNTVi1QS#E2wXvDDrrsi6?;%3}(8m}Ah42N7-mQSDNZmyzSJ3I2zN>q@0zdanYrBG<
zt7TPO&oU})0Oxb91boe8$P{2$<Hy!Yq6G7o&z;PVc>e*-j5-+2atvKY4aG-{Ofg-?
zDdwFB31ba=o|h=^Tr-jy3zr>>cNj|xzmvTsg~d14&I|@;2;FytA{0{JIkU$bT#}n>
zu<l_8jtBn?gE113b|}xa#Fuu9^d`RqVMTf1=ga8|%T}kfhwKarnKJgT0lXdLCN9|1
z9V?61VH(PAz?PTlWj1`3%PdU1w({Xtt+HaK%ep_g%}IZn+_`7Eji|Pl!Q2!q^|NVv
z_Gd2N80@)evu#33#=rz$npR)w3o{jA#%#J36J~(OzNQ+>g`B96$GgNL8C_tDj2JT}
zx&`C@A4b}`iyvhxy8s5>x{!((@f;fghedcr=HFQ!ft%*@$1o0a%DMf10hiO7M;ZZd
zUq}%!-YivjEiODcY^PFfyExtTqVm1!U0o?~cZaY(|K;Z`>|zE89uxU_+7X!dUH(ol
zF#JQCjzo~CXz&tqoBPg+|Id}@%!G>TF3P^Q{`+#UqmaNVOi%|Y?bSu#&8my)S1`AH
z$SbM<UhY7LEk<25SQG=cM7~fN58;;&(|MO9VHc|SE|kAJOujpmBQnh8SGeobpC~3e
zDa^Iw7ElcXSuq8xb!qs@N8se6xFC_?Ouz4U`zJ+4X4pj)c1M>oY2N)6T@!h~zWaXj
zulsHC5A0;_zwCZ6@aw^le9Ty6%#^%`GlFVH{^4@u!}r|}KmK~y{VPTm_-McT(YIfZ
zPURo}jAZGFeEj#<W8lpWI|@70{n*6~w5CTTfcB-Kg0M3~`hsy)Nbu@0LVpkEB+su@
z9<WK=!f`Wu$VIWhuwe2_e$5^g1*EV}05hO7&gC+m!u}D39?9XpmBsMJN-Lgs6QGTT
z%pzU?;l7nOF+{CC`5q6H+qlfOK#)Oh-M@UIk$^^FA*LI#&o_YjNbkSyP;Wu?Y-UJ4
zvy3J-?%mgvsaPN-Dvb)|I$97%g9htkz&x?Q@m1PS3hA#wY0FV*KX@UQ<(7C*`j>*>
zy47S)jZB*DbkagT5*jwca<DM~!{Q18_-6gipe$!hkd4mK>&7V4)YyWaWaWA0<94zc
zf)jdjyP<660EoGVl2b*}5OxPy&9{N3?h53Nxoh^?L)qzf9)FiEr8Ug{ecm=PG?)WM
zv$`rDr-(`@CrjUuDk`Kc02HN>6waUvji69DY=!r#P}zI(%8mT5<suCZC7#?RRlRUS
z5CtZQLfe&cdV{iG1JvWSrl9!jCrgBC;kPS+TtN#B?`W81G_!UR+nR6=tw#QTm~svX
z4@xQ@t;r{KDdkxHXh)Crn3{6UwZKHTsx6sw<BS!NhP-n1(_gEK1#-jOIC)k$Pd1TT
z8X-K6g(UbIGgiqUr5t9^v)|<_d~VF`=Bg4~a;aF{FU9&iR=z*)m6s<~j|gJ98EPAq
zw?KU|m2Se7tPS5b6h62UsT%>5yuaYuzgI>~K8+{}Y$tcu$Vs^iDiCA0VH?u57&Kpk
zOi#j2+;G#o`)UhHVjEX#)r6Lgk%Sk_XyLU>>vEruYoM>&QXAy>5}n3+;X;CYm9lva
z({N+2rW2M|C4d+4Jyq$}?~bR*E;SqNjoVD}j-)eMGBNWfOKS$HRjNvCYL@d+VNvzb
zuexnI>kAi~>*91Djxx6L-C$SlSbi~{s(y+SH8~m`PyC~YufCldPeq-gXSDC;yJTit
zV`D#Ro(Q^)@O(3jwM9Y^fL(*HtpJ%CJ>@S}lnIUrqKxZBZsUJmDbA~r{28VGat9SZ
zK&m_VXQRV0!WAVmFm(yr%Ax8!oo2mu@Zh$K@Fc&_|1jI9CzYtj&ZVN-_&^_^ITG1m
z@MWjjyUDS~b0l<xP=g+g=a+ZxchF?JkGwmWC*-nH<MK)8zr+2JZ=Qt%fYNmHu7|HC
z(@H3DY`M?lC_f1VNIVIMP@Fx{4NR>KL~jIwyn+PY22ECl_!hNPkKfzaC10I*7~;Q!
zng}u6Pn7!_Rw5Wz-5++b8(TKfKSa1+CKrM6W(+1xnt$^o=6S-N)0<i|lguZH`A_CH
zW7@hr<Lf@edytZNKZgT368#dfl!;(<%oD6MWmAgl>4zcN;$U_!*fD8E*YgL1f-%|k
zIL1l4U!HM>`dom-N5%uGXI_v04L$aDdF1Evjv4R-Ubn(UoLqi9PzZm%04)ua@{Uy^
zgCSHGr%U2KdBM%=TAII4zI?duX_ug0Si5JKNw!Z<voB6(0N1O}Dsvj+OG13Cv)-x$
zOTj1@OQdv9L)6|fnUfdst$lDw`s}|pXA_&Rf-gl2J-yvpJ%0N1(z_P$c5hXHS#c|+
zWU8`q3c~N8ih*uM?n6z4pYr<xY#VCozSiuDw8?W{GRJOk{JH1wNV&Vdcu=SW^SAtH
zrCdTKmy(lt=WnT>dwIa^N!Nd6B;;$q3?}u|$`3a8enM|pdXpT<73PE+rq0fnL()Rf
zhWdj~^1fe9PWsld9=#8branE-X8-Usrg_@pS1QdH9%4$%k)hs+;qMO*8>c0E7q(WH
zuzybmezQ_^h1j$MK7V@8+$}NFGi~goGK0)Wc&U%=^i#+~mPPU1<`Op6BE2IEx^qf?
z)WLI92yfCG5<wpmhLkucEdf<Td{=ESoRX`x^A>D8<(0O|QF6+EnH2vW`(3;}WD|x1
z>t^~!m-@RJf6@D$j~(_;r~I0k8Cabea1%ItQ8u}G-ga!%droos=N{zW42AcLqapR{
z(!C=fEsX`0dj)1H(O~s_)3;D-I-=^hQG8-LYof;wrf(6@YoZ#$KR-uFW+}qhB(1=s
zFTp%*sh~+pv&zS+T4zZr!qkUVCHZ_11)y+HZY6rnFspKDNQlh3m)cg<@jo`e3y8_8
zhBNpklF_m}jL*w^`L=?}n;?p2Ab7J!*NH}1nxYU9&Dd0Gj8AEL-)eJ2O+YZm(g0(Z
zV_v2)mLonlXmgG8)YtTabN?)X>e}&bpC(7sH5D?q2g&!HN14ls)0I^u5=@gR{Q%6P
zr7>v0=|Grtgi0xDFmPE&(cH-|N1eN-|A!}`;W4fY;vPw$=F&_>1@nw0Gm5*-)&*CM
zv&gF9DIMI=LL#~8e%J~z_Eai8?M{902mt^^*?Sk9Yyc_jc$`x$t=y)QG^y+C4SGWW
z0#Egpn(W`6Avvq`s|cNRAa4Ye^`e}Z=}G_GwCrtq6x8Uu{<4FRHI+Lbi4V(7ZA;A+
z_?@f-7*dH*68R#Wi{NKQno?35Ittv=OMBhh@%4jlSk^%r;)P{yHrVlelRk8nJhb(b
z+J#`#25>2UM^V2=X)c*@e6FxvYMs%#-qdG3!IDQFu`1v?s-`(ZmAKaZB=EMeROFA1
zsXApQQ+D!KyoH~2vYr;5+D(|>H#1T26tZPt|2&c*{#fnr)y4PiH!mJP*30@wT5e8-
z;A+BV8$PWT1ZkM35;WPxnwIe*xf14ytWJ|1ObER%z<5itf4U$tR&R4|n>dG|3I>=X
zP801iIl>-ip?~Q}8(B^kPcE8Dluvd}NB&$%KBmHGS{&+2nIo*oRu~aH2nFNRF06#R
za>R9%1B0$E4t<BRd=*5hCozvLq^gs|C3VH2J(!d)yk`Qs2#V9>7CfC!Pzf@7ECnNk
zcU6QZyJwg7!Nu?A43Qx~kezuGlDzUMN(oTF@knkLkdt5~^xW8{&s1G6D9I!0N59k;
z+PM6ld5bDW0p#P31;@tb?yaK6mRD!KS$hBCWw4~TniNd}xY~De@f^42@q9x4J%u87
z3hq*I`@*+01f1)bq3y;s?*NnuWr;qBk7@?1hyWx2g>OMWXb|}ZvYp9Rq(;&-z3?y~
zu`G{r6(>FN7D*cX`kqJ;pHu8=m?(SPegiUI;Ghi*etE8J#{m9i738W%efRk8P78jh
zM<QZkZ1njo3-ws>x0%(ncJe;F4{Pg&1VSu>=hjr_r;<=RX}uvD1m@FSX@r7u324$(
zcpzh5Pg`|rX(1DRYr;G#CfN6U@Il-ga#tmDUs$!>{B(TNN1gS7VUF$(p^GlvA0ye$
zMOwKWs)ldk(GozINaBq~(`4W#U(F~XfrGst&6>K|^kz%&3+}~*2CTwJV<Bv6m=IE$
zrs$~qWSs;}AHg{DAqmnW?IaTAx7+AFoy>n86e1ocH_>Wi)mAckQ3(xl!9V<pUyOQq
zR8GfvY5suQ7m4ZG6#T}S4=*I0vVvK_)hAx3kLYi#j*KevIM|#p(=wRMI}<;!U_}I|
z3U+1!K@|4$_@p_e?@>EzvAsLxxG5WIqXB>=!|Vj;yguXMXzL7^om5I>a@(uwCd%36
zu6pESCMY)iZVnO-0j+G`=SFNUVCDhwvq?-m1)P*p^UyK|P<Vp~@X+}w4a{;lK__%m
zG=b0q(~jqqs;+<wDriyYx+ZC)^1$yYP?Bl}J$yh*!vr8xrQZ(<Z)O{}&@HD|EHHNp
zW`)9D&FkLkrwt4#;pI5=o>1OuL*8F!qf76OqZ1tqn?8F6%P+^vGN3h#6mVes4H7qf
zC<&3He}%Q$f-R^7DFdRb4lzFgQpW%w6AyNTYT>LA9_=(Bx}iOuXwbfWc_w~OkLNc*
zUyo5Q-+1qdkk$xgbcv;w%gHAj%5r^Xz|A$d3Z^v00vJ*^yw9|1pN1^XsLhAi8`(QY
zg(cx1dM-G>boSt7YD0^0xE7|w+?Dx3Ye097iX~wo>&3FLQpM*m2(Y8o%ot`-)dZ7h
zDQ;*YT=?Tr2b}bT52a(!2}D?D!$nfjdG!!=1T~CS6~*`Wq#(`ooD3<Js8l>PXO$+H
zA9GnN!^}EuLG2F83L6TnBmkIV0Nj6fhE17thE+hab($Q)7AZwps-PJdD?3rgcJxHb
zS_19WVSm71-C$)2o6%si06YMU0E&#48=hVsJc1FhoZLuLADc<geGl8#h>FIAL|@Gn
z7)y^PghCj8D6(@v^WWOndYB^6R<+#5Q(&|yhG9eqfqi#es@eL`Wn1V|U)?b03gaKE
zI+!*3y#;`g{5e^(h0(pW#Y(xCQQ8NO85gWwSTIf&fJEPW#S_I!i(T-fZ~ob|VjpkC
zb@yI2Ycgko81)%@rd@7@79W1N-Db;28Qt81kO5KIW55$N2cfTCJtL*Wb$<GW4{vL9
zVGN4w7r_sOcf9(Tzz&7(+lW6ry!ZLf)-STRR4bZNNMmQ!n;a{1Ith`n_%qmj2T-IL
z!~{~=pk=uvPzwabJprndxGRjXerh%UML|a$t1!yLDVb#Cw?$volg_#8l<ai0#WbQY
zE>$L(#?rr)wWKhi^hq+~!O=Ds_;=ldKS7x(emlIpic^NSr5**&?g(lrPFt2q<u#UY
z35xFkkgHN;yCPZSHzixlr^Ni;BTuKi=ozmBGt&EP&&aXJ*}iEk=?lV_TN!S%C$0ce
z{dwHZYUi8ByZEwZzdbG9zA3G{Z8b_ro|x4w01tfVR6Bt-dg*t1fxwSy5r26DtE=a~
z42B*n4lDL2Av@meotw%3<-DC+4i-SuHhHG;*a<4V>-+RFpiPuW!w?1#5YoTJ#CQRx
zn{0T%w{e?;snze2xj5i$09iYm=D}6TRY3itvCgp*zw~*$0tbqba?~H?C0+dP;I{m$
zFMB(_Ak9JO{)MJvrVrC1TflGA#DQj)gEWuzfc4vBgLl$YG`ade!tN-H?C<S(Hi05o
zkGe+nf&tkK$SzI=0x--Lke=~821_yvMz+R-6p*uVXuvpmFo0Brk)ih$-e&(aI6b2h
zK&78%-JFaiC0kjA*8OH^-Z%|P?KeW(?aikAT}&21Y_ooidR^SIwBx+aDDrM&W;-mn
zA8?mZDAH-lOfAC4-sMoA(DU|L^)l3${f_*d?RVRK=Uv1n95r$<#mQa_pgy916VIix
z`KMzK$PR6^Bg65zW`eSH{s2-Vaobb;i~K!kNZcerNIc3oR7j^-jIabr1jNe0hZaOM
zk7XQA6j42UfJep!J8Z-#eU~5rhrUK%KC&G&>6(@Ddxou&mTbBkS<O8&=3Q>iFD#ZQ
z-a@8&CK-OcXx4d=`=4sMcJ1G3r_HnMrE6LRt|E#@&;IBI5oGk9{j{mR4{Uy{T3A5-
z4>gy2-S=Y0ifjb%r|~l&_Y+<DC!6YLPscuAE8aOT#F>>p6>TOAYOj9{$6b1sjX2*q
z6GL+J44<c>jWQ?QqL5_1*f8@AIIt)f@d?(BAyNoH@`Z*-Qzytjd;)!#a@S#_vQ4CF
z0XSQL$P@s?R;=PRyLb%2w4@k33EtygY&SvQm<0{71|>c$lxWuLUNj6q4M8jvm17r0
z*{%x`sFR1Nj=^5&=|E8|-PVi=Al>*>e<uiuC;{AGj$<Vxw`s6fUppb-T!>X8!#z!?
z#-`<xYdi|Tx!_7wv^kJS$#PaslkWuoM@?%Br(~~K)^OwHB*1T>fyQVGeK?~pHz;Ux
zC=E+i?F`OEBf8*lScPIqQB|s;aEqIWp=)n&3A^*Az(u*(wYE@MWzu!U`G7X#;3f>6
z&KoksdW)Os8p%)1&9Uan!=pu%l-p4IKu%vmAU}^K@#BSsZPzLA4wevZJH#sYY$&z6
zE9(ODfuHHHfCrN!ZczsMEKaH|v9Dr=925W$R1QNrsE?UU#TZ8uj;81-L4$aeV{q6b
zToW9x7V_j()D&+L#Ta}?@*G^SV|_Nu-Q)KJvPD7h0a{1^pa(&6ByM*o6KGtA^>3%D
zN>vZ<km)#rwJx@M>pYZ}cZ`p>1?;CJ&t3b@N3?b`8D7V$H}HKWX!k`Y!TEPIH7QL$
zxodIqKbv$t<);?!<#W1T(mmcusPizsHANCq^X}*)dMgFgYDRuirab+{xdoYDv$*py
zfo!J?=AGEKU&C-xL&P<`t!d?_&n}jXA-FPNm4>;%+2|kNhOGX2A|SgB8wR9srmZiD
z3XVW>IJuFomOwbxLuWl+1zOew@@AcMU2vuCpY_nx@La3zCG65#-!-HZ7+l%~SnrZ|
z(i<T>x5DoJfX1?I)W+9oldo<H_h8xhcKPeJ1EzO{TJ;esySAW8GYJej{F#k}Yf0kn
zOkJ&GrE!Vh&fOTy!rL$R+XY{|=SQLvU#&h94u8&Bl5I;(Af$l?{HynwW7UFoB+Q?-
zmcy{4{Oli}V^1_Wo3O<`wY@Q4{;3W{IgaR1;TMxA*O<YrR3lMWf=K&4hB-klzT&pD
zI<Ee>23HgjUuG#QQOg4HdPFCPTNvTy8=l=0WU3qDyzy+W?!jj%v8=Dj`B4&cb*wlK
zN9sM&6~XQu{qzu=sxvBrl{Y#B$Q13xjndG3>Gkw}eeQr4q5zP^tm}r-&9R+zEf4}@
zN6g^P(<MgfL6$@vowfd9Yy;3f_%2iKevu(5#q|)R2kq-u?SgfYBuQY9(X}rZLPYIi
zqF5@sb}W&mcDbZg_>7_=p)qEsX8{M2gZqO~2ZhvxNPt`F*1qx5sEK}p16DYMT1Q$)
zxG^8<IbR<L$gRy5zJBdpCg3yLKbjh#Qx!0oqXzSEZV=T!aKP;6F?utV2xjemdTM!(
z`0|!RfzoGhG<mnGkS`~xjhMHqz!;7%r7B&&@lq>XYSQ(a5R>1bP#q9dg0A(i&g`6^
zMJ1UW=QPaTh2n=ujSo>fBKD?Sy?7&&(qy*&dqUxdDDz37xWnYA#)8|KPs@dGjMuT+
zlW}~`h=RKbmz(B~bY)s$y`oJTb%(SbM*zwrjJH<`+^*YyXJifE&?%a;=MtUVn7%Tv
z<#6~0^escxIgo|$Q^NR@<aWJ`F~OPwv^U##)bxbeuO|JqhG+^?s@p3!c(VSoR>aZO
z7c#<SwFtX0@%4;0zwbiG5KJcVEKT$M@tq;dgZ=X60hMk3rn&_lv6o>}i&uWc!5}e&
z-)jMFZ*FIQC4<Z{{S-4fF@Db!Kir$ZsaO%~=8jwbT2d*Hp=MTZuP5l{wOal36ES3y
z^T%v4<)DB$rN-#38H6{Uhn1rZ`t4}pR-$5IS0)xJLx6Z#s&8ccJINrT^o~3<f3gpK
zKQ<#aO?~m8rijW!-9<w$S@sf57hn4@pUyMO?rh1-ZHvaQ+%o*f_u^!ZQ7U-mTWWem
zTn04t4Xmf+4<X}PCc{M~13)EC^*a4;>S4#=u#7h5+Eh4^9mn+k`)P9ENfFs!#EXBd
z5+}le6s~jU3NIMYFV5BI&Uk_pO3bdj-(E<iZ;Ms|x#2(1K|cbhiKVf`uiA4!v5Wys
zAdL=?ME#^xc#iZz;GgTj>s1Qlll1R^j2YU%e=F2ijvPM>g96||=Y$v3(jvr$<6gKV
zPd#9ga?X9s;+tDA<Gq3x(TjBmtlV;|Ntvab#ck$ou3a3~I)005VE)uMduguON_0tZ
zVCi!<6E{nC1y&q`m6VTvrZ^~xV5aBd%aQp@+drnol+q@?99zK{7t9gT%c9Tzb-^$?
zm`iI`_7unxXr=FfVSU2ojkIEuh6;$#ODodLun2)C7r0%9B|p*$J#620w4|^fR*<z)
z45#BzUgCWi%<|{7bW4)5r=8m>hwrPG2>E9ocdL5~Us;UkP=f75{`DmpAe~g8u8LwC
zn|kP3(-g>~%&fkQF(*_p<J|+{{ESHl>H8cuQ!VQ7d<N$HtlC9o8mkg(=JgUA>P=|}
zj!~v_4~^Aj4SQSeP8&`3uqB;*r61DM=?Q`akc)%!eX5TP`eBsrjLJ;fRvKZ>&9rtF
z+8^sv)%Et3LgS(eLk$}{{ar=O$=~^T?s6RFi)IpVgR9uJ2_p(UW94(hKj&uPpQuh5
z^Sq}I!~|cgF-Cp6Z8*(rx~^yO>|GJdaVkl;jgzb*jjXu|a~xId<M;W%FamkqR%*2D
zW4~~mqPD}GpN<_rkM4#$jf6YT{B-78b6WiAvK@Z=Fg*SJPvY%AKktAeFueA6C?Z_h
zE?jxLd}t%wq$AvwFWj}>Rc<nWM6f0f6&lPufsU3unlBvt_}<dyLieQbS^ZaU8pli5
z2<5Iqu`sz8)huQ23kxMjegD(Er*+{!l9uBGXwM?t5C|AP!CG+kgxAv+#t5(<Ht~o8
z9EXM-;dRmb46Q{6<lVYUYfV|4Qtw%7ts}LN-63y=0|E(A65Z=k-JuVjMLi#nj787p
zMlzNB3RMpY>5h!bAw+!_BoAW%CuWm)EFISU((LC7Z>Y2U`Rg&w$OCmqU35{{lQjjJ
z5v;TgZaX6WU2;wumI7HE!egaIy3!r2{SwF!{9|J33`B%svDY$hG35jjj|IGgcGy>c
zX?%}v+<J6oaj%1QAIE6Y^B&6x%j#A%taSo}$}Tt7Ncr!Qfzp(WQt`oMPqN5jmU3zK
z2q5)^W-eG!Smt-mD-$Nmx8yN|tGef7;fh%zadB+7;>|J(a(dO770HdXyBR(R*C|G~
z^~N9m&NH|Gq+-$Eru5|O{!3GUy_shEFfJ38h!-WHs!e$!5|>IZ^6&&tVx!da*Q8IB
zgvSraI0=Kr0mR9Ys|3?Wf|P{ouvk=I?a1vq!C4-)`_-QJxBU8qqwX_Njt&)O@FB1%
z)s4;1`=<Q>_#Z+I?Y~=|#J->b*QH!(&-d2p^bp&=|L$CbCD>V$_Za9@fo5N8u1Suq
z2`#+`Cd>r?;Xf~(MsmC_WVcFu;A!Hr!SZpAMf=Scj_Hb5vOzAd)WN+F_Ue1ud3&>t
zF~HF}Uh&l*D<73V)p{$9ef(bfN^||D3HOKIDn>!29|<mdLeXzpd5cwds05+HI;}$#
z8y^?pnpDpo`p*=7<~|YX%f?;;VP_Z5jh60<;SHq$V@eayrR$RY43pPI^Zmp0e<wog
z$MzrmC&%2GfuFOZeDnMxVTj|U)xbmhR}3nj$>Yb4bVh)ErPpG(!}kcl!Rg8m4Ve-o
zdkW`%;ccL1)bDUk4CIdV`;I3Kqic@`K%7*>_fPKpdmBO=Q0;l&CIg5zQT{yIqPRMO
zUA6L&+x-d-pf^Z1Ueo#k#d~l2V7Aw1$O6!0!l@)Nn6FQfwkNn=b4?fzspdT1x-Usc
z=u-)^ntzGjp*U_!Xd<5rc*Nx$$~StT4*jNX4ZJb@O)j$NYWOurnFG{qqo)R2xqxci
zDp3!U+e3D`=TAlW<MT5$uDQ4%Nc)D{rO%B1==>*R{OPaiqn{$w8Fml<n2jzwEf}!w
zk;he#q;m8Ab9=;7C4}#tZs38lv(_-W1!>oqR+DO4DN!?0Q~1%T24MJi`D|3AFy$ja
zNC%?zp6He&?ja`)3FBB1Qb1${_g9_h6ni?kc5o%d3J*4ziZ#d8E3?uD!+8wZ=b1z8
zTQNA+J*)*AAUOKc%Ei;)lkN3&6*f5Weh{}}U1gA}qn~zEstRnB_1trIJv50Us@1Ky
zq0ez0vVTp<q2O9?#cU!QPs_KY;(*goR3w+zv-6tBPPnaXVWH){zn53@lV33e15Kpk
zS?xhR`C{ARVxbLSM`o4}J$ku<^yn~WqP%^*GTVMBu|dGwtD)<8d;lf(5*NL6ELnVG
zC^AeZ1(~k~j$F(!E-{2hrxf~?5((}Sr8ROFPtj3~kmOc3%um2t=!;ja+$Ie>J10L+
zG_Tan5_TGz-FEEq|2P=WMzlM2?hF6+X{^}p`|ZJpfB%KcR*hqZ<L^;24-F4*Q49C!
zXaK=mS(Y}8OWNCqcXOfHHt%Nv??ZDfE!cxN%5|EgnHkc<ye$sUcQZ=GTHi03&OW(q
zmZ5Fq-}rJjqEzq&@L}~2Yf|{_9Lpt;AjTHzh{eQX#)4NQ64qg~w`0hBdE`X6zCA!&
z|M*tctag^lTD<t<t#qVXIe|IeVo6W65~ltS9+Y>rYQFItXsEv__Dw(;*A2B`M#j-o
z7a1yiccw5LrbBg}WRMaG-i=foA6iCu)tXL*FP(ct`R6e6$Yjc`#6XqPx}+c-xQi(F
zB>e)p6oST)*_@tvl-N$$v5rv8kZn_HJWXWdzZM?>8iv6W=G)t8W?!ZohtLbS_8gHF
zm-(3~T-L=(n<{>-?l4vUJ}PaddWx8p7=gzQJ!iCqYt#UFj6$hsol`ZTZL?0Xag4UX
zn>AW*J-(ntJI#H%gw-)PnTIQMyt7&?s(1*)eYS~$5QVg1tJgfG)_H~$1|d}ThEaZI
z{Pdn+AcHx|9{@2$<G@VT<~|@qSv(_D&M8gP(yi`qGrNA9zN?KSab5-{7ScSyk9omQ
zngSw^!#Rr%+b|{2Ui;jrmD#>DgBer3DMv6_Hu(-QI`8cef$Pj&tEiqP@(oX_FB6{@
ztS7rS9{nU*RT#2VouH*Cv@t_a^3t@6_kuzK1$P3~F^Z5W`}~tQ+Sb+Y7S^OeVYUG@
z#|3d2TH|!<KRZ2Eo1OmqIBjj~Q5$V=Ct!|cTDI@!OW(#9<4X6MyLbBzyROc2Bu1(K
z@siu{{J8b)t#)1Bc0|=YIu3CeMBYv!tz(j6e9=gkE*$D)q$XD~?uLj5(y}TrU(~*R
z+Lf`_W8Ay{h<wLJH^~ng`JFE;4{WW^ZHGf@mP1}*?#Ey!#|-5AWOrS(f`TkMVi<00
zg{Er@?WvJJfGedg`@o=g?IQD`UqI<Wn)7!zDfR3Y&$YAFGk(je(R^I_Y9(WP^|Dp3
z4Duy|*m^shff4;Uha5rB1T#1yE2NDaDjxmbO-nmVv`C|+@PGNvl;ddQV(@Y~ExhH7
z$!SYYo{`yHVK|3F{em>_-`_XNaM$(2xLsN5i1}D9h%1?ny=-gzHwj)O8{1MvG9niX
z6pwQ)lCoD|X4e5m&J!TJ1bkc*JkWK4%?HzpL#4Vw_mFNIXTR8rRK5oJoxFZ@`=tW6
zKyZRi(<UHb63>2Y?sTi?17lfmhq4X!wx0qT*8Xl#dhYI{#-6RvbUK}j>RS+u_8RL(
z4Vg;2CXh9e5=NpuQ4a{DN?79c)z;Frs}4^4=b%B+(1|?KuVM9<L6Y$(PSIIQA$^JG
zAM>R;$y2mPacPh*tTIAVs4&aNjFh>;cYjpdHf86OSufH#oCplRgeORbePBIC8Lh#k
zaM!DDOk9MKRUs+0Ip?ukP;SOM|FVHno$g$EJthGWi^ZQIf@DU_U2Sc{PyFCRunkn_
zC>(5H@2x?@^1G$qB1=lEiIGgE9GLhML|toHRcTq5OoKUOvGOQkc+Vni)h`V@RT&nz
z`pvFxy=fBRyD4luPm1yl1&H+Qadk1oM^KlSJG{-GFIzU={AN*kT{moGDqNyDnC4RP
zVLLS7T-VNT$>nZ|G0+)p^tFDW3aJV*H;}d#z076MQ66K>oTho+qEVmgdO!p)&jVWI
zFbMjBJ;Q{}<i-QR#)86ha&yldy?QGKUL8>UKLDx0?0KQK$R}a+hWTGl6kgON#c>_o
z6V?(+B|_!p#_-C1TyCW;faUqK>E7f}&TNqy$u}{K<>kO?bPEt<?it&ifczw#M8(|b
zR5oPw^EK*4zW)RY?x^$HJHMkW?FM4Jr~=6y4$8du!4Vd8tBCfg%y@h(#M&Z$Ut7k|
zt$<HNYKCP_iYY~?^o=i2*)iI$f~p1$u&5zhTLtY!%6Wo$_I(<>mdMyS+m5+x%c-bZ
zH-dD)&dm5f7FTQXu+y3))U#K2rkR-tmfyb9%O~hE%vueS4|0+tiQ_m__>u9&P?K%v
z3`Q4d-!*Xr4ItjTy@G}pjd+6N*Iixb-B!6-)oMh{o03_G72_FW!Rg`s?wlR`?T<Ap
z6ggt>j2-}BnKzDawgW^VfdL6Cd}NUc!b1IcI;kTFV2KSnrNo)CtD)y@js*OTeHFsJ
zk*ODxje}(pEQOd4KxO@S!OGJ_lX)}@@znga#QQ08)41Gvzb|oqTM(tDK>o+Cc$iV|
zc(Z6ZtKZb>GbYtR`3ums(j3${R05De!41{cx+9?eI}GFiEc@Bitl_x<e0CD3z1vDo
zHOp<_@F|3}k5ZnQ{R)_*28!2_04hGkG}YO@j9#W#Bfj1&nh_R4$8vYzt9p323RXI)
zs{o|5*K0<6Yh}+hntT06%GZl8vkTgq_jeha7fm?jd-*;l7~R-u^)|Y?7yTWy3eoTA
zks<b9eFGl;r~-(Z&w^P;-uokdPcrJaZ`*G8+CLrt97q<`bbJ(N6T8ZQZ)uO54#qkx
zPObojqMNypflKTvn-q7bveHsL_`9!`$zJ@Z=B0Wa{cH8BI_drSq2JrX#ut9nx3Hwn
z8yo`4d{dcN90BFd`Mrby6m8A*Zj<19X;RyXG2H_G-}(lNlnl@@>$k#_Xb%CbKWj?c
z4*^ssO4aLspFL{24EwI{q8`+(w9?i}`n`t;fDFdZ={sVaZ72<*(gRg|O&7DyheKp3
z2p^&E-%)f)0uCO%^ZjUq$uUeuzuVgjuPk#NiU?Bm|G=$6NqL8r0<FrSQ1NHY;Pb05
zm63<U;#n5!b^w!1FoR7iG6pqI=x_|7DtP>Nx2iSfJw3y3;w$gB)tS*#`s%2<-odrp
zH!+oGuO1qG4_|+$`FHn~8_-)B*Lqi%rAE3mzxFZUzziTtRZfH)WZ*w^C_5{GzBN)4
zUiCe-A0U!Hfm#>uWBb3xs{iIqyNbot{)k^}R2p}RC-VT)h%#-`_R;bU(a8)caVxde
zr$CWUSu~%iD*#9)d;1k|@@IeqM~ZQx2!I4GyS}dx){w`f&CB8u&z#%Fg2*~D*Hqm~
z?^@O1v(80&s6gPd&`jk%2~9S4tS?1A7laaWf|WpMN$wETQ6mRPO&f)g?kLT5T#Bsq
zh{z790)p1UeaNPDSmAu=C16C7eMCD+0~MC3>Kw0Z9j_8bp=h1MuQH??HmVml+NVD>
zw3nhVO@A~0C#U5$O4aV!7&Y~yAVFnYP}1SRV^%Q~7JOqok~-F5V|H<4_D5|7DwKnl
zqso#QwDSOpRV-qU0p6$M5LdNCJMJbk?yf!VVLk3Cs^NH)LP;j15{;!{#+fbvG-g@7
zJ#=m6$NkU810fSZh>2h#pI(2^c!>5ynDs=s$3#TfL?mP)G;Sigdg6ZP#Dmd^m?b@g
z3^&7viN}yhEMgMJH;K2_jh2~=v!0Cim`n(pd@{-!7dM$yJ(=7&nKC+=kgI>E5Fiy4
zPky4QG6evQf}{bs9E3t<2|dXMKwhK<;5S7bWe`JQ(2c^L%}mZDwb(ElC>eB=K&HzP
zhGAj4H;_o#0_^X`93ADsSL;P<I1O4j(4D?a7-{eyHkNJ=K);dP^ue&Db$Vb@onexJ
zWEDUM!0jplsE|0SRdy0GV98PgTpxI<!P^yPBqw3i>DSVmYt++ZL~9*CU_A56Z^ryS
zfX<tQ1W86kJQ-{u%oJV6A`*3VZqRXlvp45okLZ6ND@Q6Iujdga`eEa^o@!-RLs<`e
z3vSxxQY6~mM4^z%>;P*TJiQk8daxwL3yyQcfe`?p>biUzScp*{XKxQ^Sj_f9<EWUk
zt5O*dsJU(S{xGt+z-`JeACh-tOfxQDAF`Y7Qv$d9hrNx&+LAMW6;AOW%+BH{rg!>h
zJirS2Zy4?0XfDmkW&+|CXWyQ`AwtY6L`*;*AWO#m0lp?SQLmLNL~Ojx72k_)(<lCx
z$k5JWQ@<?PMgz}~ZT>xMsG+8#Df6@{b7Kt<^)g*Wl%z(<JX41`tqo2<M(8_M&S!yU
zl(?nB>^}@z#r`WPnr4^%UCqKK24D}5r;3l=(g1Ad&H}<01mhRrtn-W2l+*TRC$L6v
zE94EXU`aF|go=GF6c6fo1BwEWoq(l&YKq=m7(=27j@VX5a|y9n9!e2;<SqG^qMse)
zl){<7<^^EFxU~iFR%+hy{p>lE_}0Q8IX+g#!deuht^KnH7-UWF&u5s2N3q0*Mgtz|
zi;?S#DfGPY-mo@)&HvE@kb-@a{XzB#)+&*9`K}_bYV(p;-!y7@+2zY}OQEHlFhs(+
zkFngG(H`694%DLn6Io!@+5=l!{R@{3Oh2fRjwM&TD?>N#<+n`Uum$&@=^n(N88-@`
z0BoPN5o?$sTTPOxcQg417F)+H4zGD^^n2_>%YpkGJTV+E!w0G@8}OF0T5BlHqyB>9
z4WVzmIGW{Z9;Jfi?RqT1RMgx)A-u7xAWdA+KCy;{!9I0K*u1;g-gedgdlYZ6_bt*o
zWjFuj#Gt~Od$xBZ>}u~l$y5ayUuQ?xtiDr<75KLN47yhSCFRbSmzo=Rd30O{8Hv7m
zQbP}<$vpes3B){z#|;gQF2~<jaug@PB#~fgG+5&rs)un5(?F^jCU<%#Kubxj+DQD$
z*V>{|0~Io&m$9MxPr~aQ`r}DUyw_>^NhMQOZOj=_kfg`VNlA6qX+&?b(LD08=ESkF
z__T7BE(K>DELjpN38j$qqjEW)*;!}mLm@hy|16pAMlg#}XwL+7pq)AuIBK!5=g4<X
z%P;uo);=tM{P>ZgGQ368KFw<*Q|{)GH}*{2Aw6;`<Fi}w;D@S>C;@65)qCWsE%K8|
zd}8##r(dhLuFz>avT4_=G|s-HrK;j;KL@m>@*qGMiE9dNP;1dfng2;9SMM_PdW!Sy
zD4ab1_s93@ggXda=9NFK6PET(X_i4>Hv3!JGiD0V?q?nrIs}Sta#KVa*sSe9zZFD(
zZjNDBMAi{RZ0n3Z$!^l?Zob&pGn6sGj47`-(e<!$x;Ym-B{DPFtmfUZzO!H`<{&A=
z-kCmcgQ#fBhtDyVCV?8Js(x;5nzLq8BX9k1>G~lH_iDgL)7mpi4Pp!maBrFN>X+ON
z@}Hc#rLdrqfZdN-+~-pYZmEHCf4jw2q^1JJwDt?1(Xzydu;fH<Cj;Gcd<&nt7Pgri
zN^}&;CbF{Fx-FkFXHL2Ea<Z<M#^DS%4ZA!L7cTtdw%o~^OAe)pMI|H+?A&9Ov!|tB
zU%%QoWBa;bf^?2ue)|bPR|HkXs~Vc`OsafjdAH))^=U-No2RVH+topdQ?!ojte4B8
zkMmflbWw2^*2{JBw#-w2<NGO@PXPaEJtwc?v-394cVZ~lW!AIXQM+dvjj{#hpX-nm
z!$^k!E)c7i{;@fD=L1#W&VzBU^4B|=f0YI(1X$a-*%vB2uPP;kagvr$>)np83Y8Mu
z{YxzIio^M*AsnL2wfu5aYo~SUmsM!i>LlB)bB?w<pL#F-`#sY0tcO8PzWmvv;>ID#
zCcgXG*84Jdt1LsR?zQ;1W$rW7S2JSyS>^b9<0{K)s~1YC*=ovp>uT=|3%IU%Cq1Nd
z4;k#P+=&@KXreav(gq%10=f^rO5|*2uQfX3Q2gYL7ImoM_nRgLo*#5(9{P@PKjKJe
z7g^D-AGvDs@)cT&s=u9B&)ahtyERbU;8w#DUrKaKf%hB$>x4y7A{E01bxOi*iATE+
z{E9C!rY{m_O&i`yGzz|NXt`==y+3c;b9AQlUKTDo>n$?U9y`!7*C$mM{iu0P>UQ(W
zw~y3@Ue<l4KAWw!sP)R)ffmrmvzDSn+l{p;pt<)ND`2VUUe-eLYo(mC;ai(gyp9pa
z-%SE!f#RphFd7P<bN>D2pcnkU@nXew;1T?9e6jtXJ8}zYfAQZFvjcx!^jt4A827i)
zF24S=0{NZ(R5VZS5&Yx|W=-w{W(X~&s48Tdxz(9+6Nwc+%J+Z<d1qXH-*Swn{`w8h
zbQ<NnIdU_;Hz(Qupt5<~VF~WMSJ<8jhHDYEWEjmm!Lo9m;c_lk<cv(xQqs~g+oYC%
zI;_@vR2r+2UiI4ZDh68hIxV()x%1uucLCvYZp8ri9Eitu&)J1%P*Mn|AQi<^Q!Rfe
zSfU?O-|ctrNsN~KYfkcDikBhE-AMy-5AJmb#da%pgO_?j<(~h*yFY#Or#p3<RG#bo
z0a}5=yysVv;*%=Hq$-7y6nqM}Cy_15`tXd_Hs0)ZN|~}~*^d=k!Jn2-$3jI*J6Tl4
zo%ZJbsCa9kht|8iRQnrj`elL#DBQyL7?s<lmEGyxp8x0{ltuvA2VRY+|Fu%J_f_2p
zT^Vlt320MA5LDl;4`ls2qY1mX$1=D@bV|YF3r>uRPa6k)9;qGk;wC)Q4?Fq|<JDd-
zUP#bJen<Yg5IOnLs07$~68>h0+!|P8taLtt)|n?Pjr=-y0=xfr@q1-P?=A)WdSHSr
z-0Jydvfyhvv#72hjcu5=vg&Ye-H@Gtr(Hf?s7X^NHAU2KQS6%X*+9-4@(*2?v$8j0
z*rk*rv*GT7=xFqB+tuGits~}|qu%D)!eJBzk<sq1qb1#!wUJjTcU*hP#v6x5OPgd4
z84e;m08EMhJ@=yMleT@q^rtOwB5moiX`;ya!`SVmP1n(hYZ2!52{uGQKyUY-SL)%Z
z87Tor<vvZi4~KOJyC=X{(|(%#U83CesNJ=l%%8Ey>xn1Vlj`~dPp_xDuV*H%b^Weq
zzh2M%x_-k|@tXASTfx5z@(-10|1R47UH1CB@=J2sYrgsyLyq>8jk$s7-c&=yLwMbT
z#(lu(_mpDxiVu+~&%*w0>-`JL)g##hbQ*&d$Y=bO0QJ?=pLhvQ<2n1!rjzWTFeHwC
z<Drtzd)|{rCr_=$teY8-Geds>w39P03$PcDA6q8Pyd*plMH>J25&z8W-@jjvk<4UI
zMsGfh#==i$cSCGb44=zZKx+>Y9qZ$*^m+J4rl9+$CXMeVN&WCLRY^RIe~ff@GXi>)
zAkquCg^-{~g-kk42uk1E-ntw_9BJJZuq2RKS%OBkzCb4T$=5oOAn<mU?Q<DmEGQe4
zqro>cT#4<OSwH+k!7i#|?CcklTGG@%`{C$j#w(_3LaC!8iv@tC;;@##mxt5%Oq)MU
z_}V#}s?GhXjrbxj@vcdMPu<$=JPY>kWqCXqFFk?V+hWT|gPW9INrQH4xq%ldw^vzp
zJc(oYVV*ZV&I9EO<ufW$Ns_9W&J%U&iy@b;HP&8fF<?3IeKt-?Oh8DK9}sZHYPkDw
zLu-9t1#c2uYy-OmCQB%nGs(8Dw@Og`uRLXRNxu<D(MKJ{8vgwKGmR%ovdK%6cD$rf
ztQL}>w?I-mX$Ao4G8r+p^H<!4%UQV&siCiaokVMOY>IOByPg7X?c%vM&wV-vz=$TT
z{PEo)wKS!d2g^-PuO3k;cV!mIH7a1=a!&!#w=mV0Pr37gm<1CcT&5-IC()X61oTEl
zB*iYheYK@usUjU*BDs#v(rZZ6jBaU`123F+p+qS#WN-0CF>HS}a%AuCy29CxW;%_y
z8mo%V>XXmv<vw1ccl0E%_@Lie&=FEG0(uxiUnvm>-ZrsY#Tn|m4Kdsm0v352#Q`>0
zQH}`?v_%X<We-mFbyH|RxbQorD;-a|XQ=%n^T^Z`xIv*~v=g@hf;-&=auIa?Yw(Mh
z6RZoR0gG#%Dp70$t){JDH_Y<?bY6+pH1iJ*nKpDEqUE#5ZdFSFL2zR!H@dInLp4wL
zUORk+i1c7~0hnZiyA_5~`+T`%7=xNT3)A`<XAoVR2fvA$(5MKd2RtE3XBNLf#&fca
zCim1tSq2HS2SHg$Tg`_-Q2W(k9t8`KFnJ~QsfH#`?G44(pEXzq>c=<3LnpofM1k;h
z$q=YSwGO0+jdIGr`_m(efS#@N8UL(zsIiZ7$<#qQLTlHKZtNBO!Nn1C`-U`>)70}C
z6xtjTf%Jj@<LJEqss7(TekKP82M5PK=h!nVE9v0aqhm#)j**p_5mJt0@4Z#W42ffg
zqGOLFBpHokW|jtNz0cR@`yaf1x?a!Q<9b~8JNMW3fcklG8S1L5GrmuGkdQ6Z`{7Y`
z|0NndkQU?Tf`1mEJf$@H{&dsCqQHnDnWr060B(AnCD#oAd`2^*ghi362~5h{&fg|v
zdA^d^uEPI}z+^>33?gnwygUSBblJo4#x9p2(vs8+@*BFoi%LHpO(hQ+*Pu0eydGpm
zEc>;*j94))Nq>o8JLFS~G~uL>-<}n3)#T=gohU&7-u}}!hRSRW(+rUr=3EjTIivRl
z$nUhcWb0>K=wNu@Ev_i<m2ah$Y^@Jrw_*cjLhw8O3%zFDIYK_0QQNC5QNKDux1^gy
zyCuST4)CmC$;ts(=-qkz*D+2NAnWvn?7<cT!pm38VgLj3k(mE^xh<te(qOAW2EA`(
z>p}M2-@7fZ?y3b}%oUK6VrX<<TguDV`wfWY#E5+ke{QRJZ)e!*J;td5Z35w>q0Ph$
za}dYOq7V)@2z38}Es>!48#8vd`l;A|9n}M?GM3)8G61IM6d+d(5xS5n^45o$bC}E0
zQR2q~gf4{)-6nYRber;AA_z(#DG-$N5F)*VX}8B;ja&E{FgX~&n<ByT&*uSeOUj6X
zUr4&o?T=PjM9`O73Ir}wEpTBi3AlDKlM_-3eFcgSU~yBCchVPrPSMg5rNYwVY<YBH
z`tfH&0GJZXUF3BG?X1}hZ;0UA4+EnyzTUYRo&cF;BM4eUA1FhNW0E3B@->0feMlH#
zCweDvL&;NYmazel>Uf|pw+i9Vp9)>1Grd*OPgRPRh-SKMiWNpf?JUW#$*~bnxzN%n
z|2nmot0OZ0%yC$!0q(1-G}r5Pv4PJvp_^I&ZW0bGIL^b}=+vrpJ|srq*ZMZ-at}u9
zOlZop>Vc-6v{^U1iv>fU$fyMn2Mq3Q=rbU54aUh?O7~fwarl^km{B`RtYUYXGBAj<
zjQ*v{{v=g`JMvd&rl9{laLFfxB@M*H5$FHPzro@f>+6!qFxYI<AY@kx0!DARPx<Bx
z-Tcl$5yj*LS=Jx~DLv}Lez0_#Pr9Hy^DACF_ltkao)3{Wxo}SsXRs-Ep|ko;Qw`ea
z_9@1m!5uf8Bhpd8lE};)(}0V~>~!aVT;);DvETaY5tpkaZ++Z2m)!_Ylh|gJ+j4u8
z9u)>SRl^HTrSU$OGip<N+;sg+`qGqnbsd;MX%SQg7QI=AD2@X_e8f1uuv%#CV*pF<
z@5zOJ4MR@a4Q2@k``e-k&<<UF*zrh0CXE>=SdysYNCYxj;-K@afrVjpadMf%z|N7(
znl36Cu1f=Tqs;>c%ua#7mpYAz0ZcAzSH4#{2EQ7ige4<ByskSIYeB>n*att!BWIlZ
zAAdOPSj5%<#vv*PP&yT4a@3<8r{d%86qkQYFZ~W<3f4#TXoCnhy{YVT(*de~86<Yi
zJ+{R+O1CcK3X&{|Bl4mY5I8-7V=OXEb)hLUC}UlCPm8_cdhu;yYc>ck%{wj$Q?QsJ
zVVz`nO_RPb{rY63HTf0r|8QUc*_x)o0!LkB=}^g1?2zV_E1`=2R9lvg|I`&BVJ+Lg
zmydaF60N0uGcT38VfAi_-6tzFXsc;MBOhR*@Y)(UXDG}}r6u}HQb~Nc=R9b-@)VCc
z_+UBVZix}0AsDEo@<!GA<EPix06W}x+LnC<1?jkWQBHtPK2Qt@OEflkd@EzmWiR@z
z@<FRD3azIHEo$@pHNryNi;GYN0=1Sw4^ph)(Cs-EHk3x{XTpI5Lxz@Jsy_%M-C_2U
zcUu`usbU?z<t%Agj+x0i?kyw+qNG>fFA+3bzGQxh*%P|cf4Uk7mV;ow4KDrBU}=&(
zc&rp#MTZA<4~aET-5rDQiqDXs8mDFLk{%XFa<{rD%^-SjTjNw7FmW;KTS2nLno1On
z*_c2MVY<RDkkUAr9|DNGncl7WrRP;F$B)-k-EI7t-r4M|A2mOHw#|cjUq9eDs<-Gv
zSw84}(~@=6bmRTD!^hsY&pD2%>8|arVo#S|WgT}sx)*TWaTK!gJ`YSHenu;QT1n4|
zWBZ96KDc^~8E`)XG$UY2bA7tXnH^blQU(-3NS7CdK>J>7Fiz{!`qFIzQ7G9J{<C3B
zU=8&2h>{E>{w*^L-a2Ct9``>`@cWhEXqRTXgAoz1vqbzeuyWsjW#iky+nhgH0aag8
z&-8!IK9eDO4a0V2+d%M`2-&{14{!cT5mvvDF`ZrMpS6CM=M)fgd7iwyBhYm5@CW=2
zk18S_U2iuNB+Bf)iEL25kUAM8i}WX5*U^Oj_Zk-q^<e9!8;*OEm{UkkX_tu$?2`N(
zc|Xk&C?U}VhzA#Z`7MVTjpG`XO9Z281>oY=H~KH<?#Y_8-#lm32n492i${<_CkQTJ
zynH@r8wgf&gq-n-HKW9vkN_CqEf$#s!xU0QA%n+)z<&eCA83ON$mO-bAd!{G#Wkdz
z4R6dWB;Z?uOPqxwIPqm2$2~3<I~iX45I(2HDEoS(#YuvHH}4XW&uUer)+;u(6(yvJ
zcIxJ3y_rPTN1Yh>MpvQax*=Hu0Y*eWYoecOhy1W6By|yzV=9O@O)WG{s0bIj!esPp
zRfyIqCc7p!7^0ryb>@|d=j%A{1t54a_kv-LNh4DFfwHIqK{WTZYE6BV$Fb;Fx3nL*
zX>VtN=7t9UZi;<Jq&3!wjpt%lRnj}_xz6U{x0tad5q#o<Xbunu1%pAhd79Q>-l|CT
zu3?-iK^TLS>ogU+_IL}Tp9CS^0KfqKhflr*NCgLr7o}wXa*8=`3^FCFXAH{b=Sk*$
zlPSQ;dd^C|M@re|$y9+se%yju+i4ObTC+E$KP}>nXQT^w6kprQBoF31!m9aVZ*j>&
zba<HTazRSLTu|*C20btL8|O^}=?GA)F;UU4+hU7f;nbK@;|{4K%Qd=7QD)_w0P-$s
z@|`#3n`-6n&&h`^<j>bbM#%9;<5}^%>hTd!q_X=pSyWbS_G#4O{?-GUqlBg^l?)?<
z)shDtqu<%5ovbnanLESC%Ys0puf!`O-P7%iwEHDgN)3zohR*zl)e@{$Q`}}c%qtc$
z^kx><yjv>ZR?TSxJ_~ba`01;u%SGP!eyl33t|soQ_W7Zjt|3Mb9AB}M?@Ls_Y?i$>
z=AG2Qgx*vykv*Hzou%MV)VEW9`E5{WsF>Duo%_|A)!zxmIQz08Z7@MgZy?3uFfGH-
zHv4<=U7nKn`Pz(`idPNDjC!?2cYDK}3Q9csD}<>{-FJ0Jcjmip7?W+kxSJj-RZ0C^
z0F=3F9r<WO_-SZfUp44?e69&vmpZ{zmjsX|fkte-h^aiEcXSVXvNpb#^ZHd@9J>ia
zUob!z3=Zfo;p1LhzQ_nQ0HblKhPk&3a50+@5?(tVukRSHFCmEQPl)SYHAP3K$Nz92
zlrYk-FE=6?>il3_3nGv#at!3>4G?oa;A3-Yr}?tCLAYAYInSDFbn}+>EOUUZP^B`A
z0D5^go4Ge@JFL<>tqwO9<|Y9t7&i5hu;t}3!=^b{9*IWa{mgSrq-v@nqEpQ2ReM0o
zB#3ut*hBZIYS%(zF*Tfscl}*;%aIKVH9@#73{tUSM)?7#8m_V4#nf+z^bQso(9H{U
zgp2%cbV@k2UWTl)7-<P+Hu+f!6xN-V3pmHZ&^W7ak&r+0kA4|G{HP9D!&^tf6!tcl
zcI_eJ)F{$#>!lsCk$wHDy7lIKqnHeYx-9!UEL~!x2~V=cHD-01*zg`PMb<yEawFXH
zGY3-{1k5G@P#X#-H1l0=O29wTH?K1SfRfZ9^2AV=-dg8I$g`+N%<0tMUI~DQcBhs6
ztGxDt4rxacCZ^#nc&dHUuKmp+A{)45&&Gl3T+f#dN!>LqD>-u|!b$iBIYjW087?#D
ztekH+^u}gGAk^_u0nC$E$G#L2dDiVz^!CUcA}yyw((EuH6@nfGxbHyBRvdE+sdg5f
zTSJ%cUk6eooev$HzZqS{Q?9l{yV@k}=dWMs=Doh&bEWU-iZ$AW6X!D8d3L<kWhybc
z{Poq@Bfx71*C%K56?0ry-ngpDU5C$to`s(c`13%l@-f1wYxAgE+~~=RH!gCc?i71Q
z`JQR!S&iI(4mH3eLKYJ<(<lg5M-+J~&zW@1l-_PiaN~xhR-9`d95$G60EUP0wmoX$
z=&f3ttW;-u*5}wcWbw?PD&|5GNMFj^sLnHD;hANGw|SLUvi-wyyVKO;dgddD>!>GO
z#<X{l@_F7{Uaha5>1N}xm+y^>_FmVW>aM3-C{qi)t&+T_|MY$4>c_16l|F*ZpOl)%
z`AAcIG9udV0(=`ae4o6QEgJ0wM?=btsiyfC>b#glqig1#T3HAUkhyO7A3moPS&6wk
z6Sq87O$5cNgf3lTdb`CoCROuNC+KAoPG<u?SHz@Lfm5Cu3;~F%?Wasq13yYJa#eH#
zV<*|RG=_gnFv;i!y+j19dIedz4BA<a=*&gPd<}BQzjTXUub4Z6M+cA2jJyg9zEv*H
z`g6#kY4k>nhGPad(mMq8Fa(_3C<h$lFAm{<!Q}DR5<Ld;I+guA9P_svPkg5sn8B^Y
z9IE=3?W`tGnsBIK&hS(ExN2eO`@ztprit=*qn%%kD&Uiq3X}dB<JJC?4>KnFE>AX0
zO+MbA9Dg#|qVS^K@&%FqMQ6r~o~9ROw_Xee-)h9%3iH0@n0u>N|5gjX0O^SynO`DS
z8YO(_tTVwqJp~!rhbKOHu~bo){x%YQ7&(~}MRSQNeoNE$j0;nle!N%*yv@)<o7~=D
ziAJNNsm$Xzp4&0Ouly-@pW6P9-MKr(CWv4HyE@&XzT&MP^3J<17(8H!h<TtAv#c=d
z-5BFUfw~+H&6z+16*cGI3NCz_-Oim68-_4v>J{hk(xusEPMkD<LGy4a%IC-BH_rmr
zIYg9S`w~EMgsAiPUP~$RvHW9|J_NE!y$m^w1(&e#yqxdvA+5}i_@BlZE5Fe-h%*VE
z7U+TC4m1?B(86x<z7^zn-33ldaxRfe^5E?KLAVUHmUnihdT<&Q$4iOklY){}eePb6
zX|OtYTjZ0VByY*wlVp9umvq46mW%c*L0^hY3VxUvlmbvw)V_vd%*W(Oi>jmcDw4JG
z+_nD&7|a9i*koq(ImDn)xysAw?~`v3Q|_yjhD<QW*N;Wile^yQko%TW>1Q1&w%Kcr
zQ2OGfuZA+`RQ)?v{!}C^n((<|fMwrV*R+$`Z^&|=ynTBorlh`aa5$Ay6)-j~_VHip
zWTmJPTI`{zNaJ|g;EilqR?)T+)(%wcryk)R8F8?L_Q&qDRnz-|8}Fx3AE!_51Z;sy
z=sY`XUPA4eyf-n3Hv0QWdR0mP_tuYqlM?XYoTYLmhcL@#im%Z96>!Z*;VOAff^G=j
zS}YFmPe$aqtq84N{b|iqpTwHb;79W7_i7CxKkupSL6Ga3rxkdI?4K#`jjkr#SFl>$
z$TrS7{o%_vy5}gf$QEKXSuUrsX-i>Kr8qC=eN?#jIY60jXU-C>Ez~0_qAk<hE^Xl}
z-%UPa5Cv$!=BZzn=J##V0fRV5&K=l`3J4hmPndBOpgFIA6TO{qzxCdaPqKyDP9Jit
ziG`Lq`PY;Sg{L_O^BfCB*T4qy0iO$`cO<C6AZaS6nH>u&6%|U|MC@!@(1~pXQ2b8?
z!u*a^YOhtlEWzN@T;A47uM$;oV_u{v%5P)jZlrf<(T&u{UqG|9Ka1F3TP6Ayr}Sv^
z2Z|GwN`=<%O#g1><WbSFm}BuQql?<E7at(1l%J$BN}1sC8~`BWGN(`5d1bXc_3unS
z^vZ5~bcoB|K*nEKY=X4(K#1)J0ciEdOI6H4j!i7Om*USlzrMWwVMU?$L9Gqvt<sXJ
zs?Rp-%z)P*F(QyOL+0RQL&U0yhm`T>t4Q7a9M6K$;uUV=+ka|7fd=hs#zqX7X>Nz;
zjFnn#nn7Mn+>_kB=goC5I_==i<*_d_2a}cew4EWpQ_t<g&%JA(h0W_C{IJslIGJG0
zEFk8mY;T+0DZ1(C!@98Hg>_Q`WtT}WU*Q3)WfiFNz+C_5&6e|v)#v4_X~F7W%?4FP
zf-f1xY8ezBefGuje&y7afJ9xy+-{M$6J*e9%c#JUbhb-joAI6DGXn>G#p+@OztX-}
z2NjuKg(|gG{&u)Pc=dz(#)n;t>cgz62OmeyFIT;itAAl`d;8`O`u!RO$fM4SUq@?(
zHu_OsyuDy4;(^~^P18QLv|4VI(VaesgLBRKdC0;mL;lKtj)Jy2vwvd0#Q%e_UFE>F
z#WIUsT;GJ&_Rdu{P?TMTtF_yS5&%Km+3$E#p_lpZf7gEF2s|9A;PqJ_TLC-CQJ!9$
z9+7jSBicxZn7_xAq{T-p_h3FnFLVZo!;&O!XH+fl1_VE8_@MFj%lK!x;myV`X_6bP
zULmIhSR;?M)wsk!B0@Ik;we<y7{Xac#4ujWv%Q&T4X2z9>mULwr&6Yxcy?+$zn~>I
z(LWoZb&IGi>yndht*BD%UoZ@tS?=uYI7n*IN*@emO1urQ%Cw5)Oyu`nZWLUp&z)e|
zHIq|YuAeyojIJq8qfjL|-RMQ*VeT+C0gbQ|ggZW!NA^<3DXG{vQ%F1F#|f9GX|A|g
zk@`*u6IY?ZJCdoCyHPWX>$@p<4Roeh85F{f1{%aOF|l8Os2f1@Vb#XQRG*Y>PAduX
z778xJbeD@qdT~OCe)AoP&#aikC(Rn1Q5kU8)ogngY2^@NH|u}S0i$>yZYbmLK{j#<
zg9{=9NnV4?E(z@7S6_5f*X0=p&He|h7t84y%R0ip1nfibH(cNQZpyuspE_@!>-4x`
z!PG{9ITN*CKpr-G|1|37@js!+;MJj2e$BhWJtGD3>6SC3VO)Cna^U3PTq!4f-zI2!
z*>}$cyvW&EXl$r4L*_e7&>t!7w7w*_l07I!i(3Y8UbS;MU&Y=hKJW30-EKhz1l*f5
z4?=f4<vvPxpf|oqheG{lo;oviCt~2EPph6;n@<>>T2p(xv$@|BzNUdqmARhJ9S`{n
zDI!ix(3Zn$A(bFKY9K&P)#vMoyt}UZs6QQS+ko4;u@2z17DD62r(X|t1y1|=;5B>w
z*I#T53+GR%zSQM;sm^%glK;}W$Rn%vpDFd!qh&q*C4o;BcM6qvR&Ir!mq*9xwL&C+
zz?el3sqxIn*KE2j2%oq_S8G@$Igx{~4uq(i0u5^~QAu$u_QCo?)*ST`itKU%CN{<*
zyfulus*yAhpA$9k4YTu|H+-&&krXiR0@ySj%x5Y;uWovl_f6uQP8>J86JRw3=|Uv}
z?HqHA1}|+zp9a@m2bU6qGD%@Wiis*TsK0c6AUS$Z@g*#{7yNZd{Kr9pks@fi7T}h8
zw#fM9A&(n5&;k`SXKvB0ZWku(vkHOnQAp6|Fpcg-kIeDVS9*-5>V+$z?;Rc)ALuTn
zSUGP0u!A$$s@PNisq<`o)QDbK`=pU5TDD!4sVBHoQ`o<4rPXdTfI=QB(!l&_0uJdc
zMY5G~@*PS^d*YvUrJjU8zrkM&CY+GsIdPHQGv`qN-X!k2+_xM|lq7wq=z9uTK(|!(
zT)y#J(kcWA^seiG()5Layv9_c26yYzg5dtQ4^O`&Nona`MYGpG`|LcJNOkL#Qg;vY
z*w-VwatO#x;sZe5U#9Qmq9Q&2oE();-VF_T_ibF7(PA9;ljEU!=Td~w=S059ZWOnz
z$bVmXGQ_HPAB8CVjT_=IF#tc}`XZRxGte(&QISccC32!C-?RT-p~mj~J^J{7@!vm&
z7>S+XD;T;#1E77~faiD!(ggcl9^@q0+6@LeT^&KygC$tIKN!f2bAtT_$SBWoAjuKH
zBomC4!dK#}YRF(~0#*oa#*A?{IKO?G+Ix;Oix~`oDhct>JPi5LA{%c#CFM2>OV()}
z2I!rNnF`jB4NgXN1HLd{RRH{cd;<50H@1xa0QFc4aN^sN!M5bipM5x@F6tJjfLImU
zaWXmgfh#*I<5Xc<B~_b&1M@B7Se*dRl5%WfQ##yFoan<k|Ec7}D@cg+kU)mJT=}K*
z8&cX!X8DIUk~gCNmo$MW&y=wO=$Sct-!X77Ex%e}Q+97#_TmTb;-2|UhEh}%guqu>
zJb>I%PQ7gDA<9!a@#Eu}_IgWiJ)W}Jf-Uui%P-wk^CcJNw={Z|tb*?HRIF~WYurFv
zhu-J8w`2cFXGy^FW*5)>uLYlUcP?MNE%oW%^HLo5NEiU|mj{yc?h~&nx+U*~hf=(6
z#k^QAM`9|_gr7Cgj}xEGL(*^mRLD1aJq9$;rfKrN-ZnMcor)=I1z%_d$eoUe_~xDe
z-S-cL@jol}GDwz4-LbsmJ<9$Ua!t}~K(3Q&SN6@TK73r(cF7RPT>+?yp^D-MlZSu&
zLqhaLEMcm>2qq%$H8^^}X~LXb)*A<ONz7w1rN-T>?R><m4Y=~2QP$s<cO>OI^0I$x
zdEuTmZ==-i4c9Ap$Ge{~4W=b#EILH;eLqi-7y{^)Nu+2OA=^twuIqJHk~tPJ(BkkR
zr=PfGP%iFKRm?t!uvb)DG<@EqgoPCcXvEx;Xk|-%Y{o55e!DC61PlYhjc0(!4xAd4
zRA$gFP6khRbt!i%>hKY?e};p4yAnNEx?i}~-#cP`qsTNp-$h1H(a;9&mX`{)AHLV!
zdiq{*;8r#ciu9*jQ+3I=XK(kd^8M^yr=N-WnGX7X?1&vWNY+0`b4i02KUK~V=a!(z
zLw)#$1U_$^TS`V-Xw*P8jSN!$Jy~%%DbjrU-X2|mb!KEko}AC-H4BPOzv54L*dHL1
zc9>8pYJ+wgA(P_LukesdU5drziC=R}u6R5UDD4Xei~_3g-9QRp(ljXrR_C%gxAg-e
zi%`w)Z34-!pUBwBwiosY!_Qo+1PFBpE0NFfFndU-!1AU&XKp*OGft&tF`q1L*)}c@
zM5X@^f572H`d{Li{-HFS6=17~qyrH!<Jw=p293qHr=6A@ffDQnEJ}b#SS0QGsaX-)
z_`6MtBVBflwT}I9?Obsn2_!(=c^B=>CY7~R8PMUE@}rC;3)d=d!0zcd^lPDu8umLT
zlYL@y4XB7SY`;@Q76J*dbVQgI8KVMYI~Z<)iOyk4<E~48Df$TqpKa<i|M|0APMy%0
zn@)M6mVf(Qx$rMhTIUKNIP&R=F35y%x0$pLglMXns~^|y^i_JFs{uctkyF6$L$bk#
z_gqp|?k3;pM9N5k<H~I(OI2zuQPt-<wy&}Ussj1ctHGMgXK<)or1o4Ulsh;j)$Fav
z$K3<J69WJXk=V)SSpdwAADCDg2zxl@u!t)P%yv5jx|bB9hzbB<g||57nar)!M8j7`
zuJd^p&#PMm>8Sc0B(-aLfYgnn1v~r(HSq6I_Q~mQ-2lg@v+E%07GD0C;=*<q82M@1
z=tA97MAW&2ZvnWWiiW8lgzlbGv39|&*4--^-L6-qG);`BeGPv9-oL_DZUSN%{+m?d
zG;xMB#If%2;P&hF{vTA6%u8Rg;3Hy2U~w5kf}qULNAj1BmKS~*8qmLq(*|CNz5VZa
zso-K=EYaIdbP{AuB?~o1ONrGdxX*k%I!ayv`Xsr&CzSu>n<oR60RvU5RNJs75f+0H
zs4WqM0Dy}2WMjO6Yp?W9jU{Y{p;gyCrObdc6m?@9#N{#2oc`Z%5=fDHpc4lo5|@u@
zND^i<r`{ZU%2z@wyC*>nS^yo!o`6GG)zt9tE8fX3E7o+dKr_F4FwjexP;da`LW5eE
z?T?}0vpL`qI)oDqWpJYL95`4i!E;{$JSx|$N8(4f@MzJXPP?qeRLCsw2sH>_Ifb6?
zr;F0IkZw={J#oVdGU;XaVQVa~4)ZOD@pnS3X`REv3;H96{jq|n3kgz>V3NTh4ygzW
z`dCK}+d~jHy9$qz4YxEH_L#urJHw?;`8&7@u?Ad=36_z|5&WCO0OjfuaW!*euHD&u
zH*9>q`R=CyA+|<B1W!R#^LMP)-?|N@sd21wbzo<bW0DHLzq06fRS4@D;0-zHI_!md
z8rL|zmNfuSx7yVa!b-Lp?G1s#J^>8?BClu1>1*2GT10%Yiss^s4U-Ewd$74du8I&q
z@QfZKn(J&ZL^yO`W?n_)9}T=e3p-TNGY1Q`0Ak<KgqCJAx_z*HboAJ1Uje;oN`gwH
z_leS=H30ZeBBY7){p8nEHn9i-Alc5O#|_iR5d+i>KUkAQ-`D?M{)B*Wi~K_i6o0+#
zKL-n*lL#;nPRH;i-UOuFtYU2uFC?Q2@?@EDaxGZt;=HGy@gm(XU`pRa`wYzTEEt2c
z<^?KVNneGd+RnugMuUg=K5{F)-l%b@+*mY)G+l(!F$_PyGe0SUpDwEWu1wd%C9~pI
z_zc9#H(5>5V(uA&LR1A?+L_Na;FKnfu6R`=`MqA7(|v5$=??VqnwX{j_Hd#UgFyRj
zio;mbBWdDdFUVq<9A{cFYVA_$`aC91b{w|is^^nZ69%9<@#>BbdBg0`!a%q+PJh&}
zr`Jc~JsNt9z@E#8pVOBN#oW}jV>6{6+vaK5<L=(HhPz~Q^6qIEscEo&SIz|JPE_WO
z4`|-0I#;_2A>iQWlFtu)Kks@*yEs&F*-m#=?ZW#|UEVb?M_9Kh9k(;9<r;b`Zw%9E
zm;eifFN6Z5=(;wPM|nYjGdCb>YD$Lo_(TsSF1&0oes`RS&CgGbG3T$I0PppY>Xi}Y
z;?c;jQVCDOv`rg*U1cq}D5!hU@R}*OdkUI(@$=vS!+=_EPn@i`2xnZ4J3oWtQ&1PZ
zntyPqLk?sj$b~m8wijTPJS)g!T03GIWUW<QAk`EmW@tlq?~r$(lZ$HEv@W7pZ5%4p
z|76j1GPljHNKB#(KA6**>M;<Ggo~Y1lD_H}V1+Y3fHn;ZlNz=D2ns}E#)dsyWDaCR
z50hnkBf=3bqt9!rtx~^;REYQX&I>cWo{nXv7>iW_-kFX~y5oa*9mA{fod%dPis(L&
zjWv_CyVb<Q+hWp<J=y?O5yC<6LiWE@IcNq7g^K0SgifE9831mHIBtbFjpnn$5W~fo
z)r&n@E|-}3G~$p<MD;*~MQDQAr&UJ*Ks@d2mBdQdmifz!T#9q3+ZE|bZlwYJlzgdg
zomPc4afkK_-5o0D-1wtc`H$6Y#K<nZrb5#Mf-e|yi2_|5F9>VH<h*g!=<-<Eu2VW@
zopWFQ4LoPM;ITO(mW^|BUGNNO@l5_!C$lcnys96!Ei`xppF>}kB(r*ME8gVw&5w|X
zIAXu*uD3#ysk}6rcI59lCQUMsNpY9W!Rp<epJ-cG$!u0|@lYdjDj4tgYKdR%T!RX%
zg-vcMLG&>S;IqQ|8s^y=5f*3p3<4740{N|%M)@*yR{gVy3QP;?ee|HGv+}>^f{)l#
zIjY$V9-lb|C`&}Ri>%%JN%<>b@Ij7Zq3L-ASA=2ciQmWtgt0sX7(4RcKbBXYhE2VI
z+1`RXy$#8vK!2o11jL2katwQF?rpWM8hr`%``Az41KW-6d}r%h{x<5Y`;4HRPMwDt
z)qR7EKlvcO)u^Ex2^VRUpo41K@WxL>ADNWb{GhHINAU3cUe{M~yR+(G@hee?4R0kc
zA#Vxf$*Pg>1I4s>-pzfeQ-i54b3mOqUWj~c)^^JfKYk}Snd3u5I6}*;glL{{puIvf
z{L2(GFg!A+Y?+fR#7l}3TKjg1j%$Jz{{F!l;mJuj5xu+xGt~-o563RSl6Y*B#6FYT
zvB_@X$+1p}sSx9D)#RZ$V^)-*3kn-pCBsmUPblm(!OJIX(o`Str>pJV+eon9hg|%T
zaPcpMz)?#8NrIWKpK~`lm-5m{GSOB6YNwuPrwg?ocegj+v={bWj7dx<jlkx+ZIDA8
z{!quT5goodHz~T?Y0)7s(OLzPE8?Xaz3C`Q5|XNg>~CJ3DkT2HUFjaVBEx>#6GC_=
zWvL|O{aMT#Val-bQp8@)?fW@reA$!f@^yHW#nbBC!o<tile?M;MXhd9cmPMOr;+Cp
zJKbnl`EtH2ruZkCJ-$w8$0+}+q~Z)SRw=0DSNAv7;`k4d?rVz<soILYzsk}lp=Pz9
zd7^MvPX(_$GHq$|UDV!aY58r55=QD<Qv*yc|K(Q_N$z}PHe(VuopvW|9#gY)P1K^Y
zeX;UvdV7(H-v;G&h2)Jcrt(bsja{blu~8K4VWx*y!17jrIqLEDXy7Qf*fGZi4~1a!
zq3TB_2>8SO2$L#{YJlmdo2s8K1nQiiOw0n4^LdKHO+ST0ByM+ox<lw4;`@XO?yYLA
zdstm}cSyd0#Tw!x7=qu%XyPBLNL#%s{F=gi6J}k_>CKg0y5f_3Ey0=JQ-S^IazqJG
zR3a2h$o42}{_KPrHx`U;(`>oS&$8c3*KIl64+DVCHS0Z$h8VVX(p%pjH(s%G&>VVb
z^gGJ@cXT^bSk1|uHSfEkj~+2byoAM;I}Uu6tm<{#<{$zvanWs7Y&|9><&xZ9+F5K0
zEdfXge;#T2Bx*&|9)`6^=@KD#o(Xt@sp@V)Kbd_Q-^g>$(G*C!(wqhBEtE-0Tkqlr
zb%kzqb_q?#2*v5R^<G(db{iHNl=<YTkXiqNvC~1y+)C=!pN_pN>8&#5)1H~lq)S8f
zZU?v1rcJXoeV_OF1cx`!R<>#4*sRmJCKiJ)jj%+U<-k%`5Nppd!f7a9+S$}W$(_Nk
z+e3=auyV4)XN5<6Z3f5iMV4mZ=Gz!&*^!3r!jy&)U*D3zzaxr+MPBd53L{2hUB;6u
z#?#-8=c326T_%bvCK%<yzWMJas$C`@R!n{odj3fGMZ3$3C(rItDqcJno*HtQikf&~
z=uTONRQ_j1fy7r?VqaG8`e^w{C{Ipo{=K8y2v$C&F^5e3iFt7`4QR^>p{Yx_nEPbx
zw!-hoy(<?-xZdh#trrH(wfkuj;Z*uxMBOf?QBFasuaRN>SVE*}f46z6k<+k``j>Tn
zFDntAKL16o#emq7Hu(ngr$PDNq@T!mm<X2W-zxa1LlN61bz@<7bl{)xQes8>$yU2F
zx<hcVV;Q~7Ro|H+wdW*XUu30esql1HK%}>?+yvYG--~X9Ee9fa+hDb45Ys#O9`g7F
zhIYQcH@&}}?E~Y=Fztgy-{*f=CQCyUu7AryZxHyLh<lFzO@r;j#?RAO6;|y=KJvgt
z`S#(~6=!z0+@$tT2?$WcxupwtC$ueVpMD)ek%!;WH-34magk@w8;lfKjyG$KudSa_
zK%Z=!>5Rx&iD@z--rwQ}y~t|9c>TAjlrAoS-3E8Qte=`nv)op3-}z{{JkWG}HEZf!
z(+<=LT?^k^@_(shHJwm7ol`3Q&A&{X7x){#@m6o+>(dHR2ZxjZxM=3=2I;eSz<VXD
zWm?Ue7P|;30FKLSj7gsVc6U}@{*6>~y;Ad{`^#Ht_ugC?eus_y3N_^WJH6IHTfO<B
ziDA4les!7A_qbjv_8l_($C;XixyMFnrXS$etA0a2WUXH-D4|?pv+O?x|55zt&w%NC
ze8>Iy<A;Nz_$RB4Ru5*azHU;!2t2^3S_^Au9aLW!F`TaP*gAk*6nFRxbNY;OY2FS4
z0lk{Hs<MwFKFbH%H}C<r69NVGVOuUYzIfH`ZhhXFGufp+7kZrac{t>gYPNeEphy6b
z3N==lzzvkiZV-WgI*2u9ybfVCWsl9|@CDX+Tl)IfTWOR}w~$_O(wqi5?=}a%Gas*B
zX3j8}1)AlL$6cEsm)^geY(8sfH@4()Z4Q#|$n1T2!*jD7?Z#zh&NXgsBf}+`aot6r
zVPkKb#MlEg`E!A$h6IZFOBS0)VN*#-#?@ac*(_hU%zAzDuDd)wAq2~CkLW(pit72L
z9o_p|=l0V-=VG4y)xFbqil(^xpQY7vMl3rvS&yU^x@K0uBM(RD9}))(m^t5RC7kG2
zmCJA}&d9X^jaj%k?K*I{1Rxy2%n{j6K<8_!DIdcTtJo0;1YzI7Wzyi03l(w$JdRTP
zl)$TG$*nyAN(Jc;q+}pg>9}}q$#ktmxi?c6^^im@8O<*LJS8J$`@XX9M+Hb`RT?3L
zWJLulpm=F>gD5<cfN2h;Xu~iS=&yRbN?)sWYFk$>J@+RGnkpel(DfX^4znV2(isFP
zEVlgtFWNk%8?Pp0UZ}8%)3e$j`7IRNT)e5jrUYj-@_%^seKd|fkeH7c3wWpQ_o+Ak
zZ<({t7jnPif84Va1XCK1bQ9;c4qA?yFYDMPERtoFs41hl{V0f`_ut>&KfizZ!ni;J
zvet84002D`G-XwcAVSmd!*sV0d`SY5M`{&d;}zpMrKCJuY{8bZ<c1MekyOd|-N|%I
zyeQBg=VpVgU#wJt))YXZy#9hxGST!%W2Z1Q6%@po5G;|0X*xpZdRNe^a&DPc4gh3q
zQf&o9I|w;U$|ysA7KIq}`i-aEGvn@S88mh=!*6`nzU$q;nD97700)SHrr>gJFx|lo
zdx8C5OJ|v3%`BKPAEcNaV>uAp6t8&}PaaXJ5OQ@+8%te@rv__1U#>fABgMZccsF0B
zqHGc1d~@eIw?EPzpM8Nlw>~AK-+epRNE^B-Ap1-k-8v$8TcK@2?x{liON}d(xc>+!
z5L}7iD_Cw+Pjf4z$*mqFez?1lB=Yty4fI&?$6#`*5ygoI?v*oRkZ!?oDzZ^6%Oxvr
zj;x_Ym41BlWCp}To6pFlTw-TsKbJvHgvspRKT`@5PKLDm#0<jB7Ja5nq;U(9NMDz7
zFD+SN>5buyVS%h+wg>tk`OV>m!3XzCYS?_QV}DYI<}1nr&oHz;4GvEKyKk!&E={4A
zum++Yhbna?=-#{tw#*EBgZICu&Lx&&rO4ubZnAZZ%7@t#f(Yr-W{m4!D9<3u<EE^F
z>}osO@BI0vNsnXG(^^d|2M2TjcVxuRTG~7Bl<V92ed${pq*5~98iWNDYtPLpaeYa{
z1#yeU@MLXx(O(Gf7)gA$<U!aq#ld8oXl7?%!l3&W`9mQj)|<KDXNPMuf#*JlKn#;c
zLm&897IS!6Cosz?1m7v<DalLqi$q+Iuh8@U{!b_(<$+ZNMqk|l)+F^+RkZw;X7z8m
zuArn}Cz`*AEEd4%#D7k_=bZ=W&PN_%k2p*d{@8dM<AWLZpLUOQsckDo^of)IGR^ed
zM4|~nC%9*D=|QeMYJ!w5hSd(nJZ!|qAw@M}HK&mT<`Be!!*`0orU`GNHf};{UOgsK
z$-FY+!jyI{D`RFBl(K|S1Dj)p^Aj9@i9S$}2x6sG0+3W3m?sCu7UN~4K>m{Y#7zI|
za0o!1oXz<^l&ToQc+)o{>OpR*ieN#)XLbr}_ICp<YkI$0lS*d3wwM^}k};FnsF&Uq
zBev!v88Piswk={9kzSw1i*JKTo;p?qFDEEfj&Qc3K@yU`%#1-9*$qD=B(Jf^5HyD4
zz}@TL-NSXXGPrc10}@<uP8{Y6DcUi17*$4o!_;-v_R?u2GaI`-b}p6V8(f0Chv+hV
z;bxr=Mgw6b11LQb!la6=a&IP4C*Yg1k(UojcoEHp@Rwy##MS6>c1iG1iMe;^4=-GB
ze1(0NpEc!ipQY^x-RU-QUs%fwj9mukTM{e6U;`@YfSFKQHm6Wxyn)tkJ1cb@rbH!}
z>;SAo%HnFC$<oZ&-L33xL$XJMWgojQD^fb>m0((fSp(2seS4n2%hCrd*=?b_VTWFw
zCm9XJVT4)tN-y=vU21Q9^O#S*jJb>?!AvCaQPadl&n@;&m0ptZ8&5W#@dUSNa6Ic+
zs}Q*ixV7Nh5;6ElydVb(!X_~A*cu#LWsMo}^_H62T%mAgq9O3ZB`4R<`m8TrAiirU
zi@y$$fi9_5yKj`Sz*95|bkxZoPTSFa=a1p6TD96&yFfpENl>H^&io_dZ9NCEtGXkA
z`|8sL_C}Mu{sWF+mOqzeL>%KMP8+HZZVPcM8@Dg4HYu%?IDzIopKJkGVJj!jZb{;8
zVai|pdKy0*wLR(k%v<5en3a=vq5yd!^TMrX$Z#|f$mav}=*mB(CZHdKq=L@~9|Gng
zh}iS{QV6aY5FhLt1am?V3vMSfqj6wY(<+1_jl@z<ixns`EmlY8l4VK;I5e!-F6G2A
zJJHl~W}9GAR1yoL0Da@b3=POPQ+sRGX-s!|8Ax!U@oFYC@kD;hzi1&MZTKtw%a4WZ
zc-@W3x=$1VIg<Bjt=M#fS6dk|U}#SvxPCikX9@-?mb;MUu4uDZQd~^FG>OX@mg>6t
zkxX9!xYTd4APSMm39>FAHjl-rgnmQr|18H>QoBKh3gZ+pf{#^&_Dj~6Kk6RM?ht+g
zrxXxsrG?9**e~5<1k<p@GZpOcOnUkUtp__GbLR8U<KB879^H;t+;`)7y7(=nr2{#X
zznJ?FAev&F0zDYx1~~J)Zti+6I#!;IJJGnkMq|DNUeQygu%UlJB~8Xi*G*og#`+uF
zWsD1Psh2QPl(m2~1*-p{(?fu&-yn-HjeK?csci+<$kT^|Nw-4NIoKE;Ll5kcv5s<d
zu%?WcYX@NL9?o6lQBq$l&#Sp(U_wUJ$vU>#>K)d0%?lS*+dXn7jFt_mklC#~onk@B
zPsjG!qB<4SziTQGZ(Ujx<sxN;!jpt!%%9A>9%&6B-PU~?B%{^NHV_)pa#VI40gOsN
zWmaqX2`dGaYrG2F?`-co2=qSJ_GeXv>79m5uk`_HIfUF1jk~vm!wD6lpwC_z0!J!t
z^L#b=`CS$L^*`;HQydEiZCxLj<;{F(Pxz^a6ZHaNb+wNJllmV3e`I`&LCVEOv91pM
z2xd@pnT3K7{eRB${QGy0b>BT}+R@T9h;jZf{!EPbsB6fSDh~LPt{(=wdom$>d+c8J
zU#i|Db>Kn&x5wF8H`{4P(+s_n(~_k(-}4|<!8j%bY8+D6NaUs1a~84Sb041k`@3^3
z_D^z9>{0vkm+eg1jDZIL4m6OD(q3@wqb`j(gC^|@*iAKLQm+7VPXkX1zRRM)Nw2|O
zB1{@|rvF5atWK>oXqF=MT{MNIj>6iEX6vG`^`qhUiE9#9;0qM?4`_}p3dd*SVI`XL
zKQw}=62XDt;#(!1P`IQ{V;u~SMkNmihFh-^X^r8%RLOg_vejtyjwPvClFfp2%76LB
z$6uz;G+cTZj)N^20&~WrE8V0DR_~|_@=aqz7BGJ+(cmzEmg~%UYMg+^3t$Qf_M@cl
z#I1i`l%$M<Q7fHtXe^{tWV0cv1PIl_N(>Hwa{&KV<Nof5=J>2>$zW53NlZC3rm)Hw
z1$XTfcO6T2u@nIIJ`miL#Do^{ug4~m5`HdW&Ky^rY2*jB#j%FbwrglgcVAN_fNnGT
zvt|PAq)W(@Va)M>>edkGZ@Hu^5}tu$rqFOZ@$yPD8WHQ7bF3HfYXd2`_qD(Y6>$x2
zZq}yLZ^N<rR|&Xy@OX;P_KE8xoN|QS|GrycuE((z*ox8DpGq*|AdyLm|5X|4N#OH7
z!Y4&~e}Pyj>)?NG##kQpK_Kp%KATUCE`^jQ;i*ybM*f|NR@H`541tHZf$E@5Rsdn0
z;=(x+_>_wWGN40=_2$AFz5fIW1`AB;o>Wu1P|Su9>2fB`PJ>=!_8WA*${l|yv$?wY
zvEbuxiMjMB__rvUdAA8L=DJh#l(_=8Cz7N;Hwng(u=SD-wi!+u5X-bdXC&?N{Q(mt
znpWnfWr5^>E+c#AX)86G&ixk&WpS)A723ii;{7*Vr~x-sfOEpS`?rBpz@JrP0c+C-
zc^@y=ws+^JQ_#ZIK00%IOL>b9UPF=s9{Z9WrX&}A23~ezQz#56nIduNvsBQrRBM4)
zQrP<df`vL7!ZkA@cAf2}UY5Z>A<gsU>VU+vrt#8E6>=22Z3&y7r9y0;mVMjTYlp|}
z6jqXW2X0=f;MU@Rqr44q@#-k1C;FfG-+8$+C5BhU87b=5q8=g%alAxeq<>t`oj7^b
zS5XbXNl(K>93MGQ>J+r7bU26^;lny4E5m(Mkf4y}heEWq-n05q(-*nXVrbGd0Ke%Q
zF=YEoD!r>deTx~yF^m;~a4V1u)NPFLc*m`6qp(_IssvXI-ZW$QQdqiw2eT#dQ>xUg
z&GxYN-B0H^j55@HZA(zu?s)DF=p~;KatVVu+A=XG4T3_-x~Cc5L@=e+j|lkeTq(i3
zOc}WXOs*1>BR1ZYDkTe`jeQ1cJpAw9m-0E;un5~2wRE<;!_5j^%DZ})cr6%~DK%_R
z!c-^+wZq|628vRve9T{trAIVAyt~_KRkMb~kx4j}9UDcXaWeP4=4UCJ!7#}fShE7F
zc$t13xg^{)?&2I!{aay%6SHLSi^jEqtY^H6m&cM)$ij8o&4;Xt!ILGF`sLa!gr(UN
z7qg`9Ntp)rj%f2BO6uvBxa`i}{oagM8RkcY=Iw%$&Ks9#CsU0zlZ}K|nh|EA1EhGI
zX&T_sveRCOHBe5rq0Y<0A+B*il%X(~6wj#y2r<utH7#|;r1z;Kg%96!BMrU{WPaoY
zKw8sj<dSEmHex>-pKMz=%dn4p8yHa^d0sIvqGS#moq)_|zK7G^Ouf=t5<jKCAw4sS
z3xUfB#P~a*g@O#$3d`=#7L|env#Pc}A1tSXGv%lJ-&5u*w_LbN*q2JI?3ASh>t7DZ
z)v1*DbHU%o@G>dnxzZ*RPBs=`p7w*IkKd8~kXXPvA}-pmTzkpF#JTCpoyS|A3L!@W
zj|UgGAIo^P*-fPF?=4CS3%@$ZxB~q;?Gr2n9NB-vF>|GMb$!8l!<l^jjZIS6eyRay
z|5c?UC(dI;qRk*sEc5;@D??z<y50+b0L?b{)Ols)G%s%`ZlD5-+#fO_Bv?!bbnhrs
z^=`aVI`cick&lDM##IELoq;dq_-!FXP6AFbd{T)bqQbe`DNX1|DJi)?q_3fsTM%zZ
zE`MAu$~E^4bm!x8%Fo`t7xx0Wo&|2U1_{5k+5T@|@odF1MULw*SL|Qz_*xvgZvc4V
zRL8n69+D@wBX!5N{&N{n$tdTCZO{=Yh${j2do8<}6tv=14Wk8oucNY_+xR}0?>kjM
z@#WFz@w0LIe1+w;xqhKmLB0&hzi1RIT^7_Y(_rV0=$?7qgq(jfP{bY^@b7BC<Z&+a
zZjd(LJj2UH09|M!z%WGqMB>emMs5<u6Ulfhq|N;G3OKLj8$W3EmXMPVw@-*-rXrk^
znd^qwLwz9UM+261{efm>H1o|fe%DWZ<d=bLBYz!!v3hULAO0P5m{V#Ehk;VwJCt4r
zO^m_{WZGn!-gt^!GK4KWRaf~Z6(ki|v>u(|=_@7_ymY-#-z%VK84i&9IG6|U6U!-L
zte%1>@B16QWp;loKyegB=V9!N6+X%nGLkY*-gLi-D=WR^dZcnD$}VbEMCF0L2Aitp
zEj3`#gB@hjomGCveaF~;j-&&Aa_K-E?;@XqlR}uJ><#WF#j>XB<fM?2<a@7KQ&6d;
zC`Z5Lyz_wc0Y+$ixKGAQr%W?Pv4-|@oVcP1rQCa^xjkin1A|J-d>`g6c7ufQ{5eIN
z;-drKiW8SgxFnK21x>PrE&Bza-`h;Q)gPWOtAzTsJg)c`oniLSS^Il&ED)73fy!Je
zF+RI^2Y3_!&((`9kuBy}^D?kpf2?8Dsp;710KTUDd1YXhHO#oY#%0A(6WAG&`0V^5
zXVeNaN$BlBQcoeyXaPcM719|T6dNi3P-ff*e76FSF|`*O0annsDlUodiC<9BmN4Q;
zsnCynaqZ(3Vs^(U9ysP8GA`M5;j5~)w#=D}kCgfK=Qov>SC`(HYrJu-;|dGEz-e;z
zqY%vp&~c9e=(>l$^1Rcsd|<Kgo>s8N<(2fnYn?%ih}K_pF3N{{9jDm6`0YXt1e+N>
zclu~Cc~#`eTIC0>oHOU0?tdxF-pB>-f6WVjV7LWUgWikxjTY4n)0~Cchw+H~t9&xO
zDeBO#(mJgf{PxKmww3RKY{$M#qQygh;^cnpC~)4q7WMH-oLJ<^=9AWavHue5uIf=A
zPKv#iz$CdykgsVarBld47R-Kh9X#dTB|3M6Q&Mqv>c`6Z``u|RTIo+B`RcmU$GS6K
zX=RGPPI{}A^{G4S%Sr4zt!#!?4s%aVOMEtGPp+7Do_JL5+aVNanm-96qTUl_8|*>G
z6a*Ct?J|Z01z+S}!`}7O7Nb?(QMi#;+*3LR7Tv|b4lB>2s`A;em@JnH+1hiEHMAd(
zd=^-?%snRkJrgNkZ94t}2ToGY-TrzN2|U3XS+%%YC0Mv7o3!>I9uTz{Rbin+`6+I@
zyLmHRM6oNdAls~FMOwU~r{RIlIf#cV!h;P}t!2M1M2p@rTc_hZ)U4NaOSlZOj;ANY
z&r9`|RsvvQ`c|iSFIzUvXb+)Q4<B2yjxFrMu8Z!p$N3~M9(JzvPnNOAxthWu%5Bew
z<pOnx4L85_1{&_Ctb}2e&eJF7)N8c@#7T+ChNg4+eUAtxQrEj5#S7?f`h2MotEV+v
zGn`GvP2-+mlc^FMZ#-Ss-pu{}qXme$nDvSksrz4@>d2L614x|B@xYV4KT)f;KxBxR
zeL=;}xP9-_$(FwYKAT4iaoK{v%c3Nw>1R$`wHg*%wq2W7^rXZVr5?|0D#x*1ZH7F|
z*0<Nj`^nz<mDV+%yEP(htJD@kB)_u2O9@&^-SA6)+pq7%YT%lO^VZvblN5-E`q%`2
zq`3EMesBDRos?Ur*VIs*z<8a|jMvNqUg0nt>?5eKU6(E&mBuVBB1}ta`xFJLi0Z!*
zn&f>2Ly9q%mL^DRL@KP5jYeqb-^z*?(0&+sw;qve0yP>^CnVo4>etKd)56OrZ8M^t
z2<hK#l#aF5=XKHNgUP5M>%;2?1o3Tm7W}NA7(6%KK74jJnZThZbV2wUEGema)sZdv
z^g5JWA09T5V&J^muV1scYscLGQ#vZcdLRRvkZHUdubYr%3;F%i#~239SynJjku_5`
z@~1KfNbGD1L9MkKzO>va0L4Ky1d!=iM?Z2&lM8G;bp$1&Lp2F=?(@owA3Ho35jFa$
zHN{@H2`9<r{9i3ic)cJ}ms^`7GmozxT2c@XM-_rAo4`eRiR9FxqMRxgR1%z<JH0(S
z4~S{(QR65k&$Z2|oz>9Py42JAv_%=aq`j;HX;LvUH8X!vm5*#Z)eXfns%vWN9$KJe
z#7nZUh!Pc4yILiyI#WsJyPMxbe}o-{A4mMWbrSh2>UZ>?+ka#J-TCh>BbEew@v`1#
zhCU!@#OfIjBs+6q*fLJjxdg(98viG)84ph|+?_}y3C&a*H3FH5M9;#2E1F#WX$WVJ
z&qcyn-5J9_uz5~#NnIHLC?;&mO8e2&y%RzWBn^nMt}&!mZ58u~Z2p*3Cgq%-f78;$
z*D6PV;(|CneLQ(2x#WGCZZIZfzK6@sVdCY;ysUkL{p0)kejEC*;Z(!zzqUtyEaR7L
za2#i83d>l(RHKUSZz+}!)Z9qd*{XK{#n-wsbE|k?ImESIe^tkDT{#YT*AxC_>;1~l
zFHsOK?B6yt1kPW>oHBC*Z!}JA&dhng{ad`DpgKK<sM0ag>C*6MVE#A}pB|bxwqa@a
z!IYKPrpZh<zY}~%eRtxpu(ryVnUAuK?hi!}fY5@-iIKz`uw0tF3JkNBz|{{(E6KLT
znJL<`65=|ZPMKk{`li3O)Br57Gs0jliK$K&LQaS=(n;?B_&TewsJ{PgPclIb-7s{+
z5Ypn%jYCQ)LrEhor3^!dFmx;3Af*B#3=IMbhzN=@ga{^}qM$f0-~aFY-Dmq`UwfbI
zYprKJpZl(vfLvNQRAUa;x}!_`%BiDY=<Xl79JY&uY8EDk;7#Sj42LhY^oGWu;fwZ=
zATzngKaR{WW2|B3inE`s`!?w`zzHQ%x<DGWZI>nX{oR%x_&LLMPq4~(EJ^u6jNi;f
zNjKeZv{X@rS%XW$N9+4IVZ&fXATy;+VFW1gU>Rio#WP?y?A%b!BCp%jRspufK=|nO
zjoqN^Z3!4!grLaQ<G?g4+F|X?18g#sXy*@t&V?kh)jwq_Toy9FDE`vU^)IWP9a|t>
zuTZevof6geNj+jrXjxrrDLbD8h%PxZlpr}JL6KC~MlYMke0uQfTHN=SH(hU^7%0sr
zEnpJJtfqJhKB<dN52wNPZ*)=UnAeY2xWmB>nlYQsETK2mM=TBHoOtmdcnUs}tiZZJ
zv0!a$clY9S(*F1im`8sjnY}=|TEf;Q?IAA|hu29&@JA7#O7Q9nx(W`2?6>oH^3f_4
z=ybqt8RDqExm@?#AK_gY{p>y9-c^;XUG?dIr5pjUV2xKoNJF(v;cjh5hC->=eQ!$z
zPIV!&f7s%JM`>0629LAIf8S7k57@*p+2f)4zV*#<JC{Z6CANXa039%W=d8gsjhQ#K
zn&n@UqWYt~3iRLygSmyzX8n%`3Xr?D(@-8Wg#>7iv&N@P_Ppcz6(<XHH-~$ZQVo<L
z178LF$kXQzT69DR9w-GAiT-LuQr=c<B>qyaJo>Pg?Dqb?sMwLZJNH<GGDa}@N6!rb
zf^aI#7^pG<#Sy?Fcp!Zgc}yWl4O~J9r8y4<Z4KdB`?j3!sy(zFQyMQyIH~G13k36~
zL?*U!YxD4Kf@z&mgvh5f=#6pa>?auGzf6uygQ~1DTyD_DB>=649f4Q3F7PYT9a-fL
z5#+q#tKY;1!`9Z3>Z;U*XsymOu~GGPoS+Ubnc>Bjo=}ZjQdrX_?_`=Pv*+{liwQL-
z$-aE{XJ0v_e4cULM{`V0&juhV73u`F)JsnVNpKNQLHcN8eKF<`q)2w2#v%dXSuZZ`
zqeFx01km=PV+*FSP-BvgWsG7ZLll`!^8oPKCkTK&M1#)Bs_m6%h)AvhkNp7v;)7<~
zaZG@6Vt{P=wMB+DnKW4q64qtRg*i?-H2mjTA|V7|$vOgIr(zPA@wsIy<6`WL*ttdC
zp4ija7rhukBCM%i`g_<NX)_EkYBb;NJ+Ge1e@xdVuM4I<c9&>T7PRMuHOT@RjRccA
zd0Pbzn&5=hg{leQLKxi#b8)(r6KJ}n2=TB$oQLc?2P?_p;Cb&ueRgn}9THw8SY0Qo
z&^$A6;d|+#ISFCOWl}P<Rn))!e%cV%8?Y{CwLdMPDSyS*K+LY$%*)TFa)8m0A0i}`
z#)5>{0T}xLmQS?CL@2gI8uMj844^e`C!Ec$JCFYVAOr_A>fJ<OG}>Q2id~KdcY$e5
zc>5(bzp&@)P621)2%^&y_+-)?m)7ogc{KO}HC0Dhy08}8HhD$h6@1h0a(UZhcTgkC
zxj~v<ga1Wv7a^#UjAc{QWf}6)PR?e?WPIuB{T%1G^CJlG(4fXO{m|h?X*gZk&y^Ru
z1gC|LND0TcQil2%hXr>Nu#;?n!!YL6{nrm3Bt;~^rpN^G=EO&B{V$^K#a#Q*aOKG-
zJ5Sq}%B(cuEowqPO(pyKvROPAz)jLH(44*E{dH9V<Ux5dC!jl@f0ZA~pGZ)eV4&#{
z9Qt%{J}XbaN7tD`kLC@M&i|#1zZyoT*d!C)cM?!Job<)x<w#Z?H`G+g6QzcbJArZA
zG5wFwZi<A+A%Of%0Ou49<i1}jZ+U+=l{{i}Jv6`aucyQflPMtB#@w(9NE?8LI>SR(
zY6ALTWT|o26qpf?d_}R*ao+!WSoxyDdxih(ajT^?Y8BaZoUi6jHLyR9d2?L;IW8oM
zg;$51<2}Tk7BjDh*Ych1T@dD8%5Mm-m%Zg{?p<~*Zza6(;+Zcl)oHob5Zq{T%g?sa
z>1FHn3wJEu`Z-KFt@JcRv~$2Ze=S`H{dm6w#2)ygs!o{YW(j(<Ye3jhEnt8i-Tj;l
zV2JBx@2;+IZ@(27@W^qAZjbOm?LDI)r=~d!l>qOK?hkHE7zVmw;o-3WdJ-NyIBA5u
zYk1xgN3VuP0T7eslWc=g8dRQxir|RcZ@2E%zMYeUg5eCH#M#kzETaA}bAn2=%;1RU
z)zF6*|Amn5aV+ZMbYP=}#O!hyLF$qmLg;Hfw;cKXNA_uu_NNEnDm+vWuY>$|D<_?2
zQ%!gefK2%y*MfY^>V^U~U=l#6oz0ql&X~m<Iok3ullZWxm}S|g*;PG)5(ayOrS05^
zAvPV*qKy6Y+kcUL;%v`eKUpk&z6c7rB>(M?lrVRh2#Qrk?8~g9U5ov*oX*P&7$4HB
zfY}6HX0B>_jdYWz28+635PlYCqp_XMk}*&~)t7p>CYW!Sah_4z=3?W`^{dpF)lam~
z=A<T6Pn-z+u@nG|OlAGr-}UF+H|;11Npi334*<NX{&zdIIyuPmc*wF9FnR;}k)5y$
zLc5;ac6cwP=^0mm#_qq{7GJABmiekV4A_W|lpXB=t>hhQHWot>wgfj7)+wca!muW~
zOy#U6_h&AcCiv1G3Y4o$fKh5bn+@5S4u=w&FsqMOTd}l*WK4om_H>oJ8ew~(#RCJ<
zKPcMe)KM4Ad;S^?!FRCZvk+-)oWHXjn)!qsikYny2iy~2R@J^HBbR;i2473*MC-Hx
zNrLDk#?CUUt}<c2Jm~ZYAEZ#8lhl(g{f#y?ND^X=)fN5GBK%rlz;C3gl?`hRq)n5x
zUx3@=(y7glNAJ{*KsN`SP6zx$IAQQH1biSouYexFC$q@f?guPFkDlAx)e3Z#r&CtO
zu!aHpMp^Xwtp$v5eh(~-7k~>op2UdZ{yeS!f-=4p448Pq(jD5b#R}Q?O?x|=aw8wg
zlZ5cb0^r6P{Bv+Cky3{w8b1^a<uFlb4AsRz^l?c{x*$=Kfs_8Ya8tTURN{0d&priw
z2>`LBo76K-GB|+Z(~?Zk5`Wf`EPp5Auw&M0$(prbO){8s1`_Pq$LyARwQ0;X3KGPd
zGKWhkQBPn&u}W5fq)CWtKPK#zQ>iSlZ!!8w=EljNVfxN+wUD$VjbWa(ON)3F>IMD8
zmnUf?I5-c3D46ECQ(DXnqAzPQ$nq4NVrI@^eVp+-V~>+ofr7|fsFXk8ALax^A?Vu3
zY8?brNzzPrpT@id{UZYHP&Mu2s$uJCTE}3zxzmD&QJH<lsZ{@`Bf%NdX<Sba*s58X
z1r>Q}Fd2Djh$3aW3F9o^=BHFg<A(uekCI@PN(?(VhFwmuaA~$?$ld(8iZyG*5{2O#
z1v|xL@<M@8-g$uSbR;?<=L_XNXn`HJ-{_PpFvctX_-_ttwJtOlN|Qi>>F_H6^3q30
zqpwjiM<|rlQ*}-zdvY$DW+I(}#a@qjMDYBV)m+iTT=%qLyQ8PGwd2&2-;k+gcAA=8
zuKmguUf|bgv#2Nl;{gGdOZX6{zT0MLAA3P%ZCHk`t*5_2@u@MxYu-zTU0B3SaZ|Yh
zXA8+>PI;O;RN*2v7jYY8A%s$NO#l`j-u22wcuS_*M;AH>wu^og-zs3fnmheY<c=$%
zD2|)Bm=A67?Rwyre6_U1bK6|KV1dGg-I_sf=#$x63re`AFU@2LjxJb}1wLiLP;daK
zkAUg}fY1P>ixrQ>gDcX+gmj+7QXU#y2@4xy6LeX7lQ(muB$2m(OZT~C67a9y+^i$t
zpDbj7!f@th#fftJ`{}YAE5l^~&-riL1zuJySypQ$G!sxpZDeA8wjg+yOZtYox%z5Z
zuVi_c&kLcn1^C>85{~ElCQdl2JTQHlIgzWh%UZ-PwFOealbi}iCoq>-flzE818mK{
z^zs_ePv=%xSMjPJ*jC_17!*Ozft722L2PX4qge$J`N`aQODiX%*7SU5JPR`w#Y{eS
zZ@9n*Tp6>>{Qi=69ZhV6eC|E-;cqAK?>F;*;v(7v7QJ7#qUgY$v~gb&HrD1#{IQnt
zP+=uq3;VYKx+?hcd9|Iv`@si;wl{+<0S5$AyDL!-de_3x@H}*T6Ixn}XJouW!MHUG
zSnYl8OYW<Et|mxydM@E5SQ%W+X#G^itES{LoK>-d%5zjRM-t=J01IarE7w2wjS;$E
zQ1g{l_+>$&v~G`*Zlca9DEFcOZ3rgKY3-e2AK187!9iHqr}mv94}?%H33Q;o(a<(s
zav`l1Lq%p|AJYQ>HFvHwPT0D<Q84NT80XbVG}W0st+QwmvEoj|oz@vjiuyY=q#>Ta
z3#h-6QSYc*m^mVPm3!veX+8e5zu>n-$S6zKMbXc2j#8qSZ>Xq)6wpy9J@rdtNt!dB
zxuNU_cZPMN5>_g9RQ%RQ2U!EjLd9ZIRa0V2Wu5^zg<19HR#S~aO9v5{SW`Py&y}Xz
zvLM@B1C>Y^b<w>5eeu2_KnO~<d*k=!g*xszH4G~y40tDmdbj!l0O(t2w0LL6(?8xV
zMe8QVNs;P0mHOn@-X+!Qe!$+V=={JG@i0`n@AWJ1+E(T&&A}yUwkUf_UcSlFwGm{`
zUf$rhTde`iIQO?p=ymDWy5RNGmz94DK*l2r-0f~Z9qt>;zJJ~EYHOYFHv5IJocd;)
zMo7D;0?&7+b@h3fjTkM+*WpUG+TAbd75>tv^H)3<1r9Xm!}}<opYXEFz1z0C#`R3u
z(s?+{1#lYLSy!0+*YxsLXctwZ0FQvPj3LiXH|<edd~yt2pI#tZElvl{nXR2+0q)AA
zt#(2u)Oj2-Hq39xDq;zv-`<*^bN?BwPu&iD&2`PgaCUiPuj{-f5LsgVny{@v+P1FR
zu9H$62$a(N*Cij2D&oAwwE{o^2+!R-3?h|P|Itg2Davkls~6d<MeWGE>9%>fU5D&p
z?NTty-l1Wzd+fY(007u@SXo=XH_mjD0<);s_B?NP51a0J8}(iz--~Hkss3Y+V9$Gp
zlvJ#Zmm`^Q{%{l-;AXjd(cjZ6=(_TCC-3a*iXPW}JFc%PUE6tZJ@BrA-@EHK{;380
zyB>1=eh|NRSkVKR!)yAeS7AZkASv&g*&nRR0hT0NOEvxIXCEN$UT;<}C>>tF+i1l9
zBf9sb!T><sV`lF^sa~Io-@f#I0|!#icWInY2oMy(JIUvcWkuj86%^<6E#pUuf~sMU
zS#sZ{V}eqVmEctAzVL;<Rf#7+vg$3Chqpg%*TU6`6ZS*#0L$O|u_~~rd{xCF{+n;q
zj8}c$kj_6QVGojkO4F^s>o>~PuaD_x$M%O&lGG_5S<3rk($zZ+ePbQ=Pt&>X`|JG~
zP+yaH(xRl%X>Q2oH?W2G55ohV66jh+y}!NfzdPpJ`@QUeM*^(gZ%jKtqWp2!Y=M;=
zY_L3WO0Ht4b*S5L!PNoywCA(6@sofDspDgVmkIf}l))*s!DoixM;O=@9on&3tryo6
zR`dea?tT$0e}XR5>V8042WwN`{=4|D2lY`?G8r>ey)Xpx)V>)qWRCDEhJJlp8*m?`
z0v)`+&!1Q*_O$?x4R3ndn}AIY9^3LC?n59Li-x7)UVmb(g(*QOB{yY>;k<<a*7=-?
zhQL2VH*&W>(3_VtF6%N4mN7#PhSOPwTt=|rI-CVMS$g#6Dr(*&7CwEL;h|2%?1r;n
zmMKEN2r$k$o_19MvD3t-vL1Bicu6KJAC*KBabcDZVAbN)>pdhXeO}M1nm)UlDlPF@
zeZf38_?ygY4TJF;f&!ua+aI1O(3{eYcsiu;L<1}!6Jqg4>&F?+J7%UAC$8EWxc-?q
z@Hu#&HsM%zSXx>HZ91YVPaB9wrQO~k4!<VG{{TIpKz7W491Dj+X+{BsiCQJ>zJC+3
zoJqQUhVILTF|0H<JdG^(_;7uLG%8a!ZDH(cTI#{c1%%|RyWfKMgoQT3Ed{DlJmG1d
zW&c*ezudmT^9numU*A}>dye7eU*eU&S$8F7mQ5Tc%xCU3eY*>volshwrUkzZecG>P
zHf}uodTZu>m`PV!c9m^GH7}t_*>nhNYB)ukR5KqAcsZnYr(!vC3?1nqe$nJxc&Pl%
zc!i_V-`D~DrpM+Jv(5Il-(C&<P$1i;fn<{%yek#d81uEj4hGC8eT>STIcV!l-%sx*
z)ku(ZrtLPS0M~pfRIvT|vi0IR@6s}g<qL_CsfOnIypa)%nX(+J#spwOf!w0D^(~*-
zScct*F5cky9FV{HQ+l<j`Wvg=VL{68w&l2c)*BIa$A5W#Rj@KWVWrzBfGGG!&Y*oH
z{dhFK%muSK<Q9&$7shfh_k3lW1+cq?;5>A^j=yTXEKfX>Ve3dAW34PMc8z@q%Qt^(
zMcrTQ2U_Plm3)*qurjc<n7XN(UM>5RQ@s5r?o8)#v$Zget0;tPJcnxzciMOKA_D$r
zjDx#IfxAu;FUz*<msZvsZ8Kc6bE@_yRTU;k4vK@>G-BT`UQYB0jC~b<>+SUN)OmZ1
zx~#bv89#MG?Ge3Vb1~JHKGBY^xS*(L<VMa3Vkd3=RR|woYPc%!;;XQz3Vgjwn(WGZ
zraV8pl}`N1C&cO(b+^NoGnc)WZ=-*{^j-@|z4g;IKB455eA5+G>!4fjRRzSC24Szm
zJ8N^59j-RSJHv<xI0>Rf3ZsKjS|=S0T9UfYYuE^;4>+`CknNlbGnaeZxdXacp?h)U
zg+Ubh(h97ie*sKOZzFDO=!K{AN(FObQqsIr{Zf(Fa{N7{MfJF4plPYuxfq_xf;3WH
zZBuhgYg>EA{m!oLp56x!AN8GQzJpJOhRGwNW8)K(Q>{uDX6NQFfa65i=~={Mz~Zu8
za9Va*YL=etYc>(H%UfJKyI=;!3_eB*4+d^uZ7wS#E-Eg_)&jF{iy~n4kdpfNwoWph
zh~)T*<BK}LX3}K9QhH-KZltBLODk%1lHK!3T0&wnB{=s*6VCG<tY=;Q62S!SR8T_B
zZ{)PUH(kZ~0|KF=hq3$UNEppkYC=t&q84-vXfNrCk>e;BlwffyT_0dka<8P?Xxhh@
z0GH)z7m^yCrab-3sm<lwFWYlP!pf5XrsX&9>)aemW0Af#*VnZ@)mfk(CN@q)a+X;A
zWwj<J($3LtJS4jizvLro-3s{K>6NZC>+KpOh29_oSq0SM0E?k-C1_xF!UUa2D%psp
z*sTemDwXd4s@(Z;iUs5ya!x$JDYE^<B9!xO^73bQhPkjghbwDdXT@PmpBWrvd`-O<
z_%!s~DzH`V<NKd5BoYT#a_<q);d+%q$_3x9YF%-<A{`(trVn>MbB7oq&<YGPyKxER
zF$sB!6!~nWOEffXWyn0-+sYg?R^d{*%t{7`r^;aPTq?PXwKC$rY3OO&(4E3evhXf)
z4p{>8hEs+601me1Ki*-1t-~{OD<yEE=Q@QdP<FeEqo=s}Gv)@QQHT33%MAu5@vQI_
z-w%~hyUic&#vM0jW+`ch)c}p|SP^-8;&wjN^au3ayG!mOiPaX^`|VTfORl%<H&kqa
z_Oc||6^JzK0VELZ+(?a2V_Wv&dHH{CrUp!@fBmt&Z@1-B$Kdftf6s)ak}a@677hgG
zCP|vn?4QN#19^8GNj=N<{$C!fUO&fp-Lri7<q;)C`fJ}#k^k5Jy+|{zfzJ;=eSLf|
zDgABm$LpFPrJuX4--iAkfBH5I7>>H%3FHVk7=eqQd+VqSgLGpkBbmc-)++&rcNu7<
zRw03R)qrrm+B}_*eqO-n40`ox=8QxuuQ`z8crAgZIV*1N632(O@6WV0$_`O<;aCuy
zUE&Wdr%3DS`OtZ*5GXgz2RpiK`&erdc)qr`P8`O!N5qZ|KHa5q(j}q3OL^U^gub-v
z$vc*jRL-1!F?`sN0O}Y#OX3wZfBk)f0F(Qjeu)u~g5--UAZ~b?-$~n6&+9B*G9T7e
z6%uVC{oJ)L&V{@hi3>7k7Ls^Ojzu<vYFuw-B%SO!-W*c>7(9Dx`hBWT#3;;Oz4Pfu
z_#HtVlPJcZzlYP}@~h9sa<c%)?wm#4r6rsAbH70&QPZ`(M@U0qgRuuoD+FgF+P}R?
z96cGil%RXs)Ryy4n1^-4Wc{_?RYO|`HUg-ondJJ1GEQVoGLMFvSAjU1GVb|$g?g2w
zwIi_-jJy=U)0!$)xsnmuNIE0v!BuX4Ktfj10pSAC8cBr_2zwWSvC=zq*$fnd{M8`f
zL#G6i6O*>Y1q#7Y146I2q9+qkM+c8Ohga!<*y7UZxJ)Nv!qqY*7+^#!i{QVkk`|r@
zQxJS9172OFE72g2Sn;Uhel>0Q{w&L0lXn!TixcFm1MqUG<=jpoO?{6N6)XW(255m3
z*@FW?tWusZ3CMsVrx)Ew>}wEl41{O`rRX|1CH}ifDC*3HH<>=e-lc%bCTh}f7-VFO
zG7!*T6^@<F;R{TDs=jiV9W127=Uk<tJW^GxmnI~&V)In0;ai4hFgBR3-{8%{p;8}2
zG!)yzC99Qy3+EyWKVHyq<Ax>&(lx40aZ$TQ_m9AQnm{>@U?Q8XWV+J{z<><A%sKr%
z%`_Ci32Ek@u|Pv*)8OE=Fr8XfS++O4x*}IeL<AZDDh?48)1eS&ssX4xX}DO{7%uf8
zvk;OE2)D+8@R6XxbLy~>+Xb{Nfed_$A2EbsKul^B0KJ3`_9|2*pslCURRh>UQ$?tE
zV`AbB);T63hOOFQV#2cf(rr=ng1p!US_yz($7tETfqXch0oh2nrcm5Ms9Kk^3YDae
zvm$+O55Dth1bGEuN2HkGo5q9P#bEejHm2S!@0dJ74?{0LW!M(#bc2{I6ky1(%mt;p
z1RAN<FUp$iH)QS%CFoMmd-vfo_fY&O;!@dhoEEf_T}5eu;iZud1A#1<l5e3ykh>ph
zDifF&X{(<_$+_#}=V<+EjXh4K*I2FHm&do5S?v|KMDSO`iwne}<7!3c=|DDKX?WZ8
zNC9}d)}Nzw1qcrVNcOe4yqbM?JkT0!8Y32E09Xe$RXKtK>r!G`m^$adyp<Q;!+u;L
zu#Ye1VhEldEPo-)A_z7!JuD(6rs#8CHJo8<j)q*F+-pvWNB`Sc%Sa=hs#w9l1H>hh
zZS_yHH-|p&lbL5pphXqkKGl?^6eXPk##D##>%3#I6muhHy0r)52RRozx3<K|YCT-<
z^awHs$_$7E>fqaek8u8-cXF{Ovu}v^D>86UN9_;YO}w)4$*5I@=}G>E<qXLytqwHO
zy<Lp_plfJ4{^Z{Mnn$xeC_}urBIm1E{Nt~*(vO}f`d}fFgqI=#&TbbC*?|L)=Q>xq
zh{}1)QzHfw)d`_<E$8NX(s)K`V`7~G>J-7<iA3z+8DwBwOfXPS$IbaqF6k!-F^ZxI
z7xuIJ8xh140~P$48Dnf;1i*~NI1uHuC*2#fcv)+F$&{3I%1||)z^?~)Stu%Ps7b?c
zjd{-Sr5E_&L9A{%A2ZZGyR$qtLN1VTxGMLR5>1^>wfm@=%xY^r5;W8%{K=OmDR%U3
z>$=osS*P}kDc>^)vrnG&O{%_YbY%oW7}-aVhSh9m3{^X`yB`8-4n9}=V!?8}x*gCi
z{FP7lS<GhPoI5mM74fUL03zT~Ci(%^Iy@Z*2P1J3aK!fj{|?V`B1I0SC?)~6tM5u>
zr&@koD|-zg^D*Qb-F~bauesL<oSl1F@%~S9@pf>|<8=f_TdD<M5R4&McFta?72PDq
zU+yn2pD%r_jNi8zo?K#IuR2`opexw{zl*)SISk=P3ZQM6{bGYUBckA;WY7jBsa9oB
zr`=%Po30#JdnBaGRGC>L*&UQTM@#%}ZN33CCbeh<oG-wvp0H`TpO|=<K;t1})a&f=
zpA?O^)>=z$af^wb^*d8fS1*k}uTi+;=OWDWW^YopPBlA}bct`*yGOHt@LZMSUAy`s
z?9yK#DgiZ)&b5W>@q(<i^P5GBl!M=;hzKe$izWy&EP%uT=PLj~hgS#|K@N^X05}iC
z-pwr43G%FgiUV$x;dl)bSWOR29_lc$Cor{D)2~zLvk1&mBg|>95bm44{)O7N7UKdM
z2<O3m1kleO&1UPywhz25t#*47$SkD8EG7sM12DeCCp~nFhlZd6Z^C06IQ%0MzxG^T
zdzE~xDI~dvuT(+3@{sFPoV(7ATaUo)JI(LS&XZ)s6BNPI-^KH!8cC+=aL*@-yr|<<
zNHwuq1^Hv6jlKC=dsXkUqPveE&qDai-2mSNc|8_POBC4Atm)z?f!&3)=UrT0aBc<R
z6w0D=AA6#C1YFoUq`e1_ZVbwV2e)+sPPzon+@ML}DK8JDQcDomqd<O5f+JR-*rtrs
zPQi|s$mVH&vEnS()vRZ~z1*)0n;F0)c2t!bkUF6ps;Nj9V)*$~MGp?}f)f!|BifG_
z#?~o1DrVPK3ESia0tCfAt2uY!v&R<hsE1-L^Mu2QIc=R{XDRxXXzBaEvuL78n>!&n
zIucPIG<>|(iA74;)}$k5$yaG4&eGg#O{5$_sXBKlRxw%z>LaE5%+dfo>4n-{ss23J
zOm2>j%p_6fyMt2BO@#$!%!|=HjsE<#4|!TA`B<(3-F<m&^#a4_0^`yGH~X91wFQ<Z
z1vsw4cIyIb$HM>e&U7K$86jQ|p{odCIx_G*#!xy@Q8E$kI%A~VC*$9r0z5%t#-x;N
zlmcgH)$$9YN{dGil&qC52;)_h_BoAhgc47LoUH!CPr5kJUhBD#iYwvoy7O?s$JMI1
z6Rn~-3gE#g*EwXBBS3Y(0UfKz7(JSL1nvAXqQFEY(&JJK1}K0A@pKBuh2_RXm-nq<
z%}s3NFc(-FxD#eLY0>Hv0QC+`MWv%qrGX+J6&2P)x*m?LxZGLRi>-_muI$HZJgs4q
zz*vWMA=mdS`=+><eronA(U7+j(@14u!lk~CG@tY!!*^UTXvxbMEg4E#fB(I|rF4(`
zy)NT`#|5%4#w49KD;@zVA8p@#Ia4))(N?)`C%u3+z<2<4s@abrF!zj9G`4-a`bX_O
zW&3>N4^@B1xTxT}StJ%}3IO_}=!~nj??ef33Mut~D%tA!9_Xc^^qG<_dyw>fh3b4M
zI)BEvJbj@ep1P`qNN!IZPFrF1Q++7D?oUr0ZlSIsp<aC4z!y{RiLGk~(7<c~T1Zj6
zX}Cd*4hPKzwdGp)M+5&;9ph7^1r?Ih+w9ETrFt$EqnWH8EA%k-^m7z}e3sM^Z4q&0
zHN;>H4VCWjk%O{~c@>?Si!>n0rv$Vrq@p0r2Y00-moI<MwA0h>xw2V*ubD!kZ;M7{
zM|EhDr*UJhG0mj0P^}U9WphUYP4233S`ycT*B-qC#`<n%3*)>4rbL-KvwI_EEjXs6
zhd_C6ma2hF@YIdFEe*!MT0~!`*8UJEbZDtPP=2SO{zM}Rj%pPv7QV$DvR#U-oQQ^2
zf!J|qsCbi`Y130k8?}IcGNWZl#Pp@D&uX~W^$#&%6bSs=qWE>^S!uIFH%KMYN}OcH
zjj@q@U@e2cD$i!4RBxF=C0n|RLUg_020w4<MRe!XU!JoE{e$2@1~{?rW=f8ie<ihX
zM#L*U0Laj4fT4;?k9{vW<CNdn3DVkDl=W~=a7+5zHdg_^K={RjLG1O`?i1D~&gU}e
z_ShFa#vJw@6CQkK%+yFt{A19W5$xI@$ahM&3$Uk^Wc%G1c;^%uZdN2fKpel0=;f$u
zh_t&^Yqy0-x@IRT6#Ve)iv5mTC-Ru><_RS5eP^C#Ep-O;(+_CJlvngXH~gV%2V2Z#
zl=Eu+l>s*BpciAKCQabv!weNbQlUwzm))1w**$*(fy{aVG%6{{4jkQ&yJH3WCLl2b
z{bP@uv!;=rE$pwT3r-a=k0<`L`9B;Of5cT@F9H@B=xBARFJxb@zaA?5L}F#&ek*c#
z;*Rt|WHSNqVKz;U42?B&dOhoM@WSOelz-^~?B#^VNO5&+A!@nRXJf($++qPM*U+6v
z-oMa~%qmuPGTuUWO_x=F^>BA7a(`swdO3yOlq|A>_8?9T0PH2e7`#2f&u7e4Z&Q_`
zISRQxD&sQxX~9#EG$NUm!Sfe66U)xJKKQWIDYbL-(k~br9awPN<I=;c*NZ`neWO%S
zBcTf91r_Aq1ki}2xD<B6z6#XP`^b>j-A~v&GQ`s$(o>|>GkMCBbI#KwD`fqO*R~zm
zqY5ZY#`#jMYiZ-AtPx#-A>m#N1Eu3W3<G}m1;tBKK;@H=<hbdx`q1DaHlg+Yg;rO>
z3PM`O+w>7vQ3doBdivR)z_={^be9SBb!cd!Nq$`EB2NU<iQnXA)%L*C>r>+)oKX5T
zL?umv6dv1w5*ujqmg*D{Rs#xswEgZMyd*4=F*&oWkf&_t)3pNXiL?){ph*pd`=?H=
zwiU#zSA(Nin2>>4V$GhN!ILU9Cl7BJg+8N%h;$EzzF-f01-w;x(>CdRT}Jn8N$mN7
zR^Xl;=s5C5#p`*!s%L+Tq5|`RGE;<q&gnJNY0S}u@YYK)Ar>>UI-Wg5{#mFsgw@(V
zSX`pk8YPF{zeOwFFd2bNX4|1#Fp>z`$`WP15(qDc+{g=Gb9rIhKOeU^Z<reH(g2kc
zj%dL~<oL#YCI@_751j^ubr3>z1sD3?7|S&-d!Sxk)sI}~UDkh#sQnAOXAa?fwBXV@
zVC5Yt*)jt+jq^^3{1Ug=5*(3+2l4zt2EP@fTL4791(b!a-~;B!?2#EX%i2aOjQi7B
z!Sg00?cPvZM8JzI*#fn<%c%#^E7CD7Ix%sNVifd3+PoQ?dse=QLsD<9<Z~P0`3CST
zuTu%HT^Db%XgQbO>2zHb%R6%d%F-?%#wWZPYQ@Es93k|f(QNYrMo*BPzt}1rZ>>@b
zD^kEszcUgYMq@oFu`vxkqf=btzuq_o@=X7NX1vmN2}1`S#dQ$Y?XkBmuCMOh!REA&
zeTq(Cs7}yYNnjfRiRdM5y&_@`iAsme3cy54C(~zf#vT`*!$*u~2Yt;1hL5;6mj-Vi
zU@xEGDL+yfk8V;f<2PicDV`Lf;>fy3=gWA?J1%3f`in@WC?abU6GQf80V{%OU&85T
z!jJZg#y$kIX$EOI%2+#6iL*gtkwx3et!k_W%W%V0@OA7w(#ox0XWCArmH5koU=l^p
zTS#)rr3Z*5|4xPWDuNEKv%U>WZmUY3_Yd{F`_5;`@YCDZsetqj!K_-RbTkz!b}ucn
z@Q`ma<iomx`jW!*=Hu<~CZ56Ew?3uZt%8KKg%6dydy#60EbYBdxDVCUn-JoMr?+DG
zws&Kucj?-V7DM=RML{V|0&P2{VI3E1<ywNK{o<dkv;?D@-T6NVsy0h}dVUxc+sZ$&
zj_gk3`|CEDcU!QgBeRad|H<!6Fe!CZr`d7S^r%hHeiu2{G&0*);(PncOi!WZQ^0;2
z{A=GO+oSA9q&t@>z>W&xZ8?!$%kGbIr5o>%RyDMHX`Fu~^lM}xKeg%nttZY+1ON7f
zPdU%Y(>btldR-AQ-nZY<u%y*@2Yz*5ZjX{u6jw*lhbkXw*e^j|(p_Ppsw=SXAE3Ww
zp}vXpJ4!W%etU#FLeIdZ;*Ub@@>tj8CDM-sUB6#bIl2wXpURU-tp2VzlQz-){qJ3@
zDwl$~?|0+)TWa@ym~Z^ByeBu01uLS!=Vngjg@ViXemV{Rd@m%djQxoh04tM!db%E8
zzagur_|whxr~JZk5cOC-_&D^^ukdf;irvR}#$Pe6zv4E2-5wUYne$7b>Q^xJS4#Zv
zv>eWaoL@=Q<8<n8lEBGG=WqXw-$C*xCHGFs1ZWEcj*B*q%LPtrE}eQToJ3Pk>h7Jk
z$e%P^{&`Q}SF6CE?u}pVmwq>0`qOvskEiRO`}hA0QU91f|MQ6P@3`w<-#2o9i*EdV
zI{f$C#ChlW-vxm)hEIQ!<j+>(&;FR4#pax?Z=BgTpCx}g+q(2mb)JrR<Il|He;<ec
zX(Ik*KmT_iK$Z3VN8I>x6i@w~bL(sT$;k%wA0q_3Npeu;&oz0Uw-&BlZMAQ!(R$Ux
zG4S~1&)crHhb1m5_ZEGBmc5M}-V8aZxb|q{F#7E7#xE)m425mCbw2DRvm&^7_yh!n
zMa3nhW#tu=E~u(&Ui?Dmk78jP*1l|IV|T^T`Kqg%hnKgnf3dDnzv+{J*jw=liOH$y
znRjw>FNB080sw+15C9_p0FXHs{Qyj%6Tsy28!mnU9sxn5gd(5ddBUi|BCpP>puwel
zQBYKzM-|JbrX!?fAbQDI6l*N4Z!TwiS<VP2Z;Vqiw^7AiQNvx)vUSFqT4JwU#X4No
zcXl_v=4FcaHh1^MUH7;43AFPMb_@!235jqGi*k#I_KLpc8yoL;D<P1O6r7k6nw%Dy
zmKmLy9haSZo0Lb)FFZF6zj*OtZ*TAL@bKj1<oxyi{}&CFoDgg*!<{oN5)z8jxVO;s
z9neDLG`X$-&WjnQbVjW&W=%k6qvwOnW^o;VoJ-$)`#pI3`L{n*LIN={DLExIEj=Sj
zQ8_z@q^w8BCxT{&Ca}w2&Gdi?35m+H7?)S-3CY|wq!aYRvx<mcNtP5e=<aneVibY9
zF-l8W7!HxIb#xlQxJ7s-X70N^^?!tGv7|$bawG9C^=airY1=;R?SK6A`ODXD2Zu-B
zGw$T(>Xu9K3CT+CS{sv$g)lQ9X2w0yXe@GOBuT$pU6Ru$A&o;`i-0(E*N3sn)<6eT
zl4^}eLdmSSLt-&UijX3g<C=AbK^AvuwF48;07>=41zrCur2K(1&r(FF^k8co#wN?V
zI;hs024R;Ol3aiKp!L;#{8$E`*-Gn^*c=)(Mfuz*Ta0t6QWSdhc{IhkK&+VuZUApE
ztPPM7Js)bQOHAbyI|2%?SIO#&__`=%xRMR^>wH476WH1KR?~i&0pkREr$V${%`0VE
z7cjC4tDq51d8lpk`tAJVN8dKi^L7F4T^T16a}ELZ14>8$n2V8@)XY2p+h6uDd&TEm
zzg)_QR+gj?{+Pee_Y?|dNEY1u@kZ%BcPBX-_-XYHuS5=H1WeeEE>5C-bg_CA?)|yg
zS`2!idrf*nFrtcuv3Eho3)qYYFtc5orru?Nuq$M{aez1t(%h<i#+{y8Fbf9gVSbh9
z|8z_iwAqN@sA7_0A6al2hf3~{^x1uPa*b2mc%8s%2f8p5UUDw2d>zG_hSO_p8Rg*D
z?<M6pBtA|fkEQ?%Wz*Dww49F94JF2e16?M&=58#KvkN`K@zsm{I#UaVyhJO_xl&&w
zjv4_V9i2=dAdx}BuA*mIx>$wokKf~JC1sQEYVI5<K7+{)o-6z6m&B65Q9~p#lM1P>
zJZO2`-U97xNdu^z)3n+bCMA)=RB+Abqkn>Krw^nx(2`J4kY~SdU6shLkwg>50K7`0
zJ8j~fFv%d;7;W-@F?vHQ_3HpZCOQX|dz<_gku4WIisWhe39u2+T5xgxGqmt+SWkw6
zb=N03f^?rfB+!8?jK#&pa8YLZmH%`3b$XunLes;7r*+dvhm$OA6p-S-!%y-q!fCi`
zU{N)#afA%Mnw*T1oC`*(a4-e2%X*=49eR{>-#MjMbaQIuZYFbL2tKl|I<)FFD8O6+
zuZ%EeJkUXamp?*ba-LJ1YuDqeo8kBPIzg&=Y?(5wdeUY|FCF~pg`YUAX5N?)7bYD&
z)x|)U0hc4ozo6>9VtxToH^^V#mw0!a>{jsX%V~Gb%*<?+1N!Vcwv%M_Kboi^#7i-X
zwo?GUUNrRuu+Pv<VMqO{=c?L0gT)U_9pF=<8{LSp>sQORiNJsWNfpTF(Px%P4U9=u
zXUFk~1krN@O0ZReI4Lga`)oO|>y$nkwe&!qe0=No_J4lA-Cn*4c=|Che(j0IVqk?(
z67zx><ZPDzS8r-_^+g>U(KP%C4yDsgPrkKCW)CoZ#lCxD>CnlQ$~7pCnYxu}l+S}j
z5?}SR4;&<8va0D2hw8>@9;U*)1o){cgiV6cy|Sj_Bn>y1<OaVf{FfZ(?jiX0q9r^c
zW(#1vKrE&UvD<xY%w&yfGjYi^8t2BIXy9uU_zt1!yu=1EOu5Q48g@^O1oO`K6%+JS
zxasz)O`CfJ2tr>CI8>_TO~x7(HsO;_6Lpav8>IDVP&Xb~jlg`SKzM+3NKk;sDlfd|
zO&lekS8zmJT+;ATiwH?$ry3RKpePv{0_VpRLTxue)?XPiD5jh60kyGfr$@zPx?MW|
zk|H5AMW_>BP;BlsEYFY=wcENZuvntz#{h7a&B$l{WNRQap64?8+nvc~ab7TslKxzV
zNTb{XQb}gA=F|aB%)wc)4OXGo$n1pAlF1PbRh4&m7LQDsTE(u>shn2q!Y`it0o7QY
zS&Zjdb|WDv8sR`xp@c|gXXg%F5W=oi#Ca4sD8$Jc+G*8Lto<TKs3IRu<t88zlR9nA
zigLy0lr7B7r!VfF{%9N#Y!D{liE<6++CbwLYm0GG07F%Cd*=1h248hS7ayo}l#ZSB
zu|D>=qr(1{&d_V&XEMYHfMBqWl5^ev*dzxWv_Z81dJGaeLE4pk)H2D+osg(kwa4=M
zbfr%l-!W@8&Chehtr2(t6=M!)E{e7ntw7i5m$Vg2y_pdr;Gwe9ZV18;>@dS#Pz;Z*
z2cuL{tyDy_sHVSDE<w{_eW_K#lU_dI>6>?_$B)PcNjT9E2rAqLA{`8}A@;2|4F$Et
z@)1Rqs}gd!bQ(uLR<as(>UYzGRJ6;C1{7iRw=?RXH{VbpT|bZ)hqi2x*f|-P)bWsD
zm1-Aw{yxICpM7=w)zJ5P7ck8_f!2aNpbsAj64#-C@<AiIk1e1j&CDE4mWYaRjGvil
z(wR20aN2^%o{o7Z9Bu($l{Md?A<wYU{F=aIcV&6gC2um|LB7gZTA4IV;qRspH0^eG
zozvxZWHm4+3G^~0Sn$h`H_*9f>t+w9VhViisiAQ~%aIiuWC!^OjF(5hoppZ^l$*Mr
zWx-|F=LPW7uga8#!qnn)Y+F$CSIl?L4TGLSdyezmDx*l<79e|5d#|wsx$OSUM_>{~
zAxy<wMnGEZqsz`khm{;;RNqeL7ApdYIpUzQRzj@BV-}SyAGBPV_v>C&E5iGeAy2(a
zSbEW5xB~&|bWp;+J^&Iy9RcDhf%w!#AR{FV24}y%_fXYQ7C+*383p=e0c>T&5@-(U
z-m*CmfGjxR)?IQ13~vVhmqF8AIRE)}8yd{m39w%_4Disj1jEP@mPr_ICUZQHg%c`2
zF5_nypCBo;`l{g$Swd|Fv2n_etl(j81>q+^i~#$B*3yIE)}`mS42eJ&>}#RF{hN&!
zK%?_##1Cuq2ni$Il&fQ)EdReZ9zFZn5xp4{HTz~k4>Qv3J^zW*&H2sxGg;;#L`sR$
z-%QIJ50)D(f3`G^O?vSx)8aa*C7=p~@H_hx&;J~RRY+ma;Wg9751$oiH~;4#B-5iW
zB>>x{Mw~Pj8Fk$Bp{Uy*7581VWuccLv(Nl&R^lQ<3ofeI`euL~P=>TVm7fCS6-&K4
zLMQUEs_zqRfI{)aneDE+kZYBSmk9&}y`UH8$)KcecG6_r=jYXz`<W!jVziBWLH*~0
zk`rC0E9Fa{Y=xE;QSx+I6=Z#G<9`VLOX-8(uI{%td2teNK)!N}{IO>o{yla1wkH0n
zD4kmP2s!=Z%lS>n=rQ)@Jp$luZ-MrgjYQCAiJJFy!^?CS`-Cb0$j7|*XS^FO-V{rS
zTHunZy8T0y=Hw;~_3tYhqz`JRJD$NRVFqMrRRbDF)9{wam|}?UZ=OS5h>}saj{tnX
zJh1`6@lqvlItr*wHL;xplEEaXttM*!PQ>m(WF#0l6hPc~AWv0d!W4G}TheVbUEz;J
z%X2uEL$ZBT@+GyTqXU2d22@)QME!<xRcSe_!eA)8c2l5NUrNAgigjah5NB$rT57mM
zY9uFPa8zncUuxWH>h0gDmr1DvwX`IMw3Mhc=_uZbq_nKnwCvyK9b;P}XL^A{dQnt*
zi7{_JC)|m`W{ZbDTuOJb4h=X+x9dzA0m6tRnlJc_2Y7hP9whXf$WfGj-X$hQ-9GR5
zeg6TYHXg85p^>gXGMN<OgHTzuDE&<ebpC*je-+7tM_9gxwJHDx4l*VWXh$$~l3iKW
z3t0;XP&(8dbSLNZZv#_I_EHqh%QQ&)BJ%vi0Vb}!>44cGC-#-(ocg3XG&26BF#eXf
zDq{;_4S_HUvisU&;6RB<9~i=s)fI44Ym-IHC(;=PirNY#c5;gyGW{&%=LgeZa`{j*
zS(=M1mjt2a2_Vk3&`nl-{jof*Xjad?Z2FTJi$hi`K`1Yij(lgLelVM3SB}18L5z>b
zt6~{j320mh#NvbpF~hC8PlGVw9xFzcD*!4LNLJmTZy`)TUs#%zml2k$$yk7zI}-fx
z5L!0Eb(aYm`n{0!(*x7bdkrDx70%5a0r?UI`S#nWRg@>N!DWyD(7bNm?^ck}UlQQs
z!CwziRAl+Bz_+hZx@HA94B_v}72ap!-yRXTT%}T6D&yVkUP3Hg5)^3tF8D9OuYE>v
zZ#w$eSSSnu6&lglfS1Ly@-U2+>XHHSOL`6Cg6z7nMpzJcO{^6f=f*~QG@~_YT|6tu
zuuv)!ZVw@^IeBuHPV|+jY%!~KmurSX_^RwL8D?aa-u;+PRM{07eW+?9B<s>`t`#of
zSYw*|%cW>b%5PMxV+nZU2%=&quDL1|Gb*lEaF1^PW>PojfwE){vm_N|TKp6NEv|Eq
zoXV0b<-b>Bo!zZ<ewg9?$ZKx&UMDfTt4lh*0n#TKcP+S@SX{l)SG`z@R`#ouwXV4j
z5?;_16==~@w~<Xrkk#*$6$@9mnTVbE33}dl*YdQkH6`LuQT}JB{K=9c=({3dTXD`%
zK=`{0ZI3+mJBCRQ+Q*!tkEwcMqsHe^!73%>ij+tWQ^O`GX^bhU<|~0am0n3kVI<2%
zSyaPpKv_Fb)&tN`v$7#s8HQC-0bhWjFTgrI<9Yy&+x{*#%0^*V1GXFV2`WCwCJm9M
za2A@>kL6a9&_+M=TTacz10n9V^@+85VJ(W&RcahIHgA$-sO7lKVaH$`ciSj;eTJHC
zbs`fQtMQ<j{pDJXkaeX2;MzR9raVUTL73)38N~0k>9C&LsEvK_k&YA%4?&qD#j4}@
zdmh^<1fmSUG}XBh0Mg__$|E5;NnPD>?RtXFf$*gU-AnZ$mrk~ucYlPe!k}MHJ7~<}
zzqfQ8_h9M5wdtL)%)Jq8B9OnP#!V21IVA0tRFt5n1(+cEu(x%Cqso}#J~q%TL+c^a
z2T&_O3QU<^tIOJxX!qP=HcoOkvjvF1hrDUgv(`7TPJt|GxSNcbdGz|2#d5^Q6oSzv
z1)e6fhVfDa(8nverJ*q~`XTg-M*9h-A<9ODUCh+%q>RjEM{D#0fa!z7m<Opv*8>Vn
zj?PCcH6gXErnMpvyrxBGm!1K($M}uYAjH3C9Q0Zhpc5-AOj2liXeP_kpC_F@Vd|1Y
zG}o=NPI+anQ_y0e>xs0p5KgkN4A<2Nw>SUQZo}T;{nL7eS<?AcrXTR}5$mHa!~?zw
zH}pi76shoJ-12LZYxA$3tVG=G)5{#oI7S0xY$=5Jpu>{%7}fQ7WA*X+W<SaI$%hw>
z<C&&q<)Sh#2QIVP$YN};5Bv6kiC&Th`EQ24^5{i7*tRFz-k$)Nzib>;yrcFe5_;3l
z(ct>)*LLf+5DsgCDXGOs+Id$U5)pAla*<4RE@r+f-Exo3Ne|<+Q34v`fhIw(g#NtV
z^x;8$r<25lSMEzhS-q%56r{NR;Q-jFCi(7Z^~i3*lU{?dv&BXcI)lzlr=PSa#ot!6
zb98fI&e9F;Y!V>5KSSp0<0bj2lXi+T^^kclcU9VfMW{R)d$p;=o!EF)?m{8DXJAtJ
zTB17S<AvB!l@Xk#+lUQdhyyA{23eFf2&f03+Z=?n0Q@UD{|ppmQFyuqJk7%-<nAbr
zG8xZ0g~LqkxQ`i8rcFprx(ib)Cy#8-H@dd&QdhXH&7p2?i>%dkTe>`LsF2Gp^+-iv
z3y(d%HM`%>GB`D{GcxQHGxD}rF{NInX?^F_Yn$SW-Su)SXBpM9cr-HE7zs&?l*JbF
zXRi3p3>pMJL_}A(b}{>QdU{I|yeqqFOvv5>O3DrPkXdu%`M*ZbvxY1FKo<sibL=6j
zSzSD4ibeKbil>pZQ(nEktnN#k15AE^&yZ~`mM^Lcjd2U`C-D1XX5EJVs`+69_Ti;J
z{YS1_v)&4rITo2S47T$sS+WN$@3!_vguh`oct;bo)$qV+U;aZ;kX~mH_eELRgP=o|
z8-I^M|7e0iH(#jp1s7Tc$({iQ6qK!|LS!0qOZ~M|96>A#%NFgt24}%1DYDEQqmY*<
z_A6mrFg8qgD8FiKlUk^v`7%|nH*}S_48|>+eObPI7AbSbP|hM=b8;mF3Uv$&b2(e+
zV_(!#eWC6BqEIXRVMC8dW%xZ!P>87bbl$)<+_D~J)kL-uadEAn9d;HKef3wwQ}IY2
zqg&}pk;_-2DCN<;ZG|DKHzPP^)zczP)@~+(qBaK1A3Tf{&5wHKEmTx2T9P_hA}iB<
zt5Y9$e`Phc1$?`_)7%q&yY}Y22JyjIbAgEuG3ndUyPNa*Ord(h>x1Hw6M@=OUqm}c
zP{U`Cjdsxs`>4fRab<jw58lRQ!fcj4tQC0NS`72Z_y7X9B-Z_aj>;OkE^id_Q9xg5
zWLD8`eSptXHQzYm-3NuJ$FD3H4B*^R5PEm=p7&+|o_Nx@bQVJJaUxR22{$POfp?oU
zR>beY2@JUjynO)SrY&irAA`e`G;u3mi=uXS8*;55xk==Wn8c&T^&Jyc;Ym@j0*$*n
zrvDhq`xp$Ol1!Q!{n0!6h-BWN2pfkov!VAc?_d@~3@&@g&MsRa!SDV=rC^&<t`6-6
z+=jcp+YRRb5URa)L;FMI?GI7Ux+Cs>h<o?p_E1jjzYj$1y`*Pp3D@@0?(St+rl#J7
z)l9Q>aArs<WbQL(637`Q?)$?tz>(eZ-oCvm{*MzQ+ry5CV(e}ZHtT9gwoctg(HE3B
z${mF*x}V1Imr-}90-<zoIEne#>=z}FKDq1{=<K0q*`Cv^q6<JVLQNR@(>9KwhX2b_
z2juKG=+6Qpl>&wOLf*&;(Q>gj$B^Edz(xC2#Z7V_R%!92Gb=IW!MRy>MDtZoA)jtf
z$(XX?Vm&z2^W8hS`x23SRqwCizUrY1<~6^-89y33ZUiM{T=unAG-oGieNDs{mgW{Z
zmwxpzFM9Q!Q$M#THmtavm2~m=)7FEc4T&S&^5UjLNNb4ut%Rer{t<-h_sp*)9|u*h
zI`J*)l*W6O9^{slouDa#{N-zPHT}Y$nCSG9%8pe9E?ED#r_MhpiQek}A!l0I%T?sm
zT&}%>w!bey9qBh6Tce$bE}HfwKaX}ZM86d-{O13>#j>zcs!ppMD|cV=rx7(2&2p$h
z{T2Q0?k`^9!;{+M{kZS@qQ6hX4SVnTc0>N{i_LZPiP6^G%oC5b?ww3z+T^aoKjQRX
z5(AhbYptak^Q7+IKDktS!emGu6nQsFbKFj;t`WjCT&j_OE2TN0A)z6?5=dHW5%@0m
zXIXMBjgF=-ak*enYT%p9W;^ghFL2pQi1DLTKl3Ryy&J?zR%ZD9?)k2@6vmcY?f>y~
z7k*8+U%>a5z{mk3rMtV!(cK{;;7I9i5x3DP9SS-+lnyCz8;x{>Agv-wiHLqx9)9=p
zy6->ZI@dYxkKI!-psbVxruws_jJl_u%es_1IfyQ_#?hl!pi-J`@3_GiLbC9$gB(&1
zb8QRZCIOF7gejq&3yG++Ya@0U$tA*h45f|)H>e^;I`<Isu974#H<_W1FQnF){wInr
zgpJk6A-kcet*du{+TMtfT)@FWD_3Az#=t=AQp1R(clJ^%Psy=HXF<rB?f85{ghfKu
z{K1;1KdIH7C3yb^<1J2JK~gz0J7)_svw?Xt`&ooaOhIuet}0;DN4H3!?JZ$&cy#>T
z)Xdz%(#qQV&8?ligHMM?-%ifH|M>Zf;Nb-zK^X8F0)<Sns}9?^s3c9j8`L)F&+_B#
zd=&bb6}AcK<c2C8QsG<^ib4U-9YER42@0icl`k+4OHWo>F;!{`<u-R?s>L{oxzN13
z?}~i7<p0b5KRm{@S+{cV8KRj|17o$YS3Zo9W0eya*ScXbo{8kC1rbiIyJ;=`x$T2H
zSZrG*-aTh83M<{H<Oi7R0=pLgP0o4f&CiEWS9xf0op7(LnRyns)B|cuS*k5{;m?=!
z>QBSG7iukQ?QT$I-<4*U_J4{&xTjEV=kBW#9ms~92qVRT=L(gnB8w&!SI>XobUCO)
znA9&&^~AFPgAOt#>-=E(m8B|+oT^{nKN~g}c-7ZVSbXtmJ2`vhdZS_(sANRu%@$G|
z9<ETFCeU(F_@Xn+q@ZFJ<Q6WkyYPmDth@g+GpsM)gEgTu@KM<yk$$O68iS!s2wf2?
z3J+pBx+Y4?*L*>9D^7@hRx`2~v(!iMeW7f$(3_R);!YKtALGq2u^Q(u@tZdc^Q;ud
zsl&Suxe?A|R>nnqyb@H$y}S~<|G3^a=5FFeCJOTw4N?`qEuP|}i~CK8s?WAf+!B6H
zoA^By8Ss)s(w>`WO*5@r1*7Q<>Jm!e<nQ#rv{v?*M5cd7x)z#&CWFWpPd1#1wyizh
zrbWO4P^#>yj7${81Ap`|MSwpI`Z*>R7!~GzmV<%wf}{};gRxwF%K!M1RssXq&)x`@
zXWFfM*EcS&`?gLo8VN(`h9Q5ggfN)kajJq!kGDFCnW}lrp>~1D7?(u1?Wv?G>;~kz
zau!%6jW(NJMBTZss1?Lb<^Azdxib=s$hT1Zy`*OexAQ7rrbCYD0TK4IC@d)ls+=lG
z(LXV9m_#awTi%`>mnh!35m`vjv$=;xg#GnAkaOs=wR8;D>nQgy*Q*~^*0n@}#Vms;
zU1G+)3l+IL8`r<QY@K#EYU~+NF$&NH0?lacTB_;L3rc-F()YQncjW#Lbdme+WBh}e
zPU=97(*G1q&;(;%{qBRB_X?)>f}>7of9n~|k#~!YC32Y4{x{61r&s#M&g9e|;G9G&
zk;$lJfW?ql1R|fpzI5?J8aAac&~ks;H!JglIlmEW-sV^)dD73ZOemJ4Yo|<!Dr27G
zo_jx|8E1R5oPQtIH-Gqj)cWGUSD3UIw+y88DsPcc8k7<@(LEIURk9j!>jQ}jn_y1-
z_c!%5P`<UMX&|KQ_U8W1N`E0lB)IXEGv-{dRs9v06)Ot!OUI*$uL>_r9!x(@UPnsZ
zqGNW;5EF>sCn0+T2A|QF_de$(z_8g$P>b?CogJdZ<Ozb5OY=y<KA)O{#=Gw`t-B2!
zGR(jf7)YN?>2^iL3Q0dS4cnzJXVw+A3w+oionb6Ci-wt03;jRV0vDe1Kh~mU!1)nv
z=20jfY_y6Y<r{Un!ZO{k7NDm$tOX}wsh<N4pxV~F4is$xfCX?^-fePs)Er=p?fZz*
zG_ASl7#=K!$CCb*c=GToZ;YIxP&B(tPPz?F)R_xQiarntz|-MzI1E?}AjU*ljU&ey
zQmAp=hJAGw;mkIeIkQ05N}(xax;W2F(Iu0R528OUV7BC;G_wfZ_E&4!9tz*x*2efL
zBG%qj!u;cTit!);3+&a7<rDtxO3u)q?Q%CZ%UamMzpu)=kB;+R{Jr>e+uC|~J&H&<
zVr30f+s2CBNZyhUHDRpV<jGnc68BV$*mXUIz_@KN+ZBL)wup*kd#AkLK%ku2!h!)2
zO2dv}F|Kj7d^UE*EUBbfr?5Wvq(Rmia=o!(F;-^<{E!AJdg>@t18M<n@EHpR0VrbD
zThhe<#tMya%)Fg7-9<pcR`<Q5-czf5etCrM*u33O<g)LCweAp1bkZV%yg}hdgIZM?
zlsqk?Vt=uc%hpZd=`et)%7D$s^ynWYg~hN$VQXgiSGOgu*#PxqAiN{<tWN4CvbG0#
z`~$hyh5?kTXOKV3Oa@)$B~173w6AeB)=#vqEjH``3dEDW9+U$f_YB&KwD@_2_Puv0
zaqBw5iz}1k0Xq%L?KpM)Kxt#{Lpx~OQs;4a>oce3U|%DB89?L4Y<^hwrQFuv4;3O_
z6z67^ErLQ#u2Z)@Ts(KH5|e7YjyQXE|L<|pTiZOp$R}ZWv|f17Edzq=h^Xv5SuvhO
z?^JwQb(qxt%Nu}45Qb*bD##uJWj#Jg)?{;~eZnk%4Nb}AIK|MSOu%p1^+|Reo+6s<
z10+6xGyX;cHZ&tf#JYl&Acn5oG$muY3NorDCfU4_CF7<M=XvF99&o|C6SiIF1+AqX
z;(;s<HXqN62yC9xPf8|laFC*@QcwBjk}3a)?{0H{Je6lkro+3wmz5zN%$acYwnl@<
z08>^Peca&juu(8FXp295yZ?s};Gha>u4evpzMv~iX?7A#Jw$cu=VxqrK^TBG1zF}r
zVdp-uw-G+}1wpxr+(2Io&cl(coWe*Js6h}2j`$AbtGgLv^g|V;P|G_gfIxO8%sPD+
zz{*7+`Q1<IYTZPh*?rO3TK3KGVGo7KXF$0X&Z|3-L}NdR4Cb1-`&S&W834yLED^r6
z@qi&wULFdJc$=>E!DS!(6qyPd+w`?uQ=lr3Y_jM??3*frl8X{G+2Z%C{Qt);;?!v$
zooIrd+7xtYa)jhODVY%PH%K0w16lNG9@tTo`|gxcNB`#vmG4RIwrnYhJ*(WRZ8GdV
z@eGQ6jneWNi{@vJqi93NTR8_8^ymg(l%4GE&T;%&YJDC~YrSUKr3B#Lv_PN4;9(!>
z9~w>kW4;!gokl=sbyqn7z~*lCb+}yLiCU?KBm?T(!zjg=v{W>ykmV_z`;Yevr#xvx
zd2FOt+N-+5Ttm;ynAADZ<Sj92q&oVajqVUa%nhlX|JXK(<s@}Ks`^>rTlS+d@=;v9
zAMLy#ha$PDW=I=Ac56S*__>?Ue{{dGj6t5DBD#S`m$gX`|4yh}@(WWeR^IOT%Mmmq
z^qG87=hX(;TmAJrUKD(whU|U4UA`X0_SL5wNq3gWadkve=jFPh>J=a#d)y2(JdNZo
z?&WLyKMqrxtQyCR=e$l@6Vb$)WamI2OA8P<@h<HE?DYu}@Ps_W<u#<4P6Obc%L~4b
z0u!#O)!ERoS$pNP{vaz9+@zNEITv}H7*(O9$182hBpjtmAfvMx#PC$rE1N6>eY+IM
zT2-D77h|mfib-)FTj8N3vs57j?NxG`*_!`x$u=$U79>SCjwy~n%f*dx=4Rx|q-W+m
zSwth^Od|a-P@DupXPbW?O`S&l*I_D!?UedVil%k+9VL%3lB+Y~W2jgqzgH%Fg#;zz
z%Bw<rBBZTM63pn@5@%mQzAl9b335t_7n=8A<^nIKRnYVAiCPIec}+<U=*Y@|{h#u;
zCLKVVD#)>*{)9a#onYn>9?2Rr@zq@t^BwWuyoY9*{sTJ@E1iBEkGKV`tj%@K4o;uu
zW~sY;&S&?lLP(`u%pet7o67IOYOXmdoA(Uwd-K_16APvLsYlnUO^^$G{QE)RP^E-B
zq+Uul5x@J5tJ0a3sFm%Z9|oDP64+DWwO*`rzd-4FdN3;tnKKV*noUtIAhqIJ*$i-g
zc#Ou?fyR~YZ2>fA=nyB1gh7QgpKb`>Go2ZYQKMY+Uw09w!f$law6yO%?I!uy7Ti@D
z_Dt=KftXBo+2H$^RorP%7L}<;?76+poFlaqwe#>7ElE3}VXIlv__zs=e_yPfxoq@?
zrHl@2&T%mR@&|w*HUkjz656u&SlEZ8h50zZpiO-9T-+nR&rA$4aP5H|N^~3<c2wcn
zoKBSdRr}~eVjLX_=L#ecO(wX+<vKv%zorYitVV4hy^BdK`RG~TZXa{cJwr&y2VLA$
zKDucMgvN>>(`rnUxZ$KY4>oeoMcVp#D~+)bnqJiTa+Rxu=MSE9gbpBLyG`-Ycg0Tx
zzC5H~R6I|7@Z*G>N2vKnWXaJ)jQE0X;08Ll>LhT(Kak`>Qf_W?E~)HNO5~&_)h0e<
z5fDmZ&~Sl_N)ibBiVZUn47U-aVLKO&Y8NIDn1_HNSrve+v@^4E7K|(s8it(091RG@
zj*Loh89cfOxcmx{`X&TRFo-iTr#l%fYQspsKl`Lb4vf1Ny06xOv>~dBk4Y}cq-wYg
z^djZvLIELO&(R0*_ExH&LIFkwgHNHUm$(!*Ijj~2GvJ!{M;4KmBK0OUH7tMI;t8^(
z!%#SLVxNz`BPIRmPCC&mV<IJUKINceF>{;DS_@uzoRhbHST>+Z-C}-IT~gG8<se{O
zd$=4gXzucX@qv&s*>J9uVV+5O>9la!?x^{kVHpymbNj)wr{g->z-KAEg`V|=_W4}8
zx<yfj&{)H#SVL&iIM(N)I7s$~7Wa!kd=(Yb#!>|Zm#$l%4cT<$`Ok!ZmCD(9EKPTd
zH(PAuuz~rkBE~{SR9u)lhMkRe=SWu>t%CT<-`8oi11?ojOZyl6)ot$8jNhwK<epht
z5U+;%NoaG&zTJ~iyL6((mXEP(2IFcPLy?hjDS5-RwN*W?VT0m(tnJJ0G$!+%mu4;u
zNBivN7=}DtT}UN7)OwvHo$ZfpC!E6WLAVQx-PEpFkDnh<%D266k<m`n%+(B$b)>ot
z>AC=Rx*GIoF<ux|5`B)KFG1~LN9-{a9?3^ta_Jtn$W@)dUb!xpV1);3CQ2^60}~+w
z6Wl~()0^!u!!Ivg!xg*>6y8TMDo9Kcd~6U2jQawVy!DBL6%pQ@5x!@yyj?0seN5Pc
z#E!xy9k3a`a|-^QQ@%@G{+pNnJB4zq*9rlLT>;-N11M}H3Md0_c4Gft25zDPfRRD4
z*FnK{K~##t43WVP>4OhlW{cfHPtk1TR2=`rW{-D5A{#k5zWFeV-x7)B<jV{;d>z)v
zzo0+`NowQJXf&)Mc>I-cOXXgZB2emPE+Puq170s)aj(KX*2jQRoA@=a*LsO7Y+`|o
z{{k49(bRHyQIE`Z4svhP*D;NX5(npt{Zt!;2zoQZLtV@!LSDhSh^_Dr!Uze~^MB-<
zFMU9Gw53=;7qCav+^NYDUW|OCi|78PsBqoxxM><8ieVNnP&i17Tf*(x17ezAW7t>a
zji{G2NDuJk2Ra07b9L<KPOSFz(qnPyNE)hy_rS*=rTD|A<4KWU;z*zt_CaP!NeXDp
z2>@+vdTrDWXp_BV6J_6UjCpjGY#V=MA#|p7syrg`Era<RHU8`GtZi~4nu6>2<MCMl
z;g|z_Lez|>*p=2J0uy|rnQ+l|IDOf$$K*I*Mr~JdX4*ZU#{&|lBv053w!fcuCgyEx
zk3^-ceu?ZZKezap31&XsK!Qx_=)TgPqpW|RqjFe!I9&r(y<c9gOHxIdI|=`)jx{$f
zl)XxtxsxfWBB8sBI%Rtn2z)O2o9q-S<sJ^H^<MPei5mRPXk;3;$0pHA)49apGXaH5
zP%)$bip)|;oB{Zhi&L*d{=+xNan5Pb!i8BgW$#HZe~~mk4&+UV{x9R#CeGHG$PhU2
zvViC8K@|ykaa+#RuhMZK=yniDGzcg$8;LyxE4Og(vOtbJfqL2g%>2bxQrv|&m_tyw
zXmWmZC8_@`r93ml5ov0%9Y1TDP0mX>f+I5#_Rzt7FhZhMX#JHu$<j~}I<ycrWCpXQ
z`5yor;?gCN1DeB^-9dI^g8&&pu?qmIsZKTxz5*$S$|HNXqH2nGLXrJC=zcFw@HeS&
zx&34QXrgjX@}R+-aznLB*^e$R>Rp;>Ase>cAo8>8OZ+X22d$<SpGbVI{x5+$6+%MN
zw<d}#o(qR`T`M&zw#qnc-@IcK(~g0;!LkV@N<JY_>nifNAs`pNcILzpAOL@@QmHm4
zu24{NnBA2y({%P5kr&J|C@PhWk)rh2{<AOF9OA{HML+X^8FiLxT~*KhAGc_5gVTSV
zKT)i{GpxzNw;n}5?rK$96;LjWS7Rkr8MFUI7Q;WE)A+sy!ZG<->;1`w<!y2lI2UXi
zl)x)2NSX&!z2N07p1=K@HOS{7uWLdK_jygFp5=4ZUP)Kp`uFwvRXUC!T^rHwGCs^r
zmQ;SKK>`K_6^oz`jVMxNr%N5v5q%e|A8*=b6r;u8nIOTu@QASP?@4Ex6s4A|O0)}S
ztO6R_T_e3%9ef^z1Wx3&OfaKTlJDEFP`Vc}KR>tnH_==FL#V@C$VCx`53&5FWEoK2
zR33c?UCTzLLzp3#{s9S;!&@2R$ctmT!Hx)AJHBjVJi1GQl*{o{MzSwK^5;3+I9qwo
zLyF+?i#ilV_Z?~wK~q%@QE|0yeow`@fT}o_56)K73!bdyqBJAOs*||u)byQfOPpC@
zMcTcO>8FcgN6lTNC?7?kYvt5EnCto{9`F&lWDy3t-1t9n!H$Zgf5w&nmPQvU5%5a7
z+{%`QyBum#1+_sw9pm4VOlxI__l8A#0UpbxJx(yMCG?#BA8IT7=7pOkaismBu4Tw|
zwjUlCjo%3;QJB-#Trrn>>NXmRtW^r9R}EIL*TgKTYL%9>cB=k;|7aDt1kikRoYps_
z$+D;-tyMo71`x1e^BNoa@lngWIL<`VY@l|zIZr#U7N7ypR@rTdq(fER%D1Ulk02m~
zQj$|P8xbAc8jFtu^ZN_(cPVza7Ie3Z%DMu^sGJuqY(DO+<!=c)SsUlab^o3I24~Ba
z`<k5}Ls0(+Lm0Js8M#at4X0#uUu1N3sP%Q238rSPZl<h`=jpvp0vMX|&t-3PR7n3B
zD%piv+}%>PGnX|qV8=nt03b$Oox&#5{zVQ4Ub=7=G;0X818C!SAsQo?-0N{mZ&+ag
z@7F_{&L9qBeeQyP`4$9%wYYN+|Fmpd+)>|i=zxaU+nr~`aVx@q$KlTRUp+Tpz(e-E
z(mC!c=f-7AIr&Jiu{p>m-nY&7h`Vs>wCiKI!(eoWpWOb=bvahPhEa`b$fhzoyq2rv
zmcb2o#ZaB_<yMD1wF648F0MvEtcZKJz^TG(=Ab%_2#7QP8Ln)cU4J8;IOUC2qdwAy
z7L+4Ej>EwFwD(1FPqY~UzaEL(4!bnHGIFMH{f{4XFMX?KQWtD>4Z$vjg>2oWaJu!k
zuZ510Ody^+I4TB~KEdC97^_t|FWl+##<hK2{Poda?BK3+kDo^6!k26LzHeO<UgyeX
zc4AWG)5AMGr}1TBLeVWY+!w;B9hBmK{24ym3UetPWbW|GuuJ(ld!EVfu%OuM>I@ug
zJs-7k|Mr%!R1kk9^TxTPVTeOx?ZW_+f`*>ye=}cENm)hJ+uD)COG~=4Ed5?W1-LMA
zhj@C~?$SR=FYZfMwWw9}y&W8VH?y$verxZOq^b1`A-$iuoIp$pFYAt7sFj+CXAqkd
zhkV+Grp41rx=z*w^Nwb5++N;WnW63{<<!dulyff?QgS0D)bK!0S;)HA?qq$a;LLN4
z$13z|G(vL~dQW&v8^VMaYRu+f)t6x+OAU6-u2T)+qIX;@Uxr^(iAIR6wRz4|nBEGj
zy4@MDMa&e9l-TUmcst+vGE#DDAnqDOodFGepF$s{tD5lyNJ_`fhEoQ(%8;cSBbdek
z*bGnM;&DXFZ2O?8P}!CZ{8fzn(Q*LUI~E)U@{N{TtR>^Y&hW>ezK1K%PAhas=?$jY
z;M^5M!2)j?SXg;^e&>C1XFV1nqQEdX%`3l?e{aUYbntSi?oGZopT&ip^-8ihbYN8E
zuS~AET(w_82jBNF;?Q6^GN@lf#x}^GzeUP1;6w~bjPjc$NlUn7!{4H1xAz<YPl?m+
zBxsKbvWGu(R2oU<Y2jld=c+o@BC+WvtIRM#;D{9LzpsI_6dVbkd9#lRq`Il5WRXNt
zkq*Ebf}3)bO;y(b52E<VP+VPjuOVXl=IhHs2Pzqhw57oB@Uh+8>=X|n^pk+Kw{9p|
zEFI~qZ2=@e1ylQ6@>Cg5D*4p_O3qED=uVp~ATmK>uW|Mq5%PfmiiP54rx5gP2}lZl
zAq;>*m}{iEzP2K!um}}E{}G-;8H@&33EhlLt4Df20!Y<xq97WG%1|?gF$mqNH1Nf}
zkp?-d52W695LMt{en<DJZ#pKqwVM(Ds(qGj&c7Y3c8j7}%~@2mQJ3=JaKPMpntkt@
z-P}jIVGar>-rnO0NqT+>^l{f%?n^%gzPjrc3EIDJW}Oj~s%k@E@i2=z1__~F$cQP|
zDKTYTS=gKQ(-&1F-pBxT1|SMQdmn$Rw`C~VtHz;yO7UK2!%H1Behgm1foCgEV+4T8
zB}?(2AfoUupmYlDLn4K+eG&jBX|Sm^Wasu5yR3UfwhO=2k4BT;?du7NcaEGzt(&?B
zUCarJrD@ITi?Uw6_n|jxeXniO(zP|k4*#)O2o%3~q7zgWK4h+jBalh@;V>isMs-DW
z>Yh{cDj&z+%P`8%S4477$<2#}8%9v2yf&V_m(KlJW(31O^?~usp0EEJ$Qi$W45YtB
z^Fq3hLvjb1;cU)z-jrl*I`p}E@LD5*L=u6S$^bJr4(*yGAb-;7>8H2<`c&DRH_h9O
z`ZOb4%2jTP`!`91kcmxU1y<s>@gT+)bR1Yo^MdilczAULX}pC7i70SGBPuXsz6s!n
z?+R@NNUbSff(SGImKzI|qSaMFkj5$6S)4rXd;tw$vLMVv!y#OL#eA+x+O(|YXi`Te
za+@pkFIpg$G7N{13qq!qZbNvrFn>=!!A&ou;%>W_f4cmrMIl0j3U_bKJEAE5{h~pG
zVzFc$W5WzlIb?VKu#w0YgQ%@AV2P*_I-yfgyd@!v<Uc?iHWIok4a_cox=p-s4?!k4
zsJIXvP}Kzq$sNnMHZ$3qn6OJ=qQpL2?W;OVYI(LOMu@*<z$t9(ZS>?-8Wi7-B(-V5
zzqmooB3n4P)$IlH9tDz7qtSxE;qIh2M%p^X7Qh7I*8SEqsP1pLkm@YR&|N4p4)BrA
z0{-qUqYF=9sDNC(G9X}N;#r@!{wSNL>D?sJVz1xKh!33!N2X(iI!b~HwJ1peFKgO_
zKk(Q;d96-HVh|9!Pz6$vJ5GfAg)Y~7nfm}E;S6N#fIU#fR&$O=4G(>M>V|}g%)WtH
z!MMeNhELF--1!->`05LphlXZ8pnaV9u!r|<#Jl5QD;W77M_Mb3Ict!7omRnULx0WK
zCHHjEQvUU4I9#ENY1;^5!j2|qP8~<FmxBrO9x~#&<<DZ#Do~s~gIf1%pnd2|$4B?<
z2X&XZJAT*(vZHMZES920!eMu9eZz6RHvCEqg|Uf5^&H{eoBIK16VI(Cf$aKG&jxjX
zCDxUGeJRl+o?JNS1w9-GLd?!Fy)f0y3LwrEXkNDVP<Yd7{l=_lr9ztD9KiH~l1r95
z$s(&oU6U==xTClV8H=+h0@mLH_vd3^Mg+UN@{6Ce6nm%aU(m;_CX@txhQ{C!&IfvR
zX(5?BN{Hp9q5rrN=`ayH6Mp=GpcxSvLa#Yea(nf^55IehvX?K8<+oPW&MQ#;RzbBt
zuhZlb(hRi*?h3u~(ETLKW0IvK*r27w73=t$8u^AGW{R*wwyV~oZF<Op#nf;heX;Er
zdh{Z~-Wb9}gLC72b_DnAy?;{CPSj43qLst*(On7VDe-HC3=U@sP#X0bIm_g|M{Ww>
zPz^dCzhXL#SBmAiq5LR7QQxE>)C>PK!WvXOJV|l09`2a`?wGt-!DyzHzR@b+lul&%
zqdXH~I^g)Quy67pLWhOiqsHJ@K62aG>en;7!tadCrBgG9Q2=gy2unNs&~PETypZza
zv+5wM^ao)mPZtrWGnLMGy5h@pw4Z*L-A#*{U<JMOfARNEim_WXY>thXz4Z0^3r(3m
zMAcWOHQnD&Tupf(lmlJIu+wmKXao_(5d&m;5_}%0ym@99THEKQyd$lt^nmIjHu{S{
z)#>LA_S{SQF?Oh*`Oa*rDW?5XkKe=du*TmuS~Xs<<Hzi;x1J1accrf#3MHUcjifOD
zTJS+bQaB)8AaYo#(?<|*KSJ@qXLNh;Siq#~W-Mi&n|#-u$AoWMLtWwBz2kEMzW<s{
zELvILetIFzgQT-Jscqr0o8;!kf6~<pC7f*l3Y>Pdmz@{i{BTOBJR<*My87#7@w9Y#
z-@0;~Eokaij&Y<LVNNJnE+zjsyfj%MB0%Op{DV6e@!CMJfgmwpm#qnPz4Ui8v<Q?z
z3fKc@<Fwhh+=F(s!$S<4zZP#Kkn=tLDIzN3AFq`GI(1A0)iHcGoBi`n_2k#mQ0dlB
zGYo~;P4ch~1+DM?026>KGXg$A#K!=je=FE{N@obYl6q*+HE8p@vj=q)dP5aWtX(H=
z6McXb8jrAWwJ`FuNhFlbEl`m1W}Ekk^!GBFM<d~HAu~?~zIq2fOh>;V>)HAXi824y
zXx(*DYyL=N{x;NESK^l7qRyps&tKhFND?&wpcVgxJM+jJ@YU3a0<sNoFci6Xadubd
zsqhwp8BGyeT$_)F1aXnZWyrtDB#FS0`fR>UwORhbo@Jj3RYP8jid(^_oWI@0f6E~Q
zlXC%UurTH=$k_8cook5Uv22qevhL?|Ee=5p4zUNf9K^ZF;y%!8?KmeqUy{cF6HH;n
z+FwvqWZBDW{bob<$U}>vl!To*96p5&vtfgP?ydoGc+wy|>Fnt499aXEKG^X-ebvsK
zP5v!nIh%~Wz%LiJ>GDnnG}BYFp;gY!)EyQ(Og}A#frE<Cs+=K~?6EpL%kasWG}XM2
zsh}%r-QQIkZZwY|aKsgL@xM4QB;dlv0#1uCRI{J(6_Mkvk|ikLa@6u1F|Ht<e0BLH
z*DkqI23e4+Fert@fNFlbJVK0yku{I87qCG^P}<17W?&=SovKjqbVJ1KDGnqSMQI9L
zz}_Z+vZT<&4NVmi;ye|S+mV2>#c;v3!e-rQ@s)I?l?)jm0VyP1FF{NWDCmwswqYbv
zct*Fu60=$z%vBoClUsC*zftWA1NfxE3MJ8ddLevwQ+Ul$;AAR%4our1KwGicoi@8F
zH&a^~lA>Z_s6Vl9!Z@aX4ndMZG?^jN+xtkwkm!%9n|+B~`62C_43Q1QROG;_Ey?se
z!4Q{V#K-rnRLAHQM9;R`hVhw6cao{p!5wV%eI*b3T#vg?5AFu++gBVow0Yd?J+P=h
zxHoa&IPc*^ZQ!`>;r!*m`Mla;+v7gS^BP6|5hXHwzm4z!J>=~N@~}yw=laMhmE^WP
z2hjQG<~XA3s_8|^;BA0$?b5uU_4G;;P><yUhan@$m|5*fO@i*c5+V)t+Vg3`1i_Po
ztEl`LlUK()nNj*;3CWS4*ZodO>03yHlhEehrhsIEL&2m$Nx3m<f+1M_(6+pgTzpV&
za<mW-Je&L|dp(41yvoF0C|oezR5O^7Fg3pC)%M__NW9W<(oMsVM{0%e2Z7pr5K}|u
zn^ik0R-V$KnFJtBMlGWqNYD*qC!J)vt7Df#<o|0GW=u$mp|h_9$^G!OlS4#gT|y0B
za?v0|sczi9jxLrg$ww$ts_r@^%Ou%MDC={I2j6(E9E_pcC1JpeQHh4-hal~wP@c(0
zj(njTge1E6Qx4Cebd=#Jfb^z_%TSt1uTyW?A)qJjB2_m&cEH0tYgqBiaJMs_ETvfZ
z52CV^4an~-lH$#oeMsDg6;IPwlnTGWOxwf>e@-|oZa~J7lb74;0LNH+$Tq4zd&e>2
zD|HB2Dw+kLFV&Pjh+^TFsS|bl-qj9YZbhXAt!@(i?suCQcWw}BInbSylW+JavZ9O$
zfU0*WdXS&+?l5!jV%mky=(rSSb;tM@d|w=pUcYQDxkJu3U{vpE9+2^cz?acfEhztM
zG{MFM*Rt#g8|9Vry^iPv4|$mg8u~hG0=sr|+e3~3CMLu7IurJgcLtiBb}TQv*n*QX
z#BwQD7k!e8Uq1OjJG1jrA~#vu$>;5FUzVtGo$kFc<P+VY%t*sU!UUD|VdncK>hB26
z?F-ZQj>0o+D?d#}L1Hu%2KZ+!gCh}Q%}!slO=gZ-@>b=)dZ2f|46QCHWevy7Wa~`t
z+e{x&=IvW#9RLg_E?3`NT4m2;6@QE$cjS)Gl@EXz%R**4*jJ|=ckxLJDbzsU9P~UE
zuy8(oiD(>xPs|^Xoz_kMa5q0uBP^%+u29pd3Y%}qndczPR&<^u^kf~Hq^#=g9$&DA
zgj;Rp%)I^m?RqN)qvSkAns3BgGD!`42hN{`-G#t%V0$&6C}<r?gpY59&ypIFP#J1|
zaDBz6iOeud`-E*08201ypW`cuUu~TGfS$XCSir@zA(^C~s8eaBP4k5<pRm&&XN`UN
z!XOgFxu}9+<FDe#Aye6bJ>q-16>g=Mg9m;kff~@9$JoQfPT<TZu!#&T@`S=blF_}H
z%%b_65y(k}_lAv1vWc@~Hvg#kR>n-nBTUD82<LNJJB*kUsXF0@t&MrU<Zt2GCO-w}
zW0X9p1OE_}{#p%fo6Q>KEqLG4mS2!fTmV0La(%v>a7Fq;Lepf4O=Yf0v!qlkjUDoE
z^Y&Tp_0vZB$&ZLl!i(}ZL0z;MP(KPL^bMh7gW$sJvJk}C?_T|BeoROH>sOE>;Ee98
z)QjF#eia)=zF;^*Yn7pmo`3$tmA+|?p?<UtozOV^Ps<f9->@7J)Mzuq>g-&QM;7XT
zyLAPynm<<9bg4p^pbcVwf2Pr*>sM#Fn6DQ=O9-&tqkGD5>13ybDX^bgrB9Fw1TM$t
z%mwG5XT(Cr_zQ^zrvSK9$JZt3sC0{&6Xom8PH4i6&+?D9cV2&kOFB&Xi~V16pTTfw
zwtBQ~9a`j;hbRSw2&r@*zD?|{PsX8)?V5~epON<tj|MqY@Mf-CwH=yDQ~dFQc;Cde
z-|(^@i>4Gw-l*wPfMr|YH<O?od{8Sgm=H|C>rbz=!u~Rp{Ruw^p!0B}nAM?P!C6K?
za6#llLeTz7jR=8H^;{JjLV7Jrmm5H#&-$dKRKeB0pi8VAVlN`rCg|(bfnuh0q>@y?
zB&%bDExs7!qHCx%$<VCdKfq{skuVD@5==)GhE;#h$Y2MiQYOd0$(dTeuWz1h0A5K|
z#-_CvKj{QyH#XDPg_*@W^wDYZyti*SSiQ~L;rGWryFfPQo491*hKif~_DD6XJFW27
z+KapOn~%n7=r%<no<4`R@cdk!S;EoTWT^amcl&L)CMo^+KiQh8P<pYjCS}4kE|bOS
zKL=W}mpXga^gL4xu?{ba9d0)xDf0D<zRHLT8z+(7b-S(bG~Yr0UGR+ArA6R{D-&T!
zMS&K130N(U{448uH^}Rrg7*TY)#y{P>HIs7e>85&-+w|W|AX~j;N@E(M?3KA>Jg8b
zY_jF7QiZfz-1Mb)?{ygA?lCz2Sj+tyd?R2S-=norbo{ZLY@+zq+equ^$0y{y{yCSh
z(AOx^i(fUb)nC{S4`rUJXcCnPgW`l@8yjH0vwJ8_fc|IrYGn7mBJHf=2n!9_=}+<L
z$U$Mk<F`g={f!~p(k6Frgp^Vb<Vx~U1}umzfaPcS%tE9nA>rB2@oFx1(x2C<cYJC>
zih;34lGUaGEoG01k$0O{o*9<)!L5c(UO$_KVI!qdE}|qcM_JEGRh?y$Hre_Nv}QM#
zv(=tgcub;RD(Ze;O!flPT4FXD$MZx9<YX2g4FiKsCXcSxqM!D_Ua8x8VYC@Nq^W$L
z2rZi>JwI?gLPu%Ba!y5$qst^swuK4XrUpAbQR={<_2|ncIp?Pj?%4hechCoxZW(`U
z6il=3eHRT=x`zaxa&Z^Dpqxk1n%w`<<5qX?g#_)3Yt!xb;`hI&Zv8X_J}=EOg>Zj{
z^MY|4rnf^Hw|<M@Rp73#s8mp8ds{!e@c+s;>W#Ucac&>|82Js|(!A)sekE9xPZI$N
zxSwT!NFa97JEBP9Cdhi9zez*>GyJy5O7pyq4s3&b=8X-?`0s~O-Az1MmC&JWkM3<(
zefub@KXN;vTeatLo5yF|?j<g5Ky^(6h-<K-kb&_IZ~t0Cfp>A}6BJ=|g2qU-QW2<m
z4?{0ft`HMjovwx;KH$w7<Cfr+c1~h1M9Tgade^5Wa(O4I{&!P9H#f;{v<7e9^7h8`
z`Lhk@!#`@Yb>MQOTOc#9a7@Kq%pHM=&><`jlS~Cmmcbki=}ccx3rWZ1o%}ibA&?SP
z*o>3-L?*@(8SfYssHhb^oE!aIeHrc2u*u`AOUB9StymE$#z?q+U#m`eFG;4b;+;8g
zt2rX&s^Wo*?8M_8p@<6M%T<}@=xytd)8AkAG?OaxUefKpakl+B_E4jBjgKQ?SwjYR
z-?X>3$4$cwsBQFQMhTSI^UtnzKum{^>Fbv_EqmgqkJ4OxjHPjn9a<@9z0>40#y@c}
z%W(*{+k5#mhk18(mbD&y`$x2|qW5*zi;KIw7sHVUQK{ndj_<CnR+v4}H5Rz-MBG33
zz5bn7?V_S>@o!&}qT}kjuI2OVdpy;D+OPk~R{y68hO22*(ivDY^A#9-hL*sTt4%&H
z#teIQ-V0bsR}UI+3t5ZRt6lOH)f!A1JqV52j2r#*<6+#^HR&}ag3TtkTv^AYird{U
zEH)t{zqIOANB_{|;>P~hi$9PzGB!4p^6I*#woV@Y;g1qC3(BhhvhnM_TG~AL_Tw*<
znvp|5Lg8QUu#=i+Ktx<pR^juSrY=vDkvAVc9$)?=p<&__eDO|zy;KRH4hSZ7DYmKw
z)j!+nGyfK~Aljl7@KfSLF8Y|n`K5)~j#d)YV3}w^f+i^)mlzkpZAbTwIjK&H(3vY1
zk;zt&g3_$re_r5A?ZwsV;`9PxS!lr(40@hV$_I~)ZqXW^<dbxxTOtDfH!bboUW}f7
zaw9*KSWqdqrCXLb<;#Rmco0cxoqB?FpUMrr<)?7Yx8J_DICks}f2?VeuTz;u&Ers&
z(w7KH6^^eJ<2u`31iv(ci#lU-r}re2-dfm&0*2GzVpf0ltwRk{n0QriUO5p+AcJI;
zkBb<{ZEmXUcHsXNB!am8Sv$XIWOOP>4|H}tn7tcva{Tum#UUN{UC4AriR^cA3Z4F_
zo$}NhWrDb_`@;F}Z_}ty?$tU7Fm2_IL$P1TW4m+lT<$|bodm?PG7?JEYWD_YX2oZu
z(%@g7q(L3v<uD*j&LSOT-%<}iSgg8g^0V4hpsA(@<8SY?9^Kf?<ZAGAD%C&m*BH20
zc><$!1}z0bYs|D?0DhXGbeW|iW5|DW9dwcn4B?$i1#{Fj1HeSpZS<O5-+a8-YcVe4
zT`3WyiU4^O02@9bcW$C+Yy!fNwOX|5NQ;|zqoED4vM`yc4%v6Y@F+kZUEiOORFISk
z9tcLfX-~afhP0kqVzVD@BvFkbSV&2Qx1%u=epuk4j<HrEZBx|E*UTp|lSKXZF)j;c
z?b&#F{t)mYxotCAa$<=&ydzckli%W)N|AkprCZ*t4a`ivfM+E>>Td;@sUt-p)w?f9
zbBy8aUYld+jILt308{XGB6W?@%|)8C!48fRKX^xx|9I-oR^F+)L@Jdt5+5IZk1Ptr
zhz||lL01EIpaMi=P&L%*8t?=P>$Q(SpWq)d^OHC{bV(%PeQrO7q0ms;esVYeNdgnK
zr!OGxyShs%4GkGgE%<(1lt=u1WE3os<ru#MRIzZ;IsITOr$u6cf9>pb{|cALWKfLs
zh35qU+$sc-OO44hHUv;6D*S8W(`tVe*vQ6|7C5z_TP9v?lB8={AmX@Ww_?BgPDB06
zre?Pu7Y<wkV=-Xota^_F6;RjQ@-VgkEgAPGvEqoQ0TRSAo?V3nUG?y#xqFJRlG|Lz
zke5tKE{S(xQ{UoA>+(-98<9mmKvEq?*KImF-ahCo^QzFh6v+wD0Y8L^kchY$(PNia
zozMJsQg4sPd=<R5CqQSb?q~(=<(O+m^A9|TMbq1-=mX8T2ibkM!_9UQhBjttJCa7b
zfBb5C^v>5=btCD<*8L0+wKqyEM7OqQA|b^-=)JhzLg1#a5Ub@R&>m0(3TuQaj8lPS
zq>5kj?|@YtZZRosW5sPJF>o;qq&fT9M@nRvYS<LH;Ve<<S0+s8^VYQ-9QkXiDWaVf
z4VA9b6cB0($%vn)Q*s-u*tSTv+upg5V5(r^<D;PZ>Ixz7H(9+wfnUbEu^p^tFE<Lf
z-a0JTYXQG_-IJJd=Re+6vMVe^dL)D03s|{P1HItK#ON(9EO(=ZBN8cdGg=LKAJxfd
zsZ3=UUDxfG?8@>8T+P93jx4FP@AjKX9A~GBP4MKkJmbp;=#;q;VY{P{tIt#7fhZ2C
z#$C*!5FtRJhY4nnWF(AFL4#9w81=S$9OH0>ud8Yp;(8=sd2pA!`;*n(U=4DrK$RLH
zt1B)-Uh<H%71?eaFwBgA*kx!y?H!(bEj_Q9P6s_VH;8{wmuNU*5r-sxk|#yKn`>=_
z34fkr<5#gvGpfv*%`LjEn>_`r<I)79KCJQ4%>Z9n!N96xz~6^NwZ;+KjQ)GS6E4^V
zvXLPzskMfpj0=2KTmesQUNpHLnrl8cEn>$l8|WH!R$)W3g`Exo8ng4DemUD^ll5zJ
z<mfxG?ro=lHRi3W2&`>ET>)4XsP|PtgyEF;se=K5sQ?Fh)rNeT--jjb@&x90bG^8O
zeCd$*8%WGef+YMEwJvM16o?8VcTTJ|I9P+2O;v$Ki+!C=8lZ2eTbmy@z9)N?Tn39B
z>)>>ya4Pa#8NWG|=EeK!dZ^x8|Gisr{)_rv-Lj;iifNmj*df<5YjoYmB+dwW#-XU*
z@w81jSd6-pdo|AbiLzo^Bv?c+`Ic?%b1I<BLm)YB^pz9O8Tq19$=zQr8+=@MV59GL
zwMtT;RAgRIivJq6hI|-a*31Y*3{nUG+5s|%;qejA0BKDCO+oxh3U{&O$Cztv(Cds~
za)6zrBzNjG!ocPA-!GPrtb?{VC5~U8StD(JojW(FD-rEx@d=_|6G5w16x2zS2~Mhs
zq)W@Aw@KPW1NtEJL*h3hU1V;7pU?>3&ondYfLSunWyP46?xI0^jI4$mB@RW_7FE_}
zET5PJ5>WTRt05Mz?;RW)X#!bstmN7A`_>^Hu+L>}FWUSL7*HisUe1~nf9@uT2?3yD
zvv^3vDCkVb_bu<v?2uoDzIcd^Z+~YKgW0JolH&K9{duercpPFRiXj-2EpL6@u;vq0
z9>++_RWSSo=ozoT(s(r&m_y-kNX#s5I!jEs@RR7p`a&n9i@`t<dQCf|FgBAE(IG1B
z&acztS`2kl3*}uClI4CA;~A<ehXWofr_^SY9ERx6&Wl-uOulQ(v6*S~6p_XBn$C_f
zzjpfco&5EOCRtEVi3R3E(+ITES!@61)vkB6A`&aBsj%agmn~5abp?2X<vsw+OmQ1V
zWSDkR<S8@5_V#@P7e<k$gmhnfdm;PI(UxzJ#Csd%b~bGJ8ri0~MW6Sb4SJZ?p$GgI
z8|JsSh;7vXOK-)^Lvv1@BLSohc;BlG_>$XA>}yBk>yiRrGc9n!Iuvenlrvf~t3N1q
z_e)%|W`$^9LFa#g&F?<>I|>A@xO@l{j(-GjO<p1|t^?k5+gkvOMue5+wV+|O7yui(
z%9(!g_Lj;{<6S&{wNvSe_@chvNGQ9E<^(eF>`H{MZsvnHP5T;O9E`OmTCK4g8~)nj
zbmVJ)g~ojZLyAT{@S#PR=~VRKiSwbU!PyJ>i(hlb<-aVF<1XSidZ!(5K>Asac(Yk7
zCD%<f(~IEifd5OLjVJESAb&}ILX)}=fcxp0TT}0Ou(hHV1jz`3&8Nt`9-!NyGmrv>
zhFJi=k7sSR-lAG%uRz`Y8UOZ+1BNmRKp{k<ci2vPdOHTJXyJ1^G8#EXkAc~vVPvo~
z-rL``Yl}tesbk;9Uv(|5w*T&X`$zUE6C6X@a_h~tGS5gVGnEn=+Hxx`xFfkejmiZ`
z5e2AGE_Z6x+&WaxomCT)0x$u(Ho6IHf1X`QV}1?}oW3Krw`vL6Xxcu*emfdC`K~2*
zRLe=J#a%+j_O%u&Mh?jsBsECKL}NP0w8b_E?Q2?FYXggJr4cMZ-E`*Ui7wGtAp0Uq
zu8M{LT0#=XI{s9LhFAD-aLB}_Or;Hw3zMW1zKLP6@O)uC6~d69uvW1*J}N(4RruF?
z*{Lf4^%c5WNLmyHXcY!tZIiuaW;wOMJn7^4Ft2gvRq@Y3nN6vDM>$>RjN5PXINcU0
z%yob+mc!O21eyF1rqbK%#lsGisnQkb#B0r7{@LneVRVu5O;{Q8$48B4F%7!fNRLF{
zUn_9u1M>Fti$!IVv5c1dstol5Q57?7qJ|yU`Okq*VmClbl?Y2pJe{R}M8eaaL#DBo
zvDj3)tL&G2SEC^|AdEW*3wc7XWDuIcnOMqlFo=CZX`rv8lY0765<V_aXPB_BV7fS7
zW|RA#u7K4iePQj*<`I^@MT!QcD24<qamlK4PbgWSIke<={sUP8+XbQ~<fM!YOpMgM
z!NN)a5`dAoy^*K|`lU`h$P&|fF`=nUS-;;Ptn^OF9<WPh+$9Ho-7P4*s@@&T`8NNF
z=D5+oA0tT%<AyL0J|mB~KR$9DHpy4sWz<bqF<&d|W%Q%iM4(0bJ_^8u(+??z(S4SB
zFgAP?HMyWO^*Mdg=qihL7C^CzM&LN#P0ICoO|4{1t^G;Fp&En8(x~ypZ`_k2%AYLC
zP46XiExm$pbAfpA#u9Z{UYBVeC6EhQe6SRnS_wlDL!yYBK7p98TTP$x&78~4eAh7#
zVV=2gpScX1`I%tuU_WzJHS@b;=D#6xt>T$K`!oM8W^RUT;g(5`WV0aoS+K6fpAB=>
zv76CtN?A6Rq_f1`4MegH_<qEY-8)M?W&!g^c(e+B90dJqJWD4(NB<}x{b@=XbF-=!
z%p9K<6*HH1I3X~WNq7AjK#wlDHDy^`GWTo@Mz#sIu>{q@=S9w8I5>F~b9x)ngdc^b
zsw1n&1CiLLOG?eh2T^n*=Olj2OD=)UVu1sv6!>k>yC9I<@WhaPMien4ug((7TwRS3
z$@`4nc3BW0%UTes;r?5v&Q5K(#vz%KDPB%}#5^eolZ4}$^@czvr!10yMGbbqxfG4m
z@S@3*jjR{@gN(f04G<t0WSI!vc6g=aK~#pRNB}rR3cx)6wt`XFLa{dFt#h|pd%xOa
z_O7xBe{#6ERT<aDc-9tO<(J+3LG|yYgro7=1Uhj`gbrpI$wGg7e0IqoPaep?a+tT2
zLhsTcZ*WbE5V&#t@2WqV)HX`Z9}#&eZBTgQZ&S(_JU4<rEXCds+!AB*9qu6iHBgmQ
zb<!8m!-G_1-Q{>)drAMYh{Ik&NeOYMCa%2Z8KKAz#2Uz3d=mq7y31T)_|(`0`?X>&
zeY`lcr0S|?bqvRuD_uf6ho%jx3?8IrOIV}IUK;}xTY>Ic24e?-G%r)DUadW~vgvPe
zVQy=M4U~YEEp9n13Aj81CCN<cZb%0J@5;x{CoHWuR?n!!l&uEyyicXyntMSy$+_um
zca_t&C(ZQ}SPzML{^?cMK?TRz_;bxoY?kG{kj{JO(s<x3dL7nGuY@6iIf}*i5dG7E
z*D=Kix{BKsIDza6@EF(69US-+2NqJL<>98+D(7-77l`792CoYjbN4Kf(QSgrqcFa<
zUB&sNv+NZjo3c%vo9}IBf#GzjAR71>Zv-nqqoM#wZZC*$*An3k#8fk397N%FpJ4c2
zrwG~6${PE?O=8}Jsjmp*ngU$~bo$4Ks@DC<YhJU%TzS&mj6f$;f}YU=^UxI`R&C70
zxPm?Aa2Tu4R~IiL)QH;hbOqH6ZUO~RKl>Y@V|97kLZjIEC<o=eM<TQ74fP^9|3nme
zO<zB4n0nag9O5MLV!}DhpI*)Q<z<EKup?*;^wNMewbkbib4My(#-%Id<@~i%Z<Zsr
zh+SN=P9KqdPcUj|UPXK{?JXUNV{Kw1$ZnTkz}!b0y<vo<c~`_iP|hW`e{*QA3u*pL
z*#3ys`R4zcI*alMy9Q4p(t5H{F33(KNdHG{Hi#Kz{3uD`%P*fq0E)JN>0!`ztaUq<
z)w<up8pw2p)gNNpW{|q;Bq89rulHemNleBrwDS(Hq+n(H;rVN-ec9U!GS7*9U%sp`
zZLeTG`lQ<>WM%ih4euulck-ROwX1dL+>;w|+i}S1I4qIdW=C81b;PZq1Xnwx^mbkv
z0JS9CR};0gqYv`n%K8x>9|ZI+btsg8dB)dY+m6_KArvw1u^gdKDX*Qe;i_v^T~)l~
z?wN3xV~<i&4s_ul_Nkk)LqvaycBh@|gGf(w=AKdxU?uw<w){Pa9))@30n#4PEe`$!
z7`gA|`8lacyuPy65y}}j)ra+84fwD3F}PncrLS7K@8?}&Kf~VR=ssz!PqKEO+J)bY
z&%a4ldB7c}q|5;u^M#LFV+-s`AN6A=)8X4-x7&sdSv80~?T^)!HCcultZoC<5ua-!
ze1dTUZ+Zv5QWze8*Ep3WTxe^is}g>=5lHt(nEinN@d~moF8y0TU%#&hu;D>$AC(id
zp&i=PVfgsdbh1)Bxrs;Yf8M>9$a*quP)ECwNw++NXuz&ja_yXXep9nG$;QVKm(sU{
zA@W*sI)E(K5kd}KF?#y=s}Q#zmxPZX`m1gFkObK`jgFz;kG?EN_`7ZE_&{`1_=b%K
z^(tGx#V=M1$LYS!({<<=PH(bsy0E#=SArT6cBM4*MgZN#49%6jZS@R3D6q!bWS*Li
zrd1m#HF;DQjOM-?WwJ9&%Ks|yS^t))9usQZ%iZIHPxZk^h4>HLM-l}k7ueIpKw<pJ
z%Eyy`j3h4*?*`#U{#Nmgj-aZ2Y#ZO5acL=y6eCj3gKg+Lz%>XO*-j=1?qoAQaWmm4
zjPH?SWMEE{M()u4JfYVQM%mBmjZN~ePRevo)*MaFT>B-?n=B$m&)Bw-7y=XCCz!5f
z+!szctJ#}+{SmTD8Nz<&oIjF;BQW7G%uFuDtgg?@?$k_R^jz#MiQvk)#LsidB5?`Q
z@6v+bWh9xT6~D{f`7U3}yXi!tko;Y#C^Q-QUHSEQ)zR;$y6^I*7N$`a_BpeZxLFtg
zh@A$*{)U<X=Hie_78aXo$rmzrEYn(2IPKy&Hxrl(UUB}Q5!^-?e~RZ^x{z#{zsZ~N
z{21dZ%X=;rvTr|6{>DlIol3xk2mMW}IZdm^|M(f5e(TA_ee+;x{)M;Q!SapuiOYFv
zR8Y|vYt}NX`A@K0AcY6boq%7(a~eNxi&JUXQY~M%xKI~nc6DD$2mu+cQbL(VK5bKN
z;i)$5Bay8(8YGv|_s`AB7JjANxAFiziiBDZ=RJ4~v`7ZWjS4So@Ng0Q)X}ysw)=sR
zl=sx5PzN_OL4;9{2Muih_P|wC9*t}D&nL~1ig#>8)c-%0?!%qU_YE6(5{V>Y#7Jyn
z@2!fWF>8xGtFcGz+C?Mw-b$_5d($e~#vWa$T2&22(N<MeRr{^i?|t9D;W?h?xS#93
z&d-T9$g`1Ei3)CCGO8~0d&1J9s1`=EA?W2(bP=H*MdzJT(CWS95{16LZzB<9BWu5W
zm<Q7Ot@eB4nST;<rN?g?^`hw5O~*T^lt5x^Y+L#=|7IoVwu{!X2dL8w<i{sN1Nq$>
z@ipm*E)l~;`cEV+%dULHK6l15%cLaRzoa$RIfIcii~V7*fxYs76Zzdmt9#0G7q|Z;
z1aV!K&3>w1$uGaVno;#FdIfzZ@H_mR=090d7@~TIqZ269ty$9ZSf}Cbext5({e2KC
z{^Q_g^ULba<wl3;{o8$y{#!bAXal~BByo4sIrr$kOHh9IUli};gxy0E9<X>Q#Mk`O
zSJ#|w$FJSd$HzP$b26Vw@y^XfA%lQSdE6WKYPvskNm+~)vcLOa;Q0CKxzhuaKlV$&
z+;7t!#F_SWx*FCO+?FqYa=yArVB)xrfzeSHunK7N+b6#mX;kcDD_cAud=$4Um41Et
zhbi8oe&@b}j^eEf1%)R8mh7Ebf3jbH{`L3i1p}L?vc8>nWNJy%!1T)A8H`;_<-)+;
z$3RrO_VJ8?f)(KS7*sPU*iTM8a#iZ<8r+$6*g2Bd?ElWMcyeSRw>V#OCFm%f)$r%m
z70mH5dE2mO>h^72qnG1fhRgo^sS#SJQ4f9Kpho5&)q%=|4mYg(YB&yEF|n3i6Wmzr
z57WA*XPpe}P^2Zf<z`DUNYTsAll`&Dtb%qic<Mkh6>C$S?25uxVp&{tYX2FYPp3o;
zQfmCSOCs?_DPL1R*YSd3y7&F)^S^M#rnzdJ3=Z{l#pZ>2W0c3iV)G2BNSc<Ok*_C>
z=B74F!1uw4wRSP>RQvzPM1y#A$l-un{+9!UxS)eRmGZX-PU2!#q1rg&#Kn}bU9+FZ
z!e-JKklRK!>Y8AO>TuL&bDrZ)sumf+_Ck);$s#cE#A#Jkt_H4gbHEgqpgcgJY32D<
zrytRvPzmCsW*{{E%7mt)b-IFp1+es;7v^0Y9plO&5(0mfo@A>Joqk;(x_d#dF??oZ
zRvpknB$TqV)U0J}J(f~tzUw0M@jUajFJmk6S4F%U!JUGWTX&6|vt@S)zals4l=+0b
zK|@VHQhE2ATs0YC(>#YJ<WKxcva`XI(7<byMQBljJJs<pv9`<Ha-E7BhtI>Vq)cg~
zzY;c1JCZaC(gHOScq9n27J6~zbt%;1eORJ||NBkBLJNoQ@d+O<{AWDwJIBF2OI))J
zJk54WKc%6B?QT$01w5Up)q82TdyAQ0KDf#u40Ae4Bk`pa>V77wfM-r)CqdJ~ooz&!
z`3B}p;KS|{I%R=_>>}{E?^|Ug-dTGQ<_L>w(PWOUl+i@(w!LJKXcuV&%%DalvUbeb
zai~iMp-QE<WrMeoQg))V#K>}hZh+xwyjD*PQozXI81Htobjdlx|KVD|bN@#h=fMq8
zj)X1}EW5%yF-E(NvnE!C0^I`$5-#^)pKj*WYk+)J#$i4}(WOn9$JfXq@0A51ox6kP
z<5ax31Mst9_wj((gW0HVG5MB(FZbxK%oE%1EZNn<kr%Bs2)ogcIcqBEtGO%SUxSQV
z{f=F;Qyp<Ea(8&tK7&6z(qb?Po!8^d3SEd#M4%XL=v=Uf8N+JZ^moS1GD{iM_dkgc
zl(1-Ci_`+P>PV?MP-jG;>Uh(0%0vcN8eC!hja9471kJx$d8I1$iT8&S>HL`IBx}mL
zTe)@}L5tZUHM3RfN{H;I97eiaP`%%B1C-juF+LKQ{_9LLeVDdxZO@8}1R59W5712x
zKjJ%Q?GFqdS{VHH>h8Cv7xaI*jc-6IAauq@Im#k^xj+!YZf^92l<X}a+|H~@^QXVc
z5#bZJ8pUy09h82_k7Dj>!Jblr2~`Xjk|xcciw-=Hin)n0>gB~HE1|>j!WVNG#SpXN
zJwhXY1VD5VAfqLm%!WtAd3<uztAvdgLDeO~eSwf~86O&{3F=?dTJHK`@b>48d;t3R
z5dQx;27r-DzHIdocoH>z7a(<f$42SE<#N^$4-KUlIEfKqJVDo&ecHUdE`5aD@zQM6
z7kPT`5jds`K+{F`WT7d6KTR3l+uzL4cj942jJFZOzPl>YR&suTO)1X?XTN9X5t*ze
zo|5pqkRt*@NAsDuG2Tu_RFi5BtFJA;$$J=|b9N**^#3IU7^bPebGkFPg}|@OmOI7T
zL`W0hx7nd4PoI)+fIs}Xc!Mw{3qXrKAW|#Fyca8t-gH>hfDedD$)0G+Z^4p2o|!}$
zL%61mfvOX6O~_w46cz$|jdJ{@_W2-hXI2=c3Iti@KDauN4{mYb=k3v%1!5KO2m<Bq
ziI?$jZ@_&KW%q(TpVunJjSTZADIDg%%~WYZNnoiaO@;&NYn3;oXuCL2Xq;(txn|fs
zW#E$9QKuS)RG!3SA;bbOlVBlNgVRKPRyNrSGz1tSctFix<U)_)2?M8k0?0WUw$x0h
zi%e}+jZ_6!G3hh~*b&UaS}d+2!<u3KEtXX@Z<~ZosvoRm0~K|Wm=sNsSv0R*^>abZ
zAR<uu$g|`kZU&T|9@g&X-|F~5Rk5YP;MxnecxuV6covu^^5%c9sBGqdzpGg~phQOV
zC)x;>x`M7u|28*X#A@wy|229}P52(fO2ZxNzafW(nqojuo$z~-f0+L2Wvnf>g!i{`
zkGne}-mT1rKkRF7_wW6=_U<73(eT&yz<UU%<r<&r5vh*goQ(Bt@ki~CZ+6_NLcHHI
zj2K+<l@9C7c>l#WVrV@!F-%4-zD{WefDx5}EwDR_y93e-Fr87Xp9|>K{O|3m%S3D&
zrGfT(hO)@txRmkg^XKldf2F$O`->c@L-Ee&X+Qot^2Q+-7R*neOkj*5AFW(RQ8ofp
zO0pN7I8A;?c|Ryc>IFBGWjshwIX?D=4smSB4I*ALm!iE6rB1{@3mA}tosJL$VJdL;
zUSjsIy8yaeJQbt5Jb(VMJ12wvboBgp(`_mbVaNCh=}P<J=f8KbO#^UUQB9~Z5~poU
z;dhAB<9i!TQGTwX)>#BfA?JaVZTaB0C<>DLn60l}Ss22rAUz557Jd?*RtC#0G+Caa
zDFa!c!p;0oO~`pKkaHwe4{K}i*1L92k03R$JVW~aR(Svv@(yeLVdvglGDwr}qzSXj
z1^rj#z|wfC-5ywRJ8a<mZBW7-^*{5q9uj$JAi1$#u6^G{l5^$!PgpNd)5rCq>k(B2
zI?>SKKVqMfCI}(9Q2sjW@SCwsiKg`z9tWh0IQgAJ{zGE2Om)-g%>?#n8*u${@opXV
zJYa~NFFGhyggyx={u8J9Ow6i)VNmnKO3)cvyavjm6JswO0{cvC_|AVa$iU5;OheSW
zuU&;{3o$UCxqhfTz$gsix&Hgb?d)S7fAYE)>EyK_UoXipiv~vSk9?DLQit&9p(`7J
zTi>z%U*)Ea1a`5}`DgPDD>ex7NSy}&ObPvOPkj)&5uO%g0cis`bdEk@#TtUu2sO|k
zg29gIyoHG<dT8I=Z@8nFx}*>YO77D(Q1$*d5qtRb;n1q%Ih-6(e{tk=8DQZd7r)-r
zw7eX$Y&3>J$745t{IP~CHB{E6RLaZMGC%oBmJXl#(Z$)Kpgz53k@)h(KTWlsVO03*
z^T^znTPC=qRQNMxX9LapNLH~gcef)oLID=OIgb`PbN;I`E=HG1BCMTrK_86AwF)_&
z-NopcMDUSwWW3{@g^{(V5g5I09zqJNXvw4pO9T{{onKySk-++Y2ms;Z8&VhqEsl>8
zAp<!BL7R+zD$!=?`N|vt$Fx8RU_M_)nzt+>^j!vrS3Q3<hTEOSZra9Bufz?4qpV4U
zukpmX;CPnmc*iRMjGZL2tmhTiYvOod`4|)F#%-1XXh*~a^wO`68NCC=^Se-jg-FU0
z@;X2GXdK)Ui7fa0H1B1aOU)D-q>bD;9t}B-kap5f;v7q`mQ8xsC3jm?gwv8fjF|AX
zF=6lsz%hs6#K{D25s><x_R9BwUJyQ#&gp&4)ys+qeR!t_KQGc;;uj<0GCF%?5n>DG
zm6dqvl7=oxv)BZHQ$&)$-l{90dMp$p8&*AspTx?7wm@RCKo|g69?p8)4XBzH?PSYf
z?gIVp)xTR0NaLdyKsrF@07AI*XJ?Efk%pKM>PsFq|JPkg1c2GxE!I+2vMWQjhYd;w
z;p_kjg-T!N(hV)dbM=u0sg@#u%+YC9p!P*(ctqyR9*v?`7Ig0F1}uB4389t%HpD^9
zkdOzTsO>0tZ9vvSNi-oh*M<zzthLtf!}4{3L@784evsO{#{IsaR{4-SvNX*DG^4qB
zz2kZGX(61NrWRP>3Mub~1!!P1#{h#6QlXVi<5YT_Cub1)QknL{0AN#DT~$5}83GdN
zV)!zUc^HZ0GjJAIg<4?oPg!Kry^Cy1VVw|~8Z3?6lt2px5py+5?Xrz<6gAwXLB`O|
zF^TSovTgzB`n~1Y!wrW?h%=;1yfD(a;J!635Y`2n)?rrQQ?W}zn)o38lVhJ5K~jSl
z2eHI+Caz~aMiYel=QzlJEEh<Y6{eJZRMu}KqZ}hDn6avdky|s@3&|7#C{baJ=KT$6
z_kp0^&}75|FtP?aef%Q1Tn^SghJE}DvL*7GbiVfJU2>T=r7TfYA6Q`gWDY!|0(f4E
zs`X)H>(+m=s{A6&aP4>5?5gj@oMii{!2D^6oUQ4772Z@v+Nl|uQI+zMk!)Z;vz<@X
zFEOXFE4E-wl$j-)!-#}9RX+Pir2z`3rySV38m&B<K8;rjb&-S~n+1%~#+XZ$eh-qK
zL$jSj@=s0Bzo}o2a2a7Z)U5<WDXI^M?3>$Ha`%h#OI<qduuayn1LL6_h8(q;@+Sn2
z7DmSQ?;P%YoPBv04{il<8rFj_vryXs2=A<=ATHUcMNk~T{G*XNU>ag559A-@@+6U}
z$RsLkedY+rc2@V8sa`V-BuaqPj)UEN>phhLSXFSB95~3KAtb%g^8tzX2q>-zihIDN
z-Xby^k!nS*wmPa;XKHYqt)C~Rbn2VGjjt;5ZH_*=xo=L3SkaetFa)>6Mc44!{p8g6
z4ar-z^=9#5o)u+O1<+aWi}a+M%<;=G3HWakkn*jShPTDBcQn~l)I(L?lOQf@65D$u
zA$>@Bi(z+5E7SnePa_~ds(me5z>b;m8h^`mCP8frgv%cFh<x-@!|)WUvM1-Q+L0Z*
z53JekE>!p^lJ<kpKjw{%R-nTcx}!l=-bD>HAlp;riZfO4xkHQEmH_ZwXi>4`uLoUV
z&XnWi_GAw8$Laim*p~EFD1=f*9nsAFx!d~argoQbh9&4eQS6-Gbr|UlIhT%>zs9g7
zV!cmYsU_MGE&AWp`!rgR94!b<kT|l3tpg;{qa|Uu)!S4f?sr*go7)kIYk$Xr;oirp
z_EJk9)b2*I7l(+Y-|53<K(#m}dMzXrTx$kvlo&NjsW2Uh?tC55)YJ0O#*Q6d&Lu;J
zAQq(Dt1W^UtdZFr`_NWs8e^}FQL+@}(f8y>^Bh@~kK|%*4={jreIz=v?+$#OdzAa`
zqTruqe-K~yt-1c@QIP}$Y#3?DAJo8`G5CwU=hRl(XRVx7y9~~hestXP!$QV~Rqp(l
zL>uA_h>&A3l%;lqSYV*r@_c-E9tG`XTH!BM^hfTu+e;LZZC$v9En^t-WUNyA0egeD
zu)~u`e+*c~<2GW+kzP!jT?*$wdn7MwiSV&ixHUKY`ng=J?6X_4X@o9*6qeC<6Erwp
zXM!I()q?y*Tpo3wr5+4ou(9MC1of9^o*2@>H8Aoo9IggHuM4pK?J~hX)x6U7JOcXR
z8kj0`=m%2#XX&6sW|i^PTjmN^3O8{COT+iJ#ZGT}oE5I&?~H!zivANq=WTi6%01fx
zu=5MSD%%bzD=FvB=8i}AJh3KZMIZGgm6mu3uonu@k8Mg^=bDhSz0!<R<}JKdG&-I`
z^#s>CVN9MVs!{O;Cq`0Kj1?#NAzszBs$uKBvl8`DA0;`+SV9I=?Jq>)XevIFFUF~5
zE2u;pKg|$7UGigc`Di+fW2WdYXPy&UP*&l#pGt*Ms9PIt;;@2AuF#I)HTG5;j~E7q
zsnJd~#{z4$sRFeO9nIGQdKhi>C4s=9VRgY1_058@j|$gz?q~?*YFIwLen@rw*iGrg
z?fRL3+t_6p^A7+J{K5=M4=uzZ1ZgF=wPbbBN{QO4b+nYfT5_RU5hWK|%aWl&vcT_L
zuj6+;M`jbmj-JWXfh5RbSV0{fMI)}o7x^RCzxchR?ooT0@H`>@)s~uq{~~z1Tzj~9
z(q>)YpPJ6c0cjV4PM5;4?jXd}J$8rc^|7SHa}JzBD7&Elf(ZA6-;2;TSDi2Ai9C;?
zlbIR^+MZl=j0P}9S#={x+;tR1gj)WM`ja;|3Uv%j-WX>s4#m#{+U0f@=MILAb_?Fj
zu1gDGB&z4+S_YxWn-JHmg`d#pUhf^kmW=P#aeTRNL@d<Dw#O$Gnl*>=X&>nm`2UAq
zU*1tX(=q;XYEZr1z|>-#5o)|LXUMasd|QhC%_7fIqDcc~#moDGZw&((mmjyNHbJWc
zsB_~+1X1r#OeASm$_p6+BUgPlm*RC+qpd_9G^6)LR#)9$1G)iqU+;dFHx))roz+B@
z`t$h;yd!c|+~-?A9Fd4+gelkRGEBPx+x%i;4QBtWb2*7M8hN*XJC@sxhR=9fw%%LI
zZdkRwlT^)RoG|YC8dYFr@Ya9Kn_?)99XRMRi@~i=#mfE8TKZ4Q@#R~KQiwUTE+q+X
z4qg~CoG?dhnHK^q20mH{D_J5pqOkK85mPZI5-8!f7AWT!#~=Xn2K36#V;&8dDx|#<
z2zz4;?<j{tH^6Mx5a~DuevOYx9$W1=ia^I^6>@Vv>cSk(gA8p1UD2~t;wbyqzTMY9
zXc%n$<4T3`UubOqc0Sg|Qx|7eX>B2W!(ju=DFO4={b+5vJO6gu(A+kn$oB4pb%5h;
z&XH}DA<ie;Hu~+@p!TQRai6Sm?e6~Dy%*r*)xlB}X3vqk713o+*l?cF!zE_hLwEL)
zO<|4odqtHui2?hi9s6ak_Q?tR74!$ym)|{S;VRRE#_WUUjsqi?gVw`?PWsQ?uVC%c
zpZfzoKg#}WgZ-SD>-=HUc_+!arN=pP?z0!=)>iPBJkqTX)o&jketCW92!DvjbhYLX
zT%MY`h@Q@W4-fPT`l|kDRqvtOExE({M}bbKu5s)aZgEGpdWS|k8l8SNrniMb{tuz1
zldCw`*FUemJ+k(ySp-JveT?&jfUkc{66Q&G2!Q3#Y5l{|2G(s#-)8v_*XwyWeC$_R
zT-i4b9X|45mI+q0)JF;iWXm6K?rseU2X9Y;C~Mzj7=GmS2Q)u1I&6UccnDE86K3-E
zPCg2}g$!Y0J^B0qMkR6w7!?#lP~x_i<(z_QM!fw_^HZ=Q*ffVnkM)Or=g-WE(1t-(
zvqrS-jWFDOTDwLLe_M!CV=m+<#%(#m>la)z>{I<{c+>I^@Vr7;r^R%Nic|HeIruCV
z7tvC4`FkHGtsfPbz9EnwCGsLF{sQ{u7bO3~#Z<j}tYgma(j45o#_7rk;?@nx9oF;2
zc^>8AIOtg%VIWE2Pt9aE;C$*{>%qPHKyT2B$e*Koy+~qM>hibIxI?IFBU;t?gjj=2
z=#WidSC&*#PT_At_=s9)oW0W(N<5~4t*fLa4dmJ&Y1BJ@e_;4$SzqO|keZW9%-2uT
zOwuVo3oT1c!{5swt^E0wt|OM4X_A(1X8*Nu?R-!)151jQqt^Y%s1i9WJd-pws*~>Y
z{}kWM*WN!O@kQt)gI1JyfV0qoTfT2_p0wG5_Y{ML#kT(VCaKyz0KX};gZZetgE?@)
zX1<^`@yEN0CM1sY@7KCx(!CjSF2?Ffp;$BPD=n_y`cXNkoJ|imn~3|5mVdD-+eMZP
zteml_*hiH<Uj5Ck>Ja^4aP6Gqn&Xgu^5h@R@`fhB_6{VmL)3Q!wmH%JIhKKu=k>_z
z)UOu%kZ@A1uDHQ*Xp#2u)++#`3_nU!r)HT+*5J@YvZsshS*)%&|M$5q0wbM_^u9vR
z_=h|P0~;Qd_`sYY+7xGRwxH*`?ZUj;X!fWyMmU-mEi8FVh76fM(JS|U8?p>X%Vy~(
z{l@6nwDU=#<D&&3<Nj_l#aHg4{T=#muRaX>gAQ<d>^+o(h;Y|TWtH}G4vp5C(5tvh
z{cS%ok*+yD_Ij7B1xYvM<^^>QX7~&QPeU^{bEx>a^X0RM=f+5fxQ^$61ea;$LP)|!
zwLM1lmOEPV{BXrGj4#pQ%4eXTDU8dYg^>Q#D5@U$Jyc1CPN1brTmH#l9$a)F;)c15
z*~#^~PsLa7@x(^|{Ji=o;)3VtpTY2FLYiGj9-2FUUZ$z9{eISwE$ctPx?tblX?)Hh
zR%;`wFe;yP*+`wh8oi*)Ki0(Lq9ve5_QSUDUuzPi;>~EM|33Oh_kU)tOUpXjR@Nk=
z#E`q-XKHL0jKRtdFr6oiBiu(}38p0=L#zvfQ0d8zgn$M>?x}eDFw=9%{`LIl(ogzA
zG|tCI#=yt_qj424-Y(`<QRmo=zC;eWe#AOu?opCZHeGk*#UnCvwFQq93HNEgu6B*_
zYXwy+w%DzB12*^6<nFT=rG+p+aCprGI8P)Y=^8R^{3-{pka-2`iegVH`s|&|yp1Vr
zM+t?v!k8oE_Xc8_H2sHZ1)s!SyyBXrj<)X~tqWv83bVK**~l|?rTQ501uX=haS^~s
z#W}3p&4w6e+;u41NVj7%H-S8tP3f5LFg|OAMHsgAS`_)+^th!~{v?Qi)~V=TwD_bx
zy1`F#yND`@Gjaf^CIWj@gp7M%yKH}$R#3}+cmGP8yDm@ZcD{)Q`%dAG!;-Y|x%emn
z?fswD6~T+*T*+nDAdOH{r;D~e;Bs92_Nx#P2Mpb-C4bhcvX8n%svKz3k+Y%C*vb-U
zMUp>B#FD$jO3W}zRiGtHKi*k84<Eovn>aZ*)84A?I*X8M;hc>{trWAi8-2ePPz2#E
zKN_XG&h@>|?rH0&DMtyVKGW2jj|z<LB0<vUr%52D@PMM@R}tY9;G=7i*lxdj9giSr
zPj$Y;LI)M>YbbJ#l#_^d7y(fW<6ICo>CZw1=`^0?hQ2X}wkM(FBQG%qJ7ntng)rwh
zu6?OU5)~?68u_8sr`!5j$Lu_X0MYC5v*Iw4!rnc6@<D`|k#f1E*Z*PZl4i{wE{w6d
zcsvDDv!<`5?IJLquRIk8cik+!d@$n)U}jrQgflXMeUU^#L+Qg{BV3~1xJ!8!bmvGK
z?j?Hz&Ord99#$tcMit$&di21M8vx;@kfB%{sNyRT80(#I?cWq1H30`<k(gj|7V5u$
zG<BU{`F*8x5J*Wq`1(JU#JHAJ0IH5U#-^8L{pcvag9XpG`@g{|rnc+nBm;u71s{e@
z`kLo~=@mim!sUd7I+`*oW{4_Ixt-UT7IKGEnW&tOfcTPNhFse1K_xo_BWI?9(nZ0W
z<5pEuvV>^UIRR%YzN;?flslG2%hE{F6qb9ma1KZAuv3}!p6h`@0Uj5!4$U-|JA>>{
zTs)1|48mziqL`{{T|RLi=G?MX@^fulvDx0_wli~C?;c6yxf_6m-Nj%c(nD!}RA042
zBvn#hSY>t9G~y|9<??#N)w$l>|0l=-5&!lwf+sCG83^WzA3_*dPMAq>>pd;@wK><9
zcZ@$pk)e7xP#{Wyjh#@aT^~$HuKyIyh1%CQaIh$tgw$OAGa1^iS=@ih((uW^$Jocg
zvTTE;QRVGEz;n>D>K{v!Ch7nuv0_=ngK9RgKCmeD<*8LdwU`$jST#FXJF8vcWbWE=
zq6dIFiGXScT`lT=BJJ%P`yP%5SciIZz)@3C`(2ELlKX|1_0R^YQ~a|SmFk=n0>8*^
zE_yqf9s^=L3%W_H7!^0FUa_ge*Vg07)Poap)?8RB!4<N770_M~M*xceKJ)NkK}6|b
z$g3C=&#QkB)QOaKJwUrRqaoW0(^zjW66oeXuT6)XVeO2S;GfR5{m8@mc>IA6i`5*E
zz8+s;K+zFvxR!Hu_=dl}9XTwg>z%#dat}UDl1DxsggkK(9wKkjXpxC5<qz2(TQ4H?
z=71~&LHNw-2kBxA5!dnP$+w*e&_Waclf_?8%fD*H2VdKmXyIoTIV1eylEqUCXo41~
z0zy>QT^OD>7MuvWUZY>jK+~e(BBvJNVb9-PxJ>`*ktmtgszGq*>T5w9>XKu8!dcXe
zeV%>rAGy;I<mPf<hZ3cvgMO_jI*Y0>+rJ|x8v#FBL_RWTTw@&O8E{AOk)P1~J1UuR
z+V!tfWZrx!bZYg{<bN~EYDq%brlgm0js*tN6con`h|k@#e=$*b=ZWvo_$wC5D+BT|
z=(6`-*(m(=@yj2TV+2-WU(KcCXPGsIfeF^t0H&+^7}=2fu`%5!hE(HRM@<k4puoev
z8hRO;IdIXL;VzcCvW&T+mM-<cl_}CuSX657d)_IRr_E_kX>3;EhCq?aTn5~d#HKf#
z?!3Hf_HRKSrCM|Zk?NWTH!vO28($>l>qX)i0rjSQJ@~7JmM3w8J?{i6yENaUbEy(V
z57*<~C2mPW{1)D&A6ATWHPiM>4V1tvFk4g|{P8qTCIj!B{b8y<FQbtpPknPfH+|;n
z+L!0PANpg~=5d4mvyWXlRL1W%Nt+@t+uXc7u933+n-O*63C$s?k5@HW&*%Etx8(9D
z5MH(&cuQ<5a~q%pM$lfkUeDI-wMAt;g<u(epL}(E1bI~jTK@d|GO+}KvmO9}6LH>U
zVUq|>i)-k<-0Xn}4<--gv0p0`YUSz85|+r3rcO!p+Rxl+ug|m?uqI3!qs5pR1fD;3
zPW$FT1eWcMi)d|rw<!nJUhvBf=Naan-RuMZc#tDC>&D;jl&$%#xXJJh>rp7)VuU7?
zfk!w7Emr=ue8zcoS&GRZ^dm3t?;9mzDlg)*1=?!4F^yAd*nf)SuoT{ZfK)8LH~L=n
z%?OLTsl!o9kY*{M1$Zk>Uoa`QkOBls95L8D%ty)U55P8QHUCj#X4Z!B!bm<5S2x+E
z*CL4mqRBO)8-ijw@ox>Q#b&4TsIeDkfoKPQV47C^Ugtk>osb~_d<z7@=GxE(0pj?r
zL&v!(Kmnxm$ERtG!pO7ej$2y7zXOoalvhp1t}@Pgm(fSrY`jY@9@Z|yyFsnQ=2nDB
z*navAGb*FtD)jaOka$yR+(~Z?W;T}nuTF<W0RB}Qf+Ivf9J@9^#bZUzdzFQtr-xH+
zqukxE(&*6;KI$0ODbpiW3I(j!=_QR{!{&~7?eKIm$v->3(VOACr@Ls~T7@*oj6aEB
zu3*qU&QW?3numd*wrK9v2TS4~aWum`aWO}DFiZ|=#)!H`+j^LQ;h;~S_PA+hY?@0-
z#_4F%<6dTCS%k&~Bz0~o)@``%X!pqCEt>y3NNi8sp9~+NTQD~F)@60r)^$x3-e}Ux
zWV~UuqjNrbgP;>zLYQ@kx6UWAs|$lk-%n};ZamCeqP+f@&S*_dM)mITC(fHGlJDvR
z7~>fJUg&*iej$XSvcP<$X-y{?4^W#d3Yx5dO>?D&yC%H+n!HaE1G&b{Y_ua>J#cZ|
ze+MOO&`E6lv|25Cj<ov#3p~4s8|2bbkThgfOtMsiSdk}V>#%~WUztd+VUzRL5A<n_
zTx|Y&2stuMNXx2*_P{31^DGXz1LZBGH;q|B_&zhju}lnuGAuIkXJ@)79Wo1)NpdWt
znI;5KzQbPw8Eu+#AmpJ1LM|Z($1|MaUw1g^2sW4WS9FvnkMLYAL7ZOrTt6f%lMJ>4
z>}8Tb&gAPfWXLcB{ND}?+`w_W2M*|UPIQAgQfk=%uKdaH?GS(@H3QQfInG}03j;b~
z#UG0Aj<}^POB1OaI$k)PFC-;;Iw7;Etw*RQ@~_@4Xu2HSx_WxzYf8$6y&iPY+!c<Y
z#&~0Y{H~)m8~x_}H04=Su8;6#^t?x6dJ^_RIMc9aCM1}_2EcIzAFW{$Fu1GYV?kd=
zxONx(XO4QaY2t^~i2uJ-HQg;WYqtuLmIjskl`#TXbXUDmPdVC;3tQ_GcZv0;Ij8Eq
zdB|jW+HmFx3_7A{{m6I|Q=onAglN&i%qtSoLJX0F-cb|@RTG)82n}uf6lyUgB>@3C
zd<t{D@x=F2c*rOD$f*dz6kW<EVEU&>wK3h*Ozm=LbX`hx{-<absyI9R-HXALZ?1)5
zhImlNiQz=AgEKi!uZEIIAoeiDKFy1T>G{=B3~EE;`Vx%3O@V%Ov7R@IMs*qiW#OZt
znc1Yc^%GY4-8Wk|41c+Vh<^%^Z{*2Sj6S^sFs6iJrf_%QH-c|yu}`zc0?kGWX=L7N
zUoEm^_IixngXrjAAxoLLeonHRPKsu-_Si!?x~T-~r$kPt<QBk^n!tL-T8Hh7+xcnE
zx*?u0#RmPX4w&5#KKo$WdP0=u!SqNz0n{+6SU|p*tbVuDlqKA&&b?*l|23E8P4R&x
z>Mx9;GEBxM(BX%b+4ntJpbz=s+id;mM8hj~5MR3-EY;Reuxsk#g&)fHXOb-TJL{`{
z@g^Mp+FLw>l1HZaBH%gSE8hwwD^}c$fD`QlCm$`sHisviEqb40X}=^i&BZI;O#!l$
zTV2Yw<d(E~zs<${J0AGZ(Cwzu1BYVP2R=6$sUL)(T_TFTOp+zvkCv^7m#1!49nF@n
zBg+=xu6K)l%9irumZZMGt4`9Y#`i_O8j`@~)wHuJ6-&3DEm>wss|&Z(NYAn<rjM!l
zR%_Aty<75^fct*13Ail6`fS6owG{BfCh%8rpd&Ew4?2j-Ht79nAaps1fi+mYFNpbm
zFz0e`U{G+CX4_J2>r?SIF7J+#{Z_r(QcJTO>*;m}2f;V)hhALq?mVXfzX;&qGE%4c
z+|`sDCPQ@17ztyPfXinvhdjESH8Sg&ai@UPm%HR?fxyce^#+^@2N=Qb+>bJornUR*
zDMAo+kl;yg4eeyT%jor(W8|>|U@*FR@CXxAK^R)oMswH1c>H2_?*?0uyEY;sGJuox
zFP<KKezSJSdj9ztj__pNC=&jHt0n=cj|3-?qwb{LqcV>C2?F23R%Bzw>@Zxt_lXjb
z?iMY#7)j%iniHp_gvZ-4oqpjtnrL&<t%mri@-Mu+T`aki45-oRkS{aCZEyAL=3Uul
z3|(AX`sl`95bv?2W<g$VbZf4Dk=v7ewMNT#V0?v1>e<C){Ly6f>whoaNS?g$)hpey
zMRUI_T1c9&RL*eQ0=gQYZ3#ABn}C)xxp1AueEjkmW$~e`txfywo9*r*3R?GzB`&^Y
zy0v?s*u7!f`MRr^idfAZ(ebPHr{FvG)3NVP1>QYKeYe*x#Rymjn_iohlArTOhX+4G
zQ{Hc72@GZA58d89GTFtha#849a-}J*M(E!)DD<l=&W=1j(=E|g3U<<u6gv!*>7ANo
z9<Jo_vW1FS1I>gZ8B(LR2`(2;8KM~MA2dFe@}$`>?8x+feR|+=(3AbLBl{rp>~L-2
z8#$Xk00^Ew<kqrb{bSCzoBh>J*$eDmK6LxA2mk9LDDdmiFU1xc;L*5=d!EtjR<KPc
z132+Jbv1GTaEz{I<Z;mx5Bw(0_fwhgA$9~<!F<Bve}a_3<`EzvkqkNv7V2xP?ju<e
z`44O#)SDanMbvS<8d1s(fk?gl(~u+88OXcwjTgj!zonB!&HgWof=pUB<YJ5|#X-`>
zt!pcB0$&T!AcIb}k`QQ@FIIqw06@fO93!JBizTp>R;*B~vH%0B54*fHtzA7Km<hC(
zZkHC3{(WJ9w-NKhd+UEVbQbN@bGxp^AYqUMnv5WH=WB#{ogB}Yp6Y7F`w5t0Z4<&#
zQ#V14YY2vMOjgB|+O+|cuyTpx8j%qC3$fmdhe21q%qb@ds}$F^>3&Rt0+4Tyc%Syz
zG$EuS_#XBb)1l_CZO~kMdY{GTZf8o_K&uPtdo66Y`#PR+RTR#j7i`3um|9lf?N%SJ
zx7zeIPh70df)TK<WgS*JgsO2+bpq?fHO2OXbq5~<!V+&Z?B2LM8DzMdKJVsx72FQp
zO3Wiat@_Sd?#>X<I{+;we|y-ON5TBY@S*bg8i!0e>OU9%;5~LX6E7T05D<XuKo0Ft
zS_3yVEOIl#1+uU}MeKDPIbQ4R=3F-mzQ<BS$g1n7aT!^R!HP5D_+Ip}b;rX@J2jRR
zrg9iN!PVs`8VDw+T_g^V-DOa`NE{+pam^;hOTM(=3%JX$B%jnIt0G~aIWXZ!u4e_8
z^L|;-_G61|za#Tu$3XIrljl_$3xkO)vRGMtD^;?(SB&`&5ts2-{8m4NRV`hymWl-g
zMP31ioX44Mm!@GX7yT1fC2EEv)mf2>g;=0+u&JlT1b_OQk`MGMRgRetnAtF)qxHRr
zCT8uq;SDs47ur=-1_&fm34A!r)F4C`Q;Z@6)t^iPzj0-+Tlx+cFf34GiR=uA%nZkG
zL|DSO&MkFMsZ|t0MV=R|@?{2y|AdL2JS#9*``x?n><LlRN=^!^Q_-Y@K<TR7&=n}q
zO|y!^hpKojh8Y6Fbs`upyc>5z`kW$9BEkd1QyYbo3kA}x<g!nqn5;43jS=S+^fh{5
zVLVWnoT3lZPdWicj{+Si;LG${<y)5TCov0Nu`v~T3s!MWcg*g6GEq=9{V!#BZPDnP
z)$?brf+yCy5O*^-XIA7MkQT<!@y<fQdhZ>_ddB4rSlD%)pK|)BB#W>lKOSZ)>s#I4
zj|)(0LVPLVO)083QAF>gptq^HskUX)Y3bH{iT&xJf?r<prByOm6+JD9?MK8kUH9I1
znuq1DPG{-g%~*ul_iNuw8@@g9*1r0!lb5q@7g7|M=)@h1ruLB$FU%93V{KbI?qA<i
zxE_QGzrQ=;VgzTu5G>YuF-#}5#0PlH=2{$O`pkfhFcvTBe*NK(d-0xmc#j015}b|K
z{df}YR;lZZXH~OO_+|0jhaiDvNn-J{D0Q~<V#)FgV)muazjW66Y$5N1WSvsgsaRYi
zVX7B+E+cw7iB)4@>HPKe+3pXL(@Qmqgo-Gj|2+RcDTB)zDgSxi3%JvNKdLVNe7K0m
zV`>>Q^wu!VPV!~1L=?p<ELxW&lv>}13~k6LOY#&v-&Ig;ckX?6cvVfh>doiVYZ{%;
z=yRsj@gxeyrFxUkwPuUot@fjUd)@Z7W7RE2kA_`guf|Uz-c5U=KF#|+q#Yq9-`39(
zer;bQ{oB7v1za5F9|&!X$8Q6tWnol{GM3cSa<HJ{9_gDY)K2k9`--SgC*8hZS0e|`
zl!ZF0n6#nrRNeTpiRU5P@u~VV&&QdEhx1_ws}$D5p0kXac<^ZAqz1S0z=(Z03t!2l
z&rq{caOpF6U-}G?aY0%wr|0rL+xZD_M(MVYg$x~WNUbcuTq^-oAXq9HY3>SqOwvkW
zlJf1#czm6T(!7VM(WN2TAhoK`-GOP)QXb0CgQ6K@5g^nR{<$tOJ=)h%qi1#-kdETB
ztD~?5*W@E*^g^-o{O<W6ap$h~QETuj@c%*!z~@_&Ii)0P$4=S8>1>y+BG-pAiL4?T
z7fs%q<n-McBf&0w-Vf0)D?MIsii;Mf0pRb27;L<XAtKI%cz^4`>)B62ZvBF{h+1L7
zTP8YnfN(4Xt|C`JzNUe_UBHla?}q)HmJTxupO$uGO=ax)sm(@UxCMUfv*<hZi@O#C
zh%<yl7>)V-b_xs%1=?^X(5aqb5}VtI2Hq6SU@}z+3Qur@a^<chbH@$n0C}X9$yiAF
zk`9mo3&>0t>6r$n8ep)MER)^dTcQ6+;Z{Nn3Cfov6t=mXoRapr%WXY13@S}gue2;#
zDc=@Lg+OEL@&rTn;#1szy1QU;7UqKZLzb@GbQ9UGtvK<_TsH)8^9&5X5a;@xh&Z;M
z_hL4R1~xGd+E0&{8GN}9PELAxBEZaqY|!zRs1fyGPE;Bx3Sx{t7i+3cZ<+8fQ9c3{
zm~oNrBV_94EU2?)#2+wqzcRdiy(jwqIJFFhqS-3-MHPt1dTals!;EkQV*dHN7fX}X
zjRB%niS-h8lCrWZ2#H*=Tqa=DRSNKzesSXUcS^fonWS+)z#ze4q@>|<rE9Cb^G{`^
z^5+bV+H;>Pg%eA+A2?RE_f{f1Xbgjr#Iv5s5r}P_!t-ySQp4C$Fb8u<BGoy~&`q<M
zg(f28Xnj@3OjM;>3@t0Nc}R-eJsqvaWT=hAwZ8i7YqTHoJb>wfL$(#1!Y=6YjR`8w
z_k-#Atg`r9Ysc6te)UXwiNn0*k;Dl^dDm#AY4Yg^75niidDW-4pFs6qZvHmh{`)%d
zChhpg&7QBgkv^tZgSnSTE>?DB*4S<cydEOMH%dt|>mnk;A#frhr6zY2ZqG-$T$t3$
zCT|x(r9m*ULdr2f#QPcnbh(}q$wXuhP~NKf5O-E*Kq3>jFPq8ccPp+RMeRNA{tvX~
zTU+)X0ByrFM;qzfK8Eot2Vtp%DD5S!&~X|jH3x3;s2L=59pqdsmkZQtV>r^>6TdYQ
zk4W?I{lS8JMi@NUz5!`kg?R;PegG{lgHFYOev`-x&ec#>wKsGa#qj2vE#6lFjW09r
zMZW_qX^D<9=F74=xak7H)I@~z4g|N5_1q!6h!uu(ziF@4sXA5^Kue;M!Z6Xbk~F>8
zk6by2Mz>0WTHNI(wVXzthg9Y(q-)B^?ul<jI1}zu4U-_eT?FTrl$!U-#&GR%R`gxa
z6Jc@9EZwo14Gj`l+;k@OnA3#G5KBTz`oTp8_*g<~`zmqTfk|J|q5o>YwVOgVg7^_A
z8&w5#03dqWI|@68K|u6f>P{#8Y!{!pkhwjDpI3Q33~|KkHQ1udcUp&ShMV<RIF$<T
z##HG&9zln(3E?8Mo5Pb>thy5?)r93Q3QE(M<+H7aS>lBYNW@pP*g#=sIHs&?{P9oe
zXqm`m=y^hoD*U^5ytV+d{v1fq^A7x7Ot}i`Z5PjZ3%Jt_H1VQPLbwiJ`O7D5e)z`}
z{T_44_jQcwebOt5hC3BhSWQJ}ZllV=F?`97NVB~HL<iMT{cr*yuFlj|;#%D)&!^zK
zf`U@VhKf{j9A#EV9Y!{M5Z7(yi#km2J?Z0QW;P@aDtNs#medr@r)hq#)Pkw|q?oZn
zSiAj~IfLH|(7&J&nS>dzsjv%}*Ls(YhXQ248G+nhvfI6BS?X7fFNL`p8;FLt3aGYK
zggt4XD|p+AKvT*LU@wO<lP_#MxEJl|twGj}55<OdQIaWN59UEy-6%=#J7$qI%z8m{
zLXmk_kE4M!e;@XZZhh{i(*Gi5lCjp1jBsKw(PYUlxsi>M1JBeFshb4UQnU8!o(g%r
zIdWAL{rU4I4{ijM&pG$k*d<!^r4P$MOX4f%_=03tP!LrL>*EdItcJIKhKAb2O84Bp
z(HLUn3I{b3eCb2OMj)`uYpmu+PfxEjIF{jwQ7zfPfB$us4#=-a(nkWmS&cf|(u@j%
z-60Z@Bg6~z>!-!VaNsI4%Dpv_s`hywUl1@McC;u}qi~$tb2O!T&QMqsOU0rcui$-S
zlUd>u<i@C9R*v8-#{~nprhB4>-F6P-TugXsiX(qhl#TD}rpP_H(rf@+lpH3H8NcEt
zOz!%wiI!6yD!(U&#(vr{9Ysu2<%R^Itce$(lF2AwH}ilU6Z@SYzyfN-_FGvJESCg6
z7Q()#Y5Szfyk_~^0|es|C!+NE6eGhFS(McXU?}ydp<N2KV(x%Y-J=e;^(bt-)Mb)m
zpdxeR(-a6q8;R>3zpuVWAQ5(j$pY3DuY?#C-c?!3@GYhjzkbv>_~^FM4+_=IL-?k8
z>zXdlP$!1i8Y4~KQ+8_J>=5)hNMET_Z@)2sX;!}GRM@M0{Pw@z)v)^*|6HZ8c^u^@
z*LCU#8}C&wGLG}4<q%IG-5@d*ap@|ViigwF^zwC;#Uk=QDN9JlOEf!t8S7s)HOvVf
zq1)R<%`Q7AMo+2j{*!YSddc=p`I1eqZW&2Y=f)Ou>GEO_wuQx<_g@Yqeb|cRWREn$
zM*q#?zMeZ<F&84-MtOMI3Hgr(H^(wPl=NzertilHP|~7bp?s*7+1n68i+5TV6!#ul
zvn1SKw%)a&Yy<UiCC!da2fgbkdp+mnREbU12aA!Z-(Fsa*l{2XQ$|1hM|EoM4*)Qt
zmA9Cy`r-arErMNGD&eCWhzb&f9ZLpD&Jjl?WvNgY;QMPAzf-PJfKJ~CKZL(ZK;AV$
zBro=k;acP|G5yz$RT*dwTRf237z<%31SRv}73u2e`0KC79#r)ZY1PP}c6R+->L3Qf
z<2CrK*V7+)^gZZu00=<>AT(6N7>)5j=7A|K-+O9wlz-`ipPqdCI$HAU*S}w4`VW6w
zcY%7q@8LC2_4>a#M^6Z==2ktD8Pu0iO}3YwYWB7zi}x<07HWhW`%Vxz{#&UXBFd5J
zlJ8|(eX~M4K`E-}PoWB``W1g`pyC}$hXS_2ds%Jlcx>#3tsGzZ@Ix#fPO98~i>Xy!
zIq&~q^PR!hWdx=%!l<gr<eWtfAdHCdu;^7Q4-`Ry5Z>H|K*00CX|pLsJ-FfpfH}0<
zjNrobcfQSvapLD&;>g7RyxtY?I1Wg)X9V9%R#QtF94632z8hPo*$K0~PTELFqb}5`
zI_V==o!r7ikCRJgKwK~MBsEd9G&EeZT+!9s;dVTSF4z5d9tH6)$WjZdrchfL7RPQf
z5k3sV=6HpSfT=a!$^b;>Vy`-dPKw}E0RT<UFd3V=<q|TzxlyUm>>vw?fczM>nl_!S
z0Zl#W!y3ctRCGAPFqME&ay9Hr_s->0opTYUuhw-bLUYwJ=ejYM)V@{RWH#ix_OMop
zYwf`v!$;92%FRr+a=`m2LX!y)BnitFvgH!R>aV7#8OCF^E~Tmq!E{+bGGFR-RTiuU
zy$=1x1JPoZMK|@`<QBng^objbC{{apB&>;`r37aU+UAUO_cVT~sX79p6%4eiYiR=L
zhq|+n1p`xY%siFXPV3ADN2`TEDQeX`vA}Hh33Jn_Vs#kR0707L4Ob6V?_n)90RSM7
zRsYr51k{UwJ@{oOVcrCYAC_j_l2uU1oK&xqo_-^U1zwRJ804`C0Nf;!oHm4<<%zb!
zqf{|u7)vR2;Wo;hJOzQcXpOj}&jRtB@K{r4VIXxP0FVfvR%`HZ7UusV<QX9Br8;dI
zF6^DW%jMnRUEJW4oS<6S;M?KJmMeVwsjy#-mha?+u>X>$qa2UKN<+Y*u!tIV)1Un8
zdqYq_!)^M;V4hDr#sICq>{_{)5RFeZXfIC8m>QBwPYoEhlzvkK05h)Vb06a&G;-Qe
z3Hl|VU+{!VYr$Yx(C{)ukN{Y>ihk8-vumr`mf+nzq5;-cU#D{Z`sw2rH$$sM0m<|+
zSphCKZ(S#FlsDLPclt)+I9O*v8$Xhmj!kkMF~Xz}_-Cox#;Q-o&E~xL^|3Gl);=B!
z!||p)^uA_M&7%sjifq(ES*oszevE+#d9O_DiRNQRf^>=THTs9^6HI%MTW3kdEMnLA
zCiBk6)%EL9dr9J75n0ZeqWO*lJxy=Y1@-_*@$I9&^H{XBxVcmVs1WNGFkX++Pq|q2
z2+Uve2;1YlxsRc3jtsrY`DJR9&ZaViGEolozV!J8%TdOFY7Sr2T*}M!sS>3rhG?i;
zi2>1Ss?=G$p;&CB)Sg+9CL_k6Br+|P0Lys+OShv*8-Qi{F`xwB7q08ySg}rv)X#A;
zb^$lX|GrVYlG0LnkW!xdFVeTXo~MRv(5jBD*b_VI_AP8Pz>`|^*;<*7T>XS3NQQ-#
z`kGL(J=*U!+U|a-I*n&yBJC9}b`SBvhR?zBZ<^=cGo2Z?+8HwmX0~}VJ)x&nyOQku
zI~`49B!f0$^)D=ckQenn-|FB3@vN(0hRo0G^L);3I_US@Fu8(^+<L~5K{f?IQ<-(z
z$U|g_xnYUc#4pKTU(~?#X7`$V2jLMj5|iGvQ<26q9EjJHBm*GNEbOE1ngz?zJo?N}
z0c|*-`el%XjTJ@lo~av@mU@%i;28FDIq~I6;mc!1Gouo^9|LqB$6t>BPJCZS{$=%M
z14cy$7arNj0B>gZXvHUA$!^Xv-Cs$X$0TN~--`QddPK{hbcJg5+{Al;inTrU*~9Eb
zJsdmwu(I6jyp7??{A+5Zk)Mj1r+#L?V$95}rY@IBCdC3ka)-AVssE}uM=riz(*XV}
zky0ZyqUsJG)i@4}O6^cC1R=wKzH})wC8@*R0Ixx7nk$nu2K@1($d5;oX2?#auy*<<
z0EXX4q!?!nN>VzWA)C0)oXUmXUjVRWu?6cIz|g9)3<>`sYgZP+lBgg4v^KS}mnup;
zN8=307H0c6A$4hHQtcdl{w?<Wm0ha8Pt67VX$1`|#$I;5($f?UX76#2|Lp#Ts>DL9
zH1ov(lf>f%lnUeR_(dAyZ-DKx!|*Ps<8HMSLE-0^rFlXB<Fs-^ht57QYkYw+3L9<^
zZ!^NVEGhIZ|H04WH)`xz^-a~^bQX19zD9VlB1B*6jVyu4?22+gD-{&;#|eveE5h`m
z<bRV14-rzug;F&aR*Kn-&L^|*VXJSjN#mjp=9NOtOfqG~XTB-e3TKD|zQy(5u;8|~
z&@Ey*v1I<jPa|4q8!L-}hQw~|@{ARId-1m0gVFiBx7+62f%V!DV2Km*$-CO$S5A{L
z+hMwNErOe_!xi_nZ!JVW<kXcBZafYjrvd4cr-GK*d5)bl&1eIW&Rn)3QW%ZQX3agD
z?m7NNf4SoMo0hR5!9wv;61LKgBSpHJKo$?Q;+;4DrG4I|bs#PewGirSmObI}S0fb2
zKD%+v>}9`g3BlqWs1lm%Art+@2|p_m<*bu-N>H*r(@|{YvB%W)v)TRVld$Ir+|JNC
zEO47)R_CHYIj7g^gjGvqq%A3g$$hnbMK(idHD4WD5dT`{lXhXhgJpjplM}nn>vWx}
zk0l<7s=aSe&t52AL#GGdKB>bh-CClFRxnvsboBA8sYcWWi#2OH{0x`6^;n_7XAQN;
zX&d8UJKt;&D9=2yHbuF^HL7SAvxs9&u1(5@V%`o7yz}_l$K2*9W&Q49FsFu}Lrszn
zLaidOl*Nt}*Y9D8kQJuN40~j<Z_FzrWaQ+Wf-g1iwQMchI7p#>r|7~O4reSM;VU2Y
zDELQPu{B=JTz3cOSkA5u+?Z#61@U!}{%Lmg%FG0xRih!c-#pfdD{61jgcbl!oeY*-
zuOGg+$=%KEdb5jZ&yQkn_GTo(;l_Kw^h3GcrMH`FS5UGnLGJ^<q(|1lSNMJ*MEzHq
z)7Nf3_qx9BaUJ;K{UOV`QpRF!IOoHNd%vzR^?cN<+;+*Mb*<bDuH4Du32(o8*^abd
zZFo@c@&R@5xjp}jb^Q5z9>)1we=7{uXm5S@w~MKDp6esic~-HN!QDSpLAF2q>)(i-
z;)zCQ$ep0#E3eW$OiXT!!1qleiYKS`zc6LnfVM)YmTL4Ok`NZ8R4577l||!?3BDc=
zU080;B<D+I#1uw0?<+?vu_O4QM7LY?yLzK0gnS7V2an^J+y^<Fm`F2~qA?K4!9^(l
zVp{Ql$Ge>W>c67<SCN>9i|z_EG<}<#8wo=Wg;(<#dE)qa`Tq}JXBpSj8~^=nY`_>X
zMvZigF&aiUj?tY`0>6>cEv;^&LpqfhC8bEWN(%}|DWIT)BB)4+g2~PQ^?%*>!}~lt
z=h1m|opXJz&-eX4zVukG-??V|mG7cP8F0v*|J8cwfFPgNnvmGArca+zSYJ*+45Ow{
zmmGQa^?}5zX31a2PVdk)QEf6orZ~IE=w07?1Axdk!4M{NgTHnOIjNk@G*Bq4S@DC6
z8@ZuauyH)LaJm0MI7p+q)?~pWX3axO{Cbtf`|;LLWM}O=SpacE2ut(3<soKJC8{c*
zc9k~Io$Se->8b7h){GX>#uaD$l-rD;P6>!Zt@rm;{>B<!Loo__>B@&^o}gQQBUHXM
zD15N#C)h@+_aCS~xvDCt401>pcD!>g%+(-_0snC*`p`A2fAwaZ$k2z8(}4@!kXXY2
z>g2<J?jJh+N4?cS6Er&$mnYr(DIV5?Q<Z~(f7G8n)Og;bQR+1K{OREIi+JA=jhS~E
zvmgJU<SS-R2Vb23v3RX9$D%pU^;Z`9m)rBB5Iv3TM(V;TqU_l)SYec1;|4nQ8gEX$
zL_^Db)T3pgq-XC$)Dtz308z|bf@aR0)f!lb#c*=}l(~cU$=+z6leSI{KAFc?+-dB3
z5Ca8mmH4<>CpAv-hA2JtWzx<K4vf~OJZUqf!D9FKvc==&Q6C$PabAmY;sE6NSpx<q
zXJ;Ay=9+#{yXoHZNB&;PAD4Z~#?Qx{my#ka+46osI&$grXTP0eXq_h^E-HUM#`<=$
zqYCvK%bA}P3W)pM@CCLf`&&N#cKI@U?OxvxT5A7Zi0&gS?zk)rSaUCh>?3wLiv0aF
zq0aRwu^w32UdHxE%#&W+q2O}l?kR(zI2rBtx$s05BmVE{>YtAcbs(U`btL<315fKd
zPo;7TA6vCLy9f3Gb^{+GAN?2Npn)x(xfbE{$h)UT&dFJ;o(cOf<=Y_<154)0PDr5C
zJQ*4$)KIk1PpUz5brd@KYC{8&alKJ=;^U^2V(60z3~Ny}WNwyhf#qUxaBR#fo&h>f
z3>)FK2{jN6p*Km5G%2Q&&gXNJ7}_av0bHn%wLXRO>MKzM2MuO(uzE|>%Ppghxw!dy
z<G11yAuG7@@3=qle{cM|d47uogfL?qaxU?yMbN55&y%Ofa2e-8!(s7JSSGgxvaf`7
zTVDt*m#5ag2?4RNUCoh{BVSlcWgO*zM<63Ax`DHHXp#Wpu#ykY(xs%688Rg%nC7Ow
zC0Pi!d7HI$O>vs!B9kId=)>@I9QwM7y4Iw-thAzXcDCQQbTYUw*daZ)G4f*J;%f$}
z<`GH~*R^u03CK=TKjjMZ;AAT%(Ox|Jp=3~I?LE1KQpMn%wbgIe=Bo6vu}p9`f~uZj
z@3`}O@EeGT9Vz_$`^IbvU3@00bze!j2f_@1DLPUT_t~Z3>~4pkG3p)8konFSu!s$p
z7#2k$*@om(jVLTKcW(Sn<d81%Se{*vLo}Lf88kY96Eo^)Cb9`5zkeL$7>aI@IPjv{
zU`+IuKbSSomkR!HQnO3SuvG!HYA_S45+MvF%@DsY^pZ3P!<>()EXGJc>p{uJP|{ur
zA_M?p(rsm6a80F!4vDu`Ka~huV|~D-B)V^i$+rzN!rqNIHWG!ZF?FehHBR+?PX|mR
zEw)rCIN>2%ir|(jeJH>x{!bG`k5hd<?M_g&UTs}sscib;#QOt!H5ORgi|(%q?pkL)
ztP<dJT{b3i?Jr#)!OH_b7@wM8%+IK)h);Q6QrR#rAm9XMiAdVf56og`ahlYnk<aK&
z1#@b_rz{m*aLMCh`lM-k6WNy$_M&hHZOdiPrY*1s%N2I3$Ijf5Y3!-D!<_t@yM8zY
zbi9mwBYjVI|9Pr2QnB9Uib}q%MYc*IR4x~nRyaQK7sX-NnT9t1ymNn+9^q7iet~)Y
zA^aWMnm$8}Lbuy9*O*lTfTRlPYYSY3i;|N#A^Pqv7~9@X8qOm5`<F$XLkvqQ69x4?
z0L^>7bM5GGdtg0>K>ei9&_Z+)ulhfg_YawiKtK-5RI3Em_HAp1+Crr*w=}_<i}~l(
z9+K|hs=k-8{w)JPe)+eKa*n=9%){d`F-ynvLfSz6kwA=s^hm8FEZS{NeZq^w`qTUA
zsdqve(N&7rjVxPHgIr`){{?4)4@wZM{|>#n<U~G9T96tE+5U<Y0dv&M;S<^IqW9jr
zIe4$SekOQc_Z@ip9iIg8yLKG}sTH+Mn@!;coOswGDQO_NuIjUX%B7oWEC|luF}pRz
zH)B6F%cKS*72q~E*o}!BafikFi>Daf&EFwW7L--PFjoh+By`;nSKenHksZiuDsGUz
zuN1VF3U3{~W!S3sFCE?|gldI$i;_i2<CkY{X9uGkv|$s9B*fA-lmQPshh4;7Ypr<B
zt(>`MXQPyGCY1M8wUMv1fa0!48@DV}w09+KhGE`^{9+ESn@e2jmk65xjWK8Qc5h7#
z)+)`!)19p_^^vON#hEJGFhf~Lig%i5MyZ6&`c^#;+y_r1<t{L+TO~6-53^u>?{0;l
zZL6xybvrICV++s*57ojcGb8Q@ad@#_FVWB1_9d$mZe-~w#S2SfY#@xap*u-5)4q6N
z-VhEstRUDxa^%v1EkN6N7%VC3UORgVPA;>KtBoLZmYo?pOjs9n)Oz_)OYT6OLjbfs
z+PjmZX)!r^&}zfXivHfmXayARGP+XgWIPW-+Wjx!OQoU1IbpgAZ*wQlA9*9l3Ou|Q
zmOaXjMc5H_m|BTy5cq$?dG*3&IhNP|Yyy6QqwcXsd)-pY0MQneCWi9}mVXWq(Xdd>
z-*HPWH^%R7Q%Qm%q8k}D4!a0(wKU2r>l)q<J_efN-B%~v02FyE8thzSUD^MOr8+u^
zbsQ*dSs~TMJFh<g|9v3^?QrT2w6OrCh}ujRaFC)V8E>pjqK&S8$l*W&vRRU26H9pQ
zd{N4!Aw%Z8TQ=tpP&6#90N9dhL4$c$lOvBU{~P1NVE0du%bS(<apK5QZ_>T-!327N
zp{8ei+ERqZwEux}*p18QVljHaX}^mx7?Rgr^s&U1OTE>%^oIe`b11~GU(1$)Zmoa!
zK7dXAUx(s6!KnL2{04F0m+e2)ERcRs^NiOR`j!Hd=s-lQgp<-u+ul*(pwQdTOLOd|
zK!(Hg497O40*qHq_^=_AXTuTcRBZ1*z_y-aB*Y$1qPc{#R4pF@)E5A3c_NmqaMcu3
zTKQzL4?%{p3{SYqh`#$?((yH0uV_FH{GoMLkiI3cY{QIxnYk8L(Zf7TY?Tc`3~zV*
z8Nf-EX8DGh0xd;?svq4KJ`)D+oN-_L2z(qyaC<&qfRrFBpqj`~;BWD|K5mn-2@BHE
zYwJk>m-8owfU-kGdb~46<lJ$}#Jin4&!3*w!HlDB+6Oln0=k=JdwbZ=Y};>{7Sej1
z^s7;hhXM5gThKS%;xGcNj)#B?tbw#&Mu4_dkk~`VX`MxRHYXlh^{e!=W-H%V8P+{@
zMV#g{ypQwMY3M_FEMPyj>FT(pAgBa~tGiyqcVzzhTBbNHRYyi#)0G1;IS^^YhE_Nw
zA7tBS$3j_f>s6IwaP~3#R|7lOAKuV>ZXLA)yoA)IRV3|*dE&EwTK;%=NzN!h@#X5`
zy~wTy{EvwLU48RrC$i_!-$2J}yldOosJ@vSK@mC@YkS^N1M7c-qMxdxJ{Ltj+P@JT
z|MBWOL#i?_w)JWP9{_w#LkHwOzn#b!p#)`%&I(mW&C0V=$IW6@*b!foYrkII=Ka{~
zV?0A*&H;cItZ0br|4M06@nB(M%~VFa7YLyO<q@@-F{1iYO!0QSfHUMt7?>ev0}QED
zga$BGaL_xs2$r11lxl_FEvEnI6BEmM^DEf4Y#Glp$<Kkb{7%HJEb@!Qt<D6o7|`fL
z_(N<NCT=DoWCg#PI1Ghmbzc6vQf`5}Ot?{G3F2sQKD1FDU8{%ZB3cI*gL;1*xZ)_x
zRBFzRsr&4@f*@x}lmzJB@11-=^l)?hr#nySKUU2}V?E2EQLP0GPPp3PXaOh!=fC{o
zX58Axe~cEc=LbPynn|2xYdIsqh_}VmSm84ls3`7{Cgr~*D5<(T^YWt1d~M>+6#<6%
zFQu%OtqrUCo4=z%0>8z;ZUVT7G~L%gpR!+^>QUi{5cbQz3P}LL6X(<4A8(x(A9}u+
zr)hNp|7Qr+5ycZ7z&6o|&LmC4hC~xXT2Y63yJ!e%E5l`1F4i%rWHE{JnVfKl{AC|D
zy2(m;6N;%N7^Z>OHN@-qkk-ReJaUH2aWKOWypL#!d>ieB>vca46in>^%RM;<iNb3^
zkTA&cYKag2k){gl<@S(J4r#hSfxl`<Rs7P&!^_fN2r}=L#f_MfRYrhNt_#c@@|dAz
zF7=!|pMIhZEi8c+lb|_JX`zxzbVH?iI734T_Hiq2Y#6y?o&LLx!HBgOJ1NUGq;a4_
zrXlt%T(HV`NMg^@G`~Rmc}R+X=yiJY{)l&&k>!L9Gr9l}x9E&sYD-i<tfYig>A}5q
zl))AUk`*IJ;8D8M6bzW-v6~)u*tk5IK22pb2R>Hoz+k5e!Z$E#*jA|-6O1DoWXkmY
z1~m<?-ey6SE$=3*lrUNBGOYn5&JS+`*Rthgnct_vBVw4z8FZclqlt}|zJ+980<+A>
zK0WqfIcaTrnA-e%GMftygzr`~x^cim0L8E22hZ!beVXQ=cp(S!<<h5L&+5-Z84ZGV
zso!w?BfvcHJRfZ+oZgYy4M}0>%W<27GatcA8FJN$0EBEV#*lRyJqV0u^-Rzg!C%;h
zCJ{dU*p+eN+FYi+92V95z$KPdDidqT(;Lp&>O=`Qzlp<(-Mdc~f3yCBwP*3+ouFO>
zoG8KhDNng^T&9ZM!?;r3h%Jnm57ahMNi(?7$cAs%@H6JZb63KB3k*~#<341TR#NIN
zw;Pp%js!Spe(og-;@mCW!J8&lnP|&C2d?m<S>;@fig@2tOZzgq;R*+|xok@ZpJkTX
zrxiMu(p_zwa_+m|(?34-^Z5{;sh1<?<J7V-39`91c?~SG;8}PM=Qa^8NEu{Lg8wwl
z3W5F3c`j)Svfnb^&76&fbwlWjVF+@VDwpBwl8sN5QL>b1F-nXh_*D$3Nmr=%u5LiD
z$(Ru`!S_;zucFQhz^=EvQXJjY(5{ZAlSr>QvE`c4Cc7NbVtjad2A<?;mls%J{)KSs
zq?VR8mfjKvl#xa5zAr7ujO<K9ez7-blJ7Kd*G~QfAa2tmP*#HBmL)&)znoYIMO%cV
z!(jL%)K&8*n^^1+&)%AqfTnV&I<K+S-Ct^%l5$!H;HEit)<@jW9#0iN(FU!zKbO3q
z89A5zXyYT%n3@ED*bRZ$oQ6=xft->t(RIF=v{J$e&AAa9|AH)kdyWXLaMJO#&T<TJ
z#b{x*k$;Q_@*^C?^$Cj!(2^>@fIk(eUa5k!E`Z|}gj%i1VVVed@|emCCOyi|o|Wm0
zZBR|mz8LZVSb4yD>07BHR<AM-Z_V40bXqF<4TBsg%{P)niMfEp^(X+pO4?@+MK)&2
z;HbA@W=T+(6%k^Re?|VoUD6kPn3|f<28sn#MF$szuC}W11AhARM<XtAQL4JEEU*n#
zjE_L&k|0-MTfnv+rq@m=we;&nM(1?_@4JEtVdG6Iz4l&%bpvCzZhw<sF}7Lv-tLQ+
z9yMCkFC&hmf3?ZxvI*TCTpGn&2qA%I->S~V#-A%2SNxq866v+O>jnav>1vz-CgD)k
zSe}{9s_MDrX{$P+610~}t*?||sTW2kqjbLjW8980&7+tx*ssKcuHU8*^gwskZ<jPy
zFAb~+M;jd})HLw{%HwBmmOC{)QUELoyB-T$lrjgPMdSi%Y`&v^SYhuffKvS`uQ4P~
zEnNB$QR9!mK7rNiosrDoNzdT4ykSXZXDe6-VA>5ff9p5ld#{CBUv%RNlC2vk#^k6G
zN!@C@iGHIv!eTtyTDU|{<gnh<cqF5JyzjxAxjYI+gLGGi66=&6N2xDeNgPsK6zY_J
zsPg9K;IfR@OVQo6c2W7Y2TpJIUCtlG$mO*I@(E(Dj*UgJjU^+ElFyqTEr?ZsBob$m
zWO$mY7tCtqQchz?_hQ96^TeCB41i#%2eE*bc8S(7_BQkdl>+?1L$yDQ#Hj+LcOcO{
z=dn`-!j0=^x2|GwP+#4W&R?#w9&gLUk=jmxCMTd?>H|6-sdvW3BWm}@Vx3F9xSzTM
zC-Wq^VTNxk$<IgDuq%>VaWiypt0&3-{jB?s({h!%H0K<Be=<z7R>8HH()h&aUAtN{
z8b_{B6XO-g`Lh1DK50U(obnDKsifxq&cz*DQPk<t!WAN|lPY~$+VZ7eI;C%G-)X55
z@dgNecqIPt;d;r*C(ZNFhv!^}GTr45rDjvrS;@bDrPf(#fqa3|jsU|<n5>O1eB~<f
z%E(vs?SF_&h<~d~JMMcJ@=uejuu8jLYb)Cjj;VP=^QbkOURKYWm#z6J)=(Dzp<si6
z(unl%{=O#K`u@*|ry+H#p<Tu)e|w}n_0NcVr|7oS*!;DIdBNvsgSXSze_q7MJfb{I
z;VMAfq(kDl981ZH#h%>IPdO#}4iS~%+uHK1_d#x?>5DX1v01KTsO<8$4y8DGiPR2k
zi9CLwBkB*kB<h+X?iv=iBcs^~X;qBAN5L;%?hsVC$?SdW-?fF^9x_P*<6tA1su&Oo
zMjS3wAKGD`by`bHpPR?2lUjT-{;lKK#a^g%*<MxrISoqe=5+cDsF>RctPpmh;n5xK
zYJcQYeA8Ey)rW%Yc8Aqm@9y;);H23lvH8G-eUzNk06sbjz6riHT7H4KzO}A?_k#TD
zy=m%h`ZZSgHMRJOrTR6``aO92>E482%Rj$X=Fk6C<Z-70kt8y*ge=bL-yP)N^J9In
zgxpc#fAOT}vH#%gXMRnlj(h%{ul$FY1BQ2=EFOOD69^bH4;cSytcv^6;TkZR6)+{;
zGZOh_>T$sI?3e$V14ds3y!aO|r>`*k<MW(!;G$Mw7EfTme&DO1z-4{(ORX=<6@jl?
z0yDE{o+bm|ybTO^`*k0iw*T};;HE&()?3DnSNmJ$K_6Vd#;XMF+zi^y`YIa|wAT{!
z`SI80pn&HSL0>PfdqD@x!AIUfhXTRhw1VGC2cNhG|IiQo9u$0*6+C@2_-9M-Z-Ibc
zkAwfdJ?Ned{`W5!(DP}V83Yjg2?nqL002n|z%jrGG6GDxxZxJK#Cu7QK~#=kP>5AZ
ziA_e8T~>`-K~qpzgjX5QucD3C&=bCFD2z9h&^47dw2(HilrglFH?>i=v{$jT*RZ{c
zH#W!HyWkyMbg#M@x_TKCubI00T6+6i`vhL`4{;0%a}K@!UwE|J^%$?18@_S3{BDo~
zNr@o|$ze&Uk*OIm8CmgJIX83iDEWoM!^4Y<i@UqKM@L6LfBw99z5oA3dp<-CF_h%V
zo_rq?W~o*=*YFL{L_r#P%hFKfRBE$E&zQ0^oEl?qeDPTcaUVuJe6w0OaP!5%?{gBF
zl8~5`d_l)b&&a%;m7SBDm#-_QP+U@~Kw#v@pg19EoH8y2p>$}pune1F?L8f|qy?Ld
zFhBNzZg+2gi%zQ{J4VF*wwR#a*o1=t3x+;~MMB)n<Pw^9*_x5Jk|lsqFd|_3DFN04
ztKa{6aCmh5?d1E9)3cwyey0}QxkF?4zxB#UYr`DFYTOhEv3bTF)B1UGG_~DFOx4oQ
zknS3d%ET|j_glID+p45ot@hNlZ1UW*HoTBt;f<?A2}|(v0%3<XJpDK)16<72Gp8Lt
zmcb>kGU>b;c99fGvKy{F>uO$pNE}V)H|f6bDDv;08)43h9>lIz*_rC)`E?b|PSz{^
zFlM(Vth$=BkYUAYDwvSME^xfL_n!#NDHSI-%uV4GuI6*7S{Abs5hbjoH(}dy#_1hu
z8)AC8J}<X=Jg+bt=nfS2eYw!uwK7Sjy9Gm%VmC+@cSkkZFKbcpp|55FE5xiffQeWL
zA6|Jx;}^V=Uf}Z7^S^zpk7+nHuwCVUSwD_vHz3_Uk|ICNlzWMU?;MhTnrqAv=*W%Q
z6b4$Ac{0qpx7J+Mx)*<k9U!jF>eA!Yu$jykxqH5ug7Pc5>%=@br;VVaz8`^!kqU-w
zaF0Vq;4%}ULagSRb;WSrK@y2hqPuk)EUBSL%vDDNM__t*;W0@V<~s<6xUcQXs%lrj
zN~7|q6{OGNgByYI`cQ#ZZdr~yr79yOwQ5FTr$`#np_Pkvc>LT53}f0V!l0vqs>?|k
zZX7e?%s~qvShQG2GDAW-3wRJsZVhZEL0nt+$|67Q)l-wj{SZR`<N?qaLexn4MV*mA
zp+Oyzq%LUy*5K_6e$D1E72<2SW)WZ>EY^vd0WcO=ujN(Y+dT7Y(>4eUY$yQGJVUGI
z1N_myU++6#nqPDppZaZlf{B)0_^tJKT1YMZN!JJV0XMy<@I+k<$47d!&oUl5aqsCC
zP{v8eScR_Das&i9TcyaI?0CvR&lrxhz0;d6+KKDj+QtGQmWLw|R<`1Lk519KUubK(
zzZ^fuJ(c`6eOSO?2{b7RlXRDXk8?i0?Q}vI*DWaV%!aezStt2BH`okxC8jW}=FA)H
z`ky2_7YE6+ab4~*82&lfer|c<{MExLg3=YXP|&hoYgd6<Fy`v1w1BN}BCQ+j2o3dD
zSFBo)Zq09F7s98HK@BI!LkvzfYP}1Bwn2S9H=AdEyw|CPtIkkUq<`(!7XNFXDGh1f
z;<XT$PGoQw;S~`HfsxOZST!kQte-FWEUl5OG)%5{+OTL7V1CZNWBcvwGP(@n@XfcZ
zi<gEqvgLk_o&KjTu{o0V$=0`_N@VWT<sHpQH01~6?bxqPt6H2R!rlD0BRl;?+vKT5
z$sm{kz=&daR;Ber)BA#HQV!yp9HLb_B>%zlW4Cq+!j`7=<I$AkL+b&cv&;=GwM(A^
zhSeT_*Y}%?MI5JY06X;D67;^kW=O$d_xk2Ml%3xWp6M5W21(Z~=ScL{trRr*0J4dE
zCrvU?Og*wpBpi|$IPrRq&F~Ud4#4EMHXwZCCP3VQiSG~BScUdH{cSRpXL)i$ssHG9
zNX~|E7LfwJcTNQ}PSyxq*2!fPXG*(v*FHOPN2dr%#!G}03zmP-xTNo&oDvVbPX&y&
z2sfhi=z$58TpeD&PYJbWnVeNr0Q*H<i>;LdR$ZNi`8r}L34a5a<1$8Ph5_P6P?+)%
z%5<hk;vFM0^68|i@KP9k&zLo6b8^~S?OW-bMtKm{2MoV&36|J3*$<Fae*;C7%n0Tm
z;fePGs^(+Z1zlP7H`I+^eN8YI0|7LDrkhXTjM{|=FqI9-N6;$BeQ+(p#SOIF266w%
zH=?CFPfAuI;R|yK^hJ${h@ZJxl5@7_>7|K@|MDyK51kbZj2H6moYZ>fZU>Q605rtp
zYv<~pnDxwSrS3Q#+)ZTv2;i}#D)LPWT?tQjMGHL#JX-X3x+A99c+J8j*)|j>IrNt{
z2PAVWNo|Qps!{<=idJVgStjxRp_0fI#}xY8jcK-}vGY5oh4h|@1cnhF5y-ABlfNFp
z_1!nSf?wYsl9(ioue>ItD-uD$qmxjl93WV72qcwi0z+OU<JjHWxf|}A@gI`fBRA|;
zo;M20j8a@HP+(Nti1*_}023xD`l3}#gQbGPv^SOAepNlVXzIV9yz-NB(54k20`KGM
zWA*SsR5kzVclxH_4r}t~M9X@Nlo1V`1K?fRk}=u$Iu~Rp9U?FX<j`Qm&DEXnN2vPF
zqLD+8tCI8d)_s`SE6PD7rKFqR2TFdU1zWnJwPWkz5;^_Yq5l*Kln<-g!)j;4@GRV(
zEzgA*su>3XEZDf4lsXqtfj)=0)TG01q+U?YNBQ?a%R?Y@JOF&Zweey~rVi0M&JNjJ
zu(6$cyGU$prV*9RM2k>f^qc6P+DMCB@v3<-|9KKaoOzRHOOh-f0!pg5+daCQ1*<^a
z+F_&gRv<pa{y;wP=J=ND(rVZ<lfjNG_)w4!*l@y^Dl&!)({12B3Z1Od-zsXQ(wXfN
zqS8l{+yLhbRr8PU)v$=<904@uW<^jW#S+u(8oDadS3v?WUx8A8o)QAkQ#Y@n(q15@
zhAux9cU!V1eHXCa=jCu14ShJ<RTVY!+4Xn7V(P@x5C=7q^e4f^Cs;zolXy-Z7U9*o
ztnSYG^(x}_sF=_k38It(;w*E7P8KOCI-owc6wpgAnfLTB&jhtP@Lpm$8=^PH&+0uC
zq|r<I0mK^@z3Tq`4#3hoWO4MB%=>49-lBJe!}Typ{m&*myLXJ{&0*TrKU>Hby%WB6
zN4MktY@=BECJz>la_|0mFKW^E?2=WOZmpYyZR<$2>(?GBX&{*HCU{229TKrS%9K$u
z>S#T1T+RD;Hys}#qBSq6OP?Uo=%BY>QIU&*Prl8e_QR`Z&(niuOZc)6v*ELX0zL(A
z2rnC^RI2ZRnMB|3W6qRli1&e#7ud>3u9cCT+0)0rZ?Ld)(rYue`wA(5p(#D|x<l4e
z5t0H1h1ijo{JGIWCAwE#ui0j)#L~A}Bw^QvIeDW;%I;|-eKQm#GuRIQl7F*xfew|K
z>V(FvvTcex{v7xk^&$?_a5B+L=wbgt0dEc5J2Jvs@Vb(&6OiwWnY0K#`fNXHFGk02
z8+~I#%U?#DJ_)qK13%@%T~j%T6_%n;%;vHsUcMhZJ<L9zyz=a>m<pHbm~0kbUI(9Q
zNs9Wyk-#f5|LGBUeVA|KD3E7N@sRAxQzf8>i+Q)ndwyyU;2&k8>%H|eg>;@0V~CQ-
zvb)xF<wBzf_$3=Rxp2wIM$ia_0#}pjDX0jgoBFMwJWdE=&Ze70F~~_kwI%R*h94^@
z>Yjy)UqLGy`iYOAr77C!HbSynYK~zFTGeiZi=TyKkOATb4N5}?ZmT0GYzw*(DwpK2
z73gwNGQQ3SuS=9^MMt5*02}Zt4A@l^e1#?nhfWHjfD01=4G4^t5Ct0zj&K*5r838k
zh}@(|ljTImK(fWv_To9Buj|3u-~Ll@088TotcH|zaeVn(V5$nZ+QH21N@7!QI;(+O
z!!fXFMEru-*q0|VK#}Nh&zKdKu@#j(@35A9nkT7Z0MS{DkKEPhV3*o(m#Xej3?0dE
zXwTeoze<B5qc%WEZQ>4d;t$c@cqM=YKsKr*GblHst3BhfwR+*0iUai`UFJnM$mkEr
z`~%?@sLah)IJ!d{Xa|l--VvT4$DW{%3{Nv^m30uI7@>%UR-k|=aQB=h)|!1o!9=-N
z?tV!w&(9F{WO)l9Xg%DtO-?~rJCE=!=Tf2qaa6&)<2v>ycpGVpFH)Qew=D*HvIAxF
z?cqs+d6(tEl5;nvK)|OZgtg;5wIwsFmz?#XU^LRl0Hq8HSB~0dh#6&yr;)wIrm}Gg
zNRn4#C{Zz|<`@jIN*w~vIZ23hI_}H5LNQ@H#U83dc;%qJYl0s<c}t69r-FvN0nI|N
zMTq({J9UA=0=*pd+E+z1bL#Jgb#ZB#a*p7qHu>vdi%ELT+(dxzMxX<t#7GCVJO^C0
zEf|$AaXr;0vWWyQ0`K0-xuy($CxqMjW;|f26-Ls6bSm%HfDSxz3{jUo`qJLD0a0#x
zR+bK&I9M#!8^n%>Q_7zC7Jt^YigPS~1r0n%25{)QT>hatnG!FMXmd@M(7$S@3(wEC
z1=H?i8Uic^Y;|6yO1oOKaV>f35bf{F!*xg%u;@FVCKX9%>@;JSJ=4GhU0r<)?y9$F
zR$7X=r@m5E$+@+z-s_hPF(1KGwP{fyMb=c{jvnY!P9p8ED#2K=Z$!E1o$7&CA=ghd
zqH7Ie#th!|lDG=<Hf#;?g@#ezOL|Hx@<fcj#Ml&fn%rSG62`MGUN^w;)aZtwZh;X|
zyM_uphQ^NS3{>EC3h2HSRnOA6zQCBJ)tKR#S1ZP(6I?|IG3oOZ8mI+7VlRs#fgX3#
zTC#~5iouo|t7H4?NiRdL`zY3wLf$NCD~UU8+nW1@RBPQc*Bvr1SgkM=wr~aC@eop4
zsWm&=QA_`2kT7ay`zdAKfI)e(?&F?CZ{iitei%d#OsA)=-flU$Wy$iA;hmCIh#y_s
z#cEmAd|oVS9sjF&$j|!ZskQV6lecIaHb<MvbamyX3mQa%Mgl9CprLc!Roky5kbs;L
zCrg2KpE@OcNtC(FVU$o~o8wexL;;+k>&hmr;$EuSDJnInS<(z$LCzD5<n0@$Y#AKv
zRtc##R{)nn_}FFBm8_zPovuB4M17)tASdL&m_LiNZP=-eQv$sh0iBF-NK*u7ymZLs
za4gnyEUL4>3^-1IcSMohS=F2_kfXvOPP#p;X(xaO-<>SBgxmG5F8SQ*s{;;nIX{LV
zAcD?gUe37@eD^JdF%u415XaDYA=OSNrO!?qDJCKkoilan-6P8Q-+<+zD`*@Lh6A48
zKjcF95?#)8R=Zrj8Q*PzyGr6*KX^TO!QsLHEAl&ZC5VE3)n%CHKq3Gj3=fpdsrOR{
zU=JNrh1;!Kdpp`4vfC>Bb9&cS&5GjM?hNz|6}8>HkRv98koVlw-ndyDxd}%03vqh>
z;C2%0zAm}rjw`xvf%m9~#Shha$P9VNoOq<a?6>pqv<L<13X%oeKvE<)cQ?9@R~e*F
ztC&1sf^rvtT@3hWBQIp^=zjAlD@#YOxKuBvqNeaYFX99&%G=w24w-RW;M@VYkN2*j
zEu^6Wr{h4)yt=1%pXlUVTWF*`F>&u=8!EdxMEfPE;y3@j3DMihX*pQm^MZS{#gPIM
zx_X&&zO*Z{uvY$0_yVgKViFx47U_q`1lM_IUP|@D4AM0xk6e5hVSI(mM|b1{M!J98
zlq&;YGZ>{?8`TP6kve4_wF6H?(rv!tSjL0IHte5Ij3PDz1pka$U-Xy|V+W+b*Aszd
zzGH#ntV?r1qs?Ja#US(hEFWnf*p^NBnTA0JS&o!~zjxD}(Q?wx0Y&Cy$X&tSo5B8T
zPj3eB+WmP-(U?r+3nM#Erj|{nPlp5!PG<d?%n1ld;hQROo+@H=%a5PBGdNZD#k7=<
zUcHA!)*d2n&*nTtU-KpWD<GojWw?(d^nMvV;b~mk+7lv*HW$}%UOxEzH#MRHz#u(H
z=k%1tS^2u@PfYGL`f&~Qw*clWRHSG%gUeHvIn&6SNT$V{$Y(#8P{fL4`bht|>Gk^o
zA*Ye02DBT_V7iUSH-|GUX$)V!AQ&xY8QO%lH&jF0XEAfL`otMs>We>rUK|C`&8@-u
zhLU1&z*YEMEZ6wppSgW_^niLaof|6JSA%Om`fWVRWK_(RkMxC}?1okBlR3dssdEP#
zF=E;r_e0qp$1G?L!*=BsXkpxUduY++>@|}B?fFHO(Al-H#ZQ@_%?6%zk68OSItjZa
zu~vDF^~I)Q+ue3x@My50_L3lRskC!}N;hD-u4z*K(#(bK++74AaP$mu9Y#3f?v1K~
z|9z#n-M8?Yli@7B_+^g=u)=^Ep9#>pJJ0R&3xQ>7!ZWe_3%!B;g!CV}@oAcSW_#|P
zNZHkoE2?koNkWj^8v^cN{mT5+8#rCFp;g9t^X3JOr@+^ORiMg*mG;)vrrSa-w~HaI
zz#x8W_m1W?xK-P+_5DvbL;k)AEpPkY!+N^R_ox2WyU;a0<R!ogpN0ef^5)t>F_{f1
z;p1$?6fM9aDuD7C!621c=IjgKqoSJZf3lL6<^gYpFZO!tUmrd6a$NhcJNN0&`n*-@
z?98PX9Tc~n6q@4&gAkO2>Dz;~M-fhWR->GG6KnDg;PZ73BOAS@C0Wvf<~_JTVP}Sk
zk{68rXyeF;U2=B=uaDx_+9GS_-5h)S`;n~`_gfHheU&_#*JA`rT^_ozoe`4A-7;%}
zOrfEsjD9Xs8c9(LE4hNi=;S3`rC<8vtLS#d?s3-Ou#l2dKj4=tL2gJo3rn@w+-}SJ
zAca?m<wsy<iZWJ2ZXNThCV1-6q@~QiKm7YbvxN;Po*L$!`kgx^y;sENYijrQPTmSJ
zRnG2>{oBV@JFMtcue9CEeo=HJaS-S0I6C`$8&_h-HVtaig!-O;PNnFpM~OgXO#Rqz
z?uN>L22*Njti7hoCN}kNKh3`3rMP2qqj}s3*mLh=?&~cd9DFe4SqrjNt)-OhF=l8>
ziTF)y#yV1BCpzOpgT(Hx6zYA(7y>t0EjhLlQ35J`W+*jHzrlBsxfgA;pdzh4nnkmb
zh1bufJCu1P;91uAHA8j>J(_^7$Q~HTcJVUawANjo%VylhZB6cPGW$H!GTN0s&_iW^
zUXs}l$_6DI(9#$J&a+>M=jevZ#!5iwe}cb1roD3$d?^?#d8q25AmP9Yl4!lWpDygw
z!Hw%Ky4k!t(knTBhLL%wCye?=usn|51X<}bu%lqAm%hE71h6H@pe;|-v%lpBp4?Zf
z;gC6u3zyz&mkwe(I51Qnos=A&HtLVxKWDl6#q$<Df2lmmS4S(Mpj32A^rx9oheFCy
zo~P@^Z=*vy`F!q(2YSR(B1KC}my1ida1(RJHc!lEQ)Ph{7k+cGjoEJ@68`=!%HOeY
zG`jPjiYo4XK9>882kbL1QW)W@ob%sLhcvCLeX2Ysg^6Fm?t9?07qo(xlyhiu-?R@0
zT@3bg*X7g1h0%*<yMsf!&N5jT&Autf?EN06{qy-lBi{+TZvCGL&Oeu1R4LnSk*a@l
z(0`|8QnZhh!g$!NJb(VDs3dh`dcpYgIz#dJf8fkT?Z-|(j)UoM{49Q81E#3{T(>Q`
zac<U61D2T~9=fs8CE3xfMj*6hK0enuXE(ZA`zk*peh}+Iw-R&xp6%pfbH}cli|JPX
z-+##i^c+p3GAe+^N|Kh-6~i#aIBIELX1G9Wu78KYl|XIHX(;>pjPI^3?&HeZTlm{M
zTL@Mzwo$BvOq!Cb`7c@pS7a)KZ8EK7q)nx@ZtC~5)IR5?qQ1P)OZF9|<+&GzHZ=!J
zb@Y{oY5%}LXhv3SacfuKqv2e`hH|*MrHZp{bXt4QK#$PNem&jg$2Y$Mj{Q#$cyn1;
zbOupJmUl76hLX3@=q~^+wR?Av!@WVys^R7enIXBL+I-f-rtt#Rd~dV6%Aq?;efifc
zDle01In)Y#tZEE$ALnW(_}bJfobS4*rflh5X-3?Q-l{Hqj?^&ptNJAD$+zk(BVd~$
zH(r`5Wu`H>>u|f7?V;COG<OvgnAVg~%gUbX4uL5d{`%JiFEL!l(%IIQ3`|=(*|&Hr
z?j2UMOqtcZQraviG-YeDZ_dMiIfW2Qd1$$`oPS;ke4#7%8RQEsq2qv&KHs6Db{OD|
zD3g}e``*V>*#?WAZ)?G6P@l9!(Id~;uFpdeb;8zv`=j^GnRP|Nh)JJ-^v1n#6M^5P
zZ`Y#k)&<}EP5Qg~Tj#zOCWsf+ar-?bS#kLpC>USLAPP*9)|$gK!epl{N10T=%#E^W
zGg^(YhC6*~tnbBLuwspg=R@OMSAP)(MLgrTTd*S|yGcwrD*;Iyk(pwhZLgnYq|Pv=
zPRU||bVsB_2qD8zhys-%sgE5`hA?5HH-MaD+$3X(N?zg=kl9eX&(CKdGm|T8KC=Vp
zFh{REC)tTHed-X;Iw95^@L*cHeXaeuOtX&-tK6qDcXl@?xvW%9%jRc>?&kD|X$s2)
z($m*e_}R7T0zNUPb2tGeo@{TN6(BE>-?KvDmRGvKcDeB6C2Yhh$IK`#Rq+ZYNDpUi
zm(<0v>XbHKNDmgMT{NfJf4_TM7P5bobSa^857zdKlr|PRCAGX3K5u5fetorTYK-mf
z7AUbtx8&pP&yT~-LI3fZ(0qo3NabD!An<eegd0tbIi1~-e8j|v-A~KXX>_>JPG}!o
zKP#rvfA}Sl^qu04HYI8=DYG+;awv`pa~E8bw{du{Db}Kly<NH43(aP03z)~5M*n;?
zjm+tVFsBl!<T~D!08nBvRNEP2to4)Irn&LgZMHApm(mzoKaD4akCdhn6RHFN0jGJ$
zH_(<!fc7)29nvc>b4`G{8=sBc3Tk`tb0DzYtz!NImij<R+dTxk^(7&cXEX$3O&nN%
zF8jjy+l=bL+BcSWNyW)fTmB&u=Px$we-n>$5+-sgee#NKT`%Y&yZIozCuWfU{K%a5
zgm<Qao)6D^-@U37cD6uU4<WU$!7W`i<qcllxL4rM#thXd+awP43h?Kgnv2>!LX6e2
zbdZWlq6FUSwuQ?x9$W)g9v8o0#|FCNhSs5<-?curB{B(p(V2UHhYDDkNhC?o=g>L~
zl>p&5j-EG{5PYd%dRl#Q%i;zp{azCz0z)}vTea6O$v_|klX!JmpbPq!F)K3m89L6t
zQi<Ak-!~Hytf@op=pkwPT$t{kHP+k`U190mG_!cZ?gj@J!hs58a~RDu|GzqN?blA!
z@e3V!0u8+f?ZmDcod)$5e>7kuOo7u;kP4BUT!IoT$$qWZAS`$itu^kB#QmXj5Mv36
z;XRGG%pQTp_0BZUn=^fpE+T|GngnrZB^;y?L9h}$G=vMn#76}7BWJMcKaJM-iMfQ3
z_Z^nXK*whYvc*t^1Z@tbEyfxmF{B5S^Ci>8(?oy%nR^MS%44TR%6(Xtz}dGueuKJ@
zPc`Mea?Bwqn6prD_^tHWB*2uDKEH&gFYCf9W>}@DeM?T31S^9)M@;7xnGfyoimH&}
z(9%UG3T4tfA#9+E{8E`olA<TUK)nc%9eYAk#t>`i`Upkc6*CpQU@T3+ZMhIqFtwMf
z;4B{7TKK+?;+T;+2YW|yLiIiI)2cc3oi-j1q;_%jMpLiDKGW~>c#6fos+<UOVS}FH
zC#&3NY@!vSNb!sIHlzJTG)EOrj2{7uey1R8mslLvn|LfoyH&7NSLyJ>bSj5HIH^4|
zn21MpF-Y0<B>~NEkhRcuVv@-(je@{=Qcmu`fo^YoNH5`v`38Wq*SyuDe4gthooWnu
zQFQd1o0TzSrB}%fSg%SJkgitlEyB0lZd@YO8ovx=ZE3ruy}{G&>(GpeY}0IJl2*@f
zm`gu-h*5D=_p+|)gnG0Gvx&1FL*Ja2zcTk3f<nZIC4-?KJzQ`SPA{Lm!s?zv7VFlQ
z7>0S$;MWEggx6GJuVTN(7Sn&$l#vbd&sgtP@JL7!KS#9Oebps>=z8lq5S}{(;Ij3^
zKKniy%2Z|xktrEwio_v`)2m%^c*>jYMxg4Oe71sl8h9Kni1vFef!Hg`04Qc-7$RW;
z(=Y0jN2%8Fa_~w@{h_8~x;-P)=k8vt{A0VUI1o37Z8Wz?MOv=5uKV496)1mqotd@i
zdqOP%h>xV?)vs;y3|w$Gk~2~=Ox*>8RaqMGa$5pr-ii-PX98y}6U)O?X-bkDzILRg
zu9tljVmRxFeLPiW^6`@T?>-(<BqcHO*p8D}I(Iwrq(+e6w{%F=wRm8JUV%tvswF|V
z%Agg({GUQKskm#L*V&}Y_spVxEj1c;-BUf^_btr?LfV7AKL{=Ncag|lFr8YX(ZW%#
z`r@C-O#!^3%D+_c0eqkRAhf2qe7Q<<bp?_isrYX<ATapun|0dqUGe?E(CoWwACyk}
z=F5Ywf397&bUYo{<PVN{arf=_?x>HiZv@{sxclz!kJBf>po4h2vJHsx*)VHGNRo2s
z1}y4qR8Sx^&7y2e)>kD3i{A<72Y~tM$oJ*HCNhq7zyxnyp{gze3%Ke42Z6;p5(43+
zFUocv2&mAg;akTsdPvNZHJ~mEWa-_Je8dhck^cdztOTyQ5b^ZREy@kyqL9UE0Mz{O
zNcsX=aF6pXgRSMgdIL=kwlfmF5>E8IqsC?14EejT>)Gy|7v*2C_xwhDlVaqE7?P6A
zg+e7yQ-{Kfz+Hd7hjLk-$)VPZ(na)Nu12g_Na2rddu(+72k6^Lw0wM6nYY1?d}d$Q
z?~-Z=#rN%E%e20Sy>tCgjv|}poqp}=`MV$buqCqihhtZf5v(X^VnZS{+C?SS0(H*F
zp17e_>2&j()PJK7m)Z%Hw<Zp@Jb893g1Ig7>kU29`%5$`e;>GM*N0W!{Qj`=udZ)Y
zOzQBnzZ}F_0hJ*jNavRL+U4_8u9q@5>JS0|kXki>k2H-GI<FXi^@ZrkFmztAamL{G
z4>h+JDf}~!$^~k@a@ctCb_2kC4j<1WUSd3iA~!&a1PH<ZbJ5VRA|T@a{eYlqnw?~r
z&zyfZVefS?T}&(8jS%kFfsC&io}ejB)&Ms-s<kT?YNg|&AaQrZy~&jdIraiEdNA~D
z_TC{HhSW%LGPO7WSUug1DngDvH8nBTGwy?08gM_WbDA39RsE<+>r5DOL&0@}K5YoD
zMY6u1U|seUxDo=&V<}EHgh&E<SKdP=gD4s~NCL6k&H_;^SlQXQe-p>17|JFg{qD~e
zjqV5VNeHmldmN4`cio^F1iP6Zso7fPbw348(;0L&9n!Z!#;Ser8~>__AB)H^rdlaG
zcMu!^DoY1WrR;K^<2n7kk*q|J9V+)n4tK{Mz<~<pqyk#g>-?(J7Q`SSx&3ObFi_gA
zJ|4{63N%LXF=@-?;lA8|%F|}WJL<#Uk^qzg9KQWb)2+i=3A~g(gDBQU5`+2}+Ib|~
zd;pnj-0gz=$D79w0M+<Cb4F`$V#o!(P%iI3>LLE|P?Z`L5+bO{6AI(i&!HWI)5>rp
z*GIQ(v@s{rr$4=Ly(Z{aaVl&HjfXN{#tt8oY8l<=35LOwB&>)Im%bp>hy<B6*Ay6n
ztPNc%b_0uA(ZZ&2spg1QISB$);!)nu$UHv#W5KC*$(iG~JVC&8%PYFXa^2zmEdOAY
z1*qRS&~1SRsY~EbwsbYma}(IKPW;&G-0oJ^3{4l|jChaz`%!wdU3PENuVe`BwAl_1
zmt+q|%~HU(fZ922&`dHCe9UC+F3jko@V5nHy7lM+8#3Fj=<-c*d4KDzj(947<>5$J
za{XEQwfoUE+Vp6rw*Vw$&pMLfq&+X%Z^!zFyL<b^Vwa%2#|V{_Rp<jK(U0QLi|s>V
zjAh~M5jqC3+sYIgMxS7Aj2B5jmIQy0`pO0iw)Q5<Yh8$QqRf<xy!D*MERZOD(qbng
zi>f+;*zd*LEo_&Fu}EHo=8UO~qg1PEX}$8?dGr+6ZSY)SYKv@8h9r|guxY@#$<5kv
ztIVVz2jON*8eEUQ&HK5lJ|c9FvP4{%26w~teLMA+r?nE2T>Fz@Kavc(LX@u-+z0Q3
zs<A;g@?-zBLj}AUAsyZq<d>2~D1|n(Lf(*OLiT~&HNQOk;9mD6(HP>%e&J!cW9C~j
z;hVms<;mVB*Lg7?5r%9y5r3+`*J-|QJN))xgt^FdO!D=!=bb+g_`L<=0lkzkgLun@
zC<k%(tZ-a?Fge{IIhB-5{YGfcU}kEFSxI9HN@K)a2l$8<9~v~&=G}6}nMeRfqbHN?
zIN11)oM;tN3#L;or@wzau?tnS_pM&9O-;Y=gKziA=-<sK+sIsKa2P*N%`8d0y#nB*
zqguQ9UeExtv-Yw<X>RmWIq*Hbqvk@MJ)l6E<2t?DT6LbZSbi-q?+%BXwO@%{6TzR(
zr0$ys$@s2*V}ap;j!d)5^Svs(F{G*8)@HLjS*G&S%X=Z>YVaSxFb29ls>-!$*Ic~2
zzYXmAcXwGOk8;$(7m23Ykgk?z&Aonnx}5ie7XOos(3~}X()pSDZIig637y1F#utW%
z6~J~&kB8>382&J{Ik_`MMzU!7Kc*JaxSb5Sn{@a{s6S~`VsP`hlG9_o-D9rEk?7Bt
z`=jX(Y>3(>{?A`kOMi&o6dT_Tea3k|%f{nnWMFXDW;LUiv?NEs`FHNYfMjI$1o}{l
zB&1_%`dndbiJA1&XXGipFzt21WQ*C;WBgPvz39X=)>R>FH8M=BCvbRX`Sti*gU6f?
zXeliFMK6a7dti`6PlVZN#9e^F{D+rzQfBXl!o#zd{t1Tr%v`rRjSRI9yu#(uAoV(O
zYb7#gRY~McSWoor(}<|k=)$O&(w>-H@tAVu*t)3LM*CCg<@F}zxUQ(Uz9=1PPu#F_
z{CHHn&1T%xY5ctMjr!&IjFI<BDcc&%@1J?TuNc1Z4*wyG;g(G8haBTuY2=&o?@=$K
zNKlpVAnA|zA+GG|k7{(giC=q>$d_LuZBnvh?#zOfNyLAP{R-zK@IsIduJuu?`RDHH
z&wiApk*~69X9?G~_Io!zwa-SnoM8!P*F{u(Um4Rp>)`Q@X4!5bkyTP3oQ7$8AN<OS
z03I;q^}-Or32(fj??fMojviT8B_Gr&;!!yoe%#YdL9;Ru3Ft&wi*MbXh^$=fV>}pC
zlcBSb;o*MrEI3oyVtb?4Z0d+o{yzEPHdu>Tr(_xA_7Lis4T*F}W%`+;?s@9@Lo;3m
zOFCc@SZzqphG9ZP?w7z;wk2AI?C5HQP#%&QAew9QroGf(0bIY)ma1AYf4UEB^jFim
zSbnAZ&@l8N4_6ql$P)c30JW26^2HVS#vf;n+_b)u)${$>O%~NM4xvxk=i*hRM-LI=
zmf-x2?0g~sh65K10$+U83|Q_={R%vg0WG=#MMKJ@<|wiR8s(%8<k2s9VT5+8>933P
zzE!XloYyWy!f7tj4gNLqBgF9ZN;%4}^0NnZ{LtL8{E|nh#J#dbebAqeYVk>TKNQA_
zuaqdp)&!&J&m%O`aV)u(&|DJq;Ry5r8efNF{=30YOq58|R(TWx9I|BO?qsxn&A8u`
zZ7Eg1JZDYcMzB{4T=d8|;Nn9yXMS0Qew`CP!Lk0bM7K66mUzNp^X@kUS(}T}-Z^UL
z_KSnQ`}90@e@I(Jwt<s*Xjo9SmA|T9gk1GL*X6oHoW&U5llg^EReSiIM?^!GLnoBo
z<jB$Th{G|o)jqeQA=L8G5ofs7UUV)i+j5J<1o!RG=5R}HHr|(ItUPsXa5>&5Ewa2l
zR<c~Yd}g;V2;O&u<}_D49<*o2=<o0?hVolg@w063v!DcY?g}`568ILHUO~E~J#ifv
z)^&TTYuom}$ju%T>-&3xPVcQcKU*;Y;vjaWU?p{)@hvrTMh6V<mCZ20)7ZhOyD)SZ
zTAPZ7{6eog3Jvs2h|-Ga(PH$%G~cS<`@O(mEf;|7((c$3*7J7qZqLjOiwrx4fX_5v
zkHQ`=NF0%}pL!6`^Suk4-pt~nY1X0{=Xpc&I%1{A3}c&OH4E*PByr7ZG(2!*UEWk<
zQ0(C*kY`XLjoIHayUM9%LZonXlnz7vzz10C)CZ2Hp`a3510TE6wfhDO;~y@DNtKUD
z?R%P<9U5%M$<Cl<@~L=={FB=sWlB4(%1;=HTR3~1koQyRns1IjE(VCI_+~dzNP_cF
zGzVtU#I0(&nOz=M&7~CH>$N3c37CB+*yn5YBD8)6qOCZZh(^1k1>Bhr<Jm7{xWeVQ
z;VS#=pdmT3)YsQ;uOg<jU2448fIc>r<}l@K6Xj-SJb6?7CR>rRi$Z$sRDch+(}H$k
zr(1fx`n8mo^Fng3zh3^Lqi1tItagD2-CxUmCaU}@PI81z<?y;n`sl~Rzgq4f|Hq4~
z(7#YbzeDj2_JBq4wbAfmn*_UbFr%ACFW;a}wHx8@x-yT!mBg6iMT@h=L%*>nbc$Zt
zwRjJXCthx^K8%I*v>2WLwywq)-z5?**DP;yJXr#><<~h@xaqKr>!>R-BLA7|vnLpz
zbXs=8<n&xiyfoxq`}prVbpP!WxwhSy^!9uB<p+RGL3XuSGOU>HgV@i-%|{=}NP~~#
z43Q`QhorOqYw~^j@DesgjBXsGM#<>L(cO&*qf;eB0Rgu$x>Hg|3JOYzNa#kFNGYk(
zf`q83SRWp~ujgO5f4HyfJg?(@ydP#iGG5ojT}Z$)&_#G}n7l-pe&0y;q@O(dV|v&W
zP37=kbIdNoh4|`)F%bH?aRFTpp3foyZ3%&c^MT`qL1kxjjI$2GU4VljA*BI>@mCE?
zkKZ*(NF1^o?|LqLGH1S3aqkZ#!YW?pOPad%N4LK?|ESRbxjf?!L3tmTqQn8IxZ44@
zxxV`|2|c**G!y;(_QS#tx^!>vQ<9t-2<f!={{>x6?DdtQM#|FAA56bLk{m7pTQdoP
zXJn`U<ng0$-%E-{>frC1C-S`b5Dewg5Zj$p@jzuqa3F>A?Dy3|XR&_gCnijkAQu|O
zbz;<|$Wi><5S!st&y!w{t8*)WUq<ZZYFsWwe7ZcKoIhHWF9R=d^1L#_38U)=W%$M1
zaA?jA`=$q@Pg*ca4J;COI~4i!k3m9iM*rJ5!S>17828Dn0N2jlfR^Z}&!K%C(H0jC
z)AB4EDhP1bUMxz5nWu|@VlJ+%YgX@`kGJI#(ohK|kyv?!CFS9j9lj_Tmkum*YDbf=
zmJ0``LFo-Gi>7gAfu<%cRAB8iF-;}5S0EGpu+`GX&DlKUdgQI!cM?-FatiL2->-S_
z=t=u|tY%<j;`Q9Z$_JLw>4R@S=NMgVzIdb3FWNFhhslQ}L9y&^j50F>_Cap8nhKtV
zJOd61n`9f-2*40M^95XC^o$oj*pG{~H&;ozn940h&WfdkKcE45Z$)sR`xnxQ5?s;0
zp3h8xl;x~YHuBYD1&PAIqxljuekhlmyV4n?Kz;?u%4e;HZ~bZ|WD$3umL&CNf?O?U
zVxV6Od(g>}fsFdc_hVwwqFilh=ub26vwEW%E5ZD*^|dON1EKHLy6bak9&Sct$vMQP
z9HV<2z?o+zxOL%}mMwc*<#4(4`sP&gZPm~3Uo7l>`}i4^cqNN#OPiTt?>W14Uo?J(
zN%t$JgDivhu%;PbpZ^kMJpXTkxUv31(+-b+2jrB>OoX%e_o{yXF@535e@TDBe|sF?
zn!CsFJACuQ9SYBBISHY#NJ(VT<EbLE+cn_B`oDam0I$c{f*7{lovTuNE9u^(N^}mA
z;w0J@t25;Kd1^8hXI(Zi+}@|J6aBN!C`2fKEfwUsMh>jW+jAe*BN;F6P!Sl$vD!j=
zJJ-4*XYW$6Yiiy+>);ESHXs-uRn>~_a!_eKH+>joCv>!n_d!MEtm}iyTW%#j$<bez
z9^AhJ;%lHJvbi-ByE6ndRA(qGH`L_l@io@oL~E?p-t{hPtS^sPZhUY*!8Yg;CEx8~
z<Adt5hYufp6906ssh{srQ~RvjqvpKsZkDU;$kR0-3V_fn^xC~k3*7t5chJ%iMImZK
z8O8me&+INYKV9%XcWi4YOatL47aMV{bOHW#AUZXd&DA6KPZDglHRW+PJ`hLh`+0HS
ziXo602ZT$&Rz|_1GVpOf@Z&Sr&vbp+{W#bRGnLxM{sb`&WKcX9g<ME&!P;{*mo$%x
z6u7rNSn;mYqwlCiwu$_BA;5t~<WAcsX*gzHd3Dsk!aRj9q=3$A6IZ5Qc#x0#VS<!t
z5D^M<P(o{@+3c7|lc{<P&^xUJ*NHeM(xNw_P!a7M(5I|wn(>d6?qOm>28qvIdG_uW
zdv|l7EehbLDqFY@T{HS`@>S1gjw2{T%FxXl=qF18NuGD2+HnXpL0FGrrbD7#2}4HF
zZKmc<w=0!JJ|=yvu|Q35ip3ELZ+SPb^c+6h)Y<IxHeenGvM{<*lZ6DraHaiowtv42
z{S0;oGNbIMV5Gs>H?2eZ`0!p%JL`YTx|0FSpFy<iA7CJsu8L?5X)W$4AoK1sb6}em
z3mtfxW$hFY$-AmYUl^GPk#c!G68rViU0ym}sU^D0)nT}>8&oKM+H@@<fQInKCdSON
zGgZv%d=Rq~mP8uSwS6tb6k?_CBh!uEZs(145M<bo#}R)&a<<3Nm^=Y1JzQ&STqach
zPd@9ox8E<)%@6XtwVh!}993nDt4l`mQ<3y*pa7zGLMonM?}61j=v@ONg=zZtIH2@h
zqRH8}%|$5w#6E{3sJ(?A$Bj1XwL&_^v+{D4T?|AsA?&L3q_C1w;HW-YA@4hmm*dj(
zBlfs(;F*LA5cpamnMDf_9rwqOM=`Acs)l2|*kSTYJeR~3M+VAE-sA7DV-k!drd%|k
zL687qLsU&Vg`=*=-*uw9YfS`wTqhge$RNygt|Q2B=Nti$I12IUzrNi=8lga^$`nXL
zM<O?iO+Qew8bOcOg>%^uQXt*{Z#<6fKzWFT%ACErMnDWIXHbw}v66w!-4|5S8=@ZM
z)SamFvMM!b>9bV2J4T=Xlg(916X06vSTskKV2Qy#^X%4+5&c@N?KMLQ*dY#)83|Co
z1}?T;6BeotqbKlXmIc(-yT(=*ILy!2-2#ra#;Oh$bgqH9OqO*D&~uBf8_ZL7XWMr2
z>%a$wG{#1Z*Pa?(=cR6d<k!_<7+qT4JR?;f3?n+%<r#MiJY|&tJaQTPJ%XevKdus)
zWD?8+mFOrviG8;ZwN0)>dWUm)I0DNYf>Z`HHflV>NLZ`%A(oRSz<=g@h?`yT_BbL$
zcGS;}b00bxD-4ywd-<zAVkkm|r9u}8*hw4t$8Z`nBt{qci<-i2KquN5)(_A0q5Itk
z$hiE*h#~zGl(V)TY{o~p@I3r2CKnHVhr1YgcYg#<LG>&f0tc0_B-idxNX@o%%tXlh
z?q5aM{o&@^#Em4W|Kyv6>gtV~NQUzG8OFX4vRM*Uf6i!~cj5N+fU_WmwP2^4;-1JB
zPRgmMa{};%CrnCJiSnE?+OPBK5?EZEf5M?eSJR$aP4AE^sNO`(Sw>;dX1L+vY|fj1
zLkCU&z!|u|S;2&J!&MnjP6nsjy?R0lc_Bp}awYiQX<tA=xqwjR!QFJM5jjB9jx*Om
z7j`C{tXDVlLDKyPbuu0Zd@8&yg)p2H&ZUt0j$bNB*n@*{#01eMHK9a3AO=sQ6VEl}
zny(^u4nYv7-$@QG^9UIsoM9W<-=+fa+7>`#a6`Jt$80`#p?R7~$L}$i=}XYD(V{a#
zKiSuG+Z*5O2r@)nu}P(cwpz)=KaqhZC76Tx*6wYw37mbH_}yJrkBA~>@f-ks?{;|b
z&{}FJskmizhNJ{Bhni^;?%9p$P%I7QmCrEf)?>*U0(j1U{PJyc^Snm`)hY#0Y_YN^
z@nnat$Ippy>&}4bpT3ZXe-1z2Q4GFCjE8Uu8FPj2iRMQ2iWG&stCaM84g?$+sR@qG
zhPq^Xs!MkEpl%tr<FzVbsaz!@7Oy~Y038k8L~e$bYL2+kr3qxmWh{*-dC5mw(nUBf
zMVg7xA}(I*EdVjN9bu#83}lor9CgB;R9{b&NjQI1X<zk$2=!&bAZiOeN8jIt?(_c7
zr%I6DcI?>TY%Re`OW{bkPRil+OPgTA5yI<io_oS65Qsp>laMF}zCkRVLLo3T8B0OZ
z=7&E^RS_-3M}SezY2tIC2=`r5QmXS`<7*d5a2Y&EGS6`H)$u9))(}uu4G7_y=8QrR
z`L0Im3+xaMnIa3A>Q2E@5cy<Jo@!Q|3s6xh6S!iFd-&J*$GlpJOeuebeyxPf!u}r6
z@hdL!x82eC`SR%B=fq1Y7(}WO!|d0wUV<=l<EY_of5Jy;Ka|46pXPS0{QL@0F^21q
z!1Jm=C6O82>Y&P^t<#CY-=`}w$Ryi9dRYj?at-o}m26o$T_}q)8@+$0!^pM5&@IsA
zh=_96qB|q&dSfS#vq+u>rua4fGcTF@S!rCgf}Dt(^P-DM2$y#Ol;q&rH*|cQ%t@X|
zhIM4Ne(b9p?dKeaq3_<tBu2`(v<t(CWRsh#;5%`}LAG8eSU^QoVoV83R?NC80LHVJ
zq5*@kEdxm%`ZR2nNEayU`3NDtivOW7>+-tbhOlZ=87Xv>n&dc{rJuK$jN&s(qdH~Q
zn(*(eqZPbGItPTLU^%C-Tok)H5`ER(yGnFSxI4ArG)si!jY;>`z*UpZos^kyzSx1%
zEjnophH@KtMdpUgtha11f_^Vm_S442^X@P!Gs)lHScXk3n@<_QM;`5?AhoHGJ}R%U
zsi^0pWL6WZwyET{d8X{`qmrzzJPdx~VA2MdXp64l=E)c)5CllN>W|IZwal5iVVY)%
z8q4}?K|b2cHEO4h&*Bi|G5sE!(dV`1Zof9!)cemGym7i-4wjjH$7Rp)jG?<Z$WsKB
zae^A=O>PGC#|;k<5(g}7`(%9ejTnuy^$j%o*9jmng-qALqZ;kIK$z4X-#S0FF4j+u
zci<*&fG3qe)>D&HnW^L%i!F*MnnyHGv=#|@HBHGdIZC#E3}?V+y><81Fz}s~v7FP&
zk`H%!gB@BJEEkD>g*%zEQxJQSwe6UcXsV)TYt?TbM_>ypQ>yj5G{l7H5VibN=ke*)
znJZ1=+Q8YG5()p-q$9~%_XSn=p06GHvWpqaE8*=9W8$Z^#Q%<GF94TtYIWN@&Id`^
zZo%N)R4YC;am@LQA~Z<1C5CPhLwEW8uqfvcT~Vp1&l=12J@UIYwRL2{o8{;+!IbkA
z5b%}9dV<Iz$w+e-8a#1e`5Txx^VI!UoIWQfH9VpC^mxeD`?YRKA-Is&ESrU=<u#__
zbvo|jO*G&aBQCbn7OZ7?tDpBP(mI@!2kaxDjc9)cb2z4RB8(XS+hu_>WS&7Pm0(Ej
ze50WAj*QHYYJq$f221~7MAQG6JqZ$?CICPh@ImEA?m#~1o`34{W@mJ+hyV^2!wN5*
zK4Ykxwql%JP!nJrLozMp##t`6enGM`L6Gn~3t9s!+>~ueBCg^xhwlOqkI&Yjuo==g
zp9^zH8Xy>r?l9r9e@|y?%*gCEtoSx^Sj^j#NAkq?#5;Cf)odDpc0UZ@+(Cof;RQVJ
z40(ZQJ|;3>9f;pBhoRS&c#+;rcGvr)pg<$AR~N%G9mG^R>r@fQ@w~D4VvuzSkvkMN
zVJjINybS09YNYShGmD5M&4?JziaN4Mc+FmSvy=E&FG#j)e!eJIVJFo*`(!lFn?bkE
zgG>G$+kFkv#pZ{stnAo$@=X!}vB=19;Qk7gn90O0D-38k4`yiDE6s3<VA#(xmmb=z
zJ(QOXk==fXJy??Sa*5#Choc_RjV?A8Kg7ZcO^^=o8}$kfnaW-TD!Mem&?!|x+)$Ri
zdZqnpUBAZDxkVyS%PYxbc23vh6Q-g_QMW)d8C3OS2b)`<UNz^0V-qo96Z4X8*Lb9{
z<W{6J@-#Nk<)IyO#HX=~J_eQ?Fo*g0uUYp=Ge$ui&BXcsEC<sx$YeHYbccgyy@(pN
z8eq9(8RY6cWw6yi{K#Yc+RRl7P-Mee<ajcl<;I2hK4|XRY;}I584{(4oNZzhj<`vV
z<|4a<)XV=+G2)ylSjRy%$EQpL2RP8NmEb5p1@?8M-PCuMY$EB%oW;x|=d*PM#~j@q
zErhZxjVRPb7|mWRWz~Dg@R#Hqo2)9-2~I2;6~|zX`Nv})E7UK50L4*^PF{7KUCOH%
zWv&!PfUh7qC5AT}bU7%zc!{zkBXF59n-^4w6O-~BB{*^H9tA&r8{%s~-voOtRPHay
zf1{L(A-V{_+c@#{zJ=}G2wmOCFIg(1T&i!JUbO<RJzcG`HM|a|U1!n_)6O>Ga{iF4
zFT{G?;R^WXRp*<QwnFi^|HPT#TXHUGPaM}A_EbKTi^~>WsXYg%`tgg3YW30aM_}&F
zhr-m@ArEM5HhF33aP~uL5^z7_P+B&u9O@#>il25%Dapc}k^bfIH35h`A(yL<Tj5g+
zXhLE*cieGPi9C<60?)7R(i!w+hCzp+HJ;2vm!vB$$>HorUw{X{xl?UFH|Le4`K5$3
z*Nez3-|sJ1vRTYbGal3kFRItOEt>=rDe=bu;j6l%$;Ueydbzq`0)Nn=;!EUWT!A_-
z(U7-r=D>T2Z_riXZmA3=Zs|@utvr07ly{N4$#tffU{%O@(vKBsUs5tD1C1^fY#9ot
zED0Bs^5!hXG9Iz;r-*(I9`t_rzz|q(nt1O^>3wYgMOGg6RX6l8N44P>fQ(zs;b4ur
zUhQ)^HPO%m(=u1x(5=O<>?`s@ioB6XZ;|_1_ahX}1wtGLV_%eCqeV%$N3Sl6OfFyE
z$fY}zf1EY;I0`IqwtSxWZhv!4WcAwdu*c*-Yb6ZmWl6-2z)C1uPoaH6u&TZA)lnM_
zq4h+ux0Zms<J9<0Q7uuoPtX9trm(88d^n>Z9=3Al6#Ge`tV<sEymW<6$rtAGZS=(x
z(${wRa_d2llZg!n)my9FyNVJvQ<wG)C>s7By(6u1&JD`JG_N6A>FR%`r8ch@Fxsn*
zCKdKN+3}#uqd}|49!1NT)yTk)ij1pzh^s21tH|2b{?^setk2>O?lUS+&Fk1lOO-i%
zRvo>fY(z+NhMe<HS0{jIC!3B=ChDv222*gkv)6*03>u*6?TmWAcON?4okyI%UQMhQ
z1i+7zJaVuX!ODoB@3Y$h$Ffg{mTtt}SW@9onN#l%*gpxBb69)_T`GMCY$HjZFAxT=
z&~*u}j$Qd<a_`;09Xih;&XX(fzk=Fs7V-l63N7<Hjnoaehj^*b)=cHqM<KGSdKX8Z
z-c07a${XbB`aUw?o^i9sexC<Nw9syv&^Dt-82`N;SKJ2YGi=?5n8<s_B*WcCDg)K{
za=T#Y>nrpH#1op5@^hd7WpUDv|MUk@6438-1LU6w#H;Fk5x&xU^#Xb;?^El&{Z^_8
zeS5$knq+N(byMf^7)aJ#=*EDt++RKHmc&^Y_r1DgzaLQpiJzY>b*TkSbO~p9T56@e
zLO}u=E*Kh+za`QBco{fNeo$MvU|Iq(bLkX0@q{0|vd~%sl(|BMD7lwMK%~YY8ohi6
zAaeQ{$b$~7V3^Ow*t6L6E2`NX``l9lZ;5+e(5`O91ISc(zTxuh&-X6wX;essKxTE4
z+oXa=#+p5j?n(*ec<&Sch3@)a6#kT7Mh<?VzhvzPhbZRB+0MyD0Y(nt!|>DSK}t-4
zVt3HFEaeBj5xkyR6MM+x#WS43c9C8~P51_OC(cBeYa>9z#fxj^Q-Tcq(X&;qGV5la
zlsJp3iOHP$;S`s*Ri95|iPKiR=!~=52fyP|_1gyqcy3w_Z^bUiz&jN^1n!NrWf(s!
z(4-3&xpv}}G9RVpyK%om6Jwn&{MZa#e7i5@!}HB#(f>?xF;P3GZ9Qk2z1HL6_308n
zdiq4-V%9aURaBScrm1(Ks|?~abiUV8y&sNx_lIaL$o?I^{dXj>x9mpT=sB-n-g~sT
zHTLN5c)Qkkq|L-Y+~h<YIrH!2%HLO;y_)mA8kw79f)6!1vX#KcNu)M^rqg;)H~Sjg
zVUenpka+!L+<b_SPAsC!qDP&vmJHbH-A(dj^A#cUBz4pqI*Gru5S_N3F0l?UavB-F
z!PxeQeIz<lwYPSCQUe@HeYQAxCRkW7|0iB0`@ZE`trgw$YdyaOKwT=#Zv$aym;8_1
zA~rAZThqO67Mo@8;PV!^+1UuVQaiX3n)tEjRr7+MYHz(o4OP)qk7IS4^X%WggpX&o
z(T7w~U#rFGo>Z@|nIc**$SvDj0$S=W;#<D;J0m08YUKUX4i(Bu?8UQ>asIu{P9FFE
zOAAPJC68R~*FK26qq6Cp?P~FmSvPF<<0<>cuN>AVq5&t^2OMe-lx{REJ`Q+k{~#(M
zK0280`|pp)E{Q+(EJ#L%Z2fgCPCRLxwob!~S5EH|)^YWElg5v}RXYvQquWun%ry%K
zT#bBb1@ErAOo=u!{?r{Ax_kBwoEh;2sUIDKXY<l^Yth#*bBk_Wiv{w|uWlWj{Dm-a
z3W~`pYa3cRUh%sc6`zz<biN9H+Bf8vU$uVty)Ha@FIN*56CPs<pNI~+sblJW^IEbM
zTlhWva<uL-?%J4D89wL-n&l-p#w%7{0Pk)R<e#@27p?nj*u&S$Cdi`-mX^$o(CAPr
zenQX)MigdBFRTls80F<RO(Vy66#UH2%?th`#9r>T4vZwFp9IC)GT`+30ZHxIU`#yD
z#2ci?VQN%d9yTlfLQ~SYbJbvs?LP92mhyLpT^n@5e*lK2h&97x%qP)p5WmxbOPk-T
zdxqsshi;u$-@Op*INM)%0u=R#JAJriFmkR`J>Vs*(a1e4_e5DOP7}Q}5dtlfs`$%r
zwnY059Fl#G2>v8f0j$lg)MUMAXMqE(UzpVViC&4ba4_AQgNZkV<;4JW*@}c~!>Ukl
z2Cjzd?YV>a$d6_Lu=_LVegHMm+f^t3$_KkGUlLeaFs&5o6xX%fIE*|&%p&HAaVlz-
z0@<mOWX9TupZmc-ua7*#u)zCyMk&wg3USuw{+x9xbb1TlNU}y}j#pxkGzR!`=78lh
z3?^DvL#%KGaFN~GK;Dqk*|*h@+mkGB<g``xh+CKkMAL@~>VfjWDZg#ubz3m;wyTpp
z#{D{OX8_AbsBNTW+D)a}@jPymwLxY1bobhE;8A!Yigl;K7bREp2auLnCZmXb2;0P^
za+7`1j8*SGWN%f`4qTTe<=&uGeXmy2RZ&N-r{`xDUM|Gw{EMS8`J3R^6GLSFD%e0>
z3w$6C9;&SiSnDaDOdzccmB|aWcGVDPgdy$C$@?#ClTt_*;DnUjw4;&d9jJ<nSBhAt
zi%(8e(lB38iEmA&(%%~Z&dK)bdDdn}lDSwXT>nwPr3Mq2oKl)Xnq<&WO_EHjq2A^A
z5))mhqM^)M5*s~Ecv))-@r)3jhbKy>*|qHD+^VkRaua70S|h9FH!Nfo-V;3O*L6SR
zNzRYOj3sX-Uob*@i*~95l}NKT#0@CDsh5Si5)VyDQ<>=MA8tcc58$}xtDMG?pps0!
zKWE^a7A@xhOrkI4(e?1XpR5tw_@KT!_|cOW`b&JJxV5r6|FZg0kC(o84;JFuZt}D2
z#}~H*z{jzbQMIC$SH!fUh2?ZQn)<IW9a?#lpTo;sc|_6YKb?;r(JSU`ooYm0i0Cf-
zL(7m6=%6L)--5fUmW>y12403!D>F3lf<`FRkNf0kUecN*q5K8l(}tde8*}uo!t6Q>
zn5wT<1nz`_d(Y290QDb>^`L*YP6;th4<5XT-G4HobNg`9?d>qeB1|KRjpq#Y@^9(q
zwDQT58I^qg<<EzkNt{kCw+bS*n>4?01Nh0GF@F>2*K(1dL{=-a0Uj#Cy%;joXqs@6
z=y}1;20-5k0bfIU{+hg-^d%@4sO1fO%C<{KcDEu#*Z{(nu)u*9Dzeaqyr0UZce6{_
zn)}NY_`uD6%?iBJ?a2EQM^!Z$US@C}w?R03H;+Thni(Co{G(RQP|9g0-FXo0(xGx!
zia@=Fb^%_1MRo!+^Gt#e)fH>Tp#RBPE7<f;3d2}tO|An(V9sabbkq<mFu-3*094+U
zifNn4%H{Ei)k1Xy5Wl2(aU{ZZl3=P>3h-_ym0KKOEEX*<Cwms{wV%2nZz{wZ{$|`5
zvEd7~@MpVF;j0I$j!wZhu^^uw41TfTeWoL|o@0syMx0U~$#Bh;j2QSU6gBqA{^t#P
ztw#d7VWmeYTWqk*e(jcDmy{kiCx8Q~<0`Ee=<e<F?YiIyD(jcTk7sO_AzQ##<f+J{
z0{c{qt`X{(#7?d$Lz?$r(l3TEN5ik94fKX=6xwAta>S}K*Uw+5ZJGp>;F4hsnqVm_
z9Xz4N&%oyWB-I9(<ZzuZUB_VpNQ=yemv8kZf?kZJfpR&#RhW3K?moA__hbISCFsM8
z-6M$JJSvE(1XtA(LE`c~&oH*&5GWvp(SZP2sjxb;Z%((Q*P_-4s!fj0x;(l4KT!I3
z9j-?a#R=dO{s&5L*^d0bzE$@c-8z{bX#h_CW#;^n?=9f*|La>_@NG+_h;nKx6?EJU
znl9mN7PFB)M}(O%^N(7YLe6)Pe0231oDc1oO1))|3Cs<+N(-Cau%<d@CIQr~SA<;~
zjdQO@L-Etc$}C<6SRPJ;keU`>63~6EC$tX_k#R_2mE|tQYyAYyG$SPpra=Q}r`Dp%
z9mt^c`;+y<T0#k&cTPI_JKdYU&q>$gwr@Z6|E;He7D&gS-~hM|*fP}&GJ^9_A%K@S
z>hh91+x(9gCX_X>z$pM`c82fL#S%otaOBUOAw}E`fafM%BiqGgcqU>|!rzVppkO%!
z>@GqT(jX)X%Xl#?h`F;Hncms{De@oMXG9OQ0!IQ;qy{@R-bxWNe(eFcS}s=iFr8lr
zwS04nz6^@0eXiGF)h=1B=e?MUB6)6Z`;cAPCHoR#7OS~g9#&+=FyM@aEk<G1mGS1i
z>-WC*2I%~JF8lqv5MS{y8S1;ldTV;Gq2&`%3j_j6yn8Id_KE?Dv}Ko@S%GuC3&e4_
zG2eSpR3)fQN5>e;o|7$kW)%+LY@p5)O*`sX6@$zs%2=AFSTLdQYBUd)U%#Zg*^;Ck
zY6U3c#wg$p-5j;fYz+8}#*)R^NDBdKh|*v#e_(T3-_>ikR#rYRC$*L)RflBaz+8(s
zhTpmj0Rs)IAFY0N|M?4e^UKYJhNGp>`mQJZT=_uddX_G9Ok^#jWIg#|K!;qeCUXB>
zqv}wlYPc5eIInJSk3`3T?}caITHU-rA2Vubm7bNex+P&8Gw%2zLi=vTwp>cgq@PY?
z*@cO1<&l`Fs27p<e*WcD{TVZzq;sR1JAMcEYzSiTuXu_;-3xQjU{|2Jw^;xn=5iu$
z=Vpn4Bh>(Fy<-0?ottfUwHx>YaP*6(rLHaHPf{8Lm;u&Hp}X=z%{dcHy$0=ztR~)S
zxh=s=0kVaj;r1UP&DbzF5<7ul&w?WM4dFh!n-h<dKSRJO)Zr6Ls$I!P@<&6!d2`FX
zZ+Z$Xov&WRzJ2yS78sDmpwaS<qd^GXmj^x?Y9Wjdn$#5R{tH#B<lr{H1swYM2Z3ac
zyZq@MT;4+$=8_8<6S?O$%%e+hGc9qq$tab<o$sX1`ky6|4vNa9ch1K%I`^Sg%JFC9
z4^QCVYVJsz<r2JaeT@C@=Z7;#_GgUxnQ@zBu4qj$EY9~=pAx^0B@XDQ&h1IU?R6)<
z1Sdf<LG$V$C;oC*6D^|K{oP*}gAgLLE&1a*&N58;Mi-stQms&F{nr{$`|qmDmw{Y=
z&+`u@F9!a+6gr_@FklTAVZ59V>L-=>egjOol!0)1Vg~RjHMwaU@ZD$tOpPQw-K~4M
zUufo;c{G#AS|(#ts&N?nVj);bAEd+qM!17giTzUe{+nTX(zJBBmOgO|I3zYLmo-lm
ze_jr*g$`ko<Dsq2f%U$zX*%f6uW0I?LX20Xje5yoNWWRfpt(CD96{IgH8l&C7T6{5
zAU8SaltV1!{<YKOI6`WEZfe_}sHVb$P!V`+3w@~k&_n7ILJOU1MM^9R!eF6~ch}#R
zmJkR{9_1Mdz*8^`@=ePF%F`8PU1=2n?E0^?d>Di3F^@WyL1Z&g*i^tjl+NmG_0gY4
zpoUY(jT1<-%}eJkT?_I^bm532Os$8CuvyPI+RdY382imK6GAf=122rXF#c{Re&oa4
ziC}UOWtzh=y}=AhoobIDF-+kmE4#>yCZ<#}T-jkj>QoaMMr5oq3HdcLgpy&M=6sfq
zWrrAq#^juq<V;c^f2b_~DCz$pS-yrP0ws|(=_JUPVa-6Kz5STUZY5iosU;v!XBE>r
z2VwX{u6Iu?EgN|>INqd{M7W&lKgufBRi&9XC<PdKp(`R90~B*DFbOP35@3>|F_`V*
zP-u}`{S23@in@C9J+<^jVhIkqMPY%IL$?cnwtNY7V0EcVl$L_R*=&J9qo9#)9Wc7^
zJk}^$QfT(PP<^(r>VRW2m}lq!K0FU`FEzIdw@}BuQU^`itMkusfW2qOmug=vZ{4d3
zF7_dav*LJyZJ8B*zfugof6Z1UjL5T?SN=?<OcVta3eM7QEB5HdJjk0`*%Z!Es)kRO
zR=B3i;RtNGs@F8i*W62#@=_-QWixao-!Ac_jnk#*rrD!;hxK@i_VjS>W<m1ST)5Y+
zd}Lw!GE771@;(_DMLQfUl>pk1L-<y1Ow&hAm+zOU%v1#NltY#H*XNU4?Npx0v!i`U
ze@rQVpY!L<LKwGe*x3ZOC2jj?Q(NU}oTCZ@lQ!a%OyM&D3f~r(2`BhQUVvw|8D%(S
zZzr!FQ@p|}7`J#yXSY(SYeotV6zo&}D6h2f3nIM@af+;#$`yfqpOq^zt_5FU{z_pf
ztJzYwM?)x3L}}@7(yvxCov!<_!ZQ(e%H6B^yAJ5YAXWPAIqr94ISlbO;1!T!d$O0#
z83+ti=+Zr()?KQ&#$|cO>G<;5_{VADmDv-LX_m)T7wsI3>IUTltLylyt<@YkW!@-#
zv&KffaX!3M`wh)R6jjI8NOd{3YZ=n@^r^&(Snb*&6(uzLYoZz_b~|c3A5Lj*DB<3a
z<<vmME^2(Q-iS63`WSh+7kiM~FGK-#RncvzGg&e1##%eux{^RK%TIc)4@n`1oD9ov
zKeLMKP{php7Ib0tbp@6#+Y1TGn!=eXLDltkyh_peqkQbInZDQGZhZhZ9rQAMurOQW
zla*P_<^*YTDbHQRA55Ho)!sb~eLwC*KN9DuFq2DDUOI^*tU(fJXC??pHv?silQO-z
zUvq$SyqOA~P8MEiK<nFwV<n5SNO7t61`;JX(&uy=B(Kdk)_-4UC|bVG{;XQ#VeQxa
zSvJ{uJzR6QlsM&K^H=y2HoAUqdu0-BVqAtZ?on5nv{d7xp7BSYHl<&Jnpy>$u#1n6
z%w+EOC3g);_j!W?1R;nDtf!Jg8&taF47T!w6AAq!9eGl><Snp*hTY{9!?1%s1UE0R
zUEGjzsAvXlR}a1xOTAgxJW8Q`K|i?}esMRQI)C-SLf_-X!>7mI@4hP7S_MAA>|Qx<
zZffLwzg{G_IPipf`ia1|)^4d~HjS2)u=hYs1%xA(x$iE|?G{)$HlhiHxGisS%Fq0*
zg?)RTwdOrrjj9U5^Dm$03y#E`Oc3J6Bd)bPJ$27rChVRehyg`^70M}U-^PwtkU-2{
zEmR1mw54>l$*^C!_z&}+HeJg=y9%OwO+z00=YxC?UNI4A72mG*hYa@zvA)e%6MN5Y
z<aJN#`CS(sn-y&XO{k?0$Y>MdaAuA+ZBH`m@ha~caKI3@|8$^qIPAb19_-4{t~ooZ
zGC4!}O2~%(?s{MF(_32A9_<?(!y7V3lC?gFz;;{zKV%(2g#1od@S_)aS|{f1hO)m8
zf&XE+X5KA*)u<k8dDLc0*Jfso>VJiNagR1t=(ccEiWjeCBrB>hVZ1GEy4qcQ^D?>`
ztJHLhw@kTI^y;_Fhqo-=ZdtW#S^n6vrt>p9+OiSfwo~z27u>dY+IIBcUbfhFO5S!U
z_PY@0=bYNj71aHp-LbD!<8oiO_GY)+Y4-!TKW^9WGGW}+X~)k<^C=jZl$k{J$?Gcb
zY0L9x3ZkC6>h$ktUHi|c{S2u+`zUE}#dA2acPvB8;R<p5+rW!&<lftC*N%3IHXzYL
z(1?WU&}=w-jv&^Iy>*W~e|d-KzoY7eT&n5Qyzv6#5~zoG!A-MyzgZXRug~uYd_J&y
z-6<(qh<qA(Nm(2kF|2dA?^JmF!i|Gir>?X5iConA4u~OU3<t7KtKQ`@vZMxRz76O%
zu~>*OGtk!&AHBqN96(YDwr9p2AF_g0A&gC+2N$^*-|XQ~MnAgu+zG+I%V|6vNi1;^
z^w}nDGP)lssaDar{@jZkUBT*V`*)d3nJ~f8u4?jIM&_~vPd;*IJr1%+tNF2S&(%+f
z*AZbX6_)`OVh_a5;sz8rNcXu&Qoa3Je+3m=>ZzwYAHe!1{Q4&NfjU><(RWzM>AFc6
z;6L8Ok6_Hi&9uRrX>=|cCJwq|LJa{G{j7P}xF&@((Ls%=L{Tfy>EU8N^iUCOB>L(7
z3Rjh6mu5Ku0(U|7Q@F=(eh9Vu^s@8F`mF&uUdOsA4QOH%3>a#W9ExA$y0$C#2}vJ;
zH?+;OPafQf-W_s_%eu^=!#rn5AB(j7eVFUGCTG64jw6Cgu*J!H>}79mtr`B*U;Vrz
zQHY0e6o6+95|6Tsq)LXR8;$Ox;04peYlp)vMuXANqn||=x!0~+;q*7BikV&;Nv>V%
zJ4|sOWFVc{kbLbgvBn1}pQP{agj+ry=}~)fNM)v~nGWL^6AZ=(O(tX5mT?$Eq60Je
zB-20$AaH#&ODpJWd{%zbVn#0$jcF{ekc}1hk`2a20szl_497gonGZ9&$~Xo3V5*C`
z^J;r&RlSY1+?b^14tLiQat=6`<#)r_pIvOl7R&LXDPYeOdpah;YKC+sRre;cJ|Pv_
zQ513()?Of$-i)0^%L*@y+&cc6DO00lhJv(x-Fs}teDuXRz~}KGt03I`0`CL{GeMTU
z-r-;_?loa)O>%raLAW>Zv3Bv|^9g&tNv=_3^Z!)r03R2W8I|K)#lFN>PVYs8+GU5F
zUAQUDTkd{lbE!9j)&DcAikAUzx=~PJXoH1fUZM2N<YGKws_=v=Isd^Ugze6Ye8SD3
z`-yKIIGs}VoOL~1TPyQlObX5v)O98Mehv%trmJSXDRw#<pY%O5Co1tKB%n3<eJ|JA
zjUnYL$m{EOHwBKI9j5%QTKT-1OMhBZlXm|z<LhV4;8|8_{c?B($w|4<v6vh6^+YWG
zi#52fD8uVDNSxucR#3IXTCwppx%;QgsCCANpXRF7phZIYU8X|=n|t!rRq(Q^#%w9}
z(nMDtjhtVYHa8={y40=Dw7xyMH>ceT-tg~blk4*cS^h@xnCrp(eu?}MX}9H7o<yCI
zrqUf}p8q2840Q*L>}cYEBvx=~EZ0(dGP_2cSA3Sel!X1j?3`)k8=!OD>tx{~K}|3I
z6?mnnY^CM2gVpQ0r^#^~a@Uj$<NIC;Tw&ehd}^_P2AbJ??|SxI6Xw)ooUp+;cf5yU
z(zrkq=T|-y_sF`S7WMsNzL18Wt)}5$pZi(bQ54;)VLGXt8HIo2o*-hL)Awmt$*o;5
z@T0%m6zJ9b!Z>T5KCEgs#nt?~K;wO0lnaqA@$G(U+|$&_`p7UT?aGU<Pt2Zrr(yPf
zxb~qvSR|yk;;QHy**2Lxk%klgqfy$uG6vI+T#u{Ya3qUWe=Tb08eQByh4D(NpP9M_
z#iW%sJ|A1!`vvEdI$!?=$C`=iw~sHIDMIZe+P*4(Q3&_TxV;^=-|>Y+<>;arfU2u#
z)2ClXPEcweCzbkVVSRt*%ViJAB)$1B5m<cHk0_(sFKuy25p8~dj)AX56)YXz)&42W
z-?)*=&1={?Dj($KN5ds`@i1d;b4E*)8RG=EaAe)YET%!rzy}yewQQ15(O~}LnK5yn
zaV6sD*HwaR@-fqCafV=?za@pqyKUB#fvq8(Pdi<yakkE)TqB-A`Qd!y1Bd4k%DVdO
zVA<Z1O(!b6gV}l5d+CStVhi^WoznEL(TWM+M#t(zCuOM2a1jzw9u!VEbM2PvXFfjG
zlg<NOU_>P35mWW#*aTnxX{+YDaGUt;DBj}jm`3kRYFLPWScyQ@T1km{*YsU|W^fwn
zeL33ugTxL_svq#vY<lQX(wP8tQNCkTDo0Tr*Z&i+9C@An7ei`fC(VkvAr*7i^a^&W
z6odcMfcqlxskP$)!=)F0f1T{Fyv(`uGQryENt>Pp3Cd&<rgzn*BNqrlxJ;97$f8_;
z@G3z_71=`V7!W3?1z^MW%Ot-Cz&faU91>(38k)YTr5_9n%+(9}*@Opz*&EjSQ#=KZ
zso?#<X`f)8;L$2=*`{0?n5%_K^4d^y>PN64*Kr65Tnpg5KsvK_3L#;!CW6opW1Zoo
zX3h;}D!(tOVQ2A2u9GFZ@HCL>W4w!;2w^WJ5(9Z_>`gDzVx`1Tw4SRE#Rk#9f(;aI
z_RiE}YL=hM%w-X}E^K}H5uhxI-O;0TyI8#Fqfkw@UiShVCN+xJyn$*IEyyly5hgO}
zj8tb}i;Z9pQ>ymPAtiaQg9jr=Bcbh6I*6+svsUJZw*P+pOovLLi2d%PF>C#-N;>jH
zR=L7y0{gZQ@gh4^T$h7Y=<%DkKujE!MvpR3U*~2Vj6UM=nWa%X<r+|eT+^cAgYKWv
zte-9TABPRXhqT8+5RYV$+pMCyfqX-9VZlpv)@PZ*ARH54CieMGr#Tt;vjy=Lg6^3v
zW{3XgNS*Z1pn_aem~$Hp5r6l@KvJ14IisSrI|lWW5aaipnm()?Bgn+w(Xh(`S6XK+
z<meuEm7D%0oWJ8&>2`V4uMECadO0m=)1a`{PoL|q4gFw!dgbaGiNz{<J^4bmn&iT7
zRYq{Ob}L{$_fFOr{GX6NlL*X2$6gT8q?!(Lx3;Bj@|M0I1j41Okq{|!x^DJXxnaOZ
zwpUYwy9N!}ztQE_s|djI^Ah3DX}d2{H|zgq8*aIzCJcc_GXig;2c7Ty<(kVViT?Ti
z4okx6Mh?q|4d*ujIB%=M>1ELynb(o<v$I~S1hMG*E%E<q{!W07exI>W0SsXThzwq2
z@*~5abDEB?g-U04PNb@D#IKuQruW{`_|2OuCym$rPbDzT<2>PllBt4Qr}lF^JeGuo
z4#n@tlh{xL(b=QafZhNCbH#aVwuHpwTtc4-U}cx%t7gqf9Tb%cPXh-EOP9cgFlOQD
z4o%gZPf~|$)WSJk530Fe!iKTw;hDZoZ@D~ehm{_NXN88=@P9ZRR_qVYzR^@8_&Ie%
z3vHDhdr))X3^s~mh{!Ek+q4xYX#YB|1j;-Y$*}H`8Rsn}GeSk--{ycrxz&IGgr_*C
zu&G0BYHqDeouuWMG2M+d9xlq+y7;8L=^p_c1f4qDHm<8m@XeNNZxU<ZkSDUF;=vV~
z1UeJkWOeOYG6#wV7jP}k(M4aCBDi5wN=GFG3LvXnJ7Seo0+MmN*m==kwT3;-Pf8Ec
z(+dLsr~^XPHp<3)`+fi38jt%Fc|WMIM%`f=s8I{JZ@nhY#mJ}47Hxj1hghK(6~sZd
zs;bI>(Vkb&znrhaLxu6W3_7FmC<R)z$S#1vjrtrEx?j#7PlO2t%&?sk=a%O}(ZDqO
zVm2TjW)VjuH^9m_3X3%=NhU9;Q_<0T;M`AMhH}42nF_ifi+qVoPtxBs-TaaXns^7}
zpCP#j88ppR2cpmN-3nWz4(>h;97)9}7I5SaXtGKV*|xUNNh&1<H-+eq&u_ndj0Hja
zfA_<8=y{w~h%KHNDqT}|Qq47BbFH~4Fsv;#$HbsT=1ZW;Q-<Z~bS`p0;YfD+78z9g
z8ceT7-E@#nefy&GX{VwEu%c|49!C&(_D?3lu3V6n(^2N74B+a0!dqz5V?g(IGnmo)
z@+vd9Yrv&B^gjOWsy2ZlNKN!*6lE@}KYC7;#c5vq1EEv<-eCTxAMA$8US}ghq>%5q
zx+hXO-LqMbi{=r7nt*=^Rbof(pP6DrE4R#yL9|xrHA`dtzifA#YMNV;<g{KW{_uYJ
zx;3!N4se#wh@CXIK*|q{Z?(USZU~iK8-}=qK~DQiDlCrm`3`0;5nAzP3#WeRQLfnV
znEfI7BWfmn%SPDKu3;6)th54r+X0#Y5wX{ks6>)dwLbA0cU8nZpaN?90D~X?5m-%H
z9{*4W;AOcQ^;c^^2$QR<49~xEv`xae17}&kK9ZO1?))f;ba4p1N3~^HTbEBHSL!C{
zW|XvKH{--@R9}GZ-Cv{s;2k|zadgtYWwOn(c+@iCLWMiwJs}RCpci&oO&qRfIMp~Q
zFjJ-33AUglzHaD+hcKAieu@)Y?byw5T?TOi0M^toGUA47))fQ!h^+Wu<s&>H_R*j7
ze{KtsYsz)yHheDa%WoF{ZNt%O=VgUHRSPjROaR*x&cppD7O69>M$`eY5(V<!Db?N3
z{nfDm0V?K#1CDbx0vAa@-nIJ5OQ<AuX%hINO_TcjO4wZzh3V$|ez5zoQlt%mmG5I0
zg{ec6#4oVkjBanV)us;;AuL~LgN}M2`S=riw7BUbQ?-~*D2VeJT8408mrfy)BY?58
zDe~k;7?%yuM{b(OkKPT>qkThwYp{6Oox^Uy!1u1%v<gz`ZP@oF{VN^{F_W06DF~kR
z>Y?nm>&5$Do{99BUkBqq04^S0>>L(VV3;v8Wc-X^p>WJ9u*$<-P!`YcxSuhzSr5W2
z-jX8`2@J7;G<q4lZLGAn*U^zF%qr(M@}T<LeHLwYUpEpcO1Hk#HSX?P%E@Z;KcPtV
zKev=6y<ZGe!Xi>g@3Z)RR7v0YH5rgD%)RDinZ9Nxb!uUFE#_atBQ>>Hn@Recu7v-X
zdu9pYAowRLH?2nOJh)CXd2xyHi%998PyEzldeqN@yF;sLKkw5S;X{Y2K(Ri){Vjf0
z0K1DQB|C*%OzQ{<tO}})jv59^Ze{*h2THe%@yrEPKd=O-*<`G_pyc^pM1nB5a9JO|
z4^+~J7G9Cj=$>PsVxX-kHZhK#NI<dAeT2MOV6t3GumGUAs8%uG&aQ^v5;)@~IAcNX
zvvJn2BwGwavMB4%7G7^UIc?!+ALE-V4@8I*o=ytSKJ}V&*c}B@LZ_}w&4YyL;$$!u
zG=)mOqQLzPgia4nzC=sP374_I3BjO3Yd3Eh<c8FLzZLc!%7+3;PV1_v-bzLDzd+p?
zd`7o#BY+R&mpWD_M<8;GV0yVQC^j{BEhfDM{e=V&v$>jMlP=$CQ;>Qmgph<(q`%IS
z5(<_Sr6AQ8q7LNKt*GpFn9Ko_%tBm}1s)_aLl=gmcXLV3`H~54NqAPzh00glprS9`
zg$;1SZhlGLz<Y*9o6osqxa?dZ=VhrY-tpu?uVP{_#%J!&Y5{!55*Qop>0@D33rLn?
zs!$7KAb?~jK>SyL41hm(m(Z2V7M^nZ><xtC0uiZ)WFn!VFgyEcXnG5CR~@}TJ&boR
z-9JoUp*3@I6!1t_S0pO?UF*%GRH;)nD9|=j(X>EW9Xhf|-*z0}LS?a^F0jXC@0-XC
z6Bx&_%5H(&Dpf3*)Fj;)miN;-Be{&TUMZujXj+$j#Lt3lBcHCVyuLLy&SMa(J>Z5O
zveOs>`;y8uT8yo_%>l&7q73+GtU~hc=qebV7mj!iMYZGuZ|Y}K@1j9D*Cbgry9!4A
z*h>sAh7pT$h*GgjEMox$MM0(3E^fDn&p17RnEC<1!R@?ROw^meqN`uHzHalaiHTI^
zh3%<k`#lrP-sOrj%sN=)T4!bc%v0u{1gM<P%AbWa&>+${UcPg|7^kM>v`*KJ+)#CX
zI&VRPTz>aX8U8LPwN>LmYw{pXD2wJdS;e>Pi%NL_8~alEj%a0x6V$`7cmB9Mi!2w|
z5nQV(OQcj*L<)VvkpBB7R13!6g;RhUMgdA>upNr|n-ro=+VWUDd_$a5L0F#@+3r*{
z*y1Y2b{kWT?)!?C&o5N+7EuG)X>Ew4v5Io%3$u3z8t03eM^vEo(Bjoqp#kMR16400
z1ek(_!MN&65!G|+cI<cw+u5`K`J~<U?8F%Eje?{SD8NKJ%qv%=t`>~UG$v=ZtiVq4
zLpbzp8nm3v+~_wT{wri`7E(hJbK4-h1Ei$A>lkf-G8>lz-K0Xwq@22?n)jsO)s(jW
z>Zf0;S@NVGgV>~J(SmM#-e&dI1fH@^7g9jIUv~`1tg+~m;eWnZxoKH~jY_tEz<$KV
zFcC>Pk%ugs@=w(ZwPNLdwaK-W!XntQw~Vne_71goA<P3<RuK@pz5I}u+-dbWz*f^3
zd=+31y7H8zwya1*g?qVQR{y5rZ*_p1f`TBu+UUBX1V9Oqnj31WWRiI4P)yRwUfUxb
z`YIQz5(!b8Q+-)`rYxkWv0$d;up@u(6#7}CnEO|=m&oG}8!DR$^u3?N_GeT$MIQ2c
zHH|(Dn_=)bI)!~TgCG&mg5XBZkXBn?lO03-sX48}NO<ukL}=P-WI&zcMEwCkyY!Yi
zdIdH)*SbdotfvxA$=0I-nt5w&_DHRP8qknPpmGm%T!ijOxFg4=L$=&R;8FXih_*{^
zyJ9)L_I?AbLEG_mt8>OvJ92?To(}OxMqX~d+04`Z_KK(*mwsy){rz^|b)xg?iqU0r
zPQ*Npg?z0L*=Z*Hj2WWaU}_Y!sT(D#7q{P;Xx`-sdFBArSEvQ1KZRY|;z-lfPq+cV
zDH|I)bluH3dmehDt90Ud<^J>gJ&ucC4JhW_bs^mkLJZ0?x*tt+H}9Wcbh@8N_q3b$
zJiV+_Jz?1SsHbP5r!Rz~m7gKE_CnF1Nsg#`6$kFV14BivaeqjM07`fkdSM*FIf{Vu
zeC%1`cWdl0Lm^YE0p@>Z%sbDsSOF{|6CCRuQPn8dxlb0;O185nuz83wV+(KunRO)g
zaxC&Cih6CBY|&ZsV)=&Edx(|rboh^qmwRts9vE5MKZ33Qfpyw|1o0q_3COyVmHo8E
zYf)X6mX{XOwBy^*!+kjzBOE*lD@=k)g<5}X>s*!|AZ%IFv)jlbNtq~Hs9|aT7n@i8
zNr>aKfsf{J%}_W3tC$33$TzeTPbwa03C#vD$vtH$>kcp2fk_#bYXuF-x7GgWw-tga
zn8ZP*gdOyuY`*Ss3=2app?p_+Yvq;gOHqTb0|#Gwy%40>Yi--h;hx|52@;F4ljIx{
z;T*Nf)D{=eHa&m^Hw~WCS(yhAhau1pje)!FX6}A3V8@Ps4ZVU5)o$|??C!%TnQ#mx
zHpGJA7AKEimvciYw@?>)DU3z_@A$zNmv^n8j)UAtl(W`DP*l=*=bA*n!sL+ZL`5s#
zm<-cUl`A$q^*(<5Q`=B-lFQFEp3a?d<2C+e0axN4bK~F9_oyl7HJ2ab{eEs!5}RkP
zB?nWbnLSGQR2KsN!0XCmDD0=!<z_>T4B@_v8TV0Lk1CTZ8N#fj@+-qbuXCH+5Avdz
zQSB{5Zl|Hsp5oKAB!K9avZliHoZrkY)QWBx^3RRy*zpy;qo*}M*=nRvyb_yOtYJx=
z)h{S-W#<6>fa<o+-gq{5S;7m=Gu`);XT<MytKm#znl}CP486Q?CyK!8GW+EXM3l)N
z{Z1fnO&P0AUphB^Z`O|E$COvRG2hNZsmefKBZze}gth7|=Rkt-TGIc#()AFdWLiwu
z8wABiYq(G+8FGgfNcSyp)H_FT(^tfag~7|;r_?{DZ^3>|nTyHFJNa#T{F#52rC8FA
zf5Ah$h?}$a)Y;1vdh=zM@J^!Js~DF!LXPcQ10+XmF^s=Y^V(#7t+rjsUBnGpAFeMx
zmeX%VJMGU#xW-z9ypkb-+McO(IdT?0mD&N<=?cr3rbOkZa<ilw1Q+%E-?`)lc^|%u
zhXgmN1Yf)r+}Ii1_9OVC<+UFtp(}Soie|6&8L2M*=!;*<n7J7`<}|tiQ$J)vDi}wO
z=JPXrM|+^I?f$!Rb`wjF6gtfc9XBfX@VRbHxc>U-^?xe<^nfr%9VFN}jQ%Goq$P}r
z8)Xd$?-KRo80q3T2A#z{W;HHv_y>_WazG=m>)C*W)Bw7+5n?S-ZQ5tevI$Tn9jNvL
z*g~ht((wBuN%SY}5WcYBvRIJBnk?tz>woJ-E^tT4VI!_jhA{_hV42xOn0H=RMWEi7
zU9o@X7#V@sUQ>JqdK9QC+m!X;>c>cj8^-h?(}fB0(v2Gun*T@Bd-zlR|9{+PI>#{&
z$6m+YvNxS$udI;WF+<2+sm?i$z4xwT%gUxm=hz7$38n0aN~H8@xO}hccl{6V+wJ{)
zJ)e)q{f?KDsxghMGv;tqdwXyIiDBTpu2wX?%K`9+3i>G?d8%IZ_x4h~?#jgNOBM0%
z!W~bHW6CW*^^;>Bb}-&tkI9K<irWJf{9Hk0y_M+z>1f+L%G!J+ezg;Jo9J+G+c;$%
z5EFi1(`+tIu4m2i_rcKp__8;JS8}3K+ZX~bZ0wzto|w0_$)U~sv2Bb8f~rL=j4}<g
zF|RUJCcXh4CZESmbh5Nh9CW|gb7e2-)ImiDe~saP`2%(52j<R_c+7vWf*PmBQ`o(9
zVEVf|A5=r{=I|fk*Y3I=i~j>3eNYj->U{S~`%#r*cgIsan?P!RPQpzEg1aXnq{^0?
z^FXg^3*HElp!BEb5<b(gs5vI6#VE>t<pi5>+#6UO)urdb5TA9=n{6EvlTHNsNom$c
zlc7i0QY7&P<4_&`aX3+OSy1GIC}+y?wd({Yfevdv`0kh2c?(1tzZ=rn6EFW0j_bFg
zq~2bM`5JoO`)iiPVX|J>;hJlIGS;c;R4o~dNlK^eMZayl^S2Bil>Q12O0kb7yl-X1
zp1on*zDmB}AHlueeX7Wd(NOeAy;;S{PfmTH#9fpDW#;O6HV7v_ORdSqAD!_^;r}D0
z`1T+{^V+{!Ib|AdX}w4O9&+q;)lO>r`aRxp==IfKnVj4W63C`A!ODBdrTza^E{hgB
z-fLfu3dp(`y0fEir*q$fW=sCuxMbu~p0Th`Bleho?kMBaqdWdKHIGZPGS>5U;GZv{
zyS}_mO1YIasdzBAcZQL792C>r#4K{l6jv4#9!JDh+aF*Ep8jIluyoCM&h!x>X}ddh
zu%b6YPe8IRmwx}P8+5m-`@4=7-C6(I#Q4%On|8xzS}LR+;az8#@X)(0peclQ%qstr
zO^&s4=lRhFl#u`2-)F~XYieT>@p^tLQ(5X}^MSP8))--bz0T`7LzZb4qXP1mtQ_l=
z%%DR5lU1p=Y2TtGA4-k-Xhm2V7`oi4e7g3RPuKnK{h{~&_%C0-_u$!wa{(NN@Y#D#
zK89H^QyTp}#gXa{l9fiLAC}tZK2Nf<Ku|pOKqMLl`lUNDNT|I8QoJSu*TKj(F2&K@
z(n175SyAE$n--xY3+r;(>qO@X>o<6I4{oT65(V<o@Me*GPGf=oYZ@0G^-_$jOG?CT
zi*}Q^OyHZg3pK*u@!G=`Ae(#6`rfeKWBbJn=T!5h!zQO&=Xlgg)ULgl?xXEaqVm*&
z=s9|F%)`sxH@yYC5O#`S58s}#sgduj&*T|ctSdL-YEruKK}YhCvHK2Bbnx0h?9U&6
zd168~Mqnt5k`SV(7>#p$m~a<{&2FO2;#^-T&B)$dbDVo_9qJhw9IRm@8H!DR)$HkP
zH^@?RYH9m(@&@Sp{?)UeuMeKuVoD`!Qy94G$0xtS8J&43;HDxI!qATp+FN||5*0b^
z5`gVdhHrq2iu>^o$BlfTGEPu)rT;g23~2qF@=U@YFpw(ct+?O9&<uDvGV1L)JS4^2
z?1|yJ4)Db`7w`b|&}<1b9b&~f)>Id6SE~sfhpRVUh%y2?#8Qa`!@Sa{qm)XS^H%FF
zglg(-)>-wPiu_s4&x5R1TUlC-SQZ&S9Fdh>yDE{M*^xqIAH7*MhcF>$(Hbd*plo6M
z?d=J$)rBl!WuzY=QP&b)1qxye*#Sb7O)idw?v7LtjhHnx@w2)HB^{@Hq{m^d@VX#X
z#9?wBNau*L5&!Q;PJyj3qqg3&YhIN-OPsfC=}8>Q>No<<d5mdQ7@@vIglSq=JrfmT
z*&sL-s&r0VrVkO!UnnaFT#x^tw_zI7^Q)T_f9iG!jY=TQuL61fHXv|zGCr}xju(I<
z3^-PM68K7eNOGOBU94le3_T<pbD!aBUienxig9Lv^xL3;9^rzk=T0d-plcCMeQs>;
zeX2(!Vxo$L!)6Slb?)BFsD5#?Ot&G?BVDK0Fc6bfjeYE36UWr{=!pAe`xt-uVdso4
zPte=%@2(2c+4X}HZy}B-P%T{LUJeU)yTaF}#muPeRhsnzEoCOm2AEM7PzCYo_Q1d9
zFvE%Di*UyLhO%w8j+J7ONLP}@_1Fy(0Jcn9JyaR_3I0Oi&7ZV-=-&=};h{Pe$eso4
zqjzRsFOGoNabox8P3N9u(!EwN)mE!;y7fbkI5Zw>V3}|R9qb;ABaDAWQyuEDZTw8C
zlg~!VXpN$&15(x5n@6J@w|H$SUzy_-UK8$O+g86)+@gP;3sV20aKc-Hx8l+@aHzY{
zS{ukqh_C5uudVf|mq}lMHPUO4pBG%zcnTj&#Pw%1=;7{4=0r)m4TRJ3Frg*Liq`}4
z`Yv%$v}6{co-sj-?tw6&cCLrfCNoEzF+oY$e1?N$es=PxJvx_DDINw2Oo2+QZvmvN
zfehz~JmPJ7X<!XILGt8?)Sq^~>+eQ@!)Fgv%l6YgTVr^eF@}naA5%V0RwJ5XCN5(-
zl;u#{Xj&%|eg4isd2Pn~^yF5l0zBr3a}zC|I(a$f2!ikSzQz5xRumJKpG@MVTjVsm
zdY`56q1}$uuc}EBDM<AH_f!R1@)br@oy*ymV%h!j3W2FRGB;yi;F?0%B`7-zr7IRU
zbXm)!BSiH^f8d!i0Ib~W)mn<}_t~SmN@2?u%3#kcfl1yM$=m#<#TCowA=dlfMrV|n
zgsg7AXMON%@uTjq6{~yySoyyz!!fkZ)(QNmDq8zJJ+A+l2vW6G$ih7XNoSjMcT|l`
zyq}TAs!jG?RIMP}zKNQqZT@{!ouvJ~nN!?k-WOlcor+gLjP+IKK)HJRNz7Azk5}bw
z)!_ROKkJ~Y_(4=&qdg7)<5!{A5-nua8k>3U>}=ocZhv3Y2Lr=+5+Xj0Fle*Ay+EWA
z$7LC~J=uWF0yaxsZ9>rZi!iY2IUtYTZ40>W0(1LZR^IPG0Ewtmt(t4zM0w|A+pJ5&
zzfAFubP7Kz%aGCjC#C#6k^&LwPNp%Lb9yOv!c@33>a0NpjQf-EhZo_>tT=(^g)Ge-
zg`Wc%9^0rjlEJ1Xz`)DIXHpSAnCQ@0uWuq%yo`NffvwrTrD*571`sG3$2PoVgYP30
z;pQvlf-88492sP=gdg_2?e;R!p5e*D9bn{Z54WA3zQLPmkF+XWGU6fu1K%!|-&3m}
z{y0+~bJ(?In*0PtXq<A>wXeMv329keU>`;nwHvKOF;B_rl^*yJ9EC?b*tvgl*X}@4
zZV11*U4amm-jHRrIDUVwM^<;7Z_o650IrqpK6|DXNPss1ysovz(5eR~=d@zH8G_cS
zRXSG;!nB!Cjyb|6NzJMGzmr2dssQRXFoYg65+Q_#)|VWWJa_fg(oq%~g^o@sFPbp%
zt^@3)@#PybH`H&+8bUGcN&Eny-kwuEm|Rt%u(W+))dNKL5>q&sFR>^QfR+qLK;F4$
zdR@Yj`hK$RF6*Ro-~XWH?$Ek$5x@4m6-4gc9F-)sP0N7`TA1}kAZ?UlJ+l4!%3Vy`
zP3nQ>l1WFN?o3YGg{KqM0l4!oyzWs4k)NGsIfp$edxbu$TKNfr#oFC~S=*1%;Ukn^
z^`!r~+n2Z6=Mn5LlO9AL6cKy9DO}$PYC;7*T4R36!Ld2dA&xmIjNf@$^Ki7R&WR9P
zqbw*3{xJXWZ%vQ;Y%nRd8!YsONSjgwq}(P9Bt(X2iTvRk!(9?@xk-R{#yt)CWHbJi
z5-J=|W)vyG@WBnf8Msz3SaozFEEo^;{NffR-xxi&8bVYLobB-+C$R;#eVx+9fQ9ji
zCKkzf;8H8Je7Elz@QZR)l<?}6zJ5O@%9qT(osAL~sw@$iXe1=#641Z;s*}wx`~%<D
z*ysr(*cq_362C>KPDQl&9j3%n=z<jf&@o^C3{@wOujIZ9x%8g+*%1l}nJv2Z2>DY2
z<qA3fKc>sC%~R9t?D%#AtGH8pI?*%@0G(Mo9yG1(2IeHdrPlB)j{Ll>m;Ua*#sWQL
zUNRY8`u7d`y>{*Azn@K<!|3%HW8}=xkG>lyo{|c}Y+4*Zz+~v<IR(fOUr0OtK}me{
z!60wnv%RC_(}fM=+i$n-GjMbMp^FM5-m0LKpeVGwzzgHU;@sC01I!aMz#j>k<@T@t
zdb4Q(*&>kaBjT;^%<HGU!a~Cnp)`~ec<>kUwA8BcS4(E-)gx}zCP1g?yJ2yzde2w*
zF9<(t_AfJ7*KMd}{l$sIFs%y6;kjM}_|EPPkH0x;0@w09WViOvF_{LBr_-JjsiT}g
z4~I?mtPnFjJl#P1i?kqU&Jhzo1-gzV@Kfjpm|L0A^sN*Uh0!R9!css|%0eR|35a6A
zdlNiV7biMJqMyn6^8*LDThFs<%>$bMyNE?vwIK@|AVN0Q+JY>1Oc2Frrk@S>h8aX1
zsj#QpOTF?8&zPBy*TFKBftbU5k=%2kZ>(QJ5PTvu3Sy{^In%J&-0wNx#Ju1z^7?24
zv!6aRIhQm2TOB)ot;hiK-VkajtlYNFb?eAjxmq?2tDy@>L6Bc{3qn$lwC|cDtuL(?
z&Dp0Icrt!AwgeCn$y2U)O?NL^6AY6WK>QO@oMIJY4FGEBLC*_>348PWUpsj0Faqf_
z{ukgz6eBhb!>2NeRo;Zyif~%C3RHRX*<#qvQ_w$iwWPw3kEl=n*u?5B2qheXbtwZT
z>mt}j(vr<wn0)NNS<VPJkA^4DYf&`Rc21QnORN%dP!zp(e9N^{cp1mlOy+uFgAu8>
zlEJm=rf}@Yc{Jf5vmKm|SfrnSu9No_%`)2piT?n7nYX5a1=R@`2n!Vmb1r7kKAGpR
z7vkk2-Q%>O{U9t?XQ_$W5~Ka1tc-!!;-LS1=G#)dxhR-E8px)NftLCCilLtyU4b&6
zaQ|VEhlWS8+e+S_!4d^AvkS@WU8(WM3Umanf9vw+pR=%-E(PNg1S(&_@I>i)KAb=Q
zpOB$aa**7B2mUPkWKopk4GX_BUUZG<6RhN2QKcF|d#Qoh%>)N;9Fe^@AAq2WbS`K<
z3ZL#}ksB9+n&E*%tlC#5*o&GwCPPD1t3y^B*xacQjVc~3kX$o`*6%aw)56AP81M11
z@fq<_F`lEJLPr7cZieYz@j)rKgl`^?G1~F{d&L1Mh$a#*r_RND2hy6IFf(JZ=VT^}
zd~A=P{x_U{E85^IhRN(Zm*bYK*dj;ht0WW#d<KO^c<9V;^J#Cqafs02t<|C`X~XPz
zrM8fI-*oEoEf7Gy_N%7FsOIi)Mea?(^Ee`jQ=hvTAL8D5hu%xX%oBc9PqLIEiW}A)
z*%lKrh20}5*Ap4g!nQ-X5{ny`ewfMXf-S*Y5^}kW^rXl%^cDYaifwvI-NQ=DdVHgs
zOq+ImnqJa-sEpkLYmE_`XF|r!WGlWo!)sIqw4pgeE8>5hCbI1nFmLsD#QL|0=>i<3
zTC>s{l3+t$igNHet(lw7FB#EjBPNZHnl5I_G$3_4B4}eq`Fy<r(<AosLOPA~@5aCB
zjBbM~w~d=fv~Am1q2~;<V5jhG{pu_FizdJR;T_NQlheHKeMc$Py-p6ZHk&Ol3Y*r8
z6LEbr>f$kTg+%&O@YQ@2>~_9$Y<uAMYF)_@*1?Rx8&-I4ANL@B6gua_G(BZ>@3Y;F
z_q{hYVgg(DpRLuwE~I`c)WTahTxR!1?pKwuSVMN$;bYd!hBl7%Hm+id&b_vBhCZr0
z*9O2|7(+XgF*|ERd&eDZoS}msv}9fUT6f|#Ya?GJ=;!Jr#|)^`68)!)A3zfi*Wg{h
z1ySGrF_*hh&ZHmQielG)Bt9PMS^i?^)wW~Y8Ra`vCn?_*@M6a`?3SNMuiG0BcXj$e
zm>7amA3X06_r)HkGU~V4d%XsOHNb(`aUgD(jFH%lhiR<r^&b3Uo=L$WxxOH}9cvb-
z45`llA&s1(sI|kA`FTu~z0?nXL_XhH)GgDLNPYGwuQz#tbm3=K!N*sekH#6lC*6vA
zbIWWmT(R1h0Tzl%4n_Aeqi;lCqNhdeL>|+zRcv@CaPS&@i~@<oAqD9O;`z>3<_;O~
zG_0G7;?HI$7|AyR!O{2b-yr$H;=^Hr59*?&stLr2+pm2H|3$^RPRDz&#DLpGgeC55
zB?jKixh=5g!(9`#mBg7AeK$v~f3QI=>4!Mu+1-!z!C`%IN_%lN7_j0Q<Zhpo(2X$l
zP){_2)Y}b)^CXgkW7Kudq`HU0G-+Dz8<XxbCLd5U+I=aLCMhM8Ui*UCtJJJEd}hC2
zN|}j(M2vv)e#&`6W7@8Sz>gH+0U&>gx<Fb#9|8~b3rcS2NzU&}J7`Q}UpG|o2jWfB
z-*{wOcV+$YV`^7V`dE^6;+-ToWvRKJYu&>albZPFtVZ56>zZkH4WJ;)zkt}E#Zj7T
z^W5~KcZuKgBK00IBfCVvubO!O9DB*U^wc~TiBjFixyGdhu>IVRqZOV08Fau3_`^aQ
zvx-g0!uizF<%b2gxQgxf3&Kl_Z?6>J<I;-eDoHLaNna@uwJ6DUDlIN8EibLfTPdw^
zDr+b$JEbja<|^-UD)0MM(6%BF))eSBRUh(6rZ#{{41LmX`fh=y2{hbD|FH6$QV|3W
zd%SZ0D_7NdcUm)stOgWnnNDh%P9yzWQ5o)cypAi>YGYP^(WQCtOpL;$M#=mtNCDk!
z=l$G)^MtaPcR0S_bD;af`J^hGzII2DGD{^lZ+1I&b!)FK1u#AEa<2dTyjM}Y&l%UZ
z1nmETYq-h$c+OWQalL^pj;R7&)!NGZqxspC)U!cpmh1R}{sZMfy1~)(!NuZm19AW=
z!#B^5+Jbpltof|}iRa2jt+`5_@a9Df7`pWJ<B;ZC-oW~gWo=vgRVBrqiWYpThfHT>
zIYjQdb4ueHcJv9&6uLUJT)*k3xNh(?W0{POqOJIomKHj~i@|Bc{X-+kw?qVHN`0e+
zV}^YGC_}5;f=6zkg=(RAP}bv8UO1QGlDee7duZ~hWhOvtR@q>FiKO+;d9L8fT*=Jd
zs)4@T%wUn&{JKT=EfZ~;a$)6d7#})|b4I@+lV1~Ka>cO!L3#RZt=IKIv|svk<FD{}
zXX-Y*;_DrKvQ_1;tFr8nxjLHgq$}uciPc=nZ7HUpO1JW7zXx*W7>KFVL)T!yE(6oH
z?0eTO#&|a1@ysTv{=@P5hZ1S2%T}V=j7@Bo7RB`&c{k(VWU(=8jw*n}88O65e@32B
zp+mELdh0iyXuVdR-AMxMe)8NsWAc$={1}|_I4_tl@aXNThq;3*|EktuM8zQu@8@9C
z&*#g*@DFXnhVsv1L#zM3oq7}>c$W3;pWG46qodWtZ!EWvl);O7{Aox#MB)+@|A<j3
zyPmQABo6tV^zwT<w{tlB_`Uv_YCEj~FT`z~#~PrQWNxo3_+2sQWvVrBKnbo82?I|5
ziunqNXF99@3TXNYXnXmu`;yy}ufNj*|AbBdnfvOm?qQDb1@b&)&iEsX&Uw{J03}jh
zD9oKY0Dfp5osh52y7VLjqF&tNTb@sXx-mm=b9!7JH2Mn31(o|DbKKSh*yRqCy$+)K
zM7y(HPW7D*Z!or^{bh|X?I`;_+fjC=OolY9x=jZT?~O7I1r5wHNWMd4;u!fPmCtcV
zRz7d0-$zU~)%2Hbc@Xo9Ot)WSY1XV1*jDbKihWgFLs{JBS-x4bXFp{hSi^4T(5`2S
zw%(Z%*tSpL+tzot%u?V=NaU)_B~^E<-09&C?+|<Jb!jd9%`;_w*;uE(N{iyomq;=s
zW8XP#((WowMteZqABYCqE>>H9PlKng&BIZOuAF%i0(lW4$9g6#>yLoKuz!3G342~0
zLRs(mskc<{opPj3QN9HUtNXj9B*}weNvDgn$v=|Iu#_SH*AsX3ZdTxvWA%p|e8qJ5
znG-XeaKM7%hZV)Cr%00yF|{$|N4G6Gr(xPNALzE;Tvd|PZ3V@ouBVJnJm(Th@_gcY
z4}^AIls{-Gakwcd-?++WcEV)#bp0Au-F}4l?)P`TZRxKK->4CA6|%;I@NXYFw??v0
zPWgZ3-@E_i3}J!Sdiu(k3#09ITU+>g%*=w(O=YihvdNYb0-=nYuscrZerXP1yGs*k
z#&)^ux0soMMaME0yy#kU7vLDNc?G7=dNDFY{CHKqPQc-%7}CatJNJ%7(o^1mpCbgX
zFJhZUm%}&=ZRohdRA9-)b?`Vox=UhVPXC&Ae`x7G`f&35-(?(m9qm!IA?R7XDdbhN
zCG1_hE#gxr`hY%jS4{j0tI0Bca%ye#g+ZxgK<S9&!Z;l<_iYlAHYMqt2K)h5K0ord
z_|ZI^PT(lO_GYI%3&PB1;sq6-Sa@PuIvFy5@^10^O%%UGj}6@`(BcKA;Wys2cm5Sy
z!hwb{QXhOT;rpnZj^L-|+>;41Ur0Q&P^{vt$)ND}p`3;BEAVcy`in~+h<+BCWNMq!
z?|m#XRUmb(GjRV{bh<?G#zIT#L)KYZ?kr9}Z0+h(A!rWZz`A~~!sn6aOq|V4Oace+
zx8rRIhS^?kI%n7UgbaIYkLNjzIjRx(WDc!Na!#?x!6ObM80st}3eZj;S8}ST_JS@C
z#g*=8-uGoqi}4_>_H)_r=Qkot^}AGb586Zo3MfW8{S1DuE0lT8i^j&{H<L4Ilb_P{
z!JR~4cKxjZ+W~p=Mkw{uuGrbHiqs&MOTmBCkGH3am2Q3c<0Dp4v5?n3hZ{~E16y`a
z;&FsT_6C=TM;Om9kB>iQs>k3Sk0d;7_on@<1HjU;i<?!zZLlwa(k({-5O*zehQy`+
zi|K;yME@_Q%iU;Lb^Y^Gjt5BG|HX8NoqV}$E@HavJM1j{L<yl(L-n~~T4osxkPfmj
zKLuyiZa4B>BdJihxp~|1iPT0`sAn5Wz8cCDK?YqIwS<PjjGZx~-tiYw7kEh_VK_$+
zs^OKXw!4=cOu<Tu7P^Ig<crz7Ge4YsE|?WlOnc;U;|3DQ=(tY6GR}!PzdFN;DH+Ra
z`j);l)s(C&bdHm(FAbP-jacxv%|u*ENgLLWh+QW((upZx>8gw704yy}5I2!4sZs%^
zhSP5rufoVjK$rj?FBBIoAF@s-s*S9d*i8J7h-jDrPPg{ydLOhtP6K^FRNtqRrV`rb
zK)4|Pk=DM7js&4L<fa0)?^6E}ie*K`nWFk$lR~sH@7$WwI?VYsObc(6A4VQ+e&S$p
zI}UTYk+j79kR?fu@`X;MzZq8TBO@O|g}n?5X!4II$WcE9;H9YD+@USaFLuSg0qFaW
zr~*HVs=`^dZ~dn<ho#d|o<BF_x#QY!e|DJSW-3Eze-+iJHAy>G?K8~}$E*b+=`8qC
zK|E?Um{+kR9oVaT@i&r}3H7Z%mW(BE_=_N$buWL=!M7hG&gOj4$Qx=M`1e17a#aW^
z-n+&dKRfOyZ|9opYU~uc@JB2x2;RUun-s`9qH(UeaWir#3r(|$&Lfpitpoow4?AAy
z{uVCXDtM<V?1!V$NVcO}1*%^Ke+Nsq&z&8Sx{08p=UV65-{;LQ|E=wfu73Cb(wOC9
z&U3NX7H`C1bT>I{$-nlSpXvVoJiwH4S}}O}^54_9_b&hYb@1%`%Kf`jmjPf23Xr88
zPos?s-Rz@<D7F(A<Im9$VF~JA$)kI$gJ>G1Mk+&Cd&2BPvbeUyFfy;5B&IEhcmdEW
zw7`XqY5?G#aN;flIniVi(3R&kqH|HemXiT9s=X%kSX2YV=vJ9em<`PTh$mXc3!%pP
zhRY(?+1Zcyg<En*cK#Q!#n{wjkjL0P7&N@z>G%JKCMv38!6Grjy#6H+n!t7Tx@rT&
zuo?i7vkp<xP8<Jctvx1401B!L3DBob3iTtiZWV0tGHIk}?|Nj8a~IK|)?tQ1SUypl
z8%ket%EmT0amgABqvU|Bi#9UDL+U0>LX39}#{D}*YQoq<%$0`#>Cx@myk=z3B^K5^
zhd3bO920_m>PXBpf>Y`KKbO-@D7;W1A3%>(4g&tFUf~^-l+vfoFL9q1(;Ct+)d@(*
zY!+IEHE!c|QdqIZIg}J-)2TbhT@Ol59*BAGLUzAZL0t@p*hGgHW>2nO_1^}|Pe3fS
zAQD_}aX!Kov;`f?RUFJUH|Pv<ASe<A#To=My`s60KPy=GV{w}1yFV;*Rj}GLW`PZ{
z&Y;t8=Lx?E0^i+xS;f-Rs06H%yr9Q1`X`0|&-+y70BF#&Z?evO>x7VhS*{BJEzUJr
zzYwz*C+AD}NKx!R5PP72M*z3KO<>L>JPaS!M%Ko--ZEP%uP<a`D*WVhWOm+nsm0z|
zx_y<Ovp&nvOyW@x*&NfYInf$m=N%P;p{uo763W3q6N2<6MoFX*#_B7Kl3=hz^8{@r
zO-Z035uzKA*1BM*M6TnKXAD?eJMQh10(wX@n{)eBOF^$b$Mg*PK(@t-4S#Vj#G5RE
zd@b<M>Zz8<krI-M9Z<SipPkMwB12K9&*r8#rHiIO{$L0&@Dl@|-G1$EFnn!D79#?t
z`2pIB+8d}wd__(jym5aoCh<}oFg}?6-mY*8YJeK$DtX*3w*AxL&)+vNXG4$^!#HrV
ztW60l#>?hN@rZM5@mukhfE5?{HW(6<A87$I`SJa~E2m;#{br^+|F#XC-u{Agcka+=
z!8Q)*DCXsBr?8Fx1czz??{S0>+32I%>dyd)^`1K%xYCDi;dm8pXgbSe*tje?TPGf_
zuY7h4$Ebpc2J1wW1pvrQ*^L?L2goy-&PEsk2GO<I9F4II*OZ58@2UZyCR@&FzTHtq
zXkx!A8FJ&_aK%CV$Luc}(_mdXxU01kO53Oi`d{jU1KvIOQw(HE2I%z@L*SU}g~Jdv
zwUR;pPL0BillB!sj1;03JKo;Dsmf0A$Y}g79xgTuhPlq|&dqu#x899x`G#};3<+4K
zlTeM_M(s#4slLX$6Ue!r<sLU~2<hpf)IVb{iM|>*fB)ml2!gJiMsMH+cSS5n$VOXT
zSp@pz4St5MY?;6gDO!(>2}f?W@J0GbGtub~Z9y%3I9HDihRfAFy=OT&x4jvyaJ#Df
zdZC<5`#`}MjcIdk22jFAmUq*clP!O-bVU_ZpdFxWh$t@^aUFm=V#mbm-BQoau4{En
zymH$h1aMRJu3_Y89ghe>-n&4#qv5V^@<iDgdS;>hUoR8>(N#aw&JdCWzUxwg^eZKO
z%FynA_HiSmQuq(z6Iv)N)JP=yQB1YSW3^4zM`ywoxqPFd)$rb0;?auNe&MD5lFM;P
zJ@MoW=wu5&S{INiOn_7!A;uKnSEbkD(Us>9pnDf|ktLr7FsBNUZnraY;eor6ei=oH
zcut>h3I>W=cPqJ5o~#K}o$9Sn>}0wT>vZ?dOyxNdgUQ;W-=z)D!;+;f@$L1lKz4EU
z^hBX%Vh`yrqa<@&j}x~-iP1U#;v-!z!(+l<{d~x8j={4YD%Fsm#ll@l`9YR-GPGrW
zrrRaDaE&(upH(skj={qkQy`9HTUmZs6pmH-K5JmY^Sx_5cJIc<#ugaxpY{<~7bl!c
zhMgTJX@WU6)@WI36LU8VKb<;#WuU;%K=kk39xiey@~vu*UPBgT(xhMzoJ<3uGst!H
zxQzvu3AnU{vXoP%`hA^gmhkf1IW-VsFCgQ=>U`~|0xhLq?~uB}<_N#hPj!yLBVrix
zDu@;vRK%VG@8pM|4JwBmDLwQppv7a<4M^*o&cKi5aNsM<!D~(@?mcyxh=3pn7yvT`
zN}@oS0l>W~*xhOv5pBS1z#f9-h#{fJ$LQPE0f%OH=F*knDR;Da)%t-B-^t4H?EDqv
zucg<Rvap2bn}eT|XmV%~m`o5#Sg|w#L<Z3L;j^^?bnk>%wl`7rI93yVS^#*Z)SMOm
zQYn{O^2dOm7lTOI;8)&KGTKu9N5@SRkdlD#bS6F7_CR)<h4sAQKb+vRe*0&Q%A8_^
zexIw&Uft?XkW@Se;P75ZfEQ~8;W?&4R*$S|ful79&=vs1SpcOoXo<Tbo2k{@q+y8y
z&{!jASJsd;N0ePB%4yR}T@XT1`u7Qmv2LT53>4XIkcd-42oNf=x~4NF!ZNq5!pN!O
zn7|*q<+3iaX9CokA<(vC7_&r1$O&3^A2=A1-oMs&?8f{$)W7^k--*HC^0A=dU46TH
zM}4@^HBBnOVN^}iM+!qPD&)E`W4B;Kh5_)f7!ea1-=~7F6HZ61Vpe5JUR#YPDRRCu
zTQ#-|EaLQs1&gFO@bY|;<&z#tVw^SfE&_tk3kL6#{e)6*A*rKo_52;1d?a&cZO*H`
zCe}IUV>d<<No#~4z{H!1U2pDjtpJ|@PHMn1x3_`W?-hd2q)j=!u|O}uZMhy(g!Qj5
z3Q?qa-!uLxbBuM0Cdi`R-b6_K+qnELFg$=py0GDQAOMijfa`5|O2`4Z8%MdCN5>n-
zWF*HqGQ@i0W68-$lZnNTh1`~5clTiT&R}>roWPkfDr=IUJ^7;)nCO^7gM;7hhv7Fl
z?+;GiSI6ExG`^>d4Cr2k$WS0;6O2R>ykIX?&mx!CG;gvtLDS^PLv+$GOtTJ|mQu`|
zvsSrHn^6HRTZU&j);|9=3K8+oTYZ-^=*K7Z+@n@dN}HC>;CTUVx6s=(T9q0)drmEm
z+03azv89dXG^OSS@Hj7wmAgKySiDgQA*Jt`W}vVSylJB?63H@tRkb?|Qf30$X(e)e
z<k@T*043qEc=bZLqz;{8p&2kIgD79rB9i_BMXeo5J1it4;S%O$)JKpP?STy)==4tJ
z)k+!8ZZd0+$eSLK;@%X%R6L!3d{aAfI;Vov!w}lGtass+l%c)*T`6YWyujY|H2zu}
ze2%%=*<LTo>IpA(%-fs<GSvN)`x0*W=wE<?>T{|1j6TlkGpB&T9Kd?SKJRxBL(lV`
zFIBH_7HC6pff#8j{$R2_qp2dJt9}~UlF?@uFq6}SDWwfiAq%uLAIhFrQai1x_yej{
zTW+bi1CKIa$uJtN@eA0^FsP#524)_`WQxKWtDQ1o{Z~gndGg5PpFd%EAJH;~0Ihrn
zPR`ntLy7Ns@uSCt57X3li&r+MW&CJ{XY}-D<EA%8WxCmC=PpWzc6A2YS<hFjsyZ7+
zEM;v{y|0AKR^4S3l&>|zwSLsD6AJmvx-z}boAaqV5athn0|0W?t#7#tUoRPaIkfzW
zet=F1GMkqDdY0u)W5uLr^NlwfC~Nh>cWxB~csta(`QO!dO9npzt$w0FXOz*cuxy$$
z89@s<$=sK~s%!}l3><)g<0zX&a*`@-`}J*~{$Ur}+77CjKMkF?9nJ>7=92pS{tL~R
z+?OxG`*Jd0|H(o2<&GFHRqNv8f&n;|N5`w#M{<u&!qy>!^F~8RRozFYO;#tG!;A{B
z|6!wpZXsomq7k>~*@8txkfNOPhvct(DVIc3_P!?J0U{VNcMJ#)_~Z8IU++tl0)~x%
zM;Z-tg+AgS*l^LydpPNF+_9;(pezLeUh#vje6|tzYs0Ed8Tdg(mx96SEWGx&UdOik
z^8)!+=EY1|1eEiHOTR+;UWpcB#Om7NFp_vx>%JKVjt9^XG4P|kfB!=MD`DxbwWVue
z5un(zqB~?oZ-pKSX&u_$s~n}(V}19O^2rr+1)HyIbDpoVQA*Rd>Lw3(ml@iK4?z~>
zYg|c`6nUjMpRf51$j!lu?mkirI8>;_X!l@R*RZ?~@{#MTbngV2nG^+?nBY(u5c49x
zh#i-_;+%R1UHK?2h?JZs%pVE$+%z;!P4f;m{3q7ISA&|dTl`cNWc7F7lnrCC0px2g
zEZ?@X+yo*l7Okqh1V1Rs^)cGkZQ7c?uzQNN?*ZBy+Vgxb44NO~ryFw-40q(~vOX*n
zs6abo3#Gfj3@a_}I!iK;B5<vYh;f3tSdo{g?<m4hv7x9nGSTOXx$m6<{s@OD#WgEc
zpueejx8^(kvn}Le*Yj^-GmQ?Hw(?X)iUQ})ojn7>kw+&sB>{43-TGFHA*oG)%gc!j
zfN=YC7uWBt>Tg=T`9UTeksZai2_YhJZ$S8BCKuk=NM)|7rZ`cH!G3_61}=v%N)Rn^
zvcCn-anpF2d)KW*)7x=8g!6X%a>g${wgqTv=>f&Zg+LpIm2Zhq<wK_>*(t5bj5*%s
zI}Le$&F~{<f<2#F$ZYm&GK*_Z`LBKbM=CC0hWyZ#{7jxg4Qx?}Q_+mRTQrwXL>V=*
zwzP_?3R_s^5p3$U`XFf4w-SB5{91jbOQtg%t`3Ny=eaUcdZl=k=-kQZS))RE)LLlT
z#)qkMbAH4}dBlflkLBs-dut@&5-D<y?E;SZ8or(Gq`0qAdwd92zh1m3RRp$GTU4m&
zxk&*$<^7+D1v5Po%0HT%0_co*MaoY19+w5zEXnk$MBRu!1r&(yl{exs&m<qbhw|!1
z+s1ae?nXl8C3r`mQ?ab2PA6;6-u>u4T)(0VnTVV**8o85qDEID#?i{df`L(|7PcRZ
zU;TBPiJ0BFQhD9c?aVi0DYVi!zB2HHx?EbzHPH7G=+;aSTX@K6(_T4UioIR8mi!>}
zo!~3ZH){#kKR)}sHqKW;H11z#>rIXBUsa)Q`1fU>_lGIJ2Wh(}oAB@0Oz*60+phb6
zq^BIvLIqcWSxOIN|9tjY=?kPer@>M{>+Ai@DbaT>RnlZoDmpAlyYHVh!ux`a`x*Uy
zA?g3aPOEf0(CRuC7YEW#ipJ_aa7;%2@Q@o2vp97Ua69_7);fHC`r-VwS@{5!jd>l(
zi6i<w4)L7^bpoiH{ZelpM46&<?rAo@AxQ|~;RsXRGV~ZmQ93LjAGQIQ#O;kmGnsk#
zO2y(st1d00SYjTtyKAVj<CnewximMp0(P_veo-HLTpiuujm!LwJ>^~A;;q1zsZs^<
zk`T+Cw_w9PBRhP81A@C=czr>IkOZ0wU+jNB_Xt<}c&Khknu8O!%^X{4bA<HDs-FNx
zXg=LG;|Dg6R1+i87w?|y$&Pc$4Pmq|b^9KZIa6vXsC|G{<*w>=K7c-{Nm$v|MC-p7
zWgOdkZrJx+gzhb`FsEO$eo-UeqtF-s)(S63^8VD#A0Zrs2?1A0v2DG7p6V}>MohN{
zI-pbO!=+PN^Bhlw9c3k~Nl9;f5N-d3M>knM+4g<<+n5)vKsttcJs#K4H>$nPW&KoV
z%y;S9BX#WxYsTtZ+yl~sqQu*xO87e6?+KSH^qd&)wC-u3QQLMy+S4DO^3P~%w@(_R
zfZpGFT7z#54~MAP-QkKEY@P3$Hy+w%1$i8ktlDXm3K+bqH?_6?dg+ec_zxRgWO(u3
zaA>I;ej67xKIR&8o@Y=ows*}p+abR6DAAd2ESPBN5!hUi)fm9b%Z_S@Qix;`xxsZb
zu3d8@NT`C8`EMClpi4IvuJ|l4;|OVYqZ+Rrl?FYyyj=tuiyo#PAFKz_%tjsn<NhTE
zTk8JyQj2$f5+5*8u`Eumh23kLKpx(>=f0OTIq?ciy{W{Bc5b=4k7{DBwA%CNi9;(t
zEKZh)Yn91Jol3+Pr6y14pDffeSx$gYK527W+T1LRb#%Od!Sv+Qs<7vDJ#1>05ielv
z0xGMhstF|*=j!DcNfZ>*N?2wlB=(Fa7AF%H=avY>%jwCCg+<H_sT{e<@+L~@#RDcv
zU=D+>9-7VbmviFDMXV`M1Us8}O<wBf&#xPNJvn4I75)4JZXP!{7OkwhG~^f2lc4EE
z8-q`Wo?(RYHCeYA@@pp%MWMU(_5%*%Bk5|NrtnJop+XX=Tq?oa%kx{tIf8~+B2Ek2
zrUjDrZQd&jJLV+{KC`t>uj=TzH6p*%Do}`N99WweVOvT<I@x{7!VlR!+9_^PsmB*0
zv}ey^sXB<hYB$M+5>Sr^*buXfXdK-OFh?LKej3d6Ms(vBs{Nor>*mapy4f_cI6I~k
za5koJ54@lmlpaW_F^T?0BkHW)m@eqkq8V<BH^;$bG}~<rSJ{jl9=KOv$espvBO*dY
zwC4_LTQCn_Tjh-I$J3xLtZBrlhK59&_>gew0i0JlG?mV-D{AeRpDkU?KN@}+_<lf>
z0sEt%!_mhfdz)_YXN|5(pMF*Z%{E;B@bAu_U#DL`e)w>H4*(ua6$fc~p*ueKD%A{_
zaEk1c=I<Zjp;^q<A?fTXjudPu%H(S*IB;ZFFaML^#}Oq)$aB3glsu*mY-bImW?Dz+
zjb&fd*C(<ZMSOuQl}GJZzB?HtV`d+EMPa^lbsLOCO+lEMRCD*SnM~KBqIm`U-E%YW
zGQJvuGMVx+SN`Tjfi5jXgioLx*N?7f9(12rYM(5ITj~BjTzFB@w(SXFkXc4so+EWM
zyR3|`aX2V@Ss?0)g|$h9t%cI-h^v-br{7=w`3FJ0fa!8pL70`v$XfawaL+5SdJNkY
zY2Thx2iNe|k=NW?QLkUPC$L31dZw%VaP-c%k8%>fE1TowS5p|}9MIhJ!#OZNvZx_&
z;Pi(}$Ov1sYuJk&zqglW?4#YH-bVg(i`lAVajV?!`RN{i@;dtZ-4}IgbHBwLSr)+<
zc}|kKiWFMQLu(FQL(g0DF!io<@0n+YQrrHA`=|pvgjvS1rw%7FbP7Nk$eRyk@!Jau
z(U|1K`m#8R8G*}u+R_OO7_k6h8a-T$a7DPKV<pN})EI(z?m?DeK&?0WotGt>){!(+
zmf~)<4eXX}ZQAXjvr(O5M!Q|VopVSJBA>qS&HTb5s6b=Z{x+Dru37_Ov;9$iVN(JC
z)9F>6*SkVhH{X6O$QBdd&nOWyE@stj9|Mm4_N_qE{>xdtIj7HYCn8!yE*lP!*=dC4
zKfv*=_FZ-+Ly?PuRr?v%CfaFi>RZEysd{rhKi{QZs=+hp-gEW$6v-B0-$r1nEHWc5
z=O&_P#O~bwGVt@RV^*a90KKw-4BCQ;Q5`@%>9T%s=QQDa17JG)9)PH}_hv{*V%c~t
z)RVLq^VcQ$GUGa)11lKCFGxVJaHjSeNC->kpnu)ZNvrZFY4BE&&ox&Sb-yh#g`qpa
zsER(oTNAXJ!JOe=92O%Uk;5D9zxFfme@3GaTiy`^Xbm%QWDpI7JjaLLRlo~b?xujx
z=;Kq`*&wbB(Bo179dUuk=xB4xY8`^oq;^9a6QL~YDL#x!YC;j;Xe(pr5sb{dsw^G^
zUMg8r^9ZzKItpcaF$r|HR?i9y5x)H$=TBY-^jL(F@&H1%NhvV)QBg?)rxDg+h>40O
zA(LbW6aUemZ=GaYPy=CJHaQ|PLG~fpt`}|i91P?;sL&s6A`|%y=<GfRq~cZ_%qYFI
zwPdK92i|3If;QJjB;Vkyn$A`p2*Cg(03yTOnDceO?RGNc;#|PNnoLAh;Da2NcUgD)
zk&OK~Zz~*ORk1UjT8K{YAzzS>8?jpt!S^L|8n|>hp+RzFfCT}DbcjuM7z(4CCHZ=c
zQ}o(e6!c#30(gF|SSg{DlxnyAjCKCADZ{q{DnjTYh*WZ~cY79H998?l#wajw%s#rx
z@uJpFDGDG}Uso3KfA_0KT@wI$_q|@&ech6~@~W_~V>MSqhvD&4^8eOo%r`&2Wc#Bm
zOf2w%5B_JrQHgD`>uF;B;>(75mkH<hqXsVFEAl;s8!Qg@-E#5~x<bf81Gg>pKkBcW
zz6h~M&Pkat+;$ulbKt|hvKBs(BA(YbVf@Dyd3;g{sqSsoES}sHSjaVi%%|@1J8Q#!
zl^7zuskgNG>b}}_z#vdUMOd=`(~1KHxsCK@P`$~3STbd7W5j`834i&{S>%Ex?}A@I
zg=mXj+;1AJSGt5@^sYj$Ea-WtS;oL=WhmXJNA~$!m|ztTGZOO1sN=xr)@_|B$G{MR
zM^kBrmXGwr$uO|qx<XDMk~*P+pQCRbV@B~Gn|@?i?w<bRi#W`?9@#=pvOMzAy#{kb
zG^1||(6$-ZBNFdDnN4041>N~&yDpxAqjI-HX>Aqeq1P6N!Dk^{AzSXe9~~z?Bz$GH
zm}9=Hh?&%nnsb8$Zol|)u2${7vd7nO#5UiymHsetm``9?n}gY_6p9n}_Jw<diClcE
z{U41N5Y?!_k`bjgca5D@Rd)I8Q84^CC-GgSp@tyDNi{)$t9M5|Zg|FunGhEp?`I(X
z#8W2<1h<tYzO`f=wz?ALn>w<SNwffSlj~W74@m<V33S$+z%P>>N#=LBpM3}n;QG>>
z#mvc#XcIB5xHC<(N=lgF>NsW9JA|;xbjZHW?B+81%kW9oC$T9jh`jP#TZq|V{#AWc
z&j+@lK}HHdRzm#Jn<`3I$%dS6{KLA2@=_YVB4H|eiqDYY!3ws#F2M+YdD(48u8;ej
zb>=9qTpd27yb5q0E=7T{gmYlnjVXqNpycN^M+xT&2$6OMSloZi{hA62uItnNzgvjH
z@5|v|<kF~E*-!~Ud<_qmx`OjR?PX_|U8RQDO7$f-I%N!6rx2!dNMMra#__YE2~3Ii
zfz{^njNy%7?AZ(NMLt1Vb8?A6EhaJHXps)boKTx*4%bI-eM-lq2!EGNRc@(bV474x
zW+-_0$b;(<SlF#jYG!Z@Xqxd^pfY=2Rz~{>UvG&0%Y)GD_&oyCT>zvVtjLVuAt7nM
z-Cmms!DTxde2se*KcjOVJNFx5efr;X`=rjSg9vJ!t&@2S>21N%M9q-1lcEec9^al(
zCj-28J`uCL$xd$?CRgcO<-r^--1FzXf_qd?Xj~jmq?X6PXh?SKx;n2oWJG<sSr>Ko
zujb(Pn)WOI%m|O%xVp0)n|HB9nhWg0o8SK;THyD%mPj615!Zjjy}Gye_hJqhWIB@q
zh!8+%LD+KI<3A@=v=5nCoC+9#w7}zrUj0<g(p=uqvJc1TA_+{Ud>)jmM9?WmXr7;`
z03zy?D=tX$jSj;RkL8r1HA>Huf8Gm3vno|}YC7esUdVTI@;T}C1bK(0OQ{lE1$r6<
zCR0@H*a8z^rJ10vP=%gUi(ZNRu!LmcRntO-cPS3@`Hr-e&K-J+GWtq`!}H)0C0G4(
z)j)l<Lw1>XeT@oz&6W|TRDG>!eVupux)!Y3hx!<L11zt>@3RqEWQi1ZRLujxDDgxw
zAvXcb>1k~so>EfSZjeegD0D1w3gt{GZ7*)r)Z;a@Eubpb0-LyiRr`99l3Y@uhHCSP
zEPDXfi>o1qtB@e?NUAL~k@s94D+u9&Zg4%=hkHT@iMIiVTPfsF$#2YMxsJ7U3OyOb
zGVQ4p+A{!h8329E4V5trp*NOTFF}R?OC^EQQa}e%9u!wzhT&NWolyQJJh2Cmq))we
zbE5a#SpND%kCS?C4iAL3f{N7$j0aK$c?soWBiM=$Att#w<GWQx!;TE+FZ>C{A~fjE
zat?r=_#Q8NzftJLW>EwbX7>oOEbSdzX*HjCTPF2dI^>>AYH300%EMNJqslj*YTi>5
zDoLPsDY{`8;6|uwHShh8ru?ZnCZ)BLvwJH0ro9%tNr3=`!-tf-=_wuU=L#E{AbB)I
z^F9q{39ZNjmg5GPe7U1g{~5BsdU6uf|KLw3-u32#?@kXunhEWP8NDd=$0X>J!;EK(
z0xXIG?SqPorsmo3B!VQqL;L<nVCjhzen_Od9$N*-8)j8}F!e{3@+XBx&%(5y{J2wd
zp`rms5vp3O;o2Iwo&cg@7TlE-V0|);T4-V46nLqez__jy4$?hurJuFkHj}IF+>fnk
zHmS&cf}o=5xAbe2{6qws=pgE%wSENprdjl`rQQI-JYPtvQ|RH8kc$XWWH?<^(^B26
zLaeh?>WR>CMAA=QE7`PJbexEBNX_Xe%|U_G4U`&#bqB+;GR(>H#|x`%`ZTw<eTsfB
zS5dlBA+s;=mXSDa_+KvA9gqabN>geEplFhHR6|ODvbEz^k5ayd&wLyp86d>2X#n;|
zt;Etq9;aBJbcz%R%PYZwcTPk${>)=VW(^u;Ls%LNLzGZBLJ|?x7e*I&3|7;Ua0sb`
zX%a;3@LCJ$(lfRv%c7#c>)e^eJQeGS{tqL&>zp)SoU_n1gf0NoTmYARN<BdYFU70h
z&{w_9=q0Z-!lV{dGZ$pt=1t}R*YqY?)d>$w7evQYjB&4oci=0;tG9%elk@<|LX0=#
zY=hD&%$_dFRobnBU*WjLB5cJ|8yhmT?Qh2snU?EWKc}F2+TRqA@Z1tr(%KHy3yE=J
z=5B;!mbTSq2~KIL)fk}7AW{Ns>$5g>RYrxi2k-1S%%Uarl3w0BvCVFouS$s6uUGka
zQ!!N#5u(x%X5Cq;xRg5}+40{?ns3%MdQJL7$@1ZcRi$qtXNDfg5EuSHVtSs2xT&RF
zK)9b?rQdq9Hl1>9M25AgS>wgh4bG-zQ1hcOnsYfcVj%6!wB{QxQCNK*95UI&3v{v$
zCs1QvrxY%?9}g{w-0#ve>EQ<S1}tRgKYZM@oIfBvyCA){Fdx(Sk}B2W!{DqYV*HTh
z2^%xv$r-7|Ls!U;ERJyWN^cpiNoeUvV+8OgzP6q@7S=s(nT5-epI@pIO>Q~uehGRz
ztLZ}9*(OeD^H<?%{yXj|io8%yHQaHDC$)FZw27Aty-p)-NXcz&y6h`;Kh1pDI<rzY
zYI@HW_~AI^y;%mx8mOzdLSb_)PO~R_x7EbSB`98g+bs7`^qt=pLk0LzWo8G4&iaO8
z`F9rQ<w||QRya&4L1Uy3)A)QMM7L+&@|<KL_78<vmsOL9(R_PyX_kArANh8*wL1;c
ze*eEqCqf9;ku)P8>ec_&B1f;WJYLJa4ZH_vz%RO#OeuZmmR)PL=HmshjVy1r>d19r
z!*b-qQjjWiHVjvpnXCy63Q%ii)5tm3d(Jl9K4ROA?i&~dalh+WzYY%8OEj$NyvktT
zbT>NHk(J7nF4h+D{+f5EGm4E$T3gJ}IlNU!O@WdJX)tF*#oc10PuxX=#I`u0uJyN*
zOB_tkHM`+m*TvG_rKO}5DY3!Yh8e%eVvMh`bZu}gm5-==04{eWf@md*JU3sjnjd&X
zGIyD%<CRCIl+HHE;X|iBSKJcF=WL%<uIMo$#T21pAnB~8%P#VAUF`#yT)hFD&iJ}-
zVb3k~0cEACB#cU_jA|;JCTz>$JrABe>4W!cWy=$|*(+S6y6eD|LX#wrNiTy5kD1tA
zkiq*D;ib0SHPHJ;m*)|i$C(}b3Xh6wrLA(zj2t>;iaf$nR6ON@MyGH$F(i#202hqc
zD#PDKtt*zi#+~$N9C(*{`#8-e`na@Pr$a0Ng8py40_%tAe~`M~%AV|zn!l;sex)8b
zN!B#t3uo*$YV#2?>AN=m$iT?w=N(XV7AcN~CXC(lp4ms}jyoZ-FP`VRy)Rdm)?+yB
zjX=i<V$#RhdYz~x_`Q)E=lFOH3FgNNE;9i46}ftKiFWmBin?J@c4h)owy;3X$eSoH
z;a?O678{Lh^4``(Mtat_jK41EpO>czkfR+Bg(t9?WMCyA4C<tqlH?Ka6JWbKvIKu$
zHQmEHp#DCfAqlKO2CGDRNGO3stU+RXDK+MrcT^MVx;{DQX|}a#w%&izCKvEPf3W?_
zo?FVNhf66oOKp{3{MpX-``)LRT5Fm2lbV7xwXL=9`e~nl2C8Tb^@Ib*%`-aK4;$|6
zWyB14?Wzt+lV-pQFUGZ)6<4qeent6EXS8;&?x)eW$>ULj?)X6i%9G~<B#ULpg=ea9
zCuLSiYF7GX+54dLFOT=1_STC1Ka8FAUsM18{<pD>jofHPjUFi}NRH7xx^eUf>BbnN
zLmV9vBc!Dy6?HTyDj=mIQYvBrA`1GF5AWOeANZc%&+T@8Ip;hd*W<dbyEh|Tn+ZX2
zKYB`CV9%~G4Nd)9{;+F(T1Tx5!PujaV^D3dnw0&n<RSa*(6{$Ozju5iDQAB-c`W|V
zaEKU6VrHX*h3--UvM9MTb2+c<bjOHRtAn{)d6i$CnduY0f%8I}-@w+on7`g;`j*l{
zH^rFnBjl=vkA}$OJxuoYa^BA$-;a|X|2BVgqAWT)-MoL8`LB%u#uu@!bMRGhoaO`Q
zu_&YCP=_L()ny(Ok`Q!JW-*jExm^+PK$PG|`RuC)d1x%J5F7;dDdQQ@NeU1z&0<{h
zMAWk*ED+wrLq=&mE|uGi29b*{dN5ps!hkSmKoN?+@GPJ@OX&uP-y-VXxlXh-!gaM&
zXz@Uy^9Mg)l#w1zUytL@T$K21hJ^`EM^{!dH!3y@r)hmuJ{Dy(kF&So{2LxEuOexe
z5RF->RXB$x+DBV8T{QY0jc1LqSt+sOkFnE@v6uX*ViDsQ7UMKfY<(lfr6$Jp!l-R$
zjQfiikAaw~vSc0-kS8;lcb6w*=aA9`2-qOS>8SWhg8Wu8$(PFfzGo8E%Hoy{{6ofB
zOqQeqj~l9w-Kj4vRASW<00?SS1;M~r#pue%SVWe=o90;4zp$8h$9D!13G{K+2gd>L
zeiBa#c>%G>8OglV;Ekdzu5bmCa=8zG4IPd5EOZt_?0t+t%U%~1$`s=9Q#ne%K`xsq
zukiAv)bQ>SjglcJR`nI-uga_SjDlXo{|P>+nIYxBt4b9jrDYr!x$sK9OL#jOFi}0;
zN1dplr`&##kS}!NCq~ceNKcq8QpLuVQw-}K#}lh3T!-V`cM=c>32jan+vDn*-ksL1
z6xZv<-?&_&d-5}x_4p;o)sbRc?hG^`GX51cNo!Exa85?h1b5Z>Ay;%bRsn4kPU5>i
zkF0?l<?gw$(y6l3scp9(Z1Uy8P@O#tY`<GO09OOtDxb~6UYzj}txOOO^lRHmk8fp9
zy-2Dd@FUg5D;tuoO+1$9$SO0y4t@N5mNH;0mw)ZSjmf9F($7jW8>g<3b_$!h;qkq+
zx8GF~+m*JG`rdrs`tX>#cJ{2ZH0%8>ws%f5y-rD0#H8dnP|4!0xx}=}BU30cnK=g;
zr(qW0CSJ4Vd3=NJSJMVH{9m=K+`XYHZwP3DU}BIaae=kF*<GW?-2O*`vt?%83W$O8
z4ogZ(wn4jR#w$7ddXIjMl!?!?X*wT%4tw5c`hJ#V!bD0<OHT@mh_~XpfJ+s)0LdsS
zE-4MZQX+>g!;_1sMc3RL((5uBtJ~-*+dC7oBCmJ#^$!dV-GA^uxpr7dWlUjWa)J&5
zHKnI7G=MxKSQSE2W?1Z5S5lcSoTYHeS-sSc<a&RB)gV8}T;9$gOW)*cLgb$Q7c17V
zcd0ws&$adTK`f%iG3(kcUi*kK4ZySih6b$c%EZ}fFySL!S!&^1Of9H^D{J?}0b@nI
z_cHOl{`hLn>Ei~QC*ly)+N|Bz*R#p2dwNL#;OuObwGIo6{?5FpG>ff~MmbYcZ<+pe
z9VzT0(H;jQhdwi7-+LAS8@vRUDY{wFvlt!f@u8M?N%vCR>xSMq+2@j?rQm-rOJ6V9
z%9*x$jF!B9o0B_XTOaK7W~<saNy?9*{ocnHRQ()5OV?fn@2OnB_>ucRv&3DT|K$Iu
zonT~R52?qnZ>8mMOARLTSXG{>=flO*iA30YS`O2RJz~giKMN-*W{UuJgYfj9^qZA0
zP)Bj~6KB=>Sw}^gFH`r^2j{3$sG<{6rT$dbzdzB-v$YND>|*U$&d4W_-%|woqjQ<l
zpnd-}n*dSGAmtG-!;>%(lW7>-8?p}q3I1IM39u3sMj82tR6T77X`=$~KIhLDdLNk#
zfb;gF=d@(Ij*Tcz(aviTGt6D?cChn+HN#!KvRh)D^GG*ux=fS0tm_tt9Y%fcnTb5@
zf6abbgwq4xqP0xgC`hVnk_^s0Aa30XjUn7-ygsfjifrqfe4QFUqfXS6>R8>%A&EVy
z%lSIJYrys=lehZpPK^3}qPEk*VNDZ{PBT||9GeZ!<V~%abeS$x8dK|~-Yl%q_qOB>
z<AbkcY5_yZhtHifsLYqHaa1IVxrLXVi%m$Y%k~nBiV|NqeS705@a9GoD3!6YiwxAK
zpuY`n+u}wTRkE-~JTfFa8MZv3Mx&FbkiIf<0P4P_eSP#`oPMUtX=W%KIWl^mzVG9B
zjQKDc1d}S--)4(Q+*255`>5B&&Z*gb;la02#)(NQ^rn<V$`wtMfp^jY^8lF;Z0eJU
zc*gUN;(|71B%?vjolJ4cJ`F6@OCm+CZzZ0a{+W_NjO=KI5e8Xw8nSPBy-kiW1%rU=
ztdr()&vLo6>XnDmhChzOL=2W_Eyk=0O9=GfTr|H<#&6uYd@B&Q>hl<X5iJ?6O<MWH
z1niwN;Ijn32_3tc&M0NToXqf#$tHf~@&j3U8>zwl#g{hL9zPLJAI*Kamqd|QU3y8R
zs4$qntIGHygL!rod%*(rj!;_dPXF!xySMjxGZV~|pQ^EToorUIlE&Z4q$=Fo%-k+K
z-3yWnyC-tlx9UpwPHEV`lijAyf88@8?05kdF$wx>>vOk^MZY3c4y0l2q<y#$4-Ov7
z4sxC`_WTiK2?4W{p&I+J3dRipRGkE}nu53?oX@eUw8EdPUgiqCg&ZI9eycZ~>xtN~
zGlTwAcEYDrDfi8?zrVoT3m_6mj0&_d)(<*Da3zn_<bgBp?=jT^D-hnuU-ZM;<JMuz
z4;Ddhe~@o?)dsFpsM?+c-9H|+fD60h(aZDX0QG<yWq3CMSWnGR78TOZH_BdxuER)#
zXD2F&A`jS%Mi8}mXXRU1Xi-|@jF$(2!zVtI2IX4ULpzD#xH{8~v<)I*g$;E}hj^a#
zlMdU_U=hhSn63q6UgY$tna~tbfh&;?)M~#oTuI3n$3y^HD&GP22Fxv5zL(ON8Wl23
zEihf3*UFCG^CujGG@jv*PKacn1Ht%T3jiW%qX*EWk?T(aybf_RIG%O}<ZdSMv15}p
zR<c0JM7z+pMSSto`ZYizKJkmYBnlb+Y>J7Bb;tV*H=mQ4yGHCH#!U5ir6jI<vopZO
zM>U5&S?((|)>zLO%Yj5KCGmwYz%%0x=-j;cRgQqsmt#t2WkU+#^Cb<@ps!s%^BU75
z<?->2KNxWJ=Y{;JLqZyMXakgD00N3D@N+n}4wh&%RqH^4ItMpKS>{X(*5ZS3Oa+iH
z)YeuNZ+#aU<{of18ZOq{qGtOf?H;+eu}aLqogUqi{@?SWN9|+oSv32i#E^<u@aIJD
z*U8^zbDP|qKeL-j+kAe@Q9+Sw^p!M!^~7~qdCJ0Z-|UiH%$e4Yay%PH@Ur;Lh0z@$
z>EEMl<ckl5Q_-g4{Kl;Ld*saJ<i4ynLV*^Q4EcRb6`M`ru{Vd9-9+eQ&eaK@>-LMG
z3-G~-so>k@?ze`iqWv%nqG65#a<skLpYtnG?-I*P!SqgDKBS6g>x|?uwIZ^9flK@L
zOG66WDdjeO(gj}Vk7_Q2zC#{&v;VjWHV|U+sjXz$&01`+@Nv>$n5K0P!GY{#O2@+H
zWTOgZ9k(Anaaeeo``c4;_R769jAGhO@QX5(cSnpkIYPI1SpSPdUi_VjSV)=z!p;!*
z#Q_*~)xxtp``5*6>UYlQ#8(oUCo}lG9(JYM73LGjvxik_Uz9~BN%Bc9%*OuDbZzk-
z_wQ068*<6Ath?aul99~B4VDT^aicexrDKWefb#r>OtOvQV8}8Z10gt5uip1X8YQa2
zujQlCi&^XdjH&eD+WSO)i$r<!RD+aU5iNBn&K%#B=-{#}JiFv2;U966?boYu43-X$
z16~s8Ca)DI0&1+>3Nxvsra%Jdxwjs>hz(iu3t}qK9OEKm8_XrJwbWg0lvcR;W$XmC
z%8Iy%+UL*uAi%ObnEf`BnY_nYv%})_Tz^O=vViY1aFXiy-b259g>?Tn{MsGG2{Y^`
zGfm*@O{2ExZzMs|Q&d32+EHm?`};)mlTF0gt-*0q{r5h*YIiK|n6%XgI%}$b-WHNf
zg<E}0Wk6q&k;jUT?S24B+J9%2Fm?vo=FLD?hk^NJfb(y2WLtuH=L5lJL1(~a9O4>W
zTg_m$Rxe6K?4blpC)il?d0KrnwnT)QcoRYwNzv3>eA3b1@?9IOl+@nX<{0VAx`1FK
z(F}7w-Cuc+ioV|uK+Ex5l;X2F0+Oyhyc4Urc3~ctVv+PJb}EVe{{2+s-y&0Jg!veg
zckJro;)B#?Ev^l-SU}uAx&y0?;en3ew)cD!&U2@ja^;7t{I|2)x$Tx;u7~$q{XHIh
z@$j3rO@xnoQ0w(lp|;OSkR3h!<{=N*S%@l)Jk{<#?(F+r(6Q_92j#$z$5y{KH<)6u
ztQ#kg-?SlmFf%Ic#@|1I-N%J`qGb+`-_97%+=+;IqBDPZQSM6je>owUj|)+aj*D!O
zB<!!I*cYh)b~+<VlELZ#gMKkcbjdsM7n5MD*R+vwz0noF2~rV>r0(UO;dBK7v&)er
z$sr5{2R$v(2})cEAax%&_^Nw2eiqF7?V_2QqK=(XqO4bvg?HkmSj3+Ub2uzTVLP6^
zkbIb~%;0_1C7A_U#sitV?xL6WWgyA9EX{S*_u)sKyK^93JWy;7!LkqF!6Rg9BgUI9
z5i$Xc1fbj;i7*cmR{+KmGc3<iz#<fp9d0*_o+=j&z=;oj5yQ_imhmYL5jo8h9iI_D
z2o9M8U_V}a@ev>w4nlMRIA|auw`VUQtE@SzvRU-zZe~B7cy(Pyrb%`TF*|z9Fprp#
zRu=Gl6pGrA-3bR>`JEmC^GLGOe*nu^2?z8|8xF!?e(~u7`?A9E!AYDNTwMTmDu~iZ
zA2jG2PXn?j0~ee@<tYF;8b}fkl0<;WJERy%QB*j9kp`WN@n&DNxayZqoMwKOsj;b^
z_dY%^fqGMfc5^!a(k~My_wl@M&SV)x=1XTc{f%3IPd8U+WPL!u9OmX?JhvPm-5Zm_
zQ5ebPa??jG2Y(jF?$8BdB>_+fNlR?*)%YA%1!md6oT=Re&HUV-&d`b7f+3#Vhw1>9
zS2s^e#oK`hU0zB~e!iD_y7E||jPljhUHax#$1=8JH|Ju<gyIh`(-gw_V;w;S&6n07
zX?>-f#6u7~D{sre^7bxY@zJ%z9)OmT>$;kf-a_=s$Amyr#VVLx(eILVb=UqryXqdm
zjRZdU5-i~ruB4|V_LX;5xu&sy+RaE`OFMvHLW#JjM9B%C|B2|Lu<PfhGObBluaCJ^
zY5-`sxHzH=AAU364_G#a!py1AlR!c=pwNc=TB%Wt6Tm4F#6klZO?W%Zfr2)0^{?#j
zBnbDPW!=6%lm88QdvHO8?$hlKWF_AupgX~;U##lh4E`q|pyd^+?F2l~qjq_SetQP>
z9!|O%QNe_eOwvbqAC;5ItjDiVwV$e0IZ8@JJc|>`+39ZIJ*W!q4xM+QMnqS8!kIzR
zC45a~qdxlfoH5P`wLBHIgVf^QXhueKK^MAQYXtC51zBQP7hFV-d7XT`Z!Y9YFYd~M
zHbX5d)RPFz>mRg$TfkcbjPzY~KausR;ULY|_3<NsOQ-a@r#xZyEcTi8MfiHTM3^lD
z6O2&*{zsi+azh)`+^wR4$IH$+TO)y1p;1>$tY{1hV&uQy7<$?m&H#BzNal!kiHczG
zK<@HdqM9D4F~1sVBB7eet`=7`n$r`T@0UVEsX(qSpcK`<^iFf`UNhyCHz~W>_V_#;
zB<Y#mQhnM&ea)DLYHe_B9X$dFDS(0+fjC!-=GNA*mDXVj@LE9YxGzB9{1xzN8-CsP
z=n2G?7Yq<S0Rv1x0D!DC;1G~XHvvoo006v#LVQBP3>YN=VNs;qMfMAqI21K_RkVf0
zCHd5_0_u7qT884fCgNBV83PM>6Ki>6`~?%dvW1-*-bo$rq-F1hHM7Dxd0?GA4BWg-
zJpIfF0T$kYc>iEq;uVMBaF@_X_lTIwQSn|e34RIJ0+Vh8T}!?~N)1m*k4(#q&CE&2
z$-A0IxlSoa<KQJ17N0-T|NjL&qa}x%$fC~S7!i?pjheaUAAnXekEy>R-4k-fLf7wR
zaofAA-HBCSh^wE;5UWmInd9N>FTVddBPEkl&Zk=(lYkhS3zE*I;E{2SUPMG(f!%~s
zpf4hOMIo;cUujreS{}qC9Myo65;o)zlXNm+6@vw_%19IR+dFJgVv|#WcqX(sioyHo
zvlse|3gV2NuU@}dd%ON_W7B{lEg&K%wQ4(Q`o)A%jCCu7wbgk4(4eNazTw-igYZ{{
zJy<Xkk6`bF2pecJlLg}n;IqX-a(!+0vUb&|=P+<Dv*s=Xw)z6Ng4I?0{Ae;qk+jQw
zevxEIPT-Hoy|tNpO)t)BY!L=1G9b-VQci={l%dy3+tT(}_!C;1&(4#so(fB5+i6R~
zq4fkPozod9##ORJ;nC^k4sU!svmGg|9SFfwGi}cksSgbhT_%d%Et_MR>@uEL*^JHu
zse=4+1i)r89lw;@q(uYm{V2|ev&^M|MhCMrO3@ibh6M=27IYGV#((&U+H#jQRJ=0r
zJ=gzO0m~XueypX+H>_}fU}XBeyumV=_oS53Jcb6|E2$$EU3B)j;fGX+!>h0MJSIvW
zv)L>`V($Fpf?l?hnLX~7rlRh%GXNBW7Cv7u3;8k+0rVMWe8cBbq?k9+smR2`4QE^k
zfDR;xSv>=#vv-A45=6W+!7v4mWD252mNKd*Yl1e4I(2s*mt=AVk1_ZiTm(D#2v9c2
zGevVaB%1#cAX}QOBAhC@7*EO4pEKcrE5xfaA-{H)aM5A3rm2Xft8*YGF^g~s0-gH4
z2$RrxAy{!$3jrv$`<8C3#3))SjWH~@RxexMz68jT!sgYC#B^NTsHYf72R1lg?|KdQ
zkq;kb_{_Y|e{S1H^V+bIq@|4*)zOYfR0-n6`Ha~06u@K<$(wx>J0gaZVL_7_r7TDQ
zFxUIQ)MDS(isDWhgXRc>{OsO#fxK3_6jw#0G}!Fc-SCwT{i9PUrrJESn?2D5eP>?)
zlIKBOkiE7<YK`Hr$$OZH`wA)lfxUiN%DG|g1yI)Aj#MGHmc~ZM%QN;7AXKCPsP+oq
zAcwo#{sJ?JkSI7fYe2Vf=lQ;Bp&iGwD!{~Nv3K}XVd}3P5Mx9>99J-qTr62iU7N2q
z<sjCj$F<~40R(y#o&d3*&4`0&UVBGXvDD-*2;93}=VFDm_uH3l>D5KOr0bgF5>ddS
z!GlsSmZIi9GbD!q^&O<DCUKRBID!Jd>odMSP)9aB8?)lB2TK8Mlpgx*Cy8+tFFOIV
zk=8r+OAPEMLzt`n8-K@EAQJ~`D1FXZt^huVAq(;6<Cc`B<o|r>W$!t|l3R1|CkSZ{
z%g^h5jc-2mpd`kksX`>SiUgZ3ZEPo$Q;%F=<1S~gth(GrM%WAE$q&@N$s2sv9R(QC
z%P?(T?IbeZ`mg)*-dnxsILQd*q<sg`?MmI?$kBL?Pp;{<O4)i>j3LPd=irBpOJeTN
z;gD6V5>$LxBpzVN^*fc(RgDDSeV>xZI|(tR=y8SY!$em-zdBBja@|*8fGK3kj2Z~5
zAV(7SB83i&xGEN}Jk6lvDH<;5dem%V4daepM27#?;Sz`dh@v?hMtjMla}-<`9|=Tq
zX8Eao_lnxuoBf3tRWJb##Y{WY?0*0=XQCl82%CTXle+&D&u%%z@!Ci4a$#7T2|!W<
z+N!#X{I5Nqr9u>HZi2sApsh!j6S9MRemH98dRQQ%lFXnxNwP{Txc-x;ZmmB(Re}Yp
zkEwTiIyg|z*=4~HQhytngDtkwOU`<#VT{CWfE-Jxf?Iq5N$pprr}>1WpC(4KubSj-
zJj24&?McwlRM4Cj{yZ@SWIRW%+jOIamng;p4qn`xZw*5XFb#<3_G6OLn_#wk{Csyv
z<oN95K%Lv?0ghUn#p#b405iV8x#-bk1EaVGKZ^C>&`eksM~6}<ae3r?tN9u-`$^mS
zx&^Pc$ZlG(B`Nj00Un>Py+OBCFShc5j33Om$vyM3aY1&Nj*l|eLN*%erGE#24&d+Q
zM?`Uq>ZD94PahClu#3RWS<^pPW_Zs(HoB<bAUZ5hb$-_BIH3q!Vm|k;WPWVL^az!Y
zzQ{LJ5SOMKd;*;fU;@e17*6$Yy?f?gKg4gM&7yLbu{E^4R&kWUh(?y1C@#)ZZbMqk
zsIm(a%zL!Nf_Lc|FK)^<ZLPIPt7D%4-MffVt5rWaU=XI^r4|zm!0+HN`TF8EzRKmR
zls#e=!%ylrUfq)ZB=TnNi0i`Rx2@qBZZk+%Dv*87&Bbbt%!DQYxroW8u5)V)6u{lZ
zXQUYO4<!1se!34D?{N<B+vjK3YDw7H$h^V;NKhC{ccEvOL6$~>H=|wgnX`1zJ3t#?
z{eySR-!C~*lIfjk67^-v00rUtVbxzl^Qu|tvjOSHIvWoU<Z!VAIjY}LnBmj+oj1~G
zE=UUkkexPeLqtii*P76s-%54lc>eFzpnTdjEWNX>N>L`&eoz|}SVI7C^C<b45F=dO
z!a*?Eb8-c-6;b34W+$l)EfkZB%_r7+#UhyOW1p^%TC6GE9!leyL!yN2NGt-rkBsmy
z^~~l-BGa!>G0*w9GP;%pI}QPu-vD|Y8q<VyGB8X!87~%*$1h+2F>`QYE`1QdmAq0c
zm6b<k?ILqE*FR%;JwJAqx_~thOPr7Om#oU5s=@ra1q%gn6+)>Xn+5wY32BlZOC*TC
zi;!2o1U}Qijj^M#TIMtrIKS$SWF<s<z;gwp5P|UE0j?O$VVkWfA2Gz+D{m!0bXMxn
z5TTK^mGn>LE6+kr1L=KyZM}_)5blbVfV+az7!Cvg<q_MkejQKy&snq*qTY%Mipm@Q
z_>BJRsx1>8_b8AD@Lh7B?>6g;u`3Sv2yp`~9?r9PV}p*8TVYo>kADn4dGqYB<Uu7%
z@xdNh?g8`$9gIoLWaR0YLa2{5!@Mlu_wx*^qdN9cwCEfOa*+bspC9?~?~@_DXHj_l
z$69V#^ociv?-@s1(tn=`zs5|B@gM||x@|j6^5FJ4r(dBjdku^MGf^$SCja{u|Kh>=
zujjuW{rT@ZiFJ5`-um|_-@pA#>)|c#7r!Sp{~b_n4ev-=pFDB%-1l>y<!vQZ&oU-6
zHmv@Yi`+{8>*{rsA@!f|PWZ{<(@IDF!H#R5-RsML#E?07QDKV_9(#g_$MCPzM~s_)
z1{Dc(IpH7BwEEO7r*O$xA%I+n@NIXZ0QaM^>4QRDs8_Vm2|E6qKBo8YBlpOkM^cke
z$CT^Z{Mi3qOP(nzjAyUdeELt!`3%{3D=}+K_rH^jNHfGWj1A}<I<V(Y&rVZ6HD+E$
zNB0jf?+{qdb^*yO#fC=vtVSeOAX%TknRP4<=9I#Q*-*UpgEP1ZtiH%TyMkavBB?gW
zreY-j7*dQ#?t(xBM=bE+DHjS-nD8JRCY8(Ux^GV~ijKIh#G`gE#ab0=#sjk8VbV8A
zO-wW5qpC$qMqs*9rNVXPVaSWB{2rLJ%S5Q3dRj2;s>MsV03tAC4uONw=^2AnBiND6
z?9EU<4@rnq1o*~pC7F1z?E%B|XrPZ5f~%Q+-dGS`#=Ze`u8ZbUZcYh_V346?UaIGG
zA4##JWN|IHW$Rm4H7kZKf(O!)!#1<R!?VX~K|C1k)ANJC0&7QE_BPe&6wA|@nS3??
z%jxR|rlf*rogC5>fPo}{mjjqQl9Mp)PzB-LG(=A2^H<s2tkgq3wc)E(Osb7QwL}Qu
z@%){eQsF#C_TGH|HEP{Y2EUkhTi(Qc#~^+ggTsD+Uv&$tI|G<EFzY}@L;XCzV)@6L
zd2_YU17}ox?X9;50){Ce(nP`H-{7gDh%v8Qf4~rxVlaEetyv;*K-k(4@6+Dv%2y6<
zOh&~E=ZR&h+$Mr?n<jCKdKX?5*dqlHL&;S!h0QNTFPL)7V?tTVbIeq3^#Su_q)5Gs
z=6*50F9w+*WJiAmF`vT()m}~OL-f|YV9jx1L6C?DNKybVVvRSDWs5!wV-r>Gk#`Ri
zQLhu#V&ieH6W@w8bb#|k!6jLhGshyxL3;851rotHq-tTH!G?q=NakInjaIxWu0Y&C
zq?Gas#9A+443O|HfcmkOMNUd&!X>k_G&t>%aZ33|CHclQl}kJj$*fD)P0bZZ?DXMA
zBBbmU1-r#=A9o)j-CRWkSBY31!~IKU!=DOLilX-HY{#Sm>6Jo^x+=RSo&Mvf61rqi
z!z&rrec7fLh%nUkS1EU66A@J^xix6s*C)ntT(p6gDlL$@y&$!1D?fv%Y4X0cJ1V`r
zFWs#q({~85?~)`AT+HQFeWoNk;jOw5TXTx1z93&tpwro3a5?)Qjb$_lfx1BV3CsbY
zTW>Br1JMEX&0g=wMu4GU9|hRGGRuNm!*Dr)gKDl*c^)(Hu{W4K5%5PuM)yapu!aKU
z9)MoogCPpZtdBE7D5^*0aj{eRUe}7uKrIu&vZQ2je6X-Lw+sn%H{y~AK(lg^>CW<P
z>-g*ahc!Wqci5av#1V~t>^ZmYg;21->Ww==i5D5|8r;Z@V>V5)xF&*YRnvaGUWEdV
z3cO7=k_-neN7gnh)(n8C;Sjn$ZYJhC)$3SgdLT$G#j2~@TJTaqbC#;6y~@vU71Mhv
zwTWQ=Pcl`8s;~-q{w0^68{9FXYRB89(e)hqDw$`nE>Nex#vRd+^J0O=^>Ca)3%`Ln
zEnFRRzi!tVT)8J@S=gpl6#7Dv<GOPD>sI)aAazi$2C+x|W|Tgqu)zy^iR)vV&&KWJ
z`i_VaPAEMe8bMq(5ReuIJ7@re@ouF*05mfVd_*go@x@;nQKznMat@C4Hc61%oqvLg
zv&YoGyzELk==w6M$KrNLzgg|4SgMIi`mA*Dr&qjvW?Z^;Ds-Am|4ut47UaF79ZDEj
z1`5T8*e!PSTRySb-|5w#q%)Y&M=E~;x4pK}SJ3Xfe=jt_MrzLbP&8T|uVnd@-#a?Q
z)l3L|q!&fiy*R0hL0C)`sR0)CrJu+wCd;1Pw*#v^m4~vqudLjT>ea1yuj};`A6F|Z
ziN}UHAmP3hrZlV-wht)n;sY2o#)8Dfp{4bpyUHaGx+?X<F9}BX1&V=nA83i!51JIl
zn27q(5e5|!Kp27|Wl}SzZD=fTApSPA?CIcbO`SV$2BnXHJ#P?V=m-2qx?-O-DdAGV
zNe#RX0A=1Gr>BxA1<*OiLyF_x7DC@L%CO_O-CWElNYxXY%9b42ZnfQx|L7u`<kVGR
zZp~rn6p092M1_KlBUK&|8<K89c%?UTYwGPrTjB3qb@C9sFO>W7V|Dr)!>k2{?}i>F
z2djs17)#svY&XDv|GAsUfxUKQe3o1UA8Q8hjpu)FD;mtAa938eH|H;IO0S84g$dTT
zG#kwU2CEMUfjBeKs|;GxfnD3$EDWQv{MO8C`pLMlletl8{?Svj(FN%XjO`EJwmo`p
zE`;GPx|-iv7;W?9Gjj!)Q5<VA!C~~A!%RM{rp3O+e%`a#wd68~%cDbsK7*8ZpG&OA
z%?;6(i(u%hUdy*ffOox<FH?=uytL`hf7*PHNBn*G>2BvC95(A7Gdc7>Rk9d2a0v;S
z!tYP6?O2xe_3ijNy+hrl!;gG15dKyK-XG6T%pKvqYF#r7=f4jvr2|zpYWPVG+RROK
z^tzcBJkjrZGNhiAf<swEq0gGvK&`Uy68Dh@YfpnkpZ<O=gcH6%u2eE;H^_0fe7`->
zHC%#}1XcbSUsJ$8iX8OqQiCUfUp|<4@Dq>Zgi5QLaXElfV|v#soecMFa1wT=N=S9X
zCqzGO2^xr+ON)@P(3rBu&DmXz;(p&QpZ=xfbvu}XE^gI0XRy6E)p|?^n8U*DT@>vN
zW9&`EAr{5pUrbMG`Jn>OX6XNuT(kjR<Uq;qD||5nZ-uZ)R2f1j3v!8bXj+l}h8%8x
zfkXJ^gtUEh(@V_P^V$V&E#{&_k@>3ov(}V3!{FHMStvxrOd<GL=bS@!Pp*23@ZD}F
zQ0?4{2K<IBI5Z~jOyqN6lp%9!(4<M5s?W$$HOS>*0jLB5M;|zgxy>1cJA;KEUo_HV
zfw5IOaMf_y`9FKCcxTA~xUyL5>ZrP+GP&}XeN|s!wF~VU@iN4W;2K!FQuwo>PuQ*U
z;pD_j1?nE?xB)1O=9iIMzM3@CRQ1}R%h0xbbX*$TctyR-<JH&TH=S=;2RxdGw88fR
z*$QqN{LE3NdaVG#Y(5X6Jds?~S~nlsYRgZzMa!khH1{VHL99>@7YX~N7!MTJ`r3Q1
zjbf&2llZoV+>Z{RPpU2afnGdN?K;QHzn1!iOEg4dwLi!a<gf&2IzenwQL@B4?5DTl
zMIVyo2By*bj7?Hn<QPDp=AO&yT%ns!K9a6!g-B5rFpVG?H0q)kP-D_3aL;ppN#^A3
zWwz&UpTB<_i1&tk+Ys!Ng~|H}9Vqj4FsK`CX_hRjocJ8aRDY0$82X!VT;Jqbf9^f*
z{j^}m>>p1GTWDsRqE7$i&MaR&FVEdOo|1okQhF-%z;yPHn$ji!oO7PE@b_N--eV<n
zLaN_K$bZ0G+7f5knZ5#6THgqpSodIgr>O~gn<^6j!!JV7KQlD7UoCj&seh<MP()*p
z{q=yh#()=^STD<TvJtUtW9e-~P|QoBhSL23d;O}VptH~L(#hbXvE5)Jr2DJj#}dIo
zj=>L1h0jg^aMdC*_5L>A3*g>DJa!J5;_A=57?1=D9<)N<VhQNA3f4~ztwnx*1Pv)*
z;$*~rx%5i!$z;ggo8TAFyN#hv3;*Wj?#te{5`J{AH$2=DUm~t^?{$R^G3|rNch5zA
z+Bd+#<FWYftUqLz9C`kQg6XUguXP3<$oTeoa*_H!{S<@%YQ*PrVLSd|Np|1b9jlSQ
zLroE#0@h)P;bB}HWWn<eSCB~qI=p29z;%hABcni8h~>5LEyGXq$GaGo(#V#R!=Ug8
zQz}5tnx0RMHaiWyq6yFW4HmHmpY$h3(0=?PMF{EsObPx`i~M2GbyR41cuaRodY>^E
z8+qn!y_AKFGNg^)9h~vKtf?J$H0pP3KsuJA|8>tIDi{!L`uJEjHQH<{+N$(8@v^D&
z$78pNU*;>(zEuwC-+yI2b|x<VPQI+^;}jbZKp(_?azQ1|Q0>Iu_-Jh6r1&y@Y{p5$
z<<rI+r_D8|t&dOJ-<@`xopuTR>Cyeud-+fQjX#4mf9`)*sxIZJTS-U*CR)$^F{UO0
zy#J=r5_5pN58nOtPfyC-IEhAF&ECA)uqKpN241wz9nJ%Pjk|uAiin-Ku@rE{XO59@
zA$0Qslo11B9t1NHf4n<W9{BY4__9BHJj*8p6ot|5hJooe33`c4`KIp+UPbHFu&$=M
zoN0*|$~JRWFzBT*BAGteWY75TSI8ZS=y%!BFKJ*HrFrV*in19fb5BmU%*+VRTpI)y
zcJ3AE5=G3}nd4MRRqc|dwyvJOp|PpCrL~QngHsxUfK5l>f3La{%0paY>KkA87`&t5
zaT2h?^c=~!3^KiJ;(sMN)5KR?t_DSvo3A8@NLMq;u-n+H{$d{&+ixXr-)(Nc|M=<i
z*Y6HFofRyCtr-kFn5Ydbngr5Ds9+iZBeAATT;W~+6H?>EbfSAG!fYw9f8F^wNS(g;
z<IGh4ISPRt%1*D61B=Sai8cud(%8UmKPm1NlTP^bAqT-JTGzYV)x-+tgq~IG>@1EL
zvbUBuNasf~UUurdJd)0-SrQ^mub{D?vkfxJ4&t32PmAz|xerBkkBeXOrDFmMuJ*5L
z5<rYfX3VVqAdnH8j|*1=dJKoF$(Q^oF*Ax~&E@<9%@wYXC(+F)fayQ~QB(K?bSb7C
zH%9{KI3nJrC!d#%F|n~H*7JCu?xzwMsfsf`o4j8orsdT0Ju>AB5le3@ghmGgT)w{>
z$>7$lzAC}?-~p?8e$q%5C!QW1kN+}8ccc5m_x`i6<dlHyKhh(xZC5N72K5xqRAf{S
zA}dZUB1Y0UB(MOGcBRi&kJ#xS>w9pSN&<wNiD~TdPO3U7jg1R)1{mbZW(cQoFywx1
z6z<J|8wwjClAEAr&B#l!8@8LIfINJ@A-5aJCexc|ngnL6GvA_%s0dD><3?GC7%Nn_
zkg^oI?;l`!E@G^oslEz%`Ap63Jm=tK#<9g~vXxS6_V#!O|3cz92$5a~rQl|P8pIJQ
z-9PZQo|s^Ym(Y$0(MMk#v}Ca$+<>;vw8-D5<q50s*k?Y1sV+`7&uV!Yi@VQ|U_2_#
zHyzzt5I<{ebI3VhE*&2Ia(Z`XG4qQ?w7jefRqDds;+2L6$%y8=C1nn`O=@k`hrTYq
z2^$d)OYRHe#DV?j@gsI%k1@_Ufj_P3^O3r9WZ^r@@n_MQCWYu)i23FJqNfxKO!U&k
zumW4)27powDL$i&`%T4cE-MrF0<J@8r+LF!JDoRju#=rhniIqML_78-M^Ao-x1<V>
z7f#Ex_!2}*607&I%4XLN=5MU7zE+zh|9ZFHMvssy9roa<nwY$$NKoqL&$i9T9H{~O
zxym`G%&C9Ooasj@OoP42V}jnPlN1wY*j3@1^Lv!16D{8U<#X6n4o3yqZA<NAo^RK3
zq&Z)JLIr4aoLt1=MYw{C52T~y+DR7343Sqi`!w1c)u6}faWrqLrnk#sM!^1D3M?T9
zTdDbte$Dvk34bPB;_8+5=7*o=4(uhDx72T1*;%4`Zy~I<wLi{x<R#FcL*PK=;qaS7
zF%Imxcr4L%3!+TX6xsKzjB9V!%rE<UrOC!;8yw;O%^+LjPRBK7e?vsY(SIl3-`zOC
zA}%7^H{cV*Qs6uBW(~_Qm>3`#szMPC{M~{7iyMV~>4R>=Efm4}<mb(eJnWdKoRMzm
z?_VZcFM{!+asZ)?#LaG`NNs8W%7RfnoC^KY1vD3)LgA>7pTum*cCwctw@dF{`R`Vi
zW%L%ijbifsbM5g%I5Zn2mewn)mjkyL4MG_`ger)$n~Zui97o>#cu?nYk8jNL{<PLa
zI65{vXC2;BIx1|N>K{5+Sp`Era*1g_<Bnd-py%ge{}O`tBhUc6zcMp)bl~up@zVs^
zR~Z+i0BIo@nivpdmY&I$eMjZJ)KrRzv?>AA@p=mGN&%jC8-e6triDs)AX`WTY;aNh
zg1|n>ICev)sX*{MZG`-*3JuO6j{>8A0l-A867nz?!lMA>q`;W|i^sO85Na~OQDqZM
zmW=;TWn^O%mUNwU0hl{)00r>Lg~W`htgk;(G`(}7EL|j92wQq;16j)jYn`-JsGxut
zxoS`95LRJhfQAF#|Gt#^2J=BybXU+vVt)QsWD4_ToY<?%E*pvFXt=E5dvh<;%PwcC
zvH})JWB~9ewbKGp&pug-qA1`EN-bEAliaq`W1x_pn@Eoxp;zArBGBYgYXU9MY$Mw(
zlU7n?bKbx<`N(PAFG~dd;oAqCa>JxwmI3iK91+gpvv)61I(0dZ0bMbqPJ-NEzsywI
zO&XZw^i9>1flnLRU@S!SFGX?&8W=#icMeR6RqYay<L7iDEc-1#a=`c3^5uCYy>~ne
zfjo0}gk=GD48lQD$`RyNY55ca78^H+g05EMfJZ)KS2j1_WZsEor(Gd~G9|O=nz4}9
zG;+9)-V>J+?;#`Uj`Qi8@nvY~gSP@z*hY20^8}HBb&o>-&BS#M%;@mfnD0qLn(0U)
z4aDbs;mmmi@A*6XBk<bOP?zUQIsdVg(IEa?bUF%THm$j#Ytu9ovup|7PM6lp-2F7g
zN-yTHvN3_<{R};RZ{)4Aaq)`>SvHm4oSkJ8a<K<FUi?11FUlrW`wwnvY9%ixegvTR
z6=6yZ+hV?edJDuMy9Q!CT>O;)WcO1+@i16qY^+?pzbAor4oI&=<bHwaiDyBBkmx!O
z&t;1%Q%BkI*fKcNDv2(Cnw6PCpwl!mR8GYL*(w3kD3OsHRdbg=8-+YSXJ^yl_IH50
z<u86)g6cS*LABI?;_~IKP>~g=$)7Akr{km8np!eT_)q^UWwz{A9uU#tz!U>#Rj#?S
zVX(ZG*McPm%78`ly4)RUk%5h90ImgCPk6D!>{<z;rPwke8&)1$>2*PbEBKJNS?WP4
zVp=wz#qAT}6Y3-M-%JbTOx)nbgX2x}0(N&NakReQhi}%u-gQ(?e)Gydij6u{s`w=q
zmh@mO^3DAm|9A|_tjwsV^XARME*}6umtN6?!9-n0i}%SZY~#I{FlRNrYC|aiY=x93
zjwT4iTK$?aZMr3Sq%RKSHPO=|Bhuo>#o`H>gFtU&?mn1_d28C3|8B8UH+bOK75g;!
zQEKgYDqh)!Y($Ovsv)2D&Scfp8kGF{HX}sh86}unOb*AWix1s<O~0g?P<YlEC1Tux
z-CB@*cBq^oEXGFiRU~djWf#k>V}AYFeXiuz)_F%RECLn#MTFb$lS8rw=d3zYN(GD7
zXSipIXDUYo>WT9Qhg@CdfLI393(+qsEsC|<hEJP4L|ty!Vi^sHK74C)pi9FC&+um^
z{EIwI7{Tp9hBDFPm5U7U<J7mG?-jDVyZ6>2bjtoyf{^0q$4Pftz{7xJ8)-3^?@Gz7
z-@($8RgZ7IyYcY^o47odaXj3_dD3$0(tG`y|6p4NWVX4hM0*i%GFC4!NP%tm0uDQl
zQvef8>h+=i0K?SV7O5K|{)VnQhC3hr!NeY5&g~|7>-~_5##X<wO^3v@9b@u1Hhl+>
zy<>9G&{U+$G#g~rkZQ)nVxHOw?{6?SAkaxRfwlIpFN{E%#1;x*j(ZqGG{uxh`oBz?
z_J%$V13q_J7-T13r(6Ii2f+}jJ<}H$^^C2i0pMNwYp%(^{SD{qtYTXw90(hDHb0y3
zu3*gW;q09}%mm<BSIS<q9S#GJPP4D0XKs__awKFmPPjIwi9ND}sejZc0Q6R%9sTb(
zBEW1(UaV;(r&O8~$<UeF=-h$XjW?)UOu091uFj!&l0K`Zl+OpvN0{ngWT^$aLm-|u
zuyc>8>_PVaIA^Ob(=m`$s9Qc(AJ*K}QDnk+(<XWn0(C#5hCUaEFGAp}cb?6D2mu><
zvNd@Eyu+oxGs`t6lj#{;pWR%aBOD^&T$7@8Q>bFu4m?3PGCd%=(afH7PvQkO_X3>y
zRrR004<Lu(dAHY2y03J8?jhRGp8|LGhkroYIMW2vcD)z8e9h8x*O7urW*2qPqT3{}
zk}b!XqHlH`Z~g|az7PLT<6>Df<3)3xp#urh2jN?a5?Mxps5^nv((SMP*8KxoLg<6p
z0)i9iakKCFtj%7%h9$`FG6xv*)lQ{$K;PMuHkYwj`%nN5aGiz?`#l*p8%h~2kP?^-
zueOcgnTluxY*%Bi6_KQUK1#oohmRM8u1D^qpM?WxJ(v)smUJcfG8C?|QEdXa)KBF3
znF-f1mO#EFT1+w92E^Dm#q6=gZiPtRlDZWc5Z5)wJdcboAjIePu&8eH6*uu`P_J(J
zcZ^Q&*<z)C_(5E$p<GN%JpoDgKLQ^$$xLN1SQLf>viuhho4#%F-G;~j=TyD!eLrS_
z)9|pxo`#A}`M4j!*`OHyABw-&SV}&ALQMoCro=Bx++b7I%8($<rjaTE$@j0IqzXHr
zv}E)&JN<^je^kB%v1QP+knsbaf0-!-gmmxCJliPPc~h+g3tW05kY^M^3fFA^dc||M
zlPL)BSD7hC1eKIE%0tRXBr<3zW|o|7U`v|;9MST35r*NJ1_#~pk}B4?1+9Uv%z9RE
zssU{09(njByw^}GrpU5^_@{jucuk}o9Hx^|q?=EY<Rt<oVLFmQdvnA-p4RyNC_;f~
zUS2@n9xT7Ipru0P`T2Rf%a+cW_EAC#a{Pl=a8X8kl9G-!FZap^8Fg1~<P+&EO#Li`
zLH&)QkPZ7@5%@b3wAgA9mjKj+d+R14z@(H>bJisOQCOiyAhS-^wn?CE+>xy=P~2sv
zm_wq(zojHps^q#9{Ayrnx_;S43yQ)~?usoZbeG4=RW!C#Y*Cte0&gGA-=>*XTJ=@7
zCbumFR=sX<vg1U5XsP~o7HEDYBav1Mme_EqSu&p*seJ^8I$GEN&2j_<Q5RIyoVJ{~
zv+>!RwY_i-&2DDdy{D6XuAL4rcj@}&K6lNjLYk_JrbEd&DI{IV`4!wcjRwwaDLzs)
z^ewIs?DNj<VO{U5dF|(=_|xkRsc~zoQ4819VQO@vwK-MV=cbu<D4Xg~?`E}hYa_!6
zb)z*i=<V}Qr;p51#?8ERE~-4wX0pQG^<KV9Ea}3=x&UVaRpj9qnu3u%oF`xSXb=4R
zN#~+U7c}@QQw|eC=2=-$cL|zUd@z$;!jrbw#n7uDS{tY*(X_hd{mjq*<&z6j$6$?P
zY?qneLoSq)Qvd9kM6lPgweWH1rM$sbY9FC(ZyDQvG^fLd92jkkSg##W85vvy_V;`S
z99?ARh=Wsd?w36s;wfd9h~pLc#e`>w@ca7sV(Cg*Tkrw$fdzM%&43$C20q!wek2pa
zIu2R*Jl>K0knk&Z+ni<h>7(}V?4G}3|Fj8P%AUi+;%@$;v4xDNY@DrbjO3{qV%o=L
zza+E_B;Ng%*sYe-7nd|Nko53Z(umsCiMXpX16QB@x;n3R?cwL?#fGWtveSv)PnthZ
zoifRmh45D9M*qWKI~lO-33*x;$1xjXIT|uM>reV)8LnMRnz4X?2r)ws#_M`5@Z7!L
zxAj6rZ%$<kz;JdmnpJFGkeO__8hW=Q<qrWwo|toNL;mf*;St|Rz%H8HO?#ufK|wG1
zeqDOqu;ee7Y&Q~bhJ}oWWQwn@^VF`QIM57~AApfPJng)C7&Xm|x_p2*BBk2xWL3!t
zrO^<Gk=Qia+T3B<OquMOBiDv9cR29Urtf;cWwPE#Jbok5(QBhMn#|I}z+t7#^L!J>
zvL*Y`X_fX4Wd#XYU4Ar@y_l@}bTEIcPWoh|l4a}tb*m2q7IeXL(S8=z=uq)^7KS61
z^KL=%&5T{E(OuWjqH?T`!A!g()g<9-p`puXt@6*A-muD&oY6efndjEeS)fFozg<s#
zYp@jlGu5&*NlmYen*u}So5K5xI9^6pp6{RomJ1h*wsZc1exkoCNQ9vV>c!hGC`r^S
z?c(ivc$YiAE3=hVvX4}{ZEAt)n{oqqFGwDT6r2Wis$CaVPp3Q0qpK{{x2maUM&9{3
z4JbLYhnINgmTw5kWR|_6auj0!R-V*-ANf0XOS`D+za7?pYhnK!+y3>IgMNIs_}w}6
z_l3>)B^BsC?$CLch0@TC1sXRPly%_<_feH;tQ-WX!O3`j=@qk$8L<=<+&+M0VDfqt
z?85^oY=DXHn;vgKlJ?A=7c&R#i-mX5+1SIKHz=wU!o&Nl(*_t3&ibWOfkBE@5qsI$
z**)tg`%FxyW__<%(~NCw8#+n}JP8qL6Zb>%7Fd$zz5cnX^+O^sA7dKRZCuZ>Z)ld-
z{bt%FYhTDEF&nn1J9=SA_LQ`S%n4`jiVJ!N2;+I_XG<Lm=j$vp4)$&h$9Y!{QC9;Q
z<CW9?ZDHQ8uiWR-#IBg240Dv0@{N?60c8t%uCG&u4=NSY%ovS`MQ*Ua5PwZlQDY<E
zA{8Y_?<nstRJtt0$QS{N6tSK}Zz>BH6NEn>P#>SBdvGu<y2XF*7D<>4@b>pFLleW3
z9;XBct`%Q<-MSRr6J#|l*(agIEjpAH8KM&fU)$yTb69yq8QI>}3dw%Dmys%TcAL4k
zC(P5DGW=7X{xF;^AOdAfeO|y^!46+NWLR6^C?(nK#=~5PbF%Dg-B!%jDUTDba&jq4
zpk68pvuC+a<>d7$y)cPeKn<z=(0I}O<y%yjzH&mz$2jdM*g4fKln#<Odh_ki$#TNQ
zp{b<%eM0nTjoUqHFF$gT?BrAL!PlEQZx&9LpIo`ELifP`IkNltXZriJdsDz`oYTrG
z>q&h#EwtfU*f&3tMVgs|>>1j#E^InC>M371Qf3j?e&+x5>5IPsX^L4MFtuk_4TGmW
z<n1%!r!zD-B<KMKKyPBzk9!OP4DQ-`+>1;%r~B!yt?1SoXHc^@rtqJeOzxib4sl|z
zrS|M7PMc~KraBJ(rbU)b*a>3kRSpPv+Mub-FQP*bZlHR|al&Vh?mpGR(J$q}(yYCv
z&KHXC-DvoiUbg?v6=Vcl9bPh~eQh*)ow2z9v$kIPH&QxgBcUo+wXb*&R<h4&Z|Y!g
z$q6^(EW;O<*>lcp*E^KL9Urt10{g_SINat5fB(hDNr+G>v0h1Xs5)IjPi|~SIKXyI
zz!C(Y1OQ3Ya|%pzGOveN0YF@6qF1EXS)kiX?4l?~EyokjmI`-Kv!MB(bqhag&F*;6
z)4U>fjLiJ5+}d<lj@etmHV6V5O3+?!XnSqzA+wJ*o;i8Xki3CsquvP&K3Qg;GZ>l)
zju+xCnpQEiHe|Oh1N`{({D!jqQl9_(=H0&U>HjCk|G;<u;hxaydLzS|KnVzv>NwbQ
zv2zO)_~*&)L$-jAxPT0F&sEWGBe$u*u^_Lv{7p8R)5zy^MnA)@@yp662aAUOA%#jk
z@QA+rb)LHqmD}eT{97LwuJ5;SkRKlNIs97NFjJ`r58%n!qY>1vh(GA)uO6q|gOP0;
z(dNK8$`GeP%Y7~92dMc!*L44L@``b}s;jmc_Zj%_0pr8LRkt9uze~Dj5A`3#{(5wk
z8|IoK+)dOHDSXmkGI$kNzaZ78ajo4MCNuCkO@n}$90<{=f4O(2`rzyJvF*c44?}NU
zH4>*ZhCfeTH3TwnaS4X=NOK7jWp!{yW>&V2uAbihL7|bciPy>L*?9#e71ec(tsOo6
z_aBW;K6$>d{Ca)s!``>U<I{g2dPY`uZayJVNtp}EYMO;s{8T}beF{a~kk5~Vu_T$e
zMd-eaQGd<pyivg#%k4;+daAD!O(8k|o_C=Q-WJS6*nlQe#s2<fMvmZ2>3L3DG46HA
z;EC*2f<W1zuzM{>ayA|vvE^DoFV^ooQb*oKK!q1wBH;I?$Fn&u80EW6`V?iF^N=vL
zdU~^^MqD&ZH$m`aW5n;4-8r#|1u2eVcgr5qc!~onEa>cg(70qlI%^BX&=zM%>sL4R
zQ;h^nWFus4sT|{lCNLgR4JvUY(get<ux@lBz4ZlzR3OARFZ_=16%Bp^HE3T_+^G_(
zY0y>zPG+%6yQ-Hd4c$Y+Wt|Z*(n+zr;QunwJo<MaIMLy-YjW!1(a3x5ndj|^<xAg1
zMa~;KspQn!hjhQ;LUTW-Go~s^&+WxquxvzqskzjRYOO@+Jr^OVF5zRg&*l_%|ATG-
z1Bc!EfEpMS$82;vnLd$jEY^&FAK(q)0lWgzS3+u2Ik;?SsSp;bHLzvkTyk2tI_-7U
z$R4v1XAS0lm;PK%g$4@aH8w~)<=-Fy4St`gY$Ii&_rV}m`(oj2BNh@ZMOwlJO9$a1
z)#vdV?T)0f3ilE84UO`*3D-GD&oYb^0Ch3axioJ^=DTHJxb&B@R7Rkg;>TNh*S#d!
z`sIiQ<@&2?*p#rJze~UwNJUhpfM7yuwei&@K60Tg3R-Q#KUd1A&=76|y_IZ+Le`{9
zOW&gUtBpey&>JI-at;5-(piQz{l0&H31ieYx<|K+loB^ex<N`Dog$?Iif*Gr7%8cv
zM+!(;$mkLQ0g-YdC?NVJ6)bLk|KonXXP@J^u50h}eZF4WK<2C_t>Ai70w5mQDBF&O
zXSJenT#A{A+s+CYJTHrUz!n0@>ig~k5Nun3Xd6>;OJM%8V+vw<Jel{kIsfRFJPU1q
zgmhK_4)$)&D(kIopKUV^qDt#FfRI;dVX~gZ$^;O#jEy+UsMvdo?SsI6pHBdP?t8{#
z*Hu9!LI1SJK<rdS_X4<t*;}vip+D8ok?e1^i8qSwj&B*kC4W128U#?}kw`yGLbp-x
zCCI4ZdXQMP!T9HIjDiobyCCUC#20d9+%6%$`vRb2R#TA<xM|$z3c4)UML>c7S`-HB
z+3r|C9-phi06_@ef>z`JclOb|QA%&;5=SE)WTsA{>pzmI3IkofpGPLI!gjxPE&gBA
zSdcvo)CQKBnz|Xt-g<NC`f$_nmoRZ{2wY*O40<U+;2&TO<iu()YcFkBMv;f8dmvxg
z>5^b<f@dRU&+(Bh;G^aN>&uKS6bB%4*Y0!xi_a+*xdFaI)*NyOqxZRF&hSA;G1zk_
zM{CJ%YTaKe?cQOY=Ezp#Ge55wyPe67arFQnHavM9#JK6NNTe~O_?<=3^egBEk&9_Q
z0-4t=<T09$`g`pX9OFLA@A6_9T?v&;X2i%p;txjQ1sJ)h*D%lSd~fc<{4CyDrZ|2=
zZ^)&>gghG^%<%{iKSg49rYJr8I(6*_wEgr(W&*Q*+Bes;<9|jW+50yD8I&Ty;qh3_
zK!$ivpYT|$w3lSoVmV1(OKB}bDhMN3kU>APt+NSGkua86VLGWg<T_mZxB>-%LCHsF
zft|#M9)0|XK{4Z<0$ChWUkb=rDim-Uyq+SEJk^^+8%Q;XE@ygrBrC^;O}N19at!e8
z2UpC<GEZ@K8TJl~Qt7H-UV%Xd=W+OIkR#95M=d=>C0mnhf{CCg+kGrZ+C((b$l0?s
zgA9rbCp$`Zmm(oU)%IE(#rsc9Ubk@!vAL_}oq3-zSuPV|g}F(O1$#^CVew%oV!<UF
zAeRmW%BG)-Tw_MrC8)QqajioF+ostZjrikcEiB|TF9}zZNupzQdDejU8cP8*rbFq<
zzfXln^yt$)<lagOXFw8M8*rIlwBU<GpK2<dnBamHJqM_k0n1Dy*H!biec>QMFb6Sz
zJK;C#({f6^er2=VnHKMqrez$NS^V0DN!=2rlDunIjvJ#I;-yyWwF$_DMp2L(jtCou
zJSI6ZT^zXIH4vt8dOyA1xO?05rP<|Ny>S;c3mPg<3-I{9pN?pX52xC0sluU>Ip9hN
zCgw+WF;`&Smt6v!8~;9Zh7sOfLN$Cqza-X}4+lA1Me;XvW&t`JEDhyR>S6pSG}PK&
zz0d#olebG6gOI5_L2&F>w{vll^(7M@N6BMyB<?U6s|yVd(}Yec=DT}bGbu$?I=W{L
zHi(81BXaliZ`2<&8ZR`XgaaYa04!bx#uyc&eua03%4AGAcZ%k>jH3Wv7{R_Hv1k3)
zuwZsuo8GO{v(|N8D_SM(@0W{5Pa3k^b6_PxfIiapoMb7X1^KPd-?G;8P?Feg7}nwq
zbOe3)=hSS3R;t0uOy(>e>S+xs-Y)@yq*L%vYu?w2F^!OBlxW?EWZwlf3h*fxt<ylV
z9BI63{&f{KBCmd>pI?mi?ug0@lQ0W)fg}h@geVeiw;xvI4ms<NHYl3`ukIDR`E!mo
zY)mEC=&Xa_{2zxD0*NHcA$&_AJ-_oLMHg3+;-Z0`W+iavBqK<C@;S^x!hpiBd3tMX
z=&1}$U}k>r#(MO7*joWm(G6a2$trrDx<>~_s<#QqOMzy;SYrLTbW!5Y;MGg7H^P}d
zoh}2_C{d0!9v-HJWxGB_M(>0OdDe16?zb+BD8;FlcKz9L<DrAuPs}EB23j{=Rgzhi
ze{g*Kvg2Lyyu>=ey2CsoSiF(Y!jGr@gd-+76N*LRzK=a(?js8J9I7S?1StyeLs?+Y
zy+1zb@?XmRcCDYXWRIW&O?C_JDap`3TFn^<<_ZOf;I!{Z+`MId9|HYT3}?BH(q(!Z
z;nXjPQj#P>`7uPyxlM@T$l1FOPvm~F5ywXbFhwawRa_kdvSXte1I`0Pe``O51pt{<
z?vM~62sk6Y`K#KlJgT`D#8OCr@BU0+xIppaC-Yy*n~bVG?+N9LCO|zZv-nT{axr|H
zX^V74-+H#R;;E<!gm7bl-0KG)#0q;sQW!)?NSVw1V{Nv6y&r9r1Ih)`&)?gJeHm)N
zL)imwp)x%V4YQTLA*HiyBddvE1&Uvp3&#1M3*p`W<~N$J{f)&*^>x@+?@Tp0S?D0s
zK>0hM=Nka*X9A7q-!A!|x4&(|?Ue()yE^}!ylF-LeEP0z)ewVwdz~#x%&_NcUhOs6
zE!V^iY2ZH-^1X?#N=(c$<}7h?ga)6RFB2~qGpP}%j)j1stRSe%W29}w>p{k_UPj2^
z^9w+5p*hn+l8zc~qL%<y<A0TBHYtkNSGy9KZJbSCneV_ll7&|@(5ElLMnO~Krkuck
zL^%AA3Cci++T}AuptAsFZHM&NVa9elZ{TUhKsGc|aJ8${ns>zv$nud%6TrNi`)KYV
zR1siP1^`h^k-M+G$%Is1ch0EcG#HuVhb^HOO&y^RJAAMW5anTWNIv|~Hjw~p$1}|g
z)R2u)L-x>Z^lwQZc!HCMB8n1RLrPTqRbCTM82vfR>h!WSql(6~S<I-*$BD)gM;>HY
zR0zoQ{!?R;(8I~d0l{RiWDNEOA5H4V6`H%fw5wAt2H<poHf~uVQz0UElPE7o1ht6q
zn<T@lD#+15rA4ArP~udf7)pU~ZY@bsiiR=sPEiD&s;wD|2YIU+jx_vrq~5?uYbR><
ztXUz~xI@LE_2U|C-a6VtumA!y1Pix$%R?5oU-rKIk(+y&Lp+HX+U|`F5*OYCig1c^
zAxI$-5-5drD^Ze$1_^7nZfNK8zueu+$2e%+IKt;r>{-<AV{(?W=lGZwubWo*nANYF
zwfUH<RA`if)Sdg&de^Dw4^qTl=?IXH1IT(Fr(M{m8HJmF>SH@*d||oY?KKT&aRzoA
zP*j#&^%1jt@m3ZxCe=~y;p1YGF>tF8qR}=2Z%p8soHll#LGpanf2G>83_JW9Wmq<N
zgif^M^}R9)b}%twwt;dD3?dIVY*P|X<&GU`5Wi<KKpz+1HZF#}X=2>r;8h4iUczJx
z`HjmVRJ<(RYTw9?WkB1E7WAUrQwjz*oZLndgL{*%)cdJIymA0loNA1y0Vze6n%bwn
zoPjk`?!LD$p9P&6o0xd6Yq&mrfB7H2e>Tp!RH(M`Z*ojV&i#quR?G<8C)qn}lz<%$
z3X)cV%)i$vyYDcXZ!?<cFp^$slB{qxa)qS=tT|@|a%7lzj`Nc&U>TefZfL0|>Z7@6
z9I#P3)()0@=MBZ;(=Be=BNi-0x3~E4Gb(yCJAuiw%HO<j)IZAes`6$S8?6NL2^j^r
z6;4Zbr3HApmM6HcbT8Pfte@U&lTmVp#|Na1XPDXSWxphh$+L<+?igzr7;8KxUr=;I
zPB=YnVfMAN$P`Xzn4AD$ofzYohhL@(OQmJa!*OA~O5p?WQt)^PoJP5t5nI=f%@`Z8
z^K@tNHkK)>DtN%p(kH{xA2L^HW<kE0GMMpEv4)C@w&mHW6G(DS^+=z9y+a(52ZXX+
zI|C}lNYm*1Gno5t2PSvi2i}fM&duJR=Y8<b!4i&mqma$2ZZU-uwskL?T_a~E{mNhA
zbzHq;^@(Em+9n|-S~#xMYP$uinZc?_*nXdpByxyI=^aCiWM$|E{m~5i3xoge&U%_%
z`~xHPpCIu+K-MmT{nQT2xGxB3Rn9uVW*rI|A596~(rie&nMK_P+gj0{W^Pu$Ml`Il
zYuEu;EU2|o4=NTL&PhypD@?ICRTI_&AzI!Kzw^JN=QGGYU_{pUn$2m-PCu(FZZmpc
z{}~~zEGx>&V}W(l9i61zMOaYZ1W5GRA&n9wQ`56|z%E<@Mz#zq)4QTWV&6x%i?VBL
zY;hJjMlWsqMvy|^E|0Hnp>~i-@6))P*=#QW#Dq|T1QrP`l*C6e^G7c6#@_zonU}6j
z=Nf0a+Gn)u@`hIJ%0+Qcwot#6x$6Gf0So6jSOT@KIA2wCdlJWQj<bKQFlHzD4&KS}
zqqHfo6+5}Wae7q|kW%4*jQU1L;ojwN;=T>*CzkjTsyiLZFJAG)z7|Es4b+#Oc@(WY
zF%I!kGy~HCSc_$7XZGgz4Fo>V_?kl%l4wHAGpTkl@2G%NuySj&b8F|$9p<H1J5fvR
zuFXq5;d@}0f9)UV^`Q#Z{`x|58lYlcYPpR&bf4v+;kP)x|LivqOprdNJ8+N*w*T;)
zK(Un#ljGw4n@ctYzJtOzpLq^mCpg-PYkz6ouCTet;Vx?0$8p}b^*>IF1r#TMCmaWe
z7f%@sd2W0iX>#eN6s~ULJ9wNFTEv@n#2x0jXv12+yS+)i!4p|6$l3lN>NU@uE3~EN
z`kO?V(|`NyM~j#5D_oA8lV_~P0;97A@x7OJxuKVh*eabJ9Trd6aEbY5OTs{6D}gAw
z(4*)S?^|S=y#uf)L?pwJ;$9JJ#h?lVx4<qkWno{NKLsUM;+YS#5P_8J$t^qUZ#tJM
zmXs!b+l|2J?9sAqadmNtMMz+Ae%L_U6y_-Tu%7i{%X{Z_`|Rmf9+cr)G}ffdpjMg2
zFHWq<XDOFmtUy9?wp;>b!(aIpQ;Ikj>=w$Ev68BboVu=@2{;BNoZRm%;CT)z7m;as
zo1<!xZ)sn)+Z8#m*od6_NpN@CT2!Hh&$8lL0%ee7ceQLc8b&@(61eOk@Q}KD+EiD<
z<d~#<T4%!ofRK~Uq|B8e%Uqs<2T~>DL&GmOmUdh`aev-wx^a21E{AcIeh~xq1sc~!
z4L|7R&^v!!KDl&|Ykc^nn~F4WY_Ns1(fwYJyZ(m=gWI%;x#iaz<jK9#H)U4?zX{Hq
z7#lx&*spNqm8Q_FB86a6Hs@K!S@mH(`|W2>j|V3A7h6}H;-cQZ%=kdON_SLv@S^04
z3t%%<*!1!h@v_4d(J{ND;Ej++Mpq$5kspjc2s5v*epgpjQI-08^5$#PW9>IeI`M<{
zmu~zh58ci#+x^>!;(b(=K!XW7H$ze!nIF4e1h_qxcU@4Ur(Vq&S%hqMcwEXq{rz;f
z?P-UO@*@L|9~@J3?*)9)tmlG|C*YUpw%AADuTT(530y${>(jB212o7B>5E3(M4yo8
zKIv%gZi>;?VKr|r!WI4N$`7zHy?OwNWJ&Nk5cOUf@iMRx^q?Y_WheAM-nT0Mb55Ci
z|K`SB&%PAV3*tDwGzO+;y*TCuC&^n;=B@z+8cajXj*N~4NHG~l;Dj(;G4+;b$$3uQ
zinAMAf^<pJW9?cJue3Hz0j{s=gezo8lAPqaqf{ANlA_`Y)DQ-!Flagf#RXWzWq&NI
zXCk-iiE-9I^&evKS<^9Y-SSbDzML&w>)x_H(MVX>{jyJ=CP~`b$ES&v$I36fbtk<q
z#Nv`4^rel9Ul2YZ?uw`O_g$QiPCGcpAl8KsX(D+~WdC&IhL#P!>l^+!&QXoY)j7#E
zh{-cQ$+M5icRR`VjwuK}DTs`DaQozeyuM`t$-)V2$(Cee*LU8evM`=xJp;7a2R$R5
zl!{C0rPT8qZd}ydXxn(&kw>&b11aXfRX#(cEzX!saB&)TN`sivU7ae(&TWti`CptE
zfIA86P+kplc*YqLTl)o4Gwy3wdR%%*%fl)${!~)iR?)LQLT2`}Q@i}V4`Tk*@+Ny=
zxsJCdKgZmp(UoOrW*5=>7ZgtoNwV<cR!RcBO}s)M<ji0=4g8l@?&0U36WZY~)t-(E
z<d+NTd|VeC6Z|<TX|m>eBUK*qU%~V*6aW^ZDSgxJF;CuYeV^K>_E^C`pP#6A-7-mv
z*1Yu6n$gVuOC9GZM4^_;zn{i@=Z5f&90aWUR?IDJD)FXCv==No$3LmizcRx#B?Cry
z=3hDMdZ#AAX<Ax(C?!h`J}U3d|M{869KUDCpJ><7K_2TTn#b|{ro}h^5S=zZI-P6w
z4d4pfv`umA*O5uHBc~+E@CKL7@XS3mc#-#NQ;k$tJGGfn0MFzfhqjuXLciwCz{zYH
z?t3gxsp(HC=G-EI?`qR?&cU)Dj;~5S8n*_n;>PQAhfbRoWL~U~+n7@17=9Id8I(w|
z0Al&ZjuA!0Q}~iV7xSs39bx+Q&iSIx$iq4=pSxU~LHCXhW`ngV#nxK&>*q9us?D~m
z?;gCB9DEm6zi_Ai{qjkA*~`BKwn!eXL8=_HVrIkQzq+>2T>~H;mbop!we1%44I%eE
zj}V6o&i!k(%kqZX`RiT?zO#6uv(vgON&Uz<tGoDsGp`|XVRC+hjc4HN3${n4mx#|Q
zUcJZ}WsL91{}Ox=Gi6)3^UM~}+oSy07lG)Ni^tVEqJ{C?UT;qzw1*gWTgYuS9?Z<!
z-*<YYJ`fH5yzoo?NakwTh`r*tFDTge#o&_|i)_%T?QNA$w->!)wNKD;I6jz`sjj%V
zK4Fx1VTKn^c)uff5TF$>LkJWYp?jTlSGYyG@U{><DS!A=5AA%S5?)9eIB%Kx6hY4E
z2}e(j%SWN4ewbw&clHcT&aZy{{^K75JCBI8()o**th+p5#PIj+GuP~Jk|4?F(&Bd(
zsn_gCKZ!=UAVqEWbd|)(d}#?+ALfIJQ9WsvvMQU8H6Qz>Z*IR3QvnW|<j5dy5Qr2A
zv)fe}z0og*gB5HF2+q;t^|Sd7W0%QDl;3zEhj=Ncrcu=gCJC@bhXMs8+*I(+F6CI|
zNs49ZB7%yYo=r_cp0gVnGoDvi1d5qw8bVH48yBR-BkKE0F8}Az6ZiKYRM0t019BNr
zPRMo+FO@=$YR=b&U|*Gi$$cgC)D&4<FG{=IE76;S9b<AOerKb4^O+q3AlB|z6i3$8
zAUA{5=)oOa&b#AtII$<i2+5W}M7CF=@}uiX3_{*va5?)BC5}Cc7wx7!2PfVQxMsfl
z(J;+lhav|3Pa4V}9{C^aW$X_ty>8*stEYGW{r!8&*rLP{VO9=dU^65)`K}&|WlYBA
zrl^qc3lye2CugF5h@Lp8F40&VBnfUYWz|>1-Wh<-mm*rl$?g*j)u=x5u%XhKT`+;m
zmEcc64Hy^$Ii08QBt~I;d75I|Y4mq3?rl-AIv2bRMpw+$*+QA~x)!Zl@Yc@Wr4Tj~
z&kOiIDoaJ)kiwImwC`|?mDZQ4CssQDtusI}4V{676B0pd)@Dv6A+OogB}iwknJJ1~
z@b^fujKp1WuLPpW;eD9CVvv`_{n8ePOrElCR=zxwa_E>8jCHgN&iiB{u{(4+w~IS3
z%8IILL7hf9c=4YFVLO481qPeqUR%6A;YsS{YFVsPhy|YZdR6$v5KD+``TU|3m8R+*
zJ}lYg9{Ie8G7Mx1pqaZqEDxr|^Cz6$rV_ckQ*g$B-bdF0kdSIqW|uQq#+!+DmeFPz
ziHsP&`98d@tSlFAUh%1%<rPcS8^`HfFQU>CqnT~UDV*!#ByRVj*&8fuyn>YWSUYm<
zfE0C%0etV#aW`l7lDw90;iKr!dOuA5RRp|k2J-Sk5w95nRjU4xwj&=8X$LoTWfn0r
z^B2+~h1LP0U<h{$1?uZ2^BjcQdD-@@>vA0S3!5-i?&>(ghyvw)rYo8t+NcHSXGBb)
z6Q?}lJ)z9Jg;*%hOw~F;+;W;e@?Mbo+~Y+Fz$cMK_>5KYi0_tQ#Hg$Y#cR>{<;I$n
z838C`sq@P1J$|F}yed){1I?92<jTNV*_?axrV0|8Pe2x3bRwGrxqI$|_~U7&(pKeO
zC^|Li<4^j_Q?y6zO=+x1ocaVWZA8Xc@tzp(;ywD`;9uuN<BndEuaz8+S}&Y-YhXd#
zQ-t_d0-Q6RG|72Jf;7qa^a2A^piv;KXjiDx0;E;Zm_OEFtcQ(2Vh^K((G;QOP#R#+
zWeSA_LBO0aFxTdHWf!vyv^JGDFohn<N1`z;p!)gdr!-o`Nnd3|pG)k(6m={t)b%TH
zEE+`65PANbggrrC;xmK|kBfBHNc!RfQpWvBvjss7QO?1)7rL`pA8%&5gxjdJ_j+EC
z0vPh_n4<`b-d?{_SatnO9a+L?Vx6KISR^sqCwd(ysby;Bq#_8#V_%fE0IvJ4apO)8
zhL{{SiRLSh^;$+DG6xlavGNF=cv*r}cDb3g9qESYh|hV%lqoc0L~zTNs1VG@a%Cn0
z(AAir{2Vx8wF)ZA537-^*0Kz8QgvsT%HUW9vpM{#Ety~D7qi~AFl!@2#~}XNb5E^q
z7JP;O|4sCQgij@Zp8D&I9}zal2LwMXk@ZN+hQvKfA;$DF8t;m;!tBp99ffz%u~QL3
zc;|UTK_m5NwwX6)D@CAzCPvzJIR&#-(nf)1j?e50I%lhu5(6!Kwe5@NXKT(623p;C
zX8-WVZ0$v8y@m9Yg^myaat7eQF7-WRxpSR_M%SC`P?TSCQZjQ(>rd5-`3q^#xdvrl
zEF-5cF!^CTw^b7rW{7=mY{k?hCR5E*cnoDF_cq^h+%A)vN@F$T5|Xvyf|`Vps`Qc|
z|L#n{9eRZs66p2w0XvRgV=q7dJja|3WyCiDFXJ(QME>JU4a{>>=8A)cTBxj|!xRu(
zDk*TY8WJ+v0zicXKVqu<7O!cZ^fa~{B4-mErZ~>?-mg+flCq)&u6!@m?hO&b(qvvB
z^2<EUAW<$@o@|rU9VtJDSFFvh$>s^)&rJ$UK!-v{$$UmOZ-5Ij|4}9I&!#HodnDpK
zIS`1ckaj?m)$U`pYXz&_dgWdHOQCl`jrV;VE3S+;4L|2UJxKiRa7#$BcWn0uel?ha
z@831wRn#rzli<dKkE$WD*UMM8^y&;AZto_)A^^Axw|dSq1jdAVYOQbqO8)0^-(2&S
zgT##BZra<!ch7zc0983hI9$4!XO{8PxJMR{^Ri_LD$~#v<wAtN3L^-g-vF@fR{N@H
zmDHdq!xuI7qXecV*r>1zY?{Tsls+HnGg0fNBavTr4-oIn%O_!jE0!L*pO(lcXx5%^
z?Qe*R;~p>TgYA6|iIyi5yD?+wJ^S~<b%WxIaTBKjj1YSpE=M0z;U*7@`_EDy=jkFC
z6r+bA8R1`xB_@~z(`NK1-|KTPu$@6|It=M@{iiU733hJnA)Qd9$u0LTdl^l@w-@6u
z&aF{+zm-L62_SfImI|=l6;r%7Ei9ly&%ijV$9V1n6_^;!Wg@Z6;jfoftSq72(Vw&n
z!k8uZeH>=~F;pej$i`U%UNV}fzi4RN;cLbsYQjJoiHtkIFwNAZ`=qO;7xsg4@T;NP
zxEKF3wI8E^>?0G5nGX36hVOhXi6SJFO=Z!0b)kw2rqYz4S;@Q(Cc&$vunCnj{}Yzz
z^pBOoO+H9e6awBZbx(PC0f6YHsD1?Fh}!{hgeKsc0)P)5;N&(CV>*0xNy+6s1l8!Q
zTvdPc^R><(sOG;`*Q*qx%da*{kSV8tH>@(isrWWwM}^KnM(l489825wO#<?@e098t
zFC~b_gU`tX(}=dpE$L;`CK-nu=&PVn`yOH0uE8<4P-ug9oOF??{mT@>Vf^(jj=K^u
zyGt?O2MB1(c6_>|-;I>_Y`QAQoEZ{>KSWhWgzv?zcyuS)D52wqJ;pnJ{uBX|mieD&
z9jl`v$Vt`&fXYbuzQw(yqg!i#Gv40)Q*;WMR4eC5TSt2bRGG9@o5Rwqr!sCM65nH>
z4mMB}9(p+?&$$pq6(G3tzC=_O@+e<Cw0|`ez@Q7rv%@u`5CWVsxE*ryYcgv6t<o3s
z_#raNlD8{n>4Mo-_v-0$Xc)3bI7IqpSh6sZxKp02XU>an&6e6st_Q%x5HJ#%Ex1>2
z=siq*uP2d)%b3#6r`A?35b8JCs-5{&uq=++`G~Dt>p)O4MjwkK?%>q^$uqy(2Mq+3
zeFmgSX~kD)!ew33YNFHFvf<^ey$vJ1p)y<?;C|Dv^serDyAy&*2qP-R&}glnDO*P@
z@43Q@^cggenb2VP43`K{cMsqeF*M3hVG)Zy&z_c-z}Mnf-Z9pl**Q}4FIQjCLYs3-
zWY(n65|@n(yT2SDSfTyuI!7xfC83s>JO>i;IFp$I^ENqNZ7tRWW7#(FnH1j2&#8S<
z<ecq7MD*!M<~I{zWvnv31x0$>n}tpCo?uA4O}?IiatJUIcFmST47E~(Q46G)B7Hkk
zjEU(W$)Xmh%m>Di!L|s&a-JnS-pxuQ>QgccQ11<elYR73lYRU5+dUjHBt(lUUpdkT
zi(BMq-3dJV-xHr|kj;I<8p0$3Ued;3IBWTG#I$lGJ`Q~jM>z)K<ibg3k}QSyD6`ER
z1KkU`kfLDnuymO66gCm$Vv@8x!YK-t#6s|IP0qA_XIsYcoaScxo$pKx%n*51d+Pc?
zQK~JcaVwVe=e}uOI_O~JwylO>LaV9;7d~YSD`AiyMf!LQaOtPnFmZm6;ZTE_C!P{V
zuDa3WUHBd?=X+$M@JMbiWo{p$wx8|THN*w66tj?MGif?k02!rsV)oLIZ#R(XsXIc*
zLixME_~Jxy)Mz(j2`ajE)IRqCu4s_y{e!!$y(L6GVmO#oCw%oq--{65m9OB8QK|7`
zKr0OV@ja==5YQTJaHBoXg~+?_I{9J!mG=VavQ2R%Q*rL}!;Mic747&3NJ!C1LGftb
zB$%OWR9>>J*sjXzt6J|_;Twzw`es|tz|2-HtoU?04#~+i)7tO<kZPZr1aH2nq*OC^
zyk-?*wEk1v!dKF!RnqPvuo?sE90hc>@=Ugtyg~M-E<flw5#Zn~4VDp1KQ#~>EXtcr
zEp0Sl7zYYlPYFH?w0*!SG^1QrQz*aKD#RE-<RB2B-C~-`i5wUdE1vk@)}-5Ja)4pk
z@Rscu&X(&hw~Gs5#D!Rc7x}r@eYP~yd;nRueK<PXuN*DRo$_$Y#p(l5iwiLUpGf+S
z?06??a8;g5I?+znmpJ4zOeG3$l|OvPVcTviFs(T=qg4jP5T7%Zm|YVSv@F$7?Dm*Q
zI-mHeQ^k?ZaqhYa1sa5Q3odP_pbRWfXjNi55raHjlM-lA4t>#0Lk8}Oxj(V29kOEb
z%wWNpa)qsO5wr6F9O-?5z;<WAwNIe2a*h8!PF{?o9dWSwRf?{h7CAE4SKKJ-K$+x*
zG))1~y=+AtO7O~ujrRN6mErJqnveK-6*YWHC2N9&flz+XhN#Y=*>U|lH8GfTK3YC(
z9&LwUB~Z|Emv0A%MkNwY?Zga0y&(aYr8k{*f*KsT-e2pLNM5V5)_)(4s9tC>_t%y@
z!~DL&OZuc#k4MO;d`eR6e&sKr<ZUNu(N^#zwMKbdGIXKZZL>NOAXO<|6DqUVqv`s6
zzo6(Z2^w8Pon!EusV={^n0@4G)+crUsqys@=`d|pl#MajM>bq+p+rUc?XSgdp}JdX
zwK3a$*JYN1)@s>oO3OCh7pzG)@5&M6te&bbXPQwHT{&w`=jv1HrNEm64$KRsLYW6`
z)VE{Q{{JO+%acdTZ=fqvTr1O(D>LdVZ;e)F9arXjSLSc5yh~hJfUcDH@mK20Raab*
zUZ_89S*etB*BO<2)lyG{d*ByVULkbfJ9?aQ$Rp4VJ(>-Rj`E#i@taL41+TNfg&tQ8
z%zNsyz|@8w6bqLCfF`Cuj3xB1G2C@+q#drdQyRzml7=dh$kh$Uic_KJt19?brQJpp
zK#}40RZaZM4R!pSR}(j-KUn6RQUKn7+SHUfXputyDwM%^*XZ|O(kHWXP`>i+hSp9+
zMy|+nn`suL=x5hp;NakM%-i@7z~fzgC*HGn=P9Bjy)B8C``q6f%jPAW=wE=JeGF_#
zz>Of%i5D?SjXp0q@4coJ;@qN?;$>Eh|2Me$ve2t!md+H!^rsG{YRbMi%X~QV)R)pS
zATvqYn<sC2t+X?61`I2iXie3b;tAe(jI!jzB;ihaUFsN!pd1{~;vMnHjH;aNwl)>_
zyfJFJlAtOYxh@v(Lz-&a+D7Q<z@_6=be~N9ptO1aS^<u?p_f!Fo|J>8e8%ZMC-%PP
z|JK=Jd@PIU5A18S<H7#%OA^k$q^T$7J&hL|l5f9+>Kml48MbHU$?H5}xb!LM`UFe2
z?`Ke+8s6!pvGI_FO@U=Yn$@R`%T}LlPR-ZfsdtQ}c1MeYA`U9}qdL-TSW?^7-32DD
zoSCX#=w0FLgrYUPy(bleznFtBr>B1zDEy*I$+&ecLDujK`k4wA2gr@5a7QZ~kdwEv
zarkfKo43zLu7YAekz5A5l0KdPejiR)y8OLO&&>IJFt+;|cBxXw{2@iI%(+_yuoX+t
zyhYZW@=Q&8u4y*iZ3|(QFx$F%Fcao<CHFTV&t9t_Qmb(Mx$%%r(UZ@0^4`ijTFLgh
zR^1Eebkdh5f4e)Z4Nr8K1u^x_+RvUp<Jz??|Fm84WP7o1yR5K}I{%zyH8Iu>khf6K
z3l{Q{5#)6B9t7s~>AV<to~nq~<v-OX45z;s^%ihw(Vh5hsI;Jq9ZY(os@>C*G$T(;
zxy!;6Anr;5gwS_}&0g*YhrIhlsebsf#W;8=IDZ*za+^U{boVM%IcQF@C;ft6d1FHE
z>P013=p3aZ78bvyLz2)8bS=O3CmyWaQ~ucyyqk;Kw*TI}$@r=BnkF>(OeIr-gV**I
za8Uf&?5ck92Ho6P^;W_1??50di6bGsksgUo^cF@6_Rk9_i{aS5RH@rRZ_z;B07BOf
zhSS^ZJ>&=z!8LPO&<eBvqgd$iR)soHaKD_Y2vHKJ4;eNmzs*4V@`d}PW%N&V`Z}uA
zr6y{mcM!2Yp)H^D47J8^r@xI9?tl~p0o+{~*WLT>jYzRx(tlo%z($emaK<-LQ%fiT
zWj2AjRTdS9_LsQCi#|9iui<!SntDNhM>m6!LgLZ<<1+~T8`ZNZGjsPQS?N!N9(BO9
z(eP4QMAe8P>cfD*e}<2l23f9uw<|PoY)faqx6&8Zb2~#!^lAV-ZzMc~E4p{^G23>7
zgriR(9v^bw$RCFbFpr+vl@o4BvSP_a)EpNIeZ-RwdWY7X*;c$C#@yHoJN))i^wKvv
zTNES<cOk8Hjv*S7)F;Z2zdL<x>gdD6OI$f9egBNxi^F!C!}lOTVF^OE7rn8`R}usP
z^^IdmrCWuDQFpsX5vL>#7TUFpoqqOmQ=gjft!5Y}a`bxFNZHq$h9Ad%PyV2agP~J^
zf!<DmoM23mklQVgs3=Mthtj@Q1mt}k%ULW3%&BnC;Ct|?rYanHlay=7U{6<-+_kL9
z+hWu@&MYxYbT?`5uDv0m`X&9Agnq6Pz&!BYN}I!Lk<f<r0rSx0X?6EJ<1;pS9;bR^
zo_q~YRPCpaxT3Csm|Kre1Z(rktS87#Ugdk1*F;JFqA3dd85})aF^b1;@6fK=CQYnE
zytTNMH!Y0w9}T}q%#@CA{=}!JciU0xo7B{=4+YO3JPa+rs&sGqL}R7!+DBZ0(v{^9
z(9Lij-;@WL<qtAW{l{;KOy)2!z`n&3Q+Yezt!4Rq`BKWWCK2Dc%rkt+is8bovcml4
z5a!=0Ll56)SbQTNg;?g(VvnQv3d^l?Ti+PZTsJ%8shp)HrOn%UxR0VKl)%HEoi?kd
ztRJjNe{PV#gPD-Hja>=rxdZ!8Q5uI6aY_`MoYzx3KYt4x*t8%8go+(d7i>A8n0+Pi
za-h%aTP=L7rRz<C{iD-W>5g+JM?%j9MdJvsareZ9ge<P9q61p3s_m&NCZYJ0bqZif
zg1uo5Ty9F!o%CtQuOn-}9X0^JEo3)kvru!fFvA$n00k_CDc5f8-(<+0&QAcT+Ah?F
zw-7#e0S+*yh$82cfj+Ojsqz`r8boFvQyyWr>0_Hbw(Ua)k<x01zg&(kT-cb30JUPz
zy0&R<Ce@=hwuAHa<6oH-CYBw^Pv4(xMS+r9@Y7!B(KBs1d-!Y@y3Y)*o>dR)n^--l
zj(Ps>^3_e?6NL*IR4!#F@F|~e3Z}d-kwrlJ4otaXAeB?z)i3}D&A2Zkr6o(J4GwW}
z+gJv)wi?FkOWQYFM0izNpsWhiOhHC)-T#w{<B}(E46gV*EI{0;`#QfTHTvg&#ECj#
z#(`2Z)l}F`d5wq8^mTysBdjN^<3u@)qe3=Yjx}*+)4b09ywhu$C!ZcQW861)K#kW=
zO&ydY<2XeR62RPNm5OIksWYOy(g-SV>n(Andx;LX3&);Z<~?^^xQsgpnV(CpSn;@G
zy=q7ab^dJ{-S~)&aS?+|LBY(1%Pm%FDOG<Wu1!~(8f5=lN+hPUvtHp~3*i4f_-*<5
z?Nc_r7sq=m%ovk*K|uf6nG|bX(b-f+ZaA{>YOxRT_C7q+?f#>IJ4Y)&T@60-O~KE9
zGyQbc`HPm%BQ-cWdKxH4C3uL!Ro>#G_$p>Zt=Kix*7T7omBOljt9jM{(rs;`a@_S;
zI!^J~2s%dl`-pdz-anWR`655rSX7dN&eqhwiK}8T7JKTGXQv{5#n;{=M$%T{bSK&O
zfyZ4Yze2Cf7=)L20G`Gm+p_CoU}hC4RUFi2>R0yhLJNrb{Nm^r{b<UR-y;&6SwMMG
z&Pgw$cpiYnAflHCl({VRETA$=IBg5Z7)B1PWzyaXq*i2_1=ZC&Obe>7ZypP3Xzqar
zH?~ch1vhoBrUf@Y`#u)@xaS`{q@|C|Jfw9<I6b6o?A&<BlSw`1Z-pGQ&R>9NcV>Nx
zsfC*f!}X0tAa$J!;NHF(ZZ5{?t%>*Vz8d=*f%-gY?!_oUz|*Q%>-L){j45c4P|}Tg
zcOJ2+camVyyyxEV9BmwsN!n*=3@owZvIkc)?xMYPRP<3E61=TY$slnWf~EAau;W#j
z&OQHAG}efjQih30<5Wi#;?STmp1mamS~3bxx_K&73St5qC@2p$CS;fma0Hhm^utFd
z5c4ph5c2#9-=O46uda$TxKK*2{=!W61k2J^c9?3po#Ho0$oWXt>?JNmLZRXX*KdZf
zm?(li^G_}ca&E#zvM-rH0g$*86cV}v7%vE)ps%EK=))AM!UR4DY<)6hk^^M?(y90@
z1ZN?e|4aT_Wc@IKE;-d&ZFIA%;+8U$eTukdWs=y(pd7xKNEb(hYRcu`t2xufgEHMd
zREf0zIy$A7Jv^eCkViwjv)I@Eg8}MonE&1^@2QWJA9!i-?bIznA4UkU7Cx%y<^BmM
zcgZ9}+p&;AXQC&fQX}xsV@v1);keHWD~+}x$>QS^+q_`ETPG36<MhAqXe{qp1wb_F
z4WySy;LaoH9;h+_kP#$K69fa_;)h-5*4}dq7^c6Gpre1buh``zQUv~_fSHl6JOdE-
zV8?<TBmU>GhZqHRJUUx9i~znv1zet3<9=d-KI9}^nY;~vEMSJD?^Yq)EI^=y%gU7>
zAsN)(B@l1QL$D@6UvsO1`(1!=DH$mpT2;)feawELSz3sArw{#3-*|h^n4diW$LJA&
zKv4-<o?H47PR6F@UMSh{PZQFwobt_+zLBZUr$B-$ZOkhg#n7uPspvKh<T>NZ_!(A$
z3v2<}+HbP5?4TW-sc`eo$qTver84C+6HXX(4!ePg0$+qBt0^cI_WX>W_#Rr<$ewoC
z*DrrwS~I(fF2qM=_AQ;7d{*j}B;ZnPdFL&OXi0zyv`SpuN=nn??Biy1!`eEdf#gwT
zK^2!p8t)XRd=wBWqe%z~LB6S*P(_JgQ)g^I)g)oHaw_1<CD0&Yv=?7?^{Whv-nO>1
zCPn51;_l;0)MSn}7Ol0Y`i#hVTNV_VW`7(goz#^bSv(6}`z0loZl?3WNImA@h2TX`
zy7kVXWhS5H#I72KBolxI|2D0&ICb8JphhrEXlL9Cw>B%+=4{0Ie5j@LZhw5?Y_X7p
z<atr;oPXc)oBpDuIlT{npus6NW=$GgCIMjAO9%T!U-ALs-pj?#0CgHuZRttxxR(=v
zrlVdW`!^88n?%Yv6B+~oAP&f`$36boC}=db_|6IsJ%?w7+l7I;Jv|f8<%Iarkg4#_
zT;uveNaz)2xA)v$Ev}R$nBnd?Lmsw0&v^@2aGUVCFCHrCj0IYe?gIfNAYa(~F})W3
za<K&Pxv9&dGJyC?|G+(9@?(xaa;$%HY#}b?ARCzGm9uA3gd|`Cz`)%4r&GVT(I)Z5
zGbh*JX%z$JmTxoXbWY!oaSyjP>(H3=Zm#TvK2T>5qxm`Di1V%QUQ+3g@4Q>`K;?Y}
ztg9=<Hq^bVHS=x(6yQUVElaBfoY_^0nVwsY1U-ojjruTlyRkX@+2uB_=oV=fVJWVd
z8x&~FavRR!D})q!5X`F!yXG6dq|T0&W7jb(xtO={SSz*tHXF>V9+j#g?b$MKO8zW1
z{Y6i@5B%C3#4j;tg=!)AHwG&^{|P1|9r6w25o(fG!UD%vnqkcX>KWQ)tlKPf6EKWc
z!x;Axj6VW%BLqnt6KID=i*Kcm{q=|3Kj+^l;)<E~^gN^dQD>kGJi^#2>HEAhF3(;S
z+}5Z*q6OSL)r}RU-@(FqSVMm+zBlPgXM$V2o~oaUS)MRi%q{OGM5UQS9y{UGO_`^F
z^b)@Q?|rCM(O{c6fTy*MUyvteDi&RXkT}!Ve+<gf<Pn2T^Y)6OsMocO#mdQhs(sI=
z!fy7PJibo^4ud07Iq*`7Ij((7Q}GO8Xf}t!f0y8)WoRx+Z_lJX@U`MkB852<g1dZ!
zN8w4NG?kz&G{vzi_Z<?Zu`3in5lF~xR%)ySH8u@Ki!%H}#(xDh|8CxGJ^e^JM$;iO
zl>h8?e@9$O_xo&0emw4Zjz8b})A(}FDntezoz~1!Y9tan-LW4oqAxT*!%JKHpr`>s
z`<-Is2F)}@|M_X&E>gDvaG|k@3>7zluT9a^{^z~y>K=L@{ua=;$`DS{e+qK=KllxE
z>`9%JmhCZ56JT~^=_gS?m1Wpd7R;4o)w*jBfOf>Yg2WU?ejn&3mUOsWA%b1=>P5!~
zJ?ZQ28DAr7AZBinu#_bzOs5=boE6Kcm=MR8`iKvTKiWteP}%(eY%V%~^Zp(7JAWiN
z9mrfT8<1JSz47FGi$CwINZ*3P<c7}!?$jc-&-=tx-+TH1(wZDRf#4_mJ4+#0Wo<w#
zc#?Fth~2b-+{pEa1a8f8ZqqPRM?^eh*Dd(ZSQQw!l#>hbF4i?WzNyAMX*Vdb_muR+
z@J<2U9~W(^8$e8?0AzYW{4I>^y&!iw?@Dz-YA*<DOmv)w&VGS@PjF<yK_<cgvS+6^
zlII38!KhO!s9X5j9B8diMr@enOH#6@XmTStDVX<?7+4pBjkoH&2e^?y#amDjiT2Kk
zmt}6nO9bl!ldRB5;Hf10@Ywu9$b*GMFw}=(FQFxYc#9)J6qB&^(?M)E8f~J44vQ6|
zJIw%KCr;^#-7$fCJU>;O!e*f&DGu-l(E=u6p`YVX=WT7g!i{)!%ySdFhHVltpuv&b
zFkpJ=G{`yN_TU4UR7;?VsI2c7=tw_+6`#o(W-6VB5S>ah#e)<mr?H7PnO_Ps9|4oM
z0a;WVpwbcY941;{1Mp~pn7Es%ZbxPyGFCirx?cfY+>dX{y`D~m-Tw?d0)XlkQa=W$
zDPl9fq-3T5*w#`~M?T%Zbcx8MoYsi-;nU3EuFd!^&HDXw+O!JL(ib4-aLf2W#xC4S
zSK^NQXOaaa-E<027=>7?j_(WL1#zae566ZNUA*`-qy4AZo00o09eG>TX_{Obvb#C;
zl>4UCL@=Gfk;cvrb~l0As7tf*;`2;K^G|Ie8L^;ipa+R9pv_vKLYS=GPavNdm;Dib
zG4jFCyaAYlKb=#<NLH79EBAuwwVxmJhn(2UySR_f0|K{BbAy?%#ajLgwgt}^eW3Ik
zvQLveZ6BCa3F*cZTTuY&g@`KCd%V&ms)2HUDBi3Xpt3F3A{n?$XMMB>^~5kFVoJRb
zB4@6m&{4Mkc1hNVcv&@wQ5Xb<WWP*?1{tHycI07&CVm8lpk2T}O6f$M3)Y0~Gl8vb
zIAaIQFrszGJBI0OgJ<PEI^GeHFbJDsWLoM@ETk}%(wW%B;Z=CJk9Xe0F8ph*{u!c?
z{TJnY?xVCq3c5lc!C&5_3J*XR#=F3tPcgqju*k(+U`;E(O*iIAD;ExD@1R`ZkSjC9
zLtZ;Q^b3FZ-Lw=SmR<RP;r=e{2+zVzU>T#FmNP6q{O3riwsD+AP~HK2IG*LRdKQ~!
zKm5}BpotItJQ-ng1~nP3?tCvBO+$)+QNuWt6p}}dh6*eeysXUea4<$$hWo-E2abpc
z@#G8zCJ;6_dyb2~&z9UE;@pVR{mQoAn0U@1A5F=y-T8IX*)_nr#W9V>n;x5=^O38d
zHDalcr-VqkyA3Jd<Ey7zVY%xdpK7aIdFD8I|Cyvw!)<vCDj@dtS}qNx&ydyOLguQq
zKAyE0QEEUvwT@DqQ_P!=6loC^s4VAGCj~yAYkXKGQ0xk;h3DGA$qeFxdF2}Ml0x77
zlMwz*PQY;dqU>i{q%28{Ss!_Jc(Tu?g#6r-`b86$Uqg6YzEpeZF)LDx(MC*a-;kqC
zNVP9gt55t`j`dVdSXm`v?w1*;4FQuEhwHF%el6B5M1YvZttC>ly&l7r#rGCkn7mp(
z!)q+}B}`EX)fL1JJ4qoO4VfkA5C686a!Hii6Rlum_!&+bR6jA*rtrM2og{7L->j=6
zeX-#QY){(kdAs#jL|&gvrV28<Le8l{z9i>~U9hZ8Fw&Xc;VIwgZQkh{-07d*8Q9Pn
zJl=WjYv*<5u5kITNb{~6!Ckk~yJ8x;ZjW~<h_+qzQe4ni-vn9DF|seLsm;*Oc|Ga=
zw1%&o=?*SGCq%jGiF!H#I91Y}35jE_VZkdM+qGOg(23ty0)oS_-k4o}Zh$z3A^Wn1
zn=0HzxvdzX<*llhbJ;Gp+t}ney7G(#^}Ox3+Djd`0RgL_21JacnxTC&=d_AaZZYfL
zvqrKZwHJUb2d<vyWIo`>_dmtEYWTke1y&+n_J=)mIv<uR`}aZ5t;%P{3ojhs=J61<
zS`4&iZrpo(V9#oAIc=|*9RG@mrkN?O^W(WWki`L(!2vHtT$BjDj?|@lYE!`&EBRNx
z`#nqgd?IwF{B*HZdl<bRwD|kwdR1*`f*#Yf{-{rPd0)?r%}eTTAIJGuTsVEzgeT?C
zkauJI&y;vv<rf=LPYrYgTfq>0%@+u*ya7XZZwp=4OFofv?H<}Bkp4VY!lIwo;vUEa
zz?qLQ95A$U=p#!TeF!viqZ_@&TD(PDgh-e)_L}>zo9rFSTw538p6H?F8Qqw*TvX|Q
z8$~NQFrTzHVfHl7`mOdR50T8$7O%@{jgHJ`9w|D(Oy`X}sA?}xXw6XQP1ALIC}>6b
zbM+UaDX}zn7UdGeG2FwM)tnGgm7zN8z;eExD^9Sl01S(F7=H3gtx{*m#>Xn4&`N&L
z>bryEl?^V2w>F7k)?(S#_re@q@~`U_hjoP52oP=HM(5o&Y(h}B;r%_TbJo#E7{3l=
z02iB^iXEHiX|Pb5eZ*ivaoZ~~6;-)JC&3L{#qx}`49E39>Tmx*cHPSd{QLqm-<%>G
zz$=lFM|?~xQa=OOZ$UNv5l#Xar{6?C>&J<WHtWB$QF}T8mQeAki8ty;7)H#*<{z66
z?t=X$61fJk9MlVldB%Ic$6u42(+2JCA32BmxQl&$TL_&!`RF<E$EAu4TFwtg<6Q;(
z;v1^NE^)iTSzkrH^(?FAx>VrvZ~C6DlgF1MD0{9KBjt+OU-!rAbKDl5Fi&rX3!bQX
z=v*S)`^vl}+5N)?=f@69k8j?dO*GXSZ*}ggq2C~fT+hHQ^AzQUi%av5rWZCMRqwFQ
zZ&d>&l1@QVKa^kkF~Y-4g>kMHO`g;n2xemvB`PcDulM_wx0yzw{`Y-e+~6RD30&lR
zYXtGMy!keX%U1vha*)!m%<zR?IQzC_bAaE3RJ@PV8Nu<j&HZS?P!{M;2Aib+*Us4A
z*z6^ZncM^a>-k)(+@T*BY+#h&P==t{A8d4?)lXMe-y>d)&R<C_2v09q;S9Jo&29BX
z=uHzPkO8;4>8AY4av@TRZlio{Up?q^Qt12nnYs4Lz&*vfs^wk0-?mWbQ*`jo<>2c!
z+8a(mT^#5mMcLA5-#7Oia!3KYYAy+mufd~mm7=9}&g*f?*N<*qM@Z+0@aF-N@8Od<
zP$Q=-9f}z&=iAd&SL(IG)8E~T9gg@Q!O6@RQTy{2Q92r35t;n5_u@}Bd#erk${T3?
zh?N@=r=#nbg@`=jEtM~kS|?A=Cx={q*y}3%CFCD6ICHgJE=uV}v{P%{)E0fvtXT-5
zq302{N82Et=e2(~^VB9fRyYbX{lx|?d*}rFkrZv(d|Ue_<}Gb)^4nVEN~W@KOzykt
z@3VfYy8Xxp>6p!!WB(%SGC$33c7pIF>n$7H2r($I^l?;<!oh9Y&vjg3Y`X3}7>%&Z
z6Nh%&VFD6*L+eguiJa6sfk3%owm1&LU}IQn6X4#x;BRaJhz}2U!07J_dJfOo(*7}?
zino5$u4wXTW*ZNIHUH%OmSY!lJx$~a`K!VwCJ6+SzUaDhF{D>!+ggg`Xit(3Aj$In
zmr9K>7OK6c9Dl_#1*ex`gZ_GDDq-f@SCgnT-jgD8adM!P?0u6&KS1iqcZk4a**I#S
zkMsK7&3%~Xeim=RJ|99n>yFk_kq3pTD#(Kb;$0P$1IE3BzdnbUi%H)PlYZ46a2$V`
ztpM<c!MHm16HN9H<;hYps@B#-3F<C0dqN^1ZMny{DtQki!dC9F`<OTV$p}l=2t48q
zd{8kD)1A&Ty3jAfWzhT|-}1Q7<B6`_98qiX2NUAE5xu+Yw+YtdlW28emn^36Q!>2#
z`0K5MDd(KZ#%yqZwx;+A`e|ml$4Q64uk8i(T9KUkd*83LoP^GPWzVGS(b8G@kk<FI
z9-qeLvi-a<o8zJTvjVsKNb9XN^wTvFBaPJDSq+SiZ2m5DQ9aw9ffgX+Jt8c|)Xe3)
zYhVWHqJiy+*<YSw7dhEn)5gU|BFjpwiKE8H&pvRPIdt&7yZZi-R}9l9>+jNAMM{7E
zQRxNPUS5_|F!PSB0~<WOdSAvt<I!NiQN1p?%8)H*lbG1p(vR|#<;Fks1kX1)F+T$B
z0mlQLj$My1$(VrodEGauLa^6-+QM!mY{J4QmDffGo6LZI-l3UklctAHW={_})g5o-
zcg!7eX*fAKWeik!u0cXJt0cjmv<jn8%3v3%s&zyY>=M)a5g5N$9t>t6ro4^>lqYUf
ztxHsaj_|%4K%DqS1Uh_><f%U>xpYYXhyxoNoQ9aR2MX1T2DOUygP9eam-)!oufDox
z0LQfNQsUFN<FSW2Erdrp(fgb4bvBv?Ao+5#thn+3D{gz4%WV$(Gd9_o{CY`IPXH`7
z2Kq(L1Jv*-0u#nim%_7^I$_V?PQbnu^L<?a4!fJPjgl(R^hzbF6o-5B5sZ3L3S02{
zsjVwLi2|3u=f!hNqZKH<`q26`g>w~_i(fCdcp4ZAT6DLFA~{YWk&40*=T@HGEKc(&
z7WcbW-)wEHBzuARM$lY?OV`c6+WAl}Oh9FTOK&{$;$DG80PeXVSh9!6{KZJ%|8aF*
zK}|G(7EUJ#Ed+=(A(YTd=tb0oCY?}(Pz_Z?I;bF`N$9;JT~I(k)X<UN5~@gVA|kzs
zhzJOZmCM}wcK2;(_F-RkcITY4-=~cbd$*(fDV)ETg+qkUA8nsZJi~`WF&V!CXZ-nO
z2khU(2x;S7H}g~_+v(qvtidA>7S$=8X8#*76P2@$geb(qK0Z{2u3b7Khz%G1CP^O3
z@6SkNc?b`F1r!9zBJL-4S)Kp)N6rIuM8S$Ss|@^Ji+Ltdh_7A6rVbd2$*0yD@!Gyo
zdin2Plya}Am;Q)`7)N4Y#}*&a8~Dsuyh7VHVs7+8K<Ebx_8-D{>z86`V*%$^6Z<*Z
zcV2!@RmC0i1uw_g2fD0SuyoVYMs&VB=N{E{mZ6>u0m;~Yv5nuVE!<B8nP7|^5!>Gv
zPo|8W;Z0QGHF~5~K8h3SRkE3qe(`N`P$i&uLYoIqZMk5#8#eBsSJh-^e`L_orO)l^
zJ$2FJuj-hn<YNz-!+)PzcrGR>oWQ2enb?o|ltyD_eX9(Iskd{bflx<{($<lHXMZts
z%C1XFbD{TY>|?GrsXNSWlQ(ncBi2jrF5LWT?ge3&pTR;g_IAC_QI}50Ms(W`*-#($
zR_;sDKM!v#>zt+n<L-#R<XcTu5ByH!G?E5F*vZkj7(PwKs<oVp=T7!__9IQJ8T!IM
zy~)SZwfrATt}PUPEQ|ifzgZq9T(o&V?VP};$~?ECPt~Qj1-5Fc%8It?9={a$T;H-#
z^!dq)e*)W#Ug6^H#^J!5bk8qm0kN&bBh3JuidK^*YU+u{PT3h_%~4Pz<mOk~{Xopq
zCie4xykI(5AcWQT_7`}E(m4WzYptk(?TsO+8EGc0>HW=04NE(iP!Qe$b7{1HXyGxh
zrp9tFXmAeLx7vvs!t{=udFLZVJPsyI&btoJdxreY9Xsz{uEWkl>AiuY$^zYb9=|G^
z7q{CiZ{VqWN<Yx<V#$wvtTF-)6T?VfLag80ea`#io-{FT;EUAlL{w|eXV=SFQhIm9
zPy9bfCsZY92zJM`KL$>2p#rKt@o-eKLs$sse_vFjp~GLx{c}M6JoGs)GL{Iwe!#>T
zQ$<I+7m$ue3aVT{Ag`?<t3+F>zz$n9V0G>{WmlVXCsU2bpchg}MIYnV;V6|wfK#rx
zObY>0jp($AJwou9hr}2Vh`bgdhO!gxVA($gEa&$+)fp5Nl+f8>x!fz?l?j!hxUzmC
zUwA9;on+X5!4XMP;1pT{)NgqT0%VK{umMphb{UP_1;9&)S@nX2*aRvSA{%VUqg`38
z)duijS_xha?gt7H9^D9Ul$X=WmD5?GU(8f7ys^Y>h;f9#<QrqefAt)LohV6W95je5
z9w*sOMvh7o^BS}y1$G`tx)k|me9^B$ODx^5nhMRfB1=jJ`CbUR9fsj{uF5)iSj-bH
z3TC4Z04A>7yY>>SUEn#A=Y)TNU{Ez)^j!XxKgNYiTyvdur$Owqy1)0@7O~8-;|PvP
zjQTx*C8$QvJu`h|R{<j$A!Rtw4fxAkD#@UCvfS1OtuV%cv$Y?O&l#|sFmmLo00Uoh
z85S33!U2lR8o6MnH$E_fD(=lC-~eJm(Len@1}e;!OnQ8ljd{;7!qf8EOqMpC`;jB>
zqA~ayJyUTBB3I4}Dp9eC4yV<d{bV{q*QpY+%K|v*dnD)MU`|*BOXlg2Ihp&WkgRqr
zl$!v6plXmYt%r{dQ9ugRSu96uN)#JRG$UowxpRX~<0x#NTuU<>cql|h8fbyD(-LbI
zj}}MKz#L;#^c3%T>{)_Nh-Oj(gL)IXYvGiOPGHMSuNE2eH$UGAJav>=r(1>fH8gXw
zJ!lp@e-;pUs@&OAXycK4)msnnhxfd?*JZ4o&~}Bg7m<2505{g-?caZJv*jrlUr3tZ
z+L%1OFw8^72P>+nM5a})0hLbsc1j<nB){Y!O8fwtMv+3uICHkJq;dmc81Pk}|2mG%
z2jsb<zdXn+Kbcul|J~P$Wr+p!%9P!Y`TjHZSnF)XnJ9p1$BwC|VMICAVCgk>!UTk=
zR7~Lvrg0~pN#OF&Ef{zUN;EY0(5=zx{nT^?QB%*#Lvn0N9N4pAAztFc@Re~_kEJGM
zj%Z~4xc5=P2dTF0ruoV-dcCIxu5qGMozJ`XY1oSk%jR(EG}Fm^&K-F3%F_O?i`+>h
z5W<NvbCyLSCs|Ps30fsVaseKiG~jcI=vmWK6tL^k1xrbWk?qsH8v=Yl%5oK>BoGdR
z9A=7H?usXqHU*@D;pZ!Z2`_n{A!VfZgvPF#!|6^_c$vdm>(Vu`TY%YL;=txnm(S{?
z#1T`5YC<026TYM$RO~s4;?SkmVveIAdGX&mmQ$$)UY{Op%g|#!{`EB;<QANTAJ`oA
zW$1qYHU_s0e~<zwvKuRgN88JHCgJJ(PAfP$xQ+KC6h2{8w5PEvUserE=cxzWW9(##
zCEEDba?nM-xq}yV%R$DpN|c9MFS5fV*5l5~Mz2<wZ25=M#|3jwV-jzK@^$Zuy12X+
z5CxKQt#`ssH5qQ_>y%iKu8gYyK0Auo3GeqGYD?eJ{`vCorUEVfBj2xCumc?z?}&_D
z{4d%_gaCK>G=^RSzL6$`j^`16XuG_>?x7S1A~8Yi<^&P>BNLMG6S&&Hrom!G&~U=8
zAneUw?qz&ywi)oK*na%uv1!DgHwnRq^`6l@z;FMFGjCBeYM!NTmHpaoLW1Zi6lfLM
zwCu+5;XmYUK?6z&Ol^0tMoDZOD8f9c&63-`X?6`<T1Cl+#ETc0f91V<PVg@N*G2Q~
zMV<Gd>!;4|S4ek3zHX0TcTdP(Rc*k%ASy1gAQ{!~R@~e3>>tZgwB5m<hZ9fX(;3R4
zR=)%3zm2^V(?@&C0#j#Gzl)9Cl%zal1IWdCSsF=l_9dO``;1@)!VB~l+kqUnKN<4L
zc4EDN5sx~z*&)j&NqwxjJ(P!yUlHh&B}fIw9|_K~0Un=9LyuZp8|v@$@;@G*|FA7{
zzEqHrzshxlm?@(O9LvKx^eT}4ek`XtS&pA3w^I4?@hEAD25Asimk0PX5N(+Wmj`~=
zSl+hlMDl-%S|Ncxk6rd##)K}PLxK5XX?z8p{J8*Bj_7hFO`sllG%_N{BntI+3XKs@
z&xm%exC?J}zQxi-{wxEh^{^b{Sd^Y9UzezWsUmy;_nkwRz@;Ljr*zb%1OW3&`an=m
z#icjZ`ctGRJ7_HkA}R!r1j{5+WQtZ~#3XoY?r&tLsBK&Da|bH@T2b2l$`iVi3SX5b
zXL9oDBL(z%4XstAADrp{sEUQCmV8051@Z=3r)*oC{xWtt#K+igRpUwJecxoQR(<pM
zCE=KEqvP$EPJ`g>a($heZXFWMymd8>8FL@K#<K-JJJl`1wS0EP^PIqzkQ0T+pJXc;
zdLC9~lHL9GVBElk@<LW32MN%(B<On#{<+CzaMR$f!M@2&9P(bd;Xi1H8=FP`lK4Fd
zi5oV&)dmLs?3&D2&E{A$*t*$@xX7g0nfC58L)I33X}sY!Ms-ZtMQb^Sc&l4*(z)fR
z-3KK9s-Kxv)^HA+qICz;3P9#(#PmKQ)Z4mi|02Fu;UmQ%f630q5NaQ1=SEcgBB4~3
zKwh%B8S9OAtX6tzipcI&ZbPdyAYG>no$*R4j-D3%y~A@jd8J9!^Euu7-j{y$LW0Ir
zj)~mrs12!x%N|~E^-J6upSnE>MqWOm-X3A<PJP3HFwLk*%{$y$F(-Lcj#kQ~RtC3r
zj;;3H9PQ#s?R(rh4{UWF=IA`))>t+2oaqZ#k~D-#c`(8fx2t)d+g=7e4Eip2d5GIP
zdr#ebP{-Ofgzxgx9f?ql_)z)R3tP4g0~2ls+`Iy&2?iG;;-z@`C}2LRKa`kM7~s0s
zWkcce>*VF@p|2y#AL_mEBK$5VC{6KVnpch{^NTKQux0CerrccMR&Pm&a$-i=x!)>V
zGK|cQw%hnQeOYd(-_75S7of%)oC}xVq@#UhNZ96srNm?`73TY=xq^XAmJ#TWJ*KOe
zrT~n;CYV$=>sxH-pLdtBB*Z$E=T}0^5&&^zih;GA9CxFj3pcMXe0AoVcUh1b@L|FV
zi-9ZsSjZiUmEh88QrGciyIYfF9t=&eNMT4@r7+X{m948bQ_28SBjE_$1K8JQu?gQ_
zBzJ3f`E)*Ri)FTq<SJ}6GXr^r-Bdkunv%npl#hLzg-vR)6fM@P6*O%EPd)_LUpp^S
zr7Q3$s{m{7z6q>LsIOzmC%4%1n>ZXdSzgH#Gpfx+xff+7f%k|c=8zCwJ=X_8zPprf
zswCqvp?mX9lBsCHEQhos@L@Ir1HfmzyavFi6<y~&pIA}Uu~bx&$97!RxUh6!TV+|Y
zL9L-MOU6t}2ev7LnHsz7z|A*hyNDj0@?O)<PiTd5U(fOqwP?IV*B?XOTvHKI`+F1+
z(3nagrrt39?&VCqp^MbkOIB9Iz*Owr3$qgb#QtlBL&cEV@*1^HdJlboW38D8ovjBH
zjI{BVfu-y+J-N#NJC#!B@)7VV@v-&Qt>@S4c;~JmY-I1n%F4i6DOHD;ugNc!B+uoJ
z0v|E!{#}!^_zv!n{jaAkd%*9pQH$Vq{^P0Fk8fK&DG`HG%tp840}ehbjt@Q8c=R9q
zs^75ZD5g9}Jhe&pDtsq7_;A3=65zqZL{E8!ooQRPf7IgkS@^i!jKSB&ioL;R1<aL5
zX_RMeQo|0Kzxz*kaLxeRZ1kD;gqYr?=Jvz9g*@0oVU=D>Y~^6KR?D?rzlzGI18)yv
z@(Jzm<-4h@&uWy9^Qq6m9bAc49W{d;jF7;#tD&zx3wN2-6<G#+z$-3}1$;rh^aVpU
z%=T|>y<}Xxx%;E@_SaVwEEBffJ!UI4eYacMy;DeG)Q!}IsptY6i8AuoH{;P_5evH$
z#@*)8mR@(1KlYUS_hMOf@#ZmCuF(X8Q2>P=qg0u)p_rctpgjQ8v_I%I<m6{Q$_9Kr
z?eRLk`~(%uHDS=7SRZn4sb3@Lswh0J*gwu<DCWGD>u~~Lu%2xY<o@S+0cwkN$g~~I
zLK}*RsGQIkK5F@Z-HpZt1J~HNwzfyMAOEdef<7e*fxm!Z?3>d0)a5JVmXjgeS`)dW
zA0QTjTjWzZ05{lst4nDglBwew5n2V0-^;U44y@p`hBMA9Obz8v3GqXH>&}ywLR^NS
z6pLwrQB=LfB24t%^#H|N?BF{lGpX%S50|p<%I2IdtoBcytxTJZ=$tO`L^VE!x3XtQ
zS<LT}=0@s0dfVX>k5fe_=b8SSWt9v2=9Y_ETtDL%^JR%i*uqYI#8`u<D}G{)<5OcK
z;7<U+BHv@9DSIk1=R)=BImNZ3Crd-rQUB|RW9*arl8R8-^pd<F{_B>?>%P1z{A>BK
zr!Ehpwr1u?Pi~jSth;d77+KgnqV9js_;yZo_1sgWUJyS=oZkJ&SOvu;HNvL?j#Tbb
zR~;ec#qT*DJvlI4Iv_n==-7F<Q|Nvnm|YHe&U7MuGQI4Efa}MlpFHFp`_YP_k%!TS
zU^kD;c?4ilkq3aj%f`7UOxU9r{i09`+!#Fa%RAq@)kxNdTj^?zsopl!a@&eJPNltc
zQpN94ub$lsmZkd&qvsCzEXRH!pMFnz#QYX964lmqETB_;xd>?UwPyI{o5r5Q>DHCX
z@v6^b-;tyr+mC<D9sMX0KcdQbC0p_GF~G+;R)_*ln);bvC(5RCzr)k1VAtZg{AQ?e
zRAKSxqw^KN;K1MgH-B%GGtPHH$V}S+B{iR7TvV1cWOr~T$kJ))FCXFG##5Byr+<`4
z-q4-4$58+<=`Uj#5X5M^$BaxMG=HN;-=hvoo&m`)Y85k4J_g{ksGPdDMcTi&O&PrY
zS0CkAK^^fWKec{^?y^^Fuv0q(BR(FQK84$oqW=i~y58(~g=8J+%q(PbG?VnYGB{SR
zbuJg>vH;k);`COol`cGy%%dQc1#G&}tV+*;N#CD!kn~?Hor3_u%m1;-xv);4z}CCZ
zD`umio*W4-FWO+7AtyN8?o+=`-hYV{6zBRI))4G223r~<h#6ND%JRlqt4d}`$Y*&U
zh;mDbVcD{<=>y7o$|{?5uCMgId643o9&&a?VZ}r7`h6+M#BS*ZiJ}MGqa}`iD|uQH
z>nCsVf>-!2SvR_~$@ziy)Y!vzT~3|VMWl2Iu<P>`cF9ECLRdbpt<&qZh~W>Y<E`Mr
zoX9Zm><MsszG-RL><AfVp{SII38lpj;`UyDesBAXemd&xXtImnN|wjQxb&Ct{i7^{
zbXW7~m`y!A*Ry3~n2kx@MT;^OQFaIs-7h-%KxCa=MrOh|GZuT6G?QY0?(v*y5yd&!
zh&IhjyqM>a4?S6%^2nu&AOB|%Eg`FC;ZEG{_HtvxW$EJ(YwfGQaJ2?5W?qtM%DjOS
zehr~hGBr|GUg`;esJBuEb+KZbd(w-`3wdaB%W@e`wCq)Q$FxDYt*D%X@IBgTzm9Cb
z44gbCKQG&Q@mHR{k$r1lH+8l!fd9*-q9FTCDlmRlQ5~ufdE1Jk4Ss7Ozrf8w5r>ys
zCx2Jb{EgmXLE)QjW6-wI$Zr?vP^BAxMKP1S!rV%(FEyodOu6y54>}xY{#}^Atqzye
zP;FXiNKk!S_Emq<-MC3*u*%&?b<(YS$J17Q{*ih>%h$)MKE64h_l(RQuJ2v0whUC&
zx;FVDqG|8U;<xi62gmxC4ldj~Fk3vZ5;?TJbm(yJ(0TFjlE`<d%<XQ&Gaus5toL0C
zn+)(taGm;Q`3H9O)*X(1ZmT)f?+;YZ2}<o>>O8N!aZc%iyc)|#*VUgQ0iY9GLYX&F
zF!#q@fZn&VbM}B6vYPr9NM8Ddh&3jGYf29qff!p1Z&Zt{z87iAjMP%pucF+{{dW{+
zYe*wZnJU2g#8tGhS-BUgC)=@S?@!BVJnB71$=Pg9=4oi%2>VgY)@h34dlXUTY%3}e
zHAQUU7@#BBz^-?VJGo+tJ<6Tzlah_S*2>2rY)E6IdHj1ioGtbB+=DfV(yUU<`@Hox
z38pDA{8wbwsSwuVlrEW|r(czV8N2w9hCSub#ztNcTR#^l`LX?AnB8G$tK;nZx>oKR
z6A+x9*_#_Sby;!mvd9xGo6XaDDR7L*drWf8WT)u^tI)=BxO?qA{@Y}v|4f|WX-tqM
zlF_bOeuAt;aOn`4VsRqjVi&UIuk1?<<Vq^MNC{o)e4YZ+JFOMGX-q2=_FGW1Dfj7@
z&}8lZ^$kE5xleq0aFDbnNiT5fIt#7q`2eal;^^_ex%X)p%)usIAy5^QqU~|_wgMrk
z1`RV5t>f#gGGrl!8P{M3*^F3J<v{-#Gy>w|v=z1d_)|~lOcJ5ij=KAy!qbuH1ADsl
z!Dm~E^ry$+4b}T<TT^uoO@S7#ffPBGnRaScmpzQs;a;MZ9i{nIxkHfuJpfEgm{mx$
zq5zRk!&a;bOk?x_ybxNnWL)5h`MoRQ#Rs7`i0#Mnmb>t&=*{bNrLrtgJ^r|wBrfPx
zsSqlDxANd`je*!C%n9X2Mp}&d&@Ca!Qj#p0nQl+P#v8hETv?{WoP`)k9;x1)%bs`x
z4JLim0x<56pMqhp%V)9-L|*VE&2y=Ss4%09T`ohC$fVc#R}BRsC9+LqpFt5Iv^Em~
zPz>%u-WJ`Z;zV=-+-hWG`??yd7BfA(FOSfhtbnCJz#~%zrBFAEgjKHd$xC|3V{R;f
zh~=eETB1F&WrWLaR)6d&GMa<a!K`Fvm$vT2m7WZ6d1e>F4qHyF+yMwc&+tlDAY#Q6
zmzY5I-0}@T0xh=~$-=Ph1!gLem^1~l7Xr+W&*IblNQ!{5DE1dZSS<>GG4R4%fIkmU
z1ZG8ONQYGcor$x)ifG$#a?Fh}cf?(f6ASjepD$r5<9>EJDYHdJSJ1FnP(D)W<<G7E
zlysn^k3%O7rYcEwMmYYl`za%!b0OYtI<5vBKBh-TUS3wL`g?1C#C;$z<R1MV{fFf#
z%;~-?Fsfbi6Cm%`M`hnKJ>MS0xOND=|1>RvoDlGRE}bQMW|P5n{A~SOr<BmyB|Wb0
zB4zq*d$LNC*-1q~gZj@+jwA6w4P-QDEMDV1EWlfR+DW7WJ|ZpcVK7FV_Z?@BNk4CR
zDA_&cJ`Q@qw)o!R@~}UTOvJF#N|M}5tyR{sz8?TFgMe6M9{ZT&+XCm#V07R6ebGgc
z%`h%EXUbe-pM1_3NI+Yp^I7nx8j=v3l_|2F>mU1p)LVg6>c^cif4&*_`Li>AXQXE0
zxW~bKH@Yk|Usiz@ErYVUrtLEsUHokCL&am^HPo&KGBvFS!e4uji?P7@xQ}J8iKzES
zWbFBKt6{S;gY~61w_{n5UO<(0=Iyp`*5~IQO21>LK$<*{g&^YnP|k?*GwAZAB#D|%
z59|^*bDuL984Jl|r^ZST6oyP+q`tToAEY@@&TV;FYFbp3+PXU56)G7kkqWqgwx+YK
z=71FOC@Gxr80LRtAf|SYD%bwY;O7%R`^7W``jJ03fV}eMDNB>26Ty$b9lPXH4j=N7
zgwW(~hbyV?>0;;_vQ!Ecr8O`sioTf$VQ11I30F=H4irE%yJEZrb=Ou1C;-R>3ps@a
z0Q(aAO<>&+&fHUAmD)G+*MRY*b3(|BZrvz;Q6)JNr%VgAf!8lJ{z8AsrD_|4nbW|G
z3vi;7*xf-s%jCQZgwC~KV*zU)B2bz_gB?pUaG1mu{6(#WJz0;_9i5aL9%>+(-sXUO
zNx7{h<@M!=Weo`-EY#2CLE;8}MAOKq=%RrkLhYH!wtpC)y<UJ}FJmlGZ>!5$DM9$b
z3q<DvvLRaBY~VW5#R(E*&eM?VA#5PN76q%70K!kGu;*n&g~gk>2aWJLjy7re|5h*4
zD^Ec)ZpxnPlsDtL#BxCt@dd8nE6G#wo`c)`2|s4M#6p`{4MVj6Bl#2f^>#;#&rY4%
zQKKWs!QEU{-`K3w>8+W}NlmAoij&R-t%8QS@zbh|HuWyD1iuyM3#<ry@eZsD0B}ki
zJPs-atidRNuzGzjw@)DVll+H_E0~Jxd7fyPHU=0Oa<_j9xgx&h{!BiT!MNuOp@7#c
zAagwpRpIZ=x;J!IdSVoy@CASk)qv*uy3qQT0*j9TbAV#%v*=Zi!Bd?jq_G;-T3<xY
zjpZnAC$?OJKH;6Ii37pk+4jyOPh?0RZVa_P?fLY^`>Z;7um<Z_mN%18aK;6Nt7xlL
z1BXh{ol5H8J=uBD1p@>x{CKHJm0%FSlGLUfCFM|l0`-9tJ_B>q29lUjq^VMtm^w?q
zjxT__z7Ezl`7zLWT_Rj8KkiP+W!oa-d89m(ia0?RI7Pex2UgM)pjDlm>A`DG3_6?c
zlC}Kin>5REbM|8fQ$Xl8HG%j!TcNg~S5%OuQY$WYY@DDYpv43QPR*9Iu14^<)1bm*
zK(bvQT8wFPgV^FM&&Pyj3ps)7nQIbS<xnXq6C}-~-^qUf;cov{D&DjqEv?BKa67Ez
z<MTMV%aMZ}I(m1G1u3R*_dfLzLo0KD`(NaY%0oya>|8xov)ggR3`+U3$+(P5)u~sm
zQmSJq2cB$>-(GJaL@JJFgCr7+;DSsV!J4l2K&kjYqvq2YnO)X_P^icflZCJw|HX+0
z{2)VAtrv~u?<7El4(;GS1^u@P<g?EaZa1gF^fE2ycjN!Oea-l~3gbT*eyegELGB_*
zCCp=>e8h_CBeohSbr-VIE%M}r1?Yog5bIv1De_z?q=e`TJdhddnBnSrqoVul3bec1
z1cjI1EnYb8GkH7=R^SRRUifd45D?LQ)j;?6oK62xpOOR9*6xpwVg0j5VNay(KbO1=
zl)3b%de%*bZ58t2kZIgR1&A#-q)1p3h7=y;Rf&L^4vD`2?Vy9#<`;ntLVZBHa{6P{
zRU{iW>U~DYcU#gtlC@oQs*`#MY%X<sjf|>~P`=S|>BYyhmk$5?s~C|xRQdJ-Bwm4q
zlLTvLE+&uOZCc$udLyn6#sUaNGEXD3Zh1fi7)+QAR=nq3*f;cvbMQyt%{-=&z@y_k
z(MpP(fT8Y}-+LoY*efJ@>U~#M{(|~1yf*+9uuJO2vgh_sz=tRR7Q$zI?%;va-%qx$
zemw*}KWuvX_e<ET-wO`vqpy_y?d81svvKEhopbcR!=_h%ckaA06-F(xPx1cy{_6a{
zZ%^+WD0h~dm(TtqjzP?M>rMmULRh$qpzU1I$~EdQZ6d6sP{WrDu*aIlQUMYKaaRHe
zPWVnPpS=b!>P6@<VjvrHK!Ywp0M`34;lu{b-LrIz%VJaMRKqi26uZCLKyWMo>_&r4
zQNs5?1}>ePd*zK+0DRs=)HD_+WYk72=Sh!+!~)=C6g-x2!`xk&5rYgrrk?nD_z6Uw
z%nI&U+D0LYtA(Xlnl6a%!i>=+X6QHyT~hbd>){W*+BBh}E*YL>2VAMvZl7FFmpnmF
zK?tb02|A^5Uwl7haJ=+$AyC7m8}YJCpriEcQVh1v@#0^7g5BgfzMgaLG(Ehbz84T{
z)X8-&?u>hnU*Sq`WRLdQ`w9ylSquoqrB7rNVx=3WG;45is>k5SKx?_jS^`=pf0q;s
zo0lm+A8x3+Vn9xXnm3exKj?k?)7}$b>@6|G=`<&l+INXL=2bcEwYS2zsc$dQ=`*(6
ztQDs!0Ms@jURe@5w;}GwjMof=2F$<$V@Xqg`U1^Ip2wj>rH@&{v=ZKiQ-|Ru*em8j
z{w%Ei%a~@ts5t}FUo>(kA#mn(t)sEl?P;_dG1H$fvXFQ$tsmUT?XKLPY-g16JW(O_
zLgZ9GNR*cThaGgf)5NJWbMpa-W8GNo4U4WxdowbRoOIV0k?LxaPfc=9HIWvzE0QoR
zrZS7MMqdLe71!UC9hjiC^&jY(Rz_4+QIe~JlYQMEaPzRf#|`rL3_d5*nuWwKUNmd!
zX9fG@dCwr9p!nL2-`M1{lJA>chNK2n;9UPvUZ8MZMv^K=tkP5h^Ms%5$hQAysngu<
zqgqCX;ZTp=kg*ueVa0+fG{T>6J+Qm>-=A#wvVrr&F>s1PGl+!GvW>9#n7tb#-b=E0
zpPD9cD{-kNjf*jidp->486G2Xcg_u)=b2LpmVtbk4(Q9XsC4e;Jg@5yZ-8P}+u>{5
zoah5iF&-|GHqkvY-J3B6NaV2W=Q3E~Ad7Zx`O-pWIGnad@Xyw3wyV+pRzLiiKiboe
zGBbiyjDFQ~{yu`xURpW6v7$|l{?(292g!+?mU8}^6U~ld9hw8a*f7-H1P!NxqotCo
zrB8=vc1?{3GT9J?V>gBEF)d@DFXdN#*v{f;?A}B<;m+F})^{d4)!!J&lmSHp3<bEb
z_rADeBxL4?c{BnXzO~l`&RL)Rl$CZcF0y_sy+sD*=I4plN*Cr|L6gzCZ)_z)vU6|S
z=?!njo}HG#<$pSuV8a3Be{L!Qvr0R7xPE@@ip)V%CzTFtrwh4rG_F)2>n;g&I;nF?
z*47G1l%4$|qb-wqt}3r$I=ic|_F=XRT+Pll?V>?1PYJr1>x3Cgd{A)PZfln$B}+5a
zra9IY-{bfsB>k3`guuI8w8Pci*Lmxuz6J2ln-70mlgu)hn8%&@Hp&v|<k;y{LHD~|
z*Mh{keUiA;Fnuk_{=APphc!=~BIc1;=Z$s4EraO_Zy=A4+2vuLj{6_(P0#|b7zQ1#
z8kXlrXuspSb@ygrWzIRnu+odBdUwO$9NT|mOZKO;_=JdS$2nelq5s^ihgl~m%t4JD
zC*J(qITo<pa@+s#+R1R?)cv2QsE&lHUTfOv8SG>E7;QcZbB3|b8P`IM%LBw)FY*2%
zXVMB1vkH=~5YxYqGXi?64(p%)0%v_m%L*VCmM*2$3)QX<-Mdy)?w+T;<XBcH0C=*-
zYZp*{ZOdRyuOh_pjjX_cN>S=~L7L%g<>9-JLIKr(;WIajxDRS{c&%&qY>nyli_^mO
zpJ2!#r~bGC^qP~PvBHy|vjfXRDM-PziBCX2!A6<l?jqMgZSYy^;+9gNQM%w@Ve!U>
zWydvQYiVa^z{8m?=k89IS5E|cdyjM9xzV~^Yq$7~UPYH!@$B^H&9!~89w?=*<U0!*
zczmJL`+A{?Bft@bx#7bvi$-6!{+4_|oc@BDAMf?!nQ~Pa&zvj;Iru9v(BOr`GW7QR
z2{c5d@~cqrQ}pvv-ky2>k<#Ciz~AS#S)ceWR+S!nS1QD~p@kNdNV2Q=vQ>8PHTKeD
zMLc+t_%YgTGi?EIS9rBtn04+6PpjKA4Lr+@UHJOK&K2rUkIt{66T9r|dyx#}Q#@-M
zgY^}j?KOjK6wm&S!M=#+_{iY+is$^n;5^2oR7U^{gQ!z@79l=2Obk$r635dJ<Z@rh
zpd6#spv*(KqL>T*CCnpr95VuI_^mFANTr^99c2|PWf$zNko6GZR0JVNsj?hiUtVA`
zks((0{pAkk2WV^k>-riNzEtCN6ry*QuwO>x)T!qD*Cne%JT0z=&aVs*8-~e4d1M)<
zG8Vt$i3qI=h|G|y<rT&S%R<!9m0O8d!kMsdAVgMZs*t|82vCkwUsTQTw2xlr>;`UT
zzt=6697vOzdi{H=LJTY-z8E6M<AJ^a6l@0yZI6iQ?c;J5lZ1)TqqHv<#p<*l8GGH2
zm<v&QzOORX9Z2_3NLq;p8fZVT*G(-f%38^O_ARJtMIZI;qOX!686tm@ijL2>>UCd8
z4N`MnRC_vnp7)rbe!J94jmaMObi#5T-25(Y^U=jWG-XQz6}KK0AEM=0EZ%0-o-A%@
z-fWG98nGAxU7Bq&xl<#<r)lA>x@xBx-R!(nz2i<|RKn*!5asJlJa%yXAfnG7n(-NN
zmoeZa?8%i65~L5|%g{5$R!+l;4Psp`m8+%~IL`RNJRQ3(M?l9apyul#gsY2${}SZh
zyzUl-co&suMK~Kd^_}m6+p8yqQdmJ_EpI7<L>s%u3M{|y65$65#I3%y^1}=Hs?r4G
zFx>=w(13^Ln*N9c;ePG~&^MR=jNR^}ekJD`eHn2&R=i;UJ!|&C=k05nwt|+zK%+)?
zgZ_St*5lYK;zZ=3dO570_fEg!gS9YVSFEl&Gx@<tiE%R7!n{k}XRyU$qW{cXqGk3e
zrzb>T=sNlCCC6j^?=Gg*6sLzmITdPIbD32S2*~?flF!D5Hf0EIyYC_&YRcPscay!5
zjDhv`Bw%P2hOmCOUhVo*?}u>H5wCUo?4?^*y`x#Rax-tpe`&ieK6|t63Xd-!&!r1d
zLNE*d@hswpQtdiDDCYA~Tlm}?_a}t0I)RAdD%k>74^vvy9m!jRZ5XCEW^P@k|A^}r
zm2spIe1>M%Ces#?LP>9H=h<+$eq*dIB?Exoks#LWVoNPGB|YEA`WHf+P5lQ}SxX-R
zOOM&m&5~EoUjCiB<ET8!hqxhqmW?e@vbSWISGA?KGu44-+PChfTvg<>Bb$$rO!IR#
z>zGJHDb0Lv%e*BCX#K3X&C=u(DO@8X|5f@xE-4uKv44%dIPclR@CM$g4bOv(WWQgI
z%IsI)gMwjFu|qq61OCvCG(o0?MOJ&*EIXsTy5kf3HK%W3`fv0DFSqDuJ36z|9#i4w
z;5*q)_&w;C8IDL{TBII=Qh#bBoH;hU`LSK<*00!GKE#{*k3pxVn{zBF0a3vI@djH<
zZ^(aWwf}G_{8<27G%9MR;G2vc=KgVp`}+~P%I2dc^Dc{<-3C!+fl^e-PTEbC`Ltsz
zD}dgizj};@FFNz)y|<%(NYc50Ipj6o`0Knc!)gFrnb(ZG&_^7*21LitH-E(4A|q<i
z)Q!uh^~9ZJ_Vx60T<EmP`N0Q-p@h`-4bDX}omE@wNxm+ICx2wI#_zw6d2Lbf$e}8H
z_s~0C%%7iX%Q9?p1{0t6<Uf(}e`RXkdHeSB@5}afujGhX9X;6-#F@7%p`lr)B7tfj
z+tJ$*UUpG=PXzP#$0~QNS&zm&LjQ=sgD<4j_Foox^Ub#7%16)I=T&0F$^qM5X)5gK
z!i9W?)k`4f64~Ja8QJA<Sncn39qBTz=g{G|a~|63n)prh1+AU`htYbGvF+n#d>q{o
zZT|L7#M${A#XV5f#7pyeT@R=mPk4?$R`xykj?iO4=<#(%Sy1u0Izx$ny1g?3LN7}a
zq&+TPJY`S{uisg;y|i@qwoZZWb=|RgH^W9Z;F$x@pJ6ZjFYFk4PZ^DO2E@Pp{NWb0
z@s4?o-|vjhBi7qnmlS^{IQ;;35~O)*<7*~K&%9(s7$#v$R7FDu4vCv$^4Z|I9!)9M
zTCc-S*gTZtT@|m~B632+-w`jhKWQ8_PjzvpIPv;2kb(qUPGv<e>OL>yQT^j;gi=L@
za>c`L$vUHI9(0%8+l$lo?;K{x?;U5IJ~+G7a_PuO)G9X9pnT)YXk08vH08Li)tD8h
zX${%b@Mzi)Ro4*JY^T9S-aSm0Tx2v=?Gmf6$!shE*Tsz`w>Cf9`8>xhRk)uFS<?pN
z6&9#+o&5;qcz?H&SbdDF$z7kcmY`UCqH|Y$ZZ3$mC}OBPwY1K_#zsY(u(Af=NR5x6
zDqjIS_th7p)2-91l5a}HL6Cf-+~;w~g=Qq8TE;l*S*2x_)7!0!^^Oi-kg8+3tgNh(
zHRL_UU=o5;jR8<zGe}{BW5~YB($$Fw53|Joif?qeUFQ(?-`=IpYozL-nkgYCNC_10
z$&%5T7HdU2EPzY;YoR?~XX4~wf3+I3+d@80S4mYpbxX&&V=o?OgX+nRoG<Ehb_oh>
z>@TxIcRm#wr||L%lPR5D@@&n1@6l+Qi+0#Y{lrt}ZZ&+Eu!FfYyEeA>Kn^y~BZ=0*
z)Sm}i7y2w)vXlPmLW`Uu#)yWj#V}(F#SU1l;<NRlsQ%b4$%vFvuswMh2vIW@6_GVE
zW{tg-U!K%zH+yCi{=-<vT8_uoF2oSyoEj&Gzi!(_m7`EAAc64(6sX|qs2TvL3nL`X
zFW<V;h>t`brHcpHq17b<3=H8tFMn?Uc+M>?fl=SPQZo@wjD}d4Q_f1Pw0l7)K)z*d
z!c25_u5qwz79QF!rV5TRk+^5)eNWQY0DVD4&2~NMSj`&^8kT;?Q-K$*NHKkF99_v_
zBWP7%$5eY)ZzH^Gv$uxxL9+*2|1h=qHYIBA2YsanGWDi?FV`o;ac%RUVPe<1>}+sq
zGl#J%d6cCt!Be6^)YDNz{p3^Uf}z9Q+K=;{PBp!~?i~2vp@smAV7EfOn@c9l1@hqm
z64wH>mj{8ml!`nH@5p!Ek<eHNH_4G}Rn+StKt9(~y!}~Kp|;9ey<j`ia>YfCf33U_
zxKIB|Trrv8;U%AMmK=YPp~aD&g?O-*WNRPko$q|zkrzyLz8`CDpXwM>*w(K7@ov=j
zX9$>!7I6JuO8hz*v!#CXN_Fw|UsnR3@)5zutQy9&xY(BLBELrs7|*S`ry~M>jkdQa
zP)wp?vA-;dFDjsYH9u;nQRIjcizbW#JTPDSoP!eojzk4@u(oXhIM^=zr`IcZ<4;Jx
z_}yEf19EMDLWfk}-3l8y^W#t0nEt8g@Ch@`zu{B14$;@9op1cTHsg8MH76^q0l?0&
zP&U8+A+G;y9+-d<hRg>bZXc~w6_j7c^DQl@u$1hau3r0A0Dx@VZTka6<!($zZaM;A
z#cY1layz;^BK0qCZ_q*ScSypeSBIbOykm*?ZtxS01Lh9g0l@sJ5G>iMM2$daFHZrA
z_D`ZP5y^hEWdMsgmQR=fYS|-FA!?Xogzga$ZO{qCN-TF`W|%;s%-FZKqHrrT6NnkR
z#lv%oO<OCLE%StsIeY1NmqnK=k)p)a(+i|)893lq@6^s1Aap2n^w0W)f81U0Ynz>H
z99YyXPdZxR9rWv!M@d$x_xA%0jKumrCGIHSM-B2NoD`|TZbI(_Cbc?b{sqH@A>ANj
zY<FEf7Lk&fpPmh&vwBlpq{&1$Ig=ivP;S(?f<S6et9yVMS?RG}+{oa{E#=RdN#PWP
z`IP~2LwA}e99U$0B034y&(^rV1~4tBV>cRawheis-Zvn4uxMEFl$W?jB%XrIDbV~>
z1vdtOxul7iUui^9&f~+rTHWPzf#05T9OV}j;zK<qB`Q(&?@iS^RZ^T&V?=;IweWrP
z3`59embxFq-tWH^y`8Am{2YnCVOnu-zUbp%zoP}NnUbXFN7RnzN`*sLkvV80a(9fO
zj*x&9*Q_Isq+p7s757hFBpM|wA$}PLL(y?WK9fu(99|!2PUti`6CUdnFa6Npsn*h|
zC^@UKwo*T_#;TidR8-B5Z^pli(6VAz@2^)PZ@Z=cA3Ub8j$Zmee@l+1h_$vuto{kL
zj=P{PDYyE5{rg{jqjj^Xpq?Qxix!{<NpJ{}0aNCKMXb{vAYsAxK?-D0K)iLD`z;BS
zX-u9?93$x%uPEA}Pu@lgkBv3chg|RkQT63(-1TDj^W~2GWsT)Jhp)F@N}gD;TFsr6
zlx9K;)gDq1gUKy@pPq)Sh$Y_4X_<>(eiD8tap|LH14xY;sr~+u?ytH6mWZbSPAWhc
zxkO!ueP@j+wX%1l&*S`C1jm_ILrOoJY&o5JUP~Z^7veKM)BRs)M_NtKIxAJ4YhxdX
ze(Lf`z-D>>N8R9QMr5h`dli@_8}(*TB-E*IQMT*F_+~()q!9b@bRO=%yaZhs*Wx4J
z8-Tgf1Q@!iP=MEqPXuKP@3m_>NyK1!roc06H#|?D7LTjKZQ&ETSPh~v_7X>%00If2
zcXWI~Oyk#tl){p%!>zDFQ+VtRXI`hgsR^hScVJg5o32Pq3c_^5q_haTE}2;_|8=qf
z79kYh(ihQ(uh~OYo2-is7WS>neokBeXe)TyOYnvtP45J+p?QMWD3%2zsPMiYZX{c{
zo7zZ}$y8$2u7Knj*819~q31c3Ub{#?HvdVI(`nLwPNQ5Yzl--Zf9*M0y2E^kpi#}b
zv6Hi8aK&mT!0ufk+(aM4DnU(k`C7!P@P%67g32%wH?h^yZIHeH*EdN>XFSFJQLAS8
zrb&n|Li02sn0L-DD8?BfvvE1;pv2E>)bV}m^Dig@Dad8;KVwPD9G?Y+ZQizmiDUH#
z1DA~1=PhnAH38QEmj8$!!3AV5y}iv-m=iE>{Z)X2{HE*)USnTd)lzQLM(r-(5lcH2
z!a{*TsXA5gJQswB7A)6!FXS%=6)Ncp%P$7V`HD3{N?(j6(#z--3BZqL(jB}M%l#8$
zHp1*umt^a+<Q97uKE8JmCnidIs_)+w{tLTAt(VnMwYjr?(w!nwnJ0QaeK4QZ1j3Rb
z%)_97;4|aGvxtzSCKqd|-69akI+^LA6j4(8`n`ku7A}<lnF$~uR?hM84S^wwWUJZJ
zBcEH(FMYYog8jESAj%3TK%5NymU(-xw{@Srkp1xa`ZH0`sY=RM6yUhZ8F}Z(J1VoI
zbuVz?$HI-<&6>-s4sm-w(=~1nm0mDzkCLst^ka*aIA@A&dp0T{-(maen_tk6#Ga9B
zi*3S3_g$>SCl_BG%DpNYx?xuO`sEXMvf8em<G6b#i7P&{kl9tpOa}QB<QkF`$OI}c
zIfq+XqKKbr-;q(G$HT|RPNL%24Psb$=<pH(DHxc=c*ZhDAnS0!*0im4xcYx<oBpcC
z906D}m21OTH73;gD~X1_%(r0~9L-e<fX@A;PMkDA?0H<H4%2u^z89|=9ISxz?}F*H
z9XtP5L{?#gD1>~XXTasJZixfgx}}3-{#e&z3KD{Bm=gQi$A)m#>vbFi5JC2tUKwAS
zkG{U71Vkkq<i?sQ)vxCTZ<0GobT7z0o0}-Q395~v`z`6Q=+z|Hc1s5L%>L4YdB&MF
zw^^a+J7$cppA+BLbnSx;Aw%8z5GalUtYwvlAEm40*6XIqyt^;y%LfDTbYo-))^qiq
zO|p;BKz(bVeOBCwV={pRyi%*Kfo&o;Bybae9Kk@|Bb-8wkwOj3YwCXUxR}n7gksY(
z1f$Q-pu&SqMm>r}Ls#2WmdZ|Hxg(wN!|%0$d{(GGDE*C*_nJ`@3Fs-*<k%e72<pS3
z`p)X9DAe)O>_Bw2M~_q!9aa;ARvOE=@6Ka^$8Labw|dZ{m0S)|5ht}46kPA*OElO`
zA`qzP-6Cs-9z3fMc+{_fdZSCoN%sP&`<f&@=e*Yr!C`4PADC2q0{z&7eaG{psO4L!
z<(%#4H~*7Ea-n|_q+1FZn%^48t28Zz_W^(>$^*#lO+d_AKYqecZfu}xpkI2XpVu0%
zT_S&}9%OelSF2O5LxQ1Y4NS42w|<DVfdfxp?F$jr%MGW=H&&r+cwX^<I7u|9uQ`RG
z@~zV>{AYEkn8~%F7`}r#C7!zH=5a3!hF(1%95FDR)zkZtXeQyv{fL{+n`u0io82f^
z-w}@g!srqTi7D|P0G8_y3_O2zHTJm8Am)}?_LQoG;sXPXLW`A9)BZJjvYwzSYwUM2
zke<~IJmQ(VC4bjoM3>K!M|wp2xy9Y^5gzJDX}xCeEz_@%QJ!BHR97vAqTsS#pd<gs
z31b#|W5YFT2B!Nj<DaXfG>qWRB)+rbHVZ?4KM+;4r71aDy>xs8GK98G^;ZtXNku%A
zAt@KaM}Pz!*bxbpmTW*oFBsFtr(W{<0+WUWk=rbppBpr7>EgEIqLgtUD#w60s-*?s
z#_{>|YmfPjh*Eirki!=Vw6V2u?%^1I*YQ8rHsPIGZ&TtL_erR~V;1kVeL{ehj0w5N
zcN+z)1w)KeP@|W}Eqswm$BS$+2#Y~F3Bc~l$wNpcWM-1yTPR0A54WQ}pQJWN05GUH
zf;3GEpF7K=_7#wqT4O65iHS>^lvrljhH#$q2A)4mBb?<>f2$=*wbf2L_v0W*t*TL7
zL37$P&ic#n?`G4pym$ZR#?ScIAxryRbKl17PM};tR%ugZYIG^-yRN0SP1&L@y%SX+
zOXOcG7qW$n?;yK{eJtE;aG%|;%Kjn)98wDae}OT4t@*FfaKW#1$EMX~sDaS(^8g63
z-Tu{8Q0j-AaL5pzLUT8V-n<C%_lAZB#DwwEZ@rN9o|lr#w7+9O<?a{Z!jdJWANd84
zRo2y2^9)0jt&io}jb(f%t2~HOLRiD7r1;17XXA#V9;9JVQzWnWn=K<I!|?RCCl7|<
zJ+kAMtH5ktXqgb5iz-v#+G?S!n(W$^;$?sF$gz}SYJbf%WDnA`Wo5-i{!@Ry`ZW3B
zAN0#V0R23}I)$v*7c-ZyO;Vx8QgdwVhW1aP3ciAGZ1bvLxv(mBajppwCY?TPx7U$Y
z&P$S#HJi*Mzr=H9j^eL^t7NDzT^qd{Km6D)<IVhV5n2fzoA5Wyqc0WfrKXL3W{|z1
zc@}o}AtcF&*HyE%!(ty&qce1AZ>4TIZg}a?Jz+VeEJgh$HHK4(XI&lIS+1g>g<r<r
z4kwhNV8;OK)QMr1r>d%>P<T`FxXBP~b$!l$%;KMT@?hG+Z^T$lUT+iB?N)guZ~uGU
zhWW3Vc}WbnUtQ#u+=Tv{NGrOUOnE9BgKcPrV->sT!<YG%Fu(6h`<9rIF$3W`N|O<s
zIAtKnN}(b%QJ~dJ$A+)BXq<o9F?`bbJ7@*f|D#Kn127CSEtr#~oWj~iaic69NMpI&
zL69A~H`@ItUS%nf^MGNNxtFF0PiG+@e<@@ZKFfL=!wPa|*T`~TLZ#bL7k3I=o&F{>
z_)^q=50AIhy*pwJA*c4?*$KJO!8O#05)isczlD1GLaS9)AazB0r6(d|0+n`b7vaH#
zkE--}C~SBXujc`US-TES`|hWx2acBYvVAaKnInU~Ut6@>^qeEFh(9q6Ny<djX0md{
zEgZ26Y$RMLa~CaJuts_A?8+HG@d7R{|7!7kPEET@0^48o`~_bd3}&_JbN`u^fYwM*
zx#@keyjhS&F)|qj@XV({vRyyrIg;|EwRzdfl;6^M&zo9^LSx)_96DZz*w(VM=l6OE
z13VX4WtRE;v*fSZ=Li9PB;51--RRyU+(E5e#fiBF){D9fru0v^TOT*KV%ClPRh$_Q
zn=9Qp-a?}loy4BYBc7}4>n;8%CnGaQ6X7gp`5I*0z#R<0;NRG!WgcS^lW#3df1YyL
z#rx_I7woTOOZ-fnbM?Ivw)xGADp}Z9u<v_*+;gX!jmXcPUg52R$hebV@GuShM;B8t
zEq>i7+h+5M;Iqr5)CtSlk7^+w&s2O&m-LM?ep_`N&7XY*UUvBs##iupz6$c=Mbc%5
z-Mc)?epVh-8E@NmuB&*GVAB)V#((@zHSlS)Wq<wx7XY87Yi{(oV;%Nx!%qB*vN!*^
zK|8)zH@mfc@H4+&d-W>o-4-9{Go!3zT5+pl7uE5xJ=@iu{Q7hB&&FE(BMYZT|7{Pv
z=YJv5-pKVu0QZHbmSap&=r*?T?d^b>^Z=KcB8K&w_KGi08Wx>M0mtv32u^fl4(tRh
z3kR-XYX0LddFdn22`uq{L%pdGcu$$ip+$QW6ZrXM;Py!1mxaKcoxrdE0(Uur_Jo7>
z6@$K=`)VHnJah~Cej9jjJLo7q=;ubs_a|R}z6|;^67*NG_*dZ9zyE>&oWa1w{C_@Q
zf#-uER>9DFaiB|Ip?8Ae8N2YH;KLJj#H(Po*Fne|U)jC}a~=nOT?j^rgrJo|-eW?z
ztwMM&?Y$+2VD5zQWrPfegz!HN5quTWQ4u1v7$W>N<lcCQ2xq9MNa!hGsMz^X39C>S
zd?+p`RO-&YE+tg@Ua0JiP?@Kp@}r?5uR;~RhAJh5C?1C@i-e&#!z5MChp8n5t6GI=
z1cd=Eg=uDlX(t3}-3vSODs1;jnC@cOxwaiF03iAk0#E<|0P=ExeSitH5g2!JA}At?
zlvX({D$b>#!L6jtqpZWPc2*Q8B_$^>uc#=fNjR-V6w@`toj1l2jO7f?6^*Twj7h5I
zwwfddEs}$-oioAI(!kQ1;NVIiyBavV8@qX%QZAc&Tp{^fwebzOcs1BDFw`aF+NH1v
z_iK^fk<nM8?)XL10;sXUG4Y{siPsZTB2&_DrDxsF%#P#Xr|0B7Y-*`#ZhhMEUsqSx
z<mBY$=H}ks-p`*uPww{r9k62pE!bFIAftaR*n^~VZ>(k#RTnQ{;$zJ{5MMMQs%frR
zJi6ID)nt7afoZ$-&rAPx_!Zpf*Wbrf8a*a9E<PbKDLExIEj=SpQ#&U&Pg{>&7$=H>
z#AB3QGksy=;*!eT#^v|*#T871mCL-JnhN5cb&wxK!`g)?NwQ*wJUD3wV-$|X2PH4p
zRUj7P&HmP?z2n()>zQfa9#X3*yQrif>$~>`Y|4^sFTNcde*baw^Vjb`fBzlZNH{i1
z0H%<f;x09rQaA^6f-zq%6@W*?+Hpx?WNsK>6jX#V3drttm2Js-Sd4NeJuVR=Tf#1<
zVPL?97Pe_Gkc?#}AM;5)a1q+G2E=eFd)&f?sePId6E`bD7FE{TsIQjAs;P*=kSIA9
z-As=|87_o^Q@#G1*2f>(f>#Gh&DwT^XkeMsaP>6;vd+|{Sw(DSM<vy!6}{(cq@2a$
zvyRbF(KF-*%b7|KIH4K<$wmYTXnia#h0Dk$aZ`Xl*>Aem*(@^p5Dw(Hnip)p(teq>
z2x3!N@S@{-78oBX;5PF7*|(2l56qq>Y6hi0DbL}f5>9><sDiQa9CEnna)FlfSj!D5
z^;{s7nA(-6|Dv<@^f)rFhg!e=dyw1dVMj`3SN<Q0&cmOrw~fO|BoPtB-bC!ZXVHi~
z8?z`Hdla>2M-qF--Wq#Ul~&bio2XT-qB>Ajt43*y;zyU)`!}4=bIx<V_xHXoA$h1S
zjvxzC!EiDPX@vv8i0at$legu6HMN0t`HT<&Mzt)*f4+%aGX3ErX_<l(8!wau@4cyE
zW$GQ9hl}lPlH`7i*bc!N(fg!eTSOo@Ify5I*khj4wjMda(CLo*qUD?n#>lfKCGNNf
zBo~;tsm(?Clmu>+2Q;<%MZWuTgh8;PJqgx|!xWMxpIBq_Wv|_G4!9AjxahWF81gw#
z`0X~R7GyPzwY#7{A;l&#j57+kuSCJx$(vzJZWnE9Z_6_M;h<xbd98BJNQL_YWNa7=
z+FD!K_ObkC0yr!pGu3{(@se+UAfj5OMY_3$&w2ZfTtEC;Nc=B`7Nk(S(y(#Z61_8>
z^j3T`@&{oVix9U``W}YWRXW?Pb9th=eN)yMV3B7s$o`rYUyy$v`B=i-CskRk{Chup
zn1<y2m;}{pc8}m)#74s#%|zrgHqS-mZ#LV&o7ZA?_s39aatGtMZf!DPfJ703e^w!Y
z7!7RZIAO@J58UAM6p)RMg`m<}D`Dl($*7`^w1_K?0U3`N;(w9g>;g#Ir9&=Y5UcL*
z!I@dxOVlAo6;7TZM(ZXD2+l6pNo05sag*=?uc?QH$&`iN2S{}jMnDe;quodwLwWUg
zA&mObCD?{(><77SRQ7y;Aw}aO@2UXZq{hp(@*+7(5+7^jQ_CS33(qov!HD0t85nOt
z2RDXxBUykO{g^ZR%S-{}m!Cic>hYjw)E?IM>c8Jcqsp(`HGklIs;*LHU%Uo<Q<&2S
zzjW?JM6P6yecGz!8asUq;Qo1Sa7KXK{_ofB;~)Qi2bWtRfiF{0g-D7+?}sPHCLDA>
zw-2(B2;;)3VLS_HkHCmLd?uC6Vn0pC-8U4bE;<<Kz^aC_<|#xHqpwBk<vT(ZvFvoi
z=T@>#g0=o*p{H)wU@QnH=;to&2A{N4=9iQij8Za-ml<jBcP7$GNr2UACjsPUhmbhV
z)!>=T;5nt*r0ywItha*Y0YE!69g%ySF3t``V@>hVmE3)qEal*N&>>FJ=nq#PNy=of
zB9M3*&hWWKg>_18>Cbq!?w`xTR~~s`3MGy+(m?5+0)-S1a_C1sIlDnj()@+e_<c4*
zJfJ#^b6gpYhd?+8GfOEMVr(lUW2GWZt8`f;EI{u<1ZucK;yJpA3gJ-m1t>d%Ih|#R
zX)44eyR|V<RAcG0!5mE?lNOx>f-y&>_;QeW@|Dc#l3orBT=%qIh>M+}UTp{-w?*XA
zs&_T%y~E~#tc{JEaBs7Rz$1K6SmtTj?zpmSCxWb!i2+1TY>oH0(MksG2O2VO35$EI
zh}3#3As!}$-i#MYjClZ~3`%U>k|wZ_UxMz(0nwZ;;7ukXSm0iR#pQ`NCH-%$&Pp4G
z!^vJbp{IeQB(X+dv<$$3jfVSA6oUwR$LXeLg+H%EVKbL)b5qPq^{iLzGBBX@7j;+U
zaJlnjrFVrE4`EWfFFSTyx&uI#PV)j-d%AKbk@k0WckPNb94X0gW|4q7RuW8#K84Al
zDSY0-R+paNGHYhtlao!RL%$OQ)ha3Pi^p!havqI#asqfVC7G9l-)pJoNN60{GkugH
zw6S^8c}mkR4FC7;fPvb8MNV4!TYg+vIPN)3-xkXaBVB!e4@hNF$WkCVh#)l?^yN8D
z64;UsZFd~x0y;SUNxa49J8>D1NbZ-U9p7XwL#EVe#=5Q62X&8NpRLb^1hYB`Oi{8B
zJVl|YgFgupebmS3y5_asKiThxOqB}*N?I#Ph{<8X`O7equALmTA@-VQeH_*YrpYh7
zj+-QlK=2b8oGP^^O(1mXnU-ZTjGxOw0@e{WWtn^^L`!~8z8|cwODbAD9@To?l^g2@
z{p2wO6B*xtIWH%7Y`r}nz@u?H+ipcEcsl+TK31O#W<fQF#S1Ax5$X$uQ7`HkC@|mn
zzF&?jVzglsfN@nzup5kv2nOj$oc{%Z`k|Tie<w-OvV_^AK>)!RcA(}qjo;Ga5tZaw
z^9W#jEz(P&D+?nu2vTLFcixR=$vsa?A#9*?PM(3x)L75B<Ym!?eK0?L(04D{$*fns
z**WW7?f%v~t{>iyu`f3O;LD(iz)6hL%lE7bt1gT(@qO}99dt<3)DI($smUriWvBJN
ztqG}fQ;jL6(bbzcR`|yqAk9=kr3>-t?)hAmvs*Rr2`0g0K|8xAyk9TalbZ;+@d?A2
zZVCv1V<1~!y=$c-0vw}INka0=^AQQ)+gK60SEC=E{R)}?ot{YkQbICk!jUKfx)&IJ
zh}P?qimrdGgq3O6J-qY#>-lr(_n~O9`GoS{{`hM{YpU<{&Wd+l2^GX#h7o+21mX@@
z1|T{Kj3hffCI<?5WVC(e&i8qG3}97gyb4hA>db9Zh<a`qQ-T{2sFFMcNQ>RaCZBN-
zqZ%G0ySKy<bll1G){4hztp7dx5Qqsw1qId`6TyT`pPczJg{|M8>Fy|SQ&1oT1;eP7
zu*Yge0J38simz*qncCfxLvAN7`jU#KpSypTIZ@rXOeN(_|AtvN_m`Leh-toym4$6@
zp$IA=&3%N%LzD!*@dCme?tc1QueUh)k=K&37N98AdGFsl`I_%Lz}&RK_47>PWlh@2
zD2pX9>(*g|qTszu`ae(8!bt6mfB#^Y2iJ9fxXyJHBi@-}|K)X_RsTLa1Mm=TFMC5g
zWn$infyw6<`U@Kc91_a_<7vVkfOv+*nI?j;Zl%Hdr6AO~`iH<Q>CgP!3zR4VXRwtq
z?*f&i%HP69)qR1xaJzfhiX_FxC{U62>650Za^LslCNW?xJVAO|j7f<kp6(>YLnpHZ
zxAd2><WVMpSiTk|v1%!>n}G|)WMA2v7GeRm=^&Q#s-8~(EsY0(x0eb7Xkoz~g&g8I
zVP<+rU6-)LNQyaG8L^!7bv@9Em>OhuX{VOZ%*HH=Owu(oj$Y;D&;lE85lo%!&fWmf
zzR;LBaB%>*REkj1n^85FVS*v(%>ahim~DI`%Z=#IeX+s>-%DYD31!FJVi;p*T90z3
zjZ&65DpU0XU_M&l?0%Vb7mpM*AX9nO!3LjcQVZ_px!oTC?PvirPG?0DcxCZf_tK%0
z0kA1&PJyH>Q!3zPneeETq%4ZbADMevn_bhJyE~VwL!bF?Pq5!44wwf0Pu%=JscapI
zjKHni#&e+Ytz3{c8SFyd+hQ>@0P*920u<2m2Iwiwob`p5Hk4_jA@ceGH>59LU_O60
zj{FY*M4j6*dw}oFpnOUp<e~y|YQY6R0J$kLXf0pOrBI_h5*1&l(^sfFU#NdtxK~(+
z(JnG_DKd#aXTh>y%Zse$i)>DdaJ<Dfokeyo#ZK|X&gI45&5B*;i#<+@@w_DpBgH8c
zNT>ni%&Ak@Pa68h-%SKb{*9;qi7HJ6(1#G|{ctf}eWf?%OZ`Ea<(&+^#<2E1uEsDp
z&asR*l-Yb_9n2~|dX%K<i5RCKo=cS9VPl$A0=jY_e5mE3%jG@*X3uH<>~Ub_wAc?M
z%dPo}j?;>00|JzYgab=^*3BNfaPqNoe=Ig1c!4q}IEMnu^;yGHJNY$;>^eYn@=xg(
z_8c0@ro&#9>Ohtj0NF=GYKguop#&85(8xcZD<4w1?ozW6&!T^v&Rdsnr^MU&p(JLe
za*$RAHLgAZl-GGyrBHdF9rK!!@4Tj0Xr^%v?nR3<f!T4CCnf@&p8UOCtcSd}&*U&t
zW;FD;C+}u?Enk0aCgB>z4{U!RBp!hlvlChaqWD!rf3OPwwAH~;uk+N2_)b@Du?hh}
z3I-xodg_tFUi@<XLXAm6JzZ?BrVS1IVrLS5$WGB;+7N{x5#=}RZbRuBc9?6<m#z3H
zQgmWA%fMw{s7G7i9SJ2zEa&X>MI)4iKz~#4LQ~YT_jR^tDN{*?S;;qE&50@|wkN7-
zb%d;;)Vv7n7qBDWtSb#fer_k%cc_pEuQi`j0uh|y!?L1}<y2uUWR({7Y2bY^gd9PZ
z-d^&v3b@v_*^r_@wo|HIXFsUBV{0K=tKPPvqVOd`q1i&|8@6SKRq-r5E}PH*Hi?4L
z+7!LNwshOM?bFu~x#-rmnqL2Ee{DgKeyAe<Q$^WZyKId~B~n{wjae@;*dR$&hOAQ;
zrRK1AQPQQwpVKTfQVY0H=_2YFN~fu^uhfSWZY|}{e6E#iZ*euO!(x`R29N!|-yCOu
z@1s2t#xK^Tdf^ef#nagvCP<z0Ettkgoz|bsB{MqE<zS`@dMvWw-uep{x%r;WHkhMy
zw-<O5q#=~)2j~)6iU#QCFZC5O;1#T>68$~hj}NCT2#19n$8^cLeHXv)-E~gtHtzJj
zLVuZ?h=C7d2tDmPGG=Vam2aEut*$-dD>9UeVtpUxkR7M}_5tSXMG#ZfJ5I8M!w$xC
z%9|;aQRzL!6zYg^KQ#VTo?$U;Wa!v|Yk)^p8af#%xO5u_el=#}H+glLSYQW@7sVj=
zOhOM8ev?e2qf8^ku=563%OQ|6qxhYjhjkbFI~npShGnbNKs80S-goVDV!&2+EgBXc
zKly0^#yMZ2I9&C$wnN>q9kJvuHgrQfygo|!<S+mw4ah4ge=)j@*lTRdvQ=Y!Vnprd
zaJ)pNUAhV8*$R;LKC$tYx<r`6s(DIDkuRmMvHwkeU<SZF#(*w)-*EsxW9$OMi*bl|
zd~6U~wh><(DKMxE^gi9L;mSE<paK;SP%GBr*)V&$GjR5-(qg>H8ErY>HK3MiksmtJ
z{^UwXJ=V2}vo+UTKOA&<{#ehX*gzbIkRnUcqkvm%uH55P%}3h3j9O|m=iGORtx7eI
z_b%tDq=LDhmT^XNHP*{_JD;;n_2eL2O<*v_$PYPkG@fQ*)P(wT{_?0bqx#YR8Ns&~
zW9P3(HF;6h-GmqX#`$O$)oB-G83P_a?31<L8g()zxC^#F`jp~vHFH=Dp#_9kk?7qc
zc7ZY&z;kv*UJUy)-%-TOxXdWB+C*Q?GvyZ66`G2NLxG4U9m94wQo@gm^DzkTSu!YD
zRt4rS@%?m-b=+@cTkYY}QRDt)e;Y?{&#ISa{c^=vUY|xMA6$x$8FC<W(WesN3;a6L
zvGJ^tvo@`EjQY`6dl)_B<j+sD9TV_nErSRD1hS^c8kT@pvcYxlxw+l}3QYoAQNAP-
zaPr2BB*>*Ne{{1YFnL^og-(HXDA1yR@U?dE^@Axk$%j6!en)Yjzis@r11}Muru8ze
z^^abADuEfM3%w-X+?)_>0Ev9r)VO^djOGX#FZG=sWc?r!d@K9S4<~*>`G?ym0P8a6
zznMGk=!lDl;X%GbhSPV|G{FGVZaVHM9^x#2dzh)%ohNNzBt1_ynorRy(t46sail0<
zDlYlWMRqeHLI9$7Q+Ryt9kbwjuaGNedjHuPXhwbTjxuYGveJyk(L05@M_;CwbS)(g
zR|?}LV|=(F2hA}^pM?4k=qOEx*x0tn>S%aj+^yzYTb7eG#R*)U3HQ=Ic$%6f>Vfk}
z5bT$-^~dk`(lmoYZmEE7jWriMS-3sZov8aK(FZocqkKaiccW1+QR^Y-Rq0!Ez)i@p
zgct>1jOK3<bbP`Dd?w%2*gBW>_!jS*YwXjDlQ|CmaYJc2iNBi9C99w2n9LtYC&Q%D
zL&i9rP6&=$gscE!0*N>>NEAFFwh(4ar_=4Wu##KJvgw`*TF)PNrI+eVuF$0<U`Y)V
zL?IZdCdD|`cx>rrD8qN=TXBtN#?yBbc2W{Rsa~)t2)zQ6{?iaMg|P9b?(KK@|ADMc
zzzH9vRHRmgda6&KB>n!xt10eRkZ$IKTjhi~s?~hbs#)8mJI6K^AaI$D#LTv>SC$7^
z%jjoO%Q?y)0J`~^R>td}$CWSE$WB(sMik`ubml-Maw0G}J?T+j%Vf=J*6;oC`r`a$
zn`6VNV=Z`T<EvrG5i0Lou9TBMAtkbDgc^A;n&<me;7n^HRA`Iz&o0b^g`tnkbV?3X
z%9je?LTr<TChfT9H>30O^YypNYPRzowvJHe0k)4UKSV*AyT+rS_SO}pKnc~>?e?Xw
z4@b5;gmxb2?`Sdabl=)J>#f;=2JiGQ?L7Ur!#A-*)!!ZV*u5&fJ6f|l@pSiGvwWko
zB$!y@NGZ`Jmewl)ukL}Tzq3TSz+wU=lwR(x>VJO%D660{H0#r6&U2+@z;zyde*pS&
z2~+Xo6SJ*S+}&lY=N_Xts-iF>rP!SB6=vJ1zFdkP5s=H!!V5BkRQwZyFyGm$>)vZ)
zU?JFi=ee^VkE*mVt33LMWW2|AbWnMHWq{3~>A-_?!9`K_88o7?a$M#B_?=D3U@x9f
zrJ2ue4^|Yq#bZQ_kl$xh7J<00R98kM&cs(AR36TnAI2P3KThKcs@-?EdXz-2`SqO}
z__Zb(cqbZ28!b9G`*m4>YJKcU_~A=E>LApXbxjkgcRn27si$$!^|J=w;k}_(+p%26
zkokeW0s{Z_pJLO0XrI~_o=53-PGUU;i^!KPkahnl*KK&B3U1eFRMgoAp)OhoD}EIh
z85WtsTd4oaWO^fbYLGViFfjJdf%+$QDZW#Q3Ul6W^zVNS)Z;c83$R&&=-P!~7Ypb`
zbPnmr?Kr;4VnC+b3hFuW!8B1bsO@B0_;1PZNg=X%!JxTb1~6059H+BFM9Z*cOJ$y8
z(hFL1cEA=XE#s?I+3<f^r!Dg$ayxed53kZIPRS%*l)4gTZ<=fq0tGAQ5zNHYGGCa;
zymt_RWb=%3p2=FbwXPbzi?Vh=*F_bmF~VfC#G!i6>Xl#4Ka{~%7@m0G(*u`{a3?2V
zhX4KmCb3=!W?>OgaY<=ec|~PabxrLHdKV20jZMuhtuNWyJ6?9VVtqZr%hx{=Y|$hz
zg{!H<Im6SLQ4&ok)M9dmLH4IQp}C0yEiWsJR7W@FbUrUE0>L8>6XKop(oZ+>aFAd|
zJ1vOq*A?>AcyG;q_$cY@(G6+w-emSrMJrCz45VHdW`~2Yg9O|U4}IW^OhH+dIxs7p
z9JY+dvnk6MC}yIov`jVX(UL&~q<0MgDl?$2Wq1rAi%}Vru0D;c8x~MSS;6q$WLz3I
z%UNOAA<WK49Ih-h=xJa3#>w*X!-|zrnxo4@|CuJofs&9bkFT$c7GEgskaF%0sP%ly
zgkse|WD1b&ukZ0on|#)#`ui<h0><^i_m)>{g@=<T#I;KmMu(N1*5z&F61+DrDBsFe
z`rB7uo&slIVpXo}Ne^He%L!YV&-N+|S70{)lF}LEQwu04CQ~JpG(R{j>Gi!=^xS>m
zV2rhqUj`S-VeHl)(4L*S7<3!0K<x#r7ch4QR1c0sm`Q!zOu|(j|2X++4(jXxGRRF+
z=~%6Bv~zsyG|ln*kYx#)2Pu-uO|g`Gf_4g%)A^lA31#`rlQmY)bACNcLBqn%4Dt+B
zWW62|yp-y}+}PjN0Ji!zWd_b&%8ZGCJNtbzRS7eL7vlCxZMAe(0YqtZ90%htXZlYH
zB;>1By`sJc4;Id_DwTu);!q+CpdNNSABWHz=1eseHAOZ~6CFCs7d=IC<7Vd@V33x~
zIYM$Ypzu82%`z)67f%{6!(j_iD^v8!lMb`i+TY&JUNT^MR}2$x7tf$`P|eJcaE5$S
z6WrvTc^df3OV!Xz<!!F!s~bhiBA;HJQ1Z>Z1SipW*(26@bn?h|lxSfbQ^9##mNqZe
zW>q&Q)+REl%3473Nn&-t*Xk=<U-)UoJ$Y(AU^IitPiJw$Q$4;(IG>@|$V*!>>S5x_
zcu3hXilS$Mc#mEt-nRxNdl=_9uVzSh%&lfAzb<356Th*RjB-?}CFYx_{@3;HHP!pW
zl3z~kd!BK0od}mRLA!uw?Qiionhyjm2yxMm@kblQiB#8$XVEs%4SMz4hI}f(Jf@^u
zhF?^%cv=c#o^d4~Vi(|<#E=~b6qJ^*i|yjl<)BPHD_Fivka0aivvCZ$8(r(L-s5AV
zb3m1`=sp#D|HTZzEs)Eq@NRB@OeD|k;Dz-4KWw@C38G-MDV~V*iUPYkWd-=o_@U4D
zjFXs}7S}vO{2e9{Y))!!W5Fp_So7C@_w`%@%AvRNQUyHE>O*7<!0=(XoAFwTnffyY
z2JY83v0bW{D6XA%jO2z=n0vx8H|Y5)C`Xz`0adV#P0{63Gn;_g6;+Nayam5jO79>!
z!QG2zXF#6w#txZq?VMaCK~)EGP$4U%(TZ1uG;U)YtX_8JrPl_4-FiquH%l;(XSq;-
z28?a1O#^Ei<{^cC1U~alH{1}v-`3bp^2Zx2X-tDGSgAfnIO5Qs2fW?I8R>$U@=k$z
z5)<$qEQVwR)!@+-_&SZyeG8u;uXlRhYfUp6AA7zLYy7+16WCms%(+4s)oke^ghZ|J
zuke^^3vCe|BAsjnlz?CMpb&*=Dv$>c<mMSZgWPJzFi2==8loc@k%T&WHEi-5-jyi&
zFayTDR1mAt22$7)2xjgiD*Taw%Kd*4y_0lXcL*>#{TiB0tftqpgXJUA8J#IWm@@_9
z(2y@}+d47CKuMt`ia1yy=~QepO2|GIBI;q|+^pVU<a91N%3s(dm<m8l=OXX<H;o`E
zrCbDzpwZR{kArHlgC&Vw*p|S3!eqYFy&?RX3eIwV17_cAzNlBv!$!_woqi+v5(+1h
zu%tU@;4R(?<BX)Io^_{IO9ILjwmG3i^@4gvf|BPzNHr120GdkgF%7n_0Ww-E5$VWA
zk4w1>wC`0+iLG&}(lr3Uf@c5&v!J+iXcUo;v|ky@r}T#NoIo3G=wj`neuowFz)u+i
z93;2BmFE2EGA1`<>PD7o(Wt#G-w3tJ!VrHAUgAC$Ap}(rNc7zR_rQUg0G>`64zPuF
zPFoPe5Nyg+H`pTR3G%SWn^i;Wo$}v+Ax1C1)Zqu+ZRDI`ubuZj&_TRjVc9Of{zoUl
z_@eGc^>2Z;mCEE%k}(s-L2pP4svot_CS|rxf8)P&IyHpLvDXL){^80(9SLw>Z#b-;
zn&z1>{HSD3UYM)1+Xfa48MXc{RC4#qx(9gR<0Ejiw`KY+)UdBr{YU&vrN<FE;87DA
z2lR1HPV)3}32OaumY~@+|HLD>MSf4=7Ek~WWGSOY1pXj87?PNr33M{#0*UWgB{1$d
zHl)&rIK9R)4yEED!Q;I&1A*0?;vg(N2>>&je$3<?%f_d*<l-i`YR&_=!O7T|9bV-v
z_@iuyeq%q6DBvT)Qa)~Ml9iWJ<s+_G{=z!uL2mvZAL&cw6OKIx#b?~Ua@WgWx*s2u
z(h%J8Y2~kcHGY=QRBfncmvgeiuDerNLE3kwCjF)XdM;mc4ihlMW)$F1XJpfKv5&LL
z;b$#t^%mr`7bs*_tz}1p>WYp7M0pHUqQwGLvr&)zsFOk(7!KP~!t=;-K%CazhHWwp
z!65~NW6!2_U`2rEiJeN;!)OqOy$;x~Z`fjL9b|r(@PUj!649F6AqQiw7NUB18z}6?
zmns+D-Fiu!?*y@InLy60LAJ+$P%R}YABz_{WkRsnMsj5~Oo;}U6Z~O!2fJ9%NoFY6
z{_G@B8K8_J(%Ye)$Z#dI#qj`Zc>tGJzKN_@6W$N3g>1*08myErYYG=Uq4z@gLlj^y
zMfvpW#mp$BlRd{TY-<iKleM@^m|mrduaL|yUEiqI(H#Bo&48;Jzv7p#E&hr-8~XjD
zGK<&{k1&@pc>r~(|6$I!NIt2VzkBlrSw}h96u?||gN6IE;pm5P4bfeNulBc}16?Uv
zXT|rczl8`ZzkFhx?xd0e*!xS>ggO2fxqQ?5bJ=G@*xtUn0Sc508*H1w8N)n$Ryoud
zfPZeKW~)+B-!!m`Y^PAV=_e{I&aUB8gz7W_!uOcXL{7myKNcQ&yo~K1)@;;CNOH<&
z*{!?x+#3!Ji|~*)dUoQj<D^%YNOwuR-cbRcd-|^T#}sKMfi=vs^M33xxs4c3eyX|o
z&HvexOx~xaaz%C?VPmcQ1?HbxpdU&E0gcKhST+fq@PF5~>&&U;A8&oRTGxXw?<v&1
zn`>-g^0hGPb<!5l@Pyi>u)ds$F-M@v1v<3Ievxks&MF9Jnah7%Q-WZ4#ddh#(pmkZ
zB|L+(@1F(&yq(fWNM{@bAa1Q%!A+RJSx9C&tF}-UR~S&a_M|i2BK<4l$s}M%5jv`f
z0^=Iv3@;P_o^q`GqjcO|Ca@x}|8D7ovwWk50>K;p+++gq2F+i|i#J#rQBFi>cfguz
z`8sIg`orgFSZ3!}|4`7gLr>I_!GBPCqumw64q5mQ5VatWj`6L=qI^h(7qH7fkhCNp
zE~8zfXh{5fCIMpSEesnn8lNr!qk{k7Zoj6=nt_aPSaIhe@dki|4@p7?CK*MNgl|id
zyreQ$5oE0NUKmRinz`>Q(ls5)#CnoEcJhkA8CxeQki?j{!u{)P5Ae&gxM<TdXq=(e
zmwRjoes7<z`5RTIlL5PIxh%m0UsDC#gPOPa3ec(eq^j67%&kugm}O`-P;MXW#q1iY
z$I-FeTAhvZzWj#@IUf(mHEcIvbcImo0=0OyJeVtGyO)Lv1Piei2oz#2V}0OavKKLT
z|50bO*Nt`b8+5=57Zw^WJQdaLPSFkS+P4|1uG)Zldh>kxAxvkdaq?Wl^$lWg5?mw-
ziHPtxACTW#<yWjz+TB<4P<ra)rPr`8F<>LqwJ%-!;3c^otB`!ngj%g*#GufYnB8c!
zNM*4bj&)uC-RZ}CF~H2EMK&>6jI?fEH;n3j&9rA+&~uhv=Y{W0H}%s^i+vgr(E9-R
zDdWFac-#JOyFwyXs|2gJO^7!>)(h*_tHVZHV(AWSmtdaUinC^`4{%1$ZH2_`YM@}F
zS*!&{?L)n?wWNBdiuwl9tZW1>N0`;hf|VTnw@kIGQ_+l$eA$g~gnK)Fg<?X#`<O7s
zhD|uVmA;%1#uD`NDf+9wLR&I96?`Mv)x!MUpDxfn8^|#wTgB+31}LzmP-}`}4e!j{
z*kK)QbbBq%ylYW4L2y?)pR2ryQc3pM9jV+S?!XK}!=}aW{(wHTXNwE-UAH&61=0%n
z8sJCor9oM<z`zeF8t&uK8)2HtYKDc`llr4+MrWx$CZj$bqd_H+jPIwS(AWHeBp%?w
zUUNqNy4HbzF3CTiMP!=zwRi?G6D5ymU!4y=?gCgAm!BqVsO|b!d%f+2ZC)Gl3!Z37
zSSm~(4%JT@_gPO3{R#~{0bEy^Wm77I#T8+ay6BrZ4D>jR42uj3mrc~~D}`+smq&!Z
zH8tGswu#N2lu|+++pQ^BL`~#JF{c%vWuu);#jkFvnYG5gDY*4DocV=<Von;e$-(9r
z1-aF2t3wBVbDcSm{vSpxOe4f5w!x@NLTnRikpWBWZnpk+kT~RjW1@NgO|vC&A34Fn
z27ilqu<5YS5c%}AEwQDBvW(07&XCc%d2%*pQylFQ-u{FwfFbQQ*H5AyF5T$G8!bBZ
z=5$Pw!-EW5lZcsl%A0eW@4mBHz3WG7=iXER1|YMCVXgb-KpC?8T^OVAJXy-e?UKaL
zjRRG$wXCmiVEtQZOAJ+YhgR9?n&cK((UxO}nRsn_Yj0-G>RZ^tky<Ci<&-f%vOELZ
zv3gR3HU)GwEBXZNXQ%@+Z4O_VNH-QCdiAy72XkBkd;DaZo_rq%9R%bBOymK~$*{nD
zHiq+pPQK8KlH7*{3etrd+t&l2MMm361nJ@`+wX1+#$GQ1t_7Nfo0rDDD3wzzFWCmV
z0U&4s@a<Q-ZaT=gMA}w{$0?o<bmpYq<W%;G5WxE)ttJg<mjMyNQeYF#vY8sT4V6zB
z9J$$<Cbp||I=XgStC#W6Q%p@K3tT>^yCyYwk}Kp2#vx=cn~S?TcgCMCken+~8q-=z
zSp}oa^Q>ZJ^reeTTD_9Q@%7*9pqiB?Fa6>l#~MODn#e#cf~*(r7okVm{owz6;P<A*
zv}Tm9%o{bwO*9iS<wi&?R@5({(ybNvR?2Ma$$0!Mv27LZA;;3rmI6dg!{MgD%|H)D
zbtSTz4AlItb5ML11@KleapnF4Hz%z{i@)oc9gC`t`xf_4+HSv)=?tC0PNm(&X2sOw
zZwBVDJv~Gm$aJvH!7|Tc8%IA3O~j(@C)&zl`8zKs${r##?miR~Ar-FGxy{A;#-(aQ
zUgQ!+cu<2q*ZhQOJtXnX&aB7j!;hVSz0APFVbX}keYOUw$Tc;1j8+aGDjU!`sCK_k
zW~Hxx_CF0`|0;4o0hncPkToXXlYQ>;&C2G6et0mKS)P=-qLr(fGPw?V`b$nv-g8Js
zg4=>{LDSlD&Foo_{F7f<X<tsrtn=Yp&I)Y7G`?M$ib0;_=#VajvFap4ePZZWGF7ep
z3j1lHfwmWyi-L{Zh{I-<h{&i~6F?ULv0G(wh_4UG9txE!3OOxN_bUpIFOBajy*V!z
zby}JdUzX8VCVwVUmZM!>9ABQnTV8%zUaMX4Wv;xjuj1Zm#dcAJY3*w+vDX_`YaJ=m
zb3>KhA@*Qv&VPuA*X79JcuoXU<%)KVBymPS9*kn*RJ&Ix&oqmE%wKk2Ugp~yH8y6O
z5U`#6A@&<3qvM^&y{danB*t9G+*}qe1fBtyGr6~)kaIiczYnB)-qN%kF8XvspZSxY
zNVse5MZ<;lzDD;1md+4~o=FH?mF?>{L@3|Fn|lVSg^NzmU1yPI&*u86<)wp3pO{Rx
z*-*0K%BtM@XHbXd8wxQbq#8ET;*I%?0<NM%SNBj5EsS>1E^DvrlAJ-qXF!X~L>q>(
z=5rs}a<<Z9+Oh7@-|?;g3GM`dS75uv%=}BoAvLn$<?8*w^p<=u{6ty?W`eJJz;W^o
zk>A14uby1dVT-)rDoosz^W?UmE2edS?f%{{1-K`k*YILn5=J=xc5Eqt9wv!=lUwNU
z{a99A?C{KjJ%@UTK>dii@B{q=0r+umhOmd2I?8q4cNXK(E!Vxf_4r)~qA3}W&d-#6
zp_j<t7n%4YW}vg24m5b}NNWAc4tsd^g+9-`en+iSt@Yz&04U=AmH50Yy__Q<gA=(G
zOopf5w<~>SkAQD4FqHi0tEZwUQ%nttecV5osFfs{*d9T*@&Uyb>~&Zcj?QJ|&%}Mx
ziZcLiUa@iMzU}&yu~Nb1#V!yp{_Izt+u8N!<#~ygftOdO7`N^t0viA73!q=Ah{)-7
z^nOGzFLUYM_^?!Ondvw*gSRl7W}qyC?=Hh1;2CdCLoRy9&f=L`_>!K7vtajBe!pt^
z%Y!~H;vQHWD=mb4x->!iflUuH%i9~#j%3(p7_$_(dCLJV{O5HoFJm~cJC4R!ypK*5
z5haUEk96`Lcly3XBId~ai%J5z1KRTY%#H_(%zvHbx_E)4nP;?_ZIziWASy_ey?k|X
zkB)(hA~Fi&psQ2YM~lf^0a&aeOv1%ovHUj55`J|OR!KbW%GF-^Qs_o5ac=HAXC$P<
zU*wG$@SHNq1JF4~0HH<ZYfX88x{{guoPljq&%$_>-K#0#*vLPbOY!`#U{jM%${vL)
z_IKe|jFl7&(Y5j~{kP($l%Z&E6&b^&a@9p)l|lYWqnFXMIH>Tf@@Lk1WgAfyDGsf+
z1@s(vYM1_EiMLkfn%1Ip>WeDT=6X@?=Q^EqQZJ@1Q0cy+0ODzXHP*PTO{$8$*if7Q
zC4O_i67)vmH|2}}1FgLf$wWJVZjGv8&!>!t<&W#yD%0pMZmQWvtERFpQ%|<j;$@ys
z$y~OVjb2yWtX6ntm+Fvg%v>~_U!$0{Y{GT)H8RaJ$!8~L8PhDXqw2GA@9b8~xfPzA
zrL^LE=^V@dHm#L4(h5<gJYQ*j3#6jxs&biP(@`bnaZ`z<u_>>NZasoRM+dQ^N)LX>
z5`x%eQ}?x1`K$`ntnIb_J-yugbob`gr3fdD;)2hNzWZs6n$`b~68kjmAy(CJku=rL
zt|Q-2<5Z~vfs;?#A+bVdhk5*J+Vpoc3wpje-suA_S%w<K{ow80e0lY$_;qGay~##W
zs#N&EQpgs&2f1)_=ZnX2<W;^!*q+vgGY{*!D328-NYWGY<pYMj)tW=C?QJ)#B@!*-
zfMwu@fw7*us=91et!u0t-q`v#(vO0kcs*Q@f4uXT^n6vhFIc~R_UoDYz_(k^*CI~k
z{hzHx&dgf0sHlVCDgp+>7&Bh9h2F50Quwd{f^|3y5kK77>Fk%HYs<xu)2rmm<-@CQ
zqTa!ruaYr{4~p<$HnxE~F5N<BFiYFCTF3`C3^(wIS-?{|dxH_>$!_uu-N9BEOgE3R
z0Gx0!m$5rtX@tV)Jd9-Sa$xKoe*1B($g8%@jrVIr<Fdc6VK%)XVt8*^992lSl3R7&
zw9TU!)E_YAi$iK5{*)MC(yHP_x_+chomFdu_{$Q7t3%n+krI;?8js$-D3r8Fzai@E
zP`+%IiMxz*H3)(pln~fNG=c*tBjzG_QGK|`43<&Z$?*J~`xba*Ae(WGLN7SKa=pWg
zKsW@Cqb)9^cyK$W+mha7<vJxO@UO03>5ceeL(y6db5H8~sRIjK#y?21VxRV4^?YDa
zZ|sKtR~?-^(tqB8(mIp_cX>tE6D$}KedK0%0zSf(ebz%cI1{gfSQKt(?XQmJiC*fs
zaavNP^TUd)(Li7%e#>UVdyRLDC)<;o9AyZlNcx_E?w?hG|2bYpxK;JMIco6+e*3hb
zo~ONi@nBa7-s$1E80}vKpg)1U2@O+cHN=BDQDgvrH(8MFhd?dJ1>0@NgHC072P6ph
zZkT%Yy&GGJck$^&vzut|FDvlafk-JJo;n~qc=}8VY*3>v;m!%3+bYR5<-rZz0;O;9
zX6(474a-J`aHjxet4{7Dh|soB9E?#9AbIxL(#GYlYRj7{u05D<s=PkLP#8J&1>?oQ
zrKJRf1L~GZQ2O%~Bu2~rWq*h`QY)`Eop~PsmQMfx{et9E&No+glSnX5yeCxxDbPuT
zI|X_f(6P7g4PA8Lp)wiphyA3~lP!K_GRg%2h!A;)0O=-)fQeRQQ7(5=vm8O@>y^x)
zuom}w*u9{3Y`WGE7-5AU%FH2mPD(NkaXyF5jE1cTAKiRF1R{`Pa4lhGM`qxlD}YEZ
zOVv!qt<_bCvwxFwF$OA*M}i+ODV)gyRG|9HAULZM#(=SssY{8yrUxGcsT@D4evY)X
zQs(^W7p(ZS@#xf_lH`$mw_|WA4%?9MKyJ9}MQ;B`8uA7|Bt!73XE+De&>*VHRJ6ML
zjiu_R?%D8Hrvevb=L$(d;2V2bJvp%!MLp%RWop*dG`-=P|Nck-y8iK!K`=oAlGKx7
zGed2`Ul3!FX2J<RhXYk3FX`1(hg@0^HJUI-Na5#>KZZ}~wa5Kqz{l!Itm_?r@miBQ
zSvGW@j#X*1rkpTZF^PmDZW?zr6TxndEO3@?%JjhM@NZ7Kak*PmxR`)#f}S|w9(vh9
zi?ws_ZhdG>CL-X%pEhjo88d`VoaZTqYnoqQk8|MV_X~RiK2M@a>4p@oHPc|q(P|Zo
zr}mOE$KaoBTeUq9%-!L0Lgw4EAAukN6p%51N{3dGu$^TP=L-|v;k*vh^BMv_Ban=4
z;$>a50MmGpTzHQsaCQL2uF?Wwb^<0F1_5O104+akX^9$<6mFbW3Z#1)aoLqdm$o+~
zJ+5?1&jC>$Fb5G0rKQ^8F<=O4NF2J4vHl~%5i>U|W3-P^wnA|aY>g<Al(RkDmTfZa
z2|O@!n8mr^{A$Fg8XTYFRb~DUM;_6x84i`li3t7P8oLNmA(O1wdH2Jr?vn9zT+0Nw
zYnZNl_rCa9x`UXgpte~_!+l8Xpco%tKFKsfrKnCoT-q{lLWbjjd7OBj@L_V85M7LX
z>3NpU+Y`;h2SwME06tNzskl>>vLOKp<*d_ghXq>MgqwtF<@PIotZD_#s7a_HaPpd$
zYURSBgyujwTTp^()vAD`_RGN6ktJ+ZTW*pUK5oB`9a61Pw{6zl37kq?RlV~oSyInY
zg(wRj1Bmbhz=TdONd!>v9)|#dPZ&Z+?N5s7E}#y96-ZqWtG$YRuYcj|Ox|j;O<Q{v
zeU%r{t*KTJZk!7=Q38eV!lDknhhS=ErmPqTW|?#rhy{T}lBfe$W@CRjq3WSwROz;r
zvrOD0f<vQIIGy-1W}lB>FJ<-!e9m4eXs?)^5LX9VLS!ATf=R5nBZSO163%Lw$PPxr
zosO)nAk(vVgjhh<zC-Rros?>wqc*oa8L<#oO_~KV_y$<on?LJPSdTYE2$cfodI`Q~
z1AJ&HM{_Pz6^2KYG^Ktc`MsnP=7`sr36o|Bvt=SjFCYL+;gc#?Ceg#iAtF4*eGinb
zaJz^+9+2lQu)|bvwcs6_@0kXz^@2*V+^R3F%fjOM2YnEaAEN=4J;wp5JJCJTfdg|^
zDa*u#Iw^?2oV}vUj_ce+Nl#b6w`<<NFS{zRKDtsC8rh1Q{jpujz_wg`d?s*hneKC8
zMY-Xm<fCO$vCs<5@^?GuKSn4+r3eI#w79*}xp3B7_s|CLopVW*l+{J$yxb+nZX%!r
z3Zqcz&G(Cx)IgkaYZhzol+v=^d!~fMxzyNoT?jT=v*mDsm39>+FA_YZV2~#`3=!TG
zRWJ2L0<NGBDhW4AVYy5kV_=LVUqE>C=6Q8{Nk3%FXT*V@Yrp=~(1aUGB)fjw$`)24
zoX5HVy`S?_Hxz18VE7rq^F;Ec(qZM;Ls4l#vk3?Z1cWj{7*&@?xKyZg5n4i+|H|3c
z46<rPZW2tNE|0Y*V8$L80_=o!ZgKtH`_Tpfa{FN47)sILx*=x|MG0$npHtN{SiqDd
zzy;{7zUuhG8_5oaL`YN;s9UjQ7yLqM&Tfwo(1{@!DOS82=u~So`1CwREq@mC{L#}Y
z_iHkXIv-5qVn6xiT$ORCWIPQW@A_6xv%2K@*^$^;#TdF5Z1<3Lwr4)(Q4{D@05#Gj
zvv>Iq=fJP^x*G~g6JS>yi(BGght=K)Yx{$-fkzn76-wvLT~A8ILCCc>-Yj4pJtFh-
zn$a=<sAr)BOdvNlAuxRtts#C?bwaFiTrV<a>E|8EdfV8KCqXX_nmC;Sc-QF|PUM@9
zBA)I$e|jEHrt?!Kd4?`nA$tKH)42NBPrHsqiE@89Ir7fdp3{k#M(81uBNKh3UBx=V
z4gp0`iApy=IL1JO!z2&flRp_d`H#Gn1Z>E53Nn^!9@}{?Y5Ev@{sf&E)w6{Dnq_3K
znxiw=Z;|7KQV0-vT>v;41PaBc9`}stbqY`Wz9=U=EQuv5@UesRZ?867Mx7$t4?vt&
z%ja0F>oPT)zkg*fpUx;&x5+etIKng>Kr=THp?Usc%UY`@)_FI(6>omMIPknaQ<}kq
z8bn`4IO(-~_8CFFMb~|<LInW-xIIm_qzfQ8ec^!ZCCzyn&<_GE8f^@GfOP*%sSPHa
zH~?f}?0Q`0V%6M&dTH-&2?MNhi-86mU0`j&pK)~4nK}~pMeaQK1fz4iLnPlh^&Eu`
zd#Ic<`&&%@e!BYaFCBOguz#MKbn}B`P#n$_IujSr5<>xa8Njvt1X9(uawW|d<=iX$
zUwqz{y2($92XDoST84uPD^+rOs;!$YRm<o@SoM+A$5^~uMpSNR9Dy;|RZv0L2?l75
zgKA}$-T))xtTOz0uz{%OaeC7N8iIU|xndflqHZIouaL#lskK^YI59~L{6b8Bh<>g#
zugGk;7{gfg?h22Hh}JSEneeF($;g2od_s`zPiNR#tpO)1y!Kk4Q2!0ju%#2^-~!m*
zbLK5ICWQhUMao;yfEZDB3U$eob|!S}X(O`w$Q;=3LNq*dS{MN!>gr@XAidqI5M~4I
zj#UzQH3<pkvLI3o2(Y;|z0fiVo97A=Neb{`@qUPWE#-QZrvYDs^b9+lS`|5)@aY~k
z(4mgQNKAB5#1EAmMIczS0tWti>U7ehN&qH@&qch1QEgN|R1)0U$E#H!-5G6`*?>%6
z!aX5;8^%~}ycVTUPYA<0Mj*H|%z(TAHye|6CBoIb)jBY6GZY)LaUTJMnSF^VCOE+B
zz2v^+v{V0WeG*&D(*F*k-^FLX@^R`XyQt8hWa`hZGJubmcvu7N&y>Z#tWswK>t9It
z`QYy#lY*QLu4DWxn6okKj~Kpg#O5DKH`OD^n(BQ1Z?RrPbrE-T6)#YxnUlmh$b@kL
zAO8eD;iFliTgp`_!3Bqu@h-ReMbF!2UcF{xd3fMYR$$`r`jo?+@sRqP!|TiO!h`R|
zzV$YQmXO_<fp7~NbdiTKuF86dQ5#|G#zxaYf>RwxQ8%b?B}@$4Fqq=PIZSuA9gyow
zi}sTo(89*XcygvRXM?X+GZ0~F<yJu}x^BMVF>}S~%?TU+9AdOou<^Aa3HEh~%=9Wv
z6JSIeA)>9i`Ohe@4D+9L`a{QNB)K`Jrdis~{~FdGCFAGkN84!JG*$v$*IDCO9`!$0
zz~$PW@j0=x?-7LoSYtIn4vfzBsM3vZd?DGK@OCKoAH>N46jFgjoK#$2l{g-0Fo7As
z$GsfoIKws?!h~qjMN(XDh8n?!nsMoC;nD$W!bMvA$>YyIz-+ASX!=$}U<>t@2e5qU
zTr{_3&>lFZYp7;Lm(1HdH0=NJsI=liYt_HNSOjNYC@HVa&;6Yg2hSF(TdPJ`l4jXz
ztw^%_;7UMt>*jJ&=Ja@Mh2f3m+KtIg-3ZTT#svVWz(1$l{%u=r587svn^aGX*50L#
zk3ft!w$^uBT#QB>@F}6r8>|74%jET!Ky-*)U|~-s5z`v^bUnSzrA7#dH<~MfN}gRi
z!DUQ0G9DKA;8K0JD*UWy4BeRR5f)#ER8cwes*cfKtbs=Z6R^{!*oIiTuqo7e_sLTi
ze>|~6Xo`?(No3nZn%%|kn!utekz^Aet<)Zq)V_qfLwu0uaKfV)ue6D~Tm-3BuDiD<
zHcQ`m-6aK&4>43XvPL_nc^~46=eC9zFri<!<hSS(0O^G8sze?XSA*Zn5})+e>LHYD
zrr5-Ti0zwdpC;eS-nJp9hLsO+m=tNeK<d6g-net+ZLzJBK^B1dcm4}6myiN*_Is1c
zWZXECK_Gw8EH_SS?!9kZwE10Y+$%fcv$pm+XuI%<e_9!u+}#AQk|*|~&ccpDHrt10
z?Y5e8>4gn;yh4);ra6iacV|q1W#n4UDu%{Z+?UMYji69ITw(QcM$KNv9Y7`pIZ-EO
zQLDyS52Lk<foocsI+lij=Pb-%i{={^E$fJa@X6MO37kPzH-^xzYq8@6mF|7jaX8WC
z1pKPQ_+4#tx&;0ME7iu#)K8h|?`C{tBK_j+%O{JwPu~iaM0t1F(x{lS-3ltW<^C^)
z;+g4t4YfahJ-9xQ!)S2BeT?tbn9-|YsSYoPv_GMAg}^=ZuGLh!@y+q?_rX~-#PtR+
z;%8e&CcwHMuNcYeGO9)$?W86Vu0PBEaVx6x<U8m|S@w*Km793SS=z4;_txPD1>f@K
zH@JGQkASBU*S|BZg>hp_ww#&RiY~Qcc;~5k1q@w3%bM0ZH{`XL7sn^p?1+ExHu2xA
zKOcTEOJH7sy<QQ^-JOONLXBA&L$s~J^&Iv`bf$LP7I)v~{)}jSN4)f7n%_-|dH=>9
zm)Iru1e+U&mjtgGTv%6TOmG`akowQ;(%HmY;WK*l%W%ELsiJpdY=$;dT(9@Q`x|oi
zf*X~;g^eBgOl7?a2lIY8nC=4a=L(K=0d~9K-X1Mahqx4NAR!+A-uiPj9I(DU;N1*U
z*oiP}^rWlhV5d!UbbsL_PqUUyL!)u}KAYyc`P_(yMGBGJ;QTWn%9hQYmARJ2tnRB;
zH>|2^p#BWV**9I}Nv?1qYBB=U>)+n3<<N*FUN9uG<vg@fd&uQ%%M`+j{C1%K^C8Ee
zOxPeR`#394QBV~}H}KsIh0h)%Ov5A<3Drhkv^+G*qg|vM6O*?S-Cp1jIIN6{0{RwU
zx!FxFzcG1MC|Ry%eD}~Il4wkqCjaD(##Ne}Jd^cpR>g33tF;1eAiL%7!%L+^OS&T*
zd$cY8kv_wbt?ZGVYP9`zd%FwK4wgp__Uh6G(T?8HPS=i{xThT>k1i)gJ7+~l#HsU}
z6-B@}40s*J0^XV+i>}%NO;`)v#%PAhOzvYW#_?1*i2lsulEIZJAR_k&pY%va9b=wC
zIH1v7<xMT0H~^H7Wy>B;_HtMWHjZS{>@$kFw~EcKY0P)gz8pDve0w+1MX(j5`A5bC
zsyZU0kGb7Et~_yc%QtWe;arQMeHj_`8OvJ?#>9F6J;f^lY%$@H>OQBFK7AP9K!ZR7
zVq_9m0K4gHQfUA$TJjgrFUcT!rus4MYM5tfbTzmv<U?X{oqfUmdl`(ODY3CvY1bRo
zZv5Pgy$&oBF``vn<}ag08hn5?M8#Ysro1yzT4lV-7)cPM5gq};_+yhaACZbb5Y?Qy
zba^=(PG;73L$Chl`<O<4S0?x&sUcpgz&MKMhVxlzhI9IlQbsXf9buQ3@jpw5TBj3Q
zY{NWhinRg_1g;w1+{;9QJzoHl&;@0x9C=u&9anHcz53JENUwr;89$qmwmA7?eNGzj
zc4eJ=eEkvmPVMOJhi;Ag^NoM6ctCJ;b00_2D~s<eaQRdUugZ08FH|yqG->Z^d9t9e
zr(QwVi>!KJHh#*r=bHaU`!cw{_GM*^K*F_T?mIuf1<D2K8e$;6@xAI5-JZ6Emu)IU
zUljhnGAo|}?oG!DxR&xih%xFdxSL=rS;a1D{#;&g*nCmv^{=8s!P@}>V=IE=Gd-qp
zJ{3&vdJT&cjpHLvszh%tId?76IV`0KdgzJOoIQgiA`pq(an;w2mu@#l#%}hxNxQFV
zS9@SSr7Ha%b6L`{TDsxyo}kED)!dqR^;7@#!{8UcbA1wZKL_-!J@4C0b!A(EPLBie
zdGC8MAEFk=w%zZ)T>q&2%T_HhkO$CiI<Wa-5s4gTt(wUn_d{uvZsjkvCH=wO^*DVb
zG)t@5tu^^pEc~PK&v(5(rhiL2(5v5C3ID8D_Zc{tVtih7rTw-R9{3nwMbkaLDZ*%V
z|Fc~!fDK<;l#1j7{F}dVZ1DLv@GnO<ic8n?-4#80i;zq$y|<S@zjz71POoYKC~vOT
z7R;w|DB$UW{<310HLm{U^!aP@;bvB!9`yL*+58oe+23X?D$>Y>2jcP=2{{sCW6<jg
zkl`Qg@`&_j#lMsNHCn?SjOKrjd7mi2M%r3FjY?+o@CA)$JvB<2<$G@k>#cn_B65BM
z5rc0DmZXYoi3pdtSLX?!;9g!g+ua1D&+%+4c5@e82Uk3H^3Shh|4j5&>-F9jt9{qE
z{Zyy3F?yhSrl_M5lO+0`fEH&?*{fXD>0Hz1!X93c=Nw+uwDG=3KKr;i`s;_Ojt=GG
zLES~Wt@yDuaeLRcyY%0#Cz7NtBGZ$HGBEh`J`9&_un$LBLyNOTkjgDL=$3?pimMl5
zOT<q(*9$4Ne$8iC180r!L5xsF=lrkVINSgI(O#NY*T~Aj%_lhOMsjvhRYQCC;P9)r
zi|f0Gf51$fg5vV(;!j@Ky8BKNy#f--Ee%hv0F#2!rFGtZ(YrDCcP%}TfUST8647D%
zVXuDgSk8Ww4JStZ{>!+;h5K#qayt9ZP-I>-&hSS3zmC*?jf(%#bk=cAxPP=?!ZvF3
z=+WKXqf@%19Np6KRn%>CcSw#-DM1ksM~5gOA_D3t1ylq?Y<Ky+?!Es%|2}m-?{ki6
z+e2%;-<mFF{1HMf@)p^>|9$_ozj?p=T^%@Q1D-AjtnX1Xdfwz_LYtxs^n`&}Txbh3
zMKf8Vd?5<iv&IroT3@yZVLc!^R7KqDYc4KpVeQ_YLV6~(!kuFIXsVPNy+mVJ1o1GX
z%&JNw=R9WUy5T+Thpj1GWx~dA8bQ~Qb&jybeqB6E0qiEl{Mdac_Ve4RO6M=0qqqM4
zgVKsSb~yc7-LqgcINj;JInQ&0)^eTKo9_Pe3iM1myGqWgzLzFwvxY&Qppv-|rogg%
z$CRX4=!#hx7*xr#8LKy<jlXABdD|D8lKCQArxTm+egrZd&oJ4*xv7512$iss(&ti=
zku`$0R>o?nC++9CB-`wb{17;ukC#`?-TDjp@p<matB3FN;&dKd1M%(Qm{=yLn-=`H
zJDG&fKGGuoL0m-Tr&$#DDwl}~VR>{;5p~IGTR*cI^e!SK8If2TDI->A-(Dm3YsvD)
z903qNxp61;z2qJTxjG=<opUR|Wd?(ZuHg`e2-VY3N){e0rj?F|vQ;Ds8OB0RKhL2M
z35F_S`CEb(f`$oors1w94EpYDrgbTFA~*nnt!HEjCiW<F62Mw>b20_a+7ZpD{WB){
zit2Xpi#)Z?22+$$)0j~<dQowFQ5Wn8fl47cVjdewRU=;*VEjUr?AU2mX$7DO{SUM!
zPgpXcDyC8?FNnp3^X8q{lRT$~ii8<HyrrOxg1R=CVZDpH(a_L1J<B+#rRjldNcWVA
zTiEBmQ)6c;xK}@;i;IwAc(H33Qm(FbK~ywHj6a!9h1gcW%tJ$G#8i5y@J4&>Z*bm?
zg+IHHu53AQSwvPe(Bjt5u)Sn9Z^uR;wG1T=Fb_ZSF!au3zM7Di+A-1Po5buo!(N~%
zH}0LS{N9C;v0gf1$JBik_1-w*c>+5jVU1(o(OPD=g`$(HPa6+OkAGV(_><L3unz4S
z>^^-3!i~4b2q_Yd!;++#Otc#F!xoJ-!v<dY4~IQ8IJ}sK`^(n@*i~44xQe|S==(;6
zzc#<=d>e~vGMx-Wny20IBBdy?pRT}g?|x3@H2u72PHMB5FoJd!Jui!#;n8zv1QE0#
zA}cLAd*^yucVa7yEJm%qQmLourz8nFzbT-l&Aatd*WI}>-rt6A^2fT53K5bUmIjJn
z($)s>i$KNy92R3Rb98k70{{Jd_KGs6$+PBk{||DTUgnKeZ(T%OJ~SpJ`Nvv;?!U0V
z-#<LLL!nTUd3TJ<SMsNT%tZYp8#0KF8wX^I0M59RNQh!`)cral^a%w2?mqxXiIKbL
zZ7hJjA7d|u)Pr(+0mSvl04^K7QJ2e}ElVs^*2V6|&Rz=L<e?G+86B=O%gKJp)FOK@
zG_E8@@FyF3otR9f%lHO{2ve^pInpg(Qv<G@9!4RhG03FYw4?BQ_ovYi)Qsu0Zuu$0
zf9n{w$7s#J?jJND`2wu>(z_Tjq*UtPNoQ=A1TE2oFWybCYU7|A16qV#w@gL{oaJdb
zMaI0~N`7xF2c)tjL8K`Bb?_@VeO8qnpbSP2g2Le0mZTUHLdRI7gDRmaCwNAwQpSQ-
z!{RDZ5^S=G(Pb9IK7Miwhu-8fPf{|(L?NHM?{R?Dt^_;1sCYFgvNe(-NYjax7e_Mz
zbxuH23lT`>o?<xn33ZHwakUK*<Rc-3L$>dFP?-W@8UO+^@r;lWh@thtf)r79N^~dw
zv`)mwdV|~6h^i$m6Y`k&6ae}*@*tUW5&*Bm@*Vuh<zz{^q-}|+jFt!b&fi;<Z1pON
zLX%N0!Sr_+F^z1}hl>6IGjkC!jeKt=AQG;iOfx%1(VcQj(N#O+`hsTJzj+tgH(<4{
zEUo31o)rC#C3NCZQSHAN2w2Cgj$5X_o!0|s`b6=0lz?wNvh~17+0ZJhE1Cfq8=zNN
zvfxhiW0Em~U>W$=L)q4P(u_jA+tf+pYE8hKzro=A)F;lNASnAEz~tzG_&cFA85*$=
zPH}(S41N9m;>U)87Ihnf#c@p3m<`a$Bz(IQ&==GR2{8h?nInn7`;QU+%ER|JuRAdo
zUV#KMjsf1BIWZ0R`3uBI;ts8xdtXgmj~f_%^F*$cRY3yhe}N?|Ue&h@(Ugt9vW#O-
zh#B5)s$`sXTgN>B3>-~`-~Kjy?O*fkuv%dOr)dw6CISPM#vTZ+R6c-yf5jXThL62Z
z5yyhKP-CxYjS)<ru=Mfk6MR&?g8w=YoO%F=kQ{y_QxZ<6B@-r1e=15#QaG+aO-aan
zqVXB=;r+fo^NZ*7;cYEn0ruCkCdN^PB~|Na+1GQ{sZqsET7DAF|1n>A5LG%b;wKaT
z`sp<tsnRhme}%Hw3jxN_71sRz$`4;Z3r~%%+Sl?^+4KV~`xOB7dp;oL&Y#~|!tpc6
z<B{b5ka*8Z>K!)(=(0#9^E#yd&~9Gcd1Iw)`W)S}1z?zb3X=SnjDko@gR`-a+T!L`
z3bxb`17FR=#tNv|fLveQn9zfc!PKyU)~)C(|3iL%Wy4^_nDKnCF~r&n0EJO)gK;75
zqBG>mN4Iwauggwi1-<E(ZeIuJ<m2Lesc*cqEZf}r@HVPw>Js@)H-_&01K(rj|FU0-
zNm$9`HvIJXX#05VWzqTtzhw`|o_%Bk6i8t4#=aZ!<w9KfAM)Fiq6e5PXpJ0yi$dFt
zR+Q`}p%TWf+&amTY~B@&><#+O<B&zb889Rm&gF>%;9{qn2h;yOkNvlY{>bXZnVL*v
z{J6HRL;BsK>!aVE)dP*XXM5S}sPW^qh|OYIl{B^Gsb@!oLYO7w?teEFpXhvLN%mkA
zNBy3wjfyr@OJoG{d3M0$<V=V>pJ;=Cb#bHdqu;eB^`0+0{=PI>&PYLz{7+!N@c*GB
zbo(?TkJSVQ_?l^e2Dz7O)$k7|B=b~ZCz3|yw@JNs6a{%K6G@>y&v50v<l3SW%-xEw
zxNkou9$MA?@eu!V(XaoU!`0ak?gZF+P_E5*sz~@Ki~my(9|aCuGjIRY{-tY5inu%X
z_dUZ{;wbBzFYl=D{OIP|!;W~C_om|!fp%$dp6tKbz`ZNr7NG}2ST5%ED@<BFT&)ro
zoGyK`_+VhhER}Jg?rnqCDDx^52A+c_+>pcdBIqC%V%`D;Mhy@~fY8hl6mF(VNCzWN
zikJdh&TatkeY$DGxz4UYnsSMD^U_^Koj9`ORhQ8sd)8Qr-WWVW6O7UQ=0k^YAj#lz
zPJZzMVT`c0v6iP`Pv$40$>U<~l_Fe7WI8JgK%WW&WFr-UPXsm7nJZ4l7XWy<EihFA
zpu?vO->1qO1AMxaqW|K)qKgK_jYjG}AZs}eoDK*-)8h9MQgWD3nw`*Qk&tD=t<d1v
z(S<BaJU4IFUE#p%YvBysnM7eg-pB_p>-x96gqTpkjc5RK!bAo-SHtGPiad_(^2kO5
zVupmemjSNPDo7H6eW8&(LHRfuHac#2r3&J?FgE66<eY5eIzKKwS!A|4VeShwT*&4=
zsuZeH_hbQhB(RIGPKWIo_XjC}W|L4bJU6AVxW2bWZGAGs)C5@0?cGDCDkglHQzw$C
zXG}Csd)+#Hz#de=tsIC{C8gY9&QVw~X(6WGai<ot0f|HqR8WMpb1D|{ld)il;-58Y
z<zSClQ?Dh$ixZH0YZ6l+-u)&YECHxMGJ3U6dR!0Lv!4|XBy=U=(zprHdZUs=kYqkV
zia7WTT`Mm)lSIqqPBOiOVKgB*!VZx8htth5^DWto@<}PE9zE9{D8=TkXRB%4IlDIz
z?kh)Vh{&V{a<I&mB`}v5&OW?t$QT(>3zoyvxC#APuGoTSwWMdxxge4v`svVkt;t%S
zo9XF99xoC?WDJ@^hUG;d?o!g*3l20mL+5<QEd=&b9*<B580fU4XgbL70e#DkPnjJ-
zPY1<_eQH_#au!XNkU`x1tK?_vTUi>KxQT>DU2#)PadSh6iSQ|W0oe^X&3-Ax<_AJ%
z@0#3E@1`}Ilt^c?j+_jDv%Kdnscx<Pc_aB?Hs{S!n?`W)r$J)uLGHT+(9c1JUvdmz
zxGLv-lc9Ksmv8lJn6>)}=0Az&+QjF%WF*5~;~lBd27SiYEK5LP8>?1D!KDK1VS!f=
z4$Z;jowa!9(EJ@YxAa^|X#b2KJO}fr=$01Kz7pH(BqrvFq!LSf$;e__(PINLt64;n
zk7BWEMv*!{M~wubm10{|QqE$a!HW40a^)%{gw}31WZ49_=s30<i)5pc&ityu_ANtC
zvTeF2sT4G@B005Us%9g^!X9M{i9W2j_vx8%Z%aZx`wcv#XPYZ6GN<`#<=%PfP-5dE
zo=FCoq@=zapvO3*3E_@S#v(^lkLJv6S-waSKDKfmnct0x1ag8oYyV5W%VBrn4$-Z4
zNKIcfyi%@ovSN^L4<y^idBc^VhHIh2|IM#BIKFg%j{NB38Zl#^HRpRGuiI6ntMIbq
z)7|8YpyyNnrC3BI4>(wzA6BkN=KPqqw-$DaM+1)Gm4eAb+G+(G2E6OQYJI<A16Ha7
zMw-o~>K^rmV#-$1J2N@Y{@TwCmI3=*fw2%z+FD(*6EMF<&k(NMTJ?lugcV!cX3Je_
znEZ2W=?>;zG!Jir+sh=Qb$Ob;7g|IJL6j;A4J#zl4iVuimxFaq^bwI?fpBA`#73iz
z#kG#@Mja}uoTI&tOXGnE0l-TTn1c&2)WesTnuJ^hnvw|C0vH=3Tbj13o`u|(EfP*q
zO$@?7wK?!8K}2X$Kze*_Tngk;*rZ)SEqWq&%Lo#g0@Am$_6=^nXE<ta-sBi8Y=&IP
z>=0_-ho?UlCJ<i>_PzG})dc-zUZ^Z$&y(y|nA~)Wl)1N=4BaAqR)~Ee5n)dKAd@K|
zqy<mulWa0=na*jMDi_Ur+>*G_a(nz$CZiaEX~x?OlcF)0?M<8Bx2QyHEjY_v(FCzY
z;OkADUTAn^A((m#w|pwoGH>8<k25QV#0wSLIR9Fy9kg}~c_73k$cl`6`$pquuM~?h
zK8l+hS`*u!wOcUm(Fz`e`fna_woQlKefI6qw@=U~g^>4ez+Y2Z?y+or^Sf5FDZ&&j
zWn<7~I4GMGoBY&HM3oNtoRe;`f@a?p0&1Pm1&}>aWWXcYHGzBJx7UpFrL9|~sjSk?
zBktKpbnX8t2jzCYj~e%J0s1v0A1P#92yZi`_DOp%{`dv{q}1L2N9Q7{TdYI&xAHb8
z<-xX+!8U7M4@k2|xA=KjvfSq9UfQqQTq-+)@B6qt8M!Qa>GH{jxZbd;Ua=SQLJxK%
zbrglCcckC%$Xs}f+`PvBdq-YmS3za>@A8hK)2_1rt_pp&Qrxau>8^V7t`%-qV|rI>
zZC5*$pvjh^+rXy1tElV7U{=Y9iG%2W#0tv!_T!Zv1uFghZ_g-j&;GzrXL`@_ZNC)_
z-dYptNaJg7FwpsVOK$lc3((KR#={ghtegKJ=<5g-8J7TGwT;je1gLnusPSg@o-uvk
zH>_d?Q+2LU2?jsJb|t&{4;cmGuKNsE>-npp9$Gg0>o}>V1go+qsG1TV8XUaWqhN8j
zhD#G^J~#&Xv5N<oUd9MVzsP5Pl=L*4Wp)yUePuuBmtHiemjmB(e44E}k(UIyyDJ&5
zGS~w;@U?n$Xpy{t0hUGMw|pRY-sFl9d_dRxtn0fql72^^A)Q0lx|@{^Usvs?OJn1b
zqi<slp?qvVpvuJUD-oK?BM&>jZck?{n3xZn_GtFmAF9kBu5AOd=+lx__MHodZ9I~z
zj|aiC!$#8wEymuYESr<<^%ym+nfpi6_9HQ{$C(q4*Lt-U8XlLTc)!+l39LQK{CHHK
zn%=^X>-m@4D+7iRrDPkW!1*Efb#UWuA&&l-`*Da>d+pm^kM(Ru&BW+qC{>R)e&^=l
z4odMlVy&J7f3*47bat5E9VmZt4RhwMItt1DG}dvXgbvN^)u|xqya0b%kSXj+IePWp
z`|Rn~*zd7#znQ-ef0nzN?RM|U@29!}<+DbECM*5`;MQxbGU<)+C4R*82VDHOk``Du
zFVw?(C?d+<Q$uxvK?_~qT??B!c%p0LL0$C%=1vRv<4%*zM{5{*gSVz-`FM(ajN~3;
z`cuf`p!W?5W8Vvi=rW0ETBRA$Gek|_84KS$89RJ`9F80p3qs1Sg9Q!E8G}3{)UDR1
zPh^_)H3!Fi_w<v0jw^H?$wMZV*(Tx2cohe{-H36d<%rhF9_?RUeM;!G&ZjSnniEP6
zR_6VarIDxV*^xDaJy0AIl=DnrCf`O0XX_j3zh%JHlEKUne&=_Hkgp;Bze(>xL*6^n
z7TkDCC48(e1d)!P$*qe98rcd>rKTs@JBWd8ro0oU;N#G%jZ=C(Q!|Ol^h-uYYHl3d
z$=7JVV$VN0UY&BPipEaq`z(z!P^e_mj1l`_<f--AKXB;6iDlkrxqrD4+%xN^^onXT
z6deP*vZbFlXHe-g|FMW%`uVqSrzILX8Y9=#syT7}%uc$58xCo<A^D#1w1-h&T<)Z7
z^*crp%>+oV@$Nzn`>;FQ^G?@h%VTDJbsNA~{M8TeZ;q>3lvUcC&{Kf}Qvt|aFUm|A
z%~fPL$2GH9lTusr;JnP&^sePacgKlXIYD9&RC7LCOZyF#95>2ue#(T?uzAKoSv16&
zUkUgjSUT@Qth_fkKiods38@nLdAZ=}7xYu-?~B$Y)C`Xk-cV)rB$xXSR@IUCO5)Ss
zVhZvpOn1f>k`kT{X5XD8K3$1HwDv3zu!sOncxvF!jC>f^U(0M$%Pd#R(g^rHy3)$g
zc)=#in(uQ@eKVU)6U4|1RXrIUfGe?s6?EsB@nZk=qG|4<uem&oc_p@y8h`Vm>B=U=
zam(;!;_fr}lq1<NfAK*?vaal7qw8uO1Bacd;8QaJO2M%NEb538Ih7{$xhl6v;rUK^
zl@YFR5(_+V!1GNn0%DOL7mBtIu(Kbm$S<8vl38lc=}*KKPsJEah%CBk-{Zrrm%bQ*
z@)oHxkVDqCg0qWshxrV5BZRYW1bzGS(BwAh%?gASC(Oe}{r3~~-zB$LcA9FYH_{f_
zMCQ}COa;#D$iGRVVb5u_ldrawe3PR{z%o%rESv+#W9qJX=VV6d<$$BBq8`fu8^v0$
znMHl?pm7*iKA<3#{IrO<zlBh`v5yU2csd{9Qr9X;ML*-d(Z}JZP<G8|!0qX63;Uo)
z>RmeMr;7^8?cOVLrscwN`pv>;JN`%?MpmW<iV^Y!ReYODpZBZ7pKwkI4RhDv8<`dD
zL-QL)zYtuKnig&$H?t}`ZWg`x_`9-!tx#>;TeWvDbz$!!zjKN)8tpj8@5t2GyNpCA
zh(o<Nl+UD%R+u=ShrS=t@#HNjjH-Sd7Qerp%6I5Z++Rs`zZ>nhk#dHdcvm73Z8ON&
zYV@{Jr`D?fggqE#ENhf2q&^O5#4*!19ki{G@0QWqa;ha90=6O7YYig`lL8!`XVB_?
zUac3+U@OE>xD_stHGquZ{N?jzVfSV+-KVW$b&?%x_uPkX{6(mAuJ`&rt<e6R$u5Uw
zRtXd**FR^Chs-BGZFzspm9*4oo8@%{M@d2{8F?^D0K70IwC?Ah8oTb!$A3IWh<thv
zXnYc;WX~junbHz>X6p|5Q~pIXITo6jzWu;!WnTV-39#&nQKPG+f69+F%?gxmDoL~y
z>6@q#>*i<|YrClsv_Mp_iMLlqL{!;_e|Re`F$@3;BTQ^_2mdR6RNR=~kn=Db&$@KW
z#5OUYy%dTw35)+)%L%MEx>U+|)3F4E%q%vEexq*9b#%mu0HwFYjYolq|DUgY4=3xV
zu@)n1*+uHbroc#-4?swYkz!8VUw8zLMw*DfglrSN0W?yW2ojY9&X}HtP3h8?E4vz)
z2GkD)R3f<^!5XrUDUV15Dx}MjKFz)T!3MbYzXVTOK}!+|B4X3BRS`C7RwTrQA^}QF
zr-?#ER{9x!VXimED_FwK(Ul_ZH{i|Xwp#xmo>h%4Y=AR|4vBl8ng)p0+=%N>GZkP&
zHbapKJp>;+v?2&{Mc;XvRdB<WMB_2S?}=FPva@L{a=IZdwgW6bYQLv2S(k>+RC`{3
zE%ojuT;3ZN#-c}mb+6zT&+iRm;*TRM!zZ_0kCTqNo?ah59;FE%Ijd)?OCEFS(MO3V
zn3JewadnLx%!!OiaQb3-ITV#eK^@A)NN@KV{{NA-<CWs`%cKJ6$6iSRx;?H5#6!vu
zV=fAdUW-66@G%L}V2McXDK?)@`5>X09@$9E@0~pAin>c6Pl2M)J~rv3(>|V*;HLzd
z)J9APo8Y8YbcFH9oKo@kR@!MFj#3NUk~|R;qr<B__JDD;=GNua7buTkkS|8dM83MU
z^K8!HkbP=><Y)%)D*onYW^$C=i3%ce@m}>4Ksc2mB<@A$6cwfBRu3DGByH5~>;J=T
z8)02kM*&ru;UBx6(BJ&jw`ld7>zldh74W0GW0<#ofzLE0#X|o8HHh3~O#xduz=$*r
zS|^cXs!R_9h5`Z~b5b2#PdzhMdWQfG-#q)nwe^HB$g-JtXXMLok1z9yl9Zk=X1|D4
zc{FEP!+b_RgXOSK#16t)&UX2l_mCLi+I2i_C=tvD8-q>n#D!e70b=c`n6uxryrp>x
z_3>$?o32k{s$xInb{_AE>4cIk>S(UPCQ$PcsmMmO9LkWMDU<}_w$Y>c!-ilY2&ZX&
z+GYsiH{{frjgmGcGF{uwW&xaLICR#tcBfBCHBWht1|lIC42an`>2|{s$%k|{C70XF
z=D#YCL`z~)t!GG%>TKZol0KtVx|I54sez9Io5dia@{^?+`M0NLWO$<rvO^mM`QUS=
z=61OmpQeOlGv+LVql&6NHHwDV&S4XyiW{Yx#H};t9lYg>+e0Z$lGor*UFM@ov0hEi
zBA3812O2U$3q(d<rK0;J!9M(HpJjLlsIfr+6x(|%X!Bd%BW9GYb~Y<_o6)$bkihFb
z01mIn6fcecIqt_QR|aZO>0go4g8u4@uUU}UIPjyY6a?=jIzS|qiAmy_-(erIVjF?N
zVy$`>I4k8)G7+k54OYX^S>LJ$3IsNbvdu5~jBeM|p!76N%6jRf&@3ozu`9V)0-JYq
zlT=unMFVMGvXcZ(x51mgv{_Q!Tcx8F!yA^(4%L{iHn?Y4av0k5sP@`Oa+iSY%r3dw
z^9fqWY?<*hWG>@gGf?Cp*!gRTjpAji;J#Fd7bU-dfaK0lt;OP&SiYzBmJU=oI~v%3
z#;mHM!BBMIOE8B2)gv}zkQe8n1w+>Q<g`L@9W#-|V4D#8&!F#~;*scCJL}WYOp&|Z
z5(ewcDYXa^*UhhnKE~KIro>fxaU1viHND(QV?)R+u7k@pgc=k<>WLcc;Fhy+%tYeE
zYe=8D=$AmOtM<JMVO`NY9Ol01PBeBytU#F`Krjj$|7svP?oo%w_kmQvohAv00GZ)T
z#u>1?+XeU-Ty~8SJ@Q787mOR!Znw*0x+hNpli69<%*Mdku#`Jroyv}aT1ILlzj*BX
zQ^N)U{3kj3m+~B0Yn6&cY8@3j5J7=t#qGFUKj`5hC}>dYHV^sDe!TS*jsJ*F8vFc`
zkg<=XpVx_>(K<fmGdQGW=wN80*y(vG0aOmqSN-}G+#UrAsk0CIfTRHv$sOEI;-=#a
zK(D$PS6pk%pZPiIfBbW)$#TPwF&zaqh``c95Eyk`qQWr=);|5VNSPcaFL!q44Is#(
z&uO?4aWjou4h181?QA`cV)~!@Q73Ve^NC4<>%mf+?c2~28E_^|)B$|!CBX1F+Dl7A
z0mq+e9-aYod)S$x8a>2Z=+d1Rp7YUtBELi!(Er<p9PmFN^+Xfb36M@6M{#kWO;ytQ
z0IuSO6A&HN0h-|ALL?>7nd$90q_YXv$li(tQK#b^r>bPAFm4)xNYzIlFNDNx#32j-
zTbiSj&*JU^(8bfBg3G!?pc_Bci{kNu6(a(p770KvH#Sg0bQhvoRizqK1z+l|&Tx`A
zr&w#cUOtscQaxDqhd+z!QomKJ**y_tFPj(=OeJc?BFT{aRQH}vmd}Xc0^*`)`_*wI
zAK<OBe(Ea~DO@5A`I&O~&x7lYA6qSM9WnU|1BL3Wx;^;SZUl-nQog4@HWlThg;Q5(
zkqQ4&-)vs@r1j3tKZD)3QvQOmRBMk&w$ws{!rq^8AFtH_L|LFNR@J1)y<p)%Vc{(6
zY3gQ9sDvYsGS^=6p)&R>K`Q+Zvk*yfoZkA4JdOl1H45W(L4Id^aTU@Tt{pZYd}F0!
z&c@>zl4oe1dzJ=scDVOzW6mqSfg6}?s^YP-Nq>_)d-VMJAmU{$!{37^&r6Nb3NRC!
z0oHRNVfg;&dTk<)$s`rzvk)m+x9(iKqz;nt!?4<I@_JJ%S!9`f?br7lDEIyAU?HUH
zkAG&Y!OY-vZ;3e^DBnlW5lJVu#Oa{V?8wSh`2jA0y`ho9QcHA8(GxyoQWeKWt;@4A
zqZtIn7%B_!XBV_+BEi%VBoUZM{e#01cgv4>>kF2(OrM{PY}@oAzITmE6!qT+ebAJ^
zEu%n6vPn96RTQ(=!;$!2j*zARGL8o!<yDxtW|3SD3LgFuca{aT;XuTf?_!_UZrfr&
z?*Q(8ODU&BP*j;8gs3N^43Z#$97S+5j7)P8w|kwS4ouu7NG`q}&_a=@g<Mb^2^vL)
zRjk41MfoI&?u{7l8uF#R+x8~xx+6JRW;ew(BK7VI3E>DxLT_rYO@<$U)wDIUV>WYO
z(x}vzN;HBQkAbBiu`gKZ-PBSXXFYAwkout5ekz6%B+{=OC7<tgU5sO2z%WaW9x6gR
z@x$MtA^R6K4%7n>UjlK-0rfGE=`j@nJ;uB1H&q@;LK+mN#i#?()XwPWMht~|wFy)p
zmXST{3J}F`Mn&a$vGluS(P3fFU^!>KaX*c-!;yJ!43h87=3l<+yNJoI#<c9Mw4L{9
z-#Jr_xX_&w=~zoM>zZ!Y47$FYr9XA1vfRd9KPg!54X>e2i6YawwL&>h85#*`p$04>
zUMz1#p)yDl86dL)@R~|*F3VNKt{M}&7oun#Zkmz6R8sU)EXg=X*<8=P_B+c7npMlo
zx$S%YHF&8PoWHvq9CpeUSzr~zcuk*;CsZ6Te88^4gi5mYdVxp%h=gU=MINihpHlPP
zNzJ2P;=G8=mNqNwu7|$GVV@~-zwj#BF26)UphrO15`QYwI(%)LqWWjM6kN|U$QV&>
zTn>t|w={zj;f3YR()+elg>&4-jA5Vlc_q9!@?7{h31x2?EBr}(ct%8x8C(Kd<!x3q
zHD^~>oWx$pFZF_-k4Zq#PJlB)fQz~M#cKgs0Wn3Uvd1Wt@3^22NJw8_$hc4R){4;S
z8r%*9bm#**MO9yo3SL<ed!#2Uwv@xQ1RCy>-aVAg@TNMNt2zEzDvtrZ5rhBIlL>}#
z)q|+=uHr0l64FG8&c3o90m<_^hNcwBp&crR74_hJqANhWP+z>%n<;WkygI57<X<5z
zASFDMKPyl--&gi*r|LBU=Aj^+%LH8$kmR;Q{eCS?l&92Bc-Q+QWg3w6{ymM76@Jt3
zCff~j`EQDU1k@7+yy5n8e4J3%Avt`5f^0*9s<$G0k-X_Ec<opDBNpj4CxzG&1&Ij-
zuOnWUXcdyZDwZhewl6QT<YKX17%4%OUeF?c0vc^oTCr8}!l@X6a~X!Ta=xm?_^2in
z)y2M6jbm+~{VJKVt6&oa#R{rO1?Qpt)&4;c*@}uqoa&X#a=X};a>4M*B#^rVAo!>y
zbV#eELZ{Iuv7V^mhwRMw)o2&oIdf#T>a6{4RWob1vjeH^DyRMVg?0u>>*}`d#;z)O
z55Y&k<luDcN%w+#0CTN~v#<EOWAcaXT|G!j*Xl2-XGc`8e`&&%y8KVNHu^vyM}*a0
z_bj3ZXmKg1p!tgR1RM}%d+wq!Ij#NreZoDAlD)D<JyiOJT6+euZDNDdhIDS`wvD~a
zl6``|%~?axK|;n{q^{~E<3TEumkvTglJ^yd?L;i@t7hF-@3^1udtdY8eO;P<y<u}-
z@qVL_ev_<zN0WZDr~Owx_FH$zXwwYXTMRgc3=sSKJ%E-94wfS<eXHas`EyID4xfIT
z2<NN^L6Wf>lUMkc!X6^66b-H3Lv8@3K!0v@&^p>oasGGXqYaW3q@b?BdRe9IXLIeN
zTX=rz4^F$ZK<d;@8yvhh*y2&iM>}~(ih|NUNQD)lnPTr51kw3s=zRdcI^gK}%`sLI
zfcJCi9#;%5NeKJqR8Ja;aYSVNMhcp#2E1^VImwN(85WdtN%4C$6*7`G<ua5hm<L4^
ze4~0EV$v8w-BRK@bknVC3e;0_XUfQ}%-Ox7*)2DOYOn*o_SADcwxrX~ZPqAn=HuuW
zO^fBGybVRMVw}f2zb9`8Jc=>beoc8kdFuJ0#FOR&T-liJizDLaz%_ge&);v?T$+YH
zrg_1Vo2w&yHo)E?WkK~3V|V4B*ewAhMEJgG(qAYG$j3R!$CGGBpx5Drel$<yr6%Ug
zOZEJNn%)Q4_V{`eea)Oouz=gtNQ$4mlb;V6m=Zu8a$rk);^%b%PZ{#RXPbG34)DSR
zFiJtMeW!x)kFGBVZ7>gWaU<><kLmgaI*A0+>IJ6;2OoR+x2F>BT?EgXuwK(D!m3UD
z*Ev%)88TX`p<@yXiV1z@^yF!3s8HwiUb7UaeVD{a#KU&0%?sG4_Q_+X>mTB5j~v3W
zgz%UVmcJ@BKTtf0n-#(V)MD(2E9?(!0nva39wk+fRDASTw@C4UXl2AKCScC+Rnz99
zn8t&-_CGP{Lo-vM3pu{AF6<!JhmX@g#B%=8TyjVH1h6be#syK|?C2!kE-MSCPN>e0
z7nqNqnR#Y$`fP*oTH~h-nM2CZ(I?ov=uOsxpw<@Vjt@6FXK25SB;IF-dive;EV;=w
zb`$*JW+gBYm==#}oWQLmk=LkxaW6ij9-6USX00|^odK+U;C=n@R_8=fFrZAYeQD2x
zuDpCQhL-UaF*n%e&ULw|XI1Pjw6L>mdxxJ~+(i776}%*kREz;ZFp!{@Ls%daqz(x9
zB-~@MB<`@JaePvILy|NpY420g2LGyFx|KoTvfHzl?9~GngK?F!O0w`VFKC$!DE)C&
z3g4#{v9N5jOy~ESQ(>)lj-;R&fkAII5iPCVpEakOevLe-$SWI^H|Ae^CuLYG7G9^8
zNp~+Ce~(J?^~<6wuN@pHy?rnk;Uv$sD9g4rYc+dqbXHWsU?B>dZ|a>5^Xht|n7_He
z@sA@Vjz_KDT~Z<u0dJH38W>U^y;+|f{riC0k(@Vx%AY>S#*T2b&^Zr=DOb9_UZi`&
z=+HYMN3ZgD7#>^jw7g*RQ30D118-Xie-QoqN_9?7sN|!PQ_^#^_$CNb94;5yhAU?4
z-5d!+SpD1-)RPpoeUlkd0{b|0l>-~GUyPGmUd|!Ic{P`fOd|L%k6@jFN2RFO>~-2@
z@87_aGs?acOx=8>1_iSuWmLWxeA}Rfs8H`_wbXvrP}vq#_QbXV_sp}EgQs1cx3dk}
zb;#KR-@gB|jFLgAJB%qKF7GHmuN+IqkGJh1p6^}hVx5J*oNwb-`6adVNMQB9{V#W`
zSEk>n?o|7OYHHApdyi1>e~Q-H)PBEPYcnD3OTW3QEbIsZ4p&QRysv|a^B5r-MBBy1
zC2X$@Q7LqNm?Yrm^y?N@svLQxH8g7N$PMdEjXUa%VR8p1zf!*C$UL0Vz#Z>ZA0OVs
zH2v~!>Z)jhd~NFXKH?iv`k>X!Y%lL$p;&|K$ca_L<|`2aQ~abBV#CNP>IGJCur=`Q
z*N3^)^Bphv+sDn@>&a~%MeT(MuX`HmvBBzBi`4srJMMRlJiD#-L*pfBUSndu?epKm
z{p-j6#Lk};l&MEC_C>$p%Nlq0!l=IAfUO-}YC`wQZ+HEke}U=k`pZdklq>$}I_4bV
zeNka?<cR^?aesH?n1SJxh#v6s>TyM;wGw+ijrXjb_b`4r<&$M&zQ)ELVt6e?S@Mkx
zkHr-<&6)I<GwXjZ;e@`BVuZA&tgOWq`QK-ni(g-}eAQ++*ONW><3BS9KR3xccRSBC
zTRgw=<-F78+*<aVJ>}fi`kQm!H@)z0G<^fGm2aHyfMPrIol66M8fh=_n(q9I8R8cr
z$x>YDL0r$pqlgDr!@sApm<t<$SYLh#V0;KW`~HbQD?$c}qF>a@Jv?co!e1Nj=^6AV
z{kVs;**T-wFbX3|_yz$f?R6Miug#yWn9*;3)O1UO^>V;7Lu-yIyZFUlDJ<rHooz&H
z{6v<%`|&#rksmF{41L;xP3!?h@~&$Q{J#F_#~JU?m=&UVcsOXlY4G3BGi%54P}lpv
zHCMwCb=Ul(dYm6?Uijl2JXpaN!qDWGAdjtIAFi2nUz1`bExAG-BllRY@;}~p`{S<n
zc(vs5ef3A(O%#8OD`p8vn_=W*u9R^r8`M~MsVS(@wAl&|ahlwdu4}4pw%dGfD5f@O
zIc;F!C%1SQ`<tis)t8^QD134@5&1n!CrEkQ$b#PGQ%0s!k+i-Qg*4x(S;Odb9Cnsm
zN6a8m^p5Az_vQfJFX;%|N9YHuWG6(-5kI?tel8gpn@hwVI=!-YE-p?d$E~N6*j?7|
z-cTL-=BOUipW&pkC?Mkct3T!^7lVNRI9u6M3mksfl(jpgmG|w|i=wg`CdrC7lH=%9
zsOB<KLJBmNl7_lC7)ckH+UZ0gyOdz%Q?n}n{T?(cH#IaPiLX3JNLX(4NH<jsTI>Ih
zIl!t~^S_JppUi<v21PO+^S(mKGy=Y~<>{yA0(hjg4-uJGIQ4>Eu#f}ExNAhq+D%^!
z;F?I8;P+c>mR2Af4GVC4bN@iDrEKvtyK3dEJAYxLb7-p<8($T75QwOydb`PfkD5fu
z`)eM@eiX9an`W=nbfZApb08WWie^ljNTqXbvAh*raz9`yenXv&^y6%kjm}BSZ>)DV
zxfA<n?Qnck^@M+r=fyzQs|R;eV`wLrdRl(P21rWfH>ip3mYk4PRQ@B5e}UweFJAW?
z9gfd_XQ(nM=56`gLC~TrU2e-);!ZMWJ_$spg&c#hy62Bk#S65zn&%3P1K5mR%%Lpi
zI5LiI10|5cCZdKJWJ_(6O{PZm5K|bS7%xRC8*Ck#C5{;j%qYHZo6h}o^8+xdB5N#}
z?q&2gj-NA~KiRFh56z(%XbXbC+|{Kf=rm&r@aSkk?>P~=1iLc1YD+N=6eT6Uz?fEf
zZ^=L)VbXR+L#13kmBj|5r!HzJQ~+guv#MaVF)CDV!T%^hFNHDXCjT72jYEME`!f{Y
z*5oRV#a1>=iisd7c&{Oey?%s1Ksk&HzI4<JoY2&s4)I<Sp#M=Y&c=bpg4o@WyHluu
zP^uTkz<mdRurVu|iXnBW8}_dP-2xIX-6M^K4!kMdy#Dwv+g8Ltik!Zs>%nsngVP}6
zB+6V&zwB4B8&mSFMxGr!EEWBs-Hk^8H<wlgFHhGw)ph_3;lf&6fm#t>cau-byE0g|
zQeLG~BX6sD52(=_?cDM?Q1um+iJN97q{$`FNBt>aUqBs&efKD)(B)VGa(I#~9>q;!
z4(hAEu>wGh**Y2-`w`#NeUe#a)KXJFqPKO$uePe^fxB)WK(Bgxa2z&-bqu7tUQy#p
z(OUd>0%o_$)}y_hapHVfv;80*EI?Js;VN*<Gj5!mWdjU}q|@a-on*aMbvm6SpgR5{
zF?MX+S;{}Gtv&71;y(l#xe^U@0;q&B$Wf2Hevz^C8aCwACKC?Clm}#{pSUOtJ$;6K
zoc_AH_ZIA(Hjp<)(D+*Lo}{^RHGP>Ref8J4yWI^BBonSJjE-rZ{>g;T{-~i%Bahb?
zy{y)O@2!8d+13|#Hr-y;pij`{06C@q{pdSJx!un{D^l--rXb1A=4jI0IvnI=$n7*U
zVr0`d4<;e@j(W=vFEfG*M{<w9gJ3z0<-_%JnYUqPF8a(h$dpZjyRE)h3QH>)K_f&k
z#MI?Ux@5~)k8!%4L4@7zHl>{odww`l=vf!%kCPj|OXD@Dnapo%H%RcNj!c>0_WqpW
zM)pD^CQyI)OzmPo<WH}dO*=C4N`Gi;&S>?OS0@{rV;JbexN^WP_!bXUcufF0A*r=b
zmh%jMkPs-F*<Y3<M8c2D^df&rcRG9m7fTW=++I<Q(<`^o6;ET1Lk7T!;as7OqLwyP
z;y6r_xWm50)z{|EqfDh&T<UD+Ka4N^ymw16TaQ9_Eegt7P6Upzh`eX(0cOQc!=|*F
z)sI{zi@hwe&*l(HbW;kVTYW(f3SczNLCIlpiUbmizg%~Hi@KPib#2i&dqc_7z@zc1
zTWSseA>-x*(url|H+;C$aEqZ2p5L{{Jmay!w&k~?^AqF%`p>or+`ohwvRFt0;eI`G
zxJcNO%Sec_32WdFd&J8~Q!${*d<pbidLVn>{OX2X*(gi1&fO+q*B@HfN+Z>)TNmSv
zNg!F3kBGe=jXzVBByhI(A^bMa;una?TV6%E1dAiPO1YPG5e+T==>cDH!PIfa$d-rV
z@0`BNE#4UwF7Ztlu$L`yvS(r?8uPUB7*dEU0+*HZH%J}2oMgZg4U9lwdaD^n8)H&6
zCi)?hfm64f&hr?CTdj#O>SqC0#-~{B-+lSXUw!kn<bs2KoHnfkLxxxo|D+xDQc8Vj
zbLw(&jCA)tR&gJ3g__vi>7fmB*mh0cy#3*!p0-2rY_Q~Ornu_;K>eW4u?0Kt$2x7_
zye``~HCx?~xNV2a@@&89B(Q#ZH+~jyJqtr0qG1sGeqX|EDrw7zlL*;50Cb6=9&UT*
z4G%q@L9{o&4fGU}YdxO<z0afuS$-j1E3XOQ*uqllqQ(owoC62u-B?FRAlh;g!X-cZ
z7ZD3;3c~YV+q>k~u|_hc6Nx5rKnk6v-;{jdX;$QK04)0z*jd0k?9~o|jfDj&kYB-*
z*n~$EV_O$J-sDs^`6&ND&Fa^16<<N_@i&kr#U9`?72~07!wDd{e{DFKs%^UX!KZin
z?QW@Ho4nRhGghgBG)e#<+W=|85q?T#9Lhca^5^q8Ty&8$&=YT0L=Q~>X0(J7;99?y
zsqUBitdRpv)6^b)no7S}P?^P6MFTqeRZ`VgwWGAau~cg{4Uf_SN<GP~jL^4cQ8FeV
zt*07U96qp#+%gy&pb21PyXeXA2=z)TWm10gnGJ#CVwRG;I&n4T@9|FMvI|=0za!=c
zZG{A#rhA3&=niZR3P8vh3IM_%F>mv6siUQw1Pm$#4Ym=K!R1_Uj*gEWFIFGNYBp?~
zapV+!F9{3Z-R>|9RB^1)-q_NKF>!Xc%uNGVl1()sufxV+V*fbTmfX^I-k<W=%+W<@
zDP_y*ug^u7M->EBI8{9dgCo)jKZTc=fdP0|HF|vJeSff5oB2rA65t$p=p@9J>x85e
zp*`jgQ_C7UyB!wVagFEW)p+5)Xe11zgsJ{92m<ST|3)xv00vONh;?Zk!_qN5&2#W(
z&Pg0;;LWiy`Zw>w_4Mv96(Tga3vH|nbj*a1C%N>4o9YV@{OQIQXSER))Y6ZER_3WT
zmoWsO+erMD=SNB%``-hzTD7k371R-zzIa&SuPeo4-;A)g4sWgC*w?ErZphuB*{iwv
zj>7w6%w+4(8P5KHXIjAFVDH2|$y$%+*8k3EWD|{kj6h2t-hO`O@b~i_zCYXScdn#A
zF^A!Bm!s699lpqa=iL<k17`}=y6!(i6cKz;TY2>D-KD*P5Ac`x2b2$>SpqO1fy_2Q
zIxhhG5|9rG60`w{=3j8;gJh9lMH{ecKG<Xyq=|$W*g#D3Ar?p`oy%-*n@fi`)XfHB
zYl9FWeua&J_UgeSi_pjOR5an1`XuVe9)=qy)ITv)KZ!sMz?_qxUT_5Lx*Sr3Xm&t^
zQ7m8}ed71v9axbZL*Ej(SdKL@0`>(+YXE?iK;XkCv<rH$xt{ywHh?NQ>RmZe>=JAi
zzl<7#V$(^-JwP>do69ud(qp2A!Ej<Azf8;waS;S*R!9NzApm5K`Q16iU_i9K+`S66
z%ob!GUM#b2<W*WmM(8OsO&*KtDeJEjhOcNObwRg8ueB1HSy4Xl3~A!vPfv@57?Z?N
z1<05J_Kq&Uh*SDv5=4s(N$$mjMlziGu_;F~y$eEpS&BT`MFfna3T!!YF6otJb|?UK
zQ(h>}mirr#i(!g>MjrJfvZ=fPwU6Yrju;oi!xSQEP*?*r9!k6GMDh2RJrjZ~8EDSu
zKn(%(r71v^Pw@snR1F<=7S3-+L^CL`-)Q(%jD~_%G)TT-&zn`>jv;eI!pzBm0>b<O
z1{Y3PcIUnmH80`#NLD#JLFz&cp%t_v_NuQPI)g;;T#?!e;(LklCx&p*@eh3h@GU;2
zZBLriBGSeSi2aslG+Oa6FQlI~)i~=-?p$X0)Qc>SN=>lwtBT5KB#X8ANL}L>?<Pxy
zjZ4xANu(+8ez4>HPylnsafXk_A@yY?3}wkX62_#wAFUBJxXb9;n@8dDRMAjG8q6kR
zq_hzFPvO5tB7|(^%XBDLi0iW>zUa^F`NMRx%T{h5Cr1(YRWSLA7(A1yPLa(h<bl^o
zGwQ)>&O|TlB4+gzKLRA3GnIb=Wa;WuzGKy*X#)JCX)^5@@}orvUojDiDu;F&6!LlI
zHi{N)Uc=8T_x>Y*z*@CHUup=GAT^)_e3AO<LOU_DsR_ko#Ik*v9JPQ@{jUXP#+1I#
z5RB?WT&N3L_cKZN`vKbASR=wnTih4(B^u}n5GdIbnvGWPuo61vzrBjo5|z}@269G?
zX|@<W>bksuk$ywb?4&w2b08PNi)zXqfL=9-|H|802fGn1T;*k8QD@M^Z{+82+luA#
z^VFEI>Q7JB93O+Zyr9tr@-&X2bO0P@XhTYoh2h5&gR46x^2O3wD+W+Q&6jP`qN|4T
zADCT$Y*sTG)hwD%inuU%!=yS!msO({dn@5kUTVQKr8IRa76^AHGtbezk$P<>FIs9=
zVI5!azao8=6|eagp7V~LY$9Y{43e0s%JEHn{n_myL4_}9%|?s>)<M??-~bFP_QX-l
z@dB2y{46gyKIwT7r)`-_L_RV;Lpa(YU()6>*(m$45~7Ts20BlT^VWyh%ph-a3U;+i
z%Oa+gYz&lL3?vY{+J33lZ$97C2TL0#$x8SrWU|tR4J7@G*3BUTJ7=}I{mWu96bfQx
zj`XjBecS|n6b=AxZ@g#T4je4RvQma{z}zmV5IJo_U%K<uizFad|8n>IeO*Eai+h7a
zSG|&zpt92hy};U4@r$c=8A%(3>NzBD(Ng8JRVk>b%c3LQg1%Dv<<684e^2Fi-_h&K
zIj@3&%V$69H&d=0{0rA(t!|bAKgd%z8~S$|N^ARJcCm75i%(XQc~kwOYnJ6d6CFz%
z{3Q(EY#rJ@YKG9_xW!2H#>C*SvyiPrNBwW&Ef3(X=wO3bhx=@0pcTk5vv#P#H2Fd&
z0}v+IS~GqTY-{BB9AoiXFQUBkO2xJ+^s>Y=BchtkA`1}QD`NYc+QHDs?!?gg$DZ83
zMneq-{(Kdx;tP}alP0(cOUg9lO3eiaqm@G?4q}W!abx`ip^^q<=r5rt-6>NCfEl-g
z<?JNA;X^B?RMV*V_%vedHPyH>L3?^MNXpLYy6<J86Z5U@aV14VCE@Pm2j(&kmxWw5
zHrrNxJ5eQPrqc1&#e&7<O$BNy5t7b{i{H`NalT<bk(-bRqH013(He2~-%X)}fwI6X
z;%&3KXgYMzql<z>Cp=^F4>777dMN*yznRbvg*|_1m=dy|D#Qls@3N@teciX#dp1)f
zwD7%=#vrXug5S_|C{1(nm36uYR1pn6?yAy4OCX38S+d7zpSwZB9i0}Rz~<|MV@yqQ
zmQCq3OR~VHQ}Yi|q+G;!cAQd=9!vr=51S*u67RB!1kZPvAA+3^Qs@O-03w6gvS2Jq
zTAQEB_qdcH*hR44C!0K5@c<Rf`QC@bnDhj|Ua}ix6+FvrrkOC^A1sms70HZh<KfoN
zc)ree=#}?@Sa3;KKS@{s82Y?=c%%_$@erLuoR;rW^QC`;%_Ksjg3MA=i=B<XT(}go
z60)D6;@QeeIZ%N-O6#dGe!zwDwP=X`%%wBnHaQLEMD!FAH1m83n|%+kK|{^`px#k;
z#sgs4uf6)hZMC;=d(sOx-_0W7Z%Y-~T`Sh*%0M{bAB8rtr~#^>0p<5YPC7a6-hWLu
z{<>1aUWM`zUXE{qOuq)dJu1r)-B-I?le!n{jrqoOT!D7%cfDICyQ}Q@Jf;GZ5KQg-
z9gsV<TO_mtu*Cfw$x5f!h?A%Q2n5lWw!qy*ZLL{xI&-~8^0_v@OercOY#WgwL8Yg}
z!Fm(l=GCmf{I^u&iZ&k>zC0|l4i31uYGpTLue%DKzFL1*wB?<CTRcbMJO28Rs~stX
zAO7}bPaDc)lM0WdS%_nuw>b0b>rBrd*3t&obGGRRH#Zdc(Xah7F~o(z=JL1d!jxs}
zj`4j8_p1&8>G-b&W4(FJt6g|-w}C)!CDx2nsg}p5)8LqIp8#EL>9eLPHrVM5?|*1`
zoJ+|Zg8Q0s(i97hyUILh%_@Y}HJGaFaP@ygHwYWaftxyn#=Tw0(SafTEv*HItm%Vd
z9JF*;hj8%qVOjT$hL|wv)Zqb!haHw&9z}TKUy=PA_H{v<g?i#e+HtLl{Vm$+BYEUH
zwaS5pWRiCPbY1%K*rtlgZx6Elz{8DEe0>MA%Mg{)0RJxqrQn9i?U7o7JqJSEg#=wS
z`HLBZ9T^C>@78Bv?U>#DzRlM0&Nq~<kcuSDUdQ!(Kts1S==J~bs%+7VxQ}s!)%|m|
z3LZe#(~xE|lvh=*dSX%DiRI**x>VeaDe-&LH+6eTjl~%{|7yxD!SB{*R3fskQWE~O
zU}J##zF>V?kSiJ?G!EGSwkHlZFUQVRcG2f^vu5Aysvm(iZ<%+FG#vl@G^v&8;xm+@
z<zbzf*o2urR_Az7*@1IS!b)bvCUOsH_5-!6RN8^*bLA_C%^CjoZ@7b9sAkkNM|1v+
zN>+=eFSgBU%8BrF$R_nJteER-uYSRHR}evJl>oWyG2xN2bljao@@lWhOP>1fe-b_I
z-K!<k?QQ+t!kI9cU<TYRSkzy7?>8I{)v)w8SyRJO>^`q5aSgV(WgQ+SM&s4)$1`)>
z%PgFAgT%U@zuPC?7^Ka&4{mQ5dBl1tiPw)oyWAhmj_nV2w^C8H6(6-z{$N_;vftKD
zg=G@olu#AP-7nNN8`5ptw3kpzcLmVjmJc>tOk3s?q6t>|sm7|~kTW#$Zs+ww^gCN`
zK@84I^IxCp^<Dl)Pc*AvOMC3o@IQ(C)?ux)b@d}3XzWP^4(gt~xYOb!@^j!L`TZey
zQQ>n-aUm&U;DMPVCx$e1^(FIy!(p92Iz)%v;ll@E;RB=T3R>JW<95cE5X`e3R^L%$
z${+f{KTEf7JQ{@rP7lu7z8zo@Ll9^f6<ncjB^=&(u!|iyJgeD)V2<y<A3T5D{PAs8
z19lkcxBB)rww_3CFqK{74HnS)%ts05eM`$S^j?^-bHDgC-@jH4?PAJf&r|#60v8<Q
z`P3l!cHf!(|DowTyxIC6|DQxeB1RCzjvZ?6*+%Rgvvy<FrdDZblh}K2TDxYAs!_Bt
zi&B)Ls;yPE+Bd4It=8A)oZs(HxaZt^&%Mvr^Z9rjgp=k+2X<LaPOm>W{aSIJaxk9Y
zI~yWF?{clG{b0m|9&rixmifx3U!hRMyZawMUZMghPAt{2hGo6D>h&}So_QwSV!ju<
zlhd@s_5ZQ+m<sBH#-$yD^NCOAuSEawo4x_x{GEFr{ps2pxroWsPmi>Hrx7dDL@ZjT
zSAiyB^esZpRF);zP(dIcM+NRk4(Le0pw5XNZoK1`<H<ZlaVSyW<e1^c!gyKxcIdi{
zHeDQc4eXlcsy{Uz_rPj}WDHM%r5KFfsH=0D0@*<efy1^_iCOw-53_Q?^LFp-ODGPd
zvyNrhi!G1OpS|(~s@+XETe!*)I|-PE28sb)s_yVdW69vnk?L7C?L3Zo=Z`LYMaCAo
z$%)b`4|pFo&N_WiD~c`x!r>!>2}Zj%1(MF_g~6)$RQ5YZJLgfJ5PFta5DSA?h>&54
z-;hT`@?ci-nE&u(xv}V|TfQ&}!m8$xWJs%1?Dm{a+lv2nncD5+gWd0<vlX~RW=Y=@
z%$pkZpe^sc6CVZ<7N<ysb!^JZX5qNzuw5GfiBVcZk3~(?&z8vo)0spPolo_$K;_Nu
z!9*Rq*%YSNdv+yOP`-mLXYUQIoUmpZ1@)}d@g_2KY%jg1z%na?c7Bfo{+xyoGGpy8
z;!c;pipIT(^-mV=W1or}w;0NZKXt(F%{DD*>GeIW-gGS6))hN!Zrn6=cI-kDTy+<b
zee^YeIiL<ybT8p`@BVfq9g@+(U!R)sVe0(AQ#moO{UX5LV!Pk<GmYPYKMCtB0O<$)
z2tf?cneIw(*hBp{vV-Z$?_mTdTM;4A5o;S~UB<Zax8JkPPUGf?*UY&Q+ECmU+p@1{
z)zkNCyySLXca!>}w}G9#A~Ymf40J3>FpgA_Az^9omW7@Cwj{s_wqX;hJ$|~8o2lD?
z%(rof5-za!?G-L`78yla;|&v#R3olYD`sE?K&F}Z9iN4g5)-IinZ~s0Qt5?eegmwO
zSXBH)&G#QiUI}&oP6dLmGq@HQ{u_sVs8LC*2c&FU@0g|QiKDLvzFs6&`Y6d@SRRNA
z?G(^t(bk*a{YTp6Bk5$pnv07Z_8OnBPK-RpolJ_i4brMhw2yK+3KzMmg-bk{R{JB-
zIp<;zU?&u1kvml^`bbZgpHKL7t*7i8^9a|=NIlza?33#I8d2QbVbQBDJ@8|t>6^Te
zKLJQ1-nmxT_v_pH|6W9q?@A8^;V5L9e^VtgBTU8`vZDrrP5z@Ce*Lm9?_&WVm`Gfk
zR?YW&+{fd>ehnlqp1yu7Aa8}t5S8@%X!+Nw?00V!sr@;ZpVfkED$HHza>XdTVf`-Q
z^~O~Fufl?bv8Li%8^`jmZ_J$s6qlUu{#9IdP1RHyu$MMgTJdQbP<kKG_cvm}OPN~v
zL-_j`<&RPO1Ks%{uZ(BFy}X`-#yo(j+t1=I15X?z?l2OXDEL`rE2otu(wsgl%WOKC
zJx~?T8~na`10<87ve(e`y8F{<c6}}Ui`3yABz-U*2gQwbYr(kbR*2B<w^C$U;b6T?
zVE>=TFmS=Thx#{(%Tf1_w_MT`sztwt+=oL!)iJON{lUIdZmoxXW)naEi5`xI)&b9i
z$Az&6peYxDW5Kkwks~9Hifb2<ax~|=LP{cs6j+^5%kK};V&dKx@64fXK<3M1h^H9r
znUED(I+}P#5K5vJ7{#u%JdP95;9qeN1@HNgrJhwY!|_?EC?cA+-B1g9UP;2>6R8Ef
zNwhh`#LcN09kmUBhZ-@L_n%BsD>>uLzrLD#jF5=)Cc-+3bazmoNC5=U!{|_#X~8Xt
zSF8$fIT-)jE}PP1C&;CbPUW(kOBpvNF_MbP7HR;=vUoR*4HfdUvm}^onJay0PRTzT
zpKOg=u5|`GKxN+jEJ33!3tmhf<ZzIR*N((Whv$&dsHPXQ8{90TfL_?;Bw(V2CEN`a
zS>I$5DIp}alDNzg4JuPX{2)7B8~GFTlJ1&B&v{`H{1{M+<9|W7Epq_?W#U5$O?Es*
zjN0nyqi954p3|T#iF)x#@+^xU+b#bNr_OY&XkUft$zM>=B5TK2RBqK2946N;<B#os
z_~%$Ca3GO26%1f}HBg5m_BE^m$SYgx#kmFwnUyc3%@fv>Z=5TAngLk&jm5pwA;$fi
zVD#;v))oY1m#KuoSc8G6B$lM5u+K<Y85_6B^@`;hD>>tihDT`Pt89fpDcQpZt<MKd
zM=G*iHE%Vlrl%~}{j~<vW34pB!sf3@tWgvDHw;{!vBZpp)iNdL6}O>PJKnh0z+za9
zF4n4K5ELMpD%NlwOU(OC3%aD{f&~sQ;s-uHt#pmw<>QRM-nNt9O8>PCdtWXwPmW+q
zD=Y%z6$iM73}r~N677`5SLSkTeU3s>AUMHcKd*Rs5&&qErq3EQst*oKCeeBTdp}$?
z6UQSc5De?Q_=74LJ!@ZN2q$%@EI(KRKQ8LI#iYYTpk~`KHrMfaiK(b6g&zfm%$<?v
zj&_4L1GsNpV@=rMUDBG;9Sgm{gHkMax(9jo^XLfg+qV|8nmlpC0v$J2L1``hA0+)W
zLo^&Z$EX$Oa9*lyB>J9YK*b@H_KvUhvTYr%QxoevwgFl<t&o(ZcskPEB8>lv;2J6i
z_^ir-uJtQ*@kZz-adX={UYy8dFL<OdzS{u#HrFQzYb}22EPD3Bt_ibya((9!0O)0D
z(|!#~#VbRzw6O?ia3%q_+c-TNFS#~Qn{&G!7Fr1f?2AGDh@2_#=gA#vt}-g>vR__o
zBdWA$A}Ati$m=C-1@*`lIPy!{nC{kPVE04+0@VW24|1C&5EaCJuHIyMr#dA&9*S}s
zHdru8o{EzRt=|>{v#sF(bzXqRLCT^6i~K7`$S|h~9wgpGp?<ndEDnzYA=@z2l9!<^
zVU^qm0TtaiJt=~B0j!(HD)|jC7+lYg!W9oVe<Xm}0TAzXw--B`k=et6B{uY|jk8b3
z(aNY^qS-1hz-bt{o7IQLnD2d`{xKBN-fT>!(GWwdhU^S_%F!sKdpBNF1;CS%$vQ5^
z00JFVdF?)v$+&kK@BN99>!g;{&}UqvvGkWO#|@JB9K>l47_1WaK?plaS4hO0BOTT6
zCDH;c5{y(H8SKXj8RsuWH&k2%?;*RS%C761HpV7Im(+>Az3XoS9b}h4?FxKQ<#xc^
z@Q4RF+Q8Qn6i2xHd$|~Uu&h;Kk);%|IGU-+wFJ{1{;O-`D1RVXYsT;?b86B;u%Hrx
zI#%Fc%h{+rubp_<PJR3JLsTbORgPmYle!HA1$_owF#u}V;<Ycy==2BlK_~|7EJHs9
zYk6S^JaB(VUP}7dSliurt4aM?t~vI!UBB^*mh`8ye>*b4Vgi>TXR72$klDnIe|h8^
z9jb31oYW}?O4)w8Lv#+`wHVSsDb2+F0u^<wWs=XTgTwE5@GR-1o3F7SKSFvu2QLTl
ze=bIHj7L(e(aR!s9<2E0!3r?$^MsCZ1pqcRws<sNTeGA&9>=nfwa&qTs<Cxdd;keV
z(;UaqwtQMO<uyiEn2hLn_j4H55+E*@(X|zF$HBij0ea51ca-(!GZ|)0rAb*cpC(i_
z1E|3K--Sy=pt*3pHI*nHCR*&+-@&OLBP_>w_+vEV<XX`Ba1b|^A!LS+pW3nbf<Qpz
z*0*p*kt&169rEf4v?*G7J1@Di3YY#GQi1F=);~cxaiK&zvUjO%`fE0mM9$}L)zScf
z-wQl<;sLaS+`qwap-Kz~2;5I$w<bI%>ClCt|7RN68=<kaL3Q3}kVyW_F;t^?S@qxW
z$xG0e$fo6X4Q(gFvkJ!vPD}wn?c|)`zogJnH<mTVY%s))-~39>q=zSHiszGB4S;?x
zPVRVCW_v_xQsCdRn-03LY3{m3n~m6mDzRtDm14z0<XBj+yK>d~QT>Ln9uU)|pFN=8
zH0p{v;lBNr{~eD2R+0i4(b1Z7y-G<GXcW*)qrexc|8d~p*ja(oi@3+dRvrr=VH^V1
zKQCe?q-$0~o9-&oyve`3`I+ek$^&SSAY@iX>4?{&PRo&u)}vQi!s?M2=Y|cLS%A@c
zm(vYXHGsGY_FDE<V-d#<)F(a#R}{C0IYOA_u*PhphU*eW)>*^vGu9Hd{xfQeuY$by
z?hO=Q`%=fyAVQeS*E#r1P{XA}M{W2o(-vluHDvvD+%MhhDO+m(gX<DBFwP;^`EpY5
zN3&=E{urO9;eq6)!28{G+3H;7Ttv6spdlRkoH*+h(Cx@7<2P%NPHc_GrGka@ZjK6$
zuk&p5yp~)nGL_*b?m9IMfl{=6{n_n`Xn{3#VehiNk1r-#!nVoLBEj*_YaA415$btO
z!-rs;GdDE&-d0}#S?@JY{o70R*Kd`^_0U3<7K&a{&>1d;;jAA;IPj1hFCabH&AG(P
z=13UKL`)DafRDceAB+kPL7w|SfT;Jhydp7+HznqBRJ{ReDoNTS<Q)8?rb@6LSXZcs
z0_NT!ebe(#qiD6&Aw0ORb`lk=u~$9T$V&CH&mTVSA(8}kz-{AfD8nO3*D*~ZyaEfB
z0XUX@_R>vGuBuPz0-UneC*Jc`F`bAHB=P9(#Mxrxg0<4!UYi?$aflH^{2=l98VjJD
z=%5u1*2(rF+%L)JN~sN{)l%u9QmVRiTV2E{ZIOlWWZ|$6=Ket1Xm8H~sPjgp2?7f@
zxJ+&>`#yMYdEz(@9H{(BYMqae#g=CpSn7()Tc{z1t+BESA!%cfO&H|}^w8?i3&_*O
z6Z9Oy5?n6v`tNkjw&IQ0_=GJQy>&>mZJ4U^Z6|!fcLT!<lLT88NWI9`r+DC_JB-fW
zdzT9CsK>);kvi$<<QgN3i)DixZuS%mIIW^4<T53_$HU^0lr%eBa*sOez#!WCWw=M8
z;y-X&)CfF|avOx9DnipnegrjM4&(r&X3EZC!>eLTTke_&-p2mdO&?~NuV+m}Gw42k
zlTzIY8#rmA@&!>gMp{quO6o7BN_%LXp5mWx!x~Y#Ep)(IJ6a3OqFMc<$T@AVx5Pk1
z^Gmn9fqTv4%%fdluf`upOx87zmMyN<H@`ZLqa3Eb7}<Zd*gSpDfBa+f>w7}uNpuqj
z60;D=$?fJ@ww5_w$u}#ab0U)SN-gtOzvfCxE|^KawQYI3m%iZAvKT126!G<~N6S(|
z%W{U~yAb57f7728nmuANW(!{LHdB4pV3<DES=BQ$hwhqrGkmE}eg8VZY@y{-An2ps
z)Y{e5k9Uaftl#o6-$bxj=z*V`Pd3|+6zaGX$a0Q|OrV*yl%|T**45N6ywpI7vqqcb
zGZV^F`uH7#gy8hY(kGIw1{Z;B#jt}@u4OW0+jau#`t8?F#&3z4MDPq>=gg1umg8ol
z@4^0GR~deLd!3_jr!^cuq0*?V%pdriAGVplWd4H(4E@)^c!X?4P#DjqX1*yg0C;X%
zoX`BL4@%gUTGIf6dZnL~{U>HUL&LPkT-*BZ+X%oX8Elb74Ff`cQ9B1`(U1^B|AfwY
zQ-RacH_uxO41&7@^2;xAU(rNJthL_Na(U#&pMT)NY^mj#$4}}xEy_H8(vtp?sn4SG
z+lyY}59~N~lWBu+a4rhuK2|J0_8<$9H<wc~I{Dbg@X7=i&n|*--GT+i#KduvPk4@5
zww+fqJK;BuSsTq}cp=5ExPXeEL*>u0IKsJ~X5;F!(bIECv0Iz?b{50y$lI>yQ6~Q0
z8an43Gh&71PJ0OQ)^7vLHP9rJG6{~Kf#Ks_euMe;llgAIL}k;;q)3>jPK*yN#kFE1
zaLk=a%s|sOP724x#N&{sPJt!C1S2mIkI#xE8K%}?tgoj?MccFSWBe*Xgiely2!LV}
zqy*n0s8Z<Q)b!dA%Xi0oYaO@DpmH=v@7`EZ-JQ5LF{V10E8SZm!&4&5&oVnOFE7#d
z+&)yDG^pTwi>U)3Z6A#Co=;jCQLeO5JsMH}6s!7#ZR_#8;x&l!{N`DO{9ilki$=b`
zUhY^%>TA6h#tKV1!c&5<D{rv!a4ilbP7JB7x^UNbTPNztGvo>Avy|kOk))oEoGf;J
zhvW})+WMKV45{Lse226W2RYkL<bw=lXsGFL+Fmq=iFBUWnkAWichrxuHkgJO&at|W
z+SvPixfyS(WAOI=8-BCOY``(H)7Iu^!zcWYT$3o7OphiXw?^ZFI%%wpo9qv@g*=<e
zQ0wpVEMcs4qTw<h=XD!wOe)`6+#C{^e~V{Pv_q`qKO;Fi8(I7pzW3{G6L^uJiFNJ$
z0rzr&ua-GU+e$UtI0;5Dfzll5Q^XH!T;Yo@pKN3cQaneK5FWO=u?ewnj9j$4yyjcB
z7HkYTE`B5sB78UVU2mUO6S}yjy0`#Ofs|nlCWo=A5L6uYeT&?6yRJa(I)WeQmi}a3
z)MSu3!}Qe%w_mzpFD7r?NP#P~x%GvqZLkKpE7+}_`g{EJ@A*I#H))@`pjpIPj%5Rr
z$lnl@h?}_E|Al?!UVQP()R%fJlSET^tH^&hiTJ_xKL2nE(`*iq-Olg&EuXSr#r3-|
zVyG7T>1Rl|{nEtWBcIz#YIlE>4X!s86(+IsgO8W*IG=^3e^R$OJ8YjIf4a{5Wr@hs
z1K?)9J&=2kBa)<RNM=D0`#u2`mSas3+$MJM&UTRpe(B-M{zpbh<*4LhRLaCiW;ZHU
z`r@>9ZY|?`p#(yJD$W3Y`OSC_ids>LA6bS^*^!^}b0K=^EmU`V|NEs&$bwO_>}#o0
z_NIMsS^B`(<mGFRRJ%KRB{5M6?VDNfXKAS3IE$j^Pi^ZbqEde0XfB6_ZIqpJRhAQF
zhjVu2wsJ?h-}<?!ip&C{+0?1QYQdB!uw@Ew%5p%Qnhl+}g@038^6h{l761C)%K6{*
zGmxs%wg-tNF`qY#Z&dis4cAI5a`4`<6;d-nB0Uv`O}==L?)Iu}FN0@;ZDO_BhsWCG
zXF|l^_53N#v*4h2e&^)<ZcDYacY3>Nv;;6)Qt`A{-n#^L62+poQ65wBz!~`P>qXx~
zAgAh;xLSH)vD@KzsTCU2m1@)E8jBJUAq|!2htEZeU)<%a@BLD7W#sMjpJL5NrEMkZ
z`R~T5PL7t<ulMvV?sB&NT2TUX{bh1QqPRN5xSoW+dot12X~AXZT)N4fFW%NKE!62H
zP&l5Lf^7tJRPM9h;DODi0ab{w@$=Aojy-b~ExoE!x78ONxw@D%HAlF#-#89@dcPj?
zJ>psapO~0dv7kWT0qP_!6K=<jcC4Ye=&HMBTejZx6N4qb%w<MRKH5O}WXmrqcCW5^
z-LT>4yC(VryvQT5ZW|lcqdp8*iTSus*u4AqG3jra$MdGY=jH)}Tl(0~@c3@hh2sb5
zO%Vyr<+*_mU%d8O@5!zYyq2DW6Mu*Z-6b^k<@es+7P<Od{-4+G^N%yywDkbm1I}yb
zwld1XspD6l6%(JebAbZ}%Td_>a!Xd_<zI=zR()zd6!UCF@eKR?z@M)o@J@4c8@7RE
zziU_7N!;g-tM_%QCI<Mx0Fr?U(iE&;vqljY&dx2G6Kfk`v)bC<R2XqWr(%>!s;Zo%
z?M%j`O3j`ilR-SDVkBsO+{ihr1V}_;XsF?8Z?!n2CKi<{sLv>rh|&{(HKs4BGdz^|
zL?{ErRC5(uBOcq3j)K-C6segf6w#BG-`fe2ix5|Z7}?3yQU>N8z+Bdg)a^{R0-Gu0
zT2m6!^_mss`B|KPdi9EAO(IluR);kArg~n`)eX4m0dyRCoc!DtQcp!fe$5I?viQ$H
zP4wVdWfg1e>R>3yVL*-9uK;&j7Uh<cK<%0nIocc*azblF0~~mq_r0KIv0bQT8M;H2
z>(PY+JDnSm(*;Z|cN`wWOK!POmYdx<3QN@SQZ9{0BRB*+otQ%>*nHF?o;r;@;>a|O
z6Mj_zKuFP+>B^<dzIq}|U1s8=D`4j2m06QCC@I{J8qw=HQ%&E`W|UIvVvf|&Cg6OQ
zI=-G}9(zs|D+X<^{yIqKuGGzZZE*{;SnyN`TJKr&<Ef^ht-|(2G(nd(3S_%*G`sOI
zk=3fxM3pF@o5+5JQ^Rm>H7doukNV^vkH+T|$D#th;=|P_YvJxtQL#ZXK0n_sL6o23
z`o}rksIK$=C-LV2s{wTekFI`r#=Mzj6-dh{cht-ku9rlg{4NV4jnc@#&n82DsYn)Q
zuB5CFNOf2VC1hk7xDE;$owXv~+Np0U0;dj%oI+S{Ago+ueF`k?bm$I#MW}A$@h`&+
zQkzMIZBTRR!{(|h_0|u0JH0fj#ysx8Xi}r|WMA<Sz3=)PYRhR18D72~^bB!&$Tw<o
zy2mn%96ENUWX7v!hEo`yut7Z!2k0YZR=c}e^=HQ^t@#%;-f5)RJ6qy$e4=C%Ts#Xk
z<;iqZMc5=o$SLj!s>AAuEdJIX8)$-%F2#36%#H{wh_Qc2)d8Al_yJ94Lg1;+%g3S5
z*g&2HJkk4UxU`v8$~u6>A<`V@a7Bj%K20&IMdN~Fa$Bz6(KvJr9%jA0io*(~cc#&5
zVxIcD+)bChw(+$IMYZ>|`{NTjJFR$x=_RBxMMp-fCozRX2gc%Z*oC+cyow`?*b)eC
zf8H4D-MH5twxiJpwV%n7mVv9n(gr=wZj_-Pd?9$TnhCJw4Sf}YMSd<X?8Dm~ws}SU
z1sRp!jTKR-^kj{($`@;<_ScZ`jT-%cXTS_HUhIU#3aEGN&~x7KFi8sV@(6eyB_n#(
zfOYV?KAsfM=GJx#EH>=lv19k7kJGwe!?lu-Geca9x9Oo9hml`D%lr1MOBnnOm-m37
z!{W}t=V>-1Y7N9Bg(3jz4liTdAv&>2B$8JhONQEuBM(en!}{j>9}!$dgvQOtV1FA?
zhhrz|qJi`V_xfi)gj_zQ9leUo_({KY!*nt7CEQ~rmuafne@Qz{!sCR^RR3?%4nGwJ
zFG0I?g;O-|=VrQQd2lqjr@j8_lfa3m7x&J;x4v8r)qRBtTM!!Z5f7Q>uqKcpLU>Xk
z!m*#u4Z!Ll0pll-;2IvFIuBA%+a&VhA)S^MTmTrWKbyUrWX%XQ3Z}I&K(ftRC1tV-
zP*WN6(x)<M<+6g}*tcLbeQR3CHo~29*Kz<uJ%w7NlG?Ngu$C39Bc!xurR!h8mmoqr
z^25!V4>XS|Lk}cq1n5fIQy^zK<P2mIwL}&xb7PUZcBE;XC|Q76+O>}`LXg`H83I|(
zlIeG-K$7T}&?I5ya2+%2C?|KW+;!<_9r~LWsMW9I*E5HY0#g%YJT|?5s<>g~Y)g?q
zdVE_i@ND1gk%b_a@-B?Ao(Pae1LWnfTpE8fS!cdi@N>t<(~eZcYpU`y>jaO73(KWu
zAh9xus_}9UEI6}5+@)<U;-{W0$R;mQyi6it&&|nm=ym|3T-$Xaz>sA@XQ!unf4xLh
zeM7XYj254F?KIe>in{Zb6P26_b%<Ntz2Ab~TJ)S!|9-S8gw8!Ef<P4or!o<U3UA#j
zzF91t0F%M3F^NGIZD1UrRHA~OU&W}Jox2*yKxm+%RUqAr5~x=7&;H@GEc@e-9{y*9
z&OBSjs;ex_NKBJ#P>y}$*N`f&o9E3>Yh6aCWFxNK?rqar&u=OM^f5~!)QG?Bj7V?C
z+pJl^aF+q-NM|Ek%of?#QoYnn%hCX?b$)L<4uKJYNul+xxT(dPNOkDkG~KtK@@ki(
z*9}frrNCWwlP@S4avb-Bb*|qXs`Cu&pk+A&01m=zXqZl06Np1#$SH}LNO0`+*r|M8
zoOZ)(op>B8h_x)7`T#qHKGB8PA8o7oStfMkWjC@U^ck;xJI!JK?YmUqm>DWk+37F#
z)yJxo=hfo3YsW(P#>UyA4Uu)QP>7CU`4#*KkM+R5r?edN%8N8Gd-n>|518I&e;Qdw
zyL(bjuRKfMB`NqtS#a~)t=#~83hU(FYy|`h-!MTd!O+40XvloxmAM@&vG!nPx&9m4
z2*U8+a3iwT^@0NwA$dz&;GWM`T!6nplVq_AldNiYvkTnhw6fLg(ILKFd{ATntuM^h
z%%PfcF<U3~!18PV;AQ2qE=jy6fOXsg&LvLr$!>X7pBBwQ)kBP6A?g&=ICdJ<ZDlHW
z=E#MvW=Zg2c{SKxjwKy?Wds8NnWOWCVw+HwRRNGJmZWC)p2p9TB^nWd^PlPG?7c%Z
zS26G;uoAGV$N27bN*7J_KIya2xcwD{x}dTz=MHL3<1ZhywTo80r#ELwd_WfIL|T5$
zcVohpd3{IZUW9<j=Og}|vK0CDSziyj&Vg565qCe`l@jWqP;=H}VP_`*s0SqgvCNS5
z^)47`@&`cIMucbhXHoS~z$^sizWbnfCTs;O#{-#5YnT#Tp#tRR@x6FcGbp26ec@s+
zu)A+ymx$}1b&tMFgyRuF2)=^)#^=;Z9)?@V7os2br6PC4uTn?8QipInzYRYg2s(*h
zV57cy`$e`ZAf?NV3i;KbM^WZm$V;TYJ*2y5BH)|b$SRw{OOLMZzq}R^QDY)jT1J1`
zLHq*4@4-lbmYxjh-kP`iZXl4hUxZvu5Sef*j-3gWszkM+Ke5=6UTyQA6l-HS`P(kL
zn6tF%pK5211GT=SeFFx%+q60TRHLN?A_5AD?^}xEiXRfUnHAQ6tk^+#9_{iA8eW@7
zC7mm$|8CSNd;pne-l-LC+N1}pnJzCXt$oryYfT(L1UQ;WtBn4xHrHBN=(;!!N@d?S
z7%_|M78dzmSsUI-87Y|5cq6YKjkDv~uggDj&UwW#vrl#MqfPZSDWiMl=ZBwfqpRlM
zx!marUSa`P)T1!I{=kFhD-?FX*Zm=}x!kMDdx?*r?!?`1e|o>70iT}$pnwd_W@EMi
zi$epAr=Jou4SOD?6t<qhEC-CEQZ9{(ZE$A-oe|j&sh;kqi6ctKvU*VH#<Jh-YrAlm
zJQ!)MMctIh+*v$!NnXMCu*S)9+dqu=$(|<=c@I)~8?>S-(^V*BR2nVBdyv_HQOUQ0
zNj>!{qV(Yz1!1CoSR_>o&|->97Vj*E#KzJi`{y?WBrpK~L#hjwGp#n}>Y!>eYf>Td
z3`S)DMC<?%P#|~Z3zaHX7L2CE`Ou1Nw`v**I03y<mZK=tN#hM<EFof|Nr-WJ`5g{<
z>t|6EZOtw1O~VAJip~K77LF*3d?!j0)HYew_#lvP*sLRjACB}HHd&~uH6Bpz9r-NA
zVzxSbwK<VFiHmzTPcDoM>!HwXb(;4lhk>YR?YJqaI3$tD+3BH!zu--i9&O}<hj_hf
zCt$-9DkJVH>>*B4VeGob(|s0zy@$542_#V~!KkgcRZUN63hM#YyD%n4)QASHztEUW
zzZ*(2Mva6nKq9q(?<?5c`ZW?bhm(z@VPys>Cv+FI-1I0Gc1Un<a52sUO@yHJ8=A(a
zpc6qd;N1SS+sMQ+g9+&Bc$o~iNND1hHz30UeyK(X-mkrht}m9*xpg>>lK~Wt<X9^}
zk!yy1cY5<{CMum|vic{kzmxxFHA!Zky!Ip>x;zQZN~Ad~_V+RBI-AV&2b3@HRgI)Q
zEF*W;q}8v|F%u0YDU+`vji=GXUHeyfclmY=a!)h!<20h}j`1T2li_}Y3t5v<CzCOM
zlb6vZI1KS)Z|v!i;BeklK&8pJ#1uUg2vE7=K`{}XH5vDBW>=Y>uX#1?WV+}-9m~nK
zpkX=`X1ao8AE8TMnKJ#bYWmUN)E`Z{pl<^(;DI+Arra#2KGD5imw5frNofX5oH0q*
zLYi%8Om6p^9ZZ>hT{Zg_CLM1y^^MN_h}-;l3yeSm=~e*Q3w-o4(vRYZ-%VzINSM#`
z2m=r#x?swgM$@kv^NVwH06iY~A?>|WJx~)5HpNpr<AJ6FFWvCabUdtl_D}*(JAkK~
z#?ybm{~6R}_=`u-TQCV@;5-&Anifb?i{B@B)&L9k7z>1?1*+VFv&DidKpHwL&ye+s
z>#GIdUyH>&3p9_VfTX2BIguFyv^KI#RIn6{vBXSYo^R+k2x*D!0QS?~jCB&PJT;?&
z0%hn)5+Bl}>E~thAB)EnUof;OoxOh}^)(F!1s0YP72cXcp}@D+tq?maMsKUUt@)eG
zB%lF+Zk!toB{E^GWHha&WiGkY)&@`MyhscBEml)&mIQZe$q&|Mwc}!@DmO3~b|}*6
z*CWUp;0Xv#wM=AQ1LXPum@uMtHl+KmsWt&NC1fIV(R2#-EdrAUF|c&?v^3_hb^pO;
zN6l!fXuI#U=o(XCWoqN-X>*+#!&LEBXBOaY`i9J5Lj!-C%0XhHWQ+Wuqe5H{8Aua9
zdvu2gVmTzT%<>MOELv(N1+XqYM~dP-m%eRvLc^{{=3jTOc|^>of(4T}C{&l1sj9kk
zi*-5Z7MQs{_d+cjLRGQMNP)O~pu0o8WcJrC%f^Jm)DmgYPj(||2FKY`ijhztD@rxT
z5ST;D7UW7)Txhsz0A!GfE$T%TvjR)#<5Z_CG2ZVAr`sSE3!W-ecC42&10Mc1y3!w1
z<qnWr0}lJ0D@{D4pBRV2czfjUcNJeD<)7bKFRw5aajs~+^R=_5iL(pVQgV>7cl=?;
zIBN~{aLjK>;*VV6AHRMiX3ra7cHa}8LtQ9ENa@q%?~5rA*^=(1XV+I(N)}=tc$=Cv
z?KGW_<uFZw`tz~bbEr}vzW7p`S@suDC}vg+*(2n?V-A}@EsTN?hg8y@q&ZWzV>=@r
zWcG!?xH^-)qK5&=rmuT-+G@T$k@YZjF<dTWOJO$N5iYhAl)M^D0`=F9@1$pb)P=-2
z&kkwAXa2Gs45S?o(Cw$&t-pGZ{x<FF2dA_28>bz3P}US<ec=%raJM)!4~0F8?UhfD
z|6EVpETbuGO8|n>=&2gcHd!$EY4E)=v6bAtz9K3qQA0caG6B@PUt>Z9AQaBjlcm;=
zLHK&}m2tFFN0J^)rvjzcJg`cDZSt;t4o98SUTyZ@&!6(V=UZsOH1(ElfC(|u3o0U!
z$^8Y?jv5pR$Uv@nk=LQaG@}2iD1V=dy>qR_Y+#8*;cu=D8XNSvi6V7wGTDh2RCY45
zN>WruRv_rcueKZKqlPMr1mnN1r?VRe7KL0Q3_@P16P};WNp7Hm8`@Vr#QwgXjif8(
z&(=et?Ps&^&t)&j0%W0DtdW^AA3S7YK%6T8y?yc(U`C+bm>^+|xkre$k;c+ihq1BN
ztA6cSZMQ~F+qV|wb&Sj@s)c>lvkUCV`K!qml45S+DP-p<fyq3Qk;EUZ^=*)iGe{<S
zpf2iU<Blz4-u4S|0ke-DqTi{MzvI}msG^2>7_e7R{D5cQV|`2#91K#Qx4m4*F7b~5
zmJ<1{E$4R0k^>p6%mcSebJ`&F#Xc@28k5e!A9-$>fum2!ABm247_=_#jy1;L;~?K-
z>~SR)rjytx3c^L4$qBG~hy<hwI6R{;B7&~nhf-#D6IY!O;(`o|pwP>FDgNgr*e>fo
zwskYvTN)#ZgKi1<+?XPGB?o)ynEBQ!#ep>4FaTgm$STd@Q-`&}mv%rZKs#Hp7X(^0
z(X%w{38zJfz@lRBZVsC>10erOnaB4~k$Srder(u%ApnWg0P5%2S8|r6zc*;L*dQBh
z&w_bWn4U?wimtc{8nC5+v;Ce$B(i(&ixc-r)9c;onTyUDkG)6}YYJ@3Ra0K{ty0Y4
z0KY&2vEc!iO$p$#Tk>j|h-T(RVo5`1)i4!+;R1%a%lASj%r6B?+HfL*DwFK8=A~o6
zQ8Hhj^mtzK_eCQBmy(QFh6Z*F-NLD2mEG6HuC$HE?9ZM6mIJcacmu8H0(Vc1zbFBA
zt_EpalHN0n(n7v{Mg*35#|!<~s554KKNirH4S7@$U$2z(_w`qwl&?&cU+)kDl+=Rv
z%>u&P+h;!>Xyydb2nH=Xe5!QurT=s|Dlx|t_=IXP{_akG3-tNO7@cxatbK)v=Gxl9
zFRH5*wES71OG3Ve_pNa+aK92YhcsD9rD&4D8`aUR0FAxvYoKrj5;Wg80355LQaG<C
zaEWHi<Y{UFUe$7@Ft;YSkFN>V#~Ck&=qII|P~W<cU{1O{+wS}umWp;|V!!2bXjcMF
za784uJW6v6RA{5F9`qjT)e21~CaTTksb9~d`wdG2(7tO*xN-#heJ8dS0O>DI?pBkX
z4}Q;R9^CI8s`&Ez6WQ;Y5g^&_1OsL2u;E}hzc0g$aN8FTnZL5)g6l7;pDo$3LT;HO
z*%=}0mzT`Q&iE8ynDJOK-)fHDr8Ps0L-#9z!3xNDj;f+zI*zxZ{kfd?rzq3+W$B;U
z@Qvk6_n$uupr<<41sb(Om2E!+>$4o%#TX5E!j|a8a$Ssuk@CA?C9(zE<aYZ+41ILA
zSQe9}mM{LtKI}>MBi{mQ^)k^32I50zq#5MGycl%nzjCs^I=@(5(#=iRj!`GUOcqi&
z@a4~1t0i-q=CZ3ly_u5IGU3*(X}0&Hif*(r=R4XbYByRvEPcnRd9OESmpu=LdSK;u
z*S$E7e=5O{gY!2axv~g@j+EGqO1FQiapC8I;+Smv?MD24N99h1a*?t(hsWi!b~Q_2
zC@OFbSI(3TIW87>6ZLqGM`EMAS}f|YGX1|8ZHLT~H4fggLC*f*KjPEh>G51$vb^67
z`?xncCU)=kbF608aUMP&Q|35->QmY+MtE}c-$3U1kz?nx?hSbE&zb+ODV&6rxV7B0
zz1zMHxx>c$`bBVWG^OZa%u2VZu1oz@@3xDQnY)4%Q8Ca%@jGblp(fgm${R0BU4K`4
zEb}vMBr|t#h>az#zYx1tey5V}V?}Eshd}XeE6sLyEU$oHHbCH{>0{+#49dP;WDj~G
z8t@bL4=~vxzm-%2dvs;&?md07H}eApBlYVb5DAaC!kIo?Bj=MWnU`wqCr`Sh_*RN~
zkw@^x>w-!aA#REM{9_z}_7V}1SDpMV+w-&{&EQJ`APXy->-Hc)DI-T}!-&W`I4)T_
zLs?#&tYE4vSla~=7FtsF0B3r)DzrY#-P6^jRa;zyzN<Sw<91X-BZx+}veD(<^RbuX
z6O*r|reDv@&b^smc)Pf?{BGs_J7v|2PiyO{I2MnVZEd<i(4OblB#AKF?<eD;k^|bT
zvckU7Y{o9!oXi{X%xnT_U-y50d6)%Z5Kvo|t0ZYghv7#YKgVTYZ%8uB!Hc(CuEw9A
z1CjW{3Im|2hka_T$B3SqBSQr=d!$af#Bc{@voT4>sTh*bW?6;Poo0Q$5P#=qpdpJ1
z&M0oVZO{#0`8`K5Dn}?THCl=x;NAR|XHJ#jZ#2CS_R96v>Bq;azeOADI}`Or@VF{!
z{pQ>d&!LqQpPUf6bj5El8=th?mjwx=KJX6WVX-t1m52#aHn85R$z}T4)BUA3_g4>M
zrb|_B;ra<5(#(>qBep+|nz)HyIOM*eF{OJqTXmL|X(*B(h;Sd4Wt$XMWSj@Lwr+;8
zC2boh(S<3ZQ|``H#1Y+2_T1a9J<Z7YBePr>#Ey=EhVO$=vmou|NWF(9uYuQbbRX#-
z>D?R<9)9OC3K$ykG&T`PRim0a;<DN1ZnM0Rs6wewa+l2?iuVl{7@>J9DO(8$`N5i$
z{E=T!;Fc`6Wi^0}wqhuyfO?UON-C*S&@xfT3+ASOidu*q_b$rFD{%En^ODn3@$_K$
zCp(fOlwteOCz|P}%U!=l!}q1ZV`5**!WMnLl!q=yaH(kbT;hUR^V;51Av}U%V3!ya
zw;JX=3P8oylO-rm(?b}#02jGAIH(F@WhSDH%0%OU5}gDsDppFRC#vj@IG=v*Ym435
zVp}F>I)>To4el!1Ln0ibLjh1rS{HzMv;T4)w2fx?__TEK?$-iZ?x}$r>Z%$W5&YIP
zU%^cR?nKsHe}b-by6>TPjcN&HlzI2@mEHO++uPq{<2d(#Rodq$p%{n8Lq;l=W(tn%
zirLFh<?)sS4t~31;{(SO5icpm)=#czz2%@#gzN$>%KDh;vj3}${8hT}KcGUpEPdwT
zA(+WZg}s~SzEfPbM47`O{N5#(clzAocuRtcJ-Utg9!Pvg7UYO+8+?5$Iqj_*GUfQ`
zj}kcWSq4t6^#Xv?j;@le`J1<m7=Jw%fePBZtmK6)1^oOF*;M!C!DiMbj!9%o989ZU
z175XGeSW#9l}64zQ7}dF#yXCStz|{={O%$!3FqB3`CJ%!`}B5>`GYvxv6OF7^~Fy%
zrM`^PX+?TG=CZ)aX0v}Q06a+q{!S`+@8ZH;+ue}Ho>SNrxhbph80=vz@!wg}ID1AJ
zCXP?5Vlr$nZk?GL3W+@6eN44+g{_&OLtFd*D8}TzK8_`(TO0R}uyDKNXi2!#xbCU{
zQmX>>M9g6>-(R`v=K^i5L{=kO;Bg}Pud6T<z4sa|=K@6|Z_H4;!tyMQ06MnV4{}13
zNnhxxToon+7=N-F0;v8>ej}E7Yu+74!{=SMKj;<^TWX8&Q6A~%I7%`wsbVfXs~h-g
z2pda<Pz}|lV}6qX^w?$DX73S+H-mA8hXS=auDTMw7D`r~j2sOrq7oh19CrRX%y|4Y
zU^GRhUY3Zm(IU!=#AX=vxXW$y&}j-tFg;He;4fU)lN)LW2IX0C4!0Tb*ocCP(uiWv
ztO=+ID2>3Ki@{BdSe6{;)th`~E|280d3K!NmgebCi>MYVA{soZ5hf-C8^1$a7Bp&5
z;0cCPPBO%z5g}oj!igy_weQ7?1mVC6!)afK`Ft|}AVh)!WbH)T8c%I2_5Hdqy&=9)
zvSac{ZE50l#D-zXdhjESFNWrCvH#P54ceafjNIK0efVUK@@>y>mdtrl0Sy<?_?0)C
zpmtJ;NUzrsHJVFt2s4BK9n)2woXfa#QjMl>FwigQPCHGn!I(A}U7vhY@a&}ahk}^N
zO{4jem6JM^=?1d~{`vCXCy%i7jrc^Pg{ad7)S6p5waXkZn2pukm=$N0=}JV{DT2+O
z>e;lG*jNbVbI|V)D|oX;>T_C}7NPrgg@<qboLQTK$XIC4nF!;-F)HA5g43>1i-Fwy
z<JBT8^kdO=Uu0MD-SlbKZr8<ztKs?4?wH-k4o-FzU5&gSj5M7a+Ef?*6=3dJODY|J
z#zhjAS{Pl0(SWZ6Ypq30cvHNziDi(ywXPo1me!D0@0ZiNI?vYwV6)<|^*j1qWi}8$
z?Y_9VDq9gwL?BGf!(M9y{iIQb0@YiSdh4Ryx5~QVQEb7$61fK6sC5jNHO^8CBvib{
z{1+v-06u_t_kD<Af&NzmI@{ZO*7#0Z|KRTQzmVbkRrUWVB27$zS6C_e0}^q3r6biJ
z7qx{C*Olx55CU;cHVR6jbqQ}lqHCzdlX$2`meizch*WX=#2ym~5HdC!uqP;`iqmkz
zD^kE%NXPF<83(2$Vz97G2lTvcqg-+jd}aA@UO1hnSP=V#^k)N7lA%A{&vKPft2?*S
z^4&f&NqDnpuN_Le9j<$zFp5DR-4fucu8cc9X1=GvB{M?Ad9z_a_$dR`_PO?d9b<!G
zax!v|7FTa4J6KYJK;_#8?*KGvIQ<@^x{1TbLqm=3q03O+_1v3ER(8qy;Xsn-CdkBE
z7%Pz#Pe96pSPupPSI}7iOEfv8lY!cdiA*?q$KptXS#rJ1?7~dM?YZa|BKv3eB0l&@
z@HB<LGyrzFe)WG&`+m7+QL*jXW|a)I=PgAxtkRL?OF-V{>k#dqO`8aR{xf^d{{r>;
zoac8{Y)amOzbR{8q^BFVTCY9FEAk+DMWY`5TnM|!6$5(zx&$p#RKaa3UK*s)Ygsn1
zO>#G&-aVVP?7M>@{-x2q>iC<YmDfSopBV$wAwYjuQ-t@Ao#<@F{6rus{N!Wj!+A9}
z@Lx53KATB*z-nCi?sm+IscKp`k$rsmnyB0_xl^8yEWraI=NmuKie`qHsZvhhVB(F@
zg<I$t4HylPcmxHIpa&!XW0KGWb;S>b%t)P|wy`UPM?-0jPP`lRf0#GEeU;f^dNXrR
zef&GG<`ezaZ?_+5EK%MOGg(%zdbIYx&zC*oweMF!=biK6E<$^iH;?kTHEt2NSo^Ql
zf9-mBJ|_9eY35I%<zsX5pzQ14?=IXd>r?<2$Eg<;b2mPI3%sGesr&GcFbey9?E3R&
z@{6+Z8UC+akIr_J1^=b8B>r*>xp!BFFUI{~;6KE*s!LObs!UcNRL+71`mbQ+#rhk7
z06|r@0u*^<3sC_p2*M1N#f7$kV`L32nowbU5PvXB;~G&>M;O}yVw>e@ed#%L``Vjr
zrk3xZ+q#DBZe(j}a%VRfRm7#+#>HZQU@HO(w_PH#c(~e#N&4yl3=v%9b@~PJ<1{v%
zCC=#33vy=r^NVl{QCkWPe}Dt|Q&|7g0(`IpW3ZwAWA|Cs?z?xO(>FmBd7va7+!B%C
z*%o&_KbE!#EO7`FZsQ{*#_P4kzr2vSJjw+Amwl~~^`@Q*@#8Ik8;Z)Kh>iuTAuR){
z%R=!UDodkT=!rDC#5e^q1dn0yN=o3ZNT_Be>hJI{%D5${03RyT-1A1#WF^1E-jA1$
z%Ya_)%~Oo9NubE2@vJ1>wxm(lL<esZ=W)gxMKqTpy&-4<qgFB*s@3c*SA&Xw)I-;$
zk{}r3gPe=YmIX;t05!`XVL|`P7tSY)zaE0aTqU6-G9h6(nUOuATSefDU5aZ>T0wpK
zsvY<v^mcsG<yZ}n>8%RQiN8^SdK?MXw#&M`%<{QDW!ivYuPEWG0fX9j?2)Ll2<z?7
z0FW)(n-L*GarHat20<<Wy!|Y3bQMe?Le7;5bVvjh-%YRTA<*|&FX<&WX*@`fg9;f;
zCj;}7F9xG4xOvCvBpdGFWYCS;WaA2$fEUPA*{yRpuX8p`8=q&gF05%Neyx~Gxj0vS
z!j>sYV;<zsb}L5$tq&Rlg=rNW5OWN7gvAZfbhFuJ<J25pDN<`RTop`FL=c9^Z7Bn!
z$x1?1((VCrWYIZ7$)L}j07o?4f~=j*XjmPha14>SM`R_jU;Yt`XLlCf$^zX><__J>
zz5$XJ*)52jFUpLf%SC_~0b-IBvFBN?OlX<US|Gu!+YAIyR4=<oaH05Nso-sAwk1h6
zJh#73LCA#=T7&`sAI2MY=!W@ZM8JTN4JPj7a{sRE54Rn|6H9mT<%dHh(IT|19HneB
zrT+6EvSHEP;35bjM^)@LmCD0p`-ixS(*E7jd%=*w<nrNNn%A)MH^1)Q_joWwBv5OW
zY`tTVt^koafT|+?Olp;^dt8hTSYSyxqib1iaoI~s5!-sv4`9WRVHt?>5Hedjq6%Wa
z13;>&35i2n>=o9cN~Q6<Ww3`hV)lm#>1&haoMJVcz9ks(iV=?Dmxjfx?@Tm5hla}V
z?-6(|EXq7*!6`sG>s>k;3J6RF1uPotvmuskHKlX8jJoPt(RDa%oi-FGjfZKA0T35$
zbw+wRHyZt*7#%M6I`qvXGyw=S$nDq^CT@db9qKzkb%z_mf#QH*HDTSXx{>vI`E_9j
zH4&4a)z)qTy=@H-931}C(aMKFq}QnnQWXClRR-wk$%fP}SU~)U&b3ELbpUVY61rO$
zz@#ng=VIgNuf`e{DS1n6!bXVG3VYWx-No%IOlVjQAl4d2_np+Jcp}#`NfZ=l^y^~g
z3ugO}SmEqe-oQy!;9FEq8>O&IU8^YgloR=Sg`W}8qASl+XIne!Q|nRD+99s9_>BF_
zZ@KjqcrNzw7^3yz8bm4w%Bdtsw&2{OAein7N8f3zql#VG1NA<8d|kmc;=%z-b>)hX
zZToXq71~m+4@-~t#hVwjnk~hBc^x0?$#y8cY+wCdgXgs8jIaHYbzc@Q_azppjR9XF
zwoL>Bu4I8m+d+Jb$v%f<#okCv7KrB%#1%&rYkTTc3c9l1sk8*LaO6;dpu^RG&aa+Q
zYCBEfzKY%)+M?hA9Dtk1Zflu3XVv{dU){e+R|MRJ_X{1XVzEtqnhOdqE=kwD0?=0n
zEAK#h6hNu(dmi=Dp;Fn25!dYmON{WK26>u2bZ0V)4)3f88W8|ShtAG6LDoQ}!9ity
zu@6fLvN})PesbjgVUDwUHW>_Ql7j{Plm?PmZxVZ-hCTDGc$Ra~1kOtZ2~h+M{N%!Y
z`b9CcPfGZuqU3{Q3kqi=sXN8n_j~Y6&vpv}x70hgwfd`bdt<-%8!!ztw)F+%u!!Kz
z`m@txU1Prpp~~-uxXBDGh4fzv;GUyj7~}haP6IQyw0`aPh~A`RvG*G?J-5$RTjGMS
zN59b18o&|z?_()yT*jI<jn=+btDDkR<i$C=hx~5)kBu2O*zgHt@mQ6DYlaXs1Q6Dp
zZqS}#NM=~N14Jh?!pYnnO7xTFu77{}s5v)yq=YVoHsngy$n)7@xiTK*^J=vNN7>-;
z<R&o21gm~ZE74}`YNDNgS5jgs8pWkm;@DT*rVjZMmUQt%rj?Kyg|1SEpogA~?IiM<
zGSmGmXs0vww?BRodgyi2U*$!cs*B(FngI={j>LuctCiywr$T?Gyu8^lP6r%{^QQ|)
zL(-Ow&&y4Ohc!o@k85xQ7>m6uuaMdH8;a=XE{IOp+aJRLCJ)t(GMZm171B&U5l8I5
zh=}8Vp#YZ2VXR(dFL5#++JiUIO%-$VbZhWVoC|!CpRWHBqC;e@<eoY@O5A-rg|##;
zm1rqu8>&|r`qDdqb$t2R7~V~U7vt6Fr$S9{F|+P~`fALHcdi7{cq1ny0Vgwg@wj;R
zsivnh+^%^it|KztU@`3QBz{imV0L_V1}fP?b<slN1Wq`95k7I6p+Dp`Pz6fQ!iAk@
zRK5tGmCZc2EM!{Hw3Ba%Z+?7y?n`ciXU~QNXCZ$&sTHasjMc{z#9vpsHgEj!k_?!6
z27qOQt8)&fH)WyL1Zq2iywXsc)(1`V0C+E!xnTCywnYE%;p=)6<i-zZKY`9#lh#mD
zu49!UJb=N@8R{65tQeEm$MSk+ZSmRwweumhRZ9NY6f`MoSr)B-;a46*zi?|-^Cfz@
zfuf1aT5{k)rF~u2lzjW<H}58CUXq<J9YUML%?=S-2$Fes&~Ktit(nL(^Z5@$1rSbf
zrDi8_z$-7?*a!$P(ct}i`gUdnKNIre)=iOYrXYB?Q3I{V0NtD<;8i)@2)$6@Jo8Wh
z$KEzwP{jMtEEe@Smg&C*+1c-((a$v24*;HkbB{QlTzR7Y^^vt3yK{Ejj`Ko{gEP)D
zXo&3-_u#@-S^8&5HEL&twa!He{>L#Jf=#CEr{#icEnrc6Cxx)6F#Yj4`hB;+O2cZ#
zoppFF!0f-jpAxO!|22B``478c7MoMdYZ87vm}dEO{u=5H8)tJ?97+GY6dXUem^J;8
z=^q_`#ydCzYO7~6k!eML{!_->qsGzoF1Qx%IqT2AE0nF*aJ!-J<+V%#Z))bfe^v58
z=dVaP8b6oWK5yrf>I`kf=D4DH;TPj0igbL6VDbC2BH%3E+kqVW(R{`g+f#E%H$!TH
z<h*x>UcAL<mcGzb2L2D_o7NxSCelT59XD4rZTyE7`QjuHC`CVTr+zS^o6;U|vv4Kr
z<2F=Igz^MZ_dJX(1`zjc9Va6salD~L7UXW<vkVuJA+Kwh?T%G&EgSFe(cf;#*e&MW
zkGr>PAH2j^y}M1=*Cp>8&dJms?WaDXEBm%r+cNzY-mWiKo+R__|L8jFho;_m0WV=2
zwb3ct=<cooqY*|ojFBQDEePu95h7iRjF1)(5KvJ^ibaEf=y!w)sDuJy?sD(%_xuIt
zr}LioeV@<sJc?Pgs{K4$@rC`&^1Pj>c{gVB{a5!odc!2fsVH{T@a^Zb+dC1W?{h!I
z6o*~oluoPD_+2DD`@YeCL~%x0Zn|5hiY}XA7mIe2Z7PzLr@JjMhEvOG1CV}l6Dn}o
zKpyPLTM|Hi*hIcZNK59ay!@VgZ;{NKjc<C3GK-wW%XJ4W(+bW21%)pOJ~2vZbNc}!
zHhWl8^F5x8by?pHH>u+NV)hL_PGu`o4TpRCfg8%fVk(L_72Y%zs$D0TqV8C)PW)%$
zaIxX6pCW!r&*s0+s&hvjKcOx(;gUOa!#x%B-0sRtRsV}E2UyMfZ$OP8AiL%6ldfZ#
z?{tFqzWv;dv%7Mziw!}hYBh$;#bnT>|3H;I8csdx)9hd63)QY%{F;ITWL^YPo`Q1x
zKKtuH%I($5%~d6xekNe}4dwtw8_W;))a1HGJnEIq!#2r`J=JH*ze55xlRDMhzx^H*
z{bM|GRI$f{P!xB&k#+_2Gj3j;>Duqn|4s_8{2_6S-&5M>ecmIbktY+|ER(#xC1>!u
zr_Ietw<IRBc5bvtQvdnB9s>$t8!B*@_as>b**ZJl%`@M`S|?wrV=eBErPPs%zi2K?
zV9TEeqvZ1)J@1u|O-M(zn7VpCZ~n(XpODZLn4xcx`&ORha2-2W0B<(rCjz)UYfaH6
z4Q9ef+W92bR)l$pElv%}5AzfCe<$x+;;0N|b;Rl7O#1Y_v!U)?Ip)q3M>ntBLc6D$
za?EjJJOWwaQE|Ca$D1awOij`s3Mmr`b1o*F@nkF-c$ryUO1hS|z=rC{<!?y1M1*FO
zKs5O^_4M1d4$N7$k%gn_Y0;l@_JxWHUKV;;MH_Pi6rblty;>b3YCv2up52nY={h~t
zoC)9fuSO^AmD2d7VS=&4_y#}(Ixdl796<r{Do#hqn+B%mGKspu1RRgTirTBV<7WkS
zFou4#bP;_)vB1g8LFb?3_UFsF-hFG>y%5Cy4tX6^<&ex9RcD=RChn-8S5Wn~`t0}G
zzmE<a9A1{Ige(qL#)M4OWUo%BRK;!!$KkmA(F*t5o|wVaiD5tE&cE#l1Pg|X|M>6@
z035r0<)-F&%Su<Siz06aJ}p7>sO}b<rYwvPW)*%)|32vigD+vOiu&3<EZp&^;?gPb
zO}e*IeVUJ-d<;x_y{^*99Ei@;EId%d5C@G~NiBUKzeJ^;Z#mi=Sis0<1pz+R1`geq
z-C(@&f?+^`?&rLdyN^*;@-w4crfO%+xIMyW#`yg69L5EV<j|RHdCC~5VB!~4sZh-7
z%ri{3^DdANuZ|j$Eo(<jU}IzNJ;!SGpe&>_8XR9LJa~my=dt<h_)6uu{M;+73&tPJ
zqD`oU?oZ|w_o%-K|9)2IpkbEGvr3M70l!dRd{%4CxoB8F8#O;^g1Rt2^ZE%Srq@E|
z?)<Dxb~*sUX$$jD1FAfBcCs^oYB1)VoYZJf`83??b6hV9-Ji4fh&yujurYIa<0MuZ
z`^GPY&2`B?TVZi2pzy5ga?r)kJhs8L*Iif6wcK4?Ie+i9>s!TYpQyJNhuGX!qn<0g
zS&f-7xaT!Dd*RKyOKaEN-Y0I~y)+Rwq8|$S9nnL(&dz`Thx4^8zzG^`VyT@@_A+(%
z&-7X5>tWKB9!g_g7k3AwSv4$?@`TP!uBBrXc~g;^w`S7h?0s|)+4Ulc{)q-pPJ*tg
z%vA)Ww2hUk-zULp@qA?-=+O7t(iq6asue1Ped#<d-6gBQGlTP&{?fT-U<!?uB4~Me
z8!IS1^rhz>FCEyseAPUxwL16_BM`f8E;QIx8eGK>?z5ZP>CK)dU+5_mNDT$%@jm1S
zoAdkUwwDI19=ymgF*&FcRvAj;l9u|uKbj5me;6J9PX7CAz5Z3$bJ6lLC0Q5gzq3ns
zv~@p@du9EIo$PTH>7BapsnWAXN@O^k&1Tw5hnIk)llgJDyt_zeig6k?!QVKY*Et~*
zcnQ%d31z2kp$EBpKmF4JMO5B|SvXSPU&ab54_*Cz5oH>N!UO6d|I7e6dlHyr)6<xr
zU^(swoKA*^ulmrXo_-c#z4G?6FAAda<XiPnirByiEQhB5$+%NGm3%ASHbFp7dWz@I
zgImnJTVg0frOTHoP!yigl{Yz108@roegn-s2zuOM*=t&gasiL(i*#zpY;tn-kB(qY
zl(Xeuy<)YJ9$d593CVoqo#(BbSFWA`z2a!*R}z(Dpb!X?L8gcyC`b_mj;ArlMDWr*
zkR~q>V&zVCdPOOeEdk)~OqilpVb7!+(D}^%o1y?K9%D&sXxO}%&`0-YM#z~+5;s=m
zmSr8G?-@#^!I3|NG;%sZpLJVCBG_DK)QTORUE3;g$9sQlYP8$(!IxRNtdGyR!lFDz
z_1J*nhyR-j(}uVQU!FkSB#>E?kji%ef=DpNnNGkfv&-{iie)CFVQv(VteDB95yc5$
z-NFVLZhp<!2Q(PDB)s41L#3IT58W~+0u3?Wrv6SBhq(}&^s>p5h0R=1O3I>tH=mz<
zx!*0b=>3k251x@FsN<&EK~6B-YsdXu06T3ts^K|%A^REtd5Tb?ktt5;hYc>dp<34+
z3@-F?>Pg<WRX5z3L9@s330^m`abkiW=RE_MYe1Y>Pj6IQzE{0Z=R&#dyk^G5REb{S
zw(YlGFj5Bu_7B>-U#FFTxvlR4&&zr}@`QG?1G6W+KU!>5Eq1o{HolLQ)my49Eg)sx
z2|xQ$HAIXmeRy9Ge?2UQ`_aRNzojCC(w#K+m$sHC&W1oa88;VCC{^~T!?#q%FSqdZ
zg>^<r#k6W8)5)~Hl_chT7hnkArCBI1fP+L+QV_d!%4?Eeu1HEV<L+rajW_X!l>tJH
zatWzAnPe#Q0U!oS_x{p;8p~=9b1FFxx${M>W>WzadzYsA%XtmD^BQtZGL&NC(=T|f
zFk-7!&ytrl1T@Y=V=DNJ@cp*fPm@T6<<e7hIJHqsnkMpDa;wXT!ZZIOjcd@SN|HPh
zSSW!FXhJM*Xl1%QaMrerJu(YFKr`Z^n6eJ@Gppd;{l^R<U`9C0#{Ciz%++TUxmthr
zBy9m}^bR@cEpfkLsb5~voEh<4kk>nV=qc15;Yb9ij#49C;=7&<AEcs`Gn5!-DkfOE
z7XdZy9`ejxk&E89()r!SU(yqCM?`&KkFWV_>yvLVPZ~hK9|v-VA5vMqz83FUR=B7*
zT>YUv#O)3wn#Wh=mY;q|T}Q+Wd*9vcxJRX?QYq6Zxe6#-+6uDEl~(g5hV#j-FtK*e
z8R(Pfvi{WxX__WmH(SPyYoNf<^u$-008PX%(zZTx;)w9p{(0%Y-L^@%@&ERf$X<F1
z0e$l*G@0xqun!QQKkjEDe?>UQnR4@20HujT8BCY@UJ}qu=<jHOG@ywXwf}*VwDCik
z$bzK3ROru-^-+&=1uloU02G!s1P<Y_t1M_HG3sqN!t*hg>z{R~1Y>ykIyFj+bybFG
z@5j?Z<bL^;XthD_e&ovE-Q2-UsD9#4xmAOOj|i3b1lAt|rwtA+ar-Gt*{ny)sUYqI
zvHvqr&}LGrhU<zx*=b1<BAcMnP_AXxAyw0GVB_JRwQJf;@{2<ojYbALSKa|;ov5)F
z|J?ep{CD$pfZ;+ri~nb>SLtFCL!t#f31VL+bx@8}5V!aqKxn^H*#GJYsX`3GK_o*x
zBfs)jC^X6@3}LL4Q}61c7pO?x85d$~I1}5Kzm;t7B`%U*sgVJkQ7K;(xqi)*UzJlL
z49$s6KY7pi2N)_3Srb!=0p2<TGGos8au%2L_EFAmsVjVk;j(wMnEMyqRj#w}S_B*`
zR*MwdH`veE8~kXx_ZE5hNG0;W`}RBU0S#`C#Rh8)unE^%v;FiTf_n$5DQ}miS{B)N
z+;KbXso&%|zMt6xyj7IS?D*-(!TmmhV?AOUV6vKS`5QTYbedn!%a+*L<~T!*Ap$MB
zt)QYn_^<UueML2PGIR+B4U@M1l~p77oRdTaDZ|L*X}0iba=bY6@7Elh9S_Jza^^Xv
zml3s@=Mdr@<dYF7jt07H^Pf5}x^*AXv(IrWQV<;i6KIBAdA(aiW5%Q~-L#~56AY~P
zZ&PSM$TpitD@5qCs@?Q2Z!_e)a?R|Ba4hC#7>uDq4urbdv*Oosi-w_81c$~3KZJVY
z54j0~szVg=o3|m3Bb&oML2V*YD$V@2n@)?|$*1G&Un0|cjnT&x8CMk3yR?^Q6hMk5
zEYP8i+aam?wH!&2Il`#HUJS3zKG>VA@e1=#J%F!&c#r6haW>|=tx|(4L|wioI6uu_
zSSWqw`tZQa?)>ztGb&6*DE4hM)a?dz3@vCCeuLJ6@Wiq7Jm<xv*3*@rtfT6-3i-XF
zzQaDF-_O7lXBt%<OhXG{XUJ!mqmRP21TXD!Tp#8J)N*mj^IrmTns#}cE2E@1p#jus
z-%~jRofS%imdt3mqM^Y7(7LRZK{DgXu|hsO0P08u`_kpGpqH_nFZoj>-nKw}iyka}
zvM!1gk9U-6$wWIlKK+M7Fv$PG$l%>!VY^VRx@cJ=D;eV;t>jsWavOutS;;8XA^z46
z>7nA+Y2w*b$hWrYZiqrIPC=!4*E{93dZBn?`dAZnVA&1ndWklU=9LAr>eCHy)B+f;
z7K>tGr9p9&ru9kKA5QG?EbPm-p~)ig4@D}79%)bd<>m_l{B&raiJFfYnj4~+O;l4G
z;`%Zo-2D8Ec*L3fJ#6QuGMjO&a|~>g6PlhXZ>Or}OI9S|R5{Fe@_N+gqS^F;N;RWe
z_cnyG=&I$Nn%|>gk!lQXZZ)p>9`Tz1UXT+jzFWJVrK$T|MTv=^K2?EZ_{?3R?rcoX
zO1GXCmxk2GVyxQ3f1F6~?;PJ^6e`<v9&cL#?ulWf^p^eg)S|sLXU`}(Nt%2^Ey~Ns
zuT{#I+^Zr%W#QIcA2abdz{_mJ@^qpt9a@xbdT<eD7z;BbLiy=tEwh8~ZA_QbjACEQ
zEZe-vp&?Y#Ebe8QV@O+$C8d8}%J8lOtmiL~=(UbwWs<#Ov(MQYSr3@j)=1kX3iGOu
z4-^g^vDb0BZ_mkii}7OT*(&lB29&Bh0x|cTo4t)W8M(*=gl*|?epr@Yvl<7g#d=|b
zeR|%mz70+QF#6bWp!7|vrn>8{=j?yd;d{*mb>w2{h*(XW04G6AFjc-|6ty_Nhg=Ya
z67`1E)nr|uilvI~pTXkM*3L)VhH)6xQjyzuXPYeD02gk}BP-rn9$yz;ZxiJ=DlU)b
zcQc=db_7B}w*N9)ob5|td8JxS^=>>GY6;nPWAi)!He`FLa6~CijMF}Y;-oa3!yD@*
zc=)%sWc8|xzNj(OmI|b6_|Etvi_rScMAKaILvM1Bt{F45`#qDo$M++d6PGB27@PYA
zqum9=0`eNx(cH9z-w}YvkVyAJ{LM`KSdOvH*+%Bi-T`>Z(kFa2TzqqBYv$`v_q0Hp
zJ_hi;6=kbb9~EsQ3SOVBUmyMK$rkP7bPmQ#1VgYdFNbm-lcl8deRF|!HnZ1bVIj{|
z16k%FpB2m8`vT8zgrxO#a_0ej$yemj;6-ZK*}m(RMX*s`-;CFP0LG3QBw$qpSd#wM
z6Cm)gRH`HunzIOhe?MrZ7HS>htT1xH3lQ;vSD+CuL*0lB0O(FG28pD}?+#sj+Ut6b
zH#&>=;>$XI!8aUeZuf1<ePq9&d#EaOt%_t73FiZSbT#_AtEgG7)WYK<W5@DLCUD`H
z<5qm=gE;xXg;2R3A^WX}?|t5{gTzGq=gySa8eD=beII)AHL->dYlj0~r-E>$43UpC
zzwf2$rqbG3w9Cts^8&R%VQR7nPDT=)*;wwk%7%<|PEs?DRx-VsMZA&=N@l|(LD7(b
zA2e_1R=8MM#T%XylH}7+vKL!4^-{{5##Vxx<^@f}ZrtYa9JQp}r+)g0eh`=*m{O~C
zj^!DO-2xz~Eg-veB})VGE%p<dIi=QL6|k0YUG5o<ZtXpQ_!qNT#fN=`Auh#>xW3l*
zCP#>B$CNgX&^I%$(;<`liG$_*sR<TrZoye(2o9o?OUvmeWxZ_=t{i~f8c4~dM!bnm
zJ8P9~l^61C4%T~eWrv-CqlOz>QR=j7hne%Ikk?UG`9~j$tt({hv>A@))i!zKAfR5#
z6|Iah?T4=_5~e<Q7i%Og3_$gm!~7~T-026JR47yWf4rQiV%K6Fk6xx_o(T?Qo}|Zr
zT9R`JNU$k#U5@*G8o>L3;QHs1G*e^M$_R5EJLUtcz$phku`+-*_YUzp(}Po8q?(oj
zS2$0hg>}Ji2yd+V^^kQ5cA60$D6qBv=)HO}4VTqiG}`*pj%}XH26H}G>}LI`JYyOX
zDGs_?$19t7<7W5m5C;GU`Bku$m^0c2TSWP9{mjFkw-+j5y0krKmw3Bg#J>mJjR{p3
zI|U>zvy~)jP9y|y3)<EsQnRSkYls>>zO-#hG(WMf4ddZKW8^$XRlnw?7E;Ns521fH
z>b`me0>f@uO;-mQ*ZfSZ;!v%xFXPI9HN-3z_5_KUE<jJ`r{tM17&Lg^xZYg1lt6Cb
zpnq#mRb!_?ZHXY7V0+vU${am1{CN;x(kMg)?U&t~SZNP<z|Gs-_EfihqYw7VU!{&%
zI<unc1At=5Ksq%Q3X0B$bU`0MyK+0e{_6N~nErl6c>Sf!eAQhKoS+G7gpiOaX8Y|c
zfAEv*8XcbC?iEm<ptbWlOP6Qc{koP{g1s2>y))?6reBKbzq~{)v-1-{uEeL5+Ezbo
ztp!^0*XNUm51|Aagn)yfzvT>nf_$3zE>G-Fddnz^^2#{(7M%CuzL8$<kBj%udda2V
z9Ox&etm9yK|0458z4l&!Xl-5EqsKl&!US}LmPgdp1eoeu06$GQRj{i18MMIbLFG-h
zb+0Z@awCTRkgyWI-HkYY^c3DKz*h@Qc#D@=1<5Bvm6OHT|3oEeadWPMc$1-m$$fV`
zA6*cl-Ozhb{^)_4|6`B0Zk<0-&b7lz$;#g3mTJKoedEIaUiMrZee~mp`N`X-EL+cR
znvRbM#j6E8yZNhS+qysTZNJpT+iLAlMT>_mZ(m&eeQ81R(e>6bxbQfOP)ny-3)hJ9
zai<FTk!qJer>9`(3C)#`W7m&Z{{rB^uTLJ8GfMbiY_l}i+i0$n6~wwF%K%Ypg~-Y)
zvc99Q>pnT<7BuyeUND@(k*>g%5DD)X65UMxU?)8(<Nryq_P1cYu7Pf9JzCkhuGT8D
z=sZSgWmx_Yqo8SeuAh|eeMLf=YeFE+WJa0I(1+7nMCl<A3xh8-SIqz2czh2$f8(#v
z@E7s*Lk)GT;#HC&PB=AjP5#(l_m&7c86=IsZUVHl9oHoZ_vJ?S6nBQ@XaTE_3}V0}
z^klVax<UQZzl;9b+6@M`6cZ%Z|Gx8URF=i!qx<=Fec;N*Z<l@6&S`Oj{xzxuyym(J
zyDYMpbyvJyMA>opjmzWUEJ1nd{GtSyQ6nhwIw><ZC(G1ROvg5G4r6SRllrlL^rNXb
zSL_+AoqAAunnmE5PWAL2KXFqW*aQix5ytBk_?l-L-W9}sG8Ee}8{QEcRoyog*H1UY
zluCRtHA2J1_?kYUHq9({3DZ}r^KRc+F&wY__xak*o+-l?O$hJSfm+}D)KicnBEa;v
zulUD}`kes$Ltj9ZuYvn}&yvdrBG-)Xid&xf&lW3cW4K|d?Mvs3m(%>uLRNGEpi9tw
znvoacAl7vF?!))&$Zy3fAMDeP{A((>GYF(>w!sX$c#1u4!@ikxn6!EPSOA+KTJo>u
z@-JT<H1#Baeli6;Isf#7&%d8{o__a@%y4b2v1$G9;g8_ST#)NO+V4l=zwd+pnAHLF
z0Z{x6{43GFB8%Rmj9>M44%V*y+kX1*E92jR5#u`U-_cXXUr`uj7;`UFA6xuFqGvnV
zq<&WBe%NDD&x%6-=f9~V>nabz4eKvH(0EjBI<oOi=W)c-jqkq<p6)TgObB*PUcocN
zEe{?Hsp}eI&8_VmT|IqC!C?{6@t3crW@2R&yA5s+Q(8N^`yM_S9)B@8ySNfxRQ8c-
z^8VL95Hkx07oU)*82Hor()|1q{mVB^NjERQfROVSV=g7d6s>FDctf{!y4KXz+0*~%
z>BzIrBF$nWW*`9b69Sk90s!)IfNy|YNGmV{000PyVi3}*A{a50f+m-e4!4S~fVu%j
zLP}g(Mnz3sNDC*TZH(17lQ6QBz*)-SZBGRfiWUSVOM;rMlNP~Eo8YGJ?1i(o!@2q3
z+<ojlyzpNBmcBvO#1LE3IYRJx$IuHd=OaBLqP?Ty{9+RP;}U}subjJlHS9{t1#)_1
zT4r<xC7zO-n46!RUvRacD7CmWyW(bXZGBy5S5r@K+x@=Nm;C=8CI&7g(o$aV#>8d;
ziJ)6E-8_eG%@MQ;b`Y~R!Lzm`*h*g2{t$cEZpWqgb>LQ8-^AX@;MJ+U-wbj}YFc_m
zW)>wo=L(ysB$f}7!KdPrdx=S0TuO!8vZTyZT+vEc#lJjCPRs%+$(-G0#v^&!)9UC7
zL@LOiwZVvsJayzA8VO_*i*&5FV-vZ7#IveMHMgAd)vNE`pW@Z)8=I>o@}lBOa!UkB
zNvl08R>`>!1Z1`4;c;DqW#h^_IcysY$g9$YmX!{~=W&WU527_UiNiiBmX?C+`w%HU
zP-*NR{^&E={3<v~RGCC30wqTZMXL^F<U+wQJFCxonx+^vxHN=FG?mkV2T?x=3kuvO
zB>$@VtH+6y9>HJ;k{Y80MN*i*l)%T*nL{j`=F-yo`|J37_b=RO<~PPjaDqf4IsFqy
zak-r!yFNWS2|Ct9;ga)xHE?g^*|nX_uPpv;ND$OfP`T?MIv9CVj|JWJbN|Cjj(j8;
zSqo2LZgde6?>-=Zkp2m9lfRHI0e<NMZE*dHKHgcZ_b)CxJBkYupS;L&PWewO0H$PE
zP)Y(Ehl3D)LbZzNm|RY~uJh#`qmW#XogvLqtcI1f)FQ|3_{vR^MzHDT2zMZaH<X?N
zlWZnpIY#%5IZp{IQ&u_gJ3wpx@q%F_UvM*H&6j^i6346}3>Z#V+A>dJkq&xRN3ozF
zO;PbsCP!P90p%h72S>alRJ}Txz^ZV_HO;Iv3P_89Oi&yVU)z_~nUyXp^Qb6LF}QSV
z#{r&lE?3J@uy$j@f-xT<S}4Kdbm7k=AqZz-R#iCTB3V}B;9PEQXSTfFdj%ik34eZ!
z!i36Fny;J))QT1;!m=F;kuL(%^X@4$Z#UkG-`Q@muRIky-@AjB1k3aSY5>eQf*b6#
zYl3g<9Dm3I=16dXWJ}G@ePVg2PI!Jwc!M(X)YmOQta5}%90YbR%f@+r)A}y*rDoD8
zd`+X~%ItOZfmkoYsi`cJ(VrQ^r&|YHIP3VLL^e=`wY(15NJ?pKHQkg8X>Ajv4{JbH
ze}d%PAKYm~sSLS;;9WYApsr}gP+G<lg6ee|L?|!Phb?rUoeXE`>f$~_L$9DpmW<6`
z=3x)Ed|x%by{l;MOxR0Mi3RLT;g}T;r}4jM#I3RP@NY8sA)D)S7W_H*w9~(_{Wz6@
zyiN1NqIO6(em=p`Xn`hXcEf_e7RdT{Gp$P|GzEHJ<}XYr73sw?bJQNrLMUghA0u-~
zEOC#quANl_593WMqBS7O=~1dE8Sk4lcNVCa_K&~h?eaEEyhBr2hUQ_en>IE{cz8Cp
za5y(`@TvktY(9da=VQL=mTn>C+yUBKI#&3xfES)lU1k;YJN))aYwyqZo2uyAvXuLZ
z5SCFEmS(_;RIMgTT+*zw3}b7Ci+3O!q%Wy)`VX^^s24_m)b$#TBIIHIFCtTZhj$!-
zB5xpHxS<Z=Lr}HaS;VG#%?=MRX$gdeKnp;J&f-ikJxZCRo4z!SZoIHGQzQE^8!^k2
zW`cG=Xp(aFyNGG&mxmGSOa+|EZQ|CaQOD(b5T29$EZO}kK&(_5GM$EzR9=4v3V8Z$
zvlGTlOhLG6rgQ3}F1x>~<L#dqix#Gfze*_1B2o2!@(ksfQT-4$vBnAuW;U@leq2zr
z<_U@cgs4n7%gHxMy=<w6Nrd`Erqj_Toc4f~!cn0ksX;(D7RskfgM16@P$_bNkq!%%
zSqBW$Q^-(O*c};ZLWfi&86p=7%*8GBqw))iGXupnVMwsT71a_}{ves^=~Q6LM@We<
z7)TcAdHMBOzRRt8pgXZbJn&BLbY7!+lhs)RDm`0H+Zf#U{B`_hfGRL-^N+j*_SVeo
zHHx?+%VkOE5!B9OV$_S(6<YeWMMe35n+6lqw$wGG<g1r_GVh&BjjQ7-ltYtWKuUq>
zLB%)U$=}e#tN@$`=mpZ;xT5h2dvSTXw=fmg?oBNUvmGh@H6VQ*nK^(tbc8X4jtCaT
z1)zR?jHtDqkkA+oZ;{PaW406$<2wCHynvpwVB6|g{$gG+hn6oMn!>fyZP0r8#x1?C
z{~^x|0oj`;VN<M4-5=dkTjpcJuHLHW2omVK#>r#pw%O{Ii*xBGqq9A8S{?4>K)BsI
zrD5mEV5ZN2ugxFa^Mr<3tXHhB<V|;uy$t=q&7!@F>g%dLkwux4=i5@b5NyBNIWHr|
zYHl~c&WnH$iyzW?q&r)>uHOw0u|XpU_5dj5<!nXlxXJE8&AE|Qon;vS^QbaHP$)Hi
z9KqistZI<VJ#1hPs!0CRQ}aaR1F|(mbfddTS_)?hQ9tDIaS4QdJVkqv`qP&BhFWpv
zXq=@h^3@%c<A(eN=A_?i?|<KCzivXObE!spKh2i7!6cI%(OqXDUeKo_*~J<+0$<&f
z^#_jfq$L-3tv#X_^r6}BQ7l-Y`c-rgI~DigS79n&C>_8$Kx2{r4&w8oL1-B**Q45{
zV8|12x1fXTlujGp0JTwuKjr0ZdO22v3|0|1&!RXDKy=Z(2$Ad%+o2S9)CSNno=~tb
z17gF`L7M)UxkcvHC?7J=HNyBpUS6OCSBjZC^+T1+7K#6*wv58nsJxJ5ft%g{kSK9z
z$US~lE8EgsSQ)425bek5Sp~>6@2%@}<>MU4fdcRsQy9er0RKt1u>`UuPf!D5(R6@m
z)vV?|^97=MQ{c5?#do+g?YwUq*9|uF)V3SS;bPo3M<?w1x=oW)Fb~A#A=)zy=?PLL
zw`joFcU$*=-+7KH`JVbujf^m%rywb0E*)1BaAa(1ox6!hQ4WwrU9MlHd*JO7=$o!a
zI@=deKS1i9=H%$vh?x4MHm5bng@&`@MP^ARY)zT`PDnErUSk?}uP_kQQOi6)E<HIK
zg?&&z$l*%yl2$QpRNhT*UuF7Wtt;K{4~gNQ&`0#Tg5ZaL#ls1tysU5lYngWDiwjd*
z9l5*R<&%evmr(l7s}X5N@=f{;=yz!4&s^+8MwQWv?47IbIJ<hl?Gf+CFb`2M_;4V;
z66ysHc;f}GV~2K}<`EO!C0Xj&0|umO_b5m`fy00Cl|TRP+1U@S^Gzja1b*xTp@W47
z6-%D&bv!}y>W*pLk0?<8_npe|c#9*dh%=H75^*<f*u*8)mi#+x@iWLyTuU7=Z8WwN
zc)WXQ>i7FSEJQ*(1*VPrp%O}eY?K1n&#+Gp5~6m)FL&=X+5g?~V*FZ~dUD)9^>;Uk
z@te-^^yJxTKJO;u&zAkuUvH-V9Y13H-M{hl&nJ7vuW~;YTx}{(L&i1spQ=3EbVd8=
zYq~>Bnfpvt-GRsbWY*?{>-(^A6BrfA&8X~xTWh5x)y6&VVzs2QnlwPNHzEAeOiVPO
zB$@SIq-8IW<x3$;5RK)@w6G*4)e*opTfqB_kRVl_7C=nHB6$}g+1Rwx@s#jS1?-;z
z@n&caOIo^v6Nf#JXhP#CsAFP9Mz(8axJxr(njy{!5W6K|+3C|pAAcVo%xw*MN>erZ
zqYf9n1TmR`p_yZJPGx@?VShGp3{<R8%z6M4&wm=XgJ?u?nI%vtOU}FT+!tX^j87CM
zY=-%rlxSnV?o6w)ii`skc#IipHzV}A*S6CP=3}f-qrrP!J0k>`a~7TBK<6W4_-z1u
znowxgnC!!`z-tahX%74h-3khgKMyY^;Dik1IS{Bd7Mhq4=p7O|$PjED66{zLvF}o?
za}a9bw^KF|yg4Jp*cY0bkew}xF~Q|qPG{`I2~36}UoHtq-tkT<3z|>x4KEVja1e2e
zIkR0TQqRk==K$H0w!bzYVgEgaGLH)+h<3UcJU*ffpA;Yk)Y*z6USlx6!<c}1U6CTp
z;z*Q>6LvOU$%ckip<}HrAiH>r7tvzUwPO0i7H8lx2j((M!$msXVh`%GO^Nvy<orw*
zBWVm)C>wLPICO2(iw7eT0g^(fNX0o`80wXhSeAmRMPI^5%WH8E0+`%NI4rGF6G9=m
zb<(xRIj5Kpqk^+A>_Hh$Otv8!@~>N|%|x!AB!^#<jXRe&P~>}lUaq4X#64m#VglWt
z%?{PEAUUZ`aVi{)SR`#*<UCh!=jG3VD?AIz*FOjGkp?LP(igGVSh!q3u;$gM2%rRj
zEdav7rNRYfSs?QB2LPUrsjw21HI7x_7*#1ISH#>6ivm?=Jg8yWMk=z(fvWb$6r%iH
z)uWhc;<=jEv$9#8YG|~2DOFuzOxDXog-J$Z=&10<+%3u>$h)W7FRdcLOtZYf>A1x8
zLa{?YkI!c-NJV8vZ;amk?>v}h_L?|*r_kHnz4%e}GPO?-GZn5%v5H$8@Y{3R0us6n
zF`SHcCY_><o2?#YGH7a|3DuFPUoWlqwjP4EhWyB`A+Oh3(mm%N)X7_;XY0l1O+lO`
z2G&|0|2>d<t6~TaH0+AK{hU+ZM%&4k8at<9aRP4GopU&{a>E^(zM_gSM}oSw?8u~g
zQyS=!sYDmCgs^GcE^hME#e|nn8&+=;_R&PSBu6b4;+|u9Kg+WEew-uTOgGjvfY78b
z4&k0|Fcil-sGC_5%@lN-(_8udAR3h=n4pH(B5C2_1@p_EHhJQn<*B!qitK6Qw?iec
zcclO+u`Qul#KV^250<T;wm9)cGXJtQlxO8eo9*w1S~oXXXB_5Be}EfQIi%rj7<~}y
zx_S7c28dD+q(fF;4B2KoZhKkXw&K*x|4ih?j%|!{^StL>y{NOCW)3`Nbw)gPC7130
zix&_uConD8oyFViJ404dE=@1ozEx#!0(A~nwm0i)aHNVz6>tP?H<Q1eEuRG`;S7eE
zp`sr^7!AkL_%;yL(SOA8K)YR~6k~!YpOA%M0bQWa1?EHmo+n)UDAi*uP^2v;D(tRg
zQa63yd1=^9!NEle-eFqiA6=T`FQF9xwJgzY*nOzkY-ZJD1_>%HwkoLH$sv~P`?iI-
zm=S^BTL?@Z5PLIJu8RsL<XpjmdP<yv62T+Y%sq2~aw`sEo2zdp2W7M!#n-wpofCqF
zy!EW7bVmyHXAr&c1zwtC<#GW&b0&pX4hu&<7`=C4;w`g#b>Anqu|*4kUHIU|)tECC
z)OntkZ9=vvc-Hwe4x&KF6)rdrA6GsygTsXyL0x{P(|#Wg{ANl^Epf!z!Uxw!9`rhJ
zrrEeL$McJrKXS*k+ABY@Ap6g3L;8jMM0p3Jy$0vQNYag@>)fGN%|r2o0Kv$BZKlVw
zZv%{Y1J_zz1`+}v2ZVUI5|I0W4!rtKu0d|`nXgfD-XDV&<$|sJ&xe!+Z`uU8YF5_k
z_BO5*7s)|xk&A~>!MJ##`IiBOJLejeDfq~65a3)<Fe2W+jZv3-PBAhxJAUA5F{-Ao
zvo#5F=lEK6Ur<Q4RoMvdqs8-B37@WGXt}!;HZ|;C+0(H(UdiO)+F!YM8)Fg4Bbcy3
zefjFwnHX8X1y-$~bF~+i;-k%9UC7zFpdu8p;TrMjxO8VcB9~%+pm}k?-|9!-=+AK$
z11W@>rntL&FFVtS*;|3D2cTwxj(6VZV*IEH0Vodwi&A2HhoWTYQRt9!V$T2)O*d@1
zF3SFZ^CDcKlFzIipOt-&IWv6jcW_MPa|?|hkMfve&Cs!UDW>>v$W3oZ_38+9u#TX`
z;q)oPH7ic%bNpj}i(2jkoeyz$+hGu5g@YPLR{y=2awbN6IfRAQQ9%PG^>g&=Gm%3Q
zRMiT^VXrh-jVW(l)&6-k?F}olfK0VARaddS`I1zX_2kA(;)L*Py6`0U;Bs@*<>ds(
zax#2-HL3U6>%5etPx6!B^rzlYlZUjDds(5+KC%72b!Dm_J!>%qGMI+=Ofy}XhE-1^
z9#6Brn`ZwzjTD*TG??M`nc=-M!(TmPW=b}wz2-u@mSxOri6p-iKFj0|gN34{?n1Cv
zV2I`!<#(sHLHN%+X0a_Uo(cHdm^sZN$W|ys@`T+)WNMYjI!u^NAd1K(u-x58C@ryM
zt)&E^7fvs)O+@@jxP>sHh$W3rBq2f=*=|o=U@&CTRjw>r#ij2QG&vwMZBF`}U>T;E
zY`-lI!^cl8B0=(0c=Fl#B>Ey@I_q{na<o1ZRp_4LIALDE5jEiB<<5KK?CYf0Z^ZXA
z-7L?wl9OGQI0afmpKn9T9}j0pFNXT8xI2%v7bQ9FXIs!#3TB$OZoM$N?iqXw)*%Az
zw;Yy{4qJ$WG&je$Q9LWPnPMFHs+vLf&xVhj#uYH8Rn;lN<6V#fPXb|8?v?D5(3O?D
zW}OJk_?AG`P~J2C_iqOBdx6&vB(6VqNLWmGzYgnu8~R>DC!_3Ou5JdD>;+-!lJx!#
zI8=Wrl;pejI)78dZww_0`<e4SLGVcW45K{nhMR8VUD}Q1tus#si=Uqz$CLky!sV;Q
z-1rb>IdgBBZpro5f$z`Ud%^bwZ{Mv?sTCqgg;7|5=}&R~ZH&lIF*>+Nx(+LTu1GKZ
zURjtJD_Kl&xk8z<SU|h@FTHpk1TIaAzOlOWu@1yUgI9<o{%q*RM{NG{+7NX_*$rQ`
zqScnymQ->}*;$zrTBL$ZN*NDELc52|>D3mv-k@804wFs|zt$oqrC5QId>+NNyVSVc
zESU$xA1lff-*1_1l--Gz1*pj-$W&ROs^TB`)MVFR{V6x3S}|5MmE9p<`n-bTrI2h@
zxq_{H*i~6ApeYXElA>!gqCp(U00ww2>~t9AXg^SM;T;H<x#YMLn6f>dpr|?GY2I}U
zUr<Gcs4$^bxW8BNiCyeo*6KZXGmAy_p$r}~eX|92tG;yYs5M&v^Vwc+SM|Ho@~+BX
z?Dn6!9Zj{$xLWlm8ar}Vp9_54`twh1u~PlTgOJRT0tYblN^bpHi^gV)7L%x$>6sb^
z{LNf<5Bl3}SWk@-lK1c%2onipH#S|>kVHj}yqFVE#F-AOezR@3{UYE~u`VQj<9XM}
zbE)TAFxi%yVil}8OH|X1K<?UZ^V)q0X!`~v;p!)kfddi70Wh`ZXXW1Dh8|4}!1ltD
z-AkJQK5%y`EfUnN$8H*V?lP>Yb$@-2jlS0r6cK9H5Z4#SO1UoUb4QR^0fQ>Y$t2!5
zXY=NZp4b2I1lc=fDSTG7J|>M87gJ4F4p>BK-A0dG4(5*;J?YgMO%iL9riXWu+c_j-
zje}Y-A(sV|xQRJejK*b-gZ7E3dsM%BP06x&jz+v?1O7y{u{T{=^%t)1VuM@yV7+oI
zQB<>PqBu3|c$6WNC1_sO+x&K}Sy|6JV*V&9R-WTV%flom{Eo%X!<OwsNrnA*VWa=7
zs34Y22cH}4MDLN6P>2BZhVy7UDbl*7*V_5!&w;9lhYv#rbss#@J=Y)(9YH`qYmqQ8
zs?e&zAv-yv%AxTal98ruG_hpaoO5MJrMTeGq>O}T{~Sab?FKni@#`t>y+#_W{9pjV
zP-Zv_8wZMuhfhFAL=+<?AtfWHprrDf;GXVkCx|l@prG5UtUIgDkfaNAN$jV<wQi>2
zsUaa0`iT;}_o5(z1!Ch>>Utw9HQSt+9$|0o^v~ID;&#1rbG@y$jZoQZN@f<Jm}HqA
z04uQ$VDLJ7YfGci-udr4-h2LrdPla1?VIE|n0iu>->|F|QDjH&&uVv&W*0c29^#G?
z3k76P$Yq2?&MQ;QWEDRp%GgrLBfcmUZ<6XHc~dLu<NSl-5c?XV|IO#cQYca4o+q`m
z*5{5vR*a$tsYl&qNG_~)BupxlL#6^`xsP%j9zzGTR&c^|@fnCv6;_zEwDJoJpfD-i
zrTgxbBMdW8h>|1AqnfN-+bcY{T3d|FH`o(vr{<qtlLoOgW4nx3GR~x{N1itG6cCpg
zdBjzGFm=)LOYp0-bTQ6XLj46+D}f4yeP_QTw!?Pi3g1+ZBVC@{N{sn5RcldhSj`D#
z$0G&{-1pDvbw(AHfc`saA-nBEUbXI^6KYdME&{*5qC<UfA%%&&?Y4is_RypOyVD-|
zz8%?79l6eyr><7eY3Pa0y%Y4YZSRrzzT?O1`nOlaR6W?SBxrx8G)47l#jj`JXAl6R
zpo0fA!jYXy_$`)p?0)lgIkI$`f&-((H#NYv%~50d-rT8re$ty9>=LX*OxKTanGTpp
zwmXr}1V%??E7k*wAO0U-tu|xpbk+o*z6N5JwoDo0_MN5!m=qIg$N6@8Y3T<Lx)a!F
zC<%}%WJJbwesAVnC-Zqzq%%<Ruu-x%TAQ54^90eB!6HZ{L;0sakC2o0*Xg%8*vy<A
zqCBSosVv@+Lyx>z^)Z?7^aOeaH<m~R@wtx3L6fv2jcXNEoz{5<=7*uq4pwn>Q$|_t
zz)Ti?<bCL#tIW`Covy>WK^<*nGH{T%VgYzrfu%08pijtb56iF&AjsjS0?Go1Ap0*1
z-&A%(h+KiXx|8IFyEzhlsBe5(GN^NQ`bY9Iiyr4SkQw-mSMC%WuZdVExeRS~8V6J*
zLFsRDTH@=<a~;bcZ$?cD6tK7hOf&Ll!N5!<!?UTUXW!aGK=J&4Cfk@zRxzFLje?Oj
zU}xA+8WKOvGc7GhSKpQ`Q>ah59YCxdm$p6^I+@uhiE;2DSz_?sSp$a|Y5dbiEL_$+
zWY9xse3#$KY^9Zb?}Db_c2kBlTE59f<PQsftBJ|vH(15sF0=Q<uusAbe_HNC4q`22
zWJ@z82pcLMc;kL&IO%&@@s<!PO-OR|P|4Bq$`LR_l5yFj>m$=`3--*8q;uHeM*Yl`
z^KNxOeya3lyhNXUT~hTBhu@!r=SredAVFp2A8!ixyRTR{0=Uz=Av)wM!TgboA}Gi$
z6>ww<#$ox%@z)YeA>2*qzij>~TLCroyj#sB4SUGr&m$lTFkAZGsYz|C1}&Yy#bTZU
z<lqJ|s%T^m-52RsmxwHXyG-Eb#+e^`*4UydOhtB)(oh(Z(+*dMS5C_+R7oLmPMBJF
zD<xQSTQ7Mdjiu}gb6k4YdG1MPca@OAd|NbxH-To1bjU)64l!$I(8Po9A%kO$*_QdU
zU7B%uQN0@?2Nf0use4Ki+CW!bcNp7}6eA0If<svD10-0ZZ;+J%p@KT_vt~s_rM;UH
zDwS4eBZ`Wv4>zTZ1*{$Ni%RaOe~@vgw07wzD!m)~LC#;m#$&Rm?0)YDg{Vp!pWUMJ
z$A=%3QUq+}908d#Dr8uJ3`m8O3ob}KL&&durCYTP26e-M`OikeK*N=~EhWlB0(Mb`
zbwJU97f_H)cB+1{EfX3Dk99e7&7c@^$d#kFCevd?Ktsg00KZvjK(0SAQgY}(sBHl#
z=yvL*3*kT(_i_7cyj*aQ#*mqk?%A#DM5tszh^Tzd3|3^AN^Wiv6`a;!mnS1RC8WW{
zl4DVmC5;*iFcw2XCeH*noR9H!d_Fn^M6I<l|H`#v`=yer=C(=A6@KH{Se`LpD-|jh
zIfS5VXBV-rwMd+h5xz7-(4lSpnpM`X+m}<Dzs16&h(mg7o{Qiy98{!$OB}f7I`G7)
zgMtyiSQOU#FoVpN!;1HOW1SA4&$*)!_az|2x(_2v&QD7K>Pe(|+~PUnkb3t#XnAp7
z`qsF^io;99I;RA6C9o~};1wa`d&U#lE$9w$#r4b>+Nhc4k2J=*FQH)Xf29CKLc>Kp
z-!f1Ano@+EoJCu<3Cu-owsL2DiMuCf^K@X}#qS#i#!3Vnq3Dm+L@p+XZi#^Sk8O|?
zocH2+A3**ahaQQ1hCZD9UOb@;*ega(TKi3&XfA);eNv?KLe976s<RrhV4J!7K#})d
z>fJ=H{gfFkDky8b>#j?+D0)BDYw3-UKprR^8Z~Z8Nr2h3bmjae2z`#LC}?U$T|2K1
z6jsQ1{M{fbJ-dGS3w!0nUGK3s-;U>N@8XmMBfW^XRtsJwbm)JQd4K950P-apk9q|w
zqr6qq?aUm)73rlOf#yLCx37od=2Xj#=s~R_^cOE+J;*1VACwPsd#Y57Su>AQ!?FI5
zlzV(pw>Mc<H0ZG^#O_oQ5|o)xf-y-ZFLezrTuaY}@=>bM@0CL(xOK%A#Ya)O-9k7T
zZQhwUgH&X^4np)U0<7bEeRrM*d&feQma>ggH<kHIqK+bCx*`e-tH0R)(}8f<4%G`3
zr1A#t1AgZm8XP))y^{`jizm{+W%zWrTe#+)t3Z8SvDE!ZU^RK52cQd0;~~%iD70MF
zho4^~l}z6sp7Fj9DcFtc9M#)U{DGK!$Lar{@!L1M9d4VIsmcf<u%CSQ{8M<@ruXRp
z_v^A()&-VeZ8`*g4IEa@>L4pXgGvzrz<l$2chqrUKAt#O$H6u(0l>8F?8vJ6FDsTp
z<Eq;QLx}W;sm?g0snWx?tQXPcBe(2h6XUh(3@(Jf`VC-YK6A7#-MYjfw6XZMsC(x2
zF@wNKWS^6BF*b3|2+!2bkjpl49<3I_l&s$rO-Q-qOp2Ar^Dz`j90@aCbsltT7Q2I_
z{0F>v2{V|gnCv#d8*F;1F*@RM!~X4CwPlad2=YAs<aQg^Vdm%9;3He0v3nMoFGYJ9
zqPW#mT40E%2G>Ed(ge3e1k$9u=`ClTa`30Jr=a9(eu`;lT4(zG>1%bdTO_n0eHoZ#
zhW>65ht0-O$1jYwPEz_C;eAwE!u`&gzh!~sqPte9!S`r})&5<7_t<;fw#+0zh!g`j
zd2IE<8l=9-cAeu_yBo1ltNV`RKYLzCLD<P&Rw~<fszvWFTRTH^sx}p}sepH901)f)
zyzJLCUC+kGn+^X-k#Qs@w40-SG0;J<QXi=u68PgE5t_$gsvp?|svS7Qnu68<jyPyS
zM^ri)v_gWvC7F<wk7u!vhW!>>9HOTQdc}BelLNlh2{21nS=j{bz>^d^*<%~PMyE&3
zM2(eBws(;?*wONm4Koc)>zYc8*7mU3G*Gz-Zhw89=>}kE9pKi;&wUZdfn+Nx05KwA
z{9|E|(LcL#y_?&Be|a4%udkWg!zL~~vb68V<v?7i&^}hELm<=(13Iup?_=@7#yA`q
z`YpuAeQn?$8uO0~(40ZurWJakb=c_;KnL<NN-NWvXYDL{ixGLrdYyHY#I{0bTgP!e
z4dg2%YQI+&x<8YzS<7YUFD^*7m>d%EWrOox{B}q%Xcgz1+*KJ}=c_6dCecQb`^cAR
zd6r7Urx`W1kV(NiAU~4kc%iUBI8d9$;!I0_Un}8BhqiCu02rUy8alJThIih_1_bat
zxB-h)A*`C8Krq;Rr8Wc;cPT(=$ws1p71<7q%9Ir=o)H>S5#A_lBZrg4_a^Cu!bTLy
zz5}V0?wmXmt&+MHcCf-Xq`~}*Y?p}~6Hw@rwc#YXi}S|NBx+#EgwlbP3)@8f=#r&&
za|dro!)G}VBndYRk35bw(BEs7?O1#SYh?k5U<7m@vNOcNMffyz+xkvtFmm=AlGqK$
z(<R%imEl(7nN&p)GZvQ%Pnk9zK+ekz7kz=CmFJYCHDc7pp6PZ4JUmt~D4-fmL`f()
zF=nG|mPVdjWjEBlWAblj>r0fRuiT7l4}36Mre#wBqB?VWmfd|$3YrDehhUVk9v@#`
zF^9yj+);H*m&p%=6*X{?@HLUs91-d9x)9HJaro7AZ895PIo-^i1NkIo?<yOdGHU4_
zsB1ch8y>bQkhg9O9L@>QTeh(Ib-*lUY5S*XSX&JToktEM?KT_4<UiVd3$*Wm5+E4_
z;#UHlz7`#0b4J3^j_8;=>8xz#q|GohG?Z{Q&k(nVf*gZfu=6gFU!j_ruHkojm7PsR
zR5aRB18qN=-VGvjnE|X1@fftKYdS=l>J=L#Hyq^MF79WmZm<jro;LGYGE=PS;X#{|
zcJGYM`ujCBz&m<4K$+F~+@J{wxHr?{RSEaZ3^pj$)*_SJcnlOh^pKP3tiZVbr#rqK
zy`&wyu~{RlXKw&6SKwAUL-#On7j64Y9gZkOE~y9ew>vPapKf%J3F9H;OhAr>r|`3L
zx0}Y!G&$903d}gjbV{D@YdoLKb!YS=MEpE5jt%~K<^qyCq70L`BZ==aKR+;j-uy@u
z9O2@%;H1N25Og0uo!PO<$csF70%Ss`^L7t)nOPkHv9<?Tt*@5|pGG{}<7}I4eiP&K
z%sn1h1jl~5`0LZ*`wyIBG~T~d?=iAC&t`0@g;!c*VooM&_(H@yHPMmkWD0iIQ-Y6a
zz&oUpU_c+a#uj9}qd=d(sAPHxHT@SZ2XM%-&J6z;f;6{O7{^?T24&dVUu{+$&uJkA
z)dIJo#H2OHB_}>v9;Z5%p){M*cGH7~B&!2qSG<pd+57{<`Z92umjWk3&IP3SHm8R7
z!RZVBm3`-Kj%0bh7UTemUIB%rSW=R+v&(qPs1t$J$LEKRGy9rzpM<V+r-WT0g+GSn
zxpS4RhMvEE`YB;(hHv*p#5LadM*+u|-6YLP?ei84Zx<$?EBewG$@U`>r4_|<DN3L}
zO5{frMk`w4QnXBew8D>Q6|ESJOEEhAF$O<kgt9BA#j6U=Rr;P*o<eU%fNrK+#j?}_
z_38GSUv!)==@8x^HMwKsw4`2a-#YF?Ey|qTm$^NlPAvBiOsNB!<Mx#?4=OZjd0&VK
z<{)3e>ZncN4iFL*c^Oy>>~ez;<)}<MDJ5?6CW!j5hUB}SlKfvL^}GrFwS7kzlfdFH
zV@C%QaJ>b%M7^DQq;)L<1{!dK{nNU9la}ZZmdIv&1?vBRW}fm`p)vka>c#cO=pAS>
z0a<1Z*JNln_g=E)RQAbwk-}D+CXfP@Z0fIiWB72VjXuk_d;Rj%3+1hxt%_LW_>NzW
zBQ#uFKe42>9nm(ZkWq~5JhoOMoUn8S$|O`cC0Ar84G2(A+e$A`{PbpR_rD4A2}aa*
z>)MXpoM{rRjb`0Ws%RTu%J71vI8i9fm}~{EF3H8~Jh}IzPx9q3?lR~5aBc8k?xzKT
ze6F<{LdMWrO8H8)_m97>ALFvvn)~K^pd}c2+rGj#jRQ+Zj*`phGT{A$5-9maL3y3G
zvwMkyd9lnUn&6>qBK|P?r6jB})8qTH^eB$k11?{w^Ar5wSD7t`M+VEs@|%F-!d4Dj
z#<D*<_2GU(C1!}Lo;E(HHZ*Qib;bDUpwq}7X4>q=aP$F<)mCk#Z|a-e;BoHNUoZ85
zd%&&2!7sEyR{4>>N-LVcCBzV5;Ai#u$ao?0cqZA`-gs1anZsHh?r#1agc&uLhjXi4
z#3q=meo$DokR*m<yBeqxH!Or6!U?wj!_;{`B;oyS7!VK;6%e<npeSyfISX;moaNp#
zwbabiv;g<sd*oi3simoD;VMlnSLP^lRoZk_w!Zv)-aT*6A8^L!-1l{%{`)l86U}H_
zez@W|RB|uzb7>rYX6*MegsD+;L7?F{8kIG|>E>NCG+Z&ZqiU)<UeedZx-nk0yeMn|
zJ2H2A`fZ~29a~=4bENlVg2MBo2gorb-}q;?Df6UvCesV}jG0ECSTWo`i5EFe!{Qdm
zvLyYFslaESr}jKbc<;<6F@Li^E1TOvERsSN!Cv!8ee(m|UrSD3zNF6kYb7_Nth)3*
z_=B{)E!5263#VU9dK{mmSosooW4cP<=>G5KhAAP<9G)(^5g$7;X+`>m8Q9L^?mz#I
zT!;H!7RP%|#?;c<!XBY3cWx_uRnM4ix+;h+nO?58SZSVK>HV@HaH-c?@2yq->mQJf
znUEN$Jl8)m#-#e~$1fS#3U3)9z?RidNo0tJezS@JKJDSEIP%@x6F{?1f8X;pp<k-%
z22~VGhVk=lp=p2($DoDoM>qNRV6XQVpIhVsKDY$+L|yWi5rz7lMu7invI)XDUUwLK
zY+*LRkyZeo;ayAeo-p&zP&suZzgjf>0UZ3b1eQhXdZ_*6&xSgAWk(uf0|?l>zHQ2(
zlViE-Mcw7eeIG2(xN_;~!RF(8CXZXPynMD$7t4AcJcJ~5#!Ovuy!K}z_4XJ2^)Kpu
ziXXn#uCh)}qg7=%cd9qO85&O3k^3FD_x9MO0=fR~46{*9<B$S#PItdMZT#^-?7Mk;
zeo^{<qgi`j;ZJqwk5R^tVT!0H`6oyd5%Z0cW1Tm>W`;HPw^Bj-!ZUH+xQjOAqt~@Z
z8G1(53g8rlFfUMvjB6nOzrVF*LX6mSgD=uJi#-Irwv~~*`eZV@|Hq~58TP>m(7(lo
z!^8*Y8n5dAD!cq^n`t5@G5A};m9(I}kZYD+^LJT{=f5J)|32Pr*;6`u5DNOo3CInb
zg5(14Yyxg$rt2W^^HjwFQF{BSxhP-xAy<Go`E_=@xF-Oz8fOXtu(^YvpZuV!BhZ_d
zdLl?k4rIs;-gOaI^+qdXn^g_l8ku4RFtplyxnQIz3iI__6RAR|J*tiA7#0pC_gB7T
zX>W1+2bR1I%MP{v?FtJBB|EG`!^ENg;$)8gK|IR?OG4oW7GiBV2ti?)$2rSrSBsi|
zJ1u06hwEZA=>(Qv(lU1B-!tzfXIJGyQHn)ccgtUo4e>wx^WX+oqvbw+Kg_z+1*J~L
zn(UhxvcAn_T7PreCwN%%97^gfaZ{o+O|>;pUST|6)(EzA$d4*6oo9-M0IZ0X74pYt
zR^vSp<8RK!yq!G?e4QUn&Lo`sPyFR0>?)Qo5iPtajOon&8kh?bkU9EkMP7SU41a>k
zicR1OBgqPt)L?c)+~NJ!0DX|qSm(!C+v_z|hOex7D=J8DJ8d~Sgg9c<G>T^MpLI(v
zHm?YCce)ANs_ozN5&pO#e4so0<UbJ)n{Vq`V#Sa^0m|z-vbZf?F)IXj<^Ul08n7e+
zH($lArd47d6IRQrKip!n{$ISh28Gc=<xiYzdzp5%fNqq5SEba`&8Dhdnq7nt;7t%*
zqm%h`2K5Klhx9TNj~zSsy(A-C&iNAFmmxley%;!DO;D4+cxu!KoqL4NWDs>E@;X#b
z^3`csc|~PawT=HjUtOE#kas`U#xC%?Q=m13^QsU#n#^9B5*n(KlQfFrSIjf#D(uY>
zKufYqx=OY*BU|cKK$42ahz{pLwiN%%k|AlEG3<lYo&IA_^=Oxj#r4@^zZ{Cz)8dmj
zO01|77ZW7qh%P&VV>3AYRPd@)UrAU>BA-OgP;YgrwHQUFA?1Dw8e3>mU7~S#%<hS~
zYSWv6&C7<Jtts8%+m>2SqyPm4BVC#cT2M57L{Wcnp>LkCTH+K_`NDJI3j`U<71P_1
za;rU;-VSHVT$6v}E|h|e3LDNo4Km4K^c_f`)$vbqU?w~U)ObEkqp;42QGs(%1yt%s
z3G){1D(W=*!a-@u*=vtBUB&$P4^emYVE}xWSKF-{UjV-k05*UWJ-zb@i){&$Tj%(N
zn6Kp^KO{FzktIZ7N3-<7K$l}ec>+1*Gbke<s?;au;I96F3EMMmldVmyL3Vzffpo_e
zXD^bC_u;xLj<I#+eX=E!o0fA)?fa85z$Yo2MPhq5+Eu-Zy|I#qjcALAHx2G}4Zcd_
zt4$HhbEr*~?3pWv^Qx0|5f2;o=ulQt=nz}>plBUL0?h2m&eG=C2Y{c(0cb|axcm*E
zLT}D6Tq?tZMue&Zhk!zDR1pUYml*&=mO)*Tgcj65S$%!P#d8fgtWDSi$e}d0CE5>@
zEP>B3qrhIrFbg)<8~lw?rp=5}m}000faPL9--p0QDAETADwZ+qt9L{Jf!&kTgv0Bw
zfcR6cy9TtD#<B~<*s6ZXu{_C&H0eggfL6n(c*H(~O-i3ZhRECb;B*_FXinVj%*zcz
z5^}<t<6HAqw)3qqHSYz3CBpox^Z^Z{HL3DttYUWkGYt?+pMu>+*@$OfnkdbaQc8I?
z7hC8vYAJ|>%wBj?MFiru{$<@nx<U;Q!Sp1hu_?dq7~#|t>g3_=s7^+>qX8gf^xqaR
zBx*F2&Z0w;JwPdZr4<2;C5mc*(h2LjFnom-j>zuAA1+>ZevUk**fG<JG5nmHY(e}~
zqXaiNgVsZcRE?NTh-o3R6?B+F_pyHvd-zzeOTH0;v$y&~NH%nYTw^K1puj(<hJc1Z
zMfhoN7wi{7wA<-T7h)9e^vYeu`hstosvkV*CHlS4W8oC_c2+;E3j2tc$)3gNq~Z&g
zE7``9U-uWjVvs$;-o-j#776h|^0}}Vac{i~B+ulncs=;{V-3bOq)L2b)~N!vI6K%K
z&o+b_mMWDQ(tbZ+CNy|7Z_9Ka{9cWkp<Xj3p&p_{!kMNB9R!e~Q!7LcCA^J)ya-A!
zo;&lnh$MQGxc8t&M|$^k7a7>aM}^2Pt(~m!{7IzTyi{W?ws-oGc*zSa%sc^z?G<9X
zv2n9$Pegn`62P+fF0K(K%BH=<;F16(ymH2|IqwYf4$p8y$aWY@4-vaIg`}Z-2^`k5
z0KR&1qK^J7@{clDkV7%Go>9ss(L5?iQB1R`@M61b4dQUAW|0Y{%^2p6NZ!az%jBzK
zOCUb!b3ms%ZEx~77(=)tIy1v7#7=z*FtR6$o`mXjm0>9ec49yZb-){goWWA&2-(*^
zi{Y<EH5gKq@|bxQ;slw%2{SLH6A!7lq}J}lIl59otq?)VEby6atx{pD3qi(t_t}ME
zrJ}A1f?QDGr1PdyasO+A!u8!rcTj!-mQ*u>6s3Eokpo7|=}<!g#2c@ibz-GL+nP*2
zK#>X71AZ8Rb)ax3&g=DGedR5DgGa4$Wk)cBwImF9cJU;KUS9<?CezFAJmWkpc>1f#
z`&=yD3qq?fV9{hC4>LfZH0N4f1FBUIOa;zO(naJ+l_i#WMG?d)x}0f<#IpTbQE;F%
zKBg)s4gi_C0%0{@pDQ-CWs~>^hX0mIgwABJw96Q<7*<=nOq@#nC?svIIsxH{t;Wcp
zn9^vMGFa0^&#Ro3RiVB9pu+_$*4|>&JZP4UJ4Mv&0UiRB=CO?$1GIT%nq4sJXya^N
zhcqY$83uL_-c3@4dY>|Id^>ibKOEN4w9_hB@r!n^aT6@tA?b}SPiPMxZqx~Lg2{3}
zw<3uKbCfYEBApgq(0TH;#9%@u`}8;rq+92;G_mV9e9;ux1qcQzwh!6ijYsZgR@;Oy
z0mY@^G(OJhJKk^hK^SaaPsl-t%7K*&5Oo1D`^J)0d(wXKXtS@?YG~ih_6?Q84&LsX
zWyYhQW!>xn9#mfgx^#fNlGGj@aC<8>u0Vqa{gOmazJYp-0RIkNJ^owi9La=*F25p+
zg4{@?Son@RPKf-lgTSDUIdekqBYN22l0NKv)H&VW-k$WKb9z7;FA3NwCa*};ZmWWr
zj516E0LhA5J+EpV9-Q{1K~;?eFjvH$j_HJ@B}@1aq72wnesBi$L*TISYyjMCFIjIE
zbkJw2A#^7Ux6f9@cGeH{?c<p5sbKBdQF8a8t8#grF+?`#`5i%LnvqJ*gPEnifJ%g*
zKS!P7nW%V>{5VS*Yvl`Zp=YSY0I%mRB$^GQ=*3=3%M0}+tEDrd{tDF$bHR=tzL`FY
zjOX!n)*DHKH)`8>_f}!w`%nFha^kE}vw)p^MQ1mt8kfCS!Efd=VfOa~?vaJ_ZyNxE
zPn|xIWLT@^b!#WOmSaIeL?E_ezlNpblD7h}vl{*nsFw_azMN8`C|d-$J<xq#{R7r;
za}iYD3{)7iR6*azlJw`Brhl(Jz&P^K`x-<SkjA=fDp6F6F;TGZ-uTe<notGhb>NT%
zUC}bs-tsX(krfTR$@%@c)y#F+4+$XhJekI#PwtT5uo{)LOwGGh5l*j#`XkrrTqG($
z<Y58IluYN;S_kv9vQ1gHA6VOYu-Czc+~^i*^&$=cN2kIUH2Dbej;+B+`HhI+tSglt
zVCdzSR5M59n?^A$v@jK@O=yj<Cb>q=lK*&bem&x3UR?g9@m2$`PTsrUC<<{m0SfXm
z5=?>zw!|+z!~}3Ja+RF=_I_4tDSAzn#^n+(e)<>CC#%Fwww;3Gr4RDIa&7WSdE4r)
z!v+s+R#C9z5Rp>U!e16xJy-K0=8q-v`7au;&r|l^rw?i$_;5uw2fs^}p9&B00z*1^
zz~QIp0>gr-&aPX>5>msk{%>*L`&%IsH|3D;85d!(Z~y$#rXH6+uo*~BK6Pz_^Wz=S
ze;Ib}ut+r;8zq#zolO2U@rGDHewgs~I5QWp=86Yb|N3Rm!ch&VV1OT`Ak3?;z83lZ
zWi772vdnq}_1A5Wef3(s`%g%`-~busLUqO!Gf^%c5I2us=I#PJnV)r+I($W_M*{4-
z?!$11T1rJc;Duv{8(IMOokXqRN5k*4v2{Gr6%xQ=lD<YK2p$>1Dma1Fd}jc-U28*3
z34l}Tt)ICQuc>PX78YAi{d)hz4hlem4IN;*e8X%SOE`@Z*VSggRtPKG5$kPh#;Fxg
z;Vy=7ziDsjbltwmtBwu&PNrf#IkH(d;}`Bt#xUZ(2Z9?f^2m^2=+PRDzg_rJ<dGSy
zq}I8VDkaS+_UH*zbNMiq{Ko^Q6zq8lQHu!R0!C1cnsrIdc<I(!RGa4soPtY&#&v1J
z8<L*pLbf2h;N*EbNYI5>Z=jvFn5yzqK$m#6IHzYbuWJHJx)`jJ>RvaGC^vUlc@4e!
z_6;9p)?i5@4k<MNt5x?<L%B4epilt3jm(C05_-PH$e;iQUlFMQwuN)OR@AHAd~8^8
zsn6bL|Eml9%d#R1Dca2x7&TNnda5hoqoCv?1_MDf#A6FNDT|!ONpzz|AMVdsGih->
z34Uu2pZvZp`wmN|I3cH+x_g-vL}X&ohS)BSa#|u&+tQmioZ3(V&;mc%fs=Q;pX}-u
z^LuUCd-<kRlMUJ!a23V{`nzNgVA=8o?e;0f`%~{oG_HDKVuqWN!-%$$ZgwE|w-SPu
z7hPxADEeI;ib~_lp)vVK-(f}pu3r}s+Vw=L`Rvq|r-UEz?>oMNA%3g+K!;53J%aV`
zq2!Ehudlk^67+m4lvmmIscm+V1iJr68lm|_X4??$<7c;0|5FygicLfKj5?hedRIY*
zJo3Ygo`9B4rk(^Fw_$7TryYY0c0V}mBPr)8{t?e1^3*Z;dX{g;VC|1pCB!F6DkI7&
zywh<wozQsK@FXDwBRb9-<1l6<I&AfMB#MKkmO(L>&DGP^=N2uB%L2u&(L(IDeG%mA
zYaTXHEcWV<8-`>0c4FwgCZe{%4MTm9RPzma{Y1+h`v890=9^$Ti1!F)No|rIeQ(YI
zO!i9DcJOEJmDI$<Of?zDM{TA#idILg>}0lsAa=HH4#|^*B%NVL8n{K>M#xEX)9e0I
zshp=OnJ&H#Yg*Dnt~Riu&P5thmwuca7Yg)kev<zq^Bg{&OKyFX8t8TZMQ|@0)#-hi
zQ{b=9!n8fNGnp+sLdn-<cf(U!vaXKD-hcK+_o?^&K&_a73k7^G2;ICg(6uPmC~RH=
zO1Ii;H|}UG99}#f!0`|{lxO)Q0|QLjYwX0$R3%Ae<+VOi^iCfbpB;x~F2S<?!ioaf
za<-r4xJ>5q1zx*>%2$UMRM@85PZavVegCEwQ%#KFfKp?@+G>-WnTxp{t84=%6;mdA
zg{jOg3iXV>Y2O0di@5Y!Qd$Sdv~!KKv%<8sZJ{C$(T1H==R?#+-R`w}kN5jjZ<qFN
zjIB{3**g(&@zi8LhBmynJ0w&_fCdw%KJ{>XteZnXNC3z}hQ4g-{k>M=4&v@HqJvLx
za6!gzbUb5WJagRp{(tG$s>!*%uyF*ia6qs_>4RWZ6}bq+C}a6H9^A4LY;Bz}<}r0E
zEOlp_Hc|0(2j)H7jMUit_<kHY?Ql_Sed<M4k@joj#R~3O?DQ-uq@0wwGzxwBb!h*N
z1?tTbeUJYmz^4H??Py>rOiVe%eon4>zY?Cbo5H?aVnJ<h(TWZE%CPv76BxFf$!ywY
zf6eh(lH<#ImQ;Vc-dfTfktvJk?}x_j1E<9Ad`JPYh-R7aefmk17xbHYawO~Eb7wvl
z#u{}Ak%2UNHwD+evn#c%Tn1XLLVja>ou2z@<;%Hs^_-abOi1D|3tAV<o%4H!^V=gj
ztQ5r5=7RG3|C^$`e*%Kpqa+)1Si`Jjb8?P^H~(Wm4kRwJ@HKvOYw?MrAJk^EzWbU;
zMX@xae&&JTg?<;RQQ`|<|IS^O!CJGwnUU()LVZynop>Ju=l)@U7*z}x`tm<~D5!3>
zt9h0u@PazEk>k4pDL40U#ah5Om*w=FpiT$q`X1{l9lwue^-v%pG1y8H)0!V6nMx8<
zofD&lA}9Bd^P%jkd+b}G9G~_$4nsNroG50(P;C1st}wLVK3XgcBeRcDR?L#m|4yD)
zl(Mxdm{$mWEoB$RnaSnslaCDv!~1kPA6?|i5961#(n@7mwkK-4p3`~5^{qpZka8DA
z(uF6F2sI6v4J{C@sLZR3Kf@p&3p)c}K0{q6wqUH$uLY^2g5~Z4VJ+zd`7Y`4^Ly+2
zlx;iXwJC8H?&qcZlJQ*+MGI}v3U($mDd)mCgLCSpFHcEQPJQ}Dkm2!Oo_Fkf34TK6
z>f{dUwTClaA|t(4GIL#Xll;cA6<^JG%^o=V@(kE?2|nAu+DK;l4w4sk<(0UA{(V%5
z<nYrX`yYkLf&c2u<RBU&R_YgrqNISb<#bIhgnc8+=*Ka6|5ktF;wxh>!q90k-Jd1v
zU&Rb6OaHxcR$=^F9EIS#bhnTf*h?fLRj&8(ie5j|-wKV(Of4orsoyW$*f63F8YYGr
zdpR7^&6nwR{6B)91|=*>ne!PN-P6*BYB7mQ;I}MCB|)Ag7#ByGSU|YtgozkSM(R;U
zSSd=jJwS+GssxZt0PU&M<3Hb*4$VxBw6%Ww%6mPcBy)LH&e-(IMOulnLHc)&$NZ3%
z)iyY}>I<;y4L@OLNL_g7R>(>;Qa~hj^$#3im-V{&-2t<%@I$Nd%Bk`%4{09AC|3QH
zM4-#pTJ|3oQk-Qns6f9L7I7<WoqBgl!R@n2eZVr4Uu8U`RpP>$?Wc59R=JdU_r0(m
zjnf6d3e|^Uxete&d7sbR+37}At<@MGIUN3A{UgZmbQ?N3{&j>#&_9QBlSX%|#zLMU
zkf%O|RVc~{kC$$YbGtr+-}7iQovieqjTSy7*kc`=hyXmbcTK$->^9ZSm@**1wb%CI
zcKQAoQSB;$;5ReAmB8T2lhWDr7uTg4dzPFxX++u^-v^ksQzDvIZM9Oit`cGeE$>-W
z-Mk?D6#C$O^v{@^Rk?=mY|o#*Bsr`bd+~C<I>$pdrf>@Rvm)=>>>8{+KK-##u2&NJ
zSa`2NHbZhaL{P-)C6T4fpI`IV8Y7%g5_I5e#K8l@S63stJYow(kH4_@_Pt#nz7;qn
z!fxUTofE}>c0VB-s1ny{=jwo_b;RB$d3Qzcs7J%w(}D&(oW?{i1Frn{#wb{yu7=b2
z_N5xVye$1Os+4J%U3^^qA{2vpj#1m-I>^H2dFGzSaX$C*Li&pR)rgt%r2IQhAc{qa
zFyI~NhtD`;+Q|kxcm=$^=o&uV!g*pMyK}fEkXUQL;hiT65;xs!%D@jLfh2AW(~Y9M
zKG#B_EUj#{%Y9E2%JfNH_&f0iwUTwgvUN-ol{&WGuea`9!dr>e1YPF{+Unr<-2uSV
zDcOz!a-3CS?5#>@yBPA?c95?oVai)aDX``~U?}IB=F^AvUq__#xPj>u{oh+2cGG2+
zF^28xMpfHJ{oBM0@%UmjB7h)O-xH0EwXTwI>ZluN0@`X4R2BtOBq<q}{*15go&TMD
z0prh-LMX}dtrL85r?Ki%&pS!k4<48y7q8z3l^?X<6Y{I5Xg-gH&sLbD0qn7#D}Rs=
zRKk}dRvRq2-PQ|;cpqrkflZMJyfsW0`4=C-YtP1*zZLuJ_COei?ksO!cw|itNYg=u
zIPq{0WZRT>0E*1|6DcwAE~VK!HI_*m_kZDfFf;HcJafc>MB@z|8qA6IN8Z4XN{kh?
z^s^k=H1FbTo7YIcPpKFr$OjOu^zV+`8@Wl@x_(AHIH0M%Sw57K{{AwRZD{RKczm*;
z`tiTdtIb)PW7=k|rt`0Jo*5Oa#5oDKmJ}O#UTOIl)$;IDEdTk79vxRM+vU%szbcS0
zyas@^5<oHc|5Vim>YRIIK>1h>WgQm1gjtYUyfO~%OR7E3JRdN0OJeA!-oN@w69;Fx
z9<3$&+;969b+I<-B6I!>3YMVfH5;WbQE28j|0}_;!S>?Im@&U@XL+JuzdEsn&!;3N
zkRxOAwsmZSTqCE8rN|l4(k0dd9_Ggs4L*FzE=n^h%tXV4zcW-RAdsfM?vM&Z<5L6s
z0;)Y|I3Fb{bv<Q+tUA8>>5m{jI&hZS8ybc~{Z857)=VwsvoX=F?H+pxxe;ZO>d_qP
z85WZwRYOJ1s@SB~5I5hGJgmO>5xI;x{dq-a2C2s$(fs_iDL5KR=S+VJaNGpQhc93(
zMQl5(i^I~@<0Uf7u*v7v`*Mt4td*(+t(=6DWL~x7h<`J}lznU(%t|qsmZ;J6+eEh9
zB|BKwq-B*(+<#yJyB(`qgG^zAGP_+HF<ysJYU{8$4n?ZIp+wn$EO2q81-$!ce?t1R
zvOuEkKEA=>pmqs+C?+MLL(@XQCoOD~jEn~bs749ICo%}AXTnv|)ZpcN6@Twj%jiQW
zcLvxzM$wU~=#woL#4}7TaqKoHlCyv;xo9OM+tswc41>xDzt?@vKjjS5SY%C68X-k~
z^HggJ_VRI;@h5S`<P<-bmDEECWW?bQi<hlUZ1=RkLFK3;Kd@fOuiy1QP%wX|FTj8)
zCjQF()pk{B?3O$8#()3*F<D7uU@5*DIGN$$(JMBr7n+X!C;$TUR-cS>E!|+5Lp3}(
zUtu7QVETwSvcij<pc$M#ijkA`qJg56s1P1<1js<rPPUaoz?f4;At6|@k(8GYZA{>t
zemI#>%=GCpk-U|lWGdAJZl&6%sp~>y18Ta=B;IaKn<>6=9)hqx)mOGqedTk{;`Cen
zd-)jk-s*TIcpcqL{U;JZ=Wzk#z4)))8hB2Z(?G@AfY<l_tOO2Llfb3FPJJS!()-lf
zg0Syl`=9*2ik-C)q1(>(oPnyn{RQ7{`wQ-gs^=a38@kUsUmjDv;Ck&{_XYQx5H$zS
zWI~UFcea6=qi?ZqkE8#sL^Y?triMs+L`Li!0NukqWECsB;Gsjjn@9(tJ6!QD>Sx#2
ziJ*S1f;SQi2GV&Kzm1)Cza?<Y0HftQ79^>og>wLmG3rS-9x6{yfY<pPr#@>8b%1l2
zGa2gMmvaNES#EM^T}(7jZe}E4`wc)KE|A6W3w(Nj2RN!OCHg&1{yE=Prbf{(L~ePr
zLn`$BrUy{!qCCEm>-oZiz@}UO8Fg?5IMM>eNtU1>aXu1oTb|vv1lB&tA@HoTro<tw
zD_fnG82@(d*KIyK6po8M?{{<xy5ko)k=H?dy`|T7@dFv^5tN-eQe!&s<pHPgUyac?
zVaL?&6C6%LjBu3K{-v}MGH+dt#9&0zOTkSlr6!8zfp<EK4JOLpRQ^H?kfbDzmY0ln
zTekftbr}c<pAN!h>9rs78t?ff#717AKt7y(aVkcl{-!V-q{-(B-;lexq{pkoB#<F;
zm5izwJV&S}B*G&3?0-IoijPukkpzY*3Q1aL{8in!#XR;G_drpv7>WYG_;m!!qq``B
zJ$F3*8hBYZlxheQU>PW6Kpt%Y5t;yS2@j=_e?1;nAPQ1Q>2XI5-DHq9($)7#>;g3q
zR2rQ==c#O4F_ZWWkO0h_p|T(pv`ncCwpc}7d<hkzqz$@SB|0YPrkj>(^%R{#O!($%
z$fG|lS|yP)5G%BI3YCFBLT+jP>YmLU>4$QBd2sr68(CC9-P|XM`c(UOJeM!r*{Ky1
z&r8ez$y3uXX#O6t&^p+yD|{?_n;@@~X0!*`XT$|ia+~@&Czbh^f#>q1FQDf9SVbG`
z-8}9=cO;;Z6^W%1juU4oiMgg7l?pE2XIL_zdF4oRg2$Y^ET1U!+Lf9IPL4bd?P5^e
zQW~5Qeg>!wP)M8-ymbF5oehwXT9XRoOb;ECFh)a1+dvvWy|jZQ@<7ANfK%>LsN}FY
zu2gFXx-G%n2%{TE5p4qWZZJ;sEL3;nePI~|AO|H;h+K{*><|sIgX!14Xlq^)CJ*3Y
zn_$=LAJ|N10gv{w1pz^nv&jGxzBVd|HHEq^8!eI<j?IvZ+YL0vf%B@&oHy>9Bh;j*
zkYl_eB~H)!9+8U4S&!#Xrx|O|Y)hW0s0cO$GP&j?Kzvklh>WrBEBP>bOaBo-(?0#o
z$4F4vnHrEHNsRZNbVB19)z$>#<Ue~3;?$BMfV_hM@O~E>xLpSnV3erqk<VYI46%@4
zeB?VPrjXXFkl;$XX7LISLy6oG#>cPscHJtaNVQ3BDbSO3<3)e79gK-3lTG@|;ujZt
zy77S1$2I~~s-J?|>c--5X+jWK2`Z+XF?ePV#K&>EK{3jQqM2I~q4ES?96RpPqy--F
zx!5;dS&ADi<lD#8+;Gr;A2}50io-sDq4;!T-+dZzyPw13_6K^MR^tYYcp#U69D@9K
zqK#u*d$d3J4(P;K>zsNCyWZ!lxxzG<gMR{pZ$4ZOOQafc^@@TktvJ9Qq|zs6YQQ(l
zIk=m>r+C3pjMq9OdM3G&YoP=w-K^*c3EkLe#@h~BR9^Y@$=$z}D|;VJjQCgDOGS7<
zkdHzN8V01HGw4cjawovSN+WO02H-03)dhk>d1I8p8)8&U<+>A)Y%`%p0wz^aUGcrV
z`34TUs^HM~l;&T^ICU=mGk^gcqguX_NU69dsD>zcG5bEgSb-yyUc<8?=uc5WAIK(r
zf$MW41CQ!(|2%k_88)&k#E_(osmL91$YZI5B#3AV7NEzi>jP9Y`<%dy>ea~CF}|)@
z>1mZ7v#=F>4puODn#n~JoVXiV)7I&dAjd?%h*{g`m0u?v!)VhTA>r^29pCWcRXf%l
z@PJD+-;cS{haAu2OD;_A%Cr=fw5s1lKaz9RFd{<1aSw{WXs6$px1adc`_s>wpSz$j
ztKdq|@w9OV{p|M*ib07<<whmgJ+=-a`&(KG@qFR5V9l6SO75Rp1}*i1%gdhGRIR@Q
zbLK4|l_XIKm;(b)b+iAvc>qvwxz5XjZGGEnrtOvAe=Fv9$`yGfDR9&0w3rgnQ+MQ|
z%S*MFw@Ow&x$|-(j$)Ug1#doYC{9Js3;S)gj-l><hY*&!-scI@-x};eu%+u?e_Xt_
zEk*_UY6JOKFicON&~Xw%HsW}6-Ulch3S_+x1oFPFghjvVEzVs}=i-x?EdQmw@SW$l
ze5d4^jMXnLVUb@G7uHHim#?Zn`8h7~R8(7+cli8)@wlW4z02U-J|<Ksv7XoS$A44U
z<!QIb>7BqMW0J&xOVCgLb4B1S==C4n3PkjHDOk>da%MpGM$ff~wV;|ikJTBp%U}Dp
zlX5RDnxP&^><yN!O!xm<H<$XM02B=uqB9TGkb-pHl*jmz#|GZG3xJeoKpmg)vlo@<
zTR|XfD3B^f|7we3iPbrONXC*o2gk7_8HVLAC04R7>rBIC0pRD`XKKAchzgD!$0j`B
zq)4x}$BZYN<&)RRS?$*!+&L5`u0F!6P^4-A5f~~c3V7<Cl;w4W^g2-~Z90uD;qbZ^
zE|j`Wqd&q79A9CFine`PQI|PlD^tqoUmDKT0F>7}5)B)9;Ru9-VWikB#m`#PTJ-z-
zAi{Qr*iOP`E(HVwPLhy5ULXZ?5NIYxL!7SpnXx(p=X8)(;N$N=^fm{cJ(D6B?ltNW
zUrmWUtzV(LqYTup86EA=$3+b*{}$5)GbTNNXKnO>dk~yH9a5r2Jl6lxS>~oa?143u
z-UE?PEK2IFSsw8PQI%Rbb?P%z4Jt}!o#ia*BqGrL(h6)C3O3FGn|6TBL+_nq!V;~?
zstTrw_5q0(nx7~fq&uPDe#Qv~0SQJOyufOGOf>*n4e$gc#J+xdLq98wn0zJWY&bS?
zp;f}6!%(v0lxKCr*-_Cb7ieB{qkl?LV5qLRRRUKvHT$pe-!d7x3hR^9(USSp^zoD!
zzS7vG<QrtVYY>Qz(wyi|%}l@ZgPM|20o!DGL`g}G_Atq^iuVP>(}duYB=`+7ixSJz
zBEacS6TM|i>J@v?3ZW-$3(t&@8GS&05TE$ham1TXX?I1<4jqv9$ZWC|S|?hkzUp+r
zA-2Kwbhgf>A<>aHTCLh$@|a_e39HlxDd~OHlqMou%lfksafPKN_GPBJ%4ryK;IDGz
zm2sYn={(~|T+VpXugN_s$6P3gx}?L}#%bw2g$<p`&lsHP&03?X;$T?{44%?p`qmPE
zxU_|j9?IQ`KkazpL%_6HOmfF4;^|)g3sL%h3i5EhrBDCVn}ym-`SjO+l@;oq-x+=W
zSvF^UGgllSOo^wn4yph42H}8W8e1Cmd%4OvVsKhDbmpN?+6!zATF2zYt>YY`!wX!R
ztV{=*g^^1ny$}mUpTMvGGpAqK<^#V=1sb3tmd|wpF|37P{vigd876D$Ir}>+$xaLb
zOO;*D%N@z)9Lp2lhJPqmB3aLP^|2}M&hQn^TIX_UcIKNh?}4~qW((ZO*McKX6)K$t
z76jl5ew5FO8Q7@OuqHKFXeBS}LN=kYz!Z%z|E0-7(hUF>iocta|30SxnJ012D-!0F
zROgiq=2h(HRek5xuFjuMoL4WL*Jzm6?4H-kR0`k4glrU5&d%$!PTX3b4^f<}&Ec(!
zDn75V5CLDf)oY}kXs7j#_hzbkO$wj1B45ICuURFoetaQ81B5v4;OL#H+^NmeD9yAk
z<x#!M6IH4(S(-6BvYqkLHi9!7O^X%Gt)hV{CQ2#q@I;9Ife^m-mxjcieI~G}A$7s8
z(3a{!Yl)_{(m;1KKtTpM?Ydllv;;}`#oEvZgUpsrKB{&7an+y{?GcX5+tpf%2Tlf1
zg>H8?mAu4-R-9bHVyguo?p93D=+_ekrFZZ?$LC|mE2g7C)WixL>=dv1dH=*E<+$gf
zj+K(sQ{uf2XFAW)T@lyn0OTFx0sd0SHj!;b8^xpU+fojR)T*^o$g1A0-Cq{d;GQqh
z4q|*up01-?G9p+D&>M~1A5t$<2u}PBw+Ou=;JI6X@S27%BD_vGl><>uYf<Py4FQk~
zLts3vo(83?I3O}BfmYbxH56(MYsrhuFOa$GAg(Ty8xduhE>k64n~Q#4V2zg#21%Bk
z6Us0UZ^rL%34SQ6E#;;%EM}&|v-_FdBG*1ITt$f~(QmU#JLAYM!+{I6FJJR#)`_Py
z*<6$WuGfw1)y>MWVZEn%1nVgv4t;#R)v)R1$$s}d@#gA!V(5c~m*Uqk66<7kzNib!
zneARy+U^%QySb_8<AL5&_zM>sBdCoEC5_s>jn|%GLk>`vYNrV>d6zU=c?b;k{k8Xj
z$tKrZeDhFpvs+YN)6AVFkKv}gRmlz4E{c|W*ztqumv0p;niDTJC#Ml_Fo@R%h-u+2
zP=@r@Z{iIHV9W2Wyx%RR7W6pfJFRo8!=WVbC4<M+()XW{&`|(2fb4JAmg3{q4usLX
z45<yAVpJ$&*eb(9m2P<^!@^vWVc8pgjA$Erh8>~El1TJ1fhxB1^rsXnUeRIk4%sPF
z`hzlOiGVIKhs_>S_rjgF7Xo^-PON}-56<&<=5i>A8*&(j+dVPs!>eyqie_Ka5$JWf
zk}>=`{&jt+H$)tyOK#`0l7IhOL3#1Pa^~5Ozv-nI^}l9Fycz4eC@M^J<CW5eZsTk7
zdQR)EY{$e7{PlGN8>{eShxrDHlST1Rpc8lLF&Eq8B?5@&ielXQIOK5pXPV;gek6d4
zbe;n$SY9r~1+wG;iFg~Rb6{}J()#VEXX6?T7yFqPJDn^YEzG=Bll(rnbuILE$=>cc
zTvErhQKH4}#cU~CGMzOEs4eq&WsE_s(&*!$hm>IS)->R~)R7VgkyfOce?>*b9}hJ_
zvIeAgo7bp1>t!)!Rq>W|H)jynjIJbKk6UEN8mapNl*8K=808qS-^=Omt>!P7{>mlY
zyi^U}>lgkWA1w1E<O*;XyOs9eeKFL7fXG08gVP_vHM<LZ#FiYCM-5}dBoe#>T&Kxo
zo<Y~=?n<)T9kbRg*IyfgE>61uk&AjD)U2e3Mw(uI@gcc1U(E4dpTlHd<tL3$z*{lK
z;J&I$zMfK{2W>&dT}HiM)V9CvQvaLy?YgS|)`yxtNq0cnL3qG$@sCgJ+*<OQw0GWT
z4sBjvn><~?^fT)f9B}oa@5a~Xj%e2!f|M7m8Rf0;cCC-g=21`9uej(;=s{lH&b++{
z=MTQO@^J9c%%HZCzxdvuI3Pu`9nP%=SP)#H$OM_$Zg~6<SSV6`=ltmXAFZBlkq`9X
zPyA<)E8~wNzlwc6V`&^9F8bJN%w#O`p{w2F|E|*?eN{NE$0+>%IYjLv%x5Qa|I)Ec
z(v0$F$3f^VVFvr_gt<k3VDFHq;80r(kSmyqwbKpt7<w<9zS{`mzt4ER_(g{NMVg2H
z=LtSrVoz)G)Gd2CvhlY89?-)3TK^kgIf}c)7n&sg`X&N%Rm3YE4?gahG?Wt$U^=%t
z$Bt=X7mJv>9}bend|gF6nhp3~ng3`Hj9ve9!qzmb*Nd=9{%vV+^P&FP&4*v?L6%bn
z()yz8IDI|wx9*Gf9_C_h*fDO2vB?g5ym5F<yAI~&vfybtU(FaVvqD<LKy1c9<q}9P
zx!N6kj`QiEo7Aqii?j;yS$0Q!z-YW5_9)QD_}Wz9QMu8{oAI&_JWSiz%6R;Wc4CAN
z1jfg4F#{4qF^%@w!OlQALTQg2QbQwBzbBosvr05;N(~xM3Zcr~E^rMenusOqaN3#F
z2<a7XCp%_L@SFve>4WS&EX~SqR~Ep6KN;sBO}t+X5O2UT%p(&yOfz9}zTl&4c1iWJ
zsrk$R)50iI<I4(xuZ&Ak2a-A8U$>arJwJ?m!99|Zc30do43s`V{1Kxt39Xxwnfm%N
zbaE)e>|yBh{@AAveefeQlM}I;Tl(ybBiCjkEb7$p_nptz%%Yb5x@ug==)+Uz%`JW#
znk02(jfYMr7f-vNwprDtTbO}9{+&{=Vw;^3n;SI=I47_cJe&JAGw;Lw=$~0z;OuSj
zY%inifs&=-Zx$uF&xyUyGapz+Ui;bnpzzDl^Pj&gSp(1Q-yrdHzR-G`3bXK4)89J)
zS22-Ri0E6OH*kEI4f0fO&$a7S>VE_}V_@BAXvxga((8_~_ENBd$Hl)HB8FT9dh_$y
zS4^lDk4`i1_n4t;u`2Io1tE(`y0INxHs{BR@o|5rn{1^*=43nOJV$NfS8Sf2{x@&*
zZ{fnfm;V12ul;+K{BNoF-*VHxl?VS;pZ<IO>ff8Eg=ggobqz|TjqT1m+7YUY>q0%(
zF5FP7T)0WQF1v1L^UJQeN%TTPDzw=?Fr4o5vefxsN!^BhOZ&@-7mmoe-!&Sv+TEA?
z?u$>{|ND8)CZO>A#W+x~#eM&;i*~wh0-SDDc^5?0JH4>9{S<wKiMijFacYbH?GlMp
z10~~5J|df%e0jb9@qj>Ow)iWJGDN3ac6XkEyojXyt6>g4qPnp|KvYUebMN@l&M}N%
zN`q<Q7#N*e+R``C7l{%JkEr(IImRF&SNfdbx<2E3lrFzbp5}u>-x(X9(Xmi1OrcE5
zL&KT<2Sv~&9>euo337F<jd{h@^)4^Q$A9d?@@FjFF5SqgYJc>IAJXXuu#VBUTKDxJ
zQ|)fvdYt{1J^fMORWK!GCX*3QeVT_<QQBh+=t3nduk>E7rm;dgdOsSBgVVD-&%~h?
zHpTgpKzyUUWEfP9ETuCRRotMf>u0=a5wRG)nZVajiyi3YG?`Xzx9Yr(P;FgkvAgXw
zn5HUI&#GwmQ2@<in8Dqk5}_d|Hio_zFpuAugVg78C~{Cye<<=0URSr+bs63aW(uFl
zz;XCcwJDO93u+xO3xTH6;@P-v`>l^Imx{3UB}Bj1L;6xZLSa4()2Y%(^VQMRZQAC5
zHiQo#QzR?M%bqkE04!(O5c|;%Yt9($K)(ut-djNE^dIdm+;)DP^{+gY4_75<Qd6#*
z#v{&2PQifa+SVWXZr^&kK9qRDc&CaKc4I7^#ZZ7ce0mAOSxI}1ewGUuL12YYLns~^
zt^&qMItkfI@>y4-pTVn#5mM{d0Ia<DS$>=_gXF;@UqUiQid%(&0zB+cBi6KW{gial
zvy@TE4t`H+A`(R&VpA{{14NxmF{)C4%OCS0|H4sY1p=)FH2^{8$6iW?$MGxONUtmt
zzf!-dRKK!v6p4>`9zhZz8O9E8`FkwEp%-YgiS;r(eEUOe0)trNBG$Et1T)!{4U8J6
zK6N7$>c%rtiy~NWiV~W?L*uCRKPWI>s;ZfqoP#thOFWBl@%Au)U$42YKWY@-(<qvF
z=cFkN(i=A6Y9b~e7?9w0<E^<s!xC;vebJD#Op8YwwY6-~Ej^@X<<g{_CUU(|wzEQb
z2$Tmp=3PSXB-Qw1A`0`$x^PQMneK_Et)B8O;wKDR>dd>!dlS~ul6<9zE=r4M$;`0m
zcmdv}pS7c!lGZS-ud6C>fn{aHNIzH~hL889k54lt9EZ;+8tV=B8WwzFdjx7@45LNu
zVsr&b6~O`W!h%309>T)wkXb{K%!oNtkvITvb<50o-ezI*+9rql&hD;9qt(IKXNaF-
zG$oN81<YyI3b2*qQLKJ)kd;NgZGUi-akB{@19Up6IW6Ul4n8emaKeP;>Oy*+)ekgb
zeR4=hqBr5)QroGGYZ%=4K*am9%g>`fRAtA5W?j|DF}o19b<-uI`seL0K{LJtpke}i
z=W@<0hjCKZr}C&T;*~THzW&S2^hrlXh!H}Ju6QdmskvhyL}q93=XN~#RzkLkzHNz0
zU9n|<MT(^22^E=LYv8+(;S1>Ot;d`<{~j=3oI8ub7g$h6DjS3Jv3~_=-C~SOLA}Z}
z*vUMCHE|={e!h6hlzdkiW<*1}oZ8R$fPMw^0)L$xj^Y^_6su-H0v?v&Da5vp8iwyJ
zkJA6TIuyk1Sdi8vJxJy{;(HAWzR-G$^CoOm6cMJ0g%tx3dvx@)k-SuR;sw&n!o@Ep
zL8#J7v=AAqH^r(}8zyS(<=IZ^6^~)%8|TTM8SC*xr7^Yipj{=25PdWftbR(LvWL3B
z$7)Hft2>p?I88<YvUy&M<(QMuoJae9jII^EUI0e&BOS7(>HQ_v&{(Kd0v<kEDf;m^
z<LsPXfu3xG)VWksk+mr>ZzvN035Aqn2god})iZ1oUgGQy4DdNDS^nB?AuD-3Q^etg
zOS3w=3}PLi5K23+A<@sqwL%zhYi^+>I-3d=B%5O+nvf4dkf|*4<T3fy30hEV7~vzD
zgLT1{B8vq;!}aK)LMUi6<ULTqSQpG^1?26`E|sjN>aq){#U<f#BG;SF0;Olj<Piuj
zmBIR+D(*NpSL8=_VN(In5Pj=7BJsV<<>-Vf6h_&zu${9kE4t-lqE#MN0X)HJkc!6e
zChadR=h7pAZ;dyMz`bU?U8#xqs~g~BeY%Y|V?k^kAy*{e!5!!i;7(w$;7~Nb82%(E
z@jdt!8M4WYnTPNYbCPo4=`dmZVnfl@%BSg0BEYad*4fX<UQ=Ec6){zrX~~P8pFdGv
zUXx^;|7a29LEf+-br$H3Hb2fq!_$@*u@zY?UM6O?FI5-&1UByaD+0Y=bSvxeEyfG{
zwG6t6SY3J+*)xM9v&a@TN9Bdz&ob6k&_(HL2{E*`f+j9))G#(8L6>D2cS2u;uIg3v
zpl9V0!p9tjA?6PVtFC_9x38b(>7X_eH1w_&o2(wSUK{*ec}pjQNab?SLyz6DWbptj
z|B$D&rOe*F$z)px92T$<))^4Z4$zux?W318@(Di14d`xx2rBGIRLIys2C;!~#34Ax
z4%3AaAeynDNM%*|3_q@o8k4=$neL9<;+u?mqSD@(c{yWC=u^~F?XR8LH<8<-Y|-QT
z@?E*v8QbDA(G%vEy7F_)fd@rm&*lTEtWmoI#(ZS33(t^KO9q&I;U3xx3N9h&0)%}(
zu}D9slxpFoB`2ew-(IJ}zq-)TFqq~c|2@s$vX#V&brxb&h!~Oqp8m@@a~Xa~Y=H-A
zXf!;uWk6xk^dP^yvoTl7!2&inOM&kEGOM%H521e85m#Z{7811(C89u>2r9u_TfXvg
z<|l&!0QA}!pt~h%vzY`qThV)nOS-e$TK_~!q`5;Z=M~25v=b)hQT~10M%n~Z-5z1L
zRA1WX3elSz(WNg@cpbbi_498ocs563)<s!0VIbKar>WiJ^<<Y%*WdPkt%me+owX0R
zom5Fx<9j^~OYq0@AXqR8ODGm+Eg|v8jNy0dFc>#X?~Tw(@AsUIkAb;-Ni9jnuogvk
z<#Jl}@@i7SFZRO{Hje-k6i7#97)?{JPT=<R566*B5C7%@029Mxtk+SzxDSqgpB1*J
zC<<Etdu^T=Gl!<2l2GJb$8V{M%AooRf6kr6l5=o)#}%4+B`Q=*^GpW-3vKKEKu>vS
z@LIT|&YvHJuhGo8Pm<M|(cDu%VtZoSa3-m7&rAzmcW%y)txwXENi=9d>ySW6oF$xT
zH;Vc`_*!21L*P(OBS6ca*DhasV6Vj4XW{TfDVrsjRY5!N-zRs5SZ^;!q~UbB?Jvyj
z$9yqz)>rs<PqXazigO>|0GcyP6#lyPo;iJ}{$HPg;va{W<#{0o7gkhM|NJ%F_YhlM
zzZ?Zv@9r5=2>H|H;U6XA0jnHeezJ$Ig%?S!KomlzKvmCk1U8cd*3{T#LxG1I!H(5Y
zMjh12hzkG}L9CVFJnQv`8#jKksvO%0fs~~@NT8r?p<9ylTf8wGO{7x?I2i&yWD8_<
z;PD8A;IhF@)``n03O_#Cqj~_fXfw_6_*A^eLst7^9PQ66Q-s;+tAGyvOcVZw(-Q{a
zWz?N?`S||BfdI7$Mp20-z5Z{}!l#$iteWX6JMo+_+!hWZl><6k3zCZhWb0BqOX#@a
zGneah_dE3i55+Gpfz}FW7z&PO4tbrAaGst_i4ytcnLrE0n-KvjUDqN3sm3S}FP)k=
zLj}!HSLV4W6mi2mYxgDbQA$djI>A0qDECm-fg}><7x+wt-r0K@6+z_<wMO`Xt>UFw
zfNCE>p>n#Xv%SDWN|GaZt#B5>r^a|LHG?<|%N&*%-xcS-cT>qu$^<Rg&Xw7L7h4Sw
zq#0#!5XJgaGN1Ko#(P9M%%mGdDG7yV78f&b+~p=KddtcvI}O34nzy9y%(0Dm>3XVU
z-}TNe+fEDWkQ%-!oph4;?b9Ryki{u_f5xSE^HPxwGQA+39xw0!C_dAU6hX;mMrCgd
zpA`KROmgCr7WKNu^Ll&K4G%za)vO_0VW)ky@nPlx^GYTF<@WEu+60-iQU+h?Vfz@R
zBMN}d1^bj|tEy2@kWyf(p>R}Ppp^>N+0ClQ7GR1YyCvYU5rwZTsxE<~gB?x92=H}6
zPC&k*;E1APKKNoZ82C$GYD^V2AG%Cd%u0c9*(z=|%A!mNmwpvd3!;=gmBhW3-r^kX
zN0pw;=LZCW!%r#*TcDP!LV5X2@S9@MdONxtyv*`PsYW-*gOn41W%*ql`ZYj(=@mqJ
zCh<zwDH~Mz6{&<1UZ!1M`6oWu_?DVKD#tCK)`6=4G0GF?d5R9omr3Ov6U9dBh4J~|
zT1C`kAZ&&w2dQ>tq_Zrjx-vZ<9Fc0?HSgy!1FB>dk3J07sj2cC0U-gm&|Kkn!b&_C
zsRi?9EU6WC@7M<KRsPsk&+*Q4Qqlm6x_gA`)wEQbs+GC-89L<^FPNlx?&++18?iBf
zR^B%%3TkZjgf>&ld&LA6z$az8B%y=qo>F<S7_Iq0ErL@`quvEiYK=gD)oh?Bx~#0P
zq?Ssp^xwVpZc9A5npsIH%lvIbrdMlwdI09{RY|?8H`xP4zPoi4?eOClRjZz`b_KM~
zb>^SRnet>v3s7L!wrJh}q}W{@Wa`5%t;eaU6R4-c6%nf7!+HojKca3VZCZef0YekW
z@DjT_kRnElF13v8Ky5zj*`)EZ&Y0Rnr`F{=mR-gbWnWBY=2t2y>ph8%y85(5ik1AJ
zw4TP$^(0ZwNmIg_FLJE6a)=6GMVpPSau=`MGVGw-+@gHpX;lFm!OQfb!)s+G8pkw!
zE@{@4?@DEcXZ!dVW{D%TyR@$0?|g*THl!KcbGi`i)O;=)yo`XZuN2OdwdvU0Nht*9
ze{6A&&`sTA)_wjUl?TpvzJlEEZ>meHzd(RpJ`ye3J`v>x=lpJw07KaW04W9Fv=h}u
zeUmvjEH~n=l!3|2vQgl|*#dQ2hZ&PZfGP81=MzL%XJVVSX$>h9h-6sE?V;AiEw{I^
z0`_LSR2xvWu{aq>yv^@tb?>wpP(!PDWP#h=-+n@0YiiqE5?}!dWPLnp_D(>M>}=lP
zasLI@qISmI?o%3R(%Lcztd)L`MKF**9U|k=MVtglPj=H^S-P;CJ8Nd{{=r(5U?Wq`
zBj;>6jmi&SW#z<~Uv@_5$!JyGhaRf<fv;M@z8AK8_a@&Cq^Cw*_-ztrWzBn4+(y+*
zQHyymOwi`K3`K%qwnwp$Zngw5xCx?`@roM$wlGcKOy)>Gj_qNyN*7T83aP&C(-4!p
zfBuN<Xbh>OG=R=x?EKLK#w7a&0(q;&+_Br<^}BtRVuRIp$2Vz^r!uNi4fZbY?5~Ut
zto#|sf9d$htZRy80I1at^nU11dl(p$Y|UjhF##=6y%CAMd1<V;_?^dL(7@hx^BdBz
z=)(3$dxv&qhY-c^tm|UmHDFn)H*&`wZUi|Vl=GCobd=h2{D*d`20(60_Wq-lCUiKx
z{NscZdPtD<>>0ZfGzJLpcD`Z6$-X|EvhMsplFq}Q%K!c2_gS1}9FDz?y|)n3Imh06
zh7JkI%1T9@WABiJl)XoG5_Rk?d&^8kgCahq{Cpq3KjD7d_v5<m_w{~V&!++4^nCKl
z+v_MrALZ26?%0X$baMAj!I`shRc#*D)ltOdUCyQHTh6yLoR|B6)!E(%1H;kMsv?q$
zgHQJrbmMoMprT=fOAT}m*WUu}*AKn=U#aV<PL|V`et#c0)Pn?%O{&2S&}NZ%SRk<2
zfshV&dKy=bewGqoAjW4fh3d*n<F=7D$kz{oObsTTx{H*#@&^t+Ngm3n8G1T8^z6$}
zK6<!NYPi^VxYTF3JbAdXX1IEExc1BNlW>ph08r;TNayrU(@INI`*mlJk@)%%r@4{8
zL4AL3UFTy=u%L`6ag7>;#Dtz#9xzB?qCbyx-JaFEFMRaU<aL)&mF14nS)WmZBks4O
zV?Q2^www-ss_4qyKLeMF>mBvp5GYWiA$c}sF_)Hk3*x2!mZOfGi20$tS+O^M_}sYd
zF>%`#$`CMt`YTe@8gc$F+k~8?y~J?f^X9J)_*acL<gXxS{lx89y022e_hill<?x4O
zFQEc2$L8^9oL6+{)E;h1$fTXmcS299&=YsVTY!7I1|jS0b=u(@#X1w|IYmjIl5~dS
zeJ`l{a_L>VthhS$SqkX)@MWVzNEfi?Po%bAgl)_*|BswsPv@WESF?eXm;ki}x>fMc
zxp#u6b%5<(-s?NQbOn;F3Q!%KcTJ?E$b^Jd;GDf2jfq@!%vY#6X&yXS;_p1S{A>1o
zmZEz-4_*1$Ed9c)Cg=1*>!Ll`C#K%Vt9f)YV9{xnulC10#h3P?wC;TWwCNqVZOWAN
zst;t)X9?*`Gf>h@$5-ckf!K*?{EIF9n`Hgf=+i6YuT3Ug0}4yKEL5Np7A3){f}Xun
z+1pq=#<(hFF3mp;Yd;N;*D`FOCKjh#@jkKolxsFOy~3!MHL*%J^~`c3Wwm5xni9k`
zG8X#mug~ci9LmNsTub;VpI?~1Y812<5w#Krtjo}~=Kj6h{<V5UY9kL9V9vizbsj$5
z5B`T|uziAUg<%|ig+;CNnUO&ME`}9sFgZb&(Sw|Z95AQF&59d(jHIxo_RU4chH&fi
z<M$b-kp-NnSw>b#dG6d$-?_z!g7`*6i@B7B0=~k}Em;-EuMX%&lW*&)Y<~QMzHw|Y
zO`_3P2`y?4u`g$|4BZ5$ZEpSE;yU22Nx?FLHb1o8_Iwk(Cmsx*{LoGf&KAY|G6?;(
zotYjV`o3$!y!-=+m)cWP7j$3T!NrbKrv8rI#|+If`}cxT_k(oaeAfCHoOoX)w~j%;
zlrg)0$Jcb$hr%k;bf3%yw(<rWJ`TiIaIrUzEu&$A-Jm<(Px^0Ju+D5HdV=Sr!6}?H
zU3CV>YV))w>ydioii`PB`d7`4&t+@K^Y>LI{dV;WzEn)Z-tdwgsB)00Cj8c(ap4)E
z)dl(F>(}|QZyZ?mS9N>x#o-Q34;q*ZR#nv3Uo!YAbdlGY8eGJizvVU`-;2OR3=qCM
zweEfTwqrj54BpuTQ<oZY!(T4my9<gK7j;^UyEpXo`<rqZ>{X<18oM)<{Sx?x!qhZ{
ziPadozby*Xq~6U}`Uz7segE;h=J5Bm0T8T5`K@zSW~$odwV%KKIR-F)r+pF8vYCIp
zb;$o#s&AgT&4NPJ-*3_^_2fo;^vnDFe0XOv+Wvlg;0DtQiFNC`!G%E~A=l|{Y4{_3
zsia1f%i|}x@pBy>z)uSh1rH8=@LY5v;PIf|i1G3A^s1)I*Ng3f4(71W-NG(RXEX_y
zb3DaQ!Y&JD9sB*G+nDPVB7LeXp9Z&W{VMV&P%y_?fxonK;&oJoxyiA8O|c5wu>txn
zH~fK{YschAQD*f~<ZChZ3o+F%#(z41h3XmU1Hehy(*gkG^3-pKpTB?03-`Q>dH3HR
z!M{;phrdaxLBsyQ=-YUB5e`k9H?WLV<>$T~%II#y>H8_N#_-p-!q1+#v+%*HMh1@N
zhqHJbV}NCCw#4H|IIM`>iXB3LrLo5hH@h`C^H0WG6FDA^%)TBgv!w$S+mp(izV(T=
zV$FX{%z4$BuGg8Z1Cg>&aJO&WSLtuk9({PhbH9f1yQHS+pUg_u!I{l7XNTAeHX)B6
zKjPns{0U0={8+1ie@B^ZFPZWgXk}^ZbC=Qnq^&~|5=MDQj7W&|gOP4RSMEhi!W{59
ziw<z`&T&nH_m!tfy9I4YFL-u+D9pLTxE<kbH=)>GPDkUzgP*h$BkI@A8GYDI>BUA5
zXRHT5;Lm<B4jc|*_7Ll*6`^-K-L#*&R&$d}Yb;l^KnsoMtd+lb4Tp*&wz-AxxhH*;
zQG&X~xAkxLpuoh#N*|kdR&sR2eJSAsH)iY;Yq#+l%akh1GQP{03so@&cG4vA{%i?y
z@3<XmjQ4M(d9mTMr-A=vZY#~Wh(vtuqdM$*u!>rjm|IMLIH>47b7>{MU$D@ZdmJ*U
za0_FuUk4|uJ}Ul!tY;j>T?35?A70m8Y`QVu8o_nj&!WTqV)z9DQ<j~*e)6^MZpmth
zl(iH~H+YejjTRbCI*{Vbgos;*k-G$VU@Tih)#ixK--o;NFh<g?J@=Cz+g4m|-|`X@
zSX~P4cG1S1M=U1Am3J%P0r;$}o2f-o6OU5W_8RROFPE5SNGtFs7K1N}9BO%U(52jy
zdG*2#Qrg(;rmx3$Vy!5J68drNdpSFqOQtQ3sDMa3U*n7<vuSgdy)`AVGd+ZuGL|G^
zW8xEZoTK+K`usXKK0$bGlBfDSW0NJ{vh6I$m$UN%3bFKO(P<bYv)A_LUekrc{jnka
zhDQl~1ztX-s)}fsnMB@~M~QTWpUelOUQ@T~8GdnDP0EBx25W=VPNns@LzXkAO)ve$
z&ba=Y8Gfl5&}#wnwl4MHhd4zX&03&I6eclKISRuiT~*NQa5+mR8px$r7wq^$S-?<M
zcKa;+J?)&9IjO^;)I@=MN74CKjWOV*9z1_*+O=1uv&&s>`{dTkR?d%YM7A+SFt+*Y
zw+mZbB3Z5yR1yvBi`voFKu$%)@FTk{)yG*7<AQ#T(-X3pT-kn#4fbZvIysufF@RsF
zDmA_^CeR=v;i}Tcy_33{BFB?>)V^enlDO=6*jDP<1`{)qk)#y;Ay)Q{Tp~X#Hj<RG
zx$W+SI)Jca$w%&yX7{E^pP9>I*sZ<AcAQ&WVmLxM5@GHhu7jg@X`Y%(wA#+HM=6%7
z&9r@Z{`6bBRRi%u`j8w89k-ooA%zN4Nm#YXcjjNxxDwXY$2=an`8NL@cl8%jZTpUc
zCKs{r{2t~PbH@MN0$P&>FIrIStjs^M-b%mpD({vEx98uV7ac3iXHx#Lh6ji_$(>(^
zbgVu*rfF76mmklc;6i3E8#T$zA6T}N-oylXf#@x5x~^zA$`MT}9zXF3mS8pSg3*iF
z_r`ebt9B(C=CIG)De8Vf@4jy|bpKD!ZrpvwPiIzqe~NBBru5<Ijn~&O^u^55i#~UG
zdl=s9V+g0xzMi*-Nzb#`6utT1Dd=rQ&qB!;iY+K%9qRAFujb44?D=_+GrSPHjF;G7
z<Gyg_!qu<^ExvyNR^N+^E9vJ{l+xBM(j0o3o`@l_ZPXCfctR%}i29vfhmb4i=EL*r
zNI1$X(K8l9_VE<<yPFAhO{?&ckNFItT`*xL9qz(3UCS_xKFK|jrzs$or)bkm|4=)_
za$mJgD4qF%+or&gP9ysviYyz*vxz(sk=>q%7gf_*G{%AH1J;w1+y(yA7lmRv3Y=sE
z_>#wQ15Drc(!JWRieA2>OGp3t!G`+vGYQlJfj@Iy&v{|nnO9ZFkVt|0GZl%Y4n@1`
zzQY12ifrwEm&G&lDDMu=6>x&S8G73J4xDm|w0d=2ZTe|Ty-O;2!SwbU=I6JY93I7=
zw7RH5Z&yr2vpJ@<^S9yh?UU`ziIeY=K-SrkRSTw#xYl7xU8Xfv07R4{yyX5A_O<ep
z<NLsj4v<(eSnd-W<L{z}oa?t+|9iv-3eFXmm=QV2q*>7*ytVKDa$oco4`t@RekszA
zyY{L8DV~WgV<AJ|*S#A_JS?(N)AMv*Dih@AcvGC~Rsn2U$;41+x(^$9&|zK1jfrJm
zssUzNo0W_%1Zhc)L*|>0p)LAn3kdSp>1%V_A|{I!V|KqkD=3ViEsAMmN#L>?UMGZ;
z15&89&dRC;QR#k>KpyI6ZpxYcBImLX{@<Yd`aJ-uz{sSl(Hc*Pi1%cml2IK%Wyv}E
z^4t@?ycEhDjsro1rz{2|CIGJ2=i}e~OK&X+FFQKDh}YElm)^6!G@nR-EU-_mA$MWo
z@c=|(9c+Ze*~s3(hrV2P<{WEnov?8TYf4*r58isUd!baO;O6pHWH*pBfuLpGsKwUL
zwbYk(Biz>CT?9^AQU+fH{)eLc8GqPZW<qOst*W2JJ{^Q5b$!(Y&2ZlVaM(dP3YYv9
zwvu(II6J}QdC|<-e}Pm0J%Pwiq@m{`v^DdoetqQkyJJ6xy-&iUK@@Kc##oViHR^Vg
zu4!z!w36C5>9ZIU!?%SPKwcop<rvwt4Z5wmrhGbIv9>SQ>Frc=x!i}3aRC5*4cQF!
z-v2>P(N*UO4s-7}j?p2b0_rLYZ{e)<K$V7Dc9mCDjP8%Z7)FnYtgml5y?i5u(;Y+W
z5Po02MwY28-!OY{7mHnRqEuE3))me@F9Ctj6`<?3d4&N(pZ(B>VbTiqK8bT*duwj4
z>gg^&4jOXkx{WHn$xk|<gL*u!@5ge{h}}!<j=b>Na3+oUfKzVTW!Cr{W;7D(#`$Fl
z3bI|@{hfDaHCscIW7XYR^)R%MzudM_sxT)8+#ACwN@|tF86~0W@ir0*(I9I^FhevR
z3XQGSbY9^NAHcyF0zesV<oxwFRG|Zpr-@lo=WKWG4J0j=%F&8IGOur7^4nrbMuGbi
zQQLY8P{%^s)_c{4YhQVe5Qcvfo_@Ty7V@>aWZh|<lvlc1HKjFGdGIZ|%3|y5l>SD)
z^S6*5jrBVy8n1enz-J#{f84fxSuOc&*W+H-lGjJcipBT8OdoKupu_fk)?F59wiU4<
zYhP9`Huy{I^Hg8H^ZM$6OVX?56o5|kRE#N~dQk%l?dnYd0pAf|?0u{_xnr9!d17g<
znSVwT-s67hYGN;+-FH@tj&l0?u+iaFRO#6bwC*%)@%BbzJwy1K`o`^-XS^p}Z2$HX
zu7+>Ds|6GuIa|f#hgZf5`W0RNcc>M@&Rj$Oy*U5x*Q>RN?+^G+TM~>AssWVq&%mIU
z@4<iX^6#4)Ts}Rx41+rEgH-2T{{1(9_V2&72WMwjONj+g?l_3t_hTF$KuiE3S`a4$
z@aF}fiG%5r0(mFEvWyT#bBIbBM1A5s#|qUlhw7z4jV7RGj4&&6m|Ys|$^`5xBh58)
z8qYMEn-ettjI=@Kw71h}?@iD?V1!4R!{gH6N%hQP)Faysa2pkpI|5htMO2O=&R*$2
ztIVNg0qkfh^2I(jZ6C`?g%GR3m!**iI+WQ4q+~a4xE_%|LANGH`;M9xxCN^>^Vz8f
zsTDl>(GRFnp=$UPP7-t%!lp}t1;k)~?=$>Gf{m%is{9Pcj7Ux@RAQ0|a{!XDV9qgN
z-0NYuaDa}(Gn?RI1uUR><0veKu?f$}aEn)ogf$^M?glU>3SiM>s6LtcuYx7Of^FV3
zct;L<vJTY*VC2bXUI+9yufez{4$le3hU;K-37~(VWDJPn3z!V>&<Pr3<|ONeIrl(1
zRC1EV7+~=%hUM|IpGGoR<Du)LFX7)9&WRV<DWLtYDK&W5nOXt=#0OTJ0^aYFzW^ER
z@j86-)~kRGC}$%-h#m!%=i=;!Hh1BFq;tOi1hvPpsViVr8U=&oHJB`U^L21~RNkBv
zzP|@fJ_14pB-b|6l7$9Q{f%6|EfEwA&t+Ne>Mh&@FCId-tU?ioLm^1{3#3MidRXY9
zB$Q=MhE=6e9oLg18+nE>l1&+qt9bSg{e}XPZA<(zVM5me+-!3#VQq!=yx>21fuLuV
zw&RVcvd{CX{8G=vN0y?0y7abBWt_KaSU3_3R%E$?m-?B(JUq2!Um(5+$f6$ZaGD4S
zpjOi41p_mbPu4}(K1)hBVG{#c+P382BthpG&NB%)w&zoloa?Z0V+C0g$!k{1M-PDv
z2B=dh5l(h<lsM48hTij04C<nj0zBbv{?^^T8Y0DMV}{XWhC`W)2Oq<5c>UcenTJi%
z?A04}H<MWDvAf^ZW)m1a{h9a4db!N}THYWMfYZ_{jBmpFDZCvY1b!H}?*w^=Vep|%
zrAu2X!j+BO)T68-mA^qm9IgZofCT_i_&R9ER22qjz9#>mFS*3oMR2$kh*xA8C!sk=
zN{6nA*#*!FirQ48oSFntG+6n{jLz$KObgewdHr}@_@T<QcFN_I=yg8(uNdPSsFxGY
zmT{1dAgT96Vi|p1+SlJ$QEbMc<k?Q;CHr;o#0K`T>!nn0yHu<?zaAX}w34)LBp%Ff
z(34dV%&A%_{S@~s8h=>=I`oFB&zv9}mN_TF&l8#9H8*1#F_ZOANIzyqypmEi{1vuD
zd1=@T(KIlEQxO&Xu!1Jh0PC4lfSomV)&-CgBVYSPP@BM+*9Pc+XzpyMqtPdc`(#>%
z1m92mW`1$T*r3b2q*RO;CzJv0Fm#8t$(Y8GOs`_?qguYw^J7@~V}}bGc$1i<K+OAz
zbSnV8BaY%W$!$~!Ceq3{mcp1!MIQR{xdL483cy5=$b9noVa={)23vP@8HOtjA6tL|
zi+}*H8JTfIO8L`~|5?8ke1RoKxyb2~-xV|R-Y~z@HImcvh@zyT@^coZlE>Mn>-V{p
z9eEg@YD7EU>_U@1+cLVsT&Q^JIy?g>IS~h@CxexDx?EfxWcitq6#6d!!y%4Mn`)B>
z_*S%ts}n@E*FjDru&|ixl3mx25v8VN5F9^qj*~rVs*cUT)fMo=sL*8N3#jWRF*Y|}
z&YhSSt9V-*x<E`#BlVQDlqEL#-|%yb5R1YkR$|dya}=&AWr1D-YLs8I8SnQolqd&&
zRS|2H10*4f`2H1Mf#JTkUFSp2N5;E)Vr~oKz}!M^+VAInohsjUal0_eDl{A`Wb76+
zwCSeTRd&|Vjf_Q;XcFbB^u$P8chHp@ecfByD&LTMAl;q|-K=zY;PL&kC05)2erzCX
zsFag+Z6j!Jo9&$^Y$qZy&#Aw36%aBKFbhWtF;!4)24V<1PH8Pxf1{<j)1&cR@Sb4w
zr4@+gObA2o?eNtN&GvOICJ7f&L;U?Ryj0Qs??w3cw~5>(;qwsowjOntZ)8h<EI8qA
zr@;N{;!2Ol+T7P%KhkEkmAr2*vs@|Z@iUHN5-zTYR+>;`aU-V4U5~OVfHoVZ^2+}j
zw!YOsrlxg;1wBSe@gs8PWBu*@0;dc#&^D^&HX{8t?lDe2FuU$PYR9Y{E7;yTJ3c9f
z<IGajAxo#f4(B2s9Dl<`4#Jku0Q1&zy#n7%d|MhHA{-KFlwd|09xc5j8zeZVyUUn?
z+KfT0glSL5;>h;yKFExJI`1-cBdZ3cl=^Nu_Pe@!6zqq6(<jN!il<Ei(U5))okAGY
zim$$aJ3t`T0*lOGi&I~G^dLSm7Vg8vf$|dzfP04fHH1_Ep$Y?Y--^IT8+Im$Aa}hW
z)pFI#U4ZSy!lfgj9Xq*}op>GB5P0Mht-{B?99hM!fr;zVCL3nPi(%okVbPwIKzUeM
zkYMJ(lYfblcSr9_uzR<+^vhJP?NDOcMIQ)=lPnjR_3=po-}6>mv`<g4e!?tg%>5T%
zup$j{H!pJ(Kz>_Iq}(z0je?2OY2U!)!4n&Shx*0yt*U05If%AT%)ITF4l6+Y@yT`T
zxc}hqmojC)^JiZY%uuJK{;DX{0~J^63u}{$Hu@wpShN7!5@~mJG@?+QkdAe{ewh7!
z0v+@3zZ_uk3qJ0V1|pNYr<_0#O-qcM1Yo*C?53R9VBL9%|NI}?sgrQ!P|lhj$I_DK
z^k1==W^TOCU)^9IW;jiN7*-is^*i+|p>%ii_e~?JV{3b2Ym!n*7~G4M1dOCd1i*hJ
z)sQdTWJ|vMu6?Eza-F7>S0#ubTI=lX>K0%26QTI_*Hd+Rd?mhaNh0d(om#{5fr=U{
z7MCt6J<jGMN3Sx$(=fXJ`UjYM2H1^IU5I<s83|03$M$iyMR8rx*qaP6?nXP_#n??K
zKN8s7YYjx<G9`_K?~XZ<+7cz*W98e|l3o!(ox75fW!3Hf93=;nUUx|9D!X+w?{&Nz
zc~xw5)4sctRiUlsX<PDM-|h&?iZK3dw2R(&3j8G*?vpL(J4I9b7E~*I;xj-3=Pl;k
z7&h*4dbBp~I9Z1twDjq7B#2s)BHk~F6>*~AR9FocII~e(RT^uE;^D%JY74yV`K)bl
z0FuJNNYooKR|amM?&<p)Z=3W^kFB^!FBAaFE1${(#-LTIsIye3V4}scwa!AkbQ$@-
z@`5o8tb4KEX(^E#$@B!7*TI^Z7u;SOfDZGnpx3WS{Sy3CxYuv6+;oM=zq`B8b?HiZ
z`})UZdTeB#pquGByl9<XX5)7|%ESih_@`!#<ZMa0XnHatXb%WbKdcM(AOELqBb=K3
zbU-~~VA2U2{K5*)qc8CgtN-_z@hXoRVOEEdAS-z=lWV2DDsX@ErPhZ-kF8&fw|^=W
z5seCu?lQ2T$qAQM7asB~KH{0l^QUH;E#~tq6+18a2K*gm_^TSR)a1PU^4an+1BiCw
zk$dOzz_XQ+)s=TVtJBV_^Uqe7S6A0~-fua-|M=|v-s=0a?>uWio!5?^t^MIyJHBVN
zz_?uMyzYMsMXQNnc!ToiLHE^vMc)5`y{`;t{t?rB&iN1WZ+bK2+SVOMsQKy^_Y}X)
z37APA(%#tVw<;o~oUW;Pf}?)89tE7(T*zkJ_!tZJX=Rz(S6cVpc{{X2A#8J5y5n44
zSiDiDVi=D0v88<scIhm%7M5rX=K6=v9P%T#qdqr9GU;JZ3h9m)Ep`d_uv!PqvJKdm
znwS@wyUrLS=@!;=lK$QlbNDSbmA-Gne}&Ti!BL~^NALYIdBvsDxq>>Ff4twH&;1_4
z!&#cnS$i<oc#G?`#mZIpgM0DpXZLxxC#+PjVg;;P&)f>2c=Dlt(D^7e{h=m{2W960
z&GrNM;T1xnxy8Q0HSGLJ-0(#f(rmwr+b{LPUzh3*2{@Tw(kIm{$DtWkHH{)Y2wo%0
z30fw;qg!Ra5BN+hf1{XMwkSeuji6Xw0n{yl@<D;c#NV{Zf?7WWr`H6ZUF9!dmN8Qh
zw(I_V#qxrSg2-R8$m{HK5MLS@r;A}s>Mu@rjl@0G(=xU`Rmz)_RIb)(wT#q~vexJ{
z7MYP$Uh?B7Dqk6jo_<JYyZ6(zv&wuLV=zh~Ba`9>4UCOg@|<|wx2<NZ1t*JzghVnp
znDo$ELJQoi21b|!qdAe1&vTw$WnXGAQqpV%XEyV8*%tcxhW3Ln&u_jvdg!jN!?_l6
z2Np@Ure(72A8{3?hsaJQ%^Z9gi357L(g`Ds>7*K9D3L-2p<0IFI%v4%FtVyq`e0|a
z*j7k8nLVq%;u<YOCNpzYs#AOefY6LMO|4k4FE4%+3#>iPIHx)^J@^V%Zm@~YyBO@V
zqKds8Q)VLdn|0^Q4cN}bIMEK{1WXF6X};l~%4|_G6~RhV&>Lo6LLd@P>fU%Y_=wv-
zL-r&>J|YB4EUMiC@E2}<e%0#elmRocTM>P(OCFY*;_rVK5b{Fkk6QI&I#Wc#_Fo5?
z3T9uu6MBAg(wcRTS-IMU#$>!8*f#$RKam8x$%2x7E+l_foTk!UD1o|v(#Va8XnK~H
zl+p@^23~s^oO)*l&c326;Sy~5G$~N+P7U_*?G?lCMc+v~|9ss+Xa-$#l)1C0I1{8a
z-^)~QsTnxD0uS)}VH5l)vF{;cKt11xXJJY#H}v%-7y<e-{?}FJ?Hm;v3!OH6_dWga
z5Fq>qhbt9=E-Pk>uv*lE-e(o4AjLUYD-~SCOgu`HPo%SqSJbvH=?Xt`&=*JwU<a-~
zI9r`BPLY>mFN%ZaomeN@O{fSYsQtLj0ncICU`n^Ih>3yAvS$qo;|xD@JhTg5e9s2s
zrCc|=Of2FJKiuyvi}*K5AUmAVr5>$g9xUpWK6cP}RqPr1<CrB5hArjD4N#k;dc||_
zgMC<c5~8E3b(FVk?$wnMh=u)(8(N6jU{m;wY&?Ne0_%E?t)MdYAhU3Rl65-f0pM$s
zrEHK?@E4F1@eOi+1tU@+M244p$xC7UdKq~@QcmU;d1%nGw!)aSXFAIuCn(CvmOKZ2
z)$6;L<1*22=Ytt$o%GRm;b^$|;-j>#SxwWNW3P;Ec)e6j<5bm?*ft4tT4e-1xVuJH
z6$+wF455N(g)sOVL~-_bXjN4sXH>N|Hz~49mRpa4LZnasU_^e*<$3`QU|coVt1(x6
zOLMlIibB_<rJ>H4afO8dT?OOryY|*JMzl~khqnp%Gz93C*AMp}aeM#-u?nTNyJBq+
z>(pjNzw5n7tT(@YkFL|Rqd6b*{pK1=wuW03ynl`YdYSFGd-^!IK*w*SUY{Pl(F@zR
z^^_ir37aiQRNH-A5S~VZwz=9M95T)Ot(ynYf;X&88siCLHb1!=IIP#z_^Rf)QJ~7q
z-J2HmZ#6caAKNtrxiGKsJouumu*^+)G1l)$w}8n?Qfp;?_!e33)c4RZ18E|jF`*m7
z@`3R?E!P2c!qEy>8M+eK9zLdWg+Hh6;7Jew{T&T--PMuX$LpBtoNs*@O0eWaU9O^%
zvCVi3u-q90DhN+NX4CP$GS?GWQI=WOM$w4K;dLZ%X{c6Q)SGpdRslkn)GI1Z=LaiO
zuT3<28Xl_tnjRCobCGjtAF8U<jSOjJXG)uh<~b$7pB6AIUkBenDA7WA!k(}O7r@P&
zNRWpGh48@12Y|IR+O$6UsFTFSO~MUXrh#WFsW7Z6b=7ITaBi@ejH}5!cMGYVcW#a#
zY9hRhScwXcNn#o$j;odCN$NK6$k}&s2~s0B7)OGHafCQ-Jk5s)B9wtdg*j21&R`R+
zZli0+VSOkbIVI-h-Hoh2sCGUWh6+u@*?P~UUU#Krk~D-l9>>L)-dD)fxVgo3w)H9V
zEui?=L%SF`6R&pFHsvu5`?lm0Hb$}JGQSxO@V~=>%SPedXt*N?O**-#;mCg{?w-5C
z6#()f!phH;yI3)Oecba)!^1GCk4yq&(-7Ur>;miuR`wj7e(l0+c#8viRD2?s6_gX;
zL*ZT|0qm+~sQX~gf8BDX(x0wzten!QOI3{~*5P1AssOFGh^9vu5P}RT0BH{a;QC!y
zdvt}|)xJrQH{X$S4c(C6OixN0Vk)&N2GyziJ;vN5PTSsogwqA^?ogUNqJfOT$wf9~
zT;S8z2idl8^24b(ta!4m!;tsus&;e0Xq2HXuZJMkL1J&1DqvyjIkS5^HGv5JI^Z^8
z7+r%TRlCx$*h{<HJoSQC>7-Q+Y3o6o`??!*I_amH(`Ksvmg@S&`=tN-iLfN;WG&o~
zuw9CLJZuhDwc58-b5cyIaM}ao0tl$QO$QfkEyfbnI07*#FXUN|GDE=Re^jp}cJ0uh
z_$go3+$A;sHV|uDN%~g7%a}<upZ1CiyPD&)tFxg<u2SK-J4aD7efBCZtze#|hy1+Y
z?Z@zK7)PjLIYDKG?QKO<CdrnFR5?9-`#@3lfs9VklCBZ8S3)jeQ_VJ1$*$9pUB=_u
z=E@PPvSa)8?-HF2G1eE;==orBv2;H3>|fZN#5}5`p6I5$IE#M>mBsVKhoB<af_IoN
z!)%ltq!7QKmEHPh<Bd+H;TVkn3YR*ml%l7CS=eJ?ZYP}lD>l(}_xWKG`vBUWgg^$r
z7+Xz>eG>B_Qm%=tEtNKM<?HT_@|O9ClV2nvF9y03ofHNA1YA63nJLGq1wH@yQ<9Cx
zQw~)<E~2QIJ6mJ+eTArHqul*?OZXE*CYtve>gZZdJdBokLpF;{e03gxOHCewX6e4j
zTmy16OmC{3D_@?g8Pe)>;OLaB-<Kzmy$M1_R*y%!&GS_TL?2~k)Qfb#IPT{GYHwzN
z&7;}hylxdBdoSscj()n-I!m4QX-yhul{){e3K>~C)BjoP*lN)1E7b<*UHwA~Aq9Nv
zANwT*+4N^=0ot<yau<DGUufYe`)02dtkQKt_0zl+(48Lq&fl-4b1%(DprC!#bmHW_
zs!P11mIew{pu*+iLo0fva4nFgjcP~#JuxsBKBV5o%W&J<v!np}+ybK0n-u-Tiksf}
z4PwmU*)#FCt~Z_}d8w%uhXh@wz(hEDs`gdE&r|Nacyx)1*r|lc?_Q(7CJH`BLXclQ
zhy+7BiI?7JBIsEu6L-gmR|PRAba$TZk^I#$?@b>zl{;tKW6VsI+>b^$w(7uX-0xmI
zck1$sFb3m~XDxa69JoNA!Pkav=HNp@sj2SKXETpO{a5b1Q|C|rk<(ETxUnTj#%+tV
z^3ZNlEXE>l%#y5mAABfcc(uZgl3u^(7e}4D6aS~2*ZeLk{_M^6+pp64a(|1S$A#a0
z#EbakqN&B;17of^AN#0Lp@uvM#b5Via>u&6UjYlDs!!pG9APafe0?p{e>v#kw&$)3
z`SlHigNWW)S00V9wcM~c4@&;K!uQK?PVPacs!7nF50iiT_%QYb_4U!n{i)B=CIPp4
zAv@h~5CEcal%<U*q_KKh|L8wL&hF<Wt}n)rQygP|H$)^_x0d`KLul&2zskc$PSVg8
zI{8VjcQlikQVFW;%O4K;wAc&dYT}ts&Uo7Ke0pg-+!eqg2f)@%V3KiF#cw2O(?YI4
zlJbgY0B<m4XrmTc(80PqOB+63gN$zZzf!Jtm(Cr3T{A9qF-CXQVY<Kp)F~w$i)QLH
zRsc=Ev81DKT|b6c*x>oGh7r<A>NJ{_!gJjMVEYeIK2XH=3Jcn8n8i)OylA-A*|`(G
z7osO4OoQaS3iNL-w{7yry5XbWM?1Lv2U;(iEE0C>qA~(#>k*hcKI%d$S4BS9kMNI!
z0<)gj@Y;aGw?6Xl$*~etJQ4(n0z;}g%ELrST_PV%p`ZgnJ<I;20c6|D&J=)asK{5W
z1C$H}FQnoGa&bpa>xj0qu7%z$Q6w34ibW{nnaA@qJ+v$wC?76RW^9IcyP{~kF=x^4
z`i&r@`wS+ySROA(AMzL;e+@-)U@q8xPsJ-Kks&K35FrT6eFT%a%`KnCLUu(b6k;^o
zh1joSPK0;{g%T!&nA+V_GA+%*mh}9VKqcqz1UF-oq90nSu*A%Nf8+tXE3Vmz*_el6
z$y7%y4iOLZ?`zv7x{J85OIQozg<_#1==86Bx=Q_$8C&xGNml{^vmY)G(oJTq`2wkU
z#ot9e(bri|gqhMlZ1kR|yWBd*FzuHnNUS@ZaL@}f84(Ti`R*j&F;(B>qu)hy)Is$I
z*Hr(xkyy{V#>2BcO3Q@wMYz2_I8gP}Ekz`<g$0h>Sog2puE=GUvhYeRa{@foSC(GC
zdZ%F>Epy;umVsoa3bEz^x4bEIeu?$I+w=;XT>8QZE8U=r1k^s7whhP)o=xeSW3Bo4
zxJ}gMjz{`QvEci)0-haAFbgP}?Ak`C|1#zW{X`DEayK`LG9h|xK~%dTEA+#Rv_PL*
z_D3sjP@sinCx+oK|HsZt9v3+`p=#Q3M@)KUAK18QANWF-)<wC6rrZ#mv8E{rzcX2-
z`;miJb$og+rmcdSX{E+@lHLrV09F_y1S?dwGy?}Ur*E)yrD?)E-ms?8JT%U$khc_9
z_<iO=Z)=i12V&2|U(u#kSf|`*r!=hZsC_QiWT#_-clYjl`Xqkx8E4OnWKJrx>wEkh
z>)rKGAddTfQrw&V#|l`36_2bRmD7`X%<LaupNij4uLQDhAnUbO|6?fD{a6;E^Zl_=
z3hOy*h4}q1HjYFIEZo)k*NgHZ!?MYN8UWOt+I-01m?5fOg0JQU#E!b8xT&Z-0EXVH
z&xq7a1NwrOX)b|uo$(NRKv?&4gUC&a2+w_Rbv@Hfi8&%#6>t9gW8?F8s1iI>4i9T1
zJIK)Grrvz@e6QBEy49~5Qz6M@yeEpSP-`PM5%-V^s4KmaFm3UW{db}Pz*+EFY@Ijo
z!iD^TlOoXU(JkZCQ>E9)DFxN8teM)SJ$!hQ;^ooJWTF7T*1HPcoO|Jm0H-zSgc<=Q
zaD6)-iSC2vJrNrG^qO0z_m{UIoQP808?55F#3*%zTZ*YM1|&xnmD?3{lIUwAliYo3
z9lNsx@`gHq(P61E7f`JX0TNEUC{?L^BL;y_gq7ew)`MpJYGzzKu03DLQLZHwOvB=(
zh9bG$Gd{f<^PX|Zn(g;Nj!JPg8?)@s`<F-$ywR?HBjHzH$>Ou+)+Hhl97BW0ixED3
z{9L>AZ){b;mbpR-R{teHPDV(|SEBW!wi;nv!KX;R_On1${*=dH>RC-^crRgz_N*6q
z#%R#+N}|S(vTpg=e^7dLyl(u}Lsv24^D@64CNk=iB=id?wb6up0aUKMTO?fG@QnQO
zIm?F}so`&&Aono=Yav$a-r3JnuZD-M({q@j6A>%VSV~@4-RF;Uq5S8PDpN}i_{Gzf
z#WNUgrY-F#7e)^O>Jeh^{w5Ba(FHIMeh+DuO%6l7cUnDY?t)|xPsWE&=JwvW*MH`Y
zX?9AzFJSxaM%{pjAO;I;=24Hp3q#+QV8)ij3P7BljEpAJM&ku0#Dx~Vyd0~e^_M$)
zY>M{EO>kc2W&}1%sE{^%@F_hyp6m+MLM;1UT#}>Ts~6Be_dn=c5?34!V|@9ehqb!J
zUfA3kcz=Tx-+*PKAmfmzr}do0`y8*oSFZ%nf0tu3>SY(>VOc)-;r{(sq93!WpJjqM
za~idOGi43R%4t?R%oAunEH{(}=AQ>~J^AuJ-v6Bp!+UM{ERm|fj$6cDc_Ew&Yr)uu
z><@#{lfOJbe6m?n>4EGBtE1=7T`PJ}y+p>_jc4}GNUxm9OHsw+3-C1(>Zh)m9GS|i
z1yeVGcr_|8=-O)sZMje`l*d@)7%5u?$&O7HC^V^fg1wY}hAUCUcG6#*&XMAOs<?D3
zzBE-C`6*vQRWl;7vf~vV{*-D<h)^P5G>W|RlUK9nEJl?KqSYo7^{93l_?Y_xn$r|5
z6jJSB)8%=J`g9OaW|LGVRsJT?G(hQMv4L*XbhA$LS%gx8R4_CgZ1_{rc%a$%os!9X
zv&q__v=dF=Eg9qQyrx$vrhFi?GbIaI9dmW5ZPpgoF2G79L__j|wO)(0S%@jr$x89a
z$g0KG|AO7^7P|*WTA2W?6P~sPKXKH|YS@B{zu@q+g(K>M&5I-ZCr1uFEzWBfTt2qA
ze7|t@xaI2Ek*yXUo(V7ql9gm*XuL$NQOd5bKe$4EnJI?4URHLuYrTF|*~7Ed!(Z9+
zcB|(DWv{qauZPMvp0wV`SN1M%^?spz^JVMJx99%DfmWY)%D(fhzH7>UA6xytEBha}
z`kyHW(7p^{P`SnS@)n;;py<m$S(Tt;ZK~x@SbY?2M@Z0eNHB9(Ff(nP`E4Pm>Dqvo
z&agv?J3viQvF+8{!;!~7pi`VlFI}|AaE%L>Re(DW$agLqMlcTr`45IN#DekwGVO_S
zfioG>c5fbZ*YkFW?1_tA?`MfV)M?Mi1y@Kg{z_FoD1eLz2BMUx@YA%o7u2c=LahG@
zH-QT3A;erg31gp%S8q-#Kd}jK6J=+*@2$!v-J6(1HoQ!U4N@&jCdbc5)3mkuYOC^D
zuxq6O2r+OxZxl%G)g!IQsQf_o2mpya3$hmcFZz#N@`$P{3FmT2)nl#CWUmK7dX?4V
zlIwZL#QMKj{r_^;!0ed-eC5vL63Fu?GS2--RlhAmv8_NWM0CHO$vjA<Elab4OebDV
z_qGI8Lza^VR`#E9Rp4o%knOLjNPK(A@_<m+ry`ZR6lFX`ua7J2#2yCulQOGpu6BYW
zSj%0k-TGKFt%j)K7)oo`4fze%ZkKbuTQ+UKwxNbu-1=~*>%s(~>bG{&wSmG%sxcNI
zC(+*$=`7WcSPVsr3XfGuPhZh$2H!SQzfYu)%wL~r|B0iI-P)<hABk*XXz!40iJnxt
z-Z89}43)^%CXC+Hl&fNqPQr1Y{le#IJM(M*wbXm_qIaP8$4f?QT|fgvh6<U7-<3Mm
z8ob?ge2)szR$lGvRM~xGHJ7*6ZTcx>@UjMXz-#X)b?zB;={yY)(GJ){jb|^)bl%((
zDLL&p)-bt3<G~ITPq>gX4Pq+V%IjmxbhSdA*8S2JTR+njG(Ph2N)MoVg&6yLa3q=k
z6J0Z*6(UFMHOFcyM<D#-0`>n+#SDZAU20O#DfZDX=KkB>1IoY~Bna`Sat()T#E@~I
zf9&xYLhwiIE@kU1r-6g_1O7}T!3(!LJ<mHvJz@Q_rkaFiAt~Oq67jMhtVWX%10+tY
zA=Z+FAK&}@e&T&o%lHP<S$z0a*7525alP)1KOJ93nhy`hHq1?KmKbWM7*{?vn;smk
zoiTe8ZCc-!)Xa{`8A35F3BO!f`f)F|Wjm+Y?xqE!^?cl3n-b51Y~A)Rsg1uoH4QFz
zFj9Uho*OQ5J>(vqc65G(zZHg#Vi}F!W}Btj(j5qbd${>l0g#Sdbbw(4eOwPaJ)+27
zsn5r@Hrf6Yi=stq)lL^Ss?X(#L?25;#2nGWNygvORBL=dt)rLq56$C>?8mWX57{Go
z*bDhHy86pfvmt4XPxL_-lvVmW&Eypnn+u1AM@Fe#-6BkEv5&=`BvefpS%Om8V;@Rq
zkCt~;ilh)W%(hA55@(d6;u7KQOP)f)9+ZKKQ3<%2WE93?uD;>Q=guhh_#gqpU$?`?
zUORP${keA<{x{;^{j&#T5R4uj27qIv7;)_0-Rp#WV|!b6vHos+ehApI-Yu<2hr%zS
zoyuMLf|yL3YK)ejAoe1d?vcpZG(Ek2>@1t<_TmK}MzT$aE1!Gh)`l|gIUP1nePn3N
zx#yO~*suw$lW1r~WIG=1UM#U~cH9`65*`&{^x2$wMZ019V71jxY34xixwDO9uouye
z?3}jJae?2VZKJ2F)Gbf$R=_z;Axxv+JY7JipI^esToqp!gMxe)vP^cxY^7mk(9-zK
z1_ByGgT}u)E6~TgW*p~z6DMp^K(wMb27>z)D0=h(#{X&W!a)G&#kF^-7V0j$v$ZVh
z<@>5X(%!#~(h>z-gMEZcxv}@jkXzI`1o*Y>L0gr;Sl*>5UN=TpcuewL(YNE8DCs9d
z60fCr>6x0PF2>=Ax^<UM!8Nk8E7SDPgEO8^@I(@^x3rmzln%79R@N5HyCrvU@=~ht
zGBg}lnTr@arn-;?5J!?k3}dV+C>dj!mQZ$srh)tvlN%futxLvc=nE#0DG5bWcc%>6
z?z&5)^yV(mNeDfaqb4)Tz(p%0Ea5*#*`}PBIb<c#R)(NhY=M4Pk$oToI2@hcEfIh&
z);R-BRq6q>KbWW!{}@dqN5fp)WnwWRe;++$r>`Nhjk=&Rp0Rt@OfrK>TRUlNKI%bw
z5Bf7jc<ADdpikK}xVtSSMTVN6UA}kA#xm5B#nq<ozOP8ENo~O_<|LL{Bzi4<?0S`f
z0jLFGQB4KghPLt)U6EIxEoU%0UO!?cp8GK;y{8+?dv3S?=cg0?bN2St`+ttubhw<O
z<!K!28M{e7RX&lh>v!A<uw^KTUtdMw4>?9~(trSCAd$Mnkk*WM+*$N<?8%81{q_LZ
zKJ8%gXcu?K-JT&#byMOTAIagMSQkmAPoBD7eeWsY=w;{|%bt13)bzhiIpuFBTW6OT
zUx^fi@>qnyV-d?as&dV(MK`<F?|M2LxOpV>6USPL6eNx9|KpZI{(`!uxSgzfgNOlL
zpOk5KIjZh5UR;kxUnX3UFCGtH^rx~#42*RiXP4Y+MZ_t8WBWbz)ZaP7jU!>S^^Na0
zj<GD7Z+RAa$4)QHFBZmL69quf(MHoSpX=fu|M1*hY&gEUnWXYBZ2J*k=9CEQfE!OV
zhP5|a>~6-_yI;P`lVcL9Na(_3-R$zjiYl+l@*Y<)$K3D5EDzv}_9W83!tYU@f4&{7
zHjS2@rj?xr_1@qEEAbsq^`-ub@#p=x_YN^*7c(D**KU8xdzAeni@$mO`bnY7*-=e_
z`j?mqWD+x3JUQ#4DNmXtoz`OQCz||EcLcGS4daZAKNN2LClozDopSbz3Sz2RSG?Qw
z80T2f?Hn@{Z92F@cTiOAkV1*YT-p4joSlTDZ{QXB<ivtsZ{^66a%*p+!Pt4lY#JMe
z3{tV2&TvJcH(Me3j9mb>o`NBr`vFyL)mtqH*W`qgFKnAPkIQR(5VlNDa(5Rzn57dF
zkr$Bbcq&>m1sHo|AbGf>FQMxrPcIOl(qUaRW)pfp4!%1UsXy8-ksr2H-pJHiAkw}L
zyKLUyz)-Z8|F;I9&ZaQ%Nign+YMnDCa~mHPDn8<{m<Hz|v~NEd6%u)I)_^skQmtlc
zc4mVIhQyN16L6e7SBFc9J~sR*ve7QWiVXlgoCteP)J8et+eOHVG?xxPfR%bcNU>g+
z{&`tzcWvKE`RP)r;EDR0@a`Vf>N#zdfL7eP85>|-pubtf1qqrAv)sYE*F<tmzlx71
zF!71D*!1qiKYZdy087;qz`s6mUr77_ooy~-5t5h+gMLrj4tBRlxoce_(n3G_sN|*C
z9XYeK^_yQT^=+!X8L;~UNY?epNfIDQLawXYdVx^sT{dNm>(yI<_$xeQI1(Pu<B(FU
zTh<=eRr-TRM((D@i6g9i6H@CU+-HAOB!w`MGq$`Qw_!;(Jo8yO(ps+fzTS7IGKPpv
zy$1+8n8zi5{M+{||5H!Vd6HUqu%*%VLph7~eq?YbxnO5k>#BjhMf`K+mcL@PZVETY
z=lipY|I`o>|8yM{GnDd=KKZcdlhx4gi(l0SIDffoKTkUfzyRthEt}+G&|zy@I(GDT
z=3SS=GP_Q(-B`)$^^WqyU%CkiB9~2nCa@+ygveC*+XtQGN<J5SYqH=U;VLq}&l$*o
z3J`ILI7z5y!a>DT2(|b7RS;GS-ExAmBllHE8vDlyE5mu9`ilaq!gC0_^~fbvSh7&9
z1u6TItCq^mn8FJ}G*zeCUf0B;AtYfNeQ#_eOreb>`Ygq&sb!1}B1K-#m@Y~VJh&8j
z+QjpxwO>m=a5<I>LDR8rXQ#=Zk*OZNO;3Y5y(z01C{-(!&m6jtLO=qfYnOj9^#8>K
z=26Pm8FHQgZ-c;vmpWXuMI9&gBDzpYBoMRIE{JiE{GJtj9#y(vn5qdtWcI;=TU&sv
zDhOum>phB#hU!$vMcXVgu{jlhSnEBVYYV(>{o5WC>e5!4rR<vZQ9)CKH<`PCli5me
zU~~l;r8&~&i@UNo8XC$T{`V#W!cDSmt}oVA`lch_Ex0-G>4i9H?~k}P8@Ks6#E^Q!
zENTfUYHu8~{`W>KJAPHk`*x|A?~UU1x&AYGUt)v|6+qSlxl+T;;jnc|r8%&1=rLH~
zoEFJkLV}L{9#|jr1!z7AjPH#ycjX>`XK->HF;*(?ldrp#Y6RI7N^9ep5!t^r4c`{v
z^Fz5m+o#pk*kra_&Uw`+7A5GkG3j$yEXeb)L^OOOaGbX5_K`mufOq)qap5)p`nP){
zS3W6;s=asy^9sdWP&A%ZR#<xD)i&V#?e7mF)>O`C#-4GSet-)kg@NTmN*H*2?3;!F
z8Bp|*tmSs3?4s*Q%a592gh;sU^Ht>muBQX&g4;)<du6o&_Zdan=GQ9+h!YRMKh)iT
zEt7!!dx29E2cL9l<+qL%dU5+N%g(UhKo66atX}l^PW>4kSyUEc#c?Ic`#;=DdWotK
zMM_YU|3CY@E=-p?8}+RI6stjn#oW7Q<bsE(z!ZGnULQJYdK+>4!}xb*7kb=*=Kg^{
zW@f59H+#n{0vv=@x`O?{70oR7qWucG<6a!N`SnqQS{Rvnm;~Yk0FG?zvSRMr=}R^7
zZwLUjfcRSIKaDcOPBXc#S4IRDCjutt(tQ#Te6uS8N2ZaJ3kx8WRCPIAq~)23+qnt9
zQ9$6@W@ASa+Y<;|g#@8qTFz6knE+u%RT*Y^GOyHmm5;-ciQ>_5BBQhtH7`<sqlkOm
z;pW8lNm|8GHu|=vvv9F)GhEM|!gP3c54@fZT+jobh}rqm^-q;n)181vYZJJ&iBj5H
z8od%?05&(H&8ioeX1<Tm(hgR{0Km+TClE5oWJOzoL^fIJy_~0Q!L4H{rDLU`WBuic
zo*0O}jZAM(>7~53@#(Wm)`>{(wJs3^7IX%Ob*`T3kkGoW+`4XG*x+yqld3R%8}Uf3
z-(6eULjyzisru?D88gw27Sr`z(e?YH>wl^nfY!TpidE*;3)0XFHr5Mq(hKz&U~=dY
z4br=lr+2qT?_P&qI9fYwRPX*5y$7dyWVAjdv+VpiH@NhpjrC)k^kaPntxJIPg<=pR
zf+I-(ED1XpbR`|-1!a(Xo#a!J!X25K9JiPTd5DeANRE1>9h*E8N3&1X-zqIZ4#izD
zpo9%&2PZ)c4KVcv%oG4aB|P|#9HtSMg^kC+0VtKMK_mnAEd}9m#X>qoN*H83U8NH-
zJll{6H7w-D)G1+dxrcu4M!6`Zv)O}=%~{~P<mo9E$U4CM2@vuoV*s|-P81nxTwC5q
zdn7RRI*um52&11$Lrv)n2YRsyMGZ#w=_B3s27^Kf5Xb1tZKGEuMtF8m=O~m8Z~V_-
zq(#HXT@GNvf$mlhlI2Wh+$BQgj3V&o!+ro8Fs937LZc;&2@s|)=wEO`pDh`q7nJhP
zF@2lzY9AaxYuYkXU*Zt#AWT6Ff{}vB2DXFicQmv=C}A=lb$n@-ZB^>sGfv+y#;l;t
zK41_xygH+}<5}f0g4tQPiju3mE+|@18UraT=lk-5G`xE>ES~_CbX-R7JIutpotrsB
ziiW?FW9V*@nd2wmHVpjrBO<q$nFBJue|jgj-oQ+vOrtHHo=z}cGD*8({-=WvqGR3#
zp8&BuV)}r{y8BLh2pm4~jJa!)%Lgrse#fvsv|TuP;uCq#kbd0BgpY;sS6<B)ma4sE
zde7c6(%g(YXo`2s!YbO5>GQaxuUUAS<w3J$c)^qzZu$~ng~eE&aoLoxos5SgxH}FK
zSmUGhNU=C%%GdvxSjbG5_fRd-Szf`>--f2m;1sd?p{xQcdAbDYZS26ZRrI<%%X&jt
z_RLh?w5|QQ{m&|&M3G&LH*O&mM_DZ!tIu-7d4w_1z?6=_tbSYhWu8buSiH?@oOR!m
z0}Wp3uTPZ!@|(c=omnt4Edx#|aV|Qs*Q9yvOoYJZ+Kg#*dHeuxBUq>4JRxY1Z+`J!
z7@bx<`HCB&Tp(tmk>!m=2Q|m6kb9o>N13v{`3?Oi{vg=5sGLzQaNkYJNfd2(#C$*}
zL8~!WMAgp3eg;Mcfq9-}AIyd8+eAE)gjBqEHe>r;&E~8)$JV>kcDqUv901h1b7Z-~
z!BpF*6CQB(!wI;9(6%ke++H9B=9Fzyys=Q#RG0Xe?gq&|p%w-|G5nh@`Jvl3>x2&9
zWsjG4$ig@(4mtQ4B$DWeNq;$tTH-wZkEgQ?Yw{1<|28%lW5DQ<Zge*Y2s%0hB&A_=
ziP9~OZlp_M5=t`~fuD{LK^jCt(1ElfAxfz{{Qt*uJooGS#rHVw7uWqguk-wzt5P1+
z7-8al&kif4rKQLC0hdgxnvRc^a>Y;6tz}fLYdAmM^8mcCGc^8c9Td*<w9$&UHJuD2
z+57g>OFo;9>id<NOJUKU+NqajHEdr0_o?x};_|=NOvTIYj~C1RKGs!#x+!Z@d2Tb9
zN1o@pv>`;kw^Y3Oj8}{l(_<>_i=e11B%5!H4I7CKP+*{nEe<ZUcq<ca$yptmx$5dk
z$bW^q5}lz~{0r9b?Q?3g;EIi|kY(dhx6jr$7QjfZHmc0^*d4->YulcGoLG3ioH8dC
z>xTfanZLB$w^zG<!FW}1#LQ=hN$>2Iz77>nO@fCco1i866V6rfGmt+bUPdQYPBPXI
zM|P4<_VF#*s3#C138ed!V`-kCbgAcsOYnx;@&8TmJ+ue5#2a^0OeKMkDBvelr9CRv
ztOkD|2RWUHGXRioVw0)FznrE(WOit}%&&=eYoUj>&PGVO-|_l*th-Pmb!Q?CKN;eM
zgX7MS=wi&DYWU2+m)T8b2Ab~Qn(;_CGPW%`^p7w3)?iILhwX3(Ygzn#gtHYMa>YI@
z%Fz^ibxk24FB2PvFm^f#*+VLQA(jeXt&^PVIoBM{iY^{wopw<1Gi%N|&c9XSS${hi
zhB^lm$jA(NuXLcv>6y_*Nh!qSGy>u&H0|vl`Uoi1143CFmSLhk`PoivXJ}$;rYXKA
z=D7mlF~U_up~e2<2G=)OJ)oe40J8fB^TfM~+lZP(xr*p+mYl`yWb^B-ZS;2MdoNPm
zX-qXNTkN(PA2e#&_elGJ%OHOx0MVrZEj>kYr0c(K{vArYfTLc*Q-3;hc?<!H)=(63
zx|2mGK6;Txag@JVLy})h^3qC&8@rQ7r&AotvUu2ud%!OUPx+y=Bt*v5fd|dQ-!yTh
zG$CbMZ=fCww}9j*fCQo~l(2DkjV6`6EEexlmGv~?HEniNX7uOGkZA~=!VZ<r4nM*D
zpXB!Jv`d+Mx<~ZRQQ^+p8jqcwou@RrYzc{hpEHA$XrR09+tRcrMzjfnPk$=lPJCMm
znm{R083&me!A%*M`J}>({N^895p-V3!Qi@&UiHJ7-;<c_u)7!Cw57K*b;%JvtKR@?
z?mptrE6Bg4a(Sznw1;YvpDE>;7Bz>cDo52Yd_Xd(tmQaVd?0x<Ll?98lj+~T$ZqeZ
zx8es)CeRxp7`w1#>jr%m>I`y@wSAw+6|xu>X~;hCzxE;Ky#HK$H6Ati$!*IAm&?Wn
z(e#YbdJbCqNasD7C}^7h(1W@DvRUpidf2dZCR%hHk>3&hJpw~|J(_Bj_wYQIr}(kN
z3q2{I*^h6X%qF{Y6iI+SY|cYWpF7=yZ8zq1kG%ch0(CS5folZV?#1=wUS_=d#hZUN
znLk!>|Kwy=E<)n$b-q!{j0uqNq1LyP5*bLi=P<)~2K4Pi90nw@aASmQqq*tB!Q+L@
z9#%(9(vLu=zPU4x$}xwi2Z!xKzDh0km=>hG`j5bmD14-N{i9`u?ml?SD!^HO<hb_m
zWcHA^oVRzTeYF<UDwOoh3Yp>uObwHNdkau|gv=~r&5|m*5<Bo0@MSe*4Uldw68%C}
zn$;KX>f=RS4B%zMv;_2_if@MGzfcUwOJ>WU`&oBx9yQHLFIg(`G=Sg<(R6=qqmn2%
zSR&G@^bwsl=G-C_(%o0fA%f!&KrBWbJ|qi`E-akCOPj1ewaEI@y`|;&^EpRkVVr^!
zfBt28cz20gIEN4~Ale}CvuZj$QJOBX)vw~jr<&2`&TV8D!@VvF>yTS>S?n{*fw8sh
zubqXFBS9<y9F79PxWiJlI~+C-g15QF2X-p7NhOfey@yjAM((V}?i7CR4lWBE4=|^h
z-PPf=@-s!PW_LKDPQro~1<qf7p_4)!7CxW!n4ftmT<xy$ep^B}^68Qtmx=q{aFqW1
z2(y1esfiv9g~Z%Ae||%&@aH|^4c_G&itjc<Q20n(Sbq0es1C}?4)rtyKb#gFt2r+T
zteUZ@)0)PY<ezQIGo;+X3ywADNgT+h*tngv%;+%+(N|Uvpw;!lc~2fvme0Suc?1<b
z0EPt7?4hnz?ZMj=7MbLg-jXQ#3OQ2ni}HI7*T3<nC}81fb7Erko#z|rQVwD~7ToB%
z^4IMJ2_5b{%)&Ia3+=<(fub=HG6RhTGnY<Jxd)#jH6$w(^o|}e;Ur+xw&2I#_9FPh
zSp~8W!&D=Lvs*PIBgFjUrfC2E!#=JTs|{bgykf49Z1W3^KaS|R(b8=y^p*>m)Kyiw
zUTXjnxc8oKft%0uxahh~G_0Cur=a?F9pB#hpM{{P4UlzsP*^bP#beYHnWKN9I{e??
zQSB9QJQe)LPR;Oewn~`D51W1wbNAmvrEpp2r~nF3G=bq36cT5-E!aH-*LO@~{5u4l
z5#=GLdm!`~dDcy;aT2bXUiK0yYU#EuYwW^k=X<qhn-tx*46-ux3Ziw2MI`Hs2vBEc
z!Hr$rJ!6e|B?~#Ea<rvxs8I=vb1)(h;-Mf7Ej8V{-cmk~v@^1@)x>#>rT#0lN^;h2
z(r)QDPPH>GEjOvqAB@fONa!yvG&Q%dvAc3`Wc<9gQT3vxu3?za+4q__dQ|E5u}vUV
zD0WVtS7HSMy7-$jTw|H#+zBT5@!aKN4KJ|fbP*U^x#sQ0LBWh<B=x&qCH={r>6Iwp
z7^7c*`xHrpmy(4)P^ayMK`|o?Hm69#p+GMtS<R-G%MW8&h_g&`Tt}u+Sz!rE+)fNR
z%!e^zKCo}KndCGBN(8m%(Z*GUCScAD7a)J_(aI_#%3@@u>ZnsGUKsDi*q~j4c*g!<
zhJ^E$vQo@c1HTzk3##C?&Lyn{NwUj_WxHzLh!S1@r4P<9s^Q_+@FijMDL3Db{@@rr
zUvJyif6mG5By^s%rk|Okn4I5mW%^B&TUC?cXnmO~h(V_E{sfx>KjV1@$C-KCX6DWa
z$Ck1vO0iw=^EY^bd*rmwwBze6W*IiP!q(*TH}I#WqrV&CikQ=xj1+))#BLTsosq8_
zKNF)bn^fjf7%zbFs^`495Kh1EP8FrEe2R*tsSB|VD@)@YiqOu?e1`Z+O<#GNF{S{K
zFb}Eunn5F`wqh7NubqL_FKMr27<ZW&pw#vy#bl`w-)acx$|J}qXvCH_a`?RjSM)xV
zcvRTL>V)Y-1;i>;8Ntc{ZpBg!Lg4KFc29~NH3cDPp0;IjHQ?HZ#q>1j&oDUaokmMM
zrIbgKpr{qn%QT#6vfbuN2I3>d#IF_;0C4zDSjSYx{p;|ANkx97lq#ML+(rLKiQX+y
zDn0Scl6vso6CMilBbEsXcU8a=w=PN(ThsPju^n7%z(Np?$Z3$fTw^7Do15i(SiYv8
zh*}R#t7bFkPqF)p;b6TldbjynK`rBZiJ78P{6hQD5{f52HEmGt{qoi0oLwrS;D~TP
zgS}fL;{9ZYg#NLK?1PpDWF(jjT0kW{wA~Z7UdO`z?OEab%o1P5JpQ|0r4RG>qzxqc
z@YkL(#3=yG8V6GK-pj~}8K;o+?WY?197v=RFv7Rb>TYR(z@;Os@kMIL=@=>&S*$91
z=%@nZgI{Zh|CO?~z<;vBro$uvzt4Zw-^e7Y5I{1f?!$FDcMkHdmB3GpoU`tg6B?hb
z6sS8t+;?u2TTn~#btN$d+T{Ri0|!)v6aF-)POC?Rftsy6CKYGQEu#3gXjV&pQrzm5
zebi!i9jYZ`Bus;HgHA+=ZM;e9{o9S4`)V+OD#;i~-1}fKcR3~M64L%D<JPAV%GkEa
zcg8foHxVv0?bB5Ux8o0pw?62?Y7};nDO?gE)j)V4xBvUsuO%ao-pQbq&Kl`RppS?%
z0F^W|?Y!eu5dHNPz=N6kClsSk?y~9^s{Oi!Nq~GOwwUVUcHh$ckKiNpJC?w01sdYL
zD7qXP`m28-(Eu6*MkI-eUr?v_SZD*LeYOJ54^g4)Ok%dG=Y-oo$1{VoAnF@yd)6Th
z3wdKvLo!^)8>)j}8q=a4hdKONH<CihW0IO{DyTUHUu<jA#-XjT6BUTIqDDGZ6&I((
z62U&fEeTj$L=o4fYBbBx8rYiwRJTQBT15lFl1Z_2l$&viLuiqp)M$%6j2v1LXY3~l
zEaIRa)eY9YnGxy2^TVy!K#R{7erC)6lW*j6l?e@hs4fpDCCV&I8&JAZ$RatKYtVzv
z{lq=atyaVfLYZXsFcQ;J0`*ZDX@xYbyrOh9YSuxG0N4eO$lJF~=V@!#;NDnRw#(K3
zLUH@Iqco749W`N#xr3CQtZ5dzQ(3WWFL+Xy#x=?LOZ<@T27-rokx2l{{a8(TsWSkJ
z23hK+vb)kkSX$J>G@v_?1hh1Y@mS9(W?rwn5yqq=O|M;Cq|At!$>hDwe1g|bdMPiq
zWN_JV_qIHQ49Hv@lW;rGF@M|xCciwRr9Wma!sPKL1KYt8398ojq?-Y}kNJ912{fBW
zm{CBC11d~Q`JHV{a^l{WzJLCbW`4x%tC4wLii|FQ`mWlxRd*Ih8us{)GYUd5&s^rN
zaH!r<dGzYtfN&iFo>}53ri%p0V#AL;mYf8};@&yMls%3SU5Y_3IbT`kx612^^2>gM
zyp8$IpCRYt%udSUslt__1nE3XBbJMkI%zU|8V%q^?JkG;?LnbFj865CQBF)p$NT_S
zz+L2LnwU<BOEJfcR7$cTRM9c^p)?d=+hN`6%I=79r{uBaM-=ccm#(;<uhB}R-TY53
zx~W^?TkA2`THin2rl`}gFaIu1-vDR`I12qGkgX6*0LK!|GEQ<qBC%>ZzOe%OYkvo*
z+b&miIAy=LQt(*z|K0SBr`&Yp*9jdGG;B$+7++`ZEqntL22zMmM>BQfyCf!$#+;PD
zvVF09hxyn7w8U5<yFv!FKl{O5^qtwip0#t+_$!C5Y}~kee)ZmRvNgYJe6tvX0`n<E
zd-Z(UlpcePJ8c1qCdRi0*Z{r%=84f6DEGlA#c^jE-_lPFaM|smDI85Zp2A>9js0Re
z$*{eGWnxF`*2PR_MthZj!LFXo#cbhZ`-__syM_@Lb9kDL8f}9;lV=wnY79H-EGG8u
z_g>5sGCCUE4ZZ=i4d1XJV=2mPy=Atop}oOLKn=_Ty2EAHLGj-$u5l}>vP3eu2wd)y
z|9V|}zc0;*+nQt>Jn+832I58@#M}Wm-p;Z4l(*H{;*h>itHa(r(L~u1yZ;U8d)VGV
zM+AN6j3*C7$%!?xQRq)cH_2haiz;U@eWMLkB$foZV$l=zUVntM_y|T$DGWjm0qGIS
z4ixvch$;{Fv%GE9nOIbbUypoazG|+qzifLa^}06l;PP|7B!E)q@Ku6#$hOKC#G6Oi
zISi2ih_r3XMB-<bV1MjnoY2Kg&^ox}TgkSrdpns>AE>6_)i>js@Sf<hAd|bCyRmea
zWBC~YEY2mS{Fdh~HknWN<8YMM1RSW7pd6+aAR=z5`Wl%z;VY&F;l$)oc$gRxskpk<
zPJ%z5a&<PBkd6yz1&}niW9abj!KF9)MW9n}MN4pyTlfC!xL1Brdc*xV(*4gDZNyn5
z=j|gY%ReR7_dr^IRiS|r7VsZGHd_z;?#sTax>|WWc0wB(G0@+2Nw+d>ay$2Z4@cl_
zhTLZQa*^<F4CKA|w@+HSz0ddG-TW6b^Tz4>4b{s{hbUadoj<5I_<cZBw4feY4KqSr
zbqWI#0YKE{1wjM~MLKbzX=PZe8%PHyip6OoKz>-C`#+!b4}tknHseluYB(IXjKbPF
zLRd29Z({U%J|!7ckgnzqJV`x>gt^eBdAt2MJT5Xfk6|j&NoM59!)av@_HkTA>_Ami
z5_uH0Rut|<oNMrt`1n|!tvFGwxQqE%twk&ti$!4p<XB!XF+MaJk^!MQ7zXFI#ol*f
zX3liMwLV_ZG}U#2WSi@PBx5DBqgSpN6Ir3a3wPDmn+b~@oZs77xkkW&i=fy-zGO=|
z9MWo<J5d{(_&zT2f}E`9l&PvU;U+L1$E|H1d+XCya+6;?0g%wGnZRFR2_^xK$c3Df
zz^*l%h-oV@07wUbfDZu^`3WF=@*Imgo;&UxG3BP?y?5A@)otGj!Bn9UemgQg_d>{u
zxg0Itrn)Uwf0J*NF4e6jbv7ww)+4ohCtbfI&Ee>wehm*fCPQ;wWQ-e1F>Nz5!cQuM
zP~$QV594h^QwT{m>(JCjg{R5KDX$hYHjgu`N8$yf(v7E61kvi>3K`*^3DmFB;IA@1
zS_)7u#n0-b1+3Y2Z)TBSS!KRBN*h6DbU`zZiK(y8oY)Y0OGhX_1n=OsHhfzf<_6$F
z>DKyly#1XsB+ni?08F)%%M-v%$tDGQfF^iA{m+pS()xGQ0N1c)LtMJnQpf=dS^T2B
zE4{d+(Zg9wSx2D<dD~W2xZGBHilP2ov!h%!EXV`Qqi&U(rOKr=nj_-N(N6)L$SFu}
zFUaC%#hmBdk<Ae_1;0B14FTl%@ZkD2elSVFFB3GOV~WP+gjHiHh=R!{Aa-@2ID+Eh
zW-->N@GXCC*fCECAvy+?mJ@crKuCn+u#gi`bp0jcXW4N}Isev*qyWWcyfz8bpeM7>
zVv=uq;`Pv1NhMR-Mt%S?UYyYllD4EIk~-7)b(m<XBC<la_y)Gvye%iX7EOy#@7D$H
zDzGdGQH-)8t`|l-yP#WDbVrKizZA>D!#J9zOJ{LqX}VEV)shsX@;0gBe%7+R?UKUU
zA_dR#V^)e2U3bYM^#>yyavo2Y&&vdSpKA}}-+KbaJ!6ayvojcTbTCCo*=KFWMss0s
zVXq=_N4%i%v&>Q8Luq_`EWWxn>P=g*QZN9K$$-v;u?+xd4+R}1aT24TN96oe9?Wn&
zGnZ5V>rECW1lhsI2=h76-bsWuCJ_N3<3FroA|Y&-pE$e+qlvs0x=5?{>Ak4vc9SH>
zD>iXcLWls)PD+C-Y!B+o5B6h&JT9iRb(HfK7IE=<5k%0hj)^tigP1K#S<E1^l&ZzB
z=_Bsd-xI6!gy{qjA$#YbW+Koln*5rIEoKg5^aX(9nMVl_eKs;fJ%Pwy*H&@JIF^r_
z7@rXUj3L$rdQqSVkQr23!(N@m+=CZ;<ieSCVw<(n;M$nv+QvLkcU}EaCW9r`?qIku
z#;h^tB3dL9<QD?qm=-BeYC4*x<URzbeFdqHGWxLqTibN`Frc0t0Otiv15u~m1FA|%
z{!i(_LJ<A8;#zZ_W;h1$SOcS!-F&&+%mySAnXaQlgfT_5P-M0^=McEAj+!fk3C##W
zfoTFQ742-DB;ZzEGqL`4IAMmj2_{lcK3#Qh8B$Da;bK=-SBlh9VxQ&);8YnD1Y5|7
z&1AQd#mw6yHQO4iL7U-CyTY_;dR3~aH^ryxn%N%xfHkwAnytq=#x6L;?zV>c*G<*c
zeJZHR2DXt?H6(OGqW3s$aC}kRfcqeF!$bHdx|+FpP;546NWifyM6Z{X!jxC!`9k+?
z)9xYv?i3};NAJ7SKZSJ#0%AVZw5;dlR*8K41w#7*Z&AKz3`9P^)l+>7T736qCnF?|
z-7zb*;-bA<v-Q<YLDt9hoR0(}hopqd3B9jpdwHB=G1-NO1Zd}#cbcFH-!GPWiu|q!
zDuz?$L<to1Bcxjv&CaMmsWu`|s1tci>>HD5?CBMIGDb7+-64|2kXitKi0&Jp5O&An
zVo+~(McB|IessR#Z@Qqqot*w^;8AumQ?t^=yM1S$dQsCH2L5K^JVe@T-c;#+^dJ+}
zb)~GbwCM+8!ZanoL<|y1T=33a9utkaObDs(nt29=sr4H(NiS}K-njGq^=@|+=<hWe
zl=2;9O}i-t7ot(^T3+v4AG5l=1l)wb7S)er@5>*vQ6cyvp$`TU<^Pja%enPI9E$-7
z3Ijw*K{S;V0{x&6mNG4TegaZF?Ky}GK;{GC5te)xc+~)kbR34Qfjmpt&CUh#>h**4
z-;K5#3rni_3&{tw@%5+yIDI)#U&Uq@M`-oA;*?cB#l7=rKuF9EKjL`D(O<#(p4Ne5
zxF!pE1CO=mfK(}`3`a=oW57!R*zp*aDK-c{M(-5^nay{D#uH#R6R1@akX^&m>Ijg)
zK-4V9*pkLRR9fyD_Z3OLKg0>Ye!w73;9py!fMc0z$HDcHxZK5wFw`(PTCvn90WBwY
zhiU8yX#5>2d0iA-Ujov6OS7SmltfU&oW}M$rq~vzX8&-07uER%XF%KXkck0)z^Mk)
zsDb}MdP_`!Ky*!(i{&`A*CEi?3OQUbWph<DlT0^-h10qN-v9l`{yvRuyab|wQWWAW
zcm*8O=NtPt#GcqPtus9xGn~xvjzLb7W?5IqoGd|OKU2LkMsdg&D-GJH7@<z?rSJvm
zGSWUTW*8@aPy>KOQT8?(z~t|~qPP##uim^po)0X9RNO^+`Xo56rkMZtA=F9EmTulO
zJ-OgadW7Y}TwtOzwgkhWN1qg_Y4D-xy9Hvn4-u(Obk!+kHS&*0d@?W;`#8HFuWZI0
zm&^&pZ;Wq6Aj3;dUdQML_qpNUSxAHd7yuIGoI@tJp!F&ZRu~XRk`U!QFDO(_z(nXt
zHbWM*ShE<Ix^xjZ0PIpJz8FuKy#hhF^H)glMS~%lC-f^626$-8r`GYI(Zf$YZ7U}5
z_{-k{qS%7ou)9P5fw~PizKBf?9evthLn#z4NhVRZQBwdamU^gf$){T^sI<rC(_4K{
zP|&35&ZMF~q$Dy@q;0e6uH{MqB%KnvJxvon@_kO915uZ$f0HrE7)nrlNpj+O8MG&V
zga;WIFz`N1;4)-@{~&z}n3Va;<JICOA00_nM)i<e@I9C;!RTub@%?LGQvBbQ`F7S&
zV|trci+3iTT#(Zxpcsn%NQ`z%rq?}?K0U=MuT3KRz8cg##gN2Isp+!dHwYjwfXplm
z$O?cf(@;(w&ZbXq%8S!3T}eXysvlMR((R%)nAbNR8ImBcsQ}z7Hy!DAGU<T*3HJdA
z?);revTc<N%^);nuC#EZHLt^0te>#;<n?OOXF8s?$gV$`w~`{`GU%Ss@1^>36o1}w
zu#FUP-?*Cx53r{oG%W_?V&wjQS@GRX+Nx1~y~?h_+Khf;<;!A)XR*uD&)Z<J@SFM%
zIpjLYf<-gCtoaPzhI*;0xEWMvBX;HJb{7m8Ml!%TL*M5pXv_DcM<^Jb?7`_r$Rk|j
zU>Qs`>YMsxpJ)Z02sMfO!z-s49((D7q1%s5RoOd%aln=XzM?NSGzWN%wVbm`6c&U&
z6!@M&`S3G$f0XKfSLWL&`eY%OYbYyc?DUPkZ{J4`kBF<9ywcosCfqCz6qYW>gSU2@
z;btsqoKq}6Q?fV2IW|EkwAx+E`<$Rgu7kK;;<XTLi#?$^Sk{){`Y-E%a*8V|lnQ#l
z9scl|a(tjzj!w=O>!C^fJJ~fcpz}xN@qZNph=0UMk^ERZU)TWOi#4B4Yl_SJxn-Yz
z6L9=Im3hGf{84Z6O#)84=dJu5xB{n!!l(ol9=dPeLK?LSGFMe~56<-)iRIlMTOJU0
zDIEj;5MsY>9q|99ylxnoC%nCWzQPr3cSABZ44L1|S$TCHMBo&_@zLQ_zXblif&A5W
zkhI|>{=JfW@`}vK5OLf&Ey>S)J_!;#&4wVixJD$TnVof61OD1)O7%ZFSTmM5&08!!
z&=`Nj(EnzYEQiVI5e2pXK+C<F`DPKZ>3?t6|AaF9Iwt(f;gD{;XF5m=21nx<D&dec
zq{m`1XJ(uwh0wL=Yra2N6Ld|*m5N5om(O_qD)x!`PnLO(;vDDVbVEmhHTL9bZU)$d
zM1vH!KU<!pu{RXt=DA7`bkaek$c|$R>)_V5;%uVU)~$=8QgTyG%<~**J|V%x6pra8
z=4quadlPP?u&w2gSx+5TRBU2uqLaI4M+QZ`nT)f1B1Ti!z*y5sp+d-r^(`DlQ2a1K
zB}c<><p42sG93E+m8ok!brC&Y+Y+li#Vufzpz}OtLl46%g0;nBqBW_|Ub%nhu9<9!
zcNzIVe*HS4nZh8XWvP((BK{@X_P%nOLd&|QJoN;8yp2M)Cul!&L%qHE>$^<sayLep
zPpb&6wuv^*0#Tb)c&Ak1-}c8tZ4Bx+Sm`rjf#jO`vSIYD@7q}T?!9Pm%A*CcRG_X|
zx=wNVOe4#ga;YB~l96Is#&OZplI!FtboA1)xl^j0RQv1mV_lP_rQ{3z4@7WPy1Bxi
zruQpb#)gNJtwcW_^G|Y!84@IqcWG+?{qD|HjWM5|@1adCCKGrPClN{XLe>v*g1jxR
zil)8m(i;dcLn$RHZXr&VASSQTnU@xi_B9U~y35E59y#e~Ww1jK03eUT`Y-q<)pfm9
zLNdBSCVVCa$guS(J_~dm`K)~g%6){{F3Fl!HMCWWi4KpELAT-oKM_Mn4KQKgdgwM6
z3#0lls^sb`gm|Xd06i6`Z-eHYe>6G9RCn$5J>L9_W5m5<@;2s)hwaY&X#L^OPze}Z
zVW*?Mlpi<%F>jbYXC^a)_QxVLYF@tjWjz}cSD4Uk@|vODZ19#?8C+72FCuMy1l3C>
zqaej9)eqs_t6kUTov7SP(*(N4#jsN|u2pacGGZG35Yo``6t*6d(lgB5b65JZ^Ct{C
zSIWx6b7Yo+{SwSmX#Ctgb<P;DCfL<6%Z`2L7n6<^6ZXR&t-AyBjMzN6+bUTK`L}@j
zDl!uW3#j`#;x^wvmX2@nc$Eke!$EdHenTd`&E{axg!|;Y+9$0AhK2w9H^+}lbYo-t
zO?Zzx1f)H4Ix6&(pMS5__ckr9AG$(ioTcgW84f&8nZp;-f!GM1eCbj&Md=wcHEpo$
z8JQ(@S%u%0E+@!tg_JbcC`G3XZ~LcTL5GnR00d2k)n{^lX12=WkSN8ilYFfyT-ajh
z@}`{0A*+W}G4oek33U=$ch#uLY2iYU>lS6^H<2Ef4vRYL)cUE>;w$PlR!r~fWalK5
zOKsP9#NE!KsN9{CGG>m$q}3+S4`DO;<)e4#r?$tVLd`43V^UMfhJNh|s*nj)TDy}J
zDpDV8O62~Fqm6O-%3m`xf~B#OcWz$%3NVra8jb{f;r#t2C#N)+lq~W2>}%FN`}55y
zsRl5O_zo7rf_M9T@eLi!6~0?run1sI`EwB5;y|#!+<Do|_4Q~8hmWWIH_PsSx^~Kb
zxiPhE|M&9z;LFt&5Q%xO`v0{msDh*%P@M1tEQ<m$>2x=1>XV7hszI8!iPu*iKP3D!
zg$X8xLZ|7Pdx|D|@=_IAkr^)*xJKoORA-&cOpt3|qxQQhROkGWnW%EIMjMUPK+|L;
zY09qCWff}hiDxAn1g<kYM`{WgW~G?7uQRn2zU8pTxpRN5V0J!>UiwP`;wG>oug^|9
z?ilAijkCa>4qqi7xdy^Z*_H$~m80<K-?DhNelHH+NqCTnXyZY!PXif}@VcL_3$T<>
zZRBa#81=#pm_FjQOXxns(==W-RAz;Y@0xeAtxFCY7G&NeowHr&!gpg-kKy}0suq_`
z5&hATJR~uPrPoEoyBkDRL1DT#>dNEu>V23Q5iEoNip|W7S-<zs{|E(A-WE!*C|)Zl
zUU?zURC_n=u_=5!a7#I(c0$$<t4`0eo%#I;c*UqZ9;Di~atne1MHHip>TKO)%4_2v
zCVVSiYUh=U_9S;KM&|}eyJKbuM!d4v()|x=>H;a#+-nS!`3lj>Kp7(+6BGE~hAj<|
zx=98?KymBPCRCF3HjL3Mo7W&iTeWU<Ykv+d^LA?u3pT1*3oO%~e#sU}savFSVxi2p
zb8j9sV`kFE#vjlBTl6`I?vEz>CnHrVEm90qS`yH5ZyFI=6+@#uO6Gx5rMi7|ts2h5
z!GO7cpS{wN9(nZ)D*X;uF#b}fi3TSHAeBz$;*fn1G|~LK)2*I`MmP1F{!HJJW_vy&
z+vURQ;tDkuO!ZG(f?DmWDV%OxrqB&t;lVeI`l)EN`3d&F18dB`bKk#QKz5@{U8yIn
z&a3Ws-tX@km=SRhVsBXoSpe#N_Pr-mmtSkiL(q$NZ(Oz6$^=qpfX;~KPpuXAQzmLV
z9*a_%jae@YFjE$Biqres(0;yPA|zICt0#CaQ1)B=H=Vu{FKWE{?c=Ye6G#JA#mq8r
z2;cif^P9cg*wTgIVqa}_Q;-9072u5Q&FDCcjqhC&9t!FDubS`>nFgk47U*+F9YwOP
zt^6X7>lLO^Pwn!y>dEMS^L@fS?7ZFvS*}|5tK*TJa-<D;Oa)uQ%*?aa!~aw$F%TXC
z*w>VBYf#XL()q(YtYSPyhzAY6>Nj>Mh?tGxk9`YIaMH+YegNNURfPn&Nz<3CkPDjL
z9S@lChjT-FSpqFo@a9iFLTcTV+lt-?$Xm*>6(y+LT~f|?LDb=L<Pu@ODfpz5vP989
zO!HgH%r~H%Z!=(5ws}b?m=ysuGrE;j+Vk>qUM7=M+xz&%^T}5L{hZc5k7u^aVy6nR
z&#pugq(3Rm?;FHw*p+5lK66~URR8TKKVf^<Ok%O>Uts6vA3>JB@MTKYu6Ebeox0GT
z%0hYh&aZvhKFzcXAe6kP^lE}zB~zKvU<;Ce)g4f4ZSm`Mh-jJ0INH``RT7>=-?>S_
zR1glOtQ(;E=t7y9OoGU_TumWvWBj1lm5=76?sr_1x{Z#hbj;cVm$PI)WvcqJ-Ojp0
zSksS2%KY3o?m~kZ)^Vw?#+_Nvfa#y6N(dwoV0t(4f^Aw$y?G6Qz!!RCy-ugFP1}+<
zwPJFD$Rx*>%t$*7QecT_shvK0Mi$&ym#S^vsmnJHL5>(4`|qMLI~|6_X1>g*)BPW`
zKh(SDNUMyp<TVGo!C%TrZvm%=;`VSime|j$nSNcd%KL5#fH5(lAgT=Ijb`E>)`}k`
z!1Kp+xHp2M^QY&{Z%SV!YJ)!Q@BbdKc@1lL`hflMm*2OK|E(8mvoFuz{<*hgPnCHE
zz872y_TYYV9<(s9d-az1XLRc87J7m1_ff;yZpc5Eic{sW<b%VFz3Tt^&%@V(62WxD
zp#B4=t5~at3sl`sz4%8_{vD_d(G+SJEqR~5ufiH&4)3imatFWl?+k3S{z!C(md6PN
zUgpVJR{sb^aa<e!0(m*wF$y&6I`()rS*#|9EBpP_JNHRUTqFr668L443o`DGJxW({
zlWduc+`bBE%SUcM{R1!!IC3M<uLEUVbUzM3m$2ab1Q_X2$d<%;5}_VvbUR_1O%QU8
z5cML_-1&$DzNvuey=y;vi+P<%b?Hjo0r(;P9Q*=Drhs#rou-mdE03wZQ#=H)HiB-i
z(X0~adwj1DS(xJ*Z6j;EZVAHshxb|y0rVCCo5BEcRLMOFnkP@M_P)|VP~@>Z3}Xl^
zK=O_y_Db*JI(g=A@f5NR0@;qFDgX3M-XlbGJ)O4@`MBh(6f8?GjHLt1TtEG`VwyRk
z4k5u!vrV8$1hYo0({>%c`+X?MP5rt;k}8&m?Ja@HL5g|s5gUu~+x+RjO2#iwjOgn9
zpn@$ll35@x#P%{J(zyoYgiqH&>0!_YI;dkD6$ncN!%5fPY`EG(jURsO)|eahDDaPH
z1~N(6NgP+(BxJaO8g@Y6xd-<8Au&L~V}aqB!*IJ->(H2dV5D#SCxvpxq82ceMA573
zA`3ntRfsJPM1wW41#kpPi7NL~8WO=MBBuiYT{lUuhT*hFj}72}CU{8C2*8#EM&bZN
z@iL1jNRK;EErUJ<lZQfqP)_Q4m^e5QXowZ$Y30fy@~BF;vSG-~Jb7-s;Qe_7{_O`{
zY~6xOkiS=lT}tsmW?^%!Plx@#jnj+0Q3G=U=qj>rTvCf0U?dVTyaA6i2-Q%=9H}qV
zGAutqY(J@|Qpk$^n@v!V;y4*OQwuB>^1$E3<*QIarcfz8rO}+s&76LvpE7@E4eqze
z*^uPq;=$6#-ksFa0wXto(vlM-*hMQ$@R*^(U%0+i6FG~uriG_5Tq#v&3xC04MEj+`
zR4Z|sP?ecVCSzq^4#?I66wR~wR88T>Ce6gQ{VfKG_@6va86+)C)Qa2IarN?dOl2SO
zs@!9^Y04m9&??lM1P=en|76akunh)l6P=<*r^txcV=%g=D&{$IoF{U-(&+ux{m=C3
zM-8fW3~J}C0u?#88ncz(iQabH0a#=2)z!D$cION+h0j*s`RP1;$P4yue|3NQ#u!$a
z0i<*Hg_bupW!PFn&lW_D1iJrCob!cFMW9}NJ6$28W6FlsE?T>ip#2Fj!G;T%Jb|X*
znJ3M39y<#xv<i4`_FvGiw?3V@eNP8Ne3yhZoX5bRjm#;;E4?rci95}}^5=JJUCBFS
z?ZGGr^=7eJI)aN_-`JhAEmx0IPB2&PB}@Wj@j<x*rzJ9L+pbEfv;o|3*Ukc%*kMez
z)67(c0=a&HZb_MMQkdsBnx`KbN@!Vp!$iR=nL}MLO&IOtllvj&R<ZL^Z{5D1xnQJ&
z?j{n=9e-793~IL=(<N*8owY;7hjbd-%#An9sR#Lff8Zc?F#IP9SvAwel5|X^PL(@;
z(~#T54r*H+F(A!N8yP3+=I>wP?I6L{H<`>jI!uoYRTT`(Yd0*|??+|K+s3(AewvEu
zWTK>%!}9#H?Z8~(J1olw3?$}_8|IyL(=Gp=2r)8WQO@ScTXgQ*4`CZ~<FT5M>$F|m
z37IVbh9X$73P8+=WLTnwUdnpl$KLRdy(Rrk!%*GJ4-X&SkJiUC+x%#N;>nnwLkC_O
zwg!9edU~lG90vz`q7MPr#_9A<K4&cGM<rEeB}|{ls*x!$??l(L1(;(brDQ?Kc_Ag5
zvW%1PvJEoX7tjk2YlXFML-Oc$W;cp{N)wWaNsD22zWd`&&l{&ADML&a3@$KQpX(HR
z{kCa&G{je)8jCUe5#*RSXe!9!#TEj^05ruh<yfLYDc&tOg!*>gdH6yQiBUbU`Vj?h
z=vzQo`3Hjp3&4F$K)<}d<EaR<YT!Kcm6vh|1oOh{h}So3bKa8Vd3x91`BbRS0w!J+
z%)=0}`oZ(GHN1Nv=uT%)Iod~eLHP}{zum{+rI05J3lRSWze)?`?;$=i?cm!B%6SVG
zIR#Ovrx)Zyl7G0>9{{5}EP|{;{A*7gflXoMAyDy!2c^-GHx<g23uBUrF+pHoCO$U^
zDykA2aQQ*^d^>{pJy6>7yB28`$BeGr02l%k67dkP&KCbd`ryJ~EBr%TEJ!pZX+Hz<
zFtne;fLi}_{c{jsRr`4rvL<SlK67yqvz8be8l;pZ2YOEBB)<`dfB4l*Pva{fj5jg{
zVGX{XsQ$hk30h_(&;!tn?B<o70?9xPc=Eu~r&GaeNewtfN)0MZbmvK}1O%1HO^jG3
z{SDaa>8^rW2^D|+vT=G{{sLn>%)IL*p^u@w&ANcGGNaydvbM5#udNo+nz3C;TB-XS
zu2AmAO1Xicre~eeSxPK_p7t#z`}|kKp`|G~7@Xhzu=}HG+)`kEn5!Zn&)h1xNTK*@
zY9^{6>RorCRG7mYD$57>%<4z611j(D!S5B>65YYVcYq=*rh+-lrSC+(x<-BnsbE`i
zH3^?{)3un^=rTME`e!L?&@z{$sND0s(6zBxtj4=86gnOj4aY)WSpKsnLHfSqgwI7T
zYP>(c1${7~+M24QgIr|{SF6!1SG8qW%l5c6T^stkDr(``U(ym~!Yh|h)pyu35M2Vx
zMUFFtJT&>~U)tk018>0+w7K_r*s*oB%R-Z4q9==RW*k|DD#QqwdD9i>;m`4*AEH$C
za!Cu4=Huj$F+B~av0$VAZ~+gkG9*2$>FU3_&D7X|X|TgJpotCUIe@8@#>B$uvv8n!
zhU#j{AF~B}$EB9l4g9nEpH;<mFPDXomvH${DN}pFTA0=e=f=BYXwBjp_ow&Tt6q%G
z#cZ`#ley$m+W_=!08Qay6kXnN;Lgq1R;ydNzzwIvaN{quFSmQHPE5KsmlqSBRqe8I
zhrDXz<89^Hy8=tzYU5;kt#R3p7-$CC5UBZ0y&@zWi(1v6fy{eaNFJTu?Co7P9f_pQ
zpP^Ac*1~~oI3tw6TVmB|9Duv3?6G=le;w@hEd1;ijJpcRf$ir+ZTy%}{1E{?zU5wQ
zqSAz<+_>b}h#0U~Co*uWX<&$L7inL9LuHo@N}i8@%mJfK{C1g04a}5ADA=7xLwr?=
z#2!Tjag;q?T_KXXDg4o+djqq?!Jl8>yhROu16YSB4s~FOUrgaqD;sAg87j}AO|Tzv
zD;3F+?`N=|FU%ej{=6v2iF#)n`to`3@g98gk4M{|wr5={<EW9l8xV!D(R#r9H?gCX
z{a)@RSAJV&{j4kf=h(4>!nS`aw&X11kjMR$ocEj}3r20=hkrH`b_c#j%xue@{@$(=
zd7MO1K*hb^bo23Sfbrvx91{~{_<|Dp;6Lli{nPs;u|+p05{V;!ZFF2p+jv9gwLQPn
zbJ|PF&)TrZH=#IfurhW4xH^ON)Q2(AexC`{l4rou*dL|}JGEJ305iUZ(#Bqm$RAn-
z9L2&1{`=drw>XDi5xKV{RAAuQ@hBslr#tw*it6fUQ|-&Dzpo#Dp$AbaS1@}m4C{XN
zt|Gm^>tlK!wc14FJLFt>%L%Z+>)c3KEnit>SYNr(P;Xx~E}rmVtu%}3V2!e5Enb~6
z^y~^yXb0zi{kJZ9LoN(rT;?b4wDs0`leN&%^fv7iAJac7cie)uZyE1YM$VvoOre;s
z=T-IA|N6-t4Fpo|-}-0Y`}Z3t>Iu_B<!5F0$gj(u7vj$wkU$r%x_>QWw%w&FpJl9!
zbE8(eQXxZ8?4;YU<uaBzu4R_&sKIG2kFt-O89Prt^TWUH$cP^pJFe9Z@pVRJ{QbOh
z{&!RIv!Y-Wg8b@8r2jCH`0a_C>loMiOldUUk=bjF%@SRu*~qT9#)ycY=kaFJ%hI!t
zE@R!Mt9XtX<5MIVvf@;cN&QGJt<$3Cr>Tv<Uq+Yd+yK0CWHc%F>E=tPSX1;+Q_}Fc
zqNBx;{Zsp*tEuSaY>>tyBaV{z9Ya!y0b^o78ZploOy0e9l#KE|)4bx#k3JPTV-r;S
zK1Eh$`=%b}@UNf`>;Z&oNM+(Z7>P;R>SIBkmeyi}ErktS_5!d1Dj}F6Ik|wmY`!TY
z^c`Ovcb>Lh8u&TEWcYh$uY5)1N_C$sM|ESze@y7sSN(SVc0)$}a>C46eeE6?+wN`z
zlFo}m(w4E}ZH=Nh%=Y$uO*T*e@R$^sa$l8(q**s%e13J4RZ3A+*ZlTSZUg10)UX1P
z4rh;vB=n^bDfQXdW|r1=ne1+P21KwxXkJ7mTI88OvC(BWxGyfJqG=GF`^e&|*`Yt9
zuM(qEa!VEVb$5M}s*u1v@=r`;_B(5w#}~I+r+D2P)sG0aS<>-(wvC46YMz1Q`|v`f
z(@0^Kdefp}_8$))|735D7HPJGJeho<9kIe5m*6TPlwGIKDvfchy6<{_g#DWsYLWZj
zd1c(3+eJX4<Y`o=7-mQ8KtnP_tJwUkr?YV(OzP+RTi)`GI3}idu(&}Ic$Li8WC)Kh
zY++@{NX=!^w*<J1`u^@w;Vx)eCBU5`6~(NAvOv7!W!<(_{V<spXVE=`x_mT}v(6~g
z@zZBBgyeWTl+z-<h>^lF7a0*9Z^h*BLP~-DD_PIN#EotejUl0^J@ty6?2+-gd)DL^
zjD@0uRVM(pxAgB{;XUHc`)b$CoF%J$1Zh>6lxz|A*o}x%6W1nIlOFRQ@{q6|99=NK
zuPY0r*k3_ASf}jVlZluI$$|jNn3V#xU@Zie!~ebR2sTBo;tYM;yaB43Dlx2S1<$YU
zD)R_9zp0&g&gr<Q0+;N1A25?Og2-S@VXh9Cc3fOZFh6sR%W=?D;EM1=D{eeN{1Et(
zdE%Gp2y+<Tb&XV`_tbdeB|M7C0Td(G6E9Z+DiS5%Bh~%e35y(=sEaU-Xt!z{wp_hc
zTkvUm({T;pkSSTH^0rdA5d6vU%gtN^u3&-iq<*&ghBjfXOA#RT&KZu<DU2<@sU1Wm
z(qunF@s7~O%wBHMwTBc<qb{);0?u%MtS|du=<Q7g8Sx^vv_(<91Fd|{Y4C7}kBAdm
zmjBk!wa?|u*YI`nJ?_;}_-13<=}yEH==4~-5%4!k-M8T?JnskHNz~wjS07XI#2Vp)
z=%bsze>`icf<1jJ^#tHtBH2gtq)oh$d@!Ze1H@x1J#-MIdDM@3r~l)om<7BAz&v){
zFnouMvwd2f!LEHqo2RsW_O8ro`~Q=wJ3g42+I7rZIG1*Ov<X=4Sa68t>|AutvFluN
zuPp6c_HJA4{Pbv$vuh<_&aP`U<ZEfy=ZFwaFaUiH2K0jf08tUZF+dm628;&)0PHu=
zFhOZfG!LDaJcEQHqm&Y>tO}Y>fLBmRL|mNxCWcc%m0MYp?~V>1Mn^<LUtH&&gpQGn
zzUfUP3k4$!WiuO$o*~A<4r6JjVdJP{@2ZD&(|7VTa`QIv@Ug@?nS1+MJ@mKr3vvhu
zbqoq~4SVbv@x<$Kv=1)MH#WgPJ}EdUH7qqFG9xo8GdrG<H6|x7A-^c4sHCEq@UpF=
zxu<tvU|?=;?mB98baZrnetv!C|9i-<Fwwp`qHIq`Hhi6ol**@T<`8uWY`Shz4B6pt
z-s;xueu$acana7vVi4W$R<<wtba2)eHFa=#g^P}fjf+o6OiE5kO-ok1m6?@&OO2Y7
z56ujYWtOr__ax`x;g@32DJ@s$5%Z(w_SJ4~G3JzdrdNw4XX9gcNf74NWaJaH&_VD~
zxFbYGh@igLGe*?xg$ON%8$53uRzA<)TUgS7OYy_;-}iqU93CD2Jo)we^z8inX-*EP
zR75Gw_qkJPE<Im1N`C+!C;xa<AMJVOYc3)S*BVM%>(?1h=d4~Fcsq^Gj@N=$VbK-w
zFt`2$YC5`DjYLNAVLD4XvN4t`sFYS_ZfEP}T_FaiD(G`=Epl#IgIq61gx-f*^KxFh
z<&#|mrI@uSPN%bBsm)`q&Tg!;@l*Jp3r!`G=SVc;?aFQ=SC@lNNiVAidO2zuvzZ#O
z8^5Jn(;awt%w(kq+>YbuQV>;*&c@(ypE0r<3AAc$e{T#YOgFUbfy*gu3o$U8;Jx{J
zCl?ix|H_vy#8|2uhJD>fUwyv5U(L$>Nk@jjP@#=*l|VA}TAO!<am1i6-B4u(HGo<i
z|N3KgR$)|cCfRHyU|xCXGH8T_b?6=B&M4K8)}MEaVyi)?oMH1}zMQ%{W-fQ{-$Nc^
z<eni&IiXszl4XDac*_-t(hx(65j#>e9)Lj@XGjRz7r}<`cE*{0DvxnNP1&8HZY#Ty
zUprr)V#tLyGBy5Hm)Oz{O{>zAPoJp4g*Wp0wakWb0|?Xmo_us{J{si!_90&!#l0TP
z7qHj^S*KzLE;=>1rY|p81TM>@PDTHR*O<=kho>=_@>`;sX5e!2HXVpN%R>wdbENV%
ziz;%>vry_8KwyNd;^JGYFs`|3_@B{KQn`}AS|RumuGB495TN7}+!X^U%^g9cX$AV$
zB8tRcrJCv_83`c=DjWd>&AwXuta15o-`l3OMD{bafAe4{r6Nh}FuXJlbUkFREmyja
z0jhz)S<kNaU*V+=F>ac1o-yhSH6)Neb*TU9vtrDVTM0V-Fb2lJfdJm?1Z~aqMolXE
z_A?L;LHZzu2a*FokmXQ?kt{z3D&e~&-lvgfBi>tY`NA5?pQ)u`>XR)w5Jyw!dr)u0
zCdnsT>fwx`+C%u(QAzX7W5}Vqf<%h8`8^1Q1VMlZ6>cN8jyV`11`{*`O(>A|mCxlC
z)Hizj+dW=3{$762wJ(pJzfdPWD<kr12$;_>IcG4erD$Y3BnZuAIE0Wu;_t3eK5sNe
z6ocSQ&z*}RsTqI@<(bZGvHEP9_FlvPJmJyMs)C1wm0+5U5=247#!WiGNK_nUEi=_s
z#HQBtFGi&Y8=rbLxHe?t$e&S3xl)P+epP6eX!zRB$P1_H{SKNI$L-s55C=BY@kD;)
z=bOqsyH)S%R8A!-uYO;A?>hK*d3c5F;#HR<@v;Z#Nf2SNRGE(&{tcGa3A4QD<DhzS
zqgy9JixDzR-S5XHq(*5=ia-C;=ua29)FiDCM;T*i%=Qce)6yAW92#JzkW{65FyF)d
zX9_BkX-8pAgxhV>z$7f`m5#w8C8Zz;s_xzq(S^?zaiAtb{PME`4{D%8Cx8kasYCeU
z$r?})lQ{q-Ir(z|kF3<Yf@sP-H%(FQXs}sYIora>uzb%^dWNMTZ;CG<eduby)cT@i
z3*gaDMQ*6CHsoM(sNFX&Mq`*xg@h!NqLHFw(8scBRNL(%=uAKsnUES!eSb^3=Qw5O
zAtTiXnNbxsNBar77^oWqgjyp3;yLTM6~3rWE^o*`R1X6>;qK5j;DAKl&){KtNIfSo
zuc((x#Iy}Ghl&P#BqNhG-GsbX_z5kGu9WW@op=~N_w47hN;*S=2vZ>*xTEiWALlf}
z*<lK(hUcsXhsl3v!9k>IUcNynazgLZ2d%}Z@unKR*H??zGQD(XbVeAV1GAyD<}qUW
z0LH)6lJ~#MszI;os{WWimC&`sz^w7nlqK~LPAfVwzS)?6l-Q)JP@Whm2&PV1*o;!p
zlArE6T!1bFROw0LU`?!az2=C_TGl-t?abjvO22B2((BBk84Y#1J+pYQs;po^TonLO
z2G;P3I9}>UcwopV2l?-WFcLaoI53P+(1L33Bi-a^qwil-#cd&D?SI!^Unaaox)D&N
za~qN}S96#^ipiZc;Z{+OKH1^UVUf-!%k#y#aURyRGpm9PnA98vv;jkUYuE4|-f!9G
z@x1>9l+*^rz&_lZUta#***zhqT=$;iDGU$jJQsPqNXF=(YGN9dR$#d+1g1FIfU7vu
zf&cQd6(o2xAx}*G4(f{b_I~x=JGA6^+-sf2-31l3ym~=yP2>Uv8bdzxJu5MTSta}8
zI?_2xU<q<Y<H{B=<e5bH{McuMprhvfs;BOPfmp~T6KuwO05oy|Ipyykm{KM@yg9x`
z6LFT_=i@>tdcCT|<2nR=Rmo|H0IF_`lDLr{L=S6=9#SBak^e!4LXc?iccI6OPAblG
zF(nlkutVy!3fdPyEnD3vO2Clu6JnB8fl3He8Tlk6jq~*E9i^)(ISLz1AgS>fm-*+V
z?-{-B48!mWX_i^ObLNXKYLR|%L?4sw>caQJ|IsY&dg0r5e)~703NOY|6aciN^O@p7
zEx<&D9j2I{10(=m7U%lP&414Cwn+7Zue4P55_yxs{Ez1ZRDM;Pz6=jDgv!<4^@%fx
ziJsRX{-O)~yJmlRu|O<ieso1ASnZnta9P&L?J_oHP(Z;aqB;?Vw$-DMSLMIVMky2y
zf%&Bil+=VA%AMonXn+@w2tl^_ILS%O;34?-@XNe9ryrQ=i00?9KM`hML9s^9^!9Ge
zYn2#)VO68;S_(%6&}jiiWjv(y!>}INAV9f-n4-$4HY9HX`Xwp_D-+7<cg7uZ3-)<`
z=UN%oZJPSj;khZ{@rpqyOS?dx1o?0|F#446GcG`G5kuQEoj95Ac<&|9r2Y$!97o+P
zJboB-h_NmA#rYu_3ll5>&zdK%0x<~Gt|2yjVX5y?Rps+N`iC`~f^8te|1k9yZcRRJ
z-1as$7-PWbhK+7UH;(R3$<ZM#AfWi&=<Y5@3Wx|O2#7d3L>d%C9i<{7ZD8!-_q^|M
zyzl>T-}iA}pX)q7SKi;RVTPcr3u4TwF#fBME$Ds5+>fE(e~%8)YFcf&?*n>=312aT
zAHwdQ@TF9V<MIY~MJ#_kh4S)oqVSZGoj{g$E4s`uz0beD!8yN+8ppN{esP??Tzj!|
z`V&W_GCH=U#r>t>=={bXc`c3t+iPeZ^ZYo?^3V1W@cV@2&}rHHpO5PI7^eOkI=^rE
z_lwJm%f%N%-=EI^{dSx0%{qDL=cMJo)2a^%Ti0G(zMlX0{TZLiK3g)!tPVs%F!<lZ
z@{@_l;}u2bZQ6;g|161+w0xhVTR3Pe&cL6#d_g9WK;w^sH4^Q~hyaG51yREV8fX{(
zi!lAxF>M-2T-ORdiIte?yoEZ2ucB%EiHZ6IJeL!Q$BDWVLB-z!PO1ab66H8CX6~fK
ziy}I=GMt`M@`iFS0EGa{CNt`}=-?O)F$^~rJubW%UFD+nNV1bpKn)8i@}H@!L?Mn5
zB4&M5%0^5|cqTQxY&<{nrv;(V2}F3TiR+sbfdxDt@P>bQl5u{LQ9g6mV~{jP$x}H^
zAHeG6nVi{|ZYXM)j|q(_h_^XrH^gL&Xs4*8rz}O^7DJ?EVl%9dIgc1zQ;>;*k2!*b
zuywMW1_bu_pWu$ZpxPF2*H1GpQj#$-&4`qCuxLYG_H?wi%IaU{%67`0n7T7qVxk@G
zzg&Q%S>l<S;<<=G9?0?}tMGip^D==ThxW+r)0E~XVk@yJb^JWeZ+PV((eqt=>1P1o
zMYNbT-%%IeqNw7P+0f=Iu=*qiG9q>uk;BOk=KqO8$?>;AAtLoL2*s>lsqSBXLKuXk
z+xK+1M$#5gJgO~xX`)!;Va0b)_sWL<CRGXr#o`7_1nI@V<~os9{6cXGl0`Z~OUokv
zDG2*U3I{S$+&I0dOTy>?wCy}aZwf=~jEe4b>)_=?t3=%@Pe8jYl&9Z8p`u^`A3zg;
z@o|F{3TLm~&yeP&A+ydCB_C#t)4Z_eC)45#r8vabb;O$!#oI>2FZh`>qdXs<MpzP+
zX{jmc_lhGB1yNmU59)<)_J>(?m)=Y)o^fCp(*>_?v1t9WxyM|<cZL;;t0>>UHJU25
zF>>?WsnnL2+yTh1K2Z9WlANca%&wQr&w3d<fWXtIwxJMh`kS&;ac&`rl^!;-2mx92
zmMn6VLwlH6m>@951fpN?!pMWgIz8wXecBtdb%=~~-m+9@9!(i?v+JPe94-b3C4GRr
z0a9MUTYeTtSJ)*_iEz8dq@Zi7pov!y@B^EjIeI`9yNoL=j;%%mEi!uUg|e3GFVw=3
z3bINnn~9M3AnDchDu>=cgA`YC!LQ8XK&6VfI(AspsFE@l1IU2I_UJ@SrN}8h4txT3
z!dR=MH5Br<ftfZOYIl-h-u3JD3>XwsPMw-wxTN$kkQKw^ltgzm5i$^~Q&Vzv7C=r#
zGWwS)vX}fOwnn~1Qo=tpwSL&62Gj?cF)wbyhAH4<0!))d8k|5RVnO5kK4g)C5U^mZ
z@udNiDYk2?MG|5W4)+qn-q$&98l|uu@MOEYtXipC<^n5SIjcujXmJd*WY2ge`d<_L
zWGz6r_D2_7T7tTEtDe%Xh1!m<_Z*ylslpg#Yl6$b_Ed#7fu1Gmhzs(7JArX1GmKxw
z!=LvJu{1slK<8*jazjvSUlHi?CcjLdJ|qGx3bpPY)4jOR<xqBzV-Oa_>XCbxOrokx
z7W9JSDQnK#x&}n}1r3D3?tJJD1#8fbi6&-+M^~X$->S8~O<Nb~#Y%*!h=A(`@=b6C
zIRlUWh}(BM8s2RvT{QqV2esXAb3L<bNfHFx3|InmjVtvY^i{aJ)?1Y&tJVA5(yT0h
z(gH%+w*b3fFy9*oYr?n`weJD3RwNT~fN7<UN4hY>z00CLp9kKnrZ1SynsHecXxrP=
z1@QhZcR)Flv8|P|9*8C!VG3qb*GO~%eI`l#Py=69nE#FMae83BXlMb7v)E6zIIw$C
zd1fI}*-5_iq4}ZbNhhI~DJTHfFMiWg1rq{66|GqyS?z-8Cq{uhQDT?^wmN?rV2O3a
zwjNDM6eglw7ilBtYlFbqs0c*76bB5&nx2-h$lKdG>$Dl=+pf=)!7J`#ByQ=u^wSG6
zeLU~MK6@gMw-Vb@*6KGc+Rrd6>FK@w?1U-7MOEZkCB#+HiCG=|TFK!uncDv%#o<|K
zh&?zC@)V%ws1L~QyL22d1ee^_GX}JqEO7Ioi(*+EiNED|UkcUrI6qn~%JTKj73!D0
z4J)*l(~W9XxVTN*dA-^fCJ%MKr#@hT9k9kcnL8Q6&8R-7;fQAO@I3aIe(8{*27a9K
zjEvwO4k^kWg1ELvWg4}qiuJn<t3U92>$-LcX6UsFS#`_%ILPxyrE++9+rH)S1Skk(
zcE{7HMFRxuo|_Os;Vc52o+E!phxL#Tf-~6ZCa?wo54{EIg9BZ&J02_r9(1!FpyV<O
z1U8VRfSppO3N%`|6G%SrqeLd@lg3WI+#fCBlK2zyTPg709+H_ejY;_C=2X=6L0(_c
z;n?cQg-_|~$VWmkUMvM(5^G*E4q)X{@6>94H3xsKQnt~TuG`xn{h0ekF<ePYK9(_#
zfd;<xYLHL$zOK#U*>FD!l%J2EpXh<DEZU!*1QJC6;n?s%Jq=N;%|R1Pr5a53)Oipf
z>{~tSm)7nN%5Z{Xd?j%-9hAT}hX)>v0Z9%4rWz54T>&}5>Ee_Ab`wwS+QH?*g&;)1
zAf@}mKQmpMpuJ}=EC~Tp#DLsXg7}1&^hc&94L@H8tWG#c%g-yNz0fpuI;<KjcmUb@
z6WBjd6n|#{>IOA(3Kk0wo)#805eVN$hL~P8x9o(DJac7k4%z$|B36Ogrp%y@4wVfL
zi!3q3XD{Al4CBIs?CVng_#xooB~2rKXf}}Y>{DD&-$iQZ32G560){Mz>==O2B9own
zo6C#g^lTAku4OE*m)QMRPS+w@5F^Hj$ZH3YE`P-pp2G>hA=V*6WLr%h`scwChj6JH
z7S3Zq2c5+d#F9qhqi(B5q)~g5SF6;|U*CDSaOY0x(@B8oeef+f#PYszW$Z17r$$bW
zQ0KBa8}Aq+EPymsYA)Vgw-n9khx#IW>z49*AuVM9n+;5iDwwV6UJhlQ6tqE;;pOQY
z>-5BjZsrmITL1gE`rf@Bc>Xp4@!t_9R-e!vfR5MFp%g+7u{<-#zTang5u5Vr?E=rc
zM?YR)=EqgNj=RT3HI~CYw*WMcSTBEW&@{REJ~_Tb>fPs>_i3cJ$H?1H{2f|&AcG=;
zkOiP9THX--;l}Rm0hT*o{(b;_qx;H30=tta>4qupl3+t5cy0xm`aKE3yT$nLF1^+k
z>)kE(_vyLiTioxrcssTt$DltASuY$RKOAYnZ|H<_;h`v85&);Sy={`eor1;j-QA%a
z!j<JypCnMRII%K1!2stwwnc9;5WAEKU_KSPWk6z?b@&8vJ0HA;CBb{2gWr*MCAgBH
zvPqB7E>1yU^b|gTkYz~B>Lw;>JYcz=E1;9U6K+8=a#}KRYNtXqc((96l(ROAr|hOf
z<19Lj|6Sk5v8X#UOKZQ64^LH$VA^-#3y!t3Z8b@;NVUO&qCck;7lF9Ky<Sj3%0ts`
zIelEcUHtZj5FaxAwNq&cU7QC4>kZyd-9v8&g_gGYGsy9%LIRYV^7cmqI_NXr+$XY`
zYAhT@cuq@c*Yd(lk|<~DTl=0mTZ@H^0HRd?;tmLNXmZ@v#ar9-@6)bzKNyg0h0H9F
zJRH=vdpz{*PEEF#I$`z=?*%mHZ2`~D=N$HK-u0h(F=fNcTRDHN_xil~9Lo5FY<NEn
zACdp%t$xmV<#aR&!R*K-U$XZvU2HPypbjHYfa?WGy7^5(`K0oE!tQ`25yW>0zE{b7
zEBmzT`?r5PC&#%3lrIY677I>4ANPBm9(;WD_1_tEZc=nwFpXLq+bV?SDDB@8f>s6l
zd9A4S7kRo@(7WtLZ<pvAtA=<LI~pyS^n<Oh>5>^ymKKjV>Nty}cuxA0q<l~Bz46vP
zXrB1@Stls)yneeB#O9IIT9h(97Go^o#FHWw5BBT7XUPGXd{+bs{wX6<9x0Y6@k`La
zW7mDY{KiH3ceSceho2Q6jxgk3e+DYnyQS_;6SnK6n=9DX<0|22hHcknl$kKz$CY%S
z!F4lLy}wfITB`2YR56?pe#!m*lSp%_Bhy~-%l^gXiFV5SBnS<bCKX(3YpdwURNJRp
zOKByqoK&l3yL3>Y3JxNO1S_0gee(NX8RPEBvr#B@fd5{vW;qA(yryPGLXIA(fCd^c
zwuGZ~%_e#<1dlzpF{fi%J3v>DRqATD%ah^bjicov5<O$$?>q&18UC+l@Gj=XR>ZGr
z_op9D;{Mit_(29zK&Yr`Xz3Z49!JJ-^6=dPLp!{5>Qjf<8|l0xyV=ziF`A3KUcv)P
zUV4p4Vyc=eG!?G%wqu|-)xZnch%qI(TF;whG{q*Qxn75O`9p$?A$C;|*HLiz<EZ~a
z=2M?tWnjgRt(-09uceyVfc2~ftX5W4<iQw4@YMHdE6qMMQh&4!#o<*PaDrzmbC6L;
z2n3`h4=Q~A($l)PodjW!HGpQx%Dt6i5V6ig_I6#l1czqjgfjl-3>1)xPV9~3varjv
zGsi5O_lIHjuTMO;K3c&hyuHYFU|WTfAo~Z7U4E+rB{v+e_FJj6FQJT$9(*3mLSEK0
zup58mVt$oPIJL1e1v2oQ)}=6mq}w)a#GAMtNej8A->Ga0WgWe4*Z$`1t*H;hm2W1k
z_EB7(&EafiS?bB|ROSH+`RGVzA}of-Sz#a9|58X%rVUq!W@Zt!6E*VTcx}c43xJ$3
zI$7KCbF;`;KX4e1r^VC8LYUz>9|4)n-0tl}EtG!TnV8Y_$&Q4hG<rVMK0}ym-vUE$
zTHiaxSR)@XUdC>0GOIhLO<qdtrG?s;ZX{l*3z=;-LM_(5FhV0cYc)!{g?u1s7_^g8
z%xoYYA=p~VA=Pr28bCIK*-LZWZxP89pQ=`*s~)LiV0;N8R&PM>moLVCO$0XuthAP~
z)g7BYYK;74W)yCxK}arGNHTzfHVa0Q8EdT!z*U<ISTKu|k;qe_gdKALF*2|jx#lw%
z2%$V)3B@ZrLGiTGAL^0>a-8zN0GP@V%wqRK@0`g=RiYNhm~QP`X9_%CxZ>MQ079MI
z&lv8%l-DBVjoMn9+ppSR4_RGx^t2xxr59k>0dLr$>+o)IO>-p%NgxLpTN-ZBSRR{!
zhp^7X?hqqlo+w;LZI*Y_cxB|X*0MEz#$5L+km{YDsZ3ci7Aw;m-H>Emz>P8EzK)cL
z>R^W<J!Z$`q8x}#fOZl!5=VeYV@{f0DY?YnfYo{tI_6QX<xzqms~G&O;>V_>W+hlW
zMqXTDC>CnLX|6K&FKRFP^>XH{4mfl^e**T8V1H{<+8`FaRulJa{nI@>opXSl|KH<m
zL_9Y>MX?s!6*yoZU%DA?3e~2d?Yz-ow-}>P0-kBJ@6zWtm$J-kdo;)SnEmBDwU+tX
z-U@vg46jWEjPdj!C2$3!=FSH7v#n9GB<2<QeJmV-&`pFBBd7*zFd>S13mie7Z_yPw
z2yAI0B;~_G^`bOve*4(1)L=(eY*uTBdT`T1cGz?IkiV@iV&3h?ySSrwx87w*-vIT1
zMae{n+>2O~m&|-D59224hvK+>c&5y9WoA!$54_pKfl-QUO$oB@xe-F0Uqsl-LVUW8
zlvZwhX^!lo_}Q_ZA!!0BOvzFV@QgEN7X+|?VN3&}<y9MF_zmC`r#RO1CwQS+8B2_J
zi#7Q-#()9c!I*Xs)51Xk0%GS4v|L}YaIKaK#ujt@M=Tatl9ruaF5@SGHT_*UUQ9EA
zbk}vl^ph|+z@=|`iP-j0{{O2PoL@gi0tt*xL?9C(P1TB&2<OHDS;O%gu7q(|F(J-#
zmdGx127p?1QXq)AD}vS?6nz8;t1cdD(oIPrNdux<z`<Y*l2>)hWRQdrGZ!4unHYe?
zVr&Gs-lfCYI*}BJP7KW-WjVDChCDN8KB=Fd4Kcz~*#V6y{25DADA8~*(-l){hSjvq
z2Vfm>Tt-N%eCF;@1;>S}_{|DI0qaoyf&>Ul0r2awmM}|pAQ+Z$Pts_C77~jeA{d%N
z-`Kzfoo6Xrafwhg4kXoC4H#Tc(d@<Mvp6}>n=;Hrl%7=ws0gc<^o!l_iO6#M<JBY@
zXlxd=4-R><eNB5hQR`n9*W>oR-~UE+RU6OX%!kcys>`i&LW>)CE&@=5pXtyJf}U6(
z15o2Qv7i$dW|8g$HzNUPh7_93E0{A$Dw@uXBnocwPYl%Smxh7@ARoP#JQTYED4f7(
zcowm<hGk|e$w^R(Vsn78Uu+3$Qui@}UyRJcS1J<in~!g|v6XUC6!~dW3&d&nHCoNF
ze?5esJHdgmvW))=@NUSxA$=JJ7}t>i5>N~IR%cKwD>@-abai(_&9QGoK>?n=ml3SX
z$s$WK5!oo>l60wO^l_j~T)p8*FOgB)5ydG`-saxg04#CnX%~<Ta+=-(w+&suX+;;f
zzh<VA)>s<&6u(6jRJrb{$u=U}%qaf-$Qb`u|Kv7C`%DAStHcecl^QMLXU$(fh(SFI
zCw=40ZJ`7y;GDfkUeU`KXJ<?q-6!)=GHBx&6-7H1vdBWbz4L(bGE#*0;3ABRlAG#x
zrq=)n`bczF{pz7{g8z2YPI`^lDp>dK=lOn|rp@i;sQ8qDRh(Efs7F+La@DmaTnjJ|
z+Q$4W?UbVgTf5}Da~+jWYJNY-lhWIEwohjhT);t;2#Kr;taOrVCIxxbyFwHd^a!J(
z)YeT(+eX~<_3x);!`yzd^V(DFiB}n6z6>q53LVGK_x5wueh<3hW;s1wYu=FzHI6Fg
z6TaWfd-=y-o4#@(Md`eb;rR|mq;fGQ=DY#L6KHH3uvpZ4-XvQSXddRgT=Mb!zBW&g
zbzbGl%ZsR1>zW|@N0qA&*A`k?$g)7V=@bCf84WF$JdpMQR2hFIW>IV7N`;+Y-wXgy
zO?{Sy{Z*43?9k<P;|U3*S6iU{jJdkb_etwc-D`F^BGdq3${NAtzp-aRp@;se+k)|A
z76rn>A9gIx4bQO6=};(HDb98QL1%X<hA!MZX^XKGS^7UZsoX&+60RXsM<GMH07;yo
zE1U^yG<<c4Tt#CTe6=!<*yB%Z37&j+92)$>*yS|#KK@;Jcpta>w^U#k>Z2|og*r+j
zq~_?)r0>5Gm>RKRpQybRC^{f&(iujhjpj3!`N5MrL`At99dmH^rJ>ORo*C+6DtOra
z%Aj*lq!9_mZ8mWg+iH`QvY&qyodr2udktcF<M&0NqK4W55c=Hv{x<{*;O(n9ho0Vq
zGQJFBc;qbAoR{>MFDtQBL$&qH!8qPqrJ%K*x#)=4=QQOX;*(t7rw%zje_|Kb-Tw?7
zFKYxSy0`c1!1Kr(l@;ydnwms2Py^ZgoxR_to4_42pT^uWcI0s1<(H9S;ne;2SL4c_
zY;3`qbg{`{$vW=fo{a8Vbs+M$K7(4uwP(!vynif>7I^DEbbdWbQ!HF=oT6m-lj-<^
zR@4d)?<pR15cD{_^ho8@$)io3|Few+WLYwH9PKX=0S~?bc0;cQXOPfBL$ajVxoF|o
z)|dtn0LR8bF%+ug1q#*hE&?7<Y|ecJrBjZ8QC5s&+A0Qqzs8VvpjhxY_T#B%Box32
zCjn0nD4rt0e{~oOcffAPFUr3{rYvdWJJb9;pNo$|Co$`wg-$dj`g0hq2^Mmi#j3T%
zl?bL0N%Il^N@Ki*D-^;NTfv<$EdyBE)oHk*F5NtVLhXLCO*n)PDH4=VF%N($cTzkf
z(Qvj?j{_{KF@H}5dRFw|kBKlyHtd5WEy;>byh|y_pG`CgSeSqAiuxgpX4bcENS<Zh
zL~}0iQ`!O45neWL>RHUe*G|Rb>99SnBr#zmj~4*F<Qdusu!|9#%xr_i=*ot6>P`4h
zmy%8Dx(OO^QuhFm)pU#>vqiyAX~r*XMVSmt?P9;;Xb4ttPK=EmgG}2ArwEcOt*Iqc
z_I#s}=s*Ou7@rdnv_V^6S0s2pMfk|c`fbi}@Q$%;8^WX`pi7Cgu<nt6)~J&R==K(E
zWP}&Cf!8lWw$b{LGfHuW6x8C)ZR*4Fm;nAZ53`vxCt34KeCEl*^N1h;?~o{u!t<#G
z+2V+%WQeeTGsG}LBrY;w=BtSow(DycKRW>8gmb0?ROa$yI|an<ktoVfnRtoh@?BGc
zF~k)Kn?izBj$z&A=z1TvYydSs?(9AC4m(yn!$-0ROD&CpaEtE$NjIw|M~cZJnC*xF
z#P-O>eP}KTFjM$1oH1V~32cC+=OKc-BSlXmWoQWrZ~`Pe7qC=N@$Z|o9A+!^kRsTN
z?=?W<i8(+NN!hs2rB?LMPmb2WcHICY{vFy<J&*LK5}cU>ub2bE<vNU*XdTYrLx7DX
zti-c!rYC|@t&u*(jN-Cr^=zAmRscxo7@EOWRt5-i$8-(hK$X;2)&g8bK2iL0wA{_i
z_ZD&-IJwaP#zmy^Yk-KYtt8oonof)+vIs8xK;%UJT1xY*u&1D;XC?E=3t~94UL9|p
zzib;yw0n!=bX#d0!2V;D8#m0J=5r?~jU#sdcWD~t#RA_s*-IKX^6~T|R|?H8n3?Y!
zD6PSaRFF|m2BDY}QST?!1o&x|3H)zJ0N9=+3Z&81AnaE!Jclu~21D}eO?eCTK7_Kl
zfCT4oni<9FF;TqnC$#JeoN#6ry>lgMSwps^c6V(UHVVaA&mCV}Ibml|0TO}gh`uKv
zQAi;xegzn#(W;4221(~#F|zD9=KRbO*yGQd16<INx+3Avy_3=65#lS-o!;`oqcVty
zn`T1!bV*)Bs)kPA=*t~#quq3Nd%asb*cH4j1Ry(xRPM?~zV@*L9w@U%sEm!P6bq`B
zCUsQ{D80J@u|X<G>^LOY!FDOMcD)^M_ei;u1(X1C_Dp)38^spWkFI1vrv?c{hf&&}
zIyUzVO|Sk`2bfVZ4eCPz8t+@$a!2EflT^i9ROVP@K93r&oEbAEYs@uhq&`HZDWWnJ
zEkiz4zggA>DPkd|_8Nx(Js;@QqTW#6emuR)K#)PLUNSLKOgv>!P(0Yl$F>Jzi--~2
z6TV2FHm^1V+|@JQBAPAenWt_)%A{ryX0a(wwx}JW_$Fv+0sOs2@?65cI6b8eV6{x#
z_mgF~8LQ+zGzQuN{tLfJjq<bpxx(v6@RyJb;(}XkB8^>{o%%}lhwR~2O6Fhu^578b
zdaOltqv+i=KM~U7*;3ccZC^HFx;NxAC7*6S!&2}4o7CR^*k8S2N!bq7SyACazIGFi
zm$FU-O6?}9^g-Y2xOAHX0p|gt%K+L|zSQW+p0AT(<!%!neY%~sr;pfcpSL)VKM*Wf
zINWK?T#w3cc-ixOuSpnUn_?QMs0(RaqxE^M_he5qO!=1asr#VdkB_W1#jL`#fLm-5
zariP5ht&k`A6gLX4f>}z(sUGA2uo>TY|+UIY7o&7i4pQ+qk+bx5u$fk=`wF=9`srp
zINUV;L3uD8w*T~QKWHtVGP<0yVY}J-G2ubWL{KLs-S;(?feE9#GPLEPwl7n0Hn^LR
zFxjg`#IGK0tFVOsy7WKjMKh3%cuXcm5F*m7_ak^kB7G3N9~}V}1jyCFC|;^a3+<3Q
zx1bK}wa1kDP+Z6M5BS2Zz<EOIA|U-Wk-1n}5YpGx*Yh9MiPvLdSkyd9<vxv;KV0wU
z949Hoygc)sSF-(^@b6D((dF0sM?<-svaf&p{Z%<<^^LfAerz^X-1hc=0qG_di=J#{
z@xf8F;Zq!-jN6h--lq8A8IilZDz;Vri7rZ(f7zqLZPE!k<3qS4ZAXB!Xg%j={Mdy2
zDlT!!KaXrRsj&=jFoJ8S(tJ-t%8A`I7Zp90MVVHFqW#mV(YOWw^l`sj<BE(XEDo@O
z5_HhN#ZmOso0lg*-+>&6A9_<DRuEXW&TF_X>lc9ZJsaX>JIpnzxE7bwbG<6XEVE@Q
zGbrs|-&7XSD0`}f#$><R#V4l)s|s`~`eG!kmSM$gQVhyyf==hxDsx(86d;KOZ~AjO
zlMF#$3T-%QkWN2l*B_~=L_x&veL4%2Xe&zxl_wh)iv6rD46JA$t{_aO4l3r&6DuRb
za?P+HE6yga@%lTqjpm<XZJe8)o>fE{yFb#eotmx=zHG8oYc3gX^yb7)7*zGO(l}kd
zP%^GP`&_UQ7rFGydf+>ogj&Ee&zg<>8o$d1rg&aWwaP!Biqri(hTguB*tAs~L1LQF
zAfas93y}TN5=Wk9dm7h4Uiq{X^ze^Y54d$Zpsm+6vpv|vQ*+-brtSV+@s>@}gKY7q
zg+Z;A;zko}ZQ$E%?ho2p8uC|>JV34j{qI@a>IvbIeSf@If3!Vv=&cJ0?X=2z$arHw
zVZE#Eh(^%BQ}0=muT`(ep46^M+N+;TgvAfrY){RTJ^i@4HcjGhsB?CI>D)=<6|Q=C
z$%)ybe$-s>NIL1U9*w_%X_t<3NUyrP*@HHR-`rD`73)u@#oxBYICKAJN>^CbZDQB4
zA3qcqxd@k}We1EdnO<&U2k!{t`x~Cc?>=MP8vcxXA)&;F7*zTyJIo9pJ$^|qIqUfD
zhB&LMwCEjrQF5@+IPnFUf_UOW2PY1X<Hy#UBHtlL(wIlT_Y+<I9R7Te!l6M7s2&R8
zw(>NWbZw{c3LX!5YHv__E8y$+?cmABgh_qcN$Ecm6@$}h$jNcgOupH)g$ixrAN!6w
zx7y9F|1g_rYM&7Zc}d)yp5C0ObCujSdnM;eyE*H>;hF&_o_?2n^$EUu-adPxF+Wb4
zy%?PT`)3~b?&VL71?uMuw0{>=gBBPP7CD|T^3?b<|6LSHSQ2}_G|s;yrMaw_u&m01
zKx-m0&2@tg*CHRLRlnj53)x%2t;c4s(rdrDJF#jAT~{M0jO(l|lUA<CF!krJ&jvR-
zq`*T<h$(W2?vT_by6sH?keKJT`GzRu58uvo!sEGy8*9V~ZhICT8}o&buOZ1DHShbL
zJ5MBV%)Fx|)a+=?>75|ASie>50X7oCXgL8b3IKlw$#)pmPj{Yw_>U*t^y{a@IY{a^
zTFxW%!cV4ZI{Wg_6Xu1;dz$WNfa4+N!`W_H(IFJ|u#l!@(toQ>t%6^{d0#;?bW5SL
zmjCEwwBCQHXYHgur34<G(``-+UK6Z^V*XHPN7)9uF`GT2ae4$fe)l1xw!`0YhmQFD
zJ?0-B1G8Jxk2wGp>Mrf>bNU6#-`luLpW`p<mJFbL@f7`o9l~v|qJy*Zk#Vhql00(M
z6;eq4C*@AXF!4xjlNS)?{^hCOO(-FH0|!hy2WDv<e|iRb@Z+#_Sq5W;V7LZlc_9}Z
zZd!j#e`dw_y))T899oe7-ma1U*$pPkP-`LU8gcR|Jz#eDEoOL<;T`FmN5RkFKj`Qp
zcwF|J?F9B5GW)bM^127R9a-}B3zob0_+;+`13tv>(123Y0mAnnZwa*W?Z+7(KCbQ`
zN4)>IVgMSssVuQ``ik>zwfph#i!f8`$`8^k+DoFY)@DKmtObkGLDo&71rMVN*w%S;
zB5Jt|6WMo=cf`9li(ybNSynx)hK^U!&Pg5PfUx*tR{`UMUCvI+c<h8Tqj0~O(wN*w
zvZAMN*I4gCKf^;m#$6u?hZ{a)clySP&EU-nczyG~Vv9Y`#}`Y0&StPTZoJwf`+<=r
z+x^j{JY&oSS0aHmH6|c`EI1$ljpivH8yxF%;x&JQi3ZEK4F#B0*2}e?cJp$ifA-st
zR&0kd@C1&bSsFP~qU6V8i=UT2%HRs<efDB>^5y*U>$e|vJ{=sL{rF9$fQyDBhZ8C3
z=U#SsqefHJ!Mm5l4mj)@+^SO)y9-FB#v?Hcql-IK`L*mCINPsNsqDfgQFdF~xB^O9
z9d<Nw4g@sco+_4?+fK=(rsBt*MTt$%2#DGjayXw8!K^X?a-Q+cDb$o;ct1Hn2sf5a
zMaf-WE>_%P-B?GmPQU6iqPh}Dr?b?{ri+>lrYiLxu;#-kIK0}?fcxpd4)@{S(>F-n
z4921ImFK@5n9|rZMfRI+u!TLFZOkcuKX|gT*5TontXL29&Sn<1l4QcwkC#GtoM<{T
zZ2jT2hhEvxx{<Lx7h;|2U7oi_<5Fz$9W~AuZ47x%Ib)v@p_>H+pM_Ul{Xo?3@83R*
z=E?l0_4o4o(a!w5d!23?2%3I#`Bvq6xAV=Cc07rbUS&kj)Jw=3&%o1n%)$9;@q|fr
zKl_*)DKywn!U4Zr-I6m-_f1YWj3tfefx?UGZ{8~Z%#0Gx%x}o$|4Hs)ph5Oh4Ab=H
zQx4~<eHSGHui31SxSLymP&p;@eWNQ2Az;i?=*h8m+J1{lqo0Yn4hU8zN!=){!`RBn
z6P#O7Qr=i$B?9YN4J-pVhBE19h7a~ln_uVAu1gt5Mfl{76ShXESdHXI7~<Yn=+qh<
zi&fn-AX*a&(_vN(nN=|49z$9Jn%4@;i+|58-qL!n{qd6XgNIMID<5<`J2j#I@2~7`
zvBG3{gfNptV}Nbpu<CWn44)^BRGd@LV{MwMK4h)sE`AdA6w#0HdOVx`7R4dnj+w|@
zDZo*+`VA5u_L~(WIsi<K`HzOgur0eVu{$xwTq}jCM?=59lW!AW06)|l4>nDpDUqgT
z?Jmy}dzTnt_aX!)iPZzfX|TejIyCX{4)-S!3B(_VnZ^XfV+EnH>bCK3|2T9BhMVj7
z`-V<g4|{*`W_L1xg9%j1<0~3BUwz${EbcNyN~}En+-;N&aT~-wPTlJYN`7!7KR@)*
z|Iag^KbPpFf45X8<A}xUw;%W^O84LGIp+b&S{*R-Z0?qBJ^h%24O>%xvHz4|UT#r^
zqpL+dv=`IVG7J^(L}U-<dbd4Rr);+>SLbaf;tot@j_JO%z1UIxT(9e@H_j4fVIi>@
ztESS^{%j8L^;;(b#Pe8Ji|XW&1jBEkc`h=aX7fYcYxr|RQC)+hy}eBhX`N%P&aFz}
zf4L1lS4CPsNIi+S-Ych?TsmzAbtcjX0qPH5zpE7p_W4PCO7bI8@T2iCS0n|ODE(Cd
z9$W<dHj)!NO!H5YdY@~RQbf6fNFAif#0jGD*~%r;=IVa`onw$Fs0y^orTNY@Oe6QH
zjCCsAj>brvMga}Xe}YNz!FsC0380N0Z^YTo_<ru2LDjFFY1fi5h?`WhnW~_)YKryw
zLVvK(-2B}r48C?2t0x!)%8p}d;8;nA-0o+9eZ8H_@Z__)FaVax*{1_@Kj&gCwn{$h
zT;XQ&H$3L3OJsY3#Y;|tIXkv=$Zd?pfJwhphVobV%1uEL_5EqfM7hwLG!7g(*hdVV
zSVrFKYvP{}x&pZ40AU3kY8?!X+#(*AaJIJBu}3$gSm*j-ri^wvJh3&Qjini0OcOf|
zX8dWxBoZ*pw7i46p+-_>BJOcEUpJ5Ln@acyNdCrc-Q}%zpJgVJk18nfRj@d|$`7F}
z{E}oIt3ayRC>CKl&3KhCaCYxRvQf4mF!R_AM5p^;PwFsYYE_V~W>bJg{1f_-0Ad+l
zs7?E{(8?HiD&$bdEoN*Qv{Y1Y7lQaY4{q^I2K8Yqt=9EEraIU<-bGU;Ry9%RlrDVw
zGvOlPNsMysYj;eYF*fcbw@OTm<3GjX?8Gr+3?!u8edcJ!thllH*>KK>OI>jA=Qcod
z<|HBiEHfzKi(I`pD~lOzx%dq#N}b+S)ohk_pBV|BA!mDK4g%Q3^TrxtX6R$%0#tKP
z#QhqgQ*aZ=nJ7fzY5F>|f;Wf8gf@@E5#93)hHL>QZ%cj{c9gGnX!kJ}yWw)M@p@zp
zFA;5IC$)p4-VEgU{|H*K&S?z9gt)TBdMkh)hjCL!FqVE+Nal*rrkP3yF&G&!Q33?P
zbOgLeY!-wyfCzRV)|j#b1UDA|M($5GKWaION@M>oLCgAtsPje0^>$vW2MvZmacL{O
zMTT2xPSAP|Ud?54UTS!%Ybp_rPOMYxFEy!jf2R4AqdCUvfD|_=9=5O72tbcN0O)_R
zP3@=qza}}VF_R!O-h8Pj$t^aAJ~(&nXx1k+YNn?EB4{p%S1hZV8jS@BL&t$FH{8DV
z?f|7R+F*7Jo^|DnL4>#4Ddz3l50s8W=RGoaDPlmMwv}e1NgcO_)i)INE~;+4>B{vm
z`t)X7bw2*R{JkUjx2c;DuHBckK#k5UaM>_I2aTtgA_SBvRH~i*FAR}4rTAZ*f0gE!
z&aRx}hQZC{5j!2IWEQ7bJJXfJ#(vT!;{*UwYckSSlc>xr`qc~kIUiwlOvbTh&#j~z
z_xP2HHmF;_nM`ooekOQW=H@;8n%K*qku{8S`BX`5&!9tH`({TKVI>xhR^rHi9xPW;
zHL3MiNvQLAVivwVjujCVQi=~Wzqzq|h$R;GYZ8oIpS@n!s;qk)QNb`c@cP;^vCbN?
zFP<E~5+<!nF(8~5r5t#j{YZXN{o6@i5;yOE!h8R5647#KQq_a#Of4&-9lf3{6BVvn
zz-_V?^5+?kd|u=9ORKYzw*sHQ3~Ivh(s?zyT`9jY?_d@kH{%hSNTWPM-eQZIvPoAa
zgS5$&SNV~mj5R>(qsx7V{PH+GH)A0h)wgfIeSi8XZkJ|pRoOKN%tW^8;mvg=z26$j
z%iM{dj~1bLZ@U3ti5))5^w8MhBFFSEOF8oJ|6ihajH!w)!IJcm$C4hJEPW_eb7xOx
zo~u|+6jJd+<G|(U@--jgbnt({Jr?Am=ElpB&j7kbe><L?P;;mG`C-I8o1=ePzh*qN
z&f<iAf7HEpxpYtK;z8KogRDEnHz&1zJUjY(lyvRSHsAi)WZ1v6hHHPncwGDa*ZSZ0
z(QE%s?_K+Q@Z!&px7Wy*AFh#qACWD#J#L%fs#i0wlpx^DGN4eKa<<%HEBTuu0T_*Y
z#{dSN(}2tg!f5PmpV#C#5>+DdyQT+46h?}}P@AX?KFtJX6Uk7?_3lQjoevMwAA@gh
zI&2GgO1lX<3kP*GTv;#x_>V#W4TKZ}V95YwZ47n#drsW@^@}2?D@jNJ$6Si1JH^uX
z>atkWsUx-oNk|?A%>6*(_dW`?`f5{v8?@V#YoKm>nwPsBL#2=lYxm@^o8aE{OeBKe
zPT9Afd+yC*>&9@jiCajE8Q2pNKVy}`iZT1<7NR*_As<84h*2rf=K5*3n++I610La-
zdG6FBp!w9I+x)qJuAKU~g;BO3Uj7)v_5|F&uPMUq^#EhQ-HI))Q!klI{z>iHv5@31
zt$DD4JXziaz7B2nN^RO13i(QHSn{?|@N!hiB3b(m$}a=~4Dm|r15Bf}VaHI3-XxXy
zWPtGwGRIq#|CMwlUc#AKveHQcfiVb7R4o+v@dUv6*X!El&b3nJ-8eleZQVOt!^*K3
z3p5;vY}DD-wosV&M_{D3fnYs=x>+Nlc2g&G><bG20Rhmvtd^1eA2w(nl9-}_TT1aX
zE(Oxusnm$V&`#%G_wkzMq19g-bHB6o%p3&vF;%YArf$cr)=Vl`Bnoi=%{G#3EbOQh
z0hTjH@nZU>;wj+46vLHmgAr3vVW1qy$0>8qi4(CaYh<=I+-Wu1D!I7AJ@E(0^k{Dd
z$n44-;DSCLL6hDv{K*5LbJ=isGCPq1J?)!uoJt5Bg+j8GJni@{-g>}XyfSGab4gI-
z@*;_m4~pl*WFrxY^?Ppek~$K0aQB=<t7cC&7|ymg$(GSnv-9Kq#=HP6U1tjl|I`^z
zzfrmHB;_ks>fBeW<D)_c#dXe45&WOlr`+`vETfBI22U1@?j&oQ_#3nPv^MHlJl8X8
zfjov!TCnpofko0f$E^iZ`p&0pi%sJ~sT`_(po5sJ@ZNPe`PP1h9lQSRQo~5ev><60
zDqd}mVj#9!-+2M-$xi7dN_j&e^#;a3(!#*^+%%}&-9Onsm@^50N{d9NX^i>(#-t^U
z7?fQHNBJ4vb%r>^Qjt}E&Trqbi!XMFocWx+B$_bAi-T%I;YRn(R`58O(4UsayUfXB
zm>3Qdo~v-AJ#$rZG>z~n5xSg_pDC|2moq-&pKfB?qtl>a(kPf&|8qRlXl|kcSd1|%
zv72V}fo12<ltxXLO&M3U*H#D$*(~90BE=e!lV!Zdd7?s1B;y(^Ot^dBcN}-WJW<9+
zEK?!Tv~ETa|7z@cgVAb0lk=CRf4aY9iJg5bP*=ZIyJ4D#OvRu%7c-h5Jtp8_USVkZ
zYQFY!js0}!a)0@&Fm4=m_4`zwFG6lP>&ToXh4f)=cq$QO-R{8D(Hsj%94jvpAOHrh
zJ5P*pP9~3#UlN2pa66pXfEquqrE_Ch=)ur=mW>iEO5@clZ1ze%u*Kbu-`6H2#GJ;7
zJA9y}kuIRrGid0`!O#%JKOWpWcKn~+SMLY&<@oKJs4XRVEu3Br$Ie_?i0d-X5jG*b
zACnzI;K1G4PjVZ1<Gls1${n`)lMa*V{G051sEKWbS1;VmG1l@Tfc_Nc`{2z!cklrl
zKKMo|fBIbp+k#Bumsg`&O#eR9lfzk`OYd8Mv;m&nSXO(uOi2KkS@Bm8`DJZBMCDU%
z*|mNvM*g)%)*zk=I{bxO!`Xdzx$XOB5$69=sRf69VYrZRNe;|XwOhj&{|)9}2t>|u
zy5a$uQKQ&{Gl=b#6Su6jdOpL`_<&c8OX_z5oFE-`_77K;mNpC+TL}5#p%TKHA)n&E
z4H-NXqt+K+)RqWj&gBV?nl41j7E`v@N+&eR^8gjb+wx1N(AKMAofO<t>6@otQuo|A
zz@f#m?HrOtD%Nj5m^{=jm}$9NaQtgo5oo8rP_#WU`U*xoc9zkW#p^vZkg!{k+y2HG
zY}XT2{E=U%{m!?`?xSp2<GbNvGsTzFQYB2h58ERjMo|;Jt~&lQ9BgRq9i+y`V9O>e
zN8@)5?AB|JE;s!GX@Dwgh6bhLo~ipJ;Pr}CkBbmh&qYSNwc0@%*94!!P8W_9mTTjF
z<e+s4@U^wD0o`EAHLNyED|YR_fKuQG879J<Kal0JuoT&!1oJ?<>wEp?JYg{8+Z{d#
z*<+nQE)4^gg`YS?#?3QxIbO9q#j*>I%-Iy#mr=X2;iT!S64(+m*y1YKx|?519J7J@
z99h*J6=xk2-Z|bC``D-lHyD0cz8FzqK38nNUa}=oTu7wPpis-rO2e~@35QXUCrg{0
zBy#~-hh5#~I@zzjhR<>2iZvBmSCn|JU#v;;Vj`{MIG7(?-^sqtQ^iqvSo$Qtt4d6&
z`uef@=5>{gb$9*~=`*>n<EZCNfI1fLdeursS!Y?9jnQ}0L><T1Yue2r&iD5^$?OK3
zgq6I`x=NbW%0}78R)VhWaWlqVpeuC?j}EuH^SE6W_+p>7JBF(LIRJ4s+lO&^^tZD6
z@}WRk<}>YsUWUY{ZZ{w=ZG#KNm{f$+e^-f)>JrB{h<_*1S!ECKwIi~?(Tk1IRXs&6
z?_dYlxdB~m^|ze3D4C)tWA&?kPdw`GJMMN*1_9}{=M?J&A+3GqTBK@X@_mlYbIxEl
zvqz{!4vgjGxv~^-{XNC<-Z^LAV-DyAX6jtcaoNIl<PEha2incPY-B?-!}w;jqq6(T
z+zd$;KlO!&>lZ&ss^=4r`*vKk%d_Z9{6%|y?Vjg*%_#S4iS9IwiaSlUWW%8g4~pK?
z@r!oEhr>XO%?;$yFYjYxzEj9|Z{3&++87_(7+;s~z5)wA-rxOh#`xckxf}4^KkIuy
zQB2^OZa`H`(1Y(mkH0ezVs4Da1iw`BeW8RAMQ*SoL36_)_e_N6VPQ8$z#3SMU?inY
zGscNP;Y$)?R@O;B3D#8(%)?Tr5~&&W;M*}YLximB@@&NIcI++n^fPtL4vSwMtIZbW
z3Zpg*tig$56h|@5j51yMR1--Fj^}ZYc<;_rXh`qeqN3s$5MXiMQhVSTCGay~66Li}
zNAqS&{p*&MO`9#ae&Y{{!miH>(03QBa=UCe_L*)R(|a+wdiu3ga%3M`$-)b6w=JZT
zD|{Kv7`3gIw5{{{XL^H|__wz?PwTz%eD-Jfr3OZ&O0}hXi8ztiLc<tz%nu-<LA{SS
zYY;~vwj&gx@)j4Xo*t``+im}tXcA>)exR!)UcwRHV903SOZio8ghH#{yX=6ys$q>1
zsp|2w558T(v+8|pkyur>ujSQKNE2^N<8$)mIGWd7my@U?eyNk$=(HyobY0NkYTLXi
zXu^y0P`1xY_ObXA+e%^tnqB^9cWHnj&P0sOa9~=!FWof<)U$u+v<aFP3Ra+-G{BjO
z%nT3ShV$xO@)})9#}7CFdttGH)|@?Wh`%J|haWDF?&$cEJNe@6*VH($O}qg@CPB}%
zZ~NY&zkEvWxo+{8?txI~knj6GUl#{D*6<KFB?uZyA?unr`tc(h6pvl&@T10i8u*10
zZ@bStE8HECJ|B^SYse_1`E@j<zP-(!jUPIQT$gSx+RXxL2&aAih}fODv7swW()OF7
z_Xj2VvyPwyN5m1Hf!)J_9km^|_B8rFMyP+Alama&>#4Bmr|2{2^Zg^kol%|z^{2|g
zQc1TLZ(T%E>f9_9jS)3AG`nx4@;tg$FQ)WMjEVLwn4tykQ?H=Z-AaE<o=Ln-f?cP7
z=GvHfKtcp~HuQWV?DN|GuZf$87A!X9^|KV-7XR*qSTZVA_fD!nLQEOurvJM9o7C?j
zn#q(NKVNNfiH<Q(cnVH9D1P?N7EQKE^(_Xb3?-$!-|wc;v^w@r6OXD$UEMXM%5YB0
zNQG@ZX!(+8m?eDpNj^H8GvV;ZX%1z2ZY@haW$R0>Shi;A0?xn`Wb1#YzR!j2i<a`N
z3xe!4s2WmPPrOI+=q$j}x))5DHe|n2wfzq*S@p+LJdUj$?qWrEcS}!o%D#!^;sPt=
zjQjVyD=J|n=&VY{pi(HVDxO+(#F*NH4nY9xdRZTzvX{I>Ed`|aYq44f>m{c@aaq*c
zm#iFXaWV<!jCZB17Z&Dp_JVJt{5W#G5MOUkrIQztGwHwBVHvWS#&RHU8!^wq>c;jb
zgJZKRo4a4n|A1*(c!Z?>*ZyMf<{J{7kdpI!cD=Rd`8$+XOFY9YlejZpASnIBSzOCK
z9<8*I9*9gl{TqPd58v<8v-4Sz7mt`u4se$ixs<lK&e1kBC(VCAur0iQ|IQ+-kqAuL
z%R$LU2bKu2B{3|ZCV)&*^&G~s{?so}2dRiR$5yy1ZwgvQJ*Qn_CNsE{yR+C5fTWhF
z0-h!&>M?-sf;DtKBL$vhN!*!U3@{!qG0s)sV8K}n7~=V~?|SO(j;@FcHFGi|i<)0C
z5YwSAi;Q@lDae{Qu`g~z976S3wQKaqiS3eC{p0V)s~nHqhZ6q&gK#^Ai#hj&bEp!i
zJjd8`cnrTVbwX9A^#N)wu~PZOSL(l<f=qW0wIcL2#;`Xt<cePE8x#xc=zL9{3)P}m
zwW>eSuIY;|>sq*-p2{HZ^d!CRsHb4LHSNhzBbuM)lb%frwtFx=*w{vn!>O)*KxliS
z;0DDQRr6JFw@G*N=A&jAdI|Q;PkjKUEX2=x-oJU&M{?S2xtiJGmQOs{Z??-$J;^d}
z-*O1A17psqL(&&BMLW~!1-T{l7z_ow^q4I5Wc67b|2#mC24CL>cV8j1K(4SsLqKGx
zyqBRdfoq$iSUS^_f}hz7pTaLop6(P5!*c1=fza1qaZe+;b&}a~vr*GRB~F;6bQ^Y=
zSy@{bWD2W7IRFH8j$ML^NvTgVrkEioB@WJ`Xib1mipSt)a4YRWvnAKZuat|7@-z)y
z*bRnN1o;zRpj-nMWUq;619R#@V~x7$8ni5Sn{<*O8~xO}69ewEW2OZm0;Xk}HUpuU
z*YC93<LL1pM9IlBO(;g6&0|(S17X62hnNIB$bKAf@4;E~Y`Q{ZI-|}4CW#>aE4+JA
zlo1EM(b8TDMg9O<0}?N{)?7?>7YwQ6>903H*#-k&Z~nJbqlZ%3O^-@v{;7BW-K`3%
zi$W%6_D6-j58l2Ox^O24eFSSBvI}!0Tpch1QW?Zx>Zpfm^pf4mrdD5=a7vd@tH&~9
zybJmwmDE#gv5CEDBZm|#r6{r9fQCE+wZNt_Kj$%Tk7{BW3Kl+Ws|sSYnA|N#-gg&T
zW3hQ0%tH!fQVq3D_wZ#8uOpeX{TXo9EZ&cYc3V$KH8vWkW5Prvwkx2jD{D=M|K0c1
zLDg6kZMY?m*55v8)cTxL4VPBE%?OGF52g=G#YAb+S+S6w7}+1gLg!x&fhpFmD=CW2
zaZ%?3W`6fo6W`E^ZoOR$lTWZ|XUg5Y5$JF%ekK|g!XE=<{V7-UN~oeX<4e_q*6qWm
zpN4K9S;lR2F3*u8u^_on-Qg5C9hL}U8;aKc3o}7${eype^aBWWJpzDoMkZK8T^AB9
z>M&rIzGPq_7*7#^f$V%Kgm9wqEQ461Vl=L5lK@m!HT>_-8K0UfF%ga-f}{fQ7IbJL
zh&LbFz%>kJM+2FPX;bAIJ=YOei5i+ni}1mN#R9aW4`ozQPi*1wwxgx&Un3e(b=1}^
zMO1wN2m=-Xaqg5eZeIX10R-3sSsAAPmjwH);MX4Wf(Q#B#AiSXzkU@12A60FHW7v$
zC;l_ivGY0i#<j(cONK@;N!jXfxg1ZZaE3znT|9ojr+Oe-i%!u~(I(F-PoqThA#idO
z@+_A$_%RriZ>rM7X!A?cp?9g|QL?Y3J@e406Bd$d49tU)@N5dg=_ciXW-ly=iXBy+
zgA!(#T0l-Y9V9AFmjZ2$fpm9}U`2&mLC#~M=SE%Lqd=mRcPD623eR1^|4xoCDfge4
z7^P@mnnG)!c`(eP+Lu%y6%oe;`dlX~8jGPRKGTXQl;^Do5*A_>p=IsE@lw6CP$yRi
zP_8U!vsJUHh1AamT`bE2SVTXsInhy~DIo$C)C|I;IYzx;o4w+(G_1I|9I^w$k^nc5
z!5aw`pWhRGPAQYXQOIC)UZc8%k@;|amOq%O;(aoW+}cP+rCeQ`X<r*zvS+})BWCr1
z#~xTJEFy=}=OGjx-YP9Dt8Pgk#`3DX7NSGQ9&V;d(=4>QR4~2HQox#+B5@x6_6|ZT
zB@Y{sxa(qg#}IKPX0;MZPgU91#*(B*O@MhAw<-0Mmri#lp<Qr6oO(hU53CtCcb4r-
zWN9gVT!fJdC91h>tgZDv9j|rrjH(Akr9y?Fn<AZ!W$%?N07T#M@CfyC%0W`&OU-d5
zmvE=g4zCAZkB7#jHNACiG@}21U|LXGvQB^8uh7^@m-qJ7j?d!p#0an7?j~pf2)Zfk
z?!_~Yf8Sp-Z<@1aB9DQL<v5qBS9+A2y=6eQpTvh&o&Q~sy#V>feT=kEu4Jk~Pr4s$
zL>|hBbbSpk#<DkKB9yaf)`MQGPv4Boq()?4Jn-Up{boXWA|f|>(3@$oeDWG)WPXZ<
z4?q3-q`pC9VacG6uyX%^VaH3bt0_N4GI0ilYc0Mycds>3KjSzd<F1C?bU<LjTzDP}
z^|`Wv)z)8yr9RHF-^9@cOQ>|_>y|nC;25$Asmn8u8J2X|w0?77nSK(XN@!pE7GlW%
zxZ2Ly9>!Tm#*>hcDU;4Xi!wlj!2;&KGEXsOF!ukDbQW$+zHb{}Gsb|?DU9xJ2}ie1
zK%^ZZQYr`{2>2a6O1f)w>*$7&($XS`gp`N~h>EE2@;lyt;Xa<@zMtzn&+BvA$~WqO
zb-Z_sB5dXzGa^bPWcCc@*K^pXX$9?8KSu-lA@d2oq)2tI%NJHOVtZsy3xL<9fR_#Z
zlq(2qgx_bXI;@>zmcMu3@#_uh#;CcvxY`&jl->^w{VfXuKBDv#NOFdByOY@ly~l4w
zJ3>Q-TlL&h!%%9{&oXfM8~JY_3?Dew_;A1I2Tdt$ejVg<6Q{w_w~xa4^5FCs$5%1k
zJ};kfb^@YAA06gWvh1;G3M#R;3e9+Tc>i$$@!t_=exV>PzM=gZ+(tz>@p^cR7ux9@
zDtk)y`r@aVmUgBhAYFWHB^AJ{-m5nNCrKOgcgIOcr@d+JdHTwiiQH7=PbW)|1)VN}
zVbXZ-u^xC+&9$$R3zR_q0t2`Xp8ClHKeJg=h7bH*`k#5pD^x*}F!JR*z-8@^f}azf
z!cI{Zu{!&VOPVVc@{`y1@%{&vp0G5B>m16jbto;@0|b_Ma#L`9pH%}FRRIPJRlDM!
z<EH_WoevM*UktSJldmu1G(7u5|M8E6p1fjNJ9~4N9iLtF9LS1ik->)Q!IMQ^oAhcv
zKY7p`!EeC=aRH6QXi+4YKL)xO06yhND%no!_}vlwbN2~B`G&j6v!3<UXt#G!a3?^V
z?5%BG6fmM*O~4HRi|M%`3^6&DH=%q*v0i@2(E5W|z(m5U^+PZ?1(g_J`2dBiGf4QX
zHJ@EM<CvVQsX*a{gvT@P#)UduC#w-|-0PrL5)S(~cJ2F0lEY;Z>pZ51>$Hy>l0iF{
zK<h2SsEmPOu3n59FsVe#n;`+GwS0ybQmdgLw(|zS7_wR@u|O8q6el>aNjpMyrSH*5
zI14tEQW+1oYV|Q-fswS@HMJG&M0nX>vcf|t+zOeG7&+r(zhFY$J&9R!Ik!^770sjl
zctYv2)F`BZQht=j=!nHJ&Z}N<7#fdz!e2OwH+62N#ek{0AT$9$2m_wkpwfsG_ChWc
z$qzyhfD;UwrdGP_qvY(sFyo2AvlvFcco@G$znsYcxN?A}h&n!n^9ExA9ZvVIc$62g
z-z{y}oiU!451>QVj!y{>B7wX6$ZnqMi_<*`m%P!6UjQstUEbo_t?QX9fC!7yh)Y`*
z^)~7!tT4=3A_W2PS57-zhN_1l(_J(4ct8~2o;?nPXbQt3y<iI7G)k;6E#XjRgC^Th
zJPQ$gy9q)cz?&{RVjUAEQW=)7eZ_ixV}ywnUk6Dj!-SJSqNK1j_HbF{aCuB?K5NuN
zc~k`PjYgaP8ZV?}<c6NNVRF1-q^hBZ#aNk(ktMO--c7UWGlCC5<s@y8NT)v<087Y<
z@+XLS;WYTLdj7y@Q#y_Cyf^;!a8JXUdOsGU4fgPP06j*#rJ+d>lgR28lN=i}wUX;d
zrp)&akH)qZ0=f-Z5k|tHdF_z0OSf=8wwM&<Qou1G5d(kIHQ?M9Tiq6`e=?rK8dZgi
znzk5kXXS3fQWYKOPke~EA}W<fOfIEO-d1iHgzLi`%klBXgTP$R_Z;_#)b~gU4_S?@
z9BH^LsGHI_Zfv{^!C!yjqW^{bvhlAx2qS4P_VUwGj^2hb&;UgpO52u~C{LpOD-EN`
zgBT}6gjxHHSd%`DUVrx|;+Gmz&hM%3wy1>Xs2vC$H4#N+IK0V-s+9&2vnRp2(~$ch
z;hJo=D!RMwc+O)w-<0lwzW4{RT>Q7`-R$&vV^VpuQn&Il0^`$1I6_BkLAJjKUUG(A
zehKdk=2CEEPzq&8?q`*{#IqgcrE%WA<v7OJ*d(eY4^m0ey@_IU7f$O6zlK#d0~cj;
z4!w;Hz}_v2-bi5*ATsTpPGjh1L)Lkr&^hV*MlkyfHJnLwF0<S3WS>E-+lP!t$ErYS
zY~2P6-%;kzaU;!@Y*q0J6@h4`gg1$$86<}B+|w!f4pu2E+FY5WmsJcbmD0&PY^lep
z=^JTsUn4j}SOx57Z{f}C#6f!M>C=N2@0R8Sj<Wp$$v4s=!gYjF#yP9>J6nG`hKty1
zs#0sKI1u-HK6;sVs!SMR3nK8uW*>gKNpo`vE=YVkcsj<>G*_K+ehf~aE$VuIJ9M2M
z|8`@Fg9*RJ6SjU?MVJS&Ce%XSi3sgE_IzoNT5+FYJ!^G@isL?s<apn$qwL%Ha*Yr0
zu3==<PM|<TS^da>Yc^(aw2CtTn!48q@i$f4f3jqqz7%s`2B125qQZUOjQgh#_gOOc
zxn@%0BsbrF;pMTZ8$B8%3j}NFAZ>`S=ja!d#gx@()=4yciAW>Li<%|8t1K0HZo=rs
zK<yT)al(&{wRX>EqDDaSnE<X=>x`NZtaaH5RfL=eQinR<70a)e!k1WEqUr?lEsId+
z?a9Z9T2yCf_VY^QP)Q;9WWorEwRfM^7q=+z8}HdDpD*h#TNyrw7fSFL?<bfvl$>r{
z+4cf@m$((J^I5ami0WpV@HD&F<`3gvrJXw~?20LiV$nGIau?AsXZG@@J3<sZAi#32
zTTZ!0hu~-xq+(xCEh6390~y{B;XB57swwOr`#Pq$cX*vI;FBN&T;)xSv0q0*I=utU
zw(#gt<$s9EE)xrVYsyrRXu4BX6R)jNl1SvA+1;;I7d7&IGs3N-)s-EXlgODHWQQp#
z(X#V0HEGcR(Xi6<iYDspO?8L74q;GUwW+~cIK6@9&<C&{?!363yj(j&U)RhF?Uqg0
zO=Ig2rS43LoMo>?=s|ym*3teIH-$?Gl4{LI#Ld&PZL~KS^&(Nj5p;?Y3$r*r<vPjB
zClV}&{EM3wgJ<iKM(f<LO*ZX}RoUcC*|0B+lIY0Bo#&D~sglK1o5C5J%+6RkL#bol
z*UFPL0#S`;9-%)&Wd6)<iU@v^-636pXkl{F)K(it1nI;QX`TUTx$;lfHDu&lKB+B!
zQr~g5?Ej<z+rlt!X&$EE5Zuz%+tRVz>XhEn_21Hu+A^T2;W?BvY}qm%-ZD`P({qJN
zq?SoFHprAy-i;`e_x;p(KQd!s>yGPv-rUCPR6tq3NX(xtjX!d?$W8NZfZHqbCmb{m
zf(qtTK&^%HJ982CpX6^d<0EZV5H#7g+HVapJGY%Jg&%Eu4)4U4ZP_WexcG+NzZ{3S
z*@AoyMZ7+VvQW?ep<)XZQwCp1gpVsFZYllOi3y#9#HuRacXc(yso<Ws5ptCS4&@Ta
zZOnunFTK48MVX`$`{cN}lrJ<EFfl)7iF|XD2T^b$!}T_u>m{CV<1IU=mEE3tcl4ET
zRh4uYk*;U=bzHOD%Z&Q`_q+o!WX4}i+34As>)P2=LfL0rIu5Sw=<FPwTN&&m^n8gJ
z_~VZ6A`E$U`TOqraH%hats235tR2<OT*Er*(nyQ|tN?jA2$UPu_dzafb*|N_3s%C6
zuX$-4^YU|BhUZtap6VB2yFr>jQcof~#IIlD&GcC0y2dwfuNT_Dh;_W_5(oI<e8U*`
zk=f!w>xbS8DpahZ#8Z<zYGgY7pjqTXe#!d5`QIFht$wD#F9ivGlG&Q5dQFLiq{?Z{
zLA|N=@~_JmZ4a68JmUR)CjA0l{US}Dh5fV|q6WlFRvnl7CI4!vF%GC&Z44F+D0pd~
zkhRs-iZmFp&or-T&I7cXyadp?<~l<rl|z<!5G!%Bw7+hxI6Ygn7)0~ny_F&7A4BPT
z4;@RjnMniAepJZO!xMkKsOGOgp`-T=dR|E2!-(-m6CU3D+aKf8p2XAp9b5r^BL)TY
zpF!GeXY}7`^xpXUrg_oSbbaJO%s%43(d0C?)Vv8UYr_m3pOO#la+heZ915HpY>+!W
zYQAAOTdxmE%ORc~%?KN1@f$wHFM#fz2>f#XZ~=BmGSa9TOKKlWJTQHAfPB_Q_>%@f
zN*NmmM72yD5&$jV6vGDdB8Jim;sYke2os7ss4>6T@HV*O+X;UnqH%Ac_RQo}(vw*=
z-#K}zdE|P%i)lGF?48Sr?t{~BRi;Bn`hG^0m%g{}Eg;uxsdHSz27fY)Jlv7w{{FeE
zi9rhV<1e{{PX#o&arXD%x5bawucrSrQGT!!nkCI${C!Ks_GGu{R+U?(9>q_bK07R(
zP9$;~&Xh^Y#fr6K>o@47d_Gc9B=^=oMI``dbK#74GTh(YV7`>l0UnxtH~lt}prYmY
z!}3>zAk$Y1AC6o%CV1T}z4{NE4gcNS&-~!`9N+y4k#Z4|vXE0amT!Kd_|*SlOs4V=
zb9jS!{EoSxK>(&~%9LbbXwZ+HwjdlsUb(Wi0>AK}?pO)kd7*LVzl-cUx<AbQt`~3o
zN`DZ@T(!Vn%f8{b|Ljh;{e6FNwf9o(95?ZcP7--3<r|LlF%J}$9u+Q{V(!wnc;;kX
zTQOV;SUB}0zWdQb2x`s~T6)L3_ilE^2Or59n$NT)bFYbwy5dcKWWrA)f>l)om*=D3
zt<ir>KkmdS6#AX7yrh2r2WTBa_dZ{pH}&7bYuBRmr#!~WHd&WYUY_dr#@^tfq4&jK
z`L8Bap>s_6HX6Qe(Rd%EG`-fI9zXna<$7gK+e3!8w52A1e_eNils0Y8dxCD#+lh4W
zC%)q!ykB`sD|oou_KiL0)|-g2ka2h5MVrvYCJSJ4wPGs$o+Y3C%$=%fh1HMLDR~c8
z1E1T!7KB|qbo0L2r3pFMn7pX)aN8=wZcj#hyA#&jRITK4@4K$hX_;;HW%$otNa6E}
z15?D?{I!tEd!=TgXp9O($4Q$hE}Nzvo9t*bY!vNOe|&D$Y9}VD_!-f&A!!|dv*z7F
z%OC2*@!ivoe=pyD`SrKwl9p9i*}%#zfRI&bklFa@4Bl?8b2*K{595-CiB-|F_1iNi
z{z>f$n_7b;kq6Ugy&N}EgA?1`NK2JxE190QqERs|q|PBs7c|bcQ=s#N>REgqbGOyQ
zkc9lY?#b1!|ERenHEzCIWo5H|bO%*Ze?R5Pvuc{?NG;Psset*0>PuQ_A~_U7#jZw>
zF6#H$omM|r;)PLCGb>iQZH!HIMS{>Ix6s6r5egYI7seRbvaxh=+m2vLIl-1F8i9Y|
zN1+ihDE5qnQ8cIwNF&R{<$YJaYPQTI_j(9IL9`@?w#=qGR-tCG&aU(MKg1&E9eu~~
z9Q8QGy5(lCm5zVfa~mt|eqWZm<CI>1>|Wd~{zRorx?JyzpyJTroO^tIFrGv81yZG9
zYt)HRTT5kwt$hN{;VnF~5sC)$7)2|OMmDA+Z=RD}OO|PYR5w-8cfMc04IS$W`g5T^
za>7R~5Sxl}?0bNrGToDTZ0{YGLL)?m$Vxluq{-S9<kBxZfSk#H{1@QoTGkgu&x4+~
zUE`vLi2g{5bI0|*j3s&w*0`g>DA~mUZy?<9q&_*M@CL0njRxE?!VbO*r<7uRphaaQ
z{EHSW(Duy0$2S1Zs|l0W*P*Bcf<m9#C!OVUUsM5|xg}n%r}~LR;B{b+_C}nM8c#II
z2$|YSLmim_G8AkiTgCmK$AoZ{pK$P1nzQ(_nJ0|?_Nj9uM4|~pjBqW85p-cZ#PlO9
zEl}aij_m+@vsoS$gSZd%n%i6<y#078KIs9_GdcxA6flz6N0^11KeU2Xgn+)5W@%zm
z#R~Dly0ZT{R^dvPIMT-;j+<mO^(fk|G)9R^qIFKgl#!>sXUp%GxjHCp9FUd~QwpwU
zo{7Dhv{0XcD6~yP!vsAJ(_}xdMb5BA0W=}m7OLXO2LY(MTV3=UVx&}^6^WK*1o<of
z`$vDsa&LH5UIDhBY<O`_JRN^U()oEV#`&B+Mv_HN7FE?v`OHVU8_LjL)BHG%6xMDj
z%nE+!g{$?UL$yu!CHr*YL|FJQd+D`fY~@MY6)b!lB>?zip3o5;g9mj_IGL{q$aYOu
z59+jNP35gx_ic3Gl_<w*;B9_K5g?C2D5#i$lr%`COuw>CB~yuC1_}(WH&b1sLMy(P
z$$A)>BFS8@iKGa?{w!c{YxAdIKNQh}nPEfR5jTw;t5$-kyr0pdzlF$sjO%p6yt`Mj
zcsggSsOtazK?N`r#y?03g|W*ED=bi3-aO*~=kh|=HWhF#Nb$;e<wcjrtK53^Z$J8f
zu^m)@w)$ASEs#ZshVsp^C8ImgmnzOj_Ef;O5AqeHh96vJX!Cl#g_EleqVHlT(nNlN
z8xGFf+I@_K3;W3^^y*%|z4hNe*=r#(RN=C9AOttpf@pd3mB!g-L-pcz4@&KdtKg;y
zcypu<BjT?J3P3#w37?cc6835YH&$>2*g2ATBzQLc)6P2%CeLGIZcM|GCXi2y0l4ZK
zXkK1agi^?&BOc53BMejPZ7QW9;z%btEUJ&vW+Lh$8~{iR(4@6_O~sytGsNOS=~w$%
z(7z*6S%d+K2FItCOGR+gV-OSS$U|yL7sRrJktueBxZCkjEyMfeY(gUhEr5tsawyAz
z7ZoERbnpY#ASQ%(XNu$fX)Q`UIONEQ#svTrTnDijP{zDULPKLP`U?JZiG<W#CZ{7x
zVCA>8M8->ium1p)=@I!wQ*D{V-6u87@^7y&mwnJ|#mMdC$0;CeQ695J1BDJAK5<OJ
zAg>2tq$|>ysZIT1AluJsP^C*cz*9X>uiuDFr4oVf@VDS6B?1`ouGtE;4}TtGRc0vI
z77vwvFEIJC%kiF_@V%ILYi-{{qo?XkTGxZ_7Be4HWW(%T^>qL<1T#e1poQ>tD)!cg
z!+;Dgbl;zOZvgYs95Zh-2;xAB(YtA0Os8(gZ>p%yFmg&IlH?9hUk5=vQnOFI7M1x@
zrt`;YujwA;=2==pernbeEwOzDk0}=_jec;q+Sm&I&~GnD`Cg(+WTo3&tfTWzhl?%o
zi(Y0cL^T#~5WO3-y9uIr+W2SyIw%}LD};Yi+zj^;2(uHqeYbZ?fdoQ*VIE_j?tW1O
z4!Q%r(V7%ik095Oy$;w%0&c&{eqGf8@=P~@+L*hG^V(v8vxMopz`?KlLLHOr7Ni^U
zoH(cm>z2G*XFM;DZW)0}!Y%ICtOVp2c<`$kB|%JxF$ou_rBKU+vR#^F?rYLLA~TAk
z3&cxrb?9J4e~Xufb#Ho9Z%MokYz@63zl23<ZCfM7k1LG-nIdkP+8Wvs+WAWXy|AH5
zk!R4mpV32wkfATn=aOuIw2e9lW<Y4D%DqsoHmaYiuOD_EEtwmM=ziP2cTIZb^4>d%
zI(Q-Ye&t6J9lh_b=NGHG^7b__W=H~?82%2Yi{q#LD^VROyau_x5Vfw=knYAONC#iB
zzetno=QEX|GqQtFyHr7_j0DU&SByYpZDiv0*O|S@o%Q%g(~4EmAm?$%vvU)qsI(^d
zBl3Zc1O~j#_<?!H?!ja!b3iH}Kgb&2Y)$VMn|w#x1B#Nx{CSUvq46_cMeZv7DVcUB
z`x<VwMk0lnCJBe$4gzA*<;5+;o6LClqRAVTwDbAwf2;o;i?}HgF)vxnHD9jb0JfgP
zP&x+=&ImgQjwRc_#D@F7Wlnd)@F#;hxaQ;Gz->4BcHMba&Fq2ruU?m)E7YIU87pIO
zp5}Yi!O84Est@Em3xA6Ax{se~O4vMq5)K3HlU|1QUUQNhu>~6}|B9W+hZ()*S>1c7
zS=+y=SW0O}gWeIVy6aW#IGgK;x{*H6_<2*eQ4{h`vY(PhI6Co7HIPQQ{VIN5eUHH!
z(EsWq^G#_>!6S-wC-lShYL`aIpoz|Z`Nig~)TczMRmAFHe}CQjCn3^fO(!*s#Hlit
zmvh}~Hskt2V9)L|sb%1!1ns!_5Ru?}!BlpM7Vn1uPyHkRG2OlQyTdvC)I#{jUeT~v
zoWgki>+$Z-EUxn_rv;CnJy2WpBxByik@G}ug6d+p&o<tpy)qcyUjhWI=qL#8_7|lg
zY;>clo$Y9<SBeD#8Ow7ePR)RX&QL(YeRX!b8>dU-4zjvRa=G_#K$r;*DsH9s8!H_;
z)eN})|50@ei_6vtUl#tbg!GqH{_^*u5C8<Z24t_c{1WDHhsrepMCW}q$WLIP7<27<
zTkb#0zckK<*2GzY*B~3*{~ae5{!N|Ehfh4afDrF_4-|viDuTLNk$+lYZ)R1#N^AF$
zUR0KbRFFYz03h`|sD}ki77CUdmX^FS;gki(kMQrG(FenD5fw1#5lF5@RPah$Jqv3x
zzZpCiCe0eo`ZK^26_~6f;p_xNO&jO<=?q5)GZQa^$A5-0w;_d+LKv{YwNSU4r9cCK
z0KX=vPf4N9#Xif`uQ=nbgK~JIP?WP9Ycqwl(_O%$Mu@Gqf;9uET~}$-SCJW|Do`Zr
zCkz!K%HBItx^+K{q$eqI1mrvd0#5=f`#p`MAtrqO!3OsRc?l72gen(6vK8Sr@eu?S
z-QcST-!pnz8U4q_+de7Ej1=|xjdyp8=Jy{Kd`TfK<_cbJs$xseh^MiJs5t$>*oO)M
zkB@}K`Z?)Z9NmYM`jqbtjF>YB*@?XgmuhhNMFNdCi{*}hu6>H-3XP*K20EmM#sxs%
zH$rCTqg=wn^oaI8-Z0no$j=5*U-w=H)L#k)U?~5ZiIbBgsc|yz!V>cV{vZ^>2WRcQ
zPDuoCf!(2(R!BQ#i9aJ0-<PNdl7z=bpr}CjBsPvQ3N?yL?8nm%qiz3&1rN(oA!3pn
z6sW%uQbc|;A1^T;0Gw@G;F7;-j?t->fYjalv^+qzzo;b9&#5=61f72}(#g;<`Owje
z@X>41F&`W2w5RD)x^e;Odo<|<foXSR(o_3VZe9_R`xsb6;P&kd>W*eAG8s5`W9?%O
z{p9qApEKg?(;tgu`Wj|FRf+O(&kU@}3>wXBiO3A0%nB9B3jfUUpJ7&XOjb-))-%Vf
zxX)RMl-bFFObOPH`LijQu`o{jWts~i`)@^jsUv%?AqCNzy*N-Vqg}R;jvYLceWkPp
zNCS16VD)qiC=^J&9bN!rk8Xl>wC7N|u~+mV``mMeN^`mlbAM{(J($UPEt2h^mz|w)
zD|{U!ir1X0;yQ3thhaD=XQ5}e)rR;%H}5}-na%$z%YB{A_^3#h8q4|3n$z(JaAa6G
z2q^fcQ<(k^HmF%xnVf$d>bcuqu-wl6+ZrTbp8sw%bU5|e%5C^k(KUxXtGO7_x!c#a
z4QVKIp4Z6~!i=~*P_iL+xnyr^v}MC*9YOOvMOBVPVn&kGHdxd?(Fb2F+9AYuUQ8ET
zWK&ecc%En0oX!hEazDAszaMFspoNso={3XDex`uL(V*8_$eSRA8|L&JM^K#^SUSAS
z?7D;=Z!%_<?=H?<_CCKOo*VT8DuBA(iYZeQ0tk{o?=>sNge&}Vt_ks!?=_a)VlNZL
zAcJDnmLe;h!(H`kTnv|C)GQg2*GpqFVM3s5SBfVgwp0&w+jF_x6ICp)RjPZt_$j(H
z2wkQ2J$qKCDsDeAz8Y4R!&`Zq&$6S0AYHwMtMWN1*=<hu>!*I&jQ&t0994WL^1gG!
zkwu`ch<B{c3yKUrY^~T;P5hCtikn)T*6pA>AR*>km|^+Ra|4lef1py}BD=lder-0c
zc2Mh8f|l-p=p~?MztWamEl&UXxwjAn@OAV6=LbY_K@?Mw5k=P+#V@0h`RCR(Hm@x)
zB!^5=1e&y+^t#={;n)DMMlU)3UAkX~k`DZQ`5jDj3&BM8`e~;3sR=DWFFV2O5+QJ{
zEwJG*Qka`TmVQ)*(VswI0sm$9N*o0J+k>g+3JY))m};4b7>jGIK&g&EHv8H<stwLt
zk>C4~oW*QrE70%NB5Xmo7Q({+Y5^`9o*$&p*~KBpWhK7#OCI;b&|(1IxbW+qQXb=O
z7uEi|yb`F?mIs}ZUuR*zpGa_esyzw1MUf=#8s}#-l-mhv8F#LS;WJ`Y#dDbPb0@7Q
zv82ZHOaHmz<_yngmT^*1s+1PCEpKPrEWXrxwAKfz!o9w<(AzqAZYq6Ou#7Tq;3j(t
z;0*=(6g<AGe`d(*vxZ#iYiI<?1TPz_K5NuLy9nU&Kl?uN^6r{TgW%q%b)~BXSKn0W
zeB><_C<u1e2@{e!>K+d3?hNCfS)rRV?lE1y(_KLVmI4QBuD%YHt{{5CnA_xv`cJVM
z+oMjh@ohuAkIx<`a94%McfC|j;r$4V%Bj;lsgpTVF{gy|vP5a|xVN0H>&Uq454*9k
zqRL@2Qh4_n=)j||M4hQtnI*oRp-b@^SPjx8L=EWgwzc|~q%MI5&ZnwKao#`KGIeRZ
z6e=4a>!3RS<MY>PAhYe!=6_cylDi)FoQyr7y(<V%dsA)oN6tKt-0j?dciiH~7X`(5
zMfC|q9UO?SM*g>MpB|^9v%oNqngwlqXP2uF9^FMF*!#-X*b}7fBdbjs(++AtlQxy6
zq@U;U%NglFxY+9+CK(Xr&0^`%d5hgA&v{^EPR3~%pY*7#E6A<I;MgKBc>*eNG_n#4
z(-I6(a{_I|K%(cy9x68J;Kt^3JqqncoxI2UR!G<&<=6wm9S})}45}BLi1#vsZjS_R
z-4lQSh5V@QL?|Su>t^=r!UiKFy#Ud*qp5?MtfiV7Iy#t$dy{tFe~mzVs7ooDq~X@-
zs_IjasI%VN5BmREnB17x!m&-6o!&9>e%nc!`ucZ@XrWJm0^$(5*W{;Y6rtSoK=6`?
zt&2W7T5$$BQo-T<{y=xjS$7dxWs8}->o>X5tTC55M6EiDw$}?6hf!xv6zV|!eVCpt
zlErpRZ>kyoC$7!KF-Pv7{HXRk*d$ZjP|b5en`)Crv}t~E#zf=Jcn8)@PD03bM?)Gq
zY$*K#MK(j-f!z%oKK5Rii!duakg-?4eI~o$CG5c^u0BCh<i-K*okkDNZc3ux`Taw9
z*2M*b7kxw**O<)`O#s396zHGxW=c0rh>z@A5i#~Ixg|qRNl)1oE?=a4nZAsuk=L>?
z$$#sJH5D9^TRXjZyH09Zm3nx^u|irmz1w$HXZi8{<q%iXhxgwL%kg8%{P>ubxxNq7
zFYvN|$NjFY)c*$?pvEf4<%~^2E#rqWgO>k3ahtV`A2>GwSgz<!gX*tZGZ$9oERaVL
zjo)=RjPl=_Cba9+rHBXKH835KAr16iw{Tpy(*@WEO4~NyU$Y@9-NE;$#z|c{rlC!s
z=lizBx|V;{(`RaIM_IcldhVTt+1g`4Z#%nd)YNmI(EI4C>ofp4rYwGU%gvBLh{Lsa
zf}3`@reJ{64^vAsvkf(8A4y5TFVod0Nl$B`ch#80^!2TC0GDguCAQp$tX|4m1&LEU
z%7;lM8S(f6*yu%6Zi;*VxZ4@#;z6>SXs|KY=o!m3QhaxZFJt?ki$RE>o5l;9um50f
zkDytTu&l2igsE4(*LO->pGins|5D!()rcjyZs_#f_4ue5$i+xSzqZJ;wy&NkuJStM
zN5hH48u~-@R+wb^%N*sONCB6*Nj=ZLGGV?STcxG291TNWZ*$dhgvN09u(|WV6JDM2
zEvq_MfI3Cf3z@n@SSbx}`Az3mf2a((DG1<{azQY%fr)!_3>H9U5Kb8mpT7>rh3wd5
ztva|5zdr<imNawxyMP<`dXTGHbiD>Rbxv2vBD*~ZT1~lp$`;MI`p5;Xp!lm9`QMq7
zf&L-;$u?hSq#4UM=AQ%9CxHte-N&Wh4`+0bV|N+Y#eAmPrT&c{^RN1HVNEjbojih8
zMKg*4{8wIaQdb=Go$e7Xj$&VAYGwB%?eB4?eRafpjkX}VGa!$WJbPXlUHRax^$ZOc
z1B*|14GQEH6TjCb6TbgwiYfMVySwu^Zo?C6?mK-t_~i5v3WT`_QK9`Ie`D^@lMlLZ
zlDvq%(m$k*sO-5PQ2%EnP5broL)=8SMjrFqOyUV|uTX~T1I}`{2#W7w%!kifblFkC
zsA&+EURH3L_pIg6_2R)x7=_<G#A%Nk)%36bxX;EjF1vq^oDD#Zs`x`FdVP6Tp}99&
z;cL5o8s~-s_IFyZ{>G0eZ>)YES8{pn#d7OGrYqE8f!E;4@BFt=(i$Kab>f(`$Nw!u
z-2L&PeZ!LEugD*}C)c$n*Zw|2Kd}P{-O>fLReb;4=&FmK^OXLViu*U@@<fONM$h)o
zNm|nl^<}&bHY7-Ka0{~i4Yt}Vwsv`OWg&f@B)w|<8~g$wj1|I2J5dsJ`RM3#IeAPg
zzMo;al<KvUQ7fzxG6T1XX4mw^q_gP4;j`mE+gC&~wAf9<e+L)*4m;cw9^9@O849l)
z7?;x9GVvI#+>aIZj3Z3ZyndW2{L+BlIL;s`Y2-4=jemzw8u`{7!xz;jtS9L;Q90q}
z6#LyEexkOrW<JyScu%`o`17<dB|UQajL`Ni`SJB<g!6O)%O?2#oGo6d!+;?5@axwE
zb`6IY1w9`xxNhA0udsLRk{gE!9e#2k9e~=P;ctHRgSY?XWSWxwG~Lp>`;%<Ug0XIH
zj>jWZ53VgRx}&tg%?a0T^v4v9vJPudv3A4)35g?o5Dh$I692%IwQ7)T99@(7s0JkJ
z%DNdWxs{DWHVN}!SEQps!5Z<mH@E9!XIuIQm`9C-jSb^8pJutba1##8IY~JFI5`SO
z@Wt=+&8({@TAc{-ZGj6L6+;dp+1^TiWWAhX^u1pTB3VADDwgq{F~DqLr<@d+uyU5W
zqi;R>jqM?a^)0JO*T#j>w?7o#Pbe-??}R%E-WS=F;C){Ih`IKV>v2I|vqb$cUrXv0
zams8?i^Bic#kJso<4>cRN^f7|`XeIkTq?0z=U_Oihvu~Wuj~AbUumUD>znn@X}tR)
zD3S6<iVk{sG;^ue>?DBMhC~cSSmA(ea*QrV!nvRWXEKO3Z(Y&K$(u;q`(*YjkOfP?
z0}(c;VFKfr$MF#B1GSfAIzzR7y|sxL$39pf<1sm23p4tLQa0iZUeIZV7-RNxoY;E_
zlIMZFeAy;z42U75Xp8a$$j1J@+z+p6Fmh4Vj${$X;lh}#_B`@a_H4qyyh6lOV^f$H
z5Xyi>6@|U95O*@9M&i&J3*K>kLXraTo0BvL#^QBD;%xuxSX3x~OLvinp1yUxc_KxR
zJHfA!)rv@(Vi6SiF>hfiU)QX>Tl;;A&(7_e`e)_i^qZ=k4X#|S34|mloMsvWH5|=r
z7?UZ}5m{N|9Q8AQIDTLWkp9PD4zL4m$IUIz{_tG|L_ekN;hk7$=pcMp5;f2`SO2v3
z9m18h9!9Ofx)Bj#c&j@+Hj5m|+M$ySXXNiWs}BBEIvCEvUvQ^TQnH6tp4TN_bBbvO
zV7y81UA(iEre6BcCFatYCR{Jm0j6ES$GYCIZ5U6o8Yz@vw%N*gESaeUbb9e9IfsoW
z3|b}d@lgSPX-@+F<&CIwj*lHbtrmBiUbPRJigT$r1D9Rm>*Npyx=sucA0fRVJoUK9
zIP<niJfp_?dN`_0p1Dw0q(~LU$mQ0T(HBdYjx1Un&N44rWketKQQhdu?Gd<8^=)SE
zUGf>Z4aA-@aeZ3(wqjJG+tDu7!hs}wDPLk)`O*_aCvWceuGFJb4IPDIUVa|fwBh5w
zm$RY~<npRpGM8$`8T}8wr4IoAoS9P;+Kj1h<8n#(9_KI;o9o&U61iPicya!<w-*=1
zVL1Y?{o#lS09+my%D|@qYFE8VXR6^q%_d6NEI2^J9PL%$N4|g_;h=*=HG~yjif0O3
zck~j-H9`rp!g2`%ir`f<eSt|wcs}nwZP;Fapd0G(DY+<shNKAvCDAJCXd`)1gRlUs
z<db8^Uy5{^e9Asyx6?KmtE`58e}3&~Ilsx=zN9O)Tmp!a38R$#t_zHi5pWiF4s>zT
zQxc6w36O_4K3nOlexyr;3=}^<S<=68L6`K?07@y33#G0kLb>-h(NuvWI*8hY(6lWL
zG&zjMqK1$<za^;h-ca<=N4<b?Ti7tB*E@*}d5Uplxs`21T}!XVW@RJdZjGlQ;vlrd
z?MunP_r~{T!D;Z{+tM-CCeB<8*`pRavf1w^cp-C+Q)xT$Ro14S4h*^P=XYd_+>;)@
zV948G+*Ka6zUf;a$F;h}ef|CWo6mX}3Xaou)s8D}KL5y2_<Md=<M;cwzRRiXH|Z0h
z=suwCxo;RmAWXB$5sy-nhfw^B*5(nteG{I>MZFFP_H);bEFUlawTEH<{OfiUFJqa=
z9T8>Vew?JRl$s<f*c9iHLOtym44cMKDgyFg1b~;$Srx(v)vK|WR&gr~LrENohJBES
z2zX#9D{U5v5$iz9h5gkR?DP2^3Z>U(JSe%oTjY&_tJI+b*w;1@$oOW6PjVH&?Q(gV
zE*@{J_ahp3m~;1eR~lEBv?j&PBaOe4&94Br`^3L!0;rSl5aui$;K+U>eQ+Px;+iI0
z+#53}__(Zy>8o3Nd#@V;U;RX+?+n%-=7atQ?p$(!S8t=I%J5KLw@}34FreeJtCGkP
zen=T0@L@lr^#K~Q)_+cVzqrURnDol;PfJ8$EC#|X2K3jJrd%^Zwh3DG*^jQ+0STF1
z&mt+M%rGl73a4$I-L~`*#vdF@pFwcH9q8;ha##lyxvYVSc)GS_mM~_zo%DPEIdUWo
z?Uw-k_c0WfXhCprB+}im55YAizziYuT?%|97}`0Rwah~mB(kWsj%Y5Y>e1{~ZewtZ
zBPh6*_z+|e3J(C<F;2)ZktTE#RH8r035VO~5wP+1`=aSdSTR+;{+B_>C`Ldg``w*^
zl(`uf=jo+ky%v@vk)i1KOvOV{lTkT9t@Xnrt-hbm^*x*uOMyf*Gy;tep!VKi^|Jt6
z1ztzl*TZl{*;9g+r^Rd``a$&Qc&<I)yYT7V_g1C&G{EUrKQu9Qy$B>1Y<cN4%}GG_
zkL&Ga)9rA!KvK>XW0q(jR(UQ0sn;tnbU*Nx)_SblG;onW%DzhQ**8=uThKmP136&r
zQX>TBt%L5Rfn4z5mdIt##hND)b#|tmrC~HyyyXg-cvFVU4FKwh8;C}QN@a0`7cyg-
z-eUUmy~{rA()j6f=e6DV^_uYF5eFr|f8;gp0nL;0XC-VOy`yj4&Sy(nR_+j&@hjZ`
z(}{Tuj=2Hoh~h9&Jf)7|#dLI_A-MC!VvvYe+9IRlf^U{Hylo>cL+Y*7cr%7&v+KzU
zGY?(2<%jS9Ju|+74XEDQVB~)VpZPunE7c|Qm3X{}pyxd25WcG-^x?oKDK4*<k>Z@Q
z`%s2N`$kDXC~#<;m-2NxnjOh|20Os9gTxJ;gaZ`3E^2&M(~kkT<18wo;#DLwekl50
z*fP)aCzS`!L3gy@!^OjVdVSTDhr@$<>!-id5&pq1SsYR%f2F{~rA(oJ6rvZoKR$og
z%jLLlq9mm;9q~qb9XPZRlpxRp0-J2V3BUoau0ox*a(^zyvsS=~svtA#%^%Vfk`M>)
z_mWsV`{aKzrwK>Emq%S(WA9o4wZ)AZgL!bB;yTJF_7Xf*_n-%B5oiD1X8x*A_+wCc
z@y!|k??b)yas>a`68<b{Z=%vw0_J@dOZ&C<@C?WIYx$M2r6<UO3>DM_6CMX$K~jzQ
zp*A=W4f@0eji1H;aw7l2e@kXY)5&h~YZ2dOlr~Ck026qawbp@uOQ6dA5NhJDv&Yoc
z{Sa0>0KFr(|9IsEkX)%nSxVJxa({XR_wo{#h^U!HjDm@?=ywE+@+?~5<|b7Iktzoi
z*fPyUgNH7|pn&*z2)Z)>Ha_KQk%aHu$KF^%Nq@v%x&r_1k!b2`LZ+qP<kf^kO}*2S
zg4wNu#n(R-zYPig)X$hq7ZX7Xp+gdOjE|<NHE+?Ri&0;Ol829!ji^^`oTZ|)7>((?
zK1{Gi3_L7%<=K%AAfuTded5o+N+Q8X@IyocX2@w0irMU+kmhpYQ;r>>3Y0-+lEJW0
z{tOtyhGu+Lk`7jjIbh@TCGpm)B#zD*j(<Sn&Hl;`X_(}FXN_-gOY#)N1!_hXvP8FB
zCqiEV_DgAzG=R6t>rlI0$4fIZ_oWOp2h8Q;%;lranjw~OKFtX@;SS#iEYF0!ni70I
z$#v`m#%(HOxd}<8@JDR%tR5qI-O$^~T<#EVa}4+I<IiRZ+;HTz1kANv;?8wqyh8)r
zDMcY=nvNeOC^@l5d@zQgZGIwnYr-cas~k+)0b3CODPOs&0m`#v;UDF81{hh_s;aav
z-Id2(I!KPEUhe#lVtSIr$7eZ!u}tmWVkc2kUOFDK!?T+WZ#OrF3AJz&Vr7~Zq-zUR
zxXqwF0Pz}PJ)-9%;G|;6V9P7dR!%|qq|%ZsNk=yx@b#}?>Vmfn7o*H6dM+AnF4fJi
zCA$LvrPer+-(UU>C4Vq`4o~(lFj9D54lLA_?3{$#9Y1`L5^&SmouA_I>6S3~v7f87
z*K8%T&;!NYSr$FO7%pMzBU$9B9JdutR?3UA@*7pp$$C7FV=_gxb53=}OvL|WGdNZB
z(`(=qgL-to2S3bckSO6c1vL;&Uq6C70jDLszJNlZo8KiJtAjoC=HvSSALayy6J_s2
zF___{wly^iBQYC5jctbV1K%eOFV7-sx!@COGvC!rOa2P3Lya7@Rs0smoYXUUl=-o~
z>#od+c=`mqlJCs*$_6+y2JFTE7Jt*S+EwDFvwH6V^u$H)b1gIj#{3N^)mqCU2vp6C
zf|O6IUY1xG)u4z|MLfg425XpW4Vtt>Jo`;Nq>l)aj;D7imtqqzNI<v7JDRLS0bI&~
zoS2)}&~$>BKJuv{;c)<`Ibix5GPa2e&<sDa;96#+auI~gru7=>{ld&#R39QuXrUHf
z#!8{&j(KDAd8Lo#`k^PxVSOx1vqLX6uS;*xoB+%pPA_)x8dt1CFtmY-bX<sV-m35L
zoYNQwqJBl%-JtXhvfPc)`a7A#+wGgY{c|E`vZ8x)@L2Q8@??er5VH*^*z#$BRUF)n
z_Xc%6Z#_|%x%e|FN+=j4+yt@}>HDwrskP}K^H8NIte#toPBnN(ETz_pR#-x%Px12Z
zec#P;jWsQ^=e}0jV2_h9IOiwsS=`kzoQ$MSoo^{3oZTD3CGFAYg6ooAcUl^f={3B?
zLzrB&Eeo;nR{N1uecKwGKd&7^?GJf$g84NG5!x?a!l$LQ1WUCfUBVRy4ea{69Q<{R
z_?ZJLY<@HT^M>fTL<m1U(6i%re+F57&hHi)p%maR_BcaJ9HOlkY8brbto_(_V$kU9
zlU+-xv1GE>ainj5hTSRCed9OgA0fyjsFk#ZMFqwl8!3eu!lLeTI{~2vgM4Ybk23K9
z8=Mvz-~W=N2RMT7IXAPTnYS>``Qz&&`#@0u)Bz);yXbo(v%tpa*~FWWOPqO#o1a&Y
zpiAwJYXMC2PxSqsuv>4*Pag;hTD^l?;M^1Y+(O6Q!glBbKRxROxqD}ZxcxesIOTDA
zcmK>&{nr#r<*rk0wAZYDO9cPZ`ij8nXm-hp`|BBZwtm8ccLQQg?+5V&w@`RPqP>y3
z+lM?S{5w!Bq9a8H^#^(=*Q{vbT`peY)7i==1H<c*<px1CezdHi<5gu`TKFDjZsI$F
zwBNOf%80|6P<~~8U*RwY7$FS)n6pjIzmhwm(#f)t``{th^U9cmK0t$P=sngbI*(B2
ztf)S?&0Eg|53A^BS<xGgQ9-PPKlo(iRa2faA(1sE<VSR>a*VBE`ehbtY{?lu(<-)R
zDfTsM+-OQ{V^&<}Qe1C9QwwYSo2>ZprTELyrmoNN@3InBmJ%uq<JYWS?q<FGvXr<P
zz=An@jTj?nzAK%GE9R<ByhqqNXD!*$EKxR!y9kItu%T(#64Ae3(6@t6O;dV5rAR11
z&}|>fJv(y7KuN-2i&|P)6)vs!tY}<nw?Vp!3KtyD`VXI2=LW)gbL)*g@TbmD2~D1v
zOf9RCc>a6iNLj?7T~#A4ZBn$l(y3zJqYm#8s)Mh*{_IJPbyb!qSDJP8x(8*${#hF$
z=ZkOc#Fv`d>RRHyUF$?nVPH<edfl+mD_2BcaOmr!F`pkr1(*M-t#?$oAaSHa>laCE
zd(|F|mDZ!@2x4J$VfR2i+PHy$ZvaIAC5-{HH4sH(<y(P8U)~f_QC$Og5*42_&|tZe
zq9JO4GJyozQld)QT$#?YxWNpIflZv74fn8oJ~W4Zcwc^7NbflGI{{M|2dGfetWXgu
zQ%5u5cPp>GDogr?6uh2)$usDk-2Gv^1tiqERrBAAIPv{)`2^3JR4Qb~xXthN>LTOH
z7wsLOgwCe8&aUyAL_qiKc-MYMS6)r`ybb14TrCTz_SPKe$hdd@v{^@-OmD+|!t@x4
ztlMb^!?JPJ=aTmL>YHdM7X<*rVtp@Pzqq^4@p}Iy%%|#U{J@7_16!KaOa`a;!=KkV
z)GYrXi8=gs?LkR*2%b}ADw-`{ip*5{%4>w%N*EldS9-mV!GjyU%ydXMTilCtuCN^U
zuzjiD_=dM=O8jm|v`WG|ks*}plwJHdmS=%nJMtuc4CFu2fefGgGaSn?3Sb-V@WL0=
zy4A(MnGYHhm(#59?HSEYUA3JMjhes`N(XG~**Yf~Ik?v+;!tYrNT}ZZ=k;uMjz=bM
z&nDgiOsAC<r;*g*RU>^ud!3gHErsyblIQHtg3u|q@7&6J5yipnq*;vSL{<}Njq-5B
z6|U0U^@xaJU$x0iq0Y$rBlh2BcpuIlg(+Sp41AtQ5WSwj&M1j_6R~sxT_6qLN=;xv
zFD<zwP<oj5#cEP%pM=mdetscwqeS7xXkI_mQa{=BddFX6R$WC^aN`%#F_qnA@=qdT
zS8Z<Ibz+yzz{3wmUspQxSJP@%KYj&nQZHBA^(PRaoH8qi67m<p%Uu5|HA-ib80IKL
zgxK@Nl=Cw)zwv+$gJSUO#aJ;nMFQj+75%?RnpnVKU9G!)a5m?>{_3iceSqlXim>LQ
zh~{WrT}wNu)SMFu=@atL1*&x~B{a_~^}YY*Gn2b8j%4J<vey0lYYp0(K%OqXX%I>H
zZLL{1rlQ;a(mpIw{oOI>-7_s#Za~bXVB~D^Um`nxEyLAtc=toT=<FZjNTKQKJ*iDW
zNft?0HMv8vi$_m1rVjL89(y3}a6SHP^-{0N_1#~;eLbMrAHcpcmy{)LcPgi#^+|u^
zp`d8vo{2$n%Bvy^u9?C|p9IP+9!PFU0l!$%e%dbj!mqJ~EAGXm9YkClJds6-7JOA)
zKzx)u<T9q(r;$2(<<r&mjf?C1wCNFj{Sl26-L?-x^y8-WH_1rZ3*L(_I4u=6a)8ac
znbRDc9ixzX!NLCxD*XC$)%s@&+G|MK<3SC|hxBy%uVp;?7UIx98WJ~tUjT?bg~txx
zMEdrBNcy6=DN73u<;n7_`UZd-2bWBV49fUOqfqGV$oE9drib2vQ3;qg%69`8Sk8XK
zmnT_A$cFjjCMWlIIyxV`?@__P563m4l+lSy+d<TYW#XCy>-vw|<-DS6EvC1$Cknpx
z;eP1r3IE2Q3PtzM?j2&^$p4)I;PuR$nr<$<*z`32F6ymhZKj{Ux9P}pgG%Gei=H1Y
zv>>;)KhK3gp*UVv1glIs4}&e6xXcKu%!BcEZ9l1W^-;`6DJx8jdQ{2mG#Qbtx1LFX
z3{20FF;Wh``FiDJVho<)j>E>Z6`R#nm~Kvshtq1pfDjv_n`IO~{mx~(jAt`bP-vzA
z&z`$7ZI{o$wKQ1H^N?%sAoG%uDV!+-uZIk08HXi5T3C4Z(4Coug>E36p^>Z?Z%8>9
z5j)<O6m`c0fj}_cHX0x7gBZtY*3qTVr>3eHQ7ve_nZs(E5P)DFCoA;yM0SP^$b@*b
z`8vE_WF$Btph(L;f=LEWXAO(`f6VTl9>j`3ffR3o%kwWcNiCAxKkb;}Z{R_c?6qZ^
z+FamV6NspcRz@o$Z%;h7h(wUL({XiOaW&&HN*A|BU@Bhbck)<xIzZoOajN)Am6(mQ
zdE@$Q8juLntuO|YDs39KxMLs)@{-(yArLo*_#!FJ*p{Eo#Sgs}cTk%$eptKkMu&5^
zUkJnfsqa1VlJA9)*q5=4TZzX;Kfe}QF7!H~1oPWG|Hp(-S2zL{yGt#SkJ5iAk^0*!
zN09BRgEfbww|9sm{+RIb5OwV?tQh|3Yk3JaRMvX`keL)&p5d5Utu52`U}Ns}<4cW;
zzvo|fmo_eM;8nYHuspPT_ak7+LrKINTFN{V4v<6rL7=$w$u%rh85$3#4xx+Tlp$DY
z2J>bG6vOj~Nkx<#{!24d{m5CmSRu2<%t*(PCnac^4?p!d9pKwnSY3iNC9CjWGiS0M
zFPmN@3wz^Mtaj5#QFJYV6&!;@C4GvxCh;2`NiX@c0NjVvbdAUwY~3=4IWTKK2Yr~`
z&bgF1D(7-WxVpi^5VFctz{|nbY$|oiZPyoqwK!lYR}&fZ*b70*%H=zCk4W?H|2^cy
zhGgAB(dryU=E=^8xMp7C&xwj?7H6FoYy}Je%<LCbAQUo?%xdo%j~F4MOp++R>UGuj
zt*FKMzzUX|2b3@pL6p6QCr*=xiUP!V?%eFa+P7zT>$%aRmXIh-JQa`h!mdOoZ)a&^
z?TfxwoeqpSQexY$p1jgR&AahB3_nlylE`qnzTa0d_4Av=BT!@Qy}pq3FsUPImf^NO
zcQHWg$8%+lq5sM;xjou$LS(pPKm{p+tBoWieIh!;z{>K#q%hd={IA@!CY8PMf0sbm
z(%XtMF4k~}?u1hWiqA!55OK2ejEoRj?*d`3HLaUchye^a5hC74{RmFeB+$ykigm$v
zpaANYrH`+YaETtBtBM_&t_h7S0;Hs9z9h~sUtwW=D%`-B%pkr+8*NIx55D8}zsl|x
z<}0%P!R$5aI~e@aUC@E|ypM7<k-&U@d}3wXw%|4Yu~x@`YFPPR8a|LmPoBDYPIP#>
zZ&xRH8bo){6J1CtlP9zZPfR$}{gShP7$$2NbewDTe3rgbfs-=w*YRj4DVQfRmOToq
zB~NSd$|$60uxV{hRkb!?&dK!OZf#G{ufe;WYCjU;^<rzNv|nk=gfY*Xj+bOA?2jr~
zD3CP<Wi7*4@(NLH=+|=+h6qr4twM?Y@3n{nV^nnidpi=At#oMl=g*cyCKB@;pVpVN
zObRMNDHz*?{ko1p926<7%mD^N!v`?!&Fi6b2V<Ag&l;G<Bw!TMp$~LgI~I%ZkaPNs
zuNtf{-W-&MItM%ZT;;HWXsMgtpTrCYB`u$0Z~$5LeMZY50e@7V*e63qB&|ceM*2B<
z*AaA>c`j-DWLX3czcY;rgtitB%zz9-URY3J5cEhb6+2dic6Dr6sKHN}vLul8fHY<{
zN%A(BkG+cRKR+tBB2|5^9|jTEs6(OW1J07FPsim?XA&to*PJgA_xo3#YB`9BF*6<z
z;=pMboyP;&;zx@0KN(XK6Hlk5L$meunhvPAjta5@N<+(=oC91j1^;%^CYJA;Ti<d7
zie&OdsC4nYIN4u#o%DV{cE=HNgaotRVFrg=ITwuUJYaRYdn-k~3}UPqN>76hoo72T
zA5be|`B0_#4Ic`<l!gB6!hmE%O$)&P!VHTnOnnBSr8+2)7f26opZ%2k6x+CCot$Y=
z&{R}-$y>Tcp*Lz)r>bnLd#I@M2}WfB<R4|WvL3QIoy=zN<llbC3q%whXS2ow7e1T0
z>cztL;{?zNqhaDGl27Nmdm~8)d{TWEzAc+rE`vv0H@u8Mk;u?<Ibbh+pfXoKA|w!9
z>llMy+Bsba{Eym;I^Vlbicyj_R$K>xV#}LGP&W339yop<TG|$Wi}*j9?)t0A$B+B?
z5;itqbjQfiAzhBq64C+^qeH+6NTZ{>JCu>qp&%jX=te;51BjpqD5!vlU~%)k?{ohJ
zJ3D7T>^j%${dnp;n$tUOSm|TFOUD~A@YqfDHsgbir+hgiLx%k!FU`|hVL?%eefGYO
z^v*zbC0nYq4qE22kMW=*2}8sHYU0GCD?(oDh9X1kqo^R@{u~(scoV~G1qlW*eMLOE
z?eGR4YhBizeEk(RreX9`KdYsF#CQDFAA!Xb^$y8v{8YjhG(SbSOo2d0EK$!H>)8Ir
z-2N_;`PlBZYgip1u!w#WowSwAMg8?*GT{BpgMps8kLd|_C!NnBMH-tm5^hv<AL=ea
zp5$@)^y|N@Q>$N!v~+|L;)H#psq}tyTR1!lH72Akz3m2~e4_gj)`-J=bhihT5A24-
zcV!r6nhB8Nv%wmBZ`~`84}dJ&_AO!1A4BlIG>!XxW(y=x)><Qm9_9W7Daw<93BhCy
zA#%3eTv)y}M%#0!ZBH8ipGLkAu4<cMA3_rji{jRO<U-$(ne$`ZT3ge_&^R@7v}cKI
zwWLO8zk!Anh~OYYC0{1_h5MdB&~rozX1^!aQ$5V<OY~Ki&54IO*d`w8f$6@j7+#>(
z>f%W&!uaO_o^r3Oa#7fZTKqayKe_j-&b{Y%%)Y2C+6CRevmc%OViNJ2{c?3#VK@V{
z9ZereN@LOeo*o?emW{zPmY1=a?djC>Ta;qUl(%55ev__$n@Tk%cenaI87#Lt))~95
z0R8hj?0nzMBf`eJ0B3LS+NGAco5wxHz1xm+aQK4|E?RT>hde1LrI>d6r#v^Zv8?Em
zyyeqU)e<qBwzBqwI}8uJB{vtd@-?hfpMU>NmBtV0>3tEC*I+t0_owzx2VkWaBfoOG
zaG)XwBk#*_ZWvaluH5Z_vA;J|1==g~siv-M(CKjjcV!JTY@J$&m(tKVE^?v01qav!
zj$767)`)zVE-isiihhQa;6#zwOmn?~d2Z+gEJ+P(HsFarr>QvkaVbMYn5Y1aI;1uX
z>KTA@?KhxRzmG;#qHapVsbeQ*x1Gy==GfmXA1UJ1q)P%))g6Dktz^BWR1=@*I?&->
z81oBRKKc3T0<M-$?_{`3W5C!oT#Cf~K8i=<NKoTw1@rjaNg<3?-!bT1`rXCcUfhw)
zbRc;n^HJ_U-^X1j&DOdR<%v{a+v--a)j5<4YE5FNel(972y??i^T-iu00^FZ#GCj=
zi94`@h;SnVo8k~QkG(mGh$1p%dJEYQFP;W~0JPT97g*{v5jI$`CE)&-$1EFono%+h
zeIeqh6LJAheUc2uu8oH-Z>tdzBrHT40PP^69;KZ+TskxRqj$+9qzc*~tm15&L?gLC
zOR<d#UyD)NM$&H!0V$-t0Qf^VRRb@A>h^cu4ek~av;)t+x*fCQTo$(lyTXauH;>&1
zN!ycDZGbmXnl0*^;-`~lTQ|O=K*;9+D(N^FYATA8<0+dK6%`-)sS&abfHEOdDbb6v
z@^Rw;cad=vtN<_|_AgND^dlZ|gn*^sDYNj$BkMKY089#>2zw07LkkQ5YcD#|rQC+g
zk*~faRUcrRD~*qtpFhE=w|@N+$p4Bn0jkd@7@T>G=I)HFl6l~QsU%}cbP>}g6+x({
z<f=|TJSB+om%7eb)Ik1zG@|Vay0`=wuD;cvuaZ%yJZBPM^?DB>@cn}bjO14>-m^tR
zTzCqmr2MP@Y%{7fxC$<SP)i^nU^E**0r^!$DT&fZ8Q;qj5O4Va*d4egF?^<@Df*zg
ztAk97!>$s!VPR}vQCkhhB&b4-g$ay;dj?gMm{f#itesP$PJ)9nyF$r`q$IJgi43Pp
zExyjkppxondhj%(U*v6ck)T}w*Vg=?&F(@=ToyX*ZDO7KcfwL6W+Gi0>$EWHy6Db5
zfxssK?JKA3KF|A=>A0KC|NW6~ha%pJaesHT&~NV{COau%x_hNupLe=uGMWOtZdlDy
zj`4B{1;jwT;^gb&fz_8}N&=a(ZQ#d$i6VAz6T978!9q9W0lonl1;pAelF+F-79mcn
znlz4x1I%I!te^7B&U*N5dVH^b$Kn>3v_aius`bYgULfHtnIv>y#U%i{8~A?O+dmnu
zMxmYI>YWfBbjBz;SL^q_Hn?O~Q$CYrQTWzK48roGm5ZAM(oJt*(1wZMtrB|-z)Y5T
zrm!W&D1dxZV(nPH9?0$4;`S`gg*;;N!^7)F{aEQbJbl*m&?4F;J2@z`kMj2J5_#B%
zPZ?7jV?C;OSPrY%y8&@T3;_q`t^h2D&OdzrE~SLdLPIcD!JD8hNVIX8lLl~s(%l-|
zz-4X$$|6y2m)__)A-YiSDB>r>>dYc*-uzlxlBEcg9t&>sCUk$AjimggPi0qAzh9jv
zIG+eC6ZxI>#G8bDl(Hn0EmHW;d!t{31KyxaC(7>dsYp^EV&nrk9R}}T9YKml+KU#<
zeq#SoAGIY?xsX^o=*^u)%-*J~Uel}Jr3CgB)WuAG_5O?^HQ-Qy8eMWYr)cY$C@c0;
z@kK)$jaWN#W4neskTE+U%U1b^&(nfzZSKYnnt^BZJNwiJz&_%0|APjT#;ylq-6o%&
z`-?RvH1^<XiZ8}`TEt#FZ+szJUz<gwupv{_VVRR{pPl*i&EDzXJb1zV`Q<`mKj`x-
z=B5GeOYuP=->b?^uV~YdhWN0kI3yAP=PjV{`o!)|oR$AHY<<}3>^q!bJ7y<7p3pS$
zSbVa!X;Q<x_vO;$OY!N^rs-MnndPRLP4U^?!!FsTsn1QX|B260G|$mU%riI7bNfM0
z#1|wb-Y7J`(U4fwZC*5yXcv`Oa+Fy1XkPZ0SP5=kS#DZ-(7c)<@n1pne~%^BYQH>)
zYql?Hcwhq%CIAK+zEliKw4$1@am3A8zXv;CHXG{J6GSLOc_CDdZ>fkIU&kN-?R8yo
zNF25+#TJb8r(|qF8%b`D;{Kld!H)di(L?uN?m5OunnC>Ej5O~pG=FaKFKYL5WT&$0
zxg=Vk=nCb@6z6vKY($DYG6kb4IEk3`w}mPXt9Z8c^~@iQ#lrLM6m9y$LiNDBkYm2o
zQ=b8G;9V#hGVrzKns~{V_mYwOlHblUk4&WK+=!>#sfQ0J4*eHkY1r?K-yX1%e~;dc
zQUdA;jmZa*;alaoEmB_!Zv2qED{&~W-O)NkWe=T<fgiPA7TAM-N?qH!OS}9Hd~@6-
zi%99)MtPI~B(za_QGNeR3E-DLcq~nIX}>C@&E4eQKt+v^8+Q2vFR8%_@>XP30}x4A
z25$;5NeJ^6N99Y*S<Jyr@6!A{>h&7ln2e#mgIkjaeDaAy{b@<YB<mE98~?d%OCsh}
z^+~ZZ9J0h7!|KwNHVE|WAo}lZR9*=vhI>fXc4*cy8`1{pbYo<r{7=G!o_ajuyZ7&4
z>}TsOuGfU?WiaM)STnoyn48wHsB~mo+iMu~6)fN`<fQWNJ=W9XIo^FCDG}rpf%}QH
zNMV3oyx$8O(ye=fqHS0augN{R5mi7=9wuI#n8O(4IPo-%cRqkMl9;sBEEe+EZNZD*
zsDfqn>EB1-4;5}2^#fuD{1W4`qD{oSoq$2BN^<iF^hvJWy_31|LEh_vitmyfOV%W>
zKb3o<CwiHtv@)h@xW#>tD4aMB+tX7neX8;8`y56BC~$|81F(f6D!#o;?LvWoSQ3!+
zgT*<R$&#E@0pjXO4iH(SGA_Ag{86QgP#&5gTlU(1VXz~}Xh3;cS<Kqt%ibHh4SoKP
zJ`M4DienMuASMYig0($HEl8WvXhFQA4c;OAgIDVXO(ZG^+hho0@{b8i1{XDGc6*yM
zP(n=SZ|IU$1%mQbIsn)X``(Y><xC)LkS0e*7o)$GQ>T94mSu#2<+Gc1xj%qzoK7Uu
zG+RlaTxTI52wNQp+WsL^`qf<cwT&L{Z=`&DQ|B0KnR;usb)fw9>k4iMl&?iKC5@>A
zuI|o}m}44@9veA3vPL_!WHaN;>syYY7xou?<X2pJ(M~PE=+X{;#Nw>Xx*NHBg0Woz
z2C(1C#ymPj8Lc7kk6v!vCO8Gq<9=i;KTkR>@qJ;twY6jU`1y@QN7@HxbcA89h=JJ7
z#QTW~W)VQ|#E`w@BsGWHz_u8QrbP<C?PC-fo0JqQ8b@c3^fMLIGkasJLfaFUpH%i*
zok}w__qq2&aN?stFd#SNn_FeNqHM9^wWF@@p)=qQKX3H{s^s!wRUt8fahftjp<yf{
z>z$*eMf|nN=I%*b$+r<&@AgcCxkYLUn?fV2y279RwAjI?-@zW+KbIgUd+v3GI8h}Z
z{6vTbpKW}PG9m`)DdZ|DPu1SJcMiq7$=;sJRuhlrTD^?b?nsbA5~7koQ-@|eoGW)I
zWw=%~<JkvAs$+OqZ}RRaL=rDpR+nX7xEC9O1Z`rnvO$j@#$?e&m%UlbX}TyHN)p?M
z&ItORJ_HZ#P9W21X&>T3BfCCXO37J<wasaJL~1FeX(<Z?`V*mCqgwR%i<P%p8i%pU
z-6JN8d4;8;%CT|!S;JOp3?ZS3?sX}(>yU+gi2b2#!^4Dzkk>6v@qqDP`gy~~mcu%n
zfRF&~w%7#aBwc6DQ9o>A-8UU4&an-b-~NPOwxPce52I~KBTt-EK<44qH{)bN6FLyp
z*{|R^s>=N<5!bs8iGMCQso#;1DY5$>2G5Q1STDh;-LO34k|$~U$;h-6MzsQRQX1ef
zSz0ZRXwdzIT{f5Ni`+zZR+tM_@^?mqv5=yXn{au{iKj31?*vZt=BfD}zuklUDMo3Q
zU}4iFgwj}UgBoJ$I$zIE_%rfQ(|PQxR3n#x(?;>cm+$V5YQbsvZ%wfle?E?E6!=>i
zi2*h0^dk)u)%$Dfpif{c^S@Jz^pSI!Pv3|~vD!Q;ALn?(|L!1iaVGU|1^IXPor%8n
z7n|Rr9@zNNA9Hj4HCcFzTJk+C`bSN3e`du#W7HyPmz2Iaj@rOzycNg_*`1M`m_tTW
zy^kIE6x6xBk@{hd=U(W<{%eYzAdNaxnvd5m|2e8@-1GUVdq7$5XZ9%a<pzOq`&mZc
zP9M6?5#G~pt&=^6cyOl{b-XjJDPmf5es%^(bj6#E0<V9`dVS*Afx{S_G~PIhU?$ky
z+=?qaYn}6{Db1h)0OIQ_wX(k+ncySdHceP%S`2;dnhmL&I~jRVw4?s+=T&ns8mlBg
z6R7HD-otQJY2!OS7Lav8MKd)pRl7J5ngrzXW_G>8y=>}{+7{jcOese5g-^Wj=}^kt
zLU3ngx3V};6`jdMp_l#yIw+^0ILX>Cm&$6;*=K+*q&3CO_di!OM{D&Cs{%EyV>K%i
zSZS8*`Ghfit!+}*qk9~g(<_|t+d`M3mCyDn>o+UXi!{+OMIS0=EGt>FD>GO@reflf
zEw6G~8B+r)di?aYS3Tw4&dl<q(=in=%c#KE_TuBayk_cbIdc3;)zGIwTzHltE;Zm%
z3!I=|{q7YJ3{4}L4Qr)YGOqV?fRYCkv$uw`IR*_2QN`M$&WFLd95-+ai>s$l@l{kl
zv+b_RoKH?}x<-vjjos2`t0vn{|Bq`+2e;asM=}HtevIb`PJh0NVei;8i`rWjd6}+!
zH3aGo?8}k{>9bMd_Pz{wKFDJu30E~6ep9Qh0WD<W!fn}G?_QZH$Se;h&k37~I2tg0
znU=ztXTfhW1Cp<ak7=2<kuS&d_p^F}ztMZkcnl)$_S{z_-?l)T^vlqjFjTfXr%`K%
zGbhWqczlt&`-aPjG+;<|_k&Fv@t?$nag+{owO55R2m+IkO~1Aci7$DMQ1nPOksdui
ziTwQag=N{05c$Vigw#tT{gQeBA4La-sSrOnq4LPfeCo;Pmf!GB`&vW(SA6~qIHk8K
z3^?3TQ9uf+ZZhYdF8iI1D<3y-@tz)cgur|8j+~^u?vD*5S5=HI9;ka>;%i>WU<YUi
z$*_kHfQD0G+wpuhutY}Dc=Xl{G&^C-h;p=;1jN(`xGCTkz6;3U?9R<aRg;tGwM_>*
z=na9-4^L)|i=L(HUkYln?Ex5RIQYy=jTp%WH&O)#u^Avnoc4w##wCtPe_m3OPchw?
z_&;?QtPoOhIuWS`o`%NR7tz)kf6a^0H@e{9Te7-c<HL|0PAv_wOK!7DqRZotiDO>m
zRj6dOOq*%Fsl^q;THYoIviwBMNwF}j%3?IPs<o=A?@VwR*9-lSAL1B((D~CbG72QC
zFC?U%-~2)MZA=O-ncUJ~yv7w1KQHICjh|y|9Ah5DI(OG3sxlPh#lda2-tp}i@w@nH
zkjImeDZJQ`oSPYFcMB$kB6qZ82Ij+ZS!Ge$=3q|8RzgZ!%%k+^(a{ZaE3`~i$h9x8
zEm7#=QL0OoB^0Y9h6Zp-HsVZj{?MYWArnuy8^2eb5^uA%`mc|ow7&V;Ox&0DDGzHj
zh5fntomiQQWxMR^;HkSGv=?*;=sKFhn;9cqGTslV<xBXh-_O?i;8q0%b@RRb#{+$_
zuS0?s3>E(dEn2J;I-#}hp<}Or-9JE>Gzu1D-D*u4ze4*zd3UqmGl0dYXzTpLL9r_Y
z#v9!O%W(#d$54o}W*%b-?*4Q4e&x{+x|918LqYjI@BU5$4*?htV<nNGeyOsSQD<)x
zc|?we?yexT66^hc?;Te_7oTlv#-Tudao<8$UmzoSD}d*ru_0_nTt{S&7}hjhh5p|T
zmq+7USU+uPmX2o*l!Pbcduqmj9hLcf)~l=HIbBOVJ|;#b(?{?=RBSV!Bf=C9VoV}|
z?CEZkI-CI%*cgIpwh>Z58bZHmViWW`77+>4M(@5);2+<H1h1CWUQ8yjV=L)7PI*2L
zWHEzQU07ZfT_bOg#!Kf_JauGI9g4<51Jj)SY>Fhu3@U=n?ZGfK3<wXHi@|wS(e!t<
zu=I$D;<n1!MT-**8%%Obcie>4FDBX!#q`$$23U+tHP9q1TXNMlIb0J!+qZ=fPvRIn
zt!(@`LNwY>1%XBR5~Aw(3STVRB>5Xan1)-g4a9NpvJwaIM&^Kq!*|yPE=^<7eFrhU
zB_0b2wuVlQfjm3&srv!jkg7#+!BcJ5vm2eWw*J(Q$XT}RmTVNxrgT2u80<46k(t8|
z`a7j|Kvr{8+W(*4k}eu+WXuNqO9N7I&w;X~vym|aQ|hhBgWw;+6$rn5EiKEr;KkS!
z2578~%w*G6MG#a+t6t}`Sp~YRp&TzAEhlU`iLA_FRQ>BY4q_A22s_10>w9Xsu-*K$
zcuHbOc4Jr4gZMO{8_(i6G5x=++7hgq&glj1;?9^Tq*3C#We^}cq0PSSN6_7w4S{_X
zCSq?q%0Ip_W1)A&;7@*#ztw@|1{Jyqw+No+O9g(VqPhf~{t&uqRJsP<v#D1)!_!QH
z_NB#`1}T=?s4>2M5RUlQ=2l=jydPvslenx4pa;w}qI`ZQw(nYZz4+*NcffqP<J`J?
zNYMXYvMIoiF~-+P$A8VJ&7Sk#a(Ag38POEs&?mjsyVCz9=<4Tol)%zNwu%XziEuof
zY_$D<h;IxttTp$*?_0!&M*dH=w_g4Jc=zGo-|ytIy6yvn2+`DPd9+z%Y4$8%Vf57-
z0mW`{wyoW0iAZOpr_GQmy)?bTA7@me%`m^vy=3Fa_y2;soiHBvQXT%du#VY`UaLLM
zwAtHc-?JH0-MyC?^~aTW%5X$eC?GpM(oI14(slyFeUkI&j~hnMcG9Bu>8FyW6nI{+
z81p`qa_6>t*uCOxr%f%`G$%+la0K9~d(G;pQ9cC$8{BH}sOZ0<-In37+5fa=N?xb!
zJ;m}u0^XWYF6gExQijhZEeG7CRxg0Zk=l~KQq?4jdEsJ57TnsO6%I7@ip9DxWaMNc
z)PBgA7kY#1&5M9?rZLn<^+3Kl_hM}lNcnvDYKg!NX$#AxXi|aP@y5c_q7Ln^1OA)J
zm~6W9_p>{=SAI%zU^HgN$KjRAvRRRQOK~pHr;un;%M56cx)wu+Z+nQB0rW1Z=bPPh
zrxDsG!+T4l0!n`qQA^nPM%i!SJi?oovxJ}ho^cit_2hTEhMhL3&HjXkx3*p9F+=^b
zNAEStbXlbgU%H}>Z)Sd-92JU_I)F1XZ#)sHS}oAQkw9OY(NIU9XsXIVz(bc=_|?W+
z^xnPV;#ATuKoF~0^W_y|pV}_S>#9lg^)v?Oyv&D+7B$4)r?Us|Ig!iY)<pj{!}SBa
zURT?0R#4IPOh$N3&rFDO_TzUk9Bw>7RcXs>`D4V7y;+R5zgnnrJ<mR9?UU#C@=vbs
zM>$LNc3LB)Lt}i!kF4dp)8sT-lMh@@?9s~C8{9MK%lf*DX$?o3nZsLsA9okNGT3{w
z^~<sHfo_sh*tl7UI}1@wPm=XANu^pb-Ggb2=PrIo)|@v+8BYU!+*=yQ<DUHf$u`(2
zOM!=Yd9iZ)OnCYbbOPT)On>BqZeRYbYP*@TJ>&wNvUz#&`xjx8_EhL03*xW*-*J=C
zcRzQWA8`G8n6E6|*L7Qw!?`~ct<E*kkC7(-!;xF1)!AIJR;E~a5|(HF)#NjE^a~jw
zUck-?QMQg6M5c`0PO?S=RDSaUJD>{nfGHa=KQOQBh_)n|8<_M8jqYG$B;Lcb!M4=@
z+<w7o6kAKIV^S#>|3uF}4P~~$$+8ZzH6(I#f;dlkUfU8`&U<8!xmoh4eqAFn1SG_M
zdM2&S4%!f-7uU?tAGnM%2ZIPi-73zmK?(&m0PKhpL?psO!HnV(%#1`yd)A`$lF@6d
zN}PpNg9&otbmKs+i>E_Isi3hFwLZL-Y$yN~CSf=|q;9VjN6?n{0?ZPya^kUabK2!c
zSR<I`NS*egoi-m)yP;^<LT#A7Y)Br-Zm+FrFs!{;Ib_N?5<k?adYVP@hS^k?T@U35
zRRVYz=~`+_sPAYwxuv*Rvf-=ad@Qv*Ey1>&Jhz%gjQ(J)ePID|0J^wQU&~_eQ*EpB
zA?zY~!K@uAo$_1yl@y*v?3`$x6KftL2}S`OQh-b-W(C!8zc45@0VkW(LzBc4B#Yw^
zkN$^9yR;A0|8QPd`HX0cB9EG?4r<{nwqK&#23VBj^64Ju_NCPfC3Fqw*UECHaDq}J
z`&CjX<K6UGMe>Q9<1zL{5dwYx4h(F68R%X;t-4){++n&CD#}unu!{!n+b}Vq0gzuH
z#yQRYtIgO`ST&x~HXypYm`F?lZX#e9{mE;F<4NQE%tu6eaxrcvsj;cfD0Q-a5x`V|
z0UfGV3XG?lCAT$o8WaHn!lUVkl!g05^Kjs<7tu}nMy)d7i5tz+KQYgI6JF&R0Yd>r
z*QVgSI`Ugnd~->Y)A8Yu1d{#qs2k0KIA}o5a8Lj;^anIN3~ThQKU}*Zvw!31e|ncK
zf5y;6Bk3%oH%P<XBco~LjB{V|D&thvFihU|h89~iGoJX`H(J=G;9z?8OJ8ZE_)M*~
z317F-vqM0KJxg1j@n5Bx?KC6jc9X+Dpf717KjLOzIU6~+WNZvizSp0ThTQ=8)!zkz
zwUkZf#9u$1p1vmjx-3sm>;qP{ES8o?I}t&gXa_0QjWJ0RGm2}=-H88Tn+UP$4kY3T
zp85I~II;Id&SDP>21uI@q#BR!U9V#njG^t0&8Vhg>>PePkIWVTaWrKVUIPxs_571r
z=qWNrpU?A|F5I*=V;-LuN}6YDHVg5YtKWa|(UpPD9XK4W#2i{8H4{UpK6%N9F>}TP
zknWR8MB-df^qo24e{C>EY;-3+6Rrdp3StQ4)dz3QvFSh<yIY~Gl-g}jgWFffZBz<Y
z@m(FD>>@*r9~MN6gsNaB<M^9S!kY;;GDhi*v`&*Z&QfOvs()o*pFd(Y)t7<w!&a-J
zc%$ja+E?zi3bab;(VIK?MOiGV24E&_Y+(~>bp>FTFO+tNzX8vX=Dsi8&$j4)W;!CR
zpk8g&MOZe|S!ytkweqt<gj%_IMQi+hqc}IGnI27J%z9sNk+##yerf4WU4o-kw1c`e
zgZ{F+pNWH#rGmkt^<16Ag{A-Bf-9(7BOOrXS`g>3nqXWO>yUIAF>?!lf6*BVB}#Nz
zx|gK9g@wrz?Ppf#LRZ0fn?LI|(K--)^0IAIbX2!xP^W}X^PFtioR7qic#(}`x^?8=
zrA)-K-hB<&$7-QxAYnl|F{Ok@?NH2W+<Px7;hGfiKKMU;&)$tVQl#1B?-+Cgya}=H
zhy^wYmNqmdvxFvd`^B`4^xkh=bNA}GFUH5$Tr$Q0MWFOqj0O36)@jGrY0$VviJ0cz
zH7n`$=0{Ijt%?WK87Gvl*LOBs9JBWk?W#j9<?~ZIC*TilH~7=oADQ)G-Pd*k){G3~
zMS_5#p?&pB@m-9>PZ7zuyd;T@7o!7@Yh*IU((R_z-(ET-HGVsohLH+h1jhX5OI1{#
zpn5N+)qQ&D%Uk{(2kbG?t%CWX1dFuYChO4#HtIR~N1>fvi7(b+t0tF{b+fFPb>y~P
zt=L;({JUCX_MI8W59fBDe^BUmJDRh;d-o$VfEQkDTjEilSkc1)YRPd3v;N}exa2p!
z97S_d<K(fmITc?F<mSA-^{&J;?fn;rH9x0y9lOS8N21x*FTo^=gmg+tyQ+_52{o;n
z`<2n}W9U}xfHuItkCK@5foV3;X4u!7#EIT?kgfrcCN#Qut$@+SMJSjOedNsT8_m01
zP`RGa$(11F@!n3A$d%AYZ<FKxE3E-dq((6hC+l1;in@;M^GNPG^QD0>6fWFp<$N0N
z1s*5s@2G0GJ9GYHlHS$aZ`kJBcQsqGuVpM4Yh-2qyeMx~OZR|JV0)d0R7~3@4ywa7
zhB|-=zypl7u22j;VaMQ{zcaclaQlO*S&hM2vJakfMZe-ThWU@78@g^Mp$?}h1j6Y8
z>Gw-HB|m!V?Ch8?v71H<=KyGrh+o2}WnwDL%|5Dmu#aBsIKi33h&$}PyKD(%ELrZ(
zn-q>`ADf7~7#l{0?$)t-6VD5#DX#+gC`~-`>$@%PhNEujOt6yrgs?M6Ho?>Mfo8y&
zng<QahdIWy1v)O{@JDH9bd}=vC`E+F_GPP&?C(_Ppt=glxm2cpN{bzYB@wLb1=aDY
zRcGC>-EXmid26$J>k{GwQsPSMAR1w6CsnswpiqmVlrqQI%vq?l&8J&Q&~>Ufk6hK(
ztUNcea8EPap#JAf(H;3Muf^4kzpT3oe<=K8$d2@w`}!%VUOiz1s(Q)h72|if9s5gp
zp$&O=zI&f*>=N^N*Rtm{ZggZ798nUJs9nR7od4mwbny|ocg#tj_pk=d=0r$0fUcVe
zWCd6$zv?5_ZT$G0_6Twy02$bXzYTM0vA#N-zGK_+*$;N;^cXT(V3K-HJ4%NSWhUl^
z#{LQTg5^5|Zy&TVtFJaCwNmh3&Y!{hXy8S%@O#Q%tUC^-m$Sz2v9NkfZl0B|7worJ
z?%z${8|d-6MGs*7FTGDGb4rO?f-Y?-se3={W5S|A3FPhsfsq7CSbhwd#+S|PbLTLE
zIMQMkic)?Hfxj(7m-O%Ygr$#7RsENBr#vg~um!>NsrVg?rk9n5M<8d%#`80U$P?Q#
z%=u;qP1CFg4KqCRl9!e#g<xQu#-(x4zx4U5?ZHcd9I!CWkE0B@S$vLQTw-cE<R0yL
z7VTz&`y~Ly<a4iYoT2F@e68guwIiC@>kydqhP}{t{1bs~k6xZk;1)=nnXRCfQamHy
zqxkPQiynl2UB5taH5@&;{8d*M-!i+*O$kf(Q@DvgZu<O$juuszBKxG0!wJR3lPsSJ
zw2)9_y-TMg`;|e@U%2jx7A@88?y>04d;1ywENA5(m&e5QSOUYC&b@L)H1Qd{wWYNN
zB2KJ-e=zv23SQG>kXP<i56ivIyl}xx{3RJ9{WICt=|?H=4--m8O*BaA0xsE{66pOy
z&L&Uyg4y|rn%2OnQQ~()IKT152Ii<hkM3jhbN`ELqQ#a>)*^K7JjVt6iiiJRWs}Yr
zZ=Eu=&blh{e6MA`@HqiDY?>Bvcs^vu{}=2k9LKP_R*U(<ch^Jv1(X&5aR0~gBG^OH
zip7)&xyT9jXy2uNb#jS~{>hOSqRbK#nW-}{OLfITD30d`{bPi)0K9ri`B=j|o*a3!
zgk&NM=XUS8)#qOm4eR}vOpZRhLl;7@{VcatAeR}ad+S0k@sz`rBB5j7@4?y!UV>Sv
zf2lWh8Qc3~GpC`9nA#B5?%wyK$~~FR`lYqsWE9vw04DM^CE7d__AX2nPs<v{ifK2C
zUDI!m$&3DDWS4;rPAIefE{%KeFqm1zbp&pCXAkr;ETaXEYsTDp>8|mLcC+Tzy^jSE
z@_)cn&VT5ZNnlf>QWiK9v4y`nlslyKYjK2bKuYe`Po2w?K>8$V0Fj#fM@c1Yy(IFa
zDq?EvPyKPJSmOEROjqf|&M`+r;)1YCIcsFg1ffI3IjfxAgA3kg`ylpb*dpcM?d&Ki
z#gn&}$=A&P^;i7Ud|hAiDoW)ZNSN_qVB!P*!hiiKyQFvIiV&{VY%UDD0K?=X@p2)Z
z6H+5D_lNoN0$1+6E2EWw2@OjEfg9buEp5cX0V-v~x+r6DEhZb6^slE|vc|KXFtY>H
zLlzhQlWm+1Yu>U?Ns96A{gAK-oSTOigO7I9Lw#!-JA2#>BNJ0|5L$*k$+O6Xl#8-0
ztt!VzvQZ+LC7rc}WP~j08k$-vtJ!NSv}jSRGF+%u5Qhw<7DR?a+o@bzREinNASMp!
zN6PrDKfK%oao%EBYHxLuzzAXZnEJno>%Ei_)mm6wUj2r9ZTV_oD20u+#+@b3qTaeQ
zT+koV1K&OK*38z|N=4y1q<Q&_l7y%!t|}AgZ#J^%sS^1ATj+K&zNg2MpbRiB>uyy0
zw{mG0EhACa=QooOETVwv{VbW$Q8ZWlIZ~;5dnoCfkaeHeUAxXZ|2@C|ou6E~`qXV8
z>Pq4jcv>NPXLGuTA(`r_PICd6zgjEJ7w2Md1U>X@r<1XfYd?E0;4(tZTFxlVREMg-
zB)0@*`#Zdd3P+#FpD8?>?BsLJVmt{wP8r4FT$jeP>$4)9e$XkGRN&z2TA{xw9D6QV
zJxWS!!yoj(?#}PcRT-9>^!NTaSZ&=~9q51YlgrA!PGMdbMzyqW2vbJTa2nG}S&EJR
zgQ|x=);bw3TGpYVrx2{B)HC~ayfVTv5@%i>C9@U6fu<al=4JXvH-Hsy$d_g_nx($y
z9G)xTRUW&0zsL#k+xEzb$YwGQirrV&;etp9R3Rfz>i3h9zl{_YWq{^jReb$rp5@_%
z`3Yq={tN?VP*7fl%><XWLS{$iCZZ#iHhb0}C1)fGCr&nFp{3_v<k!yIFUHoyn3y}e
zg=@hkc(Wl}=T+D28b&_`GW2yj!H8FmnIA--4NOJbfnUETVtnFW<f^;mdYQp|*1iuE
z%W8XF#zs-&R;^>a1){#8K9`pUvZ3-p>Yu#vL_RDK-ABaX>g!4m{#$*_WBowOx^iFU
zvsX@Twp~FjhVa>2jv80^u|WG5)P`QX`)IMTJ!9)exfthJv(GmDKy%%M&#qvROHR-0
zjtBJcdXM1-k0!rO1%Q9d(ZY@D3Y^X4Zk|PvieuO|*YtMw{-B`9i~Ir+a#*^X=l^(%
zrsGl0koLDB@BTiK0pAQh+zx`s5hQ||N)Dd_L{pE2=wu8PzfU++_nl0w<uxHO0^idd
zCN*vs1_1R*yzP_{M@AiUzahpW^KaO)wlu82+3zeEU*0+e>S!73T*3g-%0Xa#L(luO
z)Nu~?XXc|N5`Z#*3(lnq6iJ?Gvt=dVoqMPKqXm8GD8;pTcXj9%5|%;#eqP-{aE_V5
zByL-OL;P&FEaYoXFmK|Yi~Z_C|6iZ#o;(f*mhw8|s2av3UjUl!Y^fYRGt>@-J>UBp
z!4l*}Bfk~-BJ19lu7@UnzAd3?5nreEr2d}bA~{t;7Cl@4o^6D*Mj{2g@B<X09fZ!G
z`-X`&=N}3mJ~(p&0|2_8%KgbyOqnm$N=7~VUY_q<D?j;l>$>Tm)+mrT3B;1bb>NU0
zjY=aygp*WYkwl2l*4s@COcUW^8vAL82m|nfkOWg-injIrOIa+RKpVl8dzwU{fazd)
zEUnLyho-(eK6I)q9i)z|L?!AE^Rd%Kv18Wh3de_qRF0D${YH<I^hZSPj#F$7o#`VA
zM<m0KQ}JaaMje(>*^=WlFQX4Z&+A4NdXLiy!>g?Q3}Y&5#~Gp3ybuLb1-_5RnM9-;
z^WG|#Ci_WNl2P@PkZBA(aw|K1x|~ngVB&^<X4dNZ7-XYB1|b&%{`PDKq|R1qYBB&o
z>$}5@l4UF#a`H*5J3;K^=y!D~5!FaaaT#61+suasEk++DlVQ;)CI28k7yu;63qoOd
z0sLEd%5EE|3A0R5Bg9Qgm0-v>e&TW!zroZeT^bzqeL$RkU^9ob5m~D(VAQKvIBsjq
zz>5UoII;z6lW?IaSg2r@+to|r*O4he5PP_Z+TN!z3b~Vt>}sU8aBoG_+4si`T(tmc
zs(FY+-s3qmM#J#=P2#Q;n8B}FEzLYL_$31)1?vFJ1wEHO5>%_E@<g@970M8_1yN4l
zRB=#=L+KlVC7MibK3qcw@om@2b@Gu-gn@K%cxl<9Xc&c-CR4{;y;Yo#>AP-A(k^Wi
zGskC>v5VmVnu=^IQB8H@Q4nL300qyHP&1CeVxXV$f87OzVSq?;he^j8IZVlvQ3`0?
zc8#A{ASVhCt0uPIX2pSx$hNbWKA&iRGe*N^EkN@rTLSS`GtS^=pyFQZDj~1tJ9?(b
zDVOC|u<?K^r6Gj92HP%!7r*YI8UxS?gx&AI<5;d$RTA9PvjCj4r|h)`1`(e&7=8sF
zrPy;&Z<qg9aa*PJ4!S28*lShhbJ!QIbyg74yB2$AbZ$!RLiT2#7H@0fbcD>8fWl^z
zphh!C6%`ig5%tvuRu{KCA(0I!>;GvCO>Jw*^#*{X|Il>oWpPZ{P#BMCx^6xR|0Jja
z;t-e+cP_oX#EXV9ZBnMaz`jR|hw^YfXzP(I+m<w1B75EYsyRlb#pgLqwK~I<Mfax?
zfdKTaYMun`BXoW=%wG0$4$DFuu=qpM|3d5w9_Lj&cjE_lC;AHl4%F}fa8nw<PtsPw
zJR!%Q#+lc^AK)a4B^%h(`S&*zBxjpeYyrlo#{Oi6G^_5bu!YKfBaSNk3cHmY<~;JZ
zUK%0ZpK1L1%j>+ygSNjGym%47c}p8IA`bCd{bv}D)5~Y>Uz_Cdv+VHp+1q7LtUX0f
z`8{dcgy?qvP=Qu^P$&ZD70dt>VZFT?P6IAaCda%0z$YhR!9fqwAxd3g<Fg}yEHqh%
zmE__TZB$4X(3MD8E%CPN!R*?y^uFu63t+(4AB+WWeM`1DHY<F|5}m$}g7+c>_rTLY
zT>V$)g9s|n<*W4AzAx9vtPwub!Dp}9neVz>FB6K_KQCF2l<0qy)1xVW-g}egDC*hz
z+g<LS(x1(Ko$)yU`H=2cQCv@=zOjG!``}EqQiAAR-jn=s8jyDA<9fPtmxBj&6FUM{
z2PfgLpJEb3yB<%9PP<f<y$tkdMxfEQy>mFsK)e<?CTa)LUQjtfB~BzYq;tU^6wjeH
zQHfNqh$R*g@7}cs{~R;k{(_VKeS2jySoCU<_2geK#UM?J&26p&QH*Xt@?12+NkgN!
ze6X<R<&WA%-5jBTY=me5lwMj3%#LRQ$~m`cUn+lYlVv@<isYVmll>X6W=LdO<@GGb
ze8<=Nm&Na+UC8)|vyrD!cjdQ!QIj8Ar3AEmY^C`HIp#ii^^lU%{12S@^y_z9Cv7Su
z5zQhT{rgi_zK^4H3{JTQ{60+cA3Lf3Ja-q+P<Vad3Hxv&%RWo^O9IP~A`qfz_&1Tr
zx(q^+h!SKgI;H3av*=G04^c(oFAJ|<9hx^Ly8o95;qE4G3PeINZX8Krt$_RHPa>Mo
z(TrZvH^z94u5{5OAM}w=1?tY9L~c}fto~eV$Y?Y?2XwIVKt=(o=*6R~&(P6@S=fVh
znLnJAj>quw3wMX#$3?ZWL~!f|L91f8Oe4Pm=q5vg^h4C&YWiCr0jsijkw*ZhqoC7E
zJm5wbNMy$Wg9=9yLE>2oB0o$QG=VY%!x4G7xU|ri4#bN^K*|&pr4Lj}5V*0Gq<sW@
zW*U-Mlw>&v;#n35*YjcuhDN%B@`71F@hPID6cRCMY&69yCOO>;lnDdo+9X@zq2d^>
z_OnE1R8nlW=;Elrpbc}(xqq@JU%Z#o{m?`q3?g8JD0wwK<4x*_0b#cEMCL#Y1VHox
zXt{%0l$0n#PIMx{FuYjA7E21r6Fuiqf(H_h)2j5L$8FTlqy65oW_-Z-{&&tNLQa3c
zn6Al`M(j?L-p)8$MObH12L&2BdN~h`XW^~_Y(!ANeE|E>edhYKk;@{cucv^fIZzIz
zSO61nK^iR}4LaWisD{#y;XzAvpp{jh?@2fA2TDxnr+K>qFcVjcY|;DoxTM%}uT8K^
zkwDw5z}%5MlQ4iO-1~ZRwtQHwaxp~9HcxMx7nU5p2m>yM(w|&aaW6y=wrRUb8K1rQ
z`RDR(vgM0u7KF+tTD5tB05%w5Qv+{+Y)`)RmR_Vc_nixW_K9rNRyHr3iV#}Zb(Z<Q
z8#4IZOfW2mSELwNETCXepp=}xW|Q^S3mxpm=Q)vkHlE-ufX@}8pq)dn<5k0jO5Kj3
zvQHf<bh#+6c+42k)DM-L%<(u>vStkTG@U?gep&ifY4jyfwaQ9Zs*Ub(QrU!voqT8M
z#eS;Vt(2^8yPyvso~w!e&m>MhgLiC?KPdb686boP%T)Hu%)Erh>X8S@GEN?)TEx<L
zya<i7*LhF5Xx^RvqY{@-ymA3$8wwCRtU&m4d+ZyPXYgx7<_?-UPLgDQVlbB{y$c7>
z9noNWS!3a>McQ-cy9~Rf@)Y?E;#BO)Z%wwD0#FJ!l(WIbR1~Y&*s0bDHnb?9adxWm
zT4fFaNx=@5ihjsSC7{&6&%FgICqWJFbFB-)lQad^i2_!i(F)<-UBwmJDK=8`)i>EC
zw6T@iM>R8{)hsG-O)4tG6y^?t(uY|!{UGP&OXVwSG%0+yN(W842nz|Ls*L<qD^KOj
zPT^y5RMEUkqMfXYY^bB}wfC|sgRKSr!}IA+*7nqwI0)dwh1@*W#A1)d0!7QjP&K_h
zAQ6IuSk^7iB4pCaBUd6wgbb82m3&eg*V_=Mve2-+1Zukh%UM!=qYQk}(D-*)r15iT
zx*{~P(EIIk;0Or{`XL12ZKj&!pX^n<`@XUDM(~9}<MWipvK24p@9zBg2AY%53#j_1
z6v&g5J08LHE+VMrXCVbD5NI+)5P-I#2Ump)PKh96z5_*c0ks}no-P1Ml(FgaR_(b~
zoorHIR+i97i#DoNZ~<tQ1d$*^Juhu&kw>7Wik4qKEeak_`w2*$D(Ks4af>5RCdfPJ
zjVeVW5}w+wMQX<!i5EvVETf+_(SiT0T~9LW5Ja?|-$S0Qsj92`x~b6q5Div{XoGW5
zsfa<2d#Qn9;(<3h=+-^UZ$KYJ!@1^~+B`gPhCUwaO}1hHb`EFEZARDME`uWNVx_IA
zgswPphh?J+zYm{cD*dggdS?Or1NH_l8D>YZF6o%$d(1ug%5X74MjOg>QxKG{T()Uj
zPKgJ#%_9_)i*Tf#EAmEcPN`l7xB<7wKe!h3ChqkOv~f2_+Aq$n3(MBqj8&yQPER2E
zCp{JGK25<gPRkFGfj*&^&JTotcc1t?&iNf^uA2S{XUw=RD&Z!f@>vXY8z!Cus;}?s
z2iMPw^^*uf1#qA#b7ysMoiTm)nkV15q44H`@b)^QMqcJd2!Nib`kh0R?UUQgc3;0V
zNTi@{mpz0%OUMw#^nF3qTKZ+`*{j=j-G{fi5KSQJG^y5I;Jv5Uxy7N3X#%vqjP!v6
zDZd|T0SA6k)mKOlrgFH+A_ogf?tEEP6~l%J+F7vm4QLUD>=2yNoaC$a083N9O$1q=
zF#ND$u-Lgj{C2Gn{eba6WkRY>Qez=gYGRt$Q0poH&pCS2jK5*tMik$pO%9eM>##9C
zYy9}s<;jpvzJ%|k(e?L0ehno>PkT8h{N3u+kp3)C>21cCGXID_oIdtr#`DHO7D6%m
zFXxZloj6DF)1s9&wo*s%T%!qz@9u8M=Wilvt18*PsX}iNLyZ5B9MbTI)xfB>2N(IQ
zQZ5SRNLsO)h6BULX%rJH9Fvuve5K-}`fY#~BeB8dFvt-o#~sKQ#36*8$Zu*L^rn4{
zoZ;dqbdk0)YX`g=hgZ#k{IeyE-m{ouCqby`d2xWm9F9etYhweni3Dy<v$yWD=s&xD
z7CE~#Ju&`X`t$UxMBd<c+1aPQvlYZy>NdIo*`Xht;BUJ8M}qBgIc`p8v&U+$?{-o$
z7|+a=%`IHo4+q|#{1{%hx&h_mn)*+Aj(AX_hMRpBIpQgRUxTZ)P4uU$g1l1iRJFZP
zbzl_6W>}a4Z{J{`;A`|Ydb&u_q0PJ4o-?ho0H8rF(QL6WU~R8+Da7nk6zRU`Z<~Fy
zy`)80nj2W0#Pgzwi{l@87wTm8OWq_VA~8oMN^cQPqi=%yM-~rW*Z8u4)Ik5%pop2t
zb1Kg7kceBZD{6jIVLc{$8!HdL)S4Ymy-pSKZ(a&$>hswL3LXLbudTQM+EXq56JWcs
z=F6cDqn1R?hC8gX6XYKoLxoZC>otqN32QIVw0edRfw`*_Nyv*C_R25AhJ28AW5~1g
zmC8%;*}EgE&3`#to4p#1nENFluO1c7$`|oS&jk7LJ?G*~jDKr(z7a`!TQbb=nI@EJ
z47Eeu*z0$WQl0d8Gi5%&-}J~$`fY;0mx&xMEQMpW^FMUf2I629Dh|kDu8{Yltf!-*
zrPu^TTzdp+8PT3I$y0pczv0J2kdTYHEr(WuWNjyXyakq|fNUv2TSzpHBfQ}c3hmu;
zI+igNUcf;qz`v<i`fpt7H_q*37aM9i8*AqOQc~g-r+8`qdcW%@z7(t!Qr{H2o&h;A
zW@G;SUfvO={q;eH2;w;dFm(YYO%uQ~6L<lhSf4AR#6N7JXA%Xd7uK%Tq9J<RXxB?e
zrqta513@**wq4PL_1OV{UNS4whrRRTk1Lf6+opRMU%mwHy>;u4|NeGHKggTW4-;=&
zFYO%)9@uqiv&)}_h$`$k)1=*7VT{iBcvX`>yY<;$V?%XzA!m4BV6*+Fx;97%FnG)n
z2SgPd@9$=#x`;c)78H-L0-0DU&e@)uoe<+Ah?(hTmT9PHtyzNf;c0^OZ0{0_V{J5%
zGMr2)bOnl%zo2BlB$?h!GnKxDKMbioESNhiZi7EMGG3HH^^y_&{s_dj%2O=j<>PM#
zSX2!GrEbP*Isf|Z=4T5c#|5FTPm-gmf>Sb@>xSe<mf9n{OnbHi=Tqx%pv#BfWCu_m
z+F01*`JCI3>C6nTxIh2N_;zg`VV4cHcP{q!Un?auH@F`)(Hxfp8UAW81ULhgDi|cR
zQ+1-*{bV|_&}{nO*oRV2{`v1;=Q+)3IaazUs&c)Yv~}7|K4_+6Yt<C&l9U-k{U=9p
zL=g?wefYhysmsm@Ns{1le#dl9I2JIVlP))5ZskaLxe|yydKUa+^TCH_lG>gA(oc!f
zd-OxqDfHp8JS%9vpPCRTy-zlb7j(jz+q%RKy=c(n6V2K@U+W$J$MdDo)L@98CkKr-
z=a<lyvCO*oc>e;&i;?C#&{7ake9xcJdJB{<+)FDE?80O1D~Y5Ri@1E~t#R$@WA>tj
zhQ7{Ab>={F7bL4Bxfn8?S!)0E#T;woo{uE|PP_aaiIdQYcF{s1hL+ERzn{IW{YMNC
z>*4#}8BL!OAZ67m`G!ZPCsTxbP<$2y0achXF;Hh42skqaR&qCI5O#c;${I)8!e{&w
zA+M(<o+7UlU!~`4vgWUcQslIij|DqQzA&?zYba^pj9hB-=tss~rsG&$cp<#PLaw4O
z+FUyFgzU?VICE%Rbm?zGd5^3Gp+!feYF)#8=Be2Pb5ql>L^VyFc&ZZYN_e)AO_?JO
zmXL64lm=a>g|B6ayCCVmS^tOwK;hJMUnDc%EUo;v{`TGWhs%$9pY{TSkG}s1$zlDR
z&r0~+HTzB#L|xV|rj)g<8dp~<7=A9vhqa_+P{?CB;*-i?*X;G-&DtIS8JHF^ysyw1
zx8rvh{C$2>JzD(5|LHY=?%wcyk=!<jegNaV0ENre=i=<tR6Rt!(j!P`x!HZnrb%#$
zHs(cHe}meOP%87d1l8iRRObTU<#5X(a%9){Ma?euE}Bm%)h<S_9s((uIlphdjEbcb
zw(cvs=Q@^&78XHiY0)!?@Oduxg}vRG)R&}<+^W3W*Y?CD&}8R7+1;Z0b+~v1uFZF?
z;a;OF_1b;^cdw!q#eJ2W2p`6>g>StqGepv}i~E|+#|Q^r9;{@_hjB-R-w&g(wq%E?
z!Y|&fRTw_`x)P}Z6IWq${{1uRPv`2rs=b%o4<BBpCGuyKUo|7<$l(0gEinDnz$LZ=
zl{TjcWeY+Lh9XTrmm@Qj;)ixHzDEPEG=iQGX-rwSfdeK+_jKSKh<O~Vcazy8K=L!Q
zF|M$~`7xeor1>~HS$tu9lpuFFE?DflFd<x#W<DuW-*oayfcBaBltj<r!j#ki(qdXh
zambuUcHYQhM*ctFH#3Ucmb26E-#5LPRXv`zc&&bs7GM%7`;1hZ0QqvQhejipG6uCJ
zD>qJ|gsF&SiJ0Jxn-L$OG0RejN17XmES<bD_%xAs*>2_}*NL|J^l8yd@shJGn)(K;
zf=K{5M~b6<>Vt()CmvbF(+{hDjIJgu<=?X8#Z<_lGnNR;c6XUb(e!OI1vbHvP-}og
zr^JA&C3)$2ueV>iv2A1ATWdWgl{~#zR(31Ow?40^Z*2%*Fu<$$>_@>BhjdZJ_0K}*
z_&E3ceQQ3t1PNw%B1f&fLjuOS^4-J!7hT&pIU7<%T5b_91%rwbkgLtkF3k<7>vh2x
z+y2Afm6+>w%LPsESX6iC$6GddD1-O&)>1Hc%syU|`GT=3c4_4;{-OGaTb`Aq^<H9s
zO_)=yG3??)+avD5gFy7-HI{g`*&d&e7L%|`_cw0OOTN4?)$Gm9{Wx0v^(vdk0q?Ir
zf06ql!j^rXkgEQBNyL?jyu*mY@PX|u@S1VVmPtuK7d2B{KBGc+EZFjDk{vjsER_xr
z&q=Vo@8m+-IKdl_tA~ik2_b?6jclCbwi7eo%5Ep~L_e7j%iO+t`gHCO6wsAYPk0kO
zRPeawV+{-U?p+?f^PPM>9Ar;Le*oHd>s@5{aklW|C*K1zE1-26A$+F-4T@aJe_Y$H
zyDheay{@7JK)p0h>oWzm0yhC>N6}2(yp|jnkLa@kM9@Lx(0B_ZXv$S-Zn!m+N<j11
zvSQpnhnvwqUhsSkV(IG<iH>k4I?&HvhTteFV<Lo7w;*DexRnv2Fm+M|G8KwLj$&g$
zTO^cqQoo)(A#UfkBl3a1ChUf3>d~`Gsym+QB2>f&38C8@b=?_An(gG1BsQr@uUFxZ
z_!2P!lkAG!@rspv;a?l|xk6yq=xERxo@(*$Gsab=gj!=W`OTY<<QNxuXEeVlP>~F#
zL04lTLWU%iDS@MCWDA$2&p0i4k;vpl59cA^7L1hR^i38bk}(6k3<Cx?MbXf5dp)U}
zGE=+L?P~SY0`$25$`F2|P~$W`>TMY*mlLy`q3L+3#Q($8S;a;5z43YyW`-Ju?xDLI
z5r?6B=x(G@T0(G!ZYk*o=`InG-++{el!$<cG+2Nj2&i!QpL28e)!ujS#rmwzUhDn7
z&r^}^vXRP=H?l311<-FIYyiY0R26P9VR(6R5H(X8N_PaOu0st?+4{{qP~8n!Ym1;V
ztgmV!EHh?p>Q&j2j5W7feL)N#E#0QRx=Lk|zOfu9Hx0T@(KtZQ0b>ei<#CbQ9eY~|
z{8f&n_2g1!zLh>0lpjgPcuT7=E1qwtQU{IEu@5kL1Tw2D9^n(<|7uuf|EomgCI2nT
z$;{gsrm!6mZzXh5N_JFkWxXVyLKl;X*t$ue`X|qU>~@oKB@?|YZUm1%FxfVwB2PPv
zAa3tOnIkI%5t~S|SzfXb7<<yFTQ6)nog%`UiRJwo)`VIIKOP}Dc@*;l>L9<g*f*b1
z){0C<#%cpdt$0QCbznfLTTE1pL;z9>0Lfm&GXz}cGLYf{<~8sZCl#U)!F<w%MwK*P
zovV#($WL79C`O%C4xY19=n#*wvy-K_BB>DNaIIVA+|TQ{k8FlqdUvAdc?;%7Yvqo{
zKDDTDdDW$thDq+*CrCNj{bv9Qp>ei*&6%G*Yyfd)>9uLEjcI#NI21I~i=%Y@okACf
zd1ORz<kgmMvd%iRWB9K3o04!NG%${Ttk(di+8FxvsUj+e=wt^a9{>r9dw=*iwC-~B
z{ICTqq+8<B)7;Z?tuf5LOlF59)%)-FZ3s$Ef019~K!7TE6G1%RLjDPqQ-ckCPifAk
zL^Gur;$D9fsYu6jK5f^KL!*{#dP9=Vq1Sb0>cmO%+uY+Ca8tuh#Uhb7{yH#<;~dhV
zGRFdn1JILg1fdSB(<MiU(9ubvP#M1IBuf?gJ{&_0yA51idj^q2$CBl8y`_A(2}Su}
zSW9L-RazC_CReD7Q_i~!)eTRo37kr*x2M8{Ij2DdC(Y2_U8614g$Z23Q!M}|Nx2f6
zcKF&rrbMAQzbn(wSx8s>KOLAS9^!X{d8i-ub>io7ckop2A#dMj{I$aHUo@fX4TYcG
z{r4Y5>KB{d&)?!)xLiz5Iu#sFi_^MQIV(HTnb#tGANc*&yq?;b^y2pvI=AO-IupP9
zE4BT6Tv_115;|?8;P-i0?HDz8uloSGKfI+a?Q%~ohF@})9r$Sttg!Tj_P$L&xRX@8
z`e`xlg)t$J^Sjc5GH35T&p}`cL+d9W`yQd(zb8og+k2e}^fiB8ex69N-ohrJvPc<X
z8PWl)St4<Qc_RG`xo9=X3Jlj0Gj(fXEY$J-jv{c)U1i(gTe2rmc>Mbt6SHZ^8VW-l
z*ZY9(S1AK+{hwKPSXb+_PY@@g(WN)hXResd>_i9EW!tP6di{04Yfl2^DlHCE-V8xz
z%6JudUot)ffCPGD>zVK%`h^jIs00uUTZc1f|DzSKngK1Xq=Y+@fv9mqWRsd8Iwm5J
z4->^jZX`HFQx-}w0qDK{OL=}Qvi1X8F!(vXA{{~gAs>k!kmKPv8|H8TOxF3GlwXVT
zsoWq{+oL9_BL1Q9j<C5q_tbOsudw*5?}rV$cLCoHuNG!}-P%HL0KJVn05}e)wGK7I
zpJZ=9YdLd!(P!>6zPsYUo8cHTi5;OM(5=T%8GqQ|eS9<3pYy%HQwOvohqMQjmcCTK
zgQ=QT00*6^NxzKLybsR;XP}{n*Xl;R5jeo6A^cwE-)sz+8OMOmjBu0qCt(P;$qWS`
zsr75gto<S9lvY!Zzt27<adrA@VhG@Gudl%|)l1y`rvagOFu&@V_a;OV2i2=4NhJO&
zn7K&fymrdG25uYy?`u$*`a|g+|LA{={Czkk;!njyT|SS?3v7oyo`wIsN7gc})85)(
zg~{R4hGEtA>?n#e4^Tdpg}6<yKDBi4^xwag@K;1SP8V95AvZ_{10%WM|HS}5WIbdJ
zC1H%uVx-Y$Fy{KHYYZ@)`(pJLzTkf>@XDsO132sKa8HB9d2Z1KFnh*Nv8h4VIENb0
zV4;tp^&bM8Xv22ne|r;>>q#MOMs&o-w1d7dN<7mwel|OcK5l*Xo{n?IB%`Aw{cG*T
z%m79xs?Y}g)1<@mXq~l7g5hU|cp5nhwGZ5N<;udNZHeedjU2Lqc_e|S>>KFYfxNel
zueo!+z32s^t+GXn)-B8`)fTcipsC!a>7ow<VK#xlk8u8UG%H}9lg)@nC;O35CkvO!
zT3D9wn(@`-PpEfCTR|rrGQp<9#cnBOO!<R_LtGf_E>wwwyXXg(Nr~PS6nr8nlISF|
zBgOk)2j`a5Yb$Ers$<%O7CzNUp%|3Sk_&&aZu>n{+S!}mJSN=b9>P@FaF0&qu%=0+
zZKi5TUb1ZA;#UF;UE-%zLPLR#JS5^A$29pow0mf%lnd0U18n0&v6?1OjDVWp!47zu
zD&%v!cgZd%6LFqUl~?o|bFYfLp;qtm#4^|z(*SaK{#^~v%VEVzQ!dLB>}A!pytApC
z<qv=_jeN*ShYJQIQi(D&U>HuB#6E_OceG`0=5`x<YGRn7PEfIv(YSqqcN>&S0I}V8
zlhz@sgr+yG(&S|{kWp?59GY|Yu3hJe?4uyL1{&4sOo&LkvHH}l`_l4r-|HY17~>5n
zl9OUd3&5za%GAA)A+31IMRF$Y?y%0H^NZHKn?YS)s-^0tvj@+{K<j-~J~yca%fJ&B
z#P1|)B_>Srbt}-&rkdpP%g`#1$FGQ)DH?<B*sI=g^icSN&`6~r#{u-(I31LU8lnKr
z{{r-08ENeKDT>ddy0~-|7ewRtF@@b4j@?ifTB8{=qjw92J8f3mGS|v)$FSxAwL1;k
z8)k6YCy4!bDjyrPEGgJ2o)oB?!3NB(8eK(;)lA|sx43gBrFvAkWp#wRbyaorPrEkr
zf^@)ivW1XuMD8aeiB>|UkTL|%Z#XL@5h7#^v#MY;n6t12T3Wh58PV3&rc)5K)rBY2
zvu8qiL9@;r7DLV6N@rQoqwe$GEv2WPE7>yY)S6ijW%y&kLbkKS`S#1U+btW+L)xAg
ziaDa{;D8Z3Y16#-I7o`C*9ylgL(H~9bCLO2Ec4s`lhxA_qt?e;#S^WJIBoreWK6{D
zioNYVNU-*r!$B5M5{uV)lMHtRo!f?{$n#wJ>mg_$HMaM<QT?ov?_|tBS-H_K2l*CG
zth{?y?q;dDzmjzMFUxJ?y~`b1S092)0I$>!bHJ~6;7oIC@gc9cGwD1zds*~d%QLH-
zC%`;&8#OaNpH!yEQ%l!lMxHa<b~(V@BGk;nFZG+)=%OcoXhrb**f4_W54rq%iyGBj
zaPKqEFTJjJ=&5VvBp#RvT^)I_EZTA`QhaQ5`$G@E3caV;+&+KG(PR#ornlhG!R(I!
z%+NMFX;3?~F*DE3)rqKi6=-SZwf2W#*?pRO^Z`(ONUQ)W_Je5mMrgQPkSW@7dE-F<
z?}O!y*SeMuWduU9I^THC+sy&(<DaxFo_d_Tv;Tv?jt~m+)UN>cJ&Pm*)mb4OX`F#F
zXi5_d8kOfoee-Sv=BqfhK@%{R!A7cKyfi{9Vr*#)p)827p?Yyf{qXCKH}`J(u`yA$
z#Hfu2kA&JEh*Cc)eT|O<3i?+Pj9teE>D^m~V`vD<>cl~kw#b+H2nj0`+xeJhewwZV
zL&~HCK{kB(@tZRDgU-en;%|qRko!-E<BQE>?-h9MWW@x9g^Ff9Frf8SluP(@mh^Zi
zIv@5ot}mJ`-^8te3wW+=x#a(bJN5crq(&bQF&x`vMVAI7&@qBG9~f|2r5ZCPe)oBl
zWtmRUj~xk1NZ&{lfAFAq>5-zmcG7o<iqSRP$}$JG4jqUe!UAGtwIXSpGhY!iA4~&z
zmVrx?Rg4$3fD17<arS#M@aQnMdkQ%phqB^f*?tCDqYrpXKPb;}2EU1&w1Y>s$lrkm
z4{pCRNL+{1WYL;1QNS(Ra+_O|hM_3!+{eJWO&YkJQyPwtYd@6x!;t-Pd@+*giS%MY
z7N+1y_#^EnHbL$Qc}(zjCc120Q;!4#Y5MzbpT{;l$g$%NnShplxVU@2xfEJaSJJMQ
zUHGb<KP$&6i^jRgc-SDsn)@{TM!Jb2I+eH3MIws$cRET~0F}bax8xLK-%GidP8E4c
z7qw`Xy;-g{x+s6D82K%<OjaQ|hvd4<_*L0Y>(4@_#frX<7;S>awM(;P80=mZk})xO
zE0t&^*X~;g2%l6^1xW@dmj7AO=F(zOZ?vXphgSK?zo2&5OI4;JK&vjXzH@HvO4a2y
z0D7n7lj&L&G`E>E2OJ;<TW=nkz?T#;EGjiU>sM%saQ0|cK2=g`@p-hV)akCM=VMLR
zFVZNY2U9>tzUj`tW2V+hC?+sbn>kf<tKzR#n&%?kni0R4IeY9fcYIx;TkW4D*LJac
zEd)}C><QRb|K6FH(0K?)1)c(G`?VA!@7didupoYMD;7spJ-g`WWiS_YFaC(teNFzS
z)o|>YWoMtkQ6F_>i}Xjl+^uVeA4*ouE8VgY%`Zec?%(Zj?p11hF*)+;g>CL{VysHn
z<gLEqvc$+OvyY8NHvONO{X=b^m1Yd;{ONxn_QF=D`b}>~$%`S+Kw{1d#a=-`k1d*y
zr3T_TU~S;y&)lDgX?m;K_++<tv>J}GYrV2XPet<1_q>#RF__;Ubo&8mi8siqWc2>1
zo2JtW>Y#?Z0V+}f6v9KT@I0BJ_gx-3oCUlL=N_7B7`0~|jNM>k^p(M(L5z5ijgyIA
zs7Jx->&k&!sjCw|c`4&a#_q1-z5k8{JsfWdcyfAqNL~o!bAno-Ik{ecqQrnx(Cy&v
zK07p62xIbneVVG`s+o9Q?#l|Q^`(jA?9g%oEvzDm=&0C2DRR8eX<b9-z^HBIWV!Mr
zsleC=yO+;b$N#evu&;P69`!yW9<r7{)Bc5l)M6@xwdao4Xph}AE8F~IZwK6ZlxzjG
zM35-`>DPhnya93IvwZ$7;xF9#jOx*1oxz73whx6bs{>@HeLpRKS-PnYj3!=5u;!kx
z&NP`W2fa+Ljaq(CnrwW&()AMB`)R&y;DdbBO`YSmY&IoZ3*12t*~;V#pFohPn6S1c
zy`c{$k)QvR&KgxL@vkrCBq;p+^m3VT&AN2TE9aAB=~6n|a{T(bcp1My^!s7EHQvF6
zAGhB}d9A+sw^3Yrz4}`je7OqBe2JK~|44(~X4t7e*9WslIb=+}`OLQCJhswdzw5O(
zPLr|s=--~J!zYiyH6I83J)v1rwq|A(xYE@~Dvw3?hWij=Qk3GadK&Q8dyO}{R_!=f
zE>w|p(Uu3&y=To#aXFuni1hCjKfriys!-K(exvr2WXbt97mXSogcLjx3HxSeNy41s
z?1DC6-p^w8?3>O~4OQbLCuyOUflzJ}$DH(Oy!R{^Z}%qyQ>y^fzoO|jcMkRj-J;XK
zFE$*`uv_6iYj9&fI#lF+{zU<LboBOi)5;nh_71&S%vmv~Yft*=hwk71#Z%+ZpToyi
z6C8I6RQsX^uP^d9F0?9^9#KFmhUrBdPn*gG;~X!YN&b`r9&J0Ez5J{(BlNrc?Y!^x
zVa;C(3<Y!-pcg;zFa4T&_rI&Rniqu}FbI~wyU2(z7v?cNKbA?BRLeC^an?)S?|Loa
z?D`aJaxz@SsxNJm{x@O#&?od(Nqc*nf!VCz=9hRRn$B1QIyOK~NgY-)+HOUj9*o%@
zt&l+T9&l2p#Z@YI2m8C^u~IV0nLAYZaT#|D7)tThn%KB_mwo;D@@WNIb0%8wbm(r@
zsqC#gYFc_mrk1vjt{y)3<#)b6j7>b$AGe{AL2}*BRnOOJ3mX4jDK9-!XZz7owtVXi
zS&8ZBHvSspb5I~5pb&@d4T3f^RU{g?<U*<b?4N9=Z4zVOUH+p%%{k^IEr~d|W@aV7
zRuNT0ge|)bO>)AEU%Q2GGrx6bEv!fbNlgMD&oh<{EJ3`U6iGBu^qjq`H3bUEXZy;S
zYtQ*A)<yL+_-h+gX}aFyZR)mJj(Qto5xhdTW##2nzWKK4f%xaa#erm+y$2E-!wFQ}
zhRtD;TVoj<Y8fKoQah7*;;z%p;U{iH!cYLEXoSp{`C6lD!<GoyZ;P!r>GDq(K?=*g
z_qV27BIOU)1|NZ`#2$vp&2%So8?`=EJlUNtS9>fLbt$t|-rzdZ8g=XU!P<YZRR4X9
zaQeA>JyUJe7Jd8A*+Fs+!{2C?f0t*6TQhB+qyMfv7HvMI!vBefsKPv~-w{Yw8Ivl!
zDEx6)QYxA13M5mUQ*peJ-#K~097cdMek7#eLt<13qee<jyn?f~XvU40jAxorBYA&F
zyCUKrfe!;_$wh)7yk59r5?5JtjHo_O0~SuBaDpM%8#CL^dW%78ahRA~xMr$R&SBuL
z*%v&rIwpeZS$Ff=X=HrzzSQ0{j0B%#Cq0xHev;;ejE!BWM}y>}uAWnuI#B}o3j+}t
zRk%PLvEIlx1J27YSui^Um$X{BNie3(#>g2IEyq=7PB!cpq?IvyG3Dwijns82f4vss
z4?kF*YIZU4_Nt%N$2ZiLB!qj?dg{`}z?qkZwo4bgC+mS0i@Z%0qtVOi;7O?$B+V5m
zE8}gO38^$aE6i`)`jew0y=sd?m0Ge8St|`MUabhL=b6JLgdI;U!0lazyQw3C)92s5
z^l+8FF?sd9Q?PE}xvq48YGdyg-y&xf7QUxX5u8V&!^2J75z5irn0CRq3M@Gj+8Kio
zNt%s8TuLBy$#D`uRdPXJJeHhQMjAvWIb(P77Te;aKBx8hXV4q*M6a0l7V`G~Qc5Rj
zad6=@Wav_d=FgrbSFN|5ZzS|`r0MOcI6<{e-8ccqxXBy|xiH7B;{{(b=j*fOz)1rv
zsbC*Y6h&c|F598Th*V3!24l{ew;Z;lXR$Qt>KlptDsk&BH0(E%xlK|^D^Wau6~6||
zu&I55Ilc+ovX1?uznw#ddyb55`$zKOJtTFQRJadWZT`w~D`KCE*H8MtE09sh!Wehk
zz*p|?apA%{(T8bMGJ201Ru-?tLXN6pZ--4~Q*A`*&xzlT+f}7{i~5@@t&4f*#_#ML
z@tk9?R+ad7`OxG18!OG<JsEp=Cj5%IeEyf}&~eA1?`kaTzw^;-%7~VznlAWB+;2HP
z*#n=)G(;eiK=!{=N<803%E?eC0DZ6!?G7UWQSXGOYj=eSB30Yh`K}?f^>~!zM2fi!
zjvIJ1n}|spCT+*aktk3HDwu6r>jDNn$UBk@v<cL8s+#$})MnAynv4%fl1f=`v_$Lg
zn71mQ`5d({%TGD8LH);6Xe&*V8WR|__|$xMC|R`4xKu!1cX<9vA~F^jc;3K<%$xl)
zY4FvoULO*%e4R`~*$eE?1=P9ve{zfV(F08~LE2UG+0z9)WLe130{x%ak~-Y9-?Z`O
zh{`8zv{fQ6$04pO$EoArImKf8^i;;Ga=k^gc&L98@9N&@%B^ac|4Hh4nEfm=?%Oi$
zTh`;#94e_KCMxAG#raQWmH=xY(vRxj+OBkEYczR?RTE~SuP=@BqSJO5;a|yd?2^f!
z1{OFymP(n&wkb?eAbRTe1Qp5+Ds6v);JimJvJb#Pm(HPSJz*Tc1+2M3!szAs@Zgb(
z>V?^Tq!s#|_Yy5XDx^W$)4Q7CVVrO_myQJ`fDn6R5H1-DSZ0>s3U}GA_o=To;rtDV
zZx61*PIz&o3{e!UnIYZ>epRky6eG!e3()riX;oWLww)20jPX9S+e(k?#L`-4_5rxU
zILoS$T$D#Tov?1_JHGRUMramMHrD+8NQzsF{%n)FsEtYInUAw|57hP3_EJ%Tc{}ah
zg}&K{sUa>Nl04CIcg_b(EeX9y)1w$~9h;2a2(#<n_c25r-gxVm4YDoSqOZ-Dh2A-Z
zZwvRCTXW>6u9lrz*gmpf4c5|qu4MD<K~%TTUB5Tko1wq^ch<!iAc*C7NGNQ2)YF+Q
zLTcsLew6PwBI;Ls{48HD1VM*^Rn-1hJTFi9La~bw!Npl=i1lWwaiGLjn!R|=phmR1
z%{+FJBw+P~y>u2t4Yd$SpMEHc5esu6#+eQNLU{NOWy9VB83cwMNHRY%nW5`Q<CdT_
z_^%i<RxmyPq>*^W&&@ajlw}JNMc+D%_~W1Pa;(A{ISYWhv;!$TiEIjEF&W|?Vn}2}
zQL!Z*TrT)+&i(w6tI?{(5((#GnL@bUb;fYsqk%1-4r^wv{UhYp)g73_GwU1i8od?1
zUeNMl(%MjJUCL&RgmHQ5-d7qF0`Gh$H)~2Z)U?dc%#nWW*^J^~mtM2h7fvf?{~#67
z%2AOe3zp0G&Ka^hDnGh_-`eJm-|iQmYTOleea;H(J;c8giMv`k{E(uObWJW|cqhk(
zM<y?Lsy1pjQ{!?4Bq4W$zPP17-~>5em+PDx_#7x-MI^Ntum1=AVNJoZ@Fo3s%iaF3
zBp;O)mMCBKd}+CV=a<d&E?s>nhyJ~5F6O1w(6%u2Bm^<yq|Oc7q<A6=8p)#uiEC?6
z3piCX?z?VsITJ>+jtGjaFW?M24A&z~LU?*ln&G=?H^vxuP=0^2lgu+kqxjiC_!twM
zB@YW#{tKeJxq78O|J-4a2BEE9e*>~2Y78yZNvfhjLSd?1nPCu;3OtlS5<{j>1c3C3
zP%%I-M^!YW@q-1xQe1WM*_sF{ZM~6Ff<RVs9K`wE4l3{ANir69Qo#+}y$ky@gTsT=
zvp#+IwEWYf>Hn){YXf?A)NelAN}C>}Ou}yD2u3)@$UviyjD=rr7}*64nF=0z82wq%
zxqn&4P`S?~_~*MI2XxeQ^O$r(Sz3m8POA`|N%dG^tQh~`<w+^i&^&2tDNb`b*8Y3%
z{oA|(hJiG8%6tRm4}Vl&AN~Gv$G*0qE_)|S<srQ%yV)@R;NMS1j|3wA+urrKx^nHl
z8r=gP-*)(&UUJnjJH~_==bik?%Ry68Lfe=8J?rzZQ~4f+D%86isay{HZvT0i3MAx|
z8BYXD;GwynNE6ofzuW+A%fMBuvO4G=_Il)(>{oQ?bAs;G273Kv+1H(QiiC22uM??M
z?8J|3;FV*z?5kNI2ZGOutPu{TM8Aqpd?gAYQ^@%VnHK(GeIh&5GKxQt%_KXTrj8=g
zBQOlD>wGn<{F#-~tT*;p)8gB)Mj9Dp5Ao0m1Ehmf$tP#_15V8eP8t{mTbbnoXIbBf
zJq^@2xs-7R2_V0IpItO-2U^Bb=YsW@V@Q=BuZ{vf%Bu3@aaR4(L0*y@4du25jH1Uz
z9s^x?9g-NkF=Z829P`fYwEB@0K>kK-x!D@m<y4OoSA;Q~F{KjVh8LN4`S7=reV9v1
z$W=h1T3E>ydF+yDuO}5TCnX2uT6rUD!d0<RB?{c)|GFqW;yh)|p=3iv|6W_Ftdb}>
zBoP>I;k6~Ay9FJqhWm4t6RP<;?Uja?Z;fG;<y_H?bCrdz;)2`aay3j<mCTe7VZ$0}
zwryzyK@3|1IC5n^X6lG{rt#cn#;%KnR*B!3fW2IF-K#7_p|MQW>O*hA>iD6!A;}mX
zLvL1=YlnAts%ik|+gNW-t+Or7&>Ch3Hzehbar8FEYQ}{AuJER_tdKK@?~=mVltIe2
zuW@C#)rMXR2C@DMQQ}P64PY86t`>zNY5=4IM1;03I~-_zHf?=o7<Dm|*6p0h36o5^
zOPh;-_BNNAnn<E=Guxu>%<evP&P((2O}O#$+_HhVq$<1*^X|3_M<`zFmrj~GmqZ%I
z6hTDTks%n>xJ7tmU~k>!R6VNrB>Yu9W!<?M-7~ExN!+kXzmjW?^qh22mRtm{=wWO^
z4CK9~r{Ur-E5Np&*Nzf+uL^%pCDUc47Ky0~K7fRnR6T|9dpo=dG2yCKuSMjlJ-8+@
z^{y&(qTiEzSY$QiY$Y`}t4Pof$1_@C>IX2&h*D}!epF^{$gX?X^j+(fo%TY0Oa;Fs
zksr0N_hrLF*}IPaGUeUt$p8~ilvRBIrKf$>-AJK*N3qcu5>vl>dy0nigwTDg#Gb9x
zr1tJz-Tv1EO_!bI-A7pC^q4A+iG{#k-c%KS|JJ*YmFiLu4aEbVI_z^^WgcEaf-w$c
z_C<G7GWb%~c9O()6EwY^*xc1p^&)KYChOKSSnxU_cJ*5JGhMPbgYSk~ZBR+(>?`Z6
zCKFj-yH1gB0t+yIIe}zH&g&zB1yc>kFd{+%Q+f6pqFewt5;SZk7JsE0x;~|?K>*lY
zz)#2Ys~a24QLMn=nmhJ<vD10nD)t{(0c<sR=z6SOtz}I-fe|(o2z1CeW27(fZgin-
z^#V|J07T=S6gM_J-8JSRv1_oN*B)*JAouDhRiD6tO=Ck7Q0lU;UhVG28~`5<xR12e
z*A6kBo-^h;%6Byh<}sR-kA#{?9QL)bl(pX8wA+n{??SCyMsO$UXr`<#cOY+`T5sTX
zIYPA}<y*2wW?S#>z+zMH*cPm$38_>%ECuYs&JAOm|3_k<|I)AY^{Klrt(CW~5M-2u
ztYZEPg@#Yr*H_w<-j!0s$`#-<2eQHbMvk7ZU3@96$3oqK@vpBFOmtQorVmVBfAyMV
z7OLz1-sh0|=F)58O1Lzpxx_)l_J`{zsJUp#H$t{$f~&c}`^O(f>esu?Wf9+t<X9g*
z)z_~lj-BO`EhNEnH<a>#*FBpC=7814!j+WiZQ|0@6(ee@<xSy_F_-Mm*w}}cbMH*l
z5XvpU62IEsCh7AuQo`i0!-87U*Kp>!8&Hr$4Ux0nTMO<0#^2i?14-O2ZJt)&y&~UR
z^VSl@AiD7+`Tz(9Lq<&B1RXHW3EsYE{!vAZx^GoG`vA!!Op}ChjJmfUb5Epimn<ar
zKuG8iVSM01`&t&fiBLTn6Vf{n{1wA2?Ihl*nR&?mZupwMEje#wQ*2|WU+nv&*pIxG
zvGawWT=zv3#7{$uKaostKNOExX)V$;oUy(?g1Yah*u007xHvOkY4u||yH6`4!Fc<J
zw$RZh6PGlef{VudwSymTG-k1rZTox#IQsrELiO9=z3<avGa~m_Cmp4mkD!rN&^pVt
z>F;$1hdrxD9UXwH!0l~)|0@ge(kp+e{G-dN_CITfAkv?U2mI(cKXUOUgNCLh@5EQ7
z7&3v8RV5nW0N^jPG3=MQ0X%bEgFr8jWk^f|*LQ&J7Wmj=H@JrAEcKS|f;XZMWt`er
zKS<W-CLarKzDm%eTdonIQ`HI)tIz#{EWwx#=YF|X>fmfU=m^=Y8BS+c1Amdj<UGfd
zHMn!V;HMFhLdkS8OA>@R1EukjG_(2>o>Kh$4nMjBr8DmdR5OTte8YENXLT;{w&u;C
z{JZ!|<G$!X8mqvq>?NKTc#$a6Qj-||KiVQ>cqURBW-_AKf3y+wT>_O0!Z}hr6z?Js
zbMoLWL9L)E5JZ+tRc>68UJHDdQ6p2{C0cV_hM3isBQkeM)_sqYeJn+**fm!nC3P~T
zoZ5lc1ghSD--GV1TBKBY_ESar7<+tz9hPSJh}EbLqRAA~eA9&?18TjIs_<Ll%=?0E
z3oJ5`48xdFpZ~P5Zzk!+Se%=cqjmW{Xt!UdS=qk~*1xVTS?{KK77Vxi>?Ai!x*j{T
z&kPKM02xC-KuWz^u_jtV=mOSE`nL#4%!TS{$j>PtPKT$_pGS}Iave-6;u58FtQQp`
z#1{A;EQmVztp&rWarI-w!<w1xR5QyFT%ssVfoxSp4>Q~(Vh)9YSQ}XS{I`0#B_V4M
z&amgtd@9pxN;c$p=;Dp-jS5M5X*S1c)mu@u2O<v<An&EM4bdg(v0;B@`(d;H1`z9l
zvgUZ@@&G~hJy_|X9Im$3PWr2sVQ*9ig%>|g3;ryM`T-wBfgeA@s9Fw3reO+}C;718
zXUgSrXO7l2yLda)>G3K5NbduFpwD$;PlzdPZBl1&_A~z4-^vc}Ld9z$#nS?t;6cJd
zAz(;wEc5!rvsKAwh@{`a;t!PmhDJ+wc!NiA?}7_>&Lrw&9xUKk3yBczzBq2(_B3Ly
zJ#%fxNUP2NL<Bd4{jac-3A?cJdaksHw@Ko0tOg44|Fy8##TwoIe<A{+NLc;U?whm^
z=jqRgb*f>h<M#yls}h=Gzl_{V)@fwc`QMl#V*d*T(+bcN|K=#o`Y{nAL4@Fk47*R|
zo?}R8<Dq?+&|VCg6#z18d2t(@=cAZ^2WOjKK*C6zESuHq2uqEHKmMqY;W!z8=fa09
zcJUWHt?L=~FRG|X@%Y-T?EiWI@bGzgMBGI|{>4P)^TeAOB`XC8B%*vSto-`CJn|Cp
zkf;35c^z*=QQO6E@MRqtAvY6~UA@#Ou2dXZRjGAQt#w)W=an|e^RoLtN<M^_S1iG;
zh9S6!czegE`Rh;Xs49w;8j8cXOB9==l`OX};<yo=k(ZsZ5s&{|w5s*j)Wr@T_dm~x
zY<u^h&hkaCR$u#8_&`u(b7DjzN5AY7h09f3?W3?Hz26qhUwS?(L6vS5j_(ht-Rk%l
zE_521cpWM3j{QFTYg>7s7W`N2;!o}G?jGTYCQ_QA*oQaDn(F7bE-Nnka{j(J$)}<F
zQ!4#o5NtU4ID&Bf>MZr-`<TZ=NBO?koFA05gf+yh$U=<dM+jSzYL|90qKHG(O(yci
z>-k$9vt4y^Jb6+{L%Ot84EP}_C)9gVk1T!*ej=ZYfNxV}!{fLDIFa_y3RCcpTrfoz
zql~RIhJzWI5J<J0Y1C>Re)WY~1R+Ks6MN!)H0<;;ZxtvcFtQk_n^E1(u>Ef>c2bNu
z%)b!DvwC~pXGm1yiX}K|F*2II-E3cY&|H7eVIu~Uc^g|3ox`OjY!%JNI-*VTZz@IR
z#@Eb88(oFLGBZX=+#Tde8)T$~%-y-YMg_L}6x}37&f*r+%0GC!4<!D5_WN(_&VQgE
zcS_!w>YQ9B5+v9M4GN+)^(Bw%lIccNt6bz$K8}2oA3l22^H+ZO;4xN^_1`7KHCGbt
z-W^7ygs!BE7bk`<E6+;pwKlbJBAp=oiAjr&uJBo>K-Q=G=U!Z6x}=g!%{*!I^;%8U
z!NqO+T(%-%KhO0LtY+3sv`AfPl&h3>T5d^AbN9f=)WYia_g{a%Pc1X?ihg?Tw$9^;
zMn(!W=#M^xwivjj|9au~Y2mGM=1bN9RTmijExf*+=(-#3O3%X2b6SSDGs13H&;F~2
zE;GaKJUWKncIVT<)w`>$j9^QYQQU78O_doQ(zXGM>sJ-5LQ%TkDTd|SDtHOm+f1xU
zagHyOu2U`r!zUz6`cpUP9WLrUH~vd!%CfU{&#vZ+n8Vtn<s!K;l2Xvjv@e<N<9CF^
zuOQ53`?x9%Xp+?3$$gVrgHi<dnb}vfM)MYj(IWG27OnO#qoFJo->o{$v-o(;Eq<)n
zyjmKJXR$o6`=3*7wAk{{VK8gD>h^ofqeXHq5)RE0tDi1o>1=lrSgpT0c4vz^j+I!S
zxKEefeni4{iQ1{DGAP$9wK?@(Y_b2(P~S$-ccsVg^H{0v?|W-mHv$%FyYr*9(R2>2
zGP{ew-M&XT%<OEML0{juIF6Uu|2eCh(bD0cw*MP;yz{nP>u}`{<<aoF{}MSIuO42W
zKED!wPuLoxU{zXrRz9r)B;{$xfT>CjMcB?<k4V@6<VaOGe@#1<OkDYg$Uo+7aTtK}
z0s@!^001JwfMY-^qz)K=^TEW<!NS3b5RhWy<faytqY+o6lT>1oxy{MTFC;1^Atl8k
zk6}|#<x<w*y`#;C(H2(M7t=Np)53{s<D~UX<#Cn@I7?+STa2zD#?l^RWv_1QtnF}D
z*U3ZQ#S7=|W8&#&<>X@S<8OU0&@LdvF(}MAB>Zl8lutmQSL7q_D1sk8&ObIGFg__X
zDK$Jb<6%Z-bY^x;&Xa_^!sLRI$7PjI$}65!JuPc&sc!4IDfs_?NUn(le{B)w#}nJ_
zfjFh|+4>WS#tc>+_W<e1jH3DWFnzJ&9FFNiJ7V)^e=p|A^i=V)f#{jTKi7CdOl(|y
zLSj;KJS7J|HzPETQQAJmpOlwZK$=cF=ZPAxgr{_tHY<Naqg9>{9VaiFQ=%x320g#9
zr8YG`%#B)HtP4xYbI)~bLcPARq1kxSrw3PMNXae0O8$CWgF;$>qGfw$cW?j8*Kgl{
z9OUJQaqvotZkaUbTxe79Qy-de`ETyECCTz|=<=#=aOJ3Z=AFfJQs1LVi%h7esPx<f
zr!tPj(fUh*U1$ls`fx9t%NRM*#i~EfI<E4SK3~qnL&dj?IoGk;LQ_`M!y4o;lhAn{
zERcl!9-vycRJW(`eUnw!t}4b02BKGdG6J~k*1RYIx}^j3=Bd=>7RjrU7On*e-=wP0
z^9oMcE5PftIDaM!omfWR^=zaN10r=)Idw$zq(Cwo#8x4+(G=&G1(JA3?=*zf-I>rp
z5<RJpo4<W%cYRZ4@Udr>s6(kfVNE2y0h6wsU9pvD1J_$f3xx0sH&gJaA_=2|zg+>G
zFvKmLZ>-O=Vkz|dU#e`6Ci0Vp6)ORTh?$`K@l#SyK0UvWByI^m!bDAwGP$%fnD9W`
zhfAm_WybT#_<R}Euq&JaF=PjvoNBHncAjzJKAvIM5X(NgtO{faMMbgBdf^S5QEzIt
zByf>wqmmkwW&SZ;VYhxOL;0)#0+B9B90Ah4mQW*`^<AIOR->ro$uUUi+;+qUOMpRW
zMkeqRI^z0#tb<AN2uzxmx=?_kdmTkin>19aYRU|W1@pW;0^Qq!XU#fF)n|>8iM`I8
zN7k^lzt+cAAl0b3MU((V-qXa|9Gs>gs!*&2pGD2nyl!Vj+1}2RE&LXVC6_M20UMvf
zfvPpO-jIxf^5^&=9%^Rbw3ODAKtdb#*D`0q(pzLzQ@aI`AxoN3rx95-`(?gV%^$am
z9P~p&3f)~`BGhhYds}_mc|Hfv_pbu3V;Ww!V7$S?12|3)HH;1mc@b{j)^Ltp06?PY
zoOuyf0xYk@!3r3-zZ(_=eWqR_s76MIMgw)8)8EiXu1WOO;WU<ZLu69ul0BGIoPrvh
zyBiN`16$n!K`5L6u@2bw*<r*Lnh2bJM*TC!2yN;sIkxm8^8R4lF#4EGf=3?Cu2HYk
z1n0&06TvB0AW9!yO6k{kNLN=eH;2ge92})@CSnR4SHaNg9EOgKR)5Gc`b_xQUn!;t
zDu4_1-PG7na&M{)G5VuPGQSB}nq4On%PFFs`O)DP#9Iwgc0|rrBYgQkG)Y81)JZ93
zC+aPp+H&Ava)#WW3V2;pU~vgqA~$=4d==5H1^l@y(-X&{z+WLdOa1Isaxq3FUCStm
zbPA~kW5nfJH3X`nft3x}@&NLWkFNezk5Lko$A=i4MeiXJaU%$4_Kx9W9sj4I3f=;%
z*BCTFr^kJrhPM<z(!Op7ag(6z*BOG8nZ)ds0Ghwri$@BxU~d3}LzH5gn(3+p*x@*c
zdQ$}7)t+a>_p|?u$tV^g@}!)kg6D$5DJ=hlz9V5aX1nwt5%WJZ$$16|tycnX(mK+v
z;>FBdBjdR=_9V%P*VAmqh?6m1o1I7b?GDn$ft3hn4apWjIj5L37Lol5=B1tbBF%<R
z=vi=idX;qTZK|#fV^leckwH19so$7$tt!+x^(UhE3K-ctz)+?VQdYmB_W+*fF(fbf
z6Tt2B2z_T!@N=ROWg3=j(xZ}11!z@}wRJ3nDYD2Wxk0lKL<9pt)+_DVV?%DJRHC{>
zV*m`TO-G{631->!2b7TI36eU+$fAB0&ZgDM)WJz1-4Ld##$2lScFFX@pK0#h**gdc
z@E!Q5(cw3jXB8TnoDfsHwTGL4*@<bcf^{1>^?R~)Mf^8ay;SX4YZN2SkaL2Y_6IBR
zmb137{-qXYxvFYY6_J4I26z{M$M5h6>WFDh@h=X;6#qd$3^MCAK?_qf4o=+2Jm;8e
z?2!i}NM3;}EI3HzHDB&SZK}wKEU=~`P$4dO%8k+~CbqKHB!6<DR?`$Z9b5>m)qQUO
z-?ow%Y5Xx9{!}j^BV8P@V9Bwo5lAmy32#8s_QMS&Pjg{BfLQ=421KBhs!#wIqF@bi
zY6uAP{iu4IHt#s{UFxbew@(;r0GQGY;3$Dl*5p@2>LiTm3kR3Z3K1H0dClO$L~E3j
z(#qXk{qD$*&IXD8%a5~RP_q{A+Z#fb+-6iv3NlT4IXIAq(&;lIMXP_%f`I3#F&vxa
z5%_52eL&1TSjIYlR7x|hX1G1fSq6ytaA{y!*uk6a^@QE_!w7eGZ;sCTwGVw7T?{rR
zAGX3f9N4r7iaqazVdfjDnKjZFwdJB%*^&^5*L3Bu`C4{?F);mK{B2`P7*F5*HhtR_
z{%$$7MgtCN68$(3Oa3!w9s`^et-LrwJ+XLs*WYq#lm0~?D_y|`fIO3dGfbanjTV(I
zkqC)!?`+}<KLD^}TqM(eR4)B{<2?DI^kDkr#W_t<<}vLQ6FnLtM4i+tkZJ>|SAVG!
zMhFdmkK*O0Oi*I4$Tn7cIz;Z7C0gM5?drwcB;^R0*`i+U!PqQ!916iKa2zMzH8CK&
zJ84}ulqacNLsI~m>4UqwH`HWHRbRkJ{RybYQ<}8ggbLRuSl~566lEejz94Sc(`fl`
z%Bc(hrm83Y^Y4mb^aTKAQwciAXE!(Z=(qp6d)h+C2{6bdSpQE)(0?fmjB%k*o(krO
zVP;@?1N?<J5f2txk9l25>bSTG7<4!O?#f@xF200;_>zE4x4i(xp6`@h+d(%9H;_bM
zTaU$&6(tcs>!ca;#2u5C=N9?#lZ8lI;#)N)rwZU|G(iyW7Bij=SF1wN6e{@N$gEQN
zb13}zF<>yc`Z`#1t`w(>6E}#&&KgPJ$!)y%@k$r<=>)*bAL;ku^4Y^<0V%JIqj!Nf
z0r}_d(Ej&t?>(spEO#!RA}KL`J}mEp$mrC@{KT$jTDmU3IZ?g%B7v)8YDcR>C+54?
zdxi2V)`1$HkqYZ#aepMeiZ_2XKD0uDsN&Ep%F!`ku6R(ZSq%Gp5rK?dBvW@TqOKAn
zSCJ5t^}zHt$!||$rODH!ET}icaj=QH4?C&#rQa}BK4$fEMoV5_X-L_9i+VbbF;HK$
z01`jM4fOTskwF&=V*s(+w=QUKdowu3v{2B4JK>vlmc_qE8MXgVtdo7to-}?@nr94p
z?cr_8Dlw1SSBV??Z%|kRRsv4ZN!aBc`giu?`O==z_2o=0Cd@Xu50~yO*$h}hx7!=x
z0WCi*_(Ndi6;@gR4p{ahzGJ7)65zd9+_mt~qx=oP0>MYO0)M;#pxlQ*>LKJ67NMD5
zVn>7vR}ywl7-v1rzbyP;B4KIBs9+cL3P&O}p)Kh7NO>t%<ve7N)AfkY<1W(b3y6dt
z=ScF?+OQ{j=yxn(0mJ}|H?xYj2#YV31oIJrjI%%!7-3*EZW~3;QNc%}O%SFhm&lAg
zA?0x*#QQTQ22R9MBSCz45H}GhzzAg_y6w0CINCwhL6E2=mm4pj*}im8UsBpqQpR~w
zCS!88LUOKEa$Z<+K|yj+UvkM(a@l!u1!GE;LQ0KQN^Mw5eL+fNUrO^*O6z$_D<<{;
zb0b+~v%x?@@RZ$FP$vPp>mVG=52y6sKIFM4Y@Q@_q9CpA)y>8s5qkvpAi#^(-Db}v
zLE4n_eemggXgiv$Hy*Lp$FLJm){kR+Nlef|lFRo&J_)2^XUV4lgt1w*kDidDKEz!d
zm-adnESusZj^W3I%4S6x#5!{qMRkIs`ezA2IYTHeD4;)?eV?jOGa)``!>Dv1G+!XJ
zoY?G6!5e0WS{L*F5^2d0H9IG!2Nbj_E5Kq*%^?Vt3!q8!2xarXlLUiGUm!2`6F&!J
ziDGFre{vbkX3=*D8vLXsd7i5u&YiGFcV7S+8~`zG;AVMkixGsGGZ}>hFv!v)nw`1C
zDqP}-4Dz++*Rey{hW?CC<pH4tHpefF7>_%;Nh*;A(zWqSLh+ExFv#C?_7+)Y^&~ro
zWSf{S=7Xi&l;;KCkTSadTxY7R!vP!@&a7+3Y?G?Fhd{RZN?9C|W0=79a>C$qFe~wA
zjxaU-3^iLJoa9Yqp#+!8q-x>l&=U?6@ZWEauQ?v@j!bnldeIoo1uW*40+7W-4IH7p
zmn~^GA^l8HRxF7;FYTZrV6N~^I3E|n#39owy}=qH45GmP<f=#}>4B=rj2C=;UiKBh
zLp&?i2;{j*&FKE((cg3kz-m}lh1zmCI=I~Cz}+##nT-ZfXGsZ8stG^avj{TbU+9Ef
z!}+ekoQ8id7$8EBv*$cj@>#HUF&mRx$Xay)QZ)iUs-ntt21HqxE#xO}+;+@6xk;0q
z3*inBexrB`jj*hex4|Y+g(!l?-)rA4VqQ)bk?0rsc_H$6zT#aB%OV!CoUQmR7*ZMt
z*%&UfDtfx#F2*@4c8C%`sgn6uC4MGV`xPu<ry+4V4<ZF?IAWmPLHP`q0+~UQ@(~c4
zWy#M_#q3xK#7QlMD*|jP;hQ26q$_^6$Tv#v&ixSpywcp12BD%JvW$zcaD`Y^%i6uG
zbqoSH2LZG!6g+a|d`waIPP}6z<sW!MLStjHn4wWyQi>^cQce$ZoPZ|Crbp5d*BU~N
ziKfA+(mGC;3Yzcga=~u-YG%%EW-UQ!JN#}o%q{cYu!b#ElNv;1o9>6H5L)Qg?J@Iy
zZsg08TgM$O;Qr>N5akUTq~WfsxO&l?S}R{?%X6@rnRMN1QAST<^r{==7mbE`mcUcv
zr|N)5OV95>ckUS0;Dnf@3*0cU1yo=MhN8Rith+jey8`E=x>S98atk%yr^-H}>OIuK
zXr{uaj^*1nq-es*)mo3nkRSHnlCr@udJCB_OQ!#9oBp8o?y?KR0@GX&(GIqJ`K$Rj
z*y(f1EsanOY^KIxfa#vn(?h7e%LLgE#NGdB<pJgZd2<a@kFN9nb}K#M>)$89+A(0V
z8<if<9pEJycM)@XcVyN=q-J8t_BKt?hz^e&s=}>9T|!s4qBn&W+EC+ej0Xr4L7_Pj
zxm&s|apZ}AGTylAb-U?>BtGkR>sF`H6kWG%mD86XM$5;wCYkkV&FZVZ=x=T!U0hI6
z3VFc%#m(}<P5+zSu3Og^bqlj%ob|Z<@pdab#ArOlFg)*p>Mp;l?F-g^G55W+X-;D`
zj6{YGC_%B0KHm6+rAO(k@y)iw8KT2;*F<0x9@zj9IfX#cFYlsFZ@?`oaR7mJKiBoa
z(LfQCRDDHr!EfGiQ@>1AWz7`zl*uLrW2iM-iirpj65OdxhphRvg?WwjsNJ)s2Tr^e
zCYiP#F&5I87z6r&&rfgxr#NS5%cT1dvvLP&pk9**U_}dwVAw#;_2NjdbX+2i2uRzp
z%GB`4eg6_1;GCahU7S7mZ{$DAZ*3n^>n0jQ^n4$Sp?VLQpuFle<6I+`--uKXsjhAf
z7c8m>ruDEc*^=3fx&M{OFafD5xlD!xsU!?c0$b)}?VX+MYm)8Ha-Zmv58tD6p^+Wu
z1CDS1G7lZN6)5Q#`5lrYF=|B5$k5(8x#91*>Zl?T2qrqOcsm)>f|K?E<cm%v00K1$
z^unCPN||rZt5n6yd8fw)i+??emGL3x-;i}_#!c{_wOrfmba|}4xy$N`yL=)~Uz|TS
zl6K?7jBSn;fvC$BwZ!s!#N5%#tI#9kf5drrYM>-W#H~cm5@A-=`-N_x$~M>39%9K}
zwR67$?hz;lf8zTrlSDtVR-GmJp&`=KdCq;$mo+ucQ=;4RDaq)OYnS2rObvXNZ_`r)
zIdc%F^UBW4m}L5RBT$^|tzP9!3((tD!du4MoAt*VG+Rm~i%(arLT`c(BRWKm*Y`gQ
z2-%1ERu^B@Y~PPlzLM*{0sz11A{O&;;0F>-(s93Ee+t$u47c2GNu~SZ>A*K)P(xJ?
z`G3B1au8Wjj@$p<34ijDXknp7-qX4b2(tju0RpaX)&i|ZKuK4ieT%2RvnI=j0FK|&
z80A3hgFwL#Tq5Isj6O5E=pfOMMQZ;5KT$p<%lp6c?#CJ^;Hv!?kQOplOUj8$<<=k6
z>uzZ!&I`Q^HvDu??I`%v#K$7|eHL&j#t-tJ53}KJNHW`e^QUCDXFMJrtSk9`jUTL=
z`5k)=qC=nYgw;)9>9eDLKPdK};=+a*c||1e^%>2E;f}*P$wb$*!cE5?M3aVLP2P_>
zt^U<jd~Q&bArEQ$f$De($>9fg$pg+8MS5J@xdI}EGb2C#d3AhSXHov)_7Bw9@4%P!
z4;wAl_WXiB*MtwW;J?2_O&1I8HPOsjW`8yPe7%$(x~cVXmW}-LIQix?(02Z(JyJx6
z$C_4qwA}V1LyPrp%f~HIn^{SZ#5@^A*h#M~Z#qLHqUVwsf%pVKER+l%p&W5!R$9IR
zVE;}>-xu546XPbar6my)=@b)IO;Equpe%?LG9=LyBhhXZ78i)6$c(jIbFOiZNnUnl
zQP>r5*llKula(xRUH`8IzpL&<%-D}3H;j*!k9UvW3%eo}?TEKOkH1gcZE4@L+mF9b
zo9wNyr?Q_gU9y*U6EN{i469G{$0dEiB|a!fd;m{O+)ql`-!HrRQo;VUO66;f!`IsA
zuk~eL8wbBOuYGO3`r6L^tyAS&x5Kye=+tZLj?@=OT2AA%J2Gjp$h54aZ!YTq_9LJ6
zFO<YG%E4&T-mC9i^RUO6U;J_D&&%K|=Yev^`8#NeWE|Ia-!~bqDA$UNk#zvuI_$D%
zb(@{yiwejp1h8Jfx;9NdeMHW+NdY@Pu!=wU+8O~YBwb`D!4g0m6`*4VZ63^HE#$%O
z(t+CgQE|s4N9*C}y`S&fx8Siq?RK|jGrq!fsC-kY+%B|ujk3Nu&{-~1jSv6eX(QFG
zgz-1T3obKr1N+vtv&SbvqOTTR{7;Yqw90LK0Jd!IWl%HCiR>Iwra`4OkrVs*1i*Hx
zPGu?KwHH7<Mg<<9AP^iFd(aT*T3!*X2zQpbrj~mwWAT~Vvm6o?4$&>AHR2!<yQ33C
zRc4sA&hh!{xTu0L6V%qr^otHl&$oQ$LkQtNk~+!!hfaCMp%Aa-RNscBM{_84M;DQX
z{9JKfMrUJ#OfR9{bAM;us_SBL+=YZ*Nd05#`+^DqOt9p`JO#)0kY$umKwhR1<I?5%
zJ)@uMxXW4~)2*6|wL*vCYtE$SzdH{Ko>$g$sTSu57UqQ)6@;UwhYDLR3MFG)W45Mf
zyo#Xp8XFs|-{#oIfd39FSxK<Dzd9bKT^E;yvkey(!a7U!;!46AOI|8)sv457At2z5
zOzpH06=|&ie1S#*sf%mEHML3Quv@GkSkjTh{kLr{WrM}Wg$)~(O6Ttv$SiHL%%F`~
z4hC{}%q1d4!hNagS3zcikb7U8o&IiIMs{8TpD-yaI?hI0;kD-Hfwhv(1YM_Asd2+`
zE_Y2`zxx3}|3g?uJtD-$Cnl$+KhDZ|qQ~hzvPP-x?&faeAn)GUW0}z2)Aii4M>s{v
z9f_%TonUkB%vxO*)^bmQ#9Oi0bUF(Jdh8^>q4x&}lZth|#L42JsbGQbCqK_bS)U*!
z-An56Sx^<m%kvBF(>*$BQju<JpP-urITKqvW=Y=FzFrQJO6yP9z`Zv1(qt>>*vK<1
z(=Djk<jECaWl+0zS7gyqCrLE!*p-Nv`$duL|5T{2`ht^vFhGOvUhL%1NE#)pf;uWt
z>h5bA(S)=xf;)*JmuBSgDNB&MfpK5^uCBhiAayLvLm<xFo&2Tx8;Kh>Nnw!3Ou1?z
z{o9L?G-Q5!Gj7>wlnjhTs)x~XVdE@2JU)mm1BN+cc5x+{pZ*V3XBpMx8?f;eW55`r
z8#Wl-DIvJg-Q8URlG3`3?nX)-9ijq)f`LQ2TSBBk5dMf_fTFy-@3;5c^WizqInTHI
zzRq?1etb}3cgOGPJ~KZiwK#8sVLx*q0g|My4D@>UAu4}=j@~L7-PeU=k+6a3l7SR~
z%k_~j{6hg1nc!4Xd_yp|fBt~x&)$(FhVRjU<Si)4qv!W=oChB4hOHui6f-tkb-9){
zk{IVvd`Uk+uLi*ErH}fF?CNd1eLxMb%W)i|dH<&*1s678GDAIwM+$?EA21p5x8^9D
z(b9`JEQ9DKvry)#V!Ii-4<Er+H=YH-5Dszv$;>Pqtz_^RCkn)F;x`S_Et<~L6toGX
z*Hj=RnQ2gawwlSH>HEUd25s_lRK5<6wZQ~c*(Rnn>5Z*swAq8^XR7zB1dLeF%X73n
z_{yzWney|Xl)nB-oW7EWn@OY5r;wbqIO<rL-mH+B97_@I@JJRj^YYL%2G@xq>PMvz
zn^6X*It|<A??&10l`B!77fpPSC0s}kx5Px#Wbz(_O#@{!EYt1R#>Cj;@iW;|7kF>h
z*32&|`QA#9R8x4W9U6i*+rJzZ!zE{+A@JH>^J$R-ZZLtEZdWDls4g6tZJfFv0Vm~Y
zc@_C&Py5UV%5A-O<oANTcnj?KQMv$Z>}2_HJu?lTbkAK7*f6k_a4$J}!eaM5;cDOh
zQI~*l*sn^LT=ARc$g6L*9_1!em{oCSjr2nEN@3wH^rOu{4L|KP5Qm7iHFwpc)HFtq
zw8&+?7M6xImIty=XRp;u5~=StqJ+NKWMV6Pmkjc8S+86d97majmm|HyZQPDmj3QPX
zR?QudrS`0L8=VEi$$m0PQ+3Llr*RGaueDf@1;)DQwsaI55H8)f_q^QYKDvF#bTd@x
zRyv4XY)$w3P}`ZVbO}+gd*JUu!J-qf$vnvYCHFKk74MQZWNCPDSbWRAg_uIV1zQ-<
zp-YH(wicX_c9|xP`&+Y_>-z8f;ORqiNSZac?p8a_)<*E(5M+~<%;heM?MOOFd+dA@
zeJahle3GxohbMbHhq;}k*@CDLRT7#?rUH^_$?vkw617Pi-b+JNh$0e&RLIZ<SI3Jt
zKvS65s}d(fmjbej1XL^H1_zth7+m$uPrC;YaZ7k!lM!nlVGlmyX_|N**5%1|(%XMJ
zTKqbj>EXiIp1>;dp@NKH|Fa}^Ra=~3OKY-JZT=G^o`|Kr(m>9k=@OP$QL~}J;NdEy
zpAz7BneQ^$wu<{9pIs6H+Qfj4CjCXR>+72o6cooNQg7|?QwA0kzOK*)S83?LV@L79
z>>3O%Cm_oekH9-#)>P?vNsD&KZ0oTNXfhV0T-x9-!CwRORuXr5=MH`5#QWbG8NhNC
zi!nFS!g~NlBLC4s%@}vw5xuHt1c3jdW<<iqY(TifE%W)l;AKksFq#Wrd2hxL{#+5j
zG*8U0>|&o<vNz$|IgMtouo5t98r7geW<QKi{8~yf@==ikO>=qXCw<EbWN@$ebddrP
zQb`K3nd5mckCC!yG_gbA?%nMh`XgRuQT(K+PU6Qn3}Z)pW3@$}*mS@JwZjh3MgW8^
z*?>;1bHlom)qxq`IV33MupZ1+Xr3bh`ru{}VMrmDVbHpHZaPh=ARlxlYg4|imKdhI
zDILkF0lzMNkFw<lP`?pt_KG-*ZUjL8Rwja%R^IoVY2DW#i3Lak9z7j#iy!6!=^olA
zy>)4SQsV~|Uf-}J^|<4yS_CvQTdnybtYQ31bvk1&6+4=X9|un)*#pbo1Jf3?d3LqX
zu5o&@4hxCWZCjl2dlny$OJ2PBAz`(x3;_3IT|O=sOBJR%RWg`1eBj&%>!i?JRDLTS
z3&7tG4((0z4zYix$3ydgV|1q{pxNzlb7WiGhsqNK)APC_+p(KUVbNr3CJ6Iotj58;
zkx&ir4EMW;H^VN1N523<WCXs~OdCPQhJ)>lfEs4i_VU_q{FB7%B)O2fF7*IVilozv
zL)I@mR@s2CFX&M+84aPqy3R=caHw=ePunv8biO6vmg%{|yd>0LFqFnvF>Sq7-3L_s
zb}PTqOF*idm1$=hEP5ho-GYL0VzFRpB>3UHKbTdiH@f?1cju~G{r4}vIBD9+7QqCR
z!Q+%{vBYc%fns{QDfQ8xAh;3<Bw4y`5fCncm`|bgQj{yFVMt^R{NHgTF!6rufM{mf
zYyMTvw(sM<H!kOTJ2a_q`@ICPungx(XGanBi62}GA9;|VMdfw5O*}b%!2rzzs<CUX
zQXj=G(q2Re_ytKjpRSbo5r1?FJGsO9-6$CR@Dy&S#eoiXihjx4j42a`;_`iv$=cKh
zckUlvt3geMD|W~s6W;6J?T!{W4(!lLkg(w<C&%?*MVC)L+fAvw{C#|CYeAc6{bHqj
z^8s9sb__x*`En*VI0S9lNRuenS;FZ1Z9wM1SBxh>R?1!vIGc~O>h^*PM`P*rg1^On
z{bCoOzJaA96OqwZEcpTh5iV&)CMCiHj_Z1gmAZzvOv-j2DLoVQZ3V3n?lFqo=$7BD
z*nc>M+P@peilfGghhPCv>8vj>#*VklC^yC&Y;2hxeCzU>(yUPGNxi~TMBwFQ?|&DG
z932e=QS?Ov5P87cpc(|b^`zx^9Z($Ijs`yv%!-zI7&Cz`cpa6n?F$ZxePv$wBPc{I
zhE~}4@~7X=e?P**(x&wII8e9SZ<^X$jeX^E`BGYws7WU9CW5`NFP-`m;IDm&Ule%a
zH|cKFQG{R<XWSMc*3~~>+x14{@C%t$&=R%pa4_Ij=HA<?-yc3{{iF+tcR^v#;nI83
zY5SlZ*CV;LPf2IW;kyPQzt07W?ue}3NI7}Bo_oTZcpd`;(CVDGo65JEvd)^G@7)5H
zC7*Gf0MXK*1T>Op_+T}YRVSnF%I+9)>j;CC6TWPPk@vy7LZ8%$5OZk?>kx{3f}If_
zEKLGC0HE`eEQ)4z!FeNm<YekR3Yie7i!{`?6`FuFFDFo>wZe)+sLISh{3wW#+XE&1
zWr#c2X{?|n<P3rBEI+vt3Q*t8pnhd0|K1ZmaRQ%_rd<f3U2diQctX1=jo1xA9JC_-
zJ3)Mvruz{>ciu|(_k<28gQN&WQnevzzar^n=$S+5+1u#3ztXd|ftbwvD!m}$^!*rm
zi4X~D@vjWJn_$stIIc~O8vDf}fQfPd+|#0$0%cZq2P=lk?ZFxR+gR*Jf$HRj5>Gh<
znq~77z<>lnc}U03s2<<CPYh)fx%@<(*$Y%5H%N**n~*5W$m~`0@_|H{_y)wr4YDB$
zst;woJ*{rE#jcCuc*f5a3FLZ~%N>X2oPkiNV<`gs*_7NgPiDx`Kprsy^V*b-66$+!
zFHnzcYan?UD1&Bh_e1nvy_x6$K&QHC?&0~?$*0pZelFs;q&~K}Iv!vWd+H{=9Z9!~
zk2S*Mcn^;;mR(j%<gM$4sN*S`lc_9ZsS=tX(a8e8dIbzO1tWpNLElu?=mU~Ki|PQO
zIN%i%f$hG9$hr>3c9U(U-^B?9waaJZz#e{20`VB5SY^crEc~K_P4kef9%R-j0|^O#
z{_b2+xs(8nF!udRW1ci^zEpC)mBpnCS@O@m0B)eG-wXboL6i{#6;IW<V30~CNk{g|
zEMquZYXB+$@gY2~Op=@(YEyVlwhYhviOhQdXrm@I1rjK{_Pp4@(C_}@&Zi3W+8KZ#
zS+F}2fwu+Vkg!du-y6}T{B-}wh!Zz@9b9+_qayq?D}+dQLFQ-N;k-G*i0v&$;FT^x
z%HhBtC_(2uH>n?{mPYg(EvGksf4SM-&S(MQ84E^8_NwxaQB2;VCCk~ooRj{*sCq0X
zqUA3+%NQU%=Eg_*`FR6z;dlKL3f^<;#!R@%1nML8yPF(jAz?Q!o+`bp(+#gHvthWV
zvb=oxrTgoj`u@$E9Ip?=W<gv5-l)+{E{$Mrl7aXJ5VQWD@^ui#hs67@H>*Q3(GMw$
z>AM%AA-Glr+Q^q|#|Z>P2!=$kcD!Q&^r@xpW1<8avm&%?LHzPWe!hC?wC~bC2QzQ;
zElGx{{xCJjlryT57n+_IdcdUm+d$91+E9WZu?mumrUV*ja^o@LYXotxh%XxX=~yZg
zTF?7hO!~YLpYIgqrlFAK)x{8fQ|b{}l@1FDW;ugx`Pf?u4xS~ANs7q-EVse5v5DOV
zCQ4~cIFdJ{poY3XM8}pw<)T(4P4?BeumMct#yijJ{|<;dUK*khtJgaKxR!Nf@r{DZ
za6pchHWp)?iqVN3%u4CB%hts0Cw}IDP~RywX+1Pngjlci+o!r|xkTC<qMfQ3oHMb`
z6bo=Zh~43ibgNb|In$6K1xkqr7NBTKldSLeTL-!8#_s6CQ?i~b*c~QYI)izAn9WAF
z=>>Q9P}T~+5M{7k3mHYv)G7d<H$+gNrX1iQ?4vp?-*3ZY<>PL}F=%D*T$V?~B0NP(
zlrAYizbVi=Pa_#+v1btS-lCjnXVq&bj`ndIltTFUtYe)W`n}U^eBe-b8xu**_x8xN
zfzLj^L;F{fOh+qA{{d^*@U90*QB?yvXwZAp5EPV3^4X|!P6FIKAHMPNa-vw#oZ055
zyGoLOdI|UMU00A#(8s!<U5enR6cxXRspbKGnj?nvX`Xt%9s&!kVTPU}FT$eG{`Kew
z1|<InKGC)HJmCRe9rZG~)PdOVv?$huNuSd88lP^l1bhb!`AI7FcESU~^Ca>uajAGR
zrS-66c;!3=CRHQGHogE9RgVdAgWVdx3GlHEMfAm<!NQWRWs};&dgx-5-DCT$j8lIx
zcSU)P3h_@4#n^wr@BEBj+XX|$qk5pxJq^(dcv;U>n?c(Mb)h)FU($*%U@G@+#nwkw
z!ohavUvA7qViwivP#Aj`!4P;?()(_P$)IdefX0iW=Q>$u!u+R~Ti&kzrF@7c;lmQ9
z18*teJZO5h)Bc{Kbdn)1Q!o^kC!8xvmU~v68G=jx2>Yx9OWy6w{Ri_tNt+K)N?Qt}
z4e4U?DNPGnN=k`NPf|)JEm?33r^-yZspnGMo@r;%!x;iIooX|NZhB)%zcDl=@T7yE
ze1kM@uv=UsEdKE3j?OuV?v$mXP--fa-FpWQNYeLjXcQ|>X;J1mz>_>ny+&*bGm_Ft
zwOj2lq@gZCv#R`{4ABi^I8XjSB|(`R`OKs67NLNBv?{u^ye0kQUwgF*du9I!9J^d;
z6T>8Kz=`oIS+8<VM-|)@PWXfeDggwz`0^-5S&v1oFj(hBbee_VmVkWjU~Xk<$+}|r
zaxJySlh0@6B3H0n_j;T5lIj4Pe@oqh-x`!q&Z*5WvkZb*lx<z#%Zo%m84U22KWxeP
z+#KxQ76N=~aP#SLcUwoZ;6e9nV?gJYatFwxLk0cR=#WK^Ty8t|kkX>+Jcj9e%wran
zs$b`iL)afU9%d+SA`5ieN6%R!l&>@po#M%NyX`ku&OtL6MlKOgz84IFtQA2oEyPe=
zDUZ6|>xARs_+Uh(ZAa0A!<!!_f*%?3JTVmYv~9e(J4AF)&cqLTMSDAJ^cQf@&K}mh
zS;}2~8b?9Lop}`0x-t(fZ(c8nJ27mg9B=$1)`+}3qU(u09xOlpSwQ}t51Z!jh92Db
z1<|XI0jLMEqKw{+f5&}`bvmRe23Kpv8@>K+`u^XTb%9%bp?}`}h(DiK1ldpP)n3t1
zvW?cZxHKP)wg-;AryaLY^%#YJeDH}2!2V(I@oFGpjcIGLS#0k2(Nv1?banEy-JfX}
z_f58m8PtEc__%34H#)2Ag(u&nH6+#yCd4D+=6IAo#Aa{pFtq%Fym~s3m?rd6|34lB
z_J#6_jjW*cSp;j~1Z&g8N<1y**Vq<>?n&35o0EUK)f}Ei)q*%kAQT_tO5pR|ah8(D
z%MT=0D&^nKWsbJM$2!D`Y?EDvS`?GwqkNS*!Iu@_lkr-oGnReFU?_k8jaU71dD|TX
z3U$dHKF^((`n#mh1EwbS<4O~5j+MMxdw!F9Ccl10JQ1%$$TlDIrv~o^yhiy*9qjOl
zo(cI`KRuGab@)<}SRXvx{rf*J+n#~WlMdi<n$T!r&MD+&Odo>FhOT)s=X+N9&5O*j
zXT4)D;*Rl8AOH8~rsdT5VxdJ2<-jxCz@q*TTB^Bh>WeIqqhVvDlX9oAY9Kq9(mxlb
z<ThjLHfVb^q`;K(=^Z}OeX`~!t<uMS95-!t?j;BI{PojkVpabHVUm<)o0#F>D%*fa
z!Ud`K(q?nP{4e1K_#%*-)$h%{Z8^5tFV?h|^{nuZY<JXzxl!uY&MEePf2OI47=3)=
zm7q#3y&Q@L4&?&P(erQa6EyQ+I@7FS(*>h%=u}UZ<Rn)Y-`ACmL&E=l*iBd)K*PL|
zu6H+AMfBItLnz&`A7v&f+)vgDBkOWnHxAS`-~OeklU{MnZ{ioBp$(<6&fDxWI~z6I
zRJgOP+_SCrZyTq+qkU&bzh}qz-;TNZuJxT=`<`9rf4lDLd){~U{9Wo~^Y4hxFs^Ux
zz1mC@!&^rIS!_p{6>6BGGWS1W_tiXEZuT5#@~}qEY!a&2Le<%&4rd#}5Cz!J&+Z_O
zWq29mm_$jADyWoPp!|zA&bQ{=mzxyBmopgZFjg3Yb&oo4RoL-ep#1tbUUL*G68J?y
zTch&M$&DT~uPl_0fmJ*V&T>~(g`q%^f&YFu{P`VLty9|4S&=I|ab1;ju>9I7Pk=|5
zAn><TfOSwr7<HE{>+`Ue+N~lAyh4r-JtA>mhBm$pZP2$ch~0Ak`Rbb()r~V|p5clO
z@mpw#Pk?jhQHfi;l47o`ArGk(3t8nkJ~-IRZJ0}=X=LMgW$JDyFdqNm1+Kokq%{k_
zI3UU1Yh$Xul+v5Kue*8S|CY*b?kM^4-zPi8xC+I{Q^iXV3@$glX~u@4Ox{8tTo*-8
zdZGFJSx^%qw#vzTRWRKbM_J>dtC!ySjzl!4*C$`-Pm3zbH1v7Sl=7SSQs%IPVYaaU
zg3LuGyhD}sXgl&S-KA_g{qq!}eD}M)7mwiax68t4tIL~iqsO(1jQQ+MxV7RD7qr91
z=Hn2XakDMuus2~<*&QnXk4+LD6?Zo=H8Z#HUX<oIvV=Qte0aPA5<EV=_!Kj-IJf?1
z;gND=DFM*`itRGb3XgkQ_%6{$XS`GvGExDR*zYBsz_T?o{?)$@-5{=I+UtGBH-+c@
zZyx;l{uYHMM!!(cE2K+@xL)Y2$JN@%Dm9t)e+h9&kv0R2)tBw{u9$HZNK)Djx!2MQ
zhbI@QU4rA}gcREJJ(dH1%YPQY9If`!Foo@873eEz8S#068PXU$Rb(n49{l0|pG~6t
zExkIqu!U{qD%rJw@gZsGaf|lT+PZfG0O*@TcwrNKFg>_;ik&|L+aL1DeGS7HGxER5
zZc@HFP3TT_xx(;9pV;d>TpVDuM|QT|uMMOKLI?}1=mMNyeqrEuAf0eX98yTKsv@M#
zHO9b9&l;X9Nly(BTAm@ucnvUxFtes(zfx;2l~Cg+E!etuWF<S#aO(#qBEjQ5e6MPe
zB*#{rY={T5EWHPm<+s`UZcquiM9k64aWfozU-*!P7r0{LBE~PLd%bRe*lY7N8SHEG
zb@|x6fXHRRZGgQ(h>fjD$S%6rvV>rAQ?4{kCvJX#L|Kw?w%dP8V7LHcE2LED#OgpS
z5@hh}uy&@Bsa3$51@a}<8%MmPu!ga9SZXlP=jAn4V<I{<G@V<p*66mA0c(@%E(Xjn
z8F`|u<7p*86Xv(YMu3~^>}OG3FD7oMKH<5dOmp(QY^**>PbNOeZzml_fdf}W?&)Dg
z>SFKks2o{&(Mp@b6#f-wJ+kZ|`xY#ER6KtEA?(BB7wa6eSXHI--p>HZ(yp4?f|fCg
zN`ODJusxbguOoD|dvi4MGYQpz2R%RRfA!bw@SQ%W>Qb7K6{mfWl3mQ!qD4vA_+d&R
z?mk{n%vFkX>a$cjphi3S_ZM>rK5V379))&*n4)o8Ap550v&1S_<ID^@3ZwXYwXD7^
zZ5@_LW)Z4FOn(DMO@$qa-TSdtAq*%~axbT>@cl2@nicLE{ToE?=S!Z2&d-;<`0@3z
zxC71HPH<PZ5gA0um6t^^j%AVY+AJ2jHS_J;Q${P-l+{%|xKaLwercX9H|~vD^lk4|
zW$kUBeo}`V1&M4W##J=^j)pqBQgBpw{ics&bVAlOdsNpn{)ky_dX#2jLp(c2-;2j)
z5}dTJ^|_~W;P!`jo8$i7sBUB*l~YsA55QZB%b%(Y=<D&%e|`vGfAecSaXo{YzUCAD
z{L@|di^{M+AFV!u9v^M@O1+-;6m!^q^JR;&5M;1wiIEJkMB(@v<-km&UZ+?K(iYT?
zEcsoO!w+W9&PE2Yg^)lsgkF&@*~~d}3g|((i(^J{(g*aWa8ROwn9Yfpt=$yzm8J&7
z)jDNE0GGtzZ+JfG+mj+7MFnx9EIHAA!!^(fai!s9tk~}t(vZo>V<&7FoPacuV0D->
z*VbCpwLi%o5Uve;(kT9oT;+kgU?Z#OKiwBOCu3CN%65$HvKlPXd8~95p6n4Y+K7%^
z8Y^)lxQd@jGs%deB}3aWdMA%9dPC@vu5<@%WuYUP=a$}-=6(#{9J0atCFq&eGP3FC
zi&+HcKG+5kpZN028{LdrDBzR0=|ASU^{s^2?fun4B+*rdl6}M?bv5lkQfiQniY{$Y
z?xHYB<>;m}tu&I{p@auiAE5lqbR+S_*Od2UD*E7>Fftz6gMWu!dSwKh_06<a_vhoO
z935%gBK$C)&|1+iVewC)rj-sa^!D==YBHPjs$wj9t4gN29co&!Q)u@eC{gK?R*iNS
zUTE^Vo%rJ+fOPQWeN&_evtIdFVYPgnsPlnb;~<IB3T2^akAo}X@lZDu^i>+pSSkeM
ziNH5-o`}exkwE+%y!_P$(ovSc3TEpHp}?FK@FB2oVG*DBX5xWRE;Ar&UPE(DFAb&6
z+?ABnx``0i3+20#Pm=-EAGyee@)~_1gZRh6$zn_>WFoU33CMyc2u|P;jDASIIcfu4
z)H?!L9w7DYx|iC58KBDp1>*I4ke+4^n)d2||AQn0z3{JWiV1DfkPTO`>e4$=j}%vO
zi;r?<S^1iLLwHxA%R0v*rV-U7v*6Fr;!x1S^HuOYKbO1}4Ng+!Uft|{$;d}H4dK(?
zP;os&AWVZnj20{M9oq}8N3DTNSgG=7Q#(sJpwc{e3iJsUrgOqTD(?lF;&9?2Q9|Y8
zWQu!Q+tio7vDa^4I`7EY^$zU?EU?MLbBhd5)Mpp*_qwu)K6r$h7wWBuRx>{Zc1|4y
zNSsYT<`)D2KG@*#MoNS}J&{T+%5jRLVtP%q%YRIgPPvSJb}5xsCYi1+vI5aBBxyx~
z$*h&?h}WLI2gbxZLmyn9=!0&~EXmY%4SOFFmB&4Jo-I*t0BD-h2LnWt^k2ZOkgfDg
zFkz=}UQujN$T^jtB;>*AD__mk2#Z6dXYzaFpZ<Ao10+LwA5uurYE<-1`}pC@DW^Y4
z%A=+V?xa+oTl(p)=Z#nMC^Q*L_@GY;o}3h2$%a2lP!5v^o;*mo<37D-zpb+Pa_vXy
zjMpUy;YI>WnAs^fOdMjg-6CStpZ~FQ^YqbFU73CGbD0kbVkBX+vV#YpI(k89ZdAcK
z)V_Hr=s3Ja_2XxkYp*{1cO2EHy7ukCwKs=BU*fh^*MF~Fd;90VFL%M$H$c2fy)?lm
ziTu|$sa=)&mYoR(oCg5@(lglT*@;NtMu+~(Xfe@{3O}#aKwjY}C2GK0do~vn`Uc#Z
z^Z47n@G0Qc2VfDFIW2x%j+DYUDi;sq%0$ehE+|%P?{k(*5dlo&5Uc69iAPLd&)do~
zU=R->GF!cd(*xQet{eVBN_dEnt=3ZSqlo%z9}hg9LKkQV5e`fDz@2eA%W?5!$IHI!
zUt))BY@ALAs-1u@e`7yv2+>yD>NYn{je7SXcOE}b^KSpK-vyJ|2Izt3zvaz^;~1Yj
zv+#~L+=6ES8l_I?HWo}P(4`61yS~Ho>H$s3(Df;W_1M_gJ;<PI;9bwx8%X&nwv4WX
zFiI@2Yck=>sH=LxlPm~C=>xmWaQ8{0>GS?q&ileIH05I-LRfZqSf!L;<&Y`bW=h6j
zXR-?xCo@qol5ak64MMZ?cIm{l>R<mE_f)~Hl#iA<Kg|ie%m7{j@!te5h>X1>?Fv>w
z<slR2yOSNv2}mS?{yKqzrI))En2p0>S_sT;1Qz_e;E;_||1~Cz3*}4P<(mr)m<x`H
zY0$TniS`MY>JE_l36Sx6;!G%s=Y+u9MKW#GkY~~<Rs!?ykjjz?Cx0OVX53k5U7?PL
zd}*L+XV^dMDbbC4Usm&k3EWIMW|Bu5Qm@?@AbrwIiPFggY$Q<bx*OLh+LNTo`tmAU
zq)=}`n(id3w^FCa<VUe<Wr;wn;>k5^#P5~qkJYqw0{d41d|VR{=Ot|hOuq(Kbu9|(
z&6JcH$mi6LPX#2K4O8%YBss@G)a)$T$BPZ(T@Brq_&|07IRgs)qo33?ShM)l-~(1{
z6c%ZVqRImrR(LB?7P}pVjTO2gJDpP_(LT@6{sMt$qL8upc<K0BQ);wdd<Ej7)a!!H
zEQ?^eg<a(;-&PLL^iBd~SEWgXr1+Mm_%$y0CP4$tMgm?>-RvJsXdDaDbFvL|RQgPl
z3D*r3uVKfmg+Yv{l7^y<D09y|gYkr#JRo?!*GMEw`$=y6bZUYTrRMWA9F(Z>#Dg_r
z4(61~<xd$EO^JJ{XJ<^8T010fN9IuJjSB(l@?aBIDQ$O#?tIrR2c+SVFjMX{X<=C6
zDq9kl7rU8W%?L|?ev(nn{k#PC2XKLOHUS^MLDiSFn!)*nPDOk<{1SL3m1=JXkG_KG
zKA2KE70^_U4_&Xo4|rpGZ=8HD9$N}Aur>kO$0l7Gx9BT)k7zu(GE%0O%EQ+DDvhQ0
z*h_(Rkos~|vh!_7^%8Xr*Es#E{)3|tMx%P|PVE-2$rduN&q@XhnoNUSOApB}vKqbS
zp7F8~*LpVIfJ$!68)dIFxL)TLzeCS(fM^*usG2wM*~)lyM*Z}Rnqf(hAv!}V!AP8I
z%w06IZr}a=b)&B%7B`!BqllkuvS^+uO)z0;i$nAI+28+xXta#ea59rmFk82EEZ-jG
z^0}=mu-DJS0dLF*@j9cFSJ#B{hww&CE&;+@yZRW4>}fV62$N+hZN!Rdl+c1tnT=1$
z3)A2iGur^=5{@}VCL@id94+L05#X5k(&boxruDdy<!!=*owxjv(G<2JMNv39U3-?x
zc(#!>W6RjFsDZK4H(6tR-fCjOPiQ01eUWSvt>Is^mbWrJO>HfB!~f$=XkJ`h<68V2
z;5%*4v@e);5?;j5Vb7@e@zb}XiR}6Tp@4f6_qDzI4}$SI`+0~mK7V&e9{Re8vz`f!
z*<`s7-50;B!#@XDrSE<YB72+>)<lRen9hDadGB4$k(Ld|*+VqR3>Q;{{+>hI3t}^9
zZfB#5I}l+Ir;AXWI?dWG^>Ig6<`>NdJigs~wgjR+o2IKWM^zE#gG4S~FQzU4|5onC
z%Vz&G!g0G*ZPp%WtbIaGnEs6~y=0UIP(ri~je0wM4q5DwP=7N>h*>iSvigTVdL9Up
zSbDcn3@*dbq627zMMdLpLWA<qb#~sgWT6Q?stN4xh-T`}i3AoR&BVSOg8lX9ad{&8
ztx15u{^utk^A2^SBvXF&4qb`)e&I^M5K)NvJ_AdrIm_cuCGj(<GplTW_gWmR5=3(W
zd>B^uLQ#Q6w)}jwS2Firpld15moD*b*vIa29QS;Fd%UaCOdxMe1$!d^UU}g9Gmv^y
zOwC+EL|>o3lLn*DAYgAH<~7@UCjhM!7$_6?!0x|O1zJ&azu9(+*R3tTi@e##3x;MT
z9FAwN{VUK??hg*MELo|#yi*=%DKU3TuvdrOOrE=6ULt5*U5x9o;W~o6v6h$WC4ORd
ze5(U+-J4>onM&bJzFY+3!bw5W<Hw55RzR*I?agX-wqRByQ>Wjt*RI%tI#a=CMpL(S
zKM@etnIYx%6Dy7)<rtTxEsYfc+<z(!?X~MNRz<%fs;d3xe`5;=gAdzE+$#PabCkM%
z413z$%>*SE8GS4<-ed};GBy1>&je#OR~Rs_OLPboSsSJUUAML}W)@{*wF$-B#6WCg
znC+7HAvys2GV4F}#ZEicj^`z8^HS7$%+?<*sjRL*3}nM`9K<w)VkpxSSK<|9ZJWSs
zRK4&gV9jY^VFnR!dFw0lR!4~&J&WkH6txu@KGo_Ag;V-AA6ZC@I<dgL-uuKH?<Ksq
z-OWGd(D1i^7^1!?nvv`ZETIV(&#ls+yKD_=Vht|-5-f1y^7p+k6{~UQCu_9rY8WtF
zO*3MbH{y-YulBZXcU!f<MMey}ZCe3#{=JyxuSJg+a|Li0@9xFV+)Hp~TK@0e>0ef7
zm>s8m6QN2}Tb@0UnH9CTn7|x-dmvPxugw#*MP0f?_{_w2_Z`nG<DJllj;{ep9~Y7Y
z9FxuU#lyITy#}bWr|%{A3Pydi8b6k4Us7kY&k|XpYAmDY1m)<<q`j%PKeJ0gAITkk
zBmM|u8~<9M_U*Dzdzsp3*_5e0$V{r(pIv^soiSd{rzMoLP_DCV`Jp*SMU$N36)&jw
zh<2uIW2wyDiNmMslvN4)ECr_?)eFROY>%A&G|&V>cAoDo-?*uncOH)G1NF<`)onE!
zWaNjZSF}9)>fIgc7Q%D=SLQtC7jb><=@H6>9Yxg+yN?}y(I0tKb}&YmD6u*A_LjFa
zIX<R}(BF<QIbDNaIJDAoZd&XcNToalR<zQ8xYi%hE5HedoU~PGem{t?GK{Qna(o_&
z*RH_5Fiz=ouXvuGXd~s+)#Mmu6lq`a!@efc;n5F=XOWJtemM3;I*t8snu~P)@WXjK
z(&g}n%W34LYn0TGe`ddV<$&|xXj!70DVJHH=GDW<V<t~dqI-qr*m<P);r;QM%E}z@
z429y<d8MDf-1eK(Ye!B~+$I!R29(j?&$IIu-0vp^I$KI5E(Q_6q>sd+TE<H5xrBFf
z+T8N<AFJ1%d)U6)g5F0fVON8i(MLaLCxEuFG;hOSV?REw4`4Tx`-r84+xL36^-%>o
z4N<&N9vBzZ{ZaT5her~RX`#!!1@N=l)@Spwr~9LNJGU9edH!oc(?qO&HgPyo*1Y5U
zKpucf&QZKtJe>^S8Ci(<MIH{m^$5f0cgnmcSOrld-aSm)(vB}cRA<YY%+=o-TcP*6
zlkV~l{qY}mjm8ep+2g*mAALXhNGva-ts}@`uTn!Z6=fN&h}0U{>(ihoKa&_^-e{B1
zd7B)5D5%W_GH`?OWP?M#>M(-@FL6Wg^|9$queNSPKiuRyOQQN*<_M{x&XMB_;XtT>
z7<CAkG_)XTpVI=p>9Sc1Z|7rjzu}ths=_b2b8bERu0j=8@TE)YNQ1+n+L%X^^TG7G
z!+Z*BOzpZOcR5gT56$qsN^Rf$!^Ng9c?`>xr0G<R=JP-U>W%FBMb!D?wLGRnYhpx7
z;lsZGl`kKV`HV_qg1_{0a1BYisMub3Scq#YXlTnkACN)JTf<Ik7k1I(fSh}v%aI?a
zCmEu``mc)4CZt*ZC~Q?JPHG#UjbF2fd#qd2RMAvhqx!aqU-kBG2Eg?C%JylmDn-E#
zQx`OliT{QMCK!Mbu2j)u!NiNn#?Py6E9_*Rjl-}26N)r!FfHxl+J8NH+Qpc-uA$X^
zjOlEO>1SO$#qQlKJ@Z&eB1RxuE$x;{pJi-8RC#Yo<&aT1&RAAyiAWra8gBIP9=->&
zt-q>`>1N`0_tL$;lLL%;E|$LPb=Loxo#S*=OlKquL>|XPU3>K>kjmw=fGYyqa&qoQ
z7HvmTjQRR+4~{%^`b3YzLzFJQ0|tHDtA5)R)^M39C61qXd<ty-6i#fqY{zE=^W-;?
zsI&IGLV{-!SZzaRsl{9OWFO*u0`}hXt6xYo+*S~3)e4FjoQv?FT6#3qcGv$I)4<9l
z)E|)%I@q`*m+<*TMOPO%M&0;jV}oRXNF2|<xPJ{bs=aS-WD%ch+?f==3r#9t_?;vh
zJR1qW9gef)+_%bW?0FzO*P%Vu>Noy+|JJA<x)Q%qLdrf?i;otzp~Kq&jHeqZQ+|)%
zI1#ou+n;U8%Impv1q@k?e_D`n$Efr&J0O3t@!!8W#}zj!WUG(n){#6G!S~Eyw#iHV
zeqQ4<IZX_W9HRZ5c9;*ne~fgwnlH*r<R@eTvG=XrzJ9InxIsis_>xeiY3Zry;a{cM
zZYhp+H!s=}_KzWyowNC|&1J0wW{gCXU-6#(r$L;6Q2!9-M{a2mvFzs8?JBafsA5z?
z{LAJN3S_t>w-YorBCasl+(=Ol6;OQmxA3iybme6x0WO6SgA(d<RTEoR-&;|4Q*-Y<
zY<T+O?a<WX`lm0yE-BeelW8y#W=hynq;-LS*JtTIOM#JMalPjedf(g!Gg;-N5j4Is
z_d10*Xt_L@%uOq9>gx^rf#-~dfsR>icJv|w_XU{wW!!*?n#nMFx7KB?J<A3`X_5ds
z8PX@>@EqD-s#v?*!Ys^WoD9fKUc^v3KyKO^i7#WuxCBFgU$$)YCc#+0g?^ibOTzX1
zR%+#*8&MH~wEvGy(!Nc<Xz)7iyLTPqM8vo2Ri&S|@r?XRAt8Ckm4yN+1|&@n4WvQ3
zsk&;+-z17!pohgh`-u>*j>?SN<yGHo%)Q<9JW#tG5ltCedL_7UGu0GI41y>AE~)L^
zEoTgMg*}1YWfddpChywtll#weWWHHc*qiL%y{$E0OSUrCiH=@MBKzUh$pM0%tvE{F
zBx#NRLzDE2?(<QBJy18Bi>aeMsLX4TGtX9_Fyq=>o>Ic=i27JV{zXgxDy1PpIXHvS
zb*`r0WQhX+L{j2qYBob=5Bh;NmnxJ!<tzqBEMK^OhKQINUO1=0p;1z|$-zh$eAT7^
zFse}FEi#cQNgj!qjO%j7B0HS*c!lKfxpc5eNGL#jefHZJ-LJf1U00_@#3azGV}BBK
z8c{tylY^5pF_h?+w=}-C+hJ*X<Bd=bqjWTh$c%D8r_dt(0EukBvv3PECTugx_Ws5o
zBCP)c1^Q;uGQxl8fv<YRtk>mM3RcPh01*ys2c4|aSCJyC*U3Rib^ivbaW7(bVNuN^
z+C32_jR!&%2kZ#K2)EXNW!Cb9pTnQymrH1F<&)k)s;AjL<uT4|Y~Z2&Bv}>HYGIT!
zobL=@(a<A|2HpH}8R^li&M$+7KEjl3638Y=s1#<5-&KG)sfq8ScDZBU?N?+(G;uai
zSKci?j9~LfFVu@%uyOTnS`DA`woG<07T}<YIY@qwtTeYdzb>>DV!?`5H1xPB_Zq4Y
z*fu2iD)8CVASIYJ%?;NL!sfZB`GfldpiEkOEyu424}5TLQeoxE$m=k72-Eod0MPG0
zmqF2MTy}9#Rz*e6^p-W1&NK?c{mvS8o4jYBDK#I<uV^#B*Eh40UtOn~NzHS&=(#4g
z(TTRf15%8di=JdaYwdwRR-=vaQ^xjx1!3BgRj(-?)hQJpLJ<vvS6YLYq4@oSR{MJg
z=}PDidUr10I!A9w5FL+uR`xG`$}6Y+34dKEeg7-F`oEr75w5(ddy&tjz<?@Uxen%O
zJf)T!h?%Vnq=YxN@B@4+Ks5-NO>>JiE{OWb!69C>QcslN;Qj`o-AE*Fi$y=|{vP>u
zX&wTul&*GXlSs*<nf(1x742#7yU4C-IDPykEoVp{O21WAnTrh1W~1VRiX_t{c`(%}
zX^Yx?wS<~!Gw{&Uy|$CdxS)B!s#d4OW@nb=tL4eD(50iOxThev0f4GZgV=<nxSa#}
zSNPo01^4J>t=tIQf0gt!SZ4E5nLHsHZXl*oX!_w2_9ybZ2^`{EP!RfFK%raT<o0ag
z!%K*_u(q;+MagVYgO<0bb+>`d^V#C3N#5e#%7zZ_XG>o6drL-k8@l|Qz4sR4Bb}^l
z<iRpmI>h8iQKB~h&LWrbBX`89Th(veL22eMk%vG9;$FAsD%P3m!Rlrl@awWczdW~r
z24=**P+9@05P~#U2q^abDdbojOnIbl%BoBP*X7%9>0u|__ro8~)N0aTluK!^g36R_
zym*egS=>J#Mqz1wC54yfIn`mJl4p2MhrAit=|Y6y-%Tn|xsDXACzXIOH?^1OT<4}G
zwQxwUN~FO9sa7}0G;v;>!|fG*0@R@5ETl0(GING#(7W2<U|sYj?p(}GJ5|`rmzWjv
zC$|?KRT|xo1eN8m`JGaE|L0|x%#p~TwFRNghR|eu?qJ>DRKP@nX!K5!yG1pg<O^dd
zpO;T38}v5$__4`Tw^n#w6eD1GphJ&}{iuyiwyRy!gZ>{$AUAplr4kve`U*Oo!O}6z
zX#s2;U54qoA)1}*wUrK&&}eLvw-R|UKzIes4FJh_(E>ky25pqMv$I?E)8sj_2n7;J
zFZb8Pi^jD6DD?uZyqkUgL@YtSr-M8lX5luk938~3b@_A##xA^a=`inot&i!2Z@mY7
z3q*-6w0)63_I|}^j!BTQ)2EP>Ni=hMSFcYR0aRNL4)o$d2hsQA-7i10UUH>VP?8=H
zNFf`%lN;R@)5C83=){{kAXZ#*uxq!i$F@xr0BOgCe@5eaK8f#%YxLaND~8A@0W)I^
zPD1pq)5!OiywTMOD?mpO*^>Y<VqKx&Sw>BWUCW3z+O+sB5+r_&6~qI|{%GYuVCg6E
zEwcmtX3R{SA<GJ~emDvwiqQGd2F{PiK61mdT#L#!6pdubQ+$n}8zxuk;d_Y@GKmZq
zOccDgi4^^ha`ttIGdU?8j`3}upiCrCTP$^vCI2pKe=8)U<k^1fE`@j&h>KZqu#OgV
z0QAzmZ7>-5B=T=5h_rcUxtzMF1ZVc?cIkVm<6BnL{S%jT{iGK>P^y*>fP7=&azq6i
zB?N=r)QFgXb<pOA9Jmn|)T-o0`9fgQ$o1zOzbM|Dgr@09--`XR;D6w9t)^3W&N5rO
zUJrnSm-9pYAg|O9<0c$S0NKV)b3OkK!x_F#9M`>zTVx%I9z37HpCP(w*}{9X+Y_hq
zEBxeaQFM~BOhj51GJ8;oBI+WX_;`Agnj!0KT(8+iyMy#mXg609WXNNuhl>_h>R^9q
zOZX_CaP5#&CHD~$)I9VHV)bjCdQynNuL!W?{44jg03`~CRNq}?N!3=tMwFLr#Bij>
zt?vFqKwkSK%<emed>uLcU{t%nH!{sCi%A(bxI}M7J0)}Zgf7YMaM9~;g|G*N($GGw
z;qnHi<bSH&a(7x&Sx8W}A`zk{+G^=qmvyf75N<a%E}iP5rdPdh#I1;Vpu(Fnorx98
zDW%uP)qz|L^6%)~wJV;_G<WN>NEHtDL8ViLU#wjU?F-?(C1O=F_paUjdtr4|N=`|^
zg?+)lns<`wO8&`S>3aUeoELfPX~M-W@2}A#AvwtP7Y28v$}vTI@-MWBOE<Iq55Zls
z;45+iu!D8jk@D0m>3bR_B$V#I4?X9@JjUUmi^kk1G%tmQvtJi5OtLXjShal-gJo8{
zWwPr1{tn5zjl=<8Y{*J!<`a7~iEl;JSuTO(ECNg?Us<g&|6Mcc)krSdoQW5MfLc+?
zm_Lw>d1|mJuIpcTEmUTOugO4_QN#(v^r2Awys*tuQF;!faX{a%T%>i-o8QW)xU3<P
zR}_hVC!3}zQrgGd(Wh!8&@NVN*~?|^&TLC4b{rwuE#vLk=|g&xCN%Qj(v;--m3iO@
zo}2ad(Hy?%<^B~V0o^6)1ut)><D=49ecJjd`X9$1l)$EYa&S_XrMx153MU!%=H)VX
z9I!N<{UcIRTr0<Jp8c$_??E~nCy?U?SNVDfxCX}>>7QGtUtGjE5S!28(o!x<E{}}X
zcIt1q+20qmqhn^l`8>4Z`*PaV{jX!re?VZS;(Ubb<g4n2SPvM<^-hLME-UFbjys|q
zI?PTSA+*l06K3rz<1W}RF=_9Wp?f0Wwi+<7oCK%g743f@<fiAb@mhA6mw%(53dD0d
z0}8F={JG5kYbNE)o)F$K)H(}E<wF1a${Sfayo{p@Jsd2n)z=6>g@dYZT0&kMP{N5|
zuo0T>B^2qAx+)9i1*NeYysWW;@O-Y~b}-m>sIJ5?qWSo0S9viO)hw~qL(L;kA%;)i
z@v(g1i^g6z1J-20g;cgiS|i3@6ur8ZQKQ_<FWKDPy3EgJHs%Vd<xU!V3o#O~#OQ=w
z{Xy-srrPY$TC&&p;AO=4P}2Bt(fCO1_-M!YSpWF={P@Jq_~iHTDagb$)5HvBVisfU
z-He>qGNdCFFN~)8#0sifOkjou;~OXJODEz=1!dX=ox6<tO10*gCe5ma8QB^elk%GE
z2B799X6GQLGXQg*ezcj;Z9dXoKP_p8@4ubi-K<o#457o{4fMj-Q#q#IW#UtfC@I;5
zQv;@=N@cX&uBQ@(>H8*-!UP09H#1;t^SkK{Ss*(}h^Y(0gf*e`2NcV~iyTrR5~kF>
z$+_o%w}F(MVP<qYlToEpMX}S=-W`;mn;w<}nc|w+Pee!seJZLcRUE`>5A&afsb{r`
zv<fe#@|)Q%Lnidnq{_+(vSGv)BJj_}6j}iDBAiI$*KVlsNR%P3Z$mld9VG`v8ppZv
z%XYD5QvXXnCTbPRlX8kTTVl4WVr;bH=mZeE0$8LI_S3Ef8Q;9_$Bs)BAK{x-;l}Vs
zf+}Z;YriE_;sN}!qZZ;-FzFi68WKoJLb)T2t26C=tOQKDedc$|bhU)KgrpXQM1R<P
zIo?WQ$!cj<Ql-PHhJQY?l$u`@e}mb&;b1P}gu&<sX?b5#1vc-#A^Fk3O2x_Qwi0lw
zfcV$whC$#HH|Hd?lUes^ZSj8c-`*!j$^h*^u>B9oli$Rz<q~pdfIUXUmyWsMA6G=e
z){@I5S~x$*b6<fEz#YzcpDMgO=a~#E4j`CW!G>y#ek>C^K+C73EPnPBz}X6_n7j}r
z#<4HL<)HtzIDm5*bkfpNXSOMiiQte$&ckvVxuxfMwjkB#$W6eFef*qWVL0<hhQK0A
zq_qIf4!$syomU1c1m4b0!rCo!^B19)Y$5xL5yFa$oHNx&_7WjL_;l%+nT&U&4BH&F
zY#ep^W0?$!B(B1W7yB}_=gXCGAO_(Ve5dap8}o-4SF@feYuN#@+koe=46A2JgjWx*
zYqCB^Dj1i_l9~*m)3EWf4=?YNqzo0A*q+I%KKo-XN0(_J@k-W@*|FU_6FU82;u8Ce
z?ETCEyz0Z?L`rY(QcJo~!}{XQ2hpOW@6t2OcEDXFM+ox%uajqO6RU;A4+ef<t@uB(
z+9_C)<<!D&^o2QFpHdAlYrfrf%>4SnQ@Eq9NM2_lc{7rTJjtl4>!|+kk#{7A$*H_q
z&8qpcRm;q0i`gHghFSXC97N$JzeUuaFt3Xi&{hrL)0zwk<{fDC^^+gGffdA{3I=z>
zw-VF!FIrvSH}-nPWeB(_`o4ORos9DM@%%?;_LcYCx27I~a1*U{4PXF)5hZ^T=m+A6
zKmW_YSg*51h=AI0WtK|biR(`J>#)Xav9A)77;}!!H^lbW+0R_GQ7`PV_^3<IR1TXC
zSRT;I%tb(HGiJNoi?+1v^NXu9KB4d>v2PZoe}h>PnKD+L>ZyjAZe{jc%HUiVf53Mm
zjX6vN$Vv~Q;k)96XH^)^J>9OLYb9Bld#*nNomg}O0=uUTxyq?Lwa?s2=7`gCo|!PU
zr*Xu*Q$;zC?SC!mG?QXk2Mf5{l%2mf=!`(g^4qd*Dh+WeAfvob{_aYX)%GXKf?>eg
z!zweMLQn_+ez0lqe20#4ONgxUs80nm{c`(IMZTn4PK~ZzPBkr4nTKXNUl#myVar_|
z<^DcfOBn1e$AC1SD;vq6XtQNZa5{98^`ERVzCA>?q<|m0Ma5pfeyL91E0_EN`DqOg
zoAn$TOK1u3A^5*fwk!sDv-GgD72Nu179YD)K9<rDMA`r0lav1QK=qW7nuT%4R9DiR
zwO_KW8%S=KXHU&wdJN^Q=^G%e7Kl{~K7k(p=e;6o7=A+M!Q%f+W=~5IoDdGmcJm2R
zvwYb|qwEeqAc-__#L@@;LcKo!DtxzIbz<zBWONV$>^(Vo_p1==K;+xiM20I)QkkOp
ze~G>djkDTSzWZ^Mx@+{Oh3S@uzK_*6Di-{m_o*EwdJ-iMeTJz)j%%qoer4zC-iDv=
z_4wU$J80K?`xZa*fDP`-b<p##sKDlaoyMM;FdV{_g}9)Oz1-=AkNPto+?c~=M-Ja8
zg!(@D`gZsZacoVpzy8R+G~-tRvC$;2H#qUsEg+Koc>=$qxk1}!le+LP_vzY=As#5D
zd?J+><?0>K7XaPYlQElMnX(!3)Ha#@2i;)x4t-KKFe|Ot0{J%OxD6QiXi|uSJv~!Y
zgN;k`5Y_le6My`^bud^9Gu^9W6ZrY|Hb(f1tlgLCC)t!LLC5Mn89Ti#A}ScRO^p1l
z__cfu9M@5BX5$Y1rrQx7acJ-MPS%V`xr0P;Es;kZy7A9iJ%%U+>5`7WC5s7J)nF3M
z%HMQj&@v%jvr1LzcxRY?%=9Al;Qg1RA|Tuka5IJwd3nwiMY!kA#DUcUiHi`Z)4ukd
z)AIcKN)7ntv|Oxp!K?%C(UoWMGN;s#?<ecz@P8>5=Pwa_s3n-IB{cN)MqoM1(-0lb
zZ+yJa8IwHL+)&oiP!Zcy-@jT3IBkA9)^AEW;rcopzqHH(MZ?;{YxBb~w}!x<*m7l5
z?zL%`%?v7aYFC?`cxGR#tGTrT8hn`V?J*yE6RUIMEuGKBH-jXdJ7vJT=>U9{4m~e4
z==<})N)u+^AMS2n&vZcG4XJr^+okiNoUDhrMH#~~=DTNuXg^LNJKfA4oWR|oXz|KE
zV9-k$T}58fEKOyv{_TE(uK&X!`j`qQAz?cq2A4~^pPtg;v}Hd6H*at2-5eiL&HG*%
zA;IIwdh+wUQvM2aFLpcX$X^Ak$CIV!ek1>|EG3y3;+5=o|KspxZ{&|<aJ26)X_S5;
zT(2l%`GJrA?Pz^_K~l!8A6ay1P>_{swZUW<eyjR%UIXRB*X8iPRRvQhWGQVSuPXQ=
z+5jCBw-G&pL_5@(VY<%oW}}=4&XyJw|4Iz(r2)SN8bN3J@YiVF;#vLM+O~LNt~$JN
z%JRyoCJ|=oWN7HY$FF(&_tU2W-9`K=qcO3_xR>&SW)BV97rS1sj@f@UY`quf&M~gD
zg$FOBzLYXbvBSI?iu++;<nA!uEp+kj+C|@`?nS@t#ena{VARD>>c#NAi;;$l(H9qE
zzE4+=DB)dTI^jR(+ZWt#C6*%Ur*57466<eIUwDQ9-d_N=>hh+4G0sKZm+v#C=BhCN
z^&9W^_q|o>+T8?a)Zh6<#(Al@4PUDX-a9J|e9ONsn1&|rrV+G+8J~R<!vD5Tn4OY!
zGu87nrAWW-I(>)VVCu!&JKs8<BvdyD;sHONHUu8r(KoxRT5<Pl|Gx+&{MYq|rx8Tj
zkh>@VZAzluO>${=+W6jynP`;{bHk5}HyU;G;w&}aUBu+(br+Z)Egp5!v-4n0zQ=N-
z|BX|-oV3%j2`ee}%gkX*g>`&VY&r*{OG+*~6@KVl85&s*hIbZ=Vw#i;99DjoeD{4h
zy7KuqHK(Co>Ou$u`os7Cq3FCHss8>rez$wCi)(N0wYN*itZQ#wBcbRT+2fK~s%!5p
zD{_glvv+lE$;yaIx>iJmP<=|>ukXL`{^6YSe!ZU0$D>u5jAI`(7*(EAZW{=te%Axd
z#~LpXl+TGSa3~GUwJ2{46!fp0uGrC(H>eU8{uZ0$^=~dNTX?+}cl0iO7tnE@ieG0F
zr)j9tK}Ni1MT!=8zvoIfxlj)@6TvthxnMUVghb!1zo1Y{yCxtO`gRbygD(XNqcc4g
zUvoDDk9McJjV}ps=|s1dMkCrYum){b?KZV_H-_$;E#<d=Z)dU*u}nIRuan;4baFzB
zoGz<2EVp>P93@;1H%Vs!^I2#ftmmp!g3a31aWpdHBLjzQ%zV~3Jyle{>V(6c`>D%w
zOFfI5rqT*IJy%`TfkV`k>(ml(m+KmD-sWJ^8?ouWEA1<D_KC`l@73yyY7~98MZg;J
z*yTV&`_i0Zrb{1&pLVZibaDjhzJk7$_#U0pqx*X7p}az3m;aZQzT3iAseleJ12c;h
z{%o&(1ZKpOLNI!Pip-C%Cj(PcuA=O{C>}5Q*p=g9@6jH!TY2~Fpy~z?Kg*@;yXOwJ
z;}!i?V|cm1numi4F`>x`xBgo1BwVF`)-6nK$r*=$l|zRz@BE5scXs(6<F?99SxLSh
z<U%oi$f?ug1?7>+Jfh}YY&{RjvBaQ(u?8II7)WH#lPb;=dfCnEIaD9uK+cfmOGvgO
z^M4Q7?VO@qiv01?TTzye5#<l|PL!`JTB`*Ml$przu10PFZSc7+p3;dqdaExD!WM5-
z)RcU7wRVn<8q~1LjMC}ZR$q_7KYU!!bOnF=?qKT{!1?Z&Z++8f>wrq@H1(B7YwEf^
zTxrE_ph=FXH;7W6oCWEL3Z%)k8rYHbutH81Z2H38fDbA&%q_0$l4vz5T(LnZpyQmj
zIWvs7DQ(nlzr$K8dEF(akt}ekUXD7ds|YOaNqA4`aBA2XMkp4IHMGTON8p=>xXcZV
zEuyIbgM(}j9t6B}@jt`Wg#DjYjN%^>XC)B_QG#?56&MRm$Lt}4opSb?B#%>>Sm7QJ
z<upzzZpumfN^o%ND>W?u!xD3jD?4*DMs`R)9YOQuJ3r7ehDmF^IU{`9FgnFPhId;O
zo<S?Ko1f1hAaE*#NfeGijbGAWS6X1`o4`y=$j@``HMF-@{8UlUH*S3?^#XNyP4bBa
z<dr4C-7+If!sYuq-0WOf)`7G|@QQk#r3mtz+J)W~3j6Dy4ILK-dghgmcJ~4d`2YHT
z?fj?!&-aK&1GDUP0kEcFA#^<>136}nxUJGW$OuEZ8Xw0x;Pgv)bPfmMQvM4D{j)Dg
zgNNrFh<w*cJ~MyOSe4t~Fbn0H5L7z7=Y13VDoX{cl2o&afztD>kFkGmtlhCZxX#{G
zSokGi9|`dX@kZw-Z%aLupStbxn&&u{8J_4mdDCUnfK5jW4~}$P<3R>mpAEKXyaL`r
zYWB^sbQBqis{w#y4nRB@Grb7uhre<e;%?&bEK;>I@bMvK)UjB6n79615iyo6{xh)h
z_Gpn22F$BQj^~#JBQO6#iHZd4mGllGW0N5w%meY)uVGm$)kkEwj9~K36_AOT>~l!#
z4DKrZ`%aj+@Yl16>I-Y=(4T3m73Swu`(2qA=Lfm_afyD(n_~10bqRcvb#8r5@U?Le
zk8e)em23=ytQ3z5v$Zb5mA-{8$eGY-Wy|S5`T&qv9@y@wPCADZ`c7h)BqH<V{tSR1
zDr*H%i^j#y0I+lPzzb^(4VvyaU_m&LWoyWU|J++rQJ9sAPCjCNBLGrkpiJ#!EAKF|
zNnVInnfg!OPwP^9xtASV9GZx6_{?r$e^7hrt_${|)pDZAga-NM<2JnoJ6nB6SAMT|
z{(4CQ+^j-Wz7+fXdwJ(P5nlLM-<Ujjj$17DpKW=uSaR`XgC5XckF9Q)A}N#NDYEMW
zy>8;i5|$E!N+C@uB(`4{?cleRu1hSe+`1^hFJtP7n?nLE_~^lm*Yn>=_4-sfacKIa
z+x3dzBg5d*VN1+(tSVUiMlSq80~bW=mQ>brRaw3hctSH$P~yyne3FCDBmSOubCbf)
zrZbuQtiN=X32#XkH@Jh5V(^#-1U^f#<TPuZ0(MhttMFt-2NDlAz}+vBR!G*1J2OpE
z!OA3{o(wg1d7=Qy!6t7`Bslq&jX{69dFgq|zW2Vx)ozbo<|N&E7aR(}CLUy1m9$@L
z)co0YBf81cIPGe|j#}VC7%0`rm48yrwaozcZT{}%qRHICyzD7GLM^PKf0E{6VqWj5
zd^`5*8@JYiulw?2oKMgWk4>R6(2%bYSRD)i>fJtgyO^pJU$f}~dT0|f(wxCEEIn9M
z^fXaHjLsC0p)eGz3@LM|8{l2P@*)drAk|U*F<0~Tb4v%=f7%;0!$O6l%-^a^hF`^>
z{JS!=S9!?reCv{kpQ##N0u=Q@@2!GeXNz4^>;1)p8it<?-1i&h=1;@(B&)n8y%Mq*
zzpZB#x8y<$%oUV{dWpOaOGrsEu-URU<o|$^=)l0gb77z4YQ<De{<b}6%bw8{<KvC-
z)Gu3F`6Q|0<g-Fb2zdVG{HXT9{o|42hD{%S<*XirlZ*S<<4xDx??sKJPy(;`@D1rF
z1Afbdb?trCH~q<)CjRO;hA+ALX`o~uMZ8@t13}g9V;ZVEyqd?`^8Jw5pQp$2e9cj?
z_1E;R;?dd8Ff5Olf3_OXmvrY^eTBq^%hOwMH6i@fKdMVVzC|XDh5NB<%gc_2zSlPG
zE@XVzvCrZQn{-vPzV{@0D_(YGV(FJOyIH`2LIjq~T+=<0qIcjE`3UOm8QbNCzs@1%
z1^9U`I4R3BAuH*Wr4Q8B`HTd}6h)#AWZM(rclJ&0Nz5tj|KhW=g5-$mf3o*pt><**
zPrcf|4$r-==YbKaR&+M&eEADy^4B_;vfN;`ygL+GLUFhPTr;5o<{dC1I{o-u>Cx+>
zUZ-BL*=#W9jv%V8f`Q|jXd8Y?v+jLUcqc<F&~q&D*5f-uc}%+BaFo6e_13Y4djs^?
zG)3)qFES{kpYw~0A>G{l&nZJyx0xPw9hwJ!*}$hi-#=8qAPc6CCD8xA$V}|p-aL1E
z=;qv-&5KC?;cp)k81MZWSUKjzG+|P%bG;;dE;}llfpPM*BDmo<^E}W~e_XA(8=vc)
z@Y({t<edOF?~#RMn#Uzf?j=qA8SHDAwUne%{`eJLWPihwyno5`)PPFA5o!Tn8;QO`
zA<B}u#Bt>6e9oCMvcr<0)04=$$6^8z_}^hrR!P4LAec}HNR+IcJwTpeh*0GM%dnk2
z$FCFd_r?+<uQKQejRQX~F$}(mWmN}>|KiJz2qUNv=@Hnmn2X$cF%|^S?;G@Je_VVX
ztNWhOEsGtV()e4A4DkB%kP}!CLq6I2L@t~Q6uqr*b=<?T`vwC8dDtt_%Ykc&9CBI8
zk$S~(z*YkG$zR~LrvLz4ViVHTZsB(T3X4o~5s9n&6qP3F@8agYvdIfYgOY-oI9`hd
zS0<;!aW9mTv%H~qOwQkPxc)E#VD%HpT8+?fyL@=UAGHD5`UH`S^u4zj{-Q!`3d*z}
z9`mv=<{4Gw$$1D5XL20bR-Wu~k`Su{1l9f^-5pEqF-Z*yNqb-yC;chyTV-6~EI<io
z2X9Va1jK*)5tm2fim6C+8_C!=N;p>|_TpHjwaEQD*OjrtTi@JLlS1hky+ja>D)Pob
zV*f`*+({;ndU!>$`u1TK^dQUIBpdn}rqm4NCY`NsfUFeY#-Qlw&UIOGHhdPqg9i5%
zLE&hy6agswUk+UtCXQ3ii}YUB&tfJ4{jPW(8RRC?lE1a434G4MI7UdQf>~&Hlal2h
z0)a}+AhuZm7XZwquJ3r5r>l`~=yOi+Y|j1?VzI$5>X^%+n|CRNO-?`J(%W3zl2#%W
z_)JuUqX)>9l9R0j)r>IbjLPBt4{}}Ox?2y7>A!4Yn%2~Km=(Z;XBNOo1A#?hY>tjX
z6jsjJLR%bK00EXIgJkg_YeS@Z^?im}Kw`5g;T)7?OHW`%<iKMJpP|8NZ;P^eVDXNi
z#FujD@5OnJ#iw{aMKX|?Rv4lNd7M&`oDx;CiM{={@LsW~5;+^$lXxrT&ND<2n-u&J
z1Ggd?2&V!^2uz38xvspxU2GXqy3n#nJoIgG5uk8Eqrg9^pu@2!sW@Gr&9~F%VK%T7
z(UTpEeHbWRRD!vGg-~u!Du>mU|M?76v4v@BK;9qtxYtBmDyy9XJjgL6l^W&`y4i|x
z^L1tiX}`p458Wd##}h{#<%#*nH*Z?a0&H<il0;`1v{K|2`#J!|_YNYl3t_rd@nWD7
zj4_3r&vq~((X9atB@|{cel1NoxS7ZjfbMyJxw6;@Qto)&(G5^!3%d!cY+ugGA_KQ@
zOmYXpFVP?&H0Yge@*}b>lvX7R0OGQV#6r9ho&!`8WZIjWQt0M1QSG8x%HvkOOtlNz
zjdgpce4`|QnONPlg@{P4cDf%WG*{Ic3wpCvE(M^tW!KC%*TgN}rx%Jd&#I;IF&ONg
zml~*TbF0dC3N_iaEYlR%o)Eb#Bb)GBjACpPze~#aU4z$T($Orhq*X#Mi}p;EKijRJ
zr6HLJwe_S&4g?wFD<W4u0gM@{JrWxDKeJQC8b){7hf27r-5UJ}GWpz;B@jr5hmoPV
z!StlT_Y9DOY;tREjKMUOu+gLJW7PNf;LCiCN4tQxGM2yI$;``$F;g4a*022i{nYXx
z>y!^Z^^S4&cRk~)W~RMn7RDAItk7Zs;f41N_V<u&6|Q~07Qr;c?2x>WY^$hwtGHjQ
z<W;RXB1nJ?6r2Sy6_8|JwJI>Sxel~Q{i$c2#g3qx)%V&iGPdi=wx7u~utbo^7;vl3
zftA>9Qs3UJch5j88g>Ab#TeS8bvV{{Tz%Eyyw`D^vC~zy)7`xDhF_;wTBlEar{Am2
zfW6Kj#;#!5uAAmvVSZf^X<bqEUAJF#-P!B9$JiYs+dV*e8czmh(SUp!-8X`}J9^R>
zvgJ}Az_Zija{J^G_UHhi=4{mntqd(d%AYePWXp%O9!g*LleAveKL~sb5@*ORI2*$p
z0XSRR3zBNZh_*+wpmTX_?S6gvdX)h*K(iJ|c@tn^2fax(7<k3py$5OM*Xe^l3#YLS
z@%KHu+GkeT*Po_o!NJq072<@3796luWS2HEB5q(1yW=vnKS+6W$B~(`1Q|F(1V{pS
zJIUM_JcBq6wEBb3I2&1OPCe@wUIU)%LUUXP+9O?anOT{C$7oap|DU9Ti&dOBK;JZC
zepv)%wqQMj>Ck7Psuh;!V_1IU2CN8ZSWB9`9QsHF#kj`ACor(+HgG>tg*%7!?=V$m
z@OeF%o(id_N)K=pTot(Z1$khOB)`MXuNTN*FU^q|<Y=HVWvC*6*UX>l{ADCPOmL(^
zun@pqugm?Ug~$3o?$${26*r#8F`hnOAen0ePB^}>0gMF+^!Yb`VkfUZiZ2d5J{vNY
zUjg$j<>U8|eOi#=jv97S8m^iZ$k-Y;7kCjsaoV*8(D6d^c*&Ds-@60MN~BWX0WOc9
zBee|^jcigBWhq-_=_)sw16On3Y?=D+EiEQkSVU&<oFz0I<4b)7&<kU!%#jgsXuPGu
z@Fq{d=7}Rf#0i6CF>7u*c7CjVNpVAjC*9%N_YifY?xR>#Wvgfu+skd%R}t%CmAB~7
z1h>X$g3L`DY?(6i<q+|3Jz?caXf|-BtwF_Sa5xoz^Y_{n8P_{tf^x;ABN09LyMKa(
z>Gg7sro4W9mk72Oq@_Bf$-bfTflXyhSp~)}0&sUSxTW%;T|PrJaj(@`!dXIrs1TN}
zDA9vS9Gyh_UVNm*d{Q|-t2ckB9Vq`*5mP^R)p`P<q&3r^L7CNrui@-il`QY1Iv&2p
zSn?HbJhs<Y6M3YbWGf*jsy@QU&!cm$<)%qFSZ#oM&ZAA$nXp(#z!~0DQCDG7CV-+3
zG;cJ%4w+TMvd`Lz^jN}>W&|BD*&3;)-}nafnSH69{dE@8TUTB4)GFaB4tiSurg=lW
zd5sF-mFy+ISv)-S0^@=X2kOGQ{)Hs}3&@2_dq?~x+5n~n$U}7pj(3&-G5jrQ{%*^u
z7UyLPBHp0;-OiED8W>jl^^xu*>~XtxX;}tuyYAFi-7nShue9_?a90-&p!BAZA=s>v
z<9>#niF}Xw@Vxm&4ocmyu^Xhv1ETY$5tfJpp-DNoS-GvR`Y#qzq-FuoS=j{#{Eg*{
z!~~Qbjk)Yj3Gxme%m0??8_hXqvR2A5Y0)k0vO_(d0K8@Sb~xg2tTvk$_|1T2vwdx+
zU6U09-s8BARaiebCcF$t7Ivcj*M6yqk3u(41K!wBJ6iu2N)UfeCsZSgZRa+s0jV?b
zc3dIWyoL@YH-cg)sa9c3*&4Tc?Cr(ZU2iYDMJ{5L!|a|-!9M&V-Mw#-yl4XkfYg5l
zG>+E0;nU-sBaXu09)yubqav2f?WhZE@}rr9>^E$kxOc-|GQ4-zCtj_pcK%_9ts8NQ
z^~F#*uXZFj_biI_U%vhn`nmlwHlayg_RjoITfpm+faz+9%DcMrhSxaPAxRINAK!PX
zUv&DDJ645uiFI+A{0V#^wOq33yFHocEan<?;g;g#F+r!Pdlzy5YGXPM0B$3=K%O|k
z=u80*k|1S$NNV=gn-{c)+5%9a50@>`vI+IuTY=xqKe!KW&=Z}>L83CAeG;5`o>so$
zUcONmNdw%$1z(Q>z4Xam-p{@67(qFZ^50!(>OViL|Kx*A!_pEFuzhHj{r+;^z7+m}
z(%{r%k`LsGkIw<9Z1fP6gz5_ytAocZs@+=u5jJzH-s?^^VAB6%LABVu@n{Q5$Icg-
za=0S-ri?XIDwCV0FkwO3-VQuAzK6T%kiL82D|q&H%XVPU653!pSP>ASdp;z}L{g?=
z;e*?W>=Q1?&nc|l34N>wp$L<s6!=ko=x^Wj1%!S&W{~&^x$YZUP{4U<A7JUl!3hZa
zdvvSWILy&Cj2V6%y__ojB8qS>ZBGH&6A`uD9nQK#4~ImIE6@J247yjMvI9AM8%BrE
zV2&F-L8#2*Ct1I7tJ}?Qj^QTK*k!HP=kHih?kyGGdDwDC;ProXA+u}7SZ2cAPsUKb
z&-V<w=I+RCI5z(m(|ighoca;|Y!BS)`G~Vh_&~eQ*;EdNMv}+qo3p?_7jJyOS6E1$
zq8aiO+3-bQcW}YMW7mW~hOK;;X|{ac{Ko~Cp0smx!D%~K6pWwcMWq;Suol}X6kBey
z^WC?qy}ZZyU@@@Ad7oQ=D@(L3i%q$ngTHN@@+^}Dx9jG5^`7W;DG>(Pj0tQwc_?Gt
zHF2YMUlCn94K%xyGGI}gshcuegE1gc{D<1s=sV{^^J{EssmJ5NaKZs82%i&71AH=Q
z@NcYPj+6?m`Rd^rvY1&Dxl<?;5Lx36tB5l4{*Sgp>Tb-g{TdL+4BQBmIK}=~Ka~Xs
z1_?|DPJ@Ht9*I?UyBMPs5zbjbqES_B2T<-et2;36Jx>a|w0(OdtGiJKzef1+vba$?
z6Sq|<F9;h8JI9*;T6WAo!34sD8zzK9bx|Cgk>A_zHygz3S7nCEgwUWU6thBqBx?(T
zP;o9<DCbygd-@@#Ka=_~W<K50G@UI5?Vb=1<05ve53bWp+kM~m3g(8%UJ)fdVan0W
zhuc(Jlo<)MNCiP_E;AbxO$;b46w&!T-}GxhMo^K45?4Akstz~CFA?fasktT{e#5QM
z2Q5V=jJ!O2cBI2WUbey?Uud${72%#YG+Z0-EwRH1@=5k2s7j@f#;PBZO5j_IOXFcm
zIk;c>9r8-w3-!Y?GGhe6fL3V8e*M!u`oE*kOI`Pb@7?`tCNo@A!P|hf|CL2`sjN3<
z_Cx}76X`B^$uv#4Sau(9xx`hib<h=DOt<3MOJO``u`VMiR+?Qd;?$gG(4zh}I~k^Y
zL{gnzSN0s`wW>KBM#u^f@xSEaf%<UwF9c)sb$kx>N`q9K=~XU&QX)f^3H-UVpbDEA
zN1u}$6~QEcSM_h_tz=%NC*mj&kabOP$_F+G49pGp7$^Wczz5>cM&pxJaxxBVL#&^4
zH^qs3WWPjCG-&`L8e6Id(()o<3%{qU2Vp_3n6=iw27>n&Y%Fy+7ww*rTGL<)rOAs@
zND`(?((STpj?=zV>>C-H_WB#oTh%j*_UqA{FC258x!HronCygkdet#@4F!U<B`M}{
zuBE_df4NpjBZ7r1AyYcsA3`&5L{`x=FT{t)t+K+^TVJ1Xe~do)aQ>s3B@GbA>_o0`
zy32HdXDy!7rD!ct@UHrExE>Cez^XpWxt^}NTC|a=^N(jU+fb-@GuQG0?^gb0m*TAg
z=exY0if%kC{!~H_c+R_B8n#-z{qW8|-W^JUP{~eZ#s$95RSbkLA}I19g;;GGb_-rp
zu1<_^Fi!r>*wFE*1o60*M2*YE>=f(*8w$qv8U{M`zC>;a-S=;M+OL-0^B|cRPb^ah
zBv7H-T$Wx8%YfdRgFp~?sF?OX$PP=d1c;hO{|@*o!{d4=d0|}K$UCJ)n{9G~^%`k;
z&gH=&FWXb8L@rqO<_T6{hZfKJd?6u@T{ChK$Y#=27SCmc4oLyuqC2O+!_(J)tn`J@
z;&&S_-UYy$J_=3KlJ@WXnY{7V<(Ww3(%<r}MbzpqA2kde!sA~4;iTSN3VUv|@A<`h
zGP^Z`NCaJXfWeL=YCDw`Zt#nIVum{-kH+1Dr4#<j*#MY}s1P294B*5VHjqrY#WV~U
z9R%U0d=kmQ{|Ot}!xQukG7<2i7zCc6kH*L{p=Dy)i)II9HfIrvs6zBJQcScMFor__
z4;<eH{*5NW#Lk>)cNboW@B~K~nyl|J6ZO&UpRZgM(>uwZB_CYdgvwIip!9Iryl3fE
zdCG*f!vTnmN`aDm@edY)<CU8!U~tI#;%?-awnzmaoUQ!&D$kh4JLWK{=6SwYV-Oo^
z2T~w5;QQm3Fpujf^e6k4h`98`pATYKQoj4;5{jhOI;+(^)FujM%3xanI6HRq=zL4d
zqf+<{5o&%cZ`(K|uKyc2t)E5l#?C7s1p`~Ojk$L>9_ktrQ^XZa4Y-h9HpAm#p%2*5
zyO!NC*^e(CRo|$|tUcRm9EluggLs*gz&r}Ni6bg{2p4?3pqlPOJK8pT@~_6&@HOaK
zd;;GC$9Qx+5zithq;nBuD6JQhnp-k(z}5@#Y*j+s__b(U#tUW-7lU~ffxXYJ0X2<U
zh&*i+cnxipD7Kl0&n;7b^eet-y8W>UeBd5e3P<6)a|lUVg&%%Fkd1aMuW<*&SXGx+
z@SDBX>Q}8otXVwgmry{!+@h{+Dn|NRo{0B-6TP|G^46x~VqZI&Q4gJBZ`VkMvPzT1
zScuuYrBmT_U6u#|G<b!Q*2ti;ru!)S61mg7)SOeFA3p{eUEghWQim+9`ci$R2CBZd
z>~JYNLD+dnZIsKk5W@<zd{cqum)<pCsx|p}9fGAz1V+q?<=g4l04d=H-QEGPw@|>;
zE*VDFiHY&sd>hFxRrMe??=tIKVw#MzD|U8hB1{9ZeHm~??`AFS4+iJ!!QS8I=B`3u
z<CKCfKoe<Z;@xO`YNs)I>W==zJNp%`oW6`<Kc_?Tw5of`gcKlXgEfZ8i2<?EMq{;}
zB%4CI;A2W4R46ac$JI3j>$Z9YOtYMC8HoA>eIPBOy+&v2${b+ICM#$g#LvsbW1C#J
z*!<rw0Tgov-laMLQ4MYwmS2~3jJV>(Q6Bwoe~g)1v`BiqUm~ED#w|&5>_+G~!YMoR
zqRsa#?*4d%Z5WWbX<N3nA%Xo;%nQ@VBjMI}pTxNw?JEpp6Bx*AqR~G%E>8!sQ~WnQ
zY5y_DsskVb=ba!dKZlIYfGB3>@k3vl0JkoH%KxTAa!P`pC%NZdi~3#e(~gDw(|CA~
z2IXTTdc)+qQ{H%&sm4>|z#Gsh(KdaERB%L(zB<ssc=nRy@o!#wjJ=2wK}7xH9Q-VI
zP|}|kPh`Qv?i+dxwBAwmW`E=~9w;vnZ|UzoLqBTnDoAL0;6(-Z_v*H;ir3~azKIxe
zTAhDp-RP5X*_K~d6;+~(O2p>Rhm*kq#LGbDqjFB|E}_~t*7sI<SUgmuU<LJn9N0gg
zNMp=LC)=(olxkPbfKRK3&tEe0W5#%?WYAp|3Ydp;kHEBhQCVuB5V255c8})cr(ZI=
zxEjwk`$wwj&mLeII5NOj0TuKF2?re?#auivi=T^<;<2J6JsIT#Np?R~EXs&)OWi$S
zy)~Bh9Ks^UDWf=U_%5S4#(KU7D10z;o6>wkoCo5hwemQwSMR5Y!<{d`#k)pa%Yys&
z1oa)VK+{U?NA&~mKRuZ1-FoJBY5eFJFP$lfV|aU_5lPeRCo9B$u#P_#>({~cO&Tr<
zPRnp@sv576jsX<)^n9;XIR(kc>YVqhbE0d<dx7Umb1#MX8)C3n(xes^gZeVD@J&G-
zAp2Z11=c`=CdLUHJ|f0cCoSSl{>xiPB7KFA(;)B5W1!I`|F|1IR@^0Za!h{obU{VF
zOQpT@q{KJ@pp)jAv^c=V4xo@ir+hOarBom6^U^N;+u1ietw%1@{h<L)QQH(3+SxYy
z&)}txzuitptAKS+cU45SWhhWLqN+OJbk+MzawaQO2|^PInDv(CeVff77JD+$lOgp7
zo>iT}Pt6Q%GmEfLXa*%f=obm49u#PJvrWURCDb^?j4~{AreWPg8v#JxAefpvv~mC7
z8v3^zNj10mDYJWgDFs^U)4hNp!Dx`X;IX@6kNp#%cQTn=2{6P&*aR9p-K<3<GTg?A
z)B&L`vrIQCV2(6cp9oVBgt?H!JoNYp3e?P|$o@xUsxs*JPQxt`3pEf9ajJkQZGxLo
zk^F~H4~mfyD-9OR_Gqf3zYfkzgWu3K9@GcfTemU4MxBpCJf4Ll<e>7bd2CyFZU78I
zvl;T%siC^C<p6};(*X;mxnCRXGm3`|uUY#ZLG3ZxXfl{K@Y)Cu>y71Q^5P~?fJn;4
z&PNZsw*d6cL*#|8Et7j<>#?nyX{;QsOuJN54--ry0H|q(kN)foqvfXR)%6-^L|f*m
zvGLgBMb@fCWM?@_<w0sTdGVWA&eWWE19q29W_Jt(M_XKGF$o;T5N#w7&79adqu+y~
zN?@_iOroqQl6$*G9LhqietpSgK^LI(zDQpu;d?foFC<560wY>$Y3Yk)#hVGdgK}@C
zY37@7aE!kSZ^S;r=aw*m&*;?;W8ZNp_q`kD%3OoE@8nP`;27fQk5=f@5SX&fK8L(a
zF`$(rOO|Wkp}P23DnPiBBC~|XwJBTu9+&%_D+_*ASm&zj?CvNsFNZiMpZA@KZ7_w7
zq`Yf2j!muS4^@6^l&2D9F&{a>H9<4R=keKyy_LF|;(0S=e2$B`VrT-OW;h@wZ)z=f
zB=);CX)X<0!D#f$h9~J<pR(=qFU<&>so+W~|Eu~I^nl8}o9qp?tfdHrK~uC*J;aS7
z`!FN}1A({!WSG~CzgS&qKQg_QbLEur{CmtNHt~k+X=oin@){YcHvoM%zR{$+l1zJt
z20Ycq!>$4D2hQjPvFNeo|0I%izl!9947`=0>B)yi3T@$YXpreCxYPH(ZxnFgAb<NF
zhfDr6ZOFh+{HjW*Zd8^bCLb!6ua|}I?FTewPQziL>C<1qPV)GyV`HOq1f7&;(LRfj
zk+oa}eYPSSPI$xq-PD8(qXNYt1v2y9hX`d+v44*szQZPI0Mj8~SUL@|V=nW6D*S{a
zsH&YWu+l7vXz{@HS>%`Zxq(c|k1}}LE+EoXoU$*mwDEItnr|&A{7}IOoS5a|&FJ|&
zpfCiH%%N=+&WDGk<ITW~7nozZ2uBtNHszX%_U|COop!3w7VD0$t*}jSAoTLoFv1|z
zz!9KVhvj#-#`Ehr<Ponp>hsH4+dQJNwSPtQw#hzeg=>fD>xbEKi<mn?6k<m{6DaVM
zMN_DlP4k-ZE|pE7<2ig=LFqn*b<5n($^yU9xf|x-WA<42OC<e!3?#qh?*)W33IZfh
zxynh`e^RcW3_$tFuFqmP>C@2fmk;Yw4I3Nl+TmIi0Er}7w>Bj<c982Dmbf2F>`N-3
z0vb0v@aS0H%_glP1LJq9xG!N7FdMWVM75E_CIx?f+bnf+xS_dPpRCHkCc@p2=jmsU
zu=rMD*Eu?vYIWl3^)(gjCL=x0G+BVZbX&=b_p^6aGQx#Yr?U088)%(DQ>q~P1=~C4
zVf?ZvUTG{W6Y;8{Kh6aWdndG9PQ&Dphrgl8prQp&9j1<VeuoZ=kGw;4GHC549niP-
z?_J0e2|q3-bM2?nNcFUUM^qnowFWW2Dcq9SdcjZnEhG}=i>y+8TN9T4+ZFmxjg&+V
z70iHAQ@Phb3Tc#^O!2m+5gP@7uv!2{n89E0=K?Lv3PuG8lA|8{<Rt#MNTC6o@NV*7
zp>BXsnNg9wlrF#wB9-ZO3jX#YqvxYHMK#=xyVPl!@Y}^?=qV?1^{3SAc_j7xZFWgV
zACwbyzcT)(Q9)N!apC2EPeC348Gt(Z?AWE8xBC0tGb)UqR`54m5kcl^@=OBLM4o<{
zkamjms`!a8wam3rAVVEWC%IEQ*&BIiSaq_j2mm&y%k_X5fb9;|io9HmVcSaQwcqf!
zd=>8VD>#5BvW*jQZQkoie!!Izo7y=todQp)pn;tz01xt86`GoO4Jv$_qI?B$?KM1I
z>J?WP+=QCU5W!UVD|MO$!GnqWC?(RnY?1LT{RtduwhVM}P0U#&8Arrg{zPz8sNZaP
z@x$Jvb~*JdEYa)`PIo{TaUv*i=mg+1dO0eIW}ANYacNb(A=x)Foj;h|`^_FTB@_8~
zT**e`egz&HjZ4>wNHH=1Tto<EP%}%Z$)i=N*kPa$wNRMyGr#tJA@p=`-L>VbTM8zx
zmROubEULy7K5#Yg?STgtzjNq%{(C)N^evw~CA_nk^hfXh*xSgP))}HayRqF6kCXl?
z(WpkZ!w|_ey&I*MHR8KwP3TnKdLHi3*LAPBL}7#2j`r~6`(f#FiQqXOVFzp5m7UM)
zy08#+GsfTN&x)R~-|(7<a*6wXIu5e0spL(K3P~0g20*+X{=M1#XI33qEtQd%m=VOw
z5zq+xsp4d&S%Y!Q%r?NINBHstCEswTsKw&42LNd7GQuvRx*A}9dM0DmedL~V)%oeK
z?h0m^%_j_a=#FI~+%75SHzF|tF@aw)d0RGR#*~6(ak&L|8<54gqA#RqzgI)7+~R^+
z6gyO8Jd5Pb)L16CGDb{tS^+sgw|Skynq6Jbed|5)$I6AR(FXyIbGK5`X*})CeUGu{
zDftxPWy<RwxEqHiU3jlyY9NGgQxJEXk#bNxozWWgjsLg>K3fNcbTJRE38vzOCNwgz
zMS|~;Dj+uu5)|~OnODfo!S7ew3me{uzN6;@%AY$cb=a%^tasJo6A5HiF^ctXz3P{}
zs*VXya{%d%YM(MGmPm!0_iy*|e(ukp3C!tIuJSR4XbJuP+2L+*F7&|}ez$!OTl|Od
z!ISnEpB%bW-TV5k@>JZ`$2gi;MhN32U(|m}{;_7vl@ZCH{Z`L0%^+3`RIOrPDQ*^3
ztr;hA0nB*dCVMv)@WgHGUs!jpn{<gt#G}d)AoyvEp5*sR+2?~r&LN81Zu0Ne<pVe6
z=G?|_hmKu|R-~hL6e*TC&$F};4R=jlF_9CYw}Hlpg2ePCthDWv!FMfJl<`AKozW_#
znBhws5>;0(*J?fTdZZS(Q7PAb9*$PGn(0j*QqPV%Ur+8xnXiA|Ke=|SD?n94+H+4w
zv(BBZ3n)NlU5(-)4I(Y<&FRp}O5A^^>bYPfRbLxdQQ^p?vk<4V5*McQY)b20rDAVi
z!r+{{{&axo2bHpvh&OUJdczx7Sn8vB`ZYwd2OHtsGrPZVJvT8kJ)V*G)K~mcAKo;p
zo&E8!HnkZqy%qQ}{a>+n2|QYKCc*u!;ZL3i;5S<T!N&zgw6a#pMOUKK2p(~2-p}rd
zE+Q}uV)PFfP%G-~#ZyH5-}Cc~tJ~Ti+D|xv8s}E|KX6WJ;s9Fh8^)X7DuSnl$2SpD
z%=mt!A!>L!M%TP<Gp~?hEL8<JFu**WN=I%M<&Zar+;a5(U6k=K#9vU|;ByGsj8Z{f
z@TkH^LOkzz*kls7G$30Mh+C#lKU7xnLZ&y);mq?_&2pJOmtidI)y{W3>vKu4T!|m5
zsBbT>u=*x;=||P2e;)mdY@Z3351RizSA-uZY)SNb=>4DoY677c0F09G-GfTN-F2xK
ziam+HbP6F*FpP@gwyFF&+EBYn;%>QpN{YIFd*J?3{O+pQ`;_jKfU5m4-7nA=U$#PP
z>B{;?wRbV68|%)OSIVew=K<i?e^lUGd%qqY2i(D2{U{^1l@Xiw9BTM|+xe@h<i6zf
z8V1ZBedv2Fz@v;TNQf_!7lMMS5cy`&{6*h8Tq0_FL-m2uZZyuj<xD&y))?rv&g*Pl
z4P^Si)0S(DvvlUf8_4B*7gw$u-N*mqm$h=L_;<0=A(tHg<DMOvLQ_Yjj*2SR$|0G?
z7a0(-^7U`_D7xAOZX-tE2iodL`&M<P`!@3<;6eHF`Fiha($(^(S@VBgc!+F+s3b^b
z{9C|q3XlE@&05qx&*Ot&SwWe;^TR6BVewpA&FgLA!20XQY_SjP9cmnOD<NYR^s3Ja
zK~MJ;NzDhi;FiO~oER({k}<?)>4>7t(AK6B9?sX%@k2b;qC2uSqUS%2TfM<?-Q7)^
z(fy~|cb+}F`Z68CU}Vf_AsO)c8}G}mrypOCA>7}T#%F}_iENTK4c><$qv?F-LmIfT
z@dyr4^@fSgnBn0ptZ~5?Z|iE4Tm`SW2A?B|=~B&z?_WM2NzPLAlGx;ZkEQ0S%nFqQ
zc8{eOYHXg^H2R*%ylHUi3i-NwBD>t|HkK>z_e1VoyYEu#eFq?y5{ff5lCa$Q<XUg|
zO!|(NTTnCjF8y0n-&jl%yD)}0sYUr#gA}F7D9Nb|!b5h^vYv8DN9$q*8Fcs$Ms-~3
zLY*j<&{(338_V9Gd!FJt3inWQLJ`UQDRIn_M#*|1<e?PiX2EPKB|a*R{pOayCFVYp
zc=r8fh_Fk4avb~mn7Nn1zf-MG(>a)n_nb^`e-H0tFSm7$V%you@K;w98fNV~`EgdR
z%_o46=PZoRI+rpIV*x#{tp`w2(UieBF2v4*_>5nYtKnwRIDK<d19c9Ck_!Eb1RjNC
zXd1Vt!*GhRN)at>h{Fv8*NJT&0bYpBzLZS$Hz5X?T8X)EGL;@UD=9YM@K~&XE|yWW
z9XAA1YdruVaP0?H;QuB87&g{Psvd*vBrS%YA^L3o8QF~+x=p{|SSwy=q)y{QMof<g
zAjG<(^eV&*Y(Am9Bv^N1az4FGXUq|*K^H`a7blhyQ~%2>@$W@QW)u{V22tVySn>Pk
z9Hf&<G}zev1g-R5O6Lk&__EYrjx9WspK+xOCyVEP7fU@?BgK&SOdxx&sY>@1vej(X
z*8<z+^dL>?S#O<KH);ff)l@QgO-*O$Zzf)-&YuObGIZ0DS<eJt*b?Ig>Q&bNc<P7y
z4yWr4;2B1LMth;seZz<Vfna{H>2liB;s2%wVn@^@R`v(oAll^qW3HB`gY?Hdw4QU1
zgTE@taqF)QK#CtEOsGtwTlhze!jv%^zd<(z@k?v1ne=ns58_LPek-5rZB6_WstJ`k
z+5n1kp5^;Zi?9&(hi`dwC-1InP@yi%;}fX8ia#HcWhSx@0q3}N*IG>*0u0{!lxV3v
z@qU_QfVIW|gE@mF4`XSen82iuZY$0PtA^t`fDdLk47iq-;jAWTkO%7w79R`)?7Y_u
z7+G}m`_RGG<$N9wWa-aj_yXjlb+Ez>n*D*SCivm6ZD}76+Y+n&!$35(`bgTiiut`r
z*T$OG!9-t0U+U|Pz(*%0a<SCg%WX@CKc0*?oh&%euNr=7?qOa-&AR{X-44pP8vl0F
zBh7GbM7_D^Ek%MF>QAwTl@8={ys6=?kcB7}(PKh|BAK#th%n_MT}BS&A|}2HkdzdN
zf$d4WSHLb<0T)~1i5V2(VLlr(E&+@VVpWRJ2^nmzz-#1~_wiHecgzNpNk5u5<SP=4
zvvpMo5qx6nzP3*Q7ECQS^+o$<;mRJ%jArY)=q3W{p%xyhSfnf3ybBj5V|nD0b*bop
zxHxO#lx8*~`Wg<#m<nL9z{N3>$ly&WDjd}v+nY0ZnI)Z85|UJ>`7a{`=bhgpq``gu
zcXgbw03LqTcvw`O4221ZZkoh*@fJ&G-fY-NlQ|gYHE8uT$5TZd|2wZCLe6Z6wwAnD
zn|(G*23{=zqNGR=hdL$LJ@eNLbRnrYZlFzewG<7=x|8Us=9?`wxgqq&WL(8HFYE4R
zEb!9L5nNMnQH#o_ll0MxfvoOnMPJqd8!1d5tfe5V-PgG=Bz~CN0RS3001UJ(y%Sam
zl#PsGhaFUSP7Q$09Zc4u)j%9INQ99=1<DFN%j<w)VuikClyG`25>JcMUWwCxbsoTz
z?4PV>F=&{UEhAq+$uU~aZSZ^-TjGSRHla$hU8qyYakG2W^|{9TnlxgDRfUnkQfemk
zAeNb@q84W8UE<qG$Wg_YKQ<W1lbMa>F^B~-IL{;P0peU#3J6|9Wh7#>O9uAJ`31cV
zcyN{Lr$NfGrtd{MW#|lp*nu;m=PH<he?w4kgD8`2uKY}aXvC_5+?>Avey4We-H3NC
zjqkan;omlAUgl0TY;Y5`2JyC^MTENZ^y~pnVQy@(mvZrp9vFkpUe2Zvd615C*i7@`
zkH+8+v5wct_8pJ0J+BfPu8e#(tH01u*QQe<>+P5D?`2!xMcqP6$qMDr%NzH$?#u?5
zStlQufq;tWw@8=8bRZA%F^M0K^diNG8epvdm03ln;m&4W#xPfP>G0DBQcrriss-(2
zT<@djy+$w)o*J4-z0*15Ri2@z(Lro0`HuiBL@FZR?a_~VRrJqT@6S`t@5uFfqS_R9
z#ex>gy(B1{Uc@GDW7jez6_>Vux_{Xo6XaQV_@ajcVESw1DvIk+?gvO@@abvAbT3Io
zXxk+7!syexSnjR!!$n+H|1t{$;2zY!IN^`F+|NoZnk3_Jm({M#WRG}ylvwv5qu#7M
z{AkReD;x95oD@9f)FGsCbiQnPOHu2YtWTL-4>C~=)Eoa+rDUoaBB>C|_*@$a=_W(#
zNip{?0OHgQ4wFgxRHOq9$lDFDmFre*a%>i|W5F*rT)=+0mTdsBRaoj~R;;ybjAx%D
z<SBM|k0NJ*2{b)>Y_3{|bFsgBLh{n{Z>r6;9D9ySe90-R(AU}-@dVqJx6d9@db6m3
zCgtDg$U?PP0nYCYVlYRya(nOY2P$C8i{A5K(maD52Plb?81kq&gcW+e@{K{&?Bj)>
z%CP1GTlG^U{EGGS>XD!#q=K*liZ+%<W_+qzTn8o&ytsruFnb03q<~VdVBo)KF3UNo
zk=n)j=?;lA@Mt2dvtmx7@i=3rh;`%g_T%$kUwZ2uFdg;%z80_viWCGkaL6zt6h8ZI
zG<T~ioAk2wTfJ}Q20|17`rx|1Uu4JA_S{MNZHy7u#q1(k?kx3w7@>qWU$=2SR=#~}
z^_a2JQl~`Z(QK#-b$?WNcEDih_hJqy=(SPrOVODg3&Rh7)<V3y&>6JS(!yH?$-@~8
zeW-tT4iJofF57fY=$YhoQrQ#>x!}pTdV<qaXSphurTPOMc4ezST+7clf&PD{YvW}W
zpNiChyZ@pLX0*#^uz!X{{sQode|D~3>(!|22O8R+E<SO+cZK$CZeyQKRp-`GMB4AT
z@LlrXqw8q9^Tg72JdHC3H3E2%5`QNnYe}0?TU-|?M2Xi%FX{+?K+wWg63r4mN{G`q
zo5{=0lMHA0>WMR^by<8vX?yalZWI>=o$>GR<G&oRxpgLLXMk~#;)$N3tEPS`&Q)k%
zL0c!56|?@5ANX6gns&zajAUcn8A$FYhxC+Me5Fk5@PnH<8SJP!1AvlrII@QR@&zw&
zA1nOj%WEm!3f}1$Hsv+0Y%KZ*jLX**LUMgUpe2jhu{NxgV3vAZuP0`#%FJH>`FHI{
zN;waY8|%SCrmb<NAHr-quI!y34+Nd6UY3h{LN*TtE~bF~g_ZPSr*snBq<UkJr(A5;
z@QX?@sQ4=u8eDAT6dp?DI0scGb_~3-4o)|L##>51pVqxR@P${`LK=ule#p<U!Fs$d
zFupFm;D&lhmAzZ+A@4GkPnAqHQD~r+o-wSqlBMptvxGZtSG&IW%YiyEKeM-eo=O;C
zn*J)iU_zq0L_d<U$Fim4QB*xt=-Tv$L?z8K^?w)*W@F)#>_d1a|6@A#!memZ(F$u3
zd8qpl&Eex$1d#x}CNU9X7y_KmDW86pDPs0|#`zKFiV>J?P%Mz~owJDfySS3ls=tk*
zPkb=vievHe1B}Un3{-r|aQ<HL6~4_X)-P2pXnwAhO}1a7rZ7=P!>e$}I!l?}5AA9u
z4OSZkU7%bVAr^h<4R6kk72qTWhjFs3WU5;pQBelY9hW})kG5}G0Ykn`r@UINV3HKU
z-dC~7t1!*rt<n+FWwgkKecuovlfS1_T$Lz)b#g-xLv~qr*6Y1SWVY6yzJdBx<gUrG
zYQ1SNExu~{+EhWe!}XolsQ4+_V<xBiXmi^Ajraq>G7e{c><zm39}Z{p)yLAqc$7aC
zDwW7%M26K6J_}&A&g#TpBtR+v*f9Azn;wdShZ=Z=-epM02M8H%E&HI(p2y&801i*V
zt*VJI%^a;!6iE9?sMR(rZ4eCDfayK>G(tt1;K2?6RMp0-MHFOQ^3FT2?lQ^H$J>pO
zxea#Pk-0|Kf}cd}3IX}_ZW&2Nz8lb412L@R2?=b&#I{4e8OBD_#xYMql%M>)=9ORs
zh|~j+kWcgsJkc_`fv#t8Q!=9mD;Ij(;ugNn4xcVzf-jXsH2{ze07S!Ear`w*FcmoL
z{0Qy&j%g(bw#~4@l4fIyI`z(G_Ti&>BX(*S4(U_*LO!|cpw+D*M$(h?hl0+VJDJ~^
zyjB-vMt9OX;{(4x4oV$J8<fuA1B$rBU@N8aS6M!1*Cg0;CI@<#1b!|l@iJ?=k&ND9
zQ?Fyg%LH2O&X{13?c3w(tK8#N1Ds^}DSYvT6?#g^9VhgCrbl^IA6HHmL^U2sj7$a)
z%4#|QcYE_!-&)41q=v^A$*SU;^s*I(eN|E(CQIwq_U>|92tyD#A%DvQo`0m@NqXXf
zu1UONq&f2>Q6|-p-QU+?Ywf-IU^SKxFI_=3o11jz+72aB%T$nz(MhH8WQKUE!87-q
z=U%}4IV2u{G7<PyYmS1)K8TjxMpV5Tq3`v-@$<f5(bt41NswjVk$s_A4sQ4B`Rp_F
ze2?(Mbv?TtSX}SzAoJKQW=st^-nm1Gs_J@N&SYKI?&&AmQV;ZL5DS+*^;!PRQO~v`
zSN%gyQM+EkU`GMa_$FT$(;ff%c`m1zyr9?ze`R^icF<Rql-Yta_i3#7&MV|!U>sil
zPcwz*IEIxJz~><!7Wox`g76Tl!L$m2YmIE^#v@dWfl1@f_QroavGN94@-)31F+tkz
z1{$-%S|{{;Xc;kNc<r(C`h_7pO+vjrF6K_mW~I-Xi^3<*zz7Y9p52NCNx?v6TS2?&
zQ$f?`hYGu^P>bea%Z4V4$RX1zdefI_g|Ba#zOE{K`_%O9o5KE&ru}~k2e79H%!-Fx
zPY;C@ze_y*uAq3N_Vnn2;<4v9Z;m+s<Zs{Y6`!CIPu?Z{;4)hLZR!?3YDnByA{+f@
zp*SA;RD+nf;x@#PUdlrW!Zj<VM=M(O@8e8Hue}WNSXMNi4N^M@!es{;E+i`nyez#@
zKw3x&#xUI7G`^|LfG{wAhRp)c&ouP{@8C@%e~n#>98an;hO{N!8@7l}AB&bFb*VLn
z;c-x5-Fv^1MliT10`N?pp^WAmrkch4!^vsaAWZBuWH9w2mr=s_cpA?E|8g_4aNNmD
zeMXK$HmMezcFUm{$=cu$=THC0anxMn7JSK}MTu~TgB)t(@;}&_cUh!7)pjWGM?{4q
z%d%67sg^bEDeJ)#rO~Nn2bQPb5CVVB#=2&nKt>4S75Bp7BfHe<VN{h$E5Dyv>6hTL
z<?Ncx;9teaI*+2RFU8!dEs821a%zK1Ez%4_m3f&yLLLmZWv4X}7{gOq*~|Gk%!5~Q
zTcs(%Wt?S=QVCp)VD69Kku$oAj0rq_F$%)E%I<s$EMS@WxS1;OeATPbs({Kn7UKc~
z!}*`aso5_gIhJnRWaCH|o_AL5VjME4nwtEeHpDdgWk4%yR%1SdlXyh6yMLa0?bgHh
zDp#66Ysbm`jGgs1xcG$rU85<)BmZ0jIYdd|rsipghQZN=u6=8~3J!Afs(L$*Nhlks
zU4x@t+hnS^ChKT&W|zeDC7<Op&n6ws0v!ZJ2FSdhJ;GU8Z7tM<8!{umS}s#Vi(4GI
zm9_w=jr9dx>ny?s?bxC))^h%45Rq9DNZ3AJF-w}};bFM&`n`bm%z|0gVZYU%{(!H|
z%(Ts{H-t-OUe4xuQ%BFJ1*d0*hnb&zB3EqJKihT47O4t)3@S*9d=H)ReSCa;YUOlq
z>b5%B%Ryzg=y(_Y<Nf1Hi~bFm{7cT;s)jEHZpWYaR<>Umns(4q`$<UrAqRBhj&Wm&
z{e`Yr%n$tnRr{qv|KWF=#r-ym<82lvhMAL{up@G3FyKevnA$&Y*o+6oQ;Wsp>Qr!>
z+VMi?(Mo5~l>sO2OWOE(;2kIF!#uDq0cwKw$!3=tL5t_4Y2C;bBsz9i6S$e&Iax7h
z7f*df*U?V4wGBgf=G+S61gD(CX3BF~a6am8CvVwL4$gsFV}#qXb`Phg#B+Y?y)xrV
z$<fPaU8Uqiv{_HZpYOT$)1z!o-Z@VwYF-#>qpITv7Mu&0WFwW?iq^7;)xL`(c8dqU
zt|Q}z<n*rDvV(x~LU+2=V&*|_Pk8LQH8^d{FB`Q@;1O~lWodQ=)zygkT=}=J?>E@U
zT8_mP=JEWa=L(knVDtXPir0{-28J=_dPwF$pCuQvXo$W9UQ<QpJ_Ti7WuNjmFQTEJ
z;&(nGE-CM+RFZjAfqt&T+wUhezoZ&t6$W3=oXjagZFQw?J;G^L21UvzL@`+Rr2V;>
z%C6CEbt~!5%ZKNC6?J-X(z%cKTZ<L*j*=rYj~EuqmW!_BW&I)MKgq2&w>ee#HR!8P
zddq&n@Xc8n4F%w^vEjCtUeH^Nxl}Fx48>^}jJbDX!3fLA1;1>f+Q*uo4@(Vf6^(J|
z-KbN$!M4M3NgPPP#&mQ4*ZCk^RpE9=mK_BD$NDqk@eI&5<Mn0T#U4w}3*2^LJ{`)!
zf4B{n60gwT+_=B!I3RFy(flfJp>%;zGox0(OMA&3&H$e`*IUYot^<r@Krh_t8h2sP
zjk23q?a=BQ_Aikw8x_Mp&thvpg>(Q!N)jd49q^x3AmX);Al}XOjklw{k5A_H;5RZ=
zr~H%AU=C{dbx*!uz3ObIGwkIz5KDh)v60LDfvzRgdvAujw7L4DC*7%&ve7|;+|K{m
zHh<*o)joCR)Scds7CVj};MPG3+?iwS<@+B+XZ_aX+s5G)+vw4aBSpGf7^AxzVKhiM
zN<a|D=<Ws`2#83EwCHH0yJH9_Dkz~S#+R4(A9#-Em*+m7`?@}#^K@cyrz5$yqL*19
ze%;LeKPGngh<=w+3$&`fu7$&t|F-Vk4(R{4K#SUVR!Hh(-i7@)MtT@veLL{ZLpq%5
znx+2Yc@O&NH}<se-B0HP{uqAID>clVmXU;p(c_iKso{)U4id6<*6)gB5O(*ytW!^m
z@JtlAQ?-W`tGzdhZ~R<2kzq~a>2F`ZOXo?IbY~Uuc_OjZBI%AgNmYGXE%x+}S~1yG
zs?w?uvh+cLJ!!T$Lty<uMKo7><<Ebt<JSW02f>@dCI88+m1vaY1N*6Dkjxpn)u&|a
z@m?9g=i2*|yxOCp`TK5Ou&)5=7g)airz{3q@RWqLu?T7o4jC^x-pXl%;kL@^4(h5*
zHhN+SWmQ%&s0ysW+g>HFk<HrjW~k?BtMt>s=~x+^nJN{Hr}gSpL{nKlMJ1F~Rj+DQ
zpIT3BL!(OOPRVWqg{zzU+7%yKQ)_r(aw=AM-cfwLyDE!qESJ@VZ}utui^UQK-jE%Y
zA3-0yEfz*b$MmfN94~#uKLYO`Zhwlht}fu!u#N_{#eGYzm)zIVh-$Cnt_J4XxbCga
z@pZV<?QK;`l1xhS0JfY#LC1Xb5OF&UC&_IB#tMf<V`H@v#SKO5BC>Y}G;%0J^Tj=R
z#y(7!t3=TVk=#}R61pk;p7o)893`?D<q>n9&^Sr;EXKp@j=!qB-fB-H{kYy_NnEz-
z@bf(H*-GuL;Hb0t1-9NVHtfFk@uCXM+6JQH^AR*o{`6^_!6Ki8Yb5mS%mjno?sDY{
z&Q)`^xQ!&q>7a>1R~E<-*r0BqNBXHQMb4bAQOI{Rb;<|6<cXXn{c$<}tfcg|Qefpp
zI*o4-Ey-y}CTFevo}pJ@WI~EPqs-uO%r}|(Y~6ahM{&1p+<0f)-Segeeyu*XF#N<1
zv>i-`vvv4MJas$M{H9z)wLqH^h(G}o`$_#XoV#vz-ib8dRNVT%l@g9KPFqT_Lu|@^
z*=Z1UDyg?C7hmGk>W?@`>Z2xnP<2t7&4fPYz9=bG#?FZVeL-3Vi}ajnHUu@ZSIgOW
zD6bO6P`vZ#5WwOfNt3`Jtay`xF&ZTNlx4fs3|e8vvtXpGrxyZ1IQd{^dS>6ljimCj
zJ*IeHpU9A3wX3GMrWG;Y2F-r@Tzqb%!snYu%}A2vrKBx2LM!pr56zE<LnUSMS=1Q9
z7A-^unhou=%Y~*ncSLB&f3Tm9<f$|jOEW@DT3+5NoqTP;^9^%wR=BmDO6mj#Z~3k`
z1|ERACr%uhCM@E(n8B@|g?5Md>sP<Y*%<ijlCjPn1VSBlyT(_YQ&%s>!!1P74yG-)
z`L|i_0SkIU3OMQY?s+4b%Yp{8JIX*0tf>X0`Ttu&hOLGD-1*WpUj&bFF^F)z^CFsO
zK5pW47LGuJKPDGuoU?3ac0Qo9_t$}j%aneJ%8E<h*!t>OcpYK%E}fJc*h+dXracy$
z#Ya!NioB<`VA;^Brpaj^lrvA1c0lz5Urso?TZvxz^O*7JMDQfenAHs@Yf;xv>%|RX
zIll7l3-Ur=dD~qUf|qsJUi9Wk%8H@2d(Zipxo5^sGA}ZF3olRP-4a*^me|ExC*(Ka
ztc%Z4(7R}sEg;9!OnEFq&V!D0L?QRU*A{;Mx3c+`Nji|G-Xpd&&^bawH`~?QhNXn?
zV-KF(+A2@(&(v=kHWvVK{xvv}!$Vc`b1M_bj3E*5a9$h_ZRVF34;}V$ZUFww!EpUG
z+1dlm|2TJaJ^lFOX+0ueaMN`>Yx&An3E9~jI8O&irNxTj-*5mfCzI5Ev^IPH;~Tj8
zmzn*xh!Y#pgYIW5ehTYCWJp2*W2DewG~?HMao7l#)69?R{>fN|zfUWH6X9>ZH{RnC
zFK4ErW>tk;RAP`56-_=MqUjyuyVBKMuJ4lu8$9PEpUt~yMw7|o@`tHD@$s=KRe@Nw
zK7;HZ#8JJG#`Vy-La0OsD0%ba<qGQof&6$d_sJ+M^eKp~9?af5+AS$cqm!Y6hq=7h
z<7J)ai)^620h83-${wIZ{oYI*VojuI#00wjz2P(-G2V3hX=+E>;`;b5pSTg$Ej45X
zU?K^k!6G%EiSC_c^LE{ulqk-P_2jBm(3Yt_$*Vg-Z+DrIp@oBdH`rnY)2|R<>ZbX^
zu0>C!!bk{Hb}e=I(ffv`xM4}Gxmp69i?Hvf$zY~i<V{u>+yezE``YT#k^WlY88-bO
zyrja^A`|Ottge617+g>>2c1SV3qM0dc20WArnI%PefD{>G8w0t0+<UoXsZ~AuAy5@
ziO=I*DE}Hlr65+XUF^0;bz;P({6??ecpBvAOmg75F$!dj5YL>Zn2-8=f`0-nD3s6!
znGO<h4)Q-l(;W@rj}_z4lLI<dt@XSwQ@bADl_S@aOSVW^A7$Ypgi3{3v%jYk4<BQY
zO*t+9vaC7$=$hLzIYuUYmI8(NLueu+a87N@qU>aC;)fW1v0hu^)w62~NqcKN<`kQz
zqDKQ{y)I#PEa1mh#mgea8nkczN#u<n-4)~e*j`&`8>?+y4G#6jEG(=h`V_WB_Z_+9
z1kL2*mf_B<Vumn+gG&puAb0C=*csw_`6`-tK=PwfcBSc+CHBxw`5YUFNKY^q#hp`%
z`6xSVnaFmkMIJWvGJlaHOv;wXCeS-){Ml00N^ksQjHYsHiKQ$@=_8VHP-g~U<1cyj
zD{T~55&^FLAPN<#LnVkDQOXn`LDs*7x0XWz_g#rV7D;E2@#iFJ_a#xfj-hz5XxGoG
z$Q;W%`#0TMK;*JSkfe}T!3j8)<733=GYwpt%cR_mr&o-_oEIj^x=wCN%zML3@>0Sy
z*>8lg$cKw|z&I|dT|NQ^n(KH1W&ew5bW$32$V3%{o0Gu3+ExFlc+okKMxa(ivWjyN
z>>Od89{CjHwrr5&+5%#1z(Jm2=-n!1Cso{$Gf~?W_GUU5@FPI~c7L!`hf}<G+2w=-
z@D+hPBSW|W@DMf3sp1>;&W)1*wC+0Uwej`Q5-FW)Je4lp0f1RCNRaB<S20O0@5jF9
z%>R+K;Jm-s-zM5G1l|gJZ2B<Gs+k=clJ>p&^2m`a3%T6ZksA@E$AqCQTNU^1&&xGC
z)|g=E0V6{6x63~nKRP7iU2dxdNXI=?A?#eeQoeYVS7GaP^TFII?q~Z)PEVS#(&dlT
zzlbTb*vJlB{jFu0C(V~TfR7n#JX!K@4mR(|50PdmcI2>|Q#%dT0IYkVR7Tf9d)aiZ
zFfu!~;Ntj}1mT!n<#DXQQhYoVo@SNQLpGNoZp|F0bExB^A(dq4u0>Z5bQ5H1L}ipT
z?xopi+$b<~8q|OGNZ`{i<;7D_r*&32FyM_4VCLa}Bl&OozXDtmHg%bn`MW-R_)k{c
z$IJ^5Vn<HqOdE%9eUBGuC9=RU8gNwvo-VoM4QG%nDlz4kh}avxunwg+j8Z?>kN$m3
z!2fLl%p_2B-GTD09@9V1{l(S*07;r%A;x7aE+@R-6o!3M+BrtnGY#!))FEDfB3F0z
zA9FgDTluvDGfi0*Ir^cW+*jab$}lUUW<t6MVWYrBZJqyj`B9$ytl&}n{mu@`wW8Nw
zOF84@WS>~&#$vx@3_OCJyzQS=mw(y*x=M9oP<1Mg`}cW5Qg5G#{@cn=>LQow%W0}E
zb!xouw^Ht^mL*DzbxPF$4LW|JMI;JB^@eP-yeO`_A+}f07of1f%Q^{z)ycjM*5Dcf
zaegNn_iLD*^jpE>KwbS@`*1dX^kQ*8-=qW#gU%E}^NnY{1_Fa)yLsc$Tt)-@+2}z<
zTwN3+-%&DC-GInY!k`8~Y_tE0eUe%tnp|=+@#Z40BxFF@Y*2DGxhP`r@5@1+0WuDr
z(%bJ!rQ=IvzC+ah=1Ex*3fP9kLvgp#2bBC(7m->rPECT7TE?4NCP!MPf3?i0w9P%}
z!P(*uM4HWww5^Ts7P7*OsA21LZTo!*B*TD_6%RjAyTNx@GH%$BzsjCp+cJ6>BdX)B
zs^ej#<LRVRECXX80jLgf%tVA&gU)}!IzIV2cVFoQTIopcRvRyB>!jcEPapB6((Irg
z4P-20i_i(#90^O;jV#xF(4ZS78;6htc3<O1U+X?f$3<`cU!sOje-4g#YO;x2w$SSU
z={+2(iQSY)6dl`#>s=*R>!nZXWo+tY9_eNM)yt;R&*9Y171hsE)z3H5FL2T?^w%$n
z)-O)iFDchAZO|`!tzSN=U-5q(n*Ni&`UEP2N=}0+QG=(d2GvFeHBJV#kYNhDL4kgp
z*$E)je>^gOJdJV?%nEGcjIDRdZ9E!p)}pBUOGb;3<b1BvpxV^xL=RJ(pw*jbEY57%
zAMaQkgR{oUQw`Hf*5i*1^MxnU8w{IO$2+wqh>KP2)du+Qc=O<X)?!fI10&cW&hhhe
zFbT(S2*?it(4+Kb{9~n0lP5PPzoy_AT88=SCMP!Y86u2VIgR1T#_QjeXQKJ0s;49;
zr&c+smN{duju{xI_Ko=AQ*)wtYQoeCBz3HTph!#v3&qkSWU%qi56h>St7}Hn-$?xd
zFpZhm`%k|U#nX*(&}6G;Nir~=Oh;fRb#qKU`@fq`9cD(EK4>uQT%XQ+J^f46;D^V|
z5OzkCe&*w=krn^f3~&>%2eAb{V4YSrX4csIUnIxd_*i{_&3?EczI+)>EDbipB-Vtv
z#f<70J*KHElQK&_3}W<|V@`N2ePTq91g<E?vI)eVZkX|-uJxoQH>fqaf0%y?O=B!D
zV`4C;|ItJ9Z<Y;i-hh~=M-&RW%|4yOcY$XbT16%eX0x*6yDxFQRNBH}v&y-=KECu4
z2Z>kxddkEFi@fp~>mk#O`~@qLMWm`(aqxoO(1N?sf{vY~%IyYdyM<pm@ZZtUDTZ3U
zl`<rmIt&Pw^krg30%dsenOFrwSjTjy;4D4`yjaj+Js9C`Wy_GMX;p1jx#&R2v{?^k
z##EaZq+2i*p;8v7`mLVXKl`U=B^vNTaB-nnI#1GC+qpe$kF8b+wJbnqGYDADiMO<_
zwoK1oj*?w04qmo;W#i$oEGW8sR}^Ofi4~(u1KAa}6DS&m0Ns<x(R<0Fim8-H-aQ<A
z=_Da=wZ4)a@K7qRZ%Aptr(y$cZ5{xR_Xm5Um!2+UOsNR}F11badHte$g?Dx3%3co1
zhP80R*<wTmu&-ZIDFJ3GC+-_(I@eHy+_tT^vmN^M7!&~zijU`wjtkSq!EwEyWB@q;
z92V9V&V`Gx#@}~Lka-9$`Ujtvv6s-V&E#6^ty>e)D#4!GbrX}pIGmoxN^iO*evM4L
zZe6b*9(If_U$Tcw(mcOo{F`9YBI?+U0iy@tke0f(rRVtvAef$`h0sd1_F79pTC1_W
zV7cRB>RL}t!_&wOEZ539d@U1e*?fm`L=M#d5M1BBE@b4CU659lpqX}et+~K{^z%U8
zowT=GYmSF&PdrDcQ5^HczM-x-1fX0RSbnAqpcm?4^8t1q8f+gJTvc~5(5$NJkJZ1e
zgRkNF&`Pnc!5scV+s{(!>xsCAUjuvz+zoA9wJP}N0^nPxG@tj*hYi~bNdAunDgx%t
zXMY7pPr4cb+X)%G$kscXOIylrnY65em&Z!K1?>MG-q|j&7OCXzO#}9>N-_{Loz}BJ
z2n7-Q*cj`KRb$vE5s7=Bx>;9~DSTM^`^jZbcAEa)5tb|#Pz1IqFOX#tVd7*oiX<96
z3|Y_h9P-8AsjdDxOuvR6{|O+tGSMm}eq(8;-z*hO>ania{g<J(CK9_I5?^IV1+y#Q
z`>zOSl1|l;yWvx0Ci%YqTG`G}PGPoD6!Bg}>3xtdPCOBK6$OT~O1g_^xWD`7%5Kte
zi#thN5ThKnwN~O@JxdaqHW9lhg+IQNV4ozXwkPYnWnM|eh^)GM*J%>re*F|}HN4Kn
z?j`m6U7q(g0wAps`gz4&sL5`lo?9v4U^9*SRtE{>><amS`$yd4t9ws9^4^j46{1O}
zR4xyp_e3rMw_rgnWq*f7aZILr@u?4BI+o`keyXSiH<V&w`0lkJ8bMPK%YgKv#1w}E
zq<jlAWJ|WaOv-i6tY*iYX$K4Fv&|S$WB0-I>So@Yf*|k0iTmP70Wq<GF=T!tUSCD*
zGqpkP@+lrM9V`(~a5^7YlC@Usz0?8#E`s#ZDYz?%%vi-;z_fYsHS0M@=m`Z1w`%xQ
zjq(E<tJkx;)OS5_frL0w*6UBMv!YcX(fP5;YNpJAPnH*pLfhdU8+ArUTvDd%q~c-h
zbXJ~;uazW&UN+=6lJuA05--oo>=VnRX9gkRM(IAs>$G3%pkZ-9l5rBG0H>nD$RHH^
z@*z$;Gfy-5FeNjuAkdeGK;DqZ(~gdX3IR$)<OOeiX*2l}mL1D{=tHhJ_m;*V!s_2$
z`o$abg_&@uck;P++Rp-e=n}&+a^K$#^Qkf2k16PL>>F^7;HMBf<e<(GI?qRpbl^e{
zQwjD!?tTHI{3dG|1h6zS(|1YPck4SoUpbB)EOOhI{ddULfTttfr8>DA6&st${B_u5
zwxbrG_Q5xZ;NKPTWh%xuv)cA^O0K6}qI4ZZK4Mi+184Y-R)<H2-PkU-J@-yjAxGbw
znO*F8X8QMKZy~@(i->!_xZ}?<55O9B$Nwbz$$?Z|TfTwRUD@&4x3DmL%76bU|INO~
zi@G;|(pwl62m8j~nVMk;zbA03K@RXu_#cJ;Rv=p`EN%8hm;)TGodJCZ`Zk?o{?axI
zlO6Fjc?$~?!ZDZgB*HvvH_UJGW4Y+QVcB+|Rz7hel6fYv;8#My(RH~t{cxeTK_l!i
zwTQIM*aQv5dGo`hin^fN5Nety@mIbr9Dn{MKZ3)XBVqEk8R2!oF?Dd?7C{q|IHNk5
zF2UhcK27=t-UD}f<FfO<5bC<l#X43YIu=~=p!-qF4eckfqD3J^Wx@Q6-?+V#)xZ?a
ziXu0joIhJ@f7*B}5OJ<HI`&KQG*Kuet%RyjFC>#lSxQQ)!*27A*+LK$RV^sXPZZ5a
zki*Zk=XI$si1(TfQx$T5@JCQNNPl#6$?I<6h|fvu$i80;r|iR|l+}gtE`;?HvQq=-
zSAxPukYrvvDQCPt$FV8&EN9+WI!E$g5+-w(RKSJ_lSE?=6+!%!safwbwiI#Oddrb4
zG%wm-1+$+q3e$e9qszj@UZII8w|oFli*U@%1mRefw0oJ3hglH=bQk9-+i~G1NR|z=
z+zbU;hGYN&0HhECaMl44W@cH*IgiTdvR>8{=wF&3b6AwJzGG8Lcp@3-vVK~p+uBk`
zKO>Z@16d4yz@$rQ&0KCipLVp(4P1?Xelx2&T*+JwR3{Mu_!JS@$@1U{#gnX`qxiHK
z^~<b9%YCz!sI|B0W`%tM<&tc9(v^(Tn%la!zA2bby;=LC+?}Vo#t{4h;5{?=nkC;l
z?8WfUDDBJBOf2KOfN1~X{DDqJg?Ee_{_}nbY26a2u+OeVnjEHKT)l7q{4T91H9xHh
zN{LLXIdccs@UdC8mR`MceCQI){4wXBlU(h~C*r?u<LAB=Zj1(+w#+Tt-GLBrv&u11
z<~C8}oWUme#K>BU3}J#jOQro=mP!`WqL_#OaCC40XbeEF2P8w{G>?<Nt`w8Uvla1F
z6|d2Kfj!E4$KhMTRu9DY6QuXxN^Qy5cm6NEW)F{KefVFrQP?=9%4xI>O6LYpuxVF*
zaSxPv=OFWJ@j<`WQOJW9XSEtLE3~LsVB$SbV;O$q8!}``XaUK@w2Uk;mkivHEDFu)
znutg-)Y1X#8RRrHHZ`{ddb|jz4no@)*f{ip#e``32dL3Fi)NUZn41xwgj5|^h|fzJ
zX{?7Zghez?U(FgWpruA+oSWWF1XivGR8l1_H;4+g#{AeApKRKhd;eT!otjjrJC@3l
zebkCy*e_~vHNu!ZN4h^5OrlBV>9KCuOc(4Z^?A=fWC;_jybvofe{X@-?CuzI8o&)Q
zF#qA~i;&veH^^#qcCsAAYgGb8@AMcb)mt$n8i}hd>MeYrDsNPKC4_v6qoiVIy#yuZ
z2&XXxR--+v(TP0#RyiMBi6Cea1syMuRr#gmjDT|FZ^kP5VjWg~!E%%ajtJts>2s^v
zkEMCL@{TwgYj#P>)2Rd*icgMb-vC3YL*nG`;=cp(aNb9<Tf(xf#eEOLGW+buL=|p2
zQ6cw`SIkzWVc$M%P4NFZVH+mTtN09S9Qc@<*8V;Hmc@p_hP!4kbriX!LPPfqcXVIh
zpP%StEaVeoINO#4)xp-xRRIO7FnLfvW5pOwLrzmn3h!w2ny}6TrZ_8&MJt{V6KEAJ
zG(sEyvLG2?Y-c8_<m~uT^i7IgS5Z3Vh->Y;{4OEVq`%XgL0~^TnGfE8nxa<{x8i%G
zHLq|Z@)b4K*-969%ZdNu)PhfF3m!B8=fn~#?`eHyvBGN&Ve_RG)z-#yy{dm&WoU?7
zd-9(xfd|NW2=lcZ-rYgoqI&-CAWlYBN@yzKVd9El4E24_!kDjX@f6G201!Z-1+a5P
zNN~HLV-PeOSgSP*6;8<vKz?GVHbP>^8SZ-FeSA~ho(qU(iqq8?3E+g|>uQbIT<Cf1
zU=u-T%y@jI5rR&m#b|L{>+#AvZ)nL>X{6p0U%6ZF@@lL2DIQpgE5FFtFWjJDBdf9B
zVd^fRqtKP;V==gI_!?&_EIA|+ulmT@eD`L~YA*zK*#q7ZIcLY~^cbffLf=-zpU|^$
z$eN>^1oTx$sF*DEB^X#bc~0oaz*=eGC{AQfx8L+n@iAk&pn-nb0Y7MK^Q(2Sj2pZ`
zX-on=L4FeO*LLe>w6p$AX2@x5{!GU-;yaHI`z^x^iSU<Nb4bIj)OsOSp8hK;k)fP0
z{TYgl7R%oQvV(o#YkxXH<X{e8Bg<_t?^i2u>^&t(xf}bI3qa6}a2yTp>@59{GtRDC
zS$uh|S*-P(^a^)M0w}*7?=+1O(TYTC7SVM#X7LSR<0{zyQB0?O6m$Qwz3y};>Tukg
zVz$u^*tw~D^tJs(RFUpM(u*b5-#k2RM}MQFhFbc`ZZbkNAnYVMjnJCWR{VFkEKY;!
z(MBAKO2~@v=JzXvIU1rDx(T_qqGMoC8mAV9vw$vI_0cb84*b(aZ+`67xX>czs7R+R
z1PvrqBpU@51%Umit8}gtv=EUlx$kTzxS7)2tM{E5e-7?F8WtXaU5OCYJ@(1SImaf{
z-gL&EWXzZfMU=7m_-LLjeM`{Jt`uo1>ZA3a34Sc|IQPvG0xU-WiKE~mJqoz~0s_c%
z(lvA%7RN-uknwlnGKvdd3$_ze%<`+svURnNgAM_xbXSNMT<!F-B~`TFjqKH7stV&M
zgA9R!_IQlPr`<JMA(V`M9IDRxH#u;4Y!IG`#X*s-5h{CCEd4?w0?4yWG8~Xf5)sP^
zK*EyG6Pl@{^l7Zla!Vfo|04*2bN3AjX$S|~YHSr13Bmbvzi^ZmH{<2mb2LlRHCW!V
zj@X{iQ}%Raee#eoWLbPkK3C@aLkpC^Tnfy*%Hxx9xV$nDf*3Ox$?9=2D8bv;_{tVV
z#@M7zhJ-q%sMCfh`(ySgW!FPw^^Gi+Qd4d#+{c!b%MLPpIDehkQw7?Oa0F3<;2LJ9
za>#5TqlfQPGuAx~#&Tf7I!fJXQWQZIs;#Gcx8;oO=&5-tY26|fDI<$aid`+c`7Crn
zs2p>Tn{4QV4e3QePZPz>3ba9_1x@-|9MuRx8z|i~_msxfz;a1QPJ!9l7GX_6zrJ?5
zj=?!;0LhfY9A#@f<XN<0$zCY}DAA-?L^?9*MH`GQcCq@U4zRI>^$_spvt<(qU2nBj
zAGt|E*7fE+<Z*6d(@Te?S8Vu~sSkxLJtgtoS7g#=kwQ58cTgbfzN>d|&5Jvy>nYa?
z8k<KgKmc+f+qxV5%G^%F_k5NNCb>+;`T6)>XZ+d<y@Yv7!T<$=1Y$U1Y|s;Z>}%n;
z();EX{qRFNrUXhdQYo;?yW(&;_pB$l0n|CZ6~JIsV32-ysS7MwjV6lB3H<ue;G3}E
zrQ)|U2Vy47duCzCIg$e=+j|-U*fqJvF+#VSf!qFdmiNBkqAr^HSp(4t)HyDK{&qZE
z9ZR0-<*v4<UoVpsgHm=a0Wd8)9<i?(H`$>0G5M}x31=zsUo3mDk6qNl9iu>}2gy8+
zs|XQ7Yex7H6vBxE12CrlyfD@_tZP?P6~2Ixm#VIUW#2}ft%F7Jn-t>D?0jUh0TWH>
zUUHPwlkWGynawgDO1)h}`u`2&?$z$8{kfdM(YzwSj1SQqJ^fHXvFyqHLmidhbBTJP
zvhg^Ojz};BK&01mL%1azK_@=qUa|3S#TzL6T4=$HkiS~OShqPWw%i9lFTs4a+xWfQ
zHQnA6KJ^9laU8-)M8O;YVBVj<SI4|2sBmKbZXCVT#ZXjj2^PR2+I71w(55cv-xmyR
z@9MMdi!aWE0@)%((0*WScOLaMm4IXOD6{kRN8@h~HhP^Vr2AzRvHMYf{w!Z^hriuI
zFaxd+g~g_qQSvQHf|BJcz^l=DV!(H76e|fVA{2{~j6O}j_jd=MsrXjI<Se)B@4k>}
z_qgr0w~%4Ufn-+qq_@d=>Bip=iZk8Q8{h-|Z+}0cXnSUpOukof{5w?nrZitP{k>M@
z-zT%Ip2cVXB@Tp<+^uGMmOH0^G(}y%bdo8V2^K$sz#Xm7^scXDhER>IIt6;G^r@3V
z60|UoJB5Fyxk#~}A8t}}ke*e7cl_w#NFW<B7S4#oUA#&9n)so2=ZW|w?cXi#c-qi|
zjhx8BFmAQ%nQpK$R^Y+yO9&V0F<8&+V5yS?@%_kI@O%om*eMB84@mu@<MMzu@83_K
zq~Xtv4pF2hq&2Y2e^;lsjegT%wh+%u``Dal{}gl*b}w+%w<Eqq`wQ)uGAqVrWt&EA
zMD6@?tVh8OkpDily`f%oIXT(g`TNnu`@aDA)h{`xt4})xU|CPTUqA2MI|mB47)-tN
z7Lmv05^(R5VvGro_((TTf8P1B62nv#z0`RvumbU+fM66@4h2H~f_AgSzE_A%!an4_
zcm(vpN9_UF6>m@#i(Ui6I?ZCg>PGLZ;9bx0G$i~-ShQnR+`Hh|`kyfuD2NaS2S239
z1KiZ}p{4(&V00MoM8a*DMX`=Stl|6)tT!yX@NPVD<KdLUy4M|Jh^Qp!v!FV-A4CHJ
zixDiTF*cT0no!YMpw<B}vE^p4TvFI7)R_mRh!(b8O1#$vp}~PN50e9#qKvRfA3UH!
zB#^*$7)&o_9+y&T2jUz^41}W&kxBfhB;}f<Xhm>Lgr5iOhUhQubr@w;SMn|?rL;?c
zzs3Is5fpEcim$UQ`jtZHg7h9H%K*SZ8YzQu@Tk?KyyPTEU2--2#-ySgxFt<+Htp>%
zkwtitRttzn(x~VeVr3P&Ni@BIi#9*>{#cAll1zV6m-hNF?GGV!)+hbmwXb|EISZZw
zXH7%y*~C<3Y_6g~Y?*tk;3C^(&iUjk)|3w3j2&6<XI8FXW2tj?DK&{{Wve3Z^)ltJ
zSaYfL{kZMZ-vlweSWQJ^)Bkp*GnU+CCTA`GmE?Mu`>r@V0F!;87a(&B@@0(8l{NX9
zVzLo2Z)-I(5SRDQ2i^+L$r8%Rzn?3Y;&%~3*^Oojz2*i9@|<dev?S$3X8F5=O>HE7
z9hDH`qyj?($c$v+ZI8CQv=0E-H=8lKJ~vxky%tUv*^={zzGMD8TYy9tZqfNkAtP3J
zvQ=4%pI?ANe3_%VwK_466s3#(E=BXYdC(}-45)DGP(SgKK7y?j3@pJt&kH9nwG5FD
zN+``m6;<*xlMz9MAGm8$GPKMJ(3jrbDSWQ0MHE&g3FO5R{Ut$hYKfR4ldCms;4M^>
zexg7SZ+m1J`lMWIq&$vT`p-QXDpeXotT1UQYO|;BSR-GId>kWL;_h2s+oC<r_BfJ_
zve#GKU`_pmTp<ThA^%I^XNqU>r-Hw0Wr?`*$7|(8SN8$?U}0CX^#cho32tI-0Y-qy
zG$0J}LK1Wgs87X%u9e&NqEZM6YUL;|f^Z}gIio?~N`F<LSrr9~3_`fl5L4M#RqC_g
zCU6=~c5=<LkT}gnkP)AzKtV7pAONf@egHTo7B}DkbU3L{%S;#mcmwqGM{ZR#$?1Yv
zNylC+K2C9ih&-2(lm9Kkpe$!+5MV>`P)nzBitJ&YPZc9UR_p2{JnW+CUTOxuojT+F
zEozd5!ROlebrdm$@)1L=7vfnUw$^sZ(|z4z#hS;sN2z8X?l@4FNUV<MVGd(Y1)ee@
zKU)YHSVWha$UUg!RtAWaRy|o4IX<a>%Zo@&HLj<4?lBHw{QL~MXB_$4SQnCIed3?9
z4zd2tQ@Z}b4q6xUzDBkl>eSPa%uYW1*|lIDT2ophGD^+GXXMnb%-D1H+JUfvy|Z1K
zyK=z9il8{qL}=S&Y@Xs9P?geV;mnq5KT>H<ezQLcX_`3|eD5H-pX$YfqG{2kNw)#y
zRXbTp>8BDDteC)^Ex-|iJgg;+eF@|U0)F<QVIoy?UdhX_Gl6x$EH_Xz(nLC%6PSsn
z$7T=YlETAutl5jyY-Wv+nxNn(nf#HK15)yVC+hQ*JkQ!*niE=$&46Xrpa4sYzF7(h
zN`z6i52@?bY1Jz;B-qH&@*WW=ILly<m$DPFa1_aZ({7#{)XKZ`Qs1xr-TMwtigIre
zj@+C!>C*e^U#JpW+5$;%+2K|*WNZ5KrXzMaUsxA6N1C2w`-wpp&+nQu2aA*Qb}mH6
zwUF?^M0?NOW(z-;>aMQGBI@@yAdwue#NM@`H`K8z-IxiW8)YXrw$*<F7xD)*GuoLx
z_EIm6^2Jb3!IvJ4UGFPQn^`u@w6|fPxAX2*To*p=VN7qgh&QluoDGjr4_|U-WCu!P
zK`;ab^DI<#UUcaXXk`MzV@8|c*!DQ@(ZU8q#GRILoIWraWL+CbCGhqw;wc!}cf<Rw
zqV$`CFB}^ieKIF~miw|WRI50O_`-~Z2?sEsMBe(|0!RSmoVJ!Pm(ZagJlQOc(uKow
z0N5Oda2$x*41mx!YG?tGMgW;D*TMPwbV#6gzJ(wm2zCMx%I-fBLHsg&`>z}5Vf)q}
zL=-}Bt8+fBoYfEd!w5d=t7Rwu%OR}TFsMp}-~#~PgTcQ`dNfprk|c+1Yb@{KA@;9_
zf4Yr0qywEAx^=M#+g6YWlI`wQ`baJkEOtUPh%(+`8{kuwWbPgb;8gXV9J%9U5s)*A
z_zQ|oXB3cp+tgNujt1%0^lefOLkEYxekl-$9=P=v`LS1v@EMSIq+F3cFvrKNg&O%p
zKmN%N`t8febHJ##)abpFAu`V4)RVDGzqp3KB5xbGvX6#}$|p)1CjMEB#Z3ZViH?SH
zj@{oJwLTdwj~#t5ImXp7RBkb>Vnm-yH3D9k?1&yseLdRYF|=_ymA@&v{CX_oNX#gD
z{K+P?Rdlk?DHwjuiQ~=8_qx^f;>9Z5T88khBD>g_IFnYGF;LYvbTUrXSp21CX6sf;
z;^#am1c<dI?O5CDyq}uos$y<Gtcw2OtQ>x}_G0Erc~-CxD&!6kdP-JLOqM}_7&wKJ
zs@OdU?`ZBqD^X1KXS~SS3_$EdFA_Okmr@VG?LolSgOVI&=E1Hstc`PqsMhTEm|7(}
z0pkVoj9%{BOFYN=;n;v);aLcEn`YUJe~EDQn97S?FTfVWh8k?wS9F(4ZVuJzbi6#g
z?-f0zgw0qU7k(-L0tOa}yh1_q7>d=WdJ~RUDt%X9rmu4FF}qOD?@FzN^$D6`m*eD?
z1Ce5eh{ZoRh@u#nx>2^YLWCT>juT}Lx&?V~8(Jqe&TwbWZ&2MUW5e=d&T6VR^7aDp
z&e8za(i^VjTUW<xqOT21IM!lsn>`X+Gu&SgG+4WJ?Yo_Ft?pW{RWe)t$LZ!e|DQkC
zW(9JmaTQjvg(j`{FJP;-HZaE#-$$H8Pw2%_3pW7Za#AzC&sl^B;zokE6R5c#?9kQk
z(Ea9jj-{aCQjOHz`56kTRcY3+1aJ{~%-Wo_AMWBN%@CQ5X{kH#ug$kXB#=pr4FG>!
zMRq0!m<ICo;2D$7bO7h`b{|Z{5!-X)3R-=d5hSZMoD*%E@(pKtPHxp80=Wpu{!yL_
z^zqK0Mv^WK;(WI~Le-Vg;XP1|WSrh8Znl$z1V2ltAEPoe<W@EQ@8A>!%~vItCN7l{
z)q}1~cH_3#J-ExLPx%FKdu~!6Yl1)C$^0ngxzG9-ZZN&?c)sKKpMuRch(T}{*0=W<
zRVGd(8H61A1R`<+9sM(bfz#Ixdw~P+r`J<5tM!LBoj){79k8hZD*pTQ^fuXJ8t^@n
zL$1e%g3||JcaUw<=NN9(jk7O`10V5kAYvGejHW!dzz@lRpB3r%Mw_6#+y|47KRwC)
zxJvwz`BlGc8(Y0i-k{btW)tukLDTY4f*(7k;jWIy0fbJb!6%?&&;IfG++P5YIKi_p
zpA0DUZT2JRAh5yyn4&k;*y*1M%takQ>-9bJ>o4Nhip#GR%yNDL3>{0A*`yYEYD~<P
zl&>O#%K;Le=|FY+jq}Z65bFv3dib3XGgvrLa-Z9k<(R~^LqYwP;!_}8#$~ac`S97=
zS9*zwjh2&O6zsm4z?J>y?0s@Imh)gqqnjAA*EI?H&7a-F>K^b0x<qM=AmP?KxJKNV
z!;QVsfhEHy(tO8XPn_v*yEJLYoayl}|7!YnUET1`qQE{n<plh&c)NYs<QXP$lGptL
zOm-T?@Lg>Os`3aDJ#&`PT%&UD*WDdgve}D&)QNxeKe*7I-H{-7H%%_wIn#Xt3;!l|
z1Ao_1g8F0T`7g8I<)@dbGd_`Tl{O_`?PZ^QFQfs^)9wQ11eo?M3&p`_;jc}7)vxHy
zaV-IZS5?0er~|!^IVjo{o`08!lkF3#|4#IdzciT*h|gD(jUB_;)a{EI&5lkvsHM34
za(MY^DdmC~CR@%zaySe7IhU^77Izk?LDw##e|@wN@Gf=?O_!3x22#q7%`Rv2h$wzo
zI`e@vdzUMliaFgfMGG^lq2Do8pHyrg_lupb*CjkGk?!SBz|X{2rTfHeNT-2Yw%$6_
z!HiQ#<kK>eMFvKh#LA_RlODe>o^TXjT^HZb(ve@Byl<0)(aZJ<gt>V=c<9XzGx+iq
z>K_zV*6{cKqla;OwHL~s-iQ>dOQ)2&EuGH7t%1HQ=u7+NP0S9xCUs*O<5d~Ih}iWI
zkb9{perRlRwvJ66V*SeR@d@>;0%j<Ul{1kbB!6PnYO2L7Z|^NylI^7DMNNNZ?4h4`
z(>&D*xJSsQlrf>Yg^XiUP(<s*KbSM0FD#NunDqES(wKwY@Up_9s-Kk=h@~_{Txb6~
z#YXEW`i1vzEj^L;eZROiXB@{y2Q6;QmiMh@PH}>hOYyy<lH>YCRxuZ=m(Y<?t9(ZT
z(m&b|?4&OxhvXV$g}HAYIncj|dy969ki3-hu~Tr&K`BmT>Y4DX=<}60{g%oZd+sI5
zv^I6N&Qp@ou)Sy7!MJ7|UGz$r$~k{E&|p?z06+YM=!n-;SNrpU{pvuw^wF~QM!Q#{
z`&P0J$B#<{Q(O|`cHnm(i?z*rQR=3vScYwMGP`y?V~Ul@lK!nG*^_!u3;FEt(rGm^
z+Qs2l%46*4*Nd1x0cn~z_v~c)al`$doR@xX=uxC4SZ(q(C8B;`>s@9WFn-|M%R8^#
zgSru#909n?`4^_}E1@*W7d$Dd`kAMt5tW=F7$F=wB$SgVog9CX22#l9#K#Frc+46o
zWNyaAjwBw{;t=JG=oIQ~AxtY_meXy@Cwp^XO6;Xkf}v1O`Ahz`S&OvB_Ue`lvDhlD
z&rPo}n=hIIs-zf4cvO?=Avb=a2(>y(X6eZz4n%Vr#R32KSCg`^V#{RaS;H_L)*V&P
zcVY{w*3)dO4Y|qPgwHyuYTnnw<nYg&yo+}iCH>w35vT$Lz`k#3)&izPOt2{s5S{X0
z2(d}tmDIvJ@|6DDlNNBw(X_A{^}N5qRw&kqqNUbmF|o4FsJ0gH{}TpR597ky@{Yt?
zB^%_tw$f7)O}CkPi{M7PVw=dW*8^8y=!GA7GG467??o%x@;3w&?5BR~le5jNp}G&(
zhdnMzzJFldN?y8PRRp)ndr@RmoTehruE=@cdLFBwS~RIzqSfvbGxZ~qgFu&Jmz<JB
zWc7#+5}W_h47;9)G71az`t$!2<^kQ(;bzWa!4Qd8v6RjcyX=fuE#Bky-mmlM*IS4(
z|F$WjS0XI+2#RO5$tD0PG0BGcwk-Glo{lYWl${I|MTOz|)|x<p-Jd%C%*;WUWa&%U
z>xc;~^Qwfea0H1!)*DY0Db%?P7E7cSS9C37iqRzisob&~0j%#cNnjQ?#LE-|!#YA3
zW9@lp@`w)n0tc-oR@hIG-)IgV<tchS&bD}eYd=R7*7prK{nqK>oRQ?yC~$Ai?XTTm
zmS22^2Zro@;)cCpQB%}&CG%RfklHLHTvYl;$H{QyTAjqgt#A>{ZUnF^pr5u$EZ+2`
zeImOaI&FwV#*qww7AFb64<JU2{h5N_xT>pRtCmcX*3_ePVb$bWlz2$Li6r}{+XJ8p
zf?lQ(|4WbSl9!?dPseQ!ydHYP*Ks%U+5-1|@~H-m;EWqHK9_L|AP!9V`lyBh<HMSy
zHkl9<$2FP3daO94xSo|^Aj|cyv`+o>(kw|;v{IwmT@OCplIY<Cro00myuE9hja9^e
zqJT+#-L(9EuVDy*6yeMEfILPIh)@Dt?<QJG$m$g@Ygn=l`EhG9rtLs1WsmBHMj-UD
zlq=YTl*S;5Ld&!ekrAIJ!vE^XjvnQTM^?R&2G#*rzYLS#SBPhdXeu4ptl%W9-I$?9
zmXsM7N;d0HE|ArW)ytrQAH?FX{FO=fPlS!6LT@tY{zzasLAwJ{$T;WMnCtO~hJ+0c
zz*0=q6F(uN%&xwj)l~&J+2ny>vc>N#KPy|A{P58kYh34VX`w0ftgC@M&))`F-FLJl
zF-Oi2MlW47J*%z#uoaY!POa(7?uWlVfPjB63a$X28MpJ#a*e+<5c~JME%~<<13gUG
z_{S}?D?)!^6GjSPEv)h5gH^*DqXvy*9r9PHv%{fQ*G$z<lWxkBZxnyjjO2cpr0LO2
zkPa;g6ccu)>shJh&40cm=}!4o*}A&lx>zQIbPc;V_7@5xGdcixmawn+gW6g{e)!(G
zVYvK4*{}8S@qwKy<818m6{L}F^|M=*gKar)=(F0}8ioeFiLbt%7~lNyCE#|eV^gUO
zlpyDWVHwXKqR?pT3jG=~fvyHA5*-nMR6REV`Y&jfqQ$92<ZG4ctW-bR1#02dT1RWI
z=Rf(^JewZS5uJ04Rsi-&sEDNa9YIOLn^=zcsM8Q<FJQ!*-|Ytv$tEdes^Z^j-X%ty
zwvdGNSp9!8F~slm!YI??1_WFIi8c8o=*BzZCm!tTzDO>e0?(VM2+8n1FK6C@;%;Qj
zDYp;RQ%;U%J&ulhNgTv&TG(_SoO>wsx%B>F>hrgbX3}ZE&G&3KSx2lp&I($~J;m;o
zOx(FRE9&R;lFBNXyz-PkFPSU%l4~xR3b=n>w#(_QG*dDi)^T2OTJC-OTglABi}NQy
zE*}lr(%A(0@0D~FKH3tca~b!)Kjq=_)i*7jFX;GQBURyRe6Mt&;^O-=4X(T9S*43L
z@;{!NSKPI3E?sK8|Ko)#m!JJi>2iC=kH(-1zdPSbSNbk~G+$pMsASi=2Wc+Eo<z9i
zM-$z(3_1v0B;f8`75OCd02Ha{<EI(E!Q0=VUv>M~Ae>`l=YCvwCoWJf=?{1j%F(;k
zcjTp6x~W&!`C@m=2Np_#@Ch-qC}Qz6R!cyB$(u2Hvv`JlS=};a6cP3&39cuv`Vcwr
z=Fgp*uyWiUm&;Xz0Y%ISF6u9YD--n2FeWJGkBSJ-4w?*YhELA2uX6E={cd3qQjaM=
zSVeWSiDB_f>BM~&-OEvicsy+#raWg>n;b)G$BUHj?lUUSJv0d>xNOC#?+i}mAih_Y
z(S49Mm0GO{4c$QX@yD1eFHjGkKQeqr61xGUP$aEBTDmRbHmb~xjJe1h>m#S>irO}9
z`k}7HrIhXxzc)<x>zci>6F<{4`i`c##^u8<C~15#r%7RI@D3kiIC#C8>UVvd!fxe`
z%923fZ!tm)H`k}XlfZA6L+)xnyVTzuJ4y#{yOe)RkWh<RG>Kl7I6OAK@yf+c62H-Y
z3=mx<r@C@zv5x@hk&7M@<t-Vr&aAF}uXW~Ws!Ucwv>*MxLihjK`8K<><NwDP6-#N5
zef5{+Ht(;MN8~Z!-_`eG{;U3v6X@ImgXSNPhc@Z?Wa+V=@IzYu{r+|ZK=73wg6#-$
z1_MBn#D88x6v#uc5Y_SO^qLp(5AoVhfdVUG0bgf8V(}1ZEcn~V)%WH>pDd{3EHnuR
z-MI&4#3E*=!RluJF`M#hVc~k%hpSlt4kEyOK*9zIAtbF=N#?!8!|t50k7YqxXot$b
zdRkxs`o2jGlGnFB=#{Cw$;l}Qc$VM)n>hP-?1X#<L7Rf34nfd*VIZD+l!GneR@f`(
zKo;eH+2m7ofY~f~5KU3fw?9;L0=z+F_i7NdQbO#fU$8VkAagYKu{5w&&_)Y|79FGE
zdxo|Y+Ml#9t7n<oPu{DY{Fe`9&=;gjAdoW{-=`8#GOC1pCpt9w0qk&)zaW$iNo?}q
z_2hs%j*comi1Gtk6FK2&w@daQh-Q-n*~cPMPg%=wWK=`^L*|?<a}2L?I5UE>opt0P
zNgw9v{JF7uypl{ab52H;oMN@k$?+W8Syv-i>K;0QTskguZSO@7rI8%PU#)QFmlwR+
zCcg)`Mn~v6=T5h0slUc~e4SH13*x#lZ`D!-D0Wvu<q9LDt>yVy?_gMYa<3?r=UE&-
z)f&w6a7fSuNh9pedLrn!Br0#7&IyLcv9DlmK1H)Ng6oqlFc13oKhX711hbj)3g=mr
zWlJmJ@3L3CWXRiP>m~@;(zEwl2wiV2O$S7t=7<iS@@vP6{UqLKoJTT1kg#LqB%TeB
zK)!eCo{faodPyW<Aa1xj^kkBJM2R8`$%<idvCQEyh(N=8GAgJ5zvZA;trU+8zdDg?
zJk5!D(h*Mq<Ruxuy18w~0}`49+U(wv@s!Qjqc_T<L;{3a+XRIdsB^#gQ4C^&zqr_(
ze`0M03LOE=+Q|RrQW^6ooO(znp_KCCl_b6@l;t%WxXDnODszQgahRAX%0W5B&q;}z
z@{V{A<B-IAG1Zii{_=C_9LTM0Eje2Ow!4<_F&RM3E+ZjCWlB$-fk$ylNFqdv`(qx{
zn>-}pJbu+u!gyD4#arrur7<F;pCp5PK~U`PM;ExtXPis8503`MX{s|S<&Y$E(CF3$
zg}uCPigS8EC}48|HQ}bMucOHzi!$Doml4e14pz7W)}l+9Z$R2U{%FH}?g-e2WWVGg
z?n)(ncjeBblft<cen-)@27I^pW;7t|f!SWy8tC}`6K*yd97?N4dicHt_?aBq1i7ge
zFGT_X@%jWef*|7_I6?!;e*o|?BRCMzNWx<`0?01!YWO`P>tQI((W@f<Vc^+a=x?jR
z4<8LXQDNgR4zt~Amq#EMc(5Wy>c3Ykpe4w4&4lwV)R|!N{Z$d?5;|K}@=2UU8_p2s
z$?j1Q1F$v=1KPkUjZ#RKu|V5SlErOTE5jdF2k~IpcCaE75x*GEy2QfGB%e$K3|Q6W
zyPDdzv)eZ7-$^ivmb0pPW?$*yz-Mh!nP~;1(4TI%TPm<yC?H?bB~Q(#ZOC^f*RYWZ
zvs7VnP6_33V7mF3&!r&DC47XeDqrIblbt=#@oAW=b-Qa#wK>m)3tN?DRXxNk!L1+^
zF596=urd(Xw=tJ+oy&AQSYk5jVCm4Xcp-M>Y<=Ovf1zMeXk>SvompBHyx6LIVV4(X
zFE9oA+6KX)?|*HA7zu$qNFDpclA{dsWsJ`;fGphxlL_!Bv!RMzmUSfxm<|Z9>i#w(
zk$C$<-q_F&EmwbCuq&taPT2!ZTR<HMAOs2|-x`Gl(%4|EU^rm5n`$*~j~4}UKta8P
z*@~)w)m3k408q34qq#wDfI<V_dqwzrVf*(?kyu!Gtq}p@bq+K`LM280I-fy^_bnsb
z!HOpS_q_j0cV$&V30q*vYykSqok2Ggf}hX?9u(GiV8X9kR`j+exfg)KLMkp)m?^P*
zT;BhqMP$iJ=oB+8>q-z0%T=L8c-T)A&1NA}y+XJ^5xnERW&{f`T7lV3q1q02|Dy?9
zuc#JE2vJuEb?=vW>FeCc8$tJz?6*i%QMe|d!>5lWyxI1__DYPpCr4?x<tj38>L*#u
zPulUH(E_Wnw|@CHo8vl356f_IEUX+J;Sc>*7(jM+Q*3=R^bOI)4|9-^dK-<vl?P!f
z!nENLkM_-fcD~#H2|(F~nyyAz+9h3c*fW!Y9{q~QQcQkcs2IbS*l){H-gOP`jeln2
zBeNQR8~vc7D84!3?%qmBWO2;1t~A4+p<#<&FxTijLPX9gr%gmW4>i!4)KhN;2PE0<
zb~<_!qBi)UF9QIdS+AgF;4DjR=ppg0=Rnq=SEkGK<p?8}+cnA@2ko;fa~`JPjm%xU
ziDk7f{~)1yzMOL#qCW`|I=Zl2Bml5dJg$Rj1voaLD#>CX#Mz93+x*E(u`2mX*Xa()
z&jt3%Y;-auxk(r>1_X7><a#u8`4_(%oL1P}UpPgkpO0d3W0Uz&oCPBmcT1J*0`de(
zikpv%`$}jNBa2{w(l9-iF1C_9Fq<nzXOT^wx4I-RvGn1-#sXil=7dy84O?0y6iw1^
zDq&miE`M~*vA5@$b$?u`rMLg92k@YriM?EIEiDiH<cYXJePro9Z5GgF<`iRbccBx0
zt!nsE_bK|SQoBd|fkqi!Xa=pl2B$-5${?eM5(>*+_UUQBepr^oxgZh+a$>L3U1Y(q
z`+EOYxVtV{%3f{%AbXClx`sV>kgei*X(jmCy_f7+=Ij-JN+dW+c4OFUpWmHlOeHfL
zCWHP4V{qhM)(s2pWOhWb2a$}~=;P|T_RhMtKoZ?^NRBJtxD%@JdS9)~FSAh%4jc;^
zc>!Q`Okx#poH3*tWU$}84{QXJn;=<DBBM?&DBKP>BR<k@kCLHEl{pRy#V)}*DgoAP
zuew~NZ#fF`a>)CGuYVAXtKuY~z}DV2bt}gL1$J`8#H$=Y`^TQ9Z@(2n%Q~NdUvj8)
zhQqIV3O;sJ4$0eKx~TWMMffR<kZtWLy?l_aypgUN{U;?gEi-8WZ#_B0JtHekpp43|
z3`noS`g<$2<S*76cO8N|qP!(N`=}k=Fd*;;$I2SVms4bY98TTbn@#bAw||tI-X-*P
z5<22Qy_7ZV1pL5NRQEA^vkJK|Km`@UNBr^W(+Nj+3aWd-hXa9Y(%tO7og(S;x;v=6
zTi=NR?5JVoBw^u53<D1RdoZxkGjLTpcr`F47Tu9k-mJ-~Q(V4_W%izm8ufcUBrxUh
z9m&gVqN|6oPtWIz1zn#P_%DRqW5vl)_sQlFGIq=~rS>;x+|((N?9E?hP5KON-mBac
z$n1Iaj3qvR5`Z;&&r8KgrMAJh%~)Xv0Gri(V1H`<2q?rF8f91JguF8!<|D<O_dl}U
zGn}o*0sGGq5iw$qAoku{(IocXY8SOv&6;f!VpF4bjTlw6XK9Uw(yF2;S~`SMl$O$#
zs($nM{jdM?>N)Sut8?C*>zwO8_x<^R@yM{O#aDLbbE2lj!7(NbBK=Aqg{$QRRoHJu
z(*?cOo|#wYceu%9?f$kcf*$g3iCd4;_TSrB=zQ#`r@{ohS#LhobJ@X#`={G*n%<%-
zeo-(LOxlJ_dn*l&E~Ex_{>n79CeIw#qKG$F9`I>A8h#(|UR$Met62C`ZPlmZ`Vap$
zW?p_+luVl=43E6#p*wV+eucde=00;xYjzuzREVouaOWids|fhW?HRlHd4(NO?G~;>
zH}ivXP4IKM@8>tpv%5p<ih3&-Z0Pm(+H0?GZqfbs(cNRMYjlJ68pZb$14O6wRpru*
z+h?RMML?FxrB0AvNa(+JE)3}$E(Dl|(5DO!ClQdc8eE{l12u#h#(7tmCW|yB@1<57
ze@GP87y49CH^Spy+>!#+ppcvZNQsZ^JGJ~M3JbFjIWOd!-Q2g6ZpHIj#4MWOkn**E
z1SR1OfR7n3EI;FgaDNA~Ir_3}{>NgRxO=^V>o<iLPCb0qh5Gub;>7lNPl!Y7>D>>q
zpOis6CWeQv%RHZx55PE79M5hp&C%XEi_%lB>Q6g;$udcsdo7~Bvq>m(0hY9<KNLYM
zk!yE)W=`zZ*81^#QPO|BI;mV@R7LljUt?>22orvP^ZL7W>-*o@UqH}dt^O{r9)HfW
zb5`L{$)`1yf?S3*!o63|>PNh@J^si)MeRK0I=gkg1b`WKaQS=c=jKd_()X!MVP5-2
z2aQjott=hm%WjsuOX&;It$*{i&zVN}vV70oZuB$rmRAM)e}rWFG%Q}ubFZv3XlN_w
zCQaLGKp0&fk2<#vb#9r|jsn7@Zpt~Q*~V00r}dkPFQP3nSL%?I!8A$NE0rN!RffP_
z98mJGRYq_cpZ1;S59s*LxEtg6W=UhN6i#j;F2t`S*MeJEn*Oa+S0{|s^~WEAR=9Nh
zy};L3qHmW5mP(7>HF}*v)sb#?VmS2|q1+9(a?^1Z_k*h1UZ35u5z4LTQ)2fsPAKfE
zDo^^G!`2-2B4Z4QDE7Q`tk}RF%3R*b8*b-5TV*K1XdE9PI-Omdli;G}=~k&J#X9PG
z<nL`@kc+~?SB|z6l-*y2>@Q0;7d{-uB!3fTXLA<z<5W#x%iL1LZ?i1B$6eV0=u1>F
zTG+F)U4053Ti&xT+wrvYGn9)MFbZ|PZ*Ji=+p5XHLA3L*-T>6&Ka09)zn1pi6i!tl
z6=#U)(9q8STPNC-o}r!mCTVb!{NcgR?t-3Xf%{ccPK!VI<y@QYOQ36Oc68fSUO+>e
zW=;8HaOeSfIe%s99p3d^(Z7PC{FO|A2+rJ7QJSe5gUk5X?8+INc=d_vqYMx9>El0+
zeG)vA?c$a1u~C^wtbR!gzcKZryZUD5XlVuEV)#UgoMs3oMXqE9=o7%^P5P+<)lJ0Y
zCGPn;q`cHRg^ja$(lu(C=CmyOpM^-(1>QFQt>hEL;uSQy`=mm-ehDUU$86LeS{Q#{
z;zQ(4XDq$Ec7o;?jCTn;Pw`CrbDw)LB5#E=om|9y<%6pmiRq?pX}lI{&tpr|Vh&e)
z!u2^;O{xv|SICH>0g?B0@0-+itIhul+;Ycz1p0>rjy>`#m1d;uR%HA~`?aV$_w2s0
zp%kzjsTDR)T}L$k8z^rd3`_f8%al2!v-+kz4&pY=-4abZ1OQ*OOb^HCOG%V9wh8_{
zDPo_4Ygz{x?uxzVrcL7ZVIJ>HhA=n*Qt0hE=QaU5&9B-A0snZ~2aqoZH(8p?(BEOF
z_t&TBUprEg5ipcwC<GQh2fB4oY>fr8lkkqW<|Mjs2wwCY0IEo|2Owq*4+-=i9%8#D
zxPs4fScVv;M}Z9Cgth)NA^n3V-$tZABc6-3Zd(1Tc4%k6$sef%mFx)dLdb_O1EJ!y
z+lrGycRzIY%$X+AJu;A9?-|B+s6|73c)ir-Vl)_3Uj?#O`K%~IP^09gvYhUzsCy5n
zKUqZ0-G40we>oeUT_4c|_^7T`DoaTvbv}C0CwVD#SuoH1&AS`)p)%d!fBAml{wOip
zZLzy~+<0<%P1=0j@tW+VrQQyc({Jgt>ECu9q)5x)vgy};@A)eSRvoM={f+5;W19*M
zZMgjJMCo3X1?%rBUZCczGUe@g&+DsW6Y!0!l5xOB3d6s%nL7f%7kEzC`+r%KGM*kq
zeLqMTzMd}UDsoi42|68&=VQWmuoSXSs?z)}kWUz@K+|Y~N9dESB)?SvuW_6bp_P<m
zaZmC`nea4*8_ag1;|x$`E?BRZp(Dd2*Qq7BGwo+^n$VD7iHnASa4R6tTEUja13=Z~
zj>a<(qww_P?c`MrjCY=C+F8kh{$UqcS;_2m3LF69#vgc^1z?8!Izf;DG9;KxX7|rG
zVBAetrwOMybp!ypd?wS6=e-!>2Y7^MYo)OE`2^20ZRz~3I|26fmQu8n>^m>AJu3-Z
z#Q+?#Fr3byRZ#U*gZA<&G+%s2gyFL0bERs<+zK{PRkfF+BGtA9%`%%YC}$(6Vq3bb
z{S<Td#S-+>4=k!|6AszN{!LQM`AjD&UV|U=6<f&34!OfrsyMC169uU5tz|LwG*hm7
zaSs{iqw$o^#D5H*@_7`e`tY%tSxMnNmdY{Z%UokTe%;o~<;J0P<)((z-=gJ3s63Hk
z=k%+q$h?xFZPd}97s7YY8l~ggT-;i?%M-R0J&R&e4;~T|>g=ina>OOD2{0lwicV~a
z(WDLCGHp>yljbHN#^gMDZ)1@S;jITmF;_m~1~FVR07H^1?A-q>B1lO%Tg9G5RiX?V
z@y)EYd-v-R4KkoSkgSUgcTo9h-%_iAu~W2LmQ=vBI>uf6xJiIQJ00%*-QTsU$zLv9
z?863CjX4+mSQ>2aYj#{hxaGM(yT2?IMp%Ha#PqynlKR!+A3*m0yGk11c!Vf7*tC%y
zgpMw-KL}IRyY|X@RUG|Wvs#Dc%h%4;xeD*z;D61Yeer2atIJgQL(y-ctievLXTST$
z_~at8gFk#0>StFpmW#T#_hB2S{$!y_E~X{;<DR$r;Oa-Y*ulMz2g$KUuNdUxUj=_U
zu2UcW>Mo!7e(%%CnEJ@k$8l(!=Gxy4^`~ba<!}GpTcciN#UOqK0(}StEUYmK_fSaT
z-KWs%X^gQ{E2K(?tkYl9c*gTdA^p<+I#Y_qxDdZ$rdh}aYrV#V)G`9fe`%DX<Fr4a
z<(rr;UV3Kw-4Np;nNIgYLbdvC@Y44md9MZuQjUj{nhr{~@%z`5A>7I~)s*}iw~rFa
z@eFp~ua}6sZ3(?NZDiab(;3bUfWs*ezRo*f<4$wK0uqfl6}`!7ugI^`@~0V@{{ZW!
zP_0<{*n&|5SWB<7ZPEK@CQ$7sor`Ol0WVLMk6M%jz#?$5F@9$LV_mz8=T*D#CkuCP
zu{O}>YSLGF(g=t5n)Ckxvd`5o68&O$v_n&M<d@-@%fDdOWMF!`7({gLXP+BGFwM7$
zj^Y1)u|Q{b^g2d?ub_`YFJx?9litcNzxzFk`4<vEoA_=~0^9!z9eUO7z1nk*x;Di(
zVXBq)RwfKbTT<WcUl&eXWSZ{vd2jLEV#pQwraiiHwCw@Gh<9y9PNVAcx4GM|##bF4
z;>YRa{I%XEzYZTc?UNdz)4u9@cW?GiEAPh;qO$2atx-R<+qqr5Sm0FnV&gdeB^tnS
z4ur}cUIXt0G`L>q7O|TzVm@@~R^G*ITghTr1OFBG&J2A?zyX&Ye$vkoUf8z#Uo1+A
z>3DNS=SJ0fm&y?ndLR2m#pv%$)JW7$nu{{<wfTp)q#F;Vz4m=N80Zdv13Ao77_K&L
z(BkS&I@13kq7Ka7tjt9nBIk1iow&>XTK>8)#$i*amd5;63bk#XM~V{N;O4NH#LMf#
zwGYl&WNNymqg<7%OBu&wLKE7V#($MD`9IDcKAW$<0VVqX+IVZ7B;Dlk)6=8oP_rg&
z;og5={jLtq6tqWAxHg>x#Kj&tKZTO$Z$kC2oE(%=uNJ;HduoIgcry7)AW?aT|F>zz
z<=j%ht>5%bKc<|Yp1M+--oCBjbXt2aJNktiyUvGw`;Bi$a&6II4HGSJs7N}I1fA7Z
z-&Ukg9KdPx0l3kbHeCR^Bw|4;hCccYLZqbrgA-je<!k_NBMFq9drkW>i*pDMtv2GW
z#Q!eG!tS7l$XPs{80L#c5!4e|2c}J+(2uz@9!>oS#eKXFWcf;DWh66KjFMn4#HNYt
zp6jfur3f*8)(pz_5|acQz`E7YILYkm3`wh~Ho6SK)4a~MPvMzf7hGI-8yN2x67V}E
zaW8xDe5lRotQGKn9~Gd-<C6U(*DEurf`^K!y(#0(r&ZU^w(*xjVtIl_=n|g(AaVD)
z^8Zd1t;W(-qg(8~g}bq0i~y;+6sd*U+lY-mlu*N=7jHXI#?i|o)61vKQ-(+AP{M}(
z7KvADl@mTGRe=>N6cQerkx{!Q0e2GrQ+|W|LU_NZb)1}%G;VE@qVHSJ-fXNsQfoL)
zwsQV_?=dm2lh8UuP9fs7gI;pE*YmUrt0knVZLH&Z9o@IsLHdA{$(%oYCXmhw@cBCt
zO9F<aft6?T41;mltaqLK%o<W8xoP{*Z4+$K@K{zv-T<%pXc?H~!;OK`%)K_!-=wuR
z+#oeXH#KZWWA&bV#(K}1!!69Hw$O1^Kuh_i12)Yn&0Q&aGxn#?qko&MJ3g!U6+<Oc
z<GN*&qhfmwG)`&DbXmmwtE0`6YX(|Vx`p*ZPNFu+4ai<syXN;td;mvXtU7!qqDj<D
zH~-3%uv=rUThLZs`4;zpNYU_Sfwiwr+-Ijdo5G7wk7iege_QsB`cAiKHN!-7Tt?l(
z?rUmi`2JVs*S=)YT|&4CjB3h>jB9MI#3=Bm&Bqfi-SNvC5PsuD{;8es&w*Yw@Ox5A
zXq_bII%BOKvt19$3_TO$A$|eY&B)Gux#LsKHi`+3w$f^#l|o}+1RDe_O+E>O2+vPO
zVb%yX^ovl4u?@l=phpEkVrKC%V>UO!{CkS$5qSUb!pX3TWg5l@|03{o)0m5<E$t5N
z&5HMl&;3_&{Ntr)LZ-y(VNLZ|D5neo`0mTOpz*Em{<j$&QgGr#u~)!Zyk3kr?Wnkg
zMiWaw0CzsdBcGQwwSXksWH!%_Xp#_BWlZ1r0;rVepV*-fut|F|)wLsj`)vCu+s>dS
zCYwd#G=F>W=1y#uM4nQ5o?}3M`vS5U<E?|s<=6)FHkO`d#0fnlc)Q+tlv&y+URFJk
zqLde#w!>1{XgKgJg9n>A1w+5Y6uXQTcS{Drf$1d4sD>T(U5RsUi#<t`0*^U75BA=T
zyda?+gj7%v72cf4FJ%!T8F>UM0`1-gJ&6CgTXjRCrm(4nybGAzWu@#EMdnw*%V-vT
z=(s>VKV9gG(*C_9OL!6JEJlS-3tH67TW!->MRr(rzS6ljO2pOiOis<sq2QhM<8$TR
zaL}b&_FY=iJe^WkN50aZ28~W)=<NX@WBh*%)2z(XaPkg7fh>%Ma5B3<j4||+7~Nu$
zhzdq5V+lwGz*R6ndkg}=$WzuL($Essxkoo3J@n-+T@hJd7XTjzxVrC67m>T~yf6;|
z)T*`&g=549=HacFdl>1Sv9U3J%ro8ng3Y~=-+NEf0G+d>F{RdLa_l}yM1grR4mUsu
zHC%>1Za-&XAMtMAX6)hvyhUv#cop*Pe6v*{das{jeoO*5UD7%|EA=Kp8l?Trjv<s|
zmb~y)|Bd%IdQ96B(NOvQkk<*=siT&saw&@y`wZ(XBki&jw$R}bywj4*i?TN4kNp=F
zX@^++<Yur1YOmKjxT6l=+Mc)C-kORJU9M~WpeDEQ^_%qb2OpaqAd6ptADZWizB%V$
zC>{(ATzjkm?QOGw_QJMLCFIXp-|W_9!Y&}e1F}oalV5Ip@9;JWt(4ntY~Po|eyeV^
z^x1n9CbL%8Hg4NGdGk9<NZa<;&`+~Db7N>uVmqZU?6x489^$aW2fXxQM{#A1hB_0*
zHx4Kq_J$>O<O*dV&T*amV}GhgfAjAddAf(mnI)tFpg*fN4AX{^u!#NZ)CBsIAjYrr
z*IzUp0HV!K>j=_uY4u!V10X%|5445fny8;}LY}|`5j`P1hEi@M!eMm00!j}!)LGq3
zdqM;XWd3(_FefnzodzOc_qa!d7B+1GOr40t>=t791()s1$bshSL>ev)K6{9e34hVR
zT7~tMUlDGf3umRzO^)t#7fEK}#j>l9vobLzeZYx`fmz;Eb5X5VJu4rp(LtnXCBlCI
z;<|J#u*^{~Zg3Z@#vs;do%WhAyYdfh=Y?%79>VtipO^x(Y&iIBDjzjZK`ZV#*IEXD
z6cF{+lap4dB(4)475LWj2a9}X{U%OO;D`<VK%7YlE#Jv|0+a9h!IRQuTl-P6R33TI
zzFR0SHh#pUoPMIDa4PkZ@tFdUswhz!DaG5P=H89+@1B&*kf3G@g1LCQFyRCEvs(a!
z!gR?Pn^G%)J`Ru2o@XPjss=w)3l5x9s0zBE_Qz$@+xM_n;)6!&Q8zGm7glW9$vRQS
zy3eA#WjRz`mDTE%)e~u=8Od}xoHVZyQjmGteKt<Em78Q+I<8!L{1_a-7N4)ch*i<N
zE^2Vu&<GyQci0o}V?<k4&`>Gty0xJD`PdjdZ@5Ow^8|2-${W!d-OxJug3c50_$8kG
zB$+N+TFw9l*1=j)RS=LqzUD@QYnw_Es@C)|w>W;$-P$nUjb3u}a=i4b9vMSVWW~KI
z%AOvzRafOxhgdvNWIs$ceE-57^NYo^*ZHrC1ARBLsn<tTMF%{7S(>2ff2>B!;P#f_
zb~nbWr_a7d)njkmKpqTAiqgpIaj*XcI#3l{=<!ME(RlmZUip`l_-_tkjDD$_p*GCl
zPR*h<Drzw;C{azb=8-uQ-jh=WG5ph{h9(hz!=*=3=i~+}?a38+tRE*=VXx<>newQ7
z%x@gDhYJKEk>8c1Ql(Ce(E3qp8T2Zc*eEOw;5|LnNj>N>CX)6lbK|Jl@O|qZ0^n|c
zJiSM}9T+YXd&B=ACa2W-E>O>CJKh@!h0s3u@jTHxUr@p?AzDT011mj11LY7V-|5-&
zK_t?wBymtVK13?)Fh<o$kybxW>&F=3fK~zzh)q-%(I`sq#}f}!TEodxmH2v;FEHB7
zBU?U%JdjhP{`558W;hNpt`WMRA^W8tx$__}DK2oqqu`Ak?lv&t#2|MMa#uj}4*2n%
zmKb%nO{Rw$*{tIwDIh|2e&FW7r7yO!UpW{BGLz(iH?Q?017cP2kN3$q*$j=+Qcd}c
zcm`GTXsdpKe{uPFbgJ!Nx(7O=?PBFOHLIw!@;HIyB2L-{z0<6exElHKn(MK#x0&Kx
zpO|?*!5b%(UeN--Rj<@DWsB8Imrn?Na@u?;rRC{icCsHmIW~v|`>D3$vvIn9N2B%>
z;Sb$tn*iY~-~ki+pAG?zwgXlUeV+uqKUN?5nQ>D<i9t#0#5USX?Px+|`By{$`|Y*#
z=nF@~I6Xa?fIm(~YmlGx{EY~BHZ3yXUNFd8bxHFG3ho3T!tn$80L124-*F79O8Tt;
zX<pJ3Ed*#}@6yx1gUF#v$*e^F+|sdwM99y<f~J!o(>>W!WV8P{y*z8rZ6SDP;-CPB
zc-{eng~Q%Mnh9m?=kkA8^D&-T=iJnA?fTbOJ%fgFFP~?;HXXTgK5<D~{$uKs(jl<@
z5@+ih8>Tz6dKp;IIjhg5b|#(2rn%EC2Cw^7C+kID3jB*WJfjy7Jr>37xy&7<>Kx||
zFMQUnyfj?exinKRJ@<4do^6GbI57VHW=ARE!{E?_`cPZ&r9wXK-kPLI&b<&*>GxLS
zN98vO6GRr7=l66hJu3{}x{hutPdQ8)gu-yV=+rN#zj%_8maaX2W~9s8aLXECc(uWr
z`xNrck5@M5I<wld)PomgIl3NYdPA?7<VlGqI}xgGdOK?=7ztx+6Ly^muZD(VqsJUS
z(6}k!w&^b$k+pfEy=wY0UtIqCn;MJIx$M5W^%G0d)88CFX1#pn#fYe>p_GQv-yZMP
zMMF80%dUvqMu#KrPLtm`d6_k!&wze6&@7tDUJIH|!_|81h~1%S%kgA{p1UYgd7)D!
zs@us^F<z@lVP@gP_)AjpgCAeI|D@HKbw7KPxS_0PW}BE&mKl(Q;>mn`F(4`*GMnO!
zj04;}EqfRsw5bvuNkox)QDoHAD$mz5A*BQwqKO60JPRaprc(swuvg;n@C&<fD^0Gj
zG68FoEE!k$(%i+HFT8A>tGYI>Wn}i2(pif1ZRN9D-erF>ELU$x!E6LF%2r4nqjzuq
z`;P|2V&z02>|Hdy)QR9nepG)c=0Ik>yfMN00l@)>U}(Q6L;9kbv6RVWCMN8F7c_Fq
zI8)i25u-_(;Biy2oBBMKH;EOJ9Yg$yjo6wIc?^Raz{4kJ8+Bc8C9X(s2{h|GUjM7L
zh0m_nD`KRJXlRxb{{zUCy+o|m5jUJ=+}Vb-cZdXbIH4+ff~Pw5KCl2$#qA#|Ex(^x
zME_pf5J`Ni``A=u&%T<N?!({hy!vsd_~o+0Uc)FNSf6>b>Qbuk_%c|m8LWee_P(td
zmA#y(CA#agHkO;{9Z&wc3ic4s{5H;8@Yy?+iJ}wlw6+*NaFtsock|g-MymOVNZ2Lh
zq}HWuah7?tiRut~DAkZl`#XN;ddFUD-Q^r7*81K=MtudWqBo`%M9X(Bc85jCN$7It
z&jcV8ff}Hsa>`)Wbzb<Db>iZRxY6V4%$|o>*kJiO0m8%!`oC?_@O3&4d($yPRLtgl
zABQ{S>x;q4OGl$HlLqVNEWbFfXK=TCAVHAvPyqzd2pE-Okq#h%*m5K#GoL$Vc!422
zWOSMs9FKhl(+$Vg`?*LF%$4VRO)Q=mGH>IdC5M?4(1O+<&rz}a1(kFiAFcyLefRFb
z1O;Rx3vo<UqvBfM#_g<*Gtfm~J)~?1fal>UIvM`%{27u}Dg!?^Rtef%0@`Q9IBMR{
zrbfWkJ`$sxoP6&)yx|U;SrXs(j`K=^DKyzt*<WGkTe@OKT6PK9Z80%)sGe}RGCnq}
z<|>5ubzC`vHM6E%I$pfyYHiSV;$c@Ca6F?y#b0@MqrvOdBW_1>OdZlwC3e)Hsz_z(
z+_10TUWeTF$o)*=_uKsBd!idogyJn*Jw}~gAD?)3zcL&bzonSBknN|=XH07hC7Xel
z_^<G}zA3)36YzAQbV*iuy4=^CN{-*EqE&Elw{rM+B26c2nA>KNnG@}tlG#_j9rr%s
z4@GpUUD7X|op|YcVh*e?tSs$a1XTXhVIP6@t1bcPFUu@;Fl^Nt107TByR>NU0;B#V
zkGw|wg2+}m0VhRxNN(A$?gyTK7gV}h`2D$^qPB=1Ifk5S?H=%gpy14#@<qsvsW|oe
zf=FE#2$L_kD5Xw~@PfE0jB+EwYp^FiVN(zB$~bo*h-*jbW0;->?Riv>M^mNjf}%y)
z->J)`Bj3Mvyl6UQzhm{^qD$k|cL`I7;Nlbtr`#au@Yi>|9*ZI5>TX^_NXiG^Tm4Vh
zCB1G-@2pXMm@(tyUvEn*n4C5FUk+t!gm5(Q+p!GL(%H@-&~EQ65R;dImbJj|DQoA8
zFGdB2@)HzWX%2}Gp0MLOQ$-NP2*dnRWSv-aQwrgeeLspz=zxeEpjd<iXj8>aHwnJ3
z6h`%v{wcay0<AU?l3qp>YEH{`IjmzJb;3%d&2frGBT$bqPk+fizm7K(4qA<PAvdC!
zAvR9W7nsp6!v9^#N}*=^NyLPBQA9!Txe$F7#rX2q(45F;K4R<7i~QNh!21M%Y{}?L
zU!v{Z2j?Q_p%bD#e?ajZ`o03$;hB?=Cq6C$4`g1%16NtF)r-C=jB`_9WEB5s<(PDh
z*YrI_J48R*a|MRY9H>MT?7EgOL)!|%W2CmCIp@Axk>m_S(evIISqweBI}=qGh2L~T
zstoRq-7q}%EJHkyUkbFixnRe2ERvzz7x)?+A6fBAb6e|f`D>>!z9=|Uwh2@9#yWFZ
z0n7653qk3t6@)?go`8-oGXNm?2Lkv91OQ~D0Y`vrNHZ`M0040F3-AgE!X=dW1ci~Z
zYOL~_?2204DmsFq;!?753Q9`6>KHx^tdO>W=w)LujIp%7xty_;oRPJ>v9+?fox1fE
z4eKk~_O2LHOUxB_jFY>*tCz8duc@cMxp$zoU$AXJs6%kLb6BKXM2tsNoL5Y|Z~V>R
zh{(Xi+d(%8p?G3=N?K%U#*K{Z`0P7Lck*xL7bf2=&Md3UtFA4sAr;r%uWoLu@94U?
z)&KW^QptpHV;P>j$<5A4Ypt5Orekz-7RtmgLbx#DsX;S4z1+PSf!P%|a_icmh9bk(
z)YH<zTdxoPQt^c36k=*xdPZhe8l!-i5Eo4<my&yS1g(gOxDvZ@QHh?2e5q0Sy(&+3
zK@mO+FO*n&mW;3ghnUnAW26|&7bz#(foo|Sx9$>q^~%SZQCLQ-+IDJMZ1!rOb-g8{
zkT?o)^?8pTgOWJI{rzv>4-S7E9sm6GyR=AFKtw@i&-PUzM1O&-PfWBGYS6MhL>Gi*
zLHTWrEv7P}D?QFxBRx~Ik@8OGxZcpo2^IlIGDfTcL(jcZCm|yEQpAv(=YC~C?L+@*
zstEi_w6)-~6w7KIlk*(g1v-5ZcAqBLJO~QOR*zz=J=~bkAbLK_;xl{Hy3!Ny3*Dpw
z8O^$H;z?8zQg7qT@~9SSeid9>1ovSkYy8MJxC@pw7YQ<bSocgw(1(1!0D#g7<5OW`
zC|??wvXoOsq0Moozc`InlEZ?1<|m;GlO&I|=S0?10xc(&x$yqSHF65QfaTEXK~r7<
zD&w#Rf5AIoL`hiuy+|VT;l?KxgIf;5G(yG!wg6D<VP{Wp+8#uH|C=FN&57rhcIdI}
zaQ&6b<C@XCi*)PN|I<ezSp>$z?;!GSqMs40Q23ezntYpTBxBNBdwS7cT53wlzMvP5
z9;#75Vv|eqe4cKm&1H~f*;<T3a>M6W0k0-Ru9~x%JLVwPVqUBv#W`x{+@6a*+$=O#
z+ugita?y^@nsR4LLC9$I5PaNBRmV%*6ErJ)*y-j82pB$G6yfW5nCv4k;w;7@G-(Zq
z#^o#k=nIE2qnzM7yH~2^H4Y0Aaw6Mel>(ER<nq9FXPc_nTWWwZ_hwIhQbjrXSw$FH
zF}V?!G&jZ!x1f7(%h*cxEy0mkK?o&ty}eKzhWr2#QbL@q?Ciq>MFn{XmQAKPQU-{i
zBCq5CTn1&VdqzyK9{FU<8EZ#-G4@xk=aO=+(+l_9W_}&YO#Sv)j}lMpHe8J7FZ#J0
zd@y|ag*W4YU^pia2SXDDmkDO$a)2Qf-a0~P#Vakq%qouK<>FkuvIt>K>&)mFLlDh<
z{Q)x^LdG7Chsd)BZ<4wUr;jE@g{=wniatY%>`HOx0a_eA_#aP-gPwOHVA4ZMol<OC
z05IdM1Vl7`^C8zAIeZj1GU;N6P4`77eC+iO*P|_kB2+Y){wtgH1@2~=qZrI9ld{h&
z$ZXik$v@6aLRy;%g6V`h!^b{Y=`*L$(OP>G*6{R}1Ad4!!VPdxkIs7lm67?79A6l6
zG_6Y2C}eJC1Vj#&aLlWxDMgbG_Bvn4{oOy~u%`Np)-z#V8V1kYl)-8my*w%}m1g@z
ztFRc2ITYwIdvaeypFg-Qwo98>6lF*)!}SPuXdhqVl-FB)aM^17;O2}oz_p2|;3vtB
zE@CY7kP*w)Irx$!rxg_N;kFdo$>gz*!adn?3QcQxDc-yD&Y(#xqyabf_wWJABNYJV
zd|Y8Zz@`e!rKF%yK-Ci36nejKn7FZ^jblD;7Lw2PrDEp$>X`Po+ARE=mgN#0pf~@%
zC5+WPStY<|T!`mKhOxdexYb^kMc*1GJMaOZVu+Q3U$^v+e125H4zlef8qCnI0_v_n
zSjnUWws8;SWJaGI11b9-@bhf1M2cTA^*R7vS@$a}qgN7}0YgauU#cyD_|?90HVQGb
zd6R^q&v&m>n5DwC76nk>&1qB>OH*CuWN4KPQjB1m==yvf|FZ04i0vr+Xc^>hPgd*f
zwP-Tc!~_v3C7g<*vhf+3rjN!8EoE?Q$D2dIPI4|7fNfJy$l^LYx)YDWOZ+1cS<uRv
z@1`5o`d`kdqtOYqkq%`|FJAm~kMIs?_UWlxkcraFwVYsE;m#yY$A<>xfvrF5ebFSc
zRAyJ<!nc{x_h<R*?!YQ>O~05alH9Ere@eLk{DI&wGF*&X#FIe(X>oEA%TgG5;oO?;
zEBK{K50MSPn_4}t5V!wEN2ST%$%@mY;WTFeio@KwP0OBgr?TbsApOf4pXUjkvgSJ|
z0=1eTGXlSj8Vxhd)gPEHHM=<6lMJt?pvX(@{KkR@D1g&z6G-xZ3o-X`Mf5J>sYh*0
z3Fqe07hu9Uw_%xfFc%?t;cIeV-IDpPb_+J}?u)L9V;F*hZ*dIgPtDPHQD|DG%O^sh
ztrQwm6K2fgkUJW+S^qG9rpjlhPH-q1(90w4QA|qCmKyEy^Yl`}s}Q$r=n&naV|^Lu
z)%+R17Wb{Mm$OVE!;T8}VYy!zqQtX;J$^l&%WaRoE0P>v=;>mb0jKFRTP8qDI&a^E
z&}xvBgp7Zs%}G=J=!OPHRYqFN9&snfz097SZ)0lPX1C^locK<}dgGBnexaTm#&UI>
z5@FONr{p>3oYx2{l#JVO@w+x5NG40zCE?QqD5Pn9FUYJxGJa;xRXoG9qp`S-(-iTT
z+rX)xJpLW|PJ?*LzaEO4>~Ja$ejCde@dU%zou7Vw2W}q>fX?N9hq9wn0Zz46V#&J0
z!B-zKQh>T=xRo>t>8E3Zl2jOz?gMl47e$P(!WE_CYQ%<t(cDuQFK*D6-^-$9SD@qJ
zqXwFX$pCgro(!4&9`E@I?SnCJsN<I{C+5*72`q4)NhRbI8+XY$x3-`}E^e{7>N4CO
z_FoDPNL9M2XZe<c*8ubL8r#elrDCxJzdK5IT$o2?AE?F@J?}wsdHTw`@z6ch#dT(y
z?|btmHczPlq5RgsI&DK5g?9iD4<5)hP7LK8z|&RdgodthfRGtKX>%U+NYy(i$Op8+
z4d+HH#Na>_#V)}e52Upx(P&lS#-=9-MC66-QB3`^TPFeLNs?B@_CHy%*fOpA1-O|D
z7}|0thF!lW{I|XSX(~Q|#hwIYr$D$H>_IcjyXiK9Sje>RSDv0$OOyr%Je?~3+Hiq2
zKWBzsff;Dm*JdE~^n^9@a7UaA4J{IV{IYnjSrZF@O8t+5c9_hpu7luhyXfr(QD5(2
z-M`v1DRvHyMb%toTwQ2<)OQR4C-b7#^^8Xc?hW6#qo1_#-8KPYd5f5^!BKPNGLDjG
zaXQB9af3^vNbjy4Ks9$SBKYn!9ltek@<GZG1{L&-CcB=UNCpc6jCQLjc=sw#*%C_n
zfY00%!=2-miq~%j-bxkcMsFV1ZbOO}lhy=_JdT<=l7hrL*4{D+{%~_4)CCBnJY^(&
zt-&4s^JLX|*#rQ|?*!CFjO0Tz>}X(=xrV^J0V`u3c)_2S(;{!qh0UMB7$`)aq;=gr
zcA}YBz(dxJyxU)-M*l8z-WpkqyOJz1i39cc-=rM_(lmj}wi6pUlP1VX)Y<LCS$pWg
zmD_AZg!H!r{!@avtzcpl<L{qF+flSqhdyYshczBBf_0Nhg(1jpl1>om9U8fT+rHL<
zQGL8(ag3&v+o*Mb@Vn&S;{Y8A+KhRSutq4h38Eh$Yl2SpV@~zVPcfMT94n<j1c?=j
z@|FQ`Sp|e2CAH!Q5nYxRG>}F-K^dt5tYe_#TZ~~&kci2&*UVr_db*8ug3D++o+~3+
zBct91gu(;)$RN{WXw(kl{I!gXri?AojL}1oA6JI$5eIP~v+`Xg9~V&28gzF8XmCoy
z%j~xg$f}b7HSA=Xgaf#~WF3CV>UGL~6qh|vmi=TPd+1#@b>uXg%#|~yku&a;^E@tR
zvMgt6AZPkr&g^N<99QmwM((0h?s8l%x``%G5b8kYUp*Bq61^1d2@B27UOT0^cv9bU
zh<GaAIrgOWn+toVkw<t3%LCXX1K>9z;1@{Bvr}dn7}FfylNc^MK%x(yr!R%Ejo}fD
zbHF@i$5g%Bwukx1KnN`}{TFKpI1sW-Mkvk~aDfVhC@LJzg=M2~UP)T2G2`wbP!ey&
z#lr9=976k;o)uf5AAVObQuxzFYVhYSR`VJ#9wPJ@{S}jEnwkEmlj+}Kijb135gPg2
zn|ajcO2xHez#phRH!XwpO-o-`TLg=wAZ9f37B%{p`XZ8Dnpxuv43#64I8&^{RwDU+
zAO#C9U6thaddzB4%eD<DDZ`c~EkuSmmrfM3TRTG;kj3n5Z~<!%tRkC%4aDam%LuYm
zF{0cr9-?c)oV-hu`0|>`A<rRag+7_xqpPU(4}rx=p+bTtDFV{-Qp70}()fp_kDFE+
zjcd?^<*aiauyIHJxm`ktVMpp@$3w<fP|bwO`Yt4Q3|A%=GR)2H70+WFUNsMic<Jo&
ziMz@ypSPVIHn<{m*BDZ($a7y%5j0j=SitaI(y^70mArk=YZvmNyr%a@rE59lZ#-nk
zi>u9<l$wq@TShGd(JNh~ck=>=T>?~25dQ|2pEa3hcV1u*h*+-YTR;kUs0dJMwVCHq
z{)^zdFG$B;C&1&Pu#W_vU%V(Q1f&xLxatH;g>QBI5}c4^7D+DH2J1#o)L-s$)yE@t
zu0;j@GExYFC~QD1c%axU8Dpu2D7<%_W9`WgIR6x%_!LS1LGYAfJq~STgEbx*r`I=y
zXjMQ|z0H4@Lu}yCs8zdQwmSK#8Y6E~l1qrKP%vs;wo?dFHYSR+Z(2TKc1t!0*oX^J
z3cNlhohx)#Z_b|BEq?PzJb+CgJK;f#k(}ytr=xAT3@Nd0ob;m&>(VFEw;~}i6@0Bi
z_9+R?eJt_GC9*@^vOPc(s-1+4LH}*XAoz6?(~+zaLl<miiSY!dZ-*9O`Uo<^1AUfN
z@Fu8SuhhMON1Wc~ri@*4E{AcOvIp&gR7WAhYukrP&s)fjt+S-|ciqy%EDwyC+p@=N
zUT7JnMoN%eAU}h&yjLFp=zY#N<U6}HA=ec2KP%9`QP^zMlzZ01{!Bslnz9gCQPVC<
z-}B+MO-=E;O84NmnFb9}^jh^jpd3Hu!{^*ER}~*-HChF=Ojb>WYf2I+B|j@v4Leoc
zk5!*ix)la}{qL#;A4h=?)gtOcY<$&q5+Ly@T{ur*FFQ?4kB`BspE00s4GXdZM>t-C
z%$%tclr@fd>aBSDsD}7HqfV`cSY<vt9%khl+_TO`5e3HkAgO$mRwBUTSec%vk(E+y
z^jE`f&%{t#-AGHbSg-dL?vW{`<3y`RNl*E|w;ene1E0jlj=q-)1woIM_3}So8r9Ol
zn)t0p>AkqCjY2-5<FMNO#kGSj4&3!vdE@utb7ZF(-%byjdVIOsQ|}FU5QphNNsz9;
zyqqvT_;RsaQNO7#88d&Zm-Yr@cCY8HDO#<V8KK`N(ST!I!hsToG2><|4wv-~n?-zZ
zw?8-gWCJL{!{ltuJ1jJx?mo%Wdr}vC%l(SNQiarKJqUDjD7ARF`sY)+A}x6p%u(}*
zAqx%-k?B~)QKdJBujvn#=tKSmnIB|7=FxUA`zdLm68&s5@zmbS2=m0*-ZiG^+P(we
zaxsL*>>AF~P#|0Ozyb1NGt$~*?9H)p+VbFp$g^{vdV205zKLfaw(0H`@s&i2UGOn<
zH(07vhSd<JpjD7GrT5>cNyrz(V3FCNKHAZZCw0@WWXDhNcXRLNIHSzCm)pdZ{eonD
zi=F;4*^s9Rn|ajLf&NrL^SJ3OdA$7RxJ&CWerbGRQ`p4Kgl@mj@|S6sh*=JTd%#}$
zs`jW_(sQ3+3*MoZSAJPc3){Pc2A$&XiJiNP{SyA>(`R}(7Pl4qP1HNq*M8r-yJJF0
zjn-xO{S-BRzcq)~l)KNSIr5cGj*FF_iHL*s%OYFpCAzZ*kO%isvKW#L-d0LAYC7bB
zx5Uhmo(-dyO~F1yn|*w)b;gKi=9tAU`3nRPGiiD4g_8;0_9*b_w9SoJJ55!V7w2Z;
z_otWLfL9A%6PIKzJB-?dkLCt<G=Indhud#dLbRU0WS+5b_7xUqb{o5I?d9tvs;%Al
zA((OD%J6T<OPVVN6ts!ctL{O=IA1qhCuk{APg!W%Nc-Y+fq{>vB-Ocs9azb3@;){S
zO!mf1_|ZnXJY*MZDTcKD%96p%T7@sVCto?4LR!qQ<cm5N`Obm!T{$XiXswqT0n2^b
z<J6?BE4;avdD^rFhg3?7o$vWdeqj-LWU#33x%hcpIy%&)1ic7xzhHk2&<!s*@eKKx
zfxJ2AGj8fH6^koD*-yu>`nz9c6u;VPeASk84PM}3=ujlV@T$iZqV{M>{-1D^&>IZH
zGkW(Tm#VI+Ocx?_ky*^Eq~RGSG>G@PS5<yBx&$J52>SD?p#P(nqT&*G?)?bX)7BY4
z`+LR|y*QKvd7cZI{{|6;(j3!p-axDbedC22LJ%CXDgTfpHHp3|FJ7?^pWVf_{&}nP
zPOAT-!RrV&@vUx|J-S@-?o{@Yp&`WNId}MbpZb0!e1#P%Gz^FL^Ysi46H~ec^rI@H
zJP+7|Rn=B6{q|{OFzLL(nB}@gh6e1K({<#&0+WLD$U$lg0f|3bOqm1CYAIunDxW3*
zni`kA?)z^o_)mXiX=uDEYxFLue(DA7=0v!E$!{ZAJLEfx;`No6z|k1~(XaN##@5fz
zE93w>%MG08#=owzmNs&u!smLy^#gavkl$kkn&M|r-dE*oA=R*#k3wda{Q}fOmu`g4
ze+gxe-R3NnURM*{e4gmo7%tu!c66E*%XuAPdHr|Vb)R9B^n(cG;q{xkVU&d%G_m0t
zpBC8exFodS?5u*%*YBK^Tt~^p$zL&2GKvz^oz}W?!y!Ub@`XaL->uzDA7djlHN^(_
zq<v3WDK1cYqM~4Lu-zGRvZM3;v+eH~yDKpspE$-w_87akpIPohJR%ccL`OowyJ|a#
zSe?6{I(=7n&G_Y;!e+jMA}(zMT(?2v%zHSay}Q5FyZNzgpQ1V#SCv+_H2;HuV|T;V
zzx?c7ZUn|b@=QZ-9j4=x3Tu;A*5jZV+|N$%6U;w;vnFn-tyHBa)~Qoa+=Tu5g!F}k
zz`&$(&Z)Y5e4l^Sy|DQ4*mY7^sNhq!u~$ko<hHk^H+BE*E&}kjg80wsx3_CIO!IFA
z=~zms4F&0B7J2@>^hfN~$Ng=EX04Sa0|BvyiJz>KxBPU6`e_q*ul^8|Pofrz|2RbO
ztL5G7kGXyP;P&1XY3%J=p;vEhAKujMsQ&Zm)wO$^5*;8h;||7ff+zlGc|V~j>oCm<
zW^c?adU{);DY-IKR$jwOF%ISy01Y0o>WcgWYQC7+r5eR8gm)61hW=!b{upYW1$CAE
zcO~WL&(j<#4ei_?ir`-##xrX?(HNilSe~i)fX3|feZ$kgwsEK9HTp5ekXR=uyiMd4
zRqOWC^tiZliK5vTJL!#A&);2*%Ztm%9LNZsJAV%R@60yS$0F{%K<200Ipt1!D{KEf
zZ_KLCII|4TvcgdfAlU>MwN-*Tq>=soe;}fKCl&qzldZy)Xx&<y-69uipGTMTx03h2
zZjE~VD05S*nGgI`@$tsf^@u-}9{p=S;{R2zolt>b8d^Gf1|}pcJ0~|UpMapSsJNuG
zth}PKs=DSSoy%A~10xeN3o9Ethbzvm?o=s8Mkf6r15}}RwwiunKxjm%u7<~hv^Q`C
zxx8$Ywz)1EP+l7MRxYcjum5oiO4nRp0Y0nXlfb}aY;5Txl|Mb7ZtRit_WfF^li?If
zYfRWW(-Q<_yA4>`m-ZedX1N+eIf__D4d|Wq7_(p+qC!T=%$IF#j2n`3SOshcc%O~x
zo0X0><hbFkXM&O98VdOv|I2F`%++?(iUMpxzqll!fhnnT;<D7c7=s1!xS>AMp1(H8
z0X8G*bSzoG-M9%y%J_uj+mccdW#&`W7K48KFm6%ZR(wPO%(b7@Hy^DoBInX)b3PJN
zcnZ5#aGr+JP~S}PmKS$veG{_s@|}oBL6JSOjs_8E$&;Ti2qq%o@*X=XTK8^zvx14y
zV>^?hSh$XI&L2TI;5#DYzp#u^WCN!q%NnB7$M>+PZ6#7oL7<$>Tfqe?E)bBSkK8-%
zGy+=bygU>Bp3Sy{c5OWZimoI&&%0zMotbFsjSZZ7;9K$Rj&a_pNYjlD7{tSqApc&X
zbq;4}der^|CL>J-EHi3&DhO&rY{o}$mEjqqa1E;L2uvjZz5#mySHbv5^ed*iR%^sO
ztb=EVK~or|G1CJ^lOhx#(JBYx+)0r_ATC{4M<yL1>u5^kGcO76=_0aVyyYUXE-lp-
zJx1g}G<`RbEidby63fh2wh-L!MW{2RO4w#}P1i=iAVQO223)?Ig>;;{PTp1`=O~IX
zV>ZB65#B2E(tvkZTL?;<O@<H9o5(IL>Y(#$ZA2J5rJ>wT_`sB<fMRT_pkLdPqmaF;
ztc;*mJ`l+4k-GjC?%|X><#XEr2jR~0Y-{1<!I-6SN@RE&|4eH8Nkh9@I7-9N&kh0w
z=N7*tum|ME@CUU`l)zsy1}DoRrfaD^PadCbgnYb_0+fPq`6$$al37(aKf(<`%`2xa
z<da#^ZlB~&;@@XDvvLkLovgT3w68d)31;I{SbTQyV8(7e^2LRhSe$(?dp^qK%COm(
z7t${gbl-AG<#sIF0mk-4q*DN^g1XxKD*;&cjW;6I>^~P<x@LKDOZAxTX<~V;M^n{k
z(Y+1KLL~cs*sSH>HYl3Xp5bZLl;y=G5=p6KuHk!-`5-g@27txevlavq2{2m&PVoW4
z9>>d`AHv--uyuk{I+Rpa9tnykSCKS<C?cQ%JZKj&a{D1ElRs)8hSTr@<T}R=!+QBS
zs-oY}gG|SqWtGIyGnyw<6m%|?d_ARvf<pgZ5qBI*;nL8l`}MXouKI>}@6(>YdBegZ
z$FBuHV?wwct+6!i_NO-h(B==u*O8}b-3cO~OMApGub?YKGcRJbw~`n*y?A-QBGLg<
z&T{c%@DI%Zb;u~vD=6Qzd|9Ck%W$g}@LKD|7KxVcL%>6C7lJK|?NY0!B(3y2E;6mB
z0@usK0~nGmnPPv9om2*Z=PGmNJ=wUd{gSMk1Kt2&I!hanNV)+{bH?;eJ?&h4mV?h6
z@`5_fZz>7Jt$09MohH(YEwT-*N0GS{{TDCsTnWMTriGK7_pyGCVsTiQJ-8VbjZDav
z9&JN87|JCmQWKchKmX>6HI}Zz7x=pYg?-cYMd4m|^kGFvcs{STjaVA4Oz_K?@kEj_
z6e>u@yH5#2jI~$_aT%Xk1g|k7tHZ-_DndT^!XDtX6a?3~4iM8I!i5Mlt{*6h1?AJ?
zDrAQzB0zNd9O&;(XbzYp2G8S?DKi%H7i^-<Y}zDV-3SlVQvf0oGM)>lnW^>%W1H?Y
zft1@aGL17vn^#SUQDRKkfBM$P%yY@?A379eCs%$;QC{By*^^GdUM$}qKM&Ci$vw#T
zzxtJ1h8<xT=&97i%>44=r?3(okZ;FZch#tff6+9=OVS+2Y&TejZX8CD4R!--%qnag
z(x{Q2)Q8zDZ%IYd=oT=U7nS5y%=R|o$dZ{~|4a)RD`$L1fne}7V8S@L@pH~9AT6HA
zGGtfotGeeLQ_oY=X?BIC<*rt)(+sd7JdBYTG;3O@eE-M8w5=h*+a<P;R+n!u-O4>A
z*bGuM+T)BXCf(G)fH(%w&Zqj~Na$Z8xEF)70$}NRm{%MAd*NLvD#IdlX=SQi5zThL
z>DqOtk)I!yib?EkmyBB=oH<k4jlWt$c@<X0lGJ)fCqhHBrQL+~LtvdWjh4P>iPE;l
zCgCY*(NM`$TV07kaCn%`N^^^>*bP{=g-f70fDLxWUUrqC1=*0|_-8gYMG`GdrMIL2
z{(V=!<h0&$yXzrtFkv?t*HlRFW=(neNA)g#SjN`}^GJ-V<YI)=$!y3Be$G*gnNLQ5
z9S=c__UKUg@Ni_a$hs&BPg8XhG`gCw&fb68YY6DdFhK!Xdmh#4d=IC1Yq|>VJHix}
zi*qhgY-4`Hgxrnfg5cCmVNAJW>HY5RfxRk$%gcrH79g+&xt;xRi%j<&&(2@&%gEVP
zeR?sS85H`A=*cQk3+Y6Da+T~}D1CiXtQaO|2I7>d6<Lyr#_uIOHm`Putvju3Y-DRj
za@0aFRSIs>In_ewfM@!~K$X9=+!!ku6z_ZeeocNd=VF;LQ}{1%Gu0k=^I^r30hcP$
zbmrRI=FK;++O}2i?Gbc`d6vJ=y@mY_fw&lr0>|&f+^zWc)t||A^|@ou18gquPWLLR
zg$G}+**PE_;;jDh+b>d`RsgW8^o<cYk6B1Z|KwINY~ttf@Q;~X_)a7MipPow#@6>I
z@K!^%oz-ZE0tB^5`DV=gL<_!>A8bFQ%M4}mI=v4g<H;pXsR()&sBNSvD&8V4js;G6
zBSf^P6YnUn!hYIX2HfwHs+D-rw(&!-6HuY+^O!}2S*KLpaLfI>^?dqaRB^=%NY>~d
zhds$i9zl#*EI;7cghd^54ov#jk<Xj#!{{r^%9JX&cdY%yCY1y8X3L@Cq?A2JvEcz~
z%lP%l#~*iSTPpxyrY16XTOEii1OQ|p0}yOcLkw;J9s_Ib&%+D^7~~%~h!@kz=I#k0
zQ)o;tyi#rfiV!0J5QWKp`2WY;h+e1FqUVI(9|lK7{pYs-U(5|qQzGi{`dbOTyYRRQ
zNaQxH!~s4RD*tM^{!j1T=>gpQ_Sq+|Qn%7s;!F+xY-#N$vStFfC2irNa-e8HuW-I0
zP@_QbdcV3pe<*yBZ4Z6Cbz*XUbHC^OOjf>OLDA%2PRC}$EKK7LM2ZBIBJo|Y;<XMS
zy7E6u03c5cjR*-SL!l{by9~+yR~d8&ryd+815cv!PCPvIZAnM}G5!#`_S5v>=V8vL
z=k3csndr_AU||Xe(c!e;0N^p2n-|QpjIDr*ZBNI~5PlLYXHKMW?%{YaOd+qD>l@&L
zM5K*|gb97CAOl;sAmL!XlCgjb5W@~cdR6MMx>H(8el&zeYufrsbVi#!n)Kx%AYsB0
zO`(x7L%f`$o33rk+R6EC_1_Z&b2f(g^Jhi}G!yT{`3+eC9t`7dzR0^dNGlXjfYD<6
z%oHQayl%QF14iD(>?(A@gd$YGbecagw@%7;bR<hP&B41m`4Dn+JS09xVUdc93c4?g
zi4SZ-)YRCM!A9|t2E`%dKAj@9j{d0vR4}!r5yKYWT+vWK+xCO!BgG6h6=C`6`@S69
zo=m}z7kcvyS)_X}3Mr%xI%aYZBN^Ddje1%DUoJp={lV8iZ)2Gav^S?$YoR&nYG@|$
zPmuT?Qq0a2Q8d}8asdAWGCH)Nb1^~+#v)Wt5eQVsjrJ4n>JrvjVACb8K`9ViJA5*j
z#j<b&g@%6V<id5sj2GAj@?CVh#X^-*?CT*K0I(LG=EFAJR*5A!aztW-26n_287ZE4
zByJ?=5cgTER!Pc26oex|EHMxbG`h+YEWyY!ptQz_dDl&lYGe679NmRmlYJM!@fBkm
zwb39ox*KU7-Q7L9l@<ftM)!~uiP5bS5KurzhqR!8C<94F3Bh;_Uat3_xUcIzzjHoc
zsi(FqrdE<mQ8Fv-GVf1hHWX#Iqh$Bb+hxC;$Q~=ookhw0YM1+aA_r8Gr-_z_cgQn*
zlSe5joXH3sQ#nHL8ZmfSD_VIk5FyIK+&Dmg-<wOH87|AhAZ)E*5UtF+acOYi`jh})
zzy=@HROMze8hs#r4{|wwRK#-=E(yrhz$rYVC~*#=lk_=mHwxM(i3K%^-Wr5C4_+Sl
z3eWn60BymbNygU%#o`3jE0dy)qcxwsMiO-;N__avCQ7m}lAYC(tOMk(LAU!PQ@?!e
ze1MX&FYn&4Ea$%K@N2qHo3bZ9_y6;W?G%v@6IOB5gN8qGdSQBHH{TMbTv9Kf5oib3
zPgFMdeSln4!3uRhkJeM~WGp?mQLQ)`iEnvkc#5Jo!vuXx_M>Wh*}=ajBK#~=|7FV-
z2vL7Rt`wzfWnp!=g%R<KI<!=S2C9+&+*SQ%DWOioy9XH4D0mucreKn)W{hbQE4`xM
zi1c-XD-ek8u%T&^nU$Y`ZLNYa<hC)yrcd9d2xr%)Y@`OtMqtf1l#H#z3?lsu{9qvA
zDcdZZO*<8=OphSy8;oz5P1>9POETZtSDVvcdsE9VF^(w~nEkVeIB8w`DQPQepzyN*
zCQl=(>~HXVn2XLVzxmYO<|(~x9lOwwLkiSs6;T>h=ZN{jNE7CqvF&_+Brs%$C6&@r
zU+3zm=ee-&9k%2)e2xsJpRz1gkw$I-B2cL>MBED;LNuZghJZ!mVXwhg9&duMh*6l{
zqrkg{Fmc4TU_GlvUeSSxZK1$y#12CC={?;5Z$H5x&k;A;K-b(+$$}JE>1gpXo$+og
zpjp%bb=mtRF0>CCHk=YRWeA-cJrRuaSr@&Ad~|I&g~oEM^m_{XLEr!hif0syggtqE
z7v#Gl5zB5Yxc0i(2Pfr-+ik8s6-<v{ZuA#PgPiWF@mfN4?QG|aZ!nT#EXQsz0^%8|
z8^dGqrj|ELXkYjld8A`+ojk#cowc0MzP!U;?MHm31;>@e;dm}o%~XFWBSBM8QYX?m
zlY~7>nP)wZySD#bK-(CCF)o_RPFjxj$W?lc6ZzyiPSFSkTru$jk1fWGw^iT<WoIPG
zAVtqOiPqdm8pezin4<ASfi=89x5;JIsJt1Kxg%Jt^*#H;Mj<&f2eFfL(rC##k=t2l
zUq|h~{G$Lg6g{-({UNk)uAxxaBxl@m+)zACpu57{2^MdHHToVdvh?B8<y&<eDy6}E
zorTTvphvhbFu;$K)})72hDHSCSz`d!q7C-FDN-h<d^wY5yx9~<g_K0WmJPN~f_KM1
zH5Q5UGiNkXxBL)B+c~x++%{0r$sPO6CK$b<az@SIP#p$^Fq8~!qV}J1^!_Yv%*cq_
zIJc-r)HhuVvEk^Edc>jl^@r8>u*1$zG^Ba#ba7%fwzd97N^np5qA6^!#c}*K*|PI?
z4YBKMVm3MRaTX=qPO+obFG0#+bgIR4d4wj&FMuW~eTD9ASctFB3EVcbePITL`pNsk
ztcxU+AC=N`tp%ja3Qs%mc)t|-0NYE#dJeqlrDyD0&4{#H=o5$cFJ|6k;Yi68_z)6L
z3|)TlPx$4BDd2xCy~5dP32Gaxty7!V;0N@ne$pe0-KEb}MRv^%tN>C0stNTyFbyu+
zV(D_IGwfQ}uxZ%NpIsC!Zmq&>tKB#I@l;?1W<oq3L1s_2`W5h^tJm+@H1gMU**PH}
z9P4$b`u_S?rOQNO)w65BHmOA!4(g{lA~jFR>e>Lq!XJdxjMEd_PJ5MKo0nz0oAueJ
zs?zjbG*;S7(lJHl0uE^<uxoA4+@I}yz*o<-tqJ(v?l+UJnO>@&h7-e!L%XxLxvCzA
z!~RoWZ2YD4L0x%Jk2t_Z{G6>-bF-!?W*rb`Shee<Ch{>Z$>FWUd~L*r<#*WXwXNzj
zfLvSI3da}6ZT~#uwEY`#vz7~vb$~9*g+5E&bc_a!ZO3%s;zIq8z3#y^SM_+yh0(N-
zRDr!^U(fxS?BAOWsp5?fu%1jL^;BF_tZeOJXHk&rg*jNX##rNU^ZpnAuhjF>n(bRM
z4$Fst>o7>}5q&OAWcZQ5?D3!H$5Z|%_9G{EODLSvKy9YeGMxJ8Hq8U8Gw0be@}eJ3
z4iuD2mdXvn3jBzB{G%vVe--T(;oLym&|!w`+-(NQ$%8A^A085hE4EvrE>_&G|GLjz
z^!kt{?K+^aM%bA8*W9f+8TZfBKE#jQRbCwEd<m=~U!__PhRZ+JBR)1c>ad!ta<D$?
znxL`B#WJv_S7Dy*b37Wq{b;^d$Sv<V0m*4M3oAmx3z4H+@8GeV2=q-v%Mqeut~Nc1
zD_V$tsE$eQ3;nSM18pkjJNe6QNN8Dg`91vs2La7%d5%f>bIbD3t@9$7;akRFf7F@v
z+ZW63A~tOB8fLl3y42?zJFziBOE5_-4!Z|!;ZKG+9AJ6J{Yyl_j67HlimmX86`-tp
zCsyP!C&GOV-Zby@x_2Vh`jU_>yf2cDmAPY7J$vf7eNKTvG|Ix|Gy%4Nt|J|(wQCID
znfigUeM04b>8{#WHT{?(_*7T$^An(?ttmq{jWmJp6;Ec_pV^upBIyE|ZCLTMC=s{z
z)&Rw;!2WsOzeZnmB@z@r-_@V|-Yy=vW?y!HfxrLtd71QMMX3&|6pfPfD@hq`?InkV
zr3;tY<L{EU_8b3%H^KdH!vDUB)P5VA@b+f^+l0Sw>l78~1{C<u1(of$lz=+R4@n?N
zI|Q*GrPx7#`89L(d!<}AdIJ0M)AvYoJ05Bo!aaJ~rK5B(!4+Dy_JC4fgVjhVQy+Ma
zKGzXqu1>q#v7Aj35+$fT1ZqCWUJuPz=h#(m1L$rj!NWje3(j!Jl?;N<JKh(_7ts=>
zAjDLMmdbx(b4sX1rH||W$T#2Mi~VY&E;_11a73cl0`}^$u3P~G^V&rI?xyaD-VUv{
z5<9C(&_9Jz-1~Rel}(4tnL05F%9r_G?448fUWw{g9`q#FFk9MdJidd{{RfZdOMO=|
zQ3}@POrYxmfBfL9QH|9y&bZ43F)r^s2>$&k68R<6?@G>j%&wjCU;5hjrBsvG;-=YG
z4$r8jg;YR$fqqw~*>Az4p#uG_82cee{#=aVfxkUXj>(5p@6AP{odP8U_IRl?3{jVU
zxpG4B{8)4As9a#HU)k!%>BGHFn4|-OTzg$+=NlcH`INmK+nM=}FoKV*rONH>?>qQb
zN#1Wi^Qn)Anz67ePyb#XIri$af9!EsUdiCN#NqDX6?it}?cfwr=y)v_mYpmd7wb~8
zmi(}oFX_zHSTi5p@8+rG^2{e7ekovb$KNO5+17es=a!eFp4Y@x&zYA+i~KO?AUf}7
z9$U)TWW-aAGCx})@ieNl_7O~BRDv+Hkr-wttu~l*UT8mR%EaA{G!JNAbkc*FAzH{;
zunC292G&k2cAUb+KH;r4YOT&~Nx10{;+cXTk6=6g1w<ftv&M&eR9wA-@r)7UNUj2S
z`V{kob=)ywgD(id#KLijUr0<!PDxess-BUVm7SBDmv5li!zr4?roNG;9!?lq-+szK
zU%8?owN-UgN1B~6cD$^F)Ikw|sT0wg6relj{h&byKc_-YX-NSh(V(Iprg*>*j5+i{
zF*BkaBTygLaX2vDq?(%kNFk6uhvM^KXS)F{VvJEcq9(meVG^>O>Os}i3&9MAaVl6E
zI=0`)2(=BCTI2g*KO%BqQ@_@a-4AmvzL2_yd#HZnd%@5q1<EDED7_g)9Z84M98tsz
zX9l1wqR*M(=vdT<DW8u3>(Ku4CffOFl);;lG_gAH&YONZp~J}thS9=H)Z@VMJlzGC
z{{J={WyfA5nTs-$6T4Qsu78|qyRCZo;l({LQ$;I47T?67!np~LC@b(0;381+U@vUJ
z(w@i@AXHazidSOMAYFf2CoaQ9SV~{R=7cO=wEE%wGa?9-PHC3|y+m6D=oh~&gIAfW
z>O+JCN~o}8P7!YUq9+PeB<xuriN1~q)Pr%7bP0HbXd@p;*4Q`+L6foJ73~EX7Bmu|
zP%Wf65c5TFxg<=59BTNS$m2ayK++X?!l2}maw+a7I*rcfWEE~z(KDED%K)g!YA+y^
zMV&f`L+<P(*nH$^l{sAn=ra!JrVl<@segEVkgK6AdcmbZl!0{LgiV)uo)9ZiCGJMj
zCp$r|WD`*VFgbJBP{?4?t}9y`+#5u{$MD>fw3WU@KxSV4uMsJBm$;^?SRiRmpBrVG
zR0m;pz_WB{%rBu}WplQuu##0&9hgkrNAoHRnxWelT%|4)8?vrXLDTb69#-Ws2pZgI
z4MKe{B;+Ds6Chea?|;VhbbO{h0eO$vFbBxdilWwb19Nsle`5*uI;<u{6P;aste#Yv
zAEyC<#bM8}2K2ufkxfYY`Ibi(gR3r2MmT)So{V0KZe;*%#f}(W3U7T-!6}+)BOa^h
z?C({wpCpm#pQ3hWDZZFFlAOinuYsG?BjP$No>8QerV1j3h7ghx#it9iqq-nE**;td
zn=W0IQk8aQB;=Cpfi%R<2jZa*f5}|stw7sJE>hqzws^V}6%qO6X^yOYhIIe)vRFC>
zz%^;`a1Yt*`2^{~<)LAciwi3Lvu(z>P~|RZr66h!L@zpi95jvmv1tqoy5atOzoDk$
z`KK1Qd;<BREY^F_@5zBhu}}9Ik$!ecgTq%Rs06wfEFZ}UsvME}L4zdv(OD-B1zmbm
z$obVjhX(Q#;3X^U<Nk#Y^5j7}9((c(-S{Q+(8-l(-cgj8GiwCP35(5T)WRh}5d~T@
z^|Hc7?!{MD%`5uTXkKVP)yiq&K7Ejr8hQ~QrAToVvB!v*8HcfOg$>fYEfjpmAb`Kg
z0y^;H(6n2*4*PitoRCHP94&0A%<9X_5E?XeX;VHmiWxX#OeL7s>S=>vJ~44)iuXKb
zA%au@Eka1c)WuKhr6jN>ZC=aySBTTC#zp3b&glke%`j}ALDqt(L5G9Q4c&uMdcqSJ
z%_H1h%<n=Ldi0=oEtSUG%$O?`0G6C<b0wJL|7h7{;II%VA7C8J{R=0eW<!52RN~F)
z6W?RHmKVt!&4YrOJh=C34%rqm$UZ<Ww$eFHCa;i6WA-MU1{I6i%luK2NKrH=0BYYn
z)^#oLsl2mrmb1Id;oTnqLjfV##r$e*ZVH#w_k){&b|d-Zh$&-1ocfqj>SgpO!Ilw=
znwlC{T5`^UI+#Ga-7|Q^45q!<1t959#_uUtnd`CQ;)Ed$YINe`p*ICEv>ldq(zO*)
z40_=4VG`%b%?bF#Yu&R`DyKOn4>#yT(xq-E?fkU#F0G~k_U;05u=T?VxcJeCAic9^
zGQ|su^@`;Z7NOiJiGR0&Y-%><STYcz3;@fM#se-#09jxijYe$eY!E@x925B?pHXYB
zDGHFt;cQJKG@c{RD9{JP)G^t{0HHkAc=i%Q7Fy?2X*Dt<m&yfY-d{?0840BCqtd{h
zNIF`P93C+Wkc1mCU`Zs68mx$%;vp`pb`ftK2l;HFTU_Qt3VW(U9vSEiBC9bnPoBQk
ziR};dM1g>ujTjIEnL;PN!tdcI(DfwQn#BEkc^uR(8u!r{c#?sK-N8h^F`<Rep=}ie
z>^Y%n_zhMeh0CpxiVYTDLfl@JFc7M`<$i`oylMhff*cwnV5>pL&2Q1QfM!kJPsqOK
z$>in}bFRfw1(Fo>cM9<3<^MxOUT?ew=xm+ww&w@{$N_Swsh35)*xxjRYR20aNTCji
zK^gzw-$d%LVkDuor)d5PdG|T@jUr>hfFN_$L=qmlv@wC9>DK_Hs7!5mrPxtS?M!j+
zFjRP+5keA2p>tNT2X<rl#JE>VdGIr@dH~S+451ZIX}?t!0feo*P6*Ev7+ms5Uta=4
z^fmVj-v5q!9gG{dr?lQJhmMLae>CJU&6=;`wD1Yo6Y300m2E-vVzC{>b*(CJC{SLQ
z9F-M3286T-4C(=%uv*G*iYCN+k1t1aswFh5{8L@5=2L0HCqf%hRlt~;G$Cv$JsXS#
z63hw(eGj@y*-im^q{O2963(Htt=HWse2HM|gixoeHGsxPNskz8!a@M6th0uOZM*|G
ztY%`kjB}T0wRTqUyZY4>>!;{a-V|v3ZNTQ`lrE?D;YPJ?@9Qd5`#*;tK6v9(4psxI
z<>%>Aw|ZfJMn_*BT8PmOQ>LMhp=n;YgJeCeP3FoA>d+3vh$Vrg=av)^|1M?vx_{((
zoH8acQxCJ2`5?-X661*5EF99>QLKD6B8Vg~mtoV_E{{T4VLT5%y6>*+sZX!O;0)ON
zIjv1JUO)VL+MuWX$+l8sspZ;Pi?8-)*L97zy<g8BCu$$~@N2HTy7s-JM*B;Mm*%^7
zU%z(`X@8BX)O`Q>N)qC{=ba@D3b<~Q^+Pa>^sH;;_WH&tFd?u8fcSp6k&KFe4|wzS
zex=qn?-5W$(c)4j^3EtD2E?qdllJg%yfyUW&AGs4koqUghsUTiL1zj?5~(9BMDh0{
z{gDA2(;fZ=g$PEFe%#GV1#6Io*Bl0cLe70c1i3%Onww{(WZe_>Df|Fx=vRMgBF`t?
zUx$hOUo(RSXbGc))WiX~6zlWo?~%`?>R11sN&O9{UIo}|nLrueW}hbGGMMjB5U2B9
zkYojC2wXS?Y(A0iH*gs1NO#8*a#>fS73a7-D6fnm!b>SSSjc_ADVOfKI_Qi`SECUF
z3$k>kAA-k_&LNCInk}~P$?NnB)MbxS^&WQx3ShU6foXyGH(TKEO3Ggc0FSc+?TX=f
z<YH{nz}_+!bP({owG#QEcsRaLn@Ibg$^c>5Nu(7J_cW6}g*2NCgs13SFVqDt&dc9H
z_x0n>7qL8(-f!x_Cr^t5ER1Dv039te;2xU)8lBD@mo6&~QK55zoyfELd|n#kI=%lK
zFCfog3WN!A60u;?GLRLzc<Oxv1Ly))q0DDjw~~aabrLu?Yn!m=PXT4+Sv6W!@+BBL
z>^rfWC7eAJ8BfFJ`BYIZJy}PP7#<I9tp>HR8Mq4?SmVm;646nDC_s&na}v{xw~DLp
z`GQHRY=y35>mag|W*ai4nv?aXfXn8HvHC9%Wsg}hpQE+U2H%~DS94G6rv&P-xD*KO
zKUij8WX>7^fbOTq6PZ~%2SSso5fk$gj32j>^rGkR7tPv*1D&+L_)`zMD<Zm4?@i>|
z^Eesdo9RF<b9)k3V#O&f>=(VkecjvJCaR7DY%tEN+zfS#gZGAo=<$9iz>vy`pVb17
zY7(Fvug84{s$K%tXiN-vre`~uXeeEUq$XZD(z60gns5%!pav{5MvVXl(vF0`>f7}Z
z{=v@4(rEw)gv|p|TbpKKr)6OOletkwcPnp>RFZ6YG<>y@#;u3OeGw9{OmptJM<aAP
z;)TOwlk%N32EDQVFclXOtx-q$O5_~_$@_i^`T>5@bTD9jKzwl^Zq!}?;8HPaubs8~
z2eIcT`fWPJ>iJHnDNm#^9>!w?4u?l$#-2rP$(t0$VpHQHQY8*Vr)%q32M9b`^~#2?
z>mlRC%BgY~9He!7=twt7t6C==Xy%vEkU-=b$7lAySez$%|72!U({iXrxxxX$tNKCj
zJ$|ze<VC<7Yhmf`Z@);x^W8@wXm|o*pg@13z;7DhV^V%L8D&0s`_HQzw?39An@1uV
zQl=VMGYp~zcanXA8aGTN*O=jRvlMgJSpi$rgPL-Y$%a}RAja}s7bA{i9cWqeos<t8
zpa)!OEp?Pl4(HYtkHWy!Am&XxVI;1n2kb0<ue$zZcH>^@W}B5i5rf+Vah6b+P<p+r
zuSoKl9cv95ldl#QQ+ucU(0g<*_UK*;1WUvRp>TWRdB_o}{a_!iUOVW)o&CaQBY2Nv
z%BTH`)y1*7u`PM7yQfn+rgq6TORpMVo3B<`b_EU0b9|Eyylp+V(kC3b5bSo>|2Hdz
z;_tO)&rr%md>S#FaV6`+-X2;wr0|ag)ji2bV-U;*;tC@PH8P;c3_R?KBEh<C*V6ro
zpFru^5C_Wvn@_z#jJtoBa|po4Q0V^Aeur+0^fN|yIqn=@P9zEPe<e0nmDDG=&!S+t
zraFkau>9>>E13%O+BgVJ8_~$Q`K5is?OX6WuKL91Nk56XzqTA35w@a*&3N6K4SnRc
zHBrc!Sd6Dp+OxWS#w4UsJSbQtkHEhKNs;Yao>n7!a|Ai#$6|^?@1nigwt_qFhfS;^
znH+$HMc7$nURF_%0t22|VLqRcvIqObg#xm9XCO^j9?FieCuedlw<ZsV*8i)Bk^Y1{
znw$BPca?1)5Wi5w!<-?`ETqmXj2aT=YMqo!e7Tc%0URk>w+`!uqw&md15l{eDhZjz
zxtUO?jWpb)abh9-y=RupJVADe%MfFsVp4rB%O29*yr?2#hbt-2%wysD+W7p975-=V
z4;!d1adCrCG+%1lk-}hx8c;>)T%}of?Nc!DhmH)PM~3)`h}#R-708Cj>QBF>5#6co
zlC5_L)}Q`t%!e~z)7cA{eyQc}LmV^89*A7xlD594)&JG_c~Xy~MEmqtvz73RcQ(bo
zCd=bRQ=F6a6Q|Xmi?-U9KLnTf)Eoj-2vyae4v!oh!<XcHIGiJK&K3y&atBw3L01Ee
zTYurtNj518=4K)L&1TH62nrpi<?lhK`5d5Ilij~|D|i8uY)SgvCn>%<Z&=mZN)_;N
zk;M`Hfsy47LFJExq&ZY33AK1U<Tw3!NE3Ug%@k_#P1qO2+davu#)#PLu()6B5s^oY
zevjkl3q2k<`P6b~+~K&0RRbRzF?1YRJe^k{MX;Psu~;3l+C_4nF5}oZt3^sAbe0nx
zN^51fCXCspJPotMol_Is(p**()Y8&LR^%Hwx5>^VM_|o_^Hoz|v<QiNT|l$$bH@Af
ztDd>(5X6J014OnJn#>S1(lv|ARp9zcbMg_3x(%80faJ$D;XG1oV_7nB)Ebaf`JNBj
zwIak%V9zhitXeAs^4C6yFga4VG=>)ka}UZ`Dny8(>1<@3BISOcpmFa=+wX^h(F#Yd
zGuGZ2%iJ?m?rSBNo=7NlYL}gN2mAPbH~Qf5PC4kI$_;`Lq+>yWM^)~XeD6D@tGdtI
z9&$^&^@`~AJ^Lm%6s`5zgn|M##JLZQq6a11*HqjUUVXa?K4rkWUu06J?=xH(Lr?bO
z`g1&9am8TtV)Tm{=eBuh)1pO?9#(uFYcl2fw@-}{V~jITjq_tn9-f-i#F)06ns&sP
z^`4py#hAZ3HGdsr@$S^(?cDk=j*a;bisGJ4Dixwyp4a9?EH9ned`#K){$QXwwD;w7
zH@QM_t3p)`cl7Ind=UR3s`5A;v(P+n(x2^cRT(ZJyYH|LclT28J3D%i`U8FDHuO{_
z%j?$w<rf?Hx5@t6W!#_S)pMNyNepNh)Gl!63W@eE^|m9HU;MBqn4~}^dFQH-3(o$i
z6X4YX^v?A{T3xi4LG&+hEu*nPnOzE}3ZN|kg#!}0Hg5RWS&xCY$Qn$cbAz)7z+TbJ
z5rr1dWZ;Yg1Z9r+fh`nkyc1g6M5p31`q0Zc-=pMi@V=4bdo#v=k-s#(!SCo3SGCC{
zSS?soEvn^fq~oI)BpBzli;fo*XYMLk5bWD15!L_5d9>-5BD1kqtxgigu=?K7y`jiH
zplFF5yzF!H<&EdILeZCc@PWRqU4D9uI5obgM1t=}(}7pjLWZq1{5?Y6p>=G^0PWQp
z`6PWl@Z}s0ppGl~oTNb|F$A8B<E}f|T1H79*s^}4^d!t?iJQ-vmJSj+K;|z%Hx~wJ
zHXBWt8>0As=3P>;Mu-G)*F8szXo+v<kLfit&~%%M2w2ydAcq}tKG)?y^^KE!Qt&R-
zBAzzz^xnGPg5II2KwqDQwUmJn4PF1D+G}10j>Z9E5uzTDodD-C>kPg8d%uDl4T9?p
z+q?G4^`N1Oa`!c#2feC~jQQFm7-ZNQA8j5${jZ)rqVNu^;ZC4`4HOoINaVpZ#LP5d
zpr1=m!*4yz?qkerIc!K0H4$45EdRKBpOtXu&3`X+(idPsg~-N3Ta9AnT|#|GqGqGx
z$@6;z9VzWw=bgFVQ%e0xzfV+VHF8H-Pz6n!38o2uKJ~WO%?<{MEH`oze}*@dv^JO&
z)bp=85(@8&x%f%gJ+_sJ4R#v8U2=D_e_7{&Po`AVtBOX6(tjBuKfZd2(+>r0znC2_
z|3L0E`(yDtcpMfwLI0`ilFgw&$kf^m&M-9^?PhTirBb)Aa_m3vuKsHOaN^&Yoi{W$
zdDZe&{+Gx9=tvn)o-r~U@rLf2H%vFiy{cIlW=U|jY8i2D0ng=hnO5^cWx0y&&y+Rd
zi7kFM#1r%N(SN#2LPwkR@hF~Fw6t!(TPNCMrbj!?Q!U}c1mws+Gx!7RQN!Ff??UJz
z6aFQ&(zE?N|G=*@nE~y4%ls<j&ns6>j_ELkp71Z!RtsUJqx74bM)QBl?kEJcp|kXq
z;@kKnhUhg1mkHL3tE#1-D+7(;FZ;!KFn2jDrMYx9*L&}pef)ylT9B<WZdtEhPZ@a4
zab<&VXv@?Quf`J59lOPTsA%#c>aI4b_7P{R?3HJ%C#H)?;v&}-p53>pU*0f&{UnPz
zx~8FkT)$P29MAbKt6)Qy{&ZcIvvyH{Y3Q3}+PD9{eSUS$<9KLEGk)W5!FOi1pQ3E%
zpXHF_S5RY=<ves&BB9k+pW@k^9}?pd@N_is6`M|kvm!B1INF=1(9!%^a<pHwY0@|5
z$o>nK=$Y*~{*qc6Ie$Z33z?*pHj$Zs)7d?*X^w!i$qORK2fJiwG;#7~&sBF`fHZDv
zgNs|IVbhZFHwV&w2I09}Z1F3YAPP=`TL2%ql13rRIGb`c|5V{yqr2pr@c!V>8Ys`E
z?7c3VbgCx5lULyN8~0Lkiz^!*cfTB)eY?JU_~V?G)0&DQ&~#&i(0UsPJ2M0>txA5n
z2qDi}K`f}-9LWOPi$j8a;P+L{%OYG*gL*KOSW;`Wyx}MuqR5AiCR!V2hJ2FjvEJKz
zkXOPHdW9QcYz-k=TzW)@uGwW~{{TraFRa6xC5xK+1R>g;*jqClpS|O5-|B%D><9$e
zoDZV)(>aTXoS+!XL}?zunSEn>QHzIW3vnK1%7(Cb{|&VdpcSg$WTA}LXqn5mfSGdb
zd(dz)F0m?tJB?-dMqbEm$tyv?<7!^e;tg-kV9M%yd=n{zNo%g!V1K2}c+4#8@TcZ#
zo28r&k*7OG{N+>Wx6FOXXR(V_ohN**f8tNJrz?#rJ^$YN{$-3yt#*4j<JS1vrQ9mP
zKMDU1eO}D9T?Nt#lQCeX3y6q@qhL3SS&c#hvwQA+;r)%wy2wm^_qE2r{G6)>8I6RW
z=(AYqD;TiBvjmcuEs=Qe=GF>U8p3phH2@9GJu%|H2T?RerwX?l3+3u7nurvi`?Z^h
zRVFE#N;K5An@T+%Ry338-fB0KdkIl8R~QrSFjtz@SF%uf>(^nSx}KzDsjk|B(>(qp
zJO^YlzX%QE7?Egels*q&R{AnVl3zce{dEQC;J;%q<DyH9qV&$NvYo|`4GP4{j1!p1
zwE~v1IWgrW6CPYKuDXAZQ2-AqZeIW`NgETx`Q68!#8%RGzZ%3dnj<$PN>XIv@?d>Y
zV|Z(tNOs$s&g3VB9@(MkVCY(t0EAhiu?_zKwASe!J<C>`#Hppdk^I2W;W3aUi*5XM
z{8n9eKNz933D*7Qo#EKFv$W}&K<}B2_3{_Mt2sC!y|WmWZ>srliJpI`#wGn*s>Un*
z+5741Sl<?hN|GoQO7i&Q9+>pN9VAbO2wP$IczFGCH>3sHgMp5ck_Hx89kxp<aqrZB
zRn)>m08r-kXmpFxcybM0lfQtfWYe;XH^jl{-%uz~=__f+vC$zgSSW<61;@7M)&TO=
zod@ALoP$^c`+r=q3;fk8iERW6$P0X=<=(bH>gwwYfSPH8%GN-PB%Yiq1lA=JBuK=d
zroP3&t{}z5WFur@4arfOs)uE8n6>ZwZ*M!CwR{I`9=|)jK?&)^4TWFrKZ?tF<9;Ud
zC>%F8yrT1>dqQe9{>#)mg({kj;J2pG;6S+3Z5ct_Mq=Chb9FN|az~?tSGBX@!#F|2
zjLJ<Jan6_4T#A*b4|jc+2@+Mmpjg1rR=0E-^|E37J7AAu7bp!NED4*lA}o+acqslT
zZyhTn7R03wfxdf(rS(4=aKr0kg{$c3gB*Z2vX8)DnK^kbBa77i(0DqYl`;1^8g@zH
zJMzl9Odhad9d~OeSLX(T6?Q)_c`or?Xfm%U6~Y*SQDwM8x^``Rc;gE>34!8#bn)YU
z%Y>ZB%9F|&dy*`7>lkKY>`h<(QTwY0J>T!a<yBW4kjxrRx19(U_$-=uM+YM+8RmsD
zNYhuc4$8L5(_^P5D$s^_hq-d<2y{^~bMU$R%JTwd;MtKfq#Z-^4KW1&cSJx4P{rgh
z**y9Hymud_(9jyle2E0&aJQmi<pzL<e-wDJ>y#v2V33rk!3R?<AZgsdB_1rxq`I~J
zr=YTCUF)=pR!TwR7Da}34&eVh67ZT;N9Cz1YfSUE(w;>TxyQTHb|*SzBlJ7+O9Mbp
zf-#Mx{2PSxz9~ahN(Gg*K_ji9Fe*g>Djl?KwMK@xEVOgMRaW$bJ`vJ4>#JNbgYYuA
z1*6OWSYghKT{_}wd~3`tw6#C~I@(xfj+J%1wp`|tH7?_5kmLBEj!W5eE~hy}Mve<3
z(h)Hsg4?!zs}2{h(^!%yq_W>xq&b&IiG%ahhG9|hlgjr*Wyv}ikRgCBGz8QnD*Q<z
zd|DShoesIAux-na!&CQq7$bEeTRc48iA<$C^_ymr-IqgMuS?390*c_FAB$0o-LMbg
zz*aNlXZ{}3Oxeju06#*=l9p2Ngs4InP<Q~d?{$6rK&P{oO<L)*WMV^34Wty3OULty
z5wdsrkpeZ--0qd@(&${h8EGG0@H>x9{6~=hPDk2bo_$0YpA#652pi+#7n(W>H1z=4
z-3y+PCS$wp4X)qHRyN@5d`ly|C;Da%?<Qn_m>nkwOrV_uT}s#j+kZR!ct!K=e_ujv
z!7!aiCCC?X=5{#+$Rixhc@Z{Mei_E<`7k-R%Ijaq_efxhk-t@y*Y9g8gB{L6VRWKk
z8T;)Qght9czdx6a%d18-^W}}{raWTFxPnaFD}*g#iygLtmQf=|(5d)x{XXk4Bn882
z4-{F9e+5bsGxh32p^UjBquWmrYUVhgyUZwzssgf8C&{vFSr&XsjxM`*8W43Me!I;O
zepXa<)y_q9SW^YkKEU^q>2JYFOOYm}5m*P_pX~?6$NUFt2>sBc-rTOr8iUV8WWbw;
z7{*fs{d7x27;x5XE?Qz2wXgT^o32@jkI={C5TW7!Iw6kAxnmoIa|bd_{B5HMTt5Wa
zDWJ+g)T5c|$~hNfqE76;CZxR9Vz*SSYw6^}wY_{!$CCD0#l-*EcDB3g7fetx%J9Z>
zJN;eM`meFS_XjF|iNV;*D8L`1H*lO3py`G5{rl^W>yp~{g@b-wnC`mvXc^Z_pWd=<
zv3U(L<%B2${5QdksxQ9%rA<A5xGwO?&(17-;s%qzlF9zhL2b<lC7uYlP>CvhCmdaT
z3AiIU12UnXVU(2K1W0qnY2M|Fxfs`_s5lvQR8AiO`$&HAGd-icB<`^FzK|IGXqHi#
z6#_rg*eB@iWrpFeDX(uY+&E6*(borYkipXHS75eo(^KwNWzG(#LQE5xCobf^7Ydu0
z>tFeP5}uwXFiYfWu9<}Mk~pR$P4j45vZ+7h&VkoLQjNAzu<mDKw{~TIYbaykxvW|L
zG?*}d!NX#zC*i!4k5c2<Z87Vm@he9Wb9Zdj9^ddSyA3yw{F}NM==p?W{U=CJbBrc0
zYzSxW4mY4!7frZ`hgp4IYM`<E`zU&x?+@_oHmx1&<2$Agzx@`}cqveS=x}l!2z(P5
zBBj5^Ay>+dPjlM)5bZwLn#QlHq*ICRrIR~(=~mM_Ye&lfxSIE{^=TD1IS7;Ys#n@t
z<E<uur3Arr0r`?-RVA~P_O3pwDQBn1z-oK)stOy)j8JQ}IB@{*_JBd!z{i>a?t;{<
z-j@dFSUe{M2gQOp#2M5{U`-0x3jp;Nfcnm1m>U87F>n#T646$im{#XSwE*1+{i>9n
zm`RXmBuGW1eqY7WQS-k?(@3!re&9h8B#=~mvuv22yz(HHGsQ=KNZMIfqINL0<mJhx
z4u2R>pl>Kv0HTLUf?*h77(MAu27fFxkkqK&n5cOXXfjFh54t$rVKC^^Rp9~1gb^|y
zCL1D4tp$>8)o7v>N9^qRMSN2cVX3Y?$?nU^|1<_Ql%akR!{*Z2L20;PvYz%&P#E9=
zlf*^Yh|~s7C7Kz`nx+PH4g?h#zC-luxP!oR=u#@WADQv&XJ&ekWH|ukd#(c`Vqxuj
z%7hlpi*3H5i1g!!$=N08Ik>(tW1~3t^dd|%*f{;p9i!{5neBF0BejgWFR9B=42g4w
zp**zpB(%@-G2d~zWE?4+9)Ut)luE|?F-D<wMiBed#u5aXRCPZu3n(x_7U$}8rPM}i
z2i~4ojG+6QMu*b}2M=V@R~f%QqRXJqissI$aRw=60B!8EDkD?#Pig+zO$NtIHk75#
zV|a9LGQNt$eV#9C8K!-UW1#U(WeKHyG(}jZ)Ex`G%JCj;9iF^RG@VUjtb9nhC)IRk
zE+;D~@tJb&j&ru*O|#cWjQxGD#^!T6TQ42SUnGg9hV4;5)yN{};@y*2^IxRg@hQSs
zmLcspQ(svAIlye>bZWMYnHG<P&o@sZr(q9>?ge;So#}<FQTi2P^e-Y3IKA3wAsw8@
zk&fzxq^%{PxYDIKep!5gX!7WA@I9N}vY*-Zo7st(*-e_+E121@o%z%`^LcpYU~%Tl
z*38$_nM26z5$o)+@T{mp0iJ@hKf?9+&73L|&V==KxLBz~tM5FfgY-q(`}w~kW`Vfb
zTaCCF?$mGkc`zh?rj}lNBY)q9mgfCzB!E@tK?aP0^|vtMuiu>RF9t-pmBjw+x%BMB
z9vdD9)b!P{L$Uiz6odCzBk+kqH|J6Ea<eDT*ux9_&*!IDE!d|{3i!@g&2RvIwuPrS
z8<{;;^mMP#*?h&^Jgk-b(tCoaHY@s!l`Juj&5-_@Ug!eMky(1_!fBJ?Qs`JUf6}wS
zQm!TW#fDK`eR6VvB@YZyfjOuH9e>#tG}$R8Tg$O=I_DK?dO$Ru+PT8*u5Q~(sJ~Wa
zu(?AnUbHU3N8mAy@Y+uPv^>sL7a#{GzSo5=*Cs8}H-l{tmphKqom#Z;2ky_66w%uw
zpOk1t0d{R4C6OV4Hf_1`_@!H5tL&F7L3n52o4#)j*zCfP#u76X2a9ccvkrSrT`3<C
zAmgoW<7A%7NZN_tv|;5mci>&)CmcUWZ%ocbGL{A%Ja|(t$J&c|5Y@_44eQLVPxmJ1
zWL)>44O?=oOni%f(0aR^{)S9$#M3th?^8+p^iY=KR&puOkAWG`MU7~E^s97StyhU^
zk>UVJO$N86ziqT}){zH3_M7n66L`Ya&6YOdDDN_|;rv$DI+Hhv9nhNOzp|bGSVZ0#
z^M$``iT3UiZ8aD1VK$nKTyep?74&wxDX?7OzXbGHO<BBJVZcSlD^o6#R;$89Vq3l=
z4wy%mFXH)TxEc0W2&=*5wr7Ca&wR$H;szvt)DsB?yTTcFw+uSu5vmey{;rpGfT)rg
z84ZkgPknjz?BH1HHL|U%O<*t?3_VZ7+lnAM44(h_Cf(jfvRSdV`oq^83;USP_ZFXc
zWwC5MQb$xCIu&{K{RHPsUODk$y`b8=*+P7kcKJHy?ZSrpH0s@Ac=_yx%wpY@*KMUM
z10LhvJnMg(OQ+|aqC8xwt6%}k?d^*>;80@imG7A?4NLBMA9Hq}+5D|pTZ1ECPcR-$
zm+U-spGs&YpRM77JSx)HTI*2U)pESmY>{waraV5Iszv8o8$z5t=bd!h1W?)p0+*84
z?O^ep5-e((s2=U=r-)R0t?Z4O`nDRa$%|Dy&6R}yt0Cq(*6XGJQ5`8Yt!o7E&hvg5
zEWIa)1vw1(Cke_CJlXW3KW~PHOm}p&YzTeIHvaAPiw7fb+Nt(mze<guRQ1LAq)9B<
z>(7#xHI*c`kjDNW+Ub|K4t@j3iCyM(rKKtxDn5&^>1jc2mL&=?xuPZSqRTI!*Zb_O
zx*xH>HbW?dP+~d<32>V3qna}erL-_svq`&de!cI-VegYuAT9J2C#h>Kq2coe(*eXv
z-k$a}^7IpC^f}0`;)VK-ulO=65?C-AV1f?{v<)n&B9r7SFQ<s^G>bvgB(l7J_NRuO
za9#6hJo|mM??KfUd7WH<<c5viJ%8F_#l%OS2u0%RB?pzU>Hsns7n|m&ZM`FnlPKt<
zI?C_J#N)pW1~8rn1l-RoVG&<bNJFP^?GAbn!s`)EdI6rAc>l|wIKIh)LicnTf(JrU
z=8=m~1U~&$-JPO_DYg=CsC3lAwkmUzmvGbLPhuE=_$BT}r%%F>8{6ga0cC>?z9DIG
zpn}-u$KKaytKJis1@Lcg0&MOk=Cj~A<=K-&$;o%?gKn+G{I_T0mX!Ub!75BNrGDR4
zb02KHUs<G{rVD^Cb9w<pbFO$=ZItmUU&617zwX!$*YzqW-y=i?k#Iq=??dio>?zT8
zA8GKL%G$lUwRi8<el7v*NVgZs9pvu%soasxciz74a((%u5chu)ct*+0D>%=YpvU$8
zb9*fYSoO&B2L-{dVNOktLL35b?#WPW@s$$Y=Ks~SMH{bXNNq~Wy0?e@M+ut%$%Z{j
zfgK&ZiMqP3%cU+D{B0r!g#gk=Jn+9Vk$}gqJPOw-IT)93m}K;y|Jw86LfL_GM&CMk
z+AiDk`^u8>*Z$4t9qdV8G*x;hLHi?}Q>$-&Vh^ID*n0lcwtpoxoN<7BjXjdbDi}h~
zs=lr~Z#m|J>|LWdDv~BdU;hy2co6d9QT5?`#xTDx!g%5<?(fT!lq9lXMA)cRQD=^E
zg`dR--cKXX%GgSF16rh2ia35g3D%Ixk7&usyB_8!b!ZcIcr9#SHf%0JemG7ja^hp+
zds(w_Ihpf4`8%-og&^Q)JX!?fjo?v*SmW8$Bq}&fMQap<#v}7HEm+@_2)9&nDn-3~
z9;p`LeWrPc(WnIN;X<%41{cd@a)&ufqkg<22(L%x|9-A8i&b}cM%Zs>f6>oG?c<sy
za2sJ+@2LeeL&3e*;Jdxj;!o6XMLOXlbCHBr8#0L4bu0dhV;cTC3qK@?16B1^dsmj;
zO`hxfm-AJSF!>Z!Pr3d|n<YXWsbpL9=>-quwA|%5u5s+YRjz#p+Wpw0_LPVl#IuRs
zv)=e<ca0b|B!A>j9PQ;ZaS=HUF9KuqF=ya+Rwt%#i!eVzB<JHUA{DeW5I4x$wTf(d
ze%_^?h1f;-gqs{Ty6nZ3apQLtyVi^^M?5O^`k0dt*>5;|5IO!OzUK!@SR;DYD`u=Q
zTs3Y?`x?IK`=iEP`w0A~^v|ok-wwvVzgs#3C$%yaeXvVZ1(v-FUavwjcP<2VeoV+n
zO^vtB_h7_2Gw4VjS3x+)ET3jn411O9!MWC#l&u$4@&kbd9I>@-hPt1BUh!<c-tkjj
zmZ8z3`F`+gcUrrvk7Eg*h}(`4>_1wK-Qp>m@isz?>{?`Y>%JC#6~~tUz9`aUk3|RW
z($@!3g7|Oi-Y9H*t+sTel#ETS`prO_f*(!FyVdY=YK6nX3)DOI+erR7Io@josG)fd
z%-s6B^MW^ZCxdqEF=^;JE#=0Pe%0@>_>FQEvF`OAk-Z(=bl@WO&+Qhs=#1Y_a^h#r
zV!x<7y)U&YGald7z=i{>XXN+PW&F;25ha8L;5Ts^X*don&9OSL-dMfZh?3UPbAyy{
z@8f<fz34ja-Hq$&GD!Z`u)C3JtI905-g5Xp5;{0K`L|$w>zD7X#g{KWm)~l1y7e;j
z=SjP2)9dcs=)2C9s~^VyeV#6!uhe)F7$*=kE}2+;oMtXrJXQY<o^9H&*nE~T9n$@3
zk_i9Bot%d!#`6)~r_z4^EvolS-7*MJWcMlYqfZiMPTW!i#TGktzE!0j9sN8~*g6+5
z8mk@bN<t4&PJf*G1hL&xc2Z4l9CHeJ&}lMU$chf=+!0PE2}b#SR;CMuh-I-t-51e`
zB(c|#oi}d{4-)hjPV@u57w$-YyEp?H9MHKbOt1QM<)$zQtPKFG3Al7in3~@%>sxb&
z$Xed@&+i6~7fARxCY5W(8yJscY&VnZuNkO~2Sp@p0)iJ?xsHA45k{VTnOYrD%qD56
z1AfDyT+9K51*RD?zYJtpSn)=E`mm~M_-yV^?oavzndvTP^M@J<2$kl=CVSc`Zf6!R
z+i)*WUI}EV9hZo#CFjNwNcz5&k#tVDaH3v8d*Exy706M#vnajthwZKXy7OveNZaHx
zt`;yloa82WS>j_G^N8QHV<(+UdmdPhS!ZOQ-fKfp*L-~ZvqNrcwM`hGM2}o&Z$@Vl
z%(I<sngf!>IC?w6HAF*L+A%3d%tR)w$He^-K7q)8)Mp!iFZRJK6$gT;a;vsWROn$D
zuxaftq$@^743u4kbNfZ!h#!s(r)p^;EROQBjh{2DhA8Zd=-o9`OV!5_x$HP^y+ASB
zTnDT5yiZ7(?xs4`o;4H%9f;_xFrys}e9}cL(tI*ZD1ad-M+uG%f(n|mfNX6QF-S{x
zreVOG6ihiAj1r+sW61rhh(lN(JMSC%J`P7Ghow?32tO=|+4NlT=CZzytb$*jk)yx^
z115QeHRdp0SR#U189P8H!u3Sg2HE*5piCrLUG#zRBG>C83+{p465n*BQze_9#0c=3
z^DzF>+(C~{?p50x1o|Rgou)br`-XUNo*_kCLFo+)8N+sxSjjAXG>@T?>5=EY#uH_b
zM5{=&)@glkUula@vWzqc<4`WFN2NtYV8HAn#bu}mwh`1O{^g%#SLWGJ2jmexy5vWF
z|8eu^tUfBWcAvf?RY5OnEfGo&O@9|k^K#*PmDgh*<mc9>?R$b*HV5zI+S;q^vCKBl
zkw6d+8R^wXG(~)>iL`0;8k}~?3?HfX(ZV!bxvK%_-#WKV%^Ec*3A_Hx5b#IPQP8W@
zf{T|MyvM9A^`s-?$~k?^oUV`!kX|w9Rsc$pXF5hu?V23`roi)8mgAxPbmv9LMPf+O
zv{gMN*yth2lGXk8-?zp0yc0U#NKZ{ztlV7-Fs%0t4IExjP{FG5t$Iv%y+L<$ozZ!i
z!PMSV_fRgs=66*v`*__z`)MyTJCHfe*6zLAR#<2p{9Q%UByS7&ATSBY$eRHAV6G(t
zh04hH54zE|A_=tUG@?X`i*U>MC&fm<03FzXu9;3=x=Z;@O{JSgW6$TAUN6gW%inIb
zH=J-s!<W{P#Ew^UppcKRtbe<3_$L*9GViX?pKm=E`<wK;wKwP1C{zRRq#ia-rW-PT
z1gjY0-kYmcv`l{_0=6ICk>1VvR>uTC7s5*k!!&-OEtr^EU8kcUgMFxL5n#cMIm@&`
z)@GtaZl(d)l&z56unNG~Sjg(vqbspUgg??7WK3R!@azzkv)VUMo@&DrYJe0+QWcO$
z0@33!f)45wrgCe5kS#jHxMY*H%$Y`Nl?ag+U|<|@rr|C!O|!5T%0N<vg(ZRMrgt`Z
z`~`q0bxKapO%I;JxgjCQed{RcS~OGoxV~gmURGGGP?HZ}hi3z_ezTTYP@>qx(bmAP
zvsR4jCW6KMV}7l4orG2Tq<wQ#VXM}8o}MWMNFRfvk+Xg%=Ee2O<qdOCd03sC6)TYA
z4#4N;pE`xy^eI2d=m%3_0jzgzFXAeCnYBsv%IcVD=5S2J%s~Jv{SlCj2mpPMZcv|1
zpNVOXE<Xrs&|HVl#!p69oVGS-AEwXV`4nCG=b+*0IeZR>h#^5_8g-a5=8`01s_4TT
z_4pC<X{IsNtZj`3T+bR=yaDWd<ZT0)XY++OPhqr3yorIlZGFLMt;Cl>{(LHciIP^9
zOCLPp8j{T9r<i{E%bw9a#3JcL3@1VuQ2tMMQBaKprUKpr)vyG{gX@rDyH7A@EP+{Z
zqshkK9%3#(E+YN3>0%ZLKcC5X)5-_{1&2$0;K3{jW1hCDm4~{1Q*=b}km2rylID+_
z9fiV3ZGmiAHng}!aUL8*c)Y-|ynT5z=jaxolfYqlgl9E>Lrk@hws)pXOR?g>BH|Z)
z3?BfCbpuee5e%C#1);E%l=8M#>+6|ri4|wDqRXN7?#P1kWRln(3vjqh8TXEDlSZ22
z26i;+c4;Mn&Awr39LZ}tmH}~Uyf_X=?3%2^8DvZ3@E{HF7L|n!7PUTv(Vwi<T*zQD
z*w%zdQ?K8O>;mfya#7`^HIzKZ^@X}e^sS-HfA3S2*_A;NV#0|VmO47Z)e)@DpWn5u
zI`X~u*hoyibj~&xH301Rk3#Eu)C8vDx&L$4p))U);IQ5uLd~>gUq7(o6m|%bKN_{I
zhR~;yQz6ogLqJ#R17Ir_;z@dlFl>Ty`Q>vMSjyfnBr_KSmuYl7E1AtPBXi?zFtck>
z%#N6DanemV=23ESCB{$4OZ~caTpIh^=p?>WYXp0}X=UAJGUF?oS+mHDv~CiCt*jbw
zs*TI=$Jq6BF7q+s@B^MZAE!6tUzb@10tMk9quhEx&J2@tP-B|$^?F|o`Wc!@;{~Bf
z9BNsdAnXe365Qj8zRu`#FYJA2%c=7#KvAp%`aqMaEdd|w)9qLZ3lm>-<-7jj>5W7W
z2=sgyFkl+1(kiB<Yh<$vxLlUqbG<qkS$Ipa>7N;j|7hV$SSk;VwMw_3zz|3u1Bz|D
z!NW@pzihX=c-nPCDCpMSy3T)TH}7-?nno!5ORFneg49Gj-|uIIx|d%Ha<^W)qwEVq
zLkwRv&r9CKp<*nc(tvRjuWJjr&MDv*LQU~jQ<(MbTYzf&H#ViXXb@lc6`CL*^eBpk
z?VMxT_X;m|QNNq>z&_XOp@!E;OR4~k2hMr_rtaN;*=D}ic2s`QgxbD1DboD;@gH7s
zwW0nygpFoLj`pSvqFtR6kZ6KD#Hn4e2k7%!(1dj|O&klnG!>*M+a=<YB(Z8-r_1LN
z`lR0`{+_6H2VA6w5YXAs^JJL6@!l<~9zlo&s7pv^Bu!8(BBIJ~;0bBqgUIjE>$$%J
z1O-5zF#M&H1purzK+oW7JRKvsnAp@0EFlYd&xg>^NxL(or!gM}T~8`E5`eb7Pok+N
zQ@1?MVQ6`}g_^4g!ZAB?7PD90$N8_Z@Lcjyz+a`?T8Hevd-!j$@de$e6=p5<j^a_m
zasD-XthbdRd}<dImlVi2Dv1b!PK(_@AK&RU;2ykjqjbTIjRKO#B6)D|y&90D0GHGe
zhz$pL_!jZP@y?bK&bJEGdr`ELX9tLZa#F-QmY6t<`2i5%l@m|^8X^~ee&_Z8m)IPD
z##(tthle%@A}!#JP=aiYME5BMF9Q6ZjU{`Go9jk|8Q=tT1vmgsDIUiG=PW7CIDjmb
zOH#nQKpF5^Mb(t5PSwSHtxMHlP96OpO>g}c<@bhbPg6rPlz;;a9nvM>&?z}|I5g6r
zARyul-JJq5bchNFih?*pmq>$%N(v}a()e*U-~I0QKUmN4{IHI7-Pe7d8i~Lp#!W9o
z<d!pdD#1XP1zhQ;m*p!81M}j5qKS_TEm<-slXEBq1BxJ#V4X)wiH#2ub1RZfG+auE
zJU&Ab(Lk<Lmy|deUxYW5(pB<AiY9#P{`m^4E+EMAOl8a^AxHzVl#K~I07?;9MPDaa
zVy|6+HzKqXf`SvY0ifRm^_bpd3#0)?UobeB(HR*WQzhmsoU!I@45+hm69&(O$odc>
z!4sg0esY3DGbnx%)O!rPL4Z4KMjK?&h%E!9&D5{AfWQV>VnoVgVfr&+dLHxp#i%5N
zSr)|3iV~Tr>kh(FaQwD`ytM{!0~n4qG?1&=Kbe_XlrwR85Xy+m^A4fplT2VT<jn~S
zOF^Xmeum5D^?XdOUQq4^ApVqrX$Zg|st|hq3iR6>6m(DTXOdXn8Bl@+<YEn&D}WAR
zk($K3cN!2;GtfNgwu?N6?VHFuSt7j~=`D#6ZnnVnp#pz9{l~AZ?SsYa8{E@hxei<T
zL~sP^S$j<7Sbb0cm9%D}<WnevK!+fx(0-vCW04L3BryTVKIh>a_LP_?bSw5W(IXe%
ze8bnJ1kLP-EI7AF*=E+6C>pjZN<6owIN{JS7fN5_D3%3CHe0@Yi&p1giYzWfCquqi
z=26Y?#Kfw;_m;h_%<Jlw6~6*4&Pyd!mSn)7C<ae`=|ZG-J{Sq!SAt4r6^rUZzSvNB
zDF^E@WCYxOx;d=>YT04Sw)B3)V>&?j!CUsQ2)T4V+E=`wkyn;em_+~VXi@7hJfVDw
z39UP=^!)@v5me6X62!s5ZrTirQHC-aTF{6>&#Azd9B5X?yMPf9*LfC}lcxt%<=0!I
z5e(o7sY=v^5{quRcrfx>J@;hq_45`nX%P<-z|8?7fXhrM<;V5i9;Mnp<jP59$_Fz~
zk=oQ86=fELB0s?^%+u2tOOQj-Q=60;F;s~iZ^&#h>^(N|$1*HG>v{u$(p$D@B&3>d
zu38sc`(;Hw13;By2K?$lU5Lx3qYfoZ)EYNe>jc%+2Ned5P{yDsPo$!%ZCSAIAXfnB
zuB^I_Vx(&$M{9>#ZSF08a~i{9$ju8jCpNk@sRmbSDC>d1(<h+D(_4=&AfuDf-wfpJ
z^o6CdDt124-dxDq0AV4;)pxV%Ed`;&gMKA3tO|L)AF0ysX*3n#Au;;M?pZeAyQI4+
z?D5hxWO=^G33km*RF4XWj5b?g1?$j7>Tr9sxp_*ZMp-SM^CvYq)e74%G0puv27)Z6
zEf(>8|Lz)75BCQRKSv}aCK*t^S#yUV7TCfSll$B(2q1-fgqWacHgx=6Pa)h<(2>%@
z(Fv8}mvSAFR<vlo0`>9pd*ifGk8)6*Jpx9GfOKI2jH`ex6EudepaO3hAA<7W10OLf
z(vPHtgM>mtJi|b3k($CnzQT`tIOTq!%w+_uLImoX#Zy9Bo_R@E$%yb9$>vszl+?GQ
z_@&vjM4unDe3q&D6Pfw~B-RS5d|mnSZL8Q7yM!48?$Hz<V4`8I0J+Dob}lzS_d%9S
zK%pOTdK0qdX#V#b0M->+CL<Q6I(vp7peO@4v!<mmmHgJ8pdp05^>JG6+Tm+Dj51F(
zG&xsZFG#_q<6hIOTwVjDAr-CU@y?%_wshoriGgC&w4B=gbiElxZ2$FixAZu0ryfcn
z+)SZ#UMc<*0_~H_oz}2wui=t=SLRm8QHvgTd);DQRftmEzemgK%f#NsG5zZ1duE!F
z2XfL#5ailB&;2K&=xnD3bip$Sla#tdmO;j-FVmo0g;{H{7!mwe#Y{s_sHZCu()7sP
z(55f*_A=2DP@t);MUzI<VbQkwB^$8L;+>~xAy?*r)zP#N#ZqAfjfo;nJz`@$&*KdA
zk%<!Gy|Tu=@@WnoD5EwOqQY3O+D`8+W79b~@@=$npN?OjURs|)Q=idT-|d|~Q+U6*
zc)z7_zm;FVO<KQQQ@_Jlztc|t9Y+%m4?eZ_UNz%^l;aQ&W2l&i#ZB=6D+Wths0CNe
zfcKb%*}*_}-e3aD;B{=!Lt{SN5`+;6qH2Orm^p7Ctl6=8*P7iVt=>h+4aGYe#`z81
z$xEx#8qCB1mDy=j;#s;a0mV@ROF2X9^4DsNk(sK9_I9_34UE}_&ErtNpm?j3&dAms
zE8;UP;~E=}<0x&SHQSkWu+_^rE1Mxl>+ZDo)K#O8Lr3+bY~ws^_1awk1GX7feAzW0
zWrIIj1lbiI=ZdY5{KH$f#E-&DKCYFLrJKYNRaW+OR*;5v`{(k2mmZ*&{#Z;i)o!WQ
zN|W8d#3x~y35$K4)&4C30EmX$$A|%zhAewl3Z-{yT==0+@sZ_0mdi#HWn90%vRtV>
z_Uc~w7;xchM4TM%pFl1%yvUtmSJHbQ$|pCF`d_FcD&7fH>*NM-dM52O8|w5Kp|5lL
z(il5!y9ua^a!y}%-q~>8pPiO+ymJwM$MVq~ZJ@K_b6aIKtor$MQ!)0UAFGF+rW_h~
z02FGVrhU6yuA2>_E$4KCKvF^0B3QYm5ihStw7$3bP=dyBMpU8+NfOW9Z&<6z=t9{O
z^qV%X69?x7Di`h~B!O|0Oi|>i+kjfe=T(_b(6mKJ{(t&}kI<?PNU#%x7r?>@OEv&Z
zYcNmQNlh79T2<d>C0V(Jg-hyS7gY*0<8*2K=NJN6y{rq|Jv@00ExnXE%dEn#&^!RU
zt9>|b4<(4F+NF?j*pgwwOOs~L#4(Qm&!OJ0OQktW59WNk%f@AZ#*yhzytUz$ghZnd
zRWUqZyG%RzwRif7cQ!1jb&;~bla#*xExGT@vCpL0{;iLH(`XrcV5R9M$i;M)6?<%>
zG2r`qsw%P7Pr`?bwo+3JY|My^sbXu*SIbkVZf=60&z+WlWa+@)p6xN7!C+i)i|6&W
zuqm0he)?E{=PcrMEqRS3<@a@i4oj&&S5<dMOYxI6)cA$eBx`q{t-tNcnjyjey4sq&
z^LM`iAA&`IbVk6*dv1x{)i0BT^D2t{6P+6YKmH~K=C%a>2LqB>gASfY=Y|J(WB`2r
zcu`1gIv`NhurefQEtzrCb6mTG;6pnR<mLup*!*rX*qW>HgLCSKwNy`T#SahXz+K(#
zSUSGM-9TG+WIXRy&5PCbTJ_XP!tJbOQzBh_#b;WEt^609h24;r-5;5MaL->ri@OJ$
zx+7;MfAO_$TS(>amTpi!k;u*dNn`A@bAlLrK`}@PjAEJE5Zrl}6ciIHOvv4Fwc6}>
z|Afs(mwQm5QHZSS6d5j<s9sVL60{jopoclhiLg0kcVJUi(NlC*1e|j~FVyefak)RP
z0yV6I<V@V3ewS_T6^c9*u&A?@PxX<uW4ioDYX;lD1FJkS`3ziyd9m$@Q!vnnL3$y3
zciB)Zx_jE~yX+Z&h&K<a`{9pI5iyFYw|HDC9)!g8gy)=wXDdeBnK&#uJ;<HOI4wLp
zbf&p60r>9^Xy)*Rhet{9DPt)c_^H<ejbgaWcV^AUncJ^(F$<C4{mATY#@r#u4Kk<G
z_wbYF-DO@sl}y7ue;q@#|3nW0ulJnXc`T<D_?Cyka{^sL;tsjH9sJBW%_;ZW%jnQQ
zyk#g|`J74e>F3~6w`AVbHz65yXS$YejTukv0!e{-huX2n_NJfNTF%N}Qrv$$Jj1Hb
zV|vdJ2RFd&+D>N}A<s%yu*EFl#+Ik|E4?4Za*f>fC!#N`KUi09;(P8+HnZJ&ofr_#
zfBCKX;rr8vdewL*pE&8HB^rIa>SnAJ;W6#XW57_-qyX+4MfB!l(1K00$(!Dda>(Xl
zlWE<$0rv4(A>?l&1dZfRwiOx!6l3h&88&bN&r}Tr*GU2@**V!o+qi7Ir$Z@irPj~*
zx9U<h*yS*i;2eHmVW%>bW5)PygTLW0L|R(90jN19)u8pG4^<fhg#llhc<Sf~Xx`nZ
z0acKDHa4*7<_Q~Ety%$N!Tab9os5-O)?p3Z^<}g+tO{Vj7$Lu{tuuVOb|c`$ZU7FI
zP=l$|(KTskZi<7fF0Y_uMNA=;z_pFI$w`Tj)<dR8L^j)^1zQf$xF=u>6QZofYFaIV
zzrOh_v3jyfC`Z_?r+T|WC2V(@m&58OMij;J+i7XNa{B64-q84YEVj_>N*-sww&f0h
zYcX!}YG4g?lPDRxXoq5jV<4>3?5bQi+<c=Gd$!}K=ZFrxQPqhKd6%&~ry($ib^>wi
zEl^`zCOW;aTV{!#hOL~pOTRGZ(4SX0)~9}^Uq|7J_I;*pQC#j7$Mned9`QDctU`{_
zt{LH{LF6+8ZFP*6C$Wq98!%&j6FXs0Q6i3HX28>ENO?{D@9lvddD^7s_=#M_tG8L)
z<r6;7%unCm<nso(K$BB&V3Q_xsmjl}?8vFMY~Hn=H;ik;nNlcjgX3SHDZ)SV*Luet
zu6JHUJ^f+)AJFx0?dN~)NOnyk7Q#DXR#7+P&X9!$PY2Pd2r%qWtNm>1rF*m2BUXjG
zEV6`g31k_88u_2*kX}<9p<T5%jCc4n>Y{%cGA%5EO|?0sQY9K!Y8?bRR#LR8aCf>5
zR>AClIkx)g3-1DBg*C!S&@p?}No}UcbqP(BrX#qK7MX+ZL?N@5lR3yjIivvv1>=z6
zjeoo*NRh>%DtsKwc8iMMUCH=%-$GolmPfc4bF%Dj`{BZEAC%l6_b4TcfxyeGdx&~X
z<=$9e%1$8QikR};ptED2Y1;UqaTS1Fn@~BZ;AbpH(leJ}Nw&UYRXODJ-guC7&B(*8
z`yh<Zl1hjCwzW^1krr|Ly$K?062++|4q<P6E72mSuVy?AR652a)E;8x>QUAUsWvF|
zD;R95$cYZZ9yaDS2gDxKrTM+_ctQJhMrvGf*`0u;lM642ft+M{^WG6M@N<DiJ5X-L
zvdNtj;${9l1OXA&`^W^=ltyfPo|QAHFO^~_d@V!GU!&tc@;d|2M!qEvD=_6;tq&@H
z=CHPgqTV9ZtNvs@+p2ckdAmw68pQFV&?DN=J?FNhTj4rtSCW)aj#HvyjtQH8*T}_#
z^IJN))Wf_C=x+054HfUr6*BIKd=tz3)OBUc>_{b<!C8tE_N80hMT5PYA1~UH@9kjp
z-UW%$&7{rMo|0QFsIJHRC~yV$&kI|O$-$n)9N>=DEval(?ri*di)ea?7@r-wWGL1!
z)jZOt*-bfeWPb1yDlHpUk7u76D_s^kBqlrF;-P*(tLpM72HLIleD-8H0_C_*KQy0u
z!S~!o(5vkBOqud<uJ^TnGPR2KuwM~3zC83`C*&%BC5vhuE#`C;zQ;w3f0<r9seOS6
zmQWNDPGwp@m0GALK)N_F8FTx$mc9yN>CdOC;jAe{Xn@mqbKXuqW;olseJKiWyjUJO
zS$4)1!fmcO`C^$DQi>L%Z*jqdBwaNP2|xo3XZ=53EzSZL<fjov<_E(4a+E^`w$&fu
zUT+e3SDX25apUx{-Vz-5fBO3An^D^gX$HR~K||fvs5|dhz35`d{8VKgu%CESdMqGT
zKZo?Gt3Q?b9S|sZMmKsEn((BICOkZD<yH~?Y8+-BKfz1d$OFW5lJswJA%Qez_{v5u
z6OQ&O!)%`)Lq1o(*t%<mrHha<zcFfx1AQlp0_)*S1Q}ZV{dwfZfYGh!se4o*HO~64
zsF|g-q0MLjbjq`KEPX;UPIlwi+6u;IEJjrlrAhTKugU4;fa-fx7T-<jTt88lk~^0*
zxl-rcw?Wg<^x8cN@#iwGuj3(JYu3u6xQ~xjr&*_}f2jXCexas}qV2S`$$x5Q%F09k
z^t=(EKFVO09KV0v-@8`XsplHAD4bR&h-hf{q*UQWvjhc}#GH!+u@MOYLi<)s;YsSt
z{r3<G{o68O8y$rqhrBX1+su7vwc3JI@7AVzy1-YUM$z_EUj`qO2caK~L|)Lv8S@Lj
zeE=$WjiI{HtO<2(=FfjR3taF0VPr+FACx}`d87bFDg7rhCscG4i2omiw)q8O$D2(O
zZQ#6p!Oh#c35k06%PyDSq-ALN&VoBpSjh}u(M2$xzv{r>%fF=|I@e}Wp<M>YXFFst
zSIY4DAM^0p%R_vN2C^W|@pTCu=gjR9Rs$5aW;k{hfFbA5d|;rQ#cu&%eIw^xCdrAo
z3_b)EzZpUPbjabSy$x-gytwDnPSfc}L$Ak*#qFQBe2wy%mg@NZ%Oy&>=`kh4z3F_z
z;LH-og`xS1%ZELZCKCzm&mYtbM`(0kY~#x4q^$gbB9}6H&vH1KYT(S?8i`XYbZ-Qp
zG3J_~{O(IG#~8WoG+R!6zcw;^(GZY6>i`^Pj<5X7-)Gm}pHOb7^VCrOxmfg2On%nd
zmo_Dv8@ie)=UD#aG=!hiK|Lm<DyGaN0<mzkU+`O0cyG}^OtwaoJOWtI`l$zhEsdvC
zBI2*T@fy8ei+Z@Y&nNyMkDxCM)N2s|Jrn`LJVts;3>KXJJ`eopFL)%Xy1h25w$hGD
z!3S9?I~;rTg)OD}TSW~HPW?E}>=o0h{2EpCmk5RkQj#c&OUh4s{&e{eojFso5=N3M
zpRjiSs>nC{<>CLT3!Jo@2upY7`QtqqiNC?rXRIM3wgxE)qmIsB_OWDk2Q)a#zpA+%
z^Ni}OwUME>Y4>j&ixL?ws_CrLRwlP1PG8bl)g!e$vA^!9@!9ht6i=tT4{AAK$+>a9
z%z08q_qYzI?#~z-{Sg${dCpFyCV{3rn@yPE_#MUkvI8#Jy>G>`90e9u;-MQimYoxq
z5AAy+Q2vuiGel(i<OHK3=6F}@@w+#wF?|*PTz<fB)fniA=BDJlS4u2H6J$0E3&Q?!
zj)lfU-?C~Ihih3u7%cL;cmR{P?gQ9yuRwa?_uJ1YZ<?lS4i0xI`#)5t5^($~c~j3?
zx}DC`Tnztf3_n5@#}DMFCy0&t_eRA24(h+p>=oTBi-LXkh>SXiQ(78NY&xIWey{x*
zc<RfMH%|TRviFc2>;=u5$C`PVUDGY3m_}Xvd!QxkfArJ71o_{}@VihRs%ZOUp+BL3
zI^A=vUFUe;|B+J`U?9c`KnhoGbMDlo>i-;gi@?~*H&CFIk_NQn(|`G;cnITAZ~rq&
zBnC?avYGiU4)gpwpplp^o{Bzw|EY?i$;I1eO9X-?fT-k%AZNnkIf4C)Ju+zDr#0|$
z>t!)zGn{DpSBWls{KkKCfx}6$|2i`Nd*Us8hyy3M>S53q_4MGTJu3FZ#!5HHvrpIP
z2;gKe#6$bM=%sMjv)!YVIcITGdm>c9^xM-L&3_@hhjGDOyqC^sXpsvfNXJ!_O4nH%
zQkMxOKhuOc0{#;vKu3n4{QF>jfNTODOh*77Vt0=~`+a-RD1q~WJ@Avv-Jo3&EPyIM
zi^|63T$BVn1aJ;W9<cO4xBwtYG}Lw3U)2ltr5UD{{`(&<{dn{DC=U@SEXBhh6wAR>
z4su3tgW>BwWv&^tpcxlXtABKt_HHvg>C+jU|ER;@!%XiS_UgDu&{D;^rUx_g!Kh;k
zJgym(6ck`Boz6M=ipN~ix*1Y7z&O2MMi^D#3uby0gdqODpHPWTSUnBVys%)5&_1}?
zHNer5#iZtX65`9j@`*KV5~8*Nbq0X>aBih9=J}c`2c)Z6vLB`WgzTCIZFw7$aZ*95
zP>AdD%_fGCzU3NE0e}a3_-}6tC$8)Sv^s<2Wn)@dr6+IsSikc^9A@&4rUma9U<Ld5
zWs^nWt?7q4s8KARQ9rM2!!5Iz7n-|LT~+DUl>kr(GO>R#94ho|U&lKno_&{gQCQQD
zf$sMUI2>)%y#|5QX8oO{mBL+Py(>V6g=!MPnrIsMONr7Tj-CTS=#)_J@I`Hiuh~Y8
zPX(ahaPJC|%(BVS%@5PY-C>BkE;iZObj9?|3C6sHzh1fN?OA|)zJu{5z1Tx19UcT^
zJ;H`ap6iHM)r+wG5e}A;-jk7eAtUx?>IOZqh+R*Ug?Vb<{5rlxnar^FaELg!$RKEi
z3)+#%70&$~ttHPGAbQh9!1#~vss-=%lt_<^5bsCnN0y(l5>$M-B4vltX0PCw>hy~`
z`67$!^gm_)z?Fqu6sohi9#X<`z)FKTj28OPNWoamR}3F<%HMA*&!PpV>wyYE8|)+l
zY9f%psK3g5>sGZo$sKX>M{DjLoyp*>KbEfF{@lkw)TxfNwq!NvW7Wz1tj1o3EHe%&
zgRMD9%5+$?6@@gt78I3N^@I{Fg3*x2(6Z-g3qZ6jk6x}ai(aAST`{1)KoCZfmL01N
z?AI+{*05tqQOQ#a9n&rb>wKt%#2soaTDqp(H|QThUq}5WhujBb9Pv`4bp_B0Q5d5)
zS8}QuqYo^`y%^*E89=0nTF6Hu318!~O5<DlZ1XH8q_*3p47b;2L>Q2;LyT$ujLGGU
zDVfC#97=bDF|EOv(Id>6t<2f-%?~V%3~^VqCGgecm58~GI5y`GwGeAJzuErU9bh4l
zZ-Jk&G@8YjBCIT}tZeeF9A>TVv>#m&obRWAcXD+U(O*IGAoqN0e}pwO)W$3SW7M%t
z>a1-h!Y<d!?tiMLS-WzC{r|G7eEVm!_Ae0*udE#2<U4fEI($Gl_F6d(<~xqgI(|Yp
zO<Ot5=R19wb^4BQUbAxE%y<4Z>%51!^T+BA`85B|W&R`1HY6<xtUr6l4grP~VB$3(
ztOeL<eHV^715p6Bj0Dcu<Ggl^z4y{(o&dt(1qJ7<_|cFvIb&{u>#b$i%RlZf&0T@+
zF1*%8^aP}5m`r($Ck@EG4CO|F#nQ}qxmdw@#C2SVy#F>yTm<l(Uo{;LY)k;Z8v^PQ
zyDJNz#>=W!b$82O9~l$P9`fGR!O3v}I2c^0eeU})x+qkJ**;<A(9icrtPEsX-wlkt
zTNV~pKj-7N=~o`_ea*xh8UxYC1-}T}phE^xoNC3KXpJvJ)R9mhN%PA&Z{`iZ$&>3`
zKl#XEcCjB#IOc<S3#G1|20Lj6lkcttY0T?rARyLk5UDkQEgPh*+ILz%Bz^sAUDce?
zMNt%Q<V4^gtm=L9h9;pwcrU0U7Q*1Iz=;)kUQcUH05d?+bAE>B7D7vz-iqhA-Nc9A
z7zYLvT&qR;41zVD-c^-~iTKc)!Y3B=r4aM^%_D<l_YOtsAybYfrigqtMS@MFv~=_{
zz?-O3?HHRlGqzi|Uv7pM2Kb+PD7-d>vWGv!tBw?^hOpfGY>BVPzZa<W;NTuIY6Hwv
zfY%Dg$eeAzzCUO9iN}B?W*Yk7&Y780jcMlQb^cx`Qp2drGY_MY@XnogoS3qVEd95A
zJxoc)o~Wy}e3R)UA<<Tld>g5)Y~eIk1)q&Ssx)tG1|%L27kbwx3ZP!Mx&MhtPoQ1!
zf5(DH9KpGi%tkxZtItA`I~)|xq}<tW&4&lKzrj&G*s!oo_dNAoVo#v>Y)V5gb~pt@
z*8&6^oVH|bUQ9w2=h)VlLCs<^>mRiNzD478bs;?p<2d&+)2wyT;3L~msdJ44+KkZ~
zWh%ML7*mVxn%~xyzBz!ZZ^G+Wi2K?HO2VIWPHmA(`_z4n_xSA6&x&l=-#V#oxXNZ*
z@c^*tr0illX+GpSHBtmq0T^206^sCgzUAW`KULX`LD&_i|H!rzC@Frc@tALI$}Y5{
zSnm<v=Ow#H9$^nM4d99LdR8p{>I=%1>5J)li*uFPF=zg1=Ne7t3V*NY|DO%II7+FC
zE9Y5Q7l&LH4trWXZdAT{LPtPDEI12xJd74?L<#&##2XZRp-M2_gy*@pk+1zmL>xIK
z5EO4K`||eQgj2v9BgGq4J(t7pPr733t?KIT#ZUNM=&l;n`u<$V;N|*=tZ^#-@e^E)
zXho!G;`;esx7t@zJ^y5U;gNWD^Bs+lNUxC+u2hBak+KeuuyWJ!4{vyE)$_UFMv?3`
zPS_Los&4*ZX8`TcyQT(CdRPB^Zd|%<WOu^d)K3>LrWOVMMQX?l;7;w4mlp@9FC46$
z!qE-DN;Hh@j6RIg%$B*-*+&^%1%>MudtE;&ZIXEG`rEf7pMSY{UZ(jss02)@SCz?;
zq8a(@`)(UsU$?u2nhT_o?M<WD;@jT)(lM^W0cm3E9}!p$R@E1BAUtPAMaZo<s-Q~h
zNPU_!AArhd8X_9*GhIlyLUuY(X##kd=(<S1sAfb<V=t)UaFl7dIoG%ksmmSN$ga0S
zeoHrLUK41#v8)R>53=lfT-_y2+&Hoc^p*I|UolN|E1h<lKh|scc7gm#IA&EKi#AY7
z(-j=C_Rh_P)n|n@#D&dA<GO3*^{z|5D~(@1nrn!}wNI+J0>C#qm}xGd65Ou4$Jn|p
ziIY9Mn9^0nBfGf9f&5LH*E%YMi~frH@Ji&kid?MmgTS(tozj#FV^)7r7OQ=-m3>yO
z7<*91ccR?8n<^u&qkD31%{|_hmwYm^Dws9-mf)_Rp;i8*Uq`KvwN^__O8cgJvS6@|
zddh|>%YT|%;;?VMVSJC&kHDJy{P(QS2LbLHuxj+!O@YTL8ir1D4FAzHRco?-b>S(q
zvgQ8XeAn3+B5JXY5BM*xxGHQBq9+whxHGJ`Xfl!LMjg4KztnHR;!b3KFqqw0lYBR~
z_SZb`hR2gKgXmoRmslR$d%Ar7&^C90j_S5BQN`Gr@udIkZC5@|BbQU07Vf<!aKD@<
z$A9&OJALj1Tps?_J?Z)cjy9*NpIE1L86V@EtM%Wf^$~};$qo3Z4y0&$x*Ps*zwhbA
z^JB$L&;~N?Dao@IG2k^t^jp5cCqQ=>=W$mFwV^}ruInsa>$%4NO{jHXl~*`VL)eey
zo30^`e^2t}o>Sq8@cps2Z*2O3Pd_e$e_dzni@Jao+4nahBo~iAN!4n`<U9{ciN0U?
zuYgS2{<QgEE5RGSHa7xm=ut195^5(t$B$9=^h<BwGZ_p`d%KfF9n&2Z^6&Rwr!xr8
zzKwjkPX8t$&~$6$y}&lXEhW`w$R}AC`pF@sZ%7EIZ}>sDQ)M+N#~WUQ<g=<fAXn6<
z)aidn%*1`sOvMQu#cv&u>JtZs4$D^3C|OFxMKzlwGPt&Ceo~gOJU&?aI686n+bE%2
z@=T<dCwn0|n`tjQvhNhgdWCJxgIxZ+Swa0u^q1kYe1Pybvdhaa$#>Fn9E0>OjD~k4
zKIaZNo_}pnD$cHmid<WDUf@hg%KXQ>b7vlB%EC~tJx4Cb19(&6DFbfOd|JqoaUnU;
zGK*((VhYc`hID?rp(H*hnrxcX6ygV`@H>7;R8jtUqHA9JeeXF1>nJcMi3XlHnXGRK
zr({Zm$4%nLC=eCAm8$^wcb>HC1OhW`omm9TvNkg^%=&Bc&hqSri@EEh8`*u*y(T-w
zh*XrFvp8A$_3LEnFj^<Ao{PH`{EboCLg+e^eT(^Ejyc|VkWr*98%{NqXdJ|H&D^n+
z5j>bOMlIKwI(lXvc3rG4OUm{jMk}6@(OHg@xEsfW@R~xN4^$^9h3K3dPlwlhdmp7E
zp72MJuuO`hxt4QwKdubVk32|@#7LOFy#H&F*7u&yrqNTKvAet~E!T2<2da5H?c8hi
zMK#B?%|p!D=bG%_g#7-$5wV4+nd-aRbk!7;BielH<as{Jjd8?VWGu%3J3Fhq93LNy
ziH*O0q5mcU_l=K^M=F~5A||%uUd7)Snf+u@ksC1I&r#ZvUq#}3$pSq4ic*`v>Z}ZN
zANS`hVU!qeQIJE*FI3<P&&pK^PB&M}BMuf9r=2RYzhqXL7>9WY6x0q{X861q@Ww{+
zGCr72S1T+=zh>8I?%IBDPo2$&Zs^6(5l3p$el(=ZpF`iUOG<~T5N`6H5CzSkfEUEB
z>9)%f<50eqqdCKq4ebE%k}fpL;v8cY=^Al`-{nnF;!AcGVRT~d=4f%W_h|}?yLl%|
z(+c~1`A{=W*WI&^AES)alCbQ+t^v4~l~Ullx25@6;P51rXwh-JIi<8{3y=w_q*IeG
zgH`5AzwN!<m!-;Mx1MloE`%uKV0GrIq~GkKnM2Q)@5V&lbgJNswE5^2XRfC@MSIOs
zo#c9tg}2$pfL6_{&Uy(!>Y=7j5MrT3*Vb<WP|&)`Dnt7g;WQb!^@d1JbDz7>aXmzi
zhIEiH_D1Xr??!o3YZqU}cy)Hp1SS=dmqlq$ayDZN%uATX^0rHUkwcHLztT)WxWwzv
zKArx_Qp9EwR8X5j1Hx&>L<&vnF)yJ0&Nl&oNhLKxK~kk=!0s~(9abtv)k6WMo4cz$
zH0(-2z*|HW(#sFd7m9n#$KOf<HDgBhaUL?-+gHMMG~oX=mnnFH>3y#!s)h^?FB%2+
z3*B2ZR-pw)0Z1_Zofu(00M$Jx^<~8bKbcDya=Y_d*R_}RLPO~48@oMXdy?AVi2I23
zCzrr?j|$eaeR?>nY`};%Kw5~mKw|>MHpcAr^!)5)47E_bR1efm--k1cLT;b(1s#<<
zZkmO?;`r@u#l_}Q==U;3gn#aS7&Lfrv(7;M-m>Dd_!Wtl<T)6Wy`JZgA^2Rk8U6aR
z_xDr(4q@FE6_`hPnH%9t@}uy#$wsd2lZ;3S`DvXzI>l;BrBsJR9m3zfKPK9rB#vht
z9;=<$V2H!h>}(a9Lg5Xgj?z#ZLo5#=R>M$XBU@bSZj}5ape(YeSsJl7_#Gm`!2h{h
z+89=Yk$MI+dG*~YN?I1YOM=+AknaeM$O867ya5+(GbukG6s8}8k#nsvOsyJ-KNWlT
z*tI9d^o!Kt3C+wdmBwdXCk=O$NdVMBFBKDI{J}>sSYn}<x;_N=|It$M)9&-}?-9!h
zk!C=M^8`&;AElR6J?!iZThw3do}{Dd%Jghm3uzIb%6WH{hajx;W$0I;j5j`Kpgs|K
zD2yg2WzYuK_j(5HLB5q}@*HRNZtj?*#g}5?e^5O^rGfDqLHz2@3r)1`H4#Zo%L3(S
z(oS$|?$f{P?dl8hFiL;1$}~+N7fwj5lqs*#&zi;A;N=4}Z~ikBqloW$hDCr_e%Fkq
zs9OjGF+>OX?_dN-b{B~UEiuvbX~#&vWEc}i-OHEQ&Tp?RhTfS9DWN;7c^$G1@z0>v
zXHu$zESUrD8!j_G<Rae8MZ|~4v_3uQ5>o%u@afUvtMY#=u|T=dIA+YxaxkTLmY?|q
zgVQvDF5MQ+CpzgPhpuF*+0>G4oJ<dCtK#`jSYI}>mnjGU=Dw=g|E>F!U2s+I<u=#S
z61~cZ+G-Wvi<sPNoPMH<gb3(ED4q;|dipO<MH4y-Lv>8o$h0?@JQBrJiOx1yv^QG6
z7qx!XIQu-L{h9NBqPD%Fb1gaTO`d9E_S21X?XB(410IPvu8GdSooas(_Fl~SPviXi
z!{cWf%rvl+6*4gYWcDdup2x+7H>N)Y+2X1MaJ$wS|G|d@<Y6e3+>KZO!mY&%`u&)N
z#gd0qPQ(})G{g*!@NpIzZBEMmVooK~vtczLzOx#?-Ykc#9&7E+uOpr}pV@KD{1B58
z&dN=>381)-Rk@)GpfH{QVwJHFAvw)ZJ1odp6ZmclVGrR7hyGAGrKFPrMoxD+Wj4Hd
zPt~*=nmXgmoM+wr+lnbd2YF@gc<}D_&~9XUGyePu)^JdbD)?CtfGLZ3cL^~Nb4~RX
zR^$z}yE2KwLTbf?N9k>JHaA7yNIZ>~t!cGcKpc0JL<u$%$~SHs-`=w-Tw2s1xl4_x
zF>`Yv?-bR_{xi!=PhEmI(7(SaM~ZG=1tniqR`rmh)Y?Q)qJb+kCIU#qv;Yv2F`^RN
z0-UKXQ;1~(M)$;t^uLT=37c|Y>6Cz_D}S}*F%Ka8fO4uG)tFR2JNhvd4H|awtqYL-
z1U!sBug2Iz6n-#bH$Gd~3m4YP#hLt+>d9FV0Sn!!&=g#3X4xuS-(~vD>+{39wj}MY
zVFm$>Ez<T^C!ox4k*1Ls!N&n(hA6lGp^WCWo8j*<PJsf0B%WhdZzoGfFVeh8(8=F8
z+5$}AMWj?xOA^+MYIC{inqn6fm3uIbmE98{#tyVAssY(Jcn4WfzCjK+1@OnA$@Is+
zPkeD-A<SHVG|ukvyaPXw@w9S*Laqb4|K!@!B$q7px}VaPB>Vd3($l>DG1A|zSzzh#
z@XO{lMJL6C&sV`us{~e>S8sK87@az)MCyKyymIw>+r30B@wn$>i%#(7kqiN;L<ELl
z0E9$A_J%%v&&PuY*L8k?B(wYM*xO6fw;c4wD#ICvauyqC0*n|Z!iH;t=oI>FrVW?A
zFsdj3*o0fCueSGQ8i=7`OORi3RjgoFr034u@U~sY8Sot})oMy$|KI2ta{}E_Fdw&p
z=2dBm$Wd2yU2t0mjfT`);VAXd3{V_EsaPHG!7Xxxol7~5uRMM!K6Wdg+*iHAUvMsg
z`ZGV<+=W8ls2xa6{_}MH{Z#ofz^SjR;Klbx8!cvla<H1N?7;ig_=NL##fp=)D*!6p
zy|PcH(U%>!0Q;}XqlDm(EpF7#@5J)mXXn0UR9IeklL0_JNiDy8zZbP3K>z7z{`zSr
z<>OLfF4?&JHv&)QhMkZo|3J$?PYnOGd|%})|IZ_NZ{s>5iDx@_6y_eQy<WnDgkFmS
z2>G!IiO&Gj0Dp%7G#z^G?Z}t~N{Y5Jl-XyBB4bLC?8Rb0C!;1}25Y)S{lo=Lp7>S?
z?f($}k<tDuUvohb+88di!fXs8V*9$z2z)w;bQe$u)skQC-0%@HGEsPls&<*$)t-Wr
zMA7_(z0#C}mBzOX>mGruv(@G&p%u@JsM54Tm2`k-W6b_vYtxrcmbF?Zs4j>^Dk~z*
z7XGzFB`1;B?LAVGa78r$e0U4~$(?Y01V=5-#q*PwLMfivzo_nc1+^#@h`kbytUS4I
z2G7FXT<D_+(u5=9!Ar3`Z7y}<8r*#Gd@`#PN~@9t<TX($i1BApYxIE{Nw^ip&9fTI
zO@f8>aE$Ot@af1ZXo%J##q6)rc0TchUcoTemylH_xNA)u0a<_yTUix3F}QI8lUZDm
z@gynm@WDPVxef99W)W%R05aXUm4$&@uyyp0L5hE57^sgwMtoHiwl<95Q*@n>6|9PQ
zTP1nHkN$~A^N`eD@WJf(|1J$Hee07uByl`-=ae7fQR2U$xt6Q!&aYd|X5xB`<*|#y
zX^wG1xM=P{dSI`KK&fF!z6<zoj1(h#n;jmS7Zbk>9Y;>q)HoIP<EY>@a9cD2vq;q6
zV2neH!7EthYRK(WWN$c7UPDFyGgaQ#Jdq*$agEO$Ks!E?0}ln}9nMA&Z{=EJoxpng
zNoh=zgF9CZ4JGr7w>Uk9+H1&~YkYVMPF?WPI+r?ajtD>85km17q+XAso=DQb06<Y|
z?r~43dC+FAH5~OsBWb|RB2wlOtNSn+0PE0lx6lx1)wtpA>YX7-!cBXg^iqclrW@Cq
z{use>*0@ER`gZ?#!N3L~j?xg9osh+lrtyJ102S^VxD@R<Fi7PnNE5Xg!pJspZtQ;%
z6T<UD(%1{kLOkg*M6i2#BzQrvg1Q2uj{+7=<`^S`dBR>$deC{^v#?-MjiJ;Qf*IE_
z9tqy123-SeTx;-*tNaniR1+3b_rSSNaX~2h^(Ix9SJcz*h-Odsj#^XpFLziraXfnP
zW}LSn`pM^k)PXBypkXSHMq-Lk#K4b;sUPOFmiQ;6jBlIa&N>M^=m$AMR5QY$A@9SY
zEdwQ?Cx16X2Z#eoTY=8sqJNUBmw(?eIjO_(cx6X>M~nzY!Wz`Fxmg%!u5raY$*W7<
zDq$ECU_;_)*b}IOI5m=&I7D5T+ZfhS_@@XT>7546^KGd<08i2eKpS20(+;|_-R1E$
zu7aB|j)cbnV1#9iD1)zYPi>f}nYY_h1(F~wbGh|M*+vQvTr{n;QL2loZ0g5`+He&H
zEV86srtZngFe+J_z(f@NRgs*DDY@IzQ2RHDGf6AhykGoXFKS^MfmsF2T;m})XYO;?
zK~pCHzNXCsF9cJcHx9lUuOmjJK>$M-QIaDysW2+Gc?7Vo{Yx^>cVXY>Z4B-afHFBC
z#b{it>4|5Qnr7!J`57=I<&{17oe34B=~+vN*gfHAt=%76op-7&in~rA>-%DIsy!bp
zNIi65&O>b@eWvDb3|3<X(M>x}ep(*XJGw+%8=tsn{$f>S;+P7s>-Em_<^CZ-4Q_7n
zD!*s0NMGe~ffAFX@sORdIq~+@D<x{f(`NiiTT=YrZ9p4($QcM~BU1P2(<s?V$>0$d
zH42SH>Tooi$QaWESQ_|EEj6;B(nnMD8&9y4Q1XEe`7aI3&nHN*UFb2fY7DZVDLN=#
zhF2G%0=Px=m%mN%%=&*;i5ngpSbTjIoI9~&D5<<9<~i|Heid5cGn;%GTYPn_fM1Fo
zgD4cHg^n!bPCZdEM4Wx`@zgA)Ee`zwf%_VYZ|4EP>%l*VcNvQSzo!;>1;hm-B)4i|
zXHkIT{=}a3p80Cc8*RJrInZ80?ANm0E1)BF9=hTF?-fk#FX|cSc-rxJRs_6u*OjCw
zoOX~B5Mt}!{~q|yRbtRR@UUz5G%L`c=p~Ex%eJ8bs;-&lpb=V)S|hpr19k2{|8y@x
z0{8v}00(bC18<!CNCb;z9la~HtWEjjEphl{KH;{+^nf0eP2<!R0z0)Fc-yepl*-vr
z#rhjG`MdcauOrP6h|jOkGz~Dr{-R<T?u;Z-rO_ecgzSodjBG&4HZ&M>Kwt@A`6tzE
zOzt7MG%}i!Y6CRbdt+D~@XYir>Bxf(iGzp3#BU!(>z0GS6=u>M=&YfZ|IQjw`%?c!
z7<;(V?Xc#+^(V$=15}qKRcAjf4N%(6#7y#WUDqS9*gk8i{D$0%dqOw(CdZWv9OvT4
zuU;*LIOAtoe)1v+-N8793o@6Glfjumc|Pn24vh;q0Dp}nUZ~StT9>^zlU^5X6*dKm
z+|rOJY$}+MI^Um&Ajr_vw~|32jMyOQ2SDK)A;aImpPHKE_4fhpDagJ&meh|DTCyLN
zTJht|QiGIYG=`!#TyNm+DH`d^Q@j${gj|gz`#<hqFVq&Jnc*i}a+pa_^4;U&BKOK+
z!00WYFrbCiHAVtsJJ@!k=lGC$LQ_y%79Aw}I6mev7lDl)w<u2%^Cs!<f%F{kI=AF-
z?yNW9mTa$Kb?o;og~75)V7a0DGWEN+P;z7MP(N_DTM9&Hp$#(pP|Q~E=KVesFeKmv
zx?q1;M{OdQ_)$<X&{$T-WI9%DqE8q+z&!KEk{zNc4AF8NKeph$MX4ue43=lXd;J9i
zFIzRA$|E56ft9g4xL=ljp_r}`o11tuqfm3UV}qo2!@Oh3e{Bv%6LJqp=9b*rL6r(u
zWpBSfCX~~VU&4|PA$s+p2-Psxa(TnFW5ec2k5R~-dB}}TZOo@qCkpaU<?@%N)1h9m
zA8!dHq09Suzcj~Z1rR(FHT8A9({!EtYz9jQ7%5>cLx(PT1FmudZuK1AW(k4JOst7=
zOkJU@-lqWLQv}0<d$QCaZuUN0b?o5*p^A9F3EkLgMZZ_Dt9i`jc>ASK2(#3XFKX{E
z!%>Yo)k9l7i@pbzRTFr|Bs^u`;fQ>^RP)123U>Q6GOqpZk*{3&h-a!~C?NcymIn3T
z28O<4rRigq<rAkhZPQ=uIyXuDXY|ou2L3yI)4v<mKRfuqw!`(on?%Kv3wTm^TzXPX
zQ#2Rwad>mqse|Vz0~H(T@jWhHwLf;#XOF_iquI}6XGVNX4TtQ=Nq}r6Y=}+L{ArHw
zO!E54^PzCAvvtf31HYHt+3drjI`^Nfhp^-gr!VDHHAdtpQ?W-MtymkF8n3wM8v)NE
zo&w<Jf;{aL5!t1~{DUGr#U9oZKg))Oo$|Pzd^r8Nd+(8DJ0-K>JI;`Qq9atvu~l*0
z>}Dam?-o}tQh2RGpL3)>?MrH{A0(Np%plR?&TqNIF$)W4c8MvEjo%&k>DS^qYK0=4
zEZgEn6`00U8b-fPhr7Rc7|9P;NZV6+7Wew{HLVp(r-Cc~6-7pi2Q@S3?X#c(+Oo@J
z-;;E3r&>nja?xb<zKTeA#=BnTF2%UGmyz!>&SPR%3WeTw&XcE(tTW%>Qakp?=O}qx
zOc@T$(%JOkV>?D4|I!R{1&?zX_t@I@v#rF=6!uxd(^Y$}mu-YzOBqRm52N;u*pWl^
zQKOFEMw3*T+PZ2^Qv2zRN#0Qke`qy{#`HHemgSAFoPtxvx2LslGNC?Bq5n>>(axCx
zSA)`59hC@NOjkBSqga(W9@7o9;o1W2x6*gLjf9`g<G+zg&Bp%~s{c1jX*$F8=pd-z
z3)1wFS`0NRF55dM&X;cUtk|wIaN*Xtl-l2u_h^zfns%ga=9F%h|GXSSA`Ol=EoJvy
zjyIcTe7)uM?Q)c6MtAOwiIi<;v1QzMGVQYO!yGoisv8-%`UbG}%mmAcpD!ODLyT|S
zijKx*fRn~`mKgRfqjw)SboDaBC(;+_#aU+5t69j~55{*BO=zT~zxw{0zcbjH7`^y`
zu4i<7U8oDFqJH4;-*V=okDt1a;jX8`W^}T8+l8k5#S<A|1}DkYe}w0y-V^^hlAs>O
zkAOg31=NTxcpW!usF16f@QMR$a80O^iq~pb)OyG4Qk*IC<F1WQ#IP&7S8rZApOc5H
z*1Ju9{_x_YYEV`YFPl;w^$ihCEsnnGTdE}WHksUNx?+iHP;rJ}MXVZ_sWR7O6rX^$
z9<Y{AW39{|!N=w^WHK-|WzH@G3mXNQ3Q(39EAq<Z`xjTUZKA_quXgq4MTeD?n~K>W
z6dlKV6vr|?W||j~RCsiI_LG^Tlk=S;QqQm2g#0i{`#c5(fIaK&QW#$J>NIJ*LOf|=
z^V-*QVqLW-IbENv00OmK<BSGObVX6mA^nk78XiVPzmhs)6ScqfL^c6N%y_e~%&fZV
zbQ5z2a}*q_SzJNDUPoPyDOeV61?NUXVNh?+9dm5a7WapJ@yqNl8&ai=>LO<AZqr!U
z-jx6QC&yHJ?Qe#PwL*e%tx02CnyShz!@Wrfw64^t_qNquMN7+Y+J6r5=q@~$L)M&!
z{K$lI3HR@OKH65Rx}*%NT$J&B{75@jmz@6Om7mcY-@St01lhnzSZTd}A*7GyTY)y&
z<b~Y>eu^H6>&=(hD*i5gWn6E1x~M>VA8#qrM;EJ<Zw$Y@1N**-gZoufQHbHn=x6f?
z2UqKSb`P0%IYk5Ok4qO`;{T}@zid6a(3eW4khuJ$v|ft4tqPZ&3DTmwd9<&^pv4lb
zeE`qGgN00N@!G5o;s<>!Hur;dIepi`Aa+T3@CUW<rH|SyC1x!;*ZuwIhS<|FAqIja
z_YVz(tK@#?{XZ6Py@{dZgS?6nu~$p2Mlz#$t2ow~q85EOEJLQDSj$X~zT(F=__)+&
z+dWhD%cDQ0=$rpPADDazvT7q}(5T5x>hN<P;LaSEmebTE`<u<R7~5Ga4QiH;Ce4iG
zk1-fat57RzhtOjyTetjBYkS}JV{6BIv!OQ5508&+u(60RTh~<i6I=IOt1vsylF$=7
z@2dPTd!J|RC-#1?W)-HWd!`w{@~Z6jzF3iTG?!xN7+jnf2l~yN!oL0<aB$(;C&tku
zx2BhX6aP&(M;%-B-3*`4e=|p^ozy%)A7k9^BJ%Ec`*PSzsM7bO?b)<Dj|C8#5C#`?
z0+0h8@PC=X_>vkWsS0o)H+zKz%H5L$k)ICb_@U0nUd5Yd^<x0YoT9+F2}CMI-t}~^
z{k%~_9|rnKu6hHH^Z-4e`{Y@jyMW!UOx4g_2kI+a8CUd?z|>NC<A?qu2^R~kIwohx
z_>PaLFFPo0;Q%hP+s`g{yEX$>{a-))N@K_hQfv<vf`3OGbk%Tk?Uf3=^xw-l7hlw1
zw*58%MZnPL1O_@wqd0<sQWTU;HyjW3<izUv8O;17(9m;^2%LO&5yP=IAne{Bqqvk@
z&NuF!YyM!=-Rg<k(%b4g;SJJTjboiT={`esoI3yh$!doW<#04*3;TRGa5WPVR#<WB
zHz4Ff$MgjG_5MuaMU_9@f1hMR7`PWz665G`pA0T<I{n;PPC=ysIO-!leP-IqoH)?H
zb=fbGbCGq8^qRu4xC_U73c@u^h7B<W9Ry06Ee_a8psAG7wR9{1ULf8N^-+P|$<Uyd
zGw`@dl1O}QURhKo0wU0JUP*goA1V$@N!`~^*KU!mRz%RO%+la~g4X6Ybb;!L53!#U
zS$JHf*>A)7ICH|O^+SXFl$so+Otva+hIlh#(xzx#4v8o_bWHo_HIKt2F=YjjxO)5Q
zYH#7ES}NPwj-u{ETUT`-1X25cL6Wy6&LlyPtMVX@NXG_LpEHKpy+xPh5KFC5s{)i5
zH>P?d^p;9>0bR^8APe+_aw#ak`wvCbNzl6w9#yH2I%=35v&Irsr`7taKl6B!w~gd~
zFrhlNL10((Evwe4eA;A`q}eva^eI)@=8~4O2lI%Ua1Ee#y>fthACTT}$sJZ)$HKsX
zhaiw3CS<?rpW-f;*A|a8NCU`{pii;8B#v}k9qd;JOV|Z70d&Y3Mwd0IA-n-#$Ql>1
zjOdUK&3c*`ixW2D_=IO|s}a1S6+`CqKc&so)LtvJU_idiJUOaqcq>wi{%r85(XHlb
zQiBEmg<)2sTe;RTgeiJ4>2_F-+_AZk@{N?#V)YqyNNS^swxI>kL%z%eS0AxHYyH}y
z{pmrIH~$l#iAaI_rA~_g9>WLyyz5N}UL55(l8@gpjYunl)d*cUULarD8bLzr6ms;1
z>JS+h&KwO**%E9F>Z;`pJ;!-cNF{%ur3Y&&ZHq~ZL94^F;jN)DUjExsM;&6Yj`qHX
zGm1&U`3euBf&SlhOLW*KJX`ahkMYtIY_;SRs4jhbD00r0`VHr)BI0)3fDXzL`(T()
z3V^~8Kus5fl!Y>oj9Fp4GYD4cBpo6b92k3sA<)WnxLoU=a0)XhXaz45zb94b)F@%N
zfBO$U6mW4qYMf`+Ca&N8mGpHhprJdp|D}{_bN}}aq&~anPJwlE3^+~$=E~m^M#IFU
zn1vR3cn;8Z&61_qsqS-O3>-hY8TZekw%;KJZFc4WEVU;K4r&KUQ#nrn_&?x4_7Nd@
zb$<=Fc8eq^w}P2d;O;255tKj8-lIod-;p-#Wp;DB*o}v_C?$?7>0|5sU(W9LDcG0K
zl-6?+msgqBKj&-x<4dtJ))hHwhd(}s#73+x_eSx<WO(ALtcZm&*Uw3tztNGhvOkh4
z&cXkF58!D0>K;q-K^Osd!AK;8By$3I<PWSt)`PYc&{wO|bPH*o95h2{?CEsHjYFF+
z{JKb(U~@aPNSL;ky_1TUAntpEd8dYM8ES?R^sfuj=E%Z@3e|g>0oZqgZDgqy!eZXi
zLj2kEztCSf(0EuYJhkQ+=j|rtUy9^#u&uj)CpRsG8q`fH+^L(GZ4T=ZG+|IdZF+Nc
zTBlNDi0Ozf0*G>dfQE08nsv+`*3POafRPe{A#0fEgzbdBqylSDrC%N*b;YJCmeT^e
z)=W15{WjR(0P(-i61l=Z7)2g7Rd*FWvW-*v#@~G4ikgR-_E6grVkUTTV6ZOVhXzS_
zND=@<OC-`5bLUSO;Goj`u2lLHQxuSQ%yfxLG$?gIK`L=$pZE6UhiJenMFM~xk6#mC
z3+otF8<)nC1_aPu{fa!m%<Hu??|1ir6KWvFJ;<^tGQ7vlaLZlY;OpMg)Azky$mmnW
zAsv$tn=ITxMq<~tLZ*s!Vc>SlC3%RK@iDIB`y<As|3lJwMZ@*@Uwaw`gV8&qMmK77
zqxatX2touwh!)J~z4w+;lISHt)UQ#ZMU+H>XhVoDA|xcl-|v0bI+y3}T%5J`XYc1B
z^ly`9Tyi-pA2={-*9TC2D0{p@#38P`IOhDMStokOC+y<e(OPoF`o<39@398q#PHxB
zt5$7?V94obGP*XUe`#=#i}6dp_Xs?ZxfvFm$g3>a+O&~_B@cbJFOQPh9XPV129(`Z
zZk1J)!|xCBUYB-9<ksG@k%3RCn4mzIX`@?jT;~Rg3ZkY`ixR74BVxncxJi?<#(;d{
zuB9p`>jrqcR2xoHN$}jPQ-k^ecMSYhKMd!oCaHOlQ3ZAp6+FhRV5l#L6}2zoSQN;Z
z;DT-n6!(|_f*-(%`s#7_hR{W|%5e2m?^2GfXPQ|<zaOaF*x1IcUB(H>X|QR6FmUeY
zS;NAP@z!{DXciy^I;d*;=A+p&BZN9g6DQ=DqBJtB2>>!(Py`~CJ~EBS9Xz+rO0ejP
zH?ZXY+dHH_Rn8QosY^#D4i-0WZ)Iwf5FQyAH{)T8Qxzy15FgjPpyB?N8^Z`yEBL9=
zGIaOfWs{?(fV2BZeQHXgcann-NZgVSxy7fl_0}U!o#fBR1LW<W1ene>ysxk6IIdys
zDlhYKG%pJ)=tf$A05Y;+7_u~fd12`h=?uE%X3L-rb=hchEd2?F>4Yp%P9j>VO*2Wy
zB^($&-?(vmuY@E=pXroPCxvK=sbE0&KUCZ@{BHIUB!GMADShJ#f#aI46xcEy7fDeF
zUMF&EY=85`$8nyZpqOAo5Ure;i+W>$PfX#{XD#+b0q&{$p;Rk0!}SI_v`A5BAst&>
zn%D*A9~3Jp1n`Zi6p{lljdLdck-x(<nE=qgv#3|*Q(9seQ|btN&X&UHUv8$6a4WNv
zGZ<@yBtb6qd7%adi;!?G5{oL5`zeW&2crnrNwr!2F3T|~Q|vQ;@+W6$Ohx3(U6Ts(
zM5B%dg-WqTyLwC#Nkf*27Mh^uGQ)-acQ2mm8$hQDeTb^BVjeqA&9L0@Ujf(brcq_-
zX;0`m2xWZML=@8*83w$2XKQq)b#jJ#@<s(`pmJhVG%qr3Ir3~|^j8Dhz!_xLl0M|i
zL?Kc~dsd<qA8$H2{WAPH15}=CkQvGXY<|sm<VyAcg`rIXvR_VbXn=lbg5X|2$OAyy
zS?Aim@uM&*&0Jjy&367>{5!zx@Zd~BXxA^g8laR(gZ|8mVou$9wgXM5lR21LSX&8G
zrSxI?aOIW?lDY-UoEqWR#kS<j>B}r4J4}_G$a1{qXM0}7iQGCc{A=M_Db&7ieb^MB
zM36ev9KGor8pjd4D-6K_n3GM@al@!T+#K}8cMf7Tb6}Km346UsrT(c1I|#!OAFs?P
z5bz%UDNWD=D^#A^4+3tB(A-G##f#-92)~^|06*fFraCbn>7OSt(p2-88`GAjNLfwC
zE`xJOa~N7h43cUjL_hK}&3B1p$Ts!x9rY{J&+*yE-`T!pUM1eWj-zs#?wm7Mip*CX
zx7Z6J+P?xZ$N@=gt*m88P)wk8SKxOa&|C~KQ6dj8&(Rwssu3Jx-*1)6l_t3;^*hTd
zoI1v*SNrdw$W3F<kE<klrWr8ubLPdT6NzFctC4}F4%Sa;O8WmZg7GiPW+h?Q0So@Y
z0Catsjn;c!oJHGs@<YfRyym&zw#COOR$>AGgOXr~iBrs4ctW4RWTnGhg7be2V$~u?
zv1_pVvIbGu%q}k6L`4c62w|8^MJeQBljv;}499qP7p>x@mtsHI_dtoq<tS?b))Cly
zi}P)GenzM*&h%4|Od=z+4B3>H7m3aHUAiYgQv;{0%m;43?SfY&$7W^A%Rf>&*%v=w
zib2^c<86urzT~i2so*D7<?597m!72q3a^dG8z}23^dC9({8wv3?ZneDV%h0rTa<6p
zB%%dSPbp4cvhK#ShN)T{S<qnKAKjA~;#*131@1qNAwMw>4vlp@|MaH3dDt-KZ9Z9=
z5riZZ@IDeyQwva0cT8XEP$A4H!|}@FOYcytynxlp+7&hb6(Aft-T^jr?IJnXAB-0@
zHpQ}#Io>GNmkm)kQ}XqPmNz_cFsA_+Km4=&^er!!0A;>jiv;P~5T9+E9psf6Xv=DC
z&ev9uFu5|g+PEd6(sg$dbZgPYB7Ur@AdJBitNY9E>g1P#W~IJiu!T()eVQ@5+ZYMg
zb!A;3qf+?<J@Mb`8C<XpuK<=TV2U42kc)MB9-JBuCwzyRg~osRXT%4{0DtSZC*lA=
z3mRKk{(}RS)_qIC#-J;!a<za#N(LUfs5XThEAWQ1Ac7>U&D9NQeEn&;CvrjI3&Hj>
z)>-rujqlpSsbW9&b;dwo^H&UGD-|$p^bYT$K*c@SR&~w+IA_o5L*z;#8SukJ?D}ck
z%|8Kv<aGJ^{=Fq#xPUQ8u%gYm=N`Va`^z}ba#Q`il339tx4JK4OK0;5e_eadol{J6
zm0`pU9;A?@OcQ|wcAqA+z~b8?L|R<S{kLZ7elJ<3SU-erCE82K-u5!H0To$9rvIv#
ziMRMU#(ro56sFTs(ZG?O(JRq4V9{2R<M!h{KI!1H^A)hew<?JB)=-0{y9(IG4@UNH
z+X4D*L)6{r+xDc_Hyho1aOeAFhgOVew6)0alU@(5*@{O|*bDr(Od|)c$*q7DciVrI
z3fAuC(@Gk$&WXOP52M^Hu|TFp3^~3qBppD3B6;HNUUTIMLG;$kQ9v+Q+FHO(a>1^H
zErdp(W#QG>aIp%^A46WWbky#Zrs5`6Rh5{rn|$BSBM<mCD+c*_HzfWR^!7hm{x(rk
z=WXk_d5;mHmt_1P|GqhZ=0V_v=nIr*Ch-Gaua<nG{i7f%YaS9xbjP|WF#i6o#9)l4
zOj5%rCPDU2TE#we(HM&Gifzv5e(Q+~y%qIh7<9$7|Dg*`F#eB|C+hnWqk!~sKzb(N
z!+Ds&lL20PMVQyYo2YFbHjUT+Flm2kTVL$+w(e8ddbM<t_wWOIM?pf~v5glHnH-<V
zfBRe|uFVxbjTtWVXgk4C>pxEWwDN#IQx&A6Q{m$W{l^a<LXJLKC*ClkcAx@H?!+l-
zzdkKw9EGb8Y5D`+SkLGi9&cL{tu`Mnt*wK0ePI_z4AA2myTdg7haa)P{%;Ql{E~M4
zyy7afba!`mo`9l>y|8{UMyRc|lzm$4;i9NtVC_yEYU{L_@^@3(FUs9bgwJro!&Zas
z({Su-F8?>O{@;xczi%J!xBCA0cfiGRtfH1Sl;krye!uAURIB@F9u86h(98ORgQcA0
zaj}_l0gJ2m5<~-V_zk~OUF10Evu-RaBiIV@LlVly?h-2-`XjFhEOAox2oKg(wDev~
z)JcMT1>)d|r;H-8O6(bwZ#<n6{O<tLa+$sb%ztCkPwhaE-#nEg|Jb@!r^_v_ll<eH
zp*AZ;uQl+__r%`CgoN3u6ElKfX68+lKotB(0;Vmy$Rkykq>Dh>U3A<w9{*}QadY=^
z^kQ-aQ__=VyCo!P3DTmOse2!n+Pp}k=Xq9kk%(zMo9HqYb+Ok`eSE5wiAp^E`Rk*x
zj@|?}EV(r+?p#R!1Y+cJMt<KRI4M~5&XFHJ_^sDtWTtdBf|S?viRTO7j&J@}kIu(+
zUm#TT`8ZQ{F0y<*g%@r;38W#>uONXpN#|)<OQtz~nZhJt`^*pE1lz1};}?JpcvwsJ
z6B4o5<@8ALq-e&3pNOo-R0*Wm8POPc_=8NT)6pQoiyQD<rh-~lNHj(0-Ovb=P*>>1
z-=d57uq<oB+f{+AZTib&d=|+>$U&&^`bkzSCnjP*EwDJOB$|PjI>({;(zN^XWFl+^
zpY7qveJ}lWr6)~=3!cI?H)vyB_kGs1fY<~1aE7z6@|N%haR#MqTK)gR1t-EK>L{dt
zysb11uew9qvXBeoicpDofkTE-Bm+7Nfp4M<UayBY4@C5N-mYl!`ZDwSb$qZ?JCn0?
zDu^qw%Lqz|t4t(@$`t$NFMKrQ$~~B2<a@-sfu~b5Pv5UUo&NrG=H}@vRpcCJ<OlJ{
zkE)ULCXt_9B0oQhT!@Zb%#2)m7Wt(ma(N(fg^}t8w)^|b;`NFuMUq5%+~u!z&g|6U
zEB-|cOBMC@?_7dO#!g7~SCfLhyXoINv-b!7ZOujzc0}#FS?1&cO?v6YTsNhIcYmi+
z{fK5x|G~_zcay8f+^EOlLi;yY@TLyPDpbW%-NtfB5;Kn06=6vv$*6lQr=Trjv8~%=
z-?G>!`;Nu8h0X5k!C{f+P}PT#`-*7{x%y}S_zR7Kd!0C~)p-pqO_*X$%@g81JRi8*
z##seCj?|#M?`6z=hYgltmt{#Wd52R_(!!QkyrR(xr&*7V@beE0(l#-x)r!W3<-hjn
z)p4?<=7;L!ys>_(Nm){6JvM<K90s>&SJk}ez3EOe=1B>Eoi|%r-Zi(c`7mN9aS_}f
zv$^HI^895}YlF>sRHU8u#7u3Z#XYBPx0cVm(YBy_0pAd|UBK@bXUpRfRcZ9xw&RPY
zTX-@?9_Q9t*%}}zvm}Zw`J^qDjG3b`%irwu)}Llc)}Ce7I&SRDsgd#YN!5dol|Spd
z;sigACo}NAx-V+KUH`dBQxi+47nrJ-CuB#7>mK5t&hUTTy0`1&RwU6lA|$Ffa$uv+
z<DPfX3QEAot9)em(a>Q+cp>Rb@V%7$HdS)>F-@^|n1lJN0C^i3no$1@mvFVj{7P<3
zawfRC4TqC?0+gGxi^YuTck1ryP0zh+hngE{*I~`Yo=-|!Ka$6D+2tZ9TlAf{)su4=
zo?iK9_f**rWJK~taPEDq^s6x1#`vxT=Xr{qF7Ka=HoP6yu7CD){V$q=Yu!Opj)Xn(
zP=0gGS7U3G`jI7*05kJwxixDnSPr^D?Rj1E8E{)K!6z)M$+}88yGyNFeWJkIV*1~X
zPXfgbPd~Wxw$6?KMT<;F$as>}m*GOKfK(Wf=^O^e#`OFvK<Q7YCKS2X>7J`QAG+nP
zT?BVzK#_%wkZDAz-KUrSA~4Dzf4t~Mt;JDXlNL0DaaCRD2wX_Brwrhs_O!;TrKY>j
z@#j4P+26MfMgWFMRf(6F%e4O_^WNZcD2u-p_{Yl&QpX;D7=KZ)dE4m`WM~~C3kd6}
z73kSJ<14rBB3q%ynp1lR=1orQ!ZXzE;|p!J<N^6#u=-wYbyW&+^^L}M&*?|*34Nn(
zHK%_0{4piEfx4R|z`MTT-p(Ol_FtDkc78@^9cQ`<%U;JNFDqkm--vJ{LoeB`o!Q0E
zse7K*Suca8wIxpc^>7rkSQ9*#Yc?lEWNDn_Aq%xeG4g3EOQB{GK;sR=*MfjR_T`6h
z<E!d=&tMmDEC$A*`059>*!-d1w6!7ZH3Q$>(7-XyhuQAHU^)Wl6ROY!$sVn#x}Y%P
zksv(KM1vXYN15e$NDtKnoZeJ`MVx3LYnO(UGgj@UAYnDnP|0Pxr*JU+T~@VrH3U^w
zh@SY^Q@|JHu|IdI{eH7u!08r+Q<h9e!!aAFl>1J4M1u1eKN26OiybRAl}**suZ=&c
zlWp4WD&Jvs4WXBM=A67BSd}KhSLZNy4xg4@8~duQnf1!A?W<EatguB)f4zzd^@jSt
z7H#J<;>+KCYYO5nZx3{&O-8nQxCh`n6|7p}jTCFXBZReWj{ibR80qeg=5{}dGT8O3
zjiT<QItl)v+2uS!EYSAcy_RSKn|yd>%}?8I08!e2zfU;<LdbNnW)FeH#Bb?;i?qr<
zt;E5;{D}Yd7GPkFVp+Q}O(Oao2Y1q{Lxb+fK}ZrrVr*^Ap=bnH@C0eUO9M2tm15>%
zsgz>R0)kL*Ff$&_$jY<{w=%s2t7a4BVKBO7w%8W4TO31{8m%iTqxUH$QGzJ}Y>m_u
z`89=!a@%-UMbp7#?=Q;4HbnXc2@-nJf~C66;`&I2JX@*x{kG!C(KKKhccUPKs%pqP
zngni3(KveB8YcESUF|?~H;w<rg@{;6e+(G$uIA284H*eci&#ux9@r=ltC^sco9<IA
zboX+ctK&4kjje|5?#C*gMSm!~U7hpI-63u-YJQWx3{zRJ7G3*|V#gqDzGVLin7PGW
zCLS(o%{w>x<|Q=wT5{h2IhSL{6px|HZ0dI<xWNWP0hz;OHImoRNmIgU?zYIbpvC2k
z-+S}4j>BPbSDGmyk&juvhp{s068hMxk0#>&d>Z0UbV_FZt8{DyM98&Rq6&Od=NikQ
zdPydro*;xIf{L_8lgB6vS3a1EC8b0PkedSCyo(<c_}It6Q7N&iR-5!9a0{V6l)kKR
zE=(7mLpzcd@|JDLvLXBvH}aDY_h5o)<rb)lO!uWyKGx)QD=)iN8_@%!VKV32wzc~y
zQ5f<bb(S0%ttKuNS*yLMNgV^t%XE6=g&}i919<xg5DEbl5gGu_cUB`}W(R<g1qsNT
zRxS_?S`GHa3`B!F0^Wi8@RrnD)xW~m>jvP77jHws<AfI;%7aD@@2rGj`=HTMQu_#&
zmFKUX0G=!RdfU+uQ=@P|rce=M8y<%*EQLx{rsNcRdyc#Mj1`?>enG!wrnv&pZJcIU
zGO|yOKcWgD5@<CiDQ0j1onTw4uSjUGqH{>xLhsh6YVog%E{yYqP=`oS6|{^4?T83y
z*s1~N4sd*_POqPte&{ajFkh{ZAwV%Y29y-Bn|vYA8=+i&OC`1>Pn_=Cb;5>|6K#~!
zg!Dk4i2B%6ua;CY4JsI%WaQFrbZ~6Ed22Ns{Wmq6X~uTq>iQUPtO$53`T52K(%FDj
zm4@)ra&?oSn!N37oJbl5Cl2DZ3ice*+df;qAr_QUAqcyOa$bzn{o_c!>$AkAbe^Pe
zyl+6F41jb2>YMh+8#olkwZf!lw%c;4X^yJ2e$o!Pc?Hb#`Vwilgv#Xf#q6$tW8r87
zvNztsTF=+pa`<>wr;AipAQEJ7t9hosFP!_T?IFnt4=nv87@B1_({Ig}+)=I9+;Anu
z1M`-YvVcG}HD^>vww3!pkLn+A?-uvNZCkZtXdRTTxHabtFc);$uk;@}XgpYXDfYX@
zCF|2Ei(Aq=Kk3DxYb~%?vMf9ckU`>q%vclQRKd?rRxRgqAM8k=yb0kSIZyZee&w)P
z;0-Y{Kl3S;`MaqJ4K+~VJB?z|B4#O6OR;7DZpnB>7#x1nxof0j26Ou|0M&Tqmh~W_
z|BA1Aushl!i0|<`+{VKV`BW?7ea3+nvaToLzWS?y@vQwDTAZNaw?@G>>-OK;UUbhV
zU!KGy&p;8J>Jy5TjrRw5w{Oek{iy`srr)y!RLHL-6Uq>7nZD16)2}mk&VNBhoenkO
z3ZZ{}e%9qGev0Fl2HCg9_;sKcIYZSX-Ms>P8qh=>NowRN>aruQ&bOByYx35b2RFZr
z?&r;X0T?25C6k%~?7JFF-v&Ka4*pxqZMkAJ3;FYYof`Oz>iT9E%MT_)Mv#5Z3n&z+
zwSjOhJ0H7Nw(O{Zaw%~{g64zEt<|TZD_h`5^4MrHQ+?qPG<NWN!T0Ob6yAEYv8w=C
zq4+bd`NvWJ2=NrvbS^CmO5-HqRb%vVmR@alyk&AV3qOWw+|s<pf?xtqlNU6YaAXp*
z{%~6&&LpBWH+da+440M9ZPA=zK2jSHMcWmkjgC3qF%TG6WPo7KETbFEu#x_lNu6*$
z6vh%2k!ua227nMKAQ2iY1prYa=o&r6>7dTRh$u6QC=CFJWgJUE67O^$``RXg?qx{f
z*I3db_nDlCvqCK8XuMAsR(uxw;3A?Io$$^R0=^js5y|mN+6M4JW3@LT#dgKCaWSDx
zapAid@z7{XuO}xKvH#rEt_s6O-y|t{3C4%&oWv#Ny2fuUcxp1qcr#(Lb-a{Lc{Tk(
z=9s|u)M!|{%0>d<j=v`m5*FE(@&E}M0{ss=`(IbY<`$^amPQnla!~EZ*Dj`I>fMA-
z8}UlB!=+SZr4Fg{m~*GLdlB)u8GVk6=g;N+^wMf!jOK7mU0Q-FkylGu8q!d0_4${U
z>lroEtmyN*faQ2<`AyInzv4?KtR^AtxlM*WBE1pH-F%U$%P51n>;D-l@_O7OZaz~7
z54`NkWO`0iMVr<8D{XBM*y0K@FqZ<}NGULdDV<0OYXiaBD1D8r40B#S9{C)%-8({d
z5Rp0sikI28AF|?qWvR7gbx82C^MHUT05cLKfCE4fpuXKy3P2h`h8ZLeIP%IA+RjD-
za-`?;213a;w>T!{VlcYa3%j{ANx9x9*<8g1cHISDdIgll>5ITTDZLyURLmQ5A~AVQ
zq+PBHaq^6M;l()UkM8Z&Gl^@vP{ThLqL*%_7iFssN=bIaB#WW!^4A3XCX=$BUzn5N
zL9<=PVgRr}5GaHj9UAJ$VF_XMcf6}vQa6rJs>v`ODQUK&!7*cFLGli*7))T6eJg0|
zytp!%2o5QY97OE@R{nh>K;Jl?eua3n-eoK^9`#i>iv1**cU$!i0kC#i9vUD9{gq*L
zOU%V<3ulp>>uSJ|Hf*NAgmX~4TG_vgQkQW)kLN^Vb|o(_dGLC)@CVNIOJyzNT-^^K
zN0*@Q%+IWVE_`(%7h!kKmel>;sB(E!N?io?Vk-spSoVL~uaj2TzMy4GN#Kzz<}s}j
z6%_Hg3%S%Y`PWwR`xjU514ykTkl!B!K>^6o;3%2WecN2oeI*!o#c>k<d*T{%>0%j$
zCrQO668gCRx~p`BypFlN*0@F93Houy=>U5wZ83$~l~pUuRcpzNIeV3+FD*;9D^8e!
zr(w^uPO4m>sscClDu0<v16fe8oEL8^s{s3+1^LAWW2FR8SvfP0AjU>#w#3v5AmMLS
z#RFnWp;-^e%1B|)wkM^Ut)s$7kUg%mZms>-WqXZ$4o26wqibsRp~ZhhN_&j+^(#hr
zA+z#CxNcSkO+J^9@|h1&MsHZ}=|Tk2=299B|9KQOX=rfsz>z4{rV^r^SCQ|=*=$bg
zcWD}o&okhrS;2aB+UPn@dB~hS<b6+?Rd%!;LSg<-=4bn6(p-^!eWIU2-u&{}Xx$`L
z8c`iHqVtlHOADONEsZ4z^3mQ9iDM=xyj<CD(&SEfD}+D*05Wh<N<!VUaI)ap=EGWM
z>VtsqH$|dLm^Pd}{6$G+RF~vy1^;DxBJNbt%aVG*SFOPL*5%@CiQXXg;+AWDB5}1=
ztJ$Up{>?YG^lS$CpM_q4ds{RxO<DC&ozm8#@pel@`<8cOT=*+nTz#?-PwcC5u^w@@
z6HtF%$zW%8<JYH_1kgQ$&J7LHDqLqMai<0z04Yh^qyep}(~4UHA}s*nrKqPrI&27U
z9xiv%hjxCCdonXY^|?L5{dYX$u+0{<k+B^`43^O#0N3i{$H_!4(B+w=?tK=mv63ut
z4jkABwWoui!UC&=RH>xDA`PiJPbFZMo9uE8UANyP-m9m)jdv>^;Ng(e(o6o|vXtlz
z-ekxi<nf0-NsB)BP{=H~NTa5JbY3^F6xp<5;IMFi0k@Deq$`44r@0hW3-Fo2bas))
zKIui3l@hZ90CLDQ10B+x2(?=H0JE2`(q`nOIsE&>7M6PVzKDV?;jW{$KCdBsyTgBZ
zTTTBZs2?@-YMA%Of0oog=wIy(8lDvu=lXBS!qRgLgjZy_Ow}1~9X#e90!sJxJ?`5m
zMe!Iyx_i6JON+r}Z{RB(a9R<1_=wsHv<d~Pg6IV6@rYx9l>R_50%!nHr0Y83dgAM%
zOKJ`i$>bi<XmqFYuh#(GLefDrvjBz@P|0GB9p9+C&#0G()GgAN_pSEN8`BY;DMtON
z5o6ffp8E|M4(wI&Knhc!C;{|Xou@4hz=ojtFGZ~2T?Voh$cP3hRD-h90JB73y`LZh
zHX!|os~x_Z*Ay6g#TMLJA;Y7|<_|E@qqlzwa)dqezB}sibhN~4EDnYbg1xqc>G(Ll
zd(`+O2KY?9U7-3!X86?zgAW8HGB(mV*`y@siUXa<cU~_kbsgg48OGFCpn@mBXpf0J
z<oi!oASU(cD)(uThSz74EZZwDkpvJc95}b#sTnv?d=)WYHobE=eWm1|BRF$5HSzfL
zo!`@U7Uwo!%EpWur-mFsBaMEpCvP{0CYTUP0DthW<?y8`lb1IiCZ0JeuCq;-D7g|z
z%t6Xt@nNSZ-j8`cnC*0g@HhcCMLrS?Kk_NR^JV*J_i9A6oMe@3j@opJU*F`f&wG=S
z5}l^$-+jQMG@v~D>`%uTBIPL!Wx@KXNmryGyK;Xo^^AqlY{T5UqP*E|7&%&b_7~ec
zwK5B5<Q&)0TOGj1!NcJoNrCn{b59ZNn9oWS@J!`-%2jW7%hrW2DV~wYMcRUe_3TkI
zt^OGx?Ku45`DZ}(s)h)5VV^1FvFD=1&xNOg#?yOavo`F+rp(ni2Fg~gJ4h*5j%I#o
zc^|U$4r*?9ND~%MMd7b2gbe#yNW^ra&p8LJy%MQy0>N)iKr+=!=9Y>D?+ZC!87OKk
znQbh2g)HSp8l>?qi;#cG5&Z)C8=sagHdem!^0mP&vYODas(eO1rL5U83^W>H>3qMo
z*JRLDvvx2w6qU8!2$?Ra0Xdojx+n}JV%Prou9G?!@&X7*F2Wghb*@S8V?Q&-7sMO4
zwo)FGu}YJu2?h|VAN5kusYvu4EgvJ-g-qAOZQuz-ADq*lFjB5XiEen~HbunNsirq)
zM3=lbR<Wyk_u4mtm)6tT35SO!I%3g8$DplQ0yUiASaqxaTbmT!qHh*C`AX1)keoeP
z)LvU_#c#v?);0fIrpnl46Qh^)TTr<Q*ZvAHxd8*8@zZCZcKo7<0@ogdi$&PuJ<hV#
zBgA-gX|Yh#XFku<6Eb#Vnq6q5b{heEI(R@v6a@1hb0npre+7~5*PUymd<BPm6Kc=@
z@t!V19;nFEHUxOF2KWb6@ygk^#P9cf-K*iC%P|fq%^*sg1_Dr9_WlP2$C(u9eW&HU
zrmTa~x&6`R!<o&)_|5}S-UBuo;buRg_J3Obl>0V_!;GvW{SQa^8MwlXiSp6ij*6ZA
z|BesWj*tHxpKyFXRr!AA{QcJ&H5&p1K!8#szW@989l&`4QaypVoDfH!K%bqE4V=JK
zz5Y-F{;r+SsQ#dH`N0tVgX!51mVqB^H|sxuEkGUsfCmTUa5?3VJ{5R&Dl~8^vVJOd
zbISDN0IB*@+U2Kg^iR2GKNSXkGJQX|p8kpAJX2Ra({wr0jy@Cq{!@40%y9k8_~y)%
z^W2<@ks3L`j(TJ9?A(6f+;RQf`R1I&1?baS4MD)r(Z9UJe=s4B1KNH)FgfQ&9J!nT
zRR@SPM1KRn12|9<2_;;%uYlLxCqX8{vCoJwEkxlnzlB^bs2^Wg0WSCu08;-v<}3gR
z1<IiMo_qt0<lKvxxopB;+!6oNZ1G!t;Idr&M*$wnRt2FLRQ-yE_V^R63f*h|o;mMt
z^xm4Z&{TjvfWjR|aY6@sRYBc;a{}xCPCE3R1atDo$sv<<L(3g-J^1Wu8$d-l2z!R6
zUc^zYq1gqwbDtro;(f`#8eT0$|NDmF-W#BJpSepnc+I#+y*kU?kV*O*cXgNrZA8Hj
zzz{Zz9VC(?8~ho%w_Bu{y@lse2w>8yOnw*4q}Q@1VaS{;08a7JB+bkw;R@J~)6e}?
z+qrzrE$nWrV(u=Kv6YZ=s%>jX`4U7z&Xvt=2q&Z!NGmFjv9WNfGP4V3svF6OOUcM@
zIH%L><=kh??ELf3eaBCa#OLyl;gfWA2|~utgl=OC9UdZ5is*)>mbNjFji#-;?54G&
zwzI8$I*YEmJL(0uyS2iNrMr@}p5xHiyP0e<d-oK+ZW5^Tn@6?AyoMLwEnnVZ8TjPq
zVl>~T0A-BYLw}6R#uB2G-S2wD;b<kDrN=vIC`p)w?6{NPe&93o;poRoR|UAW<?yLA
zVm1tN!SUpETsd5u<0NUNMX=D<r%rug=UG=Ug)^v0s)`4IKKz}qj;&d`7kfmFyLz7N
zSf6Bg9v72DIi-m2ACjFx9&R3M@|yn_-(~?uUlcTm1Z+(Or+l*6!3@Sz@dz4h&df_x
zyu?%l5`L(}tOQp4t1Z4aBNv`77u+a*nq7ao`zb~l^<*I0By%clY46u3@3)Va6B1b;
z(nJIJs>^9orG0OrK5_kA?j!Hrb6I`(-RJter6*gD?ykIo#2#Sly~ok9a#_^135lbn
zxo0jUm7ByK2~4KfhVr)ZSfa5oW-_K~AhR5*YTyRM#uFEei9o8`ojSn9cn!N!=|B`^
z_ik;t^3;@9XAyghG&A5WDhOI`P^HAN(WJ}Adon?bD$|sj682>nTnf*HLb`aJso$4C
z7=31;+`<xp0Io6Ihfbhb+A&l#z4cWL^TV@181K=k=ER%=gl9~cJS{s9<eXHGxdrPZ
zr^S?kAC*b3!7tQps{YIw745dunuu-q=fJ2nVx`+rK)S4923JYT`nzrO#65a~?ekE9
z)w~ZkNis6sCm&z?&Bx6f8J%xg1sj&<4+>g3nUn4nX+Bg})5=fzpq9RCiF1uT-&)XT
zjt7s5Jv)cIH=`HHM>sjW?^JQ&(7cZ!Nxvez=ef5_lR%}w@*7HxM$)gmm`^9HSmmPc
zTKjpN$dW?bQNK$9U-}Qa_&`2GTq2`^UAa{EYPIzt$dq6}G6@P1LlwaWXp^8!0?3ib
zuC>voN=yfQokJkVibhVAtI%@x0$7zOk_vO;d^1w{`Z^Xsvs>D<(ZY)&nXoWe)do_5
zxjYl~hc@8=9ZpulskI}>9iS3Q7H`I%5@Q9HFLqSH{s<*|IhV`j7_62+MqSW<9ez{T
z>eOsE)EmwK{f-Hx++AH<o404^Iyi<L2>$za^d4uz{@Y(}i=MH%Go<OQPlovSaI#TR
z3q~d!3FQd?w3Z2XV0e1Ag6Eq7D^}+s8pZ|w=XTD2hi}Q(%fE({H^LvjO2_?yeqbN4
zTmG6IO;JN-Z`!=R{t{XF1*nPlY~LyMR+$R+{zU@jem42eZ&fJvZfbOInyZEpS*ZT?
z_bY{}YvZS!ZV>t?(rVx%Q~hBmwR=_^6BiyLnS_O*aV;fJ0mQ^gZ-M%OC<Zz(=qgr?
zNK=*=!~(~XJtYORFUHX~Y7o;(+g`2h;C|s<qsVgyFIR@KG~+lh8v)=bbkmhVF1trW
zd65WnMDsxdXXA9T)_NKjdJ+&^@ktJ@G$nHJY~1izv#?p34S!W$!+^v-5F2cmFdPh-
zla;Kgq)@F<+TC`II}q3eIL1K0BaeKllhLFh0a|j%nK1Czd-OJ2g>oFO84Agpt0PcN
zp7<Y$?(GKL>=Ud<-H8!ck!R+xZk3P4Z3%a$oH^6w`uFn#63VZ#e&gS0k%P<`LZ0#<
z9qnKw?bMkF8V?$i?U>*Z4CIBv=8gZQ!Tv_zJ<$t}{(nrV?%MI0%frr6g30|rw$t2c
zwnY)W3vI9eG)m?jzcTF?LIMW;0YhvaMRLibTTMT;8L|dPb<u)1SGHKldb<(K&>z5U
zhlXu#>L|%;n()Tqwd=}aR24Uj+t@dVCiHC!-BB@qWdPT~uuTBB!dwc!TBTu+7rTsF
z4f&Qhu}Ccd#CuYDLj)(4Fju1@!2<#|2KgM5Fc4cfn2CRvoWc}K4nw3emf?UzwE!5J
zpe5ILMlKo5&gOx(DBC}S@*&hFIs8FPCty-`8Fg(t)Z9Z~3^}XSkPb782;~(Whma{Y
zn-V!+#UWFN7TD7hCd4q6#lBqs^T2dC&LnaY^DO-_z|P3jtTjc(DN(cmz{g@8_cp&)
zTg%%rFV6P$7oQsSCK0FnFQ%lc^uVyy2I|lC@94X3KIyYXzEn;}TQz!j&|?XS(rPJj
z|NWt>P59Ipx3vetf;5^7nhu!yyq60oecGTrzz0UlDLW<Y?cw=iK~3Zd1j-OH=cD6?
z11xr<RRv8Ak;2TK5i#M!vd{jGXocC8LSiWKxRL8a4{CSyHP914@AX5gmT*j?-+9Fm
zp9qa3HwY>X0BeYzpvm7kL*Ko@HB=os{&?sD<7C9);mzS4tfufpn`%7$k8l!%1Ms8l
z2*)?S#~bkJl?=7^0(fJ@M8lVhSGi*%Y8Y}&t)lWRy;RdJ+PfaJb~|{CU=PJ$7Ky3*
z?-3N=c|K>Z4zat5>kr!VcjPd23^oVHq;_L+6<9O|OXO4x;&80sUvf_QJfqYRTmZt|
z>IgBbSEL=(RvB-S+-al2$RX+2dh?gK9sWd8#;CQm`<KBJDG%gT&<wAuNm{YB{~;jz
zyXK`b)Jc3Ql%(<h#Tz`)-U-p<o7G`z=hLm-GJMqYQ9|M8bF;=h_$LMA8{^m1hO4`^
zyCokhD%8tNs1H>l%;ss#J76^$-ZB<n#w(Jf6%auXBh~INx?aI2_Ob^~tPz$gD!}X?
zcL5%p_ObJyvpPNSzAkR|?ArDnrH2&0PlfLYsdM1FtILif%_0a@C3lPW9`^BGuoBEO
z?&rKj97R}%SsiG1yoazKKe7>7v8cY`$?>?xfz?o;R_DaVa?$`+i>HhX3vYTTB7giV
zVO`x$2+XF+K$MU;zK?PZeUHVWq}@uA@wowC3!t}E{k}1yG2+`m7G%*un79pO`El}J
z33dNJkVWRSy|B98&ykK%m37}%c{%sV?4_-IvR(QgdK|dde}bl4p{?gG%Xhy8#PvA;
zaL%j9X+7jEY$RnzG8&OCCSP2k2q4C?RuWwo6kj?2OAbRuk!6fM-Evb>sWotliuf+Y
ztAGI0>rU`7O(-U9R`}=F5l%g$yA_IRlxYm30Qn&@3;mS8cxs}~BmaR{k1FUkU;nch
z-}zhXt=d*7zJ6gZFi5zeri)aLn1hUr^c(UE{>{E*?<BA>L90@*$Pvu479;d~q$*%v
z<DANJ$7rck?{Ad*e@8W{pg*(^ue;t~8qXL7&Hx6ffUz18hco-FVplPVSHHACr0{xU
zwaxI%LynW*J;w(i5O{9-{u8wu<ReeQ3?vuvZz>ZU`-st;%CoZ>9G^*~Y#L>cII@n1
z_|BaE5*K2D-!Pei-y46=p`wZM2Ww=W#<dm;og7b^9H1Y0V_Jy&)A!1b$-Y+;fu0L<
zY}9GvwR<S21t@^Vg!U{v5&U?)2Tt`Le9;~UB%B<NKLE_mqT7)Vw?<epC`s`?e1DLX
z$4J&+{`UYGH*~syANub@j~kzZ++qnpu%Xr=a?-^sIj(9FD!0=B_w^>*rRE86^iKu<
z8NMayzJYj<%WP1+HJ*{)Q#qZzZ^=(9;q3`;tGBJE(G%zriHE)Sr+-aBY5Bv*R)W6U
zh{0u=(c#A-SpXm{+vXIcMJYjgzn0APgwEA;R5P1MSAvdW7{cNHbf1KAVbDA);Lc~H
zD87~XAs4&@$2ySBG>BtxOMPBNP5Q!2XiMU)?LK5$ViFIhUJPJ2qh?w*x#F$jT%H|%
z(gwQ(g4GBVUuWUdI_xbYG>_YCMFQEVedrA4Tu$7$-p`uJL3kZDcw!T|R^gPaC`ySr
zKj(}a?n?>yA{^%Sf&3=m@e~EuBT3dbb1vS2{2LOmXUJXC5nf?pzJU?4Hh)2#SR&%U
zA~ZVE7(LfM{d2SWz8Ih{3m0DXO1PvED{0R0I<OKxDCnA{JAPWJ;!5NvspWSHm<r@0
z&dzZbmp(OfjPa)SrP5-;fVI7d7}RLm?liLDkQB81`<fWp0N9^XaWF02bv)3TKqQ9)
z{ZBGTKoL#_$1tK2$FREFQL>~#ULb(x^>Z%?Qf-`T9svUTiTr!$KC&a_#4k+(f!)oZ
z^p(=ZpGapCwgWA?5IV&6gLh?aU$#&`4Unk|(Atz7y$F;P{wXOXl_gsr1^sy=!w%q&
zc|Fl(E>t=t=P5y1@iR{LKp)@Au@ocoNlJ9_vAo?+#r_;6d0M7P3tA;9K`U*QkgADB
z$z5+^@Zbk-YBMDlF+~?zemI@1o4$f5trX9us;7mJ?PC}(U4+=Y3-LS+d7h2)G^#pA
z_2#{z6HfRqt?Hnu=F1OI-dst}c7;kBC9@!bbsyb!N!fgEltHdwm^6_y%Hx%}B^iRa
znN~{^r=E^xbFUIjN9b-R>ZWf1YtDcp9)<;$v`^bvqEq<3eUN5+O`9fV&`lSb1_13g
z(*D;{f4r%VPWMR~ae;hvAqG*Jqfalk4Sea0xqe2&(wV6=4OKU!+0i%gXn=~e_%9d@
z={_Clu_Z8-&!h%qR!5?@hZG_{rz5kXh2)!3(32WJHgh`K7R#qn>@a*rW;vK{(`kvY
z71Bk}Gwhw|09%~@&=HRlTdkO=^9EZck_eZb9pZujrukoMz@~~oo0kOXk7s7==lY0X
zyYdb_acW!YQQKU+y^PEk{hu~>_-!+#N%JgK577E`^YDLYTUHtKBQ^7-w~RjL(E>7#
z4pfx4i&70~XVHAehBL>bv+ddQ?XF<mem-<;{%BPUy8pS;C6XI1>+s-g*E(4EM~8e^
z`#s+m9gg2P<q1RrFQOcWbcur_L4(mCZ8!M>=~P#DUplu;%ni`cjLNJAppLg(t9(j^
zNOv!||20w9);bD010C9<6RTk<Z=zu#bcHfFbAy0z?HTSM6WU`s!?)mF*!4;Ky^>!_
zn?bbBG8-VC2eiKT^EK|+q6ll1Tz(9cj!&MVWk_p3>o$His)s~ex!+@<aE~@4osty{
zeBu-9_K2(U(Hj!pwO==qEk60xG;!7&WQ>a!k9;+%b^Xb~w9TF!8ALq=x)%^sD3zC4
zjh`D)z?+vej(GRyH36SQf8rU$?NJ0sVGc^2{hPHhU*QwayKVs+?&428#t6X=3+@em
z3i=CsB$FK2;Lm7!*RQ&hGsoOJmgjLt!L&NVvL6kwDDx&Xk&*uNS7;_8%w;-at}5v9
zg5?NfN6<pZ*OyN>bVDTGkbyNK?^^56{?7SjI*PC%uL+4rU$_^MrfrM^0hlo9yl`Cv
z$Wi@6UmBeR9w>$<a>R)A$m(%VV)l|EdbwkqnzTW-7-~ae4zyt|0E9*n@#26Y1R_K$
zH>-M_-eR1YT<lFqti!{&mBy&4c8CZqW_*6h5sekb5lz8WW1v7eJS%sMw;m3}f&&?E
zQguGDM5DoQ%pjU@;Y=VxB0xnuT}r^@{Gw#l?POpQm=ev$#T_bboA53u&fp?$I1|G|
zNK`CL5S@?pwe;A9q;@PKz2^Q0TW2x63Hd9W@{$Q$U!>7mgk`^AAlPPPV&a!C;y*se
zu!p5PET(Voq`VGIovX@r_?<n>o#@7!dAB%I@gkN8M0~}R)got&oQ=M_DCznz?cE~Z
zJzgReM1~b1>)oTm=S3+y_hW>+1IR8gQg)g0%;|1&m~=>CaB-nbLb_9E4rM?-*iOIx
zGP6aVqp3UpPH{{ysNhrAy$?mjqVhRhS%DjiMbu$f)(b3lK|2JS_q!-HvOBBtvH~0S
ze0(u&2CPbRS#Dx<F7nu|6oy+3%U-t2-U!?KW|w=gWQ<TKPQK;#Ruz3E$$5EMC0g?A
z;bod|NqO~U4xgQXQO}I2JSAPxO=YBO^krdr5--p5uW=M!uZQY@3KI3`aYG(hw|*O%
zoh2`#hs;9(sK%she2?uX<$RU`;|$jeQFE(p5wGA03~C16aFKX_mg!;#a^W$DBqS0B
zbt^*ep$HfZ)RhI7ZVA}0n(-eACmLt*CdVsTQh}WDF1Rl=b5+0`h59a`meGJ;Dk((f
zwvN<^O{*-h!0vi0fEXE}aZI=A@fXN9)7I(~hkq=zIW_e^1tnxlIX{Q9e_`=O{(Y@j
zRqsZqpHpj_8*NpsZqxg#f%I?D8&CZ<-E0MDAxQww+7p@oso`O5is*VxQd%9=Q>E>2
z&Y-xF!qO3?*fqe{K7qRFw8~U%{M*)`2x9xI;l)zx8^LZX$|E(?QqCeD5(N0qp<6hD
z(n(<>#kJd@_g6y1tG{ZmKH5hGmA<*D>Q7(BXyTo&dIuf{Q07Yh=hXXatG7EH-QO$R
zU20#K-TUIN>%h;R1_WFC%wN|_NGH2Hp8D@|tra!vsz_d95L?Pf6Y#AL8{L{%sKOx7
z`HFTwXEeIg3{Fk?sgY$laiF;ph=v1`I%&h%SSeAXcA$w*pT~Z0hsO2MGT}zCW$}4s
z62*O__sf9IZ1m1o6EbS=J{@}YE3sBxk!3y|WyOuEx=t24(vCbGUv+%n@RV%Q(f48B
zw3Va7w-uJC&m$ckH&g62EK7Y1zxp`I*r_qYGZDXMAM~*R*#p?PN9UeuF|o7rvXj&I
zzm<vnDBpkkC@U+^YemlM_0Jn!&zmWKvWom<*Z;}s`jcz_CpG2I5Bfj*UVjcyUI>m{
z2<u;nyk5YT3*IGo$M!F#UoU1WFXcxr756WdUoTZEe|aAHrLO-=)Ag4&<>ijZ<?jCF
z{_EvI<(0RQD--=I@2^+plvh7Rt}gYju3oQhD6eftuI=@&9bK>eP+mWeT)*sJFJ=dK
zmZ<>N*4?;4nuO7&4R8)MD~w}9c@?OHzXhO+?rCfouy68JZ0bdVpX92@{R>rzl0!yq
z$_#G49^5)|yV;Vd&@ockiUw}Su5NcYZIedvodMipD=D?{jTM9MrC)r-R5Ds)UvJ<I
zslR<I#W3SG81vMaf;Jcf2dPR3q`&YiS^qJ_RYdbi@Jo)f+|GaM{_Ch(BbS?mSfU`U
zd@TH2f}<5o*6QxI8!RO%RE+>~?#ho|YB39I%uhJz_AAQRP<xRT$1QlgFyMQn8gGN^
z@kd@}2qzqV<EK<fMz(J8tHSD4<-q~ryJ$2E@iQ_GPWquJ=~oq|EH{kzV@{9O_O)D-
zE!Xj>+-K>P=XVEA8@}1{sOkkq|9HR|n8ZOJ&Uvbb_&!j5M!I>rk;Lqt{L@VBR~_cE
z6!1sw*$uOb>Y^YI=PMqGscM5YH>b9B#WIcOEJTIP>r9`k#dNupZQXd}zA|?5IGI+*
zWOg8KM@#xVN}*>5>lKTNYBzd7sL-qYB)(->POL@hR**toY<A<B-5})$(ccJKLDe~r
zpL#5hKRSF)a`2j%^?ne`n~UvIx2h$I)io<G8}F0$3B&Rw^L<*~_B}ek7L<oM4_QrV
zO`co=g-B^wgtGg5suVVTi>K|JB`3W2lNmVpJErxbxTE4H^x7(?NvWs~&Gq^IQ4ZXj
z6e6W&<`QIY>`LovMffo6uu#!)h8V}N=)i(&$3u0wo>ePQ-4}Y^()ebe@aJa5^e1k5
z{m~nQ!v^unyPatYHhIz|(OYfpyr|p4E8l|`QwvoRhErw9qvA`Lu(tczKQ$$vck8zr
zbEFAA<~K?eGyPJh8xvmu7B$qhlTe593JTfg<(MIiz|3qlhliI^MoEhJJn6`iE&Tf$
z`Zq-vo`wQuV!|ntN(~9Z#>_4|t>^YBJAh}XhnuTIgT8BM-#^EZtYTtf|LM)w4+2E>
z;)>LpDN!pnD=vaoU)gwj_4Tog(d3P`Km1@IraN+KpVOY8c4jJf;wTmrNWJFfbW6qf
zp1kn3?lpV+UwO^hgXqWiUq|&*Nfri3mUI3#bm-RoMiRSlWN&-Nsdw#PjFdGj>?l^}
zCRfZuRJr@8c#)(`ysSd${3P6;(Zn1$5LR>A?Z~h56ug+dCUF%{Yvp7iTA1MOFuTCP
zxTsaD8SmY9w>W`y^Er{VBziUpmM(g)h)$wW769W+;#~xA<I!jfUdj_}a#~Z89Sf4h
zmXRIt;<l?QG8xCsC<d3O&GElxs?st_(XCDwdy&lnvN<1TVT5X)SflkustqAi@&K}+
zTK~Q0uCDfAY~m!UcqGUBwxH^q(l7Y7%)h%%yI2p!sFq>FKKqhITVD;EvDMnG3v(cJ
zlUC^qq$I%8$%<=a-2BYybkjdy)CPd1@s5>YeiD1N&;4@t*f^8)3960!JvY10%{BL5
z7U%nV2rx$97NlQx*b8YWbvJvg0-Eh<chX!}Y(F$N<j5ZZD)v1aTWy*a@6jwueu;lI
z#XslU`34iw(3md3y5G>&nOvWuNA{xtCp+mXCT}_PCBDT>{V)BiaBuy?mui%HbxmKK
zdyy|lQ{PpN&{BQXlHqJe&#)6w;k;@1FMd~%KM1W99A(ikbRcIEAhw$*wJl3XhfQq-
zjM=l3*umtgX{0=lJ_nC*GfQ>0NxYCoYjV*EaK*qJd^#IRB}Wiom@y@MkpyX)Zti4h
z`96jXE<m9{<XMl!&s(`P#eH@hBXod;SGZyq{YlG5roE-NgY#{)@Hc9tlDDN`5|^W+
zJF6ipO^~IKqN5d75pnwun@<k<zBrpRW!+`usYPcJ;#iNX#!7|f!ekt#8exk?z1Kne
z6_0>Dew28wSaNB5=a8>;&G*TULk^p@54;zTXHI%PCWX_~OUZ_BBpUqa`s8UN`{uh_
zVS2wz%gyl>V3vnBaxc5fUkAqPZpZ!p;dW%;oS*}ze5kmHOW)U3Mjn+*7Ym9f`T)C+
z+69oCxn|H_HOpUj{@CA<BJSKs^k?_qeSM_jA%6@sPUV<-^c{~wzz8%AKeRHx!;p-Z
zjv1v=1UZtRq&U?`nwz}awa1m=X^tZ7*ZB951&TdV3PM26U*F)*J2LO-uVfK1X~*>X
zYeDYZ4r_fFuuMe+KuQ}1EE7X6(1S{`v{Z*0=c<b>j;B8Gx>xP&U&#GjmzY;zh_sa<
z?X9j_Mo>Es<6;-FQvF~i1XRtG$pB`s1OREgbV)^v;%e&v(O@(tUALW)w&<3caN9RU
zgysoI-!9ydcxz|>7-Bjc2#Eo<$Wl)Tm<DQ+<N^6*CiI{M7>Hjuo)nGK7K8=@!rj%_
z3ts~bPpM5YQzZh4I1v4bU(wq<b+M2ogLF20Uacjcu&CSUq}5MA-<b!!4G%=-1<XdW
z3$t9(9piawOv<6?$ssQbxa+r(TSLPqIDs{exDiSy?~-%pre^|+Cp<12IJ7;1rT}8a
z&MF>lsiO=wOq1>(JR=FZqtsOS-m>|XBx(PBK@-vse*9|BD%m`=54z{h`e{oPuRstM
z4A9~Q@Y!Sd7VR6FQNe<sQZ9A@ZqEIfSmN`V=*pKg<}b{nzJOEh^MH&FU*>s_v>-D5
z529*tA8YRiq;k&*V8z1cldPpF9vBVjPE0V>rF<#{%YAhi*8eopm|N0AcSnz8@1wdT
z?F)9_eYWHWIxkc{RJfeKG+>VSRA$^BW8WcYT<En#!G$M!w535~j3}X;l+u#!i$!rk
zz*+*>*9I4j<Sn7l9{b()rVl<WafCPip;I^HNGOoF7O7n=V)3T$-1m!D>5PXT*XvRW
zHBY+;X}gqNG2>VkUNSuO=*aP#J^!40LfpJ}un6+DhtF9WQ|;s2ZQLf<D39`Rjt^~p
zy8<nTh`laj;EP;Zhh0aG9tiP`Ur+vf@XjH0y}fX<t8?HpwK>&!XG!C%4e^xBBzcx%
zYoH%+NU!#L-0zK!;~qxcnn3+H#j+1%5$`Fb^-02(meC2XKt0mDExsS&dZ>C^x9GVO
zfL!CPel4^Q+^n7DdC3TWy`ZP`tBpoX>0Ubu1qw$sN2HTKBaL`M#wij=G|1z|a0mO2
zgn@dxC~eClIW#Kl+O(KYgj>L%nD)($5y^w-`ER5<U0zLn6493{LSN>>-kU}GZfgsB
zky*%(d@}VdP&;r3&=yYdRlHg#IQ&MvUi?8d=BI~Z`K>DkO+@Sse5`sB<2QwDcQ79$
zQ-a4bIBpx5BZAY7op`GH)r4Ei`SJ_s_jyY&G5&F;B(trB%VO<-w;AlOqS<S#<rPWW
zWo7D<6UY=XM8xSee%^_^Mg3*NJ?!{+^5@r#^otYfl3s1;{qO&esq+kH^ZmnqLPErf
zh`ouu_a=$hEB2^Otx|iB5(%-lYN^_rsv51L_NHd5t+rNGRa;6GZGRsB<2jD!c<y)i
ztNYFM;=a!F`~7^t!7XtcY1^!gx`9<UUxqSs?PFulLW@afb}lnYk=5#Y$nY@l_hKs%
zRaWD&Wywh;tTMVZCgt65&YzNIS{51nxAEyODz_QoO35>tNzB$0JG?9xS9G!qWDis<
zIbXGJkEXDMG0*+=L`Id(x(`y^YAN3qij*5!o4=jXpzyxSB6_+vDO3=oxvTSAn&nLL
zQU1%S4>eNVZJ+E;>*6jx8=6PY2ug*Ast?FP+`3!bC5eqsHV#H1XU#YM`Ku0by;Oer
zY*X&P?-j;khPQg3zhkKYt<w#Ddra|{(*srO7nQJgO>TZtbvv@jGl4p$_wVFOI_83F
z+*$R@O!NI}0%Iu(f@DYAab-bv_%}fYYb!zK4`cT`wdN#!0Y7q`$AC{O&q%(>U*h;2
zJ=e3SpSMl_EJpur`F(g{i5fWYTZ&c8L%j=XxC}qBM|8h;2eZoLwK87CmG)I#NnOV7
zE)}YG^JQsAx*7^oMsDMwEUl-Dc9@gdAZM=IBNL(z)7N;YH+aTcAIkg#Lk?YjOk)_B
zHi564*n^XJN>NtpRzR;exrQ0OHoVtOni_cC-^uLqTOQcMtvG-;+4muwW`XVv&wuW$
z)?K_e#>-hac>-JA&H{(2`)Hx{g@uB=D_l4lez##6XR258*aSC-e@5XO%4zKU5z|Nb
z#)ku@Nf=(AmM)3je~Sw52Gygul&ms;uX{NE0SM&F$GWqaxJQ;(9X44oX7JHlTFrf_
zBm_@DnX7;^yqt7toCn-L6qA13bLXw!;y!Q({m1uf%f*grlle;FA$w{SWSbY<&c~`&
zb$l_gAH#3T381#VhGGI1%7<c}eK2`2Ix8{^mdQex;6y7b_=9QL9J3Km`5Ot_B1&(>
z={Uq%hkg-tWW-WLzVkS-?l6y4i&pcWg;ZtdS^k!M?=J(OT%3nS8(dH^=EDlfqj!|A
z8DI)Fe?riTE}lvsAY(E^(0%~r^>qO|L|r+4Z544xOx^>!$}gai6uKd;p6Y|18W_Av
zr|YxzZAmk@dY^#C%nr@=eC$#l`?2TGKoF0pUTOG_a;!jcG!R>#qPOlYLYmQ*szs?G
zrGmF0L&kTKGbWO}jM|a$Z}JNnYRQCvh7?{pAFRZ$WS#Z=k^1!xLm@z_F{JKAwIWhL
zqAy7zvV?yXxk5xrl4h(rZ|IZFQ2FlaEi8*=RGQGO$~e`!^z)1NRTW}CArLpQ&BOX1
zYB76A<j^}?-c7W>s}n`GX46d!8Bzx`BDcU#Nk=YgRHe&((_w_(J(bELaod9%3++$p
zf4a@VgrY$fPLhU<yme$Co?ecSn}dtwNqgk$Q;EKNoGN?&rNdotwRZVCoUmQLWl+Fv
zpwDuu4;^`r#fr8y5m7sOEJ~5@D=?Nfv>=Lx7M107)jOh1g5gwIyHqrl#DMCNSQP;8
zFbbO_xJEk~tI~i#`M_Bl5WJs#QulnXa?nvfT{Bv}dt@j<Q>8d17rIU#t#2E_++&`N
z$#Dgc+hWO~l|IiJ8|DLn5w(br+sTQ{6G;c|5rBFG!H4v3{7y3jsUZ@VoR<8`_LIuJ
z7gZSl`sDB)e#waXLTi!xL}%Q(UV4sCYEE)O^YG2vXz$K_iSEp_5q|GZjzqY@9E0z#
z{)XHF5+U((=B7vtzCNY|mtPOW50awmeBg^hx7PQz{62^8`BuGYlv3D;XCGe(5%I)}
zx{MdXpP~|jhp4+=ewnh5*v^8<n6ei&y{l{rok=ds_`)fJvg0OP6JjB(25JiSK#1PM
z|C&CFOq7PEW^y*Ok9`5oe+j(Wwji%utuBEed6T#tSe)tw@<mc#vyv#M?8gK@*9n!^
zFYqWEkvtIKIt=Nd|J*?b>Xu|-<#zGVGyf%Pa_ZUx?<BEolGp>W<o0H(q!AP9qO#Z4
zx)mn1@t1_@Pok6IVm__J$Ac+1eH*wcv1-?B!;0M;?^|k`w*nnn(%f1m)~%jkjEcq3
zj~qX^LT*W8$eyRNt?0H8O<JZ^9jwBc$W9HOvI|y|J-nyY+)p=jy-52^2sq4sc=QZ6
zu&j5u2q`O|>CTuMJiBH0U3aX&o&|R}%uG9wbxVQJs&d#|?=JxmV;!>{ncyCs8Wb;P
z)~)fLud!@uV?M}~Bt5x0Xgax9t{8r38d*1(;R7c&H8ALdc_o*ZN!Lc|%`Q7J$I*Z8
zN#ssR)K7=Xj`)NXzPW4$%v5~9)1~<#+m;tr$s70lQP;HGB#=T9xF5BUUG=f{+uNRR
z@A~ep=LBjjWq;%h{E#vBN=x$W%fhNHih7RQ?vRcwIEi7bh0_K_ZVlke0*2Ky(*yv>
z))6#WXrF!n1r{(-i4aQ?qtdv&djR<~NV4KY@o8b!D~8qw1xgzw-}QZ)lMMtRZomBA
z7CJM#vE2S%2~OGi-6eqHbF9>U5393k_EG0|j*)fd+9Ar#cBpUrj`gs*+PuGnI1Bd2
zscq1kx22yvq$sZ9e*nURz&L64r#@6}L91R5sRK};jnx{dA4fe>M;&A|Ly!Ir0_JV=
z-f-{#(nFn<;QyQW@t1w-qCTka8Xv*^hzHwvpcE9Ldh{6+{K@6^UUf3r-Jp3(H{t%B
zdlj!;03FfWfy+{DoT}drSRa9FR{wAZUoGf^1%g71q%R|7etFAW<N)o$rPdt3l?8Wj
z9ulF1BkHUUnxf#<|AN<C+GyjX*@tAVv<@zNf-LNh0s5x@%sR{!Ltx}BEaq*DaR$tc
z!AEa{RyU+x%gL~u-+sTa0n7XZ*O8^0P3BDb@jN+rlQ(2ZuHIvv|It&)HB{}q!qA^3
zIOv&=4cL-+W!hxX{KHw)hnJFkV}iiPIKovrg!#t8qHt|&EMNi3v3-9dmo0Zm)hVFk
z#qRa-C*lLO=sXpK%HJLJod$gp&`eB1t<gwvN#sD2?k`tiBwx=%H-9!Qr*ds1Ls3K2
z!3SvD31R6iY0*5PSz}?2PiuxxgyJlKB4NS`VFe1;*0eCzClku@PvoO+y*lcIE`}&t
zW%n!kvaesye8_XnI>mgGJH8Iiq)*g&@--Mqr&4)PYl8A?Q#Es5YuKsW3-Ce{P-8L)
zRfy7w8nHVM6W%<T$Uc#~d!i~FuHp$+eVs0K(n)=KqUjTc<;jPfLa-cyg5txx+Hy^K
z;eA&&;UL7RU3j=~yn_0bJmD}*+7rxQ1^_iHTsGz!+sS=oRkWmx5Vh|@ztBO6M`(mm
zsAYx=Xehc&5A#X8GZ=QE1Wx6GBH)YRav=&LK|kpPBdn}8Z}8+fk!J{UELk$P@qATm
zTEzlYP$ejo*KxK9=*;Cg#)W)?`jg`QP2ESTo&q>3vcre2zgJ8Y0H=nLuIi|pJY&GW
ziZ1az>@ol!VHRKEd>?^GO`%zjAPhNDX-_Qwma@|6bmUtVC2}mne+PVf1r)F&I<$6X
z;-xfAh|J^Mxp`vhVMnvLh<!xc>r1{77S|an@cSbyFql!<^!!(ZxN;C>dRUlO$kp@Y
zXr8gicW3^+J$}MbrfyNGqERnpdfjJ#$FD>s$nQD4jY|CbJMkpy&Y$0R$fJ{}&yyIV
z{};&%MB~L762+rauB!l@=>HWBR?);8=S0uw)UUrOkPWGE=V>X?q|9?tVRU-gd3sHB
zM$7sCnuO=)nWNEJv*%eW(b@0Lvv;C%zMkitMCblF&n1t^qrS*vjLGM?$QOty5Wgsp
zk114-$?^pF1sN1+KZDbDcutN{R<<VCCHd2bX<w@yqE%hOW00haRNo68<CuHDe*;NF
zWtpgWyNmLbm<Lu_<l#wFq@hx70A(qP(&+(t)=(^!8g=alp{EU8zb+nL{cr_!MI=%P
zR(w_cp#l(cP!l@7D^7Fy+*wU%y!T;LAE&`(#q3yPZd22bZlyi&+tpr={T(ziHoYU#
z<*C|Nk@3`yzMJEHY6EHsJV}f&O#Qoy4#v30D+C1u@S79inqR>s5|*Js&~kg&AsMG<
zO(kIZN6RGTb17DnHASp;O1~5xpZSLoG20Urm|Fe3M>wu8x1xDRxBcaBKJoxOE-!m7
z*3+k;?ep{KaFw*DB3y^+New9-L1aRr3?m$WM&$c587Fc=)2vObgLbW^5D=>liR5s~
zlmK+n5$&v2yqVinPypFDB{9C_?=dmHtCbju>NoEOmqfAmzb5owsjK8}{qflAPhI~z
zcC?<%qG3A4JWi7^%JFaMZghnLv0!?=sP)O<>TJ%~RGNWd*T!s#l3%V!0xp%+C2})A
zT2t)MkY&tpyy)MnM{)!j%96%}(1>*V4|plM*+=%7vWO%hKQ!>Kv9p_DEFz<bXA%hc
zFGOQV_9vw4)ZkBf2FD^r86s(Oc6LEqf`Axo2N;QS4Q*(*x+)KHSpUb#IY>ll?SyIF
z>X_bs4*XD-Sm8BTe&StSrR5V&2Z0Q3-x`b_)FjL$eiKOe@kfjFXO3p+4W=az#31bO
zfqmwh3v+niDRtoG`sEM4hq1Sx5%*1g{l-+1(VqHTEwSR4ulk3|>ZN*VC*RuBzUnu9
z{nQMQj{6s#D{GA+I%GF(<ztl>-Q5I4YT_+7h69-ZFp`&!jb|{Hj;_=Er+_%`L#A3!
z#iGZYQ#mxijA=J(B$aUqW@R6r=ZnSIkILR6Xk>Z0e|yYFot!V*1am_BkBS+MczP&s
zU^vdHIVFlzH9AKQbef~9{s07L-_5@DkU-tk$jHlI?PovWTpzMD5&Lw53ne2<97c5x
z6kE9Kn%TN|-;PX7%_*s<Z|@nLSa|he@B7(*6!i4HdC4mLvZ`vq461zY*+BPflC0`b
z-eXiE#sFjI^I6J}#7KU0Y_wv|rW)4jQd`EHTTBDL;<qn{P59Hb0uhoPP7`@cdfxo`
z_q_D@DKeoDWLI9Y5k!FPXHH}EW8!cjL|=tQjsZ=U$x4&gxW9rTQj;IJl>6c;VOi?)
zoKvun%_JC&MZ5=b5in|n6t{1LWF+aJeQ0?%cb;zR&O)VJINioyrr!thdz@k|@gM>@
zz1a|M{S$T(DghG+p}xDs_$U#`lW+W5%0<w;#;i>Z@P)a~MEItvTg$j6Tavs$W1R9M
z7QK8|!HZG;?yR+Q0JTuS`EgQ<L+{LftiqS&dP4*LuyKaytx+fgwh<tL0lCx&%WB^b
z8(Mg!-|j>In5#<V?A!YnX*{m~#b5sV_VJ27Z3v8A;>#&l@gjJ#=KFF>NTKQhtXMZJ
z_=*A$3;^a=PLfjWE%MMePj{r#4^=|zhxFVaKyu9wen&k{V<N|6UMgO?U?$g%+zGn7
zvOAsHy!S=Z@8^gBT98tIsK$X#(-0n&SoC)Y%xyCu=^^IE9yx2jBY(|GfEpPY)eJk5
z>QP0q+r%TO=LcvkbGZpE-0dk18^~*YlO%-+0}mr-2*gg{hpZD}1z-r=2wAUzF+}bm
z_UP$Ig<DH4jj%2#X55RBO)Df5VQDz;RJ0(_I@URjy=h;tgg|S+t!?*O8Re`BajP0u
zDXSgDZ@tGK*}2{UE7`lJ310QspTm6JiLy72%!?AWe1Y6jEZ6!UdJkXsfrlj;_&31v
ze@btGP~R<!6c3M^?`R9T<f#~)8uhTe>h_<6a}e;t4?51ewhpRyzx2M>eUmUjqi2$|
zMdHpsKNb>t`mebv<mUcnIWXV1N{q<}W<?=ZOtnQ+EbFjJ6>)e*w(YBA>OsuRl|gSL
z@a=sD9hasj?@HM^jBKc&+Aj7wUATGo%2f2mJTuv*&lR9%HQV%JPFnVRkF38h&uLeb
zupfAZYVq&p&+_*9=^ZKNts#eciUi;@bfy#Z9jVrVo<Ankg9d)@Jr5e7_eJ+2nP=%b
z7}g!*90mOkKM`0Lxvz%60@un>4XQU}RYVG<-q(#tq#Z@@u!938#CO*;b<E%TrQlKF
zLxz755l(4)rg|uuXVPrG+sk+PYz@Bq^B9)Yv69?)?``E4PA_a2y<~7;d(!UiaG~@L
zJTNcrl;>;&x9^zE2lfpq8$5jSosp64X~P#!?ff8~CmyK=pK~kvzB_&y=y+J3e_;On
zV_@H2;SXZ2*StDo>0Xq8H<pr(Q-oKf;C1uUIcbx<3$PGgpU>`MK7|M54$)P?FmNY<
zYjp4sCjj}w2fTI$sQ2c`9s-q1C1)#+k6N^W4?QRCZqQLR#_Eni$dU12vM3Jn9+Qn3
zrldbpasOS49=rN(A<N$L&e)1sNp@T|iQLW}=(9R5Q*a%p_+SM%U5;e`Deh271p~+b
zGNjzZ&9h&9HMsg4PT*bG1GV$AlkbisLjyj8mH1qj#d?G*r#EvaD$}{wIwsC(hq8P%
zY8VbbcmFjEHAyg;xKc`g@ecA6Oi)1H{lGe@%e_@lT6;r|vlL`iEk~BdS@5YmjLgKl
zfWZZ{GwsA63};>`oy2;}6~|;FrcxP{cFlnvm4d8d3({G^z+x#pjW55){rk}<6&@L|
zOMpDvd{MRUCX@7vs#na*N+f*IFgu37rlR|uGu#L^0NZ`SMC%FGGEkZjAmxI-c72}R
zJ2mqvy+VPm=b$l(ofTCU^wz@hgtfUhLj9X5M*K1exLcCJTYzCsmWiwWJ6}U)uTzL9
zuJJ#*`&kyyBPG^fX?kT-P>YhZB5S~xX}t_k8V129KQJL-#kwp&v&PttX_f~aRMAPT
zG~12)+jgr-d_<0dNjpQ-Af+VMgP&qrvkNPE$7?$2Ol&N%&5q>F#<nu3_*IlM5F;aG
zHwI-8TM>8FjS%ywC%fgGAnr`9R6~IycKCHrku|a*%V1ps$U++ayiK6<c1~4RG@vi<
zI8BJ(%_P!V59pDuA2*$0?DwA1HTbhUv)8sYQu3qWof54_bCIsT=P9NtacnOujNn%;
zO@6DlR~)qgh@P2!KR~fD@$GW6dsW^3vz*K-d$G0R9?jQXPO|8o3_puPuy4!MbDOiC
z*8@L@KNMhq6h`Zz!LtFANCQ~%!*j(Doi1vMYmmE&o+xIn26Bf|-Oh#c+~#yZI<fGm
zkkXz!0+y5vMJ@uU`-l90rhrow=iKR~p(6}JdrWS!A1|xdHG~I)-1FTjSRhZyB%?V|
zPB38i9QrAu2}LdzOt$2B)-IMbOabF%X05CSNJj%H_yLlWN}hw#xM3=588XcTT`-a6
zRy(eYhUr9sjNOeas$AZbuXhOS8G7_fM3}rAnoLgVJ7msYVo=xvC-X78IuSdA@TmzT
zi?I5hlqG|1idw1OHgu7rxKD#JYu;Z>PnD1UN4Zbmc%AvKy?=0`L6{l=%sTFc!t+|a
zgam5mo~<vKt8{QJth2q0wdJHKhzBwvgVypZP5~;$cwTykF8=osk9M91cq_kqGdni<
zw{dk#6L<2WdwP>sLpe$Aizi>@xwqWr%(r;bJN(<f9STL)<>3l_XmtqF^T%#v@w(4h
zc?uaM4ihq)4>_nG{?adWAK`FOaihyAw`!M>2{wUI*^KIdSW|JH8&eqY6y`0$4n{^#
zsN{;`LOG|x$QjB@d}Tw6vu-c(k)z1Av`@|gCc5ZYS*rk2c0kaTOXZUSv({p<hf(a_
zgBX=APHJJ)4RVQ`V^W%X0-Is`YYMkhK3=Z98Gzcq`{K@z-a9d<3BLg<eK^h)eguHu
zQJZn!%D4bde8mFP1*Ep7pyX8F5c(q{k2~-q3;#e7cOo~z+R-C-WJ>06#3A0Hp(P{F
z<EXG9dzS93DZ8Eb+e6!XE=6WG3O?+#dHiI{_h^{%SU^j&x{+;8v^M?Uj~7Ky&*^Y6
zXJcASbdZ1hX!Gn>e{zrCmHx9gzN5aXBlO^IklxWfhS~SRQ^1O#_^mqagaf;em#=f_
znKS*8%xKM4)+w)6pPN7Xk@oTLXZ<^uYcCQ#{a%!MivTHQ7L|d_knDe}X)peM3A+08
z`{UKs_3S=kNMIe1^rsR6NrngW(dG361C&74Luvjf%Gx1l*U%|78G!Es1keBg01{$=
zpMWgTI56${g`9$l5<*E1p@C2UsHp%nG&EppIE0=R%*;v2#sgvCV4wpa7yvLBJqI&@
zn-zdSFtV_+aB^`_atJ_~_-R;$XxYW-xnwwa_+Z>}RJ_7ee4<ccS*VB{owy2<v@{pL
z00W;Q9I4JAsl+I)$|57pE+@$(tH!3FDZmL3696cP0aT>`8nOTZq=2x9kf5lTh={Pb
zgqXC9l#HyjoV=W}ijs<|vbv@kLKwv)hGmg7WR)_8%jq&HnQ|zjSY=GPRM2d4mYhls
ztm?L0s?OXR?))0Mg4zbWT3)hf5p9%~5XwLtYa(S}E~$@`Ho(c7SSjP|RB(10);IVt
zw~%@vf(8*n#<3!%i5NwIz8b(t17N8GurmPMFb1H|+9sBKUKRj9TR@-#Aj}yM=>~}N
z0)z)JM+Y&*g)r*qV)P7jQATD4hWaL^M&>wEl$|rm-Wg|UZefM9wYRo+u)X2rfW6^v
z;BwQ>)!o(I*~rb?#KRBgeaq4}@P?<C&8=XE+o4V&5w2m;ZXPb4UhY1AH+}uR18(~V
zg#@}s#N3QY@Qb?>9C|xEG9)rOJSHwOE-^;bJW13dMcgJs!ahgJu|USDM8@U5ocjZL
zuNuu;^{BuG{m>?(h-UNX7R%UH|Agek<oLiOLU2lID3KIN%8bd(iO<PP%qt)w*zo><
z%<Ez2cshIpJT)4Y9t+El1Qf*p@)Bvw5&;EC^cBf~@>H4%610X0s3!rcGpJg!09}QE
zrzL>?`+%gB#E}ZXSS4`0hHktLG10&_*(`WXo1ScwnQD_Gq~VFAl+0{WQf^^RekQ)K
zIPLDejG~f)qTIrgypnr`_aEFXt0=9gDl4q2Eo*A7ta(sVUs>N&)7Vni@~E-uQAbNh
zOZ}6srYGHxyV|>YJ9_(`JnQdn?;q<J93L3&>l&VTF+DRpHn2EXw>aOj^z!l2V)ydO
zi_yuUiJ6hnxtZzt@u`<{^Gh?!D<jLV7Ov0y|9c=;08I#|K}Y3q3WO0}gvV5krojZ%
zuzZcxyhtiG=5hgp>d9PQoz&Ap{aQn~jY+f9bZ4D$KD!S8m(eNn!n-Pr1#{_zHHKmu
zDNrt>uEwPrgF-RqnXV>dWFjk7Glt)<*q7@;9~Mo*)%aS%T;|pCaAIwA`7}mfR#z+W
zR;<~5q(!P41mA;7wY6YgxTfU;Qdg$k_QxR#i(U8Hh9Goz0F{(C_MV&`K98Q88F?=2
zwm?w_;9phwyq;%St@v{X5`gWlXC*4KMt#4TLhzfdD_d-voa0T_SNMZ_isEY~Ryr^A
zKRfxnSY!O~w%S`!ZG!bZOR4-&%nt}r=IX%YeGTJl%JD)L11G`ryBLUW=9zxWkK~kU
zrk_?u#XHH!a`=28{DHoK4SAhy25&u9p3(qFCz6k+Q8R!+>ni08#Oe`|<?*L%t5c%R
z#nCt7PuA>UL|Uy<HwEe*16*Qud@(diswr(T4qTPAhDwB$F2>aD%Ni*pAc{UF{`)74
zBVeSaAKn=l05fFp#S-c=MjsR}mQd*C8;PNceD?17);I0l50JY%l1o;H%gCc^!jzyR
zd;FGTo<uyetWYVIGw^qki+D(B_v_gQRMMP&gAS$<W02c;D$0|?peW{!M($he5wH79
z+8jdZG7Q=vgUPETuv;5dfgfMp|AZ1D%zS7hTk{ufCo>FjfHo@>AS$Z@50*sgNg2G=
z`!OAjsQd8Jebh^Mc%x3|$R(}^5^?G0;KD!Fh87LpudUdxZ~5ML*z?ZXf6Zkd^Z;3e
z;(>}td_`aX#2dq?&MTh(C{$*{;u*~quoy-%j=3){LbNVn4=E@EaB-N$OkSvI(b1!U
zJDbk~Y>-YpGGpAeypJhce5n~G%?biShfA5__eF^+y9BXBRt^S%hUg6e^pq~e(t_s7
z#om)ErUWO2-CtQvC`k@N1`oZB<|)eTvr)K$9^>w$7&lk>(IAbs-{WE4Os7Q~+BkrG
zh5hfD7D|<`b5CBzh+h#1^R`B{iUuhxUEyffM@}l}&+or{-^tULy4cNCW-xtES(W!u
zY^gN#9p?#=dtQV*S?Y2hl)T=Gip3U=@RYYKH&9yE%JIDHd6|>PyM!pJbHFIDnu=M(
zV`aCizTRerlj)_*#MTwzN9;tQUVZzuaY>xK%~*jOzw0`pYL3Qux>S;K`7Mn0E41ea
zep@DK;}}O~6L~`W!eWh>?Apq?*XfV*GkM{>|6NF!;mSxvjm<PG+%2tAj;RY<3wT=j
zBYkQU6N=&@P15T3$i%7lZF@D(zY^P1%%*hss;km8c7aw0o;=B{`4Y(xGA5@R4~EZP
zzu?>pO8iwg(tX7nistW=xJhN=ELN)g@bkSNB<@Y;4H5luF~{Q!drqi8H4u`_M=gM1
z1&a|%$b@StU}mMSQ8UpK3UC96X(=<>@iplfV!=d2li41Pt2d(vQG-?te75dT(b`Qa
zvY$M+!y5-w4ubQDCdmlgV<>&`2%?779Qu>Dwdh`c=I!|VO{mGcEf9)=RO~L$A##l3
z(<2zc%^uF4tp6>74qS^(7X4I`p$AC@9a|BLEmH`pIH3S;0HGsRBwwo);|jTlQSd#3
z-IO!-Gc+M7Q0qZ#rfHe*zGJn}&_Q1q9-WO6TB{Vv3)Bm{Px%ar<E_?5A29^X;%hix
zpI;d&G+Xe-zyz}NWHWvZS(bF2<}un1L!9+Iq0(Y|va}wi-pjX96JCTR+~TY&g?uoB
zsK=|E=%=d;%Xx*ZwP<X!zNXi4olJI<iI2a`2lsKExsj!^tXGODr>ndrE6!iZqAFr8
z(M%lVn>=y)c^_{ws(#3tI!?Nr3aAhc{+f9(6w0c!TZGMZjmVClB3~=!J~q%sPF>Uf
zZRnHM+S)J3ivjGk;>kG-O|0{+<=xOv_6UCBz8l6e3EFnh`sg*MK{k6xt);{nFCqIt
z1i+W4M+k!9orNiEfF!Y9pYmNVA1?;ExA-g!fkD;ZGM{brs;SVy3cCq-z|<FW<@ho#
zrr5lS`M}Qey<+c^f)>x8xYxN73sflv?V*%6U*RQs9_RiVvgd(V&Yw+mD9pD<_RhXn
zq;d~qD!T1$4z$#)U+bsx`^K65sRl~M?}XfRzyjV_qvaxavv9;1R#DimjAq{Y;7Zgh
zWyQIDnCkfGL&;J8hxpyzXSIU-uVDR~&|H2WfLJ@FqcRl4@Y<`PanqH@1G-pnhNw&O
zzV2f^Jb~Ne7w%)3qPJ8K(q9opw0th?5O=_rEv2#fhXz(|o>R=vc*T%j$qYYT0Mos^
z|0xDLZV7EE=2RmVG{yr}4!2An+w(Gil5>_0+q&atAKX!ZIeo>c=_PghYC^W+xD6oT
zh9|9(6C1;#e$Rc@`g2cIG>`tqt0=V}vN<ohOj{_c``usPe2Q;s;tkok3A?1*jk*+^
z;;CkMr_)fp^hR_FN*QWMH2LL+x9Gs@wE3B(F(YF{n8X5<w?NHr70m~`ib<IQaBL0!
zjtUW$%C#G$2`Y!8i<^+}LwD+`_0(DKT(idk<1<3(Df_h#-iX2$&Z6J0QABMRxV<4^
z@3+6ao{}*$g^BSXU)7iX`V?xjuA+#k<KFyL16~gBNcm)SnYjGuITxC~T(x$?%z(kz
zvBZSlYxR+tLCt?A#~C;NZi|Hwl1!H%$mqX2rE2E=*a{b}o&}x3tH>r)Y%0{c1IJ(T
zfu){$S-y&kcBwM*DT)H!1N7<PMP4~JJ3sM%ATPtN)O#D7gv+qrMMM2ebQALAPdh|Z
znAX;gY-ET5^x=;d_3WlZx*o7v5jgl=wI3|8CGtH{|B~7a2@>F(oC(Z#{t~FI-nP*$
zudhS+BxR>sbiomx^0bWCBuZ`d0dGX#@|=FeJ2iA)MdZ>=$Dib1)Ltdnz0c3^+FCAY
zUyAwfTjm$GoksJ4192&m2_sn=)X>!NrfX=`rSl&CZU!}zLteV};$Su1>v?VGHGAUA
z&yTe`+R~+7{ejlPMkfF0I9~DCm?T`-Mr8|t{s@UzMe#Np6kOdXME!?6owI|pjeVio
zCRvAH%6?MTwkM38C3jspS<9Rj+HUO;g0!~5A$K5rNp$Y2MSE`ejyOowZ5G9w?Y6L0
zeb_4>9nHHjA9~fcgkc7-JD;Q2KE4jz?oIHI2-Z7|K{CbC_J~dP20|G)T7KhYSX1ng
z;H^(UL70SFkJ@55H~2S7Q$<@SDo#`wX4qi_du%NJ**XC(`oPCu#m*)}E@(;_X<4dc
zW9R<!F=50y7GUXC-+`YCO|WZpOUN@VV^%3WMQJN|(D6~~kqGZQy}tDri3~x)$<n~d
z(6=R&O_d&*I%G*55}##nEKf=t<I||ouxz+I*p`rSHI}3y!c6Zg=@!i-Cg+zZ8%&m;
z`gOwf&Ukvd5bUM_x6hPls67di28$3uI_#%7slZT2p*(1^27^rT$PBsC%)Y0YJdgd@
zi$Rvb$X!`zvkavuFUY16im8T<8-NupU~?*z3nW$3P0;QA>r0)lh;Zgm0n}3&n&NhY
zaVgZS!;sd)wGjt4-~~4%1u^F9jTKY+?Xs>#XTK@sYLuZg!+||JCF+jC7O%HQ3?i6%
z{1<9+4)=55;n=S=>ivb3B1ZvhI(fa!%t#p_n`>ZZ7co)?;vEhJ+_Q&UkhP$qhL$0g
zc?F`+L};5}0S1o4)z>8zKewS1K_tQSsuEgr1j5LGn>rFB8f;}n3m=3O$WcZ7tK-2<
zs=r+>z<kNhV#)zo<lZgJ-W1Mb2#+Q|&SNlia<CL{s?4!o49&@B=bp~tyRh@V$ma^r
zcW=sX7|O3r^+g-1P~BB)&ddF?p8IGjs8EE#?28zQxwPNDG&QF5cvVBDlN$+8Hzk-H
z%kyOCfy94C6sp4X`PD2ULfPs=S;-*R;@>T6q930|_K}c7K9`9XSO4pDqEc1^qYWV`
zTS{52^k*&|!@XwoJ;Zc8O?}pU%}sLx%y(S0SsrSd2kll$-RA=ll%UvD_W{c?TEX<T
zCK6>h6VcXr{2ol2&72q+taZgk`!@~tSpc-Uqp8xJ7sOa$Tm7JcQKe9Ur-e5fwDh3M
z5?U#G-!)nF9-G>FUD;h#nBxU<@?LqV05`xtpiAcgt-Qy{7fsWX@+CjV@E9LxaurFZ
z>_ir7Y>PGMfGV6ZocmSz*;JG6Rg3jy3f6cy$?HBPWg;De@4yo1^2t7r_>WE?P#qPH
z+YD-AH7Ru&2AkEe<QgatWZ28p5De9etuf`RrLw3s4#|RU)zqMBlrCYGZw0L1O1j3v
zjKtucPzS5snz^MK-ej?OKDck6o?Tycs9HmKALp563ODYy_^`kISVKH>^`b)qcSyqm
zI2GT_WZ(u>4sFc3dfS+DU+Sj?BnAhLt!#YV1WWYSz1Qaxn-2}TZ0zN4D)MitoI#Yx
z3)kImZtiRL-2x@yAYpeY%?}vD770aGElg=-+mp>%C(V!5TKX^HWr)@>$JUA1)~Wlg
zGkvXdZ(A2GTNl~emetx;9ot^Twyoc9d)wEx@wV;5W!olu`?gy9u4DUNZ2SH-`47Q(
zfMH;MEO+Ry8LltRJj?-o%ovgJ$S@f$Q}-wl&3LV%{_j3aYZ$TJ*bXV{Fa$DLZs{9@
zuzww4a!K}uQA<(rJ$9|~C6~ow9<x#U`bQmeJUo7^Ba7{Je}rP`<gH=}JYW$}XBE4p
zAzRk@(8y!$s+hfHiJko&ywHLzQUuN!2m2;lw^c+*V`P5I0yec}41L#S#(}U4;d=9!
zi+fmrF4fsdo;!E+w!?D~9b=;US0K8KQKA#g02E{-6JQE0)DMxgTt=#U5fY+!sjGVA
z<TBGid@&rocl}|nw*|Zykh-$`g3C+^w<LQqRBl}I7c$*l1&Q)jOL}00%x^p^`C1=b
zAlE3yFoqXCF;aEPY|8xVr*s3+$A5jR6v=@zG{lKF{eh=-ny<knc^E{6&P<>G?3?cD
z<3T@1j6c8H7Oms3Fgg~a+mamp3Ui$mz0xOJA}>wpw7cacb@#@=tFm~WOfuUGWZ;f8
zV0qy3icID_6b1>Eqezi~7AnyLO}98?V}=d3%W7N-WFwM&?>tFgQ&greluLW3U?gZ0
z7uNLOAIIj#K|rUpyeI6pcu(?*vJQNR2dH2yrtGRSM47A*`e(>6g#*SJc-%Sk+OpFB
z6Uf+G>C2x)yRe$7&n!tR0`JOHzzpDt0(OPb!O@uEdvOD5@dG6%DbG4pADpNXU!jFo
ztC|Wmz#*YIqUzM{>Pt!L;m?W}e1h=`S|=7-e~Pu6Ycz~kHOxTaSy=5}0c<j(&dHM2
zHlv1}lLj9j3T}b=$cFO1A$K3`i$2tPf1)WvhV_iswxF40J9G@4>v=z-liaUEfkY-<
zWto0q#{SO7h_7O#Yi(~J)b&o#=A0M{33RlPl(@u%xyeKq*_f|{v-1Xa7wrUcmzIKu
zS#R96IK8W`F<bmx*Et;KTC3@S)%%Aq3R#}DZ8AsO>w9}ayFqqmScda1>*O(R;Ru5`
zahojU+|0?GXm`cogvB7pWR6vZl1TO>e6A5RpZ3=*w*|&zv#>|wmUTM6mBlh8YxHUh
zhp(FFUYm~;uwd7<n5|tP-!d6G0DdnL{kPHkMFL6rZ93EA<;Gk-@KflOJ?{52EH?n8
zxx)4<+??(YY>!}eV10+?pGD~#Eq4XI1x~})0m>?Z#CC~+h^C=VgIT$6UC1jpD}0hw
zX&P4J*9)WBl@y;iEEBCB(fZl;3f0o`nXc`n@cdYVhOI9CP{@fK?bOp}+grW*f#5V-
z?4)h&sGnlbT(@@P{n{_@YOy(6^53@mf@|S7?Vi@zJqN$~?{7R`lkLraYu6v_7cBTH
z^t$)hNe1p5@F0j%cw{hA*g|JD^yG!dfYXyLf$~odd$sn8WX_5sL1DV<KVp>CBi2@b
zDQtn&6jE0^Bzo-CR~ob1Kk8O&=|XmFT+WQ|X1!ADU2<6@bA7f4tCe)N`s)V%NiZ|@
zacfn-S>m4l92!xGKQH$4pYRUUlhW@Q<SR+(UD{a4Ho=y7<k{Rr*yeLz;Wo&81U>ZD
zd0%-X-0)Cle?O`IK7QcC9xd--phfVWX6V`bWzjHR!I6&%s^C{%<^{K2&3gwdiK0@u
zPb591g<zZ69}kb;hIvay>}A@xG4uQDSRF1$mH0FbY(Y7Ejc!ifH|$es^?f2qxF3C+
zVA{$2VXoQ^R(6*7V11S384hbmU9=CTqzw95vZ42T8(tM4^Bwq4DBm);Yg#W5O^55$
zyVWyR?w<dSqW4zR&aEM#fd6cF;Y$(Cq}@61PuSbL6tcUELc1<nd$$m=IG6QKPT?CM
z0gmkLQW5wEC46SVo-NrnV1`@adwdM+ZdMX!#FKXtA|Y0DTdB9(*{^!jxqgRmvxJIo
zq!-z4zY~d0Vp&=F96u;zpl28MLUJd%3CYB|13tdfCj?9X9d6O^MIkM`bvCM;qryGv
zar<DnY1%=Sa4Pr<d#x1AF-n;m71JTb;3@ny)=qf%KUgt~+P#v)-ksr^iinGWy^d1K
zuL7E=ZH?pxc+RIo(BrQb?fY3D_G9S|nj5WU?|!K>g`i^g59!+5Cb>KAGLZD*s96bx
zIj&Ttloa3MKLg`Izyt@UAH!|<QLdzo26qNX;(z}I*W7}Ed|5eF?!b?aPKw{Sq<#G$
ziT6oNeo~mcW0%NPn)vlQ5Mgf4kefIj@{_yq=f>?jlsw-aL^73L)x=#6!aum&Vb4X`
z{*0xn+93CC9DDvetzI%}5C1Lk^qo;kOIFI9oVvQf{j|N&Oz$5L3<+VHX%;mECxN@8
z!bek#MDXP88WmWbNKbL&ugT$GQWyKq`>>FJ=zuGvOY|A*k1}qVv&8gNk==B=AE~)`
zQvLo}i&y3?Y1x3M8Q|pKnD)KT1=lIbckWFRACQFi?ID@NGF;F8blLRNp4}ra0Npp$
z)H%f=GS6aqx=Sw&UR;tyw}wQrN*%H$OS5K4#X!;Qm+P*t?2B)BZ;QRo{wPu`t&_92
zZ~f(I&NurfU1Yg0lyXm={8^9YIB(4TyPo!J<nPaYP{LLT+tsst+mT|p-(SeRzxrxL
zV$%f{f6uN}5?D5IHPC-94!_^{<g-%U4ZUUn`#nf;EZFt<Po4_K4T=?EGMzyY$Xl>F
z1$mX|Gzg1QmWr$g7T#oO6SDoes2L5fsR~{fX6F;d)GBz0$Pk;YYuK~dv7f3(g_`v=
z8RP`ln#!o;Zy%n^)(%-T@72OAb(wTA&A9mxOI?BV<ea}M`2|JQl!!*0s$u@5b(c1s
zUERRBkJn-*m|m}lgN5Je8qD_n)4SI{T!)gu^g>SSNA6?kOw!&P>yL-T8mdjDK7shs
zwOfR0nzwNo&C}Th$iJMi3d_??Y_zM4lH(}&()C>3l?4>XgTmWiE@kcpbm@s!Q^8r8
z(sz9u21g<a-afmzx?sohF~k3-2p@Tw`a_!cDS7xMy*d>e170djlfI(i_`8&l-I-rf
zyWHRQhb*F`9p{W6{z+Kf!%Gf)UEeV!`AX;<Rf54}Kh%ECaTq|qR=X2wGaR?6VYE!m
zF9!)f8D&O4k<nymr{TuFqL29zRHFob<F?LZ|L2mu?@!_Qx@p!J)5)U=ar&M)rLS3P
z!eV1|RT>J6Kf03RsZCY3;f`PVk+#5HX$I*7xoT-1#xN7PS%ni5g%#^CQ>Aw_86adw
zp8<qbVCH+hIyJ}mK=OYE#7Bq&2{R_j6A4Dr70(~&DL-O6T%;MpV!S$M$lz~n_JVnU
ziUddKY!z9_fE7B7CRbObRn&ETUlRTv&MujNO-T!;#u1CQcfIDnu2_Z7Q`_Celf5$i
z|6R(TS_r;B4I1+;At|d4qwV97?<P7qbKiMX6*Kes4@<7}TGJ>-IY+*W`0X6MQyevS
z3Z1TjYML0<jlJl4pe%Cdiix!fX~h<~8Bp_>#WmqVcm0u2wdnX(nt0E-N0$7na}QyF
zXe|T!Crq(J6)^U6H~X`0Rc;Z(*YoS>^0vczh)>UjcX`;W7@vx`vkRZf6y{jp>P)3e
z-`YakSikzR$V<P*nvz)mtLB!TOaIm<uVQbtKR>&?)iKH(7tlGY^e3Qe#WpUmqwa{w
z2?5H#0n5+~R<BZR&N6_aKhTK<W&LZsX9CaJus`Yt=&uO%a76t*ew=@l!hmkhd-j-k
z8p#62K-~SX`3iS_yv+Pd+6(Q6@cpaSU=8{At51`h0Mq;%Ifp20aPva+Nr#S1z9=|U
z<U>-(mOt9gWoi8N+Bx@q)h^|zru5nt2GgsNbR-^2fCXTkr$$-s#MiT^jpsI+0JTM4
z2l?MI)9cUdRb8Zn^Z!R^mi~8|XqVfVZxwEq^pazWH)*sWyv{EcY+cG@R0Va&N6CT0
z4Z<LNVtg=?WZd-Tm6wtV3;^v2L;TI5sPpN}-2cIE38UxLS_aYGm*KNmB%Mt~>2U5X
z`dG6YK!qk)Y)Eu`XcM-7=hc|BQo4v>bhVDrF?!G-nP1wEK=$Ja3^*Oc%XyHOV~vIg
z)8UD@F=Np&60>lDg|s*4j;=u^B?raLWRuf}ILi<Oyr|momPQS`RUXu8-7GBy>BYA-
zj*(OYfz38qs49O^A}UeVIap()Fq@(CbUH{T970uo1S$xy%;RQ#gLKA>5LhilO5+h<
z2snO0mp!>q44TneQH}DLnkgQh#bdj4*AWU84_2cWX265Y7D5crA$T#9G^1phZA7ni
zCi}@%XdU4&RAxP#6bu)Ic|pB$y4=0~b8@H_2`3RJByM7#-kaHCwX8U){oKbtF-xc%
zO1dvQZnuYfXhF04aD!?e1*zpp?h*p)T8@)y^D?GY7^{DUk$9`~VG22BkQau!h|6jt
z0w*H8S$)B~pV2tE)a*Jr2j<EdS?*?m`C3?=+$by-XH{sZw$k;qxe&Cdq*R8wH#L;^
zkIGV|I?&4bZcNr))xIJxjb4q-s)I2rfsQL>D(Gg!UgJyOqZ4r%#V@Fz!Ar@gTXbZP
zMf9e9Z3y<^MZaoqIe!xq(gWDo)f_d!^pc@AbxGo=2#l(;oIMH=sfzI>V`f~wf2B9}
zvZeW)0iMcenCU1b9jH5HZ1;boYsOt_gKw|x34@=XRMjntB@!&rt(e3*nQ@VAyArWx
z<}Oj+z-lvoh?N4S`6QiU2Nqg#$%KcQqR?=5^qU{22=LY68b%@oZylctdI(HM*^>yW
zPtBT>8n>;smeXt`mdJzGsGaU`Y;4)uv{23XL=rokZNgbZ6aKX{LmoSRs2=J55Mk=`
ze)LVUS9ra3_hG>IOE-vqsVuT%KUk<cPlM`nG$cbhEeI~V*uAGU?_SPhjh<~h01uPJ
zh$h@o;~FSs=Hp#>n5nr~UNa^q<|qNlGIZeN*eO+7!hw04-B2>nt1+q+x6s0I*6MV;
zX!rZ92}cH`<g5o9|DB{t2lQ_89XWocCss$<cKKW<6m>9_0Z7~<DqRHZ&6L5boWe3E
z?G`1>%L`FrMcC|3)(5{tSiiexd}Q2}c6F#k-4u6Z{A=4BJA}|G39ge&@T2?w#GByu
zgwhPiJ8QX0UiDwF|BaJkm0W6Ai$Jox&7m*z6G2TXcTm+C|4#CvN^M7p0#3uN524`U
zYL+!|>7C%@`r=sJ=Rqdo^gKXQOq!l}et1b2xkj!#T0`r<D1r>HknZ(HgsO?_B30TI
zK8_&_2h+<wi6b;6{zxsPMs~H_gQ0fcC1p+hF45ThHXDC$<%;S;A&=1m>KZpBnbn9t
z=vwvd{qRSKXrNLrnHZAw9I2_l-4qT{x+$3A#M|d>nmnv2#hmlC^<&mlhUSswjo)7+
zWtml{DU0(km22T(G_lpUY^0PL`B_<1u6d^Wt_Exb(U|1h!vxBwc-HqsU-ednhkUzs
zIR<jWCzA6R59KpslKIYUuynD#*G9+i(DnOM|JylvRb{^fvQUf3G0uA}diQnMKF58O
z{04EQWT8qC?ytH(`g8QI+L(}VT>yoL+GCaf)_`{-7VmJ;`pY%!HPNo~CdORoDKxBr
z*#5nvK9A|!J*&y0hr*2VGc*jUI+_fq@f8caqz#6e6sapE%#ajpadq-1I-kmEio0ls
z5&P@ggGbB}+7Tg2_#>k707~Pfh|VJwr92Az@qhm%9L-w6dW1k?n<E&D8rS38oACjh
zhrpRneDsSO&m$ePPSpHeR+Y5FF{h==z4nkoQR4DfZNmAB%;>>E5^ISu>9~c_rcv{9
zTZt45Qew=h;qC79yk}udMsGq^jHyE(X{DcJ?pmSto|C#}GpG?NC&qj(I;fY6d6(3x
z->sC5sI|E^&^`J1VNsyXl;k9yHhM((kNk*}eD_&lKXSi%prd{AmMoBg>|gb>e>)og
zeCd9pM0;5|$q2&|85F;HfvBOPJ^Pk^Rt7o-p{pZVV)f4?V&2fZ%=Q!+svp6be;OtK
z)HH@aho}Z)9*>fKu|Zn+b>v$+2ZQAiZUp#aoqIb248ujI5FO-SL^&P<=pVlJVNdT+
z!&$MGWaH+$XiEv*hYnB04Djt8k8ABS>Z3CVQ;$?D$@GSV9cp#8{K$mQN88S!L_F<u
zTzY9~`u)Ys4%W<06>5h}iUkyzs0tA{nyDL#e=?IYf@g5v)g6tcZ>og07=TsLqV#T5
zxp0zn7OAl`qxoq@{t8va5f!|jL=pwPc_Jd$ocT0^83DsT!3eyo(MjTj<{Xj4y!bGi
z8CD`gT3IBxJ+VUoduv2L3SV8mo_<wvPQ{qjWwuO8R)GG+LF<E|jr$W3pvl(tjP@km
zw=n8X8S4HU(#@fn&(u))g$7rQs#bG`54u>{s%S2TX@s|EUP82%cxkH%1%Hp85*#s<
zPZ%~9X=M+yKSFY%w<ijW=-_YZz8~e(hN~kj3N#odJ8(pG)k*!PoUbxPTo&24%JQHN
z#NRiHS26UzWb*d!kJfoG@Lec9Z_1;7Lysa*(=~A@Qy0R!c<z!_U{?*&7L8d{bNSu%
zM)^Qp2znjAg0D&N;QL10Q0#t;$_p8jX9&fm4Z{_UYw%&AU^SBl6%<Ef8XsCbpu&{W
z+1;kYh#jVe;~trUnC&f!u3nE78v|+HhC|Gb5x6Z=CYr2|$inUN;@)XfbzsTo4JO>Z
zX#y+rH>~ORL$gkXyM8e`LlD-L(~_Pn&V(4#A5P|H<qfgV?#8qA4D*_=NR*y{%19Sg
zXB+1KwKm)ZvgM1?6gj*sjw$clHwT&Gz|J^|KpbTP4w8+ddVqtr;iw02H1jyx_c*$5
zIQoA$7_9{Z*V6ZXj_U=CXH6W8OpR${B}}HHgBR4}k6FiL3rGC!u@f`d6d8B;EqLmL
zr>i*U`3vXLSr(2t^Tn6*W?lqZSPsA@1w1UD_;Y`LLycS{pYa=-WEG}g<oZxm`tg}L
z9!=a*723I={_YOH61$1rRka%4Tt*Zuiwtu=`bw+Z&9jMn$@AW7N|xvJ+EB5T`8%D2
z4mA0DkHsl0Pe)NiHL&E*(lT<J=Y?;z9~CbHKOeIgcoTzFU=t=615qBxRq?j1J+J(p
zU&Z>9Hw{u{yvAS+rcu$I)Vo<_5zJ>JQ_mD*lU!M4-Dsut&t~e23H=eDFMoBWjBU2z
zYFVW<d-3X^+pFa0>K71dpdr1cO_nPA2uCJF3Sa-@yjsRzV9>4RZqch3ymq%@1zaOY
z_JM-+v4a}$mzAj3r1KgSnQc6g6N}H(^{>_Mteri#Gwh?WJ*f2<A(=x3_hvF9`A6J;
zy~=Chfs3qP3C;@=z=D>J>)fGuG@=zvBb1V`ZdSc69Px@Lh1RiCP_KJE05jtJg<D5n
zFIy1fF=M}PSpUbqzRb7Y=YZO8rXS3qF1IW+j8f+i;4YtU2$aYPyU!PqK@kbhNI!kh
zJZINpQx?}p)d6qO6=-aapi^QLJ-Z<??<+!xZY2Fo5lNxG8`l)R)fn2}Ez0;#aKPx^
zeHe*fu6rO8G1bzkSusc}&aYnaz=-yt$J^}tSvhaJr(xayh7rXXuPl9=R`a?O(nT+Z
z#YRZ-3Iy5*+fAdod6k{8>Y46#OR;ifomFu2&{$#VgSRh|#OG;gYD{ZuGDIHr<+gom
zdfc~h)#=D>ZzWFpDq-5%c<;I6u3}j~8DU^sdPq%z*{C%T(YkNb`W@Xio+;5T1Kwxv
zp3Nw0v^1mlz2QLKvE=XE+{QDp{AwG}@qw)2$Gn6I8_}JdY-MZaa^Pb!PHHc-{rkU1
z@6|p&vj4c6ZLON#_NKY*-Au{`ncFM4%twCECcJ&9l&n$nsp!tf>kRxgDi2jHg-F62
zE=zq^%lHAk<~u-s;&o25A*Ys)c5lhc#Y#gL445<=J36HQHe&|;AunQG-p6kGdQ};w
z&m0dtzs4q+nYakiaX`yx&`&!)gr&d!C8Hkmp0KIS@Z<$t{V`vr^iK9uofA6HG}`-Z
z|5ZMwi}S>zgY;&7k@H8iC;l1L7HagA*OPjBd(}}+J+5<hG=uB8Ax~kUde4g*(i495
z&cengTJ?<x6p>S6{t%1Rot68c2|=B7)<B-f8t2l7;^jTveI4a@JWbdZgjKD)B6mF1
zN99F+%4?m-Cr^28ej1>W@50bMtHCKGp9|j+_&DliCx6?+;{!Y2qC(0+7d{i7zcNHx
z+@>>BOtx2C&r|CMc$0II9K|IS+8?K!DEe#B-}+Bk*6HEjqm*0D;NL1rfjt`k)%3=y
z!`&E_5=9}NJBkGL+~|`|?-u2_*##>R;;f%>L{58PirO`&+f4%+BA`tBe^|N;zos7d
zZQwA5Y@-H@7923TyK5Vxdmt%|lt?33#DLKu-Ha}!1w<r9hqNLhjew|tsEFu(e!kE1
zKb+TnUgtXZ{l1hH$Gu!gVII#d(;S5?6dwJMcq~C#-`4PG?fD}Vq(3FKl1&L`;~B<M
zi$m!o{PsZ5c@`&+xt1O_=|`u^j?te=dstalS`49kQ~;LB*ZaYKbZiCLYogbMr;=Y}
zQ{4Imc1UEm$Qy60`&V#j-&@nD5vTg0H0(Y8t+MC2vL%^H@lGetnWCFo-2J`eM$g{5
zD_w{hKJbxpL(%r=uuAieO03PB<O}s(S&z50koL9Ycc~+ts!3g+7@E^w>=nG|<@}%<
z>y4|^E_{02Ox|};)ITWOS3%cv4YyzR1wG!L*6nU@v!>Ckz*WA!>Q5&;^+JOzrEh@+
z1Rsx$$$yWl`@A*^CB2DNUkwJlGrTih)Cw>GErQig0|<a)wWVOf-p)-+8{d})pWha#
zD+9-`X>0eUd7(}}ZSJIPy-3{t?OP#U`SH>7$Pt&%e`N+2k5yg#k5w5z-`8*B0~U1o
zUF8;@il(vlfxoYD76b1%KX`Rf^olmRbKeGYwX<LKW1m8-0r0pqE?^aWThyFVgEHZT
z%C=^=6jv5hi)8<WE&EOM+?VnI9Cl##^ko1&e&7Z13&d}b1}$W@sfD=Eg35sy`o8vw
z-tCq;wdi*dZ_~mJX#Ksl!r;WifeyG#>(HONEA*J-1{ws1A#oh+;#GEepO0F(0;0W;
zc#o|oS;*h@L!>@4>%T=rzN@np<LDjj&n^$Yr39feZAOLVf+aSnB~o%JV1Wi|=`tO!
zX5*-hLMjy=3@bf2?fyZgTf8UvM6TFiDJ}%BnZl*WITH5bK#RUd`>`y>#S-Ur-W-p%
z1+;12tiqjVNSnIiHi@e%#^x#Cg~~$1wRNnf>7N28Zi;2vH;vd}Ar8}>j<Df7S2_W~
zQZCux!h`v8rO{k02JSn0I|cJdyve5z<ML*-m3QK9_7itO%#I8=+YFpr4hl3)%$b8G
zPsTnx9`nc!^D@fzLxeFh>IS8(?Cpnz$%%yb>2XV*!LtF;toOJLn?vu0TgCa}G(gc}
zNik|*5)P}EXo8RTGtcj!9_wsKdZ3%)U}U<hm+&gxnnpjzNcZmhaQZpO(~~3)mkD>j
zvm&LV{ucd0n0#SvXmNOMX?A{Dicy7}!6I4Yrk25%C~3F5eKj4awbPk>8H}3;Mi==s
zzm&ewZ%q;u>n0r--<d^Tmv&V`)0O6dT52=DDb;=VO4sh0tWT$VMx<^<Q?|*C?afAZ
z8clyYr~fF$K3_Ej(7qox_Od6ysO0k$_i2v)O_y_VqhefR=P`ry=fHmG)m;h$zQId`
zzM(*1migSY`Ob7hoSqo@On-)Zkig9LY{Zfz%QBJaRm6<%GPSifXmu(1V_)u?8q*;$
zo%FV;5*x^eu=%_-ePivx!-2Om{o@Z07&eStviE_oSIV=*P3FDVCi}&YhU-jzCz?1g
z0FJPM@48L4VJxSn56_-)oFG^kAFrI;dh(5`;#`yFGF$2!?s^E%-?LYb$0JPRGffBa
zBzbZWavri*PZ-0BAh=m%{0>fd(0CkHr^)M-cQl1VG3fZ<)J<2g&Z3&k`wTIeEh4Uv
zXl<}HnJ;sDp~?H3z-+Nf_}TH{H^I4b<XshVY+Yu#8Uj1ZF4y5YU#XwB?{|4FvQjE^
z>HaxVUWfac>sXe!?+>we9X|iLXg|c?cL#l3X!iXn@u4sB=h^2^KP5K@VyKuT{74s4
z+r%W+|K+f|<5_~1PyPOXE%BFs9@@biLHCKoolCi+r3N<xZFAPR^0zV0NWaekY4GwE
zk45fJf=#B3Rtlt9ysA*n@?@UuU2fLI8<>~|vvpg3JO5rG5Q7iQ*ns$Hm7UR`y68pt
z3H`s_)vB>jGfNXr6Bjw3FtlKbK_n~!qQRH~QiAgxxnxsC1AfHgxEGYS7#L$|#u#G2
zKSnbju;+v`FviGbQ9)q>;~*m>dJzwut?&L<`}HGaUHFlayFn5s*k(SJ0X#S!8?Jm>
zlBTB8QDLUZF+K+ujLb7g)%3vcYCXy(KpxO$1{lb(dY<#~Ec1}&LHW+E5mh>=#Y0?$
z9r{~Y|82OAVUQr$%nh!BM1gQSpYvTEG^S%;D5{uXz{I(pD0s)bD$4*bp>ioym3b>0
z5Jppd!l>Jj@-w3b$3Br+ruFbB1142nZoqds^Kmfr+K&S$eBOOE6WRa`V&L2N#u}7B
zE25I30rC;%!m&-OpD=y5&@tSpcEnnp3KcX`<Xfhhf$#(`wK=3d-=ex|D@pZBkZ(T+
z1H{Bj9|;a2L?J`DTRutjS@%;*ps<-{2PlNnDbDxzHm7;tnO%<=B+^x`;pJBibQKhG
zKWeCV(N3TFza3NPFvG7_16}r=7cj8Y=igAqt20uB0S~KkMbeG-AmX?%=S_6|4bF-z
z*<RWLr7cXOU(x*R6HKr_N>~#3nRrB3?@Of9;c2JxJ@Y*oq+z}@pI(&pTmG#}@CxJW
zet{kXxtckJgr+;XvJjNti$7tgV8Chy_k7g})w_o4!a5>tL)VoGpkT&SREPw&6zY$8
zVgTb=cMM;1&rJa4&X>n@!0N_(4f3eDN|oB)5;jYkP~kN5@Bq_BLB{Hi<{wA_0Kq_x
za=Y|1(pc%s&nE&b{(Hh!4uaBXO($4;J6kj0I!35(HFItWb%UW=@BZeCO^cJnp;hn2
zu!#L4*=(w9nojCks!GMG3*>9Jkc$D=HPU0vze&=JwD9lg$QS>`WJT2jU|#@^sW@JW
z;!HC7B?FSlZZD%xK1TP0CFSFcsFHB5G!^#18>mfPyj4CDB76^!n=#fpAq|XSY~lnP
zzwNO)8KXF0LNnpa;;>Z>4-ctb4vnNC+|ktuG`1zEr%$dYbk_&O!O=`+890pd9EHFo
z%i7=I5~_-*1SC8fhOJ2Y)dU6yL!onQ06dl}o$sNI&LDRd1QUSZz<F8nEnH*>qj!8b
z>Thv<^-59;`s77-$eT1EG-~z7l!yHK=C*5o4Exz_WBGF}xqH`!;s)rS#2^r8xw?d_
z%(m<rAPtx<p~Uc3t$wya<ryi9l~!G$ir;;5t>IAzTC)z|*1j|@AiXLY-8YF2c@JW|
zKZc}-e#6h_rzdtT;{@?v5{ktfzqIX7Z$&u6aIxb;xxb(WgA-_%`Ay~Mb1IRNuLaaD
z_D|m}>eDN^Fbn(aU?5w)Nll4G{Ymj6Wae>*^(6Z`B>`Qs2%@%BN5!Ze{v4oUrYeIl
z+7i>rXK9-iskp1r+_5BC;5{C91uC46;$9;&H(t>G=dJO3p^c*FEEhUz6doo+XRoOv
zkArz?ZE~pO#*HhiiMdQwh38QeAjb)6&w-8_DOM^gj2W<C8(Xti?vrFGhPeCv8;>C?
z?+cgajG_o3Ab28))RNM~ds`r>_@oI`W!@p?^yOUZ14f(qyx<r%F!-?)lEjA%z}a?a
zJ8fA6Bv}yWBT!EOUA)Q7VD_$(BXXeU6C!B3p`$3&5d{7+X_;_^Z7|wxzy#lnJ8L4e
z58|9WSYvGPFhHl`OL6~T(OekF9obf7ukgH}tkLy*oji?rzzXpCxwj<mGcHdn_Ok@9
z2h6+^??1>0Zf78?OzmhRBv1w}kUR#~j?~Q(%$XL*G6nG@=%Jaz&e77(8LEfI$fp=n
z9^4<^t_W7`xHojluhW6&8MPNHx-du<KoN1DuHY`{<F~aQF3T6RTmGmsDIrY0-V-yf
z02CXIXdUUOizuKGXmUOJoi=a9KgVb#z0mM=CX!fpZ?VWxw<jaNVklVUZ@D~*+A)DR
z?P<^ZG<AY$J&p$8J{{7w74v?=;(V!hk6$=V8i2E?;-$CHa~3&r=e+<3KV3E`)~%El
zBa;M%4>+FbU|i66hq3e<gI*{zX9!U6o)`CEaIAM<hU{XvcWS_CGAq?bflAS;B3O_P
znL1*P(7lk`-=PmQw?aZ!c>i2kMm%}HEH)*|p_yyKeO5lipt!3$jPv2ik97A>va6yS
z%=N1u^|_t<bkgIco}v3O)Hv3V*;T>)LG&)Z)WSyt?SU8RW?Vv;se+|NmoeA04--IA
zB!1j2JfDTR;}~Ig4aC$zmCJSTE1;Jb&?6tI&);s-$w8!%Rz$fc9X|Z_V#DgiEwEW<
z25Za;kETe`;5uif-N(<}HMjH_LtbWz%OE_TDVQ}!^-3XbhX+wTTTkRLVov&cZ?fOy
z-c}l{F|&RdcG^GNIzdy~{UdsG(J==a_ZvFkiKb(`4T8ex7#QnvfKhd`>2JqGLQD;t
zY0afDDQV}2dj)8^`d^Ly8UZZUy6~rrk)@`srdjs~w#(IfWpn7x6T)!^%z>(d#b3Vm
zEUL>bdZ3xJ;Bf){KCpj6_CJs_i8?Wm4(kjYQa8I8&T9snob=p);cr?bSdZ0`4C0D)
zrSbfjXJaO0$wjwPlSJU!klJz=%)%b<e2*vEDoAaYUy}hlJqT7c(g~eYOp^S_!@T-y
zd0*>pPzZm<_op{KdHNqHX-=gXB}`F3a8Vi~skTpLsTeyg%qaygT+ABnn0RP}ew<vr
z=jFH2i3%>k=}ESO8`wsea8hyDw?D9{8Gyg1=^gtwfky+69$(FDbiG_B_&NPdWk6kU
zZGyRtrf+>-zZI&4-2J@1DGfY%c#9i%>nmCL)%*>#(VK1^AW54D(m;b(xF9v~+gR=W
zZemXc*~a+fL32Wp{LrO5nr$M9RsbF+jUL`(L+1eC=j8BvptrU_MkSI7pP50J5paKe
zQn-mDm;C0&_swl|>Bl}=+tAsMpqM-%9;Wy=6EkegGC)?$u*j7S3ddBC5w)IzWU7j>
z=dmwXPlaBs2nns+wlZds8M=AufFUN8`sL`fY@tBpN4qApj#L5O#XJ}s$q~rgHS>rF
z{)d_M6U+C>XnC9~no@>ZcFEuM&CtrA8IPRVR!n%U2`IR>??WPA5NF^B0kT36x5iA!
zS$|F`dcSO9l!Dy;6W!#3hR~$MeP%Ty8|3H88iKhQ150(pDk*uRB^Y<Q$)htzfRN%L
zVXT`RZ-wF`H)FFMT_raikannWWtv`Pbqc4l22tTJm0k;}vKqf5{((<p1^dDwovQez
zfeo8RuPe8;9ixoC1~&pJu$w`H*1nELUhx&L6ZA5OiJib2Aq2*=3e7=jAw+5E^<Led
zGATL^lUt=<iZH0D`X`ndc2ybnBaB9?jAjwWD^<oH5GMOoCSMSyKdMasBFwH;n-Svf
zU`PFl@vwd_aVt!qGck~i@*{0E)`UM;D<R|_)D)lK;int!P%u><qjqf>57UcG9gmU2
z!$I~s=y3}>bR1OALIb#n#)Wqh5~A>U8_;+K$m&P6Q|`5talFXf`1Eu(YFF<J1om`z
zGa5IGe4zg?X})Q_Q~*z6Z%ZtyD?!XAmN}A$6;)up>1s4hWgq2a`CHoptbmsUj_|Kf
zq+h_#2O|<WP))4fu68Qg^1LloqqCIctb=~)McqqA9Z|RXlr8zCEw0T5*nYu^#_tbj
zc=kizbrLySLu#t;8G=Ry!ozO6<WK2TP4#w6-RLvyn>LJCG3<XoH5bj|GdcANX!H+a
z8!Q$adh1zgm7*{~J?b_6ECM*=zN5rdq2rhO?7~Qok~Yj57wt;Fs9rPaReVpw__M?K
zQl0*dz2p%u<L%}Q|42c6e4SH<u}%~{N0RA#vNswNscYxi>+iEZ5X(0<oj1v{Z#-Dk
ziDH$NPTbL=(=FyXFpEozj5<URj*LkAJOXuN=-A*NH#BpFmWAuSv!(tBpx26c-H<Qz
zZf<rPf&SG8xs)SbHZA>zCtvLfg(lV&KCO2;HYG(dk%6J)(olf@Epo05ieE-RaVARJ
z3}LLf*&V3gw1rZZFjU9lzm&I{HEef|?)zLu(i^DDX7NnErWKJhZs$5BBX{Q>@?`$L
z9U5VW;|lfR;i2VyXwJs7iImG?o)9KXLPg4NEoX2DMA+CwWYxzruC>-b`+MY2mDL0S
zh_Zj|8O+M!t*e!J?>O^T;=6@m#8Jz`w~fq}0s7l&#!o74S>AILT{*a}d$6eUpb&#z
zGBnTDW*4xpPeaLPN9KP*gGsqMJ!nkC0H)Kju*X7Ao+-BgW^nqt3$sk@#`cY7_X0$R
z1jOuiVH{tuIXSt)jBnbP*~)mA^~H%6d(^lJZ=09)C^IX}y_{fk-{(IF)sZ;iD*?0=
zvep~zx0<0O%;FXST++^UH)ioV9CTTyz3t6%yYq-Up5=wQ*bDERJL~H{)kC5&Rt5XV
zvvj6+gqxO3KHHvH>lx>-O)rH?3$&{^1UZULH|&LHipdVLgIv*$*N(GOS>M3xQ7!D*
z5_K3n8=C8F*uOWnKX83Pp!bfLfIeFQC99SMFuvq<d}#hViGvTWVu|L>I~q^T>hddi
z?2-rH#?I!qgo;CRNe=1XkFNAqGvv{k72?_I#7bJHwOc;u@dBMCb_2b4#N*ZV?dJEM
zz~eLVh0Qg`R<^yB@y$rG%0G*^;x92DzHHOLcLkoE?c-|1O{QWv6f;FfhU$h(>@4ay
zbmusq6|BVRe?*;Fp}iz?zjH*?OMHUg1!zd><=c19NPNyM8dbJI)p6>z7F}A<^+j_S
z;lHMc3-yc73`#sBqi@mGBOd_2U*OUod{CSdDunWq@M?7=Zhc&NnY5Y+8*LTonze<b
zTu*hB%1q<w_Q$;zHkwnG@?z$C=Tfkcxjt9m_knI5@;cv>5Vb51T+x5y$ngGoWQnZu
zi9*^s)$j_9AZZ;1EaB+&lN?&7X8MO92`(IQZSZeyP~Kw3I^+Lv?WpIo@O_}ryd|Lj
zfgaPcR}a{ikJ;C$)^R95N#s5(;BMv~Upp!Ns-69@vz3i;<EUim)SLKgOW-n_0Pea$
z1u6gc9r*WfqdDg$jVA8*pc570?kgDlXT%L=$xUX(a*?^x&*BC^lk$!EYn->?S8D&v
z;7wHV9o=GQR7=qF!mmtYXQpk=YuQ88KHD@|2DFf%<zpFo&t`fH?zM_2C}Rb~zgZRK
zQl0&o34?<D^<p7xuoAXq5>5hgwlJXWV1ppV#6`p;L{!3&PX#Ehg66xiEwbQt=D<7U
zzAdy*l97!duz0=|N&`riZ6{9eD~j??irvx8mZcA3(wdUdruUF2<&*reFL|x<r)#>j
zHM7hk;D}O(e}G#>5Vg{5rE#B|ZhmE26`wjJTIGI-ki4~8?=w`L?45UR+Rr--?-Mmt
zaGC_-*X=m1h7M!qs)>F%)1T*7AfPrI5NUQYj7HotLYS0g=`ePhDt21FL1RO9byWHF
z_T%(Q+4MC!t?$a;4DY=8Sl%X~(<WWsHm}pROy2IF`29@Y{&}bUD|r_fzx{ZpBV79i
z{8pV$rQhaQ+2)kxEYaychr#ob4i1dvEwuAb9LKP{+Z55BB?f0CZ|B8tZ`S45q|bLj
zistJU*9-87%qV+PC2p)JhqC!$bV1cEg^vxv`PA}baqXBE5A^sCeJ#N_-YrLk`r6L1
z`*0yA1%-fTKs&G=AJBwPugmrr|8@cBx{&1BkCFdPZfQuTDE#xzYn<2fx!@^a9&xHL
z8(D-F#ykkW=PTeP-hdg`Kf2C)n}ECXhSr-RsT^w1B|Nc1W9WMn7Vz~s1}%;<BOi#t
z)XHJl6Ct<1dKtTin_TSkFw|l{cW_Z9w<@5Uvdcicg5O+}2LE0B^(jWk$#vRLKlKK7
z%?ki-3znTePx`pnRiNL0UK=%O$cTM|{++a2-N7{ONY2c4|3~t_evAi`Qx7mCu86{q
zBU;&ypVkhODGz`maxM&?P#cx5D|roGDD8FYI_QRG4y61{&ItxGW@@DmhsWjC-9b+G
zrbMh1(?qS%sEPRY3`H~!ro<&5#iTV{5sYx$j5(D(OJ=FdUI&jDZ4X^n6P_v&WO0vW
z(chA+go{nq;K?nIwplRkZYD+-0m4JarW;k}kN_2}>iJ}jyp+GjsdTgMZC-2V*i1}h
z;H1H1$z|#X+D*`G(<|SapP0sHKWobBL|{J{N^<I}-?bQBswKRs<P^?NUaT7qmo1{F
zv%A!Jl1@`<*iQBB!#S<kbF;R;Pa<kd?>Qx&E=7>mmBaRbQIP0z?VO)JCSA10*2|{~
zFLH}~D!%>)q0+BQB$(2OfO4xC&AHha@+KO(JDKPXq4fOD#Yl@r4Fr^Ew4tm<d_Gq?
z<VDFoSLT^f9yX`5;Z3oA@yb$U<Xb>F1VF`b<mRt7`TS^z({`NI9AI#@r-J4NWf-Om
z2^CKbm@epHC#I;b+E~-5J@Wqj6&_Ue8G7PR;CT2Mdu8r;MaeIZau>lw9qHP<<Y;B+
zK@oaXg&HC=dA(a2HL_+><`!Q2@UJ!u(R!nV7@i3P_J6$J#BRzQvVls<dH#ht)!Xd0
zj-|Ny;=-Y*hn1}Q>T(U%dt~22POVXr{6(?knGv&5^Qpzo&FdX>B(b>%ORZtPySgV^
z!MNPVUq4VOW$r(mlXMt+X`mlnEJxnY)FFzhr+PJ;KPuh0Eg7bR|5SAyt9<sCVRdm~
ze)QAuqpe->r5RC7bRwqJ^68$ap7Hqcvwnv^jlP+8rt|Xt-RS?gPZpjyFTfP@)byU{
zP4=0TcQ;e5QCfbAzoQr9n0~WbjU>su^%V2^C7$50Y|~1VnSX4VLrbCnf~_8@!4Pr{
z&O?^5jJZhy2p2ScCE-`J5QE#O$h?`eSez7Zr6uhRPr1Z-eK}!)qPlE7p+dAJpZdX;
zmxY0FiK?NMG@I<UQKI-wOh+PuC&??q#8pnGu08=)YmkXA3?%t1;}9m&-&+{G2aDB0
zFSEOkUh8)-l6P{!QqAqPD0P{W^msW?^i=#3SHe$f5;OxEp$45kPpP!Em@tN%(xw$w
zH4?63unQm0nIh%zA6M)lUjGHM3J*C#eU|?jUtxbZx(=s|4GUxnZW7A8tZB<a*l6zs
zV8E7AfDelz|GHu`+z=x3o=MGyBNjh11PhsFg_8}MxV}fAg;!dApMB|6o7f!Ue5YW0
zbuVYPP%$hUuS)o`yMYS6eJI0=#Aen(%OigqX#v<ph5B%WqS?l2GlnW*n2Gd=#;h1o
zilAx206-sCkrCQEjbs=qVQo*m%733<-cj$S;gBMb06eNX%oto<UHQnD`$oKs9Ks_A
zEtVA82}F)V)`URG1I9_A>f$VeS<i2@h!jG!$gA}qc6$g*4(*s}8BtLXUhTRFKT2-d
z{i!iMhuFbj%*g^D&$^j5KZn|L`}s;S(kF@6UO$dy6;Z#=+u_nva_v0YvIfC3N<|H(
zh7#24rVF!IQ(m(#y^Oq|Qm=sGgLnfjh!$04=Bx=?p0hghiJ4T~@T~ugJdc$t&>uTv
zM)Z1%$I3}oV9$MwBz14-Y!k5h^2~hI(`SJyaDD^uN}g0B<NJUSuDtg_GwQ7CA*Q_x
zRp~}U%WE+$)c@|d%~t*RV&t}^31*+pH)lyWHU>nx+QGV?8j_FlnN>7cfvqx{TI1fc
z`>j>!8`Dxb6EATf@bvm$jxXWv`F(t6y<S2q)4TW(SF5eZ6f1riclm-4%!abVs}_i?
z3uW+nm5p+PE1yhnxf_2F+Kl;o+s~?8P9%Hf>5z;JA-jX0eYHH^lJ&S{guCdtZAN2F
zK1>$E&d0#??zEN5mtUeM6;vWg+3xyK?CXo`vFyD!Yrn~Yb97eTyf7h8uL~fkd%Z`z
z_!?vzSbu));%<s~=nHr^D~s(G4jEVfBKtgN?d`8ZUUi;D*6_}?0@)|S0VxVc9DIzk
zM*nus2hL~?V`6lp8IpdJVWqAR8<RUEYsY6lvc>L8>M6p(@(UJl_dTPZPkI#(?{|#c
zD7!kF(Jb@pq@WGX5y53_!?63q{xIR<aXx0qp@l~p3|EI_c2VZ$sXFP$Ecr)KW)G1c
zE&~PUX6a4J^QPT%09I8o)|G5PW|d0FU-M`NyjxK)w+#cB@na18dpJb;Er>Qqil=h3
zj6|mQi~)m)zSdMS>c5@+<Db6tt*64%Y!mled<4%P1P7Wb@%@)USn27A?6am`u1h{H
zV3=d7R2umuHjiV1IW)0_<}fxPACLaq9<Q1kRoI^8fwaRp*S%gnRDLQv_$`WC78xUK
zJqUg@FyH3>_7#b8F3~KTm&DApjRzTM$DbnyON%pN)be?Q#f5QySlT;dXfU_U6Wv~5
zFj;dI^f~p|JrUd0$>}=DKtW-0qo_r^e`1{Jyw=VGy^{nhGAic0#v$Pt%cQ5Y?fH(C
z<B|Q=Po!OEO@)Lg;g@6}?d#CMg3Op_gn2yTfdt=_yQy}SzOk?Clj6mueR<iHDJPDj
zAk;3Gbb9QIIzJ=ccA7MC;hzQBR}kB6pouJ)VbCGXHQZu+PomSyY!fcW3&>$8DHVP(
z&6eoO`D?lDKt?8Y6kpl5w&i&~K9&O7Qmo8Ray;HObUtb>H&Hq$I6Ij&e;~`NH{h;l
zm5qr5+-CML0x?2K-`JCigLtctg)AIbv9%h^4dyyGz!^{j`f{>#B#7V2kW2#+vMg6Q
zUgK=BRj{6jX=40^vK5qB>2yUmmTfio)cIHml5gcQ4vKi4^dhKBkfB8rpH?lL-*gvN
zJrm>-3v4>ld~&t?)Yw)m5Fu(cb&I9FVENe7)DrLs;jU+T=7)nYzMD5dbQF(>nOily
z3qF)%z8(76&)eR9?E}m68BsKMLphaY6(GGedcyzy@3j`1yyyLt{{AH*i&&%F9s?hJ
z;TTTGPq$cKtS<X^7n9+Uaxu=)cPzqRaeiouVC{>5ehr&Sh|y>X*U!a$eQ;>+^!o$r
zt6$4sAN^W$B9Z>G4v@2)M1dWgDQ>V0f~`;fJ(|u`nruT1xhFVb2N!B5wqf>_lX&I#
zF7%Jt94zpDJ`HBs8dz4Ml}Mnri4j`6&ju=_Knroc?ly;KlhZpufr<jUnD3X5RAt7%
zF)40SD%#MtlB~3d_v`|{E5>eCNT&!Z?6FQM@tLNz-P?Be;B5anrfm`!rkFMQwr)t_
zooqW*MtMT?DidXdGmbkX9;fZ#Ul%Jy$(Mg=qrCVFVd4x7X+QSV4xt67n4J@Ti3wsf
zFLT32zlCx;s?Ci5ny2#pRuuaEV<~&DZ*ZL)Uq_thKMV|ygA>Vrr*OdP3YW`-zug{P
z1ZgUfko8A0@(o<-N7_z0nm<!U3(JzY_;u@7p3jD2vQj@;J29{D-T&T@x1Q~(=(oa9
z5Z1K%;*(2yPgjygB9zU=^i4T{N5sG=)PM(MG^@Q<tu+F-a7nU<MCX<o=?kB0W&UI|
z|8U+Fej_o_gFdBp{VTT*AKPqz>r>)vEE`aVjptN*0J1S~>dt3U;gjxGu)}>*{w4Iw
z7q0=%&2LYCiW@#XiGg8uN9VJt=EQTnn(SrE46<gGQU1ZYI>O%Pv4bO4!J({(ZKj0e
z5wNkkr2NRoJozp!Vo727NAT3m+S0*@(oP@EA8YpMdP}kk--WEy9Wk$zyS*DBuBdt)
zlIqbc;swQ%NoWj;#ixeKKpKB~F9^mJI}s@x^E2&0oe#s|9cO0#Gs_*v;Fmg%(c9&E
zb$iyMbje6q?(y=d;@7v56TgKE^~2|i+>c)J;@_)(4_(e*m$&9~dT*#7F$?5;UQd;}
zX2o~^^~DF-mY-24%`Y!zps)1%-h4lDd>vMsHPHT8iyVU0jXAWR6v1{b<~~^<&cFu)
zu%H#IF>c!SV~}mHa^t)mwq))VZN$;WidM?q#xv7*`)+>><V4CCDl3pAISR7R^nXw2
zpKgCW9e+k9=)wG#_HgL#l?>`4scw?kIMsL8zVNHW(`V^jcb%G&fLYE&0o~tZ@xMt~
zqhR-BVDTncB?egN3>>5vCf;?rG=1hQW!`X?qV^euaZ9?*9A%)HtOcAhc#J|8K#2<o
zsu~K!2ZURE1wKatg9R^Z(ogzsL+;cjs8E#UW<<z9>oX*Sx&o-0eE`yPHc2NEVrIO>
z84#{vNFya}yQJ7HDFydA3a`0e3chrYbj-Z!UBZCS2XU_-#QB(Qia(lw9aN8UNb|7h
z-2zAno1{eocFN9Qd$Cox0S8^9W*DRSin<AqM;~Rg0eg%i*PPNwOG8hrqdP9~UJjXf
zp;HNKOokm5Z14*Vg?vPG^FPyKEE+n7n&%N*7?=qAXO(VvbB3EWpEz1aNrhBOuKQLF
z2FwP6GM81(vp68jPQ{03!TxE`=ZVVMm26g9K~-?(s1f>=K>l)uQSMV#in$*M0N8n#
zt;AmghvCo_P-)6ETgv2GmzLe!$(v&cBa^8;$-G5_0)>e%69#NjcHrMf-(C&ewBGXX
zn@<v{q<5<dy2SJGG{C>qYMncC21{_7%g~EZ*mJn~;!J6td+=Mf-574k&Yx$aAB9(v
z^BDSG0bQ_>XM*aRd~Z-@Au=~81FzFED8NruVgl*Ql0ah=(3AsbTsb&b@Vayry(u|m
zjo?WJ5`-aV9+-Ud!(X-r&Ou0l_IqYM_1?$nZdgY%49RfRM0t=lgOD69`(zc?dh@bx
zWgzNs<|PYe%Tq5kZ^QS^3@7wYkhRhyL^A3aDG!4Cg@uIiwhTY7i^cHq=mN#$nb;mb
zxp$g5`ia~igq2x9e8W@pPixVnF~mrl*_oeyI!hVj0_&}TS!hEnv?_x3MZ$=pmE>Y0
zK|N7giqjNV_>|FUN#$EiPS%-P|2lo1lr#8S-nj41+=~(I$s%w>E8JnSE)Bk9L1}n;
zC>I5*O+8ViCO})5C_7{|z%DW|-@p)w_;*ZZEvR{$Ihb_?>5;5b!lFjQ*?voqEDcu4
zJX+})N>P)bD0v4N!DM@@4KDQz5qw90X9p<?Qy5wNL_+Gy&t%E#4r<Q0sr7n(xMUK}
zXEKAGi%6fK4HuQnH$_j+KGrY}gjLCWbl1%XT;Z4a6$moeDj97)O0$Xr439L@cN?$s
z?XNJ0a~(q5#4s6PV3@2|(}B22&I?=wcPwq2)ax^R+stm@{&Uwi8_7&o0r}u6@x;Jo
z6KisKu3ik|OEci@U81PM1}?~jU%=$lMaXmHyk%+vBmnw}!&d_*vR9Ov@m~!D(`k&E
zYzOE+8oBDNrl<_u<v$skUNB|O8n!d5G~S41i8a=mPPNG6=XVD2naf+q#$ww?t=zv`
zw8pTw0Bpl{eS<nf83C$t{QT3r>fF$eQ5~|RTxM+GQ|iV=3%Ml<r6r5Nv(=8d24uB7
z|F${nvKYP-!N<!iM|o8Ww>GfiEoOFLlDE+8)YA^Ne~5jB{*J)OaUin3+oVhK4oRBu
ziSF;f_6c0oJ1nn<o>(};3@YfYw_ti{Vv__oWQBt6hpTstXdhB)EJjS=jx*0QrVT4;
zCW4Kg7X3k7a0-98#fpugu)8IYPmINlX~m`v*|+=EjCtRQ+0~Y<g6U6`Ph^)X>IhYW
zQs6&q|MA+wUk{NK?4-NMZzEYR2H+#pJ_8~})ZMI1(M}<JlpHQSTKwLE^P(+bqVFVS
zg@$}6biJKUz0P%fATbP>xI3>Qs-!MI&tewYlN{L#7E9d>d+8y&Rx1H{seo_GC_{_|
zpv%X@Q1N(}9`nQBc<3%gRUo^o?nS5%!<$=QlP}J#R4<qLopA-@hnE&N111iU?{I4N
z9q?-|{w$WyXypBFRva26zb4ZO(>z2W(fkH0)^@DmR;wypc)E%t?{>&fl~9!R&(MhQ
zFx$MF@gf}8q4K@6A!FXg$pB_v_xn@^7M;eS${Fr;(qXw_{}QjNfV=OlaUsb7jeIxt
z*C@*;ga;8VDuxR5Cv?bPI*Qi;%*aHG#W$j(6zUltMfRU73r$Ax3_pHj?mtGKo#m;_
zq2w`(a}w!PRqeP{z)z*)6G~#b$qP{wVEq}ZV-wi9toq1<P_-TNiPgAi2iBGt?eR8N
zeJC!0;!jl=f8CE@Dlz^@Y{<j6_>w(yiJ`b?H`y?L6D4zIUSMAxmiH`-@p+f78Bdb7
z;p1*$4DXzE0DrauLFy-cgmKc>nxA)T-y|wiBvrqie%Eb!|MWZNS|Sg>Z9EEM&4c=q
zZxmMhDfdDTaxXwniMI=ZtDt+Nnr9|NX#&|Zo7BrtuJn!GRQxvZs2I-7jZ);`;TK8B
zm;hz5j>ujwFuvZMVfy($c>gxS+~(WThuv)1i;VA-nJ?Tm;=5)2BP_A`zOq)*EI>(<
z{J0)yz7AEKhpSPkM>xr-$GB91-+Hv*<!tE{n_X2{2)i;Kd@M^<ebx3W!4cqNG=!gA
zEmn-ZEfoW~l@ENEki>_C)>XrA{ad)|DR{Rk_TZWqZgg{D6)}B==*<nQMA~XqmU9Xt
z6^Bco50x<3-PSvo>-8@-1^DR>P7A2aVMdD;FGJ02vmYu8sf@z?_Q?iU@tx2>#5LD8
z&&sKStY%prT$?dA`pI2aK4g-%yX-@Do$5roYITmnNHnwOrS$#^1w{MogOyXrSG(_&
zw*Wxd-U!*!cWzQ{4<p7cTCTAs78I-BWPTxEK;iBlCthR+gCc`SlfBtemqn>;_~+~c
zr3rrE>V%ze66wpRTn!bUnM>HIZeJ3m-A60rWnpH=+~zq4Uxy$Y<vaK1@jx=3Jnul!
z*`rpz-!KN%aQEbAshur9U%xlol(Mh<M3im8g;wct^7pCK&MW4;>b+w(5=<aG?d-YR
zRt<+I$oH<m>O4t4D$3U={87qvH){W~Tm;3l*WLDfF5Ow@V$Xa|==wP-Cx5Trr3kfm
zxzJ?)Z+#>@%Jx~~?FW{sagJ+6Q*`F1D&A?F_U7dEl7hX`y7n#h%=7oVhJX2|i9e9x
zd>S|vyHAFLQl;<;i5>l}qE3v5dduzCr5)F)fVS{qt*yR_%nfAVI%iX0xZ3sWs&I#@
z7NfyWb-tt)idvrx<^&`&W($mShFA=GV(Oht)JATqNol-K-K@)&xf(Rbr}^~h{_EyW
z6_ZOkz@NbrUA^Mz5?$%^QU$lieeuO9AXWT(Fi>&eWqQoyK?Bv&!_9;==G7`&$pn_V
zFtNJ0TY6S5y<^|VC~;(}GGh<v^?2E<aKP(f76sE*Aj3-DX?CF=4-e_3;u-lbf-zw5
zCRMntpCJtY+Pg;@syh{3H$_c&MY5OWE}61Qco8>aApm9;In0vL9k1*ge+HS%^qQ<^
z#_qrWja*-nB@Sd>p9kwD2#pGi2fSvzyMP)Wr=6GpUo|^ABxFL~{=DBc-dcolAoP#E
zA(0bHZZ*hh_^2!SjD${*rN+O<QAEhPzT>=1lk%*LiK$9|PF(vQb<L;cD*Jt0rG2@&
z5)!h`@46N@5%--p?-Awo${~X{6t;z2r42RN7wY)|4CS8un8L$JT4mnz`rIJaqIC|f
zjQY|nWXY_sn_i`_J{eTE0&KD6TQ>U*yTzOJa#pjqcm-S{7hjrBVN1vDEc0kbkPUnw
z>?$a^mwM<?ugU`}t!;=e>eH7EDJ_F?FH0k9Su~E%)Rm?w4x=k|sh*os-`aF@-*9Z$
z_$XXpfy-;w*j8`<sC#|$_1(<Rs)V4=>m+Pv;(Gm;^(M?)xh0M8j7^Bg+Jnu%2ofmu
zi)QTH`%(kCMk@83&lOcq4~`oDE;VQM%D0GodCq(Krt75V_DSg87YZCki`eKKAq#l?
zez&1v`_tE%xUaFhr}SoyF7sz=q3>0kL_`|D%$I(*-}o-O-NDP-IW71@JNbD5+U}O-
z_@Q-G=*G{-H!c<_dy;(pUf;gRnX0wq`x&eGkqr6-Q}(OU>9Tf1e_Zq>%Z6XmMqjx*
zT|nWb%LYA$T=iAi)zrq->l=R-o&LNj`?I$3XXD1-9jCt^%l>}a`1|z+>6;VjXBp}D
z28nzqb|4x^&7p>usu+r+;Z%75k|q!nVWM_@c<IW~RA6=a=6FjIEc#(alv<)pHEA+O
zOdXH#ZsUPy%TbQ_DYx&>;JJnWpKh8f>J%wduwcqfU`gfmfXFv2)ngm&UM9&mt~9eZ
zqM2Y;Il}Z>{VZrgLMB}Be_-jyN^L}J!}TiPq<KBO|JJ1X0nQwP_gZe_!s9ZxM<Uhb
zTxcSswtKH_AV1X4$?TNGy}=xFhJPvVyH7bA-E={(-ReFwi9pwxcPxmR59AvEuDIF4
zSdI4G9h>)i%4nOn_i$keo{BhwiC}etz?l3vsmlvpX&!AWJvO;7h20mYyHiD)=^8I1
zlaiS1G^b(9LiEA}@*}q9Y`Eq8J``;Z5s9sGO>zf-we{rY>qyoaOur8Q!${SD<xxNm
zJt(*q9b16xKO8H24B(m9OXT-gVswn9VdUWxrQ>Cffyn5Y@zoB*yCr~D@qB)Y54)Wn
z!>%bgM+22@AUH-ktWG*kijkHFIH6nikU=@$-q6P6yc8{j`<RgS$=r71p^$JM17mIZ
zcEXL?I@g7~6j=7Ab9FKDiC>*FrY7gpAFx+>44r{j#i#n1V(W&Bt!U^l7zYrk<`*Jr
z;quQIAhpxVX2P)-m>sRk6n?Xq5Aq@Z?%BD4_!!qN{`%^9Y$TMgo^6*IdMyHS^t1wr
zoqR^2qjK0pSA7&+Qw))7XsWgLJl6Vm3x9yJ$B;tBE&E?`9CW04)-x2crCKC8Al~AK
z^5$ve2{B<3iUg55wNKH{mpPK|_FsOPy8G%P%WNp-aKRAS`<Ql@3oM;E@a3^dz<t&P
zZnFvlZ7NkC*3Oe(4C302Ak}8A{`uaFO3rYx45nm*<GGP}cL%eFDJ<E($QztQ0Uc$&
zU72Y}ff{rSk#IaXPDS22iNos~wW3$;u3ARUk&w=OQ$=h*FICCpiS{in2PjxS>ZREb
zwW69C#3ZA*g30s&QEHW;Xz5&A$l0??%du?aX}58+VFuI`(YV<b*ZnEF78t=#pwg3a
zY<-nwY7()R>y$Qs9pcYD^Po*cuc$Jrj>MRHt13_C7(U;`m@2He3{*9y(4WU^MNCh(
zXK;5bXT;8LYRt`0N+TPnV#>FnUxh_MeeqWJC<BpB3MSC8-i7Nk->JY~Pc0zAeJ_8~
z7~cp>n7qHK`h`dzqJ~VFUNis9{r=1O%Z!HE-cJ<fwhvE*HaB|d9L2+0ei#2aho-`=
zqC*>mQkjaGXw`Rl=>7Pj;R=e7uAVWCDp|)z3)lFsT^d2^&E^OON{oON_pq}{C+(^z
z2xW5&^aFz<Rdqmbv|P02yjS_gIg7eV#8Yu6atFpoc>}~jUwBPM*0>!=ZCXDt3EM<q
zep9KiK{f<7=fpz`H*@AX=_m_TNtBSjpnUTJG^kQb2MmlU95Hf-M13200+0JQ5QY-D
znR1z|1G%0VZP^qjWpn>JAlF)=i-cA1y}Oo`<RLC`UxCRw`^O@vOnUwicXySrOg&VW
z1*h55<JNZ8J@$e8EM=apO8WtYM6$ySg^wSWb3;ipy8=m1Sh&Ht{ucgwq*a{?utWZM
z7$m4S2y4hN;(nK3W}X7jNHmOtS&$85$D844Ls)j(f>CTf5OiI2dIy;Klsb$mZ8$`a
zyMF=5gXLlF{3O6$>4K3HNG?Uf$?2?G(a{-<yfsox4Bj_YG0-8!uLR4}r=WSfK?nin
z0U2dnz};8&5l-JZ2q5(#+b+Er`GmDb+AuCPnDR88Yg->O6?EhHUV7Es*RI#X9+BtP
z_%Y|Wx=(su@&@E!v)Xs6422S*d5k8^QU6Y+p%Y@iA12nDq%tDoeKJ6Mqcz+E^(J|>
z<@p>qpn&?svQ}YN9vJOOq0HMn*K6I`FPBR_;pGqQMpGqP!JT4R9&q2Dqm5ju<m1u4
zH^(YxReWT~x3>@jTEGq7SqhwoH&Oj9PkPlSTizk(gA^%J6;?VZK|0qlQZFQUVM98b
z?lk*4-Di2Nf~lOx13EEh;;MA!@Y>B|o&Ppg)jq*~o}xsq1@~`)MJacWhDA(HD=qZG
zd#lIU0>i^e@7GI^cWX~dO_MR}hiS0xp=Rc@zWAljf0BTa-4m+qIG&fC;qb5WporQo
z>sW_3-Q(+D?23Lne5)|xyU9oNSD#yp?vwPY6J3sGQhSs5wi6EOo5&-EW7~4J2U1SH
zzV^Al1`S`K=P=rBKF7!<!_EBD+V1!Vt0p1cg*f_C@2-Y~&pox9=t$zj?{|UM;M5W0
zXznGkP(AyuzI#g5oA37_-Yr5DtNyhE*wk~z)L|OrqlX<fwug&&tG5^M)Pc6#y`Kq|
zAeWi1%cVvQV$UVP$<Ge&92Qd#VUu=$X$CyfD|i^}sTL$c=`uRElYK3#QGRuzTJ-3a
z8BhPe{I8(y=98doY8jUp_?%Y!NPrVHawjH$=GFV@Abhal4WYf;CA<`OB(~hVV=In`
z*T~;x>1J)4Tw3$ib$`ploQ<WQ<hR$0x3#9H9=ivRXfF{%vP{*BO?h43E!8krD(doB
z+7!UYEaNUXGKHdrzL(Jcwtz7#e7^fFJ|rcr*r?;B@iVn7{ZI+K1-%7CLKm??idIA~
zs6zwRo~Gd_ZgJ|TW;W^<y<7COM<jP8y%H<l;^=$V$-H~~LcshkLos5t$?l~W{C#pw
zzr1!-MuI?|sMoxf4o!q|Msi~=56*@X>8D=&z9y!<qF=87RkT6iZylo$CZcju&#Ocq
zk`7s-`7vd8f{?|mQVva#%Qv<`cQ|m6)Ri?6OaoT??E`}sA0pqVYsEZE7Xtg40>-MK
z=xBGY@jFI(Gg*<hV~&e?@81}I&o}hlqgvg~RT3X{VEiT-cJBzZ#TLxO9~$p4bCmsB
zDNZr%N7`bM-@BS835s>Q#hlBcM@&SZG%BJ|akoTeNZCJO2fw~jdkp=BddcJQ%7qC*
z*%+m~_?Z4`lWIfzBc_cFMY_zyNuxOCKWdu|?x|G)UhOD^zL08y9xR4m9;E&@FM4>k
zvHIu7BrPYrbPs-1@sfy8di*uu_yI1XoX9=b|GArVR2@N2NpCt~`&C{(4ZyG3N_qft
zgX)e#3lyM5@lu7lx7{tBsLpKoErSS(jKZ6;@gs2E-G}sBLYKJ!d2IAVIBX@{Ry{%L
zycQ}{4#6WR!%lrA<w6Y6fa>zlp@dlFx>$70e+VcR3RBqy2A!xn?nd$|Ks53JXFx$j
zH6#^IY0egRvc-uz(NbFRAVvQh?v#4}TE!JTE?nZiRy{gr2^T)WSt!K;Pfhft9{GFT
zeYF5=kb;=Pf&ZA4GC`<uE@!Y!LU?|H_mg;^w|);U49tV#QkjGu4&t1Jpsd+cK5TI=
zN*WI5CJ_TVk27(>EjX(=octN5Z8gq_jY-HkF()UHZXSrT!6^=sqOO0u&mIP?ISH-q
z6yVbh8fSH_?=-9C=ai0)ua|<PN<m^<ZnB=5RKo2Rs91FK?GYIehXbHLz>Lxb57ov^
z;DBF=LelsfVMs1xEy~IkNaFL@kNC7hFJ+}Fc<N@n`G|7yc1k)DKwSl|o3mluVoqT(
zyVtGq>)zd!Q}=*w=-;|9(5WMJYq|-GSxtGuTU5s0m~orAl0uDDCnmGn4Ng6wTpXHt
z%_XA{kr7v^E*)}5#7q3mwHx2ZRm2r7Ojs3u9AteR^V&>+GBBo7<0Imklgq53{2B1i
zN}inxF}&84oCJ6^nQt}Of23$6;t@MJN(KSqtxK*GAOVvVAOrkvz|&0VDNt|Ku{)1b
ztxH+;P4rP+uJ1(d<CrWK9$@x8#=F1N^`eqB7bU|ApeSYD@SePT!jB{MuLl-DyY=!v
zRY(P~GeBYu35+_AwS3tF6`3*tmZNz)!3B5f3yLNRN)8LkY~9IYA1YB6R(luLCKlG$
z7dCoB!506MH=QBd#KKPRqUZk|y%#m_{fBIB=2AWCDH_%<9`P<7ODvwKFP@qxo;fUj
z4KA4%E?LwsS@te@lUTA^U$Qn)vVK^y0WRGVF5S^D-SaLzc*|tA1@n$5g|?Q8Q>Y&6
zGbn2_o!QDIDYI(vz~awJI~mG^GE4KBNaaVTOxn_SDH_Bt5;bD9@)q291%~phq6~wf
z{-Egc%eVQEEg(&=B<H(wMs2{aam4*oSS&B)K^23+pz%i*0z{vnsO?4n4&=O8M%&8i
zBF!=u$l|@l&hm|=f`=nDjx}|VRTJVKomrsj!v@S`tCMC-mo|#Wuv1pBCo_awHLw*A
zRx0$wU_>~ow%h_?BAezFYQdasl#E>roL(xAJSL(2<kyE>(mra}Xt%SiN!N-8*F<nI
zC_<QLPOs1NKo`xq-UQmd8{`^FRQEUF4&b={bG!B^!iGlM4rYEM?u4q~l4>p6oE-(q
zOw4$~!BEm0NntIN17UO+s|J{pY9nJg@EGn&7K!3GPRfb~$b7>Dq5iR%;Jw_+1RW!)
zd498b!DvbZ&)E%h5KlBy_M>w+1E7)GoJU8-lVeDRHn2$v!%LsUoA!-Y{ESz6q3PNn
zpE_gsULl_jC9jQ8^P~^rYaU{55@7=1$77pr4%K+(JR2%Bx&;vUQP2D{(z2nPElo?M
zLy-Xl%KI}3^BEFYViUZ5Qv{VDXx1ahAl-C$%0JE^5Ix*tmf1Rt!uFh3P?_IoG=OH_
z6e*v4CS(|#lE+?SAXEoobc%-pM4?e+AO=D^A9IrpPb2#&szlyG;rD}Y<^rHC_-S1G
z_n|thi)6L7SQ}DioInx-4vI1z<czq9jJbN;^o2GDH7{_8GBw6@#fU!7>l|VfgUxq^
zS$2gX+NoSR8y5^`W1w>Ok|{Ah!V|Te6)j{cUGa>a<j?J|^AWy(d%mwNu^%IGv>=r(
z8;j?WO!6VbCUfHf;{3i&0zx*qLv6u_KG`bIV+hYV2P47e-FdaWrku>$$qcCbO14?O
zpw?b0d_>da^K&+-q9g#2&(|e3?Disy<2f`PrT7ISkI0kO;)5dHZf``ZVuqo!FH|XN
zWUlW#RCjALSJr0`_8)4K?X!L`B^sSrlq{www<y}KN6|R0Dn0oL3i3+IKYek>T;AZt
zGj_(lq2#b{0;J?KMFnW4BFWduw_V<!LeUtWcVe%o80uV4X7ydw+SfzAG!8%`rp}cm
zA2cjaW(0s-y~-B48!fAJ<f?>6h3HzvpS^iCeS3gOy1-s`;O`5?w>yK9?-lOK4teYh
zf+~k27hh1IoaO-okia$?9#9fxFV)bXc1l=eFfo0cC>=ZC=k;%X4wt#~-HB$eizK>M
zmV4Fq1T(#&iq^81CH|a(Qnt&xSPrwd*%;5|w{VX9y3hJ>*p?Oe2w^rFOs))W?J(jP
z=Pp+^>9W_>x39ERIezOr0nobqh8MwI?{HJyOTNz=q;bgfa@bPs^CGlpT8%vj@;bIh
zeE8|>`=tBfwYS9M9=cWYHJ(iNR6g3|^Wh$y2sodRYIHssM&>nj-(i?g9Msg_(Hu^B
z(W5;vUNO#5t3|V`1x0AXvUymm;Ot9Kg{5)j4r`tz6dx9;?(Q($I{ivba{!f6N%SDK
ztB?bGkprlDXZyiyem%H%mYS-7GV1lhbl%Ttbu=f!9l4`cdo5R$RSu@Rd#_dpY8)a~
zv@`wVtrk=|rxAq$xy_WIWQqjl=N~97PAmMmLT)`k`n{v-_`#Z?&{}Q@O_)|jq3s@N
zsq9@q_4{Hz`08%svg@>rd7Gb*)aKDJ9pTNH1~OS`^~K~DQ0AAf#bc+rDqgc1x5>OD
zsdTt#vk`mVsCwo;nDtT%))@7oiiZmR6O(q-Z$6yy<8u_s$fN<hxSOZ)IpuZQAWDO1
zJLe0f{$pT<81I={mdMumF{q<@szWIh{Q+mXNfhf3F+7Ip24i(=-1X{V2~^z%F=)Me
zA$q_HJzbA7f;;pNRc4Mmv=nG?P1>xyi>oZVyZohoHCC^VsQVbE*Bk<s0{<TXia>S0
zxSUi=zl2MAyGy;aMvWa|1Tjp@QrO2-X3E4&&IC;xHceP-P1v-BlxR=i<b0z*o8)AD
z=afz_b1KE%5b3-$xU<{BU2~>zO<_5>vs4I#z`#k+2+dT)f)G#h#AU~=aml?*@=aOj
zH2)Lc-4F#8S|#EE3Z;7~dvxw$O!=Km`<<i%N8j>9Pn{Co*(4VTq~FVJJIyUk)P&!$
z<=^V$m%ia0U&1ay{o%W(OoDB^@1z)RLyO?sxh|{MrLqd>E!|?~MGJm;8P4A!7hl*t
zPUSRkFa88Eo)Pa9;r8ti<qb>_Uf&a*OGb|5dsyMqO(Cm*$qSLjR;)#XjjbX_I48ar
zHh4`I-YKRq3dxiLc_2SQD|Xc6<haCtjnGg3#98k&W+<TLvXr|YCZY;RErUf_%GWU>
z1rk`rEGe~8VtsGu15+{uRG+fwH`VB>)Kk~$1d~qb_GPq=hF&tRR8!SdPnA_t)&E1K
z4sxD8vR_&0U3KX+84bsXFrS_g{})nn#a060R&<u@niRNCr*U~T>mKJ<OA}Z(2U;Cf
z=$V%&8&k!Ml@T`bJXHXhs2~?`RVAKkf&xg-3sD~;;wYgKS(c}1D5zJ@8|`w%5Tk1`
zvoTt;a^M3|Y!4ym9)MTxN9)Q??t_zm?P4bRzC6e1lLm3`GQC*rj>M+s8xvw!Zg%hI
z3oWy)@C%Q!ejIKI0v`^-S@$mRkWT9uA2x>tAMZr*==)QXz8B*TS^ln&hb~tvuS5QB
z^6!^1@AOxG;t->gp%2mJM2Ygd$M8$?@c&L(2GwMebSkn+2&zC$+K%X#mH$~q%vqX)
za6DfTgWM30Lsx>{V$e1c22BtUrV;lw5c`!~$rZl#1z^xMJK-f=)>T|-?_V0?UDqlF
za9>^a6<nmYV4+Uh88Tl32VY|~__+jMeQ&b*HTV6MHf=9pSv|k@Blc&%M1Q|Kk6ih@
z#aY3Q5FUT67iR3%$YBpjlrCn0QAJ{5OKX0-<$l&f>_!L%viS%GF9|X{^6UA1j_=VB
zhM;d@t_BFLpKJ1$%4Dfy_c8CL;rsS}Ou;|P2C-rYv0=mGUllei?q2ZbJ`lr?FvX7$
zso)>RH5NiJcE%Smv`cV2=@2%Zw*!Xz4Xua3pZ(Z(x+7L%<ko<(nEw!Y5BC63#e)Yu
z(NGLTm{6fYLZcL(8Z@xr!G#|3L~DYOL^M4EOF2x)=u}0L9)Lv4Q&MF?l1QRSQCTt7
z91ng{nerfHl}C^WMItN}O-MyQ(NZ)@g@j?xfe;6dDwJ?z#DrC%l{}d;W=SVTw+`$I
zlVp>Z357&+lC$htm_ehxh0ACl3c7Xcenp7llqre>8!?iCcHp2!3s?P7hys;d4@Xy}
z`1&_+S`UN={y8N?^F=8@@Xp=aHzA5>h$~w4O!DwnRe(M#Y@ImtXUT#q7xti-v17;x
zUG{nXIjlmraNjca5LhfKtsaUSM-H~^XuEb5k`;@vU~dl_oBw;TDtcfvstAjch<P?G
zTeV_SFnU|63i^S8wO*v0yZYU&jX(|u%DA`&B19F1{xB#Z02RuE5K~Y|B^o~nOl2$V
z6xvQBl<M2iBHOk?#k7S;gUN|i4hjsiQpy{skE=erFrf?w^6o1_DkO<Kh0Y_$D;hf-
zD7=zlM998@@WYFdh(?*is3=OgZaRe)MChWS5RwqD6h5p76+#v&P@zIzM2JX<eC!U$
zfxN8fz4+#<QmBNo3=T{j>wIoN4{j{U$~h<WK*xl5{EQG(>g<suD!)?F116n>GEf$4
ziiW;Ya3U(2pimJn&*KJC1yC#}mEz8d3`JBr?qcdHzyF2IRIfc*O=$!PTW`HmK;u3`
z!4$p}5(E`hnrlQ5!$dq1qrB*hDcE5VDi%~-qcIS#UVlAJ*=$p*XtkJ1!41!FbMsZa
zW`!lzSPwIri&;lep)Xagq#TIWTX9V&6}hB15g~i;MdC_?7M=F3D6>10yNx<RNJxdE
z`Et-o(-Vw6_7DOhkDyBFt0+`Z;b_i+BkQS=k^HR{;48zFxC901HK~+T@{qy_CsHwu
zkey;OvqyzP9>`;m8ICNv(WdJyMdv0h1XH|vo-s|LRnoa6h<BVg>V>OHa4eW9{TS%4
z{4j-tRY*9c3OOe2Svpsf6*y2)W7_iVgs9LqA^(;U8f51(Vb)q~5AbHUqKr4D$WJWi
zPPJ-8|Gjr*zZX(`JV39OINq;Z5-2#9Drz-2vdu<YZK^OgZ(`?|lDLtsSce>64^o*_
zP~X&TDVomf>}pk&lpB)XSS>CKRYh$^9{JB4NyS{eku!UDguF#akjXtjWm1x!*Jzc_
zkw_x^B#M$kDZH3B7okxOB?+~Xs4t23ROLqq{ouH#(ffg{S19|2zn0gOU}n6M6eR_t
zz}=qMr;<e_&w&TS5Sq63KXdttAtzJG@YVuAtB8sbg2+Q2%r`IxDz861>B{a12qrQO
zq!6a^z@h}93el*-G#446*AV724H4~wA^*(bRuIIkqwP>>D@sTTRxvdT0ZxK~>r*s>
z=r5-c=wyMLn!_s6wjYY{HOeW>9~c3M?|7hX$@yC4<fbJqDTG$1YN2x?^|u{jF(Gf<
zN(bTgrvN5viZ)sx<)lawHPXp~dcz=Xs)(1*Ed+R9d`TF`sFgz^gb*0~2uX@^5Ua3g
zg$i*5Q?{hN{wz{BXkwMSAcznR!h}6mL73(OXcfDyDO`C-g)BV)KM&={C1orLDsGv}
zZ2hr)ZA{2X7{@gtDukCL07SgHLKCUPjYiQNSTv{!9%NRtOT(lOk_Ph2x#+8p41^gh
zrJ|6tz$b_5)W|{>^)x5`EQ?)B2>)kTS(>f1QdTLD-bPH5gh8HDA^u57BNhlx8d*|G
zLQut|7G;V#a?><t8CMEq3AHCOjG)Gh2?|sZvHA#vL<%`#c}O6$^aZbu9sLSMlNip2
z@{@-@x@Swx2(ynOYD<ks$rGY6iXEP@E6Xh8GD%W5k_09SaLmq8SE(JCa_FfG0jN}L
zn$&a36d@Y@3PZcI&y3PEZgkS;K+b|Jyv#EujTE3#Rr1rI4pl5^Rf~u+nJM}ps5xSd
zmy7a)ph=;iaEb!pR(kgtRj6VPRA7Xtn&1RENXQB1^XJ7z;n)-ip$e)1>1R@)ibhDm
zw5H8ZU<l!ai)=F?yi`mos{eolDtt_*D1{hnwRz0YCXuwKMQuK#k%W@CPc>|9f+|Mw
z1R+cz6^Zl+%#yp@=05kUzXk5wg0e$2uC}##fzWJg%c=dL1h}TX?N?A>vy0@xW_{W0
z96I~iAT}Zz<9Z5bJqy~ouooroeHvvgJ3>2Bup*}Lo)DyP3V8LiVjF~siwGeF1>4tr
zqfNyq{4)qD7!;w|++BR<%ildk0~NDf@MHR`TlYGFB7#5(3WRVGn|g?-tW5>(CR<rQ
zT$ZZ#90-OrJPHnfrm~E<>_sMY(u5q55lCnP6-KcN?hZ-7JtlBfw{npi;}UlWu7ZLY
zOrHV=37-ks@qn+J;r|VH7%vf0%0}cgkThd?A&q@(WcRo@HrCPuji{*JRDp^)IH3xu
zASRu!?Bj&>5L$soh=eID1q<)lat7sc&Af~k5$|_|nZ~iYxLU6SFSx;YVqHl{V6#D>
z#R-Q6m17|**M-12O>_1Dn8keR)oD_7e~!jg9i?CT(g@L2aDpFB5m7hl?pvw;%3|>%
z1y#JI5yX9pfEbh6>5$+Lt9Z+a4Qdr#vB<g6&|kOMniKdOr<pN1ce;y-7jg@TMW%qR
zLX4~Kg$TjE$MKz`zUJ?^aHrnJnbar%7;ovZJ1*P;*|e<5yJ_Xe+u$~F!_mmyi-&u6
zUD1`F7ou?J{Qua|23|-B2mzNy1iT{L7E2XQ0hdzb2L+`7L>~Yl2>a5SHmp-9eL9|T
zOM-Uh(Ky8jK`tQ5kYMF+8ATIPF*hkhd=-L-7s>T>Q>o1b=Q`)PDpm4?qn|=6OfHgF
zibK2JDn#p_YBWwiQ}wr8JzgqjId{s;&GfxJ8pyeM&UfDPB;Cor3Gutpl2h&bVtdqE
zVd|@*F$IzkqQ?;*Mcfi^a=Gu6^6fjirt<UnKGGfCSjWrI#oc79quxVj6&2pC?eeco
z<|_mhP`;^cZESCa5r%J}?C-m(y)J}Mxe?ZtR4+XtxMdV6I7L(tpV+jEd|tFK$;1sR
zg!CG;-~Xv10TOhH7wvoB{I3yzNwDvM^!qe}s&4=J`^bG&XR!P74`BH3ADr;J4DpQn
z0~o?Tvk(uK(TqAlf%vP41T?=<06+l@sr4Jc37iXK(mx7xy9dO;?=!zG$%7{V!6%@P
zCQv-Xk-*m=!L8`O4P3ysBMJH=2?nf_3k;w_us%d7zx+dj{Zlnvf<dghtrPSB8~h3q
z2*D?~2q9#_C1k=TbiyZu!YGu&DU`wzP?JA{G$-5}D#QybEF(bU!Y~v=FFdF$6vMAj
zqE%2sHO#>?bi+4<!#I?~7hJ<NRKhvL!#vc(J><haWWkjyggmGMJuro&pu#QOLqHTn
zLjN>GKXk<4P{ctjL>GL-O0>jF#KcV0#7*SHPV~f23?L@}ghD8mJQzPGoC8wILs29}
z5IRLr>_b*8#aD#ITC~Mm#Km0H#a-mZUi8IZ1jb+##$hDJVl>8MM8;%P#${y2W^~49
zgvMx;#%ZL+YP7~{#KvsY#%<)rZuG`)1jld`$8jXbax}+tM8|Yg$8}`KcC1Ay;K6Yd
zi$0)4cl5+6m`6%P0YTtLL8!+*+Q)wU$0m!%gg}Bmh%8upM0{+Kfov*4=stKHMkf%2
zHl)IXOvvECNIy_Wi5!i7^v5Pdfkq(7lI)G6C`pnmNO@sM51>bTgvnd9iUeXoRsX<=
zlb}f?(1Q=M8x+U`M$m)wL4rZhIQAO^Qvi(M@JXQ5DJNirJ7m9|6a-g60!FaPt4vA~
z#7eAOm7&zQpWI4H1WT;UA)Vw&rTodDT!^7WN`#q%t+YyHu}PDN2AV7h6d(jbu&*i`
zK)lpT>QjlCM3lg21V3;Dz|_OJ#7R1X%d0%W<2xq1>_s(lL&7vn#B8$rx=e%-%+bip
zy==lQDTF^D%|D<B6e!I<SUIQ+AjPc9n1szrw94#5GABd@hu9L=NV`%H1XI|pyeNh2
zxrtQ~f~Q-zt|$dPP&nYQmf#$O;j9R>DX7}hl-~SJ_De~VDT|>Tgh5a^CI9Kp-YCwu
zST~c&%k!i}^E^*N7@@%6P2Y5_kaAAw%%<dA&W2e}LVypF!XDg=2HiX*zNA36>ZjUN
z%GV4Uhjhc+Y>fXLr|$I5zk|@n{IwS}&|sv@;FwMMBMsc~1ARo$n#ds`xKIHSQ2dKL
zbYe|;VbI)+%@^%MRglan3>8_K3slICl@k~TIS9Rojui=vbsGhzSvgwNn_uzKiU5SS
z&_^6~sPg;0h1fTs7=$2Qh*DTLyui{JbW#GrwV2@1+&G2k7*dBiMK!9?iwV#tB+v;A
z3<Z_LH2s<>-3rKT#teN88O6Uh9n9$rjy6TnZW5psO%*vkQ5Z#3D*q$_D>O|M&>Rxr
zk97(^8d1pg8c3H=3M#0Uyf6!AQ;Ym4iizVT52#TNu}HQ0kWihHQ1R1{>eQm#l4YXP
z*IGAJ@Hv&R)w_Jvm`YV#D^)boJ|I{H<{YO%(o~A$OG`}*T@nvv1s%*(2uP)i=%mza
z(J2y0f_OxaN$n1WOaUj*zEyjIgCKz>xIauCoK0n>7&KR`c~q&0)OG6C=yZZ{?N%QA
z)`=53g`A6ajn*JDrhH|PIpf#v$kv5e)Y6~}BSqMQmC`f&3@w7!X+^ALWi+e;*WgIe
z>svx}J=R18SvPDF0bz=#6Q2L9Ho&O1IYNO}12<C`A&`{WBLBgSJn%WvpeAL@Cb1h;
zMsS*7!3&+04tFUXtAJCS&6IbW)#+KcRRE@F{UfKfmg}UEDH7TkdJ7Nw*+2>jUQ3Re
zz13&su9ii&Xn<LSV9-Hv8nS)aDUu<X?MH`ti<e4)Z=;r|%7Zb{gAj@v5`ZzNJ5{v+
zgp}RAIdT(lQw8ZMmA43$2!RQ>jobPF+ih9P;yBx&`8D#9+j_EFRX~`<r52lj*2ATi
z-Pw-LMHnQo+!4AFA@I#;NCjbQ4ER9Y-LVoss5UB-ioYEyff-rjfHsowTe!%)fyrBr
z;M=x3-o4F(xG`D2oF}$5+Z-a@#1$<;eHlWn6G}Uhu>TF&?`6Sn4GciAnGtOQu{sOB
zXp&Pv0a|*BvlW8%@xR90(BPN?ZPCvg<vIQwh*32WMrhy3!;AbyzWq%IKqw5OO_lrQ
zS95yUcVpUxfSBHFgrf9K?wVj)DN2N3;AYz)0#*zI28&eyV5|5%+&WZb9Xa@wUrWOt
zq8U=9h+kCjziiqe`b7>QIA16F3n!2QQ&5H8$b<FKlu;N3SCJVhNP((r9tTrjqzhom
z7zINFf})@dmw?E9)E)Z3;n$eeLLdZlO@c-UV$7uv>v0tw7ONiV;U6wz_Nz;}fH64v
ziYZo#Dz=S+Xk#Ge4lovDGVTqXF$E<iyXmxJlmD>dWU<P6MKEqj;w6R<iV)xbEZ@&~
zWF}4=BL0XY#)}~anN3dP9fsboiQ$}R;isVDL`FmG%_i*y-&e-Ov)JIBLYT8i3374?
zn6L_g*^*gKl@wSE_0df*^v+{>*0*pouz=8I7K>3BW+*A<5grN!R_0~y&ME`u5_}|m
ziv|epU$!ER)~JG3<6nW>p>PI-aYh}5$mWrQ8E5tjXl9C~OJ=DEX8Bu`UH&Rhja7so
zs4LOuAoElkMih=JkFKa^iA@$?a!`u7<qgT@G)W*(RR#JW4PUO4rA?yW<dFiYC4<f;
zH^W_v9_X0Zh>51EgN}xJ-e_uCx%_CSAOAt=WFe^(T4>*BXjH{$L1JhC<vT=CXf#W#
ze8#n2mT3jK-W$YPSBB-LcEpI*p-z1&;(>{VcnDSe<x?nycsT{vunEYx+6ZRnQ7DBz
zScRl3l2TCXwU&>j@aj|m>ytqnt)S-QVC%KkIOyBzieLn;{U2}MCAJ~~J@~Y*3An*7
zZ0^$Q@e8=Ft_irV2@E=*vOa68{Zj8+6st}Mrx=L7Hjg>dY=q!!g02&e8X?m7j-W2S
z&d#@f3pQENED4!7K)4eU_|<Xi=B-!-KrtYsFecMp7OkLdjkxWYP&hxBxPmzCD|{_L
zSviGZgiSr}iMxoxnV{A7fS<tW6#pg;*3oV=Tgjh}YO!64t5zS`u9J;LET(qq_SVBT
zg_Q?$rLyppznhEwpjc~}4QK%j+pr900_S_?jiRx=+qjI(*o>C|>;>HK#HcZD2JBJ2
zGoQ{=3fBv4A#nf34c!Q`Mo=-FCf4&?l=?=FM`Dfu(G{av6#UL_I;$rQNo|Og6nCYV
z^?<M-Yd86b7bEGVykK!J&TYzZ5D1}@qS%y{;;5g|3LY0HG|X{2=DHfGk|B=}=T=t_
zKoCiO@^~3F+c9I({tPdtlz0j1u##~)s#xNf7UXafO@VUAV`Wuw?>Ps>&>3%3wek6e
ziP*7~Tp1Z_DHmWt7ih6dUjM4@W$|8TNf&9+l`B_?YiTK~C|HdS?5zNoRJruL2=vcT
zbV5&-!Xb^hSs#W)l!;22$jO&|>6dyrb=d*)@%VEzmk})!?>XULJ9X_mx6y$(98KvM
z6B`<lnHC^#CLoX*nz0$2!CcoFsymOnuEX50VWO|-b&h%V2{QJXshOL}nJX`f8a4@y
z@pTublXV{RY*Olnx%FQw^E^6p7a!#v;`4w}h-%+I^?p|Nrt^J2!)=zlT9$8F`6LA?
zA)8sACRPai=?-}l>*~24|Je$KkDhT7pYeH#dbA&sSfAnwa(;^m`l%C;_kfK542e%S
z{z(Xk=O*qh^#Ss0tp7Qn1R8jGf|-Ihc%i1-lLPOCs3a?LFkM$uuJIrc@*;vScwz?@
z8cGNo!dy-gb9j#+AnR<Rhf^~HlmeTf8p@eCdZA+ilu_&XJxL^g|BA4`B(4eXcBkbu
z*PEC3`aV-ERO0u!e?+Nrc9>gvc|9lh{iZ5OG+G^4hJM<<Ka#)antJ4W!x6i`ejmZc
zCh3Sz642Mj$J%X5{OHs^Ve)&L68v&1LCj7kdXc4e@>9T~d6u85YZsiL#;djZdDt$C
ztkRHyYSr_jQ;Omm(;yVT`uC_mxt>bzfU>Cq!~Or+`s{!xs*wF3xuGvbtC~U<yZ?;V
ze{i)A%y(aV^8e<VSo$jA&(b!D^QA`E9F%-j3tYNK|31RASu2x8!>oYUEMg<E02-~*
z%C5BYE~;(#8<j2EvMqq{AaEc-f>NRpa*`+7oPq<ZL_^|mqK6c!8cE5R(FwtYNho@N
z2n6J+KLwkp8udiTlvJl2mWn3jWXhE-UkbE{QKJ-&1Y^!Dcrf9@h5}KbN>v336;!BD
z2ow}856_HHL1G<<!imDET(5c<rD{$JAyrgKB-kigBZp$innin*>%u%=vkq+HL{2n6
zPSSeN6D`F+64CS!gb0?PsZ~{kNI8Xy1YRN0I9i^W*+U<MQXsEQYcbWRMxzE%!K?aV
zw2=g*=Knz<WMMRu9{fb3EO2d<ynFlp9VnQvK*NYDsv>O~_3F-qK1&HLaCqUvQK!nL
zZJSUuR7)eTBJLczbPo%K5bQg!@#Dyo3#uARg^{1t>>*3mEl~05g8Uuo#g|`zZPk@s
zPJs1RS!bm+9%vD*mcnItIWZVaGEoFnh8XtOp@$!W7@~+Hl31dNC!(05iYQ8<N;GVJ
zB+w`?(#VKFmSKkBW*(66$0{#+XCg#2(l`h~Ek)xPMI|{T1S2)Nwi=R3QUnoTSq({K
zG)At6Q<bfeWE(+3to0%z#1S-OP-B)E&6%uexn)6WPBdi|1vv@jK&Zs|B6=fM7^hD>
z`u_;zokDR)P>(-$cc=$}YB^|DGZJazbQTt89czmXR04M|Hi9NrIC`+zj#ZpOV=058
zPzoS@03yg*^_?hEK_q+{%_vQzLMv|iA*ITnl-4L5raWre>Z`HNx*Dpg4oY37$Kguj
zuDuFG2wJH|bIO&^zPRc@=cPxh2cFUxszWV;8Y5olf+}iA(QxW4y%P~@=0K1VIq0H>
zCdO?v;zl@ORu#${R-$t*oMyu-LL9Ng6H{EV#TR2dD#Sw6Tk)SCl7NJM9)6s$#3F-~
zFhMATsPaH1-^#Mdqjp>z%`=M_a?K-#T*92@3iL-R7Na0DRwRrZ;wV6SAasX4fB#r?
z(jI7gBg};%;WNlc>|82{I^!%N#}q-`p@exnk@ge1k)ZYy3#sgKPFTquw%vE*owwe5
z^WC@Ke*+%4;Dbk8!c+w{QVQW98lDH@irZcF;*-yu!YY?z{-+R_V_rAqpMxH{=%bTf
zy6LB*p1OzJ6_Q64dYF>Rm8w%6P3y16KD)`1)84!9zXKn<@WT^dyz$5P?F1l&G$KeI
zQ`4?I^Ugz`@f=(tpS||mbKkx9--92%_~VmbzWL{)pT7F*v){h^@53Lz{PWXazy0^)
zpTGY5^WVS!{{t|90vsR#3uwRtA~1mpTp$A*=s*HWp=&FuLQwjky9fG?g8u@s;A&7H
zhz|<lf)Mi{2t|mO2!;p=eV|VhOs7H4m=IzrWZ}9vMZyop5Mxdd#MS)f2gh{?g%;ak
z4}~H@?fsBqQV_%ug{UGYZjXp|gJQ*A$idP<L=YKMg(*A$glK4SWqM$QAS88^JTO8J
z9Yew(9JR7Rn1T^&>L41`2ofi}sXs^<V;NV*h(7{Sjvi=2APXrfHo8$DXe?w7$5lv1
zTxpMFG$US6P{(?)F^+Sb!y_3XCJ%7Yi(u>^AqcUSIZg}(r935wvIwGsG{O&#c-ZGc
z`Nc4LKoCsJ1NKS;OIa?=l>||xDQP(~at+QDy~K+!D~3#vG*f)ar2p8jurx{)MN@mv
zG+8z&X3J{|?vEgG5+x^wicwS~8h|j!zyx6mh77Y5s2D^lOd%>EeCm?|sZc5OFrz;7
zr&aT;r^-l>szwgvAf<38JOzS;MnDvzshSBJ2Qi2lF~XvQAPzoXq)!ht;uNJEDMCRi
z(vcDZFbZX;QB)&PdfJm9{Pbru0J<NP65>gOAjmn>xy}w%2$dBJDu~D#HE{Z&q=4(G
zgnsG)K1m9WCqe;IuVmDT5H)Yx1l%<HbJY}yvmje-5+lm#y{<~EnxiV~ioUwNv34k|
z6Ok)f%^ESLs*`Z4z@^?)QJ)=o04ZzY&c_I03aFsq6qXW5DgOp>kdKa{i`mM}Y7C25
z#ZCkeFDj{E2SQkiFk)!_0aHO5`&gKKbTy?&ZD3I`*k}~dA(jm+W(N{k&r)_G+w^Ox
zjCn`jMl7orJBU*C`qxD9NwNZws)>jjBH`W*u6;x6-S+Ab>8_8u5L4>{v8x*EQUttv
z<1JwSMgqhA0R<=+841)|FUo|hI4vy5R*LHZBtVD?s-W+fqH!ov2?RG+V-kGKb&%Nh
zcTfT@h!gw@p$_&pkvUP%Xrts10`rt<{XvC>wGv^~0Qfer9SCm)a^Q&oVHGxYXnyzW
zA?OY>IK!Np4Q1>Q7~`eA>YWJN<~!P*kst|2R1}ZWLjM9E4<rRn=phN5@C2wFdC2&c
zh<<tcPDe4fFhc&&e{SX8-wJguB2+Shu~Ia#j(Ct1K|vGVD_<Tv8Om*ru?UecU+scK
z#~tgjht69Y_38(iNG{HoDMIEDotej5CUSgv<YV|6dC-BK^R3=I5jzV6&muZBLAc8!
zMHRZz715n;Qb6iZ6WP&lezK#7oRcLxgwGRUvzte4Xjpe7&5|z8q7{W+K>Pa7>jm|W
zV{PeM#ktk0nX(6}9Jo2e37xoo(Ht!U2p7rGMUV^ZAd(afQve2p;{ISl+hU#$Yo(!n
z@KT^OjNySWLb-xK#cI~QuNMK$pjEIEq8nNe-2Yg3Kct<=y9KfeAm;gk2k)T2i=#Vx
z?-SqfmN&iU`krzt65UwAF$%i<BXI9Y+5_=}ay#yAkTbYp;}-X{8#bImsbWnEDa2v&
zkcX0yKq@a9MVW7;PHeMl+bMX`k5u7CDWu{>eogvJRt`dppPQ$D2(50ioO5gSe4lxs
zxgKm@vRsAvQ4cfu$FDSWZyP;`d`c1_baNg*xM&q~L_$nngz~@)2Ig}_y3+l?^rLwE
z+gEDBJEIYEO-}^u1$lYV!|o7hYf0p9kNX@IUy!pGUBXzA!rE8S_QL2~SDO2|n}Xik
zYnNWz1ED*O?#_6_&yny-mjdEFgn7d|ivPQ~c`daILWoodq425bO}2n9eBw{G_XK%;
z%ng!s!}}e$NhUh(jg<nuudMEZ_pI?>G<<^GKJAKxE!>kd$E)xBV~{73$k%Tzf>_@A
z*iY#5mo9x1n>!C0&zq7D0tl{HRTDr&wS5~3K-(#x07UpiWJ!b&i~=fXO()S+e@sC%
z%vVkw1uDqOP8CGKJ<2LDLIOs^6jYX_AjJj}1R%5pzkx^v?pi7=R$>g?g?$u4xKkr&
z-a84E4VnTDVucG9gbw<i32I;?aNq}qAViShy4>H3Jq!bu$^&Z6Hlf0CgaybsAOxly
zDoNmC34s8*99xtX?WqEB<iP_D%>O8if~1r}Do8;Ja9%1Lk!2j#0gB)P%8nP|hEL!Z
z6M2w-=|&f-1}gl4Wzb5Nwc#7a;gFpnpOk_cO3D`wAVuI96lS5;ghd_#!5*&0LI^?=
zm_;h&pPQ7`6EsGY6apc%SrRlt8D2^wjG-yG;(dXUdPzkU=!Ydr;Zca95RgENsKPRh
z6BweBV8EgikfG<in*RadxR9cgo#M+7qg!YqC#r@gf?^ej;y@%K93}-+(4hf#%N>TJ
z9V(zeq~a>JB5@dFEY2bd^x`kZhcJT3C{&}tsFfhBLL^Qj{H=m1yx|iZRJQzMKn~=M
z^rNvHV=}UsAKqg1P@_a_qW{6PBQnY&nxrENu;MHdLP4g0Kt5O|N~AR|#2-Q9Dnv;)
zF5)t(Q!}#U|JhinB;+f)BXRVhEdnC&Scc{aL=!BGWjGFg1to?+#K%YoPi`72EY>Le
zRN{ERMbRKu(MW3Si$+;xP%!0gC=OKa(<-0`3qFcfYE+n|fKpDxL4=vDEQvl*l_~&2
z6?EGX+E&A~<y*$3p_wJapi)+X)K-d|*u4l<-b!Ak2#ghFlKIz!nM)F+*<nstBH@^7
z_+&B4NyG`}ywuA=3<`cZ)i@oFP}1T|7zSS{m@4Q7RUu`E5TXZY7J4w3X0Bdd*~`vM
zCM7nEW2V!gjHXPjhW}-JQWHGE_#I(|@T7zog<xP$g-|8jon~SRoKZUGAE*LYECfA*
zL~Sl#Ws2QpX2nik7ed@yB4KBBkY;bz20;Ml_-$rh0VORC<!5|me3E5DA?LkOrF2rK
zcIFH?J<7;YmbR4Bcuv-!Scau=2Z6fDNrYi?M#FNN=219jj`3%-Xs2=-T0<S^%OohW
zl&5fpr+UU_XL{#EjOauNDBdxsgEnVsnht(Bo`70LZ<q>(5W-)2z$sW~h@`+Nl!AVo
z!aDgKVL%)~cwh>QLMimYDtJpml|qv`X(=4akKRTq2q{h&6cB->6g;VuO4yF}sKtFr
zz!9lFk$@fm#{WVHRl=0%nLdn{LQld-X^`HAml!FMD(S<eSz$IzjTQus!du1N#<uY(
zLHMamH6eh6A%Psuroe=aGJ=<Qri|(chs=l{Tn!+I7LSw|iL53HsKQP$*CQ6hqxMIa
zA!^vc*q{zXp(>1}dWc}u%tAbxrVt#h2!^5p5vCT#rmCty6zV7xf}-drUYzKyrW?ZH
zg^PaYtXg4DK4D*EU3S)ts1gLJ#%OP8hD==RjE3DR*lI{p6%YZdu;yroRO;2>MhY}S
z9-8Q$M#HGO7<a&{f>I`~3WTl}$EM=NxjKZgLMXC!Ag#!2wYpfVUX83)$8k_Ayg{n6
zUYc(eEC0AID!yv!{+Ui>Ix7L@NVd*|_EpMJxL3%!+EJXsVX1{28O$J<+nCZ<UaD(&
zs0J(^giok!(42x0;4GSoshO2*$50h(sU^X&7D2dWh!pKG^=yC0Y|5G&Qdr8%9#Ty~
z42*efv6vW#paQ~Gt-cs4Dv4~!((B?Ki(w$EsS3ofdK!sN2)E|MlMD<lCe)(BCdhv6
zkgcY9Tn2NYZEi8sy->u7-Ww`y?S@u_+d?Ts`d+4fXUR~QA{kavP?)qJ3lJRy5Y4Rz
z46dc<s|O5gRzxhCkZph9*fuq8#yZ5=y)ELxpW+t8-jV>Ra4YOi>YC)i<0jp=g6^Vj
zZvW@DjN!s<fDKG{)Xa(UPSD&-@ivX$nr?RHF6GLt!Keo69<KFO2eQ_#DL}5k7Oe4J
zh4lU|-ZCz&xNhLu=8J}5^IomxLa*;sh+V<x+Rm;A^dJ(@Z~gvBpS(ywnS#l_1}dlm
z!ZlA+=9-UDmBmJd{{nCrxk#LBZ&skd{?-gc?ApBSticT}H?FLQltKnSF#oQ`y#4P$
z1TfwbaOpmv>ONP)%y0eDZ^^)*2S~vxfW->4FwDRh{=O@Eo^Qg+V7-86r|~UC$S%hc
z1Q6swOq2px;D%GsD(B+wAc_f(>aARg7zzs<Z5k7d(Xjm%gb^e0kaZ+TkS?tNLH`?4
z1y`hkZAh+h_$L!L>lU}LK%~Ml@$Pl*@U)2T`i@`thAoO6@xXxbDuBcf`{(PzFUJls
zwtA5n_k<Iq@ulSMam;b+maB(&F(3nPBUFfu=Ea^iFmCt^@`ADsQ)VQ$F`qQ+YFu&>
zLoyF9aw?p$BX7qiM*}8$(I2xi_?FArQZaY6uWh>T9V3esE-@+#4_ex>#wzk=5CWjy
z7*{|uH1~%i$e}|}0pXGWm9Xq<2r^GqvOrw(VrBE8AVCtCa}w;HQc?5HJRmg9U<Y2X
z9Dg%KO!7divxkIpVNi)a7Q{TUhU1Y)syg#Tr0Xc~RWnma!$k8!_c8V2G5@0mp>kyl
zqzdsNE3!jCgt?HB&CSk2M>7=1Z79jFL{kk#V};q0a{2n+K%aE!ig8Gy86W4;bP}x^
zk1efkbRNtOLQ{kz{H27<b0?RwE2{=F$Mi0zbW0mB-ipxv`rb<<a%My|h6n;plbB7L
zvIqDy_|@@<WHj(X1w_yz@#gSA6oP0CtXZ?}=Mr^J+t+B}t}9pdVyMD)lr=iCE^E-r
z7-t$u69S|fH4~ceP(QQ>xb^T<h{nC|#wzk87Dlb;@t&+~9;Cw56x`*4<{(aXWlscH
z_N`rgk;VnB02c-z=tqULRB>Dl37Gc1wbVK0Sr4JYX1g8qW;Q&=p#O>(=E5XRfx@(7
z+sqb%2wN96W`5_I_-18T^k$@h8ySXeFy>q1#ofxtw~ZfipXY2Qvr5b0`6ZciXLon9
z1^CsrOq;^C%?nn$a&&)*cW)5%{y|r_D`5|F9%~q1C-rv=Ydrg02B$!6W4B36HGDGm
zW}LSSs`o>8#-PNvFe>Bafwyg_ReS^NAh|1Y2jgU6_%ac9eR}|Ve@JuhcPl^ifwP8P
zZ+K2b_#PuQnri4LCAMuUwlK5thr=|FMXO%P2YvX4fXLW@%g9(Ph+L3}PE^I93`JL@
z_CORIQYZyeIEAYvc~N{xNf|j$NQy_ea|L@q!J&jou!Kuo2>&X5xlM?9PF%#1m)65f
zxxYF2QZ&U=TnAND#mKH1U3dk8*p`sT#q6v_1_wD@FvwgO$X!V0Zw!b-d-xSk#C^C2
z3In-=M8|`TMroV|cZLXcTexyLdVZ9u@}eiA+gO3rg`tN9pAR}`c*cX2)Iy9xPf&Ik
z;Wun#hewgPhgbS?T&9Bbd2ytIQaHi7W%!}{IAE-C6XQjE%)xx@b)IsrxdaGs0EVQO
z2VS^3tfvAlb^3b@IFQr&Y}h*9Wi<)>dKCowDGd919O`>N2de|Ge(*+*OFM3P2NHk>
zad1by-@Cjg`mNV^u3vg{too#<#jzj9w`<2_>H8_btpBRFJHfN~Ks4^QCylZ*JACXo
zw2Qj2-}G?+Jaeo$KvNF8z{p&FY;P4fhx|*U2uYvxlAWw2S?LJ{CY?58^o_f7ob-|@
zn6wOXxd)O-jU)`6;7Ob0(Y)xqUe-y?CsLl6NtCQzoaDG|3QA!V3d<vkP_2BBL|oOY
zM!pcP!T0b)zzbVEIFN^gzz|GexeBbvic5otrc;e_mA$%rddGnMV(|-&_{-IE{eGyu
zU7cm;2|{@zb+zmquf+93D~sDVOL6$U8wo+(jlzxw>(^_^Vu^i!kbEP=2!1Qf$pb#L
zsNIXKLg9BxuGoFIFE@rDzOE>~ztigE@0{faq5ph$cHkGXR`~C*WWHx@%Zn^&wgi8-
zTuI(5dW|<ev%r0o=)UYzORijt_96kd4FBkd%b<XM-6u@vyNih}u;-h+)rz|-FaO&!
z4bh{{)O(ekp9uS7jTMt<?-<SHVMYD-N8Q9$$jCp&j153|5I9gE34#Yb2tk36VMB)x
zAx0#DWMM>$1Sgg_ILgn#KdCN;bU3l1NRuZOHq3ZZAPOWWT^bb0(Id!%DH*0H$&#l<
zAw5ST(a6%JN{T=k#^kBfA&O{KSgwRfLMB8)sssx8N$_gctw;sZB=}LJRFO&#c1`&8
zpxLrV9kN9z7pT~QWDlkQyO(cYzkdM-7XLh$aACuT5hoT|B3hn<jY=t&Jee|M#{?l$
z*1VbX-X^N_cJ`o_A?d!BA4lG7TJ&Jlm{qryJ)3rI+qZG&ZcQj!p*&Uem`e3hck$i5
ze+M6KoOyGir=-Yc%@r$P-oAkgC$4$AbCcJTYxh2$e0lTd(HnOHs8Az8d8($Dk92+e
z_wncFr;P%t>^XxR`cJU>+=H((0ri83!21$x(7^{Gj8MV}DXh@K3o*=4!wos?(8CWw
z3{k`pNi5OC6H!c2#T8j>(Zv^Gj8VoJX{^!48*$80#~pd>(Z?Tw3{uD;Ym{Oq!>WkR
zgFdz+Qo|$#V)7ys1gTPxCJCd`O8+cFGLk1G`e4M5CeVX&NiGQkQ%o`s@{%Aet3)$I
zCj_CZHa{+-5Kn~MG!f1#g;aA)K92;;OerC(A{s#yQ^gbyfLQb(B=lfJ5GN2qArD6M
zDAWTa2I+6oK}=yp$&fVV)Kh_+U?jAQD76&RfskOt)>}>Wpb1=gef85&5!#ejIfLbu
zktSok)TC59MF`YVPxW99V;T8_AV(pU)FKoJA*7LLqRq0~Z^OMvQASUaBAQ10a0J}*
zu#FU54+QCmpgaKNOI>!|jrQDwxb^nk6Z441PTEY#m%@Y(`uD_u$qjPfb_W*7;lAS4
z);wF|Vq{jtP#ML86ruryApdns5yX^e=6JIdR0c`K6kmnlEgEYNaw3{i^cW?YK2Uu*
z=9w8H;go2I<#T71S*Ep-r=LDLI#350#AimT9wfAyqq!NOMo#Hg?4&UZTWmtMLz(H8
zrxaRdUv=i$XP_-Un-E5#A%viiM=seUoy#o@aF&Gd7$%MVAX_)SNj6y^RHFIV15){N
zYTm>NDqM1c1}E6y;ux+l^no<bk7K|(XYO?7EFTDS(hc{Ealhf6w>4Ed5~5-hP&t*i
zuLv<^ArwwwgrHIeQ5R=|MtM{q-tcoM_~DCZ2#~H7Z>jfzes72on+Q@A2!xPVp8Vxa
zDh2&Fw}1X~i>CL0c>m)EYM%ROq8F%Ows23V;)_y;m;f3^UD;z!|8#dM$T?3Sl-o-I
zc{0Ee?GJPco6zVUqzc>hMS{7}pmQMDsNDU}J0xJtA5egT_>drlg)+!Q3c{v0Il+Lm
zLYfDtP@RG7M0fqs-N*d!K7y=beIDqaK-6`xn?%laLSz;0ZaAgPJtZg6uvhq^F}{Wn
z5h19!qDj2ilqrhpAwO*5SB~g`Br*gDtDu`ekZ{8so}`2FqanbecO(?tks);)Nehb>
zLxw17RURNg5(*he7#dQB14)4s>_h@5JYgXuXhI@w_>wse1Qjb2l>-NINK6hg8lGZd
z3LR3%J<92kO8-O%3j;YrE>Wc=O&E$Sc~X>ny|0mPy5uVb`N~OF@|Qd0qqEqAL8PFd
zm>3aA3TF9CIjs_yjBE%JlBuv$nlhMe873n~X-q7=kT{lf=E!Dw!W348mH-opDw|o5
zJOb>Pp_B<TZz&OVs_>PF%%z+}Sxs{ygpfr8WYNB9$#BL|lR6yF9J&_KXo&27U5l3P
z0HKO#m`bCuLBSxRv5IJzVmnqcX_W>dg+}P_i<xSg2mEk~f#}SN2;t&E7{Ne6pyDDi
zooUy;XtXLQs)hi2=|O_1MJy`SrbS#uo{Ykfr%vgp1>urUSq0RA<a8iA^&TqXqf(aA
zk%aOCssBhx%1Mg4j)5Ny=}5UWz>}J^q9oKqG*a*fk*eZUPRK(cqM?U8<bf?D5JW^r
z;Y!k#Orsp#nIrMGS29W=6<xz!Wur4!E2VU$9>~KNQSpcG$pn;!MXX|H`q#h?mMu0b
zYgWtUR<t%L1(A)0D#+-NK7g+zsJM)5;d;DMpx|3wTOM%J+9k+^ln^r6pC2^3ifAFB
z6cJ6X2kx5Jy+(_&mh}T>TXNRm4x|YyyR8(I`K9W1?Ye|Wg%He}iYRdJz44vz4#j)j
z?CSNr1Szj&(W@}mhHJmuJy~UM``y=OD!;_RXk(?&(dX5-Yw{fkL?t@Wfi%LQ^y;vJ
z%Ku7T>u!g`2N8r0k=vwF47a#miwK4#x>iFTwrhzMi4>N*ispur#uNQYf&0rU)e4rd
zT#0D8x|?9|MntThZK-n}sV+b`p`Jo$f}$=uQWQY+6#QYL2b%X1A&deQL!s8{L^6eF
zu<35v6GS8Qc95HLZWWC1@)R!8X8EDw&2bh8AXZ9Lo~XH(0!an^8kR+e%y}SrQ&}T&
zE0C3y%h9HQ^g{@JkV&V7e!T1ROzV7ShNvrWK#^dW6GG;pP>_>)s9##gT;`mS@XUy|
zGL{c=*G6~@y`a$_nRhmdQAn;7sgObnaGZ)!>P~oE_VTPou^b=-aaM5@L<$dE1^=1U
z+9ILVoxMO=>|-Z8oOu9tDTFP#TQB(3uvT^bq)lxm<4=BT76@O%;%-?Bq!gwYg~w8m
zht7go-}!t<!35C+Aygq1oh_KHCTWUQD76rTxMUJI92#Bo+7!P2)S|Hcl&YXQ)<Z!-
z!-YVC2&=+^J*oJ`Gyc3)nBv$^I2v&XG4q<={MBN9H+I*>agU$85h-7}!q!dTpgW=0
zp|N(zwS5tiznj@xjz*Uig{hp=JOwt7Vw6ip<+OeIaV-aNxn7O}jC)*Nl7m^#Q@w8w
z^!wjV2>8Gs0`@7_Q{2c#g|aV#aD_8`;C&~zKsL_wj)%tFkVE&dGk0YYKL4FcBG*t4
z9nysV>CQ26?EJeF^%asu8YwA21)@jcxXf6sseOzn6*!kQ*()ja0$Kf9ov@0Z2%1&0
z&syM2kLZ)VR(y+IpHox;h$?{8&-EiA@|Dm0h6EoWJ_}dvJ#c%@y}oFtM;!@6??@{4
z?TSfwU-+Ln{-2f_BAQpa!gL1vffV#01^ZYW9aqN2eEjp#A%Vs`0EkrKp41O0LdyfL
z=O-M<{%k1!B7*)H!u=XzfY7gR`s4p>XLF{HiPQyX{%?FLaP$VEx`a<ALa+ei!o>ul
z37$ZI^5&;VuW#7quHY{k<PW+CP*hH^KmI@!N}^!Q4lGE9ZFu8jbpMBbig2;$X9p24
z8fsAfdhiFG@E|0RAZYNXZg2ow0tFp{2|17dJ}x?vFe^4{j2I#n{49=IFeLma{n*9>
z(9nj~kO}#%3_~d-Ft7f|4*z^Y1$AW&84!+W=L)k*{w$`HGLM9Ca0_E_LgI-1s*nul
zD}nq+3}ws%P9X?;A_Y#N6sqDBOy;}v0;`6oh*Dq_N}&%{;S|zl#awa4`U4bUDiuai
zrVQy6E`#^f=oMWt(m2r*8G;dbij<g2&en$n^k6#*rd)ibAd+z)mJuO-F@Ks76GM>}
zVagUq1{GD26%itcP>Za>g%B<=6Sry@VJbGr@gU4```GUxBLA@ox5Fu*3Ia#)5*a}o
zQ*aXBg%ZKcis%9mz=s6V$N;Sc1yn(A90=WTN*^J@9;uMsNN61iq8<Oy55kckQlVwO
z>rsSY6`rRY6{foEgdzvRA|K+eR;6HM=>J@8i|pmD=5hZJa3IsjBn6@!N1+ffVhRCc
z73_sKaH=|lk{}p?C`D2pcZeo;vL{<E9)WHqFGC<hsURN$CovH~bcY|KgA$8!s~qYP
z86t=(!Vl09fEH|su81rJ!YsKbDeEvJou#Z8(kLCWAyl#<>T;`WQ6`tN9ucu2ppq&J
z!YVDqkK)mcD3KD^E5kaig&;GWcIXs@2Qy6N%LW1O1pk83_Kbc~pb=J~8X02O+OB~*
z>km#rD}-PfixDD-r!rlthz_we2ZA#hBKdd%H{XOZB{Tajb5=4_dpr{~eI<_G$S(${
zF(nGoNbPa*L^&f$_yX|xBJ-fg%dYS$lxXr03&kg!D1W91Qx<bzYO8BXA?lEbCIeA^
zsuPtW;s8A>avaDz+mhZa0wVoOBEtnby9Uw9b7#;qBCrO`ASwl-KsET&4(E=64kAIN
zvmxBeAy`cyY6=>I=kF>syR`E%)a5eP(?Rd8rRWnV^58-%D=0hc4-k<xRCFOg6zE>%
z|1QHSM-(bGv><4*LtRh<^)kcy(|^RXAK!&V1OIb611C~0;}o9k>=>d%O#wr%2uXAD
zie7X<dqRRnG>E{HE5HXKvXtI#)R4B*1Mu@Y!$n8qlSe5;XVg?zHjjzMGde5{3Fx#=
zx57sw3RO%2HoFQHR3T5?qxE)4hMZza5n`wQbi>d^qkQzknqp5^MNtZEHjOVLN<lM2
z;!@uPQbht$0To?Xaw)%v%(m3jNN7&$lup^=(9~!ZN&;0=RW1eyPrD`}l`cjD3yZq5
z`C!UEQ!q%o@_&FJ52|apng|sj=OrnWR=aI^I&nUERZGpKND%@m*H6<LAyrlNAcnPA
z!^sa!fdp1TsN^7DVAW3Vu_4ZNTO%UpB>&WjDijEcEf1uC%2EMm!qg>?HCYK_U6Eib
zQlaHWlqKXf73kGoafUU5NFx+B8Z^RRw<2G26%GaVDX|k*l{JWvbz&_7Vu7?0LAGIU
ziA}vnrgWyLjFemFwO*azUhQ%^x5H!k?GoRK>>4dveN}ouvLRlOAf#1dm6c4X)mFbT
z8a6g)F{C*K^G$&@WY02Zs4QxuHY6MY@D73s6jWRzjWY#dXE{j|uQqE}p+Ary3CuPL
zf=CK#sA>y|%(_s~wn#P)B4BxfZU=&GO#*8XO=|_BYY*b>4)GmLbsV3zXiw302%&Hh
zVt}N!af#LnvlB;y7C-kiE$(tI;Qv%e14mJ=$WjIiOBz>dn>D3w%Xuo7D=xPo%5(+w
zGc6QXbt@DiNNuG=3lJ_NaUWtYU6&^cMouQw11j{yc0v{KHFCvNSv@xoumpD-!VzSQ
zWWY8gg!ft!HX0715NzTr1p<4Y=XGIJJ73ay2?BZ_cOZavtKLI-MS^)Tw`sl7dI^Gi
zNw?J64iIQIBIL>ksdxC+L&n&bA#~Ryl(t_PbTm>|59Q=^xu-9US6}CEX!EmNk{4wY
zL}v`uO|#5>LGOP`RV1>mAy8r9@*owWhcnmH^DZKUp^=11sfIqdAtL31i!W~50uZV~
zXWp<N=z;`n_^00Rg;l~%RR36iSU62>=(kvPK){cKmk4i~1lR6x)&zHHZxwuXHCQS}
zcjPuaL6#CzfQ<eRXUva+-xGa&#(AQV47Zq|AlOVNaEYU(D!#ZU*I4`-!7-j-qLc)R
z3*vb0S7_t-B6J7uQoy<3)m}^?HiWi#F;*bP7<L0WO2|${%}z8QB9XDEdQU|NSk8Sm
zxsw6;oW56bCHZ40xqO?jkv-s%PlAsPi3~MZ46_)Nv+9CT0ec%Ul}=TW6=i*HITgsr
zmE$9TYxc>~*njGn3<=qgH`&F`_kjxuDp`3X<Pu&~VGgK3OvuX#<iLvfNHH}xEUq~P
z7ETq&I4@M85u{+9*Z=ur)P)fIs;X-9`2Ma6kbnx1RWjc>o^u$B3@8QCnVs8tmy+OZ
zX>&8z=QBp(34~w@QsFMED_j(sp&eQq0a~2}dUGOLY2dkF-jH{I`JVH+ZyQ6P*SR+v
zVvpiE52&mpMq!-G8B4weQ(t-x$hiv4xh1HqU|8A-B(n*)*_*fHnYoi8B(4gCKnhL)
ztRe!OgEcz(AaA4~slSCd06G;$p%F%55Dd{E^OJ#&I;oesgRi(+gW3;{Nu_zZrRxW#
zahf=ynh>U1rJ^VzD(fZwPl#&zrgM5`9b&IzI`H(^uTlY251FL%00malxKi1QM@AK}
zTC2I5dEC0MN&g@ffY}LRik2lUEg9ml5__>-j5koho|QT@-KVsX;Iv-_u;03|N!gGv
zy9zY>6lfW!yBV#Ax`8M5s<V2lyBZ=~JExsGWR2FePXV>B<(jj(rS7VYQ+lTxgRSYM
zF%-LC{1E7dcDT2Lm_<Srm|L4AZEVGwsV$;lMxkCucwWL<sm+_Hh1OGWTc{lgvVVKB
z8`QJsBf`3-5ehmi921ticwk6?zm9t^6vam^$e}|j25qx&qVu2|g2Bi3Z4D^FGt7ca
z;edr!!XLcFT&4QTN(eywRWMwlTF&|yg2HnP!uwOHmdi)0+4X$%V+vfP4!lju>c+dK
zw129`rT;F#Vf%Q?`XEZcwHm>amnfDk=4j0GV^E+J0HF^6;mt&y<zG|*yS0e{hEZUE
zAtZ-}k?w{WYUpl3N?HVIq#0mHX#weODG5dClx`4}Zjmm*d3m1m{?7RW_P70E?{%;1
zS~jg5tEq3OcZXPD!!m6NLG}_M(!H)LT|t5WasnNeAxvK#dRJSaqdD;%wBsIkqkK4n
zpX@0B-APMD2-U8S$`7VbCU*b7Y{h{i)pzD~=s{2Er}Hil@nnv_-d2q36Qt^sx)8#g
z725p49I-E|)IY{!%zz9s)4AHC(JNsjxg)iA;oq6Z@uam>dS^aI&1gsI-b?WXQ1XPW
zBw^9dc;^}u5zfzi<hXug@$WlsTSsSl;OuMH2?Cp?g)PI?&l<hblD^0hQ;R7vMCY09
z0N#_*8=RHe*c#gK6;E8k7EJTfToBg?C+DbzfID->xW$S@1S?iAPghOpaS#7-uITm`
z9uzY_jwLII!H|=h2hqa|DEg)9V3^5V+Ro1m$$L|!@N{~8J$-kThk5-bd`+fnEeNM{
z4rgOyeWlo%=x@>bJLJ|*&riH1PAkh`ED-Nw+)brmyBxb6e_5oZZ7-yKhh=l;CEsq?
zx={AL6y3*}+=$(#iCs*QRErX{4I}_7+V}6<6H?f1|9apLkZ!b<=#WKpSxSsc=oj?z
zl?2a!DL(9v;Gh4;l+zVwG_XZzd(<tm71H;+Klt$e-ydr`_+!8^qvG*KkooH@HZY2b
zvQy&mFMb+1R<$k?WlZ-vneFM*5IyhB6T;3j8O#}6?p!J4T($FD6LYRBcVQTEVcL0N
zfw{1jyL=IH>C}1o5_9PxcjX;&<==S~gt;;=0X<ISLor_8*l6z-YsKeF0F=&1Y=}jX
z!Ub|NNf^GWPND34<wi!XvJjz`&c7I(yYBT{1y)nxBvWZT1LPmm*KDN2z<YhJzIPe%
zqxn$hev`7re_^Hn;`>8Ucu;CWJ5*l;oCJB!Pqw*P&>KynyJ=lQfTzeBp&^ih(@;G4
z7OD_S$Mv8EO@W>%l82ubA)-h)h#@AEYY^pPz#J=Aa*<NBpu^F_Zw9z9mR`U}HQR$_
zrj(aT)RhaPS2_4zBAPi+VvdOno^Xm)Xyy$zK<gEWoNjQ^3?`xUl5-EHs(RbF9Hs-&
zhC2%JG`}Rd1J29gtO0nSD96TPa%C>)<=k!kN%sfq!GJ)z8+V&>%dr5B&n>l9T@Uw_
z#4JBf`v$7+9{goVFRNzdWXoro>B8o%UL@;yswTeQh8^erZHwR8YHx^o+=?s)db#y7
z@UUoci|@*hboa(-TdE~hI(pI-aXxG#!1Qy8Kui#xWk$4C(F5}WGs}OADkx%jbJV>+
z`XDaFW$?yfNHg-^DfKmBf#_wf+CayQe+7|<yaq8r!`q;W3{jj#5w}^<3~C1-uPg%@
zHZiTwLof*rwn&@=2U9;-gYZHGOwCazhMiahDI9sN8w*<uo3#n!CwsE4rJ_fz36mXp
z@S0x#$Bs(uG_<84uk2TxNhj-Nm!eK%v>p2}BRIrWCG4@C;Z#MH042B)C~|-OW05SI
z#872DT1m3GEJcHXb>p1~jll~RWBVAzNJ^Y{KU7JWDhjfZg3BceQe|u$xju-^J*{^(
z0c&s+0@afjG=I*SV7=~N5raCk+t2YPrW~v6W?<cl!T$l;hNl{3A4EMkW6R;eu@0OS
zMm9^+MKAXyY6<2nr3&KkVKmOI4Crq)W@*lUlYKG+Dk=#EFJZf1)(S&ot<GOyRMA|N
zh3+60;&efznLmwiELV?`0zw6$m^x^I^#;n{4aU~{6;7({n)LOqZj+QHEYXg?2b`Y5
zuLgSqc-?E-V|da}%(HUbd%gXjE$aSF{p_vh7meH@{Evsa6lXqc)1BBP&yGik=hMPr
z36Q|!Oc5bz;c<qX_=~~6J+8$IPg!_Oj1lGP!i1IXY6z~<6{L@f)BRHNCkZ*>D+@MX
zJ1-S`sqBj}U0Px9IhLz2>T+VIyFGXq$D@=NuAhl~RTAGK8|OGV2=d0v8Jn+W7!2Je
zzkB5Wyxe;iNBptJta|JtL{ES0W`T7si0`N3T;eq{c@Vk15g5_e+^?m8$rCQ<yOEXH
zAbEKd@N<?R+M-WKX(gReQL1@lr0P1%W|V-i2(++#wG`C2Mvh6kd1g*$FYF+Zh7exY
zzmQR^*wi+{jAuQ+mrap%_T~%RpdIc->X4I_j4-hxdn(p<!migw!>V9mK{}y0AhS`z
zM+ih!AbSc#JS<TDtP7WA8l`LTHkbgrKt)Rz-3|di`;l6RysM8*Jp9816h@j2?SwH_
zsf2RV&B1l}nOPW6QP?Po$1-5N_0kuSjI^ZWa_fp)TplrIPZGhDC>*e)N}Q%fCN)>F
z0$P5G1<pEhOV^|Dc4Z>u-4mvBo7u009VaZz!sr)OyVZ_XQ-qkHW|n_}K#>wIfkXuq
zl1gS$IT}o+RQag{O!P!S8fPjb`4CCZb|V=VHkho%T>K<%Crlv9E^Xhbkk;jz)Zjr;
zQJ3@U^3&Cz`N*JK{b(`t%CSw!r!in?lq%=W9i%chn5y*b35yK}8egd|bJp3uF^{nO
zAuVxQ&7u&#U}cq5RuJOJ+Js48lH%V!G^?@<C7vRm*h`YXpW)6I5rPoOS1{Ai-Z<>T
zIMKI{pQ_^p4Q2jU8*5E5r4wnjZKV^Dh>%eUui%QBMx7}dfLQO4AZk(~bk#by%xSNj
zaRW7LT2BG3H*roZaN@=qX?QVfAK&Jb<eg#%reedeDV{ndISUHr33+pAd}PKmn025)
z9a~Yc_~^guR%IievXXdzJ6l0KP|0?&ukdLXB@JPw33yN}3=PgbG^TiwNF8CFLScxV
zFpa>yv+>4)QH7deLM7TIXm|fhwpv3KK2sGz{61+x0P4-IL7@uUz7QZN)z9D_sdAuT
zs%3ovHT%8&f(o!yELl?Hpm|_MUt}_n=>0<W_mBe-nHkCGJnqNRJr%Rh+9G%tAH8s^
zpQpYsYOYGJ?V+gde@IBZ@QmtEFAralo=)Eii!~*3)j8i^taQ6+m){7m`!L}c@507f
ziI)yl6k>aa21K)tWr#UuA_aoNBEg6tG&#no8wi2E1QogNTI|Qg{uQlrUVY3T&nomQ
zx&+7e*4$JWXq~70SSRUBatQS_(E7bFbuTqDAdD!7``@h?4Hl(pAC~fzevTik6!{>m
zot!neV=W{$tuUir10+=y39)NDg67n#EmHiCU{^LHRv8!u(9?;8q4$z?0rR->t3M44
zn86&<-H>W|2PWWD53BI{ps~|&l%}<{HIp?l&fc*<LV8_!bph()b~aT6$D7HU@55Yp
zW;2R!3+7A6!bla#Q96<AJ5)-q5`~au{J)yJfbU~0y^2HLIVnrgw8^VB1}h7IO1%SS
zW=$ix>{n(D`y8xQv`$lqUSsyPzx!xsw_LzKA%TWXG!%97{E<t~IzM%1k>akr3c)23
zmwmI@z3+6IS}eVV`v%(mK3=%7__rOWdX|31xBvronAMd8U^%>{wn825T*~#gj|<;B
zF}ij~(^4{IZN46Jn&T>8>^Bh<d=7U`Xp^q_{6oI`V|fU{fzgQMTy>d1J(VlC1aAcz
zsT`Iy#jWykVPaM5g>Pl#hD!{=`>$3k4GnCXr|8z~^#vc%)X$nPVa4W)bcr9vm104_
zZ%#-L&zcTxm&rH<cL$Oii7(;*zTY<jzN_p!QPi9C{PcpF%_8TaT&Ek!@}u3}ctLXE
zi`!ro$Nj$AE5J;QC1Ww>%+m&$M2!e7PO0mo2P-8+Atd^A2DS!w7bAevjb3sUcZIsm
ziTLS;N>97l{vF)x)e{_vY4>LRupy=Yiy}ejraZy(W!NQ&n*QoD`s&NUd+h*N-B*{2
zNaJms{M)T^;&Sv>C80JtXh;9#W<i&}hkheaZtF~Bg&cF)&iILn$>#4ld%mp2FiAOn
zNKy~uubTxq^hr8Nki%=W!wSsp(VGvyihTP<YJP3n5Wk{MzYe0%=J<KNm&$%g^6aF~
zfkWxUa{W4jg9k05DsZLrVaKP|SF>Ej=Y}Kjjw%qpA%rp2f6X}frEhRGRVd+1;PSgb
z3M!)FqA>i1pjl%LjLuZh_hyydXp??crn6|N7B8wPaL_eXz+Jfy1JsKrlbyXypVKdl
z*g7OeMFXpXgD^8d$`_UD3o7jrDG&7xP68!cYmbQe7wdq6>Otl5Pq@w%wSbYUMVi2M
z0Uh5EMS~!<T{uG*@JpmOp#n}oJvq!nAF>nWJ`}*^9z_rL&;;^Yaz+|BMw&Q^^-<x~
z0_d{(-KL5)#mlS%RivA6v^{+FQT!GR?w}k&P_vh$5GUFF8i8U78Hpl}W53d*SG2kx
z*vl{ERku!Ys1OYPBw#U87Z~-bB33{bSY;HInucTO7ipU5b{P>};s}0xq4YDAzh*af
zI|Ehj2gZb8=@^2ks=Gq^cS+}{$#Aa22|N-uOMOd<G*hp^8OV4B$Am3(g7anqfi<Yv
zB)VFhd!&uL1BmYQi)&vbb<Xt4GJy+GN71*D4`=#`gvEfHV<yn9(?cQus6AJc-!dd8
z>|BG-cH>s3lqxg*!ab6vGC?!D@spWJ<@#~dra@n*(O_$%E9y5Zi>}3uDZcQSjSA89
zLjC5bxH6rn&lz&q{w@lI2?|1~_zlt8;&Gdcu{bxWzZ~C+`GWy5vG4uB#4)kV{w^>y
zN`i%-!j_wsG$Q3xilBnQ{vA$&`)h%7Z?h~)eE}f)jG!C}aC;J+tfXrHgtR;<eZfEt
zv&%_lu0r*ulEK?4p0zREDMtJ@T);*(1JIYAm2RpXqd?Mx_M1naFvT9HF^U;lP~hp{
zldAZ&`01<Y-Rj~!Yl>tD)oi)otEdmiL#2oAVF$HGrb&<`Kr=0FNFP9GQR+95PU5zz
z9yn-e9|`x0%Iw)fagr?ldM@AKCppc^9Pwa*n+UOvvviWR)Nwp$)iKz?P&mt!k(woU
zAj=JvluO)@>)sbKyeIHk!vBjuw7rspus5r8n9Fr91A+A}<{ewZUUuGjn*VCfq!ak!
zCc};NU6Y;~cn@K{l&23QZFMroa?Zw7f+n1@<@-Vo{4@DgaQ^tme+7`u$B1DvO?7{%
z<`G!uwMpnSi{=cZ<q?w>vB!G+6o2n%`o6U+e?%g0xiS%ao_D&GNl^9f&LMpmg;Um*
zGgksSoCWGpX$nkPt#5)2j;)m<L2Az2GpE`=o;<*KO6p!E&r!mbYGj?J{FX~(rK{=6
zBRNdTCF+tq1#OCyAc0sXbeA;>|2$I~7Mrq{79j7nvxV&%1wffq$Tmto+}-K10shB&
zrN`tYP8#xHTYo5?Vg|^+v8;AU1T7SfuWQA!R%UWb>h$RePFbJ_P1q!BX!b2QH5-&3
zP)RrK!ZM|lr=}`BQ>7)S)VxpnCHq}CRWfUIuJg1)_%blkxuOyuiWvaa^pF;dE!J?&
zR36|~wO-2W?o*dnNt>W5Xa=~<va>e*tLOJ?bDa!zNb4x@YHdc85?E_uqH8_P%8ES8
zUc>yGnEi8TKD?IHlG=Lj%v#H>YKfx`8_KRhuChp0apHZ}%sr`U*au`ThY8r$(u>0$
zed8X0RVfJaY)bMxdCEof_XECl-I-~w!M@m~T8YF4P!yk3A7ss152Bh^3WwJJwyviq
zZK^;vMJEH~-vd?@q$CeWd0paFDe2D58e>6Z+X2l6-A&~iO>vP;n&xPthRiOHlE@-W
z8U?SQs+f>i=9IQ5f;Hfbx18~J*BkQ68(Z1MLXbbsN9M2!O!6+c3d{v%`beSpk>0v-
zc`$v%w}~XViAb%L7`xT)8`B3)G7GO(g5*}>ur|g*Dd|1Zgo7GB(1&+##H5!+D#@XY
z$?Y8N@eL}B0mVhc16)a;vqTVW#MW)#DM0wQG#7NsrBDPC+>AJ&6q))|XUfuM9+W`n
zBuCq<P)(tFP>1_h)`<2^$Y;Nd0|~~kih5dwIF-*~%St8RI|y5$MF-XS-zA%#w#Cx6
z)8TZad=88h{94)DD)fkA-<+kwoWF{;O<$m+9~Ex@h&1$D<5jqD*llG_1}NmB#HT#x
zwIZ5641^aSWt&O)n63ub6)ewR?z+eo+9h%$pv@|;h+(bo9%p66c}&K*(nXTvN9bxY
zYFtj2Z0f<OM5ot-4{5m*Z}|?;?AC`9Oc8wi8}ITS=c2d#hRZFy<e{a+E?m=1C#_#L
z>1FKObC=pf!P@hkl{KzVpt$GDM_S(~5mj{!7*d*@bR(V1y(=BNKb&-c*AvufIB*#u
z<o+zkF}{(pg3?1;*uhpqDqhx4W3bO*z`JH}JWY;ir4Mo1H-1j(?fV3j)87-&J-OLy
zf!#MI3W@E|d<7q7P<?@;5HnItk@A>~(CpJwx;N3%J@hBTFYnAN1N&izLx+H2^PI2{
zSMd|uT+jG#^ljA76d2z;R!i_qEaM+=N*R{=NR4627GB)!!gc66s2D)y^b!k>%5@Lp
z+@=+e_EkOZ^7j<i1COt*P&mPXFGTbiKpFpI>#hg|MNJj<+K$6?{V}`X(`P{jEaMwF
z?y3dNgfstV>lPl)rDmQ4yqpBqP9$_qWK@aO7?1C8v)(q2|Gpc4pDk<lm(t1z4*|t1
z4+V)A^LeG?_`5TRa>t5yWc|k>-Ua+81QN)_i7x{YrGX9(0iy;lnb&$zP&^h*E|Iks
z|91qO?)j5~{(na&^t&hVf+mHXrdWwa_`LNgEhd)5CiU+pnb52mW;!~l-j&1SM~^2O
z2*!1CXVq)TOp3{httv78Ngz#0RiobnV4f+9HDK_ht*8v-wdR6PP>836QRI(;d4HE^
ziv?&ksDhtBYtnJDhF>gq#(QxwW^54^wBQU_O3_>rXPG0mm?NLJ4ImPw$(@&je~#pz
zZ!0FltZ+$N;K^!o7*KYX2hCNOd~YS1WmsJZt(|#OM$xD_@~5hxdTgpeW!XTcJ%k4@
zjOa)27xHnUc}mZD+S+*->%5lye3$ql`hnx*`I$JD_Ra#YFPFDKW=UFR`6tm&x3O81
z)P*!)aq{n<={zdu@#B~GH8(uV*7wW55=2~QX5@%u2JgWOxsyM+IgvBDlb(}oZ2qaN
zfC56DUB%BQ^Q0KaQERvJ56rwPSza2}SYX<EE`%e1(@iI-P@0X{$M9ke7q!OA@Qz_^
z%IB7nt)9&pn+3V5o8T@t)1#9r5gSohn!x{^;#?=fP!6GEQS2W57g+SVl+hw=mSS_G
zcoI;VBuAQ;70&|TBG!2{Z*-4G%FX+vnqa-wV4Lp<+H*0zN5}qT94LNN@}72swQI{V
zQ6-2C7{R^s(}~*JQa3)804&0-p|#7#wi|G<8xh=4%=9cNk2i$Ks2D87y1MBpA|Ezx
zoFTi5O4_?<*t5pjaUeEwB7W-2U>c;f6TZKC%Cuz=JZ#sqzhHY1QnFkAbC<K4;;^Fq
z@Gn^OC>P@&yjDdFiIW9&9Ua8G9ez977h~9~h91b^i4=Zqf8PANd}FV|owD=@kj)^}
zKnxH5x0U>Jzn_<`ELbOSYMUx*J4)ba%k8%p!&Z6l!2$B%)zLct)v8o<Ds#6yWEKF<
zU@{0h#vwsEI*LQX03^>5py!fg`9hD+mAL9FDM$opCQb;#0ZsE{8p0=r0w?nPr}_&g
zswc<dnpF62`PlN+ypm5vA;+d(%KlAC4A=m1KES}xSv5CW=It5PuQM14Tt&_sz(_{R
zNGF;fJ-`VNpJ)`2qf&o$DEIur^usytuk#bda|Lbrf!#A7RH_h$R9BnQK7Rw+a0#Be
z#Axv8L4TbRg<SdNUj=kt1^&7U#$1ImUWdzFqaM2NA=l{q>)6ig_+QtFnCm3Qn-sa5
zwC6V&Avc-%H`$#xIlpf5FgFE^w?%TdCC_imLT)SaZ>u_QYku9<VQ%Xg|2E3~ZGQf@
zCFE~g{@+iXe>;Bt{fhb9#dy~vch~p)ZXo1tDF1Gx^KSIl-8klMlJS08?tb?9{rp=E
z!=!Vul=}rnx?e<>oNEN!8Wg|eZjh4%!ZKyE>jIvWCCPmM{BbeNQ~y{z{_VZGJ$){7
z{)hDMFVcGwFav;?)nsxNjv^%g?~)UFBq@oY7f^Q{F6Yndwz)X9p%VUtJQiR&joDO9
zW9O39Sej;2VGW=rd~E|(Vo(my(V#PkEay_zgNVj#d#;Y<NRdifr!h0>7US5C*GPZ~
zS!zrpd=#f=pjx%@Nv?ou?;67_VL6`!wFf#JA^ALelw1?7t{<T{|Hb@um09?UraXG_
z$SF=Zip7%X^W4j3<zPA`@&Nu1@`y?;A3U@60_(n5JX^y<Y_IjM1a<NbjbpF9R*!Uc
z*D-O|tx>X4`3#LGJcfBM#h6KFIZ2XMq0gxlVaC=jl}^=UtZsDv`}Gc<EGxnFQa#&E
zA-H9{UsfF(@O)MB4kbF^<B4-;Zm*Im^_K&7nB)KWUl)w8;_Ar$%?{9#!+ZmuugYw@
zzjlM3Lu`|Z3Grg<p)J>Ev7ZKjhkpt#0?uB^k(n>oLf{%P_Qc^2dxYt5Jpnwqum_|$
z+wosL-~aDPk}(6)DWAuC3`8Ks*|O*GX-)+ohIYDD%2hS5he^pBNmb|{Id4J`J&&7)
zBfdgBN5ix<Jd_e!MyCqkP#4y0gIicK_vd51de*OMdirYNqtf~f;*U;>A%=bCLnBXv
zq+m2~{L_fh`LAa~gbYD|#sUP1rWX|6&nir#K$^>AAWRxQ9-*a4&p8g;YZijTp7fIm
zjX@r8VbzJ-)UmLY!<6D5%GjF_L++}R0Wlfp3;nQXC|zX?jT6Q00@sIx0Ta9Q3oJuK
z^S8Or9z>045-gRGug6?vx<qyO30@`}hp{J!TCfuIG!HUH<cLiNsOzT;<NjfFe6D%_
z1-KSWGTv+*fzPgAVE8CpYni3G-^4;^gW`fSusXqUBM=Yg9lte^T9%}8r`IfQl-PZ%
zafAymA)bNs=P50O#u8!VgN~^p4emqhQ=qHiAxJ|;OvX%;kaO<eT|j~ZP!Y^e4Cu~z
zmzNGz9!Wqu78Aj?b`!_(Ke&vZcAyXKe@H&XGo)!SEs`~_qAux>=`nR^mC>Osgjwc|
z7e7?AGez#lw>bAo-&0n&PY^TSK}Rm=X?}-uh&^+|gzdIS$)U&wMT&kH{r!Frwz~a{
ziA-<mElN-A$*0{mv5{v5y>I@tJ5RUccYIiM_z>iI)W<$_G836Y<5*by;(J7HDdX3R
zg&Eexm7Opu;Asong3n2HtFiY4S$BEfUczjrZs64tU&USj6$4Q6S7jnY)6o@`^qc*Q
zw=6di45#3A$)+{pP#l3DS80@A2f2^j$Y&|wdG=}Lnu8=^v_mlQa*&+k9~T@_6s+$Z
zT-5_?4;6k6SL6JOXIjrmpb8g8?2?ku04T)nhKR|T^B%3chcO)Y!o-=|AvO3>3?@Yc
zdaI}pTVv)tuW_=HtVsW|ZN}(&eSd(T0ZRS+7!x4~nuPRqETW_&O8Wd6b!~Y6z?K@&
z4gsei!a<M{0}==YHsF`&B-vAf!~l&ArC4A-oW?FeE5$Yyw4)47Nrp;D13_ITNt~Il
z#4JlnG!IRZ<f^!7XbjdUxS|S>G;FD;rA>L9_6}uAJ1Nh!7u+w9YEq@AoPzNqPamBk
zb=O}*{buKDLfavfbpvS(6(;n1*Q)QIHA4Hm-hrr^X`GJ+w3ZAC$x~v6^ldnkIcwg1
zA5!h>x@lA{)>vEMuB`BMo7CFpMsg6@Xe%uzL05$Bg;$X9P&Yec{nK8q^GFs^5Fnqy
zst;EN3S?eV%uf;I`~y}4vl$k;YhsoS5m~r3;jYJ$^rpM8mMAcp@NfwZUZuQVRZ`?@
zX9(@^gH~9vob$0Fc#0FbqSu9Xd}w}Gp+V2@3StXx3Gh6~s<<FCsP|O}kf{NyPNbRv
zaA~VTwN#7C9YR$84_xxpd-<CV44%CIlq3=z#qhvMo5Cqn^lA-YN%bX;1?%qWL@*PI
z8J%3^SzPUJdIZ|A-X7R_Js|l&r@V@>$IT8bM31!Hi<R|C6c+OBPqv&JF>38Gtog0S
zxs$YNNEbPWkfuixnwgos=b!svtKkYKk<=wIxolX)HnIS&FS{nsJ@e_WcJSz5>d<m%
z>YuYxvi6x$`+BL{ZNZKCGrv6Fx;)%M+0SF8%4x#!Osx6&w_W8Yv~xd{)my3zUp-$s
z2%8DM`0_KT!s<gLi0)x{Y`vIIv3pwwV{;Cnd0FUIXlr%vdeu&D$Y19EbR|i0p<6os
zl{4Xt)ouV*4={$yRfQ}eSrF2-O7Y4EH()(MgNcTcN%7p>hz_xm>ZxUd$D*Ut#%0Ay
zGw0lJZlwX1UmWYeUn&@qZCZ~g=?S4Tbrc3B7bydyZR{z~sfFAx7NA)o26>w}k5uro
z>v|x1$ZqlsuZ-MFFO%Z>YJ$-E?y6b5r&@mDTt))ZB?(IZoi-~<|KH@5{|#95?bg`g
zd1%fP4BSELZ8I2!WlKg=2x57p*gw+P$W=twEn$WC4W?EjpGHS5d*%o!&Ljq5@i-!A
zX@qRpn;<$3Aet@z`oK$}KhA+0j+=ggh4v_S$$O{YOks-y!HwnL*Z1W~K26@L{%9mW
z-74-dTW%B`s?1e9fGpB1P^x)z83nbmc&2!!)}5E0G`)9TYl+C2xybt~?W)T+(O+?W
z65dRIpzzAf{A7Er;X4B89!Dz&Wb|x%_2n2PM<?|6s1*(fPKtZewOTRoq22U1YpfXa
zz}FUmL?(kH&k60J?FiAD@`UF4<<AQY6=EL<dfXr;G&8riABUS@X!ZvuZs@lEa70i&
zCXbPR=qZQBx7J$5a@@dmS<0K)cB7Moh@5?vE39$vug6KAG6#ZM$Y{+kb~LmWiwVj%
zgSvM<s1huSzd{+qu41N*e}F1hiJ360C}H`<T*I`;CD@UmUHq*D)9dGrEowyi&A-(i
zhSCr@ZHdA#^}N%Jw|`fNPK)(?Gsm7$k`)usChV4GLC2V}zxcf~tg{{AjBL^;N;oBO
z6p^Hf=0zT0h=mpzA>Xvp>d0jnYYW|e4&!Fw?(1W}TM2r5o+vgXKp6gaX|~j(Y%nd@
zQ4aiF%JmPxDR{9!j(f~F_y&gybM^}LZ?ii8U~!@<csb<XM0rom`E#CIpN)LlEKK4N
z3-I8eV_>G9sj84`ispgn?5gHyzWF-IRQ&giTo<`?#~IeY8JSU=4uR$D?KfTL8yzjA
zT|b_7M=Z;d&%XWiH{&ylbojA6jpSFn7&$UJG|pWffh&p%(&@M=g>zmWQP9vUlutA(
zJ5ebkm?FPUD~opyhf04bb_(YRMSS_&9S%j1$ak<v!-+;^SWDXJ58(oR@*_0e7f%(a
z=sMbPGblIVqBY&ashtu0QcZt5pT_ryhD*to6zX&0ok&D>okbY9gYe#qDbYmg?M4`i
zN6ziihJh8CVT#OEoNO^Pec!4`aXRH(nWGx{QV_Iclej$<aohrpy4*^<>X<OC5~d*q
z^hdHL&2!>;8lbWc9$8gC%v^|;rtp(a#{3NKXegXS9FLNl_1!5V=9*OQSc%8Bs0AkV
z)<#L54s9@6H8L6TGCAjyNrFa`lFmwRI5nOfYT$QMW-K$nMp*e+Us2hsFKlu^cXi-*
z`@r1Dz{_W~P4y~2svp1Z<K#<I3E)mJ5yq3cQE@R)c28rouw&m@Mlj758I4M1t{2M5
ze}N6f8~Szerj~lol7!6;BIy*>R(Mew%IAg3)SrfIW`+nhRrFnHy<BNIuOsA!xSSTF
z<lMt)vxaS0RTTn<CbNdZbyQtgm0Tb9@TVvu9*_7u>r>`VptCE|@4_gaNvL|#DeE}r
zyiFS@4^-)y90+;M>>EEq&8_a|RatdT*V8pJFQpthOH#%?9Gk6PZpU2GF_@gw_qnE*
zw(*;qS7pbcN-XzixE0D>1G_nG1bwJ52*|F)PA{-(hEwMzx+ZU^hbdEwh08~N6UrK{
zi5-EU<;3xr#5MIF3y>U-GD=1c-BmEbJ}>5Uq!f%%dW<y$_M@QK;vGOlSN{PyVvZJ=
zj{{?<#5oD;i$T<W=t<r!EQ4))DH0ynlh@LGCL=l$kq5`SSLYlW)g-AO`|9*%pR9Tz
zOKo?yZ2)`xy)DnS>v&Kc!`SBN2`U=}p6Ftl_#4=De%^CigW>(zOdqy8A+to$d@~kq
z^|aJ=Yys63F{!1$s^$L;*UlPMe!>|TF!3Qa4+9wc0Un!T(%J4B`%p3Y=!f>Gm3Ekp
z&i={g2Z6E}HA=od3=9SU*npHTQIin#RL2;;42aAS_#HARzocvQggz&EVyq^kl6!0h
z5<W{ei8@6Pd25AL=*>Qg|9z;nr>i$^$53~ocZZywG}W6H)|@SgKLAf1=jh!}PLXU)
zO@--?G>=Lx!&!doK3bZNDbfck=@M+!9}4Jf4`~SXcMo`Jv?*ZgU+bdvB5R#czs~Aw
z^fD5efiS;;u5be#Z0Zu{@%A1A&6ml__vJk&MG5?v&+`p4%?<j>_qyz~%o;b!rh2+w
zr%h`p<!0<~>EkLr9ne+>lePkm4bS}7q};p|t%y~_=XgfM*__aatHls5mpcvzGP2m;
z@EDRaW!*EEGm92C991>Y|4z==F=Z^kZ10S+5t*NBoQ*j(3RXw!?LIuafJ;MfXCd?F
zv$6X}&bvk9^%Zgt3kGv~fH#}oHmBhdH`+0G-ucTsJe^h1j>zYwG3)Llf4oeU1cOl0
z#a&iIllzLbjd{ox#QR>8(+c%)QUqsWzxEUM+S2v@y{JWDinLj5Xqc&NHciFOd>#l9
zeSl7h3`wv|FG@1wUM_s4Hj4ip7hP)P(vO+<rC2sqM;9o4r5#zO=_u63Gh9_P<Aa#r
zA1}RHGcj15%`aV;5-?Y#KvyJ~RMql*lre7+8U0rCRd;JyU1|2E;cT`C$^clb@q>}f
z1dpqi1CCr2)B|fvp?f|m_oc_OR;;itLb-I}2bF-`^y;!ggoZo|DOgM6ct4n!L0%h)
zQQW9!?KIKDc|A+Z4qpm6)}B$<Fuh>Qi2)grjeI$l&Yn(32Pxq+>ET7TqbKMW_+O*G
z%Pd4mGwc(p<l3yv&62ENkZfq8*LZ$z@SuZU{G>kbIrve2RLiZ5`}|lRnf+)mkB$c0
z&?Fpa3HN6DWf*y=O5a=aBWBey42^mAF8djY{4YWS@Qo($P6-|K^4C1+<fV7G99F24
z6%XE5J?x9;>^N3ooU7OLD{)v$mCdWYBC-8EKx$K+#|<mrO5>ZrR_iWwd;RfL!4<c^
zQ%H|A?st_@71qWu^L-xcYlQWv#oG293FW|#e`C`a5fFG_)otc28|B&)S)1M$Hh+{D
zrAG5M*?{zJ&&ctgL7wK!^00gxjWBRz4y=mXgZ`{tO30A}8c=TtG8p$;+5RB1ZA%wp
z+Lw_BGiosLkWn*{Ep9}NQ1VCRnwHE8V++1Ew3q<nxINu`y`KVcjGI3o`x%MEfb(Vf
zzr>ANa1?FYx7+FaJx9|~BIhx-viMy3P-%@P$#Tj-XqRoL2wF2QQOoW9NQ`lln%0c|
z#$W3fDukN`;~9ps6(itnI3?PQ0c~DJZFTt=(?(NjVn1y#WO7+SJG@nBVTW$si2cH-
z$D6Z&O=F{Ir!l}e?`LluZaZ9PPh>El@21(KU>}#A;wsCz><y8@3UwcHcxmYXjIo_)
z*zjvnhS%-z9%=Yk)(W>wm>L25Ja_DW(!WE@YT)lcn>Q_ecFP-PAO(X_i8R73py+>W
zXUUFyicSFkjZjL)j23WM+0M>L#ydCRFovyoe8<cTx~wDHj(hv?w(Sp#yQ$e~d|zp&
zl5t9n_V*Tv5Wo-Xy%>%h)kv5;4on`;K%7D^?`?VAqiKXe|E{J|)%#NW{VsGAEB}vh
zM;t@yNDgo~7ZR@!LI<;TX^nDe$CrEH^S#chCKYIlI8n|&Di>X84Jw?u#PP=ao_tXY
zlh#S*U9v+Y;V>nIOGw12mq{3AMnJ%lh7Utd1<o9toNjTz;WF26Kl9XoR!Ylbb8e+f
zE*+HCfj$Qxv;`x}eZu>A9Xf+`n&*G;$I?%+|GrR+lyDC(BzGL!cAb!otE}6v9(Vrj
zzyG7IrlsX~N1odcS-hU=mmNO5YjxpM%9McN-}{v4E{4Olhk;_=mp{}G%tYKaiC<D@
zkCbe?^xC~#sKdmyc>v@lf9qZ!N|v;a9Ua2J?hl{zN5S!R_*|FlM~iN##=7~i<5yTJ
z$19(X{`im?CjHsW$oZA_M-MCXrA{nZ?ucZ;?Zdna;ovKdl$TB8$DhBxO!X;VvGmw0
zbgmw7KH=Yovc?l|yei>3-e!2cE$c2Ek$oTavTo{Rcl_(iN+Uu1%$=Vedv33Hw>>0U
z1|}(A0Ue5XU;R1t5v*`~M@zu<r_6(bfa^Z^cbmkStLoVy@htY$%j*FRj)l``S?5q#
zPLW|!8*$Z|IVTgp)+{Yok%?6Nj2!Hr$C=?d^v-iW^FYTSOTt5o1y@G>mk!N|r_K*@
z&HU#VT^|a_Fv{7tt{rOXm2H*E6@{JEI34TBdqb{d*SLiv)h%G0SsFYeZWVOmg<j^x
zk~f$AQU*IRlJ@j`TM^9E<~2+H#N2b7ALN~HU|GI&VL2F&VZYGLOgHPi=xu>2H~{A2
zeP(f)9mK$`P;c6%0<RC07K5agBy7Icz9;-whWr;+-97<gcxoJ|m+!7VWU0Ntz@Ad}
z+b~Aj?i5P5UFf!XO13JS|KVQazw+@VQl?7u`<3AujZ|#~M@L_G2l#RjUcX$+3MC=H
zx|Ry{#c{)A%R8)x4<-lSUnlRJ)2N^`7p^^wH5mz99<BS@-TA~0R>TZ?yJ%cTl4RsD
zUfhvkP~^@5WxsUh0JlN!t`Zr!3kUt+t!?pqX!}9`ItLpvod7$=Hwhd!`JxW7h3DNV
zw=z4PvT~bfWF?z(IIh8yw_R`A%Zarg(?8H{o$r8V3Fz@lG_A~78|}BWY>Btv@DR1I
zPE9ga_rNf+z;x<BX#E{EH|el35L#e3B=>Y|C$O6HKJxnSgf@EY?Pmqcpd{dZC<1#_
z1<1sCho%lP5xu9GDjGJ<>iKXVkrebj#43oyd8(6qE#&UUv*353LFG@>e>f2D3|8#R
zfdm`gOcN09@{O#Ny!q7m@8<{B6UK)-{GHU)zpu|jE?<RQ$u(pJh1}$a+<pl8+Zm!X
zhQWoK+?@7>U<iODI0R(ej>pg*6o^XDb@!O54^76QSL1lXJP=PK_WE%5gasLfGKl1M
zI%OS6gBdrv?wztJ!?El^;ZA4l<2jPPr-yrI9FqmWoyTO(=bY0eYVT;$g@9d935{~S
zTIUPce2rP_>)-nqPZ#U`v33bvF1eSRofjHk9$fOQwDAsZC%atn{_F_2I{kfc#b@>@
zlz^Pq^_qXZFP6&FyC}Mbd?1BGzs~hWaC_9Zl-~xj?&-jlt&+;iQ?C~DwnFoR7c&yA
zEa%PlDN2Syl~Fl3J1{K)((3lpU}yFmdAD&A*X7G`E;A)D0Doe0I7P{+jE|7Q<Z}1|
zb6;Ndev52Uj!`6GfhRvI8tO%o#6}?T4U^@DAS_da?-i@%>hIs2Fl_=@xDFQ>;X9?R
zdGbiFODjk4*bXE72tEWPBQ^zEN8xf+SSm6KUgy6#UQ1IEZn3sg)1@k`C{kpmY+j3?
zCl<zIDF)gUE9fcCpcxYtiy0GgPk^Lx1f-4ysPkbCB#S?mbrK{LY{Q%`hc96luJtgX
zou<d`XN@8bd$N^=XXsxV%3NBM^A4BvlpR5wQkgIBVzal6aEQ%fOG2!h>ZFiUEGOkV
zkwN;oHY(N!g*FPvl=AJi-$4VQjm9?bffSM)DLkUoWkvQseVyPjvKYIa$cXXiUj@ZQ
zs^ALH-jY+E(UB9ZhL9&~zp^2~-9-`WNHXbd*y}xbGBrDLKhsxM%B5;Dz_GI4=f)%!
zTBayO0Ow2#AAwe8_LRsYz+{@jA=I0S!lk<cYQjORia^*}qWMufL9)A=u*!5cU*n0-
z-`eN|&Kmx%C595-&qtKALtH2m*M=^jZlJ&bp63Bin+(n4#;=>%aYyQW&R&j6Fzx2w
z-As>~1qP*w$uyaQ(~3ZKphB>w2gCIg(-@V*3iun&J?*gqxb^)OXJ}3l$e&@Q#$C9w
zYqxs>PLg}{NxS-q=B$2dbYIV7zHdoyU+8O2&L!B@+SHOuV0apGyhh%M_PY$q`2K83
z;ko#}h9fh%K)`lCxeolO={NU`kymFORG912%P{y%u#=Payz(b9?zU}-r28q~mrKe+
zpG`uGukPD8xw5am0Fo`+2)r53Tj$*|oW6gE$MQaPVx5Tx{>DA|`f=iK-ssOw1i6LB
zShYeP|F+97%Ztm!-mjvToCV=KpS<3aF@nnZ5jtEE*XS$x;!I`-VOD9nF<0i?iI2Ag
z*gZ#6sL)PK{M+DBav%$$HR<xp1hh1iQIP=+K1t?NA}TDv-fHeVubp7$HBYWEvxmo6
z>9De#hXP3TB0naeUut+l0Z$v-FkkAK9z(v%Ba>n&lQ9L5(t3;N|EvSW^Vo`^3W)u8
zdr_>DOsWRUWXTkLO!$e+D%|KJ%4tO|kRn=flN^z^8^-W&(nrJqxuLiK7D#D8Q!Ozs
zfE*ELg&#r)u`MdnS`;`l8kkOt^X~`R1_hLLncdI37&WPpqLhMh&e`i!XMo{oRzcqj
zAs~^z!LT>pYm-zjAd{%$VE7Y(r~m^SMj{*)<;&!B4FjudAhSFMm;?_NUz0Z??Ny;T
z3=P*&;&6!(e-_Y1_*Rky9=xPlH%tb{e@KGwprjTLN$_+IT7-PM(p1v!{Wyeu3!RlD
zUnXz$jc!9Iw_fDkM=dC)d(Tu7G)I`36%VtYGX?xU{E_{9^gU#R9q~}YjjgG7V8E&n
zy)iBKkE+icgiwPZv0!K3swmm%az-QFq;MFj2sb8Nsd!4u(NgHyF*gwT(n}X**Bpxw
zH&Y~nf!~Iol!BO?JcZ3>SW26%3^#TWcqz@9_;a`lGEPc{Fuiar?{Jj^8{ytL4KwB5
zjJ~vT9dm=H??<8warT_@GMx3oP6TUOun+3{XzI!Xu*z|{T+AkD^wwO{YY{VhaI+DH
z7&1Ve>~glit6`ST*woj4_ax6}4CkzSDk=eRPPLr?aBBco?bF&CyZk4H5d~d!E;pt_
z|M3QNxikR^xo~zkz;N*605%HDvg3=vx`lt$pr@mY6PDjhQBO8AN?!w=W$I(^A_Z)F
zf3v^x+%=ul<8A5Bd8x3?3V8J*L9aSN8Sb8mqpWEAP{PHFwA>^x^zzl=Y|HZ1>@H^4
zF{aQfaDcab|M4eEOlgDXRk&JronwXZ`(c@*d%Cg}->pLM)T9E#DHaRXH<ixA{Xg=H
z-*~SYYg$^z{sc2U1J4$rp=?MuIKBXAn)14fP!<~9AeBV&Egt%nh$`U5rI`2wb)P$J
z!}}zxddC7AMWlOuJW2Sn#9pR_jJ=a^@SBYeimbuMMGf*M+@Hx<Ou7Nd$G*RwRxvvG
zefd3i8e&sp&G|-tq`%}e1~Z2O`8-6rJCDm#FumqeDU_dZx&<RYX2-HKO7uMEg=CG5
ziU^#cNvkffTnNY<!RppyKfFCHQ#HT}B&<_7rd~tnjt$vA#Dlp5#}SW$9MyM@AuTd2
zrN-aQBGA;ca5uMHu>*jxxx~A^+N9WGS6lI?k_#`kdCFMszbiLAnSPxWZbCQ(KY^=C
z(Iys>|EG>y;|@wz&T9M-6KhWn04sL5zbam94~Krvt=zRz45uYRcvX`^n9;4Mk4HY8
z-=SOVkZa=Ce^z+jd{1z{L;xE=`bZ``ZT_F$O>wQdhfBEfZCe34vrqn8vDHbt6J$l{
z7BGuEQ&(a^$zyQ1Di9Pzn!sM6^W%QOr!?druKNk}fQVxu!UUcEHoV4HB%|LUN1`lb
z+ml%Vk3@d?uljW;3&fIM-0c9e{KsC6vqD0jZL*5_w{`|8R}^<`i;DrBgHVDqf)9{`
zj_|a4;W_0vB;1ArxJ2;!DBNxZm-dgJ$za|0nM?~UTt2^I<1pU3H$f{3|K5Ob^3U3<
z>;EvrJJ!#LuUr^{#+;wuhE&O(ro_b_>-m;%f8ee9^y|mQE5;%Fr}<u^S7u;MFoHrp
z7(BpY_iHJUrB#mMbj()9H%TRO72f$~N}b_?jZJ1y#!|ycUy5d)_p7`{9P>i2<t2XM
zm&42lb1i1?{sf>ceeC(Qr-{+-PP^QHK`#H^>6P381J>2;drV+N=JV}cz7FJV?wh&i
zd3%SKH=lDY&wu9<Smk4#u87cEtq=k(Khj<FTe5yp0u|tVQW_h*)2WtupK?fbLjfSH
zKuiKrcmeV(Rt4osw60yxiNjVkbywln=umG6;6DC8;>(rCUH#f$rwWMHtz_DvKeo&R
zv6+~$d+^K>%DMVJ@uRW4lc3i$6RM916}1H}Xu7)NLTZv?<x@lMuqV!!hi@KH$S!@F
zdol$#j3ep;6w#9Ww0Z*SqicHxGa)42vuY8~kP0#;`MPFzl0nr%7>fphzA_4u0)$Ho
z-7)YatSxOi8YVb@4tTu~UzD6hIf5m7s=%?3CU^#`yO3?#0v0+!Hg8JZGFM0R<eSXG
zaQ7-)e!U>R$o1n8GqEB|hQ-7k6ZL#5WAIw3l0uv#vw^N5n<X>TWjt25Hu(cO3S6Wa
zc*~LjB?AF?FN=&ynLC<?gj;gBeToQXnVH-Qg@!3VdlmffC>CRQs7Y-s0@a-)@@$BT
z2?d5k!i&JndYl8ROk|2uDI2GyP{H4}Pk(M`p3DOgw)m$Oa(jieI4j%%%mPt!1;Tb>
z!8Q^-8<L{rf>p(UJOr25G#7OtV@Y_}<Ps~*I%gV!v8IO$_`r1ZselrYJsH!OoF3N-
zD?SDtDv!<g{#YzEG>Qe3guC7GgllbhTRI?h(C(()k2JkctjGaYReU;#AdV`O2C@$R
za*cgf0QA?eHr>=Bd+>2K4{<&=AigP5u-h`KN;hWjgB@Dv`PdN?zWA^g&5)!CEkt*1
zJ`<op>CTs$Tk4yV^+8U-ny2*UU)UD=CmGwGQH&15r0v3pR_2lGP6B1Nh;4<_5^XYs
zN#d5gFguI1Jxp;s9)j~?nxs&iYVkKctgZ}pQ&Ln|#x+R<$qx67VRy>jmPf8z<-Onn
zy|c<Loi1QAp#(Up+1h8Y3#hGIjLen{m(hrpn#gV;2j*W<I*9bJGh;}1sGpP*?3UTb
z_Bq6=fpYBB>R91u4o^^@r=X&?EO|f`>)U#cS9Onk$L*c-wu7|{RC77hrX4EhHlJWS
z1~jt1T;J5Nm{E_~^j<D{KK+7kJtoM_K9Eu|GHUzvsl69v-<zljuEPm=VMK8K3RKbR
zdjkQuOr8bs%XVvZG;KE^r$RU{9K6CAi|l??h!Y>Bj;5KN$kbB+yo1j|m8dJ<#&Rl_
zyiG|dhz9`@1pAOyj>3I|<ggr?*Tx+NaE_0g_Sj3o?K$#YhUa(=flf|b?oJ=NA5M^P
z&O!v|K4mImCsT5rKy$5@3-yAMOW;!_SJ$3>GS`H4al-m;5+*G+AE(MCTaQ75hy@77
zPQemJRG2@!JqXyjJUH`+>XX2?Qr=Z+P3I$n($O2UqJcdd8`4S;D(poS0_n`Cxi^!w
zU;Z_N6$JAW{Pw=6ieS|_&K36A%elC!r#K~-RdU*ma4&}p5OX^eADsLlwy!EczWTDt
zZEL@t@<0T;I&(mmprInp(yTT-d1AJ()kin3NTbDOzk*WnV?aSgj|*&XKmWAqI?(0Q
z{B8mWo>(^grO2g?%)Vo~x@e%H3E>1da)LuE+sK}N9?2?|bbX&#y(SNC{E7$4M5Hp)
zz$y^`gb~0p&bnk3H&Osag<+}p;UFb}f8-u2i+cnU6*n+43)&-B06W3caAIXq<0FRy
zmXo8D02lv5bQCvYXrI4yAU%%_fDLEZHRb}M-&v+kFon%o*1mj9wx3lA7w4H(<KcZt
z34YKhZ-za9P2?pwcXo#pl9N=}#qzG-6*#&722L$z{9Y=n?Q?vYm00=hYfW!*?NU+g
za+z~`-kN9O;~(oaIdkS?WNIwWc;>Zq#3=zC{DjjF-IyQ0SNChzMuwY-d#p)|#zrW&
zqmFh(c}vLvzlf{k-Q9jtx?zi^c^K7hGGlA~8~sf0vOoQN^ppN1d+G=!5AJlGQK8$3
zy)oB*osQDc?`3@Bktf({i6KBb1?i(9HNGv35#OmB^tt8H0m$u8P2+rfP2^+EH=`Ff
zYUAhOuU6N2*3?EP>kju}iW3ZgvkZ$py+4<32BT(tmf{a@$mnnpEnyALRAB}*p0~a0
z`*?sn_6`_F3`u6-PPUQ)IYv*gp|BJ<1`PolBlHXGfL}hxika?k#rkQD`ZR<!)8sH_
zx48Y%en0ZJ$l4<U4kqCQ_nSHX_m(q!-m$PQ5)fY>lnMK~B79#M@FVuv`D8s)EuLk!
z-h(*|@A+|(7ZQAB_&CztjGibYerO%U#Wj`dx?VpND)4QM<8Rs&Wv3yPIX8qd1*ql#
zM>P;`9d=|05M7NzXp20)dO#laF=Ad787-YW%1dV5-$Dc)!yzZ~701*K?o0}EJ}m-F
z`W{@j$moI-IJY}o*qzxI$nq4$!a<Jv>hw{=iTvbAdg(fSQx5d1>aI)>&zv9MrGbYL
zz`#NSnQ4?qo?`!TOBYo<IQ6)L3JQLnVi~dL`qmF>uvk&ndk}WMFQtxvdi=XadmECA
zn0u0(0ma1fggbdFaHz<z5ggs>G$~kTNuiPpS)+<))eK-6#)qlWGcB6FPpdKD^Pe)0
z5*ACkK5H`FEc5>&QscOQ!$jFh$c3$A$7Vr>uv+j>fUxyIlk0FiSB}-!cF&EA$I>5!
zUS%Pa;)oQ4&<fFK@|j*snEr-|90VEh2*zuKdeF-RryHj(389^&@m;HxqKR#dutVp!
zYOio@J$PwP7<;-|=gKpe)an*h%39VO)q+-^sqZuS`1&97_2HSp-wy)+&`iAK`d97}
zJ55DlO$6@Vel#2g-{wWyFVsBewK;^XFU>?fi{A!hV<}mIGB0q7hAeluFn(sw<cw7%
zyx;SSDs_7CQHrXov_!iX+tSYIlAz3<)0nfAJa<0#WLmeT>NDMF*4{bC`R8rg8cC%Z
z=JHuI;u^>_x?IOr6kCR%fMQb=;J})PyRxTTi_wnc%x~{}sEDRqdPVEluz?CX<P|-f
z(qUi?IIO-*e%H7LBkk*@?dx65^qRx>k+pAN(3Q*J<)^7j_cNilTP={B@VHp*x25t7
ze&38fyoUh8AVWl4EX}~G9=Z~&!%9T-F4#>f%<<wUf?t?v#W%QfQqlYcLjhK&@~DRx
z;&uM-TzIROzL?8M3wg7zNs*3>T9MByKi}uZDDAdIupb5W^(>0%PR2U6c<3>~JC^J2
z=(pjaD%9gSzsV7knpAxc>_{S?@6%hcP-A%Vo314Fu*C1c5J>pjjY(ud51lytu;F98
zx_APM$gY`0MmfTvmCkdpG3_&cdNod_gFlDJO={f7=du2AjDB&h?Xl{GIiJPD53WN9
z+7jAsQr@({F$F`MIWI+`p|NT0Oew9eqYd3TsNxQ8PU_k-`SkK;Zsf5(u`{*jyU@BF
zh`wr#DcdkBoG^ny1B5vxv4d{iu6)Wi+EV%a)1OPc|7H5NSmLMRP1;66u5Ww!j!!i$
z<SvG!I{H&>{>@usnt$#Rky4TYy*KnO;=WDW6}0Ve11YB7+xO;Dvgx;lt^J_;mq1-#
zUnVzq!mx}_IYq~VcYEfXjmLIxus)0Bwe`ODE;oNn7`6g9Xq$?w-<2vaQg8e0s&Mle
zGygZCLu#F&4=J1#5CHTR!4byOq&PI`NLnM=nPl`^2>6x~k$}((D9`(UjJ;P>Q{mUI
zyAlWqJt2Y6NkZ?T7ePbsNbh2((tB@)&_XrzD$)f6L_nITp{O7hnt<2>s30~(M8v}8
zzrVB3ch0`pW3RjSZk6$lHP^G|e12{z(!@V+rL9(}R>+nKwPW^_syr6j_ggiP;HSJ}
zU-=y#-4Yz75*}Wfcvx8mPf3}6aO&yT%BTH*wq*DpTq1XJ<~MgwI4_4UoL^hexNZCD
z)<Vcw@ojfuhrf^FotL&aicYObwVTfO&(15#@D%E<g|mlgKUvJt#rEnxr<txa-+t!q
zKiB+s?vm}(<3EH?y3hCj@&=|pkkx(tM(1UJHAZgn#czd)k98C1OnSx`A(!!0<?RRG
z|Gu+N-9WajH&5JZJarY<xpMKZjOv}+qKqG)*FIc4{r(i_`6TQ{y6#TS-{;qK7Oq;1
zs_54thU9*vbu67;LcV|V_0HSMTN?s~Ptc}Wb^mrmre2j=EuKBIczls#d243z+MV-K
z+xk?1tIi%76QrMTMzQqF+02XjyM7s;R1A907*w4(<NU6085u*qyJwUMpLSrG`*01+
zSi&U?<55lMJ@J%^!PR4i=Nh3H2B9`eLNUfLlZDU8Fnu0tLgmPE>5}sGHO~-t#G&?X
zU}sCw=~X&XeXZj)TFh+(zQ_xfwOaPHm+d#a=JOTJI39OUx2CU{6{@r4*#s`OI<l7#
zl5G4<#cXfK#eCSOKg&2R+80Xc_j2t!&pxUfr0%~|kl@^8#dpx<$!P;YtEccrdf&_E
z(}+u{qINzgm3AIX;fwZvT&op-@P{uZV7}R`QazPFHt5+k&SPW$zx;6_&-(*c22%y%
z!(QD={CUuw_@v>@WG-4GO)xR)-E6f+{6E2@m=B8`&O>QJ$#I`wjKu%^CzO)#ZF8nl
z<DzhC(vOeNhvJWg(^7tY|FAN2QRHIU-`~G}{yY{T9CtQQZh#nkA2I8-DL=ZT<6TOY
zt!LXOu;}4D*d{V$#_*j?TD5ZxZ08O1s9X@fk2I8{$Gq}?`9x3t>mzg(485r`{1fvi
z<Cfv}+<+KMim`xb6d7?B#u7DM;8`$_5#y~cF&A;4xG_Tx=qf>=^w#>!6?G#J#(dXP
z79L5>qvS6I@W?$vt$SWOah9_9lwi&@tp_V<e^xa;dwlvwUbKo1`yNvLzf7ZPzK8`=
z@j~;w0Q3JT2F1g&>}>eNxb3sK$kc$QUkq4Dxo19Q0Y?-H+(GjP%E5M1Tby6Xz4T^-
zx#HuP#R7i5I2R8QNUnput!{g<Jx{9B3Z*7B&Q>w?o`ZdP4@BM2;s*Oczxo?g!Q4tF
zQS5QMx4hKc%oD4Xj5vg>Mt|(Me!RNlrO-h02S=AtbW*<osNBcmavt3NwEl_EflbDb
zYF?=pfU;+iakRlUMecfML4${}1k1t-Ore%=7d`(~45iq?f$ZX)X<n^)wc5bEx*@{^
zw@NR!{gUYMc*?54^R1<S{L{y8b-MzNXNz82y=iy&ReGZXa)&?oL+3(*Y2o5h^h?J8
z2~+MfNk4vJ^c<9CgInIjG=1_AvJ<%8on<M*-yh8-fOXh^Kl7FH>B(NxIMVIImtt*m
ztlOPK%kf-|oP&m3Y8@u=(L>#UBOF&<!iFeU4Lz^7M_a#<8LWo`Wi5;1u*@9HO#*>q
zhlaWnMTRDn*p(CYIm2nMEjaVzTI2P-4BoxGhF9g6{^HhHcXWT!ZDZ;e=QodZVm>3y
z>#w%I*}HR%%R2OL-0qFMy7=$Mgfkxx-<{{k3fa_c#W;R9rhLudy^#<%HahcfHR}v{
z`)m04sgvXl!@eW&2+@Pz=Tu3w(tpQ%zTA@0u<wUg$0y8s6RS2+FcVl$J{-rbKkcAu
zhsYwsaQsj$N4@{m_!v+!eA4(R@P!qUG3=#kiEWeUvf;L)*BP`>S?tRn=RPO_%UIrI
z(XVPnwG#B2%gRgas)Noy&S>l~Mhrl~GJ%Ov4ti7@7JJ0JMH0oB<sWHMjQ?$Zuwk?7
zevBMfffB!;>NMg?yP+1lF-23(d!`8l6FHjBX{{2*K=|}v?<3FiNBgQ`0;SbQ=N<At
zl_R6KbELS$C<Z7$XG5twQt4bpkm^Z+H<~Qg;>s1O1C2tpsupfcQEB6-_u*}D_Q!|`
zFR2q3C2aiejYQfp^EDzP%eHD(_I9Auw4u06#q&pGpa~%yKv&yJDE1Eeg6S}Q|GJ)!
zU7y&A$P_hgo7e`$PuSNpX>I9k=N6}`zrDhXojM7I%0lUYoTbQ(Y?A7E4h0ZclCphm
z+rE~4R}-1BW7Q=S&*EUi2<ZsOgqva@j_n&%w4VNDH|V5HRjU;_fDG@%ERf44P|XBq
zmOZ$2hiba@4>=<lHtl;3hOpY?x>qs_jxhZKg%c{3W%hOz79$<m2|<8uez@FfZ3}KU
zGP-ALD{WU&gKC95Z-;6h*$#3cApJTJwPvrj-Zomhsr;7taE;mU!}1>gC>e*=pptSo
z%1QpU@~qp7&e6xQKQKLV(?nbNv#ul{svMk&T-pNNPbwpDWVIV6Z!kWNa>|@^_#EU|
z3U=s<Mv*Y4qGDPwcj32Wrup-#?I#noww8m!4c*X?+PjVozI6|OhZ=dlpqf9678?<=
z<N(=1ut}xf)XP0Goyq6k_t<x@owJB8)%T>9$yo7Qyw_(}o}@oB8*+=f@Q=&nYDWtu
z@}f<a?ONFaWq&s&H(B;^&2DCGRG+LovmNh?vbJ)j_@r4!Q3D*q^_#0_i*g(s!=W9o
z;v82o?EXHY%uVP285>w1w64D@8nlCU@0;MBz;bWl);WIvxF;Y`nxGVX257dU$$ZH@
zCaFF23E)q>C-IhFKl9}#wivkci-EP+)!k3FSpsrZD$CUx>u&Eh#mO{9SFy+E+3kCA
zU!^R+Wm$Na&<cLUBsMOsS@9Cy%r5K3gA!$&wtn|v+#<A7(#;eI_{HJ&)NI7GVyLdn
z@KTGzztRHesyqB=l6v@N5K_CbE2r+&;NvKMBkU-7qZpX*do1g&_g3nZ29vxv>uFPI
zf)(7DQjH05@?qisW<%}L50Bcn`>P`rth%?h!g=i`G_2d!?(EYgVa!zDS*&2;h>g#g
zhl9|7&u2W62`d`Lf`co=pR<8lOncGpo3>PHkk30)Qw7+liO178fw!-W4j8(;j#K<D
z9=ofueRt98a+6kJpSbFChdD9vHp|rp@GZulw&$41yIfcFVSMNqV^(nF_+@W8LyEt7
z%M19Iop*2Rz$2ed3rCgT@@Obkm=<aJR&0)ZyP&4(DD5fp27-WB3|PMJeDU$T#18LE
z)Kk|^A@bs>K#eue&k0k{wv8P;q&S%cWI^u&kW%OulNEXQpZRUSi9@_vh+;Vs5LzA#
z4L`MmRHr-;@(wY6xc&Lu<5B6so+0x{%lj|?wRX^0xn_dQK3ZGS*CA&PV|QNK>8^B-
zfjkpu6`3Gyq!ElwV_vBmIq19ai#DV_fowBg1zR86V*V#7!r}Q|n4qg2-jsOEF`s)N
zFFo>z%d`LW1>yIn`v1CTU*}qBh{R~*?5&chP>mp^l>~_fY5sJ^kLQmiJ9figDmF<v
z*vv1Y-R~KV%JbgZtlP1u)z#l$f;q|yzziN|pfqdq{9=XH))l9JZE~~!Waz)WpcpuC
z{nPu7qn@WnHWQy8h8DiJ=&)A&vBS~FWAkEJ>Ytt0znyUJG0s11<Rds9<i4@1fM>W&
z`zP^q;xwG`P0O$P>oN}aCKS#xU6{iQrgw3Ge=O&o7!B)NEa3OUzu4s+@#COZbD%0X
z<`O*fk*Q_&95%!zPRAS{r+B$QK^)eLX~4@2^kRqS4!x%_EZAp;{(HvO$8|8%71*@r
zXz%jwEQ<ixcn`xF(`sed{%4<jta@E7;xV)2w&=E4>r$JH!}`C2o!k52W)ojHH?29p
zO_Ky0*_%Vzud;pR-8JF==6%@v6Tb0BYPUPh5YA49v*I|mBAnSaclB>zjK76^>VAqR
zTXSuX1W<W`m1MTXm~;VdE(K1z^s_CpyB?oHJle5wwiYQju%8O_o6>o!EkATk?8^m&
zm;&%e`i_=T3HP)3yKTu4H=@b+1xmm1-Q9J`#B@K|4Sp#L>GS>7^mS`rqMfS%b42G0
z{KC$OV}2_k@#nfiZ@}{e=(3c_Ek>(r3f*=!-#~$1d@c1#Sjg5a^T!{XKnRF(!CNCN
zXE&xYOL%cgm>DO0b?eJ%TQTO6Vu|;dbYHNv!dHbGSlxx&dx+@MeTjhb>j?^$^W8!b
z8~I7Z`A6PD7KQ!}ev+ZZQu!s>|1s+kq|249WU}CO4OYFyn3jB^UE_b;dUu{mWq;hR
zSC$dd=NsXYrAA3t?>#9YvOH*GcJM;g6JTu^?mJey69Mus_T)GBq)Pkb*6$TgNI|Bf
z6qCXDN@cXW&!-+c7VGi#L1ykc(p6<6(N|{wQRnePj23pojrF+S(<D0y+&z-qT?@<;
zp9GaQ6z#oG{9Y)g^vR}h)b@3B$9s-i>#-Ud^IJ@~_Q&I<PLlFj5ceZ}IZ2pib!416
z6C|_2>Lu%OjS24OSM}&ci;6benn;c0?;5p|s@I6BXB$=3N>u`PRNi!Q$?n>AswiEL
z9&{@~URmU%JwOhzXYbK9OQT(_Rn(mO)pUbZPO0dK7~i5oWi+z;iMZ2S{rQHGDjg(*
za`c&Tq|tUUT%uq3M<h2gMz4^|Ah*PtNwJl_m%TT`VE)BpwP=$(Rf9Vb_`v0)mkgcD
z40LT2V!u{rlJYf~<=tBA1Ij*!cpF@txf`*MNh+(b3)vlhip4Q7M~L$;$(cK~BX;wH
zItga-;#T<Rq@8I88>~epP-cvst!Ee2hQN=2V|ax$|JC+9#&HoPuqkJgW9Ac#Ip$J*
z%yHAY;d8}88)I%8GUHwVss_VNehfb)KSp=>G8lN4S>O5%#rkHa#oc}L$ZfnqlsI>+
zb!d~3(1z9XB0G7dgg+>oAI6q5OP0skjJ+{-uN-d0<ySmvIU6kPp!W6$KS;h7>UeYC
zrfmQv_o&4(%Si?0lEE#vudl$=v1^Kxtf9MDWGL+Dw=(*Pl}#xXDQ@a)#4_qDR*_|*
zyiu5K&MF10UGO}Gn|WB@)t$_^)8@)2danGcN4FYoKuvON!lP16iLT#0#_eHY9M^I)
zVmVfPqugL@;zqWk3nz~ka{18vtj41U#~EaMFZ85WwUMsqvbQ3SPwwVnQnLdKma~(<
zX^DNVtgfVe;A0TyYv$zVT;ZoX2|W#nk$p7l05}V1e-Ci`p7ZX|hdC_6Khy~xG3b|5
z5s-hNlt<?x4k~FkFr+kdPI+BWB7>QT0E(!)KwvL$3LZMp(i{)I%M&u`6!M@VWOg~^
zDNpF4Q|L-X=!@mhHwU3cSdoMDu#d}OUwOj6SA<<4GVL#iAM->oI7dK!3gxBqa-buT
z&XMR9HUI$b6C*{Pqa-V%WLKgT(a|bDqgF`4r&gl#8Nv*lV@xVzELLL9I>#7+M3^dL
ze^tbuN5}b~BUqiIkwcLp=;O$Y#<=*(_~e!N<jUwX&Ivg`)ooT1E};`kofB=HQJ?hU
zzNw3JfjAfefKKCoe~{SkoD4z>v&F}UqoZ=Ycz6MH+Dgh(bZRP^hf<mPqEfBsCrs5V
zaYjAu_A-kxfGmqgb`jFX57NF5#eA#`NhZSHYlPOuCtn^102;ubkj@V952E8PgE*G;
z$Uk_53)Yi`&{3g{06+pIU{g)1GA&#pS5{K(U9t=&6K(=P5sfstoaI%8OaOo*bmAod
zh{1$}^5z)DXV1ogj4|2s>Zm$&T;sUF0f-A|VCtz1Z(d;nFkA=Y0=Pr+aRn#PAl#=J
zt}+}q9)FBJy&5S%LtF9|E*{3)CS<)>EtH>3P@@Ctjg-4iMIVN<!(9^P*TKCFIX|jm
zzPeCyhl?Kbpr}=`k^tZj0INXqxp<MildB*x0YvcFYWUD_zS6I-an0y)4PJ8k$s=MX
zd+{#uM!S+AHm-#}>xJj}D$oqE@*sd^m>T%J;`?Ea&uWety7F-xh4ohm=daimuM!Xu
zAv_W;nurjrWS6Td{pM8K{3~ozFGC5P!a2kSG;q7{MYA@rj%h_*9Ooge$NOO`7F{nV
z>W8Xek#lj3U}B{f2-!#Dnu<g2x*!LL^&dvK9;w$y4p-idt5?xuea#p0{durP`Z3q;
zVX%fC61UcPJFek&Ts<E@X-2)_-XPZiEjWWOL=DUOPpeT&4{4foMY0BocZ<objx_@T
zp0tt<FA<MQew1sQ8L0H*I)7)n@WHz9=(x~<SIx(`($9m!!+L@PD>XN&Gj3Mb%E$9s
z^6^Hjm!+rk#ArlbOy^0{i%L!BNmwt7*5FM80b_J@+ISsz<+XUPu9>5Vk+o|o@n{EH
zB#6lRz9#;>*X7@9*M-2LD(hfDXNEmAQh{DS&VvL<(20ZIui8KX5P~LxlpDcclAwQn
z0$<!19ct?N1VUs-p#Y8L&L9^Ly$3;R(ei=;bgnph&vhWgh~8sy>UaQDjWm8S=$yp(
zWfaWy;)b3;$V~tgB+z0tIwTYiGOekI$DHgkh91I*i1rAGK4h@c3aR8^BZ|~u!2kf2
zAc7+R0N22GFb-_f@*BrNf-Ar-G5zVS_MhW$0LcHDF8mq*+J8c5*yMNXHL@DDxn68d
zqfzneU1x?NZs`C(fZSi>`Lq^^C8D`j&@KSLKL$JkB8PtU2*pDNlUTpFK^~$b9SM*$
zFUXfQ*4H&rh(D7;9@l<qUpQX7|B5$MmI&&jv9!lAau7jri32KY!Lk_O-*YZ90Q@;@
zMmK=*7*>UJm;yc6J(+QU##KZFWC$TSe+GXK9S>E%3|1mANa-P^*1=$a<o+An@Q20b
zRI_|KS4_f?G(UARrH_HeqA<?FfdSzBA-DeoD`5e+JF*J{fJsy>y$8i(U=BiBpw@ID
z0B``v7){pGZcl%`d<uFMs@EvQ^b-<73j4YaKm7;(B|R*Z4(W3d1R6M&y@WOZKuqsh
zZcYA&K@LV5|ED-6PrAUtxS&4<T%;ZMZk<;yo_6kJmyJgu1i@)uwIX!%695QUk2ptz
zgrwKGHULi!Bb*z6t~E3b06f+s#z(oI)bIq1Pvv^?IsxE^m1w61(7qc4Lx8vuc~a8Z
zoPI?q>D&jA*wTi0g8tk`-Z@U4U*-aMk;W%?j<#s!Ha{7M1c>umdXKa~H<d6gw+BaZ
z+y@OtH}0k&4KaYuXb8F%Hn#lmE)Od}VD_yVICeo=pME!90Ru3Lw+FcZOuyObO|9_}
zQ0f-5D>DELqXn`9N8Vk$L%MipApXvl*7{b4aM&5I2uTcd$BB!lDqXxWZ1Pk-=QyBV
zE!;jFrsi70P7?U!#0xYC?(hf!gsaEy&!4Vc)8z$dfA2BZ^M-)pBgbhM>UdK?z(aaO
z1_&6&M9%9*BI+i&SJq^8UV-Rr)`EZ=y?bReiti#F1kh7|^1waU&%TMair-5A9jsUj
zbvX{U6*xF2d<;-hLY$8;aV7&!w?eXR-E=;M461(rQRh<Zm7iMmv*QO~4opa-NXQkP
z7Nyt0MwnlB4**J4g<oxjMe^_BGa;4dV@`QRtkXaTAOYVa2o3|D6A_pb;OJZBzyZl$
z#{o94&mf{u7zRv!750Ky4f4K1V-9EJ*P-AW38_>3+9|8l<(}*w79aq0(r$DP@IY*?
z=J6^5ST(N0jR*)y5vjHTCP{4aa8Cv;r}W-yJefmOI}$r!CCxSJJO0r*np<J!w5-)m
zWl`%~>TtN`b~{h)+H$wYt)#y!>Rqchd}nKP^VPf8Zic)Vh0IF#yc~)7xS-oGuF%G+
zkLEp|SB(dOZ`B#HVRX>p=Y#<sK$Fz*MFNL|3-SU)lb2XPVdfbl5q3@<=$iBU#H)M`
z5VdAlEz?wd1=MWy6@9EanFOkn1JM?4#Y8L)Z7F9LY9?NdVL4H^M=+2w%zpbnTGf~V
z#Q-HW$v>^xX`<<QfUn9ll*S4mma!h!1qel7_kYM6?Ce&uHp-FLk5>^SY@vf4-gkJH
zz`zF3vkdO^+Boph2!^a?e4kMw#_S!y_(gs-xCr2pu#Hr-xSi#lC(|?Sov&~Q=2M{j
z#MGzIUp!~i!yIUUcvryJSHZ>WP9QHFK-w(Q9gWlD0USsk9u;zU8r+F^oPH0u8L2KN
z*^sM_4s7Ft5=ze+k1zwcIqs?8C~4Ofp!>PHB$&s6e4)OA5n31C_N)4RP4rDZzoKY)
zlPh{Zm#`?|A28p`gdcRQgV0a0ybq_#jNu?4SFo&}eFeZ9oQ7HvCp9{If~?z^KQtHQ
z+|t36q5u7TP;7$9^=(v?LE(*Mdxj?n8D_;dN?Gpeyfr7mb$iM33)Zvw*0NNXEgyD`
zEN>{W1`8YBD6$9}d0(F&HoC)KvkB(mO=1M}rf(98<075RqQ0!%bCIa~q<O(Zlo6=%
z7zkw|RGu%A5Ul<O7F-3#1V#{uUzZ)zZ%2CB3Es>6wR|-qE$X<BG!>or=u6`xKWz{o
z|HjLv1^j%yZ?<Ql(m*g@XOCU~!$|)nJV1+t3vj*sbNTd4f+icI{yjtQ9`GK&9U3C{
zVh#`Ctu5vQNZ)K^dGz1vGnjNlgbumJH@@HtI<+*LyYs{<{#D$Y!uZ!oUke={QqF;B
z+;QikraS_djr;D${JLN3QH6TMOeZTc5ynqtN}$0K4{mN&Fkj40tYV+NSM{zjdgA%p
zaje3~xln)X%Dd?Mr~Eyp({(()bj-dJ*pQBIdh)o%q5l#V=mlBFuB1;g0y&@T*`-Z2
zw%CCg*|OKozh7eO^-2NYv0kP1b=6#MFg0!o^u-*b#L0X7ZjO&l{cS!UCq(700XO;8
zT(@WC(%qbf&!HTVS!fR+I|zXfO9^gZ5P^-u%p=IieE~0-UM=;GnUg3S@cBI>v8jkQ
zu+uac0fyt*xY}Z(ZV>1jQCc|P39h;swh2_6wmESe25f_P2-D0w_wQwuzF-6c#7quh
zIzY8=Jg2He0!d+6PiX=y@9fe6-gT}Dygsm(b*s4W5yjL2hm?nnec*emrJzCrx!o61
zOWP6*t4n7O0HFR2P+)B~haDj3nDPN!+fpWCY;^XP@=JyRa2E4kakT?iN~rJQJ%#%=
z*Rn|<z@0Fu;0D5mX^HWkyb<{3XyAYB$375<REA=LZ8n%v!pk7mAdj6Ou<S%tj(uuX
zyvS_X?b55@tzW>!fiHv5iahhK<#SV|%Mhrpsz04|n_a__R)S_y+;bD-Ha|y(<>VB&
z=d3o#0gns4?CW00*;lp)R!T>H=gPbB>RqNXY2ur7yy$nkQ;Kuqaj|5fC{@ZS({zSL
zItjHe)gJ#6#BfS*f+O;<8OvCrn_*4^-odAJrNql%reFQ@#fnchQ+Alqg8pZQ`#jlw
zV7CzY;D824TmRx>Cl^LQuF4NThDR|CKXx0ElTnJ|d(<Km+hG~nY44}{Xr72MscmO`
zD@V!I%?j+4eqq?C?Deeu=<&7Vn2sGstwu<X1Qhvi&z5kD--$Je+`yqrd9<@u$EWiZ
z6CXj+vlPGcO=wE+i|yNm(b$DD{&HTm8BPU>x242S;9!2fY{f80vDfZN-f7?`?>E^?
zSM%ZqTI9O}tz?&%I^%A3g?0y@zqK~9@vLX1I#hoL1Q-d5iD*#MPv&G?rdW(_T#@gI
zy!5fuvx+|OD6}W~3hTMC@wm~Y?w;7|zulhyixc?*ti^FIFah{=L@8m4m2Iy7E6z}4
z8bkChW_@#*=7gRt>`DEa|K`t5y!`6t>lcq%=^r>8ZZjHF)IPzP1ZW_xHQC+M@8>;#
zayZ{X_237iK;*wc36p|fj(c;?e453DOhD&88|c;n6^t-(kbpHqwjSFi?`*<-)gGn1
zG=lfG9q1l$odD+QO=r)?PO2;P6<;cND<+#bV;R<0dWG$slu8!2Lr-71EB2jSaN?}T
zm%hr&Dev$X6Ce31^jAMEcz;_9bW#s|FJENa(wt3v64MjyVyTp)erx1m+?W0<$86gK
zlM$9y%6%E$@y*Up)lbP`1I_=*<WfPyJ9j6gnUp924&yTUZGA0g*mrF5la}Hv(%W=N
z7dRcTkh(9b9p~9Uy38gm2O{)UTSz-PKCO!`Z8xu9WdB55Ttjt6=y%3{4)T&se*P#d
z?s67BFTl_T-gSrN`o!hJ&mqCdFKjCGWm@E6Tmwn-FBOJHo)&&#uf=gjR~-!htoxEM
zoBVp;DX8;1yfFUO$m>5}hVCABE1>Z2UjK56=>rw*o|s|RLyO7Mnbcshh9>wCkIJNC
z(YJ!&F&XIyLsjF(Jo}WfHHVRd`)7;x$|PShr`Z^ZMudLOxR&x>^?KsSC86l37b#mh
zU$sW9zI<<BP2IlBq&<JBXusvm+O~Q4=;D<k|2Biv9f#}MReoVVx`I<bDphE&+~qha
z{gp8Q_7@|-c~YaxiGaU>R)An2>tw+vEFvI+Wsy=A!igf})sc!?+)CPfs;9BylByaS
z0vZG%O+B2hk@y)?34*DNp{1hPSp^dtMN=CUOM49)XH8pY9S3)Uxi!K09Kq$Bp}Uu<
zr=L0Tf~9w$jeoFRK&YFSuVZk8Ygn{LWbFCq1Y&HWUt(%t^2MOk^e|FpL`HU07A2OF
zpO{~iQbbLomXJ%!Db=;bSDIR{-)QR_I61@r!@+b+nBG$1vpkKPCTdBcs^;1qYW57z
z^mGh9$A=8%+*dJAlILR!ZT$VJhx1KL@=^VZujg$^Bt9<~BQ7DHNlCy~QYIrm&adDS
zwYcOGmxLsVQBuOZ)J{xETmUU7tH6G_q^SK`S9iQVAX3+30mq0-;sksK68J@Lk560^
z1Oz9iXCBUu3jjHf<`)*1?4Ha$d%pIf`^kfs^!1Hs0UR*8`C(_{J+KweE+iq$X@`oi
zf#QDSuD*oh-gdcffL>fqo>wja@VE>i7A5Nh0wM!k#;U~lPE>Eh&?rK{8zwjm<`pjB
zuTJcb#)u+0|2+v=0I!P<QAJnE1*eE@vd2h?L62l!(f3U?JmGnQ)4q~JXz6OYfHqY0
zjueC=;1$_n76dbH#E_`SvsF@>l}oiz^l?WCAC|6rELgDMNci1szXf9VqL%BBdG4v7
z*6I2p1ABSJ-eosj?J*%zh>Xc>cF{BUdZk-~%NRtxX_OliQeb40&)6`YqM!d5Z(1<^
zVLfZR#e%<m)lyp`hZlCbAT2!^fS_y7ClKmUF*^%3!d<4;>)`^A>ni_noE|$wvyUZS
zC4!rn*ewaSRi0BfZswt+F)9fp+tlt)7IuUSbFVGZ>>1?fdTi8_NHZ8GKH?-CR1U#q
z6Wa|;f-TDkWOt6bT`+jfXyDi^R^WX_u@i180;G6!dEz|lKOq{10b;W|!7A}s>3pi~
zpEhPjOqAvW7kD}Va<MERkigi(ViF*h;`NM&ll~y{f+bN54wg``C0W?N9w)Gg7^2fN
zlvEQ%g6)YNdO2##z92otf_bhQ2A3Jeih#7;2}kU+0F$!Uf0zB)!jr1~P{;y&2AeSj
zua9uo>3}q-uA59G*!0@?uqY+iI0@Xn4KXr}4*m5Qg?CY+g)7};WQVy1bO<6VjT-~g
z#0fWAuSDChK(5*GkxdxvxKIp=p{Ckd*DtRRxhK>@ZcYW(c0_CliA`x6xmm_&%P`9h
zkm@>LjEi?gZe^<;&-TxmpOQr>?XEHP3mvUajl`Wqc9N#G`7+w)xlfVqFmy%eGr%P4
z7Qq6a+Q2k>Dv)7g5qoV1EHm5-f*6d#-*?iglXpn+V{t*_P|1Q`L4{rZub6#u$n}nd
zB?nBmT;0B685n7)&#HZG&Db=#SgT}+fzm69QcUsasVG<SA}a`F{`k%#Mb!R0n=tif
z|F+~1s5td}T1ZZx-IR`an&w2T<mI0=LMDdZkDb18nO<)&EhjF^?s0LTT8&<~DbIt_
zEmLSeggkTDVpq>EiK!w{y>t3^|LOk$82Mt%-*TNd^Pi?Vx9*aeU{WW#wVYA{hyj)0
zus>K3Id+`R${(3O)G2-v!p4C8A^-gi17?@ZDqTmNfMvapPuf9u^|Z1ocmU~8xw&c0
zt@_{ZHCHnpwWmYA(^JW}FMPE$x)p4YKU^^px(t4a?xoeTXk1+955cXb4s=3j)-1ww
za8&9ge+Eqw3t<ifr_e<8WeI=0@n@v)bXREtz#8QTwazken@siy4nZQIBn2Th5-<AC
zB&A;t$5s_=z}?dzFVSMd3bR>PKYg!EIII!Q#7DrTm`>q(Hjs_HM$-NlrX;kLqK2mL
zDb$<ZlX3f&=klnD=ReD&Z}~*FW?m@bQX<Nq88!nwbEI_N49LvckfMlTaELtAF;x7@
zI>qGEqOs0)k=ULxYb6taWIbweP5IO;^sl{?AZ!?M2~&mpo1j6ck3a-u<U7Skna!nI
zv-qTM5;4n)x7m!XIf;!9r+-cKMtm%=i<~76FwROWy;JD(c=ze3kMSzrxXgyi<|miI
zCq>M;R1)(fpdngvi47X&zD*kJSpWw}^=sJJj8E$H@%5i8t%fER2Kf36ti5Dn8C_@B
z96Ist6V^3nT#Kyk1fo9JJdo~*Oy@9pR?j;od77u??9-OACQuh8OB$e(USGZIBYx5w
z8My_pB-u!`6Cu*8j9~S-hCiRKo{87AA@eNFLql<3uBJIIxlAnkFH@6a5jQ;w6G09^
zoi>y@lFBFiY~p>~Zaf7}e-hI^_&ec&wY$M$MN`Qc8yp8tXc(PEbsIBaCu(3qCb-)3
zBu|xDS^6q3(z^H|YBvHyvpNgwx*k3=_>g-xUx36M6_;bl#8zFgu*MZue#IJO&!XV6
z80AEq%VlqHs_vW*JDuesvCHkS)6Zm>n<K+8xZ}}Fp1s9!Z3VQe1`*7xxpL^ZGTj#1
z@Y-tyTI<>!{Cu2|W(rDx<I`_<RA^wv+IhkRx{a6M^5up#88mT)mef#-ITB2D$<OxZ
zJ=(ca0fL8F?dhf_brvT3=MS4`_?*w*#bu=cHWnJ0RjQ>@+Wxqj@VYtcQ_#=rIcjpB
z{|zw~1Qz(fcdOnQo^<#abxVJ6T;+1($r>&p^*npW=XpE&=7O;^t55J8)Di#(s3r_u
zZsnd6)>D=Lg9tQFwpcu1y(4b<S=s5uE~-zW;$G^_f#q`%DA?6!f#abTQ7^z1))5rg
zQrNZUdOXQj37fpu>lQ+nD~{={GPlneCOr5XPWN~Aom6s&l<0W*E_+n&OCr6rk#&a2
z^a0~yqjhYT?BYjn=!_O-3*|mqTiqymTbwPCCE7UJG+2`FC12r;#rCVO<gEdQe=7;o
z_QKyAs9W2=nt`Q$;e!FmSKrwudXRo^QeSGYG8bi&_xsP^Jg(7(AOmJaM{9@>`5Ld`
zcK#Y~q$JzX&kOm1W+X;c`lEl>2u#{=a?ij0&Zi_j_Nd)ki^Eu<RRXJ@%Ea^TkVak}
zB?Bp<9?KjLYoFvys1$%eB!3(nK9_E2O9c})tu<sr(pk^(y1v>i8XDWO`kM6O_v^za
z@pooTIZp*(Wax+SJnuAZ)tgEg>~Fa;2oHnG`<g(aBsG3fWkfpP_n~=`rfR<*rXk@a
zqgMxs*^U@-r+^5Nu;GLd2w;w}R*=Zg1l;8f5Vu_Dh75c>X4z2dJ_(b2Glh{swbW;h
zy^p#wKCGPm+DcjKGP5KRWYQK^Hdog0UPI&>ize;3qn$?@Cmfkh;Ey2pRlZ77`MD^^
zF$aE`qR&B9Hv<ifuy7XuI3p7@@+R$D;HuD9>tiy@9*6Hsg7KMwC@KEGUSnbw<4fmz
zpInejXlEYa!}Z2s-K$_3V?J&&PWjvn{uj)z<88m&ZKu%LM=N=BR&O+xPxxae3^=EU
zx+dP`pBI$Qs@T;LdtC&2IxiI*W!H09WuJ<dw6C6h>w9ri&|r`sv%^EkuD2zng-}~l
zHx2ZD4JaG^z%pcD*5)=OFd+?&a#@Ih8mdyn;Yq7(%}&)6Bi99eh(x}^KC^QR%LL|Q
zF+x<FWDBHmESx=N<O59YEHFy41Q3kQe~c$8q9As@WDKavmpy>=rqTy4m5vHf^lOTi
z1T^6D06&15V+7%eU?>T}jn~X<f+$cO6{5f=86jl{%$YfWJfMG`%zgr8n8bC0lq5`~
zG&mbFMNEC$Vwp@eFPa}R_uC*P=A8oeyv?MtEVnZ)Nu->6HZB1%iU1f5=l6yPx80Aj
z*L13#*D1I!2(J(dS0kw{c=_D}%aG*qGA=#`GZ^#AxDhC!m}~+QK6{&4iF7XJnM<-C
zSALbKEky>iO0nq$$2bCla3r=Eb+;HCheX1tV3|1(o(4`<;=}iXuXuw$Y1rNvl6}u*
z2&I8#0lWZJS7KNExN{*M@jV8*omdVls3$Vn5cuNWdn|YtT#Kh*C<WZ)T>FUZn{kTE
zsLaJEFt;hxV4p91*fn8OQXb9??FEmlGDYu^hD?|~w?il{lJ^da25^NIcyRVR&z*Zk
z?ii&wOm?S@*nYqTAtOfyn<8IjwEVXupRCh+3C4^}ifMab&ml&shO^OBvaj-~q(jKJ
z0B0dHrlo)j$<baV_liRYA%IqiGj|xtk88?K5XBepc@<oQ5{E1Z+tIw^`!pTMh!zQM
zxdt^;Ck?yp1Q<1C3WhgIlw5egS7M(q8kJ_M#bnjt+Yz6eoudi?z+*PZ$sF6@Qq&`H
z+^UV>F^1^IN=>$i(CjDq1*n$A?|~%=pt!)weiHb+F{sT4g)IgTZeH*OSEVvVFzgnW
zYXTSfs`zc0<QqWnUW@_>_q6#!#!MB1Y1NQV74QpuiLZJ|g^6<)EDZ;-*?<&C#BF`B
z4z996Q~^B)@YpCH!o|gDO5!CxSTB7SMBqxPuEaMF=XAuE(wr+5;IUuUea68L9-J{}
z&XQ?KePjkcFJUc>=c<=DGbeWW<xt(zK+9(%d@F%^FZVq-m{aiqro-YF*PvQ8?GUtB
z{ry44&P*s9oq8oQDH+Y&{@~nUpn>+%m0!JA+<SrJYJsnVzz=5hVui$Rxx|aM@MA9R
zMwDA4Pf{aqO(Xwkqu^Sj@KNKDaYQI4BAOPirxAwZXA{$g$eKgMbByJ-qC)8?JUUwX
zCuw3eI(CYWofKh)hwwjuu|DwGyAbtjg$ZX8<rN7C5W&j)iD?VX%#sj;wTJ+(=7018
z^bo`)p1aXDP6-odQzPIXAE(~fO0VKFg(9?uqInEs@&SbOZnUBeujS9|IAZKM8EzS3
zsX{Lpx@Ms^(WWh#^7U;r0Sd9zh!reuouIUh?^_p`RQk9Dt${mqhtMHgaq-{d6OJH}
zSH)v4*v9|t_~)H)zpQAe%F&LFs;x<gKo>`Em1I1Kzf{v4N=$YbO+F69d8BG2&CT$X
zL4&_l5k{sME6~WQ%5u+f^JMPiG7VOS66BZzUTu%(JXvC9EjoHVX)uYY5!#baPn%Z~
z`XQNke<Na1Bh7vyWs1?{&Vw#ns&y^Mn)ZM(3!mcU60<6qm6ECZSyXl3L~uJO=B`G`
zFaGTJIn7IwXZm}4IAqmK@(_<pGfo}a+ec*FU&_O+f?u^)vA{%H1~2wzQsiO*K4p9O
z`bExc3VPT+X^4Dy!E#|Dj?-6y=c9d@1Vrpqq}&U6F(NqvNk(qpIITY*dPqvBv5BjS
zP4(t{?v)k1DS0Jca!u;Gwtu^cX{Hh}^X#FobCgubHaILm{WyA*(ZH~WAtJ|@%akCM
zd1#mEPst9dN^qW5vr869tSZTK1$Rrq8(L)}{k(4+G8Y~C{%+Ar4akkA%H)3cK*K4X
zx32rnxu$UEH4i)M-xL%C_x4E*?==ml!A451iC@+vnRyLYA5!Fg)!X#<LUs!oFhvXZ
zWaSZswhaX-$cEu|{cppdDK&-WiTpd1o3q=e7n)8@XAMgKJS{qBJ8)`vsH!MHZ!Ba+
z)tHwmo0YqE3K+e`2;<``LKeT8kmZduewBZT@{xPH-M~BGyuhMT=1|e(3Hu#9x2MUq
zE(@051+P+B8Qv?WMHMZvGWl{tWaex?1iP?4Qsw4@9BT#^CuNC`HI?FWX$rp*(IaQQ
zdA%(S68K&3-bdwcmkFt80X(}N5g>+uiBk7XNrAfJ6jlhLW0c3SL{6*ICrcop<8;`s
z;k3RA&I4w5Ev+i1vN_5*zCRs9t3lo_epZcY4hvvG&FauZzx<4;o$VScdU^0<wBeZg
zU0AuPy_TC#?Qm`;)k*j6NPiw5!;I^tE7H}|-p+;bl?j1kW<Ict<rtok%G8-*+qr<)
z!J6(4XZUyxRw*S|E|8`rACvn)aFQ`;Ml`*PrzNnaJ(pO-Tpja=RR3Y7F<0Zm^SUO4
z`nMV0@6S=4X0q$QEL5Cwr<mpUaM>U+;gLb%{s(*y&esM_3|`)FczBc}C?^Q%sM8Z*
z^u5<HyD>A%W>YUgR9s>PEla}}JsuzC8AOyB6cZcf0R#7lE5+1Mn}&w<E+0f*Xu7#Q
zGk^PQwx(Udr+Ye2_dT8-q&z*WdwMkX^iLhT{6m)GF&2<~%idhL8?`BeG*?P&;=o;0
z<B!fYY-Mw9xsPZLPw&`;M?N)eRZnUz^O<))f;gJbZ}&B)IP}Jm76{t&_5>5|3kW^n
zzd4jE$P@GwX#L+f6!!n&P^kZKDBTkdB_l7dprri&MN#4eQ&}Uc{})9mTiE^IpeU!1
z$p7Y0G5^h>LjM<siu?a_sG`eP%9>iPT<dPV(ceBW_<!V3G#Jc~&nCNA--i~$qo3t3
zHW=vbUEH=j@-oN^bA6S$+-?Y3>hp12UGE0syW6~Rb&Jbot-lmbIccXbOA#e6hO_Yu
z_KxmsN<u!Rx#zsiOK~7ZK2bhKMx0ENJ6utki=9V7&I+a|$=%oI>eig>O)T?lYwzs3
zWv!sVix81hjIxwg6o9ewDh4x%Das2Vcqj9vL=fDM78#)O@(7rqY>wsaj%(eX5zukZ
zA)f<pq=aO{3G71HQP&peh6NcCa5n8}{1cw^;j!(el@`ooCJL&`%Pk54^N81xNRhpe
zYzeWko0?S<3jl}Msne?)gmVQ*m^Y<80N$v7T!Yv5T>?j1&YS52q;@s>7B4hETfMvn
zA@i*5yM)@bOm@0G`TP)uE_1&VO^}=BV3$>QfdVBx4=-B`^}M>Jc5Zm=R2c)nk;1?#
zY*~fN<dvD?=6H|Z-FQG1J#Qpgt@QF?l}hkyo$L%4fD?=swi;D^^AsS|dOjYF#j}e7
z1#|S#!O)eo&DXCVyGL)bpVB(NZ8a9-!=(_X1&<^%WZaQxvbeHLfB$-8Rm3FWg_qHu
z8MpRHMTXsE<`G-CiZ=0D{r+i}*_rY>JiCw*=OHEApl@W%O({qxvC6h{ze$g7#Sp-k
zeS1k@v4EB;gc1emnP_QPPT`S1)H|L*jbo*nJXGe0`Uupt4FgoJYzhTc3h<)wF;L*m
zJRk9(jDYGXBAr6`vOr*w=OsbeWF1HZh&*lg#Ibgd-dO1VR+GRcM(LekmMrHsqY~}P
z>?;%TYFWz9atHO;^q(d8Ahm?yldM=G9$ewmMbxiK`7%LPP7JvL)?uJ|ftjWu_ZZ7H
zadrgg28|+u6o;>EwOV>)K45h(+kI~_U1jsC?20E}13D%Tq2E!p_knipoJ0RT7`^~|
zp|Zd~z)x3_qDOA+X0ovA_*;m0t$Hm;>0XEXwq$nw#Neo@@bLaO6HEr)kJ9Y7tJlm!
z-L61L_)wE)V&~T&$Azl3o~4h~tzy1gX<AWzIJ9>#3r`ej%2-av!zC3et+dU;nN6ax
zh08)=d}_hcZ7BwBt^F+q;m#pt{>;`h;?Eq7>BSFGq-Wtg;NDa4DAP5dms;T=bxYsu
z5jLk9J*u{4x$2es;ggDQ*<ZQ+IYV^l{=BJV_x^&Vh81(fzC%ObIY`XNK2*mV9P2*~
zi8i8S7|l)0T4~OuGvn|^#m@t--8N$6Wq(J5IV~E-pOcm9w^%8YTX~rr^UcbP0pM1L
zFxzHbC0D#*YS!E=3b7^RBRT3H^jNA!X!Se1v${n0&a9kBP$X)iw`<jQ^)ub585Y8t
z&GQo<l{|)ygR+hb;lf)o+eITtA>efG)_6nxo3wiis;D>Y4xTj7-1(Bm4+hmVa&bU_
z?YUQF)SG`_DDv7R;*swrw2)dO=hU;ORs_Z~ADuM?eX;b|o+`&<{*AD53{ZO4DjA*w
z+HeNO0$*#$qB+~}&z$>yhStRvjI8*GtZ$#2Qn<9v+rt_mu+_H^?tnL-FNP)D6b7xo
z(Y8pUm?*z3Grz*N<2P!Hn1ogb4&E@y13SDF-bII~ekVhT4Ok@?4Aau=G@=7d_H?Am
z@V?YXog3Ga5X5A&OA#QR)B=eXS|&f1>%f#SDX#Xx3^Il2r~yFCyIzbD1<hY}Y2zy8
z$ND73r5C7dgJLe2HyRc&Uf<3&t+xkavPjqvcn5o6W_5$vRwrEy(gZep2xnBJvlNs?
zLM#e$i~OS~#@-DQ>hgJx4DE!APR~V@%Y$s<r#M0Puvfcmy&+w-Qzi~JQ^ZeEh|=f+
zoc+v0N9EmOZEq)7MWQ59uHQ-;mWwnrBcD-UKO2KWHL_(%p#$Wc`HIVVbhu}Q+H9Q%
z>kL_GaXdUIiVP`XOTcB0lw@w6uupgoP^<6AXI?jdNH;a`#+yc}r`O4{J!`i%<IYe{
zcY3!323@uzDcXubl>bb!ywxgW2yu{C<lWZOR70ii_2)4}@D!EZXmuW00v+GL1tKwP
z1dqn3@TtAC&~FJ(3|-2EMYo;DJn%Qo8c6M)5j2L1Bf!9cMlQv7F#Ya;pj@IeNI~Ob
zU_aK&N$W0_raVVUA0R>1;|3vbrHw8g@gIe*v+VRUjM8`1hWrgX2kjUHG+|I{a)=v4
zztgF1<`q~34f09QK<#BKJ6aA5M$D1QUaw^4THAZv!UJqvzyAXg!C|btN5pTgb9r7>
z@z3a|9g}mtP@BBxJd9Q95ru(rJOYL9vNdSq3bGZVOts=4dF*iN*$BUe?18Qx{H=UP
zt8EtCvlq&Yuvh8k@o<~M&Y&NG%0&r`Vz^whiQV4bB2_sFY0|OFb6P@qNg$K_#AVlO
z_mwrvM^;!RCmrtVYz+Ln(+yF8HC-%@131|ZX)x<vGWrpn>D1vke6R^7AxHki@*Y6-
z^m?>NprHvgMiJ8{3ceT0=~9K`hNq`<P=zzZsCYSv^!)34H?L)GF^Uk<0mMF;n+@O^
zPbbA>3krcaY4C~56Zz=ox7XkbJ-4X#l+zL38v_KmR^Z}Gx)dBaH9u`?{IE!L@$Dnh
z54+>8CoMgsr{^*g+5Aqk`nfwB-V`K0@ua92)uVM4Up4|bVH&rC6A6lPjLNNIYPd}z
z!5Xds2r5knNZkf$0`X{S2hVDVEUf+AWAC|s?qf4vh64`zL-#|{B@_0ScFxvId_`*J
zytrAgFg(+aPP(d1191$u0P4zN_)a95T0_jIL}oF&{Uwh&(jcOLfq{?kk8B!^VCA=f
zn}$$^`YA#~8&hn3{GWSjY#pYSq+$!VhT5nc#H)u~nBtrQ10nN$34j?3U$hdNYQaE)
z?9*9;U~~iLtAt>4)^kuQ_}|}E_|4&gJf$((sYmYG2J10bP3a$?b;LI&MS3M2?x$qp
zq$LAV2{Vw}d+bqXm$KJ8gneiav<|0P@!k(xU#M!@xvgzg_81tAw{@dmt~-(EhZO?F
zz6>$<*0|Fokd_V4^b@#u+^C~`6*|YclS?%fr$sW;9U`8AT*6nCq{uZUBhd5|THG76
zsWS}C`|U~7a8=|@f`Iq*?x#jb)AL(x8-*g<eE)V4-63aXA2#bH>y=prXs5mEJ-Dgi
z_nb0L!%b{f)vbIyu>+XCayBJ%11{!Srs{Q&)rHCl2UdkudkB$MzI-wX-oztq!1a{z
z-I0Sw(RDiodyzM`{*8MW9{_6H2=3wC7}{9)tEc?>vk9z@p`nn(3iqNE6bYOWYd;d(
ztq1pJo#AaNA|0*VO?%B5@hyb?4v)IFM<Z9}UQ6#E_mgbvxd@{ECp2j(=PZtD=C%ud
z86SNuN93Ra`*SEHZ=NKu5p(RJ!Q^?tIvA3|(he!HL)=wKd{B9@g#^Uf+fo{$93{}r
zLtxK)QOqtEcA%ny4QU?ZY)^U>klygulI|KV?oOzT7Q>8eglnld#~o)|{zFk&fPr@o
z;HH7)ZBp((h;vwF60-qW2f!D1SrkaN(s;01Ji7UUs9*%Z4v1>u674Z|mbL&i6VLWG
zKJ6fT^B!yz>L--pkyn}i@<5acPSDije1;&$5)*mpXDH(+Xag8a2VrS~e<ZV?U4Vkh
zz;HS^UNS2B26rj^d>yX{gbtKTa5qwPJqJRwxZ<gifE?1RR!P(~8Z5t^$5aXxr-69q
zgg8v{wUD4=tPNNa&TluJKjl(zKcQf{s^DRJ0k5%_w3IU6L4iBX%X!@k!xI42_qHT@
zUt9I|apF}{_i?cGaftNMIw;(o_c`OFR04|j%`VEY*R;d>6-yQlr3bk>@qK~u{T}AM
zuq+wKbSeGDrFeBL)aF6}=>p0$FI!SK7ap*;bs<|FWed++oD3+6V=h(?tT*PY9Av8Y
zmqpqY=Vcc*4*G~L1+`@dxitj+&<|=GjCHpOMX3ivZG)K%xrXmUM|qfU9|Vv4dy=Om
z?q`R1W&yKprB9ebqj8}vgi>T&==1EnjsY%O>zOI1GVD7?VKM*Gjj*k3-JSc`&rHT%
zBh+KJh{$={aGhrcM+Zp3xo}@-#2`MxKhr_qE(l7Efc8eP4>7R;k+RLmIUms)jo2VF
z1Re*50|vLFB9i$SShkp)2Qo5;F4hkawvo9qE0D{+Q32B2=!9?;bT*<oOmHAN0Loi=
zzorEr^N=gi_<~VQhr+D|<L0+DJ+9EI7Uibw*p(Iy2XvydbDZ0jJhv26b4LPkB|%`7
z(RT=Pp|Ubak{l{29<jw3?TlvJ7ky@XIm?t~ejf`KOMpd&GJq21I+C+9>jHoz_7Qtc
zEvqMi7^+E1q8Y^@AraaL&T&2CwUy|^cqMgEqqAN25M3YJds#A9WN^z)0g-&%VVG>S
z+tABZQ;kdg5}*0)XI-^&3f4I#!!+yYr_XE-?~@$7EFzU(+d!hU!J*xbRnucbgX!&s
zG&Sw!hg_u3l2>>WTvN9p`&S`%$#F-nC*PP(0gJ)Fbn}i0CtmrqXkJPz(edpJ>EaJk
zoOrs?(xtNAy4%o;W|U|Kd!ep!E&OPlSO8RuOwP0wdYuE<;#-%sfY651@%}D)ydX7A
zcg<ml_Nr3aPR1sXsWN@lK+5$sG1HsBMgL*uNe-!<=~b4Xt1jfMRpT=r+gZeEG`<Af
z5bJVEufxFwn8b&L@Op|Pa!$R^-tbck*0f1DR7x4jA;`pe@8+-}D96U;O$?C~wnlK?
zG^GfZ>oDTw#OGme+FGrWZ}2UbBT%_{mA_H5dvgP58)j>VfuU~buHk}aP(Ep=i_Ri8
zNXZ`!xb$vK;0~-{Vz_6Q|N5Tx^?kSN2c!ItHNAFZ(7!sp)cv~=-@ULr5^Dihe;*NE
zSJlNMiojY-Z>6~3xBIZn3hcmqizS6zm2YgX^m<L+I26Ambg#%HuD3h=Qri@x2wF%A
zZnvU__6*V#o<$!|OM-G)B_kZOX#{6IDvK5e?76nCY$=NG3gv)$^<85ezId}F04>eK
z_u+!TFKYQgF$28BDx&`}xC!#%f^!lNUYbLWFY%f>$NAr>$12R_>K#r)PV%}l!FT+j
zde6BGTtgWB{s((+8P(>xZI8zx0)$|}gS)%5C1`MWDPFv|)8Y*t+}*9kiqi%y(o(#I
z8WgCv8>q|P{L=QEea=01+%fL>kNfe@r;L1Hz_Zpn*P8QPb3H|ia{-2|6w?NukK;MZ
zcBq}&W!B;XfpE>(y<$#}68F@K*ES{328T<_OESt;R5nV!e$omSDW!NgA{Y3hx5KD~
z$`kadFMkbA#f7BVhY({zKA?wFGHhJoBcAeu-b;byF`-o>p|vCBQY`&v4Jy1{D+pqB
z=Wc}|nkvr;h4U^^_r-)?w`X~d$79Le5+tUv*P(T(!`gmTQzDnR&8p0!oTdDe)Hkbg
z{g7Tt)n}+`zQ2szF6Tk1vcM*FsPG^YV3iRr!l}9OwTMMRX-(3t8muZUq=VV@+a-VN
z+Po;|f~d=Ss_0X~cI|1o0dNryb@EN>yzorlta9yo^6S`Z_aGS6xa(0MTy`9YKcP94
z%%R#cRq9u9Ka7rpe(_ek2qHmwtzm3;^!f4RRTfLGY>dh)sFFdGmeZKUZd1_oR8D4R
zvgX)^>t$-yX}!*-zwR}e?2K;7Lv6w?Wky)OTL`4D=h*}%xd%`Y)ESL#Uop9z<n=9y
z_DyF*Ps@6Ea^x(_RW*PR?vj(Le_=tZtZ=G2!Eqwux)M*@nfs23<E@R<_L-R%B;s$p
zr)oFFrcEq%*$~?ulpUO-`>Xv}Vs6j6$hS=tQ)zK@(yXS3&vz6)?dbG_wHwfZ%sbr{
z=M<k`N%ZkNU2<qmPA5(|NX>jB!a}+%@^8fkEM)X73Y*Vc0lS?#nE?K5n+DkCFX#t5
z-FbVrH|l&p8^E6;h7T4M9zML|$OIlL%X*COi`p|g_`!1%o6RAeP3i?oJXro)hw5Iv
z_UfVe>ag4DxGc!O;K;n^AtgNr-QiiRsLtLLlAU=N!*lA@LG#`>!k&I`Z<&X6l`=Qn
zk35g~`>bGsf}LI=8(!y`Q8XNL<-oNhnSM8mei!N3psiJ3)Bx;j|2q%7^jnB_)|{^6
zI^i|MVC;gC+J?i5PagC2qG$PKip%2nylpn}B{J5*MuVd8L9gcpT{goiG{rm^jZ@{3
z!I44#bMPS)&ybJa(5=DZsLmpXqk!1&MG2J#mkl=_!-Af!tVMn)&O~1H*oM4$rju0N
zeOaQqu#>*n(LX3-<i{W;Y+(fQc?7{YT4;}KW-n_sEMxp!>$hDKvFR;94x!o&!9Bm%
z5IIphfEQ^Uleo8|DOMrNGG35fp&He9=E^w!xuy2K@qzaKFt>I0$#6T)5#h-RW9cfJ
z(uaGMn;*zC&mPRJl;5y;lk~<v=G|*34>}5pz8QgkXi=0AV_O44)m>&G|D{G|8LvNT
zB?F+-ycI3z?3lksVwk#!Q1wK2GO#%+wj8^h@pgKMDy~nj-pI9{NBse7N8IVVz$Nhu
zwYXRJd<<rd&8CIfVni2hL~lRY4Nce{N@%}OjxwRqi{GR+yQDkb`=x%yu*+sBc1aU4
zt5Z=M>NLBQFnh6ahU+l|N?@igi@l*A>e1CqU)H?BiSp;zr#ERCc5NwjY7Orai~Mo7
zh%)sY4V4nU5F6W;P%*C(Jx_;UT<@88scF;k>0F9<05@4EU^^_XSg>zvms(jkk4=x1
zNpJE@_ZdDkVOd)E(Q$sWWATkd;tgcKdNlRzgVqJesH)7UQAhfVrRg2w6h}tP*$fl2
zjMB1<6OOf1oAXq%cT&vnXouV>p3JPRx%(vkI%xTBQ^?g9<5@i}>~9fwPdi;+kKTAa
z{`mEczg{ERSK1}t94fDr*sMSt-EAJ9p{ag#N0Nz7jgkKK*brsa2`{K^9{ACS>D(Qb
zM=tcZ?;89QZ<<2ZQk`}90JEXTZzCt)h4ZYtYOWjgU<NARMNRgrB{0KZu5T<~ICpXZ
zZNI@9y757yz<6xKR7}MraC4D<lcRyw#^VotWRJAo@KxRW&SwUhxeFyHgrkhNus&Pr
z8Cw@$Lqgcqs9$YGW}Ven5sG<G6eqT2Q6BVQ3xsn8<$g5tKnD2doY-@YB|i#neK!0@
z`uzsxoq(73OOc@=BHNXYrNx24u?wY_UItfjhSUU>F%R7@a($0f0AS7md_XK88GCnn
zohya!L8^VjhAI!n$TQ6g&t^I+Viq1;8yVMmK0YPEq<9X{*$2U#`#d^<yxIQH^7+JW
zWyDj%w{OgDe8fb`-hi%_m)y%~**=4QFadqkT|IOAvs*Br6a1-D@#_+e_&>yBT8b1a
zE=>`SWdWoAAs+viA;vQ}0YO0#Q87tL32Et{`mqY0NB!q0<4^tge;Q>pG|@6P*RXY=
zOf%{@x&NGIbo)8YXzm?g;S*%%>TdII(~LeBgI)hkNd7s{n4BJ#p7C>_G5cQwjp-%j
zq{^z|#^(B~J+1u%o!1AijgI{-CsT$Pms|-Po_=`^p(?w$@)TVONH<sEW^<BFa;zUo
z{Jp44Zp{))*KKcZ*B;F{6YjG<650vpOJ+P{<CBf3a4A=a8JStxIk|bH03NOYPG=o1
z(TYmDI4QvZAz1@4X`$BE>WJF<Mjc6BcPKZFSC?0VfsB<swF1VBj$Ug>n+nqb9?_96
znz(65FQuR$$2?0Vs35N(Ro&2`AS56q#%gqftV1O$Mhj(@ldIE`cnqeMkb!9l$xCU%
zINB6>QwABdZG;2Nr_-jGw6t$4YaAda_-Kh=R9oM$+_JB}0pY+~R3ZxaUeya*)WIeg
zB#Ow<_FA{Ii*(jR$|tjkOQ$@NZSdxnh9@W)+Ts`DyeT!Nv4>oQ>I(DiRdM5DO|dE7
zmbuzRcPkb1LP8RKXgZ;76~6#vTF?mK#DU)ACu*%l&ak`bX2EGC=k2Cj5>c$I{HcjD
zd4w!hPPFp8G<Ye4)jdPmj>k#|r%0Q;H4paia-o0dH?!L&o~kN9_hAjM(VLmFlOOu}
z@tv`uKc0|Nkld6$;TW@!X-7UYv(^A^Ro=G_J;3C9Wp9~CJ=K_fed%i7z59}|@4Rmf
z5gc|mJ<C%L=62=q*HXo=zuk2;%Q{X-Ov7%h1Sbc)&lySu(?7I+a*i2y#7$G1V6F)%
zyv_$pSjE~w?5}m}oaTWQW;C@S3~gS?mfEgu+7LDuTV{Gc)G_6%Cz0pLNW(TeNY)o;
z9SFj!{9bx4-=I$sMsQ^%uOI@g0?GS0LCu&8j^{bgWI_u#OqaMiizK3bwd-UsgrhVn
zucypO5R>6gG~S#9(xh8#!fG<qd(pKT<4>b=#~(#wZFTM{P}#v+`v;3F+(U7Ve8G?-
z_%OK0#_wfwnRmy_7Hv;7n!50+2S)&Ro7q$pXFx*-QS0`RCZocea%ecUzz$j^AR=>7
zM3iW$jgtAAyv{{6lgMIE6g}4IQ{VI8_n8Z}1^esBYozdKs~<sNXO~wC9Y-YVHBo)`
z=oYFcgXX8NF)SO>*%)T^N}{d7thBJ<r?Z-NCep*w-qZ^GV}!Cf@{wi^*e9!-FOKVI
zYSQS%x)1M09}YaFJ3mHr(fgoRh5Gy~os1H*bM0GrRb-YzB~+U&!+C2wGPTx~)u5jo
z_hI4Xvij#Y@9%0*RadrZCGO~k^qqB`LW&xdc63zqs3vyyEIL5Db-E6xs8AABlUId4
zjJ^YqX>o6GpN5r>`*h@yyfN;$oj2&?ryR4_b$luzLvbIPraHBXNae!^qESJk^-Y8n
z1QkaJkl}bLfqDY`!5$1VVkBMT`_8+PjKr+~v_b(7atLL!w3%cC`k6DOvvWF`9RnGg
zpQg@`f~`P>+B3UF$)u)_v;I4((<bxzj9K@=*cr4|plJWYlThN!ZRcy+o3g2QE>)bp
zvTVSJu3R}Nz4+JH7p-@xSHak~b8RtFkHYCqwImcaE$nEZTOx`xA778|6yLwZ)WwGK
zr}KTSN4YV%XV82vFoNW0`f3j1KWTCiyz9vM12zn#rbX<F-rM`sBMBG38ln*W5X1YN
zdeNRX?B%u-pX%q4m7E}Wa~$NA;?U@p7cw!AR6UmMrgn?*9sTJ3qfeJwWpt=7O3r@A
zp5W@oQPOu~RvfoKv_(<B_JzeMm?eFh*Ol{&zDU?0-2Jj~Yff?WI45|6@%uwtSkvUG
z?j@5HhmD<29X~kVGTOgCe-A{=1b(`jNY$kUQk&B7KGTyi$TRiu$2wWSZY3h_wGF#6
zA(c*+CpDcNG)ibwo>QR>B{8NV(?HWl3nY4ZNc9VX?Sk$bvxu&gqA47Y_72T~<FJ<d
zZV^FI&_I&jl>hN!(|o0<%W+K7`qK|Cid0gx^=j3ue4o=pbrloy1pKobm2c@UhgKBQ
zgrSOMc1tDH*G%(7htG3+e7x1``}VR6xRPh+3Sl6EB%Tvq*PjcA!gm&fN`JTse%DRC
z84((60Pt$iwY!3;IVut}65zJc&#`&xpP4~yrt#f2KKn3~`pkv^npJR-2h&R2`Ka8$
zSI~y^(47MDqVd->NtT}CmN?v!F&w0kNOORLA_$4^>t5o02eT{m#2BDfJs=RjD^P70
zNIP?XOm@oxy<3<_F;*rcQstDn0c0x4Lm)u8(IPNGta)eDX1D|Z5Fq&nze51VZ8E`v
zfJC^mtH@~IW_JqV`Re^`8-}Vx-<XX?^-dep>rEeF3S=Rkn8Qx3iaUuBJ&A(UWB|-(
z3IzB#W&5aQRbW5^0AER@C6EBXs>I}ynMzH$Hhsk|GDLuK*?E8&h{1|nn95KuOmCZx
z`?q(!(m)tR?r`~!a{c$aUTKxz?|KD9M1{q~q~+u|emf8TS*}I241d}V^v&fA|HF20
z9&hKO<K*$%c3|M<WA63Sc3|yCdDk2M({m6W?d2cf77^q9x9uP)?Y~s%oPXF3vWiP{
zt7`MA>x&wiTl=q5-uQM74gX!G|Na0wB~Q7M^YznHu4K!pkCUkGA>R)VJ6)+Kq;n{n
z^c}S)g@=r#Olc8=#-1Dv$D3Sx@W+?09y6-eqwGS?7+En+QCThmmfu-aoWL&|phZiN
z<|Z)7mJrIdgh&pOJ~>(#86hgHEVGYjikmD;pag+hRE$eTg3d?SSTY$*Ei6Or%&VnC
zZzfx-g>{hek>tw?(9zQ}Fan#HSy<WFIb0}qb@$Zr4)iOEIX-#+;p3-|LepW=i=j}M
ztOkcNfQ}??-&2R<6LhnrhGXJ+%<;$!Fzeb%&&izeT&;zuGA-^y?-GKQ(>?I@6iCOw
znCk&4`1oX_U$M)NHVNo4o%R>Qiq#7aGoUV(5lvzoh`!do-fGrpkQRn(r~>nO&X6WG
zpOUCw!_-d>HPVn^;}-4xaO6H3E$vc3AU4e^^a`A<Ru}eue#KORo0{w4%UPnS++LH}
zafbDRJVE^-M?-@UhzjdU5I+Jr0MU+K!}E3vIVs}d{D}a(8z5~{tPqMLxoN{dkZ<+n
z!60Z5NZ4dXw~-A%+zV0#V85k<0r|mIS{HA`(^Am`w2kyqI5i?w*mMEd`pMXjO4bSb
zQ7P79w#SdjCU0IH&SoECsysct+Na=5C}9mUT>d`JR+EpKln7VwB#}XiF9fn^RCZmb
z;f%!K6vV%eFDL;mKuiGKuay3WhvuL8{L@3DK=IHBiik_d$jSfq&<NrQ|43tkxvZg;
znx(@p-^_VkXHR`+Pl{>A#M95*>t~zk<mvS@fdj*wL!u}N>=qvD75$&4nW&8HSc+*T
zhjjUuX@-)w`SlHr*LoX!dMOR&-|70l`2gF~ND3y1v*pb<g)RiB)~>XLXS5p`R{Psz
zN~mH9x?1-II&1`vddwZVE%IeUWK@|_VOBo)m2oFQ5So>hR+CB$qsb}))8wE=uyZni
z!5mtGj(pr&bUf1V5*{3FP!LX21gj$<3`o;N^`nrQ!j4)&0A>STK5e2Hz(xn6#UhrT
zH8u;PLSjVxAi}~JTCAYR^n_-RP^K1=KZuV?LL9&`i_F!d`hx@Tq0E$#6Tr!6&NOcE
zSJfFfb~Xv>vQ(xG08&O1(&@{>sS{m6lr_xi(n%{xU<jT=Rf8Jzub~qypeqOk5Co)B
zPUc_cCmueGq!QcDkO_%s8A%b$<&3O;M~8wf`YxWoLu2jx)5-KRC}BT?av?gw?^4ol
zFiFVGr&yP=D{B5eaA<v9gYTMa&4vDAVTZ0j<gMpM?2)L$7lru)le46H$UjayKM#hP
zMz~9(3GSqMUL&kYVh>52I+Yr0*;@xML1;GC(W23S12r^|iWWdCEGkX|un>|;C(350
z2ust@1L!lr$^u1zVj(pF6b67n37)-tg`}yi3%*h+a}7_OL>n)JU}CyBiV(tpsJxI=
zAO;~ghTaiQkAd_2Iu$O;Uo5T*3<uEz82<^+zx`m8BjFVkQdCmpRo4;KHvSF3G6t4-
zO^v@Zm*C=Q?BQ$iGi@oL8%)XB-$t+B#}jZlg+hwLQiv2fbSbak3NbCEsHCx{uX}i8
z{odW3M_ar5kN-Zf|C0}}LUJYrJJ_I8jiF_fn@cch8bD|HtRixqxi1P)FD8?;fLi9r
z*L8{q@nh+doKpd~LfTN3cmNlYve8QW5*>&hmzod-!ZK#jF#;GFaa36pM{o!yOFS(T
zfC<gc5TA`^qi@U3xYC`@jH`{Ojzm*aw;CX^*bCsBNWR&*SpgV|TYwt{6S#GYUqFDL
zZ(|Gp>zseFRukYwP%eNKkWTq$LDWbpR&FYGKFVox@$&z6-!cBGgz{2s=Tx{U#gM{X
z|DzKAB(6W*cUF{<ClzyB3W|7H0K=RCzdd+(drC3<$yyCvJ&inmd+>rNak2Xy7Ydd{
z#8M1+6!%@|<z%y@PN%dM`_wkd1XN&lEyavS;jWRyY>F8#G^Z*)H$RG0NwMU`=9jys
zH+vEreKYI4a(j~^&Wx9XX6k^mjWl<z3f;LTyftBR@21s#vMuEaNGU8UtZyuDZLjI*
zs_VW+VZ3d<-IQ9oa=V!l@&A($|DXI4s?$VBa<X_@`Y-mJl|o_9`2~eV#U-Uh*%g&l
zX=Sx_^$iWx%`G*J?H!%9tye4an5et3RLM;I{ar<Uy(9J4CNp!fdi<RjJ!~?M9&D^|
z_EzqlyLD6d({t&B89D{!QZ`o#9zNb!CU4(ANT$={diwHh>HfWR3Dqx|l9dw8$tWCF
zc|il>TtK+rqf2(tAW-w;I6UtpLI@!E*-+*BRB8l7n20vtGw0z{$!$x`54}>)DPp~)
zT*OC}#V(ph-sPXyUM|Q(k>=Z<;`t$ZnspxcQNloKsnEGZ=@--a5Z+*p-o2tk(_&}#
zWxm8FU<!?ZBBSfkOcSy??bMGW#Fuz0pH0GvJnq)!O*<|gc{^2SH!0QK4L)9H&Vx^5
zl^2v98?{2iIi5qRrFmpD5$te?z42<dCTb-G#rIe_PrHCs1TpV&;+d*HcI6pc>=;As
z4NVcM%FrV5t}A@yJRH4m=M!^$Pio40@>ML7`8c(?MPz)Y@{xI&{Us*VWC%ULhQHl}
z=oQ2jk>_Ku{RiVQpWFGi=v2+Q#(mxTLJfqxnKhi&fZnw@34&v~o8YD(=bB^<B+Vf6
zd+Mg?k9uA2oeSBXAsAoN_%a{4uOgcQC&@Exq6*+oli)HMB}I|-P>5;tm)=jjnp^-f
zB#Ol7ZfnfJ#e45Go_9xy7@f;8>F$;66g;ET)x7)YQm%4O85NU}G?0dOm#|9DeT3bk
zci@^70OA#8n)Ssu%)oT&8!WXo8Kf7P8M!m)X+FU(N(7XM_S$XnS+s9C4a2rsOLEc6
zGQqkN=}g`#W?BbNq~1}?yyMizZGOH6cTtbLcN{VzKqd~LMb>*_Pa{soRhb}D=upfD
zgw?fsXF~43N}}QixK3j-m>Mi-m44`y=Ib5wXd$KH&z}?ZexzqY7=lR~5EKRtrp2n8
zC86Y`i;}MnjEZ%79pR41Ay+GWUl#7=F4bv?a2$gG5UC`|Y85gWjEWTeYGD+$8s5Px
z60?;294C6vghAwT95Gei6!b{qr{$4Oq0wbM>P28yNOjjPxEN^6v4yF#Y6*(vg8%}z
zqf_-&!hMKw8N@|eL6`=v9HPi~$1DY{ZcL{GiwBUKE&6wRcodArO?WM@7@Lylm__bY
zs~u@PxmQ7a`$^K%FcdQ#X+rVMydLlVEX-i{CorxvkurK%heB%rKySK-`I+hxlLMg2
zE_lWw+n}$9WgfITXpQi9U!T`qxeA<QO%3|?vaR*%w^v<pE~y~o7qe74q_C^@v*G7K
zU!QennT$R^_d)W<(M+SHHoZ0qID^(^l%edR`P=q<nS#BqDcJkd_WT=rDfOQMzkmCm
z(GrTkhfZ<)f|Qnxq7{l$rc4RuG6v?qF*ZDaIr<_~TnGaNZ2#F8{H%Sy3SYQmaKz85
z7n9(B=_j;0rnT6mwo%HT&lO@|b`7OXh`5qTse^w*Yuqnf^&mF-W!C*h)a1gF%<^iA
z`MI>Yt*WEze*!uR1tI-Mzox2SckO<cqT$=vo4Y;H4<A+Bwdsq!6ErsaLb>z>=w`aq
zrka)1vs=>Aae7g@2`Pr5aQ19=8gFeWIYAd*xio3Hiv>m6<sK5TM6Hsv=)y*WOioU2
zIW$R&PxOkVsDxH+Q2%wFQMdYb%^}_KDMF|%?X_NaKDlJgo9*l8C)@9?-ZELRS?X~#
z<24kl7<p#6Z}7@wlkjHt)je%qKEfx>qo#uwreAozoe0o}2)mx)eS{KUs>4r%!E|h@
zSjEN$5nfTzWuN0~)bgf($}$Di=kJf84@I{YeR}8R^Rb4JjChN~akRM7)3}lX8=X@p
zt<Vbf6B%zq`$Exg4+$MDCaNaJBzXZwZe~c{ZE-c3-9#uYGp+bA-e66KN5bJ@Nd70n
z_4AY~XRt!N`zlOf+n>NbTLPoQ+G|$>)jZP?aRn$kegBJ)y$i$qIyF2LYBF^xkN6@h
z{KPXN`sEJORN+&dIUWx1Y-sX!NgCH#j<P=|VTjn$AAMqP%{TO`ib@YYH7h>}wz$<?
zzC<mx9%Ln~#ay}}^SNJb+v0B9K8LRm?`%#HZ>aNF-GvE+$E&C+)h}vx8pB&B#`Q1&
z8%GoV67zfMy4G-Q4ihaAbE~K{Uyq0OwGVmgE<+j)E77y`3}sv|d~Nm8(GJ+tU9|--
z;ir)VMggYiooHb<YJ1^e-2|8`006VyjkJkgWC|$^<p;jFCE<&=H8%h8b+eIPnHCEQ
zPs?~(q??&D%#)#S)8CkLkS{F2rBSevfuw?6VJ>2OnUBt90R$&8QN+N<sRjrheU0+l
zvqiZQ<lU(niE!DbWPpHPRrOg(c&nru^F0ufPyUsUhl8$zUh$u|Rm_M5engv^xW13h
zf_Ty47mc}n_h~BpWHmGqL6SCYnYN-L3#o_E2hUx!CCluo`(d9%&BPfU-0BI&z5&#n
z-?0AqvwjtB-Ma}_Y;m9t;!69~=8Q?082?H~=#`^6stjGSPSfS81LCPW{eF_Xw#p7!
zyMpAdE0oFqQl+wed?$g*`^N3%IPoiITiDwYTMy!xz*4edlQ2Ml85j;b=x3Ful89WO
z4)}@{$E<s9=&9WI(!8d(LkyNdvEG6|q+H|irq-30!1UOv-G0<7eLm=+3_bVF{?IwK
zLPDsY;N{PjJ)%|K)y;M!=~^bZ@-7)F=d=r;280`HZFy+IFPJb4I=*w^-{WI69%|_7
zy?@j92i>-g@+XGAff6gi>XjAF9(q&eTS_|TdMC=@(q)OZS49G?2=SI;+Rso*B+8mJ
zmhc{1)u)ppl=c;JV9ElEF@e2^VGePBq%&|oXVB^*-}g5IYWdavsTusKIu-u!Y`_0O
zUa!eVNRI=wc8p%!7^_f#{SnV1piY;D%-oNl+>9N^#|QgnkJkVIsY!o+p(uto-Z7X3
z|Ml(7P%RX~6)pV$c&vp>fjH~orvLi!`H$060ICi^MIeLNjuK&AiQk#$$!|jH0LU+y
zP-e44+J{n?e`EncO7oMnu}3LjD_5`{VM;<h5zHPv4^|{6Q9*$J>UPaQ7eSK$K-_;Z
zWJx8;mI<u<84Ah@2#av4X!4!a{Y|<kgZzK9;$NMt2Zb0L{?v4S(F@;Thd_#^6L~)L
zAMDFNKI!isHYh2Lg0dm0SE4d<LUXF)a!8c!^*6+NWi(JAmIAI6eW$R7qVF_O+EU6;
z|Nn%q|NVQ)JDR*-h^vzny5PiHYvvKwk?l~w@$&kNMAFr%fG|hZUJKW}vT~E^b)$mL
zDYUd`vCelI?>RJ>4oe3Hv&8ujxb;C0sFVaJm<r6n9;<zx5R{?KEi7IyTmho5ua}Yp
z#8_+9iB`sIJ7sYTh`Yg%G~&!iHUNXk)jpjn8}S}PxHv6{!te}eiSuH91_*JQyQ>DQ
zo4TR`!iVA%-x2b`qbU&2p7x=b$VcH9hOdzr768i{-%~h!Qr7%P_&D1K@UAIf*vK?@
zK?|=vI~gxdkvjl5Fa)?kj9@$2n?^8;8PM`jBWD(}42{Z&E5O7IH%*P450oof@0#go
z24#Fpy{Hdn5O)QT6Xj?y#@a3Xb-UfgmdeJ=M%07kSDRu+YytPpe8~4<=X*sb(YuLt
zR8$~OJFOu}1{hXy!z~!7#W|Kp8SocZrv6u14xuE8Ab{n+$|#f!p-^#tF&SYgMG<Kw
zad|baf8>dwB*9F^z~bM@xrKMYPi7t%ZtoXEA?LrT=iiAzVKyNtSHg0uVt=JXEa@L?
z#xJYRi!|t0G#pOqh%N4ps=gUtKS@cFyqfy#rt5|EO{pz2>1}hF?Xx-E3;#VO{`)tS
zB+2<ll2~K}sOA_x3){&?wAuN{XPudJ6~cSSx}nc;zmxISuoKOj+|}`H-ke=GiX>f-
zmWbdqVdpST(-af|Fwj86+4#i^i+FXoi_<R@iSx6G0l11Z+4;md*@;@byy+ZW+Fca_
z;_P)^v?NWAYTbeg&56mVrdj|!2r<ewUQ=4qJHsn3K%T>ZkW1|1e7fsZg)?kr;=DDY
z(f~$!)Kbf19bO)ekDs<Q1=e|G0e>;lJdTh%0kSdaOMbIXB>7VhVQ#>9Llh4fg#+Hb
z3g<lrHjsR4lnFbeyR`89vH(s?P%=>@g#Su-o3;!_IgB6A!?2r(ydlj?HmU>Ql9CwJ
zjX%t5;HbdqHH6A}Y0~bU6cA8S+gKEwjYTlA*|8c9c5Ms%LrW8<oTPXzB?*`*OXYs{
zW`85a?+o|}4f;O?v%fV5iXLO(<^Mb6lz6-UQeyr+-r>1bF_aP8^ky$&gMU^XCB~Gv
zru+(LM#ruHWjOzPfd4n&z;2N<C`o|GCE!E!jd;t=p3_q<fo|8zZ4E(lu+e}&gtA^j
zq|ETiV3q5t`$!B015^dXvh7|*8XAC`9w(a?8)rr)R+A!8p$P1pj9QGW35<+PIY<D~
zv{;)dO}D1b(y%GrxF%n(OPi6CRR>8Ch1xi?wacz+4+BPeIN5Iu=pg6-bO_6YzPT0>
zfu%?%gN=>l7O0hgZJ5tsDSlFGYNrj$L&4f#hto&V(^J3J#6cl`a0n20P)P=+rbtq8
zs4Jr(|9U_xKw%&Rfa8~9_MfqlR{AG$|JU$%{wq9xKaP%Rtqy5zk$F|oq)PAnLEpmR
zjM|RhQOWI?t{a$whT{Yfo+88|`v%d4!Ta|e`o8U4k9i%_9>S3d*bC->R43zs<|r85
z<g@)4TET+-=7JDFwwO71W!D@FNN4S)tzD3q10VU6J_C&U0f8FKA;C$Jf&mg#9yEIV
za16#K7Y;%LAw~!YkX{Q-r%6qR*8DAk{o0FU37iC$0}lXKD1oM;rlN2JY8U_s2cS?W
zC^H8|tD&c*JU;+-W&jtKA`LOHU|Bf0xPCJTI8F%8BSKMfn53jQf62fYDHRrJDK=S&
z-<*Pv10c!=kQW80NCMPl0KEMC;^Jbmax&^?)&AYuCW9CL<!&>QB>Zd9lHxxXEomwM
z^i%-`>HrHZfGq*wXb3Q};PEsE_}Tyh?Ew@ODAE-W=Lz_mr{J|TbO}0?2Zx}q_j^N=
zy`!DhKbACk|GlK?*M_E0ig4%hZyTB-qC%r$A`&jgQN*Il$qBz*a=!$kf7{mN2gss?
zAf7fk0+Sw%&WJ@*ru>Uy0HjMam6reoiF7qdfU0y<4H40p252Dy8ZzOX*?@sU0Og(3
zcm*Ia<<e9Q;Fpv{JKM}S*UEaUL*Q1Y*sX5q`EJ=9QWix}s%xxnX>V-nZ0@|)*3r}1
zcm3+XP|wKt^@+(*il(%3r*rjg@9N6+we_3Rx5zW|lZ(r9YwJ^MTa*o`|Nqbb#}lAF
z1qe}d5PItHDT4AGj6QDl<WyQdgDOHueHsHo%x^rpzOF<NTAjE`FrS7OfR#L*hJgZj
z8VTpcD*gUv8Cc^6v-YX}*1NSDDTqUT0fR!UkiV$&;y}A)5erO2#4c@Vz0<DW?~&>r
zw5Z;7IunXGgx>4-S>Gy>^~uDr8jdFFcMSft1=?z}E)7ZD7Zy80aNUlWEfle?6ZRzx
z_j*hcei+pJU|85+`e_S%GYmhxTZ9j#*a8P$t|QN+xV*KMe|4|NW9b=N`SrjXB^Q29
zc6^><8cNBdc{4VAyx;U0ab8m1K!?VxL90HFc{KbL|M@QMm}GddplJNkskB-W{8QIf
zW9@|w&XGx$b7RuA=hMcuX)KzoSUqpX{`KddzWmcTv-uBGIBR(~=;evD)mexDTG@=j
z%1T(r-gvK-JH?j9&efS&SZ0<{b|xIibiZ69P1D4VIt`Vr|H0bS8Fd0pSW2*4MR07*
zdL%Nn6FBtQ2*PFzuO~mHF*5{6&oh9n>2=d=Qe}u?CVvu(NfFh%vn<B)dpcMlCVd@z
z!1b9lmesePbqc`MM}^F;!Abj}!E8;<&T$<Pt~GsWzykOgo5_RJlzEa@-h}U@jxMv+
zUK&h?7E_}kgpwsz*qH=tV$aV+o1vmg9CT1@AMHsnG1u0lHc;TH60lRh!yq48w77`Y
zDrJ_hy9%~X1ohA=gwtPx1@<JvsqA||NQ8YIs2A!LYk_h@d-~vA3B7)uFquJoclHhW
zZY{yIO8@@(^zQ)!&kf{VuQ8O7r@AU?L{=CpLJd|DN17GOnQQIwJ!TGez^%zMBZ~Rm
z{kk$lY)Ux(UIA3$*tH8|8PHpEXdo0C4(@ICO*9O61(|ibKa@;N5wB0h+=e03T2g$>
z`?XWgx(P5z+4&Z0u$##o<J^Q*SCFngqCV^1IpQaj>u{P<rypSWpJ=d!JIOd(B)Vzl
zq$KWv<~3@_&}D9h4^u1^nLIk#f~A!wFfqPI-0LPvr@)We794(N`AS!=OyP_JRDmqj
zh>f%%S`k~F^@_#kg)A!5-6AY}Cpv>Iu0NVo)=(Z-XJ15qD)Jj)@Hy^<w?@e)VN%|x
zPqG-I4!-I4T;}<%F=!+F;|N?{H<c*NN0>!Oh12UA8C0F6W^wS5Ie6+i-ZS~Y)yy$|
zmJKH}-vq|!J=YiDH*sn)GmDkW2GK~J)3Nu+9DaB0mLx^O46i?fESsjCX~CuW)@vBZ
zlyfFoxq?_zuSVbMuRJMxK3>*yHz6Z=Q*#v1oWck{Yu%X4NP8faOmOo+Zo^GGZ26Wx
zLc(0z7+6Y_(1NMZFvC#JwOIFN$rot6dQv^=R3uVbs!LJ>yi;CS^o;)=$5n5ABmD*h
zNG7vQBf0u1eFyABEM+B#Q2xqQn_8jRs5l?bEM1_HzL6>|-9j+1%xv=1(94hK;WOvo
zVH6^l@X#BaCwn;KtBTk)Rg!R`!z{eL*m;S;<D9rEq80NAo@;d(!tdm?zbHo}0(6i}
z-{Gj328fM>Tb81BSx)@ZHk`>dp}O(>rp2wo>mx@*A54|T_=<>Vyql)hexsxi*-#V_
z%4=)H<(w(cBuT4jyCFu+ls(^%ugWp=o@~+3*oHiSAHezCh;?OswbFLJXbXbtF2cg-
zY-9n>YMvS2VTYC>3VJ=R)R09Moc4K{go1WaTgpNObBW!V`0q&;f~>aaWAoRA_2W*<
z9X$<5;v~|Vm<%<NX1pze61M!ZW=h7vY-Iz^VGrSw@IJ+=Jrs$G_byAth;r$TjWXb3
zv5AN^DFJg3H2JMnW7Li$<`sZu6Q`~RH5vyhF8Hjc)N0Uf+?EOrY<*op*s|KRsC;FJ
zIN=~N)To%^MfXzA`&9T$r5nKorE~5yb!@^yCW!HSBreYt#7rG2EvNwghZD87vyVll
z3l6rwzc8G>CSPlm1fQ|rg7Z@iO?~3;6@6qrauAlh9J>|is=SW;qKaOQ9qfNRP;BhH
zV>tv<h+5uYQq8NdN<J08?t%*K&@iY=y?zE^em;>s0NUqJwQ3q%u;##IlC|?^+DAgl
zmq(BQYmj6j9xi1!i6AH1{&ig;=3)+Oa9SsQrbU64%&|YdC2=YRWmCk^JO!04wxDTC
z>|K<jV=DIoGPy7JsZR!M%CqA{e#r7>JV;~?pScCro3Yu+=}C1&KEC%?Ru}Z8X53f8
z9ho(zp>4*4L?<oitS~+iQ`2Juz1679cAqD}{-QFN6(^kPrshT#dkZ*RPXZM4Jk6=i
z05TQei*VO~78ea>q@6x5i!?}8`6PIku9C+!(lm}iEQzV@0?Ly@{7`8FYdzQVG6<W?
z9FPc-9-3y&@|5=s^L(BVX-<%#7&k!K87vg~pheaP9Mbe2cNDA4JJxiGp)EOOo1?4X
z<2=OeepB}-`ZgRzeJzzudexQbIsEp>GDu{=NFEKFH?}tC7AF?G3~>Hq!nT3R@i78J
z7+^6Y3YjO;4|mL_vNbQ8bygkfL)GbRCX7UPoHLlG5>sj9Nk)_l(C{UX-dqrxy+2^7
z*(cVJOnGY%GWKcUX=1<y)CD_~Ecu|+&;J44_igb+P9DL}g+(-}Kon$MlW|a3&w0=;
z>UQKHs_yNw)ch_)>L?lOo*d|T4acV>)(rPidXcnZg50(SVZ%4xUR2_FSWDYCaU9r|
z;D7L7=~NB)R-?dgNF*p-$PAAfz`-Q_ktP0Y+#eg_*Mb%Tyrqfe!^LUz$RZr#=BKjP
z!gFD@Xh&Xkhqokgk`g;Kwxg?2b+(I(&~6JUl7xEBFVS=%H@Xo6k%Zc?B_3ASpfIg9
z080%yRVe=O(w{8`ZCHzll+tXYi=RQx4MCPq?dpOY%z#*qPlLmF9$nX)?NzrVeC{t+
zzl(g5H_Z>yFpjA&mpH$(6aq^ZMsEu}=TBIds<f!ZZaA?aBTa?%MmMR3Kbj;Fb>_-U
z?>IGmmZWUSQ<N$geeu^HbjRNMCggYatlwVG)E<Ye<uW~+AF{WQzHer-$nrV*GS0ld
z{Zyl44cjv(_`|AQ-n%U9WAgAWeCg|rAKOovhvyH!I>=lOcyU@Xd^=69j)#H(a&qrM
znp8rvIF(MG%O@AG#Cq(VQf5Mre%oGRMlZGz&njOeKG>o;@(j&h2eH#-McE|_Mkfp7
zS-tB)W&o_SO!8Sg)Wpp8{Rc08VzP2simEc}Nd(Bw`@B0I`fXEOTA5ijI+Y-NSv?vk
zz00t?#gZ3srZ6H!-!9E&m|gvgC^6ssn>H(CAk8W|&0RUY8P9r$A1sYSw|k0em<RBt
zTsFw(T9;vX%fs;KnDave`+j|T@C&rdYFva*niv4O_*~zcfbQU7cG!iw_V5>+_7ZdE
zrDs2J-%4d-1L0)%cwosmghfW%9uDo!FN!-it(5@FSEg^vu#MK|?`5mrS0TKIp4nhg
z0Ezau`O@uY*dKd)3?ykc=n~f0vHSd-^7iIvXq^?~EuYMRS-Bf_X<c?Md`znEdE#8i
z39fEARQ(ob8?tPVh2~{UMh}hjTIkyd=?wHaOhCpyAr6J)9FOB%{AA9Pr=o29Vgo1a
zkL}RIQ<i&clHR%!Q=s^qNb&HJE5?1|cTOa!;PG3s!26+SutjbPgA|ch6kBfngPIgL
zM_SV)!Q11rc_fNF^K-WN^&7+=Gv-h)pr<kC&aLL=eK9|lp_YHiqHr2osEyC#2$K&C
zQ=4v*aoSfnr|$vfQCQpa5t=p?otBjZ%bmNR#vCkH(ICgTDtC@Se!UQ*J1v_ur$pFS
zLM0dR%UOdX6)?V@uzJM+Etcoh&Y#Scc8irH_7#iX%YV0%*DI7iyHymcg$}S+aphC=
z^iYJ<m%8|dTwm8^Sm(CPkW+2sxcJ<{ZI`8y0fy=qG~S0+!SnF-<@@X9XYfh1K$$U1
zsc(%MgOue%(`xO$MMv71Odx#rRw<(n{;r3@n%0@EX^ZXtGrpT~scX<ZxwC9$XCHjH
z{PMk9jV2DuZ{4R-32G>LZB1Dnr!k@eya<Q72cMa<tSpSGymMMu%>v<M{SdL(es*s}
zeZO1-;;BJBaPH6d=YUOWFBhr?EP3v(LESa-x0=s9^hgo+<lEdY$FFLg`=IGYmVNfY
zUumF@uwF+qT^O^$AGe_mKGxQ<R<j6?7=MATE|ImDr~cvX`>dtR^#gyrqQ3V=m3O`_
zYECzZQ7nIkkwJt$72-?-w2^N!%^uL@kL8!klzMxC-cQ~+L8U<;wk(Cjp77z!H&EmI
zrm~h#7ZF7brn+_>Nh&v)4KW{CPoa#4-&_y-OdzW!47-M8E7|GP77f3!U_ty}{FkB>
z(W?+s&X&k6h<p5wDzPyhC}2|A%BUnt{|VyEF0G=EY4AIpQ#fU83s*E_oHSm%XPPT|
z>EnP+64N<1opu*b5#~YV=>x+qh*!Lu37@rvIjlwF1H+dKV$MvF4MLXkOq~T(m9}Zt
zeN%0FI;}zmPL&@@Vi&Cf^tfVKtz~#^Z7VwMbTDZS=nI=r-?XTVe#NK(^f;SU$VXEf
zYx-M@Pz!;eiOdT=%{I%{o~*~+dmXt9iBY;~L|c&IwF4Ged;3lUR<~CSsFEz8yF)9~
zp+UzXx8Lb@vBRN-Q-!9R5vz;m1$0038vSr2&ldOip`%#7@+6bzOj^&fK{eRi`ChT}
zgEZR=OQ^c65jem5K+%P*lb%WK4697!n3wbYX6J{e5m%2you$4zcIczu`BBDt4Bzjt
z418$*tjhXzhaor?J$T|yJt%_o)}*zmI4p1%E$O>@y|32`&6X}0Gm6GMX!X{0*V5Io
z>2&5a%m=x7DC_olD&U&h`-+v&0*Z18%7cZsdi>)&Ao(8O``a0$p=(iY4U<=+?_C%4
z)Lz_kEZ~84sK(`~8FqbRXwq*XgnJt(Q0w-4mt|SX@(k4tUSIj<!(?kbquOhX@$uF6
z$?0Ia`%1Yu(pOa!?UB}g*1^p|%uf>N6KFFks|GBJbbIvCCtp{-!*Mj-akwdtKsILr
z&9OL%Uh6wBD16Ou<`sUYIPk%sG4Mj*YI@egQ^!DXRN(gOV90jJt}e^Xv3l}U?aPwj
zxC^849mdC>K<~Fk`ARPeK4-k92BdEVGPH^WvGaWoQ3NI3;BLK9#4`HTG1Oxe{W0#Q
z{_)r;JGps@8FnQY!NNd~;_j{-Z%zw(#eDPnUQDRWgj;?1kL`|)tZU*wVm)6)#1BPW
zYW1_f7Zsu%Eg3Pf{>(a|eW<|^?R`bgC#v|JO_!EJxf41n%r+`YsZD<M<`t^)Od+<Z
z4q%_1Tz;w4IgXCf=Q9<y^g&nT3?I%qsLfj2&n_Pd)C_qWsPp5*(OO+1I_f;jNL3hu
zao|e%k@W<;fa%ufJU^;}yyG}Ko_NSHJ<qAku!9?hejc5tPM>Lno*kkW!a3iajEB`<
z7BnM<M=r>^&9@F~*5=<D1kS!7u)S!NcooIb$sy1k!19fXHQ)=Ybk$<Z<mFGFFTcOX
z{AbkV!_Q99^(@yPvPcq_`rMMxKFN#ONjWk}d3#K=C}wQ(?XCDbEg=jl=BdgSjCvtM
z_c@lIsxKcnEkBE2eo?jjYJB<4!{vAC$`{+1L#daY@$-o<Id^%u4rEgOLau!6^813l
zn<qo8sbV#D9mCKQeM2(7&oiPX259Rug+p-gJ{&rbtq#kh3W8R)LW;*SnC=K;IK_&h
zSA8e1Hm*Xst4qFjFmq=zNhP42k};{Lay%d6S*P0?KtQE?3{ZAm289Iv4ViVHFjnC^
ztfIyk?K?s=6T*UT8F!;Op5EsRUUxbBh|&BlMka?@Z-Q0-Pqq(5c~T*HAKUUwImOww
zy*XHC_D%}ej~Dzo3y^RL8hv^?)_m|WQ~{%B`^Y=!Q7?HdZv(Tnr$|7k_}!l@5NH?U
z+b&qvyvO|&lSWfkda?;A-V)L;7@Jph-Y;ZfC=%Y-<_hB))GSfuEkzoZnl4D0Z+lyn
z%RwInooyU(U^OCU$e)iXb!S!Z)K{?CmyXh*EK9&97+<&+Sj>1V+jT~6FlEPRX<J*L
zbLdVf+iEm}oKlz<DBC_PaohUbX^c`wU}?g8CHnnsqPC)h$2Ml~;W>`Sj3G<jX9B<O
zt8E*jyGD%P=PXPzR1b*YpW5R`;Y#B%XHMZ&kNO*CM9v;eS3L*wyxOjM>ru0^@Pr}6
zHkFrc)_M0KIDVCHcXPj*-ZQMF{K=<`vvf7N$PEp;CXH_kpdb4Af5cQDiv*n-*DQ<d
zk@TMSV^jrQfq2VtTh^yW_WQS$35<*Nu`}AyN<cQh1_P_c_05f}B6WjUx6!rkJ0iNV
zvAP#NH0X&olB}8}Lu>)F^$9tLZt~R|Yreyy^`=+lEfDH>i&3gB!hmJ7nWWALPeTrW
zliNF^izZ|7YPMp5=xm2W)6>;~z#T){Ey$#23wW=^{L+@?a#5JyAuOad{QGs;iPk>`
zjW7G5Nq)cr2L?|QzsGC$D!9&7ajo8TczM^^HS4Ncy$R;a0D53utUeBXMKq|C)=W<K
z)m7lju~Y#EY3PLG3&eNJ?kp+lYL-LyPN(dM0l(H+DB<F$=;&yty_nApQOC(ltCR09
zO|Pr$b#&R?cuUrMX1jCmkJx<oAFu4ho~~Yc>*V_`|F&LsSJ`0yLBHkIXqM0i4%WBr
zEjyc~njc?Xq<!uE=B=%aFXa0*2)%<dPY;>>xb|@5>{2hPcBp>w1}$=6N8}w><fuE6
zX9C(U{=kzOIgFfqH#4Kme)_)W$b>#(^o>rp)9nb*<AHwibLZjQgBbxfoMS)V>thGC
z6V?Zwe^nean8oT`KYD+ohx-YmvD$U2d{=WvSv&66-f@G<c^|@-wsI*x+m%=4{wMn{
zj6D5^&R@LF2z*Zk$|U=L@~JKHzhq>4uDVTqR3CFI;K5Mz^&1g!?mlZD!EVw<q93Uq
zz8wqtcnGTTX&Jc_)R0^LUKltk5%(U^bRqm~*Zc1mZY_-}y+up^(aK(U;Yo_EqSPNb
zrhk;ieVuzS*7b+m@Gvl&{?_Dcqm-Lue9IV&=c|I%k;m+pA;XXQ+*b}e1L>%OpBe_6
z^9FLQPVBRbE!~`$KL~vJ;3)6(?pLzd)Y12OH^ZARJa2M2UHsf~lTQ8F^~*ZK2RHbt
z{t!fnQ*#8--1@Po`zPey<Odsi7AmxqjW7`GH3bn!F`~ReX<NVxrxf`}=LeGtQw(8&
zu0C!n1u5)PiK`YmhDBJEkPke?GX>7-X2LN5fMsVh8IPxCG_19nGKu9XJIToH&*gGo
zmh^fRHj8UBr|N$3LL0RqC41=x_QTUwXs6wEu6W9R&CM3k>t)STW_)@T2CR$NCbySR
z5%W&6vD)N})lFw`Ts3am&`Q!r$Y=K?b%8<Hn&VTm`W{lZ*kV+ArnB^-*J$MBtHnDd
zUEBTE*Ju|z)}-BMi_ga=or=OT(^B9pvQ_Gnnl5b)R*5mndw~|DEcSD`4<AI?ZF$gD
z>|)|mN=1ro`y#UBgF@f#tyiEY7^5sto^D=i4cOC;`DFCy{84+evX+qR(`!+5mrqY?
z*W~_ye7nC+7Cxp`ms0;8zbK_~irv9!0>lQ6G*NOJW)n#MlXirpB4da)#_&hGmcUum
zsy4G@_^}Sl`wC4sYsm``3gWgAqQ~jgw5rPy!x&27&2rky5a~$N%z#p+brw!@jY1a$
z>jzE@#QQfw4JF4uoES<^Glm(-F3G<)l3%w9Ggf@?b4%HNQJ9IU%mx6VUO(SEqxSxx
z+&GJH*Bgjnn~!GNsk|31JL8-o|Av`%0%D`}>~X-r@{vuVyON9oNfWU^?XhZU26fDn
zOxfD+$Q107-n=cXDCS185=wk}<6-P*@TSdqiEJB#b2Lore}=2Q7cqC%E;+-{Ml@EV
zNj%e*VL16iGYhVWJ%FeCWJzS+5zij9@w4{(WS?FlP;$oOj@9ScD93{i2ifW97gFZF
z$j`XoD9+T!15cfm#v_*)%Xnxq8wM6<g{`C8Q@;0UfHUtjidfWY`Y(bQA;ou<8pX+W
zQ%uU%3&~7&J%*ln)~b6?;O^8~%~GRS?a@o7@4jq|-fq0VPh^Sv(n@1Md(l11+Te>R
za(P`N4OGnKFmVb_@Qd<nwk95_=if1m@#=1dDZ8GhTf=4Iuf76J`X~6gKj~lR@_bth
zS$-d+&I-EvW@rkbwUN~Fg#Z^Y8pJj18tGnqAPuX3nl@*9y96;ZO$th8Atx@n+?kmA
z9+d9V#;fEc)d<RdANq;r7(ZY(-cF{HQtxjouztBayty0#UcA;fE-Uy!ZtMXgi<V<l
z@$jxDc%g3UcJ#<gSkd4>v$E-sAR7zcHbX~>LF~TbiQ4vUrHc(={du)<0mLPjj39=A
zFAd~m39u>h%VFL(`3LPsr>CbfGZ4|bthe$O&<hiFNVmi+%z+ZMqz@k1y9dI$^dxO3
z)_bj&SDwO1($rEuiIP66nk0i22-#@Y%dE~$+cTI8FxMkn`qePR%61az9h@=};|dY-
zkpzwAU2a@>@&juzRbC~X=DUXoYG7)=$qBhEmr+YkH<c#oGilFmHua*(ZsyNs0Uk3m
zpb>d@HuZ~?mor)mj+KRq_|QPDU3bmV!yxFEdD?*A-W_InotrN%M(@yLot2xrdwpJ?
z6*im4qeSW}Rdk3&=D;Vg`cAmIfI!&G^39SjvJ|A05{YFMf$rx!copz$hdJ<zg_pzC
z>+@9%iS8P#Tsbn$1%rmR+gz*|+lG_K;#Fqr;VH-y)Kt#R+a+Q`W}NFQGx<4?XNSzE
zpU2^CiO><&RK{3eV*>A<aM{Mez|@MtOKFCDs!8wj5J6}_`wX(IX^O>0L?!y0XHCI@
zmsjLVh8&!*!)&E@D(?#h(dZ=E%OR7l9HZ5O<L}^8?{g-^A%--mla(rJZ3dXkB@@ZR
z+PD4AXAd(Lu4`MJaYaA>s^|fd;h1ScZ9ivfe_2@0)zp%(O02^q%j6|K7jhRi(V%};
zZ)dRqVlMVo_w5jCwa|5ayuXYe)-01k7j-o62{m8(WPO@Fpca2jjlaxPZ#Wu=M!jD+
z-<Evs$_cHgQ?%O)l7nGt(#H#OGe#0&B{s!%q;A87W`dB4^@g&EW>Jc(vzS)eX^qcb
z3VZNm<{(?Kk9)pIX_|rjIxjTyuck}Oc%t`>x{-!hq4L>%gX1GV%Z)N`?^JO|mX2W1
z!)IHbu0Bi188fa2&uoUAt@YjOL5zk4){@Xa^_4bN?SLTI)nG3IyvVHju)9EEfW9My
zYSOkMbnn_@)EkHEmiKFk#ltB0)nL;)<=5^}R~RUFfXui8DFPn#sNc0<mCe=K4^hKK
z`I<)MvO7<U>XHr6^AzQ^d_P`q?ELOk14#CRN2y!YUWLhL)|01be0YjEOZ>KNg54P#
zu_G|6Kr?3si%;(iTM$gm;ZUtd*(z5Mh89yb7C$_W93s%Ysst8Kb)d+~DOO(EMaJ^+
z%RPbp4iQ_<YKFF>)TjBwB7ixOqRm2*ArF?<EzuN<d-(M5U0HD4+KELMN#y*u4ui|}
zPPvHazER^osaG_$p=p^eL7A_l-a2JEaw6{0I4$#)x$%GB059<^ORTI4gj)i-F=s!o
zMMk|NrZOhbyVEuxMBMSOsi%E?WmA`=OqjzTi24-=?8YipYg`<~jhwIEzDwmRZ)x_H
zJssCC1!pH}n>cZm3_}EEzoNTduNRcg%m~kz5HY#k)pe+5xK>uM?CI?T-Yh&!Fgl6l
z#;zajjgNE5ZkkHxHG&qfI{f@Ha0AKAI|lEva`q)ZkKhgJ0~mDbPKB<1y53Cv){DLQ
zkwx^-3s)P~J9lRIl#C+>$`fYW&N^<dZJB5e;LyoU2Db+bsCC2}{0~w+`2|!K1nF)Z
zXEmx7W>}-_Y}VQINA5mze<|R%GRwH;8rdcCoIgz!Ts&blx3aFV>Hn+)JEshjEy$OR
z!*vfOa5`_)*57U(n%-Rh;-sKnyX02GRkJRmEi05lyDW2~cQB<eW2660m+@BR6Kx&k
z8I{GW#e5&1J-qOIl|DbQV2*M6a{D><3e$w9A9c(Ue;H()V@*Pwd!p&_mymVi4&3uy
zG?njtsS570QnMyXr%^*_wS^O{&IxgEzR=CRl<-!DF%Gx-_>+6VX+c5RK-}(7+h;4p
zrQ@8-@drZZzb;+4^uGEu{)OK8Z|kj>K6cY37*D+W_Ta)|Bds+nf7AaX?5?Al4*&n*
zZ^U49cXyX`=;($?NU4ORgs7;bj@;;h#OQ|6AzhB{6k!6w0F_okrQOZv`?=5Wch@=h
z{&@el?fpJyyRLIxuj}=Ao)~VJhuti^j1W9Hw=+WUGX5nZ6hqjau{q)Ct_S|H{MaEj
zM@HOazK9S(ssRonMlL=Au0Q^cj3~IG2BdX?VfQXh!M`m(7AS|0LJ5?{ksw#H$IsK>
z_KVJiq)<*K(72Lb6BeGu-_uBe_=`deH}2t|Am}~sG1t(X5;BlR5aiGbx12_pU-WTk
z=7@R{Nb%h9+=!4y5XkIA%%BOluQf#>G|iO+V*tYUvOpY9a|JF!(3adeCrM&8j$^ft
zyiaS}j*M48i=RObFE!hziPPl$6d{ZS*L<PAL)0?$p6QZ}eReZN&8On751DXOzlc?=
zyhQ&AwqJ@PN;(%NTBBvA0u;*~95~1PY401Kg-O$-cc0fA<p^QG)Kd-Qlt%<Jn-S)N
z96{uS(w)U3I5MpP?jBibn<!nQFN1aqy?<z=9VQ#0^6U@OM4wiHA2kBLchEc@9LW8o
zAt0_vZ>R?e81^vIwTh>-V;Ck53b*zdDlq8!Bf>V+!B!raO&Xs35t$^7R?Qwy`Xkfq
z)lnI+kR&7{Q$Rzg^+as4s3o#tWa<vHhg?nr>&Vj${V<o2G8uiF7vb=U5!G+qksPB&
zr>arTcQ$0h@y2%9<^H2nkp?umN%vy)%P~pi82!50p&(Z>T?^`t6V6=>*Wm_N6+wY|
zl(wvl_`7DE>~s3OosKKC;UOX-VMSl7BqA)FK>7)3#N?<_S|4il{TDRlK5NzM{zhj9
zqo{MK=?0_f;x04=XPqmmRDfKNCRdP$V<>2RPlb9`75L#Q0y~=bCnc@k3f#;PS!Wg7
z;G@?%7>7L?)B1F$*p;-zhpf<*jA0xClI3O4ikE-E#N@<37{#wr%wP9}l!b*TVONN=
zCSoFsS>TAf<3m=e9HnUj#YvTdDAt7JnlW?0SdxKIjHXBv7G5?wQP6IZkYYlK;@9Xj
zl9S`d`!S5WU7Lv6PLT|n@Lo}Dvy{lChToCXwD+3ct{Hj#f@k@t2<v2qOB0pdiQu>-
zkj0Ths*2HbX4^ixr@3ZJgOxw8r;olRE;QFpUo&qumovglzm%Hxvqddhf!8du|ITV#
zZ<c=wB_mm2Qch@*MwH*K285BoW|b*wRnC8w!v-HXRn$qB#3zSXnn)67=O6{kHO);p
z^YR8$;y)4v5GYlDn{TmM0SYREo;6>E5hqGTToyvv<V`~EbGecFrjFkvAh|UVJi1MS
z!DNr_3)_gz`<&b-*O>oP$~gqJ_;3s*eN`8Uyw8>{fZj0|rMoX{l3`^<4iC&L;OoRM
z*L3dVB8VGdf)HdB4@Kf^gx%Hq@!te~D%?p}!*zt^PIF%4f!X1QDVi+;AsRwyPX-1`
zu(bcDW}d1NY*Ba3CpE!reP23Ze-2iFq%3J!zDpeRkes2X`Tk98_ff1=VPkGKEL+tY
zMxex7#%Wz9tDJ6W*=Xgbh151(&}FO@<yk00S6uQ44Hs7vvv#b?NG=pJNbf{YzJU5|
zrZrVj5N(n*BO-8CV6Pjpr5x+1jya#oh_k4<$k0X7`vmTXi4cL$d)<{!t=R$?Z|8yt
zwp39MpCyAt1OHDpx!JW!{YKLkHSRuS?=<d1h_I0~xhWK75wSL=@`;o@OZf5MiO;Or
z$nyZvhw<kTJaa56#Ds((wMG(4HvSb}sUtr3CW_-HWF-`Y5f-VED~q4dlient#A{U<
zKEvMsiA8eSkqjgdR3~&l{32~2m><1Z#SvfR7FYgiiC5P;Sm$$MA^~An!`Y@;WZrW5
zsIe&8zRr{@y{x6=yHG+b)2m#Sx)So56g|iN#FWSg1$ELpmSFK&9>k~gOv4Nr&%ts8
zFyas8b8j*kjKDXo%<d?HI#VtG7KiRX;10<Tz4oJZz7;*+7xlVVII}Y!X~>N0V$pv}
zjSWA4vrAE=ubqjWZalWHu~K+=8r!ddm~cb%Mk9t49-27tiK>o+13%z<4VvHg4Wx9n
zFo)#R$|VciA}e4661N5A2EgGJ!EYVTY=gDO5d*F%WuzTn%(bdS!x{_tADi_je8lP5
zd9U)lta_ue=6p&}A+~O-Mtz=6)9}rP?^P=jI$;wOw|U+|oV9-ao#(XHF?ZRq`@`BN
zr^kO3(wCO`BgP-I<fK=fu9Vrf$HcdJN!D#55V2^)ok^w#p+H(D=VoZQ%q#(u43Gst
zC^(@nis3)IiQU5q)&*`v!L;f1oEhDnc{rm)X%Gl>bN9kvj&e9lVZ))Xa0)ttR>&D4
zqC)*ZFPX3-0^-OV<6L3CDa1q?(-7es0?Zgq5#>UN{U}f7-@<1|THA4MA>UWZoD&Gx
z0=G-oGCwFk)Ywu~d?IGH6&3wNr8V|+bc5mX22-801l1DX-A!qlM59Y*(=lumB)lF#
z`5}^Lh^3>OJZWQReXw7E-ji!&L$x_!YL2Fu(Tv^u(slAOp_8HN7bDN`3y#6i?~a;@
zE~_~`1L>XJl;Xo2d%WMhn%w9gQc5CSJ8CE&|21+I!WAG#A3d1xE#X>n?#lU4?on>s
zY3y#F5#edZ@e=4JM)TcKam2Pf!p`qIz}xw+XZQ3~_s_^WI?@tb_T=Ux^|XbdzYW_I
z_mR!B2FC~w_eyN+q=9=>##2#XIG0AmW6!^ko$}f3GQbWV$Xb($yBpu@nK12{xaOJk
z(=+*>Cz8r5h07~d%Ip1IuQW5S^v7Nqe!Jf%dX<lRRUejZ^4?SRBFO2c$pwAPxcR7c
z(Yv{_OV_wtW&oWT@)$=!h?}$j8uyWMFt9b}QRS9O&89~(CIf3U(_t7!`M&bM;5w$Q
zdiS_0kT+w15zA^}(}N=Pu+2E?>HYhA1?-wNy%@WUKEj8|4drQ<mfi#D`((}D<<s}t
zUfYjjbiS}?*XF`BqxyM%J1gW$8|LZ=|4x5yS7vOtUtKOK^;@ezd9cIRheuv#RBw<=
zVDPD(_gm4!j<7+^hW=*T{jqW#%P$8de9R@dI7I<%JdjNL7)Pd3s{QiV_ZV<^;*=op
zus<pv@OjZ!$pnhaACO^To%_d7(s206his6m)k(*~yt(-%k@{J)_}@97Hq&@-oq6KQ
z;crF5M-N)$tgTI4e$9Rv#tuJ<VR^Q~)O2r7$E;h_lY!c$H1>&Ai_IjqF63F3#j=If
z{R_}Aek~DrmPqii*nIG(?H#ssnvqBf13;owfQf^R!sv~`81pHL9>H+>cl3EKTW3#l
z>cf$8z*rfLVR_;4Ps`^fP0z=b4Z#b?WirPRf8zCyRilV1^aS+_paw)6ajGUSn7N-1
zI`A=A<T6OhnW&ybI=$%XXW<amWSU7p?&R@$8{(r!^P9uR&`3k0IirshG#V3Qy~>jT
ztj1qtSs5F$crAIVhf`WZjsK*KVWLPyO2&gHy{MW7mCU6z@Hs7t0sRS8>gybL9m!Nj
zmU>(h#ad3Aa`T=)^w~(mlt-DR@6eRw16HDpkHUX@-EV4YPc~eC`PuI!mkGk+%}br7
ziF->qGN#2t--Hx`CvW2<l$TA%UCCCX%s-bJUlL7~(M&a;o6{fgf+ITb$N|Y=9Qio2
zUxPeH4CXRM%-5ylH<KguX!C+ulMC0sFW>y#j5D9M%J!c5D}#OgQva;&l?o;5jqk`W
zF!HtEn;B5?Uv90}-{fu5XHD0l$m^hHd5J@K|Br9pWQxwKFN^Wiht(7K{CX3aoEEd>
z<mULM$IJYgw9T{I2<Px=f}0Ur!aqowC8}4m66w&9thsK4u0~gtJ4i_wwG!2^CqOJA
z)RRl+Ybw=qQIZ-&^L0M^*SxrOuw))AUpl$KBbZG0@{-1~@+=7B^4E1NUhMGl!{sAX
zg<Ems_<a{rPTlpQw%{C_VG6ecnvK~?xY@h5IZvaIa_TbB%`BSa>T%OkQB}(Y;;Qd#
zVv17>Nq_}Ia&EQ5RYp^Cm#-J3a|Co}q=ogL%jbnn_N;YvX&&{ABb~3SOFu1kEZiHi
z?r*rpeNLYxxl;{Zl)^DAnv-4UU)wEQ<BN^s72T@!h9<7C3!A?epvylJLOy?jhia5b
z%j{UPRo}E@ey!PnH-1^koLgn{+^8_>eHE7Ocv|CHrZ8`@B&94lZ=Vok8t)fo`)f*v
zh&!YJGZNFVm*|G|Fsg~mw2hm>wU53^Bt{6+3yHA0y5NY&Bhz?%lw}eyVCQUQ4hA=;
zzDPnwxd2oH8FLi9_+uZmGm;)|(XX5<hb~IcWK-u`z?DsyWV=`dTk(}mFv~=W@L6pN
zQZUkMYy1otb)#88N1~nN5y&l!nAKwnds!Kybhr+!eSjyu$4rS~=6o8<bGM01`cip`
zqHm&^xvcC>l6}Mpsm$UJU>hoUs5W!6FYODk8gKb<xMQJ2Ijd!~TNYPent%hH-++h<
z=ym0bP5GyZ#IoG(<Q*H|h7w77^;o(N55T#G^Q}*F<fa%S6)9Gy+Fm|eB-P|+ptQVW
zIvDqgjcbRw!KweVDOGA;K#12uWr%*hKl^y545zRa&~Np_*q{n?!SAFM+0*)xZFiy0
zOo{u@DA@v?&vrmics%QyejaIg1`vIEQ0Wk}?@$_!=z-_lEXZw2kogJkl(n-1^uWWx
zkU~|&BFa}1i;I+;cg>CA2u8ak_*Tw-hA8kY@V=mj?xZmAPz^>SdYrNR5$Ot_kuai|
zMoz7Vc}ICh0`pP)@q|Nona|cP*zGL{L@@xDN@Z7x^UyPceS-w}I<4!8SX*;BJQBD-
z<@E%8Pa!t9h23_e@+=I+5Q5t_t-pUB%Ft&H9wbU8RM~J&Ng&g=GD#4!vMQsOY3C}A
z>PI09%h`<Vi|Hjg?^nf9HHnqIGxPWIC>tL~SC~U=#I@S*sxH2$=p+*@FdlaGb};Aa
z^f0k9bF!?aR9VTXh~!${t4>wXqhVPl@UDc1%B?W9*bD_9RAprwF+55$I*tHKTgi^5
z6J03MI6x&z!@<OVIy70VyZw*)-c`}WFiD_pW$nlEgXs+7-8kJAeYO>-rid-+BW)%a
zFor^0{`rE3b0|K1kW4P2rWWbU(-;nxi%O{nX^#18Q8<Rmat|>*Nto@YyvK1o7-<#y
zyjoX{qH&P@7V{c&4q%f1q(dzi?evdLNN!B1Wb&AYtGZNfLJEGx5kthD(BNdNb@2=X
zWp&r3XYzi2=N0|9$%m;6GuWS5Yq1_J&1xa}7VLveJDJtzXQ(ss5b~eD=kCu$zn+jD
zG0b7U|J-^1-8G$?W(w4+h=3*6h|$_ZXqB9ianSUd_>kpk<8e{8KG_RxA$0`=6MLYn
zZf?+)S!fWGGB3!=aaJW9Y^9^C3w|nPP8{Ck_$(xS<;}e-E1c!M(BqNy{Hx1IL}Qe8
zf3=_bNzW&|K=etK+HKp4Y|mpUt-5sN0&ViEC-(_{BRmv4q7Q=Ra@KHz+cby{>WCA5
zuAAV~kJCKRSL7UsGf$Gc*R@VT_6UkcbuS{w4MbFhVRqyiC;dZduxMXdM~av2;qrDQ
z@IK@B#O~M(HYq)XJg<vG!VZ%20VtNM=!**qrJbCHfm?RFn5MDZ6aO(wq#jVL&oRWy
zWi(3kkORTA|3XiqsWH(nl%HcuWJG1YG3j+TKi4UGMB}6}`Rz47525I&CS4OUMqPl9
zzH(Got|=ucR6u}Vbj;AADK(>8K<G~8nCXkA_xaZXBHE(k_fwnF%GCwMEGx&Yo8;i)
zum~2sbP$0Mv<N)j_=J8@d(3X}BqLjg!2c)dq&n4|r0(YLE-!ZV+%6jfeAN5s(17Td
zqTytV-Q_qC0il>DknBqWuT9k~k$7%Z_EPf?r3!2`k7(6vTXjta9)zBVl_vO$<tO^m
zhA6@4m$~eb73#XW<{^sTh_<`SD+B@}!q;B9T&#L%mjXafhAjo@O*b`bcPp9I(;#%#
zBHCW_<}ZYPLk}i5R4dwNgB9iB)7^YF?SN>h$tqs!qX>o<*`Iv$oV`tP{jl=DR3}AV
zN2SlZW?xYja9f^$-G>Qa3w^;l&keAChnsn|zqE|<Q#7fl7-`uaZI!(O#kflN?XDHR
zGqp9k#)fi=r&*P>PHMZ@H=*jQg#BRi(^s`qvHK71d)lPX)z|d?-h*I_-j_9{G}67O
zwyQs%=lGFuUpJ0|xinf*tB=7^eoTUsQ;o(kND=-JL15F$-;`<#FtZ-dTv@QPuPAIa
zw~;mTKKn)^M$sx){T1O&azcP*s;PUX?)&slw)UD?Li_rqr^DMEB#!J&YdUSMsyUg+
zszs)@xc|btP&;}?Cv?cyM#@Hx;=4*GGrW!l_4@LVHGw9*W^oka74@BUci$1>58vYg
z=|lJgRVqK?Idx!aM2?g-xSW5C9I%!7D0<B$BJ;e(w^vMa@%HU<WM)FqDhD`1{CZQ5
zT+K7&x14hNLaYSk>(NNc?FmX->R{(WOTBCw&{@zP(Ez&+vy^&mHkA%VCk59pK)Tsr
zhb!0!suh&*aFCm%gIBC@m#6=TU_{XxBs*4~Tw>t{dQis8%+sV_jFA+SzZh#|aMGMi
z_z@%TOe6UjVqT==9yVt8oa+9|N9Hu0nxWx#&N1WpwJn^nWU9g2msNSpggeUNMRQR?
zc`4J~VnWpYW6)N)jFw5PHla$6O-vkGEz;vGoy{uj!2+Zix(iM#oPH;UP_V&7NFj=f
zERh63_o2};{<I)cp?C&&`{-ReFnEzd#FV~@h>S9V+<uneLt42H=|5FGcAzy6gn<&%
z+v13w{W-MqX)>ghN>|uu6dT9X+c%Dgdqd+i@1uQveY~;$KeU;&Fp%^Z&!TamLL_C!
z$+M6VqV?x=+RV2V73NS)3fxPj?l2LEDCFTLL)&=*D4!KRQ?^B4-+svO_*ufv)p9G@
zS^GrT&uORY6*#R@$5f&pFDu8!=SRwVbaDu%PBJS|^#>5)S>Aj29df>VU>(=lPbK`$
zVoswKzO+qht=a7g_X~m<Vh^GUAC%n@ry0=1h7G7N2dNp^nSbUlepQs#yiY}oTcM>p
zYxJv8G`c7KhpG5Xb5vt7AlVZgRr0lLqRXJwLVf*<*nXnQnw21a><aQXiKZ(#>@Klg
zH+HP9KJ~mu`)}Vhk$nB1BE)kAo88|og8;{^=RkKR+Xx(4Q?Ve8xdXAGF!SNtt5snY
zn9iKm&EBBBbb!v`R75@CnF1rLffYrx@F)XM?>*d@!=+W>U6z_(v|^s3W~`@L9#Vg9
z_8beQmZdYaJ8@lI+VAH4Qt{^#GmQstfYE15xtHMu=e}HLV8at|-fL6X!O${LY|tau
z@zRw0N;2h-RSpFv;SO)SIUpKZx@3n;aabMO=d^Rfa+*SjMy_?B4MPST@Up<$<KTrq
zTNXfdPB(K=_j#f%usOsq9Xvx}@kXKjL7|=N*PLr=6a#*UhG13i+$py~r;F8)^0m{J
zCa+ez4(-zi^g@PjO#n<{MO1w8Ut4%W8KTK7igZdd;nyfD1c#<XQO_6R$2&v4CJ@JK
zT_*}X=fRPH(U>Rac|kOJQK&-wZ^N&?6}@KAM+S~2-B2@dxx7Bu`0C~CEs*DrqULSQ
zi&_|=zO)ELjDQE{k#>ANzS9MVBm#T9={~uPd-}pgqk?xgM2pFBv?%Rvl8<RRVnW4!
z5-x_J#eoPuVJSV6bA8Ug@jHy8S@MSDJ%|d(D1)1eHj93mI;lBwY`u(>%!i+B;fp_|
zjzZj^n8jxIBW#jPyu4n4PuM4<>li~V*fjS^ZaY5KJ9<kyp~Psm#INOv+vpZtIogla
zOz{h+V)hsjwnWa|poOKBVaL%8^CZh8S?fp#L>HZ}4tJIyHzgvQWEgKn8EM(UM99`V
z1HTbH6abzKwi~P)s&E_q1>K$3-ypToJ|_z=<rgfUXt*|OEu1i+GBeeJca6sBYQ@uv
z72bG}HKhUQ3EVotWsN>Y0oSfgCPrw|2}8CrqsL|N0He`!*Wpp}9;~sKwSe+`BIYP+
zMJK6WX7UqH;)VpJH5cy^BhL>ArPg^o9l*ri$P{a3YCN6s_{8n8X|X;oaqVadazMJ&
zol3j;&DkR9yRy#6?BLp@$&`qDj6u1(9Nv8iyJ%EnvRyN!S?uNva@KjCw2XnesYZFI
zmODqeF9%M46ZoM7=H3GQu>0xu^*0y`ox%<-ue+Axc-+5x{`f&@-{Q=cpGyU-HQV=`
z-5;d7Xt%ubpNV290LMTt9uB=^qtSW@z2x8ll2PsH5C^RBxCtSdLZL*OLs!>Sth$aQ
zqDXz*x}GXck*RrDYsFuT@U?{gKbhn=#lnGX?mCn^;Gy;FXlj^{CwP~7q@g0@fg4Ma
zIfxP&t|v_Dyb~-K_10)6DtOj~D24J-3aB*2s1K<Po1^PVi7OY0PrA=OhGx&Y&k*av
zv9Xg_4o;pYVwgiRenGQa-)ASr@6tS<OLj?N7|M*x0J8?&caZQBx2{ZoESlk7nc*jz
z`MNUmttcv{5|t#Hl~I|MFPdFmnO!HE(^{F+E1El8nL90-XEsj`b0Qyu^lJk1`{(ki
zzy<TPcfhInN!A5IsUS#raj<1xgoOzyAJZWsY~f47;#`R;QCZ9bg1wZ|e>|mHsi1EQ
zJq^|+E*5{(ml+iVO0C5>^Tf)j2&xqq%YUR)4O24~RtdZ!XR@>8I(}ODk9N<kiU(ZH
z;mpikv?jc}#~9sLF;4rzrIL7O*~AtS!>Olg2WuT&ifu&_d&1f>M97dSFbqZG+c-O`
zeLbJ3z*qZiy<!woXyPcmcvy;FTo2X;l+sBM*DW>N9+S}KGFpi9)<R^)`Ia_QNrcOw
zkk&Cx*+iW}gIOx!ZPV!fwb?g7qd_wt@g5k|)sCJc-(NDB#Q-?T6AMC8t1yvUrKJ&{
z$43n_H_=op@ex%Xvi|ag5qhz1*4A`sv6VDS1ZRv?x_!y0w9jv`$7%E>`3@xsf@gbu
zXv>*_L2(u$hgK+umN|)ZH~Nv{<&pgHs@*RwWOf5_<BL>l`&PzSKHsbb+l)EG&t;P0
zvZMt<Pv1D<W-B362=*sD<F$S;x=>@*N|=o*F-zb>sFOinR&ql&>4$}f-KKzFUeQAV
zn%^v_H%`p9;_$!^*TkE0{FC2TC%qocgaOG#iOsC?m_1>7y<;2s9CzmJL}NUDSV$th
zV0%q|WsthV+1j?t3F6eB=^VMc!;Z(C#)ij!S+*1#lzNJct4Ei)8;=ZYt;az!zvz{v
z#dmF67mF>d;A9PeCj!o$W^+jf4rrOtKX#Z8<39^)i0U%HDaZL=C<(?S%YXFm{g5%%
z#Kv9P$L)l11znE@egBF^kR|+<o}%NjY^m4Jl}?o%1il=jqh&pNzz5We*;N@_Y|;Jl
zprJrCT0NZ$CrUJz7f<T2OOIu|N+SMsJZrh*Nv`RyZM)((wQelw$2gfCB~kcodeM-B
zl~Q{dbbvon`r@w*)m-3l9Caci0_Bqv<wuG{NAk#OiO9Mw7Nz?pSm?+y8Xun~GLgS8
zVo*Ph4?a4!CvSuvy+Ac08y?e@HHtph)fbT|vj#B-068e1OZ~0!<=`yU7@EQ1Seu5X
zk_x?l)bj|F0!$(0sm|Qo8+d56Mc@$gyXX9w`^<nBd@FT=1Eb7Oba?5BIc=hA8#ewt
zoFg&kZAz0A`!t<w#luYWOgq$H>~q!(X6*%qEw8&t=}FT3`7u#wY~W`*MpFIZgJJ=$
z7kNbJMS(O~{+GJ`FUmKIIsX-V!8SFm<XE1_DeTv0a^xiW%O*dROAz_sjFbDRd}`?a
zQl<(o_p9)wBz(N6{WNf4=#dqBIH~@1eyY627p0qgpYs#O<730U=Q<Z=Ub8xRQ#vL*
zBwA);5Sb6Nji*E`0oteF7XmRxI;NT~aoQ13l}Nb+{{SteK`m(z_sb6|Y6d#&!}rAd
zls@mVD;yXLn;Omq<nxi+AooOzAaA2R9zHi1qYD__L2K^kL)k$#I*t0I`(?<u2WGzy
z#G-Vc$SdnBpk>C-s0NK(+%__#jo&v%inJKq`NO09M>*t$Qs!?fa{$!Q);4GVzO>#z
zuRwtn-0Gi`xt=Ti{wvF3x;|JqlT|pAPTvhv)a~Xs9ZXZkPS#H#i>wAiOA+0Z8iQKE
z$1{flCzUrWBkzQi{_&%8FMu{%(^I-RwBl&?d(aB?V=(uZt&RlS(~pF3M^m=u$Ccf$
zecrr=6u)-cHtqeU$U^P@tjdjrrq!8Wv5(RNr%e1yhGkP?(CJ&$^Rw@fqb3v!sf#LY
zE^%%>s}o9j>~ubDJt?Um|2}$|KKfaD^LPmchL)%R8Iq4l?2iFJYvB0-DTM)x=e7w8
z$6!#^ba-~F)W_%Sbx%!8;d;0?Ry%Kw0zFSu%n4#WabZn<^@vDq;;5}>@7jib3Y<r`
zwM0?`0-t*Z*S`r_pRk3V6S{e5fk*Jyv9T2u+43%o63F;p!X_fyI|+<QHlCthc+FrH
z&1a?){lO@9;`<S382bxx3ff&RXK~9sNVdGFsevfFY=`&V4o<_4MaGL1Zx!U?&ik0#
zO`JJ0>lljU`7F*X54>1bZ-@3^M=rNTib*)#D26ToNWHF-_2VM{?4p41lD8H^Z=x9@
zqFEz0ejDDcUkVZC?JU*?mS|rJ$pZP*RZZ1l08$KaL6n9FSguqhn5$Y<(OFgBDJb91
zwF9gf>8zPitv$Q#@rF^&cGmq;tv~Cm$E!AwbTtrm(WI&7HK{i7cU4n&)vT!2ja+id
zbTyl+wb-b&Fn2YMcr`uis#5E(Htzbc-N{u7BxnzBDNyUI2x-aDY#qRhwtc*+R3qSq
zUDa-@veN(nJTMNl+Q+l5k29)WZ6P`RYTXlRAK)PzxT{)W0Oxhrz`gDkl5R}3Xdm-+
zH+e|=dLQQj0C0`r{01B(=^_b)jA~!Any3%iTzB2;A0iBCA5f(RU|7;Z8|WdFv)y$|
zKz3|+O9^ni#H-4jfR`s?yk2#J<Z5DHb8@D;e!FjEC7d1B&571*o(R6ZavrF1qQg00
z>dot#oB$Z*f+pwDb&X>fN8ruUz~yI;o`w-1$*L+~61HL<!g}4EmES4A0t65N08toT
zhOjDat%<YX`F+?VK9~cc(fba=LID8y!<Ig1uC8Aa4C2FUK82G20N>~#)Pup36F0SQ
zV4r7Tt1n?4BdR3+5Y7PD>I!W6>~b^y?KhjAuS%+G9=nzC5K@*1L6Hd3+o~Mt-P`Zr
zz7C#`1OQ6IHwiHW3!0PS5YBS|01d2(1duj_Plo`2^6E8j06-lLP8<M$1lByeVL|k;
zp*8pRHMs&X1gI{K00_Z?28jfKBox9n+ed{|Zy<~!0T6--utg-!TG8aJdv;HpwRB?X
zMIST=(mv5kWLJ6p`<&L*Acf!1zMqgMMKC=c;B)_i&fO$Sj91|ymJpVx8jPg@Kt{^@
zl|exSvqdA6Fj>-HBBg{d5=($QL#mx}GoD178?Y%5y2sB;0^mLoXr{N?$crG>D0~&)
zK&g}Za(A&Mg!$Ry+b{=OTG~(HDOr&o4}z=9tGVRv-s}E+XJK!)>_yr#hd;kF2|$VN
zj>%=@1_f1+!TSd?{1P@J<oh*(qt36Os;qw(Tf^Aj{9Mh@Y6n3g{Qc9@32N&IT?*ml
z&v@_EnFLkltEoXm3}8GJHsJu}BjswS>Gx=tM@o95&YB0&;808Jk5DS#ucy09ZO_(I
zBWYvK&uj#88;k&Ul2pW?CTEo&0K`GZ_zn&R;2h?Oq#*LKMI><!ZaP&&joKo4iB+8<
z2kE|(R!5%EZT2ZCTA7ISUb*Jd*5es-{rjWA58Iy;v;AsvMSuVt^QlJvY$cP4K?IVm
zKLkDzs%kvtDb&_D;lcIC`1flT$qrhQMiI?!@(eMbqMaoh9xpthx(E%WpH3?DFO1+T
z7AcM(D@44MGHwDuXiy@&azgx1$f;p+IYh@}B8)J}qS~fX{_3cOak`?Tc2_dq+~O^U
zAq85#0T7M9^7ARhi-+mfarTA9aq8meh&Zm>wWc5~S-VS$PJ>7xjTT%@u9X|qZ=xa0
z{*Y{na}S{nC#3BM!dTxTo=}88Y)*p#1JC;+O;2}V0InTmBnd(5=SY+LU#$&3JA8li
zSr3rg@al20Rj~j#g2ms^7O(wzU<`ehmRBRE=FWpARA|r<N#>^DKt#&3unh<U)NRkG
z*h#e@Q>P4JO4drJ8d<}F09yjLFlUP>T4%U*3a-SUwMims&wr~c<|m@WDCVS)Uo-jy
z$?u7H*=six=<s&=t{?zPu$Sm6m4H2a>Ylw{*Q4i6MN!2Sa<{Tl=&HDy{LhoA+K+G9
zf97n^upf4Mzt48-61BK0Gr;<V@Z@Z9<sN-rD}?+S{AF>g(-bN@9H*dAM2;yGETgc|
zFrrQWDGlbz<M6-N9HlH`%!UMn6bRVws~3>&KUf7-J~BYDvew_#SL=Ci;*NfDp5vmI
zRt`22?{Qr`h&Ru_Q2LQK;!B*KseE&>SNrjC2{XD-Yw^$#!*zYsmrM{rb0EP-L|RHy
zaP#;58(uPz7XiRHkryWF|HURHZ%1T_Jc9SPw?+5=Vy6F-XRd7`b!*xG4+8#wH;rx~
z$y@b1;C~rbw;%NX`y#f(IVn@g@s!G{1B)PJn(70*rgE}|dpxQD{h4iV0NbDdA;y3%
z({$S@Hb9OGrk{o&cFiLv1vDWo$}EN0#1vTA2cmRRbA&-Onj2*zq<q3O)Izs14(b0z
z#t{Py15Akt2>v7E5Q4zBI1V8x#s9)_K;#Vn^>IjP*>8y)76!uq6UX7?AZHe$=9IZr
zgJ`(q$oWLcgk^7u94c{TRsmsJUIjV<wg0NeY_gL7A=BkG{;T9Di2o0f!_OxyA|xUr
zEG{7?A}uQ|BPAm%edmsxlCq+*iju0DDuXbDQA~$f(vU^Um`+ZYQPGrL5yB#4dTV#G
z%2{wI+OeoT;8c0UrS5zSSl`C}@Z5F1<#p~s?h5@+{?C7e9RsM0q4^yX%l`;FP#bkC
zhkLe<c(uHRi~@C)0oHl|h~~XpVaL<zKekSg%m0RTbab@;7p!AqVr&jI{V%TrwJ^7|
zw0K}^Wo!4q-ri2<f2bWt=SN0P|6AL!y6va)`;WGBtB5<fJa%z$_V9A^eCqDw>*Mw;
z;MsFu_ghHx)qnEoJzu=`3VG-M!Y?4;<?FzJppe(0p&_E?FmWq{lzpnq<19JnJbBj=
zh;N0_t164&np>%dwn>P&MS`tMioZ>fzg>~9UrBIS^=){l!;shiXU=^z18c-B;`5Rq
z>NV~E)$Z9>mOZ?u{9Etdfq~|~2WI=PU*tv*-5xu+g?s)VYR^cu=t!;XehJfI1;_7N
z?!zkKgDR1$CP93g_<q;pgKnqD$jE3!WPE&lQp$fopQQBc)U@RHX{i}m?@^hk?7YnE
z?CkuaoWg>_TkEH^wB$eBPX+ov;!jOgbwhPSeM4h&U2{uwTjz(Cj-Ffkr>m>0u6wYd
zcPMf?;g$hv?H}1rPua^%!+gZ_4fgzR6=<$)dpK%uBxY|E-q+VRJl;PrIX*fvIyN;l
zF)=YUH$MJ#>edNbSXjU=VOQ5yr*X4uxZBgjQ@4x0A9HhCTU*=TcXod4?C<VhTwMJ3
zk9aHN7?KKvZ<;BDUDJs@9Bn8XfYba(#%U}bif6g=bak|`WF(nKJC4J!sdVhUh-KBo
zv8J+#OqnPDk#WkWa+F{0HKXg7IT;8e_r4f5qvuKt-v5t`^FJX9c}6W&pQ{!B5DC&!
zR4>)v$~c_=q0(+;oT^6?i(U=k+AHIE#%;GUPT=X@*NL`z$9Vhu*PJHp4I2Z9+bZc~
zyX<|2R~*LqCLK-R|3}8DX);roF4T_yuZ)9!`CuZ`zd&oL)^Q@qG>6+~<-_x(-YK;=
zzrOZH5^~pdoj=>^PocjztsZpxeY!-upsxG!<^Fu5<;Q7_kh8<Jfk-@eeb4oq)6Kc}
z_h#;fUH$pFHBeCB`!D3`<oMIanS1Z>H~)x9aj;9q^MY^!J_B4hg%H-syGC*c7e)5~
zjf<vsF(`^*a^KmA;eJiJiQvl^-H7EaHYko0D&N_RlWry5N|0L|-At6-G$=_LINU1n
zy?42jjf7CKeoN64vip{*qZljj-dwe^G!1IT`aS)DyWRH;tJkrDnU2AgWhkd4)*o5!
z<#s=^U0Y*?a-MZomgo9Uvu@|T{$aPBAMiI;xZvGoWkn&3ifyMTM#z4rI7%^2q$F9j
z3SEjcW7{puaJSzrPkS9FT475jx`!^!c)C}KF0b0Fs%hQZt8N&^i|yAmFFxI`ZU0fV
zU)TM2Z@(S`5<h4dWb!^}92KfQXqr^qKlm`KCw|zx@WA`91?ygY*t+_9|F8`gBmT4f
zTZZ?~j-B%ApPdJ-`#-ymhQ)t%|6cU|)wA*ALvru+&;4f~0eEqL3=y@De;+A#jekFd
z^nw2X%{__dgAC?A&xcqXYn~5tJUe(k!t+kz#i&5C&x<jUf|?iO67>f!CS*QJyquJu
z@p(C=yk7HiTK(6-%Na;P?#!$Xv#<PJG)iuKzPvCZc@Db$az?6k(xpYRYn8rb?zhRw
zD4)|kIk1L9W*)WbA*%NE-P6zye^>68@F&k5KO{W+8n|71wibGZKRjE9kw~56qL}^8
zHxR;g=bH&iKhL+2`cfC){>wId)TwN(C0LA$7DhfE7g<AvO-r=kQYZG>7vv^X+`T^-
z@FR6x)C3YGicQyS0h>yyfWaq$YJkEgzhyv^Jr^gFO24j8XZ59TelOTOyZM9lsK5EU
z`i8qjsWeLJ?oMeMSBpwBy7%(31E&?Q;@~}CaM-%U4Hif^c&o(PeZ2-didF-G3tuOI
zL}o%rO$rH^M=>DPqi~vpLLy;<KC%Z?+$AgpApK+clCMvg_MWU?`pc5nvL15A7Z%*?
zk;LkDKY7<XI-*o3n_N7##kK^%&F<+96cv>KPd!Hz@bf~-Qs;i2%9HwX|CE~9e;_@*
zs@Z9mWOdj#kqD;AVy3pyA*tZwcqfVymXT3it5CDZO>tte!q#|u#8F}kmUuyE4#BwG
zNc$ek&1?XG-8FmSIkoeI`w1%9jg$^Bq09~#<r(GwC&>jkf1<`Ut4~-1i(OK7<=fUA
z)0@{s#!imNQ+>H7mwl3kHYpRc85@7ld6GVThnP*llMMZpFY1}=SINS^q>RhQuanyy
zH~_Qoz`{r(YQ%`T0VewOU?dgZL5TAQEwuy%O`ter<POlO?W67%P$3{3m`|JR48XlR
z_JrKolAU}#xkUuv*%oe`O?sURAips1P~4uwlj!uH6aXmE5E7%=2)5salM^_JAtf^O
z6kq1ET;c_$V`DWbEtEKqy%65EnOp1>_{pc3ugg$9NlTUjB=TLh)2{U{QZr?Q$DZTg
z8wx@i+SFcKckY-6^F^Ek#23nX$A}*Up?ts52BuXOnd1xPs*Dk2k3@FZo;Jg^(!%Hz
z*mT98evI!=e5d2!Zc;%D(v)i~xD|_~qqgUS?qW){`LzjSSYtfoVMvD%50h|@d4geW
zH2n5KG7JrRFB#AZpPe}pE*FMX|285MYg~oJzo3oMt8_o?S=(fOF7{2YZav*w8O0fx
z-Hi;CQXak&+BX>5yv5?y<L;daUJAuK@s`i*Y!NoFC;>{R8t#^P5oX9HdZ<5P+p%>Q
z4R@dzY*plrFRKZtF#ft{f7XfBEtDuD>$GP(%*gRwmr7hTo?Vkh`NwO^!QBlws9KP7
zp?Z|3eew8~bl+!^4m54$lSLOU#0moW`~ycH|I$%*jQ?>KfGbiIvYoK13G^9%Fy0_@
zIPYhfZip#y*ZWyT`?S-4%iX&uUS*NCIgmjJ@ZgBzWojW8CVoIZ^!aok4K?}jE1>eP
ziLvEg%0T+pnxaMGSPzOjS-<2lvZLcuMB=F>l<q5F3Yi3tc32MkbW=v#<aenMyY#;e
z5^Va;)aWppOg@1kaD0rGV_gG2TG~XKbJoZlbaq^4@=#Csk&`;tdsx{U`UdaD)j?+h
z9*P>q$Lj6=+oo04eH=HtR1?8ww+X)UsOjc%r75rNSNx$L1ay^JA0++$J|FfSv3~tF
z_TJ5RU#?S1?;2m_{r=sK#fBvNx<9S^W>=R>7^>C=cu$L8pkHVS`>QYG;hi+CeoU28
zIR~C2{i_|pA+89*#<r<LzmTgHT&w<khGJZKx}ERY?2u%QV!XqS%amKlhyVw$Rae=C
z?)lHh>H(xb-(Fp<1E||EBxXku?AJI_^Y(t`>7y96>kXRZ_CaB@<2Z-wO_rJVVWsKg
z_@%8a9_o%!eY2C)oa=8Qc=L{No9UB`uIukI$sLm(W~bRJ*FThJI;P)DpXOg(Z$qd%
zXW?eI#LCT%fqCbA=JfA!wVPdNa_2&Y*`F$hn?2i^&c(LrKXoBD`%ctd*b%e8O*uCQ
zp5|T4OVfW_yKWBsle<>8&CWVkZhi*Nbgi9DpY>kd{DM(;<4DW{Kg^VH!Ohh-nd{Go
z@BBMXN>=|SEPXL<`R^oSM*W9U{l)alf2aA>8aw*Zm-Fxc{Vq4x*t4m>T>S9wPhGOc
zfrs?f@~3})TW2(WzNx=jJN<XoOMUkUE`7a8k3Szazk8BdfBj>I>$oB2?Pdw}{;q@L
zCAR+U-^!VreQ*5L*Y#ff*#Pyw;~dB99qD(MV>ACwtMNC7jvueKsPPvoj{nZ<-~HR2
z!C&p;@i%Sn{xQP<$}o@!jMNqeHh@tC!pP2Hl<hDomT(&7a3+y(7Ta)EgK&<(aJKVs
z&h~IFmIxl@2qBRO5!(n+g9wSh2(j~sV;gfh<w$wkNX5X&|HwG)k?PpUyXTP*mMAUd
zC>`4<y;~Uv6=l>OWrB?|JCB00L|Z6FTiwbyfzh_8X#4i)huG-H=h03qF}E^~t8I*X
zV2md!=4pG34>rc{JjR~|{z4fZU<-d82oJ<YGBv<MvGBL&a2U(2#Dj>kMZ^Rm5GX`k
zJ0by#NWz~ZkSwvO%CTv-u^EA}C{%2Adu%Q?Hvc@fkR`5IIj+<;t~@Xfjf$&kkE=l;
zu4kzmSmK*l;;(1pS_9+TQSqJa@!i<?-t%}2OG3YL!k}%!aA3kHDxv5+?gKXA1{y!k
zk~puNxL}*O7?_AfB`&uou3{6{&J$Zl6Q)JtXAyDwIN<0G(5E5EXO=J`FzM|%u@4{#
zfdaYl#NF~jzYz&XqX-QcC=dzKqDlCRjz8H!7&au6bs#CeAgL~pZ6Zlqr19UegkCTb
zpF$#bK%5bP;xsUU3kUK;l3@Ia!m%mbV{kthxC2Y*TbNvC3--mq4PYd3vq|B2Wum|%
zV1hDHrW1H)6t3X}Vo@PVM88*$MQGclz1so0!ARU`(%$Z*%6x&F$CB8_rvJpkt-uK5
zF_4~0x(+zwT_BM+4s_ouR%8sJ51<G_f<mCF@SW6j7>UpYTp{Sa!v)+RHd8V7eT2yS
zSZsQ{0Sexp8tsV+2_*CjBBZ%MAz8ChRkG5?;B+b}v)Ggj<n4Wf({U&SB0WMRJ3Npu
zkS1eHndk)=Q68Hef<Pr3WT)M}7eIk21eJ@RLa`vs5y%Sy&f-ZAZ3kumC~h+?s&+x_
zV{l(Xun!cBIU<fX$Q_PFOkL#8eSvd9z?rik6clXOfoj1A<-9|YWbmZ!bYwPr<+Sg@
zm%w@RW4Rby?$H-`cNU32EVxi5ww4vqv<v6LrG%nDBcg~ZL$G@xDFz05JDSrA&h77j
zFW41QUFP($qV9Mh_6_r6+lvl^P!ggDu1mNs42*&jre_t4brwr37xx8bZP~_i^Av`h
z1Jj^|Q7EwJ1zdGGu_`E&hb&gZJ~nL@<a<$6g3e)@O@ZuXhqi-SV@sj}3A1n@Krk3$
zpK}$2fZFH1Z3nu;ikD-{#K06+yP$Mf5|<M=a2Bo`T>8!cY_JD^HeM9E19ZL2cJG7-
zW|xI@!u1={xsl)?K%BOH#^Y>692D$^@60vs%x1!shG5G^#!5p)D#OsFQMMH??Gd?b
z2q&>}G1lVn^U8PUz;)Ilsm`jJ<*K^Ns$|lVY1??;*ve%UBIQmXhkp(i4w&>5*g0O^
zy9{Tat*#=gp;JY^YX@pWh<4h6TK+W?mt}+YB^LIGd!04Im+*!l!j8^dE*>HdNKIE2
zsAmt&-T`y~*M5Eq<o2&+Dg@^}MQpGY?RM6UkEf4Um1Z1)qLhiUkf7LLM4%IRi>xqg
z6lLv&0EjmztCpmS<&t%wFtBWbuCfr3`geg~FDQa7z9Ce(F*LgY)6fux0%ao+lY2E7
zwpzN*+6nu*?L9cBXe|>STCcv`2)nFcnytsPH4yH9h{O_JWfvjN8{-kpZ%G^9Vr!48
zn#0i9YGl<`4lNHtS|r4(r)=Z302Hd^2rf)cHh?0%A=A+*$CI2Q4g>edX??l^-vU>L
zc;5ajflp;xvjC+`{zNFJ9N<b@FgwBrK=F38NIZye7EFPH62+lvP2*d`yHYivxfp+N
zogp|42NW2~55cy2b+s~KP~J!|#woMZ7+haj5Zl!bBW)QFEz^L2JsnyZ)H-h?JS!&P
zTFCaG>YN1DcE_h+quG?B@oYf{1dy#D#vpe<twF)QF$&ckf&yjuSGHcXgzj`^`zJ^3
zbON&Tobcqm@35dkZ$#*Rn-`!x_-Rh~eut++uQn9)3_#%y1-aeI`f6Pxu_Otda36m#
zuXx*pSoa`122<VD9YU1-6tOmeIo+$9C2vE?bhLVP)LvnjWZD(uTW(wMxUTy?qgy_Z
zCI$j1y!~t9_mY$fNi+Q$xMhfZJ3!j7>d^CkS@nUDAVMvt$}oerApdN#T(IF6Lar~>
zk<}?N%I(oB`F@4qbblgl2+@#Tcc>_)sB3^=b<q48sP7NXrpZr(g5&(NxuKxwy*e46
zer1zJui#e5mlVCqA*jUAG<!WYMIPn~<VRC`7fGVU(doJm^g96hhkigINt7CZ?f4up
z>vD$15wWdT6H@~y+8%>IfU=LO!x2OnWPP;3Sn_29tpp;srp9l!Tqy+XgCu#d2d^Wi
z@H@&4;u&L&?+dXV&siOVVN<|f2%Slg-ovI_{aXFufS1I8d^g+;(|=k?8i&gco*a40
zk*{3{zAc?#U_>Vuqbb+$LZ7h^?_6X83Hd${o;w=v(+tOAxUMiJ<ZWgYLyxY9-i=P{
z_<(qFXD+*EuCL?yOp@qS+qqctlRFFUbT;r^!NE81N9^qZ-py5CCcKbfTyVFcNqd-Q
zd&wjU9g0Yrn6*<MukvbcTA3SV!w5~F&I|^{B{N%MvpF8kP}dZa;8)>y#PY;^ffBW!
zUQ~jZt0pnXB9C|ylz+x+w#sZA3g?4(2JMYF2WC3W<FglvCgJB<BxFWl8%hN9>s(v|
zC<H}<Htv<X>B(vU8DVm255`+pKZoxuzD1Mng&^o3&84o+4jWG-clOOxcc;X)_N;c4
zIV`lqmVT~Th*e#P@~yZlnSOh|JC3wPdlr=T=!>5HV%TlPx92m{(fnfdbc;IT)t8yl
zN6Y15%lYRs&8P;KiJrW}1&!)yorj-3NFoBi4#ct*u6BV+JAuFugi-FCNy1zxf+P!x
z;68-6Jt}`|3;x^%Z;EexD2hoKYyU_-DrA@Q)^im#^_c>{+W0x~>t^lkA-P<nFEF5*
zbm9WL{}jC1wGeF!_P$xnfPk|l5Q7(Mv7MmnshmK}x>HZ{pF?y8U~zZi{ldyux~HI!
z3oK@0np+0<P;%p~$VW4Yui>LB0~agfzC-GdJ}F#%Rj46NgN<c0WbXE?J<eVaA)OYb
zT5vF28w_64SF6y6btorwq*Am1ey#)RDyD8$!$zl>jzC&T%Le)1jC#LCpqCkfs#?JB
zoAz7F*ju>%Eh+c{Cp6k#d9SUmWUO9cTQA{#Q}CFO)i5*&gIRj;_>;rh7td+<=>*(a
z9Wh2Zsu%Qi>1)<o^bcC2Z{fBe&tPyE`Pyvt_6z*jhI@Wda!&y}fMT`!c7z~I`-v;I
zM^vdJytB&@BD-mC2{U?|ODGC6FuM<YGig^r9_rs(yWt+SxMjP&k<MMkE}%;o!ij1j
z_3}qZ;C3j>CQM`}9kTOyqT>Fek|4+o)9lXUUU>fFT|v?ENvR^_&poU+P`-D%RtiCR
zJuSw%9iqJLqk({qfBW(F=Z@L3*}sJFc9NM#;GkK;le@nhs<K<3{%V!P1hD5PC(V3v
z=*Wb8MA-ho1pjy|(m*oNVDs-ss9%97`PYU+__<kAkW^*})lVka(N+>d0dhO_g7jqu
zP_Uc?yJMlCuPDIs_SY1L>|G{Er&ZE%Bpyv#y_S~lv<D|W^@~4VtIJd3F1j5Q>hee|
zy+`uxPm6p{m4BTYQ{T?{vymbVnKVcL);37gkKd6Vgkg`lxlgoZP9S;pz^V@t>u{<1
zQ?K|RZZmMHf|F?S<-=9P*SmZEYlYM^dyzXJ{rsPy>t}Cgs`eizy&VO4{saNk5x#bx
zVheszef_@h_z#QMN2>$)cfX#2L-;dD71^&Jyrvas@?(VgSGeD?l<De5-Gw3b>b=7~
zfqR$2(wQN+g*(|rEmQC;Orh!_VdpPG0(LY43kq3>hrqx-chkFOt_1B0HD=%g^;L$@
z?{rmQwcbO&kH>GZ*N0};(b$$J_};HRJQv}k`x_LS-ey0l@h694pf?}kUpwF}zxLYK
z2}jni94`JzCto!_`}E}}=Ebk+0BRaPm>rJ+lCCU*SfSDoJF6wAP9<noYCE^7o4~5z
z_YFI@rH|y*O%kx1|7MsbYF+30W&XP{itFM}iQOl6)3;1XX@;Y`mRu1=Fiykvq751+
zFCji_)%&BfG48N1k#-=8HR3Mp&yh%gL7zN^#h%6>4VP%*tH`IYf8^y5;YKbeX<&F?
zw-fvfaMhWKc5H&ql)q~C-;80W66ci=N!wWKg#t@99H5jkEkxp91xFtgL+jXjd~P0Q
z@wvnoat34QRg0ElGhuWR_{cF&?E&4T)mGSV<Bi68Q?)2b+MjGrTx`XD=+7;defsas
z7^=EATsEFeQ2YWWRJc#~l#svc4XSe*cLYD4eyAWjw92`q<a(p-ztRofR;qd4!v8WB
z5MY2ok;xxHi0G~SH9_nFN1CMk30~znVh6$%6GzZ~I6nicS&B*TISwQ!*C_p-<~^pQ
zG6H(7rOOn};?gW1<8LZfMcPCrPJVZkh+g*uTAC;zcY;ebjyW$(FdB>_M;WK>Y>*nu
zkInH>$FR6`$u&1m6R>(UH}WXSb$pBGO~VYfcJ}9t>as|}Ow7g#=|sjwtGg|VaBRh{
z>g3p?=}7k0moLol7{H2?sbGx309`++Dgld9OyRugiQ*=NUXkNOHkn_G(z>S;;A^0e
zaF_AbLWEFlK-W6V+W=w0z`F?&kZIH@zOi~_t>LI^{i{+biA8JnE+xT&K2NlOT#?Ls
zwhz3@HVi)}B8Vg-q1q#=bo8R{At%N*k}X7^h7G*aEnW^dFg(=f^)<I^_cwk}aw8#j
zIw`;OEzvwqYCy5%-oE5#r(i*=K<60t*XPa%{)|8ult}Yzd9DPspUz3OJj#k(5vu(@
zsU%<rVWK)c0FQw_$a0HNKWN`VkoGr<;U$h>sS2~Uk%{W%18BHV_}CVqld9l^PEvT|
z;N3W6c91*X!Y#kUz3FLp=@Z?xJEUJTEETieboK?RCb_cTW-o<20R<3-w=)sYmyQ23
zZeagMq?bZ15yW4_-wFaHhkuG*=KFR)|8y^Dy9J{iMLFa7e0Y0`k;OC(C9=*QQ66Lt
zi+;lKq40KF#iCDPqmg%Xck7EsVf5SF=QR$DA>X}85<-4;*mVPwtGzw#{QD~{+pISm
zr*igt@n+~hQ!B$F>v5~I+1~Yk-uIH2E*_Bv!!aITt>Pw>@S(py*}Mz;%i4PGk}bE`
z2!F@kS>)d%HvU*Z*Y+Xx`^3<~{{yH%SHEy&I?MiGQUlO!#DLYyL;*jNK!SLHeh<W7
zL2AH(lz6}rmZ)F<Mj-f-1!iP|1{zUC64<|nr~!Z+31LMf*ukodP$C!n2n{77Koc$u
zfgRDHB`SE44-zDZJ!)SOjd(;PCQ*q?l-T>=CqIgDz&j1e17ku$KqfW>i&^Xl_xQ%e
zC{8gURRm)hFG4g-w9t%eWMdoM_(nLE(TNv>BE<yqhB7F@43)sd;W)BIFak1;4jIBF
zFfqhIBIu5J++!aTS;nVO!jF%nWF;+mNla#PBXhJ+9Vs@1HM}7YY$yW^JMsm`Wf7H{
z)EOFBsUT2_l9Z-=CHj_BOI+qsm%HR8`Z!r3Pxexn!z5-gjd@IDCR3TqjMy)45=>@B
zQ<~GHW;Lz<c};9)bA8Ulm^QunO>l-&oZ}>CIg!atoS0Lc>tts;-T6*<#<ODZ>!v*I
zc~5-iQ=j|f=P=P3zXu)RhZFMv8w|>ZNeZ+fUr?Gv3VP5<g5^8bOv6NDvH{Jlv7!#?
z0UA~$gz|0lA`DGXk@|U3l%~|0|GZE^dXNS@ut5p5Oo>n$nm!M>!3{x+oK3a3LWk;<
zrx&S2Dpk@0GsF~RYrz8|8-i4&DyXOpK>{8WfzYKi)gy)UVM3tFhNWs`2wLsPSU+f1
zkW3YDMoYsU$aj)5;6bi)jc7&GsxP2Uqz6DNgYY=ggEnNeAbZJ!8dZ8&#3nYAEX|lu
zERlx)GF8H`4UsEFDm#(ig*APikw|8LdJ)dr)u<?$6eZZuq*!fa101XCT1|`E1l`pF
zZ2-m_(m;t!6mGT06Dy_uRoc@6BefdYZEFX_+5jQ<BeL~C(!gTekmSJ<I;Adj6*Jn;
zQe;w!SOcU$nvomC?OsJ#lV25kUi79nj*RV*bA>3$jb!4c)S7P=LyHkN<aH@;O^9q&
za-_BhWU>uG4sTs}i2ws*z$m$^Q1By>0$X=5ZlDi>$)sS8M7Sdwb_j=yVg~b4M7EQX
z@JJ{jy{dqisMt+Neoupm%xvHw8lglRCe^kNV4@NORd0`d{9|9zGo6#tY(laGwGBxB
zQ4JpOz`v3#7A8BH$@sg?2EMzTArL`1R_3vemQxfVmbf#f+Q5_@;$k`Z@xEUDu75os
z1l@+2BgzAYU@<a;OoYX{bhh(F-aIg)Y#=mN=4hMS<2Q@oS<f87gC#IXAHCFhEqOLD
zXekXfMOPYWMec#2b2pI>3}JyA$nuuqjFC(D?}o#9s;7-SEi$d}2KFh!@g{ZU`oWNT
z;;Ao?ef?`-yHCgfeTu4$Ok0vw!ZlwQU3i$yI5+LCUN{;VFfsv`BVeLqdDeF15+bOE
zIEgH2EE*<?z>zfvrepQWZ`w*0)^rP@XxF}L5A+5MWyksk<vzDZnmb&JtX2vCsN$h;
zmvcCK&n(|`T0_e4;4&-9d)r4)D_~AziGf#If0D+M!80Oof@1{a1|B)oHtm*qQ#><U
zdc#%9P=@S%0C*(Jgq^d!?KE_IdKO)ESS4<4l^4VV$i}y8+TFAy6=XX-@i@2>B5v(b
zL{ME0cGazZ^_8&K0>E1X{uGh#8z|xuj}G;u)}STVlpPpnhqau9;NYkj4G)&8L?&|7
z9X2poP&37d(+eVQH)x^~NB95{l$()s-{9?l3jE+d5I8GIr(PbwL}538vPfCr4Q_z5
z5AtC5xCox`hS&H-kN}J;Ut|qH3He4&pZbTGYV)1{JXQ9xV`lphHk7yjJmxb);xEXx
z&lXs{#!5dCG-!gR1bMwiir;#~vEIPX*EFkjR{0xT9z~fcgV=##7e#<f5ss`uSk!}e
zz1Mm9e|N)a^DzAOE|vG$_kBUW&Xur_J@k%;e2ylyC!z5>f`Gcvk%;bC9jr@01zbRq
z(7Fu}l%&}cq3{}{v9rB^KRUrcFaZ>)Xb+??sWixh+h{HgYzP6g0KglLy{H|~daJk4
zqTxUa$5}Hq$StKi9Z&H%fgqI??2I<}K_IlT8@dD*#0yPG41ybiAOu2$`2ZpeAN~>|
zgWC(9=#DCciW>Zq?Z^yf!vjoM1A*w1Avi+gldv}cn}%@0B8(dUGK4-hL_*#gLpXGe
zJg7qtp@ce|jV!#ud8v*8aj(t*3lWSUj_Zvj{6Vv5u1r`1C7>+|BZxe_!#rFM8>EfX
znZSamz$YOU89WOyvH)iDo<JFhr@NP3(~LD_Kvi5tR%{5ZI}2o+C^x_qOPH7Lh@4xb
zh!;!<sc?<v`i?aKstw4qj5xs*q^t(&t;pHM3%ib8Nr*L51n1Ea94w5c5C~+Hl!MsD
zgBZTPp@j9*5li?Ef;$3k+(vJ-1aQ2e>8TrFIJZQB3TZ5g(~$~AxQ*=?v~esQ39E!h
zq=;_}$B@~_GW<A#B)HWg$KzQ8hNLY#U`SD%N1W-y<d6ve4@m<93dX7+Mr}MtO30`U
zFay`v4zqwrhlI$OnZ}Sgomp&%T6_{`w2Z+~g8b?pf-pu?L@~{K##Zb}pH#(H%tV36
zsC%25+DW%D^EPI*nW?~;@0gVD*p4D|2%L<IWRyv&OG@Zqx2q(GmXkbcQMGC;12?Dy
zLlPQ65*UrppdHf)HL!#mh)a?TF+a0}w%iD^G)rxB$H=%FqTtBC<30?d#_xE`xGa>R
zpv#K5gkBRmyUa=pFig2jOpK6B#5@AOvdp<mL+b;~0i;O$kvWgyJ4q2EsRW5d<jke=
zOcczFqP!ZbY>2N^I!M8Ty=aQ6w3muNj-TvJ-?X~_piGE8c*aV|gC00e<jfwVD6-|$
zMGkCAYFwSLK$4v4J5r>^u@I!Nc(glnLB{LK+0q2COb8eYx6G&kO2C9NFqR>}gzN;*
z?KF}~xXX+X8^!@o7n)DVv;g!}Pxf?AI_XO~A&T;Ry3D}Df?!O7u+OQ%Pl^Z<itqsa
zj4#u1P={d9nMp<r-8R*1hyo4FPn)4K_!CO_lIh$U1ndYr>`?M_oYN^z<V?=kOo%oR
zPlw_-0kn#otR9~HO&|SH^a{>wNk%ug1dEuI$U#!)oHpoO$<>Lemy<BwJdf<WPOsFj
zMDtE|vr-F~F=zyoJ#Z7G$qY8A#09NV*~C)+ir528*iQ@S0UwA{9|(&hur4-r(=x@D
zOn8jSh)1Fb(}WmPg2=@daiuqv(>Waq>uQ4@ZHPPlD@3JJ<APH;mDE9vR7GXcf&kP^
ztVTaf4cURxG7vKlb)1tEPBCRkBb^9rOb9PM8FiV`G22lQOGO~PRb0&{_S%V__=(bi
zi~7kA=`gl}SV{}Hndr=l<Ex0`uz;|r(zZYg79%7rg+cs~9j#1=^pMHSz>ai**1^g=
zP@T$<F)TMU9&#m+hp-~!<5K~hjNxF9f-sM4J(Xp3h|xHlW(^Q?tu%GDS3iQj`e=x4
zT@O#K$TYMw9aUCR-GJRV4}cq3ZH?FeOB@g0kc%-RRt*Y|W_?y!nTY;KQITt*f7Ou%
z%T<(3*-B!s4B3zl`H&D9krFwP6tR|ssFoO+5ox)RCfyMs`jH?R5|i>XBvBG3NkKfJ
zlF0KjE#VR`DOR1W5u-B`G*J^a(V3?8j;9S7Mv0e5(H3s$m?}+LJxP_HSQTUOlPEk_
zPdVFPQQLX}Tf{t+J~bPzg_lRkymGk|<B_mUsjpyR6<1x`N-G#<Ej_kfj;_sH&~ymO
zaDyYbfg=c-&|sFJeHM(M6<fg-UHQ1hl^6SqSrRc3tK=7}<&8b4kq#l<2rAkoX%bqM
z2({!0!<C5Ib%@(lS>4@TOVYakjhUH`DT-=?lHqfiu?d@(u|L`=2xN8A2zs5L2^wNG
zz@j-C_d*-Bfi9_GoT^#gxVWCZ@tW<O8XnXezCpB**&Rjb9jkOVr-3fYnHt9tAL6*z
zbQzubeH-;<U%MI5voPQ00i5LN+YB?X_??;j^|pc>9|b<w#I+v)M&HuGpWpQuQrVfF
ziC%2gAI}*ary8sXo<@-&8R8`q@a>v}C<78!1ekHD>P4FR+BNPGMUJ3f<&7L0=3O1$
z;WY|ML8GPn(H|i$2^2~Q6$+pMO2)WEkR9p>9C9cbA`>M(*#JtA4|*XAst6l8i5?Qj
zGz5tcMu{i>j~?L8m{GO=Bi@K8)`&6gtRHG(hq!?tYU8!sAUDm#90Eul-eW$NqhV_)
z^N}K+BO{Rzq%1OIdGew#wj@EOB6hVTG@{}@o@7d9B_WlVMbaZaB2_K2P$fcSc`Bqs
z5~fUUBu>tvNIK<8US(E(qf3^USQ@2LB8gQpqgvi44=_|=isf0-q+4obU=C(W{$pqo
zW@A2PWKL!ser08DW@mn8XjVXGj%I4EW^2CYewt=%-ezv@W^dLeZT@C)9%phcXIu(r
zm{6$oc_@QQsDUA=i8zA1^9XomB9ST(jAEmEu84XzkfAkafDY(!dc~KDDbj=qpIT?3
zdaHzvHHrueFK#jaHC4K~qAQI!0x&d#J1z<Ts;a9}GqOUrOXw=E3M`KRtl^8Rif#=x
zHtCS?FIJssm*OkMJR_GLETfTRf!=AJ_9tR4oyUqSD!wd<AnG`tJ0n6$IYDZPerRBb
zXosc<>7p*3f-c&sLtsdw*qRsGvMt=wt;6drH~5$E5?dA$FNc_Fs)nwzCP0sXX^B9y
zc;1`t$^_WcAGB@=^1_6g?rFdNYo8vroPgm>gfESdFN#2HGg9i9c50}O3z_axovesD
z{n^<#kOqqm&GInt%7lNc3mbFmi>R?1!`;cI2+|g99Z@lhfa^1p=|zdLR~_xp#xWh+
zXu!^G-G-z8UA4Z|XgeKIvM4JG;cl{`FtY*Ck-H9=QVW?=yNFx^vmPPUbSpC^d+oEZ
z4~Uj-9T`C(;7&A~HHSzwl1Kv^UCZaLijWz!yY4j2I5d@%h)gT7Ml)mG^oV>R?~vHF
zQ!TXjrVro_Z(6f8)KhQnjym}U#NA$S2JhXUF183Ix`hM9W-Ewio0@2w87BRJYP&YT
z(Kc(#xhT9zE(JVt>lkxGH&c<epK{-%BZ%#W@#r`R59r|R>?5QD8BO51k7xsQ5i|q5
zw}sn_h8rA+E7p{&xF{?+1u8_g`G|bkagpF}-~KszYmcGBoT7_07blgaD+noymE1&d
ziI}?o20wE&=k1@~y0!B<uoFA7vy`<%yG)dGwtEi6gF9Z7JGukCH%*%KJLrnY&BhzO
zux>$v$#cdNy~n$RrHyem&;*d7gw2?{C7F#vZ}g=_!S*Z85<J|0)(qL>JP+_Z(7Qbk
z$UP6(J?zuINC7_K>oDn)u;inuQ?!VDp%nM~^ymRK>zhAUZ;$(v6FA>L!t1}%1VG#@
z@z~|4>P&NJkM<>UKnP?52^`G!vOp(~Gz~P?4m=MK97LVjcBy0bO~h$iP4H!8ycj&4
z?Jkq0`jgtZjU7CX%uqx|bi}zhL?L`0or6LJZm-{<!au)4qS!-A<if%E!Z3u!HniXW
zgg8T7KkZ&OGHc6sO4;{AG?@K}#P6HL$TZU}EFB8uxOyM6%piDz2t^VPw`Nz2beDFS
zpLvQ2${UD9GNDCVd@Dkg2yZ{0UnB^P)DhM!cbA9Bgunw&R`;!h!I*T`smKFIQriV;
z)p>o!kQ_<DFh`H<vod%C!CRmY)&zHiN4u3sYRn9K#7A{WNPgT1f1G$IPnN8|L9^ic
za~!_?Fv-C|$;VMitH_L&Oo*2ZjHi#xnXE}s9P<K{h&O0dnvZ<RhZrIKfT2{D(K*Vu
zV(g#4603Mh)Aa3$AawAY-R@j>u9Qtu42wUxgu<b8Rt3-5l!(;ihz%g*jL6IXv*b(v
z1q{|ao$c_N&tDI?oJ`Er2nDT(TUY+mu6=xwp8j4?v2;z-sTo0<eG4dq+Puw{FU60Y
z2w9zc@gIK)dFA2M4C9Q^9#Brv7mumze4LR^C_zz;$Wg$9PhhZbyr|X|1J4=-2n!a{
z0LwE3m?D7+El^6hP@$Vl58G&ZxR6pFiyAE+{IKz14N92G92qhMlNt**fDKUz?1)R4
znA$u9M$>{4U^f<CVk0mUu%JSLN&NUwQAVShQX2iZv?;@+P!&Ga_<`lanKf@#%G2X3
z*qs(4POPZW12825*#KL(0T|PTRX4h^H1#gtyn6TY?d$h1;J|_h6E1B3_%PzciWf6(
z?D#R{$dV^h#>=lC=FFNi^V`U#sGCbokG$MS8s<hJr5Bn3=275VGYavrDO09L-ZgC%
z9%Slfx577=@*YHOQMGY_zaLVfB#@v7oHm&|w7C4D^Nm{fs%{DOb99B7Qm$;d66Sde
zd#YQwdb7vspJ)X3@L}Hv!6Ufuwy~=;u3mF}v>jdoE_9W53axkGbYqD|7jObKXBsg3
z>9$aB78&?ZC3sZ!A&4Q0I3kH9ns_3LDXO?4i!HWz*=8~J)7cSaEW|-3N#&H>1`i#S
z#zsGWgxo`|y=Fmd0{KuOUpXa6kZ<wbkjYJV6_;9k%Ec$-K*03>Xn`8Q*r-rL5E{qj
z25Wq2!9ic#m7H$jDYSuD3ssVxKsk|zReI^6ft5gER#{1PS6Y<Qes_7nq*DO8Ri{P<
zrnzRD0XnLX2Y4hZ(4PqknrD`4{&prXKw9L1CDl2p5R@8Ts!$EU$fg&aAJw|ituE@i
zE3du!`YW)(3Og*ZC&DPBW}StJhY~&<p$MQBD3Zw+AKaisCYxH23AIV!VXAoDeyflW
zLoAxc5Q!Q&r>p{fkO?M8Dbhv~cX@EhB}05rMkR1*d5ID|9ASwjM;hgUNo9y>lAPt9
zn=V9|T=K;bN??M?mjtbu2QWpD$=*T{O<eKCUkZ_lB1GK(fCMJ~L8aOoC9!oWC0Sa)
zRv8}Lps>H?#q{$A7b`JD8kSJ05NU1<F)+vqA(|Hln)uY{Ml~n*kbx(symHHXZD>@`
zm<(O?(E?3d?X}q|Co#nqW2_*$&#EoZz4`9j@1<V{3XGh1SzWcwWCmU=;e{K1IO2&b
zzBuE;9*Znyo#AAOP?RKyq#Bw81+Ya&09B9=4|yI`9-*5(6fhnNv@UGzTHpaCYoM_P
z8yth%R1f_Ybk)=m^*}i=mT3FYL8wOy?NF+Zh3+LmDN?7#m|l{JSY>MD2J_BCdIQHn
z;bHJ-%>$#!tVh|r!EeqBfeDa4_qo~)H6!$aC2uVMbcFbL^u5s2xiK2)tE4qJfozC-
zLiwK80{D^mIgft!gH7f(rxxX84<V2$gXR!oI)&tpbi8xbMtY!$HSh&mS5t@yH<H4}
zv9N_Md?5^DD8m{0>T!^h9Bg{9CX3u)e-D8a4+*1)+kt5~c=>=2$)XY<I;IBT)5r#P
zI29*;M2CE_mQkKaH!EJzhYP6z2M&WOOGxo9TD%JvA%jGt^zb88)W{9a*d8xJWsG!$
ziX7XMMH=$4kAD0kAOk5#7upb6IOG)v#PpCn;K?sa9ONKHsE9m5(lNQi1QRQ%$xU*y
zlb-w}C@E7&86A>Wzj;F$lwgKRU}AWCd1NU6WjKUOV1kmd42)_h;mTX`vX{R6B`|}@
zxKYNal)M_k8s3nH+LVzmU#OBW8RvodL~}6vswOtGsm*P2vzvq==4OoP&2f^moaQ_y
zI@77nb@~OI$zmrw<0;R1(zBlSyeHw@$r*g|v!DL_CqM%#P<-k$asxdmLKCXcg)+3E
zjVtJk94gU?QnaELy(mWa0#R{J<_LG(l?T`$Qa0?;0v>(H7pC^Blj7wFZ20I$QrfsQ
zj0rLun4k-3Iu)5trd}ESDNuvD&5d#}4YW~0GZT{&l?KZLZg2y~P6#Tdj>U++T54XR
z_e!g3qzriYDp*Tuksg?VHkXS`C7@~l0VLo-5hM)~0{1dYOYE-)ZNO<>?21=`conQ)
z73)~<3YfG`#SL85NDpdPh8pZeuRknECWR{5$x;@QM3s&u(h!kKM0O)z{m5rGasxb^
zRal1NA!#3CSYVB|v_{dYURL{&JXqqXwgoKGfI$g1^vg|?A*@2$0E{=JffAYU;RYy&
zTaEz34LiI+`V=VI=vsufwtebyRYKjr0JkZ!rH~@lU^F4%1-e1GR1q%5*vhiEz3!DE
zQ9tM|UFIbdR9%RDUwGQW9+q*i&C7Q+LJ8@9<X*=4O=lI;-5v2pBf9zDU8dv)i%_Bs
zq#-bcE$lDmV7O`;4&VmNuwJA8bk`^Wen`-6vVjTRrNS4s3MMK6)A!Q2#x~v+QAy+4
zg&=Hr8%U%YJm7&H{unMoCbE#d_@xby*CHDj0uiFa<QXFg#cpv|c6}7M4J6q*M!bP5
zpB!Z*388Nv7(!&v99a*P*~wUTa+kB}r7O?rOKc9Ka=tvgOArw+eOt+1o5JS(^=Je8
zVe(j;+}-*$WeAxdNR|bH2TR}?fPL8zp8=yc1cgx1YVEOV_56?`{EswEt}>mm7Qlnt
z_r|V%HLOcSRMqquQ^M6;B@*=o<5g$ZsAEt1Y-XegW+FL9z(i0Ujclntge^7k4JLJm
z36BvcaKXNsVSl%|%N;xa*=bm|yYMhRqTuxd;?`Uy@Y)0U0VCHCiFQz?9WtRXdn2&T
z51A<8f$nWM+rZ10Tx$9kwD@*Tu3WcJ-0hMz00j@D!;=tnS8U*>$5xh5LjNM1mj7Hj
zZvyAbrlUnJi65c69=LV86Xox1D@0*80)}s$y^sydMS*Oga;$T%^PPVaa__W&xYyuC
zMY#J0ins)x&rF&%m?Tk32L{t2rjQ#5fx)aP2x&{6iPymAr6EmAQkxwi3-ntPl{mr&
zh@jkRpOETShlttHj=zG@2N+&w3sO<oN(<D0APG{$-uoV{H@Kn9KFGt?l@s^0uU#N+
zAE3SGd^1g4juM3bBJIAC;)cb~{YcH_Z5{%R7bF1V)B@?(2?=j_#Cv2VGTt>^SLFdr
z<lzPz@LbtQ(}OR3HPCCwNXDmv22F(B0(yhWhCbgF(IY>AoaQm@ZIAmZ5gj*1N4nzA
z{(;U5gfs>#)mp|*bE+s1KIP*%`qQuecKUpuNMeiK4VIHST?Maz7VXBdbhXx0=^#E$
zLnhc+{(Xn|MM;9Jgz`+qek}x%%v*vS#7zL80OHhJFjaz7AclOzRruC#9AN4^L<90h
z8;l?cTG(^USwx&w%_QKLbRcgu2wG&q8YqEqO_)FoK?#zeRDHlDB;e`Po4dfAOV|i}
z5MgPk!Ev?!T!ZWy9$>;6{04vwfhO!k@Il2JG>xit+(X3R4A!6s=Aa2?;X>pA8A1z2
zkYS)CAzwAf{3%5JX~_dN$V$}Iu948q6d(wFM2D;&ANHXiZp39d-mTS?8-R=@Kofj0
zTOtmLu>B8OjL8~U)doD;UC5k5^xN3sK~Y%A0EM8IaEO0I;+#+-3YAJGK}#AW7*&|c
zb<D;l3WO(`RCCN?b4(CHd_W%T9dqc!^^9F5_(zB(io&4A5zyi+1{(cPLNnQt@wHFK
z{7iZ%!UMI=O|*t0e2Kywnk9@$6*fgB*dWz_oTCJz5)z{^)?ywi#2T!laN)r^+MzVM
zMS~Ro;zJzbC)$b2EQ=Bt)(C~)v!$a(yn)O7Awd=-&jq3z{>B8cTk>GY04*Q`HsX=I
z#h8%Bm?+GSS%f7DM8CZvnD7l=KqM^M3@ll|8|;QfuHogFTToC!-npT;>DEiOoEuaE
zErH)ycx0ILO)NGALDbA8_>kq%g-4#`N627apo)y?MH$rOO**4_lty}x;w9dM!qf>x
z28t!z09Ov<h(Se9G{y0WC59noUWD9PQ6)#-1VbLs+B}3&ww%%6!Ah9QMv`6LNY{lJ
zBwzNWt0Ck<?16uD1z3cIL+;o?WMnL|4wAS|m*9(I5}-W#hDQ=ar9p*AT0kt8Bt@|Q
z3NS$C`N2vV)QrA?#AxbPc!b1Al*CC;=0jL!L;|5j5QIS>1chN?PL{<-V1%Dl!cyXe
zYLbLWpoB|AC3=(wfvhE{KuTC{i}4TzULXZoYGG6G=2<$Q$XP&gk{wrgMPc@USa7CU
zoJ#&}<XhyWi4CM*t|xm+7GNsGXDG*me8g!`NWCqlYp_fC(1vY9+FsruCc<TZ8AWDp
z=Gd_q(ACCmG(}F-nsnHu8vaC-2q*|bo<=~2bf}f}SjT}jQdX#yQS1RG;2eBL=(g;M
zasJGLxM71VqIghKecVTWWLbYqr#M2zb~fKeJfDKFhkMB9N3^1ZcxY}}NQ7knh!}3f
z9=0cwHYrBsn84wPj)aPqIVhKC1b$AW>nus6IZd>*%2-HA*>EDW87Qfk3YYFEUY)1A
ztm%f`3IAZCaZHI?_2g?wUYH2nhN{+<;N+ydV8JnHcA^*)!Ks&`C^VKvrzpgyoL->}
zPB$9GqKK8=<cg)ag_;1WrEEl|Xv?DR%}u-=s)gy9o<*v7>645f0Vz<dgyvLODxunn
zDmp2x)+#6wl|DKPwEP{lSPQmj3%7iMw-8aV4lB8sOQ}em1u$lkv<JM%3%%G2zUT|T
zU?RW>48brX!VH1JlmWvW>%*uV+mOuLIBUG*!MymC1^kH{9Kj770mtnB2fMl}yfO;T
z=nT(9$+Zp)-N7QVqDywc7ROK<L*S;!v`xvtBFd-?%c!RY=ExC5Y{aUd&D`tGoL6xs
zDoljU*ceTfB+b&CszyZWM?_7lkssjHTh=Tr*Ep<>;swVNjmM%;ucpm@94xu6$sWYb
zv?NO1P%GX5<U{P_Ui^)K4Uo~=s?sj)Cta2j0FQ26&IUx#X9n8nfR5;VPU)0lL#|GK
zw$7};j_lBm?VyqF<bizo4)6#MCmPS+p^oxk&n#&Vro_(d)DBKgPUT$A)9&q@1e+qP
z4=ZNN+HMN+xaCy9*1b@VgcxiEJ<mcIkoPd7bQq6Xt<c{JMc}gkPsY9vYB13JFdEY2
z4;_*0N9aaL=?&%ztxE7)TwSMLfbJxTF6Lwq=TOkxTF^pZkn?O1eVna))m#Ym<6f-p
zLKtr;$|ln;FZ04z`x%tMg<Tsh5E}^*5vjp|YG4u-1y@eS8==tk9+sh9rd#v?`EF4e
zDN*+-MilAA_l{NZ`NbJ|KpN@A8oAN=2F4i0?~eLK{W`||iq;*yZ{*5R04Jp-&{bdL
z5d$}`13xeyy{C&L(#J7UV3cHtQ1BuVsbOF+P)QQyqSGbKDg>9X3ICD=yT~b}(kkiV
zUwANxtgtGvQkTAxM+(&})zUrXQVpN55C3o_rLc=2lQJ>?lVCg(iV*QKl>z?-1`@N^
zG~v@V0WlR<@hu6l6=$&)Z!s756Bc(d7>BVKk8w7AF&UpR8mF-u1Ckl9u^YcJ9LMpn
zw6Pr5u^rzr9#;k(GX_fuOGu4WN%gTn@Kj{{u}Jl>W9U?5+*Bwja#Ij;WT<N%PckLb
zP$2ezQL({HHU?G=i&H_>0Cn=aO~xljl|~%F6Pf{u8b*n&Ra?E4MhwC062~Pdum$vh
zUxAhK@>MQt%0iHpSv8hm<wall6(YAXU1To@Db`m)MKOn!<3Uy>Pct>MkkbZ_W@Q3r
z<wa;|L^q>WM*2!-wpOTp2t*1O83F?)QAUXg7jYT?7jiXTwK*3Dk)b_P&MsSkbzN7Y
zkj8HHR(Wj~UhMO2^#w9tk20GSLWox;m|jy5G<GROdSOB{SF=T5bg;yi-MJxs;YEIJ
z#7DPKW+t;a2abNYOOCK}mAsv6Jy@4YSW`5i-vp3>K?E;Og^Q^wR18>Cgjhve#6f$R
zt!&4Nad6d0*9XMdDq}QLH+6{Q*r0Bqvd#&R9hqBH^^mzmoLL!}K@pTmS(`zH6cO2*
z$<>x^^(d=ENzt#Hr5cjhnGl@sNI%DT+Dll^36dO|L*KHeDFp2X$)iEoR7_g_vZ#Y<
zM5b|S<PP9nj3r_pb`b7Z5A-#UO?6c{p0<$xT0fT_Ub}T-6VFCFwP=sFu{>`?(OQ9_
zoWfavuMI`7@!Grv#s0Ylu^Ah(5yiJzs6WmewB3NT5iFT<sBDLtwtePV;ZIO#0zKd1
zKMv`>35BD~wFR_6(-<0Jv75rJ1jD7y!;M_BmE28K9IjlP>B13XUnnsA^hRjH#}$|m
z!tPnN_e1cgcM}D8+uFFT_R1Nz624r_;UNLZx7aN;X&1PG_uTVJPS6cq(H&jVEe+H)
zof|@U)NRV+&2}DST_q&mE!&-t;awBoW!Y(;+6i`}1<r-57Ux|;zgmF8uz?U<3+?Up
zCB}v2DFWt|fm8q}5axs=pI+doo(CNNUgEi)2f&^O$X@i_9=F_t?(rV8Sj6v1N2Cp3
z{9=L+Hihzqo>7qAUfU>MY`N&s_v<YA^r29LW8YY;c)xnz%-JP?lbsuY9`l*sf!{fv
zGsb0Y0Q|9m{M~eWF!ueKH}h#`BlaIK{9gdl&3S)>h#TP4ePBp-B1uLI1V%G}2muk$
zI7iyJq{D`mF&p3w4)V^o5YAzT8zD>}p`0kpO)#MoLLr7sA(iLF6^@2(^B7TdVRP+h
z4<?Y0fMFPNAr1DrK-jYx+H)GVIvWD|8-{5dhPNUOGSqQ8UNX827CSg{NS5chw|{$I
zAmj}UB19M>A`Xy?Vre7#?6iyjB5bIoQ9SxRx+2@@AD@Dv*V2)^O9-IH@&J{=8<<@t
zF{36pqsMrzv`k}TRwF`SBcmi2H<~z!ZM!$m=c}55Fa}OCHgS@6-#NM@Y+!sj3dB3M
z<2#y-!oS5$(BnebW0>Om-Y^S4+Tp&F;~GkpK!Ur@@4Q~T=LaYxzZ*{iX68s|DZ5nU
zv}0r?0(eOhZE&kQwiV@WoY+F_J3~~$i38yVSTJ5RrA;CmRBG(D5K)6%<<V;;S6=K9
zs5fGtETearQJ5vBSi)~^>R-rxWIqJFH%ME0&s#1;T=Lai)}^)Uw0PLzL;NStFFxZx
zL<$S$>3L^iLP}x=NmP&j<ZNqc`49wX;)Qv3<ZA*$Vf%ZTlB7p==9)Wtgs^GjX8nmX
zV{o!2ak`IGBBxq4J9AFW=b+9Fe}r^?L{5BpURWpH_$Gm`Dqs+Q-Y>*<HV9#UXLz1|
zUF-S;eZB%IKSa1}<8ME>r*M2a2(B|*ecJogY5r^|sDB=5fC7F(Ggs+jTZgXUE-5~e
z7Od+VMR!aEc;FYJBK(R1gar#9fVC0W1K1IP0yCjG=mVmUGzohww0Lo08%r21D!RlG
zWJpW~7w*C2A!JH{n$)OtIr1XGAs6>3vPh7mn~xyf0J}(u638RKDq2|MbKwwREkVM>
zSP73ysZ*&|wR#o*YgVmWxpwvX6>M0sW672^dlqe4wQJe7b^8`AzkYM+)}_nO!jUo-
zIb_NsP)S0I8!jqM1JZCvA%ZQM0rp|x24H3c`XGum@JxXdnf6pD@J1$*Q<Z+kxY)En
z&q;wDwr~U3--RCtTgbeS^Fm5CQ<lb<`Y6i5H=YJv7`P?unXnZyw}1wiW(#TxF091c
zf^Uq0i%#`&nPZLCAvX}exM5B0?7+SpkDju8N|sg8t5@3Iq6a+P1wxljout50Q*Ska
z62r&?OR&3bv!w*8k2U-(5|1*g;sfbIjxvOc!wx<C5X2Bg9FfElO*|3B6jj7ZF1uXp
z2QTXIP{N1*BNTa0AVo6y;)5HM$b>%&GTAW+JX~97$S;aKQivhGOJj)c9E0q^$prc!
z6HFAzLy<O;n974oE*av3GAeP<f}So>qK6|a(S%BsJQ!k#GJq+APT?$Q^2sO{awC&V
zz8FFYOfXT;PDPHW6B9NB3Ukad&t%Gi-9VbN&O7rIXt6gIWdlu%C}C_NP|NV(20I;8
z?lr-j+rUsIhDgH_(H0uYjUn8`?jr80;y@EeIkMA-kVZ{y&rB2{;szuz+2~5Yj+k~@
z=>$49r1_{4LRn^=h1MllF_D#4TXWp8#~+IVR8T?<Rc{X{Z3J>5NXax4O>UQM_F0ao
z(~~OyY&jAbBZ5~v7~zB!UYOyA9ex<%h)Hbm#k%ma%@SZVro`F})X+rZHGj)Q<2;JB
z=m?TyJK2I8HP$#Pfu@YiN((%oWDPXdU?Y$5r0U_!*a#99&>k`d#*!dIQtIWGrE~e^
znA3#v5{(rx@7Ah;306IzOCDM`UM*s}X&m#?T9XPdx)Iq8da_ywOb%n!Ip<y*6&OW6
zu;dMtwZ;Qri+ru>D5Wi^1YC~T#^{EgVU9Dfva9QeRE)Hxs`04fbm<1X_2xUWk3&}C
zPpYlP+JZ7b&YR_fg3beM&>RN_kIfI#WDTqqSG;n{k(C(u;DsNa_~MN}9(jl<u6VBh
ziy!PkJ;npS2zAE6QshX1)WD>w52gncwCdHW!S?(NA82~7dQ7SON1@Nk`;=<nV5|f!
ziJq$V7kVEn{k!7dD)9@+4bmqN@`2<A{u3Zb0GJ<3SfYR~@!vq$mpltz5Q7=i;08I^
zL53}ldCpT92kvx{JQ!yy;Pc=LIno17=#7QN0~#j87egD~5QjO`;SPC-Ll9O>gbM4)
z8_J*rGgJZ-=c|eed$_?NTmlmlY~qO)LkT5L5sO*W;ug8sMK4a}hc61E!iKPhH{^j0
zWx!unzA&0E7S96?dE<%7G)Ft$5s!J);~qcAJd5!WkbxBBAPHGWLmm>5ISix!i^iBp
zM?Mmgk(A^lDOt%xF48WIwB#l^*-1}+5|p77C5SNj$5EaVm8n$aDp}b|M3(X{u9W30
zX<18K-V&D$gJttVbc6`r&;x7`CL698F4A!^4SR9P7lh@OFXa-N(Uj&iUAapb?Jo^@
zV1p9YXqLb<vxgpVgByDGJE}Ypf(OCFI@yT_a}KMW>*P-l%%DwcO{E8II3`uf5YPQ&
zr4nuoi5s|=k{<A^3^k}qKjT>x*yN#x)RgE%DOyoMTJvIou|ygGRf&j#WSt=iDFX3u
z&n9Z;DoSxf*YeQPmS*go7|DYr##z(u422SGIFp1p_clsRWu`S9XE8(n5>TlSG$lh(
z#2RWP1gZp8sNE@op%iLSt6mkWS)C$A2Lg;{e!z-V$pknrGS)q!v?`%-gG%sFP^nPj
zr}?>rX?pU}pR{2padin?Rk8syR5c|=bqP{2<dh8nC185J2_`D>ORYW@vXPbS!?-#W
zlU`&_O4|Sl)!+dSL~pZ8@hoUPo4(p?z^NG7zz~Rl64W~OLFXCFm56#N&B``1wef%u
z=vSEDO$85@=q*SHl0B7N!npad2yFH_mCH>9xhjzf15+#5dilvBguOwKiU6Lx03)>)
zz+d#D+Z(S=7QN|J?|Mtb)x{*YUTxSKFe=fVFGvnM_bnT*-qySSDTyu<sW}2BG?s}p
z5ICl#LdrtWM9>=q4HHGE$`R1EQh|W#BB26`2WA&nv`&S&DwzmiU7`tPy2JzQvC4C$
zVq)o<Z6QJkT7a$V0r`TgzJE&M(Z;k8JMl%u7QnDYLgiwWfC{$kRq~RV++?b7)dF|`
z#v0P6h#cR*Bfb5AuBJ?<?reD|Yw+@Ng&?4dI3^DzJwhciK_!H+!Ly*^rc{Q^;Ld2G
z5=Zy|5i(ZW)Ol41KEi}->MRfqU#FyHk_~GT3=%YGqMH`Mgw&)03^(XB56#6062QA+
z#iqp4nAY@_U~IEN-(UkNGgr&5oMqMES<e)PlR$>DIiD5(+5({pbtN**z?wN3*ufU|
zu%WyGP<eH8fx#L<nj2z{IGZD=IrHS!^UO44Lbt#eHAryXV6(x7(gO_Do``Va1sj@D
zqoOqaJ}i|ti0wDO4M~bKu?8i`cdZ=xz$L=nVh^_g-~q?$qkvKGds})TF1-;YT&lfH
z=*dn20>-knts1i_g(R>!@qKeA<a6hmDfG5CzCi+&VV@l3DW5EqL3861yFqN0a3ezA
zNpr>c*SjfJ<{I3(0RvB^+nxD19x@>n#}qK=x|z6n8_khQ<XfaWnTlV#W2fKkjS`WT
zPh5`x6t4s2m{j*MW7bf1`QoAM9alu(XqJ<h=j7x6h+Bw^lt572nLEQw5xYRF&XG4H
zPUV3Y{NQuR^4av{n0PB2rQ2;Fd2<TqagvNOhoVe7U6vzBPgBt?@~^?V6(gFjR3%i>
z_~Vilv*X4}y)kQv#$tuVS7H54O8s*plSJ`Niy0FI@`iJlp;mZ+jcY`Yk=bA5D1=x3
z@|mwn!&_tz(BgFus9$~5DFyS`zd5pIRwcDfL`=VSNuedv8P4Md7{eW?CPG4f4a3{F
zO~=TVQWBW(W`*JTsl@AH|LK4&n$+&eDHx0-rmy;_&pdd~0@{H6I3mT4$^HB<|1iQ0
z0I&Hj5Cb#Nk)E$qI8P^3Vkq7z1h;S6B=6V%w5bfrz|RCC`B+2fF5(S9FC^^bd|J@)
z(hdH`=J8TOBT~X6x?%t=z$B6kBx27hg0QRZsU~PIC!~%7KMt`tVknBj2G_&?kWe5@
zP6M})3%hWSD(l27pf6;@%p$|L;A=h5a8DwSW-7!oR#0%vCO6WAR6;|b5GXcoqBa=B
z0_Lz%a*)xk;ycbqJk)SQ9wa>?#62+YLF~#1$s-XRkEd+rpDe;Z=5BJzFt#ktG!CTo
z7DNuw1VSVcBPir54skfh!>+uL6<g62C&rIriSBCTMxF*;e1u*sB1x8{tcb)&V$4Ze
z1G_As`^2keutZC^#7n?LOzve;EN)Hz+T=~7XzUb)QG~@_B<1}sg-+}QPlkX9#V}Yv
zf>?~Dcl5<u`XyTOfLf~MCwA}=K>{85#R3a!TxO+KMngw<1Q*vOPzI$?4y7dIMMt_L
z8}WrH=J8wn1sK9n>E6j;L}dqGks>S7BGUrOl;CK9fnx?kbbvu*E+S=0rgic{WlUxv
zpay0Zq8KHkLT)B!cBW_4@FKiMXwGZ%j7DRUX2Q^h4Z7xaV&@MLLvl(@B?`ys>M<pM
zD{~&lJtRk<c84S45rJl>b}+|t_J-}m>mx&QYM$tHEJAgxrX+0=c5w1Ftg?JusN<|c
zD%a-m-tr>nk}m7gD-3S~8i;!Te#x#@u`00VBDSY{zK8Q}z%Ol!xE%5;>__V=C?xbU
zf64+frDB1eErJf{*%auPCewZtb2c24xa?9iN0T(cC>D8%VMr(pE#QQ@LIH)xg<xo!
zX6P_W(>8AtH^qVj5oU;r=!lZYHP5ejo+yf>sfyq*H<MF2ms2Hn6Jg5ejMAtvsiKXN
zCyu76j+j$Bx05?v!a2JWJi}8w$J2(slRVE8J=0S?DeE+^X+7T)KI2n9N5nkm(?0JL
zKl9Tn>Qg`a(?9=nKKV0Zd}(0_6gJVoNbZj;f@zqP$Uql@naCnSUE)E<Vgt5qg_21s
zCe)b#)I$N3s~8Fo-aw!KrW0YlNnublc!nYm(qIoJvMa=ioE}d_b&M<stNzeZEYJyH
z=*ga}!bjPF5r^O^t0JE;^hmkFx>5p183>_BOe&6G4cx#C0Op};^Fy<AJh|!(G+~|c
zfWY#=L|5bnO3E!p>MF{V5f>)KnkfyCGb>C_O)sKJ!J<x|%}mEarJ@I?bSlWAlq3Cg
z5+9_`Fvq7D=TNs|Ne4;>MKW)gDiaix2V<jWXviX_3KO7IOE)z=xioQ-V9M^utZrxu
z-@^2GqEWr#PT4}OFl(;<Wa&`sRV_|@j>5b43a?bJQgZdv{7O@w;tn}tRUgE#qA*H}
z0!sjJAQ;OtIn`PJZ_`sv2wXNmw|Gmnd?126;CwQRxP~C2woH6BptLmPK_peYSj)A9
zAjv|jvp#Dus#X2O)w3`JUBydXBconlD?f%Yw;sh>W5QdnA}}Io1F%)K;MFSHO<upJ
zptft?;843XYg|>UT(Kg!)bCN2tKy`>N;fts4D42&%l{s6x>~5Z1d3a;t6{mzyM`jX
z#w#S!paFFd^`6ycw=-HTf(_1Z!#XT7jxBGhhr%>Q6D;geZj8S8;{&7&WHO<-mUh0J
zHoIPi`yK<p1dPB6?!aKw0`#kCc%^4whEn?LcLuD$w)Qj3R%;RLXy+@(bb}H&Ol)U^
zX$uZRF``cYe9sJ05Os|0Wv)h4;?`%+>9@$1PIoM1?rCVZ#%NW7pmY)>t;KK~!)lvW
z{uTn-=Iu|bBE@)W11v!a2B#|Gkz|ch#tLlBM#IM3wmTk|$E4%O7J`KEqxdYM4d4&S
zZdP}>GiM*=5}=L}5ba(TjS?^+)}RRD08P*q&B`hQ%PwKK6ahGEU?QGodaD<6%M9nz
zOjp><&Ackkv~5hmtjqW{coiYh%3#rMKzotp&BAxiEZ}{ENqkeX)u2~5gjdm0@_LPO
zSUiFw6+scKrFf6`B=Q%1hqo%)jeRxo)$;5EWGznYgbf0%P?VJ?U@d|#Vb(ySeW#6k
z*R0L|sN&H~l+(=BB~I8P*5EHhmnum2(@M5pPA%1jL?7?Bx7<L3C79M8gUE>Q<8;+F
zfZ>^HQv7xoiE)!l$0c-W1vsyTc4q6(qyr&34mN&D2+D1UDK6}ER5~OBoJ>mED0eiJ
z!rHKn;O_R>JXRvt?IOk)H_+H-JoehMZJ(5FHau3{q!^6HrYZ&&BQ9@$LKTYLm~h_-
zjxA0)Fb*`vEsG6A-~#S5dSa2O4f3kCjER^k-c5q|t$#c@DKvpNM0W@x8Q^{ghE1rY
z7Ovr@<Kf0m;<#9mStH|0NFX>4?}#j}q<06kFo}QJHo3ImhU9noV^nI$QY<34WTqki
zdE)JsG7W0zMxvPnDc2xvndc(I_V7vGjyWX~*(iE$o3r^rwi)IwLgth%qNW*3<8XSC
zc_Ee=irYE<<gs^p;v(dZ7@JuNzs~E937;)OpJNQ?u6Z>B3+jl=60+_puueTbSD8e&
z>-?D#MlF?B*z9O0?Q&!*jnVDU8Se5KT<Fg3I<9uhpi4apB>oPVTbeX`cVI}5BP_WO
zfq^iFwNi>wYM_=Q<M&FWtf$uqoLkbCE06E|cWJs=rmOi@Y*~<d*z(LK_o60$LxQI(
zdQ9D8dT4qgY9n~J!t}sd0ew$3QuU~W(*nraB8J+BtK^_V;u31MUR=*J6NLZ&w8s(*
zGgT7eSGO)(Vz~B<YjUP~B{vTSe=qokFPH61Lt2v~s?en)+ah7QU~&-QETXH^WM-ct
z4-OCkFQNv@U{vB3v_+dE1Bb0m@cTfrYSe}_{1=|>`FFstwJ(CU#m@i_5Nl#PJWQLk
zrvi{OETL=Ks{v6e!up=kngL%eD->|K*P0Ezk1FWzQueQ|t-Gv>60J*YWC2?M1!{6~
z+xk>Pxi>pMHZ}r@vVAI0vfF#I+Y>KX+E{XM|L7E2XpkqIP$dEb4f*?xquUtO1_f2{
zDn_ufRRWx&ER6{KA_hE2K5)K)+h?RAxCMHtRRdgjJ7FJBtfA02@cSzN0vc}ryJ}UN
zDtZtkh7c=Mye1<;A}GSs{+hT-Z3*+Z2?xr<g#tXPP$@obF)quO-CM}Lkg|Uw2m7v(
znc|`J5HKo7JwBkh%I`{|T=i1B4J#vL7kI)&#kkiHS>6yNz?>r-IC?aE$_GP;L88LP
z&NQw#Y`~hs@0nB%WXWe^Oba9pNxTHF+&i*-h}RSq|J)^9SY&0~0V{DKE>U|j(aB-8
z6SsV>K~XyV5IFdGLXKD}0=*GcamYK}s*0S;i%Jue;0D~}5)dVC7NratB_(fBUHZe)
zj-b?grYNAp4P^ZYXdM{)L`vE^z@sG@yQGMxVi$k$S^$wxgz?M&vSdqyeKwd~8Harz
z(<K*&k|S&#*L7XO)29+fz0@t?)ZhFnFvS};g;RnNN?P|H-9;de+8S3~uIY5$15!Pb
zJ>6N-*Ikk-fCcrEwH+7b9g)S~+wrmp-QNs->S6^SS8dw+k-Xc5-Um`w3bJ0BQ5zEy
z7(8VNKt-`U&nhDFAwdG<J)PtW55Ch{DUUrQIH12^M<jjnp}VrVH1cIS@;Elq=5u86
z@ZH3124{4JXCNH}Pm*QKT<3MKUVdICeFi3hekMa_b-dEr#~kO^bUQ4aFIs+cjK1`W
z@@aNnHB2XHU!G`x@~FffaF-J4nYrhu0x9DVD&Z1YBByNsg4N);8{t7LD?#T$WWIF3
za_oI<brhj2gAy$lH*H$z?yf>Em-3w&zvLsomIO4@dmvkth=4Gp2QW4=Hvf8zOE9g1
zo_!GX3konhuTeAq6g^)o^0Haa0y7;DP7R0}#ey;WXLu@8dO{-hsYf%dI-)ugen3;-
zB;WXPiSjc@HBAVG-eUPJqBWmC;hLYlVzc%^i8ha4`vWieGpIL>2#IFjPBY#&!{6eF
z2>hRz$%ym%JLx#LAO2CU`!fhS(MXLzr2eIIY|P01vpTW>!UGx$1PdBGh%lkTg$x@y
zd<Ze3#EAw!l%a?*qsEOKJ9_*GGNj0nBukn+i87`C%9Sizx_k+fBENn#Yuc>IFQ(3&
zJbU{52{fqCp+t)sJ&H7`(xptBI(-V2;mn&<`{j&^HLKRGT)TSx3O20Rv1H4dJ?nF7
zRhw7Qx_t{buH3nF>)O4GH?Ll#YS+?iyEm}l!GsGNK8!fA;>BqD`UT85vgFB>D_g#d
zIkV=aj@LqNc*H|XB}WLN>9LtGY1615dSC;aP3x4eW6z!#I%5wsc+v>Ty4u2Nk4M;u
z27P?)5H>f8?(Y3t;&b1wW6M5R8}@DKys00|Z7}=w%E5=HK93%2=c=C<Dgnl(Wu{6N
zYQR6(!weoaLlAl>gNGT(8Pr1?N+eWZC3uwoCeeQZ4tUTIczht8e*6)LM}`_MXn_zL
zen??K1s-@1fFEwRkck`KmfwE;H3*=92(@@&L0^2Bp&ACwSKocEx#310z%WP~kU|nE
z(R=YxbObPYq_M}4Sn+7zk{;riVTcT+0n7#sDOpz;z%(~hlTSv8Bxp`TDP=<*7};h)
zZw48sL}s#yB$(mBnPy~E`j}pzg7W1TTLxvg&<%LJxY8wxSnvTbYZ%ldC2Ujz%opKN
za!DJQRHCH?H@E=|FgivE3?*hL0?a@VdBCZspeD3|CBUG#P^Fh<Dq<eK`f6)w1-8)!
zt9TIGMu?-9da6NrSOR3UxF+;$v_Q`PrYokJz8dSNp=Qe~K}uNb1|Gn;VUVMcN;=UH
zb*kiUpARX@Xha?Wn#QzBsT=8}77SY~Fvk)bszO|P$q>C^j=2${BHg>B1^K>;uf7Py
zs}RN$L0r(p1u2}6#y>f{@1y+=igL<9tw$ALnMCYUCTWNorw5l1Nh+BZxKW8{9$12h
zL6o%7WU~b+LLWh-BJ2>)J_DW58l_qs-pvK&tPmcUAoN}h2n}8I*G5Z3$=GsQtu(_A
zIc>quK@(&%&T1nhrp^|~OtZWUiM$fuDK$woQ+VI-t_597bTDFdZ}jp=fMfJHMt&DG
zxkHgtRJl%#FEx1KDt`{TN-W?1bkznNnCgKCOk1!)>JYNddTSd*7v2zo<9DkCNo0bZ
zL4=b?IHO$JO^_yL<4sVL#48kh$8!@jgv`0W>N_wb9u(=!2OX}E@d#a_Jw@OzG~n;^
z0wes~<y)Un4Vt)0P!GB9j=AS;+m7ApaASvm$o4PPy42B%AhS!zdtO(N4fp_o0E`_0
zX;+XB3}Jb!8v+qTGdl+24mI@S8Zf+;5Dy3eLWxVDK>~<CgcT4W8?Yb-M;H+aE>DFJ
z3=a$sg0K%vONJ#<TMZMqKo*`(4XM+gLllU>17bvpEX3i(?3X!)FcF8YTS(?S&_9Im
z@PtN$&=yZP#3K49iv)E4AnSfe68UkEccE*e8&5JiLw%uCbOgquu0}^B5pE5c5ZDp=
zNC`Q$0T`M9MkQurokSMo2zek#8NwIBaHYW#lq(e^i)S`GB+UYBxCBHdSxI0(vQ|oX
z&+Q_)t%Gn0ga+YWLcDhnO<aT_8^Dz;DV9nCq6n1Gv!p`qmCJ(Q;SvC$KwiJAW27T5
z`H;zZV3378WI@zrkTh&^nS?YXiu{&H>)^3eX)*&aKA?s|W`amVD8n0oVTLl4!EPI1
z105AXL4@qFj|&211kEMR>sjCkm?)LZ`dON6#%7U?w7??`_`w-bf{xB4NC_ntCsJ|q
zAl?M0IFZCpf2IMT5BUH-|ACQ->s2(IAVpFS7Fw!??hF$*z!WerQG|+oG^7QoTN?VP
z2_&`iojRLi9qkyAot6rolrtwf)fvx=88w~jEQmV~Vk%VWEs7yqDpCz1Q79IUn$5h8
zN2^Iwg5-gXP9^JC^J$}>0#%UJZ0J1wXit<F)1b(Fqh0TskvQT6QbTCc8iqi|8wlY&
zdNia5=4c5IyyrzoL(L5oaS09(1WP272oiu1opQnL5^Tr=x?*XzA!q^*iUkG|Afnl}
zan`d2SwkaDnUTw)5fg9QUP8NPwsT!75Be+!ruwAYO7NB;vOUOe50YA&b@sCeDeiav
zmyyXeR#cFctU;f5{|Pf3&6$sltW*y|+1d)0uoQLDqK;6BOoXTmkWG~$6j3iqVB!cL
zIKm|`p}~(C7O|yeEGAG>11`Nte#Uu?^$-@`B;D2^Z*ap1eK6J#m5>dZsMmPk<;^^t
zH@zVuaO&Kt1S2X$5&x}^fC-Y}4Xd{x4SsNhm8OYG(3c3dnhl8oeB$e7$byy71S{oB
zU;E;hAQJQ|U{7fQAlLW4$6@a!+zVfbI2p=}da6O9YLLuPm2T~&#Ct6~SgrPHy4|&|
z1#WC&^d(Qt&uqidN*rJ|7g<tAHVB!kOS7Kwcd>Zwv!9Qm*T3kuw+0bHod|ak`6XIP
z@6lPL2+ffX|6HQBittw+0$D7Cz!FuZN<x;A1!@LWTCAA9qXk6U9N0n+)X0*Tq-#ql
z&$&|5W4l)-)}VwzGWTfjvNf)Ct&mqEgjH!8wFNG1flO<0(kx`QNc`652(oWo;q!so
zqD|y!S5j{cF?2V9;pSd?x*$`mDVzVru7)5Q-HR^G1^{*Hj%5O2_ky%WW}T2oZ7XqZ
z$V9yg;_dQ=`_#Y~_f6@o?S{M?W{mRYz}+=&EryF!j3V6I7M^8uGuK@t5)-53=P!bo
zPa+-{QM$zijQqMM<p{BIL9o2-j6qi+<vvKj{g)<euZu(&r<_4B!Cd(ffq?M-_sCm0
zw@1@#|IzLKv(ulRmO||{e*e3<$bk`4!j(qrJ2N#wEHQA8e83WvV45W+wNVQ3(jc3T
zpdu)N22EH3Ta>7~-6=t$vr7yUYNsUYEHO(}@AK|<C-m6Mo{(YEe8IHFp&4c)ral#n
zb&of<<jF4L$?HAs67zdSFprSojl^$m@VW)SE=*54G>}R&J?gVObA?zP#nWpWFlLGJ
z*LfMdo=+6k^9KAgi*k8u*ct(m_Yr)*QhQwbKpsk*kl9<no3pvsEQ_B&<U52_X;>ch
z<#hXnXhM6W0xwy)zdSL~?%mo=vgz^Ad--u&A-g|R?`sYb{JWeWFz@A5WA8y4Bz-Z5
z|5dIxaOjs1Tyh*~pn3#>fCy4JrFRghM>tt0C0qw}8K{9Q5olIHfYEnoYQ}Y3hf+WF
zHm-w$0%R|i&@;}mAZ*qK1;uu?=4{TV36n=HFZd!cNDyjZ2{!<Qk;h7|!GZ{MFJ^;s
zLkL<9acddTgyB(y5ussCvV$@RH&KW?@Dmb#Q-XC=TTQ|smw<a+NJp?naA}f)C}?vS
z_Du;Ce&oh-P!)C%C1TanA0yZ%UzI8$wn%SSa&VJ|DwuzaS5rK5U!vqtsR9g_z(CSh
zQEoU(O)^V=*iq)PhfMQ`M2C9@Wr+Pmeq_~yaj1uQ$25!ca@qrKs?;SP2ob3m|4ply
zdrK6D2C;t@(0^wrbMv=&0w`t&L58JLTcgN_1z{hvWC@TYjQTS<zbG&?bB7lQfEy@{
z(<l>CCuqI&Z-o|u&$x9`B3wNHj^RiqYDGu(QVA_ci<giIxR(bogGoI^JNHsoEvJs`
zxFmg~R-ou6=g2_sfkuWyh%@LAlwgHqV}%~Tj}p;I>sS!&7#;~ZY{Wzoe)Emt2#$6`
zTl=I5$x)FONj!c-j-|4O-=-z(hjg!VE~;3E`o)dGM-Vko1`9<A$-yO;@MP`Be<7)0
zN>~H(RR%`@SeS4sT#^UwVtN3_h9!wk&SR5HIT0`^lgE*XtmBkDi3vX$|CFcFZ>nf!
z^%0Y)(qzwrh_<+EbXZB**bpiCicEul521g+a6-4JWzl$&3o(HHXIyz;kr#OoPzjdy
zM{p?Omoo`_+1Qcd=#0RJfz-&DjhR>0=z(j-ZL`-rcvu>4(0~^MSev<-5wQnDb`VL>
zj0B_!gw}SPqzMPnDGwo<wY34I89zQCn?ArLM}TCXsX>sna!M$W4S@-B7!ki|5V$!J
zt(icuSrEkOLAt0Bq?efq_)UrcGnnZRe#4p9Ig;h2lsE~HuXB#b)qBh%g3u^0?-4%x
zp-$Uzot(Lo2f+rJFd&&Qlq~liz}X>5>4rFoo@Ib!2&Fw!X_A}-|DQXem2k;m#^*uW
zV~YHzJ>Q8{y$6O9;h<M@f3v7yuOl_EH#T$0oB?Q;y@*xMDMe$sW<#(BM~QTh6rso^
zqF2|Fi|Lp#Dx*>XnQh@N^LU?y^`eYcCo4G-e3lTGAcJLq2}X39l&EMBA*3}`qzHv%
zK-xYe>Os6&5U05TYrr(_5=<K~Ls(i#sRX68LP1OFNKJ}zXz2kNSrX9JqX%JewFi(o
z^+X+t5RTY}M8}=@7kT=Hgl;;X-B=nQpil31D%RGYKT3#|z<MY*p9rG{Z>WtVnV$q<
zs2Cxrad|2L>XeF#bOlNzH;@V8cByW7Dhq0h3K}PbV>CB9{}Fq7bw<;c4uOAA$|V~L
zq8Iw1|Ce)ZN@Rn2i<j^Qn4nLiN_49#r6?z-iD{W9lvG>_KuI;D(JCk%=rWn`1xe5w
z05=3)AWHpHndIq!*7^ZApahw4sQH!&d2j^lx~`1UByLbn;j)BPBdk4;1U9L1eF(2&
z5=?M-N*|D}?AopdAtpYso8mV%LXZiHKm<2{1eg$>N%k%Z%did$u@Mxo0{d?Z)hF*7
zuc-vE>Z-8>;Z8p(u;8H)SQM{i09eVP2;xev=6Vo9Qjli`v*p?vDk~-|I|TVk5JIr6
z-8vhZnx_`(TcvpeM_>sOscwG?d}wekN078a(i#AZ{|Sna2a3=J5$6&3R<a&&17d<@
z4<#fq^|L{n23bV3M3xCxo3&dD5m4&}Qp-rwv$mXcdtfWJ1$qfe&;v?)gQgL+Q#(DT
zN}@fc1WCKJ`jZLPimf<mTu7_5OdE?7fqyo02}58Jm~tvQdwVSlH-NRXpgV{N1hm|m
zw$&%PpWCxXbF(rl9D`f8+u=<XDz|h?wFl9-*P5;2`UT^Pv&sst1;MfOXFtU&t;w4*
z)JiG%m<I;yfF|goirFR`KvIinZ-}Z^VfV0vWN)V_DwZfPRJst|i=0k6h}&xrl@PH=
zN4^#SzBeEwz&LrtCQtJ#Fk12+>T747W4`*d|Gz&KZcj#z(3(u-$SBrZNZ5-ID|$lL
z+qa?gQ)rnGtm1_QakrIw5FC(Id4PlR<g^&51h!Htl)xykvIc0d2Ay@R8-Z^dkX4Ex
z1em~lu&7#@KqeMkh8TRORM~zgtimh|xvfOPsnT#g9H21#PBZ+8JwU>9N5phw!scc-
zB+9{b<iQQ>ywK|qS6nJtT$h$>wDIFo9_%CTqE;`0#uFS7ZK=b+D8Y4<zz__;MLfmW
zqn1%z!rAyoU(Ce{Tq+SPynx!jdSky8Oqa^5$dbXlZb}k2;IkrOzyQ<(KAJFJQOOJO
z!SQ3sntaJk0m%)ND3R<FwM5E6)dO95|7Mq@1_*i*9+1gL)XCe&%C3AwsZ0^DY(!fr
zD)CfHstggP{K*p`%q{T&r<@d_Oe?sY5QH;y%M8rEGs+pU$&kVj)x5~rOc{-=&D}g1
zr?ZL2wy0hK&NDmCFTu;+OdFH6N$Tv*?>rIQ4A1jC7^LzBWuOFRPzlfn7WRzK`pnNT
zk<RqIh2VoJ&rHw>t<dtU&<#x&Ci({LSO&8k6%Z}a6m1e;V4n_+5gd>Pir`=zEz<7H
z&?9ZqCyml6t<o!v5+%*jFAdW%Ez>j2(JoEXH;vOdt<yXGXEx2#KMmADE!0De7(PwZ
zM~&1;t<+1M6-M2_$jlMtajrux|JAQz9aD`F;(^sDI}y|Ik4sV2B#{Q;JQQKg)Mt&>
zli}1z=Z+}xC+<ii+2|lLG9w0pAZ?%^bSft?qCpaZ&G=y<_0j`aQW{r+C807Rbb}+O
zq#_!^B7wazd|lUhZ4fttBS!PqufiuQF(*eNi*5Z7cY-EULLXI95|yyg6tMy3^ae^0
zA{>AR+o33;p#~Y^25c~lJ5t*4me#%P+k_#{mF1?3(h~e~a{H7jyOK+=(kb5JI}#OI
zsj@1qVlUk?D=buF5dki#)C0c)EK&k6#)2%$0^JBvE!J{M=PfOLXeruK-OYX7y`(Cv
z0zczoE#|Uo#vO7Hv1Ox||HvOh+#6FdSfSsio!Zi|v}rI&GJ7v(NGcRU36=mGLUIY)
zQQ*Ig;TfJ6^1L}e(K$pCH+ZBoY~waULo~N|W}CD$sMUfcju27<rwkF|X%kOcGo@d1
z;$~Ae8L{Ibgf=_#JPbkNP_tclREMVe;qCI@9ns$*aXDI%<RpRG9`Sa^u>sGLI;BE8
z^3#SxBO;kVxpy-&Fsk8YZsv_qqXZO2s&hhB<V3afKx1^MYNR{*xIVyhZlX7@I}$$1
zb3W<wk<x=?cb;!8tbA2!Hsga4iXKAMlf8E6JUWAXevT0CqlI+dK@xFAWYjiY#6Q#0
z<ZUj9Clu!%st`yd{}EmS=Vzov6GSU6bVfdl>G~)q+o9^R^Fuul9aA3FnB_Y|cQ2!9
z0q4}^VfP-~JwLR5=F86PUctORRYzWzRfWYzaFr@-)m2U<P!Tg%2Sq-T<aua}OyH|Y
zPSv6b81BB5K$cKSF>WvN`ii`H=<gUyWQ{|%WbdeS@1d9OBwFqyd+x(jOa<lbn!Z)c
zWKGXxdeVgL3IAQRxb54Nlq5AyMRiV0#ZK-tRFh0I)m~56PGmEsPZ<SL8zm*%&g}$`
zO!ieOn&1Xr@>U<es6yaU<HYL;bf^*-N$&I;*4BJUHiwnKT-`pz&2IEZuN2HXXMYt~
zVOCgr1`LS>|D<>3T^5jF6yaRSwOVBfzo9i+rFB|sbAnsnTCe5q5aC=0p{BO=zTg{N
z!-WvX1y#2#T#ugi1R?iVGxp0xIbZ)CVgFou&EJJX_10yo*|lAcg=esrCRZ;iPG4Rc
z)>j<nNL}`2LNi}W2AT=8Us2y*4hUyC=3xdljE>(BV!{SOK(3h3NQ49RQm<xdng=(q
z0e=*##+AsGu;1Y^B)($xb6f1l)y_yy{KX#?+<bI(8iGuRZl$4fN*5Bs=75$~YK`|q
zo%U(0Ml{n;YRP75s0NU;F$CJb{mW*Cl8I1lUuz)sYkACTXvqG#=KdAoY=wLf#)fRl
z)=Svm|7_>a<NyKehy{WKl>oa@@B=U<1Q(_$=mVj_i4GYSBsfGMMvfgZ3fYL!46rr@
zH73D$&_l;Ez=jm;0c?#&jyHgnu@Dny%z+z#vBCI~V46%D2zt0kQ>jOrYCaONU~}iq
zoEz0-T1l{FNsNj@F2zXIBhn)pTi!SV?1KeLTnnNB23GD|x^?Z|#hX{}UcP<({skOZ
z@L<A)4If6FSn*=UjU9L7*H7|f%9HuQ{Mr%Zz=Af5MBQj}pc_RTExG;s!4f5-1TD=>
zgK2FVOC2>i<@iAnB{Z5W^(c6R(s1IG8d`X5A@=Or7B*PIY2hGng2IarKaNo~Ymay?
z|Is{HL+Ndf8_ZC*(2}$Ej^@#;@3_5n?vBZqD{pQ=H*eqQ3#O?^FpbtDh&0pO^6o!M
z3NjF*(>NM1ugy3b2|c8uqbMtkC@BpiJn~b@GtdSSjUcbmNQk2~Fezw*Od#@WBn>eV
zvBVM;c>^P#P;<yGpT3}pEDQ3G$%3@jYKx;UfSK_zC!d5eN-3wLvPvtj#4<}Qx0Eun
z%D(L9vWzn0Xu{518Zk{ufMK&uVDLD~13BlE(=HDzsbt1H@JLIjHuA6yw}L#l1Wx_(
z&}1#S_Ux0OKM7L9k{c#fPrSPB%yTSY1m!5a@i?U^lbP}ol_N}>T#8XNEqK%d|3VG@
z08vE=iV2OvBHYl;HVrj0q)RYdQ`a{kB$G~K%OrE8S$)D#Iwm_Ji6a2#qsgY1Yz*lG
zJlHgDzO<riNhnv1opUZXSY!%KYzKOgqiFlO1k^z{8bXtmj%15RxVYrEUw{7vIADPX
zCb(dO5AzaC%EYulBXKp$%-S?dtR#;fF2*=TVcWd4l1wpT<C07;%mXNn$it{5A?Ae<
ztdK`8sAPgN**KGqKkn$Dl|Ay5CX|<=1kk*K#>fMYQC;d~l1)~b<*qKFHZWWZsu<&p
zF~S7SBkZNxVyk;d(IhfAW)oQgEl{>aV9ZGAS$Ex#7MQ3zl6YN=YA9n(|4K9j@RCc`
z4vTDaHK|tJ&^E$^$9MVKGstYKQ!8JN-l*hY%P+?~bImvBymQaHRJbyR(>nX3hz%!k
zBR9UIX$aR}f4#0fFhMnmVF}tmlk5umnIJX@$LJCsX|kQy+>h(Q2jzVL@Cg6FnjL8q
zS?3uTOFinHro{EyzM$yuD!xVCeFwfE;R`ybbik%Akb0T`)Xn7f<zl~K*kL!D!pLz4
z9DTPj@)$?l0HVTO>u~BjNXziRhBB1ldH2JgTw3xxg4FGR7T80FEHXU2sKI)gIvc){
zq!3N8?Q<tYVG32aLKe2rg@#F3=)xqnmO+d_7EIkh(x)T99OPla{}WnzFfq66g$pyy
zTFNDYScV~1kAh0^p;Br9j2d?8gFXY*2G%eijQ~kUVQbMA#pXq4{jfY>G~W`Nn4VQt
zB|09++F|Oq!xq)#O~CLE9dXx@`q9Nq1xXwKOqd~-e5EOJ!C{&{usfgNMj}t_i%o*4
zAEP9)L~s$82YIvsG|I&TnSfhx8X_c&h|nz?pakt+xJp*G(v`1-Wh|!@!_YCz0-4Cf
z7m|R7mI+}9UZCO-sAI{HC?c01xPcNf0ZF@jAQO2wLNuc(uC%ye2rVHaMzTjJOemoT
zN${KWI#SJR0wbGkV`griDa~o73>ZFu;uWz6Dj{S-5k$BF{}M1kK(>&np7+e>J{7V~
zcK&cpr6VUc2X%>VelwiDy9qm^DNee0z;!JtgX=V8%r78Qna?BABu#Y8WG?e47rlu_
z{rJmZq9>5f=^r6GQVHFm#S&0MB<j)x7dIRMEkvS@GclovJSd_KDEUiE6j2r?0)?18
z!9+KQK$}eP=%9B2CLV;@5{Qs8IFX|S9(o{zBq%}?>XT(!)w));w$-gCq@}`ac?6mP
zBM<O2k**B&RNSdS6KuM~?)GvJVWCE!z!={=>9#F4;o*97Ic#E`NEgED3N@ABXWJfo
zGI`yANR6FULA+8r&+ckgm30%3M(dHt3ibw!ebe>+|F*GC-bEwA64wU&3RuDRs&u;j
zD=-2pHr&$1D{kV|OMNm(XCaLPZfH{;LK`BTmPk65XcHyG<pD~p0S#+l1Cgq@mm|zp
z6KtqtbwhH4U@1a1IqC|T=0XJQ0s}fnA(IH(l(=-h)xZA*aDW9oV8O%{Ot!3GVQxTC
z!_;;z8|cB@=;GjmMOZ1*<%oszf?*md1;P@R(t<s_6cGmu!VJy}ggL+wMO0A@=mLxf
z`b(1!P?W<Jy)i7&vII1!fek+fa*%~QWFi;&$7(>s5`0QvCO6s1PkyC=zl2~YSJ}#L
z<$zdXwxBB)YzSyDa+t+D<{_iOj9o@^n$^7K|HepJbZmxmoKXnfH<UpMW~c-vW-MnY
z2?5Mx26Ui}jE0@@+0chZG@sqPutYc7(fk_18s1Q{GJyEejzNN;HN9yeBjM7Y26d>@
zx@gOY+SI2;^$C~2X;yQ338{v4tYs}QQcH%)v&MC<b?ul{x7yc&e)X<}J#1nRrq(ko
zcCwYdY`J9m*UtvDr<px%YA^fPx2|@!wT)^aK-=47F7&p=J#J86o80F{ccTCNZFUpc
zR_TU!ywz;(x*P$;f>8oz(6DEDGbY~z*>^>Q%x}MVVBmVOw_bXH2404{VE?v2z!PI|
zAQRj!2|wWwguK9Zcl==sZ}>RxJs6DB|3%{z28##suyU5?SP3h(z!&7Vl#=V^<#Rdt
z=5jum4fM8C`nGtMj=+YI%Owp+yuo;T4i<<@{7@`kd6SwRbZXOkE(e*pVlq*=DQ3L~
zW>}yZJx~Tbm;q@$XoJtuUI{+kW$a}a=MeCaV~>12>=@|*9`wHVwhMvpe-AC%drS7e
z^PBK|_mAD#aOS1F-RvD%d)o{0g}>{aQ(Lz{*DLA<HxLP}gz*69J)ak>=Orz9NW&iF
zD=^G!ekgl)0~<c?cG0iCFQsqH2Fmb;Hz+|-91v?w@URj!=sosIurx;2%?8z1qT}s;
zcdt;ddII6TG1i~US@g1yH>kn;|7wsPNRD$ZxnLhJ;?I77FsJ>&*pBft<N8lpRQc#{
zX<C4(1dm3K5%({p_3}T8?^6Tlny&xLx_GlX3(&g|(JIHdgwj}uQGpyvV1r69r=p<*
z;lYGT2(24{u1(=1V4wsu@QV6NxeRQB4dk%rz@vH-!3w-UT7kMez^;KnyEbS8ufPKw
zYy(B{KsJ#V8sxko<ToK4LN`E<w4gu>Jg3G(K@|)N5hOuih(0AaLO0l!P$Gy2)Q=*u
zi#|#WFhryVbUOf44ywBnE{wpK$ppRI1DfHWy%0mbc&+y%j2^hDG@vTrKnh+d5U{d@
zA0v`W=&u_Pven_Z=liyV|3C`)Ndy0=!^eok?(jpcP`_qsqor6K27xgKv_rYr#PmbC
zfnmSFD3m0EKrbYSHCO|$V8z~Az$&@FzsNrpON!vBM2=8HRV0?_+C>TMw*<_D1C)|>
zu`XA+g!O=~uyKP-xf4HZi?omzMW~!VOg@Zg#+7(Rk5~gX;Wt82#!D;+Jm^G<*sOe!
z#*Ux_d7+DS43cDI5OJi5Y;+Y%@Iz{hM-VH;TY`vVG&$RoBY-T7v_QixF~+YbDvSUS
zpVNyu6qwz}iVdJaIboARiwUrDiyp`XoKlLRQ^b$_v4J4Sff>d^8pR9C#KOT4@=FY<
zpo@LH9GC=*2~vuK|16!6s7Ydcl3DbNTEvJqkT04Hm4386jVM5(oIP@*w++ZL@bds_
z*?@8>59gqc4RAPD5vIF{3E)Tqn<*L^NeYP>3USOHe*CJF1PyTk5HuQs7iqzY0!yEJ
zh@6q9K<S7}7%#fOOQo0*n_x&gQp*5o7s#ot8qkFL+e!=QO1uz5i+Y}??1(0D%+?V|
zkBG`TX%F1F%I5MgA1FHKpi0e*k0Ge74HyC<SP84Vx5Qk`n9(4DzyvKkDGF+h4}he`
z6asOQvG$P4sdSFbG)>g}O%&4^8i5L=xE%`sN{noqCd7zd`!OCAv)JRbHlR)-bAvVr
zv+Mk^S5pbg|Lo23IL*||O|Xbc%WRSGY>}pvllfr3&0LCw_(Tg}gQDQX3ZhN*+@s%2
z8vD!*(&UKuER5a6i^&X<=MhlL^vt_(5uIdBuhbvQWKYPHi}TD(9a+%wXble#0+>?{
zx#1yG$;!Ih8J{c&Hb_b5D9O5O!PfK$qr|%wh0uPp0CQUsU3tw9Je@V589t#IE_0PO
zKrCRW1oSYn;1HTJ$jf>0BHAFX@hVF^s7Cs9pQUipF`*(Iu>>WU4!uAM=LC>*>>0&6
z86;|tC(;Bnb)0j8u#ULWhG7#0n$nP=3GbkmBS_LEU5Y;P03rRWA~m1aRE{a_(;)>^
zVmX^5|NTQYIU8l!txQ;tYXV9$Xdp1!02E~tML<iN;L$gsD-l$PZTYKA*qtN51U7k*
zQymCJHIh8Vh=c^7AS%>9MUQj20Sg2MO!y2$g}h)P(&s5JHqit(m=7IoRJC|i0x?xo
zjg88*fCh=op8$rHkqG#a8~~Edj##()vMV9;iZ;O2H_<~tLzFfN#319=*aWg~4cA0;
zgWX%3O2x)DL8wy&hE%OgG=MP;`ISW_lN)st4LS>=K&+(HjubVOEagNz1gwWKR{i;a
zWYv@^(v~45)q)sUnmMb$2v)=*){64eU*(979oE*!*n-s&Oa%r_wF_$<Cs*wVoKzBF
z{}EK0(APmRpXj*MHeuO<7!H+d6Wrj*<{6ZbJye1a0$hbu6CKOia@moE*%#fP>WEqz
zHMb8Kg0xrz*MUSK&?C^ulO?eP4~QZQphn=h0Y$h3n5(?K%L^o!)&emULJ6;IwScm$
zm*G1IX#>T%y@a~Oh&2F|E`8g$?T9#{%X8!%c>#vls~DfNz|v{l3e1DQv;equxX2YC
zzXjZk&;-2&2EHvNXSFT)I@_pFTbSF&OBkfnP208QRS#)fUbz9UO%}V-sw1d`Oi+|E
zP+JjH1Vwn5R62qWC@)n43!4aA`y$&_Q3O59JOB}jm>@cXV~Ez6-CXntSfv$(|211c
zeO;Jy15K!e;-#;*6r0j{12@P`AIJmV#n_(^f@H#kAgbN3MH}4B+TB$Y>Xj1|MZUSH
z1Yj&0fmk^O>?!8N#wqm(AN#S|E14kkic7FZy$fLJ5Hqi+1kuxkzx}aO&4V_;gTK;F
zHkjZFhQl8V-oN1x;iVDVJsbbE-V3HV5Jifefz%3u;s4ZHu8m*4J58EWT#t}Xuz1>M
zCEwyLuSDsL9To}w)m`|Fo9TL9;HUxVwL~B$0wGQ+`K4cxQVQ2i-S}mL`Bj4Y&0?+E
zVokUn;x%4|Dmo9)1U&@{nbnT0l?fk~i?lF`8=e`?aO30E5K5>7MbN4b|0n~YnZ@6E
z7%_%jSE=6{*Z{h!ssNqZqM2j9fKeKi3#;=>rT8Pzn2M>;p#WJ3%iXY3G?7usg9XV!
zy9_}#L8^@4!CK}FMPOxD)}VSx2*PccTINCZ`2bZO+0`3USe_SAQ34^g+tn&yWoBj?
zBWBSe6I>>UR%Vsgye(juWgVI3^&yjk2%A&3h?bFv6cJ~IxWzFsSdR$h{B?_yXd6^9
zqV6T&bQ$HU=m|4ynE&ukq(Ei5pg}HGf)~4ltVm~z7{4~MiAr?HF7%>9DhMHf3e!2(
zc;@Dz_~&(A3N1_6vbYI^FeQ%I7o`|7=!)QVwXYxZJtZgu&QJm)|AQ{)1F|>ZI2{DC
znO5PI{;_RIY0jjHcP5Gr<!Bm1leDlEpLncyuAriB2`$u!fVK!bY)}DeBaPsZcOD6h
z?q(IuI-i(1ad~R7k?J7;W*p=UiALIrW;#<2OAwssiXQ7RIgWa+ihEuP9`#VWuwy%t
zYIS}Iq=qT+u<MwRz%}v1*0?`6$b^SU=q@~ttI&|Gm{}0hYdO4RPNoT~;|WkcozJiv
zXmyP^+`iSA5Brb}{6J=f*p1%!jo`Qr>~Ia(NbM_qj_B}Z>$r~Il8^4FQvVs^yUn8W
zh~Lt|F!w0#_%LlEt`FK~4%X(6*Nz*sEZwsaZR9`@>PZ72|Gn-9iNbcaA^ouskN!@M
z;1G`ZkemYT3o=_O>ZBEEk-_W>BEcm#af4auZmxhX^qx^THP}qfUk1}^^u3T(gfSPP
zW3_QkSJ?<6nTe6ch$RuHlkQdtp4>I?01nUuMPLJn_yF)CvTr3a+BjDr6Pca9P9f#+
z9|LN4CKLF^9r*?eOaPMDsGJ)pAEaHq&bH)2TQ0gNVx@q|{RSWc8u0N(BAGmqPHGxK
znhV`7j^mJ#yvT2Ym~xM3a+orq^Y)O;k|K|;i@uIg@Gb}%SB?#g3gF@Lam<f3aay&=
z1L(y@LG^AN(UHZWh%Z;uf22Fju2C5(HFoyw8&a=<|L|4hiW74A%u{()K3SDk(I!xN
z6^D?Oxlk295t>MulpClNJHZpAK?-(smf$YSjwlsUAz(%qXh+BNqfq5oVPecML2y2s
zL*JFJ;*5SJ2wQKg*c}u_Z;}CD7V`d|g23|+y+*#$560@2uL74g0`_}@RrcZa+hJ^u
z@Sqt1!!l?_hEiCTTnb@Vo9Or!OPtRw6m=n~mwQp*w}=aqKEw)FY3)>lNnY6>^MD%w
z@gcK>^8&IoP=cLF0@7T!HQDJB{;_*!@$z=@5E2W!28$gu+a>vcA^=hySD!xGNACrT
zAg75-u-j|@$#<XV+Z}c!0(l~4b{gLJ1UHv*|E!B@HxzI;$*_QtW9Lb8`R%z7^Ypz7
ziB|-Qw|IiUc@Sj_23ANB6s{(b`I)JrV>eYz+<89t^QEvlhZ%IRG@u-^fU5Z#jS-xR
zIvS2pnwUAjA~IYCcX=v>nQJzgy3&>YZoILt9{4<F&XNnF8JbBl8l0JnvUht+EHtF3
zA+^26h9ncOw;C{tqpi^p#lM>Gc9*a(`C}b+=3;nb&(@qzm#t5eg1{TS;Tz%l8|ES#
zl1~*4qQO}G8n7vl{sxe}uAdr6rI&UcOu&utl?!oq^0D-rm|7I=WpK_=6bLT}%1N4d
zPw9hagL;n%4#)5w*mohruIBfqP7w+R|2B9NCW#<Zc%aDq{E3_2XD%bIgxq-!CGdi*
zUOlY0WH93R_(WKOu$`+E`GRPJ9Jc`8*K+<#dw{SYaA1uxlz>t4Ag~Ou8v`u>OY?9d
z#fk#mXtJnrV5K}gK7w>;0i#BSA_Yc7>1JXYU>i14>;X&(%!+1!SsVgvNKKZNHfY*l
zNr{&>Dp|S|NJ){!mU(nCeb^CXNP(D)J_Lq!U=KDMWzy_PQRfG-X3wHct9C8hwr(Ht
z>nC?E-MRb*9szblqY%9hZ|t-Hc<<nmmoyGZtXQ$xJ(v_uOactgK%ikCYEm<iO~!|p
zwr-S6S)gTsJ$#_{(eg--#*Z~B|2k|@39uR(GuOPjR`)>1kj;v&tSKz#iJu43-ut$q
zPUQpL$ky2MgCeibqa*hFa549ZeVq%uS(Y>~GY@J1=2&T>8%s3-^DJDLB5jER@vtdV
zruBC2jBDl*l?6Io2AxK3;PlWNm`v2%W|^dyiDnis#2;VU4J2M=<qd?NeirtmMr{>&
zfT2Knl|>0?A82BpMr^<sBZ7Iv2%{oe!N^k@c%aeR5Np&}qau}n_s|h(lmR4+mSkch
zjxhpL9gG&BcVUqhc(~tLc^#351!~~2Mj76jh*y~uHk6fpHGL46MIBXy;6#*ALS~T~
zlINm8aMo1cLTL_^l3Nw3|7D;>gjQsdntQJIP<v_R(dbz>S;Qq;TzUznn2fULo>BrL
zr4VhP8CuaEptcE`Sdp$p)^e}H8mp|cz7<zpxAt?FKsv2S(RY6ZCZAu)J@nFYwDDBY
zC0;IsiLsbXI1oe0S|HPyJuNG(vlY<>B236?RD+=0j%X2X#jf$JPG3y4!AX^+JJ7nw
zxoMHR$}&sgwrEmotw0`NG8(N8o@e5-0s)2xFd!0J*;r@x^y@=-TCf3!^rrWxbAUyw
z5qyIARoDlYRSe98J}f+IfDh#nUBje3hv5yGs7f$Lb<#T_VEJ0`!NC?toFOpdmFyzQ
z-iqZxCM)4ZQ;9{Q|7d}Vl~MBAi$Ts9<c)2>xW*7lc>BQ+U#J0N8b^4L1QEqrP=gXT
z;s+ywl{m>Ylu~+CrA0vtbhKJ+<}oG_Q5MO!yyHp>C`!F<)F!nP<yAzS81ic8L=;=B
zXXF))T&&4|zKi%;J3r)ePcK(I5a|P%j%MigF|_gLXxS_lrOb)WCNP0pFt{Sh#jg77
zQiJ+XOU8<LEtLijghst0s_KCdFx76BtF&UDz4qI?Wh<_9=_*hrnS7B19%~9QgclJF
z!QaQiDyInfAKaisCP=6CK_+<|(SQHc=EV&|U<kV?a;|}R;1ZYsTM{mDiHvC^fCB_Z
z0qK*np6HK%|Nc9|;~3%tjnKw6=IR*GGNA|}+yDuf@YF*NQaBT$P=zea;08H3r!z^A
zfCy9|104t%HUOgxHAI_RJdhZMlp!&{k>3~SXFqS{VRsZ^q7(1;uOkLgiDF6L`qI!o
zp%E=}1%sdkDlwcJ9KjNo_*q5X7c##%&kaXFV-)$LKTIehKy66Ea#nV@%TTd?RvZa1
zE&;YQYGOP_oL~}%@WUW_;06pC9z%XNKulN%XzF91g)n!qJLXXldo;`X@X$VnNaSgd
z8=BPc&;ubPK@pm`(q?3YhZ|7>4{nIj)@npEB>+<ilH<xrdZ2_O)W8Ehcmv)t0gOGk
z0S}qb{{%0e1fwX$XnADhA}3jw2|VhNk7B_@$}FZhZh8@E<163!K({Ci)@vepz!^o{
zkcmrt;cJ-KmnOUT#qh8)PXn2!MdCQeE?rPjfnwZRD#^hzU{WlBd}87(2~q1Pba5Ox
zV;a|}mZgYg1Bq$FPKGeOiLBFn47CV3TVu|Xm{AF6RO7QiT9M-o6d1#_z(fbRfqg1r
z2x(xFswy!PnAntd0p%W3o9a}idhdI337-Xy;LP29P#`w~23IG8uwcDWIU7)eCb(+I
zV|6vHpiv<(hBHEn+(2Pm#e)dN!dAD==7N1nYga*22^Ny8t_CEbV4^rzq7CFmSGs{=
z|0hE<+VE8?6H#nM?n*Mj$aOMxy+mZW`YyHTB(l^RYgr3<*{Yt2v}V0bX!-iMjcm26
z0`sJvv{?}jAc(7ZK&;2WN*L`Z!4h4i1hqUsi8Y`BNKsrVTKqUrk5-JVt9{P>gbNHy
zSg5sWP1Xi-8zmuNqE|=YY+Kpztk}*Kj2m*1agnRs+-Zae*0sd7RB0qu9)zn`!Cx(5
zM9#EcqMCNQCf;I%1dG(*2yGCqC4yw#LJqi>cgv>UCd*fWwKutJSgu&`z#xG{@geB-
zD&(%3hpc84BFv?T<0{gZ1INjW<W<DGMm*c4iV<kQfHAioOx(o1?p5REDmB??|1as9
z7INe*vO5<#5Zrckw`<AEYb}B@z5@0{CeCV2Je<>qKv}nlO)65JmB37hM72p)U49ku
z0ZY8W!nC|^m1}anr{X!!dS**hrAk$V(dq_d+}>x+vVk5LxhI9*^Q#c85#CP3(SO^>
zqDdoZM#FW`sq>hoF>S9Nbb2j^=D=hbr-lzRRnY9o1i~u45oIR&U;I^zB210yq(NF%
zLE1I1dmW>AQDg&YXu~dh?S=vSI!J7(^+ZnnR9F8kh(wq+5sW1Sfo-G)xn9e)YclFQ
zD|2+34tH7(9qO9Aq0ViAwx~hvmJP5`)tu|}wkMMAo@{{HL|{n0J?-y*|8uX;-}^Jb
z3vTd(BRt^>UwB$L5JY*>Q_uEf_(UA8JP=15;K|;2ujjn0Byl|CQ&Nk?Ax`neX(Ht+
zXZOil?(&zz940qVxyt(;^PBry;J6|<&U^0jp94MUvO>@s%Af=@R00#TX6nRWPIRLq
zUFirHIj_^8gd|`+36B$ktB*wWWV7YzM^F0Fg>Lq<qdo0vUpvfoek-1{J??U!JKeeW
zqc_l~46$zN7gTlfyXSrHjQ)Cz)PO&+k<Dx#A6eN5U!%4FK0ku5JLM~H`O9M-=x(nI
z+%xa_&x1bnqQ|-8*}#(?m>~^5Qqr!)bW#_C-0`EIJ?(36``bHp|MTF(J@0$(``-h9
zAdXjqyOgvBWwO54Y5<!?8vpg+LqGb`pMKnRZx`xgKl|F>zQTvUfg;q%10P6!vaSAl
z!Jwh^++RQY+wXo_S%0eUpFjQUZ-0t7{`eM11B}p6E%Jw48VF$Njokei-~l3_^u=GU
zBwzzN-~-NH>4n7+43iQN-~|>S1Zv<0a^Tu6VCPi?5joW{2}F-{Al;Fm1(;w@ctDMm
z9jvrqjJ#l_oSQ}T02-Xn`Q2O!uAo~S0UMl~2xi_8umQ_G1Obwa1%{j(P=X~?!W$4C
z6FMOj7N8LRiwioH2jsyPa^ZM<02gv$4IYbf^xz4a;Tcxm{|A}{ZDbNtWx{%hOB+^;
z8Q@2ic|aN9ff<ld546E)RZAOG0v>prMciQ?YT6Lsfz3r49h%-l^Z*_}Vk8P8&`4q>
zA{HN>79LjO3{prXx{@O@qPl5BA?jgF0OBML#20uX9(2qbwhb`I;V8O+8${6{#)=2b
zVlAo#8>&TK<Utzj0mQhRE5@NfT-z!pVol)GM)0ENrC3c|;2I2|$VJg5Py%Ps2sIYc
zHSW&HH6sG$qA=1*o4kP<n4=m%h6kLZ8X$-wz6vqIA{xr$JXW7n?Oumq+eE~bDALL$
zFh!fJ!F^Ez8yHmuS%7hU1}0PjV%<P)5tdF+f*IV1|NkY;HMW65=9*CGRZZl@Ko%rd
zfMFg8*Iw{p8?*u3m}DD_M?-QIVTt4{!XziYBuu)2g>)oAQjl37<V7yzb|8dA0s}=-
z2~9>5Ffffk_+!riLqMKI_1K*_Qkp5HMTumR>iJw!0;FlABubj3A}*uHNTo9>PEYKb
z17TpVkrds)2qhF7$E9VAu;s|@V@^P&th5;QEY<d4<x<jPU;1Uxso_90iNR%pM9jxQ
zUV?KV$Vs?CB`AakSOT`GNL~=uki^X7U4&yEWMo#v8gLaSCXix|<wJPcM1&AUOy=+m
z1SJrbSg<A`CT7eS;YesEWMZ3TUPMwP%2*aA|H#<l!~CYKIHmUF1t*?dZyqMS2$nMH
zX74>COzhfqoh7eDQCogpb@EzI3@7&7<wo4u_8@0n{^fX*r@;m01~?o#dceVKfCso|
zuvH9yY=90P<Ug5(OteN4u-ZeU2VjK7#|T7A6xsm^=9=V%5d!G`jph&(=0?Iqe;yT!
z<<4oom2s>XOkBc>L8u?XRlNvkfttyp)qo}lWwoS?ex}8C8j-iGCq-n;iqd6p7K?k5
zk+IAtxoFx3_<$I~%%PD6eTvPZi4+ki#C+Buep&#ETF`PLkPu|dS8f_<&}c>2D1BDU
z5D;m_IH_3#DST=vA#Q2A2*d~QSC>A7|3X=5#q6j+INvo@f=QO%vGH0kA{*7w>8=sq
zl*T9_+UG==DVN3*UAp62AgPj;=b<9%!KvXFL>8!c7kB{18aR_6Iukv407;cqC0K~B
z;RUml!G)Gc0S(pR<PL$}horCpc5K9`?h04+ickQPgX&~XQbbEIDTP*qsak+0TpX3+
z53eQ-tyTuou<C%gYKNezs&)u;ortGi=$=l*rM49?XzD;DrSV9Lv}P*OR1c@-CRg3b
z&`4J%IL83JL3!xMyKDduaTSdz+EPxcRUriHC`?&p0?8b~e-$P<?S;2im9qv`Oyn1}
zTF6(fM$CZg<%p}jf=9k`)xL^n|IgGbFx)E`jVpNcz`$1PMPR}W7!@#J!cIx-v{o$W
zq=7TdQn9dWl-xl2vB8Le?AJXQCbZ=(36~<^taT=v%|=Pi#t0fbDzx$^rV?!FOl--*
z6F;`<p!y)dChF5dEu*QS*yM%R^yv)<0qOvTV=}5GcmTNYRJGnfY>*n3Afs9!0Wh3Y
zH2q6}<-t)7gsu*OCg8!>?wDAxEn;pM+^&I_bjw<#t(68$z*cBh>{3Vgp;29lQ4(Yx
zaHv28?nEdqdyGZ`?XA4ft=;n2eaWcxoXL>1#@Jp$*{0Yf=n3cw2H7@9nINOUU@huc
zz)j?VDIGy2WWsoqL2Mud|IR*6)f~YGjF;6=8nt>r*V=8eD1y}0KuaWxOaNgE&V;eF
z?pfgKK)it)IH?ch!R-d9ZgR%syl$DuF74XxcsQ?n0+AA6CQm6Z^8(cD4ngg5uRvUH
z_HOTZU<8qTfPCpy^0vnEx(P!-B9@v_UHLBXDo`1~NE_fCwZ6giQXM(vK^x#fS=mkU
zI@3M{jL2ay$nI0zu)z|9@0>X$>WXgJvhV-8Z_?UXUPkQ;!!X(fCdfQ4-vGv#_=`;J
z1#O%}n>_AXe843Lj3O{4L7n7a;SN`c)2^gs6UR>x*U1s@iY7S3-!gF%n<Om-aXy|1
z#8mG@m}-e+!Wt+6|4G5ER+Whuld&0F#1>CcnGi9?S%4I`suEMF5YI~W@G$E{Xq&7F
z%80}sk7<M+PUk*^;oQVl=)@A+)<jGTSMa6GJzNg^g~hZXwVbT6l*kXK#TQGcs3wIy
z)fpm7R;!9rCjSc|!-OSohtMc8FfelI&?<sZOTv)HB`3~N63CzQ%Vg9Dg6sj|!HtYi
ztB_dJ*GX87D2L$`vS})g58rYti$!;42h+yzHDj~F&9Dwz39v{G{ES5LSc2cR#hX#W
zvsgkvrU53DMX|;$VNnMqpn)b}7hcfGJ<~~8r1So<^Zt2?P+W@@R~0_r^J$s0k>P=|
z3WO)WbGw*<|AhpPp9b4QC(e}|H0MynKCg2-&yXU>Gd&aQXf8+fxPdrtMM4im8qiZo
zPsBK{t|1QuDO*U1TwH~%X7S)bmbH;i`DRb^R74co8lc(+^d_t@G#J~*bmW25xtRFs
z6-^6-P*+A#_r#5)L80BmOh25t*oT~u=6?S4RZ|2*yk3rx8I}YXF=t~0V^WP=LX!ws
z=_PZFhy*jYYLT$?L%1{=i#1wMv!G^kU<<a(&G2^W7^M1EPY-NbRW6M>Hji$mW)74f
zx=9=Gj6j4j9`{ThBvMbzE|m#{WwWUz+(2o^4wJr`6OvJhwC3`lHfFc>LyYlS%r<|j
zwpo03|79~v0*%HOb~YrJD6CY^V#}79D90rz4{@iLPZr5zJGSLa432H}LIVQ?m2yfq
zr$xBYZz;zI$Q321ubEuSBmawYzvmj3iz7Ft0tre>9K-|djZ=rwR_Dcd2WsPdcX$KT
zd|zA{tT#DzHCVH0b&qL&KTC=U%5`@y|G~()g0RR*XN??$G1n;vA2S;WrCl3qktjEb
zjVwawHw)vXH4k=)n>bY2<Mp+wDB5sh7sgajMGuHXXK|HIR)S;;-&-pWjUe%vsx1P+
z7yjw^Kv~CC@s)r-=#38=ZKUZ@?`mwX=4G1&CGd;~DEV2WY9{PBM*Vmy_eyN6uTm8W
z|BO?`yA19TXu@xhc~vm?M9_GG#I$^`*BDWRQI?q`$46K_L_r)xLSVN8T?|UlIQ6Et
zK-56h2vK5S!h|>lRK$0<&bOYl1fbWJSnxSQKn86YI-+yX5G?vdAbCrmaN8IJrZ<^J
zLBtuigb~Du!aR7$ML1l-Vq81kTsNXI3S;%G`A2-#rTe*vd#4MZ_^=au?xnc=b+N~_
zc%E~&VIYQoB!+81P;ih2UO~%dbcVH(GeuB)#o*Oxq{eC(r*FW9LR0r^KY4C!yShIF
zxt~S1mxcuthi7aB><V|8luA<!O?5bmxwm<LKs$7+mq1|*McjC&yoZZ>@wjA(|F=MU
zw4?WOvH^t1Hlq{xs5CXC&-s1ihnBE~pTw?oyU4^x$b@*c_1;>+z|L3-%E3E|d$_Et
z6W;hZ7+lwlTpx3ZYB)*zy9GTfA1ke~l6bKbebJ{yVF&qP0}HeFH0p%;x7;^U<_koz
zk*SimiT0{SWJ|LcnLzKAD2mI9Ik~BB0I(UWK~_wmmA$$ME7;o0qHVpt7|YfB%Rvq<
z_UJM50E@yfjNbn{T99(2)43zdjB0AP!tX`rY{<#Ts!<nu8ATjzSUmDfcbscH!TU}A
zkc`Dlh^9k+!I-?v(9D=_{_G(5%FB*s2my>J%s?WuFUw6a)4DJp^ZD(3|Cu;F>y$o}
z%W}|vCuz9ay}Z5A6F<?<umz-4I~n69rPEh2{e1M4aX#Aq)DQp}<piNUY)2~(^*{r`
zcTePyusSm*($EHV5HN7rlHLXh2>}eH&<deunY8~2z5fhRzxm(Lm4tr<CC~zOKR{f%
z<iUakHo(dpQMiy`L5B|^Ml9%I$dED!D>k&CDASh@H<V=R0WlA-JP|p11SxW2#fxP!
zN|Y#Mh!<dKhKwv|2G|FO8-SU4s05hChm|xbxpBnOr42G4-T*elg482bfn7xd%*~Od
zC3Swtgh^2zMQxHmRST794TuNJc(`#9n3{rVfITf(vWP>PHgW2-|G?8{L7+k{h$U+l
z?OKOhyM6_xlkm@=1>wr2YuADsV3(BiV5+GwWUoiS7QA@l;Z27~l`?f&5DA-uz{*~t
zWSe(y-<g2zaf2t5Cf|yHweh{2IUD54Z6onp^JY$m6fI&LqA}&ikUC9E7QFVuRL4Vl
zMx>Ng=K8A=-8+^)pMHJ&_wnb~zn_19|Nj9DP{08REYQFM9pa~-1sQCRL4F=O0yvX=
za0oeIFa!pVf~2C#Dy-hyKn+bW1kFF9GR&}zhmgPon51OVgtMsd$Pf>==xgysCD@v5
zJ`__-?kG#tY6~hEBf6m^4Dl%JA>`hRYDo>91Tw`HpJXp0{~ckZ(MB9CxFpC7S=$f2
zF{v_a#1eUg=m;$z5|PBu+O*)zAk%d0LK_{b%&^NGBFZR-IPeU^Je*XkLl7CYKnY7S
zq$E!dC|LuIHP|RA4FHXd(@@-mz+_Vk@Y2fy4=%~1%srXxGrd0%qtsGNHT@A%3?+5d
z$-@l$RFP0ebwi|EEgA38Nb_8+wNWi7G($umT7r!lOLU_-=5GBAI^LeU*4u8`SR%_5
zH!SGR6!Vmm&7rc*b-wcQgbKYx3xZN6dnLjb!F~Dd*WZ5u4p`uU2`+eG1szPd9|$2T
zQ@|Sr<=0{RHt4}r`zAKnKZ~KF7b1@F^EfJ~D!y3b|EePXNzs%~mZ)Nu_p6u#h!kPA
zAT==I*8`B(+Q4M|YK92s`eeRu=bwe;Fyo(knEAe!C6bm6YrVbJjcu#WnmKVFX1VD4
z$}5A2v5C-Y1G0&@NMw;6V!I%>TaH`qx#_Ok?z{2s7h#1PWH|4?0S{d8!3n321B6JT
zq;SU$FC+1SlODJ>ttqcuYw7;}K$FcmFY^Y@Ifr}k(Md1e^wUund~d!N^gH#}VUJyQ
z(mi{l3?<B{1e5Vzul@GicZWQaf`vfC^5c<b0}UZ&Z{GRmp^sjA(pP8Q_35$CUi<Ck
zUE_^B*eK)Y*N5;PeDMwb0?UGjFh2SBn?oaB|L*Cp-~RjYZ@zlIug~BA{{a|40TOH}
zOF)Af;CDPVpkWDK8Q=pU7(oe6a6bD}SpO)PK@Dz@gB|qX2SFG@5kAj?3B%wBQJ6v%
zu8@T-bm0qOxV;iO=!7w};SF(^Lmlprhdq4Z4EyFoAr6s<MKt0Ok(k7~0r5fgIReZG
zq=fgNfp<zgofHc~#rb%kH&rYU7kT4F`8+W{JwO8<(!e~@VbKCw^p_dYsKy8l3XHZ9
zBfy5hhNaCd4UTgn6a$pUJ-P{y+Up~Nj=+XOl5s$c<enf2=16|A(T!FlA?t$pBVe%M
zUzw<c1!}O#kC_1vY?$Av%76zmq^t*R|ESYLT3HD^L}`nuT&294RG%J@(v+~o!!Ln3
zOA81gn8i#~D_^OaV&dVB5J_b*$Fs{)o^mZ7uw}$zDNKiaVVQWCkp(;nN>R$k18#6b
zNoaYXa-I`T^&tu;@AIZSq+t*3BwRQ{2~UIA%mQUtUw`CD&vw2OBI`uw$&`h+O8nC?
z1m#ykd!*0&EfhheT8l#igwgFm6kr<N7e2>nN#`-Kbr1O^RBnI=Y8vPgibxDF)(|0J
z?4}aH_`*Xdb%{1$q7sR^fuX)>u9=zvIcT6yPIuZ<mqDtTZkj0@YI@Ux^dJvattzCh
z(#kfp0XcZsY8wjkQw#;w0(r26|2fgxREL-qt>zTWn`mm&qf$brJWUjOC_z+U7_}fu
zXzOse0I5J$zw(flzBH!wK~FmOby)nQbfs$XKuFV|*1HY1JcSLDc^uM)Px|Mv`iv}%
zR;pNyakOp}r4M5VbW&#mV~`F(?f*<`Ad4zWr2~2`_eg6W)k<WyNvf^CC<{}OUJ{cf
zbx0;8s<BLL>O&K`M3g+^FgH|!ARe$pxe7vwHoS?fir8#t@-m<4R`<FRSp$Y7d#dL;
zB)T%eL(U-5sfTEnyXqn9d?;~W^+K1m;-&7X%4?zTdS-n6?C)`zYtQp27(t@#*PGJ&
zx8*kKvfs6UX8!}>{5ZH^xt&{V3;%}Ph<I3nASTdkdr0E>h*%~pZrOyJJKWikbYX@$
zoEkjffs1V*#}Ru<#SA0I>sUvZK1#yya2ge0v}sXyIq*Y}1d$0B<V~$ra-Q&#u^}wi
zM_W{KGT-K!_yPk=5s9*3`AMHkr1?5umQRyO_2emApvn@dfhPDmRU;$WunayGk+1VJ
zIszIZ9F`A{bL_GpOGHp4^FblwWC0*cTF7r3!X7s;1R@Y*144jw5B4nBn$`)!aeDN9
z8XXZt!_3e_7UKslou8epwoH}2j;B?<XjN;P)3|oEOnRV36O*jRil#KhZk%INCDhid
z?pUnxGi#TfI?|Kww92e)YyS`UI?~6MNU#esZ2iDGV<?t%oQj?6#8go)A7FR7A!0UL
zOPbe|hP0)ZCU2Q++sAKvHMAYVY?*9;+Hp#@jtyQHWurUM>b~}_H*IhEfO;fHmhni7
zThcF#$))Vg5G|#$2H?yRIEtG{8(svAN(km!4nd7-*nAzil8Q(|6*H8{iihvA;S%#n
zL(T1kA)9T$5=tOSgbO-zh~TBneI@ge$f^lHlFW-z-=fkDQ^lV<<V?)cxkGsF-r2bP
zB>jxJT3YP^l#^)X4jJr2((qlir@ZZjwr9%=@~LzZW=)xhl11JSlrofIVjH*(ZmjHD
zn2uaRGi_UqNR)|J9{<5bz*w$}u7Y<um%R)&yM!9vtCvzs`tXWKJlD$*cry%sVtSWJ
z+Sjh~@q7UCmIt$1jv%HNxj`?hNds^+LCYSj2SarqOi%hwOUh&D@>-fZ+s7k>np*w{
z;+BZ(AHw&@BUUCG4^qbse1qS=h?dxY2<=lYc_->#6TJUP={>i24K-eIA!mHa9Wwk3
z8DIO<e~9#%ulg7&KhQ7o>IB8`g1;~%o!kHuZeaQ_p)c~z0U=NV^X}syqW}CZLMpHM
zxGy3K(DrmC`Cy6oWRJZl5JMvH{Ay4ARD-p~FZkjF{<ewZYVi9W!u)mu`L>S(nJ*16
zZ;Uwa>@Lo9X#WgCVC_xTpd!ZO284hpKu+a6VB;*o1BfC`ylW(GKoKs%X}YPmas(LE
zXgHiJQ{2GJ$Z7~Q0S~MY7%;~%$WXn^@FCXVB#tgWkU$J20u!)nD4s4x$cihVDi3b2
zrVvXID}fNzA`dIg5FsKCQDqLzWewZ#4Q1*B^`q6YuqwFFX*lW<5Mv|SZVS86?$YTC
zvC9deFau3OrK&Fz3Zo3TaHbSN5#ogsFyRP3Aonn#kfegTsIU#OFnDSJFVY0m6p4$L
zOfOJTK0Z$>MrHJHQ5Sg;(qvIgD4`bPMHT%_6GyQVErb}2aXv1B4TJzBFoE+lM5TxT
zDZu0n-2cGSd>{{CaR>9j6)T}0EdUvF>>!lDR5p<moyG&w@dh?PLNZ|hWr7>`t`&#i
z6-CF=l#mGnZXGqv9bM}Q6-*Jt5wjel9M4e+($OKNaThP47qJ2ufuRbo@E50WC55pd
z;87mwu`qbz9v?Cv3xgo@z#tJ)A@74DN1_-pYqr=x6Sh$!8Bh}{K^KXDsq&5~of0ZJ
zL@8MjCm~YLlF=Uv3?(`;O>Pn&_0a-m(gWsEAKgGIKj105Y$Lw%1%K%xH33XYvKl24
zrYQ0*mypmH@+!r$F!)g!|FH=F=Li+=_6kA>+DR%L2h<vqJ&3|#$^$XS?Gms{5eh30
z6#s{-&`=`oBrUk^t3>lXFmo?96a3VWHSW+{MDwe-?*lATBHo1i<f}7r%JSAg2~h3~
zX~v!&D-&{aH)R4g`><Z@sWi*#G#}zKT_!dK#LyzMZI&#|n8gPUEIPw1nOaRg6tf}M
z2R%U3=_2ML@&wc@3#AapG53)@fI_0MEEDwNu_&`XKF<Qqi#1A(Jo8VuGzn(9^Y!cr
zJ720z+H*PQLn^*W2#DYXc{At`vpl4VC%zLHK=b$Fb2^<)GBH#QGC?CQ0w`tTKeJCr
zgep88Ln^@RA{rDul1W4@!#xkQF8*&p4Xiwci!s;pF})%^dGs}BPC~hkLT{!+EB_Ki
z>7zio&LJ#HSg6TGFECG}qFg)!N;L!`ob>o6v_j!?A~4i3kknjUB}<2M=B8Bf%H>P#
zq#{=oL-kY7&J#r!vP&c4N`bUQ?_x_&MNSFxehgF3Fwse+qAxz=L)-xT3c?bM^gceo
z5-7n`EFq?V&?mMIBF?OB6oC@ZKog3^<tU+3J(UvL<WWfl6C}0fh|Z5zlg>WXQ^9Oe
z8<n?uj?w;5A}UqV%s?<M0<k=118%h<b(K-a$74h_QfbaoF;!Ew?#Tee&<YhI5Y-{@
zAXZ7m<T}GpE#O&~)6dp|PTTUarp{4{LOrY%4}cCm1(iLT3pvtYY1RO~B>!#B_M<*M
zAQR58)UpvG$dx`)Z6><Wo|^R`uyrGD;`CUNWiCRFcqK+gg(n2VTMMFHe`3!5)giD|
z5#At9NOV59wP6uwK0pnz4%RY4F)=rCVC{n^Sms_$ibw*LQLLh62i4CsVPU(qV=WeA
z6Lmh+b!qV81M(nv_>}>H0bh~KGl<qo?TKM!&W|A0FyM79b~YlEmP@~tQiEk^O^VN=
zcC`=|P*fIL%k^V{O<Om1X&=^IH{faaw0`<D=>Bvu%_C;7!UV}>B6{p@?`<M1;lI{u
zmN2Ug$`0oW$~k?OH00wR-y}@{_hu~N1{^n6o35JnHf0`5ziN|G_5bT3fHOZf7pEqd
zJ`neB%MMk_rErgFuL#7@=$22YOiM0d>Q=W^vNfIX_HL23A$O%?#WNx@*2%h(L*f=)
zwFLcUYA{>ZkJ|K9YPaFmqCRW1)Ot70e%BBEvtQFGcB}Mls0CD~7X_h$qi(LBrt2id
z%ugh(W8VaMJraA%<!PgLTa)%x&bMmOPQk#JpRP19w%2&!&|P_#p-N>@<W_)%H%iK2
zd|iZQbJvgDH)rL8c)3?eXX-Op=1L>SA=DsTFZgD{)i2_AfsgkE8w&*Y*Hp|GD8BW8
zD}j82h0i#+At0E4@3$bL7sa;IZJ~l&L72`uHhI_9e%cm28vhGWgZC;vBoTWciIuoa
z#w0_IsuK7X>{4awz{fT#QjQ*r2&Fg^s2H9mBuHGinxL3vh+^KrHF6!IR^cOX?Sm57
z*aOD6K6s9c*9x9OmP>7h3%eIT3=N5uIEg2Q59v%3G{TSnSj+6Gi817MSuuA<c3&ML
zu;4Dd6s3qM43x@XJt#pV@IoK}g@zT`8E1r1p|?SOw?A{(dLhD)mlz^yAd_bb($eyK
zl~v4Y02dRYA~1n7PWY2MSxiQjl>xaRFoB`oS1oi{Wa&eQN353d*Uw&AlVw>GphA)*
zcmoL7h_fP_8ReESA(w|>mv_*SiP@MPcs`;zmYpmQ(Er0)J(vN*7%ygKgX7F;NEUaM
z*~vV4WYHOxH+h`%*_**xoI4|)fx(_JS(;yPV#LgvPg$r!%OmIXgY!Ag_W6hNr)_65
zm7~x@3b-?*H6kivq)D1S_5dXzA_=lr(z--&AL1w>LZ{?IrLk)Rx}*nuAg6sG0VC|B
zVTKEP1dR(qjU%F%^TVhe!l&(nrhlSKU|O)&XBAV|Uqf0VdR7r6$_=X8Gwq3_y_%6n
zl$-;lgO9?(I-^|U)T6bTHgB$!29I~Vx}+V$d3iXTEC7lh5v_}atS9;dnRTmsM2lZg
zjAqy%i1fI4S$-4N0^GU`ct@+DVh;?pJkI%^8~?eY9b=<uZCSuNu;t?-#0al*kYz3T
zWlNhq*x;}WA`=o@tR?&Wj+sA*VpQ;gAc#UCEf{MZ;tk--Xdi;NI~$;31zN+$vG-%P
zh5LLFBeji!wJ#7NfLm5arLaYty~<UyBLcho`m%?+AQ~I#FdE}B&Tr7;?1)&c8AYlM
z<3FxYCN3dx%K#I8rdE?zJ)IH0<y%%Gti5F-l+NyQUHT{1z*Nvfs(vEh20Ta&oWBQd
zkKQ}r^1DX&(~k(UI0Gp_+sS02v@OAvmVV}j;TNB~dv{kWN)Yr!Px~r9;FW-aGprN5
zMLA10D_0dSb0Y$hgL`(z%){G;#bp%5+5h+hde51|jatFAwe$JKWkS8rEsH!dgDZQO
zD0;*fEX@l0ogreyG1kTvFUW`7#ATG5O&h(B*vN?j$-8?i@&w93&_1->GB{(lGMIjI
z+r$&{0_~iklDWH;Tv2@-&6T^z{g5*}BhTOF&lj4r4Ghe`sk{Nyyr(?SEuhayhG4@R
zb=nr3IwA?sXgUCc$i!Srx??3^90W5V4;Dfp^5jk2AUg~^z?};dLL&(T;@()@)t8*Z
z)j}*#J=NpoA}S=;h1vpYRR}Uc5s2UhT12no<NuC5*_XX-PCeC+V1Alirds_X3>;Nt
zy$5K0ATR?Vs9lnx%_X#hJ37KUSpVW7N`j5+CEZEAC9(r1wnJm7BQSIYvvEA!l42>E
zqI*MKE4bn`QX?_OqAbqBMD>HNrTn{K!{5hFKK6Z>?j6vu<0WF^-Bsc{oIEm6L)U3p
z5vo1D?U=|70wFYGtdcun6$9ZL!$RPl<0TCfWPJ#J?#{Wh;sv9Z`FSleVbeQ3{1lzy
zKV2}w<KxroB1GOIFhQRlUN)X0-~;~T<6<sU{`kat1880eY~B)Z{x!5!B96Y`QH(D<
zy*dQLGeAQ$EWvQWYwbtFN&W)u^S!%Uo-q_2D#pIccs|^#elso*?%TdJ23|Z8J(8K_
z>Hl5IfS#Xz{tGyrS>_(!SN|SR?mpqwBkV6dbuzv2D8xd7q+F(6($<7dPNa$diAxYu
zjZ^AN>O=K=B)zOeMTTUrhn@AOB$s*<v6RF{ss#0SUm{@NOPB;qbZ<;7U0#|vT}t0X
zoC>kj#q@0sPjoi)>t51H93q_MP$Cj5$XrW~1y?4eQZ6M^!Z$w{zB9gS`%R+z$2w(L
zWu?z0LzsU~oWHNyWrVYv{n%j085$tcSg^3c4X}fXgkTbA!3?ku0|^2%GtdL2HE7nb
z$pefbK{c8VUQ!a#!VO9YKUjKGvSmv}2V>%i=n&$-4HI4JjCdr|!8|?&mH~F7WXFgw
zV*;BQQHiCPl!olwdH>|nK}~EnMC4%br_CF{q=G$S64(*2V$GH%TQFwAg#&9w#7S}B
z$&@QwRsz;$>Q1Lnr4CF3Ol!qUnTlFSDl?*+Og)|gv(&>eWXY6EGCs((;lsH(Em*{;
zk)uby762cNO7rv0&}|VaWcWDp!OTr117j_es8NqxW9G40vggmB#eD(;id5;+*2L*n
zyqIz0QO#;mYv0bjyZ7(l!;2qJzPx#U{nD#nub!Vv#pYYy@DTqy{O=oj7zTg8zW?z0
zO+}ne0fsl=dsF4N-+$!Im!Mw`GAQ9(J<!KsejL1XngwcLGNDfSS@>ai5xRt-cpg;t
zU5X2Cr^tpKzW*m;OCQWQB7YK|7+#7yg~%X_;?+2n2f&a7o{oNP(Be*y+0|c@CiO?&
zi!H_29g^Jv*%FjDNO@Ba86H_7gk;u7Wl2_+bl{C_w&~`ZaF&N2dvx~WUYvO5spp=2
z_UY%JfVRW|FlDrq2PJ_fs_1ru7FyDwi$*Fbo<d}@rk+shl&OD>8j2{Nn@$>Er;mOr
z>Zz!v3f`P`u6L)Zu*NFuthClTkU?*hp@bQgV4|X}!2XA;uDtph?6InPU<p}(hFX%d
z@eR9cufJlN39{TtTWq!1cI)kbthSootKXJu?z!luI>Z`p<iSQ6OQtLDy6wIjue|t9
z=z)=de*e+ePX2yKue<R28F0P>4QwyM4CfoJxa2l0@x&BYZ1KeyXRPtY9Cz$7gAcbF
z@y8^WZ1Tw{r>yeIEVt}3sv*}o^2;>WZ1c@H=dAP2Joo%&%yiD|^Uy>WZS>JdC$03-
zfdb8*&`d`y_0&{XZS~byTkN!}-W_2hn@TW?2De$48}>kBbLRmYY_mc3hikX}_I6&2
z*8>`Oq#;DGXIqdqoOkEFcT07b6gS&*Ydi!SUMiY~qxnAWQsE>Y?l#ha>pl6`<@Nn{
z*&J`(UUy0W!$zE$RANC5rnl6C8F;WEnBisMVFu?tw83vlxmSV*vsu=D`&2{Vap_dA
z$NxUN1wG*5{PVwCAO!T(519MzLQ#)L;w{xqeYMHUzM}A7_a1#jUuchq8YQK^dh6SH
z;D#F<0neuV^k?^7>8FEt#ByoagZ^mcKGyZm0&Lh&8U7WY|K%Zo1LR*z@K-;R4W)63
zsssb^rNNd+uw)b*;LschLHm8sKLvyz=r$(0ah1e*Q@H^ime;0BD8d3C0LB`Mvl}+-
z<qL+R#3kB*iAoIU23=uaONOu;Gr$B5SrQ@<jR>NraF1|3{9#0TkcTdI@hN1<T^rf}
z6FiKu4PQy3OY&fe`ML3m5n-bn=l84sQNoA70HWHYSi}J_krGY>1{4RPggLqa5C6b$
zLrH9iLmhsHiS~07BuO+w@DS;MX@H}s7@5Nz4#X<UYlG_IbIFKgvLrI3VMHcbvJ0ZB
zg9w9VL{ix;7)pqhs<LIWRCvl+R`NfbbmR(IC@!u=BohY&R3-#6mWX)Z62LPEeB4k8
z`Y5Y27NA5M{-;FEjM4%IxtB|*X-!LDGa_p^h$ck?O~?2~CwTCX2Z2!omuQol_Uz_&
zD4|cowewc*)DAgCV@_|n^IonzCNo8-9bCT2p>6u#I#adGwM4`!-?V@z>myO|K(u2C
z6_qSGxIuFvb3z{#)k$I1QPeFolEc(mF-J#`L8-w59$3%@aQZc^<mV=XGymKWCOVKF
z0HZQVxR&8iStPrJ#gqY!h$i}Jfr<{~e;8!y><H7JAuRK#Sz;>o29m=KrG}nUnW{@J
zVOH+2bx2~}4qBiJAFEmbt2(KHCI(qluqG8eDHY97C%7aVd0?<Q32cIR3L>EDq;#CS
zi4P*%BZ8=C13`_*2ZrFK4Ge(@^ua7;dFNN9esVAT+Gt5OFj??G7DSBQNnj5<x6Nj?
zB|B}bP|2pGiU=W0yG0SV5}H}V38ANsHPL57d)(j>XmBGfj|ZBITe9-jx;vq*iIVG*
z9zd6YJH@GPF$<#Q5`?<(L+o5E%UyzC7q>RW>3(`ULGR2Ky*DZB1pn1L7sE^!xZ2r3
zd~<4|*6wI-tVQm59}5i5g*URE1?_o9yT#JRl$bNMlLfxu9AMngod>ZWSk~Z^-}%H;
z9%utFLQ;uewe7`h<4GQb(pG2YaWIxx<w4A<)|TMmn{2oQchZpKgzb2>mQX_Jh-$bS
zyM!?HoM)7E(&Lh70&+ci+m+SkWC}gG$QEGYbu94Xhy-~jc(}xZjxb{jl%d9c`Dlt)
z42%|E^uwn7=A2nfHi*Lb#UK`8O+W&SOaN~PWq89x%20;;Y=8}Jxvf)4ycFY@>H~-j
zNhWr81WX)cnVu%gpW7y58ZS}}@idHT2?A+^NIGGOUUZ|M75@{M8X2a0u5-08P3KK-
z2MzKR%|#uRYdc4T5|r=&M-I}>ViUD0S8;=3E|><NXu^IyK*>Rj?U@e{+R(-EbfMD_
z>WZkC&m|GUUJ8AL=-N%&x^@gEZm@1l6hYqfK8U>yckXz{<ssj;pSnNYZU%Nm&;Zx8
z{W|?=ax+vX&YpCMEq$wb*ZbZB;jnY?oCnhmgbf~VC_}Ry6K;3BB_MZZzqy^wWG@>S
zRMm;bm4athN4jfPS+TU|(rORGXV3~?WvtD>==&TTrVJl<xwXS)Q(rh^E!6O4|F?!A
z@b?BnD4mGw>;Vp2VqZ^PjGb?wh)aY?eY*4x5`ZzdL;oITBZ_QEl~<_=Jb)bu*<#8w
z;a-w8%y`M-S$lB@f{Aky60JL#`#=)u!#s@D0(*fe<168KzX)D0B6K@D`JS-4-(4sF
zvo(1>s)(_dJxn3Bz$NM;_R5gm>`N3O+B<`Ft+&J>d6;3lEhUt)??w@dSRN%XafA<4
z1rro5OEtX?cEKpZST!JwV2sKJoI+X&hME0#E};gnFl5!kFaGh9?`Gdq0{F|T{lmk|
z(9*m9^hkle^qF25(Xf3W;BLK1;6D&bR6-Fm^Z{kiX8QMf0Ol7%!3IKb14@7iZ8j9n
z^I4Uk2~+k4Zg5;a&~Y|_d%9N%yvIDIV|_)kAOG&Rf3PPS4tN6_&=Z+ZQsQBO7^s1_
zq6w8yd_-VHGgyNkaD!kq5G81U|CW10uzNP)0V%kGnb3l>lywLvghbd^)weby$Q?fj
ze_*kElhJ(OM1wYngE%yVI%IWq6n3BFf^o)BFz5jp_<{ekJVS&Orgwtb^nU?3fZH*3
zVaQ+MXMC4{eB6<M3)p}JxQF8xgdO;SWng~jhe}KsNz^BT*!Ofb6Lqfw7LPX&LNGvJ
zQ7A^miE2?g@R388I36Ex37w$`o&+gm<PwT!WCxK1B{2kNG>goFiUXmFcs2x@P!xcd
zFtd0@wpNOUcUKQrI#b4q{X`_0um(z?V*hc69g(Dr%;=0eA&f2o6Om+#7J!Sf7!$B)
zBBpptA_R(>)l`k-5kBxv<VaTLsAHms8krbL4#7Z7^o@u2HA68wM&(HmLMR~UiEN=l
zVP;C1;9u=X9^7XE=~NV|m5&w1kJ|BCI}wkvHI4x#im#DOs-zP+Bo+SyML1DU>)1&A
zf)dzd7$b?1+5r~&Bm_jz8_&o@mzYC(G><y=jn!t5{F0L9s0NuJB12(@<w27GH9KIz
z6b50G&v90vXpS~%WZ&qMK*<*^L6If#l<bF-1z8aX=@&dn5}WvsAV?NTIZI3FRF8)V
z&uCOH*&T|-j(TJPYFS}z`IX0ZmjCX>9hT@44%t@_8AC9aZf)6@Am~Y0S&t<lkvd_O
z1gVpfIEfjiVSV+Ej9C`<)=bUh1~q2^mLQZtVhNP6AC|B~<OUH$hKw%p0g6BgXrKwW
zaaYI|o5*G)qiF%9X`4m10hZt>y$GAKIh&~on(>lme}Q;Z)=wK?2EQ^CFtsMhxtt88
z5~0bFE>WAed75OknyvYobR~|Fq?s+znGr#pgJCM*SrX#ejqm6emFXG3LL^wGn8&u6
zcmQUAd6{a_OpDPGQnCiYwgGm9knH0DnV?9jb$&i(pQs_9Rk?l;b)FHCp8J^wuT~P6
z07T@bIyayRx3ZZMiV|J|q5lIRp?={Iku?-SB^`;!5DxL4{-}`uX;&i3ng5~)ECCvx
zNgkR&8^GXWN@Wl}+M(h3FD+_gj$)&$MV0A>a4za7{y7%`>K8LAo?wBWWRaOY`a&LO
zRJKMK7Lo=+W?$=PWgg+BgAu0S<e>}%qISbj2>L<_x)Ub46K^`6MOLI-8J`U{747+?
zHxZ?exiXaKj(n<#PlcIk0dGp7cRbao<mXJ5P)(2WJ7L!b1SnO>7>+oU2byp^hC-==
zVW|V52A0qzH^7|7s2$28sV+ezF?Uv}YGtq5K7ZLA%Q!)i`l#Cosskaa?8Fowz^T?F
zNGK&jirN@gl^vG=IseDX8L=0Qjv8AL(VlYg8hZLQN(xot<Wy;KrP;x2yAg@W>L`R6
zt<vfj3F&5Gp<3BG81=Uu47#ME2T{#>mf%VW;;J2Hv=|)r0Y&gB_1YQ!N2eWzms8;e
z!N!+SHD+!`O?`MB)hZE=@;~HCh5?Iz8`7@iQ3ej{X|xe?YOtrF60-DhvE2q5juNFB
zORcUUvE$ks8>tf)J6DKGmLR*Qx0Y8gY6);wk+#OMmGH10!8(q@vv=8H0-I5f#84Vb
z7~5KLQ_-~b7qK{Tt%Vv%6brL~`Z9xRWHBo}hT5$bMR`3?wq~ms1$z)#QVFbTW{3ef
z?t+>nfuc6nv;S_J32@s#%HbR#=NBHpwvkmjgLinbimBQ`376^}h-)~2>m5Ocw{g@z
zbjy{eQFc%3Q6faPW?Q!RQFwQy2_mAoo7+_)l(tzqtq2z#p>dBckw`7!w5UO|`8hx}
zPzETGY*2LxR>67}V7lAaO`yrH&*-j~%eoWkpqZNoo6ET^QM<QGerZq%8=wigsRUl|
zFQR+4^SKk*%e(@`p*xX!*HHt*R|ZF5b(o+;RJ*!_p}VUKdCI%Iih&6wrLo~bzL;RX
z=&MAbLKqp+zrc_o-P;3-vA%Udzb&z{sS6sc*S@>k9Rpkxvg@rj`?>+FV=-Hw?8jsf
zg}?ec1pny^ryCp*5xl*at4gk060nOJZUDYIk;2+~vai9r@rt@I<-qT|wSpR%uM&D!
zt5p`2nP}<~R#(JE+#P%1hb@r=XF0uNrFd-M!ezJ}OxzhxTvR@g#Xdk7M=()IOj%_&
z6~>rWvl<Zy93E#p5MTTqRXi7(U?fr85^s2T>p6OvH^e$Y7^;~}Zh*&$B|=6V$PFrw
zEvur&TM}%$C2{&5hdR5qRyrOLJB-FHfqcZ;k*>t(K9HxhZm`J3Nm=blsL$fZV$85p
z5qdL*YHQ#qee4%?x+SE%9YZlU;>!>qHzS##zJ<KHl3WJd(#kur2Q`;NIm#Wk+&=t!
zy8i?52J!@?CBe+M63a3y5p^NVYNEh|th%h%%R~jtj4ZZT+7i&r6YJN8Yp|Ky;b%XI
z%sjL%HRsJTi_YEQ!+OEVp4>e>=n{$iEO)xgG>o&0$xz&^!(7Y5ItFKzIl&fXd+QY+
zr4zH4K!9a{2}`1QgxQI1CD9bkU=#JwQ^7iLHpYpEoNKTjOca+lAtf77(mEEG9-Saw
z644Pc(bGnT7>$C%SRW9@&^I9;OOelKWj{;umOp%z{+yTqJ=6Nbk}KKB6pTZ=gA+=W
zj!gEu*fC1XX_jR?PoRvvk;Kz^3Drru)$EuDg+c@##w=jHAg_$nLamp}p(ZtbAOF`;
z38r#Zx~$CuLDj|i)@Vb9A?t#k%Ds18I>`(?H=u;zwA6~d*3iMge?2>aJ;=9r)E2<k
zt~Ef0q0m^0*otjraCQmIJc`7VxrH5=i!|D9y;>#F)?#W_S?yG0T^5)60X2=-sBOSV
z-PMtV*)UDeB-6F{mkD2x1bH*9L*NA+fmocK9g0BQAHaZ+VICil33+e?*p1z@^FMBY
zXk8|&6V!)F&;v=JyN}A<-i^{oy-wAA-PwJ<a|;Z}!C-|u5Q<kRia-Q6fCQKjrzjCg
z_^sdk4QB2A-tgVp429l95tq+|3FBSfmtY}~X1)fltJ!6BLs14+CnC@N1^>~l1k?Q}
zas3j|E!`?|Sl+GSL-43Vklf4tE4tkjNln6Ud;>>d32N5V;H(yCkVt32W<6Nln4k!G
zpa^YXj{>@+-!y?rVB<Jmyoa1_E}jPJh2j~$;Yd;9Ag&@k?gl^35$oh>m4Ooh)!`o=
z;@Kq6KB(nrjv7Ou2<JP|lDn|BOeh|3s?7FpdW}PwFyuvk<eI_emxT!qJ_JPe*#i-I
zj%(+5j@kw>5<PI^oeEHpF6qQ!<|eM^kWCPTt^|f|37_5K%1z}kZrMUk<VKF<sDbHQ
zUKTq}mcUTymN4n<L)^x_Ar3L)ev9FRg5?Or=tF_ptuf=Qj^?iI9sfyK+{c~hHGbnc
zF3V|+Xqa$7Ozz~*9^+At+@r2ur~c=vo=sy4+!Z6-ccmQ6;e*b>6wS>n8$f8WPTHhX
zup7kRD|U&kC_^$)-#bC?Z(PdjR5~5DL6vaNuu8`7@p8s<jSO`I2u~aU?;ItCjXJ^a
z*n{t!F=aW|VHH~19X31d9un_9ISlpjBEc_W<{V%966yZfGrZe65gcA2S59qFsi7OZ
zAsW<C8m1f`n0zbW1oO)=*e+4Sn{k#WuM{5d?jw<yHlOl77Hk}`T1vk=$9@x2k8@X%
z6}>^%3=tb1HXEAW@;FZ#*5MH(AM&%LZHk~0H%h|xn<NMK7XKe>8<X)XwSgJca`sCf
z_SBsAc+vJn-x)DJ8r5MM+@beIvhLt?8Mi?;#<3jp&5pw>avgsYaS!&_Joz61@_XNZ
zYR(;xf9@6l^uvMmE2i}WLHfjj?PtX~f$vN?U-l|r$KozA<Zc%eQX+7&@winWIN~k7
zpPGIV{N6Fx7^EPJqWjeqLl*8QK5`*oq9Ik1us8DjiK6@za)9-L{d(E_&Q#S}(j8|K
z5ot0@ktHPA)s^u>{EP1-TcT85!u$r}{eCh2qe}fNY2jRwRgD7{Z3z$-1P&xv(4avN
zJvJN^cmo&_h8Avkh*;5LLxvlAP`r3BVaAOeMOsvprvIQCOa?!UWZBZ?OPDcb&ZJq>
z=0$$}bnfK2liy9CL4^(_TGZ%Kq)C-7mB|5EnSyyJF{N77>Q#$Qp%RpOQ%I(jHr-^3
zI2Nl*tx=~MHT#kyo=QvK#ywk?Xj-mo?e68<*Kfz1Jq7ps`PcAa#EBIzUhD?gn=(qw
zRKnDQ@ny_Q9YdB(*>X(}mW}{zd$9E7&5<WpK6-lOkV|PQJyZ%?Hto!rQ+H;a+xKta
z0s{}`SvdG{<jIvU2RdZUn>=jFEM#7txpU~!se@J$^h=wF-+g0`J{_rev}qK%5wetn
zdiK`;lGiTZ{(YjuiR(0u-~WFA0~ByT0t+<oK>q|2RB%C~^xLmL1|yVkLJBLi@InkT
z)Nn%%YjTh{2s;#UL=sCh@kA6;RB^=xKO8JX7GsogMjC6h@kShTw9rMtVASzPAcGWg
zNFs|g@<<+g^6@GqI2fwQBacgCE18C1<Ax|R>;Vlt(rE9ZFWC4i%;csV%FMmC?DESK
z)%21kGO=>=%Q(Fg(<U^t95Tt`2I|2KJlGflp)&9=gQJ3aXrnuW6s-i0(IOH87)Ay1
zpwL4j8Ul~74w|%53;qmrP(Sf7^;Ae%QWR8y3Plx<&n|Km)mTFXRM3_#H55@l+jun6
z0V@G-rZRxR5++e`C1}=DYqbCgJQQKWS^tZ4&2-sUVI}B@HQcy1(M1n(G}T7KZS+=B
zZ(5ZhXr*;F*>wG6Babp_2x{GfjsPZ)H1+@n*s@Z(3g3a;5SSrmO?9^2X~F%~Aa1?o
zwTEoUJxJJtHtlpEhN&e8V|nSdmm!Ty%@*KL&4qa1e*f+D;c{8EAYpAouD8*7Z^ri3
zTE|7%f{4E*h+vlV<=5YzTQb<9pm`Ok<CTwgdFhI*by^^(1)@5lrY!=Q;*$rW*<(F7
z<kKgC^reK2*}fpi14=Gw1CvTNzQHkI)G%lWU??#|5n#|L>yo$Qp1baYHn0R3vMq3f
z@PX838yL3*>LCxzF<(6CgYE_<Z~uexu*410NpC!=(MxwDR>|8Q32wRR-k5K{0T-Mx
zQ)vQOrecqEsddV^O1<=2+juMuN;0{cA=nS!Saj7_AINyjfx*OgiSX9DAlm;9oFLCZ
zF9`U`X$pV)f{cFydF3PTd-C#u21b!JEXjn;na=kJm^&><<8-YZj4Apf$kq-5J=GQO
zc*#Rl_iRTH>gB<DzPnuJMCUSw>~0{6V_f<c*uD%7OMdjTAO1GDxL8#%bDJ9o0Sn>*
z{te`R0&(E?TByCy4bOD$BjNqFHNX1#a3BaI-au-2JAp)Sg5bkpu3{*V8Op?f22tYm
zSfW1m@d}3ho8c5+XgJw<aQ}S_3}8j7h&_XR&4L#M77=$?HWHnUKNj%7C4l7^-?^a@
z6bTI;2ttWA=nH)VQ3PEa2aN52?<ob`BONW_M}w^4b7XS}mFjp$V=)8|0<;Jq1!)jU
z43Z_GWS$)hmdTFjk&llgNFh&|NW^5Ke=*S@OnT=QQ)&&B79b@<lz>4C#LFV8bR;AN
z(#w2(<^!3?!yf}FzE&F2G28JZG%c0OL!uET)fA-#ehI8}UGkL2+5jeowE;@#WhUIr
zR|i?*#iX#afSfD{G7a)gBS!O;ky9o!BeKbg)Y1Zybf-Y@NyC7i)0_f9r#c5h(8d9D
zAo3hvLG`IiYCf}@_WvYEInSBS4KCCI4gF&`2`NoP@>3woZ01BY`a6r#1fD9j082-5
z&|p@SS~JyJBl}1YoTiJXK<j5qL#Rmsaukjwk|SX(rAS6OBwcCP<v=vi%}kgiZB-oz
z8#1vSsmhS6L&$1OyZY6)LG>UX0ESjsa#e%G1}1W4o?0&wRw(W=tM1cg;zs(J4VZAG
zKDZhz6G@%G8e{`bQG*9O082U!fowhal0Yl+fgzyrmKG4KrG#)bUOA*vbUlbA-tZE<
z`frz{wMZH?aS*r`WUpJ*W^B{iLQ1{xvl00SLu@+`)AH7?MJTAg1lwDWH14+p`Q`Ek
zg4{Anglry=EdOsC2i<}!mufel7HbO<T!ze6etq@dYuDP=MpagXG%Rbaz#9?D3It@t
zWgRd~NLH$njje7a$Z`z|jOB?}U$yO~cLzdW_k9V$TV<1h2O?mu%Fw*oHL0aM*4(O1
zx4QFe2moD+kllXwv=PB@LAL9x)Kb-V?=`W&xZBzZ`$@g$<*$R6Dx#*s2!@qQgC&gk
zIsOX7zi{a)<X(tg8Ty!pK<=m|l<-TB!7#{2j-OaZ_SSA{f=VEP?Ut(+ypB?<$3I50
z1&AyVHW;}g4p~DcfB`8t>tzFM_}u(_N9Tfw&kVr$fEqLbj7$LQ3w5ruBHm`aKUbnw
zLYNJpkN;rVwc-I7f6hdudY1+_YXV?BphTS&&08>AK+6nq2<J8^W+exc$wKyWMA~3z
zgACb_X@+fupBrjUd)iq?xWwl);ReVqx6~rpajSqq5U0eC*S-e!wt7A3W>c7ZWq1QH
z%ut3hpmEvIrjEgSusC2`B3>RqG%!BxY-T5N+rJLBD7_7Card{?4FRS>&TIi%Gvw6_
zq3V@6+vq@RP;pN#=&%{W=+6awSj9qis7LB#DDxW_{<f+phd^y>V;g(-&bPF)JMWnt
zdmza+cEigzYE8~s&FO=+$H(_<cGD2!*Ut9K)BW6XpWAVjfwwRr*z!<y`g1xr_}*r&
z@&AJH{B!Y!VygLu<f6Cu+e`QP^ni|VM_abv^1d;Oa(oaZ*jH<itmC}g5bJIZK@)iJ
zz%P+-5UOs>4P?KB*$J|SW=7l~aj!_&JBtZpV%Z?Ta0A=&ATtZh=4XUAJmNVf_K(%u
zadfvk4cFdwV7&dV=Jvp#ErEGbQ34Z3_yDgl!4W(YM9=%e!w?<~mX*357;6~9h6Pec
z%iKT_mv9mtF_DKGY~To)$i#Xpq6pU1fU2Y_mZ^q7gi2`Q%5Pwg2YiqR*n=JN7GQiO
z4*$a*e8E(RSG<WSpNF#xr2F6ZB`}gu>%Cpx?eOpW_No8b>t{dYY!Jc?l<<4B)Bh>)
z!vn{|8pzX^jVZHY;XnTaKx1RT|1+wJD~K}Ky}nTdMTnOL?7s-q8cnDK(&IHv=oH+O
zh~4YG{o_CfOu+_}Kp}It4-COe7{P&9KTy$^@Ebqwk-yAqzxO)`z<ZnD3%=nizPro2
z;$oZu1Qib$Lg6F6VL?FE<1f7PCbJTVAf!LBu|P_|z<5zRwwu2I%(KGtz8mDTDcq_A
zbSoR&!7%K>gZQN%bUCr%9~Eq=3hcEm%)n)_!xlWL+&e)J1i{jq!Hr=q_alh=vp(z#
z3mja+W#K|EESMN9L>ipDYpT3Q)ImxlL=im1|C+-l1imLULW9V{8Z1Nh>;JkA`MQGm
zfJ-nY`Vok(*f%;PvqV%ZSt^KGw18S{Ikm$Qz3Zr5j0ji^JohoRidZff%7isg0^>=)
zR+7ACe8y;Gh+{Mez(JW_{6&Izx?J2msOW)3BFE7vmUJP<H9#|wtHJHrGZEsOIh2Up
zDu`e59kyZ=H2|TIGro*?B7`zFY2+KnW2-7#saU)<XM{$=8;C*Mq;9dM+mpO*oC;g4
zMuwC|Lc#>eo4~!Pvw7?<TdS#r#6~c4h(Qtph`7av#Ds{fuxz9^DjBqOq{oz8Nt7fA
zl^jER1Tcfh$${9(LrNFE8J2q-h<v2Cn^a1jTuG5MF<>A{U>FvRy#GdlXvvr49*{f;
z<m<?-0+@Y7lwyfTO%TR{!b-<LpRlaMVW}jCoIN8dODpskec>GcvO?zq$B^_$g|x<o
zl*zZONw>U8xTGUM^Gl6Xwa?j03+PI_6eXY(2%-G1tBFj`TFIkasd{t_sWd*vyeu$7
zONlJ80*cBX8<vW+09zDI^x@3Y<VB7IOMV>7l>wNl{7Y6eoBik$g7^SSpoHzPgmp{<
zOjwCAyTzJP1WG^yO|S%N*(~51&f@eRB~zTO7{)pzubTQz$TG8)8;RxG05gb{V)+?R
z6i@Q(NZ$m`wK53d^q=WG&g5Lq<^&*mD*}2PjbZD;g1`eMOaDE06o@^G6&Ttwb2JDy
z06Gh>1k@ZchMG!|0Gu??rea}}4Y0O|(1a;l&+S0ZI*gP(Qv~WL7HR>-_asi^tj_WL
zPzrp559}-d`T*r*PUqA@mEg{0)T%vmuBRl35FJso;!uK6gEvzGgVBVV+);*5Qj54t
z(i{jTMbLJXFC|OR?;4gUEr=}jEq9yJ#8c7q1kw2c(pZsE`mE6webIx!gOyVR2OTL0
zeYoo^s2?@9&v4U@ic<?9QUW~EnzYXU@)$PFP?LI6q@2<Ew9%1TQDXxZJ~dKIK+=JD
zR6k`XMh!V&F;g0SP8Y2N7!{>0?a8YNRjpA_2Gym4sQ-jiYn4vbPEpg*F||{m@=2&n
zRV6#o_*Akw4Y|*73|mc8PbH)`y-<G~)Q-B;^2|-$+|4<9E=y>nA%YasR81EYHBqV~
zNcw<0xWs|Dgv9hkX(g35Xel+Ygc~^5@}xL#<*jF39vB+QWrSA?a7LJ**SBfck;sE^
zO`?{<)|J{;Q2a^L9JXQ8)4W;;09C(tM8gN&GQRm4p(C_66A1BAKYzqVN$VRW*beCA
zKK?2LJ-P&r46@LG)`+lI=)6#ni;8`v)|0Ktg4lqr;K^&sR)D41do@|H3E7d2t|k?w
zlwG8py_zzxA3Sgft>USn;>%gR8l@!*MHIP+CI2)?Qd)XaRM)7smo+xuQQ4aPS8na7
znSC3HtXS?FmU2DU8%S5K-5{YgTZ1jyOgLI3OIvjP7m9mVLXAUOeVdZh*06oSi?G*L
zF<PWu7Q-zwgRobBt*M(;tg-FUq_YS^-MNUE+B&ORs2vEcg<OXM*-8*uBn#RttK6&=
zIepa^amB-3@><8)T!HA^m>pZVH9ozy2*Op?3vop{ssx?Iw@b(bDv1u9t<YQJuO!&M
zA`{*rx)V2(SU@9)<n659{ar+)-ix@)da72Dpaco@0N>@&gGe*xrNuijUQ1D2QX5#8
zDcHoMDukWV3tiYwxll9s#%cYSJm>-b?f>6n5vdxy*odfsGUzl);E0YzvKkP*GB|?T
z!-PQsU+V>>mdZ?lsJo6J-{GC5?Ijt8m0V+E6Dh-4O9|hCSYS+O;0N9wH;A#lomK3?
z;O8>oFJqJzE(;gtQoeQC94;8xRZa8qzW()J55(b)(5@eDgC0Jn3a%;{Mqk66vL!pj
zUos&8wpfaV-srW$7`~G$K3nFg$LE#UAFkpT7FC0Q;t@tp3Jzn(gP{WS-Vi=s4+cf;
zT4F@x;fN68A?|@=aSbJ|V}U?n6&?Zz{;w`>S_DmE^U~nvMP!1IVL)DDz6pyjHdrgf
z-ihK~-IWmD-GkFJh~zb<4bTLcS^q9JaACR8--8(C4KiiR@c~)(0jfHJTJgS!0A(KC
zy_nEmg81T*xME#y30Gz)SjIP17GOmh6oPdb-!(BMlO+75U$?#AWJJ*K9Ed#tI<`{g
ziufh1N?@(>DqhKiK^o?Z5UB%wFeIvoVjihu20{Uz6rV%oWF}z?Kxcv=XM!+iS^e2W
zskcmMXMN@xcOp@Qxk5IsT!c0aF9j*b$>x7fV}%CcL#ii-`sHC+XNtX@R4#~B_LTg+
zz3<%S-i*^8m}Of2m(SqndA%KzMoLU}pO#kXT6Pv*K4V2Lh>wnBfAr;n0OqYC8yt)X
zk?QGgo#&Aj+&(-VhF0juDgTRy&S=S;R(^i4?Q!XW-s#fBXn}a=Qf3sbz8zovBdX@C
zX^m;k^h}8^2%+xe2yw+<syYj}1fwbgOlUU>%wKY(5`DqXgRpC{$!or?mA`I3y0(BC
zP+!68s5RIQzNxYe(54M|>>n$ixvq%G4(z)o?2t=Gp<Off)lZj6R;IMVsan1I#n2y{
zGMpNzfk1=&B~oujN>G{Kwyi;}sswfVCG^Q`#j@-rE1yaLM#<akxaw@g5^hy1AApgh
zt645|^pntL+W)FL-k#O%aR>?g0KHCC;|3Pst{O{dIqvRF>Nszt{BATZ2=!j6ZUZL1
z(W=)5t9?Oldh2fX*8e4NLbA$+>`*K2AB&Xfww%y@?!HxQ#+L1Lq3y!{nD7<|2A|ZK
zb|eKwL}yuSDYkCPq-fA?weV!_$o7cxW}XsfC=my<0uPk~zq<ryYTVLqu8wj1wnBi}
z4#((kw?c4^$ZkYL9|2!7fH7V9E;GSy70*t*2tOnpj~o~0hzS=62OkIx4{iWINVtw`
zW}PFJIsz~E@^sM`H@G;5v+g>=1SRN!B)Ei2K$OU>s4*`VET7A~z(!{Jaxm{hALwOK
z`U*uLf*U{rOjy-pk~}{LbU{zGF2{3W>a?E`b22ZVGf(q1Z}ZJ#=Jv&)=u?6lI08$!
z1nQ_Gar=NWnEwrGeo$+EuuS-ZB<K=CTJ;a`zf1ruOhEG?=rL2Y2-$XnBj|Jq`V4Vq
z$1?DMwf&s!S@bU_l|v8oLI0sK_w);Q^p%P8P+Rsy56Z`IU^+7?W)xXUXY=S5C1lTY
ze0vIFFBWJj7DaGiyyjqQop#qd@tV4GM%U&va6Lts^*&tpi^GKeQFnItcYLngkmL7u
z*P2YYgfAF^|4Z_G|AJUo0)00&gBN&;4|sP+Vufe;TBi<cZ+7>2c6pz4H3#>qegkcn
z$YR;^n5}gsxOMxvSnPy!Xb&k{$8{0fgL^-Md?y?13^|t9;d^><I`a0CxAa^5_*K<;
ze4luMVE=lacY39NE~Bq>j+hjbw-Skj@j9&dSt59V@Av+B_=unQvDo;A_xNnrdi0^Q
zVJ~)QqIr4ma1%@Tg-`pCk922`_m(^RyYKjuPkHnyr<;#?JvWG{&+;AFa;N$w=v^;C
zpESqwuN%nNH@mV)(L8qH$ao(5SjqhMd;E_f^p>D}3HlsP(Z-IvfzyApPH}vR^-Qmf
z{LYsM%f|zXTVG5k?MUGOyxEtH>48Se1Gc)8JzMQmPn+k>gP`94KU+FbxdEY51mAqq
zZw9x%Nta+Bsoz%wA;1Ls)?yK2{mebYZDTvtPa4{174k>@jaj$kw`kkX+}wZnSrvWm
zFaNaf=dX2RgZ%~w3j&W^0tO6^2Z0up7;I>;jlwdT3@Y-WP$5Bsn%Hc(m=V~<ju$Ox
zQZrH@!-OX-d<-ejO`0JEfhoFiaf6zPz%D5n*^;BjnJ!0`90^k<MVkt5<Y|cKgU^`=
zFW$i8v_?>kW=>YJw9>*2N)$g>db5&YkEjNxE)`3YtXY8)DO&uBc4XJD3X7ghxw7ij
zm3*l-T?;j$&Wa=F(yY6*@WI0Z0k6f1QRr5|CQtqpi4vGf&O(6-#Ho{~!lN^5W(AqK
zw3~*CgkVb3nyo^=Mq{p4st^e#kUiBN46Qn8YfY~wyHy1DV&1=ypX#k{{W|vS+W)t6
z@9zCO`0(Pj^Xq5+Jo@wew)^J3p@(OILhxX3kA435{9obgmAsO_cmADZ-%SAOS6UCD
zjr4(n-4VD{g9<VD-FqB#=YfIUWjIm|7Jen*NDnHsp@bq{_g;MYVVL4b7=G8GcQ=4|
zk&9o|c%VQxo>aq(lSQbIjxDC;9gljEs1S@Rq4=SR)=l`LhbKMxSC2TlcO-UL%Ba_t
zMzV<Dmlk}`q;)}RXC{Pt6}i%wHexAIlHINOS9Njj*khX?{+QjHR{HrTpn(cH=y>I&
zcW6KB5xOX&jXL@$q>)NGDW#QKdMT!vYPu<>oqGBysG*8FDyiKWiYR)DmjAjctF5~F
zDy*@}IxDTU+IlOlx$3&>rl+E6o~pbGJ1nuq8hb3V$tt@nv&}mDtarZt8Z5NcT6-<F
z*=oBjx7~XCEx6Z7iz>C@ntLv~>8iUfyY0IB?y%z`S}wfx+Iug)`Rcnbzx^&N@1gYi
zJ21fo8+<Ur2`k($!08FRFvJl{JTb);TYPb)4X3K95>evVF~;5v!3LSyrBTLsBbVH2
z4`|?#h7fw4EYKHh2s^W%I9pe9mM+6wt<He*{MFDa70qeOFUNdf(m#6_bhA)jBz3(_
zFCDVF8ml*=8F;WU#7Q2MfrlAC_Rz*~Bb{9d9!FFs1Tbk^AU4^1TK_Nvbzi|PcMn~E
zeNhj12tIh*+np`9T!afg<aJ{!&bS4Adkr>shp%+R8g7(rX&Jz*j9n!ViP!n(|M^XM
zM2h19xdlkzp$HqS8>xEX9s!d_8hZfa_DZ3@gh_a7*FKW#utV-R;j9-Q`$fnPF1td$
zU$i{ym}_pgK+*@UI`3`(Z`~2M=e|4FlmCadhHT_fhGlA_-yQWWj=gzx(hDT{-)gJR
z{$i>R>AhY6_!R-_g>Li%-04n&Kh!1eaXt~B?szx1`9(;060{xeB6t$KRmlSO6O;uj
z*9Nv-@O~p4-Ujpbl@H=YbUC76*kIT^|ItW>XR=`fljlCfjsNI<Bcj~}L&zBjk`HU?
z(i*S^0t`y9p%TFO0*xqfi8f%O68^bCY=E(uiwt3jW>5q$&=9~&L~)8$oY4j>0SxH9
zgp3$jViTV@qCC)%j%q9+m$JA;h2+5!ZusLL*?5vZ0y2<qWTF$Hm>nz{WRC)A!|j@a
ziP8azboybTcP#0h@F7x;eDq@>AqUAfq=6Edz}_6|*vBH~2pBdKNE+BEJpy*8i<J0c
z7)LV7Ql9dYg>-``fk8@BhK7)#)XN8VNlb-6l8(TbWc@_f168iFd*3UdD-{w;C3aGg
zlhGr0!l#HeSRxZw0}D90qs(6BNQzXnVl)pKM{lx(CjaC#=S7SO$p2mQB(yY2Kf~tE
zGup131)XO;LAg&FWfPV|^1wjhsSsP@Qj83Jr3JQm6EzCbgDwmdMZsuM?1VIz6ZN7<
zmBi6_uF!=LHKRn^2~+>*(~vTKX9rspQJN~$rs!<sfYO=DI^OZ5w@m3pwb@Z4ZVQQt
zn%gBL7#rWXp%Mx4fF<ao5K6Qme2%n$A}Wy@V0`HYz(84QtU9->u4D}cVWU~m3RS6k
z?kji*Xmz;i)ss--tJ&$RjiNf%&*@c*oEg#wGLeT$X>vT6>`r61;{n0Gq^<%1tX){i
z!0p`iflJMv=>EB#u#VL;43QuMF?$xxUPQImvH#y`C+ZQzDwd@u>Fn>ox5lth)&f)A
zYF7=boef|@bQ_=qC0ZL?zg8!<0%2fPugX?rif*!WRSI#9i`>>SSG1|Y>vyXY-L-0U
zu7k}{Z-0AP<|+|-<Hc%u!7A3u#wUCob?a`aODNLPH#_|GEm;-v-`KDSza4!nXwxd)
z_`Y|#>kXh<;j5hn$JezZDePA<Y#rPRWWWJ_<7b)LEvG6<L1rC}Sy7h;%U)zK3dw|R
zl=vVvWWqBk)+URe3*-ErgvRkPaopGhj2Hl&Kw`gd$HfA<1d+Le<N{J9$VFx^EHyD)
zfqX!ADPqwFhF~8}o|8sHU}F!KhTsorc`=slGLZj-5FsF^ZOLCL%XmI8<dNv+KVlB;
z_in&O4}AF~Fn*(N;QSRguSC!*A@qLktPn$6Ck;|oo1&#O=iGt?dUd8zlX+<5G&iUS
zJPse4H=UzCkA%@pR&kCa7wNfWS|FZg9H<q7=!*zY&j6ha>uSxq8^e;tYz9)RkDTPb
zfM!6zK(%lFEaQt@dL%>GvFyT}U@z~P)L~PzpNSkk0+~tK^-Q+5Q~m4}M|;)xi!`q@
zYT0zJ*f+CY%CT{59}i&r)bf_~ur;F>QA=pj0`c~?nO$rVuZzSh@qj1O;FaeZB;T9H
z!+b5k1~<0I-x*!_-5S18CEO)!7WX(kaoqnt?QB{Ta{bDC1atE0AUxzL-#3&k&;~_h
z$9p$$;xmh&5H<i~B*GPwRVI>&w2>|inE=TJJpjpxR048Bz<DN)Fy;jX9T-E8i06!s
zbila<7){5fH%<N(v*K|iFP9lG+BbwUya5<yC_@?A^K^qmeU_N$ff{$hK&6Ak>yU%^
z&M8jzeXkteWfzFp^#*mRi*E4PnfXQLZgs}5WX0|C9^MUd3Dm8<?Qf4e*iW+Q9(4Wd
za_PB3IN-?^f0ge{XPo0tqVSXYTk>`PC_@$5xr?Yi?1leb=Jo#F;BS8Tc`rUJG2X?G
z18MaY_x)Eo?{>KRX7&vCH{b;_@rnPkefpr^c*o_lc>B5D?=)Jv`A1axzejxg$#H{c
zvM+IpTR{HqS4bK;&SMMMp7P?SyZ>2V#!Z?4E+3I4p6n@~#@)~QX_Er_8v??d1ft!@
z*&oG8-{(;h!9k0`odgm9!_v5cR!x@rxPj<>)evX`LNEjpR30$+hX|rq30}k+ELQkU
z%?nn?2cnq;U_yM6+*bjE8#GZK@Q??wl0pa}5gOrdfFNEVAyGgXLnJ}XX+k9&!3Pk*
zN=Y2*CE*q+!rfUw4XhaDbdKN*0TEP!CbUmjrNs>>!X<c!2Vg=T+`tALK_+AZ?&$>>
zro|Y>n+2F59-yHbw$B^5ftvsMKptd5kL+L)4q+t}q3!g*7YL3KI?>??gby|k94?U}
zC<5xtVIAIK9)^|`Vj)3jf@HKISioVFq~HnyLkqT7CE@|%C}AYZjeXVPEkdFs0tp@3
zAs*@>En1>pOd&9i;xO)E4>H&(en2W7Mj3P>C4Ay$O^*{s;Yl1~A}-=#gpYqP-=?wR
z8^&QV+9Iuu;3dr9+yo;j65~oZVm*Z;k>TPmzQi*|BR*asG+u%#?jtJt<6*=gRI#H6
zX5&F#jXlcEG!{fPf?{f@qd~%=2e4p7P@^@DL=7$kkBOo%mZE@tT{%VxIl7`kaH9t(
zA|p<e3Ra{nHjgU_!43Z?0UferEY9L{wWLMTpbd7UJ1%36{3J;FmPF=(2@<6Y8s#G{
zVLB$|QCa{>s^mZx<x?)?SMVE2K-ng8kxss(Two+bZlJkz;6;4EC6w1V2}B+w7vyQ<
z1~mi~p2P-Z0!DS%8mJ{((p*m3#0{1PT~>!#{-6?NVs#i9!ezo5C;=orrGP=<VJ7Bc
ze#lv#1Q=x^zkwkXiWeY)#X)Fa7Yc-MZ9qdk7uG#x7YzqP_=cPfhZ?X`AOZt3%H?R@
zO=+GK6Utf0QQ2g+5@IT*5GuqM90Vq0&d)VwCWa3lHJb&rW@vOyXl-T}iB4+vo7^lP
zFvKOz2q$rF(PRJm=2HgeU2SLc^=4!W1ao4Y=z!;N#>Q7+<^`SS>FptM(i(Karof?6
zVCoxSdQw~gCotTlTjmCft!8$HCwmGQfUc#?=_P!=CNt*eWSo_M0%&)ZCxCIDeO~BE
zJtu~WPFh-kg0|&??532EXoddfeNtwE<|P-wC9(ZT3i2h7HK=obhH5(5bW)j<Ng6#_
zCw6k?9ti;vw5UP+==EKvvuT2iG7gPqXp?&AiY};K;-!?%jnzRWih@;?is*uP(uanq
zUY;mp?ge{c<$OAui_+P^iRHPFC6!qMC3uD<++`YI0#pbfnM#QwPy!lgf+fgKWLdzR
zW|W;?TxtJU0$TOuYnljI#OX@l0sTFh*_i?3bPgVY$Ocd<)?F%`en|)M8{1jo=fuWH
z;6WyMrq6xhkP%4dT#aaEh8yVRqIqasltzYL2N<ORt0Ls9?pwY!s%K<sr52GH(1b{I
zj_h<0q^?$kC_=4TfM`A^UMyU!mYNHFz@GN$pDIMLD#Eemm#}WCKy>T34oSG49`88o
zO=Kv!o*wIjY9;uFy5irhD#WtV=d`A1e{`yT7ABFY!9gg2_h<ruvYt`Msz6wR=(Ou=
z4#}X_>76dzyxQs>0_#NptSt^KfS&7XcF$*e5Vd}6bdV}^EZoBuDxSWnqe=<CmWHOH
ztG@qU#K}gigk-CqvW{}5QKItL#6oL^R;$d07QzZ@Y?1_#VJn~BEVr(yo+j<K)~wSq
zj?R7t<MeE_cG$CCt)S8=%9<?K(k!&TY{w?-*Ba_o#@Ni7Eyr5w2~OanMyi<D?9&P;
zDzRy{xG7et6(6+?Ahy9`1t@xH)d%FkKVHNoj46onE#>&Fd0N5^Jg%jVoCO?i0a=3H
zR$R=vtzIDJcW^F^SZ>|+tCA=vcDTW*UTm@PT&hZlRV<Mbct&JRTGu&*R(Ts}7A@5o
z1SPyK*0qPll|fZqLU0UQ-lCG{HkN4q9ya-va@wv1{OswTB<jtsQv@!R5w0|{Sn~gF
zE`TDhgnotRI&X%0@9%8@=~{sJ;vT{|lIe~_+r@0yfbLcL74TMq@cwQ&;elB>oFh^1
zTAZG5Y;WR*&*J`V`nHJtE=K<DFZaGg^a{lL`ql$OCF-^BMMQ8ODDETuEs!KI0$(op
z7A!|bNCp$|23xO~U@!bO?&ID-<o?^RWvKslrUlG!eAVy$#@J*Dt_u4Wc%ks%7VZvT
zZ{eze<3jH4SjGXPZw!l03HR;aK5+pz@Bl+`^91kks-*_Y90&WE2qRvZGS~XH$ZiI)
ze<-Kjj@YkkOpa6n2+v<8$W<QHB^aC8)gWAwB>_SPUL5n$D;=Ff(A`DoF%SRFjT`R?
zLlp9LVC7bI@pe!`7kj`Ve+MIHTuwRgNUWHJs4l%aQVo=WSWtpW#BPj5Vh@}$Dl0{C
z`5f-<2q-VnDCgLu)c_@6LKz&v5DWn(?2#nD@k&6ljT$Z;TSp=@>q)HgML@4EJ(?+_
z@+m7tt2SSZ<>-+Ob0Y_{tXcDA{Vg&lp>*chI!0d(_8{)nD@S&j1vAs5ea4>jvfUUN
zE!#3K>#`W{Xr4kx9ys$eV{<iY-zD_1TE0>@-!6?zGRxWXh5c<hKhmQuw9Ga11h>JX
zO&majXkEJV!5MU3b+K|%v>d-uG`CWcHE$pbGC8wy_T;lZD@8Lqvr_-W^DXD{E}z~V
zPnsL7^GSrXmByG(<MF?hwAE>1Ig8FfKd<O`v>*F(MbEKb05cqaG@R6OOw+ScL-kiU
zwZYDBW_4LlTO1mvaZ|1F)(FHNU_ylGad~ZkCTN-?u>np`?ng!9N}x6Vt@Zu*0ABmR
ziX8#u$n{s0wcWrWcvSL9d&fWn_F%^x++5>IknBl*k6X1Ub1?)@%W{ml0o*FY9w4lo
zwQ^=vw(rImjVVYb>=9yL2Qv2n5@y0kVTWKF^GIxVS^n(DZkKOmw)VaC6y48ixAsV+
zc5mwiGRt<qNmFpI#A1^*XPfhD<7;ar7v27~Sr=woyC(WFmwo@WEv?~p<Qz9$mxf(i
z0CDT+N1b+cWcODfvtwTtbgy>}w|8wr_jf~Uc$4*XuY`G5$3QFRe5>_vxb;Zvc66&v
zUhDPl49R$l$<J~(X6wahUqor=c7TfxvVH}C8}3o-wlo#^UL*K&i%x=fwm|fEc#}92
z7Pg6NpLIvL1*CX-?;%!RCfr`QtbNp1gZ15tbrNwTV^1yzmjNcQh>>*;>ZrC{g^$i1
z+K&hMYC#T?XI77kA@c#D*{y+Rbdk#u$Oc&XNqG}PL^-rJ$);V9TZL|HNYD+y<Co*u
zW_*C$h~{RH@@HI-XQ07m0<33?$(sw8oO=*-f5sNAxm^EpIm3BVCCF+QmCy!=NDWN+
z2%m(VqYj=|7HUnJbCm|x75Vpi5TX~+mS6em9r{V}&Zl>|Kt#GiOnUZox&)E=z@fT%
z)@!5Z+nJx#NHeW~f_YZr#h-JeUt!hI*0I3RIdrhPtSz}n!1{9Ds-Ux+CCF;27doZe
z`m{6LWowqdT>`S_I+QC3p=TUDp|Q3{1e3p}rk~u6Q>{WMyQ*J0v<fJ(XHTy)M4WG?
zkw<73f55k%`|0sJu`v$2XK28?(74M*x%)V|i$t`8`>`jyybIhG6?`C;`@&<nc8e~O
zFdvbR$fiF!j(>~6B~~6B0m+j*>V%IQtex}SGm!rXuM+e?5?sP16jQH1P|9~sZmK&U
z)x3l#R>_+@Ogct)7?}`cf+7&X4FCtmZ50$2{m~~qCSaV%|2!^VSZ1=kd<YXR^IYau
z7EkoR5m<r{%lr_0Kp8mEX4ttK9Kj77K~oG#pMzB<e8HF~K_-|hCSZaR41vPIqjjh~
z+q->!^*PU#fd{xSP>G4p|2*Y5J<=<^?WBCz2fJ95UFQh>3PWq&?|t8gRwi7+7YqSS
z9=syVecj(Zdg(pP%Y0~{{18mOLO4FuFTLx-zI+({<3~OIZ9d<ZlMB`Uv&X*HkIc^z
zm)`fj-@hj2OEBn*e%{B2a!x(tU%Y1;KH~rX+#bZl5tKgkjHBt#B<d@X<Oly7-Tdkq
zKj-^Cl`VeBqfYj}KKI8y?$3T|e17PUzDSsE^W(n*@Bi}ygav^|fVmk`2G|#Y7CvOk
za|9y9Ap#pdjCf?C1tFOf5xIc`lcj|Ml>qZFav?#32o(zSa0!!=9!V};I=QgqO_U=`
z_E@+9Q_LZ0EM;o5P*J8YA8shg<WpeMrA?m-WCN^>hZ_iisc{KYCQX|Q5h}u11{0gF
zF=y7i`I4<zojid-wE$EoQKJI!Dj8bz=)i&p6OL3#xTQvp9zlvsIhf_bt68@K>-u<Q
zVSyVvehj(Of+nw^Lyty@(8o@=Vcq}Iol6>aY}vDE*S38dcW&LgdH42>n_oZS!-)^)
zXQ8BJ<-h_91PM%&64Ih~-oT?APmP5_fFX(fJUZ;2+q;uazMT2UN{)9^M|mR;_76K1
z0XtGXzGXb~NusyhJSzKObI-6#EYrjc+uV4{63Z;H%Yq&%u`G`dfKiL21}&o`BMT6^
zVI*ME_(=^-EW1Ryg>In4GDSYH<c->t&=437$pQw%g+%1b4doOO0+SJu^DjMt;FAxf
zBMbxvkJl`y@4lVZ6VD{jR&4Rb7%gxkjUkp)BuBnVJTXNhuhUPv0`;5gNd5RrX~`x>
zYLm$~Ew~aG7hzPB$+?s~Fv0&hS<Ev__1GJUOD|gtvp*-#TMj^h2;|X6AcgeM#5_|2
zZBj8aMKQ@ZUjwg9BL~$}%SV-Ku8d3-*;K{+>Rc$%FT<>LQChpS6(v&X@-Hw||BDq#
z*GThq&NG=z6Q?R;8&Abk3-y%Dkv13;7*Hu~(NYza%`Vgf+1S8a?3lgt+jHrH5KmO2
z#d6PukR54WBW2yMS4^NQb%P$c4U%4c!<+M7I~VG7B!n%P(#mvE%IUX=C7zh#iY>kv
zW8jM0Sh(YCWAwHSdLVZsA@HCL<k?Kl__vW^GZ-b8b%VJ!rf^%($doB^@~0j+*zE?M
z84`Lnk$=X`1DSPGdZ+&yjs}h9-##GPf*PW}Q)rP%2F+>Mm`15<(!O43>e#~G$!5~Z
z-py*3RU2Eyt7i)uwzI2ynd;bXkQ;7++9vI9uCLZP;=bpGO>2wSCXH^!c}{xkof0Q4
zY0@T_-0;{IN1JNGjf~B3!Xeii^vK=jEA!J;U!C>VU0*#oj*Ij7_1bN}{dSyj-<|i~
zeg7T!;DsNa_~MN}9{J>zU!M8qNsC=}<D8$K`rUM|9{cRI-=6#Kz5gEk@WmgWeB_~z
zz8~7lU;p<nB4r=`_~oCU{`&2|AOHOIr}+Hn)!!e00Tkc>30Ob_9uR>ERG<R;C%gYG
z5P}hu-~=gHK@0z05Q7;kUjsSzKn;Engdr5+2uWB%6P~bs9Nd@(QP@Hkz7U2nl;I3%
zctRD<u7)|(;SPD&Lm&PSh{L-faad?OB|ME{M+~BFhQJ2T;U*1b_)Qa^SiByf0S{>q
z!o{MPyenpLi_`l8hAKA3i<!|kU(_OOx~Q8rN=%Jm{9PN-SerM-uZ|0h;}ZE;yCF(X
zAU!Yx9@x;Kg?OM0crXLcdeDYaEu@i^z(bTs!<|wgQjtU(0=_B<j8X}bkcR959!Ocr
zN#3TBkMxi!NeQ9YB$Aa70%aj_GfP9dB$12c-G?MriTCA(m%Fj$X;_H|S0VuqieQ5)
zXG4%Yq+$OL0$OD(cjHUYY*KEZNu@T~kcTp;%K}GOgBx_Y6K6tGnt^mAH@$hTQ5KVu
zv*|%MziG~KmQx^Zz(g9?iKu;wt(d1w$vx+yPua|~ouD~qG~=nBU(&{!wLxe-%?XTW
zGE|-cjpr~?f=PUmCZYzlO+*7pPjDWz4U%kVgiLCicd~M$DHZ5QCVDQB!bY6rbW%<~
zN}EW|bSK!1nM_y8)4ZuBmpogjG+}8<S+*3C8l@>zr<%~H!n2Pf{A0%iLkTuaC@~iB
z03|Nb2251KPB-wEX%;es8kwO!Xn>6yE-{j^mi4SO+dzYuNvpa(#;ah3WF81h*aoeX
zaclqGNggcW2FE(Kub^S<V<8LJuWE)i1PLr=#Y$GQqIGw{{0&KYBU;>O_OfA}EM+0o
z24K7)4V1{lQ4e{cg`@#0t9@)_XG2=P@bzPgO;VoLP!u^@z_o-01|~q}0ow`$w?-1K
zVTfzo!4{UW>68sY6j9tv95=b~VJ@xysT;LghOJvF?@oGv-Rx2_yvx1SdMnyp>)Q3X
z7Kkord^^&I*4Mko6>EO?3p)26*0O><q-XOQn~>61HYDY4fNkSeO28Eua(#?_zbnxL
zr_;h1*05kWEXSLICcficNQ$dCk`TugG<&U!i{A?46<buiEnYBQL5p89?pL>!B{Bbn
z1NmV}PWZk<PI7y(i{Pw=aI5JP>m?}Jqgz$tBp$HD$reJ1HV`DePpSm1fMGf#VFgiG
z7VDNlvj)pV_6BJFN|kX$8azN4HeLqvPAC!P+Vq)nR3@{IUqa_AXPM2oGi`7B3(Pv_
zrqF}#vY-1y$y;uB#(bu9Zu;xyOw&fsm$4Qm0<!^1P{J@!smO5q8tU`{rPQZ}&7Erl
zYre=jC8~A^d3ob%l$=;Lw9Yj}cAZZ=^M%y6Mm2SL>(FZcchs?7_G6k&8(~k`(6mys
zmbnblzyLeKrB3!;a7`OUj5(iWMz*wfb8Rt`nPj#m_q4&CYGUWX-V7<WxzYc<C3U03
z(-1m0yoarCeAmVe+fFpKK?CR*kK5GK-pRG)9r2$)yxbE%_LD6bWskARlV|Qw8Xldn
zFlXXY1ko8AGO@KdkG$jp83M{bjS`ke4&<t2$c}J>uuEJDH$R6>&TB*TI{^dcI=%}<
zm}xpQe_#k83#Nb%IfTgeAdHQES=3MSXsWwJ2u?D(1%ytTc<BaWJ1P6n!!EY0M{4FI
zXQl_*KArRy;nM{9x_&kBFlX5vC3v@s-l4{GyIMW)c?ZVc)6jQg8!57MCt9aOdV^+L
z2<RwjJg@KMO2I$oxM|ns+dEo!_LBbao>zS6{|=hUz0B}pom0q<p7j5ip}z80NB!po
zBVZ389wjJ$OpbUT&c(k?bFmk`V2Ho^$9G;fn<tI*?P~gkEZ_Jbi+jznukz_TzWT3u
z`E6q^`jM<X@q<4;+6-TO!dt-o>qiOZU0-dE7trIb*9=kGYMIQJX5#vd4gRX5Vvql1
z&i|~%5|jX13h@8%E3C-xq+|nOG(n1DLu5GR0%yayA}|AGqXVIfJ=`kx=8Cx{WVwn!
zGJpXkM2#V?!$dNnOg<zHG66c`$pc)=L@EJ7ga8FI;Rv)2ZD0@>Wbj6ApayS{rUnHV
zcyQ=2%K{lkyJC!)4&n`f!3@fv3>YN}#fAx;a65i52mxfT7_k55df*HDs#6eRBshSx
zMxqTAp{>f`3bSwvIVHW=a3S0<0-*~S&Lsz-qY3Ro4+Vk`Nh1!)s|PgX5=1Et@$lC$
zVG&Q{()@4&kxLGZZ4$GkLkiIX4$%Uv5DT@CQGC!cfRLonP&vSGGsKXj0&xckkp=fq
zGepr2LFP}O!wt+#zy9zETjBsiF#%ig6vt2#8PSkTu?UUPLuSzsF$)$4aU}3S0140&
zL2)3KL=$!qG)V4Ts8KSk(HTEcGxTW_8xb}V5fL*nkREX%z|krQ@VCqmLg3K?1~47j
zF+$u?zeaEvZIKicW&^vf4d2ibZ=@hw;u;OI7u6*fw~_xB?+^db2atMY{oH`dUZR`a
zU?&h}2sEKdO2RvKg5>N3BfnxJM`8`|tpP`(B)>!cMgkMM?KTjmAigRObZ$ac>Lx28
zCt*^+c2YKw;36~f5>j$D+&~j5;Rrr}2!QJz$I${@P!S}tYDg|45Q3D3fCwr<6PV@P
zeBuTa;S!F<127>EZeRnBAQSe&+^n(&uu>qj5)Zi2E1BgD+#u|HAP+JjYKT&fdh#c!
z?F&drC#SFs$g)NhK@ki|Fdr!|_p&ef<1Ev1E!z@6R&q!nBr-jKFa5G3(~BVNqy+mT
z3CKb*DS<I7u~SAfL>_P^Q6enwge;H7HFe|xOXB}D^JyuYQb{!7O*->4VTSU0^8<d9
zW@6JkfMGYc#5j>tFi2BK64O9bvoQ||E!C1O-O>Vtb242bJ1>(vXLBseGCE&#E>m+g
zM*<<(KnR)wEkQ#$kEJM4G7mUXtip3UzwJ3M0XV_aGWYX5aT6(=usomUBSW%022>yn
zuRY&W3F31n=2PZC(gQ^DF{G0>nesUOlV)^tIh(UP_0luHvqBYgBo{(6TQWf}bU}9l
zL>Iz4L32xt5-F*3F|Sic+yEy_<u)4>Hfi!lr&36Uv@|V%LYvV&;q%}mGJ*1M{w|^0
zx=SGP0M*pd<gQ6MMD!;zfsCSJ4XX4?+427)L8K-5!b>$rN)>7fYok+~D-+g030w<5
zM*>O;Fiz*RAk=0}WwT93;sg5hNy5|utP~SzqenU<&baI<T5vQrAiqNKM(Wh9Qluop
z#6nU;4QA^`pzS9jwG;Og0d;QY`j8<66;9=pP8Z?}m;@8X$pw+(PtDIIicnQWweVVE
zQ*{C%nxjlN6ZZPBQ{rp`Ta{3eLSI&jR#9SD<;((%wW8wbQptw)h?P}=;aH<0SrG;4
z`tPAEL|D@+QN1-<L8B_QYg`d9FsxM|ptV_?WLG;?Z8RfZ=dwtql_ILuS>3f!sv}l~
zfC$Q!Pp6bn4OJcMwHd#yTh&z{5VrqU&#YLnwLdVG_7KoAM3h~hRbr2htpHYFY3yQW
zFJcKbU4=1H&K0pxHu=Je1ep^he)UXSmP@tuPpP#fsI*YW)L8KJR_iol`Smg4>1Q`~
zXtPx?g!W$p)=8g~BDo4sErAlY#uCCb4KQIog7IL&>;n{m63{>s9%LsLZEE$)YWwlG
zF7Qm7(Q{rTYC!`J<gq4S%?xC5rC??Q=JrPF7HWA>ZrE08skUsfcCMrn4>G|jq>?H{
zBxMjnjvzHq+&~{Kz!CyO5wwIaiextGBMlZ;{v3Be{?BiJ0&nd#O3WZnNCqL8DQcGW
zZt3=Oqr!6UqDb}%ZELP0{}2CR)PPBpK%X?hXz6e%L1tOA6eV;Q4|o?7e0SpD7IINy
zau>pQkym-y^9_QR%us@1I0bjbRVuUh9pRQNs<#qurF+>UdV4opm$h=O1#@o~cG>sa
zBKLV4c6ZTtXGg+xkLqn-W^Wf_Y^(Na9b<hzRbjDLfMXX@o8x?wmt^I)IkvWIzZOCk
zczW}9HuiV^xYldI7JBQKfz!=^PeXhccZ6d@6D|dUH`p#{w?7~xg(Wy_OZasq7jOgk
zenr=H>Gyc;7bP%wBq;b;fp~dQ!h)Apf}qqTEJ4i{A`d2MVcVcdv$mu9^aJwXKhLjD
znb?Ul0*V{f5^eyD5#s*{)a4SgxTBQ#abh)YXCqE`qmAtfjUg?LwU{8dIEv@WaDTW;
z8Z|^r;{(ow5|m(TOpE83a5=aP`x?|!$p(-G`3TXIED{bTN>Iy|7&hKmv><gLWn*}E
z;*IB0lJ!MM5_u{ELk+$-jP2uG${>_WQ(?-WDDWW89&iH;^@c+eG+;RsWSNrH*pRV<
zJ!5&6W6YMfB#&iu99g*%CV6{*?U)7P3JY-4?xL8l2bz;vm}75QNx6NMnVAKGn*-yQ
z^&^;fd6?gIC+ba_DQAwWbc+R|i!C6W^XZwpa~9{BEV5Zh#+gaJg3GG-isw?FpD#9?
zE4^OgpRL$VbeaE`g~XcenV2QcT8bHzmsynknIaV0i@~@u#u%d+LZc;zqCKRQg`|n=
z7@niJlY=i?8Ty=S%g<ao_GCKq3_22xc!H4F11iCi<1rI9Fb}>|Qu0v#oD1lZASQhp
zs4>I_{o|RDdhd3+r|DwvW<z06f)ei7HnQ5Tc$&64%ByYe5`LPAg_<-Tn&f_lk1sd9
zYM=~Qgc5FokcGr2d%&*mI!DG$M;3V`+#0UsI_7w;1}Fg&$^avV02A0ss*j4RhlEj%
z(l%ClBpQ3L3;VDWTOjmWk-?cr^0=}Mdk7Fa%&xk&NY$<EM6yY{Rv)P(f-(>88m}p*
zVqX>*_~ZYf+raTY`?5z{T<aOP{jRDJ(6)UW{0gvCmQ}M$*>4CNv_(6!Bc({{8n$~t
zbY^>5m2x&(+x5bFBnFVIs}w_$yGU-^@x=R~oGV478@6+Vack=V2P{Rfo0F5ey=(Qo
z(VL!8;<vRlYEFB(EjzR^yBX!ks5#rI?UlffR2ca~w*!1MynCr{nKT+(HD-HAf*ZbN
zo3)c#zHu6Yka!O;!AX$1+csceh*vU-o9qC@CqaY6e_~*Izz1gB2T1M+Af&}fBgBb@
zEO|q<pL;hnd&hNS$Wh|O`QpT5qeoEU4gSf^XpGWIVmbrcp}}_{_COykgs)+g=jPff
zIQ9Sf*s927W88W`yE0+Kvb*(QW87G7E;3;>upCf}M8;{{#-YN^M*_}qIW`C)vbe*L
zQhS<>&y{-o*Q}g0{JfJgV#z0a+44Nh`TTkvT{aQDWEQs3yG)`P4xLd#&Z#vpARV0J
zJj=)1(klu=mNj){!_aqP%opOw?_yv+Jzoo$(k+12ckZDSeM>Bz4OG0W5<SyaJvLfB
z#Ze;I*%T@=T_7^<(koFT7FN{d`N4rbFzS59@7yY^ebK-C%||2FP5ijmoHUY~(~;uT
z1tYR}9o@s$c0K%nptK~Q{SulKEzE2U7dAqil^|3QH0qr!Fo73avfq~z+N(yvX`}yB
zHee05#;rUsWf<P!F>Bs2P-iOs-|b!C5jCA|z%4Pp7f0g*_(jybd`RMHYtTU7b(gP4
zo_$Bd<SRkqO2RZi-dY;I{}Q7T$aD%ffN)qB=Mk_aWS%ZYL*+Y!<w2tXiN0BQyPz#W
zALGf*=0eb)K5}cIG)n^I**WS}(ph@M(s+*P`@`wEHSB>7>mN|+zaGSnRLdfFS&zPh
z17qxm#OPQ4UbQPC-`?+>B+jDv10pBwm0sVGUE@hc?&()y&t4!B-vW|eHK4v(w%%Sl
z#LPE2iP`b*0afrz6Co_$S>c!+!M^`e&g*qz?Qf#)X}<CyDfF8~7D0alQ(yleR^J5y
zel9n@({Fy_O_lHaI^i>)>%pcpH=k@G65jJC|0?1lFak3W0}|~DEZSl$#1y9>gCT*H
zi8uY;n%|I6!^hK$GZ^DDuzCu|-!s^Q`7h#@SfruWKO#EhFd~EFQKScsz!I+bB^vPq
z%3wkOLX8CrXn?sna^pxIU_Azw0d`~HKwxPkD$4Zb!wn^w8d}(Z36qi`X)I-GBQd2)
zf(8*PWatoLN{R#704w9+#zSBNEqut7=ZH|DLk0@Tq=?83B$zCvJYsOj5lf0zQUZ2l
zr3EFxJghvLbZJwGHgW0%#&aM@kt9u`T*=j=g|az!_DreiuEafQq+b7&D+Jh^BSUQJ
z-P%>F#Jnr{`t7Llp%1MWGj4=D(D9MK5(5t|oOYm_Oqae4Q4(@P&6{=69=5<Z<>=C<
zQ>T>tRWM=05@(x6jY)OpzMC;i<my%B+L0wst~P5|ZAj*BEn?KjQLbjrDUoY^sEBYG
zOl)ogo2>F@(4mASLUl9b;TMU^+d8-4yLNEtY@5Heu$^%hRE8a99$X?)4@q2dNpb)Z
z$6ZX}#Ydib=%sXEf(tgd7lg*;2b^%8?G~B^BZ77pU1x=sp%Mx*=wNp+4b<X`9Ga*b
zie$02;$82>2h4mj#%L5$N-^bBhmXk>(}gJo$Rw1Jo%bCu6OR8^o?=>V$z_*behFrn
zVvb2>nP#4eW|;i+!)BXqw#g4-Xw3=Ce-<zWj3!Db7F$X;;4vp2HFO3H5?kV_r<QRM
zYN%FR(TSFwl_XhapAy}$5L$SAu#zHJt%PZyoDTFTq;?MYsf>`;nG&LVemPnXmY`(`
zlRZ>|RvsS!ljT;kqD4tjF-0U1O=_v330jxDI?xSQS^0q_Z+xl5ufPN=(L=;eRMAIn
z%&CYFm~>kzo&SZZ>8S2qqA8K6W(8Mbpk@lpru2P_R=DF{`m7?+P8+XW8{liDxZUFQ
zS{cb&>7)fmu$!kD@w$ufN($%OumzJUwgIxrGHb!b46Fb2Fj|^O+*@A|E3)mt;2OM=
zrTD3w@3sSNtX0Vo%SN-6HjAuC#@>P2@4sphtnb0j=4<q^3om=y!a+~0n9iE8A>7TB
zs%mPhnB)nv1xrIKt!O>7>}SzsJ0x|(9X}27pMegVZQCnZjde;mg9@mobhC{y&qJ(i
zv(+fCYx3dVzPxX<eb@W9N{e3lxS&r#d~!-I=L@q$u2Ma(s8I*5(%zBTJ^IL{Z%s1h
zd8Y|`?6S{Jd+oO0-sPHa?%q$FVA>q!20dhL6dqmz-=z@7<BsO=TB@s+^JGFVCh}a4
z)~xkDQLI)E9F%zj_aAWIrSRX2>4EfQs=rbV=WG8(eVFV^ls@t4k-ugA;KwhKMz-I;
zzb}PPF#vp?_6AY|{^_qw37p;mEzm%%6mWXnTOj=KH$Vvn&`at2-}CSn!Ig|pOA{m@
z_k?G^OKs2s9UK!13An-#rsshE(~1RG@<JERuYcORA*jr>!)C2;OC<!=5c9_*<|%QB
zOl+bPpQsYu@y<=YgQ69$h{Y_*CKFohq8Gmi#xRO;jASgM8PABuG^%lpY;2<&->4-i
zPLWMjgrgnrC?@RTagTiLqaXhW$Uq8mkc2FxArHAmInJ?;h-@Snzi=u?N^+8vtfVC`
ziOEcAa+92#og$~m$WDrKl%y=BDNl*YRI2}Sm8@LlCwUjjR?2dgw5+8qZ;8uX>T;Kd
zeC6(9$;)60bC|>|rZJC+%w$^9mu~{5GM@>}Xi9UM)U2j8k;zOdUUQq=?4~!r3C?he
zvy9n<lNgoozS*I3oMbA@1H+VtGOY0k`18^_9ma-wqKTd)%V+H3X~la!MW0^u02>a<
zh9t6cp$u)PL%&o`I!dGmX21g*goU9p;K2+O>p>gBHV}_i0uS&~OkhCf0gZB0OGB`i
zNr3?}idqz-7U%&UZi-Wq%I~8V%jr!Osu+#>)K(R}sF-AGRFxo=rdZTg>?#pSGIFI?
zWIE|U(g2JU%5JJE!Kzlt1XU<nRYw0*HKPaI;D&{i^r38Rt6SL_(cTRNDwJRYu7pG*
zN?f81n5YEwZh)`X4B=X4@Dv)f<c3RNNUwbLt5!BJE1-%-vF^E+U4t~yJZM(4vsx<=
z1G|zuSOTr2m27B7OIkO`g|3&yYnNDi*QZ!Ewpw&5?82JHKQT3rl(m3Yai`m^X7#C2
zWnN<Ww%aof*0W!_sqLKm*62!ix`vEvoDNjdZ*9vBmGFuOEU~<SP@)Y`d5t0}(VO9d
z>L#-3E(^h{l{KJ6vNvEajV_U0nP>$Mm;lpw%WIX_e2EeQW+8sl`_B93msr?EaBcOQ
zCfpvfzVf`PdY$;&+ZOkB6z>1ya><m5vc@jN)Ge`zPYg%v(#TIRZ5A*vidE#v%mSG>
z7*wpshD>CwzA%RHK!#A`8LcG8#EVgVLFyA@g=xl@IGC84tR*A2n1d{4mXwkF*nxaN
zq4rDR2ZjJV+X_K39vFgTdoX5=Z5W3`Ac9vmAOs?{P;<iZfDqEjr44vs&sy4m5Aa81
ziDXzUE3vb?gac<B?%7>~{s<2LtQa)k>{Mk=qH2VvmNaV)(pm~MeHM+wk9Z`}Dlzn9
z+x+G@W5~?yOjV&(tsD;UWX~zAv|_%DybZ`&4YWqFuYV2fE~>cDnDs5C2CL-7yao^G
ztx0b&l<bm71ldl8tP=kwSL$RF+qHrQM&!OUV@*`J&p;LTmpo8x`k0n}>CQH{72^g>
z+yGa=z(f&tq>>VS08q)w1hcf2hD_vXtsZDYo`6vaCJBMwnK*)kxpaiD0i(uWE2-7o
zkTptB!UOaw@Ja~A+zr^IW;TrWg|S-F9y|--axnuiKH#y2%VtiV9W=`6GjgA$WZ`IO
zxP%LS@PxZ~4FV^rz$t-qa9I!CPR0+-SxoeL9pUH`UAfTRBXNqS3h2qYy5>y#VWnDK
zE?-zxRp@8%t}|)h2lux`$_}Zs2Yc>xuRHCAtr8>vBh7AD-htSV2RFn_u$sVw2e{HG
z;X<$P_XWJ*C9?m9JRk<BSY4ssHJuVngm=lWF^FCBfMi@T*YlMC{h{_=I#(;^@~cOE
zm)xL<N*v(>M2PHa@_iRYV4@*4z^bqwa?>_fLKA;GZ$oaNh)bN$1DMFe4K^_K`*5iT
zyxOx(l#sQDut5kLX}&}#Q3*xhVF({6gXE7V1g<cb5}26%!!W_<m!~AdY|sQv-{6Kg
z`ydaQ7?sQOFn$i#f0vSes^?qkRev<ae(r}L$-#Wi2Ys0!ea0s?$@e|=)m>$035WM$
z;?;g1@P6?}JvUH*YlVRxpn)7HEcmB?{5LApmrn)-Q&~fS$fta%$6P;VfEK`l9<YA{
z=o3-_3~T=|1gvHeLT7{TqkFvPds-%hL}-L|Cxuf;g<gVp{c{Q7r3h;<5P5)fZ6J5b
zrWMEr3`y`<B$g6e*o9vxcSE2F5rJ*=frhu1g*mf>ULrH-mI-U11P1qbX=s3Y$cKJN
zhnqJLo|1!DXo!jkD;?-!%VQI`rxv`D5*YOme>hmL!WG-HE3cvkncyG~v1Wp%V>B{l
zVpAd}LImGeFPal3f#F#Xfl<`Qg_<*m7N#1bkzD;#Y%cd7gJp(0XMn$@i{>$lLpTth
z7>cZd7@XK*9Y%ffM15HyixY*6wkTpop?c8BUegFa#TIaNc8Z(Gi(!L^iV=3t({4u=
zFV6q?DjPtF)20&aScUaykN0Q+SLhR#KnYo630#;4n7}F0rV=yu0g6BgXrKwTVlh5u
z0srV*0%>e&VF?u$hr{wb{HRrU@NAr?9A+RF55ZjVvjHHPEjt)3{Rlr>l9F20l8vYm
zc)&$-0SuCOh!lZ5520!Bh%#;vh7b7`iU2T^IEn+Y2K}WLH6{@*M?P1PU|Ir;DnSW9
zi3hA>Tix~nd9Zt3q6yvNa&m!g<ED)@_i|d9L{k})Ng|Y*!;C(u5|)4x^>uIcl@)Yp
z0ce>LRXHWv6P1?&40HJ@cBvIzX_QF$5lSf<KM9v2#8P)ykWS`}D&dwXv6wfR2HO7<
znfR!gn+a@J_+9QL5da7k!qNukS1}k;hdz-9nm|35@Q0yEQjS=f$!G~TV4EWOZLS$*
zmH?XB=5bsyV=J+TWip%?!kYwDYR73q$_XnoDG_Rr7?C&=cfoeof_*1xGsd!Vbh12%
zSu92AF!oiAqG6a?0e)xFm)|K|#G{+Sbrm-f8Qg^+#^Q470*_*eBV_rWM8b^SrW)Qk
z5pS`bfr5%fVV8E<pSYM3?Wq;%S)iy`m#$U@^7%F00u>cDo_Dz_tq3ORcpDU&Y#u6J
z8ya5KNeS0kiH^ycE6Sn|g?AoM3BBoTnJ{j7AYwA3lkDbXN#J@Z!3LK=qoMzqB?7l9
z&S?QWig_3kquj$4NeU*xDV3%vCX^thFe;<xwxl+crC_2*-S$1wIf;i+17&a(8;6m_
z(k-Re18d5r#DWQ@lAv3HRSW_QiUWIFf|q6DpcY^d>nRaPx)NBG2ZQyKHNbvlKo~=S
z2|ZDt^iiiOv8RGcsQLDq2dElvns0BRrfj;V5y4{+3aWiNe-{R*FJ*!qc%YwRsF;AL
zMYyQlMyHCishs+h(`JCH+Nz4G7lXB1v)ZOAF{Wi2BfQ$8#cHe$g?D=Ze=EVG;k5yY
zQjmvHe=4z8dLyNO%Ap?ttv%oa-Rc7<$0VhvCCW-Z$!8`|nt9-<6`23J7t1;(<f<6(
z8YbVO5^sQ%@|B_m#ueRim3-PQ#}%((xGU;vQDsmDN%Rn=m8Vr@fH5kWTO+Q4niyPR
zCpi`)nZT&>H;IaqpTgx86stGQ)*DH(2Ljuc9qE?_8knEru(AQM*9xiIh^i}_6&9Nk
z7%LG4d$5v;vSK2lHY*W0TUpEnu=bQ}P?3nos<cZ>O~b|&yLbtvIUXs5qmEcp_7$G@
zrWH|}E&CBLvZb~0vWpO;Z62vPYmhaA#cdmqYiMh$c=fbf!nTfLwUSe}jaX7Qa367N
zVLkByAOnv*(XYm$ey%tW1%Xk}37$S6Wb+6NQu+ZI_menuKzsixl78tUf2kE22A$(p
z2}pMwq0y)t8?$679G!cTc^evt`<%>Jxb)#-DjT8H=xX(qxnbL&GAp~F`nfXF6O1ca
zuS;mkaX=#4yP><QWh=anre%Peii6d3Oe?+9t4u1U9_-N`a}^cxF_?!@BOBr%UZ^EM
z!o76MB;pG{K!Lq9g&UP}7+`TEV<D9W2)|-MDc8#$Om!8Wg}*}~Ed5IqUh*x=(gRb$
zn)h`H<W~l`(h~)75DBpm9x=EFLm-ziYSUpK;Q14npa^-O2yGCI5+WWIB3_d_zsw~B
zL*NAz5rrC~CkbH*myk8+E3q@IxikqKt}zg!`w@?76e|DB!g4Wa3lX-%rvxx8!~8)V
z6L=jK{Gh1{FGh^SGYq;73dDWk5uXahINTbcvB4eu!67^#O`IJkTxv!55M@w=$)O_A
zakCha1b9HfWQ-XO>=F^I5)$|YaU8wW>&JhLODa|_b7Ci-)4hB%H;i&9Ujwb?tH^Y_
zDw4uFVlrdsQZMmyj`K(_E+r>j1BjkA$dN)S8w#GW@+%BEQS_!O@#rgaf-PstE%f0r
zzyLM;!Zd5cB_2QtYk&r80C-31I+DvJnGA^BnGzg8FuL-{HB3K18WEdQFpa~*JZTY-
z5?+ILAelfc$UG;?Y|CUblyCDfu?wn#$<4W<E`k4%c%5R+<h;euoHTjG%f7r22P4k3
z3{u3bgR3Ge@Z34>L8N(bA@^L%q+%_v{1gG5F@Vg_4ed&Eq)oq5COOm@izq>2qC965
zL|V2b8{H*GBs+R!o3}<j<^w+BgPa!8bZStZG_r0iIng~pBpD4R8&G5(9XmFy95PMP
zM3mBBH`5j!J3cfZE8Ws!Lp~r~XgDo4By>XFLqrZO)l>b@5G_$u-JE|UYxqgSSj{C{
ztrA`B)niT8b*GPIEty8jN8j=WWuOFRPzhU!)`%q-ZVlIRJ=b}y*V1*?3_SxE&?S%*
zNJFp&Z(yTk@Kw|H)5in^c0|~Q%?60Q*OUKE*)D3;S3T7_AP9h6I~7m?e}o3mu-GaA
z0Ru1q34lvgU<H-U+O195)@2B>E!(qA+qG@mw~gDmt=qfJ+r91EzYW~ME!@JL2<`w6
z$Bo>{t=!Aa+{b+aC(zu{E#1>i-PK*);qVHspxxWe-QDfoQvd(}AO+q{-sNrH=Z)U!
zt={X+-s*h?t_|Pu?bWb7-1TkW_l@8At>61y--*x;)(zm#4d4S#-~~S2*xlaT4c_9t
z-K&t`4-VlGF5waW-tukX7f!wO&EFf&;T`VbAFkhtpbiGU-0naOTp$1dzy-u$+$8Se
zFFxJkklhcy;N$HIpRfR_FyTAS<30Z_;huouK`!Jis^R<11B3wLw|(TX%>)`S2p?Vu
zOn~IG-Q-W6-%EbmGJpd~&f6jm<Gx@30AK)P9_9w{3ouULzQ6_Bfac9D4zNJu;XU4>
zPyhh10IJ~Qd9LSs-rYbx<bMw6R9NKs-2?!@16)qqg?{LU5CZ@(<sHrg0Pq5|-RO^Q
z--?dg3ZMaqzT1c};spK+%m5F4001h$;?Hg3D*ym~01wP?=4~$BX8-`{0PD>C<_TWo
zs!-?Q%>a1L=f4i@KOX4APVB!n==ePW2T%x{F5Ahz?2PW{A1(+G&;*no?Z~d|nZD`F
zp4*;I;12)*CjbCg(Bc9P5AOef1ptr&0Pp~{9^JA|>+Y`Hx6a-*z6z@#1pq(=tI!I;
zzTP4r0{$NCeqQVaZ}4q(?Dj1P0I=oUzVHnX?Us({m5$#JpWB+w?Yiyl0KN_B4ghvg
z?$CYib`aiJz~=J4-0+U_$~_KnzTP#i-TBT50>9n`-~=>J-m4%A4le8m@AE$|P6=<@
zgdp*@tpNd0^n=g@f>7Iq@a%-p1VwKMgTVB-ee{n`@v>d?P%rULAKQfx2+uCtg+TO#
zAoj7H^|4*_U~lEOef7012-R)~7(d%kU-e^e2!v4eP=EG@!1ngN@zyN~06+rlE)4J>
z;KBgzg)a&2o({$^4Cwy=5A3iE-~bOQkKFN|-07eU(D33d|MGGk^8hgO=-mqZz6z<(
z@2da`Jm280U*4(!3aZfW4Sw$c@C5hn`may>-F@%c&HB5a-l_ls;SB&zApGs!2|&;M
z&2LRYU-u9Y-V^ZTg8%_{AKQZf05L$@)^Gd)umiKL017||(jVS1K;;Ku{29>qQ@{PQ
zo%S*S08Aj;f}jA#e*kxn0{|chFkt)u(ZtX|Lm2=ZWI}LY3;=`($^ejXU?B|$0YDI>
zkl-KyF*G(gV3COe4Fm~QJg6X}Awd9O1OO1BNlJngEn?J|Qzt=0>frqZ8dNA41Mqq^
z0MO#WgBAc9^n(9q0E|$oRjtDN#o(X;G6n!ZJp&*eP&fd70Y$e3fB*m_o?V6elN>Bp
zb?x4@JLRC1x>5je!W-C?DgaLk01&~6000oJ>WTtkk%6kaszd--Twsb_zZMUMxVy@U
zMG&d(f&j59gvBS01>+^`nenREweNP?U_tk8-o1VQ1|D4aaN@;{A4i^C`EusXoj->j
zUHWwD)vaI0o?ZKP?%lnA2Os`7zkcP-pEu8Mr$Pt{nlKqKK*IqA4i!Qiq!B`ZjDl<c
z5NIF;6o5b`L2`hAARGYDpb0^E7$8B7@KcB(`zi`>pa>=igpfe?%g>Mn3v8kZ1po+<
zr9gOyNF)CX2f|Px1p;6~5GD=?z`pxXRA`U@Fd~GB00Jm!p!WKM-~fkOs&5AX4j6>R
z0B5Z6#vIqfav(&wi3=zaR``jXI6RAkou5`9p-VO4fd+suw%Mi&0RAu&p0LJ(Ckz3I
z3F-tAoPlSW6B@vCO`+zptuDO);LDW}0Qe-)!2n=j6~8K_0sv6z8es%cRuM&n0w}91
zgaT4&MU^K2=%g-HK;fh?P(U%Qu2w=|z%*5GrL8Uy7yv<pPgIdY1WD_<Og2W3tu2(?
z#Dg|kX{V*OT5GSxHd}4C<+fXIzeSEb^v3N+y(|R@aS#m@fI-KB2q99VLKsviLqkrC
zKq3G8T7scodkulNNP;XZB!d9{)rg}U23k<ynSS`F#R?lL_+W){0FWSlH40dxmvqFq
z$R7Y$$q<fsU<rVQTf!mbgfPx<<1Dd6WX%U$0O}8~05ISWpp-H+t~d<96CD8j0P0S6
zurNTGpjZJw8lbEJK$4)TB1clao}f*X!$`G_Fup`tHkH5X>eba{U0DSHCvJlcfX(pA
z6l}t%uq!eVTx0v#wv|PU+1gTh7F@#*M?7)G7iYY2#~+70^5w)O_dIiFo*Cnk34)-b
z%?Ud3bB1}uQgatkgkS*CbLwdHk_iEz<$5I^7<JV(B2d2rG%}sNd`+UaAPEUNprrqn
z1ZpXv<nJBc$lWntZ%r;3fae$z+G?PI>q$5!DlV?RN{j~F3DW>Lk_KQK78(FFs4Pwp
z>VYl57fMo4NbTe>V<jc5Rl)%K-)ji)1iP%}31GvE+3<!JCp4xN4{QYk-sUR+Adp#q
zQx*sW_Zn4nKyn`hVF*PyLK2qHgeOGd<SK`r%Rz5F2bh3P2GKbHC}0QfQo!?al7Rut
z42C&j$cdnolS1Sm0|z+309@ia;K`04Gm%K`gqWg%1h005P{<E85`cawBzPxMR)UV_
zGBR3mAppRl3pIj`HT?kqET9x1;Bf-@0YWQq^cnrAA`AfV;U{ze05Z^by$1hmLnzl%
z7S8kt4_RFBQHV)f*jP0w0G^F)QWyaP7_flC*u^pj0f7`E=?YL-@-%?kpDTW~!MkWh
zSrcTXCq0-#TGrB*x5Q;Gb-BwFQf`IiQsa6?hA@rg;6w^YQSNkNkSq-oh!>d&1kyMV
zK`3AVIAB7F2GGR?r3iLT90(Lo2Z3l#b6y$H$bY8kOpVA#Bf&cWMg%cWdZr9{ElS=w
z(}~7l5`>LvVn-MbLIyn1@h9mZ!$HDOr$quKq1gk#9D)*-6&M2mCm<hC9<Tyubkw8M
zSY#uQr3zPajamJpWJ*;5f&xf^6P@V90ti?cDMThUx0xhf7!U$c^wj^SU;_bYV(E&`
z$VL=Hb=53+X}BS%K@CN)KoOiegr!#1s#nEoR<)WPU#_r){RCa}*25wjgmotiTAf*+
z>5!2L%n%y55<$2)I&a1<Vo^LJTg^BijZ8p?%+m=3n#YkM`E@5_T;B5dsu071^`B~b
z001I82A~-9Ct{GSWE&b37j(f6d}tr~zyS}aeGe#DaKL7R5({QU@E{93=_CUfKqnL+
zZLKK4OarsEyTl4Gc*&$~f{N5ujK(vtjb#V7$}KiL00UZRgBCD=0X8hxy4S^ScC|~(
zu2$}=V4VpuAEc0ZbrG;SX~|%96keUY$Ph5F>p<wEkdbkdbO8U0?-Oa4*MY#-i3^I^
z62qCXoct$4@GTOH@R~-%;<H5n)|h~UnT?=HVi@o!3l`pD&}Rez0C9lFFs!CpW&q$V
zRk_no#?VKg0KzOmVd&LZ%dAoYK&XO4>1@vith;1trmC15+B#{MQtGx>digEdPIKd-
zcH#*mI3Q97qtxwAs|a|=!*nr_2Ru-<%3lU^n8iHi@N}14-|c66cJiMLRH<_%Q>IQv
zl+7H(%SZ~?iF*yvxd6d82ZRvBf&|>nCK4nNO>mM798^0U@p&R4*@2Ca*l0ZKgb?xh
zK@(trBZ2KF(t_9lf9y%d<rM<bl2%ebDXd2~O4a}di0uEIR4Wu}y!r$yNC6jkfj&IB
zV+8=X@J~))fIe758h$VUGr%`vW@T!~IF{|%Xv?To5bGc_U6m84pbAc0=BRdAMF9vP
z1uBSOrnhRTDu`8pZ>y5YQiiv3$sDbw0zeI3o_D_Wy>EW^0Ea+$zuU~?LbDphxsxA+
zBqjEWvrcYg5e?X9;A`Cojxs_BgB*mMa~08jzsWh-3{TI4kodbQevuSCJSWw(xFED>
zh(f^kAOk?zs1qwOir<8a(Bo1=!6AvJBt;VFn6*&AQ35f<K@45^_4({17NCH`0S1s7
zJlK)YgEU~oL1Q+v7S$+d`%l_u6OBbe0E*n&iVCh|Or-Gt!imEmrroPp)j<}3+~LC8
z?(**Ucgz3)GvwXxe+PWvm-=rOg0)`1!%`sx;Vv}};&V+vJmv~9O@J-l@GhLZyexnC
znGJ&R8bKFW7618}9U|wmwrtRaasm(sWen8&Nk)Ofju`)B8irhUEVpiVyF3uwsTgHw
zR1y5%4_`2;3cl}ok5s%1K09RqKpC7red<@=`iUdF<u1Q{?swn&-v@vAU1)mM&k=s*
z2TD2sK!>2Xg9Ro)zg4m>xZN+`{`bfKNU41N=|Erl{0G1Q6u<$*j_gYh@k77_RKNvf
zz{?}Q@&kv_ioc)80ssgCJ^%zcAOQmitqJ^z`J=!8y~w{2B*FYkh5aMI=77GwOTiX&
z!54%<-7vuN2)G8c!5hTE91Nz@^S}ut1~Gtw72twCC=?GQ2M`RwwJE_RWI|R-1q_Hm
z<|qR;001`lzbM4QEYw1No56C~!f(-mLYRT=LW6X`x8*>9gFt|MtAZ!|!sDRAgQ%`I
zq{BM2!>j5-ez?PIp@A{nt|U0a<)8orKmZEJw<v(ZJq!*nXafLf120g-NR-4${GdFf
z#7o4)C|toz<it+&#A&fa?AU}+B*jwPgil1pR5T&~Q^i(v#aC30P`nOPq(xY?#ajdy
zR>Z|!<i%8!Mco*J9(ay4kUm;8#a=|lWCV}@A=o=J2t;Ls#%RpKU$lTq_=4xCgf_4M
zV=P5!^u}*wjw8SWJkYXnJOXe;$8@~Du8IeAK!<p+oZV0YN&p5;=(6U>#%<)rQB=o%
z^he!j0|_7j=+XibkN`LM$AnZ!GV>*ObVzha58YUUOh^MuXoEHY1|?vQeB4KVT*!}9
z#v*6~Hh`)kV1qV*Dv(skmCP#2X~&0rM;f$%56H-ByhbJX0OaTaA<zwu>`0ab%Agd=
zp(ILhp&XcWNSV9=U^qu>Ob#Ka1YiJ$OgI9c+{dEC%B<ANt>nt*I7+01NH46$Oc(;E
zJPr@Qggm%`4LE{K$OLWd$W!dfxunbgy0lB7{7R&hNej3EMUcui$VuZ+gG}&%-6#WK
zfXkn}%f)2O#&k?%%uATuOWimEOpr=8C>-HXgg4-g4M0qNyvoNE&Cw*y(p1FAe8|b{
z$ujtY&m<0t?2XTiOVgyy+O*Bv<UiC*O0nDxr##H!zyxjN4cSyo+%(SPM9$>YF5Ps;
zy(~<dw1D3vjy+HW-k{0E3{B<K&h6yR?mQvp3`;$%${VoB9=HU~Bn~tH27FTk;>=F(
zgwObt&-vsQ@RZ39*aKitgiNpm{S3_E*Z@qx1SJ@PihN7Z<VN~b&;@1C2IVUA0L$>)
zjRMVtJUGYWxB+_fPfOs;*>uqV4+YT>718m4P_R@@=v0mmc+TDM&=Gaf7ll#pv`^l&
zjuws48^zHaCCwStLs2YF9R<=L6;iF_(d@9%Aw|+8RnmVfQXhTKC56%`l~P`8(pmh`
zDaFz()zVC?(i*+eEd|ps71L=fQN5(mF-6lfRa0B+(lvF{H-*zlY|}WU(>k?N7@X5P
z)zdxYQ^CvAJ_Xc371S^L(?K=VLq$|xD%3<})JApG5L(nnmDEY4)NhH@O2yPn)zmU8
zQ^`EjO$F6Z71isw)KN9nQ$<zaDAiPD)m9Bvmqbc<?1y+rL|3)dTNTxY^wfShhFZnd
zUj<f4Wk+|E)$#}f=L*&*WL4Hfoxx{ViU%;nWtG-xwNnE`2NHNzWTn<^<yJJ!zGuMJ
z2M7oNA^8LV4gdfEEGhuT08Iq~0*3(s0R{^c2of6+4geSw0~#9|001lt7$pxKFdH8s
z5FRoKAt?$dG8-i(5iK_wF)bD{J0uwZGARHiCM75?FfTAJFflJSH#GnNMgRa<003wJ
z0DBfJNF6vq8Z}h_D{TNPcpf}qB0WVQK4dyTHUL3M07Pj3M0x;Pd?`aqE=W)_OjA2l
zS|mqvMgRa=002cd0A>IHdH?`sD*$~f098f+OiwOtK>%n}0Cr3Ob6o&xOe}d~0CjB@
zdvOy+Nk~snO+Z*(P*P7<SXD(_V_#uiOk!zJW^7k%aa?hBXG}t4V_IcrV`Xo2Z*gs6
zc6)GgZg_fj004ynD}(?mlK@AE06~-hT8jW$ngLs*0A#2wSdc7in=EvbGGU!8bfPSK
zxHM#=LS>6UZKp_fsZx5ZYJGtewJ0OEHYCM4et~>j#c2S9yDWpaSb~>Ah`mOTzgdH`
zSd+eOfP{31ihPccevp!9im7Ljxps=8LyN*jk-%!7&u*j7eyPiMsMCG5*@Y7rjVl3!
zK>&za0Fy@mi&`v=bODrQEuv)rxO4!bYb=UuLzHMj>p3#?MnCLGLH<@w>vnRSf&{LP
z0JnlHfP;REkam-aW~qu<vWi*1kVU_eS)qw%ppbU3iDtr{0K$tc#GnDkt1IiI7xb+k
z?5ZdJwkpGtNyL>|%$;e$oN&mXch{<J>$_g;ykLikgpQGmf|He!l#iB~l!Tk8i=MEQ
zoT;9no1CVssg#SnmxQ3BowKQ$v9gq?tEHi-u&c1EsIs-Pw5+zbwu-3DjI+mzyxfzs
z%9Op?wY<WE&Wydmx{|`%md50$$=kQW$GFPbq0Z!~(&W6`<Hx3i&$Eorwwv6#h}^!D
zz`MEVmXhPYlg7Qo-N2O3z@x#$z0l36)y=fg(YNTvh2+JS<IAJt)2ZXyx#Zx#%F4>c
z%-77-%g58)+Q-A#&)Cw|&fVVK#NFiA-Q>^U(ca+R#o^@I<K*Mc&E(t5<k{5X-s0rp
z#^mGM=H=%3`S}R{04E5XK%ogSe+UyQT*$DY!-o(fN}NcsqQ#3CGiuz(v7^V2AVZ2A
zNwTELlPFWFT*<Pf%a<@?%A85Frp=o;b6zCYgu=j|Pjm_$O0=laqezn~UCOkn)2C3Q
zN}WozYRxA<C&;qOwX4^!V8e<XOSY`pvuM+*Wh!f6(6w;m%AHHMuHCzM^XlEpw<1;w
zeFF;~Ot`S&!-x|rUM#dA<HwLAOP)-*vgON|QyR?7xwGfbphJruO&aIH(x_9bUd_6-
z>({Vj%brcUw(Z-vbL-yCySMM(z=I1PPQ1AB<H(aMU(UR_^XJf`OP@}?y7lYWvuoeZ
zy}S4C#q~-5g5;<?BuV-t=6hv|lzUUJ@=2t(2F;oKXx7lf=uRF-echPU%{&X`qYQWm
zCaB<o4A!)bBacKPp@fe(vJFJ!kW$Ji9CBC+Dda%3%zbH;SmJ%lToec!9AN_hH6)b-
zfHMn)VgQT{=BVS2Jof0&gA)cRp@j}**x`{Jg6PnQCN_CuiWL>22S?su;NM87Y;ey)
zs95Ramtck|W_9{FBIKElq*ov*NVZ9ed<(I2hLd!j!45_J6tYJ@-6%s~Li%W<OgswZ
zBj}%1+T#u}>wwgcAZ;MjkD&LY;-x=<`kBx>m}=9gKZ~}bP^O}eY3iw{rs|m_5uO?3
zBa$%x^vZ^99$CsO46QLIolTyx2A+kO-~s@|CW8<w#1e}KLaQVTfFJ&N1Aq<5lJOBb
z0373wIl}^A01RHbm@KsDbW5xoha~$4Le@ANhpO<#EAPC4LE`F}kT7IQt!<jZ5E{JF
zi3YF$kkQUJE@U7NKQ2_!4m^lh$uJl5z(a!+_ecvuH1ISsqerb|U{60X7=TPXngC!W
zIuV?}F(Cj<!_Nx<7y~f?C$uBZ3sv01@&_Dyye_>&7j5*>UzvGtkd83KCcj6L!qBb(
zn|KDWQ*7yvi`puL&B`u(p*2F%(&&$jT_+^Y4hGz@<u1lTlt>oQ0?>z~g;>dn0n;G=
zbPfP}q~ih@2%(M8CR9`kfHVm4BZC!VBQ5#llvjR}(n}BNG}KW~U3IU(zLAjNeE4&X
z63JpfO+SkeTS6ZGWurPm<)-aVo)|0vz!knk00%_ryl}U)fF#6;>YO-BY#ZhNUU%1s
z-?Pb$ctdXa_1I^xeMp#R-t<CGbAF1{3sL>~)f43zDeW!*BBKen2$RX|{)nT?4ghRm
zkL)-KZaY6TC|xy(l>r<%BpWaC2LjW!3Dq?)7sQAlF``i}(LL{QiEAK^@?^d3dGLcE
z452^ll{pFJYa#m*-zogH5P*HIL<37-AvAy^RRACv2xOc;RG~V35aUXUP#ypO5aPdw
z=wls!T1Y(pREex@3jh}E#~@T^L$mc`f)ylNwlH`P8+NT+SP-EY$4JJav8sfyVu&kf
z1+`MRB3I_)m9Gf)0bqC{fA`=90K_1SPN<9;=D?XSdNBhH$YY59s2xTS7)Fvsu@C@o
z!!KY~z<k8O0Ja!L4gk=MEGlq|{)nC>4Nwb0-mr|QOr<KngpcmI$`SZrNIt^HuQxG7
zPA{|*u)4qqVx0g-pCA?nE-|}Zbjt+KP$2!v6*r3n(prCOMndvo2x6fC6SG6d4TM<?
zf8;|3awr@qQIWVrZc=5)Sfx7G$<FTp>0U%?h>>a;qJ}UjU}u2RMfO4eD24E|Axk`o
zDh#<0eI!vK@#yD1)zr?0I`pB?c~Gk+RG|w!BtvZUkdhuUqBx>xDtXcZL`O=}lI{o}
z<0+3L&J)Xs<ii#1d5<gL1QB-B=RRl1&z-1ZP?P%fr$7y=P=`v?q8jz6NKL9zm&(+p
zI`yg0sYgPjiV&*$!>U-Fs#dGI)vI<jt6UAMSH%j}v6{84X#J{M$-36Fwl%G6jjLPb
z3fH;XwXS%5t6u54*Sq#LuY3)xUj+-;!5X%(i2bW#3A@<CHa4-0jjUrO3)#t9wz8Og
ztY#^@*~@k|vz!gBXGIIz(VDijsQs*JNxRz9wl=k_jjd~Ci`9Dn*!H%#&8=>C%iG@i
z_P4+du5gD-+~OMdxX4Yea+k~8<~sMe(2cHir%T=HTKBrx&8~L0%iZpJ_q*T?uXx8x
z-twCFyy#7@de_U|_PY1I@Qts0=S$!E+V{Tr&98p<%isR`_rCxRuz&|l-~t=?zz9yT
zf)~u-2HQ6tw}r56C0q{*TR6fPo^XaMyx|LL_`@6qv4=xU;t`v;!zdPUic7rW6RY^e
zEQYa*V@%^2+qlIzmT``2yyF||_{Tg3vX6sI<RKfm$4C}(l8e0LBP;pIOop<PqfF%~
zTe-<tmU5P>yyYuv`O91evzNn6<}sVO%V-vJn#;WAGpqUk&1{CVg&~|!Iw!Qkcdj#@
z?ab#r`&rL`&a<HV9B4uh`p<_hG@=d7=tVnP(U4BGq#GS+N>BRHm##FXEzRjods@?=
z&a|jI9cogK`qQT_HL6X`>Q%d1)v!*rtXmyxTF?5`x2`p=ZO!Xl`&!q)&b6?69c*F`
z``5=VHnNS)>}5M!+0ah5w3{7mMpJv*&&GDOvwiJubNk!d4!5?)?QL<Fo7~_=x4F}O
z?sl{L-Rq9Gy65d~dDolX@W!{j^L_7r^ZVcX4zxN3PVj;o{NM;rxWX6C@P<45;Si6w
z#3xSiid+2R7|*!IH_q{nd;H@d54p%kPV$nQ{NyPAPr1rh&hnPK{N*r@xy)xy^P1cI
z<~Yx}&Ueo9p8NdgKo7dmhfegO8~x}=PrA|_&VZ&n{pnDTy40sm^{QL_>R8XZ*0;{}
zu6zCKU=O?4$4>ULoBix)PrKUJ&i1yu{q1m%yWHna_qyBt?s(6;-uKS;zWaUa{`iOB
z2T%CH`{VD3PrTw6&-lhW{_&8HyyPcO`N~`V@|e%O<~Kk0z!(1W|2RD7M^F0FoBs5u
zPrd3_&-&K8{`IhrJ>oqNdcuod?<;_S<{^ND-XlQ-RL?!sgMb9tYuyM$pt}QDV0_IB
z-|HeU!V`>;g2^MF@x%u^^PA88?tB0H;1B=*>}y~6+eiNiNML~j<jw+F6hHG2NJ0{x
zAd3}Dz5VZZdJ^cccoC!@?{tuVO~(RHU<SW8bt&)!y4Q6nKnHZNfK4X?M1X$P=XD7P
zfmkPj6c}|7Fo8sXfllXt+xK)6_yi_sg24B5A}Dnlhy)d=f)nV1QMUp|kOUuycKGLY
zD<BKgM}PL0fk;3HPw<0KM}P*Hf>C#YQD=k)NOb|Ybt~9)QJ8i6cXd<PbREEh9Uy*O
z*o9vBg<u$lPDgv>7kUFI3v^%vNl*uLu!UM@f>Z~GQ`Z4c@Pe9`0`)hCbqIA;7<O`K
zb{&uevLFjb0DuCB1hS9>Mlc6;0D=tv-~e<W3rMJSc$ft1=X5(b2SF$cLC|%OD2ZB^
ziJRDoP6q*V5P%Mdfq^)Pg$Q*|KnL;{i%7VNggAq;pox)4icKeqx%hO5Xo6_yhGj>G
zcKCFE2z3zPeokiulSp-VI0r;v2C`rTP=|<$$cT>kiOpz@i`a-xD1cQ*i>;`2;<$Bv
zIER8*i%_Qm4k(Ob_>S-xkMcN=kVl5(cX-K|f2P=sR#yk$_;mjGdU!~LSa*(J7m#PC
zi90xsb@zm4NQA}MbVo3V{AhI@PzOnXjC4SRg6NJ|H<6$Sbq+uT9ti;(seiH{jQgj1
zCiw(Ur;zISk_-uTFgcSZ$&o4l*>pFFlESzGDF^{|;F58NkhWNnR%ZtM*K~q-i44$w
z5Gi#aIf+i`bP@S<4taGo$#q#NbtCDK1{rl*sgVyzk7QYvW_gxqX?FHldxy7!Rrz!f
zkOKVZ01iNi5C8#8`G|FS1b3O24se%__=rvC098qtDWH3V8JJO*mxAeZmk0qyX>|j+
zn1C5|eb@nW`Isr-mwVZlj`@fwNSIIen2~7*GnsX934-hA0HGO?B2a->35$|h2SyN*
zZ%7A>$pES-3nPeiDL|XHS&Fg{k-NElS@?pr>5&Xzno*aASI3;l_;gt~g2g#?Mqme9
zXPAh2n1flFi`kiYS%k9xpqRSJolr-cn3$7IC!1CGo3%NK>`8U6xt{-Mb<o*$_lb<d
z$%jdanN*jbPlt!~nU(}vpay!N@3@wrcX)V6jZ?>avS0^jh=f5fh!!dfX5e%cdZ8Hl
zbm^FfBsiW&Afa_YkSh?0vOt@WNRU&9h)}1F`_};|N(U;yb(6`57RsXgCjv8ShjTCo
z5I}#d*mN6up&7~mS$G6>z=JEWq;sH@Z8)Pf8g&5bm=!4kb6}x#kb+6Nq(kVWREeS`
z>X2E;q9RELEYN<DDRt9%b;+oUR|kn{8k{=0pH=s!O=kp2$pCmbjZ}J?c94Abd7AnO
zr*O%MEqbI_ccO#;sG=bHp)6XY7OJQzKm>wF1eofMSgNIy_=-*!gicqcRVSxv8mb^F
zbq(04Cpw`2NvK#?rFB}2JKCdC2dhnoh~$Z&y1J{p+N-Chpr0pt^v9P{hm^qA0Z6Ht
z3z-6PS&AvJtj!v#DKM2GYJ$&72j0j4BH(^^iHPclbuRjJFlq-I8JCf`rb&3J(n_uR
zN3OYdqILj*r)UOs*nvVBm(a?kXb1rn`he|MeM#W1=1Ql_>8dMgnMrV%BJc#>n1v76
zuMqIBx+#Pm-~dgEkUJ;>L12QtDUmK&s>f#sxw(XP`jH<?u*vwAPA9PpFn>B3fKQN-
zP*<gi7=%y%(6LTut1DZw;#rmLhqF_+tw_+VyvdXuFs<rZp84u@(HMzyU<PJjhw`Ve
z3=4rNU<V5Lv+1d^92<2<aI#34u^W4{a7nQiTL(m$bviq!56ZJGE3okDh&sEig6gYw
zd$)L-w~q&`<u{m!$gNM;e!`fHz1gO0%A3xZv_zncO^1iuX9RWdn1~Cmvhbp<D2OkZ
zg+iHiH=3?GTCxJ_bXmH&jfsVmYpTgdx7wPAm}{z}+jO=njb>V?NGc1dYrCs!e@Y60
zi~D{R`ieCelYD9iTL`jLsHjxel9WiiO=+7aD2;P)f>NivO=kwJ_ykXi1jq}!HkqPF
zzyj9)SgWr3vaef;LKt;OnY2|0xsr>sohzNEE1tPpr*PV*@%y`U5WEa|wZ&_j_^ZE8
zx4TTsxLOCGDd2kuY^DJEytgR5EepB?oU`N00OzZ>7JR`NoWXC$x3(vph#08)x4l=H
zyFshIRH?YOnT&#Z1bgZL=t;SjtCW>%jCHVe?;D^=D~M3%fTF9OESR)eSfipUsya-=
zf113nN{vBWyY?rlW+1bJ$+(Ma2A8<Fp-BgVYP?t%pASk0b1<@8iN$A#ghx=uzgWhn
zX_8;;bot8wda8SRdc>ni1W35J3Ov4QJhFKlb(Tu5$~ko`?3gc%!?U}sv)jD$3%d^g
zs+(po2iLi!15CwDXT^gl#?4#D7+S?4`NX3c!LK@#EAXSD{G&JvplE!?Wh}!xyr&Xe
zbziB$upG;>Jj+tY!G_0yg1CKI%Aq_+$Ove{jf=t%SeJsjgMzxaDqD>+>~t_%!%sJn
ziG0F`e8X#qqoT{oo(pxy$;8}T&CfiZGdsakXQ>VtiAubmL!5_$+;mdx!^A9+ZP)=F
zV8?$vbtBAysi<`<EYI^?e<kU*<~x>7XM%2dtL3}4O;-ni>Z&Fw&|*oR4uHK`XUvlf
z&^H{+hunUONzM-FrxSaxPY|yaEsXEX0Q)S@^gPmziMtH2&J5tm&neEW+P1R)>dYu9
z$AG-dw7k<i-P3q$%Yt`%u9%cUC;~=()b5CfZ>iLY%c6@r%q;E3Xc&ogdv)O&#g}W-
zc`6HFjH<v)&05U>NPwM9_q6Tlw%eS}_UFyZ$kpMzbscbuM6d$P+Qw;}hoXAVj4QZS
z`F=~v%VAx0^qRc+taX3Qp<$h}(_7e|imi2vemG5a(Hq$T9heP0zjzqUQr*#2EzMs2
zmKq&(agD`v-GHr#%);rQe9gvw&C4lzhVJN)dd;d+htM-Uy>83aw@TJex3;hB)4(0v
z!cC7rZH7{Z1kU{1Pq%}I%-l^4bx*z0kBtPFimp&MkvM$0I^D9^ESX>box|JxqoTXL
zQ0Lt6TYYN%!2C(sR)^desL-{G-gupd1$e0MXUG8Qphs=gwds>u2dY!|ikcmQ``zEo
zsMt{_;3T`b4qykREYtT~uu`Ys6YkK7o6N>Y-E{oRvuoZY>xk|RkgYh@JAB{j`ojAi
zef5`u`0aErT;IY;+v59mwu<04{gO}m)=pTy!`<UP{^Q?Q+-+IaE-aMnTDrl!$WYgy
z&mE#rEvVaS-BQQ0Qmx%Yc#$%`<lp_d5b4njVAhGN<nhhTM0~1P&fbHmoL(HbwRqP}
zoQJjff)km4bU>*lti@MXp%qExTv^XM%a1|Ik9=;Gn@a?^N!bqna0E<=hlVQQJ$ruu
zy^G(hn#vjF-aWfaKIP!N!#RG2r(LqDyPkGFyINf5o-NgK?#T||=Z=n_4E+SnD2QDy
z=B+N;QLS~WPIb9Hb-NDazW(dLPIp3X(mcolBCrC|_=09o2SES<9l!#0(2Qss1OzDN
z(_ZaVnF19`eVF{@I?0CgYJfny*mQ81h7O}>XzX!|b#Ym#w#%$mtL@Vmtu4!jK`^Zj
z$dq7Cb=N+9W1ilEh^EI*2O_QGV41Xt_<{Z0=IA`%_6Lb*ngV)ClslNPCraL9oSk;?
zk3czuEAa7jO_RW!@$4RyAph|%Sn=-O=(WzLbr7}B&cl@d-SH<M^15mACtrb;NY{vX
znpw)CKw0Mn_<z~H?ey;A%#Q6l3*xrx?2D_84Q=c!z}PB(@sK`=Rd4E*9Ptwmjz53f
zu5OO@j_-$V@Ls#=Tle)+r}hVb$ie>ha3A+wH|$M`qPJ*=i7uh(K7)S^>*d||NGOdL
zTIgtB(x!L>MsNg3K!3Czv?!{8jJt+BI*5?$o35?w9J;xRn5r1+j{81!O*)8v@8;bc
z?K4`Dv759G@S#!boTM+RNV>~rV3JVG0F26miizh}H<8WQe!L8hvRie!59z-jxRL1K
zwSAg&XrT%?<7{61%?tgukD?%qzDaxdiNE+>F8Iv<&-bD)m1ysntlxl(y!@i?k+<Lc
zn%<1*uZpry`%oAB$xq`l?V;3%qGs^NwkiU)U97+i5N2epU{KItL4gDhE@ary;X{ZK
zB~GMR(c(pn88vR?*wN!hkRe5mBw5nrNt7v78ua(i<x7|^{T*~5!okB15FmEg8PbfA
zg-7UEgrIX_k~#%D@LYK?=SHR!kt&UP(I`U*HZ>OAd2=KLI&{2RZMv}PMXhBSKsdYb
zs==Q@hhA(eG3!`{HSwC=Td_mmf?OZIRlAe$M6h%YQ(SDYap1y{B~PYY+45z~nKf_b
z+__~;(Enz3j_5!Zk%dp@c$`X_WNX)wMc6U_^EmeHjiyl_RE^uWZxLbZ{w7}B_;KXP
zl`m&*`EzKPqmL(%m4pZjB4I_aPTE{*ckd!ogtZ->ICbmTwVP)@GKH);+uP5lU*G<H
z{Q1K_hwf7P@f40o;t3>(01TrbkkGH71Q)~z0-zl9Ex-W_JWxXYAlMB<4m<SlLl8sU
zufOO-H1R|fQ&e$97F%@jMHpioiNF5-lkr9zbJTH19((lhM<7L{5jq=#H1bF!lT>m^
zCYyAU#UVp0@<}SIwDL+Uv($1+E*Xdtv?;q3b4)VJH1kX})4c4<n8GY<h4OrZ00}yg
zkgp*)7i!R<IqSUhAtN?yGSI>tU_nCvLKhOjh$oCl!MH>t+Ox1j)wJ|dOf$8J%@PY*
zlt30PB#8xC6l4y9BnBMFAyQ2>D2cfmLRD3TAfm%nltdtcz(+Gm;fXj8(v{cAZe56l
zC(N+Zp<jb#XgtM)-4%&mF>2OVV42NUBV!L*L6%0JSQVvRpD@?lKP~DuB3L650f{Gw
z7!IO$D>bMCaOc%@Uw-@Ll2e%qB9#s!kfK9hhRl6PVTU?+qT1%(tJSQBkBapni6vV1
zq;Kayf(}`Nz{mlR(}k$xk3*JhV<f6GVvafvBUu)cC3-Ijyif*N<cnsmxwMiS@_D0;
zAt==#BYqC)2|7}BTIq;3eyH95hrTsKs5&5yr~~R`If5Y-g!6Z7vdg9tVE@)SI<WXG
zssq=B-gYqKil~N&Zd>6d39MSFLztl>WTBZcI{KF7Z<5v}wN|YQ3Vd*jI;bNFw+est
z@QWUY+9Ayw>U<#w<kcA0Z#N%lj;|pK{couqvOBMC9hhS^iah={^~$3)dw1S@*AZ>e
z82Gkvw^A_K0n?5s3NPfnUY@3+7W2vh;;BzTC+dUUi}}DzZwPOL9EhGFsyp}@d|`W)
z8iMQd>Yl87WwCdn6zVVna>SgHpQ!d}VxXpiP>&%ZP@k)s7Loeh&wIQP3s&?uKbzSP
ze-ugJ1Pf9@lNpV83?N|tK{iIJ$FQ$1*27-^q86dS$YO&XWWf52XECLuO9l8FUid)Q
z5If**A@9+f?|k?}AbJRRGkFgRvC=X-$bt@c3WDIAC<`+fq=`?2;z7DLE`tz377#c>
z66-Lr6@W|@_5<0(9MZCdc&#9?>VO#Opn{8_j{#RSBdmfWI65>=j^h#B7uO|%IXH2N
zuR53;;g}Jl@oXX_V*#lah!vI5q-KB=q<rvoggSt01(~EB1Nb<`Fq#TqW&|A_8fn3;
z?JpvUtOz3=X%SaiFqRoq;j_f(M^mMM2-G1$FRKCpad~lmVeF$3$~X}_2ufD9+~F-l
z=@=v`@lJMhW3{yZNRvpS@gQnkNDd#;GG_%*oZ}=Xa)wwCaVf7MW*B4#*y$Da-7W<$
z3``2-Nl&GuU~vo4qPgrzhnRV)R7Gi7s3xLKgK#qmb|@VCf>seZc0iw4Tq8r_6h=D`
z27O?8!e2Hiw>2i=dLnp2K<8*thoW*Kq}rh8p1^=tW`v~+Ip$GBnw6631Ye42qGD#s
zQIFOEq@@djxgf}ZBfK=G6fuGwL?tk0P9&)?Rp~>fx>Uz06_pySTt^-7QBx6to$xV(
z86d{a?R4ONy%NDd=On+UCNv2jd%{uGrZu2`Rj95)D+Aowz>_u<qel7GTVxR-gcgLG
z2l1vu+N#X|az<9Nlf}(B|JSmC9)wg;G1~m_Wmmtd@_Q6zfEHc#o=O>^4)7FhL=wvY
zg+>)$FNG*+4T3)EREvi@BrPVdVp={$GPm)gZ3^miTvD!u4z#789eA=-;~tkz$>k_R
z60%B_;R`j7<>0D(o5i&?k!b>2tS6mI)kn@TimO~MM9+&=1ip8IDUk1-&LxmJoXc@0
zE$!N%Dl`9j5^1XqjA)}PU4<B}4o6@?%P5CVbKzINNaZhZsmfVZ4)=m<)2<Y``P%Xp
zq_GZZFJ(=9ViY@vL;<@O5;v5D^%`VjZB1@>YwStVYVl4++l^4dXFrO7ICa!X4S48h
z+YQ(MQ5H147>><oh6e{Qz}<`xk$Kad70gb{vpXtS<`CBa(qT7C&GMGHj1@Y3Syspd
z3clbt%Fq%7%GeAm6uqM3Fps&aB#ttl(hTPRi5aR3B$=M?ROmq)<Oqvy*%KC>x;ck0
zz#v@bVcX*400OxnWj1rALU$)ED&*0Pel$Y*Y#LL+n5L;-@<GC)XmGIrR*e-hLq^<?
z*QHq3yXLh>EPD`CsWOmM1lK|2m}HFQc#D$W&9`==#g;Cl)^jv6QkP9ZBs=*i)wc3&
zNvr9E;%b*+0a=x+9k_5NCY(Z9N(VxXILDCZBI6FrVMF^UIKvs-imh{0bmO>#E#=++
z6=@x?<xLTG3w$7mOSroi4)Asl9N1AU$i88VD@tQUT<|gIrcYB4Xm4b}ZlO2>EWWm3
zQ<1i?S!1g~4$zL;n*q~itPTO^@?Pg$=R2RsuTwLZ<%&S)L$AtvHfZ!@n^B8b`FBC?
zS8vFE6X(fWW3}%GXl;+Sj@3qj9e8U-sd0D?VqU>K=`dug%L35qb{nzBSP{1SW$Z*K
z`*^;FFMO{G&S5vzW?gNnOcJ}=5HSOD(X2a)1fGh6Z;0Zb*d50^vD#eydm1r*?S{BJ
zkaM`o(?J&XisYB%TI0J1pD=WyS6$j(UuLBeOZ9Hr9ELoneeG-S^MfFvJGo~6$hT_j
z`=s*|^G#;}fqI$Vz!^KXv&VLgaf@>X%<k){iLu&DrTe#xe2&oP{lXAW5!5egAdh5P
zI17UPgNz*Sab|zACT=Pkr$0jBzuyWT`7!UCpM$8czxU`reox^)0Gv3jaX-hHG|YPl
zQb8f(BZBm5i1jHs11zvqYceZ>KIy{~$VonLlf7GGh!V3s5gfr3JEs*86bGmS+S(@@
zQa&Sc!QeZHrDHaMdO)bEmirkpERviaios_gE$Uz#ne#R?S}RyHl{C|=*s2vCq==b%
z2nRqI_=1QhbciSf!A_#8yQ`&qTNNX89RH$&7(2Epgoq}pnJN?-DMY3JE2P4znnGYo
zmoK!o%R3ARm><|{D;xZuBN&VKP^7>(y@i;=!09`R8jB$GwigTxF*JxO%t2d|z4!q=
z)tQ$zR6`QXL`}4ka|)cg5`h&Eh-xu|ItT)`V1YVF7oiFQWO>0=Y{lD3fhKYkP#eCF
zTZ=jn!(>4M&^o;9$&T1EB~YY;j6#fg(jp?5r>mH!S;QxU2?Biz3wS!l(@@4RGo=(T
zCXi|wB47(G3Pu(f#$vP!6<h&xG)Juoq#Hvo#wf>gEW3qJM`=3^Zxoy@%sYaBGm^nZ
zZFH4y5vee$J|#>q2e1RZfdF?r$8^lLM2km;WXFamL!k)^7RW~bfT}}=xSu3gfeu&!
zagh&%)J0|K#T}{xv+4jAc(p~MNQ(q11|UUKM9EaFIy!*Hlmx8ebCgh=Nk+^g4FMSs
zlteJpzv#<0d2EQI+(e~ZN+YqXlysswfEWkpB0M^(O%fbI^p?QO%9m6*@M5}KgaFhr
zf+K*JA#@ip0+zKwiaU}fY$LW&^vX4I6frV`sCW;!yq96CjRX3hD>5sBsk*itq?K|z
zxVbI`+_Pgb%!NSA@cGN}XfrO<yK(7&y#$LsBPMWZ42iTV3nCR_JIsfiLdT5AH&jfs
zxXix%uZR>Q_^1}KJOZ*b%SCLMjoVDQ6CA#bvZ+iWC9;?QB%n*(tO_FVO*2TBwp2^K
z`9Oo14WW#P(maUhgo}q{O6$DN7V$Z~zzN&X7kHb9xHt$*V~oRSjirc;r+ARYxC`>>
zj`Q3b$ym>{P|vQ|8)-zOjUY;o5R8$TPlR~E@dQ7t1GesbjPzuP1H}scjJpSc2;0z4
z?2J$ebr9V94dO$mEYt{=!;cNcl-Z~a9l6lr%g_@Ej)R#{6irbvsnFj*kL$<|!sLh!
zwT~IS6lj6a4{=fTh*1=IkG4@!APv$gVbR~95aS!rhnST7P||&Y5FRm73t<rr5mG9x
z(j_5ME6q|Z-BK>?(vHAVFAY;M9aAzDQZOx3G)+_gHC<DkJ5x4&Q#g%NIW-$Mol`r#
zQ#{SnEU8nK$dgk!E~W8PDe6JtK?40`()oy#rZ5ylp~Qng)RiDfJ)KlawUl4`6kbG9
zj%bzUm=$rUF;2B23q%^V%ZTpFqH{TyM_K^^>BeG#8)Q+I^Vya-I=JTK#f+#IhA5X*
zO)p*Lh=L=ZQ56<=5goL^RsHFxN?lfFRTHOFqJqiA?<_vUOO0xEii!!3WAm$QB_u#8
zRg5@QbZQ!>NrDAxG;ul6$Y2?lff<>3D2uomyx<ypq>HYRJ*FvFbEOD+4Ka)eR_4>d
zs{yEJGmCo#8?k9tg<aS!IVYoW6|qb&mt=_liN%j?b)8{lfU7grjE%nMj0pP+3>91%
zS7AW`yE)WE(8*y4+ws?kXj$1q9gTolD>T-;nFw(u8B>uR5`74oJv<y`SfL%-7%{<;
z!wP%~pX7NSrF9+%V4m@DpZ}>IYs{WSx}g@#3SY4;@!?Nz^(#39*8rl4X+*@iFdq=C
zO^j$Nt1zLl1)!-NpaPPyKKmXCdO)VR5ay%^<_t`Z*xS2uthoiYq@AO)l_466s_nrc
zq1-K^eO$-|l5;Ae!HA|9ouVg-G0b(M>Z2p!<03Btqgyhj>YO>~Q>a41qeH4KQu16;
z9ZVb)+xjzz*#Rae8nPv-CdP8qia-MYf&8CIN;$&3q)d8(tL&st!X>46$XSY<)`~=p
zV9sRf2*9O0V{@i;d8;IfQEI{?Ynr-jI^Cd@x}c3*^F3b)v8;4jjK2D-X}qT$vnQ{a
zr$3P>lLa|&d6+OVskSoIx9T|865onyC_YNBh?=N6LaD)WI&keeh#9-W`^A-0U}C(A
z>Yyu0P0XXJDJ!}uk_xDuf`Fd7!&=HKu<|$&D5|;w9IZ;PrV<svl?dj%;N{9-#tkmK
zTCSjS$@YDx0lugT_Bg{rECG(ahu|*sO=2ZZ5zBG_%raCZ#4yi#-uUT7^sz7;ODzIZ
z8yhy=G}6IpnXP!uw&&BWwb@wzq*zG9^9l{aF;h`626M36lCJ4$Ob(XL>SU!3<F5Go
zF8nnW@j5%|&>{MIu9UT+-!<Zl_&_*ru<Dp&IwqwLyf65eFhA}uLzLo{Gh<P@MFwc1
z)S)?ph~XBx)+Ih=R9+CD>i`#f6@i?wY>Pi;QMMhs#qmr*wPlED>o#;^JRh9C3uH0|
z1|}XYh(M|fUT&ee_%!fR2u|BF2-+ovs*7N;1Ic_d%9OKHTN^DhgFAy9M1x3*SWSl@
zWr+AdX2xG<HnTHRWJO~%a4EHy+~!n!WmXerFs!Rt3*{oNIfxL~R1Ro?9+4Fb9=D*5
zN=dmVGQ4fQ*ekZhX1m4zkUOX%-cWR7-C5qcqiD7J38e2c=3(8?WKO@2wZh)02zo2G
zdt*O+dqHl-94YIufO9yGBsfA9v66lWb2ho0cIVNH8<#c}g?6Hq<2Ibj4i&@~BK~6N
z^~`~OYN#gY6$=xlF}?5;fucLw4Qr`~2FnfcJWrO0*Hfsp!@7nBLat-I`+1luipNBz
zw$<}lQ?{7|#EH49yR%#AE+mN3yRgbLIk)rWb(-r@?&%wTS;8)7p|oBPf}6Doy6|I)
z4eh$%ay{@J->K=?sNQVO_KboyXkFet%?3UVys@sPL3An*2eb$d+%O#sSh{vTAjCl0
zxgVVfRoZ>)WX?eU2)yZJE7<enFP_%xY%ad)dsu;*7)|@XkPR};-f6`ior|bm2|Vt#
z%-G%TS>f40oO=(<Cb7isZ1Em%$}m9`99gQGn7yFf(aPo1j_Dedsi=a)?PJ1<MIbVs
zZ6S=1jkPvGnFHO%BKDq2Ka3=an3#*EiMB{WM^vNr+iQ)DszQ{pF+{S?Y=|>FXQ8~r
z!w#Q5^fo|5rp4w;2CkL~PjCNex&4-vM!Z2%{cZ#eYl`4-(6Pj6C2t%T=uV6^P!vVD
zD8*CcNrQOBMv0qJgvASz#lym<8H8_K6iH;Yi?H}bplmr|TwuGP#$+@hW?b@V%0-*J
z&j=q2aampe0CycQk4C_%pOd^vY}-iV^4Fw1KYDaH2cOJ*T$O#S$bK}4fBdJnzVN&-
zNDX(0IrnK#GRYJ`NtLt+=nfy2>~n+wa+#EmXH;`C*GW>`u_^yae~sY;w}?ZhU85}B
z96$Adc1qWbN}8a`-|W4uOqZ(!mpc)Nh5ky^j?LK=mt0nqv_x)d8_Wg5ODc-XTc68M
zvP)7O3$UmIrZ{t46HX|q3Wp);aMH}_wJy?f0LTo?2QO~FQq9c#byhiK@!T`OozB8W
z(A%Wdig<Lr)J@FvaNjhgSCMvQ&m!YQ&R?H01^`^=%m{Vw${HJZR6qDs|Lp(R&W7pE
zo&bse@KiL-c8l_K&l~@U1hqmW&3Iwa)V0tT`Skd;=uVM$P%(#}TrK&nC{XTf_`z6E
zTSfUb8w`Z6`Kad8%@EO(mQlg3y$>y4B{9*9w|Sy3dWOLH&CpR8-NS8T${RfsA7y%@
zpL(K4`ptk+1NjI@B|#@WlPRToun+r)uzImCd$T|LG9i1kUwgK1dnQqPw~u?dpZgnu
zd%C}SywCd&v3tGmd%ypC_Tc-F5LD&p6FLc0!q|G>Ap8S|Vg&K+=1|m?U{nW@e1}kc
zl;~o>-+UmtR7T0vvcT=aPnAzCcenxQ*bse*=<kaFXkJy-iWnAZdDUat#aY$Qrzckb
z&DZ^1O;vQUh+icd$TwVfDb|Y*{^eCx&R>4XdRBrlm}zC0hLC=C2X5lnR)^6V)OU^S
zw+Pm^2!PJla$O*uF>tkD*Wh$l*fDqI!x^VI*vNr@2GZ9B>Q}>l2!IvUlYt_vv3{ih
zh$OOP9bsVbpb9#4Ivi~1@FB#A5+_ouXz?P(j2bs`?C9|$$dDpOk}PTRB+8U3SF&vB
z@+C}^{{GRdX|tw31`uQ+IS65nh>Uf5MjRURsKXSpR%A><2PsqrMr1kQ=yc+of*T>w
zVQNqy!=rSFGGMXvU<!yw1_sU8p-z&AbC9ecsBvyxtqrqw#A_F#10rE3j<tCIHKK#U
z3>?gvgVC?vhFs}Dh-&#V=FFNmbMEZ<Gw9HwM<bni^Yp)*b<<9SkfLov2M!2AfKc_I
zY}&SC*RK5Vwgc7<gQut*+&9JBxMLfH06U{nue@tNJlx?q?i9rrZ}*vEutV42C3k18
z6Z_)c8mB5>9Q(Fw<<`;DG13t^gATG-WOR++y#s9p_mBvzDaHUDaZQv$9aEu4(GzsE
z=a3zdWmMrq^?`&TL^}!RP=N*=*xYLl&F7E`vcR_5a^_KJAzD0<HY1HS+IS<5IqJA0
zk3Fhn8frG>q?COTL4brTcE~~pY(Wh4q%39}<Rp|)HYCtM(iudAED#+3p=2Feu0Y2?
z4U(y4L`XXHms1^(xugmjMOWREXgVdrn{<3QW|>Bu+1wLJ%2Ee^J_QP9p$3UC$CFGR
z)MlP>K3Zo+>>V_fbd5m}=s;TCndgUg5Fye|K@9icqK&qt-w}1l^27?RI%ZG`Z-%Lu
zerOIy2McCBD3N}NLd4-l#2zH-hA=iK%ZIeuIwo013hL-rOoDn4m$AuWDg$aZ^jAa1
zI)vnZKAL+jy6LLBF1zizdl`^H(v%YefgVvV17<kdfxhsike7C_xdw2F2X&BwS!i<k
z#1sG0QHO6L@KhU;EKHcDENgmdM^~<q`D;XTI&^TtCUU$21Y_F&5%I**T6~bcL3J>d
za53jc^P@==C&CjDe|56QDjJONSr}Q`tsNiEL5CR)LqNn6KX<G$a<U|W1RYNZtC3mF
z{%NAl&h=cGev~;$S=Tyc-GKwK8pS|eA_T$k)(jjGwXc=hadEiHS|lz5R%5L-M}RNe
zELTsk?KW99^DCj$C{t}vUHHjTq_+owd#v9KNIdGhp^H8`>7|=~I_fdSD=)ncAUSbE
zW(~HJu)#)Td&os&D<iG@8DvBq@cC|0<_59Jtii8Br+ZS&Ga!&~N)ZLT@QKbw76Zav
z-%zuXZTl7S2I&_y_s*w)1p4XI^*dG1*U>Da<QsGw^f40uwNo8Ouz;k3*{h$vuGA(!
zm^tqurOJ;iM)f(*ouyUC;Sy1t6rm#sBr++m14HtLkt9fIB8K~$h4808{-Nc6=+l+B
z81@7+$YKsEG>8LtM-<ulWO()K9Z~cHItDmNE5!>Oj6Nu$0j92qMm!=Clc>Zcer9z+
zqL=uPgsiW0@E{|SSO6KA#q2qcO9D$E44*Q;23_Qb$8$)}mX}45P0Aq(2_tUENI)Zu
z#~>`E<KK!T5H!}Id1zWeV*=TjLQQ2;)Y^+I>iE2jHRO$pAp&f;<P|^)a*zh3!yNdA
zuZP&dKKhAMt`Nu+GxTpUyyKD?ZsW!I(E)TCyhwuoC?Z5zS|~7)EE**%SvPSVp_fQ{
zLNB#KN^KE^gKjJ)BdsV#yS<79PT`OlgV?#}Et84Xye2lYsm*OF(TS*mqE7@;C`MID
zc`;gJ0nh0WE+J<&psNe$xYRw2Y3wU~Y{*(R2@y8>(M0!bBiz8q0C`G=Q*(Hkp$2l$
z2@%053b~v;9g@%TZ4n|<VH9QLQq3#<6MPcMUw;&$&xkZsA!PC-@<JI(Ickn5TpEl!
z!`OkDN>Y&#8PTw&=|P<`0Hhc4n};02QsWVYoK+%U5<0rbh7jRlii2pkl4(3?PGl|I
zyed|+s@1J>bu->P4LBPTp&^Q(tY!s|Qs&A3MYVEKVO_$FK&7%IGVQP;#hZ<%lzKFa
z@ROqc9G4v~HP^T{qyt1?)Exd}Sj76K14|>q3baFqygFpBZLQR+lv2fm%we+}1*}9|
zh>^*R^dXLIWn^nr5dEY@rDwq@?`UX6qPVJ@N}Wj4XxWij8bq`|HB$IyyC$M!&8%mQ
zXhV<?*bWWvuA4K+EDzJw=~B14*1hg^zj~9f9s~*Zlx{@ol11@Kq_6CR>kglQ1R_8(
zBUX)(r=&_vHRjGv@@>pP)XQFw8N@6_dWe4w;$8gsbdOisXkRH($g=Q`vz`SgXJ-Ww
zoK7S{rG3bN8v;_+in7Bi^d3>LsNo|28CL|D;_tXN%1NF^gtrL79teTktPj_)m@0;F
zZzb%IxWQ1WN};MmvWDFu6S>GnKC<YvD<rtp)d6)NU&&e&qyILK%Kc>OTjwWGiJ>?m
zX=7h}rSldTQzXH?v#)fBq$r_vNLYAnj+_62$=DrF%x_bt(b~t%x^^}q0!cGe9dHEY
zD1}=U`7&baIOl_yWwj|iODJ*HW3n&}&klK|MV!Rn4?4i6(5>a5V`S)yd~j3Pku)=B
z$UOPzPR*CBBBG}PWQgc+Bb}DWtrLypUGuuvzW%jCl#CN*YE1+yU}4Sb5CjNxfCY8H
zP92oZf+tux+CiB1f3@QzBNS}^pjkF0=paxBrmYYObu*Geiqq8N@yghASeZp!lL9Ug
zK|9FN_T{>rR5}C!VG4oIxSM7Ma|<>JE9k%q0@aqO7#!gW7jOcZ%_VlTz}@hsRSLG<
zZ3XMOUb2uB1Nsb+efOIM|E5(P%<vtP-?&3hUIENu4nOB1i3k$!6arfd>9Zt;S1It*
zo$I2rF+I4yY`%yC>_FzeMTAjX6c>Y3-fTzy79%}p!OtJoIAt^2*=-@YzaeK3YX8d&
z&-O{WpGKxxKV+hJNoUC6?sQ<&z3z6uyEcVAul~NNg&z{Ml9p7rSPkR}*dhF@V8cQv
z$?v>c4tG|Ja0Da-%E}V|!BgRPQp{)Psmr}9XU&fKC~m*W46}>;<SWnUzR%%9CVx`v
zaf78O)k=??AIKr|C3=hOl`C}!i^!`(`hl3fu$+3;g^gZL7_$&f4w${lHN;`pdd0EC
z=SnI0gnTa_{UU1t*$1015x{le_)kdwi!@^WC}AHrU&4K&k}&)zfrkizHv@JskNgI6
zE+QguF+_-80K%OB;++8=AOa?!y69bM#D)m)jrfd|r{xDpn1PiYLCYCQxg?eNOkhfM
zz<*evL~T@nKwt@W$OBf#J<Zfg$cFmqQwpBMCOHQLRs?kbOAUI&WaOYkpdUoUAWYog
z?dTH-4q*@apk#>u)P1xD6Dpt+J|PrFp=U54cg;vliIt9Z1P5})73NnKp2QYPAxiw8
z86Y9u;mJaXp&G6s8@Az&P@#?pL=q4I3p7>kY2j^Qh8)tN9eUnJgrOUXM6G006e<N!
z1R^3Pq9QILOu(UzqyPo!7Y|-U5G);LKw=U|VoOvaBZ343Se^ntO(%{bDVCxsQiLO(
zqAIQ;E4HF5z9K9}L@LH2E!Ltf-XbpMVv)_FF7~1?{vt32qcHjiFAk$I9wRa)qcSd|
zM-(G7J|i?nqcl$AD>@@mpp1_kN&0{cHZ}w&9)&idj~^n15!97SIKa7OQ#oduC9*_1
zQX@RZqdXG-qr5Dcq8NdCA(Ts)MLX6A1SCNw!W}=FNCv9JKL%s~tpEktTvXuHv<=*^
zq`>)c#2`kD3SDGHG1Wyf%yWnU)F1&{T^_+@1k`NgI3AN>6r|@+o?wvVMjD>@yov|T
zBTd$%O?p*54jY5j$G**^SP{`r0!zc7i<#xeP#&0NB-k$nN*W@?i13dQ%z@ABO7~ra
zQY3+L@XSSiO+`cqKz`+lv=G*O&qZ_qmav#uCCFDM!AUk!KR!x9)`b~h;QL^NSFR;&
zBt%o*BwzNWUzSEr?w#iO#35qDojt^1hE7rXnM$rif~`PXh#OG4#DPRv_NWD0s2^NF
zNMmyU7EpD?r1)gW(ZzFB1Yb-<V9X?ija&vM22n7^7lzg}k=9?<rfuFPNx&hCw8qBG
z4_?(qd*sHw>;`VA$8XHfJQ0U+lm}`Khj};$MHY|)7$;KZ2gpFDbGpc4_{+sC=I<=m
zXfY>%2uSyY$ctG~DeY5(RApC+9dLo-O~I#56xQ%y1OPUYd>)Sf83>HI26miCL!?Mp
zYEO2GNPcqBTjHjIE+~V-p{sR>6fH@Ulv5Q^36yNs?75YffQgvcil4w;a>*B)EJUQp
zNdaXjLF%8L?AV*w0aij>J>}S@Jc)&PXSY09fc&6QQ46cM3arQqT09G`faqfI3Z_;6
z1nx-0REQ=6Opy(erG291v6!O)1y_)k3AFe`gdWnT;GS?~3tVwaG)<{peH(+GDVi#%
zBiakTI8MKi2*C)<zYs*g6c*9A6~j2pR7wmIP|SWzVpPRw5&%uDu;+pl5Xm^tpia%Z
zJrGZ<oR9_Tx9G*vG>y6uk$0L!-Ed{j?9A98kl8E=1f)&kEKal$Mcm8{;YbwT7^;%)
z4MjxiMF>vTyd#5!WKL-Wt*&Z#Sg8P+0DM4$zv`X2sn{*5<TNVfm?>0^sqtJ*t@<Bf
zr75&Vt4%th>kLGn(%J0PCjzBol0JlaHJDNmQt&K`t%j(e2G{t|*FGs~a7j;0S`cd}
z|7+Y0(1aAFzNAwD0+*@O+5(AK3~dSTNYG?e5cgmZgPo)?O$2#egb3}A)u7vC>K6By
z(E8}app4MNjvd3WkP9&k3{9oCsam!c$_*iCOzuz*!RVweOa3@)dRkG$N~_GyEHlnx
z2T0KlC9H5Agoynhh<@uAfer@7(SdfCh{hKmsjIiLs~d@t<6+p*a#kW8Y8EvV$0$<r
zbrJ%B($0-iDQ%Cpr4qmjNGloLNybuzbtZ1K7r^QYS7cJLSV%4jQlZ$=?s!Eo{ZcU5
z(bw{h&WZ>!HSIyHh1NWi4@K=G-BJL77tJ=V;~rx%{^Rf%732BUx^B_8wv#}?{}aIC
zs?iFnQn?*p!ChYg;!@2QJ*{kSsib#0z!Su#M3mG+p_I-s#Y$P(DNXI;$rMd31(U93
z4M}NHgpd-(ElBuO4K>S91x`_wlR25Lfo+LX=?CT@E<_+NKFQbPZZG%dqBV{cf*4+j
zp_Q-32wP<?dI{D;QK>{Y7iBesWtAD}DymW`*Uz-CRJ~bm6`kdlmze^~W2M$)<y?n_
z5^RaATN*@dRY@L3L~cn0qV>f9(PrTYFGToO@}lIo5SREGS6G;?{W4dfxNm4pCgXN5
z3a79uTBCPW3q>sKL%{ITYH0e7-FmUD_xacvRi{<XuYEZLetFxkyjSl~|0@4lTJCsm
zw}5O<Ia=*{*k%o;7LAyq7}tqm1lHh|+7br#SeQrLXOQ)$uhQ7E*qB5_Z;pi*n-MV=
zb<S$astU)k9G9YQHrbOIotD%qR4uK1qVMi9P+J<EaL5|?*ja-1@0CpopcP5F`owL-
z8n^^seZ_G0{ztAgl8!YR0aKq`3CCJcS{0euky3=F-Oe8WMjZ(np+RW`qw-E=ger?#
zc)%q52G=L!v5WlKlyyj@39?{mMJ)HusGY2>dD<nr@*F3#GItdm5^lvETX31(vNhY;
zX_&N8n^0YIwq;zt-IC^pTfmiDxuTt(s2#;wT=K~qz1bUDa5J~T{|4BxoN}O2WHr_O
zq}{q1v5{!UI(NraMi!F5$lQgf%^4QXO<&g*sm}o&SqPoO@b4(2rqYp=tHvFgL>;6q
zlVrx6%mFcof^qhwTt*|ELSP+3!wlC^^Vf}A$(`KTaoe#~v)Yt%KBJt}u^eWap+z^H
z+!5(A|1?k^kt4pILjB$Q30@4>7A+qH;w|;!JxSwz+ZF!A5l9~8o$^HJ-}(9N?MY}4
zgB}4@?pMrT@im0@DP2~+$ySqvB$p3ZQ%;MrZ@w-D^wr)bCv<+0QyHQyTxTBlwdMCs
zSV7LUQ9?Cxn8orr1Y!4|TbQ2@uHRnw58%Py=oKpcG1dL$|DRe*abf#4h=4Q!Wzk~m
zUPcDBX`gnI1!e={1`wK-1Wp8#R)h%R(-!N*2CiUik3<m~$*%}uNibUz8c=KZhXewu
zM(iL*jMQ+CR!S^)yh$JtZqjadh;nOE@oq(McL-{4H+PqgHI7CXjveeaMFamL8S1nf
zqG4`#H+#4DHhuSK>|q@$L?El6GFD_O8e)CBH-Gmx62bRqV4^05#5X46C%U32`nQ5F
zI5z<}gFiTgN4SKKgo97Gg<m*^XLyBYIEQz*hqL#Ff4GQ`IEkllh?h8ur?`qYsA^Z?
zHKI4^gd-B{_xz0W60KuJ6nIS7_=@+qkJDW$npi#>|F=jCq&6L7pp<rb6|Yuqq>>NR
zOLpW(Dlv$RBu13vMeaB75+p^4087R;maEXJ$mEZgxtZJDP%nuQ^khbOY(%&@tsNyd
z*{J`%sG@8nr>5;%vL#cCC7BE}Y@ek@+$C6c#Fq0gM93vwQhB|oWuY5{Uat3<PdcSH
zc#B(Xv=rt=B&LQP@>S6}t!-x7KE`KC2UuJLWZZ>LrDjDOI$YwKV!$S;x5jl>x~<>(
zR_SK>hDUF1r)~u2ZxZMHP^Wne$ZxRoaahEJ1ZQ*XH+E{Ld*B9l&M-$rNDl5q(OQvw
z;zzf}SVm|_YwWt`@F%bTrx;xaiX7c;M!S?D|Hy&5E3U`8yyxAeKd1q1>4a8Eg;MC1
zPzsi9=%93HpX512C@ZAk9>`h5S=+h1YRd7|s87?Hwpx_#{tf#w7obb5eO`P9Cxwtk
z3%<jpihgPSlBK*lDgMIvystdVqsyAoMgZ>1o9e`z9zmVLDV=UyqT*@8jLDw1OvM1I
z!4vAoTm%F`D)}@#xm{`^8x5=yM$AIQuG(rVR|IHJJ#!(>+O*B7!i>xhE6_|%Kv_=p
z#%SO$E3bmcv$j0jx4pYi>+4)Aqg6cZ&?mP}JR*l|jEHOXlo8^VY$H<yt8h=eT5tS7
zJE)t;5g+T5TWrgc5HCl4i`6K_dPT!R|9-t}Yzw`R-GD3v8QsW&PxSCktr<khN~-2)
z#pP#ghDg5Kzdr2ah|S{cqj=U8!ClW@?m8XaP6+KXIa#)&{#1FCSe5s`r*7&??F1%%
zBfTsd)wbQX?IppjMu^MY22$PPuq45dFTKj%=1boelkEp?BQ29N8?MSGf8yRPYsS9&
zzrT(|t~m9U^A1o^E~X!Y+p)%zxI-=I0t5qr0*}aoFc4wFBy<uYL?SDptRn;GFl>l0
zg{&19IS!<Qq$2|e5<`|0SZ5+a2z2NiG}+Kj%9k8bCLEa}VI3n8K{A*l3usVTPXs2Z
zqY&aiB6R9J=^$$-gNG4iHmupO|KLomTe)`i`W0+gv17@WHG39qTD5E0wsrd!Zd|!@
z>DIM-7jImD|M>Rx+t(k*Cl={E5pfuC2aK|CUd-6ovBrc%3=VW4i^xDDvRGo)I@K~s
z21XNZc3?7zosOUdUY0q>Ov#KJxtbx`kp*M1b8ZV<+45`5-MxM5M);AZz`}?V7d`4w
z^~I4a1hQt}x+Cw43-fmO{vCXH@#D#tH-8>|diCqsw`Z{TZ~T9OFCux)J>&|>7xmMQ
z>|Y?tT)NIPfu2Bu2qHw-DyxAqN-2q?2Ewl-$`-t+L4h8mD7KJh>k0{rI5I;-u#g*Q
zumQUgF02y=x+$S2IxMay{|Xz5Frhi-;7Gp<Gh|>xj$AyBIQNV^63HZ$T$0HqoqQ6?
zD3gRwKEDE6Av4RG5-2wSPg^XihB69M%>9(AthE9~kmW+Ia)WF$2+i!Ej-E<-iZ}?q
zd{Z;ge43G?54j40O^%)-Ga&~QOZ12@fs`ePf%xo5(U4f2$$>^4gw!U(N;8guf_mx_
zAx9(hZ%pavm~m1D;%rS*4LMEdsVujulp|a((pAb{ef<^KV1*r)*kX-!i^?kb3ap?f
zSP)?aGe9+?jvyfDfQ35RJgHh1o<OvYZohRf1wxHTp-llp%MyY*R+SM6>R$RS1qhZB
zEkZh;U4afeR1AqS|1(xdVX2<zwU-V*VdDsb6bQ!5;eSJNzz#bnE0m+300goQGg82o
zr5Br8fn<^)6G-EZE`2G5jz4B0<d+;^iG>u5V9HKvt;JSb=jaF`1(@k@^xG7o?b$b$
z>b*CmmOTc!#DNNu*rb#%vbrIxkKLN<uD$*m?6AciyQE~5r4Qzy<~TW1JAl%+p%v-?
z%2R~orn^mPh3ZY+G})cw2qTU_;t8l`5+UKCMygTU#Oc`9Bz}Ra*ippkUYx@~g$n9q
zlL~@dxu_G8c4G!QDEx9sHwVgM21r-As+Ud=>Ite1{Ye%xR!YLMBi!ap-qFrY+>Av7
z{M`)5EmvF?|2t<-Js}ZR*6Q_(s&D9evbEoy`|iE}9{ljTGP_FpS`)$1hB~laAmcA`
zUo0~aJwo)5Adr|e)8W?&0?>V9pDn*hAOAvvzOMi<EC%e#{X(+7jyUjr>|<a@6lfEc
zAh06<)S&n{*g+3|5QHHVp?SzBAM>^6GPW|%j>M8bDM?RvBP0*v=&(N--Vld5)Zq?!
z*u$`tFg_=2PlS>{1Qsmiabt0zlu~d(AKE1&bMW62saQoTUJ;8~3>FaoBE<Hj;0Q@L
z5D^CWl_0b(N)SMl7S&=eHog&#ag^g6>4+?4S*ebB)Z-rc*hfG95s-P|A|3--NJAbH
zk%?5~{~~udNWd@>l980;Bq>=*OQOe-%ev$yIoU~1eiD?M%;bDRSxQr$5|yb`<qb#a
z#VD-+gW`cDltf^JqPYbENYEt`rpSO<BIJx}31;MC`4tBQFKk9oVMm5Z7i6vyn$eUd
zv0BLhB0K?`Nr+b&kCYoUp2wR{($BXFSGu!6APHhLQ$oUt5F450ofm0mTAB!)fr#Lm
zNa&nN@OhwpI;eJB5kb5-GSFvsWk?-~XY>e11RLfjj6_foo*p_)i(V9??WtyJusN8a
zaML}f`)6CQ`4y2m33CE5LNCuEDD^#|a|=~s{b&VKwPYj->C?{~LNu$F?6jwmYRJqm
z|0cT#`Dq{>IBM(=`pp~BR3Q2>1O4hS()tXga5Y4T3RqInjD8iYVa3ZvOOzX?cCb!j
z>rq`?`VyJ85UOvX6Yo?)2meIKt1q(agk-V5f)urCNYD>cc{<o!In*Qx<;YuS))NQl
zNGmJ2P`irsn_`L;vzgVbSjZY95jo&X4J)GqL?FQ_Hte(?W0-0abw8?o$pQb2ZN08T
zTa$oRBKJ!lXnm7{-MThc5v%QhW_ys>stC114Xtk*(y+YB6HU7+t#W${(vGyXHNaJf
zMLN*S{%r+6-5siS6V)24hGZ~hoTw}g$}ogH<(Vzp3`;pOJ%re|I3pE7V-lKN|95g1
zaw;gQejqbI>lz_Ci*f2^8Qfq8zofGcd5%x!00Gqb$pH@mO7RjRIa$~tr!RVl+miUA
z!nv&u$h7c>Wszcc24!Oc@?DDo<YAp8%$x}!)aC%CqZI>1CP!UoR1<gO{n+?s`^hDX
zON_D#Usxt9Msa%`Lxcz=2(gyYaPHjaV<>M0yQ6{ec9%zo&UqNb*8OjpPbTCT8)U|H
z$g!c=Ym$)&l`D5HmA-OA-;3Z^Ab^HZLYfE^IlE}dByQ6}*nFl^&B{6qK&nFkHIRo~
z_Q9Ffv{)mYG`jlaT}$gtMPSJ<ds?%3FDuMINVK31kjPQ3Hr-|*BkK;(|2nBb8!~0E
zX*8y|WKBr8-$PiS<`)@FA`aVDMQkJLT$2hR!5%hyza;G?7n{{deD%;M5^8((#@4tt
z2@yyn3)pxJA*6<YsRzVtn0_0~LpGhRH<lW^uDf3YqKrO4R;0z+;oki6*RywxRbSWP
zvIsUd16s9}h97|_eO}R715NQk>(wa^kXu>>Vry6z1>mL5cT}S*>8M0{(p;)@L)Ns+
zO}`xGm?bL<XnwOM|AaVSq6}o#l#-`Z#bGKp-gMGru>v;_BV~HCoiZXXBh(?ZE1wB`
zuQrrY5qii^k9zR5UYy|NX6RDK`PB(zbcdHbK%nY5MXYX_c;^_q{}F;rMtbsdj5H<%
zyVN^v<i4raVRzq~qVjesttx-dYt;_2gJLAEA-(Uibbw~S^g1dn-jp;{2tU)P`ud`k
z_gz+XFAxI=l@gT4uH17@e9T$jdW>$g#o?ku5|-WhtW|n2X}4VxD(xa^8Nr6XuPES)
zI+85WPfKeopuBxzd(CYO`K{53)IK}?qV(QQKY6I|y^<S=Ees*KN15}x5@uP|TSB4J
zJ&$zMejUjRN5_d8@!Mp4t<1h8E1AQ>n@flNTZRs@r15;o{o3!KByW0-Kmi}(2^26T
z%;3|??)nnqMB>jQM5I|*U?EuK^d`gJ9_p=JPXtHslRE8c|7Z&75W+M@1FCRmb9&>)
z<^bDF3@Bu<jEIl83PeA$War-Q1Z88$b};QALkLj~GF)(Px-ElH#|F<%Vp6bAzN8|;
z!u%ek-X^Rlk|G2{Vu{2I>)tE}U9KY(tFBIsf1HT=IzSC6V+EcoArR2wK;<M5B?Xa?
zcANt#5Mn8s;!vt1{Uq(I9N-C92rK@O1P>7rFUbUNk0WFu0$oKGP9rtO&@h-o1mLFw
zh~OtGj8-(!-2Mdz*QHN7LkvAc4l~CTOJ_4k@l#mQBPx+Oj0gN4$P+nnCcLj99Pv}6
zu<(5FKNJEBr6M{e(JQ(T2@>r5E+!1A=kSuo3}?c!|8in=T8t~;kYP?Sp;B-;EOAkc
z5gAot<*WlcB7<tSFcHrY9Sdm@bEFp;AZ8}SA}nOF;)<ON2f7d?6#WK85JW+`qCc*t
z9XF+P#;6}-gdZU%1ZS}%azptz0v9PTYA8e@%a8f2Fb~s>h2*g-EYQimP#HyWCPJhm
zQp77rGJ2R}GbF1TDQ@!OuybSt9BTxsIFiD61Y>?ANXq1&RxcfU(kBCH9n-BH*)XX@
z15Z?9Pu9s%AOM-hktrW7cJh%xvSdyC?7Hlc9f5FTs<NN}3n8GbHH4C3nlj~Z1MN`F
zKkN==0+MAaGVaVIRZOSte1rc^WmE96;FfVF{|Lo@8g8g;$S<MGD&LSL1+8xS1TsWL
z<-CNiPz5XNid8`6RiX+Zrbc~6Pb+vOQ7TF^f6_BQQ*43~6)&P+SfB$;%~1koU<!uS
zs^wa;<w7<i3EFT43MV!lkv46UT+9Vs&O|TU<z38xptd4hg1}qCWFqg5H|x(`Y(qGM
z2RNN`I6KZYd8SR0Q>Ae8G<EY9&(a<3z%)^FG`FH*9)<{nOGC;9DtgmrfJSIiGj~>#
z3~$6;+><37#bK7yH$hTnDyF$crep>tM}~~D0#ra7VgR+m8Z(n-YzAjqb7x?)J%i>x
zQRG~Xrv8)$VMGI`2Ie8o$}+h^YtpSE|3?%wPZULqMKsrvQiLp^>?Uz2r+0n_ZX_jf
z%<W{-rUp+&Z|-pY^id=LM{o$|F(YSghT=K{vPbFWMTB&43MVQcz)6WTOxosckO@1v
z<VM%V33tUsRU}J+aCK_!1t(;9HVl5y3<>J;Ot}mpmUJ%rW-1xPD|2IYS|@uLZW_NS
zL1$t?wW0%XM|bcKR%kSMlAujFOev5@c@n2~pb*W(P<mK0B=VHiD$-I@R8u!KN~(!0
zNXxVy$aY8zq)62)<R>AbZ!6qzCQ!99Ey7i)Pkk`WGAhU{Ky^GINIC{{R_Q{3yn<HI
zV}cBYeRP#pBuIiDDjI>+ewvk2|DP3Foy1eeCWT^z5bL5^!*55j6-BNUtY9cu>xhO}
zHCoHnT*GEs$A*ZE2#I)AE!OpjSmHw9wOuu<p2Ag*qR3s(m0$ann(pY4wg-&F2toMI
zEe3Xs(g$G+mci7Bk=)2%BUWO+CS51iVlNhBGq#5+R%1KXV?P#T$A)7=mSjuTWKWh!
zMiymPmStPkWycC&HR)w%mS$_#X3Iilc?4g-f(2+}rBJkIRcbJEX_xjDEQnT@j5ez9
zwU%y4NrKi@ls0aJjhMbB@5q%dn)X}-%9gg)&h!p)kd~LeLTmTwmqe^+ZwP9C_GV8h
zXAu+%;lf?yvUU1NpPK8M|0L=n3~Fyf<O$}CVe*!JQs6}oC!bD61UgD_H-c~#S8-K@
zZzscX53@ohcU$cCyre^LS?+LwX>uD7A?Efe7R)Bnshr{hozw|%&60FGVw`NLBG*H7
zQ?PMA7lT$XB<6{0C<ANd;&o4VCVn?|U&M3?w0Kw7Cdp}?bXO#f_l9P-b=%gG(iQXG
z$EM_BRYU@*fGT0|EJ!~B4clj_%4816tw`;sB0}UDTO(n3m3w_EaTOQG7+|1uNm>p>
zms~=rfUF?~Bc1+tF#Y#`X>TCj*L(9XeZ$w6%q^%SWq{Qw0<(7{DD@ZTq6+WiddU+C
z*%nD8STyPv3GR27|86%DF*tLBg?GcEdd(uGq81uAm{+Utf-?w)-z$SXGCWo|Jv^9#
zrMHsOmE*u;`kul+R^qOlZy^q1C5WT2QjSFU%3zaNBzRJ4fMRI(DhnS<{JxU>P)4v)
z4sgCAj8)}`SyhUcSg*>MBT{%EhIn`@ST1HbE!N6O+_-eWZYyvXeAxIag4itRm@5F8
zD`fbM`NJ!<LXPRekJH1BeYli76}OH+w@QV)+>W%&tGU=yE4VUSY~sCE?kV7;i(Aqv
z!bCsZFqHcQe&p+rGw74sYb4ePkL!!6=%67J>z3DR@IG0Thwhc%#}3GZlY_A>bIiY9
zM7?Z6lW{mR|0~(;Y74s92Uj!mIxZx(GTDZTYq(xwn4wEqZ7T}NF1v=6?5=sJgzLEY
zhqcOiq#8zILMyf4hmA*SnoGqsCizyT3vR>pA<Ijg1@ig2qMs?5oS9jf<2g~1StZul
zGVWPVG8uAC<C3BIExOr}L#di}Oeg@w%|7`E=H_qbh7c2tGuq_w^saz!g9vU}dxh#|
zHsyTnYl}tlC0<%q9&=`Bu9fG-r&Ms1XZg>V$_`4gR{xBsZK9{Exgl)&QO>tG4%k4r
zEu{m5r32a~My#YgqSBa}q?-(&9pa>QiLZbH4C4${tPC>}#C<X>C=~ThBm$)GW~5K7
z#gGZf|K>NW#X71~TKRzbo?NiW^f)EQIxo!{Mhz{=kXIz=+QoFwu>U$JnrtCDz;RSS
zB^Wz+c=zc(%uBY+tu?x>Gt;w;hhVNut!JXN(>lwf;twZ{kQLiO&>G9!r=#Im#F%Vb
zq^zz{BpB_32B&NwKzqYf0;@~x=i*wV-=a3D`l2y9W=W}G220uAi{3uDB?zS@CdK2V
z`g3)-I~zlcl7?^|k(3F|4r(VicG;b7V<pDBG9zxMO(HPe@$mebFmq9x3ZuQ|HzM-e
zS#lQ}hb+9O*uA04Yzuji<!!rlj{E{J+g$DA7Gq<&yEi(Zy7kcD_(k)qsoc)(WYmq_
z|4ia3uA4KM(m2A+IINA>zJ$WhZhz9LUJ`f1arYQc#=^le?RrhafvtI_Z3ayO#T$dy
zU~0!FBne{t2{zo`V5!jZM%%<~$Q`C%WHI2-FuId%nM(r1(U9B{#=~c#%gxOU(9I92
z!k{I5E5iKC2@dWQT-zetb)MWf2<$j=M$Q}K%8y{WAKY|4Zp0w~yG{Irn>*8{mFldz
zeLSP(=vOj;n&{4H^`>ftq@wWfD<gmcney(WX+zQ(U=S%?@ffeDH2v|+360~1`Rx0?
zVrL{!f(0Ieyz{ixkKomH(eSWm$U6PgL-^Jcg^I}nyBvMxV)>qIPuSxN!Ikb}|Cmnd
z^i*PcP$1UstutfM*JL9u!|YTF>b&kOR2`{Zx`d75pNNmyoo?H;SG_|c+fl9DuTiK#
zPcCl*+mkNsKCS77u-L2O(6s{E8NDh7S}OpawapyOZM!=M*DZ(a*o%(dmE+Uaq%r2*
zL1?Afh0gP+qgEK5+LN8o8*Eyw{VD<EDJ+|a<#Ho<j{>8YJpIp6=wKpl<{+4QAnXeQ
z%wP@>tjSiO0N+nJULH7XdS(Q0z;<2+`|tnym!`bE;u57G(XzRQs_BW+f{xykDbVL*
zUUc-Yj5ecpi&-JC4@E@82nZ47>-@}7yWr{%GX;JkxA=i%f#fBl<Xs0U|NN@@s@hFP
z8787)Gc3%j3;s;h{`l^mdg{I*G*WwsI+(LCMkb8=F6QX6r0q)t<hNq-xtO2NvI7DC
z?B&}#lhNSI-Xn6x@Ru4*Wd8A4PToXcIY46MO&<0;UIeH0g4-&UOTOgokV!?twR#`Z
zmeoN1);I_UCRjc3ENtLR0-NYuDsF>*)G!k@0&9UE94Sue%R3~lqARrD882)3hrhBE
zINF_hEU-)W=kg!j(N@mCNU+QId;iSklv|xW7h6Y<=?o`uU&)y8$BVGv0Rn=+fdd&B
zJcuwM0~WG6C}cn+37v_uj2JW`YmO{B5FRo}A!|iKBC<LfbRdg}|G^b04U$aZ@gamK
zvNE!8aFC=)1}IhLlt|GcgCunl9w}*XX3aS_b2da+(V#3O2{Ga{2vTIshf}M{y1EeQ
zR*wvK9z-H5p{yebvwCzpR$<wga23`ysIjJASx*iswF#C%hn5WJ2u(^8aNCdy^X}y<
zSQgB|A}Pncj5)LB&73=X{tP;_=+UH0n?8*?wQA7*{<(e)`?bG=AYr~`d~on&#+K<k
z5dl27Lk5rcW`;1)ECVET>iA^vgla-NY!SZn8#OL-=Le%3tW#W8QOw9Wl9haZ_(SS(
z=k)FD9$|UqW4Ax|?l<{EGjsx%zFXLD!2zdUfDEi)$4<Tt|486sS{)Q#O%9GE7Egp3
zG?!XQc;%l$x<ytQZU%Kgghq4hgb_v05f`Cm3>7HY9CQ$|LJBF+Q5{B4fMmvP54u!g
zPY0z)$Ay`ZXrf6v9VBFoGuC)xbwqK95Rw@w`4ogg$+96rR?&u@W?WK<VTCT5X%Jcn
zp;R51KOzL+Wf?vcCsraFv><~pT6rQuPtfs^EFySV;+1fQiBO&cI`pAsmaPV9q>@fb
zX{DB4ifN{re%4xSp8hl2N_S3}8+wj1CJ|jWuDWVwf6~X$dpy~}f<o*egoGUl(IMSf
zu`)@kK@4KF!l0PF8WVppy%^K2Tk+}{wB4C^rmPMG|2r*xVZHg^sHtv+5d>!RIuxK|
z0my2)q&l@zlV#F3Q9|Et)hKVHmU&ooL=a&tZRxg}8MC<7VOAYEBE=B7Zc^Cph5GUf
z8bd-Yc@kkr5R8z)1|^XeLh~jhF^~mj7q7?WipuR+B_H(hoM+N^)S+$KnR1{tZ{_m3
zI+q)8cA}<mM32k*eBiwwS81xfH*d;x(@sAPb<|Q%4QZ#J!WL?vhuL*!y&;Ok(2pH@
z#*l3a`Ib|Ew$2O@q9PditgJ++EtjA@o9!XdAZNKA+YTH77Dz!P<N%C30S@NiW#X++
z;SZth65U}jo)qM%0T}k02@OV5zuRiQGiCr%|7_ukIk)}bU~E6+HHZvAP%D#b32V1%
z0v|-j90)OV@Kr~xNHfE-`}DTw$HiW8b)+|$`|h(3C1MA4NC*3x&yzIr#L+)*=hl~z
zlsfleX&cw+We+L7%|3E=`oeUMnmLnxA#WkubVx*h^|H?llJ}p>ADP{JZB2$_QUOnL
zK&mNlfedV*10VP_t6j}CSz|yQ>JS7LJmD}l3PMFvV64_X$_yBUKnGY*2jg`H0(E%8
z3SRg^v#}%zDIkgBro*=Kus{SX(9dONSVLLdaBnK~2n$^Z!x~wqb`QDT+S*bFGo;{z
zD?5lr-jsqUPO*n4J7N-*h>$BP1c)~D|4R$MXdAT9=!@h#j*Un{1RL#ygh4PN3XMk-
zSsjFqc1&SX-k1_OiY^5nGy(|OH9Y5Oiw?BvzzQZZw#_ANfEY=_3LM$Fq||{9W_ZH5
z=qDN{E+-`>B+2u>WDuIDz+Z(tB#;{B6BcsPlSlw%Oe%TF6=bq)uuKyvNmLUlZDfa!
zOwdKRl*?UW4=RUYBnun~$%I@mgB!$*GodND@pa~O<w*eq=Jq@Y05Xo={9_Qw*~YqQ
ztAiixmpIQUNQ3b4gnncIE-}eOAerf&y3D5qF{r`A%=3-`bls!yaxa9|OpFk0s6!tL
z(TGY^ArhQm1y=wbzVyosk9m&>|8es-JJf^@w%lfT$kjtxVC#vSOAKEU*u)~Ov~ERg
z;z<*AGMgsQS-ElP6X?THZgs$?J7Gw16c*H&s+4|4eT;O96dssf1|-EXTS!N0OO|l!
zs>1|RRWZZSy~r&{Mrxk}I98LNUgo1(N$FC|27x&o!3ak{0!{q)8Bv~9FH$tjF~NeI
zIt(YQdKqgkUnf_(+Es7Mf@((0wmib@wI+QP3Q<G=RXTXit&ep|_LziLzR(AwX{~AF
zLaSCqnp9huO)CVt5~#1n_A!(jnzjg=R<F{QNk<TAR}aG3IZ*DkUD};vg*(QK{)V@{
zCFzJJ>AF28lmSWI&vYk>|K03rce~sbO+~L(!4ajV1L;(aRAb@*5kxXB=Y6PpW0KDI
zu8>|3B`<pERbHv3H@}=ouYb(oy(8pwH4u>RSRAn4%mCOZ13s{UkMrP-ji&<#^lxYO
zOW*#AfWM{@NOwm>J`1xBQG|=|=3-*s`NDTA9R9G2Uku|IGw{2g3a^ZBjN=^ZSW@mv
zrS4wbW9a-?Q&ZZpkt1c2KOK3=Om4E1mrP?%+4#v+uCkT4%dsR7fdzBZY>czK<u03c
zQboS9na^dIBGvZHY;Log-%Oe)$7afKuCtx*Y#N{?L0<{huAceav>+%9&sBDS5zIhC
zLMwXFjJ~p*vDWBF|4Vw(l&-X;FOBI;Yg&Pimd&O=4eC&fdeo#YwW&`n(N0qk)vRu{
zt6vT4Sj&3WidHqKXpQS!>w4F`?zOLfZ5mtC8Q8=wwy}?m>|`tZ%)-{p3R*lG7HGu?
zV_x<GrG1fV`vnQyMuN6U1A%UP+cVGhj0lXd!8JD&+xGl+XN&+ms<E5e)~>g`?>*^e
zV<usi+GJ!DCITWvXSf0<0&8pe5D_rPg`4^26AVt5)M6&!14oDmo`CU;Gdu+v@3>hM
zZcBl8+}$GAxaTO21a%v+;Pg?rZ+;Ynj$?dg{vOPrjhKWzU-vW+$T>}xHnf|^g(VyO
zId*FfThvHP|1=JWND^3J5(g}|N@_g<#*<LX4k2CW`0l#bzwTsxr&5nCRk_l8^xB!R
zWDd*`qI_h;9BPdSt*Zmc9EiYCyc!YiJ|tX`++8%b7wLu<*LaacqHu0=G&<ZiNeAez
zkU!;o^6r-W<de{^wYPnUV~H!T`W~pe=N-70*LiUZgZA{rrB0Ay{aA)-c9|rd-V^2I
z>r_vgrGo~uhA~2O2K8F9bF3q9U#yoCmHO3zefi99{)@$KL9S=24i-5mavsDn^+=>6
z$k8L)S+Y81ZR{(U+5YP+hmfQA6TWo7KHn0e<h>d0`>L0#XY4PN_OtB$TQPt45h8xj
z6G_W-{}9v{U76u}s*!-G!4iPyKn8eFr=feFVFrD|6R+}GZc`J)*DE5hNr3@@JLh~O
zNP;CeV-o~vJi#Uc5f~0o5QM`M#^M0O<w}`RJPR=%et|Tx^C8D%I6U<ohrtr<)r0oL
ze_4bPfM*tiQBtqvKca*XKv)=h7Z-kIL_4@vh=LL7VSu7iKpkKQTXTab#2Kt7PR0WP
z9ikj(xIUWUf*#g5CsAANa}pcohA}9I3L#DfG=t?dgZwpyIhYUy27~F9hY2A9wlRSw
zg*P1l6B#HgXvKlfLwI&Wh9-!KnW%|T(`+8}7(z3CHSr^=10F5}9zzyxDzy>)B5tjC
z{}8(55>$A5isO4;<v&swf6LKe9#M;SLNpFQQVijM^5J$0v4wTBQ>$YK@m6B%!HlxU
zd4^aOCqq^Fax%=}5q}aGum};d*oN|f79w?gs5gz<ri$a}K4;O2-L`+C$S}Pn9uHDO
z9J4P(P#_L~7L-MVYf*}%g^DyGQguK-k5m)XcX-ROj@<T&??D9qLy#(!1UNy8eBqC@
z0abPIND3p3nUMsbIEYh$9&Zya48V4~Qe52FkejHIE6I|Q(rn@cem3Gcju=1B#StFF
z5$8i)Ue*EpaTPL`ag4Yz?|~e4b$SLNg(+YMKgAFw^$>ejIYya&eIblwLt?l?|8`}P
zj0(Xe3s+JHsUcp8Ggk?gEJKvM@&v`DluRiLC8brT5hwgHC_PCx1c)ckA(w*TlRE>H
z7?&F<P?JD{aVhXf7y}Xfkr8GfMPbx_5b#KHhhiH60XPXeVUm{}fDyLwHb@{4XwekV
z(U+J(5-CSTeK8m}DVgWfeI4Kc7&Se+B7(c3e7C1deUX+dF^MMAlDo;9y?Gj9$Aomz
zH7)TrD)Ba8!#A(xl%Mf`@>Cs9pgTz5kw~e0RMnPnl8{<q2G1Ftps17%QI%Mco%xrQ
zMUyg6co0DNS_Z=cXmOO(H7e_Q1noH{<f#zVwMX2!93E+%B?XM-85)?A|D4x(dx!Bh
z!*M&x89GxnDx(P|Oob+GV>WLyn@D4v#K{;aK`v%v1a)u~3Mv|^11Gz2p%*F=M_`z3
zgH*8z70>uuHIfnyftw_$Fc{&RH;SV<dKqGOoWePZvam|0A`%_BE7Hdq$T0_Cfg|>0
z9=#Zat0OLRU<7tBjw>(+SBj-ffhTO?dmYh>z~~d<c_3MerM85mW0Q;W*DQVmF+jpC
z^wD(v0zP_}J7WVcT-u~vRDn~9jy{MQ079gR(kr=W1Va|6xT7!&_>Dl~PGuFLb1<E0
z>Jftxq)H=C6=666#w1-B8l;0Xl{!F(W<7%jZ79Kc*dY=$!4@-G|B?vdLC~h7u_~)2
zD0Z%Q7i>k6;X#xHK@gfTAAaIOVPaP-l^;a;1jZB>7{?N6^d166VZd}rz6yHSF`MW~
zopGTtosq5i0hwc=tipPh#)_=8<BgsHAdVqcuZSBnVnw>TGrZcXhw>(oWjYa>bbs}F
z(Df*P!4zP@5<YPqNdd2LI2K1!Dgxv>oGKMYdKpV9dm^Ef9l@$K+A*_gu@|e7wR)BE
ziZlq@8v?Q@QqdyhF|GE|9fJmh0b8J#VX~<t9U1i)g4lV}3S1kjm227_0GhM%L9<)Y
zvd|$ND(i#*m`&aCCW;~)iP9Gcq97ofv>Xc+Bb$z|lt?v8{~z^<K7EF(xlt$<XoM;f
zwc&9YNuVnu=CO=1f%obee)+ITAu74aGP{Veb4#~hCw6bSsJLpd{_-!emo0T;Ei-kk
zxKg%=DkqR}64){<Apv;E;t>Iej5w<@4C@iP=eRu+xUrKfMOw2!_ZfgHx9B4-<g&Lr
z)3-LVGxVxjyE0&<+pz|fP$A>8`(iw&>$fCPM7Zin#7MbgaTEpgq6smv^0AC{YrMzX
zbs9^Bx2ms<5tw~;H<c?lMauvwtAWpWHq$#cVp={n`&?9Lt<~!{h+`+wXgGfpIK?<Q
zTj4m_n>JUWvc*|BIx89iDmId|OJ#Du3%Ys@N>=qs{~vSuTorn-uqzV!lRUIDj9I8h
zX;@G~YJ_HU6dKuH@=*t;w*s{iya+M8Cm|!Sio78#!m$Q@(-csw)K1TJw%S=j^t8Zw
zct%MiLtGL>rz*aKI1xL<MI1&(>PtlA5yLQqH@G`ATL~vxL`4n8P_%)>Tx3Q_B*Y1^
z#Og{zWmGvN#X~-%MqgBJpz%&{6i?LE!UW|fhzo#YTu)ydNaZwDgp|TmTQLCqIF0m}
z(2J}5v`ezoNuNX-Bw+?MGB;F#tH4N7Dd2mr8AdGXs(b-LBw-O7tggiO8-QsBcHp@q
zjLDhoYS2eo8YNxn`oNZYIL)=3XL3}=wNxG<|Aj+USQU&RGPRuCJC>)6JE0pEMoe{u
z1yuLK%C1$jv@Bic3Ck_j%D59Du6!G^HOg2uM)$&1&gF}{bs4y2#;R+z4>4Jym4z$(
z%6frZNs(A}byuYEkamCs64|_3(E)j32FP)g_=$j-6-%SSs(QgIFRaP=tk0PSed2{0
zDP}3iye1}w83OG<1nsslfzWZ0P6;GpQ3KF%h+-hTDHwJd4=qmtX3IzV!UQW5%t_Jv
zEYc(0YW+;oCw&<~2AwF)(k<=M2Vv4LEz{7WWn4B9_&n1&t<$_2(>u-5e})7^0KGm<
z)J4sbJ#ExUt<+1+)XRs|O%2siE!9(v|7%Z8)mM$xS*_KTX4PBm)n5(PVI6iT=xJhY
z)@O~@Y3*WN&A}l}Hq(aF$UATD7H-`Z*S;!l_}s;uac=3BU2`odb<J&e?GbyOV}|`e
zeQii%<kp{o*yn--28|dVw=7p7Xg}203o+Cw5ZT?u*^+%=rMwVuja@6inWO=4o8vzY
zAliUE*&3%Du5E&BT_(Lt8e4~m0+(`n$Z`pXa0=ma4Ckx8{T32;87PN0h1YQq+n2@-
zatcv$8Aoz5cXGPzxAH;U7PoLP2b44iC^knPKBvf{(Q`U?$#rAf9LyK!Hr`Z&+ZT~>
zSa;qGE#C9pGwIEAP6u@-F?BuF{}EP~mRZL>YTH0W$KF4}Z<dnaqRD^9!6iok;YUC|
zAQ3yRTeJAR7@{pQ-DQ`hp_3l*-WS+$<;pauBpMTFbk3u4Ar1i%egwlOP2Wx6&If&L
z%Q`z^DYln(>MeLa?0IpwgpjuwqQ_Y9#dqC$5`UK&nm2d{q1+gEkclUqe9>)=C**!|
zKbKc|Sx$NC+T%97cb^BDc87O9!vdv86Q`%+xVIIG3YYEOQ`gPALqgb_vgU2_1TBPd
z;DO<74(Dry<CMaCMsUc$XU5}4e7s_O!w7o~^;*3`dm|F)mD1=BVdI|V8L#EH^J3wW
zF6U3V(U{I%9bOvfcQ(nF|9(NU7V{Z-^lK?59vTzKQMP32yMpTPqa1ghi6z|Us}X_^
za((-!edf`ec!31qcb_N2F+*K0+*j)ipni0%f8%#Rl6uRHaqRU+z*~WTbn1Q;?0@JN
zfXnU?9scW^;pTbv=b+Jm-F5D%<dGPm;Rv|yQ&WLahk-RQp&Lk}PX2*6*6t34$V&v;
zn$BJq(&?iy7}!f8piMQT-pA`#fYo;|BoPw>-!!le8WYGd+(N`4PVqGZ63X%JvrX2k
zrh;q1f@|`Enj?)fsE0K;ah52vOGuzac#Jrt5S%)M+l)Rif`k%(g{9Jjj1|68XoZ}S
z^m>Se2hX8=!}AR;{}^FtaWr3s)5V7Jp@xGf^H7@^Z>TL-0rTpFUUvBPc*qkp$cKXT
zhsSO8-7%f_!}Tikp*3ZOY%CLW-}0a{_JqUsct13a_=vd`if|hiVBR=;4?un2a5ZJo
zd_RW~$`gvuB!6FCE{M%cLis5#;SRjvAJK5$J1}7JEghiu9=-S~cQI->MGcP?sX>TG
z+V%2bJOsFAkB=D+fbms7D3?ef*t~+Ce_&x>VsQGQDF7C*&iXZ#h<KtfXhAu;FLZ$@
zoFDi0nAnNM;gO;BqbN#|r)ZAi$chQsD<~<8uSJX0SQEFnI=P6Am*J$<xF*3U^bGC8
zKOecOtc(ng|Mt_t{{X>2AOu-K1RiuC;^09ebPlGFCCkXcCk_Q7vA9rRMF$I4JP}A_
zqDGP=A+8_^0f{U-vgjxjNXLxEh6h!$bP03eNsUN+{``3`NkmyF7ZQ;L;YiCmMj50a
zGL*>F4htQujA*86NsS$39jPPh$%?RZY(BwRhlNKv5$iN8$^huxgC9eV+&FU~9gqW8
zwtOj+PKUNGRhW#cQN$dgf!Rj1lcb}-p%I;iOuAH7)5n|PUgnxaZ%SD!Q!o%AF)4#N
zNHo$(!j)v@#0QZoWeQrhz!ilfPiAnHs8-vVb3cqKYbuegl!@x@?e_C-1~msBq(j8H
zWsO0I{|+zS!AMv;x@8kQy_+Cj21#BPrjveqZOphgn_sUH0$QePF^eb9JnCeNjwQ(k
z^b04)>hkSC29N@frOSlNsyPIWSdApR9%QdLlDzv)meF>zjsXa;(=IryM6_^@Irby!
z2!SvJ4nwDI0!*i;3TuiE*A~LiLWVNbXhV@?gXqM%`Z^LpC!d5eN-3wLvPvrt^5-8d
zx8!n5e@skag|AXbLB|eKV1Yib=zzdGHq%VcjKDgObFwGy#1qdc;iRlD2z-1ZHjV6%
zQKJ;>cmjen{Tna|KLHg~pd&y^Q%5NIB#Ez*(iCzbLP?S(35=d#bT9e@3U$;{Nx~Gn
z|5F_u2-1fTRaBN$c{}yWr*f53Av)=p48pxqWT00Deg#e-o)*fp*@MnZ6Evjm43myJ
zlq5n<S>`aq4Eb22V+9C$V{^bY+jObcIOoJLz0{C^;3gLAY*x<!pBOPUyo^PbGCRVB
zAceLpU3Q@)l1Kpp5uUiVI3!Z&fCWtjg7(yDpQyHB)JltYrFjvgqfpX50x3{2Pi##i
z_nfR)TCp(hP2&NPdN|^V!4;QWY+ue8TWz`ZcA=IP<5=Egxe~J@^aSGUSTs)!Sj;2H
z)aha}>9C_yu9hZ|$oBrt8EYk-j#eY9V;+0Rw2Ng|mh`L^IBQ)WEDd6b`x=nn|2iGE
zdt$h;Zf*{Mb$${8J34$4sg%MTvrGh&HqmXSjS@WUas?9H42&TlqAwaRvg2F5fsOTv
z4jdq>jvtF#d!WOuOmc47XQ#b(+jY&dOWptZl44ttR8zT)wMz{pPHp;~_CN79qtGYJ
zLSjULK1D2|Qd5}AC!?C*2>Q_ut*X+8vPS~Hn?1^vf#bQN9{D<sU}2?54>AMl&ES`R
z>+=PwA2jY6c%EEF1QF|%!~y%8TfqdfzR39}KLSb3Rv1W-RVnaE7NprjlD9ywVMacw
z5t(efLOkIWFF2*y2}9~I84Av=A}oO65$JHa2_|nS^6?7Zl$E}P5X2zI|N6>KzO^ft
ztqvmo84n9LNFCvogdi(`2!u|?n$^un7Er<<3U_#`l6WPAWb)uaK!_P5E-_85(;#S)
zIFKctM{;7Chy!F{Aq)EMR!E7|5uL;}t~fw-DwEs}t4Kt%X>nJp^5Y=oSVj5ZQG;AG
z3HglTMIj=nhW?@CL*5puM}`rCL3|Qej^-rAb+L`qSsENqSQVsv5R|MDi&d=HktEdN
zTbGoS%rdwT?~F2+zI0OTZZ}L~7Sotl%H8g`)Vqxdh>*{c#bLaHl4-U_dOlJf9p(U>
zkX5H#B|1p^Y+{Bv7~x+!S%Hhx=_3Dhvmqz4&H+;-KHjWTowxea|29if5w0+hB;pJX
z5vrD});U0+#nDYZec3v9elsHwAg4JOG$gHE$%3MJ&Fc6$BePKEnuDw(g0iR+f)Go6
z9b}F4Ho6<HNHZ?gES5w%B}0U~#f6&*OQ^<%(Y^d=C>mjyp?K)2k=%wlBSl_{Xetmt
zBF=yX*;-uCBBLp$jF%_{p36wuMCur|B-{e3MUb*plb$iF8d+*^Yzi`iG{hktu!B&|
zW5PnpM~)^{PawG>EQ4KfFB#dPR+C!DPSwu{ooXdQxVoEk+H(&6@oJQKik%-twyugz
z5m=c8SaU5laegHUU7tjUw$AWaaZPDh55gF&VQ4=SwPr^7|2MxyY9vh}^eh&!dQ9H-
z*0;k<rZTm}%#a3FXp*aDH5n74Sehta&wVbG{&cyGj3tmr(Bbq#XrhVj#|~&D$(_WM
z9_&hLFdgUsQdUq={ZY4vue9wPWdqQXypKxu?cof;yHD$q_fdX&!gm*<uiII0xgo-v
zn2eI0)iSraY19vNp)1!yj_s}sF{?%lIZNtz<uu7n42-t*F<hl6u>+BCbnm4X1s?c2
zeW@i{y%y4_%&;vZS=mu7Mx+ZfKujjqD|Nc*#JC*lL{%LmhIH#P3+J{ZIWEbDt0Rk!
zM7GBq+^+?H?8$q%#thzpfC@SaVZ`W$uc&e=k%#!2|M^j-4uGWaQF!cG*f<d_BL>cy
z86Xi|K{-k;CJKx>D`yMwdCy6vGL-!MS*{dUHc#*}n8l1LL{CO=T)_}y+zU(Q_GPUH
zk#cW#vuNG!_qV4;b*h~dT;UQo$Z_`FhhG{OzKFoqx890_BT_j1_QYDmg7iPPd*aBY
z+1GUd_K$KJqBrlc*PD9vLHs$W?S3`8Pnv@cr)z4GU<BC|sjOZf$UoBA&VseRwXH3r
zsTBw~CQnGWx?znfUC*0tO)e`+ISHghvlO|rzD#-<^P(ZmaIv}u?QZZz5x}B5-CKz<
zzmsLb4hW72P!w39l7QOXWD(y5Zwp=(er+}y|3yhiR@tCCzT=NKisPVa^XII**bJAX
zju<ky$Ys+I2iW0&EC>Qf(+80?>)Fr);v=h~9r1%8;pNX{9cD2c?Pn2T;5#d{v7fYY
zDmfh2{*sN+N3!oB0h24Kf#hyViI_E0hvz=01JHj&b`GbuBpAY&h+YHlcy9%p3z4!2
z21&HE>zLcBMttH^&1z*bQ^9A2rmU$M7gB4IOqU0vlPc1>G~uo1w*sisWjmnGBg78=
ziMNd`rSMHJL{74qwx_C{slhwx?;B}7bxP0F(}QmGCv~PpU!`(>L$r#Ow>RdMZ||As
zo1vUV{&6J_MDwHxFOZ%J!IXb_1TB1v|ALXtPYuRd3nD>g48ZSLb<AX`Zv+Y1htd(`
zJF+6J#;UH<Ipm|xR40=}{UtH2@vD#a!!rE?H~4!J1p|pmIRd;2smCKMz|*?-YP)xP
zvV>!eF*7bXYdH%fJwp>aUHL!BB0joVz5kHFn1H?#d^8r^D-5iQp+cIXSimP}Kov~6
z)sh~yIjQ3-LGNRu+M|w@iV|T`ydy-y#S^Y&(ja3~AP=LyC@dR<keyc9JKHEX*}JSy
z%D+s(8zRWUsXM`bqB`F(w%7}&?Q(!401k-wA%y6ZHEctu;-Cs-Dy_L0Fbo#GN{tj*
z9%8bfDP*dy5DQt*5kU-&GMf^Q|0BSYY8~~0rr9IJ>8mD1u?kR1jWM(mAOxU{Kt$je
z3a99RKiY{?(Wa>@lpN}zqhUn;OOZ^R5(ub+`B{Orc%u44nbmOs!8yEAWItC#5LL8^
zJrqSyYQCw<vQvRYDItg_&<=<&1JDR5h(MeWM3AIIpTn4q+Mq_}n=@h&6K&LwQjw!V
zu|_Kq#(^-qshbdJ(zZR!I?O0WNnE+$D~YuestF_wXWW%&l*dTaK}_p6`6HH391{7E
zzd;I^^;^W<O2UVPNZMh%-C-v5tAik5fhWKVGVu;0a2z0_#KbUzi-drPsRK<coH`hb
z6<|pyia~@yiZ|54{E9mf|B#s6D+w`yNjg+Il<XmuY)O{<mJw7s_5!FBr~_}YnL%R=
zX-vw#c_^R^${}h>4G9&f;K}J?0h@fbmAJT|6qhRr7_1}$G8vnZ41$tmfs+KP2csX7
zG)b5kOQa~vgbAh;=*W+}w??eFy*RxNAeVKFwJ5A63`v6Z`UpcDh&qr7d_jW3dlF96
zBmRNQwS<YGsL9@Nx4Bdfv%Co9C`qJvC8UT(sJK0jlnA{%MiXI7%`t<=d=l@#7!g2<
ziMU1dK^b^M6Ei4}3&P9P9H<WLDiMJqFkBt1VFAFLp*<ANzSN|=B&pVPOvp49g^;89
zdy3!m$knTZi_FNP|H95a(?>R{zyNwO#tZ^9S<dGK&iy+fVADW;J50bt3z#@ZD<RF|
zyglkbOSNQ6%qUIcL_tu)3*=PJFvPYU>?1NUjm%q!?!-uqv^~YV&gL-CzzoQ{>o)+3
zrngMXxMZpsVu2KB2vT$v$kePNbjXNg(H51GiPW8nB#VfEH~K-a!2~g*Si_cZ3F@>Y
z2dg59VF^g0uMW5~v0$%FX^Y+?L!Xp3ApNV|Ktt^!2_p@(*6E)rJ<>#ZQsx?@EM=7?
zT@@>(Q47_zBo!$Kvn$Q$QLEIA9gT>%(;()uLyf4P7jw@mb3_B84KD4hkTeP*jfgpr
z4+xlpBQSy^|G=)Js}fG^#L0luHgz)*fDfG@pb$w92cQjap#%0P5IaBu;JDL3%hM(@
zR76!&v=~oife$}Cm8xnCBydvKyU_szMko2yP(_G79h=oGK#~|$8nuZ-P1HqQ)s;dE
zTE){M$*CHpn|QoNs+-K&@W{d-4jWz8y}Z?F4O5~Z)bL2bxye<*L<lyO)6M`@cnsIz
z;8iLaF9b=A5E--?6^mKzM2bi_O})~ENKu;D&_Ahzt%%ffrI_V1gFk6AFeQ*OT)AF!
z(T9atjeyZEsYr^soepqV+Cfv<NC<M}ij9p}#V|Wl69JEPB9`LVl8s1=<ye-=*dt7c
zmvxek|FzQ&NvmUGS%Yad^kPPpJr8?D5Hqk@7fcD6g;<5@BM~rKDiK<=B3g}Ap3c0y
z$pCdgioZw!lB?3CZ8WR33ZMNgq@9wSbt0hMTC5d{I{jMPiP<Z0fKdY52vZLPK^O#a
z0L-(jkhR;p6^MytLcHbMzV+L`1>A?#Qviz3Q)9Z29bEGa+{JA~!VO%*v4hBsT##kl
z%C+3ftsS_M+{h(c%=O$T(OWP1+|ec7(ly<O9f~9%0u}&6*fQK^yW7-V-PRS`(^Wj#
zW!)L7UEAf|-u2zz1zyh$-Qfz};x*pmHQp3B0!Mj2lO?90>s#ezULtT_<n=A-#lGsb
z-tFby?*H}P?;Vig<sI-P-|{uz^F`nERp0ex-}ZH1;ax(}ec$<|-}<%R`^De<)!+T)
zUltYLitXP37T^IU-~u+_14iHkzT5v*;0AW!2ZrDXmf#7dVD@F;3dZ0J*5D21;12fS
z51yS1#?{W15*9EDBiLOKc2N_a5qnjMpGe_Y1d13A%PA27BhW~*jaU}0ju<Wyco~oy
zPF^ISTvWT^9FCGB_DBs`n-}&8A7;jSQIh>=77~6E9!6mm*5WM=SrPs~Asi;g1foHr
zO-Nfa&T&RG5<D&vJif5Ul;|8H$TB~5k}`gn0jrm>c#1r}leAf5|Em{!?VM)O5j)ml
z{r`yL)@frsK8PU5;}8;KuK;8HI2g2eW7&a#N|r&`lQLWt3mo2Lh>c_|s#-oiyw8!+
zPX1jzdq^?SNJ~z@Pln|uRY*;~WK0f~Bhcj|nBrYt-W8>tQJ!QjCgx&3H7~vs5yF_?
zl8ML(Au(x<wvb6f^^s?zn98U&h?s+HVN_HS9E`}l15!*+j%J=*m^^6<ln^|hs2@o4
z2_@+OYz{BjIGBU6*NUiTdyc_!mPv1}X7|!&ZpI51$Y)2PyJjW`dTg{%t{q2Xsb!85
zf>@m_23&;3#Gh#ApE%_W{aA=LURI8hWUd{FW(XHHB#NdOkG8jB!bY0|=Gn1mh5t6@
znWkyrieKVA2ops@n}R9sa*Cm74)-{bKU}TyfiH3s3XUGNav^FN8)u{om!z&JBIKY>
zX$`3%i9@9lt#+cQb`HuFYVOjZ*K-bF(lefBXkR=vhqfItfntb6Yu%Vqfz;mO1!*YJ
zY1wh>DcS3WyydxRX~eK%CyDEtHtfSDrVC!%uZWjqaR3#QrG#LrGuF#GR?M~3kK@85
zy$TXxBZ*HF6Oe^MD-sf<#1NoO8?WG^aeGputhP?=I%7-iQ!*v_=xnCJi_q?(*Ab)3
zhTRL|p@6Xz2pFX%u57i2lE;o01Db4T+pn~Jl8%t<;Gk@+nOnP@+g^l4%>ORRt+7jq
zlO=?J?C_pj1M<x5E*yv<2}rHLfGMbf7{h=O627WH=(dV-Z0snpZ)DsPtWxe|6cFL|
z?jk170Wrd2+V0;*>;-4=Dq&y{`Hm5xjez@#uo#Q7u!+COiKZi;)iDyS^Pw5Z2m(SJ
z`dTTBaFP-sajS?sdSXVN<hM?lYx=T-E@Y|`tnod9@!(iJ6_1GP%Lo+Tr!f3*DXAkI
z+3=W<o)STF*Db#ePipSqK+R~Hr$~<Fun-DikzlNFv6#^@gOUE|jJHT<xqx!sU=pW_
zy~St@oj~O&`|0PXFe<-{0wHsT4)e`ml-r>50Xwh-aSy_XQ*ksA{{PVP@E8vXv5FPB
zRtA7@@R(UfZw{!C3aSXEE4TD0=b<Cl@QKQEwJ02h)u6!+;xupYQ%7|uVc@7~95Z<u
z3TG2HQ5SOamAwHVKJM@IfEDh-t~O%;`Z|<ESrjMP^*`zLg_x9+ieW3n4w9SkYD*Qq
z;G#0uFj0~AR30K~7m7zYc4eWJVRzGp=9M|Ibv<J+T0a(BCo_t`b&7fQLZTM535lQS
zmT#$?aj|CHiuH8C6n<%!Pl6YtsjfV}l<=esgi#oVQ4&;kx^Ed8Ig58|QIdD*7+Wz}
ze-EUyk$9m%_=VA!jRP2gd1{Q`Bx;G9z!{upWA&*y?%lX|!vA>?dJh@|$(FVN8i#*(
zm)4EZ5!JRi<jB$C15fp#C;G$_VbwOk5gMLmI;rMpp=@Fv=kXrTuAU{rp6uBksTZJG
z37@CF`nfP4l7qnba&7&%pZK9W{;{9;L3>{>9bi3`{|TVzDa8U>Zv@hnK*Y|cAGZjq
zYUHV)wD!g_Di!CX8&{HPAR-|WLW$aX2o+KyAH8COCygKaoLXwTEF%0FSs^x(e8*Q7
zhv_6D`=J|hNB(1^;>e@qA+|AsCdn@j#OLo4cF5w=d#6tx(0__h5Birb`rils+7V&V
zQbcHSsmVi$$%=_#j%aP-CK-7rZ=(7hil}p{3&(n_nE!x&hYHbodg{iqCwy}LAt%GK
zw~B-M$IR9UgBqxW8vm5Yl<kM7hpK+py=~gLsE=Yeh8Q#DX8?epgM<M=f+=LJD5!8D
zLk0&EDkLIHL_r9$h$v(s3j)JAW)?o7({N!2St=NmOqi0O8Cga;FgzlXpo2O_M&iuL
zKqE|@c5X5-vN0sZh7T7?EXu$lMg}qq)&#1PrOTcXCsw?O^C!V1vOv};*zzSqi7B9J
zW#AFyOoAd1PF=WGVaSXd<1*C9apX~>a1|!`s8FETs(2MzJgf8I-ouU`LyjzYGUdva
zFJsQEc{AtEo<D;QE!y9|(xy+F_E)g4Ux)-tp8s9Ba*nLpwq-pb2w^vG-i{&Aq0^Yb
zlP4==DMpfep`9ZOfiH*f#LjS>#g8XnF0%u7i7Twe1undyMduB9ZZ)5?j{3*!p9im=
z^Ez^Z%5~F;K7IIGshU|6MB8n(Eyuud5Yf?;S_2Ze5P(bd)|-QW6(mt(4x~kpUJS`H
zkU~N^pc8B;!L`y-Pt-OC3n3D8TvKLM6rpd2p;uNC!O`IoK|;|sUTa9*MN?WX5(Fb&
z(xtd!g+Vfap@Iw$abs{gGLS@A3LOz7lCr4CB9yX#M`ec#fw&rlc#Zj?EM9I1S(`t?
zS&)DO7Pw`Xhb1-@W1{idr=NcU8mORy68~DLp@%+38fuIFqnbhW@pa~ivcZ*~2$y2o
z6N9$l8Q(%k&{2niPk5+Mb3iJ#6qP!GDr!Nb5>&^gSBB^5d64D>W_nZ2QQ%{}B4#UI
zt&ZxUk*fM<1|44hcP0atVtOff`58!ELC{7Eo<q)VTHA!K70INNcF8A85@fC^Vttf?
z+W`@@&C!@pQ$E@4S2XIXPzQ4)xIzjk&|#iXPaGr|Ll0VrmV)!<_#|HL!n;?(LN>K;
zzyAi@6|Fm_TM)!tN}Ml2VxFs}mj|VaX2}JWsUee&y?L;+W`g_d6VXab(z_rZi7QTf
zA{w;NLla%J(MKblbY_Y&dYYpK&i_oazU!6<*Ns2_n|0QQg(ROw1v+2{3k;pA5E6DQ
zMA%ecLnXFb(F(PKQd4z}ld?F~*ihLysSR1*#QBIX*lsg$cG{(CRC8tzUY(Or5SUSF
zm2Lg(tk#!*3*?0v?({N2!7bEyPLo!xc;`})N(2#eJ9PQh_-czp9mBmB)Lj}$F7;KL
z7ppq!k7)$d#7(9pJMHFq6*}d12`@4ORDuo|<p(|%eL<pkE?-<RXC7x)%jXn)&nZW$
zz0&8SpT7F*v)}&FOgCNH(+Bz2{cBXK1Xtn;F-w_7<X@{mL|7Kt+ViDUy~SZTp;nOy
zn5*C6&1WQ8Rj#yUDg!#;2>&OOMGzL^01IYtgB^4k0QqM@n^nkx$4Vf6e6^Ve?GGvw
zMA6)0NE4ZvPEXDn-na_Fy)U_@BnE5<>GGEl2#gIa=6MSQF_X8?&A~1L>sXc)h%j-b
zg^7_tBL8Gz9v-HJ4pH=>7rR2C4%ERzTvTGX!qmJVmeEZ0n~HZl7DtzvPbWXr9S#>_
z!zNWEi9#CUNb<B8&o$|UG*M(C-RH<hLNbz)oTQ-O7r&=5pbm8i0t=oXm45}nB`GLM
z5lI9QGi(w99biEnn)sVK7-t2t^jATSlY|sVWQ5Eypm<my0u~5MC$_{T2S=h2S3U=p
zvy^4Zk`h5i?#&=|F#kgeR%tysS#Fxu1ZG<xpv+~Gk2Z=MW-cod9A9#CFG#q^GG&>^
zBmGMvMEF-@P#FYOvXXTuav=lkiO*K*CY~3eCtg4)N~M7DNqeM&*gCL+;Pj7(_%o&L
zlJK1s&`>vZpo1Bn5II3!=81*7h$<x#$CeStB&$h5D2*`6CGk$99Q7y?K<YSiT{NR#
zis?v+P}15UPZo6W<wLDi(VSxCOK!YYLm%qEf@qSHp2Q17S>RBJk}EQMG^k6J0s(=}
zGX?cb<thPsREO$xDu&Dn&=exhk-W7bait_(>uT4#;x&?%Y#Jt4AS>J`r6spnPAN^4
zK|9oDs3F~y<o|#v3&ItUAss*wff#w796|Phc+m)hBzMgU?usOo#f^MgqPWT0<_V4A
z?0|A-+RHxHrl_s#wYp{5xEzE*sXA<8Z3;ET@m8pU%<X_m*bu>{7N!czDnlIL6#~7}
zj<G47hH{jmR6$@4M=-(>ltaPFh}5~Zp(Y)Gf>Pkrp(n^~P`G%S-R*W4MRPQ!b-9$P
zgwo`>vLG)|tRw>K(xHa+ox^>dw<_^Mmmz*75Hk6vU)A~%k=v8-dU0bW-9qIEh!t)|
z25emNNYF2(jaolR{Mx*tIK?VnF^fkNKc`8yGaZPoj3wg$5k&N1b;U7G-pS)Fjt(a`
z&T*k;EdS)u(O76VPV!@hybv?g?<t~zz>js}03tgE$_tS)UYz_GDo4~xuTi9zn=FEN
z-gYEQUZ0U0Qs$n8^<OM<fYyeGn4G+m$t~V9pZn}*yzZ4znEW%L3vFn-_V86>tZSkP
z@`ObTO3a6LBn0eW=}Y&d1DC$Eo+s_;PlGztNelF%1}*ASqdL`m@=6kjz=8n=7_Y2$
zHLM#P8cC}<*Sg*{uY3JzQlrMyz8*HQeVu|MBq4QJmgKRMjRYbrn@>T=U9qce?Q3H@
z+kgT#jJ56UZ-YDB;vP4-%WdvSb2~NXUN^hj?e2HOJKpk!ce>>_?|b7r-}>G+zx(ZP
zqyN>rQU4w|!3%EigCjiQ=MK2A74GndLp<UVpE$*p#&E~1pwpIN0Yr>o>xv_a<2(BJ
zQjlPBB#_)P5I8x?C6jT<h`<P*{4n}N9+Z?{Cgw9&aCKIGa-4rA1xQG<p^TtFVQPFb
zLQnI{L2dNVtN;l#Zu(}Z?&qZw%Ic!AxyM27$ct|_O?}!ZiE<|bB9IDz5J0<68zO?5
zx*b%;`7+z{m;wkN=Im)#hzN?~_v<+1?}FzK+>s*qo8blRf}fk-kwA0u)SV%3&kwkQ
zaQG**hwLSxb|I6HY!Y(@0-i@v4)rK@jN?Y;pg*7H#g2sf5rOkAPd(}Fk~`6VzW?-p
zk_gcY^|!U19yGi+z3d77d(NQLn89Cc@mD;2LE-LCt#7{9kp^~0^V4Gl`x8f1)t=+b
z0aV4T2){rTIFvkhhzFSi5ypb2@&^+tIZ8SB#jnf0|2;<udArG5LMoH*MF*rGLxhCq
z86e3OpaCX<Qq*6L=#pB&-}$Xy`>hHKDB$O<%(Hw%c|690h=vEo#biAmh?Pp$Ia2p=
z;OF=Zs9=Ugl;GTmV5I1tpFAJZ9N*|{-)0m?SvU_7<>05?pk^eW4~`&Y#2}&7U}Wsz
zNGu@{a^D8tQT3_M^<@(E0g6pf6n?mdS6Ic3a0GO?6%riB5Z#R#Mceg^2mctxL~W29
zaBN`@z6$t=lv;>k6b1+(#f5ei5*@r@?|I=;Fc3?$g;x++5@Ml=90mx2h9Y{#aR43C
z93q9}2<5QgWjLZ_FyijPA<+ck6;fLg_F5-m#t^<6D7r`SrP0tt;tWb*(SY5RdC_h#
ziv!FE|1?Qa&>2H~70_uBD?P{5B+-a)j0HtgtVqRi5S=jEj<%$LO(a!#03(Ra(Hs^;
zF+R(D#YK7bSTs(BG75!NU}1}FqNe#rFK$dhk=QOiM@049OL<RR(Bf{m8BLVX9?`^^
zIYx-w7(MD@HMto<(OHt2<6z{7AXOq%;3M!zSUlQYI=W*&_MR@X&j0fn*H_8MoRtur
ziB*$qWJNsWLWqE3h$8>gqAhY{lVQja$l{Xp1OPE)kNM*kHPM>c;y#|_4cTNaK1WBI
zq)tknNLnGD#3ajf%nd<BNy^Yt{0@syS#u$!QTinR03=VU)lep7R3Zjd8f8<GhgB+-
zL8w_m@=r>xBvg<k1kB=70@6)-&{PT}R`_BouFu7V(tsFDmDonRc#*6ahpa5x$~~4)
zDFw?BW-ToT5n!WkjGqy-MQ+WJHP(fFfX_%U=7sr(0}RzMNrpu{AW>QnH4=n1+QHHB
z4+M>7&vd3uen?~12I{oML9zw2U{sMLX5}ajU?Ntmea>A5MgKRgQ*QpwgAgXmT~A(W
zj)uuX9k>QAd4=i_0eCpTI@N|5B;#J<#)ADNiXc`UfYd|PhE3>S;S8tA876HG#u0=B
ziyUNhj#uw7=S8Rvc<5ISc_3~ICSqu3a{5+Ic;{m!0gLdS5y*-ifQtysiEi!`aw?}n
z^e1@!g?%EZLs*w`j%0DxM$K4=g0dn()a7j$On?q3xXh<6<|lVzoORj3e?o<H?pLN+
zXJ2v&i5vl6VrM}ZsBIu<hHfXg0L*tjR8Xo_i3$=*#f^nJ%Z+pZfSttmBxzzTsTp19
zaqcLCPAFrpUPTBgOlc_J9jH<usgmMnV47$f3Fu>i3;%mgr&V<5cooE&PA6a(=k9E2
zEmdiFPQ`3ONo~rdE54YzebpHL3k;^fAC-h~gpzRlk04S+2Pg}RTwW8x45TC*ekex<
zhNk-2fof^Qem2CU0%E0NNp5JSR)rV}f!0V^qq)f4e%h%*sA_(2DhZ{{kw%9=Ji*GO
zK&B#*EbJ%sG>hUW%c3@F8x4kn1S?7mt3o`;qZUX94C)Ty2Ejbk>=cQzaETdElUwm2
z1UMCq6)FTA>aHrrv37t^D8^ez9bhU6aXe}^9zjU}#X<5*#&v64v|o;RM7Da&v(o3x
zkZZE`Q>>M1sWyZ}IG!~fX0&3A9dzL>QP~qv>;IP&M+!{qUZCr4tkb#%tgt!|baa3N
z_*E)~Aio01#8zy0P^=dP>XJ+>z%cB-{*j`hgt;bOhip?I&MUWi%D0B=|M09(iECFl
zY~Mw!M3`)-?1jgItR?}ePLM0j+KzhKLCQF5%qD>yY-^7e#noo*{J|`=9&N;4th%0|
z%nqz#7_GD-?ez>T#O?*xW}McFg}_2>+AgeB<ZQhzMamw*$_5mmeq_~xt=fuhhhQwP
zmhGNG()E=@tO7_$U<3=jMMC6_Ma1f62BI05$D<VvZ!&;2ZcA-|l+X?5DQ#{PA%Vf<
zDol*3LyV{CsNq8RYJ@=(FD2&@u)sQ5YX6DVj76|V?wZRU^3#cl#p!mgvf9ReVrKSL
z1`LUe<tnCByhTq`F0a~;V_Z?G90W-H&<fe1L`AMvOfK<APO1nfQ(CWOWK5R8L?wDJ
z9^Ohr_G`^lZxUfh`94e({!6&vYWnKp_!+F3B+>aQrXbZXLCk1l1aKlktM>YDH$E``
z3h?!kud?QEd+hH4*=QL-E(1s|LUiy4!!7`e-S#4I#C}QB3fbwIZ@O4X2{8_?l*Dp)
zMXJm&1uyWn3~(Kw@8xz8{)USKb1G+=kqui|1+T`E^luWqFE>h71S2nomT>wKu&Vg5
z;!4u>jjs$&%}KCJmGEYT{)QNNN&m($CP!4}F6p8f%z+VLEd$O$9Luqae2#ORac|N@
zg18JE&v6|47I4f#jz#9F>J0|1&XU|_a~*QH+$I^52Sb?gc%<=Cu(2CQ=rD2y<Aiak
z46+d{T3{Rw1*4-Bdll#W&|JhJ1bZ=cl^9uUSzAQKWn_#uol7O6vZGC=^2sk31I8v7
zhASV2on6IlaSn4dPboJAm&I~d_;NpG;QeARv?6of&CIbh+O`0zVK{~`%L#ARMM<o(
z5rH#BA)+yd%QQRl4`0SuSkU7T1uqvTSeTJKM=_9~voeQcT(C0_qO;!g*S)+7t?V<Z
zESFk%Gv#ct<bmE5-7_rbGyfI?TA$k6qm<s`PSk8{N_5DGJa)?Y(MNVfR<P)YQR&1-
z+lO}00e83y2#@jkWd$CB=I6pMRL%5y@KXHEhjBp4eE{M}^T&5##)HhsVAaxJ=y8B#
zGzD)oNApp86*L}kNbZp01WlI_=>}!pi8#Ipt}JzuWy}FpV(?9M{MsfwBQ=B6307;Y
zPGAp^ELDX_NscrRPZ5a*pEaEr<3cPSTR|&N;Z`*pSpC$eS|@H>yQ);LNnwHTMN>$W
z;0TrAS0>fZUPFeRXe^Hatyx#eIc5n*;2HwI%oWjfS{zG|CW)6sc9Fz2m3+2SXbEAn
zq^kmjSQn)tGNNb~bpKtKHbmRi^`T5zOBXp;%FW=6rgTe3R|m1Y3bhsEu~>wjN~Wtg
znuq+=fSe<q;k2yYO6~Fr^LBTzxHPMTO0k3sc2N+({%YC~ceV^hZma-FV@sw`u)W|g
z7AX`W1+U4dOI2s#YwS$C5GB31>TyrSS3gVm%|w0^W#ZZ+Hfwf#=ZwDmcamK#P9!0f
zSPT*P3&4DleFu2Mv^UO(Ku`Q0Wove7>kt54xL}jm#{l?LRQO0JILCYtV}FN@qXfTb
zIL351PnEa|i^zm?48iP|X18{k9C=YX`0hM4!xVD}3i(bIbcS#ES0_2MxOm9C^^8ZY
znHbk^pSXu}jQ@c1c3xfI?DkP`f3ab&l<O2BE_=-pH%Vq)>ZhR1U<4)G&;;S&Ox&bg
z-Hb#TZg*($4Uk`p<N&(hv`rEj4xW?IhDHYC<T6o0j^wa81-p3$H?@>g4092r@<1?u
zmopim&a*9Yo4by?7B$&D%ko@0S!?#Dzk04f_m?!$irWVYXHt(pb?Th@_gKeWx?nU*
zv0vXQV88XI)4IJrW7@d7NGSG=i#l8wk3!T=WP221nD}IfkL_?o^rd+`OV2!ydp$FG
zr%$)<_zz@@d9~9txuc=-HP2gr7WSYygD!Mm_qwS+Vwq2&L<`)bB&J1AJLR59;sT#>
z1>yijRR4413JYbU06mpmq+Fto1iU^Iq0@v0nMrDb5XV1?E?K;qozTLo(8H%i>}ImF
z{89hRaI?33xD&hPJazW)ARN^+i4^=&fK*DlMYCguftT1!)Y1LqJQ?lsJI1_j^!)cq
zl&_#Au@(gMK$=GII=XAot(+-Qrb?EmFm9v!U(XS)n|mO2(b3;<MF8j-aj=a?`+-Z5
zQ=>c7x;C|G+!_rMjf1uo9qAc~tXBk)$ZmRMXZ@Eo{nZmsQ;1RA<7MEh(cw$|$h?sq
zVK7h&Ja8)))&qTWMWnw29Kd5zRCUrPvD87`&(8M~S>=<;ebX$Z3OS9R8iO}FWp_is
ze*b5ZQ5&{CGhKx%#dI+?BQ;qQ_{^0w2|qVg#O~9QTg}Yvo6}JJlC7+hhPPAF?IbaU
z)mYtAS?QCUi-qc&)mLFZLE%>EcU9&mzNZgHQ(@J93wJ^Yg+-xNQhC!%eUvO$ep^)4
zRZYC<X%9f8ND)MqkrW~rB!nQ4h%6!kAtYpArcMwD9az*s$iRrKBr7_scp__~M3W~Q
znpu&82puE|8+I^RFd-6$7aPht0#jDRgbo}ktV74l6EjFyn51YCqsE_f=&(p(gif88
zC$T0JNYG%(hCUepC6bjagE|#iJTbykrbL=r2NpaivE#>(BTJU$sgk8jiFE9+2>%Jy
z0fP>*QW%!CLNQ3hjUn44f>V}Go?yj3jXJgJ)xV4NVyz2OB*}yw3nv_@LgH4rC6maC
zDq;m-pRs4xwgc96SBYOGW@Z3kXwjodL!b6Y8t>)cK^aJ<Y?%RW7PM_Ew_AE+%$aKw
z0v24GPHKr~gQNw29<AEeaeX`g37t4mqe!vN0iB$GfB*jh3{b!U2`tdS14HxYp9L9g
zkU@V;TA_~0o+!zT$}oH)p~Dh8j4=;?I>L_1qC$`b3{muq0T$?xB`~t=*y*GWMxwB-
z{#bMoxvWmiORp1AtV~6yew5`#tYXB9#tgxd=t9P3tWlOHzydNz6(`#7r2iaWG-*j2
zKMS(5BLz%B%*R3;QMMf=T0zU;L?m%XGsR4dzY9^+P`<FBOX$QVgNuzqK*{0|G7wj6
zv9dYr9Bz&yj5q>`k=7%S4jCm%f{s9${O`}K@XWBaGaGdv&NWTSanVNktF1CSkVwrt
zx4?5iP+81Kfe!G1n{O;fA(fO;IMpmsq7L-K6#_bv=r2?Xf9vVFU;C4g!tRXx&dDJ4
z^ixq;82!&x7h~mg&<!60(L+Pk1<h6rbKP}M;S5XGjAffOsYNW4Qx)7sQIlxdI@)@6
z%1kv<ln&SuCNVFAyX}?FUm<uj(n;Uy_uFvih3?(T;sq~>hGomkU;mC7m^Gn{Kc13M
zYp3)P<_fpXGg{2(vsl=S6M7QCpMefq=%I-&IzR;-O!^-PXC%4<LXAFlKnFxH4?r@b
z&N`v0%Ys@Wt_AdZ!?LKhT5JBECR?wx&qk1Hu?Z~uBr_^y;D}Ane!Fe|*v3lkuzlnY
z0<is~`=q;-^cn)V_f~S~zXKecEWLvs+-(0A?^+f%{eztB%d;AJLo!7-3~K@nHwp31
z3CFzkgi7z=^srv<kMcs-20C?#RyT?9#(@uB_~Cy>TImLvCSLjFnQz|t=b?{&@;+6Y
zL;CBnpZKIFtk2&2?}JXEj^EENJ@h&rr=9`sl{X*!0_m;({r~ytuiqr&k6$o(`}yzR
z|Nj9vyx1gx2rOvH!UCAU0}Zf%2MnA7A=tcSL5X?pJBbB<#y|r?<$-&{U<5Ddkp^-Q
zge5egf$*2V{hg47Ep*`vhnIpQB;g52AOh%MXhIp%(1tk7;SUc40nRBe2>g;r5sS9N
z8s2buNc^D^dk91+vM`0mTj3P3m_;pak&9jQ;upafMlp_&j8#<H70H-JHLj73ZFJ)s
z;TT6b&QW=0Od1;Lm`6SCk&k`!;~xPTNI@1af5;o;ArYBKMJ|$&jdbKAmuE)@;SrLR
zwB#i*nMqA<l9Ml#q#^yY0`dWk1yC|V2Ro_2Ql18tC;x!}5@3mhR#q;SvK){o2P6U`
zsD)MhTO~(kDKuU35-Yg$T`hyD#S|c6cF!{cwO;tlVvZ7vuZ(3f_c%<0OjBsTJY_1w
z_{j(P=R`&{+E5gOB@qyzhP@mPJ13JB5#R?a^Q6NQDA*qez*B4~pwfTV*-n#);0Xma
zC_WkB&x0PcN%I^cI~R&gh#oXA0Y!p4L$l8(#PcNfMCcJ0T2M@xWmAVSCsrVk1RB06
zYAIc5KFKMIlj_AyY8eSk>xWL0N(2dYBf?ApRMTC)shqA<=}pzBGVJ*!hfI}7QPb#B
zq$X0RQ}vTfg{D)ig7b^w)SpQTS{52%)M!K*4*zu$;-)zup+!OP-5gv3l_qsSP$Sg}
zxQK9}y6L52ais&)9MB?cGC-|tm4#ckw$K(aW}dLTPz_<}6S`K$uIpo#N>z%@CtMb@
zB`IuMF$Y(+{?#OAnnPYQ#sbV9)g$^c!&xgE8Z+TEYqJ&5SR=PpVE)gn5I}2-SjE<#
z`PMVvJk}G)YTGm_^?FWyp>qv`TnL7BXv%#bb>Bx^y5t47LF+AAxynVaF3luXfnFWf
zf~eupfr7EQk)|TDtZp%2t!}EU8SqveS@`gRq?K=0j!+qFPB2s1%F1T3aw4qN7rY61
z)PNqG6#~P~z{!E{dgqJZ0^?Ar=!MLGtpD4#5Npj%gZ-X|)!U-{MrXwZD)E3u97g6!
z54tU^F$m3DU6y(;$M1V_<50Zg@M3YiOmhHGj<7hZIbd;wDh$<r;?9Mbm;oX%O-5Yl
zrOlxWU=@}~l1}2`w0c>rXyOQ&#n+L+&UMQu<=Iu631)rmwLkJA3!8_S6+<cKMq(x`
znKxvIN?92pSO!px6*3p!T@FxFCJUnV!sN{PEy_HS*5pJ$&9Km}(ymOw=^Ox&u%v)|
zgkBN){?eiy3D+dIiz#56Toy<>TEd_19AG^ixFaW;(Ta|ok7h;Ig*ds>CkZvFN8Kb^
z*V9fn9?-BUJse#tq=U;2PO&@MZ2!+l8rP%F%CRF7YHC`0(@^&IwWaMhBr7>Mj0Ulg
zhlA`^yW4lZZa1$xw{8er&ei{s+_y6w?ND19)|2*|sKw16QyY57;w|Jj2@<5&7PvC`
zJj@X$gwF|eZ#Xs?5dv#c%UZTcPeh=zzz%zw{L*Q!a+U~!YtrJfP-Rp+3oHwI^z4+2
z2G9yFi^~&Y2WSF3D?-=j&Vv&;n%^~JFlRAYHfuGJz~tn5iSa94RI<NJoG$sr`o{w|
zVv&!W!WBnJPvTSu3bG_NL~#3&9AFcWHB-wNpOUpW4uO%3s19rz7kU>Pow37`<W$$!
z5uzUR;K&_UbT2It+WvNv-2aNU3ElD6wJxx|%cAf6S^9APLNSkL-obOwJBBcYd5~92
zQFcgztc+xY3E3f^B1jhLzmoQR{+%lOQGH%?RT;HA8$h<l(CRhS0fn&!c63laiI}gD
z(XT%De9vd_IbR#kQ2y)?(0zmy1$cP7a{3#&c*gPG{O8Li`VmJF*PnoDp30v;F*d%#
zUQYk$$p7~ynS<%2B(|`^{otk57|#qG?<B^>^~@vg;N?cDFZ)^p@*G0)C~n7iFYuCM
z>Qbia8t#XREZ*!(Ah;_9PQ>D50|E%*uTI2H@CzY20KZZrqzp<xS`c>hWLYL9UrYk%
z63Py!<V5l;baK!op8tRc?M6d#&IZj)U*_wn0PV{v%Olw83Gz$>XCeuza0suem#`2A
z6~YL4Fa>~6h}uj6#}CGK>;(-&2H8SisD%w<uslv;#Apz^I=}>3sv!z01!`k_U;@9u
z#SC)A|JVxx$m4eo<F8iG3|$a`I-n!$#LAFhacqJGX7CRA<5CU-JXnps4lxn=Bd=Oy
z4hWG|^6&&7Z4DvO4SNO>C2<4y>#XcV?OqWET@e(Eg4Ec_Nm`K(M^UCejYUdsN{~xe
z?BKnUfYb;I5L3n&{je&0f)XupbId~yT~WR|zyTzr#|lKHm@)ot!wwEH_%<R5$WfHc
z(HC(M82J#n{{PS?w2>Rn!ZT8F51}z0w??L_5fh!|7Ykz%RWJo_5FN`=uo7(qea%f+
zh4``}#=voK#Bt0T(lf9T7<Cc3G)i#%P$x*x5JgE8gYlv;;+`Y|u0m3-c%l#WF=YhN
z6btcK^bn?~5$pW%1Lr6N(S-{`>@dc{%6<|wd`=<GaJWpeXJmwZkbvu?@F6jTO_piw
zpu`N4(t4J%HIi{fOhYRMkGB4+n1pO7i_Wfms}7EU1#AKddxoXT@+{Nx&W=(kSc)p;
z=PGNiD1##|fo8<S(zlSqx7NeT+M+M<64GP~A3eiN*yK~ru2HN^0JSVAgOV|TLPY?k
z4pPG}5&z^;>?T`Stsxw<!HT4x;EgXUOf&h!G6m-`++;0)LM8}vNAzR9QX@9e2D}7<
zC&myjQ4X;hA~D-c_A>JfZPRX?@fm?CY<4a-8s#wbggKApV6^f^Q1drO1vxMdEUdG%
z5c4`u12c(|3%BGnx6CK2EGVpuF`yG&=Ib!7kO!@dtX8q|dh;*f6HSVfzNGUf_=Yz@
z^J_#?&v4UD{&OE?WIHWyF)z(2VM;i|6DR3NC(n~Udr}ryqg~XKDH*^aBZm&=z&tpU
zDk9?Zn$nfbU=ECc96js*SoHspBScAS=>qFlmXNSoltqVVSw8f@WDd@L&aNDQ2)yF*
z{QpKsqXnmQ6m$p$Mn}}^PBcYVk1nFnKt?PHG}Nh_&ImZpN>2j14AbiHu_Sy8ni$jn
zG}P(J>_R~UQS=IHddC6$tUx%EIGTmkOmTa9lq|{=D<G{(uhb$7A_2S9t*D};>;QKD
z^dzH@OZ6o=pV4ayRC{2ASGMx3e&tR5j8XsMD$D>0E0bshjl#AE)na2*5w%ONq9Mc-
zIy$x0bnC8QN>x$rQu7N=J#g|8^)S@*LqMZc!HWLUGb=j6CrGsZ(lF@OV^~!#Qxes|
zrZhQ%^(5{Ttn#$`$YNSw4sT?YD9Lm|`IMzF^;RLYj2`Z*U{%)Mgk9DYG;YskhX13<
z;8oL>g|uD{pU`Adkc2FcQtx(yKMIN=YeG-%Ms_-&Awa_4RMO1^P%QH`Im~iE9@cjf
z)?e+_PVg1O6ygc`6+p$cOjxR2MP<yOgbt_$WTAySVJcqXwGQzSXS$V8UiHlQOEEfR
zU7_Ukz~v_Y>{lXHWn(QlIP)2o32$OHVEAKCS+?><%w+cyXXij?L!*W!f*>G31-gf6
zy9KVU^-P|SEHtGol!|8{4=P%OQeAe;c-G9YHX-7a0b-Uw#uh5x!h!-UBIs6H*7i}S
zg>CC5W=Bk7gu_kJRz9VbYiagSdR71Gc2sD~JU6ssQ8p{$wrr#GSL{qb#s4I0t2H@d
ztY~L3G`^NBJhw0amwJ#kaw7yfB6VEfNJ7m-J}b0ld6hBlNd#>7cH81iDg$#SHs<Pp
zTBP<QfUalXj4asdcVF%*CPYm1kFR<+Rhkfb;|wxSvTOTe4(4lKHSKtTH&x9HFqHx$
z!-u76_jYafNKA4CHg-cR#C%17Oh!z1Wg%&;)mNYwX4TSY%S?7ZY(t1ZKTJ<b<rbRc
zcM~ziLs_l0OhSJ{<8&E!KD)Gi&6i9H7J$izDjdKLZqA9ycY;q+L;pg8ahE^P5p2Ee
zEs%v|S3*|~bV2E*BL>(B-S>UN154gEKvI|pRyb%aC}4Vc7CU%^_5ap>H`Io)<ZoTL
zPhhx3hE6Yn_<Ro+L#spo^!Ih4Zd1&J%0?`QcX*@_EQ>>UhHnI01H_6?LV=}pW~<{+
zMK^zEv2<S+U2$rO)rWQ4NJ8C&Len)}Y_>Y8RUiO4ko{w`2<1e&C4+|u=#YSoH}z=u
z6Op&Zd^=(V28)o(Lc{d*S$z;IIJ7LB%aT3ik-KD(Q56d5lS)}CbZ4$7j$-mQ_gqUW
zkOdiaZ)R_ya7kNCmG>8MY3oGRV~LD3mSs6NffiHT1f4cCmtXmQ<rsopIi@-`k2M7G
zj^I~xIX^(S`37WLu_A0e@i@(*h0j(sY$%vBrCN=`cWxL!kpBRjBi2{XSyZ3dk4<=-
z(;4NCxMgj5eahLyt~omS7ewG$o7)8581e|R`7mLsotq?LDH5UQ`C1dYRd$R>B3duF
zxl5I~W8&DE!K$C_SdLt`cpn&`d08v-NsVzNdPDd(#5d^dDpG;6&LZZeuWGPvuuw?a
zM_~j=kH9?41hIkxYfJ^GkuIkv=XBz-C15W!DMl}a#xzrUMy8}vQM%Q>^^}|0B;c5t
z&yIpFE;-b7c87yakZd2R%z))mTeT#tSDG}HmZek?-OAcksTbuo%JNj=s;2sbGr6zD
zdOwE)_KxH&JQRAx*_KVs(f~Ua6C%L)MbkEv<FrynV*dlIbL_H@CCBEPKRH@C8U?cH
zm#dTbR~8#UI(yTixQ{h^L%h*Us*YKV<=tTFu%XbdWLrT2o4zKRbBottqw}uWbJ2JL
ztf`}`Z+WW$be0@IP(xaZB-AY0V?BC9(Z>42mf|8ZBCS!X4)AFOz<VVMdKnu+sC!Uf
zXM;uPRTjw`>Be)wygR(Xn^iJ;Jg2t~>mXN3Qs(pnro>0T)mvcVTfTd#zrnJ-g?e7E
zL%n@MGUOY)B^#v}!XZShXDULwodT=`+rpV*yAzEiC|uq+7e0IqxvvUp#A7gQT1ohr
ztViQ6wz58qgPsf|Xzwb&Qk*<g`otfS#Km;NAOAwcv%4ua;>Ee6&P)R+Ds0F-+`%TA
z$um4TQeq`q!g~wb6K|qmDeJR`qd4w^O`v=u0&6p<!W%dASWiMaw46Gu13Nah&2<AT
z!ko*;Tq?>uF@3z2iCD(Jyl^g@$XA=J;XFIaYr4<QTQdsCD_qTUBBm<?Q0Cmp3j{sX
z<1Ye3#dmzl`@%DFoG`eY$N4nRg~C3LBR|mmxq&FUXU0Ofh09JlEKX&%3&cuNBvo3Z
zOByyxGQ_#PMMuh_MjQA{hGcUYR(LDxOI!vkd`8#L<*LL4OO}00Zk=<G{RwX5TY`kw
zSFuirMNYsHr%a_-=7dz7rPV)OD*@|P{{Jbk1A0GBrco*;STF{1o!G8axn<V<twF`y
zEsxvN#M_^0V+a>dUv7T89aa2#a$;RPi>dX><r%O1CvGKVxIEr3W?23m;Wxxy@TE)F
zd2%LRS44(nkdNf^BHRIfh$XdNK&Io@(p^<vI4pi=AQ$Bk{<;O)<cn!}X-1vZ@-Y3q
zWhma~{bu3K)WvwdB=B9+7VzQ2Lfy5qw7q(6_<iQ*o$9q3)l<D($*XCGrf>E}+gq)6
z`a|r$hwK$XFVH?Y;HH^8r+L8M*w!Y(iKpM(=5==Gv6uO0?0$LTKIwM+YUtiD2LIpu
zZSBb-@9jqB{$3%(1~m`=a$<*cQ2$MK#ER|>4nY*ZcgkMVCO>xsbl`u@hxSa*24Ac(
zt?)aj?}=vfW$yH~zJ#JX_Gw>`;%9v*yY{8$_SxrW#0T~-sCf~Fet19khvtI>M>Y0-
zxRn2pieLA~X!fCh`t?YI9Ekd_$NEVKK_)DNgdcXkAA7VvN{I&fWouV}OT^HhrT=LB
zxf}aUNc!P_{@n<Qn27$N$NmGK?HN8moCqKo2pq^D2oiz_6DnNDu%SbQDUKw0f`o{J
zhZr3i%!tr|5i?0ra2&bNBS?`XQ>t9avZcd_6DwYHNwcQSn>cgo+}YCKzn?&Z0`<qU
zsL`WHlPX=xw5ijlP@_tnO8>R0)vH*uYTe4UtJkk!7y1-R_8-x(Xw#})%eJlCw{YXi
zolCc_-Me`6IviUz=vlph0}CEZxUk{Fh!ZPb%((GUzI}iGbxgUk<;$2eYu?Pcv**t?
zAxEAJy0q!js8g$6&APQ~$D;d^p2}io&f2dJ8zDk71(FWAg9{X4<cSfK8V_RK2zU2R
z=T(UtN1j^xahlAbT1S~3XLpy-g^SM_yX;>PL?}`h2q8TY2nt0YVG$n*ohK_ArjSK{
zVEZTUF_gj+@GZ1of5WAR1a%@j;oyV#jU*p}1EmMy6Cz|}A%qzYgr0gN{TCoY^4*u8
zVRR_h5)rZhx6+3TBLB4EgB=dU!V_j7Q6oko7Fgkh7!tICL?e<oUwtOlN1=xbu1C{^
z3*DIGjts!)q<jFncoUQgtsskWPsnm&LrKsP6_*2*+0cv*QYod5Mka~SkVzC-C6Ey=
zl%hfd`e-ALa5A)~he%{8Ab}p@Ip%OjcKKy-ViGE+kxMebW{`v$YNVz=Ubth4c?wCS
zpM+M5k(Xdb+LD?L(P?K!Z&Jwss*vW#DnmUg6l<DhwmPaqgEk1{n3u{r-gxDab(WWN
z*e6R61VJ!IigeK7X9r2hBFhm8?KcMzX2@a$L$@*@Ew$Dv<NzJA7%Nb@%sLD0a2K+>
zXhYa)%Pm4r(EpLdzyG?MP`>~NJW#ys&dcMp_N6<Jx8RB!mV-16x?+nfA^a>s1Q)y`
z60#&=#2j^yiYvp_`q?qSHG=G*EOcneK)%~{E6caxjyn*|`wDrpyf*Qy5Xd5v?4!mC
z&nk-<N6=A+lPd|G5CpQQXoSGLJ|%V546SVNKtzvR^20Yrtg}EahZ%FC5ZWuKiUY0N
zE<#}&{r162H~qA_?A9pkgKi77b+lCvbhSVb=S<Mx0(qT8jb1YCG<A{dO`YR4CN449
zU#cxL<2)8F(BZ50x=`9M%luH?WBVsM1BaJ8HOdZiUUciS)7^RM4Fy}TstjO$?C=96
zD-=->(El-Jwpx}6U-C~7)U2014`hbv+1j?aEWGjh{Cx@?p{=_eaPOb;X=1EUzZ^|p
zGeUDzKT`Y)CBMA-4>@lx_|{`Di}qZp1Kd_(F_y4Mbs4c=`m{v9C;<;@3(+6+q$fWi
zbqE4=h~7ZlSHbJ0&o&%Hhyve*zm|j$AuM>{`R?bUbt%UIbC`ooPB^EzjU;zTq2aqs
zr;rBfN`?LV;K44K!LIQzAq5nO_-rVU6pjgk0vVJG1p-4ECS-{MW8VgmKs`qp%Y!5Y
zAs63A!IDTZhH*Qi6$RqMgn*F&*&8BzinzrtlEh0`O9>9;Xf8Tp#EB29p{(|}!|!RZ
ziT^-^;}PdX#6v11i38Ch8!JdW;u+5`?Acy_%7+{ylu#gcs9+t=<|PC&010)l4JQrv
z$rOx|iF8Y4v^1#@s-2A^p+w>>M?!~P&T?n`!N@8{hrdzc&6Ekbhyyz004FWeWB}CO
zOq!WY2W$%h5CEXLQs6ETpahZ)fj|mWcR<9|F9jyMRxqRJ%YpbyCBuXr{(6}aBiKP9
zxkQLD1yag{<nxz;Tc>}}i7SEq)167c6)hQ{0w#LNNe~cNL>Y2W8_B|C(V`NoI^ZsG
zO7x=?mET5XMNd5?bRqjx8Zzx!zs(WEn^7E~D?PcRcQyp33>Z{HAt#IV%oLV{YyW3O
z5sA^1_7fpPEonk_iZ_%nm7hIzXFCOA)K41jp8ljHdyJJrjQXde+(gJo9l}x(5)>ge
zb)d<{y1h=$^P~x3D?`fq(r*rsJuc1ZR4a+B$Y6468-tzc_LEmoR#1}msbyY`Fj#Hf
za$PJ)p|NZk&cGtXlgMnyQ0>q?hAb1GoplJ+lE#3~Ube9=MeHIKQobY9;Y%xc?HU~b
zGHsbbOCUqY`&a~lBiKO}br@3+v_;&dMGIuVrNfR=z%Jmf0Gzc9({Jm5paUA=wRTvP
z2<AXs<>Jb+oLxxy?v+egF_vsD4KGHJU<Q01)^v%@s%R~{-R@H9x!STr692SW(eWlQ
zuq+~oHIs&4S?E`L1wOER36cULWQzz8R$YSkyF(E)mk!i{0CHh=-{va#U>>G0QbnrV
z3sXnE3GwejRLc<dE(Eg-Zf<Z32wBMjle`a;@pF|E;J8_~v~-9pP+4ipiZ=Mc5#|_t
zSG(EJ5~Rme1h6aw3|=QI8EmUXTYDEgrx4HN$lOb^ki6`l4STo3CT{VThr?ZMoq1-!
zgNTE}OoZl@*v*|pt<F>&*E_=uiZ0Hvwq|@+dCCmMe68dqhw?*|OoTltdIDSrGSn2<
zfj}uVl_&l5==~LH(npA%jT5rzhNKW`{3FRwLuQ{Rm@04tVfB4XW&hFj!1`SpOx~v-
zc4-J?T9`0{z;LZ~YBnkl0?&0=ZezVK7C9&d&uyJJsh5JV_Af&nxZX^l*8vB_R)86~
z9=1J+5@$c5+H|l(^Fk8QC$ugh#TJOHUF|aw1i?YCjx!u{9cj4Eo7N2YHJ5pfX@L@C
zs3?r;yV%{Jce7|g9biGKDJ?%d-kaVGiMN;h<kE+aQ{sp8c*G}eSQ%aKW@a!0bwm#G
zciG|C&$WY(#62@@SEy<qPc_R)&VY(0;pHnpcDjA^?|NT+NtP}+tp$!mM{?WSbpZE3
zLLG32w(IE8x=**it(=X=`j%85b<-D8QE;(q4k@Qj(tT}kivK61=y>C}&b&Slm%^Rk
zY+riYOD-dvk6eRhN4d(M?Dv)ngyz|%!%Th-^P&HcLjOW%!wY0_d_Vc*Xdk@G8!vNQ
zLweUrv$y5b1azTy9^L|dI@cfRNCw<J(c)ROWTuvCrZrB6fj&4T3A^{wO5J+<dIIj(
zY-!+#J#N3RCC`<H<A+p~YIQgQ3y9`MeM4XR)K`A%84#{}**<u~XE1RAj*#;4Mg-<V
ze|}hm9Q5yN*>!LB>khO~f}~JORO^pxee`gQSQBo@!6I-)e~Lv~kakGdH+>;95X03k
z5<y1Rqi^3Qe5bT!37CBZadORvaJ)xr2zNf)=Q{J!TK^2@Bo)<wbnt*$H9-N@S;Mt2
zB=|5W5rc?hf|S%%DF%VnMncH3AIfomuCqxxID<ntaB!q>4B&%!6@3Z_S17205HWrV
zp@9qGC5y6uH>V=SS9LY=gxS(FSSS$v2WKuwMq7A%c(Z{wcu@u-h3+Lnz=eGa*n$lB
zKIT`4`*MMEh+e%%g>Se$)w6>ZWim9FgeU=oc-0@-(u1#ac((>v^WudNSaoZKgi6SL
z!54l7@g*tvh3UhH1LTKF<Zz7$Rg0pBlLmXaA$w*aLUb?(wvmE@1s~@%VpC%Vb6`(z
zc5|vDi;P8!y|OOdgNBx3Rp$eX>yu^9CqE8A1phU{BIE^4&Ukat_=?(OE=a^JzbIJ#
zfs4ABM**b*aF!qbg?9YXEAS_8@>e5N6I$vQS8Enihc{{e7jEK$K<wvZRz_*Qlsw2t
zMbjvTs=^{>FcT~yD<<QM=~9c$_>B7IU@uo>6$Am^_;SYbf&251WT!K{wTyjNkOGO2
z)<_WI<7#D+PaUZcDXCd&Xfi7)R#Qe0)$%U!m{UB)hAN4ZED4in6^sE{j3+{n2FXMe
znTr;g5D>XG19L<mL1iyQ2gArjLK%|t=#*3UB`k1~`yz~pWGs?oghW+K6}gLUCtyDb
zjaO-s=>~>asg(ffkYiGm--wiqCy{;URsUgmml0HxgOV*hDI;~MSsb}EL%Ab3$dfYJ
zD+&pW0tu4E*dczIn1C6P)<ch_7(7SRkkqJ(!oiA@kvz2%Jouq-g<^y(2mw!UdI&Wz
zqlprw$pB5$0kR2=y_kww7n-i4RUYXO(YF%4d7F62nh%9G{FZB}8Jqzn68`01rRYf)
zk&dn>e?DSOp|v06)n>)@B~-Obmsvkyax=IgkTR234puGfvP+<eoWEI4QMQl5Ntz)@
zRg~la6lj|KgPN*Ymb8bPmQp6wvN?pLdwr)R)ai=+Nd!*w1m&YMgcP9qX@5G&H42dg
zb%2=ISzH>_pvowq1VN#QsSxXlKmP@~KgOA#aZ{g!BR?r6Z^{vyvneJn!k(pNJ`Av;
zt_L>=nn4SyL^1QCE1)`5qnikKm|0h%CWDa!@tb0ppgUS2Oj=k3@tdc4oa%z294et|
z)n^QGp~RJ;722UO*%4OSpXRwaGCHDp*`Z&WK8@3w#3`Qo_%3ToLRGp(Hd=~7`VdOW
znXciP=YyN}Q3stx5k{Dgcy&whMi7BIsLJtL*$G?_3PI`VKv3imNXka>`4Ds9bSX0u
ziyBEci5!&W5UaGDk+O%x^qgTjqtY3tWaA|FAp){Gt1gm6-N_IgKm^=12L&RduD55?
zLIf*-Zq+lX4za0-Bs0)OH~&t<s9PGJ`*Ec5W2oi=r3h!NI}@zK%3S;Ma~M%kh$xSL
zik$i9a^!+lmfDhWg|2Zmr>BHfu{x`=>LT76LF^h*V&$$#aIey%LE&nX0x7CciZ~Hk
zb+$G@qT{I9`KA9lD7IQ?)!H8lTU_p%s9;HnNQs1_dZo|WQnXgC3xTY~D6mr%twva{
z8CS4y#INpzA@V8$^s28cn}j&o0oqEe$tsg@L!@aUvuM+-pqjJpq#Pcqs55J_02^xq
zWU(QeseF1Ge%d(vnL>x;0CrF*6}7Ku1vkq_wQ+N`!y&Jpv;sAisr`bNZ<G?3nzSiV
zKxa!5UQ0z_`>tF25dWnbDgHH+9oj46BYv&go<2ifgoGo61F;T~LW4P;I)h4nvZrtR
z5Wx~>HtIlCJGYMnvHM|zbaStegm90msP9&z>$sa9BDuHpxeS3vRGE|DIHW3jkP)=1
z41h+8#1OE{x}-~|(z8ZLq#W;<q>IbBn2UstI56=@HNGphV$vbMyPb`5ytk^lRieCP
zix6phu{?`5!h5lG>qS*KWJ9aH-D@)dZ9tO0noD?Clf91_LCP4J8^pWf=bEAWo6TFJ
zh^n&e%SKidx1}|=^Se*?JG<`ts?S@v*1MtM`?P)PSBz$`dJ=MqSExvcex2nd;>dbV
zdX2|N!IX-t1Dg>Q<pBRjU>o~ES`L6fAS}X`#k3t^N;>zzBU`%e*;eB?!)O^$`;w@h
z^tUrwolpu$al=Z;AwGs1Efiu+@~5~_#JeffGb&tKAxt(3LkGmCZzXKOOFB(YOt1=b
zg(_Qi5lo{Ti%6)Z#CE8i{=r`rB*kPiCQa;$YgRr^HxqCiEol5hglNX>v3L)(IX+B9
zz!b*;1<1AtrcbmvCk(~zG{r&r#S=`D5!$2#L2g%BXve3<1bZTqtVG?JJT+-iR07F=
zm~bx1$VPa`TC9AX3~6g-$}~GK)GEOT<H*ulet2vy+JnAxe8z~hD7KL;g-lAaoWu~?
zGnP!Vi-NwsOg8^#)55W+$Rza3v3!*UlF6{yh@ebGS=`D9oWKg)iWr0+D-h1ZiZ>y_
zA_mxV@&lSIAOaFsJ7elI<@{q1x+CvAN8l{ZD+j(FEI+QKawE4$+;uPgoO7o0&Eg!+
z>k-fi;U)2`FzU?Col2@vWvVBVZY<CN$+m6Pf=&p!TRMrRR8<E-a3g191|kgs5myJy
zR4pu!0*sY>a}_c_x&mR+A-=jfAoCu%sxS6@(Bqthb>PqK4A0P3%p0U{O4HB}6VwDv
zHc2q7AVW#d$I=kZpU;;;KJA*^gVHQQMg%#m2zpmT#n45)W(IxG$T1x&VA4DC)eUAb
zZXMRxtFr&aXa->2mvuk~L68FNY#SyW1Srh{Dt&Wy{njcH*PSa;dA-+tjW|sG&qV!P
zW=+-YTp;`L)V?u^w<};Q?b1#|$*@G$lAT6D=Gnie)@<!SRI=Hj458^n*%2Ma0}a`c
zbR26v*tHF9sqNT8t+)FVWL0h1GM(8{T|tPwvvhsj)^pM+4VjD0*VXc6!yVO}qtjj8
zGoo$O7@Mzp4c#uB)D8Ay*}Y~I+TD#!vzSfYRMgoojiW<0+e5w0t>LFB^r$<_E|xpU
zi}Rgdq9p_vCHM_+V)x$(XWx>^5<}Gi{EaBqi_{9<r9M*M*%^vR9dH3&ehZ#iGEC7_
zlr8_-!r;TvTm&LID+$uG;;5M7#J>eI6k@Zsl{~fy;KVft0a!wY?BPqpTskA+#ib$-
z{^6ujU?3iWI3{rhwj@9PC4Q1%?wQ~j-r7}X;H8D*DyLMl;$cWo#|tgu5&o#JLj)^s
z2C|Z1Sw3d@Rp$Eb+Es|<i+3E&bz1`FTW+=_WR75LezI<ETc5MwLC)p--K8?a<Vcid
zF1|D{{zDxG<crg0W^m|Y80G?lhQ3X9>Y8Ft4wgwi<X~=Fs}1QG4&i_P;eqa9O-@O5
zuI62G=h(dBL6#<YzBHqrU!mmyRIcM@uH>Q|SFaA|_IKf3rs(go>#=TNPFCoRo>u=k
zMd*Ak-}Bwgt;i7?-Vn<KKm#I7BvI{LAp+N!NerRwD-oQTHSId_O!b4Dq>8Ivg-t6V
z?jhpsFS6}31MlE|Q`?Tx>+bG15mE4NF5oC$`;PA61X4ONQR0P{9e|evUrYVYT6l@?
zDYotGJ~h#fE9Q=?^=|ML&lC|)5)QvO7*Fpd(eeH<@dfqm0(0;HUrWfO@A&fXDbHFh
z|MDV~S?d1o%+AdUJR3K^^E}`4KL7JTAM`@c6j3|$Mt}53pY%$<^i02s&aU%KAN5i{
z^;BQ=R)6(ZQS?~9^<3ZeUjOxAZ}nOq_GDl7W`Fi*pZ2LS_G;huZvXahANT)qpB8LC
z_jZ5xc%S!rzxNnX_k92NfFJmRKloMe_fQd@x8d?j?;9kK5#hlSjE@)FF<0I59e45g
zH-Y&JVfpb<9M?e^nx7M#FA$?&5JNl_lfNaNU#Sfd`ibHCuoJ_sk@|$M7DaC*Q{x^O
zg(ff6YRyNm6p||jGUQQ6A-K;r7xMc`f|NkA@Wt{{O_CD4e=xr?6~5XM%gPbgFCo$Y
zWX+F4fU@v^10nZ9D`C=neQCfB0V+iv{@(8?;6Ekr&mnhXf9@|Tb%LC}Gb}sw5atgM
zvQ{u4D1yinBq<0kEQo{!Lx>R<ia_#&NC$}&A4=r7ki`=-NJKz{aFG89gpLI1AYo__
zp+blhEn;MN@X5`aBN-&2(~+moo+(ROL>cp7!iX-B*2IZZ=fV}To)~!|aN*FCNs-Wb
zGB9G)sa3r)O!1^B$CWA7u5G!sE8DhQ$4+!R7h>7764Rn(dDUcIf>;6DZ2FXeV7PvX
zLL}@orbCVzV>ZP(m!e#WV5wS7+}ZPI(4j?-CSBU}Y0v)tt!CYtwLgMU=WLY~gdv1E
zE9ub5+aZZ8Sw|wKkTr*h8Cgbv-p;+1w?qeYWEqC|6KZkVwhL00ZnvXv;KCt3p_9bC
zdFma>pGSXvwsh@m!3U3sL~2z!G*N#hB1=E%y+-Trzs_XKj-mhc*fY$&B#fA&4!|Pg
zj<djI>5Bm)(o?A~>p&yUIOLRLh(QM-Tqwcw7L=vI2hT#WJ-$X<vBb0NyGfS(Qrb&|
z3BBr&BM2;9D8tyWgO8#4#7itHGmfC64wwi^@-q@!ysEj~B4j8)1CP9}$tR;^;Kd|#
z`mws8Bs!BMET41lz&E`lh)lzRypYJl+RW?2<B}suNP_TOD7xu%yl}s}itAHEw)hN@
zEJYuUh)@j|3NWGoansGs!1P40JO!`ZR7)T|JrUFt7n%~HRVV6kAxHhZ4Nwd#Mf6r&
zbJcZMUUOB=HDLdN4FWpG`b|HcP$KpThGvUO$%V{F^EdwoB<esGA{a{cFs>vz0=P=A
z%{H)N7dn<B@)C2FK8WUkwljBuESI2j*;@Bq23F7sf;yP(HKhShyEL?bKO@#y{}zgu
zBNiwWv$J#=ipth4IZX32Y0Z_TT7nuLOU#8O@)*`;@$D$UkqHu0-@y7c6y0er&a6<9
z=G`e_g6{1sy1pEkV~%E#c-FI&84z>ZWnbnNVVZa*$Y-DxHhCwRwXNFRtFczLTXLE1
zT4Vh}o>@brxh5!MdN-DsW{$pPTdzZNMf+xs*P5H!Xs1;hBDX0XxMHoj^_Sk~l9n2%
ztp{JLY{kWHS7>&F9y+Cn&(^!{eBb_ebIv>W{PX|)ehs!Y*bYNdmW{5B(g>UxvIE~b
z7>$ZRf{>`AZq<iuUFFy{U&waMdqZ8KAQ?^Ubxe)#j1J{*JAI?$rykOd#5jf^J<J)%
z{;(7XEcoH8Qm9k}nEn>3d&Y1EKd=-c6dro!Pfnt=;vs67R0hc3kZ>t0g+Tm>#O^x!
zDbLB8XQ}z2<$x_I--Qau79&tECJiK>tf<yMk;y_!?~4fXh}S-dsDN!z0iOpW^1t*v
zFe14N)b8>}!N5F^AR>GU2`#li>vVuRIox4TbjT`Mtgdw&jG?NAr;-JBOoJ;7qVDt~
zz#{$UejQ0c@6w|`1`G^^Kmy<gBLv0F(eD3x0hC?qz&N|RSTQLuoCpkAh#{Q4k#z)I
zpd4NJKfu_Lj%zVt2c>ry3o_u0yPG2D40%XICK7a_8{KM3_b2TbAx*>yBtiN(r!;M)
zg2t01tbk*@=&+z+8meDMf)pQy%<(gqWPlyU)e#41$dzz8B}8JG5>`S431)x`PdXqS
z9I4=UvVchBAW#)M$f6F=8;}v|APYOp1p@X-CLIiu0$|o*1?D3jGL^|p|2PwxmYD-^
zaAd1mTJn`Z^o}hl21os*fC#@KLOuV3P2gyAFFX+eFzFzsX+raypZZ;zuGLO;a^#>L
znI%W?smyKmWua`@C0Vi=QHiLMaQ*)T&Oc!_Pi)!Kl(q3=Qp(xUr}T#*4j?H+SQ*f2
zK4qd2>7>d&39E~8Go30OR7+dAPOEVgM^WOZKZ$BhqYi13H?1HlXBD4@4hN+5yogdg
zX~D{AQe{&W=}PG!%C|jKpBIAZK(9hgvlir}X&qB0WwuS=*dYmZ%j(7IYRj*V(xUmq
zsLFEMmzo-lsez>=qoN8C!ZI~~Yqh3TZEC^8awM0Q{G&!OS<sKtv#W~aY-c_DS-3E=
zk&k3Z!(fsGe-W!933MI4QeX$OGz@yFT%x&ByOJlcmH|g#mR@OETZT0eQ;LgTL{{XM
z*;<N13pp-Vl50QVDi@)x{G<PDdufMa{ZBeNu}?9TB(0HjfORnG&rMQ*O*`lZybS1o
zw5-RK4me;1b*Mw!I<j8z3b(vZI4>R2Ypx`;k4GlTV3eBsgxO9k2se3d7MDBRnn<fS
zW-vpPmKERm)|Xz`T>%8PX@|4m*S)ZUEd;DvBoQna!Np7ha@Uq(2D8}3SAnm5>Dw0t
z$2hpqyReNl3}JI|*u(xU%5kJK2MVuGi6z9Bc?A3f0!Jk;m85P&L`(;c<#@%mCD&@n
z^#lyxIJhv8GD9qQ;MpcY$R93>nzPI14ZoSl^t!E=3p{4#w%EB5K5~+|%q=?`t;8p0
zfRQI$VZQa2Z9UHLg|7cxw?_l`$pjX3Y>!Bg{v@OWEHK+^Ej?RLoA}ZM;VlDvE4VQK
zn9*Y1Nu6^`=PtjRAZXT>t6A&h>p{8Aw$Ag6ODfqvnoVVczO<o{jA+m%TiMG_q-aM+
z+Al{-JWl{xMO|t#N{)I^KbH2Ks?Ez`W8~D^w(o6(eVysz@?Aly!x31(AS*wZ-R_1r
z@y^Wv<V<(65>9t@qI)fWb=S<|Vd<fw)F0LoXCn>MPmnfp1WIR`Ed?jbLJ;oB1_RQm
z(XLRt-@T%R1VJivIKpr6mG6#3#XE&$2*l4K@tZ}7IDKLGRYsld*@~PzB{!xr=?!v%
z=$zyxx4Fmbz1#nY14`&TKY4dro^<=FTwBqdd1-+wFXB>GE$I|j$RoFqOV+$X8(BKh
z&o=FElN##w9$eRh&aQcX{MJ+l)Nf>7ce?kbN#16FwQH7jjsw!@K=;Vi&(3$h3l=!f
zWjR^?duo?k98h8h<idxjZJVPK=cj|#c_Fp<;g~bIuN61jB9Cc6oxae3+WVN&j&HR0
z9o%t0dh4kzdmy#c_OGWs;akg4=}A3NpocF0n0<WYC;v3g4i>bDHHW&997E3uEZFe{
z0W-`Yf{jfdfut`<l+-jj;~F>WX-8w|OQdq1xugS#kkSX6&X(_&ymy|zJ^2HhBlE=W
z`PD>B1gZan+5tf3`mW@lo&JatmKv8N05?m~JKdr<wg?dfjIIS_sOGu9L7_j?^NRj3
z1CHsB^f12lE4&CXg9yYsh}aE!alrivjO^P!_ya-I(+T&3KM#}z8eBaa<iOSQ3KU!^
zK>5HB)ExfHk+Vrb`zpcTSiy^Fyc42>^!qhjVw7(|FrHwgOKQLs><c2SL6r~=@SDCQ
z6hiybz=gO%7RW+^^TGb`5du_+plHG^nZr2DqM-Ob>Z=+wteGj)9yeSrD9j=;+{3Gg
zLF}TAK^#9NdWs<IDGqVLEQ-V~#K1$;zC@Hf{J}m<<USbe#HV0HQ)8P)d>YnM!Z4h^
z@XP<hLR`hC2}G~ZLsyh65s^hQ1VkL9LR}mWK14)MR3hV3K4Bb2V(bX!0~XRE7ET$H
zt`M$@*hRxRCJ<Xe-I|kTgo$U|t^DYK4tPWFt44EMMw|O1bz6&e3ypIO$6(YySh_v7
zNCE+Dxg`>~0=$Z<C=M2=n}V4&5m_s9k_v(VqggArZUT-u$VbWhk3gEI-H;CDQO00Q
z$9=rO#0V0T8AO3(fVzuEjmepRG^g82ttXhq)zc4(ln9Azos$e8@yN&_R7q@s4tEqJ
z<)M`dc^7!}H>=ykEMZ5+;ECN>$R`0aD!U|q1WEJjsd2dp8|piMaml!W$cP|<p}hZ=
zBudAeoH}~p$h6r?on*$Q%tjg$M{*%ch)73Zj0mQ5#*hq*k<5!hbP{gtMuDISsPxE>
z1V{!rO5ji&h73v(iN?3&AFOjrk`zpmluK^(#(=EJzPL-UWJ_xdOTY`rX}iYS@k^j|
z$jOvUjzCN61HRl_H?EOJxHP<COik5H&0}<pN0Q1Bd6HK`h+RxTn=>BMst?&bk;lwS
zWwJUYgUyJ@P0*OEW~t1zm;=QTPWB^5;#kL>;7T~E7JAg4uVXJFD5p6nvfYstt`Gt6
z3{RRE7@J&+Zq!chR7er&fZQO073eQ$VNQ-vP9^#eZo;$SL{0MK5a~n$3Htxe@B~kq
zu+0h)5z3pyj-by`v`>QEOMltV`UD(_c+MAOuDBsibLmeBN=th)ORYna_Iyulni_}O
zMF0&@nmEwC*or!s&Ax!pu?)r%olk$s%HNS78?7B2)zI46%{e&~`7FzIR8S6$%@*ZN
z)U&Wa!bsnYM;JX(@l=T?2v7l)k`RT@B)!cI>j(k`BoXP-QhKJmbkev16c}Yu7wyp_
z{m}#sI3FDoiMrAeRns)3(Ovw#JFAK4Dy1S_O+Wop<ZDgRIh6=$n89%XJ9w^3^3O`N
z6u>joK}pnt2vF8x8AnwQ55>2vVGHAYz|go9@_<gCbg1Y`2|C0YQj7mX;+UF-`O@wb
zku^CH7qk=5Xw{@-E)lVvya3HmWs4nIu8dTRxhX!ioK+QUmZ*tU9c@$*0M;b>)wu{(
zPaP9u?TcoO)&(LCm;i}ciJM{VN@U$hm@&RZr8GgBnu*y(Wz8RFRiZ<cRBG+kPg%!w
zjggyamt?)ep8;2ei5f_K8hFJdQt8#TxRgQsSM7mUMwQS$oz(EGRGr{fo3ohZ;0Rr1
zh;&@oX%#_>-Ov}**cYTyh@F#aC0ThL#do#5lsy@m)60b2h>Kl_bVOK0%{T<THqn%b
zZ|ysez1fBZRG<x7MH1B4STeL29ID)&OX|{QeWj=nCcQvfEX)5O!+2W!v=%BWu9Z51
zx*-myasb+K0Iv0<_`p!;@V^h07<q)w-x!My_%RG+9q}+RAry~&)JOweuDThoG%Qab
znJt#G+gDYIs8J#%G21~ITbqgxI&eVZunVwNsH`2u2;tjQ<q(IFm7>ue$%~SvwG_wY
z46*H6pK4rB@`}+V+ZKwFZ*ic|9gDg6mZGrS-LgrmjEJ`NB-}*JQB<<f+>*i_MUx>G
zNlaTMnhVS^U7H#Uvq{?3?b{1MTzhlC)Lq=P`50NrU7Lc{%w?43om!*KQ(ID8!9t}$
z%p$2RLeGs!6I6>+qutg$-jymm<h7LGZ5Y8_-*ExB+fe`CiC|x*Wnbue3it(-0(PME
zy;MvC-|8)21uiu3l|rjilJDi12KL%J{aqkxo&a8_^A%bU4&i?xT1PsJepvw&M&T%l
ziU8}6jjOV7WC0Q2G)|exuUHXz@~Htvkl?+I6Hejx)YEq=N3y7c3fnXmY?lYCq9dl^
ztN7s*ewcF7w|60qBzRBzAV-b)DiMG)ZuzH@kPh)+oh$Bu6{rfGxLXS{gE|NT2-vhb
zu)*D6ffSG=Zc7O=UI8;k<6Gs&0Xzx1ggYo!Vcu!tBrcKw+os~3Vu|3`42qEG_^LX7
z68@xvAV>ikhO{<*V-|?xvXo&OJ_{C30Y!!tBkunmC%%qER$ikyWh73MNTy>uzK~Ha
zWt+O<6v*O1nd3>mV@KAOI<RC+-VMwdM1JWCAZ9XM!j?DgkI0z{Qf6aWI=M}T;~K(Y
zTSnv@j*nRG<-Ry(AP(X=F@k9J<U&T}Lxx9T&g89JXJT&WOJ-+ncHt*R<|u9%dnV*o
zHe{JO-%+OLPoCkPY~PePwQio}XsPB-c0`3XXZrwTXP(<R7HCfS!1tueZ=UE-4(N@}
z&rsxLgw`IAresy#=Cx^IpJHNkzL<aZsfTXn@F;13-shE;2;<D9Umi<P9_XJHVW0kK
zL?K~e8O6Lj6i$PtjANw^xJRjoC(J7?=?MQ=kH)y*D(X5M4W(vkvxqnESZa_wi-xgk
zhCsPdjSXOmEK`kRe=-cAG7DNcYJ)tu!F`$|NG2SaE%pQsGawdlWEfy74!Ks(r}+)N
z#-_X#YxdG=z<?{MIKlYC!;U!Lyw*X!rWbMsCNuaCv9;^3LK3Ye5XRnWRZ(n+2<_e=
zZB;p`y;h-o0VdHl>$n1{$zE;UI%I9RY`rFsgY`}OYCpo(LBqB<yEcPLVWrLPsN^zj
z`-$r0n(fLa>W{n-A{cJ!@an!iiw1e9%r+O?)<I<H?(K$Zq_#S-4(sS1?XM<QkzsCD
z`E2!$?6+}l6*}&_-dfIv9tZgC3XA_ADRFO!Icp@q9sllcko3QClW*2SaPgMvj$v=l
zPVWT=T>TDik8p7GzHXbAo?No+2k%SW=3Sr;aS;a%p@ufKKwGtlrR*sS`S1)DUp5iI
zzaokZ8D9%gJs}iVlX&DtAi*CM4~-5W6$rR-cdBtyigD3Ea)qjKBCkl}3-a$El^<X7
zj!<%Isc|bOi6@uwH#VgvN0Kiejq9m#C<k)<iLdYQax+hfEN7K7fAciQl{QZdw4L((
z81j@Tb8Fe4IUkfh4~$B&^CAZgJn!*5KlCamb0GP1DPeOX#}z>zaY>(a(kO9CzjQ^)
zQB2=-PVaP2|8!6fbx|L6QuqIKOD}a)7Y$8Mbyjb6SATU_k9Ap}by^S9MjF&wpY<SU
z&|L3zU;lMr4|ZW6c4BAETQAyTPj+Qrc4lvOXMc8Rk9JBwb!o45Yrl4E&vtF!c5Y{O
zYVUS%4|j1NcXBUxb3gY*I`$GqcXn@gcYk+yk9T=5_HUned%t&l&v$*_cYaT{dQT*T
zyp@3O_gv2L#4rM&@(?62cx4j-svu`vL3rhJcxYbDUB{J+zm<$14T^_&j*xiJ0QuAC
zc;7W7kl%O+N_a^}d08j<et&tjpmwDIAH>j#2D^;6prTQ$`3ZgP(3`E9Zwbm^%Fd7s
z#u)k`#x$gFiK8g_jA;M*6Z#89y4%sX&%~hmqKA5>pbSL>36by&%@7Nv=lV}AH@xr+
zqkoK<_==LtiW?4#<x2auSbJ9)`hJ`Hsw(Za&x>`13%S1_39);L*?X%|3z^9K(w2(N
zKq#wM8n!t6^9%dOo(#dC2(7;jsaKl5$CN{Xe6+6%t)TnIANrhc2+UA>#0UJ8BYeG2
z0=G{LoS&|<kBicW3f8a4%ujr{_rRs63(?OX(zlF?Nd1QReIBWNn2+^S?-Cu>6zAv-
z!gj4lnOxP+lTm?=?W))!c@LjDew=VR`G|hCL=_lW3p$At9aanGM<wUyX+y&LvM&wz
zXN&d!6!s_+8DaksbKN>x!ISd`2nGTN5-doN4ibY7=*SXb@S(sCNo2`7VsM2lGe_vu
zNkI^atS3)o(dkeSf~<rBjW}c=k)p+d7&UVAC{TpRoD5e$yqIxg$B!XLmK>ObPS2zf
zCsr(Yv?tD-Pj(IjDUzf~flqtR1Zs02N|g*)LPV&vr`fX%y4F0Iav)iyQFY4VDG=iv
zBn*QPgfIso9Xb$_rroNRLE5!H+a69KYYq`JvWyU98&vIFkyHgbhAf%#K+9hZKeS3T
zt3cCO4>RZ-dGf=B4GFsbEc9y8!+rq^b}KgS)Fi@%w^U5?GK0)h>xN#8+_=|)$~UvF
zZv8s;?ArggbMNl`J9q~E{*f<lzPvvM5a`%tFcJ09!Rwz8%!@H5K{H6T%5w0qgDgZ4
z6rXx@&}YyQ6ctwxfC37%UVHCBG!<+1HC50Y_*s`BL=YM!3u;Mu$RB*Y%@-baM1c5R
zV%n(~B5NbMx1vBCLc{`doK=U>f&<yuU5f%GINM<sYRJGsDmgI69F?^MK^+G+*JF)H
z+*eSN0xj9(g!`S9C6Y`!`Cybrd3l|YPMxU~g`quJrdDeb1m>195vf#=tmPS7T6I=-
zXLfBC7$J@BnP?zkDv@?ppM8pXn0_DnhoqxiUMDC6k@7bwosSxt)CzA(xt6G`X*%Pi
z1P%YW;HeX(8Y-EiDn;Ole^SZ7k62dPlc1ei>MO5uqBtzE#Tt7ovdJnn-g(Xblb(76
z0mwo`vV3Jkp##}*Bm;GTrWlN=)sZTI*Jj(Aw}5^$ZeP;MLajk4eaqUm2GKEZb@%o(
z*g(_j<}SSD!gX#>lR`jcs#?aI0*o)}_z(ms+?t$Cd+y6{K@PXpVG8`V+wZ#r>04G3
z+TrN&LHI6=GC?9#EEZ?!QW-JJ1l3EB3U^}kRY6ABQP9ar-8@jv#qA6+Y$r)vP|?lt
zOpwoJMl><aJq;b_)FLMRP}Eqv)ML|kSxZpR5V<T+kX1i)HexWVw=~W=k3CS?9ZvuJ
z;MUQC9Pr#@oy&G%`*koe;3|c!*wYbH>1}ga9e(slcdM5-<6=85w@q6Ou2k1t|EzS)
zm4jPQ3NjNUI!58H^m$($GuSt_A=aHTM348~*VeY%q&w0ot0%d#!3#e;@x^P$th44p
z>lR;QdFfc*0$nYTpnCNV_45?XyATUF-YT!w&G$_3S<^FMhl2&*ioR~Lh_5B^lQ(Zf
z_R&LhR0j-^q(W7)6m+3_Mq&q9)B#=$c##q6APYORM?D}JARQKz0{zut1s02!010S7
z1S*h$Et>;HNOCunh>v~$$&vaDk^&-3ga|GSkqOrZLW)F?HWaiV%(&;h4~GA+h6b6Q
ziss}#h#<iX16g4UU-%Fp`fnf(7@|R9*Ov#1a3Dc+A`}f$L^Fv%e{|rP2xeHtA0Fu_
zU8LdD2Bx~y7%@&~B*|B<s3j;OF+fT@;tdlM#vV#Ak79uU6@7TXCeE>Wb#x&SU}Qmx
z*dYlCQ{%p%NWUX$504b7VBp^PMH^lchXRo!lClWM1&)z=Ub5aN2^q@wEpma5<XX0>
z=Os`+v3X|nVj8Q`#?tIEIbswf17xYI?g2`eMC|1rX;_>|a;B24VWAxpX|wcYOqI2S
zC2D91MQy$hl9kb4BOhtJagwu~=0q0ql1HB9k!@~CIM8~K@Pv{T#C-oLu)`A|fFlD!
zO%^D7=YtS3PgT)phf(xrQgD<@L|w;xvPgnnp1@C$p>QA%jp#&yc00sW^dSn>3Oof$
z&so`lJrQF_OF;5J{OHFa9l(}NR3wrVOwbOfX{k%}V=x1CzyT|$Lmk}K6P&(uZZdrW
zP3d4$qa>kYIH^O;1oBaVT+~4P<WUerl2MK}@PPVxj2X<pv#LteDNQ}t6QCN<C-n5E
zK_w^y462p0KDB1k!wAak7uS$|@~d+QYcB7KP>cGGp#veRPQ{j2-|f>VC0zjoENBOh
z3CF2vwQCt48(F1B)vyL>tX4EDS$^S_AW4f1L;fmOu<+EUKo$Q>WznkE0<qP#Zxsk)
z=`g9%61K0Y1uQ{Sgan4Mz_TKgl}0lcQhCyIK5cz%XiYlWwLbT@yrt^5a+|7q<`cAv
zS*#UPLR{mbO;+61Ctts7TF@jxw4C*5dNs<=*w*!k_(bnSk5EuRo!7ha9S~hF3(|lx
z*SBC@twkYf)jxsPUZc7$1Cj<|y&6}z<3;W{GpykabGRqzR3|&vdf1pep-Ee;C%0M?
z!mT>swj-vViFbKVlgQPHE`}I+71PzjOb;b>I06emGSb6#)W<*;a)-z(nH~4Vuo{6e
z15P}vz5(b!Dm86Po(QuzK9rL1!Vzjv0<R;?c924i&0GJD7~YXOW~=hUv6PG)<Sq*&
z2qB@v5hlW|CBwI7az=88ph#wq3D>?fRu}HNdA=hxXdrez(pPspJ2Jj5eUJ7@1HlXy
zzBanf0K_eIX7m-uocYZtc1qt!jp>I(dO)d8bEg?_X}S$oRb?(T(waBu@Tx@9c;lO;
zKRs!ee43`KPO_Aq9LyLC>DFnU$f(o2>r|>F*0c8Y<oF4__*(ly0Md}L?X=@<^RwGA
zfi@-G)@p;SJJ9bVH|dsIV--_mtL@G;Zb{5+TKk!RN2W8egUv0BG|=4D68N#J1@2sS
zxZw_e`0zfQyb!Nv4ynSk^9I9An{f*QW|)J|fSLbF7-5`#8sE=C95nAiuCYKCe+Z_k
zGd%|op*Skqam{FM^NzY)oO(<0%h6^LlRHl>6DdeqQ=`fVvve}yQqfnQ=%6I@vTe8>
zvX&v`bb~-0i`1;A$|{~Jorl*hDl)^QR5Y_2)!K<QFT2%1V+O3JIptDCw9Qmzz6441
zC_rp)Zul)UZt<N3e&<%qsa}x86#noT13Y||9+<dO+SQAfQ_QUh`43%wAdOe5hK4<N
zA(r}la;LkZs?PY37#{TPteJ|UigaNGH0X#KdT*FHdMqkR^84BS9L4han<@SvfBbmJ
z7c~5s#QrRq_c+K)s(jWveny=S?&cp~(w6_59xTY0z7y%7azH^p`CQLFMC<^XlIQ+R
z!zOzw+p~OwWPbiaqQ2{AUrpIVy#N0HKZ;14v#`^8^u|Dl1mwt5<*^n#J;7ux-jGqx
z6C~h)Y(xiK;LVX-1U8ugx<!hqh4~o7k7dUQav=ZhOJJZ30?v&Bo<$PWK|v(QU|g9+
z;Rgha#AC2Ps%Q*$)kp~a;DLw^Rh8aJ;NTqSV0eW{-mp+$Fa*97;0bmM^A(EJvBt1H
zL<xS<Q3OWP2w{Y&gau+?U4#e|a-rU(7!hy;Tj`Ypl$b`HU<jsRlmN&Rej2X)U<i$h
z9Im17w4tTEAgW<s6WY)80HWpL&IkW$i5qGK3?AYqsUaP{o(SSgnrY!6f`%8SnHT|K
za6w|;4BMh0%?CmuL9C!nv|uJGN+WV!w@@O?>|rF{As&W=hy~CCT9GHR7wsY9Nift6
z-r^(9VbT~PD`LqaD#S5bq8ZlWFY-$mc0dL)qXR~jA3okCN+1PF;#p+j0p+3xJ_IZ-
zp*Qm4fb1dwo+CP@qgn`Hvn&rOegsFP&l3n06MY5v&{`VlMIFeaN+{4QuHs%X+&g~O
zM$t<m`Ur-p#T<;vK*mT47KA?XqtOAR-}na&h7zL@0SL_jzwls$t=|)ffJlyHRs=~U
zss%J|WJhL8(saOI5Wxy0m4^Q`Bt$Ia-G#^n5o8qB$bq<|_{HP|#e_-r<17+TM7$(W
zV%(`|jhi_J%3Ptg9Avg7*W!ibNQ&edi5WyVB_l%Q=lCQ{%H#re<wvm2-7y>`@e47g
zhFRhcKMmVZ9_3GprPZ01N*KshVr8JcW!r_;Sxi+gc3^76;{o2K+dLaZBEjdxCDOnP
zUgl+1bRFLK&Q!WbTf*1VNao~FrdGN~VqRu5$sSj_1X9waX5OPe;$b76re3KSzkp>@
z#zaIGrZy^tO*SS~GUZ<8remq2Z~i858U#C@$MQ@?&ESZXIDj2w)buFk;=xRgA*T~9
z=S^HCw!q491q=V3N<;riWnErJix?+%h^Iy+Cw02u(rrb8(1sn-8fbXrFz(_L^io)0
z2adcaOM(Uxl$jKkqF|zhN{B#3d0|5JWm%}iexghX&L{2!sCCvwO7SN*N{>|X$X4DC
zR8pu?SZIF8Nhop!-l<sTEZw6d=;?4vA(E)2fZAC&#)x9birPwT9w2?DnTZa>g4U>_
zn4_I6$gruMQgEk#9w#ko$$2v9ru80-Qjd;81c!boTRx|g5($tdg^)&BTUyMMs_2C>
zoQsN!g34x=I_OAVXG)D}mxAeu-ko{!<xYNQj~2w0`ozR==wZo8l?JDt?y3I`r}CU-
zSx8A5ic>vGM}Yq{2md^TVGSyLEeJ*=DnX)UEMmvZ9l>^Gk(Pvu16V30i4S1LhU$Fk
zK?tgD8666Bz-<90w#0-!3DFcPA!y)81EmT~dEQCx3qL*4tF9N?tSFA)hp1`^r#6%L
z(1DC~lmo2M`wgp#H4h#5>V?$m{hgUyJ!?Cm=s~VWFEx-1&gfXii?P0r%E;=RB-ysA
z%3w`IdpO4WK`XYR+Pdb=q*eyHswE1sD~?s&ut_TeB*<O5>q_*Ezuw)fn(G@HM3wbL
z!pti^1}ZL23cn8QjKnKwMC`2w)Gm>$6NT4T2<X>gEXXkA!rG5!dThRa2*rj*y{fFO
z@{6_7+7$nG?4c6m&dF^0aO+^b?A_tVqL!-QVF|N3hN2Zn)iEr%Rvl{<t^Fh{Soj>D
zJ}uM=kDsE4dPK<zT<z6<1x7TLiVSU!1qKU<Kyh_oGTI5(Vrn}rNZEpg)naW-23LrJ
z;E|M$SarbI8UzS+72S@Pmq5t`y6w~C?MbvP)@toTtq|Jw#6-|R*iKi0d=UhsVYEKf
z3Ut5<j6_SoXLi*=5I}(4)<H`w1mmUv{oGhjU`rBI?&VTxekvUic&>_Eh~K*H+oDU|
z-feR<l?5TK;Oe9b)xqsfp6kLcOlS$%k}gM3>z#na>q2AkE@deiK?<yZ8GtS&rEUs<
z#F77G=%Ue|^ir?&!tJe8Z|8n)aXi8IR&Q}Q2KH*NQPcq)1VIXn?W8a-@wR6n!ms?&
zulTAE<z_Dcy<q&#Z(yVf`cAL<9;~j6Zs{UufZT7E9d8347Uy~{3xsblr7s5GT~wW2
zOs3&0BHHW%Ztfzk_=qkGAn$Dn@ctIC@iK7o9-s!ZN(Gy5Kryb^J|y+bFx;BK2e(L`
zvK9`Ht;ZZN_!b8X6R^*+Z%n#xGqo=O*{}1;F4*Sqf8Jej6kymA@e?<36hH73<Hy#T
zumaNt@bYc+BJc(e(ybVA0?V)(_ec<jmk+N{PDU*r=P`Ip?K<t%EW%82Es&d;PY3_t
zU`U`wn<W%OoM)qY8QcBwLGY+j5V9fX6T9(TA?KmT;0Pq=M@Mlo9s=?ryV*m$pe8NI
z8|70a1~Ns=0hht56CJ?-kwm%8kQuDU2HuGNJjN^YDv~foModtw7NuBZGDTSOHyv}$
z@R{!-Y$bb)0|2vFjSOj0#4Xc7F3VLkhtM>iA=k~a8T3di#n8{DAGZ(zI8%x6DugW4
z5I>=_HH$MiQBx8~ul|?;YHYJL3-h<u^8{Hl$<f|8)3ZGTba16}Gc$-S<Fb}WGd~}t
zH8ZrZ&NAa3bUY`tOn?&-B+NRuQzuK+C@XYCW3yHibVh`TOOEtN!E;9R$fo~Nbh%YB
z86tE>Gtx#!GDH~jAzO4y4~R+Qb22Z`*A4WXI5aiuG+VLVf*^H>5VaE-^}GZ!BbT$Z
zJTp&+v%SzBOJns_tMe|7^G)lqSdaA{tJ9yd2KOa}1Bk#Qr9eV5h;_I%#Ig0hBn4e#
z$D8J~br|9Wb_oBiwbPzO2gn`-<h4TFb#)v}V4nqIBWz$Bwm~#DSV(qXK=x!Wc2W%X
zzNB?_Xm)4Io@YZ0_l0&}P&Qgy_JfQzXruOn5VmQzc4n`(b{q_`v|M4wwqN%IX(O!c
z0d`KGAZ=fVZ~w;$?lxH1c2>SNk|?)YzqaSv&0=#lR5-11A4YXY1Z)34Nc@mBcXxME
z@bR;Fw|H~dT8_7QpEr7^w|cKPd$+fHzc+ka2Y82AeAhR2l(&87w|?(8fA_b4|2KdK
zcyP|QfERcW5MhBQxPmV@gEzQ?KRAR#ErCZkg;%(RUpR(mxQ1^yhrjoPcQ}ZLxQLH9
ziI=#EpZJJ>IEt@0i?_Iozc`G?xQug{iqE)>-#CuvxQ_2Qk7sy|_c)LTxsVSzkr%m<
z1K^LB6A})~k{@|%Ac1tNg%NzL!$B5zEcpr`L3SU8l~;zAf5(&;Pm_nnmJ1IcApx3i
zx0A0qo42`pf4B$`!91o><UYact_>1wl?X%>lQ}Y2$oZXbB{Kg%L?TOvoDWyaNJUQc
zx!L47*C~2P9)_GNIw~JJTAGceM|P&0lSgjH9cLJhAh=Q#I<{c;c7*!)nEGLSI*JrJ
zt%>?ML4a_K1f#pTt=~GXclU(jg<fFlZs>(zzC?T0Mr(cwSo{UBQzJ?#?wRoVUPy<c
zhgxPc1>#}za3q162gkJ=&13ZX&`xPyJbQD5d*TvLr)vkRn^PfQx(j+qsT<3>r#g$k
zdU%9lyq}|E)H<)c^>&CvuKzp02mE#rxQs|hoXCe~rHPz+iL0CtJs%2&tx8VM?4W$e
z8f9KjD13c*XHAYGdsw_$6g-WHe3Tc<xo1bZ>uIdL`|$s;Jdn`)cf?w7<~w$n?swR{
zz~{Wq@BD<LjK2_@xrB@Ppbq)$C%M4Rxs(pJOpMWgOtoy)J<1%nP_uPV{Ye1Kzw8ZI
zV7*!x48mZ^!ZZwx2qfG@_RFw_1JKl9q&>?7_na6^3aGl46!u?>zzH^ez$T11sZF^e
zNg6o--5-?RAGYijj?%dFa%;)o+kH~t{oLO+*srzXuS{&Hz2BpZ;$R2OLyYTSiLMs*
z-j}`7XzJ%ffZXpq>ZksYCpihNME!WP{tf2!z{Ts&3FEHZW`++ob>|OJ`JAke@5c+;
zO1@IGKEAbk{?HJlUL@0jMFtg65+=|BHP9$QP#^zwQo6U2w@}A8zfz5Gq#<+sj8Mdm
zIRHo)wD8Z1%U`E-{L;=rKs#5EtC7FF2W)$oKR1WSKNFBAJxCw{ga`%<I><UwN7j=S
z2<HrB-~fp%iDo)Dv<N|#5sM6xNR+k0V!?w67s_flP{bUMbObtFK}TX8BQQZSfDqA+
zES4J|w&ckm#YdhgSNaU%(W9A*ICc88`9xOEIxHL>MJh|_Ppw<IcJ=xdY*?{l$(A*H
z7HwL!YuUDS`xb6oxpV2(wR@MYzkhrA_T}sECkt6A1}1qj5CR<}Pm=JobA)FKJ5L}8
zrpnWZEC?12BUa4V;*rCGojT0Cd8=T;Jn8=&Ci|GDtRzTUU*1SF_UzhRRo@oMd$88t
zUX$3NvjRd2m@Ol2H0aRG&JLMZ6G`|ag>pL;2SyjzA-V(4PdYeQSO>{h5weg#xG9T;
z_<`1ur0Bq+wZl1d%wUH=#5J!vNI|fgEZPsbm*_yvqSG3bMLs0#Sgo)mQh-2&C+a}W
zx+k!EX+wtwEO4XDBAoER;~-EFwZzCXuMYH}lP)}hbb{ch1&2d$MLHJ5OtXzf{B59u
z7R<4-;5f1nLk&?|uf6x;oAJ9EEyC@mpbT^<2_`cP(WVquFep2xyd%g;2F{#L$>hd7
zqD;KxoRiKv?YtAuJoVg@&p!S9vrhlL{2KHhz&3IbI>;D!q9G)*vIw@wJhIIq2V}I!
z3`H4bz)^=JtB5q7EKP4KM0px>%djGK2%|cVU?HN$HZp@q#AI<5R@t;N71LUI;`Pw{
zzUqj=f?R9PqURoB&msz~lNBiV1`>=ro1|snAO`9C%7{AT!^k#~nx#;s03Q-d%Z;p~
za6LsG8nr|SIjV!gpD+qyK4u3BiqdFPHF4g0*LA4ffwFaITL!3QRoa4xU|_w6*8^!_
zl$3q<Qc1UT7-Cr@_SIH=8R+)gYZaEIT5x9td0&<<l11bqO?GHuTQ74!-+hIg8PJ}6
z{u$_?g&vydqK!TpEI|qF%TWJT>6k-42Izonrp;z@%w1N^n8OI;N@KvfY6qHn<R7no
zh>nL({yOYZpN`t1C+IM1)qxx!!YAuewMkUG5e7LisO{w{aJZcod{|jF(r_ST9lDrS
zBgD>^LY&o3;?c25H3QmZN$u*0x$TzeZw7f%X>xRZog?!_MgM#9)8zizF^#~M#V3r^
z_S9F|cRH|jxx4EeXHqf0Exm$Nuo0w!Kw^FI*Yi!i<&9-o-g)M=vcvY!F}9tf))o78
zt8}~K-lB<lI{wPfBd5OOy^)@u{`&2|AOHOI-@h!Sm)@&sHt~_^JT#`&ECy@Aat#EY
zU<cDlt#bn@ppp=XEjs^n0E2p)933KfkpbH4Vq>YBR$OJ45_<4QV@XU3gT+GP)L|n>
z2$JIlaxn%<WDZlBUb1YblB*<SAf!vy=eRN^wN;EG(mS0J$6~(65piVlatH^3q!Je*
zED1h>iS4YzAj@sUi37=u6(5*0G0IDbPaKF3uX31z5GH%sGh-CtMn$cJ@r~Nc-h8s?
zql^s1h?LXM4}ln#Fk(@Qf8^cX*oc$>-OwaDTqOS}SxHM?5|f$K<R-V`zyCFDg%6}n
z9d`EwC^BG#NW=*EPFAnR(Sei>F=Y@52}7DG=~o{N3@$~OHLc9STw(zx3Lp5DP})nE
zU`c{4O(QQF;>`b-9Uy{A=D;D8@o;QU5WzON$(`{H5iFVU<L)?O2d+TxEQi$9gQ7N^
z2Vn;*LfQ`zR*)UC-Oh_117q(J5|q}hvzg-grW&QDO>S<pB6*CXPyl+ycJgwc)`O!^
z;yBNGD#u;ogb6uYb5Mk;E>#_{s6De56jv71qav7`G^uGilX4QKF_q~|X<Ad8n#Ge#
zYnt4ODVP8`zz+RFr7tCfyekEBT7`T_P*HNw%&fpE!uknMw-TMRjPNG|9g9|}N|vtj
z<g3b59A`u)!)ArhB7))KH6LfYEN<lqnZw8_wPH#l_{}2Lq1_r=*F<0WXd`c(B2uHc
z8Nm<{31I&UqN2L^E`6T$UqL$Tm6RyhxW3GIOqAI~n<o^&lJ%%u!DDb13X;T{?u3g%
z!d*)v*mU~pv=&J%15mX-%?d}6fOOeSdD~mx{ua2w)l*IhWhi&vCO|}>gW-m%E?h>;
zCD+r6RF%uzwOM3L%iHBiMU>mu_|gGKh+0r$X1COZcf2sWC3oLNz2l}8qKPw52QKB#
z%qXfdl~PvQ+M3iYMU6TRks)1&f;+7k>mpG@=T;m5KYuxQz8A~xPXLCk$4c!aNo8!1
z>~`Vm#Y;Xi+@0RKtEd1QOkX5=*Jkx76cWqKT@x-}trSX8&t~{!idxTJRctp=IrxxI
zgKz&yz3bmfv5HdAJS!`O+hiv{8Ol+X@<50?D8N9V4hmVpmg^Z^3t6YU4jJJJSs()Z
zuy9ja8Pk{5yGy5}`Bz!y@|Fc=V7mD-1$8ikea?J3U*&nv_xY?%<UD6rsw7od)-sn@
zqv$zznK(Kr^Gh7)89H1@xys5+5?0WG6+opW{H-DQ%ut6QK;S-gXo&-S#DWyeBx8iD
z1ApR*1WH-Q4E0p*=N9}+kY(p6Mo2+agX(D?MGej%mZfw#<uO!SXTKa?*6x6vkzogP
z+1iy_u@xjAR@1@Nuy&uRQOyEX+laH;+cpb~y<A!17>p?h_O;R7V$(WXni9e9to#3C
z23uo_+^H@Nq7RiF>kuJ3sEG&>o~`eV#3%?Xcmk;dZtj+By3?PwvqK;*aVAe0<RKUN
z$Voo5D*FX6g83m4@e>uH4g{+mfQm%O!@HN$3?@v)txx!c+m%xmEis>YLW)VNy~*4o
zl)2^4dzC7cUxidpM+$)ht7@1uC4E<?OwL-4Luavd)bBb%P9z-?ADSUC9kkaRj$ni%
zEXKPpk%%3Tpy0l)Y;Ux3WTiSna|ZRC!cr7q9V+60zGFo>Yt85G^qzEVdxr3KJG|0G
zboR81o$TOdacL!=^uP10S9`BF=MA5f#3P37ZihSg!kc-a8hxKXTutdGa(e&lA|xR`
zX}v@=k8_XA;iM(WeaVSmeB&P<`ENNn)5PN7t~fvhhD!lqdE)#mQJ+uIFBMm`UzTFd
zWtl~SpL-bGeX?}m`!-2`RhjI)L+#Zo>wmro9yoomH~?-KvaVb3zY*xCpZvB0{mSD1
zzzF-)LjQQe4BC&025?ur&-@Nd0Mifp_OD2i4+Aq$12+%@m+vn)Fu1}`f4(Sg;0*+C
ziUi;71Xqv+ThIkxP)<A$fMBquL{NV^A_<6q1(fS|XmF-*PzQMs{(O)Ki_i#<Fau?<
zP>|4mtZyKKfa>Tc1&+WlR?7nSMgDw{1f-A(?dl4d5Dddm49BphlraB*$WUlJU<*Rd
z2!bICyW#)<000Ew_<EoR&=3#vP!IQT49zeM{tyrYQ4j}_5DU=|4-pX)Q4trB5gXAF
z9}yBEu?*M&9xBliFA)<nQ4=e10w!P+KM@o|Q4~jU6vIIjP7xJTQ59EF6m&oiaex(L
zQ5I*B7HiQKZxI)B5fy!a4|~xUe-Rjw&krM!7>m&uj}aM@Q5lJ`4Ag-XpRp64Q5vU_
z8bi?(brBU^5ddKE6e$54zY!e6Q5<oR7lY9p&k-Hdu?+u*X_nC)-w__;Q687E8LKf9
z*?|^*Kn{O^7AVmk{}CXq5gfIV8xLUsCSe>CQXv;o7Y{)l9}@o}BT^!fW*C<-1h!xv
z3-KcVumv0dBjeEvTHqrAu_H&)7&o#IIlu!lQW5JBAYnlcV=^XVAt0v_7Jh&kYH|~=
zQ5OkP6b?ZS2f!N{k|>MPC>?SllTs;{k}2_`B9pNN03ZZdQV^qZD#L&S0Kg>OF$4gB
z0|YTEw=xo~(hvo}0jM$&$-o(>F&2IS9-;sMETA7d5g#uA0HOdMet{-+5)_L70M?Q(
zF_9;6ksv8SCJA6DjZ!fe6C9DUDIXIuBU3WF;wh0)0Rq4a&=L?YGc&PLE9G$u4xk0V
z@-vT-Gt2TUHS-YFavBQ&044wce!w525gyn<A1eR=3LyV5KhZA%b2lw<Fm16gDFFun
zfCnf66d3asB|rj{lQA80GNV&Er!yie(-^k^09H~pu~R!eQ!FzwERT^p578`D6A@YS
z8JR&J0l*1n(-Ujc3HC83e=`$%lRhy~9CFboMWHwk!8vac0AS!hS&<SBAu+!ZI;m4Z
z7nDKK&^ilo3%*kj9iTJ=aSKFp5WS!?FZ4Sj^bjd@B*POB#gan>QA7XG3$~y$0Wn1*
zbVdJAME_7MTl7OKbVNrp49e3&F*Fb}(?i4HLSHltXp|VylN8n9HFI+o;2|1k!8Ku1
z4R%u<Xn_`-Q5}8(9N@t|EzvhCQ5|?87yvRqZ*l)W`?D570XZpQ5|Xn(4^$M|G#1-5
zIZ=@k>J$KKpibTNO$~HT>2xUJ6c;HW0%8&d^b{8pv_TV9Q5Tg3A5;)SQw|jXBSUj5
zvGXe}G!A33J9AV3AXN@8l_LWnCLKUXfz&GlF-EfzM}brTVln_m(gU<IE9G!i!+=6*
zl{7;X09MrtZWRCyphHhJ5L-Z0X;nvo)K@!IM!ixF5g;n(kVSnJSc|kvK~V?*03Kk$
zH7}q53cxN402bf@0E8egV}Sr-atP!wT(=Y+mH+_u5+2lHJzvu;?QtB)^c7FhOli?D
zYd{Vq04M<<0_OA(22~CbGZiU80%TGLP_h3wWfB0IlTKkECL;hLQ85A{Kw)FD2Ksas
z4HIHDHXIM(3mMg9PZnjN%uxgJ00f`~p49;YKv_}MM#CTuC$$516%YkL01m)ex4;7q
z01#u<0YtJZg*I1d_9H2@RuMo_BlKqfFjjr`Wm|P5BeW}P)jR)?X#=rUMUq%+c56rU
zS0fZ=0kLH#^#ESgR68|RUo~t0@M|wrR3%gq$p9KiaRM&DOPN3>nP4q1;5}<H7yw`h
zn1LC9;4as4OVgDWF0m8ck{BkS0IKyF@3j{9b7B3HUjYCyixV+<0020bISup>7B(>#
zc1<b4UpcoxfwBe;;SerX6hJ`&2mt>f6&7JnF#-r60sxjcCAJn97Gk$i97#51lUI3{
z7r0h-L_cy196$g#pi%)KHCfbpht+EV00As?SwS@nUiMM5S801yXAN;Y!+>Z>5&%Y^
zD$f@X!_s_fHC9*EQpfjtVYEWmHw;FgLa}oy$5ViHwtmSLd>@evNYPs@5iVmAFDsE-
z`O<IKQXTHn5_{7&0e}}S(Gmb)7%Y((03b^L5p!qJ74h^Z<<L-7(J)~VC}D9DMz<Ri
z)_C7EKvR)(=@bAORux4zF%6RkFg9ZQbcI>Cc>i@AC!u7Smx-I$iR;IC8!=YJG7hPi
z5UrLFrx+2nSZSjc5rvhDO?CfM!xw(_7gD#fX9aO>1u=~O(6qg0Sd-nhHkt}aXh{gY
zg&unEEeS33DqX5H0i{b5LI@Cg?=AGEND)PBfFK~ER7FJv1bYK)*f{Zh*IK)*>pIu>
zoxM-~<<FBb<{bAu?lJSsF@hD!Q-lDaKo!6pw4V8Xp-r6na&;hhjMrk983qsz0cy%z
z1RxHg0?L%K>42XDl&TF1kjytS?5(iN%ybdWvcU`*<YxPX0lOp^xn!{|8(HXZf533@
zaA&%!WM#N<`T6=12$h6%0HpjBkWLFk9m~@K-7G;1Z{%dSS7#rDv{a+Ocpz-i35sXC
zdanpxLgYl%FssOURz%pWfc-DHDQV;{SDhZdPz&6s1(u{d;{kZb)<PZJW_2_?hZ8b2
zi=Md$&$*{rRiG-;F`G+@aDY;)3gXVHqR5C;Fc3heqknPpi1BH%_#PT6pfvNUP98>K
zPDBNWYgWaLl$*O}J;gAer~)tnDlV5Khy$3{F}N5vTAph{GLPWh;e-f2!L*v{;M$I`
zTDyFA)GyaCg%z+zTu@AGp)>}7bm;6paBbaV*u>(o3ij5Ny>yT^w10a1perrT^eVaW
z1~%CBeAlW@+6{6F7~m#een$F8@XjS@|M%XDy6D|R%&O>7wo?kBoP9fyF!_u8%fp^P
zGF)*{Nr}wuy)2@307@P2=cwbAsBJl#R1vmVE|Of%%*A}{J~oV;8Rctl%FSh$#03ZV
z%6P_e?w=ap^%Lc8k8|iqi$WCnCOU7xHYPg)JTIuhJ2^`Zi%<h{dcMIKy2wWf$djI-
zKdKrD>d0~Jo@s5_ZhrA!T4{+cNTubl#76}g{CZBDqZJ2dhLVe*8<(06P>+)^N0&9S
z$C{a4&&8A}DFI;h0EFx%^e<H_y@WCacddiymWYzdorMY+k5;vZMlzZz1kpCvU20T9
ztJ7|LaMbzhC=AX;>Z^c&(+{2!I)HzJxp;$_pAKw^yr8#!Bd_BEhsvdj16haIhIE0#
z?qmt`^)4e-xyw#L;Kj7&@5kGd+~yL(eNsX;zozP-rw^5bT{YyK)K0j^y6?JOUagwG
ze+f07%*Y5)k3Tc7tMaF%L%t;yn`>j!fPnQ!=MD!C(aWoJIh5k2hWESOYZ0h&hs)O^
z){IVTahcv9d|IA;Icm%);m*@fn4_q6j@WU5Atnj>fVg0Fh67aJ<c7eQ@!Fdk0*@C@
zOHHy31hS|E=Y1hw<?UjNI_^`M7EyT_u448KY3`#>3|JiryP~J0?xI6BpS~A#_dbis
z5w@JTdTF7{k1j&B@y_S8*jJGuMx19qCy)XgPD~#(9uA}*RnywBryr<NefB}J8_W}*
zuZ~~Qe76^+v#Xfn$GfpKXRb0I;Sl>_om=$Lb<=czt6J@y$UDEdm<sn}Io7i-mM}wp
zVIocmyovQO-Mq_Oj%WEL*og%A{#ayrvLV_abU1Oy>t2sEr@OuAcX7BPEAmAAbV}!Z
zg2@|h_W(zAyN2+~YEC*&>d(16)ADBTT-{o{-;l1+kR9u?^HDa#pvdN0xQNP0AX;!`
zOcA&NS^=DkN(E(+;aLFKTXgC0%EL{dpx1uJGmX9&r@1DT^-MLNn8o$SKW&8c{r$c^
zNgQj3emU>-%_pWhE+86!z4G*zfgey<C<g$TdA0G(`~3%rCHMezln0gb36)kZv73sr
z`;_=jlMmQrdeA8TOZYVO=|?_?4}4LqC%mOY_YI}#=aiygkV|OhM^?QRy!;;gosF-<
zv_%7JY^9rN`_9~pEA~gyxGa3$xmUk?^!we5#=|dRMogT-<l9bPPc?m=-`_puw3jwS
zku%zdel=7>eKKwm@M$_=cAi*We7E`JOJ~#f`z`O2MScwV{DAL%J;f<F`03l{5(piO
zs0L_WZ!j$LIjC#;RS|>sHxg>S{{2PM@4H*yFNz%Q`+OBW{Pv-Y8{khXU@>ax%E(r3
zp2%bs&=l0NET7E5$a$;)0RZ+qLA|7(Fx9r15(!h=<73$NTNU!2qbYE;j@vcrVGpn5
zI7y)-0L92zxO&$@vq>JmL9TlDQoD7X?rDTZ&q}v*ugmAJO1<~adi-+#h0r|X%;Bv|
zGe};hjbe<U$1r5gz6D|ForhP$%7V=#5`KI?{KcZ(zcEf_5irc>l)FE5cttFg)jf!L
zsHAt$S1&dl0A!J!9!_5xdf7@y5QD4!nF)2q^KvTN<!=9*o<h^t3iK|%e|+T`8u)SO
z;>XR&JOQKkNt*A@TsX^=#BPv;-CpVSyzc$$ROH+B%gKlAPe%84=6fxTL=3Nf|NQps
z@sk`z*M1&+YAEbHYM2RYF}rX>U+L&+5Ie~?K_(>IJsqJq<D0Sac-k#7mad5rN|}ZD
z#<HK7@yjkb`*D(!EuVJ_A>2sw&y{_s;jRC=i_<Pbc0f5>K3>1X*OvQExoE81Z`iS7
zYtfQ1h!J-81_Ul4daTUW5H4wT>nf>T_h|cJtcj4B8;vS24;dEEGO*<dtO?TX2BAq^
zWBA&zMtE?2^paLx-jRtJK`=65c8to}4;Z%*^W}bSiG16+RDJBuY)EUNAtJP`lu7eZ
zgY)wT>GD$F6P*yTGh$Xka+q6VUG#?~R4^+}H?+6!8Y1k>;HXD;yNhNeS|~2T($5CD
zuxrB1e#YKhh({Gql_#|=09nTRbf2GDvbBmBzUR&2bGGvNES@=tQD4(F0%a5jZ*`Qv
zLdms{ardrWV>x+c?~c_;zlTp|BP=^)dtX}zDR-BGU(|ZOw|svuFLDB*bUX5f>SNEq
zYnRZd$uZT?*`+ayh25ob_B7V$8L^_nx46lwt<ln^*(DQMF#n^)sPhtctz+gjpIXyr
zm7?YPZVfJcqVi?2*UPuaC+5d2St`xPE)Tp)>2+<b)o6yr0_4k3gAxgoV>O0;T|Fc{
zoA?JoO$C~6_AlV$oP*U4)15&W)-rJHLezuGn?2=c_~Zmfo~?y)*d}adi9A_)h*K-3
zpyKrXT5N<?zI{38R`tERfJ9SJ+iFZ>PkN~#r|5T1i-6a%%I06c^s?_dd-B`WQsK&t
z!Ka1E???44^xQ6dU{Cot!C~a{!RME4%HA!dyH_G_GG3kAU$V11{kg*6r1z(LC-0vA
z`XnvW;K)pxUFyN}CL^bBFVEdg{qer(V*BqOdw1>9ei5clrv3i@!OrOS&qIzez=^wQ
zAbC2Fqe~AY7Mac(?z@S3IR>+gq-bVfp-QxI)_Zdl{<m~yBbXdJC6X#3-&{kw&&S!r
zcv+lUy7e%M%zY~|OMTnEL7uBMZ2_dH@wS;GZLLveQ%=qZhi6TvO-jh_YAYl;upgG>
zfk?YFt1~TJ=Vtg}5m0_dMia~d*iGf!634l8f1bNIGPo@=KRmoupc~Yjuq_4)W`zMn
z4<G;zMzJpM0%!tp19$<M2%IWPL6cimmsia|M3*RTU?yu~twgd{vv$^XbT{_!wGKG$
z5FG9j7U>odeKa~gDDm|1)btbSnenu|#QegP!jiP&(o75=jawj(PpD7;TOur0E-G0g
zCDS0Q(50q%R!jGsj^2Qt!FfacMLcoT*yO4i={m_`%)*jVR`KWH;D7dEx`HQ1k|17%
zGu!Pm&bmNa7CAIl3Yh0iK7KXm;{1D5?@n%&kC=ANX84srKW>M4vb{9sRY9SaJQLAe
zT=FD8mG`tK2Uj{p7{^cI!wH`TBQa1D9;~>fB=$5~hSSNIM*`P-1}AnJ$s~iSmlP8i
zxm0@02`<ClB`SIJm@lggq6jBsk&|nTlwm$1E+x#zFD!L(${57S1u^FpNyJH3S~&wf
zE&2Ieox6hf_WeIoK79**{rTs&Ba;x|UmK#&SOIxI#)il<HiXL95Tt@8r;-jvS(jhK
zP)M5~W?(8!u#_>jRI_%{bMhd#c@sT+?SsNRPR4pg#rwu41|^*iJxxAArbcFDMQ76D
zbMli5ivQl0e_vzhAQoGAEVMDOqc1$`TK|JPQEYe5o}K$Pdf3v)F~ZqH0#nB^Fd7qc
z`us}}s~~@V)}Ww`R0b_*z01KAtw_fXkW4vqAr!2#SdcirStcLGkMQP4O4zCdbD$-;
z*fUa%f;j`q12Q8qCczjKQ)5#xfHM!D!>!y}o0J02lIU(v0-$+VAW#I)(U!K7K_Ht4
zKR3nuswrcZ9@qpIJnuBSptZDoXZ4;w@xjWY_4`E8zm|#p&oZ6*N8FMb%fyH}kV<|L
zaE=Y$K()}#4ZmTob|QhLi`Mpy{4%sh;o_*U-W>nwN8H!ml%)YrP(`+8U^u{kU?BW|
z@mYVi?+>2-hj#tt<3F+aKYW((pY^i(-?8g2&aeiwgAf2#0QJAZUHlK+C1soB6q^;4
z+muxqpg*If^Dod}z!Mmt{~PiDhfs$aVX;h9Y~#4t**lSj#iG2(V`7d`=u(h=VObXt
zNa7~qiD+%9s&tQ12QPlxj7At*hc%>lj5K__n%XvmgZ#%H|M6e+AFyKZ90OKdD!P1s
z!Aex$MAC>Pg|}cJOUc5H0WN)KPZKYHl24G8e<%ZAP9Z1%raiByIKTL$z{FGr^F@#|
z7$}R$%8AeU!+)uNkskwP(DA=u1@i9cd-AF={O6s3+e_!KZVmPADf#4Lv{}8uV2d>n
zM55_syS+zvi;yKi662@MLaB(sXc(eR(#HoPPm^Q(k9{*S$>g9??XScEczGnb_{G>o
z0wt{hBAk*OBAysQ#e5M=aVY>JRC$z-PZE<AC1NR+AIu`2m<&ifArA4(2k;58LRt6)
zJcC4dSm11e=rm0+5XM1-8*;=|L<l{6R2;~ZD`jDIAK(3S<4NSRyshUms;@L&KDYiG
zWq(D@Kco2%8U3$hhkvJ`ze52U$5=Iq$cB)liZic4B=P=^IuHx@!k2~*XP>}3pTS*?
z&>v~?xzV)RVpzBvtC$qm$1dL?^DO{True)LJV;fbSp^A}ie`Ti1kb+_aY|Jg;p=1}
zhU8^-H1HJr!@(ZvK)n)mN^WJ9W=*Y9eMKeR>>qscS4{umfPcov|G%``_ji1__w+sZ
zxA;)U^IE5qLn4ths>0Y<^LPkudhwVlE#w+oxxK_V2!YOXQg0?<VIXm_FF;J~1dZ+x
zqJfmKv<Lh}xoJs~R8F5_pY(8yasY#JYwPj>oY_)T4sNxk%J>90MWUlQ;Gdl9-bgPv
z2V`^M=T7w)m7q#M!T31cTb;M(FUK!Tom;kBy?688oaW!b@YfPi{yT+Gi;#0d|HqWe
z`wz<fi`okQ@vOfCON#+V9yR@cWjRH2I|dLL;zPs6nSn*T+fhru5C#w#%EL1<)+aW>
zKR)^I6n82oKOyfw#K*sf7nJ-bu!<W(Y8inw*xozQR=?C*u+@^93q+0E?*p-w6DF+#
z5=myTpcX6^$KP@ix+rJ{EttftmP_yqzOR<jQO{7gys`k>e(X5eazRJ~;mgBuS~ZP}
zg$aS-g=8urd6?YzF(yT7C1OyhX;`gtLWF`DE4A57Kf0$|+w(syVD*1?T2bq70ut3T
zVF)cl7cX<~z<<z9=pVWXPEKXG$PiZylKpqL{@)1{8uG{KkM$wn%m16x>5dEAV0o-0
ziPEJeW?|VeU*q-NWxB`NEYl<Jfde)Pife2ET?!#%%xG~=8<7~M?5q?7_N6E*7|G(P
zBn}3tnCb`S=V=!d7pa$&8~!KfTL0l(27@XvD!L5)s9<KRVrg%7G{7}H$}=*K;Sj@>
zjB>^)^MCn3jv{9)2&3Aaw}zS1MfpKHp&L<HgkK}C#(AYHHbZ(3s;ocgH`z{HwusiK
zR!;N)McDcyzm^fZjpshOtrEc*1jgAm^OajQ{`120I>G1Cznz!Peo5Xf%zkq*))e(u
z3J_xaqI@62!aorIzqc@mVPP*+=1oK2buSpiEELwn75$81WQofgGqzpp)rSpl(B3zt
z!TwZ}XC+nY2t7_O)VFZQlEtSLH4U$Oj!L?Taf$zBD2e$RsovjKWbBe9zvlHv`x&We
z0clnmRL%?v@o!WA5`mKpQ;z`urON*nfqd!)0$O+>oj*G8uY^UCGqwI3Cybn>W$&tO
z@2c<Yfp<O10E~&JA0vNR`UP7D{7GSsArVKyBHd3!Gg6pOOoCrrVqoIw(B!n^r_=wI
zi~mSuf3Q^iuUz(D_UZrA7pB8Ms$8DGXr?WCHe9!9p)1z%tjD>vaMaYhB!`Fn3D$~r
zcVEVSnRC$+$dEI^h9BDsPFO6Q_K-SZ8e^7}egw>y!^fQE9PU#<Ldx*Dz-5p`ZW&;3
zS%pbmgS!}iNmY$WQ;8E;KtNcA?TkZ__jyw$A%u&7gmFvo=#}PrkM@#lW;aHh5Q9!a
zLV-)37rf^Em}JPcHw(twI<g);e&BX@$We+O@b=z)V<3Vh3J5<<1m~LqTfy*`+HhsM
zZz%w_$2aTik0D1A1=)dJ$g!?uGZ?=-Xwm;BmBcQAq~y;4pg*_Wx3dRCW+Yf8kDpnS
z0nC+{;)H8l?}`~7mf;!*dM!guWDF0&a)sv;3<zaX6}Hj!UC{^!@RyTHCa9TbUk{dU
zB>89DK#DR=ZY7P+GW8kfKxP0uCeGquM>pK_NT)Th=teHdLKK?LB0ZV~{aE>CEBh%n
zyTS8oUok{%q&CDJJqBQtL33~qvSs98g!t>(MT-<&FPnVk4i)6Vzgq5g<p9cS2i`k-
z^g8=5LEWjBsn_z_)F$fQL;=tn_cY)h=TCx!a_dOYqu;|sUB?CK&c%w5Y)+h{GN757
zEh=h4UNiNb_#wrFwoYQjn&dD+)bT_(R|FB@Lp&A<QXxk60}Wvbz7y#H%=2-@dK+z%
z)E`lw4htx(U%vW~!CNZiWF`o`7XAzXm<VAa<3U1?Xv+9laaLux%5NYJn{LKiotHYi
znh=1{dB3)i0XFFp1w4D44wGWPIz!4=<1XP#Bg(r{Gmw^~O((WCayrNc?$;inirDst
z=VSWeD#vPbq>MHVR*DU)!)X{4Tpl2DJem+S8}Ld+TbSwBm5dE0DQXA=C_}=U_$e6f
z<5Ag3Yw$KvsnNO`qL(jG<W+%MPGEVEBYXM!m~LJdQT}0wUOhM8n*?(Hv}Akb>jS$c
z;u&3&UQ@EY0LohmD35v+sYM+iV#839x1ST=A`|`XDf-@Q4sNCy9#W>ACRD&75havw
zZ<6$!Xhvp^RE?VO=ISVR^nUJj;Y|7`sZPbq??-3Sy=3x-#z#%^eQ#;9t})GP4zXIB
zT>j93{D6E}T1lM5SlyNcd_`<3jC@nQ`4P!(S8Fn4QLZnW#=^5WSeq2#^=2@!@&Vh~
z{L^(NDV6ed{hcPo{e)r}h#BY-XE=6(Jh)@EIs6N>FrZ~C7pqR$MDND=K0%GLDT!wP
z)KD$~(qqw{O$vMKL=%J0F5kX;okFmdzI&{0H>OX0?A*yp-uP8v6Egfj<8))RzRwOD
zJiq}z$s~>QQ{nOi7f&p~5W9GUHrKOpH8~asavG;PIS3x%u3(3#1b;s~iRkPs9(_R{
zdTaq#K<o~~gav(n?mEmeM$R>fE9kz8e3ScSa^Z|O@y)qucD|kSoP?jdGsdDLpV#C7
zdP6A!y9VEwCq2g?>Ft@<+7dwv1SU@FVy~px_RGnb2F`R?kdt!h`m}LWwaG``QV!0^
zK4n)H{MYcW)ix555db6>nE5e%#lh0=x;AC6ON)igyN}GLzk%ASytXq>NjHhyK)$cK
zzKy$qpk!<!k7-j?7v-ro)zr-t7>6eS0Q^pz&~zq|hkl+D(cR~1*&1YfS0UqXEieW3
zH$~sGeq%S7Hv`d$*Hef_0baqaxH9e2KUKUA6LQR%?9j?9Za-YKbNN|~b|Xz+${EX>
z0*Rx4@XSofPl-9`uMht2LMX>~A1_ef9%z#!ypvgqWZXCdTHAw=2>=NH+R8@ki&1zv
zU8v5O==-e<05!oYh2GkLV|~d?`D6(DE&$uWOm_1vQRL($1DC*NuseP69x;;gP9T&I
zI{`9uW=BEEk%GqKf!w^nyet5SlSBr*RT;1FAQ4MVmMcdDDT<pN)-39Q)Ho`Wa;C-Y
zwTQv8CRRz*=)rs>BHUft0iPsAmeRi+QynftfnPZwv$y3pZBWVD558SuT2bYmb?<`k
zk5=ikVIjO-047yro@k+@I$z`#x_n9`(1JPgkcb3C=tmA)X#?O$J^<VrSpisJg1~XW
zYxy!}$3`)V%JZ*mKZrSvEMPp2fq_7?$bK3&OHP6W)qi!*xle!9N6U1=;Sy-%Y}W10
zIJoRJL;j_bN@rnL8-h#0nBz=E0dL6Z0*|ke{Oh8CzMPWY^H^oj2o>+>{;HSxcdazi
zcMn8VgNxQh4&&BLMB(I6&Yz+Wj0@9;qICe50C@6Z>CN+&Bl4Z<dReChmj+D9Z&j^5
zA4reH!*kTfLL#=L7;mZQo6kPfy-Qf%;&){kSD0Y5ZqL%cnhEA4Gxo$@>AA<((KUmK
zm{z^VuY)eKes%&dX>S03CVsj6(nd;2VbaQbzo&}zbMm>A7gkTdYl>d`GJh`h>yM*9
z_r6{Sut$ndaQ<DWw*OHnvVc86K4c1*&G-Ulf-}RI!7x@B6MzK{U}a@gbZ8g{FO*x5
znNI|U5<sy7Fem^L$sxcE5atD7Fq}NRJc2?3%mU&FE-_YKDK>sN4k2X$5mBVDDjX{f
z7nMOst1uKAyPP(cl9G_9I7(ClEur^!Ma-kD#ILIGN0zD^hzkN_#R2NF03Ahuz6wBG
zLR=arg~Lh9$;&D!D=Mofsi~`KX=`fhXz3Z~Vx;k0vL-wV7QBj9XjM}#O&f+#;Z?R_
zoLTXyItpsK^Xj<>=^Pc-_Y>3qBVDkD$5aS7BfOy$o+M{ttw^$C+%o#>tnptm##59S
zCSevONs5!QO2XNs5;Xwkx&TXkfTJ<Ml?3p#0x&L|T04p!a{z?803zH0F-HOMzJTOo
zfY@;Egp*v!QJlu6L^F~p-qMz2VQy_>X=iWqw=}YMv~zH>cX4xeb9eFda{r^0yaRpw
zj#~N#S^rh<|2MJZ>+c<K%r7`JFywep_=)2uqayw#pCY4A#KuR(C&VTu$0w&I%Gi-*
z95UpN<jT7hDteSEdsQlX*Q)w8s2yuH2<yN{beczZTgLU+CG<Kbonc6?)bx~ye;w8_
zj#2-!`Z^BCivr}Quv6mDSqaFTBxFfEpga*!oXS?03MeIWG^PXUvsfExh}KL%2My4Y
z3-8SboG$~6R06Kl0>~Mu6ODjLI&i9$eX1REvy*SSM{>GXZu+e9%vn`xHYJmmkyk(~
zEXiZk7NzAyWtGL1HD$F8RdtQkjm>rR)`r#&dPjF_S8sdoxvt*+-huOd=P&kO938rJ
zWw`IkWdF6PtK*~R$8TPry){00b>VjV!hG-I-GRl0;icv4H>SsK-kP{^`_}CI)Xd%6
z^NY8ZmM50(-TA+gkg!950Zfq8Pan^Kaia4n#O52>NO4`0-OjBhaX24$`M$KMX&$f8
z-njTc+iV%msYgOPTGA5j>~*VNW*~4}JQ=;~M;z*8yc?(Uy<9u+--h>bZK4cwe%p)g
zmRk-L9tm!NVMq=`IM`K+5bsR6`C!nZt{}AQRf)cPU0Zl5&UE&2V)v2)P7>9X2Rry~
z@SqLTodpISF6KE#?Oe-I=@h)uUn6FicSmumtn2(M#^nmV@HZc4L`)M>>-9l6sc~#$
z2KDj$<%=Jlj%Bcj*sgcFI;Mac_}e}GUs3O(m@G^#jZ8|laM+$xEFLy~8_m^oXv^PT
z(`D3JJF8<saaLR5m}|1T?)^FeKM&bO#UWJ3zkE=+XN~n@lMqRIJ@7&}1qGa;<Jo)E
zg%Lh%lhYZ-GDL*Cpg(Le0iKv`pGf~kxFw@+iZQ{?t1o90?5q8A!|$zzJS)(C-u0|d
z|9d$x6V#5)&4x7$Ruas<xVgupa;lLD9O)q#L_2lbKL&lUC{_Y>2n|$oGi<MQ-Hg&I
zt^`(MCS}rN-6cJJYpGIIu=&K|253n!bHUbXpl_{h&Rz>KX|JZZoLQ%)Qzo?(n~Ou|
zfJliM+~pLR)^DBL9rf|AUv<*6UfU-I@l%PM9HsV@JRIE~OYQw~xcItPxOkzb1I$Gt
z<|b-xniyZ+%0-?X{>>xNkfT!b<}6bp4>j9fIMyT=+cHM&hjx&|t1fB;c$(PMPcYLt
zLUSKoM7rn6xk^ya_Y#&7ZTvEn6lujvNJ*k4ydysEz42z@Wd#E8*&D(*$8WbD{BDwR
zqw55FIg!)v`D?lU`$T7i2)j%;*KjI(tZc>|RTz}Mvui0o0BUv&C9Da_yuPh|KYV{)
zn`6pEO;DT)O6^itLmZDj9}=rZXLbIxNaCFI&)bBTo2$uuLVc2PF!!^}+d3hnK}=J3
zD$aXcgEmQ;uLfmWEb2ylx*s95>8;jY{_qRlnqDw`+?;mk|7jt-rr^Ru83#8JlXniA
zt79Ef-$b%b9}1yQq}DH4i#fQlcjFUdgrLDAryHbYas|#TT-wns)P9v$Ri5zXaNtD$
zG&JtX?I)?4>Dk!%?Q~{gzm8&(nrmyX#{HB8Hk2%0(nODN;hCc90<o3*>v|jqHG2(w
z*28Bl;QIRDH%O*X)SZ`|=YD^GyRUsk1eF0wK+?-6&M|XVy)ftOvRtSB{+VHitj2dx
ztZh&$2kSE2G1PPCWy3wwVc%dxO%4c%tCdDX)c4a%*KM$1dHS+)*Ep^m#FfW4!|dRT
zFomQ;YV=HJAShaxC;`RtmL0COHeN<*=DU(a6FJ0e0@n_ZG^j<<%a9Ob!S7J58rg>d
zS6X<uN0C{b#m)FzF%X^d=RU%`{wSNOVgouQkm<k=DI{hlPHZdqMhTdx^^=mjrks^J
zVf^bh7-1jDjOiGg;kap9!^9YR@Pzn`z(f@`C8N?}-#W5<sGcgG<q-cg)Woh<4dQHx
z%yVw_y(^_%j6hEY!b5$9A5PzL8QrVs4@bZ!zEofeQC3Dop4aD}ou$5g8|K8q7oWQY
zG^}sIW0JNBB$;BwV3+QQ1(mr1YH-}pDRUlHgEw5u{vD!J2Rm>$-3OnTi{M1Qw0_aX
zUP^H!ae8$v6rk$pcVctd)84DYa9yE?$fzWMmPDv8-gMdKF#N8asTEb`=U7XXhG=8J
zv3h1m$@#(^&c;27X9VF|hi{SUEno*K>8lK)1ic7`{_4;a4ML&;p>^E49r)7jiKG@M
zMT~ByNEf+D6F%7{q0x<Zlr7FcOv;VCZHJ0qvWfgX#5XTjD*~CY=BSRwcImI^1<bDY
zC4KJo{UyCn%R|d$r(zz4Zx|TRU3?s4j(0U9?SF1?!*b-rj>JiQWh$jPS;w5cE)UBq
zB_XOEI5D4ZRXA}_avRwyv8NwzwMzZKDR+=DE%wK(EPxnsv-H8TVfmoNkU6UQm+ml@
z$4-lswL|T=<8<7@m-VR!t%t`yVOu|T@0&fMKcvLQH9(z{DS7-xygWuZ%I}>G7Cff<
z&hza)bDx@UyYKP%$RM37GvX7q_T8-MrI{mr_*xdx&dOnI$h$k<J4e=<y$cZ$gsJF#
z%WG%EOpx!`dQ-p7J^h_33zZ)%cv>A~8{YRhV-*sFn`0^80|X|scs@@$tBc#gv~et4
zWjE3Zwz-a`p33_5FwUymMjzsjX<w@iFwjS`HhsY2u%;anOU#at&6`g&oG%^w=})cZ
zosv!M@pkTgh|*Fkit_(xACdoT=%t%zd$D^}f^~otv*<Lkd$-`++il5{d~=Y*Mtpww
z>I*aL1cjydy@FoO9W5q@ot4r1)yZc5>8#bEAI^WwzMq%PDGAbQt^asrx)Z5z@O6P^
zd%h)oi1wwBh%%?0Z@WQlfVn<Ai?D6Ba+N8Ls%XJnErY2Y_3-09HOluj14hwd)pAM(
zAiH2u1YQkIqhELi9*i;Hf^!{tj(K%A&ftRNQFExZRRm$YKRLYE^F`8qo0r4Iu2vBq
zP78J<NmBW=^~NI$2u3<{chJf|yhHQ{cE_+bdpSbgHSYoVUf(|6Ew@-?WBg>x$D&Tc
z{HyYE^*ceiUrTnNp%&(&I!VH?Gp9RN95^0=zt}jZ^4RR=dj8x}J;=xgJLEb<tbupj
zdznF2#f*zBE1<*KTOTBjhlIN%Oi;S|dW>wNwYjz(2Bl`iZX+y=LcN?i6A}sjiY2Di
zlm{P)l%*2oKAiHMmn5Z`yKwZUP)>JsJ&qx#N4mvMZ`1v(g1@`-GShN+Ag`r#h--D%
z6o!==-ub5eSOccUHy+O1=Ga9v94TbZ5jNQ<R(HB58T6!3e0u;qen1$(6<2BvU)vU+
z!ClDRz2*6P4^u?k*SDuQ)jLy>s`3q{MWJBD5f_~KL<A?%l;xF%e%O-KSjY(*DZk)P
z%&pIb*Yo|13jAX(oYr|e3@f=OO@%Bg&;*41fBM;c{R-K=l^3aYY_Ti;>*}jtcr(9y
zN0gq5MkyaX+~=UAJQq0g6LD}YLWD{&QHK3c@P5miSpkYI@xb<c)uaCWDEn6MM8|tq
z<i{7@YaR0ECd2|K)RfH-L8~dxK#A~OFz$u!EVC$=n;Z`<k$)sza7KW)66Q>XIP}}C
z0uh~9W*H>JIg(NDn?@@`bsdn3u#DK75F2D_%7T$&Oi~@UM5ixeg9$;#Tkq_J+7yEl
ziiMS25zdhi2Rx$5S@GwPLBg2PZ@&!ft_<#2L_3z*1`k!GSUbUvxWGhJiBOv{X6daM
z`%I8mhpY8Vs=b@X=60e(WcH~LsZ{ak>z|P_zS#*QVOr)kei_UsMhuP_pI+(kkci9*
zJsinOL&FYlkV6NOpbnreY+za!EFDLK3}n9wR;JG+9cxS7enC4<O1U5@f0+m7fP^^s
za*OU}<GWx)5|w=%(g{G=A|Z~xh@ev`U9g;IaTJ*mifA)qG(o1HHZrd`LwtrJ7C<F+
zQJGLtJe7V@D!EMK1sOBhLcE1r+J)u>XiR|cIsxReEM^^otXUSzB}1UQg^i*`&oYC-
ze$ly8p*SoewVyflBR>L$GAC>1eiZj@7K~mNYg1NUBlt?viXN9_(6iLt_KK~+Hee=1
zRfU_xM|IK-NJqav%L7(6K9o1XckrTJN=PnKNvZWv>B^@PGcZDIRwef^AubvP5qMC-
z;!u(kX{hKf{S8!RE?%Y(sw~f!E38@$9WPUuDEWjw{je+L1rD*gSair+9F(36M?r!X
z#cF{l`y6#cxab>_)>AYL!&l))VJ2j#f8ph0$|=6jn;0(XgBvJk9<TcTDQcUynxa#!
z6a}f}f*4e$^M#=4<mA)Xm{gp6Qhb2pE;ts3l8H3L`Bu+w`IU!as%A0GmuhNPRSdp>
z$IUoZ%n<Fb^kq@CmL)YZi;CS3s(F}dIL2$FMeBSH{3~UI`e*B;25KFqZ4tn_Z^qTP
zF4f<L%k~Z?3e#a@ooINK+UkS)v~+}^Mbuq)<Wjc}G*ol#P^WR*z0qe%j6!C1E@o~;
zl2oG_w7^ZzyO9Nch?#Dmm)(tTUp4v;s~M{{0r=^lBsH52W(pmaMrJ<Chl<7~Yc12k
z9*RD$QP3nhe3X8MN=1z}3qEWX{@#q`ZxPdNk??4dN@~H?w#bgQ$UkgR{NAF>->RzH
zs_xOMnbfLX+p0U-s{gRn@O!Ir52}6-#YK=H_NY4sVY8`dVw9TZE=GC4(5?q*!_PGW
zYjdk@7f#}GM-gnBxf@iu19zi*U#pM2O5%MeAKYWm5yg*2L0K!9r$RAUN8W6pLcl9R
zVY=M;X6v&K0!#${2!1kpu~RV}cl;s$Ih4TAA+YQ57SV&hyA(m6E)kp?sD`41n47zq
z288H?#}7?}D8n67E3BcqJ&0yeK_WLeLqx1XvpNa$wM68{rcG-=4pX`iBwD~Oqsr$&
zFH>_*udcG(lGrtV6fL)hFI`=VB8GN2!@(o2rrN#Yah4idMc8Yas%#6mc~%|VlWpGf
zEV?JC2T3VK+rG%yWa0|&Pd+s$DK#K9T9Ht;7s)OvQ@&I%eZ22;ZdE2)lD!t!_K;T4
zl7LJ<_a#YYGUzPpqyB1hS<dFnOK7>FJrT?s*~4*p1*m8kW7e{h9N#`tE<pZUYuY7g
z-3v>yIp6JARr@4ZL}w-;-7cz311f5V<IDpt=+~vv!&{0%kCgXI-Rz>3QahEp6D@xn
z_t*{?l1ne3^7!H9lEquk+;v1sXYk9E$>}Fo&2F7#|1s=4=cD(mV%b=KwN)Jw<YE=0
zuFqUrbD_{}2<aK4Hw&%?6MO<=G!=;2X{+)l)p{gr3_8Ea+EgVRa97^Jkk)Pp-B#ly
zkHsKCI;WVl?T+YF?H7*m7&JYT?ukno6nD5xMcN9WY#)u-<W+spj7}Q56eyrx9!AKW
zD_k8gfNUB#ONJm}nn(C9TzPca@3Y~qn$hPNql0DEAFY{F$yY!o_>(()aCL;vqzk(V
zDo27aa@m4^k}z`Ix8c^6$RXp#!}Gj~Z-8lJ#JVVA-CT&2;K(y+vFT}<zCdEUfZ+OC
z`RAkwF49;BV#*L8xP_#6s_EpksW*heBx)|{XV$JWI%jN{|0!g@_xz?rurP8gK^<B3
z$?itp)rMGNo`diO_2L9iB&+<@U(YY&>L>cttrYf{FO)|RTAX*<teeA-8W%GrR#+#G
zS<gt^U{{&g{^VS)l}tX8yqYeQx;1#KIUCBIWED4QTj8X)>ZB3q<O3!NJg?%sA`Fnc
z3eMy<*#VmE0O7;-Y^KV{opNL5OI~^CHQbcG2KI=TT}ws*K2VsL>3Bi*rY-bF@i75H
z{^Snk$j#)-o69$0Dv7d(S7!2W8xoXV!hx4waq)>v$1z9U5C*u4fsYip9+kic!GV*U
z-0u7?laXqEtqb1IN<q0}O-<FuD4Dn3O&xtI!P8W6^l(s*w>;(R16Az@tlfd9TL|7=
zFQoe=JwsK!-ngPK?I0!J-rh2viwK%~(0-J*o-iG!vo+;K^t}C8bT*Ze@RlnL%j>fr
zcU2<g%(vB<x9fMbz`mAo!RE$^bVOhEnIcQ3==$5!s30W%?QunyTd?%m`*8pE*IMmZ
z`IpHFeL)K^FL?FsH=uU|WID(?GPgqrLAJvNZd;D{=0F>6s9h!UQ3vvF_>u)nu;lpI
zhmOTmvAbqv!EE!vsfSD<S=NM0R^{)nEbFt$7MMjcor;7QkFTxV{dzltbL1rFHzfOu
zF!}W3pwqKLE=U&Fo?Nm}xI7|!U8v7xm3j9hXlYJ(BYgB`*fNiWF8t)+{ptR<K*{+N
zUi%SmZn;^=jasnWLys?ESQBhNhY(IfVE0#b9%)}#T)Dq4Kfbn{dv#5tCF-$X!rZ8f
zsB4mB_R6oDr{phsuZhNrnDq#lCU>U9)Tt@5ZE_8Eu4ZfbF@+(?JSe^8yE{YE!uD}I
z1>8Lv2`X=;EA=07zK*wKK813KU#Le*pS>s5e4i40Dw9X7$DpABg)Xd0)+z8bzP)zu
z^ke7d#NjuI7q~Pg52KT3i5JcUB}q?*9%Q50za@cD$*1L3JL|~?YS(x#Bz866E@%}?
zjHRu8N<*MDJO&l-YBekc$ML=cf@zL<Q>WK|ls=L}Zca<G=BLItNPmCq{PP!*bv^aN
zbaME+$C03?ENkQwU&z@uNOZykTXZ`5iQ_=-W5qi&BD@swmqAiAiY%_c`4mMRm!T`1
zQ6H0`-<tU?KdIg<kDyIO5hUZB3L@92cD$LWUcF;$5Lei?PKbdQqjO0J0;+m#5q>-8
z;;QFJzNa^KbSCc_EWfWo<TAJB_OpWRM_DHm?yUwtYFVUpkh8jZRd+;l>~PPIdtI)f
zEx~{<NS=C^57+XpSFhbrVDxEvF*)OPGvV26_0H{?ojb4sDPGr=YAT281n_EsNbt+}
zpo>bWuk*qS%`z$uODf-K7v1D8>Sr&Cxn#FrUsP$}^cz+Tl6mscu?pW(91~Nj#$3X<
zAH=;<$(_@&oPd~jcsk$mmX4J2<y-c@YRZ*^z@--X7?(LDmO)Ou(0fqk6pF>ml(Ria
z;GY`vsK3*YJCbNQ8h2V?Tk-sB-l}trZwodnA;2mJohnxFTgRJY=JYD*#rM<KTwq17
zS)b0li>_ug88GmxgX~sIiq?m3)+oH^y#5L)f$s}os~ZhP%Ounrs_jXn)tbw3_QLlF
zEoj_R4DaF7?rVIt1Y~`TC33O`J@a6njWN8>hwHHg5`7iD=YAG?y#dVMC?N95_VAN_
zY15krjZ$)MFM`f~PJEZ~s_6*FpW%HI4$ZJ0#`VAED|sMJemXzmOZY#B_eC3hjrIAD
z*?lQbzo!0kb|2Lz(Y!~(B$rp5B6nm|JX=J>DhXX+r{*MUg_4)8C_<Kfz<l=n*7(%N
ztA|VR96E4R#-E?30;iTs5pU-}d3&RKpMJ=&?1JR*l!@{V26yH*_3pAOCMR(g*2a(D
z?Z}XI$Qnh@dh{VS`TJFt(!MK=0K1!ve*HMoeQR7$a=g37<MEqAg`Or*Ph-zdJ@jwX
z?sqimhv=~A4Sp0eQN&55_xrfW+LH0|`QA5dXO2@2P0sxmY7zU+ffR<YOStuK;P6ab
zOsegXzU4vmpT)XUlg$&@^jeKK0mxh#CnLo|3HPOKi*lJGea9Xw?O0W-1m0<LUw&>=
zuM_uv`@yntZcrLi2Qp4#N2Zy*<ohwpL5m@r44-CuPqCdETE5d8vl=Ct>*xSI&g!@d
zo=A75vxm1V+%;>J$*4yhv&Ud*-VRUZ!(7i<UK125oe?jUcv$MmRjORE0ERoXeA(g(
zSI+Eqz}-Ia{6Ed^J5QiRn74$WtFSp}K?nNGp)T@5_``F-VVZ7r)Tt*n^&!9K>yAY{
zItT5DY}o5|dpyK;f^BL2Lgbcp{$aSIi(l@0c88D;SJ%Hkdn|iSEbZs$mv3lrcazdo
z=gt@Gd{>*`^{WOsBdKaHVH?POGKNsEyVJ8zvZR)O6D01OE0<F5GOU*W*~hoaB)>3_
z?lyGd8igKmQ-ekhv(w2?SAW^vW?L3z#vgWm*Gw>G#X(xCcEC;_UrT7Oaqub&VEjeG
z|8hp6qMXCxCFE9X4d(lw9`mirfvwPs`Af}4wK83*SrpztaVNU{t4puw^0a1g(u1yY
zc7ugdE5j>ZiYU=KoxtnO->#tT(+iQ%*+a1%wJB@$)s*N~B@2&}^j>-%E7Y|36T()f
zuDJ~B{IM9G8MKXq;WJrH)%$+_)NZdaX-PPunqIBFd>4nDQ(C%DY9^j#Qo2=SpXud1
z>y}QOFP>=DR-bWEjDeyuvDwzK@=jazL&o}(f;del16Yi8P>CeY`Y_)4)Y14yabJ%n
zJd>o^87+MVl$&G#+RI_%88byv9s)f%Y2XuzFsYUA(UzuY(S&j*N1S@sgNZiE)x4XM
zG;3$G95JZ$HtRi6O%|ftrk37s?OaFulC=zRoY}blHh%VAhDhJ*g`n2xco!@Iw8#!O
z6%)1!EH)K>xjk%O>+I$H8WV^)v=_7ma+nr=(S}wY74E9R|K>GC`5!55;p2kpsx2`l
zI(cmURMjiRU{;Q^K%Fpf3dG$minT?2n<P;(Xz)=y%-885m@A(}^{Yh8ICoumrSRda
z7s&l5mro*hH7tEnhrKWDREZ|JV@04#-`+&m2;rXVZ&#d-e;9W0SNyuUnCNY~?N_|Q
z2Sw?4w`|&}uIbD=;BL1JWb0Y^*H3z(aVuI=`qxeB!@fUwH$CxFX1cMc(H>0^>$<TQ
z@QHqhLPof@vJWW14k)#N?bM&U(ZX^ZAf3!##(_#YzkW3CL5Mw0-_j9;o;>{9s_Q>?
zWufgzECIiGm90kBs3n*0koo>nwi9osXQ7UxnDr)e!OwPh7tU(SUJPbmJQ*!X;0AHc
z;4k2nDGDvcVkrp(hi}SZ!hmKN+qcU>5DpxfBH~#%GA^lcgQI7k`%Qv&se`lfDbH<x
zo~z$XmETLiR?(|&{v@O$85YEw!uZpWXhgA|)o7D#72y{{qUA%9j+|-yieMb;g%r68
zlb@Bb6A|fai<(J-GtdL1KFfDlDGy<)NPTY_k8Wd(qbDBI=i|d4m4xPwxD(hlER4{{
zFtikFVXtL{f!Mt=`gv9vlf{vy>b6qhnWEbGskvdY7~z7>Ryp3G?gW&E35?yeFk8f1
zj@njX#BR&g9ZJo)bF;grZUhyh$LD39gjFZ#`(y8D7pr$fV|xWjBEF{3EV@|z%0502
zFKI&`P|g3b9c=XL;I2XkUYxA!T;>~RsMV*`Or6{)w{^XyN^Hx2?C*2)o7-KRz`=(3
zex6zM=<M%MOvsbcE<Db%81u24uVsYS^2ja6{7q40D{iV%UdB-@+PREn_?D$XMPIkh
zWEvDTX$mjJ|1K6&lP!_4i9p=G@N=&!|7UH$D3?AB(Z<mRBf9#9@|KkoPftyBvd+mO
z+gwPsct4RN4lk-HnigbZNs<Gc!kjB1W@OaTX~3*%e1ngRo*^0T$CkWyN1jp<phpZ4
zVwpYcbY4lXe&)R={4js*-8oGAn7n0|>$QCDZCRA6#jNZPsd^BIt9%a=tmer$bKA6U
z`Dhm&JXa?|o4_Q{h-20$4@!P~XGZMI5zKCR47&+tRuXoUxy7T8bx{JxJLTw5`sneO
z3-IfivdXP{b2sy6RmQ|=Zi~n5jhZ2trHTdjR`*h@aM;=M&-etb=e##{FAO}1>ci7}
zk&eLEL#Z|{?%-y-Nh!B+mY~QCtG#S%rWTAu`V3Ys1y!tDUVYAHQsg5!yW~=4k==l>
z!-oX)@*R$hDhbjtrln1eY~CCrRhq{){)yJgkv{1@E<3hpuK6z00%5m4d!^U@*=vXQ
zCGwO_&DFA=rPsHJALP9DNWDbc22H7`<Sog3vBybJ`QR0$Dg;2f@8AVUKgdCK`}v%q
zeCzpoPR&7?(9Bv+$>>SQ7l7~3OJ6**$3n()f6OghF}mKLh7+K3hI(CJ5jxlG{IDNi
zT>PS9tzh_G#vQM$x8+5B3CVT`i|rW|Api7uo$kKdxcB)cwo3CSWu;Eog+04t%vp2E
zj>6u(`;vKEU(!o*@slZuZ0X8rqTm!?>3n~X`SvAF6XzJQbG4zR+P<S#GYC5dcF=HX
z_DAzu7SuTUW6@9+>SDt7a4XO{H-`HW*fsRAY3hP|h2W#L$2Y~V!+)J5GrAxj@<d5*
z79%rR-oM2}lL*MJNW`0Z|4k>-WUB!-O2@wbrgaGM!U0xU#-X;p#%5f`dcfNr(2}_P
zIGnRDUg}K+1z}DD$y{+k-&1e)On_BKX}^yu&OVQc4gqoD9qUS)yihVemze27G#o?}
zQIk8j+-ewSoek%}!H5@Uw!3TY|9nn;J5oeZl=%&pa4K9HwzpIH)FN`#r4x|JNx?#$
z=m%nwt|pkD?@s~z?caEP)g9{n`FL3QCdN4gB!UBp(I6DxkMT3ZR*oR&{MD!>eN0rz
z6lC;~(1)bX=42l*`X-|lF$g#{A@KX-$TyDnW?Il_?%gP=vA&5y+M!NU@Jn0i7|G^_
zQ?Om;RL1bWrUmDhE0%9eKyvflk%JFuV#W5z*IGBe7nHxjtLyK9b0;{GKi&{g4cyHW
z+;qtWSUUdfJR4Npa=T39<(*NZ%Ay!ev2o+{Z?h+VlYTTj=gidgGn5d;KU$y_0H9LJ
znROJSgS<A0#g>u;ehxsM)5k(FPufpUJPARuen2z%*id56lEFX7@*Rz~AESlff6!Gw
z<PyAParPu2L=;wu8ZR8YQksxgGEk36Q7VHI+(gGi9dodBf`Fj(O96C$SrPmC^~=#j
z`w>Hm{q@&j*X1m^68&?q&NL-;nzFN@s=Tq9pgdq)G95-a+}PLhZh_nPj~H$Yl#<e8
zn|u3I^F*-Y+VV6V{R(lc0v<Do)S=uQH`dCBqwS58)h6!yO;$xtvZzm1_TMP^1|$k{
zIbxxtb-gOONl(9tU(}$1ys*X3oQ=yc%o?K+zlm!s%}L+bz24O0jA=Hlz-u31nlN1X
zQfXmqin3<f_|epJJzpH3$uEDi-2S?$gIREjSxCNF?E;K229}-4aKN=!VQ=20n}to9
zMcjs;C^u^iq15J@hP*9l!J5a1o1coEmih=L*h4tpOqLaA*ntZY>Zg<5!c$VrJMigB
z;F+BnQ;I%`YE8=YB4ve>vQtR3d{Rz5DfbNNFz*T}|2C;$omBXiRP>Wn%xY00Xi+L}
zQKoNEZf#NFWl<SEjSHFLuc<Mro-Ik7r4)nb-@t3yEciCT8QX9)P7u0pQ8qR^A2M2L
zZP{);BfgQr9wyUapI5(v!oaBbnQ}tuEv;tbrmkDPv8_0Kvp(6PUKyEQOfdmu8o?^1
zcnOut=A$y@<27^R-NTn#=Eg${#b+|u%j8S7L3re?k}>cV`HPjxb9wfx+1jA}8{mFb
z_{5}@%i=W?FUz?rx80pt95=v+e3`fEc@PjAzbM{B3l$0sv=pw`7mir|M8@tm2Zfjo
zDbHb15JMys_l7INIHwZ^+13UfitdT(49un5Lmc}pw@pea&~=W4ocuM|vN-ISiEVGa
zQ6}EH*<(JNM$74fl~>!ojx8vH!Eehmiat{XufjN!oOb)%?lTSd1mRO>a_{9+Mm8?b
zD;LL=ow>MXQ&!Cq5)I>g$Px--d5O&{gXO<;?i&)zpN@sS^@6=iVf{g2^%l(O<IS1t
z@7sTC&%rjbf`y}A6|B9?c;H*~NO^I+zu*(DXqr^_hPRL>(;}bXu%BS1DVEO7m>4a{
zhtV$Lk1GQEQ>^pvZg?pC#&Yc7D|kL5hk+#mf;m!d$V2%Y=2;UR<Lh~2$X#ulR}OL&
z8%tMP&)q*Lrtmrl??@iLQAX`JmtcipDxbT){<POU>vZEaO2L4BTof&?(iP)hDq*3>
zeg4eL8)(6Gw9zc52xnEESefai3Uzl*P5za$)a!QRgkQ$cr)^@<4vG)OhzOOX7Y{Y0
z6ktal(85A1TyrYi6I(sU(MLCB&>y*k1>w&w(RvdWO6)6N9k*3JTijGWluP0EQb8Vn
zRTlQDDg0Hr)o1bvQCQ^WO2HzFw-7vbz$tv*<wgrn@~)uw!>UwKUK!QubeZa*fZFZQ
z>TH!-jqe$`iyX<vR&3viw83j+D;zb6_sbvD_USa7H~>pUj$A2mkweqEyZNhb@RNEq
zhVhoeeytY>z!sI-!x2LIrEY=Xae=Fw0y#hGI8lNVDzqB}u{Rjn)GHGw*nCNG{Q&Cr
zkcq&7BfPR*aE`82@VLG(qAdmJy12=|v?)<yEOhO-^VMqiajH;+jYs?A&c_dEMjwUt
zJPMVL-ssk->1iLPRG03AW>s)Dfk!>^YVS+6cvM`4i9@>wj^L(eimv;Dq_Jy;s%sg?
z&(HEp)J3(b+{XIuVL5Vh#rSC`G!3oWjL{Y07JE=m7DafjAa~0IKmu-U^a^|>GX*=)
z-wdUA4gYAaK#QHdH9ux5Ci#8oJXEB|;JkQ^bjz=YkX!43BkhAnJsvb1eZVI!s-qqw
zON%|;O4w38WUV`|b3BVNTUh^=Q^rd<p=6bM&@h4cD9>M-qq?+^=)GepmLepfkE9m9
z(u}pP<Oyf;865QG@0`YU(C|{$bw`3m@8=~*F*gsDbxDl{iVIw6pKV8mf0w|Q_>>*z
zkKB`r^f%a35SgAisxG_nVzrZ!A?@^%nAqT=AKiYi!$rUvJiO}5dV(kY`_f1)p2{!b
zFyBv~m(@c(`TcqB+0n<vd&UjK0s9|lpYw8oY@RU9H3whs$0)P%ke*sgA>P;vU6H*>
zgR*ZVJ5?X{^u5;YT3A(RaB_6FZ-;dv9b^aB^{Yv}L7{SadM)f`rI#icC3g3fhjJrR
zU3p{vhm?doR__4K6FgIn0;UV+ei3ok^UpjTK4ZBoe}7Nj&~ccHy)S6YvFP{{E-M8I
zHi*O#8gMy}P2E!@Irse(-{UQXr>a+YA?HN(TDrJk`=i>QJf7saokLR}RME~MyZdA>
zY&iy<oAYbZ6!6!sd?vo3WXxTpbaeZr2aM%JfcN{rC361&*(ZBMITIU{iQJsqQsw{;
zl-mbLTYA%L>@&4J9flaqW4VJH<;|W9XG-P>6E<UJ=ktb+VZV^I!zvZt2rGfrRK(TF
zwTDX9s;WcOq^tsu#OJsM^-{EhyA^!>Qp?0I|36gS^;^^7+wgH1n~c#gkY<d58{N_|
z7~NeWok}T4Nq2X5w=@WXFdC$hP*h4ukx~)RJ>1{>xsUsK{)NvEpX0dB>%87C-O{9l
zC&tL20Ef=FM~|(XqrVX;Mi^rZx^X8%bdL+Z;Yl}%GuQ+Pi)N=j47e!Pwvf5cX-~(}
zsX9&mOFitvsdJ#~u7Yxsh`Y^4`7RTSt`n}kXCG@_q-w4j-zQ9TS-*a`^S;}ISnM$d
z?#X%hRFQ}ZuX~cJn^;6Me8Qz^aW~GrdvbBnDDmODKl|gJu2JExg+tw$x`&@nAGW(Y
zcg}8tWP2jr5UbC`KS|ZcHS~lJiYEnDwB3lWUJaacNMtBVWJwXVlxBQRc-_+eT6Oky
z(UC;|J;~Knneqym-F;f!eO_sSs7mB<WR%3$?Qg^+xnu5t&-;`L`%MBiv^$KkLk6}(
zS2kx!kWr2P@sHY*4HEOe4lLeD<6`z{xea6A7x(q{^}S()U~Z%ag{z{>+y4;BY=8c0
zpwK_o@N^}?ZH+OZyWq)d>e!F$xhn<ipN9$NI1zg+GEsN~S>O{|M%l4PZoiui2sXgL
zj->rS^l>1~_nW8M*dO2R`fn1fl4cwKF}^*QdYdtb{;o0i`zRC4!+Y5#M?NO^>{9-C
zdRgvj=BLJ7SNr~TV65iLCRKd}T6=lIHwSB0iX4gh+KX?M))apAgIV8b@6TFT!O`8B
z`_w#O1{^oC*^58f9{PBYqtfF+rUbIk69u&7TK34D^t>=rWPFIV%iPXfI}21pa))^E
z&aH?rVJ!Zh=j|(oUnyo%jN-mcRZ2I;>qAov+V?V?#Yr75{Qf3y4v!R=Vzlk!Oo5|W
zc;{K07nuUj5@8rMl5hj)CH@eH^oxtHu@@#A-l{3jOYoErpw3xz<5|*U_Lr)Tx0-5q
zc;6hQ$D6SyJnJLCuh}9h2B*(r3{?!s@9e&xi)$(YBM}l0;zD?I!Y(Ho(*7U2kKfl$
z&e#6`xBFa5d|mJCzE`RRhAl;w(>dTNdG@Jv0rhszHMcvvFD0%zXv!jmsA<`^VMIMA
zRO7RFI5sgWBUZC_S!3Xqz|-p8pnW|y=%>%r_(7^;u8St;063^*dUCnoS%@Dl)`Vzg
z_npD%yG**mgu$zAHLZKpM!FxD(L~xiPdrXFXTL*1-=J<bdV?(de-5QJ!@o?Wg@WTs
z!F0?-Ipn}IU|eL1UrCA|=>v#?hfWkMAnd}=ri_?S@QRjuzQvD9$3%C~c^-?51M~XX
zHRvLQ<48V9y|cb7A-{1XUwAJrCC#-!{gSlfv7Yn?JzC1t&D4c$fw+eb-6a%P1b{^Y
z%0*(t;(eDNa^V!D{m$vJOTs_(a~`>73f$)Z)ByM|3X29(v4O=tX+QiFC@%VWGT)%}
zN07_7fzig2J;)I8$3X5W-^0m$uGi^23d?+EhKEMR%5hp<!f{Mcs?<As3w~p$b>N5q
zS}eFm7ki{xi-Ps_{yh4A<{E_&;xINXqFqQicKDS2C(8Ko`@dfasq=mXoxJjO2MrgI
zGM@;Tte)n0$*e}^iTKRW_$JZ6D5CchjayUMZE7_+x?K$w?PXj18_~%S1p<=;WJFwO
z9bni<$nR2knLt^c68VDwXWIQaB*qXKkh+*iG#*oX9ck!HSuqxa$`@6O#b%bn5aorE
zcTeqV^;D#R_(t`SgYvb?7&Xc&Xgw5AAz~oeLeCl&lF#u(S$}gfk&%_fCA$W()?z!J
z&g=Gz=R=3<YTMJJU%VSV-g}EpZom0HzX|w#PO4_>+AgOJ(s!Z7*>6rY0U|^U3R7Em
zA~i`k-z^<i4~826&n3Rj6U2|%)EM_O#D0|@qtXx>;7X07t}~=GXGYeqyM~nz(n_lu
zQ`DwvzKkG!IYmw*Py3)6nPqW25vhfz_lj(y+iQ1<fYfl8*-%*TGY!%4GsvjCbPf@t
zGS7$MgY3N3izm@erG<{c_Bph<GJm|ulg=$4gBbi^;Y3_Lun1DgD_A6@x;UHLRGIf<
z-61w5h$FxUV~J+f7om@3G409-`9-uFgCa=tR5!FvQ!a36C(WEdS(`<FRuq=~`r&De
z-m-;Rh3B{)yebicW<ds&TE($c%Eu%76!t#ompi|%LRtvo4iK5#*IO~(afz=>2us1?
z6hxPx@-2C$dkz)y6{$kHtUY>^v8dY819oGRmw7A>5F+mfQE^<o$ciM%Yh-1bx}-}u
zs<7+*)4Kz}!80Y<-2+90@k(X_SHK`N`f$>Os+1-#n;q?cK0#Rm?KCftFHfYRs<q8J
zCsZl3aar-=OB0%Ew8P{Ww}P8G>g5HDqs*!cTzk!7Eo2CAkzcB}Iy`aI@2CYVT9C^6
zT)&sE?|bhJ-<z{3DUXT-SpEX#pF{55pn14q>RWJJe5yl4=N}rUnN0n76I=Wb-x`R{
z7D#m2h#a_!C_diXQ|gZfLHwaK_w>!T*&?yXiDFzQk2$AQ0t34Gc`S|N)nUP_)OAiE
zn2S29>-}(#?5;OD45rS%sK(tdvZN*TS0plIkRdjmiS*&Zdumc?-JvS@u>w3~Gb|><
zy6T3%xrPIwn!r(KB8GOl;Osy$g_!S~hBEz4)p46loQGE<G-#)t{{C%yo8b9|%F)oE
zQVeZw`-vppd(PxUKIVZ4Y`G}#pTvGy!rd~2o;6aJs3y{qF4mX|Xf)p9meei(=xC*d
zP*vC6*rq|-lHE&T4M=OpMx2Rt>L<Uv8GEzHV$9ShcNuX^o;LU@A^6xhm5BhQv+$FN
z#)^vQ!`!F8lW~Lngzs2(<LHl`kUeMc0*&IFc?!P-4!$A$>hXo-ngZSbDvl$FTCntI
zi%Ks@s3nXn2nM9is!`I#C(^^4tC#nJNL0eWhT@<NS9lBxu^qhd0Y>y=Jd#r>g<Q)s
z{rh!HAG8n)g%N;YVg`j#qHG{PI?M;CaumB#7*vfYAwZroigR-aItU;oe+gECtv`h!
zodML}BSwe3DuK0r<>=)IVEjh4lBPHaS$JnJ=59NS7%D-x=~P0p(%?J9lk`hHV`9-!
zz-j>yP5xkvhmUFm(<KZX;T^9(QAT8Vwc}2^g(c=(l+(LqYd)`47CRx;nc1{eI~4EO
zTaV79l;+?vsGBls^M)J3Myqj3_`Fn?_%!)k7<+9Wh!)B=5nM*Z|1yu$Z7bTXvX>dF
z3xmiV50QuHD*Z%z17Tu{l-&NdUCDUUj;R25tc|JgKu>|o`FZ|KAEV$$C$WR4%^5`a
zI+@{kGj62S0tbcb0u>^uQqfAqg$yKaLZEn5liI`1H&wQPEwpDiAkeSHL0FzmlU#2p
zKTK^#+KWJ!{LduMY2k#*AIB-<^o~kS8I<}CCY-&8j7<U0!BxC`up<;3dE#basy~P+
zI<v2~Q3!jOLb%jh8Vap+MwyB+z$-a@_;^GUv>hauS&=@1Ml@V1#r3J>>9)0OuMf|}
z0V|p5osEt%+~%yNIDmnV3e;`O<xO&Ed{{M&!jedo&Qbkp|9R)DV6Cq%z%W9tT^ndM
zn9FRF;T2~l7Hapm!Ge<=GJ@`E%kJlK6eh0Yyi%Zur(iUggcAl~i9vz$jg~>NAKtfh
zbvD1`ePYM`aec9?tE->a{aM4uPv>3T1AlovBe*xVsJeT`Wca)@8aBQPb-$i{$@jd1
z`_lm$39)KA@nQCfl*vrBf37gZioGG6GJnYCjkjYlOPqZ^8wGrQ%fzZZPWkf}CT6*x
zKe#M9M(Om9J1s>!GaAuda=H$l*v7-JT4K|>K%g)%P~_(UJ^_2Bu~(~r3X<vmm@f^R
z%7o$?fK!VChf^5IQya0P@s7l4+mHTWo<^$PP>^(A<@sIVo0V_I$nUb5jZV7-NATGD
z5&>v#jUrL?^qUwE8zpBoamd`_?gJ?<5$jz7hcDZ$%i^z{#a|L9JrHtu4Mk8G+r}dW
z0P?M+W;6Kq)I9CCxl3SP(dT1Ki4Kja0uLflrKiK)Z!D<3`qj|;VZhLTu{&(Sy$czV
zP;_-^Nk(z_V6k0%;pDqb`jB<rpp}HvWcyKliail|S^B!YRhH*2TuWWAwTqsC+@ytF
z7MS7$O=X)3hSTJ|ZQ=m&pL0{8xoC%ES+O>1kV_<T+Zl010?E}C6l1fgmH)X;oVOJD
zrrH|!5yFNK!9JDw1pa{0@&p8^4n`jT@@RSq?#?Ry&g#;R+7RFvdcD-|{;Z-e<fhBE
ziyH1RKOeaEnN!0iT0Pt~gz*FD{&e;buRA|~blWOzLR7@2R$Ron@S&InTvhNXckiVP
z$64#7Faf)-)nu|?uyKM~^ic*VDER4;AG&l<yV`Hnr|hfZT;;O`d+Ppu67yg3m5z*h
zrLc<TKhxC=ADlePvG0sKbcLU9H!4N8)7N-vLVDb%UzzwBaB!_D=-`(l5$i`ms%?>!
z>8!Tini^VPGTrty)w|pv%ASwaKmN5sLaiSiX}s;Lwxs^moWabaxogZa7A;fjrhXWM
zdvR^r)%ct0Os$~%a#c^n=qCr^*Orewpbjy)dT6E033=GN$yLkj`8RpM%2KqAWf4U%
zB=WaF4vFY{*=O_6&uT?-f9sbcQaj62EUEF8Xk-Lvd>Q+%S3-yv%aE>*!myLFBE?8e
zz03-5vTlfVIH65Ab<^+N2jUWqguw!>B-qFQz7qqew^dqPB_$vg;!y_AM_D638seGi
zi{cwx;nQZ3{`O~Op(Foy@I@XB!xtNK(uMh%ZC-y@y3w*A_%%;3@I`x#HLEH{Cz22u
z3h0RZawWRb7_|A@fdz%xya0pr=s@};(E){zuj$E~NHD}K3%0voE=;50mtSyIxHWkJ
z;DNu=>!>K|F;f3sE3?yL!mDD*uzQ*lKrNCK`CTC4wbJOCHH9R|059`cyaWx6e(6tl
zV#&%hW@FhxdZIT38+zOf%}4-8)@yE7z9-Bcycc+?VY@*V(4=0#RE~b4^?iQ)XkXV!
z-eRhC4DoI2Sq~ZeNs3cttgRCKLBL$STHNHPF%E|9w}}{Rl-|vAP`)1?YKnX$$&hnw
ze8XDV4XpWuBGSh&#$$dvXw!hxTsg)$+7wSkO@uIPH}lyoF&EQ48pkm{eU(hpt*b;r
zzu1@;ndANxklRRGHmu4GG?KT?DEKz6cZ30X`$@?&nW?Knsv6Y2JOT&d00hytyK7n#
zqHxWAHT1;feRPyg7$Ga3nLwL?vo$!OC$=LtDi*1f>Z!!ZS?SJGNvLX%(?!U+tHwxI
zs*)mp1f?r(?<{y$nmt)}TQ2Qgi<7k_&3Q6uEI%t>TR8|VQ)n|%qnk9*BRW8hWE#dL
zqynO)cj`JSvv;XP$)@u%C-Z`A6h3M1tR=}|?TeUZfZx?ha_vH3Ko;maa@XirKf7r(
zhf0tGdVfku+!iYy+5Fm8@}Ml!^N}AN%y!Trr^8TzA+fF$!s=Ldv7cdv-o4oWn$eMB
z{mX`>+Q9v`N`1b{G8)6BoiHLY?1Xewo3bT!O_2B0I4Fv;^~Z%e&hD-=XOK*qsNSl#
zFcJSOB5@sqpnzd+=(wh+Q9U6QT7AR}6Q`gJv15Q^caTO;<(7mk84)tvLMHNSEQdFz
zlVk6aOmS6h6-N-TC=`jE+0;be;<0SpTYBW=8$G_cQMJmGf)yaamtc9^YkL`1jn;gJ
zePe^|c!0nDZst_uQzX#W)yY+s^QrXSKUK%(N+;9YO2T*B?&q4is!p~v$Z#^G*0zJc
zH*i81I7Ro-RC9mxSYPtHquRS_b^Ee!8`XppdjrVDS)N*&ewF!6GX=w}1!PSE{DGNR
zP3W<D6x-BC&Bz^bM-et9n>DB(d?_iGbUhQZlF1QTjI+;-oLTeBNGEfNGMZ6Zeqef8
zYr5~GxwwCuxO?a8h0fmD3m=lQqYQg(y~svVrsgB`BR}gZZB}w_W<HLEg%!ewM(`N7
zHrHteENQuBr$xvzPu6p?T}ssEyl8>NTG6qsI|+QQQe*oPb+)IQ>Sy8_=kv4fm7#Xd
ziJA7UjYS7T;K-Bx&!5(oL$((#A`g{H4;59daT7=#Z?58IHdRigT%LQMp13@oCEMFd
z`ny(74%cZuJ4_C!4~$m21ZMq1%-0t?p}`K*TEHJ=q1OoDP2<!}i^@^0`QPK(kW}=)
z4su+f`o_C@JQ{9O*nBrWeXkH#-(hw|_Mv1s4nPA`pv=O$BNnJcDe36-313pgx9Gr>
z@cYqAZ_OhImGOu2QN#+EnbG+gbv4pYx@2il;HvowzHMx8YQ}sjDGETget%s33FA38
zTp})$FLH>CXF4h}Ypn9kA~$O7Xf%G5#(|RMNgB3GcgBI3U4jZh8BZmcM*Z~zTy&8=
z59{8TI*UzpmgO<^ORMTnW17)3lTBIHZi<y?c(PqbV?KAcIRNvw$$z5z)|hIJ;rkpU
z62Vq_Pl5<yxd<()gz+pGS|>MVMj<73Rlh#%`_=TcpF2QbiD<t_RI6zJ?~waEmC_bf
zio1cI{51C{RYzz{=Wg`ycCwIQhOh#Ty3U+5`q$z+IPj}?JPogbuuR6W{mFrMa{^N)
z#p^=`$!4B1_-j7aEx_{Rl(nRTuKVm9+Nc;1WhKt$-u%~H$!2cfDnU?U-?Wl=V~twy
z?&>gXTZXrx_Jn$M?C^*Ps?d3|&6#;-&cce$REko?<SpszKFXgm;!YmD99UBAfAwYd
zm3LESr{0PN^E_oDQ^D~oi)BOfr9utm9PUFVUPu`}x#z#^QS~!^i?tsSx>=D{ukcV?
z7M}05&v*NjXfQmdmzG8pp)`aIN>*N31(FG-RRVvT1&Av~&C@u&SSE-cD3Qzwv=h}=
zOwv61x$>yUoERrS!L4ddYHYKGD+?nLw4tYshj~#Ncs>`*wmZwVm++!6X{A{LIr-B%
zqf}`_Xjx3v?t8Q@<QaR^t<aPRGSsv(yb@&WZe@Hc$TZ%{G$+Ws+RFSzkY%rx<%b~a
z?^ae^YelPxm2Q~FF+NQU2ODuD8!po?$;2u&$B(%UmNDw<bH57FM#yt+t~7*~J%Uiw
zqP`6yXI1667@}6Eev#+xB_gyT@9oFzjgs4X(AUOZ0p)ZPg4IMtZ;hgkAwMbBVxrcJ
zzni3ZffDNIU?j0eGC&B$g{~-md=f?=CpYFSNAzM<L10MKLs<T`Dc#eHj_}dor_a_k
zpAnHggF~OirqXpx;EO-N0kSW>Z%IE*%9uvVw8?nnPt0GK!g9k8grg=d_}`96U6{mc
zy-WYz7QAj3adi>Sd%<tCB&XOBp|Eygcqv0&rz9tmaxUz=E38zKE+6=uPfjT_&MfBu
zg947LcX$-wFBG5*P<ZH8d_#(jJTx>Cxr^^txS|t>)m-iPIYM6$6;q(K>E}nt!#onN
zN9cz@`-qQfJt#(te2jS1d1Cg{XlY0OO~)|}q3+Tp5--z)aK8A7=&H<~dV=juzLTmO
zz5H7%brYnF-FjuCk4B)XkF<|r4iNo&$?`>VK%!7OV#nNc{d}Lr_E~f-q&D=P#-p5>
z+)pzWd!uUn5Gx$cM$JH}N+PyH;GWl;r*%=buv$$$nHc1|eDrQ)y@RJq#kdQjQ^Q}w
z`WZDV4lLe%<tI}N2AK&+XMXyvJm&@mo8cIj4758*_fwq_>jDkKP%$&<UzVybEUokV
zg2Ye<zf5mMxkMkDKNqt!?N(-Ovm5_en%?cd2lC^G_?n2ZW`y<)S@dfa-ZnyCKQ)?(
z!k8S7K#w`6o`USI$Q1YL(7Ff%3g6I#8i44~RNP_63uK+^!;WkX)N?*l!=A|OjRcu{
zJ<;0{+#}?r;W~j6CzmhG!22|v-WsIZ@#D#Xzf<~?3f}TIU<EDlf0D-s6%PG@4*V?W
zZT%P=7#cT?J9M{LcpK;RX6D8Cr{CRQ3*J`Ug)B42i-d-}7Mv>aY%vl|%?w$0Ewk~5
z5c`&dHNW;1_pJQa?qEyp6sXTq&(D#b1Urjt*209wtK<;I+*f|V-Ssc$t{wsZq<VCr
z-xYOwCLUHr2OsOh@eJ~)tXAoZFGaoCU-(RHhDFtYuSpg+Jdc<;0NMYBO1vYh=Tt=2
zSx%aGW`af0nwn`EJ*t`0QCAq<(EzVn$>dji3s7LUZLiuiPu0a%6*&<~qL)|U+WeJd
zHdWw?f5y1#b>&=KbtLCe(xbmms!UW_3h>6xsC3GA?p4fj>`2`E^7_*ki9Wx-*BQ^7
z8+5EY<#CcPe(yP}+#Gg(<_CTLIQnxtsmQjJxiiqTkCD|%F9Rh%v=Sv%22^m0G&pkZ
zyP^tMrlA<VxVx8;VuAi1QL!3*@W>NV6xsRbt*O+Q-CWr#|4gJ*<=d(u;z;;$^&)f1
zntze4c+l4(&9n7-R^)Z}M-Ud!SK0ss9F7Bep_JiZJD5iB^Y_0)*>qyd<e?olIZ9CM
zxa*tm!e<Y{G-A@q<ZV<HOo7;CTs&O5hE<cTUU5rBT1kn=EzRzgnq{Oh7>shjsOu^%
zkK2<5zkIKw^y!6903i~EdP#V~@hcO%iYL2Np%o|o(v{?IEfX7nla005`ctj-ZY(Pq
z7FVa~zzkvPUm4bvOy0aryTWrUwdDGjcmFjEi0x$?nvw#&z~OVr6O%?)@7%EB#Rr4L
z994sYZ=(j{PQUDY33jZPg|rNuX4pW)@%2J%{{9&VI9+|61mId@AhwcCd2Ru?_tMl*
z?#~&RMKu^w{A^eF-R`S+hFPug-+zB+gj^BJG{FD4wtv~GQM(u>F_53uOtAhjO!AB1
zWiSEof2N*FLyi@?6E4aSP?n>Xv|)!IrJZsTqlE9}6{Wpu8oOGyh(DEsdKS0DJ(s&l
zONOH!U+>7ymTG%}go`?ft>CCe_I-m)b$iOplK6Nfe>@-;d%Y|}fk?aLSDY=iyv1uk
z`2pL(Vzmyhn8Hs3_)xrgpZnkV*8PP<JxABftB4B2L}Y%^xgtonU7lXyegDKNzx5E~
z4wYD<VI5($cA4Xo#I(qTGBZ|_OCrPCn9?8~xXZ7l;k|eT8}DE#{cmpM{`vS^A4wW8
zaY&)<JZC|t-DEMZLmur6rFJ<p-g5~|IsD6t;*S6lt{QlW<2*r8d9I+C@`tX~?b(0Q
z0sASFIXRu;|9su2XIcWmmwn|LuaEOgE@gV&tOVUOi*G^m`6}_l+{Ok!X?jys$mI{!
z=G9q#tmRsl57(_Ytv%%FT#|Q7lKagg1RC5ftgRjC6!0cem{YRULgKc)KM;+~Jl{wg
zXL)%`IRP`<Mpe&RhNIc?Ez41<Q#|mfH)Z-T40N9hjzP(4stpmys>V&B%jGE@$PHEX
zrX!F_W*J&~=EH5%ynVNe1XQZ8QA#53pFEqP!&EG)CsLstDh|aKkKk12@=Fg%UynS|
zOJL|E(M@9M2W#`bzD!@_5?&+|WfmT(RZA@GaGw8`UtepeS;3>Dm?|CgieBUo)<F5Q
z0M+PZJXP7V9>-Kmp~-m24!dE(t-vUpN}KJeu%Z+iWd2=WcLXXTnBNKi@I-Vr!lB@$
zaiv|x_b%fE_Zi|3H$WLsonz|vCVI~Nr<^JAel*av9n}xN%W;qSw>=Tz-07)U0h>{Q
z@f4DQ*pI~gu0JP{Gw)TU9{qudeD)WGr!QN{i2t0hjiaIZnrUQ}_cc3$$%ozjQF*MX
zEv6OX)Ub;V+ba%aAp+^s^{S>R?O&5oU<NldgcqO+Ul)_(WqZpjxep^UVIA&J{<Lrw
zN%jFKOHW?2D7u6Ft+xJ+K$#E7#r3w)o$)xq`$L6FE^n`dQxR|ZQG>qc*FKNe?in+C
zBi*31E{%*~(UET6dQ$f9fKSej8KfF)lnomsnS9bTiF{`znDk$8X#jl{)L?g}Ij=w?
zjmdVbz>8^P{_ik3VpgUGK0o#&%F<`$k;nbd3D?fbCb%zlgjS36+yS2mruf@#J<}UK
z+@(I{hMeAjAH1nWCtixZwMk*=LT(@P!=;^ui*UE)tb-h&5AP*I{&|znu6BC_Pg~9`
z?g<gFP=pZ~me%?avatV+4i%w~f+y=L5SMd?ieG#{9{RTE7XnP;o#!y~T~dKn4?>v#
z3==A@6&u(K_`?+N30?O3sU3knbf_(5r81F>%Toanrb&o`GbQD{)(BM;1{Zz)mdN}x
z{J!9*UU_JIw+v;xiufu{$T@3tQrV9Odw<=vC-=yQ-&CYwdXnp$Kzc(H>anDaQWqSX
z^l7zr7@i<kvVlk|l@VzPL`8K}#MZ|qzU&%)gd4C{QISd>N%CAaqC2uzk-er&4e!u>
z!L^zgX^Kd1UCQ!E$H)kK^XnS1>8ffI^~pEQ*=+TJu_vNkxYztCqMG)Nw}fyW^qFN@
zqTS$tA<fgyv!wFfcU;`((?~MUB#`B%NS&FM8w-UeCV*5V%P>dYGm$F{S|g5W0~;)R
zLS_V*h;+AVnE&C^(4j^f#M5Vey4v9?@>tol(jp{NJNvigs@B0cMHv>?Ck%oh8BE)J
z0yq=#>j|waFF-Hi+?xY;Q?1enil_W=hihich^t*=&Nfc065kmqi>uZL+mMAXBxWg{
z=fuiw;**af4#Y2<yCRCv-Zik@-v}I5ms}|^eNwMZ%L_6ujpnZNy(Q4)hZ`Cv&B4R1
zvme!}sGln|R8b$9h^bH+CjiSIw-}c2WJSHV`XKbOJMpW03WEv7QxSwn|HQ&=sA^kP
zY9lpq9j3>u(T#<+HO`2Kz`$7_JJwMkb3j6^1E+K}uY}58;<0EBjW8!Si>Dr`I&!=>
zYnHrw!L`Buv**x&IXMX!tjh6H;90Ze<S((GL<<ho4i@C8D{|FYlpcBlqpW{*;I9r!
zf)~Hae05Z6W>w%)AFW-SSUBS4Q*%~^Xf#4$NC{dYQdhI|VZBCmWyQ|Lb0rHC0sZdu
zM5b420|m9`GxrA6pK=B$c1+^Nfm_hsIuG6#ChE>wTynp8b?oHAt)q~dP0aqe4zCGK
ztdvc#PkeZuD`ajc;e*~lnpII9@um0)dNxKjEinaI)}qQ?-Ars@9%f2Aqo3)<C4McS
zwAt?N2H+ugtCLK-?}44qR|QJ<y&&Q8Q3k0d2$Xmfyj=Gy7j-OOm~*(ta}8{3S*eeq
zI2O9EYLaO0KiwhoRJBsmftx_cXGR{N;=TX%X%PUb4GxEDp6QcsXo_hLwio{)X%u@)
zKl@{vGXFJ6CW`%9it3uZe1>OO{`wwySWrRw*FpOStOk@b^E~?58@mrw_7)`<p5HCO
z*~`-987Ckrl$94|VM@3#sKzZg-KC9iNNH=O%s3%a3m<|B1yG!$ekkz5U7*0BhrdTZ
z>qm|bu-&KE(sMwxCM7*_crmgXhUW{7OyV;O99*C8iVx9XbF@@!f^V_Bc>R#O|M2Up
z6~i8%=9_UlRsspcpU>UR{U!&?D-`dloY9a|f%uzp*!w*9@Mc)CV;tj~P3GQT4Nqy#
zj2Ii1OOk)Tiuhz{-fHxjL$3O5NTHl|;PvtwV-bG*8AX>vx;=?i3DxpbwBFphY1FgU
zZv*IX*-|XmcPn4K$D@0Wy3bwsKa@y5I-;ym{8XyT$+*NX1d+>VI;35<Q9w7f*Mc4?
zDj@qL`8g<?A6E+CT6-nKH$Fc+UlxoIBU3X1sKP4P`{~u?o+bY)zC1YX_jvPO)n@zt
zQRb{9J4a875!A~!cVMl>5C)o6Qh-5Y|9cq}J!74@n+nYExQEQOj(06vAh4DNxzeQw
z54%W7mfn{+Fl!i?2~3vnd6jW!_9MVp=Fe{@hP5AdDzI1Dd?D%MW?%QVpJDL+vM<)$
zuCr@8k?t*Rm6NFlQk1m+$Ygbj->c_y`_X-V*>9%u@b+9HWWBUf_2Ii8K|fI`f3buE
zqV{}Ney9_%a=aI0_|&@if;B4PcsssIKP1C}$)RoXaKN)<fCTpZxEdg5OF+cE$D}(J
zy@P+>8GzH!MR1;Gq?Wf{TQ`IQK|-D~k}a0zryvD1NCSQ^FE#@bKIYwm(DoG9M1xH@
zLAs}7O1kW!seSo2nCw%qu`c@)O(KnL0+R~%W>5U?RN}sQ;<x|7`^am7gQKxm4aC#B
z9h^I%0iGmZ=0l%zP%7h-9nF*d_;0%}l{{ou7I=pkz{r)^EJjYr3A`wXTS@I|$r;ZO
z`K8dS!L8zXO78!$`yNuN<`0qs6(UbV@7<rLRyeCx)>GXbtQ8le)(9n+XQObBrTJgG
zPw)PVwEO>U_eJQ@#r!{ZUrri*!2*2=B?GSFKX_lm!hc>v>oInxG4?I|U%U?khotIq
z)NXSBl0O>L8=n{aydo(1Po4#b$6^KmeM@7}DQD8z2LHmFu-Dt$SRhzlP`N7YZ&ZU3
zr8D18XKT`f%c`qthmn0Jgr~sBpB%RRS3#ML{P_VGZ%D@zK%qS3tcqrrNN>)EQFaKh
z^H8yW=cKgN=hR3ia$MxB_{RR%p8aVX%L{ML&QT7W{9mzcgj5@cN*jU~P4+~HlSUaX
z6AD)ZfB<Y1XwnK_d#;A_Z~DY=#c)1o7&)yCH}w&!qD@8Fh9-jI?vqi}ZtAJSD3eiO
zs<4OGFiwIk@=`)}+?2iq!y-S<o6fF{gUSZ!UkNRRBS|9pl(xv3nx|zwiZyMZ<(yzn
z{<3;B^t@EyRGACICiLJL(Zg3PO9)>EgBedWrM|G}!xT<gZ*B-XWzV)A*RxMTXiC*E
zu4nBm9>Ndn^mWvi1pCK?@fCzB?g@*w(~Ap>1_)C~65_}VMCc+B0`F96p9v5fuwU6m
zURjI0B9f$DQknNw^-dyxv%7qS^=yvUxVt{x6<k)|${jF}#LtjD627lf#!VS(xdwjs
zd0Q6k;N!>cyl4P@gC0qYB6|g)F>`RfXUKj#$aUB%H#hYe@a>*M<sl@Kk4hcdMU0Tl
zL~0Dlac8pQ03yFs*<?WBXztTLT()xK`nHB+k}o3pdJS5wF1ZZQ(k8Z=&!d3u8BUGc
z(cXY62vl4<Y|}DRWNkvWU|Een4LH?8?)S}Gb?~|D6Mz{IW=FoF41WN&h0qE9a)pZs
z5&AxHJD#Y5?{5QW!sX>hgNjFYWzpW&Bl-d4iWl%Q_!;6V6FDh@C^*%sQqfXd>JG-E
z$!r%NG}Kgp_rgwcbwlHv3H34Yh{jB(Y+a32ov~CrP#L?%k-dgNDN#@YFn^H9F9Mj0
zw==LzfXzgv5E;I=HL^I5^cCSiplKtlF<0oKwkfWa3nK)&+mgn(1ZtMyL(W|85rFxL
z>xxsbnsBxP_v^w0Qr%(sq^xIW9(P?zO`S)}i3XojhQ{2<3ZAxz*;)qH{XUL_EN&yN
z%BOp34i7btsUS3DLVAT<kE_l_%z&jUSwCF46c%_N$yn?1#cbRXSW0bYH~u`J1!$FC
z1VCtQTWL!FIa$2^S>L$buP^^kdyBVAlj0OqlO6>`jBv@9X+6S{S9b2%5+WrD547<W
z$_IU}(He)gc6+TB^uBzjWHbPLNlRMCx~!L2ojcR}&PcZXg_bxRCD0r;|Cd;-%!Z-$
zZD%kx>sxW_PBlEhk^|H%!b6End4}k)Y_M?bAl!l!z!nsR0<|M5<z2tqIpNg9E>B;<
z$7Xr<_2HE;M82@(r7`8{9C_wFD=n;h_cB4^bSbvkgIZmH!GIFIxFu5Q{Q#-UUG60a
zf2PLa@w<yh7vHl$!E+CwjM>h<lPWfUWtd-f8&3HUZ^J5Ea_sHg54vEpE57m7MCH~{
z?Jd32O_(hqRNf}*8VS*dLCnWDEzwU|;qX%eDCCT=V@Jw+o7_(sed+yTshvG&hdj4*
zQd7aDvYV|o2OF<J86FA@;2V^G;Ui-WCD|2lgo{!dZ^UO78}GRhn1&wBYukMb^8~6O
zxD8G1RQL#Z;C4b2+nutzTy5pN8(34AA5Y;3&pdW_t(@0(Gz|B<-safHyG%?F5aBTd
zP@>r3H_R2xzjq>!;6d0$NK}Li!-Yq3I8rqN=)@&2#zk}$MazYi9Xk}CJW#Jkue03i
z2)A2J+)=)*!razK%(MSmX6NW2wlyA6uI%Bv4z2f%DJDzJy3FFoQ+uEt!52xxewQQM
zF-`8HuurEmkHJ(QE81&22v?67G$S;2?H~PkFEm!EndzbRr&0$`LR&0K`xvN0`%nwI
zt|b}OreD>03Du|LP~p+h6JOWk8Wj?P8vxhmN!B$1*-FBP&A-Ie1zu~+AGxSR7pJa;
zeLk{)?b+bnGa5L-)boai&)V^!Eln$R4Z_8q*V%{DLvg^N0lIh&!JWq!Ih<%M)Q2@!
zK`h%lujIb<0!r|({k^t$Q1FwK=jw!@x60nzck_ksk>nLF&7jY+;YAH&F)hk&%e)Xo
z4)PPH6!~)CmH)9&_*3=r(u&~{#q#1JY|Nl0-!A=w3}FxX%EC`6A_PvJLaISH!Xn{L
zUs+#2SW3{o%LjAYLLJB8%XAS;%nM0|ox9BlR^p4;uel8mcroQrX_2JA<MFCXN&JB1
zw`R35*DZ!>1ryJ!kFa@M;D}RIt|;eh(}~#L^Y#<5gx9o>5}Z+%;Ak;q+!JIc@Pp!)
z@gfW$b{SN!7#?dr5s4LzBC}P{z{Vkw3F)IfxcdG0eTLk56|vrlrj4V@*{4;=NDqzc
z^VsI#beCL)y5z>`R|;^7Z5N16FCUX@rAfJStoO5(<q$zM1thyx(V~MC+2T%LN6GjK
z>r&IwUOtOrN5o@VPKpY&+60fPc>!HVk>!_hCATgjysl?tVoD>|>^yyl#E%4_QV8#Y
zB6EV`U6lH~uZoCzkIe&+w0eu|c8IZ5s@S^?7XBUi`yJnhb9AI~N$acKxoY0U^eJE;
z7OH=vEi(z<?ozPz$GX?3UDcQn&@{Sr;1~y`D0SpMyty##-I2_OlJ|&d^c?fdg6-oK
zY=<Ng+7J>$64+pdl}H)u7+bflZ$4wV=XBjuirpW4+0oMMoR&Ssbe8c6F%O4hN)j}s
zR4m8}hrO3W6?%J>Bm>%rOF=ZPI*sWgZrU+e4rN|Ye0E!4(u?evV%-flZG2og9_RUu
zhhzcfI<|nIaJp}U-IQ#TtNeY-)BV|-ubMN;yk8eSlS~8IXTJG#5wAi=65lzFbANiX
zu+sQqWn;>C@?i_Vw<x{sy{B{6JnXLS^B0Ztq)BtHo|w>*&goFU`xf+W>e%`@VBwb_
z2N&6rEEx~_WI0xO8BDPJK77gO>9*<9onGi$;7zaT)QTssnwDf;p5=z2yQp^AS~Bl?
zH1?r9eyX^egncql(`L3{Q2Kyq0fz~n0AGNEB19Ss+gFA8@~k29_%xmy)7?cMrQnVs
zd{zu|T9kd-yX1H|vnPDEClv90)qIp!X6!36orkR_-rtPg@D0b_U{>5YnAyKy^?w(t
zO=ML5Of>yz=H3rLtroLb#O>?`C?!&K7YAec+Zf(yX1Za){N}D6+o5yI<2fm#h?Ca&
zt^DdTdfUGVK=V(2(oIJ0>K?RuB+tq8qac<jom{8#Qw@&9iI!`ok9oiE<(67G#K>`9
zQ1PC|_Pz(tfl3~GelVhAevFf1$e?;(Faqe)2=<92N*cZAgSdAv{jNNZT{rYNg5~>?
z)%R7ay=4mawbbu-cHds{39jjk0+dD(GH~*{_{YuXAA+q=#nwYy@hS0_Q*zcb>c?mI
zOU@X-oUyW=vp+t6P;$=w<(!}OLiq8;!;%ZBFBf-=tpO+7&*Br6$6RM=ms(Ume|k;d
zoUzi(U)p&7^haDCwfxHa%=*V#!-Lhq?~4u2`rtiA)aU|Ix0$gEliRbM_91v72)ycR
zAu0}0Q7wHY!_I6V7gk;x7=wj9jvT6e{IZ!987(L3^5ECQN`9kge(rO4l+Y8gMP!N)
zLM|QQX7y-Oj^pMLBHTMG+1ec+9#6;_2VoG&#YUjXRq*u8dMM_G!c}1A9Y`<R(I}O3
z#P!l{xoRvD@lC<2bqiOk1h_wyXWBwOVo)J{>-@`U7Xu9gpj=n<Yv#+O0{@YyL*X=q
zYW&JB)v<H%QmqE_ey;Rtt!l_0I+9C5lySOpT{2Ct$liJ@;uK7!#8DPQ6(`0=k`8t#
z3Ae6G9nAM_+HBXU(8e(MoxUH@IujxG7Q+ZDyyW_=fJ#?uk6{7i!KeHh9cLAp6^#?k
zTMw2gYD9?Z434xqSyTr%h9!TaWoQ1Cvw$YH^%9zGQZi@W6F{b40z@<VC?uYegM79{
zn*;4px-5vBuq(sm61|z-RHzXowN7td2I%!!vwD<s<}MQRp5%oAbpL((eKi1TW({NL
zx05xV28VFrkfrjZ_yBNloIE(z@`ot(7fgKWqCpH0(rFVTv+e-%|Mq?LOThO9C)VI=
zfBC4`FvOxJjN<9)BjGP*m=e?VN6R~=t2R++@1US7yL6V#{ZHulLj8GojR-Z9o5G=3
zWjZbMou?IadKX5ep~;KI%yJ+gsF2$;1C%ORR#kQ#joQaFic!?wqd03qJs&z5+I2TI
zkp2|9m@?{tairKi=i=n%>_;ev!;#8lia%R~!MW*OsU^u|qXi!E_)e6;g<Oa_-K-Pv
z?lamZ$))Ed5FZHZNnVvDN<rd<xl=`HBmkAcg@C|xCJ8B#qNv@%T1C)#gEuyQmoVBR
z9v2zj94!{02QM+}SSG(u6L{P+VZ|}^8sRd{(><rmc-+E*>}zVLP^i~!>b@3V&T79t
z+BaC8oys3j*sKS?=zHqO(F{Dg7mv(MYhi<6#D?!6vT`#H#hOgpAH&`do;K^6i9`GW
z6Sc7#Rl*&c{ciJtch0Xk_Ns;4l1ZPm3`4#yXg)!HVRCh?L?dG7P~>z4O@tRm_%FZv
z&p*>ZWKxuj&Zb)nI#T?_V3iT}PbeW;B+`qNnmS(U>o0_Y8ob`DH&SpN>OXBj>nzAD
z4te)6`ZQ_&`2DL6qL$sQKNBmJ{^`EIKkY8N|I3CgKH?8F-PebtJ!rYobGV{gH|{0P
zAfo7z??fhdOs{G+^=RiP9+ya$sz%d4QK}wdP}iEh;$5mWXmur$8ky7|s9vF%*@CHF
z^OH;;sPg=N1SuO-I-gSe^7FX!??0cjaVK(yu@{nMOwq%f-(6edOTdA@@BcBrF-2Nx
zgr8h2k^Mt=6CmIIiTe@wq2kkt5=|e0?ROz01x@9(3N)MYD|rpY`?8H;nf32K0?}pG
z6X7b|g#Y$~f4MPt$s*8r2XkBqakCHEFDOg#ox{vEAggb>Q*XDDfdfNUM6_L<MY*0D
z_EI0v|3Y8Cdaa9aZ2*6K4i}9TSs>843}q6C9CbuCKB7ZU4c!WGWNWHHi4}18u>7!i
z$3!fjn`;H*eJT(J2_%mjrVW?ItB#tlq4#P0_=&2Ohy1ooS8cKa{mXP5PtOMBOs$@_
zNl5uwK-(+hP3#U&I3)M%L@RG&j`>+ELQ$DiF^*uDl4zYbHB2QLb!4Y+<)kc9zrZIR
zZx6G}8x!qP=W##&+STh!Sz2{h(3QsM=5J;@?&6dCwa^o##<J;>{D40uv4f8Fq(bLw
za|`3cQ38ey9+1i$k7Y*ggNZl1T=vjL!&&-gF8AkvVbU`KAgFI1m7cX;&L#>JtxE|e
zw$<aoA{>PiiHbc~GRe0Q>ab-ss={1yqM#>_$5)7CV#q{t=LC^xTmuy-q+GC6BC?t`
z&}iP4ML2Kz38&I#g@{LZMwxp11dIK*PJL&pYTMVgw4HQm<EJ+2wW0Z{h<#Prfn}&A
zRu|PWY>-T5Q004EA?Dx@S<H2;br#_=MqlfsbAoc(JHVzYhXqYkG^n|ea*-x%L0#Un
z<mSsz65j149`tj>L*5<qb9JeV0Ux&V)HNLeL`k^=AJYD74LVm|$Bsep*>FOG>b9y0
zvKNxP_s-(9csquZL=dcL8h`(N?A^Tu0HhI?)W$^x)Xm(ESq_V<X@r9=d>r-HZ4H#~
zd#lBY;M4e<#Y6LjDvq+S-8t#(>~rZB;JfAY^Ybs;&#7=5QOnNK@hwdLK^>2L&E44+
zIwxMtjC}mc1+N(9br()P%FKs+^Lgcy^2DW~O@G&h?Pt>WCwn`>9|Ph$s=wC4e?g=4
z3ekLisZU?Z<3o<`vH*Ij3aVOq@=;93CiM=y-{gl33r_Eex!y#KrtaU50{8T?yA+R6
zt$w)?BBrURZJ`EUmaP)ODb^LS8Kpb9asq5%LjjBw(XntTa}N=bRSQ}@XnQ776H#Gp
zv>sXxI|Oc{n1l^rTZSJHil8A#_K|A1^e(*n8J1>1z%f(P@j=bIq4H1x-&7u2WCh-+
zftZ`eqDoiF_By=eeVX(4?c8vv2eh`fQa81pdK$+NKlYRl#8oQn96Ojd=`avm`G;|v
zHPJ75Mz@2S?)!dwY2JjgyLuu{!<DW5y0Gf=QXQj~Da4`&O4kg5=<2OjZqWE?id|Cp
zoM*m;qUL#RE}8?i8udbLbx?x@+%z|YhSq!UJ1}8s5%S?~#oOf?!WVb*%}gZcSL+?-
z*kR{tvD`W>n8rbt{RieeLlh7yr4OWMx1a1wqEa-V;EN*rOcl&M@`VNOicJqcZ;$1C
z6S{2zx%}=F97WuB$hC;Nm5&ns=lezWLVN-vo1V~4CughILr8aWs%YD~c`@uaJfi>O
z36|80xNP6WJ6OEuKyN^CfkdHB<as{#E-oZQDEUL<Mz`aH#bG%$m?)jP^ONCe0Q&yB
zXj-)>+1zqyE`C6=_zu$!Q)BN6!DnW2Up~%Ka=7xI^Z35vMcJ>GBXn6WbA>$XlIJ?X
zNyG$8xN%mm8^eK+Nw4mv_V3qHV+Yx7+&d}<e$`H6P62z813oP2HJjfKvkc#0)?QMM
zx8(eg3=;{>?%~~;kJ+fkt$#gpPoteWJX{h?K8*SIC(dBQlwo!ry;}@z|I&Bml@pW{
zs^dDP_!4Pd`Q0e`Wx$G@xo-KZ8J`EQ1dR_2tOii#Fzqnruft8`HK+M@6E8<)O+t7N
zIj7$E=-)(qx^THUBvDdRaF0j>RKjqOax~=2kS-CM`k>E46op`5D5O#z9)$^u8l@+U
zRjDowt(2FlELEf0!`IUdgF1`f9kStR;94Nx>U;4+G{8U9S)JX4pDseyHr#;Igf2JK
zZzL?{B9xL&y{Lk&`a+i$KeQ-ZJxE^p-Fe9FiZAAYqpuz!zvKB#sFaT*W!!v3$|}i?
z3eD|9{-BYE!7yRoNO$8i>KXwKQ2;aMuJ^e{AG?aG6n<`H^w6I`gx)wX`$1H&O0-0W
zgrb*EDpU_}M*T(5FKUm<IM+|lR5|z|)L)#+bnSr*SmdQ@lmIrCy)`C8RVqvzT5Zij
zVnnSF3ZZR{(Ww?mK9e%(#ywWs3aBF#pS7{FxH3(i@X6~D35sA18hqH8t2mVjg^P!m
z57MXCBDI_YCkYZe*b^fO^~{}V9+o9&g}u~Qdd|)kPj4Du15PsQiMlp4n=1pe{nDQj
z=MO&>%`u6RR7kq)Hd8u_{PO^LJ05a<dH0``c{H3tZ!A_x!K;m>$|V4Q9|?7+@IaM<
zbF!g?zo0F8sgMQ2N(vy&0i9l|Ycepk&j10aiK9PIQ9AQ-5==+5rWtLe0w>kig;0>m
zR0e9vhfb7NR|do9P+ok~k@S>nq$S5{3jXs16+&i{oVfg&N4wRgD|#u9ooP*sSW#mV
z`M}_ttBikF-Vg$ufJh!D!#kLEfv^Di>^7Wm9_yz5o?a*-#8xab_%~EPPf1Y^!eWL1
z2wEc3Vt0N0j9X){(8Tvhs{074<5-oDv7A}cOlyD2z_sj!RVcL(zey%Qw<U7i#Nbth
zkR!c<#~*R_Rr=?(6lxLiuIo9kuz8;p*mVx%Pr~!u@N@UuGA!e=Lu`c|QMqaoNG?;F
zRnr)gt=v+)y!1MX&Oc6(za7#HS!d*Zh5zLLSyTx>&_cH&o%BNfmghbH?XH2MxE<G4
z87%tb&ma}YHXsJU_gAlxkBSc!TJIEjYk+VvE#9l6b-OYsmVhD!iYMEli$BwtRG{V7
zsm5C+2rpcTv7qX=1BB~B;(>um+k2-78_AFBMH?={%QWG&o1zp9WzX#-H&HPPD5IgP
zc%xXUIj2HW^B^{x6tW8fzfv8lc7du*9kxS!rVptW9c&a~WuGT`E+-jR9;(}(5l}}H
zhOPpuVXR@BN$A#`v;BB}h6?1Qt>r3}w^t4=8+eo`3QbfVkzRRUp<LeH-wjovOrI}{
zWfZthj1qw$LLu=`!VZ(X_x^b&L;;dp3>3>*6!_prhwkQwi9!K2CllpA!|0#Y)2Rl~
zN^q44S5rqzR<Ju2{Hl4GwpJ#yE>zl9{Zt)dcv?L~R5z>^SA37=5??Pq09a!K+2zbt
z5x|KsPzSLK7NNZ|T>Q<EQ<(tDqGopUzTO6-R`C1^gR~iAt+n`J-qTl9q3|t+VQh7w
z7f=<iNp+A>Z(fz+tl<N@g=DK2uPU@IfcA4Q#cBY}biU$9J;ivy-9gS;4jtKpswWd?
zeqC>7JJj&gyqfj8CO$%H$Az<t&ZjHCNVF4LbxHUx)9&Yo2Bj_A3MGbfSI#UhaI1?X
zR7s)+#wwLjb#?fX?V9qQ8_naqv}XrSkFvFDVHHZPmA3g%It_<WdT{ncrAvL>hm3gU
z1j6?a7SnI|fm?*Vx$$g0@%3so3NPx8E=#@(Wn>(bCDgPL4{1+2WhZmd@dVP41>*Q4
z*c00G9^PK-|ND??st)a)l<=i{oIBc{KhhaZl^mEQfoz4|cj(-z*G^AsR4fBq->9Fd
z7VRsi;C&1^QkSY*F#oWi?Pm>Pt0*==Nd}{+s&so|+@wq`WHEg-`&~`&vSP$0VL6&L
zQWX$X@w)IvEuw+C<YP}tfw3CYV^y(C%~mqhf^l7i9SG=SyNFch%Kzi~sOMSQ3!5Oz
z{qEZwK%uwKxq_Z}APw=2cdcRHM=Gd-fIA*1ZAEE^1{*7(T`J0&AJtdI;`!#+Gss&S
z5II|$ghpGZppCIwUT|;g(LI{MjNUo7ps4kMK8*(2vwl-H`glBH?NW^G8Ls_uOI=?I
z+6q>Abd}QsAN)Pl@rk(O_jAhOzU2Gd9r0oPr^KC4zTS-kd(Aam&yUj3UVU)3t_qP3
z_wlzZn{P|!srsjbB1gL-4j3P+Ma?u&#5gfMR&!rdEV4h643L7lA_)yr!EwWPy=%gt
zWy#>B5Nq&%n%MI8w&ipvPe?ok$gFU5><k(fs#yZ0Jj}Z*OMz4bKmzpxk8VdJogYoO
zjhZ%&hQ8=jEp6h7eSL`i-{!PcgAQKfc+l~<#nqS>&o~9;#M#%;WPCY0%Q2_I!f=F7
zEEDLkf!gt6)DLEEbupqRJ<57ct#UJ|uL&}ICt0w8o7D0eQF}+osq|LM_3iy3XT!U|
z^*qO2uvklzCZ^k=`<9x~X0#d)LPP*g?xvm6V6D`fD%;?z(jDu$P0v53E8GC)hAH`l
z0u(ms-X78MBx+X6Gd4Aj_)<>KiN6~qfs9+ysJ(fhvPsvaKR}qs=`#d0z=L42{8TMx
ziM?hYe5}PW&UWZccNb1~t#-ik>2GhReA8yf65pZEv}nA1Hqf)AFDcQQBmRnmA5A()
ze&?{V6Kd(&r{0*7kWLFSmcw3B4lscRrNx<>TmesengS?if~Ew)v!YtAEN`?&T<7Z}
zY09`_%YBr~K?)3yMzjPMK9BQ)lBUsrli+E%Oga3a3&3b~;uOLfV!r{jrs@}$tP_x?
zZRKiks|7#T^tO0CjdB&e7ghMmT=tKjUT~uFPF3-VSANyKbatE7Z<16naj1sEs`z1N
z=157+3)3o26CM?<gd*^~!kQe$J^3YN$V)E2Fif0)8ayjy$&e=S(qK#h;7K~;ASG9=
z#ZX>^$+X}Sy*t}Ay@Klj1ggM}%35pdAp&q19UL+?#QI<D??KK6f7+?OH<uM3qT!tV
zykUwtDJ=>B0TAT>uyocBO~!j0rWqr)!9Y-iF>0f`o6(&jCEY2glt_#kozgKvO1ed)
zQ;?QYX({OvQC`kD@Bi@p@O|$4b6=OH74U_xarrSZHjL3Ne)8L+l|G9V_Uhh=_iAUK
z#ht>GDlna{9~bNMCJEvCOWYjI@k*`aKPaRc;Zxs^Uf)S$VJrQAsn`#=wWo{zzL(Js
zop<4$K|aYlBzpD$0;uKE58wJu^6y(m6&)lPVmP^cu@*=j_i*v!H!Zy-XXsZ4;UBDB
zvEb0G%Xp@1X&O)#6nbG`8K}iyGmp|+CH-2&M?w8dewNi#xzr2z&U;;Z04X1mSjZQ$
zm&vsVXsRKvl8ZygQW9i-eptvItx`BP?=7gdzV)6RYAZw2_TIYGb=z87YsnV-bYlAn
zM8wo%U1hcSY+A)el+){<eu+Ucs$rYG|6yU$&w4c|B4pd!L-yK-z_*JAeV868BiPPF
z=eJ7m_K=`U9;|kP9}`TS^L^{pA%ca4Wl3@G`S-h>@caLb1ZwkO8Xp;2so8Dh6S@3<
zS=E-0G7kw7toJd8`=2NddUy`{v=0ixggb_(SySH)ctD1D=+(y#rV<`bOh`@g{6a?p
z7i)gi1poSW`0EG7p%?bo()ax}kHen{hr2b0)`#@}j~BN}5N$m8_WkgP;pnXEa6kCy
znCIx%$0J<cV|<-sLeFF3#AA}$WBXskVIlc`$6L?g#4pAUv?l)(MUsLJXpW8vb50(D
zPMLU5nRQNCJx|#aPm#5!oL^44k4||(XZ*Zpf;wlyo@b(oXX3SIl3&iGkIrO4=kmPg
ziaO^?p64ow=W4a*8eh(}j?Q&J7ka#R7X~^PMxGaMw|2th3AyWuao$|)c3p_Zbq3BW
zTYjRk`^4r@EBf>cI8e9$X7`u%5w3;oI-4=fjqzCPn0O^vP-XQp2<OWA><a8VV!xs6
z@`eUc2P1_)0JdLaLat(aE~4))(s>VxlG&&0Ss8FCC9Nqx%z!hBDY?9<S(5?mxJt?H
z)Q?Xf3*H1RtY88rt6z|t3Sz3^90;*Itop}qW9yspPplzzl&U9`eBM0Svc~pnedRq=
zGE7^c@h@P6)cPm4pA&8yJk44dDjqZZWiAl>WJx>w=~m8_mLmN3xGa4EoG#6pF0-CK
z!<(%j>^4K^ZXnp~T`M~QJ|{8P9Ru5Q1{}Tr<b_Bn`g1UgZll9%Fx+ig(~v=T{8Fkv
z6B2<4B_MZTk*{1#j$;KWCto`n3W@^~5n&_-cF_BX^;>o34qIU&kWQk%JlYV3MX6<z
zNi;bX7BlE#^hYQwloRktW#Yu@*9XE4Gl<k@xhDJc3#Ce&wjEtYqJ_S8MZ`8|Ew=%}
zSzPoVFx@jz!KcoZPmWhR?7x&rJ5f0b=84K`Z_UK@FMaSQc{Z5q&ynvSFTk!|($4bi
z6EW@(>t9hX`&4(OuS%}|F8xEb?;a{w&0l(a|M>cjh{62YYaO7I&O>npEkOHRWne!{
zp7qET>-x#ba|kKuh3MYly#}~Idm~cUj6dbSmQ<D{!`D&5%?ol&jnT9(nLbb%JpA!H
z{DCGEhY`aoaWm0KA^EHKQKH0%=DJ%)c!q02O`EyKA&e|larYzH>ta5@PrgylPaSZ<
zBSmVZSiZ)Mp#7veT9W0YwuSFl?sl+>dA$nb8v+4UCU@o{bfm5vlM+Z(?o=X<jd=}0
znK@Zb0{SXp!vZQ3BV=X=Q6>ZVa+0|PNFWOKav+4%uH5MG?U)w%+ZoE{s9r7-?rqgs
zP=$~nhy9lxJf*#{?fxK*et~axGe~jB4K8&J<xI+0j|<DBI&Zqvu<n77ee6(MCaQtu
ztc(jOtHTJ#jkz;=7pAYy!LMEvBM5;Pk+9d~oX*8Hu#D*6-q6RB=;+y{&#`Gq1B{Y<
zx8_V1+z2Zcp9-g3j)d#CopQM_x=e+;7Wh)LF#nNDnQ1kBZDiEDLg>6Wj~Z`UHuZeH
zKiK@7g<^sG1HFJ%C^1{x>guKyV$I=mb|Mq0()k8-5SwI@_7TUKDBVHXc@LB*`;WE=
z0Tl;;<W*8f?+<N5ql;2OH&pkp!t>Qc{dLp!EeCCi7|d<Q>)6^10nF$ADD`s#EyH6I
z&e4<%Wo~<O>CaCU-$JtKm~!?xl}3^^g6ViP>-$V>6CeTyOfpW&MF;WH{ZPC1M`fak
z4*ENa8+QgfE_fjM>=AsB)C9{~B3izul_i>08*LK<R%hb+2$3FvMrJhTvbD?8WZ8i<
zwbK`(62Po$jaq@=7x<3{hdnwkTKIrtIX$_SsqinEFGnrD<h&$R6a82rr+E)4chC%7
zXIf!bK`6+uC=c}Zg5H9yBOcVa21J6RhCRCpb#l3n@ELE5B1}MYz1rVoUYm`)h$5eO
zeZ+IP|D{hv?9Jb+pKn%8^-dM3<Otc=Hh)?_QpD|54Gp_BQI=vM!9%F)g@uO<hCN`3
zgJ$z{*7;UK-{|(6@KFj@7s4TAZjsRSY59X7J~ZeAe<b)N9eDyNQ<=$^Db!mCB^<@Y
zai>SH#n3=`;lCPH3|KdGiH5*!&=DuNMF8nZ0xGO-1f9GZL|Cxp{(%$*z0J*4PbNnD
z@`q9N1Il>Xls`c0JjQhiEU|nTgCGJBWf}k>$MgvFzYq+nZVi0)jU*I^D#F*2Phmt2
z3Ov2RPa#twJgbI;zmR{ZOaKAc-YcnIpz{3xg#cylwIF+qX7o9HD!TI}yeV!(tQ&Y3
zrGUcZQ;kyk-Rn%Pm#3+WBm^AFxT@^YCCDbb5@wA-+D<WRXgOat<GpcK!NWD(83LQU
zJ{yvwm{xnmrNnSW`@jp+nD#FB31s|wKw$nfBPbWs<)HZK-`q_8Rlnn%3>CFT37@<n
z+{QEmZ!h;&6~L_!qy<#3XVBeIhS1;>^f62;<_X&ZO%~OZzfDhuOU>d#A^;pxf{Nt!
zzU-!kP83QGk|4WNXZ-cC`z(quPOU!f9J8zG8t@^)p#;9SQBEucoW@u}S)_lFmjQv|
z!3@f}s$!G+t#h*(&L`aeQ1*g2Qv$^=OX;fC<J=lbaw>3U)A375NN&Q?KjrpH1<98?
zm<N1FW8wtA3;8Kuw<PiY`J9l)FQ`#Yi*Yop-@~lg^oetNL&UH$YFUr-dD((geG{3U
z^$QZ41Gq_>RffKu`|gt;tfr|4!mon_oD7)9=G%s;khjy0ZuWPQW=nWT4P)xBvN_38
zkg1YZ1^^lbQULZZu@RPll`yJBG%}gJFr%FEY<(P{-u<4d#7P~Bs<$}A;OUJSW%(El
zHn1j#ITww4ylQ{+b%U*yC8q7^PTXK0ZZZs{wWbMiovHq#Z~ST4=<8DfyzkpGZ#x}}
zYF^Z9G^u<fGUyoqc-PZBOMe<C(R&es-U?f;$egcx(W@;uu|H=NgVz@$#;1?!H~V=z
zk59dZ-*xL%;2^vw>?2IVaS6?WBCr{(C&%&!^U$u`SA%U0C#F_$wM<7!{lQB!3U)+w
z501#5<+f*-jw}pOy}NF~-D{vA6{q&Y%_=o0d4OibuHA7A`SI1{eGPV%bd>nIIPq4(
z#{-o4_Q$^#-><fs@3Mt<_+8OZ5(QOyJsUbXKb{Ut1(!rUrk^PY)8Kd+RYp|^f%eZ=
zUGkFWRo7Uy+Tfch*W_J$eXT;>uLIL@m*zn&%)3i=&ib7_vjw%S`CJSoQ0DpOUPBC0
z0rZer{xW3W>%tD5wiq=)zLj&mvJP3(hBvs)_)Ev;*}Mg&O1fFTAZiz!O|OA=-2)eL
z2Het|%!0k@TV5HI9J2C%uv>32Ppimvo*sO(Y%N9A9uII&FQpi#=TUn$=iue|=0nnO
z4To}AUfspDWVi3QtFl#~W5TPIjh6|kgBO*{&VTOa#Z{#gMvY`1%duDUAZQ7(&Bhpm
zI1@-p#9~O@f!(crzk{%juQLnL&g)vjZGoSu<T>Pr20BX61PbtMqNP*Z?aFrPqQ8|6
zTTiTKvL)h)|L7OA;=96i4J*)}_k45DBkBLdCr&kF3hFOLyn3z4T05y291=Ahv#ybh
zR1#|q0=I}N@{0WnWxOw<akKFd$$BUhUtE&!Oyl=(;?7m##;Y#LnD5@LrR#J*2!;&a
z?Ih!F$cynNdycBD`X(A+6nJPCRC4-@UteeOM_i`c+Fb;D{`&CD^>^ZfAJ;=apVew;
zoOa%cfT8nkIHkOQJGijfv{?#;IT4sPec!Y@S_r_r;S&R;mn^@koGc}riqPGr|0W_0
zrth`lTap>J`l9|$@jGwk$;Rldup;3xCl5Ye0&#d($|}EZQuWV1NI+H>vG0fKFv;#@
zNj5Cqo+^K;ZrZkO#Vt4ub&cQSpGchB)ra3ID@Ld&9x+7q{<ck4dZUVjUJ4BD`Ft$L
z)F?HnC{IlQL<R!n3+t^HQ@xlvrDMd|)%mxoVwr^spssCgehQ;AAB8041gP4AAYEdL
zUEG_!JOnAxJL0q}T%CWo@%pKkonWa5LX|#z1KkIhC6Q1}tgst{C|Ta+3{!GrDJMOR
zfnw^-DgI(=wnNVYN<e=GUH0U3AM2eOy#yDXBpGwPjR+L>0k7nNpc_q`9~YREdv~f$
zYQL`4tfhyPyKWtFFR|4^r^@&wK*8{4JYadR;^*#qy*j>H8~L*x{J>NN68eGgB&A+2
zC1Ym*eOga=ozmmI9s?=D{)dD1_p&7+ER)oLjawEUI?06~2@yo<0qxT<WYjdL9QIdo
z?eA4;dMM5udTfm<F;U?~5Ba4H35yeoXNIA`P&TJ9u?0HaMLFY@@&L_HSYen!=0LM*
zsDUmTVWk?GMxF*hchU9BqJ<0!!<aL}x{EtRVpJzoQ8MDgX!GGnJ1H+`B9<iCvf|+=
zt1tr`LUsTik}rbnfH~mKdE{-}NEVttf@LHnD0&(Rk4_s##erh`RpX@qeNQ{{S5&XT
zu!(Mb+#5<=uxgmlaA62@LFH(e6cFmC4oMwtn^Xzj49C5Z0-AR`@n_=zgdt!NHH+*5
zz6sLc`<<kQQh6#`h)`FTKo^H#fRdcvKphIeo2XN^+b#cw?R<SOR3<jYJ)_ZeuF;JG
zc90Q#pwE)<|6Bs)?-lxN&lM5tJEkTH80**Ulma?;_BOkXwQi;vln({=4>GNH&7;Sf
z`lVsEpBq>jYU4)PGDqKcs)P8(KWz5<jrQs$3l<8IY;%$P%pKZE(@yZA7gHDsF9%qE
zkfiV>rQFGLxC4woaus(<9f^yn${maTP$(vg!kpfIl0^5O(8IH5nJ&+9FzSF#yJ%EW
zV}ZKPU%R-WVUQfN*xhHq6$){&qEk%rF2i<+)LDG-SUVo~OPjue`R|G2riXHhLpjsh
zwzo<vpQ9<o7{#zn=jKW-KBOFAl1MP&;sQW+0bdq}NhXcci#e2%@IPeW$AWFwViCK;
z+L%9ew*3@(NqP?l#unXLXwm_T3!ho1^cdz^nVqHxU8m9hdZR!wd8R3}9)Wn3wo=<f
z>$QF)z(B@XU6?zD>Dw2KJ}t?(E|ZNO_b=VDy~+5#2|+>K0=$7;f?2udcf<p6Fq4^Y
zFvC}OQg|OYt0c_~OT?!7tqfJ&4O632)QljCFNPW<W??ZY+7Yn`HR*$(EE#~pnp~)g
z#RE;F27T$d7vf=hO5{euj3H}68u3QG*R$%>aTXuhwS?2n=SZ8n@!9!|*~QXrU*Js?
zHmOqcsZ-B7rO!K;&bu@l%L}JK_RGzh8r{f&9u~<TI*k9R;TrON^~p<siGB5XG4K82
z>#K;be(7KR2i`@138V_cq-Y};H^c%5p1j`r$^g0d#4LmfFN7;Cpp6!I-0)<<=$t-$
z<M{WHuNS~+CaX!|56l<hw-ypE77_^;lc*PySr=1;7gLoM(~K6=?H4m%EWV9c%uHX*
zx+`7GZeGk8Sj?SU%-dSbzgR3FTq>kqDq>y2{#`)e7(Mchl@?PiCZyyrSqewtCOMmq
zXD%gHEJevJjfsUxcdL~4v6pj?SI@=O{59n|O{=<~ZTK6{b{&o)r<9pAZd+Jd_gY51
zH<M3aUW*P>4T$aBBJYkE`tTRh^O&NZRl9{c^R~NvO)TQ%8n^d(j1*2!rvmOhtXRsA
zI!8<=hc;pm5;r!!qTqt}Z#I^>a7A{tn7NK+(mrgSFy0g&-PXGzEHS+Fv9Me2+bFrk
z=ed<<xacp<U~wl49RC$*H}h0ETx_=ndO3cJ9KHSc{pMdYvGs7J>zTje--neFWbgdw
zq$W-1>MakN!Gjl++vDHYla#~hB96%)?_I=SJf^u$AG&-@(XXj?^O5W<Pvy53#lJbo
zaQezEE;)5yEU1Tk+=Z&#BqnhsI-w2tL5xv&1c<4Nep>}h<fFE&jC~i4K?U6_et|!A
z<DzZi@^)fKCICg(m~gwb(&3skCo8hZ)ur;)_f9Rf0MZ<Ft4Ye7^8sPld_O*g#fUWd
z;+}OAq-(V~ewHtO4rb#;PkHy4_Ro9L`JH&YK>$ZfEP}$2lY-)QPL8*QoGU|xCz6yq
zm^ZzHN`N7OW#00yQS#%WSiCF{i9CpKr05^tkN`I8)TD?&FEPa_af1u``_3!rxIR&4
z6Lhq*5e`loi{6})vs-oHOC8>jzufrUCgxmX+e4eP2H0B7OcwuR_iQ;c%4+>9!d{og
zW=(E`3D*|ppUmB5_bPAe2Y4eb-rg|$hbcv-fk-A?JcUJ%##4jl-BZfav(f5{2iA+E
ziVA7usK-G)UzFuZ+Df;>3?wC-O%;1m<0h$;C-{Y#puJ*0r;;4n790fmDdb1CQ=-$%
z0=Kb$tgBqMwWa{PbcI3zTdc_s+@EewB3WKe#hTR9c>l{_56!UuJ{-Unn_ie}G?@Mz
z5{F=+o|bM5nn;bH_;v+&P&bg^rj`*JoMGX;6TlzCoSAO^awvqy+3{{9-$(5M&s>$C
zyhB9f^3)DZxVFPnaYg%#-H)(cL80Ae&dyiVae+Mme&dulhm6K!@YyO&Zg9E*?y|Z3
zu4Pt+g659RQ|ii=2Z=;&IU>}t4%FEq4(59M?;@Rx8C=Yrooa$fqbC^m^=Q{PrtmSD
zF%_AyBYBsLxk=(AUvTpjDyr~f0gpcF2#;i!R4b&0)C_FX=^xW6CS)hZQ5ocXO3y8C
zCye0?eb@%hW-od;(3K6uX1({XUFLGD>uH3$<aB#rntqeESTnX2z3sWA?MUwazL<0P
z`_U;AecvL3yEf^dcdnT^!!;ypvEuRg+OLUF_oiL^KYSp}e162;;%*n6$1#5ay1ueL
z%e|2#Zd)ee3<Z?80T==Z&b%0Qem}NwW&9rc_<h9T_QT}U;71uk`5(QVHEE7$@5M#Z
zfKC~Dp4a(t^+_LTeqO10ezZD@^Y=98_c&xo?efU|WJ&)iIJdvhbEq>1@9JnQi@DT;
z8}N?))<X8jOZYlJ!zL4m))7GW>LjYp^GDCo*pw%}%F#EvlRqzGzy&Ak6(^ga^wdwh
zemkU-{>;ZG7K%|g{zc+>j?|}o<H7KSzC+lJ?Qim3Pg$@Ct2Y#~FIOTIRNpAh%ok=M
z5*f>iSMw_b``{rHum*eEhHdqOKWM0+Rp5QNRG3nZlBw6Zy_3SSj7GEdMk_u!3J>u?
z>-wH1`N)7OsCv&*+H{E<^Ij+vHz?=yZ1_GkVqS1(_SO^;n=UoxV5fS-ez?l!g6$B{
zDReM_38}D|>9ak-lvKo*s>3f@5fL)rWa%O&=e@Fhvsk0A#XbTT(S6anp6~3`C){rF
z*<h*$d~OcY>5c-~mI}B!E~VzCr54yUi-Hnp=*xrdOBf6n<2=|#dnT&SYV7jF6|c|@
z%Qd<1(uw0j>(x8+H>4Bgm#(jbY@;r=`Fu=uSf0xI{62Z<bqDZ%ccuOG>SdG`G%D8Y
z4g2yVRtFtHYd9MP5l@m%s107d-<L{%_E#2BrEd%x-rNnb8ZurPpN2%;vF^eAQ)SsQ
zTgfISUpcP7QVo9L*>J_@3FHI8_*K~H-~Ntq^tXKFFG=bsC|MY)P&KLkUinj88V7S!
zSouhwj*u;2zy&Y0BPRazCNTxU@em2-3~W?Emh?tz@-~;8P%ceXEG-*cj3Be81Ba9U
z<lt2{u~(8eBMeA_mUTHq#mg%KD$8wxCLV4zmv^pX00RNNVun`Kfdb;U4RajTp8_~1
zI^wLZLN1TvjOK$FTY6U>9cjb`p>SW5hhE7z;IW&qAu)gp<=7%|u21@O-9Y})<jOv|
zG#OR-(cWvzP0lgd+og9F3(J22K`FRhGut>x%XiP%)C@@*PjB0g|4lend>@kkDax^V
zM>$~<Y*PPk0iUN68^9jWI`kYoG%d637;yIBZ})V7O&V8-)4H`)zC#F6fYY=aus4!H
zUno_OPggJ$KU_#dDCvIKPR<?BJ;Mc7h%h9=5crp56-3hNNOUfcIcS13vz5F}j#uxc
zLej_LN;WV|mT)3mtI`)aQ^M)P@R7ub4GN<5vAh5S(iHWja(J}l)n_L|OH5Ds)A0}$
zndLYAnz-t-42C5MusFC2?=wBVFL*{{FPV{2_!UBZlDeKhJ_<oFtY(6G6~)nSV6XR+
zPz(c1-h=TYi;cq-NkbVg+FCeGdxDlI?$R{A);OYrvI%iXjf<S$n?DLrQeA98pv^u6
z{~|HHlB<xQV&-z8WwL?tEB&RRkVFnvK5Y!ZnTyl$hzizZV)4d+&WcM{v0_S;ljWfc
zkJ*;Gnk4jp3j0g?(tACNQDN{QeEK9+RkP%)CPP;JPkH%#HPK1`-S>{>FC9(@FfelO
zv=#k-OhVSa<C;UW2K?L$tKsCy(Ym2qp%JTkSHfupM&o|OOGe**MbAC=P;!FnAt*MP
zqKTTH%*643%Ls#)%@S=SQ3;3tK$^Jh>c&wjyxR1A;E`r+pd+Kgl%i5Z$)se#Ce9EK
zXl_dmzjWUTO#r+%F(?pz?OZ}k9dIXCM!cuAP=bwZA+|DnV#6}|sxW3cuJo+~3JT15
z-cjL!ND@#F!$+p5LaE6KqTwDrb6{Yp(|HoSyt>S=;+<*9p4{ssN_1_hH4#lYcHYpi
zir*q*v0gQAT0eDMLg=7e;~S=uxPt=d>ee{F*P|ZDhq-6L8DT0)>jS(v3`<K)YT9==
zzM8!|3-D*nY<`}GCB7B!w^M8_eQ8)CPkE~g&$vlns+cK-e(TH?xL{DHo)S&^)FMpf
zrGJa(;;DAo5sU0V(ywUtY7vHg*MpCXTPpey2&f~=+JZd8XSk*KRhgbWtjYpdd^Ri`
zU;V&lurVEDrYOvOUfKgNxGUn<M>10j>C%CuoS{$uh_QSYm@#LW5(S+%4!}9o1!gP0
z89O6qOc%{yW+JmHg7f3QlD^GQSO`tHimaq9v8h<BFTC9QbMaaDr^VH``t+dFer^>f
z;cmvONdGsNG@Dm8_vLoYPVrC)Se1WZxH(BY9y<)F?X%2p&jd;W>&gG>jUtg8>&c4Q
zA6Ll2RoJo(4?i%^1}-*=DvBB)7AQnt^qS3U)(PVlq#>$A+CNrJ?Z1>d>iQ~<m|07Q
zU+ky`PD&iqi`rq7^$G<l{~R&$J1SfXcshUl_+mnde2sQe^|Uq)sq}*I(J<&(7pWJw
zCsK+S$P1bO6#dwh>yG-YTb2H~cp3Qkjf(Y;zu(_|B9hS!5WbHYlX@FUm3D}+e1r_x
zNi<s~)(E$0CbmYT2S`zZK0XUUqU?lA&$U9d_#eln5jCwZ_S=&A7LFLwQqdTXhtM*I
z;=Mt0y!V%j6l!9kc;VNkXjB*dS78~eYcdeJq6`6!7|a~ZiN&SMaZZHW3Z9y%;N&MW
zOQ*pI0|7Lm3Q4fg>Oxvqzdm|xyTm7F8&Cr=aavQ&*dR@Esyix)S#OWzaJNAaxmt$-
zM%yAsQ0sv_RrF}wab!aps|k%Ya94}T;F0`*Em6wH(EE6q97*`dHbuiXIpi(AI38to
z40;(=q^?$fS4uq<m1bA({8UBHHnmM0>>}_pb62m7IBXYeqs{A6V*7(Losw1e+5=vv
z3H;;WtOF6Ti*gdO11vu&h$K*u#rtFPbv7mw#d<&5>Q+oY5Z55vF7>}_vIrsQs2`G6
z&-;_QEOq50^B}S!CJlcZS@r@bNb^35#KI|k$v;iW4FDhbyyK$}q%o4%jL_--DJ<L3
zkR*Y|;<#&Ywkl7~r8kz4i&wzi_i!^sP-W#(n&Td}kNfLRG(26RVTLV6Xy5dAT1MD>
z=%}vpW8Z2imI^hqi@8vAGn@0@&#Hf)PDQQ?vH26S!tzXwGqi>4*7O0;jqQ|TN;3X3
zy=SR+V4n`_=e#UsNlU!4#gxU!QfTr(pWPPFuvCl&DSNzoUNclVejS<$S&aKfk-n6u
zhOSJsch?fqcsF61q2sC$dQ0$#Hwr<6qUag!aiLl{Pt(RQ152M>MNF+~5i&1TtLZVG
z(k3(kNeUk4_1n$Hy~!YAnkLkcy%SRieEf<zsog`cOyipa>XONRs$u{xgjv@Fm8#Fy
z2vu~LpbwaQU*<Ru-Kfu(f{jZuh1?7m_rGUav2-CbkCFz>X7|3o3i)NUFGEael|&{c
z)S(s{F51rdS!5`IT82;uL1{q~JLlkff%7H@wa&WxYLIS%H^cIC>Lbx|qw_5*bT8*!
zsy*vMYJ{+-jFNcLL-vT+uDnw{?R(0vCKDvaMuBRbFP{xj*0I+9{J-=4^S9#vo$s$Y
zh=y+(-p}_{ZT?8Qca1{-Gv8-3(TW<*ny9*P%iieS7VQ)FQ{Aa>J~}8h2<at}PYOeF
znO1z~!<|kkJAXO9;((I9oDO&#Q}`?Qr}Wit_ihvf`|bAU&u_Xcer;>za`Fy>#fwas
z5Km1v?kItRr~HU$VT{u^C{JJ($V$ZAXG{`kNyG#!QT?G``Dj(njT`vE_;a?_|JM7m
zBu`!$+<v)~H(Q$ZQ1?&%YY&73&TExlybu4imTVWetOX%KxD7u&y%VqRsv5)xhQU(E
z$J+Wp;t{Pq+=r3Z4;R{H(vasX=&#)-P8PwUji62_r|r|Rw=2#*A~kMb%q4#;|8@Sf
z>xS`@$pKE~U+VJ2EmYs)DiO;1B~WXJVGP#RONPZ1l#5o1OQe==x=dYOTBN722QHd$
z4CI$;RaHF6gFcCp7!v0iUf{c3USnw0PpSFEw|lm~HQV09y=AQL@Ot0j*-cUw%~@9M
zBPQ4v0q7Oa^O}Or4Z*{f1;#_Lo`LvDtawBzw0=h{Mw2atV@LTW1gN3++BZ7O;yL0Q
z+4KCDZLDLe#p&z*lgzGL`CCDX%GP@1ZyA`<n@4ND%)J-0=eYwke^Gre;>iPvQOSFE
zWDiy@h~C#r@_%oipx{7ENom4x_EGcgP~jW@wl|-DI|jU6rPem0&Ip0WfBGxOo;dqD
zd0iiiLjpvtMM+<;fj(FY_>4*?`$XO8V_<hmMu_}j&ZtYH?-%wAFG?8iIj;IB`O~6a
zMqLw&<dAD&d<0)8GCJO%`NyAuAGf6{=hg*&>7<D0fhfL#y9>>$3JU`i?nckojX4W!
z=4w0HByP4Q9((}LR2{!e`Coj&CM51b7Gn=;wN$r|FyJwmP#%zArTZA-G_`u;uIIa>
z?cZO>vpWT$U$vkm&bGI9H)QH4u^_aE-HtFikIYepq3&qAhQX%lkPeaurWl%sg*T!7
zq;LXI?}Oj(tu~}BE$a$5{2$=3<u1jq5d|9_BQ4>k5mtmfRs2|NQa6OpxEYCstHbq=
z84EPA`gZF|FeMfb8`ch#u)7U2#-<I0Wo}Vn(brFr(_<`;TQ6Nl8s|{gW3h#DMNCRO
zkv6p-ZMZORsY^pRrq@r4)*(&n?@AWAu#~)ITEf%==llcQ9E2q2SOyF9KcR%$TuQ_(
z)<d^gKz&@~p{-ch2IMx2KLEb#SNt8v)@{;8YIH+t+E#jLLwem-W^dy$HWR-3RR+&a
zjsit;z99?Tl!tE`+MBXt)*o9Wv&2)#@5SB`Uo%Tf*eM8LP<z?(Hg+ljn<`;;s+djH
zJt8Fl9)qqtLmXaulAQ)oh8ng+y`e;7nngJbqdc{)ga<_>P-vEIs_$XfckQ$oB6LRW
zbSdriIkxl#><uFAsIEg{=M)U)#RdYbhU%pXMx{p2?FH3~rAB)+BT7B3w+uZ>J>%`4
z1fvYIOHDhr%zEw3N4LzU?JbtJEY|HU_qHrg?VsIjJ;QUb0&ZJTI#@s4wuU>{aBSNM
zIM_;T+bTHNsc+lqJJ_3U+uJxexNJK-cW?~Yb_{cH!Z<*|%)7d{h6lL%7&e3avZ#vf
z!drQ_e?6`k3gGaz8wb#tV-#`_dY3^CQfnzAE-6EtmU-?`uPl_gO>div^e~n)%bfP0
zp4<B}yt86+bmL*SrD12hb+Alh`%vWYGK|Hh-vFMk@H)=eKR|<lW!9|-hk-?bp?ng8
z6DBnM6Ojq@>2wS-HlSj`QylDv)cs`4oq(|PhQghK1?0m7oLVP;p7*eacR8ThoZJCU
zfqU#hqmCidD#36xJ>O0!&zOIto{A75kU#-;@K9Tu8dJG5Wsw$82@5*ufp<G8q&Nk@
z`x)gR3}9NHTnv16Cq2orsbmKO+)g6gMBJ9^3n0C+oUA$!DJ~946cx@;B*&IhTFPc9
zT<K)7&@&zHi5$8yDB%uq8#=YPSQw4RpVf=-)c{BT@I~H33Pb%u#$sBKuukM%vfRzo
zc12-D_Gt{9wz8<~nf4?*3@6Nw1+N&d*JZe3c>oPhQoz{kxtem6m6baJT(T*a&JLUl
zg3%-QceI<kU0yCQ`Z%`uUBx<rvu{pT^*RP2&Vf)RsgqE@?TxAoq=N3`uA8p=^WB;b
z6nw$z{b^|m-ezi7X(Q%A16%3a>AmW0=H{1nHA~9wD;ylZU8-9)k;4dS2Y{d5n4vB~
ze1F`F5MXCC9xQj%H?+514`o!dUzmi~2}3iQjJkFKJBa9mJBxkNzke9qe<8J?AKe@N
zx5}HqO@GDp?t=pTM|e^gfm^$&Yehr36>>i<4_HgYa_>tg%v)|w<0=lS#`;!U3hc`$
zRGD_U8DKbv91f%>s#VIW5g0DD6dd`>o-zV561mR~^cb5YxmT1Cv!Mg(s{>Hg>84IJ
z=v2>j{QH;OQ6J2cot4OcLOlWHmiM<fLJBBrYpP4lC&<Yk`h~xEBDoF7KF{u1V9njN
zZgDtDDqH2EW<)U0$<5LWLuO&`rX~7E86qYFFivg+)4@O3;XSV?lvvn2%!PVRljW$y
zLSN9o=MZ>Lyu)4h@Ua%zzOs-<VA|WYOZFc?4?`^;6M(yxljaYM^3y^bDwd7HlA1ch
z7;PlaogQE4dD_5KN6nUv$5F@VFP@p>ey-xrHAjPyLg`At61oG*UquHst+1mfnKk>$
zHBJEDi;S{!_=8RTS}$qz*$vlZ8S(0#@(|CFL%HXPMD4*e&wl>V56s|>$h|p?=U)o%
zaalgl-t*Y9=BiTl`>CDEXwQLLG(iKU248*!-*;Io4lL;VEB`@v8!t;Q5JSoP-~IEh
zcF(NGE#bLlheCt^Vylx|BsGj^m}Vf`MsqjaeMgvpL-nV_`CIY=r*aRpP|@)}K5~*H
zCzUPL@1<izua5ogCkUP#Bm4%d{*ATspKOVHKffR%`cc+rs{Tyr2U3$Tk0dOdYc@AY
z?rx%)X?_&VD0R&6uXxG)J5ov+I;nY9LU{j~y1DSFL%#&F;CYa{(or!zydq#gdo#rG
z%UNKQ=k}mxUWSi9KYCNDcp%S}0Q>+ZBsB1LKOh7ie6QzwPW=OlPt=P~H1IQP5Yk49
z_@VJ2Cz9T5G+>g<FzC5EU+9#u4wS_+weYmG{P`$BD0fcpjB^C?wxN`uvC8T>vnVxZ
zUo>|hf0KZh7Qc_>XMQfTeXe&W4^@s)U_m}oAG{ommxwTyzdg8|-XUcTj&Y5OX+FLz
zjU0j9Y_9|iLIlg)0I-63kJZ(m@y`P?PY9+}e`@+DfE#ExdU8>Mg+@M)Jr8VP{C8?)
za#Xn(#uad@fPBEO=yDc5WTBi>gbFn=E+Q?AF#-`L5(CvuH0~d*8ZKb_O__&PfcyFi
zs^X4T`y!is6|Z|Lo9eKI=ZBZZdjsD!hWb@YD&VTcQ}zjZt=cSs-8zCrD=WU*S18Rd
zzFLW<ieoO@pE)hj=c<V-a%l>n7tKb|z5)$8YPPOmb6-R{29?;0tR`ZJZW;-}L*!17
zDaix5R=JIqUlnyLe`&fWGim(mb~ou)zwIg8G+*0^F|`FNqlWADgr9wh<CqpEv?jLv
zfHLE37)rZ%VxVumF<|{>S}%807dmk4=baLA{xo&$o|4{BhQoj|cIp$kGl=eI<O|Kp
z>Lqd{Xprb>v`B;zC>+6i#A=o0JB4}1E(Bf>*nUB|tcsX`Mm>pfNvdH}{1|WM*5^6|
z9C5vtlDLJDSAOs0{G$wC{DJr|SNYTuc_I~FdR{%L6IKpa^BKBuLA3ZvUh3DqQYL;W
z=;iBF4-TjjZB-M}F!V*`QAqrX9P$$dvRwHX{0OHSb~Sq?H74S|EMkB<M~RBHXZBiN
z3G*Mm^fc)4Ol^yK)&k#cjc{zS@M-b$Z&5sNb=MZPQ0CUMe{Wq)kQ7d2GYLS6HOD(^
zq=;!KiExm=tt?Hlppx55QzS%i`Fjib8~s$)x#~|-tduB~OTo{+gO1k~x2vCB<5KI^
zX+%YRgeo<b`xDQhGWT6`t|HS@ff=5vXWZz0%x`2pC|NO5uiFLd^u!+!;0Es4ZW@{l
ziqLV&JSU*|p1u1Pu9mdnuI+{L4@2n=A7TYD{l~5zZj&XosM7FxpOZOpSCeF_o3b|q
z(Z!<`A*3o+%Gf>*Ekj^u8ez?&_GP%ak62H?Q?eR8A*z2~JLt2H-%au)x|S+{5i!><
z<Qxc-%m^Xywho*h1UB`d8#sq_RR5Gmqoc)c8v2rT#UwuvuGHG1lSuuwbx|#5YYD2w
zNT(@vvOu)wK{JS;Yk$5gP_ljYkMX77u{lj8Xtsf`=dLS9qAl#tza$I)QWH<155MW#
zjsA^PI=Uyq(nDY<uUvh*5+bXT0n^*M1Fg4ivk~-V8n$AQPn(EF`vwcNiQj&b`mDn^
zqC*6Eo6+E=?8u_Eo%F+r?6rB}VD1ol<b(3Naiy_8$9*-4kGEom_eZ2odSt_-qR2eP
z1v1ylW4g|%5}byf1qSsL#%K@0v0e{?hNDK-NrF2qFAP&>ZfWF<q(g^EeC})T5~bG!
zp?vNiiA`RYa{X8}d#%3^J@C%~NEri<_!v?B_X{jIDycBfFfg!*<n1QlTW5N{U+{Ou
ze=(X-DMHchQTm$?MmO2(BVj`cxv!0bg5d{KgSMJ?VaK6gI0@Ho^sy$?^y3CwRGqLt
zF+)jz<ql%>x&FP_9LWa&i@0hMk2v?gZjF{rjOzi<s?YoA4`U)nn+!E-`XA_hP*2eq
znP0?In2@#{V``f$pkx<%sv7kKl4*l?2Ll96Qlyn%-WZ@|<@}CuRFmbPrIaL^MF1mU
zC|;t_@>!CNQtSh65oelGY`FuYyod&ZZ&W$7^jPYg_H<)7>Y=zkia(WY9HXhJ|9R$f
zksRf?zD&t9S;T-t2*;_jGTufXY&_e~Z`8Z87saTgXRS_IE+?hSI1gP;v#F4=EW&%p
zdh9e^YKNrY#y}iD$B7#?xc%lEm~(jA+Iw-A1VAFhrHY~{+fqt3^jvubD0WlaU<O*B
zh>8~CKuS`f%IN|FPgf`M8G?zp>CRne2LhCUQgi--`aP|(Q4Cs=lNFfP(E&SuCEM(h
zn6+dzxpOZ2TA=&Jnum>5QFBffq#|8c&a;(9Q3eDuU-3W3%2uYj1b>jS{8FftN)s(p
ze$yH7Skd9xRM5arP&%+0IhK8+Q-~v-NzuGVkWy8#gXowDpTDe{>?P&z<dlqsLCYm8
zG%H=8N(qQ5)VNg0uj0SDwD!<bf}7$rgRoP%WLYkSEv_%w)^M)ht0~EYQ66dJB0m;f
zPn6;!PfxH#!A|Nbzkt2EX&mIwA<B0>=<51mlE7PUX<c;)UtjD^pc9Hpr(`${jg^b&
z6ke3V8+f~-p*N6oYIyukY8^Q7Np3}81`GP+b3`m9MHwMgs*WtBlgnE+;A>=nD?ytV
z;AwCIPoJb3sgouRn8aeIkBsu&5+$>YG7~N}rD_qJVp-SShhLX(v>9bYj3R7wFibxp
z*3;}^#;|4c*{jI16V_#^78|AZOXvv=i2Q7kK3lMR>;7`+xP)6?jAiVi`-!B+hFZHz
z^F^&0NW$%^Nw%~!V|sahj%*671;6Tc_)M)@Opa7Xr(Gu0@s0mZGRk=BNM&hK9I5kB
z#3<cw{Mf2kDt%rz77s#GeCMFRkco7<x{#ZV-Fs~EL(sWq(V<3jYi9OM1+XoxER)=H
z=PwQaz#P)%jD(uw`N~O=tY&a|nm@n766@2f%T)kNo3cU$g0Jhn(-TH`BN9>S+fm`i
zZ)a9m&)sC&UTPb6Q{o;q`r9G=jBL}fAx#|@O3!#|Ru?r!72vdU<NLNF<C*b2@dEED
zEl<Au?6N(K>i7LEYOjdNNug(7T9pCJrye_c6>IJo2Nuo!STyfiS%LuWF+*g-QXVtw
zNwEDsBK-u+8?tf!vjL^m@t;2-y!v(Pv+=ssDS1^|wWpgb-7$E@frD~WV6FR|YS3s@
zYxGuY{ny~{nO`5M2HZ_@R_DV%_i)}7oiX0eSW~iBi4W?Dy}uQ!p1}#IarOIyAJbVy
z+&+QK@lQVYLR!|cvD1$Y)XIm2(N%0ac7BXcLObD6My-U)rf$Z=nfoSn!EC}@Ydz4&
zY|6w2s^o_~rBK1@wbX2;-o{Wu=A8<QLM%G@5yucHbSj#jLjljKs4T`W%!b%@p%)oY
z7zHX?Ge!_3?-j0Uv6cYVP0DjIQd=BF8pS$?Sn;0jBmZkk4DrY4x9`fynK?F9fep%e
zkC~XF9fb1a<fh1mg9dm4-5xVMbL`Fi2oVk<*$lgmhWtXpS+$*r5H<>GxVVXGhu&*N
z*`cKep~)sWcSYj}sE^9eZ&jvf==!!Mb*40U3ctH($$0^POzw4U^1C`M*tyeZitSUT
zlV$stL3ASy^Ys}Kok<93f((>5LDs-QhH?Tz_{1V5#GkT^i&G!tO@zs!m!uNo?p1v!
z#GLxTAH!kLJ*qrCV|f%t&qDWB(5zPp;~?ZT{{K1Kxb=O`)}6&>^*J%x(CNQ9+e(AN
ze{(kQbdtk6mQbhOCp9L?tPfE_|H;|lN-eQz=OyE+&PtKJQy4#J3EYAvF^R9A#nP_y
zT;l(|S=ccD5jv`b?AcP|q<1oZkxEin(QK>`7x!ytO<MwJm9l&pm(Bd$ljCl#(~xy6
z-8UyCXtH{2oe>4?9AZ${%eb&ST^baRU}TffGX0n8R%~Jl#>!y?NXoDu$WT!5qbG6x
zv(Q3a0t60!M9$+BON`-+HPwfOMcgz?aJtjNsp(9Ui1odUp-PUP^y$h|1HNMC1szl8
zsgC>3wxl0m@$1HTCFuE6Ar^B7b2?+GLKxuLnqyeG8gkT>rZJm4$2CF&&mc1lsI`iZ
zOjAqNOTuuy!2$Z@{rRZhCR9&ew9>So0leB1X`_uTc-g*haeOZYdPiL?OZ^-(YAMqA
z2bafFe)DmNH&vI46EB~1(qx2)p#&qcN=ZM~xGSK$bIkov<@&CTN|oXI-a4Iyrdy)#
z)5opHNZTuQ;f<zdhk5Pcy^sC#yG<_n{ihJ}WnU6Ei|UlCLZwIzsP+j&iGVseexxic
zkcR3%0x`y?N8^#$w;tThbiT|kY~ia9lF2Sa%r6DNFCHSeV_Pd|<Z~!{=)Y#jE#Sw@
znt?aDQfBP3SkD^Hls;=t@G&};r-Y5uaF#$m+BuFIMb;|87Zf<m#FH=%YBanl!y~s(
zhF-Clkt9{vNh}-Wka~cTa&XK+p&T@LA)N6a_^X#`bYt%ns9YW!tp`eW%a)<Yr+J^N
zCTof)9|V^1rbM4Cs=g_wyG;KUldNp;Ff3AefYBsI>aGBNld8!_=)OMW@}$pnzW1e2
zlXMfMZb=9<ENS%;FzT-Bmm~T}SOnR7uRUFn^qpZ7@g?4ezGz(jruE%7p~x}G_>;su
zJ4@`RA`89OXOE`Uv{_Sshc%%328CIYL_fZ&JVD6(N$DB~r=-Vuo5yx6F}A<7GR_~J
z@$&Nd__CpQ=-ctq-^F3+A0VtN4Vsh@x<eq{8#|)!Taa_IqqQiEN;*6*5se_wdUo?=
z?8c_(*<S}EMv2Hu%escS8qnBb``7k~{P)jT4u~xNM11#Pf|mS-`y>V^$;rQL3{)*c
zA~=EB@)OGod3LHmyt-bW>$3jWvcc@u-`_O88VtV63ytKJz!t2dDJi=W$0vgrk%>&G
z;>U_UZ!aMVo`S=%DyKR+fA*~z0~f#KUpBY?{pBs&OUb7S!$jL3hB5}NiP~RDHccJ5
z6B&IqQ?;s6{Cdo(AJhi_Q8@0Hd@JCz+0Fw0GkNt-sYD0z<4wWsmgwE@se<5(uMAmX
z-T2g}d_aTA*MBcs??STIg0II4{)Mwg&<pn80Dt}-t^NC*_uqEyPl97FbzEbqqrL1x
z+@bxmL(mPG*BxaYp0F3bcpbj<F}@ligkVkic=b^3n4n09Ky8wMSm)S9nWB7~$x8RH
z;iQkrv8KbZg8F|Ep}BUuFYAckfC*h|i8SutKgoO~>0TsRbtHMmBt?9{`<Yrr9q|1z
zu%3^!*^9Kjj`V&3+QUaS;6*l4M>c*;HpNFi=S99)NB-@Ye2tG{%Zp;Sj^fub#R(ti
z!VC1f4kVof>`y@BOo2p`Kye_&>{U=&0=V`Va9LOsS%=&#9Q5*}6rKc=1F1Z}K$yJA
z#gjpBh$5HwrOcF?ay?pm%0Wnv^qv?h!5;ZPV(9SpJu#Hf-5W}YizB(8V&hFSR!Ks+
zw(GT?VtPW2TnA8E(`9)-;OwU%)S=1Yhur8q%;EP<H~}S*GY2QraKj(uO_8WD5pff=
z3$Q$b3_i@7@+*Nsi0+|UcM3Egrv%HAA2RoY@T?g)@gDNx(F;d0eww0gu1Dic!<SAT
zU+KYYcK|lzpy2}tU;|uT0dj2xiH-|pN!*9)iwR7}?j=9|b^?kUVq_v`ywG#q<EQ7f
zp`Ws&B^O|Mfnj9~V-nwG`ZCPQ1ZVYeVE)6N&OynmdiuzdKVL?G?$I=x^E8unHNsJ!
z+pyt{W&=&ssRG+6yZ?y@0L_Jkaqw=!lqjczrs3@s%zX+BBZHi0@my+QoFfWs>Gcf1
z6du2YFih35-1ABY_sdM&UG90MAxMA%cdF1muN0QdhR0m#$ctOVs}gVQq~S-o!*lkW
zjk-vHlWMMJ8i{u|1BZq}@zw-o8}B5jgcKXuS!c>jP|)jX-Y+}6Km+(^PdayHHs?Y5
zic{WWO5vD(K{Y{N9HzT#IcNsEnxPN>Qy)<^LGXRw!`VouDQ|>B)qfbqM}8J8VgUE{
z5%6S_D5!!58-T-n#M;+|JS$n`dO+QrP(ifhKFP659B7A!^I4+w6BTZiMp5LtWM8Tj
z(U~yF0G26Olb<TU-6+VLB9e|j7pEc{(OB&?BQ<pfot@$D+Xet<<sR)yaP~^$64>4}
zN(dWBtYJju1>Imm(o{QAdQkC`RL^oM5k|ON9+iY}no{<f^zJEq^9*k1D|ZzxKQIIH
zXi^lvOW}g1@_(cfdzAKkwm~I!f}0mA__PTne+)ao%Q_?w!r&3Ah6;$3vIvks&+)UA
zw~;SZHKao{kQ+?5tIQrFnjiMmea7Hv?y_A?lJ`BNha&WRR-M#Qdks%(E)Cv)uH&hD
zsU1owNFXoRFT&Zc^J8E8+Bf>Z=Ft;JH6mdhcgF@9U=<Fo=1&*RA2$3l)H*Xw&`n>+
zRg<CMZoDzM(H&H&X-q^_4qASsdDxV%4p(`Vw*S0YX2eEcqe7p=$Pgdj4No(j1FM}A
zrYBvf#W-WMoMOCKX6$+K^ji}$Gu=?0nk%AQ_Xj6ma5M9{ukq_%<Md+FDI<e7V<vy@
zq700j&6#%i-OHY^Qd%;`m{6&r57I;Vnl%=8S%E6t$-;pW%}+<X&7|c_Qo+jka90^S
ztFrQPc(u5?O>7!FAABA^4bLRoN@VB4SzBI?UgVfZA<!Y73(<lrh_-J(3D(T0_p7jF
zv=Ir=H_F291;L?eI3(r+ngn*7sv(ZAYC#UYx~F>?3EgVB>0J7SBq0OzbAnn~-A3vn
zN#>XEC9QLZm)eaqJlEYG3}H6z8Juh)sWmSZt6Gqnpb0J;*Jm&D8;F2TRV)hi?)wSF
zh?ecRw17c&fCtifF{Ajn#W}=?1GVGIiRZzKb$gGmE34!tco>~=X}G;*n|=rPrG3E6
z@x;O{+(S!9^B$GxNn-zrEP8m*n|I!8#(7?@l|66sMf*B2^;HNL&2wDTb7?D2a)oGf
zM@4+mI=*SeX)ZT@H}?mvtLh_04U}GA%UzG`e4-wB_ZUByY<1Rp;-a4cz&*lrkuD@e
z+q54!PpfFkl!igwrJW*x&npk<JrrNeaJ%XAA!w*6_%Z0=;8d32*9z#ax1M4uvUZyy
z`MsbNw+E>QSE}8eGI-F#{?1$547Oj;gLOU=yg=Pm(JD8nLKMkh6&<3@S?7|Y@&Jm5
z6ugFw==K;Ugz$@Hx^FyrqxOsAg$Q!;iaA>`k`N!v;Pgt+Imosoi104#)f<*lQ(6{F
zF@<Vwuv>IurOmPL87IQ#YSbr&kOf$s`QjNKh`?H3hS;QTVJkCJ?P`2fgeClgW^x>R
z+y}R~KkTtam_)APxOeu7zSsV^;AnBpXxpYJ@fNz_&*8Fg^auOb%c40rx=He4Ks$X5
zV;IJ)+?Zk!o@NsqyI0a72I>;CCdf?OzY6ZL!xXnI!u+G<{rM!?k$%^{Oymjti?Js-
zacg2)!Y1*=83`J=i^l$J7GiGsV$5x{8I8XG;<(@9ZboixyxpgI`+_bInw7+hO+l_F
zWa$D?qG089m<_jmqzRuM6GYbvQ3A^@P!Vfrhqh$FZwp~;cfSor7hy`R@X;Lw1daW%
zKE&Ls^L#L0rJs<oH=9|n;K|S2nMJEE@!TBiT>DEUif|}+NjQlWsE-pH&sGg@vw$)|
zvO|(}irDj8SZ+g}DyV2aVgn49SPiTG2UVNI)k%O4r9381>lN;@q08weA#*J!=poj_
zA%PYZ^WzofF@q0(r@S<x$lx#d6In>jWOq$h5T!a?wwTlNH1}yc5^V~5+2Qi~VfoZL
zC=*t!DgX2}tz;rj1yxT0A-qZhFEeD5v)i=VaYwl?8#rhh`!P)OAKpD)S8=tY=Ezh`
z*BZ+5F!pEFgylkshWx=l)0#6x&9Ch0*h)J<AXejUt*&6HJRI<Tq=JNEsWMcx@*7$}
zKcLjC!))H)N8zeE)s$^;sflV-WJ#iZAuUhQ7`9DU%Z{oIeOLQsr;+NWGODATYWTgg
zZA)IUxIm6<h*{CMYC6=1oQ;^8$APV^rLBLnJD5MXQT{1GI@Xc?X;5)Tlmt`--n<K3
zFE?9`^~<Sk3~%TQ?5fKu1)6@mx8Qa!H-IE{(bY{)C0cmlt&$OK>3oD>tlMqj71Z|a
zyCt*?yhD#!?}Vo((GwOn)F@n>_gbMh@36Z^Krlj5OMU@VzAD<@K5<HLtR32~Wu7XP
zt9!O7MZMB%cGfdj!|AK)stJ$t&Fy9K6U@DHG!s&&WV~!YLIpOIfx^x?hxsv)hE`K>
zJE7i!=AUKP>jOr)14<M46pD+-Q-*p{j&_~Buf)eRg2u)igf^W#xygISI{Ln*!7HV5
zW+O=uUT(k3$F$bQE@rze@U#in`4B6~480S(^b&{W9R<rq01FsdUQmM~vzsj<LCWD#
zo~6vuG~>tr1E4@(zrh)Zmn2<CSNzOFM$h@2KR^P)VVcMyt(TVkKQLUiWl$vc9GRR(
z$;pGsv#CY|{UuN#!*6@lIUT1+t37Ny#Lc|Lb3N7vok4b8#6um~fepGdP0igFX6yXU
ze^=8#kJ2+PYmh0@w<pzkan8A1)=PcINXFBj|6|O@Z<k4(*8ddT{fycl!q)SMYF7Q&
z(fkD2O%wuy6cU^dOu-@kH`w_C6hvVUPyyej8(09IV+WpNEr(WuLc_rX==yzR5`m9z
zqo_zA55h*CcFH0?KIBOy<4^W&13uylUT_kA;py)wpdfQ--sI%Ra(>)7oCmddFCz3N
z5C(`8Yy%XOcR`vQ?>J+MzTyY%h^UST<$VI=^C%{E0u)$Dgy`(y1)kt1Uh2^zXSjH<
zw}@h0Uf~&Dx8+<@UJMn$ZP*PSx~v{8uwL!OLnNrcGEjlScS5H2o__1;cl%yPn@wFT
z2j~~qHUeLL+#b(YXYfa%>rI~OKk4cZ|NiCA-ZKP2?31m0iN1xNgW@|VY^t8}>#XR1
zVq1VCt?{11K_AxXl;huA*vY2sVLrr5e(LMp?pHteRo@iyKI$XC^37g^!hRISKExIu
z@Q2;-DMIMqOM=?0_=}G1+a>P7#Ek$7nV?@Fw4UWRX!7O$`PmG{GT->i#`NKB<D<yy
z!34zXk4u+?NOqBk2tv0HVk8z~zq#ndGa7&Z6d)9N@X&`;kb`)dMfowXVW~h3BMwAC
zY7`2I6PxwH$dMzejU5}F@)NS8hmjH~S~M9^QKBf#nhXRa&;yE6i3X-ngenEgATd1v
zjUrT`hh~5z@@YoG!=GjnH4e<v|IFt=63y^LY+_WRsAgcpHp_XEPt>F=J)}qkRuq+{
z0}}>`*vxE0Jb^})GF3Na#fv3TdXU=?t5%jSVaoJCGo)aNBovAA2(sZ#vO9ZX{Mb<?
z;D~tj^0gbtR9eoUo6WtN)$dA)cu1W}1eCPtj-^jmj!321=Z3j)pOPpDs)w&)!IBNm
zk$Fkfz=uaH?wI6Y)rDKz#Ho{~RmhStqL3Q#l--6%2NpaSB;mri*jXPoe-^ZC+I<Nc
zM5vHq#PPdH1RZa_iN~E<-fb2jM~@A5Uv2iy24P2nUDlmu7)3Ujf)Y8$QE$Hu<Y7d}
zCAXY(4N;e2c%bFASAK-a|3_em9t48oKq@8{6k|2T=z(D(-spjf;B8n|egBacn00A2
z>Ex48PBhAE4gFEdDTjHW$R8Z0#)M`04KzhFUrJ;pmJMw=&?(7*b>o<2iZ>;V1N9as
zlmm7oN=;Gj`QMyRo|&bZ*Tp&Bc_9HM(@;eb)eJ-tE!EUh5n%-qRo`Ki$5uN=G>Rfe
zgevN4rl5tMscHRy$5)~N=HpRz{UC}dctp`e6Q=Bj0-z@O=|OL+4O9x3ED4$>u^jn|
z5m(<elxISQhUx5rHu2h!thCySD@cK$qMJm(Ml|f7RCd-36(V|zo4O|DS!aPAvWt<8
z5&@#_r=pIUZb;pJ{~Hm#5!oA(ui-jGEVN)E%4xH|k||NCNV3_cbOj4bEW~u7nk2d>
zwb_i2c826`!!#nCk-{E~>=mCWoog<~$@b{*$sIA<C2;b72=Bi+dkSj4N2~^LLjrST
zvj^DLdTXxl2J6AN4S_hXkVP9i5TO-6P3+J!^*qqg7@rF6%q1xs<=JSTy@)9^j!D*!
zsK7j}nK_q&>ZcsJU0B=$9f8E(NGuh_5k7~sHk|{3QcBt?M-(=cj~@=D-dFMMRNWeL
zq-dj@PuU?U1NmXx*W_WE-KGt}L{x{1ceDs75v7n`l)c&YYJPv5^4lr9NzM|+M|8F3
z9%)eyx7-hB|2_~Coz5N6ADG`9k?+szULHsZ5#DZq!LL62^lY;PllIwnRQ~olm)wl@
z^Nv1{C>sXSI!EVYRKLgp2IBs4Mq&iK@FyYO<s@RajxcXA4N)9MUKhLB`3-P_(_Z(=
zBR~c=M0U#a!1($GxWFldeTkbNWzvTc=n*h;jcdr`BC<h_w2&hhGoiRLctGi02ZR`r
z8f?~w8xeMBfABNlj&ip<kW5e{0(=*Z^yifg8IJ^(JL30h1jPPDq=p`_piX9&Kp%Ew
zg=q_;7<Gm~0`dtDrhrRCp4F+~WeFxw=twEfm`0s}5RM(`O&KNf18LzYKqT;k8o43|
z$T;mP|AK4?A*0s33>{Kfbc9Pn5a`CA1cgzIa!*5m0untoWGR=b%IP?Tvfg;_M-ACS
zr~1IflB7UxmV%Gd@-vG5^`<hO%upgpSIB{k0(PW3<&Pfuv`8Xykj?0&1|uRm8nKa*
z+F9d*aw(Bo5(p$fVOa{)=sZsW(*s=b9yLQkk#A-*c5pf81-Utpk?AlZ>eLBb^yfXU
z*u|8U+GI1dna+Kp(}wg^WPSpPOlAI3psSl?Ln=9tQ#LaqeMFfm5y(pA^#+6o4dy^5
z+K`HJq?~!=Aw>NsAZoqyE^UlvH;*Y$W&Vd0-}K8j3EEQlK=X~v+}TQt!p|9DB%W%4
z{|i0~103PmGj%xyj5QfqnT&!HfF~7^QNuLHyVTK_-wdZz>lr48!i%HoX=OxpS<o?>
z^{hHMg(9NBR<<G#CV^-|LR`Ajo0x(MN0>q>O7R&Mx$sePO=d_z=vRrPK&@?cYif|d
zxBxNX6rgZI5TsxV(0K)b9(ZhICtKMIA~vym{E9F&2-vw=W-oZvD_<?SD5EgS1EYvr
z5TZbeQo!XVrD#G5@Gy$fiIO#_6Uiy$Foi^%2Nc6iK@g~L3hj}=6nAX`A7qn3iKsFV
zQJAeFM0z{BJOvLZXb)IGa@e(kc6pGMEM+a*P{7hQrtiZnY2#{I^lo;&4Pl-j|7`UX
zYURnUsokqH161C`+G-%*4R1n}ln_wZ3XRCx>3o~;UeB7htq5EMA1I7m5H|S1ra;z*
z<r-oeDv^H8a4?Ctc8XHSp$Sxgt{Ram2jw!CeItf2N>!}ml6I)YFOKn5HLKpvrp~=E
zJ?&ldD&XZcW4}%4?+zIY8R$|$y41BJ3z0liD`WW-rqVEnn>*MkKgXmxod{}~yjmY$
zF}<8+Zx%Nkg$_@T&UUtMk=YAiHUmb#{8f@P?U!N@M>wkR;c<x*m)zx&xkf;Sv5cJz
zWho;#D+(U(k>grnpZ?gzlD_JM>)T#VCpk!<7BXA_9c3jwH@edW^I|bV|KvEM_10qS
zO`A|f*=AVI#6e(-a{QCoW=NqVz5aC$MOy4*>ulGal5>>Y6@=|7hhZK7g?y_WmPC9<
z*U8bCwnyuMWFs%w-6nQPHiyZslt6!AQAD$j(A#~=j##Dxu0*0BF-1`MM}0sASV|$c
zARq@6DIkR)nnVRsghdnx?Cw?Ionj`K;+`He6}PXw?@}m-M&ss)xh1mku{0|R9`|){
z-3(7*k44=(1-DqxLIR3|!s3WRIapBf2X>~6S~?%gXJj50Q{h42DgJlrQqFU32EFMf
zCRs<G-g6OcIOU*l8VLeEaO6?l=}fOW%dOr7tUImb-tPFvTb^zf|1y2$zLfSR51#Oa
zFB^wJPsDEw4i<zf{4Pibh0@1{!%@h6?2M!nx`#bNl3Uy4pb7lokKXseqrF*+f4SRt
z4tEJ_Fznn!bVEU37_K*i;J~?h-<|gKmDfBhH^2Dig+8_=sy@Ys9J$(QPj<7<9u;us
zdy4BG?T%a?*T_%)CecQMBe0VRZ(BE%ps#$hIzJ@Xj>z@Tmi^^-r1?G{WAhQ00>m|m
zm;(s{`OR;V=9eH!DA@kl<d2abyuTyePk%}1A3OB31pK%bf8l2tIOHVucQ!$ge>PEo
z1ekpB7ZN{^f9gk03^)-L$Py7468r~I_m?3Xs1yEY66KdR{|CqsBWQdISbZe{fb%zi
z379Af_<=tngUXdQ4|p~=s5$1BfhLH40$36y7$rQYIY8Kf_1Aqhh=1&75;CZQPWXgS
z7==<eg;ZFDR(OS2n1x!ng<RN$UigJz7=~gvhGbZVW_X5Zn1*V&hHTh|Zuo|97>9B=
zhjdtnc6f()n1_0}hkV$Fe)xxg7>I&6h=f>(hIojGn23tFh>X~Xj`)a>7>SZNiIiB0
zmUxMnn2DOWiJaJpp7@EN7>c4eilkVIrg(~|n2M^nimcd*uK0?u7>lwvi?mpaws?!F
zNCifSR=S9bXBA~3_#}LgC20eUd3XeSU|e^i6o(-P{}Gml!<c;0$P&(&7RacKj5v+e
zSB)LPjU3^PVR(&vu#93Pj^x-R+L(yx$c(CJj)iyxd5{Qyutzq52Z@jebaDiMfINKz
z2&3>4CBZy$g97%5k0H?nX(vQ-1CR1pMn{kc5E+pG=_LBdkM<~$iEx3ifsq-heepPt
zQBsjE<OhLZkXraEVKfTW<s>NiBn%0Xpuv$iBn6283V)!H+Q*R-d1Q*f2a6zIzJwMd
z;*$QjlMz9aHtAt9DG^9{lQD^r7pRg<S(8r5LL_ODAt99>@Q@t2Izzc{`{a|t^OE$q
zmHQZyf1n6>0CWAwk7?1AI7E>5xP)5SHy=rl|3{FPYq^n7DI&Mg9Dg}4f%#DdNh4&5
z5r_Gd5{Y+V`IFuwmsq(_MM-Wj(UXq3ED6~Wb*X~-_>bhaf0K!rp;<GT$q}1bO{fBy
zG@_b(xtRY^m{7u+iW!kOB$6Cqn+v6rr_`B7$&+IFnR^HmqVNa3<x(gh3U*@(qkwtv
zwjf*~3VEPyNi;7abeze#oE$*{4tIg_vt`3soC~E0;whdE2b?6=oEV`9q!0+~$(}fw
zChOUrfxte(Nt}Xpe&|^*`?OuA5R6aQl4x_9X9J*VQJ>%mpYl1M0rO;hAPUyQ5=Ste
z<Ox9Ifh>Gbfm->MY4M!V*$mUk7!2y5|9uso?FmAF5TXyNB_!&eS&1qqDhLglq9-bz
z&Cs7Ep_LITq2=k9CQ+fEq&)_DpXryMP6894;0LmCCqY1@PV%BL`We;<2+FB|bs3~C
zWu!=Y3U{KO393CB`lW-J638i~*m-2%DWs%zrY^;$@(DsdIuI8+5o0=~oC2NF*)kT2
zL)yt~rn!>8*bH{+p-#e~cPdbU`k_~`oi|!tbs42}Y8i7{rdP9~3M!}9nS%cjsm;Qs
zCAvvWI;5JWeG;mkQ+23#`lEt)6W*gg!IBpjK@rg>3V;9;3jzwGP*mXu6vXJNHbDx}
z*ASw^r|=X_s#;X&mk41xFtaLX|L;RBX(0;ETC7s#pYOA*3o<xq#WGe%piv^AQNpby
zA+1ytEYKPfLj_J~gREfrp0Fj9$=W2gimQxNPbA{34MVRDQLar=m*-kW*s2z4wWuAT
zt~^>2FLYX~8Xw1Dtxxh?G#5nq%CJw;um7?Vuqv?Ik+7@buvY=G&59fES|cH=p*3Q$
zzKXEMs%9FSul7n>49Ke&n?ScJRZb_Y5)rH#>8-dHuQUs<GfPD?_Otrqb2y8!eF_{V
z8+|Z)vMkFlN$Vs_8>{vztF(#{RLiUwL9mG<v`n#O?7D}0=Q2fsKuhsR?m{2!MNGM)
zMw<ht3i~zYVY3K!3fvU7|86NeD8mx&QVMyS7JN%i!|Il2W)ghhHQ%Qb1;|c5mjX?2
zNHKDbHqitXcm!plv-sDzJG2^*ivmornt|&Oed_^#Cq{T%dm31|?wWoThys#}5ok+V
z!7{oW@wXizyBI;cryG<FVY?+!xQL0mCKx8c5d;h<dUhLiHqp5f0R_wk6Xd8etXqJ*
zt50P6wp$6j6Y;qoz`XQHHn`g%w?Vw%tGeSW6gbqj9#FQHp}jW2zTdlSG=jeByC&xW
z6HX&~aJv)*NV&TEAFcaQ|0^EKD-o}2zv5AV1+1_Md`L|YxBH8|3x&P%8y^!KEbmLb
zpJct98zL19x_WD`|0z_uB2m9@i@$|99=$YO0!32pk_bO*B_Aa%Doi@kqMcN5Q8664
zHi4!Y%$6U#8N`^K42TLrOin!9e1lsOfB;|o(x3Ha3UPF4QBfId;cFiQGjhQPY=R1>
zgaRijaH9Z1Oi*v95CxWNSZpD1r+~$(p~b$on<Wy)MyyOkY<xgjDLA<l#3on8kq3By
z2Tn7_ZeqsndIS!4dS&FrRxHO2;lfoiKd<ExMVx+joHCQVJY-DBlx&^>6H|ixF`A4K
zdJG(<V8{c9Kz!T`ehkQSY+^?c$2jIbCBVZ!Cmvti42;Y<95KUB6(*lt#yX3_@DUNS
zOvjg88m5fM|D>GExwXuP+{|#wUR*&^89`TIV$3yz2Yvj<!NSYad>)RBVDpp8t9(c{
zjKler$&Gr;xoi{c3_`CQ7VR9)PT@mO7YJ%Z&oJD`FYH6-%%{H`%9*9kXyMIZVHXA+
zCUv~a(tOYh1<Rk*&<cIYgVqr#G|K$^$cm)Rs?5!bC<QYU2xM^+X$dJ6y%ngScfH|k
zO7UAFGSb7M2qx_TejpI&+|mjN(&uOjzuF}3@+icq2yWS1qXpETBDe#g)74bTDbyQN
z&?Mb53Q>>(PN1kxu|G-z3Z;xROR*RU0g+AM1hGYIwn{ibpg8x30;Zq{K|lihCTnS-
z)r9i{|6L6qU@g|DKx~2#2%U=rif{_ur_=*s)I#mGasZJ-UCAE6)1aX^fC>trfIw=^
z)^2?Ya2?fCjdB>0ZE}3prO<&*kkTly(nod#hn)z>L)daNKBt}9fe_RKxz=s{)@Z@n
zh;6RT@YE9_+m#L152LiGAk`_L*;auEjx7q1U6x5rHWIeief`%~0Ta!_!nNAjXx(0>
zecQkR(<Qyzlug?mA=uJQ7w4hcJR{u1oi6BI3K)Xf!_D4SA<}Br-6F@_M@cs3eHX`_
z+}l0hGOb9WP1<p>-;sT@HqC64J=>OTDrGGc*S)o7{oq5w*C^oEfDPa(ZEUIW2TZVB
z|7(rmqpjf}F5tj=;Ovv&y^R(q4&F7w-T&R<{%z9v{n9a>A{1`n@$KR={@O=v(IDKi
zjE&M6&eF#1amZcZh?oKgl5N%z9!nf`)12Gcc?!>Xq*pT;PyRKiFc&vn7*y^`OTJ~C
z?Bgvn5>#-aGo3h?H6CV;=J*%pY7U$#qt%N2LkI*EWI-u(0TNgdVG;Kz0>v>EBRd?^
z2Pv8me##ntj#4Jg6@n`})~psw&gOn_=72sBaxfOAK$2J+a#JT?h-T=Yf#_0&%Cj@*
zVoSqP-Vm9NtejpMly2!J-RhgJKd}BWmG0*1ap<!{>#vRxbbd;rj#8PUI{(rs|6GA8
zCae>1-cBv67Wb*EtlkVv5_1Ym=$NkQzn(Zvj^)5K?C_yHO8z#|p6%8V>$*-wrY@Ao
zK0Ere?%aOmjKRc`-qXzfHt2roi3jZ6KJT0Y7P{?e5)s;5&TQa*9cY2-f`09(Zdhm<
z<pEz5yTJrb@b9Z`@evPBTi!72bMT~25WJ2SR<0%99`7XY?>pS)`abebPVdm(ODtdV
zDWB{5e$vQGTB8N=@Vkf!Ckkpr3M9b?rr;C2EMX}C3Zk$Fs6Yw@h>}2`zC)kBmZhDC
z(dDv)eWc*?9FYiK<kNtZ2eCX_*hT_ik5Xcv_2H+0Dx=N8O|4WU5s4rj|9Xxdm7#5X
z@JJ@}BdRPS@I?wDZ+EPb=xToVgcc{7A~Gn`^J+x)VLufqCP_A{fLu>P5&;T;ulMX;
zO_mi1eQzp9pY%)5K2!k;kndb&4<D;D`lWvrr+*!*WBHXbJE{*KIK=j&5G=5t9ho!v
z$FBJTZ-Qvwc+YVjtc2R7feO{`>>bkij!*iuKM+qZ^h9r2xgYo#q4*I|{8VuK*1`B@
zFIB$(_Qfau4PkiDAM{aQ^g0pz*U$bx()yaT?-CLH>CaxDuk=iBx{yH%RnKhI4-g(m
zGy~+pLm*HF6_P4=Frh*Z3?WWL#YbTZP@?vrB6UPzo@OW}Ld2+%|D(r?88>!RNP-j|
zgH)QK^Z-f_#DNWM;v{I0lpha#Or;1)$|q2vMEMvMn1?2wW>Jm?9a?mx!irOqT5b9?
z>PS?5t{MzG)<dFFBTKHN88f6=xN+sqrCT>H3R0s)DpZsxO0y;g0Vx7279xsLi43Mt
zgo-G{Qh`SH{TtZBV1s=~1>p=e%8!YW&EnO26-6_{cFCqTdkUy(gRUo%-mAK-SrUpw
z(G7HJVxPBvnoUG~F;TN-qNtEi2sH@AW)?k&LS7xYVh^XJE9^Np#qs3Jn>TyTeY*!d
zfku@w6@7Nz+GAy-C*QIe%(|ypE0h^O_IVGw>un-IhMUg1|LU+q3_HdgGsrpn@Vjb0
z2n`xY!jb0Fj<|*@6zIOIa@*}c4reP4q5&Z)5TgD@gKw<cCQ5I;_RhnDlv5H3!aa)i
zqYlAlu=DUjgD3+`Fv79}usell8|lUzcLWfk`BGG9#e;lP(LgH=!qP~~FgxtUk(`8U
zKDYey08AteT5z$(9!qm1%{U9fGtiVQ@jxK4`w>Cx9#oG#9^dq!!N&qIWwgZLbkGAs
z5zTC~&Z5e5L+Bd9l)Hx5yevsi#hmc9P?HptMjlIT?KOyEENm?OW^44&I9YrPHe7Sn
zHNR0xgXoV^PLWWNKVF3hDkhrb(V!`sNp>P&h2^W*|LlNlMoVU$g|$~T-Fg-_SH}{?
zRMo~kjN4qp9jS?C<b<ospqeSc1L1hu?*}}n6J;+C1C(wQMUD`7;POmqh*P`p)tBG;
z%roc*QB1)jiYA&cg*6n=jmumQWGc^~QmCa%rf+Rk)8IYf1q2m?03Mj&2eoyRM~@*B
zc_fZ&Rw!h%I7T^Bw?6iO=d0L#>}P~+Eji1HRyKKCU#|)mVu>lXct2&SFjgU#Up}Hd
zok6BH+F_|h+8`z&)p)dKv=%o>m04yQBB$q8sBW^SJvZvTyPb&RIiU@<?3lkj?YtHz
zI>lNo&knGmu3s)Ma+p1!dg6*NE?imZ0+IVF|71Ded}iqu2eR>l(Qe4`?(!~j?7{VZ
z+aTB1r1o;FHK#ZB*Lx;+HM7+9Rz{g2UAE&}cU69Q<rgtU&1M570Ts7f-S3ajK~5du
ztD<j-dV`KYVtgd{h^j5_$8z59n$k)a>yaF<>+JP)6&@lcj+8491Fu}v13&c71MGqy
z@}$!*9tFaES6ReE7L&HR$mD<xLz{H|aEkbxf;IJ%%g>JR6@{E)4|V~?0w<C<h%}HS
z0utbKMx;QqU@tTc`JhxnIKr`b5QMS8;Z=U7!i#jLhE(d|MDk}DAU-g4?HdXI{x+h(
zjf8_Rx*i6pRKUNq1$Zbj;Y5ab!)!?p|9l=u;-S(uMYCklEI)H1L`3nz7QWFSZB&RH
zJ>WeHjnN=zOyTq9ayAqy1djq4qYNRFx<H1HeC0de9vx`LhQM$vlDx_VGiVq??yN&I
z8A~R$N4x9|jfRUfUldSM#uRi1mE9TS^xW1;J;tvguymUxuNcPfRZo^%<0V8&I1*2a
z@@dQ?W-&*mzmb%}RCq82b9zKP%Xr{}68Z}i#-hyTH1jGlX-hT7B9my2<Oj#I&3;JW
z2WJkj8FH8i34~@LbSi{h>~u>wN8(PnsLO^12_XAWw8J2rq9Nc^i1`eY0$mQoFbI^6
zO!g@dh3o;Dz**v05NfZO35`di|9~R$QbW*t#?v74<eCH7^-zJlQz7G=QWPUPQ5No#
zT@BqKL}M1sX_i!;AUtO}N!l`#@>Hbiq^CrqNl~4SbcYY^r$LOW5Tve@oCn$AOow?w
zWKwY=9JLkv@bXBk?8l)vfygL=x=(CANShvbYG#-OQn-AzB}4rw|74oLs^ayo+es^W
z)`~oP@+Yfv_31jV3YlfD6)HFdkzoCaJesuC15q7oO9cDSbaGX&3q@v5J+LEkrNEhs
zRfuOv8@|S3HL@^mh-9NWw8W;fugr92Pj^aB*k;q2nsrNRX1i9~Diyb34Icbh`lQaL
z7I}{~W^<R9f>S6W3e%l#|1|#+h$cW~xWqjSd#G@PDU_lVwb4x)n}J>Jev^}Y=_pB}
zOWo=os~JeJ-+q{I3Q#y92vRTwQ`}fn58OAu`|a;V-V0xQQU|5hGh#CYK{4SJu!+qm
z#do7Xibo-)6irA09!7B@i3TDHL5PAP*2_?ZfZ`N#NI?*&a0--=z!avSLKBuE(7A+o
z#3ep41^q?4`=H=X$T{eNscRVl>zBX&^}uzTaAB|>Xu<TM?>3Xyk{Q?d#*sWlDdf-u
zD$F>YDrT{ZVeBUFf>*q?aWa$@l4Jrixy__-Ae@(sWg6QUM+cj8ogEC}6A2{CddBg1
zs*Iv8e>u#5U9MV;{~X_E{wl~r4)h}U@MINhaf`lOaf@F}lRiVl$?3Jwptro3M^j88
zmd5m%4Pxg4&oR+p7PG9qOzXAw=GKc&=co;fYUv^v*zi?#fbpy3SUdJAzQ!$LXsqV(
z9@fe<k#U|+Z4feh+SN7bw3$&N96SgaDkpOGcf%X)n1O;~%%oPip}iM(pSxS!#Iu(7
zTxx6I+aSyq^?9@VYhw@i&I;i-ki$*s)D%46$YwHkr3OE!9J)zqmbbK>dvRjQ1W2jl
zZ!==a;E4nQJVDA+fSVx&xODvEwxUV?P;TXom$l*L97zyNd>waT8^E8vd649!aRe<9
z6gzh~!ApT0|5W6mF1<MdDUidG(tfxZib$o%sNi(uh$5OOwoo5Xft(6MBnUqOMG8o9
zlet{II$9r(Mx{dn{vihxOfUsaV{Q<eCn)DpIC_xOH1sKtV&=-OIoZvQ_CQ>^@1PJG
z3A_$=U5Y$GCEs`76A_=h<9s4~zYgYmo(Ol1UG9e$wdLc(d5<ey?1n$P%&(I8CM^D)
ziA3JrLEe(MH)HN~Z_d|sFY(*A<na{NWs^-m5tSET^tvZ~?StNXxdT7*K353rWnX>8
z%l%{4*FN&w6HB05XQ0+P*z`e<Rlg-a<Rec6<r@tbdMjl4Wp91geIIt=-@kfrug>nb
zBl+ua|3B12g+E9q03<oFV?Xy3thSiH=KCzxLpy^|KkxH6<@>yxqd*JEJ^zCU4a7SP
ze7NGe3c(wT18hI^!#EXOK@-ds5;%f%dbL1-3zdosCYV7Mgbf%pi=6YK7_^HXq>C0)
zjTGSwi(;P_oEKaP0>4QC<{FD6gbftf!CaxjtM~yWyow-vE`R!gE&MFMdBGoq2rM)U
zD-@?J9Emd|i7re-lBmJOc*3#p!W=w|H59uqlnW*_i!yA%Bg~Z`$iq8asV}6%Is8I6
zT%JLki$oMd=W;?CWS>1OlSLGWN}NI{Ttr8N4M_Y$vq;3xf{RLo!zmm?u@gm8T)|DO
z|3g-6MOS=9Sd2wigcn(?MO(Z@T+BsX+(lmOMPK|yU<^iK97bX+Mq@liWK<qnOh#sG
zMrV9RXpBZ_oJMM_Mr*uAY|KV$l!J=WMsNH^a12Lr97l32M{_(!bWBHeTt{|nM|XTj
zc#KDRoJV@BM|-?Se9T9E+(&-wM}PcBfDA~197uvJNP|2`giJ_<Tu6p&NQZn#h>S>y
zoJfkSNQ=BkjLb-Pqyjh0xQ^7wTxo(o07bjt0}Khtk!;2z*n>pigQX!RlPt!SY{{22
zMme~dV!FwT(@Eu-NtZN>n8cN!BqpD%Nm~p`o}`PRB*&!G$D#yD<~f2qNQ6HK|11>1
zgG9)KZaD%#D8BFkgi-JdxX2$}y2`9%pC&lJu^>x`kV>iyrz1!NxtvR}tP8I6O01;I
zM9{Rc$V<9x3%9IF)d)<h#7eEi#eUh9QRqh1NKCsROc~M3y+po50EIu`OSt$8Mc{))
z03pAeOU#su#Vi`Nw9Br%iX->~MZkjvi~>Ihgu@&O&E(9Qx=YklP1bBn$*jw{NX^x3
z&DV_0Ir<-6u}u^qPBq-khjLBWj1NVL3*XF5*_=AsoH7p>O<cjw-o(uXY%=QXOzYH5
z$$TitoDIW#EbM&Fy3kH(;?BVYOWrIk_oR!s9M86d&jpK4%2UrY3Qjd)|4!kgPy95C
zw9GlK49f)rP&sUp^IW#?^i0VF%=ru-<!s9dmCxT4PrVFJbo>iZ_=67{E))=jQUC-~
z7=_S_JFH<BQOJX#E24>@BuF7q6GhPwak|iyQ4a-CfI9+3_|YGAIt~>(6`c%H2m~ZW
z($Jg;ML5zV4Fph24j$dE%#_j)Jq#K>(LAg}$IKP>%#|*kiyggEzHrhcZ3{qfFg_3k
zE24|j5E(u|i6(tgDD~2ca*6d~#3J21-SYz+DVa3=(Pl7(cY4!;LWv;Q(|!X5KRtzS
z@lhacQlfKEM*UN|nK~0A)apY{)kst#i&0K(%Se^feG1e}-M&y=|I|iZ8bdXRI30^G
zT~EfG&PsJu6M@qu4WCgJQi8KmfSb`0)l#@f&r~%F?fi>cHOit%4i{~PB0|<xrO#c>
zs}_AxRkhUNgbPz0RH4~cO{EJKZB`hy5FCYwaJAOE!BlR|k1Vy(!)OLvEfO<T(q2v0
z(wf$Nf>vzZw?5rhNCi?}eMiLDC;r*K(!h%u6a_%|3#<W!QK-IVFvT6g5cLoVguRLY
z%F~cbt$~GDI820My$Xe8Se%itjVYjxog*J(6oRFoiiH$Xz(H6HQ`m@A*r3_CDutH)
z7*UY0${HZMP@|G1rdZ9`Ty>*`4YX2g2okWPeM1T8`W>PD|C^*Wr=Mxs_JRnIr3)Ej
zTBmI?sEw{o)s>M|+Jgw$k=R;-3tLm+&wIMsul3HOz0O&U3!8mguWhfX%@wtU6rJ_h
z>O0t&9o9%f+mXP|uC<W3g$sv;*xG{Itfh;-t%-+K*~iV>u}vek6}8Q!i^jFwkuX|c
zs$8n-wa%T3m%Z42<IA3fLdZ3XzD-<#a9Y{LTG%z*bHu#1!8>F!AC*#<P5Fx&ydVSY
z-IZ+u?a<g?IfWS1U9U8wmWm5?DTU~j3+f#WvD@9ba9-YxCg0`S#n7}L9K#f7f_JJA
zqeOuwz|13fmb<km^Ch10NM9yU6Yd3>>a9Oqp}nE0|6Vt#-?3=lmRTa?H6Kkw0RYx2
zh=77T{R^YygHYn%qVoU-j?$V;r72NgEvn#Nec;bg&mh1|1ZJOb0pTUZV4(cq{|VuV
z;9!0&83~pq_g$h94&WJ{jrDEe1}>iWgOw9Lp8MSq?_F5|rrT`&EcU%&3f^H>&0)pa
z4&gNj7xvDV#6%uEp5SemDR$r^W?{I1;1n*C1f~)wKHlVQi!6piFrJMu?%sm(G5)>Y
ztJq>54x;U#<7dHREu1PyncHwY4SHINoti3jNd(db7SlK$K~}2caS1AjKNIm^K)wp|
z=}zgz8dNyRd*aJXcGF+AM7fw`u23gFZX!aJ|2k8!CLkk@)c6jMyO!#44n9~MRCp*9
zNYk$yg|=V<sXK)zc;AU|<*z%1SSF8I_BitV6J2H--0I}3*pVT9!F9od0?7kBzyqOi
zX4F*XUGC*yP8~;vWNG4N5tJ{8D1lGD8<V2uX0T>#F6Z$$=X8!2%Dd%PUgnsQXDSs8
z2U3)#13S1R=U(z>tlO}$sARJMgnl-Kf2Odl6CiY^r|hccYZe+_Mh;)r&La@$SMz4=
zwC7y*3Vj|ac6R4?8o)p>MTCZxUt45S-j0jDmTw-;hBoLo^XN?)X*a>;X255IFl2>5
z<a}0$h%P;(OKD1O2Fe3!+F2l|&}o7O|LBB{GIefCjy{V+?xJwkSf<{cskZ9s@M)K3
z7ap1DcCP4F(d3~vh@u{em8K7!erlqg=eMrBqfW(flmeLv1O*8hMUae0Ggnl&Jehd8
zi7+2`;cGNgO~B?S!Vu>-&O^PfNmG#7xlot$0#QYH-Va-_%m$d}Rfx&ns!0{?z3ywq
zMqN}Gg(ye?Cn#5XX`w&^1%|d9^RW!5kjo};f>A()l5<#(2!aw)LKH9sMF;{Ch=Nln
zG`XN{kNAPxjv3wNZQs6<K&W3NP=r(1!qG;XK+tSm$|5<COU?!`JSd^$00mG8r_bJO
z0=aG!$nNcS6XQm1<z{XGdTfmq{{;A!?;Z@7zi<~mmWe574)hiU^$si#0PuE!j+UzI
zi2&};8g70S@RlO*>RavB=DSDn0RF~q?f&om@Eq1o0S*sB2v@HHpCb)7@ltq{0C(^Q
zIq(E;lKM{W<vy4XkM9tt@8iaC=9X~bE(Ilwafd+<8eebu`U56#G2`|j%Qo$2QEb0W
zZAiKC`;Md*KXD(o?;Nji8OOF|9`Y<~g26_C!tPZI9}gyX^4~Ft6qlznPjfIoauVP0
z7Y{-Vx3U%YlK$@Tk(%?9n+QM9@3t^=!X9)!SCK!T?}I??zn<}<LvSVMj_(HTep~bS
znL#73pgQ;TO(&i<53@HX|Hl-Vm6{-x-B9RWV&rD%bDTH@oMhA@S#^^_h39~5fsl2$
zICabZiy>8DWpNEENYlnnF#tOaVmEe+LUm;4P+w0mRlf|Xp0H@z5$vcJ=rD|dxS5A;
zY<6**ut_Di>4P?<kGi!FZyyhE*Iu=l=V+gqWj`;4kb@vGh1WFOnjkvbQ+7Wnc6zs{
zUo-dGfQo}L^ITWn6{6B`nb>-723Eng_E@kOUhw^Jc!RL_i09Xb8h7o*cn{F{2%q?W
ziY9hp%v56d5l5zzpUx?x?V92rlkX0Y7kR>i2!bCElppwWH~63lBDbk|h_|>MVGSm5
z0+;7ORHyYdvGvU8|9KXg`G&~(m}v;1e+`e<C9;0??3ECkFM9kzdOlsSt%voiS6Qha
zd7^`PX#dr+p9qA9EV!=@SWhvMzhZh~`toA+n;-UnXLjE8`k^2Du7CK~ID5jEKczkT
zbTm6rNT;8m3Z<Aiby<s(K(2R+{H<7Im%tBQr&-50MYMRIc5;gGSg;->0n?8e)F*|<
z*TP<ReaJ_Os&MIdX`w{W5^d*>)EGKGP^r+dkanIUu#$+HkiZW~cVz#4<ocF@P(7)c
zlF)C7)u#^|0trwUErs7g+Eab62+yoIex6|3mvD<E4gcVCt3;pzML~s)r{>k3y(?>V
z;8_3m-}tlW|00B#2;-luAOQ#}flQ(D<Kf^zJc3Y-3W6|DGlU06k&<W;6(5TpQ1!70
z(IQ2SiArfqxUk{Fh!R5{?9(ifK!OGlQfY=lBPc-<Ni+jg@*u{8Id}Fv7zmU_Qa)S0
zj9E}(&6^hU*!(GRq}3FpM3F#9${-(8DLnA0=wT>Ao=ZQjG>i72T7)iP4t(n2Xwsz~
zQh*Y*2NkI!66ZRdNmZ&<4_Gbo^$S?A+@^JBvPH-ep+bfZEoMe(HR!>{e*>o_h38;R
z$f5g=R*m`O=AWRyk`+tVEb6KjN#s$Dr&*N9bY+SpX_4?`;f0G&)t&e`^yt#3Q<sQ>
z)F{Lr{}d&P(yYlrK#DYSw1}cqqR@&^jg?p`kVfv_!Fv$jl2nlVzoY!H_}=Pu*_DJs
zGaXe2l!1wzGSh(znuncs(gmoUeBXsP9&~}6a$Hq^sDw~~2&IrnGtG!XMOO(m6PpLk
zWaNP;CCXT0dLEqeB8YlDH)4q=rs%<MEV?KW9)XNfiYY@{2jO!L0=Z&Z&73A(RM9z^
zkda6#d80)|dC&)b`T^G;W?3eQBSPhAga;|7Boc&@yD1`yMOA*5Adzjp8RtO+;tAu7
zGS--oo^Ya>)|?M*D3Kr^0%<0n2zs<ALXDaiqE#d$Y80ghS&CVqeA+1ymlAo2<&kF|
z|5R#@2gMlZOL@9!C{)fpWD0bC{xqRP71C#)jfZ-vp+%pvdeEsrhWg^Gf!26ljVY|x
z9-*@;IZ&>cA_T2^?8&<4i^MYOD57+hq^Y@Orm7^jdrf;^enIR<X1mgQs}Z`KLHeSv
z7uFi#Pgg2y?V-A^x$L*JTBog1xE}a0#1S8e!YBet^hYVDOu5}3<o)>@6Wj7RMKd8=
zgt5j5Dblfxur|{v$tG(=vBetIBy)9YCMF7o2l8xP#Q^6T^vM}-ymEBnBE&~CC3xT=
zQGfn`M~tFK6{M*zj-tpBU3<NmDLS?&_H$ELeKnLIzW9SErr;4p6HS<cC(S}z|Mas5
zHL+L<%h8RxGlp!t4Y%9|hTY{-r?|YR;BUu0x5v*BNX1W0G(&CPwnm=V<aL$|64zdL
z&Emq8mt=W+N{5HaL5&j*`9*)KULWhV;(Yq$oLU4(?K3xHdTsz8Zt7C5KW@0#UT!V=
z=)3;@uSS9NZq>~L5`D4JDziL%t9Nxu`$60zOLm{nd$2t7n}ICyp(2|uJ#^I*`FZ*6
zm;e6vyjPw(?(G?0xQb*(pcg3)R*PC+{r2a-wmA-fPs`pxkVX^D{RD5m172=!cR}Z2
zFmtzqpTt5a!Vw;15vBkb$p%FNRCI77fBM7pJWvW9ZLK6JObZJSas(vs{}2gGi-K!v
z_!AS_?JUN5n9i&sKI({%h!1n3MQ#X}9A=1If^e809A&vbP4GonQ=3tasF6h=MMTM(
zPEEX+He|i%52w)1Dewfv=M3)%z#-Kh&`80O49|^lG!Pjjk^(R7u!lc{j2}tG#Uz%*
zJFbxk6D%~rBD(N7j<g6U#2CiuT(TsQq)%mBWv)abB#xU)$=%W=6is?klA(l=Dkaj%
z;El12q45$aR|QC0?qyi4w8|_q2e98f5+}d(z#I`GMGvgdbb&PETF4~|b3OBx<nur$
z198l!#c+l{=_E0qlSz%h&_CDArZi)TkWc=EolkqCA`end_bjE5|2#aTJiB>KcjnSY
z23lq_p$DBMA|#kbgpNTA+KfkzlQRn?Aw(leB}r<e6g|U(DSniuk5SZ)8}kkneqvF~
zWV9ryk!3SNYEp`7<Oh+W4kJn6haXu^4!a>8GiQpBnof{DKOq55Gv`zPT(qQB49-D<
zaEhhW#HUO%Pzo@}69avbjk!T8ToAGcin`>QjFBp)s@fv0sj?;sYU;UkdJvvY#Fm!B
zDqMmpOnj-;18f~dSuwR$pLTVns=;fm7RkjW@e;0C)Xv{dIUrK-(gQASUrpeuQNqen
zB8N4~9oMQPz)n!G9?7g-`SjRET2?m@!K&r#cb&#2)&qNu|IAW2n;QeYmMKgHEi-q;
zSkD0rPCeU;Mn`Kimb#~?DXQ(4h6UQx9t634o!M@$x)aQFR7#7rrEdip+?W2wryjj-
zN>Cdo!#an&Qju-us9N2P)yg;PEof=ao7V)5G$BT%<!<WA)(16KxB!YSbo=|#?22fz
z5<Rd8Q*a7JM4`bA_NjLQ(S+aFRIwg7k142dgejDw6o}bWBby;%3jgG!DpO}@7VO{$
z&kqR^V<Zz!0SYGsK?<h84MJiBR}aK^#x=gNh*Z4dp#o~h3TE(-6*}T(RJe+z&~Ow;
zaj)}~q6sO$!zlDB;wS_m3W|8>lZ1pLP@F;zDF^};|4soJ5||>xO(@G!qqEgOaM{aX
z7ORpxga;JJt3*&0vV-Z<V;b8S#}RHqlp9;*l>%(gKgNxo`TQG9vDwXVCZCC)CM8Mx
z*}}-=1ER^Snn(%)ZXWtmYbC<SPlsB~4s|h3%6#TDt7Z|Pj)JJy*^E**;na#Mg&dkd
zg*K-s(tT!_q$HvtU<;erE!GIBO|7kE2YcA}wRNi>+1g4|;mvJYim@kcAZ~j*&O(tj
znq6JOTjyG!4h03=Fxs~#!CH`jX7ND|O=7sTx!afK6tk_JB69zG-Px81na!MT$Y5B*
z9QH6mu#IbVs|el`HpRSuQ}1md$>AMFjKtgR|Gj`ao5#DBc7meaYi)(Q(--dehCl9C
zj%PUL5H~rmeJ#&TA3H(%W-@P~En`9hIpXZ5xQaGz^n)*b;*ZpLNq%E-c_X;$BdiIm
zbY$aZP|?#tAQ6qoWO6AaX6s!a?x>qV_LXM6EfQOG5WY+!%n1dzNtOFcsD<@Fi47EX
z-}{WTo}{xsM?*&-MTtm*kRxQd8HyNW->8829{Ci{I3htGP*I{MOC$)d0)<v|;<w40
zsPbzZD_kH_B2X~F6fXk2jPw$BLD4-5rJxbO{JvxST4eTfPmAiC!Ftyt#Ph2U{mfG@
zqv5x2)p*dn@Re@+5}_gw!=<G2p$`hB|DO-XJIVa!G5Gw|OaJy<xBf#wZGKS1h6KT9
zzJ&v!{?(K2G8UQs`IS9?;j?J`(Z7C47@zPVA2YpQ>*0t1f*vV|9y5VoGjJYeXdm~b
z8aA09D*S;)+1~`U9YUC02PGf@%3l+#AB%wC0!ASD?S=zFU{ZnIONbqiNT5dG-vwr%
z_Z6QDCISrl-}dR>2-2S{Ss?lqlo0NO0TN#e3JMIiSLfv*4AS5b7U1$7phS2e0BVHq
z<sFg8AV}O`LU17p{$CdYlLca+)tw<4dVpL(2MHX(WHG^@B*q%HQyivYb+}<xBnBQn
z4Bb)39F~N*<i}5>KoPZ}(>zQN|JV&7LX06!%pN|>Bev8bmP8*;M<i~`B?=NH0Z1lF
zM-WtEX#63>d}72T;!lv`AkN_rR3Zv=qI9exAF3iKqT+!p;()l~UQm)L1|TR#M=K)O
z8rtGdz#=6U5iJIw-L#>BB~>q8STRM1GM-{H5~D_(SysqZD=s5k;9_D#BPC)ZH;STF
zxZ*MTVK0^=b^M|ot|L3PqdUGMJRaEW#3Mb{qdnduKIWr7?jt|;qd)#5KnA2h4kSSq
zq(L5J2+boxE+j)Xq(eR=L`I}UP9#NEq(xpNMpmR8cvVJrq(^=vNQR_HjwDHzq)DD6
zN~WYrt|Uvgq)WaeOva>4|IQ>$)}&3|Bu?g}PVOX6_M}h#Bv1yWP!1(g7Nt=hB~m7(
zQZ6M^Hl<TOB~(VGR8A#TR;5*5C042=6-;78ZDm%HP_Kz&bnpRt0b~?xV*DIp6#M~N
zO3Yc_A6t?TS-zuJ-d|hVBMSV1UjD%|ex+ajC14)N5#&K4`~i_&7#<`-9th150746S
zKx2+VcO*t6VGs%==3-h!6C^?}R;EM@W?>H15hMa>mgZzyqGPU!X_97Ns^)6C251`Q
z9TKK&T10Ff<~xd&#Eb$*=3`CF+kto{Su}$-UR^T)C({&Xb?~M;3g-j?r$3@VAOymf
z?OtGBCw69MzM04$|72N{U6?4$kSUA;<^+N2agpVSLLT^C9{q$iSx0yR!gy992_Rl;
zzNbQoLU#h44k?0v`X}O9X8@jOe2~I)9%yS?gd!N|fd+zVc!z#^Cns^Igy!ddekVNY
zX2dY3Kz<!=P6vJtr*ejnhgw8(k`RZoV~FD5hx+4NJq&3gSd3~Xjn-&Mo(EPzL~Izz
zO<YGDiUJ^b2N!|DD5S(P!U=ov=!KC&9Uep$ff*KBSD%zZj-K9CI81Z^sgP=fC=6DX
zdMS>kggAyNW^D$U-i4LAqlQ9EigqNDE)8+I<B5(?o2KELLgb4!2y~9nDeS3@{wbhR
zq;|lG>A;Co|E1}wv5I#Dl^gwtp~5NYG{KEP>B*deMh&X@Fvd$k$EuZr{X~bS0!Zg&
zs^p9+@L=j=o=a#H(_|S~3N!)fe31tANfY$t5tvM!c4HGb!A+0=6GVtQ?nH{9026TK
zbC3WEBx|N10VOpmoNAPT5i7t9oCYDQvYKd|rUkw*>rdS3M2HOv)aq_9)0$N)w_1g>
zrbV(&E4jjj21)C=>}s$6s&$C#f#m7T(CcoLK!GG{wAyPm!YaP-YajS)pdKv33Mzk=
z#ZHw-^Knrk6sbJ@(f~;W!)g|v)F%~W+QNKl`C#ZlFwGK1$Eu-1S>nqxnyiHIXIdoa
z$2t$l{{o^Z1VQ7Of=X#xmm~;}Xx=FRPmu6|;-CUtp#UIoT{Db=YcN6MokA4k>Nh3H
z%Y+4J(O@9_$TXn<-g#;C$jI)IfQJB~@1V(?4kuO}L9-w&LQq8tfFIK;8`om%kNi+t
zd@cV$($Y4qUJ$L(qOBS>gC8hPcPLJ}c<u59RmHk(iNF<{{OwCbf#5FQ*}6s)K<$kr
z2~z2;=JD-Lv?jhnu8e4|9KZ@MVeZko#?HPB@PuxlC|bg{uImn@6wpr~JPY3_0(``d
zMl=B`BmxT5#M)si=FIMt{(<dU)_8C%oHk?Z&Z;RiDamq?h;^qTJZ6^dUi5BFsvgAh
z|AK_wX~g!H#P=2+LqtIeIDvicT+Si{D42p^`~cI?$8V74u8smKh#ip%Mi6AuA)<gO
zC_)gBfa99mbJ!7E=H>7F$Zz}s6QEiD=GZ8JLLyih9{iRZGC^c<sVR`J?VXTDFb(F+
zDGUvjAOym%B7q{DLVHjJcOcp*pm6b7u-$<$DhyTIXfTpU1^@al0H1;Y->(|#Z{KD|
z=#oP3N>UA{zy<@12lpNfEAG*vzz`QPeT;AkpKyB+aI$&`il{Hz=5Hw&YxVBW?olxc
zn6L})1)}+F+_;7hd+{W$Z~MM)Xr!?ptnusKF&_V83ZRGj&P1XBf}*WjXqCtm|C~#o
zVv--z2_WwjDmVo4GSeYv1s~5~_df5XEC>}8?d>9*-4O^TYw{pYGA9dYXoxanm~vu3
zgipaqjX;g5jN5Tagz0Uv<(Q7%n33u90X(TlZ-%U;-cRu{3==p(j>U?$PDdo|Sa&U+
z-|j{vKdbk&XfIV5Rp^D~6fz{maGYw$P%X0#HS?G3@{`<FYzz|Ryy<t@QE+%OWP)>A
zJhMe4^QfLiI#==_RT$6?Yo^}vEp?FYiSdrGY~QvJKlhU9@Wi|k8KLGeLpL-&Y6Vw#
z1z6a|#i|+?iN<5BiIvhuSd7KR*5{Nw@|uRmRxIOU97s&{26gRTAM%EK|FLvQQ(|I3
z^fJ=4bi7g`EQ%|GNP_qsAK(-MF;g?3A6`g=QV0bD3Ux1gfFEEf39!mxSVfG8Wh?EN
zC^S|gc%N>1up+Q8r@jbPs0M+Qr94~g<#hEUUA0AIHBuABS~S*C!%0ZNNpR3Lj9|4^
zr|ChIbyB5N-_~^{Z^Vl<^*iH8QF{g1^kV1A2AZgI^uV=V__SO(wnJC8Wv?Tzs7!ZA
z60lgbc}%js(A|G1=w|;4hJZ=D%!_|)GIZ6<!f5St2(m>840X_UW~U>QwDw(k4~N{u
zP9uxXf}M|0mzcSV%hbrRj7@ZS$CR)$wn(+aLJVJz58S#3Ylp0f|2&}36v?`PHU9`T
zS!;8Q++6oSb8>r0v&=|(JgQyW^%;$=3|)6NJ27~)H)wIUmb?gatB6mfx1dnRVxvla
z%X0VnH;sshaBnezlk#OZxPwDX-4spAL=bc`Qcxf6LBtF>K@i8R%Hl|bhFgzo+YZFY
zwnSJ^b)a~JSI3H*$MxLw_b`pq{Pt8?gxQz~+7$QsgpTNdP4X=DaCX>GD_acR4eKJa
z-HBLrXE^<swIWzfe=*SO7>L?NNfesgjxo)X3tyL9_lYi%^6>cA^lg3Lk$Zc2wt7H_
zSM{itIba9J|G-X=-(D1=Pmcq*-NiYcSk7VE`It+@jav<Y|4Z|O7rLP*MlvzE3K3o<
zU5q}h1O+QP4w;TU`4DgfQKUy42meGvArWkc50Gm_6K#5RB)X>WHf9wI7HJW(b&-nb
z_=;LYHT4pZ7bYIy!P8NykxR^UpHFlf1&#?3w%$Zd=tw`Ak_S{dTnzbq4}0d&(68Tx
zS<Lz%t;I31x0&Bj#dt)pXS%M@_g{zmu_uVF<GM#|lXNWhxTDnW#d>0-5xXC{ywCf)
z6Bk0%7m(c7MmdysNhvn@bxGhmMlB=9f>epwJ3{yuO8<#W(Ud?l6HYaJ!!{XOWlB(0
z{BRLEAcB@s-PWN(6<Dd4j$iOGyB1fS(N7?Ot_SmP|D}M{9(h`<VXyB;F#8<9FS$!>
z40@T>K`6UWUwN<3Y0j^7%{SM{-+Y~SI9vb!{!h#ZC5hN8iP6}5uORlQy|pN6wpNW=
zLF^TKYwTIAQKiM(UPV>au3A;qg;F}y&*%F7|2zMk|IT%t*L7a6b3gC<aTmCqJ}pgB
zo;iCu^IoKs`p5j*>Fn*)sWbk`J8zA>>fTvhRQzYT_|e*vpb{G)()X}0o@XU>FeAr!
zdH6cVOgLwFJS)Gr-Lyxh&s<+0%8sP!kaC$)&BR`~>a@x7?&dnj+QaU5jZryVYVUU(
zwp5XM`gRef#T0kg{QT?+quAVRD}GmTJUS|^jdBRa6ba(v(0DSWbI|B0$JhtfX^yjR
zk{XO7v1!1UUr$U6vo!_(CU0m3QGg;}x}?7PF#?_M{~BN7o&L4(oydjx;J35>{XZO^
z9+nPWUIo<t`-R(&&eM;fs9e6e^zW;d&d)UES1Asu<<SR^)rMl#=0)xMo~v??WLVN&
zK0JKFX{3QpFaD!7RtCc5A<Yo7%G)5+kVXBjk^aba7hDRXpmk>$?6yt@hhoUdIm}Hj
zn^(U;CLHc=kS}c4wXRodXH+}`Xy>^$u?Yz=nVlB1@?}rs)ZtQI0w1<#%9MqNRFdZ~
z=BW~Q##)N~5slfZG0f@3m{FYROjR%wJ2UESlMQ30D2LhC>E;0U_CD7A1(>;{zN&VZ
zo28MqV9ABPp8Gu`Gh_I+7c-x$bTU}~M1!dVVL{NqjZ);t<smaLxL+$fA8!m!f~zm{
zQd15XQm$a1F2TZG-c`x`WRskZC!X4BGj6;%vjc=1yiZkHQdaSXbmx_;_T?M7(4nnS
zRn8lk#An|>aVtbniI%jxPaDO{++Ob&i9DPxy+~y5-Ciz!KKbH1&qI-eee%(sNj>Rn
zvTxx{U)nvShQB@{lr#tlj8WvJ41DBE-9`)&ZB13FWq$yY#muG2S`1G1*`v%(k+3mV
z_p<CUcE8^2UZS2toN~kYFt|Ol=t}BO4eRvmP06GXoMbv$6`4pe#|~C;8G;4DLRZyd
zyr$M#4Gb0nnuFq5CF`ELqG@O;UibsP4&8$FJj_gLcPGY>c#!U?SGbAzY<S5q^jF_l
zP~-QHDh$n|i78xKBw}8VzdUc=K(r6>#z^+<$)vHgP$ioRpE(Y3!&vnxzo~XcvZbX{
z6w{)udwKq%y<Z=b4TI97r}7$yBy^UUk)ZUFtMS*<CFdmBf)$VQDCSkq+VX<c^xY?E
zivoY4xNP;q<c?MU+Y1E__Xe3*-UYvPDts66uJ&mX!^YEw6wQwbW+@S;?+V{XUtF*_
z+ozCl8~IB61B<HdZA-imDpqVPUQm<wT8d~t>rVO=m@hX|^&jglQJcGXH^*3w?L(f`
z&EgLQP9eV-LpO_y_e%aJ5Er`>Q6DR!{;}<o;stbzoYU3VKh@-mkpq{&h$;I)Lv2OL
zLDQptcAw_A%SE4C`~E3y7LIb4ercak<M`U9?xnlm6?&KBTla^5#rrMU9;=_KquNTp
z_h0;5`~GN<yX<i2TBzLD5vE&ZM`LgPxs~_a3!yHNrvNsudAb#p{g{mrtM}|bidJH^
zWo@85T(G)z@!gs}hU@3D`+t@JykY^7ZfnY|t^@=2@tV{%^}TnY9rt;PsZsvAY=N%|
zB>{lECTRokP|1oYmLKR*`xuxA>-$uHM-Tw00$sQ+PTt;FJzaSh!}IUl#z2J@NVnzQ
z{r&xw8#O?<wGIX*Koh^u{%iY`<wna2`e(A2GBKLLwusl|1+e5ZmtWHZWdS_zrpvX@
z0k7^n0PsrKWa;lKe!<<yTW{E(q@DIb6Y)L||9aYLacoGSQr--JBnGirSEA<MAGdY{
z0%C=s{>kp-u4F9x!#Vf2WBp12zzx95`hN2}^dDyjB*+0H5<!&_MKkQ#!RYE2+<!RA
z3iwmq0(cW`Zi8sIS+#67p;_Szx3}iyXaLNslxT_?=(Xhk$O?>!{1zleV=C?L*!VO6
zOTipor;U^GyS660Gc(q$Us}8qVZ%}WdIA8f7LL3rH_3!5$I|Rh$owBK?}&KWy^N`y
zh8HNTfXPfJj4a7$bHQu^abYPU=f{OP7&h_CP`#{Q^OtbDxew#XE0RVybTaqw2!D6+
zOr~PT?fzbmBb~8nqCT3I%VBq1ESA#UT$-^ktX{IOI3*x+Cfkpe61aJ&eP>|DZ??!)
zT??jjAGgEy2~VxuBuO6@oa5ovQmoXFoiQ70p0~wYE7(kxF8{NN+5d~S$j?NXn<H^7
zW^39afgs(!UvVtJKACtJ=w(egf<-K<@wG{bdCQh2r7=04IdWCrdKuoRZ{^)>;*mlt
zV@%%PJVHtM)n))VQzJ{8Ovz0NS)$IMf(E?leTiOjuocDWUw&(KDidyi1mVsdAtR*X
zLp?OX0Es|P@J`4|!8Qc=`M{-*tOr+vC^Ro0VXdA{EoQlcK(S7DR2bJfDSO{!DS-h%
z!kO}=cSk#5+p>Jj)~Uz}a8D%zz+H)0nsoqxnNq3HNhHCghC#;C16(9|hvcE#P~aS?
zGQULyIDVsC-dtDI)PHJ5rA5bC%P!_-(9hfu2LPtAhIe2Kbs7MR-Wnw>Kzv7*x8+%j
z@P1?MY%U76qHItufmjZtF@c}bDwVU}Uuu4r!+z>$$aILONpH%vat7Hp3=Qk}<0%ox
zk9NP<Qj(FT^#Kr|Yx$8(2oDl5bp^8=+TPS9Cg`)e08C&z0=01Oh<EpG);TQSRmBf2
z1t~1N51;f1YZGXKhJ#eTT*~L3Z$G9YLGl`gKx7g#S#8U=^TB|XxLE=~K}spcK1mSv
z$FKc58q@{`KteFA$Q6RXz@t6aVUZ>P{FPF+h)o&Xc2o1oZ4cQn5V!*bDB;OD{ec1A
z!@qN|*>rj`yv~f<VVuvvZ4RkqJnlmXy{qNd9x(tAY0_~5A6DftY$mV)P}=IA0m=@4
zep<+;X7wWyfO<E|0z83KKeA+!%Fq_s<)CwJ0mvF&jzZW?Et#-bN>Ti%*ceu~Is4gv
z04w>X8*G#87RTDk*y~9FvtEOAXONO}kV+e!lo5b@S&R=5*iQw8got!xoeC?zeCKME
zjJ%2@uUI8r&Pl=}zCZvy&3~JzBZlkB?|C@LfZ26PeSp+*ViGDK^LaNxUXliI{$ln0
z<9M{XV>m<B=OK=YlqB81?q$$b3V&>eE>`?O7Rk;>Lk~<&l;q;5Sz&$V33xAjVFBi-
zW}buaabhfQq>MkE1DgjI2Fk1*6Aq#^f8INPAp_hbO2mODlr<~tUJKgy=JmKX9LNXg
zeo$g*gS{=90#sK4|DW$YUHtssbA1oDnOtF>wav=7PaS>6>O}ed9-wFI7NxswN$qcw
zqbT<{^yvr>jhY)uYUAjO_0hPPKR^`xcbm)O`g3K0xS5DA0PRWjtqazrMIUara-LEF
z!cVG8>H#hGi%1O$G%3Ps?&mdRix!34I6XO?>qh`cx`sa7FKMgHktxM<D4k_CjShWj
ze$x83!N=#ILW*VHiXGJJ-}&dk;1`4H-)wnx317*`{|$uUnHMUeTSjHR3F*BPGa-du
zUh)9C+rIQza-2sq;0#I~z%v6N9UTg)O*gQF+wY{-3E!ebECqBEpaQn(vfvdd$K1`E
zRLx|ttP`r2rF>8~GT?*K9>pi2Rorw|=Kkr;?-Z(aF$+TOGJ_n1Js2=Rb+tH=AW|3=
zJWv?yo*7XF0$5!<=s`do>ep{UGMN;Q--4_5CV?9uw$?-z8RKs)Cf?7*S^LE=S%<#o
z#kpiSZi3kHAh!e0v1TtzJl*=Nr>n-_1+i6o=YHhCJ$B@`-f#B;D=*3BpbRkB^&wv=
zllM3ecp|=)8DFL_4FV0gu?CQVHp!k~JA1w0%+3IT1ZmxbP$9REQ_I9qSC1Pl@;FAW
zjqxcBfV+C@BBc^AH!A0C6DUXo3y+4eCU{XvS5j>qta~2a_I>RhX6m^dOJA}_KY>YG
z*rG2<q=$Tc(3E`!3_!hg2;NBc2G1Z54>Ipf_E{L$GZ)&dEpPuVP)Qx_h(DdrBRWOM
zwZ|ru5G<Xg3zKy$=sD7>NVMVL^XGj@FK%Z_4-FK{ab&s<<!bZgy@lrgJY1l(k}z>N
z@5L)$<^eKO0X*LM(1gJaeIr{*it)bS&iqW7N+RVoaVDF#+xD;&(_^X?KM>X<seg)3
zqmB%B+*E?O&LugV+_rg>p~ZjxhkYWO&9^jQfZkIeZL^ZT1fJeaO}z=gSO<UQysC^7
zJNNXs#s?5K23cFFSdk>J<?r?Tuj#&L(?UoM_(}kPdl&7|5(Sp#p<a$8P~9Htf{L}9
z^xypKz2HH#G+dIgV_<5mWAB<9#wDhuk^HSbpZZu9PGss|y`=V7@wqn<x+$P4uw!y`
zi1jDB22un_q^Jaq00WXck8aCJyGgX{o;Rfs=qi$PE~(PmH;)fwuLrryY;kM~ASyuJ
zEqXm0R2&5W00wbaZ0)OD?c&%Tf2yi4BpNR&IHB3&3GD6!+~*JqAOl7FUU4fPfKI-9
z>Sc(9x_s%Pr_Z8d_#XH<J<;pL{95*&_@xKa^8w0!66(*G1XC`S*0OPmYEXx27)OE#
zR6;5aS}_4`$4z8S0Bs^^qf<mi`Y1+ZKvp^NapC}60QFdak;(YYZS)poB%Qi-vvpun
z>*F;>bTgRq1nB+pT@K+Uw&juo&<5it+tY_q@o<4ku#k~_%KRzht`3N#Q%I*9AEdzl
zk@`Qq2X&rvQ^_1Px>VlIR2xXPoUHV9jm!9Si#v2A*mDgI&Ov~0U->26XO`qOCGIov
zL{!m0VjR!nk9xkHyV$u&=dZyuk%m641HgE?Sv=+bk0l76E(FCgK>{GMtUq(}t30sR
zEG^_^vnF%|bOmT;r`iqZf9iQm61*u0A1xGRrizS;#6V9<>d4wj{6|eP!(L3|-hC3e
zM0;7F31XdaKsMoJrM1WCo)5R2t2l4+qH>N&Y-6Pqwk`FrwbNl78VnjkA)M2mYHCzY
zd2%|F=)slro7i~bt2sVzPQC#k@or^Pn-?0Xlt87@vDY)z!9AE&{a~waS(tfm-V?t?
zw-G?EDC%YDl3<HBkE*04q+Wu+Z%~sz%yR`S6yLgvGe@hueP=|)$OkGmt%FmD)5^)Y
zH%;Ca8N3}Z?)FsBohQxh%x@iAx8_)PTfNIo4&<PL5t7%ZD(mq0viZ})gY)CG@*NM3
zmM4A(Z*R(a-{1W18CJ>sMZzl*#FA>@g?C}ueZ3So=uK|@pTMH05cBQv0^e&%*|W@k
zZwj*g<<dhINx&x5dyLB$Nu@IBkr(3igUa{pr}_OsiYaD)@-v@>0)N^i|Cfn=!=9X+
zQ+HPYpa2g;RzhzM0A2HU-&eB!-Mjg#An4XU^FM2UEt_D`J%7Wc;2Sn>t#9wzuyB(q
z=?6$u8zdNJCU*`MBwKjtrEC-WdYl>S92~<E7Qf`03@|>}y!8{yCBnxCCwal0Z_klJ
z6Ko#T7d}`SrA|M)Rfi4NiX(?3L2}NwhXz8M3nO1HMZRK*dSer{R2a3k6!o4Z`c5rP
z@(12?XDb~v<R9KejFR%-K+GlH_V-!LCl-q;=NRQUNb3ms@frTc5MCY^b7Ls_4qvQU
zO)RfA{-O}SQy8zTV56f!ujh(*Ldn-PY-x&wl2sznBMRnW3C5HHbXt7rae_wO{I0fW
z-)=q~TOChZw7-Idsci!JNPOCIvR48`iJS@U5}_KGq_3G|?5=66fUaA%#8;)LqM-&F
z%E`n0PZW~+mM{4#SarJ2uNT>-rY!TqV~tJXGO}1Rcb3tAHxcJ}1OS4TxZsrH(zVg4
zs-vlbXkvA(>bJ8jhh3spRhB~yu|qpUc^lzo%a69p6z<8PxqTg5gqs~fXX0s~uGv?l
zTlONOp>Ev)O3J-Z^j?i}5jIw~O2Hf-y+h$hWry}<GcFmRX&_J(4cs&+Hc2I?bS&o8
z11K|l40L{>|7{|=c~i|+3T=v|)QU|qi(M+h^Yd5q8p5+Jif!F)>((ijiWe2%SShJh
zENhG};dL!KE2Ic6F058W^|JB#hgW=1MC$>Tzc-7_?DC)0&>#||e)c>RT_LI3s>#^t
zkyT%^nV=vOMHK%4EsE!|H+i9{T1iQ~nx@Ds@!N<g90CWT?5$#pMDvmjBI59sSM{23
z%_{z?ntQ*po5Sj)(GdTt%3r{BbWK&zcGVrN8vWIp8}<SXMM`|D(iE!-e7tBW`;07-
zwCi>?BU;HEtIDZ_-j7c$SJFg3sQN{y<SI#5RJvZ`()1@jvlIn0ud&3CH<p4BdC!%L
zl$z6&(5t+UmY!>^u9B1N1!hZR{hw!st|}<4w%iGiR~@Lhuy4B1q{r0A?X5fkt&y7}
zF=9IinVq&~bUVXp$NNx(NhJ;90k7!*0)YbS;k8U+MR9|ODkP=-Fk)du@*n<^CJqlV
z;XwJGGnl$WXt*@R0|<kyd~Fv5Ha5iqU_fZ_l7X0XKwag|;uYJqytf-*Lltc=>cqFf
zkewp_5=eJ-*FEKD#T=+~j-FC%&x|r}9G=E`sKJS&%l%JDZFS>l_p@g<P_n_oY%I(K
zBwD2fD>|<Psi4+5`i<F8$I9qk<t{^)u8f^di-@NyWZev!-6=2BbwHHdr3h0%KxAa_
zQv^DZS0DN}do6xgm2>1`nEdC9|1LR1pF70-vB~P$8JfJ^eTyycnM0co`<U6lf7g23
zOOcS0L57mehcNWG^xu397rSU@1ra{Vbk50ql{R&Umy<T#kK%F#t1cN#V!OP^P@G!f
zFV-03c<a)JXhPP~j$9*L&;}CWatlfiOV>vK#H%+cqZS=CBUN6A#xazHH_BG4wwBVY
z{_Xu5sX=h7n^8f{m6>3E^}CbLipNQ4E|XWqiwd|w_=YfDzh|_S(Z~yNBB#+vujE7-
zj++;?-<$oy!SeYF5u?7xW~vVbqtKccty&)z??k<jj(SED)heqsd&?<{e_M`XWjx#I
z&D+Q<hp5@yawSN0Du0z~Rn*I8Tv7Lw1YEUvu^?4U{97+AG+aYiu8)m=d4$QuuKjrj
zY&-L_W2<D9{OkpSxtGoP_w$(bhNpktf3!8iRA)9mcqdvVec*J-8`d|t^NxJZ3C*cR
zTDy2BPR2wUM((XF{c@`ltgxL{MI$%JM^qo$sX{rUH`c0aKWM38)lj(Tx1Y<m-bQ{P
z$Ejhqw_!sJR251PZj{MQ^qv#CUuBLL{gJn?E>;aqh~DL|-ta14tB#J+1u<}!5(I}n
z{`o6p+m|L<{?V|PO{p63g}<p|r&kxm7eZ-7U-1ey^a|9EPOU&^Mq2rD)rwzzKV0|T
zaXVCXBgjBsMx$enkWd}a(5L53EN(loS__msb$>R}Ix4=ilxqfGP0NS($O)g{_3HlH
zK>z%Ae5rNvviFc7Mryx*`bY1VvufV<(!*;!*ZW5*Y;Ij*ZmMF2)Oy{OHft-+5^Qq0
zw0Mm`4z_)4z<=}iDVZqx)C5MhbTwd^!0&2x1IK>eg$?q=9fQ?=rQfP^A1cs^)d<HO
zCHPR!(Z-gl>vvVsITI(Uj>NXulg1SLi+`Kik%OTMJ83*v!}xH0{NWL3C>|RdSt95?
zPq%=LogouFF(neHE%4lO&HFBSRlJ<aR7cPnJ4WJ66;Wp8&}AgnqC_&ho2WmTfYMEr
z34b%pU{-gC^O_&Ad>Bh<nD1S1r*bTl+eL{hd2V;8Ts4M@3u47LU2BvTS(d76DQ$*f
zMsxm>d9?b}ckOu;t$gcxlJW18*lkd%Q)keh-<KD(3Qsl%3A7w)=?ZPzqv;&i#jY%F
z)G9NpV&)1GquR06I;wOy1LOzZ8?*(r?cvTOb8l^zOpb<QO^rH=-`S#2)MAUdi%v%A
zJ_EN(4NIoU=iiT~H_BASDIQs7TfE^my^T2kh;WOof3oLQ;EJTFVJK|&4N<!P<5i`q
z<IM)Por8MW8>`=^)t=k`ApiVvy7*lPcd)#v|1eWMyHCtTmnohWreKPYj;eEZXgF#k
z5~dZ$T#}M6BsIW(z`PC^^>@o9Rj75sHBGD^d^=rAh<OyllYt(G)q>|2x$S8dbiMOV
znc>zb{la1#RJPiU7)D264>Ew{l{vP-F2f-@4M$dUcYBQYIg0#Huj%3#xM<$zS=DI|
z*_a&3&k-+VJ4y**gPl3lCiF6?7~0A`uCVQFmfRvkxs~bMs#v=ktlBYCO@XV>r}svR
zlY*wzWGg)ni}JT+EFQ+p3qp%MGKKh!{OU%L52H2py{%c*5Fa!x>aYoq+M*Rdr}wv?
z<It%^ta0d+!&9I3DY2JVA%8VmQ3pYhoH@Z7J_NS|Uy&<>$@oyipdhkJQyXeVG@r`L
zi#=xKt|Nu*Um16U>ZwU(XkCbgX#gb7XNbu`(2_GiOlYOb*^*IkQ_`RX18B2xV>N#I
zGs14HTSMxL$WqZHKq?`C=IQ01Z`eyE{>4OYiPt#JnZwtF;%cIg*mDb^W1$M8DMRs)
zlqx8Nds}qjBkCP~e&|cF;dJK;?rDeb(;q5ITd`{)fBd?a-u+Jt&2h`EWi)UKdP}xd
zRxmF<Ue;)RIdd}pN<*Hpd5klH?pV|D^ULpzg6ft>qsCZfd2TH2*AMt}lWe`m5fM&h
zS+O{mZ@u*u?O{8w@Af<M04K2`AFHxV9(<~M`0dNHdQ4Tjy+(3^sGthOQqwnB*!-kU
zS2li%$3Q9LQ1Djv9JNp|ZSUOVUCR0IPiKg(d$4O9HEg}$*BKXCOLs1J>@msP<J{4I
zCGS1v#<fL!_wN6Rz$C6-zKlZCzRgtqMn1`>?WIhM_^ZpeTmcm*a<#^BAm%p<Re!<U
zVz~Etz5<^A{TrZ12olS~QbT(kV`tP9kARE2HZp%}N26$b9hR}~IhQUB2(q%bXG8M+
z$4+x$GuRES^=Fk|-5ErMYB*@A&xx3_?GU{p7plwM-ZsLwNG%yXm>KnG!Y&A)POoBm
zoIEPx9gwC_VhEu)fx<aK>9iVyjb)l~f~QI8(JnXZ)=!AyAz;Mb8w)=mROi_)y_hQn
zFC${VK&Ig63PO~Q^phQ{pO6&QaIWrxvoT`1$I=rzZMgpU>y{|YlSc&8@-LB%ODmeE
z^ZUPJu1ux|Fqa2;ExxtFw`gA4_D^I;3u#nw$I00pv}<=cepm_Ydg&}6oZpYAlgvt)
zb`!D)?kqF&rHG{#+I2zHP3%ZLUMakz6IAkcq)whIcS<NasBBlHUh&m0sG{Q?9pl4z
zBmz}tP!&{R8gO0Z2zledfrV(;IXOV+c!h@qlPE+RG#FCn2y$S6E}>A92l6`EAh-(g
zs6m^Nks1pC(17j+U3JJjF*Ue`Pu4@hFm*l;BEux&*Jx-_IbSptTqlJVFus>+al1db
zUh!+=jhNporDXRTaH{W2ZrLx?2%Xj&7rAm5bT2d*yw%pd|H<-ks#TWGRk1sg*~X#p
z?UPh1iDfIlPqwd8tz*g1<l?Mm95;!eq?-G!!G4BzcJ@oX2eQSczzEMFS%NxHbu&Wr
zi{p2Q#jsFFTe@G%ZR4cnaf6WdyhknWEQ~8Jy+b<6zJBqL{=71m8q!(AB<yLJwz|+1
z@>Eb&)aMrM+VWHgskQu(-@UZ8^@H}V=U*S)i=n-eJLI}YL|X&0){3^!p*_=ntwC?A
z);}7AK3}--3vNz(_r;s#>C(H_(En&R#zW+LcSRqEk1K8bXbSE7a_aS9jrRTd6idzb
z^2br%)85A|%K!KG>*JU<HYkAlMFCv>!vi8hz%gJz*$GOzx*?~cp$1cvgXzFj04)tb
zM@L6V3kNf>QZjQ=v+;mo958wS0Rx~=1`cL`n-xGH7+F|ZIJr2eId~yVXgXGbYwW@d
zToN2SC@8lS4e~k-N)U2g5`vMU7gk^r7w1Cp!ceksK4qAw9HY1*i-b74lqi#=5}S-F
zFDD?x3&;ooiei9@B*4qZdmSTy!CV&>5fYaWlaLgbmXVTIkW)~US5{R*T*opA;aEiV
zS;Y+DQrb*%#vJlkRtaM+1r0VSb51!sR%L50MJH|*7qp5tzq%e$%}r7RqmES*!0HKW
z8;R-N5Ysgk*E5wivXD2mQ82Ypv2;Lb`ta!l@ax?dFnoY9j@Fa~bd>-D6~J5zu+ak?
z3<0c$x{*1`%?$9e2K?-RASWQi8HjKLf_<68?lDCKFluRQ>gZ`>4NUa(b&ZS-ZkQTl
zZJe;SPNwEJ%q&c;Z7pr>tQ{Qfa1JhdH{EZ!I2ky57`b|xdia=o`dRt-+uaRx47h(Q
zD9qXQ=505ZJ6`Ud-X6Ypz3&D1Io}U=50CPSi181+8ypf45*8dD5fTv{E_eekXcjMQ
zl`3MJDQ2G|;aDJXvqZ|JT-vQ#)u#^YSFan`XmG#jMp(1?gBI_o*yz|uKRm%dJ~1#M
zIV2@5JS{UalNe3RNkFj0c>`$yKzby7+<kar7&PSpG&=;y3kQhN*Gi*-96UosEKrts
zr3pc*6M(v8pemK7IUVTC1-c7>-Vy*GA3an7jF3R1)%2sah_QOM@h1N9X5sNi5)+T4
z2uX1X$?<6!$(h+{ak=?9d0Dvy#De17lJdgRilU0jQc`t!bsed$vAUtTw)t^G^ONSb
z&eqOnPo6#R=;?jh+B@>3f3$D#dFSBRf0I*#BYktzwR1DguV1yjo_jj~=D(rg!Lg~K
z;pwT#nbC<?(=)H9=HCp>FV4Ps^Jag4|LExG*RNk!%lrR-fiD47FsI%V(qKH85uP5W
zSvi~p<yFER)o(xKrD0>v`=MJkp2931&8csW<Wb?b$RXvl*S;*|yP>%Y4%*EtQ3yI%
zpX{iA^$;5m;WFrKcwMcRE95lQ>17;#Qe{wXaBmZ)mh#UOrIBaQk!fO41xDzZbzs1K
zaa^nu3$NSUUvZ~zUpK8t)YAnCVfbN~Z0b@z1C4flLG!RIKKp3}n0;~>yZD%=?2SbM
z-YmfNlVrQw6z{2~@8`n_9__H`;DWN`K%z%#9HHF!Mc3E0?x4>bGcTTfe?MTTS!-ZL
zvN4Y&D`)3-*xn|*f>G%c6cvU90vSvm&o26zf61aDyNvT&v<#}QqRwO)(OnSirO+pO
zQ`w`hSPhiiW+M+T{~po{YC`NN;+VCitNuzFNC)a6aL5^%H{-fwa6RiN?%Iz~FE&~7
zRGyl$Ap(xc9?XuYE2=8FFVeNYohC7c*-4jK^sL4W!>;F33r5PCLaLni=LCJ&aJv~x
z?kun*z1TaZh`d_=RCM@P_p+RI*sd-?QwcF57^{$%912a5+S0(}!MO<^75N}Y>I%W^
zV)|_2cq+uJ0h&vd?VOs=myDh&3*^p=6RaLc+O0~LJJ_!#>Ii+R!G37CZAI;o;=!ny
zV;V=mkcbbl6>&n|k(EM9rqO)q%Xb(}WG)w)n!p(b-jQUrb04%!m~om-Q~|6bt=y!!
z#>Yn=lE@hOSr>dXBT2`v+nWNl$=n~Y2NRmvbI{3J#$`j)Q9S&b1|2k~6G^z*mNa73
z;{XAeP=e+{tCp&_H`6m~dIDKJB~2O%v3s?-HFGbQNNAj0p=q-7bVQCu5H`L?qpW9c
zjhR;`t@Ib3nMnrH)p!A20wzLXZc?y$nt2L%K-85MJdr#W1aw>s2;1K{e`v(WSP%(h
zPnkyIW{Sv0bzk*!x=j0VN#2sK^<>u;gjK~o#A+~z){`(rOfG%KJQQF|R7f}hgDDi5
z^NB8-Prn_=AOvO9+bP@dQ6In5g)rTOH9JWkqh-V@7%Jo7IE=(OtS?Kv;;!`X?U^71
zdlgb@lBBJA|1J3z>IC~xZeL@G0wzk_W}r0o8GAA=_UB9I(%lz+9E{gZ(KF{qN|?LU
zAOpeuy19|qXc>@y>-bq~WR!-)mesVhuqM}DJ#=pnb}NDX#2Q+uMm&fmNf{sn6(k>S
z&R!*`PTo-as{OX9uIi(%x*WtoEsHcie5&SnzoY|#9Mk{|mmGR4knQ|ZgqwysBMw=F
zC*#AQBe=tit4tDEA3IY~{-Y(Msq#;?u>FM9B@Vknu0z#L1^u~K$b}FdPz$~x-Wf0<
z4l$_NFGKDEi{+%hysrS^W={>I1iAR?*bYU57<h+xZ@%6ujQj2N9eeg;V7!|d8{1%#
zhLhRW=q^lJD?Up1G^%D_N*-Hhy6&R!$AGynu!5UO?B+bmQBy^y&*OwvnSOUzFt2v}
z@V;5voj7Rd%^<Bm-C4*;I#xJk9G7rkovD#O8B3oWv`hBbn!=8R#cp-P<F~V^KAFYe
zjE8@FYAzNPc4Pl9hM1etD0b@v%V>(?U^T!&JuN0;fB$UtC>vt1WW7;DXO((mHq95G
zTqm=|M;zmlE>`5!i!l*Q{RieNIE0nw@1Iv|3Yo`tPCHBUg-WUWN?nBo1*Gy*h-M18
z8RygWYG;#|ucEidGAvMfP@F&ymLdpQv%mDyw2>!q<7>7wx$zG3M{22TtRoEekcBaP
z0#`P~TlHm`_i7!OgWWtHlOwNF4t2>r%__R0P5p8#5l$w#Iz6^yf4`8zY#Qlf^{I>v
zbIhyco9!CVpFV*ppeZ*G8!;il-n}x%Ld@nQ0!~xoNL@mhS?v9StfP3_@mz4*^Ec#b
z88?)!*%JxOUy0QcpX5L4By^FsTiCVv8jqn?i4e`!e{?O*)P~DL>~bjJotcI?fSP^s
z$UTU*R!d80UTq_b;<Jpc$C3QxB3Di%55FEyN%s7Jf=mvDnTZC4q>>sF-{V_|QOv*x
zQ}au~p}VjvES`>8YWWr-Mfshej>R4R*X7h5X`jgj;|3fX(X*&pye&LPKj*eUHX;R`
z0<~~;irZ~Q4s$)s=U!{qX(~Xr@PoNE^OBdkX}eC*dZD!KwZp4t{pT}}qeTmr8<1|W
zK+$a&mC>f0i|(zwFD)9T%EV%)E;e@=nzv7wU9_5Hvn#nKy5}gfiBjF3Y|LO}&4<`y
zeq43Y#i~Xw&M4SJ5~U7J5IlrZekgX;d^~96|KYg4GNXgdFSQlBOSJ-3ra;iBB-`Ni
za_+(@D61!0Lw5eau1DAma_>t9P@<j57`hcdS}~+tn^%}66+NeD3mgDmyqA0N>vG0F
z^M|^4t!?~YRA;PzlLVL2w5n#F2lkP_^&y`6=j&%_%Uk>2lM7pKGEazca6L1a`K{ol
zqAt;BOx#zIm$7AJ;{*9GO<3Btx$ROS0HsmxlX!wPuZyE;4j8%YOWf+iy(F_E2pXhW
z6>cio*b1EHKg#<^Aj-^ii-I8z$(}L{yG!J4^=0+OU%egvtcraSujBg|3pe^?0GP9e
zV6BM(e^%OKnZa<#PZ)!DQKZ4|9L?|#o((QuX$MAukmH@ZG`Ch=8Yt!pnzY}T@vRAy
z7TX#=v?tAGcHN@D-Fcq_$yRvs0;xW5rlE(mfS<cqE=!hE|8^2CfxEqcULGk-aGmWg
zB5JnQ!xg#%P8Sc0N~dcSFq7l=1@fyccF8Bh68MLX2#CJjWs~Rgg|or`=2!l!Hl|=A
zLK7?ksS))=Ey#H&gf8Ed-r@=fqk4GyBtD(S_=y5f!F6eDE@Y@jDM64(2f->FqP&_`
zK`bM$%}uw!X2^sK)_RrKTN>eq8ZTB?TFd^|7;qsy+JK`@W#1V@I8R0}{^VX`QtvtZ
zjQguaX|_WeE%cM5W#=}9QoM$Vj;mz!Jv7ot5IDRlcTh4#W)}YFbo`6r$0h{xzoX;h
zqd28>84|>95s-R=2z-7Hx(XY0-~;&u*7&8B_bT$EmO8rQ@x|p=V+Cl7Px<FOufIFI
z>P^}$eFsiwHi9Ra)cx=Me$B+FJ^DE1LvVhNytILWmV+s5@l;{>!Aid|Nm+0XKcBNS
zY&-OZrdz6WB&|j)bF%e^x6XG9CH!qfsy3-3HmU0?18QSsQs;P`D>=;>Q8mt<G*osr
z&tkPZLTq<XV)te3eo$8jQeYb5%6G%}`Qphd<7e;?Et}{p92pdjA`MW~9Xddgn3eN2
zvM3>zrxsK}@hL=e1U1ZIo<E=#T7M#~fs_jhQojkZ`(d3(QyIk&kcg3Hr4LN7>lT9Q
z$sWVOa{C0oIBMP<6k7w2`abWy_{3masII>a-&SJX<*sRFGXDQy^17Ay=0FOYQ@LJ`
z!0+*lB#Dry0Z)c(vd+Mp)AteThpsoegzF|49qOSiw#Fs4@W<fWoQaGWETra1%6S#^
zsUExo%s6-sdxqhveVRHinXWSAGkWgUyBzZgowneavKW@JT$I5Vn=)`DxV{H^b_#c?
z%Mff!w$;nDmW1rZW`0@D{C1wHG?*~}LdD^!Es4|z;CK#Kx5H(ZzR~o&eMyb^EDAd!
zRXFh&%xSzy9Y+Gk;HmrfVSy6&sEeVPC*J#ESf-wA&Xw%^A|f|i4q7pX&n`zGJmrQB
z)AgPlk(C^=Upb;QITDJwGIqIg;kgu-m|TUPT$PnvwO_gCHMv;DJe*ygPI#UiI#0V2
z)~N+!uFQHmuhq%R$e_Wf8xX2joNwQgpE#Oflg+d#jqo;8_IF_}rV>laW^LJG?HOf1
z4WKAEqAsOMFFk@)yk<51g++uzTWdw@v)P-E*zS>YR7~V2h8HF4D;I@vPPTC-ghOA0
ziqH5=7hH7mv>hC(c`mkio?1cq&5_#4NXSqi^ay!d3q|gV=C8ayrjt6gheD#!d^sf~
zK`5pQol;!-yr-0@8jmd!CKrV1#zBXBZWI<nZw*<3B?Sn_V&2D6S;Zdy+rAKu>kyag
zukJ%zQlL>iLiWs<$vpwf%b&c-=#1X*iv8jWnxY(Tq9Eg7Nb|8^6jZ3oT<Ax*P&1iG
zl%|l8j?fddFd{E-qFtybr|?ntLm6G6sUZ<@ZTMbJTBBRsoNUMq0n>yNBc9h1xgB0>
zL+(F*inF36C^aOgj<qOCNLO=4eW}QUl`65{Ro%lC+*+0Y+7<6w7!vQBisVWOFA`#`
zrR8&_m2VqGni|l9ZfW1<)~lA`b|Kj3^5{*OS3%`4T5{#Zy5{=OBx&*Yp4l~QxSd~#
zPS0&^7bU~v6)&n3bte?xy^gaS=Bm<y*8VUdlYzDb)znZ{KX_grS%N5<Q0~8NFet4u
z`bK4PIAknd<rS~#{N;~3i$N;Ycn#W9>J2Rgm?G57UhQM9+UHz{TW#tWKh(_*K<!r8
z(j@GMkXmY#R-w0+R;QMo5Y*hciW`(fpRM)e0j{J9hsJ5{${WNBY4ht`rOoW@2=}T}
zo3-<5-4^O+f49t)Fc#^N1)NX^QMi2w)@8AWh7q7Viy<)!bg?peZ#y4BvKz}s^=gX^
zi*fZFZ}qe9SHb1s1G~^DX4o;oc<PhWj0}8riQ)~PaaQ)@6F%q~0lBdY+LSR=x7OWT
zu*;Vz`m&(>t;uH8)#yi_@v36+>(w^yKW$W~Eb{vV$`9dp-I?eUygyn)VIRaxt<0L?
zH^ZKrkIO;1FDYS|1ZefDIS^W~+Vhwy8~lJOI+D`5(bB5$0d%$A%JHpL#9JE|S?i$N
z*3~r$+<LwOhQ9ukwq`aqbpy#lls9hpbW$DJAS1dw|Fj_|Z4+=e1$T^4+IH^`oUu<8
zsM{5)qzfOP+Ob+gtNAnD*|oLFI;bkcHTP;=*kM1cjF;Ujs9c)4+qzZa+@+eecPQ<S
zlrp)AH!Fv4e&g?U5$c&P=&Ese9?_HwjJc<7y5AD8D-CfLHiQQM31N~G`*9Y_Ol29>
zTss3)Mk;!QENTlf6N=>EdUa64J-D~Eh}m9uR%y5Ul@i-5I9FiewCC>Z;l^ui<RQ?z
zpx-oq=^*px&huS|{^Z8oP-_{jH0arHzNfO!xRUMSei9S*VEF~ksfjmR!=bq$(6eU4
za+_WrNgucFe*Pn$=X<@cKKuOm=|q9@{ebhODzhgtS5)e=U6y*%fczZC+V=hoA|3M}
ztd#3}ewU2u$0g1(kO5&wI}wimc)IUWJ>Xv-43a%l`|p7N$(GaKMLW4^bIqbAH6JMR
zGhw!+Azc<8p0glwjX;jGBBFz^VVN`5Mnp^(Dj^S*k`MeQEd+H9f=_iTeH?Du39|Hs
zYRbd)*RLn^jG_LH`A23zmY-VQx&NW?zJo61(e+z)cS1Jbj=Rc3Q_m!Q<zH~Kx|mCa
zre2zc+BQN<#>1n|LSyB_h+C+Fr0};gG4<Xt*uP?=&@ki8-of#zD(PghbG`M#nD;E9
zS5tl2kSS5-QR?ie4f%eKLiBc0L}+C6gR<!Q%`jpi`s-P=?RB#fy2-PpsNbQ`7-cv)
z`0>cebb!jt!g_GpB))1BAC8HgN{oHSiDGIX+<O_z!0dv7#_`(5iMAvsbjLZ#%Ze}8
z$YUZ^muE+O>~R>FOG9~=ia`Tk5-ca#aXOLm%DDIi29zh>-zS9X39a=eMJ2}{FeQ_m
zr_{i+{}pQ_Po$=WS@XEeQGn(R6h_`U&I`QrI1alqNK=$IKwp1?Rqj9gQz}+}$!g!I
z2Oo=rj_V;_ET;{D)AgI*s2-)m+ul$O&P&LpYYe38JW95C`v&sG=`CjAy3<>0t~&-P
z92@(^%qs8_W!^n7F@Hb)bJ$ytsKtw-x7`|9S9K?K62pT-S<<eob;!jW4ADPh@j>5`
zLH%NP8}ZsNqJ~p`gd#7?WG4IMQfl9F-u_bh#WIm=Md#CUj?+p()QY(NN>SfR*}E0+
zWJLwnYL)6LW#dXs)M`Wd>XOIm;9y?=)~aM6MFcYBqLI<W4mLuz#_gQ1G`Kc|czc7X
zIZrd6erpZ)dZMX(9oL8t6$F<`E<cwn=tsSi3`G8~Ifc|DYF0q6{Z9XKiZRv@x>3%U
z7|TilDl9yL?TZ%Dpjbm5CEr)nIVy**O%_V~F~t;@|FmZbb*XHtTnE(hAQ+3ZO0aS@
zcrJru%>|MD3r5S$o6*4>NnA48F=g1`+KhVt-J)1IfTt@ENz;zB>b-;dSKB<_2y-d%
ztlOUZ13l#uVUI@gz|l`LpgV&+`fmiDHNFRJ>_{ta`pQuv(r%3EOTP3#jI&9wSHQQp
z5R=8YSHG;qokYxTx-LKP{LiNRP51+co5G>n+X;_$b<WDOnPF{Xyzlp%K788oy_t*s
zR*cssqdj=Rho`8`e^a`hYP^{;_9o!BB5CDVs4YhV^c(t9|Ka4NxiMYI!%B1EOa1*r
z4YDjX;fG6tK@|oOYVez8_V-PM16%j|g$Eku_gyPAM&dpiZgUOKUym^fioGfJQPYE2
zXr1Y|+8(>uj?}OjT@QVW=-(XNp`B}!n#7k73Bg{8MDkvmu`0ifFMPlDD6;#_4QlK4
zg#!3q(@MT7wiA)F=MfxGmbXxN-(Od6s-Wg=2Thiym8?;%Zc<K_5~h;##9aUQkMGOP
znw3gvmH6-EYhNdHzTT4gw#5xIhFU;%JpD8u9c~C5->gL@7@Stv-@8z>uKud=RS{Oi
z54$n@$z(oW|1*p7cKVOnV~~Q~hR=$8MW5Kjof5@=6*YGuN+Xxo>qX?7C<ElMx%IRC
zKLlvL7EfE&dSe@=%<Hh~eM}|~r_}#hL=R56)DU3m5@I%Ii`>xDPpb`4Ck@Nhs_R;f
z2$x1^cEc?BLyedw8VdESh0}cY0`JRHmlSK`_xcokCp0G~R^q2bNfj^|ghb?*@;G@R
za8~yKyXDZmo_c!R(Ku=l`Mdfgfk$M-{%QiLku3h=Nq}nh?+voSCI-o7*>BK_$Nb{K
z$MkKVg|ggxr*MjYacsB-i<<MC7;UZw?eC+{3<O$l6JDtN_lH|?vy)okneM3w(_>QJ
zGfaeaA%%X)$SD11t3*A0tQBAWk2_mRtptkWj%a8Fp-SwsrFQp0+c8>i>HUa}TF-I&
z#r0IX`R}mOyU?-srra6-NVvmO0sVDY+W|rUCBqYtp|LeR)L4bicb;wzOE4<Y)=-eh
z(jZXQ%hcGKK^sz;Eb<KUUf&+h;Nq=<Y{wdO@WMck+-Q<f+LlpjV>JyE0u3HjzC!HF
z9}y5j7_!9II?y@Q!;*^1TY$JZhnzV?=DnGIHK0C&k;`3y<~1hp=%)O&UHoF#>GihN
zeQoip!~e15m%cgmhM#`>u(tI5)<7&JL$q+#hRaCGr*P=PmxUekSaUSON~Ri<evL6Z
zaGB0?3|kD#QBr_j=cz{AsBdjJ<R41PRV5KGmFBVp34A6;b`gBOqf;#ompWm}XWzEF
zsSo!0EKjiWd7^h5zy93)m{=ruw?Hh?Z*U3WWZ`BIfVjiJ&}Na2p1O!IGf>UD7j{$S
zXtv$!hOx2`aRs3VOCWTSaZ1RWpDXKk{oD+?(VysftT(j%_mG_E0dG4LV!*;`Q1C=Z
zM%Dh_n<ljrm3>|<Au>ryCi;%mre+d_hCAXr6`W6d=)uX6E;9ZKkBm-}Io9LLwG7mM
zL1$qkITl877m<~ynVjVT4nC@$DmgkfY&X{%d3g@T=^05iN_12nu|L2htb6}JLKG7M
zg+vd<s@q%SU{$&5$`>sif}i>+a@#Ler8T9m%Pu`{MGI38%^R7)?+d?5|Lu5yNM(00
z=;<Qc>O|dG84>UE*mN{8=`{FNErQTvbMNbPEq_|6rbpvyQ(1K$D+&>YF!O10Xtq{X
zK9`XhHda;*K&t2|@@F@c<ihOOH7s$6tiNFe`d1_TP{+WRvS*ILZ>(7KuRpwUsJ3^$
zY$(2DF9}w&95LSoNB?2^My(>mm|%^kth2JPv^qtOsI>al<(ZdwoxgAu%sJyFs1Crd
zDDbNa+bPuS?(d_28Gm)ng3P8YwsXI0x|t*x)hcR~M0>B_3`WLxEAl-&zpDKEi(fMe
zT57b23KdP4Jckwg=UxO8yTzB6WpCK!hI~`{f{+#lTAmHrhH^bCiE*>Za=%)gWIrdH
zQyNd*-zkW=`}}j)pS!(3be=hdvaCsN6vJFgR89yv8NKEUN{v0K%q%77Dw}JHS4pOU
zox{%k-f(1|wCY>(DbaDxlPPgs&cja58}B+&sqSHj2<1D?d*in*7s<~^+LNNcF*}P3
zmG251MX{SYo-hkr9oq1MEbMkT-&NCCa7U}o!~+K6>T0}pg;rB17Jk+cIvevid3Lhb
zuL0RbZSEP7Jvko{{rmH?%jmy9mSXh#-z5~j9QgE2*6fpkWljh}x|~nN#{fiN9?P#*
zkigk#+3s>HNb-I8CQ9kzco{+lR!MauKH!E{>LS2sh6gpV$hge|+eKjllqkhB^5)}u
zs8C&RVm!GdQg6|+fV1mSJa+@>P^_Uq!IOx-9?O#)I5N^9(jdD01Ndo51W$jhbQKnw
zp$Up7BGufJ$y4$@Ntj0F*+$fc>k5O?7&Cm=Q!&tymFp~2S7pyED`NLH&xiT{u3x<3
zZD-^ZYJd_j#43aj9D=EuqfjZ@wyIN1;53I)2$i`?+0)?=&_?jJ!1-J=pw_o&j=*<Z
zNz>kj9L@}cSRk(<@I@2$+`LJGd~pGUU>>2;N`sXeprF0xLvdnbvfW}%PQgfxz@2@V
zS+seInVZvRy2}(j?beh+4-E}Qq#)Bh*N=IPj{K}Q%pi&~v5-0mO5V~fJv{@sXq9HY
z(n?QVz`ypga<d}gH|AuPMsU7*QyhZMd+w{%p2v{Lz6MV*OpvTOioDWQM{mGHNG6tH
z{+Jyj6h3KWl34M{@s4s<{S+q5QXT4}2|1KVWfsCgv!)IHSl6g@V1kKqBV0Ew&Min(
zRt;MGLOlRY?SG&{UVi7)LPX`0SRBfA2E1RQH%Dz5)`+05ArtK9OMP_zwAo=erE+3^
zO1=t<h+dB8`3Fo%7F>0)`y`@?hela>r>1U>J`V4H8}_%qedIrL&HCxVfM069k@4T;
zmzbf2OL0}%1esF%(USxIb_&gW3(5rlnuFS=*`SV_2Q4-Q_pNz<ON(v{t?SqA$-XI@
zdipX>R1^K2S;$(3S7RTJAv>x3!1~h#I`7M<@RD7{?X*19Zvy6QZ&L$4>9CY#*USWX
zpKZDYwY|HW6lrgHm}t|x!+$UQRp7$NLIQ>Ez$agw{aEB?a3BBSMC4bpRMbz9rFR>z
z!=WMUqD0`oKObBoUb^1uZCM&n`wg-bjEg%fsU0MwFbPICFjJ3<Qc`7p*A?hpqkGuc
zS7^yDsMofcML0KdH){)b`s>O%Zaa3O_5B6jp3M51n*(-8G6ved!@V>TDc!nuKg!T;
zNa1n`aiJZUTmIJ#quX;=RxRDM7!6i2MKM%gF+?u|KZxAxd1>fHRq%A$UEEO7aZFY_
z?JXxuLNa>hUR_Z6*T_36O9@kHFmJ}cNU*l$w;{D-X%b~$zdAKLL;S3Cx9O84omZo^
z*>%CSqETKd-`U=j?giJYUU-=%*)JH(pEMXpd0W=ozisw-T5kBx+jiW3v7_$(BR{`Z
zoA>rhFZS*~j=K1K>m&Q}us}##MwG9cvfZ*r3R&uR&4j`)F0+&0XgjIVU+ph6)?$i&
zI+{N5yZc}5%00y^+~p*p+is0~xxx_f55FDoxs4{q`8aDT>TcJ1DZ{?n%V*Cr6k~i|
ztX(2r%m2p#zek`@S(mn!f6;j1&we&D=Bb#11qDHbdR}jHD`;|KsMQghC|J1Z1`OE3
zekOAjd3T{Vp}Vmmz&A9*^yz%Ov=m(SQ3Xcl5;q$~Z<SlUPL4kN)tS=zWBBb~hIGH4
z34N2GEb%^6;GyDdM?wIDXRmcEm;z&$$%62I_j%E4Y)sn5Monb<#n#aC#T47qvR96`
z?W7Dx&oFrp&XP@1_5Q3fWQIJADNlD*w_1Mj?JWIE-}kMy2rWAGpKQ<izCi1HHv%($
zWKp1CMoWf*5^)H6ZQ1KF_(o1n@l<nQ2vLpqhL%iq#U-N|6k>xPnLd87=&;cIuI@4y
zqxYWf4Z|*2xh=(p&Gk5clMg0hmjAhLL{6I+_xa7kkdyjX_o*`aPrS{14s00SZd|IJ
z3-m-I$0(#3!qg(Hi@CPHYbyV{+b`M)!|+gL@}0)tJQp!j`|&F9ar>OgYzI$o8tpXs
zi^<$Puj>DVKgpf@a11J!QY;h=!?0Ol14zYzfJybA%_<CKQYp>t4U#XA8kr4Y*ASS5
zCFj%yFu@^(=@*Q$P>+`YB;Z^iI^-EFe3ZWg>Ba4^Ocd3h8j^8HiK=s^v|^1eSVD>t
zt$<|-lCPsTNP~nQB&2CFW>=G?vu`L2{!GL64q*GS51&g8zEY&&Gol6P9$$(^rdc30
zdXU3iM6Ia<G0D7UuPRmvM7q2Pi}d<1107C4P!>MWriKL}&QWkIt^h?mwWp6a?2a<0
zeXo}y*if?KncP6kYUpMZIm&ESEKp<{0$Pf0)FcZmXQ&XEjEx}Lpca1bL>UBgmtaD-
zcfP~)2y5VI$38AeKjU<HB>fy@*`T_$R&Lm$Ra=acVwbW1R0n%L{M!|m7Kcl25=he|
zyYr_?*Re=XB~@So2KOYp4nW|}WOtfz40>Z@+1j-lx>=Pk#HX%#w}7P;b<@zgL4@&6
zy;%QFT^|*WXk6tNHdG8EQ}plH`kYRL3=TIvn1uu-`i}dhYhQlod7{Cn<t2mirO19T
z4VEP6F#Xnr2I!<JOeF56CbfXGag}#R#{V<b4ME^a)=Qy|=}oo;A3cTsCPUPTCFQy7
zKQuselTBvCYyO4?>iX;|6Qe7Dn!bK^9A3KxHH7;`e)LPd@g#>H4KgRitp&0-w17p5
zM`N+W#m*d-hi$*BDxS9Fw@qifUTNs6oT5%MoUyHmzim+8JMao+(Bz$1jRT){6yiWe
z)tp@Ch6etOn&LDS2#FSpIh2ZLy2=yIMPzIX^3j7I`lPbvGKE~p$tDYb5(c0h-~4|7
zr9fK01F&ES#@x20gqFBMOM+9D!9=4qksil9l{b;h@HkDXQBD8ELle@3kliHB@Hhh6
zlnoaNg6A>?C;*AkbPNc=J3f#aR9K+Re5cgNNkgF_d(6(#B8bYA7|g_z@w`ktNDZ|a
z2paSNjdVZpw9N9%O*{O{q7=--5l-p+F--h}oYBwHq>8C|4#dPy9<qwh6w1FKCD^P<
z2gS9U%$_Eo6F=~#3S<H=I?!3EiW55{8%&8H0EJSZFVKOz9!v`<Xa;^WKQeL^ML<7_
zf<0771Qa+4DM$+zoedX7KR@7!uw082RY(sog%dr(w1kvEAU#D8IuC%U&7l`1Wm1F)
zQuDwekx0R}g3&2e(er`N8rqx>g)b2$(KbxKkO|We9Z~;OJQWiqiy**I-K?w4i-J)&
z1y#WV5zPru0EMj)1yhKE6p*Uq=|#ar0S>LvV)=@c_yH_&3g39QZ%Ya@X;VjW$4&_Z
zbVLG0uv6Q_3RKvdH_gz_P=q<HQ&o9XM9hjtK?_CAx<(z<Qsq<~!BiB`R9Ov#8v#@&
z*u5GYGe#{Ip};wE90gQJLq7#nLH!JWq)-c0i(?JcQW(^s%TvtY)3m_Th^f{)Sx*mW
z&-VnxY0cI>1ywk$PcR+KG$qjv@zqxy#jQ!bUR~67T~@1T)*3|DF@>)}J=8OLP=5`o
zR})5$(3Gf{3g0l;usDg-Knf{^i;$>64%sn42ps?GnaXBRCiiR!mUszJh*)l!*pVoS
z+iC)hU5V{_*e=~J+02Mxp^a1U11i7}E!D2OeA$?#7Zu`&ilAAq@K_H3S&h(HiXZ`@
zeLvY6LWVsGs>~pxP}no!MF@0@BJvuEXb8s&ii+`#(968qI9QGgix9CmPdo)PL7Qi@
z)D#=bdl8i;n%cIhrRpqOs5OhQT_4!6lB#{h;A4tAi3*XZ+latgm?;SP2$W;oT7gvy
z!~NQ=y;{ZTNUXRWZ{?|tyvFv*n5VcIr&U_{09=A-2vdL=-*AFe5nGB#T-!ogS1j1C
zMObkCSJ;iX5VS6zBG_hlPA~Mr5ow4LsSE!DSrbyY3e|)Yx`YX~NdZt0g*`w8QeY4V
zc@XFj-Zs-1^zcdrQKANM5TX0sj7Ws6j777oN)X8d*?^&wv`6yA+Rfo!ji`v=)tKom
zUXT!wK|94T#G#q#UGKdT^V!|esIAKNoZ!)q9CKXUnHladi>Sceu<%0fLXC<rj^z+V
zx>(tnXbvn%0Yw-y0frnU+7H_R73NTj>hNF!W=oi84)Ot=oGIak5DJ6yr_M>>V|?8i
z<`Dy?ILP$?Zk=3nZHpYfp&x#o{Ozb;$`LI23_kc?7bdvR@n7gThy~VHhH&86z2ZE2
zwL7$3fymvkP!_WyBSswKikuBuSr7kGr4y$Bgaf*stVuzU&|p-MI}b?XVqxQ+&=p=;
zi13A#GnT-KvS8yqi<fo7tu<q)ISV^p<2FX*=4l3FG}@a1<GmWimna1vqh!ol)0-jV
zF|M7v?WY3X;YgV~h&<3PZs6Zolrj+%K&co{{zx6}V?1!dXoW>Asf<#<sUi|({`eE!
z89?YvlQlsrwyfn*xMdZ_#G5*bF<}&UVhva<<uwdoWT~w+4C1=m;U3PKZw2BVP6*09
z6-{OqXC~%`a3lU8g$`onRgGGUsjQChMK69`EWYQt(c+4+nO02YDh`XV5gVhZEHB|c
zrlA$AJOv*MG+Lwx7*065{D}XAUg$}pt7XANSUG5p6jCFdkS3&zMt0UVews3#=pVB<
zlBN#5%nSGn=#pU#BApXdzz&!87f#*^f(B)NDjKULWf)yUkDzB&4iA+X7>D5)qao<q
z*=Do+0YAlqM`{97=n5=Rgo5~>Ugl{uLh80C>d!!{iE(OEfNF1=YO-+{b<MhfSsC4t
z=H|dzdyz-?+-J0a>zGO1GREtQSkDQ%X^`~NvkYe;_RE{8>9I-YwKi&m;EsYA9j{&=
zx^7aEd1-z1XDY^L%*LNr(;STHNkXaT`S@N`^d{0KZM9&YikJd(UKm4a=!W<Mo*~TI
z@(9%?3leB;j)R`)S&08`L+!j0?Vj%A7(I)wd5hvc9%)sJ+RhE!9thu#MSK3z(<zG#
z1_g@?pR<6!(%x>JP8h8YY?g5yFfyLg{p_K>M#c#p(^;SGHtokXOaEMtQ=n?rIf>aO
zqBs@h$tj)ti^b*uYpnPQW9f<&76c;<?B*y_SQPK2;1SMV3kIJL92V?tW*PNq8*d(G
zd)8*mo$H&y?$zlaHTDDVR2|XV91yPvq5kLS&TJPqst6UM&JK?izid%G<w|9&QaGSU
z8nj_qT(4~v9yh6W?6!Wb2sg?_K^EWK@Pjoei1C{vdvx-)8NVa9#~j)5pdfOhXd)Dd
z>Airz8!zuMIh_A7_iMJu>fzCAhb9ggQeg9D@$8YH7Am2=5adx9vXh{1Gg%Q7#&5{f
zYCC6(6^fIt0PrT&^A-vt_&SBsDD<^yYh+1qH>bfJS_|{l*KE<|mf7Kc#gYsk;!3?-
z4To-moO2e+no=-u2ZHnm%9cy-=><aN%eLY=iby(&qZi+GBFVK|$|c6hCt#v=(C(0r
zYNr0y2!e8`hZ4O&_@*d#;|GgYDma2EfS7HhlV=x-Xiwc~V<=|d8lhmWYZUG(qM%a%
z1t$msDKG`N(J3}b_jPag6ajaKN~q7#c4#-IhB_#x$O@=t_Pl0EZxRYT2&Wo6_K>QH
zy4qQVcc%Z@D0pycf^8J`Nknw;&In>Xq(oZjQnYL@j3!djAYqCnWGW`R5M+Qyfgliy
z7Ft74dd^-VCss<WH!68z!q~D9`BK{HHDCFbe?BtXsv}6GIleY}8Ks^dI#Q&{jmIXB
zABbPqrT)04j{hM}Z>$|o!BS|cmujJI`lf@Ycrudsv9HJ+ws`$8dxT#mkb-!g&%=l4
z$hgOxsb?IIVy1<!aa)IX;NU60=XJp+j9dfFx+3?>GH1U3jjK|wt*YS4f~|I^Dk;4h
z%>xs2&xpxy?jm2E*Fup_H+RbiCCth&p4CLs&k%)~EkmiT({G5)=c>pbh^d;Iy!!}?
zHI)B5Y5c=VS$h<&$A5~c5$4zmW1l}FHh(Ohlq^C8`QK2ioVXLU60E=K%Sts%65vTt
zU;<OXV7X4gQ!t9eM=kvhEWaWwiu0<)3T3U%{x8}7?%$LnQ2*w&TJ?{9taWRIfGnrV
zFvAB3MMyjlENIYRi9pR3DoSyXN;4D(CsOnPQR2iSqZp=W_J?4Tg(4R=0Xb4+$%+#%
zQUrA}QNfTWo2B$Xq7SNtrKlLBLQ15lngu%sTKRKf(1}q_F&s$nX3l0i2?n9*p=y+?
z&9WAB$#tUFieXifEo=5H+O%rdvTf`3E!?<r=hCff_b%SK^62sH>zCfdAbEpe%&Y%W
za9a{bNVr98__4~xDjh~<+?H}h$B^w3R%tnN;mvauho-Bz#6eJe4)!r6+5-y7W=VX0
ztD3dzw5Qp|u1zq|DXN+c?q*Ax>~OTlUk@$K{BdWB#RE5UQgJ%P<OQR%#Z1xrMDWkY
zlP_=nJo@zN*Q?$8_b>bS^5@g9Z~uPY63y@&R3r-jTl(>5kbmg`2Oxq8;)PKnqbT?w
zgb_+OA%zvL<=%UJS-2sG9eVg-TnY(-2NijYV#*O98YCi#CZcFya4O0;UlXP9v5|E%
z>bN71J^IKVh8Y6(BauZKc_ds-_#ucQf8gPpib^u+B$VXI0SJ;=)>Q%@palQIgqC57
zIVPDF2AN@*X{xy<n{B%JCY*7~IVYX%38`V7dFr_*pMCoIC!m1}YUG*k4SFb|i7L7%
zqm4THXqtt>2PvhMT6!s_nQFQzrjq)_DX5`}Ix4B9ntG~zp5lpC6wX0L1y_5dh^mUP
z5+o~HDEzVOAG3<4E3dw;)v8-Z?2!l`U|MLa2e{_N$AI`T>nyF+T6-<F2C2$dS`dBo
z+$j$J;L$-x<dMi9LJ@=l9*N}P>JfnOlo24KB=S|R?Y^s06N!jNmbvH(bwnZs8+@+^
zOdPzhck#|^P`e8YOIE}O3mb5{Yq9IDbMe}XuN(^(+=oHodNA&{W}*KONFa)A#oWp*
zzs#1mZAH<HB77_|GleFjY}hDRj)sRIf>1$O35iS`L?ROPQE(uCPywaS<Ys#{)>&`5
z?T`c&d{`ptZdM8?9(3e~K{t!?$3}7(gn}rg0Ak80-UXphGbA4rk|=q&v`1QS%T4#c
zB>XfnS!%Q0jN1eqp$O!V|CCj{fB@oBB9;R}+1(52O&}>Oi;j3jii9qDAigTzcHnW(
zUAIAe``rxS1W|!{Ac-_nR6%5$-3;1lg@o^G!?(q>*eYA?0UxA4==<3~3mw-Hq}a#@
zDW{}}LNhR}*o;G>kg}`GrA!Px@LH?CKKqGsU2@9oow6EM1)={?%2x_G7RV?Pp+JiF
z2qFqV-0X8*anNs?Q6-A-&wl`<h#wZ>youZ|f6dU22NIE+o;2eJ6B%FuKWIR;h+>5H
z!(T!4hn5Dy=79%Hp#m#{hYOaBemp~q@y3%w=G<(85}Kb@h*y`O%>@*qzz7LUhXU?3
zLs=d;!a~9~y(65W6tw|j{o1F+Epky#@3V=1`mn^>kYI_<VT@v);zav3!G{!qVv42^
zBl{VoD)XvJP53~=gP_8MKqSb`FnAC=7DSK3X~O)P;l{Vsu^A6DNJm!lkPfP(j}x(x
zTQFIX(Ae=Tgd~U|3-U(~1d<{@Kt=5wr$`UTku5ts2nzq&2umoHCYH{7<yp$OMCquJ
zA}qNM5?tjOo6L#?Ya~btnxGvLG{FfHF{UufwaQjfBsK>@V=<5UL}d{%E)ZE`5Uj(*
z016_C9vC188~4O%&asQ`d?!4S^gcPvq--!;2)?S~2d3PMDgRj)AexbrQTU2i2HjOb
zqM!(Z;6aj`WE?0-5tD^Dv>=u|NP`OUhf<&gdlPL&MGZ#<h%EA<>NJQRJvd2~Qsklr
zK}EE#Lpqq|3Zle8oJUOp(t>1^ARDbnBCMFUg?gZ&uDl^Y1=<XP_RgM#L?CPeI#9&n
z@}LI2CsOkOKAbe;6kllq(VCG5Jm5hyB>00!Kq3FgM((qFOKHYG&8EAYoZ^vDFvUXV
zhu5rFl~)NRs!<OTg;Fd86@g%kKKc39xH4fQU5!FF3z9~)1j4DX^hgsufCP|&@0`;k
z$S8P6O2Ae$o~Au5YCH74WZujVO_1ewm;jM{E)@mzBn1i}k`hobH3*<61!^)Vvahj4
z3Yqml?$%X`KPW=97ByiLP|-AqNMVKEyB~9%>xYGs)Gfx<rUy(BKn}8WA}%e+?%1Y?
zM;2rwLQL-{)=QS}9>l!|NiJ-b+uWE)H@D5Gu2PUH7hHOPw<+>1a2dKsf|Mc;2R!g^
zgF8{;4VSoAk!@CS7B<M9f--pcEnGnX3Zegq!W2<R!C*}h&F$3ow*KAii+-TTltA$h
zOGN9`yjEef%<vCP2m%#MvCyjY&&9fhjgW&tf~B0|vmUT-T1F8(3T_2*84SeDq<CMb
zrnbvo{_=#rs1^1agb6pS3V)!O=9fXlF&!auTvAYq0D>ZT1-hJhP3QrcG-C>}(;T3=
zQfGqP*{RVLOm{&7Xw3=HY;&f_%^D4n^73(n+&hIIs1Q)+5@am)>uRPqT@g8tx6?=+
zv<C_uJCXQ#A|!b9U2xgvp*RwmJ0-|w5i@IBvzNeUF*EVBI=zsz+IA6{$P8-&#VH?V
zKkHm`R!FeCJs0v6mf;?p*-{k)GQs~kXnyuOv(krC6lR7__VihtUCph8WQIY=vS$yn
zhh~7e-uAvXeZ&mKMiT_sjf6rF176vKkiyAvCWR<ILkhI<!4wY3=}S$R0weAL6{Jv|
zC^D{bQOs-M%yT&NBx(~<3@Fj0+_=WcoC1VbDX0~hbR|bff;{+YhC&q2%xf;-l_&f=
z6Y+S%A1-pUQQYD<U2t7+IdFp%oTnTGWn7nDkfyJi-(~T)LA2^C?#1+%1`&m2GdT2S
z1H67&bO|4l<A)8BV3csts;jC}_LtQU6oMd5GYtMO&)Ag8S#cTK;Ehg$&~wH3K0M+R
zPZu%!y5DEEirHT#ikWn8U1tBhyy0O<ivAJkURLn{Acz`qSi(95ia^EQ`{VhPgq|RM
zAVm;jZ*xkQ<$s)~vYstM$%>q}BA9l|@87oh%ojuvt0ze7^Xom+quwA;Or>3LIr*6c
zFwzW;*7RSpH>6_z@(00sL9~h)X?OkD2g&<E^teD4mn8CBNrCR*nqxq!JK6T@{w~cD
zhz$-B@^pWh+j#)`#YHLP9`|HLbV-EZIoZ4^o&!E01il61eI7-CpH{Tr|7Asd9RUY+
zAYxG7LIlnz+@402!YM>cljPY!%#agtPia-eMx9{seG5~}L_5{q2ny3Tz1;4#RPKG9
z=&gk)1R)CKpjyNr3V#0!3w~Nf{nq*=2~urf2Xdfhh!-iLLSabZ6dn>%fgrt=S%!_D
zSaFbZ>`wZ{5OVlmR%8)D`~V(I-Vqg&R1lVfp%)0AMIfL;W~gDnnSzrIAY2&VL%kpU
zX_-L?0+&UgA}%5$dVrW&Uqx6TA-NxNJsm~77A9t5S}cN!O~e#b-cz6gnf2Zu=%GQ#
z%~^b60Fi(wIt~)NA`<9P6qFP}aAGw5mP)`J@BLsw_@P_)VnNvATBxFAwW0@<;z6LI
zu~}VQD4iu%gdR;?`~<=?Rs=3(A~t?s7)sU{7KGQeS0V<&*zF+(uAzYGo<pGvSxpQ!
zYNA=p5a~=}273R%B3M>O7#v&lK@YwSQY|1Pp+X%tqCgHL;!WTS7K9}7Vg1Y&anQw)
zQA8<-9v+wil=PncsZvalMMM_FL{^E(nZ-kz(yjT@K33W_`N3y|#7Wsia*zN@PLw)@
zq;zP<MluvdDwwjV8wyyVVaVDI`9@Xfj<7JKWKBflUEMZ5MK>CobJ!e<@gh|y<jbVM
zBT1XyY!)r5MO6f03LutLX2rbKgg!bM39MB$oq}^k0Z$yDV0G5u*+hvEA3@F~U2c(>
zdB7>0f*ec%vLIv=!~sabmOPrHpy_1_0Gam4MGBmPB1C~>I%ZAWOdx<&-;Lhel!7Tx
z!4XVBDU|<$TuLTouB11v(pfBKV?JgS2*nIJ1xeE0bA8__fPxbQffSg+IGz(yF+pt3
zW^E3gX`*Io9>nAc5opekI^9oZZf0j<1X|$%a1sk##1duV!D|%;C>SPUPK?V0VW(jy
z6(lBXyw(g+XA{UJ6Z~ah`il5*V?gSjtBisuzMJ(tVN{l5z|9+$y_?I-%3_)VC@2Cb
z079|F#SDQ$YEI-w3}(QQfGK2V6JSr13FkSI1z?8F5zNqPuw~k~rP46L6o3LMFk@Yg
zD2b}iUA`60u%=6lg!d?D7D0thWZPOm#7ulvZ3<Mj_1;y)U-!7CO5CV1k|ZtC=t+Fm
zDBS-hdBt2{xXeQM3s?wP5HM-?U<Q$n#JQa#kg^xkh(sc=6k$=GS(*i(jYLhrs8o;{
zBoYT#o#{uNMDnzR_7TK-DrI|qV?iW@NHl~eeWmRj1zgnx-1xyB_yKc`WLykZVf}$u
z+GiF8!SsQ`%H5qopc`5^!BLRhy7Z%4ii96#Wr=<&sG7=MQpI4%C1<#WV$kPdsEBO%
zTxGaL>Rp9rv}$~ChpQonsjkOz*adbJSZTF}U073htXQnpUa^KMvL>rt-U+uTtFz{Z
zx)onsJu9_VtF_w2s9vkKQdTpJNQs<?r*5mbj_b2#E4iMlQ7%c7JPEqCtGiaKxxW9a
zyv{4V)@xnHtG(u{zV0i(rWU^TE5HV<zz!^`{42p8EW#$N!Xk>nF08{oEW}1^nKW$L
z<f>duOSmR0#^#DaWvp8O%dU7VDOqem7z?t17ldr=W`Jz3<OOv8$jd5-$tH_ZkgQz9
zteE~mm~K+!L{92aL2$`I{HO%Z(u{<WMHA@kha~OJt_2CmsO`jx$g)Qi*ce?v%OJhr
z)0TzGnoZ9_PHA*)mr<;-4ee%B&Cp_u*lf(c&<mV-48o`d+eTBr9INx4OU9J!aAk$U
zR9M5v3$lp}Emn-dTnyg6sY=W(y?hMe4VM9-ZLYA4%ZO-Q#LVQjMa{6q&E)^g&QLCX
zKrSd5Ow@SpSy=9b!bRpX2MG|3(IAb|3{um0z|$l`)Xbk+q;7(2uFl*L?!HFvmW8{)
zYPa?Q@rqF-)*5p09}k+XT9_HsawO7iNbugpCn7Fhip%nlfXF~!eW)K@L>8eTRrQhu
z=)y+v_JKlxNBNE|vv!SefsOUz1^O`C>QtuSypG-A4RpcP>~Jqx+%Mrs$Kj+!{i@UB
z^z7t3k>+5I=5UVwPK4>;4lPD7>ZlG}Eskg=uImKwMD@+zcq8uUj&sfLS{!9ho-T5P
z4R0(@^H>N86WS>h%px!aKE8zsH--u`NA+A!_G}L*!ch2(PobL6S|I<=gK$sEwD5N1
z@N*b3MOYa0Hf?xNAX!jj3Mp@PFmYR0@mWl7hj_7Fz*<GTFhTf%AGm}WlNl7Jhxg6}
z_!b!Qo?@vbW7$N{C3e;+)^YlL*<GFj^P&e9@k|B5(Ef1V|BM$1<qcRsl|rcMZy2%*
z9Yh3?rplmD0%4E_twc$BRtO0vRH{S?ZIUG;SM;g`3mx*LGBO$>8`1?b=}s7V-0)rW
z(1*Bk@mZE0J+JVf@Pil;5-AZAIS~}O<rGzsBUcD5Lx>-<vJ@XgN5rpIM9cn(#<z8G
zDOU&>*9APPge@P0R&nzmmq#1R#T%EC5N)&X*$}^lg!-y8n0@~d353xY5r-Mw>SP%c
z1;JKYz!59mASWU3CoxYc>*y$zl34_FD8)`9W#vD^StMz)k9vTPY7$#eGzB%1E?=M=
zIz~ZX^C>|eKU32#^P4Tr(nY_GK5ySEKSe#?s!f2Gof1bdsRcImk~1rlbTrd5F#+*~
zbUOj)L6`!kmGm_s(=AOX3h;E|B91P(ie=!ltLgMhXWkBOhd4E9L6j3Qr;~EDbWy+b
z$2t!Q%=A}7^&~m9S6`D<LsMCl5ihZH{#}ziqrhiOFUn2^6~mylT`^TKby^oCSgXVz
z?Db6#hh67|uxd<7!_veYwserSZY=W~u@gmnv#ZUuBfI~#OG_4HOV+h9frO2-P2{ul
z904~u8Cr==+x@Xm^9vrUQXJi&zqYRj(9=m+7T!EwTlEuM*^g8$RYCPt$|w{=9ptAq
z4#dgC3+iZ39b+}BL~>IUagf4DQL@HVrX13qF8ZK(Wu&Xkly{rdHR06IDK}3+)lWUK
zQ2kYLAC(ZHz;81ZgN5CV__k8Xchwz)aHmXe2isQB)mMepSd|rVpw&XC)t>J5VhzPy
zb(LM=RaZ6K%j`FM7ga?8wL!#}eNWXD2Z3Xm0>G(sMr0p;1Jaio)@Ss$H~;rzr45AZ
z6)z)K*nJvWfyrh?W4vWJr<t-y_;(6$l~<_+q6+`iVM&&OHv@vpDT@a=NC-GtX@-gm
z){9HHi0;7#6-FrxNR$_ZZI6Ugxf>raMTn-wGuNJ>?qBujgivg`lK(h>uUl!spHkIT
z6o<J$t#nxoIf~~>d{2y?7kN=#ke!dYk*8HN<G50gR%L%7;nmYwSUDYC-%}iUk_*rg
zNvYn9vn*~naF>~5dDR;y^cnsOaa*`+dq=4U79Z0#YXQ$|2}=-Q7;P0<GvL-k8rW4t
zn2rrsThJGBU6+3CxQ<5Gbp4lgDOYwG#CGYP$ohIv&#~@Bw2s1;d`$$D83eUMt+Rs`
zQsEbN?H5S&7j;2ejF+&0;W~l^7Z^9#gXRBvg5|eCR9FDTI#Gt7hBX0)c^HU+-H3gi
ziJ=%~W*(8*R;|BSr^VQesgjN9iX&Nuyq^VztCB;ZyRIV_DvZL3S*msKnScqxm!JR=
zC_;xpua5zlki}NLE4lIE`zVb3IxReoIkJ=uqLtCEKdwk39)_&1_{!%yk9ow81)1oT
z*ombWMrc*fx4ga+7QYJxy(3kP-B`n$#mz7V_b3aKKRxlZx@+n43>8c>!DmD}b6!sb
zqW{Ll7kw!-A64vp*4?|$k9uk#{O5gr*f@dM&qa>~{mGvN#lL%?m%Pv`7}(=IDzFsM
z1AHgu3Mv@4Sy(nC;k&CZc12V@Y#jd=lPA8>7lbH`0w{z{3g7`zwQ(s5#oq_lPAY<u
zF`1Li(7&KS<3pj{dYPDY((%&Pnn9cHxmg_31*vs~o&5)%nWRy&+Mg{N0d-pNgPx(G
z0-{lJ6Ci)`hldz%sHAQ3Yw{zeX_^_P2KRv)_wP6|Rllhb52~qJn+~XCk^fxyB=675
zL*v>W?b`43TDebz1$uz6P1JzK^hE-Mha=7WcrbVnp}`={@Can+Fp38f&Hf;4a*)p{
z5(ZH;qmmG0$dHOiQ8C%aR4Eh&sWc06Foj2hftp=Z*ep@PCe0#>G#FFP%{~a3I7!Ha
zXTm(q03F;p#bCyb9y)&XiSYkn$c|BV;&B<JSqcxLnj+lO>?%m4Jr6D|>)~lyp+t>(
z@M_axK@V=7HiLSw<w}uj6H4VMQ*O+QVE0ID_Je3rkPEFM^ctvd<+O^gk~mcnAx*qH
z-x?&0kgvhG2t9*7IMFrSgO@YQg$oFGZa_U34n0`ZcFUJP5%;ERkhW^XcMlHKYukgL
zQzf7)MH`ZGbq|~wJBG~Mp!0*GaI%itY-6BPcs&S*iMY=x!FHJ@l!IQRbn4nIhUNbs
zzyJjtkiY^Bl!u-K6<m;><|GU0w40#tV4;XA^dJyW5+bFv0#hJGl&L%*r64{`5sME}
zKtjbggi-)Sls!-(<%s`-q7Vhg97VB;L=Q|vQALSJX{fzsYBcCZ9dXp`ClEzMD3MY`
zY6&utSWJk7JdUJ~Eto*ca!aqeY%;`<#M-dL6MYPFI~Zl85hOlbGEk=nXVMTM4iAbF
zBT){@aKjFF8WXw*4O(i;j)-Kbnfb=Ub5AyXT4=%xFZ2MEX80HmAwNuc?G!!?RHT_x
zPHCo@K+ePvQiJrw@VY%usguwZMcu2>v<$^H(X2cL_13f|3QDV_NG%8~vB<J7*Fx>&
z^&mxUTgp*{L}}H7M1n*#+N>C@HnK5)HORAI(=sI}6Gx#Cm7|^w?_IB$c&(W{pySLZ
zuQ;74R)a>7)Pw(Bxjk%A<mOB$(@jB=mtK42N>WLys09$vJj<FmB!<bY*Pv??(pI}4
zywz?gkp`;uDs+7`W!)g!9Sd8KJ3hFuuoN+6%R2)#2oynBs}G@;d=j}}{&rfG&ZL!I
zn(3yiLy$oR`$9QjI~Tgh(xk{kmFx1TLILcs!PX81Qbuu9kwn0<2@pkAY>}f<a@tN2
zRFL*5?X?YR+n_#32?B62tAwuXvx|j0=*N7zGObgd<InMg3I`W&wQJhjZK~w{scxhP
zYK-YY6WY3KuRQ>(r&1Orz3aKBmRxMH-5qnORVOMqFpz-82*0bYrZA~XQ%D5W9Yq9-
zNbtUneQf`^6v0#U@k&Q^ZuJuCqgmx@#UqeWN-;&#nLgF^+1lwP5_yB!yQ&n#yN##`
zR8~rMtPao8PGJ8wE?T5O#t&(C=h=w)_Ln%yndVvPqtE($l8B~&;yx*Wf}g?_lIU56
zW*!KiZSW<MQeY+_)<cLO`c*aB>CZ7m`=FVK*9_y$CW9LskpBY2I<8gke+!G@tpezy
z-a#i2Qu<HHEcmXpI1p12oS;E^D5t52VqGDT6M0lJy6Jf>R0-)}6mkfXAPVScP7~u8
z$yi1JK`m+u>I(yZW3|g=Eh3{(#1ZIN$KhNNRn<YkC=7>?Ka}DWi&8{v48k}V&g(Gd
z^2z@n19^}^8st>dn-$^sc)*q*5+qbwocll`ip>4TlL*;kAECoYL4rnORFNU3O7Wzm
zUC>{1tRo%wWs00cL4F63<1A@OD=p%2cGj^S#{iSPgQTivuAIypgJ-87;DJ1%n2(%F
zQ3_%*5tz<{6iE=WOI{8~guL62_7d^~QJ4Y`Txo(Sd=rS5T_u0RbeIpTc}?fJPI8ht
z6aAJo!YDfHgz~hFJAHyogg6mb0xjkNO&F(U)N`J4;ln6MfC>_nBn}<gm2w!UFRUoi
zCmjUI6q<p_KTYx=fOsbY1KKczkkq8*gr*Ax<I!V+^gjdzkT+)u&Xp#_rcC4^2zmdf
z%&QE9Nz*Ff8u>HPie8io8D%0-1=ulc@lFvt!4^;LXb@9$sE0=&WI~V{pfH*dt!Y*3
z7}1!<1|i9aEJeug;D{k1TCfRu)oWg>vj|gwi=?irXi^PnkU#vi6de*tU|)j@s~iCd
zkwt=>qL8z+_?4lcxN9aAXC+Q1<f{P+?LjchAI6f)v4%zLTUtUj0>RR*X_3>5V)Mnc
zz;>^>4JK+(IFX3vE+KpjA;7T1ObZ#YCBaI>AMk(&%jR~kws~G{X0q83mQWB~gzX>X
zgOF4B#w(UpOZj?x&E+;%yjQ{A;6#}~|Mc@GsEDXs;^|VkgjXcO4b8U7`&<8G?iNbS
zb*^?$=e9m1!Vg8;=;`9M!+TvWzn=_E32_AAL-n_t681@Q4YsdU1_-}7wJrwJOCJy4
zO22<1uJis`9U_7Rb^Ix?2M(NIf3+AxZ1R{CbJdd4*fu1KXjM!U%VM*laIHyJ@{+aF
z)-?77r*b_AU7Hz^)|$saEn%YvO7TfNm_nI_U7&;b=Rq%nIV3G9ahf3<5|Kr@NbF6B
zm`UIV5$%Lnuh|#5?A(_;Yq>LfHb|FegXS^Ai%2N2r5Is*<<}%+A;im>qsavl*aB3T
z_WhO)*<zfuQ2DqKNr7f2;u|CwiD}by<XtH(kv}~s2&WL#vqnKdM*06{Arel3E9<*4
zhn;%OS3$uks2YWjY$YN5d<zNA$xsN9SD~M7hOVa~rYSeWHw1Kye;K+fU;`*7ifD)v
zngNP2EqEs&4XOs=oDh*B1S}Ks;)Bv{;e={B-ew{-wmbaM0_EC8M&)dmL<De{RNKK^
zy7p(Ua_O|ZxK8ah)3nE3?w(kCE>;x@LTT)+R*UE?c)?zWP!Ll~$Mv>IX7b8e&T=P5
z&AX?N!xRz`EG9G|4w`Dhkw6W+o`6E;DF^};P7&;Tok9^&P`c9b0+v8D!7F)2h?r6E
zJt`bw3e|Kryi*1BW=K78Mu!Q~m(FwyB4NXw4T+eUa0*a3Aqf9cFa>eRb8ff8UG8j3
z0olvGzPiJ>>rs!E)v>O1!!o4oO5eI%P>@%z;32Q`0lFN7PISwXO2e26`p}Ec5yvwm
z@`b{=&bOp(-x@F^qi}2xqCkpP%BANQI!hp;z<N?0Y44^0#q$917XqnTIhC1w<vS0n
zQe3_DcJsW~A>RbS{DC1T2!dDmZ7_2~-4w35dCvK;^R{4kJEzb+?|m<qoF`)EUJ(_t
zxvs249DxZ_00k;sdz8_4zx3e0uf?(N8r4&Q^;~Z%OwXQx%l^2}`+h?Fb`KPKuR6e|
zMka!0wvY5c!c=Ci=KAfX9&F1L!PY|P6iPu3nt%#S!O;H#=Kd1!-h9oGKF};urS_uW
z_B2qa48$w0@5{zYB!-Xk!i4{FkOtXJmsYR!UJsP6N+d`iuK=MYn!w~Pkme-rARy2&
zXy*R{&<J5><9>)#<W2J^uLsG+1gW42Qbg8*3o(3R$BahhTFwpM(2QPAYHTEu6anpc
zrgY{e_9TM@`T!MB<@mDfib_N7njy8;&V7QQg>XX7(xMO#k<G-8QKqLf{^cq($+ISd
zRH)}}Fy&o>U=wj-Ra$})5yprfkx3Nsh6cx)u1L_>aC-2f5C8C?k}Afq#18?nGIk;s
zp(9gT=li0qNGPWSXaZFfp%aS>YpRSTNP%la0WbehKotC75B%T{NJR>@DIpZW2xn0j
zPwEJqu^He*IeJkdjIrF9z!c0S3R)2r{y;>2@rHuYzNC>Ftq~im!wJN3NDgC6_=#)2
zN)iu39;t^OSr9tf5mnw%M2eAXknte54fQ~xAWg>}tMM8?tbzWAR1l&f@d-)l@DA5a
zBSqrf5J(F8r~6tF6!zsKBl7gBCMBmt99;-6NHQC3Lm>?j9-+e<Ycbi}u_sN;-weVb
zk1-i_vdymI)JliAqCg~}BM~^VUygFxkY){&Y4A>AIDRq^r)+CL;X{1JBT){nwyfdW
z5DwRpEt5tL7i2P;CI}XfX<pGbNZ<$r4)*`razOGjq>f52H^X;)0xtto$>x$UeTOdJ
z5HA-~JMeOxct(*>BCQZJG$sjf{sRU4(kC`EX+U8zyNL0Uk}nyr#2OQ=K=XP;bBydV
zKw<(9oIp06U@DjZBt_x}Nb^5zQ!XGg$vhK4EK@565=)N2F-1ZU&@w<=Q$SF2KuAED
zgwx%eO*aoBIqz~doxm%qvoyQYJ450v)#y9NlRV4QJkJw7wW9<^#sfTX<-%z^*RyEc
zGd=6`D&%t;UGO|p02TVvKbg}$15`i<bje)CKl_tA2~<IyCOi{lK_3)CBUC~OlqLiL
z52zpyMgeEu6Q#(rLN7E!H*`YL^F#kJR6~h#L{n5nSCmCt)J3nNLEq{{XOu>3)J84M
z4+LS5@W3$3NDhk3JDVU!ceF=uRLO)?N13Zgjg(27)JdNdN(CfFqm)Xk)Jm@uOS4o<
zx0Fk})Jtb{O21T0$COOV)J)G5P196O*AzX&luh3hPUBQg=af$C)K2g8LERKj_mofj
z)KC8uPy<y^%T!MX)ld%=Q4>{B7nM;PRg4NXEu!E!3xo=KVh>Q%QNOcN4dPM>=MO&h
z4=`0gPykdzH9#aaK#pJ!YR=@&b5lK_Qwt;t{$TM?^+ucE4*-<ORFzfvgID>$<ZLxs
zN>x-xRS}LAS<fT|kQG@cRY3n<HC8iKTBnsfAvNuEP>fDtT||bEjvx<~i-Ax84-z2{
zDCY<OA*loc5Jo|5_(NRDm7$s-5fZdHzV#2-;|LN#U-z|LZIfU5)pO8wVgB{~pkrMB
zHD|mPT-|kC%M~Qfm0i0;4hS|8;6__LfLjSC5CVZz>Mv<fU}HNLKw1J@BX!#NU=hsn
zJ1;h41BPPtl{-1^T8(tw;1Dbn0cBN|>u@$@yM$yVCuDUtX<|YU`oL)WKrm3?X#0RB
z=(RvtmLjNCYNxg>^;BOc1^v{j6f`6z9tSK$;SWaP>qJQu5{qS!CJ2nteRe_=@*q<{
z$2O$VY)2s(FACKX(uM!Rc5K6gSxF)(&J{N@#es0+Owtxr+=nDKR&fV1aTPZZw&ZK|
z7VLzrYyshH`=f2&7BCz)5QvAWwst!Rf(<=(X&esrvesRrHY$qs4MDeS!y`8YH#cJT
zheSdVm2*XFmOrj`X*$9+_+TJ?7b9}!c16N;o8}}>&S?q6bw!tIpBH+UOiw>!EwkuS
zG>0u{f>XL@CCUb$$O0_f2NeE^CYF?Yse%-4GdfTucuOIBGYCpV6BDgvH>%HC7%nYD
z;j^mleRXvv499ytl6-3ygZ9OGg|<IPS80y7X~2SY+wy=3Wqxf#X0cRvwS#(>#(@E3
zg8_trmnM1ZWO@GwB!Z*YgipAP!juHo6KPT4Nk|}UzC<F9gak~k@i28DYGevJlq%+`
zIND531Wn95AdBG2e}CsZ_N)m)<!<BFhtoACKx%^L%za8BCqcrBJM)Qc1BrczQ;L|u
zUhxM|0d5^ahk4jGO!tN*N13W+jf+TuUn7QPSRz{00KWtYj&mdMl3YwK1)AU$mCy-R
zqK4@*hdp42*{l&cf(fdnf?s%!v80bfLXZi$k*nj61#K#7SR_ggT&5xgN-UFs>R?(`
zBJ%i4SQu=U^fgeKvz&DpDLIl)4rSgLBt}^~LbyLhI8{+Ckx>|!gV`<JN{#NLbXo-+
zyJR7x11JBW(uJah3IA{uwxm?6*+w!458ACGh$Th(LL-Mb5&r3qprf11(OjTP%>rbb
zd8`qqc<S5-70Qe?(kq?`XK!Cayvi9aP(``KdBhANN}fapk>iSAM{=UM8K(IlK=+{j
z2?Y>Zp?%4Zsu@&Y4OIdv7f*pLppJy{pt<&i1fUO9T9S(i;#Ab;RBUZ{46#%+gNsll
zRKO=9D7vDN1e<ZnosWQYBHD*Ugt9Ce+A_LJUb<9FL}*v~4^N>oYDcIMLZ`Wgr~M}g
z#I_ks!3(#8c#^s@^d%z<k>EtS+&IOUy9No95UfdBHSnOLKN>nXx?b2Cs8Qz99-5_j
z8ms?VTB$L4DUDYxnP#BvqM(IYum}4fru2`&!VmI_c$uKp7UFE~gA`Bz&@e@zgFv(P
z<7L%XE~KEOW@2ut?i#78kk%Fz5<#+?VJ79GbK@qoJH>6%89+F@RTqu37J0OFClJC`
z5z<v`2_;o@J6#V#w$X4*R$FsgTQy4iv{Rew;<&BfWqfPIvP)q<)~yugDY_}-vL$*?
zUUteDo4nGd38G*WPT@@OK(ky36hMJJ&M68~pdJ4T_7WNeAp5j!0u(m%2js*i27*>e
z)gz`Nv$eyW1tAa`83`1@ysOFs4vRg40K88~yvcjP9pb;Cj|!GFziVW_A#5ooyuANc
z#lR6<!Oz5<M&Z5pv57YvWBJ=)^tB0`K=lU4z2W<N1mmy?Lb0o(#^bxD()(K2+hBow
zy&pWn`I=C&d%DMo#XB5#-{Z;8im<1g%HhyWvtuyas38Vo%ag)Ah$FZKBn38yXY|57
z0pY5Kc%M<F{F*>Fa^vUB+)vQlDNx}hVEZ=Sd^gO5%##hd)b4Ha$#JNF2}Roz$D|_$
zz0ggv&k6EbKtawufX=<yFDSXu>7>zUCMK*RiVxz{hU3damq|W2%TMSnR%6ph885^`
z+Pb{UBLX%o0wXlyFv5If0e#}Q89&s6jq>NzE8RzEU6pM8XJP{{Qe&UX&qe?CRy3|{
zZerajV2G%8!YY)9)o+5>b!gR{H`V#$j_u8$i-}V<ePfJWucN%Lt6bgJJ%x$cLE(jJ
z424pBj@~QgAYO$|KBP=sB~5@N(A~{VW(0DTWJ&maW&B-8hy>3eMn{rL-;Ih-6nT@d
zL`z_ZP&yGzEdG|A#7sb<M}A~YU?Skj@u1+>Kw!(>UF9tz-bZXL<ws=JoV$%qs8?|3
zzqAlaRt(abp;DO96BQ;Q#zi8)SP*S{>TYGWZl=WYr{)bp=*y)#5=PJlMwR5*15n{s
zXyRi~O6qk8lVUO}vqe%)hCjkyX1blgZ+_;HJcO_X-@Beabh$5hnce^E-tPIsO^;XJ
zjf>uG$RL-8dC10W(8hAuCiAF{%$HU9?n!SXJ#+j9aHfwZj9x1S|8S-R*WXz#A_qV?
zKUypwI`Rg>_(pT)M)5tT8Or#Tp2hD?=N45*dZq^?VT*ZYxuJM#m~0+gnuvgxX&FQ9
zCtB!*;3|3AtoEA+I^5YVy61Z~Xo?={fO;*3h+lm$S@<&?CP#*Qya#-;o`<mq$FE;R
zaFU5SL}p1{i_HIrzCHQXUdm|Miew)q#Q)soLdx$R|MQ<f@_w%?=-L3HiH9J~q6{qP
zVU(gH3>yaV;Gvnsi4!4Oyok{QiczCbVEj|+6dsF;{$xbe2P6NUW=t%iXvQa_Opqc;
zn)Gmr;>1%jdv5I5lM2hA&3^RsfbytCQHqo*WqR?aN2eEQj)Yhe;>wl~U&gcusuT&T
zWHUBFcu`?PhZjvH@(=~p)PxJy9(j22tig*qDPm-T)?%J!DJ+s`mgl0-xfYuR!pNuD
zSfvC75;S=E;txEcnu(elxl}2{eEUi)3sI<1&7w@<iPEHrsgxcfD>@6RC*Zw;2^%I2
zG4$xfs3C6d{2Ail!VnJ=|Izw&?AZ_l@w^zhgl5j3r>?{c5oY+u*d<#$E3mj@$mUZw
zV~l$7(cL}uVpMAvym9Wy$);$Qo>FHqS6qPx9*AIq3NHW1V1o`m2w{X0PDo*e7G8)U
zYVy#-VTT^lV^I`=WkjDvl^ui`LV=WWRBSH3h}t5iz~{jf&AindDpZ_An?--1f>9}e
zkYyu|9+03TL`NXOBodKDaYT$W9u?M6svVV-Q>F}g;FcH3NTX9l8kVF7KL*LA2SV`{
zp?w#v=u~7WfO1oHEIQ@pc`w3vQHi|~=$vBjWyBFifsjJgiJ4`Vkx*ZGkjNi+;1OkB
zd%9TMl~tX>*eSF{=8;fo_Bo;l%l$?iq>@sqprgw9)*NtuaC(ua)ir~WAf^!Y)pvY-
zRp^_DhFB_9!CG{vpkY!apKirMl&78XiRT}HR1N=_VYb?C%Wb#behY56;*Lx1MH_zj
z;d#``<mW+_A(Yvg7fr^XPyq(nlvbwDYf+XKtrXx9&0IxQDfxPU$G$QNRVi8a9`(bz
zjTVJvkInf(?^$wSM1p=7XWY!j?%kVF$1)lGufhmhtK`64xm97bYL3Y7L5Vce@XT!1
z?19W>wQDM@M*`;_jVtj+ki|VI3NJz_?D!jPNZ?$drWTDNilCpi*N4l0m3nHd#7&(u
zYERGG3~gZ#O&r!*--`4pT%H}ZR?X-~?a?NtotMO9=?ziR${yG(yU+Gqs=S6-M0c!8
zAN3!}GGWWH$Mafl80O_}&Uxpae-3)+qHq6uF1j7odWsxVB=RT|O~e6H6O}TZ;$EPn
zo<a~*oKp6IDV(B66v7K1pooDqv69Fb`P)?~rciOj6rwGgk@3ifOjPeZ{T}@AuwAqg
z5>`^&6Z0N0aSA9-1R;ef!(P-Go9Cy$e*5op@BR1i7i)d;E;$c9>6KzCe;8Q)qCmZ}
zpddCY!9#53ayvQXZg*u<L^BQs7ToEMcU@uNz#jOs*Tt@3YYUV`3YQig1tAKg5KE%0
zwJ3z_!7))-p#>}TJ5zu{5ugCX6d+_Zh!hYHC<wwz_*R?tc))^Cu!!qm#|PQ{2~`lu
z;SPKFL$b^;5H*a#4PON)Sq-d+N2LEvAevDM=&=wL%-LcWzqm5IJ!%vxWT6XDr#jY^
zg^pBMVGH?%!fA!+i6eB02OZc12x^dm5OJdosa7q?nMG(zIb8gDa>>zYa+93wq$fWK
z$_bUubRY^*PA(`uh=4*TIHDbjn$rhVNF<F75=vi2)xKtwiANa;!p$U-h}D!Om%E&p
z_7-NEQH|n#$P^|oF%kp|0+T>sDONNmk_ZCXQYWMGz$)bj5n@8kM8CX|Fh^q=&7tNj
zeF+c=VmZrk5(}K~lqDL+$xfX}QYNdUh>=Q2w3&se1ZR|pBB*&3S2BtUq?m{(0)zrl
z_+bxz_=5!>RWI@xrl8FL1rz^F@s-HX3k4y;OFywWMX_~7q7=2L->lS7i99r=Y-<ij
zJqpt5@GhpL$QeT&8X#Xa=1~Nl$U&=jN=2lSDn&IYLIYVAsCtu?>T0K9;CWBQ#MCqU
zlu6{SMM+g2?wdU!Ybei(*0id1t!(AiC{5SP2?Zg66jG;CNN@z6mBp^0%q!%S;#c2M
z<|ug8Yq;i0Sjy0qb9h~>f$*xGi+}>79_YiaFoc4@-qo<hnJh*uTO7z5D6>4XPT({r
z+Q%Ltfqd;rV?BvjnWWZi19O6HoiG^^+|~&zL1-0~;@gV^x2?o2u5pix+)%z1UCC{(
zbDs-cZk51mB*~g_r%V4ZtXTJ3rj71#Q-F%_iWe_I5U+TL>)rIKcfIUwFN2nwF89iJ
zzVtQj83lm{D&%1lrZ}cr@0;KK_BUMJt*?O(jNk+-c){g@uZI{6;Rs9kLQU|4AWDJ<
z&aSn>7nYQUGbD#@PI$y5F0qME{9Fg04#g~Pv5Q{};~2|$#x$<6w^Ym_8|!$-JnpfN
ze+=Xx3psQ+F6EGqjN~LMdC5#}vXc*7<R?pc%2ckhm9LEDEFUP!TJEx!zYOLui+Rij
z=5kpOxGgH|We@%(Gw9UZ$Tmmi4|M*6oF9aOI@=jRXg<&p_P{!>oE6R<VDq;A9O&x7
zC(m`hbB3Dmht~g!ix1f)OP?_W>DFG_z?8mF6#lT-O+QG~>diE`NNpiP8`{lkH8ZoC
zQKt-@ViX>TSgbv8ggit_awxz<BJvQXBLG6477_L+5&=%9^!nG-YeF`Qlj~hy<OqqV
zwzZLczH4inn!+YF!nB<TM}J$}Ig9omy6O{O13M$e#<oS|0PaLsY}U1gwE_bX2n!~A
zLMXtuz6ob<1Bplxd|1TcHc4+=`-rl55OIPAUhokK<<|Yq_rbR%)X<H>;p4k?g)&YQ
zkI#4G7ZRycCN3eAyBFkX4tTZ_?s8V2)z#HbXd=)pp;F}LKYqA~h(z&+QDDy{q7afP
zMnTOW6!iabXAwmnR=Ee%MAYa=mu*AE4HwS@edxGWgx9^^P=g2?5P(=^BFGL1<|thv
zk5dFG@C|oyyB+TMZrIPat~{zt9S}#SX49YEjHsuE?t!=&c_5;55AeJ|KBMr(ZH{x9
zyrfQiz`ExWzj(y63?hJ_b%Q2vk;-4hm-}pdw^;5ulB0(75~{gM?&cKMBUtqnGC5^#
zE+N^s7xl$)y-a-HOWbP<^UdhF%+c!VQ-~Z~r-%uoG*SxQoDn>M01667VI&WT0uUm4
z94I{Rfir#>S=PtCO#C1bag$W~u>bvK1?5bLY`^;%5yj)mVt=1RA6f0EO7%T*ecAVY
z{Ad4IAlH1aR2-%kGmjS`B4T->bAZn`8sO&vo#!A9h#(4xas3B6v==VQml3=-VIDXk
zwx?twSQa4I6Dn9P5y*hYM`Wb5Vk9tKeSiWez%L|lgETT0c-0(&W=IbxFi|oE*WnVQ
z*9=f|BEi9d5Me$z@hBo9X-k+y9@7NP2T5eX7zE*MiuY1Mv^<Yf3Y3K!V|Wx>n1p0O
zg^>Xs2M7^TC=)+`3WC=%L}-NTbT|uCHaM6OizY>r^MdoTgR=F5$V5FPfCP@UI6inJ
zKv+dhfH@@41Ww=)B)|lYHH0;ChovBN<79#Jl86Q(RXTWsEs}?Sm=P%ei3pNeuZRB^
zj_4AXSTcoJGLu+|vKWLtaRgjJf`m1Qv)G6QLW5~@gY+U)ut<v3ql%IydB=o^@X>>n
zVu_0=jj)IUxHvDg$ZovIalW&P<&lGeSc<@y0=+XC<ybPm$T8YDFSgi-il}(sn2o_G
zdDyr(ig!%Q=!y^li_H;=98-hEI4=RohlZh!^Ei#QNQv)A7MWOtFo=9Im}7F#7rDWI
z62T?};RiW^Y&o%AC;$k$)C{B0FnVT^A(Ah6K!#B<bbRnW>_mo7m<Zqp5@q3%RfSO`
zKnhgAFs#UR<q>}~6O{e(IH*u*C8Iq?sX#w@B)xN!&>|6!GLt@XCmE3lcl7^;DY=q(
zQY;`Tk|b#niH9BF=asSqmKY&3CaGr^2{wcQPp7~e$Rh}dF)8{%0tF-ypfH8S$B|Ls
zk&JUQvUCda6a}Ur5zS|q2BDU9hLT!=QKiraiJ&r{cqDk)QOqcpbcqN0!BP9>Gi5oF
zIg<i`*$jhO98rKys1OK~@g01S6R5x@N6;A(ah5@o0&mGCg?X5KkeFQ&l4hAROdxcn
z83n!A6P<|>%YmC^L6JIPk#Xdjy2K{Pi4mhIlBS6os3{SuNiTOf5qcRoe0d{&=@|#H
zk>mN7N-~?F`6tWiM8gS}#%UndDVXDAf=|Mh@)HQA5Cp?%3QbfU{OSLn0D3DJnVfDZ
zn7L_~rOBHwNS~!SPRf~})3%<qxu5+h5&tP%q=}u-`I<XpncxW#%}Ei@NuuBRCKDk)
z5=xvtx1fmmf?nj95IJ)a2_mW}B7P7XITHj-pg7^#5fn)ZDDW`e1eQS%7LgTiz=s-A
zFcjg3BP3-}hewoVfeML0qyU#dXur)M1!Ylq%`>GJ;Rj98lLz9Y{RlG?Gn7vFIF1o?
ziqM5Z2Tp9N5M5{yWqKc_(xuS%rO<MvS-Pdw6Nq>SPTv<LNLmV!1#+d3Dug-^Ns5-G
zvZO}Rqd)p8ig0tqc?!&d2VvnEpa2T@(i%~a0;oA9u{V+^Af#EE9-uJ)U_THU=^-$n
zmS;&g8IejBkVz0<L7AaCs?OtBn>rez;HmdAsfXh;jB2Qn<xQ>ns%5bff4~H~V+tvG
zBRA&+bR<lI5D1ru1d5QUm3pb8@U6H8Yd2UxR6sAt>ZlqqtwBHneknJ5<)dwBsZD^X
z=p|hCT6{bDFV#AU*lHs4I;hOLc~0@H(Mko=x)i1$s-)@>1QDdoFr@YZv8XDsstOU>
z%B|kY9D`A>_xdu5;I8o6jh#iX>0x_6LaYL7D5x+BqUr=!R~;@3voaevEPD|i8?NIT
ztL93pWx=XZ;;Jm8v-T>k1fsDh(5>Sd2sE1lF`I=!TWig_GS&9~uc#nQyy~!zn4|p4
zwfl;S1A()>@v%qSGO~KE<42>!WoBGBA0t8#BOx$yix5Hq9{)k736cV(U?iYme2S1Y
zW%o>vDiK)(Eog_hw)3}v`<zXH3J)=+J%hMtmu!2Ree={z6@w8kaSDDw1tCeLVkJME
z>$#x2J$#!HW(5|DTY=AsIE5=)sM{uq(|>qdMe8y(cwx7UlZJh>Z%zR;gOMg@VYmVn
zf}1BW#zz@0Gq>bw5Qh<K0pgmI@e+Ak9FXY&==Ttx2r$J~e1i10o=LlR+q=-47kh<7
z{OAOBb9iS#r~e@`!mBP>G`(HXyE8++P}2vrVmBpAB5gVUyv<O&rs{1g(Z2V~kELS1
z=YhT!!vyQQG6D0waZ9drTSLr?!Ie97@(Yz&w7+w)68=jT3k)rxXCBreNkDT(0YVTs
zvch|Fxxw2E0ZhNAK)nd86eQd;y+Om<GjuN;o;aezLA4%G2{ql@GRk`pbn3RwvZ6CQ
zzrkU{_G`UsYg}d~Fu&U_1kpq>WDtSix*k9ZB3v9PKnkKjFQm|Oyjd7ec@a-IC!(+i
zsL)d(A_{km$D#l=YFrzp(8j}}lUEVBQIN-Y>}_U@#=lpU7y*WFtTZH$2Mq%_!c{Vn
z+^^t-$a>{le9XqRaX+9S$8_wJP1qnZ1I8FJ#ujn^m7%v?r+g8q?7Igd!wvHi*#%X?
ziV=yxOiR-YUEDOb0~40x2k%D$Znz-Wivp+c7@vsC7op4G>%{eer(q1sQ^g0&*c;2T
z6;xC{UojZ8>@~w|7{=_%76HqkAP8tf#!l3h;Cz%vk;TU=XePwYgBr{QG8oI!%&Lqi
zT>MIx;m=;&&9CCls+7*ZvCdAhO4pnba-s+WW;ptZE6#i!XOzo#cs}jy65&kD#!M9p
zZ8_h((eLbpUt!S{T}=%Adh-k%`wS7!?7jOI&(WN-Sy;;uA<oU=(N^qSW~P8!3`4)H
zeWnqmJ80DKs1c+96eNLcECUD_q^6rIyD6am2y8?amMS9Y@zfB}2c!@LUwt%b>Jv&G
zCNFV+LaDh<(YXk+)=@#$sDaf^oi8MXBUEkG-b;rNA~WmhPnhcgr9d!zjZ(236-RxL
z8U4gzWXpqs5l{?{rur_mQ$@d|$Mhm1SAoPDVc6s76xbWVpXk^othUBW(~~4Wf(=Z7
zDO2dmrSEsVas)or=RDK`P*-u;b`v0|eIpRD)1gfkGOXBw`r5zpHJD7<tW6gCc@(~#
zL>&{<wWCmhfd{f}nBFWjhjA6XozTE_-1HI|oiRYAty7;hC<VsVjGe%V{TsIJHJMEn
z*6A6@ZJX;I+oLesCXLZuGZpY%+5HOt+Y!-CCTMy;-Il?fb(meSJl$MAo#3RBk<a}~
z_^}pvVH&5QKpX)dR$&u^Yd3=C6=b2|SaB1lq!Spe6jDJH{fO4(bJp+!)u;g#E`j02
z5#md96WeUR7!?+y&3L6E;cQ_MFcTMZ@#73(g{4yA6J5^-8b+x?+I$hZCdkW?jez@s
z9H4<l!%-ThajQLY#-JVLN_2AQ{lDTXKSh2Q7;zlkk=#Ji6Cg(|(BT@eAscFQ-9#fC
z0fpvx;U#>r-N4PwWPu*TJygZr6KmcdPSLc>9p=tW<p2%gnIY%WQRiU9&3)b&+wByH
zJ{7is8{!>)7@ZxV&K}B&*i0V(=y~qsWx?r|u2QuY9du3|q+TAT-s*8g+!4{}>QZ_Q
zzT`FC<R&Z{0j1yzZliu3(Mb5{DzeCEc`30WB{VW7IpS^Rb0!xdBt){?)UG5=;v@xu
zbznjz%?^KQtrVDEAm}dc#WC$iQYP0PmT5w%dX1;#&K`3TYjDDq^7HJ_?%=5Y>P15+
z6c~QHEECb4Y_9Ust5P=o9(jM=BO*d?2|@755>;ew=zyr7_RcGRlZE?O=w`ydylv;f
zzVMS$Hu^3Ti{QHd@#h5|=u{yh-~{KC1vC@0m9KY9$5I{r9O(st@FL$SCC|+)FI>!B
zOVk1?Gvjb7tmGMcSto7(5xSD`G)2#mg7U3G+jmYJvoiFzk}Iw)D80gg)WY)x?{kMU
z^Wh8dHFff=QtZ&h;5iS}%We>q%Hw0cPbi}=JYznY-MqJYFbShqk^5?06)`#A$W=No
z7^5zEcO;fW0*()r%2TASg*kkWFe(H1UV{Q>Iw3NH_t11BA3yq!`nyU2=mG!am%KME
zzBhKSc=B`@QuFZ+;@M*5d6O(S7f(Gm50&zB`m>KVu)jALlme_-_Q0}TGeh*RPBuib
zGZryJ0n#-uuimWBm1J1+RbNH4pT5hB{K}6se1q^o?=~ldL;yt`)o&5kpNa+2I772F
zlhHLt>GW~KC1<4n|K2~}0O7#{iDr2OB58I+;6jEC8>XPbkYFEyd77nINYJ2%QKA@9
zX-3gQpk`4P1~~;tAVi5F1>$KIgkdv2FH4?uxv&XMhXQxj?CF8YO@<aR3e<QoVbF{+
znLdRYRq9l#RjppdnpNvot`6nV0~=N>J%*=F$(fP}sL&>HXf{#kAxN_(a&OKx=>gQ)
z6hWw*in}$%DMe8X8?GxbO0z&sV9M!<O5{QmrA$#dGNn{06jK*BejF5JV5ox&AC8jP
zCK9F~e=wEYkjW`fPJ&1=MarQlq6=r&zMXraY1FA3^3Kcfv*Tuv1y;VCd2?qEf12Sb
z9)-GA6it}_<MF<IubjSrNqbP#Op(L!<pDqU4ikKn?NFJteH++l#)2Q4)n8~7RHz6d
z3Q|fTA*#9R!pkm`_FycE0@I6YFjGKL1QbA~=*ojqCKIZeQ34#WzylMU3M2ppy3Z{>
z;G!(P>%v>8J-^=b0Kz~djDo_cU;-sIJWTn+CZ`1Ask-Y>2m+>@_Cu;a4=lt`Lk?@?
z>&Cc9Fy*o)_#h>vsani$At(ouaw@aXQp?Dh)*|!8z;xu%N2!1ml1LH>G!Q|%7`&^b
z1sx>RIy{(kQlvAJ8mLPuz6?_(hDPa4Dmo`z$^$-{K@q)XpzsYpITs?S6wC}n<)~6m
zB_-AWP+f$vqKo+3h{_B%oa)jZGhI|lLlJEzr&W(Y^(bBKgy~2RlH{nwK06g?&9v5v
z_N-}NEmPK`(5&^83va!WA>=wFw_J12MK@h_ulj1Nv6MR{SVdS92$W#&O+=tU8*Ff(
zK2QnP)DA(q_g+Z_!mXJBgNm)8AQHj%HL4O`ShP%|BDmmY4(3R=)|!zxG7$AmFW5x3
zt+7&)@!dA#f;rYpWrR&pI3k7~j(DL`G`?3^tajpAH4^>}*k<Kq9va|g1onw%x~8(X
z;C!{E)xQ-zD1jt-QD$o2K=Y!4lzT-{4FysB*u#%M(xW!34;u<(M1iutR}rqEQn9E1
zsPWawX`zW;+Gr2L9$Pi3qS#sCKTu5eO{BDL1{5Yt0jk%H%tl*nwle~pX?=N%JOxq&
zfm-9KJ+Qp0DB@L*-o_VVc5jnE5<6J3RZkq1#TTM`Yki;QS5V-;9td*DDW^KhjpPCy
z6wyhabYrUsw_UYOJFV;#r(|#D^gsZsos_`7KO%h6xIaC04=_)AZD#SVy_wsS=l1b?
zj|Yl;^Jy=9q1TaIOYhWkx7EpuUJEH;>ry5)GtEkQ&pBKBHpdWqC1+h1#9#(BxIuKa
z%Uxk{h|kCsgsWjtgi|5G5ujC-6LJt;DrCyt7y?7A$nYdgN#P1z7!(rX@F_k2+@V%d
zSi-HOumlYOMcevdiVY4ih)@BdLyVXe6r4vYRn#F=lGu<XhOmSwAmS5mc&;g8rHVmu
zqPeh`6)-Xd1<eo~Rm%7j5@gXK-_w`R@F<rSVr7dA>7pEua73%D5pJi*BN_*Zl{E73
zhvoX?LITMU8;a4Am&9Zync~3@l0}oB1Z5~iIZ9HN5?v*@PD2#o5mUDElc>alDp~1D
zTGmo4v#F#D_t=wNmJ61$ykswJiIrb6WR=52W-@Kb$qy>ina_k~G^M#ik_ZA1RLH|9
zOku@ocC#wgyk<7H=}mHq5(T8NU@#FG6k(DJoY>SRH#ykOax&zd;*@9qJ@vWIs4&xA
z`~+w~1v=0tHo*^qP{bebU`K+M)1U}dC_@`MQSQX?l5&6<LolkYhbDBPnA~VXI~q}n
zmQ<hqe3wa8x>A<5)TJ+lX-s80Q<~P4r6?7PO?A3cp7zwIKLu(~g*sHCx)7%zENW7f
zx>Tk%)u~T~YE-4Fm7{`Xs#nEoR<*iSu6EU{U)5k$JqcE_mes6hMQd8sx>kOQRdr!R
z7ZvidhkUYCnsOBgU8jPAKlJqvbycHZ|C$x;WaS8ZPzw{HiPszf_FRWetV0UR5Wf1=
zu`6xDANu%7KE#rsos}$HSz6h?URJ4)<%41yGTCx5R<Cx2sasS3)Qlo=@DwBZ0c{&{
zgghkT4~BaV9ukp<s~rIl7WIH}N0EqhMg;}JB`#B%aI&iK*0+W`LL#)gUFHgfyWd5b
zaV;v`@0ymp+$D{5e_KfCu1LAvU5FgMt6dP?)&se%t#bnri1aj9T`1UZf3X6R{Hjhp
zd{~6chG}2?F60kw!$U^3vKU1mxKade2!Q#kV3_`|l%tUFK0(|N4BJ%00>&zZEo{LO
zmy5x=h3!jaD-i8=EfK)QU@1T`rDpiyXrlN7rJMu7QUJmfqd-{@v^Fvi>_ilKu-6`_
zVzwe5S%xGKn`u3;7$6IIAxBU|n8PeKlNc8efUs90&J2kEqbNC8OjZOb_B&_O#(B>B
z4Gfoq+?*+kqRL2Sh?Ak*3@HnQ3U>|!!~($(9rM`7RoRJuFBoa8JPgOqg|VizJjzC=
zpvO9U+Cl&!x30V~zkDE#rGr9gn|hd(BPJ-UPjX{#))-x^uBEMOY3hZb`ew8?SEoN6
zW0%g@1E(l(CQnh5eyy(*$sx&+;?|jSp3VcJ0K{UL3<^?{M56W_1+__G?S=RuSf;HE
zv||#KL@<%WAlps0b0RJ#Pel~<cDA}V3vO{+o7<$~R8Ty;Y(hbr!|TGe1{bsGRua6~
zJ0rCRMoq4TXC>h?b@eD^EzphY6WQsyc*B$3%8I-H(BTIsc0*-L0#x<^1t@?P30}UU
z1f>uus-<kKsB(m*OktgrxfvXPXT5bdq+w-Q%VPFD^j;TTC(FK=bAygtPq%Gw@Maj3
zOJVh?Y~77hm&%|7vZ*5xTro~($PZ9aXo2utAwIuK$l-Gym^%bO-I1r<={WPApoj!G
zw;B$SAX<qGWJ`cwNfS;;f+jejGk+(%+dTkxol(kY6PL)~uaY+@@_p4D#(Pjwpm;f6
zZH1w4NFATU1VZMV;gmVg>kv;FCeZxmeQ*5ZYw!A?96_}m-wFzLpZb+p5k)DGC+Z77
zklDBW_Xm^t%lm$NDdwK}gr7U{ZO;7VBVUUDEq{5ZRG(pkOIr8<8b4(-tn-YZNcgRf
z3d=(hekp3+jPfLb{g?muo^U?(p07T~yFRIqJjzSCo9ZMGk^`REF@Ose3z`c*h!^IH
zmsvsqKu{PF2@JvFKm=M355NPiqYOUN6pv}LV6nQRTZlv;wLd6@sQ{C{c^@pJg3+KN
z5^RV~37Lg(4cK5ZRPZbu;wB*6D;z`$D~iFUVHOs2uovu!MDP<2d<hYJijcd&3><~P
zXf%f415&#}fXPCKxHt|JEC*B>qad17NDjvkgo3~WJWv)Au#R8>g{89#3GAK%nxzzg
z7=Sqi!HEKzX@+H^8IvGGzmh@_q?Ql=X*U$Xyn&d*$g#sF!-F==gEv$b$dNQF#6U14
z4L;1kKeQBgTOXbAtS{6+aS;U+D4BUf#W17_#0eHu2n5E72|kDyRIs2U0G(9SmNc}W
zKnxZ_B#Kug4JM$JL5u?6!wO!!7g!t#QwV}&GzCx*h(M4=YP81Z=tN&cor?fQhCs$)
zT*iaZ#D+jaKMY1eBt}Wgux^CK2%JDYyvA${mTHVI23!b5_&I_2gMN&PkaNahfku98
zh<~IEcq9!`SjASvw}x0ijcGunh{QU?oms5KjHt*XNk?VWiAr=sIJBpGX)a+LL_R3Q
z!}-7vJiwN6tI=BwKk$xJV*-%>fItyJfdwQ56ab0D;5LN_0#GOgLYlAb!U`#92GvTm
z=O~4>Su~?#vL--<MBvG0kb<dLN@sIQhVX;+u)(8D%APO<ax*ln6B&nKj3844<f4@3
zO3P7L%cnp}#A{2qnVQPjN}rg@s=P|cLb;!jnV*ykp(G>^D~06|%%B{~hPb$*)U_a}
z$um@s8(YRxI0`%vO8Ef=P%s=(Foh^c0mLx{(VB~J)5)sz$#MFDO-T%%`-7LW4k|zq
z$0W<1_>j2(ibwQJ&=gI=!_1u#h0Qb^$h67NYp%p3%o<Tm){Kh9NRT&DEj6r{FjUOe
z6NOO#g&Ru&JorGppw8s~yc61D0>3bYmF%7ya{>Vg89@ky+Cu_<JPM0Y1j-x*%WON^
zf=xK;6y#jY^(oIFAc55pldfP-_k_=DM1@fRO()1Q1Xa)!V9<-<PePJU`m|5~R0IGO
z(1RgP$(+w7sLZ2q&HR*2sQJ#tEX|y3hMnxmkx0-5ZO|zJ(H@&g1PV2QD6;Z%hyq1{
z_q@=>Fq|BnPM`$OYr{_M<W8x8Ng8Fp-3(33z&@DxgYl$-@>~cf?M+$v&=7rz%nVM>
zyqU;MrxE2V{cOphnz6Y+E*7bjxrim6d()c$i6il}HPwm~D23Ajg-1IkG;;_Ql)+{Q
zmnK`YLd}ak6^K6nok*#aiLWHoLOnD8!qeJZ4FBrEtjn-L^aCouz^9}jm3gC6*wjuH
zy*y<Pl|fYW@CZK*)IrS%Q$3f9o73SCIv!gKgm8*kU5Q%l8+Uw)p-3l-IGCLnRR8mz
z8|Ar2`=L~V)8x7df+#TSIR*FQ)vb6NbCU_og9+70R;n;o+2Al)b-Fr@l4w=Zr&$as
zBZ$|~RUR`M-mo?lX;*Spka-gdC$I@m-HA2zH0Kc3zPS=yq*kMu*IMm^Q`ioe2r<DR
zL6T67xtJP<#fhmYSeyCRrn!=XO<3s>N68#kK^?nkeU55<ii)+1IE_=2kl5d`HZ>JX
zPvtp$r3$_OqtziZ1(<CHnKfB~fY;><JCX%KWF0mrvR5XM*=_x@VY}E9EY|;E3SiAa
zkzF64J=30=F`jcrsKp6T2_BW5NP!@Qg{>h{5QR=51s_96j7UO;0Msb~1yR@oR1hBo
zV#vB>NSirZO)&+v^%yMkEJuw3yRBP`5}mSrLML>HOFc`8$b-OuiRQW+5@_6Gg<P`D
zqPxl4v@OBmc-y$0+Z;qYa=Exb_*xGL+Z9AyKA0uaZHUtiw7(1rt!<#dc%vY^x)lk|
zhDZbx?3zy@lzy=nJ`f>4AVm@|JFa*e6gY)N!@S&Oh~4#8r;XikRT<W02-l4n;k61=
zfDDxX9FZVEg=;Kb?B$IUvfhQj-lwpL5`qbwW0c6KoQtVlfgs+DINtLGTS);0=!p`s
z)e2O|pJveAbs~uY7T?yD6pNtURMHFnMH85jU0GRR&#GUfI9{m0U(;2Ix!_vjDd6Yr
zN389MO`#4xK-{UI*@Xb$rYm8@&0z8k-JO#e=UqYGWs3C;3L2&{k5S+ewB2v**mSDk
zfw<tR^{E-7*$DO;lW34$WT5q#xhTfI=OBe}GbZK=H9+W26&{(&n3@z&1XqcQ`2<pd
z&|-n;15yZrHGbS3bgnACnm58X#r@NVTnJIk3OuGPIHn3R&f*XB;*|*F@FFyjQyC}!
z=9{z2i&6+eM4p}3O(!XiVsH&s2SSq{mfo3wnd>21Kw)B{07dyJ(X;a`q<s!amcFQX
zo1kq1%;VUm`!*iTWQT}gNInjyIh{}zg;9<QHPed)OaUlhB}eX_D~&jD!DXqyMyBwv
z_rZg>v5X|?70+6XQod1Qo|+<lWv+PUQHbXJ0mwdZT456B&cJ5+AqdaXW(bzdZAoWR
zwuwvYiF00JLLui&mb={YEK;CC<LrrU{^o_yXRuw1bLQD&*3pL8W=#n=3?@ai+~k0p
z=D?fYbgJffHsYW{;v1#qHXWW%HVL>qf{`X^r*N8JnX*x^Vuo<RQwYL@s^f<LXx|a+
z=O%RNeXK3k(HMYy3KUT35(0_lyE->!TRZ02Ev^bt*kYev>8WVxm#(du9$9J;%2)=>
zbP{Qj9%*G6%Pm8N?Z|4a_L+-2X#oymbhPC6y<N2Q)Uj*m-u2{y6Nn$c1KwE0rrV4(
zS(cNQid8mUY?B+t09~tI>x%a0Nl^r?-s*;+Yr7`AE+hd|pusqhl&~)8D=pmsNo>Wo
z!$1gMfkV3_`2o+w4(~7pMM>*4*_6Cq9*)>-u@(qZfSHBHiqSTO(r$v&zD9uDlp_+R
z-ga%pJ_4suAK6xDcCKW1R_&$Pnbw91%U<kyZjj$@hSu8&d4}GdV7QC_vu)hg?HWG8
zz<}=I#%!&)ZnhrmsPJs25Ns}#=+tg)AodNJS?%V|XpK%lt5W2r_2{^s?h|HA?+|bS
zr;0@wO^29*Vn&LJDe8m#Y@P96fk^PviENuW0wln2B-oTF&@uxjBBA^kqUPeLFm9|U
zae?q~tC;YNsF*)^a2!3D;xy!R3IqUmh)qcWP$;k(4@i|6@E@mSv{vr;o@IehX}GcB
zo{(+@1Btcptv5W6A0P0(o{Yt?FOE3oKuGeBA);FDRk*S7kEv-zUXMOV1V8XB9%l+2
zwx=);PkCx)p!mo7I0e)m@)cAlJU9<E?}<hDT2G7csF?Gz5Qz`}UI;;OH$xW)M88Hi
z|HeD_06(Xsg|21w@qj1S^KWwVC0ALqKJ<sK)Sv)TKgjGJPp3h@V-OkjujTW3E_Kh4
znIpHSEq4f*kSAFu6&{9fitY(7$Mn~`Zv@QmzM(=T{%Asxaik!Z7PZap91<M@R8w|V
z+kJ{saCTG3B1gp-j%Mulc{dRk2tXwPKj@U57&4>~p>Z#F9AtJhIw5QKA8g0y`#i<2
z<|vg(_JMGi?uoj5*P#^V@8qr;SzeLH#R;SSli$4wmf#POKnP%m3crpSxiR?PL3n}>
z_`{ZE3+fbxkCKb`G)0IdCx{%dsT62o^NsgeqTS*YutjD6Ns^B64?7?DhqoAxUkC_M
z4ROw>T<Qs#m*qn54U~`+l1L7sFH4+9XDQKnNuu<2uKB2oUZv;skr?^`Z5k>p1w^+~
z=~5Y>FUyhH`pfVSrRUjKmx`aL^`W=d-fekXJo+cub&NM`hOl`$n#5pNx%?ihW3!ev
zVG&V@m8#c^EHRI+AP&?}jpYc9n5Hbtzzogc3|I#ZBlHi`O8mnx9GEzu#5GID_YK;x
z4ctibaS=z+4-ON|e8jlrl4K0#7&7RH{ORz=>&T8N4vOyh4jQQ!!^e?*R1fy>{kYJ5
z`QZJih!dT&^ulfk0pXJqsaOBLiDStWTd|T3k@%tiAT{SVktmc3`A&Y?m67=nkKxa&
z2*DK7q8WuC2&c1=!#{hbc>mvr3OsQPJqcQvm-8iQk~dp=fXL&)LyA+TKq&$RXv)BW
zpiaq25roRABLhj8GDW2cA5y0PH5@pqS(K0_PkQ*%3=fJRc$ziqGcZuIQdEvaA%!Z%
z%$hfI?riul;>3yr^EBgmv6(;*7&UVA2y!5kCUKhaX=3qc(uO3M4lH;u;X;&Vhf1Vq
zF-Wr}9@v(I>w%_CoH~^@JOyz|B0eUOHbY?+C5k3ZUg9w<IOWQgFJu0NxmYN~v_=Pt
z0yTJZ-o1SrjzUExNX}9uI5&I=D#~F~e?W`>CQZsTSG-@F4x|zoW!0-$w-PjnP$5H;
zqDZ1nu6#N3=FXo(k1l;W_385HVb89eUdSk?U@Af)6ejsZ1KGNjE7xfsR4{E;*G-=M
z)PYh=H4|+Xl}wXC5|#G@bNA&(#bCMt$C-TdHB+AlqmZ(hZUXMtUr0eHQXXF8mE>QB
zFeQT5g7Z1(0Vv3wM4)~b0th079+bi$c|lCqgp6%@)!ussniK_!A(5b?PYu~9qg%<H
zIG=g7c?DKOx=j{R2{eJX;b7>!h1_~nkV2j)M|yyQD1PkW#~&H`HC-td&NNCxQ<A5M
zl?v{5Qj+Bnc_WxXx;NyLUBdL`a*3G#(olv#3JG6BnGMG0j?6_7V}5^}=D|xeHiXqh
zR5k+&6Q-nzlx<FmNv4@-=GdpA=N;E+3Zw{P(nuw8Mgpgvf;v-0fRX}SAiKiUE266M
z=z*wB;ub`!pu8HZLkuoyY*$M)Rce`MYMPv*eqyN}a=#wIYk~uL2cCE#rO-?u%oWMt
zk+zbDYnlzEyRJ#wuId4!(UsdwcyDqlC!~_1LMgy;;&m*wAwh}Kogg-3?Wx&vSe?Ze
zW1O+Z8*`lTb=z%s5~djk5oO2zK}W(7l{z=_$uEbr@?dku%yM%yH{|lYGQ-SV$&GII
zbI;YOY%<YDlwcAl^A6NUp*<J>J@j%ypQLiq8dKd|*36+WZgO4Qj3m<@I4!c#VVyk?
z3e6O|9M~uQdY;a4zoqkqX>*nW-p?&<QrSN54fiQ>2W=KxPGtPH;msg!c;M05ebEt*
zo7J^hQTN<;NPnX%wdbFM9=hm*eGGDTqoba>>Z`Nfy6dlRR>DdqDIyB&x8shx?0C>_
zyTweLg7b59qeOh}Z_XZ4?Jpb8^+1WZIrL)CA7A}oyZ3Ir_S<v+T<NBB*S+}TlV861
zuG1t49#rHpiYZ>7AHVz!rN4gr?^}!lDIHqed`SKuuYT-vAN()|K-4s$6nq#-<6xG+
z1u|}auoK|@3Mjz~VvuA1-!okXJLtg=g7A1v@Pi-}@drGFErcqB-3Uu~!W2da1#PR2
z9B9>$8j7!lCPX33aOj*8@BtKoV1m?uC`2NzP;@$cVG^6@M6+xVWKWzT6{~2)D`GK=
zTHGQRyXeI)dJlZ310xyBXvQ<5F^y_mBOBZ3#@0nKWN(}!9qVYvJK`~qdfX!)H7G{x
z^f8cv93&wNX~;t&GLfl^qjnVO$VWmll9HSxB`aA)MvjqnRJdBkHfc%j@qu?W`a|SC
zS;Zslp)W|}j2vF$x>m+7lpB-f>QJdlI@*#CtBejTN0&<^_A+C^qz)}jIY>+bav(>@
zLn8hFrikGo5qUWO+YtaULuCSD6p7#;Z`c+R6hw2HgK0vD2EznzHe{L2eC81n;m&t%
zlR4GAW;EfM2n(8|p72bNI-S`Za7xo?)zl_8S2zkAHs?~&>E|;oWzTz>L<)%j#UJo_
z5`c;`B>H@3f}-GuKxEV;^F+x&<9U*io|KvX#289bG|`HRRHY5|z!A=bhZk9_r9JW&
z9~SYW!35%Iq0{MHgo=`lx^r9-rRcayT2K#o6r@pV=R=<g8XJ;xPD_R9U=A8Ho8r_Y
zSxx6dO`1+?n#D(o=;@D~N>a4u^P&6%>q+UVQMtw}n`UiDR70BAYbHmnY_%$Lg36h`
zQZAw|^_pP+eOeO3ZU&=g+p4dOiW0<f#;Y_fEB}xRQDdGFnc?%1DE=@KIeb$Tr2vE}
zMzNtFP>D?gv5_e9aH2f`wG^pcZEI;pf-YGw5W3}SGfI2fbSfgb$?XzhMHbtWD1sD$
znC^5fYAESaHxR%ft!bNqTIGm|x2_EdZEf2O+*;3_)X}VT6#5+Q9{0N0)ow@t(F{TG
zK@_J*Y<O8aUioGhIQC6$Gfd$!*uq4%9w_f^FZA4<8rQoPLoj4cVqg5~cQWvmFmXZQ
z2aoJhIuurLn3~~A5Aeadkp0|<O|oK?M0dUkx^RB?o2S|~xFG}1kb#k_-01#PR<!zU
zGsZ>#;|zDTK0fj=h*3gh;2hz{K;~bIFKXh3q<FT)H7|P4^I+v+m%7{S)Q3;8%O#h2
zmoX0Tjk#Q3fARRhUv}G-2a;v!yx78UE^sN$a%3Avtj;L5NS;m7-`<+!&x<Man+e?G
zBr8+O%muKRK^xjXat8&a;2%v!7Kl*@Mt{-L7a)A3U{FMFF3o@;TSVEWP?KWR4e<j^
z3fSt1ZJK_~C?%nmBZ^X2I3%JVadL)Txm@?8&n^aam|`6gRO=dsuRFzwqr=|lxc8sP
zR`tk?Z5G||Z>B(Hwy1?oY^ZLfAc_z+uuq+8ny~EGrZ)7pJ6#=l2m47s0+XgWz3Yqr
zm|`j<5QXokgKrZ1$ht1J?9dLr@XdG|CEzB~v){dHzNY&W>o!ZTA#D;`7nx!E-i&53
zB5;DE1mqU%IA+>?*^t}G;_-I5afog5i=Z6fCoj0Z&JFFJuq+B0-+0UC-JFCQkm21K
z`f?^d+nsui(exv?v-KTr`Y9dbVbM6r5z6wOTbhlcRojKoi6uM#+a&xs$tmXLqsaZ?
z6f8SCiqlS{w!{1+akp8N*aFyejV(EAH;DqFQ~1i29k3$95!y%AcH%1AD^A%82}0}?
zBp5AhHmg+St0ucXpa2CaEKC89fW&K~CIwB<nR_j-HYOOY@92b4;2Q#~=g^)14|YF1
zYWRQ(lng#3k0+Pi8xs78CEn1mAB^QHbduX6K4<8JLf(C3`Q{VGg2&hQ-mpKDrv;&a
zq-VYby{~rJLN@#-;r;WSg_7YzwfG_Ny;%T%($kly33yKs^ao>lkxT{kjai84pY9cq
z{hh@2<wl*D1pK{S0xB5$g@gbS7ZOn*@vV{s3ZL7_AC~<d1d^Y`F<|ypj#fO}TUZqR
zDWB2wp9mUF`i)EO*<B0%5BR0v2gVHkp#%aBga(FP8I7HleOE{13B?$nf>F;v{K0S;
znh_GAmKou1Q2~Mwh7k%OO6Xo#37&$Xf~#E){B$9BahO+l%@ZydOw3FF5~c(b22C^g
z!FO!acN826s02)a!pNwENmQ7q=*TJXj~vK|W<-pAxyL9Z2osD%Gx#Cu%?yCJ$0-!c
zrSQRbpaM4?L8~-_Au`_>h9OF<N28Qsgh1iEbRud1f*_vXNvPox0^hl*%@|%Hd1zvH
z5KJJX(Dr>IXROV4y@ZsEAyn0(%|r@Jpn@%eAbH_|ATR|U;DOEzV}2N8QH9HUJQE5K
zVkVBuGZv#T2IDbe-89z3GnJx$1X)O|A{!<eDw;$Vh6EzQ#3DL~6jI@Nlw(7<qasFu
zX7wWSeAh*g!W8D+IyQqAdcgJ_hBD>>GrG(<wqgQ$p++@>FY;plMDnBYJ)}9N8Y}vl
zIv(L=b>o61<1#j5k9=g9T;nWCBcPOmxDCW9#tbH+WG*5jLMr4psw9}0VUeVXOxh$h
z4u(tGV<N&M77k=cjN=cQQ4mH{GaykQEQzL_iM<%5f;9muB!UbzgA@?uhB&3#ltNU7
zgdeQiJPM@ncz_fzB}$lrtSN^As*7nU0$`2AQ@!OV#N}q7Wr)qCi#_F6DuPs2<yGp2
zR-y)5fEpl@0#+W0D40SNq(G#Y!eZoMNbI4%BtjG9WAKCpX1bwaBnYal1t^rl)u4bW
zC_)gBfOmX^a)1K<{DAHq$xFCX6F5O=yoewS5eguIB4{T6O5|mx1Oi;PO~T26JIQ5`
zb!C|NrBv4CU4C0L6h|tGl~rOTVM^y<{N_O5ChYBIZ(53pF~LNbrZ*Db5fo=4D4u<!
zW&CXj#k|BHgeMh@=Rmw?e9q@o=96d^7bt+jGu5YfZd@Rs!YDXqqy&XSXkrkECMW%;
zd=g!Q-e*Vt&wv(aDIBN=H0N*@*?G=TU{>dIMyE-v<u{ooYO1D#h@}URC2<-jiJoR^
z>cv#}NP99(ijt*>vgJT*A0FsuX7nd{QRiSbq#g#RU1}(e5+9NdM21eMU}hzV4k<*!
zCxFstkMgH~f+v+CXlRb+Oi<`!S}4uvMu={wZt|x8Qm`m`YLu1!sFxBbm>y_yLginU
zCx=exn;NK?LTAL3D2%S=NsK6E7O8V0B^W6sy_7<<c-TNJ4^ZOgNwiCddIhy9jUO<o
z?Ko;x(#VZo1f|YQqP|>nZN~Pk%_;Z+71)<lR?Igk;;E);{eh~|1lgi`K%=T-q$<a)
z9l`AEYDv5VnCz;hGKL=Z2U66BjfAM*orG?TOuFz$9{}2SBGkPI+JdEqy5x!CrAt4e
zORScdsiG>j4g??)%17nfvlJAq+UhHU>#Hgaeh`)do*_&~s)WL7j)nz?u?3qjK?B+A
zxHdz%(gd-kfVbWnzzXZWwqxTctUdaxj*?ja!;mAtHV#dIiH%GJv(k&%<y*hfBgK-Z
zs$Fb@u&b+zs|S#)DVVEl;i{d$Yg+vjv`)rL94jhpYTl*n$~J_|Uh7mGEXukek=U$?
z1|)ICYs8Kqd67rGLTnSZ>&gBsASP_`0Ijf=s>!PAyzZ&X)?-1+R>M+-ze;S`fh^HB
zD>_+ho|H&yc5S|XSI!QsNsO(ojqFsYE2at}+y-0PYT4Sp?9N6j&7OphaMRU>Yt|O(
z79A=<kb)?%3@KPDAD9A9nBl*M1t^HZ9-xA-<dghCE{aVqiizTHi4v!NXP>=_<Dx_&
zpyP6E9|`0EaJ<A*%?a$vZaJnd49&^^=SnW+iXuT^uI6$sXRrknWJz2g$G$W~B8cK-
zW=gT<-P(9zufh#Sl7ij3pHq-5l3<11yu>Qq#$cdA;N`AY#O}3r2vUGTrM!gK>~7?S
z?i1QB`sR}$3~1yiU<w59=7Qn5m9O}QO43FtSFA667A@nd?#>1*6$BM32rE*g4Fscx
zyv{9Gqzz5TiYNwx^-hHZql5>KD*90*XpHXp8gTk{3j5}r{$?)!o<uU<@9Lr>C}i(f
z2plPtZr-V{3U37s1IhN1%>p;Du#)Zq!Vl|;FVdb33kz@m-irx;C;#+;5SxMnD=>Nv
z@kK!K?9$8r4sUAM?<nA}Y=N-<3!X$7{|^WEL<ZMy3<EF$^RURh;0TL^DDrOnisB9%
z@K#`ONI*y%i?LADFc2><I?nG2C$1MAs{SyWp==Z50RqukuBI(X3Mj&b_8{Ua!XqC^
zBsUEy1VJdzZdjE9;zkT9G;$NVVhE##sX~V<e-kPvR;_Y!OKuz`hs7nEB|WBxmLLZq
z*WGD2?~+3AsCc1`JQXG?$w0v0l1{5hq(F;^0u``KwqYpK;K8Sr0)C7QBL@yFXWLg?
zB#hOv2Y9ks!1BE;PsrjjLFjVGo^mRuhBkBa_ibV4j*K`Pnk>JtM<fDUq>0oO)jcn(
z01I^UC?jUv$dVj%)?KInu9!qZqqDGvbMmyaC1bKztTU_1Rx@MhRP+HTi!w=2NJWd1
zM-wt0_%lF%awxk5Nvm=an=!pr@;g8DL~GPa8=*>{!arM~@L6rFVzh5<^rK=OoxGq!
zD>I(V#o&a5M5{B;SqeR8i%H9|;6yY<ZnBSb^2S+pQ)ji4Z8S=k$l9#32c&Z%Ymri-
zz$nP`8lHlynNY}nZ=f;F6s%`REMZ(5iYtAGj5zf`;I-?8iCd?QZV>hapS37RGIKEY
zHyJi_?6q9GQeD4d?U7?IBX3EZEZPY(9e+hJBa70`lwBUdX`?o#1e_i|^GW;w9vp`#
zEQU2_%MUOn9<WCL6PN;<wDnt~#ABOnNPJ~-Om<%n25>{_v>3GkuhQBCp1k(9$=J3j
z;I?7xwwDsLzPZeBM@(c#7TV$<+=RDG7xW8`_x}WTOMakfqxNZIihu&uc@HpH*Oz=_
z#>Q!ELvXicml$T-h?O9=h?dCq{xyR*b$<7tE3GzVBGlUONP*8sdJ}D8Q?LN@w{yeu
zNg#I<DxQNMw^!#ihNHxPhb(+ch(X);gD66KyEjDFw^@+52TXT$>vn%2IE++V1=F{V
zePD4jsw>?%cQ+3p*msOCc&3y{fOE!%t2GuW<swApN#J#~kid#8cS?-+YWZ<v3wFSI
z#flsO5{Nnf66l`LZTVn8Io^n7bjYiKL&uSOK$<tllz%yo{6Uttc9v-N@jghZ&4eh@
zn$n8)!Wb>wv~EKzf;y&4o{M0b&~}={U6h;xo5(q8EI9S%MVD;`onM5N11dtD(@bsO
zof96d$ZMtRb+n>&f3&Y+i_}k@f~KSTU?AOh7Er5mMui&<uEPx->x=IQ*I@8^=UUhH
z_3@%ebx2$~tfLpH3pc1Uo=~)IqNB_9hWVJ6`Bq>$Gou%^Z!AL9`n8LBwkyq{TkZlH
zjkD{wsh>5RcgF#j=U^<jy7wToi@IzLdwIVwyw8QXtD12nJ5?}VqzhkvY&%+Ox{e<^
zX7~>Or#l6hGy56~Tflojs1Jm<=j+<~yRtKSldn(^>IO@e!h@Q^E#iB$@2ac$i1DJt
z$frihi(p4J1IrgQOUn39yRK}JfFH1ojc}_|*v-!O{1}G(W{^PSxIBHr{C5H?)m{mX
zc#E(8NW&IA+6}t);>H;Up3_}KL+nAcPcfsXK-+}20lQ4Li~`T;hJ{r9z3_aV^y4U?
zA~N3#(vv*ry}g$8BRA2S(d;P7JAKp2ZM6Hb+E*A`NOB68{7J}tp72lGGao6SBI2V<
zrBFV-EWW;zW8zl|O@v#vaJ^GVALr8}>EE>H=Si9fJ=}xF+@r{^rW4ij{RsZRPk%lC
zn1p@I`?2eH$n7hz4e1X@>f5-~K4uI4;O{!%U*zlN{Tcqe+DLxoME^xJzt0<R)2n<~
z3NSAEOXXkn=6gTUauds-zLvS2_Af@-i=2ftzLs&5!tWc!B)z39{e$p+PkjFQ&sv@M
ze$x;#K>TRN$3sDbB>a#t*rb^pgAXA_lsJ)MMT-|PX4JTmV@Ho4L56%Nk6uZWC+T@e
zaY|7XmoA$ajM6Mn6FdziqUr+?MJZEMj!Y?43WY&MqA1R+dDEdpD$R~OJUVe@%a>7N
z8oY@Fq)v!TPJwa~M2aa=5k)nN@-^((vS$lcy^0lL+O-gs+QeC~=g*)+i&_l-(k$lS
zwT26hLPaG=6jG%WdgxiINeVopn(g$Er&)@F&GJAzbxO{ZL<9?hBAp@#l~YkYkTCVL
z2_I6Y0AbuiGfHDcPz&A+@^E0mKh5x<2y!!XT$XdQf)z{F?8Cf{L7`O}F)vet(%n`s
z$fTJdtj9G&^!l(bP@zO4t~V(6YS!b)mp5x3ycsC0cue^tzVu|GsR``nd#*l%7UAPS
z)nMb#Kbr#7s=xm#RF6P|o(c@2n<fNMKo0^rr4%`upklVjJWx#z)?AAaL<~ptU`7gS
zG)TUJN<1;e6~}9fI=BkDj+E^9^2t5G#w+i<{Ve1PBH3uO4L7HNE3hX21Ph{)irQ|=
zt)K=Ud~KqqBIHlXiFV|$84nF=?=Sc?WNW&&9wIXe2=jDsPcwtOQ#{F(oHH=;%xeO@
zoHn%aLL49JP@)?}G{{950qqe*6-|i@(I?ZpPdVn&GZINR;pEZ8O@S=ZK<~6X@JNF+
z{jt*~6J4~+*}k+=Of@3{Z%C1dE!Nm$kxf?FWiKKLC6qjPO228F`PGB6npup^MuSLX
z+C+Z%t{EvR!dBZev-E&Ga<QaVKWj%J(xWy#2;w*W67dWoP_~1}-f#7d*4=ma?H3|*
zsqoiZe8atHu)?-O%!3jFnO2d2JvaihW-e}KM9u;x0W`c$(NB^8HA(0L75z#{*q|WN
z>MsRS1j&dBQl=FpD@TVjsJPfF)(;dWOhHXrcYpmCUyMD7q7-~nZPDO|5cc=pX7aV}
z>1;z|G@@?5ZMe=z2d=iup!*{lwIa7h<qsBhY_#dE6Y=n9YJbIJ<^I-`sqMG5*3WIY
z3!+!xsM!`Aa1tHd8kC;9RGDR${Z<@qr!5~4qCgrK8uEIt&N^_c;RKuE(NXF8p?D{P
zS?HN-jtEV>=q^2GP+-?;Z&3P%X!h0R^;-5fB{Cgru^*yWX{<5UTj<`M=i6$4A2J?X
z)Kwpw_RLY82=i<gk4^GsTBf!0{yzUc^@m76d+4G^uiJP3;x|A4@q<mtmh#F;H@^wT
z)7Q4_)$4Y-GYIR77doafi-8Sv-~%BTL5Mi(Sti-Y=QcuuBM^=WiNFX3FVaB?c4UJT
zS>QuT=#dk?j3OE&T(LBWIF-mSBOrX43{yZui)gR}9YH|~Jp#mt{Gf+asfY~?BE*NV
z<|8gl)(>CEo-}QQh#m>T3i&ccDK6`W6!`%bgFwSBPGpQ7`65M>_>d|}#EBANq6&3r
zku^pnhZMQu2r<$|5=OCJV8mj^_^3ySywM|N<cJ~tMZ+_?5s6T&$Q(Jc$l^V+h!T<H
zAdxsjkfafho%G}<LHR%mRxl-@H03E#nMzfzl9jFhbmc2y8B1Btl9si!<t=fUOI_|#
zS);5VFM%0MVGfg+#WdzIk(o?oE|ZzfbmlV|=*wq8lbY4E<~6aIO>J(Io89#0H^FI2
zX+kTU<uvCx(V0$lu9KbZbmu#ZInI;7lb-do=RNV6Pkru_pZ#>DJT2%?few_Q1vThF
z5t>ki<`SSKS?EI{8c~T(l%f^2XgeEP%8PE4qaF3=M?o4=ks2$btE56Dk#*9MZbVU;
z<Om<|K&+M`^9Xx54HGB=(}Kt$N66HvvVLk2o?@h?H}z&vnKjgjC{-d%ZDmpUfYW0^
zRjM69sy46skgW2Psw<^uNegm>JS5@|JBt(l9ukoU#2o<;`%5AqMv;iSOoTl9LjhXV
zN|7drP9k+h;aJOx!bA*~uyWl9Tit4-!VXr86G7`@(<D~1nl&Scl}Hr)5Qw~*QaHvM
zg|$A?*^fvzun&1`VW%jCM1bNCjg`m|7CYFvx=ImzSj5y;C#FD{A|z~$>ue38TGpoN
zw1iFVYFlgC*t*sOpFJ3Ir-)h2#?iSMi>+Zv#9NEZq_(%6D`_bk*0z%H4~oD8^4^+Q
zj0iWm?7=H_tp(nQ9HG4D{m^oGq+N;ZmLmME$X(MKHTgnhz*@ntbvR~Qg8_K6D1<9^
z@seQgMr5yltgZun3*pK>7`PeZuwME9Dv=9EWW)@Pnu+fVS@#C`knc?~Y6(2v*UC7F
z*PU&KJKQu0<JPO{1nW#h@dwN_g)gEg1t3f@3XBCIXpLfsDDuFsJ@mH}>@hNumCQz*
zF*guZE>Mt%oJ2*8dCWM=aq*fQ5k-(95N&QVb0M;3H^2GILf*><(+m+naO^jxa47^u
zORN!xwi$m;N;ANGXAj7E&S~1SAow7PQ^YZ>WG?g6P~b6x@WHj!^{+>s9OY(A`5}*v
z^rVf#=0=ygJg4>$qutEh5t~}l9@_Jmo8jk*RQCv$UUR=bO-4-@gww7{G?D9-XN}AR
z6n?l(Rg<kBxmkqPs4nu6lWgJtUjf<9$Y!>)PXTRM(>c5S)o(<C9T5~<Iok+6w!6D6
z6;;QYJ;U}uu_eRqEH4Dnq9%2m?2Ye(Y<bt9T~?^2tPzBd`XLMdH~R=qkwND+PWr~!
zy0N|Qf{Z&55yCi@|Hu=I%X`ipf0?pRE^Pw)+RXfha>DCfBZ2pLoh9wbTq_2-K#Za&
zC?JIg4I&Ca%%oAE7zM4G5yip8lvX^K%+Dp_2mQEq>2WFr&I>(}M4a0qLMJ*}rhO4n
zO#9|YH*`U~4kekurYfAxda)+nkw9;x>^yqA2gXj3r_43H8QFS-;e0^da(yF4M>>o4
zzL1CH9bJ51eAr3+tHc-o#H>+ZJ4*_#b^WHBJL$4I)*+X6$VWsrVj_VkkP`Hvs~sbg
z_kdY<-gBr+TugN*(c4SkCDcEDBAllc;eTI|*gqZUgaUn%j*oW8&!n-#_j&PKbacC4
z&hrtGdi5a^_hcD<`WfN=?OF8wioNjqaMpfvf93qy^T_GX=Y8+nzy6D;ANq`!i0IL>
z`qBU0Qql)Mf&-7{&Iznarx{%4VK(jV;wB<aVQpr@hW_9bSOfuyO#xr80kO|GB#=F-
z#{k{vXEuUfN?~m{VgxCo0M)A^3`eU_K_em~1+<88UMK~c0E0ve+SsEBT<Zv=>ipcO
z20!HOa4=4o;KVxrkaA3LB4~zKQUC-CLQ*Dz2NPrP3L*$x3k7tL0Uhw}mT)4HP$Ife
zBEB#Rd+=An&?5Mt1qrMSKX7gQ%L=gsaZpfmBmxDB5F(%;U1nkkR}c%e=nOk>XZXMZ
zr4aq%<OmBQ4<lp`4Pp!*;ti(=5;sS?;4lyq5OU^_FA%XH9C3c4h63;H?i#Q_J_iaV
zq6siiiwbej{E&>YunzA~G`0|g5Xl2Z(N!Sl7Ih4RP;n4dkquD@7(sCmduAB#t`n<}
zFfNfNV)12^u>v6n8MTKFslo|$@d3$((gd)az=|jK!Z!HL2@9uD62brez{|Xm1i_K=
z^n(ORfE1|z;CIsTzZ5M2(F-H!1r?aCg&IpAGa}QFEjHk61q}iaPQ@a2D+o5m6rjK$
zjsqf~Bn7->Wln)|go6)C1{G!t1@>%ZMj=g@U}H`p3Vd*hCbAhS(n5j&BeUhkVx}2B
z@&xb9AB%^_rX=tNQEY5N5I_SD@ZfVoQa?u0(@fzAaE5%$iX*cHCex%G9TFWSCMWjM
zUu?2)rt&L9k|f0>Dyi)tgAygRQX+El_l%Ndc4jAg@+W07AU%Lyj^HI@l0P1z1nRLZ
z8$~HSGD5ggtB8alK=3Pv(%|@FFK%KkXYwk^@+c`IG0l=Ok#f`evK@tuEeDgxXp+M4
zfG6|+z$YPR9bZo}3&JUl10B(FGu0B};?eT}Gc5U{BbkytTr)1i3ND+{9MLgxvLz5$
zL^M6%93O%=eG@h1QC+g~!dA1oJku{xBRN5{EfJI0A`=APa$01QIYIC;DS{vgG8B;q
zI7u@z)AH=Lv75S)YMMc+0s-iHqPzlu8W#c;>gFlf1tJC!W70E8*z+O$KoJC{vFfv2
z&Ql^x0s1t8UT8wd6hXZ(qr(n#6cQ9bad1Ji6Y`#73Nj)PP+=6JAO)Nt;vSMX(gPHV
z(gS{A5VPVY2CE62KrzI|=%OMBK%o?h2n9?*5rTjOqF^)xQzAq(DoXSjQ8W=$ltm5y
zLJ$I>2$4V$PGN<lAV3SEK_9e0jzA6uOF^r$AO_U5VieIp0TgzIMr{;Fb(BXkbVHp6
z6#~XZ>m^1jsR`f{1>{posWcJX3QG5f`R24v0|7zpszz@#N3TT3rnE}+t{E(pFZ@(Y
z0~I2&lvc_#1<q7o@L)?tp-cO&Aexj98^uVGR7v$^CNM@E?J^?N6h>v#RR)z#A5lF^
zAwMM}Q2}*FGu2f>b#3hQ5g#>D$y7rjwG_~FSIyK{_2oVZ#Z@C>RwV*iJ>XWgf>JG&
zR#??o-84SOrCFb*QoR%+_On0Z1Xjm1HDc0KE2&i3v`CK>1(I}0-;-MB(^3BafC*Zo
zM%NWit94%ER6qGs9>Mfazja>~RREtrV86GbRT0{gL;`kTmvv7abbp9-Jq6ZWJ5^l?
z7C#&INf9<m-E$fvqEYR&UTwr#vvoXcj+6pwiAtgPnr-8d!XPh}9rfc-r{olR>SPx!
zWlzOThhsRq1ZFED1xog^u2cm#B-2j852#?z4AxR`OK6GKXsM!S3+Bv5l}GajYSHZ(
z>ji6!qZuGlGejmwcIGAwmLXi`DIli_U8WDL%~5uAO6=|REF^3_@B=B6XNym1i<Tw~
zLJqLT6f%qTqy}ndqQgwlAkfxBZbG-LmLbH1Z093xS=LY=LT|UOZ_~qWnRci4|CVwA
zZfNh;U<=nm#6)uWwqlBIY9Hcr`NQA>_Yo7<Y`SM>ofc#1XfLV`bN%3A88<HCR&+Ht
zHEwriJwRnW0Cm;YjbgWUJwR`N*K+aJ?#|M6E9Q9-S9*OHWrO!1=OcCpDR!CnXb*=}
ze|IW`_i<hJbs@rLxwRmO_i&%^?##A*%hquRNzwcga-EStn7|1dZd%Hhe9spZZZ=)k
z*L4S2Ok`Gkk>r4Bb}%{ja$6*P7g%nq7kGuYdxhtMJFmm)w|~DEWHCx)9cqb4K@?bo
z6mFLfOu;iea{&hl6hvVUP=OS*Xzo0~gzqhd?+q^Ak?C-jXG~~>qbLz>|1$(Pgaq<H
zMtE$2j2MYKY-UK<jeyp%1R+Dkvtl435l$g%w-#yn0EBL$szj!10s(tT!GL3@OI-IN
z_@#>@;)_3HfRcv<;{u2e;)pHeE;s`eBI72s=#PXr4oUTlV*`4%7I=7sjDIBsTo{IB
z*dX$FkF#Wn@3<fynLl7dlKJB<KtYg2MocQ%QKl#}sn}9DIgJhCk6AbS<YjQ_h>lk_
zKGvoWu!ahD3l)Ahc{XH>A)<^axj!HoHf$J$RTwTdnSD%oj-QxtXStSt7n2?3F09y)
zZ%>u&j+$%ugmHL<kvWQ-m_?lVCT5G3ula_Dc|I07hNnoJces5c|D>2dL$?t5kau})
zQDJQq`GwKhk?F^c&bg7z8K3<*Hb{Yo)5V?9*o=)?OoBO^;bNi7IX3J#lMBM3b2vLu
zgQC~*n|Vw-!w!{~sGrk$pFP;eKv<)m&gqOouAUJP_!DD$0_aje5q|X{O2K;<O{KGf
zrPY@df}p3t8NF)y1W5s<y>av=^dg4#Ba)guhFTk6`5>kOBT57!WVt9l)MwH|BK1QQ
zsDMT0?q^<-T7XU$pLA^pX<@k9s};}*@nGkCLL7aLs3&5n15IR}Qzqp`oXL7wbt{V>
zf+x|gY*-bhWm;12&aNqft`8eI68m@e+I8!iu}LqgZBdSo|2flg*{_SVklR;`ntEF%
z#jW#)1o7ZD5@9gpIBJ7Vu=xXW5c{TQBBxvWu|X@Yqo%Y^;j~57AeMTn|GJQUd$Uyq
zA^;n<SGuL+<g?XHxf?qh)eNT#LZ=CZuxGlnBccy@+Naf`VQ4$B2L|ZE`dds(w14KM
z<D#(h>ja%Prf1r`RRX<-H@ovA3b@;{#iYB9Tede2x`P+F88CeLTe^dTyir3D0^Gkv
z<Ca+%gX=A5*BidAd!$1agyUos<hnOY;S}~!5qe6s`J<{bjRdE_Ngv`IHQXphq+|w0
zvprzMhmbEUT!x<F#qrUoMFGJz;>Ot{#y?^^KQrWp|68k?p@*(|kT>K9@E|QjAuzrg
zH5~K^pghWZ#uPy7nB^$R5sk^$8Z~}E6ifjRu%Zb}fk04z$GfhjbC(l4ydq{CkQueg
z`&!S`@X4bb%6rC*2h(U2uvIBS#|7qd_<SP#oXR0`arb=9e;iBUe132+xT9MQBV66g
zoWZ;N%fo!kg)On#gwE@{XVTmQ0^P(nd_)MHIIN}2FI?T^w=P=R(SuhFT^$f$oyA{$
zG*5ivas<`oaMJtSzr|V9QT)RJjs*3(Z2Y>^eMU?;UCI+f5$fE|3!>7&ya~iyGw@t8
zeg;D+;@U%8*z>#~RNP&TebGGt*~{A2M;+aR|6R~q8rX3?+P!?*t6kmSo!y_>!^s8*
zx!noHS;D!oq#48%qGrU4j|9#Imm%U0Ae|H81;<+)YrEuJjsOWL9tj4~@>a*;$3);M
zB1XHysLg#N%zY6!zQ;$8JT7%}IJ+POLA#`Gf2Zv!P@~CtWQg<RAe+#v3w7qVTm#|c
z6bOXmwXxKXU}{d`;ndjXBb`BTo{;Mz^}38A6doduEUb(k=^ujVubv`GeG!^oOp1QC
zj-IZb(d(D!m_1(QpWeA8Lg=Ho#M9Omr;Yh8HtM5r>mR=0&&BK;*IL|uyE0JGt9kLD
ze&zA5@Yg=?58~iG;O`^C@higI#hKt2|KDY%o~EruoF~5GFCI4dUUzj%>1$r<;~waZ
zW8pzvO!#;rF251Qr1cp-tSa8()xz_?eoSs(@gv@4D1Z04UQBvFHqIpie_k_!-{4cQ
z+zpPSCnD`j9QCW-eEod@0bXD(wG@yWKwhX#ZenMOejjI|A;mEJZ)JGWB>d4O<pm<O
z3$%z6g5Ls?1V9KOScD;n>?u+{He8BcW=ra{5g-CJi{hbRkW+vPQfbztpa(w9`V>q-
z#i0ih5ewpJ7Q|vRJ_-j~B;jxmLx+8uCA7%WA;pmyJ#6gg@MFPIqAV_y7_wnY5`IV)
zY|>1Q!%?6d5+yj2X3HNoTY6ZC|DvTypB_@K6v)&AQIJzbIut7NWWgiN@ElD#R4h=k
zM2+5L>(y;gr9}%~MX7Qv-mYCe_-R(v!`^~gEkXrrkt<%tVGFZdh*hcwR6LL7bhuM0
z3Q}|}VxBCvAXyJc|2izC$RQq6LJw!{+taee&vf77mFu`I*xq%2m;SoCwMN*S&9<a0
zRd-vtAthU6?HYMmtZ3CHmo9bTk&?<2hYd`2A$iR@V{XKr)?hQ^6NRpKm|dgt`pcVr
z*BhR;Z1EmYcN|#)%4D5$bwO9)YeM0aUS<m(c-M0+jb@pJEG^d3d}p<{ooyh7DB_4D
zmT2OMD5j|5iY&J1B1`hn|0Cm!G}7Zi3a2O%#g02-6-6_FG_etMqGeVP3Z<Ar#Sv4K
zQi^1XY$nx@K@Mq|cNRry8IC&g7)50pA+aKc1u=07C{6?+g(;-8BuZ&zo|)#FZBCS<
zmtV5<W?(Fl=>ZeX2=e70F^MQpDN9B{3Mwfa>0}cr;4w-}CIu2j5K$<ipM6ew5S0g@
zoFYdGK~QnZek7QpWD|Ulg3ySSUYhBqWpx@Ap?IJW#6~f3iKkCyqNygE7E#%RqM;SE
zr&M8HN!U-SQo*XLTb)vh98FN6Dp{e9TI#8eD#@gik{OGvL&45TtV8C4hOV5$)_GC1
z)4p0zyL166XcL5H|CZ{it=em!m@EZiEw<WP7hOxfdRbXPe&VVtubC~v$FZUA*Qb#M
zbxW$L8sl3mkV58V8odFp)G&`&S&T8baSBVPLk3@)?Y0Hgj4;j~=zO!n##(7-mn;wc
zYs~7(yKqZEo9qFS;x_qYdferw@xRih?2yObYRomr1xdVXGciHEq|}ma1j?7M{Sofj
z<i0)b)K-s$GPNfIjQ71H3(a?xPNy61$bds9HpT4r9XPx*SIBXZ%r-;tZArpS_tGzB
zuKDJickcP;ptlrbjWvcv_UW`0v}QA?R3w$39t4rd>52S+ZZlGVxO(fhVOb{b&Z18C
zN;fHuBJ4qE|4Mcujj{v^oCYc14D-nepL)m8L(WnZrI3wE9wi!l1Sw>bqOk`@O!{65
z&A6=)`DBZN)l42SMnWH`kd3HCLA==vC@CO?AV@?7_%%a*uHi`iOd}Aofr1I90LwzG
zN4(_Gu6gY0-t?;WJU$h#ch71`{~Q>=0ru=-8U#hB?w7x2?9U;xqn+)FrNKl<$AZhl
z;Js>iL+McuhW-Pf0BN{9>2S|`;NxEqOK6c%7%yiibYQ0<lOGB?jwK{$;Qt`V7(BEP
z6qDQ7Pw=Nd*JZGXEZLnI4YI@`nofAc^P&U87&{+gFc4AvpHuMIgcR;Ek19-~DOk70
z3BoZX|5l9N1xZsi)eVw&{F~kKX80ix`HqbwbmK+H=)yI!u#98T;sYZHLrG4Lk~{R?
zAIK8JNk&qJ&N|-+|Hnj3(o&NiP-9DU$v-;^l8_@2B^NEiOBnj{iWhnuYMy8iQ`U}=
zp^K(8r%BCfS`$R0Bi)QlG{q8;;0UMrQzAyx%@8qRoYyQ7IBlcDmaH>H?JN<gPGm5H
zl=DW7G|dr8prRn;GX?n+(Kq>dA{4wcMF)KfL8TJU7XcJRKWL~y^7+khDrTYXw5UUV
zfKiqt)FKbH4M(?hPkgQ@qSiF1MhzlSat3symMLjSQ51xhqHm=hK&fSPDixlJ@N*w6
z|4~UR+PRrZ#h<o8YD-jV8=_jqpq6p!Pl7rkqq4-REGcR1Ktxr8JhiJ{wGCK5C)ISC
z^{i-3t6FW7O>Np}t#FO2Tv=4lx!U!vc+IO`_sZA4`t`4X4Xj`XOW491mUC^@=3y7h
zSj*J4v5<|dWG746%3Aian9ZzaH_KUzB$jlY4Q*QGKs?c!_Oz%?t!h`x+Sa=EwV3^E
z>0nFS+S>NExXrC@cgx$}`Zlt%rO|JPOWfib_qfPSu5y>lT)YN%o6U``bf-(*>RR`@
z*v;->pDQEndiT5F4X=2|OWyMGmb-5?uX@+Z-uAlpz3`21=FmG=Ds(h+_LZ-R|M;a<
z6Y)ViEaER=kFbYC@PP@Q`>$UKY+wWvRu1mt9E3eL;TAFYz_w9viZq<L3p-e@8m=&j
zINVtg^VY-qP4P78dzL&T;tvmd8XgjnhejR&5No6lAV!f04_X9JYed0}Yiye){7@=D
zw#X4&3}YoH;>l3%v59V+W0^$x$>#&njIVsYCBHbvA@XvQSt4W_2eg{>d(kLLtD-a`
zl*td<a+I?yg+zej4_Ow`j}*a&MTkYtP|h=n)+`kx+f*u4M)V&Pfd^FH%MXDdGSlAE
zXE-I=or`X?ldmjg5*;Daj`lzlAT8;fnZm+2F4(Cpa|BLz`q7b=P9Rn-|5i{>iPC=d
zF>2UcB0_uG)|2LQu0_;pP6tNJF)nkdE#vE1o5<H^0k%4K{A&70o7k>CHnlzYX-1>c
z*&rHqteHmYGb4K2MLzOb(7nBK7j(#t+;gRw0%$BN`P#+4^0BWSZEtT{-zsJ<i+?1F
zKTL{9C=f*{0AY$z=r9Nkd>m0kk%#B)!8U;?#cdSMaECXCe1guI#uHcYgVRS5C`UQ@
zbS=V&w?q-72!zaK9`cvReCB}&*#QmiG(GR!<PJ&r!W({QX}Y;Z&|cBeO+;{>6A9)x
z&$&ea5hy;0;uPk-P5T_ehy6eu=QR&e(oF+$p}Kr~|MP>ZKI{Ri|D(JarkElMwqB5~
z8|3UG1BKd8@!=z+T;<ub%#ZZG_Nl)|Q*oymt!avPQ;YTQFfWbU5x>X9Pnz(2Co|n2
z67sS4n%9C)d*QVnVY`PJ@+&8~(>FeJkK3l%mKQtm2ETW<hiKvzZ^p$Fhk4sS{_m-8
z3&ky-_u4BSM3aYmr;?v|65*csKPfw2hOc|WzrFb*5_-qmIrq|g{pK^*dGAjS{L;{V
z^n4rtSx_JNfD@O#Na~6}_Be{Fd<LD$0>qCV2Z~Y9tQi^=1Rjzz_4hQSfPWS-7_=fn
z0~mk*cTb5Bd$u78`d26pAqvVgA{h8or67L_Bq9!&GauM9{{?t|YPEDL;&~{7g4x%B
z4|stYI37yDbPH$^8>nWyrhs9mCl$yssj?CzAPQ0<YWu+@XeVeCxPMq=3P31?wh@6O
z@`I+~gzQp;IdXg|l7tr6GZJVSP*{aSgN4n(gi|<#qE>^i2YMr-g3!{0X80pJC?a3@
zG%hHD^k;tu2qLieY(Pkc7eR$1(trOa6jJzyW>_L~2rB+3f`sUYK`15QCU{l|A4C|2
zBqE56*b+Ku5t!IB00@RRa)l%k2ql<@BZGt)Scs4KgtVrLfar>c=n#qMe#gaPH`ENS
zBY;=|5#0nkr@$CLQcizx3aq3YyvPzw@QY~Z5W{#H|F>9WH}WYZ0z0Ju875MVw(*Q4
zqK&a*j3XE#LXiS_7ETtG0!=VQY36%J(gY!Q1P;cATXK#pk&aKr1XaV00b-37flDVs
z6;gqXAc6w+$ZGG%X2}Q<c_xqn<tI?EfIp&+4}l8MWE%|Wkj<cu?4yq;z>X}@kU9sE
zd?1mI7ds)RkQB)=;1&d7mysDJl3ZvIS>}<6!*>2ikT=0*CW&YTNoE{r5i-d)G#Nr)
z1tKgNbo_&h?y-yCh(0^{k|b%9yH*fCd4{&Pk$Luui9-`p`H)MslG2Eke4~{X>0l|j
zgCW_HOEr)z0hVVtMF&}fY#EG}ah7DJmN4Xv|D95kECG-$v6UCeP@m$L4knm@sgF++
zhqU-wET(yK(JFW$jS%xViLi(s@CPHOd640lZ6S>$KnhfFNm^%^LDzF!*9@U1BCvxB
z02Wn(rkdMGn%@M1CZm~k0hx{!cj{vbP{54Mz!HU$0<)7pr(i}i!3U?nI)Q-#RF^-a
za6U|+KBo``@OV|h*$l&(KtW)f$f;!h(+tg-jZWj5N7a5~k!M082+fcOcz_3;BA$rW
zo!^Nr&?%jz)tR4JgGT_Lt;sPPVG$)jnhpU7ba9^Pxt`_ZC;jOV|4AgJiAu`JI^L-<
z30e>fY8e8mc;ll#m64yP6Q5$#7^aY+|1Jb(4`G_NaiOLrqNOlDy{VukL!j!(o<BC9
z(8i%;<Dq{-qr~%|%qgKQN}(@`2k052Q*=bE69^gw5vO@1vnek`@hQ(qHqi-tDq0y)
zYMu0HAO7hyJQ|@EF`3MGnG@;(6?#TTnxrNwi<D`Z3AClW5u)(3q9>XxQx_UG>ZNKL
zrdZ^epb4g7bD1rHqGzF>T<4@@0~Ro9prWyw7BQw}$`VT2rY<TMjtZb9>S#ua3P_rm
zy0w_Z^p`z@PDrw7fq+aF(FCYqLkp2REddca6bPbP3Z$BVtpS>)X;V@Fsw`m&2sn+8
z10)8g2+%kw9t5nTAgsEht2aTO|EdG3u<9tYYAC2M3Q>>(P9S}R;+vTP3L%<P5aAOW
z@nlWl1fzfol+=IU5d@%63Iv4$rl1HxKmt*43IY=%-1;3q@U8YCuH<U24j~AEV2?<k
z2&W)Xx%y$oimZuq1ak0X!wNlku&xIL3ZPIK37ca8E3gFHJnjmw@=C9z<p;G|gBgng
z16#1B$~QV>n_)2pt|76aK(S!vCqJ^XhRLhW^PTF-t}44g`QfrTGp*IiJ&f|N0c)}w
zo3cG4v?)Ne4TZDL0<=p@txa1BMSF%es}V3OvqAT+@j9;pQ?e(^v0nSJ0)wuxv#tbH
zvpyTK-4nAF+o<is1f}w>|55?9mT|B-6RXkMv0n?aK})qxdn9EGwkyH5HNhBYyR!?0
zs;UY+J)5`*^apgSEtKdGcsmrSiUO;eI9WTjLu<7SwGdKE8l@|?NvpY!%c>3`vSD#P
zj?1}_`?D5-x+oi}(5eWfDid29w>1$6!Ma9>TM#Upxx?!zU~#;~+p8NvxpjNFoJw1s
zIuWISe|lFCS|X?p0XwzX45d33rx0Ns;|JKA6M~AW9bu~%5xzuOy|>14AmS%;cM5($
z1yr}YoCrPhTfg_aCGP7y%$frK3o7L60ohBZQXvpnA%N(VtscP>7$LqaioZnRIt$?x
z?BhCpfOQF^hFG+D|6Y+m6pWOB$)MDWfBS2{K;jT`Fg>OKX<G;?fv1<FNxv$LzYJqC
z8=N+&gTAlJP5|mB0tjF&T)<m1NFGGPN;||X+zdvXIDv7&E<wUfTo6U<JV@La%0U!r
z$UY|QCkl)gy!InL#;tG?#%-|@RqO#*TuBzO!yUXOI?TcLu@X`|5mY>YZHzg0X(UYG
z1e3;c0&Kkne87l7$7Qh<TTB~pT*vM~#7-O%7)-*O>Agn@$ptKcehkQH=Rr?u$#;p#
zB8U}SjKzUx#_;RKr+PZy>%+GC$=};CSq#K-alHm?zM-MSPh*|@yTXs$#81pOfw9JI
zOw5to$w#@#|Iv$E(;GmdKo+DxzI<Q`jY6B-`#3283Zk$Fs9-)DvXs&M5Y+q-b<&yI
zp}s6Q5v1_UQjrLNY9f9@0(s!09u!aVOwSCn&KhM?&J4}cJkHjPaX(rRiEs*GGti#0
ztsl`%8}VTnkwk%zETpg!pkP9#aXldNJbb{=y86%*sgM0U7W14yOpyowBOl8sQM!E3
zB>mAHW6>8u8|EAmVTTI(2s<f}2vjg@s1VFTI;~Tr%i8nC)3ej2(9<p9&IKdU#FNuT
zjns`Q2tfUREa5~h{h?IdL{FsD%p%pJutx}O)re8lJpIJFT+uM$!8ZNUX`M4n%@;ad
z)>P9H|0bPvT+LAW>=5BR&DC5dXgwCRArMvV*D#F{O-<HEUBD5|5)<tb+RV+~4A)Ox
zz;!K$?|dVV-OcCY)N<{KgFTO4&CsD8zl@R1+pO7RK?>(wgQgAHdG^y^P1*&q*8r_F
zD?QTo(G{GX*hziayA9Q|5!bxU5_eq?mA%a8<yO#jB&1M)4xtD=W)^?|z4H6NDWC{f
zyBau*z0vIx(~TIU5Cr1A5mDf1rLf(%(cFzRcQF_u+`E>+Tq5*KX6lV1pW)ox{UhED
zy$Nj4L|qjQToaiAobf{iWN~y+(VeJ+PHaiM9!#ADe&F9Ijd(zcNdlSoZEo{jD}c?Y
z|CS__AhO{aVc~-W77gwxE71qxJ>CO>N)<i|7k<;qga@vY2m)xBB%md8eUi*l<2SB(
z9HZd0)2KeqvN;Zk{{625{o*mMw2xH~=n3Q?a^y6V<WRokMGhIdeB#%`<RxAZT)q-Q
zzC1*J3N|i{x*Un%nSmLeCEZ;R-|Ycmo-<bN0Z}gJ*4X7)t}NCwJ&uA-*PY!mvFA=1
zkXwi(fR5cdMB`@u<2_U7caB9m{u7fv;xPW@beQN@tK#B4Hs$^26QStMQRy;4;!y$J
z`VHrlDAX+>;)CAk7#_o~e&&$D=(H~7Ad1|*wU{U{3i$n}rvPAzAij|~kGeW{|Bx{S
z$_nhl?mow9Jyx#l5ZUX$o*od1n(eJD{H=kMNbOm-RKCs~mKp5NP3(?U=Mce90UpyF
z^8<MBCZbRn2o4s<dIa`<?=<0uHSyq2@$LsC?-LFdKOhRGfCpdF1g2ml-Yz1dU>tW`
z5VBe#tga`<G4KU{@CjcK`tIOh-sk>p@dn=n2>&?mJ(|#17dkZYmyzvrmtzZId-Z<r
z_I^(-Zy7|<JWt+sA_?*sPx2^P=YZgnA#v?(f%8Bw^jcR)Ag=LjMjJdY@)_>|8;{~Q
zp$IZR^G`*|R8%lX-yO?-B;n2y<KFB{@0-=a5<y?~9-)Rcj~Z5g^)%7Y|D!3IZ663-
zpC7g-_e@InB%JeUUuexBQ8!-@Pe1bZ@nOi`@z8$wb8qv3Pxu5M@`hiTr9kf3E50g!
zf!p5p$wBnHeDa(>^jxp&$*tV!wFstAHOh{EBmhZ69X3e6a81PDt3MWybOcC{`$zy0
zQE)!TY8$8@Q0qD-*)H|`ZW|jP{3)XREK&QW;rbvV*tNTAgR#mPxDa45?;;2Mp}{`K
z@AcUq@L_|<a&9EdA0mE;7J+dJyEh`4ulB<z9jCw(i_rbFf&048`}-097BT-y3lJUz
z4vf<5$UuZ1m^5pGkV-QY2@|5~BQasYg9t&Dk{F1iMT;0gE^O!_|4_4pqC^S&b1LG%
zQxzx59C$M2N{t^u3M47eCPI}UMGk!U65%3H2valz#L^|gm;#Y1W$IJsPJ#v<LX?O{
zE7px57nw3Ta7wd814*EwA~os2rA<wu1d4Mi+^QkJdffR3Rl-toB@XqPac9_segO-<
zxR>t0pcZ>dX6UqRR1b;~1{Qb($!8>dnnlT|c_3%XC0kyWc{Z)UwQY%V#VXJgV}wHo
zBF3t_v0;I{2Ntef-1u?i$(1i>-rV_f=+UKnkVnt@b?o#6J}fD*l%nCLNJylZ&};W2
z&G2M}0`hzK@e&^bFWBB9_nkkQ@o`=rAqhX?^Pq`l<Vc8w{~#m+P(T6=+^({n5WEjU
z@4yoX5AlpUDT;xDI7Ke}1QJcA6l8;~8JWCFaG?Dj<WQ}F_MotjylN})KNK%)W<`No
z^k5X69;7M60|OkW!GT73YrxSC<T0V56f{yGB!3LjgNJ02u{#=Zd(bc-x1wnv|3E^4
zlqEfQQ6N8Pd$26>#+2yHG(FIdKPa1o(IPr?L#WM{HaybDFlUp~gED>6lSw=Ux-+Cd
zX%m!69~0_xD>yyaa-c2+DpW{;HWjE-EEn}aKugigGt(fNu~48CP<>QB3ITf+!}vt?
zfYeDD4RyvE5xTV0HBTLm!t~agQ&oXlebs|l5t<dD|MLb)mQQBqT9d#=iv^URNMHK2
z)D)3bZ$iVW?d)8Eyrpg2EKj>N!`U)ja8L(Rt#ev4v(+~tew%ewDO9I3_+W$+R(N5C
zrK>Kx?4UhGktiyzxVwS^X~L^~5lYkp6iP9LiX)~dr4*wSxw0{hIR<Gygj5D8g^4Y`
znA&EL=ub{2P65S<Afzyb6p2JJRUw~&7Mf^SYqq&Nfs8IzVv3*6s^tQYJE;_sqaX#9
z6a)&nlqOQZW0V{<Z6=T?f`~$quT(^+QczBjBZVNSI3*(zOc}WeK1lh{I2qY?8}5wc
zW)aUn)I%W%uhOQuYKu$i`RAaA&TZ``yspy&|EVX;^m3&&XUTEMn@PLxzXKnfR>K;{
z<MGH3{n&#=_~^WD!xj=GiY6MDGs>NA&wcm3&CA)My6?_Ad8u@dg7<-Z2VVG^PANr>
zCaCZ`KG|tk-F7(x(Vlzn>D5u^gscxfZIjOL{`-NBpC0;p74(}5zy+5p{M4;(fBk!%
z2bzaBy&1-S)WeiTyaEc~VdxJyW1mu-R=KNfENieCpzGvfzU|GAUaaGv2kR$21_sA&
z2!vk9Mpm+u8D)X^^S}cmXo?9QtAYb@A<0aJvJ)cDFd#%9{S?xS-@T6}?!(^cW*0!2
z^bm$XgdGn>=EE5B1c}#!9{_8YL6<eK|9wfz9MhsFMCI);i1!1|41rU_<#nYQ5Zo9J
z8+J!L=24G(<fB9$2C?guN_B$_me88P7LeR72#FYEB7RW4W=H`mhD7AczH&rKPKc1I
zW6UVb$Q(t&O?8O~TS7o_G!FzplxQiXAUBDdQ%>z6n=GU$4r!v|nC}RrP#r0Na|E=x
zYAHFy5-(LJitZ?`M~xyuA5ft>t|24{Mw?>_NFj*hP{EkZK<2TY<RcQCM0KEGf+_Gc
z%U5=2m885#DMp#8Sc=Xfs%&H{!#PNDnzKXH1cf!RSw+~0bB^U~6qyc%hiA@FjZtvt
zA@e}1OnK~}2?d23fAq=!I1`$<|3v6G7urx%JhUddYbYpqbkA`TG)@T#1WCvFq>Bm#
zq$2f+OXv8cjw%$Q^W>*L1By?THmj%CREtKN5zXOH)S|>23`qZgDo<)ModcmHE>k(w
zf3~y<C4JH~$LZ4xDfK``MQXDcIm$;S)uT;S9V(uRkf_e{tY}GVSl2qzt-drjGi_&E
zX?iMw=Ce_YY-C;Y1RTPmb+3N?Phf*8kgD!fBJ><(D{Cm$gv7Ngm{qGzGmFv19`dby
zByDL;ds@^E<d1;V4su|M91<L%U`%*TZC+a&+NKsOvfYVgCBj?g_%=DW#ftfwMcfob
z6gEdFL34tj+~hVVw#`)z{|bQ1oa;*D2h_EQaFLT;9)edX%B_uc3+7ty!iu=i2|{{}
z^IVX$x3}xHlXuPQoFBLsD|o|7e&eg({VMmqGb3**l`G%oSXW`|jc$I@+u(WX7rqvW
z?RlG}Uj;9x!vF2>gBeWR0aIAK#@TRpK|JCPIS0iEUJi>V3t+5dShq8#agA-9oYeyI
z#yjS5kF)1vAO~5<Lnd;OjeKMzCt1l$W^$9A{N&^07-CSSvXhNlWh`e|%UkAhm%aRD
zFo#*pW45uBBSvO4_fZaBN^_gt{AM`ES<Z8&bDiz%V>4st&U@x_pZ)x2KnGgTgC=yL
z%gow98d}kdW^|(+|NUr4M_SU8URa(JO=(PLTGN~6bf-Q2X;7cm($)!esZD)qRHs_i
zt7dhYN8Q?1$6D62rgg1teQR8U<kdE&0(TGA>s%ivc=SyUACwj3C=}Q@z*f^AlntF^
zU&PtdF*a$LottOt76pIc_8;CDY;cEL+_T<wXY!DUKR``vct}JZB6<WsShX{N7)2tc
z*1l%o5(Vsb_fDF?&XMFBAxAiOx(A*JgeTnI$$_`L*{$$Id>bSWSNJaruI}Ox9Nie#
zxWQAaOz4b)%{P7sF`2Uv*@(u%(<ymER6ZS%_YviJGI@_t5Qsp)?cU?&dCz^$>2eoD
z6n{Wl$50@O|G=1H6qXHwI1fc2QRLy2d)NtIc!+dBDBZgx;HAW^vbmub-CBwuJK1@;
z^LaX5B8ngd&fV_ywYS~vfiR5FiM~PO*j?;d2|M0R3-ag0Jjjd0cyg@nftN3g@Gfu0
z%9kVfJs!S8i70%J3553AAY5UZ|9R&<|M?^DI%I1)36BCXiin)4wx9z<K@J6qQPiaI
z^JJG#P!BRvtbQPEx@1CHb?nj0p16rH1#(2udiX)+P{$F)@<CP#((lMP!B^CZs6Q8C
z-x2W6fjpOgKaj-lG5jGPx#DZT<jXVX6g8jD`a%DG_{X2d<t|IBWYendh~~AoJ4Lso
zFOilI{}B8GzyCXu{_8!22tZ+xCV`WPr6{Q5xSdjfK;)Rfov6PCEDj7bkqtbK_(*|o
zE12_2fhK?{#bE+7X#%f10u=m_@>7r|aDs>+0VaSG8B>e+KmjK3wb~#76!^giL4pEP
zKoOa}JrR}~R1nx`!T<QdOc}rPA^{-;2^RDe+&}>pJdji28zxkXDeQ|=KouVZLM@D~
zC7hEagh3fRl{6HaEL@KC<C8X2ixNPQA3QHC^g0rJEfT21KDa~q3q(O2M1?6gOWB~n
z8I(#fD2Ygf*kg&S;GsoKL`qpiuA>5&nUh7-#Ev0A!-_!LIW~|mL-G*C81uU=)Id~}
z|HMuNi9j%gAP6Q?u#e1mj2@wh6kw!hIt3F^5k5GDLn;;&0E9zohEV_xCJ3feh=T6x
z4O?o4{<EbuVW_qW1OZVA6j&wa>xe<RHxg(Zz0$;j3O~_UlOv!eV>FCBXoeKfsAWV5
zftng}T$FFbrzc59)mcW!8^&ThMuG7IV6-=243c^b$3uj`cw|6;M2jdGNNYhye<X-!
zj7B}-$7hPj|A4zV95{$H3^|~sG_lBZR0>^$MicqSP5K-{TuGK}$(=Angph(}Xu&{u
zjga{RMF@nIN{A*vg+xGshsY$xv#gpFn^M3@o!mX}$i$(Xq?xn`Q_ww7l!&z<|2jpG
zw;w^JsvL!@bjmKwO3Z_-r?d!}{7P3ug;9ut6mWvBJDr4pA5bubgZKf_C<(7XxELG-
zRH!T1JBT3I2<k!sQ&5B;Ac2M~pxtT)XWO=X6A-WX1189u!GsJYp**vB7OV&YCU}T@
z69rRHONJr~i4YCTN<6=S8bJtz8bks`IE7MLM@67KW^~OC+03IcO;msy&jd}8c?rQJ
zOv5~d0_w|D0?br0Milr+QUFQ_+07IP%_n3>-?PnPX%*B{PUb9$)LhNhET!~V%*LSt
z0U^%6ECn7!8?@WVf!IzIU`^VDmd<GgKWKtC3=V%RPwtA#xvWcAiO>10|4)|;Pyua8
zn1q#5s4Y<N1A&kkK=_>7VG`Au0t$0KjZjbzV9+J$$pm3awV=?MIZ(X_%i@s}6o5uQ
zpaNn{N{u+05<P_zP0<gP%6RH65bdrS%_RzHmDgyTx0DGIP)vkKrnMOq*?0&ZSqj<c
zgQw7u7X-gB6q^iel`&xgCx8sJ_>bgRh^bK*4@eIS?a-QgIrFJJSlOU;6bu59P=wG@
z#v6|@#ToRF&rw-YI0BIZMAGA2k84Q}4&hQSJrEDYx9U8XJw+vGLBuBonG7^iys)Yn
zl?e6hF2A!sS~=1N{85urH%c8)PVLk|EKq9_1py%i1?2-%2pdY2|0o9p1yR@oRPZG^
zf+<o(yi-Lyrr|ne;ZPl6Fj5dzi%5h>M2?RkfjmeTR1z*?HP(9zRSVNEX6>$Cbv%}`
zMGr`XQ*g_<p@~!CgV*v3Cj3#63WPc#1-Sr)e>#ySWs~BAjs6>mbtEsN$-bRnQ=q7m
zM8GJ(BTYq+%i=%<JXuG>C{a_SR{~6deSITQuvexrR~-4EaczoLX^&RnkckByg;gHn
zBG}`U*e0o1i||)<?a)RM*MuNf2lO{Xorr?s(~fx9-PjM}Vp&g}S(^1cm^_o)8;IB}
zh>`#V%tRCttx<yo8^BOeowYXz@!3%!g&=5JuZV(AECr)Y|CO9Q#BHpN2TceUZH}!K
z7E-8M<iOd85?kcBGEU(N9?e#`I4e;QPj8wVJV8f7dX09Sn{-tZcHz=j#0pV(#OBag
z4+s{-GeUuo+R@~uqlzdzI6aZ^k#)4E^E)DWL|iIj5!`sWy0zS>p`|Mwz>2L{!5u%t
z4Y)yVh|gV=#T|vl#gl?i7A}?BMoNxIy%5H=rGlDW*d3*{Jtnse(v+=P;0<0{Gei^^
z1+dMGQaFWUQv~+=7;lxtf;tPc{Db6O-W&o(TDn%V7|S^^UgdfSvz*G>5QU#*zGo@k
z<DEY5<&*U-TkR#l=1SWWk&_?51EUdzmjF3JQG_Gt|6l)Ik=uC7yB*w<X@<WFgumE{
zgnbUc9a4k{Kj}SOMIexU@k~4bo+dB_nRr~aFknGtya}G8x18FS3t+qT6#n(!{!I|i
z?bs%9U;-472qs+yG+h_wkRPyM4Ax)*Ea1Q5N)=vV**%&ZHiZkOPaYl=j055zhN=3!
z-?AVOG8JAbuHsWO#IeW}*HDW}Qq=@Z;M3@&^4((Cs3gw-jdBDIuH1<%K8#=$)~mIR
z0hS08mI~2ajyAT4JT6;m6@+zd6W?{dhrkp4#S_U(h`T7$0Y*1Gz=Jm;4v<)2=Kx&e
zWvNeE<HL=JhhU7=fQk*4&J+17$z?oE4wg!W|3{`t<U{?SH$F}qrr0Jq<(jzU@`a?*
zJx*BWkWPjPnqXu{W~o+2j!4~QfxwJ*L8U{+ib38S5w&7xe&$RoHzKhW_}Ix~iPK}N
z5BHcC3*%62o)9t(nB*ANDPfXMl#n7}5WJga1-UJDo{cGX#YOQDJIz1I!KEK9mv1^J
zQxOndA(h%d0tD=kfq{!_RLTEXFTj0Tf~JXYZqrezJ$OkQ4i4oHeqbY{kz-?Mfzc9R
zvD0FSj~32lI9d}aWe=>-*pbF%D-jcc5NNOCOe}R0l%1N19usb%m5_!Dd``ZchGw7+
zYE9d<$*~#W0i#s}T1&a2DN31@*&M8C|HUtfnWt_V%DEXG+L<xJoTVw6qamF#f{P2n
zYAc<ZqP7~UG3t0$6s|b}uOZs!BO9|p8;>@ew~3nq4BSRJpy%P64)P!4pczvD1w{Y_
zKu}X1p(6=`41_LgiC}^zh=ctAP`#uAw;_d65D=NMi133O`|zUi5r~RD6%Xc#$ewJ&
z=<H^o#mc_y%;uoh0c;g=o&<7bmiE}z_L|pT(5g0V$=02WSm}xdZOJ)>!7l8>)`%7A
z>y%(o`t%AspwE{eZaEQ7IhcY(*z4u4ZMCs$#L-&2!EOo^YVs~`LEANSA|%F$tdBjE
z#G)%m5=yePr7i|2OtK_e>Lkz_|7Z7JC*gWjb*iV?$Zu0Rn)DtdJ0<X3+8bknRci?*
zMHnWc*rsmURk$sxget46`YNK*KvD36J@5mZTtsRVt%I%&01u8$TD=kws0fd5kO;q!
zIfVp4se#fb4;XE5ec8E<VJo6>foSnTdhvbY@N;dZ48On1INcW!a@8U7`v!?q>T%m<
za=-#A96ve`7jd{@CbE*Z6ekc`DhV4Gtc$>2MW`So-zbNmaExonC$}i`o^v|4vjVj(
z=>o6ZDh_#FQ>m;m6oZ!ClGgo-Jnd~-0*eslaxUn~HjRM5K3G>_fjb+?b2!;^4@8v^
zTNn}$!6Rt&%yjev`SkYr|MThC^x%MWN$(Kyf-yb`^k&(K2~&_om-RZobzHY|L?g9a
zUvMa^LsQ)BUdIYxPY7Wjc4SX>_`7pu_lftlG9<zSD#(LT;MZoih?5WmX{UB;zjkl`
z_F!Z7W?!=^YXUzI1m?v9LRWTkNB2KacW{q)c^}?ghc!Cyfe!$*CJ=Q^Q-XQ_cYs%R
zaTjVLpoDx+m=5RwDBFW<;CG3jfB_f)1z0pRNP~dCc#NO(SIY#B?|6^@c#scykso=I
zFL{$cd6Z9im0x+5Z~2!01b2W3nV)%@uX&rld6}018Nhj-?|Gm9d7uY+au9}KD0-tm
zdZbVKG5`Po5QC(D|9Ys8da0j!s;_#hzxt|IgN)yLuD9ZicX_Z6d$AvTvM+nH2m4QG
zhoE13onL#me|xz1`Ju=9qhI=_H+o;7d%fR#zVCa!*ZQsxe8K0`uRnXkKYYYbe8n&O
zPgsYzw|RGfhBpuZ0C)pvi229Qe9iayav*xWw|l1#23TN#TJU?*KYi5i`&Jly)^Gh!
zt@pz>f=gI@k(YgruYwV%1jWaMDwutb$9>%=d)pUz9uNZBKl#Sr{ADlz05AaOXMO`<
zhRuKbWq1Q{n0}luhhg}9rg!>TC;$LpfLus@@-Kh$NBY%wef3}epDX;b&jJ82g5&>q
z_?Q1o*Z~0W|9!+a0szQ?j|Yey04`-JXz(Dyga@+#Fru*Ff)NiVQmk0f(>iz>H*)N_
zk(o7kjR4Sq=1ztTchG78a0Jg9GmkQ7()6eYfV!GGca|F#>?hEmLVuP406+|`0!9He
z*fsPi)TmOYQmtzBs?=5<wsP(2^()x0V#ks#YxXSKv})I~ZR_?e+_-Y*(yeRvF5bL)
z_ww!Q_b=eUg3HRIXZSE;dKMQS)NlY3<H!~rL(U|Spk&FDE?hx)IrBrx6C;8yy|`1x
zog60skO5$gJB=tcx?2Na27n2wchkI?lQ(dUJ+T%&>dV&{0B3vw!|L2B3l`6(Q<v&$
zF!t=)|F?7R?)^LX@Z!glFK_<*+ro(xn|?S6fROg4-^VZbSw86d^666~jsL$vr~wC#
zZ2%w=8$7eY;|?N5tpQGO5yIn}gut2OlU2ou@e>&Us8St>LlwY9h}7{iOD`b4f*y-4
zy7(fDG0He2jWybM<6P>kcNk-qSYpu#0bq7eC0I<75GIvflEsijN<vYPL+Y1FlLc9l
z#g7LiSr8_XRAvw+mx%eLeFGg-WhPx#0;P}%Ns<Lb5}k>~lUh<)=aOWm8OfUM3CLS0
z0KAZ!GYQH7k29<d8cKyTsT0jJ>A=HIHRDW(6Gy*gN=-J6!gFDUMr{~OhaXM_40FBI
z|I%D9vG^hsFR}0f)h@B*(i~97@d7{>yzr7Dtg+yNYp$;b6YH#3;iAG)S|mFiD>zC!
zEw$BJdo8xvYP&65I_{`gMV4G(lm=^7a>0>A0<Z%@=PngM5eF@>fF%_yrNcp09I%uK
zdS+6|x(DgU0{~SRB*_9xAy8)~LI6OC4og{akO)f|EU=jc5qxo)BP>-xy6pzM5CRta
zN2SL`El}rsIs^a!23DvHX37A7>}P7K&0zpM%0vLb4HHao0{{^y1CIf7c-j#&4j5&?
z9R>h!G=&-s0zga}rQ-$w0tkvtqvv2am4-iw;UQJH@Tyb`st^Ex3b@X~tWgl){}R+L
zECBF!0c8Ny;ZjDe5EL(3ETuv%L8+huFDoq71+h}89XQ;^LQ4X-nQOi|=bd~0Ip~^u
zyQ4)FEPzE70}L?20Si<~aGwTM5Wtg@00BT}5G_yv23Sxs#03U9JVF+e7%@Nv3Bisr
zW*+BW5C$4Va!Di?1kk6$7xZpL!m&>hi4g^Rma+5l22ceh`Ua5YLCYIdNdV|xQbhm(
z$eD@hwO4QeLGQU<1ON_DiSS_oBIirr0oLayaqQ*=HP8q<2oX3!utOs?c)`*(k_`aR
z0UY3f0{|XT!At#y4g!D%M`ZAVYrtb0GKhetB6JR7P^E0aZ~*{dkv0H8|9}@AdH^rX
z0DxHh#04&x#fex@0H^$91qE2uF1`SORs5t@s^C>DVv)F?0AmFZNL(&f(12&D00Js#
z0W5Yg2I*8qZ<GVT7(gTo%!RIwcDy4V^Qgx?@^LGpTaQI1(Wgp`U;#Q{UqLQmKZIZc
z0Qbwp^D>bz44kPTEnCRM&a_D8VL}7}fYU?(HiUu<&mdO-KoStb5RR4U5}o|yL52W;
z0v1FP0Kk_fADIc4u}_wAN&)~v1~7-bXOy;#k1Y)*OIl{ambf$xCw4Od9BkwfQUibi
z9<h<2Wl$r8Fu-rp(UOh$rZxtk21kAY0Bvlf8vtNb*lNhDS<ONz|4ft|9D^~7qXeTC
zXbXnrg0Tw#kl`o30KgW4LdBq{&2K^x;@zqU05brESuG$Iu%>d*Hv)i-)u9C)`zX?p
zlC-2IJt<1-@<;XnNR}a!-MU_Ckc7#UlmLj`LtHw(a}9uD6B(Jq7-k9hs8W0w<Ec+2
znY@Es-~b5G=|OmRCPx-T1WPr@0VMLCiM_{QT~#VVnkpYn?B)#)fQK{&^@0dQK&{e1
z+8eqFk2*vELF_QVAjk;-aM&OMEaV6q4z(ILc<LQg5!O#u!M3WXjf!gfP%i#C6ashw
zD30?&M2F(fGYmxwaRUZuf$;z>R1^T2y~?gQs)7*h;shyu|1E4|E8E%9c3Ue&41h9m
z01YU_T>w}>5t_6B1Uy6p1F*<$6C#j=2@pv`5CH-XFo0XyloAHH1W^}aRD&!xfH=(r
zRWU}U<RT;h&n!rI6ZXd7y{9u@{c3o*3jlvHMibuH%_9I{0{}Px5{7~YB%HQiZFbWc
z0APeh4gr8^=ygyLfDlIp^+sw|=pD$g3NLWj(SSy!vB7w3Fd}Oz<hbAg4PXGTfRZ<(
zsDKO^{Yfk&TiQ3aprR0<P6Ifa(CXyEwYB{*kb^AbAro0Ix8>1)fC);4OkxNLTR`k~
zS6l#8M9Inpzy+{iGcrwL0Rs?16|QiF0pQYMvBPeC{|vIq@nw0-U;=;$5OTXOSs5X#
zLr8cLU;#<+xz9&xZzkSbutvuDAagE_eRsnSIvC{+zfq7n?qC!;j4*?eW-9;;!I7KP
zAR4VfkVYm@gKLnw)Z3`=F|2}%2N<Ob9PaQGKa4gJ3seOK5Q8dKu?hxsK`3fu7UL8e
zYoR<~1+zFdvU5?<!A%Enl$!;QeO%;eQ@h&MzP4<SY#0D7zyga29}s4GRfGh!Ki<Cb
zkAV5eC>_MSHa&B8)x6y@r8~ZoTmV8GBd>EKqypmxn4I*@WZVT>d|#bczMTr1L`yR_
z0I<VG6f{?d>!zDHfCC~J@mIZCN}X}t$QmRd|JQdI!z#dlfKfQBtXPAX)?6sSvw%^6
zUO%NMUkJ(-O%)UuG(ajUVD@u>!3D}ulsdYQHnx+l^rbVs>DJOVxa1?VOd^C54teu4
zr9AN9y>CcUSIB)LmSzOt+aSO!^G&ZC?}DtEc?A)>@Bl#dOBUqo3Ar6JBPOTtv9dCN
z7PP?}Hh1b~MibuvPAHxMkE^W#Y_q|}5&%F5csv81OS1+5z$TNb+2Oz&fdtk#Qfc6j
z{3<a90MJ#<@>!$p0jmXy5NW;(hZ;1+K#B3q4N4Rl2lVG4T16LJ@C9WX9qCR#KJt^V
z{N)P<>i;p_LvAO6DommZ<6@ZB72>c8|5O1BL)aw#%6{b`SwQY@2fz?4F$sqe-pp!G
zb0n?+KptFyVfrb5CNWX6B2@nX{F9ydA;cx9P7+{&4kXb1%uW$d!Xy*{?G&7Q8Jzg&
z9{}*5zWkqL7+#~~S8f=90kB30$<;=1g9pk$4a~qBB!gc4hC8r?;>m^qG(tCMgCiI~
zNRVF1UBwv~MP*@yhqWBq4BZ&;0xq15?MaaqoB=MVg5E$|t`q<Pkii+SK<;%>0g%Bi
z<N_HKfD;CT@0AFM93AtGAsLpT8J^)-IG=p9okAqRzNic{fz?Fl%TkO0X0YM-3`r#<
z(2-n1#TZ2eWP!UiOxh(<yxB|O|8SjUWX!+tVIut@mc<SpB1D$~A|;Slnna9I48Ya>
zodjNtA1=iOe3wONLO3kVID`Vx08J=JiU?}NIKV(15JDZm0ZZf+32nqUNPq#b)1*k6
zQAB{{?MCSlhp0Hm53=5e^n&3CPAtqE7o7pCv6v1Cg(@gTM|Ghubiq<EK+*lg7lPq*
zh#?x5qdA@<I#!z+wnr9FQbk~bB%ldnRDw*kqhxG}L0CdO=GH{uBbe;tLbxMER01L;
zgdmj$Jj!E5Y{DtZmBhWGY)l?U*uh!RMn|y2=xM|@Ko|}_hYghoXaNN;)WVAig)iX3
zvkV0=?82)B12E)5N^();|A^yNkYhUDBu?g}PWI6{@}p1wBv1yWPzEJKzT!i^qB;P;
zA#j8{*gy<Gq)Zf}b9^LCR;5*5B~a*s3G5_ScBNN-CAReBP>v;8mZez|WkZVKI9Li)
zY6Keqz!ES5Box967{JE0B|N-CF;E9pVx?dH<#gP_R)QsA7N%hy=6HzZSuQ4HHl|}9
zgel^sWWob9)BzaOz#B9|47DXX>?L0wBVdN6Xi|kOfB<5iCTgapYT^adttMX(0Vedo
zN$r6;G{IXWfKensZJ|MFx~6abCU6F)AAQSV2&Y~6fNY-B6xilla6keizy{P-7?`GU
zR;P7dXHK>zc5Wwk|8}Q$ekXVWhIWQ0d6uVno+o;8=Xj<kd$y;0z9)Q^<9d2P6C43t
z@BtpgMHKu23cLsk`~iUefqizxe+KA)x=0lC=UY%g32eoFDrjCLs8>AbT;S(mFz8oE
zD0&nqfF5Xkekh2BC?Cz|D98a^i~=CU1s^m+NU;bC1VSJvLNi2xSG;J9&ghF!K{Ncp
zTQEU0P{CHLXp7o~j`C<%2<cp)s9^Xgkak6px+sjwD2<9Jl~$>hZq9g8fhaTsDkK7P
zvW1e~CyUBR6W}OVl<AbVNDz4GTLeNWa0Qa)#hQL;kdCQbgehRS=~v9@i=Zi6BtjzK
z1)yFjp%$v4|Eh&{`oSsi0Vx0iApB@s;Hg{0DUA5(nVPBQ1VJ<8XPpjdUr_3arYK-&
zDyQ0rrK-g#7^z*P>Y=u(tG=oSv}OuGYKeLP6{J8~903z-g`|1_2_ON4egz76s0V<m
zr=mc8egz585ehItgPsK)r2w(|s#kdGsd~k=LTeK^L4T3}69lUV46Cv-tFxj737`PF
zip8&jt5^KNDTI`<3hTEj>sENHvZ5=y#%r|#Ygp(iuZk*HAS<zA4hamXz3wZ!c7?mP
z=((nAwfd^T?rM$BtFmruw^Hm@2rOG<YrtYGSCBvnG(#Vt>#-&)SfoG`1c9=K?8u^k
zr@|`C|HdqPwx*`iXsxCN6O2MLG{Y%G0iKe;AM9*1fP%_)MHH06&Z0sf&=IAsXquwH
zqoP7HjDm-Xf+(PXjP7h7m_;C%LJ;U|GnfJta7EC1g~(znrlM_{o<$Ux!p<(L+otK!
zChgL4h1FuM&~7c)3hmm~YtZg2(SijEGy@+Tsht)prXInT?kv@EMIJOm3iN^0_H0)K
z0^fQ?(_$*n3T@zWMb5sh&jKvea_Q6#sHQ4vGbBP3oV>kvSQ7mH{|^WVxBzi4KvclJ
zO3O+Cw<(Ssr8zT4nJYC{fT%cfr)E|-QY%x_Oie4CIkK#*Y^!P7GBq=s{;2MApZnaO
z^E;pK^*h)1*B@S2|8-sR=s8|5UT=y%r|0^QcVm+KkDwde+!t;(ynEH$@VdF-O<3wQ
zV*iUs^T$^;mHPG%SnPjAeseJra{Y(a3&lElnC2XsxD0*oT5XEYTOh3)oDrlou85w$
zk=D3&vNk5Chh)$_dJ=*tW#Pd<c>MwiQ2*=PFz<F5h&|n%qi2Ss1HZ<+cKrq<kCBK5
zVMqprWO7cB(?eviN@@U#M9_oE9^!bTcpgPxIOt(a|HBx_^{{@ytbWv6;$^6&1iR?R
z58(QjM(_cMz~*pq({P~@bEFP4XZ0QEZsYf2(2wN)%xQA@qcecJXRzR&Hartw4nl5g
zz{j1rMb>p2Ulj3gK#GOC-8k_5StG0Az}KtqNqyRGn5HDfa8LrHCI^I|X_L5&96dG3
z_u*pBx=70lBDL>iY9sXPBjgU4qm&}h0!y$DbBBKfS*>SWkWp>|eF%9JzlcvTRjLA@
zsTTyf`!EJ6N(RiKuvA<je|MNgnwS%-Cq_9ntN1T3=V+5_o5MrqfbTW1HzGV%x=Aw!
z^f_mLB)@`v?RE`1`z#D1ZUh7f_I%zHtUtI=ANjr*`uh69yONNzdIxmeqIEuO(1SU*
zxG#2h25M9<G#e!Fv>)$(9n(LOnVP%$PBY3}%T4{9tkz4I{)y!N`m#Df6D?lxD@>fZ
zv2(;`F@3l4miIfCT?h3vv(Dzo>Q@(>70eD#&e1vYC5j?&(Wvo*+e{SZz-y|uf#LP2
zyuhgTu$J?Z`fl<qZVZ-Tdbrib6q6|ZPm$(kr=knj3wSy4O>RN2ZO%1sf4*{{VQz6@
z-YEAXmJ_AfsY8r2$LIC9nuPV>!}teY)gCO+W6i5rEpIDRXVD)?;BfuY{n~E&qEQET
zt}#i8Z!0&2=@UMJQlfX!FFxIB=!R)^n}6@3&VTzP(v3@*x)}u(tT&HM-T8q39>7P5
zmXEIOt%8gmhr|2m38q-sB|%ziP0s$&GTod^kiU4$wyKY`#}WFb8*(f*xKDg^Wwg3K
zZ}roUaY=w^oZIig*ua14!!MyfSZc%6z`@X1L;L3&!o*cGrp;DBZ{4#E1+zl@1S2-5
zA9SyuFD?ePYb|^te*oozcEMWQR?IvS00sxlH?H5^YrQMV-9@i<Q}lxzh`^_Lyx2xS
zlsO5^5^D?7CvJ3~G{a_t#O`YCzNKqda#mYgFS2c8d)dZmKhbc@mO8z*73kTTM}YyB
zmky_d#22;%D#z{hCnt`yJ$}|2dmxo6-afXe%_DJ<eQRTI=tj}dwVRtZt}fIQ%bP;x
zHe|K6yA{-Byl(U;WgSQ`_1l;d-_qh&)nm9Z1z$w+&t>7|f%#G$Z=GVIy<4X?%pdGs
zam|WzFI|af+j!@t+3a$=JGNujO6!q1qll<}{%5vNb|E+AfZI3Tw`ntsPcv!$-HS)D
z`tHWwZ`yJNIv&Ow1Mapz%siVX)sb(zfql1*wf^Gs;gpWj%|;6ws9f6(M=Co=b;id(
zEoT-}j>ejw`uZ6)w(1^mu8JBje$iO@T8p6P<x|%`icNMG@7`b6X>_hFep5&->;Bp7
zl72jFwSL(++O5Gcf$`(ya^`An&X-Fk1C9MpneT{A#Y(p+1$;Evb_ix`>`v%Wngl8$
zLmS06ANur;IJ3zO+|%&kwXmF4)A6=W=o?bI@eKY_d4kr7+|C0B65cJupO5W7f1tnV
z{h3Pr%U63l8+OIF?~SR{jt?kFa4S#P<&e<&VBz>x^Gj$GH|eg$%d0)dQ*+YdR32YC
zx3_CxvsdVs`r+bvR8fy_VZY)`f~nf2A2lTHsHpb!TEN{$q=O}|G1?z?T5ha?0;LbH
zlr+?}9N0LJ0zuChx(9`fq!$&RJ6AK;X8gR%z-@V=VWUF7iCZ@1eOPKv<>vCn&O2{D
z43&foyIp)%{H?@kqgkz{f<pUM%hd-_QQDioyRR5NQZveN+M@er|JbSJ8xPJkt8OXU
z6@TyWifc(QXV;a7=_@vyjg`fI3}|nC;eWhdt7q&a2%16(Nr%8oStPodxK7B;+)ZS<
z8IlGh6@d_9@5){<Nz$a#!}E8gR!M_qh?Vyw`T5(msk6l(33=vx6$n`cIDK75alZZ;
zK2&^OThV7((!Y60`I<*Hk5mdG5<x^j&lc|u#P#yz*AKelHtLBRn8_o<R1>z&XKj5I
zm5Tp%CFcO-jlZEH*AzK_K=4|}<%EV$DeKIJAAt_v=hA=7-@QF6z$THmujOrm3{oll
zOE=Xp%Ir8w%&g4t*o4M#f3~7UMJ1YmIO9Y>$I}UC1BTglWqrW|wHbX`lBB@;S5pr9
zCPda`@cnv+9!#wr(+P|iD=HF_+nQbHgt0hEEHhZjs3m8zjbm58$?$I$ra7aRNJHZ|
z+OdQ(NG8b1QU91q|1d7pb<gfA37=O#ewE_iAWeZwZAg@k@axZ#*%<RpI+EX&lH4vO
z%0vZ@9yfk-)KV-u==O>Y+T?VQ|0LG&_&U?Z%!WRMW+rcNE~4xya@ywj9rudq(DGc7
zUbIPqfXmogmt0&~;DjOeGVujptV0^om8+7Ug{`Xj7Cw5R8IRodWACABMB3+vFXkLP
zyWj^uta|BP_NF`SSWr4eJk2i&&l6P3^8Feo)6^G?#H_gQ)aa!;kVccTZq1IsWh0?2
z0CA@#0yO`FDQ`i?E~pjeou%0^Tb2-}dL)2=qCB=YKz3jGc5alK8C3APMliH6uZKMm
zCARgmjZ;oXVEIVswecRR_LZ3sLgdyj_OC=URJ@|m1MIq{1vSTUbyBA0{x{7n8=fYL
z-!z&nFTA<wU6=SRlaEgdZ(Z3cx8Gp>s6~En6XxQhEVi=fJ)zXMNQH)KtfW`=CXD5c
z5&Ed<(4Ca6c0=cG_u3OQZd-5h>FMQJF)lh<sqETu+Ue79k+!u+p`nTkDOAG7e#_{{
zeGicrt&O%!!-GT0HpEM}0#77KJ_<U0qWDqB`74sUdVYWnF78u0ckw1V+UXVHz^I{{
zr^%rCt0yr}lcb)-&7LTE7XR)<%&su&PAQ%6H`UvbCUt}U7-#uesi~U)$x@#b@nq>~
z{`01#)0vuA*BTQ$`X>a8k(XQG+rW-9VkVxm(z87j#g3Um=VY0erN7P*Xy2EnA3yl)
z*xbpaA2RdYRK-VL<pL_Qud06@7g(=3ku3W<;fSOr{|>-a**EpA&&uA^)Gl0l)6}nc
z{B85-R=IZ@uR%56U3!`<x6nR&Qtnl&HFYYtYu#wguj^yX`1`KUHDV7(awe)YR422i
zb9)rBdRzt+w6nzy8dv!}e4<)={KL&H>+;e2KfaSpH3enZ4#zH8u@9O7Dth)<Y`080
z`|$HfR_1%7tey>9B|EO@Bh^L}x{BD|`-*Z6^>yrY4~i*#nLmB%WLT#&TKgl<y<}g)
zb+B3LL36tcnyXiuHY%+Zv8-nJzpFUK_HNzHTbn;VuHANF##pEt<MXgqkpaX^0?r3s
zxl^sJQ%h6~z^qA|<>6JFgVL0sQCqL9yNBC%6)Nprj6Ei*XmPl#f-?(qr-+|Krf$`r
zENb3MP{n3}r(X*o=;3;2g|#5tbzCC@ta_J4UNUD`K9PP$rG(GUaE2;;r;@3l{@GOU
z_HdSKd3#6EOiso%GoZL$2^x*<b|F~1M4nue`toowl}=E`l$4g}Q&8Cn#y#Rx>B>?}
zM7AjTMZxr7$+mKk6Cp@hanCf3ej1hORE@_UiN226iY~}63J7!!QUoh94M(N>J!ec+
zUa?`wQJ<Tt&IK$Qr&*>J=B#%6gSB=TUE9oVNU80P@KFFH0~X-BJEUln&}p7|ZJrZm
zpu}ctc4MklUkcWMEodTbyN;<eHS@gMTwP8JqG6VLi_!TtflVXY*M;mubUfsoRA)-M
zi=4D~;BP+8pDa7CD=FSyI7}QzK`P`=+g%*met;!@lKQA3e|IH1#v+9E;|bbm<a1%v
zo!Zh`Bh|yp8N=!J=qj0e^A?|-h6wSdNM;-kjfp@A&*sG@*V)9Fnhj$al^8E@YHu>K
ze3=`~QXdtHE$EQ)kUfK8*3D{mNAd!a4PbVIC$#tXUQH-7z*(+|ibR1n^Cp2c&%qGl
zO+uz4gOx<$rQjF+Gl|uv8*9c8<`ztreE|s45qfGj`;(wcIjLG%la!`W4Xe!ooh3Sj
ze0d%3HeV`n{`5NiT)tfe2b+i8E@+%(>w8(_(&bi}@S~v=8gt?zUfrmwY|!U)^uxA+
zRy=%29bqNwerAK{fzhV36r!AS&NIojj_nne2R()Zk%)@XsAs30u#bf`$4tl-obZx6
zyG|k42p1x!H{5TeXmUCJ%J+GjJ9}}n8I~j-kYIM~v6RMZ74n%#Iwi4E@r+YA`;knE
zOTtbx(s6IYRY*gunDjFc%GF4bcfjV+u7Xdh)nc{oMGjkwH&4rMyy~<=DrpOSvd&(|
zRb)JiX|vf|tgWe?H`^PR;s0c+xVnAz-n&eXCw?7Em#)Ii%!`Tp=x(ZP%<y9|C20KA
zm&{e|8<>%G5^GaQInuDi@||Y-4!??yu3M4GYc7$5O{E`Rs*tzbbg)4K%`#2REH=XD
zQu_pL#coKSh=kv6kAzHOie$(eS4~SKdMbsJG?0-um&|#Ig~#`G5TaGX_2U!ClS#%m
zu9&w7R(DmC)d;u94_mTGUct5{A_MW=RIEkC1WQ(8#3jVyter>AL)N1N>i9^0<F0Y9
z-Qhz|uZ$H;+}J$gVWi`hHcVW-BRrdAWwg~MI-B`nyP8DU-4lx5sevbO=*W!+yEAM^
zcC&9{pli2PE?g4S`+Q3Jvj_R{r2`CGw98c;nTl=AL+=XS1$Rx9T{$ybUw1DdIN`b6
zbGwmfo8<K|4-;AixhA|d?&T(gxjb+R{(MSo5h)SOztqb49K7581kP=j)6ftt);ihx
zjR>$4)A_mGCt5_oICNLtfKW_G_x87wM2bn|LL2FaLU>cO2~|0Lwbl1o*{+(zCj{O8
z#w|_zQ`9`Co<p75nWAr}tip5258LlNIFWzsK^GjP6gy~GR8Xb-9hQ3Y)5Os3m}Boc
z35UzaNuHyfZ<lgsPSxZ_iRechUF*K=e0eQK_iD+R1i+l=>v#&<QO~4QCU%r4&xQ2A
zDFXM5Xn0>9k$BI1@_pw!-;P5qkj5ygW#@9qr^_#FL7&+g(*yneQR^%Cx5ZKHl{{BN
z%fa}Cb*k;v*G7&_F9r6;S$02t+b#8D(Kl_Coee54zP?aobUKkFq6QgN?q1e>_)R6_
zX>E(!P$2V4?7M-oGiqf&uIF=K_7=%+Q_GDFA)+x49G+#*EC?JoF8KCj|L$)o>)P{&
z^$(-Ju)jBDX^#8<kQI(ge(^n041hXY7bkdQUt{n1c8k3CnN8=uLHC~N;;e1R6WE-$
zyFQ&<Pf=^GEWX^MR(DI_^|aPa7Vge8$%LW#1f+E%S8JeBgUec2?pbiEG_t9H_hoM8
z;lYh8a7GoG(*&1HRq+I=zQivMIPf1uA?Ed50|<OKvi+WOOWBk{u)+iPR%_>|X({HZ
z$4#$;mu|g4RIBXn$<N$xG|)uYG_6eWBNX&vz$~mV<@(Ms5@A}X-%hlnNmRVj^IMq6
zain>;gT?TedQ&JdbDCJ-M_Qw6nv9{fQQ}K`q9<OOj8&Pi2^3Yfb64>8u4?O()r5iS
z4L1ndR*t9%HkG5P5~HJXsh4)LR(#0crjE8HW=73v7B2YS>Y4J^nFZ~JyvNOX7Emzt
zhmPP=9a^@4vFQavn(pZGftkdJah8^>T!74WT9SLOp-(Tyn}AZG->~Vk_@QpOLXk_L
zp;BgS>hp~rrAQyGHn(@|*UMM>dRysnb-@>wd&p^5c{Rt&bsyJ2gVHIkGXc&n)9Y?J
z0&c1Tu9O*AGDnxJ=OJH<+jT1wY3^9v@J!Jkd#lH-#x7~=vXWbY%B})kkly|~d%V^h
zRh=u5UTC!_Cp85D)w_Yd&>A14_F8hYFFR5#7fs4<R=XRx$7&$p#|6?ZRZ?vM`J5iE
z_zt<nNxiK={S;Ka6Rpwfq;Y+D&(#8rTWHO@PMTSP;-B_tK1XZ4aMC*7uQ7K=>pfcg
zL$mH{y)e+;1J9}>=fROH1v)}^bvB>Xqy`*Z=DE10A5_%eT*(syF?Byq!**ZS1Nvev
zlk`X4z?Qj-cu`#~=l*Ie%5+LQ6lJh(YJht2FuN}%AVTjo%$_r+b3lCK$2;qci7E`B
z8)M<?f?;Cp(v9ZuMHrlxUAH?6K+(EcK*Ncx`iqU%8t+;<{)4fZ5vp6-QnrjQ0yD*E
zzMo#&W12p+DN;ACvEJ*XY<S+6EL@ck>AZC=N=<}w_aX>lWp;(uZG4-inpU}LB!rB+
zZoKR4%HWa5Pz)qX*)T}pE0~JGj2r9gm{eXcgOBP4DNo=3p!X<hr$P2sstfJ=?Rd7x
zgw|<HeQpEYOq<?q+;SuqI&5xco@A#%lZLy@?6puCy%}WCE}H_Tn>G7rCXgeukj?qf
zy;<^mb8_DM8|cxXFVb8p!JenniUaai@aa%;8lxv&$2{G_#qPSn`t$l)tf<ujeai4N
z2swVhvLk!t2jip5^!88FNf%ox42B$EQ;R@T0k1K_4_=sf59!pHV(Hy`wvx+g&TPm$
zTe*5hQvX%u{3|s!iEU$}5(L*#+~Hu`qc%*89iHdfyecZC9<^Z|9Z>#gV|a8m-_BdY
zRd+ZZ#D6<ic`Ktqv&k8?svCQ@i2%4~!V_$Lq^rW%p;FD284haQ`G%G_Emk^-lU3IS
z>`0km9Q2g%sLH8DD5JhjCJoy<UL)5JgfxF^YPRw7_>_4;UZ}Zm+COg2E?!?}=dkB~
zTbvb>kcPJ{$fT68YWCR>%dn@TUu*o>@yt)cSA0W3y&#4-xK5x~Zim0dd}AOeXI^1I
z$5wmXH{W(U+`7%N9%F&-hqiu??1$HUoZdu2+4<@@A_FY-Y+x^vH1Kz_Vaz+W0!QC>
zyJ++w_nD~MJ+TAMSHBL(MNw0GEDoDCV{ogh+OCso9U(;>HDVn*oqZc6L#wXGTQONV
z@QpXe&6a(%B=dMz_hRCO-JJoyPIUq|?_BZUGHFPgN|zj^Y(>*G`B%Gp)kFisyaI9G
zSqOJ+i~SoCn(eehE)i7En=gSd@zGz3)Qm(^#a@nUW2CMpYsQw6UdJ?S+g&*p@;2&_
zMyTzBXy9P{H^gpn5E5jdt?H_6HL05QaXPb?`b>CTf^ow=BL(w_to>;JL#&9(R}ejE
z+NtKf;fK4ia{RlCxG71^PSLjDrIcr|?7L4iam|{zzITEX*%%jt@w)0~_OJZc?ZX^i
z9k+jX&!uwwj+C;4RPu`l`|2(29hhvZG;Lb<!4}(C?FHut^`EmPAQrxdY^PrXwBGRW
zNcR<Oz`bs#N=#lTLnux+Q)r7uY|`BW+E+ziS<Eo@YvIxsij$Ar?4uHmjb3qk=Qh;0
zN#C4OO`TlpNxf#RGW#Iyz*<PXCCf?0>XReeBd!5(ufc_~`_;v5Qoa}TKJIl!YJ9oG
z)V7ay4&P)8$_O>mnE^P8%>x}rXI4RLuKP0{F08LOIXp1|?EY>la|oXDbiOV7cJSzk
z^wXO`-BRgqCUUOm>2Bd-Ko~K*ii~eQMt#)Hr@`;@PREJ4_Ru#hEoXt8QJut|gU*u<
zCqA5OFa3&~HLIBM8`X@zpds}2;FX+PKfsGVLU|mB8FqT%bF-}%!1eVVwJ%+qFMU;?
z{f^zAUd@T}C`lh+#Hk@^^v%a6F{a&cmMOx{?4B?U3D8peB2LeuVsm^Dl$&|lqNY`V
z;}<$iq?d%Zv>E~$a`SBm%I}syiZPzA%35S5!|5Bga1+eLw&jL{3+X8b*=X;)<DG@z
zg>Wpw&&qf~t$spatWvD-Mfp<iZiiXqW1V&Ab39_Y$I)dG>f59#FIyQaQ>9;4@?k<C
z$D@d?4yy|uw@7tx?EYYK|8U%l;AG5K+B@sH3sz$R8)>h$X1nuW2ti4z#MZIr{Wj<<
zVzW-)FNnKv(*Kh!{kEA;{8p!GLsxdvW0p(KCc8*KEfzq6{|sLv$L?xygC|OI#|683
z*Q)Df^^U683-9rJRSM0PllE*l{~7Nh{6a9#MF%8h&)P$Nw$oNE9iMqgXYrA)Xn}{H
zo5%2@CNci&J$K%Us-SA5E-1-0pRv3!)BtxX+Wc)(v;M9Yv%SsN8^CLPrb1dQk6%2O
zUS%uS>b$G<-ph+_k6XRvE-6*D_#eL%`gr{k{~HTYyV@K#W5v`W2+BIg``bQqqfYf}
z11%3YeW-z4)=led-?O3PNMu{>@yqH}1#y<B#Pn_QA9TgdE?>!+?@>m*-I=4KubqS4
zy6AH{%3n|Y?xvQnvDIt?P5mnm5_H=i9~^hX`nSZ`*S778(r?<;`S_vz=g!Mw^4*61
zsn7N@*GyH}g+|-wI$!8?S@Sk!7i{(_j+MQSU7a^7j7pb&a&_&@rl=~zZ`@v)7YRLk
z6EPL%JB)@_r?(hV`?dx2+~%)7dtQ(A)N!>+851fI?4>T{K-cjUxPfbODY%lPQaQQJ
zp||hz%R$HRQ>TiCr2MA|gT4YO?~S5kGoP&Mc9mbhUVh`dUuvGN`2zvV(EJ=u1Dt@k
zk>NiY?54tHKo8Azd}c5e4n+a(-JAp6y5RYh9c7(K9LOj-5=4x7K+LbP$_<g05r{c2
z^1%Lqyv>mS@}qF;i=3?CCwKK9$JeutE%T0Ln{WS&cTj6RsqyiFhRNkjlY5_E<_QGQ
zuiQOKyK?Mg#%aML_gnRiuRdNdXq~?F;HzFvNr>{d@iRlpA(b4F2i9H>9J6;gw6e6U
zo#sH!dtYHphbo)>9nCilZu5Hbej>gpWMgH@xdwG)^p5sBhD~(t1x5Ad<WaFfa%^+&
z)2|QuEc=g~xPI-1*SR}h`NzvYWac<u+M%P`ux{iOHj&jZ5h3qxb#AE4#)rQSusiE)
z0DlcZ@#(FA8bW1_sHDzT^7A>Z-3RM0T^>Bgdo4J0@QL^Cs#{&lHTa{%`+gFUbn$)N
zedpnHpz(sjTvAf`(X1bvf=6^EnfRpn&?0vBk0`kO(JI@^R?N$?ijYqEZ>m2!%Wz#5
zc3Jzz5qozRpDWhs>e@?<3p!pAq$C~O3*IZF@bbm(l0AxPefN(igxpqiD?U|((GZ;f
z42pM@#akXhfVwgCsd@Dq`(mwL-MV2sr;S3aFN%AI!Ks6Nm4kfu#QDy@5tMrD_0UB9
z?Yit7@y76&eRsB;iktI~+!kQ3`#?ZiDq{BJ`fBX41)xC8mXGl%8zIJf9)DqASf*>h
zv8(F)K7D=azQn_#nfQ8#m_mooU%Iv(UB{GOdoGkBnSS=(rc+-ZYkUhDjhqw->c0#U
zs!cLCySDDv$#7e^{2=mbNqoQ5Hu=ugH{Qtyo)3n;PZ2j_XM{ZlOuMu&!N*T5Pfn#1
zo#QGEg8j~l^<*g0t*be=1u_F&^zi%cXh6)#qx87)prx6<BMLh%R}(o!!`nuQ1wk<p
z_(7st?8$&T*=qeJIJIXt^z$8BoKBbFk}~qEhYGhXaza!?$m6+Yy5xX)q@TT5MgYr1
zFQTYYdEaB`F(P98en<41M^~~oHa@$O`1Q;BcOhy2!mUZ%I0mKNda^%TZgaA*ar4Yj
zk@~Ky*~Tp|N6S&eRf3x?2E~h?4l{(nrcOEU+){qI-D;r^GwPIJ#3F1&pLQIJcYpfj
z;6Ra9mBEJ-sJiJpDqd)}VEK+`rR4A9;~CE3Zn;~xfFw5M*IBVG)l|Qv2<EPI)OZ)n
zIJbSJO=40V44(Dn?qf4;I<g;oFhHVKK1{Xmx@NHbfIAj2+&5nzHrn3GH&t>s$2Uzj
z%;@&ssv`rQp);S&KrxY6gG{3Gp1E$tQH?n>rPf0<bR?<4NRo2v5F14LdI)e*@P6z4
zXV#ko$6w^mT-hOYP%R%^<zzfu>y?K|T2If9voKCYqOZT&F|$uI|N6A2OMJL;lyNbh
zL-LO|b;?ueIZa59d6uCT;6SM4q~M4Ju<S#kHbE6>ikU%`nPD%d(koI+pOCmlC^n{M
zuzIIH|5PbhQNWAFB86?}79`b9NZu<s7WU{>ZSU-SH$Kq-1tHdA1&gqvw~PEs8v_aI
z=PxzPb?<P!Izz~{Gt37mRyA>Ys3)hF#$0Z1(B0oEu6vs%KYAmxyf|R%(H>F_qY_4B
z*g2LoYHkp>!kE!2IA^uJj_((DzTJ1Wb`PHB5`}q4{&h-K{X~}5jYVz>a4elG;$Roi
zFX^2fF~Bf<O$>&0yfH(56kRVGj8n`*!pyijzKBE^Bw~j?x7sulYw#$md03;<?sh)^
zHQr%UE|%$t*>0FJ?5v*2$-iYPv_0B_yKkdgv!cS%KK;xwXoVnF!eA`YJ4NKhI79`#
z+wldS%_1hhow}~{aamYm&?S$OM?{}9h%p<P)mXVHeOuDXg0O;GaXJ91i+GXaP%H?r
z*=B!ew%9x8(97b8w?ST(H!@I&Q|F36cXwroUiLC8Ezj>ha()5*hH-Q&mKc3K2;oDJ
zckJ=2JBOj^+XD_<emS7jh*ktlG7~@C+$NT^A`<nZV&%Sr3#&$&R5^XZSw(O7<FsX?
z$%hxGa+ANjZagLR5!<|;n>fsxG&5JMDy3+oZ7=G%-qPDE#>*xhhy-eIfnprfBOML~
z@Gj3}a0P6oI*h6^DL@2uv!Nkl^td$vz*tK+GBcb_&=><L?dZXr4NsN+fCX$F?2#T0
zPcv8<gqu0{%D)azhhz$10RWECVmODUG5tAgURRkMkzv<20yqxqC)z~#S=psZG;;b~
z>>{!}i+n#{h7IUs>QZ*x@RPjG88GO1pB1vNO78i5iC)=KW_W#-g6;$M;H>X~*tb<m
zkBQffLzZ&c8UdA+c^ujrDgU}&wX%{&pXp6hK~a5mDj=UJrBNrMJ!m?m0UxF}<oSQ#
zSZ=z5$~`n@NX?7JoL2V^mLUSB#nPBPN&sJJ_t%jni=pEt_V63gH&Twe&YafG&A1Uj
zZebtM+oR(sg9P9{g8^dvuMlYT12RBt0dYVo|1UC%N(iE!0!|sl|6pnxOXzNrG2AM*
z(Nw|63~yqtvdv1x)JomlPRq(c%aX2bMc21;-bi;da&$9s*=1^DZ|de{>h49`<!9v`
zXyd!r&M%lA80r)hwj(s$eSf59#6j<<INyVZ_8dwIPB<Kr#N5wF31_86rDYuCWF5-N
zNzBPl&MROQ9_9Z_{y+SIuA4H$tu$nFt*X0wSBM2;#E2AK3*kHU_jO*!i#=+Jv(q|$
zYyM*VXjtd-#r8z|#&cr3weR0-i(d`FK$6(<csy1S15SiuvC5jLXf-8sjHV)6P!lJA
zN}j>4sy<y)TX*K{x%%__pj>&Zrq6za62=mts4NY$Xj8)%`gLBpMwQddw#24$<VEPh
znjN&Z`{n~z{kwZD(RdYm3Iy*!gX7(ArekkYREc)^r1?aVf}-MA_&Z7EKZ2voo4EYb
zF5+a*L8Q&qogwHOA>G|JS!e}%y^ks3REDt1&LEihl;6OSp<<jz1S^As(bOXV^YKsn
zGR<xL#s?j<EZ6h!S&8!(yZaCt(48Ejo{+F@iO!y~Nj1~%Ow5h9GyILkg0l>Zf@IVC
zP4y33g6^L6%6g4Eenuri6vt&L0mW50MMk;-uCB!BchlQHmkc60KxxlxA5;z_+c8;S
z$;ge3#aEJcAiDcLdf$=Ua_$mWWl{&#@0{Ut8GDFH1XaEqmNdmi=byKNwY&CUSCNn{
zSDZGOeuK3<8jv&MIX(V_YO+w}2Hoy9e*9*lCG`2tD@S*2)IbU`#-?`<jj3-CCLO~H
z9s0mcC4N1AZv_dymlNmi=x()!e}7)eTk;ir;v|yD4)5D*3rF<?+2hibAZJh!AXwBP
zok!+^A>8#IB%_*c4!s!8qX?;o8-l|Mf{k{<1rZetxZKGmX#utD;>vK4U9}jBpy-3o
zBwKJ<Idbx6{Lo`R-*?m4=i?RY;u<`A)P477FS&IT(@cnl83Tn<IJ^?1;&@SiiEj?+
zR3L~*%}%1sC?h$Vb+NP(YLhX$G{DC9B{EnvpO<S+IE}Lunz5EW0h;je_1=r{VIffR
zNdDPuA4jyZ^~a)003m160jyRJa6G};ns%n99E1kJu4wA8&QhegJuo;D*^N-A9|Z`M
zOE|thbLM`fscK(vJ4bRmerX0Fy;3sUIuUs8-KE-nL(o%{qKhFX)%nj1siK2$>sqLp
zfiuShHDDJhf)s31Fx-;ZLPkv@nii1nY;H3;pj>q>NJ_q7yAvuJ2f)9%x$FIvVkZ?g
z)CaM6+H~ZOkgK&aYOF__;B@pBxUKbUgpj;*I#?|rGTh~qrn?5f(6+eCPl$MZ$h+aQ
z*+`_MR2`R+{Y3Tr${o9n?~uWh8L@T#AkWF=n^hmn`^Ty7+Z#Kx8BIMW)c37bMyLm|
zXxBW2rVdJf4%p7Vhp!v!)-cj7zf}UK?OQcpn%HM3sXA%Ph7n;Epit}OqW~dFUYvuI
zOUvbeDRb;eS`np)JLzdC#ca7SJN3$4P|3-aI~J>I#zc_vW>?-`d=R$Y8S|{+b|XNZ
zXbyytn-*IEf<-<os0O#m9djjXF=5gB&1M#2q!B<75HV#i`^*=wbi{Ri742Falg;f~
zrslbW^u4!sHv#g;<d!}@JmB!YT57NS7YsSW#~SXs835K0CyedTaw0!g^8Es4iHD!{
zIww#%Y9UCdyIrF@)iXJ~Q!q71p&O{?V+O51*oiJ%WE1ygL9Riz9toy_)9(}loyM>x
zO+Maq9#6=BO;z?Zc0=CI`#@(##d`&_bajR=kE_!wn=_e4SybGkvv!qv=(QsUh5rFY
zvh-WI9HA#XIE)7Zars{;n6w1e5({$($m|1tV31ZS6Xvt-05Ljai^34Wh?-k0d}vjt
z6H-DqZc#QL02Fl|9JILqN*pPDOU-D0&_)&)8#3Wl$yz-<Mlg5qx5_ju(q$z|hr#mV
zOZTvKn85SrQ)$TAGSAOLqZa|eq_MuQoRV(X9#L({%?wy-ILihO1ZR9GAz1J>qoR4b
zp<P_8rW@N&PvzKGRBDn{xXtv^QXn}i5Sxw#iTMBoMhbgykS4ZdIisLBd+wbHk^yv?
z6p)bS0mfBtB{zrU2aOR>HZ0LN2^?gDv)ijDsSrDNjiWesW@;%M!c^1{f~tThd&bX7
zWCxUhmQ_&rO=miz$(fu@7<;4JLO`QQ{CXd9ubtDSYV8Q~(|w+&0Xj_aY<P97xUd>_
zFPXoQUwF_L=(^$C(D<V*reNi<Ie;DHR!t4EFt~}h*)e?h$ajmBD6>bb_RG9QM-eA@
z(@6&2!_oa^W_<zb4fL8#t9UtjBlg{%U}T{yvUE~jxYQKx&fns9;vOLKhLJfd;QXh0
zk<|TFz@|?s!aiciH1m2t2p1<TjRksV3h&RhU_$qqD!cfa3TWijLZ47;_M7k!E_4>E
zXi{LO^W0cwIODbZ$F|l`fFJ-MHaQ@E4hT_#Zy001ihLl2FE9{{4v;dCW?_rwMIQh9
zB;m$hSiVmvS{VsM5QY>d@2$U5KhoqiM|l97*j^NUCe#b)r40%nJ*Rg<FMIi9tcBd!
zk!8eW6{`Mh*yO168T`oEYwuhE;AeTvx#=pjjwys|2RNb?$pDMs2!WwvES#QwOc_@|
zb{?QzJkc#E_o@HV2mnw6_qV`*67KBfWoR`s@OA!Fe4f{wOU(s^67Kaqd-ft+`9~A?
z6H6Fei_4XH{>sW7Fx=2WuBG@)Igdt47;Aif@>{wN(iG@i(0lBJKLC=K7Z<Ebg`1MV
zqSf|o(&3Dg3X3mgzslH319-r7yUn1t4}spGAbB)*UjLfM?d+Q%;1?4xlrtfmALxXZ
zKLG{{v&O8DcY$`6+})}dCdccF)$81zo-h?FyJwpqf7aoAko#j<(H0mGO3Y)5)8F6c
z#q8t;%fI!LJ3b~dZwj;UvA0qB`tVUVLlEF&AGGW1BPtB^%OEN8ZHR_5FcZW9iT!T|
z31>p%8zfazD>Cix2FcjbZOe{d28r*EJb$_)zBO|EWsO|-MR<foc}B!|N5}a@AKDZ5
zhcyagu)|Z*B2zhhYZUiiTch7@>Q93-SRFaEZ_}x<x@ep8I~ynJV@BS^Uz=>=aY>;j
z=TcTdA)OL5h+4E+-_x~0{pKYfVf%2u6n1J_IwvDDEBi=}uSoDtoT_4RF$;uJSC&&H
z2~!cc>S|T>`0Wbn)#^mJ9aLQ*CihZXd&lL@t}9pB`5_(zSt~G6fdVEFtg*xdmLLhY
zUA$I~aqaPwr_Y{GPEB|3RFknnsvkREVIinK=PW~}$gh6-M8l|&Wgblf1Q7C8O<1!?
z4;N3<NMA@kNL@pIsHw8JNK~0U`7kKJJ5vZOoGEYJ%n#5zkbWLhOlk%a!`X*c1wTV!
zuyu5IUEfT|I;N41P_VgJ=jcs7KWKA-*+UkiqU+s>eLa~X78_2p^gs~u38KBbiOr>-
z2C0g0o&uoOr0p`S2bgsWASB$g7)H9YJ%SP{K1Xy-+jV@EMQ!SMNWJqfuIDKWd3C0e
z@`X;BS{>O)bJZn-DF)(Al^28WMo^lnNgb`BB#~iLB%s1B<w1J~{XV7g5z0gN<M|-V
zRL_(bgZV<bJYVyS#~oF++j?+3210=>EY0)196M2P6-#X<73QH5&+E7Yw`4FeB-Y_m
zr@jI?$j5?g!0nS)*Ofc1&3MowaAXF}LfVI7LBskK>arv*90kbLFN&cB13o-YYv_kY
zGoarih<*%5oxC2HC;<yZs3LI`s0dAmf_MoZ8v|MAElQx?Bq7ZNMw3*h^Pc<izqUw2
zTl-<)b*{3odM_>|Sb5T&2G>;8?a9$QL4V|Dokn^J0nk-yV!=k-8Uc|D#i<~OWIp3K
zeayHIh(aL2zd#cG3DRz01}FoB{Ldg6|B*EQEl5W6e}ZKG50HLm3_eKi`}rUp{0B&h
zzca?4AjM>4|NjKi8yrnbuIH~w<C;iW*Fejra0vyB6G9p*FJb|e!b<NoN66!(U{nYe
zVGhUU>?n;n#jU9Pl{73wl6Jxq)ny$~>I8Webx9hOpr$}nNv1ac!i@q|$C@YdT!s{i
z>h6x;yZ>O~Vd&YLZUlwqCI_e*ikb+YQ`rku9ii}%TO<$$)zz<45Nl7J#Z_JRO;(@(
zoiy0J=lRc6zTgntaaKGUjiOg?r3UChIDi5aY-{!nrYD1p>O4D~U?U|oVmUpZIoWgE
zDC+f-Lru7n^>o*QDRf?UA99Df9;~B@WyRbDDu@{58=pHnu+1U&$N}fvl=YlFvAmXF
zNuy?|0}><wcY(ykS!xvs;+ik39J!1K$pEn?Gw=L>5JXOhxccrJM!LH+!)oP?mh5>t
zINaNV(zt->RGcJu`3N^NnAPn`<Qn15UwHGN$=@xZTqUwdK-DTw!p~2@5tE!LdYhZg
z62y@CNByNJD?S2aRhE{jUYAjVDlR?~nw_1W-cPoj{{lzZbRMKp7<s7|s4%=#CbP6I
zx`P2F-xMCWe(hS`4*<HtG)i$z{24RYFi#MyFv~=-kWOZDl9!BqP2uyX?rylB2<i<;
z(2AhUNdf`%-35p>rIkqXCC&{O6%*;H>^%`k9zY_R-VG37SiQ*IZWm{sx}C#dZ3o%W
z(I#Y<0JcVHp7f2lTh)22Les!QcLlI)-V4C%p}N^p4JWwAAsUk5Zl}&M?t}ARy932`
zl=2=1nR6}rfdcujYAFa1mwEhfAgNk{hA^Xeo6F}>U?`gGtCZ%rF@Q4_{tuo{T4j_R
zOD(=E4F&l4oIRE9nqRjkyBR)-_#lh}BGe5$`XJ;<{T>jNBa1$BPBQd91dtfGj}11O
ztQWA8;iO%(uRjKFwE_eGDTL8{A>8|SAw+8Yo2KAj;I(%AT@&zC@Q<3{A1Y|=vv<2c
zza!Yk?+AVh;r=ME$QXV{@LLG^1;I~v|4|UcWgSV($@^~#g5N60|M{PV(1&S8y&vZy
z*ifl|%)%6(Qwe(*r<GO->3e^x<ghR6FG6T19JCX@mn`d~Kvt4bCLW@c;&5a&I1Q(w
zc;*b#3QAUh<utckZ2cvK_Ibe`$_mJ%j^bn_l|LCfEJ(!Bl#3nFDrC8noev-V62kN=
zUZgt?DoXY;B$}#>rTpU35=~r{Br`Gj<?FZaKi0GQB5;B#OkFhv8q(T#%IZ{lV)i)I
zmkHoyN$ZC^iF2HkWI3=&b-Y@U0zWjTZjr~N!3v$o<=FlUHKTlfMVIR!)rIQ_vT1pf
zem#dHE|}g<x!?;@6?0ZC*Fo9V-aF^s;x~J&e{Z1>ndXl1F@vZ#D>>y6RoJ{#(>=K|
zrM4vv`A~wBr}Vkj#^=`<oe}-hN3A_Bfnaq(L2OeF%BB=SH|vPpgGbN~ElRYvctZme
zVR5Fa$L8*CRu<8CP%Z5TR5ilNm<06cL))X~B>fmE2y~63P}?w$2S6wg`F=T}{e$Mk
z^B8E63k)G_C0Pdxo1vwvK<Qk@=PnaVK`cc>2?+wnepsxaHR@e?_XbD6Aehm1R)=wN
zb(3(Q+#<vpVk;lMJyAFWEDMnBdN9ehzF}#e1j?pAMfSw;b^*XD^J<J3B~u>bz^n#?
z1rs44yWuKyVwJrVAiO)<NYQr+Bc0iVOIM{sDO-`?Gpya_1Z-wr`Rx3Rxg>x$Q7Dcc
z;~f<#x<|n6l4P0!t>nYKQHVu}zv$gzJ}-{{N4)&qIQ~0ie(T+DWd8Jye98M0nSi*Y
zpU5zO8b^Mo7W3OU9?3iWUvz5!C&tmWH?Zq-z35}uT#BxVL`Ay^hGavj$^n%>{jknp
z{(~2)$ljfb>Uccg9oi%EOI6hmQggAg1X5V0HB?;@R{gVCYiMk`V4of2fl3x6;azY<
z8s>ObGex{izN&X<c;v?D&9fK1Wy#Kh>asLdEdTAlXU{0lr>CYTL9;LCpI%cV%MRXJ
zTK=%|aq0GMMP+AM^)nPWOXe7r4(m3CiVaxT<xQC>W9+NjO?fB#fAaE{l`GT)|9Sik
z?VAb`iXis2Fj#j6N_6~(`zCZpU>HzU(F}oa4%c^wy6%g!;9t2ttY1j>8g_Bqt|4Vw
zM|33FaKz1Z>ZKhWd5}VoFh^mtE9_xQ;H_ejbFTXyU9ylbqBAQ(?{>z0czu4^KnRE;
zRF=xx%!KX$f?Yk4O_dk?uTvClb2Mc1UJM^0`Kv|-_owenpvr~lKv@8ozbt2WQr!W`
z2i6Q-BIs=sLtFuDFfn?(E$<ocu)wGD32R|f1EVqSjugW;bIeU(X?iy`6(|r%eSTAL
zRRXGBzFCIZ%3<+0as%@AV9gOnpS(yogrtC1fp`k1<kos-><L<U6Uc<~&;ks4z^~%B
zUaOcJ23}uLtB|Y)HgzY92g3RfJ1_)yP{1M@meMGK5wXurNZ#>|pa{(elp;H@hUUu)
z_QjFy;cGOont{awlyWK26s}6>_V>pjIWG#9JpnvFJ3VWLfXk*ui69SoA0L#v1)mq{
zAIkEpgTBNkMdg1d<#)tVGy6-#`bmllzk~j(xco`Vp9S=9bNDAI{FL>FxcnmJSH$9r
zOaA{|QX)l;FTQNq6eow%cR|Y@#8{-JJGrnI*61^cPhb8?ilfLLFR-e5lD(q(Pd=bj
zc!0XxK|Gh6o3P_2DH;DD#WO2pm%MtO14g|XBtj!7qE6W2i0<OK^2eG-Z{8ZaedjLq
zVhc&O!(J6@M?PuIr-q{Na&B&Re*R~wlD#p`CuQ~18s+}Z9871vEqZYoDr$Yn1++}W
zRO;lSVo6%aLCXu3d{SE8j`WzZ8HerDNKN7CH}enJ(AkUrKu9K7#(%inTKxHdx`+!8
z{IIVFvF<NFh#|1hLruGXx;17~&D~mhmE>iQ{@W0o$uS>yUB60(&?AnhCVCo-5(v6m
zBT;$j{4bNXNN#O-+8K9(e!97v#=7RCY_J0)S%U<rH%O8~`o`&={D_rdcZ|c&oLk3-
zM`UbMbddZ9CqJBP33f}Ut>$K{n-_YerIye8up{!lggL)Rx%%wNLp~stE3aNS{|QKt
z@~JRlD+VIetUV|R^g%-e(yIsQ32*aIfi2Qj`8|Y>pSCNqk-#Jd2RShH=DpujoBKF$
zp9KxB>>_^B-4d&lBPpoS@;t>R5z2#pHVdkd_`YN56p|osWZ9>qWPoJCA;qy^cOlQZ
zX(ed@qdQZ_J|8C`htOfAE1hK6!j`c?G`MOXF+frZz@5mmLYpxJ>^1@J2d0>MfI*M|
z)Nd8}#l{Uj8)AQF<A2U)a3<#e=dR1nFUawy>)QXje)uOC|Cr4DsUm-}@!uP-|Kz%4
zMar7^0Vzn6dvWIyKjX_=pw8R3WT3`4QEjVN{;47<!h3!;5Bd3rZIHi`kpwNbppd4Z
zt|Y@p#g$(>z%qZT$WPbhkR8Zx9h{+RNNNC_+G#DW&Z9)Sp;gu8>Mq^+m71E{`K5!)
zZ3<jnochFCRmoER^_w@8x9@4<{MO<5#HY2-U%ozg<Uy8fuA3%+u?68nnd2VB0AB^=
zWhZwmukj}v`mRgqds5Twa08ARO@7_TT>k&F7pl1w*`uChuBonF)lb*u_o6h!Jab({
zoOY-*auUqJolS;*G^*}FAc-6Drta+lWs0AV4tYA<8j3x+1LisJ5A^t%ZRi+$alHpn
z$~D`4SMd>MXWSBEXyk!a3Yx4{|IwzsX{y(f7xo$6&&WWp=IBV$FVz4*>Y#>+8^>Dm
zZgMk-uqj=s>ATj_>_gZ|v(i0v{tnLdsWgrn)W$T>Z`Yvi2*^Gh$>X+1yco_=dOqT7
z4xebQ>J-vpPy`VIP~noBTO{9U5I32in0UQ{MGB@%q5woaiy`^Ml)MAbIBx|g493=L
zhb!JYBAdE>vXKU0AWtMh`0zdvBN~%hq|=k~1_e2C_~{ua11jt{A5|d*pj<FTC>!LN
zf{CR*V7LS#+!TQ`#a3mHWV=sikkGyvg2JXgJ!~Z?ydMJa#Lnb<v0>(*>itkwFg1H@
zT9<oX4_sKj#RCjhGYVEL@DcR|0)VN(FU7$I+(3anX2()NDKb;4m~hp<Ys@sCqXppK
zYP|oMUicjSbYp+jn19SUe`(ClpL5Q?1ekwm^8Vt+0{`0N{Y!@VuZEoeIlb(c-7q<t
zesG?wf^)J2?ue#Iv5kjMK7PN}m3-^{*YhF)iHaInSrszW9;HE$S0f7_ra?6nBMXm}
z9WOs|@{}!ePdr8gMHR6JlN2dn6_s*vH4XVp?(Z6pQkkHJ<u4>21Z5W}jNG_E86CSd
zb`x}WoPr^$%eGzpRpV{v9fH?5OKH#`8j>K~((*Fp!|KP?mBr6X77xi%uxvRi{+x6B
z?4pj74^A;vE!zU_TLCOd#gNeQPX;ekT_?fcyZfN<kaS(S^72ld0D_<=#)->Y`I%ni
zsE@kGthj*ngV&4qVXddAnG)I}M6b&(u)DSPr#47n50X)Ws;)kZ87=1?G<HVcbgaEC
zAyjOyWr~Psz-P6EPuXY7#cDlmi+PWB#IpJYGkl^90Rm<Ku+ABfx~STHyEDxcdUUDN
zE8monQr-38@<aM_BPX|Qe#h&fP4{>FsUNCUCr8gkNI~Y)>IQZ8RHzD&T}-M^yfK5J
zngltph_dz%_Ln+Ku}tzOBq%Rm+Q`i7E^ybagCfwTibHE33M-?0S1QcF3l=u+N_v!(
z1T>jd`CJ<y01*BLnMjX+Q?cj@dn#<!lSuJw>e)rm!1^$x0F3)==@7n5$Zz6`iu%N3
z>85BbIv?O;2KZ+{7X@X4M*sd1|94XHtEv9ikGR1<Y}DVHYTLgz)d&CIYw9CO|J?-t
ze-G%Ap<{7|iuZ8m)=F=k;(TCjQ0E{-=UF-fa|hohjJ*H)hmE3&_yu6IvQ)?++p#K&
zMMVi96d5n4LKLPQJAUGnD?gYYO8dh`xp4fGmDC)R`Sr9Kzn)fBrgmKg@p|0EbL5~G
ze%mPPmSjP)jDzYUOC-7ESoQNM@+tZGSFb3q-_bDqY(6^v(?)%!-%pYupRse|7u06_
zf|{%WBgN@dFgEZ*v57xekzY`+1poYqt0yPgCo(E~1O(AoBE!aja6HfMBD;OYf2uD7
ztjI6ehV&6u>zc=~hPtVK0;!@Z=>)niodc1OV{7auPX@be#n_huCVqaz<qija_5mS)
z!X*gAJ?^vsgn#YOQ-XJ2)3XC4JpZ)Q4fgz+g?yeB6Q?}U%MquFC-fI-shekb&ae0e
zx1|<o3emeeqV^s;xuqBAs8{1>Cep<(sJm@b?lyJmU7~b9If}yOl{y^?Xk$QmDS}e?
zu6A!xvQ<~k77mpGl-T4Vt-}!b@J4a38_IFjMw@U<O9JkVfFPbt2y9scu)YA0O2xIO
z4m*6sfc0~cJP$Sx+I!77fDKgPaCb4?<axqLDb;*!Sk@(07_3@5@(bwfMJtpr7rT=s
z0JjRK!1-6f%>+>V_AE}dvaT{t{80)JAl(=A!cSw587RY=)8vbS=M6j*tntbN?Zx{L
zALf@44^?fE0+`+_bP=U61l%{#^Mcvo9&8W*^y;)z4di#9^~+fi__(zF8(jXn_VRD0
zI@XQ`+kZw5{@TmmSoyv4@@F{zHQ4!y%RiI(KZW4G-FEqtmH(s&uI_wXP8RtdpU>W!
z7xcMYQFZI0(ayEv-p7yq@O(x1g$qmAZ)X}_3P+N5$jCYphAk>0koLom7MC(0Bn81g
zHeYJe{5^2WR9~=tLlddlQc2aigM}`UgPiH<?du;neU5LWs7Mmbeq{8PC6sjI-UEvK
zlc!G~KYKPg^@Jv_LX_#g{`TF%`$f=@hf?EX6^D;h`87)!{<BFyjGv`wH!EBeZxFe_
zPTjSHw<)(;8aB}orY910aOP}FS>t$`-!!$Lpq5;!13X_jQljI%yRWpehD}V{hmT0B
zh22_r7Pl*cNw?J9uIdfksmqVJPz+(!$oDno>^NTO%hVk*m+_#{yMqBykEwT47O~*A
z15jrkw}pQto_6B0t$|Qeu1{<A!qcvVti(Hv0G<3Yj<}HZjW}KZKAOSlMc&3R6m&Pg
z#+poJ&femt-Z<fh>u2FkHEEKP%Ca^@)#OL-(=21YdwePM#ntl(ZF3FsPT6Y;Ww3OB
z05O`Y;{!;a9($To+ygYvM=O-MTswKf3f5qLRh%3?-N&9cmrn%TP6Tko`fiUj8f~!&
zo`yTQ6DeGk{I6m2mVLlR88dDOQyOq1u_PG4fG+70eN8@^IhMf130O0@O1(b+)b$Bu
zgm0Q$%$hd>fpy%ODSk2%2#~r+R5p>IFnNNUB-3$Z_6nizi17lE2O|*7X0mJC0lZ|Z
z4H*ca2<@S1@KIm>laTu*992+mf!5}KSr9YlV^aKgOpyO$LF|7sPX99h<kwh#4d;K1
zKz}#Ce`b)sm%sm)jFbCW-`=N*?&<aP+bA#Om~GIgD@H;Q;e^H?d}7xX_YX|WMST4J
za7_+)HKoGBc(}KQoaG;e%9ih=g4n+o#Mo)R?td642bD4_6~&A$+AmwR{imI(Z1|-r
ztR@enMtnx@cA~7EdN);#-)Hf|c@N)7joy8~xU_utp8IbXWv?#vd<sm!#;}ic8(I*#
z^av)eD;=q9)93WwrqZ3_9v9j(O%)W!&&UJa2>BqPP@2t!JiIw8gI{B1d)yx89j0h#
zgi>rEg6oL#t=YnL`ZR>7H)vBu9;pA!F?yBF!5w#pp^`XaqSXZ!RU9O}@<iR0O+fMI
zsfhNu0mkFD14oQ>_&0POo#EG5v(ER1Q!Q}Nu%hX^oQJqiyC3;2<)*&4o|{2L-bTF`
zhk9aR4BqU-vs>JwE29*fJw<4|u%LX6J1kQaBs+L=%PtO6RKqUr{^OrRPDTEZ6R`Q>
z(u)gXpLMNMi(hX9r}I6PO)BDUyb>F!o5)Y#o%va}Hh;-viW9PtL0i~>^v<-kqdP+I
zSNOTEP~Im^UY{W{bwrKpGHb2N;tw-TS%`RHM@lqRhYN!9r<`U8HQ_xpyb^(9^NeBV
z!>|9b#nL;Nj-E{{e}YCh7>*Rp2kgm7^?8U)N1=cS!^{4aD8Avkn@by@G6bwPh2J{j
zM&J=p4x$x2FGnn$hy1JQqVw^{`a2$c)AdgkF{b=fk-shm@FnDz-TF1p^!%MDez#V9
z39<DH`ZW^y70!RHP5v<tN&c64$bY{u`Bw?~4=NIX>m7}zr@htb&X*UG$UP0%p788F
zIA3Ggq|e6qXRhF@2vf+%59Upjv4G(C^Gdw0y^^v*adA9|jg!O@rI-++yddlM{-iCt
zz#S(qmSLfQ-v?1vbiid=VewRNFcYOrl-*bVv*o>I*^sDql?o#YQKgA6dxEsJ>Llg=
zVeQT1p<MjF@mZM}gPAe*ZDtI{lI$eaY#3X{QX$HgB+6RWni+#3%h-i9_O&8~q_UQ+
zLYsD^v@hDUoIImCozC~1=XXE%@4o-z_3~G}ug~@Qytk|EuHyXT$J8g!pFMv{!w@y)
zM#h)#^9_^nSFPl%k$A43Ql6A_ZVaqFi;FTx-M7quZ6^$RTg@G;Cx;xqkd1r)zW;4D
zLo@@*2w5EOg{Mm>(i8M)0ljcZC{e&_NvEbQVeV3e_5inWhJku2YaBO6g8`L<q04R5
zB#6Yy11LJ0UBJZ<?WC3M+n?uGdE_GGd$F`MePAi7h2H>5Urj}_VBs?Zur*MSn2c^f
z%S>MiT-Fyi%T3M-RI@L)Y~h~^c6{L@)i(n!XiT>CF@8Nmm&4Y(*2z?MnLNARbRi+;
zQ!q+a6r>b3Y<;R@Hz}yKUb=-na2~H}%7o8&u)Lu(I(swuOk6bndYk{{ecoiYIEnsx
z?MdOY1Xt2P$_c)9eEB$`n>V0~10ga%urh&G4J0*M6FURLL5qDr`|FLTdqtm#zh;X*
z=+&%<@AWn)0}zepz2JN}g-d4AQ37B9mx<$gKTu~;sr%*lNF%WT09gdRKFEK!v}gE?
zuClIAQJNJuY!ez$3;=;)WG07PQGla>(0npyjj1Pq1vLwNvN>ym7m1ZidcK#d8G~l`
zgw)3}6+tT1kJ#=W8v%d=p4V-$K;+yo%lqU(&@4JpCWoAgm#`29#+HrA-+edX!Urq(
zKOZdN!T#5SWls5XJ+uAGbn{(1`8yr#|HE<fpF-nL$4$b{eVkuH;}6v&KI?x$HTm^;
z{a=VLXogHbMgHjEfHeo3*MPiS1RD<1g|^`E$G#uz+1q2D!MsUw)@)Le8$^v1MN=fH
zs*==U?j%LggdYbxZQo8GydsKcRa3`xl~2v2qB2D^RDI9~<iiC*-_5x*l`)#lHUq9m
z4cQD^Sxu_K#N_1ol`C}N^CNq@XZc`X-?#Sy;}J6*gBfEe;;1SMZ{NOo_s;sJhBRdM
z+Y%r#r!DCcgQ6)P(wek^>&>;q+A$FfAt`JDex^h`9u7~EDv(hCI)k8)H5fboP*iKp
zXpybq$P*G*17ju4<>|Uq^uu4E3m{lIyZm~7B_q=q72Zc(SIn$x&xfC{y{IN<jhpi9
zC5{pxYq_Y1`eu*gftMw0acTV|4de++)N8UBSoq%g@X7UPG3A_tL-m>fP@297PfAm!
zvh$6z5dL?PE0^J~xD0>FvH8nEix|jQ&WT(I!bQhjLu?o%{MW_m`_4LGMOD^@sJ!l_
zg^c$kDass~h;n=&{LcAJ`2)PBU9QN-$1$>il>2>cJL}>G8{Y^!&Gq-+1%kjs=VLvD
zclPP{k9Us5*nkLM7xuI=l!CR7f>>p*pvAI4aqJX%)9%E)X(<tsrtpATM(}sTOR5mT
zZvQ~=KQ<?!wf=8>)BmUX_kC^pe;3UEr#sUR5dS-Zp(2?ZA2=%?wX)hSL~sq7&#S_D
zl3&NfuM+)1If)u|?}dA7D_C>1xj!{>5t>jOFDQuqE{-RbFB@Je_ix=J6vor6>Kl`p
zKg4mhW6Wh)Jg4ehPj6puO`KMz^#x~jRoi7rd{T(tWl8*O|FUz;aWHm-F}EIm+*V7*
zCj4cX^$n5?WLkKS_sqsT8Xj_J#JaH}19=EZB?gxyS0n7khcDPJ9~fs>|B)Wx<wAk-
zq!hcRC%Jz8Tq~7Y2Xo&_*Fm8GsBkK1`vX*|tzJFK*@*>Rl8%IV)xV7_WLGhA6n2ma
zgURKFRdxjoDdc+KrtGg7BrXfFhhc{x)7y2?P`pG5rjI-d21=f|T4LAnvaWH{(ZI|)
zP7_K>DK`U#XR&AcQ<LSU1)Kpdf)WTR7-#pffb18+_d-OENuODIT&>6f(Q>7f3+2dc
z4jwI3yuF0qO&IXM)ET+@jTh7y1KO9yM^Sbfv&ET9Ztf9+8@cTO<2%<K&wO?uKcL>f
zs^>EhL};|sXE8aQd?<--%s|c1;g+%hua@=a)^2|OwbTEh-t6iaDITjO69BK4p7!){
z2LRkZm;?y{O`qy<g6(tlMZ>UsE{OU2(VQ#9wCzt!|H_Iik7VPu>Le|FBO_s4MCBhQ
zuAdk4Z}u%~?_X0{7!g_Cb$&)fB4Pq|hWt31mmOR`mYyGqcG`C<Wadv3NY3HPhLat?
zrtE+B2a%;7*7vx`?`}v#c(HCum9~3kdgfexOM-DGsbZlO#Y@jl_!g@#eg8X+y0lf?
zJ09+(EoUvMt)@WK#yUaNG!!+7Tc`+JX{oyQ9y^G(B8>HY-Kpgi$Eqo&^XL!_0niJ+
zUWvFHBE+$(rX#vses|NdsNHa6pH|xmI$Yb|;rb4$tag_*R9lv+@bJ+iIz~fFcKFir
zHDEKIIB8$WcaT-5ab|703J~Nv0XmwbjV!*<Qqk}Fe({bghyqR0P~t%AYk-hcHBDo?
z3gK<pAxtPXMq$D)(}_?Ao)>|TghHu-LQpx6rKFeOnhr=W+Y_XT!niFQ9Rok#JdEke
zve$i=heV}Lz=G~JUgLo=TDs;YcI~>f>e&2A?TKe_o`rUMD8QM1^#nkB;psJ<YG8^a
z$*p*r<y(5QpI21zN99Hs5EFVhNIxeG1{1d;x)Ub_ZQCzXE#%CneFq>wkiO=Yiwfg@
zI+<Xu`OGC-h%`a8y2q3b*{BKG*urFc_H6DylBZL*&}HX;aVQgMZaV<+#!Iiy5N81d
zd7z=MAX0aCcP!~*L;VUCXdvn1tE%kR9&~i7h_s6I@HwA!C_tu6bDG7dHcR#_c~Njf
z#EM7Wibj<Q`gU3K$1h{00ZbrUsl-f@1;$zM59=Uvf*{fMKjmm;A&hhn2{FF*H;faO
z^H4w54!pXCnkMN-B<epTw_h%&Wmd@D+kV3)E3ajY+xrUl`JWj7MG5^d`iAUF`pciV
z?AKUUp?@fC1ywb5Z72S_p#G1)|5uEQz=Rl2(sr-<j`1jCWKd22E}i06$Apn6;oMfQ
zDmByS6z(08B)kHFB;}-{rj(TxZVMqP!V-&$g;If2{FV~DB9}vl5G83sP~)qa!sT5a
zQnqY#aw~7wJW4x3gOmIniLy2d!y_Z#*NvW2LdmV{^vN^!dFjIXBb(6K5bH}C(%|b)
zpFQ6=Rd&k`MG{+2Qc6`BaFJ41Z+Za|I)3Nw*2XXp{KwM)xoJp@>77zS1q5ynF$!)D
zWJ*!hpw?W*jR00MLz*cd^c>%2uO?0}YavGnCAU(Gz|Zc%Tv*QzR}~RP1=R|HrDtNC
zr)TbImNBblC(_dDP$0s-eefAP00tB#aRp&L0A7;<lgCgyd1Uh{x0N2^uPY!-ZFN&f
z*m$q-(>*E{)p(!2fwLVvslBs#7mHAE(iA}+z#n2EO+H46^(@o(xng534qYd5I}>AM
z^k-(+J8$GBbD16iY&c3BLnawi@`TuQ5L3;9M5~nZok?4d7QtY*tT4tK?#(pt5r7`_
z{q=F=q*vlDp7+hq@;D_w@67LPWxWuTM$4cSPThZU`aj}%zZ76$Ht)yC{kaH#7p!cB
zSo|}R_e1y<+GTyBV*`I@T)vymzk6l>!s36R>VNpFaGChW;PsZ!p0cZ@*Q-d%4ehNw
zMXF34wRX{0848^5wg0{juWgvVC%#!-+FD#)MOIZE?Ubx6gHwaklT*_UY*d#EjbGNU
z1Wt+GdsO6-ljvZ)IBm0tBak3R1*)jfnvPJ9IY{EvWxy3ew(^2&RUEOQkuIX{=YUj?
zq$cN5`)T8TviGN_=_sL<?Do);r_Tf<v17$W_84_KD4hXbRQUSGAJ%i$3|P-mp?h}t
zYxmBS0ZLkkJt7C=!lCx3x)69Mpjd_Q&IES$gIB`YD1|a|o<5P<qNeF;$Hox`YWe1o
zDvGgnM29;l6_`Z>lM3b{2@H3ADxiKG$gHw9IX(?egHxk}@7_wQQ$B1Z!dhfqN`o*I
z1RicCGTv!I{R*?HrGlQ4<|T9!Jvb>b<)u0lH=*gcdHOg4qqDL31vO1_`v<%7GSsV0
zDKv8)X>|?X1YfdBM_%8L?mJTNs`JEtekA~=PEdo78>CH1Jn*C8aSkV6-M4a&|77no
zkRmdaGb%G%F`!3KB9Vf|eFx@+9~Cllm*_sdSFNw<YqIjk6)OnJWr{iE*-%l)snPA9
z*Pn}LK^JAm+r0Se%$EMNi+%@en-H+1pMVw8h5tO;e%x%rvH2e${o9JW9FAD#&;#QV
zL-v24mVf8a|L2~a{}Rss23TqO(Huk&*-C+gRPXC6$Qm8k-8s6xV>wtVVHNTKx`LF8
z3?YlS>|@bmaq&?uARHEwmd($}wb>ICDvw3*7?@PH^C2#+xFjLZL2N$;R425*ITb{y
z)>^|<P?fEnUGx)lsouUmYXAAc^8<k45h_wi71i8w_1dxHk>{-UA(3Ys?%X?Ub&Dz^
zBt{-RdGhS}{L5F?msKQy*B3uUO+`GU3-1|T5{Nl%hX3{sy<@zB224h&T|bp~<T?tX
zsv;4^aehDnz|{;N_w?or<dH(1pKnLAR7EeXRf(04EL(X16!G+`RzTh5v*l}JK``xn
z21s00<&OQZvHCf4xLOE_d<_VLY7{YQJbSb^s(q74Q`QM+zIi-wu+mYCa1n}<)-^dK
z_C~9Wt1=ZAlxy~4ON0y>ref(1o9R!Hlob)gw6fqhW1PU=qw=m9TwG}?0apYnwKb0X
zfK&(=4F*}pxVxS@d3H3Ein+-k_R!Q%?ABIl89DhXq2=a~O73PxN>k@LiKUC(rw$e{
zoi4BC0b_G#VKu9T!BPebGA-p^(3EXifct)seTU?IAtb*FW6wWl=r2gBe5dGs9brG-
z<Uh$dckds}-0!s9k5%=@lKMM)5dC9A{qr6EUn1-O_aFQNl0mMx20Psfw%d++<BaSB
zF(EOCJ`}~kQl_Zr)sgQnb}C(FYflQ%T24uZ%MG^&DJV;;D0<R3$tgU%G$dyE#m<b&
z-lHIm*l(@C+AO0O3{sM%*Sa8;@KV8L!YEI4c?qtLu8iIc#lvW5Je1aJgS~Y5GF@C5
zhi>nhx_OJ<eekR`PI5C^i57?Nqt4ibzOcTcDha&(?tSUq;`>&38LXn*)-v}nD48sZ
zkkduZ%u5QCL{%(FZ8oj5G6^y7#L=kPey)i0;;LbN3QR;CpdEnfn^0rqxG2Ot4jZn#
zSZb$#Z-PVwaOce>sidI3iU5eD=g|AFtB8-8-)Cs94;Th}8y0-GWP5hUR$EKc-Z0<%
z)_l3XLS%1y=w^b5{_8ITCyzQF+7m;V;1|M^CEnni8GW(<PCpObR*mxO_c+a8F?*!y
zBQF)<D96RYZ~z{w&_D<MdItP>sQ!gxZIxLMw^=w}Nf;l$9En7r<!k;mlaMuS1<3k>
zuFl|NpL#&%ukkbvNX#-{r;<{i<1B-Mh@b8L^!D+U%medXaqAy~B5rOG=n#{l)h1{O
zdYrQ_KEGMi5n=SKqcA^o$pK2y0F3W#G)UriAJ|hNcHjKO?q9YQ<2B2>=qf5<jnMw}
zlLh;=h%Vdhg>U}NzQQe3sJN^T_{(cAMDQ=yS3pd{?_T?#6xjcUarj^H{SWNchmjjx
z^obm|*iLgkQv5;$OHaFas3&Iqv5wdNtAtDGv$W^RK0Uc48(E^flrmwr14mJjh!>%!
zXJo~11`}nW`6Z<#v7URCWySVeOAy6qa3`@y2tkqFOg-9C<|M94l;*XcIcr~Ds>ZTX
zmES9+W;;xk5n}h^`1s_NOV_T`C2(p|-RGvKdrSJQMC$g+D%n1zD!h9A`sJH9Z{NN8
z@UaF*Kmlg}iJ4VydNOHX$$N=6{ThL}DZoRPFaxd1!PVf8SfvFPHw6{Mpv<5^htRni
zE49N>Ai9u6>Imp=b7nv=O5cF2FcgCO9;s$&sl8zIcpS*c(>PS=rgf#3ahPgS+0)O1
zS@;Jh8eUm{@enZu1S5ku`2a-=9HmJHu>Af<q}lJ)^FFof)milj7COagGuZ5j=X{e^
zD}e0IZ<uGaK=^7lGK5ox4@dHVK9?+eKyb-M$bmp=@ueGJEg+BI0tKdxTYL4NH79d<
z$yJe>TFUb}0Lf>hI+X)4utvNz181Q}{M5mN?0Hh2#Whp9U!_lUe~mZKk?8l{?#}Nq
zG62jDm)2d{((!)9S)eZ9&Bp#niT;OIG{a90eeL+;q$bV*Nb(VYEP*0SAc$DugN9&j
z=v?~mZeJO2I%x1uB>&rD@N13zo6x?DWIy2!`+Kv*Uu*0ymHlt3;s2(}{!cLf2a+>E
z>G>Ra@p8xhL1*KDv(sasriThAl?_aHxSzfswzp4VrA(um-KPHecx!*hy=t-6kxFPq
zHB2-Bq$Uf=%*&66%2$#VOSY58IUOvGvr<&1Z2)G9@0SJ@9BZ+O+|)v-Vu018cC}mM
zPg6^Um&D-t^VAC?bO}|0)X~<-g0|K(wo+=jJ8#hCYll^-zH<-ee5^0xQ4LpKhFv?^
zVS|(3eU}C&$b%%*kdrDbfWh-ay_#>f%;+4~LUqJ`f@KEjUj*_bZ%YKb<+e;xchA10
zK=ggUqHu!ciEyHzX0(vHWyH8rki>(%FnyXIZ96kmS6miD!M^TQu@xsAWq8>!U{`AB
z$RIg3`}(COD+`y;qybfsxfniU5fQbC(-t&=upKq6O-3tYd=8bKth;bn_{BV|#{h>%
zP}RGNMiIF3T|8jWp@9O{Q6dmQfUl+=MS<0DSLMgGTjvKeJJZ+jxnKcNER7T9Bj`<)
zoUk0t0(VK=kWk4dMFh?Hvym91fHKE2TL5%Ons?HobX6fhBtqmj&xfuMd&mA|0}wWx
z{Lm79>2!aito~dAzRPnzrs!Xk)v`PnoA{Hd`g1$|Uzg|p1Ac$Qo)?0|L<AZKc>+@o
zJSct<AhW3gkedd}O>;0A+jd$gA4~7jb+Ex!l}X*qAZ`LFsmkJ%cUl2e)I_5EgxJf<
z%ZuRU39%PrEd-q_aHE{^c94p^jkH=uzW4#@?fGrtkte8xSS!2~trY4ARfE%{)OzUf
z?jwNZDM}r`@*RZ7J8s()-Z^D0e|S=Lqm&9QLhTGKT|#0^UMMP1-+i>cjz?AA`9{6h
z&eq8#(?x)<<udG`<Q`Em1$|V500`)|z9WPs`}zHLR)+{Cz@)ObKwO#|G!2;UONk<|
zyx+|O21IRD*4;uh92jCPi7OF#uUR>1srgc5w^f>SGz4#?h$yy;ZY*xxkV$%sBT&zk
zb&w}9T93f}Kn1#&UFFQEK3-NEB$%#XdBfCX7=+=X0{+>AG`VqoP`_tO+rTA)7+@s_
z54vvB`r7wCN?f=q0W1j+7DPZx6(M<^kP}n0K+&E%8K|F^p=0q^t9xN701$7A^N{rl
zd|n2dsD`7%?lo_IrF7dBcJG?IwWT^npq3*Up_sJjnJIq=*qR$3wI;2VhLS)UFTSRf
zq9kH7L;CoDS74&^;Im`Voe7b6XaLzo#2h^%Drc<^=!2bB&$+)3rGRFEu-dFm`&FPm
zfW1~eFvzs@@ASZbQR8F$v&QGAOXGJj`cHeSaNqq~jnDUd?Qg?2R9NHlgTMM-;}iF*
z#^(oxC5#;XuVmGQ!2VI=v&_pXStBo!uIM*<N>2WnQva*QM@({~&Q(WEYs<I#HOyC<
zMg%s8Air<Bu(l_9xwa=;DK;f9zo76tXH}Lb!WXvoxcehmD&p3)g!;zi<{ocxLN!Qn
z1%!d);FKC{kt?uP2-Sh3Eyq31YZB1Qy*(-jVR6rOI-J1lW}oe`$7`uPnwRxpr#xfa
znGMZ&O}lky+55K~&MOhGI!_Ps?dwmIc~XWl=8doa(caUN3`m!GANIuJ_$+r7TFVoA
ztH7_cUPdVc$tC6ZVObi6`9T#GL#ft^4$Uk-K{9WNP}veC{O(0{E=sMZnK`%piAJn-
z+&=e5#~PQzdBJy|iU^LZ6mcO-5wzL-7Jq2IG?hFk+OFXc@?;$J0F}wuSgjP%cCTGV
zj#s>>ANGphz8i|->C_CQ;VVrM<a`<T%QAXUQoYXA7S`DZxdbiTr{(|<l&PT4Ea|ZZ
zBNwsk6+7Cuwl}D?YEXTmL)$})-tL+PAb=w0vdJcfGk&RaURCyo*PrQnZ@c9J!%jbB
z=)+48Zc5saX`Uyd6Si$^FrK%C0PB%`(^B~kB~#v?Ez4YM7nd9eXH#J|ULW#M_%My0
zc-la!1BRi_1_sh_vy;&1ZHs&#4Q9?#g)gF*KLhWuLb-_PvRcr>zBrgi$_{u=FG;Co
zybobuEueZoc_HVI8U4}Q1GpQ_&}f*;b#N)VE5Ak^yMYFBV9<kI41Lj1UbCjWp1%PJ
zLVgPyzaqkz-o!1S`N${3vf(onTWZ+H2Oeq6PO?~Mlr`jFg_bi2(WUhIzM?qtDg`XQ
zxUCPa&KvIm%JDSFFdVL<2c|P+SRslelG%t#Wqy#@0n;vVaK5y`16Zzg7`2WXl9CEk
zLHeumSLAyP@O6AzcIFMp?0nujH2J1l9>bK&Yy&3_)?t;2*B*L5hff2=W}C;^C|I$3
zA3Cx2;MNm#huceZux?Zm4}#DNqu?YzU@6id9styJkE5d}g>MP#>jAGL34Q+ECe*V1
z@|IklD5y@U;7;s$7Fb;LN?*2-h6aEv1#6`w##l7d`F36c4g#q0Y++RYf^H;wG&h`#
zK+A?l4%~riKvM1>9p!l3NFP&y>GZTw4?Iwyuv{O>OuR*r?SV{hyz7fRgfj1V(HVea
zG2ono8Re2lP}Leq0=%T|=6M_5)B?t8WU4P`_x)8|eWh17@-8dahfP&D3d#oRwU{Pv
zXEV%Rc5XB|5Dq|SAXmpeq=!vQL2>mx)Ny<FxyXr*3_}j0;|Ks$h4LAHRkC8tn_FTP
zq_+f`FHbr<08}p)0L4gGjr`$?jzO7cKp8CU{lJDxUC+AI&@&i<APPc`Th|B?!Ikm*
zvVt1bJ26u`?{uty0IbVDZ}^~{JY#Jh1`?A;ep&ouasJqT)tn?>078>-X$cerK{Du&
zJMjA$a~20;9!5pGi|EnwIk$LELf0x%5o7`6){!SHcnH;90wOBIr-r0Dt1e7Iq5EP3
zjpXyoYjSawwG(5B*7|Jm11x}4JphdM$wzzufn;=nOvZF+6R1xn$43WhH4OUtxWW>Z
zux-El*ler{kp0@SZ<A;D)}?MA78^dEVgER7*nE<pA|DC?+??SosDVx)mwZ8&(n~N`
zr?~KKj~uAvfjc9<8l7+!R!^6z46cEA`7qds;c}%^vZ}5AP>h`%?;ck`Cyc=o*JD9C
z`YiTsec$xX;9hu--1&_u6JVem8M>Cq1|nHnN5}5VohE~%$#q3Bn-6Pc3s_LONTAQ8
zh@OB2%f8qO!@C2~>-GE9Vo-3fd@Z_t0~bpSG&1m{IP&LF>(Ka;3_5knPAHv_7ku-u
zeemaUjAwAxY9mYXjypTfs&gWU@sp3V!Wj^7vk!FVSPivx5rEF<DFm~mbz~LVymtZ7
zJ_C=jOnqC>&?Q)P{{et;QLmT=IU4cAPxP&kVwS~=swF9mC^8k$fX~k^Ll|s7#Ei?A
zqEFY6qtmQHf;iZr^J{cEdmwZHS($*}B&SaXX#`yUP=MpfF@bu?VayuC=-uKifWvOv
zI`*ISg=&*}VRo<C&C*!{nt4wo$?nERQx+JoXyrXPMAw%KhLHcz(*LF~g_B@I6d7*t
zjXrkh(BtJ>6gUfRU7YQ77D$mvK|D18#c9lxP|3}H@})Fd+<ZKi*#i+2r?Q*%Kzb|Y
zvKO~`j0JBLz=Hh=b0-c%s_S8BcTX|v7C;Pv4bY5*f!zSMQrD89DlJZ7&!~6sV{{t&
zO8~;g4<Hpq1}n!TcZpa`oGIC~UmkFu<$US1`GG(nI@AG~uzAh^IrSJnXwv7Pvijg3
zysHjc?rab4=Awu>irni;Mf(?<i!gH?urDScGeaV1@Xb8^ZqJpF(mFi&#!Qtfll8|X
z&Suo!3dpOuo<)&#plIh5P%ZFS#<mn7U?A-L1wzjOW&H}BjRfFY4J!ZSbcu#OZo3y?
zVK|ozKx+blHiK`_E|Cu|S<e7;hmIFI>ORy{Z8~rE!7wkO>7lNq$5_zDBodVcL<CGj
z>h0Ug+T0(!zx3%+%)Omp3l>%qrgNDUs3c+u0IU=JJkB$vqJHERzSD6GVIfHVe-?uL
z#clkm9$fQ1lJh6Mv0Od)r$yrX&hj&o^H=Qiw@!iYOx@2;fq&&WehF^>v0wkUe*N3d
z@-NLg(>U!?@!8+12XEg<$=vtWL%9>7f_25<)szudBC>e7AYmpn4FtvK340u}!;AKQ
z_eTf|L3WGp^MohrD7yT}gq8~1KvYQT`{^ymPXvkR;H?tRg!QYyYJbK)H`fns62?J~
zIAe8$SsuEodY{H1?cOwX7SyjJZ0gZzh>+6IQ7XN<Tqpnl?`yqom8?V3AmeOXDh~m~
zbudWVm^oz&Anx%WPkLJYZSX2I4)T*TU^tg5>;b9pJ>0V#kS^Pij+0Gd${jVT?4_G8
z#VK$fH+NQoErDVi$zP=^8(izC<#w6c(v7UfjcN4`;cURgV?O=q$_EA?$&@*@Yqg9=
zjq@cRBg-D+W|L4SLuj4RACHV(le~TOS}O~bOh3*O7J?{UX_h&$UKd5{t+-49s+q&k
z6e=qfO(muZLOh0AVD)-*<kvJ|dTvZ^wA}IZ2h9r}IJ4dsKkg=AqvpZ!X5irAa%#*M
z8BEzqbMz-ji|Mj;?#lHe{+HJ$uHO5-yyx}p_GMyjXK$vJnbfsZD9SzDH<B0n!jk8s
z5<c|xa~*t~g$Qb~zRZRp*wY+@UW`wY#8EOAG@ghnj+4u}#!^AS084BYiEShT=DGLG
zJ<PoU%^ok@p`L3fLKNR+KdnV>T5fO6WKWjm!qEEcHQ!)!SyYJ~CC=(x^VwYE=;gYQ
znB}^Vp`p2g=T{@IZ*v@L%L8Zy;07QAi*=mMTQKNaVLzlyDp0GsMYb^N>^m}yz+A<G
z;Yl8vDe9i#l_*HPIUO$8cIpcJi$N+imiG;EDU;R-zX1IFwc&}qBB+IZxU^O_NID5Y
z?lZFvc`FQ66!U|!ni_>urt$dG#vS#Ojoa$GcclyC74NiX>)rA#s7FJ~$=MoK3|1dv
zdu^kxK{m7GL2_T<>RBk@YF%h3#2j}N+~}*Aa*B#$!pWEvnTnTEzh5NFbs=6qgR9F<
z5rW$9rt!ZE>HiW)66U&p=|bPN^yS{Hf6*_6($MevCFfsCv;K!#`oF5^zk0K-a{`;+
z)Fba$rB+5Ij9-R|M%gM|3u*ajjO75ul2TH=CANDa0<{%v!Rp${>oMQ6NaFNN?QGtU
zx}PmjZRI`nM{Co=+|`te_zXosfdg0=M*^#<(NDA=yD%iIKk$;uQ-qF9#<hBDby!P~
z<nz~~?^25nS>2#3{W8V^U%g(Kf4T7C)#8gc?>;~I_V)9e(`NcxdlTQ81Df}~-rCQC
zNa?vP@+$_?u`7eIod$#p*^p$Wehz_lVh8D@+XI(NJR$<yV{l5qfdQqZGfrR^D(ak;
z4qNX3hSWZxIZ<hotf8zRAdT0qU#FX>utD3c&NXw3Ro8|cn`$?-d5V822zF}?8Vyz-
z{m^`?b=Pgb#L`0DoE(xKk}=#dGO}WIS_lA*dvsL2C;-aLp=h?B<qM6m&zF5!2-40=
z?YxKncnOyP)8}+{x)@Enerh_VO<4D{)m7-r+VFgM|4E1h4j%1$(80KVk=)y#hHV~R
zqu0|N8;QSEMa%wX33&hX#zCiZXAi~geR92R|K7DKrx#z}nTX#cx%P|g$A>4|G}qlv
zh+BOB@WK84<x78j1ANn*j-y+WsR+5}(TdwnZEGzRQ77T>j+iOaD;lcB*NY?Qtl6cR
zRB8grk4K1O_@$YwNbyV8Io>&&rru{>nNAvk5i$*C&HWFUmefDUwEXtipHDwaB9hh+
zVyh3B=p775*J<hLLuk`iJ<M~rXxPT5>H;_j6;it(K-{lY5kacdPu7k_p^L#`=jAnn
zB1UYt9}2sdR#zUquwy$Q<`O(eAhD=Lsz{blsIQ3C?y9Rwq<+?{%+RoFs7}RrKB+A>
zjeAm8vZtgT2EzID!enq^ELa(*tG>QWriYCn5-n;2w{2;?4MM&f0hnQwJ`AY$iL~54
zGNiE+0a0b)dfIRaK217M0gGBXl6zC$=dd)z6Accir32MlZh5vpu8sHMffWFP-V?{<
z0GVC4(su-Q>;-BLz_b}YbeOz3jtwJWcj}&fr_uacW;yNNhkBLMBz@u0=4RL*3gHxl
zfY$@SNZaTx3>g8Z6^BVS20dWib>zG=ydGUH$WZlnm19|<`=xUH!zuZLz4%4ZExR0k
z_~?IB3;n5e*!|zrB|;hbuU@b}xw`+YUa;SHhQIN1-&cY#p9W83O`*y$M9va*uyNt-
zp_QGV=>6m)aeKLqm^QQC>biu!kCTkGxTdNsK^^WChm%s(#9GN~DoW$j!3oPLT^d+Z
zew#y_=N_DV5}OVr%2R<joRcb^<_@HxG=r&#Lqf}>lO#b?w%D$^RHKoG)QkZnr8%lg
z(~?AJ1VtM;q050fBjko>0rQWa-hcG;<^1c1Po6K#e0cW$-K$e-8qz~qq$>l>JgyWS
zQpTI+(vF0yrN~W1bCU)S$R_*TsSo$J2B@q{IWc7rV4JPEilcN8<8Pm%yQxGM<V%Oc
zJ2Q}DZu}v^k_&ac*UriwNGh;P$tOvscUIO{7&cjfVME}dR(lqnXuaWb@#qXK3(5yz
zPKy%5t7kH#@peZEjxUE#=WSf=mFjNZ3*?AkH1y2zuYnM#6rs`)m;V-51{A6s<pd9*
z%E4dhf8Fa~+crS4W|Bl^M%0eUa;wtyhfWP~P#PL@V_m5}xA7Q>@M80*VHR46i+b!+
zd6m)(0L4Jb?Wf)fE*&<?zNcgn&AoDLbKTiB!l7|vc;B(|L-Db%=4-@Ojn8mJ1Qt8r
zc8AVgxuP!Gz?RXb%SHgyd;lyEM8@4`rHBI0hXc_Y5+uQ?_0ue*sj%T5qY^Wdq-Z_W
zG{cqlGzW-ia;NPL7ecMJqLb)V5D^Wm0Y?X*M4mvYlR-DKEKLo_aP>Q>goKzQkJDhP
za%f>(M=8oLa}<uI=AOAT^`O9Ag3@CUTkT$rR&f)M!K(Swl_;G1szDf$9M%I?%Rr6e
z6f)8R3S%DKRL_Z?yH*VkNM!Y(vtCoVKqcb~6mP1rKFGu7iPn>9psvpokmwtD2CyXf
zARQn&7DxwzkiS2F+JFT>24oPJD#S8a1TG2_1;daq5r7yRfJ7ppVi=gD98^Y0R9+Q^
zRzynxuxJ1ZC8;O_P>};*u~M>fvPw#dqKaw=X#!GCLtH^eQdwV76^~LegyS^fcrApc
zfp8a)&@q=@xpKK@9B+aluKr<XlGR_SV7LOiY$aWzrUcMd0~l)qR_OsO4FGCHq3KS8
zMAFpJ)n2Kur*E**$k@=#+|+!P+3GbGSWU9D@IPjSt(=}c#?VUI)KRF3%IP}_IemFU
z7bQ~<xz!t$S9z;g`u=c9;noHiP)O^@YlS+K&OgdJf6$<K>Q16{xH=<R!#<AWxQ}WA
zu(1HxSpr;WfK3d*W_tjcvd+N;AK(nwu@MmJ0f_Vl?C}A_2LPf%WMXzp$A?SNtf<xu
zD`B>WVQb^yXy?Rq{85k2ba8TaWo~qL69yqRdwDFYvs<=p_4T&%S#AaW;S~JNwEiqi
z_wn1}AK<%v$F`v0z>r<RyTe0&Rj7wW?26hGz9%LsHhxe1zE~|MmX>pp&W3bd_bffn
zTz#)X{VgSizK4tgs@CkRC5P78L^KH5ai^Fjm$+u3;=7NX5Gqv5{`A&<S1i7JYl8to
z$|fU0f)kBNi9w~sp>p;B@?!z~ed4A20J$v5ayFnW1zFBRR3!syd4S4vcvA-8L>{2C
z5YSx$U?uJAD+de+fP+;MgEiRmb@CS))h{&ZTsWdXbi|OG%1P!W9mwQm<s1-Jz31j<
z=N0k`59XB|Dk?26F0UvRR2{0S71TCV)i>2N9jk9@X=*)j^h8HXM_1da?vqEm2U^Y!
zp6Ts6(R=>f@JR2#nenlj@rz9pms=;sPflJr*MFhs{77H_*vRn3!J*4z7biw0uk=k`
zzx4ZT{(t!ywggxM6PAt&Qb{DFu$8?9UqAwVRNAo|e)!(Cw%k^bt)OaM7K9!=oVTCB
z(M>blX2Vs^er`LEIy_RUVim`aF&a6{#rn=F+2#A?t)rw%6xdz~w5~Pr5Nf{Tb61Ov
zs${Sh<4<iH?fTPS)aT7leJ^DnmC=+A+<&WF;o*$v9gfWc@$;1d9Ktef0Wc`WOYc)-
zS*vr3-|U|56)7d!y>VN)m1Be1aj$y{EOkksB}otI#QBW-$d^BIFnM+FY$j05^zr8f
z@+yJJN4$B*%e%R3ke1(h^A+jS{Rg%uDDL&g2Bt6S67IDJ?LK{R-TZakF1%_Wkz}}Z
zZ2eihN}%niXtLg+&x7+5bvj#PygI)e9eTB$dw<KP7|wh3x_d0T_eVuGOrw69W4_}&
z6P4D}zEMjM!v`7dL%k~_?a%1TPy(d8AaJ!AlZQkpkUpf*Y3ZvFqsloT!YJN{%i$4A
z>QV4&{X7MlFughxl#cZX$VTBsU^pX<<3wC#O{d=hh!)i@%>7$EzrbCj&V{eSiJ8b$
zD~ur&(-3s4A~vzl0S9po!lx*lG2iOBCjwHzHB}i(Ekv3U=ac2*1jM{C^HXzaVu`X_
zXz?PRcVnMK&-pl$7U4mZgQoMnhvgnN@ar>o*fFcCo)%5l<mwrd4jnnar2VWJTt3^t
zse8?yO(f;Jl%*Gl7}`-u{9G8N60o3D0A^E*$l7Z?b6N%zn)s?ZyAXn7VBl#cp;qqQ
zbx9HR(;=tE0*Q8A-r-^^;$)qlQCcr-e0Ws!o;F=;cb7;-uvPU@=`hdBJM4E-PQ8qq
z@04E^7smM#7trJajdU}x0ZZnGTgmP|5q_jYrL5)L-nAhM!=$ZrDqOdc#W|tEpEe8t
zCEI{(iRMrrDUk;ct3+MP`kpk5<v%*cy}!W%rTtt(cRbQ=-4Jr}HRdY)=(=p%s2x!6
z`kfTy%7GJ<nuIgXH<6S_D{t`EuVGGlhaMT1tiNi0>oO(&>+TJfkxPik4P_q=1rLi4
zKVQf)dFC*_*;tAW!eq*-7+p#i%cn{?-?+n-f<IJR6&fS9LeFSUn+uXMUTujQOR@PD
zbZPajd#j$xd6$2BCj1P2JSDqUQ1ha8!=d<#e8m$Hqbqm5i<!%ayxRSy+orukRCV=0
z#xo<McLoTKBBcAl{>!&b9-VKylR7#RDOq?izbTsjSnI;drLU0T*4aPC+@@aqG4koz
z1+BDn5Ws3enye3&9+OM9^XwDW9a7Ms-lUrjMH*}QRDYck0r~t!KHYK@yq`2^rOTrP
zI`D1WV(c%INVS}Vx~Kzc$~1EZ%59oWFmvUJU&yb$R+GX7#pb}5o?M}Eh?Q9Vcpr#K
zP)<fg4-4itO`fBp)+W486Ls(j7CGNj_<Xn3+hMSg%eW|{ywcpUCka=aBWgKK*+E?F
z|AU;fDtS?obwGZa>@uxkbbJM(*4_Ci2%e)?IlxA}V?m@brenO>eJ)tu)3wp6((G28
zAF)cl0L-8)u=z4G{xVLzCmjlN<hMr=i5oC5S4b~yOdpDc5$x7Ua9t7rIPH9?3#&Gc
z>{}dFwT?SQun2a@42kkrwn-i{JsXaT(1jiFGCuRvATslkTZwwpr<J<aIoc=b>Nl`>
zi=aZIvg&R}{bY|GUF(G`;8iux{CbAQ<g4<<{HqVkA1tM6L`hmX#Mm!kc%UyiAn0y(
zW}5~E!pyIPfNn}O84{p@<~5EVJ|_{T-B1d_Na-{($*3B2EbhHsm69}16<6Pv<rWoF
zTQ55mKr-EPrh%63bDL}#Racrts1uLfL5cB1Wn5~)lDv7$4#PFs0U;Hn2ohb|!-Snr
zki3}dM^m-C_=(|GOM%rl4%G8tR=(Iel(>o#LXFAdI92LfVO>zkF2%Evbj3o7RU^~Y
zVNUcu`{I{<ez}!vo;HnEXi*?&*i}5ctkU_eDzmq)1%b^QH_-94GIB2(&Oyv<hLOH{
z7WE*w%_WY{$a2rzhp1xGRmDwGan-pKOW&@YaJx44$eN9iJ0E>C`b^Wqk{+l1N5{eE
zYMQ*+$FIAbcz;B8$ID1{tRu(aO7I=x9cr}>qGRL6W^R1r#+qBYlc4LNqLgDBfX?@B
zSMEJ5XQ)RJbZy{$wm&vz9z=aReE-|$O-@$+FsXMBjwznK+;cV7zDBS5N<p;%YY4Tf
zz*5K>@&i@s0q3#JAF3sctouL}Euy+gbT?v64dwakJi8A*2ZMulXLg5m8Ac=4F?(5B
zp@oe>A^u7$s|Q66P9%_@1JQY%J5i=vat|2lLth#6L>ek$8XpCWQsk3vg$}X$hmapc
zocj$z?!*$`ou!@>7s}Z%xCH%7$D!FJ=YzqoZTy<~Vrj#^Y;)*gk>lIO;tt07e7joO
z6tPX|xChnm>)QjSUh~Ec4C=SW8zsBdE8bSWv#ODQdv~l`XH}`qnQannZ;x*0Kb4s4
za^J!;kzKG%eis{N<gK5t8EV2QCe*x&q+XQp=AX=5e_hxuS5chvXi4GA)X>?|JzH0x
z_Fv2mK=c=V6QQQByHA8xqmoZBaw?o$M0h3vn-FAt`WgWTyA_k%bz?>PWY`zi+Qko0
zf9rI`IKZH&@5e61jL=Y>IbQR|=8V`P(Sox1^%?0Ny}Lgh+m~uO^XkKgx<`(qA*qtP
z95!yi)vn+NOG2h|iMSKyFM-+qW}~1bm7UigS%o;uR-aa`?z~#=s2mjUW1TQmrrNi`
zsP2^2wBMIodtC&u$u7@_+Qa#0_MWvkya_UYP|AODv&y@@(Jf_6v!U3i_P}OB(Oeq;
z(--Czy_V7LYiXfn4N%V0m8l&KNJ>1V`0lmJ+&gn-X1>bjz}U4s=7m*Tho;1jzv0B(
zxjE4udtCPN;-?MSFKz5Cqg76=&%5+|A;v^mD`i8?pg<OthBT`ybck{zCfJv!ia&-<
zin>5%-ixOC+M24Ka%i=8B+IU`3ciEB2j+c{(|Q)^ruw-NaDV%r(ZvLks>8vxsRlJI
zW)U|I)^~wnZ*Qu>?ylhvUvpOenECAZl2|V-XNY$DQ6(20q|AtR+ywoS+7COVM$$bk
zk&~OPJ2>Bd{}1omUsip1w69`L<EiF~KV*&W*D>D9GPdSzhfauA2jU@9yCyLPAs<a<
zH(AZi?@`EM?`~s%lwsrXobdtVWWJtiTW|)Q6ItZF(k9WcU>}x&+T**sTAyOrxlePG
zo_?oJV)(wW8!=RKuGj)0zBUo^$dn92uZxDPU*tZaB<lF7RrSO|(9}9yVmiuDh2^{X
zhV(}pw0nK>MIiZ^+j?m>Xv5;F-3FF;QoM3>{K`!UPhAp%gOX(pQoyarfa58M8D_;v
z4EPGy=`q(%%2kw&NTTqP<xId!YRMWruGe*C@A-)91^)S19@uxENuBCCmS{E+k@QBn
zX4-4Zg*`6C?qQ4I@MKZvX{Xw8!u<-^N@_$xZAAW%wW@o1S3UZ$Tsk?NRp2grWHH?l
zbzq#6k}oVad~-m*&uha&;Kz>|4>VU;PqB;5Z6o%gZ+Gt5nZnUC=fs>$Y_LXUz>=Xe
z8I?hF*>{A7iY$J3CangR9K>5oiVd*ge(uZ;d6S@J##}d*hC;*kn`wWG;)|xC58%9@
z2GDDpjOxdI<V-!F1_YTIzM&Net%b5-K~&Np_tDS`C;2fCnc+q8_G+o^fuZugi0jt5
z3hbPwwj3}puPQHFZmB99dXwZ2L3B|0fGTa+s{9q^Y4`S~<EP9wxVss4pvqwAbXi(p
zo9r%#3@we{=#JVShTw-Ijx&OH_vV6n_xnfXt9}&Suxk59&5Sdh1>QFa+Ab(gPh{0w
z6B$zG*0y}%bT*vNmaizf8?i@sC^IQ-#S}DacWPc?5Nd9S9e*ls7M=3s8f2f(0hdpH
zdqMeos=1)y?D9_s=iU%L7#G^g@tFsGK3Alv#c(%D$Hn*{W*#I93R#@ll9p4P3n#aV
z`N~#(N-@gUBTkE6cc&XfuI@{ttf(#(qky8_5batkM&LLeNyf3T<V+z+N0!q~T$8Sq
zR$Op^aVk@EsUt0PKEEus1eF5{d7B9`*mmJ0I?5D5NR8k6iG(60b_C_0eiZ$382$8#
z`HjKCEt-c7AVnY1kh<w@OHUG4L==5AE5CSsPh|rd)ul6bJX5AMbL5jUuOXPy$$21`
z1rGOUYO{IfQC_286w)R*eO_0}!u57+w*6!CQMWQ=Z<*j=l|?YBE({T&4>j)H?uZiA
zAeuYLhnme-X`vu)VTf0s{ObfTXZ;#iZTw|4YzMte(b#{F71Tx_T2mamGNopIf@*Y<
zs)ed?^Q?h{t1!ZH!|LM`_8<h)5DE@jJDz{VOx1y0w<o<0TU6`PRU7|-u{WZ|;}(_E
zReNlSgo>C;&(N;j@z`meE&9z^P9Ugucv=lLP>L$9j%cZNw8PxVt0}w%$+ak?c~)!V
z1qV*KqU9mZWCX(vZG#Anf34w+YwD+9b_62?0+;{*%lHr(wpdR>LFU7~^Nf|+svGGe
zqIVxO%0wV~w3`Rw(5Dn&r$3WDXh((`n_U<5YNl)2g5%H?P2D9X62Ye3R?y>iP5ZA@
zty8F$d2{rQXOo&mvAjj`85e{j9~3i<U*XbN5Z934-w3lW&gq9VX&<q*X&7j45okA-
zbxA#adc+5BP3$~!_f`|^K@~aJ^q@jx=?HT^ts3N8FV=e;F>`#iLfc_2vQ8yz_mVcs
zh_mi}MAJ(OsBQrHFivWBtMDyVCpx!7E`<OoCWR}wvFUl8w#D?FS#b(9$I~?;Xh?r6
zArBp}RC)5_m6M%jC*PhlvlcsvXS83kN;HW>Q?U-1*)|yDg!rSPtha5HFWa6Cl<c2M
z08@@k*P+x~9Mi+%JW7w7+CbMFCsg9_X0xL4)1nIM2XU0`#1=<E52O|sg`3i;<EyMv
zY~R1R@Qa6ZCE!%<YNa!9(*t5^JnJsl<LIK*HYK-N>$^H1x0@fi-HEI-_BHSP=-Mel
zX&Vo3lLmI1jFRL$(Q<K+7ProGZ`v2Zij(o{62vMKo7&_}&om`<gj98YT<SmVP0MUn
zJZr<~Hobi&vb4jpNr|fAdFAa{!`0`?Z?>zTAq}3`5Ajttf)c)8$RDGql+m1TIz3CJ
zhKuo4{M>Vh2qUDWgH2C{c@rg(T(q4H0(zl|%pND3UYX`zbT?W~X{`j0FdAiqLG~W(
zIJY_iBAF1nGC?1Hr%%hFyvw>@G{nXrWR<u<j|}x3S!sZ3IY9RsQ0+Bb^ayzSX)EJS
zgS~@_ddL6;iB%yEZcG?-FB|mi9(-Cs;IKs9_@Y%lQ5PN!`skhy@KSLe8$5gyvh4xh
zZ0vl5<%KA(3wuHa^R-}`d7?@V>teevBwETu;0pJ4$Ef#+3dY@&m%4{C?hIvp9pWnu
z=UNWudkq&R3>TLTmvj%8-5D<bIxJ8csk9ua_8O^87^yECY3v?pzB6+4>qv{z=yA)@
z6V2IP6*Al2RG(~CIc2G_qGD8eMq1C;V08$|V<tuO%BXLzsO=r?k?zrPrHk*rsP6Q|
z;awGN9?P{+6qCc{(kA3v-^krkYnNqTEN)dsRVd#MCsbENpK7HxwaOpymA_%HdVIp1
zS0OjTRy@_Kd)-pw)5IZFG)}dP;}wMdidX&k?y|1|f;)yL3amL~Xr(hK4IqQcMI{R4
z*{?+{h7_aN%9ECp#4|Bc*LI>OWsddj2=c29$W_xMs6T`U87vv94Hu=D`)RDEZkC&v
zr27#!Qk7FDiB1^x!T~+6Np+q4s~&y(lrS2mxmPSW6ca}^wGoY7x&Audnoviqc94zM
z5%i%2)1GeJ=DXvPN6<FprUV~KS&5cj%F1n8i0Uv*zca!o{JQ#?8wqE|MZI<Y=+pU_
zyK=EF_8mue#PG_c<LeT2SEh!drg9I7Pw1S(WLm%LJ^Lvl?V{eZN%Wymi=@z-$eF3@
zxf?Rhcu$xcdV6Puytzi3F!)q`3zUhLNR*lrwt)Gl>$MRq-mZ=OW4lcl;<GmD_}v@l
z6YoeyTF&QLHsvK|8LditAiETRer1G?1>+(jvvY~JY@bCkm;BK=9e1;MCKqZ<lRpGF
z81L7zHEq%%o!N1(e9s{_SFL+1Zbdtr6$96KIhsFxV73o!?m2twqVoO;DWm?jZUa}#
ze#l*smuu$yEsy(8H+bG9S7ms&u0=|$j+w!p^gbmMt=(0qCHVxn^WAL&VTb0vyF+JY
zb&ukDxa*WU9Kr9`y@9B`c;`4Cz$m9W9mqG8riW7p=(d{&vk(W7z+IG==GA;^?p@8m
z&+PEVd+xWLFOIEVcbuk9DO)v1C6`lFKT`1TR`e&L(yl&`pP@6Wtz7958>1cs?@C;?
zi?Nk^pf2Bza@ApE&OE}+K^N&18}Oj;ip^{_p3Sv8Ojov8I{RSTC3^HpLOlvLGc#|z
z`mh7Qe*4v#wbkfk8%jigl&fjf&|q#A-^KFYy%qbO)~m?8zUH(P;9<+#`Z;;aJF6`!
zEO*6LH|uB@MUyZ+kPE@eMJDGN<K#1Ns|()!y8Q;!l~t~rZYP^wn^>p5ov!XUF5!mE
zc@8poao5kKf8UO?-(-3&xwVC2mkghIS#7Y3+~6_DJaOq3THU!6wxxK(#(|R_=z)!Q
zq2AyeuU_?rj~keu1~-}S+|qf?Be^E2eG7X2ji^IUbuEChbavC1WRRq)uttjvw{UBE
z0j%oT0iY^bxjefQJRARs(y(uVv{m_RJBoiJLew+_<-9F&33Fc=7+}8IS32;3tyqwb
zOY_w#Kl=q=^L2h#u0u5TJXZj}8*$lgukli6>bcx`e>3Z|+g7W(yz+NYy%B2`K-(W+
zsT$OM<sHrWP*31C7wc^s27SWH(E$xXK8N!?%}Q0y9SjnA3uElqC9-|~F8W)au7hA_
z--m^y8=_vqA{ec6vXoMv#q@y`mCF?QVHeb?l7;-OpMnfxbPsclQ_Cj<V|KhaEMpUT
zS7x`=g=Z(|yB-yucB<O_^wF-WmAg$`cXt-;YQDU?VmAtBX2Fy!6O*NgZ?`<-v;nsF
zi?=@tZS#5Bbl1Z@yVeEV#~J9Ct`FT`_$5LA@WlOaU9IVRwkVe+(Uiqgnfe#9+DDM3
z+0`DKP!2aDYj>gju&a1xRRSCgpk25&#M09)2xXuozpz-b1@!@pB3UAd?&H%GE?inK
zU}}7Z#zU*GuXdl9waSn;*)=yc@xX?Ux5^6X(@m#pXo!jUULO#C8cu%=&u`-ujW#;i
z`T5+i5dq;+1;M!Glk7&>EUYs9+67#?%c?ciOs;lvf2ECg9MhsjvH|D&rugd{VTz`1
ztc+0I*BsJUEAI5E!TjSB51vO(g!fZmqg&%fF%{o-(SYGR=#G2MTG#p~25MfTyvC;9
zkO!RNKNuGq8uVI@9hD&Vh8Xs?2f+=&0enf}>&T-ke@QDcxU!_Oen2JW-MgtH`^>(C
z$PKym-CVh0#B%Tg?pa37brpKWakw_y=2&{LcbH^b&dgx8=GJ>(W8Xcwc5M6od;Y`I
zqHB)PJvTojS=qdMC27ci<H%#mS&@>yksjt>v1HCk*48Qp>1x0lFP%z3()lEjHRcc3
z1+IsOk*^_wb*SxkTu6E;^d~zB(qb4snWyUz)+>4tKd~~9qy)=%iHUcr;k>?`eU9TW
ztc7?E!$b_Jebynham<?=jBpgGOu^&=D(4_-jgJQEhELv+vkx2JO^aFvVW3BD*l8up
zuh^6~SwUt}vc`(t3~NqbTRc%;&uz31F@6!aa0R?Xu@2wuY^@mm&Y7WB5anX0%t5Lf
z<+Z)4CfhmJ!<jU3=}IeyClQFU7J72Jh}elXfs2GAY{LbHd$d4}KQ5hiqtcw?<|;kw
zT+x1y3L8xR(9H1Q*uBWbdv4fvEot2rb<)PGW6xoB9E)v_PYOSW9){a3KPzM8Y*n++
z#-=J>Ow#Rm9zjk5;cM`YqXA}{m8Cv`B`x<Q8s2qQRIv9+TDbVO+KQ}2f<D%N+E0Ia
zVnzPxROhrdm#ozv7XA4&nb?3VyGiG>4sYCER<}>RM_0AaCPiCWI>g4}0(K&^S|IY;
z$$_Qz^v;T6>Cbo@KdrUbDKUS%ZY8cl5_*T1IE=6oTzy-CM{whIjrzcQEH&QtLmAj7
zUXq?iEqu$0<vl}nC8=L3J|QAx?ad#q32MIV?x%oH-c%m!IeAq92Jcwsw_~uuPt2?K
z6{mD@yg{8hgVl$pb2d=KyNaDKba-LFq`lc6QCD3zt*LTdpW~lSj|!+vGmi+NPG4X{
z2H#^jg4z5E9lIH<Ri*yD#px_Wby{oXu4{uX4i&RJtvd-a_=g9#pZ}C}3$dkQ=D@nO
z>5J#7gdP5eHF;^S<ZuE^%i+`wT*-%R_Y)T%YLdRb8Lr!U`$B?k{GFuqclF!Pu)p>i
z|8b!2JqXg+It_FSx_L+`?&IlcEslJ~ZS>Ns1X0UF<Z)xEYQ+~JsV%3aclqylfT3Eq
zHsa`P?3%u!5!}Zb(f~6Fq*$&+u7EKCeh5W*G1AZ`Baw$MiA4S6cO^ZdE@iXK_j!yL
znDEoB=5>+KQ|^SU{{w44l)u1)DS!eM`&wNY&3HyMrcsUNiNc09c)lH3W*|x=O&?HE
zlTr}wB5nDPpW?@iTP^J%LBLI8($|nb22yAb;Ui=GG>Z8pq*y2VTM#tZn0FBb6aciO
zO%n00M&9I5n<S$L5~;_R6cQ)KdJ~7bMv;>ICpaXqBOXy1Kr+(uj?Bm-);P4aglzIA
zj!7ZB@|LY<l^_r{QA8#cLdUd`!X}~!4hls7;fFo=;SU--*+rtzN>u#8aW(`}5EcW9
z6p%s?1|j7{oFGkRkm593)ZCRSv#0N^QJ?$dXFvU^##e462o4lUKp#SaBisxk1|?lW
z!M6~HQpA}FQwTy8+Ma<{bRik_7(xkJ5rme2o!#uiaX5m4d^RKn1f6JrTKZ3z##E*=
zrD;uVdQ+U{v?C=jjX@M43Y`X3s6!=cQH^?3q$X9V%M=72sE~(Im?EW0rD|2JdR44u
zRjXU&D%SiUhy~%{qFp6xS<QM@w5C<9Yh`O&-TGFz##OF!rE6X7dRM&WRj+&HYhV5P
zSHK2Vu!ALRVGVm&#3oj;i)CzM9s5}Sy*AK1R7lJorV80cQFb7feFzHv@Yz3Hwj-Ve
zt!Nb@S&AHC53#$^$TaH#&W4AypEWH-P^-_|c1*RbJxFfJ<6Cq6fuRjSfg+51+?S?J
zq#lsNxE2CjiBMs=!5wbMnjqYdkl>aEd2MV*7KJ~26e4`+*-N?!ukDJcvIwKfag7_I
z?$&l7ZE>!6PNAry)%OT_@YmK*fQLln;aNuj#C8ch3ZqyKzyki%CnK`o{thM)6Q*#2
znNVR2XOh6T1Tco>+u;fi4Z?o_=0g4(;4U3F!32>5h9~Tx`<{sz^;HN80ucxemJ%d3
z#xVdLLSNf%kPnOSvBzSZUxM)efx?0KgN`S{;~akk$mJmc9t0r>DvYKCUQAdb1k#5I
zGkG@?nR3UDqKF}zsm$bAv%#2A-Gx9*5PhI?AFh{@X&HxTGrkC(9WoX;e+<wcK~;$d
za%4V}#>Ix2)N95%kx?8f$^|L(LJ&PJ6x6v7%XH?Y3o_wnUeP?Ia2UksQcqF*VHDeQ
zktkwiicw@T2+K5_K}sTuJZzHD4zcE|V~r3JNK?K6O!ca{cLet;LYgNbFdzW2$wW9C
z5TluOP5!3r8)sX-*v@t!5O$Pev%0gc1_Z1#dFxyk1~uId1a2}n5K>Qt8K;KG+`?mT
ze2Lm}iS_^=h7GBBo0=&9r<m{}HYBTy;QJzkH1tP~Fhf2-5roybj0ZS96H<IugQfU)
zDjV*o>Ws_ZE75m(7@iPN8)VQD-3vp?WpR^kwB!_dIYU-{x|??-DhmntybIz7KWq}{
zw@kTv9KDf9vy&OO+_^$}PH$UZ309@{IYCZAWA-#ha5^c)XO>B|KoAHhm*LJ){ssy~
zkxNW;5<4j>J`g|DM7~h*`kPT6^K2c`P-Z`fDE{^kzXz)8-LgB|1v2)6pq=nz&AHZX
zQ|}_5E%G2aO2;SV_$mRhAg@U;EGO?VP^^hG%HBy$ZbTS+^63btpdlJ753;N8t?(0p
z*vFNVAU%hNCFNEBNX|>=dm<(-A($s)XcQ9rMIBuuNiT>X0C=$DJLmCH@3i!RL;{}L
z83ivR0ddxbP|~zEgdHc$ucqK37tv>0$r;FN0-Cc!>*y$fR!(r-Z|mj=pV#U~2*l1i
zNx1l%QaG=N7{D6izZ$Z?+0(k-n7xAd0aVyE4=6tmIKPR&Hx#&?r%<R6$-tCSxP<7w
zodCA*D-j1G0VEKw?-Ljj5WlHt0)rxfCU63QXh9XEKno-ahbfYG8^43#jTHF6B0~Wt
za3GZWLGN1|cyU2^nZX(?!aZxPAaDX4NtJ<czSP?i?qLWKd=}nl!HPISU`xRtEWz$+
zAtW3@U~|I%CH$!FBSF$gLM+L?o$!&BW5PIVIfeLxQ}B`83xe<ILO2A&J?z7SNC6mB
zxx&Lkj1WW1(ZE0no;wUdGK>fkK)!>(LG&{S<NHB6+&+hR!!oRzN~{{*Aj0WVKGL8L
zNX$eMVLpOTpsl$?tee2Z$w7oD2@ShN^pk`C*g>_c33g!#KiCkX*bt!72|xfOW*7y8
z0WE0!EY0Z)JRm>`5jQCEC8RM3`1627NIPor6o<%0%&3Wz2{tP5o-h=*Fwr{z6eMos
zJ*mkjRFFr6sE#d!m+v7*4~V6H0Y?Ktxz_6qYP80Mm>U#W#yfJxYXQdg1IL79Muv>K
zeThc@Xe2yg<V4Y^rBnC}=5f9}0GO^J0R^fFP@q3zG{!b!hGe`AW;_KwiUL!piRPHe
zldwq8n#Kn?8O;ll6^Y1&L>S`;f>mP%Q-A`w0iYwOjEU47a0&!Jw26Ij7mj2XnWRZR
zu*u?ZNEewg8}R_d0T)9th*9Xlg`hQUp~^ez$cXr+nm`4p#FCO^hLg0C6sSt9u`)Oj
z$$~&jGP=qR$;!{$gP21L$p}Vm@kPb}MnL0(4H+Yds6B?5kiL{Ecq)bX@Jo%n%e5>e
z%6u5ySWCib%*S-HiEv9mic4No$Yu;4)P&2hc{9fZB$t`Xx*RX5^PGZ2h)ygB#k>js
zu1pBRl#pvV4U)8p+Z+f{Sd&YtHC5~t31Q8q^Z+I(%8rD^_H)1_%S|rY&4kd!?%c_N
zK*Xc)15g>7AYcNxnWJVz0be8q6et=GK)YWF0v=f|7o#wWkb<wYIH`b&Z8A#_=*H{t
zvbK<dhiEsh3(%ii3U%Di{xk@)IYYf8h;IB6Ra1oRS~W7lQ2gjTQ;N`m;Lv*c&r)De
z%s>SLWd;Q8t<Sqa0HV*AxX&8tno`&p8MV(+n67f%m;5Zc^jyz&*`O<mf>Ahy(ZB;9
zVM$N`h4>JiC`f^C8l8=5&-aYay#NKNI+NGf3c?64&ssX(_|dmRh@QliZJba4hSbsJ
zs*_QO(s$Co9z6&_2!tX;0!2X5ubD9>@EucFkswV=B5eXA)l*vpQw18ch8P8?>&hrF
zE^iEk&#4!1lnwP1)S@8NBTX(v{DVHFf<L7UQ;5<j9g5J%)Iv?tB^8AxjgLUxmoMFk
zM18b+ijC?Z5w?7ZOWhapoVWAb(+Qiw7pl<y(?f(1%Wgr1H<i*-5R5t6RgFZ|O+5%?
z)ub)`fiA6)V0D6F)rhh1R6pe)VOdietr2hqRcgeEE8<pEFcv6fRw^YfR4_<}=*|5h
zR9|hy=Ms}!J+#Dl*HWd7Q2>Q2N&!6R3+1bp_{h<6MS(vJ0upE=DN@A$mO_DfO*rnX
z($1?J_M8l|Aq<w8J%|BOiE6s}Jhh+Vis0<Vezb`p!WwCd*~9<^lm)71!x~iRj|c6?
zn3c9tN&%DQA|HE4_0fqA@dGMYMgeW7uAGac{gQ+L+P7m`O{!UyeG-=iwxHbzv}p^f
z8QJknQ^au+uic-eqezP2*dgVUl6cwqLc@X(8#HZH!0D-vRf*DYF8eb?93k0<P_}fW
zf|4qQp(xw1&9jzciHZY3d2=4WDF`N@LdX?Vwq=Hwb<9&dTZibWdo+oX0JKT<4)A~o
zwe^6|s9d+LQU{4#of(^|J6&H&-PFL8eZgF#^;>y!iK8%#(nz2G(q&H$gW7V$-P~OW
zTCA6rD~UrXUDz$h)P)yJEF8Vv(|0Qg+--uMb+*KK-1U)MhA>=tTfbTx2-fw0v8Z0n
zm0Me++l44b9)$>dMZkxU%-uDnvQS^bpf{Sh4Bj}pKsbf?0AH~6fIc_{v>1y+@x`%n
zUyA@whX7gHr4OXs6pQ0ZQb0J1NGDP75mKOwth@?-w9vl^7g5*)R3L?KTTT^T&S~l3
zelrCSo}XYljh&5x6;|O}(%_3q1aYKLN|Ks9Kp4I`#2*aeJtZR@?!SX@;ScV&NFreq
zMqz5zPK`jDK(Jsw;o&4}$tyO93r5?CU|#*Jj-Hua`r*p|M2MtkVulIUmpI~sfbxTw
zyF_};iw<$4KzNrfE{HF-xX~quMA*bRWr&M4UARpMF-90NhPydtKrUp*v^WV3qKnXF
zu|sBvM7~CQ)X3{$Rf9<5Ays6~eOm`AT{*@QM`j39h?=ZalpwGc^7SzYR>T{L7l)9{
z-qX%yB1<)<PC*sr@&dk1f@9gM<zr$98@^%P7*Z8Hh&?8VJ`RoRfe^fj6HorMUS^1+
z+2n<YU)MEFgjnSlcI8*OW<ZW4nlLDEQG_k+ODx`zb;6rNX$zwnWf<jDtaUQArK8Fi
zCY=}#HS8?BAPS?{i>}~CrumEUtO|S{2))>fgZ_&Dum}RaA=W?{=(PAd7P4rTH3++)
zh>w;KjBbdBPKv%z=&4}n!BDr4K%0K{q<V^s1bOMk0AmRO=nxU(cPWiBzGN>s6ji(v
z+Hhl+WJyI0px<aYoL0e}JQtd_!v8ghiBS!E!-KGko^8y%h0tldISt=vU5Aj4K(US_
zspQT2V~61C!r|s_!Mo=GYB4D$p4J;gwiwP;UxtXb`SisUfP$8c<x-lPoJ&)Nz~zJ}
z1p$rf=0j^=p32;uYgiG`qSg&NbU?zc2(6Zgr<RJ$R>ZE^#)#QYT6N|gjtFlaWQfpf
zP~dC7_7Aw`4N<7n&0|Sk3X#o@zqj@rx2~7}(v}DZZV32@V1l5dB^eSYkrKu>F%T(`
z1DO#TgFk9E+B#04=Ejgi;}Aif%;hc-JS19#Zip74i15~l?S2Ruv2OE?(9hhFf!r2t
zDQ+Sm2(v*Fw198@cqOz!?seJBYNqQbG0UK?+o4{V2TT)|WD{O`lNHi$k_JX)^GPOY
z5^~Az*WgjK`2o?v1M+DCQ&@{SX$ZA8rj2P61<#8z#gRd2!0kAcM2UzHw`G@u<>vtK
zxPI(oW}#9BAQHdvZy5z!LB}{)ULOl?&yJGm4qHP*6&F-&f&c^=fAJeva-%VD(M#{o
zKJpl^2>X_Bi<9xVwQLFzUeSIq%{A@+<Ss|sa}6Iy1t9MZG0#re4$kaUgp%OOEq4-T
z=@WxEf?7mV;!VniZa{rbnE@A^nzJ>60Tp056)S`nMG|3GF$ipFh-e{=K+2U}>6Kw~
z7Gde_E#YX5E)ooGh&=ZIPLGI6cl2qg7D?w5A$9M4IrJ$G7w3}oq}-Q8SM<qs?47=G
zGY%5jwwDAHoay5iK>nA2LG(n&3ShL}Zt--&GYCO&Yqa4*)i{N<fWEC3)L!2he*u_(
zo0tlvClw#d{m~c~=l1?~vy`HjzMLPq_I00L9{~FHWQPdISPC%ngYx=aT#~&jpI>A3
zNrc#C#rW&S=5G}u_&uYL!N&6ch0u11u=N^AsfQoYV9#cfmTiYP?SF4elhF4>;CGC#
z7j%~Merut&@DqwRb%%tQQCA2>;P{95ZF9NoU8j#imkA*qZHSQ1gZP=R37YTz@}03~
zo&%bT+Sxrbw4*Ud?=A@Vvzn)YWOxZEs`n-C0eWCFD4~B4qQ_s(b=VWHVr}Vpw!w|J
zF%yMi+`8uVbth%n>znai<DFND6wss6SPR6lyaq1_Md)F)SG&HM*nB3-zix}QSe%Es
z87PmFzNd)G>A}rGanH#@(h!|y25f~Fafe|1{fSMwUyFEOp<hRteTjV9+n~vC0=l%H
zA;<ZPzvY2%K%{i$DlwV={k9t$-<YGgeS^sRs;RZvU$_lw{2ycc;XeM*uTdkfk<o`y
za6Sl+*Zqiq7)5CP*N6V)pAK^l6W*AZ1Q~qTYPrdI3Pwcjh_HEvXr0%Io%JyxK7d4M
zs-O!3A&lUk@kt&5Y94q52oC~Llrlx-$dpp0PzY@3@L?2Yftui9Cg)*8D$I^x?C2rI
zDMe96j%?zvA`*`tH2zSDs?S3vr$9LgBE=LbjG~xDi8-_8&71;3iX<7uq{E#(AxflZ
zu^~Z&2o*B)@P`>5qa&-T>^iWCQ#@d~f;uH9MGz{dI673sOcBPiXVb3z8g{JLhD@5o
zVaBHkTMv1drD#b1f>|Di8o4?gg^Eg$D5Oe}$Qy*2$;&-8d)Ol}N@TZeL7D=k2o#_x
zc~_ry*n}CChH}xWWgCcDse_VH750DvY(=q6s$Ru|B1lDMFa=fwbrg@OKYIE41>A6O
zZx4qPe>_$Cbn4Xt`z8Whk&kblObd%jbcD$iP^gx!-rM(YVC;qwi*NosdP9yuCK+V{
z=_k;3iZR33boW^|ly|0~rkZ%BY@{7C%mmS3b%8Z>idj=6f}RHzZP<`s;-!F@M~aBz
zQ6Q(3B1aQcm|{w00@>H$b%gE5od+&@<XIq~MIjn<8akAscwPBN5rC`BMps}@LML5`
zN}@=j2LeX_Hd&5M3M2|B;*kIrAec451V$jrAtIMvS;*00T6X!^mj#YlW=DK56Q)~G
z$YvI8b!m4a6;1F#$|-<6Gzx59ktt?FuVt546sKgUNJ;{Mk|C&x2y|Iy>T#xBAE;!Q
z8>Jp;1S+VGHgpp+k9qVGMnNPJYD-PhYOAXkuJ$Ud%*ZOxC_)9>Ye%>~6ogwDCUU8#
z>OC7RGt*{NY=*~HOP@o(#^#W&yf#z{w;7(;YNhESg{rE!jq6ZE;3Amns`I|a?Ymxm
z3ah9F`iLNZ+cGFn3Ab%Ztw*GKz}cx(kOHbG@1h`zAA9)mhg)&78zi3%DWWF{_{!T*
zj7LoW%nT`k?OQBTBq+=bC`_0VXB6nx`bU`mhT3Cx3HpYy#vC)bniDINg2zDCHWU$i
zpqc`Rhk5xdEzmzUnRAAy@Z3<spemBxffxe0(t;gboh?*EZ``qXiI^fXGY+jCFuj_-
z)v1X~daTll{p!Vx6fpj!GbrnNaCg=ObH@bXDoIT7yM1r@F-BbP9Hv(#$IB|cI(wa?
z<pLcY_QD@WB)CUNaI5UodUG20+yc4f5bAGTI%%JOLRHEsCwiVQxjWIE0x5z#^r^j>
zvq-6>lq!ySt_M>u-t<k9a0KUKW`8~S*K-eeSL3tGFu5vi-+lPk2Vp&eUA^Bv{atPU
z4?p$Wm$1CYebipRO6KQ~7>(+CUO|ERJc2;_fueu^6Auc|2fzucWPu&I9|hIszzjC5
zek;O*6GG^O95DfJUHO3o*;T^4=#PUHtXh)<*bxg-3WL-W1nb;4K^tO@1niUHLsEdh
zkE{lVt0931olub!y0D2(d?FO1D8(sKv5Hm%UkR}C5FuTWfLEkc7Ma$T7k#meW<;14
z$9Tq%r2rLfe4_!^D91U{v5s~O;2Yn_#5?k_kAD0kAOk7I+Xw;=RLH|9Oaa3|o<fiw
zAfzD?sYpjsQcRFMWFi+?$xU*ylb-w}C_^dAQIfKhVrqgP1fhsO;DLQpl!Leb0EtRf
zveK2N4CE|V*~(k;vX{R6B`||2%wZC<n8rLNGLxyyWiqpw&U_{`qbbd4QnQ-Yye2lY
zsm*P2vzy-hCOE?>&T*2noaQ_yI@77nb+WUa?tCXa<0;R1(sP1Q7~%w}u#`P$vYx!u
zr$G1#!9Ni65B&rn3JPja)!|bmN7%!N*wjgYcIKd4`$I$Tnan2qA&zByXhbOmQa(tO
zUJOcTK`mN86eyylF6~VUT<X$>wvVC$^(RhEsSzwe@f4%*zz>+gQ-K^I4~h5#>rjA)
zMC8GGM*zgU9P-prB%*l-TxwHQ(gbZasi;To*AWsS*0EOA10^IYSugef)TlBCt?ucM
zTRr4eq*6+$Og-3C%i0h*xHS>W5r|KLDpUvtA`ot|Dg{wc*u%1Gr|gP|BKWWfr&Thr
zLB-Np`?^OD_{o;r8fr01H%G`yma<+U?PS5_ScfRqu%>n4iUiSz+4i9-D4=a0ZnN3;
zS$42F{jDIy8o=^Mu@q%mkss*A3{m_6QWt4kDF9)LQCunr3j1rjM3IM2?V(8*i|%yM
zM}mo|^l8g&?o)^=Q$<XyCr<?gAU>4{_yVFg*3A%hZAXg2^0&M}+An_t5txWD*SX#m
z1$e3Jn&obn8Qm2K6#^WHT?N7+#{CF0l6%V6Ht{ux^@^@?ctGF(a@N0gyfAW!N?-ZX
zce9-ZF>#S8+Exh{p(N&me^GE_4~5tx9*$z*@)Er#qBz6AJ@Ow<0opR20zIelO)2Pe
zn{@?Z6bwNDDNHB|Ktv?Ji~FfSZsXa9RQbwT?uZ{Ul;bF)%uWxH8%9{76D})9Ctenh
zDDDhpDZ9BVW%kXPWdr6%`mQ6QZSuo7+?5|ok<n0$h>87(=qGQBS*v-mHD^pICEHV2
zl!Elf9PPv)du7N@oV22mtm-e4Ad9s{0q017f>~pvGTTE?Nulzfu3l&gjbtskB9-WO
z`6+wOatNXY5)qF!#9;y{_CuP`WKZXXF_&TMP>xn<mw37V6n_(sw<{QIY<I-joV8Q3
zJ+SPK`~VdXCTg#Ly<x=urfRUp$Vqn{?Nob2*0ioQt~;_A^&x?#hS3gNNRaEHG~s(^
zasopXPSYdATj0#FG;5i_AWX;4FtfH^jud{uCO}*}8gEhx8V+!iEAZqG$x#Y4neypb
zZsCS0c&%MM>oH#t=W$M3s|H@{k84%Y_4dfjDMji<53Gq4=ZLRYE%i0Zfm<OXbcVon
z89!*Ms+uCBZ_=cyQ3OVzW`7!7O7v~0q<2y6(zZa3-H=2K`VXZLkJ|;ZuQ-jD3L1$t
zYt#D>KVckgg>Q)5<1R+^EfN)rAMtYy1H-&~VDEGPulwCQk_bI1JMDN_JJXwo0<klL
z?B}{VX9qp{T9qD#qPB|J3)<$aKLk7YIt6_wA_&Cb0S}5J!BsMpxYcaE>zP_^LsGCS
zRh=TLQLqp*nrxw-#9sEDXU@0f{E#CUuk{V#xS#k;dxzMb`QUnfhNRE$<S#$^^D2Mz
z!Nq-0nLf;>2m+*-VG2R9pY_deh>7rlrp$*!03WCfpFmVyv7ny)1Ru?;i|+BB?}<kQ
z=0Wc%&deaz>xCWb)!$IG-~Xw|^Dy0RfzOd(-_)hx7o}W8_yJh(7!zoO)|DO#R2?ax
zfJPt%D41RlfI=zkj|cQsjZumeFoQ%**g%y30>@O?LnL11p+X|yVC1X@5<=M$I)op<
z#ov8Q5!##wn1Tsy+pTz+L^PKokQ<~lPZ^HF8Fob%K8k5oAwgWB-a(-h7LN0LSg5_$
z4st{f{$P?QPALFMA3lr^0%5z@ixA>X5X7Kq4Td6=M-+_0Df9*&_~3GZ0x0y0D40SN
zq(IJ?LPK4KmD!*a>fj{(fS(`*#bH!J!A6cOqL^r(LkL13XdDtKLM1+1q5T0W^h+bk
zVC}tyBvN8;wBoE?1r_j|Y^35U3QQz6!6fdYK-eNK>SAvM0xFEcCnk-jfr2wWPeq6o
z$vFnIbmAw5VpXtUhP_~upd%<2L{(h>BD#>tCiVv=+9NPJq6YFI4<2GOa)c_5pjRwi
z(UqVICS)jGn@T{=3^EPHL8N+U#Ja2qxlvCFlmgy>f`$o6d|`wWRvxHOh~CkcNiGFP
z+Rlr7WF2nE7M7$*!k1NLWEd(NhtVQP=9iA0f*(*pnlPc=nAT4A<WC}<M#hC{rDTw-
z<kh_lNfzKy0?_MGWbz5yig1bRoCsBB8(VE)eLSMEw98Wp-ARlf#c7!QXi-FZ0LAsh
zVGI?qokEW2*hPK}PIknKJlBiGNDevVFdoZmP>2A|rLeIOiB(>Y046g$r9<Rpn2q3N
z1k78y1^`M#yNpXkyvtdR8>M9bW<zYI!88`ob%bAb#8ldeMG_2Lq8vf`SkoyaZ1PfD
zHY8<ThM+)<dISRMkwPq85AujYn2<tp@qsB62IV21m!$wGh{7JALd!gjC`6}pio&=E
zCubEWX9>l4iP1}{+jL4Nw*96nZQinQ+soxamAn?ikN|pCX7h+AUSfoG5~p!0i*hoj
zb535Lh0p8h=0ou2++`kTft`Ok1b{A>9@3`03`St+*yE99L-5Yr!A`?4!)=<1wR{R6
zWRD;G4+*4O_}pc)kcgke)FhE6ST<-Hb*N#0sK59{_An^hJzf)%$ZfotylH6mR76P$
zjf4tBBEZgUiph@#A?!f^Xp<nRLzE^)^yh9Ki;lL6LAoYF#-^1zl2__TZL$b%_C)sq
z%s_mcm>S$bkb;%9MO8fyAf%l`BpyKoOib|xYosYstf@fs0VxE5o>oK@99{*PsrBfX
zo{1=O<^@lF%%QRtpf*V)u8u(1DU`vfBFO1yIv54L-k1K2O)f<#EMBH!4T3(zn2Kpk
zfMw965rmB<io_DfRcNVfhP5bPhEQjiM1&Z5W|)pDnHrv<RarqWiJ$DmLU;s|3e2gB
zk*y|)h~ed~EY~tN4u(7)9{8$-*r>eSDbUHPvxbRiF-cfD1jl8mN_^}06&l*?YG@Lx
zqG4*f;ElG@Dr+wPYr9nGmDZ~ty~eT@tHX3@mngy!{42noNV;T*ca6fCI)vSw!s4w`
zPCf*WvK{ClEbuHWmgr5fT<ZZDEc|GM7xL;D=7lJ*DW!xgYiX>QBrL@yNlEEgocJI!
zvdinSA;1Q#Lx7>Wp#oRP?93j)^t|4{*3FWds@A0Ik^m(y^4z{+D7gFp9_)lDaD|^J
zM8TNOz|P{uJ;V=mVpf2KDJ+MdD8g$npq4IZ(+SPFN$uH)2h%!jRg{g;WUVP|Z4-2D
zm|?7+AR<sT?Q+edn|Z6zo?DpUE2UT_xSFey4vVUmYCqbG&d%)gtnJ>4puFncYuc;j
zZc@D{Xt2HiYNGW-AP8uaf`#acZj&s6C}PAEunmF$OPl7GFFr(ctw!qN4G93t5g-BX
zB0>0>nCaq=4@%C}eyp7IW`%f5?^4R_8V0buu7w?oFkWgLf^P39=TLpFkeSx#X0PH7
z<EfsFk{T?TQE0hwsnS{;mmF2^RZaGeuGM1PADjYXoPyV;jYbe}u?j}nPA&T40pLA^
zMv#cx7R>v`?{eH|Ek2NfkVv<Z2>1>V>}0N(G%(5>Y2u2<;f}3q+KcsCFx&x7Yno=|
zUakn^QU?#t400}KJa5N=PY!xSDX=MYuutOQDqEteSG+I);)unWSPOeZP=Owy#$A4q
zfFA_^uHYd^_7JfVM_v#2+xOrwbLeoEXl5FrfX!ymX@X1lL?*SVuy!=*`l&0~cCUgQ
z44*bzoq-tn!fH>XKvW&Za=1?aCTZ{n2-u;`{N_j>*f0i@U;c839G}k{r*Qyt$0*#f
zMij8q1VN(=#UL-o0w)Q5Tn2W%M#LK0BBybxqU$DWE(qI;7l(-(7oa8=<OhTCdd3k6
zs4}ySuq$7Wo4^T&;K!(}ap!spp->6<5QSE}OGHdWMMPffifTa|L_!SfYW%WO2(yCt
z7cUz{zn}#0`l$ybo=nh$P2hx1nASA|g*HP-QILe-D24L?v*1OAF;j&=6o*!56!rZ7
z#$61@pv*;WY|&f9MK0H~ZvY2Y;6;5<2Q3@x&~`FLcnN_pW74v5XM9Fz2n%UQNO;iC
zT^7f2Bu5_84gZ-HK<`>1L&$ebh<Ff*kst~FlCf1_MMdM+W9G&Y>_%^hbVIX6BqIx+
z9P~rP@`#9sL4!#di>CGLNI>s%Jd;H}8wyMx3AJ^_l!7qBkaI^k^)@HyD^GQ+9N*r^
zMzI7;Lf<mH5DyEdi?@i2@RCcjW(zfUgjffQe-R6;cuTT$MG#lBmqAOYFbwnL3bt?+
z+HgxO-8Dv}b+eUqA~1{2a7!zfn!6Z=$$*Y>HP7&z4CV5RcrcDYJ5EnyMDC3L4e{A>
z#H`G6S&Z8l%_X<*%gs#9+|1GbPViI<m{zvg3`A(d&9HcO#Xzgj$jkxSjJ2vvhCF9R
z(01kYEth0A!&vp~tOjxWZv`W+^-#7*O7^{cPE<|KtWIuYp7OrgwW9eoQc5*de|HQ~
z5D-DpVP8-JNe?NVcMz4&%f@E_F<yH|(Rdf2{BZIW@euvAklk#M6Cu#c`Vjau&_no-
znCQ2d_%}v)k)HP35#X)%9KjHk_sc=JBh5F0G`P}XMG}Qv5-pK?Bb`!%w}_88iL+A}
zZP6Wz(uu247h$aBwox9T!ifYyj8kff-#Cuv_-|d3B+c<3@pvYEkr(OzIFT2*ksmob
z<x(y6l9KPz7r_#eN4b<wIh9wrm0vlQXStSdIhS|2mw!2!hq;)KIhmKanV&hDr@5N1
zIh(h+o4@%txib{ml#io1oexw>K@mz3l#k1~NI?`ydD5Ln(MZ{xpZkVF)p`AJl!RLm
zAJ8bK*f-2}RHQ@Gqc>3$U{s~slca|dqhHaXH_@PT(rWe8PhHmb85LcLDpolaRCPpN
zc{gjdx>o7+YRnZ_^;J(~mRqUSt2=C5!4+D`m8x4etKSty#JWT9m0Mv~Z!MVuEmjz}
zPirw&&>iO1yhUlrx*a`xL;Qiq-~sWfj<%<kf`C@FPrDOo8Xb-Q!ng+uv{MkfpF1?U
zdlR*)#l<`Il)5p^yA$#Ishv8u*U=E>N{m5Kk)fr!otJ?@mvkvuvt1V$YZrGNSb~Wc
zd1ZTn3EmN`S9`JLie*cSjf%u?5rFlVc(9j*4H&~8@c|*&!(Ym4P`sr=n1oT7g&miX
z&D#`-tNa|ickNgwCH%P%Bp?jh_2?K+;TTzqn9oO%zps(K#}LrBPr(Nwj2ZhdO+5$U
zyTNO{_f$PGMSWgey+fFNV1s@55PctUnjE1TeGmknQQ4VdnU>L+m+fGiwfCRdJ({T*
z1hLs;8W5Z*cj0YWm)Y6J<e35qKB1L&-v^qf44RmE#GyI=nYt%p&u4!4fLbWQebFQR
z(YKH1x60E)5!ss&*ME`Qmt~_n)9O=@*UMAtcSY;BiN046=-*MRDaXzgAkn=X!UdeD
z>f5bX9I&DBxR@KXHKCWK+qzlC2sVGEOq+>WTVY=J-^8^Oh8w$h{|s@a^b;GpaY^)J
zt-DDT^7H%*8UMYBYVm8*>Azg?3qQ;K9R84i&zZ^a-+yBQM3W#M2p04}qKOj}2bnB1
z_^{v+W=A|sIc2caC}va&0vh#@1QLf3NfxBSY@|UFC|H*C(1cl(k|>%`B$+~>OPwB2
z*er;L*+36WW;TRKf*=W^M-whonv$l^hewu<0<^RL;L4UqlP<-YwFI+1ERhlfD%5LM
zmMI_N6#DgH&ype8A|+u{Y1V^y(-K5s6lB+uR0&#z`_=73KFrD{Rk@aA*%VS8dzgF_
zGFOI?n=)jpGjZU}B>#SvOu1m_pFs)s%_{O}*s&-YACyh@@mA4!nJV=BRU$=;hlv+=
zDTi5d<)91(QZBP#5N3W(F-sJsx~PIE05L<wY?RMG<H?gR7)6m;J~~k_lS7aXse&+>
zt$&EB55z<t3H~VsH@^9jvo9%9s5l8VxY~OUqQ!oI=%fcr!Ve-;@Yv}tk}OovJ&;ff
zkRbX9+^-=2N=l@Z+R#(aIGCU_h&%7V^Qjd7<_zM4Kc2e#E<A`_e5kx23vw>G7YWLP
znH2i??vxjsz(Wvb^1uU+w+{MaIV)X~jymhGV@5lIQb<I`Q#d-$l;lp~BTbotEbqMZ
zJivoM4@&7H5mU<YC@U<J14T=ho{VzJDw}(*q#xtjaYlp2Eb~mbq9`RfR01jMEIz73
z#mFN>QLe`$lU$OSCJl-r%~IKn$uCAjZB3(6qcH3%B3U&ENhO&yQYYk;`*XD*H1*C%
zTY0sNOeQ1!YSKzC?K4Y)xUBBF>^zv(OKS=86jYybCDqh|n25DWT8(Qf*-|52tg*#j
zH1?rDObH@ZQ=k}f-g@sH5>Z@7-SyP}RM%`1v2@KW=v#mz`ZT#$<)t?{dmS}6(o8os
zk_11Q0kj}rf3?vAkC!{N$cGY^HDEPYJ(i>u=dAPGnBl@His_oD$)F&ZILS!qMnM5N
zQcyUl34%cBF$hpfDS@CwoPPT0bERNrsX!9(tCT+!38cdO9%=%WM22QY3b?GsT5GNg
z@*_P2W1iYI4@|ilLS`h?&})O33FMDa6j`<)jgH;B@4t0|`ys*Or5lB;x1KNTvCD?2
zW|n1s=~jb|rYPy9&0?*fQt~Kh^J|r6+8{*>f|~W{cFtT>MG|RZ)>Be2OKC7c0j21I
zL@_0b6ecz0Gl+Z!ni-*qHrf>bihfwEcZvRB2}>%<Vjb$Q?v&0xJ_-6g_~DC(2#?%F
z*}ZpZU$<O!(vd!$^yWQyo|*J_0_qPYf}p|_Ie~IIA)`RW-2@Sch9E%^wu{~DYIi#i
zNRN6OX-w%lhdLDWF9;;S&MB_)6`k?SWXzBq?M9(MtkBG6IQtv`ogl!weGqoca~|~I
zf<OK7Pfi{HpYTdSyla66dCIHb@q#wC-WBkG33MQmM%X~VU{Hgn;Na!rH^chDhcW#@
zh5ca2t3aS)6v1->DJDXYFNQG%V=SZkK<KX~me7F^L_zgxqZ3fbkAA&lA_L)A5G0}i
zfhIho7|H09J6f@K|C?R^3kT>s;PKFhmZ4n=eS$(i+)OH64B;D1C`UR{5tN}MiF5#G
z5GKG*Iv0|NDp_@sx1?YrqD)OG=;i@X_<<mb&<-F#RuBsLNI6qT9UzEVOh7>Ambu&|
z$iOxbw}r@<#bj9uXxXwD5+p({`Q>&><p(NsM{SymVS7&DO>mZknzbZd43p^rU3!3*
zsS9RgswvA5#n6?hiKS)gQxGJ8E}vrBr+_TClT-2vNgc$TFinCI@?CLT)4@tAAIJ<=
z%7g^W_(SRnqN%d9r<CWqlL!338t(xmeG<VXTuw5+p<MHxyb35k&y>-P&Ic~i$=gtz
z@VRipB&7UgP(lU&#88j=WuP;K<(c|$ije?Cp<g*@2o(wwhI(+ItNCeGU&<?+aulmO
zWkOHq1ksA(lA^1uXcW?F(Y4;BLmnXNJsH~6r!pg|G5ab`v51sFoWg$MilKATCmp&G
zHagaM$W;ARRc09V6d&cPOZFNfgyFTQ=!`33rKQ+|XcVkv-RhZ88WD*mHmIa@31cto
zSjb8?sP>fYVI)#e*8cEb(vgX7JrIaqdVmyprD6(5A&SP30+(#M9f%CF&D4NG6nj7g
zDSQ$IQCt_hqBs+BJ)qp~%I6@YxR3{)=>h9z_qwGdu5n3%qLO5DLOVT39()3nV>wVI
z^j*z;i(5zkF+qg8-eqnIpetSKHVAa~Y+rAG8{F0X2R>n9@IxFd&w}dYwsKt~Pu$wj
z&z$cei2$!oq?21#@z$3036vj9k(D)ta-=9Y1=qX>VuOhIFfCmzOfl!h1}hX4DlQI^
z#s?IyWOQ^BvJaAc(w_0M*u@0$ErmM>3PGp@vxmtrlesxw;9S$lS&`CWuNh=M1ZpQl
zE{Tm-C!Z4kaJMmeGjCB`p(StF$ws@fn1y>TGY4uhDNuy`NRnaag!m%8Wd@?jj8Hsx
z7|Ka`F<kx(5iTRu%XT*7qHmn&6rcH_M;@~de~V+&TCTP`c65^=-C{|@Y__q6%Ysdb
z$}7_UnN<w?m1oz|Yu$VW1*G_yL1b66-T@+qzLam{=q6}X;8!QbhA6TL(g#um0o(Sy
z8?c34y!Obqq1(O>xFJ%`n3)?!-9C)8k1Z!=i%AjBHi$&_5bFi&`d78A96?IqWqd0~
zojs0=uQMZ9N8>l6nbz?`vfR-ulK9pqzSX0^WWDorxU_yD_^(|u(y}(edkya^OC4I0
z3={Mr|4vRVDXv}rmPB4IIg8%vgoi+kqKEy|Fv2@rv+-tJhr3=mK_*=gkz-}cNfL9W
zcS7r#8y#jRZ@I;5<!X`~on6u?8m`$I@i@Q8<~UE&oq0aqq7&rkF`Ih3z{HGFjL*>j
zp02h-|N4+Vl)N=D%+=Bf;`7f17Bpn4cw_dSln$Ha<~g@d-3@YghpatVG)H@0*@beF
z(AwZ3EPLNEZdO@;9xE^beC89ob&1QwZ%0u5>V+b7<s1eDqZqb9{BsH~E8?cjm2a4l
z3Tu+o{`NPmj?m@4li1I`ZgC^8-Ly&WlqZ`wqDc1fUHbb{*uEgR|D0FaQzxap9Fz-A
z{pwY3rMa0G6(box`L(oQ*C(gZniq4Dv59x1hjZi*H~rTQ@&i14N)$$7F-n0_=+6V*
zkJEO-<A6&PLJt4B>*26s;R=n%#7_~(ulydu{{XQ1h6EL4F2N4aK7QbL@E{8RZpIY6
zrtm(C{syoB4PyORk04ATuhI^~^iJsv&j6dw^FGH)bdK~OVgtdX1I_3IOJZ*ngE6!Y
z&fts*xo&<+@C2J61x1DDl8go!uFqm-2m=s{6aglFD+tY~_!fg{7|-EQC+`k!{v3_~
zM~yhT&>>b3$q0f3O~C|F&}+~Ti_~y_{*MTKQ1TA&0W0sGMh|lkv8&`y2i@=mK@Spl
zV&6>8*7mOn0|CM=?`Ae}6Axn%BFP}8z_Shl6-vpuJm3$GFm$%?Aw;p3NT3wA1qo&m
z3EU+?O5zh;N@-jIzVHSsvhZAhksxxhI9xF+Vi6Tpk>3=mjb>}XFmWgU0u2;$ueUN$
zP-2J^voZes<q8dA0s|*U%xJ{6#Os={Zbsw}sDv`IkrTBiZ))Zg_(S&MWgK_n8@Cad
zyvQ2u5eRhxC~ooT(9S;oz^M%46jU$=S#WjI5f3N>8ga3gV2KqekPRDAQot+(`*9I<
z;v{_Up>A;=o5Rh@QMaD(^iZ)N3*sQHunj$65hBtCsi-5dXdzCb&kQXA2|^HD?a&Nj
zC-IRbEz$!Lfgx{^<jAfi2{I*CQqdmbCrM%^%jyU1BP54p94C=-cx)pts~el9C?gRp
zuhAp7@`o&ux0>-FL}__Qq7-rn5A>vK9s=mpN_*TAF6+i9>qZg(e?TL>k@?~aB>bQ;
zV1hxiB2Y*`Fa@MA*K#h<tSx`yF6XktE-2s>44+`9jtpzVmJeg{@m!LwE9>tw>?^UH
zFK0-SRZ?JCGRkZIDKBGY0aJ`WNVBs{vu<4K<YMX}(6TX96U%Hfv63wXFeM|YQo@!G
zA-mEw-wQJfVh_yf?j{l<K(i&k0w!QBAVm-;En_vs0;`0RIA27k%CZSd5;alpI8P!u
zTk<*6CpsYl+7P2Vy~Yslj_Jr!(Zq9#@-sU2a}0N`C707Ud{fNU(;`P9J-w4ZrDZ<}
z)bP9}J9UmWe`u$!Gg12TKk0DP1eCJSEG+FwisWDl5`jSfn4k&bpgvT{B>B&lPC*V*
zV1G{GH4)<!6d?+3^hVRCW&+_!;%eODqKBy92&RAli;(kp6etRFH#ZYBY7|Fv)F6NY
z33%}@ebJOo0Ti4d2&BLi>M`heg$b}!OSyE!Qou={G_XG9Sa!5W3$t-dK}d=8?fS!_
zp7chIls#?+DDdEBMgkOE6h^5)Mjt{EL<l1O^hIOTCTOBZ`Lqe})I?E~4^#+1g>w0d
zM}Vjx2%>-#Qe>je(*vF}5ZDSm*2qjv0TdJg6ae9>E+;lmDMvDOQ#%#>pwj-t<wR4o
z$@J8s`jm74RZ$5-R7tf^XY_MG;RN6ErXqA8EeZwyf&eHKR6~>OR8w_TTNP0Qbx;q&
z6yUT8;=?};Dpx1fTN1Jk4<kfJ)IOLMS0$BFhjmknwT3n(Sxq7LWR+7rbw!;JRIvmP
zo;6wxR3W+5TfsH26z4GDwN!1w5Z#Fx_GKu>l~SFf6oiyh<xSBl_6RN(zamvvxw0jz
zRaIFPE)-T?D|KM~6=0KN58cjUNdaR`c8%DzFiLS&J=GvxR9zn;T}iZEKQ<@_R%EXg
zBGmLlKkrLKXiAM{*XU+nQH%sg#brb3B!n)ixYRp>>J+a<@T^1Jb^>dW(N>Lh`K%TO
zz0@ziR@scFP**NKQ|wrRplz)Kzp8fE@+!#xSSD-%CkVPW5$=XkT+c%fgFbdGeWLa|
zruHGQGApFEVg*F#6!9T~EZ;!ZQty!<O2AeW;cZ6=RLP5sl0y{I2L(jI5B9(hv<5?q
zBQ|?0M>JPCIF~puH^nOVo+7t#6ZdgVB6Pt-aw#WpQQ;4Wb1IX<RzQIXOaUn^vUE>3
zbqke15H~q?S6Ubb6o_lju!3>{&T<D<Qie|vmX>B~mwS0vIYyT_n#DVYw;*6QIb@eS
zx$bFMg#?Z_d6(CFgTQ*RH*sQ;7kd|d^N%O4Pbju`=*aL0LifNBSb?R&fJbp!{laun
zS9Qm7Hvu?(BKRQeS9uvYITje3FgWu6pssy4_id9ld>0pdmzI1F7-i43c_|orCs!+v
zHk1bUa)JO)?Fol<;x1}+Cwkb1LFou;wR0l^h(UwID65EvIEY;eh;`VB_38+A_%QCm
z4{Zr%`oQWS@h+?wETuRyjv$L+k8EM2iHQRgwz!L>WqeWqjKflhjRT8gMlQxUj*Tyk
z2h^oN>Rjp=Lz0*brA12^58GsEjqR?DF@%hbqbK~!kUbQTi{p!zcuNqOjp1{OH<^<=
z*^@sRltWpRM;Q{sg6ZCglv7!iO_@-SQ<YyCmhCA_kJyI!FkXr;lvtVAT)CEUIhJEa
zm$Q$Tf0>wz*_e+RnUh(W&4wBO1OX4IAP+`?(3Y8+?a4Wu8JeZ}jH{WOIXT!a>}YMd
zIeZzEuKAgxd77PAoVyw3n)#fynVsWVp68jK>v^7=zz+lg_wYcF?YW-uS)bFfpZ%Gj
zWou|cSq@k+p=AxA_j#Z{Z=nl1b@JJvCEB7d8ly8>qc@tPJKCc^8l*#7q(_>hOWLGQ
z8l_WOrB|AzTiT^x8m41fre~U_Yucu78mDtwr+1pCd)lXe8mNO>sE3-Ui`uA<8mW_7
zsiPo|Wrhl%V-L1jsoD9dg_UgQh&-fPX0UoZw7Tz_`Uv)bM3t|Yt2$J@T4us}tSN^r
zxcU#!+M=7_59XMY`QSeP{n@VBTBY3@u3uWM`M@=pTDHtOstNies4)`baehE+-tvGb
z0S^W6AQAGQc#Z%NLdvp7;W~;VvM1Z6njjHqnIw+DvH!q+jsSZ$n+a0eX`s!rOG&a>
zhiqdTYNUd+ADgo!o3bGyvp2hAQhTQqn=cXDB~Ty`0-;dBS(c0&xoen8iJMtOhz}OQ
zxnWtj85<R01`nh&eWjbajpVT7;<%GrrL!}Y%|)Wod-<Syq?wz%g}P=GVY*=_yg~FM
zhP#@bW=m%0XlsO@R*LgPp>KSYCq$tX0KpVS0osCqNWcvyL?I7?tlkvFz!6-*BcqTG
zqh<tLBMS2f6amElL7a?a!m^1e$P%HL9EibL79tdZ6pkCl$=1bT{J5(NOa@#@jjzHJ
z9NHc{!kJ;h$&1FVCJ94_IbaFEXRW$r3-cz5zd0Mb`Jk^m*}suIbUe>{K&d@)Ps(%V
z$vrcr&6||fo1oRZZ-3XA_1hVj9F*0Zn76#6GU>}jsmf1lnNNYer})L{ta08Y!ESCL
zf=!(oux7yRX!vEI0i7pEp)yG-Ij*`C{M<wHq;9^J&=u4mL;*NmLepm=()oq16<yFZ
zCr6wE{IYY;+1&Czw8>?yW~MxpQ~gCKB^<Myie5ctT0Nx2e3Z%DpM71P@!Z~2-IImA
zm~s7RWqq0dN#HhUBR5QAF9ahlC>1V(qaungB~*(%u_#csw&-eRj+v0#zh+ICls!%}
zq+kiwdND2^q7*DxC*Hld(H*POXEEO5+e5G*egGAMyrP7IoOPnfqarT+tF5Ws!YH}m
zR6^R96pCTvilcor93>}u!zln`C#-!qLPsMa#nul3;%E0(lVah&hQ|p0CMy0bRw6Q{
z9W_YcqnMzKQQna$<LQ*IG&F-ZK%z6A0!9!%BC3MBVGrZ=!ZKc7Om30pjeh5+Lg>|k
z<0_-+v!dsV-uMvSF8G4sk3KfU0ymPv;E7}4tsdqf;^1FC=F6C}n%%$X!j5mz?RO(?
zXjd!$#s?vM!{@O=;{!gHMFv>-rDPJTOR5D-w!>A#<4wjRPFSS4<BGXNq}^{UM@-}^
z9)Cbo!a&Lk%5xlxzLwp8^gixdB@$#qfQ`T<{zgU&@|$Mz_wm70#DC!Z@~$aHc!WlN
z3r7rJMqXvr`y=sl4_>$tT$}_-q=ZVWBx9oGQwRS`B<xX?C1q5FV17UMT!v0C0#EKT
z%ai|4=z36$-%tR*0%`y7Ck9f!Vh^ltB>JsYc3&#43kBvjZ)(3$G(32pMJk7dQ|3+A
zUgcx};#3q51U*DC#f;f0J_rYTKmmvuDrTdO6!gGkR6>EH0A2hDGGxIcq7qWHNHCE9
zsURAenSxSKCCh{_FG7@fvS1!&Df&zlcroL~C>>*(bf}Z3PlZSgB2>tbSyPb@BTlSH
zFbFe0r<f&*(p6N-l`U%$lw;B)sDg@4ef;B=D##{ML6S6ym0;VqajW9YOHh<36pBpt
zky{XLT4rktlK7)G2;z@XN+m=Uh=gOv2|-CFxU=U^q)qS$VwMLFp3f<df;_k}>Qs?Y
z6cNP3XR_|yymzN)5@l<XCMdHqp;EV?)=?<Xl0t#J2|-X;gMcbkf?%TU+`0EID1{l5
zl!*wUDD_8CAdsjIe{6y(5p-r!b_Xi|5WV_~erzKz{#|(Efn*APA0hVxRqcWQ#7rQ6
zjG_n?A!#&QgAYb1mw+Ep_|bjl>9-z1@X3c<eXk|=om_OyMx900VRsudta(sM9tE}N
z!Hd~lwBkqI{ixh=D1yd}B8dPu$|)(_b{#XKfC7qi1&Lxx6e(0@3JQ}g*Bmp?MK_%(
z7X82nGg2PG%pWMA02vjUdGKR*x|Pz0R=Ifq$S6}*d1WbC>V`*?PeyrB5JJu-;*ir-
zcioO2fFh;`WSTiyaGIeY9zj4o$|#J1jRMM%Dd1t-qAoVN8y;yg5d;;cl&b1>O*k<M
zDhU!KNFYq0fJ9qMda#p`NGeGXnrgDijGH%hx+4m&20;Q?r+AbiNV)F++AFah1cJ&a
zRysinGbnNEZ3^IuyX>i+274q?+B&NUw9-<W<Dnn1JM6E<uG!|Bli{dijudtIC8gwk
z8!k$}1?R_b#RVrNL8Z{ETaO=I%d4*hL447~>E?*)r=d16YN?1VEF5tcQE4TXS^~Oi
ztFP|avY#*G>+Y|CS~h6J^&&UbzQ`(DZP7*_9g<cOip0c_TH)aVnoy%T5OS=gkSx+5
zrBI52p!lJeSb#Kk(SmcCGzE`<tj#tc4t*Uqo@B!(*?$E!(Kg$Na&6#6!6AyEg6<WB
z=_!6t5mAU2fud;PhbJx)-yktQ72F;uA~x9`(3McyAd%3u)@M)uWpzPVFOBt`9v~qj
zL8TLP`g@A**7Q_6(My--t~2xUMXE-OCfJBQ9W^sk*F{2_JQl>qDQ{xBG}3f>;799u
z#t8gYydl>+NVSV(aY3(p5W5G-|FQgJSW6e&9_BNX;P~ZxP*UG-%AfU?%nXi^6EP}I
zm*{;2YjPkG?wH}Z<~=We9>Cwy`f!TgsfuEvBOfygxGhR$#Vf6em{#!PKm*<lfdqk|
z1erm>?_K0}BTS(4%)>y$gphbrE8ai?p+SN5O=%%9h2qfUKi-5dau+O!4@bg`Acin7
z9CQqCc=(auAyIh4+h0(ED8*uF4_GK{;YGMd6%{h?g%64UVFk~KM!U?eAYv34Otdl(
zIBrXG9v}q;k(L5dh{9i_02@P=#0OHahkvjGg(&ub3Q{~wFpLz;()#FuKSolJ<|75v
z8i=lqHIk76gq<G!b&*7rLL`9`iP;>JhvKMeHov+E2~t^*Rc`H*A!%hnASuZ}n$D1j
zR3u2sG@}X*agHCcV?jj8Jh7yNj>hEC8Yk06E*1w<m)u?V0z=0{P*N^hd1GDV_$X%Z
zA(+%Ng<}>Xy6K_d6zjPj{j#~u$$*h*&j5cwfWI7OAec!n#*OnkrYImo^b`bCEVG#O
zDhWA>d68x!W+&H-Wu^#{JR6zvPCJ>V@d)Avb3zoI15GHk|3D!KS9URt9zeyNaOk7B
zpfr>!#V3(0dP$IqG=++)DB&(z&U2~`G4~{>8wD1}x~%k=eX(Ik%JecmjIuYw42emZ
z$2)>3H6|`);z4yoHIO{XNAaWzLq)RHP*T#SFsvpf8_GsSWmKmmZ7WHen%1UhMLKen
zV@Vd%#5L)4uf0J5DVTE+BXJB*CM(D(KZKtYC;}C>q>5lQ2#8YkffPZg>?&`y8@~b;
zB$y(k_~0kF$r!F^qqWIj(JGS1N-464h23Ipi6-~GRZ(|cjDh|pv1-;fEq&Wu<Mzte
zpwyHnj=`xl8AQP{fih{7s%vsmkcfncf@lW8X%-&>|6IM!$vwYw=SZQtT&m17B+(q<
zRCa3;13_21)J04pJOT=|qyP%aL~lY2Bnmx+#J)}BsYXMhsu_vXcYzp%p9ajuRwnO~
z!MWsh`HLTp7Ua7~!$W}&eA1$Npbt?EgoZh+B?uEq!8nyLK`4xo;gXoa*3BVeL_AlZ
z%Gkpn0kL^Q@&lZbVy6{bqlFEO5Y^@Qk~^LfUi+J0qcs)9%AJf#sKR7sXeKnpHS2i2
zr>F*F&#hb*ri(w)#uz(yAP_o&na}*0BPWD6C>X_N3-X6joT8eFK;K6W>j6~_sEj-o
zNu1}*7CUzZuNsz1o8Nq(hk~S(PW7x-3)>q}{}lGnsP(g)>1<~`-*l(f39smeS>`jF
zc}4{?2r7CPYEcJsm}+JQm{nX{i5~YO4f;rvx!K%r4(SJYD9K=;S_;d^+5@fL?kz>(
zUByXN%DcJps}befsiYdsAK|sHD}50@jDiHHAOR_;5C>{ad(=~+V?oA!gsXN)pdtzI
zMG*W0D&Zjt!!d<>s0>lm09)7>LHB1&K|vH(E8eD<cfH+1<7_h{I|+wscKki!SQ7-`
zw5F-;h?{R&mnqo#-VMaXtm_+UxJ-_si_gUBTLATVDg-xp6YPz0x)cZE*i`bDiLLBN
zGMlID4oR&QK4px*Z`jTj?rb*B?=CC-|7f_Sr(AO#)Eh1}B*Uq?)p@gsKYe5h{pEHi
zOG?N;^ju<h3<=i_<n>}9VeLpLQxsG#m#kO%I^qSbDINV0idReT1d;o9&h8jgEKTem
z@!0O5tu=d2T_j~n0VwR8lEs5hQC6?~v+pJJh<-7u8`5t~y2@O-hCC$5QC%Ybpc<7|
z{_2yN-o_N7UpIFM^mVUvc@s62KuBILrPs~hY}1EC_~DYemrGbdQv7PE3hpry@SWh&
zy;Iyf^Bsp1>hYlR<cDMtn!{SzzXSb?NWV1~)96rfW&YhKg~Sr&{zbfh`4v)M)~8Q>
zZ?yjrkVid(<@eh&A?63>HW|Yd|9%BAegy%5nuC8@C4jrpbp7UeDM5Q6v3w#SdlwN1
zV>N%9XM3|#f7rKlAy_nY(Pwd0C{QP3K;udk1STO-3MPXGrVw6uc3m|zCom|3q?bv$
z(SkUJU^<9dgY*$3;0OLf7Z~Ii<V1u<SVX&Xazl7fFBnTXm}fa;gU-@hXf#YJ=tL(N
zT>!#`5H&j05>5CvbR0;5D54d3cY>m~e<>h9$>ScZ!+g@iKa8Vava~^LxM-Y5UiG9X
zVQ4<46Ngr$K1BjGPQVxrA&8)Ke2LZ+p2l2-l>%?#ZWDGVqo7Q?Gkxqw5OhdNL*g%c
zkV71HM~yWZnz(rgr-swg{~AaU1g?llk+^;m=K-V`F{T)QwU}|AxP!gXh#TaFGuDa}
zLxNOM3W8t?UpIh?qKcnINXfX2n@5Y~W^;X}hXTWg%26cmXNhWPh-RpHpVfg=0g7@#
z0_rA$A$SU>AO};B2&%&bO%Mm-q%s0CjNk+c?wA6tatd|W8!2!KiVy__S&$JE9Dz_8
zO?YR7bRNri1XB=f*yeu<sVYdAXaG4t18I;4={wAT1a%jL4GCta018eJ1X5rMpjQ%8
z!2~9Wk}A1P0!fe^d2%gzA{NPz4@m_PIgtbb8S~bWQ9zNCfda#!DtIs)y|a&U(2rE`
zj~`JOkoGA2=#MCI|C9@<lub~S1Tl~G$OreBV754G8zOi?5Cx=A3X<4{GA2i)7zj~-
zmW81(r(g=8pa`G<2)c7LuIH5$ac*asmTS2^ei#(=Xphr`l*Y4^H)54gi4t%rm$mVW
za)A&Qkvy$49gi86H762H`IMbG8L9#b^cI7erkN-9e8z(UL7*z(xPjzjmw2g{d<mLY
z2~no7j7<<ovUqOK<Y%nunhC**rO=aU$ylvnoJWA1t#q4^8F9U6KDtQ-yh#ea`IU*u
zi)SdCcbS)a$s5lZmHJ1F%h{YC(T?vJkC<neh>?{^*_a*>l&$%igtQawDW1jgh$)hu
z@TfYqLIr54|CVeSMT=M(rT}>WDxicpmeN_4hY6NqDUjY-n_2~&>!@^Kkr0XylG9;Z
z!swRCK>|y`48|!s$bnZBqmmNAj9>>6K@eT{HIj(2qJmd<8o7BX+HVuMJ2Prno)rXz
zabKuNIWH=tUeQV@x)>Bxq##kFodl!lg;|zyWa`*scoi`tIuRxMbr0wmBx<6Gf~C8`
zIJ~u;<M^NjQ35!$p{N*oA<Bs1B3%)K0;1ptd*BD@@q<R=mnq?SYibgT;HI?~5@niR
zBQ&NE1*QT-1#;>nPe>Js@Lz@DN{hNO4QM`=${Uq&8GrDN&IeI!${0*w3KSKab$X|H
zS{SOM|D_2Lrde@UppZu))o%iaj-m<*q?%zzAg8{R693q%0Me>ldZyJE1hG1+H}av;
z$(^W*r+Qj~Au+6BN}h7$VZ53UzUnuF#-RiBbGyMgiy<W>fUCOdtvQ#eTl%W+#B|)+
zp&kIJZQ2{0DiNNlrlKmS#Y%MT>7iz79(MYytNIa5ilGIY6>Sv+U71E!N);q<1O&=W
z2HRy1OBI7!ED&3<5i1f7i?Icpuno&i3M;Xna|9yG8xHFz)4^kX@Lx*juqGRVA1kd#
zkg{havng`3-+=-+8WKC(v5T{^Et?gnl>(IpJt^X|$QKut)geo(ZaK>vMT<tD5VYR`
z|Ft~jv>N-ONt8xOD-v1}L`eg)PqeWmTQoacwqsi~R9j<0OFknDw{a`Cb4#~%Yqxic
zw{cqn#uYbt>$iXFw|i?=m$Qjl^O6>uA`PdsfD00WE0u-YR*KtK+7W?D_cDo4xs0p1
z7vZ>p1-Y9Gx}ht&qf5G_Yq}MLLxO+@RFDUw5Gkh%yRmB@%%Hlg>$*IfS)_n?)grkV
zSZIu!x~to|ughh<TQQ}eZCo3IO@O=_5w^06x4~<>#0$OEYrWTtz1ge11Ly~WP-l4X
zv)e1acH0Eq`@P|7lr3sBa`1f~z`mqgzTS&^=vy@Jn<6E^2cV!U>xjSlyJzDI|F`jb
zz5q<X1#G|vjKB%3zzfX44eY=V48ajB!4piu6>Py5jKLYK!5hrM9qhp$48kES!Xr$=
zC2YbcjKV3b!Yj<eE$qTC48t)j!!u07HEhE-jKda81vSfpJe<R%%Ljv7EluzT4Ew_m
zd<1(CkN-;*asYXC>%_7f#BDXjbeqIWT*6n(2TWWoQ4F_QJRn}2Mq;crRZPK0kO!yt
zgeZUqiI4|qbp(LGjBz{)Um+JwBS38I#+B9tiD0pKd=Y4@#(^9scFY@b{B>>oBe<Jq
zaRMNM{0ER~Xl?w)c9AEBe85FfVX2uSkbH8A+#M<>1&Q!@jBFm1d`+Ot{~Z7l1%40+
zm2Am#e94G{$RXj$X;jN0G0LU<5x3mS>4676dNjFwB8tEVi*TW1@x^l7A#UqCj{Fh3
z{0AyW$C!+Ot_;h?Qpkv>$?xIEPD;wtEEnAzHNY&)oAb@u94A4;%pnmR#*EBJQO&g6
z&d<Eafo#rpk<a!V%7Hw~uYt{QT+j1bB*&c0PUg&h6VNFl&2ab527N;bO*p8m%i&xc
zPbL?w{K^!m$w#owu>{T88yuqWAPo5sqA)S0FbcL51Z?VAbRi0Pz&NrM68KlADZSFt
znlMy>e<NMeNO%N_Ak;z~F1uSOE)5cjKnj7t)J)CDO5M~>jet(_|I=)S(tx1Swgl5M
z%?vcnxZ9yM<XkkDm?A!{5f};8Q4JswAqadR3K5i9SDn>?wbW`|5D_8NE-@o5O`K;F
z(=&b4eN7ouebyDk*M|5JZ0*)?{dy!_*i-#A*U802bJ&iCDUinpJd4pDi_{n>(U()#
zO}*B%yV$+6)qs81MN$|mF%m;f)W9j$l~kFE{nnM%&A}1br!d*xwu3?K+C{A#o&6D)
z%{(Y^+Fc#kh|LzEE!D4=+y9H(ejwR&9o2zQ9LMd|c)i+tE!=FTJW^%KBC**aq1}4j
z8??>XFof9_G2Wad*ExL==>0P7o!F{v-c-@iuC3H4lGdV~|Gnpd6gb2h1*Ro_)i=l%
z9G*oTM&W716BB@C;2}{xmC23O1mH$-Rg%gZ2(H|Lv5izA3V3(ntzpF50^y|4Hw)ex
z^eeHa@We$E+bKfUeN_qpo|++Eccj4^1pW{xzA|k1cCa&$E8{jD&M6E&B}ML#HICt;
z!{MG4hIGp0B%YhpLIQ$OK~L_^6z*RVtL2_;d~6uyi{p7X<S#)kn^bvBpB>v14u&Wq
z$poRvB%pU!{<+kX5CEy+NuJ<a&U`AKLH_dPKfbYbj^$MjQHSo~Q~~H_j(~MpScAT)
zTy8Y<?KhBKm^$u%aA)ZcUf@3dS(?5rpN-};InLj=|L2QNz}*8yF}7^vgl8TgVZm`w
zaN#emu5+ul5R`7~HgST?m^vvE>&RO)#4Zx7Zbo05L%?K!szd9#p&1SfQCv&{NYGHr
z1xjy10@S{@eXu6sb(D2@1OpP|725>CbcvJw5WB)zzg`f=9ulNLt5&=0sR{3h!3Sga
zqaZQsoJ<h0j_jR;0_=Y502%A@P89)95Kyp#!NJ97TkxUPhu8-3F`-dGP>123@Bmry
zLI~zL0(bXbO!Lm~&hGEbqwl7(r^Q0<6x0N}4j>3G7vnDH)WYx&qi7-m^F&mFv3^z|
z(eJSCSt4H$H$T+_V)U=KXGGuZQ+-wW-e?=I|AQ2t@nWgWAdl}UKkyAD^P$*K7>)7y
zSMRLR_060WI12T>-14=wr%VsPn1VsNB&K~9>zE5?>W3*iCHKCyr`|>dcEedKKinn_
zRp%`6Wh2Bx$b6`f_&rPb(r#<p#5tztd2yy2TEP`wp`n}j7?A;IuJ&%7xD=b>zIdfM
zH*pmJA{0zf?pqUGKM_3v);to?6nBvjfD!me$oR@`)R3QTlAjQ&v-`R+Hc{^*m9Kt2
zZxak@`#Iq^REilhNJ!vhluf8AoNLnb8vW0I8JXencVil;p&G%Y{oX(7*jl1KgZj>o
zfY5LL8{_`c-^}P=3O+OZTZ?#h50vUh{}9E0Q~<&3hX;Zln2ch^>{OIdfC_pbL5d0$
zW=9GJVHV}##)AnLHYA9L*~1dd<UEWxvEs&pd<3%efU3{NCU^uf%Yz3`kcWvz75q~Q
zrc9Qo@WAvSlBCIyBMX*1Nzf=#4?ckkMG6Si(3vcwluC#y5D9`cZ|2;&@oU(z1yKNE
zhKkuJiv$CiIzlR8sU}plK0G2S;oQ0&FlvNp7N<_0cJb<E#<wM@f=v?gA$S<+-MoAI
zX5Ct_qe6xbS-Kopa4J>StzEx{9s8jaW=!lRB8Z~YA4P$Rc750cRU#A=rNDHV;$a}%
z9(42eUC@sr4-^YOOwO9NZI-5*|I3aEydbkce?}>y0uv$Phvdzp*Is+$`i;zU@9tfB
zcyVUOU1J;t1v!`@g}={4F(rx=zA^;`g8p!7ysq+KMv+9CVCWR(JV*gUX8dTPiR(b2
z%P>$%DIqsg6bXWaC{8)WG}l1E%Yz?W`b?xmE_7lPR8sRmkU*F~0SQGkL~6V7$~!N;
zf}*HMjvbwxFQfXJdoDkM+-s65il*R-CE<uOF3kA23v$RJkK8aRX8vFz2r5?mO|2-W
zJd+?O+w_1L%$kBzPC5aNb580uBI+SLPGm+DP(b;NP(cq31eH+~{0fyeNwg@46H}Db
z(1Jt?R8&O8^Ptj87c527|0Um}(gP@ukTQ{2Js6We|5*AGDeoRaVZ|0-jParAs#{6V
zJ8cD4SQlY5ZO``pB<NV{eEsg!jTQyVQAmT^ugp3(;u5|mnc>q<Wz(g$+*@-Mmse)M
z99Pjd3muf(MjwsT%~A*TfKwAuw98UVTjjH$UJDYENF$Myb=g?;^)^yf4|X+GEb)tO
z)>>n|nAMCoTG%;fiIwr8U)y8ST<~6oIcB6%DCIj){2)jXQ9SrdTQLWtcOw!``D3G-
zbKbdUTv6faTA_(%jpl66Wly$5-BQR8D&UIlAyBLYHtVg)o4IC|zOFi8oITK)=g`Um
z8a9lMI)WLxtrRKJ|GL+PklYEGk<qfC4P)k3WE<nKaDw_c#lfahriz3&gBz7>xD6*L
z1*TY%8tYTE=DMH(6EVe)K$t-_V6Y21n(d@RLqY7&jW%U<pJ|HQ%(AC`Nb{&L5|0Td
z>LqCO(oau4bF(wETl5c^4}N&UqbFWrW*mPA_=kkIi<w9*GmRp|HFr{b(WEz@AntGP
z{(Hc4lihL;j5i&1+!Gp{_1e>>`XR=#7fIllhOENS4|xUoU*$|QH|MQwX-!L(o%kn}
z<WU5B_nQ||t_Hu)jjd}8EZ*}7ca#vWEp{E8U1f4dJKH^EgVWod^ax@>mZZ-h(i2}n
z$k#p<LXJi)|J;c0LP)y$p^Ap}@m>!J(z>?w%z*aeA>4epKmRpOfnKrQ2|*`6nRU^N
zuSo$ZL_rpUkOF6XFokmXKpFOB4iuu;11d;you(kJjAu-v2i8cCh>*}}_OfFT#Yo1D
zBmyfhdm#z(P#BT$FJTZ_WaS(=NSHj*jC#!D9^D8>Inog+7=Z%eG@=<t6_Sm8YtP>b
z6FU+Tq;C8R#M{bf8c+xVCGUI9*Z2@fH=#*#d7ug^sHH<n@-dQ4K@5dJK}L~y(vo;o
zBO4XT$QIhfQoIZg=iV5{IqHsc#nj-RD0D#$qDq;}j36<`=s#xI>Mp2Q+c=RT&(^$f
zhSy^W|2<i9y7{m%mK!03Y4o{~ftC}A{WK;ulgW%_Hl;8r*k&hLV$D%t(~w59WkDoo
znm*pMFz0mW5;Mw2Tza4n?WDpx*Va)2!sMa`l@~cT$xTmY6D7xV6MIhTPE)`WfhbjJ
zLM5rgh<0;Zg1DwPJy1}R;gg_F-KQ))5YX-+R8dH+C~JgC5Rkg*I!9biga|SUHeM2q
z(c~&a(ODOMK7_1CO{z$53Aw5qQmDxMVqW#S5fqRjKo7AHls*H9L%9%Dx@k@d6frV_
zl%i_|32YL1cBnp(A_$jlB#;{WSibsIrp|#PB9pg~&&8~?!18QtB0JbaAvSZ1ePj)j
z|EL+wl$0PYAqy%cl-4#$u9dg~qF@FynC6^fn0=z_%o33hQBZ-9BC(^oMiq!rl%jUW
z?dxAzb6V(Xw0W*sEkOuNmD38XZPjxvhhSShx1@Gk)U~d3@A8@#c9*2Tb&h)#MT%1-
z0waH#?`BLv-wHytAOVI+AWpH7n-D~}!)>QysDfavqDsLG7AtAjW?zVWH@%8wtVYip
zHdGmxT&Ah)WrL8}I(nCcCT>s4@W5aHN;k!r&4^|}J6fAIRi+<aZyRA!-lWj@zx(a)
zk&$v*AcvTbBQ|V(2Fx0;9(c+ydGK(XbK!?Hm?b2Da#G-X-4@^XAyu}^g1hXL|L{(>
z%pE2nml>AfC-00PFdh%&V#nix5P7eEju{F@q1~&TqLqp$S{p@zrq~U03i8=VPz(*(
zM4tk}9(l;4(Ztt5e->Grwi=%uTv+gkg4BX0^lK!2=tM6XYsZBNM*2cqD{)be%*d@+
zCHJ@9;v_hdb*mzdFl=Hs#uSjVt!sXO2f>KKaUAZ`pMHQKJVYTxrVtORJ^c_<-_wq}
zQFSRMowGz^nbg02WPKqGT3FlDIi23fv`ta%Yj>qm1a9iL%l+<D!z6Z2y7y*Kf$x~^
zbKsj%b3p)c@beJ6*ae&L!Ru+^go{_=Ea~>)9s=%Oz8Wc(Nf<>yee4t8|M}7i@%F|O
zP4XBc<=-a1bj3d%%mT~Q)$nV#s6CKzmb~2GibG1qZ_e(IqpNxW_mY7jj+BNw{0NPa
zv&D<PA$ilg3D{0~K{$R-nMR#w2VXU%v)<T5dwt<kCkV^)+*DAT8_;i$*&-Uml1G1s
z1gJ3F3;%F&50oNh=YdJxHHvpvBEj%Ta7h%d19+s!ecLCJnY%ZlcJNT%@!%0W9|`Y)
zy>G<t|Cz0oG&AV>u+a}<wG6Ml3(Wr2$F3V$ge*0eT-Q+KPtca`AFSAC@m$_DEPv%g
zPO*pAWF8`$hY97k2W-`#s`DGCtGj*w5Zzz!6kTbiYhD=qJ`=wn|I??+tU?Nt>`xpf
zX!h!6GAs%^2jcbis%iSoAJ&bqpDMt&-S8j8_s_$G3Cs_e_lv#W!KEWOJjBb0y5PP$
z^S%Mpp=3K31w6pSqa(<px${#x&f~x6(>djfK%@{qUonm6(>mJwzkZ>hZAqtsQ^ELi
zzX@AEJ7b9xe30F{v#wY`570mB>ADys2;;juC&|GbY^#E>KmU^~2h5ygv%uEyK)8d#
zq(eciD=a)P1wv{*71W#WikMJ>iBhP-E5yL-fD$j1mnkfWACNAXNhCiYB+G~jjp8K|
za6=V}LyAB{IsC#fM5ispuUHGcQNo+mF&{i^2`HkFUSmDD|A94%s2W1r17JHT+6$ss
z*|j%|wy}~yWC0FC{IWWPn>ZYWx3P@0ApvXx!%-1KhyX?4io>coJ(*HBKV&aYoR3YU
zh_1j0QcD3WOu_je#nrJzs_3h?*~Q)=qhr(|U+l3n%Rpt!95Ol`_OOgUaYU53hzdbQ
z=HW$Ve4%Mnp+BL+H{2W#7)2FAjJzp`x@jd?G%z)UwMdMVNgPAB3P!|`$Dc~BVnm8R
zA_#b_FbuRgU}MMX8Am(xH&T$Q_IjIx48^9PMLjW=416JI<Pa=GKa1?edwRqJTb*ir
zl8JPjQNYE}I!Cyv8uSB4Mx;VjB&3rBF2q<#;G!0H|8$&uTpZg1NTF#(IE=!djG9wW
zgeV|NqKp(M351#`$0!39>!N}qn1WI$1?&m4hd@fDjKik7j;hQYp)5+Hv==0ZJXB$V
zQvd}g2m&cE1vcWg7AniLOv|;@A+P*O6ch~pxk{0UL)|cir;N&}1ie`kJ+Sc+DhPro
zAcayOBi-PO6u<+7P(6}b#5+3$IhcY(pcYW5%oLE5Q>Y6PFonKsf;B1@*NDVGh=RjZ
zgk-_JKY<WDK!FuYh^|Nhx-81icuTZYOSX)dq(sbxyh|)fO1%^fv(!zwR3By#1Z#tk
z<ar^!^h>FfMO3NHp{&aXv76WwiO>=WP_Q;D|J=7<v`X^85QUse>%7hH;{y!Q%<JgR
z?=*#Sd(WDPPxeBV&zev0OtVsugC>}hRScNT>`ZF%PWqHjhJw%VY{pbM1^)EU&?KYW
zj7#3U%HMPgr-VxBOwQ$Og632~u@sunq=M1pujKN_3N=qY5>XN@O%GUv^^Ah{?8g-p
z2@r)TAL}^`{mbd(2;-d4hj>x;^h_XyQ5jVqAKlFh?aK@WOoLEP<_s;Sw3h<aPaY&c
z1T|3B5l|`^QU-O<|BTQl?a<JAP3@e`bMeg-wbJ@%(EbEdG{wsCOw+efurGzs4TVzR
z08P;(O&Mbb8!b+_Oj4jERC&3ylu^sL|G=CDHH_s-h(rLA|JxOqNL1vLm%@<L89h|D
z;!V-2q1AlUM?#xVC9XE1h)wkxAo74py_Fzv)OOObPYOg)B8U<=orF*XJ~;w}s1VIb
zv_xDzwXn1bu~8D}1G$KdSP25*0);Rdsn(zZ$Y_*EX-z)5Rfb{$Q?SO9laU|*)pkml
zwP+`q8da8H)s67hQngC3h>OXT(u;UiNL8v+g)ok~R#3>+VG>tV_yccD9&sfO>p|6|
zKvqxyR6Su=e#OFl?N|FmKZFg7hE0|AWLHqIBV$F@Qn(d{UD$+`*ms@SCa73DO4m?T
z3w8}ycqJ~)+E;fq$4<QnW_8wj|6JEcy`W`Hh-M{)k-~$5Jy>U?qqho37DU&0ja5c1
zS#VVppWPOw&7N;f1U_-qm95!!z0s;wSZDM!j@77R-3uxS1d7dBJ8D^!xYvBG+LT?>
z<q%tj3Z!#AS(`nuwzXKSbyu8asF^JYp(Rz5E!4jS4{Ul35;y{1WCGraHSjoGz<rs*
zrHa^EM`nZ#$jyw%aa=$nTu)1ZZF>#DH4M$=T-G35P>~H3xLlYyU6%L((&Zf1@LUf_
z-QIa!(T&|NGF{1ai}+JE){TuIpj_wBUDJg-;YErcpxhwXHsbX+-E9ryrHa~3L*CUW
z=;e^vecaGxjn$o*ZS!5m{~cWFbq(t6-cR~n>Lpy<<xH7TUhr67blo=Rtt7#{-RzZK
z*nr=}r3&pWUdT<~?Ufnu_1*v$-~lG!0yf|SM&JZi;00#j26o^FhTsU6;0dPS3bx=2
z#^4Or;0@;B4))*=2H_AE;Sna`5;oxzM&T4z;T2}#7IxtmhT#~N;Tfjk8n)pZ#^D^+
z;T`7T9`@lM2I3$V;vpvDA~xb9M&cw^;w5I{CU)W{hT<re;wh%$Dz@S)#^Nm2;w|Rl
zF81Ot2IDXm<1r@VGUj0_sNXL_V>AAu4z*s`;DbMW88<HBBiIAXY`c~qAvsXc5sqWH
z`(xMO<JYibJjUTb|Bk{zMhZoS2}W+<Lgs@!{@*)}<d{L^8ouO>$mA%7WJylpBglh9
z_=71#0X#^AJov0500hiY<xxn42@(yU%MDXTWvXa`sHKYkixp57<$gJW9RcPYfn}sn
zWy3M$U`_<)RTN}SX21yLQEuE-hKVRJomw_vXzL=7@FHxM4PJ)kWkzN?l7d74g+EZ{
zb!6sOwi89*gGEqPb2JSKi)L4zpm8o|_he>qCTDX7=U~=dZ7v9V=4Y#{=FrvVUuI^R
zyt44Ckak`jZ$`snZd~5LgQJz`ml0?>D&<o)=#+tImN){6*0E#uX9*Lq30r7?qh*=;
z=#6OUQOW0Z|8{8h*l2483_zggX>MqD=AT>sU4Z_{R#xY3#_6HH>74#JT&4=3o{yBN
z=^tC^ZHZ~Oi0aa<YM2gZmzHLjxM*}v=%Y63@nmP7eqksP1@l-+6c7c!Glfx*+FMN>
z%MgV;_!{p^FuPJ~wsvcnh=>(j4!bgIw2s3gP=vxRY`qv}bcJh{Py|v4gvWmDbIuvZ
zhU`EnjKD^StZa=SSnQ2}i^66GQ+VT_<mQ-RYM3eQ*TC$hZ0yRm?1z90LEr;XutC-!
zY{PEsESj9#ia%|ZXW5Wzx@HEu7BA(TZ5wRu%D#@+K5nX{Y{>rSlwoe##-7h!P0?nJ
zgU0RL|5oVMh@EodgSuGltmN!7l?^Dl8UEU|@{Us2m~I=)Yd~o0pO%sF9?$eXg-uIt
z=r-vDOX=nKZ(vz#`QGbuIqS?G&jV-e=Z@^K0q?qq@A>|<xvp!z+HF0eqrPU|(|)_)
zu5j4!@Zp|t;U;d4(u)nJM1YR)0?&;BmvG2p@Yil}z5ZRka&Z=Cn;0()_D&rhcj@g$
zY!#w#5qI#Gkn9lF4fZ%4#Gx(+>8orJ1weq3)FBa%lw1(9i@$num^eMZW}a3`a*q^T
z(us{IpK^@Txu6@ZFz=qxHuLtDmAa_TYi5Sgb`1^(kJR?=Qc&_bH$on}#<GYRG9ORL
z|Mu+whm9)l9zqIqT;VoA|Hwy=4S;U+eo?%xJh!Gs3PMj6ME^j(;&U-KLMexH(PcRj
zI6?;_^)z=zYFrL2Ck4daThn0kRPl3&IQ3NDxzYM<D?@44X!88}j#^*x`{;AT5d}UA
z!TNypY*BPuUsx}fj)XvQLVfnr!QHd@iA86fZHIQ2=<;f3IvEM}EkCekm-Nj*ci1TR
zSWkB>TXl?!ch=zafbn*0FLWBdS)h}(L*ylU!ZRqrCfy^Xe!s0-uMFdoc7g|%?2%;x
zgf;C;ol=PS*PwV}bofQRK-S;`z7yTd@g!el#tsQ2`;uf75D{YL4m_WkCMfw^|37&m
z>A8&8x{9BwXN?)nIj)CwrInB8DGP%5LwQdMc!b|ss<?QhIC`W=`selef>?Uj=y;HR
zdd^wH01JA7^f#IpvfPmQhk$|zf|9nAyrE}_s7F^|bBRDYf~t28t`GamUbm)~vdo|(
ztiOAprz3;EHN@F>D*5}Gr?O{MdxS4~JK}j<QFu>k`?1oql=nBt@42rRzM4e%++~Tw
z?=#B}q$XH=s&{;su6n*-d*+Fh(r>JaC;iKJ4$3!ue;54uQ>q|ZLmlLNt<B-si3&{u
zuG$yRg0PAQc|W3?3>B*Vl<-H7BgUmX#G{pc)sSP9sHxR(4c!+S=9N5!|651_3j$s>
z1vAvGEdh=cST4CZ1uB6qKCm=YsG7Hk3&PkQUi}D445IQ^2=uRW^^c3H35>xg5rFU@
zaG*dG%;XG2g@+))Ak3mLj7Z{0M238r{TSE;k054w@ZbqTkjW@!%uYoa1xR2ZQ%6Xd
zEY*Y{3P8+IF&jm3V4_h2|CAc&5Mo6S3X2XcYII>yk|t5A6qr;gK|r8JmOPnqWyFga
zS-OPDOr}PT9zlvMY7ikqRDB{I5oI#xP7ipP5iD^qqT7fyZ_*X|uqYo=8cp&U=u~Ue
zifaYl&AV6N(TXi!#+(Tj^H|LuE{i2Au<&7Ki5*Y&o4RtujU7LR{~SnKU=zeVeF_9x
z_BC3DBuG)A!mO@`#Zb9=_={5~O`FS!$DPak_RpXMqm(j<Di8_kxvdNAS=~2q;lzz^
zRh;$sXv4H^dzkH^w&{dSySkqb-$Qhh)8pqy-)T!xMcG?L^`(?o1c~?EZfC_-po9}r
zSfPazO2G^hEG1G<DSs#u2ww*h)C4Mtpdg$S6<w49L4kCb+=n3&<cA_2n8zYBE-IDb
zh7p+(<An(l#7rQ6jG_n?6_rF(kw+%EWRDs$)TB~GRwUdM6b6FIC{d)~1WY^qfme|v
zg5r_~KU}2QU5O;pgcGBn@|6dmFc$<UrIb*RDT)L^LKLT*|AJhBX;Q={Gj1{ir<`=!
zDM%nppn!xTr|=k&j{_Nrq>|SSCkLETRymkbK@x<=p3H~>3MihT@MoZd7Rr*BU}A?#
zrg&1MC!ZRfm?ASP3KT`CqcYTKl%O6VY9gcxr0k~y#R{mPgmPtUv&a^uCAG3%TPu)4
zes*gLx$>xLcCEfT<&OkmDUhU;T8e40I~F-$LL?5vs|UXJ>4CP+LJOmZAc~kAxU?Ed
z(53?8%jtm97HlrMwtjhTDY{~e>&849EF;22J*+8}(Ly;bWUI34S;#2NnDBhTsyL9k
zth(x%KsMqy+_%;;+;5(H27KqxzsfslrI%)EB8oNJ|IExEOawv2pTIsnY>6~$UE_^8
z`Uy0)Vb41DXEDM&^4SN|h_a^zqaE`=^Db@g+9J2@0mTUN+g9HUp}KX}#M;Gj&KDw{
zxZ;YZP>PVC_#u!YqIh7{h!xSt%$5?J@&`kZOHR4vw4ovr*aVT#IaQ65JCLzXS{ScE
zr}#mIO)~duDzzuoetS`@M+A!QmsgbL@C634s9-Ucne2fiNL^yoGS?=haA|pv0y9$f
zaS94iH(V6-o@+GyVbBt!JzER`Ul8xM8#$01jhf;|@_!2tJ43HWB;5B5b?<+6VFp){
z=b74Y<$43r9<(yIIf2YC5%s&@?q~-;nMH7d|I8rK?0OeJfdmkI5Tu{|HW)lp3@?O`
zAz(!KHxL6J#!&t%Q2YEw!^t@0KJ$y54GE$^fiQ4{5-cH_csRMrUBv?`9ANme=QzRW
zkQqGe;00f(y!RCFiu%do0a<t_BZ@AG?0aHGYDh)j`H&d`>=zi3SfaT+a3C{mP3d}8
zmnGgMfy}^O5PQbQ?fot_`Y}ly9l|drIN^<iYz-V4Vj|P|420ejp%N##Lau<$14kTP
zCO4VHGk)-kp>tyyC)3F=y3c}W>|sUX1uFdwQgi)N<Kk**%Ueby1*8x~cLYL;$nn7x
zE|Sl_atR7i>;V;|AkGT0=SyG;6F>s_{|!@47d2<HZ<oDfNFu;9q`r|L4|TZ<EHgEb
zaE|kM+0$kjsp3k=2*OL)R7&!=d5YYaiBo7Y%{=e&F6iZfC1Ug?CIx{yFG@&weCX%N
zJOI!u=?jSLoTfOVMwC1-0~Ecy3p2Avm2PH<mY*}|IlWj<f{emFff%R<NP(Ob95b2A
z90*1=y272H)1m^Y=|&@&(-jg06eOLd7kPS9hHyll{Tix65y}&9ekPv+Nog9_n9GT>
z5~2g?L!+qB5>)UIUVU3BLtMJkjP`UVzl={bXCu^uhEJEgBnVfZ^;I7Jbbv%T=|HF&
z)hek}svhv`T7x;v{45Zw>BDMX|H)a^h!nQ1`GF}imC4LGqK*{RjO3k|3cUid)U2Ng
zZ4)UoAj-<LE*Q0H`eJI?)>d|=)6}d$PWRT578I_}Wb0vfYglPIw4y-utz@;@QfT%z
zxaoxDI}M~1kh0IUvX!GqacSM_RtN>87{wYDkqBdH1`s#Os*GZk0!46)Af>>a<i2}F
z@q&;PL6|Q&?Ie)(Dn+~8Ma|zR)LeqlPH_RI$#z*gq5nGch!YCLJ?Toz=ACJQi7<&M
zsIbkuII}(;kjq@=5~EW@)TyhRFsm$l&3vUQ5Thss3L~mt0|S_c7%u63CS;KQVs;=P
zPF4XMJU26OxWkR|ka^LY|E@jKSSbUZF;Q#GkOA+wNL*oZQ=L3b1$!XMoNCyO8Ny(O
zbmXyWDKOtEf(I3|Si_JZ#VHcukcb+kZ$a*GjHnDfrg#^;0)cOqL(F9|BbCi=R&zuK
z{AGfK`7=J2mzfUz<M!&ga^s~Ipc(Sw0u8vf)g4Hl-#cEI6*;|{W^EtjOW%ilMa$9R
z%A7qckXD<7TxVW!i-`<GBZDQsWIS(rL4E7=mU_NHsINd&tv9Y1+l!qJ?|7HJ=SdgZ
zi0)-}ifOH3XG>biVJ&8v`D^K2<C?lK#xA+Zje=3^mmokn#eEb(KCvRTp$5^{6dGC`
zc5|A1rx5Z}2vYBN|5+N{FcuELW7l7XhyvOcN;pjft~dni$DH(BbbOf6CkPX@Z$H3;
zTtx9dD(meuNjd__OP&@}G)%+=+IYu5j%0}m<OiZK1s<Z%geI7RU*}FYRT%C^^}c&T
z1P>`|QO;wQP#h4bn5rU5Zt@krYu=i6=7*Hx^B>+f=m;OL(WN|fpckb!JnH(E88Y-2
zC4K4QR*S>CJrJ4G+~znxxIxet=PEVb=|@Nl);&;l53IZ0<Rkm48_sjJ0J11Pcl4gs
z&iKkXKJDMZx8#Dpa|2&qLOvgLL;|00sP9f+IW9K8Pa+V)ADiiV-@EGdo));*{N_0a
zz57nnC8hW?|Mav^j)wQm?*^mZi^1oL=PN&X!CQU2#n&YHU@!OC1HKfLXMXaD*UE#R
zJ!(-W^ytg&ee5p66s)bckVt?EyT|JfY9B}`43(sckpG<L7swHiV1FcBBnrfNe^J6e
z?maCI#CZVfRS4nvUjQDQVrUUn@Rhun!p=xlZD5~<ft-c~0#p&iA`F!FlvaTV$7xjH
zY5ajD6&t@CpoDbY5e&~M?16;<AkjsH2Bwcm36>~O&SzlYPpsd4afJ%P4hx=253XPf
z7Dd;|-~xG(4+0nwMg$XF(GdcXh`r#8)Zh(rUPYXs+vNrcX4%1Mi}kTY4$|Kc3Pk)(
z)BJe={}g7AQ)Qu2d|?r05yIVI18&$HR$&<q*%?Ah8)l&RO$gz2pBXw78mb>dw4ay}
zME%`g{_TVsa$p$JlNbUX7oNg_6ry@f8D}xXC9)s!?V#WF;Qis>Lp0(BdXXb~ksz9%
zl&B&aRz%meqLhr_8dV}5mY*vEN%;I%b4{TR8lnts+V=_LEeVItsMn<7fhlYgw?&O-
zsNj7V3ltPZDIlXVh7@r`W4A0IL;L`teUoqa!8X;#`b^V2kw7>e#`+W^Rgl0u!Q1}S
zNH7*f@;FHlh|4;Th6!a4v_Q{+grKIu&Nl6V7I9SvrVl^r<3A3T74{5?;3GJSV`_|o
z{}|PV{<LFJbR(QyAwdkJXA~q$=uT~%hHwOAGY-Tv_7z2%$~i{l`b^|u5Cu!7qd;`z
zRw2|&zK4^*jvt6rO@fe9Wn@Iq<6(%NJobz+g5g4@QGaO{OF35>m1Ii7B>PokFZrYr
zA=E?W7b%F5Ouh$O4CQ;+UPxLXSq=y_+Ke@78d9!hMR=utkYo4xT~)4-GcrSs$z>YV
z#Z`V}&qSqPqE25iq;UA77NO+7FaxxuKu_5vQ`|*kUgJRUr58;ma-bz-sO4OyWiP$u
zI8x<iPSs%Qqh?|zXQJa*CgnSFqc;u^WUk#X!e%X{z$qv~6xgP1dWNwC!bS)Z|1)}s
zDNw-?OhGA>f&gJz3mFM-lA~S{#Brt%ZQdqsrV2A40Rl1v6PyAlI6)9dfhi!?s~rz^
zYA1Jk=K?`zbQ+^vz>;qk2QvtQ&6P<4df8Y6XB3b^uMuYxqyQe2#DNTCAVfhBM1dki
zl0x3eDab(zRLv>ilqmpb6BLHH6v%%D=ztdJ%SDR_-X#hQn@JqVY}O`v3WRuWXLll&
zZZ?5^I;DD=8FgwSYmtD1QUQdrS&x;195jK|WF{yesDe@fgZ^f44rg(?PI9WKVq|BD
zmS>Uf=8=wQl9FeB#OQ-YC~}~vleXu3HbH!zlZ?`+gbq-3df6%5XpTDQ|1x$Th(@Q)
zC1si50f*kjXf6UDq$rPe)ZKkfk1l9kTq#$A%5L7p`b_DJRw)pj=WTk%oYpCjKIwRx
z=nIi4j_PPHF<6;SD$-f%nKG$znrDb2s-b$SbQTAcJ}M&qDW?Xha1!Sl<t261#h`vE
za`0$^?rFd1>5r1hhIXhv!VGY#Dv_=bDA-&wl25M+>8hsckQ&(Oz-pm7l$Say!~m)w
zp=h8YsiQ9Gy-e%+xG9`^=%!k0qblilKIQebsF>0OiybSlZe(n_tAz*$zZpt*-h|zi
zt5A?wqu7ZP5>7?XD=wNHXYs2x$}38dtHDJ?5D;jrN!*>Nlfrsf|E9#NkTp#HT*=>H
zhjs)MmoTVUOc#G-g(7IryHSByu!?6GC<*idPS9sVa2P1)5>rt{$<Bo+pe%-l+%zSR
zNq_<qn8HYw9&$h|!|qRZGzx23Y()4K3?}T$#w<(FsnLRhGpQ`gmIAZ{LB1w}eF==w
zqDVt5Y@<kA#vU!$My$*7?9;lA*RB!SqQb@sh0~G(Q!VX_L@m!^Q}<15hv_0X?QBN*
z?110_%Yp*Bl9xlRY)qgJ*?z6Vpb)?Yf!vbR-p&Pb3@*<a?!Sa>B4kP++-*i-kLNal
z)Q0ZoPAx<HE3{CqN$63*O2y_%TwbOwLu9Roac!$=8gWE!|Ju&&IVEn(`mWWI3JLse
z&;BgF+HTQm#~*A{?Z%pYIj_EIqwY#>-106{%`WObF8U0u*lKURqE7J!uH%BQ*%EDP
zvgcGC?7wL3?Hc8~!mlm4<AhAaG8RYcAjO3+0sh8sfgFMTrVmy8FXJ%I{7#%y%x?;e
z+e8%2g#-bNDX`)&Fyf%V04t6KSHurAF#C941S`c4G^|j-Sp9zR1}7o_znux6BnoHG
zxUGo_XO97UaN>Y){8lgv|4Rr{$OD(KQpm6iQ$-NyF#X|h4P)dG8*xP#uq|P*11kjy
zliLg{@woA@Uo^3ATro}DsY7M)G<C6rNHP1k@DeZa{}=y@TA1+}D@7W69~AfR8^duN
z%kdo3v4lKc9piBx>+v4*aUc8f9|LkA3-TZnav>Y?AtQ1kE3#!!+#);jBSUf|OY$UB
zawS{xC1Y|XYw{+4pBxw@Cxdb*i}EOwaw(hgDWh^KtMV$dax1&?E5mXu%knJKaxL5P
zE#q=7>+&x1axeSxF9UNh3-d4&b1@t9F(Y#_EAuilb2B^hGedJUOY<~Sb2VG@HDhx&
zYcn5H0SwzxH*fPTZRrwQ2p?D(;*7H*AHg0Z0v{Bdb(u3EuX8)Ub0N!t)>+p*d!Ift
zF+01nf}Hb&#PfB{^FQzLK=U(&3^XYxbS@Wk|2>DZg&aX1B*GscB?{m{BIJRA9RVQN
zYe$d5cTt5CLJLM~^td$v=PCtBCn7~#bRxn@OvA}~uCYf)L`KVWB5d(Z=d@0@bVakJ
z0K4=>XY@wbG04?YW7HB-OY~49RZlaM6eI#D{J~Bag|R3CA1s2Y;IvFzHB~5eiKw(h
z+caE&2p({)z}SybBWG4`HSBcsN1wHQ9YIfvG=&_&T({6#uTe`daaq660~SSH_cZK8
z0bjp}V6U-Wx3yNQ(^P%3QiQetGWPx?reo7IOc(Y~zqF+lH4rz3Usp(2=d~iB^@V`+
zT_<8?O9)}-G+YBhNW)TTpLSpu$YBQp|65-NVw1IOD@966Tx!D-ZtFIMm~?R$satb3
zRIj#a)3sg0HEYu!YrD2gXZ9%@izpz8AfbRLw4W)Af;k1j&i+kph(aC+4-*QdH+A=S
zhqqgfNhE@bc9+EZ9DyR>H-5v!bvFcgM}#7fLLdmZfPXco1^9pm0-v(Vb}uJYWH*D;
zgm(i1cn|TrGPUANcH&(4ggkhCH|K#5IC0p7An<`GaAAQM#JlmqP5?N9Cpd<O&u?gA
zfsFUJS~ldc8Nk^Delvq9U{i|A#!l4uXcj4spTfJ`cYXu-V^@T+7`cuoCV~36Z7a@@
zkCkG>g_1A1lkB*Zhc1>Q=aXAn|MZN;7H2qxoOzRHlpo~yn5%e!CwYGFcahRJcS|^h
zgLMIcd4VXkle77eSBQC|H#4ZWpSSsh#JPTx<$0$!sEB#4DMgp}xHC!mlv9YHH@ZZ`
z_hB$Pp;twePkMIU`Fqm@na2l<gE)Z~`JW@Xme2XUJUXni`boMvlb<roI7#w^?tW<(
zxrhQF7z_U3MpU724!sDklLG(p<cvcRwUk1x<1B;hxzzzXk-wUJ_8i?kyA_eMhd}$T
ze^0N|@rEN#np+6DQw6Sb`#^|70+M9;RLC159JY^k_$+&YvwO9JQ`eDz4PM7ifT(5P
z>8}U7Z}7Xn7li~-NQ`nt|GzV&{(&l$Cl0||yJ$~{!n+Q@)275r#KAKp#NfNR^Lb=H
zYr`Xak>dMDDYm+UB)BI>vgbLZqj|%7e1+hN6>(<GCl1C7#La_b&YQdyT6~jhJhVZ4
z_G~<b_&l*k#Jv;5(kIV09eu!a39`42yc0ybi;vD%1kW@4G@bm{JJiWX1kbzj8aafN
zID}_h#5}o@mKlpXj$rd@QQJEbh%x&XE+g6}9{aGSgt$^EXyk+lettDX-=p~9t9{)^
z`x66EN7*j`r$7^66O%zS3N*nMAHk1^d@fObyrsqEQ;J_GKKl)ROUW#}8fD?9`{-B1
z=0o<~UqnZtfa{wp|3N?jXBi7b^T8+LZoK5ag4eV5z!~N<Q}7ol@2{U|2f-HC{<y^p
z^IJ9XE6DN-cJng?^4|-<wJPin7MIyRLwNsW8-MoezP;gY1+NaF@%`eneYB6io=b)1
zb3RvSKg1MV`9Il!#Jxb=KR`rb#>7KGgD8#|RA?{-Gd>DWJuE0NNI@vf5>6agFp#N&
zK{75>$On~3gCs?wV1hzqM1vF;Hi?K4qC^icO`=?=lBL2R%$l5JR?#38W<3{{vbpeL
zNPz@JHniFF<wg%wH9}n|)g(fbU%`eIJC<x&vM89zDaePE!6wWcibT~%WTH_9|CH()
z_hj3GZ}}D^|3Qk1(U1z!E=`#>C$k@B4bGK|M=XiMktv^LtkCjUv}!%DbqiPV*N#C(
z!8HX1FSCWr=oU<oh#4wor>GdjGnCJ%+EEY#s?BWFVJ4|>M;QgE?CjyVb@TR(3b?@|
zqTmw0jCivLRGCHotPZwwOgw^^<-vo8Xu<DbuV*i=@HpI4%9$G+T$rYH>~QCkE4Jtq
zDxtfD00G6V^U_<dJ%uDwXtx3n6zZ{qgtIL`4<<CoK+r@=(4dZvAO)^cg7Qzk?YtY1
zBU4H|F-4L1a11OFUyP9%6bbZjvnCi+k3IU3yKgxa0W_{i{4gAD!ww7j@UI{pTqufC
z;6f!3{}LLza4*nA`-?P#>PzlO4@fj|#~D2+)5!dw^gzmjP{>d_h3vvhuY%&7b0REj
z+p<eM?<y#-9;4hWO&M=g@GBe(iZ4k*^;~E_!zeX$Pm>_^K+-$c^2-CjBmxpWAs>9t
zq&_QL%SJw3^AR*wK^*DTmjKn0OUQWb)z@DQlESJ$5}~t{KNJZ>K#`h2B@q;ilA^H`
z6e8AGWR*3@4@Eq{ltyN#1xr}16f&jQUL#b9nLz#+MUmV@N^LxY)@}FQu*O|TUa|5;
z^IQ~;O_r=cP#GnP6r3<Iqd#J$cR)~J^x%gYQ`{|)M4E776jZzfWxgOlDWwEDO;IEW
z{}Q4&<&^x!f;gdxfr9noj5qdDkU&;KLXlI#6{%kj>U9@hjgFAx;-MAVSHh5)5d{=b
z*bMq!g>KGy=WtOd`Q(&WR%qL9`zxqw6m;f!S%n1Z8R*i$o<cXKorc<^bTv{tuyW5e
z$m4`S7P)S9**3~;jtV~bN>q9tyKJ@Ha}mwLQ#hRQg3JX=@DU-G{BL?C!UOK7XUy7U
zlvQR~@vBK5ookl&_Mq>PZvq!^K0lW`x<8l*f{Kz&s$AS*{|z`>(YG$0aDyW+1@Y92
z?>ct7ZEF2>x15ER8EH2!D6rjd*PVBfe5d}|Xsd$$c*B*SyzQ?pH|TV;|EivR|F60A
zHvaLiXP=qD#m1Rz)ctiWfpMsIQDc|T&?Y<1^)7GEo1Fs}2)+h#h#B469k+m$K@DzD
zHl@fLDEv?mMTo)!oobv(0JA@nkl+-5SO^G3NJ2<8t0MN(PYc760uP!*AoDT{-8_Jn
zQ}}@j!pW9GK*0<j3XzCL{E7}I=z%2qa4S132n;<i!V)@4EP;sGN0@OghP@^>B&eW5
zX0)3lz6D-JX-`Ao)rV6cWj8Dfiy2+$mguaJ8Aww|Lu$nkD+cj4O<b2j<Pb(v_`!>g
zlcEw$Vicqtq>x2C<P$d|M>;ZtWi$jEi)7O(ApQhAi3}kUO##V;NHQ#=|71ofnQ_Vl
z&dZGq=_43nDa$LSa$a7X(Oc~JM^QS?m!k=0?5HS3URLXiqv9kk5gAK`uyP@qjLtDb
z2^wp{DnGRhCA>%(O<hvcC$OQ96GYNOus~67r_>^jwn@SK6jMz3iDw<5SrAhe#G4*~
zBO0^AKi9odoM3bj6VPcTRRR<)0u84=rHQ6y0`rB-6bZx@Y7#&)RE20nMGeCyriPjX
zqsg=-Xt4NBE`n{6bgHBi^XY+oDs)~Cm1#t6I@4K}^Pmak;7@@%mK2ae6ua^ODMH8x
zQ&1~R5OQP+Kp~1fpn??J+0BEFn$)F+#xH}(j16Ih)jtx|sCe2G|F3{Zf;@y|H&mRQ
zTG^UW*^pJEIizbrkQ$n;HZ?3>Tu35LVW@^_?_mxR>u$7S#yoIjrAN&VC<MWoXObm}
zd^oICJOHdfQ@@~Cu%MzeLoKR))*7Aa<bfHW*wt>fqdu031g@gptVAFy+5C8wpCOe?
zX@KZ~K7^499YKXIIV6aJVU?V7bL4Il(OXmewk~HyQ)5ZNGUO_kxe^lYDB9!Kq>1Xb
zXB*LAJunLH79<hQ)y;LY3tsUWWV*f`=TR;iS^Z3QZm^ZFU?v*~=t`Hj?wuxl7ed;W
znxwqzylYnV%2dC^cE0me?}G1}S^Bnjxu?|cLZZu%s7|%23ZZay1^+yj0&iu*R6Wdx
zE&SkxoM*TqVKH`FX%nbQ)x`QC#aBZ*V-8yty)nkCRu%l;0k;-b<3VwAMRMeVDA}w5
z25?ZJ9ObW|fE1&cq#_a_kQ4y|gHGLv6;q&y<td~TM>GhQwOkM`FPRiUaC2L|RFE=*
zh00dmizCaD+m-;=EJNH$l?Ut@Kq~~zUtIH80ufjb!*`788jy3EMg^l@^@0D%4qVRV
z5_MryqqK?iq=)iAJ_TYFrAVb>>Ktf@oRZS`1<zQD3l=}?hSa9!i>B#i&o;kViE+k5
ztxxS;36bIyiTDZINT5X_w-V2IAhxmZMo7n5`qB+_cCnAWLjPr>Nzv{b?5|55?1ca^
z(F;M(PRvQ3ZI_#B-+p$si}GZH;97fj1h=gvLT{kuhuYb(_Pg&EYczR8ENH=V5C?tc
zEE^hw`p$2+#TF}v+Z*5#={Kg0b*?avnNJmek!R9<5HO2bZP$jjMA+?ZZIf{2D+V@S
z0H$%0v)Ro-fOE!WGjrB%d(`3POQE;i<<*X5)*Z)ov<<#0kLzaXlq4p>r5yFBqhJ(v
zR!Ck>0Ukx<(aRFTY+@8L1<dLx>u1iRZ!T@0u#X)vRado9$ORcaFGLhVhfLkuZgt2|
zUGJJIy9l}7SBQs(86#^nejWD%JYYu@J!!S}B;u|kO#hzpL@`A$=}Q*HGv4u`j^GbO
zVG2A%p$Sbeg^T#EYK7n(Y!5n?Sp;qp)`MR3q&IzRF8`YRpgrx1rv2zke|ll>#gC&=
zTkIoqa7y|S?)p*$<tsnsTcS{bDOYnzBo=z$-+uVkFCq5h9d~9`fAD|+Ke~}7@Z4{@
zAiuZ0@IA2pTo*+0&_9A$U7CJ*6AspFr<2<k0_(IckL0i3IHLTpuK@Q=`rxJhppPgJ
zi;~!ekl=-2`Y-Mx(4{62Eh-QJzv3-a3k2Iw``#}$GLVq+E$!5fg0uqcs4raHFZg0Z
z0L^aM#)9=0gZcaq{TOhS*v<l_E(oD)5lmsg#Q!dDNB|Xz4~YKY{5+r(?8seA;t2Ia
z2_ppwun-AqBnl2g3crE~RWD?KW$wy_)5f9z!O&OIa3QErFsu;Kz)KJa&JPCbEe_5o
zI>+-Mk0Z>>AQoYz8o~_20uRILf&O5QAi_n~P%PH(2r}vv_5k+w?<>~t5GUyrV&e~m
zDL;-N3$;**76uXL&5_8EXug68nrZ01q7-B2GQ@Bp0-+DTLLfj16;njJ3_=uG&Jq)`
z`@l;VUq}||<BM>yAb^pFLQ3E?(U$Uq7e}!mmNAs(Nf^^987C37#Nri2Vi66Z4KwQv
zqtT!8>laxr90PF{`y&>?q6w3N(`XS^K>tZ^%!?h#%pKE_98WP7hcQK*u^=$fP@E77
zuP_U@aA5+H(`?aDMA08(!yA)O|5UFG(a{yD(G-!9B3;b3gm5E$#VFW>%(@H@Orfk!
z$m?dr5y3+sSi>YrAtXmKl0r%)_2(lM;s>Hl?i_~%{J^N*B9KTxtaOqmyTc>z2>*zZ
zC0&vvO=F>gz<G|6@M0qckj9KmP!HFpw&umC_Mn+|OAr}iD%0)pt}?t>uC@l`DLG>&
zM*~Dgfs5Y4hkjCjhD<HR1T;pWEWsu=wsJ<g5++09F8_-Zl@H-oYF_AYl8~<?r;HRD
z%O*?1D6(=f3)5==%!|h3Eg}yujsHS0VR4}_vnFryCMdHfEORv2hRPaC;P#TeCJQj*
zO)t4}vLKT)B+~~6>?edS1<J}XVUi~0EGY|OHJ5B0FOx5XQ@1kjAQ&^=A`@0llAuyz
zIl(A5ck?E9<2heVIk~7b#l$8I^U1!mCtTAkozps?(+A@UJ6~cn=}$95t|fKjCF5-_
zg))%nL^=(EH^TxoYZEj}12_LjDLHaLHR==;Aqo%_L1#oD0s%-`rA5BX6sX_`rl1r`
z0V#M+p&E2I?6bBGBSRU&Koe9!y$%V+&~cdH6hOfVf<OvPVZ1y5JA5cbSF}Z6G(-<{
zL_bnSw?ag9v?@0AK~2JoO8;R(qkt5~3}8?s1@Is>U^5V+APAyB5&A<c0|OLJK@L(t
zcTOQANWc^%v<cY4dBkEXp;St#G$X83A{Yh_P{8KkA}W0}K~scAS=2?ji$R;<NE<6g
z<*K#@%ua1oRNC}ScO%`tG)%`7o9w4h;WXruZyWhwPq8#4P*D&_k6|1qF(Gsz7GYAO
zpi)<i8BFw|vUE$SpiBJ_R7JHQE;Um_F40Os4w_(h<kL|Pl{2g56lS$n!L+P)qg00x
zQ=33jM}${t)mDw_Qz=zdZICm-lnTU@*qZT`3^h&#BU-1GOtDl;xilo0HB_B-K3Ao*
zNKYgKFIb~uPDxZFg8vjm5>;9k^#FTSS+iA9sdZJG^)R{>Rh<=JB$Pre6e+^BRbd4b
z&eassl~hy0)F!k-FH~Q}H6&y;S%1}4nSof16=O9v<Zu;RgUDe8HeyA>egO7i2bN=D
zbwEBg<n)w7ZBrx!6;BnSV8<0!gtcZ_^=57MGSoFA5f(@kmOzQta#S$$T(mZdPcaQ5
z2s|x}yaW}o=PQ!-4gHc#@&_hWFbZK5C&PnEF>P|D=xhD0XN+QNUr4UbHtp=FYM0hD
zx>QX%%sP-m5gLN)s6b7cCXK8zFi4;eY-2}|CJ6om6ox9o22pQCfo~s#FG#?P-~tqw
zz!W56Z7+>wg8u+)!-#RN1k(m=Y)f_$T}N{hp=Ta9J0zEKo3?Nd_i6<La!YG+am$hL
zAaFq;XKx}`7As~qi*{`ncf+e|GYfD}1ZiqFa&fnFYh!mgVp0JG6x!o-BUg62&v_#k
ztJaH$bhlcpx3nJQcuNa-V~=nnw{<fMc2n0T$hWl2cX$K0NG0TVLs!+57Zv`Xtg_b!
z(Kc98$!b4>bxA?K0-<}M*Czn@zQFf(Eroam*C(Df5qwR4tt40Oce}pAY5gsNk(Ya$
z;CUaUewp`AvLuA1H+EI`BOW-;{_8L>7}MemggFC!sh5A1c79DFbIUe<H&|bUH-T~2
zhvP+fbN@F>D!6Ek*jMn6EG&a0nIMX8m{*$kh|A&#1XMP{f{K4dwa6lg!Ghh~?1@y*
zGGM1yf<V<$AR_PR2*%hf5Tc670*k-m2iABifCY|s!j7W?ji(HcAtMO1cuS?skAbC(
zFZhqSSYp(tje+F{v^a+jnUM=Qi&agL!8j}k`Gy<0;NmfZxcH320+KaK^#mC#E}6CX
zxM>^ND|%&#BN;3}IVw6ii79!7PFaa-*`H+jmOrA7t9X>jSc`qRS5#SwiMg1K`IwP8
z%DgX`nYo#r`I(_Pnx%P~skxf1`I@mgo3(kHxw)G+a+$q3oW*&Z$+?`(`JB-?oz;1r
z+5fqn-5E0Ez$@Q*p6R)s?fIVZIiK};pZU3;{rR5(I-mu5pb5I54f>!FI-wPMp&7cN
z9r~dmI-(_dqA9wfE&8G{I-@muqdB^xJ^G_TI;2H<q)ED@P5Pu!I;B;5rCGY9sbG$O
z>ZMzHgNpT#A%hRHGn%77kHtc!Z{iPl8d!GPN`U&OaN3A{8f}8Qm{H&loca$od8Va$
zs;Sx}jvx;b;SXpM1@Isd@*vQT01%cotVbcs!U7eMhO50=^_rk`!2+!n;;OTnO^)DV
z?D}F%>MO#!_`3S86CtW~!>|83uCZFHc}1=bdm#|pH;Yy*Gw4jF*(d_9SKylP-2Zrk
zBzqxh<gy_HvIn%X<888`83h6%5U4b-t2(t+o23Op6x!uLP(T!*&=f{NZGr%D9qBDZ
zArF!$5>4Z*Vtcl0dxaFHi_faHUmHY@KoOXmxlIJMeFC>dLJ>%zw5=PkMX0*1I}n_r
zX_DJ4kUKSMCA@`{Kph)cJUg15ma)r19bJX9IT>R#n;GD{EYka%&1=1}`7M3rVx-K!
zS3AH3oSp$@JiI8o?2O79NE84;ARNhKzDq!D3QZE66r7k2H8Q3O{JWAk5uok{8yr%N
zaWKO|6b^2~Il?OGtP~8~^H5x(Y+4A<`&aHeoo#Bfix$T@sK%vk!n>Kjd;bN8qD;sK
zyvU6lohRuhz^R#PM67ZP*Ki^LPr;~uVn&)gCT0SZ4za9~eEPN`G{qvfl;T&$e9Fq{
zZBydR4?@kAST?qUB$YA+ngFX>P5kJj2|(!xpn}I&C}UWH1XkjXS!-8R0;b6W1rVJ)
zkRT$rTqw#)DS3jm1Vj8t0MQ3b#|4A67G1CRJeW`b&n+dhyp+;6eI2KqGb~-w%LC9;
zBG6gO&oj%_?;N|w&!i&VQVgUI5FOG%U8CllwQ_yek9^pPeVjidR7T?_b1P3YWiOVZ
zsYr!02m`D%a6cckMpT$Aa!XangGIQ#;3}j%ti3}CiQHk)6i`DoR{zoi4v(-Hf;Mae
zI>M?qej_-XL`m#}Nys7!Qt397YN6^^P>iwhG?&D`3ofXL1Q_Oeo!wT9Y73DBR6KyR
zQh<2xgP9P1z8`*}6drXS#7*=)i0mXle!>rYBg=fFEIXdz7eg^%x29t0<Wr_;B7Q?|
zqTeIJqUz+{O&KhJJgzNmLlP<NR%+)p<S?8g-iK!BFRf3D{pq1zn)}6CLKa(wZ&c(b
zYv)^Ss2*UfUR&xX!)v6Ge+F-SCAXwzX_ZD@4rpqqmhIO5?d{wH%D#&sCt>=d-GSy|
zA_itECX6sfV>m`{J|<*fhj>VbOs}|t5S?Kp?RIkKf^xAfG5>~1?T(b0U^eN_6ws##
zzeR0yyb0OleZqybuxw990e)O3^W`e^QGrcDuk(8X@mGiN`Nr@E%E}Un6s#vjVn2C2
zf9n?_2v{HHb)Ok{|0qd6QW(Ff`^c!I2ltcaPsN0amfxTDG?q$_Ukl%FcIjm(MmDnF
z54Jz*&HwzJnVqi4on)v_^(=)1>V_serP`l*K<dqjT%!hQr_jZ5m<S-K0Ad!%gTaHK
zm_<2g5CyYSegqO^$S_5zL=-(FT$u5oMT{LkcI+64S(Af7n1TGmj3To>21zjc!|<d*
zJQEEzVMfIu6=p#^@-*1z6pDj50ga@{=M;&CLk*^cdH;}!lY^pEGJLu;BNK%baoY57
zgqa_TBu>#}$cNd}K&QrrWG2U89%f2)GMhs2E60Ov-^OJq_F&nw9*Q2liPtAkp*>UL
zA<JxX*@cA-9!9Hnq+f=TDO(1cF$G<NO}RSk={TrC)2tDa&bagMNYiyuMrHWZwFlTS
zXV#>cGIrPF$dfBy&b+zv=g^}|pH98H_3PNPYv0bjJN6W$L~->%>MS2qDLn8Yl@S%y
zil9X8K}G6FMx4G4mRFBnJ$nx%kTRJEKiL=7W4DDj9z%(g0-bwk<zb))INA1EMkGjx
z)NCFp7*bc@i5HTG$(2M=BBvO{l1uL;#7BONG5>LpOnDd-2q+Yhk{2j~Y}FWYewZ@j
zDSRAs*J2%I1tW8xF(e9(4F0zvjBTZ$h$#~;g-Veg+%=&?16IYMddygfB}Gr3_#clx
z=5=F^N~Hva2PrL7rw3_9dEk-;H7OM{bKZGpM_U>c<d9r?@Fqh#mbO%F$Q5eXn2JJq
zP@@L9$R}kMdgtk<poS{ysHB!^>Zz!v8XXFxjDn;GiX;++Nd^I;NPF)!bkS>yppqU#
zr4&R_th3r=D^a8bp=^aeP!#M^th(BfL%A{s;c*Z_mn}olzN%ce)3)kuS8!3(2Qx>l
z$k0n3CBh6dqEIm&e(Q3X)w}p=<pGf{<^OfutOI7IsE|vEGKzG58uTMzZUHMSTktYd
z%D5B;GD<0?FvI0tzXDiUUt_kF)x`ZW)iA&7=5=qrTBUT7pkOVGTEhoD>lueG(+Sp~
z6<?e&mjE+1*2?*Uq#UI8S&Xs9HBm}5zDB3uF1+$mgtV$yXRY<tTzBpD*I;9Z!YI-*
z^hYVDgsI3{3|+gSj8G-&!4%BEZ8q9!uXPH`@1}SV-F8zncG(&I6u7n3CVA^~qAcDJ
z*%Ti)IK`7QS1!aQc%W`@)&77-R-!CM??Fs^Fp45aq^`ParueI{>s_@~N-50Lcu*jy
zbd@J`344$e!{Y&-QCo`aWT`<vi2q^=9#J&Wgeg>UJY(%3TS&a|E<HT+Q>~Y5I_j#Y
z9#qaSFZBENf7iWK!sPD^R`Sa?|NMKh({8&#r-v^-b5|p;JoC<jUen})Kk$VQMxF!R
zt9C-busQI75R9M%CrClCEy5JzqMOl3fC}Rn#BD0d9k5(?x{hdYMjg})5>|+WwnQOI
zB^=2GBc~AuJt%P*>E3g6Xpk8`$A=vO;&M#H5J3>k4=p*!PH;$|(v41GTndB@gLpjC
zz-}pt_yZpBkR=K+ql->Do^yIfHi`s7O5f{9TaNM**ZsjL3^_&g$~3+E^(kcNY9a{_
z#*j1iu!=vD;z-(OC$N;UkN;?l;mvGANS!U@jjxj9L9)2TE(%gQ{nH#A4<gBf%&JqD
zOwLc__Q?vG@|37dr7Bm6%AYjQAf<2|9!#;I4^~THWeL-)=G2i`B88S6DG)<;ITBYc
z<p-sE4hR9{hw<zrH#1ri37V<I(>Ugp(F`W7w24h}%_az^$cr&&MwJv8M<!HxqVKr$
z6Wfeu58F(P%$9<LFAkC!j{D7cb~h3dY{~<@tB`KqL(JjP>|9|Qg(!H#t}f9rICcam
z9=U?h4gF;*27%{T&LvI`aix)W66l`@3aGBIk5=U~-9iuY6ROk`jE-?9hW?pJg)%f(
zJCR#Vx8jj=HdHS<W&fp6hf36<8uh5jNx>-;5rw8Ubu6<AL=$iV&9+qw1sJ2k5vDLZ
zBq?I09f|5xtywsG9^|XHS*lZ?N*HD!Av()s!YM%Egdj-46lgR^RxBh}y4n@59#QLB
z3Ak5^D3z&$eT`t9+RZ*nOsi2Kg|Bo~iYBB052I)(JOdGhAVfhCW>sf0L2(K>q#y`X
zIE8^oU<y-Ep$Y2=XHrjL3Q#Bl6oBB%hCtE0S+b3vNum@Jnh*z#H35bl^eib#F&?z4
zk!G+espcw!f*|0eq0)nBRfucc2?ge?(luRjBg@>FwDz^J^%rSPi(1v{>}Brb$SB6U
z+~$JSE8OM7asU4W-$Fi;y4HPHIcaNK-0C({r9EwGyI5FmIS(gzaNc5Af`{r}w_2wt
z?GzG`sP!t?y&l+XXFqFJPHLFLNKLVdSIpuTYwag|bKPB;kwQWxE(lXoNwe-Kg|5uF
z#@d|FS9+|?7&BxPd2P-z=>*z$C8A@p=~NJ!tdfqwm}Rir2t}@(uZ|iSIdC}wDc)5d
zh8!WY_%sdMs4(VtiDE3GO%w_GfQomO!Z<;=7bw8fBjlh!6n@x)AN~MZQqqpbf7quO
zGoodRB&28zDM3lzrHGCVc_iP})hU8Pf=M$26ihJ1#vbai`#l<Jz&i+5H*F9}<Ezr3
z(KDZCME_?yvj(K3aW$na%?u)U<kU{)uOo-uX?%fN)C~c&pb4GKIoJ8Ij2_cY_-2!0
zzw6jKjl$mW`PP`!8rm#vGrSt8ZAy3B#pq7Ay4TI_>-_ULBsfAXnP9Z8yt^ax4x7A}
z0_BYC`#Jsg&gGPK8ydztbI%Dv<WfMxk$^&{eIOXOV476u#M@i>UJeNsgo1x}XX9u&
z!onM_@aJ5-FZIq&$7`t(h)WzLGz@rhR(_m+mb@bew|BdD&hwu8{O3RqdPXkC$`X8x
zA<h-L(xGGYFc~E2OOLwLr%v^%Tm9-IAv!BdA_zQCArGTC6V}IWBW85{>tUxj+1JkY
zw*R~R?QkcR9ImL!Cip=RYr_M}<F0hO<6Vn;=eytsPx!(cKIlF8z}1`3@WYQp3677v
z<R?%0%3GcyM4*J?wbOwP40R9KX#8;~Fn|Fl;O%Hg!{t}c`qsO?I+=*Q>}OB=+S~s2
zxX-=rchCFY`~LU955Dk)|A}_I<M_x=zVesP{Nu|&2F;JY^ruh#>Q{dp!2pK#x6l3V
zd%p|-0Du_0PyX_o|NQ7rzxvnDe)X&2_3)3s{N+FV`rH5h_|L!o_iz7Cu*3QQ_<R63
zfCN~8(}#WS$9>=@e%sdz3HX2z7=aQPf$uke7I=XeSa|%mfgIR@9{7R$_X+A?fd9+a
z4$trg0ssJS@C?RBf-d-i(?<^3_kasHe!%bw3_uGLxPv^{gA&LJ85o2@ID}Tmfkto%
zAb5L67<*MP0+sNAm{0{sID1X_g!#9Gx5ooQkc7M^f-tBI1^@sCFot1h0LuV_1gH#e
z@C|6#eB>YuG#Gy4Ckq7t01SW&KA4AkxQE>bghcp<fEbADwt-my07k%tv{#6Sm<c-o
z08`k3MgRagKzoh&i1w$5xVHc!fQY;22_r~=%TNvP&<FrP11$J_CRhUi;0W(f4QJSf
z(x(RikPfiOd~cY5HFyhk7=8_)3w-#Cz&L?^D2T*ZjK;W18>j&XfC-!^d;iMFjEv}r
zA2<mYa0QeojrjMBnYf9~n0uY@i2yhO03ZVZum&wCfbY-_YXAT<000wEi_s^Gv<Q#N
zcZ=*-gT2rTV*mhW&<np1jO)h&EC7(f*b2vZkO-NOV8eft003LqjScyb(P)W?Sc&)-
zk-4Xd-KcxtIDp@<jsSoN=Lmi2hzQ}g25d-=%O{U2seI)ChwE2^+D8TekO~C3eg(h<
zH%WfGAPc-Ofv%vCLOGN~DJs2Z36`*XBM<--nF*DE1(Q&Fm;jBJkOfWYl#-BpOZkWv
zDSJ(630aVovp1EohY67Yjk1Rcm#~&-8GBtBdrfJUR(N|`S$mR@1^=<9k+XLRSdf)t
znF*KRmsQ!8nIM<;*O34i3IOl|?$`|PAb`yvj*J-!@R$zJ;0);S4(mV-;_wbEiG1^z
zeCaR^*zkfc8Iy82lQo%szu=F&KnwrK3$WmT+_wv`unXm<3$TC-|JZ=NunPdt1-q~d
zKiPe@c?-Sio7!iaxXFIEpaS6s09w$T5V#6Od7apqozk&;mT&>#rvXn`2^SERvsVcK
zumiLwp3xZqMKF5{umF}&0nw=gRCoZ<DFTG)l;=5nZ^;7yPzACl2@4RN2;i5QAOrwF
z2|5s+Rxo=a5S;+ZpV*iQ{u!Z#IRepH0pyvU`#F1AfB+Dxm;Zo?q2adxe%X*Z5C8yx
z0aj3=X-T30prQ4LnAJB22JjBa5CH&i0~0U-Hvj+;kPPo&0CP}_%isXvX8?B)hC=$8
z?=T1e@QUw%4sHMdDfj}{;DY7=ljtXtz#s;ziGH^boORd&sXzb#paQ)q3(y&U5O53J
zrwc3q0BBkOWw3oT8J*#`0=20H(WwGDxP2<10=uvR(b)ybd46N6r)f%?)fsr&8L5(*
zox4{73xEYxP<kV901H5o{yCSiR{;T#m6HGj0AP)Ixd0V_0a!o@LvR7IhoB>n1(RR|
z15g3A_o)&(g&2yev4;T~5DAwM2^SCmR*0Y%z^Ya-p#O6@36T(q7V4JR*sJat098N<
zRd4_SAeOVItFl)K0WhAIPz3=H0Nj`fmP)D>Z~#cykeylt0B``65Q$ijm)44{+RClL
z*9qZZeJ@Z0$F~lIpr?ee4#!smF93_!004CG4c`C<0PqL~>zT87d~_fH&yajF@B-HG
z4%#3C5fGXMXb!`WeqQPV0PqUwH>MD<3pDuvyI=+Y01MjZ0xlp6J;?$E;EUR~0tEn@
zy6^=6pbFZjo2d|-umB5z3Jkxn0uZ2sxUd2ZK%FW80V>b}ub>NKFp%mur;G{!V=#fS
z0I8E&wq|>byEh3|SP3Jr06L(rfN8F@hY0|1uK$_ftC=vM7_gVIhoT<ZpnEB|yNU@S
z5CC|Id*(R=u_vptcLe~D1c~^c*LVqpYq+yF1OQO4u_p-tK%aqYx0#Tl+={u}m;?Z@
zq2_sr4XL=CyM>$!pqQ(<nZUW8JA9mAeG`BK$oB|gD29)Kd^`$^gkS*khz_fWeDbJ{
z1~3iD=L-Ok4amn006>{qYO=wJn{)^OJgcZ+3k<TrfV2>%jtUIA003m5eZ2qxTflup
z%Y9>dr`;#Ba9XqgU<QH;04<Q5#fg6D`?UbTwGucBWP7#*T);u7f0(<WvL~NApun;>
zpbosa0064Cm%!I3o&#W@xYwZwYM_?jkpGbzt<i|V8l1PdI(rvz0JLYpv$v{yS+}t#
z0w*kc2e63^*`N&xpgC;9w3ov6rwP{g1`hBJ(ZHB55CIWj#L+OMZvcyR5CJW?4hAp?
z$O{19U;`1*vB}2<B#C?z;07<~4(SIA^Q#JFs(xciv}0<MxDck^M*v>1eTM1<^Xq-#
zdj{U81#0>WeEbU!pau6^$Lt53{;L8zs0$}xz>2)cLa2WSpaHh0o&c}_MPP{wfB?5A
z0t2vnk6e3=IH2+>l|vu`2yg%c(76&!30?`p9xAyK3d$4=!xGw-olJWHP`j}w%LDqg
zu-cH;xWhXv%d*#q`PqA#&<)o22>$?J0|4Lvknot$2MI{Z%)i@)%>V$5aD0aV0Mby!
zj2QtbiF}OtwYp1!?r;q2w+kryzvF9uX$%Z&3=C~-lfa;lF7N;izyQIyeR3LpDnJJN
zt9`KG#`pWREg+~65P=Qgzw0Z3xRA(<9MKXDfB9#+hiiM2Fa!g-0CTCTnG68BXVIPv
z02hD-G1``sumA%f1XXYaS1<sci=cCP39Kx8g($*}Skfn*mH;3Ev}dYlDblnz0H7<&
z2w(w{kkm>YmA;$_!2F+d>(jFb)WUbn*0&CH5Po+skLZ{VcMyJbFtKR()kq8ghLC)+
zSOd^7jxBh66Ho)z5Z7|84gcnB4C{9b4-kG`(9Z5WwD7!|^Gv=fPyk|(3aX$A4A2GL
zr?t>YsO;<4-S+@1APbaT*?6dZD!``@n5T>?3l0s@6CK*3O?mmZ02aV|kq872Jj1lt
z!5MklBb}6{YqxbNd$%mXGhNfMchlD>+rpf;3qX6y=$^1mdlkUi=E;r2jnSv-)RMcy
z?<w3W9DG)dyY2`8c7S~7_zrb&-S60jH~<HTzzAAg#hvNAO^keNAOW!G4#lv3zW@Q@
zhsVz8*YO<KTu=bi`3nW0*yIO(U%-7wOV8Zr0u69}nH_<@zy*wIzY&-Vpgr0WKH-Ch
ze=Q2Qv_}bxSeB@qm;bCidkqPz-};CbZhKw1pc07y!7Y2H8`BfK$`ZNTt~|`xh~lvd
z02uDKu~*`?XR5Nhpxg+pf9c%6{M?d@pgG>*zo!Y_Fo2=p3{P5)St@|numk`=2=Cww
z)C+^v003Fae4l9t*o=IT5T(f{)&uC?>^IN=pxO1U#(=$=4`9gKC$s*o3-F7+`@DSv
z9pLDzec(sn^~`+<E`h4h1upOfmkogsPT`LJ=x>LAmU?@pDgsq7302^o2I|qbhoBWu
z1z0cyf{U&zKGKh90XQCe3pxarFbN3S;W7>5vKI+g0Ixi71qS+-s1CT80HQ^J=?B2B
z3tZ~7cL}AJ1pio|1KN77qFMx$FbPF4szmPGIxM-p4gkNNt-`+KO-_Q!?2cn7juA_b
z+c1VQPy;jY2FOsw^Vklm2<6Ua0FA&6+29BUAc|@J-t2b<;TOm4_s;jdnhZV$yKoC&
zy5~Zx1!r&zsW7LW-GBu^0Az3mEa2x&TL5IB3%EcA1@Q2|Q0O~ZevJ<4BwzAHc!@J!
zdr4rQB`Ui-jC<J{og*-XylvtWS_#@3m6!0K;a34!aN7s^;&55h@~NjHK9S#=^Ki-Y
zBt4fkkI}na0hCb7g}I>NHvo&+)K49uJ0G1FK*77G3E%*O;t&cyx}%|xne-?QFi;1C
zPzP|JivLthv7spr5?}z(tC?RNei5+c)~Dv}=cRA{*KE9+yx^yM3Jd+MeZO!9dF{_C
z+kL69i!9*rz0d{G$p8+H*=`>4-8b?kANrynboZA9d#ihxAPHB=dzIk8rvH0nDSMWn
z`bil3X-WGYdiuFn32;k$YAbxHzxuhi31bh7+pUr^faS?&2Sa>(Z5^;^etg;x&HxDb
zfuEW^$j95a3$zf>-Pa4ZK%L(A3%bD9Op6QR&-jVz`Pv8iqyPT!KZqMS|MXw~-AMfK
zc>I+K0Edu#?EnxqV!R_*(BMIY2^G342F&3@h!G){0RTXZM2s0VZsgd}<42GnbD8i^
z(*NX1lqprNWZBZ?OPDcb&ZJq>=1rVAb?)TZ)8|j1L4^(_TGZ&#pqZ2|W!lu~Q>am;
zPNiDa>Q$^+wQl9Q37kT(VF`*8C)R9OHUO3|f>h{*0c&UFE+iImV#SMg_3q`{*Do+z
zB#{m#T-fko#EBIzX585EW5`FjPNrPh@@34KCu{mT*YoGk&+34w@upEa(4WuM<xA1x
zU)Zr_^Q{FU@@?F?b?@fg+xKta!G#Yeev=5M9>ojqN!KK2f{F>0H%3!?`gQEtwQuL%
z-TQa&;a~blF23g!=Q%kfNU*_t(J;2(&!=DC{(b!U_3!83-~WFA0~ByT0t+<oK>q|2
zRB%BC8+7nN2qTnmLJBLi@InkT{I7{4bm9Y#ouc>yh2T*5<HSEYJjp~9RRk^y5_6)W
zgpx#zaVQv3vazQR51TQi9D8H&L>DzQ@<=3;oNyF5bQ%Sao%mpegc1V@L=k49KnVpa
zvD6YcDwz2rCnlJoq9iG)94gE)PfD|=Ck-p}%#+ykjms;uRB}%~`}A`^Dnwxhl|<6B
zDNYZkB(4cPRbuqZ--0MKr$9<E>CK@eH55%nc|w%1N>kD_xJPYDBoU!b{c}}TTXpp%
zKThF;6hHtm^QKR6!c@3Y9c`4pAeaG>Q#A?O)k!D`3wGG+dZp=<Hi3fnRsU+MwN}X#
zZe`K~DpHu~2qsF()dLccxG^OZiuB;vVogGU!<0x+69pz{j7iND)Fl_Cc1v;=rGM{j
z!U+;dVB%a4(v5fCdSxO31&CQH7h#nCIHg#2(LFfck_?U)Vu~~7*W8uB6*pOT;XR2;
z5>)hfWQtF+xZQ^%=9gTT!`*V@cn2<+=aSyl7p8#S1==JMN?@iBi2F@g<&;urB8YgE
zW*P;juhn{Mt_=)U%WY?3ViabWIVFluN%*5|W<a6(q$o-$8<jxR+*L|QQLq&iW=1Je
z6j4yXvg|%!3dEEk$Y#bAC`?)#rKJJ>RdPsUio%q#WyKuQxaY3hB>%t#XS;C2*{;0f
zwaa!}B@~$9!_7|D{q+bz%l6x(JeWzL55CVnDG<|9y8BnP*<RhGu`@>-WxWUOTg6~w
zWhRj*PGLqAq*HJE?JZqL3HY)rkKTIft;fD3+S$I{q{}nsWAmW*em>rz{hb{B+UGAx
z4z`V7QU3LnBn63Z-YMwh0si%`ZCztv10C3(QJkU)VT%b0OreM%kf3^}K$$2^5rq`Q
z%@jAngP52Q1S(vRSS9%bDmDd*+XVp>rLdO=L@^3b6e<OHP=w)7F$xemffUS8(c?}M
zxsw#ley4NE5yS+swNas1CH%t)Q`p0j+%Sht*dZ2Q5(FlMiT{Zn1fd8+raRcFsfC*o
zL?8}^1Vx;}TOP=rA_|2zIhq8FViaDd)_4*!hOiVP4B7=VxIvV`utPGWp$CFB3KZ~<
z6etK&dID+2lt^igdJN;_9vMkyOtO+CY2zE?I7cUr$V6r;mLeTF!y1a~ekLheDNz8&
zJbFNCQDBB2ngBHqxRQ}I1cfO&^aClSXP3SFW&IxbOlU^)Ix;L9AU64uKAeJt%t%%V
z4dp~Xlq6WBD+v>vu);t{uujb2UbYS>C{!V>bcPC6JdJ1)B+_!0OPmQGE*7*~i8G%b
zFem7yw=%Ka&zmLzC%>kZMh~QOQ&D3^ljz7zeNF)-W&b+en<RRYg`%&QCCTPClNF|R
z-fCGMa3YADsHKpybfhbLXi7MGl9jeprcBgjMbY%ngawpa>@<lxQ38s6dO(RM$(BV0
zdO(w)w5S0kftZqrl3+nqnp@>+SA)|&F=Z_!pb*5$Fls|kpd=BbC`s;OCc6|U!kFJn
z>q%&3Q0~bDcxpWb3z-2qa`MwxJY|U=Oo236;f@(^wINY&a#KLo)g)_0NeS}`SGhXV
zB&c}ZMP1Z7W|i}Pn#?RpL?PLdP&SxlMcP>dfm#pTHCT=Nnj`geTD7tjq>i<zCz(N8
zJ=InvoGpoA5!=~_!uGBxxhCaaLR^N<^0g>gZvQY{ciHF?)~nm)Zg&$i3Ow)+Wi3hU
z5tDV+ODXDbERm9+N`bKa^)H?_9EDBNiIP4n)&ut}$v~Bw)TOS3m&1zbdRcNqGTjfo
zD>O+d0+Gq<G2^`|!9yTMF-Y%SbdyyLEkQ>c;R&0!k5nozK9dz+wxKFm&Z%u}7c9GW
zIhZAo6)1~?`>P6H7;~K+a7ki{;<C+`X#31DhLQW<F)A>~MJ3?%r087lMp?>JHp;e2
z2oqC`*8^u|#)Bam2vo3_8H!*OY)7GpBcxf)+{0~6?h88_@wcjhMe<4lyb>vuLT-8Z
zU6>CHTbj_gzg|vnv8KQboxzUG3p~jWJpYJ?DE!hCq|4ognZf6i2wHZFhHaNe?13yp
zE?H+*^O|jIV=cLu&<ys#p%dL(@i7C{w$+lOO#x|1lQYkIJ_)HyeFW^bBw)72brU9?
zL|LcA*QLJf5AYzUz#)60RHk;dt^JZ1S^2LoSp;gcHR}5QPPZkjpOi=xrtyaA&-UH6
zNd$3N5BQ<o|E2R%@2rwU`~eSmP#3w^jT23eBHShkgl@&<McAEt!4^B$DJYG`j$L}A
zA6EEy1^zwVcAKfLwUkO$Oly!|T-?1zIIMA+>=x^Z;U{tUWcAJO?{yp}0b99ATFyS{
z%KRl^Ix;V{du^ZxUCL;q8k3Gt3jfx+WDm(E=~+t%sc{Mv;VH0Nr}E1zKFSkxfG!=>
zIarcWa;n|{PU=dKK*W^<YwE>nv&4ce+S5H<kNM<f;~=c2tD9sL=L0(uE8SX5Bk#j_
z7nVunE>O}f-B9^G>EzV(@sz{#S5dFgZ(Aa0$ln-jd><<5&R)N)cPw6SuXC?CAEv-E
z>d1YsT(MFB)j1=3^+Kn8?YEnPMYQb{Lj*;0S3&|)n1TvTnAO+Cg$gPJAqu1@#T45X
zX*`&sO}oO9-Gg}wIivuEr*Ki*X9B!ZP~iy6N5vdbpl2@Pfo!CER})HzhhN61{qK)I
zOj2+PQ-DGdpa6tM4gY-ilmEW0a|uCVA|_~pIB*?c8U^H2KISVHMc_P$Dv9dzD?C7f
zASfZfgE(@LxN<^31#}VWv%KR=zU6DajtRcuE51a+KJB9d?mIP*6D|fc!3Q*n2%Iqx
z<O7w-yi`*;VZlHRB%S-qzy0gKlK=%5+&*<Fz%BVD`fGw1S(^*YK*B+ZQ^39{NCf0k
z!t7(hl32Pxhyvxq5_QQ!IoQJ4vpqI!Lk1$gQ&5DT6P4QOJyJ-z5&)kuYp%{2ls~At
zVmZH4cpDPnow5nP$g(f)8=_Duk|R(YMaY&mVH71x4@y*^X=5Ex@Pj?@gFnEMo|79t
zWIL`)!dXHp`8tU_WdEB;6g(-wv)B<tsv!YA1O+BAh0glBhzmSaOtC_9mr@wSl32yE
zX+=G%!xXqfq%lMZqZ1zlIS(MlJ#<Bu=*1<I!N?<*TD-;1LV-=}#81pHa$!b9JgWP-
z#QsSSS~MPR)Di0$GbC6>zG=ofVZ`g1w(2RycyvR4>_@JlpqWSk#%dYHQW%$z7g1p>
zH|r}$dOLw63{Y6TK7h9s(X5v6y?Z$Vgkb_9dkKVemm?4>pZG|m(a4o}NR|i!g_IbR
z%(RaDiF9$Ah{P|7)FZ~iNNfv9mmocr{JkTHB~kH5p&Ux0e2h1H45jI?94yMBNJ^Ag
zN~VlTshmm(IsZzdWClUN11iXaQJ5>L3<}`M%B}25i~LHnJWI5k4>`~>$7ljS5Clcg
zH<3(Bn{Z3GluNqIOTFAnzU)iC{7b+LOu-yX!YoX~JWRw)OvPMG#%xT-d`!rUOv#)~
z%B)Pww22`}kpsz0b>U2w2$I4$f<55ES38UyAqvo}krCmM4nv9`(UFzBOxc{x1;G<9
zF%LXAl|&E(KzK5ku+94cPQtR2!r&!E;Dg+o!=gAApdij)^c1!<ia9|E=cG;Ryv_!>
zx0O(ppy1A)5ClR=1i2csxl9RrOR7;JjMj-3J}66~V9uXN&*$8UaXAWg!>LKZPW{|Z
z1JO>EsQ;;-0MMNf1cPg}nTm<?R8GR+CHF)M_%w<KJ(TDqik0F|3%$_(Oe%Vzn50>n
zra>2AVydaB8V|)9o*>YtG`N0ongsnAo4FZsDb0@YnHY`DzKfZUq!*wh7m`7!mgyK7
zg+-dt7!Cze7d@jPg_)AknQ;-CoB7cgjh7x>iJ4g$kl`38eVG+G8l<67gE<!`#ZWOF
zQ^P2l^syZmNud5gt>)pI0MaD_>YW2pQ~%+Y26eXr-7kjZuPqxp!YUd)Je^82MBiZ_
z%rTqyDLY!i13|d7eaoxR8Jv779@Tl9@tK}{lt3X(FGx94{n0Q&t(-vpG){pOO5L7J
zQ~#W^`II)*pGz&D>&YJD3AWZ*y-}Sz>48<g^VBy5E6r(?R((@49aduXiCS`_TRJ5H
zY64#JC14UJSTc!XI;Lb=)@E%cWmD9YKv7`yGCuXM7R9Pg64WufqX<H!Ct4-nbO}6|
zq3Zz!P}meL(jguKoevTuLi!|0q9mqk2~7DTcSBZOnxi^0*IaU>aV1rN&7yn7q=Ydf
z4a&kqilJ!L*HGeDOKR9bI-};=Bj19geGNNX8d#B1r6_78ifyD~U0IgBiF<3Rlhdl9
zN+~+2s%TLvtP-lR(pHpsH!AqqS@Ftm^;0`bDox8BlwlPA^QU>y*`3p`lz=CM^8bLC
zYN(tlyq9_jk5VU=fZ2;mT4wM+!RsjX;#wc;*M{<dlKQ{KqgmT>DXi6#sy)z-5zw(c
zIk<&ep7L6z1*ij(DgkoZmK|Ke9jxa%vaF>m>Pn>RDj7w^NtS5TEIb7VbCIEiGV?Ur
z`^lZpD!h23ND?S9m<W@Y5tLx_J`bR**_uI~B`vRP3FzWnck$f2g`K#1-7JDF)gmji
zN|x!eD=1mrY(!nv`oFisJj=_*;p!~os$1mxU6ZJ;!ku2~RiYx>F=R_JC7Z7SDjQK)
zSHb$uJe8Sw>r>1<-%Q(F4&<=PBd~rQU8ps!ffKb6dq&~%R}hPt>&-A-?Ek<H)3o-I
zFob!rHxb<}J253YDErkD0*)OIkg=6O-dVff{pB&w{jmgoN$TC;l^wQ6i!@_Pz4tx1
zUjsIja5iW=7e>iMoZwcKkTY;4JHk5J_4Pp6(K8#43DQ*w)WxS&gRuoxPATEE6aL^_
zYpWU#Jh<y4B0i!Yev?oWF%MWaQw!oPd*aw}wHfoR3Dy&01L0%i6dYD!Do!)f<6tz#
zP@2;wmJ2MOONsk@+MeUtnQ-BhkT+x_TEkTd8n(2+%eQ^I)2NEyL{tfpBRICQVwW(t
zp&GB6D~X%y->On#4<p-(>$UlfsEqSAj!Qd~)4VCp<bor)%j06!)&G)5_JEs9-Ir6B
zI8I|&X4!z*yLA%b*$cgW5g^zbDAjX2ny_Q)>{lt#<IJ65_4VVD_&l80;ixUe!?Ufz
zQDpojJZ7QgL4G)7PG7R6=Kq5_BvL$+U_92FS}T5L%JYD_E9F@0;?1k&WJWucz~%Cc
zWqQ8M`4g7<+pi$BLjOWTHI&vRgh3S%Lo$p4GsHqI<U-S;V?1Sv^DBk)Tfd-zLVT9O
ziFUt=zL5h=Kpu1vN%p`Z)Ia_cTlg*AQk>!jJV7dvW-)_65~M;Qyh05FJmlFys2M@)
zt3d}uL2^++;v)s)yS^_JXlw*!l(s>h_5i4~DVv6#PyRtv-v8$z6d?Q)X(R;bp^m|N
z-s<Z_N48PNZNx=))JJ(dM5v+ydlUtHd`CstM`>kfQX1crc*J6qMEj}4yT-(~PDLcn
zW^d#~PXtAoU}n=gX=yY@mfqB$3C39r>s(CYz4k>`lf_}wLt_*tWK_nEAxCF?YG^#{
zO)8UDTnTGDsG^2yZDdEWPMB{DY;i2ac`Qe+p6xM>$(>Bew`!Rk#i_0p3Y2V&nLLS!
z91Mai3X)71oiy$hZON!n$eyf;;&w@*u<fIg$eI)<8>MaS-fjYM%9B`X#`JC+)Ku;+
zZ}VP|u+&Pf#NEbB@3Ca>^Nw%%CJ?)fOFWq8!>n(-od0kB?r;D8ZvYQ)0UvMzFK`1t
za0E|q1z&ImZ*T{Ha0riZHuTKI=n=<AO$pEN2S<V2%makUP2D_|B8dV&2m}vTi6iJu
z6bFP+pq>?%S(eI!d}CppNO2hV04YcWP|(b|mhnHJahzyP;Z%(JM2zaxa3oi7Z!85s
zFojXLCPg3xE17Z^u@yzY62!qN@S(H+5`{cKsy)zhnTDI|`2(_XDxC;|EmsL!5d=OE
z1vaicQ806#@`<=%3I805B0miIoC)ttazLkT3nLK}AO#^41ukbF6}dlz69quvB`${{
zf{PtThx9Ee1xNv&GnR=;_phOX6hk?`Oy{kg0RJ8q&U2yI^Wd=CKyURl{y0wIo>Evt
zmEZ$ELkU#i@)F}E?8<d?iP@bgNN4hO>Pos_pSv4}Zd3?r^d%RD+0ig1(j`5aj&Yjo
zo@jL`fqpU3j=9p498rF;nh#|zaCdccFV<PnCvilD)?5id;5uSIi9{H<KhU|&O7s<}
zbC${<VeLb@ahiA+C<P5FG{+g6m;&KLg{&!>NF5z_0U$@@_aaFivsoSrWJt%sc$WxP
z7b&4c3zI~<Ri=tlvzb#R^EQ$<pmSgOF%5)xI=@dOv@SDqMM(BAA?bTJPeS3>(Z+Rr
zHwh^~w173GgQX%XQX!w$5h9X<Q%QCl7ytTRgX_uigVup@hQ}d#^&)6hSq~UlWqnu-
zidf_0rA=Y-nAmz^A_XeBza#TlCYn|cKqjVJCTA@YxR-k%XL-H1Oi&0XrN*9j2dGo<
z11hkU9}Xt?8LmXXM4Zq0t}O)(4qS^mXM#GXq(2G%Nd!|UaZeW@$luw4pIzsG-t3K9
z(-ys%ovIu6+O<7flraTDb0W)k3Bc{C1NwolQ-n-jVzav0iOQ;Yu_{{Hd*a7VQV6H_
z@s@Namptfrg#yn}2)2M1AW#s6JwOFg7@Fy4DpC-Ixr|*xUWw_?9Z*mce`Buh&l<>O
z2`cC~UN2_T4>r<|tqJu2=;GbhLjM^?UKe|3iTMWzQh+=V^gxA~AZAPoGGxLm3PXaR
znDGe`vEY%17d=d@xbY*%kRnHtENSv2%9JWsvTW({CCr#IXVR=`^Cr%mI(PEy>GLPh
zmWmQZVb+8oAVnZg`PoQ9k*JNR`b0!gDiOgHicqDvIQ1h6Qln5@#1m*#DN_^)1~NtR
zD?>cYED|Ka3{O?DWMe7{bmT88J{Oy4j3{c<M^VfcGiHXhpjotP1$#I}xgfKF1b^Hm
zNb0gk#f=v~E|`cJ)r}4zMoe*<nJ6kGA`)iZ`gQEtL3i`+?fW<I;KGL!FK+xe^5n`t
z{wZ||FF{3rK#Eejk#N_DaQ`7IEQn&Q_S98Jjg9z2lqoz>nlv$$IuNS2;t3w4OR&^*
z@8tKwOfi~SDT5WpkSL&hG>RgBDR=~3=cTt^d#RbC8D<oEkO(Or5OzdK2rl@SeFQ0H
zplSn}hlgUK@TZ|sApL+MY%4A|BaJoMcq5KE>bN71J^BdJ6pj@{0xDF1G~q`M9Ti?g
zf5gX7DHam69Yc$lBBKX?oU-C6smaBmNK|@|k!_XjQRS60$$^S)EJ8t>i6WACQ6K>_
zw<SYe612#i9{6WrQBC;Kr$}{*#0N8SfEUqfA{_);QDuJg=#Q0JdMT!vYPu<>oq9S_
zDb{&_hbg*|;76N;$^TJMnSL;XrI>OpIc8@}Ms(1u42=?1K?kK41T&)g*=9jvdN9hI
zwe{K}NF;<v5-5R0REo3=DQg&^%a+;Zt_=A~&>qZs&_`y|3Sx?pB^|V_wVffFD?yDi
zltQ|7q1G;FS=H--UGshVFTeo{JTSop8~kHYfixl4s_~uziW5OdVM>PaBDCHg_j={8
zRp=fuMJc7g>Te3CC=vzAC@+~Y9w-DMm&T(q1Il`&=Esn+2{#c1DRY*5a?0x&7H3GD
zNs1_0D6l6N9_;Z~AV{E`B1Z~AP;m;FEV~SIY9yF~ZWDZva*C9BEQV!BQd4a;)^+t<
zkSL{;P!JPM#Q#B26JUA}ZXi(v5rrbm=uOZmQ%{iyWqkV$xZnpn{y5~3OFlW}kx$G_
zkr4$EIBD4t6h$eEp_0c(#s=}4V?Rjc??L}*MnWKrfx?6-kcN)=AH+`S@8`EC!e8s7
zNjZ_EA>qNM=FAvL*nhJ^{SgU$pt4vg^};SY?Uw~18Yn4{B1mh@RBKZ7(*sy<#(D>V
z%J>sCR+>SiFeVDT9z=1<Vu~QqtNe@6UpW8+D8K;{uz&{C$+IGI1l<*+YAYeZ0%?MR
z2!dpSEBV3PRN}ee1OaUmWMBi)Mi5{*VI>``2?R6vkp$M|2r4`v3}Yz68Pc$ZHoRev
z_L2z1;Qz3PKKvmNgDAuy5^+aOC<Pxz!Hg0Xv58K6A{3)2#VG=@1bm3rLa3<4EpoAo
zUi=~$!zjivlCg|tJR=&@sKzz2v5jtgBOK!>$2romj&{5w9`mTjJ@T=Se*7aK11ZQs
zPVNYMKwK7S!UyOq$B>BJ5eohw$v+Iv1Cg9$C69ASNoJCep8O;zL%ETnD1r}*C=4DF
zp~_Wuk|d*$5<!}fhz*kD2!PlZM*g4(Jg6=rQSd_`@_;r{n$kqJ#3ezFpi5rHB$cWZ
z#4SO%5flU>5P_2vHLXcB<7D%iqWmT}!wJam+>8%kQUocgsm@l8<dqj8f&AEcks!n_
zX8)|3nIFcMNDlxaSb;Oev&dNxbB?f{yekSQ@_CAVvP2N5P^BW&q6lez<XQqMUUDpY
z5><+`qaOX}7K_qJQSfdh?u>}58dnlg0HP@V^4jY}!K=@K>1V!FsbN}bPkteZUowS>
zASy<XAT`A#8f_Owk#p3NoZ@C6eJWI=io=7T4T&N_0TV=cge;!4AWg6gPQ8;=kcbHi
zI4uf82l}LCiEwujF{|Ft`jVhV1f4^Q2m_ZI%Waaxf=)q#jAjGDy6jUoDQKl$Et$7>
zmH;&<Kmh}lCQqqSwz8Jx)WQ;y2Rz^*M5tioMUEgEW{hHROi&^-P7#H!@{1HyIRD7t
zM9Y}ct}Y^SVMt>eb`d}%3lEy*EDK}B4BRFPuamt9T^XV!f@CZrJ56k2LjpR{1)@zP
z$k<{)K^I{80e?inAFtXH1k{@1O>in63i>%c+7d)jqv=z6F-O|tUbepWz3+_h0E*BR
z2o$*z-yaZ!OF;x8t4L79DYAnCQz#+`B)A{h7~%(|z?LBdHZX!|=>ahnWrK_I7Bi**
znf<~B6#lI(Lpscm4<C!KA4x7jtWvG!uGnADb@4~!@&_hZjlpm;MHEs1x-<c6EQ%rp
z3UK8C_>3aRPKf7uF9HhM24TM$Ou^2W;Rp5%Zpys9XH=72*Djib1W0HJgx*5vz4sPE
zfPjef4u;-~Akra(-b0lty(1vlKtw=5s(_$^q5=XUDuRNdqU=2H^M2=j&K~1CXOB}h
zzkqR%WX*ZaIj_0Kz1B5(+I!ayBzNSC)YYx;Pez`VVN(<GKBNEm+4CRZ;Qi*U(AFM&
zs_vJaT;cqJED3)-OkL?_b$RC>P-)FA9>iw#mUDL#X~neQ*2Xin>E|PdTA!xCBGWLz
zEJLO12iRueY&!b`kAlX%CCs)w*nZMF!q(np$6;yUnXb5!KAuc-e@eKGyO~~WShX?i
z7Mn)2jLVS9tY(-n2^ORWseSix!9t7fxtKR?Uv&`7_a3J(RD4amwMmuBV`3sMci(VU
zWb|FRi2iU4OAm@U#L`Fz(b98S52PoSB<Hz|Sd7G-1bs+i8C;jW@y)WHxBMpYk;3Dr
zru=wBO6K>0tKm9y4~v32Epnw1!zL;ZYQxSt>{317M(v(FdMB}*O|C@EYpXV&eJag|
z$JWk<+Gg))f5xnFzZClJUuF19r_mL+o1=bfq^RqtDf#YoaBp7n@<YDw@WvKa^jf0j
zJ<cP%Ha3oNDw5p)oB_RN%UT?9jxZZ$@^WU)*g&=VSq$RP0BoVAoAp?E^y`4)+f<|D
zg>)>g>?bfmPs&qclSTJKZ%AW{<EEwmiIS{4KM-1K1gftmE332QMRH%bWY3M3Nj@FC
zEDX_(H>kf-+*@rB-0eI2miZ@%{O-;E<9@>{uVa|1=-ve0V8NpeMAs#UPA0k|Rxgya
zZ}J5+H(oe@*V{nGzR)$~m1F6<3;b{IoZT=PZ4$k|r2F7^p!&>9N&X+5@Z+E7e#Hn5
zGuy&0FMS{ZvL%K`WA~4BYEihdU6eQbkn`BU){8^dTA-uts{F`9-0T=_$+N*(_set7
z&GlAt7>;>gQiaVuw}JA1%vs*e)u#nbd_=xwrTZ*}r7;|#VRQM&I<_aDVpEL$OCnOt
z!e4A|bS-shY~{%=fkmzQ<KpaS+2~vjw&0XOym&Nlt%hcc7dK{h%mbVcg)r?9mQD$^
z=g&WNJ}=Cg$HVj3t96d;_8hRZjx&qpZP4Sz=*N^PFy9vVzenZw<W{}DxiLFfx2l)+
zgE;!9aphA^9w6Zj^`6_6<Bj@TD7~{m!h^a}^odb|+`O+8R7l0}H~0<zj+tIDMjLYO
zid-Fw4Ck{WCh^@lA%%&~Vy0u%((kQ&f%?rKRRU5IXln~|n}zyHpn(0#rZG4vO?hFX
zA1s@OlO4jr*6YuoJk{h)lHYNfKVJn^e<gd3EM+FBY}<hPRITjYpc4GH(@pTND`#nf
z_$lCVW`p`QL5=1HjV?jW+YOpSf?5*|T8{;_pEYQ|7S!2k(AgK%{nnt%W`vY#K>Qw&
zb<g5ady1E`^yOvdZ)82s<0&oQs6Ui~y_O=VEM$ynG`1GH;Oxof=h+;!)lBqcDG*{W
z-_rew<8QS@ohAhaj_IL1o6jZ<^s>efTYBhI;Go))gfLdvSPxAE30IHFLW(fA$BlbR
ze}m7-v*t@hKSmsFN!+?PG*@+5ep}o^SRc@2K3!xv@kGi6Ebk?32pAQEL-bKi#&KSd
zrb4;YX9^BHyCuvH?ZSAmC7CHN>2cwTe&H89ONJ{?9Nd@fZ=+lltZYuUO|-TRLbuJo
zahvUVIyyF;2YCCI3p+}{FS?4z7&KXXd*_Jn7}pYgB^IQoc+MRNNtTbD-|-Yq!v&Z$
z%L132sM86gokEKpvBhRg^A<h>B#yUSFUE>gKMvRg8y$nsci}8DutfQbmm7;Ten9k(
zivFc4cMX43gg!g9I&bS`>6n2*fc3VyiiNErn_EtOy@Fj?6^pI*97M19`{3e)wNhV4
z#bBbD)5Nw$a8*#J-DZ5xw$eBQs%%s&5RMf`>Tiqct!|5L6zP;xh^aM_LyQy**EXmn
z9=%Jn9gk&1#@p;-M^I@Zz9wrv!c#t1z8Hn;v;^zzng;Hg-N;B+pdu#ZrId>O<}3y^
z`9yZTOEom6NZ-J!TGM{+diGMpnnWWC$Fd~~f^%`jSW(>{EQ$bR=s`>3rdSjS92wIR
zG73KDhP!LAd_k$?f|QSmeQMBHUOX9zrzc2R_?|B}HJ;ohf~G%4U#wxqp=o!GcHf_G
zdVO{lZG(^VGO;Pd2aOePznp{kM(y}Trx^GRTf3Yh_ZBm2pBY>zAU5ZLn|~I6tu}Z<
z2A%d4pEKrUD&V@Iv}c?n(OT-?RPS#hwO9AdFQ;U*@^Nb8i<I_fyA8btjbE%y)i3t=
z^VeE7w>cJGx7=%MZa4cuSJzeCYYXqj?nOFU-e&HI_jR>he;-2M(eY=`h}cn+@uBQC
zu3RQNxM0{L6Ao2MVj)AIIVF)&&kP9;paP7?@rXyApUFW-(2sT+Qz2WosjRz>diGC^
z;+RYilGesKh7$bXH=o!dzyT$-X+#^zA4a{xQvND#qL(@+sn>WCa1(sl#c{0l*356u
z)T{EIq&m8GPKT8g<88k*){Klk)&69)`ZQ4ZM`xaj?>IAfQO1i+ULcxF>hVF|tc+Ji
zXs0m4Cx-|lmMpq@A-KYmv_}fyF_J;YRK<d=x#auK_b#|)Hi(PRb?5E6N@>{AUdxhY
zXU^=WXN>N#g;MrBpW=x;^m~%@dD03IK{<$hBfM0_kD#I6q79X<7p~MV|FqAgrEGRd
z-ZPmJ%b6EpyMSyp@IM@>9WRTSdp=k-aa4u9f7i}~TvMk4-)pwLzaYfF&LmNs87NI1
zd!FTT!ZVoL3qp`j%~scY>RrT9KD`RqzwMc^7n@?Bt<OeD05A8ODdEHYU?(2g<FnbU
zuh@_b=kA|(SNx=@zdF)t-Dfk4kPVd|V`RmJTQ_|J;k$A|{I9d6jy;cgpSuF!jasu6
zQK<Q8*nNop+<79ax5Z|d^K751hX&P?0Au~?%k%lBY&h^DKzHV{n_0x1!w2<)Kl@M9
zz2ttuXMXU#96V<I>Lm;O^@KlI?)~)heVtDR=Aoqkek#o#`ebmu{TfZ*WIgdSMvo$F
z*E2g#(d9S@WXStWGI&2BmtodMdrz*y!7qZb8^px;hfTKQW@x47CHkd<UyKLeNPf2o
z`^Gl|hHm-8<$%>OFZi`=Ck7jF=H(@jipJ<+ronTzo~xx$nNI@sxV1}sirLO*t<3ki
z>c(9-U_ADu_!K1JIt`$VSa*%5wQxn;;umj9Mn54*IxOu5L_(>YTmoWsWKLG+NbyTc
zIJ}xUGLvHS#;9zxO<Y0Hho%U^xm)~2;_6D~C51HQFP40I!m8Z#*S;jP=A{mPx$!A1
zaXYK}_hUW0-cYK7Oi?e1GhBj(i#L6>P&>_L*YZ{?hqpPk;+-!_*<mt1>1y}ZycWKQ
z$~L827^0#S6OK|}`%mf%Qzl-2ttzlroOzvhTo%z8E;OU4ovauMR$@J|*Ax5t6xJu4
zJ|^h1D4icBK9hr0R5A+uO4rXCv=y%O#!BmrqW)x<Bi~JJQFqbj3Qo0`E6<{j)a||+
z+*6b@3Oi?}pdaPH^6b#i^fLDA3YKoh7ORjE)N69q`)*gMtc{!pyk#h<eBrI4(&unf
zr^~Yby_|huuH>2hsToW)DLCa-?@D@NW44PL>!936BRQ@gDPr|u2Pg2fl^;-6pK+Tg
zBmW;G6^kyh>S^MDqMk1$wHqtf3b?*AJ5?RhR4c!VSmTt+7ItgtxeHHAH4o}k&Z!4W
z5VDQj!;PxdRgOvgAEnbQxK$SPc-~2?yf3)bDQtZi2MNhFzaBMQBmeEed6gSUju(wy
zZYk#kFWs)cgtN$W4tyw0n{JPCH~y^*X8C<3i0*s9SC&jE)mL%|owuB3XI|efQqGVz
z4ZE;>a0{T0ctpoC!sQ~kG@<A2rx_XgE;OYyGawdl>8iYos%hN(o!1j)Q6D(JHkG^f
zt=e~2tVBop<$ND;{5}{LNzseOBX37vy%jkBsChAc39EL7R&Ct>PNE94eP@jmo6d?-
z);meEDa0&;cvdX&Mm*OZymv6^jB>#Ax{w)r`#HrkND-g7B74$SiKNrH*K&E&H(5Oi
z@PK$*)1Ga|xy;)~TuwD2pu?wX_uo%XJA5lPH_Sg%D--(BbDvRMO??*TZc8MIeFRG6
zpd0!6agCiWzSLRlDZ>R=tBhc~qtM&hPB$T+_H#+*uYTM<RC(;2R&y3!Ni*4>P=T$k
zsiCZ(yi&d5rHXzlH=aJmf>WbfS56N<U=^pH`r&+Oc&JD;Q(lXDiO)b;-}ul-;f+R2
zL(PwMa}8rE|6(VNdXItPrI`A6->*r=+%Qk;I&^d!?DrWiY`v4&O!qcdksOk$P%snT
zUO7Mujjgky?YP?CQKa#y`c1EuQ+mgk?dS7$kBluaMlG56XC-L?C;2>7ys_7C0}m$#
z`ouLKK_<={x)vMZ<sdXK(_M(R##*Ugb4~6ir>lyfn+&ec*xW8NS{u_NAa}PTi<d`N
zHN^~ZSj<2WgO<8x&;u5;A=K?Li#7d8uT_U}4_^aucCF96r;pA8(iRI0FH`Q73mG`q
zuBAhQ=KBdBs@KG$*3!?P&cD?1qBp2TrJBoX&?l%)7gd+pNqW-8&$4UlI;1Zt4o>Qx
z4lz|eNQVsd89e45?C)JqL{*oS#n}dqQy&h_v&et`Nw+vZ*aP^zFmqbCptaV1I<B8K
zAzIa+|NDM-#!_s$t5Wvl;yq8|qZzuX*TJ~WrLR*B_n$kR?msoyi2TKQE)#XLeH_VD
zpECP(&x8bio!K~<MSt!5Ankjf-)bSRl1*R5)ea||Hb<1*p;=EiA<%q?<b7%r7on5+
zR9I`m<5gmu_Ir8jWxdJ$4lUHA%PQ}K4^~kbD?>D=2|@wXf6nL=4`xi!@#$JDXJ729
zi{VZi;<PSGkHV2Dmx+)U^3jelXJeZY18NVR9|jMU=?XUKu1$}BdlR?x;A|BLW@Y00
zQ>>BdQ%hrzNKK6`fo~35&5GH2Uh)6y$~~&oy$n9yY9WTE9;HPr=rb`2VtJZ&@uuZG
zg7teW2qr}lRQaKwIvk>yq#W{R`7Vq5NHUb2@l;?Mc}?tmMVUl9a$~p|ckY^L*%NW=
zHtXwuc*IN=hp#I5VCmI+8%_H7UKdt<sDt()-5SiUJ6@K4DX8R7!7y9uZPs`>R^><o
z{&9XV_OtEnIL>hIxk~lOZ>OA>eHR;)vq4~aNV^uI{7f$UiNYekR#aZGREa~we2Rs0
zkxFGO!K{Lcn?=jZ&V4Z{+f?8|z~0St!TT)NUM%%T6eT6*>1)|2!TU1mandxY6%I!^
zvsFx5B(M&%PFH|FI6@O0`R)yORyv*!o%=#D_(6Sh?Dc^UTJ~FmDVF&8`zKosvY2m<
zKlQtkOfqE#52u}aMw0lp;16n=2_gk4c#KzTX;eqZeW2#)XMOhawhOwSi?esflgvyn
z)v`L7PBxz^91$MEXl9`k(=kWuMyw9>`-Xk5vqOf&_B0nXAy)&snmAcN3sfR=u*R`_
zS*ClFLWwcV^~z2I-A!W2RfQPdc$~$w08L?^?itga4_yPif~2lGr9}7ODT#OP%e^0|
zrR5g;XHTJX{c<^z=jG?y3zWTYe$8FBJg?3A)Y`@+LUGADrTzXhxG62v$mxl%EfYR8
z6wh3?Dlhvg0qv$XYq@)DCy^~3j5JraG;6RBM33aV&`h7pOEHAXcRNQ&Us26C?O90n
zmIUW(3}(I5UrzZ+loJ3-F0~pnC5Sy1_9=1^e?=$>oLY<eE`8N$Z>8j$%dteKoom&L
zi2U+S$`Id+OpI69U7ZDbZ6DqwDW-bd!9(RI<bI9YZNaHr=gn&k_b1;f=mkR;6!=SJ
zHWLM5r1COtynrX!)vUF+?67Q=>RLSY3$ZgNs9CF1Qd6q0duz58mvVrz?O{trc;S_S
zPBhldx65(B&c2LA<Hd^-?Wj`UhJw7Mh4yYQ+c)*C+Z->C!x+?G)bv~-za4&qyy|>s
zBSF)}g@wx*cb)s)$%mBD{e1VhaNbCat@atu(SiYgwW0;HIw?~eqbF=9QjyWnB0@0T
zKw4oez(`DU&u65%B}LcNYR^NJEJn(}B3iW7n!bxO8^5Ho;JT9&^|m0=S}h~%m!Lb6
zH0gKo1#2cL?u(JvCepl$77Me&CuQ8hRAkhDly3<+Pj0(wmlvxwNW-tyB9_Wifq__|
za=|o>Se6q^mX%niTX@~ohvd+@{j>OdG?0e?WTI6I6W%5P))*AGj2^&+7m##;>r|B!
zJxruVq`1~7(!>IGugo)<8dnSA+{GLd>mwh~@#SnjPpR^h6v$qGcuL&Gaze>Ojjb}~
za<RdbqtA()rkl(S3%HYlg^XED{VG9BpX-IW4<psMb>6oE$fd<>!QwXvfx;qXu0>?9
z^9uVpdzHhI`MA6(H=5@YIhwcS1u#dv2c3As+A%Uru~Q(db!FU8qnFHjbCG8}Y8>u=
z31!eIIJZY_z=&qZ=2&C@x%^1y`(bc_K5|iff(GxmT96xE<t056spGxX4gK}C@yxo7
z#{hO%cz3LUJAZ2OXD#5Yun_mw#8iAdY5hVXmEbFt{?+p#2`oxa8fY)?L15VjltIx4
z5BW|H(zl@5;CKwgz(ih1f?SWTFLM+VeWFO2z7bQ}@1qmakNEUH4ZKlDD^^B;z4G0v
zIxunkB34K{{jnLz%1c(iznvuJS<KnKT83p<HGc(m&qP5CZjexB=8Z%o3I8^vST*bW
zEulJAw^n`b!Y8RDNs<Kmz1h+?i(G7D6J2VXX-Lyxt&R+W)p(4Fne;@YwYW*fr9ErQ
z_=4^&*~Wy?hgu9jE+kD&wxmftvuF2zRwc9C7$7JqHmd>e*~~1KhGMNHO`evIGBviI
zP;Kux+A*zBrU{=hd?Ywc3X(-Y>Tqq*^d|$Bk1TOLJlUcSA69RbezIv#U@&u=vsApb
zb|jj?+h+E*0{%4SwonQ0W2bY|OG)6Qda;4lu7T;C$6ccJFhzen=gi%8cVu4&LLwk&
z#_91-zq{qzd*KDscF4?U?e>tsu#r`l&k5{<8@K4iYM;|s?cNF>(7;0XK{CrxY2Xjr
z^sqd*(%f>Sj4q+u;R<)boAT75Z>f_^KR?tSHA@Uf3LL~8R=)XtTL?l!eLfEIu^5z%
zAJtRqiRF)Uo0YN;<umJXAgyn_9KAC_FLEQZ=nDJK7{dp0Du>y|QXBo|QRA(faxRuq
zcjt*wf!e{DXXFC^xBUxIif6y4G6LeZVpvzD)Kuumzwdb*x^m7qJPT_xAuDExfvla_
zzLrfndn?v(&iPT!g|4o7t3Kd-9LSiDI>4lA<%}XP<bA#NW6ekRjB_E0?Wh*&;;T<L
z08N08VGqnV^mVzO6qFt{io5uoyU4Xv{_Ln({gvN^M6TsJw&PY~7k{f7uBUCb$L$WU
z{OulaJ-bnQ-09~M;Pi&;dH=KHuIN_*7tgp>M%cdfWV!@;@N=)W8IJIm{if0WmB!@$
z()1=3FGMi$J8f*#YxmQ@PYdR54=hd|-qL*=bdp=Cw9LkP*9Es9EOT#l-t61p`}l3a
z0|6E5P^HRWXXFeVc$4YpHy#)Wk+Bs~Y~5g9=8a_Z&E2(_8MFZNvmwmYba|Anb56&7
z`yJ$sse0S!7qzRzhsX&iU#Gqkb>HE2ScrcLGEQzvY<N3leuby19tG(uvV%oeO8B>N
zsr#h8es_PLWk&CkAb-N+orYu)D=KJz9?OmSw(REJYuPao1$o=GA=K}hVE1OG%s$fe
z%R}m0pNpfeao&!6ZnKXdJc|E%Y~`h`7{#tqg_%>l;qp72NR#{8YWus&%U7R*_~%~E
zygs@AhQ7sRp9*G9xQLW<!w8YJw)NSRel^!ZZDn}Dn*H)ZYU$wWr9kps2E<s$?h#;O
zu!LL~afY1C`{wU(lIy@kSnI$ad;I!6(HZfB#!2M3_)%L-tnTgAw>P0?C@AzAQ}M>z
zoz$hQ-#4@7Q{D>d{#@$TF~4R?+D|-_nbMVm-VR}-ToF7d<xeD6JdmGe68obTl!!BL
ziQRY}V7J-vhj3x^_57dW5XZ6$c8>WnJF@uE5McG&ZxxTFT$#jp%)ch2esy#Q{g6CD
zU!anlKQtsicchA8#xkO_Jo7MBWo}4<5M*8)cUKfmEdr_czh)+I1Kgv;7K{Yx8Qgu>
zLha7<m`*H%THp&tc3=;wv3HEe&_0Es?R(I!aC8{~DOL|nXM_L*8l8KLd(7z?hzDrw
z8Ptjh4R4}*umF>upnVU5CXLd)Yh%!bK*BmGw}H@MsXnI!im)$Cq~5TVjNV&lFx8{`
z0YD%;8QzmY-4G^l66Y6!N)`kb(QZHamQfPT^ahNO#Uhr32S7<4N(d(T<VKA>=5#WZ
z#m-*uSeRoE<GdV0n>Ul-ChL+HYm=P7*a3RdT$>9)ACk>^3O4{1aQb_)OLwr=iLw^7
zbDY6BX)M?(g<v{|NNfS(T_{J3!E4ui_`O9c_XRZGkb~in`hhu(g*n7{fj3;b{gi;g
z<g1<%B`R=m5b!G*gD^`{*uBB=d9lcUq3p}7>yAfFFMMMMz2EMSoESSpQleD{W*X&T
zM*@jgEKn7jBii%mf6Jp?nIwb?(FKD1-*51XQ$bAi5F{cPRFFyyLUzj0?t472?G?UQ
z7=7ilsM-@jBcPC1p-9k^hO!NG1QreV6bWb$Ikz!_b8~8!fgB9`yvT;$PUA2_LyUnC
z`gcMWME>M3jftSu6p}}&f?viHg@bjSLIe`y=5H8=_Mla-Wkxm@O2~RhiRZ_H^GyB_
zp~Q6IM?w;n1c{C?8Pd80m5I!`Uf~^&JI##x%{!703l-wR5{O?Y`Y4i3kHzj#v2H4$
z-!Yr+l7wBDMG}3*suld4;gH+ClKjo`@4v_&yZf*eF}bjusob~ZA5jn%NR#^YMau5$
zFJv!>s$C)RtIv)os+&o=^2-Qj1eFL7Fi27VboleNg{DUk>sjq^l*kQK=TV0I4PW!v
zqn)?TA!fFZrML=de>a4oCYTbMU83G<#HF?un`?h@k8}=+*<|tA`6|i>&iqL<4;0Z*
za#!Q?6r)F~hmk~`u)5cqby=77Qb;<t9_mD-a<)!m4Z!;Ipz2*&MNbG9Vl(V6POBh;
z$*k@KTYQNPX$X<{6-XVJwU|Im!AUk4T)b%z<!w|p3=O;Nq4W^<Vb{A^A7hhp$c)}H
zt^Xi{%oI5a{@KUg^3M2zn?JzXm}XRuPF#-xhJ%cr9a!E}y^AzbZ8p{yR<%&_v0i>)
z(ruIkGSn^B`JK{`7cS6*<YJjI<5a>wVe!A>ZFpzN+)J8v$NWX8_l37YLF<=M^DMO|
zm?Qg-qHEzi(l{i3f{J;g*;K#@c_@&K5iW)slH4s2Ay$H;R_{Qpm#L6t66WeDR>lGv
z?hzhBdordaqC(BK4OG_J80#WKVbF%%C!-^YxA;s1%<-#ol()de2-N91gE5M`W6xgx
zZCic1m6Hvw=vcJ1#5mOe%48Zd93fMBEH%J-s~Ez5j78A*Dl|q220?6Ak6f%!t{=Q?
z1V)`M*%+*k+Y64`I`ui!J$2|Wv3dE_`-<tAOY{yQmdfp(q3W12zU!7i@A3VkWrbZ<
zcMX4nKs~{$SM&<KB@?Tcn>1w9125HM3UWib(|WniYq5+{|1d$GDk#a7xMX;2U}X?y
zR7guXNbS1*V>yCVM9gIydtF5}f~|K1l}C_@hT{U7=;<H-O@XXp-Z$#s<c}gfqe`=t
z&9TJ^ni$n7yyZ&wxk=?F`pwIO4H1#7+6%%wxLw~9f+@SQw_K{YS8CEI41axK$^S)h
z`6<=OGe2c8?HikzW~gZGm0%iDfcj+%M5GSi9c^T!U9ZZe4wd?o#vm3pH}yM$T;E0c
zZo9lzaXG+*WmAO)EhjA4DoQOxY+pI^=2W~Kp~PEc;q$rK!pb(vA_(z9S(dyn{*xp{
zgnYUEP#5&nJORMeXoOtL6<{}m(_c+_9btDuK-#8&@ky{vl!nA}yW$!DL9bW=^j2Y{
z)E{>g+#t68t=x-Is;#U3cb=(G+4S$JiujJkj@ZRb*+~<ya%l}0we=%j*}BI*jQ?FP
zrPY@vvM5Z?A%ApR_}O#gYL%pxxjPE5c)LyfM6#7C)g|Q>MfDvVN2m@`KvwNI>FU+6
z?^pHpSE%If__*Gswopy|9J#SRo=DT6%z5GvOO;w_n_BQhimmK2ue}t?UVX=dq_38-
zs2nedPTP3yPwvXP5fxLksGb*j7WHW5>D{;48WKjZ?Hng}=hHrxBo7}}5#^uHLp%1G
zqo|^_YTulqBxkRZelI!U>V<+Oa*G~nEhOXkQaufEiL!fflH*bbYSQ2A-I1v&&s9`2
z)!gW!ql*Pqyc=9^cPZYsA-7TA(y&+5DOce!d~Lp(($Z4==`JbJT?da9M5Yz}XmI8I
zk>9=S<X?UXDN@S4*~|eh5OC<Wy_0m&qs*?}<>IDHSy{wI!K>O1Dz@eRQqhX=?uzFt
zDm~q;D@8ev9G2=a6cN$V)30Dwqe_WpY@?S>)~0>fQ}c`_o8@FMA=Shig4eS~z(=9<
zP`%TYG=!|^N%X~)eleMevvZ2xVa%ku<1)WFQtj_%{BO=$$cy@ZZ&Q;M{Hkqvc3JsX
zZ<PP`sz%ZNpJ{Knqq_4C1=EVL7?A*t0fmpznP-YFKh=xN>Kp==9A6s*B4g5`SJN(?
zwA>GD;`h0T)^Jm)z!^nW6jgAPB&){!Y*y^gH2Udm;usCy2??E^hF@sCz5}+Xu-kR0
zo^rUZ`^kkl2}Z8XuDBY#H5`3eumm@$S@ABKuMJ7h!qgjDXFM5Gn0|4*U)Yo;!a6;|
znPiZcjx<T~fZtGwGcc8`kZDDW9uOtS9!Rdr1k}suOlY?SJ~d9PfHYZ7N=dgB!_JY@
z_#H$noJu$Em{9a@)GGXLv$AQrieA~HYNrUN=!nPpzq=Cl$mEgjZP`pi&6d8l;Tw9f
zE}F?#0%;;I(-<=uU#<To)7aABOmn5Q)wtqUzdH5o?B-r!OUq}jVyRzg(cFWoWrNX<
zPFlZiTu;3jD<)E)S=zaK$G}l~mwSK}J=?W#Ke79Ps>9vw^1B_s?p|{0Z}5o;md#PR
z2mOe>f6FiW$kCoBE(-iBidGZ7Gtl+CVoW}$Rt#I?+*pIuEAq{5jq)5ndr#Zj<MUX?
z^#D3vAag;n0Wu|yHX$}5-R>}NFcgUjNNLKVO&p1X=#;qr_4fY4Y4U9ee9VVC!RI>M
z+Y6}J;#FrlPH&w});#YYs%qAJSk+a^q0H&#GI+}zQ@t`(eK0-~FR3NmYN$<|5+9wK
ziBnvQtA6pm`gZnRlf{Nlg0+u%0$I@W0jDNS!-MSX6=q3-D{Hq`xEH_PPUkm%LgT*p
zooA-RWTvBPAWf}9U3*ftU76>Vlnie*W87SN``jCzh3&OzmVigs4X2X9&nmNPj!tWK
zPN&~cKPp1JCok5R@T^LopT-AHWd!=11pMC0eqbg%)ETMNet(r$dh~_l{oB8-m1Y%(
z@82tvDwxg=4Vif%OZCz?c@RB1sCIy$L5{l{7(LbYoUDGK{h4+^`{5Ip`@6g&8J({L
zHeW^V3`?;NSMi>;F)QBRr2EaLvnuGiDe7u75NI*;YgS4JEq86x&fx8Xz+p|-Eu(8&
z;z5u1K0e+$o;7>@_(1CQxgkY+o$ZT!I{~kExVvd|FiXrqi=N3~39Y%PYm1hSgT=&;
zDX-s!xW2!dpqWWzzWmx+qn7G*AXCrC8x|6XngBqeo-Uvm%J@D$bX`_R`Z)9Y<2>J|
zCD%{SuYG#?`qLY}{kN|B@2>5C7~0pZ<9)67`TMoczg~YnbN%dvp$60((7ice;y*+r
z@{oWWTyGBf`M(JMrI!U5Lw%9u|EhTLt7^?x%{O0lAAEg^`Dj#gBtN%*f&bX*;xT0=
zvJ?NYZW1r^#cz;{XWs(ed<%JVz|McfpZG=c&0(zD_vDKw=`|<m7mv>I|0sI1;9T>g
z^39JL{+}*qEX%;}zlV6QZ7_fVfY<AsUxt1@;6G)c47}4liGA}WX@ix6$d*;}`{kS8
znKi7%7yrC_FkkV8Rz~3G(?5TvhG2%Z%m8%Ja1xk~OUoW^RdNo}k<*$Y=Z+JkM|^>!
z<r^k)LAq_RGzyKA1wwifihyCFNilV4NgPyB#MmojXlf8zR3%5yiv4-I+DEb0oj4^y
z5iOFbHLcW$hbgx&w^`TpejzG%JiG3EFXlH)rE}$m=S+omw#xMvw*p@d#M7yEt@U62
z@Zx^9YPahE&oA#YAfd6FkeNv3^8#4ANysw<Y>8#qAG(uL1!Xwo)%$Q4_%CHS+kSEp
z1Snm*RV2{xs*el6bH8KfNnc=L44|<x*U86*fX#f3)wr3|^=d4eTQ~T0@AdX<rDh_d
z_Q28m<qoF@dA!};DO`+%7drjFzCX+yIahUg1Ge>LXWVHbP$!|~ajz(V3?!V_B)96_
zcA^@l2bdC_l0GkAsZ6@|-q0q*{piUI2cT+kMt0I=l7&u+Fez~9x+jf$209P#o+)xI
z!<}+YiS-Sp2tc&R=DE)y7+p9eX5qQBD7NUOMpAtf_y#}=K>xbG^hWa&N@1BxMO=)V
zWFBMt*vv}(Y?6f&(D-B{6%xAWWpi(GlrF5RGsC;WziZ07GI$8uV#nj)o@pou4)qWz
zA;@RymE}YlvqkTTXW}9yn%`og9SaSr!N0}fA_Y0BaFMIdCT*BZSaAzw^!Vjgy+Tg`
zaz5CFWKfsy9hTXi<Xw^3@)9EMBnB9iBPimh56l$5ZE#H&3pG*YD((*UF)DBJ_*UYf
z8k!6$R<_aG<_5q9;j8AqEd^w6+E3C+-9NoaCv{J$iB9US{R&IUJ;1`a%)Me`8L2xx
zFZb^b7stxj+-a3V0vwN=)+8?R<%EvHWM@MkhWL9<LG=9q7Q*aD#^%C+kLKiYAdNX#
zk51~0U<?6%z?ierfTcj4F~Oz_%~}BSaZI5UTn^OkjRpgXci}y(;7oYvoP6KasaeBE
z8rWf0!kYYSv4Hu_woVo8Wl;N2t3CigAQ(I=ac3A_s#wfg;-MZaG6e(H<VL`%0JxsQ
zXAZgao*H$zVqj#g=bd5{0|*oNx%MqJ0JIjvP`qOgWi1`fxZ!1eXE@uMt_=<#!ah!e
z4$R?en?*8GfZ=GM*HNR_u>SS+B^gI>CrDbSt#(vK61)Z(y5O=O^X?~`De2(^e}3GT
zY1w%#J1(0Z0GkcH+%PSTROs8;8b)h9K&lxC4A?6fz(6<%dQ)(A`sJ^*4yI@BV*pl;
z#@~yq%GyI14qy0`aDg+Nc;WaX=v^P^@om*iypp$Hg*($992-%>9P0%PMe6OTl1;$t
z?pIr}01%+Y6!STjRSlr;nsOgakrFELrDro?9f9)Il6>gWeO%3{$eqdXF2OMkjAb(W
zE`tz76pMH0kU<Twj?neACGDb!J{dS_*`5i_n*zzSS{;}j4nu39cObyvXc&MvEOYaS
z=u!p*^sHynIis@WZ`1-FZcM>o2huKaKtTJt@qi^z)_!>Oiq?;D7>c0j+*u0*TLHn=
z3naT;cY5x^>GvcWqC85JZ9L$bs4jHcJS(g?c5zZj$0idYb%vo~+d|T^fQWE!bYl51
zC$*U{yvxGSw<V_Ox10b8K$bvrag#7FRLPP66cqA<jw%Rj>c;Fz3y7-22mt}b$Cjn#
zyA_Z&%8XI~z@Lk5HajQtd=8<{d-<lfNKf0`Z0M*W%dj4vFR8Ft3oR7Ny{Sp-Mg-S2
zC=2K<B+|<<6r6wntF%x`m`FW}N4UPzfC2VS?wL|_PKRp^wu$mugk2E8bKO`L&;zMC
zS`@wN^y<PhyoN4lm|h!bPj_G-+ggPz0<>;j@?JEyghjOCq}wgZpQHV;xv|_%dzjFj
zWe*S`meyh~MoNWPZGiLFepxO|ST?P2IR>3MNaKIN!jh<vW9?x1H*N0XaKvmrie`8=
zJLOw_#rCbza9+IQod)Rq;0W+@26dM!Jc*V^g)1^PS@#1xN$~nZK(d$^V8|_**4{!W
zaJ>XCvYsa1FDUVCGgCrAv}ES^FwA*$+$aePkUjE@bfpYi){3F7rHl@Gu=`1tuQs&;
zG<@4Sn*D-JsDMk=dh2XZS9lGb3*y!;fJ-go5uk^N#(M*4F&VVfwTL|~u)LZ_T}>Ja
z1m+<CR*NNskr3PIjAP&JCV!Fjn46}VcTm8L7R*7mqG{J>gT2)cu7{fNvAa2f6}xFZ
zd_Vv<U>HbVd8&yTQH6dE&zJ+80R%B&v;h3W-n&`DMOc!g=?g2peYFYeD~O3}Y0Kj6
z5bA)W4aXpZNeGiKfNK3I%MybD#B);o0^!hc!@U=xoJzdJHM~^JN5ejo+f~w?vn>^%
zE`5l2C&#3aDX<<0e5v_CFQXJ8o6inlAI7dKC}%?GF|;;!M_H+B=dJ~PW<KQ2P<+0$
zqiP2OpvCYfVof_F>u%JE0TChue2@R0Ib1F$Hz%j(t4~E3;qvS8d8U_Mw<e%xZ1RXV
z4Vx~q_h~s3LKMJRR&rt9>KK8h!2X0>=MRqDQYsVH!H2}U%We}&I}N##S3L^aYXR=~
zR0-=5qRgphAz-H3<Sh4h5lttCZEgRXWmG+Ag|#JOq-eajV{rSvQXNw~kwjBFyf4xi
z`}(L$HFL8MKo{63kBRcXNcZF^-}~6P2<8?keP!|=lZg3vw#k}&+feZHFd*c8-Xygv
z8FuRAad1PeY~0T8#(sn+tKA28t@HCh;4q_r@e|Fx+At6Uf+iFL7E}pX^^#t`A>fb<
zK7F6(Zo175=P(KW?e&pcw2}^jT9JjJf|_Z!>2!dNx8pWR)LO!86F(sABqOW0TcB6p
zZqM+Gz)32AdIka75&mh$?{{bJ7q3IPW$Ccchq(6pO+QujTyGB1OHAz37$X<_Qvg{^
zxT@%D5^(`rX9qt-%Cysc_yPM}=aS&BQ5)f+3+sKuHmQTdX!d}4x%tQu-%;*9XsY6C
zy}QavUAoWhK>*rAMjxED{ZjzutqEF9GfGW}ELMfL)~>9zf=mJ6s!!~)KTc}{`n4TA
zmLoPSi$MLN_~rrQXmoK$^3j#YvUw5%>m=E@dukpvu`buhv<5e|!CCl}!B_cbryt%(
z?IiJGM@9c7bA^)E^zf!xRQy}!YDfs1b;mo)4R}=)j#2ze=1TivWX!iHDg@N77E6)2
z((DswnLJm9Q8thx(h#s~R7sFa(B&d9MdeBniG5}DFO{ox?FRO+7-3s6T7bk^tAccE
zOlJ!Uu7Z+q<3G1`LEr|1gaDPY990OBzO)4OX_%|~5kK_;?HZXOj{vAEh{GDO`p6-B
zZCI6?FPD6c@aUn)GpWD4W8@f0eTNKd@d*B82>@fLeTG4=eee(r^#GC1(;N^>OYh7s
zGPaoTOO*WsH6T7Tk?fm!l{RzzFqEbMELo(yKW4{VrvOw0vEIo1P{&asrym~%#VI0L
z$q?8h#k@!2@!kquEKw?jdL5JEU6bA~!?Pd=pKd(#7po*j5lKbhDE9U<T*?B51HV1>
zTSrMz^sd6cs?>!_U7%&&1W-j_Xd?hLofZyeNajrxkb1#<GR$B93<13Nj&s_MweV})
zqi2pK59#{8YV-giQZG}FsCarDv9tkrq-rxLdRM@Q05_W8?dKVmhZ$ujY|#KfG^&6-
zvmmr3^G-2>qI#9wizr#Qb{H<;0g6+(LHU0OCV(XQq6LN85G4yH)R#<(HVU(EK$mwf
z$UMqDO^QXk(WGqi3*KOyq+xy$>fS4m|J7HT_lcAC4Z52IPu)d|Tjel^bOV^c;RCw6
zp(UwXnoLkuM0r6#5)FVz<JDFg;O8azzBB}S^^*8iQbEz$WYJm~BOsI(y~wBnr_y#{
zJ~vg&BV3y5SH@mQCo){>omrawzARtdI$XTG$hf?uoHOEVDtEI-iU?&61OUzr(~`|;
zWeEVaN9CW_8OI1bM^R<h-&dHs(Pcr)eJ+)<saM{~teo^Hzc*ER-?+S@wx}h#V&0sF
zU``dXK<hMC{;sy7W3{*&TD`c+ati?JH)e}EplDyx`1w`8dSCrUJrYNRY9Bbqk{L_N
z*r0MqC^^^{Q@svlTUAGf(9|6J)qG!d*1=qxSBC7Cv+<At&>rA>HtMIDHBJZ`A^<>y
z)6neIGQsK)5_K#RY`2W-*t6<5+v~V13Vf!jd0_Pd67_;6^|<Xi;jDU|7hofDz4TuF
zr6*uyInAFR^~(M=4JaCw_6AK8v;~<qQ!Y{Wj0>V=(s<VxQa?=JN=P)AZan{jhe!s>
z)?NuZ0CB=;&9a&}-_x`V(=-BTiNo~P<R%Z3=3pR%ctEpH4M_yh?%Otp>?Mf9oB4<h
zd>Dv0pe4G!C3d=nnG-xK*BJ4lCE27k)xXt21=g|vCdIVo?zQH_+NN2+wZrtY0NN<7
zw(|D2%IP*qW=OMnTO!=L+N8b7zrCfMy@5y*Mrdo@Yww12+%RE_$fB7=b==A7=zq~B
zMr6I|-!TB|9FgdZ;es^4!IvdyjLcyqxz4%0&iR1`@gCY)0IUTATh3}*Xutk)`a1Uu
za9k)XORn*iN!PZ27vps6yY{XRQqx_Z_PRd9x(_9~znXL(`*(lO>i*H*{cF1W_g?oI
ztOqFBLv^kP63~;)2?q%L00Xorn@lMTpaw(--~bR)k(`vjL5wN+Z8M*k8mex-$nHy^
zykns}$oO9m3Q!(Qg^4L3q*YjC)mh~=IF)sH)%4I>2Ew{{5k0)PzKNo#m6o+5&dJ?`
z;B(%?-`qRE$~VL|@REH{nDeEGi{VjjS7JP)68vHl{S%Uch{>VJY2j&^k(oKsIeBq;
z1qtLr%0fs*C6urH|LKQ%6GIHeOK|~f8^fR)8u_!WOCwQ?4W=!I?yT-t9fQAj&_@<*
z?JN-C!P!X<iDkBeN_AwTLpEx3v;YUh)ek_$%LW0$`1srboV+kFjE6To0>H!<j-?lH
zuZ0E(z<oUd97r6n4$H}5z{=fv5x~c2&<z;WXA}Td@RG5E0xSl@qiO8D`rtt>E(4ZZ
z6$}E6Sf;^Rm_9^+>9#!p$jeIyW#rD+=i;Y>z_@vU+m-+bXEX<x+a8LL6CguCsg`<Q
zFAEWYX+L_aqU-(Yi?Y~q3A6Y|@JDEFT|;MP@V{VVqBu~>mV)nJu%-MB8=Ha#hoUy0
zx}Ja*P6T5tfismgz95S?S2}O4Vd+4D4S&(w)WhGxC(t$^^l!|(qvI)11t+COWMuze
zfCRaZLgjh-fgIbrUcA2+c$x<j8a~v>e$2Mszs$JstDMyChTxEb!kV@xGmu%x(m4@9
zd6P_TNV|l4Ac}f)Q(@x=jy$Vp9fVL}Dg<u)F_sIz?8(5bDymJz!fq}Y0bpjA)n?^p
zOC#a)ISaX2Xt<F=dEPl9+NyNih+NOeAVDfu%H?lv`ZCI~dnAm8o*f=9$ifZvD7SNP
zg7+E%Kx`b~JfREvK;311nHMjOJYSotZ)_@T3BP*xNKfED9t-@3$Kd}8bflaH*WZDz
zZ6K;=@^_SLT2W4FyJ8&)ln{3ex$J!D3gL3JcTBurJTaJ<LJ8}z)Ql^cIkCCq#Q!Fy
zAzgoa%%Qz&^)HV-_LzNg^ZsUE*B9A~SxOiV(<GvAC_E!YdU&{Q#8>RmqNhTJ?+`<=
zxzGp*#++@XREI~=f&|gufXIr`j9Lp{Ww?-uIe>{-n3XXxMmUA#BKcxcAX3f)iJ-2i
z%mJ{Zi=;5IDb|!;iGq@Zn(I6$E~NuQVC)XpYID1R47OZs3629oDMAn`OoYaC%k12}
zD+}Y@OBbF#n|L;(^0$lrRWwKx7qR_SG$=tuNmr13N<Mss7h0WStdSM?&`2>jimo-I
z@r1bR*Dif$fKPLVEB+<h(1)T#U~mfm<|Kz0;6HUGAJ7D%1<(PKDIb)<#+}8<o6jv!
zEFfGbE!V23d_zO~rVi#d276aef5h12pCth-C<g|B%f&PM28>~0aO@?a89fW2MkkW?
z(Imalan8$o*B&DN18eTT*Zl89pwur4tlTQPeCk*VrV==lzoDdn=oS4R5dT^fJ9joG
zADI_jf)=TflxdVxq^zr5S*=f7w;zieHa7X6sud)k0;|wLmG95u&b{8Ij?u=dCk?rq
z^$A%NJPGh4KDbR7#8-(rJ6FkVz}K3Ku5W`N#t0s(k2&vkhZ|yi(&K)sexi9Hta9T#
zO{a@t^;`PbE28kk^GVWd@k}gf3>os2_jqEgd1Pe-CnpPnmGf#W6LT#W2ZD>;R81U#
zP}I`tQ0mnZ(Ybx=#@%}w{|N1}fBHa1_3r{MpoycD0UcXsBUi6;?tXt&Y`+jn_WQ&p
zP@?!sM)v=Mf(-HfZ+&37utg<>62_BS7172f&2#0>KW!hiTN|c2X0KYHVjyDI>OuX!
zM5JLxgw=W|k~%#t4u;wlpr?Y<ImrrAf#eOeymGSDa>@Bh1;sjl8z=QwrEB;{-ckta
zZ{vh?jD#_GNrUrp#un<9c7`q<lmbVoZj_9rAng$qM=>!WzwqxAO)f6|XMp{8ze6Jb
z&Rfg&t|$L<-kKm$Y(y~uj6A0lnq@LcG*F(G;o%05bG>~A>fu?28Zr@a6Dkv080xvY
zoAzO=VHoFjXXAaGy5ITe*mwoga6n9wc5+rux+-3TP%K<}RoSGX@=`Uryt=-^<{v=z
z{~JgWB>|<4E>K99QoS8R!h@1hC}>d@PNhpbK>tmy!mz1n&SduTRyIvi)(JT;vw~#`
z1QeK0A!iZIKgP+gT`QSZ2H($6^E7Wmh~yePM*J)`l(*^-1O6v*#{M^c*Ze;N^uKEF
z|4NenPdWJCLHB?BAL8=g2I#+%G_Kyzqlc)*A|h1#cXp!N&tZ{5bs@^BNJmSFz$(wq
zrQpkvT=^q!z8c;a8NU&om=Ld&l#(2!qUHSWQu#0been;AnE#b>6!Jy?#UpqrLo*8V
zQm~^?3C7+<-;rSH8$^l9kfgupgVGhn=NC}W{9lbqzrQR(Rr^Ym{GZDX2#C@{iXFuz
zLj@K5P-ToPVPD{4B5*x-_XFcXI)EE9pWxsW6)MyI!eguCdvk{2@51j@Rp-C`kPt`I
zFpdq0*U+-e)N;+r%hky*EXYxF{W}h&DZZ52{<n4iFNuKnug^O8-xz1V{(%ZYMwLZQ
zomU+zsBK886;g)hmCbClter4+E|hX;?H}qC8sUB=CLn?IHyLDc^5k)&3it#mBz09t
zyj(=$nuJV~yb^^KI#kvECafVtJcX?&$U$oV5oe|8m;s5*xEa%itp$#OC2uPa2tV(6
zd6aLd89YOjB@<(Yp74n+bJ1FtqoLzK2ESSq#NIF!FNQi;pEMeXWxlg)e3{I`#}*HW
zh!hb;^0B6*>182v6a7V5vkTM3vN#MN)KGpHH8@I)mzSNLy9&+d)XmT&%En9J4l^_o
zWft!*)|4E|7#@A7IX)cTKQ%Hm`!|?;e*r)Z{70)uamrr|sm`IK{a1&t{a1%Cu76J9
zoTZw%owkiLrT6)pEGRKcY40fx@{Ee}iz8Bc`2SnJfW-b?KyBK)p8ltR7FwhfX|QI3
zemo^fV=#nE^wdfGz2iOh-7MnF7>tk<6L_?iArDrXYN5o-DV3@0FNq!A{xkqdYM~ms
z6c7!#!VvE*h(yxE5NYZOiAY;!8nt8}QbAZ?WmQ>Kct%}yLt||X{%?E#)y42o?6m>@
zb4Nqz2so9rxm7W||H{$7HZ^~d$G>}IN~Wrs+fmG?Y;Y*SK}lJhlN*IjOx%1-J^tcN
ziYsgaLLGwtYo`<OuU3Mx(}_>|yCtOL^p(u)=xoYPhy4HHPKWyJ?;TD4WMkM=phnF?
z>t&Pcj@>JPi1AM`7B70DOl2zPcQ1dNu~p?xmc*d~JvV)#7V{oCiUb>k8^$ErP;q8*
z(xh1jUd+YA#W`)E;&3dRIMAo41Xo$@faWT=T8^tJu%hDT<`ZY=w8(e8X+X^jv*i}j
zulE@ktgCWtDi|_+c-IQnYsJg!^~CA6^PC&CII&_Pccig7?d7Xg`}sagky?+B&z|c8
zVRV;((0D9W4&{vy6?9h(DpyM=1kirroFcd*iJ@2?Mqn#^xHZ<0mP-n>=suBxXB2{y
zawY+g(=CUs^c(z>LiED^oh#yinF0ebzH+;Hw9Z+PShb#JeP0a`$qqAFW<R0@LZ}t^
z&T9~sl>-4>#rT5Jl+^2cy@l&B?#U0~0@P!hF(XsdUHX~eNdP;}T9C@pUTi1SYK2N*
zJqvFv07;?~9Y}*5lz!Mue}hV|cKY5$2BYs*_?j~h0~o}anb>+6k~5LKTvdz$`7(C*
zaK~(ZJnWeFOKo;cKq)n^XV+aGF#hJz7~f48%5GE~t^9Baz`XuU8R~d51jL(FiHErS
z3=psz;i<JI%Yf5a#DwJlbt&lr0yyG|0b%r)2sN{53_S{$Nex!QV4<u*SinWBXDCP>
z8`=ZZp^YMpCIOH;BQjOz)o=;FE*+ialIXvEzeuFolqbeggKI0GZvlW&Uuq%-#QQQs
z4s%(MUJfe%2PlS0GUO=BPPp|n$^)jpzp|c8g=-Z6ynU5KE5dkx5}%{UR=}Bvm9k4o
zhMV9wtQZ=JNucvkx27Nk*p@pq2iXIa_pHbi(cREqChL?1W*`wzDFDBJnBJu+kN5Iw
zeAK@Olh>(5QhdQcaXbp=Cav=ogGi5Afi?<=3{;k5oe5a}_qmFhUd7&)jKyoi8riK_
zsTaPQRcxFeqKG+<gquqDeq5-*c52`{42b632v-rH6yjy5YRU~PDgYroyMz4*k9IdF
zX}L03*c&7}iWs!uQUGUI1aFQxE@lU7NTdl>xHRg@+Dx`|-EqF%nRF!5B6DwlU^2;B
zJg0AD0GC6UR-s>^o>S?gH^tri+zkH=-z_Y~jv>#@3Io2wHl**KC`=r{881}e`izUU
zBogV^7kevWf}B6}MwhNKT+fNG#Ko0LRra*t$US;waj+q%pCu4AO6=V}w{hz?XyJyc
zndD_9(gyQk1mQJefI(Iu{Zv`509bpO*{MeQ%NiD^eQbO3(>W4GU-;>j(uHBIlvma*
z^u+bwCFgx_tt!V~3)8x|%>ebVz>HCgin+<NI#H2FpU}b%F)%gOw<C&@bQZ)!7A2xL
zG{`~v0<4tk=NUz0r-eN5uD0)$F;p6Mc#D>ghj4mmF;%UiR3j*@@jmoJ*0-^RPFL)Q
z?njKA+c#PCP7f#b1@0cNNCGtb;<yjBPiV%RhQXBUBSVeRpanf@7E{WQ%c-V&vB+wc
zBwBAPxx%$a`j^UZ2ONb=EMr}Ac66BUf#1u{3xx&&;3#0~LDI5?iQ5A;(wA0MItJG+
zBB$0mVzYE;dybTZ3tflrUwyD8_7Fx&-hg|mr6?>)rJOHI*@&ZMasmK=Ke3}K)_7vy
zX*a*dSN8hNUWQL4;_jy0;}CZP=4YlKF7#$kg4M5RN{1l;@1f^dQ_Yi(O7;SHEi=cO
zRkO)WXNwnXPs^C?@sIj5hqK2)g3Q0zC&#76(H2^3y?<I^a#z~?bCtGkGz#l|5`Pj3
zm}CK(nuFj`05I3e^7`d>1JL4H-b#He;e;Y>i^ItJO|L^y1R`|~5zKf9KvmNa?Fj`k
zEF47O6DmX6$6Z$(!-b`+K!}Tsdf>j!ZE0Cc5{06GY#hMsGysSNPXv6FA1QIfV+(Oh
zrFVHqGL%!4bV^<+5h>Jism8M_LA^ya^umaNA9JCwKnGC^OpFLoL~Ay@EKr;T9sEIL
zY|N=yPa&$Up7c{ME3i#Dw1T+?u4*x$z#OdrY6W<<K%TG?XXqw#@i@PiF-_<h77hr~
z3cYns4FH960-&bw62JmA7%B!F$`Lp896-v*&Am7KjJCSFfOPbv0s;*~dooaIl0tZh
z*86AHU0P2ssv3-1^n>nRPn&ItfJzMM{B_9Rn$PaMo^9^1<zz`Nhi`nY<M&XmH32|Z
zW<keIlpN@83dYjmeFx2-3Q;)W3ka(S6{rloCANYSfD-*!P6bx=^OE|))B*hf3~{k=
z;-<-6sTL*8w0NE;Hw=g$6-=F0MekmLW-1N)25pKUm<6<qre0{w>#c2a+0l(ikA~)V
zq-otxrD7pcFfo_iar{28qCFbkp!sU=fADqR;cUkL|LBc`h?Pj}6%i!%ELv0$V#nTl
zuNFn^+CuGByY{S2i)!szYPLFPQChUMwW!wd`Fwxh>pJIL=Q{c0{wx37*LDB#e82Ad
z^?bNKqd7Gqp^#f6y$t#Fd|Q`aOk_mc_PF5@&1qOm_&4p(7dLob{+elt{Qbw~^5}Oz
z37s$R5bS@ZV*foW3X&X=XaPq_uWcL>atbO+5G6T?21G$ZO+`XOLj$B{0MWAmnK&p}
zxj|5NC>;qLN&<n<von!!v5>&wFlH8J4i0uoc3v<el7@w!mQ9GBQ=FZf2f`&ug%F_P
z!GHxMu1{ukLUN2^Vw^m@P#zfu)UE%Snlg)vu}O-+uV<&yio6^og4ds;2$IN)k|;=!
z@S=DH(EMn$fRM1Dn7F98gqW1Hq^#TxIeFPziZ|f`%8Y_)%p#gBqS_3SIK~^g*Fl9v
zT=zPju}T_p+^}G|Wy&dU!=>QxKl50GlCuOBeOp=SKN&_%M-;CwszLal1IPcy7%LtX
zFO<3;A3l&@I~1)OsUkz7ag#(#fy7Xi#0*bjrA?xYy>6Q3aW)|FFeUM^Ah~Bl5@b&j
z=1dac%@ll>G0YF9ic?X?<CL}Z@R}Mrx?1`K-T#S31VeoTBZ8^9vAKn*mG$*x(E)Gk
zV&`C^W$&u<-yy^QD=gVN+B!KqxLr3>db)bw@x1Hj<M6-n$=Cl*K#*Tha6m{{P*`LL
zMn4K;5G!PoENq@8YMCW&ohNQvDCtll<y@)gRio@vt8u;Q64;<0+-Mm3<T`pqMu+?S
zcOduwk-j`h9{Q1_gww?YG9&~;l0qSwK_odLBpH#kMUf;~QS_zJB*h6dr9^OLJV_0a
zq#~KBF@>Zvo1{CBq_2=9DmHSclw_ogbhMIgv>HBE%R1h`H{K{T-XuQJBpH_&6HknN
zm`Y5`e0Y64&B{s7&dbOv$Sy2-R8*Q@T3%FESyEY3R#RVD*I3=yQrFnp*w)$H`K<L>
zZ%0pGS99M;>&wv>gT0-DWBrp;gCj5IrmN>>8s}%*=I6Q=7W)SW2gjy{hNq_{XGSMx
zr)TD;78ZvV-o9R3T-@H?K0G`;KR>^Iy#N1y*KCv`hy&kRmWW2v2wG3H^5mk)esg%>
z+bTvMvPgNZOte*wr?YXZ7rR48A7?+n#|S4$x@g34rvK0!Nt~Q2;=+Yy5El{L3W~7|
zOOr-*^Og8)L7S=0`o&s8rB;bnSHqh|y{-9=Q(Z!eDaM6=qeDG&61g3zxhAu>^<lB-
z1JqRZ+!|Eb82*Vf7vwnBeeb)VcNQ8q*5&h=P9dwV?aNE9e1%f)U<un;e}TrT{PRQC
zkvlSEHD1gRyMD4QojWUu*Mzl)HU+q<j&-*h?YjJu_QumO^bGva!kN8seA#`RixUVE
zpt@dbHK?~n&b!iM8TfuI%FS^LqG*s;zkT}p&X2bj8|`LazWDR|pw{zrH`m@N;XUIm
z5#W?+vTGy+P>g<%vXH_7C`V{vqVgrRT*!b>ywpsmDFHS^%%Vik{D{tsp}7g-!J;x2
zrUPkd&DWwIVm2xs@~Z?eBcgosL8(#3{5<hY3{@aZ2QX<v<u-+Uk(MAEaSeyKafZOM
zcutfjk{LKSBa)<HAnfHiWtlq5(U@^Q$JR3__~oI5bGXev<~9GBrT_q@`e2X}Q>zo_
ziUjJq=cB8Njjb@tUFR<0ME-{Dij*6>+m#vW;DzuLzpX<5t&$<ipi!zg6-=Ej%ZPGx
zN)`lMbs(RCjv`t9qFk1L#WxqXZehGzUoW^x8Sga&6s(^~X&@kLSm1BzDcW{D+gn^w
zS{>vOY@V&mtGlEP4PdxXYnP+?Pvt^?L4KUGib=E4z-fbfH#Wc%eor<Usbzz@B$5@*
zyhF`F;s01`DK&}>wVrXces8V<2|PI%qLKY^Fq~{?xnstaK~RbR&7d>%B8C>uMTN>N
zyBnih*SMU-rQ@fC<$PAeTzheND1xn1W^Yy=pwc#YE-@=ifE89uqp+evC!cG8oUaHo
z6mQ;VE>d@`OuxD%yV&tsmV5J9`F5Gg)=P9_-+YhoqiM;((!3Y^@0onUTU5G|pAgJB
znbpV`0*y}mCV1(uuDhFVX1|MrQ6&}so`fYeLBPvDMKV@Acc{hi4yT-Puw}#iCdA*+
zfn9=dOv%|4<k6jrox0lQi(P7M>v~Fm0y<3UFRAvr&(8}#Evbl~qFS9%(y>}nm32!C
zhvc|&qH-{TGjRJpU7Ul|Yx<D@Y|_N;Aa}Jj{O>H>)DFq$P%sTC)Mi3SwQI@_zf@UX
zq%l@S4Bvi$+y0ok@taF$Kl~T@`X?0z32{=9S@Ie7kAn(~ed~;O5jIE=cV}V@1p__K
z`<AV?_p<>7X<lFi%O?zB5wI=IOCLO-x`scXd>@VUJtLjl3w^}X@1hxJe2a)dSJiW>
zsKuf+KapO+%rnqAF)DQ+wP1hQVf5J@gpN2tN?lGqy`V+EEB2xJ(H1F+upe9c=aI5{
z8(%SPTj&$*O19;Ru^YXIskDBa5toaAwX<?6S9UxkAHuW(r3be00>MKS`R2MPP#GFW
z1!!j*_f-R1pOEA!m?YmuSENYCn!*U>C9U{!%Z7^_K8YRD+rlm3oYBsoDIAl%qxT{x
zl0GYU8Y6I<z6c5in23hMtAx6CM9&W+v`~oVj-P+V%vlvSN~$@%b%s1)L=VZFr2IG+
zN#7cZKr)7u18*EDK{uQzW3!1j(>CC_gQ`d=0GO~ney@h80#0#H9%ihvsR5%TsXeZe
zlP;BAlh>EI_ui-+h#wU(55}7Rho{MR3^@ZhO93<|ycDHDDBlgt$ab{7qci;OLd8+u
zBcd|NxLw2o7l+x@LSFAlwRn6w$9GtHy+j-pr57{dtZQ*24(E2&v!!K7xW1ze-Q+Wy
zR7a|&f0K8>grQ91zy8M2s5j)=e^~|9<EI{LGHQH5HV9=u8xZWd>oKFUh`CgbU&}PK
zqBa(?TJ43jvBjzO)i+Q!7n&RxfEp-xum-6^Paj{*)Y$r$GRM1^M+3TwW~xAXAzua`
zIDlHOI|5Wrhg&knT5A>KK~xj44x=Tou8N3JJZK0oy#u$O0X0!x_<{$o&^eXCGkEXE
z%s?89G)REf3Hxg<C7<ng_k?b<|D%VQ1wk$nF7b|fMWjGK3t5N-9E6brXTdX6;HyYn
z)R{ea_+U14PAj_aR}|O~p$R`oZ9&`e+tOz&_f-XRV7@NDiJg#rsd6eBocQKNPe~w8
z`xA36<7>V?b=!}c3m;31wC|LEi#UDJ5^?<f-RaZ&53HV3eQdSL_(>NRMZP|~@0x2v
zpU<K--!$P&y@Aaw+lk~Vvud|22GPk@*}U;#R*R!CQyOT^84b05tF$pVO!~f8jUpa_
zU!vJlGQV36+p+D3ugpSGLBE`v^T&0*N*2jGyzYXZA#XV;TGC!kjY3C%I5TUdy_cVU
z$QxfDzVt}e=`^aq`Mv$$N|3R&1yAyJha-vKfKmn$lyOH~_^|fdaCv>byps5(_)oT3
zSLY_-Mrm~h+F~5{fl-4Nwp?SRr3D!8<6kPZKe7ABa7FCxJuab-d*0t-Iztd#adYl|
zPrk$$TSUyX9$eSDJ0t%HXtPS9Uk6#~{yivkdaBiq4W@7-3cn{Gr_jWRr}7iMC3$SV
zqWxy4_ky1PSv?rjDtv}iye+i3EdD)6gV8T8@{g5yd){iIdYfB}?>_vu5uj$y3KE}2
zqw8)xF$ileUY#rq;N$656nX}!=E+}dB<oaH<MD^PEAYauxQRmr%#+h5VwqF6R3C$P
z_8-8iaw)O#_U^XFyaO3Nq_r6><Cq_?7}2|yDnZk$mwB$-KPZDUj{6K(QVcnuMIAJ~
zO@ubcom-s9nl<<C+ga|PY|XvUd_;sX+y2x4sMP6yRKDs;G_{5F>Wa~2k{hfIt{v__
z7@t7ydSqaxFZ}8to-tR~t6zR*JPET*R1E!MD040<$%jLXK*=+4fh-=b&jGlhPtXPW
zs$;gKzHxN_i!s#$y9l)@;-8n0g8KXG;Vqz#B(s0YjhIr>r7o0{bs;goC&wkG|729M
z=Ux5fiC<n<Tob97;|a0ZAGJ^mx;hR{J;5$gS=wLqQe}}D+uQ8@m!*De-Mf5iW8t*&
zsEIu+eZ8szi~*J%+JmVDf;;BoooLG+FuZ+0@ie61mmV;h>A=l2o5>xuLAe^kvvVw`
zp-#qNes?GK0X3FP<0~m(LV?2EhjbewClE$${2;x<+oGLS&|HGzP=_h{E*Hd`i#NPr
zOQddI6k%p`tl^BwP_1;~v5kvjnHNPqBGVr6en$x%spkGXZoq|RyY|uyGMKka)$BK2
z7<s{Q<B|3(3663JwO=CF{K5X>KxtB(E`)L^TVwfIxN&>}W{wadX<S<dGH6W<tK%Mk
zg7|V=AS@!)_F!XQfRTM*Fh9bQfyj6Tx>@vyEMy`v0uKSl1Ij2PftmI?zTmPo02TqP
zi3%s<aqF8;dd!ksxh<QGPXfCqzgi-KbCn)D5{Y$0vU!zY<)pA~;#sT)IG!>X#Zso6
z7!=Ie#pD0MF~!(7ahWWoO(unT5a4r`Am|V~ct5frNUky?cmOA$JsxnOZp{z0?!q!;
zxr58fKxHJLd>{iD2!1j8zzLf87DrZNPt^4lU^juZ=0oq8>uHn`in8KU&IH~L0*pw&
zbr1{ZvkVApCPNaJD^ZH67L*S%>!=j`we5|9sK5=u^<7X09xq2!@{m*(RRZVS*e&{P
z?OP+El)+Fwc{fLCaMjg2B{2*{h!xOPE^n4+_4_2dkDNzF{#G}m4H}aTUC2s0P||?=
za_2)ArQ9wKGlz`=RYrB9fmxOociU^CXa;%Msk{fwB;>kN!3Jb76`o{Y_m5+7{^orA
zD%V?wJ{4<}VQZ9mYKn3WYWNdM?X%bt20$AH_>+tafG3A_9T3=KSBi|ZLf>+5i-Uy}
z<QEhao<kYyH8h}rm+o*Q3n&7XcDqJgqcy;{N33QN(wM|aV^FwFTG)2(RBpkAxL3qV
zD!Bv@a$lnS5ClsZhGL@JS~Q_(-{PX4;_3IruR~xZ=fw+D3Cz4vW-|X#sXz3TxX4L(
zj+Lyv4}x7GLBYzv5OMHdc<F9W>5uoNU!f&?tdA$(03s0}a3W<B=J7?(<IDGtfuxWB
zv6hkDECX1UQCQw22`vNnmeG7Dqq`{6%q)Z4EQec`GliCu3zoC=mUDb4=ej6|)R!Y}
zR-h~^_(Lls_$qK!MY33UUQ&hV6iVc<g42Nkjjf~{tN`%9q}#NT87jLaDm6%9wW?Kz
zgOxIEIyXaM>Yh;D1Io&zVzDD+qb6_(MM*sl(Vc>t?p6_!#r4^$Ik9BC^5KyN@Dv6h
zc|7d4pFUKh22NTPccVI)AnX6(vEa?{%|ZB=%<3|pyh=a0`<a$uq^u8kn5)_#aplFg
zuBMpE+gMTo(5yq<Cqb;V&)ABVS<?<#(**M-lIlW?>aGQf#zVn~DO4}iNj;Ojv%G<>
zt(KXTV+hMZx5HH{2nk<f`DD<@oz>8%mDSn+pM`QR@<87BalUWkTs`DGf3IZmfvf!{
z2PKSYwimus2<?9Zz2X5y%r!;W>&u-=Mnj4@nV+ygo0pg!Q?r^>9D+;1qOO@7Tpeu9
zd0di<PZ$kwrd`T=A0W>{MLvC?j5LH?CD(q^yen|SRLw|_;D9d8Ma8^BAyuS(>NQ#0
zc{q=Fs5elFrbrbhD5OY9L%CLhOkB>9SFVDW(F=leL=`Q!tEiX)Do||fNc}6ryM|e9
zCjNXDDq3{Z{LP_oNpq+xlFcKga_q3fG!UHH27102!70(nZP2MJArLr}9_k-Fa3m1D
z@F=bVYW$tcJqF|1-nw51ckto{ziMVb<aX1B^vDWrHb6WYp?+3SZ)!})M_BArh?Wo}
za*dLMp<4y0XYSV`SKcxgXKr25YJJ_HS5fDNfjsbPr3}M-a}clN5gDkEdK)7GC>L%t
zfqaw{nlu#&qv)k*6XJeY-0#?Hq$xaBk>t=R{O?^X&7rWtac@>tGx)HlCrfvw9TL*m
zqx`3_g{e~|QxxRXXPRpxX;cG_>-)(gcH$^@CMkK@9)HCk4%`%<zIuqRJ$MrK5PC<u
zbBSN`o>1Y=E7q6K(OY4#H{+1k+7K?a{x>%niD9thSMrXM{nQ5it0(qk(~n)<C0Js~
z*kXNxj3mOznM2~Bmy$PyRi%leKHY4NLIpDNPEZzaJ1cT&$=E2vY)cKP=eKr9g{WlM
z2Zwwe1{Z|VSW{$PFAh@7%QW8@#KiisNOYnhgQboRfycvMm3=|O1GLr>N)36OMA_#%
z1L<EX9~?)c#O30L0p<0>$;W*_2k>3oNc5IDZbb(jHTo?UdFP&-U&n}vj-1wyha9yU
z`LSX}i}Kd_9_cJacpapHb)}cTY)Ho#Ma@{4u-qMQxzNfnt}CO7^m`JY8wMDDiD<7t
zzG*`r*jrX*Ib);7QfOkeRv?eO9gJ3dv%=xSA^ghIlFNh5*)$VuSh6qAA(qp_u2iyV
z#S%W16R3@mpnH}&b47oi$9VF-${IEhLFKg;_jgP~ScW_uR9{hqx7tB(-OID_k+<m`
zzNKfZN`q2hhAS(_VWzGdUswvXhi?BHHl`p|?!kxAM!#NHMOG;*HT_|Z!3WZ_gzokw
zk+GPo#(@7`Dx{m=-u>dVGmZbis|-*V|B|A-H9hTOg8g)<ob%BU22g;dVyWS;^ZjS~
zDOHeaD*SOOf@(++H6F3eLCLBa{Y`UOX`DP9cuN|$d1b<Jz3RUCgI8oso8_mnphPnk
zfvX|dWVkSQtItouay6GkxOAPk0a?5#gw(3)l(yr;4&04(+*1MT(ch*t^Gm<}Eb){;
zqc93un-T)Lw{F6`2_g%{steKNZw+TuWo#P5%6wuRylTR30kJb3*|`2u%IAw2U%l?m
z8YzCcDZq2C=Pv^BR(xw2r;a&Ts8yDUR(!W)1$B9`q~nOir%Gu>ynO=)#E2+78&nZR
z)l3Ar)9R|}`9LCnsxbL2&y!(~V?Urd<qqP>)I4|wi$fIu&Ja*I;}HYN<7lfFI&Oe@
z-h~hJKTG$1%Lc`16t!uHu^3#$J(%y*T{_WCyRw4zqcn%5wf@lXjc;m}scCL1LTYk6
z<k&vh{OG>uOPXufe&Gz^!a;tCyf{!)r<T@SR?*4t)GW!-0T1R*3h{qb)D>oyTh7r<
z99a_|WB=5ov2hZX<f^wlqVOFB{&}Kji`GBceE3e$;7^sv&bfXhKLH>k(`C5MIGA>8
z_t7=E&A<h!69*q{=AT~b#6UpiDS+hGb>ZKXG+Try*VQjM>ju7hxq}=0>l;j@hJ9N|
zE`s3~%4gn*+{}ARI(wT`T?E=wLL-Czu`w}l9c!nzxf`IywWp`HxFw}TFc9^@`1iV3
zh#91E`tQjG0uW1_lc^GNtNBAfgGrjJ%$1I;FGyQ(g6q1NdF*D@x>?OOdQYEZ)IW9)
z5HH&An6}B>wzgutsiF7vP3KODZL+J<26qg2b_Vi0Z2Li^MtvV-0Lm323JK%daQhcu
zDg`bh=wYHLDLea9e(P1}>7soNSOdX--IKD}MVj|?=9|kHEu^WV@3xE@wF053TYM5L
zPa_)5!rwRwt{9t~r|BM;NUNCOtBox>HLXwEzQ5jcc=IepPV`ujnAv0MlN(UQZe}EH
zMxyU<MrRgsx@VqivqL9KDdvcglS<DuCvP)%1sbP3cjdsw=9=8y$A@Q5TO=MiJs<sf
ziL|WBb<8i8U%vyrt)gU1Qe1sSVE(Lh2&>@!S>c8K!>v6O`y^ieiHu&}8=5G-ceS~P
zwDT|5m#x|ug)NjI--DV}_74UB3O0@UBd_>5>6N%Y(>SQds&f~JJa{><&Ql50mNqw1
zsV0!8oiuyAi)MV~>vfl9$bjQ^&?6UF{|B+uwcOrzcSY>>?Y5Ye=yA&2wG0miD}^9t
zcDg=Sk|dxTrRvb$#UfVdcfa>XiKk31>3I_j=dFx}{$I7aV!ES!!TZL?M4Z)AnV@>V
z-d=xj9(`xZ?qkM~BUu?6?Ay4kB}cIY7~>5HtEnx!>8Hpq4tu!@S3tWH8QYO7MZO_B
zZg$|S+jj6@Hd6_X6nR5bSL$TYF@HKH^Urp=bP0deV;x?n+l`BXf8<_H)O=Wch~xVu
z_TjFb(Az)9c1!Gjzi+&KiJ*sYDG<r{=IoJ%6pW%Y3pB}z2?mH8+1sSXQc75+&;zF_
zM3PbXjWkp}!JxyaworyTXUM)R2CPZSz*6^qNUfIXM!ER{LNJr-NLqD$kvzK;oX90X
ztYGDe=DeLCEtsJuC66l6QrH<+&2bgQ%^RZ=-A!WgLTuI_PB0(JaT*LG1q64g8nO}<
z8T^*8W*2p}Wp(mfV^gIXb*x&K_`w*jCgX<3*rrp5g1cgs``Zx#msGHiD2Iz|lXJAs
z>C2K8;m)Cltg?nrue=$hKA<ZC_L*>er*<=9PHe^JR(n6D9!b%2h(a8E>2I5>_G?QX
zS<WOXqHH;;B#wJ2a6Md;0#A@eA@O3ucMLLy8lC@qLSah80;3gdHvX5ThTII<mN-xb
z>_`v=esHKZ@ysF%@fC-r?X3lBCn^rAbh2^Rl%Bf$YjPX|=_@IE5(8&m;|p_8yrJZZ
z4%GOURKo}iXlPKTgs0ljn5sBiABJcIyc*5CWXq~zYP>lr^sh9$ZDP&$ht4>oVwAxc
z+`V%?cH$R{ufP&T@0<#2zg9!eA3+7FnaimkzIv4G98+VBd&dJ}yo&DXO3~B2gJ_U|
zbU??In(3|&A$nlrp(MPkI9s(7o|J@*U+E)^DF+zV(XS~C1Uyw%$Be>LJdY;o#@~Uz
zOTOe_1R2g~Vf`zc)Ns}4))BI$SjFwdCvQF<6u+)jHs#!zjR(AVWv+NGoMbM;{eq!M
z&7ExY3A_wa{W??K=cml=*oNc|yoMlOM(Rx)Jj4N5@k`H~+46oBoWaM{AXeE3Z9<a$
zQ{PD1L}bz~mc-SR$1Rq+3jQwvscAja-bJ*!3$%P!mVmQ((ic&L8O6t#Wwo`&JxEn~
zpUL%0zhA;BFT}ObtGQtS0JA>$kVzCVR-w``*aTHPr29Ed9jod9hcaJO<{0f6ZPH&c
z-7S&nc{6>wvr|V~Xo<+p_yupOF4AN8o|+?EuUV-!$#DA_qu}$|rt-W(PkQ%z+Fk@L
z2V>V{MM$rEC8H$YFgi%a-FGM*VYVch`4nPZZQJD|A6;cbtadFrFRFSRmNi$#eZZoh
z^JQA7I_D!pp2DXr;nNS&gNb((r0=udsR6{3U18xy2gHgbejTi2#(sF=vOj(Ekagf&
ziIxVnrmPPw%h8dHn_nDWRsHtw%n(buw@Uf<<@sAF`dt52GyQ%+C3PNBMh1L2GR>|&
zRcf_y5_o1^>f;P{51V`!kfRV1k{<HfXoAE`Dr=!cPZYG6|Mr4c>7RI-Z@22&l?vKi
zG_|cUd@d>FZXIu%FAySfSY-EiPlM^mZ~7itIrRj5F#GFLvtJsFh>7fyh~^-@`_?0Y
z>X2Njh|eHN+Zk!;o7X|k3J|6>B+fPiI!n8~9Y?+(nPWRZMkgLo9)*vg4;*FaFUw=A
z&lokw&Y;Hm2OxYIFT*qpcxntx34q~0YgOFfFZV+!{h;TeZP(cCn-}zh6WM<9arYDa
zl%p3NHK()52sHELxx$)jy=R)g7`5fW^TjIpPcxL~=mN~(HU&#=&HwdwCo1cdc1Cw-
z69v>aQGyNvpge3d_JQ0eQ7;-bwdBwHN{Z>LqrA4u1;AK4)S#gCN|q_UiiB~Y5iF%)
zk?WkbnN!jB>YPQ6TZwBlceaWzpr*S*2{l9?YFLY^C30L@w4$~JljbZbZmq^0S$u{Q
zZ#Ql{Dhoe&@Q+F$GW30+``1(jD(WdYyNW3-KQTG<%7o&oCNy{|Ta2kG$-}c7dJG>G
ziwfQ5DH<-gp{HLthjoPcgc=o3{YWAh6N*nl*nY(6AsLcU;S`(9|5&TwcZXv!N&=9l
zrw`pS%iT2dK8V$pid4913+^!WLX^``4W@^~pM$d)&lH+NTvk~ve^(8~XDByub?-iD
z7o5i%n205ISga*qKojgiVpVE0M)8x}cVp;FCM>j70X@*GayCJrYaci(L)^Sz^0gPl
zh&$+?YxdZ6XGApn=(De}RSA7QQu?~W7kT&IH(daLwGfBO@NA)YYa=BTiS5m>ngQ1e
zzOMJq#u+pl<_3bM5j#~(-si)tIOS2Q84_IV38j35;7RRSj8`Sc(QMbjNKBJrZ6Q~C
z=HyT<>qN0TkX+h2wrZf&?f8dZQMu*$uYEhJTpIs+Sa*YOj?Tx`ZxPkntH~^8h<`x(
z2^L_(pUXFb6jY{F%BMnb1z*QzHErE{7Y>lbGgpPw3alYA5rZ1C)^S(i5MPMvQws_x
zlZ)ptyq;$lBcB#(4r1U?Ac9=p(4I;ShW=t2pK@iQU0X2(t!cga`D-4Z`WRUAvi-~1
zh1`V79a@He?`S+tXC!J#;$bleppkum!dt$Mf_d*kuB+fzmsa;QYQr~c#NSU6?ra)8
zrP)NA0f8fxG+e~{9Bdz1#&6nAXc~VUXZtKS9>OY}OS>AU{Hk$O%rss8vzeCBm;}fG
z5&yXX`K1&f1TkPa)jV2oGKv~9jLMIRl4cj+<+of&`BXJgsI$wq6F;XfAMp4vDh5Gt
zePP(toT)3J#`HX&UOdReSN2}A`E2joLO(yGy$);UnrU(i0}h!s5Qm8(W6T0f*VL}=
z0AKD)fr5TPG<ZA>i$cq$B7{~eW_E<#*x^^5baV~*{<**Y{aIy~_e(x6(&xJWNUg?a
z8KcFM$WIuA-&ah2USDFp9Gbd8Z6MQFx#s!T&{#RgBgjZ*2WBH?sVK}{`pRhUQ_RNm
zrQ@b4%~Tb#4bloJ-8u1ho<9zL&@ipH^vE)*zqog}Nl18bYcfQH!K1*+<%_X988@EC
zasl4vW4JGVtQH>BnHXG4nD%)GU*A%C=`r|(!_yEyM``?|3hsK6ZkIuUmX?jpbYygf
zoWz%loADjQE;qPdM)E7?jtMw0N~!8Owu_CHBxAc361-2&sQ>OFv#b?9)28!#w(I%d
ztFGTf2LA5*^Wn8|+>1}C6R@hlKos-)E8{Mz5Br%p1N=e;YG2J*%S}z=z*VgoXk<K@
z!I=Yn<k_$$$hw+CP~~&iqX^xA=}XrP6~*q`uw=Y=_^#w2-11?}uEAkq|KUq}#BG6-
zYW;}sl;c!u0zkWwpEhl+5bhz#cNw=XvSlB;_vZ%p_d}JaF-o7m$P%PL=TZeV#Fsmb
zFIxnY)ChUm=z&jGM6~a%?!{)}cfqO*vMf-Xhmj%y@d!MU0iux)G{g##_eUhbVQ>f#
zu5h+Uv-j~9G@ze52Tg>5C{apZ7E?ItlV9D0rLbW)VxKo`E4L&)LiM$X9ri#MsOzXw
z5z>{2ItT$zY8aeO=KRcWQSs{WL2GB2s+@5}*DKbEiUP!hbb-T*21GRPT947gVUnHU
zh$AX&xai|KRizVE$n)VWf|@#DL|uVQA&yRIlk;6`nG&c56*@v@DXu6?1xKqjA(UrG
zfI3TRmCDh4acVOlT-MsKCIDh&P1NbD*B_yOJwPt-4kus_=a0(HI*T?@6Sn6_(wfGY
zZPM$FFdC)^UH=(tKm4y7_b&=Z!b3W2Ip%%T<X}v6SEFWF!wHn7+;PU;Q_!f)S1rM6
z1bJ)R57!7z(ICM@I~B-5Uvb{A(g-z-%gokzAWRkE-5Hsp;iCeKmBxEsYQ$UP6W|j2
za`;%`@q}W$JWAq<yd0l0jZa;fNbRKhKYTPkJxsbR=mehu*UZ|)KTw;@;FxrE)+{L2
zEPSF_)Tg;i&;Sf-mj2Lud^t&XOpeWGQy{4EXT|2LjPpaZDx|f_Xxgedv@HCmYM*E|
z_Gvwtp30w}WLVT{xzuW<(Qf0=ZWq@6k4k;*dG<|odTT!m*X~Zy?kU#peWLw*X`<^#
z{qz5aN<CdPtv&RASE&Iy!{Ps{QupahPwRAb;9rcSn$ti8>xha(%^C0UIXH3Nd-S&X
z%x#43l``pD@0owZm|1Be?>llvp_?HJy7qoEnZ%f@+aT!=Pp0_KV&g7bKThlJ;`Nl~
zX4Z3x-kr?+QzpgL>3v^G7j1jJ`()<d+RT!$?g5Q{NQzG9!NW&J6-MSXJHb7?6S3x6
zg7AS@wF&ZGc{1g-=LoVm199jsarRuNmLCsDGA8~C*C*2j0CWleE^$DUIk7hV%bZyX
zJ{*<FoPyxo?ToR^1O1CQn!lU+u^F)xI6|Z5?6!Nt@lvufC@!0zT7Zpa^fCA+uK$mO
z`kK$it+n2lo<Gfb1l1)ZdFP918x&t6<T?#F-pqgQYe9|DvE>%Am@E{m(_pvBg?^Iv
zC`Vski&zMx>jrQ}eF@IRdnkQ+<+&_zg)7?J0z)+Dbri!sL;P))c){n&Hw;t6sAAS(
zs8UG0LN`dl182~^Xkb2cF(|z9?vZ?xk@&nG&R!|0RbQDT?%_n9<|@6S4HY(YiSehg
z;pUPaE#Q=dTE5x{r9FxT0u+9hM4T_Wf|eAi-YDa9K2!+F`cTNdp&>D<uu+t`J4|28
zf>g?Q-RZSBGw|lJcuA|oSQ)gydUM1sLW{SWPC8;<oEC0KW12R}E3+!joXZ+136||-
zb-K2!70m*0x1<z-NT5UmO9`J9by0AtAqITS#<h`Lzk>npwNW*!RMqq>XCB1nPP{eD
zSpGFcrCX)IMh1vj1sMbjcM{F7n&jR+!kar&nHxsIB43!7{wceky8yp<Td?z{kd)dH
zIFeC~OppQdaK7@0rwb}!&1o`F`zw~2THx!W+M!*Mt7}$9Ygv@6!%(InjEkP-A=OH1
z{5na^FgJtcotdyt#)wZsJwPzQ9OXfCdV(aqGHWXy-?U1X;uDk6{odFZ^khpk!t=e<
z2cluO(qp0(!Pu(pmQ1Nc`Z9@Cb1I#2l!-X&lLkd3XX*!L31MD|mCS0o>eGx=`<z<E
zq5vc*ia3g0S8be|fxE}_klhqOC)dt&)}KZV>avS3g89X>9_fClcKPsie&(x3%xuJ}
z=8AP!jP<)WSxXVt(fH^qV!I7}VckmgiW26->4%I5e~DAME37u$jqa<d+a{wpvDejU
zB|oc5n+oPdY|4My?!UpjJ|XFl%l@j|Up8ctD-O*qlY>Kg``Ce}MBVe;3gN-n@Atr+
zN4+KQm0NTHdm(HybD!lb(9FH<JI=<dntjg<*PhvcjOzs5;6k8J1i&5397)=h*y^jT
zC#iTqgjdc*?#Iyx=x-m2Gm{36<i|DWbr^rPLzdm!zIVB;*{uV&azJ7VQI8bz`TTjJ
zZ?|SJ!$nU<A(*P}aHv9#cxA3dQid{PQq(#N#k$3LeV!tjtcOGU-=bSt4r}e}MgwVl
z>PaIL7HZfHBk_u>TZfK6S{<neH=L=+Zu(Fdwf0KBelC^QfLJ5XHJ3d*TfhD)DVpUo
zHP3Ui6Q|u!THZwmuD5SE#!_%!9fQbQf8iX3o4=sw(!Q^XivcsTi#GQEIuriU53g9a
z9*}RWoAPJ0CPAPb2q0X!LFwi?Vw+w2a^AC=4l___aXPfyXi~RfWQ>n9yF<bLB-zHc
z-PROz+Z;;%HQhSF=B1<!#lNjo`y_c2z$Ki+tlhPI(ls{tYpYj=Q$nWm>vVgrua0?=
zS)&$$8)h~6TZXM8^n$=?KR05T3-cJ2l~S{@X&Hk@44Nh0=pDVnc2NW=kbq}iONxQJ
z_lpl%nbP%NIjBPkh)Hg7dU#UGTHFlM5pE?qHhF9HK2_Wjjts}L-Q)t7(Rzf~c4PbZ
zElPc7V0D|jCgwqtdrkMY7b`fQ$(<bv$WkZG&hyx01txsDtv0%|J+R$~CA@zj>uI^2
zpv2gNaIse0TFdZEEJeif6XV{d#JFA;X?Z;Q^)|KDE%>S0!&dhi^@loo<+^k(J*8g7
z$k{Gn3S|iOi{7+np|r0LT(9uaEal4R^>KLS&6fD$+;>ke?M=s<K?L-VyX8wjEHKsG
z)xgi&H5WBV;gL=zl*!-c8Ok6CxoP(lB#))KjsD4ENqnvJT{6i#THJf;(`Q$E?=u$f
z0SxS_|KR)cEt-2hPv*9Np7nk#vH0d<h&W%PS}9fTYu9z=gTE-flhh5?O@=GF!fQ!>
zd@cF9@%l6CE*x&WSMvVp4_n$j)0Xc+xmz!Nvesxi+mrAfAlA0MPniuLK2$eOHg1<b
zKT)Uq_uAx}sQx#gU<beO=NmkKY#};%a;B+Xy=lHwwX8>*UVTcR69<q<QB=S1Q~$(O
z4bIpN50XcGsYvxCu|p_>cjU&9+n9~iRq=A@XF4Nszvp$_F9&|CL>+!o7Bd7LW**oJ
zQU9F!LsZC@H<MIikn^vvKtdjieJMI*_)I599?y8!&t>6bmI#dQ5!E^5NV&XQR3L30
z`Q>V}#^LlG_0TR%G@Ned^}*)DTkjz>E~He@1iEK|Yh~T26Jp(#=DoKpDPOS#4Mf^5
zLt2sgaTIm(Jb_qTrkp|$dSUS7MlC1x>@J7@@s_9U*98Nusq$aSKjjnCo~3>IQQ~W?
ze_F_+pWTJrY`g`|<X|m;Z!<~@9<srD@;LqMr9WhSI?d9W41~Ww<vP!Ft_1CWnzL%*
zPntPy&NYwE$U;w=h*<pEfd&a5s)&*XZBwjBP!(roV)q+BH=y(uvu-`*fxJ8|PJVX~
zQ;s{4r>gQB5p6qu9eLl3?kfl!MPhP|NLh|q(ldJw;tx8_9cV4rB_h@zkuSj%4(?wW
zI|O6{avN-e!}{eRN7;5z!)(5!`^*cZx9iCC%kZMvzWT6Gx8P?%2PM(ICJ#dLxg{R1
zu-*s=RHb73_#TlO!ddOW#=Bnl9COqdf~f7jSN5B&kE%#YLi7F6InS((oBoe@BKyCx
z&=<ZJYjPLw$BH!d174o5<?}QZi*dxRHIB&B(IWqR`NUD$f?T^$y#IUa5hs=La2n{t
zqa|p;_W7fy_Z1?qO4e9QH?R!H-8{R<v#GWl?Sb5PR31LpC?U6|8(`+zkl@<?&e4@d
zw>TJ<V#d<*z;wc5apwH8pDLtM{O|Xh!bWUi6(Pmr<HLpmut(`3A6g=!5wo*O_pYAj
z-ly`YzwGAQIIl>w1>roo#=PufeNplDyq)NOlHiJ)?YznE>S{=;+id>(d7;CHzLnyr
z=(>MvzW)Y|BCBIiQUca~U+uHHt8^G>Pj4RpNhAL`+~4uLll1|W5+mGu3qF^?XF&#1
z&`^M&-fbdO;(*MO*7)l8^a&62%FTlt=&?#Of=Ym;Ir3~*1D3BIc@>Bx*AOuOMXbi!
zc>Z-CB9HkIYA{FWTCO%fKn^O;uz)2Qv-z<KGcm&6ri;UM1~lZEmMplc>3oA)Q<1Yd
zx3>lCE(sjxZB%dLqqX7#w>w1!;WLGuxQ8&&Pko`kkA8mtEw(lgLkSc0zB&`%7)fT9
zx+84F^<pARU{Q$pYiGQjI(GVWAY{{xo_^*l>M~<*+%OruA%VNDB}t*qt@!0z#md#!
zVDX&k7G&R};Pxl3c(l|FRfb4gc5i+G`NhpwBDa2ju;5SHrnxWh^JjF>;Kv@tGVxq@
z3Cjh5hM2Q$#=Q#H{^eSc8Sx0a8S1+g#yd>HUZ;NiR;I=CjF#>g!o00iI}guiM|xc6
z9J->LuSk9RG}=n_f^o!7?_bElT6idCqRbl+S_Z>1+Op(C)dp`4CjFhP$qC|u)WSW;
zMFZa3D!g1?dk_(UGmZGohq27sd&7c^c9=9N(g~8u;S7>j`Ns0dCiLo@FW(_qp1;7Q
z@I8xjj)Chu#$P8B<f<bLO*GQIbS-l;kN--F_NjpY7;AI3&Hk%7R}kL@nILr0rySk}
zS!T%?V~+n=&m{Sbm1(Bm*lpvv3f<wxg7I-W3|s;jSZ&mX8pJSv;f+d#@cZ4yw%3*!
zbyay&8BM#;rJYJ(xpIAVzNgk4clSBlXia#zZ-!wo2f*~P|0U~oS+aBoo9g>JLTKz_
zsHYEXehej068`SIT=VZwwa2}cWhyv`L55*+nB;mA!Zb`8hKHYr{;?{riK+mhqjVhd
z8>nR-Qi8E)ToolN)20X<*k<)DT(BMg1p}7)A#O_syYd!~<01-gj4;{>7ZIw>8^i?V
z>aBg@lmcDGM)~g_w!FNQ4A3gN>&WzW?tJg#er7msW^R1%wcDMpWhRtp*=A^~)T`Jj
zX&0MAvggj&!Lh1e1wPOJ-dOQ_r6{`^D4SDLm}L>DCH1*N3xbZIj<hYM+$~_bwxbuG
z&BQ9Ay4R!_P+n5M$Kp6tu_Md(k+2P1&(>&?4aa7LHXUP=V+farDmM7lxs6rj&x^JD
zinbR!;T1ngx2f+u4UsBgHrCpS@tS0|99_;k+nAAlJ!dl1TqpPCWmrb|j<GAF+-BT!
z?_bHtg+B&VDyL2OAOC_VS}lw-klpC6azrwB*xA)#;xlbZCJC*tvgBZx&LKQCw-H`T
zr29=l+44NaJM#3o-M^^gmoG=}MjuTjU6EW@*?~M`s?eE#*38&BfK7-k7{>)01MuZJ
zt(bs<-9=3eGwW1y*pdO4R^2y+?@6vPGj;ZL&Do4X@m}|Pv$@t%+@JAD{vVaPj-_v_
zNwPp&2eR}g|I2zjKx6xnZ8v)KAj*$t$7zC@$^`MF3VO$4L@&BiPF8H{P|Q{s+kLW3
zSt&;W^r4}qnwnrHY-gt1D3Ede-WZpp*nk75Vp#UyG2d*?6w3+UV84yjgsqQJl?IUA
z!yjl0ptn+_r;;%tGGiv~?YYh2e8N|wYNLIl?Rii8_(W|i$mm4WpiI46qT?NHc4_sQ
zJqrA)hEd5bl2SLZ_WV*tNz)#N9ffcEYF1q9`Mv!+iauR_)rdoa6bL-@mExn@wirGC
zLRg85B){Aj%xuU)N9nKW>Kn@evk^xfkMDTJa0ALgk3f=nB#db63@UNuyrY~h0<Fdi
zo)6bkuV8wCR+nm+PxbG-R;kglm<HL5tj;QaMU0kF!$NL*PAM`~N83qov0$OI=Ee(*
zp3jA$(AUmdrN0<Ltl&~PgUp><B7%n54NKLMUG;iCI|j#OO=1Rv!eRJtMn&c(G1iP?
z=reNjtEe}_;WAI0wv0JD{IB8^2a>3oR(6+Phvs)ZHHj}06f)nMs^-7MrriA!D}E^X
z=Ebirk=QN)dv;j-?W#BAi89kp&nM0LZ}PXNMthlcSiY(o+TwX|wt%UUES?qJ1ckUK
z{hEkPRNKVbXpjKthslWsD6%9A?4YNWRka%an70P!;{oGYS%1rf8d1FS!<PNyK8Gwc
z)Md|4`{d*8svE-HE<T;M+E%9%<vmG6Lw7}S%N7bG<WswdBZ2Vgn5~|*YW0-~d@vD*
z&P-b86ze!iq)hn7_wrab%Z;_d_W13xHmdU@`m9LschJrNb>v+|*a{1o5{m>WMQ!Y0
zz`E$_qrt*dJ~u^#^@A(Eir$A9AliM2=C=7(;sch^+9|$dLy{qQCD8^lEl~gcuQ+}5
zM^)Re8cys*S%CepW+xjOC;WSLs9w;~AN3<kWfG)sQkf*eH|xvGpXSgiv{?S*?=Iqx
z?kkx=M;|(^F!3y(joscoOn;&BRe3}JLXB-pws^vP8J;v7HeZ}{_xpMZkHwwfyoaTV
z$_j!rdE#gmX>KjRcK%t94r^&q+_B`&a7sSUqdPW9zYBIo33B{JH>T@foO`?oxZrJ~
z2rPr$+h%;gGGfAk!RnE&OO;gchZVv-;wnm%Q!0>XMEq|B1X$VHWxOl{oC5v;ab#zI
z&wZ%+xisvFJ^9Sln}p8SyP)<TuCi+ITVoG<oZ5fJfY`;B_|v<dQTWh<s>@jS0!!z#
zcgT2a7IJ;w3myLT+L-xBp2{_C0{-h7!QTBbkUg*<U^T-;6~2*#>C(ldF(-}3eYpdZ
z>-Sn6smro|6roHCzQB>?XndEkoldd>UW&e0aYY#UZmN)suzp_0@Y0Eaz6!?_G!laF
zUGv1e!a1*~mJq2K^XBB!@hV?2)b?<8@10g#(OT6PfhuYj`U(GzV=hS;mFei??xZR3
z>Uj|`cPDJzK0zKlbJ;>KqozlZ8Vrc?wx1UBckz&WQa7R>qTFL(g2>?h<rQ*IZmyK3
z`@T6RHl9vbJq)iJM}m3;Iu0TaD{G%C29rvaZ-w+TY%tng6yJN<De+7$Nb*7T;<xHe
zT9uwKI)#hkiGRG9gK#_LmdUBBzgt3VeXq#-!;YRP$#-ge`OdiV=(AV-lHmT|&mO27
zU#sl@ywjLGHpsg8@<&m0VD{zOo7Kx7_iytr(MJU2J%(*O8{h11x%&AzEo=Xyz~4H3
zh4Vq&7sb+vo&|$R>|qtlbE>pZ-vsUhU7tf*iE<Kzv7S`QP<UJ}MT`mdM90wGrY9WC
zJ*RbqFL?u1Lr#C>ZUtJWtkH_3W*Q8tqKn(=EU@l?H;44!#Q}nVJpNQY`p{fjw$Ccv
z_V*x(#QG})^$j&7i!NmhHCI&GS511LC4z!3o$S+EpUL`$b$J%(6@}*-*{{^r6~JjR
znTK35qHaWc6GSDg{W(fyUU4BAy9WLXX&D*cC?=!FMPp8MTmG)&;~dNt*C{_)aHC@G
z>wIDdr*Uk=v$gYZZ4$5EF|GQo1M~3UZ3n4?a$7ahLt{OJIAz)a>F2VTP>$%PlT_wN
zeQ<Gk=ot^<C>oKc4GeNf5+_Xwbc7Gs>KG$6^8vyeK(ahNro0VI1En}WOdzzvI39V8
zMQRPKU&$G9Qp|E%63IW50}{psT{p;RE60Bz*)EWF-W9-`PGi!sVeWuund`>+Dv%#n
z6_@}W!UV742i}x{FOi@xTw@#DK}eAVj+=YeUHa>{^WMrnbwsQ=eO{_$m8m>MIBnHw
z@Q#%S!Fe~G%hhjISc=<=zjRayvR9^XoCsOFk9Q!wIdAaylgZg27S9H29nXNXlVy>C
z0hEue9UxIE7*y8%7nZhotkeic2_xj+J68HVb6A-Qa?@D~AN?Hqx(&6ZayIBWU1kTV
zzAQ-GeWImGGyM=lwltW3Lfk@UxS0C#spfAP6I?Ln)mS+`W36g%{7Py0Ob4x+{=d!H
zO+04$m2GH(K0iYsNShF<51HP~%85hfn2VK?>8(ZU|AU~T$a0A>7&R<7>iYhrncUtv
zORZJu#l+nD8>L=0<|F>rOp)^*ir+d%h1++`NT<}*zsBu?(}f`&ZOxx6%&+^p#P-P9
z;m(Xl4ZkgVlv|v%ET0Tcp`Rol{USIG0Z`fDiALgUbi=8g(_(@?B!rb)cMzh(Xk6|1
z4MWf>kc<KFB*>P;&B@;lrsjJ0a4NjnT!(__%kwGVC8d*Ax(6M=6Kr6P7Pw~^eXnN5
zHHg33Sk1j+Kv%_O-3AetRujjd7HI1hv=QeN^zDAlx6r4xCp);PWM=<n-g}p%f|p+(
z=m7;&$lPuYW&%eaj%}wX89w~=#p!kJ{f!aN<XW!{ToN7HGXR|)c~wj4j0W3(yHBB#
zS`(E*wvtg=XZWKwpd#km3V&>5&G`%G$RJFlKUa8OdH8|=_R`%e>zh_2%<U&fmNX)f
zNEw_qqUxS#9k6OwrHl!tM{gI1v05{ct@b#~4x3ZtaW+_-V6c}SxfT?H;_;?zBjt{)
z3_Bj}fopr)YldKRfeTVb<1#~0wKdSI%95Dcn1(+;JycUXyU*(5rFUs%RLl7j8@Lks
z-(Xr4Y^)LMv1*jfd!F9&oYuh;L0WW{(}LM*)WOA=rg)&+W<v3&F?<yuj&l_wK3=(A
zZ#z*#Y0qxNvC<ynR?!8d6#=w~a;RQ5B%jlD{hJ7Lq``_`MZ+$2>MC%{lfbH+xV9-z
zb!#t>WqR)?4EBT+2bdrR;luZY+HW>CC)mEY@nl?B^SR~NbM>UYe>y%Z6b}`Jf>j#v
zzTTaCbT65N0^x##G4X~R!qz%Zuq%jL3m-AY%ROM6&j4l0lJ@~YcPP)h-%)6UY@y7C
zz7PH6PXu^|j%vO2$=rfa;F(^xr|@#YhuK}>0tTP4GocWjpM|zCH_h)wH*LmS>0baF
zC^KTF3PIPnY*+@_!}$$O7Kb-K&B6a8#fB3olVd*ZHKEVwK3+TPeLiL^?}ODEoDP3}
z5;X%?H6dgi{0Jpw{2E--i5aNHT%9{n_}PtytEPRKk<Yz8V{=n0Z-1^P)4qGZn*|_y
zUnrt2%)<@I-jxJ=uMn~;_R_Sb6-%XW&G121r7b1=Tt_t+ainvzFi@=(+4~BCi(^VS
zt?x>z?SIAfs6XMW+1u69TRRx!pr~ZR0FRRBy%k1(zFiB3i)kVD-%ahMT))Z`pLlP0
zSA3(HzJc*W@IJ7h(UxxCHYbirabHDE%#B3MJ=|Lg<onVl?Tl=tGL`aA@4mhB{-L`X
z7#(xVMSYiU^lGD+pe*)!@b2v?F>L-_y|TMj%D$>8cR{bk<`hRM+**IQ?~gEU{k;&=
zu1Z_J$YXflOm>_FY5`H*6<PkorXxcc3cdQ?4`^v;)PJ2t`AWv`JeL{+w-S5vHjsp@
zd!#Aq%`V^@jkUs8ld=RxdSQ%m)+iCMIW^LzDX}u>)yp=%Rs3;2rO`IOAqsa03-e=)
zeboke%_LwZRm`~yekJ>1uC)q>0WBhgAV1k2!X7-PlOpW#dzpWw8w)8}r)jk)`$Avu
z!IQ4heM9o9dMtH%bWnzzuix9vrW9z_f)Hx^?e70s%SvHNErDnKK7_p*GX5%M+$6Xi
z!YBD{v+!SjyRCx%gSvy4n))K&XL}YVzK*m%k6>4Y+=I4%fjS+@aQhmr9dYxEqteIe
zjqceGND8!6HVMBH)W=cM|1cjg!g^nUqFC+`4<yCny{s}i!hRfi`%3wBOWpbdP@=@A
zK@#Qu6o-L?(i#22Bku_~2}AC~+{$rftcMo}KT9rBb+>>3wBKidg|YV(xHLwbc8QK+
zVokA7OY$LUs<cNNVdqIlU_^l5#OI}G7jxne<33RDTd~eJ9KPdZwzyN|PnGahe7{YA
zx>G<}unWA5%p4JDD6pF4D@_sB3XGrV!yic}HejWG@OepLFG;xGC8ML_)t$j-hJoG;
z_z!uKW|e5)I?17Se=9*1Lm?SeqKw6#lI(?}S?D;uJ3m*B7A#*SIcj#|39qG_jIozA
zHeY2A9$+<b@60*S93MbKe<dx&o@sjpv8#;Hp`lTA#@~3L?%{;9FB-Dvj&ryxfZ7K*
z>mUCa!nr-_n#GV=W;B`Hn{$^X=Q=;W$;OWtKKUzn<IwzuPkNWz^Iv~!et9zAm>K9)
z2i^DiGa?C#b2mH2!nTWarTv_`UWxuvRqccv8=r(X&2##?Kf&dq)KoS{k-ivJok4~c
z{I-4DNYt;A5|M~7daAhBP(*YTZ}cssMfj^sebINUVFOf=YTmy`V__rF`?v>{YTI?&
zL3ll1iX&rT2OYdPTA3xx?pId#@31do1uug#J6#6ni}oW&Jb0moWo6m}BkB2P*e5bI
z3CzZwawhl|Ya<`Y`&V)qwI}z*SG_M!jZWfl98Z%M&$MZ#hz~}PfClU7U%s`$e(a`y
z1$#2wMpKy4S<EA*bvToe;FM#v!GCetpYP@tWjf!Y^K%DijD+Or<4l~;++Ds{_~;|M
zK$i}+)WtHZ;N!oN@<qcS1AIrI!f4=cIkV1upOW9b;rGi_ds5S7Z{Rvbu0q!9WKF$;
z4aj?v{KoGGQ$|wa$JG5z^FzHrS?gIs_r*qhqsnS(LiKbs?ulFIaisfu%VzI5>)30m
zcK6;_5E08AuVx!-x}o_MK);yO>nmwp?Ij;<mDmpczW{(hf4>MDOYK)D2oI%%gN%9d
zMoHj6Tjk~n9P1r=PkS3%|0J(``?gDMPNx7VdO1`O6O*+0wUbD3xI0$~(S~3-WhZvo
zNZq6FHjTi0x;x#x*L#l;37S_lCg1yuxZ?c^Ol<^wL)7QSD|}abz=q84%*M!!2t|*$
zCyIyU{qp-cdc4J7yNg%{&5(RtxcsA^yN^(Z)&WVitNgx;dwXoJrbkhTA&r~BiO0+d
z$k1W8rv=w=i(vE$sVvICcnYsaZq6agrDRI^5sM94$8$-2qL@lE{LNRsG1a&VtjNlX
zvyI27y{?F^q4<jSxILyeO0g7BrEEPqPt3DCvAR(UZfFhQ_(|7v%eSnm;X^%n2tK-$
zU)9Ln%VhQRHciot|9YB(P0zGU!YoX~EUaH}YsAi*<v$IOt4rixjpGwOpDe!DXui+D
zg;Ib*sk8=ZJ$lTPF~&@OT$GIGqs-R0e&Crxr8L0^qWoklz109Z!MBCcE6rb)P`oO?
z+`&H3$1v?XiYdHT=^IVNH~k>uhRkpob6-0N5I+?dKPe!8i{RzIugvEE28D4<(zlD;
z)y&P10vFTU4jlo`07ME81DQ05(~M7(BLh9;X(n(WiDr2QrZ{B^lp;`orZDvQap0b2
zfuaP7qNv%zh7TD^r0C&KGdw7Q;Az&Z&%i*<N>Moyg%m1?B1xJ=snTW;j|dr#LPf<S
zsZu09o;oFG|4Jf0Rj+2<O3)xeg$x}+^x(4M#f%#}eiYR#3P`zg>DIM-7jIs@d-?YD
z`xkKFx$@{0Hhh?#$0(<6Dnh~#)J@5W1_o)?#DnFynj`i>b+f17fm9@y2INtSsb){-
zqRRO(NTSI<_NHD<g)V88cS)DNdAcd7x}<5he(f;`%A1MILWT=6`DC-beFJwM7o=_0
z$Yn1t?xB=#$w~t^5r4U*XVADmMtS~`gnFLrJ(w4d8E@p$ln0h=Ing81P>`#Hof>P7
zF3T|Ej580YAVo4!@bdr#QT*7$k3UfQDzH+H(`gij3Y1I{1nm+~F8wBB$UfgDjPJAg
z0)+4;{|WbsBD~f9pvr@!mimeW1DgSb2~)oEFCqXbv=BoLnd&UY&=?Bhtszq&MUcEy
zT#hW3l6)zz#Tt98$7aYI=t&Q@Y=*zlXl%wty>Pq<l^sPCvc$^JV-PL{GkcD+ASENx
z$o{-MOUcZt1m(&sJsPDM>+*Uq!U_3khDQoZIfcA6+YIECBWNULH&8{riByj~?b0l?
zmb@^-4JUmw&XrnKQqY?S{mRr)cXN=|34LTJ%@Gd-Nz7&(YmYHy$yC#~Hjza1r3ztn
zlEZ-_!%nnrz5N#4aK#;0G{O)=47zcH7?9iq|03atO!+#q-FiWamo5`M!q+c-r=$yB
z|9S1rYh8frDtKUT;bj+GcuV*Qlx#id!<2;2I)Y(~??M<PhyOz1*StU$_^yaQq8Pf2
zJxW1kjqRdW;UgaQ3*@;L4tM0gSf&ewX6W0?W4lNoSuRj3gW2fJU=GY=k5JYt=)H3O
zDCr=Uj!0&|Zg!XJZkuN4>6Kj`o9wd9PT1UY4Lh6dw%vXk?zrWiyRH&s`bZH`=-!)e
z5A4PRZ@v2-oN#cNIK|(wlP>xcasLjS?ZpcZ>~W9so*eVcHTNiOwG-PM^w32go%G0?
z5d;q^@)*UGkV}8vubog=opsk?zx{0#Na40^$*FE!T-j4!z4gd}$DJ<WX)hl6|K^<!
ztaG)WpPu^at#`W#KLk<a4?Kvz-udje@BVx6%@+-YpWBv0(vR3DSA6chU%&n8<0t?8
z{HKrpT>bt3AAkWA-~b6&Km#5SfeBRLNBD=X1wIgh5tQHrDOf=ZUJ!#B)K~)#qd^aT
z5QHHV;Rs1sLKB`4dY)Sw3R&1f7rqdNF_hs9X*e(ruCRtV)Zq?!*h3%w5QzIzVPS66
zvU*VgJA1HQ5MhVJkSq}-DEPw^{{TgtQL&1DiGmUFa)do-g$bl{q6d`dGB1J=St^qv
z6|E@1Cj8-Qa^nNwz&FP<K5&gwY-0$|$cHethl_w2V;PxPz#9^AQqA~-|I1Dhq8}*o
zBS*+XBK|NThM)isiO7Qyj{peu4WyH!NCfZjf=NvVvI)%DizF#&$s;5Jma!bA2bdsB
zTQ;YYpUk8!_c)MU%JNsNtR!DdxygG0LX^CdgDqkCp+<V(k&7&4AOe9BQnm{P)U>8w
zNFz<YxJMCuSj2lm_snQA<PQ?VL;U~)PH~dcL6G!FHmeCw1P-fjqhROr^!br);!&IS
zG@(1k$-94o%bfBo<Ny!(xq-kkL5Z;Bz)ArM52T<OeozdY{s1XC%u^Jl0E8(<(VQR{
z=tBcBk0|mGnLX&GLLw!pzDNL}UJk@PqUdNdJ_<@j{Pd>~ic2Q}{{e`|B%-K*fXGR2
zl2Q*Sf)v!0>P?|4Rch`gr#tOwDMLEal6qvNEp5h2M`P7M$R-dTspv&B$`|uo(_U}&
zOKc`uN`>;_rh8i}Mm0K+@K_R=-s+h*@yeaLs#Kr`#3$eS3BJZoNusxdsJP^cxyep$
zunZ|IWDnaRi}H1$1Z=2BPT|eBonk8u(iFFLa;89xVnDiUlLtfr2=_P@6d}?Hrt<RI
z*pgzl4DrKFZi<3Zu+~g-Nkql`*^KWnq_(#Oi71?!7wXQ%xX6toNPJ5n;HpZu9@xqE
z7K_?H!L=@x)tGt{=AOI~&b+D(Pk22L*lxM^FYLW%atHTV|LghJd8Hkfeg`LD%;A@j
zsZDHX^EcYF*sTvJK!LnSAmNr#1zr*P<2=W*%9MCu3db8r#w^1gKMmwkOLGlK%!^b0
zz6?Dmez8hX`(cqG$7gcEsKny=+>fmIBc<SRUWCju9Dh<SC-y*!8PZ}8xaVp=Km}Pr
z`QZ@vg}@{3@Fhv6#w~v&%XO)+gyq5`5^Oj?%?Kn3kPyf+UrfUwNkJ2?MuH|dVL)eg
zGeeGGWf7MGQuMKJOWNEQ6m`tPbO|#GzPvIzL(PZ+W3=mrHex2sjKlApXUK+y=6N#V
z!g21{o%0OpOwZ*Ae*|z~P+)5KRD{y7#%`m}BI<jo|JpiZj<l^kVrM*`#nq*3G=^1j
z=3dJhJ`k30rYilBJ%f3{tyWpH=jm)(H@nrCz6%MIJ>iZOnr2I6bEttWmqWuR(Pbtz
zu%GRLJ}>0T3>M&M<scr5GDJwcvy2}YGfKt?jzWM~O*2NZ8!R52At&+WkT1zo6blEj
zX<`VFJ(7s<{-G3k;RD3$bCYb<lnT1}n8QJGDIfQkE)<_Q9RX%LRIuDGJ=-eQO3rcn
zaLD55%(z?<F%`uqV&Pa8C<+ArnSwK9tsdb+c!@snqeGjN2gf45B}2-xsOJ>iY62bv
zF%dlAfnFqtiLSPbV}7$qOaM=TY(8^}pG846|II+HYT_bwDkdE0J<67cmdm3-i+xaK
z2P@aT4t9^^doBcSy3v2N_JO+{FMD7vg^*6i#S{Ejq7VfNl!KE?79I09$`L98!K0+`
zfibAy-4Uu3dPAiE>%4>eP3Hcd%RikUkdk{8R_zzoO9uCWFhvk_Zwe^jd-%ma{^y;(
zo2$2-cTCWI)*p*_k34_(iivye(d%r`KYic*PP<N$e-q;~q~5-{_ftg-llI$%z`wr<
z?iJDgKOFD&ncsZps|%9!muCIWV(f-Q@Y-YaO0Ojb5ERY?`?8Kj2rm!5j$W)!`)H33
z=ngLwPVeMx-i9bK=FC0(pb5S#2$+C0|MZREP@vvOA$?*jw-zD@K%o?7hM8i?FQlLu
z{^+bmtQ0gPt$xg@ngA6Np#`O&xA?=je9$BO0O&;S26Ip@Od+^N!?{w<sYars6amQ~
z<(jZ?6tu7|aM07ZkZO>y2NmH5>thIuP%hk~`|?YmUNAFcaAp>(6u?9dV{itc?jvgO
zvP$p-Kf)mtL85pMaePSz;RF;w!IDJ56rvynaKsdz%`#wX1zQk5K%sbk;8O6T&;CHd
zVuA{I#1E%XE<D6CzGBcE5fUY_-S8k0MPU&w2@n^I!19m|A!8Fe@h;qhDthLR98gV;
zP7g6n6h;9QBq{~)An%3|26GWF|7_w9m>>wKz!dV%CSd8#oZ>qKArL?f3F;3b2C)!F
z;Sk+TkwVdDG6fg+kV3982uNTtPGO(;!W+R+9CZQ}MgbC?z^3$(A5*{|ZOj?x&>hLK
z2@DY;Pyim~(JHK?7OhTM%JCdOQ5{E7ONcQSD^UfTfdxqeGXh~B`|%$yDj_p!1hFc{
z{Hh-1g23((1;X(h-NTYZ3Nkd(9cc?0m5~|o0t8X=%UCfIOJNf8LK>;j8k<olUC~eo
zF(J(nB49B*WRVe(!vyWgBBf{@IS_*!>`#!4AmGU|0H@E$@;ON3OfU*80V4%Up-n)c
zuP(=^KtknML^9e!rIJc7|FHuu2SP5_PY9L53F|{IlM1fd(iGj$+^WzxoK5chfC>aI
z4X?v7PXRI|b1o1QB(?=&;!<zs(k^cTFMG``Da)SFk|ETxBGLp2_zN{xQ+>kBE||cc
z9Kt%xV>Hi=A#7qo`mC=G=5ERo9pgeGOv_SEfk%2~E%(AhJYcw#!oGNu&)O=H0*N-!
zOTS)|t=OYD!OADm!#!R~B4|T9RdXQTVzzjsJacSgJdYumzzKY5B<vC_F{-C*(=OWr
z^^%i4<0&oKvky*zVQiu$b%x}2VnQr~KM-_E*n|rIlRfYgvDzX)2Q*SX;yMNKLMIf(
zkaNWP^F&@uHOCSi|IIQk7*tPYtHh!(4f`xU^+GmRbE{0DMVsM8*ONZb^VkRmMCG$L
zsT0ON1U`LqI{QjOJ1#fXj4m=%={%G|dXy_C$SeD-`<PTuj*m}HGypw-6bh6tu0#|v
zg%mXE0tI5@=+dcD02D-F4^Saha7y#yRP)$lOqa|Q%oO5kijD>|3gk3SKM72Ursw8@
zIIIvp@?bY?;+jl^1Q2yM1u9T=3?%BbOqYz~)Rax#)ODCFT=XjtwzNwbVo*^G;6C*u
zLKUnQY&L6?AbSSpbn`s7G!Zy1L7D+e0p&d+gAbO*4<?TUoUB7~0tHSXt?Ww{`;b;c
z)H-d^o=nvv|4<cLc9kzo;iE1vM1lYnbOKbZ<1MbnSs4Oa>%t+p$R;+-RpbH{j-*xZ
z#yNe}$-Z?UP!$v$B}u&0FVc0l`Ve?_LSMD@RDr`GcEeS*g<cV*eXP__1eRTUwIzVH
zF5s0*Ps1{9bu*rWUn@?;s8lX4g<bey=U`M-Cyqln7R5dmVxhHL|3YKkLROP?F2;2(
zj<w<-E?^t(Rh4uu5Vl<#mf@oGfxJ>S5!O$#l(x<T2`vn1+wGD_0k$k>lwu4JnsMS%
z%DDI=1r$Lj@PZI&av-91Ao_q5tfnU5;^gW=cbYbe+!G`UwK46&GXLUj=ZR^R_Nks0
zKfG2`|Ev~kacQgu%${0rKN9XeN`d77cSTZ_l#&){F_cwr<z`!ELp6)HfOA1`6+0Xc
zPB7BN=tw$8OmWHVE}FAUn!vsySH{Yxxt0|>|JG<zvpYmVbMFGF)TG{0015=haJl3>
z>B}Q>*Fo<>_~>G>Bn}T=izuIDS|oyw+=Fvh(s%j8VNEwMigy%_msi@a50un*vUfn9
z_x1jRj-vNq8y9>xmq_u#dxzF?#S43Jw&URHk?4pNdN%PAi+Zh>A>ub)ImCN+7cdA+
zdM^ca$&W4qn75LbU8zuY+k;&@*JmjRXjc*>gmzEX_Y02zgEN>s&f_LvY822`=T3p;
z|F{QDKcZY4j($UUgr%ujeB=Fi=7YJ2G(3$V*cM&;uXm+(FGN9VQ6Pr*0^>xOAxOAP
zHmql|MFs~L4oT^PGZ=&EMGBt`6&R+8ofu~Hi-VhiaV7Frz$Bg^cQTi3a%;76E0%YD
z01w_`^CY(v!o!QR7%xPZOKVHF=2Pj$SXq~pS(#W7ocM`90*%$U-Ik67PyyuP063~x
zgQ06no1%~XxB$f~TjyeUzv2fR5f7qZ1Wn;J5Ex7@rHvEC0~Gm>J-`&&M|%C@l1(9#
zH~BSu=TaU9mYd;WNcjlJ!;=T%ls`gxbvBn}ER?<2E^JvT)YpvJ_akE2E<0;h|2t08
z^lOz{xd}LVW}VrQ{rHv{`F|xCO~P1!fp?PS!j2`EDt=jk_4t}V*^M9Ag1k~Ob5<-X
z_?QFXV?kmB?-`%<ViAh+Bc|YY&tf|~qAvd+oLLet{JBjEnLUmG2^ty+E+q=`YM%p1
z26KZkZ}={D*)KGDASRkG5V|F{gP?=VIs(yeNr|5A;!@Pqv{D-W><OP^dW$u*i_@%S
zKA37;7CPklycQGZx(5$JCZ_W_bdSS5o@tbMHxP81P~CTe_n2zxIYd*~#T2d&62TAX
z$faYpk#$0<^};5WsFDZb{xaqiI{8q}m6E<LWVRY479jvJ%3kfFtV!#Y|Fzg71cA9O
zmLc@otLfsG;d*6ynS8%QRDt@v+#1KqxTpDgApBZz(TgVipsQax>IBrTH!6DqP_bFI
zodgP}509x$m>@qQwDFB*(^`~a)gyG)1J*jI*}0uP&@OwHf*G4LOgbXG1tjO96q*qa
zOo3$T(t(9Dj)7aa7c;MVdoCWSXKlEId(96r#XM&2ES81@rrR#Jin(p(YJPh+lY4Zh
z)AFJieohmf1V%wiTeoYC5BtKGRojbMTTvSnhZ_{PpCbi+Mj~FLH8m}cKO{1AtG@N*
zzEc;S>z9<;J5%<%*VMKyFiH^s#|ef6I~croD;vY{!ZM^b1x#<o|DI$N04|=;x~4tg
zznhwOGDRdNBzx;8apq#g)9kLfB?#zow`?58<7vfN<v(7c#leQKx%kHiBE=0Yz4au&
zPn4W)TvE)VXG=k^ms7z_o5V>YrKH>xerCgCb(?vt!2jgH^~A$L+{WG0oWD51J>tj#
zCX!|Qe7w>FtO6^v;yuG6AymScds<DdA_b~3R7Arf6d?)<z0fDbJpy6tNDc^{jVOI$
z3ffp{6MfOGyM{|U!cT$F4PBEx!X}<&Z7({y-}4ke!3lyOHC*;BNa=7)9o0?YQZ=2^
zJH2-WiqdUjtBh;Qk08=Zfn8!ElV_c7XKm5(U<4Tk6#N{}|3d~Pbhyvu;LoWb&?#gD
zZNk`_Kxqr&AoASD4g1oK$SI%#D0~jamYj@6q9jhj#w-FOG=d|#MUH8S;F{toqJrG<
zg0*Q0&$o=xiv8FjL)oQWC5R&3k0LKrV<9Bs#gZM`mtC9Zg5jfm+V8?9KtYp(Tbjli
zCS-ypYy!>YJ1yFsEmS4or=0{$VauCf<956$LKY-|z2lo|w|e3yf&wCTg64rDYqh21
zRpOUVKIK>5I<#FZoDbwLN-f-dH0>hd9e&R_1Lu80=MjX?y+T8sI_9cfCjNcnXJTw2
zd?m2H=>`7b;kGO6d?3Qz-j!HBEq?1v!JE{6+<7F;|MQ*bxjp39;@#cC<>5TeX*=PX
zWm&W(T9mw}8w5tyqg$xMG*Ck|0=m&*qdVB7Z0SNf)^adIR6HbQ6h<56+7>xFPn94>
zprT_rrsF)?hcmO|@zp0bW&`Os_{|mVJYGaTq-3M6De+|_;#@>a3jce({hUF<Sd=Bk
z@%!-KgHmc_Lae1pWJNIIUA)4p`13?B@_ki$zcg$=O1L~&^kTV&7_Xs3@yotrZlB5x
zkWTEROz7oFa%D)0L|sqZ`C}zbb|3c@MOPZdv{PBk03uMcfuNX};^V<Xpi@Uk4J36W
zp+bfZn?aQ5fkYov14~hnn5S6^i6olkkr+f2|G^Zb1W5!nFlHi<B1xJ|h(eT~J%0Wu
zYK9P_P>dQmHuIP;NV6s$ltyXV?CHXW4<ibVa%!L=Btla(3p6yW#3nJzGR-KEpuwOL
zy@C~5wBtvKqCkngdo^pbtrAP5-8&NR)lvgd{UOo!ucE*nLNYFSQX-XRD8j-lI}@i)
zo<4yJh51yl=+UH0n?8*?wd&QZTe}u4kDlz=wCN2E^7?k=+@*1+CUFFDYTvwzrw)FX
zaaiQ3mEXP#T)1)8L3W3g9=7`Q?FoTf=MB8XXSNCZnBqRvJ9^dHuOAUVy*+CAr%_ln
zZ6Et+P~<(B*DY2G-wB06Gjrj`97YQz|3zFv3pUlDQ1q21U~&8j^`B`I3ie<S5lSeQ
zQcf6`-(4b_I3RByc6UUIq}eBydh5N^UxpYtH)D=E?#N@0#l==zZ9Wc3WRXT5iDZ&W
z9$7*&cnGD4C`(RBWtF8h`6NbB^2Wp|IIi|!SYcW@6qZm*x!#!gC6vf0Jnq&enQ~s~
z<e78ciD#bM0U6|Mdj1J$pn?ucsDjN1f(I3OjAF`tg+2<YXaXUsD5H+Dh5{*}<))^B
zrvy4_qKh^<W2d7vQ3@ZUG&7=(sH)0pq;iH@DXFsFimQ=)_Gw$LzWxequ!J_@haigl
zfroy=E_)}j#v-fiYA76-n;d}L|7ES9&K{d=j@hDC0w16R!UT`uj$1CXM{WzPy6(P9
z+OB=VOK-jQ-ivR(`tHkbzyAIUFp}~H8F0Y{AB=Fq3NOrX!wx^}>%c-nOmW2)UyO0a
z8gI;T$5u*Ao5v!LOmfL4pNw+KDiaE_pDVu%bIdZ&OmodPGu*OlR8j$-aXjBFC?8p}
z*2Etx0<G^6dnCd~x`N5^N0m@VD)e?$E2%WoPE(w9)2>ZzWY_6}Z5-LIU5zx#Irr+p
z5qTu?$5|MmfJY*ExOfC0)Jl~1D2Z$u783@}UH9F0HIc}d2?<WE+i=U>b|R8b{<mp)
z@9ja|lqYiOU7AzwsN-?h|5td5eOFHJDA%@zM>9u{COYJqZ_c?;QX~S(AD!bxx7`DN
zKDnb&_z{TVLtVZcAbtbRx8BRWJ$iA-hjn}Im&Sg)Pk8)b-1I|5u@@hUL?!8YMSAa`
z`C<Vt`K8tCF4XDFdoX<Q-yK0a>S3uK7UDR*zdMQWk8j%Jo>=_HxBM{=eHa0sBE(0&
zgvc*>m}6h<2&jndWiNvUl!ygGr#$^hq<+SWpYu@TKnTw7G=Wf`SV-t1!2s}k;TxY+
zTo{(#l@KE{OrKz2D3}4_k9M2-VA>kCwuFFB6n|Ki9Ofp9QUJmfqfkx|($a^akVO=E
zfXN>25{ObjQHoUj{}Krt5<rEBafHoaq7(V1h&aa4AuG%d7Kfq;QUqd;drTvg^vK6R
z+-HeRY{nB`6vZi45hGjdVl%#&C&{^HfUIfV>wehALLM?9c?_f=F#?D~@j(=)h~ZFj
zLdHc(q?3WXPblNq3{y1diUY}_P#Wn)jL@<fwrpS~-}stc_7aq$B&Br-2}~t60~CHB
z#VNK%ojabg8Bt3JAN=UUAqi6`EyN2e`RJ%n3SyL{97`J=3CV=K@+Y!{qa5=X!Tqg{
zC}<RlILT>BN`jA>&V*)n>M6l@!gEvGoMtsWaLt6^@{zifrj`H+PB!xMnZBIp*1p+C
zb8<145?N;~|7YpY(iG^R31v+;@8Z#Rmgb(uoEtSIlF*Zi1(k|)4ol0a5FFZbFYLUe
z5CuxdRYEkQM_gDEQBaCa34}O-7)50=m6?Qy0ubOEW<o&WCI>YmT1pw3LY(RWsD{N4
z0|{VPC4y9?x=t*K(CJ;KTGgS5!m6d2>r9g>k)@KRsZS+ER6T&zylyp5r#R?pD7hL-
zrY5a|C5~OiGMP=u4ljHSt6wql*sw&wDk(UHA}~u;UJfO&T9po5MLRdVYW0$J4J}<G
zI~KI6Rv~N6h$&V_0#TsJHK(O3{hEQzp~$pHz2&A`>Ehdjz*eCcAuVmCv)P1n_Oom~
zZbA^7{}8eQ7bDB{z+^EpKoZ=xJGvcfS?|(T(8iU9yK}BUOzT>?CRe<;EpK<mn-Tj;
zHMxMz>T^fPS<k8$wWa}Ia7{DZ?**8;qv@{f3@lvhezmWEb#PuK99<7g7cbbANP3Z5
zREi}rthyW=ROH5o+F}G1bUg)Iz_+45oI*NEL9vPz>f-H&MaJ0qj#4nEVb7d~#Y0Jz
zYK%P75(D`*OM$71UCc(-b|)iNA%Q<hfP@t32Rp*Ca(bH72Na+{Stw{i0FRKa4&x;S
zO^A?UJ>XBAFd;=gHn9hg9F~?0r^(h-F`fm(2ULWG$U=d#GCxG<xha`IbG{3V#FA)<
z|L8f%C^0b<bo^U?K01eKjI?AZ!@EnJGzbAKa~d~&%1&E#)SdgYP$nG~L;v<@few(6
zF@omn&J)Keb`-3|l4}nP@X~{91~i+H;{bZ4KMC=)azQ;5S;KfJ&UUp#h|R`yVOyC_
zv$jN}ePfK&n%ewD^`}i4)>50<xJkk0xaZdBSG(jclSvV)CB$chs`%FmG9Re{E$H~A
zdDm^Z^_`g=Vug*EK!&s?Da>i`X45rJ3Hies8BQKPJY1mzA<r49Fqz#I2;pdL_)t>Z
z!O}Pz6<&4Epj+-}lar)#8izPrDDDA^k47ne$jaZcvRe}TAts<8&d`N|TE}dp{~4#)
zlpM-Jkhz7DBcpH>6IR9aD5yCsDM&;!IC6>uS&|P~K?UHBppt=9J?5Kad5Gc}BbsmA
zyB(K^+eZTkyO4V*IM?~!c_(wU$7JmdB+S<Xp)5~3<wYiM9Y&h8N%|Qc6^Ji<VJa^a
zPd5P%f-ngl@DQOWOdj(sq{>kshk~g$gYY99J$6KY`NXffQ57i#<nGSoI(ne*7avOA
z#e#B-Tzw!-N9@N#UTNJAKkEZ@d|zaq5mJC0(?SXU-^apv&x0N#ydN}OaW53-Cj{~d
z5x)n>-)xwB*uQ=c%kQsm`NIom^PSJb=R@y$w5p!<rLX;W)v0$9ly<9k{~wFjKiOx0
z+m}A3XL~R;cVr=C1{h%s_<tVoev5;3#Yb>`mU7^ia7M)|E@L~!<{+7YR6g+*D@IpM
zfC`B)EzKYWVUc3W5eOz&3MhyXe(+hycXBmx7g9iiLtzSkrE+xj6-}fFK(;FLbA+Ri
zgm?jj(6ofyWP>=UP%Zd^F(?{J;Z#pY3NLsTqF@S9kOHD-3cGQ17?E^)kqAwobzUM}
zZrBWd&;;xD5^EO(pim0%fdZzW2thysSaAv)C>EeVDnF27XVE&6(*#a13aHRQf<P`P
zfCP#Fhtv~<9?*nO$VNvX2a=<NaHkMes0b;ziA&}IlQ9L}r$tye{~21CdHj_SQ793T
zIA@i3iJ3!9Ob`TA;D_+{Tb>AtP#A>Zqa3%^I)A{6zQ|z7xQxFTi{Yn-Z3GIS06EUs
zi_jPds4xm-D0-;C7+4h%dANrjw2Rr;jOWOVz_^XwScatljuLT-z9fu^us1B|g0Bc!
z&9I7LF@$sDhkz)EyQYJwh-n7)iS`JPe;A0TFo?=@jO0;}JSc=jXm?hH2h&&=*2qY%
z2!pJMbb)|`)MAWk7!)Nbk8ClI9hr|G85XJtk{E%F>zFwjS&i4Ij?ma&<EV%5(T?5-
zk6!|lwK$2m7#IjSj2>i@9O)q32$b<Sia2qDrKn8xNG(74|Bg^86hj$S0ojlbS&<<*
zk{_sWA*eH5Q3_GTOq?Vo7kH8V6BGRi7lrj1e!!L%7=SE@8x%<rbeSA!sac{(8lF}l
zr{D)v5K1Zd5~5g`hnbiG0+^p6ificsTjG`w$d9CPR!2}LocR>3BR8CBmpRuANM}nS
zF;8S6mr#K@lR+F_F&BM+Q@Tiq>G4vrReoP#PD|z$k=GWH8CFc^n7Ww|PuEt&Ltu-^
zJd|mfde@kUNu14P3W6zda5)gGse)?;oI}x@Ns*jP&??!95yoi>$eCOz0Gwx4oO9@%
z!vvn~DSYAimP1i*Oy-`gA`o&z7OUf$1veK;ai8!h{}JyQjfSG1&9FMp`Izf@oC0B0
zn2DWNHJx<?K7b>e*3mkti3)p(Y2<015^<sCxH{_T0Z%uY-nF3yxjPjKX}(pT)|r_x
zi4(#JoheA7ChDC-gQLM|m^FG!acLP7+M@Utpyy_v@%e18X=3?lP6TI&)LC$c<e?6_
zmC$COO?p+M*_;eoo>Zz;2kN9k3Zk=_p)>?I3L2ecSuhJHU8Eoi(m@J#$p@w|5;a$#
zHv$Txum`Ac5#bkZaf(oMiclMOMp?p_x%oOQ@up#s2)$<-o<;(Ba38HRKR6PplPZ{s
z8Z9^isB>DUbC&{nx~F|A7)k*JQ1KLtR~JH&{|FnGhVpotm{uTO<(a}2fC)hgs{;!2
z)*T2+8Zf~JAJRHb0~vRL3e2XdBq6Eh7#bk~3c}Gkox`beDyVjPsmvOFg20U{;%uR+
zr+m6Q&ej%g8ZCAg6d{3b)rk?#3a!-Fri%)q&0vo$gbJgHu3~Yof+4Oix~^8rO{EE5
z8y5(->H)c$5cxV32y3jX2CxD|sLPt0&ALqOdLQ08s-44m+sdepx~oLttI=nun8vQT
zX%!u76Z6yu@=68tI+}(0Y`fE_3;UA(+7_Y;t}>bt5UY!ulCtw^3iTSVJ`1!ti>aGp
zu{WEo8VigHOP@5`7*6XT1Z%LgB^0AD|99o5t)p;B$9k|6OS0VMv;tAJ8`r7Tx^W|`
zi&i1F0h_d1`x3mG5g*Haj(V*TtEL9SrkMg(tMoT~1_%r`pR$!1DWC{inGmI*n4HwN
zXYse?K?)uc1eBU`cb2$wLkfG#aI%OO;#z1YdK!jFAeWo2TC%w6L|sTVxP_}YCB_ts
zw|H{fXNd8t39*KcQ77g!KLdyv2_b8=TbtbJb!|ii((z`rOCEU8RHZPT{h_z%3c9*T
z93`QCcvQL;2)Lbl9a{p7s4HEn3yf$bx<i4yqoBM(mS96FlPV^?p^Ld5<V=a66hU#m
z7d9IE8n)J@CY>i$P&W{nF~8ZQ|F5g|DHx%@V)4AiyS`x+nS^V&B%!@7WmUbaiL28G
zkLw|li>Nk{B@zs~c<{dQ>$s4M!4NF7O-pAB?7eq-7tdRMA8c?Qd<yUzaTxKu+^b<J
z3>Ob9p7e_s{K~^&p}R8SAOl>B4NDX{oH@z6ycyi9Ugg6>EEEN-2-VxT(5t~vOu$C$
zz`Mo41Xm!M>j5l$xBs$mC@>1`n{%ab3PW=&z&NZWM;=p<i4tLPYrIO;q!&;}#2z5W
zaTZo*97B`g$D+Zxn038%1-NF6#)47DY+OxmJfkGXx~NLYX{v9sYs4iHtF{{%95-1`
zcm$y=%D#bL^7y-9@dJ3E{}Q6G8^x=MLGc4(hzC(nho&%0iaffaKwbSQ5jQv*jeN&%
zb;ultBc2Ay!O3jmipxR~%cd~PwQNh<Sie@q%ZF=N%M5sPA<bg3%>g{K_7-qrvd0z}
zaG)&8q3j#oEL`EdxdLoY>?{<zoTM1x%ev?^BX>YP_-W8o%D&6H{L6In+{@L}&l5aT
zCYHx#G0uWq!d03g$BfS^EEe*dLw3e+s7TQeJ;TJzj__>4>wFjHe9q}S&Vb<29PI(k
z{LD>Y%K~l9U~6wB9dN+RN!3)%cUDbmV$%5>7zGWx206%dG0bDEFAKK_XE+pc991NM
z3Yg<*e*n)?1YX0e|I{SW)DnaQS&alKmSNX5)E;ourlg0fQOFWe(52DOVSO4^-5pn*
zb5VWD-r2h3vv_CBO&dp6j8wZe(aFCxKVftii*T!65!d?|6s{~}GWH#(FidJK8u(SK
z-<D2z!PXh!*8W(Vf-_l94cFfb)<`WBicQ0|6s?48RgulRlkM1e0byyoKJJRM&-T!;
ztyS@iCV>6g0aV)FY$&#U7my8irvOP%Efi86IQe!}jtbU;{jo=&)mt4ER)N}K3`v50
zBR}1VSgqAueJNwz&@ep|#7)l|Sk?(~)>ZjJv~Aw2Bi_B7*~qP~=IBRH?Al_Y+=AuX
z$9)!}{cW~1|J}k3-v654mCe+1@!ycNwsf&uLZR6SVciAir1vd^g-z7-GGdeQf2Gij
zrXYKM8k)EJTc;Wp8ty?HKC{Bp3?kmN75D=iJ(yNS0)8MJWZ|16@F6ii<1&Zgcwyrs
zzTxfq;nO?Gu1h|YT4}bl<9)Wte682a)?FDP5qpqtDNErgKrNcg#KwDF3qBdWl;m(B
z<L0zUqmY-P*yBa^<J}SF9Jfh;Lsltb%=yNdFz0Mv4qjZ2T1o-9DbV3nTjrZ$=QBkL
z0jTFUA{>R@7Jcr}Ot$C3ArO)!WKT|GdtvC_+34&TPh=4kI4<S_^yj%5<Rg@W{@UWq
zCgpNN|K%qRUZ3s(ryj3_m?;GNX_r#!?flK+E9W2{xN4r`zKIiqF6aTs>1+<_d;{Wc
z?zD<W>4_fTC3fis2{_X6=;ridqrMxXfakqL=D6GJf(7YpLE`0S;@8FM)6Q|#E)j2@
z5UySxuv_b3-s=@k#%5_7(-j5xe(!PvK7p`#(6{RfYzkCx1XEB7rC=RM>`VOKI==q0
zTC(6b;#v5f@9E1Gs^Mu}0t!wL1X5rMSG&K=gYg>A@t_*<5-&R{F+cm>@0)~F0YC5s
zKe{zW$p-j{R1gGFKnkTG97tt*DS!v7vgEzm*I|4Laxeu<^Abg$0=>u(_Z9F>pmAU+
z{}@sp2vKnJKVcP!9TY={2PhD^wIp37kMCy@@*Cgr3Gar$9?ycQ@(Vwpr;zbxKX-y7
z2(&zOzD1bIEARww@W5#ACSP$*;`OaVV66iRw2TL)U|8|ZM*NQR0r>Z0FA<Bt2W|)o
zO>d5ezj=zE`H0W?5-r<dVfdb()2C1ha?k|6IPQR@^h}SbnxFUwHTs*s_#WVC3vv3X
zZwljH_9Kt>k1ty;&-c4Q_jaG0x>)f<vHMg2_0B|ye5vxl@AS+c_47pemXG;Odnv7x
z{IPA2CoKFh4~)Hk_LE=vQE>T=a{cI^{p3G)Ex-5T4`+vB{CH1Svmg82-ubkj|MYUO
z^Z-HS)DaIJ0-Y))rwJ8PrbrZI(o9g4CV!gsDd@o>9uz_FG`pBFO0z&sqL2cWu^^RZ
zC{z|am~dgkhXqHL{3u7|O_L}y##G4AAw-E3En+N4q9K(gd`O)Fr1B$@mmZj$0_7x#
z6jP+Cegzv=>{zm8&7MV@R_$80ZQZ7oM^Elty7WA-1ev#4)Qnu4p`rp76;hQ!66H<w
zBV$A<V*LUR%aS0`#$WO3-K%nx*S3SJ22q4KMO9GEqI?bwGSTRjm_hQ*So(C;$AJqU
zR;`$9kY-Ih@IDQ^V2MC^6|pXOWE9Bb&Hfb3(+oL@W_eylImMi6(mtp_|CX{{Fo-CS
zpi+<$WR?o4yrO&;{1`-KGd@X+muF(C{$1CZ#iwp&wd+bz&83%Q`>M8=Koe~z0{^n^
zE6*0hEkNB~nlPiw^x}(z`<ekIzx`}_5S2e_QYk|R3)HYb*zoWU#O+r6>qHt&L@^^3
zTQsn$C`z=^AU>LS5ES_`BB8tQ!XptR9B&LVMZ#bjvdAO<Ymml7di<@z#BPjGGtNFE
z55)7*t4gu~S<Gm>^3Kc%#`0!Nvzf^<+H9;HTjR1#FE5l5wJhO_5fnN-kW<D50Tj?r
z!~p%#$uKdTQY0XAWT{U}os2Tc7{U9g%JQ!CAW{fb@-VLu_0zJ?|4ge2L{tz-^+3Tj
z1MD$YB1Z*t!7|N5PfV~FR1LYejzu<EWtU~PS!ctFtFF4xqV+5ij>yrfM9QjmEGD*n
z_E>DgGPbI5*D80xu&&J(*=sc|C<S=W>Q=mY<z?&I64XNB+_n6z>W6*7O1Chv09Gl5
zddXs!*?!wqsb97PUMq-#Gm;prj2*r+;ER8o*Mp6#8X2u0K1Nt2ioa_3D}~v@cjAGo
ziuo&x!_7BkvvmIL<D0|cxn-IcCadJLjBYdJlL@Z(VX;<LYw2O1p4nrj$qkt-o^j^7
zYp=fsyV+=^ohxj!&qh0Kwby35ZMWZsJ8rq>rn_#t@5VcC|GoF-yYI8dCfhE*2PeF6
z!w*M1am5#Bym7}Lhdgr0Cszw_vMI+rbImvBymQY#2R(GrM<=~=%cU(nb=6mAy>-`L
zhdp-LXQw@*)2FRHcingAy?5V#2R?Y=8^4{d;g3f?dF7X9zIo@L-@N#;p{Krj>#xT?
zd+oPhUV6E>2S0rA$0xsh^Uq(~d%@qPqH1N^M_;Xqh(?PKJdU0J@gw#~gbyadvR^^u
z@EpknuvrEi%K*!=zyAG?bO?Nw0>L7|uTXGq4D{c!Fz7(FKrnP3R0#-&x54=JPJJ0U
zLLL(FhxbGb4~fVFyp8|}CZP}zqe#STz!DKAq2Prv{|rkL8ub+(sw9OgY@r8^kO(F=
zF^6cGVGR-GL?(7jEH9*D$BxKCwM6kNQSd_`fXKG^Bx@9~X-gT|vc)7$F^eyeLLxx%
z2P*=NicHj@O`4$yJ}kmCU^yd9OyQOp;xLbWks}?Yaz`u1agH6sq7&<gCp6Y7kyZqw
z7_;VqKq~Q$Pc+CN$1)N=`ca2${E8RTa)du90uO+)p%lyFNJY93hMVkUa#YC0m$1^6
zu#99ACld%!eubD}Ii^^AcuRBbvW-e~=1YQE#p~>`kAE!4GRJ7d8-lW$rNpL6g!nN|
zR`OYe^ybdGc}OL$Gl)a{N-nD+Pi<<dp3-Eb|1Gy^mU}Mpjog%FJ8QVaJLVCc>@1Zv
zO<BU-oiL%I_``B^f-zB)0uZJcg|UKgpGtY43C$2i9!j$ZWR@ag6}@OiS;n48!o;K^
z0ck{=F;OKd!lpK54?=Cm(W)qd6oCLLP+Qv5p9VD$cNz&qB}y-zz620^42>!1*EKaB
zOP*}0YFd&iQ<{3fr$#-hN}ehRK8WHJn@rA4aT-pMIVU50XlW;txt5QHbfiv|NLkOC
zk*^xHV`J58kNO(ap~@4mX6?~aZQ2Z}ilviBP^(X|IaiIjwIFcSqf%#Dn5Ld(B%tua
zQ#kmW&YtD4d(9?FF-p!{Zgr_J1+8dR|1wyi3KE&cgcWW{rdpN4RI^=m?PmE}RKiBg
zvL3*!$arh4x{9<JBsDGpk!wW~u+*{UY*uscY8LH2SDYYqE_7c~T{~SjEV)F%a!+c}
z)y|f<wM{L1ds~+D%GX%54Xb!ct6z{*3bJa=X-2v$-fSK>xeTq{2~kiA9Tw+Gff$8L
zP(TWB6+{$(7)eJ#F^Zow17f_n-%lbeG75ji4<KnNh%v_C4%aIYx)sZXGh7u>bkr<0
z))<Rn(u}EE7{ejC&SX+>3Pq5S$7aNCTC#dH9UJ7x7PfI~boflOyttY})eK)Ko0biC
z7)30ZvPy6a7BCA~%u$XfY|31a|0G61$V4{pSFCJXv5cgS3vTd}Js@Ksn?)%d5``$l
z{9`neIh;v^u!Ku|UcTVD#Yr&*paq?gG3WNSmqzA@CtP7i@AycacJh@f{l)UaO4Exj
zNSAk<BRh-b#H9vgl9#1wCqwKjv@Q;caP8r$yc)|_&9aCUU15Wqn%JX$Nuo(i?6D|&
z(`OC~pF1k;vCKKu9A5QKV2$9025x#>;*D*1(?UMzSw|f`#fV1Itv{RsMdN;}xjmZh
zZL6f+IRbYxWSIi`sAW&37*SdP9+rFuG%S012_H~lt$5WjTkT3g6KJKz(MGHZEj@w*
zfi0GZPyERh#~2grSr~n1|774`3D#Tq9dQ1HEaL@{t0;reQWRXgD(Qyll~VqdlYeFB
zRp~icUS7_O{9G&wH<!k-yYipNe3Gvs8Of!HaFL1pB~XC%NI*{Yn%B|jZR$<DX*G28
zO1&UhM`|-T7<82+bLPo*I^4x$MR;FU&jrVr*$cw<mq4B5<kmCJ^++neSEUK`t|Qqi
z*>#QC{3|H1`bz|#&}tcN^6SpX<>h_&awlHtz5M)d!fy8?)g8Hd=DT=Ce|lO$zE7qv
z_mxslse>1q>6urzxeL$j+&T0mC=jkw1Pl_EdtgtAz_vzS`ul#rbxa>^eo{z51vQZ@
z`i~cG!kYohvg`>J{~=!2B)`wk>?Z}wRL=+?Qc@OT24Ojjg+fLw@{&HM;4t1fMR?-F
zhwPvtk0^L5?-+%SVS@KNg(%oKm$|=Y$iFz@G5-4tgDR6|7(jx{zVWjewqhA9JG~2O
z0z43e>c9g$Ae90Hi35zeBVdnaD1{^fz`vltjzK>8TR!0s4DeeJ4NMUnd<hd|Km_Cq
z8zc+$QwbkLLF_8G3n3;I{Eim-z!1!X5nLGH>#Bm-lOveG3WSelP>B*KKP&907Zkud
z5yFIfKH^&p0|dg#ny8QH!VBcVrei`DY@sDw!4{OmJ0!O=yguWqLX3e!uy{fdBthpJ
zzUZ65g7|~w{~N?8EJRe9zUqSrHAJrfjKPSpL@i8?ER@0ITf|#Ig+M@&L{vVNAjMCF
zMC#i%BV5BtJi%5JJ~l%`<l@5-!N97BMUR?ACE`Rwl*Q<~#o7}_0NOrN^h8DkK|<^?
z-b)?dQwb?hJD32M1#6{1sER#l0#w)%mZ%KvGnPP@#!{$8mGFZilf)2`4#$YbsxSp+
zGmAYTiHK4JSy~QuipNoyM|G^YdK^YWn*y^41XLJ>C`bV(ur7_@!ucQ!P%s68_<?eJ
zkB?xYCUAmLK!pq0FoFmIP$-3gK><@xgdiXR?0^chU`U6A$Ss`6ioD2-5QIPwIV4bo
zQ@9vt|Ky;1%tx3y0y$tJdelLcXh*5wNRR>rP-vl#49Sr^g_1M~fh5QuK?UT<$lu_|
znaRd&Y=&;MGoDO@8p25?*~*@zzd(@39s)^`BuTyq%dU)!X86Z!I!mQw%9jYrpK!_)
zfJ)ZDgP|0KqNK8du*qxesF#e%nPiQTFqS?vJ`JnDjqFH0+DWneiEtc8k%`N+1dG5-
zsKgwRuWY-!%uAR6%~FU;(Huy;Bu&-;$7~WuMX<&MSx4H4P0x%IzVyq<WX;O-C~ZUm
zZmdlL=}V)0iE`wRJ3&gcTuRuOO2?d;<*Z7Vgh>>TNtzTe-t<ie`~xNk0){9uHnYyG
z{}iY1?8bs1PDwmYxoot{OipRcP1j^kk!j7>^Z?p?Pil0}f*?%kG|c*p&y1i?+7paI
ztIO)d%5L0C;Ji&{q#b9Bmr|%O&?*Q;5HunL(3gNdw`7@9kginog9x3__1jJPILD;W
zP>yp@Qqw6tsTANl1wWvIr;^Xu&_EV-Q5Yqd6Frch1VgZ3NF6n%)#D9tnLmY0isSMq
z2b9l`vJIBF5`MFdK0qx*@sF{fjty<0k4VyzbD1w}P)=jO8YPL0kb?j*g)r(f8BNiV
zV5i;l04VK|kI=H!`zXF((u{D@?*fUp6d*D+Q^KIp7Y)-reX%|T#1;iq`E*kU|Ky7?
z9n|8`FjHWwMBPGjQq#7R(<yDau}A?Ntx$pyE*0C;4((L_Xi_a@)G~F{*br3-^#BT$
zR4H9LP6bsD7*kRGQybkeC-jfv(A7BYRSxygRt3?7;nbJdR4+ADT;&ncSk({3Qw;69
zmiUTn6j4}vRXA;pQe9F#yVEW0steUq(VG$`aDrzI*I$Iz>a5l~xmN#ZSH6HyuX0uo
zh*wsn&|3{udTmx=_0)-~*LlU)7(KUs^bs8d*E&Hf1zjBmJr7Yp5mM+-J}`yR$i;y*
zR!|UyJwOFgsG}u=Smc^mT9m#J8&N4;n1+RzL|DGG*bx%QgFE>Mc1jnQ|Ako{L|K;+
z3#tP_fn3Joc!@+f1w~9q|6EA=sFsi5AnJ&aKp0jJAO(0ulOmP19OZ+fjZLLJxZ=Cn
zq<C2eoQ>!Jg_`(?IwB{PwG3%Jkf`+l>WI^q$P<HT+NZTsjMZ3<%?Pj++ft)huZ0c}
z$=k`;+bx_8P*7X8?c1>3LMz(YQMeMqMHNgf2(z_Rw;hvAB^Od~SP3aKD;$wN2oNeD
zCR7mBKxw<U<qNz`+=BR6iKST1a9kvTTo2gVg7Dm~3|&zTTq&ImpA{A-qud?)U8jxM
zkgeEw!CZ)$-Q0~?m0;7=CEhVf0lM8-D`L~?B3W2_U8#i$)7{>e|Bze37?J4B*y+7n
zv~?NjwcEKJ-}GHuQn=nb$=<c~kN7oQ;RV^&Ro&sm-?i;p!Oh?M6<P58U)Bv^<<&v-
zLqEw)81$uH^Htc{amEQ7F}}*7(F26;B;6GQmlRNh(o~635LmCO;P<#-+9ib`K;f8$
zB@iY!QkY=o+gySLixy=I8jctjPFTSd3ld;e_6u5-@LZP|Qlhm}+z<sSK#{C!z6sO|
zaGAV<h+Tp)VkCAzQn@}nfUr`4RF;$AO|s#tqK-IJrZZhu$z!=){b83(NG3)M*4*F@
z)=NDL<FNQ*Ic^3qE(jZb;`!tYFur4!>0uApW5@-*N;!y^{|G_mb>QE_;Q;*#EFJ|d
zzT&4y1l}mV9bseD*upEBV-X$+67J4HUc5$@CQ7zsIu_MKR*6J5h&0B}gj8iUj?fV<
zh!Vcx7rtdL9$m|wEn05X?p&}p_Fz7#iat2u6gCar5M>MN4{*uk0FjC;-eNb77dWP~
z$HP$$_TXTyW)C)I6!wT@&f_!Yi)Hp?3+_%u@MT;63L94EPp)MQMigmozIR4vRMuff
z#=aHJW@|3v2Zms8`<`qX1zc9XQvg3j*w7u7ir56cfSZEYq(Ow{D+0<6*Kp;C204N@
z=oZ=N?u%hjkY}_I>4+)l9M0z;N=LGYWxLy#A(r1t|M>wtAP-S65GCFZd_01k=IJAe
zH2Ry`fT3xSx@mK3z8??;Q@{g?XaZB15)?RTvM6a%{osWj3zpbuHvQ@O&@xwU)rI3E
zMd0b4-a-y~=xnX(XzR{8H94!MwC>z$|D;oM6GuT@>9~gCO2X=7^J+i<Yhr%9sMhC<
zKx(CCYNxKOsjC#79_u4G61Ltu0$N0hj!*)^Yd$vVj%GfCo9dSSYMAJ2u=Z@fR>V@E
zY_Hl-sMc)NMysg?Y<n~9geD-Q1;l`3(~HK8AHHn=VC=CzlHMk34=C)VZi1#p3feBP
z{RqggK<>8MkLEsWLGBOTt|b51ZN8Xn*)HwV|5j+V-fry{?xZGe<Nof7_U=*5;ApKl
z=)OKS1!&jty+tquO^N6VBLT=5)j#;_y+b2>{EGTU68t^_Bp`4kC^t9LjFDCe`3@P5
z?2H(`?6bgY27hpGSv|4fU6&N46Z@_xV~OWBYUN(pmso^h<+q?VG!VDq{b)BXIfW^q
zaI)CyBVemjATY9U@UzvF5>J?29a;;Uv_Kefd)sdhu&Csy@f!z9zM%0uvhlFkY96;!
z|7dcRcyb~dJt>bD$j$M|6|+fuZ4#gFoUN1=xAG`!wNVvvph@zA0Pv*1Z!MQyOpWn6
ztG6Ww-Y?H{N(=HI-?K@3^R>nAf~a#b|4&%FX462wZ`;uCmpJl&Mxg>XaMPF!IX`ii
zDygtA^UOnvM*rYGzH>z^@<;b{lVfs8Kk!O7asRM%|4?-NeszP}>R4CAC>3O+pmnf_
za0HIBE|<SiM<e%sZ`N@rmiWt3z+gNWic$TD7NT+R8;SVixny7VXziG2H?+SLZpA!{
zmh}S^`KT%+fodUvZy!FIGWH!Nnmx&*6HD0Q(4in;%5=9oq(}iKp^oDYaVbNUjM#(K
z^IQ~{U3>>JoQ63t=MTc5_wh1!S){2^0MU;+q;Us}AK-Rg_IH5y@hNM*HA@NyboM`n
zxroQ6atHV9gZSZ_4U<3jg826q{|b0KA$c8YceH)^jEH%{R!n#wKHFa8*3fo_#uJ2R
z2^*WRrWJaAM-t7Ld6T2|nz(t|ozjJGVGw0`hu<-dSMEb=KAxAw5kdAisdlPYWGcIQ
zUF<6N4tw}m_GU*Rkq<Q8g<F&F8#eH53>c$fqeK|Z=v3iLY?QRLbc2+XinMgc=!VhV
z9U|RGN`th3fS@2CC@;U`ec!)f&v8HZuID;G=dZ?(No6kD_h;A5uM;F>5;PHig3La?
zdMW9p9@s^EL-xjpmD)<F=r-Hz4r$^eSN?nW<?qaAx32HK>uU+RUt0HJ?rds(`Svbr
z>#n!|^JNS2iDC4(rn2j#5t5GxTKw>rYCAG}dhP3+CD*ecBxk4=8Ba(pd-mq+!a+Lf
zi5_$C-zAp=S#<Q{_Nc0*s2Z#wv6FxGCiFn`-;N8*&wEA9eg3E@gq5`=dQCd=^~PUz
zMWBQ}NzwHcDk2CG5j34n6#SxD8-o){4(Tz8D)EE{n%)2Y@FBp?V;~s+!61D=O=C!V
zr6<p@5X(9P#vr6RGO9q+iZV!5J<y#(E()ndASq{0Ri*^f!m3mJFIKM_gqJYSs#r`L
zmC34_Q7{`qTCN=c!4ub2R;T1bDY1gzDXT|4Kwrcc0R=kKEZWK`M@j;FW2yX-K`^CR
zYncWf6ZShAck9s*>0lCG@3&QBt*;~n?AbY$DZ}9e8*t_MgV8L}B)->wE_T)HIrweY
z6x-M<`UxJ(BrnBS_R0I|D^Efj->8-AR9oJ^UR^v^YQ@`I!mZG+m5<4MN+}X6{$!=y
zky6I?Xdb3RI?5*eyh7*3x|`dDW8ki{5dS2zeO%WlO=v2+C2Nblt@-<6-7fF9i#qLh
z+g&jP9W~y%@BEhx(9cC?EWT@Q!Sz#V!B7j&^q=A0#_*+FeK6gDsoJl-utiIsFRl4b
zi}^2&%$DFB3`Ps0=mLB|lmcB8SJ?B#NRE0cvseK!JjzgtZtA>vX%KA@MwY^$DB(GC
zMp2@QP<fHW1&X%#VLR_>W=i3SJekrYRwgtymklPztjGRS)_79!d?(f9PelH6yP?*(
z6#ZP0v6$x@G$qW|CDSXaqPX?n>>@Aj%jdG+=7Pua%obqs$in<Y`~;=P=rOyZvi)B2
z!k7|8=;X7qq~gNJJ`*&4P7}t&4=ZGdGz~*)3uB8=Q3zQrK?mVtc55;jg7PCEL7+YX
zl(IxXXD{CXZ;V4Vjs(i+AKhpDDr*nO#a-RP{BEVN@m~~8Wlf(lCfz#IV6`=}XYm*t
z+S2UY8T3T<KnZPU^u79Ap^~pCaU+YrmB8ROy|plqq9%Wq>%Uj21baxHdI)2d6T13y
zl(srK;eXD;wNl*ts*b6SH9fauhpx3W!3FiXpFLIwS_xR*3$%%j$JF&PU{p66!u~n&
zef<49U3=;(PRy=@Ko_qli=E}Z>PH1lu!Ly4hnj@rpar|hk6A0f=rP7gFV~t`#llCW
zDByER*JX~pw{O=<Tn*fpW&11H)}1U(ju!|<c||5F1C>10adB4OWeA9_7wyE$GPLg|
zX`6Z_yigajN%)UasgK;+CpiL>jWZf@kScuB9`ChSB%WABX^@hjl%eANo@n)*9Dx#E
z;O&W$cXww3XIq^0x#(YnuX^2oxj{d`e|x&xyM0K+RYz|<?=Ht$o&7wfd;<RdY<UPS
zT$C-!bzNB~OaJ+`{Y|d>S66H8;h*W&5B|P?hRxc4%O%!&CuQZud%r}jl}|kf#gLwF
zH=^?HUMPZ%8LmfOwlK<18{ZR6VDTE?OOH#E`7zTo5vbVpQT~Ix$%v+a8Xfde_f3nH
zMlcaO+Vwx$76=z#V<PoA=w}28M##`JlSjA7!fP<f3dYQo338q6GJ;WB+05`tyFqSC
z!Dz#^hYF~O0l0@?jCgW?|A5_)aDiZ~gE7ma)q|m@eVXoO6UOx4?S}u`7L4~^V`02K
z7?uVJF};~LMiAORWbuU(qKsKt9vv!jlV~Z&KWyS~+mEVP3MFN(?b5Q0%BTkkB^S`M
zAyw?hv`uG|G-TMgjSk0N_6emnWU~?JmdicT3iQE@v+>63&=68Zl6u<B@~3%*NU{cz
zs$#PRf;}g!`QAjjL+(>{OO(VMOGq-tE;NM`<|l_G-()>IW`7cXF)5r%iP?&=<zF?B
zF=BskJrxHSRa3}dn@r?hJ?rEEi>E;sZ(xzw$as*pknhniFExarI*~Vp*X&&Gb49Q`
zxA-*k<*&S(COc-K%feVg5pA;S(gX#E7ni$l@<cAa>?mj|u-1zxu@90z|4+O@E?}FK
zfmloVf37DFv<SX_h%wGg3SHpmpw&HMgawAz#txDOYS<TMZfRpFVAy}w722Pk%w*b%
zDn7S6(tgCITfsaCD_=cQ0_87U`=%6H#P%6%?dTz5n=AM0k6x7PR;N+H>s;Bmb#B~s
zKlL@2P{)3gxL2wuOb(jDQF!;+2<KL#FBL`xBIZU3{#VpyC{hJ9Ikvfs${rgEuhF(i
zcbNHOFqzoGt{6IMCl;O9K|<Q#BgumfRn|=Krou+SU%T!Y7*FfXx13tDN@zAzO1pAN
z9+Ar<0Txl3ySxxe?ri+bx=IO72U01h98x_9bYw`~DaI6791)fLb4&p?O-zo0TbSJ%
zDz~4nI;+9ZQ78aS&*{mJ4><IYFGX_QGi+Kx-?&Yxu~!{Ra0}Hek!3dBB}HOWSD8D<
zO`JS1S<qH6r#iX8uOKca-;t<rVhMAE$r9fQF5*L;D7Q2$G>3t#-Y?4{DkmQ?2sWs1
zci_2a*4Vs;9ZU52ok#047K2B{Na}U3E_UX)lsXHMYbIMO*7sV`!+Iny)3kkdkcH`)
za#Gpm!LS`hd9hLPg(!?<oh^~S*r)S%bzUr0ri^MW6EYpH*)u$>KcYZglVr6{MOC{~
z`x%B2dLo54+jbt%4tC4m^?gtL_L$VfyT0eR$;f=P<GQ+@lM#1$$5vG+UfVthR5;6E
zH2KQ@eR<Yh>Sv9M-&bS)tAw*PWxYuGea#CnZqYLnRX_s8X^<ss#D3^c&>5zM*@%1m
zb0nj}j;SN*FZ7^-t~y1aAtJJGnNK{Dv+chk58*o44qi!Hso$}+%cC$_)7dNw<<qVE
z(bWxtz}A%pZ!JV|NEx{GOr`T<%lpbsSLrPbr<`V1mHE&RH2#??dt7?d?Z}$!&$c?$
z233p|cw9;Os?j3xkTLRZ_oHUW*rFpe%E(xbpItx8V(r)3rtywyRJ$H1F8KpK^Xi!G
zldL(zqS3@`FgvwYQ|Wqk*^6~WxhvF{c>l|+4-(&!Lxsoe`F@=i`6`;cCuw%vK2xpE
z(YKD4S>`Cd@Eup!I;EmoQsMiZN%r`=CAII!)MKZ8_Vc6@2fV7P*IZI}k1W?DLkG2F
zI;69MoZ?=(?RKi%gfD`BVU6yjJ1MJ}-Kt<z!ih(Ia(|dUb~{aa`hJ7kCFB@R-TNTz
z`aWBVfAe|L`|){%?WYe-w;M^fS4S40e#;+$3&X>&pF7a2Vt;t=_orOjIQ4yd9|bxV
zK4R4X_$ep5ywVXMG1_`Da&2FI_oCWVvNv4m*2c<T3j6iY=FN|*JnDKr{NCtZ#;1E<
zmrfY}CYT8y&|Egh{XT?Tiz3inw9tvXYqm{Lg_*j@^ig)M-WuUf#`v+@#%H2D@F^|;
znup_!`g=Z@t+}bLnd@{1B@|!$@!H&%$XsRsVK%Xedt?Rx5&R=J|AWGk=$U?VW8AeF
zBN0zKfo$O@kM9#3><XI8=re*kzW&T+AWmgOyXJ!&EbhvOKR-5Q5M8V+#=qB0Ua^Z{
z8fFb@5(WEyTsbOdLVLc%Z=i-t5JyEaMM=_pgX>{jiMT?tK;&?yJ_f%%bqv^mE_dYd
z?=7o4n$l|;n6H9x&p=0UPkPfBGC8{TtQYC3q@N!U(LBa!4W-oBet<U5c}Y2*1atfz
zLx*g0N+nl`;Ba;1GBaD=Nf->D=tMzegm-}qn}K~71zKALd_#j=E!+LOTMP`nLJXE$
zGy_V>0nB}1#9gQWMWJA#`hc;OjP(wq`qpAHbJ}i!LktT#*~-^-$6hz8QV}NVOq7<<
zC*eQQn^PD+U}bn{g-loe&%5V84{8P?D?x@GrLt|iy6sT4!W4nR`{&PgLW_5h4J_=5
zEPh^vGN(jMu1bh1(p}sF@9CG1J*Xc&DU_9BLB&O(gskOHanW=|dg<HZxdV^<!{}#=
zo&>RSMOdq2tkwIrqRxsGI#~SLbx}WA(05kq62&D;Rx$_H^d9uc1EvEnlrCMd^uJIY
z<st_xE9(lAjQ`F<XohJUqD58o1hma#$>MieB(`E8jQa8d&xZEj4DApxjrj1Ple{)A
z=#}eBN-U`JST1uOyt}7{0N5fS`%2fq$rGk;U*cicY^v#?IdX#GGVoiZ%%NM<YrlQY
zkdjR667WAuGle88DMf2MB?PvQ^Fcj*1}qnoWB116+_k#DMlrmn0n3X9QpSL|c+{GR
z<^G4XLP(+MLCjzvfm|<g?K$RbA9dH`vLg49wa=C6+bl!|A;3t%*@sjlwQbP0&$Znc
z1<FUVTW<BbpF%kUf+WjJ*F(N}roPI5#_?8}<DJxmwVqPRE(a7->P1l!yQhXPq$aG2
zt{o}moaT^LP*vu!V{~R$MZ8+(DLvD-tGL)wm*CWzuzf8K<?2xhWZ*o$Gm9+gi4=Mf
zRxueN9v<DtX=YreCU+3BG51E{+grWTsMAvK>w^z^-@>>!-fVM5932!Y+W9@fD-#IR
zm3XB-V&{wH(2`(x`u!~)#2GoeADs${qA33WI=naa<*d^uO7yTRf6NYLEpggC@c7r8
zEFQXS&;E*z-Lh{qu>zT%d5|s?AMyD>34#n-*~%I!x7I4rJ4I&yJ`8<UmLF9bNOEY_
zUBXOci$3N|2B{zdY)6aAWz0F}Vk_{$<K;q}=!f~-ihasaG2?l$d@`t!i5ATnG$_x8
zc2!l5!;8%Y6J&!#x561WD{4GgxDawS(D6Dtv+C0nf1uI;co}&OghwouutP0%zc<@*
zlgLzt)v#BuRMdN;YEGA4#-%~RHV=1gE9mhE<_+FY7PNR%R~^f>`9iBM0wX84r<jJi
zNQ#uJEDkdmOiEB~vl-2n+`SYb^z+g8NX0K5@(-<qTYcV@{SFr17u-Q2vZ*xt4GwIo
zzENTdL~U%~flNo8>DbpMJh3p6F)1hEsw$@t-ELca$e1ZpMO9eK!>2<>WvJdLJLhy}
z)ccP*%AC|Lf8h1>C&OWgsadC)Y`Nio+$6JUU!1?0ZdS=3R84rJrk-&2>pw~t2&B|W
zX<~P3XK?JG2wBJ-Bf#UG?XLdh{Cd9RcwR5E`>5)%AwgYG^-?OYY(aJG^1@?vhjioB
ziOkBm8Vg#%li7bf_);|6AjkK}?*V-wd;4;`bc}xMNA1kqUpBOPY^z%EYBr)2^^0rT
zTbx(?vCCA>RX=B{7NR&Y#7G+Md&YE`JZ#bK7rFoEsG2LQ9cP`c82nhFHL82rCiuPE
z1P{6C+&-G0AV);7i&j{nI=17#!sEZJdGUA6`Sg_U*T2(_z6W}GI;xJX;&fleH4a^u
z)CE#SlyM`EaXF7wdO*ibXT5i}C4c`wxFRfWRtA56W=8MzR*8h8kCQKqkFWS#fgFVQ
zc--?)LL}<PNR7fH_m_<Ggzz>v*Sr%N(&uzKF%IHajc{eg)FIOaHce{Z?7F0Oxe`se
zS{0pfVwP{2NnQoijRVhfoNS1%lu7Sho3j;3(p)D^dGJ<4@mwZwuWIY;1pf7f{9_NH
z92bDSLZC&?BH2Lq6tBXs*+YK*tohLp3cLL=BPi%^T;H{Q29XxjT66Uvaye&kp<X?w
zj&`FlaydJ#Kevsd{vl95AV^v%@RRF2o~Dk0vX*IFAOBU<nYufpa098VdqbJvpU)#;
z?lTWtICI_^`C<t2R*>lH`JaU|nz<UL^Wp{@qi|waCkT|=awZw-2;~H2<jNuKDtSx6
z?{|N$Cd!a;HlpQ#Is}d16J&Tlt!xl5i+<lkl14TkDT?Ij|8f1L#M#IDsF5%J<?SE0
z7hT+So<r=3P&h^{44074bo5XlU*^u`J!>py+b<q2Rs3!AtQ&6dth=@Sukw)Su8QJ0
zh`TzhNe%F@|H!H$S$Jf6ffnNbrRqB=9WR3-75qsh&#Z66m<Z@dbe`EBc^-Zt(jOv`
zq-2G?sDKhGjgzSoSy@S3RQ$^mqm)xCOc#xBdgynTIcrkux;QealGAoWuf3HU&ckcG
zz_wi=1K#4B9*-B34rVSsr4;7NdaRX)RrdkB@Oh{6;$4HpyN?nhhu1;^l+8M&O~8MO
z82D$svP=GN#0;?Jx6>E5%wekUv(30K6=dHU8ikm!Gzvv42vd5zr)hZsXi<10QWMpv
zeI!KKFDFYaXL|KkeY4r<w$V0?Pim-vhhu}Qe3(=54SlW*6BnrdXN9P(Ev9+{R#f89
z=usB2eV>0I@;ZwVif#FE9CD-k1``1iqf~OsT6AHIbSZ7otnmnM_wWT@!cNu2t=zUA
z4Azkl&Inuyj%a%Zv}g2H?ZxA|HQ@`ptD3j(cX7u_A6V^8poK^vGJxPs9*z5t*8<P4
zn%@fhcRuwUf9luhKx^;nJf(E|@4fHSUf(w_YYWnQy<cwVx8OhXJX}$8eHqOhapftj
z@zvQ`7&i9yhyFh{&w!`T(gH;hFl;{LVR^|js`ffKtqDK5RZ@1!hx=JDsVDm>uBXd2
z`I0&&MOAm$Q{CM259gKA9U3X|v?feB_C=Fvxc)!1m)3Zjwf%McJ@jv?Gb>aq5^pqN
ziuwM(QIGKcsEA5WU%9r-;OkhN>mb7Ga*S6U&2>r>e_EC`YmL|SW?SUylebfz>YG=(
zW}dGpJ2FbYW{>XMQP0xy1tA59UJE}WI3u3u8(<vpeD@{N%_pE}756JWkRn2y0>!ZY
zx+7lV&o7?RL>*5Vlvu*NX9Y`SRewk+i$d{z1oNXKqj#%Ho{JkNat)qWKKXxM`j2@f
zh1WH{Z!l-@%?71Ui(@X<$*;d4bqv$_->O}hH0BL7;)mBex|YRzm*0o4Q-riWBFXkT
z%UYTXY3+F9HDA%0O`DbBgNyh6;7`vUee3tlNXm2N`^Sqj|H(Eub`Q(-d|Qv<2etjc
zz5kSVYr%78V}0K9Qn$pI2aFThwJ6ub5mHS^_*KsL^B8Z>ht2^)y*_duUvuxvoV$LD
zyLh|1SJvL+uR?o$Pz&U~+8aKy>7Dr4+cErKrV*WGNj|a@zP`tIQ5O;&J`%;GUM-I7
zla8E&ze0WTeG3rh<H8+PsVx*Ia@wh&T%m}o2&-u=AEuHJwtcy!E9JL}4kbk&S43>C
zdoD26wTzh9_kWoPTuBHv|I#ThF5W}FKJuE@%UkM{#E_}z;r9AL{=pa&pvf^^3`2D<
zmGl!P8Nk($``X=Cu6z8Q;D77to<lqD*S_9Xzm1i7%1pIIE!BVRw=uWK8PgqY*L`2^
z>c3TqcajwTN%q&vFx}SP@J^$~hVt*ERY&UPQaHWxMvCk$JpbtY-=Ez6YoayAXa2y5
zCw-wpr~2r_AHj)}Teo;^X>`Q>szcpReC}VB-v<q|_(}l>)*rTlCAXgr-}s<T8`m#6
z2>*STMtPEPlHnpXaLPrZg{E;L13fcEX+0mhl)`Wb8DKO;8O&iwdXl@Dm??QuGB#+D
z-Hi26U?7adNydG%FVH_TzigDORGqX?PEd8}IbtjluI8=ixoa^{$RoJ~Thc~o<WELG
zdG_kd$}u3yKh}zUQ;Qkyi5=F@8mzTq@YXBfO23$&*MQI+UpmuV%szbp;#1xK-z`>h
z!qn&SZdSt=5=GC7IhFUukcCeO=fTW|No5U|JT_5d3CLpQNL|?cYuIFVme-T^<SmER
zM5Iw%(2cb)YZ%(h+8vslgwRq=5JGaX_iqixb1+62U7bcx6mRDkKW_X!nRDOAqbm+Y
z>L4Kn&WWHY&MMHAT^t2#RDrFk559%sB2JmMyA~uUO8bnZ7dD%@8Jw&QIOpz0?N|Qj
zF36m5L3I2pgM=aw-uw+GZ&eP(b}-sCC5vNo5lqL4(D5SjLgATUqVuJ?{wg9l4K$un
zwg!UkwbPJnSWu@Oxm0FEpY)xCc>yijV_ZO_&V8j)F)Z#OoPHmT_%q3R4}f8M0vmMP
zRRgm_8VHbP;>9qrOzd_KCSX@%1c}?Bg+;A}Xsg%K9Q_>RD5OuEdb*RHq{=$^kod31
z8%u}+Q#-jT5T9IVXeoQaAQJ$5>xK#5+Mp(+hDU#YvNY&&lJ!VN;=FT-S<-d(F|XwO
z3;9P4DcUNMG?%I`?r|<vVG7(QP4iS=+?O^q_ME=xeYA!c%&N+&@mOTci)x~>Sl>=E
z&GCpdiMyzhuG**-CyqL%e4$cvTfQTodyD&%<jFFFU&1qrV#gLuJ`>SMBOY3|=5hz4
zSUp`m%4q$EUXq%n?P$SM$NFIgZRL^pQ1AlIZYDYudf$4n#+eXLd1Ha#C|-)TPP#03
zy^-z%7PAghNJywlmW1?4F;Sv_Fl%I5DcYsR{?`9yD|gCo&y`2zwV%|_f`Kt9xm`f6
z#Fg`DBT`lj6*UEdA9A+WEcv85A@nco_aAnGakaoV(a^>$bZ2?9BsLnH9s+(aW>=KU
zjsjEJI}RVj#txIBM%gmuBs!Op14V+`+q0ISl2zv}A8Yrsc;e@G!V)inI-SD`qq=q_
zY&+>~7S3HC!<Ih$^r~vz8S3C%w}_YV(6ReKptOuOxV`9;Hv3zEO68|N+c5f1>PE7%
z_R-lI;kR}93HeX|{Rk6(@%REU#$keJHA%Z=y5Dwmp>}7|yxHMCb~N+FR(_xD{-s$<
zFo8pV3w_mn6Z(Vsj4*drPeCM&_v{_JAj7|lVd1ZWd_kF6n`bm-T_D4FChF{UdDV!n
z`XYXBE~{mHeoJ9$<+_j+Bc>xmPBOsIw1@Je%zXy@Zm4O|D`)cU(>6J2X6HKg;c@dJ
zER8%;Jt0bW{-G`$Fa0|(4E%h_EQw+(jrV6Lfkl(0c~@E5a0Y8^h=G;)P#d+>Yt}eq
z-PhYVji5g8R-6ZqD)l8N4Xi0aAVg%86qJ$t6f}gPvEO}uI+BL=*Nl!HP@yNM1gk`y
z$7SlUuuGl=%d5`{6uf2ORLg+9=s1rny6;kB4PF>k`)z}v?k{4zOdNYD@1EkkRcO?q
zI2t?AkQz)-!vCs#JQ{qE<mP2vl)Ic}#U&J1b5U$ju&mN+*T~nHTvYg(M%^tgDSMB8
zWT<Y0=1omf&PnzX{W|Rnug^)jmrdU!&of^5ohIe|z4#^#q|<m)Ae;jdJwV@pUWD)^
z=M%p>kY%FNj8so9fHxn=<I8IBSSA;KPkunk=(G~zl8e|x50x}CwNm1A3h9jwRV?VV
zGd?Gmh&CUpxn<79wTMKEUmm^)q|?bKNhy;TJ<_}#)gDHql&ifv($1&TEmu#eAk}rS
zs>sx>c221@xjcH=t2|#>AzWo6`u*NuCR4AuCZ$@7p4)m&DO65NwdOT^A`?YRBZb<_
z)eI;$JEBXGzJm+;%Ws*pwJf^gwS<J2a6tc&ElUT?)uc2Z+X#+hTGd%eBd>8>AVCkk
zPrd%n0U>8JmMfa91@3+Jcn^4%;p|Z{LDrk-Bn_XC&;C!EBhOA;45EkTGUb|j)W9~e
zc56E&9<A7uXlKdq#s@zavK^9^I8owLA(&W!HaLValSwu5^%e6b{D*m+kHQbr(9TOa
zGy-Iiw_uyvec4?5@@W>W=3TGkolGF7G7zF2v+agP(0{jOj*>vUCiNzeLssFM11X;&
zS(oVCufSWBC#|0-H3!0_@4K3BDt`8`Yl4xRS(ZduG=oSIaFTJqh2dYep}QQn?mxCx
z{*iMX<SP79!5GLly!~DrL6@N*q7|0gXPp{6?j|7<QyDSo{M{eZQ+{OG@Va>AXUV7P
zm^ZYbVq`dQ1q)FRkn3U{39Qgl$x}BnISsRnW2+8T_YDyfTWp7!*I<k&ETBC_UX$Y%
z>t=Fpc2c)uwTBi>g<sd~IDbDAlrG_Xj&0cGa-b7T&1Ehj7q{ulF8D~nBATX|<DmOh
z_!DLuvhXa3_RN{wt`v~tICLGZ?aQ{H@K0Da)BL-HncU*-n@dOdC}R(x8iu7*ZM<}M
znm?6aq0yvk_)C#^57YP^oviwxtS(xy4-^y7NcFXSnB9dw?IjRr0#d5#PSl5haaGf~
z%@hMbe&0jEiUBtDejlZk7dlOtyjqohe*E#XPfQDP)oS$FB&94LyGHD!7&tAN8vY%3
zGhz09FaN*phhgc)cjx!A%5e!%qzd!)N;mq-0dPN3-@RJU(>|+>@Qm8bZ<1GD@LxXU
zunB#%5P4$buYnG^wwvd4R2>b`e3%T*)jl0eesl7A;v->jm%tt2v_|hDl;!F12iiYz
zor>etR(`|I1R=;Ez!Pnh1%kF?1fx|a)RrUT>9Es}R8D;i0~A<K(u5YK16s7@dgpv1
zgODNCjw34fY@vbIQJivtL5y50tT~Rn1VVB$)&CjIZKjNoAJ}@b@8#1X0UO)2+c%*f
z1}_qzAFr|tJ%?}{&qAf|6f(E)dm5?Es_aKjveHtk#&g|z8U0~V(h2kT-Ru~bu-&XV
zpEk`8JlxJ+4y9A9ViIcd@7V8tKTf&o`{jq&Sv0u$!0_Q_Do+6YDgu@nc#29VH~63-
zhba2S{6BCMh)V%_MRn@-n_u#d6yVawQuBGymf&8&8KJs00m88p3H}7LSgEjdSYju8
zHjVRx|2_f&Rto~H%i!KJlWAD|4-n1X>^t5&mBE3j1|t0dU0NV!-{^G(AY7_!GW~%&
zz0Ze%2yj)=<Us*oY_0Zn5HlWOgXwo}!~+Y8LZ!MQ<Sbw)^vKc<-!(HN9l>O%0#jwe
ziyelo;C3;*8vO@=d&-i5fEySTxq7di{tNPunDd_)w=pvCmIld7R$^^)Vm}#zjA?=w
zzy~eBE>0u<S<u8#Jd9`>DFGn<;wrLIcX`B2)@VhciKXBdWILE9IiI#G()cPA0`1-=
zk0m2`;X2Umf>0;NJv}33VNnXIC2**b_UEUfB*1@%!9Ne8{@X+SGUi`;J#EI!zq10^
zXCl}g3gLu9wmF3pFoaW5LtBFFQ;%gTo1qH^J+cA8FIYg2nCV?)>5}?H%kC$X&#VvB
zdr8Xz&geDh(HMpka>iA197$YU>AuJCNQ4m?Ww62<2UlrVYo~x}<WD#DI(DW71*f_a
zQgt*BLT0_qc@Y9yrEph%usPc_m>!V`WEZ)|$gl;~1}>d<ZpOR_a}u|WxeTyj@179@
z3$nime5yB#!&yKl31AVWa40KcP9UDw194hya|F+_sk}CoAxEYrGViN6N$mVMAZA4-
zvX{oXuN6=w#hRH`dtfLW6?>R$3iwd7wCg{4^8|D1j#w1Yu<jsOMFOcRP_iISQJ(`B
zg@*kGz&pa){9hx^W^pbO`PByc^kp6+Pjrv8(kXfm!7Mh42-5WXhdb`~SfMw<nrF_(
zS_!{pL_$YJ`U`3Kn90>GnD}?`lq{nW%saC}UZ976=Dk{|E#Hk{&f7jx@QI((YlJ?3
zV!G_CGa*<W_>ZFZJ+ro;(F=0-I)06OUi}{?zg4*?HN<=E#a_<IdA#BA{q=;O`6*@M
z=`%~FSz*eIIWf|?<`N1?D@)0w0`XGjXN%--N0OK(-elORAo%;F;tQI8Qwj#++Fv8$
zswntqo6vrr|3QO3;{}nLu&@EpL`mug5FuRHmIPk`?5CTI0U;&7&i~-cAcVZw+;^17
ziXvJjFYed1<s<$A2Eu-Y>OJ|#DhF>xc)dj&`3guY22N@2-Nl&|VaDe!zYBS_NUbOA
zo?QjAya-|Q|9SGefRL1h?FXO3vub(jII;B5wjn2xgP_YycHTjCmG&B!hnEt6h{_g`
z@>keot^$+KYstmAr#Nv;T_VVN*flHYMG_wA5bWp5!(#?x%1X8Y$?`-OXrxSPQm5F(
zTsS4dmH_i;(RbSX+y@%wF!QEEbs!fke_qS>iJ;7KNe?)(8m910h6(R1w?q`*QkR>I
z1$7xmv90$>U15eu7GI4>T2yC}@8w*dK2SE_Tq{1J>FN0{{#k&SP`nHvoKFEw9)~b$
z{_-$lceqIA?;#Y;wD6JW!L1c}gtPNP*7dhTitggQ4!JGppFe>3-27=~53He2mBq$*
z>&@0?v-2sRT>czW$2*lukWsU!(dCZ%H(_>>U=!Rvy-OJrTD^zg%~UPl)Q{ZEPtADr
z(vVWm;t?DysAu)#ow99TJL-vbExutfTuUoe+s4C|m-~P!kXX%9cPa*K$BsH@C6U&#
zt`SAPeWK<4U|%5Y6M8P_ZS2;!ZCMT>f&DKfvE~H*4!9r(0$InTAjc$KQCb<YAW9Aa
z-5H7kUgjje+$zWM7fwZQ5fX%?XMk*k<zUyG!2Bgg`YD_5kUh0J2ZfCFTVgGBCNs(U
zr=z0AT=-ppD<kwfZ&hpZ6%PsCUn`(y3+nrAH>+BgKwXZ~pYFUKOn7NbP-^FUlyk5B
zYeHF`=kF29S8|Xh_p5Cu6;5sY-yUx7D}Qn`*}8KxfQ;`F%>}HGZZW5ceeXME(rZ48
z#<Y6a3MDu2;hcx?Ojw>Mnn#x{9#{vzzuNZpv1V_7DPS(c6@=C9qZV&u#?|2FZDf8;
z`O2Z2SxP`w@#_K(#(b$pjp!F>a{3*Q0MbRQ@kS=tE6H*+1jbd>=T3B`dh_KC)9;5h
zM_)-ffBYc-a@PN33M?tznLsqxcx|+qi!VwQf)|AY%UQWksrx5fdB{kT24+Jf@oWm;
zhrSRJT6nM6Cg}a<eYlr?#S=n3p2Gi3?{OqR8X^nwrX!mC7oic3!<tUA2`JWxavO)x
z9WzU7F%+4CvbA`@wNMQXIB+Rin)PYXHDY)NGS)A9Qw3Wnlw{YJI_Q@=>-WRo)*dKA
z`QpC3lMzw{!eBrcfQbV+U{MnK;U-8vq>x}cfYo0RQXU|sm=EjTj#QJGJMQ<K*;5D0
zn2}%Ez%mjt1`^Sp2zuH?wi~~nZCXcd`lrvB(C>pQ`>a*H5@UbJOVKKw1&3HMCrO6H
z|E0m;woB`a>2$ZbbCNtc>!J1wN;@wi-!q3&0N);`r%P_4ndRafFQl=whu&>jAHB++
zsJOiyazNC+icSwUJ+R3H0+a47!<C=sEZ=b5m2#!qE$ef<aZ+J4BFxKD$VRg}^l0S{
zXE@+>;5LUjcHud}&`u+^E>c4-W$%<&a6MOG&17ZHu!vN-Ueez^q<1ftwGJYelK4S}
zj5*0n%Gftlbh+y?bC^BY#g3Q6^LG*fNskHwi}#BxesY_x$Y}ks(#v!M+ZF8KFJ#MT
zyxuMiWi9Jx%T>$NG@(sh)GqlFj(E~hC{6d4zO3LA7~Dy2trb-9hSSVim%PHJau1*9
z8m~a5tjg<K)|Pn9Ybf3DSv*~N%z&c6Sx0UGQs{R<?M+`6Ctj}BMangA{O_`OkEXbU
z8q%}51gLCX;2}iSruP0m2pmIP$AZ`RD58Pbh~IxSU1C)XkZ4&ISs#2+|CBkAwUbTc
zQIgD~EwV>VdmSyWeQNd+tDIN)lfPgs)sH#7T5q;n`I*~7Z`%_7`*$GTZWXUb4P^%d
zAF5bL6)eOvR(o^hI?7i&YCAhW-gc*Uc1n-sXZDbS^L5TQySh5Nrf%PUx$WHguX~EC
z>tj2<)MiPhd3~WW!EWcLzee4Momr6q6sN0};#eFS2hs-gr-$neo;d)9Dw{?S|Lg4I
zy=(i*MJeLjFV@vBdDoAY7?AfJQ0f{`yBpAy7}WJ0e0fK?24pao7_xad6}pBjjPa~{
zhTi!Odvy)_tqqUfqiKRHMk2dLV(&)A0RRAsD6VTX=WaA#VyxJAth{Ti)R>r0V!U}R
zOE`P*<K1|##KfTQ#OT_%bpB(1iAgt!$>pxe_3Yu`wXtZ4(X{LlKlJBwiK$E9sZ09t
z*1IWSj&^6)1i{B?;=j}6eiPCbk2kW1)`4^zC;(uS7`rw2=<lpx&hR*T<UIRxh6Igy
zAkZOjO6lXgn%|TW)3mPNmmIh0(KQGk(+rw^L9`31fTbXNOj&_g5L;VtGnue|Jm7_b
zSbrR#mYhrL1ps;g=_bp>0klFNC)2iwdze;UchQIC&!uFKzRCvx0)XyY^MihCqw6Eu
zIbUWZ*I(XGei@V?1oS|nKK8Fa-VnCH2Lvn<uR{O`eDSr7^S|TYBnPO?!P_|ll7Ta;
z*|b$a209?X4m<01H{%EZ&;uE&fGgF0!<PWSJkyRN{p#M@oLlc|N*B;0e@#<r@8)jp
z%f~&F-0mgG3DHe}K>p@a-+jmKjUSI^IJQ7F*st$R_w7wL2{!iSyC}(|COH5AYXD%O
zXLgaEVa<XVV2%ec2T7O?KkeRW^dCZZk4dgm`&tkIHi>+JG&;Fs1_8LUrh6t^ds|Yc
z%Ut`Pd?^3{OR*cL=ceE8B{%*`PF$J};BOo}r$1b#r!QjwkO7b07$1?NM;Eaxow-A;
z_x?X$t<g8+j7j>9i~;~U`6uOFfHuHIRyMV5KK1n-eAoZd;J)(UUq5dzg`zJQg#96$
zPf=%1Awf^+{*R)e=eLU)g<SUU^S?iyuKng^BDBuy_cH4jWTJ5Q?-$&nD3kspx^^wP
z_B-!>5uJT4X-v_8>c`LP=LZso<lP8wQGEV-RV_`~az9QiJt+$Wm~I~B02vn6Xj8lY
z$ufQa0z?!@s^G_)G`pQ$05tGxnIytU9#s^k@)it6(@YW*4%HVvkGBB;$odnA0J@CY
zcsTon`n85VL6=c`-&tz)yL9kY;oL7L;<|m$LDQkswWdgy?LP!fwsl!z?<xk0?`2p4
zyqd)hHhcM%i?!zcQIAzxs+Jq=<|<6aTdG%EU3bQER9b7+J3W6Lt&g|Xe*F~iFsoHf
zuafYNpyVz|E3e-fj^#BWE6>*|QKn``*MQB3_eYs=U|wD3fyGe0cM>)3JrxjD4F7xo
zE}R~=VF`ea8;^aUE;x~%5QtI=*X53v*I!p#ed4?xCm362h<@YrIhXMjy3V&3GMrWt
zZA>OH#|jV!0eZ}BeBYh}Du#1ke3}!Fx&B5IP|5=ectok{iUT0$#EA#K*(}`*ns|mt
z1iq&M1O!6S;3)(^U`IpT8Grx)_{|$PBfdEm!Jjk54kXZU<j@fD$-(adD8dRdKmb&F
zQY%G~Y;${tj|X6G1+;l<ov6!Py-Ch*s9!9@%TSI5@pJ2c!PPeGjo6J<Z!e?ZW`(iu
zr(37m?`PPRl<#LcwH)qexehHaSVZ$Ge6@n}1jxg2hy?n8gloU`om01HQLae<U=KVl
zMGuIluOT#m+Xobop-Q3=MB&zxuViEA1dnL&=;Yj$SgFAp2d>m8hftT$OzKGTX}=Zy
zvLaj!T(*ZHhEgeDz}o<jVWK4u0QxTK=SJwc_PqXvYX}D5>&S3Z#qwggYw@qWzqQ7`
zWBwdL@=-%p_LwY)mFZYSr=M_li15V|z%-ELnJeH-v6F!JexB?x2t}Dd#BYo<^+ZU{
zJim)PM>ZxJnFxz{I2N{<W5~`dXK}jHfhZpO_RT(?u8BSwVCUN=8KA()Ph3Ey>p&8h
z+#m&EGCi;n1lHJZkiju12LwWSdm6@RcsyxUF-9PPuvzg@ijr)dm#;6s=)bDITrhrr
za=GX_WAMsyGxMb#8w(G%zc$_^k;gh+|4(|^a?PTL)wl9}eX5b>zrRb<BgjxxU)`U`
zS@k2cM&STfpaE60xZWyTAnCs)GJyGNI_m*?zhyhNc-VtIojVH*SQxbp@dD6)ZYRrd
z?S8bMIlSSu{NA1U2l&~ui--^a%~^yjKuCg_2@iFjOagd_&*cB-NP|+7`vkzo%B};*
zqRy#va0E5QCYi0qIQp(Hc(@j3Ed@+Y!2nwN8&D4w!{9M_jJ*GDeY_Bkxx#Z@d!ROE
zoB2kR7@!oKsca`GS|@fENEU+yb13#g4bOs{$XAzWf;$^5_};~#CrMCCob!{fp7mu;
z;WKGJnjpeTe9cs255tjF0RTK!B8{yKJp-v_Y=PO{6SyRR4EQzy&g&#2b~!S+VfxMg
zzM(&Rc?b`x0?37Aj}d+%Otnv+0T^aIff3APK*4Sl9lkft6-*}_(uQM#M-%c303dlJ
z*JDm@5lqA*1bkX0$o#`qljph>O55C{axV}?8>5jJeOVj=Fx8+1boG2nF8e`*oB_oJ
z^eUN4pa=nA6kGn2WSk0AAlLFBfxyU^UdPXe9DXs+t4K6)oLcmzcmUphaK<?dt+6Zv
z@RJh=XgCyl(tNJgY#AKM6afI@)AXE#$r7Bcow<om$O)CF$gnAs0P5Vf`IsmHAH@_R
zyY1<UKlhh$>CI&Q2j<{oEF^Fl`A!a~0|Mv)1fC=2@fcT(RQT0!^fMeljNJ$mKp<8u
zN)WVJ7eSM?&>7T?L#w=lJ4m)9RnGcTp4Wj@dFd%0wFDMO^bqw4V5NX#0s|gLhO)>m
zH_5uo*_9nD;*cnQ%JyKTt}MDQ)(BUgFQB_DQ&e+!>10sqHT&&tNZ}M~*k%^)z){pM
zO_DZjlq$d&KzL5Tu|XvOVA9!wzN87*(6CdZKjqD8zH!hmd^mtm3YwOCT-JABS~lh$
zP$HztT(n<(K~wXoTjO`Dv!i*{d2Q2UY_Q@fAmM}ZE(vo!&L=1x`9vZ)AS@z6#(|6&
zFtQm-l7S+w>0McH?k^bDpyOjeB=WtTFBHH*vKTcH!eJ<)3jIMYn(5GZ`f4ui3NvTv
zp8@cR?e^(OTtLe19LsBaDycn)M#|XwsrOaqCULFjRiDm(qQAqbdLCB?Oqa3CgoS-I
zM0t1qshkUR1_J@M?Du1lZRXAJtce?2zbym05xanh*i3$Fu1(X=oZox2Op+})j5mi-
zOXczFj{)oez<<vM8i>pL!=6qUL~jB}BFw=I-y$$a<ugo<7*r(Co~Rgz17hxFotNqu
zF^>?TG3G?+1!x9rSFp00ok1oQj>xG+P~2QtXZ66|P~N}%ogI)P&(?`OKA)R$^O`-p
zQ4iDMrcxJ7{=m_JgL>7_zC^OSDqDcp{*5Z%+eIfL5Y<`wT=kbvvF&oXU+FeIp<~aS
zACqMMvb6<Zz3MaG#JDBPSIUGp)}4mL6+G@g@N(FGG(<Qk%m)q-jTmWI(gy(`!1z~A
zE<<N^cmTPO`vj=y014zBgjEQZFiH30v8Z0ADiC3_yx%e`?calZSkGqp!TjM|+g=rj
z*}cxUD>;dF_YiA{;%nO^oE>aP?N>c@&$?YZP=9YWR+%moj+y$UnGC5Ah~!em3v-T}
zbmh{(<ssT~$rz#ZJ6)q8d`34VTQ|TOCai{fB{S_DI{+^k4Cd~^Y-R{}eii7=VV=JQ
zOnE=`<C`gEHAmyGYZ>Fp$wn%{wlu07Io?)`xB)z~MVW^8O2wk5h#&O;=ohG~c>7}W
z#<6(9p0Yyw5c2o)06?L01QF46gtJ{gIbI#!RX}x*a0F{2bk|MMNM}#*3`EV7_<Ov`
z70>v-j9GCB_hDp?3KOowu84C3Xgv}Lg<y!&-s#^h_+JxvDsRssUUY3!n>l+VwNGHU
zMXVF2GtcKgN1etJJ5~vS(DMG9pY2uII*Kz?IG?k^M?fE59k@n>yQ;V?*dFl9{z2t!
zRM!9L(wQ>=D$_R#rVGR=;?>!zPIc*(w2t9w=|52mu^QTe3<mt8ga#2wGVcVSA44?p
zpGla+{cV_j#%dn$9S&|}j_j$V9eRhWK$K$nl~>t&rigX0U_|UcoYzJU_3>pg3J|bo
z_cX3vFW{wz_Mn2Nl#OT1VgSi?02xgn^{!{cmU9LMR}svYjv)9Gs*-||p@~pQN9f&W
zm=n<31=<J)xxNWnNqA^x5dS4eFcJRWqou&MMuMsLeh3dgDkhvNDsqoAdE!7rl3tST
z1+rB#O(SZjQw|D>!hq~~@-7WRffS1F078QVik>>c)@F)!OsH5e8#F?hh%?aEGt4eM
z%t4<WHiG874s)dmcYhZC*3<OaNbtX==bi^-M*u)L8TqL>j$mCl&5VE9g}+sLL{wXZ
zX#pX7T^NQYGVxhtas<_D{qXek$jr9LY)_8&5#c)lWFbprP5^*P4+NtD;Wr0xKZ$za
zh6XVv5hD>z`q5FIgz@^39c|HFOVKg!AL>bB`kuuMMEv*pThs`IbXo)7Tm$FcWg0>#
z9Cbhz-Ea`n;u*Vipxpuhbw6C8uVXhMrmtz@>}9~|(>Pnr_(#)Vw*&xl0>B~+Z&fkw
zLO=euXFP>S+%+e=R6yL8DDE*0H9ZDEPzSW2!dq*LhqhygmNB*k@g%ef6k-W5g9Ix3
zFfy+My7mP6<phSCgqq|8gjgc0K_a_XBIgY?^D_83g4#C#{|!0rhXByaV9*EGqz}`H
zW)?}$%9HdcaYbmUbu>UGOiAc=Y7_yLf&n$Z0gWszl@gLe!YfHCBT>&QMZY|nSq$oq
zpe_VJ-t^*6PNQ^!L4jnDsA(ci0F`ZIs)LuP&NR^nGHTUnBAsdYy`@sBCwbbN8@QJN
zwV4vlJFhge-ZUGpRQvW+gZA{8<#cjLf(`;Y`GDP$VVud+`NUEU=fEyVs_gP~T}p5Y
zEp?y<)bu>fhbc2PGA&byIvq(<{GhUWiRK+rMPeY{Zdq~dSzXIn28Hqdu25eTGynkc
zxS^^gpe~Di_=J~{v#gAsCK4FU^uD1UKTI)4(#(kEn9gN8xk3FRsW%U^b`5g(BiVP-
zLBpdd3@BV=9o6$5ut`ET0}7<*nrsmW(mez&8su>HBwC<B+QA@IRI<IGD6%f^l7Q;V
zVUGD07Jmh-j!I(f0bd^i|IlJ_46zPq5a(IGwME`NHI(XuE0lOX@5VkKxB`dMVHw2>
zILEM8VpQj1dCQ0J`}RBw8IbsLfslBCnP!3YVLoCEd%0Zrb2OEU4ojh&ud)IcJE9_s
zDtvJSXVrKZUg0wy<pH>;kkeo^8CJidm{TL?n^%clX2~1DxS96U<94ctMy|<eqEa&4
zS|!j2fzn9;)Z!2PL4<h|1q~Ds9Y>~OBSAxv&`ANPE)rT00J0Y=^$Va1G>4)QrIY4R
zjZL^0l*-@_c8Z_^n?a>%4t>LwT>{PgKvx!g1doH3dyAJRSCkfx6?lo4`f^cmP80cV
zrd5yTO?iP6#Y$t2;9k>2$Z7m2!_s>*a!3=DD)djbXGLlI5!}tY!o#~TLOdh7B58&;
zdlK`2!$BtzP(ANTpOsRl(Mt2JsyE^lUzKaNm237_;C&UPgGcaU?+RZ`g+^xCIvo~z
z1lRVi9XLvI$Cl1_BmuH&O&;34da6rN=?s`UXlJQIW<6bJy?uUsp(|AFti=BRbH+Q~
z(5GC`l7|JEv(ggRWKTre{~%(GhWTaqhX80L0d$b=fBZ4t5wJi2iq*(?pzWei<q!BU
z-*<4)G?Dmnx!HNSnP9O=V6(Lw*!?EoOBt6~r167B<I~P26V0aQt6(L^mRICpRkE~Z
z<%ja|hGMeDdkd!2A6}W&?TwX4NT7MXA{J7LX&tVBq}Z1Re}_90woZ4nO5DPEzBdRw
zN@jIz;PioVeTPe}CZf2T7|3!813&~SP)@QmAZ`0w$JW@a)~MT-d}v3(Dp8SRhsjoJ
z0C$_$c(bs5lE*SC>$V;JU(+wzikB)~4CbAjWNne(fo62LlbiTz)5Rv|ojLzCVa=hu
zH#nBGn919&ng8nOA9Zg>m;8Y=y@5iie5m|fp+c)f%VLeGqs{))@EK&KNiSF((-;V7
z2wf&Rs>p?LXSCTDH#%g@i1p}vhwG`-4P`YGt5W%z7if5AUv%~`1bnKYt1+`EvDQp$
zhJLy?W%@)Up4&~we%qO8k)LaF2psk<%of8n-|CHZ?7RC8M>y3^t-`;rb}!SW-TP#(
z9s-RClZ-o4pYjZdb@j5+QwdeI%|;H$t@Uulq*27=!`5>DeTM^xsIX@}hLwYpb$xKv
zdeg0bbJcWKMA}P2su`uBo!cQ-r(D|hTKCajV;;z(<L+04Q1b*x(KLJ*TGW#XiVFC6
zGB#|6ei*paIBZq<`9j54iE<r2k<hoMbW!=6L-n|_hgOJ!RGSR$sML-tB97tyL{!4#
zBf-Wao44??=}I1+=4XEf%ml}(lt#jc+KboVrN=;Qz_4D$FasH+^B5RKpOdvxa-Vmb
zTA(rU(WyUwVxV@FX!I_1jEAar4W7|8TK6#Psv0p*=q~W4TBh$CQkgIZe(s*AtZ@3A
zN<Vx?Kc(NE;)$tyYDkrB+`NpO@OJFWl%TRiW)!>T_j}jls5TXDQr!|#`E8CeV0ug}
zdKs|IW;|4%|I2x9TyCS;^j4|sF1yiG6B_8+y0=1v!%O8!1}W5NJ*FG4${Jep`ZVxp
zn%ys-k+{ktaSEE9gIitKMw@e7HZkTqw}_m5EHR0GJvo&z%l*2d&UePdZ9uZR6hD?q
ze|(;2eUkEZm$qanK5_jUE~xo`pMM%J*ybb}EvE=aQ<b<*F(4);1!mbKChp4sy^~l-
zw!uUp7V><0(Z9N8vT7Q0Tq#E|W3M`D^!GEIm&(!r8jy)UX}D-jzT|2#?!vqH_ZY4{
zO{8>G=^0yZc8<dnjju`eu>?^${AYF&u-q&$_daJaH)>gIbs;x1$LD16!^a7wkEyb}
ztIw*Jv;F4JR){)3PB<c0N>D2$uRq29T{3f9ZSw=47(bk&Yh&x+Qj;#uW8ie`YQ-In
zCn6)hV*QoL#{S=gKQzh5?F+B!A)QsZEjiPZe})+Z8aKI9MQGEm=(Ca@=7C!yW=xR#
zWBkO4o(Q!WQdO$RGknhg{9F64f7fT4#i2h>;DM;GzeZcSGruyL6x?5XLCa#RdM8#E
zj#lXXr(hd37bhELz^^8~UmKLxh91fVrM^y8Z_P@q4OUMu{DUK$$B0fhPaHDcfccWA
zaOs-bZ>qa?<Y|T{T|ay`w50Z+VsRdHCB|OhV!(uLJ-$#)f1gAn*5DJo>Ond!t6rX7
z8*KxtjzJ$<fH3X)P8pV7o2J>DmVw{~9;zApePX#~Ch>KlzrC*AJ)b+vStUgsPT_?b
zwI<|gOf@U4QU}6B`)kO3b)HI7=M3WY{(Ny!l;qA>%pu(AQ@ANr3;mJI-_+QRPYo5{
zHplmQ=&(V#OXf32Hcq|S<zM3e9U7_*g`0GBsqYP#9$%#A-bdG!mXb9;6arYGK_%u;
zooR4C^4nT0^#38EWGz01D-X4|e(l-zkq6xmh$sg1#0M%xaNxLARgA)YUUyQ4Y31Bp
za)`!v=c>G41`9{y&#1J|-2MQ@Qz2cUB>-p?;NhL$KTQPP<U4ilo*5bktC8V%aeZ9O
zJz3p2G0lg>nI4*Go+iXR;G<w+$L4a$?FH|1+8;@~>XR{XCo7*%v~f;m)lZ7dPp|=}
zN9wr8HLC?18HK1{kH4Z2Uwiqc@J%X?ls~3=IsD}0FDH#YgHD~1NPm?2bb5=-XkPgN
z{t8CZUUKC9jEHT2Ku{y6CnfVvjlaT886fwX*c1EqJiFT8{m#eUpRST13G@EYD6&0Y
zsj5kJsIe*N)O&Het0L(J-);kS<q!2!291fAp4W^A`GGaLJ9WLl=@pQp<+N<CdNZj%
z)Sc@cTu}cyeE&0i`<vZ>mFo|uUyYr*OpfQw0<XQHf7tkN0e>qK7)w|&*VrC#31FOi
zs-UvE9WQ5D!w{PI72Y9T+Ev>Yk_QTNDNb>j4LQ8%TF;oPz5e)us`bSec-M}L*xkIt
zU0n>QV(L%L*V)VVziDQ-%?^K{k1$8^mB+QoyHK)87}L21=ArIsGBc$>s}2Fzf@VcJ
zY)@MxYeVr3cb8^%o@1Eg<5&%5?{}4wk-9b3%d>kb>4G+&iwx%W)w0Fjo$fBreS3kW
z+M8i9oadB`E8Hzp4Fs`9vZzZJJQGR;N5-Lx`iS0Em}3x(S^tNq`+jHhkNbxokszT(
zL~If>X6-#A_9kXgduvgfwi0{qt!nSuRkKBD(N+~zMb)fTdlc2WeXj3yAJ?C7p2vCq
z@P56YugCKeG#u;5X2Me2sM`YDo+0SMp7wgA^UV|m2)?2vm#Y7f5iU439P-lfTbsL#
z2l$(0<#L+6lIR)P3+!4+zQlu{3*U}iCrZ^)xozf7+^0EWSrrNx-ON986)Z2;Xl8jX
zbcKyod4KM>zcdg{$z!{4?z=XceTTHKAm9csuur@_txLtq7owhD$N0VHVEb#^gZ+Qs
zuR>0?zBIZ1So|B7GyaStn$q|-a#HV#%=m<qa`6&)qNVijir7&38bpKhQ6XXSKTug)
z3%iYh^0yygD8#0HRBy|j7>eKQpZj28I^u^|xCzcz4dDxId4X`u@>OT_Y(G?Iez^8a
zt=#|QPy-nW_tRugY)IAEOv3qTaTod@X`#zO5UnzK<z-5NYxMpAf7`<3n7|7VFSI{U
z)*%&pZbxWC|3jN_i^_N$f6O}H+~wgD%FNW~{d00`piB%-(5^5f<D^n6hzBaj!+dd6
z$~Dr$oT}8OS>@U^Hq#t@1sB9MXwZsdx{kzZdA^qG_K8WNzFt73(ZQeico)W2H&c~|
zUjoc+!vy0E6ARF^TpHedX51=<zBp<VP$(^@z0@vx?s^nfJHi8(4~R>>^Tdy~8riVE
zc{k7D(etc^q0<1H!1;h&EjyMn$x0K8%G$+z5Nf!Lx8QKKBBYvSrp>TNg4VQT<k6`0
zGeX|3O&mu~@CwtaAlgnhACLt4cBxDhjWco^w4*e3!?gCv{yVqKI(hDWFH%~YcGZql
za&uMmklp@cil*Bjq&o2D@r;Y#TXHb>$pSg#bu(cMS*&3^8<{4t$FN=OyXUrz)3UoP
z=LmM0MWw&?@9udT_K&ebNna)n^xV0Makpl)qkH37<g1>NR^GEe5BiCDJ~~jkoh^|W
zaWYoQ%W!6p!FvGi+@-^U+Nku=LYZMRO2(jGhU*b$ZU)X=L64pirGn*}d_`%|D~Cdb
z8hw;I`B-^AoNBW73|;W0DAmRDx&|T-a_6R$KT!TgY=l)o8AV%3p#!3o(?8sN%-W#x
zcunJToIAC7Z}0p=gUzft*OwQ6?6pc*PuBD4)letz)K&b(dfwQE?L8>`cetMZoWZ3f
z?$YDsYZtFO9RK93SK!87iRXLpe*Q0iMM+f#oDCzH){we4Y`F>u<EUvk#LMj1YIso!
z;b<d6^WDtIvoP)@ODUv}ed;_*C+_k8nz@SN$(THR4#z7$-4+;>{W^R*P>BLaBg@r0
z&pT*kL>~<y_X8O`5(vm(hp;+GQyWICTw8&uhtbOR&*4id)VHaldCSrW=&V7wzV9sB
za6;O+q{PG#1nK%00ac9giQ@9tg;!gsy$ddhH(;h4lt0i=>^MyJE#mm0TN;N<18`KQ
zWs_Q4(9(|?rhjbaU_G5p^3;N*_<=su!Y*ieZa1U^d8xDhwxCiei-<Clw?;JK_yLcM
z(?xJrq{$(=POQg~H*A|&&I(nm?>Ooy#uDn`Oyxc5Df0D-44rpDt&&H8uC5XDdYo%=
z$b#Y}{w%|kF#KrA^31^kjLP|v<SXAc&Zm4PD?eALdY6c@Zx5`zW>#ksU_U9G$5@!3
z&r*9T9tR$KsVk7Sy^1L&qyn#59976CV@<r&N?OaRR2#mfMV=X#Ca$1W{&I<hhk%L^
zTJD&zZ{u-uG|$W?UA4&lCY?x3YgC`kiq4Nx<ERc2TF9}R%$NlI&`e4q|1F~@bD|%g
zuE13V47Sa96hcIf16cEF)$W@Yd!4?eOemcL84Mbva;DUMc<7-5Yq=AvVxN`hmuJdQ
z0CY(nM`^vV5u3PdPK18S#;?brx3}><2oRhwn<!5{iAzxq$O_%vvE3R=AF;xgJmjhu
zC>;2v6EMROb=q%5v_11)(X0(y>Fw=JjxG-cQQp|1%%mgZDbfcIuLT%>au2F4v6H*7
z9&S?)Z0n~cy=b`2%XY0y%~ZG8KF#TKYY(mH@Xf4r%$|0u!9&%rZYaA<w`bS8jm*Nv
zYmrxoUa#q1|9iuRezT{ou*TJ&qPCv`&t9GRJE_EwWo)Hn^wzQ<!XD`;|3YAUKKv=d
z#D(3ZaJ6`&GWJ~U@r1fO);_u_xUrda8*hYOA>()P1w4s}9g=Bs;kmCxB{ym9rTEgv
z!P$kN0JvAjl3H4cj!yew)!wOS_7qET2LiBOjD}fI4~G7V)uUda)}b8X6mC@w53l2m
zydR+Zwuw~t^C%%gYFOZY3xPPi)+H^!AFyryT{>flM=aRL?5!V-ru-WF#sIsg%Q3ZP
zk3E*h>NEFtv+CS6Nv?^!6i$f()O~g_pNQ>pe!m;XHreIKl4{y5Iq#QCv&<$>cE+*b
z-H<^p3f)IgH4#U*-h=$g(l5REjEMKQrx|rt;ps^4WEF0Zfsy42mNm{~nO5?sdMcDl
z&)ilyEBP8{HzkzUlsorAHPqW2_hj^2B6m>NN4+xj*9CaiO<cT)Ui%yo8a%ny+LJxk
zrW%<!#oWb(SN*tJe%U!apiZ#29P~((KH~sp=e)7X-SD2DBVOAkb};JQ3;Z+JJ#Z$f
zerS9sC&FB?v+zb)32LhjJmH^6=_JLz@@tOKZkkm@zE_ZgCN;G!aq5J882|gQgp@_4
zAI5O#(uTRNt+-8zCL<_+-P$!7v4^_*k)g|q2}r|b_;=nAWEoWynsZynDqHpoO{06_
zEWHW#K8A6Fr>~40PN}&u4_(*)-6@W`P3%<qwuRvryl4<!VhBP5>_6-Lp8C?H4yNtb
zPcXIvuN2e955goKR*HS!vU>adZC^vstK4@-)d3@D#_RJDrXl!>7e+?L^0eOd(a!xw
ziB%Rh@Cfmy)ILao?Nae#+~w8Q=RdVekO#p-VWMYN<}W6mUWac|l3EPb9lX#iQ8W}D
zfd4)N{03pDA~)}&CZpo8=t=7R2Nlt7L2+|3eo+^Yp@N38e;bXaPu?YeF8o({f8%;w
z%IM%a@+K6oqzT_6heSD+4<ARs4B6CtD3+$gqgC+6($USGuikxr_50{Ga<%hsCfQ0s
z|IMn=O*0>91urQu8jb{yL0?DFzs{bL9OG9>*5tHG2d14XlP3;H-Gx&$u-*bG6LBgN
zgV2YLahp0AE^EwpB(t^*Fy{iAR+3aKLvR>Nc-tJ`a!xVSOxC^$8R&%cEis{|<3+^d
zYBm!`=nGQG-gI^f7epi>R$kq)rjT^P$bV2(ScCBR!xn3j0}@{;og^zSsH)0iu?z8v
z{uu}Tw|Awhxx9uBBZjaISe@RX91AQDD(&AnrNSDPcmQj}tY%CB(GyU^>8hDpU#s0N
zOy#s!vq)02EK-BZs9E)@S$|No@u$4Ipmy&{&5q*j!ls(NfV!i+x)Tm--T=F|1ru;r
zENZ5ih|6?pQ1|S8o7qeccgvDLNL2TQ`z&Oj4<eN})o*gHnlc*7^wGOU8t&{h^3oEF
zo)G_Vjo35-762A$iQ|ZSr<C_DC+*HF8MxlJq?Tn0>jCv>Yt5J>IyhCdF#u#jA8l?7
zGM0uX2~dt2MPWsv*CB*&pIcaHqU8^&6iRB-u&?9KBQHX#asgT^J7lBOAVsR^v@vlb
zJ1y6OcxeLStSvrrA<2hmBuyF-Bd=Y79S&X=yb*njJB5v?MiVzv`g^V=MS)R<)LL|9
z9Y7jzL%1v|BWHU=D)V5h;a6NS69*Lj-UazSvnC~knZKA!dpWMQqF1L^7i&i(3{=fG
zmhMkoBF0$=rcXB+mh#;=@||&2Nu`-D&f|uDks(0w!_z#uNFrQt-(~_!pK<|zd&Vo1
z#J&)vmh^0~wZhCzrbIMei-;j2fhkp(p>BnK#**P?_SXAB@B5XE9dC7Ws1%M$GYtST
zPt=_#=um1FugK8unH}Ya2~qIHNgI>l$f9r}<LQ~5;eJ};xOiSF9$YZ(8~5Ukbh75w
zlB;En%>~#+DH~r#Hf$ws3I#dgtURKssoBb^5kbZc79B5NGk@|eay~Zr*z)eXydj8-
z&khpxq^uvv*(U9%r6xQPTZ0}fLO9ECG5;d_bw$SO7E?1?X`{`Fza-`!>DE~>WZ|cm
z@qt4H<0xN<v1!L+4<fxpCJx0p#Er}A!cYz#O4O5Fm{v~RNzUgP*@nyIaRLx~Xe9&t
zP5n)8*xicR($cz4ROS?l7OH1ZhZ5i#1Klzaxy5Wp6#e8d;s<g(T=s@b1&*eRjY3&R
zvc@iT6caZM<M_bRURADsodZ5V+V!}%S|AgoMsqu}f<n@>57i0%0{9Emlet9bbME(R
zQ>oorke)jxNHGE6boxPU#^-9bU<I{2N&9+%Fy8AT?^X>V9aCWz6N}_8K|~1SbGn=M
zi60dO@|^~SysS6eZr9*c1`*h3mKcWwM^c+*vV)D{Ff-jOl0#GTM9~qV(kT`LF3BIW
zN`N|YA2e<?cASuDJmM2q<pUNpjBQt#q(c=A_0#FU67rryC0OMOo7gh=CI`y`2hA;a
z&7V}#+ohLr3X&-|kEPg6jm`G0TlYKx3gCh(35I6;D6rf%8R^5O_YU=G{ZpS?h4B7k
z3CR#OG7!S?`I@%0i9!#wr#W$0{I7PK{w2{6JGeio9;$<!keyEXQ~KVB%t*Phd60MY
z@*Dcfyj;PGmndgVK3Z;zGK~rx`J5r{^cs)?HX@Q$c2*;@I3`!55mCx4R;K@u-fv=f
z8eyzy`uvt<UUStaU-M1v&S4I5$;_n2kF5mhwl6AeBQS&;R)m(n9iUw_d@K?h+(I8o
zPD2cN^E6HlYxVAtHHs+bF-qt|xKVF5Z)T4P%O8#ui^=HSIJFwii=k=4xg_30QT~g$
zt(;aY+4r}C5E-&h%>`X0w;G3;q<*s7P@YRVdvc5G7%N%yr}TgC_pb_)Gfmsf3M*_k
zP_P|&WV@NX;9QYv+^j7x41Riea|eycZD27VPO95QCo&17|9V+5BD3X7AE}4mfoqA?
zeTQ;s^Qb}$Bc_PuEWy?<@I+Ka9M_Cnyj>!7oqmGRKA}eK3qJ}<Z!vG*5MwXLTBYL3
zq@E_*LL2QE<8uumpz?=W+|pn}9|AHBXksB`MGd0XVW}N5fx@df@__8b_gL!3(0R)Y
zuMo@g^08ECL#mb?y)SXJqZIdn3lI4is_dyf8=hrZ4r5w7<+{0Nq0u{4>xBybR^7{Y
zd0-X_d~OQH6CeJmie@&;%Jj?r6eBbC;fupDa&Puc{OWEZm-CG7ZskBqk;t{Q*~yQu
z(zno47Z(Ll05`Qt%nQaxmpeaI@~&!^uyq=i)e27yy+ZcJu@@F8x!p@eu3={r^nIOD
z4!C!-guhkRdJZbZ)0d+guah{|ir7F;HO(sEH(0iKt+Z-<WUvaSK-m!)VY{JwxjQ@V
z;2VvO(t+d4d&P0)UmTtEf0FwShV#Ff^?xtv?~<RUni~8e>m2_{AinmLg0G$2Jq9i7
zOK+eTe?JBCzCUTK8RKm08u*jSL0+m>Gb+p5HMG$+;^`un7vXi$Gv5x^C;v7ALpJ>Q
zi4<#ogo53o^xYN)U8C>2#XjDgq;iWZc1vj7%u91i9Cu4z+~l=)OZn%Pc6%$O-z{Cp
zJ@d?!M?O<rW-~WU{i~t71nRcyf<`MO^VND%{;RFbMfc)8ia`ji8hy6$g}RR}=qYQv
zUtb<}_GennyN3eG@)p-lGANCQxX}{s>^a}<l$)Zsob6nshbEC#`Ut!bwPWzsonSp(
zZ0p(aQ#ExQ5w@H|Xx2=U&ng${tKi1Rb-L$Ge=`)B5^5|={xt$1?0A2EmX$>_aTwVj
z6Ypf1<6;z5rdL*;@&3xtvuAFqW6^6|9g@hK*Xb~xRia~%xSB5fUiG8HloxAa9I#G4
zx(2+vbg9i^;vH$Xo7>#-SY|4NO5(#J#d{J+&o8ePq5J90c_8uTf)|BSkV13*uiSaa
zsh@?P<<|%i1nJwfISAdy#H%vvWWR(ccgJ@hwP|K&;>K8ue{{ey4hyRCnHpsF;mG_J
z<BwUjdS8d&LK4^a|LtvU@fWXZ6|Y0|)2N=2I(#~>XA_^=@fGzZercdSzHE?rYp<P5
zqK_V+!MYxQplhSI0jeoC>$w<e5&!dY?5!83Q6J#T2C(Y-rB(88bQT$>WKv>to?Jxk
zPz0^7zf2nc_s=(-1aXH?^c}360}6sX(x7HB=I^S|o#PZgj+EHW614QQowOc)%(d~{
zaEQrISoBEQ+xzwjVB@J#X0r&?NfgHOkj8w!Z5&6VW>k;k(k|mLF5|k(SkufBE#*h(
z)8E%WGcw|1KrNz#yeHYferlxdYiIX~989F1I=A@fr@?CfcmQ!^<a`g3D0zN(cW1s`
z-jz;%y7u<k&xqtS*Xp&@9XmhK>OG5N)ze+6-zImCry<8R1)=m`qTi=SsumELmN3eM
zfzGsT{2i+|)qmvKWc$=R2>QPen&OOJob^u=wlq*m1eFn#g~2$gfLtAf-R^xw>X`%`
zkoQL5gF6fjlXcJ8Ej9j#OOl>Ekbt=TjWg+}w^V(eQ-6En2zr&x@(m;QMWG`?DKN5W
z(}@QX_0fJYw0Uw}@nD<S7?8M}2y6=Mig{<TGrlaO4~iwyg&EF5S%PYZB2%t|k6f67
zQv)Kxbdo>LtNV!-?lf%q#3iU&7jE65x(b5c{T6wB5vzYb^{S)$?_7_d`N3Em^!Rt#
zbz8Feb)rM;Q**vk&*~2~Kg6@2*oFMKOeedWmgawz(63e-0_5i|NS~J^ucuM{LmTN*
z@+8a&5t`n)aG&31Ys<zmC!0eV_(}tK5EAhHucQfE=GLCHV%a4d0`je~<xv}%L4CgD
zj}KBx-&2JpEzA4dR)4pLg%qF`bzJyfMu&YSb?YKU@7}6+-TvXu-t~djPCwr9OOs)G
zmc=WX)tSI>4UO<R+TD25)(Zv5@4J6RWV1(}{mwAF_r7)}MwPuK_o+Puc<1pvH2Ec`
zY=3ci!RJqpLxui!9@tSKme;$N^FBDtJnXA*c`1!}@|1Q)?Vu0c+<k;zrcuOwcYX3Z
z_KA<p_32w4rjCa_0YEaiUcr)kj4KjK$qIsr#~GrA;$Y;21kA)VTU@!J5d;>E<At#j
z#63k@EweIti6!{e)<-mOyl_#0;ASmMbcz0`7IoBEEeFituqY#ra_FhT6O!!B6W-|>
z<7(sQ9;bXW4OTDxcDGOYXPX_~We9qn3Cy*7d~NmKITKvy^xK$xK5xp}*BknKGE%eB
zQa@e=F2P^qR)v8HkViT=Kx+q)W%SiZuFb7`rSWu9o>#NHb&C3jB@Rhghb-f0qjld)
zse`GBa-AT>T{v93fuO0SAX?X42LC7;>SlZ%Y@a!t&Sq{aak{O<PMfpDEbph4J$FqE
z<}%I8`nmq0jb~4FzH$m(9Wj5VJQ!|&61Xwd^x#_Y-__;s<Nf_>r3fOZG!oCcG)#BT
zf<@#h7A-(;3T?JoM@CwL@v|n1PXkJE^cl3v*0(WggVZqnVH+nEAKIvR>RK||MDUn2
zN3z6RFh`2ab|*)w!lmX9JlXasN4gp&sw`cLuZuHNPxgW{%Sc<M(nbaPjV{~rXKY1|
zP3Q$zo_&H0cfK>my)w<E&OL`YqTzzO$ahSJ=V`#)1!n=-Vi(V|N0%2oC3vVTx-^7a
z6I~Y1*NrYumc2w*I52dZS7cj-@>b=0bn{lr=*v1)mnO*a)m9dS@>M_kc^%DH|GfK>
zuc2kkqoU5jidHRAPV(?wqSly7k!kqS@-%fA^YD<>YctbdEv}G4+O}|{PIjxg!j4({
zl-ayvhthqW&6nvha{OIwGutX`@tm*`HXLsAtB*Qjy53A<Eq#P-oHr`A`!6@F81p}+
z@&FUsXg2&>`i==ckMIS3UmdO{mT=Ibc^@X>OOMq!pMRi@lL_~^>0q+X?gudm7!4VC
z|0>16?<V<<urd>kpyQ{14UCw-@S=rY3F-b~OISL5V<KAEJNc%M_K|qI0mt`}3Bg6(
zVUwG}CNZq`l-Cz(V>w!XcGU-`ttPy50_lC{+w)>p=B~+Y<5;F^1&R3xJC^i!Y+r9t
ze{(UgI9&*1`*vb>^|;p$=e<F`+m~9N)4X)-{`V!uM>V>6kRta_NaaQXW{gekWxF3$
z{N{X4_k)k`X@|?M4hxy7c`@3^u8rHm$d6=$vFPexR-^p{Di>&<vAh14PvXP%RBR-f
zOE$q8^iTSNtW{rJ&3+1_>ND-TW|e>QQC0kr7)kk(!uk974AT2y%(q*HaHU9X-iSQW
zgjjgw3MsF?h+uz<0eYd(!WDq-uRk}y6I+wrY~(A^395@TdcOU$^0fr0$b%;eU;2CW
zQYp_A{D_2x?I7x_1jTqG!;AOKD`T)IsO+#bgICOz+4*Zq<LhQ&#IM=Yq+Er5HJ>ON
zz7-HkRFzG8EyAqp>0V$EKVmWkkMl<z@&)#;eH@NCc(Z&}X51@CXiUn7+5AoMNl2UC
zfcHDR-)SchjHi>h`e4J9HV<3BXmLRcv<7(L_Ov{h;c&PkGxo}m9vh0J7QroYOl2xQ
zzp8WzPl~&MmyKw#r}>u952qK1uwWFqGL0ZZXcz%#%()U?l|~Q2qM*}0qU=$e1N<}`
zI`vDioE~{&KDxoNxSP&-`1^8w<$M{VKvDj_>2(2o?U=obb0(mk6I&$qPF8YNt>Q#m
zBsGM|`6wxWZ?rP(ac!E9ByqmJZ-roF*O=LD<KpXS>uQntZ$p~4;MBX{T+m(T@Cczc
z^T#+cBv|H|L5yG4)vq}=V)wW4F?-sod@k63N0{FwCFL9*1R59y$lb4wjJw&M?$ji}
z+S|(aFQM9*bni&jL10dn!o&jmPGjYtyg3kZHbaq)!nsy=73DSRD(6>Uv6YbOB~?K#
z_M&27N{zidp9_G7wy<Ecy3fetFMI`8!<ba7AF>VYbH`N>Ua05^(`ywGf1y(;&4GuN
zSSB(uM1GNw5AsekrJejrtIyv^mCx_C5I>U_AXaYmo$uc6T+(31Mp&{p75h6z)27?v
z)nPjfW~J<9_*W8qtqj@*yz1tolhef2(br?RYzxbw8S!SG^c`o8BP;qn)Ao*2fI+o`
zanaa}PsCjYFHMJqI8Z=M7h|IvHROAozzlKS`mQEDM4{BUy(byN@g7J$Ht2Q-T7~{#
z@`*_le$psj4zPg2J||5U4f^=eQ=*G7?9YdSUVW^&gZ()ids^b)s*$H_zu03czz3pz
z6AIO8=Slyo52m`<r6&}Y+R?KP$O(R?qj`M%1AUc*B)F-w9z?{h>7_#R@lf2&*pA{s
zo@>>nPk51|1H3-ZmQ+zcnS(i-syuhd-up0dI3bp%I(V2`3nX)GnDA!#{0%kgD6a6G
z?e$C^WiPd-J<=pCuK6Td?!I5sHM7~ev9#+4DqgV|JTt45N$h~_xJw?*pK-K-<*4qS
zhzCyWhq7+$IBUf5?^gn>br{zPTFlL9$vXSA&+sFw%fk|LRk!{Z=5LbbpJPfWsCh{{
z8Jt|2?|&a%a9P?Nx4W-y@T6$zpfmJysL*!7DVL|g&e;I*u77gROQRhqBW)oox{k}i
z{?%uCySsr+12<#~i9+F5D(V*)&5z4E_l!~R&xAT@z>C3r>5$pAc^}zJ(x;-EnHUHV
zt!+f8SePYNim3B5)D}^qaB_Z~-i%W=+7HXDMs5SQ)DO7hl+)ml1ZgmYSkf}?W_PpP
zFv^#bmoz}o9Ce*DcCU)+Iz3wIYB>%9;!~%NhF7R_i;G0F6O@6cMHq+RI4KepqJ%FO
zDrs7Q3A~#S>WuRKWvWlsW9Ex~LkrdtWfNVm;_mwoxfQKSM0b5~XPqeyTiVe3bTQ5`
z3Bqv#!B5f$(=*18j61_o7SCjiwm0_Dhr$-+%Qu)4xovkO->5b((v3f34XmgS-}SD}
z`w_+$kSQj4nExh>_vEo>OXl}qAC={np58u<gRfEQo<lw`v8BKM@svB=d}vW&;^LDD
z>LmW8%PF<_5bH0`Zk#9mY5LWPaTx0f^t69rS#W>Uwe86DUg;_q&?6r7Jtr-<7lU|m
zGI?k1q&AkU#>n>k`?bciWi{7c44<N0k`Cv2K<wBqX=mt<a<<<v$i+yX(rE?S;ylp&
zuaCuk=+f8gD+h^x>y_WnT5N^}?sc-1lq4}>f8lFwzKtq>;?;e3Nk4w?B*Ev`El99|
zFIkMf8u&h7A<oUN(3H9OOED?gyJi(EG>b6t{L_D;;fenC_goIHB*p9>#OhJ~>m@i5
zdYw%RF-={znu%ASQpXn~v$Z3iP*h~aC6s14zEP&ODrAwLOL%9OC~w)@!Lffi?Z2vh
zq5GNO3y&FzhEYLL)GN=1a3#<{<iQ0VgB}!k#H4jT_h<msn>Rwal0P(!!Y-h^MDp19
zK*(42%;U?^*OdkDnKc+#OHI<StRi?CyI2-UV%C43P@w>p#S)CB!y&J|pd|`1h#)UO
zu{mgP>aWmQl`!!++!ArnH)Ut-c9@h$a)(ARdpNM4Es=kB5PHlcC^W@DvO?a4q!>f?
zHaqM-FPTtT$*wKKWjkEdn#T&$GqGne$#P(WSNJ+geUt6Q#2sXAmEShz02Z%4LnBd&
zW;{Pj*pRm&ICJE$GSW1{!a#xYHwsF1?2sP#{s9pk?GV7(&Qlr8XGn`lC!mGNAZr6f
z&bqAr>ZSN)i286wrM03Yy;C#jeK-T!`t1e1J?l0duly{`_U<#SVHF`04Ow>6h6++F
zC;D2q!X?}Z>x2}@uD}$n!RwIdxIxwuU~rVN4v<ZgJ4SQ796MW%Ndqz;;dwt`pP#CT
zO%%T=85D>qHSyu(=4CXss^qn+bU&RoHy$uuDK&X)fa7L7L`@rztQ&SaVX>TVveqpn
z*G(EL>p!o@ZLZP9#Oh8~nBd-GV9w@zpnH-O3Zj)qT_(`pN<(0hO^madWL{mgmG(-d
zm3Czrp2Vqw3+Lx@*RN9Dzv@UuT~*O(1nrC!=2qh4jO28Q?f>aU22`(GQx~cl8gZf7
zsxkmNJ2ASr>qmK~VARVv{9eV&h60GSK{RW~VR;J`X^j|E?8GS@N!NR@#Io77T{YUx
zm3oqVYnPladoTpG#s|*C_1Xo;R5aOuAvbqM*&87)<Gh+f@x0i8=x6X&4(tgLF9;uj
zz`{pnF+MBdDTI&=)?Dm8;=PI|+?#|1%lpntk-OETaW_rVZd6n?NvBSypG}}>%)CSm
z=~^|ZU5%#MhVMis`zA#QU~s?I7QhA6GNg?wKqu_!Brn!P&A3LKqPP0c!|2$gj&<gE
zbbP30iXtwpn2>y%H;J(pLp>RD8?CLY$J`aGB2LCzQ~hYgl^6y~WF*PZUXANuNyXHr
zN>;g{&_epPFF&GLC#tg$TSX~9AEhir))hZx=L}f3&o`^gCDbNgfBTdxsvE9u67hFS
zHkq`Pl@CY3x5n!pzqd7Ux^*$)>K9m7Bv6e^Gm-P4#AOpa;1%z92dNwQ>bXBrE)6)v
z0lnxoUOpPGf9s*|<sO51`#%C8UhPHzT%(325lZ#zFgE2F?BchRr<jxNCX$`z7~Vr4
zI$0y@Cj}#+Nu*U6w4Mro^X;MbBi)xC>_I9u@e%dyR%xw3I$vx4C)+#~f&6h$P9kro
zE+FAWjA@Mahv62FdY8MrMT92aL8dP_eh+7w^_{N!6N@$Vowh$gP=NtV)IdjNpDbmH
zy4#*!9Fw-?@LQB`i8aoP|KTt99#Q@!`ueE6npf;Lxa%waepVtnywzJ)bcw9NJHcl!
zwLv2Y0bk{YW~+%$R=)<i5u#lJL6F@}#b`7->jO}r55Ciq(SS4DJ)kFb5Pl9;^X?Dy
zLe*}6cs25|k@6Ma-8TtO+d}!~8{=iG0G`r3lq-n|47y0CpSUY<`R=O4rgxYzv(uFd
zW0f1LAc2=66;m=rEx*LOW@si~?MEi$RYU-%|CCjmV*gd<<HX;B#BZ<@;aIY6uRJH!
z6bdkHtg6c#RFB%ifY$kjR`zsP`LI8a$~9RBHV8u6)-><_sm%SP)Pd3b^tf-FA%xXc
zspuxv@Y2VvyKRf|3A(HAY;QQTW?+y_6Y2d&*WJ83|AaR5L29B+E_VADUJq1|rh74s
zE<-{AGL5A4jjW0fsM#mKn}KUC8nJ)}f{hfPfNWbC4;;MqPhfke+)ZbDUXx=Fwr=n3
zV8F6pnsEL5Zc%rzng=-L`yC=a>x}zX_bEwp8*ju^Y)vEajK_R&a}L^0fTeN4?-tDP
zpo=R8%4kmVGu?O1%YoT7X5!%1Hs4k<@Z{ex<=<hh^awWLIA5=6G-sKw&n*bq^f=mB
zAJF1h+Q^m8N-Rri`uG8^XpJ(dS{-zFt96L>K|{QuNbl7IY}Ina>F`Oy+8?}qpV`cc
zB0a+@gHvY<#!Dn>Pd7SiaDN%k+nXhP{ki-&=TJEv!(Jv5RX4}C%Z?<SMLG(w1Z`>h
zEhSX}P)dGS?9nUTBP}OU)SYF<NXw5@zHfd}Z>2|}e;?|-B@xwgeP_{{J6Z0mI83+E
zz*EnP7CWN*Hz7oRq~rXIPc`NaxvvAWNO7MbMNh1w4UGSoBeKMA5*q~%E23}PAr{pX
zuV3;P7mFMb{bhB;5^3pSDfX_cS=Kdv^NO5Cmk14?&6ZGM?zeJBP4ngf(P$tVK#=B(
zHULDs2-_jCcnzwU0jlVmwtI{|Nsu;3g~=a|JoyoGZ;25E^+(e@wL_}mHNx8cga>#d
z2s9u(JP+e)tcw&M(3oviy?*~3X))COccOb)MV)SlzA2qqTxAC@DwGeT702g(DYC{4
zYay^<NsQ{A{`$Ft`oI07Bi!_UoTwjv*M8Z~PxQi&l<GCc&C>T5GtnuvF243BC`eku
zppaltA7DuNV&M?0ECqIa?yo{I&wfCpvp;0MQ>tGrfqs3*Rs(O#|3Xjfl=6Fk?fX+}
zDJ*o+PcMH%CoO=tpCoSOo|-kN8QEdS-(e~yxe*YfMt1c19~aQ(1$(`n#*=onSsp9Z
zfLfalHy*IH82Fmq#6ly`(%i?6GVm_K-nfa%rhE>^B<T~@QQXmCW$?~twH+KUu2m?m
zy|d&+F0RN=@MsF8z8;iR$Ndh7ZQmae=Mf4rB^LL79q9JprM~V<>mN7Ron#lg6k5qu
zcOP2R*!IXEev|nfKLf>m3m)o=0oHT;*2#2OQLL{KKGvR!t(G)wX-W0<JwoCjSptuT
zUyQ5r+j~hGe<{=x2X)J{zk45)w3pU}S#&yjaoUnIq9+oa3`ty{HyTAQqw{{cFu#j-
z)lU#pKZ>Yvm_3g-NGid1!cg>R+*>2r8C%u7a0Ze^5GEyvB$1{o{TXF=`;gz$lW;*g
z_q-U^t>w%n>5b1MXwHCCvA3!FiFwx@q;?l)XMx-8HFz`07Bvm&>X5l2^THs#7A*}k
zwYzDg>M>%mL)X$FG&R9TnoQ4fWASf}ID|q>$7XZB#;DZIC24>Qr<&uRkYKGZE2KW>
z{?^V9dYhjLvZs%Ug$IWlA}eBO%bpz9?Ob@I1=sxOEUON!`e<I(qmlhy!$~@nUHqb&
zIHci+R7+c%+VceS2q5N6g>!hsByHrc3VoChxc&X-NT1;stA6b|v{7pu(VD}QCmeD8
z!!I?|I`7J%REH?NdZ6rkW@(z;^M##ZDQ!A(Nhgk`MRHN6j$QjbxJ@5iznpo}49ChJ
zP3z}@c)6at(XS}s9AD(j$a-Ht(DWbvGw@LD%~xE9t6s0Fycw0enOoeOyS?u`!*N;R
z4qm-jCwZl7V0g>x@bn@b^XBQW750-s`SFe3@qPJEbYm^^Q1j*}<Ps6>+5md`?kAqU
z$vX;DQVQ84z2@S0HZsD%3Vv8lVaBy@=7GZ3dD7`1h1uA?*;IvZtM9(%D$G^)%{3{^
z-y8n+Qeoj;-@+$_nb!*6e<&<&^eqO}ec$i<ajmdKs#t&0S5l(9m8C!UWcY>K@Cps2
zkxKI={pe~Kn0D3%eueJ|8eR*!^)pdzwMT8eTI1(@^fKGy6>`PxRrzT)BDN*+;7iT!
z2Av-3K8q6NJ*u~nLD9UH!+ZN9_mU)^1mF7cb7Vhk_~G6y+~>#U@asC>C#ENlt(c!M
z6DvKQeT=+bdc5s=J^B9XUK)_iC)QURyW=%{KJ{)h>$ZK?;8vm<O+EO;VEE6f=60UX
z=|igY53kLYo1JB@&6b`V6GxHai6IDa3m<q%BsqhmJbg{p05ZNnx;>bBb(s5OnG<Io
zI{jS|QY}Y31m>)r&2QP^e*tsR%@=c@X%C@s)z3ZJJUzL{ERKbL{70dS+SVK}QPUIp
zvUQVf!)xegv!_3F)F^-$_&vI$Z5Ts;%!rXF6x9@yC%zExxoqE^&$fM7WfRunJX57>
zFFX8)&c|*b5<({#PVc*tD31r83U{nvU|a>KDtOGEGF;b?zR3E*@8<_rb#iamkTZ^e
zE4Uuz)dXs7;5nUM7Yn9=GNVH&2ODjCjvo*-{KHE4snjxCN#e=n7Z1GmqDONx5h+Za
zexDvl<&J3nX?2}+t|Z=A=!wr9?|Nc#XY}&&*X(?{*x^5gzn8}#Biy@>-(T$uB~re;
zpub#&cdfA3v@Z>DJeMXR6?Yq$w-rn4S}A^*I&kQdXs8GTV+`9N-W+&&s-48ts4JwG
zK~F}o*vP<FbQ^^jqoX)FdP=@WM0_}kIb(!9SspgZnavs3@;3Y^BHrcPLNmpsp%<35
zjP3HvTCeN937TqnRh5h-X;(1d3S^?8pRU?8B?#&er<)7`_G6@i?q{zO<C&X)<2C%!
z@EHD_te|CF?!{WGEVp_~t6{exfb*kEH|L0vW_j>^lrorW+K`g_`N^dGZ*1eI9(B_;
z93D#z2CFsxA}&{Mq>vC)(s$=hM+ee6mvD5nw|;r2i_c1Rd|~xvQYz?;YMRSYKQX1e
zZ=0B|r$VsAjHO7z%B)1@x?2fay9Ji5ytZOy#_!%YV#cr9XJ*7$$ytM;oD;=asFNP~
zPe`aH=URt<cc{0UZ1yIBdyCOp7;9S!@_)4n`z!I;ixRVJOCWpug25)_^aX=mHDiY*
zp<m6+a*b2}Lc$e{IdOUdzJ%$D*l@q-hEH&|e=HoJcsN>?tjM@kk!>s6a?SmeVvJb)
zZ)fAXmMb?04N4FsN{kaO!v)6I-DcQX|0Qs2L#ZsnRm(P);8mir5v^T^2QoM#jdbJL
z!4LJeyc+7Ig&GYh0j4(>eFH*qKfQnN^<=#!o$KCddV}}^S0f+?zM5>4tWP49dDj);
zqCa|%yP0I=4~-CXWG59^p1&=Tq;xetFI3t7zVg-}iY|j67=p@?d3Lwfj0|fs;Bbq?
zBtLlX<G*BOLT#DQE{ETCXNydOjwcx^MBw}HF3x%+jUH1zK2NN>UcGc_Wh0|3%ezr@
zKOEb>hAhXw9tj>1i(4G0>)L5w_XE~Wuo)V?+SJ?kYw#qj!07v<u6YmaSncdC$jD?y
z?e!lP$whCFwD#@!elmXVseW9%QTMJi6@%xC17}ua5R$~9)|tiYRSpVpJA<&E@~1^Y
z!8Pn2da+dSdC+K%1kF)nl-F^@yiX^#K0Ddna(V^PHLG?<^rO3e8J!VKI;|b_9Hr`;
z%&_j7)<!*~TY(xYr2r;yNOI~Ee<RM9H&p60{X~hWU9mVrzGI_rWC)lafzz8~l}PxV
z$c@UCFMSf`rVVap^)rS9vr!%HBlZYmCo%dhB0a{+WYt<S)GhZh7q8aj#ud|8Q5aX+
z^UBc9-c`=iY~<R|WOg&QTy4oQP2)^Bt(77^nt71)UIO$w&s~ctt0?WIrRXtxhro!4
z0$}9pIoRGDGQ>Ofu6%|Jn?-Etq|)v#?3<B^TsWyBmDf@-B%#UnZq<?cGWaQFL@a{>
z$Rl^B^ON=EF|ya6J18PVyM^e6XFpM1g%0ZAi#{W7(>hIP3Tp(6Q<dF=Z)s{-8D|!^
zbJ=@Qs1T4XJ<5LfNmYik?6%bvZ*!)2WM*^(b7sgxpNo}E<SWBep!mE&iP6EkREBu{
zR=28W>P5MR<i@y|5AZ;O-Gl<M2#zuh!&fq~?X|Z>r7Rfh7_{Y~(jPiqQQ%OkcasZ+
zOqy99O>^w_x`~xU45n0YRk8NhkzV=mO%@TV9$uf;+1xSyKrlSzQ1A29g32)s{i|nS
zpM%+YT4G0T57ixpJF8IDknzeoHM>S{>wwG5DXRM0|6K?eaq-VQ*N$!^cK5Wpgj&45
z|GvKT1&?bf&hXX0nU|uK?#{jsE%9q+$Rr7<D%vV-;LPX##NX|W!0xndFrspqc0YLZ
z?qXT(v<U5sFT(YSu{~;yj$(2vOuhw@&n&gz$9G2!j)&g0IvnuD8<L^xvViEk4<=5|
zyV%6@dykx(Q}-1RdQTHgYD*||-#0WXGcWKmtZ>)SznT;UH*^5mEOJzPs`ian=Gt*X
zFGrIP&`UZ~Eep|w>>ZP$Oof(_(w&%XvC->f@Zd*f`ZFX(J>F9R;6xTy0{3V49xX6R
zIPc7TOB3h;l<T(Re(9`ZCX~6&8lHVi>SB<ucs(&)M~KIjdyK-@m)5aJSm3J#61(R}
zYa%bs>baH@G}9`ZTC+;~<E7Ijmw52Uc{dFu#>w<zNa&N+G&N1LSL;P(iw9KThJ1$t
zrqAM!)}=r4uGs4|&)vxf<6m;?$P`^Nf+2<~Kx0GHZDTFrxZ{bD5DDTLz+yYE?BA`R
ze8Pv{%+c&A6JD;XkZ+E+*JIabJy(V2zkPg5!{%bMb9ZA-W_G;eh0EOxnKyaXul^EM
zD|`nTax}m<S_3=Vp6@0}BT@#0+Uk3+3(`A=?pm>C?qJ3QVcf)FV}AJ<G2Drrn%7YM
z4tHSBk7P|DQf3o1ulH{l%(x%jLC^VQjkWGP0!=q}jkBn9%8|An#89p+c<;pxCGPIE
z|Gm5D2m9TofDtP&k)IBq2^kH!B*x|bk}AtNnap4GuU6_qW<8!%p{i)Tu*yJI=l!(!
z`7^dqbatB9UeCekXbN63I9KlT;ydU2fR$4e_2bU>jrF^pQ4N2)GSns>v<s!FQ3Rkn
zljAChek?~$^p(%Vkf|={f9k9cH~{Sj*(N9Mz0UC5w=}rR{!dx(T7Z@7JcVg-BVmi+
z7<F9y<EIJNj}`X1J|w>X<OStq&h>b+dO$v#<_|&rnUI%etBP;?iZt(py{5B0AXf?L
z9tDS`eti7xR(!~qMBM532d|EU&%@UYFk;_V@9$`U9;J?s2h==c`@3cSnyzv&^IdZX
zsQUa__~;&UCL~HirRg>Q@=Q)prCpxv*tBLuCp~+rrt$-)^2Zcv1+3cCGlLL%b$%+!
zRfP8`y>N>9@;~b>n=`WemrKQ<xO{mZq;lE^`ClsydZ3m!L?}bx;XXlh^+cB3Nnrn_
zxR1mN8N}jFxx)kpwrK=bMRf6zGtkgw(&1l}gAI483N&pLk(NB^B5=tUvj_y;gOUyl
zrJxUfCwSWOtwDDo#Bzq4x>VOBs_TL|`$zw@$R2t?E1Qm-#-$~NuR()kbPiyxH)7B<
zmsTp0(<ai-6KJ4tHNDsM3?(&<5jCB!@Z24=vM_ZG08-YUGUgt&cH_?BtA2qf4UuHq
z)l>>gFtPM1L*(KmDJ5$(1u+UrKti3=Iye)SV0h^&0NfCTyJ1*s`f0TW_()bPGRn%;
z>wgE|l4-7bd;swDP^AkIfrcLnN`IzNIkeI2zwuk41rd~*_$a##_!<&?umK-gWo+|h
z>iOJIBY3F2$@C^2`j(phnFsxIFnrF4IoFXykN_z_-mc(OpFVh5aY*xB%}amaMsuZB
zCZf_FWg0kS-T!#~j-req?2s<LnbWu*No|Z`@cX1ZFm=!mKWAricE5kt!ghi5<UV5H
zpCpFc6I<#douZ-O491rqe%qz6{q>bOQsZ8Aq2m>m9W!F;I(+!+ki|K6JkNk12V*21
z<XRWtG0Jer@Vh0UDOi<`jArM!(F!4DtSm=pw)(h?a!7_R!@CL^Qc<{u5zRMhf#sIh
z7N2SDjd)+B!x^aW92?*HeZ<8~eXY5yja8Y_tYUx@L3|?Zl<^SV(tl)A!jbDn(1+-A
z0u(^=TKr=Qy>~<-=-X8}h)kV&3{6d;V<yZGUe_63`YG1LDelT4LMPTju(MD`fi>+L
zG&$_*ysq<{#B@E5CCxQh_|rgsZSWX(@ux>SF(!KcnMn0k)Gzd#voVrKi6Gldk#tq~
zl^x~P5~UMYOV*Tj!Z9gFE7ELA+e+*~-UP}JDfhBXZgodwoJ;SY9fXBlY-i*X*`PcZ
z&CdcAD1!Z-?jhW;T($)y={-r$!6zGiOGevX8SJ3+`MAtwO3F1-I+6sL$&aByYyW$Q
zDtS0mVRD;XT=zB(H<u~bH-)*$>65Q0CZi>&r<9v+M9oTJN*XC4e+hv$Cz2_3w#++`
zIL+8BP4M6y*Htp@$Vy3WEf&Jf{Ug?JD2z{=+YpO&8Pv|lX$}9>j*L()@#pS6;T*zU
z3tyItE0_Me1dIx8Ya6iZ+y&~9WAxmyE&^pq@+*4wd!GadAkjCv-em@kKXrQA^|)5a
zq9P$@CtUxg)u#OQx-_tRa1Q!x6f{luyOXwSjiyw#iCn<nlxY*yQ+~ALK(VNn<_n~*
zDNX}w3c;9~)0#P&nz_EX^UP)2jn@3`pxOUgfy?a~PUc~!=8+QSZEhBiXf1Y5EDFC^
zJ_|5Wp|z_1!u}r`s6s9KKqqm?s>SqfZGd~X#N9)?y8~aWKhfH7=~+!l2!}2amo!44
zFHEu{Y<9lb?$h2I^|U#r6^M&~ElP0T7=l?YH-?}s!~YtB)Sr>px6WxDILsV)W;B^a
zXoL`sVrGs~IgWBOj!Fn8RWm1z94DO_Cj*4D(b<2Fpw*1?J%o#+naf=>5+^&C2ME`P
zX0AbjuA?`MAdy?7nOkg*+y7$(<ILQ1bKDDO+@B#l%FR4V&2FJ*Jem-mZ3rF#N#~v!
z&({dAH)dY%Iy`SA!C-{9C&K${j`zHz>!U!A=oz<kNw-I+`}>Fo$7T<XJ3L;@Jh(>q
z5Whrq=6I2R^`WHmr7`!q!2}m1UH%Uf#5=RlJrt92eZTCwA9z1g@_#Tv`v*E-{SC|?
z+*R>0&keX6<NyisN?wA&UphMfzByD}gZNOsBBf9lDMw%Ppf@vtayg_?5rJwsz7jzU
z6aWB4e@OmUK%UCOZ-ESp0OqP7m-qJc^1t0O0})UFfF4O_m>d57Yj~_#fQ|X1uepy(
zX#?L#{^tp%m^-cpJ^s%V><^;+`kyB#F8Sp5SI^zAjyIm*rj(OHsqeR(|KAhr_wz*f
z{jVpe652xN`kyC=k90N*TRnT|OB9~kK@_+gZk`wYTk_F7U5ukeO!*hHuri<jNI@dJ
z2qHFs{>iD7?|-D=jr>OM71kL+862zBL4%<8{$EmX$?pr||42d1xr+jQR3H7di-v`V
z(%1hp1+An#ZcM?2&S)F^n4Q^_eR}F2zdd<~05^cj#cb*mi-;|$hyg^J(o94yy;EVZ
z_W&x92tZvo>(WF|of3Gf(LBi!ktD|8^3gu5{Oln<hXSBXyC&^H9zm{a=^kQ_2(^E3
zk0{mAGRL*+^GT=UjVg!<1Oe^R{+}u+iJ%EThqadEKC*-<2Il^LnI_Vad!q{a$vDPd
zINYd$;q;C-s$d60;hm2BI~}>tWrF1b^QFvStxFCxGLAQ@U`9y6jVid%mDeLfGxW`q
zfx-JfRWKs)Mirc%VJOLaraF-L1;tp5Vp+no)Y)G%FWG0>NG9DgW2r$giGIDYRl?Nr
zvz{U7XFKUUN|VD-h+k%IAt*$!y?YP};a8fxGeZ|l1n7>S3m(XhovH9Gt+ZiuyE%YV
zBIs~SZbZuDp^OhK@i{jXX=Xv9m!+fNGBCxA*#9L=2$?6=0Rz~PiU-z3$^vdWx9RMN
z1WJJfE7Hfm0R$`1=C|AyS;yD;q<|8ruo(=2tfB6IDyBjPh=BPcYn~$=)sQu--OrPy
zX%?-TcS1mfZeX2N{Wn?1HUJUu?$c$NmefF^h5Xcj8|@E3+|b|J*40X6*V2P{78H1!
z0>GMu0s@vuxb1-V0RVPohNS_(Pvmt}{s2+R3}7!J#Pv_<vi%Jw7rBgLSpWdIe}kKe
z9)4QRd@7k0sX`$+=kAND8h8oD;ct{suvI7`;?fNTpo<Emvj6~EdjMldHw~E^V->7z
zMNY5+Yf8D9DuaXV!Gvydzi#*1u)Y_C6^Y%}*;f6eMg5S-TColw0zh7;Y_G8dK-i`I
z2ratP0R$rRd5CTvIBqJ0hz~&A907}20t!nuX&}kD2gpcDfRbi|r1L>EVQ=mrh{cgG
zA=J%l1rVf~?kv4|9?|$N1jb(agmS(xnf~o-SwLL`tZoSaR4x$f7#8V(0VC?}ltO_>
zK$bKO>}rsI3E+}@or>xu11tgfN}seKpJs-S7G8}SbkGdpUGJ5USmm&g+4n*4ELI&P
zwh@tSM1V~Ib3f5-z!LS*La9=x^OiE8WZBty3EW7;+Mz<ijx3u$V~$&Pe>M*W01(AF
z-KYpU^$Vil0SW*T5itX{wnJFtgQ3dN_&_ieP!Y6D4zQz*Fsn30RXL&%YjX4v_F!a$
z|3iB)V?>Q90EjCA+u75-MW&SI^!{N2ytRAajOr(6o^P|6_gv{034{?|!qn}E{7XJA
z%e<FB&;XR*i=p0%;TuKlp5BpcW1DaKda+=`OoK%NCcZf~g^~$%42hgU0Z7O;U1Q=o
z?C8<;53xWp0N~>tGZ>(xVfWE@F_pGwz029s5I{srQ|RN1^B)|G!5oT>O#ha}P%Au&
z&N6sc9ssHJ8Fk*v5Vis5yM>XE0l=U%i_om|0Da=E2u9m8I)E~hbq5n5q9j*t%8{}1
zH66hA(d%jjdKdhCPnGU#Ir=~%zzD$Y5fPw6+3kUiTP;&xY{&E)rmsZ(6hD~&R>*44
zIrl!>IijU+r#XnmNAt(F`@a`Cy8E1%id#ei8-kDrA~}uZY)eFTgEEMN#Nay8rACFB
zmgCDt!P3-Q#UoG74>^8(H<x$3vjh<DIHYD?d}{gqju}Xv&5?2`;$pVxLb}oZ^|1uv
z`lQc{Civ_YGk~=M|Lh(T$X@ch65sJ7B60@_6v}0xu%ilP1@sS)umdLV<=o=_=FHQ7
zOY}EOu_R*RF>M2rN9~`P+McY3D&6rpfL^5A{yh0avD@>16me$c9Zd8;+2~o7$!ClI
zRwAl4Y{A+=bbytpSUiZFQ9e$%bTFENNj98Jq--c2&TrKlCsO`4nOQFMicGX(B%M>I
zKt5iyQakc!vnw2uX<L;q?m5@%ejGtklr01RG?$E27LZddec*KH|6CyZU=ILYQm!n_
zi-}YAu>$~D#G(Nu*kc#~CD{h3aX8*0)R=ez>C+Ja?kYKNlBI3L{i+vAe}LDWY3{HH
ze*7nd`X9-?g~}v}kVsOQR;STa!0gR$0h4DCT~hJ0W9Tm*t<Wh9B#EG2Qw3D1%@8kv
zBgmGx-=F=ViQW31@dHIpBH!t=+-rU1wCvgGx6}z}fX-N(Hd_NKNRK7n4o8wu0Q@1Z
z5{C_FokDM=n%Z<h7nJUT%!%x~u9k1j63>b%Jvp!jnqOX1+C>0wYue#SSmW#nP@xgK
zNa`1G6Wt^|3lkW?sb!i|wc&;G-7r(1EHZ$u8!E=vCISqg6_A|bB&R@PY0a%g0JgRv
zXoRIiezcjML1_(pVjciV&{G~!Gl`eFRYIp1?@WjQXXt9Jb4F8NbJJT{-nMko(`ePS
z*GoC%W{~s0@{g5G^Ciib4Z6aT$~lcQd@H2J0wPcu17@n?H%wuQ6V0@bUTMsIRaf_Y
z=JI<!o$?1JbfXf`rw_AlFm3;y8p8<sy8n-|v;2zc4cqoG%rL`Hd*~1tx{;DbhVBLd
z1r!COySo`WrMtTuK}u;P3_u!@5~M^>bY6bXvz|ZT-QV`wYp?y~{&3&tzRu&QZ$;p4
z;CD??AJq)TyVjXVuHy1cgB|L7UUz{jrcy08csu#W?h5Pw5RT2m#2St*?-=48TdC!!
zw=^vEyF;Otcbs8Bgb&25ZJ{=7(k?Dzt;S9%nlk~%Ayis4H^&LxF|nrk#sb<(()a)t
zwQ~jOEvy^LbqX7uvks`>M^{*yo>;qRfn|BVy@=HYfkwR*-?3YHDc*A{_1Ff%m=nx|
zX&iS3u@?j&7uC*a2yOaJl3*tocSz^u_s0hw^IBO9RM2w7JppJ!tr-m{kSU-0fM`!1
z_ohadXJ!az1nO)f&X>>smn+`u(_@zzug?}CMBYmjf?w)22^p=SphugEvB(ERv7cjb
zu|@`L`!;D;E7~}rjl?Ijk?3JzQ(Klk%fDJ=$!<RryN&&+D1Fw&>0_Z<!AD9?$-;cf
zr<R3M+Ud{SgzG27cw){8r6WMic%pe;(KDnV0Q_FKr2ci@15mdGt)u<$3l;lRIWS1r
zdYjmEs;?A=UhETn>EWM)cM*yh&e@`O?aN@wzrPHNVVED(;%@iaAs7?+SnIttOx0G4
zWlZ?^{Jl=d->Z$}kbl3w=y<oiWHiDVqKQ>C%2uQZ9B#;Y=D=l9gQjQ}hy;mng{t^X
zuJIOk=3G0$GqWR&J6jvQ4>-wEyXBFf!3Z8!0W!*Re7v90_z+Mr98Y=>=R{d9-|RUE
zR~1a@=?cPMC<o(kg4x*hB0;Wo9xy4B|2ooi|C&6<<29|BZ9uqaO%bE7L}IO+5wz2r
zL=(P5py0hES`f<1K?u##TSBBlJxJSau--U(N_JnI$Ukd1$Fo!v&tg-aFcmyY1uBjb
z-jt`<o;Pw0)B}N2wg`CvMuA7VAffNfR92j!ED@;>uVdZC&%YFL>BLSN)?(dX)jRIW
z{iZ6xt|_{ys14)%ZVjC@pL!}@Gt3tv1ooVFck!uH1R6Z?k$=m<rn<)L&Ys=KM<B7#
z95n*0*K`hR+kL9jIRTgLQfvKEuDpvcI(VC%Jbow7a+bd7^h&&S^%NAkqZ<+hyGQ7j
zzbNdZfe{{}F_MFFi4ma*KlZtBaBXpgzWXlfFuV4>T6Qy*#|@>vvaQL}YNC3)KZSUH
z)>c@6qrVdt<!-1Kx)ZoSWxh{<Td7>9Hz^Wq>`|fR61SLt=vgIAfzQjvIz?|8DxaM)
zy7tc)p9lY^V>T$AErHgsGMtM{NyeVNRp0}@5wjW1Ibcxo`;FFkdJ#6QhT2q%1$Ra5
z9WgORvv`uVYQnKh)XOtxk=uVh2M?Ee5KesG-jd<w8cZeqgjm2^ux1OyLKPMC`03Bu
z0sSk_){KUF>-+Jh|6a|Q>K)g=lqFc1i}P+Tq&PC2TFF^VQ>F)rM_R2~Mo?F0ijh^&
zSTMzZSv?e$?G=!-2_abBMEG=%8cpa}%CCIo_UV~+I<eJ~dg7b#!fO5%Aswh0qKqyD
z?hAm%Yo&60$Z><a)*AfY*L{9+-P!%!sVQKCU}K9Rt8KQSDd<Q1#=QOW`psh(t71Kv
zz=utu#Os2Pt+1rCv|k*4N=*@rjyz97Q3K?S%~AIgEN7fE8E771DUky65d|l5^jh7j
z;NY~-=~B62dgqq-r-VDyFxvtC)U)P5V7oxOWRz+P4JK_4n~t^|7UgeEO-}gAN)`F;
z-lNv^BEnrx4Zlgl%pcKtX1lx&ep6;AtyyngquA-n@l^)ljHfB7oVPeogCuZX+c%p8
z-4Y0{-bJ1Q>0bDfAInRNiF}f@J-m`llE{AwIYSBiiafnj&-uqWzlNsjftXnWZSnBS
zHKS~9nH+M~+m*8C2)PN%7qW=es)*zd6ICCx6;pc2X&<A=A<RIWtui@f;*r@A?L^`g
zh(d9m(2zBJjNG&%hmUU;MJUA-s~Xvyq2(9{DJ6%fd8uNH6YZ@WMwd8quH>4D>e-ia
znP>3SdVCU3JnI4+60b(MuF(iIi1`D>R;N<^@vebyZ?K##Uam@mQ^uy$Lb|fr8*C!4
z+lD{$Z#=b;&qQY!jaB34+Bp4;$4BIfU*Ve6n0^^Fn056A#VPLDflKV3mVSd`<$Qq1
zM(@S62cqsL-=NjCfc&a^U+HBhre$<5@*{5NSoi&uRYSweSt229w#tlYjTg}=#rWFK
zJmyu1J=6DAcLieL3$F@OQeLc~Ld2o7Fb1z;Vax9o{E}1Y553#l%)a7pb&nBf1LXCu
zQCaLb^NEEXy*%aLC9#rUVuC#e7Xyzqs(L@t6k&h$Ybb8v`$>Gs`{zksZvNx(eN{v*
z0Lgs8a7cE)|3K#rso<|apQw}JWXkgiHu=nmRrVpq=Np8&krwYOFf!a=J^Mgo|1ETp
z7<aB9q9I<MoU_{N`=8U4T`|UAbH4_UiMB7pzTQcs_D9ZMx{w}7$^QB4?ITQzj4}{W
zAg9HLoW#lk5}ORaibGY&HIaXOc8ad`_Jf+kbbxJ@Ad;=%7FdXwPe4mm06YvlGYEq+
z1@4FfDj>&}tUyRh(Auw{Q{zxlU-y@LVVx==ePTdUR!Dn{59hPMaUa{=s^I;q;O{Y^
zEaRcXwg5dmgx@##peq<67uM|)25}3y!H&WHsCe*DM+ScOgUb2gokdXEx}S@M^cVx&
z)Q-ISezC4mRh#w<sHh9$kZO+T7pl>;^S1wy3+Mbv!oZcqa5*&izz5;W@jv9kxsXcN
zm%hbz|B(wfqd~^@cjUr(JOmZ>f8;_@4n!FUF_H=PEr!qEQG+>SaovKTsX+|QL2&|(
z?LG)v71G3Oj1~}^zT|QT7Ccu$aHiPJKSIh4LUO!Ai>Uqw6o~R8bc5t(dUmNm#m8bo
zHe*7?V{zr;GJO+>nBv=g0WaSeKWd*<SlEg(W}Y1$*6e-9G%TqOn%Rui0>zc?<IL=b
zg=1o)On^B|Oa-<$Mr1GAl{3cI2V<Ryi8o0a?~0q5i)+Fpc;B7=vz@+*1K+YEevijB
zE)hy+CVp8;EM1Cs5Vb9d_V{U%6ld$f;FF};oystm!Z~=?&&27(#P?QvQTio|!Vs0Z
zHnO^Q(#mN)-SO6{=@0DEn>?+d_=px595Mmiu?z#22%%#!qo3k~byM<8!nH$_!cwA}
zJ`u9ox|zcrXW2c8^<D+W#Lk2Uee4SI<#0CG1hh~t)?6+GDw#HZnK-_|kNsR3=HhKX
z#ltXwT}>toZtt0sY<>*{KJyk)aZxi3(wNA6<mb`Ym8x_Q(QON`p1Lyb<7nf@<5{|;
zyo*)9ssWaEfM1SN7JCk~B%5qJn*o#|Z|a)E{_657(+xjshcdSzHY4y?cAj5S-GNI(
zP1Y+3`w)E3umcA@HNe0QkgCaIn2SV|<U!_L0wsWIn*1;|aPGTEyq0`1yMoVt>HXhu
z6sqm)Vt`^4JTNAQ0fn$s1!B>N4RLQ!7C3G&P0Y3s7wO`t7LLSm{HX@yr~-N2LF}JH
z;az}Ub0BVSU?Y1m<Z<!kjnfPWdgJR*_Zfi26;Ds(zyz~Mw_uei9zUYPW||Af;rSGL
zB{<YY455X1LowH;cE>k`gkcC0-<*Gbc~HU9?+1ki#)Wupr3|3LZBy4U-O>x}vI`NS
z1jsFewv<6qOY!x}6b_4Z;(+^-08MX+0Bw$3oX=1VFjfQT_hx(Im*WW*;kKj)h88`I
zE3m7rtg0$t5J32%LQHFcd$qApvBDG@IBhQQ3eT}3)QdtqDtZ}1Ay^GBDZ(8p`rzv!
zEJ+%rUO;eD4%8wa<mS*%0A1HEO*vHrTh-)pH9m1kkpF0iK;Q~ta2)U-4RJF`)HmlV
zbphxQC&RwB`f*jk0gh*H5foN^vFG^r(Q_q9=i);gT(Mfje0d6Y{b*HfeO!n@Tn+A7
zZhu@rv_xj+N_~TU#k=Ly53~W%IpD|L!9(IUnZ1>JagA}GDygw!F~pV#cgeyTbnVCe
zoa$oWRV94;QR#m)#LXtGdbo-t60G5Emg5nNsGCWFvB@=0*3|E?*U-q-;4(R<F9WY0
zA^N+TAxQXDEkMMBERt+WkpS-Ch;hdCo7GKtXSiM%m|k&w<>sq6ggZhb4~A*tsf%Ta
zPx=uT1RZO_BARcg>j9~H>AY6)m#v%{z{KNr5=m!12gH54wusmk+9TV)-0do^l>|c-
z45$vnFA$-r)O4EmC-FtHp|HVsf!2R`wB}$zbH%zq7iC_fPkh()qOHrjM!YE?9w?%O
zwU@a@930>Tc1ME7Y;rOy)~{OF5J;3%MetOEFgCB5?n`xwMtiD#Bbi{!m*pNrDm)|<
z<~!$y`O{4$S5t=Wh9cq7M{ZLliSY!r)?)5e&w60-J#5{nuax^tCwrr$fY2kqor7+I
z-|afIuNw*aoVoj8TkZJ)4xLYc?tsEO4yu@{6V+MA2Myp8Pb9tHYob)UFaGgwV^JXj
zI81YRp>udl0QgU4*M-KL3l^JpD*t3}NCi+x)B;P91cC$#162e6J_`EF-p6&fGS~;<
zdkMy|3AypFNWUk8vijnC`<R$|2D$s`&U&^x8;HXoGb!CS*@NO7J%OJ)UI&CizBfns
z#S=ZQC7iA<Lq*KQHuna!b*twl91e$LB>=33BRDX3&&2-T>-w0ZFuZ#MLeu3PH_f_J
z{$jUzAH{~*ZU<wQvw5Z)V74Q=64|S?!*B3I#IwMGGzFG~!*9+ZvBmIHI`Eds8xPGf
za|5^dlz=KUqGvDN@+G1Y4b=j<c&Gwpq5p?eL?!gV+U}5wh0!h@-$sjF|3fN<_#)V|
zhKW*#Ia69HF|cNzp$B<GsFoo;!iw525Vy@x;hefGX=tp#J9sL%>KUTA7+ws5Kd&iI
zT7{&%b}1k%^_+k-+)h4zIgY6xPtXM7&~Gn)PZRdO@(l&c4aP_$3~9wr2crDaHD?%n
z{`37f{Td6C9>2u;PUL7p^IrF;eXrbEofe19jIYcD#EdFS_5bspSvCvm%Ae|6oq}3U
zWY<rK_on(&P5-NmckvGRlrZ!DB~XQ$YS#pyGqWe(aj<l7y_E5ePk!Wlur{+P7`O{G
z2lIY1#xt`pwBQgPh=>avfFmIka0C|`@%IRaZ7wWsGyU&gKuGhTIBc@2Ie>LDsKpo&
zs5YI?J>-fXuxaa7m>DK19haN;UOyixbx;>t8N7*s5Ql+FH}7UGVIjH>-;P46Q6E?*
zfl)ue%)9|QwAj73sP%<Vzqty>_(O>bm>!PMe1;Hs{PBxsWte&^+8CiM19;H~_%!5;
zCN4^16F-dk)HY^*)ID6%PyFm(0J#5cP|JA@{Qi8&u_Pe*$vWthU4e&M(6U>9>b7VU
z$ZQ4SyMi|q@oa4+v;RX==U58|B0c9z9Po)a4F+<Z<ZD=+nn4}e=a8m?86`az%-!{~
zyyZ}9OvttLw{JIShJ%W$j7)}!=EsD5ASPpwPxfou#|89f9uhw5_$_OQur=~6pZ$h)
zdOdeL7-EBdeUfW!cMbS61DKg@X!t;AZk&d~VIWl9G|?7P8|B2kMLO@<`uII*@D^U`
zmddA15{oS+{%tn7EtV7Dgahu2hWZI0__((?8@G8+wv|6^PB?9gCGAY5rArVawXmD8
z@M3uRm-VUR9W?(}wP;uf2vk0`qjmC?RBu~{f7i6~t1QzSgQQ&phF#OyU3E%W=$%Ii
zfSGH5(;C>dPWmSJXvc2$8}qDH4QS7ef3Iflo0o+pqw}6$<EqQUJ&(q{5DPP3;{Aw+
zZvxl%+_d*&gH5$uSN)0?;)oBdZTDle_fnk?#3-OMcw;l7i&=L=EMf;S{|?Fu)k9No
z?#~T4oq}mX+sjW54=4|V{vEaj%j$yQAp%_?Ah@>XQU8Fgl`zTK9S{N_xj>U-B<&A0
zexI8C9y!Z<A@F^^koY3>yX*S*&q>G2v%AyG-xsvMf3!GQ;Xm2YK0(g%uGcagZ(5uj
z&7K?=cI_pd92B3NX#e=>{KE?VWB=igU$Z~{p8V*^{INdp1FL-sbvf0iJY9Hr3VVM_
z^y8E-^Yp;tm_+A{!sYCk;%sE#l<NH%{f{&8S7+xB&lq*i*<8;5ke$<oob$ZDGgb0(
z$)5AyzYx~BAO>HITU<yqT}Y9j#B>g%NiOB?Uovc6ls>#vNxoFu0F>?@ssFgtDZ14B
zv8Su^)2Qi!i4g!X-9SLnAP|U`8+3lhSFFW}xx2x|!-v6PxNt%^9*6)RL`X;oB_M^9
zP(vy2!DtxaNIE1jh#Uz501`S%5Cb)coScm6j#Gb+4t57OqF^SZW+$TMA)yxl7=-Xq
z9QaIJ2o6C6rw}oZIK}<@^h_*BrU#^~Qb;~gvilNL0{3Z!_{aq%X+&gL?t!>jKqA~A
z34V~YAc%#Pg@cowlaqsom;1f|zkuL<VG$uQaZzyzF)0~Iat<^Fw;~mv8a2NLsgM$d
zs1}_Vnp!}MUR;hwNdKOwDYeuidI@s|X-j5lB{o@A)I%#lIZj#hLw2+(kD?~Ost&)3
z?tN8VVNC-uU1M=wV`;-DO!5w_%5H3`UhEqFoLa&14?rrCAa!Ywz5>Wt74$>{gqD-l
z)Mv8N1KB+SIhley%t7AIKmk@DPe)2$7m5HkG6f}hWmP4#y0)sCil&yjj;<Ek*c@$Q
zuB)%3XQ2DY#L&d_(GxRM#V3}kPi>xBnyWvv(R^;FYvZ7A>ty8MYU=E6=H~U(!}r;9
zix*awFYT;t?QI;L?OoiQEWP}!{etWQLR{UQJ-yw$eLejGyaR&$xO76f^dfkS;&@Gx
z_#dYUm}LrB<O*392wRoOI8>sYs#M%-)V*qTeCzc6>+OTWg2MuxLL*%xqCKKxy<_A3
z;*$cCQi4;`!tFuvZlHuf;&3n0XkQ@KA4v5EW%z+of{F5iL202Rg<+ulXu?7aqAUtj
zi2;?y;nyXA+S5VZcOi8yC^RB?xDYg2jPtgP_-zIGyDFNoTDGw|p0Ngj@dlyDnD8h}
zM0_G9DK$Pk{Z(2<a(ZS;W=?u;K~`R2c40|gaaloGWpQOqS#@1ST~l>kb6rb&V|!O~
zS8rR->yF0Pqs;?v`-ghlhu*!Jm>e4IpPR0jo2i?B-!ebfv9S1NWNh%=<nYM!<iyO|
z@%Pg+^OFmU!wa8g?-uj_?*+$#q~P~do1eirIS9GU#+$duIl(`v?NnR-(}M}yua38r
zjV04ED(BmtMHZz8tA_K&3R$Z}(kJfAwZEL0%wtgUPQkR5sAX^mFlchNSL<dgrz0}d
z7H#Cp)v4q=#z#p~k~m21*5bmq$VtIF*Dd0&c8qHumDL)V{Is7(8gL$d?GfcBmsK=A
z=`jGt86sSF<yUJ+-+pTFgU%9h`z$Z@;%dbnZjQLgvG@Wvmd{T|=@orRNkq;$8s!#B
z0it*NH0`$Gnt<0^jH&S6JjVU#(VFGN$wpgNrs(yJ*o)}5KCp&<(-%i`RoHTiHKy4g
ztATL!O2-~n6goCj4{IE-9dLa{Rpt2^Zf#mB6E~{xsJH)ohd96!_dJ53&hJL4#)r|0
zWfiH4GMH8dGbiALsmcd_?c5+|ab(>L6zlk95%|FzV+muh@Ej9zc8VMp3Og-fW^BT5
z9~G*^(N|Yua=$FKBTqEhj!`?X%^;sz?bHoAN^~t?khX6h6QWpWon(X-7z1}Rh>Bl>
zIO@k?s3{1?+$+fLyOao{PfC*<^!ZCLx#Otq7|y9txjFojlyeoXQeS*X)|8boKsFT_
zKE^SH@<SGQZy)TUSrS^O-3U8wZ1T(KGcjdA>eU!yBy;NlW7~0$W)YtG@3oo~ZmYwZ
z&}vq$e0K)y<GljEVaomDC}I(4T_~!R5Ctj7`6lFG1F;RUr=LRR&=oYVGt{t8q&C|V
zXJEK`xSmf6>0XsP>P^qS9OW$k-ZI8nsri+c8S1ud#95Y4&cHR#Pu|!*D?|68|Kf~}
zy$^abJ|An%4}o*xPMD;=p{3_#j=iR3bJZ&cy#_i)Nk6DCMmi_#pr0#i&ZTKJURudT
z2J`B^C9*WDmkZ@TZ1u*CyWM??1}zQYm)F0ujt#}6&Ec1stjckQwC{1q6=|{qS!@R6
zmvc%yAI7SG&Mtcl13Z!A3DBCo2su?At*ZsvsPN8D4}Hw%KS&wN=q{S6Xw8k%XNR}V
zQUzh-OEywEvN~pH4%Xym>)67-p*3o6k(-e|muj4fiLM9uv-~@TFy(~b&RzL=@^Nda
zzgT?_sB-i@V7@OEPlu;Ye~K*G@A3vHHIxnLoron;H*8_(BFBUXYb+!u#0xZaQGo<s
z1I_|i=se^GamB&-LC+a}!n5Bz+JdttHs7E*1O%_Glf6+<Tu`>mJGwJL&(|byL96$A
z2>u6#zgKt@-Cw|#;p+=NoZ+u^m^daG<woBDe`w0h=)*SUS79viqd!8}g!2D^!~w?q
zVO<Tijo+eRiSwMMpmH*;8+{}BI9C!6gk9P-d1)afz7<5Jc}sqPYTyk2PRhRd6oyqE
zjAUn343uP5-D4M$ci?kIRe(O_Yn!C7mxM;muxyZe`iAekZdMYy+#-ti9pzh4^}ur+
zo>jIM{N{CFTa1gW;5~m!y{?-OqfSBG@1sJ?kDIXeg^4D{_Fc5=`y??!)@RLQrDPeJ
z&wL%nk2tqs1{s=`F&CxGbxSJIhH0MYaz@tl1*N3=6sC&TPd+pEs3ax~`XWqAe=l)J
zZ}SNSB$cyJ*JUdViX1>RK=J65vFcgfGZAgQb@c7#8}8wA5$1BXC+p(5w$avxOJ?uL
zqy{+#cI!#L=+AV@%MHl#?vPIbQR<I}XT#7;$XSD8`Fx5x4<d-}RLaZ0Cox!fmDeB%
zybU9RE6(jFYL7US*pS{cNnuOmbDZ+6mcM6`VzBBQlhV3hLhV1YL)eacZTL(!i$*sB
z_1x1joa5+H?G<m~VE(@09y;=YP{_b#{(&^{*QI6B#zcGR5d|E^IlH)z0z>Gj!4dkC
z<}##!hhY&=DmOr*&6(hV;yk6$lf{eDPf&NUh=S|rZEL?;mn)3p!EhS(3TJ;4v8(`r
z^E370I0kv+mEllP>q&O~ghTSsZdTE-m5LJnvTDckL(5;lr!FTC?IgJ!<oS(qd5uw=
z3!S4}xV_2fa|j|>=H)Y*pN3AEm^Q@+-1@I34Z}UjWX%6^zi2Z7WUzDm_sdh(90*8b
z9Ob=Gk}D&f+F`s9QL<Mzo=#lv?p`po>w?G~TmISM4YHxAsvOjFjd`+~7<$!I#uxkK
z=5Tfn+^P0OhQljAZl>DCN-ch&$kcQtY>TG6Yar;myrafI&SX-*?wTGaCsm=|O>Fk{
z{Ib>y+6=boj_S#K>@c=_8xhl4Op81Y(jnuKSC?V<W74an9~27m@f*6z#KZiZ7u#b&
zTV&<HH!shTRL<hmJkU-KBWc)jm@c_!m2ZlFscWhQzT%klCu(W36(rqG3%T;5ks_V%
zo2UI;$fP4s{@jb*4jVs|_9KUjgxA9Q->KU);jM95a#j)TRoK3JT$b@9uosrwiR8Z7
zd74k}?Z`fGdB;R17%O(fpy+8rUYR{Z|Lk71PGG5e2`7|X7qp_!s)u5Kh!gjDdV5#j
zMy>1Mo`oj3j2%aEl0ePj0fqR>hXiCm74Wt^Z<F&~h5!({w2f?}$Vc8-;-j<Wxt0)-
zNHG`RSOF1oK!#55MN$rVD~8kJ)59~{3S10GG2r26{t*50rHCZw5|V=bn7@)sBMhqL
z9OibVs3*(Q-V9|5Tl?H$eSWj-UhP~9g$Ri$uEPFbzM=b;K%JFh4_7ItHj`eQW*XC}
zms9<+R-6GuWiwJ+v}cFTt<rA=R_whlM7kasCAP{kfW_-<URF<i^qHnRNzbp>RLor=
zD}U=SQ=~%8((Y4!_yA>#iyT~=HzGYs%>i=#>{I_mApt9S>2+j@o-6DX=^{y0b=uUQ
z*KL-#mXJpel<wJCY?0mGx_yXT%L>?;S#p~_E{MSRt9zDq_&}h%WaAuhui)<PlPKBF
zkJaU%JRO=~fdDGi4XM*#caa*mCUNnW>_^7eWxrAF)|>L+H_8T=mWXfPTh{aTc;83-
zGbU(xEeC&4IO_B4ERkb>^F_8#3EKI@q+zp}T->y4^IuHw8xAL)bLQc2V%^BBa|dPC
z@>#vUkiY}8%U$8{pP?CUnbPj3vhG}w+F>LWC@5AhShk*;UhJiwGn1S)d0l>q6TUsG
z>KT5}tu^b@?l-H!3abOUoFH|TFL){))*4iTA={5aCVn}U3jwDb?lW0}Ki~2VXN9_#
zE8t;*ZeIHIjL{s2v3~sQN@a`wt>R%T8eZdLCU~i-<6#ym<jq7K2H)3wU=W1M%*vu4
zPRr?+o+Xmq8Ol!@k|^iXyBB;;6(YtNSUD8<@iLGcM|-#&DKBQkJ`OZ3hAD_xt5eJ0
zFEdtNWF5zaSL(8THTD4y-NlzwEJEJ>N|NBMNQP8P3ZxGqGF;+?@erAG=&4DWfHx`(
zTm~T6gb@zICgx{)54~kM1tk1k5oMd)xY#QUt_^KChOt5yQ|78rhLTG40aC6pNjov2
z`w!TldK@Z1z8Kio)zy^zX?1nnK2Dq?_0x1!%(YvrY&j-jUyrPlG$lO-+7g2@&<{Xs
z>y*X3s0t=O3m+*XopslHpeULg1@BzCOV!2Ck<#>N&VWJLAhc8y#FG}uP}$7)hV<Tm
zDlj;%1>poRC@l!|CB3UR(${WM745((wRVR${wjYDY6>7397sbmm4JRPyK^7MtEB|F
zUn&H0E>NaKa7)71k&w8d6oRwx8()P#s>liyN5X?UT`B^47S0sOz|t!5G3zDenJZ#m
z(ya8+;yyEcB7vOC{kAOe7VD9gkY;E#ADenN+Od3>4rPdzr;ClItB@rMnj&Ah=}{x2
z_HmP;^Qjr|H0GQP5{X2AHpSCd@WOA86><{8(7;DA@53QL>n7Sx1v#!7^UovZyu^6m
zfxF5l8E?B34<UrS0x<E3q3aCB+of}y?h|e4Mme7~1Ie})N1*4jS-{YWeKP-L=2>@H
z3Ywg7HDuvuWL{2IfFBZblg0g37-W!bu^@r63YcNZ8n700=@jZ3$z9F}F89gGV@;2w
zxc6}{K~4f76&F%fNp$f`1i71swYp?;NSSsEcj7Bhl-P%|<Sju2o|yoFb9sE8Fu4(r
ziMLwq!ZGlgyj$#NhRN7)z85(T5Tsou0G9CfZ%!JeDwI0Nz`H1bp5<W;nB*Q55q!vF
zS(g5K5K6VhwY>C%^As{V9@=gs@4Hw)F_cEa>c9FmiGENTo0E4-!%LdWKH#383_%kg
zBD33(3lqw15%*BJve#Uej^hAv8&cPfN1ujW_Z%NDt{B`>ivNjKw+qlHHQqJ`*wnMG
zJ&Im@HX=GJb?eL|y2E;x6|;%v14wBHYse%23TMHrrBT|_(;QZ7L{~bzZp2TyM|o2f
z06{B1ol}3^e?oppW^S)=h*ZlJ)7w`AN`P$Y)G80sDw@<v%iq-2kIgkB^p$ZWjQlGe
z^|I(<y@9F}s@U4<OI(S^lH644w%avn6gRZhuzWsAfC`fJVGGx%*f`@twtUk#cLnDa
zqNwIdF-smujjPa6DA72NM17Qg2-x{-hG^;{g24`Fu_Y=sH5zHPs(#s7S%tFga;u%v
z>!S79z3Fv_rN%WtL2eN;yXLQ5n5k!dZ5%QHg<x?-z@RYx?&5E19#W*GY3+@;IIPbN
z3m|8(&vAK+kLw{!O}3`BVe;fe{*_AJO*Dda@xMhNb?V2prKK^?DCZ?4Of(3#%GKo?
zzeyqtLK`JknuiWj5G|~+AkJj#X5~%F3IT6Pdq`cGqJat0b=+lS%v*1grgT!P413Li
z%50N}N5*Y>{!uSi@I)ky_?Z|3-p`Tf=YqTTw92j!?Er`d7>f9aBU7g!@QuQt)6WN?
z6zGfO&;X3;kZMz$@^>{)I^JS3=NL&FF$duECq8azIrS%L$tPV|+|H}Dfq3&3$E_I%
zWbNoO;~|rNaI<0Oqb{jG`8p6zaptaLa8cN^A}O!vl`W3<i@?w9uBAuaJ^~%|t_7(F
zygT!SM?Q#;xe4brP2De&?I{{UpT+;F>CHnF?w8O+=OJD2bdU=$ZMC%QmuX!7NPxS}
zzcxuexA;1)>x24hO2KYXHQ;0tne|1$iNK?Vv>80q)wtXBo~D6-i$V}fF!1BD2Q%2W
zeAN56<|%0=aEMe%BIx|$$!xBHjNR-H8Y%Z6NOD$d3*%8aiX!9j7IgH2RiGuU{LL18
zkmUk{(C;b+bb|zXG@B+>p<SXZb1*hs&X!@$TaO`{X<gv8f_(en;KxCcU!koY;KW+;
zt}!w1h~WCVP6bb6VgD{%WS?<&?R#ngNrgzn_!|RmM$S{gk9!>HyFJA{TCuwNLcAt*
zIFRRiFL#&_<8=(dX~MiQ;5(D%)E68TNA=3N7rFpd=^ye}P)QcR&KJMpCU=DLE5lKY
zh0N<v@%*$k^*-p?TlQ^+z<J1u2*UsYCvQ|g4}MejOJlqtHf8K?qZx1CaoD(m$|!;A
zIAhpbx7FADgte{-M((ehnSYHw#30AJ0YUCSumix61`oO&E2^K+*lBU5%m3^rr6mpg
z;9~tO;XOE-xh2&_A<9|_!1U2%gyRs`6dglIw_JknPy%=;lb`4AUvCOrS9j(kFY7T5
zT;*eOj@m<MF{m;MTGRV(`SlDPp&o*5=7ZzRzp6XwZbvpvvO^oB@)TbS1i2IY1=kse
zn!W#(|9-K0_WSCrZ?4j=G&9|_a0O^~`(8PgTng8mat8dI#T|yqq$--5em_mURZ>Mm
z51W;S&b<~Ur<bBK4}F&~&8;^!@i+|8;%Web=%V?Hu(cCt$3)<)aD{zwOOABG3{g}p
z9)b>ID6xk`u`tpvu*|TPgJy-DvRV6QC}$vwLz+IWV6*`9LviM!%@9Z+qejX?fU72N
zLz*o8ha!Ow)Na$!HV~F`D(h+XS8q`oC}<Jdj2ijrZhy*C;O*^*G&}xS;mRn$w<toC
zk$bd&SMr%V(WnyiL0;<v(UuXJUXb(1QlJyC!#O=V-8dI8Iryu*Ddu$}o21(yWY}i7
zpXrm;@#l$NUqs2G?%*Osae@)Kr1D^iD)j>$k%xJ~mvGwG%RKGTPStj01A>s}-yqMQ
zw=a(nuF#{GjrT>PWES5MO%YM#H+2!FOn+g<(m$+dp3`*Y*W<0@`{Ox2Gxeq(c=Uif
z_H?#PEKkOFaY-B;-9e}oM0O~c<(Bb&@6tNoN1R^L{j47NXWmKB5}SDE`I_w4r+kk?
z41tQepS|@rc(B#VWKB3L((bj%y@Oih(kpq8rO!6`n49$~QTzH>yvbDQSHVW>-jmXP
z{|3L2#)gr9Tmb8wR&4V+v+4#&2%03sU4mluT!8t{!K5hr=`26Qy{zV1H%rXpS6Igk
zi)D2Qg4ZtbHFOc@m*#t4VQdPV=ZQ<^fnU`IzRs=Tw2N}*R0owkF<tU(E!6n7XtxtP
z<MNH|8*a<a(uW=2^|x&rJJtijC81x{u?!4ze;<5mP4adw)saj3@%Qxr{@Tctw^Qc$
z3;M?=55yigf2;k&oZ}40Cuu1Wdlcp~1z0Rv-E4E?eybYXyVLyz&F(y02ZHU8>AO#Y
zzpS6&Y)}mC$8{wIpR8MiuN5B7RBlr04Q%7FW)*G5yqMT>%{-z#Yo*K}M>oHd*W2c|
zg491`?`<R9)Q%$3JHb^*B*b~RHOum4;N-*jaU|};^I+s=MBQ?=&SnhL4~v!TZ^vYj
zcOM}uD*kb0isW!T+R;YVK&X{<e=z8se)2o*U?JylhiRppY0a??SRx-5pZfLJTiHRb
ziD`(MkbfWQsIKY(Pk}Ij9eSM8dsw+2C_!*}`nf`uA_{x%S$?J^z>IoxDldDf`1Dda
z<gy|{MjQXjwS1Fm)1{vLimL2S8l0bjTt5wy!Bx#a&F)_qVt+nkyfR=+Gkfz>?*5f+
z(Utw1E5{~sGg7#Z0Mr+Sc)EP)^7zt)@t4QbUrt3=e)oTQzBvz)y^ef(9UXFwDY}k(
za~=I25(L1X`@@bKDcuC#DE_!kdD@-+{yH_{CiTrtKI89F+27?)e^-Y5t}gmr`{sB3
z#_vY#?`Fn7t+IdGpZ@6#`O{tWr}xdD*BgHZuzv;_Z--@XN1xul3%MOHx}AJ;JH2r`
zi@lv={JS9g_rue_pPv3EZJ>;I`<st_^OqNg{Njv^gXvlUNhYjEX8+?a%8d#y=Wodd
zrNVpi{UYS~ePwH=fBeXQnc#i9RxBS0Ko22iHA&h0pR81HX>LmagJjb#H<{m7N}ze*
z{J(lI+A7`)GWSw0J^H{DURwwWv#cgzVRr=leQdPyKh23774p(ZO1qWOgA{yba!T{z
z42d~7bG2TWw+Zt{d;KaYqEGFUuFS?Y7Et~~Kev6Y2+0sU3hFU#!-o*PS}Tb&$bb1|
z%Y)@p=k<OXmCVuqjW5B!tZ!XU)Q62W<liFP-nSx=FtKmb*Rw*X0ts5>`fL})g;*+r
zRn60;^~F*>UIOgsm}pTchw}wadwuIZaq<!P|MXzEF~0$LY2`b$phJN^61kC*Tg+q1
zF)vR25cSyKMCHF)yP-L}1W|j7LNXLOp;S5pTNu5mQT6G8{=P*;FrmPkNYCFp$-e-J
zQ<D1WCwMXuq%_d`h+h$^@`y9iI@y!gWwryS@BTRTU#-U{cM#&pS<#^3xsAQnjcvC5
zOQB_gWqYORF5NP`X3k|)4Rj7e5USgmk}07G&N0S3*8R3QQTxUwGT+Pj5^nsXVwLc0
z$9?4;o5gv~jq);WRgOhN4=vFzp2FgMpGB;bi9=0}A^J;)e3Qf=B(#c5SuV0z_n!c-
z3^x3snp*LCM#i`f8tPP?3~RdNc^`J=2~X80q@938AY?=g74IV|3_lB4lZ(Wmj!|=R
zFntk&>3iY&{F2A@NM?cLqYm*A-k^(eGh@1agZQ+2S2It<gxIuG!e>-h5`v-Hnz5gx
zTH7R!M7&L1M<{$&EmcrB{bbs%?GeZYzPmXT<x~4eHk;@2CNT+fO}Jc|T>IuOe&?dS
zQ`h(Q$qggQ3{WG4-p(}Prfis4iC=%4r>r6Tww+NVkMRs+08vav(tYL|rqJULzG@g4
zw{NjCO=dTWQCq^TKIqTe@s%*`?q3^TQ1JD~qBpmXO1&5Rbx{6vw05?>$)U8RSl_({
zpBL=+Y;t4ST}yoq+ug4|FDAE`J-4-nJr+BtdF8lLjO@Pp{XI^1oYuLrsWA2=JVS9v
zzmMMe(T{<O=s#wwANp+}BNKQ}+N@W+e=!wC@vjsQ-X9iac8XujVk(%R2=ZLe*yBxt
z89a@ae9ZWDYWAU~DIVvt!of|lwYI4;dCTqT-(MTBaAsuK38!Brw)38K@y|?&0o+sq
zd8>KiTU1o3OeR(JP1;%BbJjqn+J%vDe%$4q3!=EfVuKTm>U#7FR=}?#Xu9wQCRG@W
zIuc{EUb}0@`z=eZ;Ja2ytrLA!f-K|yB+TwxyBU8xSoZ8_APTl|D(6%Ai~vh^0${8+
zw}^cNmf*K3y*joHOwH-^$4kO@lYh1mJQ4C-3?dwK?2+MvWDIAL&!nqfHL#VanuDQf
zoqP@7q^YJi@ow}-=uVho$YPlwS|x&nrRa#MO_W>$dK5;}qH`DE`TQ5)0p)SR_uv^<
zs6K<!w~?G*$qo&>dgG?g<hZQXVG82%6u}e8%&bguncX~vGC<fLQx+;?%G8;&TFp`X
zO%j-`q^6C2dR{#-8Q~&~-K<etgL>k~+Xwt1aT~&77gtIRj?_sBhk$dYGx$lPtj)BP
z<XNH^N#{$$>y!Pe(4*X0$f!qe5jq2qO7w5E^r;;rE0Ru?>p9j4u!`cf<XzEbX5a!&
zMx*mePuUeKO;cPct+JX9ckjoTPN$+4QPImEm3_ZWO1^c^l+8DVsfNK!*?`Pe!}neG
zep;xMwAk2CVsb@GMExpL=J%UX4o~tpeKZbK7p26-AO=YN<$Cqb(VB~TJ7P*i>1nX)
zXZ)(-@`%T*c@TUEYSuea5q*j2s9ops%$U=sghUYj{HoB>x{ztZYfEwysb-X>A4b?w
zqD-%<<&tYq585U#owFr7XUVKAB(J@VM0{3si@UHiEW7u!8vXrhLN_{DmuAgYC7xMN
zU-v^P`B0rjNUg3S15pv~+Dq8*?+=-Jf-PyQlpOSbOt9n1nJnA^<D?1J9KQ~D+QMk?
zi)=1tl8QsgKi@_skXlMXYVKRo+pY_h3$#GrigH#^jN3`2tQ;3Gi_EWDI8qt1%v+F2
zsT>Vz8vVJ?e`Sg2cBrf$Fk&;{%<3V=Z<Jg2pk47E?Cf5%IJ6+>niqQaxFE{%-Rj}%
zuzPaPzsmez;o(3|72-vN3~u<ClJzw3K6)zjeAz}UF9k^$)4?wsl~xN`Nu=&#YCB75
z1zE-k;<FCOo8txb{aF*EU3yK1@0wpKyzyIK%&$K-so?p?t=NuKrE9XKm!)k_6PT`<
z_`TH=q_5^<q#IgCt&h8w2w1{Ovi-cC@b0p6nX+<VO(!%?LI(~dEK~Sd5_``d$%BS^
z!xDyvQF23^@>|t<W-4)NJx>M5qQi9}<w>fj-$u)y*@(x;KeJrd=Nhk<x$SQ1raS_X
zZximhc;8GB$&LOD&weQUi-_d;jizJggK(v~rFjbrdoM!yJwYClXgdp!Jfic~0h6Oi
z==?bvaV+#j5HSVj`Z?-*56MXaiFjU<R``RUL$|&c7c<8&Re6t^o9>g}<0FNtY)au2
zPVr!ZK0*ZP)`#d($=bli4&lTZek+ZyG68cd^#PrPPwHGO`%~AKB4>_o5BUZ`$LPk2
z&qwTUR+vuM;Y}{Q)VGp~D~%6ls__>NJz%8F*i;es7de5hksN`hKPo1zpD0^%N1P>1
zdK$lVyKU0DjYSbY&@}kBsc=<-&}nhM;v%#Fk~pq*z*{4np{M7{ERxJ&3*zUG`d;QR
ze*fma^+TyN{w!CAb(i7S*7#a3JUsyUFtH_b)W}E69}!93>Fs|Q`DJI(<n=am*@yBY
z-bnye`S9+}!H5<3?5$y{%zX-mr5hUh2AxLc$$uq9l5y*-q^ac3j((@&*1sIt&v{3#
z*OyPf>s8s)@9W*Q)jczF9!OPq{Pu`reQb8HRd|&t%g1!tD<Sp0O5T{(o1KV8t{e4u
z@nO7!{9$vf|B{%UOkGy<$a~`NgDH#fzCCPEhI*0Y4TgCi+)~KpSOB+`BQYwPfAWgo
zG-aEyNT8MH@6Jp9z~;or+%eMUx84s^bVFASw`Fmz_(=bTp^DCD#`@6DbABh8X#9G;
z(LYqbyl3#*;oqfCc1JK4)%c=x(xj`I1w%0+eN6_J>gkV!i-w(sNuf%0eY2)eQLmqi
zg<Zd~PN_KwKqvI#a>6V0Rg<SwBY)0ygzfj?5SGlgp($U(;TeOaXlZXhImYWjz$zSR
zMSj$mFsvU7w@U7-eH|q+IO~zI+y`e_<x;_yAr8zB8Yx;_db3`ZgUUw_^9Tt^^ei38
z-@hGB#7G9U^>gzmpat6R<Fh?59KpuvMs{+;xw7dyB%)kMD+{?Xr`Z_s*OkcPkrr_<
zS~`3x6x>4#7YoccnQS4}Y{zg$@%6z~STPE(F*5lIVP_ErgCl$d+?9Vag%dC~e<H<i
z6lZTTA4tCiW!!%gF!V$izGcAS>w$stD!?wO|DHu4TT=|o6o?f?WCft1f>6@Yrc~ci
za`M5Z5p?#rQWAA+REZq8p5a+W{3S{(w^!70xX)%{Fv?F!AzVzb9_}(t?&~q!GbJ`p
zP#>(I5bOGmw_L_}M_wRb#lK#~IN+gOo>IF8T-z$wYEd2v?vdh*s%RY<itlobfa?RQ
z;e@5~ukZVs#qO0!g*A_0k^8u;<&2f{x$)Dg=ay`>dL>bgWzm6sw2N(I-LkXP_g~=C
zlI^s~q_ccV@1i$&OEEeq6OpSN-}=K~FlMAb5*_vmzxh(PDP~kmku1uvugTJo^r7zS
z7wr>P<nXd-cu6D``~YMdC|7ZrZEr?|5`Yr)O*UyHJADT^L8j`zH}17jbnsGmlw-OR
z)P*DxgRQ8jX(u}(Swr(DRLHuKAkDBgm0{j#H$kWY2A2yRnPduP55?W%q78zm|I*MT
z2ZeJ9M3n`?$pxYmL&0;9nSB95^eHOwLr=&-HJ1RGt9dX!J!j#T@O<K3%=hW{gfl>3
znzcAsX}Tv)@fDU$AWFv;jKYNLW8QlIxwAUVZcA%ZpKGp8YspK{E{JHI52fpy%zRpv
z+Q#kLj|~4zUZndwK?+{sa|4+g)tpi68EJ03oYrhQrCH?FVTbFCMNZ3f=QoT_^hnon
zfxw*9QP@<>gyZ1g94=)T81#{#X@6S(I#TgEQntA%S+|+2H-Zcl{(fAYbs=6Pt$8d#
zvt>!AODGDKIEP;Whd?1vdWLwW`9qv8!nL_3)~Jt!bLB^&6i#}0719xQvRH^N4iW9B
zq2{}C42ozDXLsOq`dv+r4)QqX3?g=s@#>eE4!zbKG-@L3XexY#l6mEoK!I4Uh^Da2
zqDUARd#C|f_k0t3p@zq+;JsXG-8_%@+pi)ryDBFjRi92FD6`=Sm-(p>v)SN1Y7h=U
zzbY2R>>Hrw2o}F&9tmMoI(jFmV;6+qsXf5R1(okL_g+lYZO~1}+VXvjO+pqMNbzA@
z4e5+NQX6Q|`|@Ib`AV8TQTnH-5{?REQ-}CP8ay^j;2KYc;X}I#q8`pgJUp$qx`0FJ
z!q|RCvT;Ifc%-BSqd04f>iRzBk<(fkJ+g6{ia<TOx)w0A&b2LgG$ssw{<HlBlkp3q
z7RF<03oZJm1yv863}UN4!+Ji01BavM9xaX(Ehv06rvLmQ_OlNwN^Q4AtD{lquFY7m
zgxx_IC4$1)iSXmS;C^a@Y;r;@p|bphriq*KgRG`vLrXEL=vVageiJ5fDOrpn^*dX*
zj^7i=(96HhmSV3XbNiQn35Mr%5ERU0wD?IRQLH5RE+@Z*SF#mkM$uJtV3xZh*t=KQ
zUFqtb!r$BS^4~s=BYM(8|D=`gZo{1Jp{Dvpy|rDbr@|}=CiO&2F3h0%Nnau<s`*LZ
zU!$JmCvW~f86+|rD!{D6Bc-yz(g4&}qjgwjb=2IfyJKLez-+R?Y^vXEdS*4{S@=UZ
z<ZB;p;Tr4gPct(@^LY&Jiw|ZW&CNeKnSTy4UrIDzE-+tdF#pnTzB*&Rwr0M5Y>wUd
zYraWju|;pO&1bPAWARnXV%OZ_o0G-fe|j*B10#!5MdC<Z%uN3JPPYYp&^Q^W@cSC(
z$KQfeYwBz-gv_()V;=ewbNE+*@XNJ`<2sAapp6HXVA&-Tj^&8RugMo5;kO+ozxg!(
zL5Vq^abcYjaIS_y&S_Bgq$|D+Q9Gg?fY_EP9xfGMGmk%~A72B+<)R77(1;4(*jCrL
z303$+cEZNyW`l2h3?#mKiG)xz9*CwT`9{#?8?WE8NisyRB#`tOW74WN5UWbGxWvlH
zKCsgh@quV$M3-ow_*n_gb7s7xHZw{+-{(pq+waD=nMD`*@Q7Kt4RQXcVDEd&2#6AM
zvnR0;Q#~m)+(##&T3R|6lZbDUfEJPz$>c~T<S&z6k`fYRPjXW&oVbLM1xUfcC&ZOY
zSr#OPUhcqiQV9K2346XuT_rE)OUQrQIpIdi@i&s2rhcp4DdhRcgNHxkkt88Xz_ZM1
z_^6oq0zYM(G;5jUe$Irye9{B&biqc9IdQD`)jWpUCV=qUEawh|zjZqL+tMHFIL>eW
zeZBl{-?p=@-TWxU4k%%xWHLE4#$golf*JjuvWIpVkLJbQMeo##`Wbq!9v)Qr<36?~
zd*$KWRTzjd7$WuiL_Tc&QVpN;v08uI<u{{uy<cs22Z}St<ZV00d9a5)4Y3SFzLoH3
zequWtGHY*AXMRj#;Zl+_p-uE!N)jg78IzHj{`_E9M3Bl;?_Ni$l&>XKT}#&YzxRS$
z1~QhLO;@=Z4h*auvSY6gSP$RCNlX^v@g*_kp^q2SCot7l@zgwrZ@~|u?4&4abMj)v
z=2FeTD-=a7K#q4}2$C)M$-Uf0J8#pC9;@7Uv8H*mbkjX_-Klw<!CD2x^ff!gi7mU;
z5_eDOSjZgOqnY~NVe+ANv8EfwTXdblc>_a7O>T)J4Dod|2d~T>I!YYkLk~vXGKRwF
zW*?P}iV|p8=9kpazJI52ZFkfkM%(4)$TIH8-#NLcUD^?rg<W_zb$E(=gLAT8c>Jf>
zaXb?<eUSI*U)Ijm*hXdJD#P&~j6;W9zNabO5x;{s&B^W~x}8rBE%;PY`UOT(tO>CN
z%X*7cq`A0psDH~$8wX4{q(xu3+87)@ZHQq0GTn8_5-fHYd}*S7^w{=^&lIFd#2G&P
zd9X3iLwdt?svYcv_xs1K;Df^hM)@cD(PvDkUW}r>i{N8amKzGlDs~C`acx2IxkP}^
zz4RfNNuIleY^5yGy5zEvo;r<5Wtf<5o0$tiNd7rZ{m`{$2UlB<bkHV?<|+N(pD1b=
ztAaYcSAHz1F$?`0=J?HOm;@B9ODY!5GH_kWOgqoMU5e#6bi4PMP|5uVxd;pKf@6$;
zOZa#x-(hJiwF`OLXR%58ffNs(E@m1BIN$pMe&am0Jr)-^7phizx~HC1DdK{q9#k$D
zbnew(Dpz<uQ?t@45*&&N39*PwX6S^Z=>G7eY`PFmF6ELx(cF7v_={PUiU3XhQ~0-T
zm%SI`+J$&{mO@k6!ibRcMj7YRGl}~iQZK1Rux?rFr#E<6U2&=1hopnU)Txj0jKFFm
zq?|#e6^|z|9*1Ps_Ep~|U4Ek2U!+y3;QQDxV_vQZ<Nvz~*PU<-Jahs_I)fWLNu>ff
zs?ae$uIGwgK2@vXRWC>{BZ(c37QDl^IU;VVLj5bSPC7^Sg@h@&SI;@PV-{){bF0n1
z@SK+MboO?q$g??caQ*V&&QRwq|7}sR?H!i|*WbL8A7--}*Y*03VD{^huyuVI*NS@A
z!;<wGMMi6v5p09g`kSZAVM*-bbr&tQWP@CZS+%7L*ROoIRA}lkIunYZaHOt5OF6vw
zadpjtuj)Cg?VJ4foOP8db#XuZM&xf=(lGA@{L5hyc_e-=HCGNX*{O_Njxqi<V~E=K
zzV(~_O|U;2P4E)Ny7nQ(!e65ehqVeP=@TkAP1|iP#!3lQwZ1R7GK-|0(*KNd2fqIS
z8XDtP?zx?Y@hrH+b-eVi!d`c@@^r}u==SDgU%n4A@4S9;99YK@TTU9pT2?P8!iJ3#
z3(n7Ze;9x0F1sktNB({Bk2l}aIiEt<zm>FqmMeS@Ux2^A51z(v@?&m<bSdnoHL`gw
z)@wBGJ`SN~#wy-qeqU)ca^OQ4(cNsAF~0amgbOF1y7J`owW3K0HvlNVqg>TT!ZkDH
zVr|c!kFt^TZJS<IZ7FggsS3M&U(%#UD`);3vPF)!O3^=>G&6M@6_Q07P_DkPR~#an
zLiO^-rIHsB2T}h+8lAGf&*4pc%xY@*LMef)P1G#Ad2=LO+$+3%1+ZC&zGFa`<H5h`
zW`TFezhCQZ3#HNrf{#%dwy-9m5%0|x*jlSEeKrKoclVKv>u&{c#H4R1@9z>PvLvnb
zbmOihI7*?7Bq(fVvh_=fGjnqtMti&%cRo5$3)-y|nS1kp@u1N~SC-nWQX_%Mwkd!@
zk%5B!V!K&tDQflN<y?1sfQF+<f9I;Tr<AxcLqR}Hb><c+pSi2G#%|8;(+4N!KI2D0
z*prhVSnU4;fIxr0XExOb8%$4twh>Gf0rH7OqbLU8MJS9CN?#p}($XHKps?2{7oCz;
zY@dXp$0?&2(GV1&sJLP%L|wR-h8&7DicEnmb7Da$vZ&&G5>ki}BBZ#qkPk(DXwe9G
z;F#NV4qcSwk|#CkV}-F@^kRk^?$IGwB9i}T;zfHf1YuEIS+rn-iUrxw9-%aZW<(BJ
zWafXH-M6GrH7c|WZViRPU_^*;X;gs+R+L~tpA7U>M17Rf&<LgwL}o)s`DMymO%?Q~
zMS|{Tl}mQcX<u`IHY8`Fi~845pAnt31f<L0VdSJ8;i;NZkBTMfo2C|o>L-D4rrTno
zQg>rRdG02lMX$y>t8^DBx(B15vFZ}1fp%CZq6u<~AgK|ZQY*6A)fnus50W`;wZEZ|
zNGVHNWGr%>n$p}d_Rbrwt;yo*D5Si8#_mP^noBFb`ld>)Nz1@0maLol+JUF0HThn+
z(MDvjU;pabL8OyXIx@*+W~>&eFs1+0?M9(2^D@lK1$6?=HPhVR38RS8XCjC|kz5CV
zB;p~6L6H*OyQgeuR?k24By>T1i~<DJQWm*e&O2iyRM8_Xb2UasQe{ef|B-D`)~y=V
zG|*7{bu?IsC>_yCdX#(-oqom)b95d2oE0g0y1ci{JB4dA;`>h5(b6E}x~JO2?gboG
zDjRyaLx{ZGVue4~=$>DQ*SwgexiO(>2a=0frBR?_WGr0M4Ze5ZC}_S6=br)cal_RP
z<SHPdkW$L;$2N{rjh?p^)$B1xCvZcOQ)MjUvFd47-j$76Q1K{Fd3)}Q?Ov4Xz*){R
zYssNsS@6RbUp>S%LeIUr5ZeE~`4kn3=`ty5GZwCJEW!sqk>_3!8DO8Nw~XWAN_nQ+
z&HZqfzxy!odUt3a@g^0(0}?QE_^Z%Kd^f4`RVaIgyV(C0w?OOV2v?xH8w^P{5#lH=
zBIg5FMMRMZBk-_?Um+aKuqFzvMZ^!JFom8HK^Ad!%~{zInNf_0#D*xbAf^DK0T*+E
zA^Oio54#AFjMO!Zgkop_Dq}>pNW{-bF^ObxV#lEP2~x1`ZYI=W4}BPsQZNS!r@##!
z^Js*2nGlFCtKr602r+0u?jmln$m%MmJ{(5G2X}B;C~zYtQjj8I(K96JKr|uLJu)JZ
zT#V~30z14+Cy;q;mnHu(*~K%Rq9`GZNb!6Sic;JG3QS-^DbfNz$1!q~on&MOT&c$n
zltNw7Gl~Kkh)k-?uy?qGqGnFkfmq^hmdB~3OG?Qm^G)(l6uF@}E22wY`VyGJR3tGA
z(oBmy6GGg~<Zlu&k%@WlOj-O52?_|wWdyXJiInCzIqAv%+!Haw#0j+4*~?!BvpN5q
zTtN%c(6)$>dzTq!34w+;k*bnk@PueWj~T<2lI(8-vSB$d2M8g#<d-(R>24HJ3bje0
za3DLye8koeKY+7R^}|R{`!)igzUK%|J%X5^ATO%ube3~0N*G-t)S}E2KwT|JRsEAx
zNHMhoM70Ph6tn*j6v_~QG%bplQ1FQ*lIN`^o6b%1ibx7R%WG;I;+Y0j6m(*)D&0eb
zAMS96spb`@W+|QDmSGB~B$Kjl5-e3xxz|xmXQrR(o>5LRRqb`utcQt+Dc*_Df*@A0
zQ}wJ%6yYm@9QCCK?dxY;+N|xR4x6j=8a7=bT9*L!INOS;w~)ILKb*E9sh!PgWgDA%
zQfeWS5>rVQa#VWdD<Xl=RlU5+yKJg(wG>P2VypYUlX{Z5eR?i=y4#TN4ykyzjNYV*
zd)bKS_9Fc)X?bybUe~g;z+{?8a1B}z!Xj#|oVnXVXjmyTlBN`O-0A}{c0Hqzg2H#O
zFh&+KTCD$))FM6rtzp4NG$i#Qq~n29yFk`rxV$*RMj1hjJJ8|EfH=dh2?`$#oStww
z7*a1;PPz63n>w2CGtm^VjnpP3<&5zn4BiL|D1(!<9Av~JgKP&BMcFAYco|i$?<{|7
z!Xk@hFj_XVWR^i;hxFyX+{>?<x&mk8;kL{5U2;S8AkqQWHdH1xFZNKJo6;&6EN?#Z
zk>`wpI@>2SS5Du`C@G3O?@6_|6?9Yx9U=c@d01&V<p4KK-ZNF&6n8-mSAgK^&GLDX
z21#;%N*yat+d7$?wozJOeU@1}<k1|xW?N#tXS^hM$jx5$ZF}wK8|PTaLN<jd;vfY?
zh;07}On}2cn1G{8Co0=00KybZ;pJSLA`wt{_q(I=Ge9umBrj$n+J-j;BS?Xh-sG=a
z>Mfr7uG=CgXg9p$?W$!Qfy64d2!@wnicd5F2vH~nW;@`r=}4U77RUHt5T0-vZrr~C
zw|BDi&2N7f#1An^_`CmYmJ|H)BzO2FZa!gdbgSDUiIB6jcAjn=(Olp+XM)Tb^X+gi
z>7fgaGDbuJR3JcM6m&ETxdjaf)<EIsI68PKK9Pt|{2?-w0<%UeEA=T*-RgBDvH!dc
z?mdV*Sv8Ld&KsihIGlUv1<^X!z5bb#e8QI>ej{&-=khz800<}9v(upkcCnM)?0f(3
zd(S~uic(C030oqzS>(=izV`Yv*w!|;kBwioES>I40zB0PzZk+Bz7$Jbd)u#mX>u>V
z@sH<qJT=dG&yNE11rdcdT>|^Am+O=r__=|UKKHugixm5=`rP7ceIsDMaiVuU>4QJ{
zv6uZb%a?uRTOJeNzbx3x*nao_?v}up%g()R2=1$Xb<}2i+t@t4|FPcmH643No+*SK
z`I+6OB%igd6ck*MoHbmkI8T{nS~`gZADqI=SYOF31mQf$#Vtcwt=LQ4&T>2)RfOOO
zf)TE@4iG(vC}f=1pkPB_7-;<5%OFDI=v~GD0S+!l<9OiSsEeXpj0$E35SafUB7jXN
z0a3N>#zYWKRE$6dZs2_U7Y1tJ`vFE2?u~@GgrZO&bU~SB6$A+&$IB$b4i1)bWyKVX
z0?dR$RGdI4^no7qfgk+bv+V|$k%wiSA<U>@f0SXE(GFZlA*58{7LEiQZq64L1r#*l
zDfj`UmDUKL;WB)}5|jeDtQH;GAs*^sB5ENAp2gsNf`kamVuT^zgda-n#sj9I1lnKs
zuwo7}VjMoAOGM(!Ok#xqVj3>Z?zJJvV4@~+;uw}55S(HvS_JYH+K@CN?nH(2oxl-&
zg)RD&a2P=&f{8_O<I8yC1h!%_2Hz*%VIC@4H0Gi!deSAr%rR<^x^@4fyu2Yhs@|P7
z1Tf0k8u|?cCV~W_$Ug>THug>W`9&R~qbNp15jLPho<)HHLDH?%6H>(p7{S{~#zSu8
zOk|{!6a_}w51|yrMS3JhzQin<q(q+N$Xw(^_QyqLRH9%LAB>lfxg<+sT^Ge9gq%RZ
zxr9%eBu0D!P1@v2Vgw4j<VjW}gzzMQ_#|%_fl_KwNCHSw76pI&hg05|P+HW2waW%k
z4Ga;b0NLb?8G%fGMo?ZvSXSFs!lYD=<Y0|uQI1+p-X&h<rC#nOU-qS6{v}|V;o}rU
zBK%rl9wuUvz+gU~VIrnuJ|;^^TtD9B24O^H!jNKaSYhhrWkUbv$YiF^HKu2dCTW(Y
zX`Uu(rY5BzM<Cq66ySj<#EWXqrh&1hYr>{%(xz^fX3nq`OLpdQT-4pz=4;00Pc|TM
z?q*RCCvG06ay}<?MyGU6r*1Mq9|VFD-9cAUCwE#Wb|%(#a;JC}*a^%>UdBP8p{Id)
zXLg3Ckg4Z*&dGJQXMEPDecmU2=BIw{Cx7;*fBq+c2B?4zD1jEJfgUJ=Ca8igD1$br
zgFYyPMyP~ND1}z2g<dFzW~hd4D2H~ahkhuChNy^+D2bM+iJmBmrs!cp!BmdS6l8@S
zIH!tA=ZpTGjGllW<ftFWD9PZcj`FBQuqcEWfgW(%7pebdjdnnco+ObPseiSKkLD<l
z>L(NU0aNnj9;ljlX6chEXq4_Ki8kpT9BGcUXlB9al%D27(3L|@);8sYMHm4dAeMxk
zz#Sk09{7(D{DFDysVMl2f7mIW&Jq*oV1LLdoze{=EGnY{>Jl_6r0(FJ&c~fXs*F}@
zqsj}S`hhM2<(=l~MffS8Hbfji>Y^5no1Pe(VkIB|!q53;44pu$zAAvMDS-S;BJ6=8
zFra6qDx9_)Hr)X<`UkG+Dyi6N8qF%N{-^yRrYH<+bUv$Lttx@as;e&Rg%<0s!UnR!
zkgrm!X)fwuAws9J6e%!>K$J~ng@PX--@VacT9yBTDC{5*py3!zL@3~aqS%dEhC;l~
zD@Kd}9P;STu&cYOL?R??!op!i?CBr;fubP7!~TIV+UrFm!YH(=#>yzhYHX`6Nx`=3
z!1e3D?jXME>oV|bV0bJbXwFCJ7`jeHe>7PG(k#}I>wgHv674~n{^hwkgv{y~Nuf@U
z{_0-HOA<b!%?fC<9;US3=hL1A&OWEOveeQZX4R6W&aw&8PAv@mY`W^EDS#_p@(Q9D
z4ObusqXbV$<V@da+#meR7=40eAxC(!tzV47+cv~fv>;ZJLfZ0Hpx9(qMMNmX?Xvj^
zq)|mEoS8KS?v*x&*0?Q0)-B~=g#DQ<wx0hGOI|HY{Y=jyrsi@*Cs|g|m@cJ&E`)e4
zvkI=$LMwDeEq9J>fwAsi(r#(0?n#dBY>t3p@&V0M$q0-Nl7I}3i~yPX1@$cpvPi*2
z^~q#Z;5fyY4MNY)M6Tuh1|dm`-(n?9nWsPmSK*RiM3BNBa@ey$uXachHExgfy6!fe
zg33z8i8$|n*euOW)d|!QlrAr4`N#0y%#(;k@<JVN9Dz~-#YGZugfKyljQ|rgK}jHQ
z(yc`O{u3!6A7BuzSRn9!5Mlrmsy5}XTsZJ<3~#`qjsJ?pek?&+DsSjQ<-&bM0sF-g
zs7+rWZ@@<I1mAEPt*}ZwjO>og3HbkT@jAq4^#uxe83`Y;4r7E72(e;>a0-J=0Yk6^
zTk%Uav5_sX6+ajfKgsU~FQoAA%#N@Tm+?jPZxXlg3zOs+@9&d%@Kbu(2+%PYKe1u?
z4;All7E|zISa1i}uWH5t;rI$B5(rCNk<VNar=7qbh~P4a!jkByCFdxLn9&{Vp-_y+
zmK<Vm*&rfVmJxl%C*uWZ3G5VzSWk}ZK%wCHLfjagf|hc|h|#iIy0Tb|)+rC!VUe<3
z1<L;Ah$f$}R%8q$OEM)_%Eat}WhJu)F7y8u(IxBXo4`zYRiP<xMZE=rtSDBsjDX9%
z%qL*)A}>cQa@zf9peaxW6cGQ9WM#;5RWl|N^HV?(QXoQ)5v@4GW8|jC9e6Vyfb(%+
zb4?+0BuBHntg~d9=SAqj$KXcb1Vutmvb?Cs3H%_4K(j^n2QP{sAXK7Hh#+hj!R$!0
z@n|z_yz|RQ3h`tGN29c6AfIGG!4MDWNiWIn00B*xLiCYGDe&~m_;eaoG)gm$N@oO3
zZ*$ZpvSXk?QlkhwyEL}O^thdKBjZkU1a(jUv?1?}sU*ThG1nP4iAlo@N{h8ckTpds
z^F?QpMlZ%!$BeJ^Gdcfrj!0riL&`X3BBLNRJ9BeDfAbwwi&F>bRLe80+B0bwvtyzF
z6Z}jc{1VbG0h=Aj&KUplD3mAA(Cvu;!5kHosWK{nM1jLJM|4<Y9=>cr*dP;}0wQpB
z6zEQBlfr5@%FwWKX`l8*1Q`p`U~7+&TeNE;m?!cz$#CnCLl=Z;lj(7vNp0V@M8LLe
zV+0nqRg-u&XoNOC>KG$wH)xYWTAI*kXDtv|wn_C&WQ&3+EX^Iv5$=4#ClJRjK>-Rx
z;!a`RB%gq0b2d+Wf^7PLnDE3(_yNth+yqffd502AObXG~_k9mf(!F;l{mFdW5PG9f
zlYuvPCrW@1xLN!RPzc4tY;&S4b9iS|D2T!*kShw@0flk6cn@AqECITef+jBqxi*2+
zflVL)!VMpRSTFxgN2s?=w>QQZIF1fQg~)h8odAvl!3aE{@sY`o2l<dU$0>+{eK*0t
zYB`sqfR`tklh1~cv-i?Kc_K(Tl`F=1U-q$_Ig(3-k|TI{mN`sh_A+d?jRC@zclnn)
zL}arBWupj5rBzv9#Fd|bkk7f(l&@lx`KGYAi^KS0K(=HTx}TJSedG5;o`fIR_!Qvy
zrgyr8n>o22xqHL6g%ih{hf9GUIFs{d^ctEXr^aj82%``N450wrBuad2Cd87j;k=C5
zozBEgY*u_iu)E2yPj^D-c6ubcvLofM2kFVgGQOpeWc9%mL^5j^;&ccF*?hY=8Qit=
z;B+uMVLJc2uXLdTibcBH5s_^VVT5l(9K=@$23V{wD*=cCDMo(inUskXeCRi>uZH8$
z6*Xc<$1Hb$Sjti)1nPj!!G8uJrqDr82fqU?QJ_b;_IpbFjNRZwk#sz-yUg461<Lz7
z8y3x4w8ckFghR{5u?T!#=tp({M#~e$ZD<edlG@0YN0~(j(H}^3^!#k#ylpgBZm3JZ
zTgP5Fd{&x;(zgapDE!ew$M<4HDSXsQjK*hpuFW$O*e}CqDE$Ji{BG3x!bQc!OA^eF
zhQ-V5cMO@?WjwU83DvtielpAJq|7oH$ojy^sRaFJP|2xaNR0Gy4UUmqjYx@r?2hor
zuQ30<mT-x{)`+z0$d2^LguLCFgxJ@J5t1m0_Dso>pnkGNNa!Qwm0-S%bcy7P<MdiB
z08I?4P|RDkNw1{IH2a4F-OBZpVYW0x#SqHiU(VSQj70#<t~mB%CB+F~%IQi>r^q0h
z+15yPmhMNos`N)G&_#wg1rUIf;s1(axJ-_vzlFf=wO}r92VdBb3-K2O^n(oaxIeI{
zBE$g1pAG{F7BqMeA;D971_D}U5Rs{d4+}<Y_{rcXfgSKHGeYphvO5Dm1u8gV*+zm(
zmO(Mt@#DadBRljdMR0^Eh6xP<!dOsa2O!Iy2yJQ9r9+4k2^u+iaL=+61NV^PnUMd<
z)2j;!MxENBDnXwaRfbvy<my$YE)9nINf6Pfv;#YSJ?IvqT#g<=iYz!qDo>Vd3EIS|
zb8ceAiy1dAn3eFs!3BphL3-KjGR>P2$vp8H^k>E=Mv1c9ArT@d%Pe>Jljz_nJ_b*a
z>f8ZEqEjdmr(WIq^*}zOfE2&e(#Po1r~A%E2sn8{*>g?xaXhd(?d6MovmO|{L+#tS
zcNcW3=lWd8Z8x{S-C;FbQZzecZolmP!1V<~_cu7XppJMO2qpSD0F1c~QZgv25z?yc
zvZ2^Q0TInYnZm(=R-@^-*23!#w8ThpuERe>8EC<R8dMBH!L%}HKZ5LYk0AdFEyPeU
zL<IUIj%84IB9wt<<V?mB5gJmn{CEQ7ri6||i=bt88t4u{L?NXVDe3YNC%@qHvO^i~
zOA@;&QB)~Cf~veS%bfsWiXc7$d($8}r$Q3HEeGtNz%mU=aitgc+Oy9uIrJ_uJUfF>
z!prC^$WDS{EXW5hM=>+8N!7FxODzYgl%`9?9P_<UjJ!@$1<?d+nGCODk|#i^YIV>q
z4Qw$X014WVN<`EA6<A=i@=&rD89k~|Q4%qN*=C^}bF;-x5XCfu{2;{?`V#RYHs{n_
zW{JKqP3YQe3ECDrXyKe|+G?KzHzDYFnl7zSV7ty<{-{mxs&cjEwuArU!j;KWl1Oni
z*vAA_wpnKjDy1_hPO*#OhK+zyQbD2B>_0&T>=KW^0{asX25G(OSeF_l$cH=33dOFd
zNFimJkfYpKL~ln4#Y7ZKR`KMya79R07#CjFVvIj^c^Q}!+e4HQP8ng8Dd5<s;)XHC
z3!$tXo(qsuczUuRPkjiblslkcf{9X``<TF*yIN*uxe4-`Stv_cRo3**PJ8XPoqKd{
z5;`D!R>SeWSWl1#+WXH{i>@_pn^~>f^0^jAD`iL5Wz}%~e9fzatYTVB)4$bb+wF?v
zGW~9(wU+TM$A&#<nV;uIIH9m()qPe6;pWrsfrc(NvRN@tnEC(a6^qZs$U1Kn5Ua3a
z8++^*Q>2sxrO1=OQ>N(FTCocvWz~efe^2W1J22vi_>YJRiqq%fo?nA`l2<x!d4l{p
z02~PZ8nZr}h;JZ%FdsqCM-adyuX&oPURt7pf=>XfA=bN!rn1+;jwNq+D9POM212c#
z=mlloY1GOL0+=Zw!Vh=2gZ)a^LG8_DM7vssDU4*of&c=ALK_*;1eLMmO^`(eyGndu
z!v{q4fhI^y2-glG#l{?mhTl?}r~F`w)0pCIT&f&gVmQN|Xz(D4s2vLWcAYMMac~qN
zNFbV|l!DMPgFFeL-PBkRHcHN8VkDmBU?{^Zz6y<$Q6c}bj$+3-Hc3N8j3g8KP&>tF
z>Wu{fV?lmX$sZ=NEtX^q^bF!du>^5!eCgV$8lsmyj&O*`J4hkT=sa8A(rDufl=K#<
zvZFlkB+LU0vCem|fR%!G9iZ2@JmeGuU4<0JyaO`db;x*)&LEZ2rSX;#9fT~CKz(pk
zR^nig5hyL3<6K5Lxk*fOqH`e8R1-A=<|}8)1Y)=pUGjj56N3z;LiXz?few<Y#7yp$
zB1_P52s0G_C1iR>L4o_?=A0v_(s?-~$S0OzB!&{ip^G75K_+L!7QV<;6Ftc?9-0s~
zCSoK_SjH#VGEhDhgo-DPOfn(53}fOZLu8B6PDK9^BnPszabxVjMXhO5SLwl5a!TKx
z6jM}@#j&BL*oZ^2x)G-mB%vLEs)wZd!Iub9gacvfb-rp8%dD`GS^<Jq6}HU|kb;gB
zMcu-T%FT!3wG?`7tB^#w*KvJxAR(R0P=1Pnpvo1glpCZ%qi2w{Ugezn)a-RkVTw3N
z0TEML0u$gMB__lqqHOtuXHfuzDVV~Vj6s1Z5&;F<+SWs>0R$6{!%l;MGdx(Df)S)J
zv-}-Ix4d2FHDha#+1B>9Yb(fcj<COO&g-E|FvTaD0E8%%0+sa<ly<r6UGUb3w$YU?
zPK%h_-hxE9#5HaLMWS9P99J<XVB2x-z&8K8tTqm<eJu?W;nRZvSirEA$$mxRU&V~J
zw0k%$SkYR%1I6-g;sXK{Mscvk_VO}N1q2i}T;Q0@wiKU8#3%kBg@kEzAS^kRC^XDr
z4=0gd5H{`U^sC(dGU30hb*+NMnmZCh!NiKm(nnBomW>K|z_jBDf`{DP>CSX*(*&4M
zQM403h~xx7I8J24ieeSB*u_r{aFq#Eioh~q52K)KK|~=*o_zTZVIFfFNikdwm*;SF
z^YbVG-2o~`S+Z&6lbfdiXF01x#}YnWnN5-66}NaXhgNWE1KnpM{F$m9=<H`hdsYlz
zrN{hra0l?LXU#mcBN*27>2m6rQG@?>N;ICrhC9qtgdB&aye$O=b<OJ=hn1T-Chd;V
zYiTs!#m<|RHgZj&nM72VB=@-ur}@N(Q)s5o2?NZS(DdD9An=<l1ww_A<jusG8{O4R
zBDv`tUXi)`x9To%l0t3hA_8IG_}SCA@3Sh7La+ny)~it1jUR8)3|jDPOjgF^p%Hi+
z+zbB_1TX$=L1(Puis2}Yk~-O=@{0rxv39=^!tE)HVl$!e&<R4(2R-z`4+XaCVqn~m
zQ>A<}iD0>P`89GPi7w;>!uZD>2y+X$lP8FPWPwkz^l(c#Asx^7C?S3dKRkAeI~jq>
zXS#$^>?Eu-w>i#rjuWfv6$t;C`2-3^VG=sG5wm3fgxTE$Tc?lWbZ;`k-|eS$rYE|1
zao5b;>%LKKQ<zY8Q~S+xu0+hfJ+UCBp5HYCcxqc4+cnA^V<>)~){K2Kdq2B#M{iEd
zV?8}ksJ2f-5A>CDT{B*HmF<1HCuCo^=#Q64%_-mZf*gF>$zLokfq-9qN<1+mFoLg_
zul(dspC>~f2==d|eWCC~`qa1nKaVT^=8qp((s%xKq#wGCVu}xtl(zcOzu5e>pZV*D
zsQwXh0xS2Q`!Wsw<S()E2L+BRBs7j)0#GcNqBwfO0ijPQ_|Lg0Ffl%102|}{7UNMK
zkSCyTD4M{Q{EzxV@B{xXkTIZ-{;tFSvd#!lFikM9P6!Y;>dyvm5C?Nm2X~MMd(a1e
zP%%irOU|XQfY1n!5DA6wnG&H0fknH#uQ3n@0+A3Ql+YlUP}-zWS_T3USV`Kxq6?`|
z4Aa623jzzr5Dn8%4cCwj+t3Y_&mjWg4yFJPM4=S^?+x=%536Vy<d6>S5DycBG!QOL
zw6Fo$Fb?Oi4(~7vKj)H20cw^(1e1>mAhFISaSx9$5&w`8Gtm=25fnpF6h|>lC@B!O
z<qpJ;6jzZ7O%WAUaWoY0SK=Uj2!a;d&=q3{7K7y$9fJh+;1d90V3O|_gK-#HF$Z%o
z6_Jq{o6#Ac5gPxaQ5vU_8mrM7uMr!wQ5(0B8@tgPzY!e6Q5?sS9Lv!h&k-HdQ61Nj
z9ox|z-w__;Q6A@!9_!H_?-3vKQ6Kk_AN$cC{}CVqGCiii{hWs&1u_%&;F(ax4<ryF
zx6ugnAheE=C*lBude9;hav>8&A$u?)C(<21at|o-Ix-RmMRH(F(w0;*SUS=hjQ|f|
z$em8$4iEtk_{9kRKml`76jb9XSVFI8(k73K2@pa1fYLl-(hrEm2oS+3pVB86BPTVk
zCZQ4$0<kKg(tco4CL2R2Z}K2`GAf}_6l(E`oGd-Kaw!cWE1!~vq5u&tC=g|$Cc$#L
ztnw;3sSp1E!7dGADiJ~~5$-R;QYoSCR|fMS;8HIAvM|Fk=k5UCf(0=RVl@(B4-_HV
z#DWH`Z!!;OGt~qy-!d-!fQAASx%RRz-v=+p@*v6*A&Ro!6q7Ws!Zn-XF(Xq_jIt?K
zGkH2whb$8_3BxqQQYR0hEuC^JZ__bh3g3=1FPp+dSW`n#6DNz)F)H&iGcz$@Wr?WM
zF=R7~uroM4GcCT7U%*o{(*g>-lQuV^De;mpoO3SMa5X}~59-Xf!Xp&WrxZkis(?V{
zS}H3-0S`C|J$eU?XpTSq6CtPuqpApv>hnIAYx@$xLM;^L2=O2Q^wka`5k>(JLNr7J
z@k9SbbVPN?KJimp_VW+=ld1-^K$qb_$IvN*r8a+s%Nj#MRrFjy)I{y)5BhKqLcxpj
zi$z`341H8YPbWw%bQwxPX*e{p6ox<zlrjPoxteA|^Yd4vw541_NQu-gc9cRR=@a@u
z&PXynytMz80fYA7|F{$V*z|`!b0A9eM++iI17S#uRCKCTM)lOE3Jgk{;zBVr+HMpl
zV2+0Nv`>%gMpxrZ)3iYu)ld&LLqQ5l4<aPqG$vrwN;S1ZuTV)()J)OT6pm3+QS}({
zbV)M?P-hfOowQIzbxNhhO}k<~5kgK8qDcwWArHb)#gspCl`1}>S2^`a8B|dDlvw}C
zlP7-lNgc8_jo?r}R4ZK7R70^g2*V*T#!9AwH1dOIR->gp;Zz)gr-s5n!ZkcbK}iOp
z4>ZG?*cHCK6)k7UPVeFm%=Iq5G*JMyTg4(@)52ZH_4v{?XsFN>E;2n7H9c}vT1Ww3
zw+3J@j4%w7SE~hKW#nS(XCR&nr~36)NkU;=rCdvPU?(D26(eO^YM^G0VhI*XMgV|D
zAQYM~O<oouR%2I_Rrz?fPOl;qE;eQpmS9~4WO0MGqHbRywkGIRWHPor+iW9nR%fI3
zK_No^gqAY5)?|}bMo6}$iZ<(RHfM1HZHv%s69QeuRzps#X~))IbrfuW1!(^{Np62C
zEsmCxz&3Bif@9%zY9%E-d17frmM5T=3%mAWxmA(e2SR2Ao`6f#rerlFu8Uk{a#;nP
zm_R4)meouFVNPQx6p)Q}u73^!64Rq~6T)<tK^FhXSE2%A5F?UW_NJtdKuB@~jvzsJ
z2VpW~1bkNr`QS5>Nx!Vg2nL36vyTbTNvPB`JeD9qVwa*`7a<zYF*?_F8Ax@zVu1?6
za&h-dDz~Mumo}`ICt7fIGs5orFLDRs2{39kNYZ@)5WC(5zw);sngj@}X?fc>w){8W
zdIEs6NP7>0dlABXGdCgjV0`_^^4`aJR|RyV!hRY!A)2>@Hllt{=YIcTBy_DQb<>T1
z9T;;9b|5TwfeRvpb!cE>IFg3(g*9n~p-+NQ7<Lb7r1(RCCv0ei!pe4deG`O(4`QUa
zGk|H=L%w$)lK60&_$rLpJT4d^P8fWrF(lY2&OmNlEH?}j2$aG@iM|-=%!F#D05A?I
zBzCTg5h5yZGc7Fl6gKiC4(X2bt4s+bi_o}qG~<O%<ysPBDEgq<RHNGZY6QM)@i6Ag
z{v?c00OL%7FnZ)ZYUc!k^xH(iewLulb_fcd_aJQK+f0F?o@5WI?Gz%z2<*d?+qX>j
zxaG8ycNqkQC~it<c`p8-u*8^<%h+;hqfB3UGh&&Ox(*PM3Aq1Qs5~k3I0`}t^Aie`
z8DXk9_m-J_9^(!Ip=M+Vov``bwAnKU58Q}llh3WAXh@t-ft)qOnzvaq&6#e9g_mhp
zL&uoa%J@49i&fkWlr_VW6?Ki<7^I>tphdYhqnRM4`6Q~wpyl|w<XJzu`J3-RY4o{}
zDY}L6n4t&4q3cPSXBm$>K%@EDHGcU^+nJns%bW24oGCM&WrCB}d7hn)6g1YC%>$NC
z$C<hLrDOVk={cvnB9{d@^9Yeih+3y>C!q(r7U!6JOPUp<0A3E~Hfkg1fTx88^b`=`
z1OOunB$}!KA*)GYs|%tJU?ZYU#`~;VP4meyEH`)VGZFt3u+AW;u9anW6Yi?-Mo`RJ
zCeS(&bcYGPI;@vrtUt^&dSnz5yEV`T3Q(Y$yNA9cc}r4*2}aoz1_T8*dl~wGZR`hK
zKLQ9offPdL1WF+hfM5h<Z_ei86ByA4qM|j9!zr1d324ll0znv0;0O|-vl9ZYqXZD_
zTCaRI4xAFN1N*Gg+Gmj4y3*``VFa<onumF!xCg?wtv9%byI1^R30#Y{Ia;}y`zp43
zHK?j!jzhf3TbkT-yr-bNt6NP_yJ<e*6NtsV=execMieHynhUM8g#xwRufO5@Ti%<#
z`Bs@83cv-N6bfyx@A_|zV7U=t;SL+DvHM-9+aUks8lPJGwL1$<*80Lk*dsDLC|TRJ
zVS6LiyKKw^#oIc><F%{V62IMIzaQhe6+63)Te@|Ky>~*!hf2u#+PXU&$Ui*D!`r{_
z<qmdSzxi9f72IS^`@kFG6at*GC!FN~1H`)<xP^N_&RfH$i^_YP%e{QS2Sl)g3%b!<
zuOj@*3r%FGd$ma%#t}lqqg%<F5d~~xqpSlpf@G)dTVXT<#1F$^&-6|a{Vfg~Eo_`X
z8uls%9mh$jF@P&1s$&X*l&k$Mc|N@lLcR4$na~Xa`Hs)fu`tn*ZW$W=1O4Kj)}o%8
zDYP%UY{Ez-vI4|USBdkLjogP1{Is6T(wzT{RX@JPuw~b!`nX0`-Hbt9)NK(zN?|Wc
zmeg7O)g_%^tUc8?DoY4)m`jh=b3FT~y_6|bv0@Ap72=_KMC!I3U^V@q>7z#s{oOlY
z2_~`M|DB_gZ9{KW-~-J=vcju~9omh;e-1w2<6YeeHsMpm)KOh`=v~_#;-SzTA!ggo
zIK2ao-7b#f*H59+F-qg@Jx-9_<TFp-cU?bFKE-?1&W8Di1DVm^w=cw9ckFc__8sQ2
z-Ow-o+82G+Kfc^~KJy+v-bX6pxd~&6eIhE};Fdo7D0JmH{-hGbA*`MxzCERbKHFKo
z>NDo*UxehpC4EHR=*OKD=`IvpWfcFcV-HG!Hvn1QOZgK*K@U#B^VpJw>mDrd9xU{N
zYG}gJ>q!FTo~IB2rR(^iMgR{^2eJI<ASmDRi^%b_n1Suy@B!I^{2uV}a43obu3Vzl
z;)2(sB#d}$2;ZlO#sVldq9j&I*;!pm;7MQ{M>@u(^9iK#zlAM2;u9V#i~5c5?>_Gl
zfB1VPdAhmFCC+k3|L+4|(Vc5&#E&cXV*P;2_>sSqw;xjQV+xq$6b!vC5@P)&KZVaK
ze;lcV^n&&YA}G9{{ZEaf<-Y?&!TABgNQZ%UmO&YaXW6F_1eXaMh~iTyJ*P%J97r(G
zDN#T$dPGFZV~0<HJdRlQXW;*cQFjJTafmVD!iEn?nna0_&oV?)0F^q`M<q*_FhzC%
zX%yorK1pAmNE&fs#fu)7iX4IGV!?w0b@KEHH0REqKZAC_s?{LIs1z+4y`zz1QmY;l
zK21vWZrx>iMFRRHa#YF=fR>3AHA*DhjUDlJIJF0%LWUg*Qgv#y@ZrQAMg`qd3Pp!K
zoMlqBJW#Vo#ERoK9$6CO$-y5(n#_uEtK;3gd;9*)`@|?weG?&qvW&^VKZ%Ue#dv}g
zB8Z7jiS|eekWu5vm3Ls?brg{CTYZSk?pQeSq$id!1zz?2Zc}FA52P<reP7<(lP_=H
zL3Gn~fI@ZG?FNK@2_FBnU<WvPw8t_G`C*tx?n!pwNiAW-gjynnvP_5~?sQ*d7ShHW
z3W$Ul$`q7Uw#;h|nn(~JqL5O`GBggPA8+`<_?m{k_2(UUc>Q=)BB9JBACJ;eXPt9R
zdeoz0HsYvbYNh!0Tth)FvmtcD?N`|-rXZ4_i9R{DW^Y|$gqdGk;suB)A_Y<*h$DtL
zV4F$#x!ap{-dSN%KNj@mh5|x)ph-#^)!vk*?C9WNe27P$LFNG|8<-`E^dLcIqM2m}
zmyQQSdHG$4*PD4k`Xqq{O4%EdWuBR)M|X^x>yc(HDr=NRjqoU~9s$}EUzyFBl%9L`
zX{SecCPnO$x?ca8qlt)i8fFJ^9vdx2({@1Qe_nE%TDSv^o20cJObRNB0kS$@efHgp
zZ@xT=vYtnNkYY-hiTGh`Zp$nIU8w^}aj;SU28_|b_w5;?x(p-C9=~J~h4H<v8WjqF
z_l8WR#_&BXFu^c(+#aP#C8%734KAY{gc5c@;Z5%)l;JXXc+{bHt0iJY(MC5`ioBuv
z=EEHzhH}@o7?tWnD5cy11rtn^(&Pyy^G33_F=D4OZzxAxHpn82)M29oy;%^;3M)0`
zzWriU_0?H#{T?8va5?2mGLn+E*LUO9-V~|*O()~Lef%v(ezU3WcZ`cdw9!R3HhJTK
z`&IcLj;sGo)Zi+|ov_OTwJp+19S@Xryc1I#t>9$CuC%-fEB-FU%T(^VV~{JWSi?Nd
z{dV1?v$qWIkT&mF*r*?`dIzkFB<SeLlG%Aum}|ayx*~~=*Y$a0tu@!B-wr47;EvDu
z*#k)|w&~(~M1E4&$9`h##_tw3eF<=Yyir6c$i%P#o#hnHqnk+lpgmHc2y;nEplld8
z5F;F6gGY!E6sST$yclp}1Nnq)@bxi~@b6wL?7#@^V?mW*5N8q8ol#)c0hy_VUw+|C
z9|~nXR`IM;Kf?%exN@u$8buL+S<BLZ^Ac^1ZE7a+gDLuAiYC3VH~ce#hwh^X-^6f%
z4OIW34Lh&||6p%Q5Im3WKDI@FUC|?1q=}oR<V7UDD~uS4qhpZs5Y!|^kbzQO<m~t-
zAa)=W)&hhQi$@h*6{V1VQ6wWB)5S0DaUgBP&Kc7vv=Tnjg-wLWgEYuN4?ZN1bmSuw
zJ%WNK8nGy-+@LB&VnRw9<&ZRVW5F<aMnK|4n0Vn|Cov*HynynTFp8xA$V5oLj8bxz
zbeBk$iL*Ikq>de6<u>{Fs!D#yT4Nl+47~}))KpWMYJ8;=<&{e=o{@m`)YnTwi5-#M
zp%gE2pd^Ln#V{e~33wreKKYp}stgn__jHU8kO!YPji3)N>QEf6A|sVhltat7C{h3L
ziP5AOG&cx^5kNh~8yxEJAi5byg5J~6fkbF$%jj7VR|nCT=<!8*P@}1236%z(<ULXw
zNU20&&6mh0rdQc0PCeQIQIxVndOS-;2QpHElyssM?Whqw@<TGg&8Gonrr1Cl)ugg2
zL2E-nKa*z^sd5yFOij-yO37AOQYNo!dFx{g={}6`6(W==3=%tJBAuE<u*+!cUK^`d
zW*U~GCgLhbp(<CLa-|?A6)0E(`%stlRA@S};Y&a`RS%6;EH)HQDg778(CYG;Zy_s6
z<I~ixLX}E)MO<$+s@sNi_Ny2PD>Da6pnmcaxo#!OPN{iVh3V0_Y4wOwF_Qn;AnK8q
zlf@~GvRavvMm4ou>245dG+pAYwku1MZEi1H&-fA$1*S*@6z+Rpp&<tlOen~1{Rtf$
zO~D9KAO$J(Qmmxxx4&LZs7Dek68hQ~zgd&y5%l$@C79w9O#ng^O2HYAfT*e(=CFrB
zyq5Y>xWXdV<Ukhe-vF0lzy&^VZ&a$521S*DK!Cz1NI{wCkb(&)xPvH!SW_a3#1y88
zgA@=!qfay$1wfdBDIPL{Qp}hMq%p-jJ<?M^K%vKpC`wUh#7QunAXOoHkAzq3of3EW
z!y)d#f_?njfsEKFFm5m!H#}z)4<wC&$Qp%|_onE~n7{@W>y+M1VekJ?=niWx2)zpO
ziLC82ZEzLIoqtOp6-T;{dtd?-q)Zh|Yq}I=Q+0n?ZC0^u%+;Gt7b)VvgehqGMN*Cf
zm93nXOuxF-3RyL${|dTW=X%$J2K0&R{OM9En#PSD^fC&~ghLna!dKDq6u4|A(@xUP
zG&41*v%KXl(?$`cKJ}FuI&K(oyH$WC)3h0F<27E>*>v^@yG@O1f44i}%{FnrowVp0
z--XbIrWbCDC+u3cZ`Q>gHb#2=>vt2z6w20hNg1APdQH00ZJs56@l4xf<J#jd>ho@+
zEjf;_oY`o+cEja^?r*Ex!bXwvv*inPd-@JVA6~``%?gAS@oE24HIKq>ihlH6PBM*7
zPZq@{SZ9yb4G3lCliNn(;v9B;CkJ}T)o~g24nVz(Nf!|!n2sO?<=8_cC`^bF(I_Jv
zxv{ZS*$`FYGf$i1?(-f2A5IY>QZx_<din$kMiHCdOkorv3Wd<lT&fY+T_H;-MPi38
z*s&wRZBQTupUCuyw69$xTz7k;N*|(A+*IGJSNcxi4q&33{VbdRMCW$|d!zfouOACO
zBJ^VRJ<;Y4h*!wGjc9t|_cQpX7=EmI`QqqTzp$l_{wHK)_~t9#)7rN_^kZ-ShfA*e
zA^N^YTJLr8pZ@)}f4fJhKl_2O=4Fk4eB`YgZ^qXbjMx8u{+Aog_X*DjTbuDX_4YFL
zhkKp&exlbX%-4PjXo1ehdK5^1ZU=YxM{f#Ne##YC_cwyFad?U6Jb=J{3LzsPC>y=^
zdnP!40LVQp=zbotdh)judclHB;C(NsefdX#3SofQm35)#dO^p8O?XwmF#<;LR!g8j
z2x1>p*o5>Xg^uxc9<hb^(uIQM7*Xg~1QdlNgaRb=8&Bv`XsCv~5rrghFDLMY_)>>P
z;RAAr7h&j9yK#rG#D={=hCoM$We6S4^c#7IFF?SD0fLA;@`wXOhYrPuK%j<`h&YkR
z8$Q5?f9Mg4NG+ZS5rLQ@Z@7tiXcTGa7>t;O`7-~Ac4&yKh!?Vm7ovC;wn%0Af{Ak&
ziIzx-d&q``xEr8&FPylF!-$G_7>2pHho<O<hS-YHD2>xdjn!z4*NBbTsEymmjos*t
z-w2N3D30Suj^${M=ZKE!sE+H%j_v4<?+B0aD39|<kM(Ge_lS@AsE_-|kNxP6{|Jx)
zDUbt6kOgUw2Z@jgsgMiFkPYdO4+)VGDUlONkrio?7m1M>sgWDWksaxg9|@8nDUu^e
zk|k-9CyA0Nsgf(nk}c_yFA0+|DU&lvlQn6RH;I!usgo=@1<4p+J-L(hlx?I4AA8U(
z`7)IJXasryWv?R=MmZ31aBTVrl|fgPydnRUzOj@|`H)xHgjtCfV3`zRNse2&2TnOa
zW{H-+;gt*7mJo83D5;hRX#{wH2z~%kCvXRdfCn361b<LQ8T1FDa2&glMh&Ewe5r;^
zFnW%0m|kd?c<F_RK$(?Un85Lufw`BKi3pmgE1cPxka?GA#T%KaV0{1xed&#7CP1R_
zWxv6i@KKkesTiOcNl}0ZpWp|ci4jHsnwL3CiLeKXkakfu7|3EDe@U2CH4wO|o2h1-
zBH^67`I(#<iLNP~xk;V(hnlLn8`#-Rzgb?)@<)v|oL@AXl4%sCnVf!*2zL;H-2|BU
zGM$l>nBM6a;F&>@2~tMjp72?l)~Wv`Y(k!L5*&MppS{VS>$#xSX_=9P9KuPQNOYfM
zqMX2af95%%M!}eksGqHPq0CvDgNdPnxtxyCq2D=AA6lW1f}s1cnGZ@OFKQnx>Y$Yw
zN$k0v^EsKIsYfBIU>aJS{)il*;0H&xTPF|-5>yJJ&?rD)cXiVtp@0Xe2TqxxL`uq}
zPD(A57m1FPp+<_Ny_pDQTBejIqAwGr+c64&;HGZMoAcAAZwd$(QKU!eXE(N{<I`AW
zRtiKZjj@?8ADS<M>Kk`DrV%rzZ%P$^aBX`K3ffefW_qTY)E;HC2agDz$O#-%TBXZy
zrQh+Wk&0l83a9ups*;)rrdt1}`H3Qq8VHaosg7Ev%kZZvnn9Ghsvg3rRI&`1`Vfek
zr%+mQ@PQnk&<AGnI>hR5zX7YVsux=N2Tkgsv>~i7rx3|%3a_)OblR$fQJ}{Xu97pZ
z(6OY`%B8a;rg?g;55}rgaj6)QsXTJ7)Cx4qK&4i?D!_UbUW%*H=&Abp8vzTd_nNN-
zJ1qX{stZf6TiPhnYOjjwtrr2Y>FOI5+bG>irx(GjTeqiVN~vhdQ3o5U@hVesijUEO
zM1}DhHu4n0QH7!K2gp%3pCAg<RE7!CEiM}%qfmv#6(WzQvjMiUQ)Co~P_E4~v(36l
z%HtcM;It}BO@OLrOI!ap9|RHg)s2RFFNBIOT)P`mt4^;0wT_`!tCKHC>uK?Z7n_>2
zy<xLB+dhXSVoobIbc+#X`y2Xsw$^ih4<TXydbG^atFz=xVoMlCE3-5UA6YgSBXCK1
zYqj>#x1q$dF#E5F%d#rLKagupdb=zHD!Od49+>MSMcWvftGIScZislfKI;*2t4`C$
zwx3nI*!7z9B)f?Vjkt8PvwLyB%ezMLL$|AcD@q%$TZPJ7x1{^Bu=^X#o40nmxJ+BU
zta}vXxx0lyyC~a_0|-4i<WmuHRjvXrFJ`oI^ddMUQ|W6xlXAOO)KB0Wm;?e*cVrZ#
zP(8h&zv=OQ;S2v9DI~Ajvm2Cw0?zbSeuV-|kWo^zmI1;9k7xuK<F&i7zzsY_4}1bk
zU~m8HJpGFokT+k*gMAr9!N)l#K=6ns5Wz-qzU1~AB3w}WE5jnSzb1UV7*WH#u?GY^
z!8x3Y3ezSkyglsU!Lb$~94rz~FiFUPmMO%-&a}h-D>URQ5<hI5&~d~az{Ga?KOh{s
zITT4lJjN*;N$fisMoYh1%vc|M!^<_kM*G6ZAtNRHz7gU~SWKu<j5saK9!k7q=;gkS
z=)!{h8guNvOaQ-me8N}U$l_bYQ-sD=j8)Y$$?m(s`*F#y0mi~(w*qXxJA%k{T!IVP
z9v(#+90mVTu7U`{`!CG1BdLs2bF&gta9Xe&ws|VA%MhOp=p1o*6^M8Wz|1`V6@{~f
z7k`jv1PTOuR|*7`W}qS;Dq?iM<2;D62ZMJCdUOJgig=<x6-%&prT_&M3>7Pac&2d8
zF_O(j_oL1N&gtQ2!#s;asuG?VAxzg_c!CFaa0fCX&J|P6C~O3jw+ur@CEmOY@r)6z
zj1jNwQbS75FC)>!j7H-;&=H-cMxo3e5zxPr(MFNa<XX^)Cp7!)GyWWir)*Y60MBXR
z5hS3?$d(@p&CueTrm`GF3iHwAY|bnVBQZVC#OxC#eb7Qv)CP^vT4K~oJsKg_A@@5k
z|CRqRP&LsU3KuE;&+-b@AwnY#%}FPO(*3;ECNT=OJZ?Q5(g9-A@Y>d1_|hNY%8x{S
zfbb$<jWbGw*AOimXMM{Uq1O5t*n^?dQEeiH?bS*_%!sWpE-fNA&Db<@)t*e*jxo{=
zJ=YwP)nrYz02u|w0|)~W9qw5(>c=6caC|RObx)aOk|WxLlL)2V0e#RMf6dyB_}Ob&
z3P1ZBu0k_Mnh5oKWX$>7m{Y$Pk=utM(X9ItQV_ix0R<?~1PYro79t;?PznO!0}<jK
z1woli&;+7z3QT9S0s#ajq=zR^3W)#&BLD?Vmb)dC-5s#qYUJIB0N&!wbb$Z}9DM%-
ziC_w0nA}DM2*BMyfD{LmDcttF+qz;x`1%Q-AT;XD-tG<Giz5orU3$VY67hWAq=1S{
zfZ8XZ+J>9pJOL^NZrmAa1Seib#U0#Kvfl0e-d={jEw12ZyA00FBQtK{Hf|IRE;-PR
z0vmoEcktk$5aFb$cK?%m>(bvR@ZSNBzKycVHS6K%ed8{EEU!)4Jzn88entb199B*v
zFy26Zli@{93c{l18s6sD@#bvq=3XA#croBck>_ac;HIbK67Jeg^5v^D;w4THNxtMF
zLEB<Ou|6*5!E4@HUP4(8;^GqJQ+^;Kp4!W>+A!h=OHgI&ecGGe>6%XBoUZ@qwLM7`
zPU9CIAdc?pp)KflP8fDx+I$}90Rr2l&ENhF;Bs#3Q={TB&LovxOh0SthF%$n4(JPs
z0<kg@X7MN;O?zx3B0PQ-rod^)IzLN7?bdS&9bwzDq3sq7?HRh!$UHCfF$In)+a=^;
z?ZNKuzK7=y?;D*$*lo|1Bs2*!Ak{rJ?{N}ob9pqwQM_Y2ro=mZAgKir-vbXc22<J{
za@?^*)dT|V^4<sSZtzjL6QzKfOq+TeeMC}6CJe6^4zErp{U8Z%zYP@CJMIy2@bMup
z9~#f`rA_llYx4;+?;UR{4gVlJ5AuakvpJ$iC~q*jQ}Wcr@+e}*5MlrC61ayAHnbjZ
zFH~PYPQ*Jz-}5CT?cUx*O5YGR^y~_B^&LR-zw$d9Pwy+wQOD_19U}Kn5BA;u9m|aI
zye;(#g!6AdaYn)I<RbR>8Y0*p_#7JUjGhxhKNv0_O9*eYkze(@74wMyQXbs|hA;Eh
ze)w#&__j^<Fk&f=fA@r+_oqMYP4xFbKlrO(`Kn*|>+beIZ`#$)XJL2wChw4s7YZ-p
z8KV&zPi<CgF%`9yQNa%yq9MyGu_5DrE_*l%zn>IHfkIP)76!wdUzhz2vHjCuhK-m)
ziy;@jp&AVxEdXy+*R3O0H9cn$c!ZH>f>A>MHygi^dVAph|8xHm`BxPHv8Tg8f+$9X
z8bNRb9wP+rEQ2x-&$3SmJ3MSia3Bhe9XlW*<*~z*WhXp-3Z!wwvOfa>E$b+1l*>;Y
zN44DeDU_a5qcV1wSaBf6feU{=j0lvXMWP*yI)pe7rAn3(mkwR_b7-JbqJR*bs<3KD
zkR4yfoJo+RNs${5TI_g=Pg{+r1P<i04AB%orB3znDA#OFjW?|dy_j|2D8PG4aom$O
zY|*hA4I<Q-cW>XnMHxa(dRC)MmoP`C6-|(I2gV&7Lr!b?t;ox8pJGiqaIMGIuU*GR
zp_8Z2j=MXK7<EUtVyP*`;sivPpy3YDZQ>MZx1jKzKPUgPrOloA_MP1oCSU$@veU8a
zSK{pb`1j(*@*{gb8kKc@*mSk;cg?=EZc8jTf&^;|L6OSpD7f;*Q>!GpCZw=J3opcw
z!V^Xj1-uRtK?I6rm>B4fL;{;jqZ3F$WTQk*;YcG=0PzS!5lQU8M7%};qDQ2B=x9c|
zHtbNO6P8Ia!+{i}%M`$r9LULzi1ZLcCOsM<kx(uK#FUQmGRY6q2tu+TM3z}5lqukP
z=qobs3I$C$(QL5;Q|=-YI|@-aGtD)ja&w?%@Vp2RQAjCe&?z~r(jzGo3v?yrFg!9z
zjf~Ui&W^_FvZFvui*rso2U@XC6kd$6O|d2w=~4exDPz^qCpFb*0I)z$zpPi;i&Y^l
z38FR6Da+KTQ;j~oRKm8XOwdw?3`JB?hek045g?qcOW9CGt@Bn%2eNU*5>K>~&<-ji
zl~IrGfL2;+Wp&BRVNDa3AY!X?S6<V)#ZgBU&GiV`2_IdqQGCB8l|>g}EVfZTc=Qn>
zAj91hr)%e|b7DE`9E#aQ?<)1+82cL1;0{hjxPy*IMs>#?f%q{>amVUaP@D$N5nP(}
zZS~2U!Oi&4jkyic+nSqvvReO?C8*LVMJ74MfT4ssYN<0kL6jmj@`DspSWUza6gzro
ziKN$+Vi~bJ%6e;px{gv*H0$l4?6do|y3yt4R`N>!kwW2FNxoIAJ8Hc<VqzJmCyaNX
zJ(eM%12L&m)`vUd427**$GuCGM2z6Pb2m%TbKKA=l$>(QmkAW}fqV$1lslkcf{9Wr
zt@`Q-{~if-8NJ4kB)lVR6!eJO?dXqF2GYE9&#{{O$h$~NofO{p1{eC>>B3$3T5+<T
zAnDsGJVxz(E%x`sb37jSV*^jNBi3DqU3R2NU1o}}N84O^Bi!tMpzj^m8rOI?KA8c|
zcE_q8_P}*M;}K6I4Ww7`(w8;?8qjXFvs*`S_cXKxaBaK`+t>(&DPFm48SWyW=#ZB`
z<+&+&`g7C!UKhLBF;9dpNuNkUNWZ)6&}7d4GKC3I7`m~fa4Z!3;6RYbt?79LcT4;b
z?_?Oi8Uj#lOjO|gvNONj{mzHZOW4%JI7Tumq7;oP8^%U(3j4)HS$@c&|Ma9ek)%-}
zY#fLYj<ClgEDj1<p<`Rjn86NwA|!(2qDE4PAp#CkYJ=0r5`;#f)C?pLr5H#b#?*nr
zagiiF)ZLq0a!8RVLOLTOSMQv4IcNF76dp2#r5sry?HNHoQPM+(4A~YE4#bp};nXHO
z5Q;5Thm;<HV~}uSO9PoAmu;!#E$#G7k!bIi1sMx7GeymgND@ca+(;^SX%=A;GmND?
z<Ako{N?3AHL|R#rvH)?+j%brt&$MIzQSjISaH3LAvz*X7>7u<#4zrjAHD`6oS<HMo
zWuLxGCprnKNIms3ZhE<68<Q!ciW*BJdgP-YGty5KaEhM6Iw?WenW+?Q)O$E-3Nqu^
z0aD<^rE<(8ANvTAk)E=oI3ej+8oI_d4)viP(VkH?`bw4#M5zNE9V9yd$#G(BrZqh$
z8MV4q3y}mz9w7zK?obN297tIY`Km2hC88&^C9Do1t4K(q6}Iwnk{<EFy7H#15%d8r
zg^R;+Qdbne5(Kaj`l?7qFjzNw#6X&yC_!G58z7j1dy`yTicru-%A|;u&yyxx^f1Z1
zjE**(Wshe=DX7d9b2&-!s$vWOJCMU7PdbG&kW(1DI=!l|BcuIlX-kuv!hzO6Y?`E6
zRdZYY^!2aH2&`=l+uYf561oEcE<uDVUE1FAvBt_SUdWYKaVeCz>#}I>61&BixHfn5
z+t4Y^TAa|1hPk<U>rmp_f$(-<yXvh_d=*mN+D>-5cQJ5x5q!(ydQYtT1+ZN2I^gF<
zmxDoiFjJDdj98_&SU>6Sc1d#F2$2|h?j?z8)5_t2Osj7w(C~^Ug;s(n*CTT!NQlRx
zW9;PjA`tfRSS{k*=~_6*`xOO>fko2{6Sl%ygfc<Md#(+4*rQy<a+Wt@ibO!c%U=Gf
zhycNahgjHXDnis0j35R7Qjh{XyK0M=$$VW2YX#08K>?S)3}%fy<Oq*c))Gwdi6#Ic
z3Z;k*LE@BKK@-~0h%Shp_q^UkAFZ3q2n6iJlt^-tLd{SZMafn~3MQc74x#|oXaNBQ
zAV47z%=s)>Oc4hZ0AUKI$jAsvQHm)rAu^V=kg8ejYFMvUb&lik30Q_E%}V;qIBImE
z51nW^gId1BlqOXEEa67!n%BOD7IaKOia0P~3cH5OCuUviTW4fNyk2vg!Bg!~NGIBl
zruH(%Y;A(vd)f-wb+3Po9eUdv)0$qgw*?;VJ}+b2!5VkD&kf<+H7d_to^+JObO&WW
zWXX!y0~4U2Zg|H3^CauGHLeL#aE-{h%mDxPz_*O?XA=bEA}4vj2Q6(#w~O57Mz_x;
z9&~#BeBy9%Ih{x5Y(6iY=1uo^&wbmGq+9siYG$*Wvuf9$C>-3tmI}(-Eo)k*JR=+L
zII{}|@2rF8A)kQVSb2B#cx&BcX|B87a9oste;p@Ym-#@d-g14<*}_rJ_n2R<#AGjf
z$%7vV;@R6iDnC4FcyIgGwY+&UlEiI#I`lG*dS;CPp-*~wSO+8-g$adz^dIi`GFUI+
z&!1*$dIQ3%>2x@$WV-{oznIfJFRIXe!uRu~Iw{a}3Orz_OGX$4njq8xBcOU2i74sx
zrVxEJh2pFKu`UW9PJt#*mp)XVFo<(1w0${wA5gWr%LrbArcW%P6rinri*>IT-a|q8
zdTA8n%Pr(dH2Sg|AUMDDbBU1qzfVY=5fDG}LoL(0nA8)z|3d^10lwW!K049B{X>Mq
zK|uObz?H*55Ana{Yd-TM!BJ4Z4p<GdU_kmCEQ=bxIf*L1nm>xLKRmgE@uLXKBRz$P
zz-1`EmOH_Ya6Q!ey##c@<;cH_0K!iY!VTm<$(lim2oylbLI=b`CTPIHTEb$<zZ;Yj
z?6ATRG{CkP!_qrFM6ke$qmaF8F(*_%2n50-48J_&Ecug@`nx}Zpg=l_!xR)fKY)ut
zL_IhEtU#_~L5e8BCTzhMY(tHxMEwgsB}|l~@<aOTK}+03CQL)#Gdapbi?&ciI9x-{
zW5rf1y{H)hBPc7?!<Y%#tqECzT69Gvkwv;7#gCdr4EaS1sWl}LmL6#f6d<HnY#gWo
zf(%kdSTurWq?%rg8fz2@AD~7&)3Ru!3m+K9-^-v_3`Qy2#(FBp)j3CCOvZ`Q#$>$3
zk%_Dc0mofT8f^3kAPC0_dB$&CM?v((c|^s1#7FlD$9ilFgcON*6r+N~ka#4=Eb~TG
zB&2@q7l%{`j3kwkD+-N_NGO>|Jew$nWJrzty<;)SlcbB3)UuDX$Crf3n3Tzxq)E>I
zJD-}w$(+>5o#e@$^vRzD%Agd=p(M(pG|Hny%A{1vrF0;sbjqiM%BYmesiexPw92c*
z%B<ANtz61DFfFbG%diy7u_Vi~G|RI@%d}L>wPee-bj!Dd%ea)wxunaww9C81%e>Uf
zz2wWj^vk~l%)k`P!6eMWG|a<9%*0g8#bnIJbj-(u%*d3?$)wE6w9L!I%*@ox&1}Uf
z_{TBwOwJ@DCh!A>%#c0E6{sOi(-cZ0&;vx+gWu6A)I3VpgiYB*$~b7Et<p^`>&=FI
z&Df+1+JqY7)GFH)PM;*s-@FjxEKBCxOXS2&(d0!uKm<QnFO#_gM8E^PF@it;V8T55
z15pSOTuh*(+0O2y3noy*wvZ&$G6L(w&W}Qb`n1pT#E|a{&+WWVMBqpr>QDdtDEZ7z
z3W?9_%+3=?Pl0U3%b6Nc_{t1%&<r`y`Rua*g{LS$gir8;|D+2MNrXL61pVO8`}9x>
zfl!fP&wUgL{cKS`NQ66x!w!IgJ^%#ubgb(WQE75fk1zrll~MW(&;eXYAf3?~y-^PV
znW^bf$-<<zFoFQZPr<WM9Ce8&Ez%gBQ5x0J5hYR>j8GH}(|R&ekpR&h{Zb+APXnpY
z1YJ-uz0wRx(HbjL3LVcWrBf}<Pbp>7I~~9u)l(;>5G1wIm8(()tua6UUC;JRRPr1^
zLPb<kdD9#XQ7;_|4E?A&%_Ba|)IjajAgwV@jY|;;1wTMFGdqD$sHsvA1reM-q$!+G
zzysssCbKxER9)3pRjlaq(0L-fQa#lgON3z^*62&qjsSvJt&vdxgl28l6V-@BU{+@Z
zgr6W)Q&qYOxz=D!8dd!RR%KCFoY1J5)2SI(3)$9el~!u4)(670JqQJ+x{xE8o;}Ej
zb){BlrHgVs59Y9tWK}z=qli9$7QFd`>wC3Q7%X}v2zzZYWfj;@AXrnF8zUgrVm&@H
z9oT|(*I``-g%#AO0oWyrQz*SyX}zU`^;nQC**M!+iv5*({ZD@XmD4d@xtIMNhE*JW
zwb+X_)|&;^Y{k`Y)zy844lK2haupGY<=6{})mdEzZd%%jolYM;*`Mt$S*2CNV_KMP
zS&>lLgiW2W{aDtVF0GB)UG-P%LR)SkTb8wup#|5NZP<IAR%f+VoE27|^)9`=*{-eF
ztIgQ7T#?*(i7hOW4XMRY_yZ9^noke~$y$bToR(NI6q8U~k<g^IEj<=17{fI-jX(sX
zr4Yt-TqokR+u@?Zm0YuB-O@l@%pC<?l*x025}Jh?+ntctRj5D-g+v-L!^#kWLS3!G
z-ObfkMQdD=bqehnfrJvgjJP;~<w(<IUS0b;==F%vy%6mGEeh@ZqnQg?sIgvoBHan$
z-j$PHE*oDgabE4^(&WY63z=W{&0hD4UolGGy93?WHJRC+kU3pa`u)52#oq~mT*)0W
z1CE;gEu_dTjRn5n_I0fF?VIp*It)qR2=)l%)rbvND5SGs=Sy4wCcNt9BJXty_!V6&
zRpIA#truotf^gus)WGwcmakeI#?qT!5s}?;r9{N6&}D)<;art6g|fQg@I<BZst~;)
z1t+$UC?1l|Wnv?-;uafXvvrD%D7je-MigLz!FrYHJOL*7Pa`;+`c1|$2Afba<0WX6
zCH5XEW{nqAlJuhD-IZe~UE|Ox;>9Vs6X;`89Ed0X@K+I;&OMkZ4=Y82K;*o|&5|mw
zGlr)~zS%|2p(O=^|0HBWx)M%4QA!@pO@7i&?g&g4JhRcfkNV>&DP$jgWfei=R8C}8
zo;o8L<#nOs-`nDPnq^V;W8}dJRp!#1t>upJ;ZQPWMZU-hA!S~{lOI0hTRt0Mo)AVZ
z<$j4}X};OP3goq2=3CTeSgw*BZdhZ}V<~QCTy79*Y3H+vXWHm3lSy8&Jd)_TkM8O%
zy+H&B1|TC@mwmRbbwQ3PphFd@=dm%fbly@5(VJ69&Ew!miJsSNbqamWXT^z)!dYmu
zP+03Lg|=e6O-T|y5xo=QtTx$$AUXvDIe~-!9Y0afiY2f<Q-A_CZjdt>KT}v~)M;ta
zW7BJ)=^;@%i(bgV?MROxvroZ;JGg_?LFyJI>YBdkoYs?rPG}>j>dAu&jUWMxCWt?{
ztvhgPsNStBc?hr;Yu8u?3ykTME^4e`>xLd{>F5jSBfrGrYB`zf#tN2F&}$<sP`7^Q
z9KmbB<~~yUYJv#s=xXX^c<QK*q^mC1zDAS3Rz1tcj<}xb{HSZ%GHc03>kbq>Kq$w>
zIqZ#|4}QiIn|>RtzS6;F?0(~Hx^`@(^Xz5N?0;4%Qd;ZWHZwy!1=JP^)fQcV&YH#^
zh{vAo#V%~brVFzEsII1A<)$aCUR&S)R-%+DkyFBK-u?-K_UOBa?8%nuiB62r_6X$0
z?dGPl;D&FzHf+-_?sO!}D8OYvsFM|eQ5pekjbMUP$Uu^qy^dI%!{P6O`EQNrgA+;U
zblyk(#?4ZoT?^40eKXZWU}97oKn>TND;@|6j|rvj01~f`{+6CZ0B}m`3MfE<Cg9bQ
zu9YPD1i|hAA6Oh5d5HRCf+i4!Q%F6?Z3rMRq-H#UQb+_K7y&3S1+c4-8*d057n&YN
zgdY#`)C&YakmDmr1XCDB6dxBr*l^T(r#Pt34$rnbFr+m3gilB;5a)1D;qnvkaxf<q
zC1-Lchw=`1@Z8agE${L#C&erO5s|~GXOfTthiLOqc=G}^bi;waYSKj_|Ggt$Wkh#k
zMVG7>M*;sUnGO(iJ16ug0|ZY8^<T7by5Mvi5(OAf^-Q1ii)i#mPZ~XM@+ZfRQNQyT
zN%AGnbtt!VBPWGsJoH&-bLDe%IBz&VSOQy9a!PN#{Z{b?HyK>#bLc>IQV=z4*L7JJ
zC8;QCVyDIdFL2qrSxtuuXNUH_A&6BMZ~{L815fu^KlNAtbZ-B}R==@jSaf-*^IkVB
zd8c;=hw!yE_jyNm3Hx_T3iwh_aRz7cp{R9cClfLcal%t~q^iYZ4|k7eEopD|XFoT0
zH%k-{nL^T;EuroJ7jQZMX?T?|h24}`ZejV`I)$%@aHp7gXij;;J620mXeXJ1gKcrJ
z$hIRPdZSOqpYOe6MR|;=`472y3wepJnwC0woEoQ$Ci*^oo31wMpOR`LK9JYMuvzx-
zdZ=je!nxv-qVK35o23W)frtaWC<Pm3-a<M)i&FYNDEhjm=jbwfx2uc+*ZCvHCcD0p
z$|Z=qFB+*xlmT?)sZtilxBF#?{8cuPvBzQ0?EuK{h#QxttDml~gnLt;q{0~;5g}62
zHxSeBE}X#p(AWG{E_|p!eLBm1thlT|A$u)m717USEw+>;Xo4I~Q@NLlm6vY+I{Sx!
zj@2KF-bZ`kfBf73&mG`DPk#3I&K-X3pO)iKet{i8kN$o^1byO{ed{W|$rlOOhvsZW
z|Cr~boCkEmf%*7{e_y0CfcVs>Lx)76I{f)Wkl>VMCl)R|vCLGTDSws$S_ov>orQ6h
z4TRVM$}%VrH+CfWF(gWlAVrQWd2$&ah)bHl%&BuH&z?Si0wsuIRHzXPM-ALl3Pp!K
zqhOw@DH6q}P<l>{G6M6?G9V(6HeK5EX@?P`Qa02olB-vpLyP7_L@KDrs3J$;QQLv5
z$*C~$>g5abt<k|e2_H==*6B|`%S0kFMbOV<h%^^|TDGSxM6OE~j#!3=ARvVhNBtrA
zDG<casefkw-n@0$XM&+e>pZn*Fww$g^DY$J0nf5eg}Lfo$TVlehj)P!6rNMJYSy5a
zy*7(>S#qem>q>>lXBna?fJ&VT89dM_QJfh%<Y`yr`10q|!;~ws^w-xN>YIn2deO1x
z-a?LvBnny6eFxEe2UfO_g89vr(;WqJh9E=}5(MCV12zZKYOP_n6LlSoc-?FKo#vm1
z0zwp`NW?kElYVaXmRML!F@~abww2g{h7yvMB9JbU7a)E@ns$_bR9S^paxX4Pqfa+N
z1m#s(iI?Puq(w*&hwHWX9)V@b*PxbCf_4^s$*sxdS{SBD5Lim_xL^k|wg%l^GIi)B
zjF46T*rk1g{wL^?5MfD>m2^QGsic#_biyd2)L0NABr!qIABjK}9ziFNf{0LwoU+_P
zq+}#gBAYJLDMFzBHwqB9^5ug_tnOqfra4I@DqRomMA4+iLgZ_vKq(8+tDJgDYfpek
z*5yN#iFBDzh%B>AC{y^xmSx|C(yh7On%aRW4H6WjPbhHfEx5sTHEw5sh(by!nu*jb
zPsoZ3WJ*8r`R{;t;Hxjc>ayEGkbKyRYe~8Wm+-y~cR*}#qnLuoMi`f6kVplGY9YrS
zFC3A!3zd5=x}BZ;aZV$MOj@-I1rjF0`CeQyMAV9ubH6LkT(gij6D0J;9m~8B$qZ-z
z>)&1$FT8Hl1hwpPy3xg)@}BYSSBg);>f|p$&&C=pK~`I~BGMfw&Gtg>?$tH9F2CFX
zsp+DCs;YG}z3_Qs6Rmftr=|*X;NJlak<xb=4f#R$^1Sfgh%X26tw7{D>fs&qo%mmo
zPhI(UXv_L(j9~YKEZ2(<E$r(kvwMf#v4>5m?z{62tSG-i<OeCH44jA`KGR#9-d;;V
z8%)9zzmV~3<2?~X%`4yU@5?&vyrdfE6pFNvil6NEk)CjV@WU5>yibiUw8t_ebb#%3
z!uoJWxuG~0aJ%1$A`wOyAOYJ_3aL2^fj!CJ{`yz1xqZh6p(w>2puhwsltNVh=>r~5
z%J;SRkivZgV_gSnB|!>W5Q9=V;MLSsy=tAXf)~sn^2)Z1Dd>a=%lO;V93;D;;c#`?
z>p%brSU?*F5hglZ4*WcI3WCHig){`ue%|(nCknAAOSG9tu873dagT*<gW?2bs6v8>
zac-|Eq7jW?CY2@eYup0_7J1T;A&yFY3xQty(1^ewH4!0LOk=wgII0_pNq}u^i)T~@
zvgHMljy}2LTD-TsM@l4;R;;5)wwM!7MsbExY2+clV~Q6>$C46xBq+-$MXB&ndLoqL
zPdr#DL}rmEnfzid55&pd0W+9EQA8=Y*SxKb;1qErh{pWzOHxQJfH^t;CTNsN5F;ER
zn@5lz6p|xNoe-0Im?>1Gzy}jT(uI)Wl+-#!LQUIP^L=50o7g(ghcM~zhhO`S{~X3R
za*9L|O#&U=g3=IvKJb5&F-4|KA*y!vM2toN)Y|l5P!jG$jDBD!L>x*Gfo3U4*wiLB
z)w0os%Fdh+AxU=@vV^pCPn-);=|Wg4l1~6sNIBh!O>^>6Sq%wmlRIfgQ!1>Wb|4g!
z8>dfx3MP>#RVO`#5BET-oFEZ(As+33RfPh`ol2EEV4O`$Zwgk3F65nMiDy>{x}teT
zm8%0qK|yOOR-Nv|nY%J%Ow@v$p5XL(&*W=Qks4Q+IMt^x&Fb3!U^&=pYIB<<G3jF!
zD=WsTODbwjW*mEXPQu=msXdvhNJxvKoc>jqs$DH}U<wmbNb3%z@Xbtx#T8j~V4?#f
z$rE$}+u+Q$waMYFP8xz+nE1eJkkZ%)`rsQK#^Ek+Z0>WH5ncEk_b+e!T6R|z+u+Kx
zFC74aDPCjT_-P9TaSY8U6Y5X+h_@^Y(SvKp!`G>-S6lsDm?)O|weXzxFV0;EbS2az
z9mcmT+ok1Q2279w6Vbm7kqUirYhU3?NWz87m_A1}ih;)Wo|*D2Gdrxe4~rzZ7;8v;
zX`3t**AyZm29tPo2tW-Rbw3ofF+^0HlMsW=F*R1MhX>04V2D(BAs3GD>L^^_AhEbL
zWrJ}{VX~3&p@6nNhDm^5``yAMIZ$sM@^`|VC_`GRNl^w3y>P2rU{U$XS<*6*Z@Z8;
zSBlC)CUDAtTq8e=3CF2)Ge<By=sOphAb@6a_rmkr=zy210<P|L`$c6a64}y5j>x4u
zu;rOx*~P3K^`uZ>ibOym)v3lUNdUnFu2kBG{nFPIj35P4kfKJUTPa3fZQbIAwjln^
z(y3Lw>dq|V2$a&;5=`-lCIBG{rO*@BC`yoKKRepfR!*^vo!xRJ*wm=@wq0EfYoIuW
z6t#xJC`3mpQZNApcMyfP=nDua009b#xa)o!^a)e{!~q3Bn1U(PGJ;Z+VhT)fN_l@`
zZ+z>U-|k%)W$thS&UH&F;x@JgukCDTOIuH^W&*o64er)*58EK$_GCD6ajt0V;0a$i
z#|)X4J-Qs@8wQ^u_CWG~>*b|^upniGMPd%aq~|{`cqNrBB7h5=;CfLy6oBs1WelAO
zML&=!ND&7nOabAAsrbt?Uc;k#9qeL9w$p8bb)v6~T4@h^q^WN8vEBvY3TOCh$gXp#
z$b9cL#|+d5&h(G^yy}Oq@@zg~LD|ldD{bfYxK+*SUZ2}GdZ&5A(f)P17bftW_mABd
zkD|g$-E#@IHLhz^`s8rM@vkmL<da<~TC+a?*9&<)*XO?W4hS9Y;R(LhSLSz^ONCUc
zzqRhU99reqn)%Kl{?=P=@xPbb*RejbOFyn{J@KCHISD`Fm);%8Tc|jXr#-3LPpO9B
zO={9!Mm*0x-guFRV!&TU6nHZK`a56H@gK0o--b}za>))5>>IlLjcQmMK`5ZPAcCsE
zpUWUnW+Yezo{RkL3jj__!Hq(<$jLR)+cG2qU5U^XgkZOX0&eviXz;-)bc?#3M9X}_
zQ2a<wsGzyDAiccD!i<1pbjv3!K`DHP2AYe1L?8o}7Ac?$_h2B(<-`(_hpGgjxe%cd
zYJ?5qprMt85Ee%fVhs4)feaSM<c);?6Ve}U;9YLWP8kj%8WPa~+C~h{U>w2W88%_J
zoB|sPiO;FwCve6U4xt#H9UuVW5Sq!D?BN>zOd=M?d*tCK$YBow0T+&fbr510Y9Rz-
z;*X4g9WDb628S6^qVvfV6sX}T_yKJ(V)qo_Lj2z{UE&aS;U6+VAihT}7RN2_g(;$8
zD4HQDLLmMjg8uzt9KwVu@?k3)piTgRF(Tt6P97rWq9U%;D*9m>@}VDYViq<?G)f>c
zu1<1@Bf20XGddz@fFU?S#4MuX6fR&Db_OuQ#4DDfGS;I$KBH8vqBFW*K(f|?`NRkq
zfr~A{*6;*D>O?{c<fI(rPBftZNJONhOk_|nWKJ~Bt+<6um4y+|kE8&BOrd~B_Jl!(
zBwd_9MM?@wB3DWp21JUQ-niscm}IZiBt~AOP-Nt!0KrcF#7IITPzoGR_`pT3<V*s^
zQCcKJGUXHkWlxl3+2o{hn50lbC8ez7KuV-ZKILF|<WDZ7Oc|t7iX~1;N?8u2QSM|>
zy2XMe<xZ$&q|D`Dz-3ix1f}5RSw;$9T3J-~#8y7!U=n6w8s=dl=I#ViVlrl9I_6_S
zW@Jj{WKw2jTIOY9W@c*UW^!g{dgf<x5on6$Xp&}Wn&xSuW@@VDYO-c)y5?(wW*poX
zY|>_J+U9NIW^U@{Zt`aTZ~EqM0%vdv=Wr5daT@1wB4=_c=W;S<b2{g9LT7YJ=X6qM
zbz0|jVrO=0=XP>ucY5b{f@gS&=XjE5d79^WqGx)l=X$bdd%EX)lG+r&WH8AmeD;pk
z^(0X2!N6c96x`$_g(MXC!GG$Gf0ovO0@HpPW_^|xfi~s|_(6pFL0Q>ng<9x^0)-La
z0V4Q8cb&i;AOaqUlM(#EGF{Ujh{C4u#7o7|hlZ#}GQkAy1dBq1hH~g}837{b=#Hvr
zP>`sJf+&w70)=jckPc~$ZfJ)>ij68MMJ8!?8D>A}jws9~WH!VsMGB2J#WE;m?_8-!
z$WNC-3Y8Y7mUa*SmR9Bo00JQFTY_Qeo5Cral0+!@0lmfA34{VPm4Ybz4G;*S?C4M^
z;6Y|sluiHwIpL|E^6AWkAdwy_uhFTU-dQ40Dy4>?n?mEC!bBpB!kT(2k-AE!dMY63
z#hljZuK|UrN~&E&Dyk-?lu`<rW@a=(X;3^WL4+x((JGj7DKN?EVBYFUAVRHHCW1+d
zj<OcA#_6&$>u!>YcsWLf{EDS0WGMUrNyyG8hysMnWJ?^#w2p#8F2p?r+e{41vqH#%
zAwoUX(zR|_D419W=@YtwNq*9+kUY@6Mk`~&>ZJTCY<laKiYaU5YVZ7OKn5&n8f&DO
z0-E+t!!~RG#7Zn}X39nc(MI5w{JatP$PGzs*GBmU#-f**Fu}T%>mHc`ZB;BTO+}{l
z1o)7`Bl$$k_R36{XxZ3oMC9yG6b1^kl#7WP3NV401PmUH3KLMM5!A-P^27)*K@&X0
z2rR*}2xe;(#tAIJd^YU~aIIV(fk}cadeN4sVJ-KB9v+PV*K$w6+QwgetxhPdm>|#z
zAnjdzq-~(>+vZiuwuajN#od+#9+mCPJZ;oYZL-vDq%3Tu9PV9^08MZ$*(UB_4DDY$
zE+0hh#A@#5s-{F-SC4dn4iOpnAi}mz#!jsgM1Zd7vWr<v!Oh*0%r4LN;p#Gw<4=Ik
zDe&k2%#@YxGK;I)2B;nq?GA5almZZxU@7!g%VkS=zzh9NL=v&Z9-PuC#McR2gba#8
zax6g!ngSFstyJyHL?{JCspBaCf^R6*3Cv@>LP)o`=?G8;HpZ^%_G;~lml0&m_AUf*
zpnx5I@6VV^g0U?(fyVqsqD^=&`1%L-LNEW07f77arkv7J$uAaeSLzBd{LVxlOfVEw
z@SW}NaE<S}>`Pxbu=f5ekuI(Xn+pVYz(=^uK&9|9z%b}=iwv4V63OtnY#QeRaS&@}
z6nGCHqzkF|K_aw@taZ{UAi@bWME}8r{QQj(drlHBu|0tb?DA?<60y;ig17<&_+Ui;
zohHJ~(wm!>aRA+{ELxJ7JRnSbu};kK`?LoXpg<EeD)U-Kczi-BXoU~RkF0Qojy|m@
zoPz#ot5yI3PKD$NltLl^!3cnG=k>%y4Jd@(P`E6EA1uMZMKa5X!Y2%?yp7L7F2R~X
z#0257Di+fe?~whD-6<SbAOOPD9zi0Q!g3JDtB{;1?6O9r@&gvEGaVNzqkt<r2P8`}
zC7XgJFY<Ufas*?_M~ng#!xS<rGb}eC5DasCZA3LM!!-w(E#tB-F9#-bEoID$YVdC(
zlfrzaaSp|?IiEl-2Q%o997tSHazrycr{o_8@*oSvKKDUC3vog#v}K~e=b%XcNQg{A
z*k9<HixkWZ#6pBXoXtT<^n;y(S8y?CV6<B}G_PT*PiTxpP=rNbgor$#N>{{1WO0_1
zv;&^BP}H<?<g}r>)<&d@{mc#EbuvV_U`sz3E;R&a&{Yue0Y{}$mEtPjLXt)h%}uZj
zc}Q7Myi|hO*)_dHYm9X58U?iwD?wcsarlQ0S+v^`aIcazvJqNHG<A(|g?S~^Qb%w{
zyxByVL|5n5SBtd6?jJZ8+Fr-8Sx5ENvTRac)iOolCmnW3#hS%BpHkyeXv|V}QT9S}
zc4s>#V%Ujd<ca;oNlQuToh$}fXvdq(20?;0p-c*M`H6HW$6w5L9KUw|mK;Wo@CIBo
z#ymv^9|tvNXvQ0nQdx)wX&4!5R0oMbwLP)x2*}N&gpYec%2q>_ks$)LNhuX40wAOG
zcMykONW|`9xBd1Fc(1Z{7fBAfhI02u1ozfPm;`+%6?<3Gf}J-6F2j7wgncszLG(d%
z%MFV-NlZfaP0tj&@HI>rxSjY%Y%ExVdv=9e_(PhFra;TAoZaPsj^FIcOlvqysZOnI
zPUk=buS^*SCCi45vHQ9Xq{R4%u{g6_ia2HX2hvA;0Cl@KZ@hd9C;#Bx;7z*7O(FdR
zNu-2d56(`6g6U4mej~Xor?`mAPq{STT2PI6$FjhPgp_Y7mM=^HLFMX^Cs4H&c?5Tg
zecLyg-!DO^xMC6Zn*TRN?To^Fhms!}nrjVRv~b0k4pGN()||`MJg>aC*q>kcqBA=0
zY|ygA(%GP?#vHc>69o1=5Btax_23QCV7l+rc=s4B?z*onk<a)%I{N65`Gh)81d{yF
zPmi-#is_HHIM9$MQX9FEAGMHA$Pcb1w=Z?j4{P-U8nxJ_)f?AtBIuBjh0+-fN0%e_
zHiEhQFne)i%S`7gIt2+E8If0rESt;3v5R%GkNRNG1fAEnOg#G(Z7Hz(p|>AVQ2cqj
zi;50)m%I;<nJ|#83wl{MdcX@jPoUMMV>LXPXfst-B2Cl(!LL;ijZ`+3)P|fgL==2R
zgB7X!1UdzUI=ynFT>M9UysgetAk@=63A#QVR4U;*UV+nG)s;?g=pEd_`JF7w5IazS
z`S0w9o_rIpK14%E4Q6eX|6T{R6LWkB{f0m}X^=%*(bbB8Rk+u=N$~v7_<Y5)b-G9J
zx|;;ihsVs<{C;FSQ2aUAo3w+M{m6I?NhtWh!+qR$*{*!q+4(h|#l-S@8F0;HNE26U
z5$mUwldw=1pKad=OqYXEbfwL`b^$)H0lY?16nWWo#->+(wO7llvV0MQnJrmQ9Kp>;
zaH!$@NfIQOOUFip$KUg6VT{MX^jDKPinQOxmnXgd>nGZuh?nYj{*&2ti}AO*cfIaY
z_3HQcidq}hdp)DUhg5_<g>Js6A^uMMdF(fups$#<`G$It$i2I4+=IWsZydQP8s-6S
zZOz*9wVw108?Tw$`FBrp?3z$?o8^gLYzvFZeIHDmoK1KiKtw4uszX5(rV>F>sE|oP
zhoP21acB_XLWUF*T5LFxqeDQ;NKG*UWz;DY1y7J7#RSD2QOo!g)Uyl_6d+I%Ei+Q^
z&N3hqm+f)*$y6K^K&F`5*<nPfQd5}h8D;8EN2>=*eM<D{kCcf$KS5z~r<9+EpR7)V
zD3Rk5CUAl>Sz1uksVO%{ks9GJQK+<gmhCP7nDa?NKg;f%0MZj?K|IS&796n*k3+X`
z_sDe!Sa1iz4(r|}saLX7s8Xp8EqXNRP9Vz~zLqGPu3fyO2m4KXIquTeu_Jb%eK_&r
zWsN&v)ymbYYNJS%a$L*t1e39dt)DQASTW<66HOJBf=FmVqR(5)q-hhUPLAQ@j4z*-
zetrA*@#ojSpMQV<{{ak8zyS#?(7*!`Oi;lE8JuW};~+e)Du)DG#;&wZ`EDX05P=X8
zA1qrYiux+NFs%pYT0+DVBZP25x(EU=!;XN+={Q6po9L6^II7XZ93O0PnHSCD(V-w)
zoDj(fiKGt@rA9e!l({-E;-zI0L17vHvkICb%Hu-WsDqw<awsT=M&RR=<3idHqGdio
zVU$4dJ0X-l^ytHnoaXBQ3Q~?c#gEQHL94zU+0wB^L?$BPqvNs+aYU;)b0{TKej4FX
zIF~4;yvK5!tg<2_WVE14Q6dG?f*ge~Qip(eGtN2DRFlmq3i?gB;ArchRY-GGaZ;;x
zEHziycAYIaO(FcG)AH=ZQ%^o?T@xf+IYN{pCWJ(msZE{rlp`oif%J%KZ*}m?Wy0);
zTyq<YSKfK)t=Har@y%D?efe#$%>G6&qO*dQFx9?)^DDUD`UIvgN2?n4@8Ni#%oX8@
zP|z-|fJyid2#q_+n7>c@?0}E|QaU<;%KawRFJO=fHW<GV23C1s1!?B!<+Mbm?_>XV
zo=D*ZZSII<j!vc#W{z5}Gh&~8UK&j!I)-}TtFg{n>#e!&+Uu{u4qNQ7D<1nk5)k94
zFSFThdqK4CP+K>*>8{)EyYbFj@4fl%yYI61{wR<;rocm#Qdag`@wNpg+;GGfk6iM}
zDX-k}%Q4S9z&M)Bn~6RGNyLvkZr0p%d_NC;^wLjn-SyXDk6rfJCFj8d+UsLNYTW5f
zg7@En4_^4;i7#IAAtt#!K@K?JTaRmY*N=h$22jBGw9Y`|`t7;z-uv$r#6<k@$uHmh
z^U+UV{q@;z-~IRDk6-@(`RDh99e420U;q92?;rmdV&Fdk4v>HaG@t>+0gPWPkbw<!
z-~-73004yHffcmi1u>XG4Q`Nw9o%3Vz!yRhj*x`kqu&Wpm_ik<kcBNop(oaHKp6s1
zhBdU|4GEY)4>mA@6J#JSb{Iq<4v~mM1Yrr0m_#KmF>@|-;uE15MJc+_6Y0Pq|JdOS
zHwXX#Zg9r^t{6r!5^x*}3}O!{_zPDsU=~Gm;~U{f#8ohnj&-!-9nJQ{B3NRI=-Z?C
zs2~DLNbwR>;3N40Imi|M5q&!dLLb{##W5zs001z+B`awFWsK2=$#8==IO)G}1mlbn
zq+l!x000KuB95*9bmc1@I7d9rl9si!WxSk-1ppKQlI7DSFEOD502~sEMF0Q}$|p=>
zqVSjLTYw09$-Yil(T2*PhC3JmfEj!dfLWvg02<*AYHTu;1Iz;e&{59*jdF)*v_&c<
z*nnKXlAiS}qAYKjPkru_pJ{Po1`cqEXpRq{0uAOcr6`FDSRt7RRbfG$3C)43j}z3C
z;RFB>0|2N2j5KryJJbLG8314c>J;EP(`nNEv9p6{<OMIp001-a!WZ`B;0jh?Q+u+a
zpFQ>IPwnVJNdVxH6CG+%54y}=DpQ3=Ro^owy1t6m&>JBIz#%#sz>gk6f@%PzO8JLU
zu<nl>q~sv~8W%VQ0H8vr94x>V+FC(f#9|jkYz0v9npeGY&wZ7s1p7n~0HtDr5?7Ff
z`7U8lOJHHJgpGvy0!vJ$j&HD)z`|e2mss&#0ulxt-z6*&TF;7avf>*oXBCOQ$eJ$_
zSP&mn$!CcxJT|kKumo)vJ6cSj7KKxlAt(Ug0+KSr9W-PHMuiIslcM7p%{YfU)G>{4
zxI?V@OR4_QA&qN@v8-n`Wm?y&L0`~x7qh78E?xn|2I}G!y0Bm_UU7?>{*V{C000+s
zp^LgYkiE8;FMSutUiWs;7AcS*0J1P(A*y1p4R-K@VaL8oTtI>u7$hYwa9HwD0suNF
zABGSA8~`GaZvhLaL<J6<14JI+z#-5rVLME|((V8NR2W|*7I0t$&=wOx0Kg=2aNsJC
zF9Zj+v5Xyx2^t@Hw<0)j1vLEO7?TeR2rx2iZR=zSE`YW}%|QSFfPpG(`LkLE0F+PY
zTLa3$0Pa9W1OQ-z2~5BS0EhrG++hGYs8bmZke~tVP)R&j*BycY06E=pjy3>*i!QK6
z7|UVS45IZHVF+&qZE@dJvH%qX06+@n8w&$V5CXPnU@lew08bZy3=CB3fhDMd^=9F~
zDQF`DQ;-5(sNld{_%8-C4eL*<cfqWK@UfAd?7OkA0t>hT6{shI11vzPG)}GfDiDDG
z$4cS{0AT2A7f=BVTwxMIxWM>)ECMV@q6h=1fcdPA<U>07+v3AO1|VSxNL(NQiuCaX
z#$AORr&bb>FeZ~p>ri@=H~>_b1QiYt0L+pv-s7W005WU|Dg+<^62(Nbw_Sk)@NuZr
zCISEsKnY`B;k6Bac*G|zKTd$-fG(f`{?suDSPw!S_@jXf%6Sa{%)uMpcmn_&(R1pe
z6Mu6MfHU+L0~b`o9odLM1g?9-atK3%lx_h4T%o~CLqHd5eSj{?0DxC4umvrM#avfV
zfO#%Z1qCo~F1!GMR4fp_sJQPdUUBPR_(BB`XyYwZ&;SLe00Jpsfh%$$hMaEyFxA2a
zfEbDh3u7yr^PTs6*4QTrMN&cp3&=stZQJqkT>=0e$3(p`kz)+RR(xKj@{nVzdU;<W
z1Oaeu`Zz2E@uhowRsaAJd|Bg$T7vh!C!Y`iz;f|L0stz`z3VaY<%vUIqDTNhlsU}H
zp$eb+kEFhhp)Y+*P~ZCW+r$AUaD)6gqLP+$ME>Ml&OsO;rRM-={!j{}3_u$6rxySK
z8}erx06@7Qt?TZ~y-*1N<__2{?-ydhhi2i@i0v100RYBefp`G`w4j0Zu7NVG)f_18
zOpWgVpbT&g09fF^_A7%z(DDFa@`y+lHt+Lzum^pRL0Aa-qHKInOb3SlaC~y?2!{^<
zuI+q;u%R$)0C+5Yrp(89tP+SS`4H})qHqdh@7>7f0uG>jo{)UREw)-ud_n*W$L9c`
zX{d&5sBBCQzp#A75QQ?~fZV_V+yNSd%LO7J0{##h^2`m&i4GzFjMTvZ1OWg6z#D2H
z0;o=Z)<CQBX9C(ljM_niUSS1OVbeA!)AlaY*y<K8?STlO3mAykx?lw#C<D#lfwBP9
ze4!S7;Q_MX1zoX&?8^pIz>RXj1b%QBiLn?9goO?u1I`D;0AK-#V3`&G0njG|27rB%
z(R_p{$5IZlgdhYE-~a}o`j&7KC@Tx8O!<&Z8=Ei<k!-ZCv3vsmp#8*$9dpd`&TXg|
ziVo?J9mhwQUd(+mfg29U5dfeD0Kfqrp|}F*5&X;`?=O^?0RR>Oe+&TtqQMb`D+0bM
ze}v2O<nM~w!5BD57ryQWH}HZ)@fS$(7fg|@egURh-~k$d0q%=|P)&kTU<_t(fnMPh
zU(oVc0M{U3h#J5KN05kaK^Tp3DVee<>tlty@Au9}5`-Yf79h34Z5jb!eWDT@0pJ3z
z;LJu#5*A<pf`AIFzzPPy`g|<4EWsSdN0+uxn7~pjKMMdtpnST`v%0c;1_1lm5dkb9
z5(u*}4+|eLK_6?3_41N@_Hup#@_^J~4kXA9Qp%&y!44$<XbzN)lQc6B0iY1{=bUKZ
z88Qlt@Mi*Opc+`SHM0REi-Ch|;Q=Iw3r-Rx^-d+jt0g%w1qvVxP$3mkfdRO{fg;bq
zbd3aa(}5m91!Cbjp_7#sC<SCqh+a+DVgV_Y(kZ#KJC|~W7Qh19$C!Qq3E8lGtnjJC
z(<}eV`&@6e#wQ+^&@JIoeB`pB+LIq+Zvn~&ph#>z%cla)lfxv+Kc~{$5>xr;u*CXv
z4CN;>;g6&MpbqlKquhZGB($VL=?3255Efw)9dWu0&=B)S4J4qP+JP82$QK|$f?|=t
za&skla|;SU!F-_rinD?u$O{_C?_9EhTA%?ih&qS=$QQOi*j#XkaA7;Wvq_!w^HgZe
zaIbtO0hl&R9AE1^$!Dm}&EkkjO3!Dqf()q;fIr8_``D5R%Mq#U6CL}}p~e*50ANaO
zPkg}Ce7a5jf=r?guC@|19~D&je2h-96n-+H8)^s?nxW7(>d|P(8k7J42EiSgfdR*e
z8UWzY`lq_;KqB+!5e`j%I<tmSw1avQ0ICy4M{zg9>j8d|fzmEVa{&cGuqGL(CwUYE
z7bt>$^d%dJNQo#FxS$2RKstqJNuM-Xl{MK^sM*k`+d_Z}B!LPjjK{JPeSE9}sNf2O
zK=(e*OudqrEMQK>C&+}L5+uRLu(U1LbbKKH!3s`p2dsd{N^4wk?-Hzx2&VM_Mve%<
zwR|jrdXV4>av<V7F58G;5+s2LwCzt5bPkmdUjaa0A+BEy6;ZE<AW7<yFbe5ZN*gXI
z253MA+~61-F{Rkyn-=wd41f`~0UH{@0IrEtRkVZ5K!Q}!gHlpP!|O=JKo@Mm(rh*F
zvcL>%0Tog$JAbGE2w)7%U<GoO@CslIa^V)npa7Ki7l1XcEC^Yb^=rX4uTtnf(FX}w
zY|GTI4$}wX4on0NiEP8w;v(*_ETPCGr~<G+K6^|}O$#nj4A#0dspK{QG^}n9>;h5?
zZq0`*?{*U2akqj@f(8JX5K}Ra%y1?D2yx>l6TV@L!T}WOEY3jTxl}3~UVsh;fezl_
zn;LQHt}7fQzyJ^sx-?UQBEV7)s8l_O(o|J9OEJ85f!1Q}6>xNce8CK86DPyYflvXS
zRv>G6feQ|d0g`k&Q<ZBS$ZNxPd%0Ji#&-7B=Mo~JvD$|cjt~pL*L^f=d@5ml`)GYX
z%YCUVeSr`4%189(M|{aweKetS%gI8)Dh4K1f9ik_@dq_=ZdCCn8#Ypgba!{Z3yx}$
zfplROcG7`(!4?$kfqWqsZgcQ%VS|nL*RXeiw6}XvIE8~Ms#v&%U3jAU*Q5Y=xd6Zr
z^oJd400zcte;ycueW-+im}_zWp#)U8h>ci@UO0)Bc!^aghD|CQrfY}S005L=5gvgM
zT)+T8bcfqv7>0;<gE)-osTPR%h|TznO^Aurc#YZEd^mT9;n*FVfeyZa2Hb!VvTm%*
z!Hd5*g2nicTZtAv0F4Q`kPR7phTsx-pm_8E9mK>x5<r3yAcW39kPrEiF*%cYrw10f
zc%<Nw{bK_XAOSQWguq~sH93`4d6ikYm0kIjVL6s%d6sFpmTmc#aXFWDxxq9eK=vSR
z1Oy8FAbPsy1pMHb{a|H`8JQCYY@mRc^J5CCMwp>_K%RMAhPgm~8DFH?U8?zNmid^Q
zd6&t#oZUtg;y^$|p>z8G169W61ONdLaw1VsBA(}&Z61V6{zFBu#hnu*pE<&x17w}=
zg`YVBpu+~9<=IHgxuG2zY^DGrP5}`>c|QnRKm>YhxP_i4Vx!rHLn?Yd0D%-XBQO{Q
zqyyTd3FM;dWu$3@qS?ly`vVbV#z1KLp>f)w`@j^W;t&2{8L*{4SQ<bwT5M#xBaYf~
zUIUmrpr{+fsfC)IPdaTphoSYu6!iH(usWx?dY82XSJ1fwrl4u)!w8muE}CQnj)0g|
zCZz|abgCn9a;5`LU<s;bW(-2Ebq1-e+98rUKSqEFnm{{7U<sC{t#w8)>iVwlV+2m%
zvFSstq1g{ip)>sd8LkbxBLt(cHT$up=CU<=t<%D+(V9AX8BLgCDL7kaM4LV+`>j1&
zvr}6#&YC(hTeAh5ux}eBPJ2K8+ER8KP0)r99viNE8)KN@VwhsMi@U3xo0e%KtoLIH
zuEZ3efTc&^FplFBF6K`H1rP+oodF|JPT;54L=>nb6hh$yYy>&%0}x692(F|Q3S&Ds
z!o3UPxAVKN?E?x*;W&8uzZ1o~Ed;zDV!hj2L*5%gIGQQ68%~s)uFs^TE!#+p;7yhR
zy&VEnY{j}KVpBL;yp1Hgn+0L08^EvoMatVkGTb+oVW*b?5#D8PNPN2^`~)W4BN%)`
zUc6jnyj<r0=E5OF!yUrE0elYx93{-V#Wj1JJK(p4{5Xib1L8nP3`NOVe9DufL)OF;
zg1X9E<jS9W%w1U&Oo0icJ3mgK6cPalMu1#WqaZ?|6rcbF{-hK@rYHPh36O%#PerBu
z;1nMD6EqwMK7kbOIuu0V6DYbR5&=H|;S@xn&YK`gmf|q(Tfv{4zc;<X8D>i!`!J@U
zGxVI#r@+tUe9;^I4jvspfM5w8q`~LB&hPxQA!8y?CD0!^5CFljk023DAu=8#5h(h)
zgB@02-Kuk4(A9#@?VJ?w93|M?&Efn-2;DUfy<=WO6i%SZN8tn>WFuz%*`qzBC+5{-
zoyWQV-P^(4TX@~qfju&e0Mv~cs5|4@g(KTJ;w3!2(>vnbPvF;&Jvo>F3SQhgs07~)
z9npsZa(n<VHUb3-{@{<B%q?D%4P8RW+A8?K6!LsXc*0w%<i(Fg!Iz*3{(LW<<dGlb
zU%vVwVtgWYP{+mOHB1H5fkM;u+u!wL4=NiafErft`{ZF>W@f%Ethy(}WZwHgXSN#G
zO?u_)Lrc=R10Lf=xTQHlB*dfs%)dh9nZ6)8{^OOzCmiDCmwM#mX5J-2=^Y~MW&Y_q
zLPh8~?dN^%`J3ub<>w_ls9XN*gI-bkedhtc>W?L;kHqW^BJd|8t3mlS5dY#OUzLsj
zd`phL13rOH&;;Z=pinph5n|*qq6aWgAQ2$v!^OM<M&U&uBElE^^G(6NbADSmo$#%q
z4^T!jczVN^ftXt#K<HjNQXlj=f=tZa^qt%xPT^DB1L&EWV3Zv)kYD&eKSnZN<~bh_
zQh)V#r7&oNHaveKi2v(dKlp{-`+0@am%kuzA5C_@Ahe$&xSwh0!}bee{olT?<9{ON
zAM=9(Ab@ljNN}K$Wl#z#T*$DY!-o(fN}NcsqQ#3CGiuz(v7^V2AVZ2ANwTELlPFV;
z6m=)gvOf|{?NRu0V9kPimW}8DsFcH;p_Y+4p)lyOqeu}E3?&L9AX5tYEF<dwXBkaC
z3Yj2ms5K!)D9i2)yt9l6!JZG9Zd|gp;7x)#cM>E8XdzIcL>JxxB#Kn2WivbAS%!k(
zh_DLTdWE|z=unz4aq8?K6Y@Z#NRKK7Qnmx<gr7US9T>MDU5APbayA<}^jN-r0S^Q#
zwgXwSmoq1=*p=blzJCJ`>|Ip1W`ZaX9St=_E<xfdqf4Joy}I@5*t2Wj&b_<$kfP$)
zwi>ZiWP&%B)s?&x(5aux5^4RUP*fr#`11?AO#k9jg*lPXK~)7EhE+k(Wz`l%Igvuj
zGI$i^URwQSl$u-XG3J~U%Pe76eDf*fLnx)(0R<CGlycx;g$;CAgauvy$e4V~RA^I%
zq)ld?WgXa;pMIWo*4kF;0XW$}9D3N0j6t%tRcIrYcw&kNcF^F1Fb?G7k4Ee_QGy*r
zX(Ea$BG_4d_i^dvKt9|NR4923cjk9=)@kRRc;>0+o_zM1XI|lrCy^pHqHvQaO-VS)
zSj!mEP)<ZmF&ZGGQ0NqS1O?(#2Yq1LfmT(@xtM~ZN`#0XciiD<L1eAUP$)KD#AJ_&
zp0y}J_Avx$2a=vQpeb=uwjyDML73QrIYv4fq6z_WE1?A$8X2VxtrjF`TQRF>LAj!a
zthGZX<Oi??nNsDcsk%B4wHtvsZm{MS1Xig$RXUNR!gVmOpZxa!>+in+2Q2Ww1VaRc
zC<29N1Sx??q{p06MMl<QoE^wnBGJlKS_e|q#w)VUbpY$76q^#6q_|nROsJnCYbL!9
z9nomD@nyVJtP72>=CP$tOi;xHf%Sy0M|O;BC<RG6Y>OSd$g`1h8O<ogD-ZN=$`KDF
z>8Nsn`{Y(W4+QjV%M9)9s9s~6kSItKr1U^CtD7{)Iq&>(eQj%9^>eZ*v~_{VO;O<9
za^_p`;fN=$_~MK=E-(s;)Bun`Z@*~DC^a(u&<LfJG6fTRjAAmbr%V9^6r+&h99f^7
zct<II<mg-?WfSy?DRH0x#1y8uI<kL4O<@G-r?hy2gG``shbViW|9~P{cc7S;@=P%A
zyhJFNQpzWZeDa4Btk$SH>o-Fb6unC@0S91As4Gh7qnG}A-cS<+yV+IUaRLxz?agAb
zS(bnP9_iDN{9>mi_L0tXF3Q~II`_GO%&vB~%UzSMMZq2!(0%fQUt-LMzE!1-g7v#!
z{ti^V>t%0y1$m(Da3{C%DFk}bV?tg+h`*z-%oMbf0wRQ?!U(SFVSs?b=wK%|9L7P1
zhI5<}m&n8>I`N56e9j(BkqDSM1PDg?1PVscuz`>O5J*Xc<@EKSWt_qf8aq-4hG&ZX
zjDQcPI0`8Q7e4>wj&jQwg}RJ@y!aTZbuBXvZnPpuiJTx5|9#LyAN&Bjd_kd%XLQc)
z9P$a5b)b@&Q3^r67)GYCB?^yHBO3)W0x%xs6H6#XVD{%CV>wVanpBx{M(IUU`cXAm
z++r7-21hy4@q@16<Wa;(kWW$)mSPjq*Ah}nq@Yrj136?O7uiU|^s;vgsbr}LsT<rh
z^OUJH92873%p+Jcj@Wb?9vhRgppi2^=8U2|=Sk0c+Vh^&3DiYU5G;j^zzF>;$O+`e
zkP(DTYys8Ce>`Kif$&p0pD-LBHYHGkPGpP}`DZ_u5KD;|w4w(c$wvzW(1twpiV2N~
zMibLfkqk7X5seB(f0oh?VAPOC2&qCEiqMAqQ$Sb5|EExgO4Onn^{De)Xm?0}n1Uoi
zgGi04LzwEZfjm{JSk0<dx60M7dX*<o`3@KZafd13K@_F1=vR+A*0P>8t!s^|T<1#H
zy4tlnaqv}ln9zqnBmz}By(>QX>Q}%D_OOUetYR0-*v2~cv5<|dWG746%3Aian9Zza
zH_O@1diJxR4XtQLOWM+!_Oz%?t!h`x+Sa=EwXlt?Y`b~_KiJj}YQ<-5Z!5Rm+BUaP
zsHsVepobkQ={ivGgK#?%T!kcexeTgmbfy4Qc|mu!*v+nX?Ro-000MSaJlq`+LEb?8
zp*a)j?sr|LUhp<VQh<~WSQ4>^$b~m08zTvP|KsNoQRp=#Y@wsumJ#3W8u-8nmMfSh
zLSB+I7$ku>1$h(kmqY}XE0z>hwGh$Hl$?OTaLFxx)i@F$aG1Xx@h^4QrJ55b_{A`e
z@lh8XlLCXp6gK8aAZ~@EW%PkJ8E)BqsRI@fPba_8LGngaEFI2BSH@6|vXtjZ<25cJ
zpd(-^A5L(BkSb5DC}4u!vb-`bU$`PWR!Aave9(|qdBG##azf=Yg5ws52~8kMov-_`
zIm_h)OQ^14j?mAY{L@8teh8AieC3=WI%jhJP{=|$0zx;$2uflyLB8zIrmd>ZIkU7w
z#x?0kclyvxOSF~ejAuPJdeZ@%vaDxK|Lcz|*a(;rg{xem8ylVA4`y73uA`-#IGRGh
zyv_{HP)(6E7i3%mA&^^G_GU}kvQ#YUr71=Qg}*FACVv_7r|u942&HOGp@0+YY-pIO
zoN_;$=>s_tG0w(FB)>UX46czf?15z4*rU2Oiu2uWXRc`pecZODe;w?8$9vxO&f5sw
zU89D6*l+^>nU5h(&b;mWDE*#|x53>OhQ~4FwNAOpSH6%12LcdRK0+c)(V{Ser4J}l
z*C&Pzginy7x}Sin4|0MVoBKHD3qhW^3*zi(o@PLv5)HM3ykH<K;co>QOd>dZFq#{L
zz+A2hdLwcNpEu?cpJ*pjKEYw*|6%MhrGNqo9$5;aa7Gj-aLFi6fU<~e%nzq%=gVV0
z^A>5H>!R?w*skufzX!e`B$7MbpI3@R0AU2<Y~Uq%?sEa%J@0ws`<Ws?cfSNQCu6ia
z){}{My^9_<gFk`H6@L)r)^-_V-@K!G{&SZ5{`a)5GIEw79*qllz+N&G9S>9B4s+)C
z3ehH-H8+JRbPldizY3`^Y{gj(<~&;Ao|R1TXWUmrQV9)8N9A%Gf*j<>PVT@##BvaE
zm*y!QR*0dB|9!rRznG0T8Ti*dDf4~<!3X5RC?~TF$!C7?H-GX6HgjTt1%hKs@-2t~
zf%V4_`$rn&7ft4;Hw_4V|G-y*CTL*7M-ZowFB{k_u`&whQAvBiQ!Qvx7Ex|EWD0cQ
zD$<4?Q)fk0=6y2*g0;~H6g2{sK@sTpDh&84v4RMT!WlyoE`CQC6lP={u!8<Jglp7P
z09Y!hcZEgqgtzhuyVNu{0SGS$6H-V)p)pAV0fh=d7CglyZAgU-p@p1sgh|K~Yj}cy
z7>L+KW4{p_`LbY`kx9s*9F38C8U|rJwh%pN6F<m(7l>`d(n_^K8;p{F53z&`p%x4=
z8nOgTK_(fFkx+#g99zgVhap|Fau<)`7J5}0eP|Prk%+rtiU~oANcMCLVTa13HUzPX
zeZz_4kuth?9D>-4|IVmdU?L_{QYL(pe_Qe+JJTj_5-eKbi5k&#lIST0vV9B@gf7EM
zXqY8e;z~+56;9X?MZzAuScNnaE7C|NOT#};BN_Eb6F4GE9k3&`s3mEFjT1zL@hCt&
zrfOfP8pB9I_edp-;UMhTBLxX0&zO-K8Cvd=fCCXPL1S(9A`$o^FQ<qR;HVItVkVVX
zjzK1buE>t)qAC{wieuOi+F~mQxlC24EWYwC<&uxBlqCZZi|*Jf+)^v+@+^gth9kLC
z4;dOcxs=@Uc9-aoPC|@8Nf02}0W&E#EVhwiIhLITCTue|p`sN@w0cbwID?axeN#|8
z<q#=3Hz|`7|1H^aFL{ocn2vD6g*EApp@=h6qj6X<j}WmjQqv>w^EQIfmrfHS0T?x2
z7&bw2AXh^WS@SVmlT2AjL6$i-`a(cgsd1kvm5sSKar0huLzb@jnvDfRVKF^WXFoMW
zI3JlqJ0v@_vqBQo0YD@~P(VZqVMIt&97~rek@!NyV?4-nAhOv!G89eAGn>;{lpF*=
zu7Zw{Swh&OJ^x3Nf_alTc|iz-n2M%G^Al}hAwul-m@(Nu*%@m9X;q}TKB99#bf!R@
z<2f<dn?AIY#AreJi9uEcRmC))9u$>ZK|>?tP}cLED8!o(#6qxnp%`jc+>{yKWJ}K^
zPVbZm|MA32=rl)3vreIqfAt1W(RY#yQI`e5N5k|-a#Bcv)J?L3Os%MoYlKLO#7J=&
z5jF{Vgjq|S<e6^hqV>5(q|io9<DucSqeGdais(9<)};F(Ot<tixx_{1<V#43hgwQZ
zMY#;1)DW1o8v;r}-&7+}+N0A1q{8t=B}#%BdZ&0=S1$z-a|r|~^-~Wqmp9cBC$$|h
zRS**u9V=xLBNa_Kg%XYGA|=Iv!sVwJv8ct=QX#RY(I-(e)l+#Is-iloDM3|ghM*W~
zs!oNfq}r;k`l=hzR%V4(Sm>Iv`c}0HtGc?YygD3x^;dUrW*ACXz$&c0daTHrtjfBq
z|IFH~&ibs-8m-bgt<+kr)_SejnyuQpt=!tJ-ukWJDr>%lTiCG&PljB47Ov{Lu3B{h
z<An$PG+yL2uj&E?eE<mX$`D3yUi$h6qCju`YNtkk2dCnV8nLf-+5u632%kW%F-ow0
zV6YnTWbLJ-CZTEBv0v=Eu^dZVp+E|MPzs`8Icw%!ChID|mI$y@3Tpxcro=KW6AE}x
zNqV3fFS`(65ej~QJjK@$F8iJe0c?S=2ch7RIlHsO7ZQ);5GjZf7>gYyCb16jU>#ev
zR@*pyK@=x23LO;+FdH<hQax5FGJgOTFuQYSp+=!lwz$cpivdP+SrKb%whOU(|0y#(
zZ`*_)0Y=`~v?uYj{$hbwJGg{9FxHYIUP1~<^eFGK5T^jMeFzqI^SBEUEYJ5suf`Aq
z<q(vs5MJ64mK%Z{F#@NcdE{6ie->z!OP`pVQkbSCkrAoUR1ut35F~I=U1k`j#(`p%
zGg@Y53lU~<Te!qqywuS-d=r<aaIOsT2ZY(V1%U{);s;Nuf?q38Nox?fCO40C6sG_P
zAqBn3l$;;dvyzGtQlL4fpi_vbZb(rjCMRrrw7oHsa0e3^Gp7*HW=Ozxa;`!a$0aGp
zm2t!tY{y0r$>vN2Y-|Z@ybk=pB>@PUG(3!yA?mTSiO|535}wxEauOzb|7WTY;>!?G
z&>@)ubFx=>#YkXFa66UfxGYm-aX?-Ttgt4`Ef%W~h|mWgW~YcK3T#(AcVLw}w|kv;
z!i1-ICs28pmwAx^7VQMG6H&yTal{TZ3Oi9f`J#H36m*U<bZ268ILEqP9415u!DyVu
zBk>78)&W=LydY=_eJ};U_K%koZVfTQHM$HO+`$fk0;Hg+!&iKw*#S$?1Td@+E`bQ8
zaIbBP9D$roIlO6|p@uF=FX{(4A2Wg`mAwcUCuDIRrH~;9fyhFtw>BlZKJYn-pp*?c
zIL!x@B*=USqQ<s-%NsEYKeh*@P#DPDG<fj8E<<jofG~LovncQh|Dm7<r=Um2{KumZ
z3TLK=g8^M5JQ$zAet_vv(X3O0`ib@;xq6Aos4O9Wn8$%(hJ$k+yJ98P>kyV)5HL75
z<;IY+a!G(egBd1+!;8!Q{LgAeZ)frcV_TeU>`zyf$O09~HkAm$qtKN*3V5d%u)&Hv
z@u_*tGIUrh(zUe{{Sk=(2>GFhcT*IuycEW<3>{^RfpLqXaUMR<RHLxCOlTY}r5x9L
z&&jbIjwoat$cW5gtN=aKYD~SR;4y#Y5TQ`ee1lOV48W9}M0&hNh|*6HNsSW{5hE-q
zYeEVIb^=um5{9B1?~I5=dW{%))dwPw=;14Js1>=2*7&hA|3Oit_sk}4(iq%0CkvsC
zdQH@TJ=7c$OQhStY<(>GH^P9Y5K=6{U#kdpCy5>@ER2GMBV2=&QL_XA+36|~aj?F8
zV>Wz)$weBL`a9Vm2`$6tD^T1AMamGS{UI)~xOY7_j-;d|8Q8jw%cNkHt3zjf;2c`f
zv!l`}0rk`q=!Jf4mke>117<NbgB;-tvp_uB117OLV-cV5kHGkdM9P|-sU@k2nGi#Y
z45K;i7~XOs7H7PVZdojFnM5dXeB-#=_MOIH0SM8Py@qTGpU?zA5Cx^cV{8!!CsGw(
zJHo@GIYuA_4szTqBeqa5;S-J<4hpoW^F2AH$N9|!|D;nP5>DYKf}9i)(_rY1(Mg*k
z^V&URp|$CrdxJTe)1RjMnByrCE&iJ$FbWm&vDM{29YhepIYirRoVy8}>LHxOdEZR_
zzyfYY&<6zTrqY(vy=Fv|1);|#mJ~kl%yVNLu?wZp6f}^8Mi4D8WrPTEA}L_rqRD9+
zpzV-?v!O_#jIT|nVCo`bE*w~NO1h+f2{{pXo=#BbDnRhPRH~+0gQ6-Lq9Zy5jNasu
z{=jkjs2teOK4s}3!Kt8|t9>nK74gkbn^2q{yfwucrhE~WDiVMiR0U-Opg!rcKI^lV
z7t%}XxSs3k$^?pwJgKhhz#i<@N&<VZ-3%%0|Hz)~%D(K(-t5l)?9d+V(mw6fUhUR?
z?bx2}+P>|YMO?;366VS$-o6LNz9-|_Tesz~f0FK=&h73Ft@Bl1Z6UAoiU{q_E&uf?
zh#=|#tFMf72VL%5_nNOb8z1sMDhTWEi2(2)LGR|((+*Lwr6Td>?p^Nn?iin~9~NJG
zuqq{MvLc-kfV<<{9H=+zTs6`Mo?~YzyRtj8@gXKQCvTE$yz(9qVG~wiLT%lb>?eN9
z5LBD-LQkqi_A1wV5rEq%C9l+M%QBb~yXht`VM|3QZ&7pGwomUOQQr~Z$RP(U5!LqQ
z+wt=YA-F?-_MtkYb3xOambnV?x;>&-|4bkgB@bvdHNsE8g<x^)d(gN8CR}*0_cy!|
zDY<5b(P^if__V85l~!n;_GpK1Q)*RZwOb&+o4YT>x@f=offzmIh6m@C<;*L8^jl2!
zi?KUieSrCK^6TX*Y`gp&v=!p{=5_}Sh1{@jzK@S)%elXkD0Pa@^A%y`-|HL`XK=|R
zZz>&e>%y{qR0^Uk{F~Oltv?V6d`bdE{V2!z-2Z!J_aLy6b{K-e&=-5NCp=7yc{t=N
zeSk5NqAupI!j6sdmJ_4{_J7}hcH)2Lqgnrk0}!H?LFrJ?;6a2P0*yL&f)t>FewHCz
z#s?vjfe8y@B&gA2hdaysECDj5|5PG_p-MqP0fkhl6CHpo6LliavQa0dEMw9E&?!+Y
zn~Yj!<YGpIpF|l2@`)6Qf+(0kS=NUM6Qc%|GIa{|<5#d@#f~Lg*6dldY1OV}+t%${
zxN+sqrCZnTUA%eq?&aIp?_YyEV<J4U%v7H#f0jY?h+<isf_zL32D$8yK_;hwbl90y
zqhrVjPgy)T^NzureUg?!dQkA!(FjeWu9~#9*g&PG?A|k~R91-;Nn^f!kYm}I!#gZ#
zQZQuCf<|i3mVR0~K|nkW&O~&yW8h_*qb{3LntZ~Y;yXAl57_;C`0?e>r(fUxef;_L
z@8{niJY|DMz{9hUzDwwo|2+!&B#?tfu&kgFMmdeMqF_r<H02^&29YTMDdiN^4!R={
zpwuhqwU1&$h>s0B{4m6WP%tYH!%Q*dA<u$4s3Pw?I*u$nmI3gfP(DEj5r$@ZLZ*yn
z!fv925HY34g8(t|piwR}=(>cgL?}!D!W45%GRrjcOf=I}b4@nILJ_RPL<B^XmzKHE
zlnV`dume6u0piaBeUOt**77t+MTG7c#S}zlGBm(MLP6+FjSv-a(MIiTYoU*H)HA~$
z6AD!<4?o(|pgoouVWys(WD>h64`LC(Q9B4_8C-MS(757k)iu}d+7xzJVv9BQSY(q`
zcG<8f{U{WaI`BcI|2v?#sua>n(Na$>P5BkqSf?$e+G{iHz*3D0Yfsc=Wc&{{a|t_-
zElxf1v;zl0?RBGlKl;g3#!yw2)mIA!BvygF;@7|qL`lR5h$A);Bj^rtIAV#J)p%o$
zJNEcvkV8J!S&y`hXtIM$Ax)7h$J5e?BVs-xRVaW%*&vk<jQ1d_JVR&+?cPmsXM=j)
zlp&A$fRbN*879u@uR`+KVo?wRBuVXDbu~MLa--59Ku7_LDyPF1`E0b)R(ox>+je_W
zArl&*j}eFqO%zGNBTbK>`8?IN3Jby;aC6ZmY?PKeFi>d#Nj}K%h7gzAMBI?pXs3!(
zZQ93vJ(?-n|ETJ&?7QTcY_-XZvLoG;Z5M{yK+%bNltS3ww*7Y8bJu-$-s2*92~$34
z0*EL|v0S1%P5>e#9`P+jHzs;x{qn#&Kwf#~3pZDhJ*N7^6wiPT#9E0mbo|imyNBZY
zseOg|qk7XNg%l=GxI-Y)PPi(hJFXf`e<twHe`5*BC#-dcQux6jqBzAAfB=P2kfLq`
z(^~45L5e9D0fMJ+7XSsw1j>9b4k#!I_z+^FI7k5zc@iNBr(nX~#ZZPbq+tzhII_4U
z1PF-$mb>tk9bA2438lyr5N@@MPoQ8F3_?%!MgT-44smvdyTd7hcm#yF1XriPLlcLD
zp@dZN|B4#<MCUXTKaChcAj?REV-(l{jC>0^ar{-q!lK1xoWc*WBLNiKSP%-L4pv4W
z3QjyjM_pBH1bndK1=m$HZ?O@J5Mm^*FnB{uW>S-z<YXt`V}#f>1e6~^!577Hf>ELc
z2tG^*3F)%Rudos>r34HrJu(6#n9^Ud`cqnfpi4l0<d>c#W-*O<Ok^fgnP)rLGM)KM
zXhu_-)1;=cnpsV3W>cHn<YqU$DV8|2?wjKzXF1JzPIRVIo$F+0JKgzCc*awn^Q31z
z?Rigp=2M^h<Yzzq`A>ibRG<STXh98nP=qG5K2QK=o0#AS${{NbZyd`WCUg)Z=wXFR
z|G>*c#gfsD(#4`?0qGt%8WxX|Wu$v4=}A*std<_@rN*48G;69*PVxZ}hya8irVvW-
zQ1n<Ki6~i&fCohQ!Hyu=X;Tp~wJ0Fs6MkslSD?@bK;WUFRx3qWL?KS9Bw`PW=oJ$X
z;X@-hwW;sp>K)lQRx=_bs#C4%0>!zJvnC|0aQ%)E{vZlO7^qZa`6^jXa0f(aH6cdu
zLn7`VD80Uwtk~)5R~YM9$Qre=k4?y76KhJpK5|Qc4Xj4?I@z&Yma~LGtYXn(R#|pn
zu2e<HQIl%N!PX_TX(X-FRGV3h{z0^9RcmPt;#t=kwzZ%YZd=oWShdzQjYw50|4FI4
zRK;O6x$*HUU<F&*k6bmYTg55cLNN+IH1>k+0|Fwji<h19g{WzvN+|pwkkAw)5u*S^
zfBWk*#ROsxp}1LC6q5)ZmZGQ{$*ouldt8yAYHAUxo)HjyVWP0LO5pWKVJNx>=^`Y+
z11@kv9^4?JOwGd*=2s~2P)0p~jl*F%F<4Fz3R3)`6rx}yRX)*&MV%DFA2v#ZBm3hZ
zlf}nCHieKoaN`{Bn3X^PqPZ~QVi?Pd$YNP?l8=jH9rO4s6rS3M2~3&#-uE#wt_ziM
zW#wgHc^NS-8WNf8WH&c&OBY6PhQAzTF^>hxVV-i8or{+J`uD$MNi%+x{~TvE=eGj~
zPVj>Ja^)A#nav-e^fDA&-ra>_TSmAMP~Bq+q2gt}XK~1PvZJ0*5N#*ld9O!m78O%~
z4lG6nOO1{85v5fxA&8i<zlxnjVUK0jnE6VL3li+9{W>XCD@b-k$LnU_)gyC?$q7ag
zEaz!y1fj@Vo!f_P2$>9D<Q~fi)IIKU`=lmM{x*^RKoxT-1#GI~S+c|8ZgI04Z1eUu
zxXA)-z|s1+q;Pe3s(oy?h#KDs(Ra1^9c~B-ydV<Svqy+sC4$#`EZnBI!8x8Gbc-d{
zXleDnE!_}?yS!*wK|!wNQ*obMJmrd`xy?bHJ5d8Jzauz7(QnCw|0cv_1WN#r{^}}~
zh>m~+6)C!@*8=rKIea-CW_oAMvo2E1&LB&4%N|bA*{*LGkaab}No#yQIO56Q<C)zF
z(!OaRR2A-a|03Bf>vnN6LGDv?9G>bdp26nbBW)L)IGrw=zNJb$PpBSMoJ_LBPmS`P
zu{>e!UXab#`J@CZh~#ya5W^RQDkg&alQm!YWsE-ZS{J2{29G5srt9kuU;9UFnJ%mh
z4fT0iJ?LTY<bpuXAdV^G>?y~0$Y+lB=yR^()Ajj+gx$u$C(P~%(>?&rM6{?nyXSTJ
z_zu?<{V5~9)-w+lv;Q3E;uJ-|py)Ixu*NWZU`<C(pcpG!|B4tvggi2gb-9UONgN0X
zvBn@kD>8+3A*wy_mQyegBRC?OkgmeWuT!`v$kQ-<VZcdCoD0kq0em<@vLriNf;BP)
zD0r{{q7gi}gFB#{2-%If>wr`Nt`fwR6ZDDSC?xv9j1gIe8LUB!!oVMN6^~#+aCyPj
zxxvmLLK&n%6F~%OvmUWQK_Ohh7KFm%0>BJJ70ZdE3kivXn7Yu2K_j$68B4(nsu(mh
z2sPXiB_xog>3}-a!7{{^DKZx<GzdS~LO3eIBcvQWIt4%wojELsJ?stQ(3GMfg)Le{
z6vIK!V8XE2KrU3lETY6bvc!V;zXJTh#{tAF97Ka?|3p1pGcfvy9VEj@%#$7*!_w<R
zNjycag2N%SLlg9w4)i@SG(~xlv_ure&T_?s_yZEW!-g2fXahw>j2%)8K%WW3h#*7{
z;l)}TLHWa-paZ$>Sb}B4D3K^SiTEk45WuE*3a$7JX-O66kP51>3huL*xS}|C^Z|Kv
zjtz0ICSah<3Isr4x+6#gQ;4mCh=SPDlb&*zN9vh4*s1Yr7&F=lDL4p%G)RPWm!AlV
zmLLTV8pV?Uf)RiM8_|+GaEdtlgilziK0t{n)QD0rIE5(46FA6(tTv!v36~g2kYLFo
zc}b1LNu6{TiKNJeD9Mvd$%BYV3Ly}obV)nP{|rRXiDifau<6N=1j-X&N|c-)1!2do
zsJ38nh{j?Js$eBaTuDkC%8L0&pA<=?Y?mF$la0*Dj#NFn)RPMVgtH`tv^>3wIEAa+
z39WRFsU*r(6bX_riD+5NyEMyD6wE{jn2;EWk~oQ{lu6h#f{EmiuVBcNlFP32q0D?t
z&KygwaK~3P4#ULC#8jNVEQnmBzK^KMDhbTNEQq{3O3HjP%M2LY+)9xANgw*ny|m4T
zOa#%|3YjQNjUdg&)J(|q2<mL2j5G-4+)37qPS>mq>s-wafX;SQ7^{>`<D5&Ngq!XB
z#<vMagW#K=DUJyg9d!W@^<WPOi7;mK|2{Ix#|H7wjcCk(!H9}n4`qxIQUJHYIE=(t
z4B8+ztm-%g>6cIFzgTj`?5G%w&=Sd@jF4y@$H|P%m`P;QFwn3#5B;0g8;{Vq2@1`Q
z;Rw;j+!hm!O1RM_I(pBXYf%s_un|2G+T+ji43S9jMkcwa)Bv0>>QLg)lG!MTCjAUo
zoYD@c(jU_=Nnu99JPKU#Q6l}K(lH3;0HkGL(%LvuE>+SpEr>JS2+hz@D&3G$sL-83
zfd<_-AVpK<h|}~~zIo9_b_rASP*WHw&d4&5E$x6L^-?PhjYfS`1w0p&>zfa43|D+m
z#88ZY3DohZNIeC&H(ieAXr(<}{|z%*Q3~15c_~#uEz&`Sqg?S(DCHM%%1{A?Pmqz%
zIt37*VVFJuuMtQ+pHM(BxzIgWFfJjbvnZow4Wowa&o1%^1ZkyF2!+@Y5IpRNAo&DF
z^f!fc4iXWCm%G-SLkLkongtn963rnLn-CO@5<*Oozs$piu^b8^uXDMOZw=S1Xx9MQ
zlL(R5WOE!8_=Hf<gHsp<&)^!1Vb|Qlmp$<kEYXrtP!0Z*5lGY!4)G8Wandfq*L5`r
z7Wvp0u~(CA5s(d$jMc$X;8=Z4K66Rfg>6{EgI9wH5@0%67YW%8c-f8R!-C-1TapkW
z^^AY@$M#VoZQVC@MH-`J|1e~|E5or_hILq3VcC>@&0(w8pw-xzC0c8}5TPC0jwMv6
zjaZe%mjP+aj<DFVyDO)SovDqbY&EqJDG>{)wyG^!ovo6;jS7X$+J`0CncZ7+<<<BU
zC;B{yU`4hGd5)C$mR*So0*o_t<P{J+3lzxQP}tncFp=B5gE^^_NAb3K`-(Uj-GTMM
zc1zMhLEUOY7~g~vW3|n9{h~hkljRu*;CeC(b&k_5l-li@JUk!MC6u<LJqMYP-0grp
z>0LkpUXdk?R7HVA0Lp9PPTYNzJ;6X-36?|%tf2V=T~icBag^(=65CaXJXGIIF_h({
z-BrXC_H|VAg%0%n|I*3~7VT}%eeDv6yWjPd#PX#I{*9KDqu$?z0?1l5iiKU(1(5E&
zUEcEu@dXzD6;1%&URILd{8d|d$&ds--}EhB1m53*=wGk(iT9<E*)?8|Xx$CQ6`QPJ
zwX?BNSY3@60oh$e6~2%gzTA{6;=uf1?u}u5g^(a-+_mvlg~&oU?UhuSA0xDwhrt*l
zpd25#gIfs&TIrj(_~I}g3<;Lr3lSG`VFGMv2vP9iXNeY2&AwC{3yg3VHntWwCXEZ8
zwDMCoZfRefvE29F3FO=3ayj0E_=EBr(}YmuJ|<EV5zK-RWZf-@Nct7qC7F;AvcmYw
z_jTk;7N<SA{}?V7k3lqri%Nt$9>rP3yitB+d1((xe&ckRmsM`%J4TmJhA>0HJX*Ff
zT_y!qHV9Yd$&c7%U5S-C?f^?Zt~ef&KPF|L7-lWz;x6vsUxsC|6W;MtK14={T}I|N
zx@FQRXZ`ABl$+&(K<7CYoGr!}6FGrtwi;|EjC=lyJbq_t;bUAzWqMX-j}YjLsSHq-
z#A?oGS{+v??$y>o0WPXfr%5UroEo!Hw%a6|yV!{{oIXkPgA&UbgHQyR5DRr{R!yce
zvj7_C5NQA*X^2gUykVIbanZo-0GN>(nwc7>NC=ot89&BXjT>Nc9%<50=?*XjI<sj(
zeHodV|CxdC8ItjXVa_p&LkNL$YL}@tussMVxLkZ`AX^hQ%p>Y}>o=Q;>7Dttum-mg
zAnO;lYJ|XQp%IZBjI6A9>j05!sad?J?&;{b4W>Q_lYUaPX4-B0>PpEFx;_ZI*6R+|
zim&Et2$Acc#u?JE?6D5#OV#SU$!tv~8g<L)k2q{;4KdUP3zt3_w)X0e_-h7Z?1;E(
zEt%<!OKUSF<A**Q`5d>ChTP&ff*dSI2wA>I$`@YwW_)?M&q(g(Nn=SI9K8XL_nMp7
z!HE14g_fz6RWYrn%pvL~(xIj`N#vV~VUgVhi+Pon+Z3F5+llg)9YTh0!dam1Mhf&^
z|5<HoZ%^)<>aaNTzL5Ra5G^roe1UAxK_IL1HU&KE0Z$jnvG3~ctO?J)1uq3t^JM@}
z)B0u-T|<Eezi?>IaMAgk7_qu}<?g4kZU$=&jJOaKUp~=6aI53+iV1KFuT)Fb2p@QF
z3|~bJr*QH%2vRWd4ptrdZkYIP9_+RoBCQ=4*C94a@hR7<@E(lurV!Gw@$IN`8jtb@
zY0Mn=@SKZq)ywkUR+~_GswI$uPpCl1Wdb;`lY6YWQuu^K_=G?3(H1J9tl%3!fPx3&
zp{YS36?&9g>D+@5bV7#$L-$A0y^!nq-R7yeM1TTK*L3Ir9^oM#<LNg*m<kf#|G451
zAM(+&O3$9!C51R(0+SeW=YbySS?{lC?~s_JgIM)9YxP%;^-!wnG{v4?=gU!tpq6nr
zT3?j@KG>Xg2;DFODVU$ZI2c!l_2&^CWuJoRVRo%Bg%JYuIve$nkTmY`9vHf7u(^?6
z&-Rj5ANCQ%VYl?*IQR8QciJTP1yxkxjP_|Kg~rM0$}pe+N}zW~cb}mOeV4QXIv|5@
zqJ&=zQg0bd-*is*b!?aQfp>U{`tuiRA9R8C4ElG<u=jYM?8?w}Q4b(x<aIq$c$Swm
zez*2^mvxsX4No7Q;?Y-+hoOqMcsWEOj>ol32l^@=pNCTQd1rM60e2Tl|M!M3_>Oma
zaqst$r*@17_M=aAqFM8f!9Z>C>0fcsQ0N0a=mYi2lSOKzOA3raiZkp&NnA+;l`qd-
zb^BZig`l5w2!SFYA|fLFmTlRg9{NNa{-QF%KWVJizR#7v|I6+H#ZNF1BMKrVn%Ea@
z?~;`pzn7wFi~Jy>9Fln=$M^h6Jp9r)q9pP=xXD>lYA;~PEI<H#B%*xPzx)8HBuA1f
z){yH}Y@|=9d!w!r+Mj$80e+Py{U9=ZkU;)~D4sk@P{V<J91h;|NyI(+{W0SG=+`T0
z%zlVB{0*Uuoe=!bX9CGb#P8o$-EaFBmWj;W5a1FcBocm_)rifX|IXe|?#>5%g8+yq
zrIwwV(%~S&gQxf;>;PyF6H?2TeFB1T1fYo&mz3Ir5J)18h)^UP!ROROQU(uB(dhC|
zLMRdm`WeB}rAC+sWllVWr)0*7pE!CvXcFZzl?{2)v}yEY%9RI!AQI^V;lqeREh1#<
zvmw~9V#ks#YxXSKv})I~ZR_?e+_-Y*g8ft!A)iuUft(OK!UzenT*H!V`#12~6Goi2
zT|CwYV!~rl3~s2HaabRP!J_C(7wu)Tn%Rba9JyiV&m|p;9ZlG?SiWN`Hw3bot?RwF
z6P6BZTd>=|nAIwdy}LHq;%y<j%?(z$Z`f*u8&{o>Hp1S%|KB>#&RXpEz0!#rX-iqG
zcJX7Os}D=P_3?w}t<$e>|33cw`uEEvvFuJmiG;!*fdv|PAc6@hxFCZKI`|-j5lT2A
zg%w(OA%+>MmQf&gOo4|erIe>3i6xqNB8n-hxFU-!y7(fDG0KP`6MY1dh#z+hHzSWd
z`uHP|K?*q}kwqGLB$7!gxg?WKI{74&QA#-_l~r1KC6-xgxh0ofdif=oVTw5>nPr-J
zCYougxh9)!y7?xYamqO-opsuIC!TrgdFKg!`02-p_U!>+TZ0A(#dsJRp$8&+EOBU}
zYfXU|6n;ed8KO&BN|&JqP6}40820&RpnIBnDv(C(|AB}fQ|t&MABZ3VNUN{XcLE@Q
zgaieCqUgkyuRylsM~P4@lgJ*5EW@jh!@{-1GAr$|jIDDyo6xk?t`%&7&`Na^v7+X>
zE2`z18)HkO>;Z@=qR=L*Tktv<$|!z@L`tdoF|ll~zi#U<k5n;1;t9)y+rb|B$|x{g
zfRKVvw)ZiNEwyxUOQ6GhAu=$D`!c(hyw-($F3BZ}g@VBdp%6;GrX0MM%MXU~s}ZJ<
zqOEEk_v_Zhs2Z!Vl|cLlam58jJXg>92~8-AI<plseNdY`HPyy)?4EyooN&U9CoGZZ
z2w889*>F3ezyx-0&74q6aWpi-5z>tiDPvBJ|L|y7PJ;#arCwiZ1l~!Xzy#180De%?
zW7&=ObA*>fw`GpM?UdK2l{NR)dw1}cQH*EzwR=o7(bwJ54PH1|EnT{K+<Q~Lgyolu
zPCDqkDLlgKu`9my>U@*shbfF5ZPatMm(=;*yn{9T=6kmu*5MrpF8M{9k9fE9t9JlA
z*~-6dJ@S?rU()QGkAHewdW#RX*jzVW_}SQny^PlGQ+>a=(B9Qh95_*wkP$+m5m5xH
ze>nLBLj16dhR{!CRY8d<zGW2DiDhjG5d|PFqQI>jL=Sp72y93JAUrGs1yC`?#}J}E
zqim2Ol?mVgOSJ@1Oaz4&JHa0avJ3(y|73<WghJxNLP8TlFoihOArCv?!R#PJgdofz
zN|JbxP=w+HA(;q6&Jq-UePkJZFvT(u0R=D)=pZnhh!i^jg@G)?6nhv5vyK==3MPaJ
zcL>BX@NkDaRAvM%tVlwrXhn@=(JX7M;TyTA#+jS~5R4Jz6&t8Ujiiu;8Uf^Uma)I#
zP3vQ4++m=Gc)}EJv67rrq#rL?86UP0h`*8}D5v5@Fp80k8dPOi3bsFoQ1Uvn4C5G=
zQAWcF5RIieWE&G1M<~YfZKzuzF=L1j1G)r(*<ofHQSiVvN`;!2#2+|ORh2#@>TJg9
z0~4s%fj|J_Yez_gDGFmwFQzk4{|aPaAwMCa4)|bNS3{g4&tgHWhyo#@C<PQyAd^z`
z#aK2e7~W9W0TL!+V?c~&L!f!kgf0{|>~tqQ3v+@}BmxK{7^5kE^$8vV;S;1l%t%Xm
zQd6Y#EEKh<C@^}Em6oTaFI8j3AbJpqc7UfH@M&a1A&O6I3<Y;c1X_TwgqEaGXreel
z|3-0wmT>H&CwQk$jbN~?DbQ62F)C8eatD_R^An%==SCGu3WgeVsZD+AS;T6oK1GW$
zcQDuzfG`D;)|IJDa4J;KB2}t_C9WM^UI{7Y6hEBepI!xPVQ$KVi*9DI0YzBRC<|AF
z%9XAih^a|Ys#2D^G%!}h|LQWd%GD{7_OT6_)^0po)g8iCw#(>hJHHxIGme$7X5A@k
ze|o{ss*t&t9c~BaiB5H*wY6v6XFq={pUu)!o#Fhhol<GA;|NWHgjt5$x@g{eCPb1W
zNSO-j!d$Wpw1W%mz+bN>);>g6yT;PP=9Y0468>smQpo6M^NW!Eo(#PQ;e#n)^H-g;
zWH2aO34|rQ41kG+z|B2y2P&+xX!Uns{|)d}L@XZ?Pce+gOAEAi3m~!1c)lo0?;e5&
zLKcU385ZWTSyTrW1rwLQEk?wP%aUWt@mOeu?7$M5U{DuV55@`BZjs+6wSz>AUH{~a
zgD1M-4>u&nx2>3${}V!F!+G(+5k|;_Z}MY<ERD@I=GB@RT#_yKFram&F`Fy7VjS!E
zv^-XEe<k>d`E~%Bs0p(y&5P&@8wI`x`Eq%|tLZ%f0g6l`uAswmiv5XI(CkHsB#Wxa
zw5e<@_3c3a`VtCjA_NhmI7lhn_Qrw&;S>iUVW0~3=|+Ec)(x@sSVq0mK$K+64x#ly
zMxm2WF#96TE(@@;Gqh(nMB2F4bt!o5Yi=jR+bw4GS<KwUCmfYuLJM^Vl-+?od~kDa
z#0s=KVD7UBxgo|*2(r)37J6Ug-oIYP>I8^xv#8sk`3^XoeSBsVBx0Xsk$1LtJnV*Z
zxr7zZ*S~9h|LdYwyV5!VM83T(G<Ltc-Mk9<K_GsRzp|R+D|b20MO_qv8^z${M##Qf
zEfz;NMBbnV3(C8#(p7_p(VKpHoKTRFZxQ_tfDpx8HCadIp86oE*5*V)aoo7PS`YWV
zcE@dk2$+1Le<*lD8HZ@?VXqMFp!Mt3vtAURdtE2R#0io+!1oT=y~B~MG@<_PlEAOM
zsBVXQi~Se)4k-0me%5ZwTR!u=52Pr@BGj4{FOszMyS)HATIJdD`I%$cA@vSR>fOR|
z!k@lq2O&iU&n!SvM9S(|@BG0x^WKerc3Qh1kKH3ScxQ`#B1jh6z%tLT<lDXjxF3tn
zG4F0g|N36<JK1*V{YPcAIJ*15Z?2%5KYp+abL^LPI@IIuCPj?={a@ziLGJ*Cbe7`D
z`?`PEz1NfR(;Wy<70Jb`1wug)UhWZ%P3(avjKC?3z$i=s9O#7HRoYK%T_r6;1EwAR
zm4g29Ulx@Dz&M*IB!UsFAPaJZ2{I6e3DMyN*aoH`3$`GaMc@Qh-~}R%3f`a*3<k`x
zMfOGC_VJ1j<lp`=LH`jADM-Wy`XCSnA?YC;Sa{%>ImHmB#k4$O9wh`Ij9Ufe+gi*X
z7D^UENWn6APRAv}zT{gHir^A9p_mEZ7xtMc9m^Xs&<EaK2fU!^Ng)tg1oYut%blSE
z|EA#@V&CN%A+NMt9F8Cp7E%{N;RXHR4K5s5tWYG*q5riWLfGISHiQoppfE|t|H+>!
z&I$0u1lPS8LYTsn8H=Fx!F|2o03t+7>{46Q7YclZ^eiA&j2taORjl*@p=2NpB3LDf
zf-oKgAdDRFNQW#Qgd#v2%ADN8h{ZJ~L^j&g48GR}W{g-AV+R}~p^)PkTHbCsBF;@?
zLR4eS<;Wf6i#oPN>4oAmIz;_#AzHA?9_7nlp^iUVSu^fqG+ts@OiN$1gulRJEM}21
zies4-pA|af1tH|fb>oO>V{B;OBl3$gHbg>(Vq%F!5gH=DK;%#r5<u1?Np9m?|Ev&8
z3f?R-*FBcSF1jMTt)fqY2^4%937Eo35*sgy!Z7vNC-UNKbzByqz_$qC+h}5A{mKX&
zlxO_a$2i%FB?5pn0Yxy&MBX9#HH21nQ5GR3+enhxT@4>N8)H?O61Co2#voXX<p#zj
z@pR=^hUHD95M~r4TBM}(@rqjNq9h%`G8B$pHcu5M%2~=%Aqgf~C}!aZO;Mu2Baz`$
zGGZk~X1f)Vv9KFtImKHt&0*ezM1~_-9>nY&&1pv5R<b2s!eu}?MIja@ekl@HejjO~
zWFxAiVJ2luWRYcxMPu&B2%y^vrKVDD9aG+>%0y+V8Rbu2Cz-q@B22*%|3JZ_eHl%~
zffO{#K`782oB$B~RdouUDTpU|p4Jl{)*aAL7MUF&KmiayK}dic{52LL0FD%V!YQPX
zC=^6~j>63##6XnCdr4d!TH6K=jvf6+I>APPPQigD==S^vda7p@jX)`s!W1yU9*jaw
z?NobG#uS*s^@Qk%mgtFM8*4`4C#0xgv8aMBW`H?pQQ7E<1`1`8#S$<99B7i{<mM4>
z=y|3m7RiSxl)@(@!YBLzh@og4s3?x2MLve2fkFX-Zl-xWX_QWBmG0&z?B5-f!odWo
z014WV7AZuO%7tbqV+e>?3{Oaqrg?T~lRl^hBE*{-X`tZgGW_P8|9Yv0f~bg+sEMkS
zkK!njh9t8b>X#yfouVX>3aTu*W6SL+lS&c_h^drPX+qTKmEI_SR+5DN)g4r5d2;Bd
z4q$kW=Utd8mX3&h;-`M<XgszjtzsvzcF7csf<}bG{RPvp9Dz}6(NJ{6Qh-siE*K3R
z3(6eKuomn6Em}{)o<^8pzL3BcCBkhWLcN6qLg3~5`OnpWt44_HMKCK-d_*yQ0t$>m
z$sI*hT*tiDYsrxXx;_O`C`GN6>n&~$R3yc>1nF2T+Tv}haBdE~I_qhLLLcZsANWB?
z+y%ZOtXgd8L9pvYxU0jp#R*WX#bT`1bp<2U#K@9`w#rw-{~`p)QY)Y?LloSp?VSKA
zn1V%M#3jY6pDyE00bU}4(9Uwj%!=$(?5n+A#K8(|q~=`GZU(g6tXMGY=(QWC@{7+3
z1<;mk#a?X2I&Hw3*UN65x-RR_N^Dm^Ya%Esz~-wi5^LBUtJ}hDu;y)+yhm*0Qh02~
zYbXw2Oh$eDh4vJ#5kyLQc%$~nM&Q<m<FZBMHpt@IMMLC8d#Hxteum{H1m;=>9TBc!
zByO2a-dW&|?cj`Dpzdm1N@~o;;ra#X_K@jXN9FF)=U&I^#D`fdE^@@ir5pxu=q>RU
zukl`pe+=8Do=EZrNKzgzfi!PIEHCs{uk~IpnsA7R|A2_ap@{Z=NQi_k_I}3qa<BM~
zFZ!mh`YuV0+(?e7?uE23j_Anx>WBQkZ~f-4{uVC}cz~8LLF~p!66`Ml7q9`-$q-C}
z|I!BsZ~%<x!8HW%SWv(K41fZN$r+%*0dFt|ZwV%RFbIdR2#+ucm#_(+Fbb!z3a>B=
zx3CMpFbu=6C$NJ%)UXZTFb?Oi4%cuD#J~>!Fc1f^5D)PXivuwH0um>&5-%|mlK}t#
zKo~Hw6i+b~SFsgeF&1aB7GrT5bg&nHag@Zc7>_X-m$4b2F&dAtC#(Yzw{Z`*F&xLS
z90#!xZ?O_PF%%~;FW503_pu-Uu^)Fa7!NWb{~JjfA2K2*vLY{X8hb)I%yAC0gEP2+
z004j+I0FqsvL<hG5RbzV^D!Pr@h`Xn1Iz*-pE4?^@*l54A-A$C_Xr{vfh90<3Cr>a
zQ-KIj!XjS+70hx7<FYQBu`QSI4g>)$tFR+;axxeI02qKXGqV9G11HCEGPr>^O!E$p
zLok5y6Gw3@6aWA)z%8gUIhV6JFEJ~>vO2G`iX1W)06-BOvk1R)JY#|m0DvziauEOk
z4v6qQ=kplTvk5PN2*`5^cfupbu`*DDJ1_zO%m60$uq4v}05pO-P=hpMGZ5zi0HA|L
z>##Q4aVXmYI6rX%<ia_pv`PbVI<vD&|G%__9C8L6z$F+o2+wp)+cQ2dvLsx975MW`
zmoZKcbV1wn33Eb1xA6o3KnwtY8f5Yty8}C@0RYGV08GF~|1d{;bXMbVNNaH@^8zo3
z0RWf*FZjYrXYmTGKw7UfE5I~d$F+l`u_OS1F&lMV-?dHyv^@WF8Rzv06SPsIFjB*@
zH&8VI90FAPuv8zy6RW{BcXbYLwPfQkIc#$lhcXh60RW&vTW4_rY{6$su`a~IE&y^X
z$hB&(Hi4{gB~(HRi$DPIH6~EP6-dGeUqVh>0v6DAZAZch%XU8dH3-voC13$;hp=vc
z@FhS(PJ{3zSb}sv_XiXA2h(<Q{|9pk3-<^|0v3F*V27|JTmf(^Hzrs@dGj`PV?uV1
zabdSHC;)&9Ts1Se!y7ZhQqMOiWHmZGLo=L%JE+4ngo8U!wheRj4WolJT*D?`c4l|;
zW_R`#`@&i8!YrWmF1*4XE3q!Tf-X#PF1*4mptT<Jf-V367wCd6oc0oTxGj))i6e1`
zf4COgLJB-F0AvA;_pvIlwvYd~b);}5T)-1&fG$(Q1>klFQvv|!fCwWwjt2k{gzy3^
zKqXWFj_1HH9{`Srz<SqqlZUW%?*IT$0SHIJ0^m3Tls6^>0RT)w4&Zndgm4JpxS5N2
zP-6m_-#L4W0FGCHl0SKv|A#OZAb_2R_j&vI6E8q{*L4mA003Y>6)ZY*D>?uGx){Ir
z5X*r9xC1go007v)1WbSp06+vFgF6_29DKAgIKUGdfE_S1svEdF2m%0Pv^$(b8vsBh
zyMQ%layekO6>Ih{gn@)xu`QrDII{pM5C8zA0Ex%KjXyC2*n$%0!U_O@vljpvBr#{>
z_!FxDhi3tfr+_IZaSEh>E~o&Ga{-K3ak7K^vu`+$!!MBEJH9tW3Rl1aTmcnSum~K$
z0`N7NYxf6NKmY)@B>VsX{4{tkKm}mH6-<H<TmT5Wxd>o^Box5_RKN%qJf8cqpF8{q
zV?YK#f+ax01q47a|GW7GNPHEfxpqqeB<wSvS9eg4Je3Ck6-)vZ96$ghcL;+#2vb4;
zB)KI}K>!3mQDXwXD|`hUz%1AGz!L!g8~`Qk^A&(M&-*;k3;hdo0yq${3(!CftHU6G
z`yi-84by-NX!JDzz#MpkH@pD=I0D-jct_Xp90-6j+;9xIKsC5SHpD;#Ah;ZtgD_k%
zv9|yKxWW}DI|S$gXFq^0lmP&|0ur}C3&cWcuRsByG!m;o0bF=4cmV*U0uqNfDxml)
zyu!Kvf-k551eo$Is6YekcnUy33b24H<boKmH5O;PyaRw305UAtd%iFKkEgIC1T!Uw
zzyjm|*q=Ak|BLV?06^1Y0?A`Snqz=?f3Twy`kagR^@sc=gg^j%w+S=35PUGkgRm6<
z020h|nFF;Yr2qPdun+*i)&m44OpyTO5O~m101*cT<_J*fpb!8HF(CmU=^!NlMKDPM
zAY>qbAR(z>l6d7HL4yogwrsh{T}+uXXHK{w(~$uH01P;iX=4ISp+kudGJr1TIRK4h
z<^h0?of-quX7&PrP3ATLpon&*S?*U@v17xM0l-DquUG{D<Rbg_mn{Hd)B*_eYZd@h
zVR?<s1z-$c09wYTA}g27+cE%biTztfYzhD@e2Lu!_bsoTn>Vk({Q0e{5gkaEHhmg(
zYSpV*|F?Gi8g^{ivuW41eH(Xf-Me}B_Wc`paN)y=7dMXEWpd>LC1PY*0e}wYEEimK
z83X{O<tD8&)RFzdfJoahMHh&DyueB#Sz-ZD(mQzZ)GM&OaDZj==NK4TnkX=Y`WQN3
zA&;u)=sg5WT0p>q?jvuxOuU-O4F}wT#svUeh#-OtU4X_N1KgO9M49M_fSs7sF+h-}
z0Pv=U2&$oJjTmT}pp6o{Y6rBiUTN%?RM=vn$FSrwOs>6d(F-#Ix)4hR0J;G3t-Q>5
zD~l9-*>cMVvWSeaBHz-5GtN>F6SQ1RIF8LW-Fy?yIOUv^&N}V96VE(-gAl?4GH{8K
z{|k0nfCx(%S^$CMLKuKNKU?~)x&yRh=@KDAK;VD@3OWyfNf2U>A@|@r2vPtfW$C~8
zE*bDomI7Gmpj4|X6Mzd4v_ipLQzaFERrzEo6K-^L1b`X<aNrSlVzBWM2Z{y2Cmknb
z27pCkG6aBVT+A>6Z)nPp)|;fIsU2g`)TM=;R_Lq9BjaLn$-REzMT{06Xn=vU99v<h
z6vnu0tXG&MOEOxC3@Zf)(0r=_S_fMgu3OgBlj4dkz8K?-HQt!xjye8yIg7ARP7)!i
zTVPU57*rI1?L>aG)++$0z*m7JSzv%5sIbC{0an5;W&cJBHNp5UkeTL#E&(6}|CWB}
z^`Mto8i1l$DMG-4NVMJ>Bad+Ps3fqLZknN|YX&)39o3m*Cp(Z*)<$>Gv16w>)EU<+
zx;X@(keQsK;TZs8NKvK<Xs8D9#IwO$rgn-!)0PKz;)30F0YDO7CUZ%lfG|)=B^3s^
zAS)L!BugPJu~NDGtp`+y1@_o)iA)8E#~Q=oSZp6lVvl|Q9r)mdAD;N)jgJjv<rc62
z!Xg0p;h>eT10cQRmUrnph%Bla6A=P1^q^Nc4I0#gL}e-aigs0b0hThrFM8%%s-Qtk
zG@|JJ<h;%mZ1&xUKY3}>(F6cMz&gleStcrA0U1Y>8@%BVi<pt$01ys$|5#;2GEsvB
z8aR}85CcuVfWS_!v@mxi=@;?(#TE*Xx?lLB0HcG8S-db7R19n^EocB}Qc%0yy>JU<
zg3J$pfs2V94~a=s;u4I#RajKt1GYUd0}LZDGcX|CF{H!{9YZ$^LkmbFA&sPTBi*TV
zOCurDAR#F!poBjIrBftc{@-<d2k+Ut&-UTIcC5AbdY=2vTT$W?5DE~exd$CCq^o-<
zITet{oj%@%o7sb2<mTE?&Jh6)|0{k0cC=h*1GnjtPQ6gxS)`eaWe^So8QJ=bf5OhE
z8c4Vs<Q^{GUM<T>F@jR`J}QZg5+pcuD#8HRNc84+G8ZHsAksrsq;q~C4+{ij(kJMD
zF^Y8_{{{zON454xJD~zvR)E72V$)a!O4&^<8`DG*?=<RWN0k^^d<^Md92Nbv3!e<T
zjR|fbn#$k$&Q}SwO;Ka2?ec`8V0EGLS*ds*`t3I-mf{HZYUb))&t{I58USSjGbozA
z9RDkyEj2$zSq@S{p5CuR*LpG<i5Y|_0s6`6vF{INKfQ{$A0*>2(?ELW#3QX_4njcy
zyEzLHk$)BDe&l1-QXp3X_xpqMif=7!N=PdP6^F*ElmpXE2vA{oU@*TfxiXzd5+14D
zW{hp;PuD-icmPJ43~K5y_*%aT8wrNA=e?J;!^(IDv+v-?y?b%qY&8F%U{}-qU|=d3
z$&Vd)v~kk{08vNM7-6(5tBV1)V<Y^d*s#`Hg}ljyI+MyS?Y>*erf|wXR(lKDr3C35
zYIoxO4pg%r_?H?vcsCNk{eH54@`TuEN8&gXn(`o4@-K2d$}mxcGs3}e3ZkiJfWo2G
zDRXA~?C0ZCzPNC8aSi4i%#IFW*hqTJ8^?wX;%C6iq=IfX`r@Vmoo9dqZ+buEmOmZ?
zp?s_uNxSksbA{F*3m(vFgkiUMO^0<>-AVqrwL|mEz4}^q&OO!#1$qO#Hq=y>x$<5&
zUL$7M0V+WKW<$^BpaZp_Qq+`J<GeJhHO;yeksS3PRJ8u@Wowb9QfUQq*{}~NA{uh?
zi~MOFD29t<yOlV7xa6wI3yB9$uOP8|I4u~3vNr!oi*^&E(jY-eWJsDIIioV-?<5~f
zWIXf#UBlc~6nK!n`Ot`yuRE8Ze{=AGS?3{t@0jv`quVddtX6xmzQ_AlwALc8X{MZv
zL=H999mM)*raiMy3N3K93_F+8D0w0Pi4cYF0)Q}p6B5WW`b~(5b}pWfR6wK2K~;`+
zJ}vvy<EOckrX}sCyxXjz6MC`-kjI=ZfG~2ZBk(<V6hHxbz7r#_q{vIV)a>iUPb=eO
z_LX+ItGB%}V8g}ouDc+w>8Lh-kL>B})&rCWknM}nGw-&~i&9Q4^)(i*sJU%m_tN>>
zt_@fBP$^x-P7rjVp2$ZKPmFj)9p5dO@L43?m!s^9o?jLR^QU3!&e{0go_DR`Aa)F}
zgHZA9o`pvw6a5yk@#P@R7mrvu`fYg5<uLa>WY&^?hi3V5RN{+gN~n30mY{;$xd+h(
zW&p}HD~>QoR?7b20AXh)oiGz9%qfWZ-oq_XXp@{@@bnKT1lG-@LgrP*#PF*Mu1xR6
zmLT`j0Xj)dI$G64BFEgkYuq<Qo-IT$uN1sHFn;CKKTTKF7ytW-*whNz_nzXw3ZD#9
znE&<UB1xA8F)2>KdTCM6nqj_6Lxlg;FcPeE>2?_0NXo3Hm*4V$>&Omz?RNWxbF_@}
zn87w;-Np8D)BnqU$-^7Ve^v=HiQCZ7pWUuJp#>k9HV}_LaKf^!kMA0Fd$k+guRg6Q
z1+7uIpLkbk|A|z*o?~MAtE)7yoAV`{yBH&?VuJ7V_-i<vzT|tgg!~*sO3-f?%Wu^*
z0}HxMpu8c6>vHb9zv>j{=LHVCY`L-p^IyZyavV@>$nNU^kqC-wIkZX`C_5Z_J9A@h
z3(74fHqg0knYrzR-i^&%+YH?Su;_*vJl!Fv7Rw)>1Hhg;v9RFncj)cyBcKfSx=9yZ
zo^s{ih|*!c-kiBQPXQh25*XV8HyZJkJqXtt2^SxMfLJ^lL9nGD;ZwFtgR*NS55R*%
zknH{c(peNXj5rK)oj(i6(0$O6>hI{jpRX&LjX`8v(`ez{L3rFj*I^_%TNL%MA8O$w
zx_Ge4{j*Y?%RjnjI@UBwc=(De2p#7Au~ewl5ERdol&BfFaEJn@q7JQSuwl^CS(218
z7%&a))OebW2QThNWV0ZAfv}}RGIchxB@a?L7SZBj#Mtbq(Ggh*fb7hTOtXv}3KvyK
zBT;R>Sx6;W6GZD+(VX|Ac2iH(hQP<kB!8Pw^l)+xPlRVP^}9x3nGmV&9I3h@iRlrE
z#Ubd}1NxGTLdugu>WIQ`jy6<?S{F#GDnyS?qmXGvC3}))HKPpDC@=ac7iZ{x!EeiF
zQR#=MZ$dO(jR@^DQtdLjvwgZM7#uN=SZKHdLgo>AX%BekStV5d2Q}-5iT?jkGYahi
z0>%FiYG&1paNZ}YcOwq7g2*19S58B9<d0<KX~H)t)WUBR<Poyr2iQ$A@^DzFFfukB
zg_uK8Hv{Q~;FtR(+IUw9LtNqM#8K%;C*6At8R8y8R;zRL3<%CH-t|d?lvvSRg%Kw=
zp%eReZ*@tlnEyPUhdvSJj88|^9wU$D(W5PVdPD4bI1b%Ic&z8KGwui<52kPkCYR@-
z^Q3u|PF(86Bh~+?%#$-?o>QAmP(K}Egu9UyW>=jj@bvoTlg`EO4ej!x=^^JkIcArk
zKyfq*tM3S}dZOPQ-|^;ze??>nF?jQA2>%z+@Oy9?#qZ6vnsOz0!j#tvd~pJzJrR=H
z<oo2s&vGcPmvJLof>4<zDoy@ctIxlB%sTl=`ap?m{1EEgioPeHnRwCoH*)-&=Kt3(
znnzAoz$}6%&$jGF)8P4+S@?hqdI#2{uor~qSi|9Sa0`!<@=bIu^BE`VEJ{~_yG_CA
z2=id!Lb9J<dz$~b5Ly7C_&n{mk^!29T=YB)xafYiPXRyCS0p~YvDs15wUylw;@7nW
zCF;^jg~<&aqq0+e<qOMd?#S!zsE~T2A{J0y3)FsXz;z1QfW}>b&za<@qD<yVai-=T
z#qA3Nbs_ybO_vl+y-c;f2Iaj2<)Q;QO*V|~4n<)G3gCsFZ$mliDy#2kY@I5r-rt-f
z)aj}8gGKDYFyotjp#Ba8KHhC|8&DyfRTBtT!4noaJiq6rb?Y;5WudUTij8`r$2ta@
zirku!+ze^|!j3LXfRJmL(G7O*3EIdWZ6M@M^9qChG5x?I(#YkxZVrn1S0?(Z7;!jr
zn(av=h<@~SK{N{eNTwagL#bNS{tuO<Z?=Pono~1g)Y1k%mSWy*GK6rPp{m<~v}bw&
zP*^#ofs?LrP`mNeB5JlB^|-}A6Zm-Rx$!?V`fU~}k<zq_Qf*_AV9N*n#|I5CQdMrd
zv(N<^sN3pXFk6-(l%bTiBH7|fTVxtXR>t>^@$?JkGgZ7T6GOJ$<75OqjD|E_C3s%c
zN))Y=g~GK9t{s@gD>@KmiT!Ig_G2^uooQkW<aeFX)Xqlxz7-wJvJ+`Vso}w}Z1y?U
z_WC<yfcrN^gdwR-7_Z$>irKvCt+TSxu?m}=Ue?9qB?L6(d{+C3M5EKl;=f{F^m+T!
zujgcqqAtd1W-qf*JqE7JsVZ!lI%h^M#BYI!x2B|CiZ!h)GI|2Kik|3fFWwHZ{6>!Z
z%aEnQ<*+#CA=GrO(WL@#QQgPNEbv6kbK?uzUs<B&#z0EM-LtnYIe5@S;GOTushh;X
z)8}lC6dg~WvhAwjk-2xE0P;S@Y<^E8o#ZZ5)fFMxTSWi8^?}Z#Ui7mc03b^(2<lUZ
zH#5E;3?8a4`#hWr5b^eYn0A5ndv0os-pKabI)Cw>=$}%*z_TnZzZ_!;Xpp9SP?wlW
zY=^&gWboQDm`Bt)uQl{8hq${#BDyVXt-~OAlk9jO%CzDoViM_E_Mf1!ubCoT`uX1_
zW5mK7PO6yW=IGp@VVCUuIMevCt!)7CJTiPa$Yt68xoFJS<)^XP0lyIZkFwFQ0qFiF
zS-D`eHMQ8FAwpvX1=xzJNqIz?5nbR5Y@I>4`TKfP)8&cm)?Qi_tlUMZvqjxEye+AX
zxBNo;X5&-D5~KjnO^4hTJ1rYmP%XK*mzQyi%|{-Jo_n3B!%oH`iX@A&U6@#$m`U2h
zRYT<gNX|4^Z9vaL5gOsA!P3rgka`YFJFlcB_~~(c$^7)L1>@uyYiS#^(RNU(^U^c>
zWwdR~+S}OZ%UC_16W9eh*^0)%1T7=+2S;-UqkfhrlJQ(jWe#UtA)4uJgqTRvb@F>T
z((z1PF*CF=*E$o$({-S<sv+dPYe(a*Cr&FCkeXqN{_dZ>wUW1ifIrX6QSVaO(#@sp
z$h#3y34fTg;e!|=BQQW<5B_G;m=+V|OHziDYFi^#Qe_@B-61rrA-S8UYAq<GEkq>%
zeBYT<vldwO2s$W6wC$g5PZ!D!AhrPnR`ZBXXs#JsmTs7T<1yK2Q`W#mRwP^Y*|KF$
zF7YNa^>`~#tE9XF06&&MWBU;rTNLD56t@6{gRHW={xW;_3bsXw9IL7zT72%$r9zL(
zG}+)wG(PHz<ryvKIsouv@_Y+Z%f>)xvS7LQ^HSccd%4gp?Ntd|H%jxWyo$LZK)i6v
zq@hdlPj9!|swClnM92>v(u4l`Ia+uUZB15wjdo<YHf_aZmV`B|*2SIQ%&nQu45kaL
z-oaE8ziqkbZj>rc$HRjNNbZ+=v}qO;Kb4AP`Fw{U56>2Y(#YWvs92{<g@KBN;42hV
zJF`%X#2@p|h;<JTYZ{5VymHm!cw-L|Ht)Y}$uwnoJbu*8%O+yqeO!YZDA-QGPj)~G
zCD7Ai=r!{`OoB>xt5drR{oO!mz|2FNt#jF<^GFPWrMk#mgQx;%<*bP{!p&OE-f%40
zzh1sov+h!7>l^pzJMrlV`qxol2CXsL>t3^DTkrlGg#J@NLYz4iWZ19U+~0N9^C{^4
z8r@x?*^pjjFGr4N<i&81(1`91!}z}u5&G_Bfs%1SM3m15ijp2Dx^eCtHhUmJ?sLMT
z7yn>~!0`U@=(2Gp?OYnloWGlP@bnxD+q;sv88E#EF`@Cq`xkn_Ww(d!9}RaVj3Xyp
z6z|5?KL*?WlRcz(+cSBxFg~=7-tR$2NlXK0!I=~%>GX3H7IPN1fWGXehwss}Hz-Di
zdESlrM;7r4La==+$RP&NLitHg@sq^HCwZ9#U4}*d8=Kr>C_W23L3~QLXwiaU$#7%I
zonhJAV%e`~IcQ@!lwl>(VkNd{<>kgo3d3rK#cIyRl9!v9?=&hbtU9mgbKS=00!I*u
z?iySkDy(whQFgU0(9u}5KDn`uu7qA$>3j;-t!khC@7tPt+12;9jhT%v2Mk}2hT-x?
z=ez7*Ob={<1F<JXn-9KhhTDE^OuYlN!tjL707BSn_S75fA*$4a;78-t0#*(BYDenJ
zjuYFKwj!(U5&E=v(j^)3tdTZI&%i~f?N`UYeL<G9RHlKq-BV3hr2><3uYLr*`k~0E
z!}UorSQ0(!g$nb$<rKo%dJ8(uA+2d2F+qj6rMNOgQ1UqT@GD!h`I+D^zx#SO!(~6O
zouad$8?!BIc#A~Cd9oFmwL}lQ!rSCD%XHP*bgE8eimq%mg_Z`s9NgW09_h7yT879a
zW74Dsr;GXBr|0!;&BY8MOiL(MBa5dOwsmBOB9<rP7KhQk>oaG+?k6mIo5T}BZcMsP
zr26)zZ%2twpShgd8hV~QeSLSH_WmT?Z^zUYs$>n)u?DGFLpH7Kemp$W&3p02uT+0I
zY(p@3d<m6U{MF_4YF-%h5@Y<j_{!Vz>dnnLg{f#nF7ht`e${_|?<6Y|&+1#zw&+aJ
zFH5{Rwe7h3d}D==2_wA?BgFtfrIxqAz8JjH$bK@d>^+(|L2CuXB>Bd#S-Vv(B>n+k
z84@-oEDKZ&#vwgsTHyG9`GSxh6UtHS1iPlAcE#gz#JYTV@gh~zMbbf6*Tksm*%GCf
zv@!{(n)wQ?0?A+qWi^FTJjO&j3hA)$#{6C24MenlrP*#WpF=W&I73b_Z(YlA!hoJT
zj_jPT{i9ked@>vFm<GAKaPO8<NpoHuVADy9qu>t`KFl!xpId7FU57ypx7K;0urftS
zwY~myzHE|Y`|e`B**nIGC@4VovE^ECl2ph3MvpPmuLmzyk<nPKGi{$?u2LM3fsGvx
z?9Yk-Q%2fJAA-2`Lobdc7IO@Kg<}-XZlY`qilbf|orgf>dawVUTI}G3RrTK9T>txb
z_tn5pE6Hk@ST!k(I)E@DYA`}vkH{*DTu041+I9mEph4v}W*y5I0=9``O;)psr?aUp
ziRWn;vw11d3${%Zo_3^-`8yY9n=H9MW}6~=3$`=$yTl7);wFr@OV_BSf&p0mf&fkc
z0DzANa12NUjo`)Jp8yGoiNHiaFbS9t@PHUVLPA3DfE)~^CZM7xqG1BV>EL7l1pFR^
z4yB_4Fj4~$2#SZ)59#UYi0IfLl&mDwoTRk8PzFIdCKec@FflV1F$*_@O9+A#CgT;S
zeDsKcg$>SvCTEv|^NUhEl6WZih*p>%AtXtIl3}9<@UQ_;JOBv+!2J#o8#@~pk`syK
z;^pIcBq$&#^hg9HEG8~0E+Hl*BZ=U`Q1U1}<X5K_&?FaDrWDnt6T9CO)n*WvrxC`{
zi<(kP88Jv$FiKmqN-J~7sWHpi3CSbnFtVH&HC`nx0X1C#RqP`*tcaGr7}i)EYb<SG
z#-iZDuHwm|_MB5Q5UCxafCi{a0yLxnI7NW58o*2wfRUHe!m-%t0i28guBHHQ3xKZ`
zAjl5j^Nh;hoifOiLQz>kMNJu_p`)g*s->-=i`B*$TVPBqusB^keXNm*fr+V+nYpQw
znYG#zdrNBz4J!vN8z-!T3(nEi(8a^l&CA^Lxuv(imCX}dJL{)T_KwaD&)l5dJzcGz
z2iOM$I|YS$c)9ubdiwhN1O)j8g#>WxhH>jf@){=anIsE5P8T%K7JQN~Y+WQ`S0>|9
ziE*t`^{UZ$UaRY0hYPHC4h|0qf8iPy<q;X<9TV>x_cGvR@{8oukks^O1kJq?=%pth
z@da7LbMhE}SbQKX%@>dv07wlXEeHXmhe2P30}5kEUd2Jmq5+k0fYJowx<o)*2B0$=
z(31}ciwqfj1sJ~fMU|0_R3JvHXg<_(e5m97@J4X#jc`<KM08x_%cQvEw3iVXS?QT6
z8QH1Xc^UadIR&qBUzHRTmlc&&7FX7kRo7M2HCER()it*@v~@Ifbhmc(v^Vq&H}#IZ
zALwoy80{OM7#My(`>|qns%~zkd2Y6S{!`!3hyKxt!J&^6<5MGJGasksCgwj4&M!^h
zKhpp22lx&k1EyDNDvm`WN&bgfX30Y0U(h@K-<V}uCY3@*_{i&wP_+oYcwu|hD29|j
z>cg?)69tUQfvNr?6R)EX*4y+NnKl`6@(E;F>Yp4`D$%4621oJ=jS50N<mU-=bU(tp
z3xDJ>mP@zA@l&nE<l8rE9VRuXe<$Y)NT}R*D(Q5tx!0VgN9+?K*_&{T0fLb+3v8o;
zh#(eumOjR-@;{Wabb58`k5R_l7mTi^n_I&K1S!3rv1dQ(a_^j@q&u6OFo_HgGDW(*
znIe3TcKK<Lsih9xi>1gAX$h4sA2AiD%D5TUZyxc4GjtX{2h$Za$9GOD5v-?wem>lG
z%0>kb{aS343f0|^JP-dtEFc#0+BLx;;*`aT2~#3y#T1UBc=C9S^v9P-m<n<$3c<5L
zqbSc_YHC&ywmlFU0z(xcLlfr{>968(5a!B6@+UB2(GxRyZ4{dZV==0gNCjCvR{9c>
zhS3nIpHnT3N9I#yvnne1P&0>p%LQkKnGo8F2-6PRd74vo&1Rbumd?j<yc#P@;g2!i
zNs`z{!YHi?)73=6VGCQaQ&G8kNhdWUT&gr~V`Y&q{7tPD{UZG7GI6-BVuhWoWo&V5
zZ~K!V1`87eB#JiQunMGCJNw%8hU=#ST2{lTG{9(gx2|dQj;Bt(N=a;s`-MMDDHNGm
zY8H`8D6FA?Oic&NmjZ-05<%f!IT&J%$7xN&v~{UWCV`K!jeRX0Sk_8v_GKs`$Gc};
zAD!7Xy0899!kQlH{g!Y3K=$pPtWoo057W8(`KxkyH>IH2CnqUhkFI^mubni?frpVf
zAqI6g0&fE$RbZXHvvSSb#l}HsEZ^}Md!&*Av2bZvL>psjaf>T|hZZ@p&adUD0YV1(
zaw7f07T4;j;<vwJcB~~~Jbwab8!?|~lB`9P4y3RYo%=8JtlyOy&4zYmFOqaUU~$EA
zTevHUDw+_v&dmZTr`%Vyc~5~nZuxJ$XXxy;7N^!)?)Xw&k%uz7eN<ibUa9zV^{M89
zP$hiwBoPBfVv%KOEJRzp$e%)oUCH}f(8gYCr{$w4e2TXcf5hcu!~|-#3Df$!epK5=
zb$xF%Yp~oSP|uGj>8N_!xSy=ZC^Z3UsGr+O5}8grY3`Gz*$M)_?oy$nt6(;h)Q$2R
z-;8}Ed(SF&3K3!4erfOZ?#fd`B<cMlh+!BiQbVMydSU(+s9X|<@kbUYh-b0OrrJ20
zkQZZyjZ&4QCxM~J5oMCNeg`mC%^>x`wANG3$V8%NAZwGA^caXVHp&aay|pO$v-4i>
zz>IF$#L$bUf<x*Md?!o*N=NwnlH!ny$*-8ZeI=Nz^kMAzkY$?i+rI4T6psKbmTBJ)
zvVp>bMmVZ49)=N>rENmL1Eaqq=6f$jW>j(tC@9-~Vft3Y#%@t+6ngW0cLB^{FL^hf
zC|S$0K$M;{QtNgs8K)vEtrDiHOXJpa)ntd~Sh=ybtnChJN<3a7FNV{ZWME)@(16mE
zAOQkQKF<D1!6j#V=pQz%@KFq0|34|FE5U6IzIab(lLgj?AH-|T-I`y5;^AjjYBKDE
zM?4kgWqZY=&3kW@WBtBuT~?}3IV*s@KOHGjfVfhb1?2_)3^73_R3V5lWs&K8H5f)O
zfgJozDt|r>k-vqIxOsyJ#VQp+2JbKtC_Kt|!KWhSu*SeMp4a~naZI;W1IZsV{22w6
z-}ewIM4oyx`|zZ(u86}Zrnt(=RvZ->AH!0phF_fwR>@WoV#CP|c!sXyzRcI~`gWfr
z<4!Q#$5xM68d{4`tn|`cyV@R9>5{YwgUI{es?trLREh!7#Y)x*$Z}>#g&@IC!j?Mg
zH2r%%!H80bAmh}}KU|!|`Q<VBa5%XVEF8l?ju=>w`~D!J8fKtZ61TvKY;Rx`ubb#s
zBj^(XA#6r8O$o@AmD!)yRD{==|8ma56x$$-o)4xPM65ImP*oLets}8`3bl_Z>mJ`E
zSe~>^kwS*sjHh_8g^wZCcN%A`ZS8NK^wE6EyIQC`*WfeFBUaxQEw^3LYVgXLTz9K=
zWzo7^ZqTY0*|kv>$i0H98mC9#v=E3u-0*d&-CTJ9bIeq3gj~(=lMi9W%-d&x0PDDf
zaug!wPX+FEx0D{7^wXRFHjG$rFws{W3s0hU7P!IBHlq)hnI*iYgJfV||B_Q^?j{xa
zWu*)Kd9vSSP6sAG|8J{N`eAr*t(s2}g))X&aLC=6@Z(Y|OVKYU+*DJ;a~1`BqM{Dh
zs#HYP+kbEX?>9MukH*Y8o;>08m(>EC4l#z@-zZ+sexP$cdU-Fb1-UvJpY1lk2_eBq
zvcS-&FIsh-&h{_MSMS`!&H<+ithO=I0Up!bLa(rF4xs|A<Am~V-bC6z6=pP^a+4+b
z6bNaghV#LG(Sf;36EhI03W#}D<v99ZSr5s-m0IFOBhSMixI}eCwN5({TlNc+U;2sY
z84b4<@@XA|(qhe*h6*897UJ*CrPp>3iI0oZ&p!Up8xjyb^L1T;(v&Y2lG)YEu{+}m
zK1WK7sE;yRq^i%%E{7K~wXyQU-2aJGBDzj6rPbs*bCRQi6a-x|sc}wnZ{}9;@`${K
ziKhOtn8%yZ>LeBpHY5@8#T&+T)3~_!@gg?)Dg2c$-$?lCb9^9?S6(Jx=%3qLi^w<A
zoeKP@4;_0KetxIY*8Sb$0Japs<}ErlII~CZMlrn3ba0{4;%EMp_UZ=)8W?ygni}0Y
zHMcTe&PRIHQt6K7EvKfEr<Y=w0t_a<b}(+-C7?2>*3e91*<U1>C&GcY{)`feDkpH<
zucbPcoaH{Rg;V@U<nuSv3%yzxa(gc2cEg)+*lq0-m6gbS^Max%*;eCdf2g3b?}v8N
zrwY~7Ji2*L>JKxM#PcK?YwfETAjv#~z6KrT+t9qwlOE2{&L2O8(1R1TBtWM!hfG$l
z?2CXDCmDvvb-k<=mhEi<uRA{i1<&2qJ3oxy9&f(x{isq9{Nn+>TB(@bm2!{Eo3mG{
zvs3gV1fJ4&*_^vCW|>wyKmF^TU7oo;pG4dc2uX^l9)zbdZrxtGr|`{uDAQ|uA5-B0
zIj98NzQz1u^?JyqO$e92kNkj;u!Gjn$qwJ!hZ0_RdLB8R-eR!Qu;;tm;Ye&a%|IBC
zngM(%*2)F@V;6GpgZ?}=^x`Rs{5h;zkm?aQQYS;`-&5J655^VpUiZ>+hwNa!pN~p&
z-0zNo{{5<@f>b+tkaj~a{N_lLd80-ym>kB?A4afd2N4lwOu(|882QM?1>Cn`^*Z4i
zV^J9S7yM<)Ce_jAE1)M}ehP6$vFK<`N4C~1{dqsDHZFcNzT+}cTo}T;;YaX$WpT0G
zP=dSWm>2$V>70;#<M?d<_=hF_zHc2>!SED9xA3>xrN{*8W^j!mOdlYZ90^$?a1ITF
z5Hzz=r6o`(<JUXVs-?bEV^(YU53dp|`DYjg;_{=khP=vwkE+4?s^M*&3Drjl&1z06
zhW=3$;9@X01RrASkTms;zU(qdX3VCWC^nx+<kk;&{uZVh8x_p@(0=Ek`7rHQ@dP9A
zvrrF6v?s*U<f)fuqK;9_2v_uB9MSt+Rg0Y%3|RgWOfNF%=}zGJ<P#bmsb}GxJYeUZ
zp9`n@D{vkY_i!uCF4tzwH;F7Q0wEM%z3rXbna<}Fk1h>MpwcP&`3NSI6ffd&cqgW0
z5=&HRWl~%jxcD4i(Uc*Rr~2Msha~NxphP0!ic|=59ABn*=Se0wlf7Lf4p#$Hlz>Td
zb7S%Xkb;qRbJlm;Vpa|=?MoWrF>a)3L2_!zhYqmOQ3tx8<|4$x-2EytqHJtNsXm0y
z%9!1R-ln9_6OBGhS3S$-Sk9qO%c;-cU<^zBMx86LoO%NXRl)3&;{!y5)AW&PImCIx
zpp2_hx_9XU%%<=fnhfr|r}hC7f!z6Ac^NM8&w3VwJJj(zR?~Y{3p%_YUV;QDJs)it
z5f!`m@1OA(c#!@)e0dB()n<;WFC+m*u;f%kC(ID;p{%E#xMu?~@Br!G0ixIaU_OII
zM!(PvS@;V9MJwvC-{GJ^|L6g#&?*2#2L{4fL4G-UMGb*2@?QUwaQ$Oiv>(9p0>$(>
z{*^(R;g-a!4lbBgTlBsJB?DZ1J)UR{MfH)JXqvdF-jklOI%4W?;oM)bwKhiD&!GRt
zK_dZ$JS=&*&R~epV*?mS4+9Z5fRC$ZNXc{Qg_V7fC;#IFDJ}*V1Hgj56e^-6NEqlh
zUS60Fec3m=M-xQr>}8go5S4^-jX-!1pj^Qj{TL!IabB+HoL2#RCBfq_M+=tUl{4DO
zV@!<@O(>Jx6{`Xi4yxyaJgX$S%l^BRE-(%-p3tVQEv0jQ#Bm2Hg|k$8b-!w(F-S=-
zeqdb#39sqxswsr9=)uAhm|ydB`uP4TyHdfAvkOup^p^S=@XtxE4&vM`%(e5-kL0Mf
zqZ4*fk^knZ>gJc%+g-dCTF?ifkQ8!jLizd>V_L7~&<}C-gyD7cSu80;3hnKY?^YG1
zI$5d%<!T}NCv$I1S}G~oHBC%m5)uBtMUzD!=^V^j3B@5LPirsa2^1qZN}E_@wuyo^
ziT>K9Gh5rSGiw$1gDR~&J}>iD%`*PF^8a0%8_EW`-fjG_RdwmvD4K5nCtn=o(lp@*
zx(IZA=py@fA}hp1^uSs6h=;P6r<O9U#iXT0UadOmQ`63!al?<HH#Hg!Y%d#sbfYr@
z-9FIj&qA!9t=6a&wArP-VSt1FQ%7jMgJtSRQKy@$T7?`3wllCacGa{~Znve2aO={s
zWQx3fC@&FE9RXP&g2huIH`}?C+9^8Tx&|qzroJ@>b{q&xKILlnn}pj-afbzg93HS(
z(XodX!0*C|bY?qs4keR+gMOFr96#>T2<pl$=*oZBRcMAlp12)y<Sw0d5x_0?o9&8t
zS-9^VkZaw0aL}8z?&JLKHnVqcgWh!(bQ80J{V@aqf)L^=^LK0S`sjLohIe-r^h~_#
z`MB0I{jZ054iv%+2E`G1J&>K(d>?A{9>z*^3x2<ON7uV8b>A84{T|f&v!HkPUGJZ@
z-u-{Qhje|%Qhldpedj@amj!)S@A|IS`fmUA0q&Eh()}Rwe!>_1;6ih%ZYl?sBI0@~
z(idp{t$unvN-p_<2QO$u;FMbw18#Vf!>#>Pf5_op2)%#IF96+CX#=+L2+D!MtlUB8
zEs8**A!h5L7>B|A@F9(@fz1piM(>B~%@2cF=+?+-lDugX!s&{SsMVxtvW^hSe8|E%
zI@lJ&S2&|aA?^FE#|>LFO+q8BN5eq_!{Y;V@6!ZGabb=_^r}*be{=Lv6QjK5Ovi9p
z7js2O6w%jz<i6LBFxO&kg^t<ju35s6;QBh*yKE|-d{rOw__%tiu=24KbGw&(K1qM5
z!h5I!=y{Ja>uHav>dBwlMX+<XusV_R2&JQ3BG{t*(2n@*&8?=?dJ}v;AkBI9aAl4p
zd=8_QiN^{M&+W%n^BmQF>>H~vnTUxNEv;wA6JAtY-d<K^_3))ws%2^J5^1_(eAz`l
zSUU%@Gn}H(hBum=XRRkY>JL@k3uIa%yi@`4nj{zjpW*#G?I<*EmpQFyJ@b2cnp$WE
z#4>9>GUIYI)g&y0I2P*J7MNv4A1gc>E9GmciGU*bk653RyTVo?vM2t`7TS#+7<7Q1
z3Q)RwJs*etwvl8eeMAMHTbkFu#1Hhjo0$DwKkbn=h1i+%FBH7dGlQ~Q%HO~rW{A0e
zqylKOTwXInNMExSwP_|%UTO8JyTY}#d9xB3MM-(NGK42~#4|rg3TKE9Q;3JG%1DcZ
zJF%fg{}Vkkh2cLGlm5K4s)F8`d+8D!B0Zcrn2&lo1P_(LU|MSl21I?Mxjp&kz4gVy
zIV4qzY#cVkOq==F5e8x#Qr7%S{6M|BacLSMi7Z>#0EJX*>*{*!(pTU#XDNE;qvWXK
z(}s-IY*)!FZH;C9fqJ1dYJW+=`)?@j^J`m?7%z|xd@-GEO{{BmGE$m{jlY{g=8d0S
z$9uRtZ+qi=No4uDSl&ictJM2D?WG6u>-g5|j6$DX%Yub~OLK2l`zWL=_1ND;ihtga
z>YtKIMQzlHd|k8o`gh~Y{2pqCfqi*T{Nv4Hy#6L1#n=5eUz7E}R_(1cl574@bQ?tI
z>;vUqC#Zx1l{5?#z3q5sqf{L~$-kmflxD9(v6rxS!8l%F>J=e0_bSxPS3lnPzTmIp
zS%9rh>GDW#qk4B-MO-;$6`^*D@3R$s*|&pmTJ*i@N(-W@3*R*FwE}Lul&^BL?UZ}l
zH0yyXZxQYGQCr6uDwV@3di`o1Q4EGpRHf{=f&l{Q^Pl;5{`=`YXq>6sXNNLQern3{
zUpc#aRVLgdnxh&9elpHjduJy%?g`T9P|s3Q9{2q2{!Q(|T8rU{PqBgWw>Pk$+a}Wx
zI60#VCmkq$T4TUY_5<P1s5h`kH@TR7ai0*)Td%FBC^_pVzjGH<g?N-xp9JJJ7{u3i
z)`onUXI0ZR@O}l-C_NPzPv)2m`D60s_f6#Y%#hV_l=>@yy~??tJag)=zx^@1q8uU%
zuK1$SOs4top;L*QW|fW_=;&uW;@85h+M~j6RKFQlh976WH{SYYIEB?w>vHcSFgPXD
zrI*JQ+F^MJ;({3*`8ggwLi0mXu%KpayUGCA5@w^WN9zb<=D-nJ;|Pw9>Ruh~SR_&O
z;Z7;Bu$f)e_uo$B_2urK>-%);%T(y}D|?gL9c~PpZT~b0Aut7;8XWtY(VG}HKTi<<
zegM!lFRCyZ<}h(Od-2Q=UNKAbZXWGLW>!5C++}$B&OW0xsR8&pR#(nk&ZQ-^A2j0x
zQ74n5-3FBrD5OW@dlQ%>otcDjoJDc)3%@?Gt^vzq@L%WWJsdbtB{&U5zpKsCeq-NK
z!f{bPVkir>9y~LpY-V)%dT#RJtmVH)T2Lbkw9Xxw5x(AqpF2$e)9HOpCDQVq!3lqQ
zXIgubU~QR{lV#fWQN8Ome!jg++}(a~`=xKBQE(`{RoA>u_qvM7*jLwdcK%=AjA@Rp
z`EU4N@6gk#v%gGtEssABYyZ8yF@|6NuDw+Fx-!~m^f3!vK&>OWw1VbFe>OxwD<ihh
zPi&EOX|dM7vn(g@VT{sY$86X%Bs2^|d^!s<gh37R8LU@8v&xBKrGnpbOAT0)Ny<=b
z)WSBcOq?{OyA<Tgt@<I=0B5Q(c4WGM^+dUo{{1?K#WUMZZI)Rfn!W&KE2+#8pTbk2
zgYL?##>B%2DjikqT|{I_(omoBvsjE9HN0_I6L$PV(o+D#XWuhRln|UpD3`%QwbqDd
zk*J}aE%&WHI(5{)vP_oO`s|=yt;r>?n(UA<PI?XxcgyflpqXr5$KG11kz)Q$zOUy_
zLb(iy+ue9-JjD$9ml4^xVRC<`H-SL=1Jf3w2|uw8s+Av^PSBv}N#CGFMUQS@b?En^
zwWmW3EOoIj_WXldKjXXqAatcZd^Wfb&!CqM?LBMkYn+_=axJ0w%dV`pX9cufMl+5t
zQ6ZB&x`TxEQq%Gw!D|Ir>4o!xWN{!{0iX0dn4V1FHl|LK=PRfdJLnKW-pm4cE+X`1
z<~lHCWZ$E3LY`bqdJecF`%w?W`Vxh!9rjgn6-3^*QJa$RP2<>bl~VKN2sQYB;!rj2
zIH*1jkdDYO86-#OonxXA37`Z8g!m4Ega1)DiMLj`8uR`9{`2Xkw#3#)p-Fy2jdH|Y
z4ZDUqkB9^-3sml6P*>}iImr{p-}Ps#Tyg-B0Tu30(AO5#mc-WaR^avqxM^zBOB9(D
z)kcg60uA}E)pp>W@zjCwy7l?t$t-%#XUu8X8k>1_2O|6jhB4QI(f5dXVqU|0j@CY+
z0PyQ$q>ZA25vC{eBc=53a*|(0PydExw{^z+=lF=T+Lbe<2HPbnAQwuh_SpH2y_yA2
zG*B6)s#z|e7!sVM`<7j?bot2(x{pm8e*7<uYds`r{Y;TXAc?9}!}*-$5GGl1YhL}4
zaSQzdb$Ph{^|0WE!?29<NTJM^Rh!?mx2d{eCkT_bIU-cFU9sA|R0>5e1C1K*9CoKp
zo`g%rpiM8PlT0csE;RFgIwkc|nYDd-<!soLlPLHtRoU9vtujJk%dO{#lbisjLSvMs
zq=HWhQ=ZUrZ>g5P-&WUH#W(i|2fHU{GV|p4=&fF!n^okH{ZN~GA!E#4$*cZD%{!nb
zP<k*5qAGASLg(iWZLgcax^@4ia(aUc8<Dvv{@EhnzU@xN-7xwP_!gCc5QWJPeBlgu
zgCMtd))7$MZXF$uTmIMbS@y(;`A2xvt2QrPshqv~drUL$?}C9RZ!r@_PLCW1^2Jj1
zG=!AzZrBg3Kifi^*Oytt>62Lgv(;QlecJe6b98Xm_}A41@8(^L6i9xl#@$UNt{0eQ
zB^Vq|7hHZ(-mw`TdJEhHHjZ);q&M0dPZVE^UQ+)>mmzB2S#^hurpkgRfe?r~EcQQ4
zp8TvfbcfN&SzPW3u}1*UpRaeX&WFB(^*oOvZG5s7dtJg0U;M-^jyxM`V(;~cU$eE?
zTd#gwAvosG$GUYYDhyGkmrn^=n83?pWkw|0c+>w?<krFCQ|^ypOG-#v%yk&3K^&)&
zsN3N~<CNcmyiz&S;@FHM(`QXp5Dg;pNL?;9MwR*0xTvXNSvz@bW<+Fr0W;&pm}+t^
zKD!=<z~@=OBwLS5M9802n#gPwC|{+`fJRZGhxlY_VyY<z#TfMPj#*3(^8-_XBv_*Q
zsXFgCX;e!6nyB!vv|}xMu&bG6Oh~|_pD9H_4T(B4R*3T26BH%~i{?IrMRTGC5bd7U
z!tb4A-53{u2g4OaT64mLID&Y5^Gf?|wRXt#9Q$!5lMIuOZcX8*7p&4HV;Z!=Ay*W|
z_#8;#Ebi3U81_=*ZAa19RdE&6leuTZ-@-KnhhK^AR7w4(CU1Gw6J=x|ibf~tz0aEu
zCG;ugf$U=I0;ZC2*w@zAWRkyFKQ!k5_7{-(Df+HvL9FsjjZGql$d_Y^T!mP#7UF2}
zo2OVgm-V?m#_AO|jZFpe4az*VL}EC&yqUJySR$`ro90n`hg?bI52$#`SA{RB5<kr@
zBt!m`Kw*`YCHwKqvwkZ@T*5E4@;8nJR?Ocevw#%<L<0S`%W^i$yYEJ2dgUuW+Q#7W
zOBpV>@H&P?;(ps3Jg9%_Gq*k3>C?n-h_8_S$QaG6=lSf<2J5O^S6Sg|8upLUlk`+H
z|1rfBmR2C5v%K=wHfs1vjm(AWO<rmkwdq8^q2AbaOQHMn?@WVZk%2ld;pHHbKG!r9
z<Bq?)W(FPWU=tak@_(K4FrHfU8FnX*d1BN$#($+x$HIYiUGoX6sdyO7;jn38vNbjC
zvhT6QW;?i^wPDYgL(<`g$to|5;?ctqXO5O<+4!4`UUy0ZEc$QCoVnmlka9%%a3r?_
zjme|8KLlIygv07ztg|qQO)M%2aLMPH9$$uQYR*C1g;ns;pDL!XjM!1>S^Jq65|g6a
z6c8U%JK?Ky9{R%6ut>Dy+MA_b_A4Qg8WqH66NhmLbv$<}{etEw3Bzp!Sf`hRo61R4
zuWzw|26#{HaUYrgDFNlC^ecR^WWrpQYuLp2qCLSraG~bBpYb#G@Kx>12N>s6+FxFm
z;xmWE(qsn_^CEncK92beokMkR1(&a1J{MD-JP!&>s$eygv~DN1regcKL?REKuYx6a
za}4jpcZ`|4MbkU?D)!23%p}@9J1`Ld_YwYr(L1Y;q~)gC583I=RxWOY-dC|IU{u%H
ztHh(}D^ufIg-VD$0h$z_mG*Rur3vJV2f0!F1&BfgxSo~7<eEr224(%o^-1{;?4}$K
zy)|V06sc+@aN;n#-oYjJa>8u?H~<YK&XH*ym;Ml?A2vuVpBlm4z$^9}W3g+{5jbZY
z;v-?R!7lf@tI?yu`_+SNLDi=LGyIVeVfzG7yl66{l8#qKtP*^>cYH(h3uh-VcwgJ&
zU7+X}Pr0;}4r%%k%SadjZVWfS^d+tln6`=h^In@<i~xzigJ2wq%nDU5I;eL2$26aa
zuC`BY{oVAm94Qj?d6e+=<je1Tt0yNdt9K8OfXDwCh0GN$UjePLu&DR+=0^!q%0J|o
z0+UxP$k^_JUTIlFcu;r-fR4mbiQB8;Niz(hLwuA-_IfFl=^VegXP<N``^()IM8Y#^
zN=BxDaV*`pkq<*h87c1Wtl_^Wd-q)O^aRm0j(s22-lvt8J2;XL>C4H5r{cyW#%$?d
z)%3G<_KzOP4%?!@JJK^inYl6u!AEI4Guhh{xyns3h87I2AG7|hhXB!J!q#c3D0BUQ
z`1qZ;+OGV`%YNuLe)F}2?{xA%9}qWZh;t@J=vzUQO}ce}jG<*c(!YQPRtXRTx_A#J
z-kNR)X8s|ec;>j*R0H($07W5`$X)3Jsz;!P-^ctY5@NoBr1y1nt9c67;0UQ_X`{ae
z*PZf8u*B#;$-;#NO8tdylFU+U=@lNY&zbS~76$3Jgq-t+AC^B*Q=;WzA9OX7&O+jW
z!w03=1$Yy|xLi6tM<@bDAh!aPyNrCVD9p<8o<&$juaHg|sr-i(T~ku988EyaucWm;
z_)cx)H;qV5T!gYxv|OC%3F|#Nfe>qjufOu}$YsPham2J|nD3(!@c;vMj68~kv=E>I
z<5R%%R6u49(kb<ED}AsvP_|!hc6gx@Gp3BIACy!OOwAbWsu^`T9WKi!^<@8$D&B9U
ziLlFjeU20xmLPZ|uBt>&eV3s)iYuvQ>sKo%8M`nQdcL4yk~tzg)DUAn;&VN0m#-4u
zQ<`L#kT{%>@hrtpNg&wgEzVB$X@)|Y|6tMeNCLZ>JGr_W-?+S;LisbLHsXjuP2LK-
z2jt=rKIy3PdX1r6jVGrsYwTXupLWD%Xw+qrR=yCocbaIr)@VhfR=3saM3&1oF~z@}
zXw#Z7cs$7~A1>-c+{8|f_0a4*?J&>?@2a1u>LGt8P2Q6U>C)ouS=XqAeXLO<W0UxZ
z=c!eD+~LPkx{B25J=J6_(ZYP5B>I~-q4$x^O0!)WKP6CO8j;$|SK4P#*jlLlxn6s%
zM|=IF_QtyQm&_z`$NamppW0jW(^!xWR2;mmrSo5=c=hjzrUk96Fdeb0DX@ahTITeB
zN_4vm?;cO;99-)hlIR}M>mD1>f#D$O;s|N#=zMP73%-^Ut(miDGZ*!`hu`RwTQ&aB
zYqP%8J+qtXiPF_-nIUr~JiXSvV#g9#U<qBZM8UILhd_BXcIhT9aPTZ=Di+c{`(O_{
zN}v8YGt!D;j&*XD*ie9s07ZU=t(e6k?DeRV^k|CoXy543z1O3k(qq`rW8BkYy3u1M
z#j!BpSov{mGB|c^9ESyt(-p^cA0<n|aTnou-r#uO<M^g<{2MrdJ=~)koFJ*b5QDyO
zQp7-gQ~FBe9f0E#K}7^=N)vGjl(>mRk7SD%eUhY%7eOb=^o#4V>WbO-NsnZ+{nVGe
z{3Mr_BbD_@K535gGIFU$TUNZ|LD53<nm)CKf#lh|!r3QH?K;d}yULADd@(;~p#by}
zZxkHQHU^{s@*?^pmBxUKlK2>Eax;eLe(rRWBEvxE2qh1l497*||KjdJ;C9+e7WVk|
zu12fPi}Y!W4pW*=hDHS}OLEn!(`kl}8I0Ul4P#Ox9h8@b<P8nci(@2Fn3Z?e^$ZBC
zv9C-z&Vu*pPNXshbAVblq~uc@jEv?>Ps4(Ol#>Ev82m?!8G==}>7zsKu`xI7K4)`&
z7RGl`S@U5GD|JW{vH9gVQeC^E1mT6HHlFC{&4js2iobs&f#qFBO8oa^=2hYdJw#Cj
zELyss`13fuo`-2}aDoBJY#NLpi&U}?3o1i@HdqIny$2Vnff9=md9LyqSP%|tTsNgz
z+y40ZSw=C#<C3z3Y=WqqtfKt)s}5tUakHN>O|KeQO-H)mczMj6nQMD$pfq%R4whY(
zdU4&yEMqELbeqI)!<e}_FO|Q{_q|>;!*p!Y+-Mf;oyBa5A#b<#^!UwmPcX?)(z@8O
zSttLD{?C=q2x{kUiPA8b!Pe`Z&4Nw5he_g{KSgA~Ti8WqGMwXvqcudFKl&4;>|IK{
z_Q!3o7cKD|oWQ~M!A=(B69e_vqJ+=(8!Pr-d;(SH->fV&eG#i&XQd<V-J9CwNN^LD
z88D>Ve^0)*F*iav{lR|jEO>U7qveEh`hsBQm~`^sxi0zTlx!!RHcR+{XG`_RdoSiY
z$(siWx%gVNRQsE%^b@&~2E}QP+D?It)-Bl=lk6P8v@iFF_S~U-k$7CO@>}rM*hedv
z>)Y6CR<PR_17(7?=P5u&>`P%ZzHhuKZsAO`jrHj3y8sBDtUw?u9=n?6IC#@eVFBTY
zFU1zl=@HSxjK_(T2A%^z-{WxN{S!zoXBrze>-W-sEg8NS((jXU7-=$Y7vIrxrtDzw
zI5FDasCV9{)te|TjK|qzh?5~h5;#L_q>|sWNa5ExSxW8Ma_Q3_OC}?zTTlYuq>YF%
zuiAfYZi(D(-G^n_L?@M}Gwhr*RF>=%du?z2vvlsVRxP(yn5MwVGKlL`qTOuUN$e51
z94ucx4Zna0a6&b1%S8xnRh#XQ+1pQQwvRJ`7d2T<JqZJckz6E&T=i%~aXcSAfn1)x
zbGCk(2ZJ<hD`yspof|%^9a0i}uaKVPCYmPviGn9JPG!R(OB@Cz`yy1XsPP<uP>c>3
zH7l)ns;{1{DqY~=5a%h1SoEfNMrA!bV&>>Z=rm1by9N9d^j*-v@$NXk*tyc-yM2PK
zM!32(L20Uld}q#o5me+z*-8KbF=3*;!-vO{#eC8PU*aO}!ifdP;}c$eaych?Fqo(`
zE5gtCD=g6<h0sYlEZbJrF-PrZwCsc5PQNI=$H_D?{rp)pj&Uvsr$GE1It}~j_(b2q
z4q^ZXIYuQ4_9U=f7L}6~C-p*d9Uv}$U#HJH$GfEhqvDaUZ*1JZyCi;J5l3{15`gJh
z^*3EA4}X6uaaPfE>2mnp{VKWCL424hKG)6Vcl7Uao$r}$4wS@ydT(89ri+a9Kw36U
zxKU`2LqaRzUMg&_Ci!P8Va~Hb=lP${x@#z33;a@hp5Xv;ab|J4b5^4K7VsygKQd)H
z@;(;WHIUMt?bN}U^l`}PLTfwiFfvTooYPU5>WI#UlK@fN8gBBFIj*9FcG*sboV%Kq
zvbg}4I?_NMC+QQXw6gDzihm{Ve)b(Khopbrn|@rmBPSvPeL_4}L!4z8#Ug>ZhIvRk
z@80N)`INaUUy@zKxc_C8`jfQw5|7}3@Zf|u+J4X@;c_2`nIa}Xm?VwZRblIQins?K
zX$(Y~q%&aw1cbk;kZO1i3w7f|`wp{i`-IWw*Wp0Cq`u3@cig>nl2qie4FjE2{FR<`
z7q17skKA~uXpCDZ+_|m~4_9Xob^aYOcO<5zCgwEJChxc1kw86dXb7-PYlwazZr%&#
zXM1Er!pSV5-~XMe*^J9k`Xf9F6KBH?aMg%^iLmt4pgCqefCz+p3tWgOgYn5d6!wRx
z<cNIajo}8=(X@UMuSa~eb@6n>P%5e?H^@^xtE2HwZ?&A$UxJ>$IpO-M&o7vd#SMMR
zB~D(`k}&)@0ykIbLeHl3J^OR_H>_a`w5}P|J_xXnX>8#j55!#e1nnLn>epTqwr|a3
z%hh*Ox&BhF+MB1-+eRpw_J{A2_%o_dPoAeR;~AJz;~87k9Kn-Lp0<<*31S2Jmu>h7
zrC^e8S`f(vK5K-`%dxnZNa8YaopMLY*s!>3MzXs|xy#pTg{e(S|6RJ@S7?iJiPOBY
zw^lD-Vc-clw7=CZLmRWgLle@fDoCu8I<y}&h!->?Up|`mGnXJ|KZehpY;%$)jkjK~
z2c*TG!YZAd@#d(e!s5Jk|IXY9SZax8<ud1V1eExdf@z39n<i%F29jnMEXj~Hh+XkW
z7oHumf|oZ*m!N+H)3%ud$A>Rk0q`GT$$-_17f;f7%2P$VVVzIONPj`0x&Nr0@(PKr
znYphP>;4{AL;rUA^~9zu6<wqXMju>0Sa0%B)`aKQUORMNH;ENDK7@^@!1-MQ_1XVT
zKE3KU2|8T)Tg6rT!6T^c^;{!2+AgHuX@dAJ!ZRy|gIr-NU8gI<>vr=CbryQ-GX{<@
z`%AtBrIgvqh`r1B_L_ok91+flPP_o{1!bxY6idC$jHtU+!0UK!eXFZZwW^V^lajYK
zdL1ZC<r_~4tZCoq$jXkl3{<6wHD!FXM9T~W;}{9a`NRd)M39Uy71Nda5+dx>B}nM!
zKniyRyUtPb&m-FbT(ESpIOQ0ySP!TiE}VNGEr>M8F9D2y+xoyM{(#WgG!?-dLC!sT
z>Zp-SBwJ}fD35Nck}n1+qw5^uyEDbgGT%!6!gWPBX$$_ti?3x{c2EVEI>tO@R!O2K
zw&6gcOYhtL`A!?V9h<9FQ|7P8weBu!bl*LG*TArH&i~~73(_x9YN<kI9Udb82dY3-
zzYg4pc5B^%QV}X-=&)g+!37f)CU|70K|WrSmikLjr)9IBW!I!lH?ioxRIS=}4SOnZ
z4=??8?QM~zOPH7)YbH3;xy8x`<941~{5$yY;&IzNj<Ct;^i-R%Z=c99ium&57e_&A
z6m~_4qBKK~QjtZdj8qT`rM%}s3W}hTf?xXa=N}*dde8?cL0AY@6hG8=A9k4yXwgg>
zek9;lr}!bBi3Zt+pKT8IH&BF*88}da3l{X+9^w^6UP0@%$KHV+@CQ*Tka^(ak3kN^
zBU|&$N7->{G1ysk16^m)WCh7aLQ&_X|7RM4iLfUM6<iL)A7o(pN0O8B`6bdoYNj+$
zmIQ72*Oeb>=Mj@D{pcP+DTvt&nPzU4NKl~2(M$?Zh~np;%>*fmN**BzC}^B{1Qu}~
zOjHmafs9g$DW6I?7G!9~`68r$9_SrGb?O+WsHB=2NNWW3;T5h1?OM~NKn~Q^lpgE_
z8LV{nHPD`yF^cM$)v5Vcu#!52o@u7_TF|ezMLEz9)sgbqUwsl3>ZqlD7A|DtP8F%O
zD^(hvxt=bYR5ONx6o{r+-g_sp&{{W}N6ki?Cabe5yzqDlXJ_7v+2S;cB1c$!u~qQ0
zXB!HmuvpL^rJQ1<B7X$<;i_U$|3@xJA&*Q@$pf7NZ?0Q){4t1OeH5ZuD1Ri1gx~>9
zpvN5+<ub`8djOWoB$+x8D5dDj@RCtdd@;ranetu~s5o~u)<<;efw>y1Mv%d$Qd!o(
zMmKYkmicxWF-~BDiw9MrI44^vrI1yS*>8SGiYRk>3b&nd`;}+G-&UQQ2Vi48_78Xy
zYP3guj6wn`B#=Ty99l`9^-9SRG`huOe-wyQUsVM-T0e+l3La53(S#`j2E2CSegA!W
z#bH}z%Du9RCp+!7<38ZFiI?C(^8?BDJnCW(`z-Gs5O0w2Y42|A@A&%8wqMm(<fX)@
z)r{}+Rj(Nx*=l`fF7mbC|DOA50_oIP<iSsloQ`zzJ~|;zdWwq)>p=3h*vRdBdm*0(
z822#9iO+8kq#6b@=#e3nCpYM;8%_dIo1EOPgeA1iB1~blDa6ZIsG!2h4DyH85u_CN
z`Uney#5ovx;0Q?gArfR01^#U%g_wid2tC5H5&6t0H~h=?2x7$V<WM6o9LNj}V#9$^
zkZR@<VNqn00#GRJDM<v0xlE`=C_&DF;fo-_PB*Woz$7LgY>3?oGLz3F;tzPh0};ul
z#uIJ@PSH9=r95VkK-6(75@cgeq69`fJuN0f0#F|k;Rnb}@@J+qqj<m)$aB3eR%rRd
zDX?=2-C+-W<m=-f{{z`ci!1^-DKK7mP^n7hooyh3;7n=^@=H*D#EopLWkGIvFYmST
zfdqjiAd550g4{7Z!7Ruy3Bth*_QwyO+)<QtS&&s0<U!u#$r+#XO}}ijAd2KkBS9j{
zkGzvE(rM-!A6byJDaVh|)F40uS~ZsK6Jpo`VMAt;o2lt&CIhTt(C}aihLQ+W344u^
zic*S*PE?8VqvS&g5-x%cOhg{3s7Cx?D4ifhFRCMfO1;%mIEGXss`J1`&(+bTU9>tV
z*qT7&2RVi6#UKa~6A_835sTEzFU%~KGuvhn3=sq&O|(cgO_Ks1QfWX)_-F<V3AJWa
zimC@`##MI~|3^sjDN0K1OrW?5zO)+TmWp_b6Pf`Eh`iNUJ^E%}8Tt`~1PwuE;uP!#
zGKxnHjFnLR-B(9xrQ;ZC4+-1V4U6@c#p)5Qg0V~xPN9|5fL64VU8u7j%Qnld3A1cX
z?O50r+3*DRtOvzo2w@Z2W$A>Z11ZHX<ytPQF?O;(1Fk9LT3Y}%jG$(92wkb!jKZei
zu)6iE+FaS$BYGfhvyBM}ZW`3_#^e;Iki!%b@fjvGAr2F1LSwSJ6HuHt1wo*~DJ1)y
z6r4g4QTXqF*TkPdGyyC#1&q%Ml-wgsp>NzZ$bbvnj01O8zZT)Ie*tVeiy{FeOFXI1
zm~aYE|2QECQZPk4j}#>lli0*44pe_Nyx|^wE5Zh53#q8UU<YH-Ei#V6gZ+Yn+kpiS
zw{s4C<zQd@22v5zwMdeeoL|Qf*)2!@3wzzm2l&D^dy~c7C|($ZD3C&GTaj-=EE|X@
zjM>SJ;jbw`p$Jd_VhRisYj??dIx&;k%#_4jmfy?2AxqfEO+a#e?>l7=sF}@Ca5EI;
zx0g~zB+*P}u1BJ*XbT$zEPE}mDU^m-Q}!4SC<p>ruxm^jog&V2u5&>&eQ9HvBDqcA
z11U`FPRF&(EvHU3FH50gGTR7x%@Fnxh+QmMFM8Fqwl%JG-QD&Iy35){P^;xkXFLCe
z|JiFnv$2t_Y=f8=z3MecSJoO6LKpeU9{7W=QOzEorMpAk#&mefo!-xcnF?brvtT!+
zSKCRnjQ#$%pPl{Xf>C?R{DZT$VQmnqbdkIkhw#j%+u^Y$$+lnG2?_du3ib$_VKa%;
zvQFHLD}orSgOZd<{i1S~dz90iMY%gu+}W5L1f^AVGLSSoRtg3I=#nbd$^UdOiF9%1
z!VSX96Jb)n!Arch(MhD%6!MWDTew2{*49bRRjmK1rcid3wWGRli<BTW>`{c!2TM2H
z@|6_r5yhHNAPPV1!4H3MvTuunXXwqV?d^ekar7Axv{x<b8WFkJ^=S7oncX6Z|In0^
z^#b{>{}m)*=e%vAKy_67!MdF?6$#v~S0<POEzZ_E-~A5w$8){pRb3A#Qb3Bl?D~nG
zS3M|Lj}}}VVe+KlAMuS(#LwG4yJ`;t?sd=m#drLAs&&lX`~LSzf_L+_2Y2$>b9{?L
zA>)eJc%T+|b$IzF_3a6M>+7n1&DUP8(9u!(-;RF6zdi1j9DV5#1piG}u_zoIVU9#p
zA4z1N>~SB{T^t13Q9uPjkWHX?kiZcH+?hq-#bqE!_@8TNU{QeJL3o}Aa^RV9mk3fI
z3eE}!Rv>s_VEYIK%k)9NjModcV3!<`3{D^ndISrG2MXAnM+~6|W?Bv2|KLI#Q3`NZ
zTX>z#oFGrMhJ`E=6<S>o?$-}?TM~Xp7W&1uR3S)+7eY9J1{vWPHiH=s))so<N93Ro
z>K7bZ94K^QUFjem=Aj<$As_akAO0aA2BH8~$v`MVaS0+KCSo9#03mvSA!3k-ksx?P
zj}<B++cn}Nju$0z%s?c<9FbRVc%mhaB1kY|MmgdklA<cEA}h9{E50HuVo+)b0v=F7
z9*lx15MeCtA}`WKGti<f;-W4J87Wkpcx)nFtj{RUVlCccE|M2AZbcK6g660p1Wsc$
zu3;|<A~Oc#Gj1a|hNC!+BRQ61x%hz~lnfpmp*gmrAT|Lysv|pc{|pq)iX8Z!2i&78
z!ecu6(L5@QK7vOH@Bt_ULep5>Ko;adx+5O)qdYPsL`I}UP9#NEq(xpNMrNc&ZX`!`
zq(^=vNQR_HjwDHzq)DD6N~WYrt|Uvgq)WaeOva>4&LmCNq)px=PUfUe?j%q4q)+}N
zPzI$?4kb~FBo)kH1|4Nl_97pgBE9^9)h(q*9>E@{*Ft`T9F&nCW+hWPCBrnOA5x`N
z#-v#C!Bv6>SLR_^s!UpHP+KkxScc>g<Ut=j6bj%$BIE()904FeAzzNde#FF0$kkou
zC3iJJB9P!<-Uwa(!TTIRB1EQS2BvNBrPtx*WG2EeV&-HL|Iu95<#!aOURuOoQszXC
z0zTTtsD;O8I%cP3re+$16eI!}4Wnb=<!FKmY!Xov_(34#ra@SyN0eq42`6bbX63PF
zUw*`F)@E=bCu#m29`M}47$^Bn7auGFuknNuMxb>*MR%UdZptQY{y`uSC;9m%aP|;v
znx;jdCZ8mxMKq^*#sqx2hICTrZOG?9KqhQL&Ucm*c50_(peJcA=WAxBXXa;g-WAVr
zreu0%O1S5lsOMfH=y&jkB4p=w{sq4jMQ{FQ8x910j*^CQC~AZ!Ti_<<lqg-OXoZSs
zQQW70W~OC8Xk^+ZEAodZ{J|(p7=eg_4K0Oc1%cZ&|B+6JLLNv&j;ziZ>D`cyg8z9A
zSY5>#@u-giX@4pLmvX7y8KY4hsYNIPDFlL<n&~i->6xObHW5meQrNl)DIgGOK_uyt
zHbaw+Vq`ANea^~iW~iI~=z*!}ni3Hp{30KSLMr_Ql+LM?76hT5DgPWQmo|ebbc&JA
z8&eU=o#yF6h$(~xs+KNHrec>t9I7BB>Y_$Vj|!@Qf`T99+F6E2sa{oElo1~g;fJ<h
ztu7LbMk<>U1gfg4bJ!`976hd_*`>NhmwM@T_NhkLT_6psqH<TC@&~NSsz*>M{~STH
zlBsTis){rNt~Q3T;wd$WE6kK>p|)wZp29(5|7)zmE2Ofkq<V{z9;>iUm$G82x-u%c
z+KG;O#IAlsvRZ0XS_HMODs_}A^uTDN(kZecYPEuAOdRa8f&`6z>zA(Ung+tal45~a
zMrsg;sMLggC`sY)M-zd<yrhO;Aw))<EJ=`pk`RO+u!nxhERK;ZrMU!*P8=Yx>~lm{
zOo&2SjjS&wEM2fj%EsEu9*`oQf>w$Lw1(2pa!e`sEO8*Mhrvd2@`TgcY>&{@5V2Ze
zt*ogEMbsLK+9uf6E-k~nZO&Lm-o>q8SOp105ebMwD(VQ`Ugy9TEC&Yeiykdqz191;
ztS=hM*<xE^0j+)BP|jAV;!bX7@U7o^|3u|l*yZ)e(5`KpN*3b^hTDd26M5~nYHo4u
ztyc8yA*ybswXHV2S$}~p(E@77A`px|E{560<qGI15$;utt&#-q!&;K<My^3z?KAa@
z?7Aa%AOsJ2i2<pO&&kYZ@W)M|lA%~HzKl&1a72}Y%qi&0^fm(&-csQ8j73nRc);&R
zq;EYMRl>*yali`q`URI@U}sz<2_S*dOpU&n2?+o&BlbajFw~Ig*Ab|U^TtF9G{M-6
z+N`1g6BrHs)==Q>9<AOlrOEGB@Bs}Wm__Js)_Oqpl7w^#7X~|_g{`m$&u<G41QdW3
ze_Z7dg2WCpkw-mP4<GJA=vM>t|FDGxaSU<iL5z|JTf_`|1PY5634a9pk|qS-%lOI$
z5k2uoJg{PE#SQaM4jV)kmv8!!)CwOU6mM?|uW%C=L>RZJ%EWQBG|d~26B|o$2@^yb
zJBDN_9$OGGmnrcOhtVFBL<T$Y^!@Nva7GXW68Pe;T`V#oKe8cP@fUkU6?3pfwna<f
znzwMD3OA7`Vo^G+jF!|9){%?nP{B+{R$H{MCudGG=x0%^Fe-SZUPx9h11yF4Z)~VC
zd+^b`gp6Mxgdfbze#}hk!W(;l0&&0__c#{hoq}a7%AWuS3LNUljRFxd!H+hBHAk=}
zi^<5H0#|VgAIuCY<i-*B|A;s9@Tm4O5O%1sj1nj}-e=JBRsg~$t#B#7+bNH7QOt6G
z!gC;r9($ldAW)Rg<k7lmDOeN)BOaJSuUtcy)97V%&-qM&2?AOC(b!xxLz@Y|6d%dG
z&o-|dStayF>kCP9v<Y)3N*~+%@U#6IV?Z0T!G4o$#2h%Y$2c!bE5CA8ZD&x6a}?a?
zL=WPD6}1@~kbY+GM~5^XbjnT-G%o9MQx8N%uL?!avo0$~F%LA1{PR`Cw3$?O9*8uA
zy);{Jb4$NyO_ze%`SXn+^ifwFTe~%Q*7cg?bNrYJMAP-;*)>SuHQI#pP}6eE;j~0b
zfzCkBffUH!70^Je|8NtaLL#8ROh^GOYgQmsb}3wTLHGfH7_~)+QA|koSppS!tnl0T
zs3Jh&k5bTVQ%wDOfNM9eB$2jhF9~ORb~AwXnUNI=ED9+Qw|~q|6r_OYsZfti^Y!RQ
z6D;*9OvwcEhacPy5xMNQMNRwslp+KH36!6-6$L0f;}6J&e}F|~Hh~j_nMnzPL81T>
zC_;8K=VTuaZOavZ9Dy7}rfvVWj0CrT>-N`jTSqh1aDR5owRV5ocLwM8ey_?OFu{G9
z0`q2XfDd>g>~?Q|on}1^SY-HyM-;hgI2CYs5}!-d5DF-O!uy;!i@P}Vpu#9Tx9AmH
zM8tCth&L&r|9Fe5IFaM{Ow)yq^LQ!vcy8CW@PfE-ZFXlvxJNO#LBO_SaJYG+_p+ci
z9Eq`7NI8LU`FWd{R`5rOlM9%uwnb=pgM&(pvjmOT>4O({gab|>{I`Ivd9?UB0r9z=
zS2><vd7cmXjY|j~%=wJh_==}E+lF^3v=8g-ICM9;|IGxJQ#gL>_mq4%fy=qy(D|BF
zI+GXMXdk#DzzwK}I8QA3rTchiF*td5Ihq^A%|7{VhhqxN2-KViDx!qxq%qlHxm;8&
ztQO*<C^p%kLPfawu}iS8hbox5FM)`&A5g)eV)o)ePFt9Ww$EQ(O}kJ;NwNn!vk!JN
z7<(GN{{=?%5Kc@>e>MZKOEciGQeWr<mQ!!e5XUX?P#-WXSfu7yXyuxK1>)#LJ>C+W
zBFMCVd$w;oK`hGU`KIW0yFr}$BPuq;hdZ~gH?I+Ud$4<EM^~@kY%*!7Rqc~D^0CiQ
zyeU|GTAln+8_A*o`^uxu8s<E+w0y}kvi+hA6Rcrstcgx&#Z36S`ks~0@BG>h{fi5R
z(Pv4=OZ-5<yv&pF$Y)xqR9rhvh``s$W<NVvVSQ?RNWeSCz@L@P)B9~Wdzf=m#icPI
z7rPH%JGfiDL$p24SINy&N8XFOx|2M}&;3I`eaq_;&v(}vCVl$xP|<tK(sjKAYpL0b
z|E@koe${A&#xJ{1T>gh>e*8@Sail#d-O$%pz2K9h?umk-kiv;51%n8-%U>8Mh{7JA
z!uWMs*1~>Ln8NJCgy%p8w6BWQwZ32_f?01x_L4vz@XvDvibXg-^nVNTYqAr^KJX_+
z9gPw0>%K0M#>X|p{XG***n6z7(x4IIYfw;Vc)(qN!Xobl!IwKx@P5;%U4RhO^>@be
z1B3^Gc$!5Kn5P*i5(AqZ5%|zU3Wx$p`SHNVltezH1d_<(kfA|{cm$yu6=b47RDDvW
z03~V<DpDXPu1xtb1u0PrZ>r>Tuo;S;5N$$4sE{E|oH}_5?9(g}l|ZIYS@eKV|L9Gu
zLmw8MNF`{>tv3TTn>dQ2hd`hvk^%%YtJttyJ$MyZ_H0^@Gzp44%99{XmoQ~29a!?@
z%|xXpf)WIgM6<UZNRYxK5G>8VNd-EFEcxNns8g$Uw2Zl-V#Yn~J_H*V;^3GwZ?@k1
zuy1InQmI<?Aewh+${%qT#QAczVGkrtqD<L(Y|qznVMAQob~0XwXeTmHJQUT>s|f+8
zc0Jd++3jg7Ud(tg?dIj?wLj!O60vg+o*zb@3~{lEZVQR70u4M6K?G4CWfa&HNhFG9
znh*#OMV?~`A{0tVM4%KDK}8~nN(m&T2P2%&g9@D@C5RUL`eC9Ghgz_~|C>-~2EznZ
z%5kVueACg#iD;~jD-$K8&_WM1<S?QSL*y!mBcn8EN)JGTh>vC#`a`{ka0Kef$S!-R
z3F9UbrI|F<gi4@O#Pjk$x>86aO;M<5iXi>0d~>-#Mk&RVX82T+K_Vv#az6dUG|)&C
zRqP2-0TmIYHXfDSutO&=>}kl9@bD8*LGLofz}E8YubD9)>a;sjPDvz6@unJT)&g5Y
zjmTQbI%Oh3)I)R4G?~;jC1Sy|G!R}P^0h~+PVFdFftJh^#G6Q%G^HCYb#tOC`(V+<
zf?!M()iJq+=*odyg;mtwzzyO>A-`nJQe3mew8?5~syC%bms>a1|B(Q0_a;QA&G$*j
zu-();Qn{LLB4Z%}HrQd6eTdnVuBCJ&Py-e3S<0e4FV~9&%D7P^8B%oQWP9yWVU9gG
z7fyNkJ@iK%b>5k0B}b_dqCZMGMO8)qV7NFYRwdYjDVkAwBB6<X$mlkMP19tjq0aVa
zLp=a%YaMS*Nt7gYE<3}n6O_8>qvzZD#zAk2a>6RBY=%TEwe*0?&oD$N%x3a{s7w^M
zQ{;%m6?e{*IIVP?t{?C~Q<SVi-cz6-L@@=AD4J-(6dqAfn=Z7!Zbr{i+@_0ds#ho5
z?1{=uc*pLZURv(4M+f>L%{liRbPNMQrBqA7O8xcSy<VD%|GS9qY53xAg4nv}cby23
z=SM+Y@x+~r9(wD!YRzScvLDLy<3)6vAh?+(ycycTo~ZF|Cp+cpW|UR`A=L${A6<}>
zRx_G6v;3LtbYa`q^w5(u+#wBpvC9wvIYq&qn67;fyvgh!s21@tFjpTuT=%?p7X+Sf
zgYnDU<~sMe(4hu-5TV{f%J&cywoV{bJ6#ObazYUbgo7RcV9jKByV6OpXGv6IPZnVc
zA~}soltD!SiDIcge6SR8+TKl|*q<p1<OoO*BNDO{1*L3}iB22}C|0wxvC&U}1{$IV
znz+24bg?5}<Qo>_2obt@z;4F*S;W%f2bh)VZz_b=|KJ`HA(2?8jVW0KTX2%D1c3!)
zs6&@{{%{J|oPtMnl;dQMV5T<h!9aMFA{A3IM~E=tNDB-aA3G=zQAW*^5CJ7;=+c@}
zK5}NLe8?@i5+RTTrYFekCBJ6K%VNRI1ESzqAR=iy<v8<L5rd{QhXTM~>Qb0jj8Pn6
zX}Hc*la7?^(3QeC#xjEBn-4jKFee!sOG3n$U>qYE3t|{Hj*poQ6o@!Q1i3dt#FdRS
zPfGIH695vlf8>m16|MO&fzIceYC$Irw<)uUlyjiDlqZJbdCDT@s-pr?B?<Ic(qP^t
zr8fa-I_>GWe-<dAOVp_n!D3DknGFx7Xi8Ts|3whPl~Pp^f<jM90aT$fP$^24&O}r4
zgZCxKHhySIndBfKJ#|E@WNJoNQR7pu-lVCxdFp(QIx;9p$v9QYjX<J=p`Jb@ONk5|
zBY}8TumH0udzk1``WPElMg~KdYu6||3YHw*Rbyf8D_K1-3U!tVn3VadK+-ypwUR)x
z9^h&tA!0}(nQEd)ttDj7(%5-LDRwCsYVFQ)SyQrhMx;<DY-7U{-r{7obqOeue%m3Q
zl;x3S63<^D^N`|3#JA0eZE(qFO67uet7El~ZAD_#hp1K{z%(sHtSUFb8ji3~-41sJ
za$emCa6#()%0e@DRf?vhnQZ;8TZt;5|Im&$Te{_xfUzr9vU(ScZWZrETk~Amo-`#6
z<_UBA!_njtY{6M!Y!P#0S+N2$zsMEqn>xFkwN{qBYOyYcOFI|$I>nOZjcj%)yHgwY
zECr`fL=<?;W5Y!#5KSORjr*G+KvCfcQz%6#;<B)t09nY|RWH>%8XFz=*vBJj1`>MK
z8YY|q6ix_&6iktpiJ4L$Uk>w_%Z!sNW7(%@%B%;VJmgg!Imt`5BVFN2B{Pj;ib041
zDN4Z;4V9t^DZs-h<^?!Z@wH8-ki!%b@g`76It4+X!YM#P0#lfR3QgF^DGK`#!3H7<
zf>wli6wAp}p#WZK!cdNP4Cge1|5?mrHZz^^)`UUJS0Hj`Xs_*j>ox28A+QvL=eWeL
z)@TUSd1i74X^myi4fNHqp4WUp;klr`j<)#h^{?Gr>mD0!5q$9VrIkXEZVTBIt8=%v
z<6X<s8EW3}c3ZMaA%`YV;nPjIv>Y<MX}%<c-ttDczB|Zoe*=82YR+|=6&hr6OAF6R
zp0)>+&FpP6gv$c@bf`xyz|4r-;smD5$VKg{|D=1}oSv#-2oiF7f$(0@*7#{HC2=<I
z8s<@8H$;LybYoB4%+N;i&ePnCWjCSOmGacWzYXE3zq{(4!L+7j-ot+XJK#-!depIv
z2Urti+fcqZ$%=J~uS2{k|8<sfc*m`Bhl4%hPWO0@JPqoWlUmC*Pd2W9eq+P;3@lfR
z6PcT#$65w~PQn@&$D1Jqt}x#5_+2P0Ezdy3uP2GO3c{*|MZ5i=nXaUV%99cwESsWU
zAed(*AR`Zz$-lL3aWzv3%918UB<u)`mTn4~;WkGvaw1W{pLA_bf<B-kO{HLE5P$`W
zoIJ)rR3L?#L}9pAcck|TVS*`^o4@~zUQLOhT@*?oEFysd_8yS^M9^P)e73*wkiM@U
zYoCbQ7x_Fsk21m!6vmHF*e^{`;SZ>bUl0%~;-dA|<UjBL`VvC$!VCWtaHt$m1MMxp
zFfaiZ@GjI1|3E=c|D3M^r7!t1Py`!^1sO16NH9%I(2rD4{Z`QZ_%Ho#j|26uvUbgn
zs_*)y%ms7MxrC4uux~jk5EL%3hz#RCvPts{1@d-K>gdk~6NUn3@B+8c0<kdt5~d0z
z@BR|d2g9ul8?OcJ<;h;KKb|l8s3;I*Fd_7$2O)z14KNK8p*lj04rve~<_`xSkcR%y
z4l_{ysBZ>`&_00Bxw7!^B2f}I>p)202xf~3q6kWKBoif3r!H|QOb;SJac4x)xrV|L
zgKLQ_(Q8s*&**{@>8cf9u_r9C1at-kNO5O$v8rydCrpv9xPljBBNhuJ6%8*JRdH1^
zsz83g7j+~E|A0|Rm@yY4u^M~g2Y@jMmggF6gc&0T7>AL(o>4%=u|tYcPG}Ju$uTyT
zCmKDGXO3|fmGK>Wq8@v~94R9oGp%R3QAhld{+1^je=!!5kt>{$X9m(950V|p%M|(X
z7uE45@(~^@(jqSsBQsJXH<BYe(jz|-BtudpN0KB<(j-q3B~wx*SCS=L(j{LKCSy`2
zXObps(k5>bCv#FKcakT2(kFisD1%Zchmt6Z(kPD-DU(tumy#))(kY)3Dx*>=r;;kG
z(kibKE3;B7w~{Nn(ks6bEW=VP$C50|(k#ysEz?ph*OD#U(k<T-F5^-z=aMe#(k|~3
zFY{6_|M!wF`_eDrk_sA9rvmdYcM9szF+uo1ReI(yf$|9UpwbiwOU6VF!0jg$GZHbg
zKq}Kf9y2nhQZqe~Gkan*Z=y6&(lhx$GLtAZSJOa36DnbIB4m>-Tazh|AP*AZ56lV$
z@E{TLz)+3=5M~dI0AUm$gezc)m3s3xm!}DCuqTvr6mxSoM==qu6FZR;L4=byeKR`~
z;TuQdJHc~0b<?a0ggc+i4*~%=Me=fzXcS7#K;AP!aML`yV>}H*3K9Vn{vbTRYdp16
zp%j4+79svBD?1#9XN2=O=S=?i(?7-YJM|Mn+butbB0eW#Kl{@#qF_DSlPfaR1CAg-
z|3yM#hK)cC^pWhdI#VJ&b>s;CKoRiZ|B9114P-+jG(&t7L@_i@Sk$aybVmQrJF^oc
zPIOdgML{`*M~MVTU6eX~sz|Z3L#3-gO^G>s^t+5xK*cRZVedJmQA8_}LA$gwxpdCT
z)Ios=I(uSFQ{qjtlt|<hKPPlYoAV!=v`&q5B3{%*hqF&hbQIC_$*fdGl`=v^;SU(C
z#!x^Mvd9!hK@5AZUdlui@&NvXi7X<?Q6W`Qt!4X|k($I!Q5p5S6aiIHb^F#d!YH*w
zNFfknHCF#KhhSA!1A!(Iby4T8K!U(ku}8XA%@h#RBI%Q7-jrvI)j)LBRH?>R|7BGv
z0Kw__KomrZE{-5oRTa%{WOeu;qeK)*4a8D0wHY*(LZ-D^o9tO<)qK#^S`}ekan(oL
zRS>AvTBQ|Ln_*Z(l$5d+Ud<$22dG;?f?0XhS7l8{A_Nrtz*WNLU_b6aq_tktbyXe}
z5F%Af|D#}QOko-J6v75xZ&hB^Vo4*WWE+MnI`v{dRiR3iS2q?SLiSdbf?M$lBvck-
z;pb8_RbB>GKth#YEpl9W_CSWVTy>UQ&9y&(c3$1|KX8_1rNv@%)>%cCCZJXtg=A`@
z)&pb~TAk}x{U~g~$X{1gtakQjC&*`!QbQi8EcC-qgknK7Q4|0nLh1z+|3-nMR53~x
zGj0h*6Cc8m=*y4Xs%<$c78BuQ(Z_BfHkxjxKt$nY4i~0~HP{-rUd*UNbSxy5RcDZO
zXFNA$OTle5DcB&F!bFQ_6gT+@*J+cKXYzJ$&m*}e26e5=b`fMuQ`ej{HzGK<X;XrA
zVRtAR%E(GrKkD{w6U5Udg9NzgA(Yo~>4JByqekX7XfFkMI|6{7*P|pCdKQ;>i$#3z
z;(AFTiYQmboI`!zHhLkK*RJVrvG*Zl7p6AQbz3Zd?L$77$bMB!8B^ka%R=Dv_I^`h
zaK90B`Im;yR}<$KeRCIj92h|$m~J6gdg~>F>0)?0!+-%;+-OxO|6wCa3h0jnB1<;w
zR%j+dD6x~8;)E~4bjid`_V<M|q;PMP_~gb`>ZKHT*g$@GMsiqe;P)bas1`d!Ic6)k
zQlJUG>RDV91)3nEjsR*FI251QcAP_snP5(dn6rS`1Cnrwc6h#)$BG34TpcC|GHQyI
zgN0|9jG0P|=NPTT7>us?KkS$;_&|ix7(s8sjA6HpaV}fHc>jdNizfmK7Ais{^Nrp(
zCHS~-4JU>BRF78$j2k&ujmQIpm@L@XFlwccQ5KL4BZe<oS`e9pE$EZ+IKNVPhT~XI
zJ`jj%SUCV0StZ#<sF+h0`B2`Zg|h{Yg?W~Z`Ky`$mt8cI|3|TzW!X8PxqpCInll8L
zook|0`IUQE3V)GlXxZwd@<zyNBgE>eZY2>uSZHj7Y09~;n5HtQ;N-H!zLti_P`DXt
zl$&c}F|FmAP@$h^gje+upy&b+fK5q*K=@2ysj#hEa%4^#Pk*Q=Pxt_TPyv`wKw6=1
z6qJGqgzprh0E=6KPN44;C>nJvy77SN2q>nb1)8z|+8z(IKf*IhCQrzGB@gfb5A@`t
zu|}j5^a!@E84xW)Ho6&J`XSQ!A=a7CSXHLyhNh!hra(HVpE_dY>!<bSs#D^oX~-0Y
zI{FMJrv-<ni*cN5sioCKspkVCN?@RcD_fAdt*hiF|J+%$(&SCHI;62Ut=;+|;5w!Q
zdQ`-^s10W-4BMy+o2VBXKFk@2|C*i$yC=$er+XT&%&bfZhN%atjV$}De^#F9i?6#{
zN$8qpQF|0!S}8i4Z>os{1EDEg+o=VDwyP<g=Q+)+dQ3}OMDcpF#RItYx+@6#vETVk
z);dkvdbkOOs=L|V@G74HM4dmIB+MGKp;8KrC=i%LLu52>5*dh4fe*o=^JY_#?!voO
zM-jr?1N^{3bX#wval2R36ax1^ZUt`^RS|BK(dKNwx93J5qQ1{!s^J$brr<z^XB46!
z1)P9s`vzTd1Qf#B1AZV&P=p|^vk9C4&?YZ${~aO-*vJ=Az!VfA2uMKr0M9@w+#xVL
zmNq;QI{d>iCJ?+B2^8TJOtHWPBEb7QgyrBm{hOwRNE7jZjhaCeKmimC$HY-w#ZQ67
z8Qj6yPha-qrANFJp0NqY8wJc;p^iYvqoP{^fxlVFn8tkeetbDkJjGXhGSYm=ha$mO
z#m%Ff#p&mPO`^(6L0^!({g%ARhoZ;D+XDpQ#!(>0cbx7L=A7|1%SoK>#C*<aXuZK(
zTJ9Xqd!ol9#L?e`&8w%uQ^3kYgvv?X&rO}rQC(lU8{;tjCJJ3cJvr2IBgq9Fu`j*7
z$;8XSd?0R}$$bjGPv>eiUCRF>!~sdt|2<g5m;KNaebJw!%gej+wCoR<K+{f~*Qx!y
zMXT4Vy|m(cp`QHBk3G|&eACrJ*Yn2JF9p`E#LNZUI@aCBaa_kuo!)&s-huoI`~4>F
zTXw$vya8RwgB>bU0AKdQDzN3C?QOH0LBTcV6u@m^bBIzJe!NjazB^*#xdP$wo7Y&i
zpeM*js6blXyE9PlMoRwVe=*_f_rQCi!i!v+3@1vMM8drULn7mKybo{0s(|<>A}pv6
ztd$`8m*)wmIKsP32AufrIU*8%<^90qe_kNu04hvjJslVRSk;lHFeQpUE{-0i$ofiz
zp7>bl;UoU)vwrJyWa_Ivys=(!|KEOTSl;S?!|1Ps?zO%w@HS9@N$iUQa=xCU%sx(R
z87E#I0KJ*4`t~8PK4;{*i1Z`v+rIAqzJ3?};wfqH8A5<Q9-CD~@&^d-!@DdHzwE^-
zJ0_}3CZpoJw(|v<@fSaR^@r+PKAbn-;!{Mv)*kFrqRTaYp+0{;CIjs)DEXb9SAid!
zd4vg^0DjVh?adkD1D^P4!uZKv@5la1VxQqD3H)bYNpN58d0+N@-|;(x^VPrnPv75V
zsZi(4`FGzbb7ChRqCGG|BOLKo03rn_QF~C4I^rRrLOjiaC`?Goj|V=cQcNV3kOV0_
z38^$g_|OAGhanZFASH@K|49#tO09eu5>=m&B=Ue1*(^#)i!^O6%()Y#%AGJh$b5-M
z5UNomizW=zEM%fn3I9ZW*lcD(P|f%>{mDcjiDr48f(l6r&{jbY$EtO@wd>b}48vw5
z3lkNepee=rqzlwTo@StiGQ4TBXv>uzQIrJ5R&2AkP(zNw=poSAhiOd?EO=1i;KG1G
z*1XA3r(nW{KW6-kQ#ItalM{|^jaZ~orV3|Ee*19o!^#gYKWtp|WZ#lUo$6KCr&%H@
zflQ&27*nf4&1m1=E)7v4MT>ke`@Rd@q|k@ar&quJ8g*de3XNyJS|2n0g!Us&tauS$
zLxrT=fT#VWT1U+||Av-$0G8(&K?dc998DW3c++_vxMfy%9dedlOnW6Hkc6SxwjfL;
zf`-_N6N+`A2Oeb@8G38c_LhI+1?Yi}4`Oy8V5<2@9%d^&*Q0|)#)lwt+Bpf6a1Xh7
zqCyqIg=LmnZpmdyD3CG=g9#~;NEFR9kq{t?K=}{~r6fY4BB=1BP$_|wM5dW&dZ1=P
zeUK7FpsD>3lASPp8RkkTWYuLt%@uVDc3nmq5~5;m`RGa{C?ZOhfl$R>idKchD2a(Q
z(~Kxo3^)>2BZ`7*tf<22!6_puR2!BloSN#YKYi8JLwE!-N-3rU+a{Qou0$zLO^wBo
zmWw`VWr`u$|4J%lpeiKDRj|rBYeH_)nu44>wR%^y%wmV`hRvv3QnT1%^;WykYRaiX
z^Wqxfv>|;OQn$xhtEjRsWx5ct#v)4>DW@b71j7m;{4Kb&+WYR9WuBSlnzi1VP_7DD
zS`r=(LoD&N*a7^Iz?p5EkjpG{dsUts^Xc)(279?POwB5|tOqvl*{28N#yRJ}LH`+O
z5Q8SPZ^&;|EGw;4$4V<*3LiV-(H@kWbY`X;`X<smc?~vCObeP5p&w@pHOL<1I&{Yx
z>uL8(&DM>xuv;U`chT#zc_g(XmpXFUUz@9RqmDlgIb0}=lITN!lyZu?iu^%1V0IZT
z@f6K`|E|#GnJct8)Zn5Dv*@I^NqNu;zOE(0D~Xabm$<`Td6%|_)I>9M7BzE1d^A&n
z2ct?x?GJdsDhh+`&OPENiX4G`_9U4SqR3b}554paxth=qqL_k56iqZ?%9E4#4%6;3
zj$bF|T6#qL{6TXM_sbyxf(rgzFMHS{NnH*%B9DBf6!yEF#}xPw2FA~0{G*qG7T7@G
z2`?cP<X1@W_b-_7DS*|IozY^Km*$->ed}xAOBO|i&UwIk1T5eMBWOR<Y0iEflp60$
zc(@q8M1I8^;ZsBiz$5;TggQiB2Hz(;D8fa4Kr2ZT$7H_)ic4Zw(%0&m0jeI(?JYE{
z{~<}rNI;U94}I!mpH{R8x)B9}ge!sLqDEv#WS!!RVeH;p#F(oq3N442+u;POQb;G3
zZ-s4iq4E-m#Y1K%g)af2uttZ##zk(EoP69OOc6BEWsL-=5aL4+_6Is9q!j6~-bzF%
zmQp6<2uP?U5{?%I#JKV$p9CT(T;jOjg+z>6>R~S*CrpJf;bu<Rj|T)XHV^m#KOP94
z;S_{N`h`r6z+A~9HbWxs-49vQL)IToaj8>0>6mb-;1L1?wLNU<mz5-#LcTerTscz|
zoytr%t*A;5uyU60td%@p;?9De;-D+3AU;i!t9K^Ipf6eGo*o*`5Yh8r)bs#9|20_>
zb{>pc=S=4{Jz%EX7=>Da_-9BY`jCYt1eO_*r3WzjHSdWOCMktU1^3xcpgyIeAN2rD
zH)PX<?DQc^MQD1uI8*7wQi!Q6)Kl#_OIzMDCm_LT3iRpH;e@qx=!~gWsv5z1xn?D3
zt<ziDy2`iE(w4aFDmZic7O&>&sH7AkUz1vr3jUR<W!0Bf2J6!ht(1~0*{J0LI?xh!
za<Y_#i%0fUl2YUh52hH<#Hhs(%)V1yW`e>?G`o<_GG?s_DQ!J5Taq873{%u1fgc7G
zJUP&0E*rY7LULOz*p`F@ygjAiCOS<Z4hNn=IK^8otB~VqB?YE**BiA-|2+jwbU=Gx
zW^@$066(_Cy1=SlKNX}M=nmJn2>~vDz!|)WZm75(kgeP#8<Or~_Paw(Q1B91P*yQ>
zwDo~+U~G%qX6W|4zdbN}tEu3G=odO78-;-rgj{P)*iYWGZ%LryUoK)*LBf^cD9$^-
zYkujjpZ#Efi*w;RZC14&*surqOJd290-OkL@Pa|yU^&9`zx@rej8i)x^_E1*ZF#VJ
ztC-mtw??!X!!Jx`q!1h9*dyDmR+ssMVvk&x%F&8g?ou#ig%B7gWM1t}w45tA0|&Kq
zp|L=voDnBSc$IjbVVDs|XOYmj$L-y-aTyyD4~HbQYOXSrD+}pJ|EJ&-iim=xEsa?-
z1)>QIS@0y=WGpHiVG5-vg_!d75>0d3&@M&{s&_)^OJn+yNI)jFm~aYEI3Wm9Fols6
z0xS9ATGzbxwMk+vYvBeP(Fs|mAk=4-lYY1vr4V%#ND($Sm7)nLz{4m?)!jfuAqY`W
z#9GUFD^Q$54k-u%6;5FqQ<#DZO(>6Zu@vrcm;2n<HRrof;51ZC7ulEI)3A5l>tCz-
z+AQ{HL4Q)~)dr0O@}{@FwN(l^G=U289+0}(?QVFBE7YSdwU`#ZV`b(V;l@@7%E5W?
zVjGF#^RBnUfb()?Hsje%h_+ZNZu5IX{KKcn_{KX9(qmUT|JgFM3LXH?5X3El4^4=I
zx>dT^kbJz|@4iXSUEYjMclzfwzc`5qK5L~?-RdH5_R3|xouX@;<23%1(dj-EyU!iz
ztquFCJw55A7yRskPkYQ0?qb=gdh8>gcganibT^aT;y3Tjy1CwV4{SZ;AaOd>1>Sg3
zlN$1X0fqWFYd<$Re)J4dz35FY`HTSF>>HYW<@+vnRxjSrhi^IV|6aO(2OM#`_jK=n
z-Qtnfu^ABu_3B}7<w#4vlO9=JdV1Xqz#cjzLEx2i+~$F0N}(v&*Z#n6BK~?>zc|R}
zlI?<E?pX~lF7ovN{IN!->Vr$858wVnqEHH`f(m8f|0(cB3aC;g9&iNT)(nd9RSiT1
z2Z$=7fLZ7!7JYyUs8VeY5d_}?3MWw`P7#5zLV>?RJ{tlRr~(R1U<v@XehG1Z@)r^S
zI4eQJ74<hm?H7Ft(Sa%mf=@wp0Z15MK>`@4fz{Q0SOb2oC4`A^DKRJ=^GAcy@r3ag
zg&gRCKj?BzcqvmjfZUgbq!5Dk@h?HBf^z{?^YeoKmk}vQ7%X@zc#wgF(R`oQ7Dh;I
z)rC@A7!u{DhdoFbTBv`r0vvLvf^}$rR+tEM5(s8EgxleWpwJYJ*aSi-iG6r1fHjD*
z@?2j898kE3iT4tI$bH_I2ur9xBFI|y7lt)b|Ace6ffopirbGg6xPmRngQkdzUib$C
zl7zFegunQG^@JFJ_<>@`gRS@wq=<>x_lJr&f6Um1v2u$bBaJW!jfKN(`SB9Mc#5Jp
zec>pM9OyVCa0H$eepyo#^aT@4ppN6nCFiIjMIn!kGJjgqZd}4Lf$|b507T}PJdF|r
zCghLhcmx5tB`8pjjk1ujg^)x6X$1)rKX8vcXhP<Qjt}tz5BX9VsSq0p6Ad{f$_0|)
z#f}o$C=>~gBO{U=Sdm#WkQ2#~<k*kOwT>@2OCDK1IH{5^(UU8|j*-)nFbNYF8Ij5r
zlie6aLzxjwX*5{3AxvqMU4oK3ft2e=|BpIpe=p>eTN#pCDScD9l4D7hWoedYiI&q>
zL}|&EZRwV8372sxmvc#%b!nG(iI;h)mwU;Ved(8fsYHM&n1e}}g=v_FiI|D0n2X7n
zjp>+=37B#KUXV$dm1&umiJ6(HnVZR(o#~mM37VlPnxjdYrD>X{iJGaYnybm0t?8Pt
z37fGgo3lxqwP~BTiJQ5po4d)Iz3H3337o+xoWn_+#c7<!iJZx)oXg3a&FP%aDUMVy
zlbj@-(8)<X7nEDV2k_!J*eRGtum_322l=x}+qswEDW2r1mvWFnlf|Bq_MSo+p5qA<
z=GiFr*-7Y0pK@uR@tGy~nVJ6i|C;)#p4O=)N00}J@CPM^0(g)Jc_2GS00??GOMoy6
zWl|K&R9y}Fpg`0Fp;%GPP+bVBps;lWiGZRhilGNOp(UfDC<>J>`l5(Iq6-?232LL2
z;-C=fmeT_{qcE9U;-gzqqr&B&GunrV01AH)qp8+_e6R?Cail8Rq(uRwEAgQ?`4SRJ
zp$hm1ihu{Gh*EwK2s~O6W}*mCT2NfN5=Zc*Vfqj!`l2g}C2k6)Vj2ZxYNk&SO^?H-
z!_lWDA*U}oQF&UXmr@;0VW)6<rcWBBI5<N=>J(R+C5tMiDCMaAC#Z8urwWLp47#H>
zNvVmdC6qc#Z+fZpXrY~Y|EhO-pqx5U5_+NaXQ_bd6o$H|E~lq9DX6OosnrCcYUZnF
zx~p8mp}7inY5J&iF{d<&s&NXdar&$;HLbH0t)*!uqVNab=4nPF3an%bqcA){kb;I2
zJfe^XT)|Ku_D?AAt$+}&6{!)c_%HvIt=np7N1zD%x~~WLtK3(vctQ$+K(GW`rKmHo
z1se!nmn!($t+(2++}bAZ8n10Rq>f{%k8`nDa<3ALunN1d4*>`}#|NTNSXi<s4a5f^
zp$G|Eum}4R8JiIY2(vI4uro*)e&8^qGqU^I45ly_DH~lNL9U>Ov!I}}r|>!Y%C9Y}
zsViY7NV~Hl+koZ<|Fqi?s9aLCh{LBL*|biZAU$iflbE$fo3yVZw8jIKGFz&W`hPh)
zwQbT2DtoX@%dh?lcG~K(;zF_FYNeD>wtowDQmeFDa<1vx4C@-TXIrUXi?@Y_uIl=>
zg!?(9`VwOMvtNO^SDPh=E4jl(vk&39iA%LU%eg4qxAT{_6Tz}BYp{dMxU=NA@U*yb
z+jo?!X0!XRo9QMA0u_^(C|{zEq5ueHVmP2M3fs{P9vLz4LM)CUyelzH^vZ*d*1O6}
zUx^U7LsYz6n-HQPZB7BcFH{P?i(O=6zQ7B;r0|Yrxv^cswq5eRMRC1D)fD4fPyV$f
zJyjC;yGd+2|GhQqQQccx6+{9>)mk7CcsPr7#B01XVZaDn655+36!#VfjAFS&cv$;5
z4(z>_3l|jZatcgo9Q+a%oDmX?sW2PASkl4}e8DQrzmFrrMpM4nyB)#HzJe<@TSBQQ
zydf%F6v(T*LjlAX>^L>7dC5CeMjXNC1;S@a!nvctUsJ+aLc~p65&`@WS$rP@QpF4G
zDLVX)GyD+#3&SalVp7qkM~uL3yvD(?y`TAnA_{}dbUeIeJNsfL#dS`;h{xyK1hzuG
zRdEWQRmWZWRrduKwo?j>j3tkJC>&_VC`-vg6fu~U#}!N>Dus?2nF38P7wAHsD9{8@
zc?5Rx|H9!V%8N!nrOX6DlgM=f$vqN+T#|+YRm<WM%Ui0-Au`Cvqf#i)%gXl<P{3Md
zLY{mOP`R9Z3W3ZFn?H-}C8rz`(F}IWOh=>|1W-xLK!h;d+@#d}63lGE-F(f-j7d8f
zr@ve&#Vn}q+$Pq1%<4=!&MYqDEHSfee}Oy~smvdM3xlXE&)D2|XiLvAbt`?G5C)B@
zw4;#8Au)VRKMt+TU2A_;YR=^xP(}mK`m)f1Ovs2q(e$;^ZSv9mtjXAw%aXhj7QM~{
z!Z0vx7c?DSv-OmtxhM+;A%!+uwvz}<{78x-F+B}o5~C4RfMs5S(}(l0#?uU`S`@Z}
z{|ekWTv%7tS+dhKaj;v>BS*c<SQ`WkXbPrP6&-~*yOMoiWJ)8!2YZAH6NLgJn}MT%
z7)-!`rw|3JJSC@+fv3>c4e{357poOx*N0+gSq+p=D;6rnY2A_scz_3Aq1bI|*ms@R
zdz~Ihz0|XG+1hwX4^aZFCbICA6l5XU#f2~oA=;!3)k`?nYkk;&(b`X)Cg4;ZM<9XQ
z7N?&rL%F@%CHC4d0SLHl3c9U<6-Z5^y<m@x+LQedc+EPRt!BR6Y?*DUv0c~lQQPfx
z+K~<2|0jf~5C|T5JW}n|Mjbp1Bi&#`-C~2>)CODat=E*w+6uwkBSY8CFxv?c|J0?^
zP4}G;`Mre#Sl%mf-oYW%m-7?d4d1~{+zqD?#ogPn(%&qx;4a14tN7oD6yX()D*dhA
zs4^nX4c?S()wGS@u00V^-QX*}U;^#|1RfFzF5U(XmX;|6>l_HQ;wE2uCwBN-sNjSi
zF@7a+Jj2uDBM0OU;RkEd*$<KA<QLNqVG8YwCAJfG+o}j%`fc^M<<`@s3bEs_^W{!a
z=1<|{45SD_-b_mo1u5VJp{qP-tsS6n-1T)ld%_SX+5}E83a9{n$cqp`@Jj)S0;Zq{
zK|lgga0)^P7kG{kKd|S3;pc!Z=-d(rv5W+Ya0)M(<{=XZTwYx%B?l<#|K$&d2fvgm
zpa2T673N(YFq@77o&M?KqUen7=#VZ=P`-+SK<l=Cj|gKX!-LZvF$D|3>Z0K4!cFWO
zge#1E<yv>xhF%H*S?nk1V#)p#aGnAH7&gxo?4CaCEamOsUXjyYPu!jv=Uxh7lkL$?
z7t7x4Ba`cm{^-B~?3_;SxW4H44(Wt$e}~?8#*Rny{_2<X2Tb5@ir!FIPUbwm=1p!i
z_rB|t;qKXH@%dix+Ai?cj*v}2<S1a|U}x|@vG5I_I|`xhLtf;~aO9YJ^6fqfagOe*
z#qQhQGUI;h?KScx@8rIY7$X1jF|YHQ&hI_H<Tgz4s~&*Np76Lb|LS7?wlhCW>KO0a
z)ba8jSntRXDbH~$ubC;JIGTqY`9k4B-e9Pb^I~xd?TNHw(kW?QO{m}yQJxWRpB!cX
zw!3T0hZ8AOFtTpm8xOZAfj{{D$oKTO_gNG7LNoUgK5dv4F|@KgxS|zfkwMDs=D{OG
z5EM>A)CVWa5N>-HoBtD?U&%Yc;$)vShwlf1A9e~M2hw2*Wa_<|r>SWO`?62?GQD7<
zFD9iw<ab}l;q=r9)4a6b43e@H$5MazoORW!F17FceK%2{pHrCZXx6WF(7#-m6+Dyq
zRmsm%%ryRuii3DwP*5TMxw8BT;r;9^{69hddshE|(TPp*|5e;y{Q%L-j|YMts5C=S
zuwam8eH1crqL5&eW>F+6Oi?OPK~MudC=%rX5GaCuP9-FWrx_rEftocb*konNlLb|>
z^uQ2LK{)~m9t=`2MKdZ2Wj1RzMWIffK65sF7*QfcixQ6}UD|9X!JZyn!XzjYCr48i
zFM0q~w(40AL**Dniq$Bppa+jwjjQxxTC;51HhYWKBS?`X3m!zN5Jj_7ey9Ly7HFZ?
zrXCei&AQb?SAtBrI=$StGt`0*{hmghTJ>tyY*UaDMWP_7fqYD*@W6-EMN|$YrT`^s
z4=Pf3C8`Xnkaq6dxp#XYL29eri^%=Hj(s*!sn!a6|4Ss1$G8WTYlU76Kfe4$?6TRP
zZa=$rbKR<4N=$T$;Gbp^NuzCskK`0miHU+pXeN)A44VxnPy|s3!Ld*SCBOk~YQ{i<
z5LA#YRQO;IHus<t55ubRXa*GbR2uKRvk*hC#FRwi4MemcJa8uHr2DCv7Hj0qH--9W
zCJ`zEF$ERNQW6A}Q7$wHq0_#Th)5%mRPv(jBnpH<f=C(5$|I9plDsCLEa*OkMtSb6
z4};{gzct$|Xv?$kICDTX3u3c0oo6`P?;E!x2_i;>P+LNfsM@uw5wS<@qSPj4?NO~p
z>^*9a+M}v9s%o`AyK2wUR%<IQY8M@O{GaD|-rX<n7uWGU?(6zqpYudYHQBIeCh#R2
zX~}z|WwnYrvLO05lXzrC`YN*^1O0!RkLu6f7QtR$_=p7>E1o|PpJHVE`*@U^o0ndJ
zvJ&qpWv+A0;F@U}nfpZ>3Ps&gWlZ<|akt7d?hg&}bpF@p56TP2wUT{fvMoi*vbGjB
zypFOA)daILRHmG-&4BLct(u$rH^|;D^K;*QVH>g(GY>*&b8eVuu#`c>aEM4#sg!hc
zFxw(RR6{ypZ!EX;p`L&cByQxlS~>Y|!RxOt*;$*FMQ?fTd`V@i_%%Hz+InRv7qKb-
z3U~bZI_lpaR_Pc*I!jC<{P|T3j!Z~+_ANz4VPLRGB>LW_tH;~+eEOhP>?QRRt4Abj
zYwkJ~l~s7X@>aad0;?%=RU%S+zgMipT}^D;uBq7jrEs}f8;yDjL+h74|17+}OKHm&
zhd3pK?r}aXF`d4%_fos|b5ynv%lhqx`OVJKlsk^?rGr9;pC$U$%ZvQp(Wm|KDg7pw
z)z$Ek@8M1{=!(j{HpUV&=K%wqYez}7;*gcc8oE|qF@ZKVWh17Phj<m-YxsWmBh8hi
zRv=&A{(Qb>^C_h|Se1IqcIorr@-<4f&-j#{O4Urh&p)?aYS)DoBy#ZX-`)58OAm&;
zXKk0V!n6L?r&ayr+kD~1y6y)He#mWqvib@~Bj@W;(U^z-XOw74)Pz6kE_^MEZWuB^
zsb9&rrw)iyD{V@Zf*vf>NYVEE)6j`|p3ifK(DdKlsF9SI*A=KQMh$A69$ia0=TkeI
zOlApPc2OM8qm3ZZK1l!y-97@$XqLqbnoT9Xm!h81%`Fg;J4n#|U7Qkugqkj+paw)T
zR=T<m@?<d9xWfn=k;gSvypiH0w#GTLRVY^XBD&s*lW#0u^SbMPFu@^7zx+xSI}18C
zPAu_@YMZdAbyMPO0hho;`Or8P%v_6%N1j*?c?e0x3s6;|?Ly&(qA&cRdO~O+Y^N%_
zM3ytpIv<_MNEy|$%$$BSt>F9rlE4Bv5sE{i8?XAv(UWnVv#aHI6Lg6e#yNa><w6pQ
z6^!DpK9J-}sci)vh9DXL#Hn@c&HN!(F&1$Us}Sm;DH8l?3nA>xNx30&KGxWBloOWq
zE#kgHuT|Y<%6w6l^pv7LmGo?k&E@Z4A*HEVv0g;;(eko32^x1F8T%-nh!vI{c<FqM
z;}IHyr#G6Q8Kj`s1h99+K4}~IezQ&Mf=F~$%;a}Gt6`Dajy0-l-lro6^X>OFIA`|j
ze1s&<zTCEAU#Ti%Ht^IBuS@x7^q5>E;B-^N;9454!gMF{deA7=u=PH+fyKFwV=6<}
z>buEWy*bMJnve(Puwr^AHE+=IyIE0HdI7sk-P4a(@8mUh-q=kJ2;LPnby~25#g|7A
z73&>2xm8D+g_@c=hwj9b3l6b>8_G4<_oc%NCjMpPqE7T2swnrTlE7?A>KeOtgcJGk
zjn=v+yk1C)&!g$qK>|@O@E8kvlLXFrP)U`S+eEWvqfK<j@0B|DhkZ8W6~c?FRX-vU
zpIJ3#u@m1m?P_u+S|n`A%HGVp=IL<N^6Z6NJ7VBogpieO!Y=G`c$=}FS)2Ji)m#P<
z3B04bVh8w-_!i<iqIPyQgTIJ1RtFu)uZe!#%@c3U`Bl<h_`1Wsy-6?B)tB^lHS-mC
z1)-qW#H{le7%M=0Vn3Rn!sPe_zT4A4@ZY=Vp<hrBd=^0qH%acPSjmg$uw=+g2rFgP
zpNedIAIUk8p|iI39r&?l?R_&^h<o8}Mz7wc&iAT?AI22vTVtb$*8Nn${+zI4E0p``
zoVBxKh2$-dQNQVcb<xpVvZjdx2AgihLIO(SH=!aA_cHEr8HjVtXb-rYvIt7_GILcU
zyQ6|76X=@l3uPBTk55UtY$63WSiy63gNudX{Z0&Q3Z6}_%r#Pn?)0o}NSe2K^|yJ6
zWo$}PgL2JzZqA-#+9o$5s80!d`dDo(9qmfPgr~OQNa0^E`;a5DwYMs^?BhQ7cCZgu
zopkQ)RsL^ai|<;qwM_(<(}|w9lB8&_|G$B)hU2h^W%!zM?-6gC(bsD~!~SEZ+fPKX
z8d5<;z-rLy(wXm-Vt$Etc-EkC@_izsGT2Uv^7>(Qi1XgAb9qkrk};C{_d4~ya3ug%
zvEc7q&K!-w0NWLWAxk(vsA44&Vx|z|r)>{4H7cX)2y60qz!P8m>(4j6nK}!jebvgd
z!F7h4f@%tP50Yk{el;M4RbSN;oYZyR;k(EBXumNiJKc5L;L*kBWWD0Q#Nr<y=K$h4
z>9j1(t%<B4_$ae&Q%l@&-x%}9ui#++4fB^RZT_@1x{~9!0&nROZ_Qx;?=o%V_Fjha
zm(C|W*(q<2YeL$B3Rl7=O~+5F=UX>X6X#@d+_qs{hxOmPAxn$AXZOFwZ={Wf!?sip
z-{h)b#?O`%>!J@itlEa?{ez?KZT+HzrFC4r2MgbNaPy4XPxWZ3{K2SG!}dR#P{-*d
zfoyHc*Xr7T>-XN>JEP_KoAyZcK=8(5Kw6((7e%sr;&<BYZ{;Q8lV88(DV>nFg^G~m
zn@xppKnNBZ^xIw2_C3$exIBgC-))r7UHna|Pl33T!kh0q-_AGR{O<IcGcY&GzL>7P
z&6Pt`9SW?#X0{xV1~SPrLp{7jxCNHpsLme6gj_8su!NN-1jvjXp~Hw}ZZ-9EqY9uI
z&0;&8JYw{M;POgA>dMJ%yS{c;qv*0Tlqg2M;OPs2&*`c->Pp}CDgcjBC?ii<g}ln8
z6{Z8z3}^ABs{~LBOH%X7lr>R8d)u_ZA&F!YW}c5Lc-kK&n#sK&Y(GMcP)0{qS?rUT
z>2Fi$C&;2zYWomjJ>N13ygSTW0j$+{4Rsq0ui-XOnYyxbt(DopQ=*1hsKx+imjyV6
z3Pmv4A$;K0RFBTIZ;#g|K<&-qah8LKcILa_80-3qTeAI^)FJ~hjay(1lVx?5p#j%6
z^+N3dFO^<)vL^4JC_sRwj&&~?gO6JsL>y>(cmW-|(jUyK`<rQ5gVO@^-;MA05CHf?
z%Xiifw9MkQgjJIG0{dh72d}JaJ?cufW6-on9<*1{RM*#xt{;l>geM}3VjgIxgWqMK
z<HNn)CA9Qvq0?h2UGZV{I^@y!ce5Zxi$la@Z7zgvBD8uI87XKaCCpJYgV7zZ9xiic
ztn5miN!Ja@z<(ePzl89``K4$o4GZ|^B8g=PB6{|0n5RxRL}w)FjH+=K5o$H^HbE~L
zqnDUJG6x|)BjnUS$nA>0(&SA4Utmi0pU7u~$WEJ--WJ{7S-l>wE6tTM{a#7U;L(Ix
zy*Y)^Kcc!r$MgfUS(^T%30`FtX0MCd^ut!J&LPLTRSYJa)5aL8`@{^k(nn`34Ga>-
zKCSEhhZ~*rVqCIGoFSx)Mh~ybj;|5M*UiR1C{%3(j(>|D-^v=_t{nf~GXA4~d}nri
zcYS>Cc>E^?eCwOn_&$2#P<G;oFmY@)amg$_4V?HDJ#n^fs0fihZ<+YrKk;XF;_v#z
zzvBrCcoM)iNhLH1ygmuixKtlZQoBsj1WnS$OhU3J>8d9G2QnR)WSE;|+?ZrKnS@bK
zF|$p<g{D}pPqAuDA<U=PT&CEArmn<HaoEa>`i>-&8*_S>PJA|)TaI$=8^_e@DFH_?
zXHm$ME6CzRfuK^p8{^!?P{ANW#90*fZ`5r6)YXA$G20Zup(w%`h((=BMLSw$t3(hG
zoq7n6;iZ0{m@?p4E6F>f=>aU56^mUpk=SSu)Q-NfVJeq0Eb}~7^^56MMl&_<4CTMm
zdlZ}*%bnS8(dD6>F&D|>QF#@?ex{s-1~lbn2^{76-YMGG$Mv!+bzd1GAknyeMbX)5
zbC)^uDv0qJsOY!cCEYheI>y+t5{V&HXVMuDMM0&mwla$k)SBbk=AI>|p08&1-Ji2`
zX%{q#CZ>FlHk(UWoJ+dIf-1~;3(ZDNeeh<CJ|J3Hxup2Hw0~3LavOWS_P{KZ%6xZ6
z&Dbf$VPG~W>9(Oa%`KOdkQm+jwuyxF+dq<}Lq5*@5nZs*Scu-8*tDY0on%eQ&#gjG
z<4Pgbz!+og#}A5!?wIn#3&qr+<10-*yq{!<9b2&1jjoW!BvPvw6J=(7t(30D#8Mau
ziTNKN5AYRyG5+f@AF^`${5W}Wa$$AHjP}Bci^2McXCYXT+QhrG+I*ol+xmAGA~qf!
zTl)f4o}+ch8#qw;oC{um4f6a|VkxK94z#guu5zidaW=HlWLad6bSLpWRQ63?$1Zo5
zxq<V_RkqHSOF}26hcgBrDcm?MIGJAYYV4BM8GT9XWaeB=X8v`_;;c1(Nr)Vs<3VHe
z8hJmLeM$cuX>+`gZY~fxnq6FegZX&brWI#nk1FW>3;(DvJniyj{6-8w*>;Q?_Nm2o
zl+*Uu-sT<S*QZi8Ay(E?*}N>6$k?Gpy~nom5SwG-SJlw3PY1s4xJ(Q{l5bHCNEK(*
zTDst5w%Viwo}bi95EQj&DK0Sav%dB1GTWiKP_)^;@v*kSZ{GZXlP@dlcHqP%N9h=(
zwz{cy<J&0Cvb=mHl^6#+lWLoYnIsHBN><{DVRs<Qs>EQ7Y$inM2OAluLWgi1@DV)K
z)dwHllj%j#RR8QXkFvSu*gm~d0B*D|lW`e{p#eq<hstzm&fupYKL^hT5XQ~rrc!%e
zuUPH~=*>2f2kkWn?hYpX=zEE*{Nqp&@k~tos@=;K_5?DFiR)Ef0rc+bTcO$Ylhro+
z)iHZs2^~jzA9%j;DveKKx3Ti>+}e$=hS<DHoIRhS2{`J2>8?f$fr5*S;^<A{DAxcw
z@0>@ey_Jb@Uz)gKaMMEA6ks(MS~(PNu7NWxs=(iRBGCCz#~;Yv+6mEjrMIx)6iFZ>
ze96-F&-TyLTH2EMIRqMw5^lIGUUF)XT??HMasf~eAxZr|O62nDzIsZNs0mgmvGN=w
ztkB^s4l(ASHUd}{R-me#fr`JmP2)GTE3ZAUMbA-V|FJ~lNH%DrXj2XjMEjK%ZtAeR
z@xHFgL7LS61S<Svxw3GsF0PxVzMBr?bWRb8_qXXxwAa6!e?v%qn?0$inshs|hs65O
z#HBU`M|=zA;~<XP{A=V)ZCh~^j~QWe2`<N{X;Os_eru)Rlp}E!>}tfUU_Bd)a$C)u
z{L`p{&9zeY?>|Q4d$u8DWO9aN<<GICzDVm{uH<y1?~SENnC;Is!HnPF^&T229M;K$
zp~*uF^sT==-jNva{}`WdLd*vtuY7(Oe9-;RF}_5xya@Z&HBS(ScFvDSmvTJUmQLtz
zqvIR<qR%B9JH#<#SzI+cA7`&@r-z+fV6J~LpG~*$AA|wHNuNKN^!CCb<<-u7^Yt`{
z7sJyQD$c}md#FA4)g;o6Y_``{sn@$f;;_AUYcM@Z)XSj&F?;t8xwhZH(X;JB?%56e
zQYsq!-ZMdRuPk`)Tg14*0m-v0?aqTr=LGimQ7qpn<2j5g@MkYl3kD$YsnnHKXNDg+
zCub=fVRE8bKFK85AydXqW7__E82BGA>M1i7-A~5VbaP`S+7<QsjM;Q^E0!(m;3mNX
z*OY-wY2%?5!cd!*x3h+1j871nTP@?jl7T<SH?Vb|KhpOPCYvgk8E`MXMq4tr5yIY3
z4=M4bf#JCv;@RZsuiQj{Zl=F*$pSor<pke(>b~nZEUQK3L+|%xC3a89?eI@8Z>1dP
z-}j}*R2=zN;}aC~Fk1PiiiMawJ26<R9KHrYQ$KrFvZoLbMwicHee~Hq;CG&|fFI|b
zRL%-DE{2|tIfvqs?N6mweFMKF&RZZk1(rf6=e~DLAe^TFNs7&rjP5lBe#Qo3{lWf2
zRjxop{x#80s%Zj6Mtmh<&^%wiEAxSqwt+3d%3L?|jjyD<qvGbi)HDBjb}OX+gOSs#
zu%Nb5y!Aa^=cc2~4=2J`P9176ax9!~0<~TDuLWclAb@3&cn_8i5gZ<6_7){|yQ)y&
zD5?&{C4I`{SnU}%ZFsRLQ0G~%Q!cJlATb=^by0P-PMB~j1qEya=MTnT6sq|6wzB>p
z(Av7ayRDI);M-Sae3-&Bo{_3@Ji&H`IDnZ+SpS;N@S3hJWxiwaIzEE32&X#RHVHER
z&+lcth;3%meVAq<t?(VU&J2;N2mz@qN?b^cQHTgRX+-$6@ZI?g;2Bw4LW)6!j!Q!I
z+?Bj_u6^+$rw)?Gb^loT+spWd;GU<a7e_CbpH|;XDZUM<7ZDv)tg9r`ODjWapoH2(
z`lU|-`sW~(ZV*D{bMe%#Im=Lc>~T)%<GkMaXoYw>DTyxpnW=H8-n-w^kx20{rk8ez
zqqk@2uj6}420QHTPmDv;@A<u42uB^5yrRG#J<Pq+@Mp3VKc<z^`0G!R$lvLkj6y#e
zOgdXQ?(Y)S=Rt2FUV<?1fYwRUUyY-ytzLI71{!^wzCRF*gdII(;+Fa>+qAgU5UkiT
z4!J4BEzrQ-%<UQC$7Fl^chk$8^k@n(JWxG{CE_<DcDU_V4*PEy#A&@uh-Iu+4lNk}
z_Fch$6t7>}k67~=bUOd(R=hHLl=wcxdkW`8+DA(2%3y#nf#dE<D@3$f!S#dv#uWmr
zf`F==u1~|E$5Jof%uOq5EGQi?U05SsU-T6jAHq=Pt)UEv0aRaY!*w)!j9AAY8i<)H
z*Gv;Is0+l-R2!DyQ$&MA=jtpP9LMUef5U1Rzl}&yXtXL74lQ_ZoRBDpM^xz>D@s?H
zVG*=!4h*`DJ0Dv_uamn9<((5>*!KyjB=v89iq<!b^k*R?VogvQuLx%fhwH<%^x-$e
zPLZyeC5%a%TwFU_WswEhltk_rL>&V7CC4KZI8pl~d`OdyMPo`U(#@3bPZ;woRuM}!
zQe?}E#<m%pr7KYn5gklRFZ*{{AwL--<I#c(buPrzG%8;<;pnA~ePo4^G2E~YVF(M2
zI-Jsf)X%xz!#}nhiDz~@$<mT(r6b^F!g#<X4<1a07?D8ifs+r<#|G`9=ZyVqgFn;t
z7X?h}h`<TrCRrcjE)p=4kJPLb?CfD0X2u${!fp04H-diIhOS+kUksR<6G;#EzV5(I
zHvZ&-BtxZ#KB(2m%4-PV!b(>&uif9jgY03v&4afYUJ=T>)5BR)6fkX7Qyj9IU-Kkf
zxN0i>kz7<cF6%la%FZZ72tg2dBz&kIGo~$tD2t_`UZ}|UN4-@-wsz)pvgSj8{nUkl
zD152&=49<ymS|?Rx<8j|9q{}qHt`jZ%hM=QTWdJIQZ|fmZw!-(m-#;R{YQFvaxf2m
zSYv@!RDE!h*>$4|mx$CXLniWvpB>Qp-P1H4POtqlRf5@JjHz=UaW8=2g}UUNn{t7e
zWi_ATOcuJ6oOjV!oFcI<8d1&B5PR{}Lia!5)bDR^%I?zZwtm)BzUHOezTl+C7RKE4
zrdmAusctP$^xiwk=0876N+Aqpua{z#eRQTxMh>37yx%?j%&}bsJqi**3}8>ibNt3R
zv7Z@UqBtojvL&Xbwy)-HI~BkBaAziA(FDyiRf5y6)z6yO$`}h;z~|RZf6{-&DAE9=
z_LIY7&7QI>2+6V$zS6BcM_}&VpNzwz$|jvn`~;~_m!R3+2s%d*aXE{}BI}_>k@Oq#
zrUjnt?dI8WvZ46cxb^c*{S4KtFHAS?PQxFBjKA7_z4oMYuk+|@=g<E@cC(8;6G`@X
zd6tr{LsYiC3Vuj}|IP7?sok5Cd8d+x`+X9W0%WLB#yd<k=Ea+H^KjVPv-Ogtx4(b(
z@&EVdXy(5fo(`6!Xnr#0kd`lJUV?Ocil6d_7Dpu@840yPg1EQ3>yMW~uq>S&;XF1W
zOUWn-*CLWud8-HJ8Ux8nUp7~ojNIBqakCMi)HIR+YLXF>sIAW6N$lfZm5j|_KwVA>
z`uKrT@pv8qcoMN+P(Ug{*G7Of|BNoATQJe2NPz7baR4)nqq)5(aHVr=Kq4Z8rx!xQ
zIYJziDQ{u`07x8@TZ8hwQmOt$g1kS7T1s`OxciHO{J$ap2?M3m$vkKjz55U@qMX;>
z#+m)f_K+67ImxlBf^%+YQ2K(LS+Ix}QGWkk<w7c}oJR;76f$I5E}dOxvw^zVl&Wnp
z#XA`q1pw^R5OMIFjzyO%BT||M*3BtBBx;by%6lgPnfzie4Q%1|s2kqYuvV7RD`d$@
z@YrjF3fA_EN*Tv^oEjA_qS10uLm-spO#F-W4e85UgSuymY3ykv_}i1^Nfl3Si@lR1
zwGYaTmjeLyIPom^$tZ#2<k4hdb?)zzaZDRoRsa%wdb=;dLY7q-08lV>2Lsl-<G6Q;
zNGZ{N>g4WnjpP2S{O=h&yDQ*;QY!J6m=P{OH+;X5=Eli;jT-<Quj(s-n^;bL8%SUZ
z<AMgh@VnV9aYVUEv8cI5m@Xp^fK_w@W$~)cIQ4};%at~=c8}7~izl*GcX%B|tUHG2
z05}?erMfsb9W11t3LpdM2FG@2ltSkk%*5(=qqgbolBoc0`_z(@C)Qf*jonSRf;7yp
zdVU<azn}gX08qMwj*LfSSF-bNBX24bvR-7zdk3Kv4xs?Tta(z1MnBhl`mG)dcw<{t
zx#ES@JNwKG27pnF^AAgaIAT7fD^Ej0<s3SSm+zQnT!vqBNDxRx0?Nk-LXDCM{EofP
za))|@+pi{|TwhmIZma}f%ZT}LD%qvnPe6AKtLxhc{CE0g<$g$;?M13g{Py26baSKn
z?CIs!slvSnGJbS4X(9jR1ALLUJBN$_%hV5oXjHhi8QMG)5E15DvQILYLK`c%)<|(a
zRU8Z0x+t!X3oiE_{hnB63Q6s@_mc3KTDaRU@Yr=-LoD=wGHBZ`a3y7+QX-U!B)(6+
zGIm2S!>`F%_;JRNW~-pMS)(R^=rB^~JP<hIwJCGEAwH+Ao9lY_n6Axo=Z$(WAb43_
z;gKRhV`~M-Zl3^sU`4y4(w(b;blCgQ9`|>H3Q*Urt|PWQ0<rfMjs^g9x0XjNw#p!H
zcZeE=*IASQ9Y<^JZ$O96#}oD(*qN8z!O9D>o;H9e`Dd493;<c=oji151ek%Qd+my%
zsFur;A%JBX*1T>;05g?KcOM{tLsW*RQ4_S-Q#|P-r9wkRdeSS%>jS`Dvm-IuKIwby
z5B8DlPj^yWU40MqzT8X%0NBLB*zevI1p7J++EN+;fKzcC=P+hbqQQ?^{X=iAx&7#6
zJes=8vM0CGcSB*2d*v7VVIC}gGc8JG-SVm<H9ILrw9OYxYe^z<@-FjQAOYWs!OQ^M
z2arT5kfR$Y6zfaHXMG=Rl@|@CF^c5x;F(>PJsAs$r(z_mvShU30E6z^^gD~t45odw
zz=5&J(R{uBw*WvLE<uzB3E1Ctm=3c{0Q8@;m_u-Y*@A@3i7p^*?WU{MT`+*Bl!bqw
zH*zH6w58!;LNPNfhn-Orra6ikA_7(}w~V@SCd&;d1u1k>(E?P;55<@~5Zg!qQQw$G
zqK!tS6%_^P;>i4l9OU`93j}mKQc@3M0TR)_0eADL08PjWdK<~4jpkB-zR(&Jy1Zul
zfC}&oDVS+~ux{DEy3zv}gd*)nZR$&@94)B8W|Kh69Y=<YDyQ!2OeCpL6L!8UihqCH
zd!)eT$Ff%64`DBj>Q}b>a?UIaAboMc&$!?#9dP8`^yf{Vs)h0ZqP)WKH~>c;^VCP?
z9iz#ENj3nE#m1~6drruxl=^g%830(>O-BPrr5dGFuD#En^Fr&)Spc}YDJu={9GYgN
zQd4O~St-;NNZ(=4>IdX705EA!3AW8B-ykEfg}2~jDzJspdKQ9;{Vpfqy8e^|fF!4F
zEDs>Xm)+UDk)Lsye+7u~55BRJ9PJgF>+STjk=y|S(y2JlfdH>aPJ<H8fjd3L#{1{o
zCsZU(91ozSJKG?iXQS*lRrf^@%eB#^zs8P2*5xJ$7HBmWjOr7UmjF!TlZX!z(8a^-
z?r7EX5nxon{JfybxIoC)0z&?ByJ}TbczNn%lA4DED|Uo!+mP9onGyivhm%y5v##Es
zTontXzm~(c9g*%pjyI8@?kHK}0zCl-wyBUMeC9qg<0at4o1&-~fb2kk!U7K5_!ZF<
z>7_FTZtD?$)5kN=i+s`BHD%moVAln|E#Ae=1t(p}f)9lCAj^$;o=|bQQ@y29R|oci
zh&?E-N(!%HzF=Lq)NU`G&8nuqvz8_T#Y>_Az@Jcc0})g@*8o6p2800zk6DL#n^jWt
zg)&A$klj=aIQmopp~l-{%>|czzJ89QB>7Xsn@Sip4!(B@hAH^{chNP2O-5SK_;6B_
z_Y>TmEKiye1dtd3BoGcC=MG0(7T#7ZQ&j{3B=HDdAV5D#(ZdqFn1gW7`;A43y#Yzj
z!X*~J3XY?Aww)yRog~i${is2X?cE?*07%7(lWLLcDS%T<fODYtCSUpQSAc#sfXH={
z;GToX23hm|Ix%xolO>b!E|S@xmznSh2(}!5js`HpJ$lgq8vy&CPZ0*aKn4<p*{p}n
zrU%egT1CAebcTi*%!>KUdT(w%q#{AijK)4*@xGV@bR&%gNYvWB!T#Su)LewMT`J(n
zz|-_VX=4jATzRsG>x-KG$84p=9<Hg#tvS;Nu7UuL-pg1zBSGC}!vtY~W3=fbv24jL
zZ%EC;#Z|hwf_m(L)yH(Mscgc$bvUZ{NYVOUQAymDBIAp&{Qd(}^ph!2eYaTNRsuVM
z^C_v<d%DMcQH)eg%-Kwyt{s9;11(ALhX`hpfYe3$)h8CIA2x$NmQpcsz=Sq1?BD$M
zjQn%hGE7{6;v|>@TM6A$m^mqJI^Wv-smCXt&_txnDQEWHDodFNh2@Y9un>v($fh!@
zR&biFx&q)q0tM?U6kp_BxnF^J9tl31RpwCVr2>KLjq(1R(M+4s{%Tb5oRSDYTt^1i
z!$?l65{H5edRZLLbBqWT=nAn2<)0}&L`=!_c&a;(+~opaFbg@)KG<H5JSW1uKTNdS
zYE_9cKfhfa$qv-V!agqhW;)&?TRaB3m=|Qf0P+HA>p**x&;J>X(K%E<otwYTk*DdB
zmsnbL?Z-3W4B-b+f-$`^fuC)P?+7~du>b(5?mn4xl!O%sP*lkFDv!6e3Zd5f+5rAg
ziKX<Du?rB8#P?lQmza8^TO-GKU+ud%K!8uqmD7B)aur44e40_kSIz0|A@Ur5rLFr)
z<(6<l-BYsHko5;-whi-K5yY$qZAMjS%;iOsQDu%}v+rTnUjB08;T@bsjrqak@`>59
z7j60J8B0y$p%L1qXX&7u&B*%Ewiwuv{ERJfn6LY*-|E=Kq)?j?i+v<hW$~8*8@N#~
z8WA~abu~}C0-|~iK)CkF*!y+FRWUyyyB=1X$S3xGAeHwx#?fwWbd(}Zj`DI=n_~u*
zEMA@%CCCBL-}Nm0G{sq;f%|G~FYJ*T_MKxNDBgCbPqT!*h)TQ`-`#@|W&=>A_i#1>
z`u*)L58~@UP6Td?rf)!ap8H|_(5Jm!xh$ljJB3+@s%)%)S+0V)>`QJ6Kw(#Wyu<d>
z!+D{=Ph93WcC>pH^|MF3BBdyv=dl)tG^8S_pSiX;67NsgZuOB#ud$(J_46r!^K3}$
zx0;}zTn`&q-0=$g(+bh}mqK?iMS1oqAck2g)GQUxvYBG)*QAsvFb9C6-15N-V{pq=
zj)Nb(O?SFAi8nVbB_wTn2YM?q;gUr?WW4KMafT?GjlTPZL|{*@)MZUzy2tl8=fwAh
z_ZiYM_r#HK2QoS<7jE7w;@ZQ=pYh-zU1+QEI^DrTHmPS+QZ&F)*fu}w#y%5lN_ev2
z)+?;fds2sC2CtD5;;+d1wkN{7&qmyY0@mA45i(WJflJKxIzP#fSSII{!6kRdQ9gF!
zLw>Y&i}a6;8D{qRLDEcBACRp6s2X;*-*aqf8~~nPM0*rtf47fu24~5E(7}Pw#0&8}
z95TRPBq|*h<&Q}^M53DQQu-2gq`3jzERsMpqL-edyIA*7837V8kQ83?H~rEp9PTgi
z`w*PsFG+tS37Yz&dnnZhlAWdEnC<44#qaF0E6p}vtGHwWyj1%Lg#0;_yQGCEGsEri
zFy~3WT6Iq`4Pd=7aF&_N`K5g4k#gVB?=zBu+ax0I$ix>1M0eB78gUQ<R6v0^`ePhx
zpc?nFnqVOQ>M>p>P+j?$qOKlDn79?ILe0OdW=81YuTTF_+RYz&%#ShDdK7rRV2JQK
zHa4Q#bw1W{I$o<kHnTh~u9Tf^l%0!j(R$oM_;GA_+4Y{qm?i`NVFqG%n4n-hlKEX{
zD9Kpx`ou!2CQ{E-4E&Bc$O0FHHw!WYzbe)b!rPqeN(Px69a}y=nKPnty+n{M%9wav
zH*-GOYm7Ge9c>ekQeJ=E1dPXujiT`}wocdkh_8%1HSX4=TKBy&<-R2PjhkVDt(05U
zfA?VRX^{ZD%vQ2VOOOWW)L|xQ0(p9((yu|^e`kcw9rViHNrQOxmW|8+mJnp#cIq?|
zjOQLPJZqsfqN1!Z48SELANE7(kUg3r<911mfHHu_64<a5z&e?_zD_u|WCAp`>gtD>
zq~ll>B5l(FtSaNaZmIq<A#0`Gq4d<gCCB_l_(xr@`~rUI5VY^PjfcJ)zh6S|rKP_2
zI~dRNdNmKc&=vBqB;@{5^n=dVkHWiy1r5VXz`>rc$xAf;A{s$IUPt8;j*fdmx#gpm
z3|PCE=qwdtCxYYY12q<dO(c67i|`0%IXa&B$pwS<B0c0X!Gbp4y%gtiYXl>kfQbh}
z>!Gy}4P+jknIQ>_h|fk7ZjA;RX}1{@BC!k!&g$*%-JxYe3hu{eY5dgPL)Vl38~q`6
zy(L+WVn2VT#?$jkHY$~$(6g+cC<xAF{neWno7>suTH2OKKb&$!x8SF?3_<Q0Va$Fq
zER3WGjc><wht-~)PoeRpg^C5w&ec@HvW|MPmS|Fs&UMyX+(u6FDLR$mB%Us4r_IHa
zs1Dl7?sEMR>{fEEC-iAjXnp4qrU=iPb!J>j!ea2u>7*$lt$Q9GQHg8M!+$Lr;FqKd
z+`7nH>*p`Udy>cnv{aZZe88m$mqfPy87sh{fh_ICKss5^bnSVxGeKdGB@|6~dYY1d
zMH;C+;t6jy?P*q~YxPv-^X)VSQ?V`(@bUOY*zY@|zoL)?bLDVP2p;Jx&w}ZtU~%zL
z7_#-Vw!S#%e@DqZH<j^!IvZKTv)3<P{8Gw==(a@lx7_YbN(MsXm9V8G&G>;q+6PT>
z1XBOl+h59GD%*$UK_i`AIP{-hd6nq;PR)=OmtVB+^}w&>Uq5^x*FjN%N~#Q0+-JQc
zU=ws6Bj3E2m&Y_tz`*gAm4Lb5=W`?XKZYN*^d<VxYVa44n`jgLy5e#5o&3uxwUUvn
zlAW~sx}L=7`B^#l#$kiN@Wsyf;jG^;i^69f$&nzTc|S(g7jAr2)>+PtPB<F1N*-Kv
zGxWOB^>*j45l51pLVRf>I8!Cjg!SYbKX|jSy@Ve8x%2OH*{G#Etw}b=l#Zncy~ekT
zo&OAc|AmhxdaS*rtyi{<`$v?2TlPbL>5=B{Pkpxv<>k^Cb%mSyldA8uhdc|9)NNWn
zhEwEjT{P_nCEDvpcfFyl*TbX9H3~z}sV;%WiNd}P+H`WMJxw0#fM+cQ3+Z1Gp~W2^
zNc!48b~T0wAKNpR;p6E3<_T!8BKXN+1!bWMMrJRO+-kzk{zhdOBPeTzN&LGCyy}<<
zMmh++jx%GwVPC1ptRbTU)sjP>NpFs3im+DmKy;1pEMovhhUhHh(^|CxwF43x>NZT+
zxK4lQaILSDuF2!%`^m~!BwWM-tzcee9*4zA*KhY+>k&k=O&d^%A?`A&F1-KPI&%G-
z-ld_ma#ZsDT}E=H+&*;W2e?g?sKv40C<xqsQ?Wl3Ic(|EJI8ky=B?SQj!fXT3l^)A
za(L(ZU!;ft#v^MTSA#fxzqN8pCT0vQJp0@C{u)M=w%JSi*Qw@e_C!Z&!M>0;xeBN_
z`o-&)x=N&GwzNwqQnL$G@()30+3NEZ?8IHG0<#ABsw|Oy8z|Jb-btzi+~C;nI+lap
zL(;q!NVo?3nsiUK=*7&f&J`Ahy{7Mj<Xfs25PU`j3mX~}Lx^CFfgV|}Pqgrc?M%Jn
zk7O_zLM4bz4+$pmXfQDqe;&y?VBo3cgt}B*V>ZLx*MU=_YPpCAjZ}!Ket&o3jzVq$
zHnLs#Aj%MRCBP=RDOVR;m9N6mAzdjg^3q6Gl)5OT6kFhcf8*NfRjmh$U>-oIloQM8
zOv_*1D_4%3mckR-A23ZCxQ8FMAG}2bj52V~?)Tghx+Kl2U!8@k)51NDr?f><d}frS
zglf%9({RaBSG;4)OmwR}U6o@ZuA5tG9&Bl6QP@q`-+MNVS$y_x-~I6UUXM_wyimTg
zSBAK0sCU-tAtI@&m}xFP5dgxvOlWY^M~_8<+sD!#GEToj8mvW&W!&8F27TQrusXx+
z%i79IHg%b;m*uWA?x&g7-l#Ik6CVh;sVH@7f0u%}k>2(ta@+v(<>31lqJ=r!BuqTf
zw3P#W(`_%YGDZ2r$#OJrYP<B6NW-DE=ogP)%7t?mUa5&JV4DB_tZCf($Mg2RPoA)H
zjtxPfG)&dgH>Zuk$c;fK9ZY?BpYFFv6Ukfnjbj-rEuQ~+bEO_Gsk(H9<$f_+_9*64
z@Jml8TDlT!2Qwy8v_pf}v(KUmOMkQ|&8l=gWD_b2yZLq^s)isubjxUdFm>himt*8^
z??*o3*MZR=it5pe!rB3KFQEx;p6&)#fn;s|TEDoArO#!<M~P>lpPl$azi;~GW<YD|
z8cr`7dSG^c4&F;F{kdmqNtiO#Hl96B*OnYWP(%xsqYyn0HDVHx<;W@oj}<Ucd!+~Q
z2!cpOz`Lsce@d6C;k}}!T~%o>{30&#cWJ4ifi@MNCR`bzohTHVj<~0}5Y6%=T?(rZ
z^Zz|JPR6qUdIg^UPGar#iFh7{ndq1l{G&fd{J@$xVX$bUVkl0H*^)(B?-e#k6)eCX
zZ7D=XHwIv@I#T|{@t;pkM4a8R2k~>LneC>g++F17$Y^`XPva-jaiq&y!ZEPb#vChs
zY1qW|;Arua4!jwr(Ax{(ugmbn{}dOo911Z6{cGvO%kRcCdpu@eB9bYpk_UbM<|rjI
zt4ekQYpgSTQH+NtQ6A^t!({+XipD@flk@iw2da%9pK{ioMSTGeJT@sR7ejA>L?fJf
zzV0*%zf;8jE>KI1;YCHq>*i8Dqpon_BorpAMPmLm(%$@oikwdZN<73Wy0Q<tmtrz}
zA&z>>>n1^C=|CUyHWd@gQQ&Jc1gn1JW9*X`xA}bC$jk4Q91dUR{Hv__X^+*j=3>p?
z`S_J9X?`-Szz6+naY)S|+PL6^RiPAsF?`E8?w1oF@J@eIgX$^PCx>W--mlRC)um&K
zfVtX4ca7`>6{4IvBIYyCE%?TanRxb7gP`xGWy6C08p71GCJ?$*`?=^+QrN`W=a?4V
zd>QWn|3La56gS+#8`Z!#q)l<MIB%5sGig*=GKy-c?P6|x@ube`i?+EsOZ3YRgcrD{
zSKSW3r?&{lJ-4T(vw0H+ej{30pZXADF$c~Z*35oce6r)F#{J1S^_8}e?-%yR80)#%
z{+2NAcmb16>yP6(t*>6~db{g=64=&b4lTv=X*wVlKjgfAOZ~z(uFz&fJhy!;NW68O
z)GTnl2Szpm_X_{E88?~lSeV-j>EXV6keb`Ias6l5RN>u|7rAeCgMNmuaNC`a=e|98
z_4DCDq21rT-2eWb{Cq^kV^0Ok>!z05kAxT5Q`2%#Kl0t@?->3_b92FgHP|=0N6vDR
z#{u>@dM>S;vQNusCk(Y<Jc#G*qn*!*h330(C0^li;+#<E!axW}mMz_e6%_miI~eIR
z%fY>7X{tVcpt%`iFk_<ye_&LSsxebHj<!n3=Zp!|l3~d+x%FQ5^f0&QkBx#<^}8q7
zm#*N*M7|NQ@y9Pid2o@J1dbrt8^+T7k}6!-0AWbL3u)IEqk<J>0}~E%$7S$qcNFH=
z5w;)nE93<sMet#mh(O+Ia$vE_PvXS=@fsJPH&=bV!c>*q$<s2Z8$wd;8Cuet--rZ!
zlPcMZC6YI67>g}C&!sXg;sr3L=5KmA4bkyImSgH<m~s`J;beTXL%qCnq1&AJ69`Ma
zE;prq)$JoH<FMZ9uZqvjp9@a{hL0NGWC(VP&U%lnw!ePZ;Zq|11^JO<DVf*P@7<k`
zOjg&M3;*u;c81T?%ANJVRXG)SsnjY+xgNT+LI^;4?wD`e2r+upv>UNX*L%B*ckM^C
zmltv@Y<wl&K=RS>dsXop1CHgAC9Y=9sz!Gqd|<ztXgWQ_jBcr*$aK*Xsa(wR0CbDB
z$+UbNTOt96_C*F9Ty*zuBw3x8$O|D@AhyQ6j`-_#U-uGj+kDs5>X@#1eUh2;N@S_C
z<7a{2u`9Z`W+v+5UZvsn{23leCoR{ntbCz8FjcfK3jt}F0@f&6Rc(En%8z~}X=FoD
zfs|rmlGGfs_`95~Qq#iMd0Fs<B82tc%JlcPQHOf(@|*SBit&==@rrRN2cYw$c<#ky
z<WFi?j)*7*=U}!<avbL`Dy%3^CkGVZ1uZ$Lp=Rn(1hbC>%LPa@`TkkI#6Q)hlD`;_
zN2qzv;fsZzDcH>a9v}+vaJ5UV-5Akm_|9E}@wf=tng+S`t9Gi^Lb^ZfV0)LW(8GIH
zEih_?#2+7t4+T!Y*3*PVe;z{a0kOXO>?uA44m!&|Bek?r(;MYa%15>st|~}YYo;MD
zVxVS|5z+J~0Ky47?YIT4U}-<n1A{k={1o_8YE!6Qsr<#L6TwSjPkLSCAEg&^J52?=
zp|GWon$`fhOKSNvKGAliyVX-0Jqh|(KCMy;Q;0=cI{I1zL9g9rTbPv*Q94jJ`UdFq
zDBfaHl8N;j9W|OZ%#l{vNOQjtc-{zO-35BD-k+9~WWNme4NHo8GE<<^{!E#MR5z9f
zsH?y<OI|0glb189o6EqP&}gaq`zWRIdSPwsG&w~Mt!IxHhF&)P<<AX0krr_nvjc}r
zyjUJN+`gK*K_E2I4dEB7BkCDC>sa{-C?a<d2qj3?0Z0BcUh2_%2J6)=*6%Na)tGfP
ziP5z@%rlcaSG0WW?4wwo_OV=dDLn**5(wVqu8KUX%6vflFr_awv+?GFV14C*di8kV
z_<?`c<W0@0VI{a66IgT8u<`*7YWZMh(#dUE(wvEf!5qxrGZ@r7$)*0CQ%YKpKG~9I
zz|vpHs-V%zPzV))w2n`-W+<n-T5-&SXDPw+@ZxDk;Lf$$a-l*&AEszSh`L$YeBOq7
zN-=0<mfPt<BE-y6-)WFzhACpev`*iwzrv9ubh*8r5^6%{w{FhiFZCePIQGyoFvf5P
zETSQ;FQ+FsC4KD&z5CmAWR7cq8Iy-fh6d>ym^(^{ZPhN5T6ig%$7&B_9EXh6bP!l$
z{p=U#r73Dwe$}(w+0b?UlRxt7G!H$L{rx>fzM0z#lnqx)8r!>0lbEDXO;IUNklR~A
zDAzRNk+3u!fyf*yc|;JO^Otj%`On4~k%<ZOCu9McZ??pRg9niWcY*Ok)V_b<?19jk
zv=#d|mXoI2IdReqkJ)+4L&W<HIA%VR=>ogZ@>LMYtEO0qqX5GZB^k7mYaG%;>t1t>
z=$l@ZM{WY0Ta4`{vivOa88S-cN2vQpfgVRUsm$ImzZbD28Wh!Lbj0BV+%qBNnKU{n
z&ThJLSg4W?N)?->>&VBus_?lkN);1b?u0YY&Ilz(L$U}CeyNR+yBJgFGfb>25&F$U
zM2#H(bt`_+RGn=Y)K<IxKp>4YjwyMWXhu2y65OKoW<AOGIB>8wVvkmrM>YjHsrq?H
zGX;};_iC$IjrNat-Je@p@W8aY5KT(08nuotNY-Eu(d8<t=JCDSP`4&s7oPP!&}O(?
z)2%jf7?mad6wzC}GYwLhm8iq!7El#_LMXH*An9o<9nt*iu_E0%MMDYVzZ{iv>Co$R
zxqE`j#&E6EZ9%WP%2hLM!B>(m4oFH_WpZ-`lLF<g+ckH;EAcj`Sf7;j&s6aB8q-T_
z!5z)wUYMCCnpi<^?#b4EkhRJV>SDRtDEp&ca>VLNlMEn9oBb;4L!B&?UiPf+Ia*J)
zBS_%ScT}CZYx(m_?oOjzg%y>~b1sVK)$t&!ji9^R*JZ4K%(ny@{Jf5`e|Gopi5-=k
zY~qjC<Y&u(K>M^2dr+_gXRE`dcJT#0EY#be{i>tL2L~xRr|ZE^imjItQztb!XN_QI
zomOXqQ)gp27xQ2jt5z4=Qx^w0SI}%Pl0n<7URzh+H7M9^fSx*33|61`?!FiCiZJvK
zl9_ahN(BsMu`_F;whLOpuOwkinnG8d+^ar-Dv@wpnJeomr1lh6-zu#=HWY}E{d7&c
zHrefCtM}s{g}PMC`VNS%v<p5vJ}WV+2vnrLnk9KThpEPzfPyW$!zO{g=UKJ?kkPXH
z(*NYN*~qKlNEiVn-Jp(Or^tik*NVzTj1&dEBP%Bc<<R4!-Uhz{wSJr*Cm_D-B7h+Q
z!M!n?n^yrVO2ClAO@R_ZSukr>R5ac$@ugJod@yghJpH?n0Qpd?Ht+B00C`Yg!yuz^
z$o;4Do|0%I<_bjYkz->&$_V94zpf<qE&MOzwbOJFnmyE_hv3j_apKbl@{%&z0JhbJ
zus6_$&z}<nca~;Tz6=W5eEu#)G(hPtKXdjL7~XC0*$unvJ-_D|`AnWH#G$hzqP4}s
zrtK{V=(+bv9xHbQbAF6e3KhIx?)P(im1nak0>lPXYtU><IW3R=tt(w^A7SLsTsQTN
zq<;GkQ_O#@E9{#;A}E48gH8ts@_JXo>OZEtmaBc68+~7y)<k{QAmwYix{24tJw-y3
z+AU>)R8JJ*i)x*9*>A&JLhm}8MT1_`&5BV1ucPiRpejp^jF=CY(|>pG8|5!YE=+{O
zv}V>z-?dnJZY!V&64ER^u={wAXMTwIiKu;hA7L19yCL<p#2+Kl-$mHJ!8N61Q6Fxn
z%-7|axnu;fFXn{^WU!%FHtlGunvM^4%+->e|2oP0JVz0PXlt~SKV!Pp1FI#ist%NT
zq&~C@sh+k>Q5T@rRkJ-Y0<D>1i@Vd<@Yh*-5UFx%E|vLgKfGQKTW4h`er~$`(Da_l
z{sUXhfKEy2K1w=LKT`LfV}V2v!;NJS-74+A7F_Nzzk~)@{Uuo4NXa*>l#WYAyKMTb
z8?j$bz9j<7vo!T(V(YKI29&49sUc1QY?TS+{7DEx<h*4Dulj0?6c9mXX0;ux5TS4O
zAVW(vA2?;&;}1~1A3+RL;eM;^64bi7!gxFf+T)`7o6xsS1C`4p`rPjH;<hBT<7u(A
zwDZJcS|GFQJidLu?jpP3bz<QUE4Zxov%e__vk)PHObxFnsk?b%;w}S5xcaqM!Uz;|
zf2Bl!JNh&~&c5=+UWNuxS}vkHNZTR&onnJAzVO<N`=zk3HRGg6lG}UTu|%nvo-6tm
z>fQ?qJ(^Hf7XW@S-I0Fs-o$$~$k^VtzRogUTItwX;%?~O=qf~qSIavtndvG*L<bj~
zRi9KPrq3-#3lyy&NSgN|5v^iRGvk7ZL3<z3HPmRea&*<kb0Ospp*$lNkBC<buVt#}
z?9MI_z$`X_)EoBjyapkwqiahVuV7kmx_)0ed{>z=dVM)Iz*&{^PMjQ2Hm$9zqQd2v
z*+u0e>;qOZg3G|nNg?A7sxsC+P`0P4v!|p3u^CIs9E17xBe_DP{%Jf@3TL#FYDs#X
z(<yVaAt3k%P5r|d(YmM$9PmCL2%+kN`k`ccJ`;xTx{M0(&L63mOiEomzQ?dCVnb0h
zT}M;5?g%~B$cpDt;C=9({z3_;7Bg#wy+ws6LP9FL5g1oA7-dqh7G#$fwfPNFU1})%
z$JbdNI>|GZ8<TO2Nu$<|@!#qM&A)fZN7Sy4&ZwA3&x%tzpx5yP`j&e*0bPmrxJcRH
zRkw(umWULSO3tWBR2F#WfdX1mqhUx}#vOmv%$*$}B3=C0sNlWEo1})WTm?x;gwNhr
zt(b5uHaow$*>5j`RFT1|`R|HhfJeaOcCNn7Jlp!s&4CY;*+NCa+p&;vmJ@lX8@XuJ
z(gA8o!Op)1S}eVO(jfh!s2EuQx=SX-a32>RA{0)|48wJ6`yU2s-S|>N`6c#WwoUf0
z=1;aV3+4~mK3u+G9`Qz1MG+dezKjjep&Ic|1f!M|1+A|q`KJPw<{qwas_ush!uL8>
zgd$d5TIpKkqrp#BuScxiZUvup4<r?=X+*5+yj?f=w{EPuVIHwz^>)Md--d(grc1=8
z``b-;a-Yhmj8E$w-zPBq+dIV8UcOP!*Fsy~|F(j1-WM@QMh6pF%f9Bva26ur$F^Vc
z<fMk^V6L_`sdDbDuirn}@ocz@N=5#7{ZG2!-#d10^yq22&(2U=)ow<_p6!S6SVxha
zQ=g6d(xtbj)!zv7-7aiU&;9B4@i^yR$-o|UWh(RS8pHq$$}cnRHMU7nha)@f2dBa!
z!OZgIf!qI%s4Ql12SGxh`;?8JzoJ86A`$;yf6EgNwt9ci=@H7Bb#l;mA`vBo9h-Jc
zUx<r7;>X`tdvvzVW;&tXIQ6Uk!<b&>GdfY=$@zR98xU%Ap@e?|>v$a|yA$)2|8D)w
zUytAm!mD+T9lx&Il?Wt*zkB~V_x?C4NG+g0mmDa-bw*-yBqiLW%$UUZi^GDMkSdU4
z5_F<F3YZq}G3Yy+5v8vwrNZWdD2+mE8<$P*tl(l8E(-v|Y|bAYTEHtdrO%`jNy0ID
zk+qCos)X)?!`xY_h9kvn9gokNYmp`pN)gN1w{P99A}~33c1qROY@No-OH~oGIg$mW
zBkKb3sEI?4{VDRu!3<j)13~#vfu?*c2HlWJpsM8*%^++<GhhRdcK?xHiryV<Yg&7k
zE~xiJzrA^5Bu~ck>uCGSZxf~JNqhz!E!+Q7LGi`YB5oU(;;t($h)tFlC)Oenh<G|E
zI?=F-Ilecm9Eo0h(xEV!CII6}xWBy1-R7Hl1E%RN_Xk^&%Tv=B{Dq;_>xnU~&rk8j
zkH4Z=nv_)UGiyA>=@+-&k}&$IM@g$Xre#$#a#+Nb=dox&@8pwvtpv)D99WF6>>Xrn
za&swbWneTj2^1-9!u%o|X#_R!`liKdpe?ehj?SStu6oFRAg-k-Y}T%&s+?}ErQv9>
z>**lBV<a9U8<5Cvb{u18jBP<1@z?NdtLcu0O@c+0HFC|f@Vr@Ha70dYx_tx^oQO5c
zaISQ8f|_mOh;<(~oyd93aJC2Oj)__ZDDYfd$fh~biFoiXniW_jdk62XMx2C?>3?!X
zj;TN$1fqvUn6+HPn5%r8<<!5cl`_eSX4JQS|Ng9TQ1nNA%Lk7i&r{wcFw=!GXJ^(x
z$`1K3Wcyi$0M7hv7mHrUcS~7b#;7Zz?tEsZv1JjTlC!rmX0=*oEW(+?kFa6G*k5oq
zjQ0c?Ggp?p(d2F1h{}SP5LaR>%zxjfke<HLdqeMqjA10`=I|Lo>;I#s50rettR;5P
zkGSo1Fu>tf^rI{Jn!7i$BCB^Zyr%0HBH)tJ+CTi?zkR<ULFL~pe3eC+5NlzlN{CIZ
zzl~W@{oI3>;r|EZKpVf9(O1;EPqhp0OiL>!S60U&#78qEpfy{+{RR^7K;Lrf?m~kx
z#3|DYgB|wR8mF!H+HAM&_S<kztm|T;Jm<j=3E~k2i>5?n3c?;l?ZH}MD=84(rs&Q0
zvjj1Yq^VYM*E6>=E0*M`l^OjK(jJg7sKAjg>@+G+KRM9URc8tzzn5+;(9|>b2QO|%
z)NXsWQ)xO7?Y7sRZQQ^IFZ}St7jJy<b1VP$H&ay}bV^i<G#n*!M<8K65>rP3X!8R-
zU%6HuzQly;Mf%*WV%teandT(<q2E+Wi>_tUS*4`@?xP?S2)?RgeW`xaF-52JSBk}K
zXJLUT;PDp7zy><-fe?&fYLX`q68HfuvJ=WEc&4qW?16k9_!i)_MU)NpjB!9i5-A$y
zDfe-Ug28f}VOB_zszru<2(i%VK1a6DK?W^$I}rwdRjQL%ZFNY*lzf7)oB{UCQy64g
z&a?$Z30m=rSj?gpx5zdaGT{`Ua6%BIU<#z<2M;I+LP|bI0#oRz34Lm!o5JUTrl3)c
z3_&5|7Qu%Uf#MWI8J{5b)|6+#P)z@O>|+%Ec)x|n&nRYmiG51ZgcRUGB2hsBi&BCI
z79B~GG^vy)9g`AJ><tg5_`~i{L4_bhffS_x%Mtxo6-<?a3P*S)D!KzoPL5I_f0RQC
z3Is@moJ$T<NQB9PIZP@PlZ()drZlHX&1#nBkU>yHND{#w5@3ofOfZGXf&ey9q<|E~
znj=xXNtkd>v2i59!(W;K3M3$8D_zOM94QyWc+Rt)F98MpAgP!m)I||dQsw*#_o%5b
z^fCDK%O9dxf^Rkhp>pb9o3aMT4mE=mL~&@?G)00w%=4BcaSKBfVb2Phlp!d!rc7r_
z)0*1!rU{8+eU6}0grtC<jY0nbPbm`wa{2UknklMcjH;QRu12UuA;A%VniZ|d38{_=
z0#)Ud6|Lg*t6&YQSjS4%vf9Y1W=*SF*UHwmy7jG{K`UJ6O4qvD^{#k@rW{6?*S`Ao
zuYe7#U<XUs!W#Clh)t|w7t7ejI`*-UjjUuROWDd=_Oh7GtY$aM+0J_Qv!D&FXj2n~
zt>UT)f50lm<e*T;@WD(6Il>;4$%N6cwlT7$?Pp#ancVWBwv4&$V|Z&C-vU>-6Ekkb
zkXuvcmeskVjb<MbkqFyRp{LqvZN*ZeTHNL#5r5F#m8eVJM5s>+i2%hP?uR}<1R@Wn
z)t>+#W08Aaln;woS`+`c`H}LH_mKyAngQ>dUjQQnz3OG}?)bW2rfx?O_$|~C05OWT
z1bDuVsjp*DfQLlDmn28{gCg+YvXm0|QW!2uh(}!F$E=vdd+G3pK@14YeT2dmHZg<?
z?3fp~*f27VZ&n&i5(KXoAxHRbcrPrP3EMa!I9`~KU*cpW`<J?&;;@H>jHDn_xyJIX
zOo#oeU@9wFyo^aQc+ngM_s$qc6RxnQ1gsS|b2++k69p;$AmV0};(kF$1e!-f-P3TF
zGTRZwZKO01MUWy8kcPB$`XUHEh=O~J>5C$?ITy#!xiK0hPBU7|2lZuyjz`$Esyk%h
zxTIK;qdr}k5kmiIOJkZOp$<!j)R!budt@r2$b&%lFpy6(CfAk|MJWJbicyejJD~7G
z&46o|SikNe#<p*?rwvhhO8XSl_5cc$&1`2MBnaPR9I%Dm3}V;E+8!u%W1#)*aF2W0
z&1NcNPOZLLU)oBEUUZnUoz!$2D%iu;j<>l@CWFUT)thFuVaT2D$K1Qz<U)5I!%P`R
zM_SU33AjYU#2Aq?8YUOzbazj)?u5HqF`8C6o*O8NEFA$|*j>#jv^$zZOU6F(!BnV3
zAw%dCYS2Z|-ib~T#KjOiE4faeV%$eZk|g5QRmHk}XI&JI$Oq{HLAD2|u0E-gL`21=
z+RN$7*O&i*>_I3X1=`w(EKzV!AZBNBRF~H|yE}&N74&<tM*(-aAEf5nVI11yqIUIE
zy)l6A``zCzZo@~0>`$DDVM-D7W|-yam_a-bLzF+pV=(e05WGM{Uvz<7J-~#oJlYsT
z`MA%X^&FoJ(I*4+w6A>goe!1LMa6U+E#6;^2fYV|pMv7ge1SFZS(r$Gg6c=L2~Kzr
z34BwZ7D1^ANF@PF`cVCxR|ZAD^Le=I!+j*38*&0E#XAj_&dczDbVzD{vF95E1s?&p
zxpqkXQ8JIGDnyfilp|pM2Oj2wfFyxVi}8P92RKbYfa-HdCF6LX$AA6@fPkY(>T^V|
z<9YuA0R?ol9pMH;3aCCNNE9gOfCtfnjt5*K7;hxlPsU_2+mS5-NE|G9g3UmKAT%{d
z1y%oHfd>JBMZqm-K`JYl6-Kxh-uE+%lYw}5gEDx9>jzI?a)1z`DMSc^r2>XGh)5i_
zfRdzt10jEl0fKw+eoq#Kh5?5~aesTEhTT_Ya+rrCVTH?ggHNa!cKCe96MgVuIu^As
zQNSij!Ut@E6^HQ`BcUpZfEcH6DuNL<4O2l}_Yx^kiGOj4tl@cluokG`DIn1hdU$dL
zQ55~67*dsK4U>wA;c7?VQIrG`bwLptMiVxH6FRXg8nG-SF*QF%i<9Ute}ape;*0+`
zkrUa1j70H@;<JktfiM}d5p?8?z?dzGP<nNwK+1TFFr_;YF%j2j7=0m$MA0WqbATza
z5{$-;(71o(=x3S|k3ey9(m0CpC=~7}J6<>tDfEp4@dx5akHM%NT;UgA(J1;66t5FW
z4wW+z<rO-Wjl@WeZOCYHagVvkkX`YR#IcUGh=T`VkW3+t`X~?*iIOj2jHg493}G_;
zIFax8PC)aK%otl{lZ*rbTYF)WK>0W%cabEy7biz+v-p$J5s4>>cMXY=>WCOXsgmJn
zk3CrwF+qrh2sj`^CQRUUNH%KK*A&-9dN5KVA@V18Gc}KbA}Ycn_Y)tHu_pfy@dI!P
zk<^8Kqksx6MjgKq9Qx(~QV@hsVH>!CIq4$@)b(T@V3%1D9tR<q*3lgpq9F`Y3cExc
z#(^Bl!5ppe8nGc>&S7*4W(u=69lbG_*WoW2vLIX0nO8y{=Ak>5Ntjo71df>qm{T0b
zksRlOFsDh3qgfuMDHW)Y2o=%{Qc!HMxtX*HoS-?JYIzoH=`UkrA0qZ7>p>guah$ga
zotinD-SM5?F%Y@=n&{ac?-2;wSqk0xJu|VK&H0>-Vw=f1iUU$02l9vHa)9tj9P+6M
zrXwH(VjxXdoIuE%kEs}k30#>eo1DoW2<o3f^di_PBlOuH_Q?_W384Sr*`WxbngJG{
z^C=MPiJ2&BpdC7)(#akxnwYnd8)`Bl*;!<W36cG&phXd(3@9Gz*_xMmoiP$S7wV(H
zgrgklq09-Q<Vm5lnM2JWq+UrphBy!(gb?EcETxD+ms38WvMQYeZ(4#7O_&t|)oR9~
zUHMoWOaqysvXrV)3TTrgOVT88dM0dP3hp&}z(hZ5GEj3W6qwSCf<q-%f+dslA6$Z(
zFL6Li<&hvX6$sOV1}GGQadm&19*R1OS+XTv@^}I$QdWw5h>9|p#;8U&rtlYS0<kk5
z(3O%xCy`P<{B)>H!yI$Mr{dyMjMl3jP$wP$s~#Y$v}%Ti!Vv$bsxADKC=kIYwd$+D
zR4vF_7|=Qpi&CGX8W?@rsZe64X_u-Qr6|&xDklPe%1S8A`hKuQtm|rGo?@)m3MGt2
zuW*s91o<qwDm!flCZd+7P9mlT2$?A$uH_o7o`|pqF{l6ru&r9K39GH=T83mQkX0IB
zl`1%GNvK!qHd)H2+|s28;RhH-0)9v^2=Oq1$_J{YFiRyF0_C#tw4-IJPe1cc=OhYI
z#4EmXC-MRcLsWo;c_o5?EpYOl05l3_L@dT~sSVgUq@XMX=mCi!j?AL82*I?C${5Y!
z0YN*o9^tfMAvnoGLR1P=DF6zhum`9BQfarfO<R9u${hbHn}p0k3Tfhq!x4}n1TLmP
zEnTaza?3S<E4VppxV{-K4zstW(6^DauOzXyZTq$t7`5`URo}9>fm<zl8*h&rZ)TLa
zQ8l$_D-dA|k@vH+QS>kHF}hJ37n{hk@p>X`>$Y&KxYE+OBsvgRyRwc8xmnw|pewvE
ziF}2dxSi80qlguEYcM0kx&uMFiy^%zakQhba$ozr4#OPOOA_4c0kliGxJwkSyE~C<
zv`G80!xOR|u%!?IFWX@zj)EYC!xogt5TcNlpu-uTsK5MsC1n^mIfDlvBQgV7d9kM$
z9wWe^;yFV3ce4622>hO|GaWzShwTBi{FE{)gGc{S@MGczsEu;KG2<^6Y!icv5+)3f
zWeC9np}~QJGAhF|RPkdlWFKRb0*XMJa;2gfJVk<IHiI!XiqID10|-q=Gd6=WD;yUo
ztRGA~GzHwk1uQg9e5^?PC`#O+I(#BMOfD*@b=HE#2YAHW!Nqn1dLC@UAq<fZTq!EF
zz)-v!KLL6~yiHz=usl4aS7OFGDMLx}ENGm>OKioly2UWjbS1&BQB1)n{1OeE$6_<b
z+@gHMK?-zSLlevzi0lEBjK9j56`>rTI~>M!T$un=L7mLLz~jDx0FDAdvQpz`T!FJ;
zrwF~{I|%Uuc(4$n;58t`8NLk6N8)qtc{u-hvo}r9H}x?Jn@lfugRb$%bB-|;-GMlY
z)67xv!?TKie0MTWJUI7z!5p!E+RV((jKZ{rf6hu0>AX1Fk}dKn5aGPRF<j2$oD$TQ
zBo^Gx_6#_J!#llW76^F?u%!srENYmef)@-3?)*5U63^Vcgz$IJ32n_l!_U>0Gb$L-
z9Z4z}-DnDhAz48<VG}Ua>;d&`7|@)64~>5&T@(a;I~~f=qBegc{A4MlE$cVZv8qrM
zz0N>=tQzge0DU*hEYH%M%e#C8*@6Nutv?{W7gMbm*sRQnqs~!L)4U9uP^ZhgY!)~@
z!vA~_5FI&1>&j{qvMGQHxID{C1780*p*{)p7#v}d9(x&i4aXx|N4MrZ1F;AW(inUP
zv)$uvkug4xq7>XB*yp=?JQF?R!m&ojPt|ih*`q$LK@yJbJlzaHs(0C*9oSKU*fH#G
zlx=|2b3NEY719Aie*n_U#&`%Jc&nYRc8j$LF$JRBIjod)Ri}cYeRm4CJ&!FzX6M^;
z7u?4?+XzwHxLUKFxSImO++pF|_M>91z1fiBDW{;=9zfW+THLBz6nE{l&jQ^CA>Af+
zKRsQnyzK$lT|v(M+1(Qr^$pxS&9CMS*vXw0e3#x?LEhA@7zVx=jLkd&?l1E_iV8;H
zo=w|!``;w7;B1{|S(18%9l!s;f&^7-bX9aBnBzJ8F%>%9Ilni#CH^_cOu%7xcN~!(
zI#fd!#57?t3I*dXHk48a;X*NfLX7uy2lzpnB0}R#rRwto2^^U+{y9n{MdNHj<&z#d
z-b3#TLP)MoX<M_JLMdhv<+Af0MsB#wL6%|B-a&*)ITv@ENZdp|e{Q}zPwqH#zJ_aV
z3fQ&LAOz;)3`FD7<}`%otfA)_)pRM4bHo^#J6<R?u0Kb2fPk(l7=-2(bUvf_<#N0i
zgMPe+)8s6j=NLrg9YpAjV(7;!=JWF&q;7OkVL?$e6+&U@ozpXeHt9lCK1kO>9MkGE
zPDL0|Du`a`hZ05g3n~9$9_c#x<FT9JZEapmFa@A+iV)ERao`?PNPMOM3W@*<fN-kJ
zL`)v>L4gnjuB1)sb4<xJMUDg+<ZkX!fbM>so^@0yX|zUB(R_*!1^mwMkMc!fG)85l
zaDk8_oo>ItB1nY9Lw0oU8;8QBAO}rgAgJC(Zxlxyycmlvz%6wU4Ub1qjxG{U@j4~j
z_73vtu^k2fN(E!_Q~*ac!&e)h!y<!AQ&0+}a3oq2@e}Vxr{_j5kMSXL3c@7rj#uz0
zL2`WLN6$3f`Xll^kLu&CNQ`ulCy(!gP4!Lxhe%JSjf^BUe*`z5^GRMxr<6)r&-Buv
z@}Wd>W=|7n&*lF|Z}0`9@BQxYP|WirKZ>RV_pKG~&II4jVjp@U_Bd}POTS24FS#|_
z@dV%YR)0rWe}!F7a*SVWP`~%}F8L1+@M1(pkqh|GWcPRfrhSh}3Pt+;{_o8&NT|i|
zSO4(EO7zXt^ly*)LtpfPPoRZA_Bx;WJ}=j<Ur5fLXCd)7oP9PE=LdV>2YqHTC3R8_
z?NQ~yW`x61cEYBpLj9ufrrC0U>;z8Yq%DP$CE2u1Mio)ad3H;4k#QaV^yE%)(MJtg
z7Uxz@=R~)d3aPLA67UZYpqQBA<H189K21tBYX&NaL5NhEp@0aHL?DI@2Nr}FWnr^K
z6d?u?#Ss5g3Q~e9Mr?Lur9_b{gCxqB=m$iE3Qay7S+XHYl?F-lLB+5Xm6cLVHA988
zBA%iRk*xFplWNY74xdH^HPs?UlN%vIHR-jYQl?I+qUu9+X3d)wty1;iks+!-B*t<z
z3lVKos&<*?r7O{8MZqCiX3Pl4Al98L1>@B#l&Dd)71_F_$<XH3vUELcraFq0Xb*og
zU(6_w;Mt{s>5|5oFe^_Fti!%G7(`Lc6cvX?J-V22Gshi2QZ^{@ICAB8^9Tp4k$3LP
z&59#lPS`T>%x^u%J!m^}bf(i$uV>%h{d@TF<<F;I-~N64`StH#35p}cK1^{drj<xI
zqJ;nTaHA?X`V2%+J`|3qj6Mlb`{6;l7|c+?iXxnlt{*g9DFp)gThGJwLYxmp3o#tA
z#QhBXa3vKpgt4L^ZtM-UAVid}Mz?%~h()@3Ot3x~>x)n{BY8aWu=y^m4@jz(WKu`=
zk}Oil{Wu)5LMNx>l1RG1ED}rhtduVWFAXAdK-AQPlP)bm<kAB+P1JKwKKu0ZPe23x
zvxH{wSV<941XXlVMjLhXQAi_|bW%zywe(U<Gu3ocPCNDV(@QZD1P?0m7{wGQK~;5C
zR$F!TRaj${byiwywe?n9ZEeC2K@|A|j~R0nc35JIHTGC!lT~(EW}9{PS!kn`c3S^x
ztF`u8Y_rvNTW-7c_FHhn6?a^6%Qg30bkkLLU3S}b_g#47m3Llx>$Ue@eDl?JUw-@b
z_g{bmRuzRm3jQP2J^3({K82Bu0!>Yi*dq}>m~a^4_NaI;ia#*E?_tS0-ml?CH4e<<
zNeMO>VS!tAx!5E4NaPPHg1xnmL=p*vW}Ej!A&@|Ri{j5wlAEvSV<q~7)hL=#gpWm<
z8M;`d?_;7Fr}${5XZ@<KNNcX;Lz>a6GpnkZr9b^SXsKUz`)yn$B887YP8o&6oa@WG
zQc*}L__tD6_Opq${T%yfqlulViB(ZR8zMdgzjg8Z0x1RZt^K6@>&*2#Tv7kaIb(cP
z!l#yRZ#_|mdv(@DOW|>YQV<2<Q_`NVc1uMu`iN6X3ERZdiB3Ge&s}a>@@<1C6!YH`
z?mWNZ0abqCS%bgbb`x=LeS7ZfYG!mg3GD*~6oN&82^dKbpZpJJ3^s)(+N@7^xtfuq
zKqLqx;l>FoBf(<2SdS_s$e(D=r=uePuy`nFg5(ltkm!lVe*mmf1BJuCl`xQHB&f{!
zT$Cm9r7t&!`CpaLN2ew@fg=ASkOt>77djQNKpkYl2eXvI6`rs|8>FEPQL{ht{ZNLY
z`NJtD1UBKAP=vXmphZGR6(m|@fJ0o#13j=n3ntM(LTRE<s7RF}w(tLm1sWk2m54$W
zGO>kOl#c*2s6*kbuY47h9Q?ebzGjSXj@{$q%dYmHmB`^aps2_ZeA0|jKuM6tA*4b6
z(2SMj5h5v|Nl{K=wlc<teia!-AT098^Xx%DZh}ZD43&pwq~J2AFdanPC=^gOL_vnk
zNFpo3gi$brm4`zCAee&4RN+#WQHUT_P^n5wwz8MMw510`Iiyl9Y?(!Ara?p@3KaZ?
zA#HI_by}%BKb!(2Q4nXM3_?qWRI@HiX~rq|u#~Ay6PWL50v-g>j6C204+<hdEVTlW
zYi2Ve+-y%2*y&Dqq6Za$m{35qDameTq?NF2O`9AC$S8V1Yo`B0=R6H^%vHA1n=8ra
zMn756TjsKz#59^bn+Z;FCW4&JFlTQ3Y0+i?@*on$Q8U6h&T>Meqv|xMF5g)=mu?Vw
zuk^rB6*<Tb`I4HcqU0|x36VuIrjdQ*YQSjX2N=PxX?|z|8$BS1K%fr^iZ}&>#Ol+s
zLg|r_Bq%6Q<$)h)4SWzR+<P{OlTiTF6j4ZlM@&JHrs>6T0A!^HP^pMSG=Z3HT?tb~
zG1$VE;;;}wt6JI0AQYHF5kVjUIZt6UP}njEpeV(ILOa^hp5nCbd2D1StD)4oWVNmJ
zo?@H9*s0~#1G~kLC`JK_$ff`fig-^Dm>`jFA`%6HBnAHpBr>|rqF}9*Z7SNx_sE(-
zM7YFt4<1-cQ&50nua_mPVPj%k<TgRM%x%vRyh|{wO$ZNYV?q$9AX<PPH@VAg?sNMp
z*!F4`Mp_e56#syVy=Hg2463bUN5S3U8hD}(hHypLo7v5J;I*VREoxQES_CO?6w_@+
zb+2np%(@qfsg#L^d%9xkTK9Vfk??2Fd0+5OXuK$1NiHYq$^-K_t=jc5o+JxbvksZJ
z2C=J4^15Ruk2S7c<?_G!$&fz?NqLxDko|g!$+=bpq9lNwLH0`JB(vwQ2H687J+NQ!
z+1C$v+HuqNkeg=Q1eHc3+!QLCWIPMir>--z2m1eTikR#-ITFFm>zwlFNJFPRgGREU
z&sJ%y@tJXc2J}rRJ;_j86C_E5&()%9DEq=X&V0U~MvdsERDT-PWEKq!$AabV?pf7|
zU^RRAaBC6gT6qNZ027=5&{a#Z)rbbRo(rTs<{jh|Zyr&jIql|Vcp4(ECTZsCw%0`e
zSlF2U^`x5tYNSlByRsfyx`Taf?A`Lf@{V<Pk4$TW9J_<LK6UJJ4d;J*fT`WCb#D&d
zoOkb9C~a1_Odj54jPEN5Ql;LH6TT8u0MfokPBTOx>H$#XRDQ9O&zwCVNQ#JJs|HEL
zX*^(x`@J);K|sYvTQa2ORpga2UrEhT6LSA52W8^P3B=4jK#JsmLg|1Wo@h`BCC4qS
z=_`S{L2#~7Q|!Fw2XT7WRlV}|kb5M}fWmOwro4nB-2;9YWp3Pwld@MGHNLi{(~W-i
z`Ow`WclSA#N`iLws2!kwxB0I*#9&3-l|6F5I?y}b>?A{8@{2FJ&803JO>ey-T~}V)
z;qLaK5xpXRcf4p6?{?F_eb%Glh~R}nc(QZ7>UUE3>@_3uIEx-4W=FZoMKkh@C*NNw
zz({5me&;}pLbEv)dYnsckds%Hrs2(x%j=B&;UO^*jsb-rQvd~X9@8R0NAg59oo$2Q
zA^Owj2=2kJ>gN#K1NQg8``4rXiCh1eLt+g58$XmYKlH=D<Iq13FfOavw;emZ(~H0P
zTMCY7nuW2q0jvr5;Jf|{zs_;M`M|*V1GYe@JGv0T`gpw$EVmCS1y3rsk|>26kw59P
zK%dhPHoH6))S4MA5&zSu%;7&x+d$87JI0Z~wh6+F@&Fh_jn`A2B$PeVu|fJX2ok(A
zU^BvKqo-N3LL6*As^CHf)IL$*J~322HQbj)XuRIzwja1GJcxp_G6iNM9B#WlHe)ut
z!h@2)rtTXaK?tn=i@|K;gHa#>R3HITpn^C^4gdr+^+-dLGsJ+)oH#UvIjlo&GKJyM
zv{6umBN#<e<OxrVB)u~x8k_$(^$0~$EX9CJ#6@hxM}#0ze8nTc4b@vg2%N&9IlWBW
z#3ryq%qfM1n8Yi(#aBeU`hk&VutXuOj9ruutuaP?s)#@sJJFcN`C!3kbU}!ig5R1k
zMIaof3r0E|MsA8kHbX|t+c2jw$4G)kBsxVkOAc4W#fOkW)a%D@<eUi+$1c*h=<>yW
zL`P06#$)6pWrRiecqN2X$Liy@d|XBv@k5#-5IkH%j>MNDLJaGJw2C+dW^0-w^8-5r
zH$G$uouZF9O9519MMA_0n=?t~!WlnU7<RnI>YJ!hn90YmxgsJEk~D}#n7P+sy2}xb
zqpXOeq^(ty#K%}ly0HIAM@xj9oXYj!M)`=s2&6&}7|M|(sF~3xgb5w{@W7v3i9l#P
zu6&QO!~=xcFXVa4Y4b^-JP0=oMY_-$ijauJ5le_DO2>-Ic3g=boQShYoVCP8n`=r`
zQ%WZJ%3o}o#-vGxTo11_$kP){gCI-~h|9C2%KCUE&)mO~3_j9i4~YOIlk7;?Y?mnL
zxDq%8`U1C>9EF-Xn>(bwmjE`c;ieQ=jgu1!W?YHCB7w^iiTyI2WivQMFcc?fh^g60
zcYLMhTsv;k&HCY{Is>0R&@|{Ow(kUxAhbHe<jL`rHa?3^5139+n40wz3J-I-uI$Br
zJU#AY32s7ypDX{218bgUq>AixID)cE_V7>1QJ&kxlZLX-0$Dj0EKs*2sHSPV8LN!&
zq@MkRxOGfVcT7wTWj_jiPG<tP@N~CUstkTq!g}i~6ZIYpbv^ua(JR_biRjP&q>A~>
zjR9J@SL#sStiG1)(Fqw&(Cf{Xj7=sTm+(vkDnNoLNVzwYEjgG1igBbuL4hFHuj1Ul
zQ@GMB6)|I!FFeR4?|jB62!bg14TLF)k4wQsNT4YI1ypFIQD_P_B?aGsh^24|HjB8z
z)IpwPpn58lvWkg3rGh=})3DsqF5M=fFa=Yff+pYtQkX3&3sW|sf>R(NO0`r>)l~Md
zPVwSY|N8$_KmEBt#SKtERZoQy1Wmjqh=ZKUq80_qN5TUx^-|$H1ycY8MF0gr5I2;A
zRaJct54<8hjRHP>Q2Iy#U=>zkHP-!#&w4Ti+nLn{j58*v)mu%KMQzjxK@`!*sNcZQ
zUF}s#9n|%k#Ba6Lgn$xsWjlx%S7&up5(w2x%~aGvR^6h^eq>fg&DV0>O~eG(d389>
zY@2nBREUz+U>(+Ct%z5ZgHBCWXqzZQ-7h>yR4wIIh~+~o#nS({*o-}lItzp~ZPOk7
z%rG_CCY@Pvp#oCK2vOj+nQ|Jh&<*R*shw2>vp52kQiRvB9h=2jZcDj19m9<9M1(1U
z>M;M>)vLSTfCy9Vz2^WQsm%zg6^iO`jsGAClK={f$d2vk4WBrPlz>V?oy6h5jH-o*
zt36xrsL%RHIRa$Z{A?Sa6<aqE1wYsWKlp>+_>Z{N4qodu#iWX^Wr(lsJNiHY!6jV7
z^-V174rpBurlktK<v@sdT&K~HtC50peI67jg;RKlzZDC2WkvB?K=>om)inswjojf{
zTeJNRxkbXhotoPv-DWUd(fHgW^j#ZmUEZMF!7bdwwcFmc*d!yItp(fGaNUj&C!U2~
z#g&VjWr&;&4DA(Knk`>&sgok1i#Kr#*TE78K@Hx!4+B9N{+M6&HIoHFlN@Q^KH2|Y
z`taXMSzrHHi2#`s6S3d@7~qO1;0!_@_K4s0K;Us>K=<IF9THIab)O^95fVud`W221
zMobFU69LvK2F4LAfnWo|-}Jo_2|AD?F<%*;VH(yHLb*J1eU%$N6ojo|LD}Jo$YCEI
zVj?bLb`cd)F_q186(lZ|Q*mG;HjyS)VknMcE52eZhL&CFm0!VNPT68#0hTNV6fo}M
zF+O87rr93&fN*Jo52hC-NMkvkV>-SUBA^5|-jfdKfLqyvY<T09pnw4w00l@FG)RLw
zPGm*?mP}}5M}A~Tj$}!mWJ<1NOTJ`G&SXvAWKQm6Pxj<ba0hr8Wl}C>Q$GJ?R32p+
zkbzWgWmkS>SdQgbCI?{%23x*mT+U@(E&~7n05Q;IU=C(s9%f=LW@A2PWHx3sSY&2y
z=4$z5XpUxSo@Q#UW^0b-PiO~O-sV-_W^evxaDHW4PG(%@WnaE!Um$07UT1c0XLep@
zXO3riR+ek7XM4V9e9q@<{)BZ1=TmkEXm|qw0Dw1u22u8Bgih#JE{9rHXLJ7LV1NY%
zs0DYfXp6q+c5a1v-e``_6?-;<OVH;@2I)qwf)S{Me8z+-2<b;QX_TgBlAdH95CW0L
zWPVoYWiS8$FaVy`X#-#eh5qJccmr?<>QpX=VQ}bP{^eOH003ZsT)_Wmsh(=8&Sj16
zXspg^SE=VL001MXX-Mwsug-)W005T0XCnZB9DwAqKI>=}Yf4^#5diB;_Jn@^W@fMk
zcxVIwpaFwkWq_^$0B{6&um+$uYFE|+08j_SMrEWX=ZD4xr|#tj*oCUTY|M7&tJZ4H
z?rcq|XAL+2OrUE=4(-t<YqQShNw|P3VC&SLX48)AxhCyO?u5JE<_Q1*832GaIOuMM
z2X|Nl0GI&)n1IG^WyNOf<2L2TM&^h11z#8g05}6*0EWyyW)@(9>&|Rf@NDn?Zb`Z3
zNdN$vrtR@AZ`5{cux{&VKJQAFYudJC+xBK~5N-fK1m9+5;70$1US5NuUhY#)ZU8rB
zb4coAerQ`J0{~Ek?LOuL;DQDRW?q<uUU27E0B;P>@Ic9AOR$7X9)SQ*?@Xu!ESQ8y
z#)Q+pge(y85toEY2Jy3IZ$}n!OUMEbe`FMIWK4*J({^M`xC9{Y@kW;MMi%iMf9Xkv
z@ko}0ENEo-e&kEQ0vE^eOt^$8S8*ZFgd>mU`QGMG0Du=LZfAgpZgz&;4)ahrZgq%;
zXGjNlV25fL2Y3*0QdaI#RtIXxhJ-Hg17GR{U+`iEhU)HxTCnb3h=p{<WnPE{UI^x0
zh=p9RZglnqUI2hD;00c&@LXPWT#)ohx8+4|bY#W_73lwE0MG(aUuRa(a8_^i{kUXH
zxPV^P0F<tT3o!9Vt^@$s0Z6uWQxAY5c;p3G086L<Q`do(J^)h}fh-^KU4LXE=K%ny
z0!NmF1u%64nDR^z0sx={9WZq(cw`YUb!vz9*UkiKFLx~;0aLF4T<`T~f8;Dc0CIow
zDrfgzUVtedZyg8#0Kfn%$af#dcK~pAXzub@o&y7b2W5x=0Jwn(n1CAqfCx|qcrbuD
zXl!P1fL=C$JJ4y1r*n811OPZ}ct{5~0Dysh0c=3%b1-mXM(|(|13)KcT(ESfZUI#w
z002+{NuPyM?_~(U1zg?*761UAFMu+*Wd%3&US9tJMb`pTR{@H?Wff2XURVKB?*dOB
z=9_o=o=<dD_hMHsd$Ygf3RnOvsDeQrfdg0o^_F%dZ{!LH02iMGAOL{YcJc+N01Uta
zN*IC*aAa;Dfh?E=BN%`Rh-A4pca~=Ny>Da;(11v|gh;r60C;I`zkt8Df@??eNr;5B
zR`(%)ZO9k)0H^{=sDc9sfE$10#&_gO2!LC^genMt0GRDeNc+35fCC8W@rL^%0DuFi
zgtW#2Cr|y=Z~fQr<W3L=S$=^U7-e=K1g9qib{ORvcmc%D1^}P~Z~zB50Dwox{yAUl
zQKka{fQC|*ffu+2c-RIRhyXhW=W`&2VwV4T7XScQDCV072nf8$0C>R541id{g1K-p
zi`Og`1$HeAwxU2SV7tBmSha9hEL8xy#EMm`BCr(@PUc$CfLBEo5LC2)wQCHEiaK{L
zWC7qOPyl0i5-l1`76}hZmojbY^eNP+Qm0a_YV|7CtXj8n?dtU_*sx;9k}YfYEZVec
z*RuVZ=`Gy2ZzolHTWQ1s9hT%?3NS)0CIEloUWvN^0EW1i<^s?WH;Wa%e&y}}a0!!$
z09oY9tps4mTOoo814tq_3xFz=Eo0UkcL)G1a3wXCJQ%Ky0DIrU9-IWgB)Fc9WSaCj
z6Kx^LQ)hxL`z>w9oTpRg1n)Zb?AiY(;K2UKz)u5@u-}-V{XF{ggbb*=o(_N`?0NvG
zbGOC-wd}tDXv5wOKq%=6sNFe6RaC}EFwIf`02CP*3@$<iGYbG>1XBwDsx0J-PP+g=
z#)bfFp_4~CMOX$;2;owZhi1eCKnuWB)XRe*1_e}3H5y1uQf>M8BalG~IV6!q8hIp=
zNh-PISkyV`By7RSRRI7yNGaE0SH>k;T~9{2S|t|@Ajy+&RT&xpWWHqy0LneaTwIlf
zIVP4B$aTR1a(x+B1&P6R$!M8~U}szh{AFBZ#;K-gCJPV>7oKI7smXxZz2N{n(!2n`
z3lT)H=?l`pW564gnu=W=5xD<z9XkdLA|C+Y*bu=r+OZ*nb`!X9s(|m*7|V*mtioUm
zI!5SGgc|0OVNnElQPBzjco8g57@onC7AgR<?Y0kS@glW4F2u`?K&c?EQM;VLB)jdp
z`!2lk$~!N;_0lUTzL^}L!E|B%v_KJy!L<Ma)QK>Fr2BGK*<lBC85br)h=9NW1Jss@
zXq5cf=4o)k#V`O4%N6Ly0ANxmzj6g29bADPR_+DG0Z<sDjFS9TWhdt=mnPou`Un6v
z0N?;5@W_BGBn|`(z<9h?>I?vkTz3cn)4;lE1mI}5X}R4wt=&7wh|7x$Ke51JjmJXB
z?6MjL<I5N>JkS6GBeDPJ696iZL8DHwFuRiq<-!;f1nBP6fZ!t<zEdvi+WR=<kxM=~
z<&|50c~v_<`P*jHO)|t`3q0(o!2p!W`N9BPfCT^*=sec~0|-&Y6;})(9hV!s2^VUr
z#i=^$uEQ0W2yy{oGF+(3HNb6V4u*gQl1M*&aK_QhoT9`VkG$q@^~@_fbo_Kjdq(35
zk2-h!L<c)x52(JU02q?pd^JP^fDEf*H$e^8`2YVl+=rca979~Vc)(A(fVQ-CWNpe~
z)-F^~05Pay6{}!C7j|-!z^MQx6<I|Cck+N0%%X%Q%tcIAu(*m4q+GLDVMQ8;xf#;1
zhBmw*4s&?J?ot0|0T#fQ5dZ*$fjvqtqES;1f0(+x{HA#$2!O!evNAM13{bm!OYc_0
z#G5T(0dmnmo(87GDHYK(g8`%GW+t;mF{g`P3}g4c$EyhdfR1*+&e2d+$2tlyJve{^
zA{bFC`T<}Z@YqkOu(JjU^btMpFow8*0fC=f3tehURxsKY3@#MFgTVks0WwGw1bsm#
zB5|8eT+jdmsX&D=1O^vw<RTabLl=(IAue;N%U$xam%hv#59MM707Ql}lpxOVF4m|b
z#>F@>6HXL|S<KZ4Oa~l$3j(~Dyo=@TEmrK9?@Ct9YhsL;a4`<cq&c1AJtq^^983_y
znF*a)Z;k)<6wNfz$wN(i<7=UK20R7<fHh#leDJ`=5&%F5cswIOjm(ZU08mi$%%^;I
zh#Gbv0RU!Xr+or^B)a?t09RVFftb|f1I|?ugott%D5{7r>{b!Km2yK1K@ck6rju6E
zav`hef(yQYLR#ALmqtA*Qj@CGr6MVqQ_?19jwgaDOri=GND~pAB$^6T0SiNz%v&k|
zRcgY;0_Jq*XDl%Z(Qp$0RU~I5u22L3@ZbtatV|TmT1-qJ002d(>H!WAMX^%n5(5}O
z60o3y1AsLX6$n5PC^3m51b|HStQm9o>Q}%DHje#lB+%+;00YpGX%9^gH%2Ri8qDAg
z$$<Y=`P@+h008tlGB7|Rx}gn67{D6t11Y-B@RMg5?viX{RxHQB3tWgHfeYb?7S4bR
zRrutEFf9N9$Z!T0)HEdpAj2+lL52cYHyAwaDS9hXRHm}Gz3zQ4eBtX<-g%5ONjLyd
z7SPURKB)@${mBRfmc{AdRXB_d&Lu<ulnP{FisgLk?x+-$XJ(?nb~&&&75tM6JZ!+z
znZ(N~KnaDt1ryf%$pDafS?s|n!9d|~9K&&1c#I<yH~7g7LXnOcqh}m2r~@JD0EgMW
z3LX{3&Nw7sfd0UP9qRi@1RUx#;Gzpb6<VBeAE=>TXaOiIh(#zD0*o^t@FyyO1yBD}
z!5{#zpuE250#Fz*%Y~dby**uTeDkd5J@dKGkee?S{q!VENFs{etAv&^kp)5H3lp!)
zge3|M=te(!o|1kHqp4Gg-FWU{nj^HK^R)>X^VqiMEA@F~u+Z$-0aMq}A9mQ`(d=wP
zYrlo$;;d{TJAYC}<EjPUh~f)ec#<a?S)fjUk&9xB+1I>YA)fs#?P*iH+SV@1q_eH<
zZF9TZ-uCvWQEh5*YeyXbI7D{bVS^ZuJ3Ul3oUWfO?|IYPK)Nu&wezj-ee+x2-~Kni
z11|7^?=0Np9)}^@jU6@sU<r(XL?K>afI%vJfW@F?yz8y;jq~~z`0h8zLoWaFksp=d
zCO<jKQyxrBkh<b7hX*w30EQa8p%LYKIXW(m@t^FP<39hnxNHFek`uk?Mn5{zla3W4
zV4??o-h(=t;FSdYBmw$HgV2?(^{sQg>t5fp51iiTDM;Nb97sR{HlXh?4E^hFe>>dc
zF88_9z3z6uJKpoI_r3GI?|%O~-~%uC!4tmlhCjUBn{b4$@Bt5CiNYUH@b@T4euk9)
z3KdGA6v$T|Eth8s=f%=^A!XhvpN|&`{-F9lEFST$e?8$xA&0Mw0uW%~Lo<5BcPcdF
z4>RPw@4Lc;W>7&XxYxZ|fZvqki>3BK8h-JaqI`LwAP|92L^GlQ`|ba8U++{9MKe&5
zh_Y|R`HauK--9rIs3am0k5fPSw-Sg_EQR@Kf&cQ+9~SffX#P&Yf4ww8_H9M`okan5
z9|9)eF8RSJ@Bt|R0w53{SMXm~*x%uuLh$iY5Hy418K3_Bhy~J~?fu9Gc3|ZQp!R76
z2A;(VDxeF#APuE}1j?QVP(cb{#St)pQc$1=kN^^No>QPe>($=}_Fxbyo>P!OkDve(
zXr5Ilp;9oR6DkGr8R1g&2npz*k3gXZNZ}RsVC!X}Sdah;l;Km5KnXNMACzGgP6Y`x
zffGnx76M@x4&fCpVG~{j8JZzf_#hoN#UGr4?uB3*GT|R$p%(u##UB14AtvDuLPZYl
z;0P`S3Lv2(f*}<q;uSt(R0JaOEn*U4Vh?I!6f(gd_8=U}p(!#&CEDRtpdeHjViKm|
z8lpfUTB1{=KobPPEUF<J!XPjP<NFOD4Ppfoj6yRs!zn}o|B=8SBx5sx0xyDIDI_B*
z1VWEkAnv7L7e*i|G{Y#^p(uy~3SeI{_JLK5V>v=2I(on}Hia50MIJOm3iQD@E@NA$
zqdCUo1~OnXBtjINLNka$SOfwza-&kn0W?A*C|pGpm_jl(AVhLw6jWpQVdGNhBRg7!
zK_(+YQsFZuqclDR3N!;BFoiY_pi&$G_$6aFF2y|7<30Z(WJjtb5e}kFIwM0)qf#7W
zL^9(fqJTGoW9#*!Kmw#d5+q3OBuScNQ`96v8s$F*<UlS3OG4vIF2zGeBp*y<6b@xp
zDxxbg1uQnjRl4L5D&#^&BP)WX9i~7cgr71-p9iSrLN=r@=A~Y`%P5>e6BMIWpnxeT
zLJ*KZK%T-Rih?ObK?+o)DRdql^d1ug0Tm3U2lmJxphEnC!b=7LD3rn!ioz&>!uX{C
z9w<UOj%I0|rc%5kQ^cbO%%dWVA2Xi94X%Y~l4cW_CTecrD4>8sk^&0wUi@)I5HJDn
zeWWf%K{NP46X4=h96|4u;WJW!?nUMwOlD=Grc(dp=4x^$RUBt>I)!2~reiW9J))%k
zWoG;dLLitT5-5Ug%40LkW)sxrZF+!s+T>-nre-olc{XM#JZ2OQW?>%YBy#5Bc_wJ;
zCpZFUGYBVfcIRRWD1qi*ek#R&M&*MB=WsSd*|{ft%I9rLXXK?G@#&s|>gQ)p;STaA
zS;D9Xh$srg=X`p=ayI94+Tn^a=oEs2DJ<R(;9l9~sB=Q+UM8uM4vA+bBOqkxRP@0q
zKxQ+HU}Tb?bozmY!e&o8L4O8<UrJvy@T3gVCHT4D7goiYUZOiT13b3lJWiqjPC->P
z0R-MD1g4;!;%S~{<Ud|w33`BZI-YcX<Wv9bDW87i@ENLu(xp}Kfgnbq1a4_NcB!AD
zDHR$cj9#f#HfK|iKnvca2Y_jDHiZn%UTjwBQp{;nENcEG1*tLxr>>-@dVrKt=?L;3
znMz=w4yvFI;H>_tmMUVXwkm)2DhK{5qn@hqMQRsLY7LI*Qj}>^fP#!FMOj7#vo6I3
zI;v9W>a<QO3G^OWHbu8CDY~ZXkZfh|wc%5Mf*>fOs(OGZ;N?;z0x8hvDS80zrGO#?
z=~LRPQaqra@+4M(pTRDLYc2(B&f^f4qzOtz6pSOqj$`yqY{gn^!Tw(}K!Jm5-v%;j
zQ($bydaJ8CMWJSeADF@wHXuwk!@mF0tF&^($!4U$dH}vQMPw#yzy9l3It416WU4-F
zvNA=@dZ51oEP&o@&Uyg6%IgRQ!p#!w26}ABek{E*ZNAFt%sR!<RxQ?E?NbD;Qmkyt
z3hk&)?IccXRAg&ZkZq?Ls?;_G!77Ed@<GDJt-9_l->$_d;DJJ}ZB)4IYmVT&ifSOR
zEL7kg_>}@3w&Yr3s%Ub><UYm1Dn-MlClwa0T2!vNf@s)Y>sB1?s)}w@FlPq_YvM|U
z=Z-Fn9&UdwMJWV=Q!s8bIPO#6K_HC6fI4NW=I6LZtOt;;?c#3XzN!ZhF2jx><SwN9
zZJ^X$?bX6AzZT)_M#a~HuJr%fr0()AL<%kHDn+n1FEnCmonCAA_Ac6bfZKNGS|%f=
z!eugwf^{}U`}QsV=5JTfU}RQ>DG2VoHUsUdC#<4ERN$T>2;j|*f+8G&13xfN)+^=S
ztirnK6=p8*HbWk;g#>eK^bVldf(7YfE9hng?v+9{ZtzkBf&oWG2h;594zQ>y#S}CH
zDOPU+vn5mffMVi76g;OXz^Uf;pavW3M<TES!=nuM=l{av2r}>kL$HH>Fvt#|03$CA
z+c5SXtM-EM0P?UY_%IMx>ItVXQ$TSPA3@$qMf-xW7&k!>$7rddaTF))58wg#k)s^z
zFCX`DVD8}T^)FQ{g24aE;1iF+Q*Lc!{%rM19`CKK|G6*)r{g4hfFD>e2@7!st8nK|
zGW3S7$ZEw1djNBWa#SS3AK(EVxZ)y9vR9DqC?GOZ1j5$tAb6^$Bg1YW0^uoW@&$8p
zPr@kf<?`Cbaw01QAv1*`D@7!GFerO~G0$=>L-Q?rEf-TU*6uP>^zyx?@+v<i{dq<E
zYV%TXvsTJzGgAfct#2v&u{*yr=#2s|%H9!_LcCJN9+a@H&TC|H;|8|l2HtWCWTXD|
z0q2fqns#R;Q^gB6#e{mGFK;d|qeVk=YZq6sDQhaD3gG%y1rjs^BL}oH>t01C;Ti|?
zNA|NtS1NOQZ0-LRH0O?jQhqB2|FRKdu|b=lN>i#*<TLphbguGek9_j>YTr&fC`)&&
zRAetUU#(1wX*+&2BO`RCe(FiHFN{9*Qt)1-Vs%GHD?;jC3OMSxb~Q)CGg|v`3M@i2
zo&qUEBb4@`DVPEkG=T#m=2DCTDo{ZXL;)$3!gWUD595I;1fK<BpG!OKDab(zQ06HN
zVM$YRETZsk;sG*7G!akqSwuEbdvQir1rszu9GE1MChuZTK_YzhQ>4Htm;xv$0w@3i
zoi0UWg2G@Iw#`lj_!(+wk2W7br(W~5Ujz11D8fu*u?HY_YjPk81VLohv_vmOZ<F>A
z9=1~N;9mdt^<QJ*T-WtoC+K1~HWfVf6hAXGXZLXHo^fNZXjAu=HuV5LBOWyObGIXF
zyEbggHdBB?cssT$?sijDViQCr9z18|$v1tUV^f^MX{Yv5@Hb=ocTWp&6!bOrxgvwh
z0cxvuT6egT+Vv?Y!e=u@5VRyHqyQ=0vj>zwO)3JER-`rl0YU2?3Y5YrOd|={V=|V4
zqeixxF7y!~V|~hC@WrG}<EAHHG}eBFwK}iq31odDK~<oDDEPr1_`x4wA3IwlD#&<l
zONF%>YLk~QQ?NKRy0~;VgA^?82iEwF_h3ze0uz{m&>DGk+im2|a2MM6G@5xbqB*yk
zIEw$Pc#ePL?M7c`W3*EE`H-jinnT5y!|!`PGYQ1`oC__LTRE0%`4#H;p*uyG+wc39
zaHTWkrH?F>D}t0$p{Mh>^u6``mMT?7xrf*K-U238q(ID)z!Ai(5K;vfl6cIbg|1KA
zRljRT_krTFA|q2pTt8v2x2pL9JMsykyOKq)Q(?5P_OJ)Rutx>2(;*W~J6Tves3-ff
zb8E~#J5`vwR9v;U_u&z^=>OTez27^&Lq!@2?|SFERP1|G^t-<gJi!<I<rt(O-~kon
z!6+!L!9Qg)B>ciRe6v5i#a}$e8%Y!RfgmVCDqs7<Z+yppe8!i&$)7yRr@YFqJj?&L
zyvx5l%*VXU&pgf7yv^S{&gZ<&?>x`<ywCsqS%h9#j2?+|IM5$G(kFepkU;x2eIo2Z
zyo8`v@F4b$xYA!e)@OZM_<<i-E7yA~&XPNkNd5i_uC;=_)~CJNuf15z<KSlCk&yia
z3a%iSF5BNd-sk;OxP33yBFHP^DORB$CLtb9VIu~3X|JRf^58R;s@^|7<ljBtGlg9;
zWL50JvUgr7bf8X(q`_*Wf>$q2a-&enWmpcckS`+-;@+`GzU#j}&`<uf-lvWxzUiS~
zNopZJ(rbmDXGW@KWpk(fvFCnwW{VamVHzfb3vOhxJM2F{^yj?nlQ^_ig$(~n9dknc
zxc-0#1Z$RFDw{H2tZsGJQmd^_DQ#1)LjHa9x4-+l{PgQBR+z%<btNJPK?_%O)5`1`
z_pHMMga;3SKnXNR3Xnihf(&{f(JWy@D$N>Jw0IF?MvWUecJ%lWWJr-CNtQHu5@kx2
zD_OR5`4VPKnKNnDw0RR}PMte>_LP~2;>9M-qJ&J85R{x|DWHfF2(cocW+ViP8ii4+
zsAi>5RMgrGY}iBsPw}Y;wP6%fKH0W)`xb6oxpV2(wR;zDUcGzy_7w>f<IpA{`HUig
ziUcVtaUwPg6m@FVf)}MK8amnFC`Cs&cMc-ZR78Vl4IcU97j<gYt6BfIcKsT5Y}vDE
z?*)7@3ek|cqbTywCy^gK0!LkK7>JZXQJ5ijohW)>sf>%5ryyM$dv@*Hxp(*e9ejB4
za&KE4Y8Iq*MZ=vm169-m9^C?iH0z_Bc|)mGe>WR0a3c5w;?ILUni))>KCbfs1t!LO
z5W)y0oRGo_ExZuJhDd0l2|x~P!oiA8IYo{s5<!n6Q<^!#A+SCp4izebh=P<-2wV=U
z$OKZP87K?_g~SwspyCu39WuofDw^PflvAMdV3cO4$dJk^t-KP;EVbOyN+iMxE4hlI
zI0Y<4knkvxwRQ|jpb`QJOOX^B!jUo^87$?L7fI*?6|hQ~(xCq!z5*o$QW$Col=-+^
zl+i{VeH7A2CAH~AmPk0FE0ahdFwjgbO2N~M<eZe$QcXP-)l^komDN^VeHGSNWu2AQ
zT5Y`**IaeomDgSc>fwVdn+VlbC44;=*<_Vnb|WGv3D%_!I)H7DY={ksf&m6l;88Tv
zU>4kP#nmp8a?L##-E`Gmm)&;VeHY$%<(-$_dhNCM6L;X*m*0N<{TJYUWso7@f(<?x
z;e-<=N0?w7ei-72B`yO10K||O<BT=lnB$H;{upGB)fkuLl1=vO-jr2dndO#Uep%&D
z+EJM1foZ-O=bR5_IAn+^w)kORdLEkSqKz(k<dc<NnrZ*GV163vsHL77=1<nq`CoUS
zc|!mI-hf75ti>Mt;Bp!s`sa&-frWuuj(!{NxQ%Y5>ALN{`z5H2xP<C;_b#`J5h|G)
zlPdT=H}Jt*{(D^>gy<VytI1x*000cQymAAWAsgpq-T;U5fXf*M?TRm+r2qgJ$VKkf
zU4K1dy78W!_S!poItu`dfE?Z2ch6)801l7Z2mo?GH~8UI_MP1YM&SKjPp-z98EfEa
z1OOVq9$4!d0B{5zYc>zvU_Ag(hkSrX?>TK;Qm?pyU0|P|{-b5L9sm4ke_DeBFoE7&
z{reyAgg3QGT;K}GD<I1R*u3Wfuw9*)9?d2I02%)PU=3lj89dyv1^~<e024@G!OVxg
z5&CO=AWNGsd@%+9oWU2ssNcs}z=9dp&lUR9;SQGuvq=EpaS;6Ey?0PkQM>=U6Os@h
zfgL&sn9!w3vrrAaLqIwK10n(ff`TG~hJX-y5h)@93P|rwiUy>25EKNICZK?VSP(^i
z@qN!Z@A=(!&i&2YJ9p-0_8*yK_9Sbqy*}%^);!Pibp@G<)!&LGUC{B#*u}2PF}+0z
z2*ChhWkY#Z;YV(lfO)1v8*RD$L4kr__HP9A5kT=$)KO`GXM(EWGW3YY;3k~ygS~-A
z_aJ+E@M|QL)MaW7Ww~p}BaR4;k=ffxO7-M98Xc{B_2)Rd!`Sjuq=THPt{Zu^vrFuB
zR{s^1TH>v?f~8m8eSt>8EbrZxp2~&8^{f;*GJ*?n8d))xrJFIzEO5XD)V@f2;W1K7
zI<BLj9i+R=_kql)R;s`n9Gr4^PJA;%wKyfA=1xF-k@Pa38X}(e`y+0}O+A@Ngn~;K
zg@<oePv#2lMcz*e53mkB9*pUw=5X+Q3VrfoB+EQ`Q5(+1K<55!q-;Bl$!D6HYLy8H
zkM$z?-)kmgM{SsZO~9F*%M*z8uY}9c*tx)BR`5Cy9-EhbyKVg`zMlcG?jWYxlku4C
z0aGLdNE-{sSNO|ekeo#_&LnXnzqL~$K94KUQ{OJ6QU(hYm&J=&NjH-1{ty@;0Dveb
z*qB*y0mfzyavUca8E86u7=VTrmk&PzV4(x#Xvk`^rpM_#H$=0}`xR!hU=$QsjxbQ2
z1IU%_z!A4YwP;=y{T>oEJX_$!9rd%Xp*D2a87coY8K|QIaslerN`e6LPGm*(p?GM;
zH1kjiJiL_V%XT)LIk*NIeoZU)NOrlml9PGF732I4u1}?JZNlNCeC9X&9T0AkZboV?
zkqb!{mVm$jQNlfzzqx?;7#xvCJT0ijE$$jg4_R{_<@&go96Nu-70-~;tSc%90^N&W
zp>qwLrba3;hMc3txkS=U4Suo|;Sn<<k|sJ@=yKIY7~p8v<${7_Mvu<s$qE`|@B52Y
zZV13wth-a4XUrgC-+`*MljzE?=9wg&+r&nCGj$|}O)bDz1`)tI!0Jzf07=z5hf1SO
z$5oL4|3PX8OC==9w+{=Q7@AR`jw|%G06_Knv^$Q*qNGXY@c{5L0;^D-p``>FN%C)j
zMhZ0YD$hB9CMD2lZquj4T|@PiC)Yrc&9Xewo_H-A0K!!daJTYCpfyf9zJ-!d26y59
z(N10_Iv<_y5{P2@)qr5}>2z*=9&x~b(X{y#hf+5nJ$T3F$@jE-k6ez6>w;wK+QCOU
zk{Q9nL2y7c|N3#81u;+GjjLz~ASRa~3g9Q~vsF19F38s&&4d9mQ;%AI<yU4Moc4IZ
zIWsT<tIG*HZZ7EqJ-zT+MC#&GgYCGA6_H4YX=dW*ow7(lW#GjA;Wrk*GveGlfLGwU
zbm2x3M-V`&^TP?oI{+2jDc^kMuR#FC(?dMKG_-3SRn!0Qq?;SUHwQvO%s}(t`}GpN
zihn!-`8S^Rd0z{?Ty~|OqGn7^WEfu0yLxqaa;+5s1Ww(%3O5b}PF}D(8{mD`1W=fU
zh+`-2J@o$ia0AMS&ln$VaJEfvAqqFQJZ0T(JNo@=w7gmC)cC!idtTbEm;C|tg7HBf
zT`crkMi22F{+X&S)@M_mhTTR3{?k~f*(aVO<$YC5&8|M5*X?EWpT!P@_|yhIl;OXM
zafrdtSlH?+c=Y9JsJU8hj$<<N_H6Nto{KAmj1KC~m6XG#ttHsW*9V_UR%#hM@y`5k
z8Z<Vq4UQ!_3-i)iZ{=1l3|n_a2vCrqKN+Izw4N3$I+-Koldqk-PU0z*$WE#R(prg2
zxgQ>P{CWYa4BJ{dWw&j`f7~os$2IA%-_HVI2;3!MAys>y=e2w35gnNC??HgX&s>!u
zOp4np%n&l0uU-{QUOXQR8FcYmQWoE(xb9N&cgG}o9sA%yc@SRwLm~ZoDSdb!>AiqB
zxBBN5p$fP=3pBO}LiAgX7w5T>^n*e`iWFQZ-+DE9fjx>;#7$1Cm;MRRoa4uS0t?V;
zY`MA@J2wf4%ww)xU`Ehp{A1JP!ha2k9bPYx3ohMeKEVX&0?y^qcMCvg1n{Pd4I+bQ
z|3YAc_a7)i{<y?W&TSJH##}yGxK4+&O0BY*dPYnxvPwm<M#Wzh!h8m3;C^?gH<n*U
z(&zgHsP_WDwk2m%2Q+E%y#FFZs)$8(jA0E0d+G%{W)5e@qpV%IY{MZfST|1DJkPjg
zqJo<c3GNZj8<!F!pbxi?^R$X<^5|d;_jkCT$F@&1$RqJ%+>v!V){Y(!8Nel$kzO2Z
zbFA<~df$;JgrxG}Nz;Dfh{bwOHEQrZic3=P{qZSoz<Iy-@d(CQiX<TWG5jlrscMkz
zj_;PH)X|1Y7Zhe*8wqTZ56_)M3Vo#E^dtlQ0ah@ao~pn7p#R-|;<;CNXy2M({Ni~s
z1S*C2_NSjqN1pp>9>C1Z%Z%qyh;n-dxP6L;;d<cwr1PmYp5$<r;K7wxeV)7khd(5!
zb{-nYM{8qY<~m27q*~h-(d(x;OD<lQVftn5B{2FvnzqpqwI(&yopLRf3Ia!myWe#B
zuQw)9SH^#>UJf5qYy$vk=L+J0qI0>)+_jJ404kmN%K^%2+F$B;>lGK}#Up;=oDUbP
z<Rxo-5J%Dh00|L#7{1Wg!w+C<0L1-G0P+*g4lO$;y5nKY?(P8sX(?hS*tnm5fcSiN
z?J5_)4q1`+JA@zgK+w&~1ftxo)xvNH$pjCs78?B70&mQ!WcPa}b}dYvB8(G<sZNoq
zdTD9j)BLKtMK_OGJfB%$py+|WvwtbH6kv(MzmoTnec~T10~{Z`@Fa@HE)IFpVuf0q
zAPO%s<Kr1CX+?M@O;<EWUMZ5cOAlLFd&A)@r{$Ciums{e<V;&)$?W3!$f7uT7OSnu
z3Or;1&ta;?Q>Rd)f2h5FMM|>IoO(pg0O3tSyv6b{k4DaQ+{B(Gq4F>-T1NyrfO3fw
zX6)`Gd2ZUr-8IL=o_b04l6m|gwb#y$)Gwg?wYc;L`67w{BpEeAhKJUTGLuo)a6El^
zhd`w=Z){zHVv&lGK0hRnt(-$`IndJ9L+G^_lWA#bSHjk`SO?4-#`?s3ez$|uG+A!(
ziBu7^mL_=lqpVH|O3%2VtCos50Z0xI;2)ue#|SUQSTOh42S(GcmAWAouJ3QNMSQf9
z7C-wzkE1i(rw7OR*1JMmE6dzdfPPqt%x7Jo-9#q!6?h4V(g46OOQ^<8n54v|e?q6H
z#$}gFB`G_kqrq01+jGK|yoj<Ihd0Q$Sucj!(@ewiSzxh{Sav>VB{LBZGZS$(0L!+*
z>B4u%+-}%eUW*-Ma*^s-t0lWE7p4w%vwv#1{Kw`l>{ZD=*K0i5S$WuHlk4!@>;(?u
zy-?BAICntlS2ydb-#Jx<9>UdgjX0>6heMW4_EOY0p(q}2973dr$3H($6v2Bfoa?6y
zkIQ$*tJ2Pb9?m8RHelh*5|?L9K}=M-XIx{9@U=+ESDC;99SVXzSj4lwbNcD-;o=vo
zPMQUEz|xB@-ahI1{G?92txs>dj|0NXz*FFXk@pNe+>VUF=7TOY;Ix(ZyL{f*B8M8=
z%WG@gjp>)>xqKLSbOzG>Szh~371|Wq1}sAOKLRN41vJ0bz%!)aC+^E8*DfnH1^GZ=
znFzK&0Pu%)37!#Xa!QQ~aD)IR-|>PA%A)LfZtQtZr<=U+O>PAfhk;k^uDiZqwB|7>
zq6O(t7}&9plM9xec~`Te6aWBRB3;j=`+(Vn1U$O<E-0kxy0(?p&8Cc-XCXJAzqW1R
z4(&aq-ts!MpC`;&FZ5+b*w05y@dYA7O*dyVZkZG^y*a@~X}a~JNmgHrRa5)c(~R4U
z!IqD(7<MgHHhVlWGdzI8To2_cRl3DsfAh#Rr3?ltF2L{C(tX<)gqA5fr^SEg$$*_Y
zfS!nCGes}+ju?y?SY#{RVFNl09H*l!J5`IiZflU4^~LVk>_tV`Q=^+LKR%YcHZ5X3
zeKRIACVM(Y+MUxppD8(*a%?ZAiZ`w<SdD_U#CArX(vE4cuZi!?jJMN~r7f{}R0?-C
z$InhDyt9|nhp?qB8Oc!+7I~9)?UTIRqTfe|d<srta7bq46ICosnh_NNvXXhSQg~FD
z^%s?X|3Dfq5^hb$9^t#I<dAfhgqd6BH0;oL#w)_<aMxrets&URTnocJoyxG6c8)K-
zCNuVsmwJ9C{qoZUBfgC5SsBsx88`VdBW5VK9Wvu)GG{U}lN_=#97679W##hShriBx
zoOQoUB_9d}a6e%H8vp<@521IV`~W*Zx77srgpM9Lier{k6vT<(#3ZD2Oyvv+#|<qN
zO|0?8=6Jhv`p)h~F78$rd~Cb}9DD<v1FpLUhFlB|qu={qzTln<*hKeZ{D~1LL+?!a
zpRh>iG1yMmZ=9J*r|y@f9Rgr5?&$;Y4@ol6sESW)q%Sj1b@H;&L^ke0Mp_lUAP_wF
zNA^>4PbQ3}fA!DUr*p8gYlSm;gHZTMW;hh%jRe`Gk!&Cm_m9T0(*KZ56}@rZfaw1V
zjVt)uIIoAErIkJ#&-`UZ1AX5GSAGutd`QdlH<aP0qv=Y&k818%aiDR9W7Tx|wZW~B
z5=1nE0-lOKw<v-q;5lJ*%TaYh@qkWUN)h7=fHmxvHX1-j>Y@Ntj80raqE;L=^$dy)
zU`wI9%K-OtG+00YWO<~KR#F;YuAW?_iiko-)G9Htv)^cCYF486i{IaVp()Zk#{FL%
z^N&#n8497y5M3aG-b-9uTmk|D^ijuRv8PU*vbVSQ_V$j9jEs+uZ*Fe>^M}rWf4yLb
z{(VMe?WZ?}TMtQ+|F@g`e4#qnR4#jTy*^~vul3z_bEtXM?B~6<Tce+U9g@Q-5s`PI
zqNy>laq$U>Ny#axchl~rXQV>!XFte!n46dX=y5?|(Uanm(z5c3%Bt#`+PeCN#-`?{
zEv;?s&z{pdI$v~k_w@Gl4-5_skBp9uPrRI*di8pG=FRL}AMD-2;?nZU`_;Ae4<9!+
zw?2K|-ubfo_1pI!dq4Mo{XY0}2rw`U7*^+XL?Ah&h<(-hFQP#a;|GQcixdVfCGWX)
z3mOHExO+NQz^FE-7m770B|e=H0n%^|0}qVG-w&oKU;Sw9x$7~MgOB*L@!@Ro_~Rc`
zZoPr}V`_yaImS8stlrk8_E~Ra{CAfPAPz5tf*kOW*Dxg1hkcNHy&sNbpCisT%9$mx
z(0wNTxgqwgWQUMB&L4%8=iwYlU%Pl{(5_gKOOv{I4ocE3u}j<^yz18a1DSN`=7sdx
z{Er774SNNJLS+Bbxc+wrl|H<%xBpL%s}3_FDpnZE%nXl95lnz3rDpIZ0QZtJAF|)i
zPS4HEf0R>@QuL&xlo_b5eozrxR{OX<qOqy?DLEhZC@~TGEc`x<sRPLffsXb(XTHaX
zd^FlUemj8~0(l7x&AhplFg=ycw7e2JJ-xuZv3YZBlrfR<%Wl}Gv0uH@;{Vn~|9JGF
zaC+f8-~<pwZ#A5e34vr{VnMU8v9t5=bMp)G31T@!<oI#oI2=wy?u4j<s+@w7{AtZI
zXU+&H>mE5}BB)|2c*a)bl&*w|zNCttq^8*k4eg@_Zi2>MM=b+!+Vstny_%MujHNf$
zCgeErrh%!2v9YnPiKVHPt%V)Y&e_e`^+HHUh%k{NNhFK8#UJ;7Anz8b<d-gcqvFJk
zCns-~$=|A%CpVpnYE_D+DaE`vkvOQ9G;lI`MEOCVTI%rWds8YI(;Att)wAc-9xSNm
zzt=3>I8(fhFWkVFebuV`=~1<RwQ66x`!|I`iAuYlcJE%+{p?4N9+#Guwzjq1soIaD
zU(*LE-TOI%zjCI27j*BJF8`@s{?oYir>m=LWMpJwV&cu4H+}C8I=B9eEFH{#JDmM>
zxU#acxw*OW>0t5q;nt5oTfYv!e*L=ph0cfn2@wB6#eemV@sP~??-QQNa`gC#GkW?4
z`g&(h96!nu`**^}pyX5x{!VxmIaF?WMLCb+liIpMMV`v$rx7TH`e*eDWi2mqaH-Gx
zp6KJchN(6E<4+VvrkGLc6K{&tJ6}EJ!p|-j;JMy4qn1`y@Nd^2&TMX~Z|9EfZccvB
z#{E1T+QYf|Zyr?>`3z(IctQRg>dqZGW#wR&N7zt~Zw_tg<0S2ya;kr>x(1~6-B7{G
zo&ITYm&PVhwel-(TTfri^-X<>;^#Y^{OFSS@shg|t^CZlf4_Vb<(aKyOV1#;cYn+M
z#J3BpV6W@i5#UL6>-W@k)l@X^@bO(gaW1_`_i)tur=2ZnDpUZF4;T>dZ>xmf8+oCS
zHykdg5@eor$_6`j<D_BzjarIzy0U&hj?43^P%_-NEif;9xi1-~!PWWTR99!l2`GxU
zkA@|qCzm~$iT$6xMvD8=Pa+s-aXbJV3^iM|%Io))MF7*}M`jTc9j{@B6AMv|X`qgu
z5`BM_0fAS4{5{dbfbtc^De|6*gxr(^hDcNIdb;A@KMQqd)9(lKp@{vRCfy^)>UYTI
zLcu)4n%qVO2^dXJf}o{H{rF;puP7L)%;npatgOF4uVyX~vQ9c;Zb&|&$mT1G)S5+g
zP#B!oCrJ@(fi(aM7@#C4MC@I~C4g99OvLh18jixOt;+$X@+7>Dpr0$%BLE<DMknPZ
z$$_da`4PY~NdyC0FjD2NiG~OJBlAQVa-IZA$tSNfzP|bFMckr~2n?jMy23#1WQP%z
z2yP16q%e@<gHoDR@CRH^VEs^0_O_y>eBL#viDqLOz5dpy*xgui>9tO(NV1`Jj98{}
zuQB#t5EZ2pB7jba=>M7!lCmPQO8*OxkkqoGb3)3<g^mhoi;FS@PdY7RZRrM`H~wp2
zkjTe<GyZ{%2!)HW3SJ3{KB;tgDEd56^r=+zY55O|IQXPq^hpizN&SnHJ1zgfN!MST
zB=#$&(db0^@8CrH+3%31DLPcN2Y-9euc-ryPbwWP)U;GOS{|gO(&=(9xA<Od^M5dg
z(litIY(MhtpSU-FF_SWPkTd=}YVptGq4y<2YnAVI+TU%}PW);c|3&9bSNFj1@Gu=Y
zv$J&M{H7zP@AIGOt-Zh0`FXhb?)S>#yD#hS{)wNp<==}N2b(*qi$4xGe;yuw|9E(?
z^_N4te|CQ#{`|W0zf7b5idO%B{2qA-a3SfE2-^YY#-}B_GDPbfQ8Xr3SJU#k<9L<0
z-Q}T-7zw(lDbem`!U%})dJ>;r31{SBJwNau=0#+5tjtw!9|A+ny<B_*v!2!CaPu6r
z>IAVRFmn7cfs3?_t1q?5)0Ee3Z^px3R+;K8%-yfiN-FcL`W|d-8y<axv^>$an7^gR
zA^h?qmt(iCQ{fecK>^n$>{L7T&OUVjC|c-MFe|Q~B^fOZYGqVA_vay2Mp-YJzV%*Y
zT77vY*Pb-PSAS{T=}4x2!hZj1Yvt8n3Eo*Jx5W4%YY4Nwb=P<GJm<d3x80b3Af9aU
z&e<O_xBB#Qyll3e>XuX!SMXuCCJ{DR_crB+<TP3R`!-ym;74Upp8t=o6GFMUp$pL8
z)4shzx8G`X3y@!ET(m^PjO`-uiMVzCAjHqfyvv4?+qsc1m?S|49^+mz9Qg^~<6p+7
zOu1~=9I%MQE@X5Gq{s{F`eE%OBQAUEviA!)Y)9)bt>iC8C!Kh^?#RTA=@3ax5$Mzp
z(e0C;V-1jm7Glq%BqH?8v9I-o398!Bf#%Av`>a>+OiV&}(!~fp>)<B6qXd1c=*!kC
zJq%b)Id%k@J7~@Mh#~)y6W1;1M-kEMT}BV}cD*_n)55XW#RMFMOL}>xxuoX#Z>QZ@
zedNs=-JN2{%C75omH*IM!k4HHeUI}BHn?+dWq4gg#Chd=p_c2!cSI_FWDS<Gw*@c?
z8&i4;w9F@pqO#EJ7?J4HA9)`YiC)=ojD=V1$@+@;NPfB~Bn2!zEiU0)YzeotPrgG9
z0%)jr9_!rgNyj|F2&$k0UX+m+vlPJ(m9cMyo=CRG9MiQzpm4Q8xi6HtqQ`G}YINX5
zZ-mNsVQdX?dLaXPLkjlW7}0kwR>V955hyQ-j6lN(T?2hnr^bShkGj7#Ue7O7gp+ik
zWWGB<vVjo5NharKRM^c2>8TY6nxIL7oM;Asrp1zSnh^Ce;dDhb19L9op&sM4ga{hH
z-bEWOnC_ulF92Wp@K`7%GMT~qJA1tXO=u1F#llJ%-z*4lrapO}QobEA?bQ%JI~Y?p
z=|ni&mK^>*^Cl*SB?Z559vL8kc%WaQf^xF1-I?k_c#6bmi#~4^GJ+C_9!D-c9KWgN
zRR^)@#&A7YRNJmF5blBDKNsFNPpFV~aJ|PQriWr%SQObP*C8`9sQA0w^RSdPcUiu(
zW!KFi3Xn8Y6TmB-ESC8AwY)Ffz<8lNq9blMvl;^I71MJu09e+7=GvW4lFk81_Mj)G
z?z9CHJ&TP+8-y_FR^RZB;rq10LoWv_FLE}Vh%&^#5co}IINs-CQ~RYeqHRUtWVk(>
zEK?_ksO}<@VOr<GBkajX#oKp~mPj2pC?<yBP9-c-4e-M3shKdb$12A7e{Mr$>Ax)F
z3kMiD0FM8T#+FqQ`9Ig#{}%$AzFz*<E9Ji}lac=}txNwYt^c(U{zF&)Q&FqlpZlNW
zblEq$mZq<B{~P`MpB3^y*ChJ#^Z(gZhw&r%425z8kcyzjL?|<uF)GEToKeJ?=}4x=
zs<4<D3MeR_QCH7W=Q1*dA`rYNh+;v^V-77dK-UB?Gz8#C%?N1*fM3iEt<z}QXoOBa
zqX{$9XMmf%o;EWw6O^T>qh|F1lNq!3W+L)54GEt2>v%J9Gq%@)qnfArdZw{vhnpvi
z^3Er-@pH!RG1ynp{Re8E75e+H@N0yyCCYe0hDfYzfRx+$M=LL41Y<+z`hW#~4ghd@
zyPnw>jRu4b1IZx7BT-Avy>J^}4@aRTgr%ytq2q}Hgd2N(H4#OWGL-#fU!)}XuQM$?
zkPBr2cmeVqPQFfN6jUTWsf2Nh{4kEa*7(A$n=S_d`4_EiV-n1oN-vUXFK-SECh+{@
zZuP$puQ)&kF2mEH(J&Z{kB^VO5fqigiAc)I$jFGuD2OTGBs7JOoy19L;zZ?Dl$Dj$
z)YPyz6JbdcVXOmA(m_PoL_*a-Ow&YI$w5rh0VnK-!vzWBLWL!RgcbZmHT`f3K{(}5
z5zQcB%}_~&AZb0El)kZ~o}JuT6ImMvc{>MrCkHV-KM7Mmx-vXw>L;ofB%&88ZW<(N
z8Y*MuE$8GXaW+W&Y^b!&6)C$=S*IXbryKH4eu^X$MUsP@>or9;KgEkd$^oHzdU~d&
zrq<ThL?ZG0`SX`9T?z^cx_R>^4i}5VrQpOL;v`dWl9{*@vBH|MxKk-OrEHuA{gV=$
zaw$%;UQ|C;*f3MVHdfp=Ma(u^!YM`EDO=JhMcB9mr`IfMQzUFtA?{Qp?o=Uc+bZf*
zFXGfHN1{lOa%C^3NVz|d^U0LEk}dB+Rk)OL;##ayP>TGO`zLQEE8WOC9hP!BEK`D1
zB<@-vNh&&au|nFXNXn-|;$nle{}Y*jisNAwQvUVQS6k(7)XUyzRrD#R%Ub!XMM^h|
z6mC|?ht*?EI&s!7gzd&eoW?}YcMFqViTJ!0@p&uZ-zo0jFB8-$71S?tqf;tmSUhM(
zEOb>oZ1X?F@JVv!Y07<#m|V4(;*-=SjpPc=)TZO)ep$-66lGpE=B?75E(PkiQYu{`
z_iLnes^9HDlihzJWm5U>+tc?ZPp7|C&3>(t{Z=A!Rh+U(k5WGtxhWI7Diyma5xFZK
zyL&8lS1xr^`tGi5_O8r>eTBGH<*bkL>AMOKcI9*SH6Ojzc)W4q(XM>qzH<4#YQe5b
z(Y|Kcu6pIZR%!)4t6A$oCqCz;)}sOK!YQr7x7uZ|waedXReaDY+SRJ0U;A`5PFLU&
z5fO25adZ)W_wL=lB0MYWpCbJ6<G&mIy1Kfywl=yBFC2RRPrdz5r9Ct>^z!A)+1c5@
z0{iFTKc)5Z^76*U23=JDRn)&W={)<VkfzH&_+R<=zdI4DdGuHQdC&FLJnl`x>ij(r
zE9k!~dA5|;Ut2hsAy1coMs-EQ*{835oa?W9GWu8k2^!ba55x@bN;wbIm%MyJcx;?w
z+)z4IW?$z$KhRM2x{CB7R?wuee5TIxWvTOEW5sNf|MEbNNmJ!~Yw+&J`N5{DchAWT
zEJCKu)r&8v9Mb<C+ZdPOmWGYj)#nEvnzc4=%{E`%cstzM^!Xhvg5{`rTl3Cx-(Bf*
zBW+K2*Tx>3<eIm)eA}3=yYz0Pz4gcEg%@#$M=hSU{oGxDS$1ypS^KXa+slKw7SEp@
z{My^ycsKg|`QagekX#_cxIGubk>bS*6x7M}g$Phzaxs$AmhO$h>ruQIC2(zhk?x}?
zxkMFB_gspREGk}#m1$gGij(h=T#o-gvW?N@_F73X6fapxH9h%Z<t{=0*!whVTd()`
z>^(}}rxUMzc%MOvI<}hWp6<1p<ylm+df%t<!)msF&#|=!fv>#Qa)MV&)*gm_|FD)z
zMo6vaMRI$u=TpT?*B`~7{J8!&SzqcyL7J`ihr&#c(ho%su6_LQBri(pV{t*c_s5dr
zqSBA0|7II=`0u_k&8wvwm2KZYZdB0_(wo&?+?O_M`ozmNYllv5Y}SqGOK;Ur+Fsgf
znD!{!YMi^avDLH?CH<*+CH>N;r|U&!pISB>H$Js)_eg(k`}*qA=k~qTvd_<cf8Y50
z9AK2$roni8wmXm#<=dU8Q=8i_{<CdN`A(0(_064LY&5+ho@j>8mww47<zEJ5nl`@-
z%J<6b4k^F(*&RN;R=zu;{$q1@6wfI8bxfDX_pd>C#n%bbQ(IqO5)5R&O<LReew(tt
zSn=%@@%q-c*Q99K@6+xXzTam&|79D~EBj+E@U`!c`QWvRA8$i{(9gNvks0Oo79x54
z_7<rUm3vF^r#|g1CmYE9TuHO@`}sceV&%`(2iHIST+54=+g~rp@Z0}T{G@XKV|ml3
z{f+8gxnG<0ul;^)HLq3v`qcL0)349}?i=%ar%$5l_m`nlpMUR;85}?OI%#+L;M?@Y
zs)O%y*FPWpScpFUXKy9r^0Qc-<cLJo&jk^Qr_qM6E|qm;IQQw@Vh)&zZl8z+X6-CD
zJ-s;THt#l>u`61Yx}6-%3m$dwqN)GEvE2a{$sb5ennK7_;Wmb&SX4gJz_61&iXgO<
z*RQgllEjJdH`>$5LtQ-0c15{>jEH|{GZuj75$ZxR#`hW@c7@}QUg-)~GJV9J5ln*)
z!J>DAT~qnDS;gfPj=r-;vK~TU<;Bb7bwebGmejrHvrYcFhh(ql(--^xB1Tc`F=vu>
zq>^y;(Jur8)scM7puWdPm6RW8HBNVzg^rV5b^CY^E%nnt%czr^hL|PSPRu}cs<1B3
zY~{3pu&g3=fzXFp!M)HG>Pl3tAHW^D8b`>~rbyI?NZ3IW8J?Y&tlJb#js^O#tR1+8
z>7_HmUde&H^06+k$Gj1l>{kT*g$k4xRP3!x7~Wb*KApUfM8TSBDe5Ax>8@%;VH36a
zt+Ha>#f=-0iF!pT>5W~5kas0!M=N%Y8e|%R;(LclUPA7vU;5VYlO5WCV<d8y7JZ7v
z3JB~vFZ2^|KeMfn6fDCjQs(pi)bx+U>$)%R3!+O@Yxgi0h0bD+e!FN~`ZMX0b|g{=
zEvA)7W=(oU0M;|3jis0HH#iluzYV1rp$)BKsgH{hTEZGJ+e2}>926uIMWG@yDKJw>
zgio-KFzbnTyAqiL4UkZ;IF=&yC*q;rUa{;=&y>po1VJdoo8W6rcB!=zy(VA?f|6q~
zGFA`ZSyFbtc330aICG%(Vs?j+*NG1vmoWVFls4<M%Fv9=J*4J3T->uPwu05YPTL@Q
zeVx9$^o<PrDM=FfGJePJd*V-8wEP9hmvM*gHdx(ESsT7-Of{=+xpcxs-A!ItgRsAl
zj-;?&BAIr;gs*>mZ=5?pKDF%+cer5~(x1r+SRQ$ijXE7Ib2!fS!gi(cjJ1T3@vo#Q
zW_)dj*oJ>@3?3f)80kM(eo=%n)1!I);dpn7li5v225#L3j-SPLmLbI5KZJ^({-17O
zHjKX|b~V9{bwYm8Q{}B~g_ln(Xx|-tMV0?SW{>hCJJ%1uZ_}&3k8eZj29r5*r?8s`
zjG9(YlW#g+6JD>7=QHWlfzlI|M1O9FUf45<T(=WGN_Y3Z+_uD@pDHRZ)W<*H3c`5`
zAjo)m-A^}cVqj0PRWeLbEW+o%d<i}jHIC{F79@h~alFDOSB15#iSN0z8e57lC_yhd
zozIg>Z@SWxr#E7ntejNPw`J2u_jq(z6n`_pG$W&Ng#A5b`{}5pcU_uJ>IK=uEL^5@
zH3**ejz)b;;Lu-DjFw?XOy3(rcwIg7Rv`8C8QpX<+rCn^^`$_e>Y-djLyXXk*HKiF
zg0aN!YJKCb5o!EQ5q^E-5>wFdhfXJEMmXVU=laHks%Y}+6)kaRub(cCy{zN)I-15G
zG#Kn><SAeESZZygUu9!obNBK8$OeZ#S!1((zv-O3=}%2lE9d@Btze^W+@_b*#_lxe
zY!+`vpjyjNKSg`)CVa-!Tz>~Uv@GX(D&P;1zqiCP^Sy}Ctv5g|vR&|U-wXJHXEM@u
z-YD#nk@8zmjeE8~x9EqKq01K#-LQD3zKn}WE;*frw7{aUH^J7o5k1YDj+wbJsxd)!
zQd@by0>9p)(7wZWW@Y(>b)Q7*$k(FV)WW+JeS9TyK-uiiqrW^p48ft-ukilardqTu
zp>t{Wr_|clzW0sx$^@RSYhPz9kb7!V{<Y%j>?f)H7X9zH2Jj*|5y<ftt?w=Nm8`dR
zYfqjO(XzUhc?Pz1NN6>nj(}>2R$Mvb)9$B<$t@8Nbx6-n=^I}5eVKIjDZ=$wxyHNw
z5;e`ws}Bzh#E+(&SS5<IoueKKDm+WJdG@D0R_@uCq+H>lH<y1FAE!=X-tMiMDB-3q
zpYL`(48~o0E`rAfWx8v3e!X>R&F}d&9}FfmK*AHz<+|5&YxBA=<y#mN^78i|Y%Dw1
zDWYNifuK_)YuqV{2$FTB_x3bnKuQxvD&w}|*YkpyTg(c#JP_8~T;aK=!o{K2TNvGT
z82v}Chp2cO9P1<1yk>Xf3E;!Ptkx(>?&Q|%H`<?&S*UoI!b?*{w^WKF#8UmYqr<=O
zL<(KJ!_eXLG8)ve(UPmV>WjE$Z*z`;YJ`ME9Kl5}X+@l9zIDkuGC(YxXefO9;#Ho$
z>$|7GFSbF39w3~Izu(KQc6eP&zcCW2dlB5Z{=64+jS2?a-{}$u?Thsg1yQ$yg?~hP
zvhUaxUL?KKjq=F6la-D?TFkC?>OyFfC!=UASB--o@|Kn4E$hr^>&9rD1l!IS^|8J1
zT%>-{9;idI3$&*)h#BZkgUtrf;tFx6C)orb*VA}0x0~YIsAS)Zc!@qRdD_PFNkT7G
zBsbCm1A#eNyOb1%)1vX0VBu(-ef&2NkEK)whbaZ)!|q^OiZO7$J4@6XE9=2OvGFf>
z*%q1;g*&Yf1+323LFszed1S))X`RqMLZ>KOh9`)|+P5O(Lz|5yj$!7CG4H6!vhO2U
zj4+VXIv@K$!l7u2q;`sPPzn?a`ylVs!y8p<pQIR>#5$fBe<F<`CFKbsnQ7<x-6>#U
zEP^>88Br3+n-a5YpZN2%4q@%a+LOCjH(1LZwyhTiYssv)ly&yT5~%iRsuDVf>1jr3
zY+UaxYwzhA@LY>&_WPd6x{}N~KFLOC4!_%nxy_it*>R6={oX3w2+9lWF-YeThE+A#
z2dN~10f{Qg7(KE>gc$YKjY!Kvr{u2N(phniUYJCqv=EOtM$U9MudHKNV2@OSO#8D~
zGj4IFoVWeTYO8|T)Vtrz<reb+%<RtObiLSMk2&cP&KRzH$^k<;krnYZqR~s(Adj_A
z#o}}IZRBBqAwC+!S8MHVC$VE-Yb2uUcUFuS1~1PR{1seD&i<Ll+L{F>iRN%B*wi~<
z3MScpm4NTaYzNyZD20F@KR~^xE3?Oh(f+WA8O@b#^ouMIo~Iez&#p~^Enr!rBv^N5
z*zqKo!BjqL0BorQ^G-h56yh~~1Jq5<$GlNOy&<29J)zk0*x@YTG?}5fudJb3V8>CQ
z?|owP#ABmUWhYp^*?r~N?++|nl!p+7HnGZ|$Jny73SIUKN&H1_szvUOMIIqVp7)Eq
zTZ(+%6#4BJ`SU-yqWUDz@yWH2C&BlhgtR;fee>kj{u45PF-5glYzM+XV`l>)T-$)o
z;UXaGU;NCqSlksJ3Y0)WxE;X7S`BB%7h_!Eh4QGOZPZ*fx^J5~j0AD0LC#^BCB|WC
z@~DCVbiHF~6@dZYfvj+3H{C`}`*Wrcm^xL<yBy1V9GNcpbCiE96%B_B($JDv5X?i3
zg>Yuk&;bOn+!6ioBX}Vh)xcl57=lvp=Sr+D6CH<lV=LztP>&tU=rNU=0hL3l>}R)8
zv&jIxNcQHNsy~ipc_fanj_fV>tDpgp$&U;M<1Fi{;93ZJz6IpjW@+GO@fw51wLlz5
zObf<k`6Mm|HTEJxSzR(hfL6?~2+NQ!iyGs=U8>qEt<uH7gZ&v#9^R}wWr7&2M&BVY
zo~Fk<<w2pd)wo5VgNB}v2a$tl=1ZJy_<HDeH6|P6!&l6WF*7EE7I;*>BRZX*>-aAW
zh_9KGM|0+Zym>731I+4}MqEG@;uq&j{-!gFjYqZM1tC!5>}mt8np^^CrPhF`sh`_M
zpaUxB0JODh(~(8MU7C?Kyctr)5&sM0AkSbKULB}bMfin54OZM7tTz~kT-<K397KcC
z&2X(ovso~fhVmH$u^{61He*;dyi^KP=hWJi-HI89xX~jQ#~6vp4Ga*7JPEvK0tzO>
zZxUL0Ho!)FnIeFR-A3i)fvg1hH9~6$8J=_40)pGc@EVA#JX7a=#$(lBtSXQ+R?13%
zd~t#-mVx|nj3NGvcBGag{vehBLDWDtoIoKGW2Y3-i}0MSrhWbw<GV5%(+&h-2{{VT
znDd`1mbKPjYHe1-v<`MW%LWIf0W67;Okg7CF$$tE#`w}Rc+h0F1sMQwBDEnQ5L*&s
z2$|6l=r}@ZfnsS0OB&+?8cN~WKwJyT6`q+5qBh$XHi}xLS_A?h(z8`F{zz8W?mDST
zhfR=m3@IpGSw}8|R<q14Fp+1U(j#pTTF^B#D04v7+!%wvIPB?I_i`zMS)sk6tkQn2
z76F0S{jQqJYhuLooIez(tS2)-11j&TfwB);ddpCO8$FvLD31lu%%3@gSk{-<&6JOv
z!=oocn1=9W*=o({4?3KPeJ(NssE%%XnL);mW*!pL@IuurNDp8IGid0U?FNN%kg#1I
zdlMwdqwG<P(15Bur~Zt#zJ}8NFw<_<vMy%K(A>fRLwIklX<09=*Sn?uTPf!JSobWR
zr5an-(1Lzn3V!%Kvbi}@Dlp2V0JptVRzez`TVRH6*RO@PFlc~;>d}n{%m;JbN8><F
zHD-a1;rduq_1K8B5Bek#v?#0Q#Wyy_G8f7B%;W*^aM%D1C8<#+nJ_W3FvO?;A1xi=
z+!`%9+-w{pg1j=oK5C!}&s<VHSg(pk;l}6uOG^Nj64SC7Y*kZvS3=%M@Alx$)&UlU
z(Nf~*$M{jC>r`Rv)aUXkm}`@Tb6I^d^F0Ey;lYTa`in{ae#XHj<T$*p<rOp;LIW$6
z=DTOGP^)cJ+V5A0)|VXfFV8raX(xb3+Iw#Mg5FL8j9QbNzT?~X$1e<&&MXY`>^u`<
z=`fS8tv7znkUujAGC$awnf3u+o0QdH>tPVY#sK;;nT0Ue>>^)Q0d_(m2;1y>1f)r{
z0)uiYy+dlTr8RWM&p@1eBh}DXOhJnU7UP6DXnvWW#z37a%Si%wjy7aiR>p7`_ELUs
zAaDp>40Je?8pcDxjvVyLP+O66yAcsxAT#8PpYbu9V#2*Ca0YXn%kpHwedjlS<|i2{
zW@g9;MhxT*5z3-9FuOgQ|La`|dKA$CQ^-Mk(P!+!%nb1MY!0yO{1zVY);VtaNmxr<
zSeyG`BLXw0ZZg*sHscvmKNW`A%|VMKk17l=6jw~DB!cp0W$G?qgX|E=4Aj*ayEfaI
zTLCuU%Rp!F<q`Cej;agNQ&9O=(?FL+HiN|=IynwJpR+VW979;HnE1}m(T3g~pgza~
z_m4m)ThQBKU=zN~Lk@W9)OhuG`Rw+xt8;0=z>?G40BgW9`S9(m+AWY;xvc%LYt6LR
z@*yZbjK1s#8Vt@ZhAkzPPYRPjzJ;}#IIx#Ec`M;%y3AUk;~FAh&F8^%xcRD$N!bZG
zz*ZA&U-{ntVWI5rg(Kmx(U$itmLFzFAZ-NQSqXNrejJrro+XwUvo?VK^>ZYsj#=4p
zQ;_pgFQ4T~<U>%e@&m(8eaS*6i$eERGAM#tn^YZIW8H!;E?&+-cM?i-Zw=4MuP`XQ
zTS^4E6E}@a%ZgAKm0_^=;bz*~Pd!4Lt#ZKNvz|5ec82F*454(Q;$;DUMe)doxp?&V
zoVlrIAVI$Da$@yYzt1c+Yx{Cw^~2#~E+0v^z_*7Z;G$nqu*oWyLi@83FtEG_mcI*X
z_7>3HdOC*rpM&m4wiq<JXGTEIUu9<nzj7&5ycq(iaed1!WiuOJZP<2L!keX&z?*MZ
z#h#D8dIpX#H<-ljw)=hx_uIi(ZXY{WYQ?sqbNqeaJ5b~EH;2y%Rvc6Reek8pYPTtv
zps}-KUg~uCDgD__eaLsuU*+)mFFDVqm(g#mN55YR?Yj_Cc{dT$>$2g-w#|UqXH#e=
z9KM>vzek5R)u9^<Zhm0uSecUpcuDKLi|~5KUo4Bj<eSgu<bEADD|NLPW7hh1!w)ny
z|DJe!-)Qp_gXPYYR6D(vSMIs>J?DwhkG~Oz;rlSx{mI<@oLeIngTJ^^V51*@l*bRB
zZ*8Q!`_^kw5ogvscXWL$_uD1GW~jnqvc*a(8wiE5iW-iEEBZ|^%ehaFE$UD)V&(<*
z<4bz+d?)-?rpK2Jl5u*8q7D-)Mrp@vD&18kFsCfpjuW-@23F0o>8WkjUB21S*s~7<
z1{JFR;e*Z0*<#k!#ezJ~9;#x4y_>Ho^=Ij%ciz~gqe=lRCOhvNVXzwk%SASBlZ~h{
zO`rSMgzd^qb8V!NJX>8YFyEAl>8~GX8FL}T_<f!w%RKTu{%?E^j|h*fT}$8hG>M4%
z%^>6>H@G7d8uJ9wi-Ke1wVq!SL98Bba_?M%#MC*soNnCgs;hNkm2jEc3s~vDcl_ep
zxt~|p$Im{C-<4<3Zk%bD<(9WywDrqHgf#Wpw9zsiN>mPK-&A_<!_BkEU3yC-k~Ft&
zty?RzOKYfxB(=`Ik)~qiMET3x_xH6W`C}FBdlVo7eO0QlSUj~gqjskMQBUM0s`~cG
zhFt!a&X+P(y3@5qQ3(rH3H4~WJycC)JtV4=3f5Zy&DaNq+Cubv7h1-^m4qXgG~JPB
z4)%60ANx>R|HW9QZt{wWT<g~_gVJjueG#gS^1DMa)R;?oF3njr4L@L>yTdWWI`59y
zX=y{#uc~#1G3^L9H$I3O<x<TdL}fSjk;wblm*bzwH?7GCSDij|thNBMQc#8;HLiI(
z(l|?)@BT|+wV6PUDTAM!$h(`3`C|9*6XbkoEcOyoPEdYX-!M9oUAE-tVrSr_@R6zb
z<HTByajkAEQPA{1*~XNFd5y=Vae2xT#10aOaj7tW8-0nOZ(^6W$Ik!5Hiq@Jz{|A9
zVY9;~qt~7UjpB#b<NIuk85#nIn+)%vD+wzN*WE(4wvQhV;=6iUI8b_Ey3bR?9CU^7
z8|ka1<>bRL%tA|26L%JjFBEUW{usOV$5vn*Fx^`(@4MD>Oiftfpv_JNcWpzwin6cm
ze~`w=C=(B(v>IpfzrJd3$uIAHzdHSG&X?;#?cj)?J@$HHz_R+xH-4X(P`T~=3{(_y
z(fE{DP^9UM`K%AEVOO{Aoz%zIxTkF2Uv5+gHYB-+t5?5BwT^O)^4PNXLMn0EzNoBY
z{j%H>NeXy2^tHZeF?)@&Vjf>{DnvWL?)i(xBi?gYUx!_Pd-F%mn?KFRAR@VHCkK6(
z#lm*io4b25E36-7+zR>lWKFC39J<2!(aAxxhs&jFJ*vN!`E(Ebsr%gk&d0dq&%p;v
zzOBa2Uve$ql9SG9-hOXaAPMCOU1V2&jL<=xJ>wa0o*(+u{KCl}@g+It7k@mqtnK`v
z+9VT0D!IvhsN3>G4UD3f`xkX(GULTm0%g8)d_xOTis`2s#)ReD&_jfEbxOS?g>Q#q
z!TK134tRW(vj#k5|B)=B{pqAyB=R9L^;CGCh4`(jfPC{#L}KWW|Ev=B6wwgF&#W7D
zJaCpKzeE<pNCx}I@oCe<07(?w7p{QPTUF{{ofx4Qeqs86P~`OsTrxuPE$PPES8|A3
zrNp_riwH6a&Y(wyHSap=QIMs^9!Ol?eKrn_=ojIl9cQR*hM+GsrK8yYq#FAO2E+4A
z)0c3(^D)w8Jy=sNB+=kJpJNNV`*U@6(YqW^SMX8CQru$ML>ecD1iZSQN6NA~Qp#T*
zFFY(BeCSNL&#=fW15Y04tp1X+EP7F8_=b6)Y5}!f*KLZjW)MSI<lEuvQ#&SX5u!MD
zhBubV6Ez_e*$|WS)Xij>*9vh4RS-QANxkH=J`g1uU<E(s1`(s&Gtx?lpoK0G3_qB_
zPR3KdePvS@p;%C+uL?_kdxyu9!oOfdsZCDP_3qb=A+*?hv<mga)skMHFPLxw|GYN0
z>Y13+$~h(%ywB$BTR(BtzpAyv7H-(3ah!Xl6yx=hr+fV_iM4>5CqPwy{wn39uTCmQ
zinDucUysE@;5MQHt@A0kiDC@1<?DWLC}=HO8EoZ_OXxdsQ%S8n<eTnkUqibeoKFr}
zWJGc?MpJml$h2c2yBHq@(8Il-qj4eSagdmR4*xo5>?&hr{c;pBf8TMs$F{M~+1yQr
zA0xTPc*Ky4D)|%>H>Cn&?na_7!xx+uwB4J#Ws&-fQpsW|_p*H)e6@s0f}3Lv?mpo&
z7c4OtJ$Z&2M<<+4<b^p33{%Hy2^$`gaC{XMn9Z63yuQVEj*30ijCPRI`Bp|;QcSb(
z?{L!%y(A22E3fvJ?sF-L(YVas)wFxU2OhC+-^nVaY|c)--XZPMGhy2$A|4Q9HkaJ)
zv5Ww{A_Y`@X7YU^(3^!>My{K8`A!wI`_$Cn!2<kOR?(J;3)pL(j=0z0p)EGRebCzO
zYTTHdyV1<_Wv%r3**o|&oPl!smGc4&(R+7~EQNhO_rlxbSe@7rQRFLe!NQee``>yL
zixiUhQmMRanK(7MkLP!xh8nv(IL@UxiinIvBWEyHYehei|B8s8=Q7{7GXEn#sEZTB
zcEH(6MXgGK6^>}f$;aXiDv#Azc)xYK%Y`Udc%DqKX6s`1{t|=wSWdHNaew7A6IF49
zeV#x|!;)wtlK0_bG0Xtdbbk~-^F%nL_I)E|^&8G{KGLdf|MiU4ooe_Jph#joQqkym
zgAZEfOSHg($cQGmu!mngWf*otTdp7>PmyD5Xy3yy&|%S!F|dQ@aORl1*9q~9kK0sV
zL#Kl(E~7Un%5AR`2L@|ruEZ-(zQ)>~*1NW_njIzB66>=Qq)~GoeS}k&VSGfNXTRlg
zyYrg`)m6XyGZVfMk=e4#azUeEf3D`m`9Ez-*ZWGsz1<YJfhFwCos5FSxspcskp#b&
zxkBGIO%MDsU-n2#MXL-ejK*6`+_{zv2`Z=);|%H)P_(j)v7$ZVtD(Hm*%R<`#0zd#
zP0B6XAGu$3m4Tlni*kE<>6%r6@YXBdU&9O16Y7bOtL9AttF`0HnjL)ET&^MIm2yF)
zX9{-P{)E2Lc@9Rp=4JbgBV=75aqgxr^ZV*$`Av<_&^)3HUGERSNfT0--~K9qS!F8U
z-`V()HG8TI{`BU?w}*lfjL!QnpWOOZHw7=hi{^_4PU!T3%C*Bw%$z@O&2*i?u({9v
zCLyvqToi+&Nk^~NSm_NaUWj>`vBf)*h=d6TD5lLs*<?0RRqJKdlu^8=w+x#kI-b||
zN3~pKi-53rhCh|OpG=~VO$^oQmY+v?rhs>u`afz$OFrK|@|><v(o~-Bgg>XM!C5C0
z9Sj*J&sYA@LB7616{F#!rXv=dXars~Gm)1C#x5jU5uTakHG7gLt>jST2t*XWk*zIN
zt}PwN%2*9m+lx3e79l;>9On;!G>R0B!r6yZ5Y<r{LLN#_M;L*Tn$u8uQ+ZDcpq8v1
zJxwn%PLY|WC`}^!vm%X)BQ=|$S0boLNge5CC^3f0It^tfBH74YU;8O)h7mkeq{KAC
zfYu%Ly%#}c(B&&+4f%*W{!q>Ws$LqE5rAmUQI4lk^}DF7{-@#$Uns)5odjMGb&J$O
zsYqTO%{C~jCpGI4l{GKC$um599Z(~yS+6r(5T#00pP}IO;_SOA!IU$eC!{lVqWvNM
z_4Fc6UDE0Xfu;sQk);bii-SUYW1Gv5QVc@M4Q{p>gc4a_PnU#l8mOYQZlest1q>-|
zorVtzN2Lsdy2!^Y4WmO1squy!PH_#7Sq=}k!I*LbBSK63reV@=!{pzB_%~5V8LD{o
zsm8q2WTH{Jk5NXbQKkUvS?WD|tS(*>4xrFOaYhd}jdFh*<@xl>?P;Zj)AH1f3rvj*
ziN-hE$j38bKVlwg_URUt8<({imk$|N%o$g18dv=`u11;E2$<B$nAEA8)SH?#5KS6=
zOqxPXn&VBLJ}_x1H)(A%X&W+WpEG&3Y4ZHH2@Pf1Az<1mWBNkfw9C}An`qkOW7->P
z+81xy|G;#h+;p(bbZE$Qc+PZW({%K==@`mvT)=EX#_XlK*`%r26w&OJkJ;-`v*~!V
znFnTX%FSlm%;tv7=I6}bZkoOOZFabTGG7!hUy?DW7Xe%`HGfYuU-dCx3pHPlH~;X!
z{A0QKMw|KOkone}`KL|u&%e#LQ5HJ_7GGp6cGWGunp%7#T737h_z`Nc7jN<NfyI8g
z#jiGt-$ND$a~6L#Ee?NM0B8b4kN}k>FlZ29W(2r10pUwv3?m>D2uwKy<_ZE!I{`IJ
zK+h9cw+L(p1Q2bB5wv8NwdByS<TSJ7a<=65wd4u2<V~>T%dzCIusqUkDKKm)IBzMm
zWqI_#5{tIN30euuT8U^_iJDo7Ia`VQT1kXiNhVkw%dwKGu##@Kk{Py=owt(PvO0cX
zC67L<Ab3_$_N<b|S!J`chbNrRp7cF?D(vj(gtIC+XH_fCs<oe0A3m!we^ztr?3shJ
zc(k>aptZKFwT_0hu9>x-v$ejjwLzG*VS=?$j<s=xwMo0R>9DogytVn3wZ(xo0c~R`
zXk#U7b5_H~+RVnr*~Zq_#xBgpKEcKz$HuY3#;M(gIBerQZ{xCMbMC-~gtm1Rv~`oU
zJ+EQwZf1MI+1A6?_F|Z=XM(L)j;(iv?WJ~GpJ7|yd0W3N+sg;G{%E@ZLAxumc2_m*
z0?q7#ob9gp+FcK`3r?`Rkz*H9VRy6LE_B!~Y~JqHmfh_GJ2KinT+p5(YagLuA8BTP
z$Jsv0*FHMTo|<4ElVg7vTVWs9ZXZ8vpD=HqxMiPoV4sY3ND*{Mm36qQ;gDwLaL?Hx
z-Pa)_%po(uAuGq>euYDJyTgNFhn#tbhg%N02M&2?$9zG@N3xEOH5?1f91EQti+mlQ
zggF)`IF{r%mR2~HwL6v%J66m)R&F^~9XM8_ooWP~YGs}3G@R<qoEn^+8hxFb!kn5D
zoSx=5wNyB@wmY>AJGIX{J==16e&9qy6FUTnowCFi8pJL$Vz)D~$Cua}M(j%<_U8}>
zDu{#a#Gzs0@H}y3i#U2f978*g3p!88I=|F#o-}iwa&~^@>-;**c{;&)Cdc_rh4XB?
z^W3oW{JitqE$72`2hIy<mqkIBC0Unc4VM)&m-o&ttG+I4VJ_<lE+2ASK32GFw7YB$
zyKK$7eA;sPeBiQ;KDQ%y?#usZ@4kYXY}ke0CzK?#aMP=h&_ooZ_ZE7W-g^fT=>kgc
zAP{=5B3%STq=^Vf7eVPwI*5RRR2A3}p7+_$de@pY>zi+8&pue3=>Z2Oxf!{x-~ZyY
z_#t6&pl)$!W^r`S;yA$KB;MjQ&*JAZi(juTe!sUko3}XMvA8(10KqN643=12me`V(
zI2x9?=9UmwOK6}aEWr{l-x9yZlAzs^aM+S)!4ke}NqlYzz^zCatVl66T1hK%4J!(B
zD@s=@Dj#F4Ob}@~n9njyu*pi0JB$_)f`<sEn$W^Rfa#m8FlS?!U9ssAV8-($8na+(
zVa&mpWoknZTc8$}VF>&1GP`*QYt1q_E0}J=nn%!DutWAX!|26z1{(oE>mxB65`kc(
zxs3>$H9a>-2%?1zTM=2X5v*MiTOSc$utD`$Nu93{#;>3#ZRxpJ3DsBR7*+-CSMgXw
z6l-kx(pMp@Ac-1VlzkXik1h0_wMO771!xUw7Ob^y%OPk7@m|%9wADA)#PYS%IA1m7
z(o`v3Q*2)~fosZ5*vaqOVdvRd2HKiXu3zMW%ouPyeOK|M*TL`CwDfTwoInE?!{yfP
z949`|Qm=UzMg_q(?rN+?%-Wyxhbc1P_)JB)!5tp5M=1)*d!Bz#PhUYfM){mWgQB78
zi>uN(8)s^^GUZTr2B<N_@q*kj6z&id92Ll57ry)9!pnT)QGS%$;%fBz2Y<>{SI~w}
zdz8A;YS6IbFS!jT%*mRgNV#-}<em?%fp*>#P#1<(57#fJsq5C1w)Yyp9P6&<GORkR
zJN;r=FIZTy>A@W12nGRLJHOY88CK+Xqf5@CK!(nxJsP=z&O8fFu`m$gB+9dPtEy3>
zc*2=Sax2boD+mn*mv1#veyxktFc7@Up0FBkxaGGAed_b|b;8|EIlGqOWxe(2N;t^<
z1PYRldISRbp`jpOmp6eLT5uO;F1w0A7Z7!55PPtv^md^1wjVpFDPenc%yxjw`pyvy
zbQ1MIbL)}ohTlmPg!<k`h2d(rOHF=sWx~$r#BkK)(M}KyYo=yrCHL-&#;>jRpwE!q
z`zKM%=p8rv;3YQK6|b$bgssGK=l8A~2$<_;>DHH0*JVQ67rQn|<<8!VuHRgPgAmYH
zl;74^z7-38`vDKeijHy%+}&^u_I12_;;JFcwI#|GQwah6cHIc<fFgXqUD#`^XxObv
ze(QxhyoP{Y!@og<G`LIGc=cmS;8@7aof6EIf}r7>8g^XfF`edn?Ob~sUdxL4%S(pt
zA(n1bLhi`)6&8iBbQd3}^OtDZmgyIk7!<ODuU51#rKl_J1r`ZrMLQg`@=8cZNJd76
zLBJR+%E`$oARr(iAt5U(i-C)JdU_@%CK#{yXA?R#H8V4_xVZR_By4T{A8tb9rX!G~
zSlo{tRR}}aa-BsHv^c#h6?$Jq=E_r8u>op4w#7S(BOoSf>8DsQ9J%T(8J%EZJ`L5S
zv1}Zi>;_|-QF`;RBb;EPyIa}a%9iCTbhL!7P7p~f6K6cXFj^@?Y|@xGC@t}ALo8f!
zr_fL+ISYz4$C-u-mVp9;oa8`q(jp){{QInIJlG1Yw<<WK5+sDXn6H%hr3hulcrVlc
zC_?e@F)I2>gkt_#u0$x+O_6Iixc{sJ-xj<gUwr%m|D>UG!fJoHP)T)+2&GqX#)!}>
z4$7k8{I>{2p-@+w>;GAVVmRpE7L?oT$={Icii7fBa!|p<_g5VB3UB=z1pO}+=)YFj
zFJHKS5zvUKv;RLRP|Vx!?=Or9CHx~oBZwF|`NdH(vN9-feojWB$c#)3GRw_@-x8Mn
zL%@Y^!SgT#JcpX+X<hvj9_nYWn)10{w7uZ2Xnxy_OnBY%R0i2OSXJBm;VIA1r%br$
z$W)1F$5<y02uesLF}+rd3Ff_pVmsjwtgf$1%xzUenVeJ@_RmC*UUfbl?X>ENM@k1D
zbg>aFR=SxC!?-OGVPPNvaxU@GA!Hdg6d$3CZ5cxiGHw8|2NzED7|Cq;@pr?eF>gNx
zcBEhAYC2TV{3w)%Pe<$)HhziG0RQ`R{%fYN9lI(=B>GMr2>8TLG|A6q+muWDz7mNA
zGzCf|v&qxqsa}ZTu!^acj$`Ay@v<gG-k#&fdo+^wuG6K6iZXM1=a-;*GCnOdhgZBD
zjHV!|zvcZ^UnU*G)uX~-7qbsVN=So7h7Qy+NjL&6bLzii+d()Pc1A#!UuZy}z;6KO
zpi;(D^`9@B)MZoA^dOboP3{n^@4jt?kDRhi8RBQf70e*0g^0&Q98A6S)}>#lZxHy+
z!DY4-6Mso-ULYh_RSa&+wUKw<`z?X_)tN4uwfi1H$S64#7+-!-Mz5iFj9Sa30bzG=
z@1Wa9tw>8w3R{~pU$cj2O-^cGYl7ZPFLg9e<g-@#tmDA^5jf#&O2G(Qd_afRt_UZF
z2>uGMGc+J+iafmpTTR9$!)REpUsYC_H#j6s*G{C5%d|%(H6v756OqD`B%%bfO8%IX
z9je>Un(l`0L6mVZrW}nuMWdXUAMv=0MKqY!S{*%09vhSEHCj=Q>>f!QdeWkHNboeT
ztzMHevwmMW=|e8BU0EKY7{;6+&4kA)>q85>BmhpBcjGO3%o9NZ^F)Zi`~mYIprfP1
zxNrt`ZUo{F1i&Z&W^NHoDgm?Se_c|YSy~svId3SM+)y^ZvYfXrA?H;{fy*kC+d7Qf
zA(q=I9<vGmH`4rj9UUVvuQs~FFOv(Hjc&|3cT7(C)jD@`a|>pR`=4+U<0S|B2Npih
z{d0x;ujTDa4*5?73AyM9{nMX_hrE-ue(RV|9k*J<P5*rA*2GArI3~tm|FPCN?)AWF
zbaeFR?=WjK;J}}}Wds!RYYDJ7^1<`<BBBY3wWc95_5nrs8N0@%TakoGfRZ8&pynCH
z7GzKZbZ)XDl<G;%9ja1=@``-f>gUaMFLH8UrpOdEKPPKzZ?D8n>uS!DYv@fT7#d5E
zEyv4y@PKk`h$a+`cXOJR1&l>V8MDv~OiDzsu;yXmsP7DUdOrYz_dr7umKo2p05L4m
z;kX8CGnBnPsR|2DVN_RCb2V!<b8z=Haw?t{4t=?05F3ts0;!ieC=|UQTy9yq7#o&4
zB-623huvMf1T|o3utC|Fe6S*|@uKT_E1z&r!llI0eknG^fX-Zc4cQeYL}(D{UGA>f
z8xv*a89(2{969OZ<mv9X=QT@6wovU)rsXvoPu$hPV6>&ak#~(bQcr@ZVbPRc(vwwU
zUz(M#P?6k_LH|c|$opnPN)pHnY5z?kmAHDJwHMB+#qqZuUfUqVnh82``VwX`)G7dR
zTZWWf_x^Uf`pZ!1j@q5tg|a-Vjzj;91CwVeCT{}c8v3;75^vp}5^p1sBc{vx(0SdW
z@UXErE*aZ`nCe?lUv~|$DPBqytsIX$#T+j9@?C56=UrP4P5{?oM}q&jWz0`426isY
z&vO<o0ak9rbqVAR0R)Ex63HitdE;UZcp}(U5J)2gyAcz=D%+)3LGl^?@hS*cB*F`c
zc!cC}WtMbB@OUHmA2R)oRpgL2uCR(W2CEqITBvXv7;+mMvdFu#skw4odKKn>c$J&l
z&YYKCg;nPf$6sE>>&mNOqzccaRN-@fWME+6<m807bSa2Smx92!6#iJGWGq533Bj9#
zkVryYuR!pYB6y!6BuWty&k&LgObW3``6Q%#9<y2!lUgp@AE|<7`G-_N$dw}Ho*~sr
znbn>l{u5bYz9K8u;cWjeS;^w^%*A|G|3Ox={++B?{~;?Jmt^I}C0XHgE4%6bjO%Z*
z^6(E?;khI$Jl<Dir5d5qiO}g{(jQ?mpJ2A`WVY;Qb?Ibt8DO&ggn=teE(>gKovdyH
zH~$4!ZUywSdW<o-FR=NIvHCCE@E_ywTfjIL*8k*K#4a6+Ky=fUW8n(!yB@s26*_V=
zZ0>gKBu29c#CBe4mbVzqBK{A}!k4ljl(Qh5K8^t`V!4xId4E6)>m_L62;aW>Z=fY<
z`#So^KTV53_E(<l9~jNTRs0hJS_Gf`0WAX6zr>#Y4O)IlUxF6t+)h;9h)i)W>gm`Y
z(DH0jrfNo}bRG3{8&$K8s@aw<#bhfmvgOy+b1*6@>fauMP0h`hlx6+-B^~eW{m+lT
z%`3Zd1@SO&1^RDrC6taq#jCF)1P4OK=j_rX{jTRPxWe)_nvFtoRCXjfHI-Y6t9Bpp
zPq+dpsJ2$vnGx|EaoNcNHQYeSZD<^l%fw`jdKxCqBrkc{6qk#IsbNp1*_NnW!4>W7
zdb}c)aU-jlW>PFV@m2zZk}}Wx_%b^audd*Vt0<fCL~mkVv!Tl;62m;hY?P$KGe`aV
z2zI*PqCyVIch}+3_ESzTzD^pc-e@$X-IyH1x}hYNVdLFpodGpw``UU5S8_^%Z&f|x
z<KQwctncU1*BOvXo~YpXTEj=p4ZonT|H6S>nf1=^$ulb?5%XRi%(!izEh6E${-MlM
z#@#=cfZa1e5c^Ay$wM3xvRr8klBi3#Vr4+N?E~k;Ws#Hf+yDfZWG>!~fudUF3N>*%
zEd^BFkqZs^&Ww~}!Tj6ENozGVYI&KE)<eh=&jwmsGmPgFu5ih{HQ#6$McZvyrm&!d
z(i=cgZo)WEU8?kG$SAngDoo;g{hUbM7}h6j!f8@@W<=l`f8YvJZ&4!AHJNx?BKPm|
zi~-wLxH>eac;$uR8mVCFz>~UO3L5yBG{OCeNKJ_DDwy31ei}MXKzhw1o*kca1m{}t
zGLO7Efxw~`it5n?51#RZ%v!WOwm9iH7U=;8xC&og5z64*hVvCguVgub+eldgzUBz_
zfYcIa#X2)qYUcndILfsl_4x64Hbp@Y(Q<{z>>NiKdw2)<TA=PSlwm{VAk0h@utns<
zv@GRIU;@CqS|8n_9b72S-H{ig8iVMn`#mw5<W_99_bRI<Dll;6&cS%dVA@8uaD=d2
zNMBCU_6SzIA#|F{l!$vs<OyMOAu6`%ccw^lN#O{o!jfe&@YWPJi_ejL^+vvlV<U~o
z2F(~~pmxW11nco;F2!vDZeMr?_L<vzAzn!xo8cM}*+^NLChG&6k<{D~<c3?yB<q-^
zd?{*K<HBoy)~I4`<TLYNyk;7?t@iu7>y{e;+Xh-^q#d8aDkBx@_jai7K9QSowqKS6
z*Gx{uGyXnok_t4NVZ16Z8f+8c)!Q(s(HfE-OCCA8zUUFBXOzX4CDRK1CidN*xByK`
z>5NOTzcI!e9GdQLB=_TW*M8e*0^=Ax2b&qzG3Oh)9ik508&f8@^v-GcH@OnSq)`$|
zvhU9f=7Zh{xFQ<D&HTd@PU~edDFa+R__c{hvolh48?4<8ry;W48EGXQ%andy_#!f%
z=p{mFk~YuCWK#B|<u5zFZ8{7xYQE&;kUJ5&Ez=-MD}M8iV$!Onh{2(^&jWWLF3vJ}
zsEc~HGzNGFRzEf4LElmcv#G3gfQcpUy(MW_zHBH=tKdD0KAPNn6G7e`3xY<c{g~c;
z>?lX7+qWc|w7DfZLyC2?-nu)aZI8Y*dWF7DTQMXWlLOx*Mzt;S>w;G7^_DyJ9P7A3
zeBa98@b>wyE0QkK+X0Z6&`(po0Pa$U^u|;K0xE-J<5(NdgR?wWQy)h|UP4exj|M*n
zw}7L+@*Da^G&Wim8B=yAuPPa%cx!t-gSXV@3r$u>g4@Fn-Xk9j*`QXHdc);(6344`
zQ47>?KKgEOMw1GRQbx#AGg(oFrH?Vf0jRTNrFUSDCOHy@vyPC4RJ>gi@iMvq%&p&L
zV2xT6HfK`7pY<Wq`JrqC#r-;^dqqG1I#`#6)Gm1idk}k3n8;e|F_Rn~twb~vGgLM-
zoFs|2jf#=tBSCfWb431tg0iuve8dQ#ktZHSMDCSv3%Oc~b7;Iv$otXV?K>i9F83+C
z{5Gw(rO>+YIw~+Etq9(sBcR@Qk+3{Uo!!L_6`;ZUQS!Ei7N^8;+7Tt1J=);xiD-J{
zB(rra9|2=eR#z{RF6@>IGwk46H>8uf^#JZDPEv43B3743Mvq40c3$O8rHERYQSb<P
zoRolyCiB4bFoS~2`YmPR?fU7E5pQ}34W|Z`hw+=4h!p$~Q@wlk6_5+qCOwlS?CWsS
z?NEM2M`ju)Lo#0NHn<$BmRsfibVQmk{cxS1JZE%${n$gnH2Oi|SSV$v-b=V#R*!tN
zSo29;i{xrnH7lpAv8vQzy^qkxc&mHjc0!TV%k1UhRa)OerC;w-(!VEU*Y_|H0ZnKN
zO^tIsn9r8%t4T+M?^Gzg9Y8PpA9Yf5sU@i7klcw#M=EivyoW6>d2+CH^WThiIc){t
zdc;rLyp=pLv0Abqx!c6%u+(awxoUJQk}t4EPp5Yg_w(b5O?qzGEe}3ycVC2boIBy(
z*H?91CtU=ny=bWRa-?HcBc3Rfj-DxI7}>3Z^OPRd2GjgNvv$$@N#H(^)`t1SYZS_*
zPw5|ug6O6Eo*OQ?M?%#d^9&Vgn6&QMeaN+um%@4Pm*ynv5w5L@SN<MKGAj}+7L0F5
z!(!TjUq)3Q{5m|NERzey^;&fmdF&@t!xmjy_0W=la|V$f^IUp&Fhir?55y?jV0i2U
zDE<=F=y8RWtkJD&1$9GxX!t%)=xS21+D;SC5|Q6~_SAFJxI^OcHfTcGvN+b?u9T~x
zWs)exC+`-;_k>q%qXrsu1yk&TC%anPc>wu_3F7PY?xH2pdPviYMA&J5;KdyJ4LALW
z?edMzUnadiuQ!qJi@bwk;?Z%QBE5uoC#iW7ZVAu5KNDZ<y=t!`w0^|b+FKC_V`18m
zMeB7qz0&uTMZCJlA=JGh0Y45q9k?GNY|50*Bhs2N>=pTll^ZYXmdnXu#&;|cCG3iy
za@ou*&)>DZy<I~z-~Jvb7l!pC>UKm{5hUa1CLP3#(w-b}v*+*Tb!Zb0WY3MCfWQh&
ze5A_;eI%BVg+fT<4A|rg$--wgug7tgUJ6+^l3;UYdq~%!?~ssMKV^RLCfODCc{bXi
zl|Zi1o-i|b>Ku3_baq%<;94!f4ZS&aex#czh6?t)8!lbL-&WA~O^V@eEfxKU#qH>+
zk1Xj;VxB@Q_v-)(mhFgChW(+JEi(2-cX<jX2O!pU7ta;X(pK-x{=mX(my0Yoe~uS~
z;w*L|u-c2_YXF(r+WDC)2IGJt+gB!~eU2vrKI(gvY*>be=xv}aHpv6<iyqcdg^<Er
zHZ%j^TK@T~JjCfCq$Ec8A0I+c61|Ec3zkq{w@~)XP!2<A?xJUufnUJ{z%*s^j>_I^
z!`T8H%DibmFXVp0&jqo@?<x+Jiw^a&q<V>T{TvmTxE4ILhM+$ImVKB@R%j<W2!bq`
z@J8upsO0(&smY>zkPc>>t6}Odg(i<F768=?axR`efKNEYqt8p_1fcG7m~}9p-0<?>
z4Dc~@(t*&0vWuW>BO{L^CpH2l^n-c(9Cj{}!>;+-+Lp7eTk13GG8eK$*VfsQZ$3)x
z3l=O7ajK8{gez*ke=GgFcs`h>OCD%q2|PQzL*r($#-^Mi9Qjf|M%6c1CWGQ0$oxZZ
zI8kYsr{QCgr^eMjA)j73ky+7Ll10oPJ@(Gfu~GyyizTKq<7dj_g`}-Fz6Wu$KW^=P
zEU_Lg;vMD(OAuv?X@<pa2yx{@u2<E@A7sWqua&3W3l*_TxK<L4nLM5=g$S?%@LDXh
zVBSMq9RyXJA-~bjS8k*v);mpcL=$lcS(N_ML;^7VZ^y?Br<(7J65{)A=Xb^sZ6vaa
zkOYAR(?=ulpwZaw7Ws~@>j*cYM!MPyC1)&N=aNjIWQvR7z;XK|jQj>bfR-D4dX2y-
zm@p}sv@V&^A(;@IHYG$tP-`MlV*FV69tF(G2N~?DpF+$-EhpmA=E%3M8E1&=fJ5Rd
zV#FbKn&c5<HIVw)jonu@3kd0T@-7D+iU9V<0o*r$5rqVyX<sCX4oM7c&8HNj)#y*r
z);_1ne!a}gj;aMmRO=a0d=*J2CqR&se<5DL?J^P?10Wq0{lOs<i^L9Ohj3{I#0}Eb
zXkvL*RUdc&u~{CEMKap^jRId~p%j5iy*Pp-<`(^2;*eaNJ%gZ0fLSkog*_Kmq!wui
z*mOX#Nt`R2J)=c(gQ62CFPIT{&A_g1R)JwEh>9OMni16(KJWz?ax(U@%Ejj?(EGv_
zUjj6Yrc3e5_~Sl?jMB~<aXhTMmvI{E)P#19GFjIztUt|rBU0oTZv8CN&Sz9M=9un=
z0zfwabXX-btS2b=nS2xhQXA7~!Sw6gS>rJjsjCk-j6Fk-3@7nip{R7f=qOy2&Sp#&
z9&H#3Lb~f0!{Y2k+LCl_z?UmVQ<Xy(mzN002C8-Fjt|k~4}klrVokbX1N=$$Mo9%X
zj5O_1Shu30eBlBrMJ_Wun%05g@8l!02+|z^`9d07p)zk{;KA0t9a}1k>n33$06p&$
z+$9h`(tENQW_V#`YT%!^x=O9Tk-6auAO)Y^Yo;=+)G*k4lJ5uHj#lk2<Mc~UjCKV4
zTY!M<G9Oe~Wo+5~h%D_!AY$4Z>urS7j3Pfpj=@W9e67qkM-|`LOR-taEvD5H2Y@I<
z#l4y8Mp>OzX>0<pOp=aoq$PRCOBFADVA7vFG(y+Fs(?IG4_0ULLN6N|>HVq^6S>X6
zBC(<p6^UO{Z54n&<N$VBQd4O|AK4=!MS<{l8ZaJhzm<wI{L1@ED7psm5*nUTj)eK_
zXX7+AP?EaO16t%_p@#3Sr(x@@gj(OvdJ3~rR-SfHtM`K>`E6*zqr4*(owFQ_s?Tl6
z4`L~fF0z4B(Ujqq7bK(#++9LOItmdRiq&#{SbI1cWO_5SDhgsCr7EE~J;2HqKmI_8
z%UkKXN-ia-S{J#7p;kWBUBX`n24+(<2r<I7!h}Y-2oMlTEXy?7eAp=M`bfOr9&S9p
zHkF4i77FL>_m^{uIp4A@toR9Bs&HLS(&e`zGfoxNOfb&CQ1#af9Fk@gx+-jGgN;Q(
zxGX>b;MSli9{YMVJM$>psvX!M7Zz1;w7}-7a1*z<PL3u)(Nd-Ha!665%hyIj@GJ3O
zt+b!Y{GSlaJdsT-3bU>f8j@DnSR{fJR!+TW8(C=+wdY^6B$!R1xJeqN=?@Ss%3EI?
zh|zdmgD<_b_L3E`m0ur`Qf;m0vb~q+_vB?<tsxRV9VdcQ=MaHQfN>05D@0fo&h-y#
zyZnJ$w(y}2!cj~96+{g-kgDgCg^g}gM801C(RPhaobopf_2cHe3CZ2N1ftzyJ~x5k
z)8~Ey?t4nU$=)rypYSz2$&rh4u%Go`oN_vsYJ!hS<Z>w1zPE1x&pX7rl|!5AbPOXu
z0oJu5Idud*#ocPZdGE9Vv>o`0Z3JCELIlI!K&`rStl)Kp5o|B;^u72y$2gJ-1r(74
zj|QLbf6b)mi1gR#yjLMygMx1p#MB52p4oLZ+A<bSfienvBD{Mja!S~kpVD5`b=NF)
z6Tj_K7k_uZ^BwjcP7QbaZL&M%%AQ0aHg}ByX;2?D3Ch#Pm*7b&vC&J87!bY%Xo4G|
zZ$(pcshoblb5ZMVs^%eB#F-3*YD-t%>;mhI;OLCpqNxLQstxsslW3r!DIi#=4CfnG
zX0MSRjMveW#?`gN9n2;9z<V>T7OKtNfWHLlCdAba4#H0Y>vNOPjtr~F;CgF9Zgl{%
zXlO+y{>zW)>Xw)XGnDEkAdBcHT*AQ#00=w4GcLGq=76ng_FqPv{iZ{7Awykiqr^Jz
z*KQ5X+`^>>xF4b(V<mxkxP_m4+!(3H$P_56I-ri|S#cl1w;F+5pfKOZQWG=;slyUg
zM{nc~H`9;F5Rp}mC&>nkNw`0?j~!E+A8R5M$=n*#jwfpp9oG*SCyTYlju|(VAW=K=
zF}pTleN7AhqXgrj@v8WQ^E{A@_;~kh!c78c__7^};x{6B>7F;~|9bL~#P#_ip=Mw>
zuoj<777m}AjLw^ieLYp2L{l5m`}o>)vcz=i4mtS<ZVGqe%nRtD>2&_tbm6s`VhIcz
znJEpJDbJg!d_7Y=KT~ryQ+sW;UShVvY_>6AwkdD6<@Ida{A~N#Y{#{^PKmj0GYkxw
z>&u%Pcs(~XKR0|fH*#(Mqs07}+5AMn{8Zlj%<K8N`T2#5v-!nq3(FD<t7Z%90SlXX
z3tO)jw&xdi&lbL4`@Apl`M~V+QNZVuyw5*hfBrrH`TXoNh+z>+auLUT5fZov%U{HA
zUnE>ugr6@03`?YvOXTKDlz~fsW~uE<e`cxYO9+N#Cdp+M^JTWcW%m4Kj`rnS3(H*R
z%iIhrypk*Y<|~4ME5i9JqU|f<3oDZ6E7A<BGLoxu=Bo;Ut4jH+D($Ok3#*uEzb3<)
zw&a?w`I>$p28pa0x38HlteKy$Su(6!ORn3RuiFQ%JLa!Dx39Y_th=7CyD@BdNN!*T
z^FDzazWE#e?Hi94HUiH#f*CeLB{##(HzNZ#qc8F|W7{_$FKi~9Z=xB#BujotHUE+x
z_$4#{OLqI0+=Vas=U)mLwu&XUO3b$~M+nRFw<_DWsu#9u&bMkAzSc{AZ7~1Z82Gg*
z|7%P8*S3YP?dM-R7`8hlx4X@^djhxn^0x=tw}%$ChtIc17<N8N?u?o5Oa$&s<?qb2
z@60XiES&EwGVCr(?yj2et_SXJ=I?H`?`|*b?w;>{XZW@+`R%~`+fm@Rll*T#+rRx@
z_;!B&4aE2zOX@q0#dnO{gB5(ofAgL2^LIFA1C4QyRBDghVvjOtkGf!w_RSvs=RJmt
zJp|)Elhi(o#XeimK6}AF$D93IpZ77RsJR(`@Lov$;J5f881zH9;D_j&AL5^XNM8Jq
zW;~FQI*_wCPzX9uDmYMibD;M5K;z;-lkren>QL9>P(SF<u;9@6&7tY%L-UJ6OU5H>
zsUus9Bm1Bu$ATm0H%Bg?k6bT~+!&8Nq>jBTj(viTeG88L-yA>sd>nXj9L#tUDs>WW
zaS|DH5?yc-`{v~F=aYns6Ex##veap+#c6ubX=cG`_M6k(&!_npr-h6^i=}>+So|yv
z`dMD^v+~W)>d!xGE`HWB{;HSy)nM_fG3ZxQ!LOD#zuG?kYQOl^!T7sV>UX!r@1CIF
zeFeV<-uxc={CoJ~_Xy+JN2#+hi?fNKv#El!nKx&1n8h8;XJC=>d|B#z)#7|T=zO!_
zeCy5m_UH56ixU8Z#VZYQu7w;uhu9*p5g_n4sUk2407D2_3`Z8<f)UQuRv5U_MT-Fb
zTevd)aZNRo$8Na9=#vd7NF2w5WpR1wP9c#QP-`@{sa2w!#$`7%hACldJ=J)c%?r{9
z67#W_BN@A^Nv`)Ufz@PU+o-{5yvA-;a9uA5zuxs3Oy<2oo7A|H*X-msi;fUnVm8yM
zTGb}ds`JZDzHcj0T<|-krqla&Ls<g%^D_<iOk)X<iLQoWKb*!Y^q$+#&v?s!D4?NZ
zxp2!k*b#7!ZeO3DJ-)yAHlhpDble5aHr=nHxq>TC?{c~37CNpqso&XHnE&<Q`;wFX
zt6kw%kN)NH=MJA2&K~U7Gv}6lI6e#beR}v!YTM|oLlD+M6yeWdn*=EwGF>+mBuzyP
z?0c@Gm{%o@U~a~`Pf&$|iyeHI1#X9`*5FAINCy+}iQj((n0W2UQ%{Et7Lb55N4O|H
zsNPm!czCeaJGt1x5lo6y<LTWF*7Z<k%b|BsVqd|slqO7Kc`teW60YQg?sIr!xojxi
zygyr`%Ku5%Q$5w^r#6IlkR@JS^lQTpjj0+HgvL)SzYTHNcXBUHnda)+fs1YHqTYf)
znSS`740D>-M@qXs?)-;1F8pFN?1u+Bnj|dTt<tMYiqb**?i=E~GTw)JhHqpK>ZI3E
z;|2bbH@<fmK0G`$Sg0q%DFFSlf+}04==m58g|q5+nCjX37&}+(d~MUdLot%?jo)x&
z;?|Yttp9POUspOnx<A3deb)QfEK7k?bJY4%e~q5+kMRc<$+zCujRnx_)#wBg2%cER
zN~3>>E0Oq|SotCig<GYOjVIRb*Y)8x31az_V)2Y(pKOv<ee{;l$h%Xv=_U;Pc73Ml
ze)i(;!$iujIZgO&aN;$c-lX)S^mjzG{yZ%siow7Y>VEYsv(hK&Ehx9tM0>}ziWd_<
zC3Ef%``xYWvL{|mRiymo((u}IMy33d&##?z=ZB(>O<x;lh3cR2|8i~rW&Z3d{hOnQ
zZk+;MJiV{+4Ib?cJ?7$e>S4}ktIhW+dFV03cdS}8%JlKK=Lk3qgd?1y6GliQUEcI0
z_-e1_a+&1sAsiMKHl`|0PW@+ej9DQ0D<g-Q#{DxO$0I5(A^BHWTuT2xWaNb8{*>fI
z6fh;Zs|?~*PYzQX|DPn~t|{ANmQOHYx$8=XS7A9(X}N#4<^DY^r{i)JmSfWO=g{@K
z3d?bsJp3=ia>~ko1<f&Gxxa(v{|8k$`6Q;xp&c`3XlD@pKhMkEu#WpXFNaAW|0&G5
z=WyFa^4`n%KP}90J*xR<VGh%l<M%7&$F$e~tu1#st7H2!tLy)tMCSfOTQ2IancP3y
zasn|um}#64x>FE6fN9H#B@h0`w%n{(_M}+O{QpH;ZtLIMa+Ujkx8+RJp8wZ*x$3|3
za;Glk-Ty4eXJlrUm6bKOw1nimi+uhwqwgms8IS434-5=UPEPhN{QmrTrRU4p*v>H~
z*u1s1g$cxC>hNc0XP6-z!M_jT*a*dQr!=u5h)CI;=cc$riDKygRgc4BF4jH4CF#R5
z>aNbE;SHrBz?@U~yB;TSvZlv(cX~K0CH*EzRFNj0zGyGLW18ms<owx6{*1(OdQPoF
zW!72YS~iIo<I8$n@ou5I@Jr_p#N)&LfN)6mLNkkc-d7zr4&jcgdK{0g@TVq~bb9ru
zmE4@3Be@?g`ywt%&5?KAr!DPU#b4R-l@;=LY3JJvu2)v>ITctN5gaTYM}Lj%<tHAx
zwfpL-9`^-FGim1KVo8p&*Ij*9l^)gho{VzR+)Kgsg5EJARbQ#Mxy*dtxU~aw39-LG
z>Ox(>GZAaF>`rv#y(Llk+98p7!tPm-_GTe84~SAaH}tX|=NYm%De?+|9-$a^!5vm5
zXDVS(Clh{<AVkf60Om27ww{X?ttd5##yu3U@!<a0Ew9Z(J(Uwa{8W1+jQ?^7$Kkao
z@{m7uT4aVrSu^3fyk#*XT*4^luI@)U2(k9Q53`3^G5MU8BojLl&m(wqQRJQSpCKHV
zgLNp8mNgLrQC>$6QyhzRj}GnS5Kdc8hVC(Uavu#XoF4@*74QY{Z0WHaz2M*%<8U&q
z<o7r5<wqhA!L+;(4FdJ=S}3O43-Ew(#8B;sJj6{#4~Ooc1v7-xQjA81MK6`Ypn0_+
zD5fc6O}x<RHQ2QdNn4J}xN_rrGHlchA$Wrv%I`DDXlOSJ>9XS3W$h^4LJ^OnJEM`C
z8Z7eKN`Mz;2<K<1Py$m2A`y{*c26Tylacfb2<j&1OTuPjr(FC9u)WM=X^V3nrXI&5
zZ(R|S3|)Vxpuqx9svft!E=C^0HmN=_Xn;%Z3FnYCRvBUCQMDiD5@0Wx5m6}AeaC%M
z$399Xf4M)af0KqE)&C;z(+Y~j_9LG`I}TFQ-URM-``x4XS#z*>FQqy?T#rQcqp5P3
zhfHej4<d^a!xt3IxG@)gJ_EWh#D!!za>P$iy8he)0`*xhVmo0;9&i!FZWTc3C+{~x
z`#y6hO1iS>M#VJt)1B!VwK#G5Tmt35;m_FDh>rC~Z=LP!GzC3EII}g^)r+)mCQ}%!
z8<wKKbwj0oFZ5h*co$*zzW%pJ6L|;X+kI;(fN}&|D(>K>LloNcS>ftW{g0bWzXz5;
zra)MGfTguTeFrI@2mv_`uE4~>bG?hRuAU8eeMH+fXTYacy2mn;LLVh=yEePMyG8wq
z;y(B4qYcY}TV6%4o}t6|qiyC{1F4AmPNVPl{>s}AoD>g7+`oU5#hjqb_J&&Z5Y-Fd
z-A!R7@xa5u+g7vh6EA>J$g`7L5JEH37HH!2D3K<ZMwozq>jy)NZ-<ht#^RD-y~$Os
zL)@yLMR8}gAI9_qG^;+Lb>gS+=x}9e=^SpXT+Dk$?~ZU6@8wuGR2-*~(>0ln2!ho|
z4(C3h=yU|qJ{G2#us9>`Hfe?sGCld7#UiZY7oO8OQq=!?)L+gdStwKieG}0YRzMzY
z7^)=n>|hy+t0lVuW1-yU(X_Cqn-Q_C<K#D0@`Ao)5phujNDoMK)36lh*)pK~=RgFk
ze}#cSMzLm23-NLFiGXbMYvE)YIJ5{fZd!|O$?8gWYGFgfIRG5gXnHS@7Uh;wf=Rw6
zxMkH2_2|n5lI!Q5y2WZ-jHxZ4w(O9S=e0shHJ}M2icVuTViPf36vs~fk;qWOE`#5c
z7DpMLl#+u)aYw(VpC3%XKYgb^U;x~?x582@l7vTK+2#3I){2l6D{MG~HGGV}(Bjjy
zV#@wo{ro4MjYAObGGQ+AlXvue;!50&#S$UDTXHgkaU%RGvYspvg*TYZ@_CI%6By)*
zO`n#?-+b3vRL76}CDyA=#9OGmykCIIGsR?bv7YVYAu|Up$>|*7WgM)PkgUq#7NxFW
zW5=5Sr?lE@o=@2e4MmyntMBf552r{YZ)fN!nf6<uKg@WQV$onW{);sua-WwFWp@M*
z?}ZXvxUyQ{xND56U}@K~;gtB8jfmKXJdX(9CT1da&SrNotzq%5XhTBzQtKzj^17a2
z8`-;&ENkTGJKube1EZj^o*C&Jzg;rU=%{4^8ef0>ARqsm3|kSV0>^XXp%cQ~ObG4}
zn%qe6HdMb*mFSE11Ej&b8fog*mfMi@GUyjh+2E>ad=qLOF)R*6@o}R_LLvv8C2rA(
zbaH^W+xyfkI>s{YHF_x>IV>`Wr%0dNUOTL8(wyz~N``~_bLKMwzvNI7kMWJI2RC1u
z!OUsB5JXhAj<<(z@{{qJ<J^qsq2qK{eLjaKev^S9{1_%HiOdN1<tR*NR-#_}wOVq}
zbkXb~!5f^GOSQuzT&_K~cJ1D_Ev@lRXE2;!llO;ya;9Lt+|jNy{0z9$Zy3Gd>m=(_
z(gz`Oticoc;!5xxT$jK?WHNmq!?c*OvrGO7M{NN8q70xjI7D0**f;wSvZ=!J0C8}p
zTDH8sArs|25I3y)jA+?0l-qwY5zg_Anq><uhrDeqsFY2hSxlLA+WTxjjy!|kg?7QX
zNs=X5dLqj<EI8Yd>*mYC$@jZi4RN;hZV_!8ocE2IKI9tum}`fl&A7yD9e+dSohwy^
z-_&Lz?A}(%^a%mu2dBtTKVO53#!q)u9!6VC2-OlS(;JmJtq?ifiLTpO3i;JMO>|Mg
zJO6urE#SDdi&ILmBaO)3Jh6l<CCoHi3PjYWO|#NCf26ZBYws~nQ&^Q_+Kx-Q7h?-q
z-AQN}OHs`X7xxkTO*-TgaEqmsESd>re68}#?|Wd`F;b@}Q$n6;))QpSRGKHkp0cwd
z)~I@mlrg$Y9PXqnRPtPibi|U)+9uF0lK$K*dVr+ZySCuTS6s*6a-Hp>3u~hE{40GS
zz`f=hrsZWuku4ne7LKDp3_gn2lfTYnpc~(uA>9jFwjCI4*YHblLb$_rAKZzA@7)xh
z7mQxj#C{Y@Xz{I4sPB-MVXTgM)x6mA`n<q5s?@5fM8f?;nFNg=;kNc)@r?>Ev=8Za
zQXl@5mMe@dlgp#oxS(HsSJ1bIOL`GC^yU|KOog`F6ijp#VQPcx`BMO=W%Ys4(LGj0
z%MHyyTnDd<u|Qn3k_pNSY8^mO=GKrAqJz2c=k741K(c%kqH%0PNcu>?zz0PE@3Mwr
zKqA*>Xc$6-uilpq6*db+3?2h>z0M1YcbWShs6~W8wd|nv_%}~NmHI+MH67yh!t&Dr
zrV{`e?aHhqC}J&I7edsIz`KzQ41)vF3Z}_c?#F9^_ez6pl?=;|gEs*9i?KW36uqEH
zVYG%(_17ssZ2%1H;r*<lV$^|xRQ6=3sFPzhJsp8pg7=VCVfb310vEl(gmqy%Sb|c%
zk>P3ju@3@AJfrKZtd+`09vgZ(WvVSgLQ5uDM|kl+lF_Ctnc(p7-|%ra1;bgmP1Y2Y
zSB`<Zy}BlcKwO4@avgMrB8q$|+Q;{?mV<E>Wz3Xfg!X0_!TMt(toXtMXWQOKktY%}
zP4RPm@$%dr5T$@(A>b|2S!)VNc6^vclJF85UgYa8^wCN15P#k<ah9C`!Q{Gp7=CUW
zB0(*<5p9DS<HALOg$g0MUG{w&w#6(!B5Uw-M@q7~xNqf=-?}2%^*}X0oGFYnKSn=B
z;5iPzP1xMTh>I8^B(;@iGI>#Q6?Wu`j#GM>BNNzpUD}QQ!pf$u4+wQgcvSufUnquu
z8hGds)5M>kM+sITx1%pgZ0}2izD*`uO4j%0<5Z5v{C}8aQB=~_7+r1=!DcCv;Vcy6
zQ_>sf;hTDw+Ev9p&fw4<rznMNGzDpt5!|RYI29cj9u;m7fc-Xu*vckHkizdomRA}0
zaFj%AWy3w~m?W6QWDqM#o!ThG@8<+ub4WctNVQ?2w(sL&Ilk+JmkCE^28pDStYoB7
zk!F3lSFRUw&nF!X$#^E~ajiM4IFrxQ`?}U?W(#$e4^3_+t8al{(r;_yS51JJhtEzL
zReuFAs0;)M_!5D&*_DFoD@X?UV<BK@EH_XX8T|6X$yv%NcTSfByBLj^<hBb->!$XI
zb&B<KNFoTyB__#xE9j7tPBfI2w!5#iL!BX=8sjVQ7y_nSjsZ&Sb9PVF?tYQiwuxI8
zOot;y;&0?q|KyQfi6wZeCCTE~VU>mhE+!<QXYaRiy5Sq845S{V(UQ=wyJb;(!_!%O
zxkSSQi)=>w@{*0Hr@uJN(dg{Nr2eM1VO~lt&PukxEJGOsEG>Y#ifs83czmRw1{ZOF
zn^f<s=w2crYZH%Cr-q|Y0`E&tIMfw30twRU2c;LewkX^w&JTWRj+>O(8XN-&!OcVF
z`^1*v7L}2U0(cIQ&m-coteAvU08H`B;G*|QW-Z0rw5RnQfPZ~Svq;v15?VZt!dp>5
z@EC%8x=>h!OZG?B>_<xtn0ElJ<-;wuDu0n@1COAcsj#F>v;oM%(2bf}r@;thkQN!^
zm;UO8oE?4<bkr=`07zD;@b@gb|FhbYRA&{0L%<`GvSN{fCSU(<;P8~<gAr)Dl6>x`
z;(|Yblr_RbX-CG&QEA^bp~=QUrf+l<1w1kIToWZrt1+=MmoQF#;Dw0c0Id5pU|?;3
zz7nUH9Og9?hVxcBRg?2nFSR^Vcv^tNQ@3Ia6#UF(_RyorDU*d_`sq((qLtO0Y=B50
z{{eiB+t9f`i+Cp7h%M)2s|@Snt;II(GtnHD4L-h)r2-~z{qrj+7SNa>9Bv+t9)(E*
zZb-w!Fhg8-$tqA`QiFDkS6-YCvP&0WL8HMw$aMg3SQq!XbVE`XMg4arlJ5|zj~1SW
z`5FF&Dtqyd-a<h5+SDIwvD|UHK;|z?vbwWtL&OwJtq7dsAY}~{%)eqtZdR@uqZCX)
z8V?Os>6%lj8l=--HemDMkbtcK0@Js_>Sa}wWvK<lQdFeyS~&oz$-Am4XT#Ct=#<a<
zwF1rY$g!%?rS*Bts~7DzS%X`I+P+JO%h3_OmFWINXiwgN_x)vmYuml4wxw6RYiNQ+
zou=`onnxrGo6O?Z!mm+WwD5jJ%ZkaNRCuIi2PxJ7*@^W#;w?`iMMNg6M4mfJ)9@3J
z9=u*!EU;55Scj_LE+K#KMy`JF>~U-2iXo`4RcJs=VhQmY50h&nd`+BdI>juNT-V-Q
zNbu>qnAcbIh<)HA_QZaUyhu5z7jB(A`0_G}r95$!!R*CWDzCT2p1*n6#TW+p^g=EP
z{Q`Rra-W^%HG&Kd?ylqMhHGKjJ?!qWd0Zv?23pkh!Uo<j5^>{&aJ`lo5f3=ORzO9I
zz@H%X8-WVtF*rt5oRL1maGPe8TRN3GN#<Cz-Iwu5K;Uz$T(=i+uvRT=_*BvqP}rtX
zGVMnFz9yGzswoawTmS?QZgqQE-j#H*5%mXjq<f+6u<P4=iJlhjw_0_LtF@5|FSGg{
zjlRpbf?GcBs@&!wS;U>PhFQB+a(QCejNsZVVqzNL2A9DmH4<|-Sm7cpRGYI!k2w_R
zfgv%!CxzHrLS9#sjPTwpM#HQ}TJcceMnZ@+C>S4wW&geR)$#jSMM#)5RJa4scY{^3
z6TBqNFk56Jaf7+&VE(2LzJz;}3y`{D4Y@$-=770sc93XB>!U&XqQRFgBP5<f_$YA0
z(2zAZ7MQOPj>3{adkBuaAKk~VN5iPp0W-^Yt4SXSLq0&<apM-%ED?hcckEl7z?3*-
zhJK{#!t|41JZb4#qR{J4T1iix20lq&8x!Od$>A7Nm?vxYA5(cf=DpcvF)*h2j7*j7
zftK00ex4B_lcb$qr@{O<(;gn%=D4-Qgo20OdT=|AJHIJv+;)D#6*Gj};R!h4`!oc5
z?j{AHzZ}BNPxkHc*N^rDN=${DO-062GZaD!r4v7=z&0LDp|6H;X4B~b)0uhG*{`Q_
z=l^#I_rF89{~f~pe=>x79|#gfL#svzRxRNwDERAIe7{0$DB@i4J;)b9kQ?3T+X32t
z^NAL~J0=D;aNy+B%Cg{aJc|EWJ??S{M?oXaWcX?QeF&Pmdv*HL#+^b`1f13QuOS>R
zZ8yC}xz>AJE93Dky=tSEu4^;nUkz#%ndMpO1hfsWhHw)*CQa@!yiIx&T*D?}YrAXz
z8p193zMVAd77Q>$%uVgt^d+(0DV<AtyVRWp{rS;k`iH|vk$fT>XG4ws*oJEwW(aq9
zcdAY*QT-zCXSK^*v-h|4`Bq2t%-f2eY*+O-5?)_g@t4iR15fW@el^-+kv)7@w&iLF
z7w<f>`@7Kh;0tC5cR$I;Z+2(xLzzW^D0V$3Xe@+Spd|o=P43q5;d`_SCFq<+I{n<W
zGfW!Boa!diOdYO5$$IXt_!x38IYI`IC3ly53P%iPV4v5OMd(qdDrCbyhy=^g-fh@Z
zNby3bW)p6oVgf8Unjv72ZAe|IpYtcMB3q8vet+bC^p-qq=5+L0AgH#N0fFc1ocHMb
z^m_i-e(=5;|0f)Git=3yWv9qJi2^?eB-c@ej7%%4@$}2xqY%KR@ESStf7_pX0XnaM
zDoN5E^2CU~+g8k<@kbtLtMTO}(C3y|b@a-gIvp@-U05yW1??;Mig@t<8N%7!9cFXs
z-jp8Go<7}(38Dq~@O&5fuIpRJ38eFu4=u^#ikzw~7dQl*m4P1Z8tJv#ycqW}X}5pb
zPjAE_eQ4nL@T@G)f%R!aqg69z2<O|nOwQr7>{!Ua<F|IWfZa6epzE!DSHL`!K(L8j
zHs$as6!iUGY5_}kFo~Mv+1Sv>Fun=jm9(i;XDSNPHa--{XD^*0=+-cyW`c>&=~{dV
z%V4fC$gmiXn%;L&eQ1%7%)T&;(jR$ku<{kOgd)inH-^sC!?FCy`jp&QYsuc4v(wNX
z>sN?F>d(8iD=)cwh9n6wL%2i%^!5;g+OK;}eD4x>y3gZ&xwaKNN_4Gv9sG5_<33B`
zxB6j%-)`Ngp#-<wCe`2WeNfwky_~|h-yTC7*a`dDk%O2aT-R)l#~WFpGp{X;CyxZi
zOdgyy4YF@+d(Yhc{GPj$>IJ4AXYnL%x6Pj_@MKgW>bci)ih(3=+0Ptjzs)BPTuS%7
zlF$9O!Jj&Oy9o!*AAUc!1|`-FCgT#fc468e4e$|UqMko;<A!J77rQiZukSyL|2gR6
z#QlcF2SQ#NQ3eJEM$D0@f6;J^p2rOCFsFer<{NVY7$fPGl$5l!wT+C7Y;A2Z*R?%7
zJluT)uBi7F^2S{I#i(u!>Be|&$=rqeSuZh?8&&l~=J`*vmS2AlWCHqrUmfuMZ}j%R
z-|hX!#oqt&Trb9mCjK#^iApwB9WJ~nm>cEGUMkP0kfk$2{!ejs7gbG@qVRb9$Ul8i
z*&vqBlYc+wdU7h0(c<PSD!}2+NE@JhJ4BQh86k5mT1n9NR-zn3vLb&7cR~hZwjyV+
zufUDOEK{TF4}3+K+>@%zU3}TxqZ({Eh5T(FwH6v7=!pq1gHmEhmjw$JHX%TW4JIBo
zN05@JlK=$MMkWwA2oAZkY@mz14mbO%t-8Chx35g8{_Xfg5%z1l;)g?tObUb;B<{$K
zUId5_AQ&Qwx!g^RpUaPVv9P*$s3JD2IzJS@A+%Nr^=d*ElciA!(E~cWrY&F^n7v!S
zEjS$Es@9Ht5qzJ83I;CGdI1TE!6Kd(w<S*@?5wjT?)ZyXURD$SoQBl}iCw<vm%W6)
zJTT@G*p&yyNMOuW*DD5mb<g#R0pGR^#xUT&&b9ux4EV~vUFqNd8~O|SZ@(ZH(jk}^
zofH~{gUwVV%nB$hb8}xFrWd0}&<<m+v^yax=NkMmSI_#spA>i0%(lihN!CbzzA%Q7
zJq))cg9XRv-;ap5A&5=Fu}ny_BEm@u!XZh|*C5HtcF8R$EqZb{wX}e!!s&5!Df+n)
ztiCDwr9O68Q#Dy&tE}Ifdi*Xq+@3dH{aAHFFFs&@eAD^-)kJ+uYt`(tuJOhCsch&h
zC9)pciuaL@jgN=68n2bGhlzvl?4X*^2Zgo^>5dCLGYm%KS{bC=p-@5OBC&BJEl7Rp
zT55|K9}`dTXD>%<_Qb^X$Ys}aFC#k183ILqzYAgPq@*#ls}>kB6mJW<W++gdc86A#
z>QD{0`Y<8)wb^EFwzI+AT-`hC`~j`TedFBsOzFI<XeYELv_=Oyi_%=Oj3tKiDISVJ
zrumSsH)HX99>5G=+x#l!9BllCerEcbmQB0zR^>Z+T8jWe5nk)NnH)AWL)EqRH$$th
z{cN-AFf|QODsyMPo8T;H&ehA~**NhSnvG_+B89|~bEIJ(cz*v`<A%)_O~uGY5As+W
zv=DfZFWz!M1FDyLCF$I9v^7WJcd?7OlIoY27F}^kvGGALP%!4<gL%QRVBv`sgFD3P
IV364V10ctXg#Z8m

literal 0
HcmV?d00001


From 8d3731a9840dfea3b8aef195483b781fb92cd4e5 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 2 May 2018 16:56:14 -0400
Subject: [PATCH 47/69] Add credential helper and docs for pushing to Amazon
 ECR

---
 README.md         | 52 ++++++++++++++++++++++++++++++++++++++++++++++-
 deploy/Dockerfile |  5 +++++
 2 files changed, 56 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index a2c5b24f1b..a3e72db2c2 100644
--- a/README.md
+++ b/README.md
@@ -142,8 +142,58 @@ To run kaniko in Docker, run the following command:
 
 kaniko uses Docker credential helpers to push images to a registry.
 
-kaniko comes with support for GCR, but configuring another credential helper should allow pushing to a different registry.
+kaniko comes with support for GCR and Amazon ECR, but configuring another credential helper should allow pushing to a different registry.
+
+#### Pushing to Amazon ECR
+The Amazon ECR [credential helper](https://github.com/awslabs/amazon-ecr-credential-helper) is built in to the kaniko executor image.
+To configure credentials, you will need to do the following:
+1. Update the `credHelpers` section of [config.json](https://github.com/GoogleContainerTools/kaniko/blob/master/files/config.json) with the specific URI of your ECR registry:
+```json
+{
+	"credHelpers": {
+		"aws_account_id.dkr.ecr.region.amazonaws.com": "ecr-login"
+	}
+}
+```
+You can mount in the new config as a configMap:
+```shell
+kubectl create configmap docker-config --from-file=<path to config.json>
+```
+2. Create a Kubernetes secret for your `~/.aws/credentials` file so that credentials can be accessed within the cluster.
+To create the secret, run:
+
+```shell
+kubectl create secret generic aws-secret --from-file=<path to .aws/credentials>
+```
+
+The Kubernetes Pod spec should look similar to this, with the args parameters filled in:
 
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: kaniko
+spec:
+  containers:
+  - name: kaniko
+    image: gcr.io/kaniko-project/executor:latest
+    args: ["--dockerfile=<path to Dockerfile>",
+            "--context=<path to build context>",
+            "--destination=<aws_account_id.dkr.ecr.region.amazonaws.com/my-repository:my-tag>"]
+    volumeMounts:
+      - name: aws-secret
+        mountPath: /root/.aws/
+      - name: docker-config
+        mountPath: /root/.docker/
+  restartPolicy: Never
+  volumes:
+    - name: aws-secret
+      secret:
+        secretName: aws-secret
+    - name: docker-config
+      configMap:
+        name: docker-config
+```
 ### Debug Image
 
 We provide `gcr.io/kaniko-project/executor:debug` as a a version of the executor image based off a Debian image. 
diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index 1b93031bd4..c5863c3402 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -21,10 +21,15 @@ RUN make
 WORKDIR /usr/local/bin
 ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz .
 RUN tar -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+# Get Amazon ECR credential helper
+RUN go get -u github.com/awslabs/amazon-ecr-credential-helper/ecr-login/cli/docker-credential-ecr-login
+WORKDIR /go/src/github.com/awslabs/amazon-ecr-credential-helper
+RUN make linux-amd64
 
 FROM scratch
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
 COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
+COPY --from=0 /go/src/github.com/awslabs/amazon-ecr-credential-helper/bin/linux-amd64/ /usr/local/bin/
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
 COPY files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]

From 26b8e01697ab926c2cdb6739b56f8e6eb20ef97e Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 3 May 2018 11:19:02 -0400
Subject: [PATCH 48/69] Remove workdir

---
 deploy/Dockerfile | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/deploy/Dockerfile b/deploy/Dockerfile
index c5863c3402..823b3a9414 100644
--- a/deploy/Dockerfile
+++ b/deploy/Dockerfile
@@ -18,13 +18,12 @@ FROM golang:1.10
 WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
 COPY . .
 RUN make
-WORKDIR /usr/local/bin
-ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz .
-RUN tar -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+# Get GCR credential helper
+ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz /usr/local/bin/
+RUN tar -C /usr/local/bin/ -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
 # Get Amazon ECR credential helper
 RUN go get -u github.com/awslabs/amazon-ecr-credential-helper/ecr-login/cli/docker-credential-ecr-login
-WORKDIR /go/src/github.com/awslabs/amazon-ecr-credential-helper
-RUN make linux-amd64
+RUN make -C /go/src/github.com/awslabs/amazon-ecr-credential-helper linux-amd64
 
 FROM scratch
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor

From 3da6215db4e43803d990069f3189554e14074be2 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 7 May 2018 15:02:00 -0700
Subject: [PATCH 49/69] Create debug image with busybox shell

---
 README.md                    |  8 ++++++--
 deploy/Dockerfile_debug      | 19 +++++++++++++++----
 deploy/executor-release.yaml | 15 ++++++++++++++-
 3 files changed, 35 insertions(+), 7 deletions(-)

diff --git a/README.md b/README.md
index dfbd11a5be..8eb99d52f4 100644
--- a/README.md
+++ b/README.md
@@ -151,9 +151,13 @@ kaniko comes with support for GCR, but configuring another credential helper sho
 
 ### Debug Image
 
-We provide `gcr.io/kaniko-project/executor:debug` as a a version of the executor image based off a Debian image. 
-This provides a shell and can be useful for debugging.
+The kaniko executor image is based off of scratch and doesn't contain a shell.
+We provide `gcr.io/kaniko-project/executor:debug`, a debug image which consists of the kaniko executor image along with a busybox shell to enter.
 
+You can launch the debug image with a shell entrypoint:
+```shell
+docker run -it --entrypoint=/busybox/sh gcr.io/kaniko-project/executor:debug
+```
 ## Security
  
 kaniko by itself **does not** make it safe to run untrusted builds inside your cluster, or anywhere else.
diff --git a/deploy/Dockerfile_debug b/deploy/Dockerfile_debug
index 29ecbeef99..82c985a4a7 100644
--- a/deploy/Dockerfile_debug
+++ b/deploy/Dockerfile_debug
@@ -12,14 +12,25 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-# Builds the executor from debian
+# Builds the static Go image to execute in a Kubernetes job
 
-FROM gcr.io/google-appengine/debian9:latest
-COPY out/executor /kaniko/executor
+FROM golang:1.10
+WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
+COPY . .
+RUN make
+WORKDIR /usr/local/bin
+ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz .
+RUN tar -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+
+FROM scratch
+COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
+COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
-COPY files/docker-credential-gcr /usr/local/bin/
 COPY files/config.json /root/.docker/
+ADD files/busybox.tar /
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
+ENV USER /root
+ENV PATH /usr/local/bin
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
 ENTRYPOINT ["/kaniko/executor"]
diff --git a/deploy/executor-release.yaml b/deploy/executor-release.yaml
index b2a2d2e69d..434a43e6fb 100644
--- a/deploy/executor-release.yaml
+++ b/deploy/executor-release.yaml
@@ -3,4 +3,17 @@ steps:
   - name: "gcr.io/cloud-builders/docker"
     args: ["build", "-f", "deploy/Dockerfile",
            "-t", "gcr.io/kaniko-project/executor:${COMMIT_SHA}", "."]
-images: ["gcr.io/kaniko-project/executor:${COMMIT_SHA}"]
+  # Then, we want to clone the distroless repo and build busybox.tar
+  - name: "gcr.io/cloud-builders/git"
+    args: ["clone", "https://github.com/GoogleContainerTools/distroless.git"]
+  - name: "gcr.io/cloud-builders/bazel"
+    args: ["build", "busybox:busybox_tar"]
+    dir: distroless
+  - name: ubuntu
+    args: ["mv", "distroless/bazel-genfiles/busybox/busybox.tar", "files/busybox.tar"]
+  # Then, we want to build the kaniko:debug image with the busybox shell
+  - name: "gcr.io/cloud-builders/docker"
+    args: ["build", "-f", "deploy/Dockerfile_debug",
+           "-t", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}", "."]
+images: ["gcr.io/kaniko-project/executor:${COMMIT_SHA}",
+         "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}"]

From d040c89af6a41667db34f12aca43bf880f516322 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 7 May 2018 15:02:00 -0700
Subject: [PATCH 50/69] Ignore symlinks during file extraction if link is
 whitelisted

---
 integration_tests/dockerfiles/Dockerfile_test_copy | 2 +-
 pkg/util/fs_util.go                                | 6 ++++++
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/integration_tests/dockerfiles/Dockerfile_test_copy b/integration_tests/dockerfiles/Dockerfile_test_copy
index 99c179c11f..fd184394d5 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_copy
+++ b/integration_tests/dockerfiles/Dockerfile_test_copy
@@ -1,4 +1,4 @@
-FROM gcr.io/distroless/base
+FROM alpine:3.7
 COPY context/foo foo
 COPY context/foo /foodir/
 COPY context/bar/b* bar/
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index 3d8b46bc5c..f167f18a51 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -94,6 +94,12 @@ func GetFSFromImage(img v1.Image) error {
 				logrus.Infof("Not adding %s because it is whitelisted", path)
 				continue
 			}
+			if hdr.Typeflag == tar.TypeSymlink {
+				if checkWhitelist(hdr.Linkname, whitelist) {
+					logrus.Debugf("skipping symlink from %s to %s because %s is whitelisted", hdr.Linkname, path, hdr.Linkname)
+					continue
+				}
+			}
 			fs[path] = struct{}{}
 
 			if err := extractFile("/", hdr, tr); err != nil {

From adaff3ee89c8a1868d41423c6d0e6ffe706c500e Mon Sep 17 00:00:00 2001
From: Nicolas Byl <nicolas.byl@codecentric.de>
Date: Tue, 8 May 2018 21:34:02 +0200
Subject: [PATCH 51/69] make destination required to fix "could not parse
 reference" errors

---
 cmd/executor/cmd/root.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 6a4fd546ef..2e5d0a66a8 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -47,6 +47,7 @@ func init() {
 	RootCmd.PersistentFlags().StringVarP(&srcContext, "context", "c", "/workspace/", "Path to the dockerfile build context.")
 	RootCmd.PersistentFlags().StringVarP(&bucket, "bucket", "b", "", "Name of the GCS bucket from which to access build context as tarball.")
 	RootCmd.PersistentFlags().StringVarP(&destination, "destination", "d", "", "Registry the final image should be pushed to (ex: gcr.io/test/example:latest)")
+	RootCmd.MarkPersistentFlagRequired("destination")
 	RootCmd.PersistentFlags().StringVarP(&snapshotMode, "snapshotMode", "", "full", "Set this flag to change the file attributes inspected during snapshotting")
 	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")

From 3aafb843e2d6ade105e04688740860c25d0244c0 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 9 May 2018 11:56:32 -0700
Subject: [PATCH 52/69] Updated vendor for exported BuildArgs

---
 Gopkg.lock                                    |   607 +-
 Gopkg.toml                                    |    22 +-
 vendor/cloud.google.com/go/storage/bucket.go  |    58 +-
 vendor/cloud.google.com/go/storage/copy.go    |    15 +
 vendor/cloud.google.com/go/storage/doc.go     |     8 +-
 vendor/cloud.google.com/go/storage/reader.go  |   121 +-
 vendor/cloud.google.com/go/storage/storage.go |     9 +
 vendor/cloud.google.com/go/storage/writer.go  |     6 +
 vendor/github.com/Azure/go-ansiterm/LICENSE   |    21 +
 .../github.com/Azure/go-ansiterm/constants.go |   188 +
 .../github.com/Azure/go-ansiterm/context.go   |     7 +
 .../Azure/go-ansiterm/csi_entry_state.go      |    49 +
 .../Azure/go-ansiterm/csi_param_state.go      |    38 +
 .../go-ansiterm/escape_intermediate_state.go  |    36 +
 .../Azure/go-ansiterm/escape_state.go         |    47 +
 .../Azure/go-ansiterm/event_handler.go        |    90 +
 .../Azure/go-ansiterm/ground_state.go         |    24 +
 .../Azure/go-ansiterm/osc_string_state.go     |    31 +
 vendor/github.com/Azure/go-ansiterm/parser.go |   151 +
 .../go-ansiterm/parser_action_helpers.go      |    99 +
 .../Azure/go-ansiterm/parser_actions.go       |   119 +
 vendor/github.com/Azure/go-ansiterm/states.go |    71 +
 .../github.com/Azure/go-ansiterm/utilities.go |    21 +
 .../Azure/go-ansiterm/winterm/ansi.go         |   182 +
 .../Azure/go-ansiterm/winterm/api.go          |   327 +
 .../go-ansiterm/winterm/attr_translation.go   |   100 +
 .../go-ansiterm/winterm/cursor_helpers.go     |   101 +
 .../go-ansiterm/winterm/erase_helpers.go      |    84 +
 .../go-ansiterm/winterm/scroll_helper.go      |   118 +
 .../Azure/go-ansiterm/winterm/utilities.go    |     9 +
 .../go-ansiterm/winterm/win_event_handler.go  |   743 +
 vendor/github.com/BurntSushi/toml/COPYING     |    14 +
 .../toml/cmd/toml-test-decoder/COPYING        |    14 +
 .../toml/cmd/toml-test-encoder/COPYING        |    14 +
 .../BurntSushi/toml/cmd/tomlv/COPYING         |    14 +
 vendor/github.com/BurntSushi/toml/decode.go   |   509 +
 .../github.com/BurntSushi/toml/decode_meta.go |   121 +
 vendor/github.com/BurntSushi/toml/doc.go      |    27 +
 vendor/github.com/BurntSushi/toml/encode.go   |   568 +
 .../BurntSushi/toml/encoding_types.go         |    19 +
 .../BurntSushi/toml/encoding_types_1.1.go     |    18 +
 vendor/github.com/BurntSushi/toml/lex.go      |   953 +
 vendor/github.com/BurntSushi/toml/parse.go    |   592 +
 .../github.com/BurntSushi/toml/type_check.go  |    91 +
 .../github.com/BurntSushi/toml/type_fields.go |   242 +
 vendor/github.com/Microsoft/hcsshim/LICENSE   |    21 +
 .../Microsoft/hcsshim/activatelayer.go        |    28 +
 .../github.com/Microsoft/hcsshim/baselayer.go |   171 +
 .../github.com/Microsoft/hcsshim/callback.go  |    79 +
 vendor/github.com/Microsoft/hcsshim/cgo.go    |     7 +
 .../github.com/Microsoft/hcsshim/container.go |   800 +
 .../Microsoft/hcsshim/createlayer.go          |    27 +
 .../Microsoft/hcsshim/createsandboxlayer.go   |    35 +
 .../Microsoft/hcsshim/deactivatelayer.go      |    26 +
 .../Microsoft/hcsshim/destroylayer.go         |    27 +
 vendor/github.com/Microsoft/hcsshim/errors.go |   261 +
 .../Microsoft/hcsshim/expandsandboxsize.go    |    26 +
 .../Microsoft/hcsshim/exportlayer.go          |   156 +
 .../Microsoft/hcsshim/getlayermountpath.go    |    55 +
 .../Microsoft/hcsshim/getsharedbaseimages.go  |    22 +
 vendor/github.com/Microsoft/hcsshim/guid.go   |    19 +
 .../github.com/Microsoft/hcsshim/hcsshim.go   |   166 +
 .../Microsoft/hcsshim/hnsendpoint.go          |   323 +
 .../github.com/Microsoft/hcsshim/hnsfuncs.go  |    40 +
 .../Microsoft/hcsshim/hnsnetwork.go           |   141 +
 .../github.com/Microsoft/hcsshim/hnspolicy.go |    94 +
 .../Microsoft/hcsshim/hnspolicylist.go        |   200 +
 .../Microsoft/hcsshim/importlayer.go          |   222 +
 .../github.com/Microsoft/hcsshim/interface.go |   188 +
 .../Microsoft/hcsshim/layerexists.go          |    30 +
 .../Microsoft/hcsshim/layerutils.go           |   111 +
 vendor/github.com/Microsoft/hcsshim/legacy.go |   827 +
 .../github.com/Microsoft/hcsshim/legacy18.go  |     7 +
 .../github.com/Microsoft/hcsshim/legacy19.go  |     7 +
 .../Microsoft/hcsshim/mksyscall_windows.go    |   934 +
 .../Microsoft/hcsshim/nametoguid.go           |    20 +
 .../Microsoft/hcsshim/preparelayer.go         |    46 +
 .../github.com/Microsoft/hcsshim/process.go   |   384 +
 .../Microsoft/hcsshim/processimage.go         |    23 +
 .../github.com/Microsoft/hcsshim/safeopen.go  |   427 +
 .../Microsoft/hcsshim/unpreparelayer.go       |    27 +
 vendor/github.com/Microsoft/hcsshim/utils.go  |    33 +
 .../github.com/Microsoft/hcsshim/version.go   |     7 +
 .../Microsoft/hcsshim/waithelper.go           |    63 +
 .../github.com/Microsoft/hcsshim/zhcsshim.go  |  1080 +
 vendor/github.com/Nvveen/Gotty/LICENSE        |    26 +
 vendor/github.com/Nvveen/Gotty/attributes.go  |   514 +
 vendor/github.com/Nvveen/Gotty/gotty.go       |   238 +
 vendor/github.com/Nvveen/Gotty/parser.go      |   362 +
 vendor/github.com/Nvveen/Gotty/types.go       |    23 +
 vendor/github.com/armon/go-metrics/LICENSE    |    20 +
 .../github.com/armon/go-metrics/const_unix.go |    12 +
 .../armon/go-metrics/const_windows.go         |    13 +
 vendor/github.com/armon/go-metrics/inmem.go   |   348 +
 .../armon/go-metrics/inmem_endpoint.go        |   118 +
 .../armon/go-metrics/inmem_signal.go          |   117 +
 vendor/github.com/armon/go-metrics/metrics.go |   216 +
 vendor/github.com/armon/go-metrics/sink.go    |   115 +
 vendor/github.com/armon/go-metrics/start.go   |   129 +
 vendor/github.com/armon/go-metrics/statsd.go  |   184 +
 .../github.com/armon/go-metrics/statsite.go   |   172 +
 vendor/github.com/armon/go-radix/LICENSE      |    20 +
 vendor/github.com/armon/go-radix/radix.go     |   543 +
 vendor/github.com/beorn7/perks/LICENSE        |    20 +
 .../beorn7/perks/quantile/stream.go           |   316 +
 vendor/github.com/boltdb/bolt/LICENSE         |    20 +
 vendor/github.com/boltdb/bolt/bolt_386.go     |    10 +
 vendor/github.com/boltdb/bolt/bolt_amd64.go   |    10 +
 vendor/github.com/boltdb/bolt/bolt_arm.go     |    28 +
 vendor/github.com/boltdb/bolt/bolt_arm64.go   |    12 +
 vendor/github.com/boltdb/bolt/bolt_linux.go   |    10 +
 vendor/github.com/boltdb/bolt/bolt_openbsd.go |    27 +
 vendor/github.com/boltdb/bolt/bolt_ppc.go     |     9 +
 vendor/github.com/boltdb/bolt/bolt_ppc64.go   |    12 +
 vendor/github.com/boltdb/bolt/bolt_ppc64le.go |    12 +
 vendor/github.com/boltdb/bolt/bolt_s390x.go   |    12 +
 vendor/github.com/boltdb/bolt/bolt_unix.go    |    89 +
 .../boltdb/bolt/bolt_unix_solaris.go          |    90 +
 vendor/github.com/boltdb/bolt/bolt_windows.go |   144 +
 .../github.com/boltdb/bolt/boltsync_unix.go   |     8 +
 vendor/github.com/boltdb/bolt/bucket.go       |   777 +
 vendor/github.com/boltdb/bolt/cursor.go       |   400 +
 vendor/github.com/boltdb/bolt/db.go           |  1039 +
 vendor/github.com/boltdb/bolt/doc.go          |    44 +
 vendor/github.com/boltdb/bolt/errors.go       |    71 +
 vendor/github.com/boltdb/bolt/freelist.go     |   252 +
 vendor/github.com/boltdb/bolt/node.go         |   604 +
 vendor/github.com/boltdb/bolt/page.go         |   197 +
 vendor/github.com/boltdb/bolt/tx.go           |   684 +
 .../github.com/containerd/containerd/LICENSE  |   191 +
 .../github.com/containerd/containerd/NOTICE   |    16 +
 .../containerd/containerd/cio/io.go           |   215 +
 .../containerd/containerd/cio/io_unix.go      |   158 +
 .../containerd/containerd/cio/io_windows.go   |   152 +
 .../containerd/defaults/defaults.go           |    26 +
 .../containerd/defaults/defaults_unix.go      |    35 +
 .../containerd/defaults/defaults_windows.go   |    43 +
 .../containerd/containerd/defaults/doc.go     |    19 +
 .../containerd/containerd/log/context.go      |    86 +
 .../containerd/continuity/devices/devices.go  |     5 +
 .../continuity/devices/devices_unix.go        |    58 +
 .../continuity/devices/devices_windows.go     |    11 +
 .../containerd/continuity/driver/driver.go    |   162 +
 .../continuity/driver/driver_unix.go          |   122 +
 .../continuity/driver/driver_windows.go       |    21 +
 .../containerd/continuity/driver/utils.go     |    74 +
 .../containerd/continuity/fs/copy.go          |   121 +
 .../containerd/continuity/fs/copy_linux.go    |    95 +
 .../containerd/continuity/fs/copy_unix.go     |    80 +
 .../containerd/continuity/fs/copy_windows.go  |    33 +
 .../containerd/continuity/fs/diff.go          |   310 +
 .../containerd/continuity/fs/diff_unix.go     |    58 +
 .../containerd/continuity/fs/diff_windows.go  |    32 +
 .../containerd/continuity/fs/dtype_linux.go   |    87 +
 .../github.com/containerd/continuity/fs/du.go |    22 +
 .../containerd/continuity/fs/du_unix.go       |    88 +
 .../containerd/continuity/fs/du_windows.go    |    60 +
 .../containerd/continuity/fs/hardlink.go      |    27 +
 .../containerd/continuity/fs/hardlink_unix.go |    18 +
 .../continuity/fs/hardlink_windows.go         |     7 +
 .../containerd/continuity/fs/path.go          |   276 +
 .../containerd/continuity/fs/stat_bsd.go      |    28 +
 .../containerd/continuity/fs/stat_linux.go    |    27 +
 .../containerd/continuity/fs/time.go          |    13 +
 .../containerd/continuity/sysx/asm.s          |    10 +
 .../continuity/sysx/chmod_darwin.go           |    18 +
 .../continuity/sysx/chmod_darwin_386.go       |    25 +
 .../continuity/sysx/chmod_darwin_amd64.go     |    25 +
 .../continuity/sysx/chmod_freebsd.go          |    17 +
 .../continuity/sysx/chmod_freebsd_amd64.go    |    25 +
 .../containerd/continuity/sysx/chmod_linux.go |    12 +
 .../continuity/sysx/chmod_solaris.go          |    11 +
 .../continuity/sysx/nodata_linux.go           |     7 +
 .../continuity/sysx/nodata_solaris.go         |     8 +
 .../containerd/continuity/sysx/nodata_unix.go |     9 +
 .../containerd/continuity/sysx/sys.go         |    37 +
 .../containerd/continuity/sysx/xattr.go       |    67 +
 .../continuity/sysx/xattr_darwin.go           |    71 +
 .../continuity/sysx/xattr_darwin_386.go       |   111 +
 .../continuity/sysx/xattr_darwin_amd64.go     |   111 +
 .../continuity/sysx/xattr_freebsd.go          |    12 +
 .../containerd/continuity/sysx/xattr_linux.go |    44 +
 .../continuity/sysx/xattr_openbsd.go          |     7 +
 .../continuity/sysx/xattr_solaris.go          |    12 +
 .../continuity/sysx/xattr_unsupported.go      |    44 +
 vendor/github.com/containerd/fifo/LICENSE     |   201 +
 vendor/github.com/containerd/fifo/fifo.go     |   236 +
 .../containerd/fifo/handle_linux.go           |    97 +
 .../containerd/fifo/handle_nolinux.go         |    65 +
 .../containerd/fifo/mkfifo_nosolaris.go       |    25 +
 .../containerd/fifo/mkfifo_solaris.go         |    27 +
 .../coreos/etcd/Documentation/README.md       |     1 +
 vendor/github.com/coreos/etcd/LICENSE         |   202 +
 vendor/github.com/coreos/etcd/NOTICE          |     5 +
 .../coreos/etcd/client/auth_role.go           |   236 +
 .../coreos/etcd/client/auth_user.go           |   319 +
 .../coreos/etcd/client/cancelreq.go           |    18 +
 .../github.com/coreos/etcd/client/client.go   |   710 +
 .../coreos/etcd/client/cluster_error.go       |    37 +
 vendor/github.com/coreos/etcd/client/curl.go  |    70 +
 .../github.com/coreos/etcd/client/discover.go |    40 +
 vendor/github.com/coreos/etcd/client/doc.go   |    73 +
 .../coreos/etcd/client/keys.generated.go      |  5218 +++
 vendor/github.com/coreos/etcd/client/keys.go  |   681 +
 .../github.com/coreos/etcd/client/members.go  |   303 +
 vendor/github.com/coreos/etcd/client/util.go  |    53 +
 vendor/github.com/coreos/etcd/cmd/etcd        |     1 +
 vendor/github.com/coreos/etcd/cmd/etcdctl     |     1 +
 vendor/github.com/coreos/etcd/cmd/functional  |     1 +
 vendor/github.com/coreos/etcd/cmd/tools       |     1 +
 .../coreos/etcd/pkg/pathutil/path.go          |    31 +
 vendor/github.com/coreos/etcd/pkg/srv/srv.go  |   141 +
 .../github.com/coreos/etcd/pkg/types/doc.go   |    17 +
 vendor/github.com/coreos/etcd/pkg/types/id.go |    41 +
 .../github.com/coreos/etcd/pkg/types/set.go   |   178 +
 .../github.com/coreos/etcd/pkg/types/slice.go |    22 +
 .../github.com/coreos/etcd/pkg/types/urls.go  |    82 +
 .../coreos/etcd/pkg/types/urlsmap.go          |   107 +
 .../coreos/etcd/raft/raftpb/raft.pb.go        |  2004 +
 .../github.com/coreos/etcd/version/version.go |    56 +
 vendor/github.com/coreos/go-semver/LICENSE    |   202 +
 .../coreos/go-semver/semver/semver.go         |   268 +
 .../coreos/go-semver/semver/sort.go           |    38 +
 vendor/github.com/deckarep/golang-set/LICENSE |    22 +
 .../deckarep/golang-set/iterator.go           |    58 +
 vendor/github.com/deckarep/golang-set/set.go  |   214 +
 .../deckarep/golang-set/threadsafe.go         |   271 +
 .../deckarep/golang-set/threadunsafe.go       |   325 +
 vendor/github.com/docker/distribution/AUTHORS |   182 +
 vendor/github.com/docker/distribution/LICENSE |   202 +
 .../github.com/docker/distribution/blobs.go   |   257 +
 .../docker/distribution/digestset/set.go      |   247 +
 vendor/github.com/docker/distribution/doc.go  |     7 +
 .../github.com/docker/distribution/errors.go  |   115 +
 .../docker/distribution/manifests.go          |   125 +
 .../docker/distribution/reference/helpers.go  |    42 +
 .../distribution/reference/normalize.go       |   170 +
 .../distribution/reference/reference.go       |   433 +
 .../docker/distribution/reference/regexp.go   |   143 +
 .../docker/distribution/registry.go           |   113 +
 vendor/github.com/docker/distribution/tags.go |    27 +
 vendor/github.com/docker/docker/AUTHORS       |    11 +-
 vendor/github.com/docker/docker/api/common.go |    11 +
 .../docker/docker/api/common_unix.go          |     6 +
 .../docker/docker/api/common_windows.go       |     8 +
 .../docker/docker/api/types/auth.go           |    22 +
 .../docker/api/types/backend/backend.go       |   128 +
 .../docker/docker/api/types/backend/build.go  |    44 +
 .../docker/docker/api/types/client.go         |   390 +
 .../docker/docker/api/types/configs.go        |    57 +
 .../docker/docker/api/types/error_response.go |    13 +
 .../docker/docker/api/types/filters/parse.go  |   350 +
 .../docker/api/types/graph_driver_data.go     |    17 +
 .../docker/docker/api/types/id_response.go    |    13 +
 .../api/types/image_delete_response_item.go   |    15 +
 .../docker/docker/api/types/image_summary.go  |    49 +
 .../docker/api/types/network/network.go       |   108 +
 .../docker/docker/api/types/plugin.go         |   200 +
 .../docker/docker/api/types/plugin_device.go  |    25 +
 .../docker/docker/api/types/plugin_env.go     |    25 +
 .../docker/api/types/plugin_interface_type.go |    21 +
 .../docker/docker/api/types/plugin_mount.go   |    37 +
 .../docker/api/types/plugin_responses.go      |    71 +
 .../api/types/plugins/logdriver/entry.pb.go   |   449 +
 .../docker/api/types/plugins/logdriver/gen.go |     3 +
 .../docker/api/types/plugins/logdriver/io.go  |    87 +
 .../docker/docker/api/types/port.go           |    23 +
 .../docker/api/types/registry/authenticate.go |    21 +
 .../docker/api/types/registry/registry.go     |   119 +
 .../docker/docker/api/types/seccomp.go        |    93 +
 .../api/types/service_update_response.go      |    12 +
 .../docker/docker/api/types/stats.go          |   181 +
 .../docker/docker/api/types/swarm/common.go   |    40 +
 .../docker/docker/api/types/swarm/config.go   |    35 +
 .../docker/api/types/swarm/container.go       |    73 +
 .../docker/docker/api/types/swarm/network.go  |   121 +
 .../docker/docker/api/types/swarm/node.go     |   115 +
 .../docker/docker/api/types/swarm/runtime.go  |    19 +
 .../docker/api/types/swarm/runtime/gen.go     |     3 +
 .../api/types/swarm/runtime/plugin.pb.go      |   712 +
 .../docker/docker/api/types/swarm/secret.go   |    36 +
 .../docker/docker/api/types/swarm/service.go  |   124 +
 .../docker/docker/api/types/swarm/swarm.go    |   217 +
 .../docker/docker/api/types/swarm/task.go     |   188 +
 .../docker/docker/api/types/types.go          |   587 +
 .../docker/api/types/versions/compare.go      |    62 +
 .../docker/docker/api/types/volume.go         |    69 +
 .../docker/docker/builder/builder.go          |   115 +
 .../docker/builder/dockerfile/buildargs.go    |   172 +
 .../docker/builder/dockerfile/builder.go      |   413 +
 .../docker/builder/dockerfile/builder_unix.go |     7 +
 .../builder/dockerfile/builder_windows.go     |     8 +
 .../builder/dockerfile/clientsession.go       |    76 +
 .../builder/dockerfile/containerbackend.go    |   146 +
 .../docker/docker/builder/dockerfile/copy.go  |   558 +
 .../docker/builder/dockerfile/copy_unix.go    |    48 +
 .../docker/builder/dockerfile/copy_windows.go |    43 +
 .../docker/builder/dockerfile/dispatchers.go  |   571 +
 .../builder/dockerfile/dispatchers_unix.go    |    23 +
 .../builder/dockerfile/dispatchers_windows.go |    95 +
 .../docker/builder/dockerfile/evaluator.go    |   250 +
 .../docker/builder/dockerfile/imagecontext.go |   121 +
 .../docker/builder/dockerfile/imageprobe.go   |    63 +
 .../dockerfile/instructions/commands.go       |     9 +-
 .../builder/dockerfile/instructions/parse.go  |     4 +-
 .../docker/builder/dockerfile/internals.go    |   486 +
 .../builder/dockerfile/internals_linux.go     |    88 +
 .../builder/dockerfile/internals_windows.go   |     7 +
 .../docker/builder/dockerfile/metrics.go      |    44 +
 .../builder/dockerfile/parser/parser.go       |    57 +-
 .../builder/dockerignore/dockerignore.go      |    64 +
 .../docker/docker/builder/fscache/fscache.go  |   652 +
 .../docker/builder/fscache/naivedriver.go     |    28 +
 .../docker/builder/remotecontext/archive.go   |   125 +
 .../docker/builder/remotecontext/detect.go    |   180 +
 .../docker/builder/remotecontext/filehash.go  |    45 +
 .../docker/builder/remotecontext/generate.go  |     3 +
 .../docker/builder/remotecontext/git.go       |    35 +
 .../builder/remotecontext/git/gitutils.go     |   204 +
 .../builder/remotecontext/lazycontext.go      |   102 +
 .../docker/builder/remotecontext/mimetype.go  |    27 +
 .../docker/builder/remotecontext/remote.go    |   127 +
 .../docker/builder/remotecontext/tarsum.go    |   157 +
 .../docker/builder/remotecontext/tarsum.pb.go |   525 +
 .../docker/docker/container/archive.go        |    86 +
 .../docker/docker/container/container.go      |  1095 +
 .../docker/container/container_linux.go       |     9 +
 .../docker/container/container_notlinux.go    |    23 +
 .../docker/docker/container/container_unix.go |   462 +
 .../docker/container/container_windows.go     |   213 +
 .../github.com/docker/docker/container/env.go |    43 +
 .../docker/docker/container/health.go         |    82 +
 .../docker/docker/container/history.go        |    30 +
 .../docker/docker/container/memory_store.go   |    95 +
 .../docker/docker/container/monitor.go        |    46 +
 .../docker/docker/container/mounts_unix.go    |    12 +
 .../docker/docker/container/mounts_windows.go |     8 +
 .../docker/docker/container/state.go          |   409 +
 .../docker/docker/container/store.go          |    28 +
 .../docker/docker/container/stream/attach.go  |   184 +
 .../docker/docker/container/stream/streams.go |   146 +
 .../docker/docker/container/view.go           |   494 +
 .../docker/daemon/cluster/provider/network.go |    37 +
 .../docker/docker/daemon/exec/exec.go         |   144 +
 .../docker/daemon/graphdriver/counter.go      |    62 +
 .../docker/daemon/graphdriver/driver.go       |   307 +
 .../daemon/graphdriver/driver_freebsd.go      |    21 +
 .../docker/daemon/graphdriver/driver_linux.go |   124 +
 .../daemon/graphdriver/driver_unsupported.go  |    13 +
 .../daemon/graphdriver/driver_windows.go      |    12 +
 .../docker/daemon/graphdriver/errors.go       |    36 +
 .../docker/daemon/graphdriver/fsdiff.go       |   175 +
 .../docker/daemon/graphdriver/plugin.go       |    33 +
 .../docker/docker/daemon/graphdriver/proxy.go |   263 +
 .../docker/docker/daemon/logger/adapter.go    |   139 +
 .../docker/docker/daemon/logger/copier.go     |   182 +
 .../docker/docker/daemon/logger/factory.go    |   162 +
 .../daemon/logger/jsonfilelog/jsonfilelog.go  |   185 +
 .../logger/jsonfilelog/jsonlog/jsonlog.go     |    25 +
 .../jsonfilelog/jsonlog/jsonlogbytes.go       |   125 +
 .../jsonfilelog/jsonlog/time_marshalling.go   |    20 +
 .../docker/daemon/logger/jsonfilelog/read.go  |    89 +
 .../docker/docker/daemon/logger/logger.go     |   145 +
 .../daemon/logger/loggerutils/log_tag.go      |    31 +
 .../daemon/logger/loggerutils/logfile.go      |   656 +
 .../loggerutils/multireader/multireader.go    |   212 +
 .../docker/docker/daemon/logger/loginfo.go    |   129 +
 .../docker/docker/daemon/logger/plugin.go     |    90 +
 .../docker/daemon/logger/plugin_unix.go       |    20 +
 .../daemon/logger/plugin_unsupported.go       |    12 +
 .../docker/docker/daemon/logger/proxy.go      |   107 +
 .../docker/docker/daemon/logger/ring.go       |   223 +
 .../daemon/logger/templates/templates.go      |    50 +
 .../docker/docker/daemon/network/settings.go  |    69 +
 .../docker/docker/dockerversion/useragent.go  |    76 +
 .../docker/dockerversion/version_lib.go       |    17 +
 .../github.com/docker/docker/errdefs/defs.go  |    74 +
 .../github.com/docker/docker/errdefs/doc.go   |     8 +
 .../docker/docker/errdefs/helpers.go          |   240 +
 vendor/github.com/docker/docker/errdefs/is.go |   114 +
 vendor/github.com/docker/docker/image/fs.go   |   175 +
 .../github.com/docker/docker/image/image.go   |   232 +
 .../github.com/docker/docker/image/rootfs.go  |    52 +
 .../github.com/docker/docker/image/store.go   |   345 +
 .../github.com/docker/docker/layer/empty.go   |    61 +
 .../docker/docker/layer/filestore.go          |   355 +
 .../docker/docker/layer/filestore_unix.go     |    15 +
 .../docker/docker/layer/filestore_windows.go  |    35 +
 .../github.com/docker/docker/layer/layer.go   |   237 +
 .../docker/docker/layer/layer_store.go        |   750 +
 .../docker/layer/layer_store_windows.go       |    11 +
 .../docker/docker/layer/layer_unix.go         |     9 +
 .../docker/docker/layer/layer_windows.go      |    46 +
 .../docker/docker/layer/migration.go          |   252 +
 .../docker/docker/layer/mounted_layer.go      |   100 +
 .../docker/docker/layer/ro_layer.go           |   178 +
 .../docker/docker/layer/ro_layer_windows.go   |     9 +
 .../github.com/docker/docker/oci/defaults.go  |   211 +
 .../docker/docker/oci/devices_linux.go        |    86 +
 .../docker/docker/oci/devices_unsupported.go  |    20 +
 .../docker/docker/oci/namespaces.go           |    13 +
 .../docker/docker/opts/address_pools.go       |    84 +
 vendor/github.com/docker/docker/opts/env.go   |    48 +
 vendor/github.com/docker/docker/opts/hosts.go |   165 +
 .../docker/docker/opts/hosts_unix.go          |     8 +
 .../docker/docker/opts/hosts_windows.go       |     4 +
 vendor/github.com/docker/docker/opts/ip.go    |    47 +
 vendor/github.com/docker/docker/opts/opts.go  |   337 +
 .../docker/docker/opts/opts_unix.go           |     6 +
 .../docker/docker/opts/opts_windows.go        |    56 +
 .../docker/docker/opts/quotedstring.go        |    37 +
 .../github.com/docker/docker/opts/runtime.go  |    79 +
 .../github.com/docker/docker/opts/ulimit.go   |    81 +
 .../docker/docker/pkg/archive/archive.go      |     9 +
 .../docker/pkg/broadcaster/unbuffered.go      |    49 +
 .../docker/pkg/chrootarchive/archive.go       |    73 +
 .../docker/pkg/chrootarchive/archive_unix.go  |    88 +
 .../pkg/chrootarchive/archive_windows.go      |    22 +
 .../docker/pkg/chrootarchive/chroot_linux.go  |   113 +
 .../docker/pkg/chrootarchive/chroot_unix.go   |    12 +
 .../docker/docker/pkg/chrootarchive/diff.go   |    23 +
 .../docker/pkg/chrootarchive/diff_unix.go     |   130 +
 .../docker/pkg/chrootarchive/diff_windows.go  |    45 +
 .../docker/pkg/chrootarchive/init_unix.go     |    28 +
 .../docker/pkg/chrootarchive/init_windows.go  |     4 +
 .../docker/docker/pkg/containerfs/archiver.go |   203 +
 .../docker/pkg/containerfs/containerfs.go     |    87 +
 .../pkg/containerfs/containerfs_unix.go       |    10 +
 .../pkg/containerfs/containerfs_windows.go    |    15 +
 .../docker/docker/pkg/directory/directory.go  |    26 +
 .../docker/pkg/directory/directory_unix.go    |    54 +
 .../docker/pkg/directory/directory_windows.go |    42 +
 .../docker/docker/pkg/discovery/backends.go   |   107 +
 .../docker/docker/pkg/discovery/discovery.go  |    35 +
 .../docker/docker/pkg/discovery/entry.go      |    94 +
 .../docker/docker/pkg/discovery/generator.go  |    35 +
 .../docker/docker/pkg/discovery/kv/kv.go      |   192 +
 .../docker/pkg/filenotify/filenotify.go       |    40 +
 .../docker/docker/pkg/filenotify/fsnotify.go  |    18 +
 .../docker/docker/pkg/filenotify/poller.go    |   204 +
 .../docker/docker/pkg/ioutils/readers.go      |     3 +-
 .../docker/pkg/jsonmessage/jsonmessage.go     |   335 +
 .../docker/docker/pkg/locker/locker.go        |   112 +
 .../docker/docker/pkg/mount/mount.go          |    73 +-
 .../docker/docker/pkg/mount/mountinfo.go      |    14 -
 .../docker/pkg/mount/mountinfo_freebsd.go     |    16 +-
 .../docker/pkg/mount/mountinfo_linux.go       |   149 +-
 .../docker/pkg/mount/mountinfo_unsupported.go |     2 +-
 .../docker/pkg/mount/mountinfo_windows.go     |     2 +-
 .../docker/pkg/parsers/kernel/kernel.go       |    74 +
 .../pkg/parsers/kernel/kernel_darwin.go       |    56 +
 .../docker/pkg/parsers/kernel/kernel_unix.go  |    35 +
 .../pkg/parsers/kernel/kernel_windows.go      |    51 +
 .../docker/pkg/parsers/kernel/uname_linux.go  |    17 +
 .../pkg/parsers/kernel/uname_solaris.go       |    14 +
 .../pkg/parsers/kernel/uname_unsupported.go   |    18 +
 .../docker/docker/pkg/parsers/parsers.go      |    69 +
 .../docker/docker/pkg/plugingetter/getter.go  |    37 +
 .../docker/docker/pkg/plugins/client.go       |   242 +
 .../docker/docker/pkg/plugins/discovery.go    |   154 +
 .../docker/pkg/plugins/discovery_unix.go      |     5 +
 .../docker/pkg/plugins/discovery_windows.go   |     8 +
 .../docker/docker/pkg/plugins/errors.go       |    33 +
 .../docker/docker/pkg/plugins/plugins.go      |   329 +
 .../docker/docker/pkg/plugins/plugins_unix.go |     9 +
 .../docker/pkg/plugins/plugins_windows.go     |     7 +
 .../docker/pkg/plugins/transport/http.go      |    36 +
 .../docker/pkg/plugins/transport/transport.go |    36 +
 .../docker/docker/pkg/progress/progress.go    |    89 +
 .../docker/pkg/progress/progressreader.go     |    66 +
 .../docker/docker/pkg/pubsub/publisher.go     |   121 +
 .../docker/docker/pkg/reexec/command_linux.go |    28 +
 .../docker/docker/pkg/reexec/command_unix.go  |    23 +
 .../docker/pkg/reexec/command_unsupported.go  |    12 +
 .../docker/pkg/reexec/command_windows.go      |    21 +
 .../docker/docker/pkg/reexec/reexec.go        |    47 +
 .../pkg/streamformatter/streamformatter.go    |   159 +
 .../pkg/streamformatter/streamwriter.go       |    47 +
 .../docker/docker/pkg/stringid/stringid.go    |    99 +
 .../docker/docker/pkg/symlink/fs.go           |   144 +
 .../docker/docker/pkg/symlink/fs_unix.go      |    15 +
 .../docker/docker/pkg/symlink/fs_windows.go   |   169 +
 .../docker/docker/pkg/sysinfo/numcpu.go       |    12 +
 .../docker/docker/pkg/sysinfo/numcpu_linux.go |    42 +
 .../docker/pkg/sysinfo/numcpu_windows.go      |    35 +
 .../docker/docker/pkg/sysinfo/sysinfo.go      |   144 +
 .../docker/pkg/sysinfo/sysinfo_linux.go       |   254 +
 .../docker/docker/pkg/sysinfo/sysinfo_unix.go |     9 +
 .../docker/pkg/sysinfo/sysinfo_windows.go     |     7 +
 .../docker/pkg/system/syscall_windows.go      |     5 +
 .../docker/docker/pkg/tailfile/tailfile.go    |    66 +
 .../docker/pkg/tarsum/builder_context.go      |    21 +
 .../docker/docker/pkg/tarsum/fileinfosums.go  |   133 +
 .../docker/docker/pkg/tarsum/tarsum.go        |   301 +
 .../docker/docker/pkg/tarsum/versioning.go    |   158 +
 .../docker/docker/pkg/tarsum/writercloser.go  |    22 +
 .../docker/docker/pkg/term/ascii.go           |    66 +
 .../docker/docker/pkg/term/proxy.go           |    78 +
 .../github.com/docker/docker/pkg/term/tc.go   |    20 +
 .../github.com/docker/docker/pkg/term/term.go |   124 +
 .../docker/docker/pkg/term/term_windows.go    |   228 +
 .../docker/docker/pkg/term/termios_bsd.go     |    42 +
 .../docker/docker/pkg/term/termios_linux.go   |    39 +
 .../docker/pkg/term/windows/ansi_reader.go    |   263 +
 .../docker/pkg/term/windows/ansi_writer.go    |    64 +
 .../docker/docker/pkg/term/windows/console.go |    35 +
 .../docker/docker/pkg/term/windows/windows.go |    33 +
 .../docker/docker/pkg/term/winsize.go         |    20 +
 .../docker/docker/pkg/urlutil/urlutil.go      |    44 +
 .../docker/docker/pkg/useragent/useragent.go  |    55 +
 .../docker/docker/plugin/v2/plugin.go         |   266 +
 .../docker/docker/plugin/v2/plugin_linux.go   |   141 +
 .../docker/plugin/v2/plugin_unsupported.go    |    14 +
 .../docker/docker/plugin/v2/settable.go       |   102 +
 .../docker/restartmanager/restartmanager.go   |   133 +
 .../docker/docker/runconfig/config.go         |    81 +
 .../docker/docker/runconfig/config_unix.go    |    59 +
 .../docker/docker/runconfig/config_windows.go |    19 +
 .../docker/docker/runconfig/errors.go         |    42 +
 .../docker/docker/runconfig/hostconfig.go     |    79 +
 .../docker/runconfig/hostconfig_unix.go       |   110 +
 .../docker/runconfig/hostconfig_windows.go    |    96 +
 .../docker/docker/runconfig/opts/parse.go     |    20 +
 .../docker/volume/mounts/lcow_parser.go       |    34 +
 .../docker/volume/mounts/linux_parser.go      |   417 +
 .../docker/docker/volume/mounts/mounts.go     |   170 +
 .../docker/docker/volume/mounts/parser.go     |    47 +
 .../docker/docker/volume/mounts/validate.go   |    28 +
 .../docker/volume/mounts/volume_copy.go       |    23 +
 .../docker/volume/mounts/volume_unix.go       |    18 +
 .../docker/volume/mounts/volume_windows.go    |     8 +
 .../docker/volume/mounts/windows_parser.go    |   456 +
 .../github.com/docker/docker/volume/volume.go |    69 +
 .../go-connections/sockets/inmem_socket.go    |    81 +
 .../docker/go-connections/sockets/proxy.go    |    51 +
 .../docker/go-connections/sockets/sockets.go  |    38 +
 .../go-connections/sockets/sockets_unix.go    |    35 +
 .../go-connections/sockets/sockets_windows.go |    27 +
 .../go-connections/sockets/tcp_socket.go      |    22 +
 .../go-connections/sockets/unix_socket.go     |    32 +
 .../go-connections/tlsconfig/certpool_go17.go |    18 +
 .../tlsconfig/certpool_other.go               |    14 +
 .../docker/go-connections/tlsconfig/config.go |   244 +
 .../tlsconfig/config_client_ciphers.go        |    17 +
 .../tlsconfig/config_legacy_client_ciphers.go |    15 +
 vendor/github.com/docker/go-events/LICENSE    |   201 +
 .../github.com/docker/go-events/broadcast.go  |   178 +
 vendor/github.com/docker/go-events/channel.go |    61 +
 vendor/github.com/docker/go-events/errors.go  |    10 +
 vendor/github.com/docker/go-events/event.go   |    15 +
 vendor/github.com/docker/go-events/filter.go  |    52 +
 vendor/github.com/docker/go-events/queue.go   |   111 +
 vendor/github.com/docker/go-events/retry.go   |   260 +
 .../github.com/docker/go-metrics/LICENSE.code |   191 +
 .../github.com/docker/go-metrics/LICENSE.docs |   425 +
 vendor/github.com/docker/go-metrics/NOTICE    |    16 +
 .../github.com/docker/go-metrics/counter.go   |    52 +
 vendor/github.com/docker/go-metrics/docs.go   |     3 +
 vendor/github.com/docker/go-metrics/gauge.go  |    72 +
 .../github.com/docker/go-metrics/handler.go   |    74 +
 .../github.com/docker/go-metrics/helpers.go   |    10 +
 .../github.com/docker/go-metrics/namespace.go |   315 +
 .../github.com/docker/go-metrics/register.go  |    15 +
 vendor/github.com/docker/go-metrics/timer.go  |    85 +
 vendor/github.com/docker/go-metrics/unit.go   |    12 +
 vendor/github.com/docker/libkv/LICENSE.code   |   191 +
 vendor/github.com/docker/libkv/LICENSE.docs   |   425 +
 vendor/github.com/docker/libkv/libkv.go       |    40 +
 .../docker/libkv/store/boltdb/boltdb.go       |   469 +
 .../docker/libkv/store/consul/consul.go       |   558 +
 .../docker/libkv/store/etcd/etcd.go           |   606 +
 .../github.com/docker/libkv/store/helpers.go  |    47 +
 vendor/github.com/docker/libkv/store/store.go |   132 +
 .../docker/libkv/store/zookeeper/zookeeper.go |   429 +
 vendor/github.com/docker/libnetwork/LICENSE   |   202 +
 vendor/github.com/docker/libnetwork/agent.go  |   975 +
 .../github.com/docker/libnetwork/agent.pb.go  |  1095 +
 .../docker/libnetwork/bitseq/sequence.go      |   737 +
 .../docker/libnetwork/bitseq/store.go         |   142 +
 .../docker/libnetwork/client/mflag/LICENSE    |    27 +
 .../docker/libnetwork/cluster/provider.go     |    37 +
 .../docker/libnetwork/common/caller.go        |    29 +
 .../docker/libnetwork/common/setmatrix.go     |   135 +
 .../docker/libnetwork/config/config.go        |   307 +
 .../docker/libnetwork/controller.go           |  1333 +
 .../docker/libnetwork/datastore/cache.go      |   178 +
 .../docker/libnetwork/datastore/datastore.go  |   660 +
 .../docker/libnetwork/datastore/mock_store.go |   129 +
 .../docker/libnetwork/default_gateway.go      |   201 +
 .../libnetwork/default_gateway_freebsd.go     |    13 +
 .../libnetwork/default_gateway_linux.go       |    32 +
 .../libnetwork/default_gateway_windows.go     |    22 +
 .../docker/libnetwork/diagnostic/server.go    |   227 +
 .../docker/libnetwork/diagnostic/types.go     |   122 +
 .../libnetwork/discoverapi/discoverapi.go     |    60 +
 .../docker/libnetwork/driverapi/driverapi.go  |   213 +
 .../docker/libnetwork/driverapi/errors.go     |    56 +
 .../docker/libnetwork/driverapi/ipamdata.go   |   103 +
 .../libnetwork/drivers/bridge/bridge.go       |  1508 +
 .../libnetwork/drivers/bridge/bridge_store.go |   388 +
 .../libnetwork/drivers/bridge/errors.go       |   341 +
 .../libnetwork/drivers/bridge/interface.go    |    86 +
 .../libnetwork/drivers/bridge/labels.go       |    18 +
 .../docker/libnetwork/drivers/bridge/link.go  |    85 +
 .../bridge/netlink_deprecated_linux.go        |   131 +
 .../netlink_deprecated_linux_armppc64.go      |     7 +
 .../bridge/netlink_deprecated_linux_notarm.go |     7 +
 .../bridge/netlink_deprecated_unsupported.go  |    18 +
 .../libnetwork/drivers/bridge/port_mapping.go |   132 +
 .../docker/libnetwork/drivers/bridge/setup.go |    26 +
 .../bridge/setup_bridgenetfiltering.go        |   163 +
 .../libnetwork/drivers/bridge/setup_device.go |    68 +
 .../drivers/bridge/setup_firewalld.go         |    20 +
 .../drivers/bridge/setup_ip_forwarding.go     |    56 +
 .../drivers/bridge/setup_ip_tables.go         |   363 +
 .../libnetwork/drivers/bridge/setup_ipv4.go   |    80 +
 .../libnetwork/drivers/bridge/setup_ipv6.go   |   119 +
 .../libnetwork/drivers/bridge/setup_verify.go |    73 +
 .../docker/libnetwork/drivers/host/host.go    |   106 +
 .../libnetwork/drivers/ipvlan/ipvlan.go       |   115 +
 .../drivers/ipvlan/ipvlan_endpoint.go         |    89 +
 .../drivers/ipvlan/ipvlan_joinleave.go        |   199 +
 .../drivers/ipvlan/ipvlan_network.go          |   252 +
 .../libnetwork/drivers/ipvlan/ipvlan_setup.go |   205 +
 .../libnetwork/drivers/ipvlan/ipvlan_state.go |   115 +
 .../libnetwork/drivers/ipvlan/ipvlan_store.go |   349 +
 .../libnetwork/drivers/macvlan/macvlan.go     |   117 +
 .../drivers/macvlan/macvlan_endpoint.go       |    96 +
 .../drivers/macvlan/macvlan_joinleave.go      |   144 +
 .../drivers/macvlan/macvlan_network.go        |   260 +
 .../drivers/macvlan/macvlan_setup.go          |   209 +
 .../drivers/macvlan/macvlan_state.go          |   113 +
 .../drivers/macvlan/macvlan_store.go          |   351 +
 .../docker/libnetwork/drivers/null/null.go    |   105 +
 .../libnetwork/drivers/overlay/encryption.go  |   639 +
 .../libnetwork/drivers/overlay/filter.go      |   142 +
 .../libnetwork/drivers/overlay/joinleave.go   |   240 +
 .../drivers/overlay/ostweaks_linux.go         |    72 +
 .../drivers/overlay/ostweaks_unsupported.go   |     5 +
 .../libnetwork/drivers/overlay/ov_endpoint.go |   252 +
 .../libnetwork/drivers/overlay/ov_network.go  |  1128 +
 .../libnetwork/drivers/overlay/ov_serf.go     |   229 +
 .../libnetwork/drivers/overlay/ov_utils.go    |   161 +
 .../libnetwork/drivers/overlay/overlay.go     |   407 +
 .../libnetwork/drivers/overlay/overlay.pb.go  |   468 +
 .../libnetwork/drivers/overlay/peerdb.go      |   525 +
 .../libnetwork/drivers/remote/api/api.go      |   221 +
 .../libnetwork/drivers/remote/driver.go       |   409 +
 .../libnetwork/drivers/windows/labels.go      |    51 +
 .../windows/overlay/joinleave_windows.go      |   112 +
 .../windows/overlay/ov_endpoint_windows.go    |   265 +
 .../windows/overlay/ov_network_windows.go     |   381 +
 .../drivers/windows/overlay/overlay.pb.go     |   468 +
 .../windows/overlay/overlay_windows.go        |   159 +
 .../drivers/windows/overlay/peerdb_windows.go |   120 +
 .../libnetwork/drivers/windows/windows.go     |   867 +
 .../drivers/windows/windows_store.go          |   339 +
 .../libnetwork/drivers_experimental_linux.go  |     9 +
 .../docker/libnetwork/drivers_freebsd.go      |    13 +
 .../docker/libnetwork/drivers_ipam.go         |    25 +
 .../docker/libnetwork/drivers_linux.go        |    26 +
 .../docker/libnetwork/drivers_windows.go      |    21 +
 .../libnetwork/drvregistry/drvregistry.go     |   228 +
 .../github.com/docker/libnetwork/endpoint.go  |  1217 +
 .../docker/libnetwork/endpoint_cnt.go         |   182 +
 .../docker/libnetwork/endpoint_info.go        |   452 +
 .../docker/libnetwork/endpoint_info_unix.go   |    30 +
 .../libnetwork/endpoint_info_windows.go       |    45 +
 vendor/github.com/docker/libnetwork/error.go  |   193 +
 .../docker/libnetwork/etchosts/etchosts.go    |   208 +
 .../docker/libnetwork/firewall_linux.go       |    40 +
 .../docker/libnetwork/firewall_others.go      |     6 +
 .../libnetwork/hostdiscovery/hostdiscovery.go |   121 +
 .../hostdiscovery/hostdiscovery_api.go        |    22 +
 .../github.com/docker/libnetwork/idm/idm.go   |    76 +
 .../docker/libnetwork/ipam/allocator.go       |   609 +
 .../docker/libnetwork/ipam/store.go           |   136 +
 .../docker/libnetwork/ipam/structures.go      |   362 +
 .../docker/libnetwork/ipam/utils.go           |    81 +
 .../docker/libnetwork/ipamapi/contract.go     |    96 +
 .../docker/libnetwork/ipamapi/labels.go       |    10 +
 .../libnetwork/ipams/builtin/builtin_unix.go  |    58 +
 .../ipams/builtin/builtin_windows.go          |    72 +
 .../docker/libnetwork/ipams/null/null.go      |    75 +
 .../docker/libnetwork/ipams/remote/api/api.go |    94 +
 .../docker/libnetwork/ipams/remote/remote.go  |   155 +
 .../ipams/windowsipam/windowsipam.go          |   102 +
 .../docker/libnetwork/ipamutils/utils.go      |    96 +
 .../docker/libnetwork/iptables/conntrack.go   |    59 +
 .../docker/libnetwork/iptables/firewalld.go   |   167 +
 .../docker/libnetwork/iptables/iptables.go    |   575 +
 .../docker/libnetwork/ipvs/constants.go       |   147 +
 .../github.com/docker/libnetwork/ipvs/ipvs.go |   184 +
 .../docker/libnetwork/ipvs/netlink.go         |   556 +
 .../docker/libnetwork/netlabel/labels.go      |   129 +
 .../docker/libnetwork/netutils/utils.go       |   194 +
 .../libnetwork/netutils/utils_freebsd.go      |    23 +
 .../docker/libnetwork/netutils/utils_linux.go |   126 +
 .../libnetwork/netutils/utils_windows.go      |    25 +
 .../github.com/docker/libnetwork/network.go   |  2133 +
 .../docker/libnetwork/network_unix.go         |    14 +
 .../docker/libnetwork/network_windows.go      |    75 +
 .../docker/libnetwork/networkdb/broadcast.go  |   174 +
 .../docker/libnetwork/networkdb/cluster.go    |   731 +
 .../docker/libnetwork/networkdb/delegate.go   |   476 +
 .../libnetwork/networkdb/event_delegate.go    |    72 +
 .../docker/libnetwork/networkdb/message.go    |    98 +
 .../docker/libnetwork/networkdb/networkdb.go  |   762 +
 .../libnetwork/networkdb/networkdb.pb.go      |  2733 ++
 .../networkdb/networkdbdiagnostic.go          |   413 +
 .../docker/libnetwork/networkdb/nodemgmt.go   |   120 +
 .../docker/libnetwork/networkdb/watch.go      |   110 +
 .../docker/libnetwork/ns/init_linux.go        |   140 +
 .../docker/libnetwork/options/options.go      |    88 +
 .../libnetwork/osl/interface_freebsd.go       |     4 +
 .../docker/libnetwork/osl/interface_linux.go  |   450 +
 .../libnetwork/osl/interface_windows.go       |     4 +
 .../docker/libnetwork/osl/namespace_linux.go  |   628 +
 .../libnetwork/osl/namespace_unsupported.go   |    17 +
 .../libnetwork/osl/namespace_windows.go       |    38 +
 .../docker/libnetwork/osl/neigh_freebsd.go    |     4 +
 .../docker/libnetwork/osl/neigh_linux.go      |   194 +
 .../docker/libnetwork/osl/neigh_windows.go    |     4 +
 .../docker/libnetwork/osl/options_linux.go    |    73 +
 .../docker/libnetwork/osl/route_linux.go      |   203 +
 .../docker/libnetwork/osl/sandbox.go          |   171 +
 .../docker/libnetwork/osl/sandbox_freebsd.go  |    44 +
 .../libnetwork/osl/sandbox_unsupported.go     |    22 +
 .../libnetwork/portallocator/portallocator.go |   249 +
 .../portallocator/portallocator_freebsd.go    |    42 +
 .../portallocator/portallocator_linux.go      |    27 +
 .../docker/libnetwork/portmapper/mapper.go    |   294 +
 .../libnetwork/portmapper/mock_proxy.go       |    18 +
 .../docker/libnetwork/portmapper/proxy.go     |   131 +
 .../libnetwork/portmapper/proxy_linux.go      |    38 +
 .../libnetwork/resolvconf/dns/resolvconf.go   |    26 +
 .../libnetwork/resolvconf/resolvconf.go       |   254 +
 .../github.com/docker/libnetwork/resolver.go  |   555 +
 .../docker/libnetwork/resolver_unix.go        |   101 +
 .../docker/libnetwork/resolver_windows.go     |     7 +
 .../github.com/docker/libnetwork/sandbox.go   |  1246 +
 .../docker/libnetwork/sandbox_dns_unix.go     |   420 +
 .../docker/libnetwork/sandbox_dns_windows.go  |    35 +
 .../docker/libnetwork/sandbox_externalkey.go  |    12 +
 .../libnetwork/sandbox_externalkey_unix.go    |   176 +
 .../libnetwork/sandbox_externalkey_windows.go |    45 +
 .../docker/libnetwork/sandbox_store.go        |   305 +
 .../github.com/docker/libnetwork/service.go   |    98 +
 .../docker/libnetwork/service_common.go       |   395 +
 .../docker/libnetwork/service_linux.go        |   796 +
 .../docker/libnetwork/service_unsupported.go  |    25 +
 .../docker/libnetwork/service_windows.go      |   163 +
 vendor/github.com/docker/libnetwork/store.go  |   496 +
 .../docker/libnetwork/types/types.go          |   648 +
 vendor/github.com/docker/swarmkit/LICENSE     |   201 +
 .../docker/swarmkit/agent/exec/controller.go  |   362 +
 .../swarmkit/agent/exec/controller_stub.go    |    75 +
 .../docker/swarmkit/agent/exec/errors.go      |    82 +
 .../docker/swarmkit/agent/exec/executor.go    |    81 +
 .../github.com/docker/swarmkit/api/ca.pb.go   |  2342 ++
 .../docker/swarmkit/api/control.pb.go         | 16095 +++++++
 .../docker/swarmkit/api/deepcopy/copy.go      |    53 +
 .../docker/swarmkit/api/dispatcher.pb.go      |  3851 ++
 .../docker/swarmkit/api/equality/equality.go  |    67 +
 .../docker/swarmkit/api/health.pb.go          |   724 +
 .../docker/swarmkit/api/logbroker.pb.go       |  3421 ++
 .../docker/swarmkit/api/objects.pb.go         |  7892 ++++
 .../github.com/docker/swarmkit/api/raft.pb.go |  4029 ++
 .../docker/swarmkit/api/resource.pb.go        |  1096 +
 .../docker/swarmkit/api/snapshot.pb.go        |  1345 +
 .../docker/swarmkit/api/specs.pb.go           |  6743 +++
 .../docker/swarmkit/api/storeobject.go        |   108 +
 .../docker/swarmkit/api/types.pb.go           | 17410 ++++++++
 .../docker/swarmkit/api/watch.pb.go           |  4602 ++
 .../github.com/docker/swarmkit/log/context.go |    96 +
 vendor/github.com/docker/swarmkit/log/grpc.go |    13 +
 .../manager/raftselector/raftselector.go      |    20 +
 .../swarmkit/protobuf/plugin/helpers.go       |    11 +
 .../swarmkit/protobuf/plugin/plugin.pb.go     |  1246 +
 .../docker/swarmkit/protobuf/ptypes/doc.go    |     3 +
 .../swarmkit/protobuf/ptypes/timestamp.go     |    17 +
 vendor/github.com/fsnotify/fsnotify/AUTHORS   |    52 +
 vendor/github.com/fsnotify/fsnotify/LICENSE   |    28 +
 vendor/github.com/fsnotify/fsnotify/fen.go    |    37 +
 .../github.com/fsnotify/fsnotify/fsnotify.go  |    66 +
 .../github.com/fsnotify/fsnotify/inotify.go   |   337 +
 .../fsnotify/fsnotify/inotify_poller.go       |   187 +
 vendor/github.com/fsnotify/fsnotify/kqueue.go |   521 +
 .../fsnotify/fsnotify/open_mode_bsd.go        |    11 +
 .../fsnotify/fsnotify/open_mode_darwin.go     |    12 +
 .../github.com/fsnotify/fsnotify/windows.go   |   561 +
 vendor/github.com/godbus/dbus/LICENSE         |    25 +
 vendor/github.com/godbus/dbus/auth.go         |   253 +
 .../github.com/godbus/dbus/auth_external.go   |    26 +
 vendor/github.com/godbus/dbus/auth_sha1.go    |   102 +
 vendor/github.com/godbus/dbus/call.go         |    36 +
 vendor/github.com/godbus/dbus/conn.go         |   683 +
 vendor/github.com/godbus/dbus/conn_darwin.go  |    33 +
 vendor/github.com/godbus/dbus/conn_other.go   |    42 +
 vendor/github.com/godbus/dbus/dbus.go         |   427 +
 vendor/github.com/godbus/dbus/decoder.go      |   228 +
 .../github.com/godbus/dbus/default_handler.go |   291 +
 vendor/github.com/godbus/dbus/doc.go          |    69 +
 vendor/github.com/godbus/dbus/encoder.go      |   210 +
 vendor/github.com/godbus/dbus/export.go       |   413 +
 vendor/github.com/godbus/dbus/homedir.go      |    28 +
 .../github.com/godbus/dbus/homedir_dynamic.go |    15 +
 .../github.com/godbus/dbus/homedir_static.go  |    45 +
 vendor/github.com/godbus/dbus/message.go      |   353 +
 vendor/github.com/godbus/dbus/object.go       |   147 +
 .../godbus/dbus/server_interfaces.go          |    89 +
 vendor/github.com/godbus/dbus/sig.go          |   259 +
 .../godbus/dbus/transport_darwin.go           |     6 +
 .../godbus/dbus/transport_generic.go          |    50 +
 .../github.com/godbus/dbus/transport_tcp.go   |    43 +
 .../github.com/godbus/dbus/transport_unix.go  |   196 +
 .../dbus/transport_unixcred_dragonfly.go      |    95 +
 .../godbus/dbus/transport_unixcred_freebsd.go |    91 +
 .../godbus/dbus/transport_unixcred_linux.go   |    25 +
 .../godbus/dbus/transport_unixcred_openbsd.go |    14 +
 vendor/github.com/godbus/dbus/variant.go      |   144 +
 .../github.com/godbus/dbus/variant_lexer.go   |   284 +
 .../github.com/godbus/dbus/variant_parser.go  |   817 +
 vendor/github.com/gogo/protobuf/AUTHORS       |    15 +
 vendor/github.com/gogo/protobuf/CONTRIBUTORS  |    23 +
 .../gogo/protobuf/GOLANG_CONTRIBUTORS         |     5 +
 vendor/github.com/gogo/protobuf/LICENSE       |    36 +
 .../github.com/gogo/protobuf/gogoproto/doc.go |   169 +
 .../gogo/protobuf/gogoproto/gogo.pb.go        |   804 +
 .../gogo/protobuf/gogoproto/helper.go         |   357 +
 .../github.com/gogo/protobuf/proto/clone.go   |   234 +
 .../github.com/gogo/protobuf/proto/decode.go  |   978 +
 .../gogo/protobuf/proto/decode_gogo.go        |   172 +
 .../github.com/gogo/protobuf/proto/discard.go |   151 +
 .../gogo/protobuf/proto/duration.go           |   100 +
 .../gogo/protobuf/proto/duration_gogo.go      |   203 +
 .../github.com/gogo/protobuf/proto/encode.go  |  1362 +
 .../gogo/protobuf/proto/encode_gogo.go        |   350 +
 .../github.com/gogo/protobuf/proto/equal.go   |   300 +
 .../gogo/protobuf/proto/extensions.go         |   693 +
 .../gogo/protobuf/proto/extensions_gogo.go    |   294 +
 vendor/github.com/gogo/protobuf/proto/lib.go  |   897 +
 .../gogo/protobuf/proto/lib_gogo.go           |    42 +
 .../gogo/protobuf/proto/message_set.go        |   311 +
 .../gogo/protobuf/proto/pointer_reflect.go    |   484 +
 .../protobuf/proto/pointer_reflect_gogo.go    |    85 +
 .../gogo/protobuf/proto/pointer_unsafe.go     |   270 +
 .../protobuf/proto/pointer_unsafe_gogo.go     |   128 +
 .../gogo/protobuf/proto/properties.go         |   971 +
 .../gogo/protobuf/proto/properties_gogo.go    |   111 +
 .../gogo/protobuf/proto/skip_gogo.go          |   119 +
 vendor/github.com/gogo/protobuf/proto/text.go |   939 +
 .../gogo/protobuf/proto/text_gogo.go          |    57 +
 .../gogo/protobuf/proto/text_parser.go        |  1013 +
 .../gogo/protobuf/proto/timestamp.go          |   113 +
 .../gogo/protobuf/proto/timestamp_gogo.go     |   229 +
 .../protoc-gen-gogo/descriptor/descriptor.go  |   118 +
 .../descriptor/descriptor.pb.go               |  2280 +
 .../descriptor/descriptor_gostring.gen.go     |   772 +
 .../protoc-gen-gogo/descriptor/helper.go      |   390 +
 .../gogo/protobuf/sortkeys/sortkeys.go        |   101 +
 vendor/github.com/gogo/protobuf/types/any.go  |   138 +
 .../github.com/gogo/protobuf/types/any.pb.go  |   651 +
 vendor/github.com/gogo/protobuf/types/doc.go  |    35 +
 .../gogo/protobuf/types/duration.go           |   100 +
 .../gogo/protobuf/types/duration.pb.go        |   488 +
 .../gogo/protobuf/types/duration_gogo.go      |   100 +
 .../gogo/protobuf/types/empty.pb.go           |   432 +
 .../gogo/protobuf/types/field_mask.pb.go      |   713 +
 .../gogo/protobuf/types/struct.pb.go          |  1813 +
 .../gogo/protobuf/types/timestamp.go          |   132 +
 .../gogo/protobuf/types/timestamp.pb.go       |   504 +
 .../gogo/protobuf/types/timestamp_gogo.go     |    94 +
 .../gogo/protobuf/types/wrappers.pb.go        |  2180 +
 .../github.com/golang/protobuf/proto/clone.go |    46 +-
 .../golang/protobuf/proto/decode.go           |   668 +-
 .../golang/protobuf/proto/discard.go          |   201 +-
 .../golang/protobuf/proto/encode.go           |  1191 +-
 .../github.com/golang/protobuf/proto/equal.go |    30 +-
 .../golang/protobuf/proto/extensions.go       |   204 +-
 .../github.com/golang/protobuf/proto/lib.go   |    70 +-
 .../golang/protobuf/proto/message_set.go      |    81 +-
 .../golang/protobuf/proto/pointer_reflect.go  |   595 +-
 .../golang/protobuf/proto/pointer_unsafe.go   |   366 +-
 .../golang/protobuf/proto/properties.go       |   424 +-
 .../golang/protobuf/proto/table_marshal.go    |  2681 ++
 .../golang/protobuf/proto/table_merge.go      |   654 +
 .../golang/protobuf/proto/table_unmarshal.go  |  1967 +
 .../github.com/golang/protobuf/proto/text.go  |    61 +-
 .../golang/protobuf/proto/text_parser.go      |    77 +-
 .../protoc-gen-go/descriptor/descriptor.pb.go |  1293 +-
 .../golang/protobuf/ptypes/any/any.pb.go      |    49 +-
 .../protobuf/ptypes/duration/duration.pb.go   |    51 +-
 .../protobuf/ptypes/timestamp/timestamp.pb.go |    53 +-
 .../go-containerregistry/authn/keychain.go    |    24 +-
 .../google/go-containerregistry/name/tag.go   |     4 +-
 .../go-containerregistry/v1/mutate/doc.go     |    16 +
 .../go-containerregistry/v1/mutate/mutate.go  |   113 +-
 .../go-containerregistry/v1/mutate/rebase.go  |   100 +
 .../go-containerregistry/v1/partial/with.go   |     6 +-
 .../go-containerregistry/v1/random/image.go   |    10 +
 .../go-containerregistry/v1/remote/delete.go  |     3 +-
 .../go-containerregistry/v1/remote/image.go   |     3 +-
 .../v1/remote/transport/bearer.go             |     4 +-
 .../v1/remote/transport/scope.go              |    13 +-
 .../v1/remote/transport/transport.go          |    16 +-
 .../go-containerregistry/v1/remote/write.go   |    20 +-
 .../go-containerregistry/v1/tarball/layer.go  |     2 +-
 .../go-containerregistry/v1/tarball/write.go  |    26 +-
 .../grpc-ecosystem/grpc-opentracing/LICENSE   |    27 +
 .../grpc-ecosystem/grpc-opentracing/PATENTS   |    23 +
 .../grpc-opentracing/go/otgrpc/client.go      |   239 +
 .../grpc-opentracing/go/otgrpc/errors.go      |    69 +
 .../grpc-opentracing/go/otgrpc/options.go     |    76 +
 .../grpc-opentracing/go/otgrpc/package.go     |     5 +
 .../grpc-opentracing/go/otgrpc/server.go      |   141 +
 .../grpc-opentracing/go/otgrpc/shared.go      |    42 +
 vendor/github.com/hashicorp/consul/LICENSE    |   354 +
 vendor/github.com/hashicorp/consul/api/acl.go |   193 +
 .../github.com/hashicorp/consul/api/agent.go  |   627 +
 vendor/github.com/hashicorp/consul/api/api.go |   791 +
 .../hashicorp/consul/api/catalog.go           |   200 +
 .../hashicorp/consul/api/coordinate.go        |   106 +
 .../github.com/hashicorp/consul/api/event.go  |   104 +
 .../github.com/hashicorp/consul/api/health.go |   215 +
 vendor/github.com/hashicorp/consul/api/kv.go  |   420 +
 .../github.com/hashicorp/consul/api/lock.go   |   385 +
 .../hashicorp/consul/api/operator.go          |    11 +
 .../hashicorp/consul/api/operator_area.go     |   193 +
 .../consul/api/operator_autopilot.go          |   219 +
 .../hashicorp/consul/api/operator_keyring.go  |    86 +
 .../hashicorp/consul/api/operator_raft.go     |    89 +
 .../hashicorp/consul/api/operator_segment.go  |    11 +
 .../hashicorp/consul/api/prepared_query.go    |   204 +
 vendor/github.com/hashicorp/consul/api/raw.go |    24 +
 .../hashicorp/consul/api/semaphore.go         |   513 +
 .../hashicorp/consul/api/session.go           |   224 +
 .../hashicorp/consul/api/snapshot.go          |    47 +
 .../github.com/hashicorp/consul/api/status.go |    43 +
 .../hashicorp/consul/website/LICENSE.md       |    10 +
 vendor/github.com/hashicorp/errwrap/LICENSE   |   354 +
 .../github.com/hashicorp/errwrap/errwrap.go   |   169 +
 .../github.com/hashicorp/go-cleanhttp/LICENSE |   363 +
 .../hashicorp/go-cleanhttp/cleanhttp.go       |    57 +
 .../github.com/hashicorp/go-cleanhttp/doc.go  |    20 +
 .../hashicorp/go-cleanhttp/handlers.go        |    43 +
 .../hashicorp/go-immutable-radix/LICENSE      |   363 +
 .../hashicorp/go-immutable-radix/edges.go     |    21 +
 .../hashicorp/go-immutable-radix/iradix.go    |   662 +
 .../hashicorp/go-immutable-radix/iter.go      |    91 +
 .../hashicorp/go-immutable-radix/node.go      |   292 +
 .../hashicorp/go-immutable-radix/raw_iter.go  |    78 +
 vendor/github.com/hashicorp/go-memdb/LICENSE  |   363 +
 .../github.com/hashicorp/go-memdb/filter.go   |    33 +
 vendor/github.com/hashicorp/go-memdb/index.go |   581 +
 vendor/github.com/hashicorp/go-memdb/memdb.go |    97 +
 .../github.com/hashicorp/go-memdb/schema.go   |   114 +
 vendor/github.com/hashicorp/go-memdb/txn.go   |   644 +
 vendor/github.com/hashicorp/go-memdb/watch.go |   129 +
 .../hashicorp/go-memdb/watch_few.go           |   117 +
 .../github.com/hashicorp/go-msgpack/LICENSE   |    25 +
 .../hashicorp/go-msgpack/codec/0doc.go        |   143 +
 .../hashicorp/go-msgpack/codec/binc.go        |   786 +
 .../hashicorp/go-msgpack/codec/decode.go      |  1048 +
 .../hashicorp/go-msgpack/codec/encode.go      |  1001 +
 .../hashicorp/go-msgpack/codec/helper.go      |   589 +
 .../go-msgpack/codec/helper_internal.go       |   127 +
 .../hashicorp/go-msgpack/codec/msgpack.go     |   816 +
 .../hashicorp/go-msgpack/codec/rpc.go         |   152 +
 .../hashicorp/go-msgpack/codec/simple.go      |   461 +
 .../hashicorp/go-msgpack/codec/time.go        |   193 +
 .../hashicorp/go-multierror/LICENSE           |   353 +
 .../hashicorp/go-multierror/append.go         |    41 +
 .../hashicorp/go-multierror/flatten.go        |    26 +
 .../hashicorp/go-multierror/format.go         |    27 +
 .../hashicorp/go-multierror/multierror.go     |    51 +
 .../hashicorp/go-multierror/prefix.go         |    37 +
 .../github.com/hashicorp/go-rootcerts/LICENSE |   363 +
 .../github.com/hashicorp/go-rootcerts/doc.go  |     9 +
 .../hashicorp/go-rootcerts/rootcerts.go       |   103 +
 .../hashicorp/go-rootcerts/rootcerts_base.go  |    12 +
 .../go-rootcerts/rootcerts_darwin.go          |    48 +
 .../capath-with-symlinks/securetrust.pem      |     1 +
 .../capath-with-symlinks/thawte.pem           |     1 +
 .../github.com/hashicorp/go-sockaddr/LICENSE  |   373 +
 .../github.com/hashicorp/go-sockaddr/doc.go   |     5 +
 .../hashicorp/go-sockaddr/ifaddr.go           |   254 +
 .../hashicorp/go-sockaddr/ifaddrs.go          |  1281 +
 .../hashicorp/go-sockaddr/ifattr.go           |    65 +
 .../hashicorp/go-sockaddr/ipaddr.go           |   169 +
 .../hashicorp/go-sockaddr/ipaddrs.go          |    98 +
 .../hashicorp/go-sockaddr/ipv4addr.go         |   516 +
 .../hashicorp/go-sockaddr/ipv6addr.go         |   591 +
 .../github.com/hashicorp/go-sockaddr/rfc.go   |   948 +
 .../hashicorp/go-sockaddr/route_info.go       |    19 +
 .../hashicorp/go-sockaddr/route_info_bsd.go   |    36 +
 .../go-sockaddr/route_info_default.go         |    10 +
 .../hashicorp/go-sockaddr/route_info_linux.go |    40 +
 .../go-sockaddr/route_info_solaris.go         |    37 +
 .../go-sockaddr/route_info_windows.go         |    41 +
 .../hashicorp/go-sockaddr/sockaddr.go         |   206 +
 .../hashicorp/go-sockaddr/sockaddrs.go        |   193 +
 .../hashicorp/go-sockaddr/unixsock.go         |   135 +
 .../github.com/hashicorp/golang-lru/LICENSE   |   362 +
 .../hashicorp/golang-lru/simplelru/lru.go     |   161 +
 .../golang-lru/simplelru/lru_interface.go     |    37 +
 .../github.com/hashicorp/memberlist/LICENSE   |   354 +
 .../hashicorp/memberlist/alive_delegate.go    |    14 +
 .../hashicorp/memberlist/awareness.go         |    69 +
 .../hashicorp/memberlist/broadcast.go         |   100 +
 .../github.com/hashicorp/memberlist/config.go |   288 +
 .../hashicorp/memberlist/conflict_delegate.go |    10 +
 .../hashicorp/memberlist/delegate.go          |    37 +
 .../hashicorp/memberlist/event_delegate.go    |    61 +
 .../hashicorp/memberlist/keyring.go           |   160 +
 .../hashicorp/memberlist/logging.go           |    22 +
 .../hashicorp/memberlist/memberlist.go        |   625 +
 .../hashicorp/memberlist/merge_delegate.go    |    14 +
 .../hashicorp/memberlist/mock_transport.go    |   121 +
 vendor/github.com/hashicorp/memberlist/net.go |  1069 +
 .../hashicorp/memberlist/net_transport.go     |   289 +
 .../hashicorp/memberlist/ping_delegate.go     |    14 +
 .../github.com/hashicorp/memberlist/queue.go  |   167 +
 .../hashicorp/memberlist/security.go          |   198 +
 .../github.com/hashicorp/memberlist/state.go  |  1160 +
 .../hashicorp/memberlist/suspicion.go         |   130 +
 .../hashicorp/memberlist/transport.go         |    65 +
 .../github.com/hashicorp/memberlist/util.go   |   296 +
 vendor/github.com/hashicorp/serf/LICENSE      |   354 +
 .../hashicorp/serf/coordinate/client.go       |   180 +
 .../hashicorp/serf/coordinate/config.go       |    70 +
 .../hashicorp/serf/coordinate/coordinate.go   |   183 +
 .../hashicorp/serf/coordinate/phantom.go      |   187 +
 .../hashicorp/serf/ops-misc/debian/copyright  |     2 +
 .../hashicorp/serf/serf/broadcast.go          |    27 +
 .../hashicorp/serf/serf/coalesce.go           |    80 +
 .../hashicorp/serf/serf/coalesce_member.go    |    68 +
 .../hashicorp/serf/serf/coalesce_user.go      |    52 +
 .../github.com/hashicorp/serf/serf/config.go  |   260 +
 .../hashicorp/serf/serf/conflict_delegate.go  |    13 +
 .../hashicorp/serf/serf/delegate.go           |   275 +
 .../github.com/hashicorp/serf/serf/event.go   |   174 +
 .../hashicorp/serf/serf/event_delegate.go     |    21 +
 .../hashicorp/serf/serf/internal_query.go     |   312 +
 .../hashicorp/serf/serf/keymanager.go         |   192 +
 .../github.com/hashicorp/serf/serf/lamport.go |    45 +
 .../hashicorp/serf/serf/merge_delegate.go     |    44 +
 .../hashicorp/serf/serf/messages.go           |   173 +
 .../hashicorp/serf/serf/ping_delegate.go      |    89 +
 .../github.com/hashicorp/serf/serf/query.go   |   294 +
 vendor/github.com/hashicorp/serf/serf/serf.go |  1728 +
 .../hashicorp/serf/serf/snapshot.go           |   560 +
 .../hashicorp/serf/website/source/LICENSE     |    10 +
 vendor/github.com/ishidawataru/sctp/LICENSE   |   201 +
 vendor/github.com/ishidawataru/sctp/sctp.go   |   656 +
 .../ishidawataru/sctp/sctp_linux.go           |   227 +
 .../ishidawataru/sctp/sctp_unsupported.go     |    47 +
 vendor/github.com/mattn/go-shellwords/LICENSE |    21 +
 .../mattn/go-shellwords/shellwords.go         |   145 +
 .../mattn/go-shellwords/util_posix.go         |    19 +
 .../mattn/go-shellwords/util_windows.go       |    17 +
 .../golang_protobuf_extensions/LICENSE        |   201 +
 .../golang_protobuf_extensions/NOTICE         |     1 +
 .../pbutil/decode.go                          |    75 +
 .../golang_protobuf_extensions/pbutil/doc.go  |    16 +
 .../pbutil/encode.go                          |    46 +
 vendor/github.com/miekg/dns/AUTHORS           |     1 +
 vendor/github.com/miekg/dns/CONTRIBUTORS      |    10 +
 vendor/github.com/miekg/dns/COPYRIGHT         |     9 +
 vendor/github.com/miekg/dns/LICENSE           |    32 +
 vendor/github.com/miekg/dns/client.go         |   503 +
 vendor/github.com/miekg/dns/clientconfig.go   |   139 +
 .../github.com/miekg/dns/compress_generate.go |   188 +
 vendor/github.com/miekg/dns/dane.go           |    43 +
 vendor/github.com/miekg/dns/defaults.go       |   288 +
 vendor/github.com/miekg/dns/dns.go            |   107 +
 vendor/github.com/miekg/dns/dnssec.go         |   784 +
 vendor/github.com/miekg/dns/dnssec_keygen.go  |   178 +
 vendor/github.com/miekg/dns/dnssec_keyscan.go |   297 +
 vendor/github.com/miekg/dns/dnssec_privkey.go |    93 +
 vendor/github.com/miekg/dns/doc.go            |   272 +
 vendor/github.com/miekg/dns/edns.go           |   627 +
 vendor/github.com/miekg/dns/format.go         |    87 +
 vendor/github.com/miekg/dns/fuzz.go           |    23 +
 vendor/github.com/miekg/dns/generate.go       |   159 +
 vendor/github.com/miekg/dns/labels.go         |   191 +
 vendor/github.com/miekg/dns/msg.go            |  1177 +
 vendor/github.com/miekg/dns/msg_generate.go   |   348 +
 vendor/github.com/miekg/dns/msg_helpers.go    |   637 +
 vendor/github.com/miekg/dns/nsecx.go          |   106 +
 vendor/github.com/miekg/dns/privaterr.go      |   149 +
 vendor/github.com/miekg/dns/rawmsg.go         |    49 +
 vendor/github.com/miekg/dns/reverse.go        |    38 +
 vendor/github.com/miekg/dns/sanitize.go       |    84 +
 vendor/github.com/miekg/dns/scan.go           |  1007 +
 vendor/github.com/miekg/dns/scan_rr.go        |  2199 +
 vendor/github.com/miekg/dns/scanner.go        |    56 +
 vendor/github.com/miekg/dns/server.go         |   719 +
 vendor/github.com/miekg/dns/sig0.go           |   218 +
 vendor/github.com/miekg/dns/singleinflight.go |    57 +
 vendor/github.com/miekg/dns/smimea.go         |    47 +
 vendor/github.com/miekg/dns/tlsa.go           |    47 +
 vendor/github.com/miekg/dns/tsig.go           |   386 +
 vendor/github.com/miekg/dns/types.go          |  1381 +
 vendor/github.com/miekg/dns/types_generate.go |   272 +
 vendor/github.com/miekg/dns/udp.go            |    89 +
 vendor/github.com/miekg/dns/udp_windows.go    |    37 +
 vendor/github.com/miekg/dns/update.go         |   106 +
 vendor/github.com/miekg/dns/version.go        |    15 +
 vendor/github.com/miekg/dns/xfr.go            |   260 +
 vendor/github.com/miekg/dns/zcompress.go      |   118 +
 vendor/github.com/miekg/dns/zmsg.go           |  3615 ++
 vendor/github.com/miekg/dns/ztypes.go         |   863 +
 .../github.com/mitchellh/go-homedir/LICENSE   |    21 +
 .../mitchellh/go-homedir/homedir.go           |   137 +
 vendor/github.com/moby/buildkit/LICENSE       |   201 +
 .../moby/buildkit/identity/randomid.go        |    53 +
 .../moby/buildkit/session/context.go          |    22 +
 .../buildkit/session/filesync/diffcopy.go     |   113 +
 .../buildkit/session/filesync/filesync.go     |   281 +
 .../buildkit/session/filesync/filesync.pb.go  |   652 +
 .../buildkit/session/filesync/generate.go     |     3 +
 .../github.com/moby/buildkit/session/grpc.go  |    81 +
 .../moby/buildkit/session/manager.go          |   218 +
 .../moby/buildkit/session/session.go          |   143 +
 .../runc/libcontainer/cgroups/cgroups.go      |    64 +
 .../cgroups/cgroups_unsupported.go            |     3 +
 .../runc/libcontainer/cgroups/stats.go        |   108 +
 .../runc/libcontainer/cgroups/utils.go        |   462 +
 .../runc/libcontainer/configs/blkio_device.go |    61 +
 .../runc/libcontainer/configs/cgroup_linux.go |   122 +
 .../libcontainer/configs/cgroup_windows.go    |     6 +
 .../runc/libcontainer/configs/config.go       |   348 +
 .../runc/libcontainer/configs/config_linux.go |    61 +
 .../runc/libcontainer/configs/device.go       |    57 +
 .../libcontainer/configs/device_defaults.go   |   111 +
 .../libcontainer/configs/hugepage_limit.go    |     9 +
 .../runc/libcontainer/configs/intelrdt.go     |     7 +
 .../configs/interface_priority_map.go         |    14 +
 .../runc/libcontainer/configs/mount.go        |    39 +
 .../runc/libcontainer/configs/namespaces.go   |     5 +
 .../libcontainer/configs/namespaces_linux.go  |   122 +
 .../configs/namespaces_syscall.go             |    31 +
 .../configs/namespaces_syscall_unsupported.go |    13 +
 .../configs/namespaces_unsupported.go         |     8 +
 .../runc/libcontainer/configs/network.go      |    72 +
 .../runc/libcontainer/devices/devices.go      |   104 +
 .../runc/libcontainer/system/linux.go         |    45 +-
 .../runc/libcontainer/system/proc.go          |   110 +-
 .../libcontainer/system/syscall_linux_32.go   |    26 +
 .../libcontainer/system/syscall_linux_64.go   |     9 +-
 .../runc/libcontainer/system/sysconfig.go     |     2 +-
 .../runc/libcontainer/system/xattrs_linux.go  |    88 +-
 .../runc/libcontainer/user/lookup.go          |    15 -
 .../runc/libcontainer/user/lookup_unix.go     |    16 +
 .../runc/libcontainer/user/user.go            |    28 +-
 .../opencontainers/runtime-spec/LICENSE       |   191 +
 .../runtime-spec/specs-go/config.go           |   570 +
 .../runtime-spec/specs-go/state.go            |    17 +
 .../runtime-spec/specs-go/version.go          |    18 +
 .../github.com/opencontainers/selinux/LICENSE |   201 +
 .../selinux/go-selinux/label/label.go         |    84 +
 .../selinux/go-selinux/label/label_selinux.go |   204 +
 .../selinux/go-selinux/selinux.go             |   593 +
 .../selinux/go-selinux/xattrs.go              |    78 +
 .../opentracing/opentracing-go/LICENSE        |    21 +
 .../opentracing/opentracing-go/ext/tags.go    |   198 +
 .../opentracing-go/globaltracer.go            |    32 +
 .../opentracing/opentracing-go/gocontext.go   |    57 +
 .../opentracing/opentracing-go/log/field.go   |   245 +
 .../opentracing/opentracing-go/log/util.go    |    54 +
 .../opentracing/opentracing-go/noop.go        |    64 +
 .../opentracing/opentracing-go/propagation.go |   176 +
 .../opentracing/opentracing-go/span.go        |   185 +
 .../opentracing/opentracing-go/tracer.go      |   305 +
 .../prometheus/client_golang/LICENSE          |   201 +
 .../prometheus/client_golang/NOTICE           |    23 +
 .../client_golang/prometheus/collector.go     |    75 +
 .../client_golang/prometheus/counter.go       |   277 +
 .../client_golang/prometheus/desc.go          |   188 +
 .../client_golang/prometheus/doc.go           |   186 +
 .../prometheus/expvar_collector.go            |   119 +
 .../client_golang/prometheus/fnv.go           |    29 +
 .../client_golang/prometheus/gauge.go         |   286 +
 .../client_golang/prometheus/go_collector.go  |   284 +
 .../client_golang/prometheus/histogram.go     |   505 +
 .../client_golang/prometheus/http.go          |   523 +
 .../client_golang/prometheus/labels.go        |    57 +
 .../client_golang/prometheus/metric.go        |   158 +
 .../client_golang/prometheus/observer.go      |    52 +
 .../prometheus/process_collector.go           |   140 +
 .../prometheus/promhttp/delegator.go          |   199 +
 .../prometheus/promhttp/delegator_1_8.go      |   181 +
 .../prometheus/promhttp/delegator_pre_1_8.go  |    44 +
 .../client_golang/prometheus/promhttp/http.go |   311 +
 .../prometheus/promhttp/instrument_client.go  |    97 +
 .../promhttp/instrument_client_1_8.go         |   144 +
 .../prometheus/promhttp/instrument_server.go  |   447 +
 .../client_golang/prometheus/registry.go      |   807 +
 .../client_golang/prometheus/summary.go       |   609 +
 .../client_golang/prometheus/timer.go         |    51 +
 .../client_golang/prometheus/untyped.go       |    42 +
 .../client_golang/prometheus/value.go         |   160 +
 .../client_golang/prometheus/vec.go           |   469 +
 .../prometheus/client_model/LICENSE           |   201 +
 .../github.com/prometheus/client_model/NOTICE |     5 +
 .../prometheus/client_model/go/metrics.pb.go  |   364 +
 .../prometheus/client_model/ruby/LICENSE      |   201 +
 vendor/github.com/prometheus/common/LICENSE   |   201 +
 vendor/github.com/prometheus/common/NOTICE    |     5 +
 .../prometheus/common/expfmt/decode.go        |   429 +
 .../prometheus/common/expfmt/encode.go        |    88 +
 .../prometheus/common/expfmt/expfmt.go        |    38 +
 .../prometheus/common/expfmt/fuzz.go          |    36 +
 .../prometheus/common/expfmt/text_create.go   |   303 +
 .../prometheus/common/expfmt/text_parse.go    |   757 +
 .../bitbucket.org/ww/goautoneg/autoneg.go     |   162 +
 .../prometheus/common/model/alert.go          |   136 +
 .../prometheus/common/model/fingerprinting.go |   105 +
 .../github.com/prometheus/common/model/fnv.go |    42 +
 .../prometheus/common/model/labels.go         |   210 +
 .../prometheus/common/model/labelset.go       |   169 +
 .../prometheus/common/model/metric.go         |   103 +
 .../prometheus/common/model/model.go          |    16 +
 .../prometheus/common/model/signature.go      |   144 +
 .../prometheus/common/model/silence.go        |   106 +
 .../prometheus/common/model/time.go           |   264 +
 .../prometheus/common/model/value.go          |   416 +
 vendor/github.com/prometheus/procfs/LICENSE   |   201 +
 vendor/github.com/prometheus/procfs/NOTICE    |     7 +
 .../github.com/prometheus/procfs/buddyinfo.go |    95 +
 vendor/github.com/prometheus/procfs/doc.go    |    45 +
 vendor/github.com/prometheus/procfs/fs.go     |    82 +
 .../prometheus/procfs/internal/util/parse.go  |    46 +
 vendor/github.com/prometheus/procfs/ipvs.go   |   259 +
 vendor/github.com/prometheus/procfs/mdstat.go |   151 +
 .../prometheus/procfs/mountstats.go           |   569 +
 .../github.com/prometheus/procfs/net_dev.go   |   216 +
 .../github.com/prometheus/procfs/nfs/nfs.go   |   263 +
 .../github.com/prometheus/procfs/nfs/parse.go |   317 +
 .../prometheus/procfs/nfs/parse_nfs.go        |    67 +
 .../prometheus/procfs/nfs/parse_nfsd.go       |    89 +
 vendor/github.com/prometheus/procfs/proc.go   |   238 +
 .../github.com/prometheus/procfs/proc_io.go   |    65 +
 .../prometheus/procfs/proc_limits.go          |   150 +
 .../github.com/prometheus/procfs/proc_ns.go   |    68 +
 .../github.com/prometheus/procfs/proc_stat.go |   188 +
 vendor/github.com/prometheus/procfs/stat.go   |   232 +
 vendor/github.com/prometheus/procfs/xfrm.go   |   187 +
 .../github.com/prometheus/procfs/xfs/parse.go |   330 +
 .../github.com/prometheus/procfs/xfs/xfs.go   |   163 +
 vendor/github.com/samuel/go-zookeeper/LICENSE |    25 +
 .../github.com/samuel/go-zookeeper/zk/conn.go |  1228 +
 .../samuel/go-zookeeper/zk/constants.go       |   240 +
 .../samuel/go-zookeeper/zk/dnshostprovider.go |    88 +
 .../github.com/samuel/go-zookeeper/zk/flw.go  |   266 +
 .../github.com/samuel/go-zookeeper/zk/lock.go |   150 +
 .../samuel/go-zookeeper/zk/server_help.go     |   216 +
 .../samuel/go-zookeeper/zk/server_java.go     |   136 +
 .../samuel/go-zookeeper/zk/structs.go         |   609 +
 .../github.com/samuel/go-zookeeper/zk/util.go |   116 +
 vendor/github.com/sean-/seed/LICENSE          |    54 +
 vendor/github.com/sean-/seed/init.go          |    84 +
 vendor/github.com/tonistiigi/fsutil/LICENSE   |    22 +
 .../tonistiigi/fsutil/chtimes_linux.go        |    20 +
 .../tonistiigi/fsutil/chtimes_nolinux.go      |    13 +
 vendor/github.com/tonistiigi/fsutil/diff.go   |    44 +
 .../tonistiigi/fsutil/diff_containerd.go      |   199 +
 .../fsutil/diff_containerd_linux.go           |    37 +
 .../tonistiigi/fsutil/diskwriter.go           |   323 +
 .../tonistiigi/fsutil/diskwriter_unix.go      |    51 +
 .../tonistiigi/fsutil/diskwriter_windows.go   |    17 +
 .../github.com/tonistiigi/fsutil/generate.go  |     3 +
 .../github.com/tonistiigi/fsutil/hardlinks.go |    46 +
 .../github.com/tonistiigi/fsutil/receive.go   |   267 +
 vendor/github.com/tonistiigi/fsutil/send.go   |   204 +
 .../github.com/tonistiigi/fsutil/stat.pb.go   |   931 +
 .../github.com/tonistiigi/fsutil/validator.go |    92 +
 vendor/github.com/tonistiigi/fsutil/walker.go |   227 +
 .../tonistiigi/fsutil/walker_unix.go          |    61 +
 .../tonistiigi/fsutil/walker_windows.go       |    14 +
 .../github.com/tonistiigi/fsutil/wire.pb.go   |   567 +
 vendor/github.com/ugorji/go/LICENSE           |    22 +
 vendor/github.com/ugorji/go/codec/0doc.go     |   264 +
 vendor/github.com/ugorji/go/codec/binc.go     |  1168 +
 vendor/github.com/ugorji/go/codec/cbor.go     |   756 +
 vendor/github.com/ugorji/go/codec/decode.go   |  2552 ++
 vendor/github.com/ugorji/go/codec/encode.go   |  1375 +
 .../ugorji/go/codec/fast-path.generated.go    | 34522 ++++++++++++++++
 .../ugorji/go/codec/fast-path.not.go          |    47 +
 .../ugorji/go/codec/gen-helper.generated.go   |   335 +
 .../ugorji/go/codec/gen.generated.go          |   164 +
 vendor/github.com/ugorji/go/codec/gen.go      |  2139 +
 .../go/codec/goversion_arrayof_gte_go15.go    |    14 +
 .../go/codec/goversion_arrayof_lt_go15.go     |    14 +
 .../go/codec/goversion_makemap_gte_go19.go    |    15 +
 .../go/codec/goversion_makemap_lt_go19.go     |    12 +
 ...version_unexportedembeddedptr_gte_go110.go |     8 +
 ...oversion_unexportedembeddedptr_lt_go110.go |     8 +
 .../go/codec/goversion_unsupported_lt_go14.go |    17 +
 .../go/codec/goversion_vendor_eq_go15.go      |    10 +
 .../go/codec/goversion_vendor_eq_go16.go      |    10 +
 .../go/codec/goversion_vendor_gte_go17.go     |     8 +
 .../go/codec/goversion_vendor_lt_go15.go      |     8 +
 vendor/github.com/ugorji/go/codec/helper.go   |  2414 ++
 .../ugorji/go/codec/helper_internal.go        |   121 +
 .../ugorji/go/codec/helper_not_unsafe.go      |   272 +
 .../ugorji/go/codec/helper_unsafe.go          |   639 +
 vendor/github.com/ugorji/go/codec/json.go     |  1423 +
 vendor/github.com/ugorji/go/codec/msgpack.go  |  1092 +
 vendor/github.com/ugorji/go/codec/rpc.go      |   232 +
 vendor/github.com/ugorji/go/codec/simple.go   |   652 +
 vendor/github.com/ugorji/go/codec/xml.go      |   508 +
 vendor/github.com/vbatts/tar-split/LICENSE    |    28 +
 .../vbatts/tar-split/archive/tar/common.go    |   340 +
 .../vbatts/tar-split/archive/tar/reader.go    |  1064 +
 .../vbatts/tar-split/archive/tar/stat_atim.go |    20 +
 .../tar-split/archive/tar/stat_atimespec.go   |    20 +
 .../vbatts/tar-split/archive/tar/stat_unix.go |    32 +
 .../vbatts/tar-split/archive/tar/writer.go    |   416 +
 .../vbatts/tar-split/tar/asm/assemble.go      |   130 +
 .../vbatts/tar-split/tar/asm/disassemble.go   |   154 +
 .../vbatts/tar-split/tar/asm/doc.go           |     9 +
 .../vbatts/tar-split/tar/storage/doc.go       |    12 +
 .../vbatts/tar-split/tar/storage/entry.go     |    78 +
 .../vbatts/tar-split/tar/storage/getter.go    |   104 +
 .../vbatts/tar-split/tar/storage/packer.go    |   127 +
 vendor/github.com/vishvananda/netlink/LICENSE |   192 +
 vendor/github.com/vishvananda/netlink/addr.go |    56 +
 .../vishvananda/netlink/addr_linux.go         |   316 +
 .../vishvananda/netlink/bpf_linux.go          |    62 +
 .../vishvananda/netlink/bridge_linux.go       |   115 +
 .../github.com/vishvananda/netlink/class.go   |    78 +
 .../vishvananda/netlink/class_linux.go        |   254 +
 .../vishvananda/netlink/conntrack_linux.go    |   371 +
 .../netlink/conntrack_unspecified.go          |    53 +
 .../github.com/vishvananda/netlink/filter.go  |   273 +
 .../vishvananda/netlink/filter_linux.go       |   601 +
 .../vishvananda/netlink/genetlink_linux.go    |   167 +
 .../netlink/genetlink_unspecified.go          |    25 +
 .../vishvananda/netlink/gtp_linux.go          |   238 +
 .../vishvananda/netlink/handle_linux.go       |   144 +
 .../vishvananda/netlink/handle_unspecified.go |   222 +
 vendor/github.com/vishvananda/netlink/link.go |   799 +
 .../vishvananda/netlink/link_linux.go         |  2016 +
 .../vishvananda/netlink/link_tuntap_linux.go  |    14 +
 .../github.com/vishvananda/netlink/neigh.go   |    23 +
 .../vishvananda/netlink/neigh_linux.go        |   275 +
 .../github.com/vishvananda/netlink/netlink.go |    39 +
 .../vishvananda/netlink/netlink_linux.go      |    11 +
 .../netlink/netlink_unspecified.go            |   225 +
 .../vishvananda/netlink/nl/addr_linux.go      |    76 +
 .../vishvananda/netlink/nl/bridge_linux.go    |    74 +
 .../vishvananda/netlink/nl/conntrack_linux.go |   189 +
 .../vishvananda/netlink/nl/genetlink_linux.go |    89 +
 .../vishvananda/netlink/nl/link_linux.go      |   556 +
 .../vishvananda/netlink/nl/mpls_linux.go      |    36 +
 .../vishvananda/netlink/nl/nl_linux.go        |   732 +
 .../vishvananda/netlink/nl/nl_unspecified.go  |    11 +
 .../vishvananda/netlink/nl/route_linux.go     |    80 +
 .../vishvananda/netlink/nl/syscall.go         |    68 +
 .../vishvananda/netlink/nl/tc_linux.go        |   675 +
 .../vishvananda/netlink/nl/xfrm_linux.go      |   296 +
 .../netlink/nl/xfrm_monitor_linux.go          |    32 +
 .../netlink/nl/xfrm_policy_linux.go           |   119 +
 .../netlink/nl/xfrm_state_linux.go            |   334 +
 .../github.com/vishvananda/netlink/order.go   |    32 +
 .../vishvananda/netlink/protinfo.go           |    58 +
 .../vishvananda/netlink/protinfo_linux.go     |    74 +
 .../github.com/vishvananda/netlink/qdisc.go   |   232 +
 .../vishvananda/netlink/qdisc_linux.go        |   529 +
 .../github.com/vishvananda/netlink/route.go   |   176 +
 .../vishvananda/netlink/route_linux.go        |   743 +
 .../vishvananda/netlink/route_unspecified.go  |    11 +
 vendor/github.com/vishvananda/netlink/rule.go |    41 +
 .../vishvananda/netlink/rule_linux.go         |   224 +
 .../github.com/vishvananda/netlink/socket.go  |    27 +
 .../vishvananda/netlink/socket_linux.go       |   159 +
 vendor/github.com/vishvananda/netlink/xfrm.go |    74 +
 .../vishvananda/netlink/xfrm_monitor_linux.go |    98 +
 .../vishvananda/netlink/xfrm_policy.go        |    74 +
 .../vishvananda/netlink/xfrm_policy_linux.go  |   257 +
 .../vishvananda/netlink/xfrm_state.go         |   108 +
 .../vishvananda/netlink/xfrm_state_linux.go   |   444 +
 vendor/github.com/vishvananda/netns/LICENSE   |   192 +
 vendor/github.com/vishvananda/netns/netns.go  |    80 +
 .../vishvananda/netns/netns_linux.go          |   226 +
 .../vishvananda/netns/netns_unspecified.go    |    43 +
 vendor/go.opencensus.io/internal/internal.go  |     2 +-
 .../internal/tagencoding/tagencoding.go       |     2 +-
 .../plugin/ochttp/propagation/b3/b3.go        |     2 +-
 .../go.opencensus.io/plugin/ochttp/server.go  |    24 +-
 .../go.opencensus.io/plugin/ochttp/stats.go   |     4 +-
 .../go.opencensus.io/plugin/ochttp/trace.go   |    96 +-
 .../stats/internal/validation.go              |     2 +-
 vendor/go.opencensus.io/stats/units.go        |     7 +-
 vendor/go.opencensus.io/stats/view/worker.go  |     2 +-
 .../stats/view/worker_commands.go             |     7 +-
 vendor/go.opencensus.io/trace/doc.go          |    14 +-
 .../trace/propagation/propagation.go          |     2 +-
 vendor/go.opencensus.io/trace/status_codes.go |    37 +
 vendor/go.opencensus.io/trace/trace.go        |    77 +-
 vendor/go.opencensus.io/trace/trace_go11.go   |    31 +
 .../go.opencensus.io/trace/trace_nongo11.go   |    25 +
 vendor/golang.org/x/crypto/ed25519/ed25519.go |   188 +
 .../ed25519/internal/edwards25519/const.go    |  1422 +
 .../internal/edwards25519/edwards25519.go     |  1793 +
 vendor/golang.org/x/net/bpf/asm.go            |    41 +
 vendor/golang.org/x/net/bpf/constants.go      |   218 +
 vendor/golang.org/x/net/bpf/doc.go            |    82 +
 vendor/golang.org/x/net/bpf/instructions.go   |   704 +
 vendor/golang.org/x/net/bpf/setter.go         |    10 +
 vendor/golang.org/x/net/bpf/vm.go             |   140 +
 .../golang.org/x/net/bpf/vm_instructions.go   |   174 +
 vendor/golang.org/x/net/http/httpguts/guts.go |    15 +
 .../golang.org/x/net/http/httpguts/httplex.go |   346 +
 vendor/golang.org/x/net/http2/frame.go        |     4 +-
 vendor/golang.org/x/net/http2/hpack/hpack.go  |     6 +
 vendor/golang.org/x/net/http2/http2.go        |     6 +-
 vendor/golang.org/x/net/http2/server.go       |    17 +
 vendor/golang.org/x/net/http2/transport.go    |    16 +-
 vendor/golang.org/x/net/http2/write.go        |     8 +-
 .../golang.org/x/net/internal/iana/const.go   |   227 +
 vendor/golang.org/x/net/internal/iana/gen.go  |   387 +
 .../x/net/internal/socket/cmsghdr.go          |    11 +
 .../x/net/internal/socket/cmsghdr_bsd.go      |    13 +
 .../internal/socket/cmsghdr_linux_32bit.go    |    14 +
 .../internal/socket/cmsghdr_linux_64bit.go    |    14 +
 .../internal/socket/cmsghdr_solaris_64bit.go  |    14 +
 .../x/net/internal/socket/cmsghdr_stub.go     |    17 +
 .../x/net/internal/socket/defs_darwin.go      |    44 +
 .../x/net/internal/socket/defs_dragonfly.go   |    44 +
 .../x/net/internal/socket/defs_freebsd.go     |    44 +
 .../x/net/internal/socket/defs_linux.go       |    49 +
 .../x/net/internal/socket/defs_netbsd.go      |    47 +
 .../x/net/internal/socket/defs_openbsd.go     |    44 +
 .../x/net/internal/socket/defs_solaris.go     |    44 +
 .../x/net/internal/socket/error_unix.go       |    31 +
 .../x/net/internal/socket/error_windows.go    |    26 +
 .../x/net/internal/socket/iovec_32bit.go      |    19 +
 .../x/net/internal/socket/iovec_64bit.go      |    19 +
 .../internal/socket/iovec_solaris_64bit.go    |    19 +
 .../x/net/internal/socket/iovec_stub.go       |    11 +
 .../x/net/internal/socket/mmsghdr_stub.go     |    21 +
 .../x/net/internal/socket/mmsghdr_unix.go     |    42 +
 .../x/net/internal/socket/msghdr_bsd.go       |    39 +
 .../x/net/internal/socket/msghdr_bsdvar.go    |    16 +
 .../x/net/internal/socket/msghdr_linux.go     |    36 +
 .../net/internal/socket/msghdr_linux_32bit.go |    24 +
 .../net/internal/socket/msghdr_linux_64bit.go |    24 +
 .../x/net/internal/socket/msghdr_openbsd.go   |    14 +
 .../internal/socket/msghdr_solaris_64bit.go   |    36 +
 .../x/net/internal/socket/msghdr_stub.go      |    14 +
 .../x/net/internal/socket/rawconn.go          |    66 +
 .../x/net/internal/socket/rawconn_mmsg.go     |    74 +
 .../x/net/internal/socket/rawconn_msg.go      |    77 +
 .../x/net/internal/socket/rawconn_nommsg.go   |    18 +
 .../x/net/internal/socket/rawconn_nomsg.go    |    18 +
 .../x/net/internal/socket/rawconn_stub.go     |    25 +
 .../x/net/internal/socket/reflect.go          |    62 +
 .../x/net/internal/socket/socket.go           |   285 +
 .../golang.org/x/net/internal/socket/sys.go   |    33 +
 .../x/net/internal/socket/sys_bsd.go          |    17 +
 .../x/net/internal/socket/sys_bsdvar.go       |    14 +
 .../x/net/internal/socket/sys_darwin.go       |     7 +
 .../x/net/internal/socket/sys_dragonfly.go    |     7 +
 .../x/net/internal/socket/sys_linux.go        |    27 +
 .../x/net/internal/socket/sys_linux_386.go    |    55 +
 .../x/net/internal/socket/sys_linux_386.s     |    11 +
 .../x/net/internal/socket/sys_linux_amd64.go  |    10 +
 .../x/net/internal/socket/sys_linux_arm.go    |    10 +
 .../x/net/internal/socket/sys_linux_arm64.go  |    10 +
 .../x/net/internal/socket/sys_linux_mips.go   |    10 +
 .../x/net/internal/socket/sys_linux_mips64.go |    10 +
 .../net/internal/socket/sys_linux_mips64le.go |    10 +
 .../x/net/internal/socket/sys_linux_mipsle.go |    10 +
 .../x/net/internal/socket/sys_linux_ppc64.go  |    10 +
 .../net/internal/socket/sys_linux_ppc64le.go  |    10 +
 .../x/net/internal/socket/sys_linux_s390x.go  |    55 +
 .../x/net/internal/socket/sys_linux_s390x.s   |    11 +
 .../x/net/internal/socket/sys_netbsd.go       |    25 +
 .../x/net/internal/socket/sys_posix.go        |   168 +
 .../x/net/internal/socket/sys_solaris.go      |    71 +
 .../x/net/internal/socket/sys_solaris_amd64.s |    11 +
 .../x/net/internal/socket/sys_stub.go         |    64 +
 .../x/net/internal/socket/sys_unix.go         |    33 +
 .../x/net/internal/socket/sys_windows.go      |    70 +
 .../x/net/internal/socket/zsys_darwin_386.go  |    59 +
 .../net/internal/socket/zsys_darwin_amd64.go  |    61 +
 .../x/net/internal/socket/zsys_darwin_arm.go  |    59 +
 .../net/internal/socket/zsys_darwin_arm64.go  |    61 +
 .../internal/socket/zsys_dragonfly_amd64.go   |    61 +
 .../x/net/internal/socket/zsys_freebsd_386.go |    59 +
 .../net/internal/socket/zsys_freebsd_amd64.go |    61 +
 .../x/net/internal/socket/zsys_freebsd_arm.go |    59 +
 .../x/net/internal/socket/zsys_linux_386.go   |    63 +
 .../x/net/internal/socket/zsys_linux_amd64.go |    66 +
 .../x/net/internal/socket/zsys_linux_arm.go   |    63 +
 .../x/net/internal/socket/zsys_linux_arm64.go |    66 +
 .../x/net/internal/socket/zsys_linux_mips.go  |    63 +
 .../net/internal/socket/zsys_linux_mips64.go  |    66 +
 .../internal/socket/zsys_linux_mips64le.go    |    66 +
 .../net/internal/socket/zsys_linux_mipsle.go  |    63 +
 .../x/net/internal/socket/zsys_linux_ppc64.go |    66 +
 .../net/internal/socket/zsys_linux_ppc64le.go |    66 +
 .../x/net/internal/socket/zsys_linux_s390x.go |    66 +
 .../x/net/internal/socket/zsys_netbsd_386.go  |    65 +
 .../net/internal/socket/zsys_netbsd_amd64.go  |    68 +
 .../x/net/internal/socket/zsys_netbsd_arm.go  |    65 +
 .../x/net/internal/socket/zsys_openbsd_386.go |    59 +
 .../net/internal/socket/zsys_openbsd_amd64.go |    61 +
 .../x/net/internal/socket/zsys_openbsd_arm.go |    59 +
 .../net/internal/socket/zsys_solaris_amd64.go |    60 +
 .../golang.org/x/net/internal/socks/client.go |   168 +
 .../golang.org/x/net/internal/socks/socks.go  |   265 +
 vendor/golang.org/x/net/ipv4/batch.go         |   191 +
 vendor/golang.org/x/net/ipv4/control.go       |   144 +
 vendor/golang.org/x/net/ipv4/control_bsd.go   |    40 +
 .../golang.org/x/net/ipv4/control_pktinfo.go  |    39 +
 vendor/golang.org/x/net/ipv4/control_stub.go  |    13 +
 vendor/golang.org/x/net/ipv4/control_unix.go  |    73 +
 .../golang.org/x/net/ipv4/control_windows.go  |    16 +
 vendor/golang.org/x/net/ipv4/defs_darwin.go   |    77 +
 .../golang.org/x/net/ipv4/defs_dragonfly.go   |    38 +
 vendor/golang.org/x/net/ipv4/defs_freebsd.go  |    75 +
 vendor/golang.org/x/net/ipv4/defs_linux.go    |   122 +
 vendor/golang.org/x/net/ipv4/defs_netbsd.go   |    37 +
 vendor/golang.org/x/net/ipv4/defs_openbsd.go  |    37 +
 vendor/golang.org/x/net/ipv4/defs_solaris.go  |    84 +
 vendor/golang.org/x/net/ipv4/dgramopt.go      |   265 +
 vendor/golang.org/x/net/ipv4/doc.go           |   244 +
 vendor/golang.org/x/net/ipv4/endpoint.go      |   187 +
 vendor/golang.org/x/net/ipv4/gen.go           |   199 +
 vendor/golang.org/x/net/ipv4/genericopt.go    |    57 +
 vendor/golang.org/x/net/ipv4/header.go        |   159 +
 vendor/golang.org/x/net/ipv4/helper.go        |    63 +
 vendor/golang.org/x/net/ipv4/iana.go          |    38 +
 vendor/golang.org/x/net/ipv4/icmp.go          |    57 +
 vendor/golang.org/x/net/ipv4/icmp_linux.go    |    25 +
 vendor/golang.org/x/net/ipv4/icmp_stub.go     |    25 +
 vendor/golang.org/x/net/ipv4/packet.go        |    69 +
 vendor/golang.org/x/net/ipv4/packet_go1_8.go  |    56 +
 vendor/golang.org/x/net/ipv4/packet_go1_9.go  |    67 +
 vendor/golang.org/x/net/ipv4/payload.go       |    23 +
 vendor/golang.org/x/net/ipv4/payload_cmsg.go  |    36 +
 .../x/net/ipv4/payload_cmsg_go1_8.go          |    59 +
 .../x/net/ipv4/payload_cmsg_go1_9.go          |    67 +
 .../golang.org/x/net/ipv4/payload_nocmsg.go   |    42 +
 vendor/golang.org/x/net/ipv4/sockopt.go       |    44 +
 vendor/golang.org/x/net/ipv4/sockopt_posix.go |    71 +
 vendor/golang.org/x/net/ipv4/sockopt_stub.go  |    42 +
 vendor/golang.org/x/net/ipv4/sys_asmreq.go    |   119 +
 .../golang.org/x/net/ipv4/sys_asmreq_stub.go  |    25 +
 vendor/golang.org/x/net/ipv4/sys_asmreqn.go   |    42 +
 .../golang.org/x/net/ipv4/sys_asmreqn_stub.go |    21 +
 vendor/golang.org/x/net/ipv4/sys_bpf.go       |    23 +
 vendor/golang.org/x/net/ipv4/sys_bpf_stub.go  |    16 +
 vendor/golang.org/x/net/ipv4/sys_bsd.go       |    37 +
 vendor/golang.org/x/net/ipv4/sys_darwin.go    |    93 +
 vendor/golang.org/x/net/ipv4/sys_dragonfly.go |    35 +
 vendor/golang.org/x/net/ipv4/sys_freebsd.go   |    76 +
 vendor/golang.org/x/net/ipv4/sys_linux.go     |    59 +
 vendor/golang.org/x/net/ipv4/sys_solaris.go   |    57 +
 vendor/golang.org/x/net/ipv4/sys_ssmreq.go    |    54 +
 .../golang.org/x/net/ipv4/sys_ssmreq_stub.go  |    21 +
 vendor/golang.org/x/net/ipv4/sys_stub.go      |    13 +
 vendor/golang.org/x/net/ipv4/sys_windows.go   |    67 +
 vendor/golang.org/x/net/ipv4/zsys_darwin.go   |    99 +
 .../golang.org/x/net/ipv4/zsys_dragonfly.go   |    31 +
 .../golang.org/x/net/ipv4/zsys_freebsd_386.go |    93 +
 .../x/net/ipv4/zsys_freebsd_amd64.go          |    95 +
 .../golang.org/x/net/ipv4/zsys_freebsd_arm.go |    95 +
 .../golang.org/x/net/ipv4/zsys_linux_386.go   |   148 +
 .../golang.org/x/net/ipv4/zsys_linux_amd64.go |   150 +
 .../golang.org/x/net/ipv4/zsys_linux_arm.go   |   148 +
 .../golang.org/x/net/ipv4/zsys_linux_arm64.go |   150 +
 .../golang.org/x/net/ipv4/zsys_linux_mips.go  |   148 +
 .../x/net/ipv4/zsys_linux_mips64.go           |   150 +
 .../x/net/ipv4/zsys_linux_mips64le.go         |   150 +
 .../x/net/ipv4/zsys_linux_mipsle.go           |   148 +
 .../golang.org/x/net/ipv4/zsys_linux_ppc.go   |   148 +
 .../golang.org/x/net/ipv4/zsys_linux_ppc64.go |   150 +
 .../x/net/ipv4/zsys_linux_ppc64le.go          |   150 +
 .../golang.org/x/net/ipv4/zsys_linux_s390x.go |   150 +
 vendor/golang.org/x/net/ipv4/zsys_netbsd.go   |    30 +
 vendor/golang.org/x/net/ipv4/zsys_openbsd.go  |    30 +
 vendor/golang.org/x/net/ipv4/zsys_solaris.go  |   100 +
 vendor/golang.org/x/net/ipv6/batch.go         |   119 +
 vendor/golang.org/x/net/ipv6/control.go       |   187 +
 .../x/net/ipv6/control_rfc2292_unix.go        |    48 +
 .../x/net/ipv6/control_rfc3542_unix.go        |    94 +
 vendor/golang.org/x/net/ipv6/control_stub.go  |    13 +
 vendor/golang.org/x/net/ipv6/control_unix.go  |    55 +
 .../golang.org/x/net/ipv6/control_windows.go  |    16 +
 vendor/golang.org/x/net/ipv6/defs_darwin.go   |   112 +
 .../golang.org/x/net/ipv6/defs_dragonfly.go   |    84 +
 vendor/golang.org/x/net/ipv6/defs_freebsd.go  |   105 +
 vendor/golang.org/x/net/ipv6/defs_linux.go    |   147 +
 vendor/golang.org/x/net/ipv6/defs_netbsd.go   |    80 +
 vendor/golang.org/x/net/ipv6/defs_openbsd.go  |    89 +
 vendor/golang.org/x/net/ipv6/defs_solaris.go  |   114 +
 vendor/golang.org/x/net/ipv6/dgramopt.go      |   302 +
 vendor/golang.org/x/net/ipv6/doc.go           |   243 +
 vendor/golang.org/x/net/ipv6/endpoint.go      |   128 +
 vendor/golang.org/x/net/ipv6/gen.go           |   199 +
 vendor/golang.org/x/net/ipv6/genericopt.go    |    58 +
 vendor/golang.org/x/net/ipv6/header.go        |    55 +
 vendor/golang.org/x/net/ipv6/helper.go        |    57 +
 vendor/golang.org/x/net/ipv6/iana.go          |    86 +
 vendor/golang.org/x/net/ipv6/icmp.go          |    60 +
 vendor/golang.org/x/net/ipv6/icmp_bsd.go      |    29 +
 vendor/golang.org/x/net/ipv6/icmp_linux.go    |    27 +
 vendor/golang.org/x/net/ipv6/icmp_solaris.go  |    27 +
 vendor/golang.org/x/net/ipv6/icmp_stub.go     |    23 +
 vendor/golang.org/x/net/ipv6/icmp_windows.go  |    22 +
 vendor/golang.org/x/net/ipv6/payload.go       |    23 +
 vendor/golang.org/x/net/ipv6/payload_cmsg.go  |    35 +
 .../x/net/ipv6/payload_cmsg_go1_8.go          |    55 +
 .../x/net/ipv6/payload_cmsg_go1_9.go          |    57 +
 .../golang.org/x/net/ipv6/payload_nocmsg.go   |    41 +
 vendor/golang.org/x/net/ipv6/sockopt.go       |    43 +
 vendor/golang.org/x/net/ipv6/sockopt_posix.go |    87 +
 vendor/golang.org/x/net/ipv6/sockopt_stub.go  |    46 +
 vendor/golang.org/x/net/ipv6/sys_asmreq.go    |    24 +
 .../golang.org/x/net/ipv6/sys_asmreq_stub.go  |    17 +
 vendor/golang.org/x/net/ipv6/sys_bpf.go       |    23 +
 vendor/golang.org/x/net/ipv6/sys_bpf_stub.go  |    16 +
 vendor/golang.org/x/net/ipv6/sys_bsd.go       |    57 +
 vendor/golang.org/x/net/ipv6/sys_darwin.go    |   106 +
 vendor/golang.org/x/net/ipv6/sys_freebsd.go   |    92 +
 vendor/golang.org/x/net/ipv6/sys_linux.go     |    74 +
 vendor/golang.org/x/net/ipv6/sys_solaris.go   |    74 +
 vendor/golang.org/x/net/ipv6/sys_ssmreq.go    |    54 +
 .../golang.org/x/net/ipv6/sys_ssmreq_stub.go  |    21 +
 vendor/golang.org/x/net/ipv6/sys_stub.go      |    13 +
 vendor/golang.org/x/net/ipv6/sys_windows.go   |    75 +
 vendor/golang.org/x/net/ipv6/zsys_darwin.go   |   131 +
 .../golang.org/x/net/ipv6/zsys_dragonfly.go   |    88 +
 .../golang.org/x/net/ipv6/zsys_freebsd_386.go |   122 +
 .../x/net/ipv6/zsys_freebsd_amd64.go          |   124 +
 .../golang.org/x/net/ipv6/zsys_freebsd_arm.go |   124 +
 .../golang.org/x/net/ipv6/zsys_linux_386.go   |   170 +
 .../golang.org/x/net/ipv6/zsys_linux_amd64.go |   172 +
 .../golang.org/x/net/ipv6/zsys_linux_arm.go   |   170 +
 .../golang.org/x/net/ipv6/zsys_linux_arm64.go |   172 +
 .../golang.org/x/net/ipv6/zsys_linux_mips.go  |   170 +
 .../x/net/ipv6/zsys_linux_mips64.go           |   172 +
 .../x/net/ipv6/zsys_linux_mips64le.go         |   172 +
 .../x/net/ipv6/zsys_linux_mipsle.go           |   170 +
 .../golang.org/x/net/ipv6/zsys_linux_ppc.go   |   170 +
 .../golang.org/x/net/ipv6/zsys_linux_ppc64.go |   172 +
 .../x/net/ipv6/zsys_linux_ppc64le.go          |   172 +
 .../golang.org/x/net/ipv6/zsys_linux_s390x.go |   172 +
 vendor/golang.org/x/net/ipv6/zsys_netbsd.go   |    84 +
 vendor/golang.org/x/net/ipv6/zsys_openbsd.go  |    93 +
 vendor/golang.org/x/net/ipv6/zsys_solaris.go  |   131 +
 vendor/golang.org/x/net/proxy/direct.go       |    18 +
 vendor/golang.org/x/net/proxy/per_host.go     |   140 +
 vendor/golang.org/x/net/proxy/proxy.go        |   134 +
 vendor/golang.org/x/net/proxy/socks5.go       |    36 +
 vendor/golang.org/x/sync/AUTHORS              |     3 +
 vendor/golang.org/x/sync/CONTRIBUTORS         |     3 +
 vendor/golang.org/x/sync/LICENSE              |    27 +
 vendor/golang.org/x/sync/PATENTS              |    22 +
 vendor/golang.org/x/sync/errgroup/errgroup.go |    67 +
 .../x/sync/singleflight/singleflight.go       |   111 +
 vendor/golang.org/x/sync/syncmap/map.go       |   372 +
 vendor/golang.org/x/sys/unix/cap_freebsd.go   |    30 +-
 .../golang.org/x/sys/unix/syscall_darwin.go   |     8 +-
 .../x/sys/unix/syscall_linux_amd64.go         |    17 +-
 .../x/sys/unix/syscall_linux_mipsx.go         |     2 +-
 vendor/golang.org/x/sys/unix/syscall_unix.go  |    23 +
 .../x/sys/unix/zerrors_darwin_386.go          |   286 +-
 .../x/sys/unix/zerrors_darwin_amd64.go        |   286 +-
 .../x/sys/unix/zerrors_darwin_arm.go          |   286 +-
 .../x/sys/unix/zerrors_darwin_arm64.go        |   286 +-
 .../x/sys/unix/zerrors_dragonfly_amd64.go     |   278 +-
 .../x/sys/unix/zerrors_freebsd_386.go         |   270 +-
 .../x/sys/unix/zerrors_freebsd_amd64.go       |   270 +-
 .../x/sys/unix/zerrors_freebsd_arm.go         |   270 +-
 .../x/sys/unix/zerrors_linux_386.go           |   336 +-
 .../x/sys/unix/zerrors_linux_amd64.go         |   336 +-
 .../x/sys/unix/zerrors_linux_arm.go           |   336 +-
 .../x/sys/unix/zerrors_linux_arm64.go         |   336 +-
 .../x/sys/unix/zerrors_linux_mips.go          |   342 +-
 .../x/sys/unix/zerrors_linux_mips64.go        |   342 +-
 .../x/sys/unix/zerrors_linux_mips64le.go      |   342 +-
 .../x/sys/unix/zerrors_linux_mipsle.go        |   342 +-
 .../x/sys/unix/zerrors_linux_ppc64.go         |   338 +-
 .../x/sys/unix/zerrors_linux_ppc64le.go       |   338 +-
 .../x/sys/unix/zerrors_linux_s390x.go         |   336 +-
 .../x/sys/unix/zerrors_netbsd_386.go          |   268 +-
 .../x/sys/unix/zerrors_netbsd_amd64.go        |   268 +-
 .../x/sys/unix/zerrors_netbsd_arm.go          |   268 +-
 .../x/sys/unix/zerrors_openbsd_386.go         |   258 +-
 .../x/sys/unix/zerrors_openbsd_amd64.go       |   258 +-
 .../x/sys/unix/zerrors_openbsd_arm.go         |   258 +-
 .../x/sys/unix/zerrors_solaris_amd64.go       |   336 +-
 .../x/sys/unix/zsyscall_linux_amd64.go        |    26 -
 .../x/sys/unix/zsyscall_linux_mips.go         |     6 +-
 .../x/sys/unix/zsyscall_linux_mipsle.go       |     6 +-
 .../golang.org/x/sys/windows/registry/key.go  |   198 +
 .../x/sys/windows/registry/mksyscall.go       |     7 +
 .../x/sys/windows/registry/syscall.go         |    32 +
 .../x/sys/windows/registry/value.go           |   384 +
 .../sys/windows/registry/zsyscall_windows.go  |   120 +
 vendor/golang.org/x/time/AUTHORS              |     3 +
 vendor/golang.org/x/time/CONTRIBUTORS         |     3 +
 vendor/golang.org/x/time/LICENSE              |    27 +
 vendor/golang.org/x/time/PATENTS              |    22 +
 vendor/golang.org/x/time/rate/rate.go         |   384 +
 vendor/golang.org/x/time/rate/rate_go16.go    |    21 +
 vendor/golang.org/x/time/rate/rate_go17.go    |    21 +
 .../api/storage/v1/storage-gen.go             |     8 +-
 vendor/google.golang.org/grpc/call.go         |    17 +-
 vendor/google.golang.org/grpc/clientconn.go   |    23 +-
 .../grpc/health/grpc_health_v1/health.pb.go   |   190 +
 .../google.golang.org/grpc/health/health.go   |    72 +
 .../grpc/resolver/resolver.go                 |    18 +-
 .../grpc/resolver_conn_wrapper.go             |    10 +-
 vendor/google.golang.org/grpc/rpc_util.go     |    58 +-
 vendor/google.golang.org/grpc/server.go       |    68 +-
 .../google.golang.org/grpc/status/status.go   |    14 +-
 vendor/google.golang.org/grpc/stream.go       |    11 +-
 .../grpc/transport/handler_server.go          |     3 +-
 .../grpc/transport/http2_server.go            |     4 +
 .../grpc/transport/transport.go               |    23 +-
 1727 files changed, 410842 insertions(+), 7971 deletions(-)
 create mode 100644 vendor/github.com/Azure/go-ansiterm/LICENSE
 create mode 100644 vendor/github.com/Azure/go-ansiterm/constants.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/context.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/csi_entry_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/csi_param_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/escape_intermediate_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/escape_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/event_handler.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/ground_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/osc_string_state.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/parser.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/parser_action_helpers.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/parser_actions.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/states.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/utilities.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/ansi.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/api.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/attr_translation.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/cursor_helpers.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/erase_helpers.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/scroll_helper.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/utilities.go
 create mode 100644 vendor/github.com/Azure/go-ansiterm/winterm/win_event_handler.go
 create mode 100644 vendor/github.com/BurntSushi/toml/COPYING
 create mode 100644 vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
 create mode 100644 vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
 create mode 100644 vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
 create mode 100644 vendor/github.com/BurntSushi/toml/decode.go
 create mode 100644 vendor/github.com/BurntSushi/toml/decode_meta.go
 create mode 100644 vendor/github.com/BurntSushi/toml/doc.go
 create mode 100644 vendor/github.com/BurntSushi/toml/encode.go
 create mode 100644 vendor/github.com/BurntSushi/toml/encoding_types.go
 create mode 100644 vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
 create mode 100644 vendor/github.com/BurntSushi/toml/lex.go
 create mode 100644 vendor/github.com/BurntSushi/toml/parse.go
 create mode 100644 vendor/github.com/BurntSushi/toml/type_check.go
 create mode 100644 vendor/github.com/BurntSushi/toml/type_fields.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/LICENSE
 create mode 100644 vendor/github.com/Microsoft/hcsshim/activatelayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/baselayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/callback.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/cgo.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/container.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/createlayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/destroylayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/errors.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/exportlayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/guid.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hcsshim.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hnspolicy.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/importlayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/interface.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/layerexists.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/layerutils.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/legacy.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/legacy18.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/legacy19.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/nametoguid.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/preparelayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/process.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/processimage.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/safeopen.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/utils.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/version.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/waithelper.go
 create mode 100644 vendor/github.com/Microsoft/hcsshim/zhcsshim.go
 create mode 100644 vendor/github.com/Nvveen/Gotty/LICENSE
 create mode 100644 vendor/github.com/Nvveen/Gotty/attributes.go
 create mode 100644 vendor/github.com/Nvveen/Gotty/gotty.go
 create mode 100644 vendor/github.com/Nvveen/Gotty/parser.go
 create mode 100644 vendor/github.com/Nvveen/Gotty/types.go
 create mode 100644 vendor/github.com/armon/go-metrics/LICENSE
 create mode 100644 vendor/github.com/armon/go-metrics/const_unix.go
 create mode 100644 vendor/github.com/armon/go-metrics/const_windows.go
 create mode 100644 vendor/github.com/armon/go-metrics/inmem.go
 create mode 100644 vendor/github.com/armon/go-metrics/inmem_endpoint.go
 create mode 100644 vendor/github.com/armon/go-metrics/inmem_signal.go
 create mode 100644 vendor/github.com/armon/go-metrics/metrics.go
 create mode 100644 vendor/github.com/armon/go-metrics/sink.go
 create mode 100644 vendor/github.com/armon/go-metrics/start.go
 create mode 100644 vendor/github.com/armon/go-metrics/statsd.go
 create mode 100644 vendor/github.com/armon/go-metrics/statsite.go
 create mode 100644 vendor/github.com/armon/go-radix/LICENSE
 create mode 100644 vendor/github.com/armon/go-radix/radix.go
 create mode 100644 vendor/github.com/beorn7/perks/LICENSE
 create mode 100644 vendor/github.com/beorn7/perks/quantile/stream.go
 create mode 100644 vendor/github.com/boltdb/bolt/LICENSE
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_386.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_amd64.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_arm.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_arm64.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_linux.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_openbsd.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_ppc.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_ppc64.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_ppc64le.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_s390x.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_unix.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_unix_solaris.go
 create mode 100644 vendor/github.com/boltdb/bolt/bolt_windows.go
 create mode 100644 vendor/github.com/boltdb/bolt/boltsync_unix.go
 create mode 100644 vendor/github.com/boltdb/bolt/bucket.go
 create mode 100644 vendor/github.com/boltdb/bolt/cursor.go
 create mode 100644 vendor/github.com/boltdb/bolt/db.go
 create mode 100644 vendor/github.com/boltdb/bolt/doc.go
 create mode 100644 vendor/github.com/boltdb/bolt/errors.go
 create mode 100644 vendor/github.com/boltdb/bolt/freelist.go
 create mode 100644 vendor/github.com/boltdb/bolt/node.go
 create mode 100644 vendor/github.com/boltdb/bolt/page.go
 create mode 100644 vendor/github.com/boltdb/bolt/tx.go
 create mode 100644 vendor/github.com/containerd/containerd/LICENSE
 create mode 100644 vendor/github.com/containerd/containerd/NOTICE
 create mode 100644 vendor/github.com/containerd/containerd/cio/io.go
 create mode 100644 vendor/github.com/containerd/containerd/cio/io_unix.go
 create mode 100644 vendor/github.com/containerd/containerd/cio/io_windows.go
 create mode 100644 vendor/github.com/containerd/containerd/defaults/defaults.go
 create mode 100644 vendor/github.com/containerd/containerd/defaults/defaults_unix.go
 create mode 100644 vendor/github.com/containerd/containerd/defaults/defaults_windows.go
 create mode 100644 vendor/github.com/containerd/containerd/defaults/doc.go
 create mode 100644 vendor/github.com/containerd/containerd/log/context.go
 create mode 100644 vendor/github.com/containerd/continuity/devices/devices.go
 create mode 100644 vendor/github.com/containerd/continuity/devices/devices_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/devices/devices_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/driver/driver.go
 create mode 100644 vendor/github.com/containerd/continuity/driver/driver_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/driver/driver_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/driver/utils.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/copy.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/copy_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/copy_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/copy_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/diff.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/diff_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/diff_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/dtype_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/du.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/du_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/du_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/hardlink.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/hardlink_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/hardlink_windows.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/path.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/stat_bsd.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/stat_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/fs/time.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/asm.s
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_darwin.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_darwin_386.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_darwin_amd64.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_freebsd.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_freebsd_amd64.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/chmod_solaris.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/nodata_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/nodata_solaris.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/nodata_unix.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/sys.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_darwin.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_darwin_386.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_darwin_amd64.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_freebsd.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_linux.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_openbsd.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_solaris.go
 create mode 100644 vendor/github.com/containerd/continuity/sysx/xattr_unsupported.go
 create mode 100644 vendor/github.com/containerd/fifo/LICENSE
 create mode 100644 vendor/github.com/containerd/fifo/fifo.go
 create mode 100644 vendor/github.com/containerd/fifo/handle_linux.go
 create mode 100644 vendor/github.com/containerd/fifo/handle_nolinux.go
 create mode 100644 vendor/github.com/containerd/fifo/mkfifo_nosolaris.go
 create mode 100644 vendor/github.com/containerd/fifo/mkfifo_solaris.go
 create mode 120000 vendor/github.com/coreos/etcd/Documentation/README.md
 create mode 100644 vendor/github.com/coreos/etcd/LICENSE
 create mode 100644 vendor/github.com/coreos/etcd/NOTICE
 create mode 100644 vendor/github.com/coreos/etcd/client/auth_role.go
 create mode 100644 vendor/github.com/coreos/etcd/client/auth_user.go
 create mode 100644 vendor/github.com/coreos/etcd/client/cancelreq.go
 create mode 100644 vendor/github.com/coreos/etcd/client/client.go
 create mode 100644 vendor/github.com/coreos/etcd/client/cluster_error.go
 create mode 100644 vendor/github.com/coreos/etcd/client/curl.go
 create mode 100644 vendor/github.com/coreos/etcd/client/discover.go
 create mode 100644 vendor/github.com/coreos/etcd/client/doc.go
 create mode 100644 vendor/github.com/coreos/etcd/client/keys.generated.go
 create mode 100644 vendor/github.com/coreos/etcd/client/keys.go
 create mode 100644 vendor/github.com/coreos/etcd/client/members.go
 create mode 100644 vendor/github.com/coreos/etcd/client/util.go
 create mode 120000 vendor/github.com/coreos/etcd/cmd/etcd
 create mode 120000 vendor/github.com/coreos/etcd/cmd/etcdctl
 create mode 120000 vendor/github.com/coreos/etcd/cmd/functional
 create mode 120000 vendor/github.com/coreos/etcd/cmd/tools
 create mode 100644 vendor/github.com/coreos/etcd/pkg/pathutil/path.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/srv/srv.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/doc.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/id.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/set.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/slice.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/urls.go
 create mode 100644 vendor/github.com/coreos/etcd/pkg/types/urlsmap.go
 create mode 100644 vendor/github.com/coreos/etcd/raft/raftpb/raft.pb.go
 create mode 100644 vendor/github.com/coreos/etcd/version/version.go
 create mode 100644 vendor/github.com/coreos/go-semver/LICENSE
 create mode 100644 vendor/github.com/coreos/go-semver/semver/semver.go
 create mode 100644 vendor/github.com/coreos/go-semver/semver/sort.go
 create mode 100644 vendor/github.com/deckarep/golang-set/LICENSE
 create mode 100644 vendor/github.com/deckarep/golang-set/iterator.go
 create mode 100644 vendor/github.com/deckarep/golang-set/set.go
 create mode 100644 vendor/github.com/deckarep/golang-set/threadsafe.go
 create mode 100644 vendor/github.com/deckarep/golang-set/threadunsafe.go
 create mode 100644 vendor/github.com/docker/distribution/AUTHORS
 create mode 100644 vendor/github.com/docker/distribution/LICENSE
 create mode 100644 vendor/github.com/docker/distribution/blobs.go
 create mode 100644 vendor/github.com/docker/distribution/digestset/set.go
 create mode 100644 vendor/github.com/docker/distribution/doc.go
 create mode 100644 vendor/github.com/docker/distribution/errors.go
 create mode 100644 vendor/github.com/docker/distribution/manifests.go
 create mode 100644 vendor/github.com/docker/distribution/reference/helpers.go
 create mode 100644 vendor/github.com/docker/distribution/reference/normalize.go
 create mode 100644 vendor/github.com/docker/distribution/reference/reference.go
 create mode 100644 vendor/github.com/docker/distribution/reference/regexp.go
 create mode 100644 vendor/github.com/docker/distribution/registry.go
 create mode 100644 vendor/github.com/docker/distribution/tags.go
 create mode 100644 vendor/github.com/docker/docker/api/common.go
 create mode 100644 vendor/github.com/docker/docker/api/common_unix.go
 create mode 100644 vendor/github.com/docker/docker/api/common_windows.go
 create mode 100644 vendor/github.com/docker/docker/api/types/auth.go
 create mode 100644 vendor/github.com/docker/docker/api/types/backend/backend.go
 create mode 100644 vendor/github.com/docker/docker/api/types/backend/build.go
 create mode 100644 vendor/github.com/docker/docker/api/types/client.go
 create mode 100644 vendor/github.com/docker/docker/api/types/configs.go
 create mode 100644 vendor/github.com/docker/docker/api/types/error_response.go
 create mode 100644 vendor/github.com/docker/docker/api/types/filters/parse.go
 create mode 100644 vendor/github.com/docker/docker/api/types/graph_driver_data.go
 create mode 100644 vendor/github.com/docker/docker/api/types/id_response.go
 create mode 100644 vendor/github.com/docker/docker/api/types/image_delete_response_item.go
 create mode 100644 vendor/github.com/docker/docker/api/types/image_summary.go
 create mode 100644 vendor/github.com/docker/docker/api/types/network/network.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin_device.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin_env.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin_interface_type.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin_mount.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugin_responses.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugins/logdriver/entry.pb.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugins/logdriver/gen.go
 create mode 100644 vendor/github.com/docker/docker/api/types/plugins/logdriver/io.go
 create mode 100644 vendor/github.com/docker/docker/api/types/port.go
 create mode 100644 vendor/github.com/docker/docker/api/types/registry/authenticate.go
 create mode 100644 vendor/github.com/docker/docker/api/types/registry/registry.go
 create mode 100644 vendor/github.com/docker/docker/api/types/seccomp.go
 create mode 100644 vendor/github.com/docker/docker/api/types/service_update_response.go
 create mode 100644 vendor/github.com/docker/docker/api/types/stats.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/common.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/config.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/container.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/network.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/node.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/secret.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/service.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/swarm.go
 create mode 100644 vendor/github.com/docker/docker/api/types/swarm/task.go
 create mode 100644 vendor/github.com/docker/docker/api/types/types.go
 create mode 100644 vendor/github.com/docker/docker/api/types/versions/compare.go
 create mode 100644 vendor/github.com/docker/docker/api/types/volume.go
 create mode 100644 vendor/github.com/docker/docker/builder/builder.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/buildargs.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/builder.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/builder_unix.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/builder_windows.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/clientsession.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/containerbackend.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/copy.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/copy_unix.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/copy_windows.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/dispatchers.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/dispatchers_unix.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/dispatchers_windows.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/evaluator.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/imagecontext.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/imageprobe.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/internals.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/internals_linux.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/internals_windows.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerfile/metrics.go
 create mode 100644 vendor/github.com/docker/docker/builder/dockerignore/dockerignore.go
 create mode 100644 vendor/github.com/docker/docker/builder/fscache/fscache.go
 create mode 100644 vendor/github.com/docker/docker/builder/fscache/naivedriver.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/archive.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/detect.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/filehash.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/generate.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/git.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/git/gitutils.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/lazycontext.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/mimetype.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/remote.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/tarsum.go
 create mode 100644 vendor/github.com/docker/docker/builder/remotecontext/tarsum.pb.go
 create mode 100644 vendor/github.com/docker/docker/container/archive.go
 create mode 100644 vendor/github.com/docker/docker/container/container.go
 create mode 100644 vendor/github.com/docker/docker/container/container_linux.go
 create mode 100644 vendor/github.com/docker/docker/container/container_notlinux.go
 create mode 100644 vendor/github.com/docker/docker/container/container_unix.go
 create mode 100644 vendor/github.com/docker/docker/container/container_windows.go
 create mode 100644 vendor/github.com/docker/docker/container/env.go
 create mode 100644 vendor/github.com/docker/docker/container/health.go
 create mode 100644 vendor/github.com/docker/docker/container/history.go
 create mode 100644 vendor/github.com/docker/docker/container/memory_store.go
 create mode 100644 vendor/github.com/docker/docker/container/monitor.go
 create mode 100644 vendor/github.com/docker/docker/container/mounts_unix.go
 create mode 100644 vendor/github.com/docker/docker/container/mounts_windows.go
 create mode 100644 vendor/github.com/docker/docker/container/state.go
 create mode 100644 vendor/github.com/docker/docker/container/store.go
 create mode 100644 vendor/github.com/docker/docker/container/stream/attach.go
 create mode 100644 vendor/github.com/docker/docker/container/stream/streams.go
 create mode 100644 vendor/github.com/docker/docker/container/view.go
 create mode 100644 vendor/github.com/docker/docker/daemon/cluster/provider/network.go
 create mode 100644 vendor/github.com/docker/docker/daemon/exec/exec.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/counter.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/driver.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/driver_freebsd.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/driver_linux.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/driver_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/driver_windows.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/errors.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/fsdiff.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/plugin.go
 create mode 100644 vendor/github.com/docker/docker/daemon/graphdriver/proxy.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/adapter.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/copier.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/factory.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonfilelog.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlog.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlogbytes.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/time_marshalling.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/jsonfilelog/read.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/logger.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/loggerutils/log_tag.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/loggerutils/logfile.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/loggerutils/multireader/multireader.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/loginfo.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/plugin.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/plugin_unix.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/plugin_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/proxy.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/ring.go
 create mode 100644 vendor/github.com/docker/docker/daemon/logger/templates/templates.go
 create mode 100644 vendor/github.com/docker/docker/daemon/network/settings.go
 create mode 100644 vendor/github.com/docker/docker/dockerversion/useragent.go
 create mode 100644 vendor/github.com/docker/docker/dockerversion/version_lib.go
 create mode 100644 vendor/github.com/docker/docker/errdefs/defs.go
 create mode 100644 vendor/github.com/docker/docker/errdefs/doc.go
 create mode 100644 vendor/github.com/docker/docker/errdefs/helpers.go
 create mode 100644 vendor/github.com/docker/docker/errdefs/is.go
 create mode 100644 vendor/github.com/docker/docker/image/fs.go
 create mode 100644 vendor/github.com/docker/docker/image/image.go
 create mode 100644 vendor/github.com/docker/docker/image/rootfs.go
 create mode 100644 vendor/github.com/docker/docker/image/store.go
 create mode 100644 vendor/github.com/docker/docker/layer/empty.go
 create mode 100644 vendor/github.com/docker/docker/layer/filestore.go
 create mode 100644 vendor/github.com/docker/docker/layer/filestore_unix.go
 create mode 100644 vendor/github.com/docker/docker/layer/filestore_windows.go
 create mode 100644 vendor/github.com/docker/docker/layer/layer.go
 create mode 100644 vendor/github.com/docker/docker/layer/layer_store.go
 create mode 100644 vendor/github.com/docker/docker/layer/layer_store_windows.go
 create mode 100644 vendor/github.com/docker/docker/layer/layer_unix.go
 create mode 100644 vendor/github.com/docker/docker/layer/layer_windows.go
 create mode 100644 vendor/github.com/docker/docker/layer/migration.go
 create mode 100644 vendor/github.com/docker/docker/layer/mounted_layer.go
 create mode 100644 vendor/github.com/docker/docker/layer/ro_layer.go
 create mode 100644 vendor/github.com/docker/docker/layer/ro_layer_windows.go
 create mode 100644 vendor/github.com/docker/docker/oci/defaults.go
 create mode 100644 vendor/github.com/docker/docker/oci/devices_linux.go
 create mode 100644 vendor/github.com/docker/docker/oci/devices_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/oci/namespaces.go
 create mode 100644 vendor/github.com/docker/docker/opts/address_pools.go
 create mode 100644 vendor/github.com/docker/docker/opts/env.go
 create mode 100644 vendor/github.com/docker/docker/opts/hosts.go
 create mode 100644 vendor/github.com/docker/docker/opts/hosts_unix.go
 create mode 100644 vendor/github.com/docker/docker/opts/hosts_windows.go
 create mode 100644 vendor/github.com/docker/docker/opts/ip.go
 create mode 100644 vendor/github.com/docker/docker/opts/opts.go
 create mode 100644 vendor/github.com/docker/docker/opts/opts_unix.go
 create mode 100644 vendor/github.com/docker/docker/opts/opts_windows.go
 create mode 100644 vendor/github.com/docker/docker/opts/quotedstring.go
 create mode 100644 vendor/github.com/docker/docker/opts/runtime.go
 create mode 100644 vendor/github.com/docker/docker/opts/ulimit.go
 create mode 100644 vendor/github.com/docker/docker/pkg/broadcaster/unbuffered.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/archive.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/archive_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/archive_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/chroot_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/chroot_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/diff.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/diff_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/diff_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/init_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/chrootarchive/init_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/containerfs/archiver.go
 create mode 100644 vendor/github.com/docker/docker/pkg/containerfs/containerfs.go
 create mode 100644 vendor/github.com/docker/docker/pkg/containerfs/containerfs_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/containerfs/containerfs_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/directory/directory.go
 create mode 100644 vendor/github.com/docker/docker/pkg/directory/directory_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/directory/directory_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/discovery/backends.go
 create mode 100644 vendor/github.com/docker/docker/pkg/discovery/discovery.go
 create mode 100644 vendor/github.com/docker/docker/pkg/discovery/entry.go
 create mode 100644 vendor/github.com/docker/docker/pkg/discovery/generator.go
 create mode 100644 vendor/github.com/docker/docker/pkg/discovery/kv/kv.go
 create mode 100644 vendor/github.com/docker/docker/pkg/filenotify/filenotify.go
 create mode 100644 vendor/github.com/docker/docker/pkg/filenotify/fsnotify.go
 create mode 100644 vendor/github.com/docker/docker/pkg/filenotify/poller.go
 create mode 100644 vendor/github.com/docker/docker/pkg/jsonmessage/jsonmessage.go
 create mode 100644 vendor/github.com/docker/docker/pkg/locker/locker.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/kernel.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_darwin.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/uname_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/uname_solaris.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/kernel/uname_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/pkg/parsers/parsers.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugingetter/getter.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/client.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/discovery.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/discovery_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/discovery_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/errors.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/plugins.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/plugins_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/plugins_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/transport/http.go
 create mode 100644 vendor/github.com/docker/docker/pkg/plugins/transport/transport.go
 create mode 100644 vendor/github.com/docker/docker/pkg/progress/progress.go
 create mode 100644 vendor/github.com/docker/docker/pkg/progress/progressreader.go
 create mode 100644 vendor/github.com/docker/docker/pkg/pubsub/publisher.go
 create mode 100644 vendor/github.com/docker/docker/pkg/reexec/command_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/reexec/command_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/reexec/command_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/pkg/reexec/command_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/reexec/reexec.go
 create mode 100644 vendor/github.com/docker/docker/pkg/streamformatter/streamformatter.go
 create mode 100644 vendor/github.com/docker/docker/pkg/streamformatter/streamwriter.go
 create mode 100644 vendor/github.com/docker/docker/pkg/stringid/stringid.go
 create mode 100644 vendor/github.com/docker/docker/pkg/symlink/fs.go
 create mode 100644 vendor/github.com/docker/docker/pkg/symlink/fs_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/symlink/fs_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/numcpu.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/numcpu_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/numcpu_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/sysinfo.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_unix.go
 create mode 100644 vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tailfile/tailfile.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tarsum/builder_context.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tarsum/fileinfosums.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tarsum/tarsum.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tarsum/versioning.go
 create mode 100644 vendor/github.com/docker/docker/pkg/tarsum/writercloser.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/ascii.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/proxy.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/tc.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/term.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/term_windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/termios_bsd.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/termios_linux.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/windows/ansi_reader.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/windows/ansi_writer.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/windows/console.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/windows/windows.go
 create mode 100644 vendor/github.com/docker/docker/pkg/term/winsize.go
 create mode 100644 vendor/github.com/docker/docker/pkg/urlutil/urlutil.go
 create mode 100644 vendor/github.com/docker/docker/pkg/useragent/useragent.go
 create mode 100644 vendor/github.com/docker/docker/plugin/v2/plugin.go
 create mode 100644 vendor/github.com/docker/docker/plugin/v2/plugin_linux.go
 create mode 100644 vendor/github.com/docker/docker/plugin/v2/plugin_unsupported.go
 create mode 100644 vendor/github.com/docker/docker/plugin/v2/settable.go
 create mode 100644 vendor/github.com/docker/docker/restartmanager/restartmanager.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/config.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/config_unix.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/config_windows.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/errors.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/hostconfig.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/hostconfig_unix.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/hostconfig_windows.go
 create mode 100644 vendor/github.com/docker/docker/runconfig/opts/parse.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/lcow_parser.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/linux_parser.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/mounts.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/parser.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/validate.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/volume_copy.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/volume_unix.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/volume_windows.go
 create mode 100644 vendor/github.com/docker/docker/volume/mounts/windows_parser.go
 create mode 100644 vendor/github.com/docker/docker/volume/volume.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/inmem_socket.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/proxy.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/sockets.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/sockets_unix.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/sockets_windows.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/tcp_socket.go
 create mode 100644 vendor/github.com/docker/go-connections/sockets/unix_socket.go
 create mode 100644 vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
 create mode 100644 vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
 create mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config.go
 create mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
 create mode 100644 vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
 create mode 100644 vendor/github.com/docker/go-events/LICENSE
 create mode 100644 vendor/github.com/docker/go-events/broadcast.go
 create mode 100644 vendor/github.com/docker/go-events/channel.go
 create mode 100644 vendor/github.com/docker/go-events/errors.go
 create mode 100644 vendor/github.com/docker/go-events/event.go
 create mode 100644 vendor/github.com/docker/go-events/filter.go
 create mode 100644 vendor/github.com/docker/go-events/queue.go
 create mode 100644 vendor/github.com/docker/go-events/retry.go
 create mode 100644 vendor/github.com/docker/go-metrics/LICENSE.code
 create mode 100644 vendor/github.com/docker/go-metrics/LICENSE.docs
 create mode 100644 vendor/github.com/docker/go-metrics/NOTICE
 create mode 100644 vendor/github.com/docker/go-metrics/counter.go
 create mode 100644 vendor/github.com/docker/go-metrics/docs.go
 create mode 100644 vendor/github.com/docker/go-metrics/gauge.go
 create mode 100644 vendor/github.com/docker/go-metrics/handler.go
 create mode 100644 vendor/github.com/docker/go-metrics/helpers.go
 create mode 100644 vendor/github.com/docker/go-metrics/namespace.go
 create mode 100644 vendor/github.com/docker/go-metrics/register.go
 create mode 100644 vendor/github.com/docker/go-metrics/timer.go
 create mode 100644 vendor/github.com/docker/go-metrics/unit.go
 create mode 100644 vendor/github.com/docker/libkv/LICENSE.code
 create mode 100644 vendor/github.com/docker/libkv/LICENSE.docs
 create mode 100644 vendor/github.com/docker/libkv/libkv.go
 create mode 100644 vendor/github.com/docker/libkv/store/boltdb/boltdb.go
 create mode 100644 vendor/github.com/docker/libkv/store/consul/consul.go
 create mode 100644 vendor/github.com/docker/libkv/store/etcd/etcd.go
 create mode 100644 vendor/github.com/docker/libkv/store/helpers.go
 create mode 100644 vendor/github.com/docker/libkv/store/store.go
 create mode 100644 vendor/github.com/docker/libkv/store/zookeeper/zookeeper.go
 create mode 100644 vendor/github.com/docker/libnetwork/LICENSE
 create mode 100644 vendor/github.com/docker/libnetwork/agent.go
 create mode 100644 vendor/github.com/docker/libnetwork/agent.pb.go
 create mode 100644 vendor/github.com/docker/libnetwork/bitseq/sequence.go
 create mode 100644 vendor/github.com/docker/libnetwork/bitseq/store.go
 create mode 100644 vendor/github.com/docker/libnetwork/client/mflag/LICENSE
 create mode 100644 vendor/github.com/docker/libnetwork/cluster/provider.go
 create mode 100644 vendor/github.com/docker/libnetwork/common/caller.go
 create mode 100644 vendor/github.com/docker/libnetwork/common/setmatrix.go
 create mode 100644 vendor/github.com/docker/libnetwork/config/config.go
 create mode 100644 vendor/github.com/docker/libnetwork/controller.go
 create mode 100644 vendor/github.com/docker/libnetwork/datastore/cache.go
 create mode 100644 vendor/github.com/docker/libnetwork/datastore/datastore.go
 create mode 100644 vendor/github.com/docker/libnetwork/datastore/mock_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/default_gateway.go
 create mode 100644 vendor/github.com/docker/libnetwork/default_gateway_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/default_gateway_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/default_gateway_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/diagnostic/server.go
 create mode 100644 vendor/github.com/docker/libnetwork/diagnostic/types.go
 create mode 100644 vendor/github.com/docker/libnetwork/discoverapi/discoverapi.go
 create mode 100644 vendor/github.com/docker/libnetwork/driverapi/driverapi.go
 create mode 100644 vendor/github.com/docker/libnetwork/driverapi/errors.go
 create mode 100644 vendor/github.com/docker/libnetwork/driverapi/ipamdata.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/bridge.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/bridge_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/errors.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/interface.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/labels.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/link.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_armppc64.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_notarm.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_unsupported.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/port_mapping.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_bridgenetfiltering.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_device.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_firewalld.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_forwarding.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_tables.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv4.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv6.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/bridge/setup_verify.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/host/host.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_endpoint.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_joinleave.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_network.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_setup.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_state.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_endpoint.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_joinleave.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_network.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_setup.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_state.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/null/null.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/encryption.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/filter.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/joinleave.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_unsupported.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ov_endpoint.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ov_network.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ov_serf.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/ov_utils.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/overlay.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/overlay.pb.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/overlay/peerdb.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/remote/api/api.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/remote/driver.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/labels.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/joinleave_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_endpoint_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_network_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay.pb.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/overlay/peerdb_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers/windows/windows_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers_experimental_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers_ipam.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/drivers_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/drvregistry/drvregistry.go
 create mode 100644 vendor/github.com/docker/libnetwork/endpoint.go
 create mode 100644 vendor/github.com/docker/libnetwork/endpoint_cnt.go
 create mode 100644 vendor/github.com/docker/libnetwork/endpoint_info.go
 create mode 100644 vendor/github.com/docker/libnetwork/endpoint_info_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/endpoint_info_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/error.go
 create mode 100644 vendor/github.com/docker/libnetwork/etchosts/etchosts.go
 create mode 100644 vendor/github.com/docker/libnetwork/firewall_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/firewall_others.go
 create mode 100644 vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery.go
 create mode 100644 vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery_api.go
 create mode 100644 vendor/github.com/docker/libnetwork/idm/idm.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipam/allocator.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipam/store.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipam/structures.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipam/utils.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipamapi/contract.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipamapi/labels.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/builtin/builtin_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/builtin/builtin_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/null/null.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/remote/api/api.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/remote/remote.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipams/windowsipam/windowsipam.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipamutils/utils.go
 create mode 100644 vendor/github.com/docker/libnetwork/iptables/conntrack.go
 create mode 100644 vendor/github.com/docker/libnetwork/iptables/firewalld.go
 create mode 100644 vendor/github.com/docker/libnetwork/iptables/iptables.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipvs/constants.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipvs/ipvs.go
 create mode 100644 vendor/github.com/docker/libnetwork/ipvs/netlink.go
 create mode 100644 vendor/github.com/docker/libnetwork/netlabel/labels.go
 create mode 100644 vendor/github.com/docker/libnetwork/netutils/utils.go
 create mode 100644 vendor/github.com/docker/libnetwork/netutils/utils_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/netutils/utils_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/netutils/utils_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/network.go
 create mode 100644 vendor/github.com/docker/libnetwork/network_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/network_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/broadcast.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/cluster.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/delegate.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/event_delegate.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/message.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/networkdb.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/networkdb.pb.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/networkdbdiagnostic.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/nodemgmt.go
 create mode 100644 vendor/github.com/docker/libnetwork/networkdb/watch.go
 create mode 100644 vendor/github.com/docker/libnetwork/ns/init_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/options/options.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/interface_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/interface_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/interface_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/namespace_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/namespace_unsupported.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/namespace_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/neigh_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/neigh_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/neigh_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/options_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/route_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/sandbox.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/sandbox_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/osl/sandbox_unsupported.go
 create mode 100644 vendor/github.com/docker/libnetwork/portallocator/portallocator.go
 create mode 100644 vendor/github.com/docker/libnetwork/portallocator/portallocator_freebsd.go
 create mode 100644 vendor/github.com/docker/libnetwork/portallocator/portallocator_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/portmapper/mapper.go
 create mode 100644 vendor/github.com/docker/libnetwork/portmapper/mock_proxy.go
 create mode 100644 vendor/github.com/docker/libnetwork/portmapper/proxy.go
 create mode 100644 vendor/github.com/docker/libnetwork/portmapper/proxy_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/resolvconf/dns/resolvconf.go
 create mode 100644 vendor/github.com/docker/libnetwork/resolvconf/resolvconf.go
 create mode 100644 vendor/github.com/docker/libnetwork/resolver.go
 create mode 100644 vendor/github.com/docker/libnetwork/resolver_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/resolver_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_dns_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_dns_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_externalkey.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_externalkey_unix.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_externalkey_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/sandbox_store.go
 create mode 100644 vendor/github.com/docker/libnetwork/service.go
 create mode 100644 vendor/github.com/docker/libnetwork/service_common.go
 create mode 100644 vendor/github.com/docker/libnetwork/service_linux.go
 create mode 100644 vendor/github.com/docker/libnetwork/service_unsupported.go
 create mode 100644 vendor/github.com/docker/libnetwork/service_windows.go
 create mode 100644 vendor/github.com/docker/libnetwork/store.go
 create mode 100644 vendor/github.com/docker/libnetwork/types/types.go
 create mode 100644 vendor/github.com/docker/swarmkit/LICENSE
 create mode 100644 vendor/github.com/docker/swarmkit/agent/exec/controller.go
 create mode 100644 vendor/github.com/docker/swarmkit/agent/exec/controller_stub.go
 create mode 100644 vendor/github.com/docker/swarmkit/agent/exec/errors.go
 create mode 100644 vendor/github.com/docker/swarmkit/agent/exec/executor.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/ca.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/control.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/deepcopy/copy.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/dispatcher.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/equality/equality.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/health.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/logbroker.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/objects.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/raft.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/resource.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/snapshot.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/specs.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/storeobject.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/types.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/api/watch.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/log/context.go
 create mode 100644 vendor/github.com/docker/swarmkit/log/grpc.go
 create mode 100644 vendor/github.com/docker/swarmkit/manager/raftselector/raftselector.go
 create mode 100644 vendor/github.com/docker/swarmkit/protobuf/plugin/helpers.go
 create mode 100644 vendor/github.com/docker/swarmkit/protobuf/plugin/plugin.pb.go
 create mode 100644 vendor/github.com/docker/swarmkit/protobuf/ptypes/doc.go
 create mode 100644 vendor/github.com/docker/swarmkit/protobuf/ptypes/timestamp.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/AUTHORS
 create mode 100644 vendor/github.com/fsnotify/fsnotify/LICENSE
 create mode 100644 vendor/github.com/fsnotify/fsnotify/fen.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/fsnotify.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/inotify.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/inotify_poller.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/kqueue.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/open_mode_bsd.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/open_mode_darwin.go
 create mode 100644 vendor/github.com/fsnotify/fsnotify/windows.go
 create mode 100644 vendor/github.com/godbus/dbus/LICENSE
 create mode 100644 vendor/github.com/godbus/dbus/auth.go
 create mode 100644 vendor/github.com/godbus/dbus/auth_external.go
 create mode 100644 vendor/github.com/godbus/dbus/auth_sha1.go
 create mode 100644 vendor/github.com/godbus/dbus/call.go
 create mode 100644 vendor/github.com/godbus/dbus/conn.go
 create mode 100644 vendor/github.com/godbus/dbus/conn_darwin.go
 create mode 100644 vendor/github.com/godbus/dbus/conn_other.go
 create mode 100644 vendor/github.com/godbus/dbus/dbus.go
 create mode 100644 vendor/github.com/godbus/dbus/decoder.go
 create mode 100644 vendor/github.com/godbus/dbus/default_handler.go
 create mode 100644 vendor/github.com/godbus/dbus/doc.go
 create mode 100644 vendor/github.com/godbus/dbus/encoder.go
 create mode 100644 vendor/github.com/godbus/dbus/export.go
 create mode 100644 vendor/github.com/godbus/dbus/homedir.go
 create mode 100644 vendor/github.com/godbus/dbus/homedir_dynamic.go
 create mode 100644 vendor/github.com/godbus/dbus/homedir_static.go
 create mode 100644 vendor/github.com/godbus/dbus/message.go
 create mode 100644 vendor/github.com/godbus/dbus/object.go
 create mode 100644 vendor/github.com/godbus/dbus/server_interfaces.go
 create mode 100644 vendor/github.com/godbus/dbus/sig.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_darwin.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_generic.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_tcp.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_unix.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_unixcred_dragonfly.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_unixcred_freebsd.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_unixcred_linux.go
 create mode 100644 vendor/github.com/godbus/dbus/transport_unixcred_openbsd.go
 create mode 100644 vendor/github.com/godbus/dbus/variant.go
 create mode 100644 vendor/github.com/godbus/dbus/variant_lexer.go
 create mode 100644 vendor/github.com/godbus/dbus/variant_parser.go
 create mode 100644 vendor/github.com/gogo/protobuf/AUTHORS
 create mode 100644 vendor/github.com/gogo/protobuf/CONTRIBUTORS
 create mode 100644 vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
 create mode 100644 vendor/github.com/gogo/protobuf/LICENSE
 create mode 100644 vendor/github.com/gogo/protobuf/gogoproto/doc.go
 create mode 100644 vendor/github.com/gogo/protobuf/gogoproto/gogo.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/gogoproto/helper.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/clone.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/decode.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/decode_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/discard.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/duration.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/duration_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/encode.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/encode_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/equal.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/extensions.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/lib.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/lib_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/message_set.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/properties.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/properties_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/skip_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/text.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/text_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/text_parser.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/timestamp.go
 create mode 100644 vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.go
 create mode 100644 vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor_gostring.gen.go
 create mode 100644 vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/helper.go
 create mode 100644 vendor/github.com/gogo/protobuf/sortkeys/sortkeys.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/any.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/any.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/doc.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/duration.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/duration.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/duration_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/empty.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/field_mask.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/struct.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/timestamp.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/timestamp.pb.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/timestamp_gogo.go
 create mode 100644 vendor/github.com/gogo/protobuf/types/wrappers.pb.go
 create mode 100644 vendor/github.com/golang/protobuf/proto/table_marshal.go
 create mode 100644 vendor/github.com/golang/protobuf/proto/table_merge.go
 create mode 100644 vendor/github.com/golang/protobuf/proto/table_unmarshal.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/mutate/doc.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/mutate/rebase.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/LICENSE
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/PATENTS
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/client.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/errors.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/options.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/package.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/server.go
 create mode 100644 vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/shared.go
 create mode 100644 vendor/github.com/hashicorp/consul/LICENSE
 create mode 100644 vendor/github.com/hashicorp/consul/api/acl.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/agent.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/api.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/catalog.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/coordinate.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/event.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/health.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/kv.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/lock.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator_area.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator_autopilot.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator_keyring.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator_raft.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/operator_segment.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/prepared_query.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/raw.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/semaphore.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/session.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/snapshot.go
 create mode 100644 vendor/github.com/hashicorp/consul/api/status.go
 create mode 100644 vendor/github.com/hashicorp/consul/website/LICENSE.md
 create mode 100644 vendor/github.com/hashicorp/errwrap/LICENSE
 create mode 100644 vendor/github.com/hashicorp/errwrap/errwrap.go
 create mode 100644 vendor/github.com/hashicorp/go-cleanhttp/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-cleanhttp/cleanhttp.go
 create mode 100644 vendor/github.com/hashicorp/go-cleanhttp/doc.go
 create mode 100644 vendor/github.com/hashicorp/go-cleanhttp/handlers.go
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/edges.go
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/iradix.go
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/iter.go
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/node.go
 create mode 100644 vendor/github.com/hashicorp/go-immutable-radix/raw_iter.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-memdb/filter.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/index.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/memdb.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/schema.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/txn.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/watch.go
 create mode 100644 vendor/github.com/hashicorp/go-memdb/watch_few.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/0doc.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/binc.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/decode.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/encode.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/helper.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/helper_internal.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/msgpack.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/rpc.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/simple.go
 create mode 100644 vendor/github.com/hashicorp/go-msgpack/codec/time.go
 create mode 100644 vendor/github.com/hashicorp/go-multierror/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-multierror/append.go
 create mode 100644 vendor/github.com/hashicorp/go-multierror/flatten.go
 create mode 100644 vendor/github.com/hashicorp/go-multierror/format.go
 create mode 100644 vendor/github.com/hashicorp/go-multierror/multierror.go
 create mode 100644 vendor/github.com/hashicorp/go-multierror/prefix.go
 create mode 100644 vendor/github.com/hashicorp/go-rootcerts/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-rootcerts/doc.go
 create mode 100644 vendor/github.com/hashicorp/go-rootcerts/rootcerts.go
 create mode 100644 vendor/github.com/hashicorp/go-rootcerts/rootcerts_base.go
 create mode 100644 vendor/github.com/hashicorp/go-rootcerts/rootcerts_darwin.go
 create mode 120000 vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/securetrust.pem
 create mode 120000 vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/thawte.pem
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/LICENSE
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/doc.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ifaddr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ifaddrs.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ifattr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ipaddr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ipaddrs.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ipv4addr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/ipv6addr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/rfc.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info_bsd.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info_default.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info_linux.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info_solaris.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/route_info_windows.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/sockaddr.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/sockaddrs.go
 create mode 100644 vendor/github.com/hashicorp/go-sockaddr/unixsock.go
 create mode 100644 vendor/github.com/hashicorp/golang-lru/LICENSE
 create mode 100644 vendor/github.com/hashicorp/golang-lru/simplelru/lru.go
 create mode 100644 vendor/github.com/hashicorp/golang-lru/simplelru/lru_interface.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/LICENSE
 create mode 100644 vendor/github.com/hashicorp/memberlist/alive_delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/awareness.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/broadcast.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/config.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/conflict_delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/event_delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/keyring.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/logging.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/memberlist.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/merge_delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/mock_transport.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/net.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/net_transport.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/ping_delegate.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/queue.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/security.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/state.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/suspicion.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/transport.go
 create mode 100644 vendor/github.com/hashicorp/memberlist/util.go
 create mode 100644 vendor/github.com/hashicorp/serf/LICENSE
 create mode 100644 vendor/github.com/hashicorp/serf/coordinate/client.go
 create mode 100644 vendor/github.com/hashicorp/serf/coordinate/config.go
 create mode 100644 vendor/github.com/hashicorp/serf/coordinate/coordinate.go
 create mode 100644 vendor/github.com/hashicorp/serf/coordinate/phantom.go
 create mode 100644 vendor/github.com/hashicorp/serf/ops-misc/debian/copyright
 create mode 100644 vendor/github.com/hashicorp/serf/serf/broadcast.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/coalesce.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/coalesce_member.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/coalesce_user.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/config.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/conflict_delegate.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/delegate.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/event.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/event_delegate.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/internal_query.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/keymanager.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/lamport.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/merge_delegate.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/messages.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/ping_delegate.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/query.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/serf.go
 create mode 100644 vendor/github.com/hashicorp/serf/serf/snapshot.go
 create mode 100644 vendor/github.com/hashicorp/serf/website/source/LICENSE
 create mode 100644 vendor/github.com/ishidawataru/sctp/LICENSE
 create mode 100644 vendor/github.com/ishidawataru/sctp/sctp.go
 create mode 100644 vendor/github.com/ishidawataru/sctp/sctp_linux.go
 create mode 100644 vendor/github.com/ishidawataru/sctp/sctp_unsupported.go
 create mode 100644 vendor/github.com/mattn/go-shellwords/LICENSE
 create mode 100644 vendor/github.com/mattn/go-shellwords/shellwords.go
 create mode 100644 vendor/github.com/mattn/go-shellwords/util_posix.go
 create mode 100644 vendor/github.com/mattn/go-shellwords/util_windows.go
 create mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
 create mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
 create mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
 create mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go
 create mode 100644 vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
 create mode 100644 vendor/github.com/miekg/dns/AUTHORS
 create mode 100644 vendor/github.com/miekg/dns/CONTRIBUTORS
 create mode 100644 vendor/github.com/miekg/dns/COPYRIGHT
 create mode 100644 vendor/github.com/miekg/dns/LICENSE
 create mode 100644 vendor/github.com/miekg/dns/client.go
 create mode 100644 vendor/github.com/miekg/dns/clientconfig.go
 create mode 100644 vendor/github.com/miekg/dns/compress_generate.go
 create mode 100644 vendor/github.com/miekg/dns/dane.go
 create mode 100644 vendor/github.com/miekg/dns/defaults.go
 create mode 100644 vendor/github.com/miekg/dns/dns.go
 create mode 100644 vendor/github.com/miekg/dns/dnssec.go
 create mode 100644 vendor/github.com/miekg/dns/dnssec_keygen.go
 create mode 100644 vendor/github.com/miekg/dns/dnssec_keyscan.go
 create mode 100644 vendor/github.com/miekg/dns/dnssec_privkey.go
 create mode 100644 vendor/github.com/miekg/dns/doc.go
 create mode 100644 vendor/github.com/miekg/dns/edns.go
 create mode 100644 vendor/github.com/miekg/dns/format.go
 create mode 100644 vendor/github.com/miekg/dns/fuzz.go
 create mode 100644 vendor/github.com/miekg/dns/generate.go
 create mode 100644 vendor/github.com/miekg/dns/labels.go
 create mode 100644 vendor/github.com/miekg/dns/msg.go
 create mode 100644 vendor/github.com/miekg/dns/msg_generate.go
 create mode 100644 vendor/github.com/miekg/dns/msg_helpers.go
 create mode 100644 vendor/github.com/miekg/dns/nsecx.go
 create mode 100644 vendor/github.com/miekg/dns/privaterr.go
 create mode 100644 vendor/github.com/miekg/dns/rawmsg.go
 create mode 100644 vendor/github.com/miekg/dns/reverse.go
 create mode 100644 vendor/github.com/miekg/dns/sanitize.go
 create mode 100644 vendor/github.com/miekg/dns/scan.go
 create mode 100644 vendor/github.com/miekg/dns/scan_rr.go
 create mode 100644 vendor/github.com/miekg/dns/scanner.go
 create mode 100644 vendor/github.com/miekg/dns/server.go
 create mode 100644 vendor/github.com/miekg/dns/sig0.go
 create mode 100644 vendor/github.com/miekg/dns/singleinflight.go
 create mode 100644 vendor/github.com/miekg/dns/smimea.go
 create mode 100644 vendor/github.com/miekg/dns/tlsa.go
 create mode 100644 vendor/github.com/miekg/dns/tsig.go
 create mode 100644 vendor/github.com/miekg/dns/types.go
 create mode 100644 vendor/github.com/miekg/dns/types_generate.go
 create mode 100644 vendor/github.com/miekg/dns/udp.go
 create mode 100644 vendor/github.com/miekg/dns/udp_windows.go
 create mode 100644 vendor/github.com/miekg/dns/update.go
 create mode 100644 vendor/github.com/miekg/dns/version.go
 create mode 100644 vendor/github.com/miekg/dns/xfr.go
 create mode 100644 vendor/github.com/miekg/dns/zcompress.go
 create mode 100644 vendor/github.com/miekg/dns/zmsg.go
 create mode 100644 vendor/github.com/miekg/dns/ztypes.go
 create mode 100644 vendor/github.com/mitchellh/go-homedir/LICENSE
 create mode 100644 vendor/github.com/mitchellh/go-homedir/homedir.go
 create mode 100644 vendor/github.com/moby/buildkit/LICENSE
 create mode 100644 vendor/github.com/moby/buildkit/identity/randomid.go
 create mode 100644 vendor/github.com/moby/buildkit/session/context.go
 create mode 100644 vendor/github.com/moby/buildkit/session/filesync/diffcopy.go
 create mode 100644 vendor/github.com/moby/buildkit/session/filesync/filesync.go
 create mode 100644 vendor/github.com/moby/buildkit/session/filesync/filesync.pb.go
 create mode 100644 vendor/github.com/moby/buildkit/session/filesync/generate.go
 create mode 100644 vendor/github.com/moby/buildkit/session/grpc.go
 create mode 100644 vendor/github.com/moby/buildkit/session/manager.go
 create mode 100644 vendor/github.com/moby/buildkit/session/session.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups_unsupported.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/cgroups/stats.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/cgroups/utils.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/blkio_device.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_linux.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_windows.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/config.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/config_linux.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/device.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/device_defaults.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/hugepage_limit.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/intelrdt.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/interface_priority_map.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/mount.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_linux.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall_unsupported.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_unsupported.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/configs/network.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/devices/devices.go
 create mode 100644 vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_32.go
 create mode 100644 vendor/github.com/opencontainers/runtime-spec/LICENSE
 create mode 100644 vendor/github.com/opencontainers/runtime-spec/specs-go/config.go
 create mode 100644 vendor/github.com/opencontainers/runtime-spec/specs-go/state.go
 create mode 100644 vendor/github.com/opencontainers/runtime-spec/specs-go/version.go
 create mode 100644 vendor/github.com/opencontainers/selinux/LICENSE
 create mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
 create mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
 create mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
 create mode 100644 vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/LICENSE
 create mode 100644 vendor/github.com/opentracing/opentracing-go/ext/tags.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/globaltracer.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/gocontext.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/log/field.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/log/util.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/noop.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/propagation.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/span.go
 create mode 100644 vendor/github.com/opentracing/opentracing-go/tracer.go
 create mode 100644 vendor/github.com/prometheus/client_golang/LICENSE
 create mode 100644 vendor/github.com/prometheus/client_golang/NOTICE
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/collector.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/counter.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/desc.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/doc.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/fnv.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/gauge.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/histogram.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/http.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/labels.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/metric.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/observer.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/registry.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/summary.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/timer.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/untyped.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/value.go
 create mode 100644 vendor/github.com/prometheus/client_golang/prometheus/vec.go
 create mode 100644 vendor/github.com/prometheus/client_model/LICENSE
 create mode 100644 vendor/github.com/prometheus/client_model/NOTICE
 create mode 100644 vendor/github.com/prometheus/client_model/go/metrics.pb.go
 create mode 100644 vendor/github.com/prometheus/client_model/ruby/LICENSE
 create mode 100644 vendor/github.com/prometheus/common/LICENSE
 create mode 100644 vendor/github.com/prometheus/common/NOTICE
 create mode 100644 vendor/github.com/prometheus/common/expfmt/decode.go
 create mode 100644 vendor/github.com/prometheus/common/expfmt/encode.go
 create mode 100644 vendor/github.com/prometheus/common/expfmt/expfmt.go
 create mode 100644 vendor/github.com/prometheus/common/expfmt/fuzz.go
 create mode 100644 vendor/github.com/prometheus/common/expfmt/text_create.go
 create mode 100644 vendor/github.com/prometheus/common/expfmt/text_parse.go
 create mode 100644 vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
 create mode 100644 vendor/github.com/prometheus/common/model/alert.go
 create mode 100644 vendor/github.com/prometheus/common/model/fingerprinting.go
 create mode 100644 vendor/github.com/prometheus/common/model/fnv.go
 create mode 100644 vendor/github.com/prometheus/common/model/labels.go
 create mode 100644 vendor/github.com/prometheus/common/model/labelset.go
 create mode 100644 vendor/github.com/prometheus/common/model/metric.go
 create mode 100644 vendor/github.com/prometheus/common/model/model.go
 create mode 100644 vendor/github.com/prometheus/common/model/signature.go
 create mode 100644 vendor/github.com/prometheus/common/model/silence.go
 create mode 100644 vendor/github.com/prometheus/common/model/time.go
 create mode 100644 vendor/github.com/prometheus/common/model/value.go
 create mode 100644 vendor/github.com/prometheus/procfs/LICENSE
 create mode 100644 vendor/github.com/prometheus/procfs/NOTICE
 create mode 100644 vendor/github.com/prometheus/procfs/buddyinfo.go
 create mode 100644 vendor/github.com/prometheus/procfs/doc.go
 create mode 100644 vendor/github.com/prometheus/procfs/fs.go
 create mode 100644 vendor/github.com/prometheus/procfs/internal/util/parse.go
 create mode 100644 vendor/github.com/prometheus/procfs/ipvs.go
 create mode 100644 vendor/github.com/prometheus/procfs/mdstat.go
 create mode 100644 vendor/github.com/prometheus/procfs/mountstats.go
 create mode 100644 vendor/github.com/prometheus/procfs/net_dev.go
 create mode 100644 vendor/github.com/prometheus/procfs/nfs/nfs.go
 create mode 100644 vendor/github.com/prometheus/procfs/nfs/parse.go
 create mode 100644 vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
 create mode 100644 vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
 create mode 100644 vendor/github.com/prometheus/procfs/proc.go
 create mode 100644 vendor/github.com/prometheus/procfs/proc_io.go
 create mode 100644 vendor/github.com/prometheus/procfs/proc_limits.go
 create mode 100644 vendor/github.com/prometheus/procfs/proc_ns.go
 create mode 100644 vendor/github.com/prometheus/procfs/proc_stat.go
 create mode 100644 vendor/github.com/prometheus/procfs/stat.go
 create mode 100644 vendor/github.com/prometheus/procfs/xfrm.go
 create mode 100644 vendor/github.com/prometheus/procfs/xfs/parse.go
 create mode 100644 vendor/github.com/prometheus/procfs/xfs/xfs.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/LICENSE
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/conn.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/constants.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/dnshostprovider.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/flw.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/lock.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/server_help.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/server_java.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/structs.go
 create mode 100644 vendor/github.com/samuel/go-zookeeper/zk/util.go
 create mode 100644 vendor/github.com/sean-/seed/LICENSE
 create mode 100644 vendor/github.com/sean-/seed/init.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/LICENSE
 create mode 100644 vendor/github.com/tonistiigi/fsutil/chtimes_linux.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/chtimes_nolinux.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diff.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diff_containerd.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diff_containerd_linux.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diskwriter.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diskwriter_unix.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/diskwriter_windows.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/generate.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/hardlinks.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/receive.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/send.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/stat.pb.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/validator.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/walker.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/walker_unix.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/walker_windows.go
 create mode 100644 vendor/github.com/tonistiigi/fsutil/wire.pb.go
 create mode 100644 vendor/github.com/ugorji/go/LICENSE
 create mode 100644 vendor/github.com/ugorji/go/codec/0doc.go
 create mode 100644 vendor/github.com/ugorji/go/codec/binc.go
 create mode 100644 vendor/github.com/ugorji/go/codec/cbor.go
 create mode 100644 vendor/github.com/ugorji/go/codec/decode.go
 create mode 100644 vendor/github.com/ugorji/go/codec/encode.go
 create mode 100644 vendor/github.com/ugorji/go/codec/fast-path.generated.go
 create mode 100644 vendor/github.com/ugorji/go/codec/fast-path.not.go
 create mode 100644 vendor/github.com/ugorji/go/codec/gen-helper.generated.go
 create mode 100644 vendor/github.com/ugorji/go/codec/gen.generated.go
 create mode 100644 vendor/github.com/ugorji/go/codec/gen.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_arrayof_gte_go15.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_arrayof_lt_go15.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_makemap_gte_go19.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_makemap_lt_go19.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_gte_go110.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_lt_go110.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_unsupported_lt_go14.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go15.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go16.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_vendor_gte_go17.go
 create mode 100644 vendor/github.com/ugorji/go/codec/goversion_vendor_lt_go15.go
 create mode 100644 vendor/github.com/ugorji/go/codec/helper.go
 create mode 100644 vendor/github.com/ugorji/go/codec/helper_internal.go
 create mode 100644 vendor/github.com/ugorji/go/codec/helper_not_unsafe.go
 create mode 100644 vendor/github.com/ugorji/go/codec/helper_unsafe.go
 create mode 100644 vendor/github.com/ugorji/go/codec/json.go
 create mode 100644 vendor/github.com/ugorji/go/codec/msgpack.go
 create mode 100644 vendor/github.com/ugorji/go/codec/rpc.go
 create mode 100644 vendor/github.com/ugorji/go/codec/simple.go
 create mode 100644 vendor/github.com/ugorji/go/codec/xml.go
 create mode 100644 vendor/github.com/vbatts/tar-split/LICENSE
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/common.go
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/reader.go
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
 create mode 100644 vendor/github.com/vbatts/tar-split/archive/tar/writer.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/asm/doc.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/doc.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/entry.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/getter.go
 create mode 100644 vendor/github.com/vbatts/tar-split/tar/storage/packer.go
 create mode 100644 vendor/github.com/vishvananda/netlink/LICENSE
 create mode 100644 vendor/github.com/vishvananda/netlink/addr.go
 create mode 100644 vendor/github.com/vishvananda/netlink/addr_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/bpf_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/bridge_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/class.go
 create mode 100644 vendor/github.com/vishvananda/netlink/class_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/conntrack_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/conntrack_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/filter.go
 create mode 100644 vendor/github.com/vishvananda/netlink/filter_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/genetlink_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/genetlink_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/gtp_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/handle_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/handle_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/link.go
 create mode 100644 vendor/github.com/vishvananda/netlink/link_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/link_tuntap_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/neigh.go
 create mode 100644 vendor/github.com/vishvananda/netlink/neigh_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/netlink.go
 create mode 100644 vendor/github.com/vishvananda/netlink/netlink_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/netlink_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/addr_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/bridge_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/conntrack_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/genetlink_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/link_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/mpls_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/nl_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/nl_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/route_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/syscall.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/tc_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/xfrm_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/xfrm_monitor_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/xfrm_policy_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/nl/xfrm_state_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/order.go
 create mode 100644 vendor/github.com/vishvananda/netlink/protinfo.go
 create mode 100644 vendor/github.com/vishvananda/netlink/protinfo_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/qdisc.go
 create mode 100644 vendor/github.com/vishvananda/netlink/qdisc_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/route.go
 create mode 100644 vendor/github.com/vishvananda/netlink/route_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/route_unspecified.go
 create mode 100644 vendor/github.com/vishvananda/netlink/rule.go
 create mode 100644 vendor/github.com/vishvananda/netlink/rule_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/socket.go
 create mode 100644 vendor/github.com/vishvananda/netlink/socket_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm_monitor_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm_policy.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm_policy_linux.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm_state.go
 create mode 100644 vendor/github.com/vishvananda/netlink/xfrm_state_linux.go
 create mode 100644 vendor/github.com/vishvananda/netns/LICENSE
 create mode 100644 vendor/github.com/vishvananda/netns/netns.go
 create mode 100644 vendor/github.com/vishvananda/netns/netns_linux.go
 create mode 100644 vendor/github.com/vishvananda/netns/netns_unspecified.go
 create mode 100644 vendor/go.opencensus.io/trace/status_codes.go
 create mode 100644 vendor/go.opencensus.io/trace/trace_go11.go
 create mode 100644 vendor/go.opencensus.io/trace/trace_nongo11.go
 create mode 100644 vendor/golang.org/x/crypto/ed25519/ed25519.go
 create mode 100644 vendor/golang.org/x/crypto/ed25519/internal/edwards25519/const.go
 create mode 100644 vendor/golang.org/x/crypto/ed25519/internal/edwards25519/edwards25519.go
 create mode 100644 vendor/golang.org/x/net/bpf/asm.go
 create mode 100644 vendor/golang.org/x/net/bpf/constants.go
 create mode 100644 vendor/golang.org/x/net/bpf/doc.go
 create mode 100644 vendor/golang.org/x/net/bpf/instructions.go
 create mode 100644 vendor/golang.org/x/net/bpf/setter.go
 create mode 100644 vendor/golang.org/x/net/bpf/vm.go
 create mode 100644 vendor/golang.org/x/net/bpf/vm_instructions.go
 create mode 100644 vendor/golang.org/x/net/http/httpguts/httplex.go
 create mode 100644 vendor/golang.org/x/net/internal/iana/const.go
 create mode 100644 vendor/golang.org/x/net/internal/iana/gen.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr_bsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr_linux_32bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr_linux_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr_solaris_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/cmsghdr_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_darwin.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_freebsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_linux.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_netbsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_openbsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/defs_solaris.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/error_unix.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/error_windows.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/iovec_32bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/iovec_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/iovec_solaris_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/iovec_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/mmsghdr_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/mmsghdr_unix.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_bsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_bsdvar.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_linux.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_linux_32bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_linux_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_openbsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_solaris_64bit.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/msghdr_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn_mmsg.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn_msg.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn_nommsg.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn_nomsg.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/rawconn_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/reflect.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/socket.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_bsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_bsdvar.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_darwin.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_386.s
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_arm64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_mips.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_mips64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_mips64le.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_mipsle.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_ppc64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_ppc64le.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_s390x.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_linux_s390x.s
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_netbsd.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_posix.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_solaris.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_solaris_amd64.s
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_stub.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_unix.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/sys_windows.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_darwin_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_darwin_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_darwin_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_darwin_arm64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_dragonfly_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_freebsd_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_freebsd_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_freebsd_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_arm64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_mips.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_mips64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_mips64le.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_mipsle.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64le.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_linux_s390x.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_netbsd_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_netbsd_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_netbsd_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_openbsd_386.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_openbsd_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_openbsd_arm.go
 create mode 100644 vendor/golang.org/x/net/internal/socket/zsys_solaris_amd64.go
 create mode 100644 vendor/golang.org/x/net/internal/socks/client.go
 create mode 100644 vendor/golang.org/x/net/internal/socks/socks.go
 create mode 100644 vendor/golang.org/x/net/ipv4/batch.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control_bsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control_pktinfo.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control_unix.go
 create mode 100644 vendor/golang.org/x/net/ipv4/control_windows.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_freebsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_netbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_openbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/defs_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv4/dgramopt.go
 create mode 100644 vendor/golang.org/x/net/ipv4/doc.go
 create mode 100644 vendor/golang.org/x/net/ipv4/endpoint.go
 create mode 100644 vendor/golang.org/x/net/ipv4/gen.go
 create mode 100644 vendor/golang.org/x/net/ipv4/genericopt.go
 create mode 100644 vendor/golang.org/x/net/ipv4/header.go
 create mode 100644 vendor/golang.org/x/net/ipv4/helper.go
 create mode 100644 vendor/golang.org/x/net/ipv4/iana.go
 create mode 100644 vendor/golang.org/x/net/ipv4/icmp.go
 create mode 100644 vendor/golang.org/x/net/ipv4/icmp_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv4/icmp_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/packet.go
 create mode 100644 vendor/golang.org/x/net/ipv4/packet_go1_8.go
 create mode 100644 vendor/golang.org/x/net/ipv4/packet_go1_9.go
 create mode 100644 vendor/golang.org/x/net/ipv4/payload.go
 create mode 100644 vendor/golang.org/x/net/ipv4/payload_cmsg.go
 create mode 100644 vendor/golang.org/x/net/ipv4/payload_cmsg_go1_8.go
 create mode 100644 vendor/golang.org/x/net/ipv4/payload_cmsg_go1_9.go
 create mode 100644 vendor/golang.org/x/net/ipv4/payload_nocmsg.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sockopt.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sockopt_posix.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sockopt_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_asmreq.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_asmreq_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_asmreqn.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_asmreqn_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_bpf.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_bpf_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_bsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_freebsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_ssmreq.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_ssmreq_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv4/sys_windows.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_freebsd_386.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_freebsd_amd64.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_freebsd_arm.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_386.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_amd64.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_arm.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_arm64.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_mips.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_mips64.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_mips64le.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_mipsle.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_ppc.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_ppc64.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_ppc64le.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_linux_s390x.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_netbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_openbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv4/zsys_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv6/batch.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control_rfc2292_unix.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control_rfc3542_unix.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control_unix.go
 create mode 100644 vendor/golang.org/x/net/ipv6/control_windows.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_freebsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_netbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_openbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/defs_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv6/dgramopt.go
 create mode 100644 vendor/golang.org/x/net/ipv6/doc.go
 create mode 100644 vendor/golang.org/x/net/ipv6/endpoint.go
 create mode 100644 vendor/golang.org/x/net/ipv6/gen.go
 create mode 100644 vendor/golang.org/x/net/ipv6/genericopt.go
 create mode 100644 vendor/golang.org/x/net/ipv6/header.go
 create mode 100644 vendor/golang.org/x/net/ipv6/helper.go
 create mode 100644 vendor/golang.org/x/net/ipv6/iana.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp_bsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/icmp_windows.go
 create mode 100644 vendor/golang.org/x/net/ipv6/payload.go
 create mode 100644 vendor/golang.org/x/net/ipv6/payload_cmsg.go
 create mode 100644 vendor/golang.org/x/net/ipv6/payload_cmsg_go1_8.go
 create mode 100644 vendor/golang.org/x/net/ipv6/payload_cmsg_go1_9.go
 create mode 100644 vendor/golang.org/x/net/ipv6/payload_nocmsg.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sockopt.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sockopt_posix.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sockopt_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_asmreq.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_asmreq_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_bpf.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_bpf_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_bsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_freebsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_linux.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_solaris.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_ssmreq.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_ssmreq_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_stub.go
 create mode 100644 vendor/golang.org/x/net/ipv6/sys_windows.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_darwin.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_dragonfly.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_freebsd_386.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_freebsd_amd64.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_freebsd_arm.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_386.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_amd64.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_arm.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_arm64.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_mips.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_mips64.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_mips64le.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_mipsle.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_ppc.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_ppc64.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_ppc64le.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_linux_s390x.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_netbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_openbsd.go
 create mode 100644 vendor/golang.org/x/net/ipv6/zsys_solaris.go
 create mode 100644 vendor/golang.org/x/net/proxy/direct.go
 create mode 100644 vendor/golang.org/x/net/proxy/per_host.go
 create mode 100644 vendor/golang.org/x/net/proxy/proxy.go
 create mode 100644 vendor/golang.org/x/net/proxy/socks5.go
 create mode 100644 vendor/golang.org/x/sync/AUTHORS
 create mode 100644 vendor/golang.org/x/sync/CONTRIBUTORS
 create mode 100644 vendor/golang.org/x/sync/LICENSE
 create mode 100644 vendor/golang.org/x/sync/PATENTS
 create mode 100644 vendor/golang.org/x/sync/errgroup/errgroup.go
 create mode 100644 vendor/golang.org/x/sync/singleflight/singleflight.go
 create mode 100644 vendor/golang.org/x/sync/syncmap/map.go
 create mode 100644 vendor/golang.org/x/sys/windows/registry/key.go
 create mode 100644 vendor/golang.org/x/sys/windows/registry/mksyscall.go
 create mode 100644 vendor/golang.org/x/sys/windows/registry/syscall.go
 create mode 100644 vendor/golang.org/x/sys/windows/registry/value.go
 create mode 100644 vendor/golang.org/x/sys/windows/registry/zsyscall_windows.go
 create mode 100644 vendor/golang.org/x/time/AUTHORS
 create mode 100644 vendor/golang.org/x/time/CONTRIBUTORS
 create mode 100644 vendor/golang.org/x/time/LICENSE
 create mode 100644 vendor/golang.org/x/time/PATENTS
 create mode 100644 vendor/golang.org/x/time/rate/rate.go
 create mode 100644 vendor/golang.org/x/time/rate/rate_go16.go
 create mode 100644 vendor/golang.org/x/time/rate/rate_go17.go
 create mode 100644 vendor/google.golang.org/grpc/health/grpc_health_v1/health.pb.go
 create mode 100644 vendor/google.golang.org/grpc/health/health.go

diff --git a/Gopkg.lock b/Gopkg.lock
index 6c182e1d40..188d261654 100644
--- a/Gopkg.lock
+++ b/Gopkg.lock
@@ -12,8 +12,23 @@
     "internal/version",
     "storage"
   ]
-  revision = "29f476ffa9c4cd4fd14336b6043090ac1ad76733"
-  version = "v0.21.0"
+  revision = "056a55f54a6cc77b440b31a56a5e7c3982d32811"
+  version = "v0.22.0"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/Azure/go-ansiterm"
+  packages = [
+    ".",
+    "winterm"
+  ]
+  revision = "d6e3b3328b783f23731bc4d058875b0371ff8109"
+
+[[projects]]
+  name = "github.com/BurntSushi/toml"
+  packages = ["."]
+  revision = "b26d9c308763d68093482582cea63d69be07a0f0"
+  version = "v0.3.0"
 
 [[projects]]
   name = "github.com/Microsoft/go-winio"
@@ -21,54 +36,333 @@
   revision = "7da180ee92d8bd8bb8c37fc560e673e6557c392f"
   version = "v0.4.7"
 
+[[projects]]
+  name = "github.com/Microsoft/hcsshim"
+  packages = ["."]
+  revision = "800683ae704ac360b2f3f47fa88f3a6c8c9091b5"
+  version = "v0.6.11"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/Nvveen/Gotty"
+  packages = ["."]
+  revision = "cd527374f1e5bff4938207604a14f2e38a9cf512"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/armon/go-metrics"
+  packages = ["."]
+  revision = "783273d703149aaeb9897cf58613d5af48861c25"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/armon/go-radix"
+  packages = ["."]
+  revision = "1fca145dffbcaa8fe914309b1ec0cfc67500fe61"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/beorn7/perks"
+  packages = ["quantile"]
+  revision = "3a771d992973f24aa725d07868b467d1ddfceafb"
+
+[[projects]]
+  name = "github.com/boltdb/bolt"
+  packages = ["."]
+  revision = "2f1ce7a837dcb8da3ec595b1dac9d0632f0f99e8"
+  version = "v1.3.1"
+
+[[projects]]
+  name = "github.com/containerd/containerd"
+  packages = [
+    "cio",
+    "defaults",
+    "log"
+  ]
+  revision = "209a7fc3e4a32ef71a8c7b50c68fc8398415badf"
+  version = "v1.1.0"
+
 [[projects]]
   branch = "master"
   name = "github.com/containerd/continuity"
-  packages = ["pathdriver"]
+  packages = [
+    "devices",
+    "driver",
+    "fs",
+    "pathdriver",
+    "sysx"
+  ]
   revision = "c6cef34830231743494fe2969284df7b82cc0ad0"
 
+[[projects]]
+  branch = "master"
+  name = "github.com/containerd/fifo"
+  packages = ["."]
+  revision = "3d5202aec260678c48179c56f40e6f38a095738c"
+
+[[projects]]
+  name = "github.com/coreos/etcd"
+  packages = [
+    "client",
+    "pkg/pathutil",
+    "pkg/srv",
+    "pkg/types",
+    "raft/raftpb",
+    "version"
+  ]
+  revision = "70c8726202dd91e482fb4029fd14af1d4ed1d5af"
+  version = "v3.3.5"
+
+[[projects]]
+  name = "github.com/coreos/go-semver"
+  packages = ["semver"]
+  revision = "8ab6407b697782a06568d4b7f1db25550ec2e4c6"
+  version = "v0.2.0"
+
+[[projects]]
+  name = "github.com/deckarep/golang-set"
+  packages = ["."]
+  revision = "1d4478f51bed434f1dadf96dcd9b43aabac66795"
+  version = "v1.7"
+
+[[projects]]
+  name = "github.com/docker/distribution"
+  packages = [
+    ".",
+    "digestset",
+    "reference"
+  ]
+  revision = "83389a148052d74ac602f5f1d62f86ff2f3c4aa5"
+  source = "github.com/docker/distribution"
+
 [[projects]]
   name = "github.com/docker/docker"
   packages = [
+    "api",
+    "api/types",
+    "api/types/backend",
     "api/types/blkiodev",
     "api/types/container",
+    "api/types/filters",
     "api/types/mount",
+    "api/types/network",
+    "api/types/plugins/logdriver",
+    "api/types/registry",
     "api/types/strslice",
+    "api/types/swarm",
+    "api/types/swarm/runtime",
+    "api/types/versions",
+    "builder",
+    "builder/dockerfile",
     "builder/dockerfile/command",
     "builder/dockerfile/instructions",
     "builder/dockerfile/parser",
     "builder/dockerfile/shell",
+    "builder/dockerignore",
+    "builder/fscache",
+    "builder/remotecontext",
+    "builder/remotecontext/git",
+    "container",
+    "container/stream",
+    "daemon/cluster/provider",
+    "daemon/exec",
+    "daemon/graphdriver",
+    "daemon/logger",
+    "daemon/logger/jsonfilelog",
+    "daemon/logger/jsonfilelog/jsonlog",
+    "daemon/logger/loggerutils",
+    "daemon/logger/loggerutils/multireader",
+    "daemon/logger/templates",
+    "daemon/network",
+    "dockerversion",
+    "errdefs",
+    "image",
+    "layer",
+    "oci",
+    "opts",
     "pkg/archive",
+    "pkg/broadcaster",
+    "pkg/chrootarchive",
+    "pkg/containerfs",
+    "pkg/directory",
+    "pkg/discovery",
+    "pkg/discovery/kv",
+    "pkg/filenotify",
     "pkg/fileutils",
     "pkg/idtools",
     "pkg/ioutils",
+    "pkg/jsonmessage",
+    "pkg/locker",
     "pkg/longpath",
     "pkg/mount",
+    "pkg/parsers",
+    "pkg/parsers/kernel",
+    "pkg/plugingetter",
+    "pkg/plugins",
+    "pkg/plugins/transport",
     "pkg/pools",
+    "pkg/progress",
+    "pkg/pubsub",
+    "pkg/reexec",
     "pkg/signal",
-    "pkg/system"
+    "pkg/streamformatter",
+    "pkg/stringid",
+    "pkg/symlink",
+    "pkg/sysinfo",
+    "pkg/system",
+    "pkg/tailfile",
+    "pkg/tarsum",
+    "pkg/term",
+    "pkg/term/windows",
+    "pkg/urlutil",
+    "pkg/useragent",
+    "plugin/v2",
+    "restartmanager",
+    "runconfig",
+    "runconfig/opts",
+    "volume",
+    "volume/mounts"
   ]
-  revision = "b1a1234c60cf87048814aa37da523b03a7b0d344"
+  revision = "dfde597fbbb5de4a7559a68980401c8c405aa9af"
   source = "github.com/docker/docker"
 
 [[projects]]
   name = "github.com/docker/go-connections"
-  packages = ["nat"]
+  packages = [
+    "nat",
+    "sockets",
+    "tlsconfig"
+  ]
   revision = "3ede32e2033de7505e6500d6c868c2b9ed9f169d"
   version = "v0.3.0"
 
+[[projects]]
+  branch = "master"
+  name = "github.com/docker/go-events"
+  packages = ["."]
+  revision = "9461782956ad83b30282bf90e31fa6a70c255ba9"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/docker/go-metrics"
+  packages = ["."]
+  revision = "399ea8c73916000c64c2c76e8da00ca82f8387ab"
+
 [[projects]]
   name = "github.com/docker/go-units"
   packages = ["."]
   revision = "47565b4f722fb6ceae66b95f853feed578a4a51c"
   version = "v0.3.3"
 
+[[projects]]
+  name = "github.com/docker/libkv"
+  packages = [
+    ".",
+    "store",
+    "store/boltdb",
+    "store/consul",
+    "store/etcd",
+    "store/zookeeper"
+  ]
+  revision = "aabc039ad04deb721e234f99cd1b4aa28ac71a40"
+  version = "v0.2.1"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/docker/libnetwork"
+  packages = [
+    ".",
+    "bitseq",
+    "cluster",
+    "common",
+    "config",
+    "datastore",
+    "diagnostic",
+    "discoverapi",
+    "driverapi",
+    "drivers/bridge",
+    "drivers/host",
+    "drivers/ipvlan",
+    "drivers/macvlan",
+    "drivers/null",
+    "drivers/overlay",
+    "drivers/remote",
+    "drivers/remote/api",
+    "drivers/windows",
+    "drivers/windows/overlay",
+    "drvregistry",
+    "etchosts",
+    "hostdiscovery",
+    "idm",
+    "ipam",
+    "ipamapi",
+    "ipams/builtin",
+    "ipams/null",
+    "ipams/remote",
+    "ipams/remote/api",
+    "ipams/windowsipam",
+    "ipamutils",
+    "iptables",
+    "ipvs",
+    "netlabel",
+    "netutils",
+    "networkdb",
+    "ns",
+    "options",
+    "osl",
+    "portallocator",
+    "portmapper",
+    "resolvconf",
+    "resolvconf/dns",
+    "types"
+  ]
+  revision = "d5818e7204d3886a246f3ea4ce39fb133067b194"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/docker/swarmkit"
+  packages = [
+    "agent/exec",
+    "api",
+    "api/deepcopy",
+    "api/equality",
+    "log",
+    "manager/raftselector",
+    "protobuf/plugin",
+    "protobuf/ptypes"
+  ]
+  revision = "8aa9c33bcdff9ea38fc79e0b1d054199917513f3"
+
+[[projects]]
+  name = "github.com/fsnotify/fsnotify"
+  packages = ["."]
+  revision = "c2828203cd70a50dcccfb2761f8b1f8ceef9a8e9"
+  version = "v1.4.7"
+
 [[projects]]
   name = "github.com/genuinetools/amicontained"
   packages = ["container"]
   revision = "fcae88544f0212fbb1e20699c41566655b68679b"
   version = "v0.4.0"
 
+[[projects]]
+  name = "github.com/godbus/dbus"
+  packages = ["."]
+  revision = "a389bdde4dd695d414e47b755e95e72b7826432c"
+  version = "v4.1.0"
+
+[[projects]]
+  name = "github.com/gogo/protobuf"
+  packages = [
+    "gogoproto",
+    "proto",
+    "protoc-gen-gogo/descriptor",
+    "sortkeys",
+    "types"
+  ]
+  revision = "1adfc126b41513cc696b209667c8656ea7aac67c"
+  version = "v1.0.0"
+
 [[projects]]
   name = "github.com/golang/protobuf"
   packages = [
@@ -79,8 +373,8 @@
     "ptypes/duration",
     "ptypes/timestamp"
   ]
-  revision = "925541529c1fa6821df4e44ce2723319eb2be768"
-  version = "v1.0.0"
+  revision = "b4deda0973fb4c70b50d226b1af49f3da59f5265"
+  version = "v1.1.0"
 
 [[projects]]
   branch = "master"
@@ -99,7 +393,7 @@
     "v1/types",
     "v1/v1util"
   ]
-  revision = "2f7b7371197ff22ecc4578e081a73292cc32ae02"
+  revision = "71d387b23c8c5488e8a70a39b0b214af1ac01f30"
 
 [[projects]]
   name = "github.com/googleapis/gax-go"
@@ -107,12 +401,133 @@
   revision = "317e0006254c44a0ac427cc52a0e083ff0b9622f"
   version = "v2.0.0"
 
+[[projects]]
+  branch = "master"
+  name = "github.com/grpc-ecosystem/grpc-opentracing"
+  packages = ["go/otgrpc"]
+  revision = "8e809c8a86450a29b90dcc9efbf062d0fe6d9746"
+
+[[projects]]
+  name = "github.com/hashicorp/consul"
+  packages = ["api"]
+  revision = "fb848fc48818f58690db09d14640513aa6bf3c02"
+  version = "v1.0.7"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/errwrap"
+  packages = ["."]
+  revision = "7554cd9344cec97297fa6649b055a8c98c2a1e55"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-cleanhttp"
+  packages = ["."]
+  revision = "d5fe4b57a186c716b0e00b8c301cbd9b4182694d"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-immutable-radix"
+  packages = ["."]
+  revision = "7f3cd4390caab3250a57f30efdb2a65dd7649ecf"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-memdb"
+  packages = ["."]
+  revision = "1289e7fffe71d8fd4d4d491ba9a412c50f244c44"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-msgpack"
+  packages = ["codec"]
+  revision = "fa3f63826f7c23912c15263591e65d54d080b458"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-multierror"
+  packages = ["."]
+  revision = "b7773ae218740a7be65057fc60b366a49b538a44"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-rootcerts"
+  packages = ["."]
+  revision = "6bb64b370b90e7ef1fa532be9e591a81c3493e00"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/go-sockaddr"
+  packages = ["."]
+  revision = "6d291a969b86c4b633730bfc6b8b9d64c3aafed9"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/hashicorp/golang-lru"
+  packages = ["simplelru"]
+  revision = "0fb14efe8c47ae851c0034ed7a448854d3d34cf3"
+
+[[projects]]
+  name = "github.com/hashicorp/memberlist"
+  packages = ["."]
+  revision = "ce8abaa0c60c2d6bee7219f5ddf500e0a1457b28"
+  version = "v0.1.0"
+
+[[projects]]
+  name = "github.com/hashicorp/serf"
+  packages = [
+    "coordinate",
+    "serf"
+  ]
+  revision = "d6574a5bb1226678d7010325fb6c985db20ee458"
+  version = "v0.8.1"
+
 [[projects]]
   name = "github.com/inconshreveable/mousetrap"
   packages = ["."]
   revision = "76626ae9c91c4f2a10f34cad8ce83ea42c93bb75"
   version = "v1.0"
 
+[[projects]]
+  name = "github.com/ishidawataru/sctp"
+  packages = ["."]
+  revision = "07191f837fedd2f13d1ec7b5f885f0f3ec54b1cb"
+  source = "github.com/ishidawataru/sctp"
+
+[[projects]]
+  name = "github.com/mattn/go-shellwords"
+  packages = ["."]
+  revision = "02e3cf038dcea8290e44424da473dd12be796a8a"
+  version = "v1.0.3"
+
+[[projects]]
+  name = "github.com/matttproud/golang_protobuf_extensions"
+  packages = ["pbutil"]
+  revision = "3247c84500bff8d9fb6d579d800f20b3e091582c"
+  version = "v1.0.0"
+
+[[projects]]
+  name = "github.com/miekg/dns"
+  packages = ["."]
+  revision = "83c435cc65d2862736428b9b4d07d0ab10ad3e4d"
+  version = "v1.0.5"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/mitchellh/go-homedir"
+  packages = ["."]
+  revision = "b8bc1bf767474819792c23f32d8286a45736f1c6"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/moby/buildkit"
+  packages = [
+    "identity",
+    "session",
+    "session/filesync"
+  ]
+  revision = "b6fee5e09d7aa62d1cd950b6bbee2d09d049e3fd"
+
 [[projects]]
   name = "github.com/opencontainers/go-digest"
   packages = ["."]
@@ -131,11 +546,39 @@
 [[projects]]
   name = "github.com/opencontainers/runc"
   packages = [
+    "libcontainer/cgroups",
+    "libcontainer/configs",
+    "libcontainer/devices",
     "libcontainer/system",
     "libcontainer/user"
   ]
-  revision = "baf6536d6259209c3edfa2b22237af82942d3dfa"
-  version = "v0.1.1"
+  revision = "4fc53a81fb7c994640722ac585fa9ca548971871"
+  source = "github.com/opencontainers/runc"
+
+[[projects]]
+  name = "github.com/opencontainers/runtime-spec"
+  packages = ["specs-go"]
+  revision = "4e3b9264a330d094b0386c3703c5f379119711e8"
+  version = "v1.0.1"
+
+[[projects]]
+  name = "github.com/opencontainers/selinux"
+  packages = [
+    "go-selinux",
+    "go-selinux/label"
+  ]
+  revision = "ba1aefe8057f1d0cfb8e88d0ec1dc85925ef987d"
+  version = "v1.0.0-rc1"
+
+[[projects]]
+  name = "github.com/opentracing/opentracing-go"
+  packages = [
+    ".",
+    "ext",
+    "log"
+  ]
+  revision = "1949ddbfd147afd4d964a9f00b24eb291e0e7c38"
+  version = "v1.0.2"
 
 [[projects]]
   name = "github.com/pkg/errors"
@@ -143,6 +586,54 @@
   revision = "645ef00459ed84a119197bfb8d8205042c6df63d"
   version = "v0.8.0"
 
+[[projects]]
+  name = "github.com/prometheus/client_golang"
+  packages = [
+    "prometheus",
+    "prometheus/promhttp"
+  ]
+  revision = "a40133b69fbd73ee655606a9bf5f8b9b9bf758dd"
+  source = "github.com/prometheus/client_golang"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/prometheus/client_model"
+  packages = ["go"]
+  revision = "99fa1f4be8e564e8a6b613da7fa6f46c9edafc6c"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/prometheus/common"
+  packages = [
+    "expfmt",
+    "internal/bitbucket.org/ww/goautoneg",
+    "model"
+  ]
+  revision = "d811d2e9bf898806ecfb6ef6296774b13ffc314c"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/prometheus/procfs"
+  packages = [
+    ".",
+    "internal/util",
+    "nfs",
+    "xfs"
+  ]
+  revision = "8b1c2da0d56deffdbb9e48d4414b4e674bd8083e"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/samuel/go-zookeeper"
+  packages = ["zk"]
+  revision = "c4fab1ac1bec58281ad0667dc3f0907a9476ac47"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/sean-/seed"
+  packages = ["."]
+  revision = "e2103e2c35297fb7e17febb81e49b312087a2372"
+
 [[projects]]
   name = "github.com/sirupsen/logrus"
   packages = ["."]
@@ -167,6 +658,43 @@
   packages = ["capability"]
   revision = "33e07d32887e1e06b7c025f27ce52f62c7990bc0"
 
+[[projects]]
+  branch = "master"
+  name = "github.com/tonistiigi/fsutil"
+  packages = ["."]
+  revision = "93a0fd10b669d389e349ff54c48f13829708c9b0"
+
+[[projects]]
+  name = "github.com/ugorji/go"
+  packages = ["codec"]
+  revision = "b4c50a2b199d93b13dc15e78929cfb23bfdf21ab"
+  version = "v1.1.1"
+
+[[projects]]
+  name = "github.com/vbatts/tar-split"
+  packages = [
+    "archive/tar",
+    "tar/asm",
+    "tar/storage"
+  ]
+  revision = "38ec4ddb06dedbea0a895c4848b248eb38af221b"
+  version = "v0.10.2"
+
+[[projects]]
+  name = "github.com/vishvananda/netlink"
+  packages = [
+    ".",
+    "nl"
+  ]
+  revision = "b2de5d10e38ecce8607e6b438b6d174f389a004e"
+  source = "github.com/vishvananda/netlink"
+
+[[projects]]
+  branch = "master"
+  name = "github.com/vishvananda/netns"
+  packages = ["."]
+  revision = "be1fbeda19366dea804f00efff2dd73a1642fdcc"
+
 [[projects]]
   name = "go.opencensus.io"
   packages = [
@@ -183,30 +711,40 @@
     "trace/internal",
     "trace/propagation"
   ]
-  revision = "0095aec66ae14801c6711210f6f0716411cefdd3"
-  version = "v0.8.0"
+  revision = "10cec2c05ea2cfb8b0d856711daedc49d8a45c56"
+  version = "v0.9.0"
 
 [[projects]]
   branch = "master"
   name = "golang.org/x/crypto"
-  packages = ["ssh/terminal"]
-  revision = "e73bf333ef8920dbb52ad18d4bd38ad9d9bc76d7"
+  packages = [
+    "ed25519",
+    "ed25519/internal/edwards25519",
+    "ssh/terminal"
+  ]
+  revision = "21052ae46654ecf18dfdba0f7c12701a1e2b3164"
 
 [[projects]]
   branch = "master"
   name = "golang.org/x/net"
   packages = [
+    "bpf",
     "context",
     "context/ctxhttp",
     "http/httpguts",
     "http2",
     "http2/hpack",
     "idna",
+    "internal/iana",
+    "internal/socket",
+    "internal/socks",
     "internal/timeseries",
-    "lex/httplex",
+    "ipv4",
+    "ipv6",
+    "proxy",
     "trace"
   ]
-  revision = "5f9ae10d9af5b1c89ae6904293b14b064d4ada23"
+  revision = "f73e4c9ed3b7ebdd5f699a16a880c2b1994e50dd"
 
 [[projects]]
   branch = "master"
@@ -218,16 +756,27 @@
     "jws",
     "jwt"
   ]
-  revision = "6881fee410a5daf86371371f9ad451b95e168b71"
+  revision = "cdc340f7c179dbbfa4afd43b7614e8fcadde4269"
+
+[[projects]]
+  branch = "master"
+  name = "golang.org/x/sync"
+  packages = [
+    "errgroup",
+    "singleflight",
+    "syncmap"
+  ]
+  revision = "1d60e4601c6fd243af51cc01ddf169918a5407ca"
 
 [[projects]]
   branch = "master"
   name = "golang.org/x/sys"
   packages = [
     "unix",
-    "windows"
+    "windows",
+    "windows/registry"
   ]
-  revision = "79b0c6888797020a994db17c8510466c72fe75d9"
+  revision = "7db1c3b1a98089d0071c84f646ff5c96aad43682"
 
 [[projects]]
   name = "golang.org/x/text"
@@ -250,6 +799,12 @@
   revision = "f21a4dfb5e38f5895301dc265a8def02365cc3d0"
   version = "v0.3.0"
 
+[[projects]]
+  branch = "master"
+  name = "golang.org/x/time"
+  packages = ["rate"]
+  revision = "fbb02b2291d28baffd63558aa44b4b56f178d650"
+
 [[projects]]
   branch = "master"
   name = "google.golang.org/api"
@@ -264,7 +819,7 @@
     "storage/v1",
     "transport/http"
   ]
-  revision = "b08f8989af4899034b9816f5291a5bbb1bd576bb"
+  revision = "4bd7f4beb291148443ed4553071c4e0697ff4afb"
 
 [[projects]]
   name = "google.golang.org/appengine"
@@ -292,7 +847,7 @@
     "googleapis/rpc/code",
     "googleapis/rpc/status"
   ]
-  revision = "7fd901a49ba6a7f87732eb344f6e3c5b19d1b200"
+  revision = "86e600f69ee4704c6efbf6a2a40a5c10700e76c2"
 
 [[projects]]
   name = "google.golang.org/grpc"
@@ -308,6 +863,8 @@
     "encoding/proto",
     "grpclb/grpc_lb_v1/messages",
     "grpclog",
+    "health",
+    "health/grpc_health_v1",
     "internal",
     "keepalive",
     "metadata",
@@ -321,8 +878,8 @@
     "tap",
     "transport"
   ]
-  revision = "d11072e7ca9811b1100b80ca0269ac831f06d024"
-  version = "v1.11.3"
+  revision = "8124abf74e7633d82a5b96585b0da487d0e6eed0"
+  source = "google.golang.org/grpc"
 
 [[projects]]
   name = "gopkg.in/yaml.v2"
@@ -333,6 +890,6 @@
 [solve-meta]
   analyzer-name = "dep"
   analyzer-version = 1
-  inputs-digest = "18d970ab8a3487013ef13e0aed686929d30bcebc1b9adaa329e9db414189fcf6"
+  inputs-digest = "7dc0b12e9e50b1e09cfb6bf10cbeca2299a3c12ef5dd1074666215f683969b10"
   solver-name = "gps-cdcl"
   solver-version = 1
diff --git a/Gopkg.toml b/Gopkg.toml
index e86b513b5c..eac774ddc3 100644
--- a/Gopkg.toml
+++ b/Gopkg.toml
@@ -20,9 +20,29 @@
 
 [[constraint]]
   name = "github.com/docker/docker"
-  revision = "b1a1234c60cf87048814aa37da523b03a7b0d344"
+  revision = "dfde597fbbb5de4a7559a68980401c8c405aa9af"
   source = "github.com/docker/docker"
 
+[[override]]
+  name = "github.com/opencontainers/runc"
+  revision = "4fc53a81fb7c994640722ac585fa9ca548971871"
+  source = "github.com/opencontainers/runc"
+
+[[override]]
+  name = "github.com/ishidawataru/sctp"
+  revision = "07191f837fedd2f13d1ec7b5f885f0f3ec54b1cb"
+  source = "github.com/ishidawataru/sctp"
+
+[[override]]
+  name = "github.com/vishvananda/netlink"
+  revision = "b2de5d10e38ecce8607e6b438b6d174f389a004e"
+  source = "github.com/vishvananda/netlink"
+
+[[override]]
+  name = "google.golang.org/grpc"
+  revision = "8124abf74e7633d82a5b96585b0da487d0e6eed0"
+  source = "google.golang.org/grpc"
+
 [[constraint]]
   name = "github.com/genuinetools/amicontained"
   version = "0.4.0"
diff --git a/vendor/cloud.google.com/go/storage/bucket.go b/vendor/cloud.google.com/go/storage/bucket.go
index 41e5d42b79..d484e421aa 100644
--- a/vendor/cloud.google.com/go/storage/bucket.go
+++ b/vendor/cloud.google.com/go/storage/bucket.go
@@ -269,6 +269,9 @@ type BucketAttrs struct {
 
 	// The bucket's Cross-Origin Resource Sharing (CORS) configuration.
 	CORS []CORS
+
+	// The encryption configuration used by default for newly inserted objects.
+	Encryption *BucketEncryption
 }
 
 // Lifecycle is the lifecycle configuration for objects in the bucket.
@@ -406,6 +409,7 @@ func newBucket(b *raw.Bucket) (*BucketAttrs, error) {
 		Lifecycle:         toLifecycle(b.Lifecycle),
 		RetentionPolicy:   rp,
 		CORS:              toCORS(b.Cors),
+		Encryption:        toBucketEncryption(b.Encryption),
 	}
 	acl := make([]ACLRule, len(b.Acl))
 	for i, rule := range b.Acl {
@@ -470,10 +474,11 @@ func (b *BucketAttrs) toRawBucket() *raw.Bucket {
 		Lifecycle:        toRawLifecycle(b.Lifecycle),
 		RetentionPolicy:  b.RetentionPolicy.toRawRetentionPolicy(),
 		Cors:             toRawCORS(b.CORS),
+		Encryption:       b.Encryption.toRawBucketEncryption(),
 	}
 }
 
-// The bucket's Cross-Origin Resource Sharing (CORS) configuration.
+// CORS is the bucket's Cross-Origin Resource Sharing (CORS) configuration.
 type CORS struct {
 	// MaxAge is the value to return in the Access-Control-Max-Age
 	// header used in preflight responses.
@@ -495,14 +500,23 @@ type CORS struct {
 	ResponseHeaders []string
 }
 
+// BucketEncryption is a bucket's encryption configuration.
+type BucketEncryption struct {
+	// A Cloud KMS key name, in the form
+	// projects/P/locations/L/keyRings/R/cryptoKeys/K, that will be used to encrypt
+	// objects inserted into this bucket, if no encryption method is specified.
+	// The key's location must be the same as the bucket's.
+	DefaultKMSKeyName string
+}
+
 type BucketAttrsToUpdate struct {
-	// VersioningEnabled, if set, updates whether the bucket uses versioning.
+	// If set, updates whether the bucket uses versioning.
 	VersioningEnabled optional.Bool
 
-	// RequesterPays, if set, updates whether the bucket is a Requester Pays bucket.
+	// If set, updates whether the bucket is a Requester Pays bucket.
 	RequesterPays optional.Bool
 
-	// RetentionPolicy, if set, updates the retention policy of the bucket. Using
+	// If set, updates the retention policy of the bucket. Using
 	// RetentionPolicy.RetentionPeriod = 0 will delete the existing policy.
 	//
 	// This feature is in private alpha release. It is not currently available to
@@ -510,11 +524,15 @@ type BucketAttrsToUpdate struct {
 	// subject to any SLA or deprecation policy.
 	RetentionPolicy *RetentionPolicy
 
-	// CORS, if set, replaces the CORS configuration with a new configuration.
-	// When an empty slice is provided, all CORS policies are removed; when nil
-	// is provided, the value is ignored in the update.
+	// If set, replaces the CORS configuration with a new configuration.
+	// An empty (rather than nil) slice causes all CORS policies to be removed.
 	CORS []CORS
 
+	// If set, replaces the encryption configuration of the bucket. Using
+	// BucketEncryption.DefaultKMSKeyName = "" will delete the existing
+	// configuration.
+	Encryption *BucketEncryption
+
 	setLabels    map[string]string
 	deleteLabels map[string]bool
 }
@@ -563,6 +581,14 @@ func (ua *BucketAttrsToUpdate) toRawBucket() *raw.Bucket {
 			ForceSendFields: []string{"RequesterPays"},
 		}
 	}
+	if ua.Encryption != nil {
+		if ua.Encryption.DefaultKMSKeyName == "" {
+			rb.NullFields = append(rb.NullFields, "Encryption")
+			rb.Encryption = nil
+		} else {
+			rb.Encryption = ua.Encryption.toRawBucketEncryption()
+		}
+	}
 	if ua.setLabels != nil || ua.deleteLabels != nil {
 		rb.Labels = map[string]string{}
 		for k, v := range ua.setLabels {
@@ -788,6 +814,22 @@ func toLifecycle(rl *raw.BucketLifecycle) Lifecycle {
 	return l
 }
 
+func (e *BucketEncryption) toRawBucketEncryption() *raw.BucketEncryption {
+	if e == nil {
+		return nil
+	}
+	return &raw.BucketEncryption{
+		DefaultKmsKeyName: e.DefaultKMSKeyName,
+	}
+}
+
+func toBucketEncryption(e *raw.BucketEncryption) *BucketEncryption {
+	if e == nil {
+		return nil
+	}
+	return &BucketEncryption{DefaultKMSKeyName: e.DefaultKmsKeyName}
+}
+
 // Objects returns an iterator over the objects in the bucket that match the Query q.
 // If q is nil, no filtering is done.
 func (b *BucketHandle) Objects(ctx context.Context, q *Query) *ObjectIterator {
@@ -869,8 +911,6 @@ func (it *ObjectIterator) fetch(pageSize int, pageToken string) (string, error)
 	return resp.NextPageToken, nil
 }
 
-// TODO(jbd): Add storage.buckets.update.
-
 // Buckets returns an iterator over the buckets in the project. You may
 // optionally set the iterator's Prefix field to restrict the list to buckets
 // whose names begin with the prefix. By default, all buckets in the project
diff --git a/vendor/cloud.google.com/go/storage/copy.go b/vendor/cloud.google.com/go/storage/copy.go
index c9fb0271ad..50589e0e75 100644
--- a/vendor/cloud.google.com/go/storage/copy.go
+++ b/vendor/cloud.google.com/go/storage/copy.go
@@ -60,6 +60,15 @@ type Copier struct {
 	// ProgressFunc should return quickly without blocking.
 	ProgressFunc func(copiedBytes, totalBytes uint64)
 
+	// The Cloud KMS key, in the form projects/P/locations/L/keyRings/R/cryptoKeys/K,
+	// that will be used to encrypt the object. Overrides the object's KMSKeyName, if
+	// any.
+	//
+	// Providing both a DestinationKMSKeyName and a customer-supplied encryption key
+	// (via ObjectHandle.Key) on the destination object will result in an error when
+	// Run is called.
+	DestinationKMSKeyName string
+
 	dst, src *ObjectHandle
 }
 
@@ -74,6 +83,9 @@ func (c *Copier) Run(ctx context.Context) (attrs *ObjectAttrs, err error) {
 	if err := c.dst.validate(); err != nil {
 		return nil, err
 	}
+	if c.DestinationKMSKeyName != "" && c.dst.encryptionKey != nil {
+		return nil, errors.New("storage: cannot use DestinationKMSKeyName with a customer-supplied encryption key")
+	}
 	// Convert destination attributes to raw form, omitting the bucket.
 	// If the bucket is included but name or content-type aren't, the service
 	// returns a 400 with "Required" as the only message. Omitting the bucket
@@ -100,6 +112,9 @@ func (c *Copier) callRewrite(ctx context.Context, rawObj *raw.Object) (*raw.Rewr
 	if c.RewriteToken != "" {
 		call.RewriteToken(c.RewriteToken)
 	}
+	if c.DestinationKMSKeyName != "" {
+		call.DestinationKmsKeyName(c.DestinationKMSKeyName)
+	}
 	if err := applyConds("Copy destination", c.dst.gen, c.dst.conds, call); err != nil {
 		return nil, err
 	}
diff --git a/vendor/cloud.google.com/go/storage/doc.go b/vendor/cloud.google.com/go/storage/doc.go
index 9040ac2af0..1740708e38 100644
--- a/vendor/cloud.google.com/go/storage/doc.go
+++ b/vendor/cloud.google.com/go/storage/doc.go
@@ -19,6 +19,9 @@ Google Cloud Storage stores data in named objects, which are grouped into bucket
 More information about Google Cloud Storage is available at
 https://cloud.google.com/storage/docs.
 
+See https://godoc.org/cloud.google.com/go for authentication, timeouts,
+connection pooling and similar aspects of this package.
+
 All of the methods of this package use exponential backoff to retry calls
 that fail with certain errors, as described in
 https://cloud.google.com/storage/docs/exponential-backoff.
@@ -158,10 +161,5 @@ SignedURL for details.
         // TODO: Handle error.
     }
     fmt.Println(url)
-
-Authentication
-
-See examples of authorization and authentication at
-https://godoc.org/cloud.google.com/go#pkg-examples.
 */
 package storage // import "cloud.google.com/go/storage"
diff --git a/vendor/cloud.google.com/go/storage/reader.go b/vendor/cloud.google.com/go/storage/reader.go
index 6af5a94e0a..68d9ca11ab 100644
--- a/vendor/cloud.google.com/go/storage/reader.go
+++ b/vendor/cloud.google.com/go/storage/reader.go
@@ -22,6 +22,7 @@ import (
 	"io/ioutil"
 	"net/http"
 	"net/url"
+	"reflect"
 	"strconv"
 	"strings"
 
@@ -74,11 +75,6 @@ func (o *ObjectHandle) NewRangeReader(ctx context.Context, offset, length int64)
 		return nil, err
 	}
 	req = withContext(req, ctx)
-	if length < 0 && offset > 0 {
-		req.Header.Set("Range", fmt.Sprintf("bytes=%d-", offset))
-	} else if length > 0 {
-		req.Header.Set("Range", fmt.Sprintf("bytes=%d-%d", offset, offset+length-1))
-	}
 	if o.userProject != "" {
 		req.Header.Set("X-Goog-User-Project", o.userProject)
 	}
@@ -88,39 +84,57 @@ func (o *ObjectHandle) NewRangeReader(ctx context.Context, offset, length int64)
 	if err := setEncryptionHeaders(req.Header, o.encryptionKey, false); err != nil {
 		return nil, err
 	}
-	var res *http.Response
-	err = runWithRetry(ctx, func() error {
-		res, err = o.c.hc.Do(req)
-		if err != nil {
-			return err
-		}
-		if res.StatusCode == http.StatusNotFound {
-			res.Body.Close()
-			return ErrObjectNotExist
+
+	// Define a function that initiates a Read with offset and length, assuming we
+	// have already read seen bytes.
+	reopen := func(seen int64) (*http.Response, error) {
+		start := offset + seen
+		if length < 0 && start > 0 {
+			req.Header.Set("Range", fmt.Sprintf("bytes=%d-", start))
+		} else if length > 0 {
+			// The end character isn't affected by how many bytes we've seen.
+			req.Header.Set("Range", fmt.Sprintf("bytes=%d-%d", start, offset+length-1))
 		}
-		if res.StatusCode < 200 || res.StatusCode > 299 {
-			body, _ := ioutil.ReadAll(res.Body)
-			res.Body.Close()
-			return &googleapi.Error{
-				Code:   res.StatusCode,
-				Header: res.Header,
-				Body:   string(body),
+		var res *http.Response
+		err = runWithRetry(ctx, func() error {
+			res, err = o.c.hc.Do(req)
+			if err != nil {
+				return err
 			}
+			if res.StatusCode == http.StatusNotFound {
+				res.Body.Close()
+				return ErrObjectNotExist
+			}
+			if res.StatusCode < 200 || res.StatusCode > 299 {
+				body, _ := ioutil.ReadAll(res.Body)
+				res.Body.Close()
+				return &googleapi.Error{
+					Code:   res.StatusCode,
+					Header: res.Header,
+					Body:   string(body),
+				}
+			}
+			if start > 0 && length != 0 && res.StatusCode != http.StatusPartialContent {
+				res.Body.Close()
+				return errors.New("storage: partial request not satisfied")
+			}
+			return nil
+		})
+		if err != nil {
+			return nil, err
 		}
-		if offset > 0 && length != 0 && res.StatusCode != http.StatusPartialContent {
-			res.Body.Close()
-			return errors.New("storage: partial request not satisfied")
-		}
-		return nil
-	})
+		return res, nil
+	}
+
+	res, err := reopen(0)
 	if err != nil {
 		return nil, err
 	}
-
 	var size int64 // total size of object, even if a range was requested.
 	if res.StatusCode == http.StatusPartialContent {
 		cr := strings.TrimSpace(res.Header.Get("Content-Range"))
 		if !strings.HasPrefix(cr, "bytes ") || !strings.Contains(cr, "/") {
+
 			return nil, fmt.Errorf("storage: invalid Content-Range %q", cr)
 		}
 		size, err = strconv.ParseInt(cr[strings.LastIndex(cr, "/")+1:], 10, 64)
@@ -155,6 +169,7 @@ func (o *ObjectHandle) NewRangeReader(ctx context.Context, offset, length int64)
 		cacheControl:    res.Header.Get("Cache-Control"),
 		wantCRC:         crc,
 		checkCRC:        checkCRC,
+		reopen:          reopen,
 	}, nil
 }
 
@@ -180,15 +195,16 @@ var emptyBody = ioutil.NopCloser(strings.NewReader(""))
 // the stored CRC, returning an error from Read if there is a mismatch. This integrity check
 // is skipped if transcoding occurs. See https://cloud.google.com/storage/docs/transcoding.
 type Reader struct {
-	body            io.ReadCloser
-	remain, size    int64
-	contentType     string
-	contentEncoding string
-	cacheControl    string
-	checkCRC        bool   // should we check the CRC?
-	wantCRC         uint32 // the CRC32c value the server sent in the header
-	gotCRC          uint32 // running crc
-	checkedCRC      bool   // did we check the CRC? (For tests.)
+	body               io.ReadCloser
+	seen, remain, size int64
+	contentType        string
+	contentEncoding    string
+	cacheControl       string
+	checkCRC           bool   // should we check the CRC?
+	wantCRC            uint32 // the CRC32c value the server sent in the header
+	gotCRC             uint32 // running crc
+	checkedCRC         bool   // did we check the CRC? (For tests.)
+	reopen             func(seen int64) (*http.Response, error)
 }
 
 // Close closes the Reader. It must be called when done reading.
@@ -197,7 +213,7 @@ func (r *Reader) Close() error {
 }
 
 func (r *Reader) Read(p []byte) (int, error) {
-	n, err := r.body.Read(p)
+	n, err := r.readWithRetry(p)
 	if r.remain != -1 {
 		r.remain -= int64(n)
 	}
@@ -217,6 +233,35 @@ func (r *Reader) Read(p []byte) (int, error) {
 	return n, err
 }
 
+func (r *Reader) readWithRetry(p []byte) (int, error) {
+	n := 0
+	for len(p[n:]) > 0 {
+		m, err := r.body.Read(p[n:])
+		n += m
+		r.seen += int64(m)
+		if !shouldRetryRead(err) {
+			return n, err
+		}
+		// Read failed, but we will try again. Send a ranged read request that takes
+		// into account the number of bytes we've already seen.
+		res, err := r.reopen(r.seen)
+		if err != nil {
+			// reopen already retries
+			return n, err
+		}
+		r.body.Close()
+		r.body = res.Body
+	}
+	return n, nil
+}
+
+func shouldRetryRead(err error) bool {
+	if err == nil {
+		return false
+	}
+	return strings.HasSuffix(err.Error(), "INTERNAL_ERROR") && strings.Contains(reflect.TypeOf(err).String(), "http2")
+}
+
 // Size returns the size of the object in bytes.
 // The returned value is always the same and is not affected by
 // calls to Read or Close.
diff --git a/vendor/cloud.google.com/go/storage/storage.go b/vendor/cloud.google.com/go/storage/storage.go
index c6a2704ce1..df58bb74ec 100644
--- a/vendor/cloud.google.com/go/storage/storage.go
+++ b/vendor/cloud.google.com/go/storage/storage.go
@@ -722,6 +722,14 @@ type ObjectAttrs struct {
 	// encryption in Google Cloud Storage.
 	CustomerKeySHA256 string
 
+	// Cloud KMS key name, in the form
+	// projects/P/locations/L/keyRings/R/cryptoKeys/K, used to encrypt this object,
+	// if the object is encrypted by such a key.
+	//
+	// Providing both a KMSKeyName and a customer-supplied encryption key (via
+	// ObjectHandle.Key) will result in an error when writing an object.
+	KMSKeyName string
+
 	// Prefix is set only for ObjectAttrs which represent synthetic "directory
 	// entries" when iterating over buckets using Query.Delimiter. See
 	// ObjectIterator.Next. When set, no other fields in ObjectAttrs will be
@@ -779,6 +787,7 @@ func newObject(o *raw.Object) *ObjectAttrs {
 		Metageneration:     o.Metageneration,
 		StorageClass:       o.StorageClass,
 		CustomerKeySHA256:  sha256,
+		KMSKeyName:         o.KmsKeyName,
 		Created:            convertTime(o.TimeCreated),
 		Deleted:            convertTime(o.TimeDeleted),
 		Updated:            convertTime(o.Updated),
diff --git a/vendor/cloud.google.com/go/storage/writer.go b/vendor/cloud.google.com/go/storage/writer.go
index 21d146f0f6..3e9709b8fd 100644
--- a/vendor/cloud.google.com/go/storage/writer.go
+++ b/vendor/cloud.google.com/go/storage/writer.go
@@ -88,6 +88,9 @@ func (w *Writer) open() error {
 	if !utf8.ValidString(attrs.Name) {
 		return fmt.Errorf("storage: object name %q is not valid UTF-8", attrs.Name)
 	}
+	if attrs.KMSKeyName != "" && w.o.encryptionKey != nil {
+		return errors.New("storage: cannot use KMSKeyName with a customer-supplied encryption key")
+	}
 	pr, pw := io.Pipe()
 	w.pw = pw
 	w.opened = true
@@ -119,6 +122,9 @@ func (w *Writer) open() error {
 		if w.ProgressFunc != nil {
 			call.ProgressUpdater(func(n, _ int64) { w.ProgressFunc(n) })
 		}
+		if attrs.KMSKeyName != "" {
+			call.KmsKeyName(attrs.KMSKeyName)
+		}
 		if err := setEncryptionHeaders(call.Header(), w.o.encryptionKey, false); err != nil {
 			w.mu.Lock()
 			w.err = err
diff --git a/vendor/github.com/Azure/go-ansiterm/LICENSE b/vendor/github.com/Azure/go-ansiterm/LICENSE
new file mode 100644
index 0000000000..e3d9a64d1d
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 Microsoft Corporation
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
diff --git a/vendor/github.com/Azure/go-ansiterm/constants.go b/vendor/github.com/Azure/go-ansiterm/constants.go
new file mode 100644
index 0000000000..96504a33bc
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/constants.go
@@ -0,0 +1,188 @@
+package ansiterm
+
+const LogEnv = "DEBUG_TERMINAL"
+
+// ANSI constants
+// References:
+// -- http://www.ecma-international.org/publications/standards/Ecma-048.htm
+// -- http://man7.org/linux/man-pages/man4/console_codes.4.html
+// -- http://manpages.ubuntu.com/manpages/intrepid/man4/console_codes.4.html
+// -- http://en.wikipedia.org/wiki/ANSI_escape_code
+// -- http://vt100.net/emu/dec_ansi_parser
+// -- http://vt100.net/emu/vt500_parser.svg
+// -- http://invisible-island.net/xterm/ctlseqs/ctlseqs.html
+// -- http://www.inwap.com/pdp10/ansicode.txt
+const (
+	// ECMA-48 Set Graphics Rendition
+	// Note:
+	// -- Constants leading with an underscore (e.g., _ANSI_xxx) are unsupported or reserved
+	// -- Fonts could possibly be supported via SetCurrentConsoleFontEx
+	// -- Windows does not expose the per-window cursor (i.e., caret) blink times
+	ANSI_SGR_RESET              = 0
+	ANSI_SGR_BOLD               = 1
+	ANSI_SGR_DIM                = 2
+	_ANSI_SGR_ITALIC            = 3
+	ANSI_SGR_UNDERLINE          = 4
+	_ANSI_SGR_BLINKSLOW         = 5
+	_ANSI_SGR_BLINKFAST         = 6
+	ANSI_SGR_REVERSE            = 7
+	_ANSI_SGR_INVISIBLE         = 8
+	_ANSI_SGR_LINETHROUGH       = 9
+	_ANSI_SGR_FONT_00           = 10
+	_ANSI_SGR_FONT_01           = 11
+	_ANSI_SGR_FONT_02           = 12
+	_ANSI_SGR_FONT_03           = 13
+	_ANSI_SGR_FONT_04           = 14
+	_ANSI_SGR_FONT_05           = 15
+	_ANSI_SGR_FONT_06           = 16
+	_ANSI_SGR_FONT_07           = 17
+	_ANSI_SGR_FONT_08           = 18
+	_ANSI_SGR_FONT_09           = 19
+	_ANSI_SGR_FONT_10           = 20
+	_ANSI_SGR_DOUBLEUNDERLINE   = 21
+	ANSI_SGR_BOLD_DIM_OFF       = 22
+	_ANSI_SGR_ITALIC_OFF        = 23
+	ANSI_SGR_UNDERLINE_OFF      = 24
+	_ANSI_SGR_BLINK_OFF         = 25
+	_ANSI_SGR_RESERVED_00       = 26
+	ANSI_SGR_REVERSE_OFF        = 27
+	_ANSI_SGR_INVISIBLE_OFF     = 28
+	_ANSI_SGR_LINETHROUGH_OFF   = 29
+	ANSI_SGR_FOREGROUND_BLACK   = 30
+	ANSI_SGR_FOREGROUND_RED     = 31
+	ANSI_SGR_FOREGROUND_GREEN   = 32
+	ANSI_SGR_FOREGROUND_YELLOW  = 33
+	ANSI_SGR_FOREGROUND_BLUE    = 34
+	ANSI_SGR_FOREGROUND_MAGENTA = 35
+	ANSI_SGR_FOREGROUND_CYAN    = 36
+	ANSI_SGR_FOREGROUND_WHITE   = 37
+	_ANSI_SGR_RESERVED_01       = 38
+	ANSI_SGR_FOREGROUND_DEFAULT = 39
+	ANSI_SGR_BACKGROUND_BLACK   = 40
+	ANSI_SGR_BACKGROUND_RED     = 41
+	ANSI_SGR_BACKGROUND_GREEN   = 42
+	ANSI_SGR_BACKGROUND_YELLOW  = 43
+	ANSI_SGR_BACKGROUND_BLUE    = 44
+	ANSI_SGR_BACKGROUND_MAGENTA = 45
+	ANSI_SGR_BACKGROUND_CYAN    = 46
+	ANSI_SGR_BACKGROUND_WHITE   = 47
+	_ANSI_SGR_RESERVED_02       = 48
+	ANSI_SGR_BACKGROUND_DEFAULT = 49
+	// 50 - 65: Unsupported
+
+	ANSI_MAX_CMD_LENGTH = 4096
+
+	MAX_INPUT_EVENTS = 128
+	DEFAULT_WIDTH    = 80
+	DEFAULT_HEIGHT   = 24
+
+	ANSI_BEL              = 0x07
+	ANSI_BACKSPACE        = 0x08
+	ANSI_TAB              = 0x09
+	ANSI_LINE_FEED        = 0x0A
+	ANSI_VERTICAL_TAB     = 0x0B
+	ANSI_FORM_FEED        = 0x0C
+	ANSI_CARRIAGE_RETURN  = 0x0D
+	ANSI_ESCAPE_PRIMARY   = 0x1B
+	ANSI_ESCAPE_SECONDARY = 0x5B
+	ANSI_OSC_STRING_ENTRY = 0x5D
+	ANSI_COMMAND_FIRST    = 0x40
+	ANSI_COMMAND_LAST     = 0x7E
+	DCS_ENTRY             = 0x90
+	CSI_ENTRY             = 0x9B
+	OSC_STRING            = 0x9D
+	ANSI_PARAMETER_SEP    = ";"
+	ANSI_CMD_G0           = '('
+	ANSI_CMD_G1           = ')'
+	ANSI_CMD_G2           = '*'
+	ANSI_CMD_G3           = '+'
+	ANSI_CMD_DECPNM       = '>'
+	ANSI_CMD_DECPAM       = '='
+	ANSI_CMD_OSC          = ']'
+	ANSI_CMD_STR_TERM     = '\\'
+
+	KEY_CONTROL_PARAM_2 = ";2"
+	KEY_CONTROL_PARAM_3 = ";3"
+	KEY_CONTROL_PARAM_4 = ";4"
+	KEY_CONTROL_PARAM_5 = ";5"
+	KEY_CONTROL_PARAM_6 = ";6"
+	KEY_CONTROL_PARAM_7 = ";7"
+	KEY_CONTROL_PARAM_8 = ";8"
+	KEY_ESC_CSI         = "\x1B["
+	KEY_ESC_N           = "\x1BN"
+	KEY_ESC_O           = "\x1BO"
+
+	FILL_CHARACTER = ' '
+)
+
+func getByteRange(start byte, end byte) []byte {
+	bytes := make([]byte, 0, 32)
+	for i := start; i <= end; i++ {
+		bytes = append(bytes, byte(i))
+	}
+
+	return bytes
+}
+
+var toGroundBytes = getToGroundBytes()
+var executors = getExecuteBytes()
+
+// SPACE		  20+A0 hex  Always and everywhere a blank space
+// Intermediate	  20-2F hex   !"#$%&'()*+,-./
+var intermeds = getByteRange(0x20, 0x2F)
+
+// Parameters	  30-3F hex  0123456789:;<=>?
+// CSI Parameters 30-39, 3B hex 0123456789;
+var csiParams = getByteRange(0x30, 0x3F)
+
+var csiCollectables = append(getByteRange(0x30, 0x39), getByteRange(0x3B, 0x3F)...)
+
+// Uppercase	  40-5F hex  @ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_
+var upperCase = getByteRange(0x40, 0x5F)
+
+// Lowercase	  60-7E hex  `abcdefghijlkmnopqrstuvwxyz{|}~
+var lowerCase = getByteRange(0x60, 0x7E)
+
+// Alphabetics	  40-7E hex  (all of upper and lower case)
+var alphabetics = append(upperCase, lowerCase...)
+
+var printables = getByteRange(0x20, 0x7F)
+
+var escapeIntermediateToGroundBytes = getByteRange(0x30, 0x7E)
+var escapeToGroundBytes = getEscapeToGroundBytes()
+
+// See http://www.vt100.net/emu/vt500_parser.png for description of the complex
+// byte ranges below
+
+func getEscapeToGroundBytes() []byte {
+	escapeToGroundBytes := getByteRange(0x30, 0x4F)
+	escapeToGroundBytes = append(escapeToGroundBytes, getByteRange(0x51, 0x57)...)
+	escapeToGroundBytes = append(escapeToGroundBytes, 0x59)
+	escapeToGroundBytes = append(escapeToGroundBytes, 0x5A)
+	escapeToGroundBytes = append(escapeToGroundBytes, 0x5C)
+	escapeToGroundBytes = append(escapeToGroundBytes, getByteRange(0x60, 0x7E)...)
+	return escapeToGroundBytes
+}
+
+func getExecuteBytes() []byte {
+	executeBytes := getByteRange(0x00, 0x17)
+	executeBytes = append(executeBytes, 0x19)
+	executeBytes = append(executeBytes, getByteRange(0x1C, 0x1F)...)
+	return executeBytes
+}
+
+func getToGroundBytes() []byte {
+	groundBytes := []byte{0x18}
+	groundBytes = append(groundBytes, 0x1A)
+	groundBytes = append(groundBytes, getByteRange(0x80, 0x8F)...)
+	groundBytes = append(groundBytes, getByteRange(0x91, 0x97)...)
+	groundBytes = append(groundBytes, 0x99)
+	groundBytes = append(groundBytes, 0x9A)
+	groundBytes = append(groundBytes, 0x9C)
+	return groundBytes
+}
+
+// Delete		     7F hex  Always and everywhere ignored
+// C1 Control	  80-9F hex  32 additional control characters
+// G1 Displayable A1-FE hex  94 additional displayable characters
+// Special		  A0+FF hex  Same as SPACE and DELETE
diff --git a/vendor/github.com/Azure/go-ansiterm/context.go b/vendor/github.com/Azure/go-ansiterm/context.go
new file mode 100644
index 0000000000..8d66e777c0
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/context.go
@@ -0,0 +1,7 @@
+package ansiterm
+
+type ansiContext struct {
+	currentChar byte
+	paramBuffer []byte
+	interBuffer []byte
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/csi_entry_state.go b/vendor/github.com/Azure/go-ansiterm/csi_entry_state.go
new file mode 100644
index 0000000000..bcbe00d0c5
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/csi_entry_state.go
@@ -0,0 +1,49 @@
+package ansiterm
+
+type csiEntryState struct {
+	baseState
+}
+
+func (csiState csiEntryState) Handle(b byte) (s state, e error) {
+	csiState.parser.logf("CsiEntry::Handle %#x", b)
+
+	nextState, err := csiState.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case sliceContains(alphabetics, b):
+		return csiState.parser.ground, nil
+	case sliceContains(csiCollectables, b):
+		return csiState.parser.csiParam, nil
+	case sliceContains(executors, b):
+		return csiState, csiState.parser.execute()
+	}
+
+	return csiState, nil
+}
+
+func (csiState csiEntryState) Transition(s state) error {
+	csiState.parser.logf("CsiEntry::Transition %s --> %s", csiState.Name(), s.Name())
+	csiState.baseState.Transition(s)
+
+	switch s {
+	case csiState.parser.ground:
+		return csiState.parser.csiDispatch()
+	case csiState.parser.csiParam:
+		switch {
+		case sliceContains(csiParams, csiState.parser.context.currentChar):
+			csiState.parser.collectParam()
+		case sliceContains(intermeds, csiState.parser.context.currentChar):
+			csiState.parser.collectInter()
+		}
+	}
+
+	return nil
+}
+
+func (csiState csiEntryState) Enter() error {
+	csiState.parser.clear()
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/csi_param_state.go b/vendor/github.com/Azure/go-ansiterm/csi_param_state.go
new file mode 100644
index 0000000000..7ed5e01c34
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/csi_param_state.go
@@ -0,0 +1,38 @@
+package ansiterm
+
+type csiParamState struct {
+	baseState
+}
+
+func (csiState csiParamState) Handle(b byte) (s state, e error) {
+	csiState.parser.logf("CsiParam::Handle %#x", b)
+
+	nextState, err := csiState.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case sliceContains(alphabetics, b):
+		return csiState.parser.ground, nil
+	case sliceContains(csiCollectables, b):
+		csiState.parser.collectParam()
+		return csiState, nil
+	case sliceContains(executors, b):
+		return csiState, csiState.parser.execute()
+	}
+
+	return csiState, nil
+}
+
+func (csiState csiParamState) Transition(s state) error {
+	csiState.parser.logf("CsiParam::Transition %s --> %s", csiState.Name(), s.Name())
+	csiState.baseState.Transition(s)
+
+	switch s {
+	case csiState.parser.ground:
+		return csiState.parser.csiDispatch()
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/escape_intermediate_state.go b/vendor/github.com/Azure/go-ansiterm/escape_intermediate_state.go
new file mode 100644
index 0000000000..1c719db9e4
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/escape_intermediate_state.go
@@ -0,0 +1,36 @@
+package ansiterm
+
+type escapeIntermediateState struct {
+	baseState
+}
+
+func (escState escapeIntermediateState) Handle(b byte) (s state, e error) {
+	escState.parser.logf("escapeIntermediateState::Handle %#x", b)
+	nextState, err := escState.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case sliceContains(intermeds, b):
+		return escState, escState.parser.collectInter()
+	case sliceContains(executors, b):
+		return escState, escState.parser.execute()
+	case sliceContains(escapeIntermediateToGroundBytes, b):
+		return escState.parser.ground, nil
+	}
+
+	return escState, nil
+}
+
+func (escState escapeIntermediateState) Transition(s state) error {
+	escState.parser.logf("escapeIntermediateState::Transition %s --> %s", escState.Name(), s.Name())
+	escState.baseState.Transition(s)
+
+	switch s {
+	case escState.parser.ground:
+		return escState.parser.escDispatch()
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/escape_state.go b/vendor/github.com/Azure/go-ansiterm/escape_state.go
new file mode 100644
index 0000000000..6390abd231
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/escape_state.go
@@ -0,0 +1,47 @@
+package ansiterm
+
+type escapeState struct {
+	baseState
+}
+
+func (escState escapeState) Handle(b byte) (s state, e error) {
+	escState.parser.logf("escapeState::Handle %#x", b)
+	nextState, err := escState.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case b == ANSI_ESCAPE_SECONDARY:
+		return escState.parser.csiEntry, nil
+	case b == ANSI_OSC_STRING_ENTRY:
+		return escState.parser.oscString, nil
+	case sliceContains(executors, b):
+		return escState, escState.parser.execute()
+	case sliceContains(escapeToGroundBytes, b):
+		return escState.parser.ground, nil
+	case sliceContains(intermeds, b):
+		return escState.parser.escapeIntermediate, nil
+	}
+
+	return escState, nil
+}
+
+func (escState escapeState) Transition(s state) error {
+	escState.parser.logf("Escape::Transition %s --> %s", escState.Name(), s.Name())
+	escState.baseState.Transition(s)
+
+	switch s {
+	case escState.parser.ground:
+		return escState.parser.escDispatch()
+	case escState.parser.escapeIntermediate:
+		return escState.parser.collectInter()
+	}
+
+	return nil
+}
+
+func (escState escapeState) Enter() error {
+	escState.parser.clear()
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/event_handler.go b/vendor/github.com/Azure/go-ansiterm/event_handler.go
new file mode 100644
index 0000000000..98087b38c2
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/event_handler.go
@@ -0,0 +1,90 @@
+package ansiterm
+
+type AnsiEventHandler interface {
+	// Print
+	Print(b byte) error
+
+	// Execute C0 commands
+	Execute(b byte) error
+
+	// CUrsor Up
+	CUU(int) error
+
+	// CUrsor Down
+	CUD(int) error
+
+	// CUrsor Forward
+	CUF(int) error
+
+	// CUrsor Backward
+	CUB(int) error
+
+	// Cursor to Next Line
+	CNL(int) error
+
+	// Cursor to Previous Line
+	CPL(int) error
+
+	// Cursor Horizontal position Absolute
+	CHA(int) error
+
+	// Vertical line Position Absolute
+	VPA(int) error
+
+	// CUrsor Position
+	CUP(int, int) error
+
+	// Horizontal and Vertical Position (depends on PUM)
+	HVP(int, int) error
+
+	// Text Cursor Enable Mode
+	DECTCEM(bool) error
+
+	// Origin Mode
+	DECOM(bool) error
+
+	// 132 Column Mode
+	DECCOLM(bool) error
+
+	// Erase in Display
+	ED(int) error
+
+	// Erase in Line
+	EL(int) error
+
+	// Insert Line
+	IL(int) error
+
+	// Delete Line
+	DL(int) error
+
+	// Insert Character
+	ICH(int) error
+
+	// Delete Character
+	DCH(int) error
+
+	// Set Graphics Rendition
+	SGR([]int) error
+
+	// Pan Down
+	SU(int) error
+
+	// Pan Up
+	SD(int) error
+
+	// Device Attributes
+	DA([]string) error
+
+	// Set Top and Bottom Margins
+	DECSTBM(int, int) error
+
+	// Index
+	IND() error
+
+	// Reverse Index
+	RI() error
+
+	// Flush updates from previous commands
+	Flush() error
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/ground_state.go b/vendor/github.com/Azure/go-ansiterm/ground_state.go
new file mode 100644
index 0000000000..52451e9469
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/ground_state.go
@@ -0,0 +1,24 @@
+package ansiterm
+
+type groundState struct {
+	baseState
+}
+
+func (gs groundState) Handle(b byte) (s state, e error) {
+	gs.parser.context.currentChar = b
+
+	nextState, err := gs.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case sliceContains(printables, b):
+		return gs, gs.parser.print()
+
+	case sliceContains(executors, b):
+		return gs, gs.parser.execute()
+	}
+
+	return gs, nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/osc_string_state.go b/vendor/github.com/Azure/go-ansiterm/osc_string_state.go
new file mode 100644
index 0000000000..593b10ab69
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/osc_string_state.go
@@ -0,0 +1,31 @@
+package ansiterm
+
+type oscStringState struct {
+	baseState
+}
+
+func (oscState oscStringState) Handle(b byte) (s state, e error) {
+	oscState.parser.logf("OscString::Handle %#x", b)
+	nextState, err := oscState.baseState.Handle(b)
+	if nextState != nil || err != nil {
+		return nextState, err
+	}
+
+	switch {
+	case isOscStringTerminator(b):
+		return oscState.parser.ground, nil
+	}
+
+	return oscState, nil
+}
+
+// See below for OSC string terminators for linux
+// http://man7.org/linux/man-pages/man4/console_codes.4.html
+func isOscStringTerminator(b byte) bool {
+
+	if b == ANSI_BEL || b == 0x5C {
+		return true
+	}
+
+	return false
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/parser.go b/vendor/github.com/Azure/go-ansiterm/parser.go
new file mode 100644
index 0000000000..03cec7ada6
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/parser.go
@@ -0,0 +1,151 @@
+package ansiterm
+
+import (
+	"errors"
+	"log"
+	"os"
+)
+
+type AnsiParser struct {
+	currState          state
+	eventHandler       AnsiEventHandler
+	context            *ansiContext
+	csiEntry           state
+	csiParam           state
+	dcsEntry           state
+	escape             state
+	escapeIntermediate state
+	error              state
+	ground             state
+	oscString          state
+	stateMap           []state
+
+	logf func(string, ...interface{})
+}
+
+type Option func(*AnsiParser)
+
+func WithLogf(f func(string, ...interface{})) Option {
+	return func(ap *AnsiParser) {
+		ap.logf = f
+	}
+}
+
+func CreateParser(initialState string, evtHandler AnsiEventHandler, opts ...Option) *AnsiParser {
+	ap := &AnsiParser{
+		eventHandler: evtHandler,
+		context:      &ansiContext{},
+	}
+	for _, o := range opts {
+		o(ap)
+	}
+
+	if isDebugEnv := os.Getenv(LogEnv); isDebugEnv == "1" {
+		logFile, _ := os.Create("ansiParser.log")
+		logger := log.New(logFile, "", log.LstdFlags)
+		if ap.logf != nil {
+			l := ap.logf
+			ap.logf = func(s string, v ...interface{}) {
+				l(s, v...)
+				logger.Printf(s, v...)
+			}
+		} else {
+			ap.logf = logger.Printf
+		}
+	}
+
+	if ap.logf == nil {
+		ap.logf = func(string, ...interface{}) {}
+	}
+
+	ap.csiEntry = csiEntryState{baseState{name: "CsiEntry", parser: ap}}
+	ap.csiParam = csiParamState{baseState{name: "CsiParam", parser: ap}}
+	ap.dcsEntry = dcsEntryState{baseState{name: "DcsEntry", parser: ap}}
+	ap.escape = escapeState{baseState{name: "Escape", parser: ap}}
+	ap.escapeIntermediate = escapeIntermediateState{baseState{name: "EscapeIntermediate", parser: ap}}
+	ap.error = errorState{baseState{name: "Error", parser: ap}}
+	ap.ground = groundState{baseState{name: "Ground", parser: ap}}
+	ap.oscString = oscStringState{baseState{name: "OscString", parser: ap}}
+
+	ap.stateMap = []state{
+		ap.csiEntry,
+		ap.csiParam,
+		ap.dcsEntry,
+		ap.escape,
+		ap.escapeIntermediate,
+		ap.error,
+		ap.ground,
+		ap.oscString,
+	}
+
+	ap.currState = getState(initialState, ap.stateMap)
+
+	ap.logf("CreateParser: parser %p", ap)
+	return ap
+}
+
+func getState(name string, states []state) state {
+	for _, el := range states {
+		if el.Name() == name {
+			return el
+		}
+	}
+
+	return nil
+}
+
+func (ap *AnsiParser) Parse(bytes []byte) (int, error) {
+	for i, b := range bytes {
+		if err := ap.handle(b); err != nil {
+			return i, err
+		}
+	}
+
+	return len(bytes), ap.eventHandler.Flush()
+}
+
+func (ap *AnsiParser) handle(b byte) error {
+	ap.context.currentChar = b
+	newState, err := ap.currState.Handle(b)
+	if err != nil {
+		return err
+	}
+
+	if newState == nil {
+		ap.logf("WARNING: newState is nil")
+		return errors.New("New state of 'nil' is invalid.")
+	}
+
+	if newState != ap.currState {
+		if err := ap.changeState(newState); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (ap *AnsiParser) changeState(newState state) error {
+	ap.logf("ChangeState %s --> %s", ap.currState.Name(), newState.Name())
+
+	// Exit old state
+	if err := ap.currState.Exit(); err != nil {
+		ap.logf("Exit state '%s' failed with : '%v'", ap.currState.Name(), err)
+		return err
+	}
+
+	// Perform transition action
+	if err := ap.currState.Transition(newState); err != nil {
+		ap.logf("Transition from '%s' to '%s' failed with: '%v'", ap.currState.Name(), newState.Name, err)
+		return err
+	}
+
+	// Enter new state
+	if err := newState.Enter(); err != nil {
+		ap.logf("Enter state '%s' failed with: '%v'", newState.Name(), err)
+		return err
+	}
+
+	ap.currState = newState
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/parser_action_helpers.go b/vendor/github.com/Azure/go-ansiterm/parser_action_helpers.go
new file mode 100644
index 0000000000..de0a1f9cde
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/parser_action_helpers.go
@@ -0,0 +1,99 @@
+package ansiterm
+
+import (
+	"strconv"
+)
+
+func parseParams(bytes []byte) ([]string, error) {
+	paramBuff := make([]byte, 0, 0)
+	params := []string{}
+
+	for _, v := range bytes {
+		if v == ';' {
+			if len(paramBuff) > 0 {
+				// Completed parameter, append it to the list
+				s := string(paramBuff)
+				params = append(params, s)
+				paramBuff = make([]byte, 0, 0)
+			}
+		} else {
+			paramBuff = append(paramBuff, v)
+		}
+	}
+
+	// Last parameter may not be terminated with ';'
+	if len(paramBuff) > 0 {
+		s := string(paramBuff)
+		params = append(params, s)
+	}
+
+	return params, nil
+}
+
+func parseCmd(context ansiContext) (string, error) {
+	return string(context.currentChar), nil
+}
+
+func getInt(params []string, dflt int) int {
+	i := getInts(params, 1, dflt)[0]
+	return i
+}
+
+func getInts(params []string, minCount int, dflt int) []int {
+	ints := []int{}
+
+	for _, v := range params {
+		i, _ := strconv.Atoi(v)
+		// Zero is mapped to the default value in VT100.
+		if i == 0 {
+			i = dflt
+		}
+		ints = append(ints, i)
+	}
+
+	if len(ints) < minCount {
+		remaining := minCount - len(ints)
+		for i := 0; i < remaining; i++ {
+			ints = append(ints, dflt)
+		}
+	}
+
+	return ints
+}
+
+func (ap *AnsiParser) modeDispatch(param string, set bool) error {
+	switch param {
+	case "?3":
+		return ap.eventHandler.DECCOLM(set)
+	case "?6":
+		return ap.eventHandler.DECOM(set)
+	case "?25":
+		return ap.eventHandler.DECTCEM(set)
+	}
+	return nil
+}
+
+func (ap *AnsiParser) hDispatch(params []string) error {
+	if len(params) == 1 {
+		return ap.modeDispatch(params[0], true)
+	}
+
+	return nil
+}
+
+func (ap *AnsiParser) lDispatch(params []string) error {
+	if len(params) == 1 {
+		return ap.modeDispatch(params[0], false)
+	}
+
+	return nil
+}
+
+func getEraseParam(params []string) int {
+	param := getInt(params, 0)
+	if param < 0 || 3 < param {
+		param = 0
+	}
+
+	return param
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/parser_actions.go b/vendor/github.com/Azure/go-ansiterm/parser_actions.go
new file mode 100644
index 0000000000..0bb5e51e9a
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/parser_actions.go
@@ -0,0 +1,119 @@
+package ansiterm
+
+func (ap *AnsiParser) collectParam() error {
+	currChar := ap.context.currentChar
+	ap.logf("collectParam %#x", currChar)
+	ap.context.paramBuffer = append(ap.context.paramBuffer, currChar)
+	return nil
+}
+
+func (ap *AnsiParser) collectInter() error {
+	currChar := ap.context.currentChar
+	ap.logf("collectInter %#x", currChar)
+	ap.context.paramBuffer = append(ap.context.interBuffer, currChar)
+	return nil
+}
+
+func (ap *AnsiParser) escDispatch() error {
+	cmd, _ := parseCmd(*ap.context)
+	intermeds := ap.context.interBuffer
+	ap.logf("escDispatch currentChar: %#x", ap.context.currentChar)
+	ap.logf("escDispatch: %v(%v)", cmd, intermeds)
+
+	switch cmd {
+	case "D": // IND
+		return ap.eventHandler.IND()
+	case "E": // NEL, equivalent to CRLF
+		err := ap.eventHandler.Execute(ANSI_CARRIAGE_RETURN)
+		if err == nil {
+			err = ap.eventHandler.Execute(ANSI_LINE_FEED)
+		}
+		return err
+	case "M": // RI
+		return ap.eventHandler.RI()
+	}
+
+	return nil
+}
+
+func (ap *AnsiParser) csiDispatch() error {
+	cmd, _ := parseCmd(*ap.context)
+	params, _ := parseParams(ap.context.paramBuffer)
+	ap.logf("Parsed params: %v with length: %d", params, len(params))
+
+	ap.logf("csiDispatch: %v(%v)", cmd, params)
+
+	switch cmd {
+	case "@":
+		return ap.eventHandler.ICH(getInt(params, 1))
+	case "A":
+		return ap.eventHandler.CUU(getInt(params, 1))
+	case "B":
+		return ap.eventHandler.CUD(getInt(params, 1))
+	case "C":
+		return ap.eventHandler.CUF(getInt(params, 1))
+	case "D":
+		return ap.eventHandler.CUB(getInt(params, 1))
+	case "E":
+		return ap.eventHandler.CNL(getInt(params, 1))
+	case "F":
+		return ap.eventHandler.CPL(getInt(params, 1))
+	case "G":
+		return ap.eventHandler.CHA(getInt(params, 1))
+	case "H":
+		ints := getInts(params, 2, 1)
+		x, y := ints[0], ints[1]
+		return ap.eventHandler.CUP(x, y)
+	case "J":
+		param := getEraseParam(params)
+		return ap.eventHandler.ED(param)
+	case "K":
+		param := getEraseParam(params)
+		return ap.eventHandler.EL(param)
+	case "L":
+		return ap.eventHandler.IL(getInt(params, 1))
+	case "M":
+		return ap.eventHandler.DL(getInt(params, 1))
+	case "P":
+		return ap.eventHandler.DCH(getInt(params, 1))
+	case "S":
+		return ap.eventHandler.SU(getInt(params, 1))
+	case "T":
+		return ap.eventHandler.SD(getInt(params, 1))
+	case "c":
+		return ap.eventHandler.DA(params)
+	case "d":
+		return ap.eventHandler.VPA(getInt(params, 1))
+	case "f":
+		ints := getInts(params, 2, 1)
+		x, y := ints[0], ints[1]
+		return ap.eventHandler.HVP(x, y)
+	case "h":
+		return ap.hDispatch(params)
+	case "l":
+		return ap.lDispatch(params)
+	case "m":
+		return ap.eventHandler.SGR(getInts(params, 1, 0))
+	case "r":
+		ints := getInts(params, 2, 1)
+		top, bottom := ints[0], ints[1]
+		return ap.eventHandler.DECSTBM(top, bottom)
+	default:
+		ap.logf("ERROR: Unsupported CSI command: '%s', with full context:  %v", cmd, ap.context)
+		return nil
+	}
+
+}
+
+func (ap *AnsiParser) print() error {
+	return ap.eventHandler.Print(ap.context.currentChar)
+}
+
+func (ap *AnsiParser) clear() error {
+	ap.context = &ansiContext{}
+	return nil
+}
+
+func (ap *AnsiParser) execute() error {
+	return ap.eventHandler.Execute(ap.context.currentChar)
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/states.go b/vendor/github.com/Azure/go-ansiterm/states.go
new file mode 100644
index 0000000000..f2ea1fcd12
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/states.go
@@ -0,0 +1,71 @@
+package ansiterm
+
+type stateID int
+
+type state interface {
+	Enter() error
+	Exit() error
+	Handle(byte) (state, error)
+	Name() string
+	Transition(state) error
+}
+
+type baseState struct {
+	name   string
+	parser *AnsiParser
+}
+
+func (base baseState) Enter() error {
+	return nil
+}
+
+func (base baseState) Exit() error {
+	return nil
+}
+
+func (base baseState) Handle(b byte) (s state, e error) {
+
+	switch {
+	case b == CSI_ENTRY:
+		return base.parser.csiEntry, nil
+	case b == DCS_ENTRY:
+		return base.parser.dcsEntry, nil
+	case b == ANSI_ESCAPE_PRIMARY:
+		return base.parser.escape, nil
+	case b == OSC_STRING:
+		return base.parser.oscString, nil
+	case sliceContains(toGroundBytes, b):
+		return base.parser.ground, nil
+	}
+
+	return nil, nil
+}
+
+func (base baseState) Name() string {
+	return base.name
+}
+
+func (base baseState) Transition(s state) error {
+	if s == base.parser.ground {
+		execBytes := []byte{0x18}
+		execBytes = append(execBytes, 0x1A)
+		execBytes = append(execBytes, getByteRange(0x80, 0x8F)...)
+		execBytes = append(execBytes, getByteRange(0x91, 0x97)...)
+		execBytes = append(execBytes, 0x99)
+		execBytes = append(execBytes, 0x9A)
+
+		if sliceContains(execBytes, base.parser.context.currentChar) {
+			return base.parser.execute()
+		}
+	}
+
+	return nil
+}
+
+type dcsEntryState struct {
+	baseState
+}
+
+type errorState struct {
+	baseState
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/utilities.go b/vendor/github.com/Azure/go-ansiterm/utilities.go
new file mode 100644
index 0000000000..392114493a
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/utilities.go
@@ -0,0 +1,21 @@
+package ansiterm
+
+import (
+	"strconv"
+)
+
+func sliceContains(bytes []byte, b byte) bool {
+	for _, v := range bytes {
+		if v == b {
+			return true
+		}
+	}
+
+	return false
+}
+
+func convertBytesToInteger(bytes []byte) int {
+	s := string(bytes)
+	i, _ := strconv.Atoi(s)
+	return i
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/ansi.go b/vendor/github.com/Azure/go-ansiterm/winterm/ansi.go
new file mode 100644
index 0000000000..a673279726
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/ansi.go
@@ -0,0 +1,182 @@
+// +build windows
+
+package winterm
+
+import (
+	"fmt"
+	"os"
+	"strconv"
+	"strings"
+	"syscall"
+
+	"github.com/Azure/go-ansiterm"
+)
+
+// Windows keyboard constants
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/dd375731(v=vs.85).aspx.
+const (
+	VK_PRIOR    = 0x21 // PAGE UP key
+	VK_NEXT     = 0x22 // PAGE DOWN key
+	VK_END      = 0x23 // END key
+	VK_HOME     = 0x24 // HOME key
+	VK_LEFT     = 0x25 // LEFT ARROW key
+	VK_UP       = 0x26 // UP ARROW key
+	VK_RIGHT    = 0x27 // RIGHT ARROW key
+	VK_DOWN     = 0x28 // DOWN ARROW key
+	VK_SELECT   = 0x29 // SELECT key
+	VK_PRINT    = 0x2A // PRINT key
+	VK_EXECUTE  = 0x2B // EXECUTE key
+	VK_SNAPSHOT = 0x2C // PRINT SCREEN key
+	VK_INSERT   = 0x2D // INS key
+	VK_DELETE   = 0x2E // DEL key
+	VK_HELP     = 0x2F // HELP key
+	VK_F1       = 0x70 // F1 key
+	VK_F2       = 0x71 // F2 key
+	VK_F3       = 0x72 // F3 key
+	VK_F4       = 0x73 // F4 key
+	VK_F5       = 0x74 // F5 key
+	VK_F6       = 0x75 // F6 key
+	VK_F7       = 0x76 // F7 key
+	VK_F8       = 0x77 // F8 key
+	VK_F9       = 0x78 // F9 key
+	VK_F10      = 0x79 // F10 key
+	VK_F11      = 0x7A // F11 key
+	VK_F12      = 0x7B // F12 key
+
+	RIGHT_ALT_PRESSED  = 0x0001
+	LEFT_ALT_PRESSED   = 0x0002
+	RIGHT_CTRL_PRESSED = 0x0004
+	LEFT_CTRL_PRESSED  = 0x0008
+	SHIFT_PRESSED      = 0x0010
+	NUMLOCK_ON         = 0x0020
+	SCROLLLOCK_ON      = 0x0040
+	CAPSLOCK_ON        = 0x0080
+	ENHANCED_KEY       = 0x0100
+)
+
+type ansiCommand struct {
+	CommandBytes []byte
+	Command      string
+	Parameters   []string
+	IsSpecial    bool
+}
+
+func newAnsiCommand(command []byte) *ansiCommand {
+
+	if isCharacterSelectionCmdChar(command[1]) {
+		// Is Character Set Selection commands
+		return &ansiCommand{
+			CommandBytes: command,
+			Command:      string(command),
+			IsSpecial:    true,
+		}
+	}
+
+	// last char is command character
+	lastCharIndex := len(command) - 1
+
+	ac := &ansiCommand{
+		CommandBytes: command,
+		Command:      string(command[lastCharIndex]),
+		IsSpecial:    false,
+	}
+
+	// more than a single escape
+	if lastCharIndex != 0 {
+		start := 1
+		// skip if double char escape sequence
+		if command[0] == ansiterm.ANSI_ESCAPE_PRIMARY && command[1] == ansiterm.ANSI_ESCAPE_SECONDARY {
+			start++
+		}
+		// convert this to GetNextParam method
+		ac.Parameters = strings.Split(string(command[start:lastCharIndex]), ansiterm.ANSI_PARAMETER_SEP)
+	}
+
+	return ac
+}
+
+func (ac *ansiCommand) paramAsSHORT(index int, defaultValue int16) int16 {
+	if index < 0 || index >= len(ac.Parameters) {
+		return defaultValue
+	}
+
+	param, err := strconv.ParseInt(ac.Parameters[index], 10, 16)
+	if err != nil {
+		return defaultValue
+	}
+
+	return int16(param)
+}
+
+func (ac *ansiCommand) String() string {
+	return fmt.Sprintf("0x%v \"%v\" (\"%v\")",
+		bytesToHex(ac.CommandBytes),
+		ac.Command,
+		strings.Join(ac.Parameters, "\",\""))
+}
+
+// isAnsiCommandChar returns true if the passed byte falls within the range of ANSI commands.
+// See http://manpages.ubuntu.com/manpages/intrepid/man4/console_codes.4.html.
+func isAnsiCommandChar(b byte) bool {
+	switch {
+	case ansiterm.ANSI_COMMAND_FIRST <= b && b <= ansiterm.ANSI_COMMAND_LAST && b != ansiterm.ANSI_ESCAPE_SECONDARY:
+		return true
+	case b == ansiterm.ANSI_CMD_G1 || b == ansiterm.ANSI_CMD_OSC || b == ansiterm.ANSI_CMD_DECPAM || b == ansiterm.ANSI_CMD_DECPNM:
+		// non-CSI escape sequence terminator
+		return true
+	case b == ansiterm.ANSI_CMD_STR_TERM || b == ansiterm.ANSI_BEL:
+		// String escape sequence terminator
+		return true
+	}
+	return false
+}
+
+func isXtermOscSequence(command []byte, current byte) bool {
+	return (len(command) >= 2 && command[0] == ansiterm.ANSI_ESCAPE_PRIMARY && command[1] == ansiterm.ANSI_CMD_OSC && current != ansiterm.ANSI_BEL)
+}
+
+func isCharacterSelectionCmdChar(b byte) bool {
+	return (b == ansiterm.ANSI_CMD_G0 || b == ansiterm.ANSI_CMD_G1 || b == ansiterm.ANSI_CMD_G2 || b == ansiterm.ANSI_CMD_G3)
+}
+
+// bytesToHex converts a slice of bytes to a human-readable string.
+func bytesToHex(b []byte) string {
+	hex := make([]string, len(b))
+	for i, ch := range b {
+		hex[i] = fmt.Sprintf("%X", ch)
+	}
+	return strings.Join(hex, "")
+}
+
+// ensureInRange adjusts the passed value, if necessary, to ensure it is within
+// the passed min / max range.
+func ensureInRange(n int16, min int16, max int16) int16 {
+	if n < min {
+		return min
+	} else if n > max {
+		return max
+	} else {
+		return n
+	}
+}
+
+func GetStdFile(nFile int) (*os.File, uintptr) {
+	var file *os.File
+	switch nFile {
+	case syscall.STD_INPUT_HANDLE:
+		file = os.Stdin
+	case syscall.STD_OUTPUT_HANDLE:
+		file = os.Stdout
+	case syscall.STD_ERROR_HANDLE:
+		file = os.Stderr
+	default:
+		panic(fmt.Errorf("Invalid standard handle identifier: %v", nFile))
+	}
+
+	fd, err := syscall.GetStdHandle(nFile)
+	if err != nil {
+		panic(fmt.Errorf("Invalid standard handle identifier: %v -- %v", nFile, err))
+	}
+
+	return file, uintptr(fd)
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/api.go b/vendor/github.com/Azure/go-ansiterm/winterm/api.go
new file mode 100644
index 0000000000..6055e33b91
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/api.go
@@ -0,0 +1,327 @@
+// +build windows
+
+package winterm
+
+import (
+	"fmt"
+	"syscall"
+	"unsafe"
+)
+
+//===========================================================================================================
+// IMPORTANT NOTE:
+//
+//	The methods below make extensive use of the "unsafe" package to obtain the required pointers.
+//	Beginning in Go 1.3, the garbage collector may release local variables (e.g., incoming arguments, stack
+//	variables) the pointers reference *before* the API completes.
+//
+//  As a result, in those cases, the code must hint that the variables remain in active by invoking the
+//	dummy method "use" (see below). Newer versions of Go are planned to change the mechanism to no longer
+//	require unsafe pointers.
+//
+//	If you add or modify methods, ENSURE protection of local variables through the "use" builtin to inform
+//	the garbage collector the variables remain in use if:
+//
+//	-- The value is not a pointer (e.g., int32, struct)
+//	-- The value is not referenced by the method after passing the pointer to Windows
+//
+//	See http://golang.org/doc/go1.3.
+//===========================================================================================================
+
+var (
+	kernel32DLL = syscall.NewLazyDLL("kernel32.dll")
+
+	getConsoleCursorInfoProc       = kernel32DLL.NewProc("GetConsoleCursorInfo")
+	setConsoleCursorInfoProc       = kernel32DLL.NewProc("SetConsoleCursorInfo")
+	setConsoleCursorPositionProc   = kernel32DLL.NewProc("SetConsoleCursorPosition")
+	setConsoleModeProc             = kernel32DLL.NewProc("SetConsoleMode")
+	getConsoleScreenBufferInfoProc = kernel32DLL.NewProc("GetConsoleScreenBufferInfo")
+	setConsoleScreenBufferSizeProc = kernel32DLL.NewProc("SetConsoleScreenBufferSize")
+	scrollConsoleScreenBufferProc  = kernel32DLL.NewProc("ScrollConsoleScreenBufferA")
+	setConsoleTextAttributeProc    = kernel32DLL.NewProc("SetConsoleTextAttribute")
+	setConsoleWindowInfoProc       = kernel32DLL.NewProc("SetConsoleWindowInfo")
+	writeConsoleOutputProc         = kernel32DLL.NewProc("WriteConsoleOutputW")
+	readConsoleInputProc           = kernel32DLL.NewProc("ReadConsoleInputW")
+	waitForSingleObjectProc        = kernel32DLL.NewProc("WaitForSingleObject")
+)
+
+// Windows Console constants
+const (
+	// Console modes
+	// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms686033(v=vs.85).aspx.
+	ENABLE_PROCESSED_INPUT        = 0x0001
+	ENABLE_LINE_INPUT             = 0x0002
+	ENABLE_ECHO_INPUT             = 0x0004
+	ENABLE_WINDOW_INPUT           = 0x0008
+	ENABLE_MOUSE_INPUT            = 0x0010
+	ENABLE_INSERT_MODE            = 0x0020
+	ENABLE_QUICK_EDIT_MODE        = 0x0040
+	ENABLE_EXTENDED_FLAGS         = 0x0080
+	ENABLE_AUTO_POSITION          = 0x0100
+	ENABLE_VIRTUAL_TERMINAL_INPUT = 0x0200
+
+	ENABLE_PROCESSED_OUTPUT            = 0x0001
+	ENABLE_WRAP_AT_EOL_OUTPUT          = 0x0002
+	ENABLE_VIRTUAL_TERMINAL_PROCESSING = 0x0004
+	DISABLE_NEWLINE_AUTO_RETURN        = 0x0008
+	ENABLE_LVB_GRID_WORLDWIDE          = 0x0010
+
+	// Character attributes
+	// Note:
+	// -- The attributes are combined to produce various colors (e.g., Blue + Green will create Cyan).
+	//    Clearing all foreground or background colors results in black; setting all creates white.
+	// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms682088(v=vs.85).aspx#_win32_character_attributes.
+	FOREGROUND_BLUE      uint16 = 0x0001
+	FOREGROUND_GREEN     uint16 = 0x0002
+	FOREGROUND_RED       uint16 = 0x0004
+	FOREGROUND_INTENSITY uint16 = 0x0008
+	FOREGROUND_MASK      uint16 = 0x000F
+
+	BACKGROUND_BLUE      uint16 = 0x0010
+	BACKGROUND_GREEN     uint16 = 0x0020
+	BACKGROUND_RED       uint16 = 0x0040
+	BACKGROUND_INTENSITY uint16 = 0x0080
+	BACKGROUND_MASK      uint16 = 0x00F0
+
+	COMMON_LVB_MASK          uint16 = 0xFF00
+	COMMON_LVB_REVERSE_VIDEO uint16 = 0x4000
+	COMMON_LVB_UNDERSCORE    uint16 = 0x8000
+
+	// Input event types
+	// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms683499(v=vs.85).aspx.
+	KEY_EVENT                = 0x0001
+	MOUSE_EVENT              = 0x0002
+	WINDOW_BUFFER_SIZE_EVENT = 0x0004
+	MENU_EVENT               = 0x0008
+	FOCUS_EVENT              = 0x0010
+
+	// WaitForSingleObject return codes
+	WAIT_ABANDONED = 0x00000080
+	WAIT_FAILED    = 0xFFFFFFFF
+	WAIT_SIGNALED  = 0x0000000
+	WAIT_TIMEOUT   = 0x00000102
+
+	// WaitForSingleObject wait duration
+	WAIT_INFINITE       = 0xFFFFFFFF
+	WAIT_ONE_SECOND     = 1000
+	WAIT_HALF_SECOND    = 500
+	WAIT_QUARTER_SECOND = 250
+)
+
+// Windows API Console types
+// -- See https://msdn.microsoft.com/en-us/library/windows/desktop/ms682101(v=vs.85).aspx for Console specific types (e.g., COORD)
+// -- See https://msdn.microsoft.com/en-us/library/aa296569(v=vs.60).aspx for comments on alignment
+type (
+	CHAR_INFO struct {
+		UnicodeChar uint16
+		Attributes  uint16
+	}
+
+	CONSOLE_CURSOR_INFO struct {
+		Size    uint32
+		Visible int32
+	}
+
+	CONSOLE_SCREEN_BUFFER_INFO struct {
+		Size              COORD
+		CursorPosition    COORD
+		Attributes        uint16
+		Window            SMALL_RECT
+		MaximumWindowSize COORD
+	}
+
+	COORD struct {
+		X int16
+		Y int16
+	}
+
+	SMALL_RECT struct {
+		Left   int16
+		Top    int16
+		Right  int16
+		Bottom int16
+	}
+
+	// INPUT_RECORD is a C/C++ union of which KEY_EVENT_RECORD is one case, it is also the largest
+	// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms683499(v=vs.85).aspx.
+	INPUT_RECORD struct {
+		EventType uint16
+		KeyEvent  KEY_EVENT_RECORD
+	}
+
+	KEY_EVENT_RECORD struct {
+		KeyDown         int32
+		RepeatCount     uint16
+		VirtualKeyCode  uint16
+		VirtualScanCode uint16
+		UnicodeChar     uint16
+		ControlKeyState uint32
+	}
+
+	WINDOW_BUFFER_SIZE struct {
+		Size COORD
+	}
+)
+
+// boolToBOOL converts a Go bool into a Windows int32.
+func boolToBOOL(f bool) int32 {
+	if f {
+		return int32(1)
+	} else {
+		return int32(0)
+	}
+}
+
+// GetConsoleCursorInfo retrieves information about the size and visiblity of the console cursor.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms683163(v=vs.85).aspx.
+func GetConsoleCursorInfo(handle uintptr, cursorInfo *CONSOLE_CURSOR_INFO) error {
+	r1, r2, err := getConsoleCursorInfoProc.Call(handle, uintptr(unsafe.Pointer(cursorInfo)), 0)
+	return checkError(r1, r2, err)
+}
+
+// SetConsoleCursorInfo sets the size and visiblity of the console cursor.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms686019(v=vs.85).aspx.
+func SetConsoleCursorInfo(handle uintptr, cursorInfo *CONSOLE_CURSOR_INFO) error {
+	r1, r2, err := setConsoleCursorInfoProc.Call(handle, uintptr(unsafe.Pointer(cursorInfo)), 0)
+	return checkError(r1, r2, err)
+}
+
+// SetConsoleCursorPosition location of the console cursor.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms686025(v=vs.85).aspx.
+func SetConsoleCursorPosition(handle uintptr, coord COORD) error {
+	r1, r2, err := setConsoleCursorPositionProc.Call(handle, coordToPointer(coord))
+	use(coord)
+	return checkError(r1, r2, err)
+}
+
+// GetConsoleMode gets the console mode for given file descriptor
+// See http://msdn.microsoft.com/en-us/library/windows/desktop/ms683167(v=vs.85).aspx.
+func GetConsoleMode(handle uintptr) (mode uint32, err error) {
+	err = syscall.GetConsoleMode(syscall.Handle(handle), &mode)
+	return mode, err
+}
+
+// SetConsoleMode sets the console mode for given file descriptor
+// See http://msdn.microsoft.com/en-us/library/windows/desktop/ms686033(v=vs.85).aspx.
+func SetConsoleMode(handle uintptr, mode uint32) error {
+	r1, r2, err := setConsoleModeProc.Call(handle, uintptr(mode), 0)
+	use(mode)
+	return checkError(r1, r2, err)
+}
+
+// GetConsoleScreenBufferInfo retrieves information about the specified console screen buffer.
+// See http://msdn.microsoft.com/en-us/library/windows/desktop/ms683171(v=vs.85).aspx.
+func GetConsoleScreenBufferInfo(handle uintptr) (*CONSOLE_SCREEN_BUFFER_INFO, error) {
+	info := CONSOLE_SCREEN_BUFFER_INFO{}
+	err := checkError(getConsoleScreenBufferInfoProc.Call(handle, uintptr(unsafe.Pointer(&info)), 0))
+	if err != nil {
+		return nil, err
+	}
+	return &info, nil
+}
+
+func ScrollConsoleScreenBuffer(handle uintptr, scrollRect SMALL_RECT, clipRect SMALL_RECT, destOrigin COORD, char CHAR_INFO) error {
+	r1, r2, err := scrollConsoleScreenBufferProc.Call(handle, uintptr(unsafe.Pointer(&scrollRect)), uintptr(unsafe.Pointer(&clipRect)), coordToPointer(destOrigin), uintptr(unsafe.Pointer(&char)))
+	use(scrollRect)
+	use(clipRect)
+	use(destOrigin)
+	use(char)
+	return checkError(r1, r2, err)
+}
+
+// SetConsoleScreenBufferSize sets the size of the console screen buffer.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms686044(v=vs.85).aspx.
+func SetConsoleScreenBufferSize(handle uintptr, coord COORD) error {
+	r1, r2, err := setConsoleScreenBufferSizeProc.Call(handle, coordToPointer(coord))
+	use(coord)
+	return checkError(r1, r2, err)
+}
+
+// SetConsoleTextAttribute sets the attributes of characters written to the
+// console screen buffer by the WriteFile or WriteConsole function.
+// See http://msdn.microsoft.com/en-us/library/windows/desktop/ms686047(v=vs.85).aspx.
+func SetConsoleTextAttribute(handle uintptr, attribute uint16) error {
+	r1, r2, err := setConsoleTextAttributeProc.Call(handle, uintptr(attribute), 0)
+	use(attribute)
+	return checkError(r1, r2, err)
+}
+
+// SetConsoleWindowInfo sets the size and position of the console screen buffer's window.
+// Note that the size and location must be within and no larger than the backing console screen buffer.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms686125(v=vs.85).aspx.
+func SetConsoleWindowInfo(handle uintptr, isAbsolute bool, rect SMALL_RECT) error {
+	r1, r2, err := setConsoleWindowInfoProc.Call(handle, uintptr(boolToBOOL(isAbsolute)), uintptr(unsafe.Pointer(&rect)))
+	use(isAbsolute)
+	use(rect)
+	return checkError(r1, r2, err)
+}
+
+// WriteConsoleOutput writes the CHAR_INFOs from the provided buffer to the active console buffer.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms687404(v=vs.85).aspx.
+func WriteConsoleOutput(handle uintptr, buffer []CHAR_INFO, bufferSize COORD, bufferCoord COORD, writeRegion *SMALL_RECT) error {
+	r1, r2, err := writeConsoleOutputProc.Call(handle, uintptr(unsafe.Pointer(&buffer[0])), coordToPointer(bufferSize), coordToPointer(bufferCoord), uintptr(unsafe.Pointer(writeRegion)))
+	use(buffer)
+	use(bufferSize)
+	use(bufferCoord)
+	return checkError(r1, r2, err)
+}
+
+// ReadConsoleInput reads (and removes) data from the console input buffer.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms684961(v=vs.85).aspx.
+func ReadConsoleInput(handle uintptr, buffer []INPUT_RECORD, count *uint32) error {
+	r1, r2, err := readConsoleInputProc.Call(handle, uintptr(unsafe.Pointer(&buffer[0])), uintptr(len(buffer)), uintptr(unsafe.Pointer(count)))
+	use(buffer)
+	return checkError(r1, r2, err)
+}
+
+// WaitForSingleObject waits for the passed handle to be signaled.
+// It returns true if the handle was signaled; false otherwise.
+// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms687032(v=vs.85).aspx.
+func WaitForSingleObject(handle uintptr, msWait uint32) (bool, error) {
+	r1, _, err := waitForSingleObjectProc.Call(handle, uintptr(uint32(msWait)))
+	switch r1 {
+	case WAIT_ABANDONED, WAIT_TIMEOUT:
+		return false, nil
+	case WAIT_SIGNALED:
+		return true, nil
+	}
+	use(msWait)
+	return false, err
+}
+
+// String helpers
+func (info CONSOLE_SCREEN_BUFFER_INFO) String() string {
+	return fmt.Sprintf("Size(%v) Cursor(%v) Window(%v) Max(%v)", info.Size, info.CursorPosition, info.Window, info.MaximumWindowSize)
+}
+
+func (coord COORD) String() string {
+	return fmt.Sprintf("%v,%v", coord.X, coord.Y)
+}
+
+func (rect SMALL_RECT) String() string {
+	return fmt.Sprintf("(%v,%v),(%v,%v)", rect.Left, rect.Top, rect.Right, rect.Bottom)
+}
+
+// checkError evaluates the results of a Windows API call and returns the error if it failed.
+func checkError(r1, r2 uintptr, err error) error {
+	// Windows APIs return non-zero to indicate success
+	if r1 != 0 {
+		return nil
+	}
+
+	// Return the error if provided, otherwise default to EINVAL
+	if err != nil {
+		return err
+	}
+	return syscall.EINVAL
+}
+
+// coordToPointer converts a COORD into a uintptr (by fooling the type system).
+func coordToPointer(c COORD) uintptr {
+	// Note: This code assumes the two SHORTs are correctly laid out; the "cast" to uint32 is just to get a pointer to pass.
+	return uintptr(*((*uint32)(unsafe.Pointer(&c))))
+}
+
+// use is a no-op, but the compiler cannot see that it is.
+// Calling use(p) ensures that p is kept live until that point.
+func use(p interface{}) {}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/attr_translation.go b/vendor/github.com/Azure/go-ansiterm/winterm/attr_translation.go
new file mode 100644
index 0000000000..cbec8f728f
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/attr_translation.go
@@ -0,0 +1,100 @@
+// +build windows
+
+package winterm
+
+import "github.com/Azure/go-ansiterm"
+
+const (
+	FOREGROUND_COLOR_MASK = FOREGROUND_RED | FOREGROUND_GREEN | FOREGROUND_BLUE
+	BACKGROUND_COLOR_MASK = BACKGROUND_RED | BACKGROUND_GREEN | BACKGROUND_BLUE
+)
+
+// collectAnsiIntoWindowsAttributes modifies the passed Windows text mode flags to reflect the
+// request represented by the passed ANSI mode.
+func collectAnsiIntoWindowsAttributes(windowsMode uint16, inverted bool, baseMode uint16, ansiMode int16) (uint16, bool) {
+	switch ansiMode {
+
+	// Mode styles
+	case ansiterm.ANSI_SGR_BOLD:
+		windowsMode = windowsMode | FOREGROUND_INTENSITY
+
+	case ansiterm.ANSI_SGR_DIM, ansiterm.ANSI_SGR_BOLD_DIM_OFF:
+		windowsMode &^= FOREGROUND_INTENSITY
+
+	case ansiterm.ANSI_SGR_UNDERLINE:
+		windowsMode = windowsMode | COMMON_LVB_UNDERSCORE
+
+	case ansiterm.ANSI_SGR_REVERSE:
+		inverted = true
+
+	case ansiterm.ANSI_SGR_REVERSE_OFF:
+		inverted = false
+
+	case ansiterm.ANSI_SGR_UNDERLINE_OFF:
+		windowsMode &^= COMMON_LVB_UNDERSCORE
+
+		// Foreground colors
+	case ansiterm.ANSI_SGR_FOREGROUND_DEFAULT:
+		windowsMode = (windowsMode &^ FOREGROUND_MASK) | (baseMode & FOREGROUND_MASK)
+
+	case ansiterm.ANSI_SGR_FOREGROUND_BLACK:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK)
+
+	case ansiterm.ANSI_SGR_FOREGROUND_RED:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_RED
+
+	case ansiterm.ANSI_SGR_FOREGROUND_GREEN:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_GREEN
+
+	case ansiterm.ANSI_SGR_FOREGROUND_YELLOW:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_RED | FOREGROUND_GREEN
+
+	case ansiterm.ANSI_SGR_FOREGROUND_BLUE:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_FOREGROUND_MAGENTA:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_RED | FOREGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_FOREGROUND_CYAN:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_GREEN | FOREGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_FOREGROUND_WHITE:
+		windowsMode = (windowsMode &^ FOREGROUND_COLOR_MASK) | FOREGROUND_RED | FOREGROUND_GREEN | FOREGROUND_BLUE
+
+		// Background colors
+	case ansiterm.ANSI_SGR_BACKGROUND_DEFAULT:
+		// Black with no intensity
+		windowsMode = (windowsMode &^ BACKGROUND_MASK) | (baseMode & BACKGROUND_MASK)
+
+	case ansiterm.ANSI_SGR_BACKGROUND_BLACK:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK)
+
+	case ansiterm.ANSI_SGR_BACKGROUND_RED:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_RED
+
+	case ansiterm.ANSI_SGR_BACKGROUND_GREEN:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_GREEN
+
+	case ansiterm.ANSI_SGR_BACKGROUND_YELLOW:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_RED | BACKGROUND_GREEN
+
+	case ansiterm.ANSI_SGR_BACKGROUND_BLUE:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_BACKGROUND_MAGENTA:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_RED | BACKGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_BACKGROUND_CYAN:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_GREEN | BACKGROUND_BLUE
+
+	case ansiterm.ANSI_SGR_BACKGROUND_WHITE:
+		windowsMode = (windowsMode &^ BACKGROUND_COLOR_MASK) | BACKGROUND_RED | BACKGROUND_GREEN | BACKGROUND_BLUE
+	}
+
+	return windowsMode, inverted
+}
+
+// invertAttributes inverts the foreground and background colors of a Windows attributes value
+func invertAttributes(windowsMode uint16) uint16 {
+	return (COMMON_LVB_MASK & windowsMode) | ((FOREGROUND_MASK & windowsMode) << 4) | ((BACKGROUND_MASK & windowsMode) >> 4)
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/cursor_helpers.go b/vendor/github.com/Azure/go-ansiterm/winterm/cursor_helpers.go
new file mode 100644
index 0000000000..3ee06ea728
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/cursor_helpers.go
@@ -0,0 +1,101 @@
+// +build windows
+
+package winterm
+
+const (
+	horizontal = iota
+	vertical
+)
+
+func (h *windowsAnsiEventHandler) getCursorWindow(info *CONSOLE_SCREEN_BUFFER_INFO) SMALL_RECT {
+	if h.originMode {
+		sr := h.effectiveSr(info.Window)
+		return SMALL_RECT{
+			Top:    sr.top,
+			Bottom: sr.bottom,
+			Left:   0,
+			Right:  info.Size.X - 1,
+		}
+	} else {
+		return SMALL_RECT{
+			Top:    info.Window.Top,
+			Bottom: info.Window.Bottom,
+			Left:   0,
+			Right:  info.Size.X - 1,
+		}
+	}
+}
+
+// setCursorPosition sets the cursor to the specified position, bounded to the screen size
+func (h *windowsAnsiEventHandler) setCursorPosition(position COORD, window SMALL_RECT) error {
+	position.X = ensureInRange(position.X, window.Left, window.Right)
+	position.Y = ensureInRange(position.Y, window.Top, window.Bottom)
+	err := SetConsoleCursorPosition(h.fd, position)
+	if err != nil {
+		return err
+	}
+	h.logf("Cursor position set: (%d, %d)", position.X, position.Y)
+	return err
+}
+
+func (h *windowsAnsiEventHandler) moveCursorVertical(param int) error {
+	return h.moveCursor(vertical, param)
+}
+
+func (h *windowsAnsiEventHandler) moveCursorHorizontal(param int) error {
+	return h.moveCursor(horizontal, param)
+}
+
+func (h *windowsAnsiEventHandler) moveCursor(moveMode int, param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	position := info.CursorPosition
+	switch moveMode {
+	case horizontal:
+		position.X += int16(param)
+	case vertical:
+		position.Y += int16(param)
+	}
+
+	if err = h.setCursorPosition(position, h.getCursorWindow(info)); err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) moveCursorLine(param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	position := info.CursorPosition
+	position.X = 0
+	position.Y += int16(param)
+
+	if err = h.setCursorPosition(position, h.getCursorWindow(info)); err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) moveCursorColumn(param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	position := info.CursorPosition
+	position.X = int16(param) - 1
+
+	if err = h.setCursorPosition(position, h.getCursorWindow(info)); err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/erase_helpers.go b/vendor/github.com/Azure/go-ansiterm/winterm/erase_helpers.go
new file mode 100644
index 0000000000..244b5fa25e
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/erase_helpers.go
@@ -0,0 +1,84 @@
+// +build windows
+
+package winterm
+
+import "github.com/Azure/go-ansiterm"
+
+func (h *windowsAnsiEventHandler) clearRange(attributes uint16, fromCoord COORD, toCoord COORD) error {
+	// Ignore an invalid (negative area) request
+	if toCoord.Y < fromCoord.Y {
+		return nil
+	}
+
+	var err error
+
+	var coordStart = COORD{}
+	var coordEnd = COORD{}
+
+	xCurrent, yCurrent := fromCoord.X, fromCoord.Y
+	xEnd, yEnd := toCoord.X, toCoord.Y
+
+	// Clear any partial initial line
+	if xCurrent > 0 {
+		coordStart.X, coordStart.Y = xCurrent, yCurrent
+		coordEnd.X, coordEnd.Y = xEnd, yCurrent
+
+		err = h.clearRect(attributes, coordStart, coordEnd)
+		if err != nil {
+			return err
+		}
+
+		xCurrent = 0
+		yCurrent += 1
+	}
+
+	// Clear intervening rectangular section
+	if yCurrent < yEnd {
+		coordStart.X, coordStart.Y = xCurrent, yCurrent
+		coordEnd.X, coordEnd.Y = xEnd, yEnd-1
+
+		err = h.clearRect(attributes, coordStart, coordEnd)
+		if err != nil {
+			return err
+		}
+
+		xCurrent = 0
+		yCurrent = yEnd
+	}
+
+	// Clear remaining partial ending line
+	coordStart.X, coordStart.Y = xCurrent, yCurrent
+	coordEnd.X, coordEnd.Y = xEnd, yEnd
+
+	err = h.clearRect(attributes, coordStart, coordEnd)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) clearRect(attributes uint16, fromCoord COORD, toCoord COORD) error {
+	region := SMALL_RECT{Top: fromCoord.Y, Left: fromCoord.X, Bottom: toCoord.Y, Right: toCoord.X}
+	width := toCoord.X - fromCoord.X + 1
+	height := toCoord.Y - fromCoord.Y + 1
+	size := uint32(width) * uint32(height)
+
+	if size <= 0 {
+		return nil
+	}
+
+	buffer := make([]CHAR_INFO, size)
+
+	char := CHAR_INFO{ansiterm.FILL_CHARACTER, attributes}
+	for i := 0; i < int(size); i++ {
+		buffer[i] = char
+	}
+
+	err := WriteConsoleOutput(h.fd, buffer, COORD{X: width, Y: height}, COORD{X: 0, Y: 0}, &region)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/scroll_helper.go b/vendor/github.com/Azure/go-ansiterm/winterm/scroll_helper.go
new file mode 100644
index 0000000000..2d27fa1d02
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/scroll_helper.go
@@ -0,0 +1,118 @@
+// +build windows
+
+package winterm
+
+// effectiveSr gets the current effective scroll region in buffer coordinates
+func (h *windowsAnsiEventHandler) effectiveSr(window SMALL_RECT) scrollRegion {
+	top := addInRange(window.Top, h.sr.top, window.Top, window.Bottom)
+	bottom := addInRange(window.Top, h.sr.bottom, window.Top, window.Bottom)
+	if top >= bottom {
+		top = window.Top
+		bottom = window.Bottom
+	}
+	return scrollRegion{top: top, bottom: bottom}
+}
+
+func (h *windowsAnsiEventHandler) scrollUp(param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	sr := h.effectiveSr(info.Window)
+	return h.scroll(param, sr, info)
+}
+
+func (h *windowsAnsiEventHandler) scrollDown(param int) error {
+	return h.scrollUp(-param)
+}
+
+func (h *windowsAnsiEventHandler) deleteLines(param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	start := info.CursorPosition.Y
+	sr := h.effectiveSr(info.Window)
+	// Lines cannot be inserted or deleted outside the scrolling region.
+	if start >= sr.top && start <= sr.bottom {
+		sr.top = start
+		return h.scroll(param, sr, info)
+	} else {
+		return nil
+	}
+}
+
+func (h *windowsAnsiEventHandler) insertLines(param int) error {
+	return h.deleteLines(-param)
+}
+
+// scroll scrolls the provided scroll region by param lines. The scroll region is in buffer coordinates.
+func (h *windowsAnsiEventHandler) scroll(param int, sr scrollRegion, info *CONSOLE_SCREEN_BUFFER_INFO) error {
+	h.logf("scroll: scrollTop: %d, scrollBottom: %d", sr.top, sr.bottom)
+	h.logf("scroll: windowTop: %d, windowBottom: %d", info.Window.Top, info.Window.Bottom)
+
+	// Copy from and clip to the scroll region (full buffer width)
+	scrollRect := SMALL_RECT{
+		Top:    sr.top,
+		Bottom: sr.bottom,
+		Left:   0,
+		Right:  info.Size.X - 1,
+	}
+
+	// Origin to which area should be copied
+	destOrigin := COORD{
+		X: 0,
+		Y: sr.top - int16(param),
+	}
+
+	char := CHAR_INFO{
+		UnicodeChar: ' ',
+		Attributes:  h.attributes,
+	}
+
+	if err := ScrollConsoleScreenBuffer(h.fd, scrollRect, scrollRect, destOrigin, char); err != nil {
+		return err
+	}
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) deleteCharacters(param int) error {
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+	return h.scrollLine(param, info.CursorPosition, info)
+}
+
+func (h *windowsAnsiEventHandler) insertCharacters(param int) error {
+	return h.deleteCharacters(-param)
+}
+
+// scrollLine scrolls a line horizontally starting at the provided position by a number of columns.
+func (h *windowsAnsiEventHandler) scrollLine(columns int, position COORD, info *CONSOLE_SCREEN_BUFFER_INFO) error {
+	// Copy from and clip to the scroll region (full buffer width)
+	scrollRect := SMALL_RECT{
+		Top:    position.Y,
+		Bottom: position.Y,
+		Left:   position.X,
+		Right:  info.Size.X - 1,
+	}
+
+	// Origin to which area should be copied
+	destOrigin := COORD{
+		X: position.X - int16(columns),
+		Y: position.Y,
+	}
+
+	char := CHAR_INFO{
+		UnicodeChar: ' ',
+		Attributes:  h.attributes,
+	}
+
+	if err := ScrollConsoleScreenBuffer(h.fd, scrollRect, scrollRect, destOrigin, char); err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/utilities.go b/vendor/github.com/Azure/go-ansiterm/winterm/utilities.go
new file mode 100644
index 0000000000..afa7635d77
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/utilities.go
@@ -0,0 +1,9 @@
+// +build windows
+
+package winterm
+
+// AddInRange increments a value by the passed quantity while ensuring the values
+// always remain within the supplied min / max range.
+func addInRange(n int16, increment int16, min int16, max int16) int16 {
+	return ensureInRange(n+increment, min, max)
+}
diff --git a/vendor/github.com/Azure/go-ansiterm/winterm/win_event_handler.go b/vendor/github.com/Azure/go-ansiterm/winterm/win_event_handler.go
new file mode 100644
index 0000000000..2d40fb75ad
--- /dev/null
+++ b/vendor/github.com/Azure/go-ansiterm/winterm/win_event_handler.go
@@ -0,0 +1,743 @@
+// +build windows
+
+package winterm
+
+import (
+	"bytes"
+	"log"
+	"os"
+	"strconv"
+
+	"github.com/Azure/go-ansiterm"
+)
+
+type windowsAnsiEventHandler struct {
+	fd             uintptr
+	file           *os.File
+	infoReset      *CONSOLE_SCREEN_BUFFER_INFO
+	sr             scrollRegion
+	buffer         bytes.Buffer
+	attributes     uint16
+	inverted       bool
+	wrapNext       bool
+	drewMarginByte bool
+	originMode     bool
+	marginByte     byte
+	curInfo        *CONSOLE_SCREEN_BUFFER_INFO
+	curPos         COORD
+	logf           func(string, ...interface{})
+}
+
+type Option func(*windowsAnsiEventHandler)
+
+func WithLogf(f func(string, ...interface{})) Option {
+	return func(w *windowsAnsiEventHandler) {
+		w.logf = f
+	}
+}
+
+func CreateWinEventHandler(fd uintptr, file *os.File, opts ...Option) ansiterm.AnsiEventHandler {
+	infoReset, err := GetConsoleScreenBufferInfo(fd)
+	if err != nil {
+		return nil
+	}
+
+	h := &windowsAnsiEventHandler{
+		fd:         fd,
+		file:       file,
+		infoReset:  infoReset,
+		attributes: infoReset.Attributes,
+	}
+	for _, o := range opts {
+		o(h)
+	}
+
+	if isDebugEnv := os.Getenv(ansiterm.LogEnv); isDebugEnv == "1" {
+		logFile, _ := os.Create("winEventHandler.log")
+		logger := log.New(logFile, "", log.LstdFlags)
+		if h.logf != nil {
+			l := h.logf
+			h.logf = func(s string, v ...interface{}) {
+				l(s, v...)
+				logger.Printf(s, v...)
+			}
+		} else {
+			h.logf = logger.Printf
+		}
+	}
+
+	if h.logf == nil {
+		h.logf = func(string, ...interface{}) {}
+	}
+
+	return h
+}
+
+type scrollRegion struct {
+	top    int16
+	bottom int16
+}
+
+// simulateLF simulates a LF or CR+LF by scrolling if necessary to handle the
+// current cursor position and scroll region settings, in which case it returns
+// true. If no special handling is necessary, then it does nothing and returns
+// false.
+//
+// In the false case, the caller should ensure that a carriage return
+// and line feed are inserted or that the text is otherwise wrapped.
+func (h *windowsAnsiEventHandler) simulateLF(includeCR bool) (bool, error) {
+	if h.wrapNext {
+		if err := h.Flush(); err != nil {
+			return false, err
+		}
+		h.clearWrap()
+	}
+	pos, info, err := h.getCurrentInfo()
+	if err != nil {
+		return false, err
+	}
+	sr := h.effectiveSr(info.Window)
+	if pos.Y == sr.bottom {
+		// Scrolling is necessary. Let Windows automatically scroll if the scrolling region
+		// is the full window.
+		if sr.top == info.Window.Top && sr.bottom == info.Window.Bottom {
+			if includeCR {
+				pos.X = 0
+				h.updatePos(pos)
+			}
+			return false, nil
+		}
+
+		// A custom scroll region is active. Scroll the window manually to simulate
+		// the LF.
+		if err := h.Flush(); err != nil {
+			return false, err
+		}
+		h.logf("Simulating LF inside scroll region")
+		if err := h.scrollUp(1); err != nil {
+			return false, err
+		}
+		if includeCR {
+			pos.X = 0
+			if err := SetConsoleCursorPosition(h.fd, pos); err != nil {
+				return false, err
+			}
+		}
+		return true, nil
+
+	} else if pos.Y < info.Window.Bottom {
+		// Let Windows handle the LF.
+		pos.Y++
+		if includeCR {
+			pos.X = 0
+		}
+		h.updatePos(pos)
+		return false, nil
+	} else {
+		// The cursor is at the bottom of the screen but outside the scroll
+		// region. Skip the LF.
+		h.logf("Simulating LF outside scroll region")
+		if includeCR {
+			if err := h.Flush(); err != nil {
+				return false, err
+			}
+			pos.X = 0
+			if err := SetConsoleCursorPosition(h.fd, pos); err != nil {
+				return false, err
+			}
+		}
+		return true, nil
+	}
+}
+
+// executeLF executes a LF without a CR.
+func (h *windowsAnsiEventHandler) executeLF() error {
+	handled, err := h.simulateLF(false)
+	if err != nil {
+		return err
+	}
+	if !handled {
+		// Windows LF will reset the cursor column position. Write the LF
+		// and restore the cursor position.
+		pos, _, err := h.getCurrentInfo()
+		if err != nil {
+			return err
+		}
+		h.buffer.WriteByte(ansiterm.ANSI_LINE_FEED)
+		if pos.X != 0 {
+			if err := h.Flush(); err != nil {
+				return err
+			}
+			h.logf("Resetting cursor position for LF without CR")
+			if err := SetConsoleCursorPosition(h.fd, pos); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) Print(b byte) error {
+	if h.wrapNext {
+		h.buffer.WriteByte(h.marginByte)
+		h.clearWrap()
+		if _, err := h.simulateLF(true); err != nil {
+			return err
+		}
+	}
+	pos, info, err := h.getCurrentInfo()
+	if err != nil {
+		return err
+	}
+	if pos.X == info.Size.X-1 {
+		h.wrapNext = true
+		h.marginByte = b
+	} else {
+		pos.X++
+		h.updatePos(pos)
+		h.buffer.WriteByte(b)
+	}
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) Execute(b byte) error {
+	switch b {
+	case ansiterm.ANSI_TAB:
+		h.logf("Execute(TAB)")
+		// Move to the next tab stop, but preserve auto-wrap if already set.
+		if !h.wrapNext {
+			pos, info, err := h.getCurrentInfo()
+			if err != nil {
+				return err
+			}
+			pos.X = (pos.X + 8) - pos.X%8
+			if pos.X >= info.Size.X {
+				pos.X = info.Size.X - 1
+			}
+			if err := h.Flush(); err != nil {
+				return err
+			}
+			if err := SetConsoleCursorPosition(h.fd, pos); err != nil {
+				return err
+			}
+		}
+		return nil
+
+	case ansiterm.ANSI_BEL:
+		h.buffer.WriteByte(ansiterm.ANSI_BEL)
+		return nil
+
+	case ansiterm.ANSI_BACKSPACE:
+		if h.wrapNext {
+			if err := h.Flush(); err != nil {
+				return err
+			}
+			h.clearWrap()
+		}
+		pos, _, err := h.getCurrentInfo()
+		if err != nil {
+			return err
+		}
+		if pos.X > 0 {
+			pos.X--
+			h.updatePos(pos)
+			h.buffer.WriteByte(ansiterm.ANSI_BACKSPACE)
+		}
+		return nil
+
+	case ansiterm.ANSI_VERTICAL_TAB, ansiterm.ANSI_FORM_FEED:
+		// Treat as true LF.
+		return h.executeLF()
+
+	case ansiterm.ANSI_LINE_FEED:
+		// Simulate a CR and LF for now since there is no way in go-ansiterm
+		// to tell if the LF should include CR (and more things break when it's
+		// missing than when it's incorrectly added).
+		handled, err := h.simulateLF(true)
+		if handled || err != nil {
+			return err
+		}
+		return h.buffer.WriteByte(ansiterm.ANSI_LINE_FEED)
+
+	case ansiterm.ANSI_CARRIAGE_RETURN:
+		if h.wrapNext {
+			if err := h.Flush(); err != nil {
+				return err
+			}
+			h.clearWrap()
+		}
+		pos, _, err := h.getCurrentInfo()
+		if err != nil {
+			return err
+		}
+		if pos.X != 0 {
+			pos.X = 0
+			h.updatePos(pos)
+			h.buffer.WriteByte(ansiterm.ANSI_CARRIAGE_RETURN)
+		}
+		return nil
+
+	default:
+		return nil
+	}
+}
+
+func (h *windowsAnsiEventHandler) CUU(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CUU: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorVertical(-param)
+}
+
+func (h *windowsAnsiEventHandler) CUD(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CUD: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorVertical(param)
+}
+
+func (h *windowsAnsiEventHandler) CUF(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CUF: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorHorizontal(param)
+}
+
+func (h *windowsAnsiEventHandler) CUB(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CUB: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorHorizontal(-param)
+}
+
+func (h *windowsAnsiEventHandler) CNL(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CNL: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorLine(param)
+}
+
+func (h *windowsAnsiEventHandler) CPL(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CPL: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorLine(-param)
+}
+
+func (h *windowsAnsiEventHandler) CHA(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CHA: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.moveCursorColumn(param)
+}
+
+func (h *windowsAnsiEventHandler) VPA(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("VPA: [[%d]]", param)
+	h.clearWrap()
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+	window := h.getCursorWindow(info)
+	position := info.CursorPosition
+	position.Y = window.Top + int16(param) - 1
+	return h.setCursorPosition(position, window)
+}
+
+func (h *windowsAnsiEventHandler) CUP(row int, col int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("CUP: [[%d %d]]", row, col)
+	h.clearWrap()
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	window := h.getCursorWindow(info)
+	position := COORD{window.Left + int16(col) - 1, window.Top + int16(row) - 1}
+	return h.setCursorPosition(position, window)
+}
+
+func (h *windowsAnsiEventHandler) HVP(row int, col int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("HVP: [[%d %d]]", row, col)
+	h.clearWrap()
+	return h.CUP(row, col)
+}
+
+func (h *windowsAnsiEventHandler) DECTCEM(visible bool) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DECTCEM: [%v]", []string{strconv.FormatBool(visible)})
+	h.clearWrap()
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) DECOM(enable bool) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DECOM: [%v]", []string{strconv.FormatBool(enable)})
+	h.clearWrap()
+	h.originMode = enable
+	return h.CUP(1, 1)
+}
+
+func (h *windowsAnsiEventHandler) DECCOLM(use132 bool) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DECCOLM: [%v]", []string{strconv.FormatBool(use132)})
+	h.clearWrap()
+	if err := h.ED(2); err != nil {
+		return err
+	}
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+	targetWidth := int16(80)
+	if use132 {
+		targetWidth = 132
+	}
+	if info.Size.X < targetWidth {
+		if err := SetConsoleScreenBufferSize(h.fd, COORD{targetWidth, info.Size.Y}); err != nil {
+			h.logf("set buffer failed: %v", err)
+			return err
+		}
+	}
+	window := info.Window
+	window.Left = 0
+	window.Right = targetWidth - 1
+	if err := SetConsoleWindowInfo(h.fd, true, window); err != nil {
+		h.logf("set window failed: %v", err)
+		return err
+	}
+	if info.Size.X > targetWidth {
+		if err := SetConsoleScreenBufferSize(h.fd, COORD{targetWidth, info.Size.Y}); err != nil {
+			h.logf("set buffer failed: %v", err)
+			return err
+		}
+	}
+	return SetConsoleCursorPosition(h.fd, COORD{0, 0})
+}
+
+func (h *windowsAnsiEventHandler) ED(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("ED: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+
+	// [J  -- Erases from the cursor to the end of the screen, including the cursor position.
+	// [1J -- Erases from the beginning of the screen to the cursor, including the cursor position.
+	// [2J -- Erases the complete display. The cursor does not move.
+	// Notes:
+	// -- Clearing the entire buffer, versus just the Window, works best for Windows Consoles
+
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	var start COORD
+	var end COORD
+
+	switch param {
+	case 0:
+		start = info.CursorPosition
+		end = COORD{info.Size.X - 1, info.Size.Y - 1}
+
+	case 1:
+		start = COORD{0, 0}
+		end = info.CursorPosition
+
+	case 2:
+		start = COORD{0, 0}
+		end = COORD{info.Size.X - 1, info.Size.Y - 1}
+	}
+
+	err = h.clearRange(h.attributes, start, end)
+	if err != nil {
+		return err
+	}
+
+	// If the whole buffer was cleared, move the window to the top while preserving
+	// the window-relative cursor position.
+	if param == 2 {
+		pos := info.CursorPosition
+		window := info.Window
+		pos.Y -= window.Top
+		window.Bottom -= window.Top
+		window.Top = 0
+		if err := SetConsoleCursorPosition(h.fd, pos); err != nil {
+			return err
+		}
+		if err := SetConsoleWindowInfo(h.fd, true, window); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) EL(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("EL: [%v]", strconv.Itoa(param))
+	h.clearWrap()
+
+	// [K  -- Erases from the cursor to the end of the line, including the cursor position.
+	// [1K -- Erases from the beginning of the line to the cursor, including the cursor position.
+	// [2K -- Erases the complete line.
+
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	var start COORD
+	var end COORD
+
+	switch param {
+	case 0:
+		start = info.CursorPosition
+		end = COORD{info.Size.X, info.CursorPosition.Y}
+
+	case 1:
+		start = COORD{0, info.CursorPosition.Y}
+		end = info.CursorPosition
+
+	case 2:
+		start = COORD{0, info.CursorPosition.Y}
+		end = COORD{info.Size.X, info.CursorPosition.Y}
+	}
+
+	err = h.clearRange(h.attributes, start, end)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) IL(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("IL: [%v]", strconv.Itoa(param))
+	h.clearWrap()
+	return h.insertLines(param)
+}
+
+func (h *windowsAnsiEventHandler) DL(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DL: [%v]", strconv.Itoa(param))
+	h.clearWrap()
+	return h.deleteLines(param)
+}
+
+func (h *windowsAnsiEventHandler) ICH(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("ICH: [%v]", strconv.Itoa(param))
+	h.clearWrap()
+	return h.insertCharacters(param)
+}
+
+func (h *windowsAnsiEventHandler) DCH(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DCH: [%v]", strconv.Itoa(param))
+	h.clearWrap()
+	return h.deleteCharacters(param)
+}
+
+func (h *windowsAnsiEventHandler) SGR(params []int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	strings := []string{}
+	for _, v := range params {
+		strings = append(strings, strconv.Itoa(v))
+	}
+
+	h.logf("SGR: [%v]", strings)
+
+	if len(params) <= 0 {
+		h.attributes = h.infoReset.Attributes
+		h.inverted = false
+	} else {
+		for _, attr := range params {
+
+			if attr == ansiterm.ANSI_SGR_RESET {
+				h.attributes = h.infoReset.Attributes
+				h.inverted = false
+				continue
+			}
+
+			h.attributes, h.inverted = collectAnsiIntoWindowsAttributes(h.attributes, h.inverted, h.infoReset.Attributes, int16(attr))
+		}
+	}
+
+	attributes := h.attributes
+	if h.inverted {
+		attributes = invertAttributes(attributes)
+	}
+	err := SetConsoleTextAttribute(h.fd, attributes)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) SU(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("SU: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.scrollUp(param)
+}
+
+func (h *windowsAnsiEventHandler) SD(param int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("SD: [%v]", []string{strconv.Itoa(param)})
+	h.clearWrap()
+	return h.scrollDown(param)
+}
+
+func (h *windowsAnsiEventHandler) DA(params []string) error {
+	h.logf("DA: [%v]", params)
+	// DA cannot be implemented because it must send data on the VT100 input stream,
+	// which is not available to go-ansiterm.
+	return nil
+}
+
+func (h *windowsAnsiEventHandler) DECSTBM(top int, bottom int) error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("DECSTBM: [%d, %d]", top, bottom)
+
+	// Windows is 0 indexed, Linux is 1 indexed
+	h.sr.top = int16(top - 1)
+	h.sr.bottom = int16(bottom - 1)
+
+	// This command also moves the cursor to the origin.
+	h.clearWrap()
+	return h.CUP(1, 1)
+}
+
+func (h *windowsAnsiEventHandler) RI() error {
+	if err := h.Flush(); err != nil {
+		return err
+	}
+	h.logf("RI: []")
+	h.clearWrap()
+
+	info, err := GetConsoleScreenBufferInfo(h.fd)
+	if err != nil {
+		return err
+	}
+
+	sr := h.effectiveSr(info.Window)
+	if info.CursorPosition.Y == sr.top {
+		return h.scrollDown(1)
+	}
+
+	return h.moveCursorVertical(-1)
+}
+
+func (h *windowsAnsiEventHandler) IND() error {
+	h.logf("IND: []")
+	return h.executeLF()
+}
+
+func (h *windowsAnsiEventHandler) Flush() error {
+	h.curInfo = nil
+	if h.buffer.Len() > 0 {
+		h.logf("Flush: [%s]", h.buffer.Bytes())
+		if _, err := h.buffer.WriteTo(h.file); err != nil {
+			return err
+		}
+	}
+
+	if h.wrapNext && !h.drewMarginByte {
+		h.logf("Flush: drawing margin byte '%c'", h.marginByte)
+
+		info, err := GetConsoleScreenBufferInfo(h.fd)
+		if err != nil {
+			return err
+		}
+
+		charInfo := []CHAR_INFO{{UnicodeChar: uint16(h.marginByte), Attributes: info.Attributes}}
+		size := COORD{1, 1}
+		position := COORD{0, 0}
+		region := SMALL_RECT{Left: info.CursorPosition.X, Top: info.CursorPosition.Y, Right: info.CursorPosition.X, Bottom: info.CursorPosition.Y}
+		if err := WriteConsoleOutput(h.fd, charInfo, size, position, &region); err != nil {
+			return err
+		}
+		h.drewMarginByte = true
+	}
+	return nil
+}
+
+// cacheConsoleInfo ensures that the current console screen information has been queried
+// since the last call to Flush(). It must be called before accessing h.curInfo or h.curPos.
+func (h *windowsAnsiEventHandler) getCurrentInfo() (COORD, *CONSOLE_SCREEN_BUFFER_INFO, error) {
+	if h.curInfo == nil {
+		info, err := GetConsoleScreenBufferInfo(h.fd)
+		if err != nil {
+			return COORD{}, nil, err
+		}
+		h.curInfo = info
+		h.curPos = info.CursorPosition
+	}
+	return h.curPos, h.curInfo, nil
+}
+
+func (h *windowsAnsiEventHandler) updatePos(pos COORD) {
+	if h.curInfo == nil {
+		panic("failed to call getCurrentInfo before calling updatePos")
+	}
+	h.curPos = pos
+}
+
+// clearWrap clears the state where the cursor is in the margin
+// waiting for the next character before wrapping the line. This must
+// be done before most operations that act on the cursor.
+func (h *windowsAnsiEventHandler) clearWrap() {
+	h.wrapNext = false
+	h.drewMarginByte = false
+}
diff --git a/vendor/github.com/BurntSushi/toml/COPYING b/vendor/github.com/BurntSushi/toml/COPYING
new file mode 100644
index 0000000000..5a8e332545
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/COPYING
@@ -0,0 +1,14 @@
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+                    Version 2, December 2004
+
+ Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
+
+ Everyone is permitted to copy and distribute verbatim or modified
+ copies of this license document, and changing it is allowed as long
+ as the name is changed.
+
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. You just DO WHAT THE FUCK YOU WANT TO.
+
diff --git a/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING b/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
new file mode 100644
index 0000000000..5a8e332545
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/cmd/toml-test-decoder/COPYING
@@ -0,0 +1,14 @@
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+                    Version 2, December 2004
+
+ Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
+
+ Everyone is permitted to copy and distribute verbatim or modified
+ copies of this license document, and changing it is allowed as long
+ as the name is changed.
+
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. You just DO WHAT THE FUCK YOU WANT TO.
+
diff --git a/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING b/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
new file mode 100644
index 0000000000..5a8e332545
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/cmd/toml-test-encoder/COPYING
@@ -0,0 +1,14 @@
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+                    Version 2, December 2004
+
+ Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
+
+ Everyone is permitted to copy and distribute verbatim or modified
+ copies of this license document, and changing it is allowed as long
+ as the name is changed.
+
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. You just DO WHAT THE FUCK YOU WANT TO.
+
diff --git a/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING b/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
new file mode 100644
index 0000000000..5a8e332545
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/cmd/tomlv/COPYING
@@ -0,0 +1,14 @@
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+                    Version 2, December 2004
+
+ Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
+
+ Everyone is permitted to copy and distribute verbatim or modified
+ copies of this license document, and changing it is allowed as long
+ as the name is changed.
+
+            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. You just DO WHAT THE FUCK YOU WANT TO.
+
diff --git a/vendor/github.com/BurntSushi/toml/decode.go b/vendor/github.com/BurntSushi/toml/decode.go
new file mode 100644
index 0000000000..b0fd51d5b6
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/decode.go
@@ -0,0 +1,509 @@
+package toml
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"math"
+	"reflect"
+	"strings"
+	"time"
+)
+
+func e(format string, args ...interface{}) error {
+	return fmt.Errorf("toml: "+format, args...)
+}
+
+// Unmarshaler is the interface implemented by objects that can unmarshal a
+// TOML description of themselves.
+type Unmarshaler interface {
+	UnmarshalTOML(interface{}) error
+}
+
+// Unmarshal decodes the contents of `p` in TOML format into a pointer `v`.
+func Unmarshal(p []byte, v interface{}) error {
+	_, err := Decode(string(p), v)
+	return err
+}
+
+// Primitive is a TOML value that hasn't been decoded into a Go value.
+// When using the various `Decode*` functions, the type `Primitive` may
+// be given to any value, and its decoding will be delayed.
+//
+// A `Primitive` value can be decoded using the `PrimitiveDecode` function.
+//
+// The underlying representation of a `Primitive` value is subject to change.
+// Do not rely on it.
+//
+// N.B. Primitive values are still parsed, so using them will only avoid
+// the overhead of reflection. They can be useful when you don't know the
+// exact type of TOML data until run time.
+type Primitive struct {
+	undecoded interface{}
+	context   Key
+}
+
+// DEPRECATED!
+//
+// Use MetaData.PrimitiveDecode instead.
+func PrimitiveDecode(primValue Primitive, v interface{}) error {
+	md := MetaData{decoded: make(map[string]bool)}
+	return md.unify(primValue.undecoded, rvalue(v))
+}
+
+// PrimitiveDecode is just like the other `Decode*` functions, except it
+// decodes a TOML value that has already been parsed. Valid primitive values
+// can *only* be obtained from values filled by the decoder functions,
+// including this method. (i.e., `v` may contain more `Primitive`
+// values.)
+//
+// Meta data for primitive values is included in the meta data returned by
+// the `Decode*` functions with one exception: keys returned by the Undecoded
+// method will only reflect keys that were decoded. Namely, any keys hidden
+// behind a Primitive will be considered undecoded. Executing this method will
+// update the undecoded keys in the meta data. (See the example.)
+func (md *MetaData) PrimitiveDecode(primValue Primitive, v interface{}) error {
+	md.context = primValue.context
+	defer func() { md.context = nil }()
+	return md.unify(primValue.undecoded, rvalue(v))
+}
+
+// Decode will decode the contents of `data` in TOML format into a pointer
+// `v`.
+//
+// TOML hashes correspond to Go structs or maps. (Dealer's choice. They can be
+// used interchangeably.)
+//
+// TOML arrays of tables correspond to either a slice of structs or a slice
+// of maps.
+//
+// TOML datetimes correspond to Go `time.Time` values.
+//
+// All other TOML types (float, string, int, bool and array) correspond
+// to the obvious Go types.
+//
+// An exception to the above rules is if a type implements the
+// encoding.TextUnmarshaler interface. In this case, any primitive TOML value
+// (floats, strings, integers, booleans and datetimes) will be converted to
+// a byte string and given to the value's UnmarshalText method. See the
+// Unmarshaler example for a demonstration with time duration strings.
+//
+// Key mapping
+//
+// TOML keys can map to either keys in a Go map or field names in a Go
+// struct. The special `toml` struct tag may be used to map TOML keys to
+// struct fields that don't match the key name exactly. (See the example.)
+// A case insensitive match to struct names will be tried if an exact match
+// can't be found.
+//
+// The mapping between TOML values and Go values is loose. That is, there
+// may exist TOML values that cannot be placed into your representation, and
+// there may be parts of your representation that do not correspond to
+// TOML values. This loose mapping can be made stricter by using the IsDefined
+// and/or Undecoded methods on the MetaData returned.
+//
+// This decoder will not handle cyclic types. If a cyclic type is passed,
+// `Decode` will not terminate.
+func Decode(data string, v interface{}) (MetaData, error) {
+	rv := reflect.ValueOf(v)
+	if rv.Kind() != reflect.Ptr {
+		return MetaData{}, e("Decode of non-pointer %s", reflect.TypeOf(v))
+	}
+	if rv.IsNil() {
+		return MetaData{}, e("Decode of nil %s", reflect.TypeOf(v))
+	}
+	p, err := parse(data)
+	if err != nil {
+		return MetaData{}, err
+	}
+	md := MetaData{
+		p.mapping, p.types, p.ordered,
+		make(map[string]bool, len(p.ordered)), nil,
+	}
+	return md, md.unify(p.mapping, indirect(rv))
+}
+
+// DecodeFile is just like Decode, except it will automatically read the
+// contents of the file at `fpath` and decode it for you.
+func DecodeFile(fpath string, v interface{}) (MetaData, error) {
+	bs, err := ioutil.ReadFile(fpath)
+	if err != nil {
+		return MetaData{}, err
+	}
+	return Decode(string(bs), v)
+}
+
+// DecodeReader is just like Decode, except it will consume all bytes
+// from the reader and decode it for you.
+func DecodeReader(r io.Reader, v interface{}) (MetaData, error) {
+	bs, err := ioutil.ReadAll(r)
+	if err != nil {
+		return MetaData{}, err
+	}
+	return Decode(string(bs), v)
+}
+
+// unify performs a sort of type unification based on the structure of `rv`,
+// which is the client representation.
+//
+// Any type mismatch produces an error. Finding a type that we don't know
+// how to handle produces an unsupported type error.
+func (md *MetaData) unify(data interface{}, rv reflect.Value) error {
+
+	// Special case. Look for a `Primitive` value.
+	if rv.Type() == reflect.TypeOf((*Primitive)(nil)).Elem() {
+		// Save the undecoded data and the key context into the primitive
+		// value.
+		context := make(Key, len(md.context))
+		copy(context, md.context)
+		rv.Set(reflect.ValueOf(Primitive{
+			undecoded: data,
+			context:   context,
+		}))
+		return nil
+	}
+
+	// Special case. Unmarshaler Interface support.
+	if rv.CanAddr() {
+		if v, ok := rv.Addr().Interface().(Unmarshaler); ok {
+			return v.UnmarshalTOML(data)
+		}
+	}
+
+	// Special case. Handle time.Time values specifically.
+	// TODO: Remove this code when we decide to drop support for Go 1.1.
+	// This isn't necessary in Go 1.2 because time.Time satisfies the encoding
+	// interfaces.
+	if rv.Type().AssignableTo(rvalue(time.Time{}).Type()) {
+		return md.unifyDatetime(data, rv)
+	}
+
+	// Special case. Look for a value satisfying the TextUnmarshaler interface.
+	if v, ok := rv.Interface().(TextUnmarshaler); ok {
+		return md.unifyText(data, v)
+	}
+	// BUG(burntsushi)
+	// The behavior here is incorrect whenever a Go type satisfies the
+	// encoding.TextUnmarshaler interface but also corresponds to a TOML
+	// hash or array. In particular, the unmarshaler should only be applied
+	// to primitive TOML values. But at this point, it will be applied to
+	// all kinds of values and produce an incorrect error whenever those values
+	// are hashes or arrays (including arrays of tables).
+
+	k := rv.Kind()
+
+	// laziness
+	if k >= reflect.Int && k <= reflect.Uint64 {
+		return md.unifyInt(data, rv)
+	}
+	switch k {
+	case reflect.Ptr:
+		elem := reflect.New(rv.Type().Elem())
+		err := md.unify(data, reflect.Indirect(elem))
+		if err != nil {
+			return err
+		}
+		rv.Set(elem)
+		return nil
+	case reflect.Struct:
+		return md.unifyStruct(data, rv)
+	case reflect.Map:
+		return md.unifyMap(data, rv)
+	case reflect.Array:
+		return md.unifyArray(data, rv)
+	case reflect.Slice:
+		return md.unifySlice(data, rv)
+	case reflect.String:
+		return md.unifyString(data, rv)
+	case reflect.Bool:
+		return md.unifyBool(data, rv)
+	case reflect.Interface:
+		// we only support empty interfaces.
+		if rv.NumMethod() > 0 {
+			return e("unsupported type %s", rv.Type())
+		}
+		return md.unifyAnything(data, rv)
+	case reflect.Float32:
+		fallthrough
+	case reflect.Float64:
+		return md.unifyFloat64(data, rv)
+	}
+	return e("unsupported type %s", rv.Kind())
+}
+
+func (md *MetaData) unifyStruct(mapping interface{}, rv reflect.Value) error {
+	tmap, ok := mapping.(map[string]interface{})
+	if !ok {
+		if mapping == nil {
+			return nil
+		}
+		return e("type mismatch for %s: expected table but found %T",
+			rv.Type().String(), mapping)
+	}
+
+	for key, datum := range tmap {
+		var f *field
+		fields := cachedTypeFields(rv.Type())
+		for i := range fields {
+			ff := &fields[i]
+			if ff.name == key {
+				f = ff
+				break
+			}
+			if f == nil && strings.EqualFold(ff.name, key) {
+				f = ff
+			}
+		}
+		if f != nil {
+			subv := rv
+			for _, i := range f.index {
+				subv = indirect(subv.Field(i))
+			}
+			if isUnifiable(subv) {
+				md.decoded[md.context.add(key).String()] = true
+				md.context = append(md.context, key)
+				if err := md.unify(datum, subv); err != nil {
+					return err
+				}
+				md.context = md.context[0 : len(md.context)-1]
+			} else if f.name != "" {
+				// Bad user! No soup for you!
+				return e("cannot write unexported field %s.%s",
+					rv.Type().String(), f.name)
+			}
+		}
+	}
+	return nil
+}
+
+func (md *MetaData) unifyMap(mapping interface{}, rv reflect.Value) error {
+	tmap, ok := mapping.(map[string]interface{})
+	if !ok {
+		if tmap == nil {
+			return nil
+		}
+		return badtype("map", mapping)
+	}
+	if rv.IsNil() {
+		rv.Set(reflect.MakeMap(rv.Type()))
+	}
+	for k, v := range tmap {
+		md.decoded[md.context.add(k).String()] = true
+		md.context = append(md.context, k)
+
+		rvkey := indirect(reflect.New(rv.Type().Key()))
+		rvval := reflect.Indirect(reflect.New(rv.Type().Elem()))
+		if err := md.unify(v, rvval); err != nil {
+			return err
+		}
+		md.context = md.context[0 : len(md.context)-1]
+
+		rvkey.SetString(k)
+		rv.SetMapIndex(rvkey, rvval)
+	}
+	return nil
+}
+
+func (md *MetaData) unifyArray(data interface{}, rv reflect.Value) error {
+	datav := reflect.ValueOf(data)
+	if datav.Kind() != reflect.Slice {
+		if !datav.IsValid() {
+			return nil
+		}
+		return badtype("slice", data)
+	}
+	sliceLen := datav.Len()
+	if sliceLen != rv.Len() {
+		return e("expected array length %d; got TOML array of length %d",
+			rv.Len(), sliceLen)
+	}
+	return md.unifySliceArray(datav, rv)
+}
+
+func (md *MetaData) unifySlice(data interface{}, rv reflect.Value) error {
+	datav := reflect.ValueOf(data)
+	if datav.Kind() != reflect.Slice {
+		if !datav.IsValid() {
+			return nil
+		}
+		return badtype("slice", data)
+	}
+	n := datav.Len()
+	if rv.IsNil() || rv.Cap() < n {
+		rv.Set(reflect.MakeSlice(rv.Type(), n, n))
+	}
+	rv.SetLen(n)
+	return md.unifySliceArray(datav, rv)
+}
+
+func (md *MetaData) unifySliceArray(data, rv reflect.Value) error {
+	sliceLen := data.Len()
+	for i := 0; i < sliceLen; i++ {
+		v := data.Index(i).Interface()
+		sliceval := indirect(rv.Index(i))
+		if err := md.unify(v, sliceval); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (md *MetaData) unifyDatetime(data interface{}, rv reflect.Value) error {
+	if _, ok := data.(time.Time); ok {
+		rv.Set(reflect.ValueOf(data))
+		return nil
+	}
+	return badtype("time.Time", data)
+}
+
+func (md *MetaData) unifyString(data interface{}, rv reflect.Value) error {
+	if s, ok := data.(string); ok {
+		rv.SetString(s)
+		return nil
+	}
+	return badtype("string", data)
+}
+
+func (md *MetaData) unifyFloat64(data interface{}, rv reflect.Value) error {
+	if num, ok := data.(float64); ok {
+		switch rv.Kind() {
+		case reflect.Float32:
+			fallthrough
+		case reflect.Float64:
+			rv.SetFloat(num)
+		default:
+			panic("bug")
+		}
+		return nil
+	}
+	return badtype("float", data)
+}
+
+func (md *MetaData) unifyInt(data interface{}, rv reflect.Value) error {
+	if num, ok := data.(int64); ok {
+		if rv.Kind() >= reflect.Int && rv.Kind() <= reflect.Int64 {
+			switch rv.Kind() {
+			case reflect.Int, reflect.Int64:
+				// No bounds checking necessary.
+			case reflect.Int8:
+				if num < math.MinInt8 || num > math.MaxInt8 {
+					return e("value %d is out of range for int8", num)
+				}
+			case reflect.Int16:
+				if num < math.MinInt16 || num > math.MaxInt16 {
+					return e("value %d is out of range for int16", num)
+				}
+			case reflect.Int32:
+				if num < math.MinInt32 || num > math.MaxInt32 {
+					return e("value %d is out of range for int32", num)
+				}
+			}
+			rv.SetInt(num)
+		} else if rv.Kind() >= reflect.Uint && rv.Kind() <= reflect.Uint64 {
+			unum := uint64(num)
+			switch rv.Kind() {
+			case reflect.Uint, reflect.Uint64:
+				// No bounds checking necessary.
+			case reflect.Uint8:
+				if num < 0 || unum > math.MaxUint8 {
+					return e("value %d is out of range for uint8", num)
+				}
+			case reflect.Uint16:
+				if num < 0 || unum > math.MaxUint16 {
+					return e("value %d is out of range for uint16", num)
+				}
+			case reflect.Uint32:
+				if num < 0 || unum > math.MaxUint32 {
+					return e("value %d is out of range for uint32", num)
+				}
+			}
+			rv.SetUint(unum)
+		} else {
+			panic("unreachable")
+		}
+		return nil
+	}
+	return badtype("integer", data)
+}
+
+func (md *MetaData) unifyBool(data interface{}, rv reflect.Value) error {
+	if b, ok := data.(bool); ok {
+		rv.SetBool(b)
+		return nil
+	}
+	return badtype("boolean", data)
+}
+
+func (md *MetaData) unifyAnything(data interface{}, rv reflect.Value) error {
+	rv.Set(reflect.ValueOf(data))
+	return nil
+}
+
+func (md *MetaData) unifyText(data interface{}, v TextUnmarshaler) error {
+	var s string
+	switch sdata := data.(type) {
+	case TextMarshaler:
+		text, err := sdata.MarshalText()
+		if err != nil {
+			return err
+		}
+		s = string(text)
+	case fmt.Stringer:
+		s = sdata.String()
+	case string:
+		s = sdata
+	case bool:
+		s = fmt.Sprintf("%v", sdata)
+	case int64:
+		s = fmt.Sprintf("%d", sdata)
+	case float64:
+		s = fmt.Sprintf("%f", sdata)
+	default:
+		return badtype("primitive (string-like)", data)
+	}
+	if err := v.UnmarshalText([]byte(s)); err != nil {
+		return err
+	}
+	return nil
+}
+
+// rvalue returns a reflect.Value of `v`. All pointers are resolved.
+func rvalue(v interface{}) reflect.Value {
+	return indirect(reflect.ValueOf(v))
+}
+
+// indirect returns the value pointed to by a pointer.
+// Pointers are followed until the value is not a pointer.
+// New values are allocated for each nil pointer.
+//
+// An exception to this rule is if the value satisfies an interface of
+// interest to us (like encoding.TextUnmarshaler).
+func indirect(v reflect.Value) reflect.Value {
+	if v.Kind() != reflect.Ptr {
+		if v.CanSet() {
+			pv := v.Addr()
+			if _, ok := pv.Interface().(TextUnmarshaler); ok {
+				return pv
+			}
+		}
+		return v
+	}
+	if v.IsNil() {
+		v.Set(reflect.New(v.Type().Elem()))
+	}
+	return indirect(reflect.Indirect(v))
+}
+
+func isUnifiable(rv reflect.Value) bool {
+	if rv.CanSet() {
+		return true
+	}
+	if _, ok := rv.Interface().(TextUnmarshaler); ok {
+		return true
+	}
+	return false
+}
+
+func badtype(expected string, data interface{}) error {
+	return e("cannot load TOML value of type %T into a Go %s", data, expected)
+}
diff --git a/vendor/github.com/BurntSushi/toml/decode_meta.go b/vendor/github.com/BurntSushi/toml/decode_meta.go
new file mode 100644
index 0000000000..b9914a6798
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/decode_meta.go
@@ -0,0 +1,121 @@
+package toml
+
+import "strings"
+
+// MetaData allows access to meta information about TOML data that may not
+// be inferrable via reflection. In particular, whether a key has been defined
+// and the TOML type of a key.
+type MetaData struct {
+	mapping map[string]interface{}
+	types   map[string]tomlType
+	keys    []Key
+	decoded map[string]bool
+	context Key // Used only during decoding.
+}
+
+// IsDefined returns true if the key given exists in the TOML data. The key
+// should be specified hierarchially. e.g.,
+//
+//	// access the TOML key 'a.b.c'
+//	IsDefined("a", "b", "c")
+//
+// IsDefined will return false if an empty key given. Keys are case sensitive.
+func (md *MetaData) IsDefined(key ...string) bool {
+	if len(key) == 0 {
+		return false
+	}
+
+	var hash map[string]interface{}
+	var ok bool
+	var hashOrVal interface{} = md.mapping
+	for _, k := range key {
+		if hash, ok = hashOrVal.(map[string]interface{}); !ok {
+			return false
+		}
+		if hashOrVal, ok = hash[k]; !ok {
+			return false
+		}
+	}
+	return true
+}
+
+// Type returns a string representation of the type of the key specified.
+//
+// Type will return the empty string if given an empty key or a key that
+// does not exist. Keys are case sensitive.
+func (md *MetaData) Type(key ...string) string {
+	fullkey := strings.Join(key, ".")
+	if typ, ok := md.types[fullkey]; ok {
+		return typ.typeString()
+	}
+	return ""
+}
+
+// Key is the type of any TOML key, including key groups. Use (MetaData).Keys
+// to get values of this type.
+type Key []string
+
+func (k Key) String() string {
+	return strings.Join(k, ".")
+}
+
+func (k Key) maybeQuotedAll() string {
+	var ss []string
+	for i := range k {
+		ss = append(ss, k.maybeQuoted(i))
+	}
+	return strings.Join(ss, ".")
+}
+
+func (k Key) maybeQuoted(i int) string {
+	quote := false
+	for _, c := range k[i] {
+		if !isBareKeyChar(c) {
+			quote = true
+			break
+		}
+	}
+	if quote {
+		return "\"" + strings.Replace(k[i], "\"", "\\\"", -1) + "\""
+	}
+	return k[i]
+}
+
+func (k Key) add(piece string) Key {
+	newKey := make(Key, len(k)+1)
+	copy(newKey, k)
+	newKey[len(k)] = piece
+	return newKey
+}
+
+// Keys returns a slice of every key in the TOML data, including key groups.
+// Each key is itself a slice, where the first element is the top of the
+// hierarchy and the last is the most specific.
+//
+// The list will have the same order as the keys appeared in the TOML data.
+//
+// All keys returned are non-empty.
+func (md *MetaData) Keys() []Key {
+	return md.keys
+}
+
+// Undecoded returns all keys that have not been decoded in the order in which
+// they appear in the original TOML document.
+//
+// This includes keys that haven't been decoded because of a Primitive value.
+// Once the Primitive value is decoded, the keys will be considered decoded.
+//
+// Also note that decoding into an empty interface will result in no decoding,
+// and so no keys will be considered decoded.
+//
+// In this sense, the Undecoded keys correspond to keys in the TOML document
+// that do not have a concrete type in your representation.
+func (md *MetaData) Undecoded() []Key {
+	undecoded := make([]Key, 0, len(md.keys))
+	for _, key := range md.keys {
+		if !md.decoded[key.String()] {
+			undecoded = append(undecoded, key)
+		}
+	}
+	return undecoded
+}
diff --git a/vendor/github.com/BurntSushi/toml/doc.go b/vendor/github.com/BurntSushi/toml/doc.go
new file mode 100644
index 0000000000..b371f396ed
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/doc.go
@@ -0,0 +1,27 @@
+/*
+Package toml provides facilities for decoding and encoding TOML configuration
+files via reflection. There is also support for delaying decoding with
+the Primitive type, and querying the set of keys in a TOML document with the
+MetaData type.
+
+The specification implemented: https://github.com/toml-lang/toml
+
+The sub-command github.com/BurntSushi/toml/cmd/tomlv can be used to verify
+whether a file is a valid TOML document. It can also be used to print the
+type of each key in a TOML document.
+
+Testing
+
+There are two important types of tests used for this package. The first is
+contained inside '*_test.go' files and uses the standard Go unit testing
+framework. These tests are primarily devoted to holistically testing the
+decoder and encoder.
+
+The second type of testing is used to verify the implementation's adherence
+to the TOML specification. These tests have been factored into their own
+project: https://github.com/BurntSushi/toml-test
+
+The reason the tests are in a separate project is so that they can be used by
+any implementation of TOML. Namely, it is language agnostic.
+*/
+package toml
diff --git a/vendor/github.com/BurntSushi/toml/encode.go b/vendor/github.com/BurntSushi/toml/encode.go
new file mode 100644
index 0000000000..d905c21a24
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/encode.go
@@ -0,0 +1,568 @@
+package toml
+
+import (
+	"bufio"
+	"errors"
+	"fmt"
+	"io"
+	"reflect"
+	"sort"
+	"strconv"
+	"strings"
+	"time"
+)
+
+type tomlEncodeError struct{ error }
+
+var (
+	errArrayMixedElementTypes = errors.New(
+		"toml: cannot encode array with mixed element types")
+	errArrayNilElement = errors.New(
+		"toml: cannot encode array with nil element")
+	errNonString = errors.New(
+		"toml: cannot encode a map with non-string key type")
+	errAnonNonStruct = errors.New(
+		"toml: cannot encode an anonymous field that is not a struct")
+	errArrayNoTable = errors.New(
+		"toml: TOML array element cannot contain a table")
+	errNoKey = errors.New(
+		"toml: top-level values must be Go maps or structs")
+	errAnything = errors.New("") // used in testing
+)
+
+var quotedReplacer = strings.NewReplacer(
+	"\t", "\\t",
+	"\n", "\\n",
+	"\r", "\\r",
+	"\"", "\\\"",
+	"\\", "\\\\",
+)
+
+// Encoder controls the encoding of Go values to a TOML document to some
+// io.Writer.
+//
+// The indentation level can be controlled with the Indent field.
+type Encoder struct {
+	// A single indentation level. By default it is two spaces.
+	Indent string
+
+	// hasWritten is whether we have written any output to w yet.
+	hasWritten bool
+	w          *bufio.Writer
+}
+
+// NewEncoder returns a TOML encoder that encodes Go values to the io.Writer
+// given. By default, a single indentation level is 2 spaces.
+func NewEncoder(w io.Writer) *Encoder {
+	return &Encoder{
+		w:      bufio.NewWriter(w),
+		Indent: "  ",
+	}
+}
+
+// Encode writes a TOML representation of the Go value to the underlying
+// io.Writer. If the value given cannot be encoded to a valid TOML document,
+// then an error is returned.
+//
+// The mapping between Go values and TOML values should be precisely the same
+// as for the Decode* functions. Similarly, the TextMarshaler interface is
+// supported by encoding the resulting bytes as strings. (If you want to write
+// arbitrary binary data then you will need to use something like base64 since
+// TOML does not have any binary types.)
+//
+// When encoding TOML hashes (i.e., Go maps or structs), keys without any
+// sub-hashes are encoded first.
+//
+// If a Go map is encoded, then its keys are sorted alphabetically for
+// deterministic output. More control over this behavior may be provided if
+// there is demand for it.
+//
+// Encoding Go values without a corresponding TOML representation---like map
+// types with non-string keys---will cause an error to be returned. Similarly
+// for mixed arrays/slices, arrays/slices with nil elements, embedded
+// non-struct types and nested slices containing maps or structs.
+// (e.g., [][]map[string]string is not allowed but []map[string]string is OK
+// and so is []map[string][]string.)
+func (enc *Encoder) Encode(v interface{}) error {
+	rv := eindirect(reflect.ValueOf(v))
+	if err := enc.safeEncode(Key([]string{}), rv); err != nil {
+		return err
+	}
+	return enc.w.Flush()
+}
+
+func (enc *Encoder) safeEncode(key Key, rv reflect.Value) (err error) {
+	defer func() {
+		if r := recover(); r != nil {
+			if terr, ok := r.(tomlEncodeError); ok {
+				err = terr.error
+				return
+			}
+			panic(r)
+		}
+	}()
+	enc.encode(key, rv)
+	return nil
+}
+
+func (enc *Encoder) encode(key Key, rv reflect.Value) {
+	// Special case. Time needs to be in ISO8601 format.
+	// Special case. If we can marshal the type to text, then we used that.
+	// Basically, this prevents the encoder for handling these types as
+	// generic structs (or whatever the underlying type of a TextMarshaler is).
+	switch rv.Interface().(type) {
+	case time.Time, TextMarshaler:
+		enc.keyEqElement(key, rv)
+		return
+	}
+
+	k := rv.Kind()
+	switch k {
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
+		reflect.Int64,
+		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
+		reflect.Uint64,
+		reflect.Float32, reflect.Float64, reflect.String, reflect.Bool:
+		enc.keyEqElement(key, rv)
+	case reflect.Array, reflect.Slice:
+		if typeEqual(tomlArrayHash, tomlTypeOfGo(rv)) {
+			enc.eArrayOfTables(key, rv)
+		} else {
+			enc.keyEqElement(key, rv)
+		}
+	case reflect.Interface:
+		if rv.IsNil() {
+			return
+		}
+		enc.encode(key, rv.Elem())
+	case reflect.Map:
+		if rv.IsNil() {
+			return
+		}
+		enc.eTable(key, rv)
+	case reflect.Ptr:
+		if rv.IsNil() {
+			return
+		}
+		enc.encode(key, rv.Elem())
+	case reflect.Struct:
+		enc.eTable(key, rv)
+	default:
+		panic(e("unsupported type for key '%s': %s", key, k))
+	}
+}
+
+// eElement encodes any value that can be an array element (primitives and
+// arrays).
+func (enc *Encoder) eElement(rv reflect.Value) {
+	switch v := rv.Interface().(type) {
+	case time.Time:
+		// Special case time.Time as a primitive. Has to come before
+		// TextMarshaler below because time.Time implements
+		// encoding.TextMarshaler, but we need to always use UTC.
+		enc.wf(v.UTC().Format("2006-01-02T15:04:05Z"))
+		return
+	case TextMarshaler:
+		// Special case. Use text marshaler if it's available for this value.
+		if s, err := v.MarshalText(); err != nil {
+			encPanic(err)
+		} else {
+			enc.writeQuoted(string(s))
+		}
+		return
+	}
+	switch rv.Kind() {
+	case reflect.Bool:
+		enc.wf(strconv.FormatBool(rv.Bool()))
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
+		reflect.Int64:
+		enc.wf(strconv.FormatInt(rv.Int(), 10))
+	case reflect.Uint, reflect.Uint8, reflect.Uint16,
+		reflect.Uint32, reflect.Uint64:
+		enc.wf(strconv.FormatUint(rv.Uint(), 10))
+	case reflect.Float32:
+		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 32)))
+	case reflect.Float64:
+		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 64)))
+	case reflect.Array, reflect.Slice:
+		enc.eArrayOrSliceElement(rv)
+	case reflect.Interface:
+		enc.eElement(rv.Elem())
+	case reflect.String:
+		enc.writeQuoted(rv.String())
+	default:
+		panic(e("unexpected primitive type: %s", rv.Kind()))
+	}
+}
+
+// By the TOML spec, all floats must have a decimal with at least one
+// number on either side.
+func floatAddDecimal(fstr string) string {
+	if !strings.Contains(fstr, ".") {
+		return fstr + ".0"
+	}
+	return fstr
+}
+
+func (enc *Encoder) writeQuoted(s string) {
+	enc.wf("\"%s\"", quotedReplacer.Replace(s))
+}
+
+func (enc *Encoder) eArrayOrSliceElement(rv reflect.Value) {
+	length := rv.Len()
+	enc.wf("[")
+	for i := 0; i < length; i++ {
+		elem := rv.Index(i)
+		enc.eElement(elem)
+		if i != length-1 {
+			enc.wf(", ")
+		}
+	}
+	enc.wf("]")
+}
+
+func (enc *Encoder) eArrayOfTables(key Key, rv reflect.Value) {
+	if len(key) == 0 {
+		encPanic(errNoKey)
+	}
+	for i := 0; i < rv.Len(); i++ {
+		trv := rv.Index(i)
+		if isNil(trv) {
+			continue
+		}
+		panicIfInvalidKey(key)
+		enc.newline()
+		enc.wf("%s[[%s]]", enc.indentStr(key), key.maybeQuotedAll())
+		enc.newline()
+		enc.eMapOrStruct(key, trv)
+	}
+}
+
+func (enc *Encoder) eTable(key Key, rv reflect.Value) {
+	panicIfInvalidKey(key)
+	if len(key) == 1 {
+		// Output an extra newline between top-level tables.
+		// (The newline isn't written if nothing else has been written though.)
+		enc.newline()
+	}
+	if len(key) > 0 {
+		enc.wf("%s[%s]", enc.indentStr(key), key.maybeQuotedAll())
+		enc.newline()
+	}
+	enc.eMapOrStruct(key, rv)
+}
+
+func (enc *Encoder) eMapOrStruct(key Key, rv reflect.Value) {
+	switch rv := eindirect(rv); rv.Kind() {
+	case reflect.Map:
+		enc.eMap(key, rv)
+	case reflect.Struct:
+		enc.eStruct(key, rv)
+	default:
+		panic("eTable: unhandled reflect.Value Kind: " + rv.Kind().String())
+	}
+}
+
+func (enc *Encoder) eMap(key Key, rv reflect.Value) {
+	rt := rv.Type()
+	if rt.Key().Kind() != reflect.String {
+		encPanic(errNonString)
+	}
+
+	// Sort keys so that we have deterministic output. And write keys directly
+	// underneath this key first, before writing sub-structs or sub-maps.
+	var mapKeysDirect, mapKeysSub []string
+	for _, mapKey := range rv.MapKeys() {
+		k := mapKey.String()
+		if typeIsHash(tomlTypeOfGo(rv.MapIndex(mapKey))) {
+			mapKeysSub = append(mapKeysSub, k)
+		} else {
+			mapKeysDirect = append(mapKeysDirect, k)
+		}
+	}
+
+	var writeMapKeys = func(mapKeys []string) {
+		sort.Strings(mapKeys)
+		for _, mapKey := range mapKeys {
+			mrv := rv.MapIndex(reflect.ValueOf(mapKey))
+			if isNil(mrv) {
+				// Don't write anything for nil fields.
+				continue
+			}
+			enc.encode(key.add(mapKey), mrv)
+		}
+	}
+	writeMapKeys(mapKeysDirect)
+	writeMapKeys(mapKeysSub)
+}
+
+func (enc *Encoder) eStruct(key Key, rv reflect.Value) {
+	// Write keys for fields directly under this key first, because if we write
+	// a field that creates a new table, then all keys under it will be in that
+	// table (not the one we're writing here).
+	rt := rv.Type()
+	var fieldsDirect, fieldsSub [][]int
+	var addFields func(rt reflect.Type, rv reflect.Value, start []int)
+	addFields = func(rt reflect.Type, rv reflect.Value, start []int) {
+		for i := 0; i < rt.NumField(); i++ {
+			f := rt.Field(i)
+			// skip unexported fields
+			if f.PkgPath != "" && !f.Anonymous {
+				continue
+			}
+			frv := rv.Field(i)
+			if f.Anonymous {
+				t := f.Type
+				switch t.Kind() {
+				case reflect.Struct:
+					// Treat anonymous struct fields with
+					// tag names as though they are not
+					// anonymous, like encoding/json does.
+					if getOptions(f.Tag).name == "" {
+						addFields(t, frv, f.Index)
+						continue
+					}
+				case reflect.Ptr:
+					if t.Elem().Kind() == reflect.Struct &&
+						getOptions(f.Tag).name == "" {
+						if !frv.IsNil() {
+							addFields(t.Elem(), frv.Elem(), f.Index)
+						}
+						continue
+					}
+					// Fall through to the normal field encoding logic below
+					// for non-struct anonymous fields.
+				}
+			}
+
+			if typeIsHash(tomlTypeOfGo(frv)) {
+				fieldsSub = append(fieldsSub, append(start, f.Index...))
+			} else {
+				fieldsDirect = append(fieldsDirect, append(start, f.Index...))
+			}
+		}
+	}
+	addFields(rt, rv, nil)
+
+	var writeFields = func(fields [][]int) {
+		for _, fieldIndex := range fields {
+			sft := rt.FieldByIndex(fieldIndex)
+			sf := rv.FieldByIndex(fieldIndex)
+			if isNil(sf) {
+				// Don't write anything for nil fields.
+				continue
+			}
+
+			opts := getOptions(sft.Tag)
+			if opts.skip {
+				continue
+			}
+			keyName := sft.Name
+			if opts.name != "" {
+				keyName = opts.name
+			}
+			if opts.omitempty && isEmpty(sf) {
+				continue
+			}
+			if opts.omitzero && isZero(sf) {
+				continue
+			}
+
+			enc.encode(key.add(keyName), sf)
+		}
+	}
+	writeFields(fieldsDirect)
+	writeFields(fieldsSub)
+}
+
+// tomlTypeName returns the TOML type name of the Go value's type. It is
+// used to determine whether the types of array elements are mixed (which is
+// forbidden). If the Go value is nil, then it is illegal for it to be an array
+// element, and valueIsNil is returned as true.
+
+// Returns the TOML type of a Go value. The type may be `nil`, which means
+// no concrete TOML type could be found.
+func tomlTypeOfGo(rv reflect.Value) tomlType {
+	if isNil(rv) || !rv.IsValid() {
+		return nil
+	}
+	switch rv.Kind() {
+	case reflect.Bool:
+		return tomlBool
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
+		reflect.Int64,
+		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
+		reflect.Uint64:
+		return tomlInteger
+	case reflect.Float32, reflect.Float64:
+		return tomlFloat
+	case reflect.Array, reflect.Slice:
+		if typeEqual(tomlHash, tomlArrayType(rv)) {
+			return tomlArrayHash
+		}
+		return tomlArray
+	case reflect.Ptr, reflect.Interface:
+		return tomlTypeOfGo(rv.Elem())
+	case reflect.String:
+		return tomlString
+	case reflect.Map:
+		return tomlHash
+	case reflect.Struct:
+		switch rv.Interface().(type) {
+		case time.Time:
+			return tomlDatetime
+		case TextMarshaler:
+			return tomlString
+		default:
+			return tomlHash
+		}
+	default:
+		panic("unexpected reflect.Kind: " + rv.Kind().String())
+	}
+}
+
+// tomlArrayType returns the element type of a TOML array. The type returned
+// may be nil if it cannot be determined (e.g., a nil slice or a zero length
+// slize). This function may also panic if it finds a type that cannot be
+// expressed in TOML (such as nil elements, heterogeneous arrays or directly
+// nested arrays of tables).
+func tomlArrayType(rv reflect.Value) tomlType {
+	if isNil(rv) || !rv.IsValid() || rv.Len() == 0 {
+		return nil
+	}
+	firstType := tomlTypeOfGo(rv.Index(0))
+	if firstType == nil {
+		encPanic(errArrayNilElement)
+	}
+
+	rvlen := rv.Len()
+	for i := 1; i < rvlen; i++ {
+		elem := rv.Index(i)
+		switch elemType := tomlTypeOfGo(elem); {
+		case elemType == nil:
+			encPanic(errArrayNilElement)
+		case !typeEqual(firstType, elemType):
+			encPanic(errArrayMixedElementTypes)
+		}
+	}
+	// If we have a nested array, then we must make sure that the nested
+	// array contains ONLY primitives.
+	// This checks arbitrarily nested arrays.
+	if typeEqual(firstType, tomlArray) || typeEqual(firstType, tomlArrayHash) {
+		nest := tomlArrayType(eindirect(rv.Index(0)))
+		if typeEqual(nest, tomlHash) || typeEqual(nest, tomlArrayHash) {
+			encPanic(errArrayNoTable)
+		}
+	}
+	return firstType
+}
+
+type tagOptions struct {
+	skip      bool // "-"
+	name      string
+	omitempty bool
+	omitzero  bool
+}
+
+func getOptions(tag reflect.StructTag) tagOptions {
+	t := tag.Get("toml")
+	if t == "-" {
+		return tagOptions{skip: true}
+	}
+	var opts tagOptions
+	parts := strings.Split(t, ",")
+	opts.name = parts[0]
+	for _, s := range parts[1:] {
+		switch s {
+		case "omitempty":
+			opts.omitempty = true
+		case "omitzero":
+			opts.omitzero = true
+		}
+	}
+	return opts
+}
+
+func isZero(rv reflect.Value) bool {
+	switch rv.Kind() {
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		return rv.Int() == 0
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
+		return rv.Uint() == 0
+	case reflect.Float32, reflect.Float64:
+		return rv.Float() == 0.0
+	}
+	return false
+}
+
+func isEmpty(rv reflect.Value) bool {
+	switch rv.Kind() {
+	case reflect.Array, reflect.Slice, reflect.Map, reflect.String:
+		return rv.Len() == 0
+	case reflect.Bool:
+		return !rv.Bool()
+	}
+	return false
+}
+
+func (enc *Encoder) newline() {
+	if enc.hasWritten {
+		enc.wf("\n")
+	}
+}
+
+func (enc *Encoder) keyEqElement(key Key, val reflect.Value) {
+	if len(key) == 0 {
+		encPanic(errNoKey)
+	}
+	panicIfInvalidKey(key)
+	enc.wf("%s%s = ", enc.indentStr(key), key.maybeQuoted(len(key)-1))
+	enc.eElement(val)
+	enc.newline()
+}
+
+func (enc *Encoder) wf(format string, v ...interface{}) {
+	if _, err := fmt.Fprintf(enc.w, format, v...); err != nil {
+		encPanic(err)
+	}
+	enc.hasWritten = true
+}
+
+func (enc *Encoder) indentStr(key Key) string {
+	return strings.Repeat(enc.Indent, len(key)-1)
+}
+
+func encPanic(err error) {
+	panic(tomlEncodeError{err})
+}
+
+func eindirect(v reflect.Value) reflect.Value {
+	switch v.Kind() {
+	case reflect.Ptr, reflect.Interface:
+		return eindirect(v.Elem())
+	default:
+		return v
+	}
+}
+
+func isNil(rv reflect.Value) bool {
+	switch rv.Kind() {
+	case reflect.Interface, reflect.Map, reflect.Ptr, reflect.Slice:
+		return rv.IsNil()
+	default:
+		return false
+	}
+}
+
+func panicIfInvalidKey(key Key) {
+	for _, k := range key {
+		if len(k) == 0 {
+			encPanic(e("Key '%s' is not a valid table name. Key names "+
+				"cannot be empty.", key.maybeQuotedAll()))
+		}
+	}
+}
+
+func isValidKeyName(s string) bool {
+	return len(s) != 0
+}
diff --git a/vendor/github.com/BurntSushi/toml/encoding_types.go b/vendor/github.com/BurntSushi/toml/encoding_types.go
new file mode 100644
index 0000000000..d36e1dd600
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/encoding_types.go
@@ -0,0 +1,19 @@
+// +build go1.2
+
+package toml
+
+// In order to support Go 1.1, we define our own TextMarshaler and
+// TextUnmarshaler types. For Go 1.2+, we just alias them with the
+// standard library interfaces.
+
+import (
+	"encoding"
+)
+
+// TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
+// so that Go 1.1 can be supported.
+type TextMarshaler encoding.TextMarshaler
+
+// TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
+// here so that Go 1.1 can be supported.
+type TextUnmarshaler encoding.TextUnmarshaler
diff --git a/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go b/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
new file mode 100644
index 0000000000..e8d503d046
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
@@ -0,0 +1,18 @@
+// +build !go1.2
+
+package toml
+
+// These interfaces were introduced in Go 1.2, so we add them manually when
+// compiling for Go 1.1.
+
+// TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
+// so that Go 1.1 can be supported.
+type TextMarshaler interface {
+	MarshalText() (text []byte, err error)
+}
+
+// TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
+// here so that Go 1.1 can be supported.
+type TextUnmarshaler interface {
+	UnmarshalText(text []byte) error
+}
diff --git a/vendor/github.com/BurntSushi/toml/lex.go b/vendor/github.com/BurntSushi/toml/lex.go
new file mode 100644
index 0000000000..6dee7fc792
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/lex.go
@@ -0,0 +1,953 @@
+package toml
+
+import (
+	"fmt"
+	"strings"
+	"unicode"
+	"unicode/utf8"
+)
+
+type itemType int
+
+const (
+	itemError itemType = iota
+	itemNIL            // used in the parser to indicate no type
+	itemEOF
+	itemText
+	itemString
+	itemRawString
+	itemMultilineString
+	itemRawMultilineString
+	itemBool
+	itemInteger
+	itemFloat
+	itemDatetime
+	itemArray // the start of an array
+	itemArrayEnd
+	itemTableStart
+	itemTableEnd
+	itemArrayTableStart
+	itemArrayTableEnd
+	itemKeyStart
+	itemCommentStart
+	itemInlineTableStart
+	itemInlineTableEnd
+)
+
+const (
+	eof              = 0
+	comma            = ','
+	tableStart       = '['
+	tableEnd         = ']'
+	arrayTableStart  = '['
+	arrayTableEnd    = ']'
+	tableSep         = '.'
+	keySep           = '='
+	arrayStart       = '['
+	arrayEnd         = ']'
+	commentStart     = '#'
+	stringStart      = '"'
+	stringEnd        = '"'
+	rawStringStart   = '\''
+	rawStringEnd     = '\''
+	inlineTableStart = '{'
+	inlineTableEnd   = '}'
+)
+
+type stateFn func(lx *lexer) stateFn
+
+type lexer struct {
+	input string
+	start int
+	pos   int
+	line  int
+	state stateFn
+	items chan item
+
+	// Allow for backing up up to three runes.
+	// This is necessary because TOML contains 3-rune tokens (""" and ''').
+	prevWidths [3]int
+	nprev      int // how many of prevWidths are in use
+	// If we emit an eof, we can still back up, but it is not OK to call
+	// next again.
+	atEOF bool
+
+	// A stack of state functions used to maintain context.
+	// The idea is to reuse parts of the state machine in various places.
+	// For example, values can appear at the top level or within arbitrarily
+	// nested arrays. The last state on the stack is used after a value has
+	// been lexed. Similarly for comments.
+	stack []stateFn
+}
+
+type item struct {
+	typ  itemType
+	val  string
+	line int
+}
+
+func (lx *lexer) nextItem() item {
+	for {
+		select {
+		case item := <-lx.items:
+			return item
+		default:
+			lx.state = lx.state(lx)
+		}
+	}
+}
+
+func lex(input string) *lexer {
+	lx := &lexer{
+		input: input,
+		state: lexTop,
+		line:  1,
+		items: make(chan item, 10),
+		stack: make([]stateFn, 0, 10),
+	}
+	return lx
+}
+
+func (lx *lexer) push(state stateFn) {
+	lx.stack = append(lx.stack, state)
+}
+
+func (lx *lexer) pop() stateFn {
+	if len(lx.stack) == 0 {
+		return lx.errorf("BUG in lexer: no states to pop")
+	}
+	last := lx.stack[len(lx.stack)-1]
+	lx.stack = lx.stack[0 : len(lx.stack)-1]
+	return last
+}
+
+func (lx *lexer) current() string {
+	return lx.input[lx.start:lx.pos]
+}
+
+func (lx *lexer) emit(typ itemType) {
+	lx.items <- item{typ, lx.current(), lx.line}
+	lx.start = lx.pos
+}
+
+func (lx *lexer) emitTrim(typ itemType) {
+	lx.items <- item{typ, strings.TrimSpace(lx.current()), lx.line}
+	lx.start = lx.pos
+}
+
+func (lx *lexer) next() (r rune) {
+	if lx.atEOF {
+		panic("next called after EOF")
+	}
+	if lx.pos >= len(lx.input) {
+		lx.atEOF = true
+		return eof
+	}
+
+	if lx.input[lx.pos] == '\n' {
+		lx.line++
+	}
+	lx.prevWidths[2] = lx.prevWidths[1]
+	lx.prevWidths[1] = lx.prevWidths[0]
+	if lx.nprev < 3 {
+		lx.nprev++
+	}
+	r, w := utf8.DecodeRuneInString(lx.input[lx.pos:])
+	lx.prevWidths[0] = w
+	lx.pos += w
+	return r
+}
+
+// ignore skips over the pending input before this point.
+func (lx *lexer) ignore() {
+	lx.start = lx.pos
+}
+
+// backup steps back one rune. Can be called only twice between calls to next.
+func (lx *lexer) backup() {
+	if lx.atEOF {
+		lx.atEOF = false
+		return
+	}
+	if lx.nprev < 1 {
+		panic("backed up too far")
+	}
+	w := lx.prevWidths[0]
+	lx.prevWidths[0] = lx.prevWidths[1]
+	lx.prevWidths[1] = lx.prevWidths[2]
+	lx.nprev--
+	lx.pos -= w
+	if lx.pos < len(lx.input) && lx.input[lx.pos] == '\n' {
+		lx.line--
+	}
+}
+
+// accept consumes the next rune if it's equal to `valid`.
+func (lx *lexer) accept(valid rune) bool {
+	if lx.next() == valid {
+		return true
+	}
+	lx.backup()
+	return false
+}
+
+// peek returns but does not consume the next rune in the input.
+func (lx *lexer) peek() rune {
+	r := lx.next()
+	lx.backup()
+	return r
+}
+
+// skip ignores all input that matches the given predicate.
+func (lx *lexer) skip(pred func(rune) bool) {
+	for {
+		r := lx.next()
+		if pred(r) {
+			continue
+		}
+		lx.backup()
+		lx.ignore()
+		return
+	}
+}
+
+// errorf stops all lexing by emitting an error and returning `nil`.
+// Note that any value that is a character is escaped if it's a special
+// character (newlines, tabs, etc.).
+func (lx *lexer) errorf(format string, values ...interface{}) stateFn {
+	lx.items <- item{
+		itemError,
+		fmt.Sprintf(format, values...),
+		lx.line,
+	}
+	return nil
+}
+
+// lexTop consumes elements at the top level of TOML data.
+func lexTop(lx *lexer) stateFn {
+	r := lx.next()
+	if isWhitespace(r) || isNL(r) {
+		return lexSkip(lx, lexTop)
+	}
+	switch r {
+	case commentStart:
+		lx.push(lexTop)
+		return lexCommentStart
+	case tableStart:
+		return lexTableStart
+	case eof:
+		if lx.pos > lx.start {
+			return lx.errorf("unexpected EOF")
+		}
+		lx.emit(itemEOF)
+		return nil
+	}
+
+	// At this point, the only valid item can be a key, so we back up
+	// and let the key lexer do the rest.
+	lx.backup()
+	lx.push(lexTopEnd)
+	return lexKeyStart
+}
+
+// lexTopEnd is entered whenever a top-level item has been consumed. (A value
+// or a table.) It must see only whitespace, and will turn back to lexTop
+// upon a newline. If it sees EOF, it will quit the lexer successfully.
+func lexTopEnd(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case r == commentStart:
+		// a comment will read to a newline for us.
+		lx.push(lexTop)
+		return lexCommentStart
+	case isWhitespace(r):
+		return lexTopEnd
+	case isNL(r):
+		lx.ignore()
+		return lexTop
+	case r == eof:
+		lx.emit(itemEOF)
+		return nil
+	}
+	return lx.errorf("expected a top-level item to end with a newline, "+
+		"comment, or EOF, but got %q instead", r)
+}
+
+// lexTable lexes the beginning of a table. Namely, it makes sure that
+// it starts with a character other than '.' and ']'.
+// It assumes that '[' has already been consumed.
+// It also handles the case that this is an item in an array of tables.
+// e.g., '[[name]]'.
+func lexTableStart(lx *lexer) stateFn {
+	if lx.peek() == arrayTableStart {
+		lx.next()
+		lx.emit(itemArrayTableStart)
+		lx.push(lexArrayTableEnd)
+	} else {
+		lx.emit(itemTableStart)
+		lx.push(lexTableEnd)
+	}
+	return lexTableNameStart
+}
+
+func lexTableEnd(lx *lexer) stateFn {
+	lx.emit(itemTableEnd)
+	return lexTopEnd
+}
+
+func lexArrayTableEnd(lx *lexer) stateFn {
+	if r := lx.next(); r != arrayTableEnd {
+		return lx.errorf("expected end of table array name delimiter %q, "+
+			"but got %q instead", arrayTableEnd, r)
+	}
+	lx.emit(itemArrayTableEnd)
+	return lexTopEnd
+}
+
+func lexTableNameStart(lx *lexer) stateFn {
+	lx.skip(isWhitespace)
+	switch r := lx.peek(); {
+	case r == tableEnd || r == eof:
+		return lx.errorf("unexpected end of table name " +
+			"(table names cannot be empty)")
+	case r == tableSep:
+		return lx.errorf("unexpected table separator " +
+			"(table names cannot be empty)")
+	case r == stringStart || r == rawStringStart:
+		lx.ignore()
+		lx.push(lexTableNameEnd)
+		return lexValue // reuse string lexing
+	default:
+		return lexBareTableName
+	}
+}
+
+// lexBareTableName lexes the name of a table. It assumes that at least one
+// valid character for the table has already been read.
+func lexBareTableName(lx *lexer) stateFn {
+	r := lx.next()
+	if isBareKeyChar(r) {
+		return lexBareTableName
+	}
+	lx.backup()
+	lx.emit(itemText)
+	return lexTableNameEnd
+}
+
+// lexTableNameEnd reads the end of a piece of a table name, optionally
+// consuming whitespace.
+func lexTableNameEnd(lx *lexer) stateFn {
+	lx.skip(isWhitespace)
+	switch r := lx.next(); {
+	case isWhitespace(r):
+		return lexTableNameEnd
+	case r == tableSep:
+		lx.ignore()
+		return lexTableNameStart
+	case r == tableEnd:
+		return lx.pop()
+	default:
+		return lx.errorf("expected '.' or ']' to end table name, "+
+			"but got %q instead", r)
+	}
+}
+
+// lexKeyStart consumes a key name up until the first non-whitespace character.
+// lexKeyStart will ignore whitespace.
+func lexKeyStart(lx *lexer) stateFn {
+	r := lx.peek()
+	switch {
+	case r == keySep:
+		return lx.errorf("unexpected key separator %q", keySep)
+	case isWhitespace(r) || isNL(r):
+		lx.next()
+		return lexSkip(lx, lexKeyStart)
+	case r == stringStart || r == rawStringStart:
+		lx.ignore()
+		lx.emit(itemKeyStart)
+		lx.push(lexKeyEnd)
+		return lexValue // reuse string lexing
+	default:
+		lx.ignore()
+		lx.emit(itemKeyStart)
+		return lexBareKey
+	}
+}
+
+// lexBareKey consumes the text of a bare key. Assumes that the first character
+// (which is not whitespace) has not yet been consumed.
+func lexBareKey(lx *lexer) stateFn {
+	switch r := lx.next(); {
+	case isBareKeyChar(r):
+		return lexBareKey
+	case isWhitespace(r):
+		lx.backup()
+		lx.emit(itemText)
+		return lexKeyEnd
+	case r == keySep:
+		lx.backup()
+		lx.emit(itemText)
+		return lexKeyEnd
+	default:
+		return lx.errorf("bare keys cannot contain %q", r)
+	}
+}
+
+// lexKeyEnd consumes the end of a key and trims whitespace (up to the key
+// separator).
+func lexKeyEnd(lx *lexer) stateFn {
+	switch r := lx.next(); {
+	case r == keySep:
+		return lexSkip(lx, lexValue)
+	case isWhitespace(r):
+		return lexSkip(lx, lexKeyEnd)
+	default:
+		return lx.errorf("expected key separator %q, but got %q instead",
+			keySep, r)
+	}
+}
+
+// lexValue starts the consumption of a value anywhere a value is expected.
+// lexValue will ignore whitespace.
+// After a value is lexed, the last state on the next is popped and returned.
+func lexValue(lx *lexer) stateFn {
+	// We allow whitespace to precede a value, but NOT newlines.
+	// In array syntax, the array states are responsible for ignoring newlines.
+	r := lx.next()
+	switch {
+	case isWhitespace(r):
+		return lexSkip(lx, lexValue)
+	case isDigit(r):
+		lx.backup() // avoid an extra state and use the same as above
+		return lexNumberOrDateStart
+	}
+	switch r {
+	case arrayStart:
+		lx.ignore()
+		lx.emit(itemArray)
+		return lexArrayValue
+	case inlineTableStart:
+		lx.ignore()
+		lx.emit(itemInlineTableStart)
+		return lexInlineTableValue
+	case stringStart:
+		if lx.accept(stringStart) {
+			if lx.accept(stringStart) {
+				lx.ignore() // Ignore """
+				return lexMultilineString
+			}
+			lx.backup()
+		}
+		lx.ignore() // ignore the '"'
+		return lexString
+	case rawStringStart:
+		if lx.accept(rawStringStart) {
+			if lx.accept(rawStringStart) {
+				lx.ignore() // Ignore """
+				return lexMultilineRawString
+			}
+			lx.backup()
+		}
+		lx.ignore() // ignore the "'"
+		return lexRawString
+	case '+', '-':
+		return lexNumberStart
+	case '.': // special error case, be kind to users
+		return lx.errorf("floats must start with a digit, not '.'")
+	}
+	if unicode.IsLetter(r) {
+		// Be permissive here; lexBool will give a nice error if the
+		// user wrote something like
+		//   x = foo
+		// (i.e. not 'true' or 'false' but is something else word-like.)
+		lx.backup()
+		return lexBool
+	}
+	return lx.errorf("expected value but found %q instead", r)
+}
+
+// lexArrayValue consumes one value in an array. It assumes that '[' or ','
+// have already been consumed. All whitespace and newlines are ignored.
+func lexArrayValue(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case isWhitespace(r) || isNL(r):
+		return lexSkip(lx, lexArrayValue)
+	case r == commentStart:
+		lx.push(lexArrayValue)
+		return lexCommentStart
+	case r == comma:
+		return lx.errorf("unexpected comma")
+	case r == arrayEnd:
+		// NOTE(caleb): The spec isn't clear about whether you can have
+		// a trailing comma or not, so we'll allow it.
+		return lexArrayEnd
+	}
+
+	lx.backup()
+	lx.push(lexArrayValueEnd)
+	return lexValue
+}
+
+// lexArrayValueEnd consumes everything between the end of an array value and
+// the next value (or the end of the array): it ignores whitespace and newlines
+// and expects either a ',' or a ']'.
+func lexArrayValueEnd(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case isWhitespace(r) || isNL(r):
+		return lexSkip(lx, lexArrayValueEnd)
+	case r == commentStart:
+		lx.push(lexArrayValueEnd)
+		return lexCommentStart
+	case r == comma:
+		lx.ignore()
+		return lexArrayValue // move on to the next value
+	case r == arrayEnd:
+		return lexArrayEnd
+	}
+	return lx.errorf(
+		"expected a comma or array terminator %q, but got %q instead",
+		arrayEnd, r,
+	)
+}
+
+// lexArrayEnd finishes the lexing of an array.
+// It assumes that a ']' has just been consumed.
+func lexArrayEnd(lx *lexer) stateFn {
+	lx.ignore()
+	lx.emit(itemArrayEnd)
+	return lx.pop()
+}
+
+// lexInlineTableValue consumes one key/value pair in an inline table.
+// It assumes that '{' or ',' have already been consumed. Whitespace is ignored.
+func lexInlineTableValue(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case isWhitespace(r):
+		return lexSkip(lx, lexInlineTableValue)
+	case isNL(r):
+		return lx.errorf("newlines not allowed within inline tables")
+	case r == commentStart:
+		lx.push(lexInlineTableValue)
+		return lexCommentStart
+	case r == comma:
+		return lx.errorf("unexpected comma")
+	case r == inlineTableEnd:
+		return lexInlineTableEnd
+	}
+	lx.backup()
+	lx.push(lexInlineTableValueEnd)
+	return lexKeyStart
+}
+
+// lexInlineTableValueEnd consumes everything between the end of an inline table
+// key/value pair and the next pair (or the end of the table):
+// it ignores whitespace and expects either a ',' or a '}'.
+func lexInlineTableValueEnd(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case isWhitespace(r):
+		return lexSkip(lx, lexInlineTableValueEnd)
+	case isNL(r):
+		return lx.errorf("newlines not allowed within inline tables")
+	case r == commentStart:
+		lx.push(lexInlineTableValueEnd)
+		return lexCommentStart
+	case r == comma:
+		lx.ignore()
+		return lexInlineTableValue
+	case r == inlineTableEnd:
+		return lexInlineTableEnd
+	}
+	return lx.errorf("expected a comma or an inline table terminator %q, "+
+		"but got %q instead", inlineTableEnd, r)
+}
+
+// lexInlineTableEnd finishes the lexing of an inline table.
+// It assumes that a '}' has just been consumed.
+func lexInlineTableEnd(lx *lexer) stateFn {
+	lx.ignore()
+	lx.emit(itemInlineTableEnd)
+	return lx.pop()
+}
+
+// lexString consumes the inner contents of a string. It assumes that the
+// beginning '"' has already been consumed and ignored.
+func lexString(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case r == eof:
+		return lx.errorf("unexpected EOF")
+	case isNL(r):
+		return lx.errorf("strings cannot contain newlines")
+	case r == '\\':
+		lx.push(lexString)
+		return lexStringEscape
+	case r == stringEnd:
+		lx.backup()
+		lx.emit(itemString)
+		lx.next()
+		lx.ignore()
+		return lx.pop()
+	}
+	return lexString
+}
+
+// lexMultilineString consumes the inner contents of a string. It assumes that
+// the beginning '"""' has already been consumed and ignored.
+func lexMultilineString(lx *lexer) stateFn {
+	switch lx.next() {
+	case eof:
+		return lx.errorf("unexpected EOF")
+	case '\\':
+		return lexMultilineStringEscape
+	case stringEnd:
+		if lx.accept(stringEnd) {
+			if lx.accept(stringEnd) {
+				lx.backup()
+				lx.backup()
+				lx.backup()
+				lx.emit(itemMultilineString)
+				lx.next()
+				lx.next()
+				lx.next()
+				lx.ignore()
+				return lx.pop()
+			}
+			lx.backup()
+		}
+	}
+	return lexMultilineString
+}
+
+// lexRawString consumes a raw string. Nothing can be escaped in such a string.
+// It assumes that the beginning "'" has already been consumed and ignored.
+func lexRawString(lx *lexer) stateFn {
+	r := lx.next()
+	switch {
+	case r == eof:
+		return lx.errorf("unexpected EOF")
+	case isNL(r):
+		return lx.errorf("strings cannot contain newlines")
+	case r == rawStringEnd:
+		lx.backup()
+		lx.emit(itemRawString)
+		lx.next()
+		lx.ignore()
+		return lx.pop()
+	}
+	return lexRawString
+}
+
+// lexMultilineRawString consumes a raw string. Nothing can be escaped in such
+// a string. It assumes that the beginning "'''" has already been consumed and
+// ignored.
+func lexMultilineRawString(lx *lexer) stateFn {
+	switch lx.next() {
+	case eof:
+		return lx.errorf("unexpected EOF")
+	case rawStringEnd:
+		if lx.accept(rawStringEnd) {
+			if lx.accept(rawStringEnd) {
+				lx.backup()
+				lx.backup()
+				lx.backup()
+				lx.emit(itemRawMultilineString)
+				lx.next()
+				lx.next()
+				lx.next()
+				lx.ignore()
+				return lx.pop()
+			}
+			lx.backup()
+		}
+	}
+	return lexMultilineRawString
+}
+
+// lexMultilineStringEscape consumes an escaped character. It assumes that the
+// preceding '\\' has already been consumed.
+func lexMultilineStringEscape(lx *lexer) stateFn {
+	// Handle the special case first:
+	if isNL(lx.next()) {
+		return lexMultilineString
+	}
+	lx.backup()
+	lx.push(lexMultilineString)
+	return lexStringEscape(lx)
+}
+
+func lexStringEscape(lx *lexer) stateFn {
+	r := lx.next()
+	switch r {
+	case 'b':
+		fallthrough
+	case 't':
+		fallthrough
+	case 'n':
+		fallthrough
+	case 'f':
+		fallthrough
+	case 'r':
+		fallthrough
+	case '"':
+		fallthrough
+	case '\\':
+		return lx.pop()
+	case 'u':
+		return lexShortUnicodeEscape
+	case 'U':
+		return lexLongUnicodeEscape
+	}
+	return lx.errorf("invalid escape character %q; only the following "+
+		"escape characters are allowed: "+
+		`\b, \t, \n, \f, \r, \", \\, \uXXXX, and \UXXXXXXXX`, r)
+}
+
+func lexShortUnicodeEscape(lx *lexer) stateFn {
+	var r rune
+	for i := 0; i < 4; i++ {
+		r = lx.next()
+		if !isHexadecimal(r) {
+			return lx.errorf(`expected four hexadecimal digits after '\u', `+
+				"but got %q instead", lx.current())
+		}
+	}
+	return lx.pop()
+}
+
+func lexLongUnicodeEscape(lx *lexer) stateFn {
+	var r rune
+	for i := 0; i < 8; i++ {
+		r = lx.next()
+		if !isHexadecimal(r) {
+			return lx.errorf(`expected eight hexadecimal digits after '\U', `+
+				"but got %q instead", lx.current())
+		}
+	}
+	return lx.pop()
+}
+
+// lexNumberOrDateStart consumes either an integer, a float, or datetime.
+func lexNumberOrDateStart(lx *lexer) stateFn {
+	r := lx.next()
+	if isDigit(r) {
+		return lexNumberOrDate
+	}
+	switch r {
+	case '_':
+		return lexNumber
+	case 'e', 'E':
+		return lexFloat
+	case '.':
+		return lx.errorf("floats must start with a digit, not '.'")
+	}
+	return lx.errorf("expected a digit but got %q", r)
+}
+
+// lexNumberOrDate consumes either an integer, float or datetime.
+func lexNumberOrDate(lx *lexer) stateFn {
+	r := lx.next()
+	if isDigit(r) {
+		return lexNumberOrDate
+	}
+	switch r {
+	case '-':
+		return lexDatetime
+	case '_':
+		return lexNumber
+	case '.', 'e', 'E':
+		return lexFloat
+	}
+
+	lx.backup()
+	lx.emit(itemInteger)
+	return lx.pop()
+}
+
+// lexDatetime consumes a Datetime, to a first approximation.
+// The parser validates that it matches one of the accepted formats.
+func lexDatetime(lx *lexer) stateFn {
+	r := lx.next()
+	if isDigit(r) {
+		return lexDatetime
+	}
+	switch r {
+	case '-', 'T', ':', '.', 'Z':
+		return lexDatetime
+	}
+
+	lx.backup()
+	lx.emit(itemDatetime)
+	return lx.pop()
+}
+
+// lexNumberStart consumes either an integer or a float. It assumes that a sign
+// has already been read, but that *no* digits have been consumed.
+// lexNumberStart will move to the appropriate integer or float states.
+func lexNumberStart(lx *lexer) stateFn {
+	// We MUST see a digit. Even floats have to start with a digit.
+	r := lx.next()
+	if !isDigit(r) {
+		if r == '.' {
+			return lx.errorf("floats must start with a digit, not '.'")
+		}
+		return lx.errorf("expected a digit but got %q", r)
+	}
+	return lexNumber
+}
+
+// lexNumber consumes an integer or a float after seeing the first digit.
+func lexNumber(lx *lexer) stateFn {
+	r := lx.next()
+	if isDigit(r) {
+		return lexNumber
+	}
+	switch r {
+	case '_':
+		return lexNumber
+	case '.', 'e', 'E':
+		return lexFloat
+	}
+
+	lx.backup()
+	lx.emit(itemInteger)
+	return lx.pop()
+}
+
+// lexFloat consumes the elements of a float. It allows any sequence of
+// float-like characters, so floats emitted by the lexer are only a first
+// approximation and must be validated by the parser.
+func lexFloat(lx *lexer) stateFn {
+	r := lx.next()
+	if isDigit(r) {
+		return lexFloat
+	}
+	switch r {
+	case '_', '.', '-', '+', 'e', 'E':
+		return lexFloat
+	}
+
+	lx.backup()
+	lx.emit(itemFloat)
+	return lx.pop()
+}
+
+// lexBool consumes a bool string: 'true' or 'false.
+func lexBool(lx *lexer) stateFn {
+	var rs []rune
+	for {
+		r := lx.next()
+		if !unicode.IsLetter(r) {
+			lx.backup()
+			break
+		}
+		rs = append(rs, r)
+	}
+	s := string(rs)
+	switch s {
+	case "true", "false":
+		lx.emit(itemBool)
+		return lx.pop()
+	}
+	return lx.errorf("expected value but found %q instead", s)
+}
+
+// lexCommentStart begins the lexing of a comment. It will emit
+// itemCommentStart and consume no characters, passing control to lexComment.
+func lexCommentStart(lx *lexer) stateFn {
+	lx.ignore()
+	lx.emit(itemCommentStart)
+	return lexComment
+}
+
+// lexComment lexes an entire comment. It assumes that '#' has been consumed.
+// It will consume *up to* the first newline character, and pass control
+// back to the last state on the stack.
+func lexComment(lx *lexer) stateFn {
+	r := lx.peek()
+	if isNL(r) || r == eof {
+		lx.emit(itemText)
+		return lx.pop()
+	}
+	lx.next()
+	return lexComment
+}
+
+// lexSkip ignores all slurped input and moves on to the next state.
+func lexSkip(lx *lexer, nextState stateFn) stateFn {
+	return func(lx *lexer) stateFn {
+		lx.ignore()
+		return nextState
+	}
+}
+
+// isWhitespace returns true if `r` is a whitespace character according
+// to the spec.
+func isWhitespace(r rune) bool {
+	return r == '\t' || r == ' '
+}
+
+func isNL(r rune) bool {
+	return r == '\n' || r == '\r'
+}
+
+func isDigit(r rune) bool {
+	return r >= '0' && r <= '9'
+}
+
+func isHexadecimal(r rune) bool {
+	return (r >= '0' && r <= '9') ||
+		(r >= 'a' && r <= 'f') ||
+		(r >= 'A' && r <= 'F')
+}
+
+func isBareKeyChar(r rune) bool {
+	return (r >= 'A' && r <= 'Z') ||
+		(r >= 'a' && r <= 'z') ||
+		(r >= '0' && r <= '9') ||
+		r == '_' ||
+		r == '-'
+}
+
+func (itype itemType) String() string {
+	switch itype {
+	case itemError:
+		return "Error"
+	case itemNIL:
+		return "NIL"
+	case itemEOF:
+		return "EOF"
+	case itemText:
+		return "Text"
+	case itemString, itemRawString, itemMultilineString, itemRawMultilineString:
+		return "String"
+	case itemBool:
+		return "Bool"
+	case itemInteger:
+		return "Integer"
+	case itemFloat:
+		return "Float"
+	case itemDatetime:
+		return "DateTime"
+	case itemTableStart:
+		return "TableStart"
+	case itemTableEnd:
+		return "TableEnd"
+	case itemKeyStart:
+		return "KeyStart"
+	case itemArray:
+		return "Array"
+	case itemArrayEnd:
+		return "ArrayEnd"
+	case itemCommentStart:
+		return "CommentStart"
+	}
+	panic(fmt.Sprintf("BUG: Unknown type '%d'.", int(itype)))
+}
+
+func (item item) String() string {
+	return fmt.Sprintf("(%s, %s)", item.typ.String(), item.val)
+}
diff --git a/vendor/github.com/BurntSushi/toml/parse.go b/vendor/github.com/BurntSushi/toml/parse.go
new file mode 100644
index 0000000000..50869ef926
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/parse.go
@@ -0,0 +1,592 @@
+package toml
+
+import (
+	"fmt"
+	"strconv"
+	"strings"
+	"time"
+	"unicode"
+	"unicode/utf8"
+)
+
+type parser struct {
+	mapping map[string]interface{}
+	types   map[string]tomlType
+	lx      *lexer
+
+	// A list of keys in the order that they appear in the TOML data.
+	ordered []Key
+
+	// the full key for the current hash in scope
+	context Key
+
+	// the base key name for everything except hashes
+	currentKey string
+
+	// rough approximation of line number
+	approxLine int
+
+	// A map of 'key.group.names' to whether they were created implicitly.
+	implicits map[string]bool
+}
+
+type parseError string
+
+func (pe parseError) Error() string {
+	return string(pe)
+}
+
+func parse(data string) (p *parser, err error) {
+	defer func() {
+		if r := recover(); r != nil {
+			var ok bool
+			if err, ok = r.(parseError); ok {
+				return
+			}
+			panic(r)
+		}
+	}()
+
+	p = &parser{
+		mapping:   make(map[string]interface{}),
+		types:     make(map[string]tomlType),
+		lx:        lex(data),
+		ordered:   make([]Key, 0),
+		implicits: make(map[string]bool),
+	}
+	for {
+		item := p.next()
+		if item.typ == itemEOF {
+			break
+		}
+		p.topLevel(item)
+	}
+
+	return p, nil
+}
+
+func (p *parser) panicf(format string, v ...interface{}) {
+	msg := fmt.Sprintf("Near line %d (last key parsed '%s'): %s",
+		p.approxLine, p.current(), fmt.Sprintf(format, v...))
+	panic(parseError(msg))
+}
+
+func (p *parser) next() item {
+	it := p.lx.nextItem()
+	if it.typ == itemError {
+		p.panicf("%s", it.val)
+	}
+	return it
+}
+
+func (p *parser) bug(format string, v ...interface{}) {
+	panic(fmt.Sprintf("BUG: "+format+"\n\n", v...))
+}
+
+func (p *parser) expect(typ itemType) item {
+	it := p.next()
+	p.assertEqual(typ, it.typ)
+	return it
+}
+
+func (p *parser) assertEqual(expected, got itemType) {
+	if expected != got {
+		p.bug("Expected '%s' but got '%s'.", expected, got)
+	}
+}
+
+func (p *parser) topLevel(item item) {
+	switch item.typ {
+	case itemCommentStart:
+		p.approxLine = item.line
+		p.expect(itemText)
+	case itemTableStart:
+		kg := p.next()
+		p.approxLine = kg.line
+
+		var key Key
+		for ; kg.typ != itemTableEnd && kg.typ != itemEOF; kg = p.next() {
+			key = append(key, p.keyString(kg))
+		}
+		p.assertEqual(itemTableEnd, kg.typ)
+
+		p.establishContext(key, false)
+		p.setType("", tomlHash)
+		p.ordered = append(p.ordered, key)
+	case itemArrayTableStart:
+		kg := p.next()
+		p.approxLine = kg.line
+
+		var key Key
+		for ; kg.typ != itemArrayTableEnd && kg.typ != itemEOF; kg = p.next() {
+			key = append(key, p.keyString(kg))
+		}
+		p.assertEqual(itemArrayTableEnd, kg.typ)
+
+		p.establishContext(key, true)
+		p.setType("", tomlArrayHash)
+		p.ordered = append(p.ordered, key)
+	case itemKeyStart:
+		kname := p.next()
+		p.approxLine = kname.line
+		p.currentKey = p.keyString(kname)
+
+		val, typ := p.value(p.next())
+		p.setValue(p.currentKey, val)
+		p.setType(p.currentKey, typ)
+		p.ordered = append(p.ordered, p.context.add(p.currentKey))
+		p.currentKey = ""
+	default:
+		p.bug("Unexpected type at top level: %s", item.typ)
+	}
+}
+
+// Gets a string for a key (or part of a key in a table name).
+func (p *parser) keyString(it item) string {
+	switch it.typ {
+	case itemText:
+		return it.val
+	case itemString, itemMultilineString,
+		itemRawString, itemRawMultilineString:
+		s, _ := p.value(it)
+		return s.(string)
+	default:
+		p.bug("Unexpected key type: %s", it.typ)
+		panic("unreachable")
+	}
+}
+
+// value translates an expected value from the lexer into a Go value wrapped
+// as an empty interface.
+func (p *parser) value(it item) (interface{}, tomlType) {
+	switch it.typ {
+	case itemString:
+		return p.replaceEscapes(it.val), p.typeOfPrimitive(it)
+	case itemMultilineString:
+		trimmed := stripFirstNewline(stripEscapedWhitespace(it.val))
+		return p.replaceEscapes(trimmed), p.typeOfPrimitive(it)
+	case itemRawString:
+		return it.val, p.typeOfPrimitive(it)
+	case itemRawMultilineString:
+		return stripFirstNewline(it.val), p.typeOfPrimitive(it)
+	case itemBool:
+		switch it.val {
+		case "true":
+			return true, p.typeOfPrimitive(it)
+		case "false":
+			return false, p.typeOfPrimitive(it)
+		}
+		p.bug("Expected boolean value, but got '%s'.", it.val)
+	case itemInteger:
+		if !numUnderscoresOK(it.val) {
+			p.panicf("Invalid integer %q: underscores must be surrounded by digits",
+				it.val)
+		}
+		val := strings.Replace(it.val, "_", "", -1)
+		num, err := strconv.ParseInt(val, 10, 64)
+		if err != nil {
+			// Distinguish integer values. Normally, it'd be a bug if the lexer
+			// provides an invalid integer, but it's possible that the number is
+			// out of range of valid values (which the lexer cannot determine).
+			// So mark the former as a bug but the latter as a legitimate user
+			// error.
+			if e, ok := err.(*strconv.NumError); ok &&
+				e.Err == strconv.ErrRange {
+
+				p.panicf("Integer '%s' is out of the range of 64-bit "+
+					"signed integers.", it.val)
+			} else {
+				p.bug("Expected integer value, but got '%s'.", it.val)
+			}
+		}
+		return num, p.typeOfPrimitive(it)
+	case itemFloat:
+		parts := strings.FieldsFunc(it.val, func(r rune) bool {
+			switch r {
+			case '.', 'e', 'E':
+				return true
+			}
+			return false
+		})
+		for _, part := range parts {
+			if !numUnderscoresOK(part) {
+				p.panicf("Invalid float %q: underscores must be "+
+					"surrounded by digits", it.val)
+			}
+		}
+		if !numPeriodsOK(it.val) {
+			// As a special case, numbers like '123.' or '1.e2',
+			// which are valid as far as Go/strconv are concerned,
+			// must be rejected because TOML says that a fractional
+			// part consists of '.' followed by 1+ digits.
+			p.panicf("Invalid float %q: '.' must be followed "+
+				"by one or more digits", it.val)
+		}
+		val := strings.Replace(it.val, "_", "", -1)
+		num, err := strconv.ParseFloat(val, 64)
+		if err != nil {
+			if e, ok := err.(*strconv.NumError); ok &&
+				e.Err == strconv.ErrRange {
+
+				p.panicf("Float '%s' is out of the range of 64-bit "+
+					"IEEE-754 floating-point numbers.", it.val)
+			} else {
+				p.panicf("Invalid float value: %q", it.val)
+			}
+		}
+		return num, p.typeOfPrimitive(it)
+	case itemDatetime:
+		var t time.Time
+		var ok bool
+		var err error
+		for _, format := range []string{
+			"2006-01-02T15:04:05Z07:00",
+			"2006-01-02T15:04:05",
+			"2006-01-02",
+		} {
+			t, err = time.ParseInLocation(format, it.val, time.Local)
+			if err == nil {
+				ok = true
+				break
+			}
+		}
+		if !ok {
+			p.panicf("Invalid TOML Datetime: %q.", it.val)
+		}
+		return t, p.typeOfPrimitive(it)
+	case itemArray:
+		array := make([]interface{}, 0)
+		types := make([]tomlType, 0)
+
+		for it = p.next(); it.typ != itemArrayEnd; it = p.next() {
+			if it.typ == itemCommentStart {
+				p.expect(itemText)
+				continue
+			}
+
+			val, typ := p.value(it)
+			array = append(array, val)
+			types = append(types, typ)
+		}
+		return array, p.typeOfArray(types)
+	case itemInlineTableStart:
+		var (
+			hash         = make(map[string]interface{})
+			outerContext = p.context
+			outerKey     = p.currentKey
+		)
+
+		p.context = append(p.context, p.currentKey)
+		p.currentKey = ""
+		for it := p.next(); it.typ != itemInlineTableEnd; it = p.next() {
+			if it.typ != itemKeyStart {
+				p.bug("Expected key start but instead found %q, around line %d",
+					it.val, p.approxLine)
+			}
+			if it.typ == itemCommentStart {
+				p.expect(itemText)
+				continue
+			}
+
+			// retrieve key
+			k := p.next()
+			p.approxLine = k.line
+			kname := p.keyString(k)
+
+			// retrieve value
+			p.currentKey = kname
+			val, typ := p.value(p.next())
+			// make sure we keep metadata up to date
+			p.setType(kname, typ)
+			p.ordered = append(p.ordered, p.context.add(p.currentKey))
+			hash[kname] = val
+		}
+		p.context = outerContext
+		p.currentKey = outerKey
+		return hash, tomlHash
+	}
+	p.bug("Unexpected value type: %s", it.typ)
+	panic("unreachable")
+}
+
+// numUnderscoresOK checks whether each underscore in s is surrounded by
+// characters that are not underscores.
+func numUnderscoresOK(s string) bool {
+	accept := false
+	for _, r := range s {
+		if r == '_' {
+			if !accept {
+				return false
+			}
+			accept = false
+			continue
+		}
+		accept = true
+	}
+	return accept
+}
+
+// numPeriodsOK checks whether every period in s is followed by a digit.
+func numPeriodsOK(s string) bool {
+	period := false
+	for _, r := range s {
+		if period && !isDigit(r) {
+			return false
+		}
+		period = r == '.'
+	}
+	return !period
+}
+
+// establishContext sets the current context of the parser,
+// where the context is either a hash or an array of hashes. Which one is
+// set depends on the value of the `array` parameter.
+//
+// Establishing the context also makes sure that the key isn't a duplicate, and
+// will create implicit hashes automatically.
+func (p *parser) establishContext(key Key, array bool) {
+	var ok bool
+
+	// Always start at the top level and drill down for our context.
+	hashContext := p.mapping
+	keyContext := make(Key, 0)
+
+	// We only need implicit hashes for key[0:-1]
+	for _, k := range key[0 : len(key)-1] {
+		_, ok = hashContext[k]
+		keyContext = append(keyContext, k)
+
+		// No key? Make an implicit hash and move on.
+		if !ok {
+			p.addImplicit(keyContext)
+			hashContext[k] = make(map[string]interface{})
+		}
+
+		// If the hash context is actually an array of tables, then set
+		// the hash context to the last element in that array.
+		//
+		// Otherwise, it better be a table, since this MUST be a key group (by
+		// virtue of it not being the last element in a key).
+		switch t := hashContext[k].(type) {
+		case []map[string]interface{}:
+			hashContext = t[len(t)-1]
+		case map[string]interface{}:
+			hashContext = t
+		default:
+			p.panicf("Key '%s' was already created as a hash.", keyContext)
+		}
+	}
+
+	p.context = keyContext
+	if array {
+		// If this is the first element for this array, then allocate a new
+		// list of tables for it.
+		k := key[len(key)-1]
+		if _, ok := hashContext[k]; !ok {
+			hashContext[k] = make([]map[string]interface{}, 0, 5)
+		}
+
+		// Add a new table. But make sure the key hasn't already been used
+		// for something else.
+		if hash, ok := hashContext[k].([]map[string]interface{}); ok {
+			hashContext[k] = append(hash, make(map[string]interface{}))
+		} else {
+			p.panicf("Key '%s' was already created and cannot be used as "+
+				"an array.", keyContext)
+		}
+	} else {
+		p.setValue(key[len(key)-1], make(map[string]interface{}))
+	}
+	p.context = append(p.context, key[len(key)-1])
+}
+
+// setValue sets the given key to the given value in the current context.
+// It will make sure that the key hasn't already been defined, account for
+// implicit key groups.
+func (p *parser) setValue(key string, value interface{}) {
+	var tmpHash interface{}
+	var ok bool
+
+	hash := p.mapping
+	keyContext := make(Key, 0)
+	for _, k := range p.context {
+		keyContext = append(keyContext, k)
+		if tmpHash, ok = hash[k]; !ok {
+			p.bug("Context for key '%s' has not been established.", keyContext)
+		}
+		switch t := tmpHash.(type) {
+		case []map[string]interface{}:
+			// The context is a table of hashes. Pick the most recent table
+			// defined as the current hash.
+			hash = t[len(t)-1]
+		case map[string]interface{}:
+			hash = t
+		default:
+			p.bug("Expected hash to have type 'map[string]interface{}', but "+
+				"it has '%T' instead.", tmpHash)
+		}
+	}
+	keyContext = append(keyContext, key)
+
+	if _, ok := hash[key]; ok {
+		// Typically, if the given key has already been set, then we have
+		// to raise an error since duplicate keys are disallowed. However,
+		// it's possible that a key was previously defined implicitly. In this
+		// case, it is allowed to be redefined concretely. (See the
+		// `tests/valid/implicit-and-explicit-after.toml` test in `toml-test`.)
+		//
+		// But we have to make sure to stop marking it as an implicit. (So that
+		// another redefinition provokes an error.)
+		//
+		// Note that since it has already been defined (as a hash), we don't
+		// want to overwrite it. So our business is done.
+		if p.isImplicit(keyContext) {
+			p.removeImplicit(keyContext)
+			return
+		}
+
+		// Otherwise, we have a concrete key trying to override a previous
+		// key, which is *always* wrong.
+		p.panicf("Key '%s' has already been defined.", keyContext)
+	}
+	hash[key] = value
+}
+
+// setType sets the type of a particular value at a given key.
+// It should be called immediately AFTER setValue.
+//
+// Note that if `key` is empty, then the type given will be applied to the
+// current context (which is either a table or an array of tables).
+func (p *parser) setType(key string, typ tomlType) {
+	keyContext := make(Key, 0, len(p.context)+1)
+	for _, k := range p.context {
+		keyContext = append(keyContext, k)
+	}
+	if len(key) > 0 { // allow type setting for hashes
+		keyContext = append(keyContext, key)
+	}
+	p.types[keyContext.String()] = typ
+}
+
+// addImplicit sets the given Key as having been created implicitly.
+func (p *parser) addImplicit(key Key) {
+	p.implicits[key.String()] = true
+}
+
+// removeImplicit stops tagging the given key as having been implicitly
+// created.
+func (p *parser) removeImplicit(key Key) {
+	p.implicits[key.String()] = false
+}
+
+// isImplicit returns true if the key group pointed to by the key was created
+// implicitly.
+func (p *parser) isImplicit(key Key) bool {
+	return p.implicits[key.String()]
+}
+
+// current returns the full key name of the current context.
+func (p *parser) current() string {
+	if len(p.currentKey) == 0 {
+		return p.context.String()
+	}
+	if len(p.context) == 0 {
+		return p.currentKey
+	}
+	return fmt.Sprintf("%s.%s", p.context, p.currentKey)
+}
+
+func stripFirstNewline(s string) string {
+	if len(s) == 0 || s[0] != '\n' {
+		return s
+	}
+	return s[1:]
+}
+
+func stripEscapedWhitespace(s string) string {
+	esc := strings.Split(s, "\\\n")
+	if len(esc) > 1 {
+		for i := 1; i < len(esc); i++ {
+			esc[i] = strings.TrimLeftFunc(esc[i], unicode.IsSpace)
+		}
+	}
+	return strings.Join(esc, "")
+}
+
+func (p *parser) replaceEscapes(str string) string {
+	var replaced []rune
+	s := []byte(str)
+	r := 0
+	for r < len(s) {
+		if s[r] != '\\' {
+			c, size := utf8.DecodeRune(s[r:])
+			r += size
+			replaced = append(replaced, c)
+			continue
+		}
+		r += 1
+		if r >= len(s) {
+			p.bug("Escape sequence at end of string.")
+			return ""
+		}
+		switch s[r] {
+		default:
+			p.bug("Expected valid escape code after \\, but got %q.", s[r])
+			return ""
+		case 'b':
+			replaced = append(replaced, rune(0x0008))
+			r += 1
+		case 't':
+			replaced = append(replaced, rune(0x0009))
+			r += 1
+		case 'n':
+			replaced = append(replaced, rune(0x000A))
+			r += 1
+		case 'f':
+			replaced = append(replaced, rune(0x000C))
+			r += 1
+		case 'r':
+			replaced = append(replaced, rune(0x000D))
+			r += 1
+		case '"':
+			replaced = append(replaced, rune(0x0022))
+			r += 1
+		case '\\':
+			replaced = append(replaced, rune(0x005C))
+			r += 1
+		case 'u':
+			// At this point, we know we have a Unicode escape of the form
+			// `uXXXX` at [r, r+5). (Because the lexer guarantees this
+			// for us.)
+			escaped := p.asciiEscapeToUnicode(s[r+1 : r+5])
+			replaced = append(replaced, escaped)
+			r += 5
+		case 'U':
+			// At this point, we know we have a Unicode escape of the form
+			// `uXXXX` at [r, r+9). (Because the lexer guarantees this
+			// for us.)
+			escaped := p.asciiEscapeToUnicode(s[r+1 : r+9])
+			replaced = append(replaced, escaped)
+			r += 9
+		}
+	}
+	return string(replaced)
+}
+
+func (p *parser) asciiEscapeToUnicode(bs []byte) rune {
+	s := string(bs)
+	hex, err := strconv.ParseUint(strings.ToLower(s), 16, 32)
+	if err != nil {
+		p.bug("Could not parse '%s' as a hexadecimal number, but the "+
+			"lexer claims it's OK: %s", s, err)
+	}
+	if !utf8.ValidRune(rune(hex)) {
+		p.panicf("Escaped character '\\u%s' is not valid UTF-8.", s)
+	}
+	return rune(hex)
+}
+
+func isStringType(ty itemType) bool {
+	return ty == itemString || ty == itemMultilineString ||
+		ty == itemRawString || ty == itemRawMultilineString
+}
diff --git a/vendor/github.com/BurntSushi/toml/type_check.go b/vendor/github.com/BurntSushi/toml/type_check.go
new file mode 100644
index 0000000000..c73f8afc1a
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/type_check.go
@@ -0,0 +1,91 @@
+package toml
+
+// tomlType represents any Go type that corresponds to a TOML type.
+// While the first draft of the TOML spec has a simplistic type system that
+// probably doesn't need this level of sophistication, we seem to be militating
+// toward adding real composite types.
+type tomlType interface {
+	typeString() string
+}
+
+// typeEqual accepts any two types and returns true if they are equal.
+func typeEqual(t1, t2 tomlType) bool {
+	if t1 == nil || t2 == nil {
+		return false
+	}
+	return t1.typeString() == t2.typeString()
+}
+
+func typeIsHash(t tomlType) bool {
+	return typeEqual(t, tomlHash) || typeEqual(t, tomlArrayHash)
+}
+
+type tomlBaseType string
+
+func (btype tomlBaseType) typeString() string {
+	return string(btype)
+}
+
+func (btype tomlBaseType) String() string {
+	return btype.typeString()
+}
+
+var (
+	tomlInteger   tomlBaseType = "Integer"
+	tomlFloat     tomlBaseType = "Float"
+	tomlDatetime  tomlBaseType = "Datetime"
+	tomlString    tomlBaseType = "String"
+	tomlBool      tomlBaseType = "Bool"
+	tomlArray     tomlBaseType = "Array"
+	tomlHash      tomlBaseType = "Hash"
+	tomlArrayHash tomlBaseType = "ArrayHash"
+)
+
+// typeOfPrimitive returns a tomlType of any primitive value in TOML.
+// Primitive values are: Integer, Float, Datetime, String and Bool.
+//
+// Passing a lexer item other than the following will cause a BUG message
+// to occur: itemString, itemBool, itemInteger, itemFloat, itemDatetime.
+func (p *parser) typeOfPrimitive(lexItem item) tomlType {
+	switch lexItem.typ {
+	case itemInteger:
+		return tomlInteger
+	case itemFloat:
+		return tomlFloat
+	case itemDatetime:
+		return tomlDatetime
+	case itemString:
+		return tomlString
+	case itemMultilineString:
+		return tomlString
+	case itemRawString:
+		return tomlString
+	case itemRawMultilineString:
+		return tomlString
+	case itemBool:
+		return tomlBool
+	}
+	p.bug("Cannot infer primitive type of lex item '%s'.", lexItem)
+	panic("unreachable")
+}
+
+// typeOfArray returns a tomlType for an array given a list of types of its
+// values.
+//
+// In the current spec, if an array is homogeneous, then its type is always
+// "Array". If the array is not homogeneous, an error is generated.
+func (p *parser) typeOfArray(types []tomlType) tomlType {
+	// Empty arrays are cool.
+	if len(types) == 0 {
+		return tomlArray
+	}
+
+	theType := types[0]
+	for _, t := range types[1:] {
+		if !typeEqual(theType, t) {
+			p.panicf("Array contains values of type '%s' and '%s', but "+
+				"arrays must be homogeneous.", theType, t)
+		}
+	}
+	return tomlArray
+}
diff --git a/vendor/github.com/BurntSushi/toml/type_fields.go b/vendor/github.com/BurntSushi/toml/type_fields.go
new file mode 100644
index 0000000000..608997c22f
--- /dev/null
+++ b/vendor/github.com/BurntSushi/toml/type_fields.go
@@ -0,0 +1,242 @@
+package toml
+
+// Struct field handling is adapted from code in encoding/json:
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the Go distribution.
+
+import (
+	"reflect"
+	"sort"
+	"sync"
+)
+
+// A field represents a single field found in a struct.
+type field struct {
+	name  string       // the name of the field (`toml` tag included)
+	tag   bool         // whether field has a `toml` tag
+	index []int        // represents the depth of an anonymous field
+	typ   reflect.Type // the type of the field
+}
+
+// byName sorts field by name, breaking ties with depth,
+// then breaking ties with "name came from toml tag", then
+// breaking ties with index sequence.
+type byName []field
+
+func (x byName) Len() int { return len(x) }
+
+func (x byName) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
+
+func (x byName) Less(i, j int) bool {
+	if x[i].name != x[j].name {
+		return x[i].name < x[j].name
+	}
+	if len(x[i].index) != len(x[j].index) {
+		return len(x[i].index) < len(x[j].index)
+	}
+	if x[i].tag != x[j].tag {
+		return x[i].tag
+	}
+	return byIndex(x).Less(i, j)
+}
+
+// byIndex sorts field by index sequence.
+type byIndex []field
+
+func (x byIndex) Len() int { return len(x) }
+
+func (x byIndex) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
+
+func (x byIndex) Less(i, j int) bool {
+	for k, xik := range x[i].index {
+		if k >= len(x[j].index) {
+			return false
+		}
+		if xik != x[j].index[k] {
+			return xik < x[j].index[k]
+		}
+	}
+	return len(x[i].index) < len(x[j].index)
+}
+
+// typeFields returns a list of fields that TOML should recognize for the given
+// type. The algorithm is breadth-first search over the set of structs to
+// include - the top struct and then any reachable anonymous structs.
+func typeFields(t reflect.Type) []field {
+	// Anonymous fields to explore at the current level and the next.
+	current := []field{}
+	next := []field{{typ: t}}
+
+	// Count of queued names for current level and the next.
+	count := map[reflect.Type]int{}
+	nextCount := map[reflect.Type]int{}
+
+	// Types already visited at an earlier level.
+	visited := map[reflect.Type]bool{}
+
+	// Fields found.
+	var fields []field
+
+	for len(next) > 0 {
+		current, next = next, current[:0]
+		count, nextCount = nextCount, map[reflect.Type]int{}
+
+		for _, f := range current {
+			if visited[f.typ] {
+				continue
+			}
+			visited[f.typ] = true
+
+			// Scan f.typ for fields to include.
+			for i := 0; i < f.typ.NumField(); i++ {
+				sf := f.typ.Field(i)
+				if sf.PkgPath != "" && !sf.Anonymous { // unexported
+					continue
+				}
+				opts := getOptions(sf.Tag)
+				if opts.skip {
+					continue
+				}
+				index := make([]int, len(f.index)+1)
+				copy(index, f.index)
+				index[len(f.index)] = i
+
+				ft := sf.Type
+				if ft.Name() == "" && ft.Kind() == reflect.Ptr {
+					// Follow pointer.
+					ft = ft.Elem()
+				}
+
+				// Record found field and index sequence.
+				if opts.name != "" || !sf.Anonymous || ft.Kind() != reflect.Struct {
+					tagged := opts.name != ""
+					name := opts.name
+					if name == "" {
+						name = sf.Name
+					}
+					fields = append(fields, field{name, tagged, index, ft})
+					if count[f.typ] > 1 {
+						// If there were multiple instances, add a second,
+						// so that the annihilation code will see a duplicate.
+						// It only cares about the distinction between 1 or 2,
+						// so don't bother generating any more copies.
+						fields = append(fields, fields[len(fields)-1])
+					}
+					continue
+				}
+
+				// Record new anonymous struct to explore in next round.
+				nextCount[ft]++
+				if nextCount[ft] == 1 {
+					f := field{name: ft.Name(), index: index, typ: ft}
+					next = append(next, f)
+				}
+			}
+		}
+	}
+
+	sort.Sort(byName(fields))
+
+	// Delete all fields that are hidden by the Go rules for embedded fields,
+	// except that fields with TOML tags are promoted.
+
+	// The fields are sorted in primary order of name, secondary order
+	// of field index length. Loop over names; for each name, delete
+	// hidden fields by choosing the one dominant field that survives.
+	out := fields[:0]
+	for advance, i := 0, 0; i < len(fields); i += advance {
+		// One iteration per name.
+		// Find the sequence of fields with the name of this first field.
+		fi := fields[i]
+		name := fi.name
+		for advance = 1; i+advance < len(fields); advance++ {
+			fj := fields[i+advance]
+			if fj.name != name {
+				break
+			}
+		}
+		if advance == 1 { // Only one field with this name
+			out = append(out, fi)
+			continue
+		}
+		dominant, ok := dominantField(fields[i : i+advance])
+		if ok {
+			out = append(out, dominant)
+		}
+	}
+
+	fields = out
+	sort.Sort(byIndex(fields))
+
+	return fields
+}
+
+// dominantField looks through the fields, all of which are known to
+// have the same name, to find the single field that dominates the
+// others using Go's embedding rules, modified by the presence of
+// TOML tags. If there are multiple top-level fields, the boolean
+// will be false: This condition is an error in Go and we skip all
+// the fields.
+func dominantField(fields []field) (field, bool) {
+	// The fields are sorted in increasing index-length order. The winner
+	// must therefore be one with the shortest index length. Drop all
+	// longer entries, which is easy: just truncate the slice.
+	length := len(fields[0].index)
+	tagged := -1 // Index of first tagged field.
+	for i, f := range fields {
+		if len(f.index) > length {
+			fields = fields[:i]
+			break
+		}
+		if f.tag {
+			if tagged >= 0 {
+				// Multiple tagged fields at the same level: conflict.
+				// Return no field.
+				return field{}, false
+			}
+			tagged = i
+		}
+	}
+	if tagged >= 0 {
+		return fields[tagged], true
+	}
+	// All remaining fields have the same length. If there's more than one,
+	// we have a conflict (two fields named "X" at the same level) and we
+	// return no field.
+	if len(fields) > 1 {
+		return field{}, false
+	}
+	return fields[0], true
+}
+
+var fieldCache struct {
+	sync.RWMutex
+	m map[reflect.Type][]field
+}
+
+// cachedTypeFields is like typeFields but uses a cache to avoid repeated work.
+func cachedTypeFields(t reflect.Type) []field {
+	fieldCache.RLock()
+	f := fieldCache.m[t]
+	fieldCache.RUnlock()
+	if f != nil {
+		return f
+	}
+
+	// Compute fields without lock.
+	// Might duplicate effort but won't hold other computations back.
+	f = typeFields(t)
+	if f == nil {
+		f = []field{}
+	}
+
+	fieldCache.Lock()
+	if fieldCache.m == nil {
+		fieldCache.m = map[reflect.Type][]field{}
+	}
+	fieldCache.m[t] = f
+	fieldCache.Unlock()
+	return f
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/LICENSE b/vendor/github.com/Microsoft/hcsshim/LICENSE
new file mode 100644
index 0000000000..49d21669ae
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 Microsoft
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
\ No newline at end of file
diff --git a/vendor/github.com/Microsoft/hcsshim/activatelayer.go b/vendor/github.com/Microsoft/hcsshim/activatelayer.go
new file mode 100644
index 0000000000..6d824d7a79
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/activatelayer.go
@@ -0,0 +1,28 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// ActivateLayer will find the layer with the given id and mount it's filesystem.
+// For a read/write layer, the mounted filesystem will appear as a volume on the
+// host, while a read-only layer is generally expected to be a no-op.
+// An activated layer must later be deactivated via DeactivateLayer.
+func ActivateLayer(info DriverInfo, id string) error {
+	title := "hcsshim::ActivateLayer "
+	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
+
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = activateLayer(&infop, id)
+	if err != nil {
+		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+" - succeeded id=%s flavour=%d", id, info.Flavour)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/baselayer.go b/vendor/github.com/Microsoft/hcsshim/baselayer.go
new file mode 100644
index 0000000000..860185c357
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/baselayer.go
@@ -0,0 +1,171 @@
+package hcsshim
+
+import (
+	"errors"
+	"os"
+	"path/filepath"
+	"syscall"
+
+	"github.com/Microsoft/go-winio"
+)
+
+type baseLayerWriter struct {
+	root         *os.File
+	f            *os.File
+	bw           *winio.BackupFileWriter
+	err          error
+	hasUtilityVM bool
+	dirInfo      []dirInfo
+}
+
+type dirInfo struct {
+	path     string
+	fileInfo winio.FileBasicInfo
+}
+
+// reapplyDirectoryTimes reapplies directory modification, creation, etc. times
+// after processing of the directory tree has completed. The times are expected
+// to be ordered such that parent directories come before child directories.
+func reapplyDirectoryTimes(root *os.File, dis []dirInfo) error {
+	for i := range dis {
+		di := &dis[len(dis)-i-1] // reverse order: process child directories first
+		f, err := openRelative(di.path, root, syscall.GENERIC_READ|syscall.GENERIC_WRITE, syscall.FILE_SHARE_READ, _FILE_OPEN, _FILE_DIRECTORY_FILE)
+		if err != nil {
+			return err
+		}
+
+		err = winio.SetFileBasicInfo(f, &di.fileInfo)
+		f.Close()
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (w *baseLayerWriter) closeCurrentFile() error {
+	if w.f != nil {
+		err := w.bw.Close()
+		err2 := w.f.Close()
+		w.f = nil
+		w.bw = nil
+		if err != nil {
+			return err
+		}
+		if err2 != nil {
+			return err2
+		}
+	}
+	return nil
+}
+
+func (w *baseLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) (err error) {
+	defer func() {
+		if err != nil {
+			w.err = err
+		}
+	}()
+
+	err = w.closeCurrentFile()
+	if err != nil {
+		return err
+	}
+
+	if filepath.ToSlash(name) == `UtilityVM/Files` {
+		w.hasUtilityVM = true
+	}
+
+	var f *os.File
+	defer func() {
+		if f != nil {
+			f.Close()
+		}
+	}()
+
+	extraFlags := uint32(0)
+	if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_DIRECTORY != 0 {
+		extraFlags |= _FILE_DIRECTORY_FILE
+		if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT == 0 {
+			w.dirInfo = append(w.dirInfo, dirInfo{name, *fileInfo})
+		}
+	}
+
+	mode := uint32(syscall.GENERIC_READ | syscall.GENERIC_WRITE | winio.WRITE_DAC | winio.WRITE_OWNER | winio.ACCESS_SYSTEM_SECURITY)
+	f, err = openRelative(name, w.root, mode, syscall.FILE_SHARE_READ, _FILE_CREATE, extraFlags)
+	if err != nil {
+		return makeError(err, "Failed to openRelative", name)
+	}
+
+	err = winio.SetFileBasicInfo(f, fileInfo)
+	if err != nil {
+		return makeError(err, "Failed to SetFileBasicInfo", name)
+	}
+
+	w.f = f
+	w.bw = winio.NewBackupFileWriter(f, true)
+	f = nil
+	return nil
+}
+
+func (w *baseLayerWriter) AddLink(name string, target string) (err error) {
+	defer func() {
+		if err != nil {
+			w.err = err
+		}
+	}()
+
+	err = w.closeCurrentFile()
+	if err != nil {
+		return err
+	}
+
+	return linkRelative(target, w.root, name, w.root)
+}
+
+func (w *baseLayerWriter) Remove(name string) error {
+	return errors.New("base layer cannot have tombstones")
+}
+
+func (w *baseLayerWriter) Write(b []byte) (int, error) {
+	n, err := w.bw.Write(b)
+	if err != nil {
+		w.err = err
+	}
+	return n, err
+}
+
+func (w *baseLayerWriter) Close() error {
+	defer func() {
+		w.root.Close()
+		w.root = nil
+	}()
+	err := w.closeCurrentFile()
+	if err != nil {
+		return err
+	}
+	if w.err == nil {
+		// Restore the file times of all the directories, since they may have
+		// been modified by creating child directories.
+		err = reapplyDirectoryTimes(w.root, w.dirInfo)
+		if err != nil {
+			return err
+		}
+
+		err = ProcessBaseLayer(w.root.Name())
+		if err != nil {
+			return err
+		}
+
+		if w.hasUtilityVM {
+			err := ensureNotReparsePointRelative("UtilityVM", w.root)
+			if err != nil {
+				return err
+			}
+			err = ProcessUtilityVMImage(filepath.Join(w.root.Name(), "UtilityVM"))
+			if err != nil {
+				return err
+			}
+		}
+	}
+	return w.err
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/callback.go b/vendor/github.com/Microsoft/hcsshim/callback.go
new file mode 100644
index 0000000000..e8c2b00c8a
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/callback.go
@@ -0,0 +1,79 @@
+package hcsshim
+
+import (
+	"sync"
+	"syscall"
+)
+
+var (
+	nextCallback    uintptr
+	callbackMap     = map[uintptr]*notifcationWatcherContext{}
+	callbackMapLock = sync.RWMutex{}
+
+	notificationWatcherCallback = syscall.NewCallback(notificationWatcher)
+
+	// Notifications for HCS_SYSTEM handles
+	hcsNotificationSystemExited          hcsNotification = 0x00000001
+	hcsNotificationSystemCreateCompleted hcsNotification = 0x00000002
+	hcsNotificationSystemStartCompleted  hcsNotification = 0x00000003
+	hcsNotificationSystemPauseCompleted  hcsNotification = 0x00000004
+	hcsNotificationSystemResumeCompleted hcsNotification = 0x00000005
+
+	// Notifications for HCS_PROCESS handles
+	hcsNotificationProcessExited hcsNotification = 0x00010000
+
+	// Common notifications
+	hcsNotificationInvalid           hcsNotification = 0x00000000
+	hcsNotificationServiceDisconnect hcsNotification = 0x01000000
+)
+
+type hcsNotification uint32
+type notificationChannel chan error
+
+type notifcationWatcherContext struct {
+	channels notificationChannels
+	handle   hcsCallback
+}
+
+type notificationChannels map[hcsNotification]notificationChannel
+
+func newChannels() notificationChannels {
+	channels := make(notificationChannels)
+
+	channels[hcsNotificationSystemExited] = make(notificationChannel, 1)
+	channels[hcsNotificationSystemCreateCompleted] = make(notificationChannel, 1)
+	channels[hcsNotificationSystemStartCompleted] = make(notificationChannel, 1)
+	channels[hcsNotificationSystemPauseCompleted] = make(notificationChannel, 1)
+	channels[hcsNotificationSystemResumeCompleted] = make(notificationChannel, 1)
+	channels[hcsNotificationProcessExited] = make(notificationChannel, 1)
+	channels[hcsNotificationServiceDisconnect] = make(notificationChannel, 1)
+	return channels
+}
+func closeChannels(channels notificationChannels) {
+	close(channels[hcsNotificationSystemExited])
+	close(channels[hcsNotificationSystemCreateCompleted])
+	close(channels[hcsNotificationSystemStartCompleted])
+	close(channels[hcsNotificationSystemPauseCompleted])
+	close(channels[hcsNotificationSystemResumeCompleted])
+	close(channels[hcsNotificationProcessExited])
+	close(channels[hcsNotificationServiceDisconnect])
+}
+
+func notificationWatcher(notificationType hcsNotification, callbackNumber uintptr, notificationStatus uintptr, notificationData *uint16) uintptr {
+	var result error
+	if int32(notificationStatus) < 0 {
+		result = syscall.Errno(win32FromHresult(notificationStatus))
+	}
+
+	callbackMapLock.RLock()
+	context := callbackMap[callbackNumber]
+	callbackMapLock.RUnlock()
+
+	if context == nil {
+		return 0
+	}
+
+	context.channels[notificationType] <- result
+
+	return 0
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/cgo.go b/vendor/github.com/Microsoft/hcsshim/cgo.go
new file mode 100644
index 0000000000..2003332330
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/cgo.go
@@ -0,0 +1,7 @@
+package hcsshim
+
+import "C"
+
+// This import is needed to make the library compile as CGO because HCSSHIM
+// only works with CGO due to callbacks from HCS comming back from a C thread
+// which is not supported without CGO. See https://github.com/golang/go/issues/10973
diff --git a/vendor/github.com/Microsoft/hcsshim/container.go b/vendor/github.com/Microsoft/hcsshim/container.go
new file mode 100644
index 0000000000..3354f70efc
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/container.go
@@ -0,0 +1,800 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"fmt"
+	"os"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	defaultTimeout = time.Minute * 4
+)
+
+const (
+	pendingUpdatesQuery    = `{ "PropertyTypes" : ["PendingUpdates"]}`
+	statisticsQuery        = `{ "PropertyTypes" : ["Statistics"]}`
+	processListQuery       = `{ "PropertyTypes" : ["ProcessList"]}`
+	mappedVirtualDiskQuery = `{ "PropertyTypes" : ["MappedVirtualDisk"]}`
+)
+
+type container struct {
+	handleLock     sync.RWMutex
+	handle         hcsSystem
+	id             string
+	callbackNumber uintptr
+}
+
+// ContainerProperties holds the properties for a container and the processes running in that container
+type ContainerProperties struct {
+	ID                           string `json:"Id"`
+	Name                         string
+	SystemType                   string
+	Owner                        string
+	SiloGUID                     string                              `json:"SiloGuid,omitempty"`
+	RuntimeID                    string                              `json:"RuntimeId,omitempty"`
+	IsRuntimeTemplate            bool                                `json:",omitempty"`
+	RuntimeImagePath             string                              `json:",omitempty"`
+	Stopped                      bool                                `json:",omitempty"`
+	ExitType                     string                              `json:",omitempty"`
+	AreUpdatesPending            bool                                `json:",omitempty"`
+	ObRoot                       string                              `json:",omitempty"`
+	Statistics                   Statistics                          `json:",omitempty"`
+	ProcessList                  []ProcessListItem                   `json:",omitempty"`
+	MappedVirtualDiskControllers map[int]MappedVirtualDiskController `json:",omitempty"`
+}
+
+// MemoryStats holds the memory statistics for a container
+type MemoryStats struct {
+	UsageCommitBytes            uint64 `json:"MemoryUsageCommitBytes,omitempty"`
+	UsageCommitPeakBytes        uint64 `json:"MemoryUsageCommitPeakBytes,omitempty"`
+	UsagePrivateWorkingSetBytes uint64 `json:"MemoryUsagePrivateWorkingSetBytes,omitempty"`
+}
+
+// ProcessorStats holds the processor statistics for a container
+type ProcessorStats struct {
+	TotalRuntime100ns  uint64 `json:",omitempty"`
+	RuntimeUser100ns   uint64 `json:",omitempty"`
+	RuntimeKernel100ns uint64 `json:",omitempty"`
+}
+
+// StorageStats holds the storage statistics for a container
+type StorageStats struct {
+	ReadCountNormalized  uint64 `json:",omitempty"`
+	ReadSizeBytes        uint64 `json:",omitempty"`
+	WriteCountNormalized uint64 `json:",omitempty"`
+	WriteSizeBytes       uint64 `json:",omitempty"`
+}
+
+// NetworkStats holds the network statistics for a container
+type NetworkStats struct {
+	BytesReceived          uint64 `json:",omitempty"`
+	BytesSent              uint64 `json:",omitempty"`
+	PacketsReceived        uint64 `json:",omitempty"`
+	PacketsSent            uint64 `json:",omitempty"`
+	DroppedPacketsIncoming uint64 `json:",omitempty"`
+	DroppedPacketsOutgoing uint64 `json:",omitempty"`
+	EndpointId             string `json:",omitempty"`
+	InstanceId             string `json:",omitempty"`
+}
+
+// Statistics is the structure returned by a statistics call on a container
+type Statistics struct {
+	Timestamp          time.Time      `json:",omitempty"`
+	ContainerStartTime time.Time      `json:",omitempty"`
+	Uptime100ns        uint64         `json:",omitempty"`
+	Memory             MemoryStats    `json:",omitempty"`
+	Processor          ProcessorStats `json:",omitempty"`
+	Storage            StorageStats   `json:",omitempty"`
+	Network            []NetworkStats `json:",omitempty"`
+}
+
+// ProcessList is the structure of an item returned by a ProcessList call on a container
+type ProcessListItem struct {
+	CreateTimestamp              time.Time `json:",omitempty"`
+	ImageName                    string    `json:",omitempty"`
+	KernelTime100ns              uint64    `json:",omitempty"`
+	MemoryCommitBytes            uint64    `json:",omitempty"`
+	MemoryWorkingSetPrivateBytes uint64    `json:",omitempty"`
+	MemoryWorkingSetSharedBytes  uint64    `json:",omitempty"`
+	ProcessId                    uint32    `json:",omitempty"`
+	UserTime100ns                uint64    `json:",omitempty"`
+}
+
+// MappedVirtualDiskController is the structure of an item returned by a MappedVirtualDiskList call on a container
+type MappedVirtualDiskController struct {
+	MappedVirtualDisks map[int]MappedVirtualDisk `json:",omitempty"`
+}
+
+// Type of Request Support in ModifySystem
+type RequestType string
+
+// Type of Resource Support in ModifySystem
+type ResourceType string
+
+// RequestType const
+const (
+	Add     RequestType  = "Add"
+	Remove  RequestType  = "Remove"
+	Network ResourceType = "Network"
+)
+
+// ResourceModificationRequestResponse is the structure used to send request to the container to modify the system
+// Supported resource types are Network and Request Types are Add/Remove
+type ResourceModificationRequestResponse struct {
+	Resource ResourceType `json:"ResourceType"`
+	Data     interface{}  `json:"Settings"`
+	Request  RequestType  `json:"RequestType,omitempty"`
+}
+
+// createContainerAdditionalJSON is read from the environment at initialisation
+// time. It allows an environment variable to define additional JSON which
+// is merged in the CreateContainer call to HCS.
+var createContainerAdditionalJSON string
+
+func init() {
+	createContainerAdditionalJSON = os.Getenv("HCSSHIM_CREATECONTAINER_ADDITIONALJSON")
+}
+
+// CreateContainer creates a new container with the given configuration but does not start it.
+func CreateContainer(id string, c *ContainerConfig) (Container, error) {
+	return createContainerWithJSON(id, c, "")
+}
+
+// CreateContainerWithJSON creates a new container with the given configuration but does not start it.
+// It is identical to CreateContainer except that optional additional JSON can be merged before passing to HCS.
+func CreateContainerWithJSON(id string, c *ContainerConfig, additionalJSON string) (Container, error) {
+	return createContainerWithJSON(id, c, additionalJSON)
+}
+
+func createContainerWithJSON(id string, c *ContainerConfig, additionalJSON string) (Container, error) {
+	operation := "CreateContainer"
+	title := "HCSShim::" + operation
+
+	container := &container{
+		id: id,
+	}
+
+	configurationb, err := json.Marshal(c)
+	if err != nil {
+		return nil, err
+	}
+
+	configuration := string(configurationb)
+	logrus.Debugf(title+" id=%s config=%s", id, configuration)
+
+	// Merge any additional JSON. Priority is given to what is passed in explicitly,
+	// falling back to what's set in the environment.
+	if additionalJSON == "" && createContainerAdditionalJSON != "" {
+		additionalJSON = createContainerAdditionalJSON
+	}
+	if additionalJSON != "" {
+		configurationMap := map[string]interface{}{}
+		if err := json.Unmarshal([]byte(configuration), &configurationMap); err != nil {
+			return nil, fmt.Errorf("failed to unmarshal %s: %s", configuration, err)
+		}
+
+		additionalMap := map[string]interface{}{}
+		if err := json.Unmarshal([]byte(additionalJSON), &additionalMap); err != nil {
+			return nil, fmt.Errorf("failed to unmarshal %s: %s", additionalJSON, err)
+		}
+
+		mergedMap := mergeMaps(additionalMap, configurationMap)
+		mergedJSON, err := json.Marshal(mergedMap)
+		if err != nil {
+			return nil, fmt.Errorf("failed to marshal merged configuration map %+v: %s", mergedMap, err)
+		}
+
+		configuration = string(mergedJSON)
+		logrus.Debugf(title+" id=%s merged config=%s", id, configuration)
+	}
+
+	var (
+		resultp  *uint16
+		identity syscall.Handle
+	)
+	createError := hcsCreateComputeSystem(id, configuration, identity, &container.handle, &resultp)
+
+	if createError == nil || IsPending(createError) {
+		if err := container.registerCallback(); err != nil {
+			// Terminate the container if it still exists. We're okay to ignore a failure here.
+			container.Terminate()
+			return nil, makeContainerError(container, operation, "", err)
+		}
+	}
+
+	err = processAsyncHcsResult(createError, resultp, container.callbackNumber, hcsNotificationSystemCreateCompleted, &defaultTimeout)
+	if err != nil {
+		if err == ErrTimeout {
+			// Terminate the container if it still exists. We're okay to ignore a failure here.
+			container.Terminate()
+		}
+		return nil, makeContainerError(container, operation, configuration, err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s handle=%d", id, container.handle)
+	return container, nil
+}
+
+// mergeMaps recursively merges map `fromMap` into map `ToMap`. Any pre-existing values
+// in ToMap are overwritten. Values in fromMap are added to ToMap.
+// From http://stackoverflow.com/questions/40491438/merging-two-json-strings-in-golang
+func mergeMaps(fromMap, ToMap interface{}) interface{} {
+	switch fromMap := fromMap.(type) {
+	case map[string]interface{}:
+		ToMap, ok := ToMap.(map[string]interface{})
+		if !ok {
+			return fromMap
+		}
+		for keyToMap, valueToMap := range ToMap {
+			if valueFromMap, ok := fromMap[keyToMap]; ok {
+				fromMap[keyToMap] = mergeMaps(valueFromMap, valueToMap)
+			} else {
+				fromMap[keyToMap] = valueToMap
+			}
+		}
+	case nil:
+		// merge(nil, map[string]interface{...}) -> map[string]interface{...}
+		ToMap, ok := ToMap.(map[string]interface{})
+		if ok {
+			return ToMap
+		}
+	}
+	return fromMap
+}
+
+// OpenContainer opens an existing container by ID.
+func OpenContainer(id string) (Container, error) {
+	operation := "OpenContainer"
+	title := "HCSShim::" + operation
+	logrus.Debugf(title+" id=%s", id)
+
+	container := &container{
+		id: id,
+	}
+
+	var (
+		handle  hcsSystem
+		resultp *uint16
+	)
+	err := hcsOpenComputeSystem(id, &handle, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	container.handle = handle
+
+	if err := container.registerCallback(); err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s handle=%d", id, handle)
+	return container, nil
+}
+
+// GetContainers gets a list of the containers on the system that match the query
+func GetContainers(q ComputeSystemQuery) ([]ContainerProperties, error) {
+	operation := "GetContainers"
+	title := "HCSShim::" + operation
+
+	queryb, err := json.Marshal(q)
+	if err != nil {
+		return nil, err
+	}
+
+	query := string(queryb)
+	logrus.Debugf(title+" query=%s", query)
+
+	var (
+		resultp         *uint16
+		computeSystemsp *uint16
+	)
+	err = hcsEnumerateComputeSystems(query, &computeSystemsp, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, err
+	}
+
+	if computeSystemsp == nil {
+		return nil, ErrUnexpectedValue
+	}
+	computeSystemsRaw := convertAndFreeCoTaskMemBytes(computeSystemsp)
+	computeSystems := []ContainerProperties{}
+	if err := json.Unmarshal(computeSystemsRaw, &computeSystems); err != nil {
+		return nil, err
+	}
+
+	logrus.Debugf(title + " succeeded")
+	return computeSystems, nil
+}
+
+// Start synchronously starts the container.
+func (container *container) Start() error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Start"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsStartComputeSystem(container.handle, "", &resultp)
+	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemStartCompleted, &defaultTimeout)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// Shutdown requests a container shutdown, if IsPending() on the error returned is true,
+// it may not actually be shut down until Wait() succeeds.
+func (container *container) Shutdown() error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Shutdown"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsShutdownComputeSystem(container.handle, "", &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// Terminate requests a container terminate, if IsPending() on the error returned is true,
+// it may not actually be shut down until Wait() succeeds.
+func (container *container) Terminate() error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Terminate"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsTerminateComputeSystem(container.handle, "", &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// Wait synchronously waits for the container to shutdown or terminate.
+func (container *container) Wait() error {
+	operation := "Wait"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, nil)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// WaitTimeout synchronously waits for the container to terminate or the duration to elapse.
+// If the timeout expires, IsTimeout(err) == true
+func (container *container) WaitTimeout(timeout time.Duration) error {
+	operation := "WaitTimeout"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	err := waitForNotification(container.callbackNumber, hcsNotificationSystemExited, &timeout)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+func (container *container) properties(query string) (*ContainerProperties, error) {
+	var (
+		resultp     *uint16
+		propertiesp *uint16
+	)
+	err := hcsGetComputeSystemProperties(container.handle, query, &propertiesp, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, err
+	}
+
+	if propertiesp == nil {
+		return nil, ErrUnexpectedValue
+	}
+	propertiesRaw := convertAndFreeCoTaskMemBytes(propertiesp)
+	properties := &ContainerProperties{}
+	if err := json.Unmarshal(propertiesRaw, properties); err != nil {
+		return nil, err
+	}
+	return properties, nil
+}
+
+// HasPendingUpdates returns true if the container has updates pending to install
+func (container *container) HasPendingUpdates() (bool, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "HasPendingUpdates"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return false, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	properties, err := container.properties(pendingUpdatesQuery)
+	if err != nil {
+		return false, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return properties.AreUpdatesPending, nil
+}
+
+// Statistics returns statistics for the container
+func (container *container) Statistics() (Statistics, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Statistics"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return Statistics{}, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	properties, err := container.properties(statisticsQuery)
+	if err != nil {
+		return Statistics{}, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return properties.Statistics, nil
+}
+
+// ProcessList returns an array of ProcessListItems for the container
+func (container *container) ProcessList() ([]ProcessListItem, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "ProcessList"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	properties, err := container.properties(processListQuery)
+	if err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return properties.ProcessList, nil
+}
+
+// MappedVirtualDisks returns a map of the controllers and the disks mapped
+// to a container.
+//
+// Example of JSON returned by the query.
+//{
+//   "Id":"1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3_svm",
+//   "SystemType":"Container",
+//   "RuntimeOsType":"Linux",
+//   "RuntimeId":"00000000-0000-0000-0000-000000000000",
+//   "State":"Running",
+//   "MappedVirtualDiskControllers":{
+//      "0":{
+//         "MappedVirtualDisks":{
+//            "2":{
+//               "HostPath":"C:\\lcow\\lcow\\scratch\\1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3.vhdx",
+//               "ContainerPath":"/mnt/gcs/LinuxServiceVM/scratch",
+//               "Lun":2,
+//               "CreateInUtilityVM":true
+//            },
+//            "3":{
+//               "HostPath":"C:\\lcow\\lcow\\1126e8d7d279c707a666972a15976371d365eaf622c02cea2c442b84f6f550a3\\sandbox.vhdx",
+//               "Lun":3,
+//               "CreateInUtilityVM":true,
+//               "AttachOnly":true
+//            }
+//         }
+//      }
+//   }
+//}
+func (container *container) MappedVirtualDisks() (map[int]MappedVirtualDiskController, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "MappedVirtualDiskList"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	properties, err := container.properties(mappedVirtualDiskQuery)
+	if err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return properties.MappedVirtualDiskControllers, nil
+}
+
+// Pause pauses the execution of the container. This feature is not enabled in TP5.
+func (container *container) Pause() error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Pause"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsPauseComputeSystem(container.handle, "", &resultp)
+	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemPauseCompleted, &defaultTimeout)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// Resume resumes the execution of the container. This feature is not enabled in TP5.
+func (container *container) Resume() error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Resume"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsResumeComputeSystem(container.handle, "", &resultp)
+	err = processAsyncHcsResult(err, resultp, container.callbackNumber, hcsNotificationSystemResumeCompleted, &defaultTimeout)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+// CreateProcess launches a new process within the container.
+func (container *container) CreateProcess(c *ProcessConfig) (Process, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "CreateProcess"
+	title := "HCSShim::Container::" + operation
+	var (
+		processInfo   hcsProcessInformation
+		processHandle hcsProcess
+		resultp       *uint16
+	)
+
+	if container.handle == 0 {
+		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	// If we are not emulating a console, ignore any console size passed to us
+	if !c.EmulateConsole {
+		c.ConsoleSize[0] = 0
+		c.ConsoleSize[1] = 0
+	}
+
+	configurationb, err := json.Marshal(c)
+	if err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	configuration := string(configurationb)
+	logrus.Debugf(title+" id=%s config=%s", container.id, configuration)
+
+	err = hcsCreateProcess(container.handle, configuration, &processInfo, &processHandle, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, makeContainerError(container, operation, configuration, err)
+	}
+
+	process := &process{
+		handle:    processHandle,
+		processID: int(processInfo.ProcessId),
+		container: container,
+		cachedPipes: &cachedPipes{
+			stdIn:  processInfo.StdInput,
+			stdOut: processInfo.StdOutput,
+			stdErr: processInfo.StdError,
+		},
+	}
+
+	if err := process.registerCallback(); err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s processid=%d", container.id, process.processID)
+	return process, nil
+}
+
+// OpenProcess gets an interface to an existing process within the container.
+func (container *container) OpenProcess(pid int) (Process, error) {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "OpenProcess"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s, processid=%d", container.id, pid)
+	var (
+		processHandle hcsProcess
+		resultp       *uint16
+	)
+
+	if container.handle == 0 {
+		return nil, makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	err := hcsOpenProcess(container.handle, uint32(pid), &processHandle, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	process := &process{
+		handle:    processHandle,
+		processID: pid,
+		container: container,
+	}
+
+	if err := process.registerCallback(); err != nil {
+		return nil, makeContainerError(container, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded id=%s processid=%s", container.id, process.processID)
+	return process, nil
+}
+
+// Close cleans up any state associated with the container but does not terminate or wait for it.
+func (container *container) Close() error {
+	container.handleLock.Lock()
+	defer container.handleLock.Unlock()
+	operation := "Close"
+	title := "HCSShim::Container::" + operation
+	logrus.Debugf(title+" id=%s", container.id)
+
+	// Don't double free this
+	if container.handle == 0 {
+		return nil
+	}
+
+	if err := container.unregisterCallback(); err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	if err := hcsCloseComputeSystem(container.handle); err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+
+	container.handle = 0
+
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
+
+func (container *container) registerCallback() error {
+	context := &notifcationWatcherContext{
+		channels: newChannels(),
+	}
+
+	callbackMapLock.Lock()
+	callbackNumber := nextCallback
+	nextCallback++
+	callbackMap[callbackNumber] = context
+	callbackMapLock.Unlock()
+
+	var callbackHandle hcsCallback
+	err := hcsRegisterComputeSystemCallback(container.handle, notificationWatcherCallback, callbackNumber, &callbackHandle)
+	if err != nil {
+		return err
+	}
+	context.handle = callbackHandle
+	container.callbackNumber = callbackNumber
+
+	return nil
+}
+
+func (container *container) unregisterCallback() error {
+	callbackNumber := container.callbackNumber
+
+	callbackMapLock.RLock()
+	context := callbackMap[callbackNumber]
+	callbackMapLock.RUnlock()
+
+	if context == nil {
+		return nil
+	}
+
+	handle := context.handle
+
+	if handle == 0 {
+		return nil
+	}
+
+	// hcsUnregisterComputeSystemCallback has its own syncronization
+	// to wait for all callbacks to complete. We must NOT hold the callbackMapLock.
+	err := hcsUnregisterComputeSystemCallback(handle)
+	if err != nil {
+		return err
+	}
+
+	closeChannels(context.channels)
+
+	callbackMapLock.Lock()
+	callbackMap[callbackNumber] = nil
+	callbackMapLock.Unlock()
+
+	handle = 0
+
+	return nil
+}
+
+// Modifies the System by sending a request to HCS
+func (container *container) Modify(config *ResourceModificationRequestResponse) error {
+	container.handleLock.RLock()
+	defer container.handleLock.RUnlock()
+	operation := "Modify"
+	title := "HCSShim::Container::" + operation
+
+	if container.handle == 0 {
+		return makeContainerError(container, operation, "", ErrAlreadyClosed)
+	}
+
+	requestJSON, err := json.Marshal(config)
+	if err != nil {
+		return err
+	}
+
+	requestString := string(requestJSON)
+	logrus.Debugf(title+" id=%s request=%s", container.id, requestString)
+
+	var resultp *uint16
+	err = hcsModifyComputeSystem(container.handle, requestString, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeContainerError(container, operation, "", err)
+	}
+	logrus.Debugf(title+" succeeded id=%s", container.id)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/createlayer.go b/vendor/github.com/Microsoft/hcsshim/createlayer.go
new file mode 100644
index 0000000000..035d9c3947
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/createlayer.go
@@ -0,0 +1,27 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// CreateLayer creates a new, empty, read-only layer on the filesystem based on
+// the parent layer provided.
+func CreateLayer(info DriverInfo, id, parent string) error {
+	title := "hcsshim::CreateLayer "
+	logrus.Debugf(title+"Flavour %d ID %s parent %s", info.Flavour, id, parent)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = createLayer(&infop, id, parent)
+	if err != nil {
+		err = makeErrorf(err, title, "id=%s parent=%s flavour=%d", id, parent, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+" - succeeded id=%s parent=%s flavour=%d", id, parent, info.Flavour)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go b/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
new file mode 100644
index 0000000000..7a6a8854cf
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/createsandboxlayer.go
@@ -0,0 +1,35 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// CreateSandboxLayer creates and populates new read-write layer for use by a container.
+// This requires both the id of the direct parent layer, as well as the full list
+// of paths to all parent layers up to the base (and including the direct parent
+// whose id was provided).
+func CreateSandboxLayer(info DriverInfo, layerId, parentId string, parentLayerPaths []string) error {
+	title := "hcsshim::CreateSandboxLayer "
+	logrus.Debugf(title+"layerId %s parentId %s", layerId, parentId)
+
+	// Generate layer descriptors
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return err
+	}
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = createSandboxLayer(&infop, layerId, parentId, layers)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s parentId=%s", layerId, parentId)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"- succeeded layerId=%s parentId=%s", layerId, parentId)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go b/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
new file mode 100644
index 0000000000..fd785030fb
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/deactivatelayer.go
@@ -0,0 +1,26 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// DeactivateLayer will dismount a layer that was mounted via ActivateLayer.
+func DeactivateLayer(info DriverInfo, id string) error {
+	title := "hcsshim::DeactivateLayer "
+	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = deactivateLayer(&infop, id)
+	if err != nil {
+		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d id=%s", info.Flavour, id)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/destroylayer.go b/vendor/github.com/Microsoft/hcsshim/destroylayer.go
new file mode 100644
index 0000000000..b1e3b89fc7
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/destroylayer.go
@@ -0,0 +1,27 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// DestroyLayer will remove the on-disk files representing the layer with the given
+// id, including that layer's containing folder, if any.
+func DestroyLayer(info DriverInfo, id string) error {
+	title := "hcsshim::DestroyLayer "
+	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = destroyLayer(&infop, id)
+	if err != nil {
+		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d id=%s", info.Flavour, id)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/errors.go b/vendor/github.com/Microsoft/hcsshim/errors.go
new file mode 100644
index 0000000000..c0c6cac87c
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/errors.go
@@ -0,0 +1,261 @@
+package hcsshim
+
+import (
+	"errors"
+	"fmt"
+	"syscall"
+)
+
+var (
+	// ErrComputeSystemDoesNotExist is an error encountered when the container being operated on no longer exists
+	ErrComputeSystemDoesNotExist = syscall.Errno(0xc037010e)
+
+	// ErrElementNotFound is an error encountered when the object being referenced does not exist
+	ErrElementNotFound = syscall.Errno(0x490)
+
+	// ErrElementNotFound is an error encountered when the object being referenced does not exist
+	ErrNotSupported = syscall.Errno(0x32)
+
+	// ErrInvalidData is an error encountered when the request being sent to hcs is invalid/unsupported
+	// decimal -2147024883 / hex 0x8007000d
+	ErrInvalidData = syscall.Errno(0xd)
+
+	// ErrHandleClose is an error encountered when the handle generating the notification being waited on has been closed
+	ErrHandleClose = errors.New("hcsshim: the handle generating this notification has been closed")
+
+	// ErrAlreadyClosed is an error encountered when using a handle that has been closed by the Close method
+	ErrAlreadyClosed = errors.New("hcsshim: the handle has already been closed")
+
+	// ErrInvalidNotificationType is an error encountered when an invalid notification type is used
+	ErrInvalidNotificationType = errors.New("hcsshim: invalid notification type")
+
+	// ErrInvalidProcessState is an error encountered when the process is not in a valid state for the requested operation
+	ErrInvalidProcessState = errors.New("the process is in an invalid state for the attempted operation")
+
+	// ErrTimeout is an error encountered when waiting on a notification times out
+	ErrTimeout = errors.New("hcsshim: timeout waiting for notification")
+
+	// ErrUnexpectedContainerExit is the error encountered when a container exits while waiting for
+	// a different expected notification
+	ErrUnexpectedContainerExit = errors.New("unexpected container exit")
+
+	// ErrUnexpectedProcessAbort is the error encountered when communication with the compute service
+	// is lost while waiting for a notification
+	ErrUnexpectedProcessAbort = errors.New("lost communication with compute service")
+
+	// ErrUnexpectedValue is an error encountered when hcs returns an invalid value
+	ErrUnexpectedValue = errors.New("unexpected value returned from hcs")
+
+	// ErrVmcomputeAlreadyStopped is an error encountered when a shutdown or terminate request is made on a stopped container
+	ErrVmcomputeAlreadyStopped = syscall.Errno(0xc0370110)
+
+	// ErrVmcomputeOperationPending is an error encountered when the operation is being completed asynchronously
+	ErrVmcomputeOperationPending = syscall.Errno(0xC0370103)
+
+	// ErrVmcomputeOperationInvalidState is an error encountered when the compute system is not in a valid state for the requested operation
+	ErrVmcomputeOperationInvalidState = syscall.Errno(0xc0370105)
+
+	// ErrProcNotFound is an error encountered when the the process cannot be found
+	ErrProcNotFound = syscall.Errno(0x7f)
+
+	// ErrVmcomputeOperationAccessIsDenied is an error which can be encountered when enumerating compute systems in RS1/RS2
+	// builds when the underlying silo might be in the process of terminating. HCS was fixed in RS3.
+	ErrVmcomputeOperationAccessIsDenied = syscall.Errno(0x5)
+
+	// ErrVmcomputeInvalidJSON is an error encountered when the compute system does not support/understand the messages sent by management
+	ErrVmcomputeInvalidJSON = syscall.Errno(0xc037010d)
+
+	// ErrVmcomputeUnknownMessage is an error encountered guest compute system doesn't support the message
+	ErrVmcomputeUnknownMessage = syscall.Errno(0xc037010b)
+
+	// ErrNotSupported is an error encountered when hcs doesn't support the request
+	ErrPlatformNotSupported = errors.New("unsupported platform request")
+)
+
+type EndpointNotFoundError struct {
+	EndpointName string
+}
+
+func (e EndpointNotFoundError) Error() string {
+	return fmt.Sprintf("Endpoint %s not found", e.EndpointName)
+}
+
+type NetworkNotFoundError struct {
+	NetworkName string
+}
+
+func (e NetworkNotFoundError) Error() string {
+	return fmt.Sprintf("Network %s not found", e.NetworkName)
+}
+
+// ProcessError is an error encountered in HCS during an operation on a Process object
+type ProcessError struct {
+	Process   *process
+	Operation string
+	ExtraInfo string
+	Err       error
+}
+
+// ContainerError is an error encountered in HCS during an operation on a Container object
+type ContainerError struct {
+	Container *container
+	Operation string
+	ExtraInfo string
+	Err       error
+}
+
+func (e *ContainerError) Error() string {
+	if e == nil {
+		return "<nil>"
+	}
+
+	if e.Container == nil {
+		return "unexpected nil container for error: " + e.Err.Error()
+	}
+
+	s := "container " + e.Container.id
+
+	if e.Operation != "" {
+		s += " encountered an error during " + e.Operation
+	}
+
+	switch e.Err.(type) {
+	case nil:
+		break
+	case syscall.Errno:
+		s += fmt.Sprintf(": failure in a Windows system call: %s (0x%x)", e.Err, win32FromError(e.Err))
+	default:
+		s += fmt.Sprintf(": %s", e.Err.Error())
+	}
+
+	if e.ExtraInfo != "" {
+		s += " extra info: " + e.ExtraInfo
+	}
+
+	return s
+}
+
+func makeContainerError(container *container, operation string, extraInfo string, err error) error {
+	// Don't double wrap errors
+	if _, ok := err.(*ContainerError); ok {
+		return err
+	}
+	containerError := &ContainerError{Container: container, Operation: operation, ExtraInfo: extraInfo, Err: err}
+	return containerError
+}
+
+func (e *ProcessError) Error() string {
+	if e == nil {
+		return "<nil>"
+	}
+
+	if e.Process == nil {
+		return "Unexpected nil process for error: " + e.Err.Error()
+	}
+
+	s := fmt.Sprintf("process %d", e.Process.processID)
+
+	if e.Process.container != nil {
+		s += " in container " + e.Process.container.id
+	}
+
+	if e.Operation != "" {
+		s += " encountered an error during " + e.Operation
+	}
+
+	switch e.Err.(type) {
+	case nil:
+		break
+	case syscall.Errno:
+		s += fmt.Sprintf(": failure in a Windows system call: %s (0x%x)", e.Err, win32FromError(e.Err))
+	default:
+		s += fmt.Sprintf(": %s", e.Err.Error())
+	}
+
+	return s
+}
+
+func makeProcessError(process *process, operation string, extraInfo string, err error) error {
+	// Don't double wrap errors
+	if _, ok := err.(*ProcessError); ok {
+		return err
+	}
+	processError := &ProcessError{Process: process, Operation: operation, ExtraInfo: extraInfo, Err: err}
+	return processError
+}
+
+// IsNotExist checks if an error is caused by the Container or Process not existing.
+// Note: Currently, ErrElementNotFound can mean that a Process has either
+// already exited, or does not exist. Both IsAlreadyStopped and IsNotExist
+// will currently return true when the error is ErrElementNotFound or ErrProcNotFound.
+func IsNotExist(err error) bool {
+	err = getInnerError(err)
+	if _, ok := err.(EndpointNotFoundError); ok {
+		return true
+	}
+	if _, ok := err.(NetworkNotFoundError); ok {
+		return true
+	}
+	return err == ErrComputeSystemDoesNotExist ||
+		err == ErrElementNotFound ||
+		err == ErrProcNotFound
+}
+
+// IsAlreadyClosed checks if an error is caused by the Container or Process having been
+// already closed by a call to the Close() method.
+func IsAlreadyClosed(err error) bool {
+	err = getInnerError(err)
+	return err == ErrAlreadyClosed
+}
+
+// IsPending returns a boolean indicating whether the error is that
+// the requested operation is being completed in the background.
+func IsPending(err error) bool {
+	err = getInnerError(err)
+	return err == ErrVmcomputeOperationPending
+}
+
+// IsTimeout returns a boolean indicating whether the error is caused by
+// a timeout waiting for the operation to complete.
+func IsTimeout(err error) bool {
+	err = getInnerError(err)
+	return err == ErrTimeout
+}
+
+// IsAlreadyStopped returns a boolean indicating whether the error is caused by
+// a Container or Process being already stopped.
+// Note: Currently, ErrElementNotFound can mean that a Process has either
+// already exited, or does not exist. Both IsAlreadyStopped and IsNotExist
+// will currently return true when the error is ErrElementNotFound or ErrProcNotFound.
+func IsAlreadyStopped(err error) bool {
+	err = getInnerError(err)
+	return err == ErrVmcomputeAlreadyStopped ||
+		err == ErrElementNotFound ||
+		err == ErrProcNotFound
+}
+
+// IsNotSupported returns a boolean indicating whether the error is caused by
+// unsupported platform requests
+// Note: Currently Unsupported platform requests can be mean either
+// ErrVmcomputeInvalidJSON, ErrInvalidData, ErrNotSupported or ErrVmcomputeUnknownMessage
+// is thrown from the Platform
+func IsNotSupported(err error) bool {
+	err = getInnerError(err)
+	// If Platform doesn't recognize or support the request sent, below errors are seen
+	return err == ErrVmcomputeInvalidJSON ||
+		err == ErrInvalidData ||
+		err == ErrNotSupported ||
+		err == ErrVmcomputeUnknownMessage
+}
+
+func getInnerError(err error) error {
+	switch pe := err.(type) {
+	case nil:
+		return nil
+	case *ContainerError:
+		err = pe.Err
+	case *ProcessError:
+		err = pe.Err
+	}
+	return err
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go b/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
new file mode 100644
index 0000000000..6946c6a84f
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/expandsandboxsize.go
@@ -0,0 +1,26 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// ExpandSandboxSize expands the size of a layer to at least size bytes.
+func ExpandSandboxSize(info DriverInfo, layerId string, size uint64) error {
+	title := "hcsshim::ExpandSandboxSize "
+	logrus.Debugf(title+"layerId=%s size=%d", layerId, size)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = expandSandboxSize(&infop, layerId, size)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s  size=%d", layerId, size)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"- succeeded layerId=%s size=%d", layerId, size)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/exportlayer.go b/vendor/github.com/Microsoft/hcsshim/exportlayer.go
new file mode 100644
index 0000000000..d7025f20ba
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/exportlayer.go
@@ -0,0 +1,156 @@
+package hcsshim
+
+import (
+	"io"
+	"io/ioutil"
+	"os"
+	"syscall"
+
+	"github.com/Microsoft/go-winio"
+	"github.com/sirupsen/logrus"
+)
+
+// ExportLayer will create a folder at exportFolderPath and fill that folder with
+// the transport format version of the layer identified by layerId. This transport
+// format includes any metadata required for later importing the layer (using
+// ImportLayer), and requires the full list of parent layer paths in order to
+// perform the export.
+func ExportLayer(info DriverInfo, layerId string, exportFolderPath string, parentLayerPaths []string) error {
+	title := "hcsshim::ExportLayer "
+	logrus.Debugf(title+"flavour %d layerId %s folder %s", info.Flavour, layerId, exportFolderPath)
+
+	// Generate layer descriptors
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return err
+	}
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = exportLayer(&infop, layerId, exportFolderPath, layers)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s flavour=%d folder=%s", layerId, info.Flavour, exportFolderPath)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d layerId=%s folder=%s", info.Flavour, layerId, exportFolderPath)
+	return nil
+}
+
+type LayerReader interface {
+	Next() (string, int64, *winio.FileBasicInfo, error)
+	Read(b []byte) (int, error)
+	Close() error
+}
+
+// FilterLayerReader provides an interface for extracting the contents of an on-disk layer.
+type FilterLayerReader struct {
+	context uintptr
+}
+
+// Next reads the next available file from a layer, ensuring that parent directories are always read
+// before child files and directories.
+//
+// Next returns the file's relative path, size, and basic file metadata. Read() should be used to
+// extract a Win32 backup stream with the remainder of the metadata and the data.
+func (r *FilterLayerReader) Next() (string, int64, *winio.FileBasicInfo, error) {
+	var fileNamep *uint16
+	fileInfo := &winio.FileBasicInfo{}
+	var deleted uint32
+	var fileSize int64
+	err := exportLayerNext(r.context, &fileNamep, fileInfo, &fileSize, &deleted)
+	if err != nil {
+		if err == syscall.ERROR_NO_MORE_FILES {
+			err = io.EOF
+		} else {
+			err = makeError(err, "ExportLayerNext", "")
+		}
+		return "", 0, nil, err
+	}
+	fileName := convertAndFreeCoTaskMemString(fileNamep)
+	if deleted != 0 {
+		fileInfo = nil
+	}
+	if fileName[0] == '\\' {
+		fileName = fileName[1:]
+	}
+	return fileName, fileSize, fileInfo, nil
+}
+
+// Read reads from the current file's Win32 backup stream.
+func (r *FilterLayerReader) Read(b []byte) (int, error) {
+	var bytesRead uint32
+	err := exportLayerRead(r.context, b, &bytesRead)
+	if err != nil {
+		return 0, makeError(err, "ExportLayerRead", "")
+	}
+	if bytesRead == 0 {
+		return 0, io.EOF
+	}
+	return int(bytesRead), nil
+}
+
+// Close frees resources associated with the layer reader. It will return an
+// error if there was an error while reading the layer or of the layer was not
+// completely read.
+func (r *FilterLayerReader) Close() (err error) {
+	if r.context != 0 {
+		err = exportLayerEnd(r.context)
+		if err != nil {
+			err = makeError(err, "ExportLayerEnd", "")
+		}
+		r.context = 0
+	}
+	return
+}
+
+// NewLayerReader returns a new layer reader for reading the contents of an on-disk layer.
+// The caller must have taken the SeBackupPrivilege privilege
+// to call this and any methods on the resulting LayerReader.
+func NewLayerReader(info DriverInfo, layerID string, parentLayerPaths []string) (LayerReader, error) {
+	if procExportLayerBegin.Find() != nil {
+		// The new layer reader is not available on this Windows build. Fall back to the
+		// legacy export code path.
+		path, err := ioutil.TempDir("", "hcs")
+		if err != nil {
+			return nil, err
+		}
+		err = ExportLayer(info, layerID, path, parentLayerPaths)
+		if err != nil {
+			os.RemoveAll(path)
+			return nil, err
+		}
+		return &legacyLayerReaderWrapper{newLegacyLayerReader(path)}, nil
+	}
+
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return nil, err
+	}
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		return nil, err
+	}
+	r := &FilterLayerReader{}
+	err = exportLayerBegin(&infop, layerID, layers, &r.context)
+	if err != nil {
+		return nil, makeError(err, "ExportLayerBegin", "")
+	}
+	return r, err
+}
+
+type legacyLayerReaderWrapper struct {
+	*legacyLayerReader
+}
+
+func (r *legacyLayerReaderWrapper) Close() error {
+	err := r.legacyLayerReader.Close()
+	os.RemoveAll(r.root)
+	return err
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go b/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
new file mode 100644
index 0000000000..89f8079d0f
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/getlayermountpath.go
@@ -0,0 +1,55 @@
+package hcsshim
+
+import (
+	"syscall"
+
+	"github.com/sirupsen/logrus"
+)
+
+// GetLayerMountPath will look for a mounted layer with the given id and return
+// the path at which that layer can be accessed.  This path may be a volume path
+// if the layer is a mounted read-write layer, otherwise it is expected to be the
+// folder path at which the layer is stored.
+func GetLayerMountPath(info DriverInfo, id string) (string, error) {
+	title := "hcsshim::GetLayerMountPath "
+	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return "", err
+	}
+
+	var mountPathLength uintptr
+	mountPathLength = 0
+
+	// Call the procedure itself.
+	logrus.Debugf("Calling proc (1)")
+	err = getLayerMountPath(&infop, id, &mountPathLength, nil)
+	if err != nil {
+		err = makeErrorf(err, title, "(first call) id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return "", err
+	}
+
+	// Allocate a mount path of the returned length.
+	if mountPathLength == 0 {
+		return "", nil
+	}
+	mountPathp := make([]uint16, mountPathLength)
+	mountPathp[0] = 0
+
+	// Call the procedure again
+	logrus.Debugf("Calling proc (2)")
+	err = getLayerMountPath(&infop, id, &mountPathLength, &mountPathp[0])
+	if err != nil {
+		err = makeErrorf(err, title, "(second call) id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return "", err
+	}
+
+	path := syscall.UTF16ToString(mountPathp[0:])
+	logrus.Debugf(title+"succeeded flavour=%d id=%s path=%s", info.Flavour, id, path)
+	return path, nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go b/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
new file mode 100644
index 0000000000..05d3d9532a
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/getsharedbaseimages.go
@@ -0,0 +1,22 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// GetSharedBaseImages will enumerate the images stored in the common central
+// image store and return descriptive info about those images for the purpose
+// of registering them with the graphdriver, graph, and tagstore.
+func GetSharedBaseImages() (imageData string, err error) {
+	title := "hcsshim::GetSharedBaseImages "
+
+	logrus.Debugf("Calling proc")
+	var buffer *uint16
+	err = getBaseImages(&buffer)
+	if err != nil {
+		err = makeError(err, title, "")
+		logrus.Error(err)
+		return
+	}
+	imageData = convertAndFreeCoTaskMemString(buffer)
+	logrus.Debugf(title+" - succeeded output=%s", imageData)
+	return
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/guid.go b/vendor/github.com/Microsoft/hcsshim/guid.go
new file mode 100644
index 0000000000..620aba123c
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/guid.go
@@ -0,0 +1,19 @@
+package hcsshim
+
+import (
+	"crypto/sha1"
+	"fmt"
+)
+
+type GUID [16]byte
+
+func NewGUID(source string) *GUID {
+	h := sha1.Sum([]byte(source))
+	var g GUID
+	copy(g[0:], h[0:16])
+	return &g
+}
+
+func (g *GUID) ToString() string {
+	return fmt.Sprintf("%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x-%02x", g[3], g[2], g[1], g[0], g[5], g[4], g[7], g[6], g[8:10], g[10:])
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hcsshim.go b/vendor/github.com/Microsoft/hcsshim/hcsshim.go
new file mode 100644
index 0000000000..b65953191c
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hcsshim.go
@@ -0,0 +1,166 @@
+// Shim for the Host Compute Service (HCS) to manage Windows Server
+// containers and Hyper-V containers.
+
+package hcsshim
+
+import (
+	"fmt"
+	"syscall"
+	"unsafe"
+
+	"github.com/sirupsen/logrus"
+)
+
+//go:generate go run mksyscall_windows.go -output zhcsshim.go hcsshim.go safeopen.go
+
+//sys coTaskMemFree(buffer unsafe.Pointer) = ole32.CoTaskMemFree
+//sys SetCurrentThreadCompartmentId(compartmentId uint32) (hr error) = iphlpapi.SetCurrentThreadCompartmentId
+
+//sys activateLayer(info *driverInfo, id string) (hr error) = vmcompute.ActivateLayer?
+//sys copyLayer(info *driverInfo, srcId string, dstId string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.CopyLayer?
+//sys createLayer(info *driverInfo, id string, parent string) (hr error) = vmcompute.CreateLayer?
+//sys createSandboxLayer(info *driverInfo, id string, parent string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.CreateSandboxLayer?
+//sys expandSandboxSize(info *driverInfo, id string, size uint64) (hr error) = vmcompute.ExpandSandboxSize?
+//sys deactivateLayer(info *driverInfo, id string) (hr error) = vmcompute.DeactivateLayer?
+//sys destroyLayer(info *driverInfo, id string) (hr error) = vmcompute.DestroyLayer?
+//sys exportLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.ExportLayer?
+//sys getLayerMountPath(info *driverInfo, id string, length *uintptr, buffer *uint16) (hr error) = vmcompute.GetLayerMountPath?
+//sys getBaseImages(buffer **uint16) (hr error) = vmcompute.GetBaseImages?
+//sys importLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.ImportLayer?
+//sys layerExists(info *driverInfo, id string, exists *uint32) (hr error) = vmcompute.LayerExists?
+//sys nameToGuid(name string, guid *GUID) (hr error) = vmcompute.NameToGuid?
+//sys prepareLayer(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) = vmcompute.PrepareLayer?
+//sys unprepareLayer(info *driverInfo, id string) (hr error) = vmcompute.UnprepareLayer?
+//sys processBaseImage(path string) (hr error) = vmcompute.ProcessBaseImage?
+//sys processUtilityImage(path string) (hr error) = vmcompute.ProcessUtilityImage?
+
+//sys importLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) = vmcompute.ImportLayerBegin?
+//sys importLayerNext(context uintptr, fileName string, fileInfo *winio.FileBasicInfo) (hr error) = vmcompute.ImportLayerNext?
+//sys importLayerWrite(context uintptr, buffer []byte) (hr error) = vmcompute.ImportLayerWrite?
+//sys importLayerEnd(context uintptr) (hr error) = vmcompute.ImportLayerEnd?
+
+//sys exportLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) = vmcompute.ExportLayerBegin?
+//sys exportLayerNext(context uintptr, fileName **uint16, fileInfo *winio.FileBasicInfo, fileSize *int64, deleted *uint32) (hr error) = vmcompute.ExportLayerNext?
+//sys exportLayerRead(context uintptr, buffer []byte, bytesRead *uint32) (hr error) = vmcompute.ExportLayerRead?
+//sys exportLayerEnd(context uintptr) (hr error) = vmcompute.ExportLayerEnd?
+
+//sys hcsEnumerateComputeSystems(query string, computeSystems **uint16, result **uint16) (hr error) = vmcompute.HcsEnumerateComputeSystems?
+//sys hcsCreateComputeSystem(id string, configuration string, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) = vmcompute.HcsCreateComputeSystem?
+//sys hcsOpenComputeSystem(id string, computeSystem *hcsSystem, result **uint16) (hr error) = vmcompute.HcsOpenComputeSystem?
+//sys hcsCloseComputeSystem(computeSystem hcsSystem) (hr error) = vmcompute.HcsCloseComputeSystem?
+//sys hcsStartComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsStartComputeSystem?
+//sys hcsShutdownComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsShutdownComputeSystem?
+//sys hcsTerminateComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsTerminateComputeSystem?
+//sys hcsPauseComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsPauseComputeSystem?
+//sys hcsResumeComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) = vmcompute.HcsResumeComputeSystem?
+//sys hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery string, properties **uint16, result **uint16) (hr error) = vmcompute.HcsGetComputeSystemProperties?
+//sys hcsModifyComputeSystem(computeSystem hcsSystem, configuration string, result **uint16) (hr error) = vmcompute.HcsModifyComputeSystem?
+//sys hcsRegisterComputeSystemCallback(computeSystem hcsSystem, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) = vmcompute.HcsRegisterComputeSystemCallback?
+//sys hcsUnregisterComputeSystemCallback(callbackHandle hcsCallback) (hr error) = vmcompute.HcsUnregisterComputeSystemCallback?
+
+//sys hcsCreateProcess(computeSystem hcsSystem, processParameters string, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) = vmcompute.HcsCreateProcess?
+//sys hcsOpenProcess(computeSystem hcsSystem, pid uint32, process *hcsProcess, result **uint16) (hr error) = vmcompute.HcsOpenProcess?
+//sys hcsCloseProcess(process hcsProcess) (hr error) = vmcompute.HcsCloseProcess?
+//sys hcsTerminateProcess(process hcsProcess, result **uint16) (hr error) = vmcompute.HcsTerminateProcess?
+//sys hcsGetProcessInfo(process hcsProcess, processInformation *hcsProcessInformation, result **uint16) (hr error) = vmcompute.HcsGetProcessInfo?
+//sys hcsGetProcessProperties(process hcsProcess, processProperties **uint16, result **uint16) (hr error) = vmcompute.HcsGetProcessProperties?
+//sys hcsModifyProcess(process hcsProcess, settings string, result **uint16) (hr error) = vmcompute.HcsModifyProcess?
+//sys hcsGetServiceProperties(propertyQuery string, properties **uint16, result **uint16) (hr error) = vmcompute.HcsGetServiceProperties?
+//sys hcsRegisterProcessCallback(process hcsProcess, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) = vmcompute.HcsRegisterProcessCallback?
+//sys hcsUnregisterProcessCallback(callbackHandle hcsCallback) (hr error) = vmcompute.HcsUnregisterProcessCallback?
+
+//sys hcsModifyServiceSettings(settings string, result **uint16) (hr error) = vmcompute.HcsModifyServiceSettings?
+
+//sys _hnsCall(method string, path string, object string, response **uint16) (hr error) = vmcompute.HNSCall?
+
+const (
+	// Specific user-visible exit codes
+	WaitErrExecFailed = 32767
+
+	ERROR_GEN_FAILURE          = syscall.Errno(31)
+	ERROR_SHUTDOWN_IN_PROGRESS = syscall.Errno(1115)
+	WSAEINVAL                  = syscall.Errno(10022)
+
+	// Timeout on wait calls
+	TimeoutInfinite = 0xFFFFFFFF
+)
+
+type HcsError struct {
+	title string
+	rest  string
+	Err   error
+}
+
+type hcsSystem syscall.Handle
+type hcsProcess syscall.Handle
+type hcsCallback syscall.Handle
+
+type hcsProcessInformation struct {
+	ProcessId uint32
+	Reserved  uint32
+	StdInput  syscall.Handle
+	StdOutput syscall.Handle
+	StdError  syscall.Handle
+}
+
+func makeError(err error, title, rest string) error {
+	// Pass through DLL errors directly since they do not originate from HCS.
+	if _, ok := err.(*syscall.DLLError); ok {
+		return err
+	}
+	return &HcsError{title, rest, err}
+}
+
+func makeErrorf(err error, title, format string, a ...interface{}) error {
+	return makeError(err, title, fmt.Sprintf(format, a...))
+}
+
+func win32FromError(err error) uint32 {
+	if herr, ok := err.(*HcsError); ok {
+		return win32FromError(herr.Err)
+	}
+	if code, ok := err.(syscall.Errno); ok {
+		return uint32(code)
+	}
+	return uint32(ERROR_GEN_FAILURE)
+}
+
+func win32FromHresult(hr uintptr) uintptr {
+	if hr&0x1fff0000 == 0x00070000 {
+		return hr & 0xffff
+	}
+	return hr
+}
+
+func (e *HcsError) Error() string {
+	s := e.title
+	if len(s) > 0 && s[len(s)-1] != ' ' {
+		s += " "
+	}
+	s += fmt.Sprintf("failed in Win32: %s (0x%x)", e.Err, win32FromError(e.Err))
+	if e.rest != "" {
+		if e.rest[0] != ' ' {
+			s += " "
+		}
+		s += e.rest
+	}
+	return s
+}
+
+func convertAndFreeCoTaskMemString(buffer *uint16) string {
+	str := syscall.UTF16ToString((*[1 << 30]uint16)(unsafe.Pointer(buffer))[:])
+	coTaskMemFree(unsafe.Pointer(buffer))
+	return str
+}
+
+func convertAndFreeCoTaskMemBytes(buffer *uint16) []byte {
+	return []byte(convertAndFreeCoTaskMemString(buffer))
+}
+
+func processHcsResult(err error, resultp *uint16) error {
+	if resultp != nil {
+		result := convertAndFreeCoTaskMemString(resultp)
+		logrus.Debugf("Result: %s", result)
+	}
+	return err
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go b/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
new file mode 100644
index 0000000000..90689cb1ee
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hnsendpoint.go
@@ -0,0 +1,323 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"net"
+
+	"github.com/sirupsen/logrus"
+)
+
+// HNSEndpoint represents a network endpoint in HNS
+type HNSEndpoint struct {
+	Id                 string            `json:"ID,omitempty"`
+	Name               string            `json:",omitempty"`
+	VirtualNetwork     string            `json:",omitempty"`
+	VirtualNetworkName string            `json:",omitempty"`
+	Policies           []json.RawMessage `json:",omitempty"`
+	MacAddress         string            `json:",omitempty"`
+	IPAddress          net.IP            `json:",omitempty"`
+	DNSSuffix          string            `json:",omitempty"`
+	DNSServerList      string            `json:",omitempty"`
+	GatewayAddress     string            `json:",omitempty"`
+	EnableInternalDNS  bool              `json:",omitempty"`
+	DisableICC         bool              `json:",omitempty"`
+	PrefixLength       uint8             `json:",omitempty"`
+	IsRemoteEndpoint   bool              `json:",omitempty"`
+}
+
+//SystemType represents the type of the system on which actions are done
+type SystemType string
+
+// SystemType const
+const (
+	ContainerType      SystemType = "Container"
+	VirtualMachineType SystemType = "VirtualMachine"
+	HostType           SystemType = "Host"
+)
+
+// EndpointAttachDetachRequest is the structure used to send request to the container to modify the system
+// Supported resource types are Network and Request Types are Add/Remove
+type EndpointAttachDetachRequest struct {
+	ContainerID    string     `json:"ContainerId,omitempty"`
+	SystemType     SystemType `json:"SystemType"`
+	CompartmentID  uint16     `json:"CompartmentId,omitempty"`
+	VirtualNICName string     `json:"VirtualNicName,omitempty"`
+}
+
+// EndpointResquestResponse is object to get the endpoint request response
+type EndpointResquestResponse struct {
+	Success bool
+	Error   string
+}
+
+// HNSEndpointRequest makes a HNS call to modify/query a network endpoint
+func HNSEndpointRequest(method, path, request string) (*HNSEndpoint, error) {
+	endpoint := &HNSEndpoint{}
+	err := hnsCall(method, "/endpoints/"+path, request, &endpoint)
+	if err != nil {
+		return nil, err
+	}
+
+	return endpoint, nil
+}
+
+// HNSListEndpointRequest makes a HNS call to query the list of available endpoints
+func HNSListEndpointRequest() ([]HNSEndpoint, error) {
+	var endpoint []HNSEndpoint
+	err := hnsCall("GET", "/endpoints/", "", &endpoint)
+	if err != nil {
+		return nil, err
+	}
+
+	return endpoint, nil
+}
+
+// HotAttachEndpoint makes a HCS Call to attach the endpoint to the container
+func HotAttachEndpoint(containerID string, endpointID string) error {
+	return modifyNetworkEndpoint(containerID, endpointID, Add)
+}
+
+// HotDetachEndpoint makes a HCS Call to detach the endpoint from the container
+func HotDetachEndpoint(containerID string, endpointID string) error {
+	return modifyNetworkEndpoint(containerID, endpointID, Remove)
+}
+
+// ModifyContainer corresponding to the container id, by sending a request
+func modifyContainer(id string, request *ResourceModificationRequestResponse) error {
+	container, err := OpenContainer(id)
+	if err != nil {
+		if IsNotExist(err) {
+			return ErrComputeSystemDoesNotExist
+		}
+		return getInnerError(err)
+	}
+	defer container.Close()
+	err = container.Modify(request)
+	if err != nil {
+		if IsNotSupported(err) {
+			return ErrPlatformNotSupported
+		}
+		return getInnerError(err)
+	}
+
+	return nil
+}
+
+func modifyNetworkEndpoint(containerID string, endpointID string, request RequestType) error {
+	requestMessage := &ResourceModificationRequestResponse{
+		Resource: Network,
+		Request:  request,
+		Data:     endpointID,
+	}
+	err := modifyContainer(containerID, requestMessage)
+
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+// GetHNSEndpointByID get the Endpoint by ID
+func GetHNSEndpointByID(endpointID string) (*HNSEndpoint, error) {
+	return HNSEndpointRequest("GET", endpointID, "")
+}
+
+// GetHNSEndpointByName gets the endpoint filtered by Name
+func GetHNSEndpointByName(endpointName string) (*HNSEndpoint, error) {
+	hnsResponse, err := HNSListEndpointRequest()
+	if err != nil {
+		return nil, err
+	}
+	for _, hnsEndpoint := range hnsResponse {
+		if hnsEndpoint.Name == endpointName {
+			return &hnsEndpoint, nil
+		}
+	}
+	return nil, EndpointNotFoundError{EndpointName: endpointName}
+}
+
+// Create Endpoint by sending EndpointRequest to HNS. TODO: Create a separate HNS interface to place all these methods
+func (endpoint *HNSEndpoint) Create() (*HNSEndpoint, error) {
+	operation := "Create"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	jsonString, err := json.Marshal(endpoint)
+	if err != nil {
+		return nil, err
+	}
+	return HNSEndpointRequest("POST", "", string(jsonString))
+}
+
+// Delete Endpoint by sending EndpointRequest to HNS
+func (endpoint *HNSEndpoint) Delete() (*HNSEndpoint, error) {
+	operation := "Delete"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	return HNSEndpointRequest("DELETE", endpoint.Id, "")
+}
+
+// Update Endpoint
+func (endpoint *HNSEndpoint) Update() (*HNSEndpoint, error) {
+	operation := "Update"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+	jsonString, err := json.Marshal(endpoint)
+	if err != nil {
+		return nil, err
+	}
+	err = hnsCall("POST", "/endpoints/"+endpoint.Id, string(jsonString), &endpoint)
+
+	return endpoint, err
+}
+
+// ContainerHotAttach attaches an endpoint to a running container
+func (endpoint *HNSEndpoint) ContainerHotAttach(containerID string) error {
+	operation := "ContainerHotAttach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s, containerId=%s", endpoint.Id, containerID)
+
+	return modifyNetworkEndpoint(containerID, endpoint.Id, Add)
+}
+
+// ContainerHotDetach detaches an endpoint from a running container
+func (endpoint *HNSEndpoint) ContainerHotDetach(containerID string) error {
+	operation := "ContainerHotDetach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s, containerId=%s", endpoint.Id, containerID)
+
+	return modifyNetworkEndpoint(containerID, endpoint.Id, Remove)
+}
+
+// ApplyACLPolicy applies a set of ACL Policies on the Endpoint
+func (endpoint *HNSEndpoint) ApplyACLPolicy(policies ...*ACLPolicy) error {
+	operation := "ApplyACLPolicy"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	for _, policy := range policies {
+		if policy == nil {
+			continue
+		}
+		jsonString, err := json.Marshal(policy)
+		if err != nil {
+			return err
+		}
+		endpoint.Policies = append(endpoint.Policies, jsonString)
+	}
+
+	_, err := endpoint.Update()
+	return err
+}
+
+// ContainerAttach attaches an endpoint to container
+func (endpoint *HNSEndpoint) ContainerAttach(containerID string, compartmentID uint16) error {
+	operation := "ContainerAttach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	requestMessage := &EndpointAttachDetachRequest{
+		ContainerID:   containerID,
+		CompartmentID: compartmentID,
+		SystemType:    ContainerType,
+	}
+	response := &EndpointResquestResponse{}
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
+}
+
+// ContainerDetach detaches an endpoint from container
+func (endpoint *HNSEndpoint) ContainerDetach(containerID string) error {
+	operation := "ContainerDetach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	requestMessage := &EndpointAttachDetachRequest{
+		ContainerID: containerID,
+		SystemType:  ContainerType,
+	}
+	response := &EndpointResquestResponse{}
+
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
+}
+
+// HostAttach attaches a nic on the host
+func (endpoint *HNSEndpoint) HostAttach(compartmentID uint16) error {
+	operation := "HostAttach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+	requestMessage := &EndpointAttachDetachRequest{
+		CompartmentID: compartmentID,
+		SystemType:    HostType,
+	}
+	response := &EndpointResquestResponse{}
+
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
+
+}
+
+// HostDetach detaches a nic on the host
+func (endpoint *HNSEndpoint) HostDetach() error {
+	operation := "HostDetach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+	requestMessage := &EndpointAttachDetachRequest{
+		SystemType: HostType,
+	}
+	response := &EndpointResquestResponse{}
+
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
+}
+
+// VirtualMachineNICAttach attaches a endpoint to a virtual machine
+func (endpoint *HNSEndpoint) VirtualMachineNICAttach(virtualMachineNICName string) error {
+	operation := "VirtualMachineNicAttach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+	requestMessage := &EndpointAttachDetachRequest{
+		VirtualNICName: virtualMachineNICName,
+		SystemType:     VirtualMachineType,
+	}
+	response := &EndpointResquestResponse{}
+
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/attach", string(jsonString), &response)
+}
+
+// VirtualMachineNICDetach detaches a endpoint  from a virtual machine
+func (endpoint *HNSEndpoint) VirtualMachineNICDetach() error {
+	operation := "VirtualMachineNicDetach"
+	title := "HCSShim::HNSEndpoint::" + operation
+	logrus.Debugf(title+" id=%s", endpoint.Id)
+
+	requestMessage := &EndpointAttachDetachRequest{
+		SystemType: VirtualMachineType,
+	}
+	response := &EndpointResquestResponse{}
+
+	jsonString, err := json.Marshal(requestMessage)
+	if err != nil {
+		return err
+	}
+	return hnsCall("POST", "/endpoints/"+endpoint.Id+"/detach", string(jsonString), &response)
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go b/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
new file mode 100644
index 0000000000..2c1b979ae8
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hnsfuncs.go
@@ -0,0 +1,40 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"fmt"
+
+	"github.com/sirupsen/logrus"
+)
+
+func hnsCall(method, path, request string, returnResponse interface{}) error {
+	var responseBuffer *uint16
+	logrus.Debugf("[%s]=>[%s] Request : %s", method, path, request)
+
+	err := _hnsCall(method, path, request, &responseBuffer)
+	if err != nil {
+		return makeError(err, "hnsCall ", "")
+	}
+	response := convertAndFreeCoTaskMemString(responseBuffer)
+
+	hnsresponse := &hnsResponse{}
+	if err = json.Unmarshal([]byte(response), &hnsresponse); err != nil {
+		return err
+	}
+
+	if !hnsresponse.Success {
+		return fmt.Errorf("HNS failed with error : %s", hnsresponse.Error)
+	}
+
+	if len(hnsresponse.Output) == 0 {
+		return nil
+	}
+
+	logrus.Debugf("Network Response : %s", hnsresponse.Output)
+	err = json.Unmarshal(hnsresponse.Output, returnResponse)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go b/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
new file mode 100644
index 0000000000..398583a4e4
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hnsnetwork.go
@@ -0,0 +1,141 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"net"
+
+	"github.com/sirupsen/logrus"
+)
+
+// Subnet is assoicated with a network and represents a list
+// of subnets available to the network
+type Subnet struct {
+	AddressPrefix  string            `json:",omitempty"`
+	GatewayAddress string            `json:",omitempty"`
+	Policies       []json.RawMessage `json:",omitempty"`
+}
+
+// MacPool is assoicated with a network and represents a list
+// of macaddresses available to the network
+type MacPool struct {
+	StartMacAddress string `json:",omitempty"`
+	EndMacAddress   string `json:",omitempty"`
+}
+
+// HNSNetwork represents a network in HNS
+type HNSNetwork struct {
+	Id                   string            `json:"ID,omitempty"`
+	Name                 string            `json:",omitempty"`
+	Type                 string            `json:",omitempty"`
+	NetworkAdapterName   string            `json:",omitempty"`
+	SourceMac            string            `json:",omitempty"`
+	Policies             []json.RawMessage `json:",omitempty"`
+	MacPools             []MacPool         `json:",omitempty"`
+	Subnets              []Subnet          `json:",omitempty"`
+	DNSSuffix            string            `json:",omitempty"`
+	DNSServerList        string            `json:",omitempty"`
+	DNSServerCompartment uint32            `json:",omitempty"`
+	ManagementIP         string            `json:",omitempty"`
+	AutomaticDNS         bool              `json:",omitempty"`
+}
+
+type hnsNetworkResponse struct {
+	Success bool
+	Error   string
+	Output  HNSNetwork
+}
+
+type hnsResponse struct {
+	Success bool
+	Error   string
+	Output  json.RawMessage
+}
+
+// HNSNetworkRequest makes a call into HNS to update/query a single network
+func HNSNetworkRequest(method, path, request string) (*HNSNetwork, error) {
+	var network HNSNetwork
+	err := hnsCall(method, "/networks/"+path, request, &network)
+	if err != nil {
+		return nil, err
+	}
+
+	return &network, nil
+}
+
+// HNSListNetworkRequest makes a HNS call to query the list of available networks
+func HNSListNetworkRequest(method, path, request string) ([]HNSNetwork, error) {
+	var network []HNSNetwork
+	err := hnsCall(method, "/networks/"+path, request, &network)
+	if err != nil {
+		return nil, err
+	}
+
+	return network, nil
+}
+
+// GetHNSNetworkByID
+func GetHNSNetworkByID(networkID string) (*HNSNetwork, error) {
+	return HNSNetworkRequest("GET", networkID, "")
+}
+
+// GetHNSNetworkName filtered by Name
+func GetHNSNetworkByName(networkName string) (*HNSNetwork, error) {
+	hsnnetworks, err := HNSListNetworkRequest("GET", "", "")
+	if err != nil {
+		return nil, err
+	}
+	for _, hnsnetwork := range hsnnetworks {
+		if hnsnetwork.Name == networkName {
+			return &hnsnetwork, nil
+		}
+	}
+	return nil, NetworkNotFoundError{NetworkName: networkName}
+}
+
+// Create Network by sending NetworkRequest to HNS.
+func (network *HNSNetwork) Create() (*HNSNetwork, error) {
+	operation := "Create"
+	title := "HCSShim::HNSNetwork::" + operation
+	logrus.Debugf(title+" id=%s", network.Id)
+
+	jsonString, err := json.Marshal(network)
+	if err != nil {
+		return nil, err
+	}
+	return HNSNetworkRequest("POST", "", string(jsonString))
+}
+
+// Delete Network by sending NetworkRequest to HNS
+func (network *HNSNetwork) Delete() (*HNSNetwork, error) {
+	operation := "Delete"
+	title := "HCSShim::HNSNetwork::" + operation
+	logrus.Debugf(title+" id=%s", network.Id)
+
+	return HNSNetworkRequest("DELETE", network.Id, "")
+}
+
+// Creates an endpoint on the Network.
+func (network *HNSNetwork) NewEndpoint(ipAddress net.IP, macAddress net.HardwareAddr) *HNSEndpoint {
+	return &HNSEndpoint{
+		VirtualNetwork: network.Id,
+		IPAddress:      ipAddress,
+		MacAddress:     string(macAddress),
+	}
+}
+
+func (network *HNSNetwork) CreateEndpoint(endpoint *HNSEndpoint) (*HNSEndpoint, error) {
+	operation := "CreateEndpoint"
+	title := "HCSShim::HNSNetwork::" + operation
+	logrus.Debugf(title+" id=%s, endpointId=%s", network.Id, endpoint.Id)
+
+	endpoint.VirtualNetwork = network.Id
+	return endpoint.Create()
+}
+
+func (network *HNSNetwork) CreateRemoteEndpoint(endpoint *HNSEndpoint) (*HNSEndpoint, error) {
+	operation := "CreateRemoteEndpoint"
+	title := "HCSShim::HNSNetwork::" + operation
+	logrus.Debugf(title+" id=%s", network.Id)
+	endpoint.IsRemoteEndpoint = true
+	return network.CreateEndpoint(endpoint)
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnspolicy.go b/vendor/github.com/Microsoft/hcsshim/hnspolicy.go
new file mode 100644
index 0000000000..bf860e9387
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hnspolicy.go
@@ -0,0 +1,94 @@
+package hcsshim
+
+// Type of Request Support in ModifySystem
+type PolicyType string
+
+// RequestType const
+const (
+	Nat                  PolicyType = "NAT"
+	ACL                  PolicyType = "ACL"
+	PA                   PolicyType = "PA"
+	VLAN                 PolicyType = "VLAN"
+	VSID                 PolicyType = "VSID"
+	VNet                 PolicyType = "VNET"
+	L2Driver             PolicyType = "L2Driver"
+	Isolation            PolicyType = "Isolation"
+	QOS                  PolicyType = "QOS"
+	OutboundNat          PolicyType = "OutBoundNAT"
+	ExternalLoadBalancer PolicyType = "ELB"
+	Route                PolicyType = "ROUTE"
+)
+
+type NatPolicy struct {
+	Type         PolicyType `json:"Type"`
+	Protocol     string
+	InternalPort uint16
+	ExternalPort uint16
+}
+
+type QosPolicy struct {
+	Type                            PolicyType `json:"Type"`
+	MaximumOutgoingBandwidthInBytes uint64
+}
+
+type IsolationPolicy struct {
+	Type               PolicyType `json:"Type"`
+	VLAN               uint
+	VSID               uint
+	InDefaultIsolation bool
+}
+
+type VlanPolicy struct {
+	Type PolicyType `json:"Type"`
+	VLAN uint
+}
+
+type VsidPolicy struct {
+	Type PolicyType `json:"Type"`
+	VSID uint
+}
+
+type PaPolicy struct {
+	Type PolicyType `json:"Type"`
+	PA   string     `json:"PA"`
+}
+
+type OutboundNatPolicy struct {
+	Policy
+	VIP        string   `json:"VIP,omitempty"`
+	Exceptions []string `json:"ExceptionList,omitempty"`
+}
+
+type ActionType string
+type DirectionType string
+type RuleType string
+
+const (
+	Allow ActionType = "Allow"
+	Block ActionType = "Block"
+
+	In  DirectionType = "In"
+	Out DirectionType = "Out"
+
+	Host   RuleType = "Host"
+	Switch RuleType = "Switch"
+)
+
+type ACLPolicy struct {
+	Type            PolicyType `json:"Type"`
+	Protocol        uint16
+	InternalPort    uint16
+	Action          ActionType
+	Direction       DirectionType
+	LocalAddresses  string
+	RemoteAddresses string
+	LocalPort       uint16
+	RemotePort      uint16
+	RuleType        RuleType `json:"RuleType,omitempty"`
+	Priority        uint16
+	ServiceName     string
+}
+
+type Policy struct {
+	Type PolicyType `json:"Type"`
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go b/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
new file mode 100644
index 0000000000..ef1ccab16e
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/hnspolicylist.go
@@ -0,0 +1,200 @@
+package hcsshim
+
+import (
+	"encoding/json"
+
+	"github.com/sirupsen/logrus"
+)
+
+// RoutePolicy is a structure defining schema for Route based Policy
+type RoutePolicy struct {
+	Policy
+	DestinationPrefix string `json:"DestinationPrefix,omitempty"`
+	NextHop           string `json:"NextHop,omitempty"`
+	EncapEnabled      bool   `json:"NeedEncap,omitempty"`
+}
+
+// ELBPolicy is a structure defining schema for ELB LoadBalancing based Policy
+type ELBPolicy struct {
+	LBPolicy
+	SourceVIP string   `json:"SourceVIP,omitempty"`
+	VIPs      []string `json:"VIPs,omitempty"`
+	ILB       bool     `json:"ILB,omitempty"`
+}
+
+// LBPolicy is a structure defining schema for LoadBalancing based Policy
+type LBPolicy struct {
+	Policy
+	Protocol     uint16 `json:"Protocol,omitempty"`
+	InternalPort uint16
+	ExternalPort uint16
+}
+
+// PolicyList is a structure defining schema for Policy list request
+type PolicyList struct {
+	ID                 string            `json:"ID,omitempty"`
+	EndpointReferences []string          `json:"References,omitempty"`
+	Policies           []json.RawMessage `json:"Policies,omitempty"`
+}
+
+// HNSPolicyListRequest makes a call into HNS to update/query a single network
+func HNSPolicyListRequest(method, path, request string) (*PolicyList, error) {
+	var policy PolicyList
+	err := hnsCall(method, "/policylists/"+path, request, &policy)
+	if err != nil {
+		return nil, err
+	}
+
+	return &policy, nil
+}
+
+// HNSListPolicyListRequest gets all the policy list
+func HNSListPolicyListRequest() ([]PolicyList, error) {
+	var plist []PolicyList
+	err := hnsCall("GET", "/policylists/", "", &plist)
+	if err != nil {
+		return nil, err
+	}
+
+	return plist, nil
+}
+
+// PolicyListRequest makes a HNS call to modify/query a network policy list
+func PolicyListRequest(method, path, request string) (*PolicyList, error) {
+	policylist := &PolicyList{}
+	err := hnsCall(method, "/policylists/"+path, request, &policylist)
+	if err != nil {
+		return nil, err
+	}
+
+	return policylist, nil
+}
+
+// GetPolicyListByID get the policy list by ID
+func GetPolicyListByID(policyListID string) (*PolicyList, error) {
+	return PolicyListRequest("GET", policyListID, "")
+}
+
+// Create PolicyList by sending PolicyListRequest to HNS.
+func (policylist *PolicyList) Create() (*PolicyList, error) {
+	operation := "Create"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" id=%s", policylist.ID)
+	jsonString, err := json.Marshal(policylist)
+	if err != nil {
+		return nil, err
+	}
+	return PolicyListRequest("POST", "", string(jsonString))
+}
+
+// Delete deletes PolicyList
+func (policylist *PolicyList) Delete() (*PolicyList, error) {
+	operation := "Delete"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" id=%s", policylist.ID)
+
+	return PolicyListRequest("DELETE", policylist.ID, "")
+}
+
+// AddEndpoint add an endpoint to a Policy List
+func (policylist *PolicyList) AddEndpoint(endpoint *HNSEndpoint) (*PolicyList, error) {
+	operation := "AddEndpoint"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" id=%s, endpointId:%s", policylist.ID, endpoint.Id)
+
+	_, err := policylist.Delete()
+	if err != nil {
+		return nil, err
+	}
+
+	// Add Endpoint to the Existing List
+	policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
+
+	return policylist.Create()
+}
+
+// RemoveEndpoint removes an endpoint from the Policy List
+func (policylist *PolicyList) RemoveEndpoint(endpoint *HNSEndpoint) (*PolicyList, error) {
+	operation := "RemoveEndpoint"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" id=%s, endpointId:%s", policylist.ID, endpoint.Id)
+
+	_, err := policylist.Delete()
+	if err != nil {
+		return nil, err
+	}
+
+	elementToRemove := "/endpoints/" + endpoint.Id
+
+	var references []string
+
+	for _, endpointReference := range policylist.EndpointReferences {
+		if endpointReference == elementToRemove {
+			continue
+		}
+		references = append(references, endpointReference)
+	}
+	policylist.EndpointReferences = references
+	return policylist.Create()
+}
+
+// AddLoadBalancer policy list for the specified endpoints
+func AddLoadBalancer(endpoints []HNSEndpoint, isILB bool, sourceVIP, vip string, protocol uint16, internalPort uint16, externalPort uint16) (*PolicyList, error) {
+	operation := "AddLoadBalancer"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" endpointId=%v, isILB=%v, sourceVIP=%s, vip=%s, protocol=%v, internalPort=%v, externalPort=%v", endpoints, isILB, sourceVIP, vip, protocol, internalPort, externalPort)
+
+	policylist := &PolicyList{}
+
+	elbPolicy := &ELBPolicy{
+		SourceVIP: sourceVIP,
+		ILB:       isILB,
+	}
+
+	if len(vip) > 0 {
+		elbPolicy.VIPs = []string{vip}
+	}
+	elbPolicy.Type = ExternalLoadBalancer
+	elbPolicy.Protocol = protocol
+	elbPolicy.InternalPort = internalPort
+	elbPolicy.ExternalPort = externalPort
+
+	for _, endpoint := range endpoints {
+		policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
+	}
+
+	jsonString, err := json.Marshal(elbPolicy)
+	if err != nil {
+		return nil, err
+	}
+	policylist.Policies = append(policylist.Policies, jsonString)
+	return policylist.Create()
+}
+
+// AddRoute adds route policy list for the specified endpoints
+func AddRoute(endpoints []HNSEndpoint, destinationPrefix string, nextHop string, encapEnabled bool) (*PolicyList, error) {
+	operation := "AddRoute"
+	title := "HCSShim::PolicyList::" + operation
+	logrus.Debugf(title+" destinationPrefix:%s", destinationPrefix)
+
+	policylist := &PolicyList{}
+
+	rPolicy := &RoutePolicy{
+		DestinationPrefix: destinationPrefix,
+		NextHop:           nextHop,
+		EncapEnabled:      encapEnabled,
+	}
+	rPolicy.Type = Route
+
+	for _, endpoint := range endpoints {
+		policylist.EndpointReferences = append(policylist.EndpointReferences, "/endpoints/"+endpoint.Id)
+	}
+
+	jsonString, err := json.Marshal(rPolicy)
+	if err != nil {
+		return nil, err
+	}
+
+	policylist.Policies = append(policylist.Policies, jsonString)
+	return policylist.Create()
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/importlayer.go b/vendor/github.com/Microsoft/hcsshim/importlayer.go
new file mode 100644
index 0000000000..2742b9f750
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/importlayer.go
@@ -0,0 +1,222 @@
+package hcsshim
+
+import (
+	"errors"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/Microsoft/go-winio"
+	"github.com/sirupsen/logrus"
+)
+
+// ImportLayer will take the contents of the folder at importFolderPath and import
+// that into a layer with the id layerId.  Note that in order to correctly populate
+// the layer and interperet the transport format, all parent layers must already
+// be present on the system at the paths provided in parentLayerPaths.
+func ImportLayer(info DriverInfo, layerID string, importFolderPath string, parentLayerPaths []string) error {
+	title := "hcsshim::ImportLayer "
+	logrus.Debugf(title+"flavour %d layerId %s folder %s", info.Flavour, layerID, importFolderPath)
+
+	// Generate layer descriptors
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return err
+	}
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = importLayer(&infop, layerID, importFolderPath, layers)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s flavour=%d folder=%s", layerID, info.Flavour, importFolderPath)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d layerId=%s folder=%s", info.Flavour, layerID, importFolderPath)
+	return nil
+}
+
+// LayerWriter is an interface that supports writing a new container image layer.
+type LayerWriter interface {
+	// Add adds a file to the layer with given metadata.
+	Add(name string, fileInfo *winio.FileBasicInfo) error
+	// AddLink adds a hard link to the layer. The target must already have been added.
+	AddLink(name string, target string) error
+	// Remove removes a file that was present in a parent layer from the layer.
+	Remove(name string) error
+	// Write writes data to the current file. The data must be in the format of a Win32
+	// backup stream.
+	Write(b []byte) (int, error)
+	// Close finishes the layer writing process and releases any resources.
+	Close() error
+}
+
+// FilterLayerWriter provides an interface to write the contents of a layer to the file system.
+type FilterLayerWriter struct {
+	context uintptr
+}
+
+// Add adds a file or directory to the layer. The file's parent directory must have already been added.
+//
+// name contains the file's relative path. fileInfo contains file times and file attributes; the rest
+// of the file metadata and the file data must be written as a Win32 backup stream to the Write() method.
+// winio.BackupStreamWriter can be used to facilitate this.
+func (w *FilterLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) error {
+	if name[0] != '\\' {
+		name = `\` + name
+	}
+	err := importLayerNext(w.context, name, fileInfo)
+	if err != nil {
+		return makeError(err, "ImportLayerNext", "")
+	}
+	return nil
+}
+
+// AddLink adds a hard link to the layer. The target of the link must have already been added.
+func (w *FilterLayerWriter) AddLink(name string, target string) error {
+	return errors.New("hard links not yet supported")
+}
+
+// Remove removes a file from the layer. The file must have been present in the parent layer.
+//
+// name contains the file's relative path.
+func (w *FilterLayerWriter) Remove(name string) error {
+	if name[0] != '\\' {
+		name = `\` + name
+	}
+	err := importLayerNext(w.context, name, nil)
+	if err != nil {
+		return makeError(err, "ImportLayerNext", "")
+	}
+	return nil
+}
+
+// Write writes more backup stream data to the current file.
+func (w *FilterLayerWriter) Write(b []byte) (int, error) {
+	err := importLayerWrite(w.context, b)
+	if err != nil {
+		err = makeError(err, "ImportLayerWrite", "")
+		return 0, err
+	}
+	return len(b), err
+}
+
+// Close completes the layer write operation. The error must be checked to ensure that the
+// operation was successful.
+func (w *FilterLayerWriter) Close() (err error) {
+	if w.context != 0 {
+		err = importLayerEnd(w.context)
+		if err != nil {
+			err = makeError(err, "ImportLayerEnd", "")
+		}
+		w.context = 0
+	}
+	return
+}
+
+type legacyLayerWriterWrapper struct {
+	*legacyLayerWriter
+	info             DriverInfo
+	layerID          string
+	path             string
+	parentLayerPaths []string
+}
+
+func (r *legacyLayerWriterWrapper) Close() error {
+	defer os.RemoveAll(r.root.Name())
+	defer r.legacyLayerWriter.CloseRoots()
+	err := r.legacyLayerWriter.Close()
+	if err != nil {
+		return err
+	}
+
+	info := r.info
+	info.HomeDir = ""
+	if err = ImportLayer(info, r.destRoot.Name(), r.path, r.parentLayerPaths); err != nil {
+		return err
+	}
+	for _, name := range r.Tombstones {
+		if err = removeRelative(name, r.destRoot); err != nil && !os.IsNotExist(err) {
+			return err
+		}
+	}
+	// Add any hard links that were collected.
+	for _, lnk := range r.PendingLinks {
+		if err = removeRelative(lnk.Path, r.destRoot); err != nil && !os.IsNotExist(err) {
+			return err
+		}
+		if err = linkRelative(lnk.Target, lnk.TargetRoot, lnk.Path, r.destRoot); err != nil {
+			return err
+		}
+	}
+	// Prepare the utility VM for use if one is present in the layer.
+	if r.HasUtilityVM {
+		err := ensureNotReparsePointRelative("UtilityVM", r.destRoot)
+		if err != nil {
+			return err
+		}
+		err = ProcessUtilityVMImage(filepath.Join(r.destRoot.Name(), "UtilityVM"))
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// NewLayerWriter returns a new layer writer for creating a layer on disk.
+// The caller must have taken the SeBackupPrivilege and SeRestorePrivilege privileges
+// to call this and any methods on the resulting LayerWriter.
+func NewLayerWriter(info DriverInfo, layerID string, parentLayerPaths []string) (LayerWriter, error) {
+	if len(parentLayerPaths) == 0 {
+		// This is a base layer. It gets imported differently.
+		f, err := openRoot(filepath.Join(info.HomeDir, layerID))
+		if err != nil {
+			return nil, err
+		}
+		return &baseLayerWriter{
+			root: f,
+		}, nil
+	}
+
+	if procImportLayerBegin.Find() != nil {
+		// The new layer reader is not available on this Windows build. Fall back to the
+		// legacy export code path.
+		path, err := ioutil.TempDir("", "hcs")
+		if err != nil {
+			return nil, err
+		}
+		w, err := newLegacyLayerWriter(path, parentLayerPaths, filepath.Join(info.HomeDir, layerID))
+		if err != nil {
+			return nil, err
+		}
+		return &legacyLayerWriterWrapper{
+			legacyLayerWriter: w,
+			info:              info,
+			layerID:           layerID,
+			path:              path,
+			parentLayerPaths:  parentLayerPaths,
+		}, nil
+	}
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return nil, err
+	}
+
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		return nil, err
+	}
+
+	w := &FilterLayerWriter{}
+	err = importLayerBegin(&infop, layerID, layers, &w.context)
+	if err != nil {
+		return nil, makeError(err, "ImportLayerStart", "")
+	}
+	return w, nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/interface.go b/vendor/github.com/Microsoft/hcsshim/interface.go
new file mode 100644
index 0000000000..e21f30025a
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/interface.go
@@ -0,0 +1,188 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"io"
+	"time"
+)
+
+// ProcessConfig is used as both the input of Container.CreateProcess
+// and to convert the parameters to JSON for passing onto the HCS
+type ProcessConfig struct {
+	ApplicationName   string            `json:",omitempty"`
+	CommandLine       string            `json:",omitempty"`
+	CommandArgs       []string          `json:",omitempty"` // Used by Linux Containers on Windows
+	User              string            `json:",omitempty"`
+	WorkingDirectory  string            `json:",omitempty"`
+	Environment       map[string]string `json:",omitempty"`
+	EmulateConsole    bool              `json:",omitempty"`
+	CreateStdInPipe   bool              `json:",omitempty"`
+	CreateStdOutPipe  bool              `json:",omitempty"`
+	CreateStdErrPipe  bool              `json:",omitempty"`
+	ConsoleSize       [2]uint           `json:",omitempty"`
+	CreateInUtilityVm bool              `json:",omitempty"` // Used by Linux Containers on Windows
+	OCISpecification  *json.RawMessage  `json:",omitempty"` // Used by Linux Containers on Windows
+}
+
+type Layer struct {
+	ID   string
+	Path string
+}
+
+type MappedDir struct {
+	HostPath          string
+	ContainerPath     string
+	ReadOnly          bool
+	BandwidthMaximum  uint64
+	IOPSMaximum       uint64
+	CreateInUtilityVM bool
+}
+
+type MappedPipe struct {
+	HostPath          string
+	ContainerPipeName string
+}
+
+type HvRuntime struct {
+	ImagePath           string `json:",omitempty"`
+	SkipTemplate        bool   `json:",omitempty"`
+	LinuxInitrdFile     string `json:",omitempty"` // File under ImagePath on host containing an initrd image for starting a Linux utility VM
+	LinuxKernelFile     string `json:",omitempty"` // File under ImagePath on host containing a kernel for starting a Linux utility VM
+	LinuxBootParameters string `json:",omitempty"` // Additional boot parameters for starting a Linux Utility VM in initrd mode
+	BootSource          string `json:",omitempty"` // "Vhd" for Linux Utility VM booting from VHD
+	WritableBootSource  bool   `json:",omitempty"` // Linux Utility VM booting from VHD
+}
+
+type MappedVirtualDisk struct {
+	HostPath          string `json:",omitempty"` // Path to VHD on the host
+	ContainerPath     string // Platform-specific mount point path in the container
+	CreateInUtilityVM bool   `json:",omitempty"`
+	ReadOnly          bool   `json:",omitempty"`
+	Cache             string `json:",omitempty"` // "" (Unspecified); "Disabled"; "Enabled"; "Private"; "PrivateAllowSharing"
+	AttachOnly        bool   `json:",omitempty:`
+}
+
+// ContainerConfig is used as both the input of CreateContainer
+// and to convert the parameters to JSON for passing onto the HCS
+type ContainerConfig struct {
+	SystemType                  string              // HCS requires this to be hard-coded to "Container"
+	Name                        string              // Name of the container. We use the docker ID.
+	Owner                       string              `json:",omitempty"` // The management platform that created this container
+	VolumePath                  string              `json:",omitempty"` // Windows volume path for scratch space. Used by Windows Server Containers only. Format \\?\\Volume{GUID}
+	IgnoreFlushesDuringBoot     bool                `json:",omitempty"` // Optimization hint for container startup in Windows
+	LayerFolderPath             string              `json:",omitempty"` // Where the layer folders are located. Used by Windows Server Containers only. Format  %root%\windowsfilter\containerID
+	Layers                      []Layer             // List of storage layers. Required for Windows Server and Hyper-V Containers. Format ID=GUID;Path=%root%\windowsfilter\layerID
+	Credentials                 string              `json:",omitempty"` // Credentials information
+	ProcessorCount              uint32              `json:",omitempty"` // Number of processors to assign to the container.
+	ProcessorWeight             uint64              `json:",omitempty"` // CPU shares (relative weight to other containers with cpu shares). Range is from 1 to 10000. A value of 0 results in default shares.
+	ProcessorMaximum            int64               `json:",omitempty"` // Specifies the portion of processor cycles that this container can use as a percentage times 100. Range is from 1 to 10000. A value of 0 results in no limit.
+	StorageIOPSMaximum          uint64              `json:",omitempty"` // Maximum Storage IOPS
+	StorageBandwidthMaximum     uint64              `json:",omitempty"` // Maximum Storage Bandwidth in bytes per second
+	StorageSandboxSize          uint64              `json:",omitempty"` // Size in bytes that the container system drive should be expanded to if smaller
+	MemoryMaximumInMB           int64               `json:",omitempty"` // Maximum memory available to the container in Megabytes
+	HostName                    string              `json:",omitempty"` // Hostname
+	MappedDirectories           []MappedDir         `json:",omitempty"` // List of mapped directories (volumes/mounts)
+	MappedPipes                 []MappedPipe        `json:",omitempty"` // List of mapped Windows named pipes
+	HvPartition                 bool                // True if it a Hyper-V Container
+	NetworkSharedContainerName  string              `json:",omitempty"` // Name (ID) of the container that we will share the network stack with.
+	EndpointList                []string            `json:",omitempty"` // List of networking endpoints to be attached to container
+	HvRuntime                   *HvRuntime          `json:",omitempty"` // Hyper-V container settings. Used by Hyper-V containers only. Format ImagePath=%root%\BaseLayerID\UtilityVM
+	Servicing                   bool                `json:",omitempty"` // True if this container is for servicing
+	AllowUnqualifiedDNSQuery    bool                `json:",omitempty"` // True to allow unqualified DNS name resolution
+	DNSSearchList               string              `json:",omitempty"` // Comma seperated list of DNS suffixes to use for name resolution
+	ContainerType               string              `json:",omitempty"` // "Linux" for Linux containers on Windows. Omitted otherwise.
+	TerminateOnLastHandleClosed bool                `json:",omitempty"` // Should HCS terminate the container once all handles have been closed
+	MappedVirtualDisks          []MappedVirtualDisk `json:",omitempty"` // Array of virtual disks to mount at start
+}
+
+type ComputeSystemQuery struct {
+	IDs    []string `json:"Ids,omitempty"`
+	Types  []string `json:",omitempty"`
+	Names  []string `json:",omitempty"`
+	Owners []string `json:",omitempty"`
+}
+
+// Container represents a created (but not necessarily running) container.
+type Container interface {
+	// Start synchronously starts the container.
+	Start() error
+
+	// Shutdown requests a container shutdown, but it may not actually be shutdown until Wait() succeeds.
+	Shutdown() error
+
+	// Terminate requests a container terminate, but it may not actually be terminated until Wait() succeeds.
+	Terminate() error
+
+	// Waits synchronously waits for the container to shutdown or terminate.
+	Wait() error
+
+	// WaitTimeout synchronously waits for the container to terminate or the duration to elapse. It
+	// returns false if timeout occurs.
+	WaitTimeout(time.Duration) error
+
+	// Pause pauses the execution of a container.
+	Pause() error
+
+	// Resume resumes the execution of a container.
+	Resume() error
+
+	// HasPendingUpdates returns true if the container has updates pending to install.
+	HasPendingUpdates() (bool, error)
+
+	// Statistics returns statistics for a container.
+	Statistics() (Statistics, error)
+
+	// ProcessList returns details for the processes in a container.
+	ProcessList() ([]ProcessListItem, error)
+
+	// MappedVirtualDisks returns virtual disks mapped to a utility VM, indexed by controller
+	MappedVirtualDisks() (map[int]MappedVirtualDiskController, error)
+
+	// CreateProcess launches a new process within the container.
+	CreateProcess(c *ProcessConfig) (Process, error)
+
+	// OpenProcess gets an interface to an existing process within the container.
+	OpenProcess(pid int) (Process, error)
+
+	// Close cleans up any state associated with the container but does not terminate or wait for it.
+	Close() error
+
+	// Modify the System
+	Modify(config *ResourceModificationRequestResponse) error
+}
+
+// Process represents a running or exited process.
+type Process interface {
+	// Pid returns the process ID of the process within the container.
+	Pid() int
+
+	// Kill signals the process to terminate but does not wait for it to finish terminating.
+	Kill() error
+
+	// Wait waits for the process to exit.
+	Wait() error
+
+	// WaitTimeout waits for the process to exit or the duration to elapse. It returns
+	// false if timeout occurs.
+	WaitTimeout(time.Duration) error
+
+	// ExitCode returns the exit code of the process. The process must have
+	// already terminated.
+	ExitCode() (int, error)
+
+	// ResizeConsole resizes the console of the process.
+	ResizeConsole(width, height uint16) error
+
+	// Stdio returns the stdin, stdout, and stderr pipes, respectively. Closing
+	// these pipes does not close the underlying pipes; it should be possible to
+	// call this multiple times to get multiple interfaces.
+	Stdio() (io.WriteCloser, io.ReadCloser, io.ReadCloser, error)
+
+	// CloseStdin closes the write side of the stdin pipe so that the process is
+	// notified on the read side that there is no more data in stdin.
+	CloseStdin() error
+
+	// Close cleans up any state associated with the process but does not kill
+	// or wait on it.
+	Close() error
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/layerexists.go b/vendor/github.com/Microsoft/hcsshim/layerexists.go
new file mode 100644
index 0000000000..fe46f404c3
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/layerexists.go
@@ -0,0 +1,30 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// LayerExists will return true if a layer with the given id exists and is known
+// to the system.
+func LayerExists(info DriverInfo, id string) (bool, error) {
+	title := "hcsshim::LayerExists "
+	logrus.Debugf(title+"Flavour %d ID %s", info.Flavour, id)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return false, err
+	}
+
+	// Call the procedure itself.
+	var exists uint32
+
+	err = layerExists(&infop, id, &exists)
+	if err != nil {
+		err = makeErrorf(err, title, "id=%s flavour=%d", id, info.Flavour)
+		logrus.Error(err)
+		return false, err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d id=%s exists=%d", info.Flavour, id, exists)
+	return exists != 0, nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/layerutils.go b/vendor/github.com/Microsoft/hcsshim/layerutils.go
new file mode 100644
index 0000000000..c0e5503773
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/layerutils.go
@@ -0,0 +1,111 @@
+package hcsshim
+
+// This file contains utility functions to support storage (graph) related
+// functionality.
+
+import (
+	"path/filepath"
+	"syscall"
+
+	"github.com/sirupsen/logrus"
+)
+
+/* To pass into syscall, we need a struct matching the following:
+enum GraphDriverType
+{
+    DiffDriver,
+    FilterDriver
+};
+
+struct DriverInfo {
+    GraphDriverType Flavour;
+    LPCWSTR HomeDir;
+};
+*/
+type DriverInfo struct {
+	Flavour int
+	HomeDir string
+}
+
+type driverInfo struct {
+	Flavour  int
+	HomeDirp *uint16
+}
+
+func convertDriverInfo(info DriverInfo) (driverInfo, error) {
+	homedirp, err := syscall.UTF16PtrFromString(info.HomeDir)
+	if err != nil {
+		logrus.Debugf("Failed conversion of home to pointer for driver info: %s", err.Error())
+		return driverInfo{}, err
+	}
+
+	return driverInfo{
+		Flavour:  info.Flavour,
+		HomeDirp: homedirp,
+	}, nil
+}
+
+/* To pass into syscall, we need a struct matching the following:
+typedef struct _WC_LAYER_DESCRIPTOR {
+
+    //
+    // The ID of the layer
+    //
+
+    GUID LayerId;
+
+    //
+    // Additional flags
+    //
+
+    union {
+        struct {
+            ULONG Reserved : 31;
+            ULONG Dirty : 1;    // Created from sandbox as a result of snapshot
+        };
+        ULONG Value;
+    } Flags;
+
+    //
+    // Path to the layer root directory, null-terminated
+    //
+
+    PCWSTR Path;
+
+} WC_LAYER_DESCRIPTOR, *PWC_LAYER_DESCRIPTOR;
+*/
+type WC_LAYER_DESCRIPTOR struct {
+	LayerId GUID
+	Flags   uint32
+	Pathp   *uint16
+}
+
+func layerPathsToDescriptors(parentLayerPaths []string) ([]WC_LAYER_DESCRIPTOR, error) {
+	// Array of descriptors that gets constructed.
+	var layers []WC_LAYER_DESCRIPTOR
+
+	for i := 0; i < len(parentLayerPaths); i++ {
+		// Create a layer descriptor, using the folder name
+		// as the source for a GUID LayerId
+		_, folderName := filepath.Split(parentLayerPaths[i])
+		g, err := NameToGuid(folderName)
+		if err != nil {
+			logrus.Debugf("Failed to convert name to guid %s", err)
+			return nil, err
+		}
+
+		p, err := syscall.UTF16PtrFromString(parentLayerPaths[i])
+		if err != nil {
+			logrus.Debugf("Failed conversion of parentLayerPath to pointer %s", err)
+			return nil, err
+		}
+
+		layers = append(layers, WC_LAYER_DESCRIPTOR{
+			LayerId: g,
+			Flags:   0,
+			Pathp:   p,
+		})
+	}
+
+	return layers, nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy.go b/vendor/github.com/Microsoft/hcsshim/legacy.go
new file mode 100644
index 0000000000..0b23b6c4d0
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/legacy.go
@@ -0,0 +1,827 @@
+package hcsshim
+
+import (
+	"bufio"
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"strings"
+	"syscall"
+
+	"github.com/Microsoft/go-winio"
+)
+
+var errorIterationCanceled = errors.New("")
+
+var mutatedUtilityVMFiles = map[string]bool{
+	`EFI\Microsoft\Boot\BCD`:      true,
+	`EFI\Microsoft\Boot\BCD.LOG`:  true,
+	`EFI\Microsoft\Boot\BCD.LOG1`: true,
+	`EFI\Microsoft\Boot\BCD.LOG2`: true,
+}
+
+const (
+	filesPath          = `Files`
+	hivesPath          = `Hives`
+	utilityVMPath      = `UtilityVM`
+	utilityVMFilesPath = `UtilityVM\Files`
+)
+
+func openFileOrDir(path string, mode uint32, createDisposition uint32) (file *os.File, err error) {
+	return winio.OpenForBackup(path, mode, syscall.FILE_SHARE_READ, createDisposition)
+}
+
+func makeLongAbsPath(path string) (string, error) {
+	if strings.HasPrefix(path, `\\?\`) || strings.HasPrefix(path, `\\.\`) {
+		return path, nil
+	}
+	if !filepath.IsAbs(path) {
+		absPath, err := filepath.Abs(path)
+		if err != nil {
+			return "", err
+		}
+		path = absPath
+	}
+	if strings.HasPrefix(path, `\\`) {
+		return `\\?\UNC\` + path[2:], nil
+	}
+	return `\\?\` + path, nil
+}
+
+func hasPathPrefix(p, prefix string) bool {
+	return strings.HasPrefix(p, prefix) && len(p) > len(prefix) && p[len(prefix)] == '\\'
+}
+
+type fileEntry struct {
+	path string
+	fi   os.FileInfo
+	err  error
+}
+
+type legacyLayerReader struct {
+	root         string
+	result       chan *fileEntry
+	proceed      chan bool
+	currentFile  *os.File
+	backupReader *winio.BackupFileReader
+}
+
+// newLegacyLayerReader returns a new LayerReader that can read the Windows
+// container layer transport format from disk.
+func newLegacyLayerReader(root string) *legacyLayerReader {
+	r := &legacyLayerReader{
+		root:    root,
+		result:  make(chan *fileEntry),
+		proceed: make(chan bool),
+	}
+	go r.walk()
+	return r
+}
+
+func readTombstones(path string) (map[string]([]string), error) {
+	tf, err := os.Open(filepath.Join(path, "tombstones.txt"))
+	if err != nil {
+		return nil, err
+	}
+	defer tf.Close()
+	s := bufio.NewScanner(tf)
+	if !s.Scan() || s.Text() != "\xef\xbb\xbfVersion 1.0" {
+		return nil, errors.New("Invalid tombstones file")
+	}
+
+	ts := make(map[string]([]string))
+	for s.Scan() {
+		t := filepath.Join(filesPath, s.Text()[1:]) // skip leading `\`
+		dir := filepath.Dir(t)
+		ts[dir] = append(ts[dir], t)
+	}
+	if err = s.Err(); err != nil {
+		return nil, err
+	}
+
+	return ts, nil
+}
+
+func (r *legacyLayerReader) walkUntilCancelled() error {
+	root, err := makeLongAbsPath(r.root)
+	if err != nil {
+		return err
+	}
+
+	r.root = root
+	ts, err := readTombstones(r.root)
+	if err != nil {
+		return err
+	}
+
+	err = filepath.Walk(r.root, func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		// Indirect fix for https://github.com/moby/moby/issues/32838#issuecomment-343610048.
+		// Handle failure from what may be a golang bug in the conversion of
+		// UTF16 to UTF8 in files which are left in the recycle bin. Os.Lstat
+		// which is called by filepath.Walk will fail when a filename contains
+		// unicode characters. Skip the recycle bin regardless which is goodness.
+		if strings.EqualFold(path, filepath.Join(r.root, `Files\$Recycle.Bin`)) && info.IsDir() {
+			return filepath.SkipDir
+		}
+
+		if path == r.root || path == filepath.Join(r.root, "tombstones.txt") || strings.HasSuffix(path, ".$wcidirs$") {
+			return nil
+		}
+
+		r.result <- &fileEntry{path, info, nil}
+		if !<-r.proceed {
+			return errorIterationCanceled
+		}
+
+		// List all the tombstones.
+		if info.IsDir() {
+			relPath, err := filepath.Rel(r.root, path)
+			if err != nil {
+				return err
+			}
+			if dts, ok := ts[relPath]; ok {
+				for _, t := range dts {
+					r.result <- &fileEntry{filepath.Join(r.root, t), nil, nil}
+					if !<-r.proceed {
+						return errorIterationCanceled
+					}
+				}
+			}
+		}
+		return nil
+	})
+	if err == errorIterationCanceled {
+		return nil
+	}
+	if err == nil {
+		return io.EOF
+	}
+	return err
+}
+
+func (r *legacyLayerReader) walk() {
+	defer close(r.result)
+	if !<-r.proceed {
+		return
+	}
+
+	err := r.walkUntilCancelled()
+	if err != nil {
+		for {
+			r.result <- &fileEntry{err: err}
+			if !<-r.proceed {
+				return
+			}
+		}
+	}
+}
+
+func (r *legacyLayerReader) reset() {
+	if r.backupReader != nil {
+		r.backupReader.Close()
+		r.backupReader = nil
+	}
+	if r.currentFile != nil {
+		r.currentFile.Close()
+		r.currentFile = nil
+	}
+}
+
+func findBackupStreamSize(r io.Reader) (int64, error) {
+	br := winio.NewBackupStreamReader(r)
+	for {
+		hdr, err := br.Next()
+		if err != nil {
+			if err == io.EOF {
+				err = nil
+			}
+			return 0, err
+		}
+		if hdr.Id == winio.BackupData {
+			return hdr.Size, nil
+		}
+	}
+}
+
+func (r *legacyLayerReader) Next() (path string, size int64, fileInfo *winio.FileBasicInfo, err error) {
+	r.reset()
+	r.proceed <- true
+	fe := <-r.result
+	if fe == nil {
+		err = errors.New("LegacyLayerReader closed")
+		return
+	}
+	if fe.err != nil {
+		err = fe.err
+		return
+	}
+
+	path, err = filepath.Rel(r.root, fe.path)
+	if err != nil {
+		return
+	}
+
+	if fe.fi == nil {
+		// This is a tombstone. Return a nil fileInfo.
+		return
+	}
+
+	if fe.fi.IsDir() && hasPathPrefix(path, filesPath) {
+		fe.path += ".$wcidirs$"
+	}
+
+	f, err := openFileOrDir(fe.path, syscall.GENERIC_READ, syscall.OPEN_EXISTING)
+	if err != nil {
+		return
+	}
+	defer func() {
+		if f != nil {
+			f.Close()
+		}
+	}()
+
+	fileInfo, err = winio.GetFileBasicInfo(f)
+	if err != nil {
+		return
+	}
+
+	if !hasPathPrefix(path, filesPath) {
+		size = fe.fi.Size()
+		r.backupReader = winio.NewBackupFileReader(f, false)
+		if path == hivesPath || path == filesPath {
+			// The Hives directory has a non-deterministic file time because of the
+			// nature of the import process. Use the times from System_Delta.
+			var g *os.File
+			g, err = os.Open(filepath.Join(r.root, hivesPath, `System_Delta`))
+			if err != nil {
+				return
+			}
+			attr := fileInfo.FileAttributes
+			fileInfo, err = winio.GetFileBasicInfo(g)
+			g.Close()
+			if err != nil {
+				return
+			}
+			fileInfo.FileAttributes = attr
+		}
+
+		// The creation time and access time get reset for files outside of the Files path.
+		fileInfo.CreationTime = fileInfo.LastWriteTime
+		fileInfo.LastAccessTime = fileInfo.LastWriteTime
+
+	} else {
+		// The file attributes are written before the backup stream.
+		var attr uint32
+		err = binary.Read(f, binary.LittleEndian, &attr)
+		if err != nil {
+			return
+		}
+		fileInfo.FileAttributes = uintptr(attr)
+		beginning := int64(4)
+
+		// Find the accurate file size.
+		if !fe.fi.IsDir() {
+			size, err = findBackupStreamSize(f)
+			if err != nil {
+				err = &os.PathError{Op: "findBackupStreamSize", Path: fe.path, Err: err}
+				return
+			}
+		}
+
+		// Return back to the beginning of the backup stream.
+		_, err = f.Seek(beginning, 0)
+		if err != nil {
+			return
+		}
+	}
+
+	r.currentFile = f
+	f = nil
+	return
+}
+
+func (r *legacyLayerReader) Read(b []byte) (int, error) {
+	if r.backupReader == nil {
+		if r.currentFile == nil {
+			return 0, io.EOF
+		}
+		return r.currentFile.Read(b)
+	}
+	return r.backupReader.Read(b)
+}
+
+func (r *legacyLayerReader) Seek(offset int64, whence int) (int64, error) {
+	if r.backupReader == nil {
+		if r.currentFile == nil {
+			return 0, errors.New("no current file")
+		}
+		return r.currentFile.Seek(offset, whence)
+	}
+	return 0, errors.New("seek not supported on this stream")
+}
+
+func (r *legacyLayerReader) Close() error {
+	r.proceed <- false
+	<-r.result
+	r.reset()
+	return nil
+}
+
+type pendingLink struct {
+	Path, Target string
+	TargetRoot   *os.File
+}
+
+type pendingDir struct {
+	Path string
+	Root *os.File
+}
+
+type legacyLayerWriter struct {
+	root            *os.File
+	destRoot        *os.File
+	parentRoots     []*os.File
+	currentFile     *os.File
+	currentFileName string
+	currentFileRoot *os.File
+	backupWriter    *winio.BackupFileWriter
+	Tombstones      []string
+	HasUtilityVM    bool
+	uvmDi           []dirInfo
+	addedFiles      map[string]bool
+	PendingLinks    []pendingLink
+	pendingDirs     []pendingDir
+	currentIsDir    bool
+}
+
+// newLegacyLayerWriter returns a LayerWriter that can write the contaler layer
+// transport format to disk.
+func newLegacyLayerWriter(root string, parentRoots []string, destRoot string) (w *legacyLayerWriter, err error) {
+	w = &legacyLayerWriter{
+		addedFiles: make(map[string]bool),
+	}
+	defer func() {
+		if err != nil {
+			w.CloseRoots()
+			w = nil
+		}
+	}()
+	w.root, err = openRoot(root)
+	if err != nil {
+		return
+	}
+	w.destRoot, err = openRoot(destRoot)
+	if err != nil {
+		return
+	}
+	for _, r := range parentRoots {
+		f, err := openRoot(r)
+		if err != nil {
+			return w, err
+		}
+		w.parentRoots = append(w.parentRoots, f)
+	}
+	return
+}
+
+func (w *legacyLayerWriter) CloseRoots() {
+	if w.root != nil {
+		w.root.Close()
+		w.root = nil
+	}
+	if w.destRoot != nil {
+		w.destRoot.Close()
+		w.destRoot = nil
+	}
+	for i := range w.parentRoots {
+		w.parentRoots[i].Close()
+	}
+	w.parentRoots = nil
+}
+
+func (w *legacyLayerWriter) initUtilityVM() error {
+	if !w.HasUtilityVM {
+		err := mkdirRelative(utilityVMPath, w.destRoot)
+		if err != nil {
+			return err
+		}
+		// Server 2016 does not support multiple layers for the utility VM, so
+		// clone the utility VM from the parent layer into this layer. Use hard
+		// links to avoid unnecessary copying, since most of the files are
+		// immutable.
+		err = cloneTree(w.parentRoots[0], w.destRoot, utilityVMFilesPath, mutatedUtilityVMFiles)
+		if err != nil {
+			return fmt.Errorf("cloning the parent utility VM image failed: %s", err)
+		}
+		w.HasUtilityVM = true
+	}
+	return nil
+}
+
+func (w *legacyLayerWriter) reset() error {
+	if w.currentIsDir {
+		r := w.currentFile
+		br := winio.NewBackupStreamReader(r)
+		// Seek to the beginning of the backup stream, skipping the fileattrs
+		if _, err := r.Seek(4, io.SeekStart); err != nil {
+			return err
+		}
+
+		for {
+			bhdr, err := br.Next()
+			if err == io.EOF {
+				// end of backupstream data
+				break
+			}
+			if err != nil {
+				return err
+			}
+			switch bhdr.Id {
+			case winio.BackupReparseData:
+				// The current file is a `.$wcidirs$` metadata file that
+				// describes a directory reparse point. Delete the placeholder
+				// directory to prevent future files being added into the
+				// destination of the reparse point during the ImportLayer call
+				if err := removeRelative(w.currentFileName, w.currentFileRoot); err != nil {
+					return err
+				}
+				w.pendingDirs = append(w.pendingDirs, pendingDir{Path: w.currentFileName, Root: w.currentFileRoot})
+			default:
+				// ignore all other stream types, as we only care about directory reparse points
+			}
+		}
+		w.currentIsDir = false
+	}
+	if w.backupWriter != nil {
+		w.backupWriter.Close()
+		w.backupWriter = nil
+	}
+	if w.currentFile != nil {
+		w.currentFile.Close()
+		w.currentFile = nil
+		w.currentFileName = ""
+		w.currentFileRoot = nil
+	}
+	return nil
+}
+
+// copyFileWithMetadata copies a file using the backup/restore APIs in order to preserve metadata
+func copyFileWithMetadata(srcRoot, destRoot *os.File, subPath string, isDir bool) (fileInfo *winio.FileBasicInfo, err error) {
+	src, err := openRelative(
+		subPath,
+		srcRoot,
+		syscall.GENERIC_READ|winio.ACCESS_SYSTEM_SECURITY,
+		syscall.FILE_SHARE_READ,
+		_FILE_OPEN,
+		_FILE_OPEN_REPARSE_POINT)
+	if err != nil {
+		return nil, err
+	}
+	defer src.Close()
+	srcr := winio.NewBackupFileReader(src, true)
+	defer srcr.Close()
+
+	fileInfo, err = winio.GetFileBasicInfo(src)
+	if err != nil {
+		return nil, err
+	}
+
+	extraFlags := uint32(0)
+	if isDir {
+		extraFlags |= _FILE_DIRECTORY_FILE
+	}
+	dest, err := openRelative(
+		subPath,
+		destRoot,
+		syscall.GENERIC_READ|syscall.GENERIC_WRITE|winio.WRITE_DAC|winio.WRITE_OWNER|winio.ACCESS_SYSTEM_SECURITY,
+		syscall.FILE_SHARE_READ,
+		_FILE_CREATE,
+		extraFlags)
+	if err != nil {
+		return nil, err
+	}
+	defer dest.Close()
+
+	err = winio.SetFileBasicInfo(dest, fileInfo)
+	if err != nil {
+		return nil, err
+	}
+
+	destw := winio.NewBackupFileWriter(dest, true)
+	defer func() {
+		cerr := destw.Close()
+		if err == nil {
+			err = cerr
+		}
+	}()
+
+	_, err = io.Copy(destw, srcr)
+	if err != nil {
+		return nil, err
+	}
+
+	return fileInfo, nil
+}
+
+// cloneTree clones a directory tree using hard links. It skips hard links for
+// the file names in the provided map and just copies those files.
+func cloneTree(srcRoot *os.File, destRoot *os.File, subPath string, mutatedFiles map[string]bool) error {
+	var di []dirInfo
+	err := ensureNotReparsePointRelative(subPath, srcRoot)
+	if err != nil {
+		return err
+	}
+	err = filepath.Walk(filepath.Join(srcRoot.Name(), subPath), func(srcFilePath string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		relPath, err := filepath.Rel(srcRoot.Name(), srcFilePath)
+		if err != nil {
+			return err
+		}
+
+		fileAttributes := info.Sys().(*syscall.Win32FileAttributeData).FileAttributes
+		// Directories, reparse points, and files that will be mutated during
+		// utility VM import must be copied. All other files can be hard linked.
+		isReparsePoint := fileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT != 0
+		// In go1.9, FileInfo.IsDir() returns false if the directory is also a symlink.
+		// See: https://github.com/golang/go/commit/1989921aef60c83e6f9127a8448fb5ede10e9acc
+		// Fixes the problem by checking syscall.FILE_ATTRIBUTE_DIRECTORY directly
+		isDir := fileAttributes&syscall.FILE_ATTRIBUTE_DIRECTORY != 0
+
+		if isDir || isReparsePoint || mutatedFiles[relPath] {
+			fi, err := copyFileWithMetadata(srcRoot, destRoot, relPath, isDir)
+			if err != nil {
+				return err
+			}
+			if isDir && !isReparsePoint {
+				di = append(di, dirInfo{path: relPath, fileInfo: *fi})
+			}
+		} else {
+			err = linkRelative(relPath, srcRoot, relPath, destRoot)
+			if err != nil {
+				return err
+			}
+		}
+
+		// Don't recurse on reparse points in go1.8 and older. Filepath.Walk
+		// handles this in go1.9 and newer.
+		if isDir && isReparsePoint && shouldSkipDirectoryReparse {
+			return filepath.SkipDir
+		}
+
+		return nil
+	})
+	if err != nil {
+		return err
+	}
+
+	return reapplyDirectoryTimes(destRoot, di)
+}
+
+func (w *legacyLayerWriter) Add(name string, fileInfo *winio.FileBasicInfo) error {
+	if err := w.reset(); err != nil {
+		return err
+	}
+
+	if name == utilityVMPath {
+		return w.initUtilityVM()
+	}
+
+	name = filepath.Clean(name)
+	if hasPathPrefix(name, utilityVMPath) {
+		if !w.HasUtilityVM {
+			return errors.New("missing UtilityVM directory")
+		}
+		if !hasPathPrefix(name, utilityVMFilesPath) && name != utilityVMFilesPath {
+			return errors.New("invalid UtilityVM layer")
+		}
+		createDisposition := uint32(_FILE_OPEN)
+		if (fileInfo.FileAttributes & syscall.FILE_ATTRIBUTE_DIRECTORY) != 0 {
+			st, err := lstatRelative(name, w.destRoot)
+			if err != nil && !os.IsNotExist(err) {
+				return err
+			}
+			if st != nil {
+				// Delete the existing file/directory if it is not the same type as this directory.
+				existingAttr := st.Sys().(*syscall.Win32FileAttributeData).FileAttributes
+				if (uint32(fileInfo.FileAttributes)^existingAttr)&(syscall.FILE_ATTRIBUTE_DIRECTORY|syscall.FILE_ATTRIBUTE_REPARSE_POINT) != 0 {
+					if err = removeAllRelative(name, w.destRoot); err != nil {
+						return err
+					}
+					st = nil
+				}
+			}
+			if st == nil {
+				if err = mkdirRelative(name, w.destRoot); err != nil {
+					return err
+				}
+			}
+			if fileInfo.FileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT == 0 {
+				w.uvmDi = append(w.uvmDi, dirInfo{path: name, fileInfo: *fileInfo})
+			}
+		} else {
+			// Overwrite any existing hard link.
+			err := removeRelative(name, w.destRoot)
+			if err != nil && !os.IsNotExist(err) {
+				return err
+			}
+			createDisposition = _FILE_CREATE
+		}
+
+		f, err := openRelative(
+			name,
+			w.destRoot,
+			syscall.GENERIC_READ|syscall.GENERIC_WRITE|winio.WRITE_DAC|winio.WRITE_OWNER|winio.ACCESS_SYSTEM_SECURITY,
+			syscall.FILE_SHARE_READ,
+			createDisposition,
+			_FILE_OPEN_REPARSE_POINT,
+		)
+		if err != nil {
+			return err
+		}
+		defer func() {
+			if f != nil {
+				f.Close()
+				removeRelative(name, w.destRoot)
+			}
+		}()
+
+		err = winio.SetFileBasicInfo(f, fileInfo)
+		if err != nil {
+			return err
+		}
+
+		w.backupWriter = winio.NewBackupFileWriter(f, true)
+		w.currentFile = f
+		w.currentFileName = name
+		w.currentFileRoot = w.destRoot
+		w.addedFiles[name] = true
+		f = nil
+		return nil
+	}
+
+	fname := name
+	if (fileInfo.FileAttributes & syscall.FILE_ATTRIBUTE_DIRECTORY) != 0 {
+		err := mkdirRelative(name, w.root)
+		if err != nil {
+			return err
+		}
+		fname += ".$wcidirs$"
+		w.currentIsDir = true
+	}
+
+	f, err := openRelative(fname, w.root, syscall.GENERIC_READ|syscall.GENERIC_WRITE, syscall.FILE_SHARE_READ, _FILE_CREATE, 0)
+	if err != nil {
+		return err
+	}
+	defer func() {
+		if f != nil {
+			f.Close()
+			removeRelative(fname, w.root)
+		}
+	}()
+
+	strippedFi := *fileInfo
+	strippedFi.FileAttributes = 0
+	err = winio.SetFileBasicInfo(f, &strippedFi)
+	if err != nil {
+		return err
+	}
+
+	if hasPathPrefix(name, hivesPath) {
+		w.backupWriter = winio.NewBackupFileWriter(f, false)
+	} else {
+		// The file attributes are written before the stream.
+		err = binary.Write(f, binary.LittleEndian, uint32(fileInfo.FileAttributes))
+		if err != nil {
+			return err
+		}
+	}
+
+	w.currentFile = f
+	w.currentFileName = name
+	w.currentFileRoot = w.root
+	w.addedFiles[name] = true
+	f = nil
+	return nil
+}
+
+func (w *legacyLayerWriter) AddLink(name string, target string) error {
+	if err := w.reset(); err != nil {
+		return err
+	}
+
+	target = filepath.Clean(target)
+	var roots []*os.File
+	if hasPathPrefix(target, filesPath) {
+		// Look for cross-layer hard link targets in the parent layers, since
+		// nothing is in the destination path yet.
+		roots = w.parentRoots
+	} else if hasPathPrefix(target, utilityVMFilesPath) {
+		// Since the utility VM is fully cloned into the destination path
+		// already, look for cross-layer hard link targets directly in the
+		// destination path.
+		roots = []*os.File{w.destRoot}
+	}
+
+	if roots == nil || (!hasPathPrefix(name, filesPath) && !hasPathPrefix(name, utilityVMFilesPath)) {
+		return errors.New("invalid hard link in layer")
+	}
+
+	// Find to try the target of the link in a previously added file. If that
+	// fails, search in parent layers.
+	var selectedRoot *os.File
+	if _, ok := w.addedFiles[target]; ok {
+		selectedRoot = w.destRoot
+	} else {
+		for _, r := range roots {
+			if _, err := lstatRelative(target, r); err != nil {
+				if !os.IsNotExist(err) {
+					return err
+				}
+			} else {
+				selectedRoot = r
+				break
+			}
+		}
+		if selectedRoot == nil {
+			return fmt.Errorf("failed to find link target for '%s' -> '%s'", name, target)
+		}
+	}
+
+	// The link can't be written until after the ImportLayer call.
+	w.PendingLinks = append(w.PendingLinks, pendingLink{
+		Path:       name,
+		Target:     target,
+		TargetRoot: selectedRoot,
+	})
+	w.addedFiles[name] = true
+	return nil
+}
+
+func (w *legacyLayerWriter) Remove(name string) error {
+	name = filepath.Clean(name)
+	if hasPathPrefix(name, filesPath) {
+		w.Tombstones = append(w.Tombstones, name)
+	} else if hasPathPrefix(name, utilityVMFilesPath) {
+		err := w.initUtilityVM()
+		if err != nil {
+			return err
+		}
+		// Make sure the path exists; os.RemoveAll will not fail if the file is
+		// already gone, and this needs to be a fatal error for diagnostics
+		// purposes.
+		if _, err := lstatRelative(name, w.destRoot); err != nil {
+			return err
+		}
+		err = removeAllRelative(name, w.destRoot)
+		if err != nil {
+			return err
+		}
+	} else {
+		return fmt.Errorf("invalid tombstone %s", name)
+	}
+
+	return nil
+}
+
+func (w *legacyLayerWriter) Write(b []byte) (int, error) {
+	if w.backupWriter == nil {
+		if w.currentFile == nil {
+			return 0, errors.New("closed")
+		}
+		return w.currentFile.Write(b)
+	}
+	return w.backupWriter.Write(b)
+}
+
+func (w *legacyLayerWriter) Close() error {
+	if err := w.reset(); err != nil {
+		return err
+	}
+	if err := removeRelative("tombstones.txt", w.root); err != nil && !os.IsNotExist(err) {
+		return err
+	}
+	for _, pd := range w.pendingDirs {
+		err := mkdirRelative(pd.Path, pd.Root)
+		if err != nil {
+			return err
+		}
+	}
+	if w.HasUtilityVM {
+		err := reapplyDirectoryTimes(w.destRoot, w.uvmDi)
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy18.go b/vendor/github.com/Microsoft/hcsshim/legacy18.go
new file mode 100644
index 0000000000..0f593e8aba
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/legacy18.go
@@ -0,0 +1,7 @@
+// +build !go1.9
+
+package hcsshim
+
+// Due to a bug in go1.8 and before, directory reparse points need to be skipped
+// during filepath.Walk. This is fixed in go1.9
+var shouldSkipDirectoryReparse = true
diff --git a/vendor/github.com/Microsoft/hcsshim/legacy19.go b/vendor/github.com/Microsoft/hcsshim/legacy19.go
new file mode 100644
index 0000000000..fb0b7644fb
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/legacy19.go
@@ -0,0 +1,7 @@
+// +build go1.9
+
+package hcsshim
+
+// Due to a bug in go1.8 and before, directory reparse points need to be skipped
+// during filepath.Walk. This is fixed in go1.9
+var shouldSkipDirectoryReparse = false
diff --git a/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go b/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
new file mode 100644
index 0000000000..82393ca367
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/mksyscall_windows.go
@@ -0,0 +1,934 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+/*
+mksyscall_windows generates windows system call bodies
+
+It parses all files specified on command line containing function
+prototypes (like syscall_windows.go) and prints system call bodies
+to standard output.
+
+The prototypes are marked by lines beginning with "//sys" and read
+like func declarations if //sys is replaced by func, but:
+
+* The parameter lists must give a name for each argument. This
+  includes return parameters.
+
+* The parameter lists must give a type for each argument:
+  the (x, y, z int) shorthand is not allowed.
+
+* If the return parameter is an error number, it must be named err.
+
+* If go func name needs to be different from it's winapi dll name,
+  the winapi name could be specified at the end, after "=" sign, like
+  //sys LoadLibrary(libname string) (handle uint32, err error) = LoadLibraryA
+
+* Each function that returns err needs to supply a condition, that
+  return value of winapi will be tested against to detect failure.
+  This would set err to windows "last-error", otherwise it will be nil.
+  The value can be provided at end of //sys declaration, like
+  //sys LoadLibrary(libname string) (handle uint32, err error) [failretval==-1] = LoadLibraryA
+  and is [failretval==0] by default.
+
+Usage:
+	mksyscall_windows [flags] [path ...]
+
+The flags are:
+	-output
+		Specify output file name (outputs to console if blank).
+	-trace
+		Generate print statement after every syscall.
+*/
+package main
+
+import (
+	"bufio"
+	"bytes"
+	"errors"
+	"flag"
+	"fmt"
+	"go/format"
+	"go/parser"
+	"go/token"
+	"io"
+	"io/ioutil"
+	"log"
+	"os"
+	"path/filepath"
+	"runtime"
+	"sort"
+	"strconv"
+	"strings"
+	"text/template"
+)
+
+var (
+	filename       = flag.String("output", "", "output file name (standard output if omitted)")
+	printTraceFlag = flag.Bool("trace", false, "generate print statement after every syscall")
+	systemDLL      = flag.Bool("systemdll", true, "whether all DLLs should be loaded from the Windows system directory")
+)
+
+func trim(s string) string {
+	return strings.Trim(s, " \t")
+}
+
+var packageName string
+
+func packagename() string {
+	return packageName
+}
+
+func syscalldot() string {
+	if packageName == "syscall" {
+		return ""
+	}
+	return "syscall."
+}
+
+// Param is function parameter
+type Param struct {
+	Name      string
+	Type      string
+	fn        *Fn
+	tmpVarIdx int
+}
+
+// tmpVar returns temp variable name that will be used to represent p during syscall.
+func (p *Param) tmpVar() string {
+	if p.tmpVarIdx < 0 {
+		p.tmpVarIdx = p.fn.curTmpVarIdx
+		p.fn.curTmpVarIdx++
+	}
+	return fmt.Sprintf("_p%d", p.tmpVarIdx)
+}
+
+// BoolTmpVarCode returns source code for bool temp variable.
+func (p *Param) BoolTmpVarCode() string {
+	const code = `var %s uint32
+	if %s {
+		%s = 1
+	} else {
+		%s = 0
+	}`
+	tmp := p.tmpVar()
+	return fmt.Sprintf(code, tmp, p.Name, tmp, tmp)
+}
+
+// SliceTmpVarCode returns source code for slice temp variable.
+func (p *Param) SliceTmpVarCode() string {
+	const code = `var %s *%s
+	if len(%s) > 0 {
+		%s = &%s[0]
+	}`
+	tmp := p.tmpVar()
+	return fmt.Sprintf(code, tmp, p.Type[2:], p.Name, tmp, p.Name)
+}
+
+// StringTmpVarCode returns source code for string temp variable.
+func (p *Param) StringTmpVarCode() string {
+	errvar := p.fn.Rets.ErrorVarName()
+	if errvar == "" {
+		errvar = "_"
+	}
+	tmp := p.tmpVar()
+	const code = `var %s %s
+	%s, %s = %s(%s)`
+	s := fmt.Sprintf(code, tmp, p.fn.StrconvType(), tmp, errvar, p.fn.StrconvFunc(), p.Name)
+	if errvar == "-" {
+		return s
+	}
+	const morecode = `
+	if %s != nil {
+		return
+	}`
+	return s + fmt.Sprintf(morecode, errvar)
+}
+
+// TmpVarCode returns source code for temp variable.
+func (p *Param) TmpVarCode() string {
+	switch {
+	case p.Type == "bool":
+		return p.BoolTmpVarCode()
+	case strings.HasPrefix(p.Type, "[]"):
+		return p.SliceTmpVarCode()
+	default:
+		return ""
+	}
+}
+
+// TmpVarHelperCode returns source code for helper's temp variable.
+func (p *Param) TmpVarHelperCode() string {
+	if p.Type != "string" {
+		return ""
+	}
+	return p.StringTmpVarCode()
+}
+
+// SyscallArgList returns source code fragments representing p parameter
+// in syscall. Slices are translated into 2 syscall parameters: pointer to
+// the first element and length.
+func (p *Param) SyscallArgList() []string {
+	t := p.HelperType()
+	var s string
+	switch {
+	case t[0] == '*':
+		s = fmt.Sprintf("unsafe.Pointer(%s)", p.Name)
+	case t == "bool":
+		s = p.tmpVar()
+	case strings.HasPrefix(t, "[]"):
+		return []string{
+			fmt.Sprintf("uintptr(unsafe.Pointer(%s))", p.tmpVar()),
+			fmt.Sprintf("uintptr(len(%s))", p.Name),
+		}
+	default:
+		s = p.Name
+	}
+	return []string{fmt.Sprintf("uintptr(%s)", s)}
+}
+
+// IsError determines if p parameter is used to return error.
+func (p *Param) IsError() bool {
+	return p.Name == "err" && p.Type == "error"
+}
+
+// HelperType returns type of parameter p used in helper function.
+func (p *Param) HelperType() string {
+	if p.Type == "string" {
+		return p.fn.StrconvType()
+	}
+	return p.Type
+}
+
+// join concatenates parameters ps into a string with sep separator.
+// Each parameter is converted into string by applying fn to it
+// before conversion.
+func join(ps []*Param, fn func(*Param) string, sep string) string {
+	if len(ps) == 0 {
+		return ""
+	}
+	a := make([]string, 0)
+	for _, p := range ps {
+		a = append(a, fn(p))
+	}
+	return strings.Join(a, sep)
+}
+
+// Rets describes function return parameters.
+type Rets struct {
+	Name         string
+	Type         string
+	ReturnsError bool
+	FailCond     string
+}
+
+// ErrorVarName returns error variable name for r.
+func (r *Rets) ErrorVarName() string {
+	if r.ReturnsError {
+		return "err"
+	}
+	if r.Type == "error" {
+		return r.Name
+	}
+	return ""
+}
+
+// ToParams converts r into slice of *Param.
+func (r *Rets) ToParams() []*Param {
+	ps := make([]*Param, 0)
+	if len(r.Name) > 0 {
+		ps = append(ps, &Param{Name: r.Name, Type: r.Type})
+	}
+	if r.ReturnsError {
+		ps = append(ps, &Param{Name: "err", Type: "error"})
+	}
+	return ps
+}
+
+// List returns source code of syscall return parameters.
+func (r *Rets) List() string {
+	s := join(r.ToParams(), func(p *Param) string { return p.Name + " " + p.Type }, ", ")
+	if len(s) > 0 {
+		s = "(" + s + ")"
+	}
+	return s
+}
+
+// PrintList returns source code of trace printing part correspondent
+// to syscall return values.
+func (r *Rets) PrintList() string {
+	return join(r.ToParams(), func(p *Param) string { return fmt.Sprintf(`"%s=", %s, `, p.Name, p.Name) }, `", ", `)
+}
+
+// SetReturnValuesCode returns source code that accepts syscall return values.
+func (r *Rets) SetReturnValuesCode() string {
+	if r.Name == "" && !r.ReturnsError {
+		return ""
+	}
+	retvar := "r0"
+	if r.Name == "" {
+		retvar = "r1"
+	}
+	errvar := "_"
+	if r.ReturnsError {
+		errvar = "e1"
+	}
+	return fmt.Sprintf("%s, _, %s := ", retvar, errvar)
+}
+
+func (r *Rets) useLongHandleErrorCode(retvar string) string {
+	const code = `if %s {
+		if e1 != 0 {
+			err = errnoErr(e1)
+		} else {
+			err = %sEINVAL
+		}
+	}`
+	cond := retvar + " == 0"
+	if r.FailCond != "" {
+		cond = strings.Replace(r.FailCond, "failretval", retvar, 1)
+	}
+	return fmt.Sprintf(code, cond, syscalldot())
+}
+
+// SetErrorCode returns source code that sets return parameters.
+func (r *Rets) SetErrorCode() string {
+	const code = `if r0 != 0 {
+		%s = %sErrno(r0)
+	}`
+	const hrCode = `if int32(r0) < 0 {
+		%s = %sErrno(win32FromHresult(r0))
+	}`
+	if r.Name == "" && !r.ReturnsError {
+		return ""
+	}
+	if r.Name == "" {
+		return r.useLongHandleErrorCode("r1")
+	}
+	if r.Type == "error" {
+		if r.Name == "hr" {
+			return fmt.Sprintf(hrCode, r.Name, syscalldot())
+		} else {
+			return fmt.Sprintf(code, r.Name, syscalldot())
+		}
+	}
+	s := ""
+	switch {
+	case r.Type[0] == '*':
+		s = fmt.Sprintf("%s = (%s)(unsafe.Pointer(r0))", r.Name, r.Type)
+	case r.Type == "bool":
+		s = fmt.Sprintf("%s = r0 != 0", r.Name)
+	default:
+		s = fmt.Sprintf("%s = %s(r0)", r.Name, r.Type)
+	}
+	if !r.ReturnsError {
+		return s
+	}
+	return s + "\n\t" + r.useLongHandleErrorCode(r.Name)
+}
+
+// Fn describes syscall function.
+type Fn struct {
+	Name        string
+	Params      []*Param
+	Rets        *Rets
+	PrintTrace  bool
+	confirmproc bool
+	dllname     string
+	dllfuncname string
+	src         string
+	// TODO: get rid of this field and just use parameter index instead
+	curTmpVarIdx int // insure tmp variables have uniq names
+}
+
+// extractParams parses s to extract function parameters.
+func extractParams(s string, f *Fn) ([]*Param, error) {
+	s = trim(s)
+	if s == "" {
+		return nil, nil
+	}
+	a := strings.Split(s, ",")
+	ps := make([]*Param, len(a))
+	for i := range ps {
+		s2 := trim(a[i])
+		b := strings.Split(s2, " ")
+		if len(b) != 2 {
+			b = strings.Split(s2, "\t")
+			if len(b) != 2 {
+				return nil, errors.New("Could not extract function parameter from \"" + s2 + "\"")
+			}
+		}
+		ps[i] = &Param{
+			Name:      trim(b[0]),
+			Type:      trim(b[1]),
+			fn:        f,
+			tmpVarIdx: -1,
+		}
+	}
+	return ps, nil
+}
+
+// extractSection extracts text out of string s starting after start
+// and ending just before end. found return value will indicate success,
+// and prefix, body and suffix will contain correspondent parts of string s.
+func extractSection(s string, start, end rune) (prefix, body, suffix string, found bool) {
+	s = trim(s)
+	if strings.HasPrefix(s, string(start)) {
+		// no prefix
+		body = s[1:]
+	} else {
+		a := strings.SplitN(s, string(start), 2)
+		if len(a) != 2 {
+			return "", "", s, false
+		}
+		prefix = a[0]
+		body = a[1]
+	}
+	a := strings.SplitN(body, string(end), 2)
+	if len(a) != 2 {
+		return "", "", "", false
+	}
+	return prefix, a[0], a[1], true
+}
+
+// newFn parses string s and return created function Fn.
+func newFn(s string) (*Fn, error) {
+	s = trim(s)
+	f := &Fn{
+		Rets:       &Rets{},
+		src:        s,
+		PrintTrace: *printTraceFlag,
+	}
+	// function name and args
+	prefix, body, s, found := extractSection(s, '(', ')')
+	if !found || prefix == "" {
+		return nil, errors.New("Could not extract function name and parameters from \"" + f.src + "\"")
+	}
+	f.Name = prefix
+	var err error
+	f.Params, err = extractParams(body, f)
+	if err != nil {
+		return nil, err
+	}
+	// return values
+	_, body, s, found = extractSection(s, '(', ')')
+	if found {
+		r, err := extractParams(body, f)
+		if err != nil {
+			return nil, err
+		}
+		switch len(r) {
+		case 0:
+		case 1:
+			if r[0].IsError() {
+				f.Rets.ReturnsError = true
+			} else {
+				f.Rets.Name = r[0].Name
+				f.Rets.Type = r[0].Type
+			}
+		case 2:
+			if !r[1].IsError() {
+				return nil, errors.New("Only last windows error is allowed as second return value in \"" + f.src + "\"")
+			}
+			f.Rets.ReturnsError = true
+			f.Rets.Name = r[0].Name
+			f.Rets.Type = r[0].Type
+		default:
+			return nil, errors.New("Too many return values in \"" + f.src + "\"")
+		}
+	}
+	// fail condition
+	_, body, s, found = extractSection(s, '[', ']')
+	if found {
+		f.Rets.FailCond = body
+	}
+	// dll and dll function names
+	s = trim(s)
+	if s == "" {
+		return f, nil
+	}
+	if !strings.HasPrefix(s, "=") {
+		return nil, errors.New("Could not extract dll name from \"" + f.src + "\"")
+	}
+	s = trim(s[1:])
+	a := strings.Split(s, ".")
+	switch len(a) {
+	case 1:
+		f.dllfuncname = a[0]
+	case 2:
+		f.dllname = a[0]
+		f.dllfuncname = a[1]
+	default:
+		return nil, errors.New("Could not extract dll name from \"" + f.src + "\"")
+	}
+	if f.dllfuncname[len(f.dllfuncname)-1] == '?' {
+		f.confirmproc = true
+		f.dllfuncname = f.dllfuncname[0 : len(f.dllfuncname)-1]
+	}
+	return f, nil
+}
+
+// DLLName returns DLL name for function f.
+func (f *Fn) DLLName() string {
+	if f.dllname == "" {
+		return "kernel32"
+	}
+	return f.dllname
+}
+
+// DLLName returns DLL function name for function f.
+func (f *Fn) DLLFuncName() string {
+	if f.dllfuncname == "" {
+		return f.Name
+	}
+	return f.dllfuncname
+}
+
+func (f *Fn) ConfirmProc() bool {
+	return f.confirmproc
+}
+
+// ParamList returns source code for function f parameters.
+func (f *Fn) ParamList() string {
+	return join(f.Params, func(p *Param) string { return p.Name + " " + p.Type }, ", ")
+}
+
+// HelperParamList returns source code for helper function f parameters.
+func (f *Fn) HelperParamList() string {
+	return join(f.Params, func(p *Param) string { return p.Name + " " + p.HelperType() }, ", ")
+}
+
+// ParamPrintList returns source code of trace printing part correspondent
+// to syscall input parameters.
+func (f *Fn) ParamPrintList() string {
+	return join(f.Params, func(p *Param) string { return fmt.Sprintf(`"%s=", %s, `, p.Name, p.Name) }, `", ", `)
+}
+
+// ParamCount return number of syscall parameters for function f.
+func (f *Fn) ParamCount() int {
+	n := 0
+	for _, p := range f.Params {
+		n += len(p.SyscallArgList())
+	}
+	return n
+}
+
+// SyscallParamCount determines which version of Syscall/Syscall6/Syscall9/...
+// to use. It returns parameter count for correspondent SyscallX function.
+func (f *Fn) SyscallParamCount() int {
+	n := f.ParamCount()
+	switch {
+	case n <= 3:
+		return 3
+	case n <= 6:
+		return 6
+	case n <= 9:
+		return 9
+	case n <= 12:
+		return 12
+	case n <= 15:
+		return 15
+	default:
+		panic("too many arguments to system call")
+	}
+}
+
+// Syscall determines which SyscallX function to use for function f.
+func (f *Fn) Syscall() string {
+	c := f.SyscallParamCount()
+	if c == 3 {
+		return syscalldot() + "Syscall"
+	}
+	return syscalldot() + "Syscall" + strconv.Itoa(c)
+}
+
+// SyscallParamList returns source code for SyscallX parameters for function f.
+func (f *Fn) SyscallParamList() string {
+	a := make([]string, 0)
+	for _, p := range f.Params {
+		a = append(a, p.SyscallArgList()...)
+	}
+	for len(a) < f.SyscallParamCount() {
+		a = append(a, "0")
+	}
+	return strings.Join(a, ", ")
+}
+
+// HelperCallParamList returns source code of call into function f helper.
+func (f *Fn) HelperCallParamList() string {
+	a := make([]string, 0, len(f.Params))
+	for _, p := range f.Params {
+		s := p.Name
+		if p.Type == "string" {
+			s = p.tmpVar()
+		}
+		a = append(a, s)
+	}
+	return strings.Join(a, ", ")
+}
+
+// IsUTF16 is true, if f is W (utf16) function. It is false
+// for all A (ascii) functions.
+func (_ *Fn) IsUTF16() bool {
+	return true
+}
+
+// StrconvFunc returns name of Go string to OS string function for f.
+func (f *Fn) StrconvFunc() string {
+	if f.IsUTF16() {
+		return syscalldot() + "UTF16PtrFromString"
+	}
+	return syscalldot() + "BytePtrFromString"
+}
+
+// StrconvType returns Go type name used for OS string for f.
+func (f *Fn) StrconvType() string {
+	if f.IsUTF16() {
+		return "*uint16"
+	}
+	return "*byte"
+}
+
+// HasStringParam is true, if f has at least one string parameter.
+// Otherwise it is false.
+func (f *Fn) HasStringParam() bool {
+	for _, p := range f.Params {
+		if p.Type == "string" {
+			return true
+		}
+	}
+	return false
+}
+
+var uniqDllFuncName = make(map[string]bool)
+
+// IsNotDuplicate is true if f is not a duplicated function
+func (f *Fn) IsNotDuplicate() bool {
+	funcName := f.DLLFuncName()
+	if uniqDllFuncName[funcName] == false {
+		uniqDllFuncName[funcName] = true
+		return true
+	}
+	return false
+}
+
+// HelperName returns name of function f helper.
+func (f *Fn) HelperName() string {
+	if !f.HasStringParam() {
+		return f.Name
+	}
+	return "_" + f.Name
+}
+
+// Source files and functions.
+type Source struct {
+	Funcs           []*Fn
+	Files           []string
+	StdLibImports   []string
+	ExternalImports []string
+}
+
+func (src *Source) Import(pkg string) {
+	src.StdLibImports = append(src.StdLibImports, pkg)
+	sort.Strings(src.StdLibImports)
+}
+
+func (src *Source) ExternalImport(pkg string) {
+	src.ExternalImports = append(src.ExternalImports, pkg)
+	sort.Strings(src.ExternalImports)
+}
+
+// ParseFiles parses files listed in fs and extracts all syscall
+// functions listed in  sys comments. It returns source files
+// and functions collection *Source if successful.
+func ParseFiles(fs []string) (*Source, error) {
+	src := &Source{
+		Funcs: make([]*Fn, 0),
+		Files: make([]string, 0),
+		StdLibImports: []string{
+			"unsafe",
+		},
+		ExternalImports: make([]string, 0),
+	}
+	for _, file := range fs {
+		if err := src.ParseFile(file); err != nil {
+			return nil, err
+		}
+	}
+	return src, nil
+}
+
+// DLLs return dll names for a source set src.
+func (src *Source) DLLs() []string {
+	uniq := make(map[string]bool)
+	r := make([]string, 0)
+	for _, f := range src.Funcs {
+		name := f.DLLName()
+		if _, found := uniq[name]; !found {
+			uniq[name] = true
+			r = append(r, name)
+		}
+	}
+	return r
+}
+
+// ParseFile adds additional file path to a source set src.
+func (src *Source) ParseFile(path string) error {
+	file, err := os.Open(path)
+	if err != nil {
+		return err
+	}
+	defer file.Close()
+
+	s := bufio.NewScanner(file)
+	for s.Scan() {
+		t := trim(s.Text())
+		if len(t) < 7 {
+			continue
+		}
+		if !strings.HasPrefix(t, "//sys") {
+			continue
+		}
+		t = t[5:]
+		if !(t[0] == ' ' || t[0] == '\t') {
+			continue
+		}
+		f, err := newFn(t[1:])
+		if err != nil {
+			return err
+		}
+		src.Funcs = append(src.Funcs, f)
+	}
+	if err := s.Err(); err != nil {
+		return err
+	}
+	src.Files = append(src.Files, path)
+
+	// get package name
+	fset := token.NewFileSet()
+	_, err = file.Seek(0, 0)
+	if err != nil {
+		return err
+	}
+	pkg, err := parser.ParseFile(fset, "", file, parser.PackageClauseOnly)
+	if err != nil {
+		return err
+	}
+	packageName = pkg.Name.Name
+
+	return nil
+}
+
+// IsStdRepo returns true if src is part of standard library.
+func (src *Source) IsStdRepo() (bool, error) {
+	if len(src.Files) == 0 {
+		return false, errors.New("no input files provided")
+	}
+	abspath, err := filepath.Abs(src.Files[0])
+	if err != nil {
+		return false, err
+	}
+	goroot := runtime.GOROOT()
+	if runtime.GOOS == "windows" {
+		abspath = strings.ToLower(abspath)
+		goroot = strings.ToLower(goroot)
+	}
+	sep := string(os.PathSeparator)
+	if !strings.HasSuffix(goroot, sep) {
+		goroot += sep
+	}
+	return strings.HasPrefix(abspath, goroot), nil
+}
+
+// Generate output source file from a source set src.
+func (src *Source) Generate(w io.Writer) error {
+	const (
+		pkgStd         = iota // any package in std library
+		pkgXSysWindows        // x/sys/windows package
+		pkgOther
+	)
+	isStdRepo, err := src.IsStdRepo()
+	if err != nil {
+		return err
+	}
+	var pkgtype int
+	switch {
+	case isStdRepo:
+		pkgtype = pkgStd
+	case packageName == "windows":
+		// TODO: this needs better logic than just using package name
+		pkgtype = pkgXSysWindows
+	default:
+		pkgtype = pkgOther
+	}
+	if *systemDLL {
+		switch pkgtype {
+		case pkgStd:
+			src.Import("internal/syscall/windows/sysdll")
+		case pkgXSysWindows:
+		default:
+			src.ExternalImport("golang.org/x/sys/windows")
+		}
+	}
+	src.ExternalImport("github.com/Microsoft/go-winio")
+	if packageName != "syscall" {
+		src.Import("syscall")
+	}
+	funcMap := template.FuncMap{
+		"packagename": packagename,
+		"syscalldot":  syscalldot,
+		"newlazydll": func(dll string) string {
+			arg := "\"" + dll + ".dll\""
+			if !*systemDLL {
+				return syscalldot() + "NewLazyDLL(" + arg + ")"
+			}
+			switch pkgtype {
+			case pkgStd:
+				return syscalldot() + "NewLazyDLL(sysdll.Add(" + arg + "))"
+			case pkgXSysWindows:
+				return "NewLazySystemDLL(" + arg + ")"
+			default:
+				return "windows.NewLazySystemDLL(" + arg + ")"
+			}
+		},
+	}
+	t := template.Must(template.New("main").Funcs(funcMap).Parse(srcTemplate))
+	err = t.Execute(w, src)
+	if err != nil {
+		return errors.New("Failed to execute template: " + err.Error())
+	}
+	return nil
+}
+
+func usage() {
+	fmt.Fprintf(os.Stderr, "usage: mksyscall_windows [flags] [path ...]\n")
+	flag.PrintDefaults()
+	os.Exit(1)
+}
+
+func main() {
+	flag.Usage = usage
+	flag.Parse()
+	if len(flag.Args()) <= 0 {
+		fmt.Fprintf(os.Stderr, "no files to parse provided\n")
+		usage()
+	}
+
+	src, err := ParseFiles(flag.Args())
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	var buf bytes.Buffer
+	if err := src.Generate(&buf); err != nil {
+		log.Fatal(err)
+	}
+
+	data, err := format.Source(buf.Bytes())
+	if err != nil {
+		log.Fatal(err)
+	}
+	if *filename == "" {
+		_, err = os.Stdout.Write(data)
+	} else {
+		err = ioutil.WriteFile(*filename, data, 0644)
+	}
+	if err != nil {
+		log.Fatal(err)
+	}
+}
+
+// TODO: use println instead to print in the following template
+const srcTemplate = `
+
+{{define "main"}}// MACHINE GENERATED BY 'go generate' COMMAND; DO NOT EDIT
+
+package {{packagename}}
+
+import (
+{{range .StdLibImports}}"{{.}}"
+{{end}}
+
+{{range .ExternalImports}}"{{.}}"
+{{end}}
+)
+
+var _ unsafe.Pointer
+
+// Do the interface allocations only once for common
+// Errno values.
+const (
+	errnoERROR_IO_PENDING = 997
+)
+
+var (
+	errERROR_IO_PENDING error = {{syscalldot}}Errno(errnoERROR_IO_PENDING)
+)
+
+// errnoErr returns common boxed Errno values, to prevent
+// allocations at runtime.
+func errnoErr(e {{syscalldot}}Errno) error {
+	switch e {
+	case 0:
+		return nil
+	case errnoERROR_IO_PENDING:
+		return errERROR_IO_PENDING
+	}
+	// TODO: add more here, after collecting data on the common
+	// error values see on Windows. (perhaps when running
+	// all.bat?)
+	return e
+}
+
+var (
+{{template "dlls" .}}
+{{template "funcnames" .}})
+{{range .Funcs}}{{if .HasStringParam}}{{template "helperbody" .}}{{end}}{{template "funcbody" .}}{{end}}
+{{end}}
+
+{{/* help functions */}}
+
+{{define "dlls"}}{{range .DLLs}}	mod{{.}} = {{newlazydll .}}
+{{end}}{{end}}
+
+{{define "funcnames"}}{{range .Funcs}}{{if .IsNotDuplicate}}	proc{{.DLLFuncName}} = mod{{.DLLName}}.NewProc("{{.DLLFuncName}}"){{end}}
+{{end}}{{end}}
+
+{{define "helperbody"}}
+func {{.Name}}({{.ParamList}}) {{template "results" .}}{
+{{template "helpertmpvars" .}}	return {{.HelperName}}({{.HelperCallParamList}})
+}
+{{end}}
+
+{{define "funcbody"}}
+func {{.HelperName}}({{.HelperParamList}}) {{template "results" .}}{
+{{template "tmpvars" .}}	{{template "syscallcheck" .}}{{template "syscall" .}}
+{{template "seterror" .}}{{template "printtrace" .}}	return
+}
+{{end}}
+
+{{define "helpertmpvars"}}{{range .Params}}{{if .TmpVarHelperCode}}	{{.TmpVarHelperCode}}
+{{end}}{{end}}{{end}}
+
+{{define "tmpvars"}}{{range .Params}}{{if .TmpVarCode}}	{{.TmpVarCode}}
+{{end}}{{end}}{{end}}
+
+{{define "results"}}{{if .Rets.List}}{{.Rets.List}} {{end}}{{end}}
+
+{{define "syscall"}}{{.Rets.SetReturnValuesCode}}{{.Syscall}}(proc{{.DLLFuncName}}.Addr(), {{.ParamCount}}, {{.SyscallParamList}}){{end}}
+
+{{define "syscallcheck"}}{{if .ConfirmProc}}if {{.Rets.ErrorVarName}} = proc{{.DLLFuncName}}.Find(); {{.Rets.ErrorVarName}} != nil {
+    return
+}
+{{end}}{{end}}
+
+
+{{define "seterror"}}{{if .Rets.SetErrorCode}}	{{.Rets.SetErrorCode}}
+{{end}}{{end}}
+
+{{define "printtrace"}}{{if .PrintTrace}}	print("SYSCALL: {{.Name}}(", {{.ParamPrintList}}") (", {{.Rets.PrintList}}")\n")
+{{end}}{{end}}
+
+`
diff --git a/vendor/github.com/Microsoft/hcsshim/nametoguid.go b/vendor/github.com/Microsoft/hcsshim/nametoguid.go
new file mode 100644
index 0000000000..b7c6d020c6
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/nametoguid.go
@@ -0,0 +1,20 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// NameToGuid converts the given string into a GUID using the algorithm in the
+// Host Compute Service, ensuring GUIDs generated with the same string are common
+// across all clients.
+func NameToGuid(name string) (id GUID, err error) {
+	title := "hcsshim::NameToGuid "
+	logrus.Debugf(title+"Name %s", name)
+
+	err = nameToGuid(name, &id)
+	if err != nil {
+		err = makeErrorf(err, title, "name=%s", name)
+		logrus.Error(err)
+		return
+	}
+
+	return
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/preparelayer.go b/vendor/github.com/Microsoft/hcsshim/preparelayer.go
new file mode 100644
index 0000000000..5c5b618411
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/preparelayer.go
@@ -0,0 +1,46 @@
+package hcsshim
+
+import (
+	"sync"
+
+	"github.com/sirupsen/logrus"
+)
+
+var prepareLayerLock sync.Mutex
+
+// PrepareLayer finds a mounted read-write layer matching layerId and enables the
+// the filesystem filter for use on that layer.  This requires the paths to all
+// parent layers, and is necessary in order to view or interact with the layer
+// as an actual filesystem (reading and writing files, creating directories, etc).
+// Disabling the filter must be done via UnprepareLayer.
+func PrepareLayer(info DriverInfo, layerId string, parentLayerPaths []string) error {
+	title := "hcsshim::PrepareLayer "
+	logrus.Debugf(title+"flavour %d layerId %s", info.Flavour, layerId)
+
+	// Generate layer descriptors
+	layers, err := layerPathsToDescriptors(parentLayerPaths)
+	if err != nil {
+		return err
+	}
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	// This lock is a temporary workaround for a Windows bug. Only allowing one
+	// call to prepareLayer at a time vastly reduces the chance of a timeout.
+	prepareLayerLock.Lock()
+	defer prepareLayerLock.Unlock()
+	err = prepareLayer(&infop, layerId, layers)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s flavour=%d", layerId, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour=%d layerId=%s", info.Flavour, layerId)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/process.go b/vendor/github.com/Microsoft/hcsshim/process.go
new file mode 100644
index 0000000000..faee2cfeeb
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/process.go
@@ -0,0 +1,384 @@
+package hcsshim
+
+import (
+	"encoding/json"
+	"io"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+// ContainerError is an error encountered in HCS
+type process struct {
+	handleLock     sync.RWMutex
+	handle         hcsProcess
+	processID      int
+	container      *container
+	cachedPipes    *cachedPipes
+	callbackNumber uintptr
+}
+
+type cachedPipes struct {
+	stdIn  syscall.Handle
+	stdOut syscall.Handle
+	stdErr syscall.Handle
+}
+
+type processModifyRequest struct {
+	Operation   string
+	ConsoleSize *consoleSize `json:",omitempty"`
+	CloseHandle *closeHandle `json:",omitempty"`
+}
+
+type consoleSize struct {
+	Height uint16
+	Width  uint16
+}
+
+type closeHandle struct {
+	Handle string
+}
+
+type processStatus struct {
+	ProcessID      uint32
+	Exited         bool
+	ExitCode       uint32
+	LastWaitResult int32
+}
+
+const (
+	stdIn  string = "StdIn"
+	stdOut string = "StdOut"
+	stdErr string = "StdErr"
+)
+
+const (
+	modifyConsoleSize string = "ConsoleSize"
+	modifyCloseHandle string = "CloseHandle"
+)
+
+// Pid returns the process ID of the process within the container.
+func (process *process) Pid() int {
+	return process.processID
+}
+
+// Kill signals the process to terminate but does not wait for it to finish terminating.
+func (process *process) Kill() error {
+	process.handleLock.RLock()
+	defer process.handleLock.RUnlock()
+	operation := "Kill"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	if process.handle == 0 {
+		return makeProcessError(process, operation, "", ErrAlreadyClosed)
+	}
+
+	var resultp *uint16
+	err := hcsTerminateProcess(process.handle, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+// Wait waits for the process to exit.
+func (process *process) Wait() error {
+	operation := "Wait"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	err := waitForNotification(process.callbackNumber, hcsNotificationProcessExited, nil)
+	if err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+// WaitTimeout waits for the process to exit or the duration to elapse. It returns
+// false if timeout occurs.
+func (process *process) WaitTimeout(timeout time.Duration) error {
+	operation := "WaitTimeout"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	err := waitForNotification(process.callbackNumber, hcsNotificationProcessExited, &timeout)
+	if err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+// ExitCode returns the exit code of the process. The process must have
+// already terminated.
+func (process *process) ExitCode() (int, error) {
+	process.handleLock.RLock()
+	defer process.handleLock.RUnlock()
+	operation := "ExitCode"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	if process.handle == 0 {
+		return 0, makeProcessError(process, operation, "", ErrAlreadyClosed)
+	}
+
+	properties, err := process.properties()
+	if err != nil {
+		return 0, makeProcessError(process, operation, "", err)
+	}
+
+	if properties.Exited == false {
+		return 0, makeProcessError(process, operation, "", ErrInvalidProcessState)
+	}
+
+	if properties.LastWaitResult != 0 {
+		return 0, makeProcessError(process, operation, "", syscall.Errno(properties.LastWaitResult))
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d exitCode=%d", process.processID, properties.ExitCode)
+	return int(properties.ExitCode), nil
+}
+
+// ResizeConsole resizes the console of the process.
+func (process *process) ResizeConsole(width, height uint16) error {
+	process.handleLock.RLock()
+	defer process.handleLock.RUnlock()
+	operation := "ResizeConsole"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	if process.handle == 0 {
+		return makeProcessError(process, operation, "", ErrAlreadyClosed)
+	}
+
+	modifyRequest := processModifyRequest{
+		Operation: modifyConsoleSize,
+		ConsoleSize: &consoleSize{
+			Height: height,
+			Width:  width,
+		},
+	}
+
+	modifyRequestb, err := json.Marshal(modifyRequest)
+	if err != nil {
+		return err
+	}
+
+	modifyRequestStr := string(modifyRequestb)
+
+	var resultp *uint16
+	err = hcsModifyProcess(process.handle, modifyRequestStr, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+func (process *process) properties() (*processStatus, error) {
+	operation := "properties"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	var (
+		resultp     *uint16
+		propertiesp *uint16
+	)
+	err := hcsGetProcessProperties(process.handle, &propertiesp, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return nil, err
+	}
+
+	if propertiesp == nil {
+		return nil, ErrUnexpectedValue
+	}
+	propertiesRaw := convertAndFreeCoTaskMemBytes(propertiesp)
+
+	properties := &processStatus{}
+	if err := json.Unmarshal(propertiesRaw, properties); err != nil {
+		return nil, err
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d, properties=%s", process.processID, propertiesRaw)
+	return properties, nil
+}
+
+// Stdio returns the stdin, stdout, and stderr pipes, respectively. Closing
+// these pipes does not close the underlying pipes; it should be possible to
+// call this multiple times to get multiple interfaces.
+func (process *process) Stdio() (io.WriteCloser, io.ReadCloser, io.ReadCloser, error) {
+	process.handleLock.RLock()
+	defer process.handleLock.RUnlock()
+	operation := "Stdio"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	if process.handle == 0 {
+		return nil, nil, nil, makeProcessError(process, operation, "", ErrAlreadyClosed)
+	}
+
+	var stdIn, stdOut, stdErr syscall.Handle
+
+	if process.cachedPipes == nil {
+		var (
+			processInfo hcsProcessInformation
+			resultp     *uint16
+		)
+		err := hcsGetProcessInfo(process.handle, &processInfo, &resultp)
+		err = processHcsResult(err, resultp)
+		if err != nil {
+			return nil, nil, nil, makeProcessError(process, operation, "", err)
+		}
+
+		stdIn, stdOut, stdErr = processInfo.StdInput, processInfo.StdOutput, processInfo.StdError
+	} else {
+		// Use cached pipes
+		stdIn, stdOut, stdErr = process.cachedPipes.stdIn, process.cachedPipes.stdOut, process.cachedPipes.stdErr
+
+		// Invalidate the cache
+		process.cachedPipes = nil
+	}
+
+	pipes, err := makeOpenFiles([]syscall.Handle{stdIn, stdOut, stdErr})
+	if err != nil {
+		return nil, nil, nil, makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return pipes[0], pipes[1], pipes[2], nil
+}
+
+// CloseStdin closes the write side of the stdin pipe so that the process is
+// notified on the read side that there is no more data in stdin.
+func (process *process) CloseStdin() error {
+	process.handleLock.RLock()
+	defer process.handleLock.RUnlock()
+	operation := "CloseStdin"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	if process.handle == 0 {
+		return makeProcessError(process, operation, "", ErrAlreadyClosed)
+	}
+
+	modifyRequest := processModifyRequest{
+		Operation: modifyCloseHandle,
+		CloseHandle: &closeHandle{
+			Handle: stdIn,
+		},
+	}
+
+	modifyRequestb, err := json.Marshal(modifyRequest)
+	if err != nil {
+		return err
+	}
+
+	modifyRequestStr := string(modifyRequestb)
+
+	var resultp *uint16
+	err = hcsModifyProcess(process.handle, modifyRequestStr, &resultp)
+	err = processHcsResult(err, resultp)
+	if err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+// Close cleans up any state associated with the process but does not kill
+// or wait on it.
+func (process *process) Close() error {
+	process.handleLock.Lock()
+	defer process.handleLock.Unlock()
+	operation := "Close"
+	title := "HCSShim::Process::" + operation
+	logrus.Debugf(title+" processid=%d", process.processID)
+
+	// Don't double free this
+	if process.handle == 0 {
+		return nil
+	}
+
+	if err := process.unregisterCallback(); err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	if err := hcsCloseProcess(process.handle); err != nil {
+		return makeProcessError(process, operation, "", err)
+	}
+
+	process.handle = 0
+
+	logrus.Debugf(title+" succeeded processid=%d", process.processID)
+	return nil
+}
+
+func (process *process) registerCallback() error {
+	context := &notifcationWatcherContext{
+		channels: newChannels(),
+	}
+
+	callbackMapLock.Lock()
+	callbackNumber := nextCallback
+	nextCallback++
+	callbackMap[callbackNumber] = context
+	callbackMapLock.Unlock()
+
+	var callbackHandle hcsCallback
+	err := hcsRegisterProcessCallback(process.handle, notificationWatcherCallback, callbackNumber, &callbackHandle)
+	if err != nil {
+		return err
+	}
+	context.handle = callbackHandle
+	process.callbackNumber = callbackNumber
+
+	return nil
+}
+
+func (process *process) unregisterCallback() error {
+	callbackNumber := process.callbackNumber
+
+	callbackMapLock.RLock()
+	context := callbackMap[callbackNumber]
+	callbackMapLock.RUnlock()
+
+	if context == nil {
+		return nil
+	}
+
+	handle := context.handle
+
+	if handle == 0 {
+		return nil
+	}
+
+	// hcsUnregisterProcessCallback has its own syncronization
+	// to wait for all callbacks to complete. We must NOT hold the callbackMapLock.
+	err := hcsUnregisterProcessCallback(handle)
+	if err != nil {
+		return err
+	}
+
+	closeChannels(context.channels)
+
+	callbackMapLock.Lock()
+	callbackMap[callbackNumber] = nil
+	callbackMapLock.Unlock()
+
+	handle = 0
+
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/processimage.go b/vendor/github.com/Microsoft/hcsshim/processimage.go
new file mode 100644
index 0000000000..fadb1b92c5
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/processimage.go
@@ -0,0 +1,23 @@
+package hcsshim
+
+import "os"
+
+// ProcessBaseLayer post-processes a base layer that has had its files extracted.
+// The files should have been extracted to <path>\Files.
+func ProcessBaseLayer(path string) error {
+	err := processBaseImage(path)
+	if err != nil {
+		return &os.PathError{Op: "ProcessBaseLayer", Path: path, Err: err}
+	}
+	return nil
+}
+
+// ProcessUtilityVMImage post-processes a utility VM image that has had its files extracted.
+// The files should have been extracted to <path>\Files.
+func ProcessUtilityVMImage(path string) error {
+	err := processUtilityImage(path)
+	if err != nil {
+		return &os.PathError{Op: "ProcessUtilityVMImage", Path: path, Err: err}
+	}
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/safeopen.go b/vendor/github.com/Microsoft/hcsshim/safeopen.go
new file mode 100644
index 0000000000..5356456b90
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/safeopen.go
@@ -0,0 +1,427 @@
+package hcsshim
+
+import (
+	"errors"
+	"io"
+	"os"
+	"path/filepath"
+	"strings"
+	"syscall"
+	"unicode/utf16"
+	"unsafe"
+
+	winio "github.com/Microsoft/go-winio"
+)
+
+//sys ntCreateFile(handle *uintptr, accessMask uint32, oa *objectAttributes, iosb *ioStatusBlock, allocationSize *uint64, fileAttributes uint32, shareAccess uint32, createDisposition uint32, createOptions uint32, eaBuffer *byte, eaLength uint32) (status uint32) = ntdll.NtCreateFile
+//sys ntSetInformationFile(handle uintptr, iosb *ioStatusBlock, information uintptr, length uint32, class uint32) (status uint32) = ntdll.NtSetInformationFile
+//sys rtlNtStatusToDosError(status uint32) (winerr error) = ntdll.RtlNtStatusToDosErrorNoTeb
+//sys localAlloc(flags uint32, size int) (ptr uintptr) = kernel32.LocalAlloc
+//sys localFree(ptr uintptr) = kernel32.LocalFree
+
+type ioStatusBlock struct {
+	Status, Information uintptr
+}
+
+type objectAttributes struct {
+	Length             uintptr
+	RootDirectory      uintptr
+	ObjectName         uintptr
+	Attributes         uintptr
+	SecurityDescriptor uintptr
+	SecurityQoS        uintptr
+}
+
+type unicodeString struct {
+	Length        uint16
+	MaximumLength uint16
+	Buffer        uintptr
+}
+
+type fileLinkInformation struct {
+	ReplaceIfExists bool
+	RootDirectory   uintptr
+	FileNameLength  uint32
+	FileName        [1]uint16
+}
+
+type fileDispositionInformationEx struct {
+	Flags uintptr
+}
+
+const (
+	_FileLinkInformation          = 11
+	_FileDispositionInformationEx = 64
+
+	_FILE_READ_ATTRIBUTES  = 0x0080
+	_FILE_WRITE_ATTRIBUTES = 0x0100
+	_DELETE                = 0x10000
+
+	_FILE_OPEN   = 1
+	_FILE_CREATE = 2
+
+	_FILE_DIRECTORY_FILE          = 0x00000001
+	_FILE_SYNCHRONOUS_IO_NONALERT = 0x00000020
+	_FILE_DELETE_ON_CLOSE         = 0x00001000
+	_FILE_OPEN_FOR_BACKUP_INTENT  = 0x00004000
+	_FILE_OPEN_REPARSE_POINT      = 0x00200000
+
+	_FILE_DISPOSITION_DELETE = 0x00000001
+
+	_OBJ_DONT_REPARSE = 0x1000
+
+	_STATUS_REPARSE_POINT_ENCOUNTERED = 0xC000050B
+)
+
+func openRoot(path string) (*os.File, error) {
+	longpath, err := makeLongAbsPath(path)
+	if err != nil {
+		return nil, err
+	}
+	return winio.OpenForBackup(longpath, syscall.GENERIC_READ, syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE, syscall.OPEN_EXISTING)
+}
+
+func ntRelativePath(path string) ([]uint16, error) {
+	path = filepath.Clean(path)
+	if strings.Contains(":", path) {
+		// Since alternate data streams must follow the file they
+		// are attached to, finding one here (out of order) is invalid.
+		return nil, errors.New("path contains invalid character `:`")
+	}
+	fspath := filepath.FromSlash(path)
+	if len(fspath) > 0 && fspath[0] == '\\' {
+		return nil, errors.New("expected relative path")
+	}
+
+	path16 := utf16.Encode(([]rune)(fspath))
+	if len(path16) > 32767 {
+		return nil, syscall.ENAMETOOLONG
+	}
+
+	return path16, nil
+}
+
+// openRelativeInternal opens a relative path from the given root, failing if
+// any of the intermediate path components are reparse points.
+func openRelativeInternal(path string, root *os.File, accessMask uint32, shareFlags uint32, createDisposition uint32, flags uint32) (*os.File, error) {
+	var (
+		h    uintptr
+		iosb ioStatusBlock
+		oa   objectAttributes
+	)
+
+	path16, err := ntRelativePath(path)
+	if err != nil {
+		return nil, err
+	}
+
+	if root == nil || root.Fd() == 0 {
+		return nil, errors.New("missing root directory")
+	}
+
+	upathBuffer := localAlloc(0, int(unsafe.Sizeof(unicodeString{}))+len(path16)*2)
+	defer localFree(upathBuffer)
+
+	upath := (*unicodeString)(unsafe.Pointer(upathBuffer))
+	upath.Length = uint16(len(path16) * 2)
+	upath.MaximumLength = upath.Length
+	upath.Buffer = upathBuffer + unsafe.Sizeof(*upath)
+	copy((*[32768]uint16)(unsafe.Pointer(upath.Buffer))[:], path16)
+
+	oa.Length = unsafe.Sizeof(oa)
+	oa.ObjectName = upathBuffer
+	oa.RootDirectory = uintptr(root.Fd())
+	oa.Attributes = _OBJ_DONT_REPARSE
+	status := ntCreateFile(
+		&h,
+		accessMask|syscall.SYNCHRONIZE,
+		&oa,
+		&iosb,
+		nil,
+		0,
+		shareFlags,
+		createDisposition,
+		_FILE_OPEN_FOR_BACKUP_INTENT|_FILE_SYNCHRONOUS_IO_NONALERT|flags,
+		nil,
+		0,
+	)
+	if status != 0 {
+		return nil, rtlNtStatusToDosError(status)
+	}
+
+	fullPath, err := makeLongAbsPath(filepath.Join(root.Name(), path))
+	if err != nil {
+		syscall.Close(syscall.Handle(h))
+		return nil, err
+	}
+
+	return os.NewFile(h, fullPath), nil
+}
+
+// openRelative opens a relative path from the given root, failing if
+// any of the intermediate path components are reparse points.
+func openRelative(path string, root *os.File, accessMask uint32, shareFlags uint32, createDisposition uint32, flags uint32) (*os.File, error) {
+	f, err := openRelativeInternal(path, root, accessMask, shareFlags, createDisposition, flags)
+	if err != nil {
+		err = &os.PathError{Op: "open", Path: filepath.Join(root.Name(), path), Err: err}
+	}
+	return f, err
+}
+
+// linkRelative creates a hard link from oldname to newname (relative to oldroot
+// and newroot), failing if any of the intermediate path components are reparse
+// points.
+func linkRelative(oldname string, oldroot *os.File, newname string, newroot *os.File) error {
+	// Open the old file.
+	oldf, err := openRelativeInternal(
+		oldname,
+		oldroot,
+		syscall.FILE_WRITE_ATTRIBUTES,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		_FILE_OPEN,
+		0,
+	)
+	if err != nil {
+		return &os.LinkError{Op: "link", Old: filepath.Join(oldroot.Name(), oldname), New: filepath.Join(newroot.Name(), newname), Err: err}
+	}
+	defer oldf.Close()
+
+	// Open the parent of the new file.
+	var parent *os.File
+	parentPath := filepath.Dir(newname)
+	if parentPath != "." {
+		parent, err = openRelativeInternal(
+			parentPath,
+			newroot,
+			syscall.GENERIC_READ,
+			syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+			_FILE_OPEN,
+			_FILE_DIRECTORY_FILE)
+		if err != nil {
+			return &os.LinkError{Op: "link", Old: oldf.Name(), New: filepath.Join(newroot.Name(), newname), Err: err}
+		}
+		defer parent.Close()
+
+		fi, err := winio.GetFileBasicInfo(parent)
+		if err != nil {
+			return err
+		}
+		if (fi.FileAttributes & syscall.FILE_ATTRIBUTE_REPARSE_POINT) != 0 {
+			return &os.LinkError{Op: "link", Old: oldf.Name(), New: filepath.Join(newroot.Name(), newname), Err: rtlNtStatusToDosError(_STATUS_REPARSE_POINT_ENCOUNTERED)}
+		}
+
+	} else {
+		parent = newroot
+	}
+
+	// Issue an NT call to create the link. This will be safe because NT will
+	// not open any more directories to create the link, so it cannot walk any
+	// more reparse points.
+	newbase := filepath.Base(newname)
+	newbase16, err := ntRelativePath(newbase)
+	if err != nil {
+		return err
+	}
+
+	size := int(unsafe.Offsetof(fileLinkInformation{}.FileName)) + len(newbase16)*2
+	linkinfoBuffer := localAlloc(0, size)
+	defer localFree(linkinfoBuffer)
+	linkinfo := (*fileLinkInformation)(unsafe.Pointer(linkinfoBuffer))
+	linkinfo.RootDirectory = parent.Fd()
+	linkinfo.FileNameLength = uint32(len(newbase16) * 2)
+	copy((*[32768]uint16)(unsafe.Pointer(&linkinfo.FileName[0]))[:], newbase16)
+
+	var iosb ioStatusBlock
+	status := ntSetInformationFile(
+		oldf.Fd(),
+		&iosb,
+		linkinfoBuffer,
+		uint32(size),
+		_FileLinkInformation,
+	)
+	if status != 0 {
+		return &os.LinkError{Op: "link", Old: oldf.Name(), New: filepath.Join(parent.Name(), newbase), Err: rtlNtStatusToDosError(status)}
+	}
+
+	return nil
+}
+
+// deleteOnClose marks a file to be deleted when the handle is closed.
+func deleteOnClose(f *os.File) error {
+	disposition := fileDispositionInformationEx{Flags: _FILE_DISPOSITION_DELETE}
+	var iosb ioStatusBlock
+	status := ntSetInformationFile(
+		f.Fd(),
+		&iosb,
+		uintptr(unsafe.Pointer(&disposition)),
+		uint32(unsafe.Sizeof(disposition)),
+		_FileDispositionInformationEx,
+	)
+	if status != 0 {
+		return rtlNtStatusToDosError(status)
+	}
+	return nil
+}
+
+// clearReadOnly clears the readonly attribute on a file.
+func clearReadOnly(f *os.File) error {
+	bi, err := winio.GetFileBasicInfo(f)
+	if err != nil {
+		return err
+	}
+	if bi.FileAttributes&syscall.FILE_ATTRIBUTE_READONLY == 0 {
+		return nil
+	}
+	sbi := winio.FileBasicInfo{
+		FileAttributes: bi.FileAttributes &^ syscall.FILE_ATTRIBUTE_READONLY,
+	}
+	if sbi.FileAttributes == 0 {
+		sbi.FileAttributes = syscall.FILE_ATTRIBUTE_NORMAL
+	}
+	return winio.SetFileBasicInfo(f, &sbi)
+}
+
+// removeRelative removes a file or directory relative to a root, failing if any
+// intermediate path components are reparse points.
+func removeRelative(path string, root *os.File) error {
+	f, err := openRelativeInternal(
+		path,
+		root,
+		_FILE_READ_ATTRIBUTES|_FILE_WRITE_ATTRIBUTES|_DELETE,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		_FILE_OPEN,
+		_FILE_OPEN_REPARSE_POINT)
+	if err == nil {
+		defer f.Close()
+		err = deleteOnClose(f)
+		if err == syscall.ERROR_ACCESS_DENIED {
+			// Maybe the file is marked readonly. Clear the bit and retry.
+			clearReadOnly(f)
+			err = deleteOnClose(f)
+		}
+	}
+	if err != nil {
+		return &os.PathError{Op: "remove", Path: filepath.Join(root.Name(), path), Err: err}
+	}
+	return nil
+}
+
+// removeAllRelative removes a directory tree relative to a root, failing if any
+// intermediate path components are reparse points.
+func removeAllRelative(path string, root *os.File) error {
+	fi, err := lstatRelative(path, root)
+	if err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+	fileAttributes := fi.Sys().(*syscall.Win32FileAttributeData).FileAttributes
+	if fileAttributes&syscall.FILE_ATTRIBUTE_DIRECTORY == 0 || fileAttributes&syscall.FILE_ATTRIBUTE_REPARSE_POINT != 0 {
+		// If this is a reparse point, it can't have children. Simple remove will do.
+		err := removeRelative(path, root)
+		if err == nil || os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+
+	// It is necessary to use os.Open as Readdirnames does not work with
+	// openRelative. This is safe because the above lstatrelative fails
+	// if the target is outside the root, and we know this is not a
+	// symlink from the above FILE_ATTRIBUTE_REPARSE_POINT check.
+	fd, err := os.Open(filepath.Join(root.Name(), path))
+	if err != nil {
+		if os.IsNotExist(err) {
+			// Race. It was deleted between the Lstat and Open.
+			// Return nil per RemoveAll's docs.
+			return nil
+		}
+		return err
+	}
+
+	// Remove contents & return first error.
+	for {
+		names, err1 := fd.Readdirnames(100)
+		for _, name := range names {
+			err1 := removeAllRelative(path+string(os.PathSeparator)+name, root)
+			if err == nil {
+				err = err1
+			}
+		}
+		if err1 == io.EOF {
+			break
+		}
+		// If Readdirnames returned an error, use it.
+		if err == nil {
+			err = err1
+		}
+		if len(names) == 0 {
+			break
+		}
+	}
+	fd.Close()
+
+	// Remove directory.
+	err1 := removeRelative(path, root)
+	if err1 == nil || os.IsNotExist(err1) {
+		return nil
+	}
+	if err == nil {
+		err = err1
+	}
+	return err
+}
+
+// mkdirRelative creates a directory relative to a root, failing if any
+// intermediate path components are reparse points.
+func mkdirRelative(path string, root *os.File) error {
+	f, err := openRelativeInternal(
+		path,
+		root,
+		0,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		_FILE_CREATE,
+		_FILE_DIRECTORY_FILE)
+	if err == nil {
+		f.Close()
+	} else {
+		err = &os.PathError{Op: "mkdir", Path: filepath.Join(root.Name(), path), Err: err}
+	}
+	return err
+}
+
+// lstatRelative performs a stat operation on a file relative to a root, failing
+// if any intermediate path components are reparse points.
+func lstatRelative(path string, root *os.File) (os.FileInfo, error) {
+	f, err := openRelativeInternal(
+		path,
+		root,
+		_FILE_READ_ATTRIBUTES,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		_FILE_OPEN,
+		_FILE_OPEN_REPARSE_POINT)
+	if err != nil {
+		return nil, &os.PathError{Op: "stat", Path: filepath.Join(root.Name(), path), Err: err}
+	}
+	defer f.Close()
+	return f.Stat()
+}
+
+// ensureNotReparsePointRelative validates that a given file (relative to a
+// root) and all intermediate path components are not a reparse points.
+func ensureNotReparsePointRelative(path string, root *os.File) error {
+	// Perform an open with OBJ_DONT_REPARSE but without specifying FILE_OPEN_REPARSE_POINT.
+	f, err := openRelative(
+		path,
+		root,
+		0,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		_FILE_OPEN,
+		0)
+	if err != nil {
+		return err
+	}
+	f.Close()
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go b/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
new file mode 100644
index 0000000000..e8a3b507bf
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/unpreparelayer.go
@@ -0,0 +1,27 @@
+package hcsshim
+
+import "github.com/sirupsen/logrus"
+
+// UnprepareLayer disables the filesystem filter for the read-write layer with
+// the given id.
+func UnprepareLayer(info DriverInfo, layerId string) error {
+	title := "hcsshim::UnprepareLayer "
+	logrus.Debugf(title+"flavour %d layerId %s", info.Flavour, layerId)
+
+	// Convert info to API calling convention
+	infop, err := convertDriverInfo(info)
+	if err != nil {
+		logrus.Error(err)
+		return err
+	}
+
+	err = unprepareLayer(&infop, layerId)
+	if err != nil {
+		err = makeErrorf(err, title, "layerId=%s flavour=%d", layerId, info.Flavour)
+		logrus.Error(err)
+		return err
+	}
+
+	logrus.Debugf(title+"succeeded flavour %d layerId=%s", info.Flavour, layerId)
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/utils.go b/vendor/github.com/Microsoft/hcsshim/utils.go
new file mode 100644
index 0000000000..bd6e2d94ab
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/utils.go
@@ -0,0 +1,33 @@
+package hcsshim
+
+import (
+	"io"
+	"syscall"
+
+	"github.com/Microsoft/go-winio"
+)
+
+// makeOpenFiles calls winio.MakeOpenFile for each handle in a slice but closes all the handles
+// if there is an error.
+func makeOpenFiles(hs []syscall.Handle) (_ []io.ReadWriteCloser, err error) {
+	fs := make([]io.ReadWriteCloser, len(hs))
+	for i, h := range hs {
+		if h != syscall.Handle(0) {
+			if err == nil {
+				fs[i], err = winio.MakeOpenFile(h)
+			}
+			if err != nil {
+				syscall.Close(h)
+			}
+		}
+	}
+	if err != nil {
+		for _, f := range fs {
+			if f != nil {
+				f.Close()
+			}
+		}
+		return nil, err
+	}
+	return fs, nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/version.go b/vendor/github.com/Microsoft/hcsshim/version.go
new file mode 100644
index 0000000000..ae10c23d42
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/version.go
@@ -0,0 +1,7 @@
+package hcsshim
+
+// IsTP4 returns whether the currently running Windows build is at least TP4.
+func IsTP4() bool {
+	// HNSCall was not present in TP4
+	return procHNSCall.Find() != nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/waithelper.go b/vendor/github.com/Microsoft/hcsshim/waithelper.go
new file mode 100644
index 0000000000..b7be20ea0c
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/waithelper.go
@@ -0,0 +1,63 @@
+package hcsshim
+
+import (
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+func processAsyncHcsResult(err error, resultp *uint16, callbackNumber uintptr, expectedNotification hcsNotification, timeout *time.Duration) error {
+	err = processHcsResult(err, resultp)
+	if IsPending(err) {
+		return waitForNotification(callbackNumber, expectedNotification, timeout)
+	}
+
+	return err
+}
+
+func waitForNotification(callbackNumber uintptr, expectedNotification hcsNotification, timeout *time.Duration) error {
+	callbackMapLock.RLock()
+	channels := callbackMap[callbackNumber].channels
+	callbackMapLock.RUnlock()
+
+	expectedChannel := channels[expectedNotification]
+	if expectedChannel == nil {
+		logrus.Errorf("unknown notification type in waitForNotification %x", expectedNotification)
+		return ErrInvalidNotificationType
+	}
+
+	var c <-chan time.Time
+	if timeout != nil {
+		timer := time.NewTimer(*timeout)
+		c = timer.C
+		defer timer.Stop()
+	}
+
+	select {
+	case err, ok := <-expectedChannel:
+		if !ok {
+			return ErrHandleClose
+		}
+		return err
+	case err, ok := <-channels[hcsNotificationSystemExited]:
+		if !ok {
+			return ErrHandleClose
+		}
+		// If the expected notification is hcsNotificationSystemExited which of the two selects
+		// chosen is random. Return the raw error if hcsNotificationSystemExited is expected
+		if channels[hcsNotificationSystemExited] == expectedChannel {
+			return err
+		}
+		return ErrUnexpectedContainerExit
+	case _, ok := <-channels[hcsNotificationServiceDisconnect]:
+		if !ok {
+			return ErrHandleClose
+		}
+		// hcsNotificationServiceDisconnect should never be an expected notification
+		// it does not need the same handling as hcsNotificationSystemExited
+		return ErrUnexpectedProcessAbort
+	case <-c:
+		return ErrTimeout
+	}
+	return nil
+}
diff --git a/vendor/github.com/Microsoft/hcsshim/zhcsshim.go b/vendor/github.com/Microsoft/hcsshim/zhcsshim.go
new file mode 100644
index 0000000000..5123e8d8e8
--- /dev/null
+++ b/vendor/github.com/Microsoft/hcsshim/zhcsshim.go
@@ -0,0 +1,1080 @@
+// MACHINE GENERATED BY 'go generate' COMMAND; DO NOT EDIT
+
+package hcsshim
+
+import (
+	"syscall"
+	"unsafe"
+
+	"github.com/Microsoft/go-winio"
+	"golang.org/x/sys/windows"
+)
+
+var _ unsafe.Pointer
+
+// Do the interface allocations only once for common
+// Errno values.
+const (
+	errnoERROR_IO_PENDING = 997
+)
+
+var (
+	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
+)
+
+// errnoErr returns common boxed Errno values, to prevent
+// allocations at runtime.
+func errnoErr(e syscall.Errno) error {
+	switch e {
+	case 0:
+		return nil
+	case errnoERROR_IO_PENDING:
+		return errERROR_IO_PENDING
+	}
+	// TODO: add more here, after collecting data on the common
+	// error values see on Windows. (perhaps when running
+	// all.bat?)
+	return e
+}
+
+var (
+	modole32     = windows.NewLazySystemDLL("ole32.dll")
+	modiphlpapi  = windows.NewLazySystemDLL("iphlpapi.dll")
+	modvmcompute = windows.NewLazySystemDLL("vmcompute.dll")
+	modntdll     = windows.NewLazySystemDLL("ntdll.dll")
+	modkernel32  = windows.NewLazySystemDLL("kernel32.dll")
+
+	procCoTaskMemFree                      = modole32.NewProc("CoTaskMemFree")
+	procSetCurrentThreadCompartmentId      = modiphlpapi.NewProc("SetCurrentThreadCompartmentId")
+	procActivateLayer                      = modvmcompute.NewProc("ActivateLayer")
+	procCopyLayer                          = modvmcompute.NewProc("CopyLayer")
+	procCreateLayer                        = modvmcompute.NewProc("CreateLayer")
+	procCreateSandboxLayer                 = modvmcompute.NewProc("CreateSandboxLayer")
+	procExpandSandboxSize                  = modvmcompute.NewProc("ExpandSandboxSize")
+	procDeactivateLayer                    = modvmcompute.NewProc("DeactivateLayer")
+	procDestroyLayer                       = modvmcompute.NewProc("DestroyLayer")
+	procExportLayer                        = modvmcompute.NewProc("ExportLayer")
+	procGetLayerMountPath                  = modvmcompute.NewProc("GetLayerMountPath")
+	procGetBaseImages                      = modvmcompute.NewProc("GetBaseImages")
+	procImportLayer                        = modvmcompute.NewProc("ImportLayer")
+	procLayerExists                        = modvmcompute.NewProc("LayerExists")
+	procNameToGuid                         = modvmcompute.NewProc("NameToGuid")
+	procPrepareLayer                       = modvmcompute.NewProc("PrepareLayer")
+	procUnprepareLayer                     = modvmcompute.NewProc("UnprepareLayer")
+	procProcessBaseImage                   = modvmcompute.NewProc("ProcessBaseImage")
+	procProcessUtilityImage                = modvmcompute.NewProc("ProcessUtilityImage")
+	procImportLayerBegin                   = modvmcompute.NewProc("ImportLayerBegin")
+	procImportLayerNext                    = modvmcompute.NewProc("ImportLayerNext")
+	procImportLayerWrite                   = modvmcompute.NewProc("ImportLayerWrite")
+	procImportLayerEnd                     = modvmcompute.NewProc("ImportLayerEnd")
+	procExportLayerBegin                   = modvmcompute.NewProc("ExportLayerBegin")
+	procExportLayerNext                    = modvmcompute.NewProc("ExportLayerNext")
+	procExportLayerRead                    = modvmcompute.NewProc("ExportLayerRead")
+	procExportLayerEnd                     = modvmcompute.NewProc("ExportLayerEnd")
+	procHcsEnumerateComputeSystems         = modvmcompute.NewProc("HcsEnumerateComputeSystems")
+	procHcsCreateComputeSystem             = modvmcompute.NewProc("HcsCreateComputeSystem")
+	procHcsOpenComputeSystem               = modvmcompute.NewProc("HcsOpenComputeSystem")
+	procHcsCloseComputeSystem              = modvmcompute.NewProc("HcsCloseComputeSystem")
+	procHcsStartComputeSystem              = modvmcompute.NewProc("HcsStartComputeSystem")
+	procHcsShutdownComputeSystem           = modvmcompute.NewProc("HcsShutdownComputeSystem")
+	procHcsTerminateComputeSystem          = modvmcompute.NewProc("HcsTerminateComputeSystem")
+	procHcsPauseComputeSystem              = modvmcompute.NewProc("HcsPauseComputeSystem")
+	procHcsResumeComputeSystem             = modvmcompute.NewProc("HcsResumeComputeSystem")
+	procHcsGetComputeSystemProperties      = modvmcompute.NewProc("HcsGetComputeSystemProperties")
+	procHcsModifyComputeSystem             = modvmcompute.NewProc("HcsModifyComputeSystem")
+	procHcsRegisterComputeSystemCallback   = modvmcompute.NewProc("HcsRegisterComputeSystemCallback")
+	procHcsUnregisterComputeSystemCallback = modvmcompute.NewProc("HcsUnregisterComputeSystemCallback")
+	procHcsCreateProcess                   = modvmcompute.NewProc("HcsCreateProcess")
+	procHcsOpenProcess                     = modvmcompute.NewProc("HcsOpenProcess")
+	procHcsCloseProcess                    = modvmcompute.NewProc("HcsCloseProcess")
+	procHcsTerminateProcess                = modvmcompute.NewProc("HcsTerminateProcess")
+	procHcsGetProcessInfo                  = modvmcompute.NewProc("HcsGetProcessInfo")
+	procHcsGetProcessProperties            = modvmcompute.NewProc("HcsGetProcessProperties")
+	procHcsModifyProcess                   = modvmcompute.NewProc("HcsModifyProcess")
+	procHcsGetServiceProperties            = modvmcompute.NewProc("HcsGetServiceProperties")
+	procHcsRegisterProcessCallback         = modvmcompute.NewProc("HcsRegisterProcessCallback")
+	procHcsUnregisterProcessCallback       = modvmcompute.NewProc("HcsUnregisterProcessCallback")
+	procHcsModifyServiceSettings           = modvmcompute.NewProc("HcsModifyServiceSettings")
+	procHNSCall                            = modvmcompute.NewProc("HNSCall")
+	procNtCreateFile                       = modntdll.NewProc("NtCreateFile")
+	procNtSetInformationFile               = modntdll.NewProc("NtSetInformationFile")
+	procRtlNtStatusToDosErrorNoTeb         = modntdll.NewProc("RtlNtStatusToDosErrorNoTeb")
+	procLocalAlloc                         = modkernel32.NewProc("LocalAlloc")
+	procLocalFree                          = modkernel32.NewProc("LocalFree")
+)
+
+func coTaskMemFree(buffer unsafe.Pointer) {
+	syscall.Syscall(procCoTaskMemFree.Addr(), 1, uintptr(buffer), 0, 0)
+	return
+}
+
+func SetCurrentThreadCompartmentId(compartmentId uint32) (hr error) {
+	r0, _, _ := syscall.Syscall(procSetCurrentThreadCompartmentId.Addr(), 1, uintptr(compartmentId), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func activateLayer(info *driverInfo, id string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _activateLayer(info, _p0)
+}
+
+func _activateLayer(info *driverInfo, id *uint16) (hr error) {
+	if hr = procActivateLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procActivateLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func copyLayer(info *driverInfo, srcId string, dstId string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(srcId)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(dstId)
+	if hr != nil {
+		return
+	}
+	return _copyLayer(info, _p0, _p1, descriptors)
+}
+
+func _copyLayer(info *driverInfo, srcId *uint16, dstId *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p2 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p2 = &descriptors[0]
+	}
+	if hr = procCopyLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procCopyLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(srcId)), uintptr(unsafe.Pointer(dstId)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func createLayer(info *driverInfo, id string, parent string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(parent)
+	if hr != nil {
+		return
+	}
+	return _createLayer(info, _p0, _p1)
+}
+
+func _createLayer(info *driverInfo, id *uint16, parent *uint16) (hr error) {
+	if hr = procCreateLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procCreateLayer.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(parent)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func createSandboxLayer(info *driverInfo, id string, parent string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(parent)
+	if hr != nil {
+		return
+	}
+	return _createSandboxLayer(info, _p0, _p1, descriptors)
+}
+
+func _createSandboxLayer(info *driverInfo, id *uint16, parent *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p2 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p2 = &descriptors[0]
+	}
+	if hr = procCreateSandboxLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procCreateSandboxLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(parent)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func expandSandboxSize(info *driverInfo, id string, size uint64) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _expandSandboxSize(info, _p0, size)
+}
+
+func _expandSandboxSize(info *driverInfo, id *uint16, size uint64) (hr error) {
+	if hr = procExpandSandboxSize.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procExpandSandboxSize.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(size))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func deactivateLayer(info *driverInfo, id string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _deactivateLayer(info, _p0)
+}
+
+func _deactivateLayer(info *driverInfo, id *uint16) (hr error) {
+	if hr = procDeactivateLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procDeactivateLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func destroyLayer(info *driverInfo, id string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _destroyLayer(info, _p0)
+}
+
+func _destroyLayer(info *driverInfo, id *uint16) (hr error) {
+	if hr = procDestroyLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procDestroyLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func exportLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(path)
+	if hr != nil {
+		return
+	}
+	return _exportLayer(info, _p0, _p1, descriptors)
+}
+
+func _exportLayer(info *driverInfo, id *uint16, path *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p2 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p2 = &descriptors[0]
+	}
+	if hr = procExportLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procExportLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func getLayerMountPath(info *driverInfo, id string, length *uintptr, buffer *uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _getLayerMountPath(info, _p0, length, buffer)
+}
+
+func _getLayerMountPath(info *driverInfo, id *uint16, length *uintptr, buffer *uint16) (hr error) {
+	if hr = procGetLayerMountPath.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procGetLayerMountPath.Addr(), 4, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(length)), uintptr(unsafe.Pointer(buffer)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func getBaseImages(buffer **uint16) (hr error) {
+	if hr = procGetBaseImages.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procGetBaseImages.Addr(), 1, uintptr(unsafe.Pointer(buffer)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func importLayer(info *driverInfo, id string, path string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(path)
+	if hr != nil {
+		return
+	}
+	return _importLayer(info, _p0, _p1, descriptors)
+}
+
+func _importLayer(info *driverInfo, id *uint16, path *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p2 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p2 = &descriptors[0]
+	}
+	if hr = procImportLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procImportLayer.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(_p2)), uintptr(len(descriptors)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func layerExists(info *driverInfo, id string, exists *uint32) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _layerExists(info, _p0, exists)
+}
+
+func _layerExists(info *driverInfo, id *uint16, exists *uint32) (hr error) {
+	if hr = procLayerExists.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procLayerExists.Addr(), 3, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(exists)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func nameToGuid(name string, guid *GUID) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(name)
+	if hr != nil {
+		return
+	}
+	return _nameToGuid(_p0, guid)
+}
+
+func _nameToGuid(name *uint16, guid *GUID) (hr error) {
+	if hr = procNameToGuid.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procNameToGuid.Addr(), 2, uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(guid)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func prepareLayer(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _prepareLayer(info, _p0, descriptors)
+}
+
+func _prepareLayer(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR) (hr error) {
+	var _p1 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p1 = &descriptors[0]
+	}
+	if hr = procPrepareLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procPrepareLayer.Addr(), 4, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func unprepareLayer(info *driverInfo, id string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _unprepareLayer(info, _p0)
+}
+
+func _unprepareLayer(info *driverInfo, id *uint16) (hr error) {
+	if hr = procUnprepareLayer.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procUnprepareLayer.Addr(), 2, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func processBaseImage(path string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(path)
+	if hr != nil {
+		return
+	}
+	return _processBaseImage(_p0)
+}
+
+func _processBaseImage(path *uint16) (hr error) {
+	if hr = procProcessBaseImage.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procProcessBaseImage.Addr(), 1, uintptr(unsafe.Pointer(path)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func processUtilityImage(path string) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(path)
+	if hr != nil {
+		return
+	}
+	return _processUtilityImage(_p0)
+}
+
+func _processUtilityImage(path *uint16) (hr error) {
+	if hr = procProcessUtilityImage.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procProcessUtilityImage.Addr(), 1, uintptr(unsafe.Pointer(path)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func importLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _importLayerBegin(info, _p0, descriptors, context)
+}
+
+func _importLayerBegin(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
+	var _p1 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p1 = &descriptors[0]
+	}
+	if hr = procImportLayerBegin.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procImportLayerBegin.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), uintptr(unsafe.Pointer(context)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func importLayerNext(context uintptr, fileName string, fileInfo *winio.FileBasicInfo) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(fileName)
+	if hr != nil {
+		return
+	}
+	return _importLayerNext(context, _p0, fileInfo)
+}
+
+func _importLayerNext(context uintptr, fileName *uint16, fileInfo *winio.FileBasicInfo) (hr error) {
+	if hr = procImportLayerNext.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procImportLayerNext.Addr(), 3, uintptr(context), uintptr(unsafe.Pointer(fileName)), uintptr(unsafe.Pointer(fileInfo)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func importLayerWrite(context uintptr, buffer []byte) (hr error) {
+	var _p0 *byte
+	if len(buffer) > 0 {
+		_p0 = &buffer[0]
+	}
+	if hr = procImportLayerWrite.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procImportLayerWrite.Addr(), 3, uintptr(context), uintptr(unsafe.Pointer(_p0)), uintptr(len(buffer)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func importLayerEnd(context uintptr) (hr error) {
+	if hr = procImportLayerEnd.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procImportLayerEnd.Addr(), 1, uintptr(context), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func exportLayerBegin(info *driverInfo, id string, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _exportLayerBegin(info, _p0, descriptors, context)
+}
+
+func _exportLayerBegin(info *driverInfo, id *uint16, descriptors []WC_LAYER_DESCRIPTOR, context *uintptr) (hr error) {
+	var _p1 *WC_LAYER_DESCRIPTOR
+	if len(descriptors) > 0 {
+		_p1 = &descriptors[0]
+	}
+	if hr = procExportLayerBegin.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procExportLayerBegin.Addr(), 5, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(_p1)), uintptr(len(descriptors)), uintptr(unsafe.Pointer(context)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func exportLayerNext(context uintptr, fileName **uint16, fileInfo *winio.FileBasicInfo, fileSize *int64, deleted *uint32) (hr error) {
+	if hr = procExportLayerNext.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procExportLayerNext.Addr(), 5, uintptr(context), uintptr(unsafe.Pointer(fileName)), uintptr(unsafe.Pointer(fileInfo)), uintptr(unsafe.Pointer(fileSize)), uintptr(unsafe.Pointer(deleted)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func exportLayerRead(context uintptr, buffer []byte, bytesRead *uint32) (hr error) {
+	var _p0 *byte
+	if len(buffer) > 0 {
+		_p0 = &buffer[0]
+	}
+	if hr = procExportLayerRead.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procExportLayerRead.Addr(), 4, uintptr(context), uintptr(unsafe.Pointer(_p0)), uintptr(len(buffer)), uintptr(unsafe.Pointer(bytesRead)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func exportLayerEnd(context uintptr) (hr error) {
+	if hr = procExportLayerEnd.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procExportLayerEnd.Addr(), 1, uintptr(context), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsEnumerateComputeSystems(query string, computeSystems **uint16, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(query)
+	if hr != nil {
+		return
+	}
+	return _hcsEnumerateComputeSystems(_p0, computeSystems, result)
+}
+
+func _hcsEnumerateComputeSystems(query *uint16, computeSystems **uint16, result **uint16) (hr error) {
+	if hr = procHcsEnumerateComputeSystems.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsEnumerateComputeSystems.Addr(), 3, uintptr(unsafe.Pointer(query)), uintptr(unsafe.Pointer(computeSystems)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsCreateComputeSystem(id string, configuration string, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(configuration)
+	if hr != nil {
+		return
+	}
+	return _hcsCreateComputeSystem(_p0, _p1, identity, computeSystem, result)
+}
+
+func _hcsCreateComputeSystem(id *uint16, configuration *uint16, identity syscall.Handle, computeSystem *hcsSystem, result **uint16) (hr error) {
+	if hr = procHcsCreateComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsCreateComputeSystem.Addr(), 5, uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(configuration)), uintptr(identity), uintptr(unsafe.Pointer(computeSystem)), uintptr(unsafe.Pointer(result)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsOpenComputeSystem(id string, computeSystem *hcsSystem, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(id)
+	if hr != nil {
+		return
+	}
+	return _hcsOpenComputeSystem(_p0, computeSystem, result)
+}
+
+func _hcsOpenComputeSystem(id *uint16, computeSystem *hcsSystem, result **uint16) (hr error) {
+	if hr = procHcsOpenComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsOpenComputeSystem.Addr(), 3, uintptr(unsafe.Pointer(id)), uintptr(unsafe.Pointer(computeSystem)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsCloseComputeSystem(computeSystem hcsSystem) (hr error) {
+	if hr = procHcsCloseComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsCloseComputeSystem.Addr(), 1, uintptr(computeSystem), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsStartComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(options)
+	if hr != nil {
+		return
+	}
+	return _hcsStartComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsStartComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
+	if hr = procHcsStartComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsStartComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsShutdownComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(options)
+	if hr != nil {
+		return
+	}
+	return _hcsShutdownComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsShutdownComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
+	if hr = procHcsShutdownComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsShutdownComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsTerminateComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(options)
+	if hr != nil {
+		return
+	}
+	return _hcsTerminateComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsTerminateComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
+	if hr = procHcsTerminateComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsTerminateComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsPauseComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(options)
+	if hr != nil {
+		return
+	}
+	return _hcsPauseComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsPauseComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
+	if hr = procHcsPauseComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsPauseComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsResumeComputeSystem(computeSystem hcsSystem, options string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(options)
+	if hr != nil {
+		return
+	}
+	return _hcsResumeComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsResumeComputeSystem(computeSystem hcsSystem, options *uint16, result **uint16) (hr error) {
+	if hr = procHcsResumeComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsResumeComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(options)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery string, properties **uint16, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(propertyQuery)
+	if hr != nil {
+		return
+	}
+	return _hcsGetComputeSystemProperties(computeSystem, _p0, properties, result)
+}
+
+func _hcsGetComputeSystemProperties(computeSystem hcsSystem, propertyQuery *uint16, properties **uint16, result **uint16) (hr error) {
+	if hr = procHcsGetComputeSystemProperties.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsGetComputeSystemProperties.Addr(), 4, uintptr(computeSystem), uintptr(unsafe.Pointer(propertyQuery)), uintptr(unsafe.Pointer(properties)), uintptr(unsafe.Pointer(result)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsModifyComputeSystem(computeSystem hcsSystem, configuration string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(configuration)
+	if hr != nil {
+		return
+	}
+	return _hcsModifyComputeSystem(computeSystem, _p0, result)
+}
+
+func _hcsModifyComputeSystem(computeSystem hcsSystem, configuration *uint16, result **uint16) (hr error) {
+	if hr = procHcsModifyComputeSystem.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsModifyComputeSystem.Addr(), 3, uintptr(computeSystem), uintptr(unsafe.Pointer(configuration)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsRegisterComputeSystemCallback(computeSystem hcsSystem, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) {
+	if hr = procHcsRegisterComputeSystemCallback.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsRegisterComputeSystemCallback.Addr(), 4, uintptr(computeSystem), uintptr(callback), uintptr(context), uintptr(unsafe.Pointer(callbackHandle)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsUnregisterComputeSystemCallback(callbackHandle hcsCallback) (hr error) {
+	if hr = procHcsUnregisterComputeSystemCallback.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsUnregisterComputeSystemCallback.Addr(), 1, uintptr(callbackHandle), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsCreateProcess(computeSystem hcsSystem, processParameters string, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(processParameters)
+	if hr != nil {
+		return
+	}
+	return _hcsCreateProcess(computeSystem, _p0, processInformation, process, result)
+}
+
+func _hcsCreateProcess(computeSystem hcsSystem, processParameters *uint16, processInformation *hcsProcessInformation, process *hcsProcess, result **uint16) (hr error) {
+	if hr = procHcsCreateProcess.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsCreateProcess.Addr(), 5, uintptr(computeSystem), uintptr(unsafe.Pointer(processParameters)), uintptr(unsafe.Pointer(processInformation)), uintptr(unsafe.Pointer(process)), uintptr(unsafe.Pointer(result)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsOpenProcess(computeSystem hcsSystem, pid uint32, process *hcsProcess, result **uint16) (hr error) {
+	if hr = procHcsOpenProcess.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsOpenProcess.Addr(), 4, uintptr(computeSystem), uintptr(pid), uintptr(unsafe.Pointer(process)), uintptr(unsafe.Pointer(result)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsCloseProcess(process hcsProcess) (hr error) {
+	if hr = procHcsCloseProcess.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsCloseProcess.Addr(), 1, uintptr(process), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsTerminateProcess(process hcsProcess, result **uint16) (hr error) {
+	if hr = procHcsTerminateProcess.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsTerminateProcess.Addr(), 2, uintptr(process), uintptr(unsafe.Pointer(result)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsGetProcessInfo(process hcsProcess, processInformation *hcsProcessInformation, result **uint16) (hr error) {
+	if hr = procHcsGetProcessInfo.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsGetProcessInfo.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(processInformation)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsGetProcessProperties(process hcsProcess, processProperties **uint16, result **uint16) (hr error) {
+	if hr = procHcsGetProcessProperties.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsGetProcessProperties.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(processProperties)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsModifyProcess(process hcsProcess, settings string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(settings)
+	if hr != nil {
+		return
+	}
+	return _hcsModifyProcess(process, _p0, result)
+}
+
+func _hcsModifyProcess(process hcsProcess, settings *uint16, result **uint16) (hr error) {
+	if hr = procHcsModifyProcess.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsModifyProcess.Addr(), 3, uintptr(process), uintptr(unsafe.Pointer(settings)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsGetServiceProperties(propertyQuery string, properties **uint16, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(propertyQuery)
+	if hr != nil {
+		return
+	}
+	return _hcsGetServiceProperties(_p0, properties, result)
+}
+
+func _hcsGetServiceProperties(propertyQuery *uint16, properties **uint16, result **uint16) (hr error) {
+	if hr = procHcsGetServiceProperties.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsGetServiceProperties.Addr(), 3, uintptr(unsafe.Pointer(propertyQuery)), uintptr(unsafe.Pointer(properties)), uintptr(unsafe.Pointer(result)))
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsRegisterProcessCallback(process hcsProcess, callback uintptr, context uintptr, callbackHandle *hcsCallback) (hr error) {
+	if hr = procHcsRegisterProcessCallback.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHcsRegisterProcessCallback.Addr(), 4, uintptr(process), uintptr(callback), uintptr(context), uintptr(unsafe.Pointer(callbackHandle)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsUnregisterProcessCallback(callbackHandle hcsCallback) (hr error) {
+	if hr = procHcsUnregisterProcessCallback.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsUnregisterProcessCallback.Addr(), 1, uintptr(callbackHandle), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func hcsModifyServiceSettings(settings string, result **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(settings)
+	if hr != nil {
+		return
+	}
+	return _hcsModifyServiceSettings(_p0, result)
+}
+
+func _hcsModifyServiceSettings(settings *uint16, result **uint16) (hr error) {
+	if hr = procHcsModifyServiceSettings.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall(procHcsModifyServiceSettings.Addr(), 2, uintptr(unsafe.Pointer(settings)), uintptr(unsafe.Pointer(result)), 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func _hnsCall(method string, path string, object string, response **uint16) (hr error) {
+	var _p0 *uint16
+	_p0, hr = syscall.UTF16PtrFromString(method)
+	if hr != nil {
+		return
+	}
+	var _p1 *uint16
+	_p1, hr = syscall.UTF16PtrFromString(path)
+	if hr != nil {
+		return
+	}
+	var _p2 *uint16
+	_p2, hr = syscall.UTF16PtrFromString(object)
+	if hr != nil {
+		return
+	}
+	return __hnsCall(_p0, _p1, _p2, response)
+}
+
+func __hnsCall(method *uint16, path *uint16, object *uint16, response **uint16) (hr error) {
+	if hr = procHNSCall.Find(); hr != nil {
+		return
+	}
+	r0, _, _ := syscall.Syscall6(procHNSCall.Addr(), 4, uintptr(unsafe.Pointer(method)), uintptr(unsafe.Pointer(path)), uintptr(unsafe.Pointer(object)), uintptr(unsafe.Pointer(response)), 0, 0)
+	if int32(r0) < 0 {
+		hr = syscall.Errno(win32FromHresult(r0))
+	}
+	return
+}
+
+func ntCreateFile(handle *uintptr, accessMask uint32, oa *objectAttributes, iosb *ioStatusBlock, allocationSize *uint64, fileAttributes uint32, shareAccess uint32, createDisposition uint32, createOptions uint32, eaBuffer *byte, eaLength uint32) (status uint32) {
+	r0, _, _ := syscall.Syscall12(procNtCreateFile.Addr(), 11, uintptr(unsafe.Pointer(handle)), uintptr(accessMask), uintptr(unsafe.Pointer(oa)), uintptr(unsafe.Pointer(iosb)), uintptr(unsafe.Pointer(allocationSize)), uintptr(fileAttributes), uintptr(shareAccess), uintptr(createDisposition), uintptr(createOptions), uintptr(unsafe.Pointer(eaBuffer)), uintptr(eaLength), 0)
+	status = uint32(r0)
+	return
+}
+
+func ntSetInformationFile(handle uintptr, iosb *ioStatusBlock, information uintptr, length uint32, class uint32) (status uint32) {
+	r0, _, _ := syscall.Syscall6(procNtSetInformationFile.Addr(), 5, uintptr(handle), uintptr(unsafe.Pointer(iosb)), uintptr(information), uintptr(length), uintptr(class), 0)
+	status = uint32(r0)
+	return
+}
+
+func rtlNtStatusToDosError(status uint32) (winerr error) {
+	r0, _, _ := syscall.Syscall(procRtlNtStatusToDosErrorNoTeb.Addr(), 1, uintptr(status), 0, 0)
+	if r0 != 0 {
+		winerr = syscall.Errno(r0)
+	}
+	return
+}
+
+func localAlloc(flags uint32, size int) (ptr uintptr) {
+	r0, _, _ := syscall.Syscall(procLocalAlloc.Addr(), 2, uintptr(flags), uintptr(size), 0)
+	ptr = uintptr(r0)
+	return
+}
+
+func localFree(ptr uintptr) {
+	syscall.Syscall(procLocalFree.Addr(), 1, uintptr(ptr), 0, 0)
+	return
+}
diff --git a/vendor/github.com/Nvveen/Gotty/LICENSE b/vendor/github.com/Nvveen/Gotty/LICENSE
new file mode 100644
index 0000000000..0b71c97360
--- /dev/null
+++ b/vendor/github.com/Nvveen/Gotty/LICENSE
@@ -0,0 +1,26 @@
+Copyright (c) 2012, Neal van Veen (nealvanveen@gmail.com)
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met: 
+
+1. Redistributions of source code must retain the above copyright notice, this
+   list of conditions and the following disclaimer. 
+2. Redistributions in binary form must reproduce the above copyright notice,
+   this list of conditions and the following disclaimer in the documentation
+   and/or other materials provided with the distribution. 
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
+ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+The views and conclusions contained in the software and documentation are those
+of the authors and should not be interpreted as representing official policies, 
+either expressed or implied, of the FreeBSD Project.
diff --git a/vendor/github.com/Nvveen/Gotty/attributes.go b/vendor/github.com/Nvveen/Gotty/attributes.go
new file mode 100644
index 0000000000..a4c005fae5
--- /dev/null
+++ b/vendor/github.com/Nvveen/Gotty/attributes.go
@@ -0,0 +1,514 @@
+// Copyright 2012 Neal van Veen. All rights reserved.
+// Usage of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+package gotty
+
+// Boolean capabilities
+var BoolAttr = [...]string{
+	"auto_left_margin", "bw",
+	"auto_right_margin", "am",
+	"no_esc_ctlc", "xsb",
+	"ceol_standout_glitch", "xhp",
+	"eat_newline_glitch", "xenl",
+	"erase_overstrike", "eo",
+	"generic_type", "gn",
+	"hard_copy", "hc",
+	"has_meta_key", "km",
+	"has_status_line", "hs",
+	"insert_null_glitch", "in",
+	"memory_above", "da",
+	"memory_below", "db",
+	"move_insert_mode", "mir",
+	"move_standout_mode", "msgr",
+	"over_strike", "os",
+	"status_line_esc_ok", "eslok",
+	"dest_tabs_magic_smso", "xt",
+	"tilde_glitch", "hz",
+	"transparent_underline", "ul",
+	"xon_xoff", "nxon",
+	"needs_xon_xoff", "nxon",
+	"prtr_silent", "mc5i",
+	"hard_cursor", "chts",
+	"non_rev_rmcup", "nrrmc",
+	"no_pad_char", "npc",
+	"non_dest_scroll_region", "ndscr",
+	"can_change", "ccc",
+	"back_color_erase", "bce",
+	"hue_lightness_saturation", "hls",
+	"col_addr_glitch", "xhpa",
+	"cr_cancels_micro_mode", "crxm",
+	"has_print_wheel", "daisy",
+	"row_addr_glitch", "xvpa",
+	"semi_auto_right_margin", "sam",
+	"cpi_changes_res", "cpix",
+	"lpi_changes_res", "lpix",
+	"backspaces_with_bs", "",
+	"crt_no_scrolling", "",
+	"no_correctly_working_cr", "",
+	"gnu_has_meta_key", "",
+	"linefeed_is_newline", "",
+	"has_hardware_tabs", "",
+	"return_does_clr_eol", "",
+}
+
+// Numerical capabilities
+var NumAttr = [...]string{
+	"columns", "cols",
+	"init_tabs", "it",
+	"lines", "lines",
+	"lines_of_memory", "lm",
+	"magic_cookie_glitch", "xmc",
+	"padding_baud_rate", "pb",
+	"virtual_terminal", "vt",
+	"width_status_line", "wsl",
+	"num_labels", "nlab",
+	"label_height", "lh",
+	"label_width", "lw",
+	"max_attributes", "ma",
+	"maximum_windows", "wnum",
+	"max_colors", "colors",
+	"max_pairs", "pairs",
+	"no_color_video", "ncv",
+	"buffer_capacity", "bufsz",
+	"dot_vert_spacing", "spinv",
+	"dot_horz_spacing", "spinh",
+	"max_micro_address", "maddr",
+	"max_micro_jump", "mjump",
+	"micro_col_size", "mcs",
+	"micro_line_size", "mls",
+	"number_of_pins", "npins",
+	"output_res_char", "orc",
+	"output_res_line", "orl",
+	"output_res_horz_inch", "orhi",
+	"output_res_vert_inch", "orvi",
+	"print_rate", "cps",
+	"wide_char_size", "widcs",
+	"buttons", "btns",
+	"bit_image_entwining", "bitwin",
+	"bit_image_type", "bitype",
+	"magic_cookie_glitch_ul", "",
+	"carriage_return_delay", "",
+	"new_line_delay", "",
+	"backspace_delay", "",
+	"horizontal_tab_delay", "",
+	"number_of_function_keys", "",
+}
+
+// String capabilities
+var StrAttr = [...]string{
+	"back_tab", "cbt",
+	"bell", "bel",
+	"carriage_return", "cr",
+	"change_scroll_region", "csr",
+	"clear_all_tabs", "tbc",
+	"clear_screen", "clear",
+	"clr_eol", "el",
+	"clr_eos", "ed",
+	"column_address", "hpa",
+	"command_character", "cmdch",
+	"cursor_address", "cup",
+	"cursor_down", "cud1",
+	"cursor_home", "home",
+	"cursor_invisible", "civis",
+	"cursor_left", "cub1",
+	"cursor_mem_address", "mrcup",
+	"cursor_normal", "cnorm",
+	"cursor_right", "cuf1",
+	"cursor_to_ll", "ll",
+	"cursor_up", "cuu1",
+	"cursor_visible", "cvvis",
+	"delete_character", "dch1",
+	"delete_line", "dl1",
+	"dis_status_line", "dsl",
+	"down_half_line", "hd",
+	"enter_alt_charset_mode", "smacs",
+	"enter_blink_mode", "blink",
+	"enter_bold_mode", "bold",
+	"enter_ca_mode", "smcup",
+	"enter_delete_mode", "smdc",
+	"enter_dim_mode", "dim",
+	"enter_insert_mode", "smir",
+	"enter_secure_mode", "invis",
+	"enter_protected_mode", "prot",
+	"enter_reverse_mode", "rev",
+	"enter_standout_mode", "smso",
+	"enter_underline_mode", "smul",
+	"erase_chars", "ech",
+	"exit_alt_charset_mode", "rmacs",
+	"exit_attribute_mode", "sgr0",
+	"exit_ca_mode", "rmcup",
+	"exit_delete_mode", "rmdc",
+	"exit_insert_mode", "rmir",
+	"exit_standout_mode", "rmso",
+	"exit_underline_mode", "rmul",
+	"flash_screen", "flash",
+	"form_feed", "ff",
+	"from_status_line", "fsl",
+	"init_1string", "is1",
+	"init_2string", "is2",
+	"init_3string", "is3",
+	"init_file", "if",
+	"insert_character", "ich1",
+	"insert_line", "il1",
+	"insert_padding", "ip",
+	"key_backspace", "kbs",
+	"key_catab", "ktbc",
+	"key_clear", "kclr",
+	"key_ctab", "kctab",
+	"key_dc", "kdch1",
+	"key_dl", "kdl1",
+	"key_down", "kcud1",
+	"key_eic", "krmir",
+	"key_eol", "kel",
+	"key_eos", "ked",
+	"key_f0", "kf0",
+	"key_f1", "kf1",
+	"key_f10", "kf10",
+	"key_f2", "kf2",
+	"key_f3", "kf3",
+	"key_f4", "kf4",
+	"key_f5", "kf5",
+	"key_f6", "kf6",
+	"key_f7", "kf7",
+	"key_f8", "kf8",
+	"key_f9", "kf9",
+	"key_home", "khome",
+	"key_ic", "kich1",
+	"key_il", "kil1",
+	"key_left", "kcub1",
+	"key_ll", "kll",
+	"key_npage", "knp",
+	"key_ppage", "kpp",
+	"key_right", "kcuf1",
+	"key_sf", "kind",
+	"key_sr", "kri",
+	"key_stab", "khts",
+	"key_up", "kcuu1",
+	"keypad_local", "rmkx",
+	"keypad_xmit", "smkx",
+	"lab_f0", "lf0",
+	"lab_f1", "lf1",
+	"lab_f10", "lf10",
+	"lab_f2", "lf2",
+	"lab_f3", "lf3",
+	"lab_f4", "lf4",
+	"lab_f5", "lf5",
+	"lab_f6", "lf6",
+	"lab_f7", "lf7",
+	"lab_f8", "lf8",
+	"lab_f9", "lf9",
+	"meta_off", "rmm",
+	"meta_on", "smm",
+	"newline", "_glitch",
+	"pad_char", "npc",
+	"parm_dch", "dch",
+	"parm_delete_line", "dl",
+	"parm_down_cursor", "cud",
+	"parm_ich", "ich",
+	"parm_index", "indn",
+	"parm_insert_line", "il",
+	"parm_left_cursor", "cub",
+	"parm_right_cursor", "cuf",
+	"parm_rindex", "rin",
+	"parm_up_cursor", "cuu",
+	"pkey_key", "pfkey",
+	"pkey_local", "pfloc",
+	"pkey_xmit", "pfx",
+	"print_screen", "mc0",
+	"prtr_off", "mc4",
+	"prtr_on", "mc5",
+	"repeat_char", "rep",
+	"reset_1string", "rs1",
+	"reset_2string", "rs2",
+	"reset_3string", "rs3",
+	"reset_file", "rf",
+	"restore_cursor", "rc",
+	"row_address", "mvpa",
+	"save_cursor", "row_address",
+	"scroll_forward", "ind",
+	"scroll_reverse", "ri",
+	"set_attributes", "sgr",
+	"set_tab", "hts",
+	"set_window", "wind",
+	"tab", "s_magic_smso",
+	"to_status_line", "tsl",
+	"underline_char", "uc",
+	"up_half_line", "hu",
+	"init_prog", "iprog",
+	"key_a1", "ka1",
+	"key_a3", "ka3",
+	"key_b2", "kb2",
+	"key_c1", "kc1",
+	"key_c3", "kc3",
+	"prtr_non", "mc5p",
+	"char_padding", "rmp",
+	"acs_chars", "acsc",
+	"plab_norm", "pln",
+	"key_btab", "kcbt",
+	"enter_xon_mode", "smxon",
+	"exit_xon_mode", "rmxon",
+	"enter_am_mode", "smam",
+	"exit_am_mode", "rmam",
+	"xon_character", "xonc",
+	"xoff_character", "xoffc",
+	"ena_acs", "enacs",
+	"label_on", "smln",
+	"label_off", "rmln",
+	"key_beg", "kbeg",
+	"key_cancel", "kcan",
+	"key_close", "kclo",
+	"key_command", "kcmd",
+	"key_copy", "kcpy",
+	"key_create", "kcrt",
+	"key_end", "kend",
+	"key_enter", "kent",
+	"key_exit", "kext",
+	"key_find", "kfnd",
+	"key_help", "khlp",
+	"key_mark", "kmrk",
+	"key_message", "kmsg",
+	"key_move", "kmov",
+	"key_next", "knxt",
+	"key_open", "kopn",
+	"key_options", "kopt",
+	"key_previous", "kprv",
+	"key_print", "kprt",
+	"key_redo", "krdo",
+	"key_reference", "kref",
+	"key_refresh", "krfr",
+	"key_replace", "krpl",
+	"key_restart", "krst",
+	"key_resume", "kres",
+	"key_save", "ksav",
+	"key_suspend", "kspd",
+	"key_undo", "kund",
+	"key_sbeg", "kBEG",
+	"key_scancel", "kCAN",
+	"key_scommand", "kCMD",
+	"key_scopy", "kCPY",
+	"key_screate", "kCRT",
+	"key_sdc", "kDC",
+	"key_sdl", "kDL",
+	"key_select", "kslt",
+	"key_send", "kEND",
+	"key_seol", "kEOL",
+	"key_sexit", "kEXT",
+	"key_sfind", "kFND",
+	"key_shelp", "kHLP",
+	"key_shome", "kHOM",
+	"key_sic", "kIC",
+	"key_sleft", "kLFT",
+	"key_smessage", "kMSG",
+	"key_smove", "kMOV",
+	"key_snext", "kNXT",
+	"key_soptions", "kOPT",
+	"key_sprevious", "kPRV",
+	"key_sprint", "kPRT",
+	"key_sredo", "kRDO",
+	"key_sreplace", "kRPL",
+	"key_sright", "kRIT",
+	"key_srsume", "kRES",
+	"key_ssave", "kSAV",
+	"key_ssuspend", "kSPD",
+	"key_sundo", "kUND",
+	"req_for_input", "rfi",
+	"key_f11", "kf11",
+	"key_f12", "kf12",
+	"key_f13", "kf13",
+	"key_f14", "kf14",
+	"key_f15", "kf15",
+	"key_f16", "kf16",
+	"key_f17", "kf17",
+	"key_f18", "kf18",
+	"key_f19", "kf19",
+	"key_f20", "kf20",
+	"key_f21", "kf21",
+	"key_f22", "kf22",
+	"key_f23", "kf23",
+	"key_f24", "kf24",
+	"key_f25", "kf25",
+	"key_f26", "kf26",
+	"key_f27", "kf27",
+	"key_f28", "kf28",
+	"key_f29", "kf29",
+	"key_f30", "kf30",
+	"key_f31", "kf31",
+	"key_f32", "kf32",
+	"key_f33", "kf33",
+	"key_f34", "kf34",
+	"key_f35", "kf35",
+	"key_f36", "kf36",
+	"key_f37", "kf37",
+	"key_f38", "kf38",
+	"key_f39", "kf39",
+	"key_f40", "kf40",
+	"key_f41", "kf41",
+	"key_f42", "kf42",
+	"key_f43", "kf43",
+	"key_f44", "kf44",
+	"key_f45", "kf45",
+	"key_f46", "kf46",
+	"key_f47", "kf47",
+	"key_f48", "kf48",
+	"key_f49", "kf49",
+	"key_f50", "kf50",
+	"key_f51", "kf51",
+	"key_f52", "kf52",
+	"key_f53", "kf53",
+	"key_f54", "kf54",
+	"key_f55", "kf55",
+	"key_f56", "kf56",
+	"key_f57", "kf57",
+	"key_f58", "kf58",
+	"key_f59", "kf59",
+	"key_f60", "kf60",
+	"key_f61", "kf61",
+	"key_f62", "kf62",
+	"key_f63", "kf63",
+	"clr_bol", "el1",
+	"clear_margins", "mgc",
+	"set_left_margin", "smgl",
+	"set_right_margin", "smgr",
+	"label_format", "fln",
+	"set_clock", "sclk",
+	"display_clock", "dclk",
+	"remove_clock", "rmclk",
+	"create_window", "cwin",
+	"goto_window", "wingo",
+	"hangup", "hup",
+	"dial_phone", "dial",
+	"quick_dial", "qdial",
+	"tone", "tone",
+	"pulse", "pulse",
+	"flash_hook", "hook",
+	"fixed_pause", "pause",
+	"wait_tone", "wait",
+	"user0", "u0",
+	"user1", "u1",
+	"user2", "u2",
+	"user3", "u3",
+	"user4", "u4",
+	"user5", "u5",
+	"user6", "u6",
+	"user7", "u7",
+	"user8", "u8",
+	"user9", "u9",
+	"orig_pair", "op",
+	"orig_colors", "oc",
+	"initialize_color", "initc",
+	"initialize_pair", "initp",
+	"set_color_pair", "scp",
+	"set_foreground", "setf",
+	"set_background", "setb",
+	"change_char_pitch", "cpi",
+	"change_line_pitch", "lpi",
+	"change_res_horz", "chr",
+	"change_res_vert", "cvr",
+	"define_char", "defc",
+	"enter_doublewide_mode", "swidm",
+	"enter_draft_quality", "sdrfq",
+	"enter_italics_mode", "sitm",
+	"enter_leftward_mode", "slm",
+	"enter_micro_mode", "smicm",
+	"enter_near_letter_quality", "snlq",
+	"enter_normal_quality", "snrmq",
+	"enter_shadow_mode", "sshm",
+	"enter_subscript_mode", "ssubm",
+	"enter_superscript_mode", "ssupm",
+	"enter_upward_mode", "sum",
+	"exit_doublewide_mode", "rwidm",
+	"exit_italics_mode", "ritm",
+	"exit_leftward_mode", "rlm",
+	"exit_micro_mode", "rmicm",
+	"exit_shadow_mode", "rshm",
+	"exit_subscript_mode", "rsubm",
+	"exit_superscript_mode", "rsupm",
+	"exit_upward_mode", "rum",
+	"micro_column_address", "mhpa",
+	"micro_down", "mcud1",
+	"micro_left", "mcub1",
+	"micro_right", "mcuf1",
+	"micro_row_address", "mvpa",
+	"micro_up", "mcuu1",
+	"order_of_pins", "porder",
+	"parm_down_micro", "mcud",
+	"parm_left_micro", "mcub",
+	"parm_right_micro", "mcuf",
+	"parm_up_micro", "mcuu",
+	"select_char_set", "scs",
+	"set_bottom_margin", "smgb",
+	"set_bottom_margin_parm", "smgbp",
+	"set_left_margin_parm", "smglp",
+	"set_right_margin_parm", "smgrp",
+	"set_top_margin", "smgt",
+	"set_top_margin_parm", "smgtp",
+	"start_bit_image", "sbim",
+	"start_char_set_def", "scsd",
+	"stop_bit_image", "rbim",
+	"stop_char_set_def", "rcsd",
+	"subscript_characters", "subcs",
+	"superscript_characters", "supcs",
+	"these_cause_cr", "docr",
+	"zero_motion", "zerom",
+	"char_set_names", "csnm",
+	"key_mouse", "kmous",
+	"mouse_info", "minfo",
+	"req_mouse_pos", "reqmp",
+	"get_mouse", "getm",
+	"set_a_foreground", "setaf",
+	"set_a_background", "setab",
+	"pkey_plab", "pfxl",
+	"device_type", "devt",
+	"code_set_init", "csin",
+	"set0_des_seq", "s0ds",
+	"set1_des_seq", "s1ds",
+	"set2_des_seq", "s2ds",
+	"set3_des_seq", "s3ds",
+	"set_lr_margin", "smglr",
+	"set_tb_margin", "smgtb",
+	"bit_image_repeat", "birep",
+	"bit_image_newline", "binel",
+	"bit_image_carriage_return", "bicr",
+	"color_names", "colornm",
+	"define_bit_image_region", "defbi",
+	"end_bit_image_region", "endbi",
+	"set_color_band", "setcolor",
+	"set_page_length", "slines",
+	"display_pc_char", "dispc",
+	"enter_pc_charset_mode", "smpch",
+	"exit_pc_charset_mode", "rmpch",
+	"enter_scancode_mode", "smsc",
+	"exit_scancode_mode", "rmsc",
+	"pc_term_options", "pctrm",
+	"scancode_escape", "scesc",
+	"alt_scancode_esc", "scesa",
+	"enter_horizontal_hl_mode", "ehhlm",
+	"enter_left_hl_mode", "elhlm",
+	"enter_low_hl_mode", "elohlm",
+	"enter_right_hl_mode", "erhlm",
+	"enter_top_hl_mode", "ethlm",
+	"enter_vertical_hl_mode", "evhlm",
+	"set_a_attributes", "sgr1",
+	"set_pglen_inch", "slength",
+	"termcap_init2", "",
+	"termcap_reset", "",
+	"linefeed_if_not_lf", "",
+	"backspace_if_not_bs", "",
+	"other_non_function_keys", "",
+	"arrow_key_map", "",
+	"acs_ulcorner", "",
+	"acs_llcorner", "",
+	"acs_urcorner", "",
+	"acs_lrcorner", "",
+	"acs_ltee", "",
+	"acs_rtee", "",
+	"acs_btee", "",
+	"acs_ttee", "",
+	"acs_hline", "",
+	"acs_vline", "",
+	"acs_plus", "",
+	"memory_lock", "",
+	"memory_unlock", "",
+	"box_chars_1", "",
+}
diff --git a/vendor/github.com/Nvveen/Gotty/gotty.go b/vendor/github.com/Nvveen/Gotty/gotty.go
new file mode 100644
index 0000000000..093cbf37e1
--- /dev/null
+++ b/vendor/github.com/Nvveen/Gotty/gotty.go
@@ -0,0 +1,238 @@
+// Copyright 2012 Neal van Veen. All rights reserved.
+// Usage of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+// Gotty is a Go-package for reading and parsing the terminfo database
+package gotty
+
+// TODO add more concurrency to name lookup, look for more opportunities.
+
+import (
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"os"
+	"reflect"
+	"strings"
+	"sync"
+)
+
+// Open a terminfo file by the name given and construct a TermInfo object.
+// If something went wrong reading the terminfo database file, an error is
+// returned.
+func OpenTermInfo(termName string) (*TermInfo, error) {
+	var term *TermInfo
+	var err error
+	// Find the environment variables
+	termloc := os.Getenv("TERMINFO")
+	if len(termloc) == 0 {
+		// Search like ncurses
+		locations := []string{os.Getenv("HOME") + "/.terminfo/", "/etc/terminfo/",
+			"/lib/terminfo/", "/usr/share/terminfo/"}
+		var path string
+		for _, str := range locations {
+			// Construct path
+			path = str + string(termName[0]) + "/" + termName
+			// Check if path can be opened
+			file, _ := os.Open(path)
+			if file != nil {
+				// Path can open, fall out and use current path
+				file.Close()
+				break
+			}
+		}
+		if len(path) > 0 {
+			term, err = readTermInfo(path)
+		} else {
+			err = errors.New(fmt.Sprintf("No terminfo file(-location) found"))
+		}
+	}
+	return term, err
+}
+
+// Open a terminfo file from the environment variable containing the current
+// terminal name and construct a TermInfo object. If something went wrong
+// reading the terminfo database file, an error is returned.
+func OpenTermInfoEnv() (*TermInfo, error) {
+	termenv := os.Getenv("TERM")
+	return OpenTermInfo(termenv)
+}
+
+// Return an attribute by the name attr provided. If none can be found,
+// an error is returned.
+func (term *TermInfo) GetAttribute(attr string) (stacker, error) {
+	// Channel to store the main value in.
+	var value stacker
+	// Add a blocking WaitGroup
+	var block sync.WaitGroup
+	// Keep track of variable being written.
+	written := false
+	// Function to put into goroutine.
+	f := func(ats interface{}) {
+		var ok bool
+		var v stacker
+		// Switch on type of map to use and assign value to it.
+		switch reflect.TypeOf(ats).Elem().Kind() {
+		case reflect.Bool:
+			v, ok = ats.(map[string]bool)[attr]
+		case reflect.Int16:
+			v, ok = ats.(map[string]int16)[attr]
+		case reflect.String:
+			v, ok = ats.(map[string]string)[attr]
+		}
+		// If ok, a value is found, so we can write.
+		if ok {
+			value = v
+			written = true
+		}
+		// Goroutine is done
+		block.Done()
+	}
+	block.Add(3)
+	// Go for all 3 attribute lists.
+	go f(term.boolAttributes)
+	go f(term.numAttributes)
+	go f(term.strAttributes)
+	// Wait until every goroutine is done.
+	block.Wait()
+	// If a value has been written, return it.
+	if written {
+		return value, nil
+	}
+	// Otherwise, error.
+	return nil, fmt.Errorf("Erorr finding attribute")
+}
+
+// Return an attribute by the name attr provided. If none can be found,
+// an error is returned. A name is first converted to its termcap value.
+func (term *TermInfo) GetAttributeName(name string) (stacker, error) {
+	tc := GetTermcapName(name)
+	return term.GetAttribute(tc)
+}
+
+// A utility function that finds and returns the termcap equivalent of a 
+// variable name.
+func GetTermcapName(name string) string {
+	// Termcap name
+	var tc string
+	// Blocking group
+	var wait sync.WaitGroup
+	// Function to put into a goroutine
+	f := func(attrs []string) {
+		// Find the string corresponding to the name
+		for i, s := range attrs {
+			if s == name {
+				tc = attrs[i+1]
+			}
+		}
+		// Goroutine is finished
+		wait.Done()
+	}
+	wait.Add(3)
+	// Go for all 3 attribute lists
+	go f(BoolAttr[:])
+	go f(NumAttr[:])
+	go f(StrAttr[:])
+	// Wait until every goroutine is done
+	wait.Wait()
+	// Return the termcap name
+	return tc
+}
+
+// This function takes a path to a terminfo file and reads it in binary
+// form to construct the actual TermInfo file.
+func readTermInfo(path string) (*TermInfo, error) {
+	// Open the terminfo file
+	file, err := os.Open(path)
+	defer file.Close()
+	if err != nil {
+		return nil, err
+	}
+
+	// magic, nameSize, boolSize, nrSNum, nrOffsetsStr, strSize
+	// Header is composed of the magic 0432 octal number, size of the name
+	// section, size of the boolean section, the amount of number values,
+	// the number of offsets of strings, and the size of the string section.
+	var header [6]int16
+	// Byte array is used to read in byte values
+	var byteArray []byte
+	// Short array is used to read in short values
+	var shArray []int16
+	// TermInfo object to store values
+	var term TermInfo
+
+	// Read in the header
+	err = binary.Read(file, binary.LittleEndian, &header)
+	if err != nil {
+		return nil, err
+	}
+	// If magic number isn't there or isn't correct, we have the wrong filetype
+	if header[0] != 0432 {
+		return nil, errors.New(fmt.Sprintf("Wrong filetype"))
+	}
+
+	// Read in the names
+	byteArray = make([]byte, header[1])
+	err = binary.Read(file, binary.LittleEndian, &byteArray)
+	if err != nil {
+		return nil, err
+	}
+	term.Names = strings.Split(string(byteArray), "|")
+
+	// Read in the booleans
+	byteArray = make([]byte, header[2])
+	err = binary.Read(file, binary.LittleEndian, &byteArray)
+	if err != nil {
+		return nil, err
+	}
+	term.boolAttributes = make(map[string]bool)
+	for i, b := range byteArray {
+		if b == 1 {
+			term.boolAttributes[BoolAttr[i*2+1]] = true
+		}
+	}
+	// If the number of bytes read is not even, a byte for alignment is added
+	if len(byteArray)%2 != 0 {
+		err = binary.Read(file, binary.LittleEndian, make([]byte, 1))
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	// Read in shorts
+	shArray = make([]int16, header[3])
+	err = binary.Read(file, binary.LittleEndian, &shArray)
+	if err != nil {
+		return nil, err
+	}
+	term.numAttributes = make(map[string]int16)
+	for i, n := range shArray {
+		if n != 0377 && n > -1 {
+			term.numAttributes[NumAttr[i*2+1]] = n
+		}
+	}
+
+	// Read the offsets into the short array
+	shArray = make([]int16, header[4])
+	err = binary.Read(file, binary.LittleEndian, &shArray)
+	if err != nil {
+		return nil, err
+	}
+	// Read the actual strings in the byte array
+	byteArray = make([]byte, header[5])
+	err = binary.Read(file, binary.LittleEndian, &byteArray)
+	if err != nil {
+		return nil, err
+	}
+	term.strAttributes = make(map[string]string)
+	// We get an offset, and then iterate until the string is null-terminated
+	for i, offset := range shArray {
+		if offset > -1 {
+			r := offset
+			for ; byteArray[r] != 0; r++ {
+			}
+			term.strAttributes[StrAttr[i*2+1]] = string(byteArray[offset:r])
+		}
+	}
+	return &term, nil
+}
diff --git a/vendor/github.com/Nvveen/Gotty/parser.go b/vendor/github.com/Nvveen/Gotty/parser.go
new file mode 100644
index 0000000000..a9d5d23c54
--- /dev/null
+++ b/vendor/github.com/Nvveen/Gotty/parser.go
@@ -0,0 +1,362 @@
+// Copyright 2012 Neal van Veen. All rights reserved.
+// Usage of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+package gotty
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"regexp"
+	"strconv"
+	"strings"
+)
+
+var exp = [...]string{
+	"%%",
+	"%c",
+	"%s",
+	"%p(\\d)",
+	"%P([A-z])",
+	"%g([A-z])",
+	"%'(.)'",
+	"%{([0-9]+)}",
+	"%l",
+	"%\\+|%-|%\\*|%/|%m",
+	"%&|%\\||%\\^",
+	"%=|%>|%<",
+	"%A|%O",
+	"%!|%~",
+	"%i",
+	"%(:[\\ #\\-\\+]{0,4})?(\\d+\\.\\d+|\\d+)?[doxXs]",
+	"%\\?(.*?);",
+}
+
+var regex *regexp.Regexp
+var staticVar map[byte]stacker
+
+// Parses the attribute that is received with name attr and parameters params.
+func (term *TermInfo) Parse(attr string, params ...interface{}) (string, error) {
+	// Get the attribute name first.
+	iface, err := term.GetAttribute(attr)
+	str, ok := iface.(string)
+	if err != nil {
+		return "", err
+	}
+	if !ok {
+		return str, errors.New("Only string capabilities can be parsed.")
+	}
+	// Construct the hidden parser struct so we can use a recursive stack based
+	// parser.
+	ps := &parser{}
+	// Dynamic variables only exist in this context.
+	ps.dynamicVar = make(map[byte]stacker, 26)
+	ps.parameters = make([]stacker, len(params))
+	// Convert the parameters to insert them into the parser struct.
+	for i, x := range params {
+		ps.parameters[i] = x
+	}
+	// Recursively walk and return.
+	result, err := ps.walk(str)
+	return result, err
+}
+
+// Parses the attribute that is received with name attr and parameters params.
+// Only works on full name of a capability that is given, which it uses to
+// search for the termcap name.
+func (term *TermInfo) ParseName(attr string, params ...interface{}) (string, error) {
+	tc := GetTermcapName(attr)
+	return term.Parse(tc, params)
+}
+
+// Identify each token in a stack based manner and do the actual parsing.
+func (ps *parser) walk(attr string) (string, error) {
+	// We use a buffer to get the modified string.
+	var buf bytes.Buffer
+	// Next, find and identify all tokens by their indices and strings.
+	tokens := regex.FindAllStringSubmatch(attr, -1)
+	if len(tokens) == 0 {
+		return attr, nil
+	}
+	indices := regex.FindAllStringIndex(attr, -1)
+	q := 0 // q counts the matches of one token
+	// Iterate through the string per character.
+	for i := 0; i < len(attr); i++ {
+		// If the current position is an identified token, execute the following
+		// steps.
+		if q < len(indices) && i >= indices[q][0] && i < indices[q][1] {
+			// Switch on token.
+			switch {
+			case tokens[q][0][:2] == "%%":
+				// Literal percentage character.
+				buf.WriteByte('%')
+			case tokens[q][0][:2] == "%c":
+				// Pop a character.
+				c, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				buf.WriteByte(c.(byte))
+			case tokens[q][0][:2] == "%s":
+				// Pop a string.
+				str, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				if _, ok := str.(string); !ok {
+					return buf.String(), errors.New("Stack head is not a string")
+				}
+				buf.WriteString(str.(string))
+			case tokens[q][0][:2] == "%p":
+				// Push a parameter on the stack.
+				index, err := strconv.ParseInt(tokens[q][1], 10, 8)
+				index--
+				if err != nil {
+					return buf.String(), err
+				}
+				if int(index) >= len(ps.parameters) {
+					return buf.String(), errors.New("Parameters index out of bound")
+				}
+				ps.st.push(ps.parameters[index])
+			case tokens[q][0][:2] == "%P":
+				// Pop a variable from the stack as a dynamic or static variable.
+				val, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				index := tokens[q][2]
+				if len(index) > 1 {
+					errorStr := fmt.Sprintf("%s is not a valid dynamic variables index",
+						index)
+					return buf.String(), errors.New(errorStr)
+				}
+				// Specify either dynamic or static.
+				if index[0] >= 'a' && index[0] <= 'z' {
+					ps.dynamicVar[index[0]] = val
+				} else if index[0] >= 'A' && index[0] <= 'Z' {
+					staticVar[index[0]] = val
+				}
+			case tokens[q][0][:2] == "%g":
+				// Push a variable from the stack as a dynamic or static variable.
+				index := tokens[q][3]
+				if len(index) > 1 {
+					errorStr := fmt.Sprintf("%s is not a valid static variables index",
+						index)
+					return buf.String(), errors.New(errorStr)
+				}
+				var val stacker
+				if index[0] >= 'a' && index[0] <= 'z' {
+					val = ps.dynamicVar[index[0]]
+				} else if index[0] >= 'A' && index[0] <= 'Z' {
+					val = staticVar[index[0]]
+				}
+				ps.st.push(val)
+			case tokens[q][0][:2] == "%'":
+				// Push a character constant.
+				con := tokens[q][4]
+				if len(con) > 1 {
+					errorStr := fmt.Sprintf("%s is not a valid character constant", con)
+					return buf.String(), errors.New(errorStr)
+				}
+				ps.st.push(con[0])
+			case tokens[q][0][:2] == "%{":
+				// Push an integer constant.
+				con, err := strconv.ParseInt(tokens[q][5], 10, 32)
+				if err != nil {
+					return buf.String(), err
+				}
+				ps.st.push(con)
+			case tokens[q][0][:2] == "%l":
+				// Push the length of the string that is popped from the stack.
+				popStr, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				if _, ok := popStr.(string); !ok {
+					errStr := fmt.Sprintf("Stack head is not a string")
+					return buf.String(), errors.New(errStr)
+				}
+				ps.st.push(len(popStr.(string)))
+			case tokens[q][0][:2] == "%?":
+				// If-then-else construct. First, the whole string is identified and
+				// then inside this substring, we can specify which parts to switch on.
+				ifReg, _ := regexp.Compile("%\\?(.*)%t(.*)%e(.*);|%\\?(.*)%t(.*);")
+				ifTokens := ifReg.FindStringSubmatch(tokens[q][0])
+				var (
+					ifStr string
+					err   error
+				)
+				// Parse the if-part to determine if-else.
+				if len(ifTokens[1]) > 0 {
+					ifStr, err = ps.walk(ifTokens[1])
+				} else { // else
+					ifStr, err = ps.walk(ifTokens[4])
+				}
+				// Return any errors
+				if err != nil {
+					return buf.String(), err
+				} else if len(ifStr) > 0 {
+					// Self-defined limitation, not sure if this is correct, but didn't
+					// seem like it.
+					return buf.String(), errors.New("If-clause cannot print statements")
+				}
+				var thenStr string
+				// Pop the first value that is set by parsing the if-clause.
+				choose, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				// Switch to if or else.
+				if choose.(int) == 0 && len(ifTokens[1]) > 0 {
+					thenStr, err = ps.walk(ifTokens[3])
+				} else if choose.(int) != 0 {
+					if len(ifTokens[1]) > 0 {
+						thenStr, err = ps.walk(ifTokens[2])
+					} else {
+						thenStr, err = ps.walk(ifTokens[5])
+					}
+				}
+				if err != nil {
+					return buf.String(), err
+				}
+				buf.WriteString(thenStr)
+			case tokens[q][0][len(tokens[q][0])-1] == 'd': // Fallthrough for printing
+				fallthrough
+			case tokens[q][0][len(tokens[q][0])-1] == 'o': // digits.
+				fallthrough
+			case tokens[q][0][len(tokens[q][0])-1] == 'x':
+				fallthrough
+			case tokens[q][0][len(tokens[q][0])-1] == 'X':
+				fallthrough
+			case tokens[q][0][len(tokens[q][0])-1] == 's':
+				token := tokens[q][0]
+				// Remove the : that comes before a flag.
+				if token[1] == ':' {
+					token = token[:1] + token[2:]
+				}
+				digit, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				// The rest is determined like the normal formatted prints.
+				digitStr := fmt.Sprintf(token, digit.(int))
+				buf.WriteString(digitStr)
+			case tokens[q][0][:2] == "%i":
+				// Increment the parameters by one.
+				if len(ps.parameters) < 2 {
+					return buf.String(), errors.New("Not enough parameters to increment.")
+				}
+				val1, val2 := ps.parameters[0].(int), ps.parameters[1].(int)
+				val1++
+				val2++
+				ps.parameters[0], ps.parameters[1] = val1, val2
+			default:
+				// The rest of the tokens is a special case, where two values are
+				// popped and then operated on by the token that comes after them.
+				op1, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				op2, err := ps.st.pop()
+				if err != nil {
+					return buf.String(), err
+				}
+				var result stacker
+				switch tokens[q][0][:2] {
+				case "%+":
+					// Addition
+					result = op2.(int) + op1.(int)
+				case "%-":
+					// Subtraction
+					result = op2.(int) - op1.(int)
+				case "%*":
+					// Multiplication
+					result = op2.(int) * op1.(int)
+				case "%/":
+					// Division
+					result = op2.(int) / op1.(int)
+				case "%m":
+					// Modulo
+					result = op2.(int) % op1.(int)
+				case "%&":
+					// Bitwise AND
+					result = op2.(int) & op1.(int)
+				case "%|":
+					// Bitwise OR
+					result = op2.(int) | op1.(int)
+				case "%^":
+					// Bitwise XOR
+					result = op2.(int) ^ op1.(int)
+				case "%=":
+					// Equals
+					result = op2 == op1
+				case "%>":
+					// Greater-than
+					result = op2.(int) > op1.(int)
+				case "%<":
+					// Lesser-than
+					result = op2.(int) < op1.(int)
+				case "%A":
+					// Logical AND
+					result = op2.(bool) && op1.(bool)
+				case "%O":
+					// Logical OR
+					result = op2.(bool) || op1.(bool)
+				case "%!":
+					// Logical complement
+					result = !op1.(bool)
+				case "%~":
+					// Bitwise complement
+					result = ^(op1.(int))
+				}
+				ps.st.push(result)
+			}
+
+			i = indices[q][1] - 1
+			q++
+		} else {
+			// We are not "inside" a token, so just skip until the end or the next
+			// token, and add all characters to the buffer.
+			j := i
+			if q != len(indices) {
+				for !(j >= indices[q][0] && j < indices[q][1]) {
+					j++
+				}
+			} else {
+				j = len(attr)
+			}
+			buf.WriteString(string(attr[i:j]))
+			i = j
+		}
+	}
+	// Return the buffer as a string.
+	return buf.String(), nil
+}
+
+// Push a stacker-value onto the stack.
+func (st *stack) push(s stacker) {
+	*st = append(*st, s)
+}
+
+// Pop a stacker-value from the stack.
+func (st *stack) pop() (stacker, error) {
+	if len(*st) == 0 {
+		return nil, errors.New("Stack is empty.")
+	}
+	newStack := make(stack, len(*st)-1)
+	val := (*st)[len(*st)-1]
+	copy(newStack, (*st)[:len(*st)-1])
+	*st = newStack
+	return val, nil
+}
+
+// Initialize regexes and the static vars (that don't get changed between
+// calls.
+func init() {
+	// Initialize the main regex.
+	expStr := strings.Join(exp[:], "|")
+	regex, _ = regexp.Compile(expStr)
+	// Initialize the static variables.
+	staticVar = make(map[byte]stacker, 26)
+}
diff --git a/vendor/github.com/Nvveen/Gotty/types.go b/vendor/github.com/Nvveen/Gotty/types.go
new file mode 100644
index 0000000000..9bcc65e9b8
--- /dev/null
+++ b/vendor/github.com/Nvveen/Gotty/types.go
@@ -0,0 +1,23 @@
+// Copyright 2012 Neal van Veen. All rights reserved.
+// Usage of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+package gotty
+
+type TermInfo struct {
+	boolAttributes map[string]bool
+	numAttributes  map[string]int16
+	strAttributes  map[string]string
+	// The various names of the TermInfo file.
+	Names []string
+}
+
+type stacker interface {
+}
+type stack []stacker
+
+type parser struct {
+	st         stack
+	parameters []stacker
+	dynamicVar map[byte]stacker
+}
diff --git a/vendor/github.com/armon/go-metrics/LICENSE b/vendor/github.com/armon/go-metrics/LICENSE
new file mode 100644
index 0000000000..106569e542
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/LICENSE
@@ -0,0 +1,20 @@
+The MIT License (MIT)
+
+Copyright (c) 2013 Armon Dadgar
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/armon/go-metrics/const_unix.go b/vendor/github.com/armon/go-metrics/const_unix.go
new file mode 100644
index 0000000000..31098dd57e
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/const_unix.go
@@ -0,0 +1,12 @@
+// +build !windows
+
+package metrics
+
+import (
+	"syscall"
+)
+
+const (
+	// DefaultSignal is used with DefaultInmemSignal
+	DefaultSignal = syscall.SIGUSR1
+)
diff --git a/vendor/github.com/armon/go-metrics/const_windows.go b/vendor/github.com/armon/go-metrics/const_windows.go
new file mode 100644
index 0000000000..38136af3e4
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/const_windows.go
@@ -0,0 +1,13 @@
+// +build windows
+
+package metrics
+
+import (
+	"syscall"
+)
+
+const (
+	// DefaultSignal is used with DefaultInmemSignal
+	// Windows has no SIGUSR1, use SIGBREAK
+	DefaultSignal = syscall.Signal(21)
+)
diff --git a/vendor/github.com/armon/go-metrics/inmem.go b/vendor/github.com/armon/go-metrics/inmem.go
new file mode 100644
index 0000000000..4e2d6a709e
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/inmem.go
@@ -0,0 +1,348 @@
+package metrics
+
+import (
+	"bytes"
+	"fmt"
+	"math"
+	"net/url"
+	"strings"
+	"sync"
+	"time"
+)
+
+// InmemSink provides a MetricSink that does in-memory aggregation
+// without sending metrics over a network. It can be embedded within
+// an application to provide profiling information.
+type InmemSink struct {
+	// How long is each aggregation interval
+	interval time.Duration
+
+	// Retain controls how many metrics interval we keep
+	retain time.Duration
+
+	// maxIntervals is the maximum length of intervals.
+	// It is retain / interval.
+	maxIntervals int
+
+	// intervals is a slice of the retained intervals
+	intervals    []*IntervalMetrics
+	intervalLock sync.RWMutex
+
+	rateDenom float64
+}
+
+// IntervalMetrics stores the aggregated metrics
+// for a specific interval
+type IntervalMetrics struct {
+	sync.RWMutex
+
+	// The start time of the interval
+	Interval time.Time
+
+	// Gauges maps the key to the last set value
+	Gauges map[string]GaugeValue
+
+	// Points maps the string to the list of emitted values
+	// from EmitKey
+	Points map[string][]float32
+
+	// Counters maps the string key to a sum of the counter
+	// values
+	Counters map[string]SampledValue
+
+	// Samples maps the key to an AggregateSample,
+	// which has the rolled up view of a sample
+	Samples map[string]SampledValue
+}
+
+// NewIntervalMetrics creates a new IntervalMetrics for a given interval
+func NewIntervalMetrics(intv time.Time) *IntervalMetrics {
+	return &IntervalMetrics{
+		Interval: intv,
+		Gauges:   make(map[string]GaugeValue),
+		Points:   make(map[string][]float32),
+		Counters: make(map[string]SampledValue),
+		Samples:  make(map[string]SampledValue),
+	}
+}
+
+// AggregateSample is used to hold aggregate metrics
+// about a sample
+type AggregateSample struct {
+	Count       int       // The count of emitted pairs
+	Rate        float64   // The values rate per time unit (usually 1 second)
+	Sum         float64   // The sum of values
+	SumSq       float64   `json:"-"` // The sum of squared values
+	Min         float64   // Minimum value
+	Max         float64   // Maximum value
+	LastUpdated time.Time `json:"-"` // When value was last updated
+}
+
+// Computes a Stddev of the values
+func (a *AggregateSample) Stddev() float64 {
+	num := (float64(a.Count) * a.SumSq) - math.Pow(a.Sum, 2)
+	div := float64(a.Count * (a.Count - 1))
+	if div == 0 {
+		return 0
+	}
+	return math.Sqrt(num / div)
+}
+
+// Computes a mean of the values
+func (a *AggregateSample) Mean() float64 {
+	if a.Count == 0 {
+		return 0
+	}
+	return a.Sum / float64(a.Count)
+}
+
+// Ingest is used to update a sample
+func (a *AggregateSample) Ingest(v float64, rateDenom float64) {
+	a.Count++
+	a.Sum += v
+	a.SumSq += (v * v)
+	if v < a.Min || a.Count == 1 {
+		a.Min = v
+	}
+	if v > a.Max || a.Count == 1 {
+		a.Max = v
+	}
+	a.Rate = float64(a.Sum) / rateDenom
+	a.LastUpdated = time.Now()
+}
+
+func (a *AggregateSample) String() string {
+	if a.Count == 0 {
+		return "Count: 0"
+	} else if a.Stddev() == 0 {
+		return fmt.Sprintf("Count: %d Sum: %0.3f LastUpdated: %s", a.Count, a.Sum, a.LastUpdated)
+	} else {
+		return fmt.Sprintf("Count: %d Min: %0.3f Mean: %0.3f Max: %0.3f Stddev: %0.3f Sum: %0.3f LastUpdated: %s",
+			a.Count, a.Min, a.Mean(), a.Max, a.Stddev(), a.Sum, a.LastUpdated)
+	}
+}
+
+// NewInmemSinkFromURL creates an InmemSink from a URL. It is used
+// (and tested) from NewMetricSinkFromURL.
+func NewInmemSinkFromURL(u *url.URL) (MetricSink, error) {
+	params := u.Query()
+
+	interval, err := time.ParseDuration(params.Get("interval"))
+	if err != nil {
+		return nil, fmt.Errorf("Bad 'interval' param: %s", err)
+	}
+
+	retain, err := time.ParseDuration(params.Get("retain"))
+	if err != nil {
+		return nil, fmt.Errorf("Bad 'retain' param: %s", err)
+	}
+
+	return NewInmemSink(interval, retain), nil
+}
+
+// NewInmemSink is used to construct a new in-memory sink.
+// Uses an aggregation interval and maximum retention period.
+func NewInmemSink(interval, retain time.Duration) *InmemSink {
+	rateTimeUnit := time.Second
+	i := &InmemSink{
+		interval:     interval,
+		retain:       retain,
+		maxIntervals: int(retain / interval),
+		rateDenom:    float64(interval.Nanoseconds()) / float64(rateTimeUnit.Nanoseconds()),
+	}
+	i.intervals = make([]*IntervalMetrics, 0, i.maxIntervals)
+	return i
+}
+
+func (i *InmemSink) SetGauge(key []string, val float32) {
+	i.SetGaugeWithLabels(key, val, nil)
+}
+
+func (i *InmemSink) SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	k, name := i.flattenKeyLabels(key, labels)
+	intv := i.getInterval()
+
+	intv.Lock()
+	defer intv.Unlock()
+	intv.Gauges[k] = GaugeValue{Name: name, Value: val, Labels: labels}
+}
+
+func (i *InmemSink) EmitKey(key []string, val float32) {
+	k := i.flattenKey(key)
+	intv := i.getInterval()
+
+	intv.Lock()
+	defer intv.Unlock()
+	vals := intv.Points[k]
+	intv.Points[k] = append(vals, val)
+}
+
+func (i *InmemSink) IncrCounter(key []string, val float32) {
+	i.IncrCounterWithLabels(key, val, nil)
+}
+
+func (i *InmemSink) IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	k, name := i.flattenKeyLabels(key, labels)
+	intv := i.getInterval()
+
+	intv.Lock()
+	defer intv.Unlock()
+
+	agg, ok := intv.Counters[k]
+	if !ok {
+		agg = SampledValue{
+			Name:            name,
+			AggregateSample: &AggregateSample{},
+			Labels:          labels,
+		}
+		intv.Counters[k] = agg
+	}
+	agg.Ingest(float64(val), i.rateDenom)
+}
+
+func (i *InmemSink) AddSample(key []string, val float32) {
+	i.AddSampleWithLabels(key, val, nil)
+}
+
+func (i *InmemSink) AddSampleWithLabels(key []string, val float32, labels []Label) {
+	k, name := i.flattenKeyLabels(key, labels)
+	intv := i.getInterval()
+
+	intv.Lock()
+	defer intv.Unlock()
+
+	agg, ok := intv.Samples[k]
+	if !ok {
+		agg = SampledValue{
+			Name:            name,
+			AggregateSample: &AggregateSample{},
+			Labels:          labels,
+		}
+		intv.Samples[k] = agg
+	}
+	agg.Ingest(float64(val), i.rateDenom)
+}
+
+// Data is used to retrieve all the aggregated metrics
+// Intervals may be in use, and a read lock should be acquired
+func (i *InmemSink) Data() []*IntervalMetrics {
+	// Get the current interval, forces creation
+	i.getInterval()
+
+	i.intervalLock.RLock()
+	defer i.intervalLock.RUnlock()
+
+	n := len(i.intervals)
+	intervals := make([]*IntervalMetrics, n)
+
+	copy(intervals[:n-1], i.intervals[:n-1])
+	current := i.intervals[n-1]
+
+	// make its own copy for current interval
+	intervals[n-1] = &IntervalMetrics{}
+	copyCurrent := intervals[n-1]
+	current.RLock()
+	*copyCurrent = *current
+
+	copyCurrent.Gauges = make(map[string]GaugeValue, len(current.Gauges))
+	for k, v := range current.Gauges {
+		copyCurrent.Gauges[k] = v
+	}
+	// saved values will be not change, just copy its link
+	copyCurrent.Points = make(map[string][]float32, len(current.Points))
+	for k, v := range current.Points {
+		copyCurrent.Points[k] = v
+	}
+	copyCurrent.Counters = make(map[string]SampledValue, len(current.Counters))
+	for k, v := range current.Counters {
+		copyCurrent.Counters[k] = v
+	}
+	copyCurrent.Samples = make(map[string]SampledValue, len(current.Samples))
+	for k, v := range current.Samples {
+		copyCurrent.Samples[k] = v
+	}
+	current.RUnlock()
+
+	return intervals
+}
+
+func (i *InmemSink) getExistingInterval(intv time.Time) *IntervalMetrics {
+	i.intervalLock.RLock()
+	defer i.intervalLock.RUnlock()
+
+	n := len(i.intervals)
+	if n > 0 && i.intervals[n-1].Interval == intv {
+		return i.intervals[n-1]
+	}
+	return nil
+}
+
+func (i *InmemSink) createInterval(intv time.Time) *IntervalMetrics {
+	i.intervalLock.Lock()
+	defer i.intervalLock.Unlock()
+
+	// Check for an existing interval
+	n := len(i.intervals)
+	if n > 0 && i.intervals[n-1].Interval == intv {
+		return i.intervals[n-1]
+	}
+
+	// Add the current interval
+	current := NewIntervalMetrics(intv)
+	i.intervals = append(i.intervals, current)
+	n++
+
+	// Truncate the intervals if they are too long
+	if n >= i.maxIntervals {
+		copy(i.intervals[0:], i.intervals[n-i.maxIntervals:])
+		i.intervals = i.intervals[:i.maxIntervals]
+	}
+	return current
+}
+
+// getInterval returns the current interval to write to
+func (i *InmemSink) getInterval() *IntervalMetrics {
+	intv := time.Now().Truncate(i.interval)
+	if m := i.getExistingInterval(intv); m != nil {
+		return m
+	}
+	return i.createInterval(intv)
+}
+
+// Flattens the key for formatting, removes spaces
+func (i *InmemSink) flattenKey(parts []string) string {
+	buf := &bytes.Buffer{}
+	replacer := strings.NewReplacer(" ", "_")
+
+	if len(parts) > 0 {
+		replacer.WriteString(buf, parts[0])
+	}
+	for _, part := range parts[1:] {
+		replacer.WriteString(buf, ".")
+		replacer.WriteString(buf, part)
+	}
+
+	return buf.String()
+}
+
+// Flattens the key for formatting along with its labels, removes spaces
+func (i *InmemSink) flattenKeyLabels(parts []string, labels []Label) (string, string) {
+	buf := &bytes.Buffer{}
+	replacer := strings.NewReplacer(" ", "_")
+
+	if len(parts) > 0 {
+		replacer.WriteString(buf, parts[0])
+	}
+	for _, part := range parts[1:] {
+		replacer.WriteString(buf, ".")
+		replacer.WriteString(buf, part)
+	}
+
+	key := buf.String()
+
+	for _, label := range labels {
+		replacer.WriteString(buf, fmt.Sprintf(";%s=%s", label.Name, label.Value))
+	}
+
+	return buf.String(), key
+}
diff --git a/vendor/github.com/armon/go-metrics/inmem_endpoint.go b/vendor/github.com/armon/go-metrics/inmem_endpoint.go
new file mode 100644
index 0000000000..504f1b3748
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/inmem_endpoint.go
@@ -0,0 +1,118 @@
+package metrics
+
+import (
+	"fmt"
+	"net/http"
+	"sort"
+	"time"
+)
+
+// MetricsSummary holds a roll-up of metrics info for a given interval
+type MetricsSummary struct {
+	Timestamp string
+	Gauges    []GaugeValue
+	Points    []PointValue
+	Counters  []SampledValue
+	Samples   []SampledValue
+}
+
+type GaugeValue struct {
+	Name  string
+	Hash  string `json:"-"`
+	Value float32
+
+	Labels        []Label           `json:"-"`
+	DisplayLabels map[string]string `json:"Labels"`
+}
+
+type PointValue struct {
+	Name   string
+	Points []float32
+}
+
+type SampledValue struct {
+	Name string
+	Hash string `json:"-"`
+	*AggregateSample
+	Mean   float64
+	Stddev float64
+
+	Labels        []Label           `json:"-"`
+	DisplayLabels map[string]string `json:"Labels"`
+}
+
+// DisplayMetrics returns a summary of the metrics from the most recent finished interval.
+func (i *InmemSink) DisplayMetrics(resp http.ResponseWriter, req *http.Request) (interface{}, error) {
+	data := i.Data()
+
+	var interval *IntervalMetrics
+	n := len(data)
+	switch {
+	case n == 0:
+		return nil, fmt.Errorf("no metric intervals have been initialized yet")
+	case n == 1:
+		// Show the current interval if it's all we have
+		interval = i.intervals[0]
+	default:
+		// Show the most recent finished interval if we have one
+		interval = i.intervals[n-2]
+	}
+
+	summary := MetricsSummary{
+		Timestamp: interval.Interval.Round(time.Second).UTC().String(),
+		Gauges:    make([]GaugeValue, 0, len(interval.Gauges)),
+		Points:    make([]PointValue, 0, len(interval.Points)),
+	}
+
+	// Format and sort the output of each metric type, so it gets displayed in a
+	// deterministic order.
+	for name, points := range interval.Points {
+		summary.Points = append(summary.Points, PointValue{name, points})
+	}
+	sort.Slice(summary.Points, func(i, j int) bool {
+		return summary.Points[i].Name < summary.Points[j].Name
+	})
+
+	for hash, value := range interval.Gauges {
+		value.Hash = hash
+		value.DisplayLabels = make(map[string]string)
+		for _, label := range value.Labels {
+			value.DisplayLabels[label.Name] = label.Value
+		}
+		value.Labels = nil
+
+		summary.Gauges = append(summary.Gauges, value)
+	}
+	sort.Slice(summary.Gauges, func(i, j int) bool {
+		return summary.Gauges[i].Hash < summary.Gauges[j].Hash
+	})
+
+	summary.Counters = formatSamples(interval.Counters)
+	summary.Samples = formatSamples(interval.Samples)
+
+	return summary, nil
+}
+
+func formatSamples(source map[string]SampledValue) []SampledValue {
+	output := make([]SampledValue, 0, len(source))
+	for hash, sample := range source {
+		displayLabels := make(map[string]string)
+		for _, label := range sample.Labels {
+			displayLabels[label.Name] = label.Value
+		}
+
+		output = append(output, SampledValue{
+			Name:            sample.Name,
+			Hash:            hash,
+			AggregateSample: sample.AggregateSample,
+			Mean:            sample.AggregateSample.Mean(),
+			Stddev:          sample.AggregateSample.Stddev(),
+			DisplayLabels:   displayLabels,
+		})
+	}
+	sort.Slice(output, func(i, j int) bool {
+		return output[i].Hash < output[j].Hash
+	})
+
+	return output
+}
diff --git a/vendor/github.com/armon/go-metrics/inmem_signal.go b/vendor/github.com/armon/go-metrics/inmem_signal.go
new file mode 100644
index 0000000000..0937f4aedf
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/inmem_signal.go
@@ -0,0 +1,117 @@
+package metrics
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"os"
+	"os/signal"
+	"strings"
+	"sync"
+	"syscall"
+)
+
+// InmemSignal is used to listen for a given signal, and when received,
+// to dump the current metrics from the InmemSink to an io.Writer
+type InmemSignal struct {
+	signal syscall.Signal
+	inm    *InmemSink
+	w      io.Writer
+	sigCh  chan os.Signal
+
+	stop     bool
+	stopCh   chan struct{}
+	stopLock sync.Mutex
+}
+
+// NewInmemSignal creates a new InmemSignal which listens for a given signal,
+// and dumps the current metrics out to a writer
+func NewInmemSignal(inmem *InmemSink, sig syscall.Signal, w io.Writer) *InmemSignal {
+	i := &InmemSignal{
+		signal: sig,
+		inm:    inmem,
+		w:      w,
+		sigCh:  make(chan os.Signal, 1),
+		stopCh: make(chan struct{}),
+	}
+	signal.Notify(i.sigCh, sig)
+	go i.run()
+	return i
+}
+
+// DefaultInmemSignal returns a new InmemSignal that responds to SIGUSR1
+// and writes output to stderr. Windows uses SIGBREAK
+func DefaultInmemSignal(inmem *InmemSink) *InmemSignal {
+	return NewInmemSignal(inmem, DefaultSignal, os.Stderr)
+}
+
+// Stop is used to stop the InmemSignal from listening
+func (i *InmemSignal) Stop() {
+	i.stopLock.Lock()
+	defer i.stopLock.Unlock()
+
+	if i.stop {
+		return
+	}
+	i.stop = true
+	close(i.stopCh)
+	signal.Stop(i.sigCh)
+}
+
+// run is a long running routine that handles signals
+func (i *InmemSignal) run() {
+	for {
+		select {
+		case <-i.sigCh:
+			i.dumpStats()
+		case <-i.stopCh:
+			return
+		}
+	}
+}
+
+// dumpStats is used to dump the data to output writer
+func (i *InmemSignal) dumpStats() {
+	buf := bytes.NewBuffer(nil)
+
+	data := i.inm.Data()
+	// Skip the last period which is still being aggregated
+	for j := 0; j < len(data)-1; j++ {
+		intv := data[j]
+		intv.RLock()
+		for _, val := range intv.Gauges {
+			name := i.flattenLabels(val.Name, val.Labels)
+			fmt.Fprintf(buf, "[%v][G] '%s': %0.3f\n", intv.Interval, name, val.Value)
+		}
+		for name, vals := range intv.Points {
+			for _, val := range vals {
+				fmt.Fprintf(buf, "[%v][P] '%s': %0.3f\n", intv.Interval, name, val)
+			}
+		}
+		for _, agg := range intv.Counters {
+			name := i.flattenLabels(agg.Name, agg.Labels)
+			fmt.Fprintf(buf, "[%v][C] '%s': %s\n", intv.Interval, name, agg.AggregateSample)
+		}
+		for _, agg := range intv.Samples {
+			name := i.flattenLabels(agg.Name, agg.Labels)
+			fmt.Fprintf(buf, "[%v][S] '%s': %s\n", intv.Interval, name, agg.AggregateSample)
+		}
+		intv.RUnlock()
+	}
+
+	// Write out the bytes
+	i.w.Write(buf.Bytes())
+}
+
+// Flattens the key for formatting along with its labels, removes spaces
+func (i *InmemSignal) flattenLabels(name string, labels []Label) string {
+	buf := bytes.NewBufferString(name)
+	replacer := strings.NewReplacer(" ", "_", ":", "_")
+
+	for _, label := range labels {
+		replacer.WriteString(buf, ".")
+		replacer.WriteString(buf, label.Value)
+	}
+
+	return buf.String()
+}
diff --git a/vendor/github.com/armon/go-metrics/metrics.go b/vendor/github.com/armon/go-metrics/metrics.go
new file mode 100644
index 0000000000..d260bd4b29
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/metrics.go
@@ -0,0 +1,216 @@
+package metrics
+
+import (
+	"runtime"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/go-immutable-radix"
+)
+
+type Label struct {
+	Name  string
+	Value string
+}
+
+func (m *Metrics) SetGauge(key []string, val float32) {
+	m.SetGaugeWithLabels(key, val, nil)
+}
+
+func (m *Metrics) SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	if m.HostName != "" {
+		if m.EnableHostnameLabel {
+			labels = append(labels, Label{"host", m.HostName})
+		} else if m.EnableHostname {
+			key = insert(0, m.HostName, key)
+		}
+	}
+	if m.EnableTypePrefix {
+		key = insert(0, "gauge", key)
+	}
+	if m.ServiceName != "" {
+		if m.EnableServiceLabel {
+			labels = append(labels, Label{"service", m.ServiceName})
+		} else {
+			key = insert(0, m.ServiceName, key)
+		}
+	}
+	if !m.allowMetric(key) {
+		return
+	}
+	m.sink.SetGaugeWithLabels(key, val, labels)
+}
+
+func (m *Metrics) EmitKey(key []string, val float32) {
+	if m.EnableTypePrefix {
+		key = insert(0, "kv", key)
+	}
+	if m.ServiceName != "" {
+		key = insert(0, m.ServiceName, key)
+	}
+	if !m.allowMetric(key) {
+		return
+	}
+	m.sink.EmitKey(key, val)
+}
+
+func (m *Metrics) IncrCounter(key []string, val float32) {
+	m.IncrCounterWithLabels(key, val, nil)
+}
+
+func (m *Metrics) IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	if m.HostName != "" && m.EnableHostnameLabel {
+		labels = append(labels, Label{"host", m.HostName})
+	}
+	if m.EnableTypePrefix {
+		key = insert(0, "counter", key)
+	}
+	if m.ServiceName != "" {
+		if m.EnableServiceLabel {
+			labels = append(labels, Label{"service", m.ServiceName})
+		} else {
+			key = insert(0, m.ServiceName, key)
+		}
+	}
+	if !m.allowMetric(key) {
+		return
+	}
+	m.sink.IncrCounterWithLabels(key, val, labels)
+}
+
+func (m *Metrics) AddSample(key []string, val float32) {
+	m.AddSampleWithLabels(key, val, nil)
+}
+
+func (m *Metrics) AddSampleWithLabels(key []string, val float32, labels []Label) {
+	if m.HostName != "" && m.EnableHostnameLabel {
+		labels = append(labels, Label{"host", m.HostName})
+	}
+	if m.EnableTypePrefix {
+		key = insert(0, "sample", key)
+	}
+	if m.ServiceName != "" {
+		if m.EnableServiceLabel {
+			labels = append(labels, Label{"service", m.ServiceName})
+		} else {
+			key = insert(0, m.ServiceName, key)
+		}
+	}
+	if !m.allowMetric(key) {
+		return
+	}
+	m.sink.AddSampleWithLabels(key, val, labels)
+}
+
+func (m *Metrics) MeasureSince(key []string, start time.Time) {
+	m.MeasureSinceWithLabels(key, start, nil)
+}
+
+func (m *Metrics) MeasureSinceWithLabels(key []string, start time.Time, labels []Label) {
+	if m.HostName != "" && m.EnableHostnameLabel {
+		labels = append(labels, Label{"host", m.HostName})
+	}
+	if m.EnableTypePrefix {
+		key = insert(0, "timer", key)
+	}
+	if m.ServiceName != "" {
+		if m.EnableServiceLabel {
+			labels = append(labels, Label{"service", m.ServiceName})
+		} else {
+			key = insert(0, m.ServiceName, key)
+		}
+	}
+	if !m.allowMetric(key) {
+		return
+	}
+	now := time.Now()
+	elapsed := now.Sub(start)
+	msec := float32(elapsed.Nanoseconds()) / float32(m.TimerGranularity)
+	m.sink.AddSampleWithLabels(key, msec, labels)
+}
+
+// UpdateFilter overwrites the existing filter with the given rules.
+func (m *Metrics) UpdateFilter(allow, block []string) {
+	m.filterLock.Lock()
+	defer m.filterLock.Unlock()
+
+	m.AllowedPrefixes = allow
+	m.BlockedPrefixes = block
+
+	m.filter = iradix.New()
+	for _, prefix := range m.AllowedPrefixes {
+		m.filter, _, _ = m.filter.Insert([]byte(prefix), true)
+	}
+	for _, prefix := range m.BlockedPrefixes {
+		m.filter, _, _ = m.filter.Insert([]byte(prefix), false)
+	}
+}
+
+// Returns whether the metric should be allowed based on configured prefix filters
+func (m *Metrics) allowMetric(key []string) bool {
+	m.filterLock.RLock()
+	defer m.filterLock.RUnlock()
+
+	if m.filter == nil || m.filter.Len() == 0 {
+		return m.Config.FilterDefault
+	}
+
+	_, allowed, ok := m.filter.Root().LongestPrefix([]byte(strings.Join(key, ".")))
+	if !ok {
+		return m.Config.FilterDefault
+	}
+	return allowed.(bool)
+}
+
+// Periodically collects runtime stats to publish
+func (m *Metrics) collectStats() {
+	for {
+		time.Sleep(m.ProfileInterval)
+		m.emitRuntimeStats()
+	}
+}
+
+// Emits various runtime statsitics
+func (m *Metrics) emitRuntimeStats() {
+	// Export number of Goroutines
+	numRoutines := runtime.NumGoroutine()
+	m.SetGauge([]string{"runtime", "num_goroutines"}, float32(numRoutines))
+
+	// Export memory stats
+	var stats runtime.MemStats
+	runtime.ReadMemStats(&stats)
+	m.SetGauge([]string{"runtime", "alloc_bytes"}, float32(stats.Alloc))
+	m.SetGauge([]string{"runtime", "sys_bytes"}, float32(stats.Sys))
+	m.SetGauge([]string{"runtime", "malloc_count"}, float32(stats.Mallocs))
+	m.SetGauge([]string{"runtime", "free_count"}, float32(stats.Frees))
+	m.SetGauge([]string{"runtime", "heap_objects"}, float32(stats.HeapObjects))
+	m.SetGauge([]string{"runtime", "total_gc_pause_ns"}, float32(stats.PauseTotalNs))
+	m.SetGauge([]string{"runtime", "total_gc_runs"}, float32(stats.NumGC))
+
+	// Export info about the last few GC runs
+	num := stats.NumGC
+
+	// Handle wrap around
+	if num < m.lastNumGC {
+		m.lastNumGC = 0
+	}
+
+	// Ensure we don't scan more than 256
+	if num-m.lastNumGC >= 256 {
+		m.lastNumGC = num - 255
+	}
+
+	for i := m.lastNumGC; i < num; i++ {
+		pause := stats.PauseNs[i%256]
+		m.AddSample([]string{"runtime", "gc_pause_ns"}, float32(pause))
+	}
+	m.lastNumGC = num
+}
+
+// Inserts a string value at an index into the slice
+func insert(i int, v string, s []string) []string {
+	s = append(s, "")
+	copy(s[i+1:], s[i:])
+	s[i] = v
+	return s
+}
diff --git a/vendor/github.com/armon/go-metrics/sink.go b/vendor/github.com/armon/go-metrics/sink.go
new file mode 100644
index 0000000000..0b7d6e4be4
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/sink.go
@@ -0,0 +1,115 @@
+package metrics
+
+import (
+	"fmt"
+	"net/url"
+)
+
+// The MetricSink interface is used to transmit metrics information
+// to an external system
+type MetricSink interface {
+	// A Gauge should retain the last value it is set to
+	SetGauge(key []string, val float32)
+	SetGaugeWithLabels(key []string, val float32, labels []Label)
+
+	// Should emit a Key/Value pair for each call
+	EmitKey(key []string, val float32)
+
+	// Counters should accumulate values
+	IncrCounter(key []string, val float32)
+	IncrCounterWithLabels(key []string, val float32, labels []Label)
+
+	// Samples are for timing information, where quantiles are used
+	AddSample(key []string, val float32)
+	AddSampleWithLabels(key []string, val float32, labels []Label)
+}
+
+// BlackholeSink is used to just blackhole messages
+type BlackholeSink struct{}
+
+func (*BlackholeSink) SetGauge(key []string, val float32)                              {}
+func (*BlackholeSink) SetGaugeWithLabels(key []string, val float32, labels []Label)    {}
+func (*BlackholeSink) EmitKey(key []string, val float32)                               {}
+func (*BlackholeSink) IncrCounter(key []string, val float32)                           {}
+func (*BlackholeSink) IncrCounterWithLabels(key []string, val float32, labels []Label) {}
+func (*BlackholeSink) AddSample(key []string, val float32)                             {}
+func (*BlackholeSink) AddSampleWithLabels(key []string, val float32, labels []Label)   {}
+
+// FanoutSink is used to sink to fanout values to multiple sinks
+type FanoutSink []MetricSink
+
+func (fh FanoutSink) SetGauge(key []string, val float32) {
+	fh.SetGaugeWithLabels(key, val, nil)
+}
+
+func (fh FanoutSink) SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	for _, s := range fh {
+		s.SetGaugeWithLabels(key, val, labels)
+	}
+}
+
+func (fh FanoutSink) EmitKey(key []string, val float32) {
+	for _, s := range fh {
+		s.EmitKey(key, val)
+	}
+}
+
+func (fh FanoutSink) IncrCounter(key []string, val float32) {
+	fh.IncrCounterWithLabels(key, val, nil)
+}
+
+func (fh FanoutSink) IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	for _, s := range fh {
+		s.IncrCounterWithLabels(key, val, labels)
+	}
+}
+
+func (fh FanoutSink) AddSample(key []string, val float32) {
+	fh.AddSampleWithLabels(key, val, nil)
+}
+
+func (fh FanoutSink) AddSampleWithLabels(key []string, val float32, labels []Label) {
+	for _, s := range fh {
+		s.AddSampleWithLabels(key, val, labels)
+	}
+}
+
+// sinkURLFactoryFunc is an generic interface around the *SinkFromURL() function provided
+// by each sink type
+type sinkURLFactoryFunc func(*url.URL) (MetricSink, error)
+
+// sinkRegistry supports the generic NewMetricSink function by mapping URL
+// schemes to metric sink factory functions
+var sinkRegistry = map[string]sinkURLFactoryFunc{
+	"statsd":   NewStatsdSinkFromURL,
+	"statsite": NewStatsiteSinkFromURL,
+	"inmem":    NewInmemSinkFromURL,
+}
+
+// NewMetricSinkFromURL allows a generic URL input to configure any of the
+// supported sinks. The scheme of the URL identifies the type of the sink, the
+// and query parameters are used to set options.
+//
+// "statsd://" - Initializes a StatsdSink. The host and port are passed through
+// as the "addr" of the sink
+//
+// "statsite://" - Initializes a StatsiteSink. The host and port become the
+// "addr" of the sink
+//
+// "inmem://" - Initializes an InmemSink. The host and port are ignored. The
+// "interval" and "duration" query parameters must be specified with valid
+// durations, see NewInmemSink for details.
+func NewMetricSinkFromURL(urlStr string) (MetricSink, error) {
+	u, err := url.Parse(urlStr)
+	if err != nil {
+		return nil, err
+	}
+
+	sinkURLFactoryFunc := sinkRegistry[u.Scheme]
+	if sinkURLFactoryFunc == nil {
+		return nil, fmt.Errorf(
+			"cannot create metric sink, unrecognized sink name: %q", u.Scheme)
+	}
+
+	return sinkURLFactoryFunc(u)
+}
diff --git a/vendor/github.com/armon/go-metrics/start.go b/vendor/github.com/armon/go-metrics/start.go
new file mode 100644
index 0000000000..dd41861c90
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/start.go
@@ -0,0 +1,129 @@
+package metrics
+
+import (
+	"os"
+	"sync"
+	"sync/atomic"
+	"time"
+
+	"github.com/hashicorp/go-immutable-radix"
+)
+
+// Config is used to configure metrics settings
+type Config struct {
+	ServiceName          string        // Prefixed with keys to separate services
+	HostName             string        // Hostname to use. If not provided and EnableHostname, it will be os.Hostname
+	EnableHostname       bool          // Enable prefixing gauge values with hostname
+	EnableHostnameLabel  bool          // Enable adding hostname to labels
+	EnableServiceLabel   bool          // Enable adding service to labels
+	EnableRuntimeMetrics bool          // Enables profiling of runtime metrics (GC, Goroutines, Memory)
+	EnableTypePrefix     bool          // Prefixes key with a type ("counter", "gauge", "timer")
+	TimerGranularity     time.Duration // Granularity of timers.
+	ProfileInterval      time.Duration // Interval to profile runtime metrics
+
+	AllowedPrefixes []string // A list of metric prefixes to allow, with '.' as the separator
+	BlockedPrefixes []string // A list of metric prefixes to block, with '.' as the separator
+	FilterDefault   bool     // Whether to allow metrics by default
+}
+
+// Metrics represents an instance of a metrics sink that can
+// be used to emit
+type Metrics struct {
+	Config
+	lastNumGC  uint32
+	sink       MetricSink
+	filter     *iradix.Tree
+	filterLock sync.RWMutex
+}
+
+// Shared global metrics instance
+var globalMetrics atomic.Value // *Metrics
+
+func init() {
+	// Initialize to a blackhole sink to avoid errors
+	globalMetrics.Store(&Metrics{sink: &BlackholeSink{}})
+}
+
+// DefaultConfig provides a sane default configuration
+func DefaultConfig(serviceName string) *Config {
+	c := &Config{
+		ServiceName:          serviceName, // Use client provided service
+		HostName:             "",
+		EnableHostname:       true,             // Enable hostname prefix
+		EnableRuntimeMetrics: true,             // Enable runtime profiling
+		EnableTypePrefix:     false,            // Disable type prefix
+		TimerGranularity:     time.Millisecond, // Timers are in milliseconds
+		ProfileInterval:      time.Second,      // Poll runtime every second
+		FilterDefault:        true,             // Don't filter metrics by default
+	}
+
+	// Try to get the hostname
+	name, _ := os.Hostname()
+	c.HostName = name
+	return c
+}
+
+// New is used to create a new instance of Metrics
+func New(conf *Config, sink MetricSink) (*Metrics, error) {
+	met := &Metrics{}
+	met.Config = *conf
+	met.sink = sink
+	met.UpdateFilter(conf.AllowedPrefixes, conf.BlockedPrefixes)
+
+	// Start the runtime collector
+	if conf.EnableRuntimeMetrics {
+		go met.collectStats()
+	}
+	return met, nil
+}
+
+// NewGlobal is the same as New, but it assigns the metrics object to be
+// used globally as well as returning it.
+func NewGlobal(conf *Config, sink MetricSink) (*Metrics, error) {
+	metrics, err := New(conf, sink)
+	if err == nil {
+		globalMetrics.Store(metrics)
+	}
+	return metrics, err
+}
+
+// Proxy all the methods to the globalMetrics instance
+func SetGauge(key []string, val float32) {
+	globalMetrics.Load().(*Metrics).SetGauge(key, val)
+}
+
+func SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	globalMetrics.Load().(*Metrics).SetGaugeWithLabels(key, val, labels)
+}
+
+func EmitKey(key []string, val float32) {
+	globalMetrics.Load().(*Metrics).EmitKey(key, val)
+}
+
+func IncrCounter(key []string, val float32) {
+	globalMetrics.Load().(*Metrics).IncrCounter(key, val)
+}
+
+func IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	globalMetrics.Load().(*Metrics).IncrCounterWithLabels(key, val, labels)
+}
+
+func AddSample(key []string, val float32) {
+	globalMetrics.Load().(*Metrics).AddSample(key, val)
+}
+
+func AddSampleWithLabels(key []string, val float32, labels []Label) {
+	globalMetrics.Load().(*Metrics).AddSampleWithLabels(key, val, labels)
+}
+
+func MeasureSince(key []string, start time.Time) {
+	globalMetrics.Load().(*Metrics).MeasureSince(key, start)
+}
+
+func MeasureSinceWithLabels(key []string, start time.Time, labels []Label) {
+	globalMetrics.Load().(*Metrics).MeasureSinceWithLabels(key, start, labels)
+}
+
+func UpdateFilter(allow, block []string) {
+	globalMetrics.Load().(*Metrics).UpdateFilter(allow, block)
+}
diff --git a/vendor/github.com/armon/go-metrics/statsd.go b/vendor/github.com/armon/go-metrics/statsd.go
new file mode 100644
index 0000000000..1bfffce46e
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/statsd.go
@@ -0,0 +1,184 @@
+package metrics
+
+import (
+	"bytes"
+	"fmt"
+	"log"
+	"net"
+	"net/url"
+	"strings"
+	"time"
+)
+
+const (
+	// statsdMaxLen is the maximum size of a packet
+	// to send to statsd
+	statsdMaxLen = 1400
+)
+
+// StatsdSink provides a MetricSink that can be used
+// with a statsite or statsd metrics server. It uses
+// only UDP packets, while StatsiteSink uses TCP.
+type StatsdSink struct {
+	addr        string
+	metricQueue chan string
+}
+
+// NewStatsdSinkFromURL creates an StatsdSink from a URL. It is used
+// (and tested) from NewMetricSinkFromURL.
+func NewStatsdSinkFromURL(u *url.URL) (MetricSink, error) {
+	return NewStatsdSink(u.Host)
+}
+
+// NewStatsdSink is used to create a new StatsdSink
+func NewStatsdSink(addr string) (*StatsdSink, error) {
+	s := &StatsdSink{
+		addr:        addr,
+		metricQueue: make(chan string, 4096),
+	}
+	go s.flushMetrics()
+	return s, nil
+}
+
+// Close is used to stop flushing to statsd
+func (s *StatsdSink) Shutdown() {
+	close(s.metricQueue)
+}
+
+func (s *StatsdSink) SetGauge(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|g\n", flatKey, val))
+}
+
+func (s *StatsdSink) SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|g\n", flatKey, val))
+}
+
+func (s *StatsdSink) EmitKey(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|kv\n", flatKey, val))
+}
+
+func (s *StatsdSink) IncrCounter(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|c\n", flatKey, val))
+}
+
+func (s *StatsdSink) IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|c\n", flatKey, val))
+}
+
+func (s *StatsdSink) AddSample(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|ms\n", flatKey, val))
+}
+
+func (s *StatsdSink) AddSampleWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|ms\n", flatKey, val))
+}
+
+// Flattens the key for formatting, removes spaces
+func (s *StatsdSink) flattenKey(parts []string) string {
+	joined := strings.Join(parts, ".")
+	return strings.Map(func(r rune) rune {
+		switch r {
+		case ':':
+			fallthrough
+		case ' ':
+			return '_'
+		default:
+			return r
+		}
+	}, joined)
+}
+
+// Flattens the key along with labels for formatting, removes spaces
+func (s *StatsdSink) flattenKeyLabels(parts []string, labels []Label) string {
+	for _, label := range labels {
+		parts = append(parts, label.Value)
+	}
+	return s.flattenKey(parts)
+}
+
+// Does a non-blocking push to the metrics queue
+func (s *StatsdSink) pushMetric(m string) {
+	select {
+	case s.metricQueue <- m:
+	default:
+	}
+}
+
+// Flushes metrics
+func (s *StatsdSink) flushMetrics() {
+	var sock net.Conn
+	var err error
+	var wait <-chan time.Time
+	ticker := time.NewTicker(flushInterval)
+	defer ticker.Stop()
+
+CONNECT:
+	// Create a buffer
+	buf := bytes.NewBuffer(nil)
+
+	// Attempt to connect
+	sock, err = net.Dial("udp", s.addr)
+	if err != nil {
+		log.Printf("[ERR] Error connecting to statsd! Err: %s", err)
+		goto WAIT
+	}
+
+	for {
+		select {
+		case metric, ok := <-s.metricQueue:
+			// Get a metric from the queue
+			if !ok {
+				goto QUIT
+			}
+
+			// Check if this would overflow the packet size
+			if len(metric)+buf.Len() > statsdMaxLen {
+				_, err := sock.Write(buf.Bytes())
+				buf.Reset()
+				if err != nil {
+					log.Printf("[ERR] Error writing to statsd! Err: %s", err)
+					goto WAIT
+				}
+			}
+
+			// Append to the buffer
+			buf.WriteString(metric)
+
+		case <-ticker.C:
+			if buf.Len() == 0 {
+				continue
+			}
+
+			_, err := sock.Write(buf.Bytes())
+			buf.Reset()
+			if err != nil {
+				log.Printf("[ERR] Error flushing to statsd! Err: %s", err)
+				goto WAIT
+			}
+		}
+	}
+
+WAIT:
+	// Wait for a while
+	wait = time.After(time.Duration(5) * time.Second)
+	for {
+		select {
+		// Dequeue the messages to avoid backlog
+		case _, ok := <-s.metricQueue:
+			if !ok {
+				goto QUIT
+			}
+		case <-wait:
+			goto CONNECT
+		}
+	}
+QUIT:
+	s.metricQueue = nil
+}
diff --git a/vendor/github.com/armon/go-metrics/statsite.go b/vendor/github.com/armon/go-metrics/statsite.go
new file mode 100644
index 0000000000..6c0d284d2d
--- /dev/null
+++ b/vendor/github.com/armon/go-metrics/statsite.go
@@ -0,0 +1,172 @@
+package metrics
+
+import (
+	"bufio"
+	"fmt"
+	"log"
+	"net"
+	"net/url"
+	"strings"
+	"time"
+)
+
+const (
+	// We force flush the statsite metrics after this period of
+	// inactivity. Prevents stats from getting stuck in a buffer
+	// forever.
+	flushInterval = 100 * time.Millisecond
+)
+
+// NewStatsiteSinkFromURL creates an StatsiteSink from a URL. It is used
+// (and tested) from NewMetricSinkFromURL.
+func NewStatsiteSinkFromURL(u *url.URL) (MetricSink, error) {
+	return NewStatsiteSink(u.Host)
+}
+
+// StatsiteSink provides a MetricSink that can be used with a
+// statsite metrics server
+type StatsiteSink struct {
+	addr        string
+	metricQueue chan string
+}
+
+// NewStatsiteSink is used to create a new StatsiteSink
+func NewStatsiteSink(addr string) (*StatsiteSink, error) {
+	s := &StatsiteSink{
+		addr:        addr,
+		metricQueue: make(chan string, 4096),
+	}
+	go s.flushMetrics()
+	return s, nil
+}
+
+// Close is used to stop flushing to statsite
+func (s *StatsiteSink) Shutdown() {
+	close(s.metricQueue)
+}
+
+func (s *StatsiteSink) SetGauge(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|g\n", flatKey, val))
+}
+
+func (s *StatsiteSink) SetGaugeWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|g\n", flatKey, val))
+}
+
+func (s *StatsiteSink) EmitKey(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|kv\n", flatKey, val))
+}
+
+func (s *StatsiteSink) IncrCounter(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|c\n", flatKey, val))
+}
+
+func (s *StatsiteSink) IncrCounterWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|c\n", flatKey, val))
+}
+
+func (s *StatsiteSink) AddSample(key []string, val float32) {
+	flatKey := s.flattenKey(key)
+	s.pushMetric(fmt.Sprintf("%s:%f|ms\n", flatKey, val))
+}
+
+func (s *StatsiteSink) AddSampleWithLabels(key []string, val float32, labels []Label) {
+	flatKey := s.flattenKeyLabels(key, labels)
+	s.pushMetric(fmt.Sprintf("%s:%f|ms\n", flatKey, val))
+}
+
+// Flattens the key for formatting, removes spaces
+func (s *StatsiteSink) flattenKey(parts []string) string {
+	joined := strings.Join(parts, ".")
+	return strings.Map(func(r rune) rune {
+		switch r {
+		case ':':
+			fallthrough
+		case ' ':
+			return '_'
+		default:
+			return r
+		}
+	}, joined)
+}
+
+// Flattens the key along with labels for formatting, removes spaces
+func (s *StatsiteSink) flattenKeyLabels(parts []string, labels []Label) string {
+	for _, label := range labels {
+		parts = append(parts, label.Value)
+	}
+	return s.flattenKey(parts)
+}
+
+// Does a non-blocking push to the metrics queue
+func (s *StatsiteSink) pushMetric(m string) {
+	select {
+	case s.metricQueue <- m:
+	default:
+	}
+}
+
+// Flushes metrics
+func (s *StatsiteSink) flushMetrics() {
+	var sock net.Conn
+	var err error
+	var wait <-chan time.Time
+	var buffered *bufio.Writer
+	ticker := time.NewTicker(flushInterval)
+	defer ticker.Stop()
+
+CONNECT:
+	// Attempt to connect
+	sock, err = net.Dial("tcp", s.addr)
+	if err != nil {
+		log.Printf("[ERR] Error connecting to statsite! Err: %s", err)
+		goto WAIT
+	}
+
+	// Create a buffered writer
+	buffered = bufio.NewWriter(sock)
+
+	for {
+		select {
+		case metric, ok := <-s.metricQueue:
+			// Get a metric from the queue
+			if !ok {
+				goto QUIT
+			}
+
+			// Try to send to statsite
+			_, err := buffered.Write([]byte(metric))
+			if err != nil {
+				log.Printf("[ERR] Error writing to statsite! Err: %s", err)
+				goto WAIT
+			}
+		case <-ticker.C:
+			if err := buffered.Flush(); err != nil {
+				log.Printf("[ERR] Error flushing to statsite! Err: %s", err)
+				goto WAIT
+			}
+		}
+	}
+
+WAIT:
+	// Wait for a while
+	wait = time.After(time.Duration(5) * time.Second)
+	for {
+		select {
+		// Dequeue the messages to avoid backlog
+		case _, ok := <-s.metricQueue:
+			if !ok {
+				goto QUIT
+			}
+		case <-wait:
+			goto CONNECT
+		}
+	}
+QUIT:
+	s.metricQueue = nil
+}
diff --git a/vendor/github.com/armon/go-radix/LICENSE b/vendor/github.com/armon/go-radix/LICENSE
new file mode 100644
index 0000000000..a5df10e675
--- /dev/null
+++ b/vendor/github.com/armon/go-radix/LICENSE
@@ -0,0 +1,20 @@
+The MIT License (MIT)
+
+Copyright (c) 2014 Armon Dadgar
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/armon/go-radix/radix.go b/vendor/github.com/armon/go-radix/radix.go
new file mode 100644
index 0000000000..f9655a126b
--- /dev/null
+++ b/vendor/github.com/armon/go-radix/radix.go
@@ -0,0 +1,543 @@
+package radix
+
+import (
+	"sort"
+	"strings"
+)
+
+// WalkFn is used when walking the tree. Takes a
+// key and value, returning if iteration should
+// be terminated.
+type WalkFn func(s string, v interface{}) bool
+
+// leafNode is used to represent a value
+type leafNode struct {
+	key string
+	val interface{}
+}
+
+// edge is used to represent an edge node
+type edge struct {
+	label byte
+	node  *node
+}
+
+type node struct {
+	// leaf is used to store possible leaf
+	leaf *leafNode
+
+	// prefix is the common prefix we ignore
+	prefix string
+
+	// Edges should be stored in-order for iteration.
+	// We avoid a fully materialized slice to save memory,
+	// since in most cases we expect to be sparse
+	edges edges
+}
+
+func (n *node) isLeaf() bool {
+	return n.leaf != nil
+}
+
+func (n *node) addEdge(e edge) {
+	n.edges = append(n.edges, e)
+	n.edges.Sort()
+}
+
+func (n *node) replaceEdge(e edge) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= e.label
+	})
+	if idx < num && n.edges[idx].label == e.label {
+		n.edges[idx].node = e.node
+		return
+	}
+	panic("replacing missing edge")
+}
+
+func (n *node) getEdge(label byte) *node {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= label
+	})
+	if idx < num && n.edges[idx].label == label {
+		return n.edges[idx].node
+	}
+	return nil
+}
+
+func (n *node) delEdge(label byte) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= label
+	})
+	if idx < num && n.edges[idx].label == label {
+		copy(n.edges[idx:], n.edges[idx+1:])
+		n.edges[len(n.edges)-1] = edge{}
+		n.edges = n.edges[:len(n.edges)-1]
+	}
+}
+
+type edges []edge
+
+func (e edges) Len() int {
+	return len(e)
+}
+
+func (e edges) Less(i, j int) bool {
+	return e[i].label < e[j].label
+}
+
+func (e edges) Swap(i, j int) {
+	e[i], e[j] = e[j], e[i]
+}
+
+func (e edges) Sort() {
+	sort.Sort(e)
+}
+
+// Tree implements a radix tree. This can be treated as a
+// Dictionary abstract data type. The main advantage over
+// a standard hash map is prefix-based lookups and
+// ordered iteration,
+type Tree struct {
+	root *node
+	size int
+}
+
+// New returns an empty Tree
+func New() *Tree {
+	return NewFromMap(nil)
+}
+
+// NewFromMap returns a new tree containing the keys
+// from an existing map
+func NewFromMap(m map[string]interface{}) *Tree {
+	t := &Tree{root: &node{}}
+	for k, v := range m {
+		t.Insert(k, v)
+	}
+	return t
+}
+
+// Len is used to return the number of elements in the tree
+func (t *Tree) Len() int {
+	return t.size
+}
+
+// longestPrefix finds the length of the shared prefix
+// of two strings
+func longestPrefix(k1, k2 string) int {
+	max := len(k1)
+	if l := len(k2); l < max {
+		max = l
+	}
+	var i int
+	for i = 0; i < max; i++ {
+		if k1[i] != k2[i] {
+			break
+		}
+	}
+	return i
+}
+
+// Insert is used to add a newentry or update
+// an existing entry. Returns if updated.
+func (t *Tree) Insert(s string, v interface{}) (interface{}, bool) {
+	var parent *node
+	n := t.root
+	search := s
+	for {
+		// Handle key exhaution
+		if len(search) == 0 {
+			if n.isLeaf() {
+				old := n.leaf.val
+				n.leaf.val = v
+				return old, true
+			}
+
+			n.leaf = &leafNode{
+				key: s,
+				val: v,
+			}
+			t.size++
+			return nil, false
+		}
+
+		// Look for the edge
+		parent = n
+		n = n.getEdge(search[0])
+
+		// No edge, create one
+		if n == nil {
+			e := edge{
+				label: search[0],
+				node: &node{
+					leaf: &leafNode{
+						key: s,
+						val: v,
+					},
+					prefix: search,
+				},
+			}
+			parent.addEdge(e)
+			t.size++
+			return nil, false
+		}
+
+		// Determine longest prefix of the search key on match
+		commonPrefix := longestPrefix(search, n.prefix)
+		if commonPrefix == len(n.prefix) {
+			search = search[commonPrefix:]
+			continue
+		}
+
+		// Split the node
+		t.size++
+		child := &node{
+			prefix: search[:commonPrefix],
+		}
+		parent.replaceEdge(edge{
+			label: search[0],
+			node:  child,
+		})
+
+		// Restore the existing node
+		child.addEdge(edge{
+			label: n.prefix[commonPrefix],
+			node:  n,
+		})
+		n.prefix = n.prefix[commonPrefix:]
+
+		// Create a new leaf node
+		leaf := &leafNode{
+			key: s,
+			val: v,
+		}
+
+		// If the new key is a subset, add to to this node
+		search = search[commonPrefix:]
+		if len(search) == 0 {
+			child.leaf = leaf
+			return nil, false
+		}
+
+		// Create a new edge for the node
+		child.addEdge(edge{
+			label: search[0],
+			node: &node{
+				leaf:   leaf,
+				prefix: search,
+			},
+		})
+		return nil, false
+	}
+}
+
+// Delete is used to delete a key, returning the previous
+// value and if it was deleted
+func (t *Tree) Delete(s string) (interface{}, bool) {
+	var parent *node
+	var label byte
+	n := t.root
+	search := s
+	for {
+		// Check for key exhaution
+		if len(search) == 0 {
+			if !n.isLeaf() {
+				break
+			}
+			goto DELETE
+		}
+
+		// Look for an edge
+		parent = n
+		label = search[0]
+		n = n.getEdge(label)
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if strings.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+	return nil, false
+
+DELETE:
+	// Delete the leaf
+	leaf := n.leaf
+	n.leaf = nil
+	t.size--
+
+	// Check if we should delete this node from the parent
+	if parent != nil && len(n.edges) == 0 {
+		parent.delEdge(label)
+	}
+
+	// Check if we should merge this node
+	if n != t.root && len(n.edges) == 1 {
+		n.mergeChild()
+	}
+
+	// Check if we should merge the parent's other child
+	if parent != nil && parent != t.root && len(parent.edges) == 1 && !parent.isLeaf() {
+		parent.mergeChild()
+	}
+
+	return leaf.val, true
+}
+
+// DeletePrefix is used to delete the subtree under a prefix
+// Returns how many nodes were deleted
+// Use this to delete large subtrees efficiently
+func (t *Tree) DeletePrefix(s string) int {
+	return t.deletePrefix(nil, t.root, s)
+}
+
+// delete does a recursive deletion
+func (t *Tree) deletePrefix(parent, n *node, prefix string) int {
+	// Check for key exhaustion
+	if len(prefix) == 0 {
+		// Remove the leaf node
+		subTreeSize := 0
+		//recursively walk from all edges of the node to be deleted
+		recursiveWalk(n, func(s string, v interface{}) bool {
+			subTreeSize++
+			return false
+		})
+		if n.isLeaf() {
+			n.leaf = nil
+		}
+		n.edges = nil // deletes the entire subtree
+
+		// Check if we should merge the parent's other child
+		if parent != nil && parent != t.root && len(parent.edges) == 1 && !parent.isLeaf() {
+			parent.mergeChild()
+		}
+		t.size -= subTreeSize
+		return subTreeSize
+	}
+
+	// Look for an edge
+	label := prefix[0]
+	child := n.getEdge(label)
+	if child == nil || (!strings.HasPrefix(child.prefix, prefix) && !strings.HasPrefix(prefix, child.prefix)) {
+		return 0
+	}
+
+	// Consume the search prefix
+	if len(child.prefix) > len(prefix) {
+		prefix = prefix[len(prefix):]
+	} else {
+		prefix = prefix[len(child.prefix):]
+	}
+	return t.deletePrefix(n, child, prefix)
+}
+
+func (n *node) mergeChild() {
+	e := n.edges[0]
+	child := e.node
+	n.prefix = n.prefix + child.prefix
+	n.leaf = child.leaf
+	n.edges = child.edges
+}
+
+// Get is used to lookup a specific key, returning
+// the value and if it was found
+func (t *Tree) Get(s string) (interface{}, bool) {
+	n := t.root
+	search := s
+	for {
+		// Check for key exhaution
+		if len(search) == 0 {
+			if n.isLeaf() {
+				return n.leaf.val, true
+			}
+			break
+		}
+
+		// Look for an edge
+		n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if strings.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+	return nil, false
+}
+
+// LongestPrefix is like Get, but instead of an
+// exact match, it will return the longest prefix match.
+func (t *Tree) LongestPrefix(s string) (string, interface{}, bool) {
+	var last *leafNode
+	n := t.root
+	search := s
+	for {
+		// Look for a leaf node
+		if n.isLeaf() {
+			last = n.leaf
+		}
+
+		// Check for key exhaution
+		if len(search) == 0 {
+			break
+		}
+
+		// Look for an edge
+		n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if strings.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+	if last != nil {
+		return last.key, last.val, true
+	}
+	return "", nil, false
+}
+
+// Minimum is used to return the minimum value in the tree
+func (t *Tree) Minimum() (string, interface{}, bool) {
+	n := t.root
+	for {
+		if n.isLeaf() {
+			return n.leaf.key, n.leaf.val, true
+		}
+		if len(n.edges) > 0 {
+			n = n.edges[0].node
+		} else {
+			break
+		}
+	}
+	return "", nil, false
+}
+
+// Maximum is used to return the maximum value in the tree
+func (t *Tree) Maximum() (string, interface{}, bool) {
+	n := t.root
+	for {
+		if num := len(n.edges); num > 0 {
+			n = n.edges[num-1].node
+			continue
+		}
+		if n.isLeaf() {
+			return n.leaf.key, n.leaf.val, true
+		}
+		break
+	}
+	return "", nil, false
+}
+
+// Walk is used to walk the tree
+func (t *Tree) Walk(fn WalkFn) {
+	recursiveWalk(t.root, fn)
+}
+
+// WalkPrefix is used to walk the tree under a prefix
+func (t *Tree) WalkPrefix(prefix string, fn WalkFn) {
+	n := t.root
+	search := prefix
+	for {
+		// Check for key exhaution
+		if len(search) == 0 {
+			recursiveWalk(n, fn)
+			return
+		}
+
+		// Look for an edge
+		n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if strings.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+
+		} else if strings.HasPrefix(n.prefix, search) {
+			// Child may be under our search prefix
+			recursiveWalk(n, fn)
+			return
+		} else {
+			break
+		}
+	}
+
+}
+
+// WalkPath is used to walk the tree, but only visiting nodes
+// from the root down to a given leaf. Where WalkPrefix walks
+// all the entries *under* the given prefix, this walks the
+// entries *above* the given prefix.
+func (t *Tree) WalkPath(path string, fn WalkFn) {
+	n := t.root
+	search := path
+	for {
+		// Visit the leaf values if any
+		if n.leaf != nil && fn(n.leaf.key, n.leaf.val) {
+			return
+		}
+
+		// Check for key exhaution
+		if len(search) == 0 {
+			return
+		}
+
+		// Look for an edge
+		n = n.getEdge(search[0])
+		if n == nil {
+			return
+		}
+
+		// Consume the search prefix
+		if strings.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+}
+
+// recursiveWalk is used to do a pre-order walk of a node
+// recursively. Returns true if the walk should be aborted
+func recursiveWalk(n *node, fn WalkFn) bool {
+	// Visit the leaf values if any
+	if n.leaf != nil && fn(n.leaf.key, n.leaf.val) {
+		return true
+	}
+
+	// Recurse on the children
+	for _, e := range n.edges {
+		if recursiveWalk(e.node, fn) {
+			return true
+		}
+	}
+	return false
+}
+
+// ToMap is used to walk the tree and convert it into a map
+func (t *Tree) ToMap() map[string]interface{} {
+	out := make(map[string]interface{}, t.size)
+	t.Walk(func(k string, v interface{}) bool {
+		out[k] = v
+		return false
+	})
+	return out
+}
diff --git a/vendor/github.com/beorn7/perks/LICENSE b/vendor/github.com/beorn7/perks/LICENSE
new file mode 100644
index 0000000000..339177be66
--- /dev/null
+++ b/vendor/github.com/beorn7/perks/LICENSE
@@ -0,0 +1,20 @@
+Copyright (C) 2013 Blake Mizerany
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/beorn7/perks/quantile/stream.go b/vendor/github.com/beorn7/perks/quantile/stream.go
new file mode 100644
index 0000000000..d7d14f8eb6
--- /dev/null
+++ b/vendor/github.com/beorn7/perks/quantile/stream.go
@@ -0,0 +1,316 @@
+// Package quantile computes approximate quantiles over an unbounded data
+// stream within low memory and CPU bounds.
+//
+// A small amount of accuracy is traded to achieve the above properties.
+//
+// Multiple streams can be merged before calling Query to generate a single set
+// of results. This is meaningful when the streams represent the same type of
+// data. See Merge and Samples.
+//
+// For more detailed information about the algorithm used, see:
+//
+// Effective Computation of Biased Quantiles over Data Streams
+//
+// http://www.cs.rutgers.edu/~muthu/bquant.pdf
+package quantile
+
+import (
+	"math"
+	"sort"
+)
+
+// Sample holds an observed value and meta information for compression. JSON
+// tags have been added for convenience.
+type Sample struct {
+	Value float64 `json:",string"`
+	Width float64 `json:",string"`
+	Delta float64 `json:",string"`
+}
+
+// Samples represents a slice of samples. It implements sort.Interface.
+type Samples []Sample
+
+func (a Samples) Len() int           { return len(a) }
+func (a Samples) Less(i, j int) bool { return a[i].Value < a[j].Value }
+func (a Samples) Swap(i, j int)      { a[i], a[j] = a[j], a[i] }
+
+type invariant func(s *stream, r float64) float64
+
+// NewLowBiased returns an initialized Stream for low-biased quantiles
+// (e.g. 0.01, 0.1, 0.5) where the needed quantiles are not known a priori, but
+// error guarantees can still be given even for the lower ranks of the data
+// distribution.
+//
+// The provided epsilon is a relative error, i.e. the true quantile of a value
+// returned by a query is guaranteed to be within (1±Epsilon)*Quantile.
+//
+// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error
+// properties.
+func NewLowBiased(epsilon float64) *Stream {
+	ƒ := func(s *stream, r float64) float64 {
+		return 2 * epsilon * r
+	}
+	return newStream(ƒ)
+}
+
+// NewHighBiased returns an initialized Stream for high-biased quantiles
+// (e.g. 0.01, 0.1, 0.5) where the needed quantiles are not known a priori, but
+// error guarantees can still be given even for the higher ranks of the data
+// distribution.
+//
+// The provided epsilon is a relative error, i.e. the true quantile of a value
+// returned by a query is guaranteed to be within 1-(1±Epsilon)*(1-Quantile).
+//
+// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error
+// properties.
+func NewHighBiased(epsilon float64) *Stream {
+	ƒ := func(s *stream, r float64) float64 {
+		return 2 * epsilon * (s.n - r)
+	}
+	return newStream(ƒ)
+}
+
+// NewTargeted returns an initialized Stream concerned with a particular set of
+// quantile values that are supplied a priori. Knowing these a priori reduces
+// space and computation time. The targets map maps the desired quantiles to
+// their absolute errors, i.e. the true quantile of a value returned by a query
+// is guaranteed to be within (Quantile±Epsilon).
+//
+// See http://www.cs.rutgers.edu/~muthu/bquant.pdf for time, space, and error properties.
+func NewTargeted(targetMap map[float64]float64) *Stream {
+	// Convert map to slice to avoid slow iterations on a map.
+	// ƒ is called on the hot path, so converting the map to a slice
+	// beforehand results in significant CPU savings.
+	targets := targetMapToSlice(targetMap)
+
+	ƒ := func(s *stream, r float64) float64 {
+		var m = math.MaxFloat64
+		var f float64
+		for _, t := range targets {
+			if t.quantile*s.n <= r {
+				f = (2 * t.epsilon * r) / t.quantile
+			} else {
+				f = (2 * t.epsilon * (s.n - r)) / (1 - t.quantile)
+			}
+			if f < m {
+				m = f
+			}
+		}
+		return m
+	}
+	return newStream(ƒ)
+}
+
+type target struct {
+	quantile float64
+	epsilon  float64
+}
+
+func targetMapToSlice(targetMap map[float64]float64) []target {
+	targets := make([]target, 0, len(targetMap))
+
+	for quantile, epsilon := range targetMap {
+		t := target{
+			quantile: quantile,
+			epsilon:  epsilon,
+		}
+		targets = append(targets, t)
+	}
+
+	return targets
+}
+
+// Stream computes quantiles for a stream of float64s. It is not thread-safe by
+// design. Take care when using across multiple goroutines.
+type Stream struct {
+	*stream
+	b      Samples
+	sorted bool
+}
+
+func newStream(ƒ invariant) *Stream {
+	x := &stream{ƒ: ƒ}
+	return &Stream{x, make(Samples, 0, 500), true}
+}
+
+// Insert inserts v into the stream.
+func (s *Stream) Insert(v float64) {
+	s.insert(Sample{Value: v, Width: 1})
+}
+
+func (s *Stream) insert(sample Sample) {
+	s.b = append(s.b, sample)
+	s.sorted = false
+	if len(s.b) == cap(s.b) {
+		s.flush()
+	}
+}
+
+// Query returns the computed qth percentiles value. If s was created with
+// NewTargeted, and q is not in the set of quantiles provided a priori, Query
+// will return an unspecified result.
+func (s *Stream) Query(q float64) float64 {
+	if !s.flushed() {
+		// Fast path when there hasn't been enough data for a flush;
+		// this also yields better accuracy for small sets of data.
+		l := len(s.b)
+		if l == 0 {
+			return 0
+		}
+		i := int(math.Ceil(float64(l) * q))
+		if i > 0 {
+			i -= 1
+		}
+		s.maybeSort()
+		return s.b[i].Value
+	}
+	s.flush()
+	return s.stream.query(q)
+}
+
+// Merge merges samples into the underlying streams samples. This is handy when
+// merging multiple streams from separate threads, database shards, etc.
+//
+// ATTENTION: This method is broken and does not yield correct results. The
+// underlying algorithm is not capable of merging streams correctly.
+func (s *Stream) Merge(samples Samples) {
+	sort.Sort(samples)
+	s.stream.merge(samples)
+}
+
+// Reset reinitializes and clears the list reusing the samples buffer memory.
+func (s *Stream) Reset() {
+	s.stream.reset()
+	s.b = s.b[:0]
+}
+
+// Samples returns stream samples held by s.
+func (s *Stream) Samples() Samples {
+	if !s.flushed() {
+		return s.b
+	}
+	s.flush()
+	return s.stream.samples()
+}
+
+// Count returns the total number of samples observed in the stream
+// since initialization.
+func (s *Stream) Count() int {
+	return len(s.b) + s.stream.count()
+}
+
+func (s *Stream) flush() {
+	s.maybeSort()
+	s.stream.merge(s.b)
+	s.b = s.b[:0]
+}
+
+func (s *Stream) maybeSort() {
+	if !s.sorted {
+		s.sorted = true
+		sort.Sort(s.b)
+	}
+}
+
+func (s *Stream) flushed() bool {
+	return len(s.stream.l) > 0
+}
+
+type stream struct {
+	n float64
+	l []Sample
+	ƒ invariant
+}
+
+func (s *stream) reset() {
+	s.l = s.l[:0]
+	s.n = 0
+}
+
+func (s *stream) insert(v float64) {
+	s.merge(Samples{{v, 1, 0}})
+}
+
+func (s *stream) merge(samples Samples) {
+	// TODO(beorn7): This tries to merge not only individual samples, but
+	// whole summaries. The paper doesn't mention merging summaries at
+	// all. Unittests show that the merging is inaccurate. Find out how to
+	// do merges properly.
+	var r float64
+	i := 0
+	for _, sample := range samples {
+		for ; i < len(s.l); i++ {
+			c := s.l[i]
+			if c.Value > sample.Value {
+				// Insert at position i.
+				s.l = append(s.l, Sample{})
+				copy(s.l[i+1:], s.l[i:])
+				s.l[i] = Sample{
+					sample.Value,
+					sample.Width,
+					math.Max(sample.Delta, math.Floor(s.ƒ(s, r))-1),
+					// TODO(beorn7): How to calculate delta correctly?
+				}
+				i++
+				goto inserted
+			}
+			r += c.Width
+		}
+		s.l = append(s.l, Sample{sample.Value, sample.Width, 0})
+		i++
+	inserted:
+		s.n += sample.Width
+		r += sample.Width
+	}
+	s.compress()
+}
+
+func (s *stream) count() int {
+	return int(s.n)
+}
+
+func (s *stream) query(q float64) float64 {
+	t := math.Ceil(q * s.n)
+	t += math.Ceil(s.ƒ(s, t) / 2)
+	p := s.l[0]
+	var r float64
+	for _, c := range s.l[1:] {
+		r += p.Width
+		if r+c.Width+c.Delta > t {
+			return p.Value
+		}
+		p = c
+	}
+	return p.Value
+}
+
+func (s *stream) compress() {
+	if len(s.l) < 2 {
+		return
+	}
+	x := s.l[len(s.l)-1]
+	xi := len(s.l) - 1
+	r := s.n - 1 - x.Width
+
+	for i := len(s.l) - 2; i >= 0; i-- {
+		c := s.l[i]
+		if c.Width+x.Width+x.Delta <= s.ƒ(s, r) {
+			x.Width += c.Width
+			s.l[xi] = x
+			// Remove element at i.
+			copy(s.l[i:], s.l[i+1:])
+			s.l = s.l[:len(s.l)-1]
+			xi -= 1
+		} else {
+			x = c
+			xi = i
+		}
+		r -= c.Width
+	}
+}
+
+func (s *stream) samples() Samples {
+	samples := make(Samples, len(s.l))
+	copy(samples, s.l)
+	return samples
+}
diff --git a/vendor/github.com/boltdb/bolt/LICENSE b/vendor/github.com/boltdb/bolt/LICENSE
new file mode 100644
index 0000000000..004e77fe5d
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/LICENSE
@@ -0,0 +1,20 @@
+The MIT License (MIT)
+
+Copyright (c) 2013 Ben Johnson
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/boltdb/bolt/bolt_386.go b/vendor/github.com/boltdb/bolt/bolt_386.go
new file mode 100644
index 0000000000..820d533c15
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_386.go
@@ -0,0 +1,10 @@
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0x7FFFFFFF // 2GB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0xFFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_amd64.go b/vendor/github.com/boltdb/bolt/bolt_amd64.go
new file mode 100644
index 0000000000..98fafdb47d
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_amd64.go
@@ -0,0 +1,10 @@
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0xFFFFFFFFFFFF // 256TB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0x7FFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_arm.go b/vendor/github.com/boltdb/bolt/bolt_arm.go
new file mode 100644
index 0000000000..7e5cb4b941
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_arm.go
@@ -0,0 +1,28 @@
+package bolt
+
+import "unsafe"
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0x7FFFFFFF // 2GB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0xFFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned bool
+
+func init() {
+	// Simple check to see whether this arch handles unaligned load/stores
+	// correctly.
+
+	// ARM9 and older devices require load/stores to be from/to aligned
+	// addresses. If not, the lower 2 bits are cleared and that address is
+	// read in a jumbled up order.
+
+	// See http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.faqs/ka15414.html
+
+	raw := [6]byte{0xfe, 0xef, 0x11, 0x22, 0x22, 0x11}
+	val := *(*uint32)(unsafe.Pointer(uintptr(unsafe.Pointer(&raw)) + 2))
+
+	brokenUnaligned = val != 0x11222211
+}
diff --git a/vendor/github.com/boltdb/bolt/bolt_arm64.go b/vendor/github.com/boltdb/bolt/bolt_arm64.go
new file mode 100644
index 0000000000..b26d84f91b
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_arm64.go
@@ -0,0 +1,12 @@
+// +build arm64
+
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0xFFFFFFFFFFFF // 256TB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0x7FFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_linux.go b/vendor/github.com/boltdb/bolt/bolt_linux.go
new file mode 100644
index 0000000000..2b67666140
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_linux.go
@@ -0,0 +1,10 @@
+package bolt
+
+import (
+	"syscall"
+)
+
+// fdatasync flushes written data to a file descriptor.
+func fdatasync(db *DB) error {
+	return syscall.Fdatasync(int(db.file.Fd()))
+}
diff --git a/vendor/github.com/boltdb/bolt/bolt_openbsd.go b/vendor/github.com/boltdb/bolt/bolt_openbsd.go
new file mode 100644
index 0000000000..7058c3d734
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_openbsd.go
@@ -0,0 +1,27 @@
+package bolt
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+const (
+	msAsync      = 1 << iota // perform asynchronous writes
+	msSync                   // perform synchronous writes
+	msInvalidate             // invalidate cached data
+)
+
+func msync(db *DB) error {
+	_, _, errno := syscall.Syscall(syscall.SYS_MSYNC, uintptr(unsafe.Pointer(db.data)), uintptr(db.datasz), msInvalidate)
+	if errno != 0 {
+		return errno
+	}
+	return nil
+}
+
+func fdatasync(db *DB) error {
+	if db.data != nil {
+		return msync(db)
+	}
+	return db.file.Sync()
+}
diff --git a/vendor/github.com/boltdb/bolt/bolt_ppc.go b/vendor/github.com/boltdb/bolt/bolt_ppc.go
new file mode 100644
index 0000000000..645ddc3edc
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_ppc.go
@@ -0,0 +1,9 @@
+// +build ppc
+
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0x7FFFFFFF // 2GB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0xFFFFFFF
diff --git a/vendor/github.com/boltdb/bolt/bolt_ppc64.go b/vendor/github.com/boltdb/bolt/bolt_ppc64.go
new file mode 100644
index 0000000000..9331d9771e
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_ppc64.go
@@ -0,0 +1,12 @@
+// +build ppc64
+
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0xFFFFFFFFFFFF // 256TB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0x7FFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_ppc64le.go b/vendor/github.com/boltdb/bolt/bolt_ppc64le.go
new file mode 100644
index 0000000000..8c143bc5d1
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_ppc64le.go
@@ -0,0 +1,12 @@
+// +build ppc64le
+
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0xFFFFFFFFFFFF // 256TB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0x7FFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_s390x.go b/vendor/github.com/boltdb/bolt/bolt_s390x.go
new file mode 100644
index 0000000000..d7c39af925
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_s390x.go
@@ -0,0 +1,12 @@
+// +build s390x
+
+package bolt
+
+// maxMapSize represents the largest mmap size supported by Bolt.
+const maxMapSize = 0xFFFFFFFFFFFF // 256TB
+
+// maxAllocSize is the size used when creating array pointers.
+const maxAllocSize = 0x7FFFFFFF
+
+// Are unaligned load/stores broken on this arch?
+var brokenUnaligned = false
diff --git a/vendor/github.com/boltdb/bolt/bolt_unix.go b/vendor/github.com/boltdb/bolt/bolt_unix.go
new file mode 100644
index 0000000000..cad62dda1e
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_unix.go
@@ -0,0 +1,89 @@
+// +build !windows,!plan9,!solaris
+
+package bolt
+
+import (
+	"fmt"
+	"os"
+	"syscall"
+	"time"
+	"unsafe"
+)
+
+// flock acquires an advisory lock on a file descriptor.
+func flock(db *DB, mode os.FileMode, exclusive bool, timeout time.Duration) error {
+	var t time.Time
+	for {
+		// If we're beyond our timeout then return an error.
+		// This can only occur after we've attempted a flock once.
+		if t.IsZero() {
+			t = time.Now()
+		} else if timeout > 0 && time.Since(t) > timeout {
+			return ErrTimeout
+		}
+		flag := syscall.LOCK_SH
+		if exclusive {
+			flag = syscall.LOCK_EX
+		}
+
+		// Otherwise attempt to obtain an exclusive lock.
+		err := syscall.Flock(int(db.file.Fd()), flag|syscall.LOCK_NB)
+		if err == nil {
+			return nil
+		} else if err != syscall.EWOULDBLOCK {
+			return err
+		}
+
+		// Wait for a bit and try again.
+		time.Sleep(50 * time.Millisecond)
+	}
+}
+
+// funlock releases an advisory lock on a file descriptor.
+func funlock(db *DB) error {
+	return syscall.Flock(int(db.file.Fd()), syscall.LOCK_UN)
+}
+
+// mmap memory maps a DB's data file.
+func mmap(db *DB, sz int) error {
+	// Map the data file to memory.
+	b, err := syscall.Mmap(int(db.file.Fd()), 0, sz, syscall.PROT_READ, syscall.MAP_SHARED|db.MmapFlags)
+	if err != nil {
+		return err
+	}
+
+	// Advise the kernel that the mmap is accessed randomly.
+	if err := madvise(b, syscall.MADV_RANDOM); err != nil {
+		return fmt.Errorf("madvise: %s", err)
+	}
+
+	// Save the original byte slice and convert to a byte array pointer.
+	db.dataref = b
+	db.data = (*[maxMapSize]byte)(unsafe.Pointer(&b[0]))
+	db.datasz = sz
+	return nil
+}
+
+// munmap unmaps a DB's data file from memory.
+func munmap(db *DB) error {
+	// Ignore the unmap if we have no mapped data.
+	if db.dataref == nil {
+		return nil
+	}
+
+	// Unmap using the original byte slice.
+	err := syscall.Munmap(db.dataref)
+	db.dataref = nil
+	db.data = nil
+	db.datasz = 0
+	return err
+}
+
+// NOTE: This function is copied from stdlib because it is not available on darwin.
+func madvise(b []byte, advice int) (err error) {
+	_, _, e1 := syscall.Syscall(syscall.SYS_MADVISE, uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)), uintptr(advice))
+	if e1 != 0 {
+		err = e1
+	}
+	return
+}
diff --git a/vendor/github.com/boltdb/bolt/bolt_unix_solaris.go b/vendor/github.com/boltdb/bolt/bolt_unix_solaris.go
new file mode 100644
index 0000000000..307bf2b3ee
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_unix_solaris.go
@@ -0,0 +1,90 @@
+package bolt
+
+import (
+	"fmt"
+	"os"
+	"syscall"
+	"time"
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+// flock acquires an advisory lock on a file descriptor.
+func flock(db *DB, mode os.FileMode, exclusive bool, timeout time.Duration) error {
+	var t time.Time
+	for {
+		// If we're beyond our timeout then return an error.
+		// This can only occur after we've attempted a flock once.
+		if t.IsZero() {
+			t = time.Now()
+		} else if timeout > 0 && time.Since(t) > timeout {
+			return ErrTimeout
+		}
+		var lock syscall.Flock_t
+		lock.Start = 0
+		lock.Len = 0
+		lock.Pid = 0
+		lock.Whence = 0
+		lock.Pid = 0
+		if exclusive {
+			lock.Type = syscall.F_WRLCK
+		} else {
+			lock.Type = syscall.F_RDLCK
+		}
+		err := syscall.FcntlFlock(db.file.Fd(), syscall.F_SETLK, &lock)
+		if err == nil {
+			return nil
+		} else if err != syscall.EAGAIN {
+			return err
+		}
+
+		// Wait for a bit and try again.
+		time.Sleep(50 * time.Millisecond)
+	}
+}
+
+// funlock releases an advisory lock on a file descriptor.
+func funlock(db *DB) error {
+	var lock syscall.Flock_t
+	lock.Start = 0
+	lock.Len = 0
+	lock.Type = syscall.F_UNLCK
+	lock.Whence = 0
+	return syscall.FcntlFlock(uintptr(db.file.Fd()), syscall.F_SETLK, &lock)
+}
+
+// mmap memory maps a DB's data file.
+func mmap(db *DB, sz int) error {
+	// Map the data file to memory.
+	b, err := unix.Mmap(int(db.file.Fd()), 0, sz, syscall.PROT_READ, syscall.MAP_SHARED|db.MmapFlags)
+	if err != nil {
+		return err
+	}
+
+	// Advise the kernel that the mmap is accessed randomly.
+	if err := unix.Madvise(b, syscall.MADV_RANDOM); err != nil {
+		return fmt.Errorf("madvise: %s", err)
+	}
+
+	// Save the original byte slice and convert to a byte array pointer.
+	db.dataref = b
+	db.data = (*[maxMapSize]byte)(unsafe.Pointer(&b[0]))
+	db.datasz = sz
+	return nil
+}
+
+// munmap unmaps a DB's data file from memory.
+func munmap(db *DB) error {
+	// Ignore the unmap if we have no mapped data.
+	if db.dataref == nil {
+		return nil
+	}
+
+	// Unmap using the original byte slice.
+	err := unix.Munmap(db.dataref)
+	db.dataref = nil
+	db.data = nil
+	db.datasz = 0
+	return err
+}
diff --git a/vendor/github.com/boltdb/bolt/bolt_windows.go b/vendor/github.com/boltdb/bolt/bolt_windows.go
new file mode 100644
index 0000000000..b00fb0720a
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bolt_windows.go
@@ -0,0 +1,144 @@
+package bolt
+
+import (
+	"fmt"
+	"os"
+	"syscall"
+	"time"
+	"unsafe"
+)
+
+// LockFileEx code derived from golang build filemutex_windows.go @ v1.5.1
+var (
+	modkernel32      = syscall.NewLazyDLL("kernel32.dll")
+	procLockFileEx   = modkernel32.NewProc("LockFileEx")
+	procUnlockFileEx = modkernel32.NewProc("UnlockFileEx")
+)
+
+const (
+	lockExt = ".lock"
+
+	// see https://msdn.microsoft.com/en-us/library/windows/desktop/aa365203(v=vs.85).aspx
+	flagLockExclusive       = 2
+	flagLockFailImmediately = 1
+
+	// see https://msdn.microsoft.com/en-us/library/windows/desktop/ms681382(v=vs.85).aspx
+	errLockViolation syscall.Errno = 0x21
+)
+
+func lockFileEx(h syscall.Handle, flags, reserved, locklow, lockhigh uint32, ol *syscall.Overlapped) (err error) {
+	r, _, err := procLockFileEx.Call(uintptr(h), uintptr(flags), uintptr(reserved), uintptr(locklow), uintptr(lockhigh), uintptr(unsafe.Pointer(ol)))
+	if r == 0 {
+		return err
+	}
+	return nil
+}
+
+func unlockFileEx(h syscall.Handle, reserved, locklow, lockhigh uint32, ol *syscall.Overlapped) (err error) {
+	r, _, err := procUnlockFileEx.Call(uintptr(h), uintptr(reserved), uintptr(locklow), uintptr(lockhigh), uintptr(unsafe.Pointer(ol)), 0)
+	if r == 0 {
+		return err
+	}
+	return nil
+}
+
+// fdatasync flushes written data to a file descriptor.
+func fdatasync(db *DB) error {
+	return db.file.Sync()
+}
+
+// flock acquires an advisory lock on a file descriptor.
+func flock(db *DB, mode os.FileMode, exclusive bool, timeout time.Duration) error {
+	// Create a separate lock file on windows because a process
+	// cannot share an exclusive lock on the same file. This is
+	// needed during Tx.WriteTo().
+	f, err := os.OpenFile(db.path+lockExt, os.O_CREATE, mode)
+	if err != nil {
+		return err
+	}
+	db.lockfile = f
+
+	var t time.Time
+	for {
+		// If we're beyond our timeout then return an error.
+		// This can only occur after we've attempted a flock once.
+		if t.IsZero() {
+			t = time.Now()
+		} else if timeout > 0 && time.Since(t) > timeout {
+			return ErrTimeout
+		}
+
+		var flag uint32 = flagLockFailImmediately
+		if exclusive {
+			flag |= flagLockExclusive
+		}
+
+		err := lockFileEx(syscall.Handle(db.lockfile.Fd()), flag, 0, 1, 0, &syscall.Overlapped{})
+		if err == nil {
+			return nil
+		} else if err != errLockViolation {
+			return err
+		}
+
+		// Wait for a bit and try again.
+		time.Sleep(50 * time.Millisecond)
+	}
+}
+
+// funlock releases an advisory lock on a file descriptor.
+func funlock(db *DB) error {
+	err := unlockFileEx(syscall.Handle(db.lockfile.Fd()), 0, 1, 0, &syscall.Overlapped{})
+	db.lockfile.Close()
+	os.Remove(db.path + lockExt)
+	return err
+}
+
+// mmap memory maps a DB's data file.
+// Based on: https://github.com/edsrzf/mmap-go
+func mmap(db *DB, sz int) error {
+	if !db.readOnly {
+		// Truncate the database to the size of the mmap.
+		if err := db.file.Truncate(int64(sz)); err != nil {
+			return fmt.Errorf("truncate: %s", err)
+		}
+	}
+
+	// Open a file mapping handle.
+	sizelo := uint32(sz >> 32)
+	sizehi := uint32(sz) & 0xffffffff
+	h, errno := syscall.CreateFileMapping(syscall.Handle(db.file.Fd()), nil, syscall.PAGE_READONLY, sizelo, sizehi, nil)
+	if h == 0 {
+		return os.NewSyscallError("CreateFileMapping", errno)
+	}
+
+	// Create the memory map.
+	addr, errno := syscall.MapViewOfFile(h, syscall.FILE_MAP_READ, 0, 0, uintptr(sz))
+	if addr == 0 {
+		return os.NewSyscallError("MapViewOfFile", errno)
+	}
+
+	// Close mapping handle.
+	if err := syscall.CloseHandle(syscall.Handle(h)); err != nil {
+		return os.NewSyscallError("CloseHandle", err)
+	}
+
+	// Convert to a byte array.
+	db.data = ((*[maxMapSize]byte)(unsafe.Pointer(addr)))
+	db.datasz = sz
+
+	return nil
+}
+
+// munmap unmaps a pointer from a file.
+// Based on: https://github.com/edsrzf/mmap-go
+func munmap(db *DB) error {
+	if db.data == nil {
+		return nil
+	}
+
+	addr := (uintptr)(unsafe.Pointer(&db.data[0]))
+	if err := syscall.UnmapViewOfFile(addr); err != nil {
+		return os.NewSyscallError("UnmapViewOfFile", err)
+	}
+	return nil
+}
diff --git a/vendor/github.com/boltdb/bolt/boltsync_unix.go b/vendor/github.com/boltdb/bolt/boltsync_unix.go
new file mode 100644
index 0000000000..f50442523c
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/boltsync_unix.go
@@ -0,0 +1,8 @@
+// +build !windows,!plan9,!linux,!openbsd
+
+package bolt
+
+// fdatasync flushes written data to a file descriptor.
+func fdatasync(db *DB) error {
+	return db.file.Sync()
+}
diff --git a/vendor/github.com/boltdb/bolt/bucket.go b/vendor/github.com/boltdb/bolt/bucket.go
new file mode 100644
index 0000000000..0c5bf27463
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/bucket.go
@@ -0,0 +1,777 @@
+package bolt
+
+import (
+	"bytes"
+	"fmt"
+	"unsafe"
+)
+
+const (
+	// MaxKeySize is the maximum length of a key, in bytes.
+	MaxKeySize = 32768
+
+	// MaxValueSize is the maximum length of a value, in bytes.
+	MaxValueSize = (1 << 31) - 2
+)
+
+const (
+	maxUint = ^uint(0)
+	minUint = 0
+	maxInt  = int(^uint(0) >> 1)
+	minInt  = -maxInt - 1
+)
+
+const bucketHeaderSize = int(unsafe.Sizeof(bucket{}))
+
+const (
+	minFillPercent = 0.1
+	maxFillPercent = 1.0
+)
+
+// DefaultFillPercent is the percentage that split pages are filled.
+// This value can be changed by setting Bucket.FillPercent.
+const DefaultFillPercent = 0.5
+
+// Bucket represents a collection of key/value pairs inside the database.
+type Bucket struct {
+	*bucket
+	tx       *Tx                // the associated transaction
+	buckets  map[string]*Bucket // subbucket cache
+	page     *page              // inline page reference
+	rootNode *node              // materialized node for the root page.
+	nodes    map[pgid]*node     // node cache
+
+	// Sets the threshold for filling nodes when they split. By default,
+	// the bucket will fill to 50% but it can be useful to increase this
+	// amount if you know that your write workloads are mostly append-only.
+	//
+	// This is non-persisted across transactions so it must be set in every Tx.
+	FillPercent float64
+}
+
+// bucket represents the on-file representation of a bucket.
+// This is stored as the "value" of a bucket key. If the bucket is small enough,
+// then its root page can be stored inline in the "value", after the bucket
+// header. In the case of inline buckets, the "root" will be 0.
+type bucket struct {
+	root     pgid   // page id of the bucket's root-level page
+	sequence uint64 // monotonically incrementing, used by NextSequence()
+}
+
+// newBucket returns a new bucket associated with a transaction.
+func newBucket(tx *Tx) Bucket {
+	var b = Bucket{tx: tx, FillPercent: DefaultFillPercent}
+	if tx.writable {
+		b.buckets = make(map[string]*Bucket)
+		b.nodes = make(map[pgid]*node)
+	}
+	return b
+}
+
+// Tx returns the tx of the bucket.
+func (b *Bucket) Tx() *Tx {
+	return b.tx
+}
+
+// Root returns the root of the bucket.
+func (b *Bucket) Root() pgid {
+	return b.root
+}
+
+// Writable returns whether the bucket is writable.
+func (b *Bucket) Writable() bool {
+	return b.tx.writable
+}
+
+// Cursor creates a cursor associated with the bucket.
+// The cursor is only valid as long as the transaction is open.
+// Do not use a cursor after the transaction is closed.
+func (b *Bucket) Cursor() *Cursor {
+	// Update transaction statistics.
+	b.tx.stats.CursorCount++
+
+	// Allocate and return a cursor.
+	return &Cursor{
+		bucket: b,
+		stack:  make([]elemRef, 0),
+	}
+}
+
+// Bucket retrieves a nested bucket by name.
+// Returns nil if the bucket does not exist.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (b *Bucket) Bucket(name []byte) *Bucket {
+	if b.buckets != nil {
+		if child := b.buckets[string(name)]; child != nil {
+			return child
+		}
+	}
+
+	// Move cursor to key.
+	c := b.Cursor()
+	k, v, flags := c.seek(name)
+
+	// Return nil if the key doesn't exist or it is not a bucket.
+	if !bytes.Equal(name, k) || (flags&bucketLeafFlag) == 0 {
+		return nil
+	}
+
+	// Otherwise create a bucket and cache it.
+	var child = b.openBucket(v)
+	if b.buckets != nil {
+		b.buckets[string(name)] = child
+	}
+
+	return child
+}
+
+// Helper method that re-interprets a sub-bucket value
+// from a parent into a Bucket
+func (b *Bucket) openBucket(value []byte) *Bucket {
+	var child = newBucket(b.tx)
+
+	// If unaligned load/stores are broken on this arch and value is
+	// unaligned simply clone to an aligned byte array.
+	unaligned := brokenUnaligned && uintptr(unsafe.Pointer(&value[0]))&3 != 0
+
+	if unaligned {
+		value = cloneBytes(value)
+	}
+
+	// If this is a writable transaction then we need to copy the bucket entry.
+	// Read-only transactions can point directly at the mmap entry.
+	if b.tx.writable && !unaligned {
+		child.bucket = &bucket{}
+		*child.bucket = *(*bucket)(unsafe.Pointer(&value[0]))
+	} else {
+		child.bucket = (*bucket)(unsafe.Pointer(&value[0]))
+	}
+
+	// Save a reference to the inline page if the bucket is inline.
+	if child.root == 0 {
+		child.page = (*page)(unsafe.Pointer(&value[bucketHeaderSize]))
+	}
+
+	return &child
+}
+
+// CreateBucket creates a new bucket at the given key and returns the new bucket.
+// Returns an error if the key already exists, if the bucket name is blank, or if the bucket name is too long.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (b *Bucket) CreateBucket(key []byte) (*Bucket, error) {
+	if b.tx.db == nil {
+		return nil, ErrTxClosed
+	} else if !b.tx.writable {
+		return nil, ErrTxNotWritable
+	} else if len(key) == 0 {
+		return nil, ErrBucketNameRequired
+	}
+
+	// Move cursor to correct position.
+	c := b.Cursor()
+	k, _, flags := c.seek(key)
+
+	// Return an error if there is an existing key.
+	if bytes.Equal(key, k) {
+		if (flags & bucketLeafFlag) != 0 {
+			return nil, ErrBucketExists
+		}
+		return nil, ErrIncompatibleValue
+	}
+
+	// Create empty, inline bucket.
+	var bucket = Bucket{
+		bucket:      &bucket{},
+		rootNode:    &node{isLeaf: true},
+		FillPercent: DefaultFillPercent,
+	}
+	var value = bucket.write()
+
+	// Insert into node.
+	key = cloneBytes(key)
+	c.node().put(key, key, value, 0, bucketLeafFlag)
+
+	// Since subbuckets are not allowed on inline buckets, we need to
+	// dereference the inline page, if it exists. This will cause the bucket
+	// to be treated as a regular, non-inline bucket for the rest of the tx.
+	b.page = nil
+
+	return b.Bucket(key), nil
+}
+
+// CreateBucketIfNotExists creates a new bucket if it doesn't already exist and returns a reference to it.
+// Returns an error if the bucket name is blank, or if the bucket name is too long.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (b *Bucket) CreateBucketIfNotExists(key []byte) (*Bucket, error) {
+	child, err := b.CreateBucket(key)
+	if err == ErrBucketExists {
+		return b.Bucket(key), nil
+	} else if err != nil {
+		return nil, err
+	}
+	return child, nil
+}
+
+// DeleteBucket deletes a bucket at the given key.
+// Returns an error if the bucket does not exists, or if the key represents a non-bucket value.
+func (b *Bucket) DeleteBucket(key []byte) error {
+	if b.tx.db == nil {
+		return ErrTxClosed
+	} else if !b.Writable() {
+		return ErrTxNotWritable
+	}
+
+	// Move cursor to correct position.
+	c := b.Cursor()
+	k, _, flags := c.seek(key)
+
+	// Return an error if bucket doesn't exist or is not a bucket.
+	if !bytes.Equal(key, k) {
+		return ErrBucketNotFound
+	} else if (flags & bucketLeafFlag) == 0 {
+		return ErrIncompatibleValue
+	}
+
+	// Recursively delete all child buckets.
+	child := b.Bucket(key)
+	err := child.ForEach(func(k, v []byte) error {
+		if v == nil {
+			if err := child.DeleteBucket(k); err != nil {
+				return fmt.Errorf("delete bucket: %s", err)
+			}
+		}
+		return nil
+	})
+	if err != nil {
+		return err
+	}
+
+	// Remove cached copy.
+	delete(b.buckets, string(key))
+
+	// Release all bucket pages to freelist.
+	child.nodes = nil
+	child.rootNode = nil
+	child.free()
+
+	// Delete the node if we have a matching key.
+	c.node().del(key)
+
+	return nil
+}
+
+// Get retrieves the value for a key in the bucket.
+// Returns a nil value if the key does not exist or if the key is a nested bucket.
+// The returned value is only valid for the life of the transaction.
+func (b *Bucket) Get(key []byte) []byte {
+	k, v, flags := b.Cursor().seek(key)
+
+	// Return nil if this is a bucket.
+	if (flags & bucketLeafFlag) != 0 {
+		return nil
+	}
+
+	// If our target node isn't the same key as what's passed in then return nil.
+	if !bytes.Equal(key, k) {
+		return nil
+	}
+	return v
+}
+
+// Put sets the value for a key in the bucket.
+// If the key exist then its previous value will be overwritten.
+// Supplied value must remain valid for the life of the transaction.
+// Returns an error if the bucket was created from a read-only transaction, if the key is blank, if the key is too large, or if the value is too large.
+func (b *Bucket) Put(key []byte, value []byte) error {
+	if b.tx.db == nil {
+		return ErrTxClosed
+	} else if !b.Writable() {
+		return ErrTxNotWritable
+	} else if len(key) == 0 {
+		return ErrKeyRequired
+	} else if len(key) > MaxKeySize {
+		return ErrKeyTooLarge
+	} else if int64(len(value)) > MaxValueSize {
+		return ErrValueTooLarge
+	}
+
+	// Move cursor to correct position.
+	c := b.Cursor()
+	k, _, flags := c.seek(key)
+
+	// Return an error if there is an existing key with a bucket value.
+	if bytes.Equal(key, k) && (flags&bucketLeafFlag) != 0 {
+		return ErrIncompatibleValue
+	}
+
+	// Insert into node.
+	key = cloneBytes(key)
+	c.node().put(key, key, value, 0, 0)
+
+	return nil
+}
+
+// Delete removes a key from the bucket.
+// If the key does not exist then nothing is done and a nil error is returned.
+// Returns an error if the bucket was created from a read-only transaction.
+func (b *Bucket) Delete(key []byte) error {
+	if b.tx.db == nil {
+		return ErrTxClosed
+	} else if !b.Writable() {
+		return ErrTxNotWritable
+	}
+
+	// Move cursor to correct position.
+	c := b.Cursor()
+	_, _, flags := c.seek(key)
+
+	// Return an error if there is already existing bucket value.
+	if (flags & bucketLeafFlag) != 0 {
+		return ErrIncompatibleValue
+	}
+
+	// Delete the node if we have a matching key.
+	c.node().del(key)
+
+	return nil
+}
+
+// Sequence returns the current integer for the bucket without incrementing it.
+func (b *Bucket) Sequence() uint64 { return b.bucket.sequence }
+
+// SetSequence updates the sequence number for the bucket.
+func (b *Bucket) SetSequence(v uint64) error {
+	if b.tx.db == nil {
+		return ErrTxClosed
+	} else if !b.Writable() {
+		return ErrTxNotWritable
+	}
+
+	// Materialize the root node if it hasn't been already so that the
+	// bucket will be saved during commit.
+	if b.rootNode == nil {
+		_ = b.node(b.root, nil)
+	}
+
+	// Increment and return the sequence.
+	b.bucket.sequence = v
+	return nil
+}
+
+// NextSequence returns an autoincrementing integer for the bucket.
+func (b *Bucket) NextSequence() (uint64, error) {
+	if b.tx.db == nil {
+		return 0, ErrTxClosed
+	} else if !b.Writable() {
+		return 0, ErrTxNotWritable
+	}
+
+	// Materialize the root node if it hasn't been already so that the
+	// bucket will be saved during commit.
+	if b.rootNode == nil {
+		_ = b.node(b.root, nil)
+	}
+
+	// Increment and return the sequence.
+	b.bucket.sequence++
+	return b.bucket.sequence, nil
+}
+
+// ForEach executes a function for each key/value pair in a bucket.
+// If the provided function returns an error then the iteration is stopped and
+// the error is returned to the caller. The provided function must not modify
+// the bucket; this will result in undefined behavior.
+func (b *Bucket) ForEach(fn func(k, v []byte) error) error {
+	if b.tx.db == nil {
+		return ErrTxClosed
+	}
+	c := b.Cursor()
+	for k, v := c.First(); k != nil; k, v = c.Next() {
+		if err := fn(k, v); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// Stat returns stats on a bucket.
+func (b *Bucket) Stats() BucketStats {
+	var s, subStats BucketStats
+	pageSize := b.tx.db.pageSize
+	s.BucketN += 1
+	if b.root == 0 {
+		s.InlineBucketN += 1
+	}
+	b.forEachPage(func(p *page, depth int) {
+		if (p.flags & leafPageFlag) != 0 {
+			s.KeyN += int(p.count)
+
+			// used totals the used bytes for the page
+			used := pageHeaderSize
+
+			if p.count != 0 {
+				// If page has any elements, add all element headers.
+				used += leafPageElementSize * int(p.count-1)
+
+				// Add all element key, value sizes.
+				// The computation takes advantage of the fact that the position
+				// of the last element's key/value equals to the total of the sizes
+				// of all previous elements' keys and values.
+				// It also includes the last element's header.
+				lastElement := p.leafPageElement(p.count - 1)
+				used += int(lastElement.pos + lastElement.ksize + lastElement.vsize)
+			}
+
+			if b.root == 0 {
+				// For inlined bucket just update the inline stats
+				s.InlineBucketInuse += used
+			} else {
+				// For non-inlined bucket update all the leaf stats
+				s.LeafPageN++
+				s.LeafInuse += used
+				s.LeafOverflowN += int(p.overflow)
+
+				// Collect stats from sub-buckets.
+				// Do that by iterating over all element headers
+				// looking for the ones with the bucketLeafFlag.
+				for i := uint16(0); i < p.count; i++ {
+					e := p.leafPageElement(i)
+					if (e.flags & bucketLeafFlag) != 0 {
+						// For any bucket element, open the element value
+						// and recursively call Stats on the contained bucket.
+						subStats.Add(b.openBucket(e.value()).Stats())
+					}
+				}
+			}
+		} else if (p.flags & branchPageFlag) != 0 {
+			s.BranchPageN++
+			lastElement := p.branchPageElement(p.count - 1)
+
+			// used totals the used bytes for the page
+			// Add header and all element headers.
+			used := pageHeaderSize + (branchPageElementSize * int(p.count-1))
+
+			// Add size of all keys and values.
+			// Again, use the fact that last element's position equals to
+			// the total of key, value sizes of all previous elements.
+			used += int(lastElement.pos + lastElement.ksize)
+			s.BranchInuse += used
+			s.BranchOverflowN += int(p.overflow)
+		}
+
+		// Keep track of maximum page depth.
+		if depth+1 > s.Depth {
+			s.Depth = (depth + 1)
+		}
+	})
+
+	// Alloc stats can be computed from page counts and pageSize.
+	s.BranchAlloc = (s.BranchPageN + s.BranchOverflowN) * pageSize
+	s.LeafAlloc = (s.LeafPageN + s.LeafOverflowN) * pageSize
+
+	// Add the max depth of sub-buckets to get total nested depth.
+	s.Depth += subStats.Depth
+	// Add the stats for all sub-buckets
+	s.Add(subStats)
+	return s
+}
+
+// forEachPage iterates over every page in a bucket, including inline pages.
+func (b *Bucket) forEachPage(fn func(*page, int)) {
+	// If we have an inline page then just use that.
+	if b.page != nil {
+		fn(b.page, 0)
+		return
+	}
+
+	// Otherwise traverse the page hierarchy.
+	b.tx.forEachPage(b.root, 0, fn)
+}
+
+// forEachPageNode iterates over every page (or node) in a bucket.
+// This also includes inline pages.
+func (b *Bucket) forEachPageNode(fn func(*page, *node, int)) {
+	// If we have an inline page or root node then just use that.
+	if b.page != nil {
+		fn(b.page, nil, 0)
+		return
+	}
+	b._forEachPageNode(b.root, 0, fn)
+}
+
+func (b *Bucket) _forEachPageNode(pgid pgid, depth int, fn func(*page, *node, int)) {
+	var p, n = b.pageNode(pgid)
+
+	// Execute function.
+	fn(p, n, depth)
+
+	// Recursively loop over children.
+	if p != nil {
+		if (p.flags & branchPageFlag) != 0 {
+			for i := 0; i < int(p.count); i++ {
+				elem := p.branchPageElement(uint16(i))
+				b._forEachPageNode(elem.pgid, depth+1, fn)
+			}
+		}
+	} else {
+		if !n.isLeaf {
+			for _, inode := range n.inodes {
+				b._forEachPageNode(inode.pgid, depth+1, fn)
+			}
+		}
+	}
+}
+
+// spill writes all the nodes for this bucket to dirty pages.
+func (b *Bucket) spill() error {
+	// Spill all child buckets first.
+	for name, child := range b.buckets {
+		// If the child bucket is small enough and it has no child buckets then
+		// write it inline into the parent bucket's page. Otherwise spill it
+		// like a normal bucket and make the parent value a pointer to the page.
+		var value []byte
+		if child.inlineable() {
+			child.free()
+			value = child.write()
+		} else {
+			if err := child.spill(); err != nil {
+				return err
+			}
+
+			// Update the child bucket header in this bucket.
+			value = make([]byte, unsafe.Sizeof(bucket{}))
+			var bucket = (*bucket)(unsafe.Pointer(&value[0]))
+			*bucket = *child.bucket
+		}
+
+		// Skip writing the bucket if there are no materialized nodes.
+		if child.rootNode == nil {
+			continue
+		}
+
+		// Update parent node.
+		var c = b.Cursor()
+		k, _, flags := c.seek([]byte(name))
+		if !bytes.Equal([]byte(name), k) {
+			panic(fmt.Sprintf("misplaced bucket header: %x -> %x", []byte(name), k))
+		}
+		if flags&bucketLeafFlag == 0 {
+			panic(fmt.Sprintf("unexpected bucket header flag: %x", flags))
+		}
+		c.node().put([]byte(name), []byte(name), value, 0, bucketLeafFlag)
+	}
+
+	// Ignore if there's not a materialized root node.
+	if b.rootNode == nil {
+		return nil
+	}
+
+	// Spill nodes.
+	if err := b.rootNode.spill(); err != nil {
+		return err
+	}
+	b.rootNode = b.rootNode.root()
+
+	// Update the root node for this bucket.
+	if b.rootNode.pgid >= b.tx.meta.pgid {
+		panic(fmt.Sprintf("pgid (%d) above high water mark (%d)", b.rootNode.pgid, b.tx.meta.pgid))
+	}
+	b.root = b.rootNode.pgid
+
+	return nil
+}
+
+// inlineable returns true if a bucket is small enough to be written inline
+// and if it contains no subbuckets. Otherwise returns false.
+func (b *Bucket) inlineable() bool {
+	var n = b.rootNode
+
+	// Bucket must only contain a single leaf node.
+	if n == nil || !n.isLeaf {
+		return false
+	}
+
+	// Bucket is not inlineable if it contains subbuckets or if it goes beyond
+	// our threshold for inline bucket size.
+	var size = pageHeaderSize
+	for _, inode := range n.inodes {
+		size += leafPageElementSize + len(inode.key) + len(inode.value)
+
+		if inode.flags&bucketLeafFlag != 0 {
+			return false
+		} else if size > b.maxInlineBucketSize() {
+			return false
+		}
+	}
+
+	return true
+}
+
+// Returns the maximum total size of a bucket to make it a candidate for inlining.
+func (b *Bucket) maxInlineBucketSize() int {
+	return b.tx.db.pageSize / 4
+}
+
+// write allocates and writes a bucket to a byte slice.
+func (b *Bucket) write() []byte {
+	// Allocate the appropriate size.
+	var n = b.rootNode
+	var value = make([]byte, bucketHeaderSize+n.size())
+
+	// Write a bucket header.
+	var bucket = (*bucket)(unsafe.Pointer(&value[0]))
+	*bucket = *b.bucket
+
+	// Convert byte slice to a fake page and write the root node.
+	var p = (*page)(unsafe.Pointer(&value[bucketHeaderSize]))
+	n.write(p)
+
+	return value
+}
+
+// rebalance attempts to balance all nodes.
+func (b *Bucket) rebalance() {
+	for _, n := range b.nodes {
+		n.rebalance()
+	}
+	for _, child := range b.buckets {
+		child.rebalance()
+	}
+}
+
+// node creates a node from a page and associates it with a given parent.
+func (b *Bucket) node(pgid pgid, parent *node) *node {
+	_assert(b.nodes != nil, "nodes map expected")
+
+	// Retrieve node if it's already been created.
+	if n := b.nodes[pgid]; n != nil {
+		return n
+	}
+
+	// Otherwise create a node and cache it.
+	n := &node{bucket: b, parent: parent}
+	if parent == nil {
+		b.rootNode = n
+	} else {
+		parent.children = append(parent.children, n)
+	}
+
+	// Use the inline page if this is an inline bucket.
+	var p = b.page
+	if p == nil {
+		p = b.tx.page(pgid)
+	}
+
+	// Read the page into the node and cache it.
+	n.read(p)
+	b.nodes[pgid] = n
+
+	// Update statistics.
+	b.tx.stats.NodeCount++
+
+	return n
+}
+
+// free recursively frees all pages in the bucket.
+func (b *Bucket) free() {
+	if b.root == 0 {
+		return
+	}
+
+	var tx = b.tx
+	b.forEachPageNode(func(p *page, n *node, _ int) {
+		if p != nil {
+			tx.db.freelist.free(tx.meta.txid, p)
+		} else {
+			n.free()
+		}
+	})
+	b.root = 0
+}
+
+// dereference removes all references to the old mmap.
+func (b *Bucket) dereference() {
+	if b.rootNode != nil {
+		b.rootNode.root().dereference()
+	}
+
+	for _, child := range b.buckets {
+		child.dereference()
+	}
+}
+
+// pageNode returns the in-memory node, if it exists.
+// Otherwise returns the underlying page.
+func (b *Bucket) pageNode(id pgid) (*page, *node) {
+	// Inline buckets have a fake page embedded in their value so treat them
+	// differently. We'll return the rootNode (if available) or the fake page.
+	if b.root == 0 {
+		if id != 0 {
+			panic(fmt.Sprintf("inline bucket non-zero page access(2): %d != 0", id))
+		}
+		if b.rootNode != nil {
+			return nil, b.rootNode
+		}
+		return b.page, nil
+	}
+
+	// Check the node cache for non-inline buckets.
+	if b.nodes != nil {
+		if n := b.nodes[id]; n != nil {
+			return nil, n
+		}
+	}
+
+	// Finally lookup the page from the transaction if no node is materialized.
+	return b.tx.page(id), nil
+}
+
+// BucketStats records statistics about resources used by a bucket.
+type BucketStats struct {
+	// Page count statistics.
+	BranchPageN     int // number of logical branch pages
+	BranchOverflowN int // number of physical branch overflow pages
+	LeafPageN       int // number of logical leaf pages
+	LeafOverflowN   int // number of physical leaf overflow pages
+
+	// Tree statistics.
+	KeyN  int // number of keys/value pairs
+	Depth int // number of levels in B+tree
+
+	// Page size utilization.
+	BranchAlloc int // bytes allocated for physical branch pages
+	BranchInuse int // bytes actually used for branch data
+	LeafAlloc   int // bytes allocated for physical leaf pages
+	LeafInuse   int // bytes actually used for leaf data
+
+	// Bucket statistics
+	BucketN           int // total number of buckets including the top bucket
+	InlineBucketN     int // total number on inlined buckets
+	InlineBucketInuse int // bytes used for inlined buckets (also accounted for in LeafInuse)
+}
+
+func (s *BucketStats) Add(other BucketStats) {
+	s.BranchPageN += other.BranchPageN
+	s.BranchOverflowN += other.BranchOverflowN
+	s.LeafPageN += other.LeafPageN
+	s.LeafOverflowN += other.LeafOverflowN
+	s.KeyN += other.KeyN
+	if s.Depth < other.Depth {
+		s.Depth = other.Depth
+	}
+	s.BranchAlloc += other.BranchAlloc
+	s.BranchInuse += other.BranchInuse
+	s.LeafAlloc += other.LeafAlloc
+	s.LeafInuse += other.LeafInuse
+
+	s.BucketN += other.BucketN
+	s.InlineBucketN += other.InlineBucketN
+	s.InlineBucketInuse += other.InlineBucketInuse
+}
+
+// cloneBytes returns a copy of a given slice.
+func cloneBytes(v []byte) []byte {
+	var clone = make([]byte, len(v))
+	copy(clone, v)
+	return clone
+}
diff --git a/vendor/github.com/boltdb/bolt/cursor.go b/vendor/github.com/boltdb/bolt/cursor.go
new file mode 100644
index 0000000000..1be9f35e3e
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/cursor.go
@@ -0,0 +1,400 @@
+package bolt
+
+import (
+	"bytes"
+	"fmt"
+	"sort"
+)
+
+// Cursor represents an iterator that can traverse over all key/value pairs in a bucket in sorted order.
+// Cursors see nested buckets with value == nil.
+// Cursors can be obtained from a transaction and are valid as long as the transaction is open.
+//
+// Keys and values returned from the cursor are only valid for the life of the transaction.
+//
+// Changing data while traversing with a cursor may cause it to be invalidated
+// and return unexpected keys and/or values. You must reposition your cursor
+// after mutating data.
+type Cursor struct {
+	bucket *Bucket
+	stack  []elemRef
+}
+
+// Bucket returns the bucket that this cursor was created from.
+func (c *Cursor) Bucket() *Bucket {
+	return c.bucket
+}
+
+// First moves the cursor to the first item in the bucket and returns its key and value.
+// If the bucket is empty then a nil key and value are returned.
+// The returned key and value are only valid for the life of the transaction.
+func (c *Cursor) First() (key []byte, value []byte) {
+	_assert(c.bucket.tx.db != nil, "tx closed")
+	c.stack = c.stack[:0]
+	p, n := c.bucket.pageNode(c.bucket.root)
+	c.stack = append(c.stack, elemRef{page: p, node: n, index: 0})
+	c.first()
+
+	// If we land on an empty page then move to the next value.
+	// https://github.com/boltdb/bolt/issues/450
+	if c.stack[len(c.stack)-1].count() == 0 {
+		c.next()
+	}
+
+	k, v, flags := c.keyValue()
+	if (flags & uint32(bucketLeafFlag)) != 0 {
+		return k, nil
+	}
+	return k, v
+
+}
+
+// Last moves the cursor to the last item in the bucket and returns its key and value.
+// If the bucket is empty then a nil key and value are returned.
+// The returned key and value are only valid for the life of the transaction.
+func (c *Cursor) Last() (key []byte, value []byte) {
+	_assert(c.bucket.tx.db != nil, "tx closed")
+	c.stack = c.stack[:0]
+	p, n := c.bucket.pageNode(c.bucket.root)
+	ref := elemRef{page: p, node: n}
+	ref.index = ref.count() - 1
+	c.stack = append(c.stack, ref)
+	c.last()
+	k, v, flags := c.keyValue()
+	if (flags & uint32(bucketLeafFlag)) != 0 {
+		return k, nil
+	}
+	return k, v
+}
+
+// Next moves the cursor to the next item in the bucket and returns its key and value.
+// If the cursor is at the end of the bucket then a nil key and value are returned.
+// The returned key and value are only valid for the life of the transaction.
+func (c *Cursor) Next() (key []byte, value []byte) {
+	_assert(c.bucket.tx.db != nil, "tx closed")
+	k, v, flags := c.next()
+	if (flags & uint32(bucketLeafFlag)) != 0 {
+		return k, nil
+	}
+	return k, v
+}
+
+// Prev moves the cursor to the previous item in the bucket and returns its key and value.
+// If the cursor is at the beginning of the bucket then a nil key and value are returned.
+// The returned key and value are only valid for the life of the transaction.
+func (c *Cursor) Prev() (key []byte, value []byte) {
+	_assert(c.bucket.tx.db != nil, "tx closed")
+
+	// Attempt to move back one element until we're successful.
+	// Move up the stack as we hit the beginning of each page in our stack.
+	for i := len(c.stack) - 1; i >= 0; i-- {
+		elem := &c.stack[i]
+		if elem.index > 0 {
+			elem.index--
+			break
+		}
+		c.stack = c.stack[:i]
+	}
+
+	// If we've hit the end then return nil.
+	if len(c.stack) == 0 {
+		return nil, nil
+	}
+
+	// Move down the stack to find the last element of the last leaf under this branch.
+	c.last()
+	k, v, flags := c.keyValue()
+	if (flags & uint32(bucketLeafFlag)) != 0 {
+		return k, nil
+	}
+	return k, v
+}
+
+// Seek moves the cursor to a given key and returns it.
+// If the key does not exist then the next key is used. If no keys
+// follow, a nil key is returned.
+// The returned key and value are only valid for the life of the transaction.
+func (c *Cursor) Seek(seek []byte) (key []byte, value []byte) {
+	k, v, flags := c.seek(seek)
+
+	// If we ended up after the last element of a page then move to the next one.
+	if ref := &c.stack[len(c.stack)-1]; ref.index >= ref.count() {
+		k, v, flags = c.next()
+	}
+
+	if k == nil {
+		return nil, nil
+	} else if (flags & uint32(bucketLeafFlag)) != 0 {
+		return k, nil
+	}
+	return k, v
+}
+
+// Delete removes the current key/value under the cursor from the bucket.
+// Delete fails if current key/value is a bucket or if the transaction is not writable.
+func (c *Cursor) Delete() error {
+	if c.bucket.tx.db == nil {
+		return ErrTxClosed
+	} else if !c.bucket.Writable() {
+		return ErrTxNotWritable
+	}
+
+	key, _, flags := c.keyValue()
+	// Return an error if current value is a bucket.
+	if (flags & bucketLeafFlag) != 0 {
+		return ErrIncompatibleValue
+	}
+	c.node().del(key)
+
+	return nil
+}
+
+// seek moves the cursor to a given key and returns it.
+// If the key does not exist then the next key is used.
+func (c *Cursor) seek(seek []byte) (key []byte, value []byte, flags uint32) {
+	_assert(c.bucket.tx.db != nil, "tx closed")
+
+	// Start from root page/node and traverse to correct page.
+	c.stack = c.stack[:0]
+	c.search(seek, c.bucket.root)
+	ref := &c.stack[len(c.stack)-1]
+
+	// If the cursor is pointing to the end of page/node then return nil.
+	if ref.index >= ref.count() {
+		return nil, nil, 0
+	}
+
+	// If this is a bucket then return a nil value.
+	return c.keyValue()
+}
+
+// first moves the cursor to the first leaf element under the last page in the stack.
+func (c *Cursor) first() {
+	for {
+		// Exit when we hit a leaf page.
+		var ref = &c.stack[len(c.stack)-1]
+		if ref.isLeaf() {
+			break
+		}
+
+		// Keep adding pages pointing to the first element to the stack.
+		var pgid pgid
+		if ref.node != nil {
+			pgid = ref.node.inodes[ref.index].pgid
+		} else {
+			pgid = ref.page.branchPageElement(uint16(ref.index)).pgid
+		}
+		p, n := c.bucket.pageNode(pgid)
+		c.stack = append(c.stack, elemRef{page: p, node: n, index: 0})
+	}
+}
+
+// last moves the cursor to the last leaf element under the last page in the stack.
+func (c *Cursor) last() {
+	for {
+		// Exit when we hit a leaf page.
+		ref := &c.stack[len(c.stack)-1]
+		if ref.isLeaf() {
+			break
+		}
+
+		// Keep adding pages pointing to the last element in the stack.
+		var pgid pgid
+		if ref.node != nil {
+			pgid = ref.node.inodes[ref.index].pgid
+		} else {
+			pgid = ref.page.branchPageElement(uint16(ref.index)).pgid
+		}
+		p, n := c.bucket.pageNode(pgid)
+
+		var nextRef = elemRef{page: p, node: n}
+		nextRef.index = nextRef.count() - 1
+		c.stack = append(c.stack, nextRef)
+	}
+}
+
+// next moves to the next leaf element and returns the key and value.
+// If the cursor is at the last leaf element then it stays there and returns nil.
+func (c *Cursor) next() (key []byte, value []byte, flags uint32) {
+	for {
+		// Attempt to move over one element until we're successful.
+		// Move up the stack as we hit the end of each page in our stack.
+		var i int
+		for i = len(c.stack) - 1; i >= 0; i-- {
+			elem := &c.stack[i]
+			if elem.index < elem.count()-1 {
+				elem.index++
+				break
+			}
+		}
+
+		// If we've hit the root page then stop and return. This will leave the
+		// cursor on the last element of the last page.
+		if i == -1 {
+			return nil, nil, 0
+		}
+
+		// Otherwise start from where we left off in the stack and find the
+		// first element of the first leaf page.
+		c.stack = c.stack[:i+1]
+		c.first()
+
+		// If this is an empty page then restart and move back up the stack.
+		// https://github.com/boltdb/bolt/issues/450
+		if c.stack[len(c.stack)-1].count() == 0 {
+			continue
+		}
+
+		return c.keyValue()
+	}
+}
+
+// search recursively performs a binary search against a given page/node until it finds a given key.
+func (c *Cursor) search(key []byte, pgid pgid) {
+	p, n := c.bucket.pageNode(pgid)
+	if p != nil && (p.flags&(branchPageFlag|leafPageFlag)) == 0 {
+		panic(fmt.Sprintf("invalid page type: %d: %x", p.id, p.flags))
+	}
+	e := elemRef{page: p, node: n}
+	c.stack = append(c.stack, e)
+
+	// If we're on a leaf page/node then find the specific node.
+	if e.isLeaf() {
+		c.nsearch(key)
+		return
+	}
+
+	if n != nil {
+		c.searchNode(key, n)
+		return
+	}
+	c.searchPage(key, p)
+}
+
+func (c *Cursor) searchNode(key []byte, n *node) {
+	var exact bool
+	index := sort.Search(len(n.inodes), func(i int) bool {
+		// TODO(benbjohnson): Optimize this range search. It's a bit hacky right now.
+		// sort.Search() finds the lowest index where f() != -1 but we need the highest index.
+		ret := bytes.Compare(n.inodes[i].key, key)
+		if ret == 0 {
+			exact = true
+		}
+		return ret != -1
+	})
+	if !exact && index > 0 {
+		index--
+	}
+	c.stack[len(c.stack)-1].index = index
+
+	// Recursively search to the next page.
+	c.search(key, n.inodes[index].pgid)
+}
+
+func (c *Cursor) searchPage(key []byte, p *page) {
+	// Binary search for the correct range.
+	inodes := p.branchPageElements()
+
+	var exact bool
+	index := sort.Search(int(p.count), func(i int) bool {
+		// TODO(benbjohnson): Optimize this range search. It's a bit hacky right now.
+		// sort.Search() finds the lowest index where f() != -1 but we need the highest index.
+		ret := bytes.Compare(inodes[i].key(), key)
+		if ret == 0 {
+			exact = true
+		}
+		return ret != -1
+	})
+	if !exact && index > 0 {
+		index--
+	}
+	c.stack[len(c.stack)-1].index = index
+
+	// Recursively search to the next page.
+	c.search(key, inodes[index].pgid)
+}
+
+// nsearch searches the leaf node on the top of the stack for a key.
+func (c *Cursor) nsearch(key []byte) {
+	e := &c.stack[len(c.stack)-1]
+	p, n := e.page, e.node
+
+	// If we have a node then search its inodes.
+	if n != nil {
+		index := sort.Search(len(n.inodes), func(i int) bool {
+			return bytes.Compare(n.inodes[i].key, key) != -1
+		})
+		e.index = index
+		return
+	}
+
+	// If we have a page then search its leaf elements.
+	inodes := p.leafPageElements()
+	index := sort.Search(int(p.count), func(i int) bool {
+		return bytes.Compare(inodes[i].key(), key) != -1
+	})
+	e.index = index
+}
+
+// keyValue returns the key and value of the current leaf element.
+func (c *Cursor) keyValue() ([]byte, []byte, uint32) {
+	ref := &c.stack[len(c.stack)-1]
+	if ref.count() == 0 || ref.index >= ref.count() {
+		return nil, nil, 0
+	}
+
+	// Retrieve value from node.
+	if ref.node != nil {
+		inode := &ref.node.inodes[ref.index]
+		return inode.key, inode.value, inode.flags
+	}
+
+	// Or retrieve value from page.
+	elem := ref.page.leafPageElement(uint16(ref.index))
+	return elem.key(), elem.value(), elem.flags
+}
+
+// node returns the node that the cursor is currently positioned on.
+func (c *Cursor) node() *node {
+	_assert(len(c.stack) > 0, "accessing a node with a zero-length cursor stack")
+
+	// If the top of the stack is a leaf node then just return it.
+	if ref := &c.stack[len(c.stack)-1]; ref.node != nil && ref.isLeaf() {
+		return ref.node
+	}
+
+	// Start from root and traverse down the hierarchy.
+	var n = c.stack[0].node
+	if n == nil {
+		n = c.bucket.node(c.stack[0].page.id, nil)
+	}
+	for _, ref := range c.stack[:len(c.stack)-1] {
+		_assert(!n.isLeaf, "expected branch node")
+		n = n.childAt(int(ref.index))
+	}
+	_assert(n.isLeaf, "expected leaf node")
+	return n
+}
+
+// elemRef represents a reference to an element on a given page/node.
+type elemRef struct {
+	page  *page
+	node  *node
+	index int
+}
+
+// isLeaf returns whether the ref is pointing at a leaf page/node.
+func (r *elemRef) isLeaf() bool {
+	if r.node != nil {
+		return r.node.isLeaf
+	}
+	return (r.page.flags & leafPageFlag) != 0
+}
+
+// count returns the number of inodes or page elements.
+func (r *elemRef) count() int {
+	if r.node != nil {
+		return len(r.node.inodes)
+	}
+	return int(r.page.count)
+}
diff --git a/vendor/github.com/boltdb/bolt/db.go b/vendor/github.com/boltdb/bolt/db.go
new file mode 100644
index 0000000000..f352ff14fe
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/db.go
@@ -0,0 +1,1039 @@
+package bolt
+
+import (
+	"errors"
+	"fmt"
+	"hash/fnv"
+	"log"
+	"os"
+	"runtime"
+	"runtime/debug"
+	"strings"
+	"sync"
+	"time"
+	"unsafe"
+)
+
+// The largest step that can be taken when remapping the mmap.
+const maxMmapStep = 1 << 30 // 1GB
+
+// The data file format version.
+const version = 2
+
+// Represents a marker value to indicate that a file is a Bolt DB.
+const magic uint32 = 0xED0CDAED
+
+// IgnoreNoSync specifies whether the NoSync field of a DB is ignored when
+// syncing changes to a file.  This is required as some operating systems,
+// such as OpenBSD, do not have a unified buffer cache (UBC) and writes
+// must be synchronized using the msync(2) syscall.
+const IgnoreNoSync = runtime.GOOS == "openbsd"
+
+// Default values if not set in a DB instance.
+const (
+	DefaultMaxBatchSize  int = 1000
+	DefaultMaxBatchDelay     = 10 * time.Millisecond
+	DefaultAllocSize         = 16 * 1024 * 1024
+)
+
+// default page size for db is set to the OS page size.
+var defaultPageSize = os.Getpagesize()
+
+// DB represents a collection of buckets persisted to a file on disk.
+// All data access is performed through transactions which can be obtained through the DB.
+// All the functions on DB will return a ErrDatabaseNotOpen if accessed before Open() is called.
+type DB struct {
+	// When enabled, the database will perform a Check() after every commit.
+	// A panic is issued if the database is in an inconsistent state. This
+	// flag has a large performance impact so it should only be used for
+	// debugging purposes.
+	StrictMode bool
+
+	// Setting the NoSync flag will cause the database to skip fsync()
+	// calls after each commit. This can be useful when bulk loading data
+	// into a database and you can restart the bulk load in the event of
+	// a system failure or database corruption. Do not set this flag for
+	// normal use.
+	//
+	// If the package global IgnoreNoSync constant is true, this value is
+	// ignored.  See the comment on that constant for more details.
+	//
+	// THIS IS UNSAFE. PLEASE USE WITH CAUTION.
+	NoSync bool
+
+	// When true, skips the truncate call when growing the database.
+	// Setting this to true is only safe on non-ext3/ext4 systems.
+	// Skipping truncation avoids preallocation of hard drive space and
+	// bypasses a truncate() and fsync() syscall on remapping.
+	//
+	// https://github.com/boltdb/bolt/issues/284
+	NoGrowSync bool
+
+	// If you want to read the entire database fast, you can set MmapFlag to
+	// syscall.MAP_POPULATE on Linux 2.6.23+ for sequential read-ahead.
+	MmapFlags int
+
+	// MaxBatchSize is the maximum size of a batch. Default value is
+	// copied from DefaultMaxBatchSize in Open.
+	//
+	// If <=0, disables batching.
+	//
+	// Do not change concurrently with calls to Batch.
+	MaxBatchSize int
+
+	// MaxBatchDelay is the maximum delay before a batch starts.
+	// Default value is copied from DefaultMaxBatchDelay in Open.
+	//
+	// If <=0, effectively disables batching.
+	//
+	// Do not change concurrently with calls to Batch.
+	MaxBatchDelay time.Duration
+
+	// AllocSize is the amount of space allocated when the database
+	// needs to create new pages. This is done to amortize the cost
+	// of truncate() and fsync() when growing the data file.
+	AllocSize int
+
+	path     string
+	file     *os.File
+	lockfile *os.File // windows only
+	dataref  []byte   // mmap'ed readonly, write throws SEGV
+	data     *[maxMapSize]byte
+	datasz   int
+	filesz   int // current on disk file size
+	meta0    *meta
+	meta1    *meta
+	pageSize int
+	opened   bool
+	rwtx     *Tx
+	txs      []*Tx
+	freelist *freelist
+	stats    Stats
+
+	pagePool sync.Pool
+
+	batchMu sync.Mutex
+	batch   *batch
+
+	rwlock   sync.Mutex   // Allows only one writer at a time.
+	metalock sync.Mutex   // Protects meta page access.
+	mmaplock sync.RWMutex // Protects mmap access during remapping.
+	statlock sync.RWMutex // Protects stats access.
+
+	ops struct {
+		writeAt func(b []byte, off int64) (n int, err error)
+	}
+
+	// Read only mode.
+	// When true, Update() and Begin(true) return ErrDatabaseReadOnly immediately.
+	readOnly bool
+}
+
+// Path returns the path to currently open database file.
+func (db *DB) Path() string {
+	return db.path
+}
+
+// GoString returns the Go string representation of the database.
+func (db *DB) GoString() string {
+	return fmt.Sprintf("bolt.DB{path:%q}", db.path)
+}
+
+// String returns the string representation of the database.
+func (db *DB) String() string {
+	return fmt.Sprintf("DB<%q>", db.path)
+}
+
+// Open creates and opens a database at the given path.
+// If the file does not exist then it will be created automatically.
+// Passing in nil options will cause Bolt to open the database with the default options.
+func Open(path string, mode os.FileMode, options *Options) (*DB, error) {
+	var db = &DB{opened: true}
+
+	// Set default options if no options are provided.
+	if options == nil {
+		options = DefaultOptions
+	}
+	db.NoGrowSync = options.NoGrowSync
+	db.MmapFlags = options.MmapFlags
+
+	// Set default values for later DB operations.
+	db.MaxBatchSize = DefaultMaxBatchSize
+	db.MaxBatchDelay = DefaultMaxBatchDelay
+	db.AllocSize = DefaultAllocSize
+
+	flag := os.O_RDWR
+	if options.ReadOnly {
+		flag = os.O_RDONLY
+		db.readOnly = true
+	}
+
+	// Open data file and separate sync handler for metadata writes.
+	db.path = path
+	var err error
+	if db.file, err = os.OpenFile(db.path, flag|os.O_CREATE, mode); err != nil {
+		_ = db.close()
+		return nil, err
+	}
+
+	// Lock file so that other processes using Bolt in read-write mode cannot
+	// use the database  at the same time. This would cause corruption since
+	// the two processes would write meta pages and free pages separately.
+	// The database file is locked exclusively (only one process can grab the lock)
+	// if !options.ReadOnly.
+	// The database file is locked using the shared lock (more than one process may
+	// hold a lock at the same time) otherwise (options.ReadOnly is set).
+	if err := flock(db, mode, !db.readOnly, options.Timeout); err != nil {
+		_ = db.close()
+		return nil, err
+	}
+
+	// Default values for test hooks
+	db.ops.writeAt = db.file.WriteAt
+
+	// Initialize the database if it doesn't exist.
+	if info, err := db.file.Stat(); err != nil {
+		return nil, err
+	} else if info.Size() == 0 {
+		// Initialize new files with meta pages.
+		if err := db.init(); err != nil {
+			return nil, err
+		}
+	} else {
+		// Read the first meta page to determine the page size.
+		var buf [0x1000]byte
+		if _, err := db.file.ReadAt(buf[:], 0); err == nil {
+			m := db.pageInBuffer(buf[:], 0).meta()
+			if err := m.validate(); err != nil {
+				// If we can't read the page size, we can assume it's the same
+				// as the OS -- since that's how the page size was chosen in the
+				// first place.
+				//
+				// If the first page is invalid and this OS uses a different
+				// page size than what the database was created with then we
+				// are out of luck and cannot access the database.
+				db.pageSize = os.Getpagesize()
+			} else {
+				db.pageSize = int(m.pageSize)
+			}
+		}
+	}
+
+	// Initialize page pool.
+	db.pagePool = sync.Pool{
+		New: func() interface{} {
+			return make([]byte, db.pageSize)
+		},
+	}
+
+	// Memory map the data file.
+	if err := db.mmap(options.InitialMmapSize); err != nil {
+		_ = db.close()
+		return nil, err
+	}
+
+	// Read in the freelist.
+	db.freelist = newFreelist()
+	db.freelist.read(db.page(db.meta().freelist))
+
+	// Mark the database as opened and return.
+	return db, nil
+}
+
+// mmap opens the underlying memory-mapped file and initializes the meta references.
+// minsz is the minimum size that the new mmap can be.
+func (db *DB) mmap(minsz int) error {
+	db.mmaplock.Lock()
+	defer db.mmaplock.Unlock()
+
+	info, err := db.file.Stat()
+	if err != nil {
+		return fmt.Errorf("mmap stat error: %s", err)
+	} else if int(info.Size()) < db.pageSize*2 {
+		return fmt.Errorf("file size too small")
+	}
+
+	// Ensure the size is at least the minimum size.
+	var size = int(info.Size())
+	if size < minsz {
+		size = minsz
+	}
+	size, err = db.mmapSize(size)
+	if err != nil {
+		return err
+	}
+
+	// Dereference all mmap references before unmapping.
+	if db.rwtx != nil {
+		db.rwtx.root.dereference()
+	}
+
+	// Unmap existing data before continuing.
+	if err := db.munmap(); err != nil {
+		return err
+	}
+
+	// Memory-map the data file as a byte slice.
+	if err := mmap(db, size); err != nil {
+		return err
+	}
+
+	// Save references to the meta pages.
+	db.meta0 = db.page(0).meta()
+	db.meta1 = db.page(1).meta()
+
+	// Validate the meta pages. We only return an error if both meta pages fail
+	// validation, since meta0 failing validation means that it wasn't saved
+	// properly -- but we can recover using meta1. And vice-versa.
+	err0 := db.meta0.validate()
+	err1 := db.meta1.validate()
+	if err0 != nil && err1 != nil {
+		return err0
+	}
+
+	return nil
+}
+
+// munmap unmaps the data file from memory.
+func (db *DB) munmap() error {
+	if err := munmap(db); err != nil {
+		return fmt.Errorf("unmap error: " + err.Error())
+	}
+	return nil
+}
+
+// mmapSize determines the appropriate size for the mmap given the current size
+// of the database. The minimum size is 32KB and doubles until it reaches 1GB.
+// Returns an error if the new mmap size is greater than the max allowed.
+func (db *DB) mmapSize(size int) (int, error) {
+	// Double the size from 32KB until 1GB.
+	for i := uint(15); i <= 30; i++ {
+		if size <= 1<<i {
+			return 1 << i, nil
+		}
+	}
+
+	// Verify the requested size is not above the maximum allowed.
+	if size > maxMapSize {
+		return 0, fmt.Errorf("mmap too large")
+	}
+
+	// If larger than 1GB then grow by 1GB at a time.
+	sz := int64(size)
+	if remainder := sz % int64(maxMmapStep); remainder > 0 {
+		sz += int64(maxMmapStep) - remainder
+	}
+
+	// Ensure that the mmap size is a multiple of the page size.
+	// This should always be true since we're incrementing in MBs.
+	pageSize := int64(db.pageSize)
+	if (sz % pageSize) != 0 {
+		sz = ((sz / pageSize) + 1) * pageSize
+	}
+
+	// If we've exceeded the max size then only grow up to the max size.
+	if sz > maxMapSize {
+		sz = maxMapSize
+	}
+
+	return int(sz), nil
+}
+
+// init creates a new database file and initializes its meta pages.
+func (db *DB) init() error {
+	// Set the page size to the OS page size.
+	db.pageSize = os.Getpagesize()
+
+	// Create two meta pages on a buffer.
+	buf := make([]byte, db.pageSize*4)
+	for i := 0; i < 2; i++ {
+		p := db.pageInBuffer(buf[:], pgid(i))
+		p.id = pgid(i)
+		p.flags = metaPageFlag
+
+		// Initialize the meta page.
+		m := p.meta()
+		m.magic = magic
+		m.version = version
+		m.pageSize = uint32(db.pageSize)
+		m.freelist = 2
+		m.root = bucket{root: 3}
+		m.pgid = 4
+		m.txid = txid(i)
+		m.checksum = m.sum64()
+	}
+
+	// Write an empty freelist at page 3.
+	p := db.pageInBuffer(buf[:], pgid(2))
+	p.id = pgid(2)
+	p.flags = freelistPageFlag
+	p.count = 0
+
+	// Write an empty leaf page at page 4.
+	p = db.pageInBuffer(buf[:], pgid(3))
+	p.id = pgid(3)
+	p.flags = leafPageFlag
+	p.count = 0
+
+	// Write the buffer to our data file.
+	if _, err := db.ops.writeAt(buf, 0); err != nil {
+		return err
+	}
+	if err := fdatasync(db); err != nil {
+		return err
+	}
+
+	return nil
+}
+
+// Close releases all database resources.
+// All transactions must be closed before closing the database.
+func (db *DB) Close() error {
+	db.rwlock.Lock()
+	defer db.rwlock.Unlock()
+
+	db.metalock.Lock()
+	defer db.metalock.Unlock()
+
+	db.mmaplock.RLock()
+	defer db.mmaplock.RUnlock()
+
+	return db.close()
+}
+
+func (db *DB) close() error {
+	if !db.opened {
+		return nil
+	}
+
+	db.opened = false
+
+	db.freelist = nil
+
+	// Clear ops.
+	db.ops.writeAt = nil
+
+	// Close the mmap.
+	if err := db.munmap(); err != nil {
+		return err
+	}
+
+	// Close file handles.
+	if db.file != nil {
+		// No need to unlock read-only file.
+		if !db.readOnly {
+			// Unlock the file.
+			if err := funlock(db); err != nil {
+				log.Printf("bolt.Close(): funlock error: %s", err)
+			}
+		}
+
+		// Close the file descriptor.
+		if err := db.file.Close(); err != nil {
+			return fmt.Errorf("db file close: %s", err)
+		}
+		db.file = nil
+	}
+
+	db.path = ""
+	return nil
+}
+
+// Begin starts a new transaction.
+// Multiple read-only transactions can be used concurrently but only one
+// write transaction can be used at a time. Starting multiple write transactions
+// will cause the calls to block and be serialized until the current write
+// transaction finishes.
+//
+// Transactions should not be dependent on one another. Opening a read
+// transaction and a write transaction in the same goroutine can cause the
+// writer to deadlock because the database periodically needs to re-mmap itself
+// as it grows and it cannot do that while a read transaction is open.
+//
+// If a long running read transaction (for example, a snapshot transaction) is
+// needed, you might want to set DB.InitialMmapSize to a large enough value
+// to avoid potential blocking of write transaction.
+//
+// IMPORTANT: You must close read-only transactions after you are finished or
+// else the database will not reclaim old pages.
+func (db *DB) Begin(writable bool) (*Tx, error) {
+	if writable {
+		return db.beginRWTx()
+	}
+	return db.beginTx()
+}
+
+func (db *DB) beginTx() (*Tx, error) {
+	// Lock the meta pages while we initialize the transaction. We obtain
+	// the meta lock before the mmap lock because that's the order that the
+	// write transaction will obtain them.
+	db.metalock.Lock()
+
+	// Obtain a read-only lock on the mmap. When the mmap is remapped it will
+	// obtain a write lock so all transactions must finish before it can be
+	// remapped.
+	db.mmaplock.RLock()
+
+	// Exit if the database is not open yet.
+	if !db.opened {
+		db.mmaplock.RUnlock()
+		db.metalock.Unlock()
+		return nil, ErrDatabaseNotOpen
+	}
+
+	// Create a transaction associated with the database.
+	t := &Tx{}
+	t.init(db)
+
+	// Keep track of transaction until it closes.
+	db.txs = append(db.txs, t)
+	n := len(db.txs)
+
+	// Unlock the meta pages.
+	db.metalock.Unlock()
+
+	// Update the transaction stats.
+	db.statlock.Lock()
+	db.stats.TxN++
+	db.stats.OpenTxN = n
+	db.statlock.Unlock()
+
+	return t, nil
+}
+
+func (db *DB) beginRWTx() (*Tx, error) {
+	// If the database was opened with Options.ReadOnly, return an error.
+	if db.readOnly {
+		return nil, ErrDatabaseReadOnly
+	}
+
+	// Obtain writer lock. This is released by the transaction when it closes.
+	// This enforces only one writer transaction at a time.
+	db.rwlock.Lock()
+
+	// Once we have the writer lock then we can lock the meta pages so that
+	// we can set up the transaction.
+	db.metalock.Lock()
+	defer db.metalock.Unlock()
+
+	// Exit if the database is not open yet.
+	if !db.opened {
+		db.rwlock.Unlock()
+		return nil, ErrDatabaseNotOpen
+	}
+
+	// Create a transaction associated with the database.
+	t := &Tx{writable: true}
+	t.init(db)
+	db.rwtx = t
+
+	// Free any pages associated with closed read-only transactions.
+	var minid txid = 0xFFFFFFFFFFFFFFFF
+	for _, t := range db.txs {
+		if t.meta.txid < minid {
+			minid = t.meta.txid
+		}
+	}
+	if minid > 0 {
+		db.freelist.release(minid - 1)
+	}
+
+	return t, nil
+}
+
+// removeTx removes a transaction from the database.
+func (db *DB) removeTx(tx *Tx) {
+	// Release the read lock on the mmap.
+	db.mmaplock.RUnlock()
+
+	// Use the meta lock to restrict access to the DB object.
+	db.metalock.Lock()
+
+	// Remove the transaction.
+	for i, t := range db.txs {
+		if t == tx {
+			last := len(db.txs) - 1
+			db.txs[i] = db.txs[last]
+			db.txs[last] = nil
+			db.txs = db.txs[:last]
+			break
+		}
+	}
+	n := len(db.txs)
+
+	// Unlock the meta pages.
+	db.metalock.Unlock()
+
+	// Merge statistics.
+	db.statlock.Lock()
+	db.stats.OpenTxN = n
+	db.stats.TxStats.add(&tx.stats)
+	db.statlock.Unlock()
+}
+
+// Update executes a function within the context of a read-write managed transaction.
+// If no error is returned from the function then the transaction is committed.
+// If an error is returned then the entire transaction is rolled back.
+// Any error that is returned from the function or returned from the commit is
+// returned from the Update() method.
+//
+// Attempting to manually commit or rollback within the function will cause a panic.
+func (db *DB) Update(fn func(*Tx) error) error {
+	t, err := db.Begin(true)
+	if err != nil {
+		return err
+	}
+
+	// Make sure the transaction rolls back in the event of a panic.
+	defer func() {
+		if t.db != nil {
+			t.rollback()
+		}
+	}()
+
+	// Mark as a managed tx so that the inner function cannot manually commit.
+	t.managed = true
+
+	// If an error is returned from the function then rollback and return error.
+	err = fn(t)
+	t.managed = false
+	if err != nil {
+		_ = t.Rollback()
+		return err
+	}
+
+	return t.Commit()
+}
+
+// View executes a function within the context of a managed read-only transaction.
+// Any error that is returned from the function is returned from the View() method.
+//
+// Attempting to manually rollback within the function will cause a panic.
+func (db *DB) View(fn func(*Tx) error) error {
+	t, err := db.Begin(false)
+	if err != nil {
+		return err
+	}
+
+	// Make sure the transaction rolls back in the event of a panic.
+	defer func() {
+		if t.db != nil {
+			t.rollback()
+		}
+	}()
+
+	// Mark as a managed tx so that the inner function cannot manually rollback.
+	t.managed = true
+
+	// If an error is returned from the function then pass it through.
+	err = fn(t)
+	t.managed = false
+	if err != nil {
+		_ = t.Rollback()
+		return err
+	}
+
+	if err := t.Rollback(); err != nil {
+		return err
+	}
+
+	return nil
+}
+
+// Batch calls fn as part of a batch. It behaves similar to Update,
+// except:
+//
+// 1. concurrent Batch calls can be combined into a single Bolt
+// transaction.
+//
+// 2. the function passed to Batch may be called multiple times,
+// regardless of whether it returns error or not.
+//
+// This means that Batch function side effects must be idempotent and
+// take permanent effect only after a successful return is seen in
+// caller.
+//
+// The maximum batch size and delay can be adjusted with DB.MaxBatchSize
+// and DB.MaxBatchDelay, respectively.
+//
+// Batch is only useful when there are multiple goroutines calling it.
+func (db *DB) Batch(fn func(*Tx) error) error {
+	errCh := make(chan error, 1)
+
+	db.batchMu.Lock()
+	if (db.batch == nil) || (db.batch != nil && len(db.batch.calls) >= db.MaxBatchSize) {
+		// There is no existing batch, or the existing batch is full; start a new one.
+		db.batch = &batch{
+			db: db,
+		}
+		db.batch.timer = time.AfterFunc(db.MaxBatchDelay, db.batch.trigger)
+	}
+	db.batch.calls = append(db.batch.calls, call{fn: fn, err: errCh})
+	if len(db.batch.calls) >= db.MaxBatchSize {
+		// wake up batch, it's ready to run
+		go db.batch.trigger()
+	}
+	db.batchMu.Unlock()
+
+	err := <-errCh
+	if err == trySolo {
+		err = db.Update(fn)
+	}
+	return err
+}
+
+type call struct {
+	fn  func(*Tx) error
+	err chan<- error
+}
+
+type batch struct {
+	db    *DB
+	timer *time.Timer
+	start sync.Once
+	calls []call
+}
+
+// trigger runs the batch if it hasn't already been run.
+func (b *batch) trigger() {
+	b.start.Do(b.run)
+}
+
+// run performs the transactions in the batch and communicates results
+// back to DB.Batch.
+func (b *batch) run() {
+	b.db.batchMu.Lock()
+	b.timer.Stop()
+	// Make sure no new work is added to this batch, but don't break
+	// other batches.
+	if b.db.batch == b {
+		b.db.batch = nil
+	}
+	b.db.batchMu.Unlock()
+
+retry:
+	for len(b.calls) > 0 {
+		var failIdx = -1
+		err := b.db.Update(func(tx *Tx) error {
+			for i, c := range b.calls {
+				if err := safelyCall(c.fn, tx); err != nil {
+					failIdx = i
+					return err
+				}
+			}
+			return nil
+		})
+
+		if failIdx >= 0 {
+			// take the failing transaction out of the batch. it's
+			// safe to shorten b.calls here because db.batch no longer
+			// points to us, and we hold the mutex anyway.
+			c := b.calls[failIdx]
+			b.calls[failIdx], b.calls = b.calls[len(b.calls)-1], b.calls[:len(b.calls)-1]
+			// tell the submitter re-run it solo, continue with the rest of the batch
+			c.err <- trySolo
+			continue retry
+		}
+
+		// pass success, or bolt internal errors, to all callers
+		for _, c := range b.calls {
+			if c.err != nil {
+				c.err <- err
+			}
+		}
+		break retry
+	}
+}
+
+// trySolo is a special sentinel error value used for signaling that a
+// transaction function should be re-run. It should never be seen by
+// callers.
+var trySolo = errors.New("batch function returned an error and should be re-run solo")
+
+type panicked struct {
+	reason interface{}
+}
+
+func (p panicked) Error() string {
+	if err, ok := p.reason.(error); ok {
+		return err.Error()
+	}
+	return fmt.Sprintf("panic: %v", p.reason)
+}
+
+func safelyCall(fn func(*Tx) error, tx *Tx) (err error) {
+	defer func() {
+		if p := recover(); p != nil {
+			err = panicked{p}
+		}
+	}()
+	return fn(tx)
+}
+
+// Sync executes fdatasync() against the database file handle.
+//
+// This is not necessary under normal operation, however, if you use NoSync
+// then it allows you to force the database file to sync against the disk.
+func (db *DB) Sync() error { return fdatasync(db) }
+
+// Stats retrieves ongoing performance stats for the database.
+// This is only updated when a transaction closes.
+func (db *DB) Stats() Stats {
+	db.statlock.RLock()
+	defer db.statlock.RUnlock()
+	return db.stats
+}
+
+// This is for internal access to the raw data bytes from the C cursor, use
+// carefully, or not at all.
+func (db *DB) Info() *Info {
+	return &Info{uintptr(unsafe.Pointer(&db.data[0])), db.pageSize}
+}
+
+// page retrieves a page reference from the mmap based on the current page size.
+func (db *DB) page(id pgid) *page {
+	pos := id * pgid(db.pageSize)
+	return (*page)(unsafe.Pointer(&db.data[pos]))
+}
+
+// pageInBuffer retrieves a page reference from a given byte array based on the current page size.
+func (db *DB) pageInBuffer(b []byte, id pgid) *page {
+	return (*page)(unsafe.Pointer(&b[id*pgid(db.pageSize)]))
+}
+
+// meta retrieves the current meta page reference.
+func (db *DB) meta() *meta {
+	// We have to return the meta with the highest txid which doesn't fail
+	// validation. Otherwise, we can cause errors when in fact the database is
+	// in a consistent state. metaA is the one with the higher txid.
+	metaA := db.meta0
+	metaB := db.meta1
+	if db.meta1.txid > db.meta0.txid {
+		metaA = db.meta1
+		metaB = db.meta0
+	}
+
+	// Use higher meta page if valid. Otherwise fallback to previous, if valid.
+	if err := metaA.validate(); err == nil {
+		return metaA
+	} else if err := metaB.validate(); err == nil {
+		return metaB
+	}
+
+	// This should never be reached, because both meta1 and meta0 were validated
+	// on mmap() and we do fsync() on every write.
+	panic("bolt.DB.meta(): invalid meta pages")
+}
+
+// allocate returns a contiguous block of memory starting at a given page.
+func (db *DB) allocate(count int) (*page, error) {
+	// Allocate a temporary buffer for the page.
+	var buf []byte
+	if count == 1 {
+		buf = db.pagePool.Get().([]byte)
+	} else {
+		buf = make([]byte, count*db.pageSize)
+	}
+	p := (*page)(unsafe.Pointer(&buf[0]))
+	p.overflow = uint32(count - 1)
+
+	// Use pages from the freelist if they are available.
+	if p.id = db.freelist.allocate(count); p.id != 0 {
+		return p, nil
+	}
+
+	// Resize mmap() if we're at the end.
+	p.id = db.rwtx.meta.pgid
+	var minsz = int((p.id+pgid(count))+1) * db.pageSize
+	if minsz >= db.datasz {
+		if err := db.mmap(minsz); err != nil {
+			return nil, fmt.Errorf("mmap allocate error: %s", err)
+		}
+	}
+
+	// Move the page id high water mark.
+	db.rwtx.meta.pgid += pgid(count)
+
+	return p, nil
+}
+
+// grow grows the size of the database to the given sz.
+func (db *DB) grow(sz int) error {
+	// Ignore if the new size is less than available file size.
+	if sz <= db.filesz {
+		return nil
+	}
+
+	// If the data is smaller than the alloc size then only allocate what's needed.
+	// Once it goes over the allocation size then allocate in chunks.
+	if db.datasz < db.AllocSize {
+		sz = db.datasz
+	} else {
+		sz += db.AllocSize
+	}
+
+	// Truncate and fsync to ensure file size metadata is flushed.
+	// https://github.com/boltdb/bolt/issues/284
+	if !db.NoGrowSync && !db.readOnly {
+		if runtime.GOOS != "windows" {
+			if err := db.file.Truncate(int64(sz)); err != nil {
+				return fmt.Errorf("file resize error: %s", err)
+			}
+		}
+		if err := db.file.Sync(); err != nil {
+			return fmt.Errorf("file sync error: %s", err)
+		}
+	}
+
+	db.filesz = sz
+	return nil
+}
+
+func (db *DB) IsReadOnly() bool {
+	return db.readOnly
+}
+
+// Options represents the options that can be set when opening a database.
+type Options struct {
+	// Timeout is the amount of time to wait to obtain a file lock.
+	// When set to zero it will wait indefinitely. This option is only
+	// available on Darwin and Linux.
+	Timeout time.Duration
+
+	// Sets the DB.NoGrowSync flag before memory mapping the file.
+	NoGrowSync bool
+
+	// Open database in read-only mode. Uses flock(..., LOCK_SH |LOCK_NB) to
+	// grab a shared lock (UNIX).
+	ReadOnly bool
+
+	// Sets the DB.MmapFlags flag before memory mapping the file.
+	MmapFlags int
+
+	// InitialMmapSize is the initial mmap size of the database
+	// in bytes. Read transactions won't block write transaction
+	// if the InitialMmapSize is large enough to hold database mmap
+	// size. (See DB.Begin for more information)
+	//
+	// If <=0, the initial map size is 0.
+	// If initialMmapSize is smaller than the previous database size,
+	// it takes no effect.
+	InitialMmapSize int
+}
+
+// DefaultOptions represent the options used if nil options are passed into Open().
+// No timeout is used which will cause Bolt to wait indefinitely for a lock.
+var DefaultOptions = &Options{
+	Timeout:    0,
+	NoGrowSync: false,
+}
+
+// Stats represents statistics about the database.
+type Stats struct {
+	// Freelist stats
+	FreePageN     int // total number of free pages on the freelist
+	PendingPageN  int // total number of pending pages on the freelist
+	FreeAlloc     int // total bytes allocated in free pages
+	FreelistInuse int // total bytes used by the freelist
+
+	// Transaction stats
+	TxN     int // total number of started read transactions
+	OpenTxN int // number of currently open read transactions
+
+	TxStats TxStats // global, ongoing stats.
+}
+
+// Sub calculates and returns the difference between two sets of database stats.
+// This is useful when obtaining stats at two different points and time and
+// you need the performance counters that occurred within that time span.
+func (s *Stats) Sub(other *Stats) Stats {
+	if other == nil {
+		return *s
+	}
+	var diff Stats
+	diff.FreePageN = s.FreePageN
+	diff.PendingPageN = s.PendingPageN
+	diff.FreeAlloc = s.FreeAlloc
+	diff.FreelistInuse = s.FreelistInuse
+	diff.TxN = s.TxN - other.TxN
+	diff.TxStats = s.TxStats.Sub(&other.TxStats)
+	return diff
+}
+
+func (s *Stats) add(other *Stats) {
+	s.TxStats.add(&other.TxStats)
+}
+
+type Info struct {
+	Data     uintptr
+	PageSize int
+}
+
+type meta struct {
+	magic    uint32
+	version  uint32
+	pageSize uint32
+	flags    uint32
+	root     bucket
+	freelist pgid
+	pgid     pgid
+	txid     txid
+	checksum uint64
+}
+
+// validate checks the marker bytes and version of the meta page to ensure it matches this binary.
+func (m *meta) validate() error {
+	if m.magic != magic {
+		return ErrInvalid
+	} else if m.version != version {
+		return ErrVersionMismatch
+	} else if m.checksum != 0 && m.checksum != m.sum64() {
+		return ErrChecksum
+	}
+	return nil
+}
+
+// copy copies one meta object to another.
+func (m *meta) copy(dest *meta) {
+	*dest = *m
+}
+
+// write writes the meta onto a page.
+func (m *meta) write(p *page) {
+	if m.root.root >= m.pgid {
+		panic(fmt.Sprintf("root bucket pgid (%d) above high water mark (%d)", m.root.root, m.pgid))
+	} else if m.freelist >= m.pgid {
+		panic(fmt.Sprintf("freelist pgid (%d) above high water mark (%d)", m.freelist, m.pgid))
+	}
+
+	// Page id is either going to be 0 or 1 which we can determine by the transaction ID.
+	p.id = pgid(m.txid % 2)
+	p.flags |= metaPageFlag
+
+	// Calculate the checksum.
+	m.checksum = m.sum64()
+
+	m.copy(p.meta())
+}
+
+// generates the checksum for the meta.
+func (m *meta) sum64() uint64 {
+	var h = fnv.New64a()
+	_, _ = h.Write((*[unsafe.Offsetof(meta{}.checksum)]byte)(unsafe.Pointer(m))[:])
+	return h.Sum64()
+}
+
+// _assert will panic with a given formatted message if the given condition is false.
+func _assert(condition bool, msg string, v ...interface{}) {
+	if !condition {
+		panic(fmt.Sprintf("assertion failed: "+msg, v...))
+	}
+}
+
+func warn(v ...interface{})              { fmt.Fprintln(os.Stderr, v...) }
+func warnf(msg string, v ...interface{}) { fmt.Fprintf(os.Stderr, msg+"\n", v...) }
+
+func printstack() {
+	stack := strings.Join(strings.Split(string(debug.Stack()), "\n")[2:], "\n")
+	fmt.Fprintln(os.Stderr, stack)
+}
diff --git a/vendor/github.com/boltdb/bolt/doc.go b/vendor/github.com/boltdb/bolt/doc.go
new file mode 100644
index 0000000000..cc937845db
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/doc.go
@@ -0,0 +1,44 @@
+/*
+Package bolt implements a low-level key/value store in pure Go. It supports
+fully serializable transactions, ACID semantics, and lock-free MVCC with
+multiple readers and a single writer. Bolt can be used for projects that
+want a simple data store without the need to add large dependencies such as
+Postgres or MySQL.
+
+Bolt is a single-level, zero-copy, B+tree data store. This means that Bolt is
+optimized for fast read access and does not require recovery in the event of a
+system crash. Transactions which have not finished committing will simply be
+rolled back in the event of a crash.
+
+The design of Bolt is based on Howard Chu's LMDB database project.
+
+Bolt currently works on Windows, Mac OS X, and Linux.
+
+
+Basics
+
+There are only a few types in Bolt: DB, Bucket, Tx, and Cursor. The DB is
+a collection of buckets and is represented by a single file on disk. A bucket is
+a collection of unique keys that are associated with values.
+
+Transactions provide either read-only or read-write access to the database.
+Read-only transactions can retrieve key/value pairs and can use Cursors to
+iterate over the dataset sequentially. Read-write transactions can create and
+delete buckets and can insert and remove keys. Only one read-write transaction
+is allowed at a time.
+
+
+Caveats
+
+The database uses a read-only, memory-mapped data file to ensure that
+applications cannot corrupt the database, however, this means that keys and
+values returned from Bolt cannot be changed. Writing to a read-only byte slice
+will cause Go to panic.
+
+Keys and values retrieved from the database are only valid for the life of
+the transaction. When used outside the transaction, these byte slices can
+point to different data or can point to invalid memory which will cause a panic.
+
+
+*/
+package bolt
diff --git a/vendor/github.com/boltdb/bolt/errors.go b/vendor/github.com/boltdb/bolt/errors.go
new file mode 100644
index 0000000000..a3620a3ebb
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/errors.go
@@ -0,0 +1,71 @@
+package bolt
+
+import "errors"
+
+// These errors can be returned when opening or calling methods on a DB.
+var (
+	// ErrDatabaseNotOpen is returned when a DB instance is accessed before it
+	// is opened or after it is closed.
+	ErrDatabaseNotOpen = errors.New("database not open")
+
+	// ErrDatabaseOpen is returned when opening a database that is
+	// already open.
+	ErrDatabaseOpen = errors.New("database already open")
+
+	// ErrInvalid is returned when both meta pages on a database are invalid.
+	// This typically occurs when a file is not a bolt database.
+	ErrInvalid = errors.New("invalid database")
+
+	// ErrVersionMismatch is returned when the data file was created with a
+	// different version of Bolt.
+	ErrVersionMismatch = errors.New("version mismatch")
+
+	// ErrChecksum is returned when either meta page checksum does not match.
+	ErrChecksum = errors.New("checksum error")
+
+	// ErrTimeout is returned when a database cannot obtain an exclusive lock
+	// on the data file after the timeout passed to Open().
+	ErrTimeout = errors.New("timeout")
+)
+
+// These errors can occur when beginning or committing a Tx.
+var (
+	// ErrTxNotWritable is returned when performing a write operation on a
+	// read-only transaction.
+	ErrTxNotWritable = errors.New("tx not writable")
+
+	// ErrTxClosed is returned when committing or rolling back a transaction
+	// that has already been committed or rolled back.
+	ErrTxClosed = errors.New("tx closed")
+
+	// ErrDatabaseReadOnly is returned when a mutating transaction is started on a
+	// read-only database.
+	ErrDatabaseReadOnly = errors.New("database is in read-only mode")
+)
+
+// These errors can occur when putting or deleting a value or a bucket.
+var (
+	// ErrBucketNotFound is returned when trying to access a bucket that has
+	// not been created yet.
+	ErrBucketNotFound = errors.New("bucket not found")
+
+	// ErrBucketExists is returned when creating a bucket that already exists.
+	ErrBucketExists = errors.New("bucket already exists")
+
+	// ErrBucketNameRequired is returned when creating a bucket with a blank name.
+	ErrBucketNameRequired = errors.New("bucket name required")
+
+	// ErrKeyRequired is returned when inserting a zero-length key.
+	ErrKeyRequired = errors.New("key required")
+
+	// ErrKeyTooLarge is returned when inserting a key that is larger than MaxKeySize.
+	ErrKeyTooLarge = errors.New("key too large")
+
+	// ErrValueTooLarge is returned when inserting a value that is larger than MaxValueSize.
+	ErrValueTooLarge = errors.New("value too large")
+
+	// ErrIncompatibleValue is returned when trying create or delete a bucket
+	// on an existing non-bucket key or when trying to create or delete a
+	// non-bucket key on an existing bucket key.
+	ErrIncompatibleValue = errors.New("incompatible value")
+)
diff --git a/vendor/github.com/boltdb/bolt/freelist.go b/vendor/github.com/boltdb/bolt/freelist.go
new file mode 100644
index 0000000000..aba48f58c6
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/freelist.go
@@ -0,0 +1,252 @@
+package bolt
+
+import (
+	"fmt"
+	"sort"
+	"unsafe"
+)
+
+// freelist represents a list of all pages that are available for allocation.
+// It also tracks pages that have been freed but are still in use by open transactions.
+type freelist struct {
+	ids     []pgid          // all free and available free page ids.
+	pending map[txid][]pgid // mapping of soon-to-be free page ids by tx.
+	cache   map[pgid]bool   // fast lookup of all free and pending page ids.
+}
+
+// newFreelist returns an empty, initialized freelist.
+func newFreelist() *freelist {
+	return &freelist{
+		pending: make(map[txid][]pgid),
+		cache:   make(map[pgid]bool),
+	}
+}
+
+// size returns the size of the page after serialization.
+func (f *freelist) size() int {
+	n := f.count()
+	if n >= 0xFFFF {
+		// The first element will be used to store the count. See freelist.write.
+		n++
+	}
+	return pageHeaderSize + (int(unsafe.Sizeof(pgid(0))) * n)
+}
+
+// count returns count of pages on the freelist
+func (f *freelist) count() int {
+	return f.free_count() + f.pending_count()
+}
+
+// free_count returns count of free pages
+func (f *freelist) free_count() int {
+	return len(f.ids)
+}
+
+// pending_count returns count of pending pages
+func (f *freelist) pending_count() int {
+	var count int
+	for _, list := range f.pending {
+		count += len(list)
+	}
+	return count
+}
+
+// copyall copies into dst a list of all free ids and all pending ids in one sorted list.
+// f.count returns the minimum length required for dst.
+func (f *freelist) copyall(dst []pgid) {
+	m := make(pgids, 0, f.pending_count())
+	for _, list := range f.pending {
+		m = append(m, list...)
+	}
+	sort.Sort(m)
+	mergepgids(dst, f.ids, m)
+}
+
+// allocate returns the starting page id of a contiguous list of pages of a given size.
+// If a contiguous block cannot be found then 0 is returned.
+func (f *freelist) allocate(n int) pgid {
+	if len(f.ids) == 0 {
+		return 0
+	}
+
+	var initial, previd pgid
+	for i, id := range f.ids {
+		if id <= 1 {
+			panic(fmt.Sprintf("invalid page allocation: %d", id))
+		}
+
+		// Reset initial page if this is not contiguous.
+		if previd == 0 || id-previd != 1 {
+			initial = id
+		}
+
+		// If we found a contiguous block then remove it and return it.
+		if (id-initial)+1 == pgid(n) {
+			// If we're allocating off the beginning then take the fast path
+			// and just adjust the existing slice. This will use extra memory
+			// temporarily but the append() in free() will realloc the slice
+			// as is necessary.
+			if (i + 1) == n {
+				f.ids = f.ids[i+1:]
+			} else {
+				copy(f.ids[i-n+1:], f.ids[i+1:])
+				f.ids = f.ids[:len(f.ids)-n]
+			}
+
+			// Remove from the free cache.
+			for i := pgid(0); i < pgid(n); i++ {
+				delete(f.cache, initial+i)
+			}
+
+			return initial
+		}
+
+		previd = id
+	}
+	return 0
+}
+
+// free releases a page and its overflow for a given transaction id.
+// If the page is already free then a panic will occur.
+func (f *freelist) free(txid txid, p *page) {
+	if p.id <= 1 {
+		panic(fmt.Sprintf("cannot free page 0 or 1: %d", p.id))
+	}
+
+	// Free page and all its overflow pages.
+	var ids = f.pending[txid]
+	for id := p.id; id <= p.id+pgid(p.overflow); id++ {
+		// Verify that page is not already free.
+		if f.cache[id] {
+			panic(fmt.Sprintf("page %d already freed", id))
+		}
+
+		// Add to the freelist and cache.
+		ids = append(ids, id)
+		f.cache[id] = true
+	}
+	f.pending[txid] = ids
+}
+
+// release moves all page ids for a transaction id (or older) to the freelist.
+func (f *freelist) release(txid txid) {
+	m := make(pgids, 0)
+	for tid, ids := range f.pending {
+		if tid <= txid {
+			// Move transaction's pending pages to the available freelist.
+			// Don't remove from the cache since the page is still free.
+			m = append(m, ids...)
+			delete(f.pending, tid)
+		}
+	}
+	sort.Sort(m)
+	f.ids = pgids(f.ids).merge(m)
+}
+
+// rollback removes the pages from a given pending tx.
+func (f *freelist) rollback(txid txid) {
+	// Remove page ids from cache.
+	for _, id := range f.pending[txid] {
+		delete(f.cache, id)
+	}
+
+	// Remove pages from pending list.
+	delete(f.pending, txid)
+}
+
+// freed returns whether a given page is in the free list.
+func (f *freelist) freed(pgid pgid) bool {
+	return f.cache[pgid]
+}
+
+// read initializes the freelist from a freelist page.
+func (f *freelist) read(p *page) {
+	// If the page.count is at the max uint16 value (64k) then it's considered
+	// an overflow and the size of the freelist is stored as the first element.
+	idx, count := 0, int(p.count)
+	if count == 0xFFFF {
+		idx = 1
+		count = int(((*[maxAllocSize]pgid)(unsafe.Pointer(&p.ptr)))[0])
+	}
+
+	// Copy the list of page ids from the freelist.
+	if count == 0 {
+		f.ids = nil
+	} else {
+		ids := ((*[maxAllocSize]pgid)(unsafe.Pointer(&p.ptr)))[idx:count]
+		f.ids = make([]pgid, len(ids))
+		copy(f.ids, ids)
+
+		// Make sure they're sorted.
+		sort.Sort(pgids(f.ids))
+	}
+
+	// Rebuild the page cache.
+	f.reindex()
+}
+
+// write writes the page ids onto a freelist page. All free and pending ids are
+// saved to disk since in the event of a program crash, all pending ids will
+// become free.
+func (f *freelist) write(p *page) error {
+	// Combine the old free pgids and pgids waiting on an open transaction.
+
+	// Update the header flag.
+	p.flags |= freelistPageFlag
+
+	// The page.count can only hold up to 64k elements so if we overflow that
+	// number then we handle it by putting the size in the first element.
+	lenids := f.count()
+	if lenids == 0 {
+		p.count = uint16(lenids)
+	} else if lenids < 0xFFFF {
+		p.count = uint16(lenids)
+		f.copyall(((*[maxAllocSize]pgid)(unsafe.Pointer(&p.ptr)))[:])
+	} else {
+		p.count = 0xFFFF
+		((*[maxAllocSize]pgid)(unsafe.Pointer(&p.ptr)))[0] = pgid(lenids)
+		f.copyall(((*[maxAllocSize]pgid)(unsafe.Pointer(&p.ptr)))[1:])
+	}
+
+	return nil
+}
+
+// reload reads the freelist from a page and filters out pending items.
+func (f *freelist) reload(p *page) {
+	f.read(p)
+
+	// Build a cache of only pending pages.
+	pcache := make(map[pgid]bool)
+	for _, pendingIDs := range f.pending {
+		for _, pendingID := range pendingIDs {
+			pcache[pendingID] = true
+		}
+	}
+
+	// Check each page in the freelist and build a new available freelist
+	// with any pages not in the pending lists.
+	var a []pgid
+	for _, id := range f.ids {
+		if !pcache[id] {
+			a = append(a, id)
+		}
+	}
+	f.ids = a
+
+	// Once the available list is rebuilt then rebuild the free cache so that
+	// it includes the available and pending free pages.
+	f.reindex()
+}
+
+// reindex rebuilds the free cache based on available and pending free lists.
+func (f *freelist) reindex() {
+	f.cache = make(map[pgid]bool, len(f.ids))
+	for _, id := range f.ids {
+		f.cache[id] = true
+	}
+	for _, pendingIDs := range f.pending {
+		for _, pendingID := range pendingIDs {
+			f.cache[pendingID] = true
+		}
+	}
+}
diff --git a/vendor/github.com/boltdb/bolt/node.go b/vendor/github.com/boltdb/bolt/node.go
new file mode 100644
index 0000000000..159318b229
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/node.go
@@ -0,0 +1,604 @@
+package bolt
+
+import (
+	"bytes"
+	"fmt"
+	"sort"
+	"unsafe"
+)
+
+// node represents an in-memory, deserialized page.
+type node struct {
+	bucket     *Bucket
+	isLeaf     bool
+	unbalanced bool
+	spilled    bool
+	key        []byte
+	pgid       pgid
+	parent     *node
+	children   nodes
+	inodes     inodes
+}
+
+// root returns the top-level node this node is attached to.
+func (n *node) root() *node {
+	if n.parent == nil {
+		return n
+	}
+	return n.parent.root()
+}
+
+// minKeys returns the minimum number of inodes this node should have.
+func (n *node) minKeys() int {
+	if n.isLeaf {
+		return 1
+	}
+	return 2
+}
+
+// size returns the size of the node after serialization.
+func (n *node) size() int {
+	sz, elsz := pageHeaderSize, n.pageElementSize()
+	for i := 0; i < len(n.inodes); i++ {
+		item := &n.inodes[i]
+		sz += elsz + len(item.key) + len(item.value)
+	}
+	return sz
+}
+
+// sizeLessThan returns true if the node is less than a given size.
+// This is an optimization to avoid calculating a large node when we only need
+// to know if it fits inside a certain page size.
+func (n *node) sizeLessThan(v int) bool {
+	sz, elsz := pageHeaderSize, n.pageElementSize()
+	for i := 0; i < len(n.inodes); i++ {
+		item := &n.inodes[i]
+		sz += elsz + len(item.key) + len(item.value)
+		if sz >= v {
+			return false
+		}
+	}
+	return true
+}
+
+// pageElementSize returns the size of each page element based on the type of node.
+func (n *node) pageElementSize() int {
+	if n.isLeaf {
+		return leafPageElementSize
+	}
+	return branchPageElementSize
+}
+
+// childAt returns the child node at a given index.
+func (n *node) childAt(index int) *node {
+	if n.isLeaf {
+		panic(fmt.Sprintf("invalid childAt(%d) on a leaf node", index))
+	}
+	return n.bucket.node(n.inodes[index].pgid, n)
+}
+
+// childIndex returns the index of a given child node.
+func (n *node) childIndex(child *node) int {
+	index := sort.Search(len(n.inodes), func(i int) bool { return bytes.Compare(n.inodes[i].key, child.key) != -1 })
+	return index
+}
+
+// numChildren returns the number of children.
+func (n *node) numChildren() int {
+	return len(n.inodes)
+}
+
+// nextSibling returns the next node with the same parent.
+func (n *node) nextSibling() *node {
+	if n.parent == nil {
+		return nil
+	}
+	index := n.parent.childIndex(n)
+	if index >= n.parent.numChildren()-1 {
+		return nil
+	}
+	return n.parent.childAt(index + 1)
+}
+
+// prevSibling returns the previous node with the same parent.
+func (n *node) prevSibling() *node {
+	if n.parent == nil {
+		return nil
+	}
+	index := n.parent.childIndex(n)
+	if index == 0 {
+		return nil
+	}
+	return n.parent.childAt(index - 1)
+}
+
+// put inserts a key/value.
+func (n *node) put(oldKey, newKey, value []byte, pgid pgid, flags uint32) {
+	if pgid >= n.bucket.tx.meta.pgid {
+		panic(fmt.Sprintf("pgid (%d) above high water mark (%d)", pgid, n.bucket.tx.meta.pgid))
+	} else if len(oldKey) <= 0 {
+		panic("put: zero-length old key")
+	} else if len(newKey) <= 0 {
+		panic("put: zero-length new key")
+	}
+
+	// Find insertion index.
+	index := sort.Search(len(n.inodes), func(i int) bool { return bytes.Compare(n.inodes[i].key, oldKey) != -1 })
+
+	// Add capacity and shift nodes if we don't have an exact match and need to insert.
+	exact := (len(n.inodes) > 0 && index < len(n.inodes) && bytes.Equal(n.inodes[index].key, oldKey))
+	if !exact {
+		n.inodes = append(n.inodes, inode{})
+		copy(n.inodes[index+1:], n.inodes[index:])
+	}
+
+	inode := &n.inodes[index]
+	inode.flags = flags
+	inode.key = newKey
+	inode.value = value
+	inode.pgid = pgid
+	_assert(len(inode.key) > 0, "put: zero-length inode key")
+}
+
+// del removes a key from the node.
+func (n *node) del(key []byte) {
+	// Find index of key.
+	index := sort.Search(len(n.inodes), func(i int) bool { return bytes.Compare(n.inodes[i].key, key) != -1 })
+
+	// Exit if the key isn't found.
+	if index >= len(n.inodes) || !bytes.Equal(n.inodes[index].key, key) {
+		return
+	}
+
+	// Delete inode from the node.
+	n.inodes = append(n.inodes[:index], n.inodes[index+1:]...)
+
+	// Mark the node as needing rebalancing.
+	n.unbalanced = true
+}
+
+// read initializes the node from a page.
+func (n *node) read(p *page) {
+	n.pgid = p.id
+	n.isLeaf = ((p.flags & leafPageFlag) != 0)
+	n.inodes = make(inodes, int(p.count))
+
+	for i := 0; i < int(p.count); i++ {
+		inode := &n.inodes[i]
+		if n.isLeaf {
+			elem := p.leafPageElement(uint16(i))
+			inode.flags = elem.flags
+			inode.key = elem.key()
+			inode.value = elem.value()
+		} else {
+			elem := p.branchPageElement(uint16(i))
+			inode.pgid = elem.pgid
+			inode.key = elem.key()
+		}
+		_assert(len(inode.key) > 0, "read: zero-length inode key")
+	}
+
+	// Save first key so we can find the node in the parent when we spill.
+	if len(n.inodes) > 0 {
+		n.key = n.inodes[0].key
+		_assert(len(n.key) > 0, "read: zero-length node key")
+	} else {
+		n.key = nil
+	}
+}
+
+// write writes the items onto one or more pages.
+func (n *node) write(p *page) {
+	// Initialize page.
+	if n.isLeaf {
+		p.flags |= leafPageFlag
+	} else {
+		p.flags |= branchPageFlag
+	}
+
+	if len(n.inodes) >= 0xFFFF {
+		panic(fmt.Sprintf("inode overflow: %d (pgid=%d)", len(n.inodes), p.id))
+	}
+	p.count = uint16(len(n.inodes))
+
+	// Stop here if there are no items to write.
+	if p.count == 0 {
+		return
+	}
+
+	// Loop over each item and write it to the page.
+	b := (*[maxAllocSize]byte)(unsafe.Pointer(&p.ptr))[n.pageElementSize()*len(n.inodes):]
+	for i, item := range n.inodes {
+		_assert(len(item.key) > 0, "write: zero-length inode key")
+
+		// Write the page element.
+		if n.isLeaf {
+			elem := p.leafPageElement(uint16(i))
+			elem.pos = uint32(uintptr(unsafe.Pointer(&b[0])) - uintptr(unsafe.Pointer(elem)))
+			elem.flags = item.flags
+			elem.ksize = uint32(len(item.key))
+			elem.vsize = uint32(len(item.value))
+		} else {
+			elem := p.branchPageElement(uint16(i))
+			elem.pos = uint32(uintptr(unsafe.Pointer(&b[0])) - uintptr(unsafe.Pointer(elem)))
+			elem.ksize = uint32(len(item.key))
+			elem.pgid = item.pgid
+			_assert(elem.pgid != p.id, "write: circular dependency occurred")
+		}
+
+		// If the length of key+value is larger than the max allocation size
+		// then we need to reallocate the byte array pointer.
+		//
+		// See: https://github.com/boltdb/bolt/pull/335
+		klen, vlen := len(item.key), len(item.value)
+		if len(b) < klen+vlen {
+			b = (*[maxAllocSize]byte)(unsafe.Pointer(&b[0]))[:]
+		}
+
+		// Write data for the element to the end of the page.
+		copy(b[0:], item.key)
+		b = b[klen:]
+		copy(b[0:], item.value)
+		b = b[vlen:]
+	}
+
+	// DEBUG ONLY: n.dump()
+}
+
+// split breaks up a node into multiple smaller nodes, if appropriate.
+// This should only be called from the spill() function.
+func (n *node) split(pageSize int) []*node {
+	var nodes []*node
+
+	node := n
+	for {
+		// Split node into two.
+		a, b := node.splitTwo(pageSize)
+		nodes = append(nodes, a)
+
+		// If we can't split then exit the loop.
+		if b == nil {
+			break
+		}
+
+		// Set node to b so it gets split on the next iteration.
+		node = b
+	}
+
+	return nodes
+}
+
+// splitTwo breaks up a node into two smaller nodes, if appropriate.
+// This should only be called from the split() function.
+func (n *node) splitTwo(pageSize int) (*node, *node) {
+	// Ignore the split if the page doesn't have at least enough nodes for
+	// two pages or if the nodes can fit in a single page.
+	if len(n.inodes) <= (minKeysPerPage*2) || n.sizeLessThan(pageSize) {
+		return n, nil
+	}
+
+	// Determine the threshold before starting a new node.
+	var fillPercent = n.bucket.FillPercent
+	if fillPercent < minFillPercent {
+		fillPercent = minFillPercent
+	} else if fillPercent > maxFillPercent {
+		fillPercent = maxFillPercent
+	}
+	threshold := int(float64(pageSize) * fillPercent)
+
+	// Determine split position and sizes of the two pages.
+	splitIndex, _ := n.splitIndex(threshold)
+
+	// Split node into two separate nodes.
+	// If there's no parent then we'll need to create one.
+	if n.parent == nil {
+		n.parent = &node{bucket: n.bucket, children: []*node{n}}
+	}
+
+	// Create a new node and add it to the parent.
+	next := &node{bucket: n.bucket, isLeaf: n.isLeaf, parent: n.parent}
+	n.parent.children = append(n.parent.children, next)
+
+	// Split inodes across two nodes.
+	next.inodes = n.inodes[splitIndex:]
+	n.inodes = n.inodes[:splitIndex]
+
+	// Update the statistics.
+	n.bucket.tx.stats.Split++
+
+	return n, next
+}
+
+// splitIndex finds the position where a page will fill a given threshold.
+// It returns the index as well as the size of the first page.
+// This is only be called from split().
+func (n *node) splitIndex(threshold int) (index, sz int) {
+	sz = pageHeaderSize
+
+	// Loop until we only have the minimum number of keys required for the second page.
+	for i := 0; i < len(n.inodes)-minKeysPerPage; i++ {
+		index = i
+		inode := n.inodes[i]
+		elsize := n.pageElementSize() + len(inode.key) + len(inode.value)
+
+		// If we have at least the minimum number of keys and adding another
+		// node would put us over the threshold then exit and return.
+		if i >= minKeysPerPage && sz+elsize > threshold {
+			break
+		}
+
+		// Add the element size to the total size.
+		sz += elsize
+	}
+
+	return
+}
+
+// spill writes the nodes to dirty pages and splits nodes as it goes.
+// Returns an error if dirty pages cannot be allocated.
+func (n *node) spill() error {
+	var tx = n.bucket.tx
+	if n.spilled {
+		return nil
+	}
+
+	// Spill child nodes first. Child nodes can materialize sibling nodes in
+	// the case of split-merge so we cannot use a range loop. We have to check
+	// the children size on every loop iteration.
+	sort.Sort(n.children)
+	for i := 0; i < len(n.children); i++ {
+		if err := n.children[i].spill(); err != nil {
+			return err
+		}
+	}
+
+	// We no longer need the child list because it's only used for spill tracking.
+	n.children = nil
+
+	// Split nodes into appropriate sizes. The first node will always be n.
+	var nodes = n.split(tx.db.pageSize)
+	for _, node := range nodes {
+		// Add node's page to the freelist if it's not new.
+		if node.pgid > 0 {
+			tx.db.freelist.free(tx.meta.txid, tx.page(node.pgid))
+			node.pgid = 0
+		}
+
+		// Allocate contiguous space for the node.
+		p, err := tx.allocate((node.size() / tx.db.pageSize) + 1)
+		if err != nil {
+			return err
+		}
+
+		// Write the node.
+		if p.id >= tx.meta.pgid {
+			panic(fmt.Sprintf("pgid (%d) above high water mark (%d)", p.id, tx.meta.pgid))
+		}
+		node.pgid = p.id
+		node.write(p)
+		node.spilled = true
+
+		// Insert into parent inodes.
+		if node.parent != nil {
+			var key = node.key
+			if key == nil {
+				key = node.inodes[0].key
+			}
+
+			node.parent.put(key, node.inodes[0].key, nil, node.pgid, 0)
+			node.key = node.inodes[0].key
+			_assert(len(node.key) > 0, "spill: zero-length node key")
+		}
+
+		// Update the statistics.
+		tx.stats.Spill++
+	}
+
+	// If the root node split and created a new root then we need to spill that
+	// as well. We'll clear out the children to make sure it doesn't try to respill.
+	if n.parent != nil && n.parent.pgid == 0 {
+		n.children = nil
+		return n.parent.spill()
+	}
+
+	return nil
+}
+
+// rebalance attempts to combine the node with sibling nodes if the node fill
+// size is below a threshold or if there are not enough keys.
+func (n *node) rebalance() {
+	if !n.unbalanced {
+		return
+	}
+	n.unbalanced = false
+
+	// Update statistics.
+	n.bucket.tx.stats.Rebalance++
+
+	// Ignore if node is above threshold (25%) and has enough keys.
+	var threshold = n.bucket.tx.db.pageSize / 4
+	if n.size() > threshold && len(n.inodes) > n.minKeys() {
+		return
+	}
+
+	// Root node has special handling.
+	if n.parent == nil {
+		// If root node is a branch and only has one node then collapse it.
+		if !n.isLeaf && len(n.inodes) == 1 {
+			// Move root's child up.
+			child := n.bucket.node(n.inodes[0].pgid, n)
+			n.isLeaf = child.isLeaf
+			n.inodes = child.inodes[:]
+			n.children = child.children
+
+			// Reparent all child nodes being moved.
+			for _, inode := range n.inodes {
+				if child, ok := n.bucket.nodes[inode.pgid]; ok {
+					child.parent = n
+				}
+			}
+
+			// Remove old child.
+			child.parent = nil
+			delete(n.bucket.nodes, child.pgid)
+			child.free()
+		}
+
+		return
+	}
+
+	// If node has no keys then just remove it.
+	if n.numChildren() == 0 {
+		n.parent.del(n.key)
+		n.parent.removeChild(n)
+		delete(n.bucket.nodes, n.pgid)
+		n.free()
+		n.parent.rebalance()
+		return
+	}
+
+	_assert(n.parent.numChildren() > 1, "parent must have at least 2 children")
+
+	// Destination node is right sibling if idx == 0, otherwise left sibling.
+	var target *node
+	var useNextSibling = (n.parent.childIndex(n) == 0)
+	if useNextSibling {
+		target = n.nextSibling()
+	} else {
+		target = n.prevSibling()
+	}
+
+	// If both this node and the target node are too small then merge them.
+	if useNextSibling {
+		// Reparent all child nodes being moved.
+		for _, inode := range target.inodes {
+			if child, ok := n.bucket.nodes[inode.pgid]; ok {
+				child.parent.removeChild(child)
+				child.parent = n
+				child.parent.children = append(child.parent.children, child)
+			}
+		}
+
+		// Copy over inodes from target and remove target.
+		n.inodes = append(n.inodes, target.inodes...)
+		n.parent.del(target.key)
+		n.parent.removeChild(target)
+		delete(n.bucket.nodes, target.pgid)
+		target.free()
+	} else {
+		// Reparent all child nodes being moved.
+		for _, inode := range n.inodes {
+			if child, ok := n.bucket.nodes[inode.pgid]; ok {
+				child.parent.removeChild(child)
+				child.parent = target
+				child.parent.children = append(child.parent.children, child)
+			}
+		}
+
+		// Copy over inodes to target and remove node.
+		target.inodes = append(target.inodes, n.inodes...)
+		n.parent.del(n.key)
+		n.parent.removeChild(n)
+		delete(n.bucket.nodes, n.pgid)
+		n.free()
+	}
+
+	// Either this node or the target node was deleted from the parent so rebalance it.
+	n.parent.rebalance()
+}
+
+// removes a node from the list of in-memory children.
+// This does not affect the inodes.
+func (n *node) removeChild(target *node) {
+	for i, child := range n.children {
+		if child == target {
+			n.children = append(n.children[:i], n.children[i+1:]...)
+			return
+		}
+	}
+}
+
+// dereference causes the node to copy all its inode key/value references to heap memory.
+// This is required when the mmap is reallocated so inodes are not pointing to stale data.
+func (n *node) dereference() {
+	if n.key != nil {
+		key := make([]byte, len(n.key))
+		copy(key, n.key)
+		n.key = key
+		_assert(n.pgid == 0 || len(n.key) > 0, "dereference: zero-length node key on existing node")
+	}
+
+	for i := range n.inodes {
+		inode := &n.inodes[i]
+
+		key := make([]byte, len(inode.key))
+		copy(key, inode.key)
+		inode.key = key
+		_assert(len(inode.key) > 0, "dereference: zero-length inode key")
+
+		value := make([]byte, len(inode.value))
+		copy(value, inode.value)
+		inode.value = value
+	}
+
+	// Recursively dereference children.
+	for _, child := range n.children {
+		child.dereference()
+	}
+
+	// Update statistics.
+	n.bucket.tx.stats.NodeDeref++
+}
+
+// free adds the node's underlying page to the freelist.
+func (n *node) free() {
+	if n.pgid != 0 {
+		n.bucket.tx.db.freelist.free(n.bucket.tx.meta.txid, n.bucket.tx.page(n.pgid))
+		n.pgid = 0
+	}
+}
+
+// dump writes the contents of the node to STDERR for debugging purposes.
+/*
+func (n *node) dump() {
+	// Write node header.
+	var typ = "branch"
+	if n.isLeaf {
+		typ = "leaf"
+	}
+	warnf("[NODE %d {type=%s count=%d}]", n.pgid, typ, len(n.inodes))
+
+	// Write out abbreviated version of each item.
+	for _, item := range n.inodes {
+		if n.isLeaf {
+			if item.flags&bucketLeafFlag != 0 {
+				bucket := (*bucket)(unsafe.Pointer(&item.value[0]))
+				warnf("+L %08x -> (bucket root=%d)", trunc(item.key, 4), bucket.root)
+			} else {
+				warnf("+L %08x -> %08x", trunc(item.key, 4), trunc(item.value, 4))
+			}
+		} else {
+			warnf("+B %08x -> pgid=%d", trunc(item.key, 4), item.pgid)
+		}
+	}
+	warn("")
+}
+*/
+
+type nodes []*node
+
+func (s nodes) Len() int           { return len(s) }
+func (s nodes) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
+func (s nodes) Less(i, j int) bool { return bytes.Compare(s[i].inodes[0].key, s[j].inodes[0].key) == -1 }
+
+// inode represents an internal node inside of a node.
+// It can be used to point to elements in a page or point
+// to an element which hasn't been added to a page yet.
+type inode struct {
+	flags uint32
+	pgid  pgid
+	key   []byte
+	value []byte
+}
+
+type inodes []inode
diff --git a/vendor/github.com/boltdb/bolt/page.go b/vendor/github.com/boltdb/bolt/page.go
new file mode 100644
index 0000000000..cde403ae86
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/page.go
@@ -0,0 +1,197 @@
+package bolt
+
+import (
+	"fmt"
+	"os"
+	"sort"
+	"unsafe"
+)
+
+const pageHeaderSize = int(unsafe.Offsetof(((*page)(nil)).ptr))
+
+const minKeysPerPage = 2
+
+const branchPageElementSize = int(unsafe.Sizeof(branchPageElement{}))
+const leafPageElementSize = int(unsafe.Sizeof(leafPageElement{}))
+
+const (
+	branchPageFlag   = 0x01
+	leafPageFlag     = 0x02
+	metaPageFlag     = 0x04
+	freelistPageFlag = 0x10
+)
+
+const (
+	bucketLeafFlag = 0x01
+)
+
+type pgid uint64
+
+type page struct {
+	id       pgid
+	flags    uint16
+	count    uint16
+	overflow uint32
+	ptr      uintptr
+}
+
+// typ returns a human readable page type string used for debugging.
+func (p *page) typ() string {
+	if (p.flags & branchPageFlag) != 0 {
+		return "branch"
+	} else if (p.flags & leafPageFlag) != 0 {
+		return "leaf"
+	} else if (p.flags & metaPageFlag) != 0 {
+		return "meta"
+	} else if (p.flags & freelistPageFlag) != 0 {
+		return "freelist"
+	}
+	return fmt.Sprintf("unknown<%02x>", p.flags)
+}
+
+// meta returns a pointer to the metadata section of the page.
+func (p *page) meta() *meta {
+	return (*meta)(unsafe.Pointer(&p.ptr))
+}
+
+// leafPageElement retrieves the leaf node by index
+func (p *page) leafPageElement(index uint16) *leafPageElement {
+	n := &((*[0x7FFFFFF]leafPageElement)(unsafe.Pointer(&p.ptr)))[index]
+	return n
+}
+
+// leafPageElements retrieves a list of leaf nodes.
+func (p *page) leafPageElements() []leafPageElement {
+	if p.count == 0 {
+		return nil
+	}
+	return ((*[0x7FFFFFF]leafPageElement)(unsafe.Pointer(&p.ptr)))[:]
+}
+
+// branchPageElement retrieves the branch node by index
+func (p *page) branchPageElement(index uint16) *branchPageElement {
+	return &((*[0x7FFFFFF]branchPageElement)(unsafe.Pointer(&p.ptr)))[index]
+}
+
+// branchPageElements retrieves a list of branch nodes.
+func (p *page) branchPageElements() []branchPageElement {
+	if p.count == 0 {
+		return nil
+	}
+	return ((*[0x7FFFFFF]branchPageElement)(unsafe.Pointer(&p.ptr)))[:]
+}
+
+// dump writes n bytes of the page to STDERR as hex output.
+func (p *page) hexdump(n int) {
+	buf := (*[maxAllocSize]byte)(unsafe.Pointer(p))[:n]
+	fmt.Fprintf(os.Stderr, "%x\n", buf)
+}
+
+type pages []*page
+
+func (s pages) Len() int           { return len(s) }
+func (s pages) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
+func (s pages) Less(i, j int) bool { return s[i].id < s[j].id }
+
+// branchPageElement represents a node on a branch page.
+type branchPageElement struct {
+	pos   uint32
+	ksize uint32
+	pgid  pgid
+}
+
+// key returns a byte slice of the node key.
+func (n *branchPageElement) key() []byte {
+	buf := (*[maxAllocSize]byte)(unsafe.Pointer(n))
+	return (*[maxAllocSize]byte)(unsafe.Pointer(&buf[n.pos]))[:n.ksize]
+}
+
+// leafPageElement represents a node on a leaf page.
+type leafPageElement struct {
+	flags uint32
+	pos   uint32
+	ksize uint32
+	vsize uint32
+}
+
+// key returns a byte slice of the node key.
+func (n *leafPageElement) key() []byte {
+	buf := (*[maxAllocSize]byte)(unsafe.Pointer(n))
+	return (*[maxAllocSize]byte)(unsafe.Pointer(&buf[n.pos]))[:n.ksize:n.ksize]
+}
+
+// value returns a byte slice of the node value.
+func (n *leafPageElement) value() []byte {
+	buf := (*[maxAllocSize]byte)(unsafe.Pointer(n))
+	return (*[maxAllocSize]byte)(unsafe.Pointer(&buf[n.pos+n.ksize]))[:n.vsize:n.vsize]
+}
+
+// PageInfo represents human readable information about a page.
+type PageInfo struct {
+	ID            int
+	Type          string
+	Count         int
+	OverflowCount int
+}
+
+type pgids []pgid
+
+func (s pgids) Len() int           { return len(s) }
+func (s pgids) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
+func (s pgids) Less(i, j int) bool { return s[i] < s[j] }
+
+// merge returns the sorted union of a and b.
+func (a pgids) merge(b pgids) pgids {
+	// Return the opposite slice if one is nil.
+	if len(a) == 0 {
+		return b
+	}
+	if len(b) == 0 {
+		return a
+	}
+	merged := make(pgids, len(a)+len(b))
+	mergepgids(merged, a, b)
+	return merged
+}
+
+// mergepgids copies the sorted union of a and b into dst.
+// If dst is too small, it panics.
+func mergepgids(dst, a, b pgids) {
+	if len(dst) < len(a)+len(b) {
+		panic(fmt.Errorf("mergepgids bad len %d < %d + %d", len(dst), len(a), len(b)))
+	}
+	// Copy in the opposite slice if one is nil.
+	if len(a) == 0 {
+		copy(dst, b)
+		return
+	}
+	if len(b) == 0 {
+		copy(dst, a)
+		return
+	}
+
+	// Merged will hold all elements from both lists.
+	merged := dst[:0]
+
+	// Assign lead to the slice with a lower starting value, follow to the higher value.
+	lead, follow := a, b
+	if b[0] < a[0] {
+		lead, follow = b, a
+	}
+
+	// Continue while there are elements in the lead.
+	for len(lead) > 0 {
+		// Merge largest prefix of lead that is ahead of follow[0].
+		n := sort.Search(len(lead), func(i int) bool { return lead[i] > follow[0] })
+		merged = append(merged, lead[:n]...)
+		if n >= len(lead) {
+			break
+		}
+
+		// Swap lead and follow.
+		lead, follow = follow, lead[n:]
+	}
+
+	// Append what's left in follow.
+	_ = append(merged, follow...)
+}
diff --git a/vendor/github.com/boltdb/bolt/tx.go b/vendor/github.com/boltdb/bolt/tx.go
new file mode 100644
index 0000000000..6700308a29
--- /dev/null
+++ b/vendor/github.com/boltdb/bolt/tx.go
@@ -0,0 +1,684 @@
+package bolt
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"sort"
+	"strings"
+	"time"
+	"unsafe"
+)
+
+// txid represents the internal transaction identifier.
+type txid uint64
+
+// Tx represents a read-only or read/write transaction on the database.
+// Read-only transactions can be used for retrieving values for keys and creating cursors.
+// Read/write transactions can create and remove buckets and create and remove keys.
+//
+// IMPORTANT: You must commit or rollback transactions when you are done with
+// them. Pages can not be reclaimed by the writer until no more transactions
+// are using them. A long running read transaction can cause the database to
+// quickly grow.
+type Tx struct {
+	writable       bool
+	managed        bool
+	db             *DB
+	meta           *meta
+	root           Bucket
+	pages          map[pgid]*page
+	stats          TxStats
+	commitHandlers []func()
+
+	// WriteFlag specifies the flag for write-related methods like WriteTo().
+	// Tx opens the database file with the specified flag to copy the data.
+	//
+	// By default, the flag is unset, which works well for mostly in-memory
+	// workloads. For databases that are much larger than available RAM,
+	// set the flag to syscall.O_DIRECT to avoid trashing the page cache.
+	WriteFlag int
+}
+
+// init initializes the transaction.
+func (tx *Tx) init(db *DB) {
+	tx.db = db
+	tx.pages = nil
+
+	// Copy the meta page since it can be changed by the writer.
+	tx.meta = &meta{}
+	db.meta().copy(tx.meta)
+
+	// Copy over the root bucket.
+	tx.root = newBucket(tx)
+	tx.root.bucket = &bucket{}
+	*tx.root.bucket = tx.meta.root
+
+	// Increment the transaction id and add a page cache for writable transactions.
+	if tx.writable {
+		tx.pages = make(map[pgid]*page)
+		tx.meta.txid += txid(1)
+	}
+}
+
+// ID returns the transaction id.
+func (tx *Tx) ID() int {
+	return int(tx.meta.txid)
+}
+
+// DB returns a reference to the database that created the transaction.
+func (tx *Tx) DB() *DB {
+	return tx.db
+}
+
+// Size returns current database size in bytes as seen by this transaction.
+func (tx *Tx) Size() int64 {
+	return int64(tx.meta.pgid) * int64(tx.db.pageSize)
+}
+
+// Writable returns whether the transaction can perform write operations.
+func (tx *Tx) Writable() bool {
+	return tx.writable
+}
+
+// Cursor creates a cursor associated with the root bucket.
+// All items in the cursor will return a nil value because all root bucket keys point to buckets.
+// The cursor is only valid as long as the transaction is open.
+// Do not use a cursor after the transaction is closed.
+func (tx *Tx) Cursor() *Cursor {
+	return tx.root.Cursor()
+}
+
+// Stats retrieves a copy of the current transaction statistics.
+func (tx *Tx) Stats() TxStats {
+	return tx.stats
+}
+
+// Bucket retrieves a bucket by name.
+// Returns nil if the bucket does not exist.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (tx *Tx) Bucket(name []byte) *Bucket {
+	return tx.root.Bucket(name)
+}
+
+// CreateBucket creates a new bucket.
+// Returns an error if the bucket already exists, if the bucket name is blank, or if the bucket name is too long.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (tx *Tx) CreateBucket(name []byte) (*Bucket, error) {
+	return tx.root.CreateBucket(name)
+}
+
+// CreateBucketIfNotExists creates a new bucket if it doesn't already exist.
+// Returns an error if the bucket name is blank, or if the bucket name is too long.
+// The bucket instance is only valid for the lifetime of the transaction.
+func (tx *Tx) CreateBucketIfNotExists(name []byte) (*Bucket, error) {
+	return tx.root.CreateBucketIfNotExists(name)
+}
+
+// DeleteBucket deletes a bucket.
+// Returns an error if the bucket cannot be found or if the key represents a non-bucket value.
+func (tx *Tx) DeleteBucket(name []byte) error {
+	return tx.root.DeleteBucket(name)
+}
+
+// ForEach executes a function for each bucket in the root.
+// If the provided function returns an error then the iteration is stopped and
+// the error is returned to the caller.
+func (tx *Tx) ForEach(fn func(name []byte, b *Bucket) error) error {
+	return tx.root.ForEach(func(k, v []byte) error {
+		if err := fn(k, tx.root.Bucket(k)); err != nil {
+			return err
+		}
+		return nil
+	})
+}
+
+// OnCommit adds a handler function to be executed after the transaction successfully commits.
+func (tx *Tx) OnCommit(fn func()) {
+	tx.commitHandlers = append(tx.commitHandlers, fn)
+}
+
+// Commit writes all changes to disk and updates the meta page.
+// Returns an error if a disk write error occurs, or if Commit is
+// called on a read-only transaction.
+func (tx *Tx) Commit() error {
+	_assert(!tx.managed, "managed tx commit not allowed")
+	if tx.db == nil {
+		return ErrTxClosed
+	} else if !tx.writable {
+		return ErrTxNotWritable
+	}
+
+	// TODO(benbjohnson): Use vectorized I/O to write out dirty pages.
+
+	// Rebalance nodes which have had deletions.
+	var startTime = time.Now()
+	tx.root.rebalance()
+	if tx.stats.Rebalance > 0 {
+		tx.stats.RebalanceTime += time.Since(startTime)
+	}
+
+	// spill data onto dirty pages.
+	startTime = time.Now()
+	if err := tx.root.spill(); err != nil {
+		tx.rollback()
+		return err
+	}
+	tx.stats.SpillTime += time.Since(startTime)
+
+	// Free the old root bucket.
+	tx.meta.root.root = tx.root.root
+
+	opgid := tx.meta.pgid
+
+	// Free the freelist and allocate new pages for it. This will overestimate
+	// the size of the freelist but not underestimate the size (which would be bad).
+	tx.db.freelist.free(tx.meta.txid, tx.db.page(tx.meta.freelist))
+	p, err := tx.allocate((tx.db.freelist.size() / tx.db.pageSize) + 1)
+	if err != nil {
+		tx.rollback()
+		return err
+	}
+	if err := tx.db.freelist.write(p); err != nil {
+		tx.rollback()
+		return err
+	}
+	tx.meta.freelist = p.id
+
+	// If the high water mark has moved up then attempt to grow the database.
+	if tx.meta.pgid > opgid {
+		if err := tx.db.grow(int(tx.meta.pgid+1) * tx.db.pageSize); err != nil {
+			tx.rollback()
+			return err
+		}
+	}
+
+	// Write dirty pages to disk.
+	startTime = time.Now()
+	if err := tx.write(); err != nil {
+		tx.rollback()
+		return err
+	}
+
+	// If strict mode is enabled then perform a consistency check.
+	// Only the first consistency error is reported in the panic.
+	if tx.db.StrictMode {
+		ch := tx.Check()
+		var errs []string
+		for {
+			err, ok := <-ch
+			if !ok {
+				break
+			}
+			errs = append(errs, err.Error())
+		}
+		if len(errs) > 0 {
+			panic("check fail: " + strings.Join(errs, "\n"))
+		}
+	}
+
+	// Write meta to disk.
+	if err := tx.writeMeta(); err != nil {
+		tx.rollback()
+		return err
+	}
+	tx.stats.WriteTime += time.Since(startTime)
+
+	// Finalize the transaction.
+	tx.close()
+
+	// Execute commit handlers now that the locks have been removed.
+	for _, fn := range tx.commitHandlers {
+		fn()
+	}
+
+	return nil
+}
+
+// Rollback closes the transaction and ignores all previous updates. Read-only
+// transactions must be rolled back and not committed.
+func (tx *Tx) Rollback() error {
+	_assert(!tx.managed, "managed tx rollback not allowed")
+	if tx.db == nil {
+		return ErrTxClosed
+	}
+	tx.rollback()
+	return nil
+}
+
+func (tx *Tx) rollback() {
+	if tx.db == nil {
+		return
+	}
+	if tx.writable {
+		tx.db.freelist.rollback(tx.meta.txid)
+		tx.db.freelist.reload(tx.db.page(tx.db.meta().freelist))
+	}
+	tx.close()
+}
+
+func (tx *Tx) close() {
+	if tx.db == nil {
+		return
+	}
+	if tx.writable {
+		// Grab freelist stats.
+		var freelistFreeN = tx.db.freelist.free_count()
+		var freelistPendingN = tx.db.freelist.pending_count()
+		var freelistAlloc = tx.db.freelist.size()
+
+		// Remove transaction ref & writer lock.
+		tx.db.rwtx = nil
+		tx.db.rwlock.Unlock()
+
+		// Merge statistics.
+		tx.db.statlock.Lock()
+		tx.db.stats.FreePageN = freelistFreeN
+		tx.db.stats.PendingPageN = freelistPendingN
+		tx.db.stats.FreeAlloc = (freelistFreeN + freelistPendingN) * tx.db.pageSize
+		tx.db.stats.FreelistInuse = freelistAlloc
+		tx.db.stats.TxStats.add(&tx.stats)
+		tx.db.statlock.Unlock()
+	} else {
+		tx.db.removeTx(tx)
+	}
+
+	// Clear all references.
+	tx.db = nil
+	tx.meta = nil
+	tx.root = Bucket{tx: tx}
+	tx.pages = nil
+}
+
+// Copy writes the entire database to a writer.
+// This function exists for backwards compatibility. Use WriteTo() instead.
+func (tx *Tx) Copy(w io.Writer) error {
+	_, err := tx.WriteTo(w)
+	return err
+}
+
+// WriteTo writes the entire database to a writer.
+// If err == nil then exactly tx.Size() bytes will be written into the writer.
+func (tx *Tx) WriteTo(w io.Writer) (n int64, err error) {
+	// Attempt to open reader with WriteFlag
+	f, err := os.OpenFile(tx.db.path, os.O_RDONLY|tx.WriteFlag, 0)
+	if err != nil {
+		return 0, err
+	}
+	defer func() { _ = f.Close() }()
+
+	// Generate a meta page. We use the same page data for both meta pages.
+	buf := make([]byte, tx.db.pageSize)
+	page := (*page)(unsafe.Pointer(&buf[0]))
+	page.flags = metaPageFlag
+	*page.meta() = *tx.meta
+
+	// Write meta 0.
+	page.id = 0
+	page.meta().checksum = page.meta().sum64()
+	nn, err := w.Write(buf)
+	n += int64(nn)
+	if err != nil {
+		return n, fmt.Errorf("meta 0 copy: %s", err)
+	}
+
+	// Write meta 1 with a lower transaction id.
+	page.id = 1
+	page.meta().txid -= 1
+	page.meta().checksum = page.meta().sum64()
+	nn, err = w.Write(buf)
+	n += int64(nn)
+	if err != nil {
+		return n, fmt.Errorf("meta 1 copy: %s", err)
+	}
+
+	// Move past the meta pages in the file.
+	if _, err := f.Seek(int64(tx.db.pageSize*2), os.SEEK_SET); err != nil {
+		return n, fmt.Errorf("seek: %s", err)
+	}
+
+	// Copy data pages.
+	wn, err := io.CopyN(w, f, tx.Size()-int64(tx.db.pageSize*2))
+	n += wn
+	if err != nil {
+		return n, err
+	}
+
+	return n, f.Close()
+}
+
+// CopyFile copies the entire database to file at the given path.
+// A reader transaction is maintained during the copy so it is safe to continue
+// using the database while a copy is in progress.
+func (tx *Tx) CopyFile(path string, mode os.FileMode) error {
+	f, err := os.OpenFile(path, os.O_RDWR|os.O_CREATE|os.O_TRUNC, mode)
+	if err != nil {
+		return err
+	}
+
+	err = tx.Copy(f)
+	if err != nil {
+		_ = f.Close()
+		return err
+	}
+	return f.Close()
+}
+
+// Check performs several consistency checks on the database for this transaction.
+// An error is returned if any inconsistency is found.
+//
+// It can be safely run concurrently on a writable transaction. However, this
+// incurs a high cost for large databases and databases with a lot of subbuckets
+// because of caching. This overhead can be removed if running on a read-only
+// transaction, however, it is not safe to execute other writer transactions at
+// the same time.
+func (tx *Tx) Check() <-chan error {
+	ch := make(chan error)
+	go tx.check(ch)
+	return ch
+}
+
+func (tx *Tx) check(ch chan error) {
+	// Check if any pages are double freed.
+	freed := make(map[pgid]bool)
+	all := make([]pgid, tx.db.freelist.count())
+	tx.db.freelist.copyall(all)
+	for _, id := range all {
+		if freed[id] {
+			ch <- fmt.Errorf("page %d: already freed", id)
+		}
+		freed[id] = true
+	}
+
+	// Track every reachable page.
+	reachable := make(map[pgid]*page)
+	reachable[0] = tx.page(0) // meta0
+	reachable[1] = tx.page(1) // meta1
+	for i := uint32(0); i <= tx.page(tx.meta.freelist).overflow; i++ {
+		reachable[tx.meta.freelist+pgid(i)] = tx.page(tx.meta.freelist)
+	}
+
+	// Recursively check buckets.
+	tx.checkBucket(&tx.root, reachable, freed, ch)
+
+	// Ensure all pages below high water mark are either reachable or freed.
+	for i := pgid(0); i < tx.meta.pgid; i++ {
+		_, isReachable := reachable[i]
+		if !isReachable && !freed[i] {
+			ch <- fmt.Errorf("page %d: unreachable unfreed", int(i))
+		}
+	}
+
+	// Close the channel to signal completion.
+	close(ch)
+}
+
+func (tx *Tx) checkBucket(b *Bucket, reachable map[pgid]*page, freed map[pgid]bool, ch chan error) {
+	// Ignore inline buckets.
+	if b.root == 0 {
+		return
+	}
+
+	// Check every page used by this bucket.
+	b.tx.forEachPage(b.root, 0, func(p *page, _ int) {
+		if p.id > tx.meta.pgid {
+			ch <- fmt.Errorf("page %d: out of bounds: %d", int(p.id), int(b.tx.meta.pgid))
+		}
+
+		// Ensure each page is only referenced once.
+		for i := pgid(0); i <= pgid(p.overflow); i++ {
+			var id = p.id + i
+			if _, ok := reachable[id]; ok {
+				ch <- fmt.Errorf("page %d: multiple references", int(id))
+			}
+			reachable[id] = p
+		}
+
+		// We should only encounter un-freed leaf and branch pages.
+		if freed[p.id] {
+			ch <- fmt.Errorf("page %d: reachable freed", int(p.id))
+		} else if (p.flags&branchPageFlag) == 0 && (p.flags&leafPageFlag) == 0 {
+			ch <- fmt.Errorf("page %d: invalid type: %s", int(p.id), p.typ())
+		}
+	})
+
+	// Check each bucket within this bucket.
+	_ = b.ForEach(func(k, v []byte) error {
+		if child := b.Bucket(k); child != nil {
+			tx.checkBucket(child, reachable, freed, ch)
+		}
+		return nil
+	})
+}
+
+// allocate returns a contiguous block of memory starting at a given page.
+func (tx *Tx) allocate(count int) (*page, error) {
+	p, err := tx.db.allocate(count)
+	if err != nil {
+		return nil, err
+	}
+
+	// Save to our page cache.
+	tx.pages[p.id] = p
+
+	// Update statistics.
+	tx.stats.PageCount++
+	tx.stats.PageAlloc += count * tx.db.pageSize
+
+	return p, nil
+}
+
+// write writes any dirty pages to disk.
+func (tx *Tx) write() error {
+	// Sort pages by id.
+	pages := make(pages, 0, len(tx.pages))
+	for _, p := range tx.pages {
+		pages = append(pages, p)
+	}
+	// Clear out page cache early.
+	tx.pages = make(map[pgid]*page)
+	sort.Sort(pages)
+
+	// Write pages to disk in order.
+	for _, p := range pages {
+		size := (int(p.overflow) + 1) * tx.db.pageSize
+		offset := int64(p.id) * int64(tx.db.pageSize)
+
+		// Write out page in "max allocation" sized chunks.
+		ptr := (*[maxAllocSize]byte)(unsafe.Pointer(p))
+		for {
+			// Limit our write to our max allocation size.
+			sz := size
+			if sz > maxAllocSize-1 {
+				sz = maxAllocSize - 1
+			}
+
+			// Write chunk to disk.
+			buf := ptr[:sz]
+			if _, err := tx.db.ops.writeAt(buf, offset); err != nil {
+				return err
+			}
+
+			// Update statistics.
+			tx.stats.Write++
+
+			// Exit inner for loop if we've written all the chunks.
+			size -= sz
+			if size == 0 {
+				break
+			}
+
+			// Otherwise move offset forward and move pointer to next chunk.
+			offset += int64(sz)
+			ptr = (*[maxAllocSize]byte)(unsafe.Pointer(&ptr[sz]))
+		}
+	}
+
+	// Ignore file sync if flag is set on DB.
+	if !tx.db.NoSync || IgnoreNoSync {
+		if err := fdatasync(tx.db); err != nil {
+			return err
+		}
+	}
+
+	// Put small pages back to page pool.
+	for _, p := range pages {
+		// Ignore page sizes over 1 page.
+		// These are allocated using make() instead of the page pool.
+		if int(p.overflow) != 0 {
+			continue
+		}
+
+		buf := (*[maxAllocSize]byte)(unsafe.Pointer(p))[:tx.db.pageSize]
+
+		// See https://go.googlesource.com/go/+/f03c9202c43e0abb130669852082117ca50aa9b1
+		for i := range buf {
+			buf[i] = 0
+		}
+		tx.db.pagePool.Put(buf)
+	}
+
+	return nil
+}
+
+// writeMeta writes the meta to the disk.
+func (tx *Tx) writeMeta() error {
+	// Create a temporary buffer for the meta page.
+	buf := make([]byte, tx.db.pageSize)
+	p := tx.db.pageInBuffer(buf, 0)
+	tx.meta.write(p)
+
+	// Write the meta page to file.
+	if _, err := tx.db.ops.writeAt(buf, int64(p.id)*int64(tx.db.pageSize)); err != nil {
+		return err
+	}
+	if !tx.db.NoSync || IgnoreNoSync {
+		if err := fdatasync(tx.db); err != nil {
+			return err
+		}
+	}
+
+	// Update statistics.
+	tx.stats.Write++
+
+	return nil
+}
+
+// page returns a reference to the page with a given id.
+// If page has been written to then a temporary buffered page is returned.
+func (tx *Tx) page(id pgid) *page {
+	// Check the dirty pages first.
+	if tx.pages != nil {
+		if p, ok := tx.pages[id]; ok {
+			return p
+		}
+	}
+
+	// Otherwise return directly from the mmap.
+	return tx.db.page(id)
+}
+
+// forEachPage iterates over every page within a given page and executes a function.
+func (tx *Tx) forEachPage(pgid pgid, depth int, fn func(*page, int)) {
+	p := tx.page(pgid)
+
+	// Execute function.
+	fn(p, depth)
+
+	// Recursively loop over children.
+	if (p.flags & branchPageFlag) != 0 {
+		for i := 0; i < int(p.count); i++ {
+			elem := p.branchPageElement(uint16(i))
+			tx.forEachPage(elem.pgid, depth+1, fn)
+		}
+	}
+}
+
+// Page returns page information for a given page number.
+// This is only safe for concurrent use when used by a writable transaction.
+func (tx *Tx) Page(id int) (*PageInfo, error) {
+	if tx.db == nil {
+		return nil, ErrTxClosed
+	} else if pgid(id) >= tx.meta.pgid {
+		return nil, nil
+	}
+
+	// Build the page info.
+	p := tx.db.page(pgid(id))
+	info := &PageInfo{
+		ID:            id,
+		Count:         int(p.count),
+		OverflowCount: int(p.overflow),
+	}
+
+	// Determine the type (or if it's free).
+	if tx.db.freelist.freed(pgid(id)) {
+		info.Type = "free"
+	} else {
+		info.Type = p.typ()
+	}
+
+	return info, nil
+}
+
+// TxStats represents statistics about the actions performed by the transaction.
+type TxStats struct {
+	// Page statistics.
+	PageCount int // number of page allocations
+	PageAlloc int // total bytes allocated
+
+	// Cursor statistics.
+	CursorCount int // number of cursors created
+
+	// Node statistics
+	NodeCount int // number of node allocations
+	NodeDeref int // number of node dereferences
+
+	// Rebalance statistics.
+	Rebalance     int           // number of node rebalances
+	RebalanceTime time.Duration // total time spent rebalancing
+
+	// Split/Spill statistics.
+	Split     int           // number of nodes split
+	Spill     int           // number of nodes spilled
+	SpillTime time.Duration // total time spent spilling
+
+	// Write statistics.
+	Write     int           // number of writes performed
+	WriteTime time.Duration // total time spent writing to disk
+}
+
+func (s *TxStats) add(other *TxStats) {
+	s.PageCount += other.PageCount
+	s.PageAlloc += other.PageAlloc
+	s.CursorCount += other.CursorCount
+	s.NodeCount += other.NodeCount
+	s.NodeDeref += other.NodeDeref
+	s.Rebalance += other.Rebalance
+	s.RebalanceTime += other.RebalanceTime
+	s.Split += other.Split
+	s.Spill += other.Spill
+	s.SpillTime += other.SpillTime
+	s.Write += other.Write
+	s.WriteTime += other.WriteTime
+}
+
+// Sub calculates and returns the difference between two sets of transaction stats.
+// This is useful when obtaining stats at two different points and time and
+// you need the performance counters that occurred within that time span.
+func (s *TxStats) Sub(other *TxStats) TxStats {
+	var diff TxStats
+	diff.PageCount = s.PageCount - other.PageCount
+	diff.PageAlloc = s.PageAlloc - other.PageAlloc
+	diff.CursorCount = s.CursorCount - other.CursorCount
+	diff.NodeCount = s.NodeCount - other.NodeCount
+	diff.NodeDeref = s.NodeDeref - other.NodeDeref
+	diff.Rebalance = s.Rebalance - other.Rebalance
+	diff.RebalanceTime = s.RebalanceTime - other.RebalanceTime
+	diff.Split = s.Split - other.Split
+	diff.Spill = s.Spill - other.Spill
+	diff.SpillTime = s.SpillTime - other.SpillTime
+	diff.Write = s.Write - other.Write
+	diff.WriteTime = s.WriteTime - other.WriteTime
+	return diff
+}
diff --git a/vendor/github.com/containerd/containerd/LICENSE b/vendor/github.com/containerd/containerd/LICENSE
new file mode 100644
index 0000000000..584149b6ee
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/LICENSE
@@ -0,0 +1,191 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        https://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright The containerd Authors
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       https://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/containerd/containerd/NOTICE b/vendor/github.com/containerd/containerd/NOTICE
new file mode 100644
index 0000000000..8915f02773
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/NOTICE
@@ -0,0 +1,16 @@
+Docker
+Copyright 2012-2015 Docker, Inc.
+
+This product includes software developed at Docker, Inc. (https://www.docker.com).
+
+The following is courtesy of our legal counsel:
+
+
+Use and transfer of Docker may be subject to certain restrictions by the
+United States and other governments.
+It is your responsibility to ensure that your use and/or transfer does not
+violate applicable laws.
+
+For more information, please see https://www.bis.doc.gov
+
+See also https://www.apache.org/dev/crypto.html and/or seek legal counsel.
diff --git a/vendor/github.com/containerd/containerd/cio/io.go b/vendor/github.com/containerd/containerd/cio/io.go
new file mode 100644
index 0000000000..a49c11735b
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/cio/io.go
@@ -0,0 +1,215 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package cio
+
+import (
+	"context"
+	"fmt"
+	"io"
+	"os"
+	"sync"
+
+	"github.com/containerd/containerd/defaults"
+)
+
+var bufPool = sync.Pool{
+	New: func() interface{} {
+		buffer := make([]byte, 32<<10)
+		return &buffer
+	},
+}
+
+// Config holds the IO configurations.
+type Config struct {
+	// Terminal is true if one has been allocated
+	Terminal bool
+	// Stdin path
+	Stdin string
+	// Stdout path
+	Stdout string
+	// Stderr path
+	Stderr string
+}
+
+// IO holds the io information for a task or process
+type IO interface {
+	// Config returns the IO configuration.
+	Config() Config
+	// Cancel aborts all current io operations.
+	Cancel()
+	// Wait blocks until all io copy operations have completed.
+	Wait()
+	// Close cleans up all open io resources. Cancel() is always called before
+	// Close()
+	Close() error
+}
+
+// Creator creates new IO sets for a task
+type Creator func(id string) (IO, error)
+
+// Attach allows callers to reattach to running tasks
+//
+// There should only be one reader for a task's IO set
+// because fifo's can only be read from one reader or the output
+// will be sent only to the first reads
+type Attach func(*FIFOSet) (IO, error)
+
+// FIFOSet is a set of file paths to FIFOs for a task's standard IO streams
+type FIFOSet struct {
+	Config
+	close func() error
+}
+
+// Close the FIFOSet
+func (f *FIFOSet) Close() error {
+	if f.close != nil {
+		return f.close()
+	}
+	return nil
+}
+
+// NewFIFOSet returns a new FIFOSet from a Config and a close function
+func NewFIFOSet(config Config, close func() error) *FIFOSet {
+	return &FIFOSet{Config: config, close: close}
+}
+
+// Streams used to configure a Creator or Attach
+type Streams struct {
+	Stdin    io.Reader
+	Stdout   io.Writer
+	Stderr   io.Writer
+	Terminal bool
+	FIFODir  string
+}
+
+// Opt customize options for creating a Creator or Attach
+type Opt func(*Streams)
+
+// WithStdio sets stream options to the standard input/output streams
+func WithStdio(opt *Streams) {
+	WithStreams(os.Stdin, os.Stdout, os.Stderr)(opt)
+}
+
+// WithTerminal sets the terminal option
+func WithTerminal(opt *Streams) {
+	opt.Terminal = true
+}
+
+// WithStreams sets the stream options to the specified Reader and Writers
+func WithStreams(stdin io.Reader, stdout, stderr io.Writer) Opt {
+	return func(opt *Streams) {
+		opt.Stdin = stdin
+		opt.Stdout = stdout
+		opt.Stderr = stderr
+	}
+}
+
+// WithFIFODir sets the fifo directory.
+// e.g. "/run/containerd/fifo", "/run/users/1001/containerd/fifo"
+func WithFIFODir(dir string) Opt {
+	return func(opt *Streams) {
+		opt.FIFODir = dir
+	}
+}
+
+// NewCreator returns an IO creator from the options
+func NewCreator(opts ...Opt) Creator {
+	streams := &Streams{}
+	for _, opt := range opts {
+		opt(streams)
+	}
+	if streams.FIFODir == "" {
+		streams.FIFODir = defaults.DefaultFIFODir
+	}
+	return func(id string) (IO, error) {
+		fifos, err := NewFIFOSetInDir(streams.FIFODir, id, streams.Terminal)
+		if err != nil {
+			return nil, err
+		}
+		return copyIO(fifos, streams)
+	}
+}
+
+// NewAttach attaches the existing io for a task to the provided io.Reader/Writers
+func NewAttach(opts ...Opt) Attach {
+	streams := &Streams{}
+	for _, opt := range opts {
+		opt(streams)
+	}
+	return func(fifos *FIFOSet) (IO, error) {
+		if fifos == nil {
+			return nil, fmt.Errorf("cannot attach, missing fifos")
+		}
+		return copyIO(fifos, streams)
+	}
+}
+
+// NullIO redirects the container's IO into /dev/null
+func NullIO(_ string) (IO, error) {
+	return &cio{}, nil
+}
+
+// cio is a basic container IO implementation.
+type cio struct {
+	config  Config
+	wg      *sync.WaitGroup
+	closers []io.Closer
+	cancel  context.CancelFunc
+}
+
+func (c *cio) Config() Config {
+	return c.config
+}
+
+func (c *cio) Wait() {
+	if c.wg != nil {
+		c.wg.Wait()
+	}
+}
+
+func (c *cio) Close() error {
+	var lastErr error
+	for _, closer := range c.closers {
+		if closer == nil {
+			continue
+		}
+		if err := closer.Close(); err != nil {
+			lastErr = err
+		}
+	}
+	return lastErr
+}
+
+func (c *cio) Cancel() {
+	if c.cancel != nil {
+		c.cancel()
+	}
+}
+
+type pipes struct {
+	Stdin  io.WriteCloser
+	Stdout io.ReadCloser
+	Stderr io.ReadCloser
+}
+
+// DirectIO allows task IO to be handled externally by the caller
+type DirectIO struct {
+	pipes
+	cio
+}
+
+var _ IO = &DirectIO{}
diff --git a/vendor/github.com/containerd/containerd/cio/io_unix.go b/vendor/github.com/containerd/containerd/cio/io_unix.go
new file mode 100644
index 0000000000..3ab2a30b0c
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/cio/io_unix.go
@@ -0,0 +1,158 @@
+// +build !windows
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package cio
+
+import (
+	"context"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"sync"
+	"syscall"
+
+	"github.com/containerd/fifo"
+	"github.com/pkg/errors"
+)
+
+// NewFIFOSetInDir returns a new FIFOSet with paths in a temporary directory under root
+func NewFIFOSetInDir(root, id string, terminal bool) (*FIFOSet, error) {
+	if root != "" {
+		if err := os.MkdirAll(root, 0700); err != nil {
+			return nil, err
+		}
+	}
+	dir, err := ioutil.TempDir(root, "")
+	if err != nil {
+		return nil, err
+	}
+	closer := func() error {
+		return os.RemoveAll(dir)
+	}
+	return NewFIFOSet(Config{
+		Stdin:    filepath.Join(dir, id+"-stdin"),
+		Stdout:   filepath.Join(dir, id+"-stdout"),
+		Stderr:   filepath.Join(dir, id+"-stderr"),
+		Terminal: terminal,
+	}, closer), nil
+}
+
+func copyIO(fifos *FIFOSet, ioset *Streams) (*cio, error) {
+	var ctx, cancel = context.WithCancel(context.Background())
+	pipes, err := openFifos(ctx, fifos)
+	if err != nil {
+		cancel()
+		return nil, err
+	}
+
+	if fifos.Stdin != "" {
+		go func() {
+			p := bufPool.Get().(*[]byte)
+			defer bufPool.Put(p)
+
+			io.CopyBuffer(pipes.Stdin, ioset.Stdin, *p)
+			pipes.Stdin.Close()
+		}()
+	}
+
+	var wg = &sync.WaitGroup{}
+	wg.Add(1)
+	go func() {
+		p := bufPool.Get().(*[]byte)
+		defer bufPool.Put(p)
+
+		io.CopyBuffer(ioset.Stdout, pipes.Stdout, *p)
+		pipes.Stdout.Close()
+		wg.Done()
+	}()
+
+	if !fifos.Terminal {
+		wg.Add(1)
+		go func() {
+			p := bufPool.Get().(*[]byte)
+			defer bufPool.Put(p)
+
+			io.CopyBuffer(ioset.Stderr, pipes.Stderr, *p)
+			pipes.Stderr.Close()
+			wg.Done()
+		}()
+	}
+	return &cio{
+		config:  fifos.Config,
+		wg:      wg,
+		closers: append(pipes.closers(), fifos),
+		cancel:  cancel,
+	}, nil
+}
+
+func openFifos(ctx context.Context, fifos *FIFOSet) (pipes, error) {
+	var err error
+	defer func() {
+		if err != nil {
+			fifos.Close()
+		}
+	}()
+
+	var f pipes
+	if fifos.Stdin != "" {
+		if f.Stdin, err = fifo.OpenFifo(ctx, fifos.Stdin, syscall.O_WRONLY|syscall.O_CREAT|syscall.O_NONBLOCK, 0700); err != nil {
+			return f, errors.Wrapf(err, "failed to open stdin fifo")
+		}
+		defer func() {
+			if err != nil && f.Stdin != nil {
+				f.Stdin.Close()
+			}
+		}()
+	}
+	if fifos.Stdout != "" {
+		if f.Stdout, err = fifo.OpenFifo(ctx, fifos.Stdout, syscall.O_RDONLY|syscall.O_CREAT|syscall.O_NONBLOCK, 0700); err != nil {
+			return f, errors.Wrapf(err, "failed to open stdout fifo")
+		}
+		defer func() {
+			if err != nil && f.Stdout != nil {
+				f.Stdout.Close()
+			}
+		}()
+	}
+	if fifos.Stderr != "" {
+		if f.Stderr, err = fifo.OpenFifo(ctx, fifos.Stderr, syscall.O_RDONLY|syscall.O_CREAT|syscall.O_NONBLOCK, 0700); err != nil {
+			return f, errors.Wrapf(err, "failed to open stderr fifo")
+		}
+	}
+	return f, nil
+}
+
+// NewDirectIO returns an IO implementation that exposes the IO streams as io.ReadCloser
+// and io.WriteCloser.
+func NewDirectIO(ctx context.Context, fifos *FIFOSet) (*DirectIO, error) {
+	ctx, cancel := context.WithCancel(ctx)
+	pipes, err := openFifos(ctx, fifos)
+	return &DirectIO{
+		pipes: pipes,
+		cio: cio{
+			config:  fifos.Config,
+			closers: append(pipes.closers(), fifos),
+			cancel:  cancel,
+		},
+	}, err
+}
+
+func (p *pipes) closers() []io.Closer {
+	return []io.Closer{p.Stdin, p.Stdout, p.Stderr}
+}
diff --git a/vendor/github.com/containerd/containerd/cio/io_windows.go b/vendor/github.com/containerd/containerd/cio/io_windows.go
new file mode 100644
index 0000000000..fa9532a3bd
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/cio/io_windows.go
@@ -0,0 +1,152 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package cio
+
+import (
+	"fmt"
+	"io"
+	"net"
+	"sync"
+
+	winio "github.com/Microsoft/go-winio"
+	"github.com/containerd/containerd/log"
+	"github.com/pkg/errors"
+)
+
+const pipeRoot = `\\.\pipe`
+
+// NewFIFOSetInDir returns a new set of fifos for the task
+func NewFIFOSetInDir(_, id string, terminal bool) (*FIFOSet, error) {
+	return NewFIFOSet(Config{
+		Terminal: terminal,
+		Stdin:    fmt.Sprintf(`%s\ctr-%s-stdin`, pipeRoot, id),
+		Stdout:   fmt.Sprintf(`%s\ctr-%s-stdout`, pipeRoot, id),
+		Stderr:   fmt.Sprintf(`%s\ctr-%s-stderr`, pipeRoot, id),
+	}, nil), nil
+}
+
+func copyIO(fifos *FIFOSet, ioset *Streams) (*cio, error) {
+	var (
+		wg  sync.WaitGroup
+		set []io.Closer
+	)
+
+	if fifos.Stdin != "" {
+		l, err := winio.ListenPipe(fifos.Stdin, nil)
+		if err != nil {
+			return nil, errors.Wrapf(err, "failed to create stdin pipe %s", fifos.Stdin)
+		}
+		defer func(l net.Listener) {
+			if err != nil {
+				l.Close()
+			}
+		}(l)
+		set = append(set, l)
+
+		go func() {
+			c, err := l.Accept()
+			if err != nil {
+				log.L.WithError(err).Errorf("failed to accept stdin connection on %s", fifos.Stdin)
+				return
+			}
+
+			p := bufPool.Get().(*[]byte)
+			defer bufPool.Put(p)
+
+			io.CopyBuffer(c, ioset.Stdin, *p)
+			c.Close()
+			l.Close()
+		}()
+	}
+
+	if fifos.Stdout != "" {
+		l, err := winio.ListenPipe(fifos.Stdout, nil)
+		if err != nil {
+			return nil, errors.Wrapf(err, "failed to create stdin pipe %s", fifos.Stdout)
+		}
+		defer func(l net.Listener) {
+			if err != nil {
+				l.Close()
+			}
+		}(l)
+		set = append(set, l)
+
+		wg.Add(1)
+		go func() {
+			defer wg.Done()
+			c, err := l.Accept()
+			if err != nil {
+				log.L.WithError(err).Errorf("failed to accept stdout connection on %s", fifos.Stdout)
+				return
+			}
+
+			p := bufPool.Get().(*[]byte)
+			defer bufPool.Put(p)
+
+			io.CopyBuffer(ioset.Stdout, c, *p)
+			c.Close()
+			l.Close()
+		}()
+	}
+
+	if !fifos.Terminal && fifos.Stderr != "" {
+		l, err := winio.ListenPipe(fifos.Stderr, nil)
+		if err != nil {
+			return nil, errors.Wrapf(err, "failed to create stderr pipe %s", fifos.Stderr)
+		}
+		defer func(l net.Listener) {
+			if err != nil {
+				l.Close()
+			}
+		}(l)
+		set = append(set, l)
+
+		wg.Add(1)
+		go func() {
+			defer wg.Done()
+			c, err := l.Accept()
+			if err != nil {
+				log.L.WithError(err).Errorf("failed to accept stderr connection on %s", fifos.Stderr)
+				return
+			}
+
+			p := bufPool.Get().(*[]byte)
+			defer bufPool.Put(p)
+
+			io.CopyBuffer(ioset.Stderr, c, *p)
+			c.Close()
+			l.Close()
+		}()
+	}
+
+	return &cio{config: fifos.Config, closers: set}, nil
+}
+
+// NewDirectIO returns an IO implementation that exposes the IO streams as io.ReadCloser
+// and io.WriteCloser.
+func NewDirectIO(stdin io.WriteCloser, stdout, stderr io.ReadCloser, terminal bool) *DirectIO {
+	return &DirectIO{
+		pipes: pipes{
+			Stdin:  stdin,
+			Stdout: stdout,
+			Stderr: stderr,
+		},
+		cio: cio{
+			config: Config{Terminal: terminal},
+		},
+	}
+}
diff --git a/vendor/github.com/containerd/containerd/defaults/defaults.go b/vendor/github.com/containerd/containerd/defaults/defaults.go
new file mode 100644
index 0000000000..7040f5b85a
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/defaults/defaults.go
@@ -0,0 +1,26 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package defaults
+
+const (
+	// DefaultMaxRecvMsgSize defines the default maximum message size for
+	// receiving protobufs passed over the GRPC API.
+	DefaultMaxRecvMsgSize = 16 << 20
+	// DefaultMaxSendMsgSize defines the default maximum message size for
+	// sending protobufs passed over the GRPC API.
+	DefaultMaxSendMsgSize = 16 << 20
+)
diff --git a/vendor/github.com/containerd/containerd/defaults/defaults_unix.go b/vendor/github.com/containerd/containerd/defaults/defaults_unix.go
new file mode 100644
index 0000000000..30ed42235e
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/defaults/defaults_unix.go
@@ -0,0 +1,35 @@
+// +build !windows
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package defaults
+
+const (
+	// DefaultRootDir is the default location used by containerd to store
+	// persistent data
+	DefaultRootDir = "/var/lib/containerd"
+	// DefaultStateDir is the default location used by containerd to store
+	// transient data
+	DefaultStateDir = "/run/containerd"
+	// DefaultAddress is the default unix socket address
+	DefaultAddress = "/run/containerd/containerd.sock"
+	// DefaultDebugAddress is the default unix socket address for pprof data
+	DefaultDebugAddress = "/run/containerd/debug.sock"
+	// DefaultFIFODir is the default location used by client-side cio library
+	// to store FIFOs.
+	DefaultFIFODir = "/run/containerd/fifo"
+)
diff --git a/vendor/github.com/containerd/containerd/defaults/defaults_windows.go b/vendor/github.com/containerd/containerd/defaults/defaults_windows.go
new file mode 100644
index 0000000000..983bf762f7
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/defaults/defaults_windows.go
@@ -0,0 +1,43 @@
+// +build windows
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package defaults
+
+import (
+	"os"
+	"path/filepath"
+)
+
+var (
+	// DefaultRootDir is the default location used by containerd to store
+	// persistent data
+	DefaultRootDir = filepath.Join(os.Getenv("programfiles"), "containerd", "root")
+	// DefaultStateDir is the default location used by containerd to store
+	// transient data
+	DefaultStateDir = filepath.Join(os.Getenv("programfiles"), "containerd", "state")
+)
+
+const (
+	// DefaultAddress is the default winpipe address
+	DefaultAddress = `\\.\pipe\containerd-containerd`
+	// DefaultDebugAddress is the default winpipe address for pprof data
+	DefaultDebugAddress = `\\.\pipe\containerd-debug`
+	// DefaultFIFODir is the default location used by client-side cio library
+	// to store FIFOs. Unused on Windows.
+	DefaultFIFODir = ""
+)
diff --git a/vendor/github.com/containerd/containerd/defaults/doc.go b/vendor/github.com/containerd/containerd/defaults/doc.go
new file mode 100644
index 0000000000..6da863ce2e
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/defaults/doc.go
@@ -0,0 +1,19 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+// Package defaults provides several common defaults for interacting with
+// containerd. These can be used on the client-side or server-side.
+package defaults
diff --git a/vendor/github.com/containerd/containerd/log/context.go b/vendor/github.com/containerd/containerd/log/context.go
new file mode 100644
index 0000000000..f40603b17b
--- /dev/null
+++ b/vendor/github.com/containerd/containerd/log/context.go
@@ -0,0 +1,86 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package log
+
+import (
+	"context"
+	"sync/atomic"
+
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// G is an alias for GetLogger.
+	//
+	// We may want to define this locally to a package to get package tagged log
+	// messages.
+	G = GetLogger
+
+	// L is an alias for the the standard logger.
+	L = logrus.NewEntry(logrus.StandardLogger())
+)
+
+type (
+	loggerKey struct{}
+)
+
+// TraceLevel is the log level for tracing. Trace level is lower than debug level,
+// and is usually used to trace detailed behavior of the program.
+const TraceLevel = logrus.Level(uint32(logrus.DebugLevel + 1))
+
+// ParseLevel takes a string level and returns the Logrus log level constant.
+// It supports trace level.
+func ParseLevel(lvl string) (logrus.Level, error) {
+	if lvl == "trace" {
+		return TraceLevel, nil
+	}
+	return logrus.ParseLevel(lvl)
+}
+
+// WithLogger returns a new context with the provided logger. Use in
+// combination with logger.WithField(s) for great effect.
+func WithLogger(ctx context.Context, logger *logrus.Entry) context.Context {
+	return context.WithValue(ctx, loggerKey{}, logger)
+}
+
+// GetLogger retrieves the current logger from the context. If no logger is
+// available, the default logger is returned.
+func GetLogger(ctx context.Context) *logrus.Entry {
+	logger := ctx.Value(loggerKey{})
+
+	if logger == nil {
+		return L
+	}
+
+	return logger.(*logrus.Entry)
+}
+
+// Trace logs a message at level Trace with the log entry passed-in.
+func Trace(e *logrus.Entry, args ...interface{}) {
+	level := logrus.Level(atomic.LoadUint32((*uint32)(&e.Logger.Level)))
+	if level >= TraceLevel {
+		e.Debug(args...)
+	}
+}
+
+// Tracef logs a message at level Trace with the log entry passed-in.
+func Tracef(e *logrus.Entry, format string, args ...interface{}) {
+	level := logrus.Level(atomic.LoadUint32((*uint32)(&e.Logger.Level)))
+	if level >= TraceLevel {
+		e.Debugf(format, args...)
+	}
+}
diff --git a/vendor/github.com/containerd/continuity/devices/devices.go b/vendor/github.com/containerd/continuity/devices/devices.go
new file mode 100644
index 0000000000..7086407047
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/devices/devices.go
@@ -0,0 +1,5 @@
+package devices
+
+import "fmt"
+
+var ErrNotSupported = fmt.Errorf("not supported")
diff --git a/vendor/github.com/containerd/continuity/devices/devices_unix.go b/vendor/github.com/containerd/continuity/devices/devices_unix.go
new file mode 100644
index 0000000000..97fe6b19d2
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/devices/devices_unix.go
@@ -0,0 +1,58 @@
+// +build linux darwin freebsd solaris
+
+package devices
+
+import (
+	"fmt"
+	"os"
+	"syscall"
+
+	"golang.org/x/sys/unix"
+)
+
+func DeviceInfo(fi os.FileInfo) (uint64, uint64, error) {
+	sys, ok := fi.Sys().(*syscall.Stat_t)
+	if !ok {
+		return 0, 0, fmt.Errorf("cannot extract device from os.FileInfo")
+	}
+
+	dev := uint64(sys.Rdev)
+	return uint64(unix.Major(dev)), uint64(unix.Minor(dev)), nil
+}
+
+// mknod provides a shortcut for syscall.Mknod
+func Mknod(p string, mode os.FileMode, maj, min int) error {
+	var (
+		m   = syscallMode(mode.Perm())
+		dev uint64
+	)
+
+	if mode&os.ModeDevice != 0 {
+		dev = unix.Mkdev(uint32(maj), uint32(min))
+
+		if mode&os.ModeCharDevice != 0 {
+			m |= unix.S_IFCHR
+		} else {
+			m |= unix.S_IFBLK
+		}
+	} else if mode&os.ModeNamedPipe != 0 {
+		m |= unix.S_IFIFO
+	}
+
+	return unix.Mknod(p, m, int(dev))
+}
+
+// syscallMode returns the syscall-specific mode bits from Go's portable mode bits.
+func syscallMode(i os.FileMode) (o uint32) {
+	o |= uint32(i.Perm())
+	if i&os.ModeSetuid != 0 {
+		o |= unix.S_ISUID
+	}
+	if i&os.ModeSetgid != 0 {
+		o |= unix.S_ISGID
+	}
+	if i&os.ModeSticky != 0 {
+		o |= unix.S_ISVTX
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/devices/devices_windows.go b/vendor/github.com/containerd/continuity/devices/devices_windows.go
new file mode 100644
index 0000000000..6099d1d779
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/devices/devices_windows.go
@@ -0,0 +1,11 @@
+package devices
+
+import (
+	"os"
+
+	"github.com/pkg/errors"
+)
+
+func DeviceInfo(fi os.FileInfo) (uint64, uint64, error) {
+	return 0, 0, errors.Wrap(ErrNotSupported, "cannot get device info on windows")
+}
diff --git a/vendor/github.com/containerd/continuity/driver/driver.go b/vendor/github.com/containerd/continuity/driver/driver.go
new file mode 100644
index 0000000000..aa1dd7d297
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/driver/driver.go
@@ -0,0 +1,162 @@
+package driver
+
+import (
+	"fmt"
+	"io"
+	"os"
+)
+
+var ErrNotSupported = fmt.Errorf("not supported")
+
+// Driver provides all of the system-level functions in a common interface.
+// The context should call these with full paths and should never use the `os`
+// package or any other package to access resources on the filesystem. This
+// mechanism let's us carefully control access to the context and maintain
+// path and resource integrity. It also gives us an interface to reason about
+// direct resource access.
+//
+// Implementations don't need to do much other than meet the interface. For
+// example, it is not required to wrap os.FileInfo to return correct paths for
+// the call to Name().
+type Driver interface {
+	// Note that Open() returns a File interface instead of *os.File. This
+	// is because os.File is a struct, so if Open was to return *os.File,
+	// the only way to fulfill the interface would be to call os.Open()
+	Open(path string) (File, error)
+	OpenFile(path string, flag int, perm os.FileMode) (File, error)
+
+	Stat(path string) (os.FileInfo, error)
+	Lstat(path string) (os.FileInfo, error)
+	Readlink(p string) (string, error)
+	Mkdir(path string, mode os.FileMode) error
+	Remove(path string) error
+
+	Link(oldname, newname string) error
+	Lchmod(path string, mode os.FileMode) error
+	Lchown(path string, uid, gid int64) error
+	Symlink(oldname, newname string) error
+
+	MkdirAll(path string, perm os.FileMode) error
+	RemoveAll(path string) error
+
+	// TODO(aaronl): These methods might move outside the main Driver
+	// interface in the future as more platforms are added.
+	Mknod(path string, mode os.FileMode, major int, minor int) error
+	Mkfifo(path string, mode os.FileMode) error
+}
+
+// File is the interface for interacting with files returned by continuity's Open
+// This is needed since os.File is a struct, instead of an interface, so it can't
+// be used.
+type File interface {
+	io.ReadWriteCloser
+	io.Seeker
+	Readdir(n int) ([]os.FileInfo, error)
+}
+
+func NewSystemDriver() (Driver, error) {
+	// TODO(stevvooe): Consider having this take a "hint" path argument, which
+	// would be the context root. The hint could be used to resolve required
+	// filesystem support when assembling the driver to use.
+	return &driver{}, nil
+}
+
+// XAttrDriver should be implemented on operation systems and filesystems that
+// have xattr support for regular files and directories.
+type XAttrDriver interface {
+	// Getxattr returns all of the extended attributes for the file at path.
+	// Typically, this takes a syscall call to Listxattr and Getxattr.
+	Getxattr(path string) (map[string][]byte, error)
+
+	// Setxattr sets all of the extended attributes on file at path, following
+	// any symbolic links, if necessary. All attributes on the target are
+	// replaced by the values from attr. If the operation fails to set any
+	// attribute, those already applied will not be rolled back.
+	Setxattr(path string, attr map[string][]byte) error
+}
+
+// LXAttrDriver should be implemented by drivers on operating systems and
+// filesystems that support setting and getting extended attributes on
+// symbolic links. If this is not implemented, extended attributes will be
+// ignored on symbolic links.
+type LXAttrDriver interface {
+	// LGetxattr returns all of the extended attributes for the file at path
+	// and does not follow symlinks. Typically, this takes a syscall call to
+	// Llistxattr and Lgetxattr.
+	LGetxattr(path string) (map[string][]byte, error)
+
+	// LSetxattr sets all of the extended attributes on file at path, without
+	// following symbolic links. All attributes on the target are replaced by
+	// the values from attr. If the operation fails to set any attribute,
+	// those already applied will not be rolled back.
+	LSetxattr(path string, attr map[string][]byte) error
+}
+
+type DeviceInfoDriver interface {
+	DeviceInfo(fi os.FileInfo) (maj uint64, min uint64, err error)
+}
+
+// driver is a simple default implementation that sends calls out to the "os"
+// package. Extend the "driver" type in system-specific files to add support,
+// such as xattrs, which can add support at compile time.
+type driver struct{}
+
+var _ File = &os.File{}
+
+// LocalDriver is the exported Driver struct for convenience.
+var LocalDriver Driver = &driver{}
+
+func (d *driver) Open(p string) (File, error) {
+	return os.Open(p)
+}
+
+func (d *driver) OpenFile(path string, flag int, perm os.FileMode) (File, error) {
+	return os.OpenFile(path, flag, perm)
+}
+
+func (d *driver) Stat(p string) (os.FileInfo, error) {
+	return os.Stat(p)
+}
+
+func (d *driver) Lstat(p string) (os.FileInfo, error) {
+	return os.Lstat(p)
+}
+
+func (d *driver) Readlink(p string) (string, error) {
+	return os.Readlink(p)
+}
+
+func (d *driver) Mkdir(p string, mode os.FileMode) error {
+	return os.Mkdir(p, mode)
+}
+
+// Remove is used to unlink files and remove directories.
+// This is following the golang os package api which
+// combines the operations into a higher level Remove
+// function. If explicit unlinking or directory removal
+// to mirror system call is required, they should be
+// split up at that time.
+func (d *driver) Remove(path string) error {
+	return os.Remove(path)
+}
+
+func (d *driver) Link(oldname, newname string) error {
+	return os.Link(oldname, newname)
+}
+
+func (d *driver) Lchown(name string, uid, gid int64) error {
+	// TODO: error out if uid excesses int bit width?
+	return os.Lchown(name, int(uid), int(gid))
+}
+
+func (d *driver) Symlink(oldname, newname string) error {
+	return os.Symlink(oldname, newname)
+}
+
+func (d *driver) MkdirAll(path string, perm os.FileMode) error {
+	return os.MkdirAll(path, perm)
+}
+
+func (d *driver) RemoveAll(path string) error {
+	return os.RemoveAll(path)
+}
diff --git a/vendor/github.com/containerd/continuity/driver/driver_unix.go b/vendor/github.com/containerd/continuity/driver/driver_unix.go
new file mode 100644
index 0000000000..d9ab1656c9
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/driver/driver_unix.go
@@ -0,0 +1,122 @@
+// +build linux darwin freebsd solaris
+
+package driver
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"path/filepath"
+	"sort"
+
+	"github.com/containerd/continuity/devices"
+	"github.com/containerd/continuity/sysx"
+)
+
+func (d *driver) Mknod(path string, mode os.FileMode, major, minor int) error {
+	return devices.Mknod(path, mode, major, minor)
+}
+
+func (d *driver) Mkfifo(path string, mode os.FileMode) error {
+	if mode&os.ModeNamedPipe == 0 {
+		return errors.New("mode passed to Mkfifo does not have the named pipe bit set")
+	}
+	// mknod with a mode that has ModeNamedPipe set creates a fifo, not a
+	// device.
+	return devices.Mknod(path, mode, 0, 0)
+}
+
+// Lchmod changes the mode of an file not following symlinks.
+func (d *driver) Lchmod(path string, mode os.FileMode) (err error) {
+	if !filepath.IsAbs(path) {
+		path, err = filepath.Abs(path)
+		if err != nil {
+			return
+		}
+	}
+
+	return sysx.Fchmodat(0, path, uint32(mode), sysx.AtSymlinkNofollow)
+}
+
+// Getxattr returns all of the extended attributes for the file at path p.
+func (d *driver) Getxattr(p string) (map[string][]byte, error) {
+	xattrs, err := sysx.Listxattr(p)
+	if err != nil {
+		return nil, fmt.Errorf("listing %s xattrs: %v", p, err)
+	}
+
+	sort.Strings(xattrs)
+	m := make(map[string][]byte, len(xattrs))
+
+	for _, attr := range xattrs {
+		value, err := sysx.Getxattr(p, attr)
+		if err != nil {
+			return nil, fmt.Errorf("getting %q xattr on %s: %v", attr, p, err)
+		}
+
+		// NOTE(stevvooe): This append/copy tricky relies on unique
+		// xattrs. Break this out into an alloc/copy if xattrs are no
+		// longer unique.
+		m[attr] = append(m[attr], value...)
+	}
+
+	return m, nil
+}
+
+// Setxattr sets all of the extended attributes on file at path, following
+// any symbolic links, if necessary. All attributes on the target are
+// replaced by the values from attr. If the operation fails to set any
+// attribute, those already applied will not be rolled back.
+func (d *driver) Setxattr(path string, attrMap map[string][]byte) error {
+	for attr, value := range attrMap {
+		if err := sysx.Setxattr(path, attr, value, 0); err != nil {
+			return fmt.Errorf("error setting xattr %q on %s: %v", attr, path, err)
+		}
+	}
+
+	return nil
+}
+
+// LGetxattr returns all of the extended attributes for the file at path p
+// not following symbolic links.
+func (d *driver) LGetxattr(p string) (map[string][]byte, error) {
+	xattrs, err := sysx.LListxattr(p)
+	if err != nil {
+		return nil, fmt.Errorf("listing %s xattrs: %v", p, err)
+	}
+
+	sort.Strings(xattrs)
+	m := make(map[string][]byte, len(xattrs))
+
+	for _, attr := range xattrs {
+		value, err := sysx.LGetxattr(p, attr)
+		if err != nil {
+			return nil, fmt.Errorf("getting %q xattr on %s: %v", attr, p, err)
+		}
+
+		// NOTE(stevvooe): This append/copy tricky relies on unique
+		// xattrs. Break this out into an alloc/copy if xattrs are no
+		// longer unique.
+		m[attr] = append(m[attr], value...)
+	}
+
+	return m, nil
+}
+
+// LSetxattr sets all of the extended attributes on file at path, not
+// following any symbolic links. All attributes on the target are
+// replaced by the values from attr. If the operation fails to set any
+// attribute, those already applied will not be rolled back.
+func (d *driver) LSetxattr(path string, attrMap map[string][]byte) error {
+	for attr, value := range attrMap {
+		if err := sysx.LSetxattr(path, attr, value, 0); err != nil {
+			return fmt.Errorf("error setting xattr %q on %s: %v", attr, path, err)
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) DeviceInfo(fi os.FileInfo) (maj uint64, min uint64, err error) {
+	return devices.DeviceInfo(fi)
+}
diff --git a/vendor/github.com/containerd/continuity/driver/driver_windows.go b/vendor/github.com/containerd/continuity/driver/driver_windows.go
new file mode 100644
index 0000000000..e4cfa64fb7
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/driver/driver_windows.go
@@ -0,0 +1,21 @@
+package driver
+
+import (
+	"os"
+
+	"github.com/pkg/errors"
+)
+
+func (d *driver) Mknod(path string, mode os.FileMode, major, minor int) error {
+	return errors.Wrap(ErrNotSupported, "cannot create device node on Windows")
+}
+
+func (d *driver) Mkfifo(path string, mode os.FileMode) error {
+	return errors.Wrap(ErrNotSupported, "cannot create fifo on Windows")
+}
+
+// Lchmod changes the mode of an file not following symlinks.
+func (d *driver) Lchmod(path string, mode os.FileMode) (err error) {
+	// TODO: Use Window's equivalent
+	return os.Chmod(path, mode)
+}
diff --git a/vendor/github.com/containerd/continuity/driver/utils.go b/vendor/github.com/containerd/continuity/driver/utils.go
new file mode 100644
index 0000000000..9e0edd7bca
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/driver/utils.go
@@ -0,0 +1,74 @@
+package driver
+
+import (
+	"io"
+	"io/ioutil"
+	"os"
+	"sort"
+)
+
+// ReadFile works the same as ioutil.ReadFile with the Driver abstraction
+func ReadFile(r Driver, filename string) ([]byte, error) {
+	f, err := r.Open(filename)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	data, err := ioutil.ReadAll(f)
+	if err != nil {
+		return nil, err
+	}
+
+	return data, nil
+}
+
+// WriteFile works the same as ioutil.WriteFile with the Driver abstraction
+func WriteFile(r Driver, filename string, data []byte, perm os.FileMode) error {
+	f, err := r.OpenFile(filename, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, perm)
+	if err != nil {
+		return err
+	}
+	defer f.Close()
+
+	n, err := f.Write(data)
+	if err != nil {
+		return err
+	} else if n != len(data) {
+		return io.ErrShortWrite
+	}
+
+	return nil
+}
+
+// ReadDir works the same as ioutil.ReadDir with the Driver abstraction
+func ReadDir(r Driver, dirname string) ([]os.FileInfo, error) {
+	f, err := r.Open(dirname)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	dirs, err := f.Readdir(-1)
+	if err != nil {
+		return nil, err
+	}
+
+	sort.Sort(fileInfos(dirs))
+	return dirs, nil
+}
+
+// Simple implementation of the sort.Interface for os.FileInfo
+type fileInfos []os.FileInfo
+
+func (fis fileInfos) Len() int {
+	return len(fis)
+}
+
+func (fis fileInfos) Less(i, j int) bool {
+	return fis[i].Name() < fis[j].Name()
+}
+
+func (fis fileInfos) Swap(i, j int) {
+	fis[i], fis[j] = fis[j], fis[i]
+}
diff --git a/vendor/github.com/containerd/continuity/fs/copy.go b/vendor/github.com/containerd/continuity/fs/copy.go
new file mode 100644
index 0000000000..2ac474b926
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/copy.go
@@ -0,0 +1,121 @@
+package fs
+
+import (
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"sync"
+
+	"github.com/pkg/errors"
+)
+
+var bufferPool = &sync.Pool{
+	New: func() interface{} {
+		buffer := make([]byte, 32*1024)
+		return &buffer
+	},
+}
+
+// CopyDir copies the directory from src to dst.
+// Most efficient copy of files is attempted.
+func CopyDir(dst, src string) error {
+	inodes := map[uint64]string{}
+	return copyDirectory(dst, src, inodes)
+}
+
+func copyDirectory(dst, src string, inodes map[uint64]string) error {
+	stat, err := os.Stat(src)
+	if err != nil {
+		return errors.Wrapf(err, "failed to stat %s", src)
+	}
+	if !stat.IsDir() {
+		return errors.Errorf("source is not directory")
+	}
+
+	if st, err := os.Stat(dst); err != nil {
+		if err := os.Mkdir(dst, stat.Mode()); err != nil {
+			return errors.Wrapf(err, "failed to mkdir %s", dst)
+		}
+	} else if !st.IsDir() {
+		return errors.Errorf("cannot copy to non-directory: %s", dst)
+	} else {
+		if err := os.Chmod(dst, stat.Mode()); err != nil {
+			return errors.Wrapf(err, "failed to chmod on %s", dst)
+		}
+	}
+
+	fis, err := ioutil.ReadDir(src)
+	if err != nil {
+		return errors.Wrapf(err, "failed to read %s", src)
+	}
+
+	if err := copyFileInfo(stat, dst); err != nil {
+		return errors.Wrapf(err, "failed to copy file info for %s", dst)
+	}
+
+	for _, fi := range fis {
+		source := filepath.Join(src, fi.Name())
+		target := filepath.Join(dst, fi.Name())
+
+		switch {
+		case fi.IsDir():
+			if err := copyDirectory(target, source, inodes); err != nil {
+				return err
+			}
+			continue
+		case (fi.Mode() & os.ModeType) == 0:
+			link, err := getLinkSource(target, fi, inodes)
+			if err != nil {
+				return errors.Wrap(err, "failed to get hardlink")
+			}
+			if link != "" {
+				if err := os.Link(link, target); err != nil {
+					return errors.Wrap(err, "failed to create hard link")
+				}
+			} else if err := CopyFile(target, source); err != nil {
+				return errors.Wrap(err, "failed to copy files")
+			}
+		case (fi.Mode() & os.ModeSymlink) == os.ModeSymlink:
+			link, err := os.Readlink(source)
+			if err != nil {
+				return errors.Wrapf(err, "failed to read link: %s", source)
+			}
+			if err := os.Symlink(link, target); err != nil {
+				return errors.Wrapf(err, "failed to create symlink: %s", target)
+			}
+		case (fi.Mode() & os.ModeDevice) == os.ModeDevice:
+			if err := copyDevice(target, fi); err != nil {
+				return errors.Wrapf(err, "failed to create device")
+			}
+		default:
+			// TODO: Support pipes and sockets
+			return errors.Wrapf(err, "unsupported mode %s", fi.Mode())
+		}
+		if err := copyFileInfo(fi, target); err != nil {
+			return errors.Wrap(err, "failed to copy file info")
+		}
+
+		if err := copyXAttrs(target, source); err != nil {
+			return errors.Wrap(err, "failed to copy xattrs")
+		}
+	}
+
+	return nil
+}
+
+// CopyFile copies the source file to the target.
+// The most efficient means of copying is used for the platform.
+func CopyFile(target, source string) error {
+	src, err := os.Open(source)
+	if err != nil {
+		return errors.Wrapf(err, "failed to open source %s", source)
+	}
+	defer src.Close()
+	tgt, err := os.Create(target)
+	if err != nil {
+		return errors.Wrapf(err, "failed to open target %s", target)
+	}
+	defer tgt.Close()
+
+	return copyFileContent(tgt, src)
+}
diff --git a/vendor/github.com/containerd/continuity/fs/copy_linux.go b/vendor/github.com/containerd/continuity/fs/copy_linux.go
new file mode 100644
index 0000000000..cfab6756b8
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/copy_linux.go
@@ -0,0 +1,95 @@
+package fs
+
+import (
+	"io"
+	"os"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+	"golang.org/x/sys/unix"
+)
+
+func copyFileInfo(fi os.FileInfo, name string) error {
+	st := fi.Sys().(*syscall.Stat_t)
+	if err := os.Lchown(name, int(st.Uid), int(st.Gid)); err != nil {
+		if os.IsPermission(err) {
+			// Normally if uid/gid are the same this would be a no-op, but some
+			// filesystems may still return EPERM... for instance NFS does this.
+			// In such a case, this is not an error.
+			if dstStat, err2 := os.Lstat(name); err2 == nil {
+				st2 := dstStat.Sys().(*syscall.Stat_t)
+				if st.Uid == st2.Uid && st.Gid == st2.Gid {
+					err = nil
+				}
+			}
+		}
+		if err != nil {
+			return errors.Wrapf(err, "failed to chown %s", name)
+		}
+	}
+
+	if (fi.Mode() & os.ModeSymlink) != os.ModeSymlink {
+		if err := os.Chmod(name, fi.Mode()); err != nil {
+			return errors.Wrapf(err, "failed to chmod %s", name)
+		}
+	}
+
+	timespec := []unix.Timespec{unix.Timespec(StatAtime(st)), unix.Timespec(StatMtime(st))}
+	if err := unix.UtimesNanoAt(unix.AT_FDCWD, name, timespec, unix.AT_SYMLINK_NOFOLLOW); err != nil {
+		return errors.Wrapf(err, "failed to utime %s", name)
+	}
+
+	return nil
+}
+
+func copyFileContent(dst, src *os.File) error {
+	st, err := src.Stat()
+	if err != nil {
+		return errors.Wrap(err, "unable to stat source")
+	}
+
+	n, err := unix.CopyFileRange(int(src.Fd()), nil, int(dst.Fd()), nil, int(st.Size()), 0)
+	if err != nil {
+		if err != unix.ENOSYS && err != unix.EXDEV {
+			return errors.Wrap(err, "copy file range failed")
+		}
+
+		buf := bufferPool.Get().(*[]byte)
+		_, err = io.CopyBuffer(dst, src, *buf)
+		bufferPool.Put(buf)
+		return err
+	}
+
+	if int64(n) != st.Size() {
+		return errors.Wrapf(err, "short copy: %d of %d", int64(n), st.Size())
+	}
+
+	return nil
+}
+
+func copyXAttrs(dst, src string) error {
+	xattrKeys, err := sysx.LListxattr(src)
+	if err != nil {
+		return errors.Wrapf(err, "failed to list xattrs on %s", src)
+	}
+	for _, xattr := range xattrKeys {
+		data, err := sysx.LGetxattr(src, xattr)
+		if err != nil {
+			return errors.Wrapf(err, "failed to get xattr %q on %s", xattr, src)
+		}
+		if err := sysx.LSetxattr(dst, xattr, data, 0); err != nil {
+			return errors.Wrapf(err, "failed to set xattr %q on %s", xattr, dst)
+		}
+	}
+
+	return nil
+}
+
+func copyDevice(dst string, fi os.FileInfo) error {
+	st, ok := fi.Sys().(*syscall.Stat_t)
+	if !ok {
+		return errors.New("unsupported stat type")
+	}
+	return unix.Mknod(dst, uint32(fi.Mode()), int(st.Rdev))
+}
diff --git a/vendor/github.com/containerd/continuity/fs/copy_unix.go b/vendor/github.com/containerd/continuity/fs/copy_unix.go
new file mode 100644
index 0000000000..29cbb81ed5
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/copy_unix.go
@@ -0,0 +1,80 @@
+// +build solaris darwin freebsd
+
+package fs
+
+import (
+	"io"
+	"os"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+	"golang.org/x/sys/unix"
+)
+
+func copyFileInfo(fi os.FileInfo, name string) error {
+	st := fi.Sys().(*syscall.Stat_t)
+	if err := os.Lchown(name, int(st.Uid), int(st.Gid)); err != nil {
+		if os.IsPermission(err) {
+			// Normally if uid/gid are the same this would be a no-op, but some
+			// filesystems may still return EPERM... for instance NFS does this.
+			// In such a case, this is not an error.
+			if dstStat, err2 := os.Lstat(name); err2 == nil {
+				st2 := dstStat.Sys().(*syscall.Stat_t)
+				if st.Uid == st2.Uid && st.Gid == st2.Gid {
+					err = nil
+				}
+			}
+		}
+		if err != nil {
+			return errors.Wrapf(err, "failed to chown %s", name)
+		}
+	}
+
+	if (fi.Mode() & os.ModeSymlink) != os.ModeSymlink {
+		if err := os.Chmod(name, fi.Mode()); err != nil {
+			return errors.Wrapf(err, "failed to chmod %s", name)
+		}
+	}
+
+	timespec := []syscall.Timespec{StatAtime(st), StatMtime(st)}
+	if err := syscall.UtimesNano(name, timespec); err != nil {
+		return errors.Wrapf(err, "failed to utime %s", name)
+	}
+
+	return nil
+}
+
+func copyFileContent(dst, src *os.File) error {
+	buf := bufferPool.Get().(*[]byte)
+	_, err := io.CopyBuffer(dst, src, *buf)
+	bufferPool.Put(buf)
+
+	return err
+}
+
+func copyXAttrs(dst, src string) error {
+	xattrKeys, err := sysx.LListxattr(src)
+	if err != nil {
+		return errors.Wrapf(err, "failed to list xattrs on %s", src)
+	}
+	for _, xattr := range xattrKeys {
+		data, err := sysx.LGetxattr(src, xattr)
+		if err != nil {
+			return errors.Wrapf(err, "failed to get xattr %q on %s", xattr, src)
+		}
+		if err := sysx.LSetxattr(dst, xattr, data, 0); err != nil {
+			return errors.Wrapf(err, "failed to set xattr %q on %s", xattr, dst)
+		}
+	}
+
+	return nil
+}
+
+func copyDevice(dst string, fi os.FileInfo) error {
+	st, ok := fi.Sys().(*syscall.Stat_t)
+	if !ok {
+		return errors.New("unsupported stat type")
+	}
+	return unix.Mknod(dst, uint32(fi.Mode()), int(st.Rdev))
+}
diff --git a/vendor/github.com/containerd/continuity/fs/copy_windows.go b/vendor/github.com/containerd/continuity/fs/copy_windows.go
new file mode 100644
index 0000000000..6fb3de5710
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/copy_windows.go
@@ -0,0 +1,33 @@
+package fs
+
+import (
+	"io"
+	"os"
+
+	"github.com/pkg/errors"
+)
+
+func copyFileInfo(fi os.FileInfo, name string) error {
+	if err := os.Chmod(name, fi.Mode()); err != nil {
+		return errors.Wrapf(err, "failed to chmod %s", name)
+	}
+
+	// TODO: copy windows specific metadata
+
+	return nil
+}
+
+func copyFileContent(dst, src *os.File) error {
+	buf := bufferPool.Get().(*[]byte)
+	_, err := io.CopyBuffer(dst, src, *buf)
+	bufferPool.Put(buf)
+	return err
+}
+
+func copyXAttrs(dst, src string) error {
+	return nil
+}
+
+func copyDevice(dst string, fi os.FileInfo) error {
+	return errors.New("device copy not supported")
+}
diff --git a/vendor/github.com/containerd/continuity/fs/diff.go b/vendor/github.com/containerd/continuity/fs/diff.go
new file mode 100644
index 0000000000..f2300e845d
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/diff.go
@@ -0,0 +1,310 @@
+package fs
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"golang.org/x/sync/errgroup"
+
+	"github.com/sirupsen/logrus"
+)
+
+// ChangeKind is the type of modification that
+// a change is making.
+type ChangeKind int
+
+const (
+	// ChangeKindUnmodified represents an unmodified
+	// file
+	ChangeKindUnmodified = iota
+
+	// ChangeKindAdd represents an addition of
+	// a file
+	ChangeKindAdd
+
+	// ChangeKindModify represents a change to
+	// an existing file
+	ChangeKindModify
+
+	// ChangeKindDelete represents a delete of
+	// a file
+	ChangeKindDelete
+)
+
+func (k ChangeKind) String() string {
+	switch k {
+	case ChangeKindUnmodified:
+		return "unmodified"
+	case ChangeKindAdd:
+		return "add"
+	case ChangeKindModify:
+		return "modify"
+	case ChangeKindDelete:
+		return "delete"
+	default:
+		return ""
+	}
+}
+
+// Change represents single change between a diff and its parent.
+type Change struct {
+	Kind ChangeKind
+	Path string
+}
+
+// ChangeFunc is the type of function called for each change
+// computed during a directory changes calculation.
+type ChangeFunc func(ChangeKind, string, os.FileInfo, error) error
+
+// Changes computes changes between two directories calling the
+// given change function for each computed change. The first
+// directory is intended to the base directory and second
+// directory the changed directory.
+//
+// The change callback is called by the order of path names and
+// should be appliable in that order.
+//  Due to this apply ordering, the following is true
+//  - Removed directory trees only create a single change for the root
+//    directory removed. Remaining changes are implied.
+//  - A directory which is modified to become a file will not have
+//    delete entries for sub-path items, their removal is implied
+//    by the removal of the parent directory.
+//
+// Opaque directories will not be treated specially and each file
+// removed from the base directory will show up as a removal.
+//
+// File content comparisons will be done on files which have timestamps
+// which may have been truncated. If either of the files being compared
+// has a zero value nanosecond value, each byte will be compared for
+// differences. If 2 files have the same seconds value but different
+// nanosecond values where one of those values is zero, the files will
+// be considered unchanged if the content is the same. This behavior
+// is to account for timestamp truncation during archiving.
+func Changes(ctx context.Context, a, b string, changeFn ChangeFunc) error {
+	if a == "" {
+		logrus.Debugf("Using single walk diff for %s", b)
+		return addDirChanges(ctx, changeFn, b)
+	} else if diffOptions := detectDirDiff(b, a); diffOptions != nil {
+		logrus.Debugf("Using single walk diff for %s from %s", diffOptions.diffDir, a)
+		return diffDirChanges(ctx, changeFn, a, diffOptions)
+	}
+
+	logrus.Debugf("Using double walk diff for %s from %s", b, a)
+	return doubleWalkDiff(ctx, changeFn, a, b)
+}
+
+func addDirChanges(ctx context.Context, changeFn ChangeFunc, root string) error {
+	return filepath.Walk(root, func(path string, f os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		// Rebase path
+		path, err = filepath.Rel(root, path)
+		if err != nil {
+			return err
+		}
+
+		path = filepath.Join(string(os.PathSeparator), path)
+
+		// Skip root
+		if path == string(os.PathSeparator) {
+			return nil
+		}
+
+		return changeFn(ChangeKindAdd, path, f, nil)
+	})
+}
+
+// diffDirOptions is used when the diff can be directly calculated from
+// a diff directory to its base, without walking both trees.
+type diffDirOptions struct {
+	diffDir      string
+	skipChange   func(string) (bool, error)
+	deleteChange func(string, string, os.FileInfo) (string, error)
+}
+
+// diffDirChanges walks the diff directory and compares changes against the base.
+func diffDirChanges(ctx context.Context, changeFn ChangeFunc, base string, o *diffDirOptions) error {
+	changedDirs := make(map[string]struct{})
+	return filepath.Walk(o.diffDir, func(path string, f os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		// Rebase path
+		path, err = filepath.Rel(o.diffDir, path)
+		if err != nil {
+			return err
+		}
+
+		path = filepath.Join(string(os.PathSeparator), path)
+
+		// Skip root
+		if path == string(os.PathSeparator) {
+			return nil
+		}
+
+		// TODO: handle opaqueness, start new double walker at this
+		// location to get deletes, and skip tree in single walker
+
+		if o.skipChange != nil {
+			if skip, err := o.skipChange(path); skip {
+				return err
+			}
+		}
+
+		var kind ChangeKind
+
+		deletedFile, err := o.deleteChange(o.diffDir, path, f)
+		if err != nil {
+			return err
+		}
+
+		// Find out what kind of modification happened
+		if deletedFile != "" {
+			path = deletedFile
+			kind = ChangeKindDelete
+			f = nil
+		} else {
+			// Otherwise, the file was added
+			kind = ChangeKindAdd
+
+			// ...Unless it already existed in a base, in which case, it's a modification
+			stat, err := os.Stat(filepath.Join(base, path))
+			if err != nil && !os.IsNotExist(err) {
+				return err
+			}
+			if err == nil {
+				// The file existed in the base, so that's a modification
+
+				// However, if it's a directory, maybe it wasn't actually modified.
+				// If you modify /foo/bar/baz, then /foo will be part of the changed files only because it's the parent of bar
+				if stat.IsDir() && f.IsDir() {
+					if f.Size() == stat.Size() && f.Mode() == stat.Mode() && sameFsTime(f.ModTime(), stat.ModTime()) {
+						// Both directories are the same, don't record the change
+						return nil
+					}
+				}
+				kind = ChangeKindModify
+			}
+		}
+
+		// If /foo/bar/file.txt is modified, then /foo/bar must be part of the changed files.
+		// This block is here to ensure the change is recorded even if the
+		// modify time, mode and size of the parent directory in the rw and ro layers are all equal.
+		// Check https://github.com/docker/docker/pull/13590 for details.
+		if f.IsDir() {
+			changedDirs[path] = struct{}{}
+		}
+		if kind == ChangeKindAdd || kind == ChangeKindDelete {
+			parent := filepath.Dir(path)
+			if _, ok := changedDirs[parent]; !ok && parent != "/" {
+				pi, err := os.Stat(filepath.Join(o.diffDir, parent))
+				if err := changeFn(ChangeKindModify, parent, pi, err); err != nil {
+					return err
+				}
+				changedDirs[parent] = struct{}{}
+			}
+		}
+
+		return changeFn(kind, path, f, nil)
+	})
+}
+
+// doubleWalkDiff walks both directories to create a diff
+func doubleWalkDiff(ctx context.Context, changeFn ChangeFunc, a, b string) (err error) {
+	g, ctx := errgroup.WithContext(ctx)
+
+	var (
+		c1 = make(chan *currentPath)
+		c2 = make(chan *currentPath)
+
+		f1, f2 *currentPath
+		rmdir  string
+	)
+	g.Go(func() error {
+		defer close(c1)
+		return pathWalk(ctx, a, c1)
+	})
+	g.Go(func() error {
+		defer close(c2)
+		return pathWalk(ctx, b, c2)
+	})
+	g.Go(func() error {
+		for c1 != nil || c2 != nil {
+			if f1 == nil && c1 != nil {
+				f1, err = nextPath(ctx, c1)
+				if err != nil {
+					return err
+				}
+				if f1 == nil {
+					c1 = nil
+				}
+			}
+
+			if f2 == nil && c2 != nil {
+				f2, err = nextPath(ctx, c2)
+				if err != nil {
+					return err
+				}
+				if f2 == nil {
+					c2 = nil
+				}
+			}
+			if f1 == nil && f2 == nil {
+				continue
+			}
+
+			var f os.FileInfo
+			k, p := pathChange(f1, f2)
+			switch k {
+			case ChangeKindAdd:
+				if rmdir != "" {
+					rmdir = ""
+				}
+				f = f2.f
+				f2 = nil
+			case ChangeKindDelete:
+				// Check if this file is already removed by being
+				// under of a removed directory
+				if rmdir != "" && strings.HasPrefix(f1.path, rmdir) {
+					f1 = nil
+					continue
+				} else if f1.f.IsDir() {
+					rmdir = f1.path + string(os.PathSeparator)
+				} else if rmdir != "" {
+					rmdir = ""
+				}
+				f1 = nil
+			case ChangeKindModify:
+				same, err := sameFile(f1, f2)
+				if err != nil {
+					return err
+				}
+				if f1.f.IsDir() && !f2.f.IsDir() {
+					rmdir = f1.path + string(os.PathSeparator)
+				} else if rmdir != "" {
+					rmdir = ""
+				}
+				f = f2.f
+				f1 = nil
+				f2 = nil
+				if same {
+					if !isLinked(f) {
+						continue
+					}
+					k = ChangeKindUnmodified
+				}
+			}
+			if err := changeFn(k, p, f, nil); err != nil {
+				return err
+			}
+		}
+		return nil
+	})
+
+	return g.Wait()
+}
diff --git a/vendor/github.com/containerd/continuity/fs/diff_unix.go b/vendor/github.com/containerd/continuity/fs/diff_unix.go
new file mode 100644
index 0000000000..3751814443
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/diff_unix.go
@@ -0,0 +1,58 @@
+// +build !windows
+
+package fs
+
+import (
+	"bytes"
+	"os"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+)
+
+// detectDirDiff returns diff dir options if a directory could
+// be found in the mount info for upper which is the direct
+// diff with the provided lower directory
+func detectDirDiff(upper, lower string) *diffDirOptions {
+	// TODO: get mount options for upper
+	// TODO: detect AUFS
+	// TODO: detect overlay
+	return nil
+}
+
+// compareSysStat returns whether the stats are equivalent,
+// whether the files are considered the same file, and
+// an error
+func compareSysStat(s1, s2 interface{}) (bool, error) {
+	ls1, ok := s1.(*syscall.Stat_t)
+	if !ok {
+		return false, nil
+	}
+	ls2, ok := s2.(*syscall.Stat_t)
+	if !ok {
+		return false, nil
+	}
+
+	return ls1.Mode == ls2.Mode && ls1.Uid == ls2.Uid && ls1.Gid == ls2.Gid && ls1.Rdev == ls2.Rdev, nil
+}
+
+func compareCapabilities(p1, p2 string) (bool, error) {
+	c1, err := sysx.LGetxattr(p1, "security.capability")
+	if err != nil && err != sysx.ENODATA {
+		return false, errors.Wrapf(err, "failed to get xattr for %s", p1)
+	}
+	c2, err := sysx.LGetxattr(p2, "security.capability")
+	if err != nil && err != sysx.ENODATA {
+		return false, errors.Wrapf(err, "failed to get xattr for %s", p2)
+	}
+	return bytes.Equal(c1, c2), nil
+}
+
+func isLinked(f os.FileInfo) bool {
+	s, ok := f.Sys().(*syscall.Stat_t)
+	if !ok {
+		return false
+	}
+	return !f.IsDir() && s.Nlink > 1
+}
diff --git a/vendor/github.com/containerd/continuity/fs/diff_windows.go b/vendor/github.com/containerd/continuity/fs/diff_windows.go
new file mode 100644
index 0000000000..8eed36507e
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/diff_windows.go
@@ -0,0 +1,32 @@
+package fs
+
+import (
+	"os"
+
+	"golang.org/x/sys/windows"
+)
+
+func detectDirDiff(upper, lower string) *diffDirOptions {
+	return nil
+}
+
+func compareSysStat(s1, s2 interface{}) (bool, error) {
+	f1, ok := s1.(windows.Win32FileAttributeData)
+	if !ok {
+		return false, nil
+	}
+	f2, ok := s2.(windows.Win32FileAttributeData)
+	if !ok {
+		return false, nil
+	}
+	return f1.FileAttributes == f2.FileAttributes, nil
+}
+
+func compareCapabilities(p1, p2 string) (bool, error) {
+	// TODO: Use windows equivalent
+	return true, nil
+}
+
+func isLinked(os.FileInfo) bool {
+	return false
+}
diff --git a/vendor/github.com/containerd/continuity/fs/dtype_linux.go b/vendor/github.com/containerd/continuity/fs/dtype_linux.go
new file mode 100644
index 0000000000..cc06573f1b
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/dtype_linux.go
@@ -0,0 +1,87 @@
+// +build linux
+
+package fs
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"syscall"
+	"unsafe"
+)
+
+func locateDummyIfEmpty(path string) (string, error) {
+	children, err := ioutil.ReadDir(path)
+	if err != nil {
+		return "", err
+	}
+	if len(children) != 0 {
+		return "", nil
+	}
+	dummyFile, err := ioutil.TempFile(path, "fsutils-dummy")
+	if err != nil {
+		return "", err
+	}
+	name := dummyFile.Name()
+	err = dummyFile.Close()
+	return name, err
+}
+
+// SupportsDType returns whether the filesystem mounted on path supports d_type
+func SupportsDType(path string) (bool, error) {
+	// locate dummy so that we have at least one dirent
+	dummy, err := locateDummyIfEmpty(path)
+	if err != nil {
+		return false, err
+	}
+	if dummy != "" {
+		defer os.Remove(dummy)
+	}
+
+	visited := 0
+	supportsDType := true
+	fn := func(ent *syscall.Dirent) bool {
+		visited++
+		if ent.Type == syscall.DT_UNKNOWN {
+			supportsDType = false
+			// stop iteration
+			return true
+		}
+		// continue iteration
+		return false
+	}
+	if err = iterateReadDir(path, fn); err != nil {
+		return false, err
+	}
+	if visited == 0 {
+		return false, fmt.Errorf("did not hit any dirent during iteration %s", path)
+	}
+	return supportsDType, nil
+}
+
+func iterateReadDir(path string, fn func(*syscall.Dirent) bool) error {
+	d, err := os.Open(path)
+	if err != nil {
+		return err
+	}
+	defer d.Close()
+	fd := int(d.Fd())
+	buf := make([]byte, 4096)
+	for {
+		nbytes, err := syscall.ReadDirent(fd, buf)
+		if err != nil {
+			return err
+		}
+		if nbytes == 0 {
+			break
+		}
+		for off := 0; off < nbytes; {
+			ent := (*syscall.Dirent)(unsafe.Pointer(&buf[off]))
+			if stop := fn(ent); stop {
+				return nil
+			}
+			off += int(ent.Reclen)
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/containerd/continuity/fs/du.go b/vendor/github.com/containerd/continuity/fs/du.go
new file mode 100644
index 0000000000..26f5333154
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/du.go
@@ -0,0 +1,22 @@
+package fs
+
+import "context"
+
+// Usage of disk information
+type Usage struct {
+	Inodes int64
+	Size   int64
+}
+
+// DiskUsage counts the number of inodes and disk usage for the resources under
+// path.
+func DiskUsage(roots ...string) (Usage, error) {
+	return diskUsage(roots...)
+}
+
+// DiffUsage counts the numbers of inodes and disk usage in the
+// diff between the 2 directories. The first path is intended
+// as the base directory and the second as the changed directory.
+func DiffUsage(ctx context.Context, a, b string) (Usage, error) {
+	return diffUsage(ctx, a, b)
+}
diff --git a/vendor/github.com/containerd/continuity/fs/du_unix.go b/vendor/github.com/containerd/continuity/fs/du_unix.go
new file mode 100644
index 0000000000..fe3426d278
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/du_unix.go
@@ -0,0 +1,88 @@
+// +build !windows
+
+package fs
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+	"syscall"
+)
+
+type inode struct {
+	// TODO(stevvooe): Can probably reduce memory usage by not tracking
+	// device, but we can leave this right for now.
+	dev, ino uint64
+}
+
+func newInode(stat *syscall.Stat_t) inode {
+	return inode{
+		// Dev is uint32 on darwin/bsd, uint64 on linux/solaris
+		dev: uint64(stat.Dev), // nolint: unconvert
+		// Ino is uint32 on bsd, uint64 on darwin/linux/solaris
+		ino: uint64(stat.Ino), // nolint: unconvert
+	}
+}
+
+func diskUsage(roots ...string) (Usage, error) {
+
+	var (
+		size   int64
+		inodes = map[inode]struct{}{} // expensive!
+	)
+
+	for _, root := range roots {
+		if err := filepath.Walk(root, func(path string, fi os.FileInfo, err error) error {
+			if err != nil {
+				return err
+			}
+
+			inoKey := newInode(fi.Sys().(*syscall.Stat_t))
+			if _, ok := inodes[inoKey]; !ok {
+				inodes[inoKey] = struct{}{}
+				size += fi.Size()
+			}
+
+			return nil
+		}); err != nil {
+			return Usage{}, err
+		}
+	}
+
+	return Usage{
+		Inodes: int64(len(inodes)),
+		Size:   size,
+	}, nil
+}
+
+func diffUsage(ctx context.Context, a, b string) (Usage, error) {
+	var (
+		size   int64
+		inodes = map[inode]struct{}{} // expensive!
+	)
+
+	if err := Changes(ctx, a, b, func(kind ChangeKind, _ string, fi os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		if kind == ChangeKindAdd || kind == ChangeKindModify {
+			inoKey := newInode(fi.Sys().(*syscall.Stat_t))
+			if _, ok := inodes[inoKey]; !ok {
+				inodes[inoKey] = struct{}{}
+				size += fi.Size()
+			}
+
+			return nil
+
+		}
+		return nil
+	}); err != nil {
+		return Usage{}, err
+	}
+
+	return Usage{
+		Inodes: int64(len(inodes)),
+		Size:   size,
+	}, nil
+}
diff --git a/vendor/github.com/containerd/continuity/fs/du_windows.go b/vendor/github.com/containerd/continuity/fs/du_windows.go
new file mode 100644
index 0000000000..3f852fc15e
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/du_windows.go
@@ -0,0 +1,60 @@
+// +build windows
+
+package fs
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+)
+
+func diskUsage(roots ...string) (Usage, error) {
+	var (
+		size int64
+	)
+
+	// TODO(stevvooe): Support inodes (or equivalent) for windows.
+
+	for _, root := range roots {
+		if err := filepath.Walk(root, func(path string, fi os.FileInfo, err error) error {
+			if err != nil {
+				return err
+			}
+
+			size += fi.Size()
+			return nil
+		}); err != nil {
+			return Usage{}, err
+		}
+	}
+
+	return Usage{
+		Size: size,
+	}, nil
+}
+
+func diffUsage(ctx context.Context, a, b string) (Usage, error) {
+	var (
+		size int64
+	)
+
+	if err := Changes(ctx, a, b, func(kind ChangeKind, _ string, fi os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		if kind == ChangeKindAdd || kind == ChangeKindModify {
+			size += fi.Size()
+
+			return nil
+
+		}
+		return nil
+	}); err != nil {
+		return Usage{}, err
+	}
+
+	return Usage{
+		Size: size,
+	}, nil
+}
diff --git a/vendor/github.com/containerd/continuity/fs/hardlink.go b/vendor/github.com/containerd/continuity/fs/hardlink.go
new file mode 100644
index 0000000000..38da93813c
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/hardlink.go
@@ -0,0 +1,27 @@
+package fs
+
+import "os"
+
+// GetLinkInfo returns an identifier representing the node a hardlink is pointing
+// to. If the file is not hard linked then 0 will be returned.
+func GetLinkInfo(fi os.FileInfo) (uint64, bool) {
+	return getLinkInfo(fi)
+}
+
+// getLinkSource returns a path for the given name and
+// file info to its link source in the provided inode
+// map. If the given file name is not in the map and
+// has other links, it is added to the inode map
+// to be a source for other link locations.
+func getLinkSource(name string, fi os.FileInfo, inodes map[uint64]string) (string, error) {
+	inode, isHardlink := getLinkInfo(fi)
+	if !isHardlink {
+		return "", nil
+	}
+
+	path, ok := inodes[inode]
+	if !ok {
+		inodes[inode] = name
+	}
+	return path, nil
+}
diff --git a/vendor/github.com/containerd/continuity/fs/hardlink_unix.go b/vendor/github.com/containerd/continuity/fs/hardlink_unix.go
new file mode 100644
index 0000000000..a6f99778de
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/hardlink_unix.go
@@ -0,0 +1,18 @@
+// +build !windows
+
+package fs
+
+import (
+	"os"
+	"syscall"
+)
+
+func getLinkInfo(fi os.FileInfo) (uint64, bool) {
+	s, ok := fi.Sys().(*syscall.Stat_t)
+	if !ok {
+		return 0, false
+	}
+
+	// Ino is uint32 on bsd, uint64 on darwin/linux/solaris
+	return uint64(s.Ino), !fi.IsDir() && s.Nlink > 1 // nolint: unconvert
+}
diff --git a/vendor/github.com/containerd/continuity/fs/hardlink_windows.go b/vendor/github.com/containerd/continuity/fs/hardlink_windows.go
new file mode 100644
index 0000000000..ad8845a7fb
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/hardlink_windows.go
@@ -0,0 +1,7 @@
+package fs
+
+import "os"
+
+func getLinkInfo(fi os.FileInfo) (uint64, bool) {
+	return 0, false
+}
diff --git a/vendor/github.com/containerd/continuity/fs/path.go b/vendor/github.com/containerd/continuity/fs/path.go
new file mode 100644
index 0000000000..13fb826385
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/path.go
@@ -0,0 +1,276 @@
+package fs
+
+import (
+	"bytes"
+	"context"
+	"io"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/pkg/errors"
+)
+
+var (
+	errTooManyLinks = errors.New("too many links")
+)
+
+type currentPath struct {
+	path     string
+	f        os.FileInfo
+	fullPath string
+}
+
+func pathChange(lower, upper *currentPath) (ChangeKind, string) {
+	if lower == nil {
+		if upper == nil {
+			panic("cannot compare nil paths")
+		}
+		return ChangeKindAdd, upper.path
+	}
+	if upper == nil {
+		return ChangeKindDelete, lower.path
+	}
+	// TODO: compare by directory
+
+	switch i := strings.Compare(lower.path, upper.path); {
+	case i < 0:
+		// File in lower that is not in upper
+		return ChangeKindDelete, lower.path
+	case i > 0:
+		// File in upper that is not in lower
+		return ChangeKindAdd, upper.path
+	default:
+		return ChangeKindModify, upper.path
+	}
+}
+
+func sameFile(f1, f2 *currentPath) (bool, error) {
+	if os.SameFile(f1.f, f2.f) {
+		return true, nil
+	}
+
+	equalStat, err := compareSysStat(f1.f.Sys(), f2.f.Sys())
+	if err != nil || !equalStat {
+		return equalStat, err
+	}
+
+	if eq, err := compareCapabilities(f1.fullPath, f2.fullPath); err != nil || !eq {
+		return eq, err
+	}
+
+	// If not a directory also check size, modtime, and content
+	if !f1.f.IsDir() {
+		if f1.f.Size() != f2.f.Size() {
+			return false, nil
+		}
+		t1 := f1.f.ModTime()
+		t2 := f2.f.ModTime()
+
+		if t1.Unix() != t2.Unix() {
+			return false, nil
+		}
+
+		// If the timestamp may have been truncated in both of the
+		// files, check content of file to determine difference
+		if t1.Nanosecond() == 0 && t2.Nanosecond() == 0 {
+			var eq bool
+			if (f1.f.Mode() & os.ModeSymlink) == os.ModeSymlink {
+				eq, err = compareSymlinkTarget(f1.fullPath, f2.fullPath)
+			} else if f1.f.Size() > 0 {
+				eq, err = compareFileContent(f1.fullPath, f2.fullPath)
+			}
+			if err != nil || !eq {
+				return eq, err
+			}
+		} else if t1.Nanosecond() != t2.Nanosecond() {
+			return false, nil
+		}
+	}
+
+	return true, nil
+}
+
+func compareSymlinkTarget(p1, p2 string) (bool, error) {
+	t1, err := os.Readlink(p1)
+	if err != nil {
+		return false, err
+	}
+	t2, err := os.Readlink(p2)
+	if err != nil {
+		return false, err
+	}
+	return t1 == t2, nil
+}
+
+const compareChuckSize = 32 * 1024
+
+// compareFileContent compares the content of 2 same sized files
+// by comparing each byte.
+func compareFileContent(p1, p2 string) (bool, error) {
+	f1, err := os.Open(p1)
+	if err != nil {
+		return false, err
+	}
+	defer f1.Close()
+	f2, err := os.Open(p2)
+	if err != nil {
+		return false, err
+	}
+	defer f2.Close()
+
+	b1 := make([]byte, compareChuckSize)
+	b2 := make([]byte, compareChuckSize)
+	for {
+		n1, err1 := f1.Read(b1)
+		if err1 != nil && err1 != io.EOF {
+			return false, err1
+		}
+		n2, err2 := f2.Read(b2)
+		if err2 != nil && err2 != io.EOF {
+			return false, err2
+		}
+		if n1 != n2 || !bytes.Equal(b1[:n1], b2[:n2]) {
+			return false, nil
+		}
+		if err1 == io.EOF && err2 == io.EOF {
+			return true, nil
+		}
+	}
+}
+
+func pathWalk(ctx context.Context, root string, pathC chan<- *currentPath) error {
+	return filepath.Walk(root, func(path string, f os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		// Rebase path
+		path, err = filepath.Rel(root, path)
+		if err != nil {
+			return err
+		}
+
+		path = filepath.Join(string(os.PathSeparator), path)
+
+		// Skip root
+		if path == string(os.PathSeparator) {
+			return nil
+		}
+
+		p := &currentPath{
+			path:     path,
+			f:        f,
+			fullPath: filepath.Join(root, path),
+		}
+
+		select {
+		case <-ctx.Done():
+			return ctx.Err()
+		case pathC <- p:
+			return nil
+		}
+	})
+}
+
+func nextPath(ctx context.Context, pathC <-chan *currentPath) (*currentPath, error) {
+	select {
+	case <-ctx.Done():
+		return nil, ctx.Err()
+	case p := <-pathC:
+		return p, nil
+	}
+}
+
+// RootPath joins a path with a root, evaluating and bounding any
+// symlink to the root directory.
+func RootPath(root, path string) (string, error) {
+	if path == "" {
+		return root, nil
+	}
+	var linksWalked int // to protect against cycles
+	for {
+		i := linksWalked
+		newpath, err := walkLinks(root, path, &linksWalked)
+		if err != nil {
+			return "", err
+		}
+		path = newpath
+		if i == linksWalked {
+			newpath = filepath.Join("/", newpath)
+			if path == newpath {
+				return filepath.Join(root, newpath), nil
+			}
+			path = newpath
+		}
+	}
+}
+
+func walkLink(root, path string, linksWalked *int) (newpath string, islink bool, err error) {
+	if *linksWalked > 255 {
+		return "", false, errTooManyLinks
+	}
+
+	path = filepath.Join("/", path)
+	if path == "/" {
+		return path, false, nil
+	}
+	realPath := filepath.Join(root, path)
+
+	fi, err := os.Lstat(realPath)
+	if err != nil {
+		// If path does not yet exist, treat as non-symlink
+		if os.IsNotExist(err) {
+			return path, false, nil
+		}
+		return "", false, err
+	}
+	if fi.Mode()&os.ModeSymlink == 0 {
+		return path, false, nil
+	}
+	newpath, err = os.Readlink(realPath)
+	if err != nil {
+		return "", false, err
+	}
+	if filepath.IsAbs(newpath) && strings.HasPrefix(newpath, root) {
+		newpath = newpath[:len(root)]
+		if !strings.HasPrefix(newpath, "/") {
+			newpath = "/" + newpath
+		}
+	}
+	*linksWalked++
+	return newpath, true, nil
+}
+
+func walkLinks(root, path string, linksWalked *int) (string, error) {
+	switch dir, file := filepath.Split(path); {
+	case dir == "":
+		newpath, _, err := walkLink(root, file, linksWalked)
+		return newpath, err
+	case file == "":
+		if os.IsPathSeparator(dir[len(dir)-1]) {
+			if dir == "/" {
+				return dir, nil
+			}
+			return walkLinks(root, dir[:len(dir)-1], linksWalked)
+		}
+		newpath, _, err := walkLink(root, dir, linksWalked)
+		return newpath, err
+	default:
+		newdir, err := walkLinks(root, dir, linksWalked)
+		if err != nil {
+			return "", err
+		}
+		newpath, islink, err := walkLink(root, filepath.Join(newdir, file), linksWalked)
+		if err != nil {
+			return "", err
+		}
+		if !islink {
+			return newpath, nil
+		}
+		if filepath.IsAbs(newpath) {
+			return newpath, nil
+		}
+		return filepath.Join(newdir, newpath), nil
+	}
+}
diff --git a/vendor/github.com/containerd/continuity/fs/stat_bsd.go b/vendor/github.com/containerd/continuity/fs/stat_bsd.go
new file mode 100644
index 0000000000..a1b776fdf5
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/stat_bsd.go
@@ -0,0 +1,28 @@
+// +build darwin freebsd
+
+package fs
+
+import (
+	"syscall"
+	"time"
+)
+
+// StatAtime returns the access time from a stat struct
+func StatAtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Atimespec
+}
+
+// StatCtime returns the created time from a stat struct
+func StatCtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Ctimespec
+}
+
+// StatMtime returns the modified time from a stat struct
+func StatMtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Mtimespec
+}
+
+// StatATimeAsTime returns the access time as a time.Time
+func StatATimeAsTime(st *syscall.Stat_t) time.Time {
+	return time.Unix(int64(st.Atimespec.Sec), int64(st.Atimespec.Nsec)) // nolint: unconvert
+}
diff --git a/vendor/github.com/containerd/continuity/fs/stat_linux.go b/vendor/github.com/containerd/continuity/fs/stat_linux.go
new file mode 100644
index 0000000000..1dbb0212b6
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/stat_linux.go
@@ -0,0 +1,27 @@
+package fs
+
+import (
+	"syscall"
+	"time"
+)
+
+// StatAtime returns the Atim
+func StatAtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Atim
+}
+
+// StatCtime returns the Ctim
+func StatCtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Ctim
+}
+
+// StatMtime returns the Mtim
+func StatMtime(st *syscall.Stat_t) syscall.Timespec {
+	return st.Mtim
+}
+
+// StatATimeAsTime returns st.Atim as a time.Time
+func StatATimeAsTime(st *syscall.Stat_t) time.Time {
+	// The int64 conversions ensure the line compiles for 32-bit systems as well.
+	return time.Unix(int64(st.Atim.Sec), int64(st.Atim.Nsec)) // nolint: unconvert
+}
diff --git a/vendor/github.com/containerd/continuity/fs/time.go b/vendor/github.com/containerd/continuity/fs/time.go
new file mode 100644
index 0000000000..c336f4d881
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/fs/time.go
@@ -0,0 +1,13 @@
+package fs
+
+import "time"
+
+// Gnu tar and the go tar writer don't have sub-second mtime
+// precision, which is problematic when we apply changes via tar
+// files, we handle this by comparing for exact times, *or* same
+// second count and either a or b having exactly 0 nanoseconds
+func sameFsTime(a, b time.Time) bool {
+	return a == b ||
+		(a.Unix() == b.Unix() &&
+			(a.Nanosecond() == 0 || b.Nanosecond() == 0))
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/asm.s b/vendor/github.com/containerd/continuity/sysx/asm.s
new file mode 100644
index 0000000000..8ed2fdb94b
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/asm.s
@@ -0,0 +1,10 @@
+// Copyright 2014 The Go Authors.  All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !gccgo
+
+#include "textflag.h"
+
+TEXT ·use(SB),NOSPLIT,$0
+	RET
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_darwin.go b/vendor/github.com/containerd/continuity/sysx/chmod_darwin.go
new file mode 100644
index 0000000000..e3ae2b7bbf
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_darwin.go
@@ -0,0 +1,18 @@
+package sysx
+
+const (
+	// AtSymlinkNoFollow defined from AT_SYMLINK_NOFOLLOW in <sys/fcntl.h>
+	AtSymlinkNofollow = 0x20
+)
+
+const (
+
+	// SYS_FCHMODAT defined from golang.org/sys/unix
+	SYS_FCHMODAT = 467
+)
+
+// These functions will be generated by generate.sh
+//    $ GOOS=darwin GOARCH=386 ./generate.sh chmod
+//    $ GOOS=darwin GOARCH=amd64 ./generate.sh chmod
+
+//sys  Fchmodat(dirfd int, path string, mode uint32, flags int) (err error)
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_darwin_386.go b/vendor/github.com/containerd/continuity/sysx/chmod_darwin_386.go
new file mode 100644
index 0000000000..5a8cf5b57d
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_darwin_386.go
@@ -0,0 +1,25 @@
+// mksyscall.pl -l32 chmod_darwin.go
+// MACHINE GENERATED BY THE COMMAND ABOVE; DO NOT EDIT
+
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func Fchmodat(dirfd int, path string, mode uint32, flags int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	_, _, e1 := syscall.Syscall6(SYS_FCHMODAT, uintptr(dirfd), uintptr(unsafe.Pointer(_p0)), uintptr(mode), uintptr(flags), 0, 0)
+	use(unsafe.Pointer(_p0))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_darwin_amd64.go b/vendor/github.com/containerd/continuity/sysx/chmod_darwin_amd64.go
new file mode 100644
index 0000000000..3287d1d579
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_darwin_amd64.go
@@ -0,0 +1,25 @@
+// mksyscall.pl chmod_darwin.go
+// MACHINE GENERATED BY THE COMMAND ABOVE; DO NOT EDIT
+
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func Fchmodat(dirfd int, path string, mode uint32, flags int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	_, _, e1 := syscall.Syscall6(SYS_FCHMODAT, uintptr(dirfd), uintptr(unsafe.Pointer(_p0)), uintptr(mode), uintptr(flags), 0, 0)
+	use(unsafe.Pointer(_p0))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_freebsd.go b/vendor/github.com/containerd/continuity/sysx/chmod_freebsd.go
new file mode 100644
index 0000000000..b64a708be1
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_freebsd.go
@@ -0,0 +1,17 @@
+package sysx
+
+const (
+	// AtSymlinkNoFollow defined from AT_SYMLINK_NOFOLLOW in <sys/fcntl.h>
+	AtSymlinkNofollow = 0x200
+)
+
+const (
+
+	// SYS_FCHMODAT defined from golang.org/sys/unix
+	SYS_FCHMODAT = 490
+)
+
+// These functions will be generated by generate.sh
+//    $ GOOS=freebsd GOARCH=amd64 ./generate.sh chmod
+
+//sys  Fchmodat(dirfd int, path string, mode uint32, flags int) (err error)
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_freebsd_amd64.go b/vendor/github.com/containerd/continuity/sysx/chmod_freebsd_amd64.go
new file mode 100644
index 0000000000..5a271abb1e
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_freebsd_amd64.go
@@ -0,0 +1,25 @@
+// mksyscall.pl chmod_freebsd.go
+// MACHINE GENERATED BY THE COMMAND ABOVE; DO NOT EDIT
+
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func Fchmodat(dirfd int, path string, mode uint32, flags int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	_, _, e1 := syscall.Syscall6(SYS_FCHMODAT, uintptr(dirfd), uintptr(unsafe.Pointer(_p0)), uintptr(mode), uintptr(flags), 0, 0)
+	use(unsafe.Pointer(_p0))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_linux.go b/vendor/github.com/containerd/continuity/sysx/chmod_linux.go
new file mode 100644
index 0000000000..89df6d38ef
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_linux.go
@@ -0,0 +1,12 @@
+package sysx
+
+import "syscall"
+
+const (
+	// AtSymlinkNoFollow defined from AT_SYMLINK_NOFOLLOW in /usr/include/linux/fcntl.h
+	AtSymlinkNofollow = 0x100
+)
+
+func Fchmodat(dirfd int, path string, mode uint32, flags int) error {
+	return syscall.Fchmodat(dirfd, path, mode, flags)
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/chmod_solaris.go b/vendor/github.com/containerd/continuity/sysx/chmod_solaris.go
new file mode 100644
index 0000000000..3ba6e5edc8
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/chmod_solaris.go
@@ -0,0 +1,11 @@
+package sysx
+
+import "golang.org/x/sys/unix"
+
+const (
+	AtSymlinkNofollow = unix.AT_SYMLINK_NOFOLLOW
+)
+
+func Fchmodat(dirfd int, path string, mode uint32, flags int) error {
+	return unix.Fchmodat(dirfd, path, mode, flags)
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/nodata_linux.go b/vendor/github.com/containerd/continuity/sysx/nodata_linux.go
new file mode 100644
index 0000000000..fc47ddb8dc
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/nodata_linux.go
@@ -0,0 +1,7 @@
+package sysx
+
+import (
+	"syscall"
+)
+
+const ENODATA = syscall.ENODATA
diff --git a/vendor/github.com/containerd/continuity/sysx/nodata_solaris.go b/vendor/github.com/containerd/continuity/sysx/nodata_solaris.go
new file mode 100644
index 0000000000..53cc8e068f
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/nodata_solaris.go
@@ -0,0 +1,8 @@
+package sysx
+
+import (
+	"syscall"
+)
+
+// This should actually be a set that contains ENOENT and EPERM
+const ENODATA = syscall.ENOENT
diff --git a/vendor/github.com/containerd/continuity/sysx/nodata_unix.go b/vendor/github.com/containerd/continuity/sysx/nodata_unix.go
new file mode 100644
index 0000000000..7e6851209f
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/nodata_unix.go
@@ -0,0 +1,9 @@
+// +build darwin freebsd
+
+package sysx
+
+import (
+	"syscall"
+)
+
+const ENODATA = syscall.ENOATTR
diff --git a/vendor/github.com/containerd/continuity/sysx/sys.go b/vendor/github.com/containerd/continuity/sysx/sys.go
new file mode 100644
index 0000000000..0bb1676283
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/sys.go
@@ -0,0 +1,37 @@
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+var _zero uintptr
+
+// use is a no-op, but the compiler cannot see that it is.
+// Calling use(p) ensures that p is kept live until that point.
+//go:noescape
+func use(p unsafe.Pointer)
+
+// Do the interface allocations only once for common
+// Errno values.
+var (
+	errEAGAIN error = syscall.EAGAIN
+	errEINVAL error = syscall.EINVAL
+	errENOENT error = syscall.ENOENT
+)
+
+// errnoErr returns common boxed Errno values, to prevent
+// allocations at runtime.
+func errnoErr(e syscall.Errno) error {
+	switch e {
+	case 0:
+		return nil
+	case syscall.EAGAIN:
+		return errEAGAIN
+	case syscall.EINVAL:
+		return errEINVAL
+	case syscall.ENOENT:
+		return errENOENT
+	}
+	return e
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr.go b/vendor/github.com/containerd/continuity/sysx/xattr.go
new file mode 100644
index 0000000000..20937c2d4d
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr.go
@@ -0,0 +1,67 @@
+package sysx
+
+import (
+	"bytes"
+	"fmt"
+	"syscall"
+)
+
+const defaultXattrBufferSize = 5
+
+var ErrNotSupported = fmt.Errorf("not supported")
+
+type listxattrFunc func(path string, dest []byte) (int, error)
+
+func listxattrAll(path string, listFunc listxattrFunc) ([]string, error) {
+	var p []byte // nil on first execution
+
+	for {
+		n, err := listFunc(path, p) // first call gets buffer size.
+		if err != nil {
+			return nil, err
+		}
+
+		if n > len(p) {
+			p = make([]byte, n)
+			continue
+		}
+
+		p = p[:n]
+
+		ps := bytes.Split(bytes.TrimSuffix(p, []byte{0}), []byte{0})
+		var entries []string
+		for _, p := range ps {
+			s := string(p)
+			if s != "" {
+				entries = append(entries, s)
+			}
+		}
+
+		return entries, nil
+	}
+}
+
+type getxattrFunc func(string, string, []byte) (int, error)
+
+func getxattrAll(path, attr string, getFunc getxattrFunc) ([]byte, error) {
+	p := make([]byte, defaultXattrBufferSize)
+	for {
+		n, err := getFunc(path, attr, p)
+		if err != nil {
+			if errno, ok := err.(syscall.Errno); ok && errno == syscall.ERANGE {
+				p = make([]byte, len(p)*2) // this can't be ideal.
+				continue                   // try again!
+			}
+
+			return nil, err
+		}
+
+		// realloc to correct size and repeat
+		if n > len(p) {
+			p = make([]byte, n)
+			continue
+		}
+
+		return p[:n], nil
+	}
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_darwin.go b/vendor/github.com/containerd/continuity/sysx/xattr_darwin.go
new file mode 100644
index 0000000000..1164a7d11c
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_darwin.go
@@ -0,0 +1,71 @@
+package sysx
+
+// These functions will be generated by generate.sh
+//    $ GOOS=darwin GOARCH=386 ./generate.sh xattr
+//    $ GOOS=darwin GOARCH=amd64 ./generate.sh xattr
+
+//sys  getxattr(path string, attr string, dest []byte, pos int, options int) (sz int, err error)
+//sys  setxattr(path string, attr string, data []byte, flags int) (err error)
+//sys  removexattr(path string, attr string, options int) (err error)
+//sys  listxattr(path string, dest []byte, options int) (sz int, err error)
+//sys  Fchmodat(dirfd int, path string, mode uint32, flags int) (err error)
+
+const (
+	xattrNoFollow = 0x01
+)
+
+func listxattrFollow(path string, dest []byte) (sz int, err error) {
+	return listxattr(path, dest, 0)
+}
+
+// Listxattr calls syscall getxattr
+func Listxattr(path string) ([]string, error) {
+	return listxattrAll(path, listxattrFollow)
+}
+
+// Removexattr calls syscall getxattr
+func Removexattr(path string, attr string) (err error) {
+	return removexattr(path, attr, 0)
+}
+
+// Setxattr calls syscall setxattr
+func Setxattr(path string, attr string, data []byte, flags int) (err error) {
+	return setxattr(path, attr, data, flags)
+}
+
+func getxattrFollow(path, attr string, dest []byte) (sz int, err error) {
+	return getxattr(path, attr, dest, 0, 0)
+}
+
+// Getxattr calls syscall getxattr
+func Getxattr(path, attr string) ([]byte, error) {
+	return getxattrAll(path, attr, getxattrFollow)
+}
+
+func listxattrNoFollow(path string, dest []byte) (sz int, err error) {
+	return listxattr(path, dest, xattrNoFollow)
+}
+
+// LListxattr calls syscall listxattr with XATTR_NOFOLLOW
+func LListxattr(path string) ([]string, error) {
+	return listxattrAll(path, listxattrNoFollow)
+}
+
+// LRemovexattr calls syscall removexattr with XATTR_NOFOLLOW
+func LRemovexattr(path string, attr string) (err error) {
+	return removexattr(path, attr, xattrNoFollow)
+}
+
+// Setxattr calls syscall setxattr with XATTR_NOFOLLOW
+func LSetxattr(path string, attr string, data []byte, flags int) (err error) {
+	return setxattr(path, attr, data, flags|xattrNoFollow)
+}
+
+func getxattrNoFollow(path, attr string, dest []byte) (sz int, err error) {
+	return getxattr(path, attr, dest, 0, xattrNoFollow)
+}
+
+// LGetxattr calls syscall getxattr with XATTR_NOFOLLOW
+func LGetxattr(path, attr string) ([]byte, error) {
+	return getxattrAll(path, attr, getxattrNoFollow)
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_darwin_386.go b/vendor/github.com/containerd/continuity/sysx/xattr_darwin_386.go
new file mode 100644
index 0000000000..aa896b57fc
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_darwin_386.go
@@ -0,0 +1,111 @@
+// mksyscall.pl -l32 xattr_darwin.go
+// MACHINE GENERATED BY THE COMMAND ABOVE; DO NOT EDIT
+
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func getxattr(path string, attr string, dest []byte, pos int, options int) (sz int, err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	var _p2 unsafe.Pointer
+	if len(dest) > 0 {
+		_p2 = unsafe.Pointer(&dest[0])
+	} else {
+		_p2 = unsafe.Pointer(&_zero)
+	}
+	r0, _, e1 := syscall.Syscall6(syscall.SYS_GETXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(_p2), uintptr(len(dest)), uintptr(pos), uintptr(options))
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	sz = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func setxattr(path string, attr string, data []byte, flags int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	var _p2 unsafe.Pointer
+	if len(data) > 0 {
+		_p2 = unsafe.Pointer(&data[0])
+	} else {
+		_p2 = unsafe.Pointer(&_zero)
+	}
+	_, _, e1 := syscall.Syscall6(syscall.SYS_SETXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(_p2), uintptr(len(data)), uintptr(flags), 0)
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func removexattr(path string, attr string, options int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	_, _, e1 := syscall.Syscall(syscall.SYS_REMOVEXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(options))
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func listxattr(path string, dest []byte, options int) (sz int, err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 unsafe.Pointer
+	if len(dest) > 0 {
+		_p1 = unsafe.Pointer(&dest[0])
+	} else {
+		_p1 = unsafe.Pointer(&_zero)
+	}
+	r0, _, e1 := syscall.Syscall6(syscall.SYS_LISTXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(_p1), uintptr(len(dest)), uintptr(options), 0, 0)
+	use(unsafe.Pointer(_p0))
+	sz = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_darwin_amd64.go b/vendor/github.com/containerd/continuity/sysx/xattr_darwin_amd64.go
new file mode 100644
index 0000000000..6ff27e2703
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_darwin_amd64.go
@@ -0,0 +1,111 @@
+// mksyscall.pl xattr_darwin.go
+// MACHINE GENERATED BY THE COMMAND ABOVE; DO NOT EDIT
+
+package sysx
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func getxattr(path string, attr string, dest []byte, pos int, options int) (sz int, err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	var _p2 unsafe.Pointer
+	if len(dest) > 0 {
+		_p2 = unsafe.Pointer(&dest[0])
+	} else {
+		_p2 = unsafe.Pointer(&_zero)
+	}
+	r0, _, e1 := syscall.Syscall6(syscall.SYS_GETXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(_p2), uintptr(len(dest)), uintptr(pos), uintptr(options))
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	sz = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func setxattr(path string, attr string, data []byte, flags int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	var _p2 unsafe.Pointer
+	if len(data) > 0 {
+		_p2 = unsafe.Pointer(&data[0])
+	} else {
+		_p2 = unsafe.Pointer(&_zero)
+	}
+	_, _, e1 := syscall.Syscall6(syscall.SYS_SETXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(_p2), uintptr(len(data)), uintptr(flags), 0)
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func removexattr(path string, attr string, options int) (err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 *byte
+	_p1, err = syscall.BytePtrFromString(attr)
+	if err != nil {
+		return
+	}
+	_, _, e1 := syscall.Syscall(syscall.SYS_REMOVEXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(_p1)), uintptr(options))
+	use(unsafe.Pointer(_p0))
+	use(unsafe.Pointer(_p1))
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
+
+// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
+
+func listxattr(path string, dest []byte, options int) (sz int, err error) {
+	var _p0 *byte
+	_p0, err = syscall.BytePtrFromString(path)
+	if err != nil {
+		return
+	}
+	var _p1 unsafe.Pointer
+	if len(dest) > 0 {
+		_p1 = unsafe.Pointer(&dest[0])
+	} else {
+		_p1 = unsafe.Pointer(&_zero)
+	}
+	r0, _, e1 := syscall.Syscall6(syscall.SYS_LISTXATTR, uintptr(unsafe.Pointer(_p0)), uintptr(_p1), uintptr(len(dest)), uintptr(options), 0, 0)
+	use(unsafe.Pointer(_p0))
+	sz = int(r0)
+	if e1 != 0 {
+		err = errnoErr(e1)
+	}
+	return
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_freebsd.go b/vendor/github.com/containerd/continuity/sysx/xattr_freebsd.go
new file mode 100644
index 0000000000..e8017d317f
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_freebsd.go
@@ -0,0 +1,12 @@
+package sysx
+
+import (
+	"errors"
+)
+
+// Initial stub version for FreeBSD. FreeBSD has a different
+// syscall API from Darwin and Linux for extended attributes;
+// it is also not widely used. It is not exposed at all by the
+// Go syscall package, so we need to implement directly eventually.
+
+var unsupported = errors.New("extended attributes unsupported on FreeBSD")
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_linux.go b/vendor/github.com/containerd/continuity/sysx/xattr_linux.go
new file mode 100644
index 0000000000..311b896d9e
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_linux.go
@@ -0,0 +1,44 @@
+package sysx
+
+import "golang.org/x/sys/unix"
+
+// Listxattr calls syscall listxattr and reads all content
+// and returns a string array
+func Listxattr(path string) ([]string, error) {
+	return listxattrAll(path, unix.Listxattr)
+}
+
+// Removexattr calls syscall removexattr
+func Removexattr(path string, attr string) (err error) {
+	return unix.Removexattr(path, attr)
+}
+
+// Setxattr calls syscall setxattr
+func Setxattr(path string, attr string, data []byte, flags int) (err error) {
+	return unix.Setxattr(path, attr, data, flags)
+}
+
+// Getxattr calls syscall getxattr
+func Getxattr(path, attr string) ([]byte, error) {
+	return getxattrAll(path, attr, unix.Getxattr)
+}
+
+// LListxattr lists xattrs, not following symlinks
+func LListxattr(path string) ([]string, error) {
+	return listxattrAll(path, unix.Llistxattr)
+}
+
+// LRemovexattr removes an xattr, not following symlinks
+func LRemovexattr(path string, attr string) (err error) {
+	return unix.Lremovexattr(path, attr)
+}
+
+// LSetxattr sets an xattr, not following symlinks
+func LSetxattr(path string, attr string, data []byte, flags int) (err error) {
+	return unix.Lsetxattr(path, attr, data, flags)
+}
+
+// LGetxattr gets an xattr, not following symlinks
+func LGetxattr(path, attr string) ([]byte, error) {
+	return getxattrAll(path, attr, unix.Lgetxattr)
+}
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_openbsd.go b/vendor/github.com/containerd/continuity/sysx/xattr_openbsd.go
new file mode 100644
index 0000000000..723619977d
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_openbsd.go
@@ -0,0 +1,7 @@
+package sysx
+
+import (
+	"errors"
+)
+
+var unsupported = errors.New("extended attributes unsupported on OpenBSD")
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_solaris.go b/vendor/github.com/containerd/continuity/sysx/xattr_solaris.go
new file mode 100644
index 0000000000..fc523fcbbe
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_solaris.go
@@ -0,0 +1,12 @@
+package sysx
+
+import (
+	"errors"
+)
+
+// Initial stub version for Solaris. Solaris has a different
+// syscall API from Darwin and Linux for extended attributes;
+// it is also not widely used. It is not exposed at all by the
+// Go syscall package, so we need to implement directly eventually.
+
+var unsupported = errors.New("extended attributes unsupported on Solaris")
diff --git a/vendor/github.com/containerd/continuity/sysx/xattr_unsupported.go b/vendor/github.com/containerd/continuity/sysx/xattr_unsupported.go
new file mode 100644
index 0000000000..c8389bc136
--- /dev/null
+++ b/vendor/github.com/containerd/continuity/sysx/xattr_unsupported.go
@@ -0,0 +1,44 @@
+// +build freebsd openbsd solaris
+
+package sysx
+
+// Listxattr calls syscall listxattr and reads all content
+// and returns a string array
+func Listxattr(path string) ([]string, error) {
+	return []string{}, nil
+}
+
+// Removexattr calls syscall removexattr
+func Removexattr(path string, attr string) (err error) {
+	return unsupported
+}
+
+// Setxattr calls syscall setxattr
+func Setxattr(path string, attr string, data []byte, flags int) (err error) {
+	return unsupported
+}
+
+// Getxattr calls syscall getxattr
+func Getxattr(path, attr string) ([]byte, error) {
+	return []byte{}, unsupported
+}
+
+// LListxattr lists xattrs, not following symlinks
+func LListxattr(path string) ([]string, error) {
+	return []string{}, nil
+}
+
+// LRemovexattr removes an xattr, not following symlinks
+func LRemovexattr(path string, attr string) (err error) {
+	return unsupported
+}
+
+// LSetxattr sets an xattr, not following symlinks
+func LSetxattr(path string, attr string, data []byte, flags int) (err error) {
+	return unsupported
+}
+
+// LGetxattr gets an xattr, not following symlinks
+func LGetxattr(path, attr string) ([]byte, error) {
+	return []byte{}, nil
+}
diff --git a/vendor/github.com/containerd/fifo/LICENSE b/vendor/github.com/containerd/fifo/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/containerd/fifo/fifo.go b/vendor/github.com/containerd/fifo/fifo.go
new file mode 100644
index 0000000000..e79813da7d
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/fifo.go
@@ -0,0 +1,236 @@
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package fifo
+
+import (
+	"io"
+	"os"
+	"runtime"
+	"sync"
+	"syscall"
+
+	"github.com/pkg/errors"
+	"golang.org/x/net/context"
+)
+
+type fifo struct {
+	flag        int
+	opened      chan struct{}
+	closed      chan struct{}
+	closing     chan struct{}
+	err         error
+	file        *os.File
+	closingOnce sync.Once // close has been called
+	closedOnce  sync.Once // fifo is closed
+	handle      *handle
+}
+
+var leakCheckWg *sync.WaitGroup
+
+// OpenFifo opens a fifo. Returns io.ReadWriteCloser.
+// Context can be used to cancel this function until open(2) has not returned.
+// Accepted flags:
+// - syscall.O_CREAT - create new fifo if one doesn't exist
+// - syscall.O_RDONLY - open fifo only from reader side
+// - syscall.O_WRONLY - open fifo only from writer side
+// - syscall.O_RDWR - open fifo from both sides, never block on syscall level
+// - syscall.O_NONBLOCK - return io.ReadWriteCloser even if other side of the
+//     fifo isn't open. read/write will be connected after the actual fifo is
+//     open or after fifo is closed.
+func OpenFifo(ctx context.Context, fn string, flag int, perm os.FileMode) (io.ReadWriteCloser, error) {
+	if _, err := os.Stat(fn); err != nil {
+		if os.IsNotExist(err) && flag&syscall.O_CREAT != 0 {
+			if err := mkfifo(fn, uint32(perm&os.ModePerm)); err != nil && !os.IsExist(err) {
+				return nil, errors.Wrapf(err, "error creating fifo %v", fn)
+			}
+		} else {
+			return nil, err
+		}
+	}
+
+	block := flag&syscall.O_NONBLOCK == 0 || flag&syscall.O_RDWR != 0
+
+	flag &= ^syscall.O_CREAT
+	flag &= ^syscall.O_NONBLOCK
+
+	h, err := getHandle(fn)
+	if err != nil {
+		return nil, err
+	}
+
+	f := &fifo{
+		handle:  h,
+		flag:    flag,
+		opened:  make(chan struct{}),
+		closed:  make(chan struct{}),
+		closing: make(chan struct{}),
+	}
+
+	wg := leakCheckWg
+	if wg != nil {
+		wg.Add(2)
+	}
+
+	go func() {
+		if wg != nil {
+			defer wg.Done()
+		}
+		select {
+		case <-ctx.Done():
+			select {
+			case <-f.opened:
+			default:
+				f.Close()
+			}
+		case <-f.opened:
+		case <-f.closed:
+		}
+	}()
+	go func() {
+		if wg != nil {
+			defer wg.Done()
+		}
+		var file *os.File
+		fn, err := h.Path()
+		if err == nil {
+			file, err = os.OpenFile(fn, flag, 0)
+		}
+		select {
+		case <-f.closing:
+			if err == nil {
+				select {
+				case <-ctx.Done():
+					err = ctx.Err()
+				default:
+					err = errors.Errorf("fifo %v was closed before opening", h.Name())
+				}
+				if file != nil {
+					file.Close()
+				}
+			}
+		default:
+		}
+		if err != nil {
+			f.closedOnce.Do(func() {
+				f.err = err
+				close(f.closed)
+			})
+			return
+		}
+		f.file = file
+		close(f.opened)
+	}()
+	if block {
+		select {
+		case <-f.opened:
+		case <-f.closed:
+			return nil, f.err
+		}
+	}
+	return f, nil
+}
+
+// Read from a fifo to a byte array.
+func (f *fifo) Read(b []byte) (int, error) {
+	if f.flag&syscall.O_WRONLY > 0 {
+		return 0, errors.New("reading from write-only fifo")
+	}
+	select {
+	case <-f.opened:
+		return f.file.Read(b)
+	default:
+	}
+	select {
+	case <-f.opened:
+		return f.file.Read(b)
+	case <-f.closed:
+		return 0, errors.New("reading from a closed fifo")
+	}
+}
+
+// Write from byte array to a fifo.
+func (f *fifo) Write(b []byte) (int, error) {
+	if f.flag&(syscall.O_WRONLY|syscall.O_RDWR) == 0 {
+		return 0, errors.New("writing to read-only fifo")
+	}
+	select {
+	case <-f.opened:
+		return f.file.Write(b)
+	default:
+	}
+	select {
+	case <-f.opened:
+		return f.file.Write(b)
+	case <-f.closed:
+		return 0, errors.New("writing to a closed fifo")
+	}
+}
+
+// Close the fifo. Next reads/writes will error. This method can also be used
+// before open(2) has returned and fifo was never opened.
+func (f *fifo) Close() (retErr error) {
+	for {
+		select {
+		case <-f.closed:
+			f.handle.Close()
+			return
+		default:
+			select {
+			case <-f.opened:
+				f.closedOnce.Do(func() {
+					retErr = f.file.Close()
+					f.err = retErr
+					close(f.closed)
+				})
+			default:
+				if f.flag&syscall.O_RDWR != 0 {
+					runtime.Gosched()
+					break
+				}
+				f.closingOnce.Do(func() {
+					close(f.closing)
+				})
+				reverseMode := syscall.O_WRONLY
+				if f.flag&syscall.O_WRONLY > 0 {
+					reverseMode = syscall.O_RDONLY
+				}
+				fn, err := f.handle.Path()
+				// if Close() is called concurrently(shouldn't) it may cause error
+				// because handle is closed
+				select {
+				case <-f.closed:
+				default:
+					if err != nil {
+						// Path has become invalid. We will leak a goroutine.
+						// This case should not happen in linux.
+						f.closedOnce.Do(func() {
+							f.err = err
+							close(f.closed)
+						})
+						<-f.closed
+						break
+					}
+					f, err := os.OpenFile(fn, reverseMode|syscall.O_NONBLOCK, 0)
+					if err == nil {
+						f.Close()
+					}
+					runtime.Gosched()
+				}
+			}
+		}
+	}
+}
diff --git a/vendor/github.com/containerd/fifo/handle_linux.go b/vendor/github.com/containerd/fifo/handle_linux.go
new file mode 100644
index 0000000000..6ac89b6a4d
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/handle_linux.go
@@ -0,0 +1,97 @@
+// +build linux
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package fifo
+
+import (
+	"fmt"
+	"os"
+	"sync"
+	"syscall"
+
+	"github.com/pkg/errors"
+)
+
+const O_PATH = 010000000
+
+type handle struct {
+	f         *os.File
+	fd        uintptr
+	dev       uint64
+	ino       uint64
+	closeOnce sync.Once
+	name      string
+}
+
+func getHandle(fn string) (*handle, error) {
+	f, err := os.OpenFile(fn, O_PATH, 0)
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to open %v with O_PATH", fn)
+	}
+
+	var (
+		stat syscall.Stat_t
+		fd   = f.Fd()
+	)
+	if err := syscall.Fstat(int(fd), &stat); err != nil {
+		f.Close()
+		return nil, errors.Wrapf(err, "failed to stat handle %v", fd)
+	}
+
+	h := &handle{
+		f:    f,
+		name: fn,
+		dev:  uint64(stat.Dev),
+		ino:  stat.Ino,
+		fd:   fd,
+	}
+
+	// check /proc just in case
+	if _, err := os.Stat(h.procPath()); err != nil {
+		f.Close()
+		return nil, errors.Wrapf(err, "couldn't stat %v", h.procPath())
+	}
+
+	return h, nil
+}
+
+func (h *handle) procPath() string {
+	return fmt.Sprintf("/proc/self/fd/%d", h.fd)
+}
+
+func (h *handle) Name() string {
+	return h.name
+}
+
+func (h *handle) Path() (string, error) {
+	var stat syscall.Stat_t
+	if err := syscall.Stat(h.procPath(), &stat); err != nil {
+		return "", errors.Wrapf(err, "path %v could not be statted", h.procPath())
+	}
+	if uint64(stat.Dev) != h.dev || stat.Ino != h.ino {
+		return "", errors.Errorf("failed to verify handle %v/%v %v/%v", stat.Dev, h.dev, stat.Ino, h.ino)
+	}
+	return h.procPath(), nil
+}
+
+func (h *handle) Close() error {
+	h.closeOnce.Do(func() {
+		h.f.Close()
+	})
+	return nil
+}
diff --git a/vendor/github.com/containerd/fifo/handle_nolinux.go b/vendor/github.com/containerd/fifo/handle_nolinux.go
new file mode 100644
index 0000000000..4f2a282b2b
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/handle_nolinux.go
@@ -0,0 +1,65 @@
+// +build !linux
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package fifo
+
+import (
+	"syscall"
+
+	"github.com/pkg/errors"
+)
+
+type handle struct {
+	fn  string
+	dev uint64
+	ino uint64
+}
+
+func getHandle(fn string) (*handle, error) {
+	var stat syscall.Stat_t
+	if err := syscall.Stat(fn, &stat); err != nil {
+		return nil, errors.Wrapf(err, "failed to stat %v", fn)
+	}
+
+	h := &handle{
+		fn:  fn,
+		dev: uint64(stat.Dev),
+		ino: uint64(stat.Ino),
+	}
+
+	return h, nil
+}
+
+func (h *handle) Path() (string, error) {
+	var stat syscall.Stat_t
+	if err := syscall.Stat(h.fn, &stat); err != nil {
+		return "", errors.Wrapf(err, "path %v could not be statted", h.fn)
+	}
+	if uint64(stat.Dev) != h.dev || uint64(stat.Ino) != h.ino {
+		return "", errors.Errorf("failed to verify handle %v/%v %v/%v for %v", stat.Dev, h.dev, stat.Ino, h.ino, h.fn)
+	}
+	return h.fn, nil
+}
+
+func (h *handle) Name() string {
+	return h.fn
+}
+
+func (h *handle) Close() error {
+	return nil
+}
diff --git a/vendor/github.com/containerd/fifo/mkfifo_nosolaris.go b/vendor/github.com/containerd/fifo/mkfifo_nosolaris.go
new file mode 100644
index 0000000000..2799a06d10
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/mkfifo_nosolaris.go
@@ -0,0 +1,25 @@
+// +build !solaris
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package fifo
+
+import "syscall"
+
+func mkfifo(path string, mode uint32) (err error) {
+	return syscall.Mkfifo(path, mode)
+}
diff --git a/vendor/github.com/containerd/fifo/mkfifo_solaris.go b/vendor/github.com/containerd/fifo/mkfifo_solaris.go
new file mode 100644
index 0000000000..1ecd722ae2
--- /dev/null
+++ b/vendor/github.com/containerd/fifo/mkfifo_solaris.go
@@ -0,0 +1,27 @@
+// +build solaris
+
+/*
+   Copyright The containerd Authors.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+*/
+
+package fifo
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+func mkfifo(path string, mode uint32) (err error) {
+	return unix.Mkfifo(path, mode)
+}
diff --git a/vendor/github.com/coreos/etcd/Documentation/README.md b/vendor/github.com/coreos/etcd/Documentation/README.md
new file mode 120000
index 0000000000..8828313f5b
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/Documentation/README.md
@@ -0,0 +1 @@
+docs.md
\ No newline at end of file
diff --git a/vendor/github.com/coreos/etcd/LICENSE b/vendor/github.com/coreos/etcd/LICENSE
new file mode 100644
index 0000000000..d645695673
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/LICENSE
@@ -0,0 +1,202 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/coreos/etcd/NOTICE b/vendor/github.com/coreos/etcd/NOTICE
new file mode 100644
index 0000000000..b39ddfa5cb
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/NOTICE
@@ -0,0 +1,5 @@
+CoreOS Project
+Copyright 2014 CoreOS, Inc
+
+This product includes software developed at CoreOS, Inc.
+(http://www.coreos.com/).
diff --git a/vendor/github.com/coreos/etcd/client/auth_role.go b/vendor/github.com/coreos/etcd/client/auth_role.go
new file mode 100644
index 0000000000..b6ba7e150d
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/auth_role.go
@@ -0,0 +1,236 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"net/http"
+	"net/url"
+)
+
+type Role struct {
+	Role        string       `json:"role"`
+	Permissions Permissions  `json:"permissions"`
+	Grant       *Permissions `json:"grant,omitempty"`
+	Revoke      *Permissions `json:"revoke,omitempty"`
+}
+
+type Permissions struct {
+	KV rwPermission `json:"kv"`
+}
+
+type rwPermission struct {
+	Read  []string `json:"read"`
+	Write []string `json:"write"`
+}
+
+type PermissionType int
+
+const (
+	ReadPermission PermissionType = iota
+	WritePermission
+	ReadWritePermission
+)
+
+// NewAuthRoleAPI constructs a new AuthRoleAPI that uses HTTP to
+// interact with etcd's role creation and modification features.
+func NewAuthRoleAPI(c Client) AuthRoleAPI {
+	return &httpAuthRoleAPI{
+		client: c,
+	}
+}
+
+type AuthRoleAPI interface {
+	// AddRole adds a role.
+	AddRole(ctx context.Context, role string) error
+
+	// RemoveRole removes a role.
+	RemoveRole(ctx context.Context, role string) error
+
+	// GetRole retrieves role details.
+	GetRole(ctx context.Context, role string) (*Role, error)
+
+	// GrantRoleKV grants a role some permission prefixes for the KV store.
+	GrantRoleKV(ctx context.Context, role string, prefixes []string, permType PermissionType) (*Role, error)
+
+	// RevokeRoleKV revokes some permission prefixes for a role on the KV store.
+	RevokeRoleKV(ctx context.Context, role string, prefixes []string, permType PermissionType) (*Role, error)
+
+	// ListRoles lists roles.
+	ListRoles(ctx context.Context) ([]string, error)
+}
+
+type httpAuthRoleAPI struct {
+	client httpClient
+}
+
+type authRoleAPIAction struct {
+	verb string
+	name string
+	role *Role
+}
+
+type authRoleAPIList struct{}
+
+func (list *authRoleAPIList) HTTPRequest(ep url.URL) *http.Request {
+	u := v2AuthURL(ep, "roles", "")
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+func (l *authRoleAPIAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2AuthURL(ep, "roles", l.name)
+	if l.role == nil {
+		req, _ := http.NewRequest(l.verb, u.String(), nil)
+		return req
+	}
+	b, err := json.Marshal(l.role)
+	if err != nil {
+		panic(err)
+	}
+	body := bytes.NewReader(b)
+	req, _ := http.NewRequest(l.verb, u.String(), body)
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+func (r *httpAuthRoleAPI) ListRoles(ctx context.Context) ([]string, error) {
+	resp, body, err := r.client.Do(ctx, &authRoleAPIList{})
+	if err != nil {
+		return nil, err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		return nil, err
+	}
+	var roleList struct {
+		Roles []Role `json:"roles"`
+	}
+	if err = json.Unmarshal(body, &roleList); err != nil {
+		return nil, err
+	}
+	ret := make([]string, 0, len(roleList.Roles))
+	for _, r := range roleList.Roles {
+		ret = append(ret, r.Role)
+	}
+	return ret, nil
+}
+
+func (r *httpAuthRoleAPI) AddRole(ctx context.Context, rolename string) error {
+	role := &Role{
+		Role: rolename,
+	}
+	return r.addRemoveRole(ctx, &authRoleAPIAction{
+		verb: "PUT",
+		name: rolename,
+		role: role,
+	})
+}
+
+func (r *httpAuthRoleAPI) RemoveRole(ctx context.Context, rolename string) error {
+	return r.addRemoveRole(ctx, &authRoleAPIAction{
+		verb: "DELETE",
+		name: rolename,
+	})
+}
+
+func (r *httpAuthRoleAPI) addRemoveRole(ctx context.Context, req *authRoleAPIAction) error {
+	resp, body, err := r.client.Do(ctx, req)
+	if err != nil {
+		return err
+	}
+	if err := assertStatusCode(resp.StatusCode, http.StatusOK, http.StatusCreated); err != nil {
+		var sec authError
+		err := json.Unmarshal(body, &sec)
+		if err != nil {
+			return err
+		}
+		return sec
+	}
+	return nil
+}
+
+func (r *httpAuthRoleAPI) GetRole(ctx context.Context, rolename string) (*Role, error) {
+	return r.modRole(ctx, &authRoleAPIAction{
+		verb: "GET",
+		name: rolename,
+	})
+}
+
+func buildRWPermission(prefixes []string, permType PermissionType) rwPermission {
+	var out rwPermission
+	switch permType {
+	case ReadPermission:
+		out.Read = prefixes
+	case WritePermission:
+		out.Write = prefixes
+	case ReadWritePermission:
+		out.Read = prefixes
+		out.Write = prefixes
+	}
+	return out
+}
+
+func (r *httpAuthRoleAPI) GrantRoleKV(ctx context.Context, rolename string, prefixes []string, permType PermissionType) (*Role, error) {
+	rwp := buildRWPermission(prefixes, permType)
+	role := &Role{
+		Role: rolename,
+		Grant: &Permissions{
+			KV: rwp,
+		},
+	}
+	return r.modRole(ctx, &authRoleAPIAction{
+		verb: "PUT",
+		name: rolename,
+		role: role,
+	})
+}
+
+func (r *httpAuthRoleAPI) RevokeRoleKV(ctx context.Context, rolename string, prefixes []string, permType PermissionType) (*Role, error) {
+	rwp := buildRWPermission(prefixes, permType)
+	role := &Role{
+		Role: rolename,
+		Revoke: &Permissions{
+			KV: rwp,
+		},
+	}
+	return r.modRole(ctx, &authRoleAPIAction{
+		verb: "PUT",
+		name: rolename,
+		role: role,
+	})
+}
+
+func (r *httpAuthRoleAPI) modRole(ctx context.Context, req *authRoleAPIAction) (*Role, error) {
+	resp, body, err := r.client.Do(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		var sec authError
+		err = json.Unmarshal(body, &sec)
+		if err != nil {
+			return nil, err
+		}
+		return nil, sec
+	}
+	var role Role
+	if err = json.Unmarshal(body, &role); err != nil {
+		return nil, err
+	}
+	return &role, nil
+}
diff --git a/vendor/github.com/coreos/etcd/client/auth_user.go b/vendor/github.com/coreos/etcd/client/auth_user.go
new file mode 100644
index 0000000000..8e7e2efe83
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/auth_user.go
@@ -0,0 +1,319 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"net/http"
+	"net/url"
+	"path"
+)
+
+var (
+	defaultV2AuthPrefix = "/v2/auth"
+)
+
+type User struct {
+	User     string   `json:"user"`
+	Password string   `json:"password,omitempty"`
+	Roles    []string `json:"roles"`
+	Grant    []string `json:"grant,omitempty"`
+	Revoke   []string `json:"revoke,omitempty"`
+}
+
+// userListEntry is the user representation given by the server for ListUsers
+type userListEntry struct {
+	User  string `json:"user"`
+	Roles []Role `json:"roles"`
+}
+
+type UserRoles struct {
+	User  string `json:"user"`
+	Roles []Role `json:"roles"`
+}
+
+func v2AuthURL(ep url.URL, action string, name string) *url.URL {
+	if name != "" {
+		ep.Path = path.Join(ep.Path, defaultV2AuthPrefix, action, name)
+		return &ep
+	}
+	ep.Path = path.Join(ep.Path, defaultV2AuthPrefix, action)
+	return &ep
+}
+
+// NewAuthAPI constructs a new AuthAPI that uses HTTP to
+// interact with etcd's general auth features.
+func NewAuthAPI(c Client) AuthAPI {
+	return &httpAuthAPI{
+		client: c,
+	}
+}
+
+type AuthAPI interface {
+	// Enable auth.
+	Enable(ctx context.Context) error
+
+	// Disable auth.
+	Disable(ctx context.Context) error
+}
+
+type httpAuthAPI struct {
+	client httpClient
+}
+
+func (s *httpAuthAPI) Enable(ctx context.Context) error {
+	return s.enableDisable(ctx, &authAPIAction{"PUT"})
+}
+
+func (s *httpAuthAPI) Disable(ctx context.Context) error {
+	return s.enableDisable(ctx, &authAPIAction{"DELETE"})
+}
+
+func (s *httpAuthAPI) enableDisable(ctx context.Context, req httpAction) error {
+	resp, body, err := s.client.Do(ctx, req)
+	if err != nil {
+		return err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK, http.StatusCreated); err != nil {
+		var sec authError
+		err = json.Unmarshal(body, &sec)
+		if err != nil {
+			return err
+		}
+		return sec
+	}
+	return nil
+}
+
+type authAPIAction struct {
+	verb string
+}
+
+func (l *authAPIAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2AuthURL(ep, "enable", "")
+	req, _ := http.NewRequest(l.verb, u.String(), nil)
+	return req
+}
+
+type authError struct {
+	Message string `json:"message"`
+	Code    int    `json:"-"`
+}
+
+func (e authError) Error() string {
+	return e.Message
+}
+
+// NewAuthUserAPI constructs a new AuthUserAPI that uses HTTP to
+// interact with etcd's user creation and modification features.
+func NewAuthUserAPI(c Client) AuthUserAPI {
+	return &httpAuthUserAPI{
+		client: c,
+	}
+}
+
+type AuthUserAPI interface {
+	// AddUser adds a user.
+	AddUser(ctx context.Context, username string, password string) error
+
+	// RemoveUser removes a user.
+	RemoveUser(ctx context.Context, username string) error
+
+	// GetUser retrieves user details.
+	GetUser(ctx context.Context, username string) (*User, error)
+
+	// GrantUser grants a user some permission roles.
+	GrantUser(ctx context.Context, username string, roles []string) (*User, error)
+
+	// RevokeUser revokes some permission roles from a user.
+	RevokeUser(ctx context.Context, username string, roles []string) (*User, error)
+
+	// ChangePassword changes the user's password.
+	ChangePassword(ctx context.Context, username string, password string) (*User, error)
+
+	// ListUsers lists the users.
+	ListUsers(ctx context.Context) ([]string, error)
+}
+
+type httpAuthUserAPI struct {
+	client httpClient
+}
+
+type authUserAPIAction struct {
+	verb     string
+	username string
+	user     *User
+}
+
+type authUserAPIList struct{}
+
+func (list *authUserAPIList) HTTPRequest(ep url.URL) *http.Request {
+	u := v2AuthURL(ep, "users", "")
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+func (l *authUserAPIAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2AuthURL(ep, "users", l.username)
+	if l.user == nil {
+		req, _ := http.NewRequest(l.verb, u.String(), nil)
+		return req
+	}
+	b, err := json.Marshal(l.user)
+	if err != nil {
+		panic(err)
+	}
+	body := bytes.NewReader(b)
+	req, _ := http.NewRequest(l.verb, u.String(), body)
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+func (u *httpAuthUserAPI) ListUsers(ctx context.Context) ([]string, error) {
+	resp, body, err := u.client.Do(ctx, &authUserAPIList{})
+	if err != nil {
+		return nil, err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		var sec authError
+		err = json.Unmarshal(body, &sec)
+		if err != nil {
+			return nil, err
+		}
+		return nil, sec
+	}
+
+	var userList struct {
+		Users []userListEntry `json:"users"`
+	}
+
+	if err = json.Unmarshal(body, &userList); err != nil {
+		return nil, err
+	}
+
+	ret := make([]string, 0, len(userList.Users))
+	for _, u := range userList.Users {
+		ret = append(ret, u.User)
+	}
+	return ret, nil
+}
+
+func (u *httpAuthUserAPI) AddUser(ctx context.Context, username string, password string) error {
+	user := &User{
+		User:     username,
+		Password: password,
+	}
+	return u.addRemoveUser(ctx, &authUserAPIAction{
+		verb:     "PUT",
+		username: username,
+		user:     user,
+	})
+}
+
+func (u *httpAuthUserAPI) RemoveUser(ctx context.Context, username string) error {
+	return u.addRemoveUser(ctx, &authUserAPIAction{
+		verb:     "DELETE",
+		username: username,
+	})
+}
+
+func (u *httpAuthUserAPI) addRemoveUser(ctx context.Context, req *authUserAPIAction) error {
+	resp, body, err := u.client.Do(ctx, req)
+	if err != nil {
+		return err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK, http.StatusCreated); err != nil {
+		var sec authError
+		err = json.Unmarshal(body, &sec)
+		if err != nil {
+			return err
+		}
+		return sec
+	}
+	return nil
+}
+
+func (u *httpAuthUserAPI) GetUser(ctx context.Context, username string) (*User, error) {
+	return u.modUser(ctx, &authUserAPIAction{
+		verb:     "GET",
+		username: username,
+	})
+}
+
+func (u *httpAuthUserAPI) GrantUser(ctx context.Context, username string, roles []string) (*User, error) {
+	user := &User{
+		User:  username,
+		Grant: roles,
+	}
+	return u.modUser(ctx, &authUserAPIAction{
+		verb:     "PUT",
+		username: username,
+		user:     user,
+	})
+}
+
+func (u *httpAuthUserAPI) RevokeUser(ctx context.Context, username string, roles []string) (*User, error) {
+	user := &User{
+		User:   username,
+		Revoke: roles,
+	}
+	return u.modUser(ctx, &authUserAPIAction{
+		verb:     "PUT",
+		username: username,
+		user:     user,
+	})
+}
+
+func (u *httpAuthUserAPI) ChangePassword(ctx context.Context, username string, password string) (*User, error) {
+	user := &User{
+		User:     username,
+		Password: password,
+	}
+	return u.modUser(ctx, &authUserAPIAction{
+		verb:     "PUT",
+		username: username,
+		user:     user,
+	})
+}
+
+func (u *httpAuthUserAPI) modUser(ctx context.Context, req *authUserAPIAction) (*User, error) {
+	resp, body, err := u.client.Do(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+	if err = assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		var sec authError
+		err = json.Unmarshal(body, &sec)
+		if err != nil {
+			return nil, err
+		}
+		return nil, sec
+	}
+	var user User
+	if err = json.Unmarshal(body, &user); err != nil {
+		var userR UserRoles
+		if urerr := json.Unmarshal(body, &userR); urerr != nil {
+			return nil, err
+		}
+		user.User = userR.User
+		for _, r := range userR.Roles {
+			user.Roles = append(user.Roles, r.Role)
+		}
+	}
+	return &user, nil
+}
diff --git a/vendor/github.com/coreos/etcd/client/cancelreq.go b/vendor/github.com/coreos/etcd/client/cancelreq.go
new file mode 100644
index 0000000000..76d1f04019
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/cancelreq.go
@@ -0,0 +1,18 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// borrowed from golang/net/context/ctxhttp/cancelreq.go
+
+package client
+
+import "net/http"
+
+func requestCanceler(tr CancelableTransport, req *http.Request) func() {
+	ch := make(chan struct{})
+	req.Cancel = ch
+
+	return func() {
+		close(ch)
+	}
+}
diff --git a/vendor/github.com/coreos/etcd/client/client.go b/vendor/github.com/coreos/etcd/client/client.go
new file mode 100644
index 0000000000..e687450566
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/client.go
@@ -0,0 +1,710 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"math/rand"
+	"net"
+	"net/http"
+	"net/url"
+	"sort"
+	"strconv"
+	"sync"
+	"time"
+
+	"github.com/coreos/etcd/version"
+)
+
+var (
+	ErrNoEndpoints           = errors.New("client: no endpoints available")
+	ErrTooManyRedirects      = errors.New("client: too many redirects")
+	ErrClusterUnavailable    = errors.New("client: etcd cluster is unavailable or misconfigured")
+	ErrNoLeaderEndpoint      = errors.New("client: no leader endpoint available")
+	errTooManyRedirectChecks = errors.New("client: too many redirect checks")
+
+	// oneShotCtxValue is set on a context using WithValue(&oneShotValue) so
+	// that Do() will not retry a request
+	oneShotCtxValue interface{}
+)
+
+var DefaultRequestTimeout = 5 * time.Second
+
+var DefaultTransport CancelableTransport = &http.Transport{
+	Proxy: http.ProxyFromEnvironment,
+	Dial: (&net.Dialer{
+		Timeout:   30 * time.Second,
+		KeepAlive: 30 * time.Second,
+	}).Dial,
+	TLSHandshakeTimeout: 10 * time.Second,
+}
+
+type EndpointSelectionMode int
+
+const (
+	// EndpointSelectionRandom is the default value of the 'SelectionMode'.
+	// As the name implies, the client object will pick a node from the members
+	// of the cluster in a random fashion. If the cluster has three members, A, B,
+	// and C, the client picks any node from its three members as its request
+	// destination.
+	EndpointSelectionRandom EndpointSelectionMode = iota
+
+	// If 'SelectionMode' is set to 'EndpointSelectionPrioritizeLeader',
+	// requests are sent directly to the cluster leader. This reduces
+	// forwarding roundtrips compared to making requests to etcd followers
+	// who then forward them to the cluster leader. In the event of a leader
+	// failure, however, clients configured this way cannot prioritize among
+	// the remaining etcd followers. Therefore, when a client sets 'SelectionMode'
+	// to 'EndpointSelectionPrioritizeLeader', it must use 'client.AutoSync()' to
+	// maintain its knowledge of current cluster state.
+	//
+	// This mode should be used with Client.AutoSync().
+	EndpointSelectionPrioritizeLeader
+)
+
+type Config struct {
+	// Endpoints defines a set of URLs (schemes, hosts and ports only)
+	// that can be used to communicate with a logical etcd cluster. For
+	// example, a three-node cluster could be provided like so:
+	//
+	// 	Endpoints: []string{
+	//		"http://node1.example.com:2379",
+	//		"http://node2.example.com:2379",
+	//		"http://node3.example.com:2379",
+	//	}
+	//
+	// If multiple endpoints are provided, the Client will attempt to
+	// use them all in the event that one or more of them are unusable.
+	//
+	// If Client.Sync is ever called, the Client may cache an alternate
+	// set of endpoints to continue operation.
+	Endpoints []string
+
+	// Transport is used by the Client to drive HTTP requests. If not
+	// provided, DefaultTransport will be used.
+	Transport CancelableTransport
+
+	// CheckRedirect specifies the policy for handling HTTP redirects.
+	// If CheckRedirect is not nil, the Client calls it before
+	// following an HTTP redirect. The sole argument is the number of
+	// requests that have already been made. If CheckRedirect returns
+	// an error, Client.Do will not make any further requests and return
+	// the error back it to the caller.
+	//
+	// If CheckRedirect is nil, the Client uses its default policy,
+	// which is to stop after 10 consecutive requests.
+	CheckRedirect CheckRedirectFunc
+
+	// Username specifies the user credential to add as an authorization header
+	Username string
+
+	// Password is the password for the specified user to add as an authorization header
+	// to the request.
+	Password string
+
+	// HeaderTimeoutPerRequest specifies the time limit to wait for response
+	// header in a single request made by the Client. The timeout includes
+	// connection time, any redirects, and header wait time.
+	//
+	// For non-watch GET request, server returns the response body immediately.
+	// For PUT/POST/DELETE request, server will attempt to commit request
+	// before responding, which is expected to take `100ms + 2 * RTT`.
+	// For watch request, server returns the header immediately to notify Client
+	// watch start. But if server is behind some kind of proxy, the response
+	// header may be cached at proxy, and Client cannot rely on this behavior.
+	//
+	// Especially, wait request will ignore this timeout.
+	//
+	// One API call may send multiple requests to different etcd servers until it
+	// succeeds. Use context of the API to specify the overall timeout.
+	//
+	// A HeaderTimeoutPerRequest of zero means no timeout.
+	HeaderTimeoutPerRequest time.Duration
+
+	// SelectionMode is an EndpointSelectionMode enum that specifies the
+	// policy for choosing the etcd cluster node to which requests are sent.
+	SelectionMode EndpointSelectionMode
+}
+
+func (cfg *Config) transport() CancelableTransport {
+	if cfg.Transport == nil {
+		return DefaultTransport
+	}
+	return cfg.Transport
+}
+
+func (cfg *Config) checkRedirect() CheckRedirectFunc {
+	if cfg.CheckRedirect == nil {
+		return DefaultCheckRedirect
+	}
+	return cfg.CheckRedirect
+}
+
+// CancelableTransport mimics net/http.Transport, but requires that
+// the object also support request cancellation.
+type CancelableTransport interface {
+	http.RoundTripper
+	CancelRequest(req *http.Request)
+}
+
+type CheckRedirectFunc func(via int) error
+
+// DefaultCheckRedirect follows up to 10 redirects, but no more.
+var DefaultCheckRedirect CheckRedirectFunc = func(via int) error {
+	if via > 10 {
+		return ErrTooManyRedirects
+	}
+	return nil
+}
+
+type Client interface {
+	// Sync updates the internal cache of the etcd cluster's membership.
+	Sync(context.Context) error
+
+	// AutoSync periodically calls Sync() every given interval.
+	// The recommended sync interval is 10 seconds to 1 minute, which does
+	// not bring too much overhead to server and makes client catch up the
+	// cluster change in time.
+	//
+	// The example to use it:
+	//
+	//  for {
+	//      err := client.AutoSync(ctx, 10*time.Second)
+	//      if err == context.DeadlineExceeded || err == context.Canceled {
+	//          break
+	//      }
+	//      log.Print(err)
+	//  }
+	AutoSync(context.Context, time.Duration) error
+
+	// Endpoints returns a copy of the current set of API endpoints used
+	// by Client to resolve HTTP requests. If Sync has ever been called,
+	// this may differ from the initial Endpoints provided in the Config.
+	Endpoints() []string
+
+	// SetEndpoints sets the set of API endpoints used by Client to resolve
+	// HTTP requests. If the given endpoints are not valid, an error will be
+	// returned
+	SetEndpoints(eps []string) error
+
+	// GetVersion retrieves the current etcd server and cluster version
+	GetVersion(ctx context.Context) (*version.Versions, error)
+
+	httpClient
+}
+
+func New(cfg Config) (Client, error) {
+	c := &httpClusterClient{
+		clientFactory: newHTTPClientFactory(cfg.transport(), cfg.checkRedirect(), cfg.HeaderTimeoutPerRequest),
+		rand:          rand.New(rand.NewSource(int64(time.Now().Nanosecond()))),
+		selectionMode: cfg.SelectionMode,
+	}
+	if cfg.Username != "" {
+		c.credentials = &credentials{
+			username: cfg.Username,
+			password: cfg.Password,
+		}
+	}
+	if err := c.SetEndpoints(cfg.Endpoints); err != nil {
+		return nil, err
+	}
+	return c, nil
+}
+
+type httpClient interface {
+	Do(context.Context, httpAction) (*http.Response, []byte, error)
+}
+
+func newHTTPClientFactory(tr CancelableTransport, cr CheckRedirectFunc, headerTimeout time.Duration) httpClientFactory {
+	return func(ep url.URL) httpClient {
+		return &redirectFollowingHTTPClient{
+			checkRedirect: cr,
+			client: &simpleHTTPClient{
+				transport:     tr,
+				endpoint:      ep,
+				headerTimeout: headerTimeout,
+			},
+		}
+	}
+}
+
+type credentials struct {
+	username string
+	password string
+}
+
+type httpClientFactory func(url.URL) httpClient
+
+type httpAction interface {
+	HTTPRequest(url.URL) *http.Request
+}
+
+type httpClusterClient struct {
+	clientFactory httpClientFactory
+	endpoints     []url.URL
+	pinned        int
+	credentials   *credentials
+	sync.RWMutex
+	rand          *rand.Rand
+	selectionMode EndpointSelectionMode
+}
+
+func (c *httpClusterClient) getLeaderEndpoint(ctx context.Context, eps []url.URL) (string, error) {
+	ceps := make([]url.URL, len(eps))
+	copy(ceps, eps)
+
+	// To perform a lookup on the new endpoint list without using the current
+	// client, we'll copy it
+	clientCopy := &httpClusterClient{
+		clientFactory: c.clientFactory,
+		credentials:   c.credentials,
+		rand:          c.rand,
+
+		pinned:    0,
+		endpoints: ceps,
+	}
+
+	mAPI := NewMembersAPI(clientCopy)
+	leader, err := mAPI.Leader(ctx)
+	if err != nil {
+		return "", err
+	}
+	if len(leader.ClientURLs) == 0 {
+		return "", ErrNoLeaderEndpoint
+	}
+
+	return leader.ClientURLs[0], nil // TODO: how to handle multiple client URLs?
+}
+
+func (c *httpClusterClient) parseEndpoints(eps []string) ([]url.URL, error) {
+	if len(eps) == 0 {
+		return []url.URL{}, ErrNoEndpoints
+	}
+
+	neps := make([]url.URL, len(eps))
+	for i, ep := range eps {
+		u, err := url.Parse(ep)
+		if err != nil {
+			return []url.URL{}, err
+		}
+		neps[i] = *u
+	}
+	return neps, nil
+}
+
+func (c *httpClusterClient) SetEndpoints(eps []string) error {
+	neps, err := c.parseEndpoints(eps)
+	if err != nil {
+		return err
+	}
+
+	c.Lock()
+	defer c.Unlock()
+
+	c.endpoints = shuffleEndpoints(c.rand, neps)
+	// We're not doing anything for PrioritizeLeader here. This is
+	// due to not having a context meaning we can't call getLeaderEndpoint
+	// However, if you're using PrioritizeLeader, you've already been told
+	// to regularly call sync, where we do have a ctx, and can figure the
+	// leader. PrioritizeLeader is also quite a loose guarantee, so deal
+	// with it
+	c.pinned = 0
+
+	return nil
+}
+
+func (c *httpClusterClient) Do(ctx context.Context, act httpAction) (*http.Response, []byte, error) {
+	action := act
+	c.RLock()
+	leps := len(c.endpoints)
+	eps := make([]url.URL, leps)
+	n := copy(eps, c.endpoints)
+	pinned := c.pinned
+
+	if c.credentials != nil {
+		action = &authedAction{
+			act:         act,
+			credentials: *c.credentials,
+		}
+	}
+	c.RUnlock()
+
+	if leps == 0 {
+		return nil, nil, ErrNoEndpoints
+	}
+
+	if leps != n {
+		return nil, nil, errors.New("unable to pick endpoint: copy failed")
+	}
+
+	var resp *http.Response
+	var body []byte
+	var err error
+	cerr := &ClusterError{}
+	isOneShot := ctx.Value(&oneShotCtxValue) != nil
+
+	for i := pinned; i < leps+pinned; i++ {
+		k := i % leps
+		hc := c.clientFactory(eps[k])
+		resp, body, err = hc.Do(ctx, action)
+		if err != nil {
+			cerr.Errors = append(cerr.Errors, err)
+			if err == ctx.Err() {
+				return nil, nil, ctx.Err()
+			}
+			if err == context.Canceled || err == context.DeadlineExceeded {
+				return nil, nil, err
+			}
+		} else if resp.StatusCode/100 == 5 {
+			switch resp.StatusCode {
+			case http.StatusInternalServerError, http.StatusServiceUnavailable:
+				// TODO: make sure this is a no leader response
+				cerr.Errors = append(cerr.Errors, fmt.Errorf("client: etcd member %s has no leader", eps[k].String()))
+			default:
+				cerr.Errors = append(cerr.Errors, fmt.Errorf("client: etcd member %s returns server error [%s]", eps[k].String(), http.StatusText(resp.StatusCode)))
+			}
+			err = cerr.Errors[0]
+		}
+		if err != nil {
+			if !isOneShot {
+				continue
+			}
+			c.Lock()
+			c.pinned = (k + 1) % leps
+			c.Unlock()
+			return nil, nil, err
+		}
+		if k != pinned {
+			c.Lock()
+			c.pinned = k
+			c.Unlock()
+		}
+		return resp, body, nil
+	}
+
+	return nil, nil, cerr
+}
+
+func (c *httpClusterClient) Endpoints() []string {
+	c.RLock()
+	defer c.RUnlock()
+
+	eps := make([]string, len(c.endpoints))
+	for i, ep := range c.endpoints {
+		eps[i] = ep.String()
+	}
+
+	return eps
+}
+
+func (c *httpClusterClient) Sync(ctx context.Context) error {
+	mAPI := NewMembersAPI(c)
+	ms, err := mAPI.List(ctx)
+	if err != nil {
+		return err
+	}
+
+	var eps []string
+	for _, m := range ms {
+		eps = append(eps, m.ClientURLs...)
+	}
+
+	neps, err := c.parseEndpoints(eps)
+	if err != nil {
+		return err
+	}
+
+	npin := 0
+
+	switch c.selectionMode {
+	case EndpointSelectionRandom:
+		c.RLock()
+		eq := endpointsEqual(c.endpoints, neps)
+		c.RUnlock()
+
+		if eq {
+			return nil
+		}
+		// When items in the endpoint list changes, we choose a new pin
+		neps = shuffleEndpoints(c.rand, neps)
+	case EndpointSelectionPrioritizeLeader:
+		nle, err := c.getLeaderEndpoint(ctx, neps)
+		if err != nil {
+			return ErrNoLeaderEndpoint
+		}
+
+		for i, n := range neps {
+			if n.String() == nle {
+				npin = i
+				break
+			}
+		}
+	default:
+		return fmt.Errorf("invalid endpoint selection mode: %d", c.selectionMode)
+	}
+
+	c.Lock()
+	defer c.Unlock()
+	c.endpoints = neps
+	c.pinned = npin
+
+	return nil
+}
+
+func (c *httpClusterClient) AutoSync(ctx context.Context, interval time.Duration) error {
+	ticker := time.NewTicker(interval)
+	defer ticker.Stop()
+	for {
+		err := c.Sync(ctx)
+		if err != nil {
+			return err
+		}
+		select {
+		case <-ctx.Done():
+			return ctx.Err()
+		case <-ticker.C:
+		}
+	}
+}
+
+func (c *httpClusterClient) GetVersion(ctx context.Context) (*version.Versions, error) {
+	act := &getAction{Prefix: "/version"}
+
+	resp, body, err := c.Do(ctx, act)
+	if err != nil {
+		return nil, err
+	}
+
+	switch resp.StatusCode {
+	case http.StatusOK:
+		if len(body) == 0 {
+			return nil, ErrEmptyBody
+		}
+		var vresp version.Versions
+		if err := json.Unmarshal(body, &vresp); err != nil {
+			return nil, ErrInvalidJSON
+		}
+		return &vresp, nil
+	default:
+		var etcdErr Error
+		if err := json.Unmarshal(body, &etcdErr); err != nil {
+			return nil, ErrInvalidJSON
+		}
+		return nil, etcdErr
+	}
+}
+
+type roundTripResponse struct {
+	resp *http.Response
+	err  error
+}
+
+type simpleHTTPClient struct {
+	transport     CancelableTransport
+	endpoint      url.URL
+	headerTimeout time.Duration
+}
+
+func (c *simpleHTTPClient) Do(ctx context.Context, act httpAction) (*http.Response, []byte, error) {
+	req := act.HTTPRequest(c.endpoint)
+
+	if err := printcURL(req); err != nil {
+		return nil, nil, err
+	}
+
+	isWait := false
+	if req != nil && req.URL != nil {
+		ws := req.URL.Query().Get("wait")
+		if len(ws) != 0 {
+			var err error
+			isWait, err = strconv.ParseBool(ws)
+			if err != nil {
+				return nil, nil, fmt.Errorf("wrong wait value %s (%v for %+v)", ws, err, req)
+			}
+		}
+	}
+
+	var hctx context.Context
+	var hcancel context.CancelFunc
+	if !isWait && c.headerTimeout > 0 {
+		hctx, hcancel = context.WithTimeout(ctx, c.headerTimeout)
+	} else {
+		hctx, hcancel = context.WithCancel(ctx)
+	}
+	defer hcancel()
+
+	reqcancel := requestCanceler(c.transport, req)
+
+	rtchan := make(chan roundTripResponse, 1)
+	go func() {
+		resp, err := c.transport.RoundTrip(req)
+		rtchan <- roundTripResponse{resp: resp, err: err}
+		close(rtchan)
+	}()
+
+	var resp *http.Response
+	var err error
+
+	select {
+	case rtresp := <-rtchan:
+		resp, err = rtresp.resp, rtresp.err
+	case <-hctx.Done():
+		// cancel and wait for request to actually exit before continuing
+		reqcancel()
+		rtresp := <-rtchan
+		resp = rtresp.resp
+		switch {
+		case ctx.Err() != nil:
+			err = ctx.Err()
+		case hctx.Err() != nil:
+			err = fmt.Errorf("client: endpoint %s exceeded header timeout", c.endpoint.String())
+		default:
+			panic("failed to get error from context")
+		}
+	}
+
+	// always check for resp nil-ness to deal with possible
+	// race conditions between channels above
+	defer func() {
+		if resp != nil {
+			resp.Body.Close()
+		}
+	}()
+
+	if err != nil {
+		return nil, nil, err
+	}
+
+	var body []byte
+	done := make(chan struct{})
+	go func() {
+		body, err = ioutil.ReadAll(resp.Body)
+		done <- struct{}{}
+	}()
+
+	select {
+	case <-ctx.Done():
+		resp.Body.Close()
+		<-done
+		return nil, nil, ctx.Err()
+	case <-done:
+	}
+
+	return resp, body, err
+}
+
+type authedAction struct {
+	act         httpAction
+	credentials credentials
+}
+
+func (a *authedAction) HTTPRequest(url url.URL) *http.Request {
+	r := a.act.HTTPRequest(url)
+	r.SetBasicAuth(a.credentials.username, a.credentials.password)
+	return r
+}
+
+type redirectFollowingHTTPClient struct {
+	client        httpClient
+	checkRedirect CheckRedirectFunc
+}
+
+func (r *redirectFollowingHTTPClient) Do(ctx context.Context, act httpAction) (*http.Response, []byte, error) {
+	next := act
+	for i := 0; i < 100; i++ {
+		if i > 0 {
+			if err := r.checkRedirect(i); err != nil {
+				return nil, nil, err
+			}
+		}
+		resp, body, err := r.client.Do(ctx, next)
+		if err != nil {
+			return nil, nil, err
+		}
+		if resp.StatusCode/100 == 3 {
+			hdr := resp.Header.Get("Location")
+			if hdr == "" {
+				return nil, nil, fmt.Errorf("Location header not set")
+			}
+			loc, err := url.Parse(hdr)
+			if err != nil {
+				return nil, nil, fmt.Errorf("Location header not valid URL: %s", hdr)
+			}
+			next = &redirectedHTTPAction{
+				action:   act,
+				location: *loc,
+			}
+			continue
+		}
+		return resp, body, nil
+	}
+
+	return nil, nil, errTooManyRedirectChecks
+}
+
+type redirectedHTTPAction struct {
+	action   httpAction
+	location url.URL
+}
+
+func (r *redirectedHTTPAction) HTTPRequest(ep url.URL) *http.Request {
+	orig := r.action.HTTPRequest(ep)
+	orig.URL = &r.location
+	return orig
+}
+
+func shuffleEndpoints(r *rand.Rand, eps []url.URL) []url.URL {
+	// copied from Go 1.9<= rand.Rand.Perm
+	n := len(eps)
+	p := make([]int, n)
+	for i := 0; i < n; i++ {
+		j := r.Intn(i + 1)
+		p[i] = p[j]
+		p[j] = i
+	}
+	neps := make([]url.URL, n)
+	for i, k := range p {
+		neps[i] = eps[k]
+	}
+	return neps
+}
+
+func endpointsEqual(left, right []url.URL) bool {
+	if len(left) != len(right) {
+		return false
+	}
+
+	sLeft := make([]string, len(left))
+	sRight := make([]string, len(right))
+	for i, l := range left {
+		sLeft[i] = l.String()
+	}
+	for i, r := range right {
+		sRight[i] = r.String()
+	}
+
+	sort.Strings(sLeft)
+	sort.Strings(sRight)
+	for i := range sLeft {
+		if sLeft[i] != sRight[i] {
+			return false
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/coreos/etcd/client/cluster_error.go b/vendor/github.com/coreos/etcd/client/cluster_error.go
new file mode 100644
index 0000000000..34618cdbd9
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/cluster_error.go
@@ -0,0 +1,37 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import "fmt"
+
+type ClusterError struct {
+	Errors []error
+}
+
+func (ce *ClusterError) Error() string {
+	s := ErrClusterUnavailable.Error()
+	for i, e := range ce.Errors {
+		s += fmt.Sprintf("; error #%d: %s\n", i, e)
+	}
+	return s
+}
+
+func (ce *ClusterError) Detail() string {
+	s := ""
+	for i, e := range ce.Errors {
+		s += fmt.Sprintf("error #%d: %s\n", i, e)
+	}
+	return s
+}
diff --git a/vendor/github.com/coreos/etcd/client/curl.go b/vendor/github.com/coreos/etcd/client/curl.go
new file mode 100644
index 0000000000..c8bc9fba20
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/curl.go
@@ -0,0 +1,70 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"bytes"
+	"fmt"
+	"io/ioutil"
+	"net/http"
+	"os"
+)
+
+var (
+	cURLDebug = false
+)
+
+func EnablecURLDebug() {
+	cURLDebug = true
+}
+
+func DisablecURLDebug() {
+	cURLDebug = false
+}
+
+// printcURL prints the cURL equivalent request to stderr.
+// It returns an error if the body of the request cannot
+// be read.
+// The caller MUST cancel the request if there is an error.
+func printcURL(req *http.Request) error {
+	if !cURLDebug {
+		return nil
+	}
+	var (
+		command string
+		b       []byte
+		err     error
+	)
+
+	if req.URL != nil {
+		command = fmt.Sprintf("curl -X %s %s", req.Method, req.URL.String())
+	}
+
+	if req.Body != nil {
+		b, err = ioutil.ReadAll(req.Body)
+		if err != nil {
+			return err
+		}
+		command += fmt.Sprintf(" -d %q", string(b))
+	}
+
+	fmt.Fprintf(os.Stderr, "cURL Command: %s\n", command)
+
+	// reset body
+	body := bytes.NewBuffer(b)
+	req.Body = ioutil.NopCloser(body)
+
+	return nil
+}
diff --git a/vendor/github.com/coreos/etcd/client/discover.go b/vendor/github.com/coreos/etcd/client/discover.go
new file mode 100644
index 0000000000..442e35fe54
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/discover.go
@@ -0,0 +1,40 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"github.com/coreos/etcd/pkg/srv"
+)
+
+// Discoverer is an interface that wraps the Discover method.
+type Discoverer interface {
+	// Discover looks up the etcd servers for the domain.
+	Discover(domain string) ([]string, error)
+}
+
+type srvDiscover struct{}
+
+// NewSRVDiscover constructs a new Discoverer that uses the stdlib to lookup SRV records.
+func NewSRVDiscover() Discoverer {
+	return &srvDiscover{}
+}
+
+func (d *srvDiscover) Discover(domain string) ([]string, error) {
+	srvs, err := srv.GetClient("etcd-client", domain)
+	if err != nil {
+		return nil, err
+	}
+	return srvs.Endpoints, nil
+}
diff --git a/vendor/github.com/coreos/etcd/client/doc.go b/vendor/github.com/coreos/etcd/client/doc.go
new file mode 100644
index 0000000000..ad4eca4e16
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/doc.go
@@ -0,0 +1,73 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+/*
+Package client provides bindings for the etcd APIs.
+
+Create a Config and exchange it for a Client:
+
+	import (
+		"net/http"
+		"context"
+
+		"github.com/coreos/etcd/client"
+	)
+
+	cfg := client.Config{
+		Endpoints: []string{"http://127.0.0.1:2379"},
+		Transport: DefaultTransport,
+	}
+
+	c, err := client.New(cfg)
+	if err != nil {
+		// handle error
+	}
+
+Clients are safe for concurrent use by multiple goroutines.
+
+Create a KeysAPI using the Client, then use it to interact with etcd:
+
+	kAPI := client.NewKeysAPI(c)
+
+	// create a new key /foo with the value "bar"
+	_, err = kAPI.Create(context.Background(), "/foo", "bar")
+	if err != nil {
+		// handle error
+	}
+
+	// delete the newly created key only if the value is still "bar"
+	_, err = kAPI.Delete(context.Background(), "/foo", &DeleteOptions{PrevValue: "bar"})
+	if err != nil {
+		// handle error
+	}
+
+Use a custom context to set timeouts on your operations:
+
+	import "time"
+
+	ctx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
+	defer cancel()
+
+	// set a new key, ignoring its previous state
+	_, err := kAPI.Set(ctx, "/ping", "pong", nil)
+	if err != nil {
+		if err == context.DeadlineExceeded {
+			// request took longer than 5s
+		} else {
+			// handle error
+		}
+	}
+
+*/
+package client
diff --git a/vendor/github.com/coreos/etcd/client/keys.generated.go b/vendor/github.com/coreos/etcd/client/keys.generated.go
new file mode 100644
index 0000000000..237fdbe8ff
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/keys.generated.go
@@ -0,0 +1,5218 @@
+// ************************************************************
+// DO NOT EDIT.
+// THIS FILE IS AUTO-GENERATED BY codecgen.
+// ************************************************************
+
+package client
+
+import (
+	"errors"
+	"fmt"
+	"reflect"
+	"runtime"
+	time "time"
+
+	codec1978 "github.com/ugorji/go/codec"
+)
+
+const (
+	// ----- content types ----
+	codecSelferC_UTF87612 = 1
+	codecSelferC_RAW7612  = 0
+	// ----- value types used ----
+	codecSelferValueTypeArray7612 = 10
+	codecSelferValueTypeMap7612   = 9
+	// ----- containerStateValues ----
+	codecSelfer_containerMapKey7612    = 2
+	codecSelfer_containerMapValue7612  = 3
+	codecSelfer_containerMapEnd7612    = 4
+	codecSelfer_containerArrayElem7612 = 6
+	codecSelfer_containerArrayEnd7612  = 7
+)
+
+var (
+	codecSelferBitsize7612                         = uint8(reflect.TypeOf(uint(0)).Bits())
+	codecSelferOnlyMapOrArrayEncodeToStructErr7612 = errors.New(`only encoded map or array can be decoded into a struct`)
+)
+
+type codecSelfer7612 struct{}
+
+func init() {
+	if codec1978.GenVersion != 8 {
+		_, file, _, _ := runtime.Caller(0)
+		err := fmt.Errorf("codecgen version mismatch: current: %v, need %v. Re-generate file: %v",
+			8, codec1978.GenVersion, file)
+		panic(err)
+	}
+	if false { // reference the types, but skip this branch at build/run time
+		var v0 time.Duration
+		_ = v0
+	}
+}
+
+func (x *Error) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(4)
+			} else {
+				r.WriteMapStart(4)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeInt(int64(x.Code))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("errorCode"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeInt(int64(x.Code))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Message))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("message"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Message))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Cause))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("cause"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Cause))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.Index))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("index"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.Index))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *Error) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *Error) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "errorCode":
+			if r.TryDecodeAsNil() {
+				x.Code = 0
+			} else {
+				yyv4 := &x.Code
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*int)(yyv4)) = int(r.DecodeInt(codecSelferBitsize7612))
+				}
+			}
+		case "message":
+			if r.TryDecodeAsNil() {
+				x.Message = ""
+			} else {
+				yyv6 := &x.Message
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "cause":
+			if r.TryDecodeAsNil() {
+				x.Cause = ""
+			} else {
+				yyv8 := &x.Cause
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*string)(yyv8)) = r.DecodeString()
+				}
+			}
+		case "index":
+			if r.TryDecodeAsNil() {
+				x.Index = 0
+			} else {
+				yyv10 := &x.Index
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*uint64)(yyv10)) = uint64(r.DecodeUint(64))
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *Error) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj12 int
+	var yyb12 bool
+	var yyhl12 bool = l >= 0
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Code = 0
+	} else {
+		yyv13 := &x.Code
+		yym14 := z.DecBinary()
+		_ = yym14
+		if false {
+		} else {
+			*((*int)(yyv13)) = int(r.DecodeInt(codecSelferBitsize7612))
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Message = ""
+	} else {
+		yyv15 := &x.Message
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*string)(yyv15)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Cause = ""
+	} else {
+		yyv17 := &x.Cause
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*string)(yyv17)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Index = 0
+	} else {
+		yyv19 := &x.Index
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else {
+			*((*uint64)(yyv19)) = uint64(r.DecodeUint(64))
+		}
+	}
+	for {
+		yyj12++
+		if yyhl12 {
+			yyb12 = yyj12 > l
+		} else {
+			yyb12 = r.CheckBreak()
+		}
+		if yyb12 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj12-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x PrevExistType) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	yym1 := z.EncBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.EncExt(x) {
+	} else {
+		r.EncodeString(codecSelferC_UTF87612, string(x))
+	}
+}
+
+func (x *PrevExistType) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		*((*string)(x)) = r.DecodeString()
+	}
+}
+
+func (x *WatcherOptions) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(2)
+			} else {
+				r.WriteMapStart(2)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.AfterIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("AfterIndex"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.AfterIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *WatcherOptions) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *WatcherOptions) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "AfterIndex":
+			if r.TryDecodeAsNil() {
+				x.AfterIndex = 0
+			} else {
+				yyv4 := &x.AfterIndex
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*uint64)(yyv4)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv6 := &x.Recursive
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*bool)(yyv6)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *WatcherOptions) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj8 int
+	var yyb8 bool
+	var yyhl8 bool = l >= 0
+	yyj8++
+	if yyhl8 {
+		yyb8 = yyj8 > l
+	} else {
+		yyb8 = r.CheckBreak()
+	}
+	if yyb8 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.AfterIndex = 0
+	} else {
+		yyv9 := &x.AfterIndex
+		yym10 := z.DecBinary()
+		_ = yym10
+		if false {
+		} else {
+			*((*uint64)(yyv9)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj8++
+	if yyhl8 {
+		yyb8 = yyj8 > l
+	} else {
+		yyb8 = r.CheckBreak()
+	}
+	if yyb8 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv11 := &x.Recursive
+		yym12 := z.DecBinary()
+		_ = yym12
+		if false {
+		} else {
+			*((*bool)(yyv11)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj8++
+		if yyhl8 {
+			yyb8 = yyj8 > l
+		} else {
+			yyb8 = r.CheckBreak()
+		}
+		if yyb8 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj8-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *CreateInOrderOptions) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(1)
+			} else {
+				r.WriteMapStart(1)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("TTL"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *CreateInOrderOptions) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *CreateInOrderOptions) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "TTL":
+			if r.TryDecodeAsNil() {
+				x.TTL = 0
+			} else {
+				yyv4 := &x.TTL
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else if z.HasExtensions() && z.DecExt(yyv4) {
+				} else {
+					*((*int64)(yyv4)) = int64(r.DecodeInt(64))
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *CreateInOrderOptions) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj6 int
+	var yyb6 bool
+	var yyhl6 bool = l >= 0
+	yyj6++
+	if yyhl6 {
+		yyb6 = yyj6 > l
+	} else {
+		yyb6 = r.CheckBreak()
+	}
+	if yyb6 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.TTL = 0
+	} else {
+		yyv7 := &x.TTL
+		yym8 := z.DecBinary()
+		_ = yym8
+		if false {
+		} else if z.HasExtensions() && z.DecExt(yyv7) {
+		} else {
+			*((*int64)(yyv7)) = int64(r.DecodeInt(64))
+		}
+	}
+	for {
+		yyj6++
+		if yyhl6 {
+			yyb6 = yyj6 > l
+		} else {
+			yyb6 = r.CheckBreak()
+		}
+		if yyb6 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj6-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *SetOptions) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(7)
+			} else {
+				r.WriteMapStart(7)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevValue"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevIndex"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				x.PrevExist.CodecEncodeSelf(e)
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevExist"))
+				r.WriteMapElemValue()
+				x.PrevExist.CodecEncodeSelf(e)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("TTL"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym16 := z.EncBinary()
+				_ = yym16
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Refresh))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Refresh"))
+				r.WriteMapElemValue()
+				yym17 := z.EncBinary()
+				_ = yym17
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Refresh))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym19 := z.EncBinary()
+				_ = yym19
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Dir"))
+				r.WriteMapElemValue()
+				yym20 := z.EncBinary()
+				_ = yym20
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym22 := z.EncBinary()
+				_ = yym22
+				if false {
+				} else {
+					r.EncodeBool(bool(x.NoValueOnSuccess))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("NoValueOnSuccess"))
+				r.WriteMapElemValue()
+				yym23 := z.EncBinary()
+				_ = yym23
+				if false {
+				} else {
+					r.EncodeBool(bool(x.NoValueOnSuccess))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *SetOptions) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *SetOptions) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "PrevValue":
+			if r.TryDecodeAsNil() {
+				x.PrevValue = ""
+			} else {
+				yyv4 := &x.PrevValue
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "PrevIndex":
+			if r.TryDecodeAsNil() {
+				x.PrevIndex = 0
+			} else {
+				yyv6 := &x.PrevIndex
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*uint64)(yyv6)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "PrevExist":
+			if r.TryDecodeAsNil() {
+				x.PrevExist = ""
+			} else {
+				yyv8 := &x.PrevExist
+				yyv8.CodecDecodeSelf(d)
+			}
+		case "TTL":
+			if r.TryDecodeAsNil() {
+				x.TTL = 0
+			} else {
+				yyv9 := &x.TTL
+				yym10 := z.DecBinary()
+				_ = yym10
+				if false {
+				} else if z.HasExtensions() && z.DecExt(yyv9) {
+				} else {
+					*((*int64)(yyv9)) = int64(r.DecodeInt(64))
+				}
+			}
+		case "Refresh":
+			if r.TryDecodeAsNil() {
+				x.Refresh = false
+			} else {
+				yyv11 := &x.Refresh
+				yym12 := z.DecBinary()
+				_ = yym12
+				if false {
+				} else {
+					*((*bool)(yyv11)) = r.DecodeBool()
+				}
+			}
+		case "Dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = false
+			} else {
+				yyv13 := &x.Dir
+				yym14 := z.DecBinary()
+				_ = yym14
+				if false {
+				} else {
+					*((*bool)(yyv13)) = r.DecodeBool()
+				}
+			}
+		case "NoValueOnSuccess":
+			if r.TryDecodeAsNil() {
+				x.NoValueOnSuccess = false
+			} else {
+				yyv15 := &x.NoValueOnSuccess
+				yym16 := z.DecBinary()
+				_ = yym16
+				if false {
+				} else {
+					*((*bool)(yyv15)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *SetOptions) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj17 int
+	var yyb17 bool
+	var yyhl17 bool = l >= 0
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevValue = ""
+	} else {
+		yyv18 := &x.PrevValue
+		yym19 := z.DecBinary()
+		_ = yym19
+		if false {
+		} else {
+			*((*string)(yyv18)) = r.DecodeString()
+		}
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevIndex = 0
+	} else {
+		yyv20 := &x.PrevIndex
+		yym21 := z.DecBinary()
+		_ = yym21
+		if false {
+		} else {
+			*((*uint64)(yyv20)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevExist = ""
+	} else {
+		yyv22 := &x.PrevExist
+		yyv22.CodecDecodeSelf(d)
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.TTL = 0
+	} else {
+		yyv23 := &x.TTL
+		yym24 := z.DecBinary()
+		_ = yym24
+		if false {
+		} else if z.HasExtensions() && z.DecExt(yyv23) {
+		} else {
+			*((*int64)(yyv23)) = int64(r.DecodeInt(64))
+		}
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Refresh = false
+	} else {
+		yyv25 := &x.Refresh
+		yym26 := z.DecBinary()
+		_ = yym26
+		if false {
+		} else {
+			*((*bool)(yyv25)) = r.DecodeBool()
+		}
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = false
+	} else {
+		yyv27 := &x.Dir
+		yym28 := z.DecBinary()
+		_ = yym28
+		if false {
+		} else {
+			*((*bool)(yyv27)) = r.DecodeBool()
+		}
+	}
+	yyj17++
+	if yyhl17 {
+		yyb17 = yyj17 > l
+	} else {
+		yyb17 = r.CheckBreak()
+	}
+	if yyb17 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.NoValueOnSuccess = false
+	} else {
+		yyv29 := &x.NoValueOnSuccess
+		yym30 := z.DecBinary()
+		_ = yym30
+		if false {
+		} else {
+			*((*bool)(yyv29)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj17++
+		if yyhl17 {
+			yyb17 = yyj17 > l
+		} else {
+			yyb17 = r.CheckBreak()
+		}
+		if yyb17 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj17-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *GetOptions) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(3)
+			} else {
+				r.WriteMapStart(3)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Sort))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Sort"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Sort))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Quorum))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Quorum"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Quorum))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *GetOptions) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *GetOptions) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv4 := &x.Recursive
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*bool)(yyv4)) = r.DecodeBool()
+				}
+			}
+		case "Sort":
+			if r.TryDecodeAsNil() {
+				x.Sort = false
+			} else {
+				yyv6 := &x.Sort
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*bool)(yyv6)) = r.DecodeBool()
+				}
+			}
+		case "Quorum":
+			if r.TryDecodeAsNil() {
+				x.Quorum = false
+			} else {
+				yyv8 := &x.Quorum
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*bool)(yyv8)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *GetOptions) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj10 int
+	var yyb10 bool
+	var yyhl10 bool = l >= 0
+	yyj10++
+	if yyhl10 {
+		yyb10 = yyj10 > l
+	} else {
+		yyb10 = r.CheckBreak()
+	}
+	if yyb10 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv11 := &x.Recursive
+		yym12 := z.DecBinary()
+		_ = yym12
+		if false {
+		} else {
+			*((*bool)(yyv11)) = r.DecodeBool()
+		}
+	}
+	yyj10++
+	if yyhl10 {
+		yyb10 = yyj10 > l
+	} else {
+		yyb10 = r.CheckBreak()
+	}
+	if yyb10 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Sort = false
+	} else {
+		yyv13 := &x.Sort
+		yym14 := z.DecBinary()
+		_ = yym14
+		if false {
+		} else {
+			*((*bool)(yyv13)) = r.DecodeBool()
+		}
+	}
+	yyj10++
+	if yyhl10 {
+		yyb10 = yyj10 > l
+	} else {
+		yyb10 = r.CheckBreak()
+	}
+	if yyb10 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Quorum = false
+	} else {
+		yyv15 := &x.Quorum
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*bool)(yyv15)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj10++
+		if yyhl10 {
+			yyb10 = yyj10 > l
+		} else {
+			yyb10 = r.CheckBreak()
+		}
+		if yyb10 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj10-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *DeleteOptions) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(4)
+			} else {
+				r.WriteMapStart(4)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevValue"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevIndex"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Dir"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *DeleteOptions) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *DeleteOptions) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "PrevValue":
+			if r.TryDecodeAsNil() {
+				x.PrevValue = ""
+			} else {
+				yyv4 := &x.PrevValue
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "PrevIndex":
+			if r.TryDecodeAsNil() {
+				x.PrevIndex = 0
+			} else {
+				yyv6 := &x.PrevIndex
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*uint64)(yyv6)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv8 := &x.Recursive
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*bool)(yyv8)) = r.DecodeBool()
+				}
+			}
+		case "Dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = false
+			} else {
+				yyv10 := &x.Dir
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*bool)(yyv10)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *DeleteOptions) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj12 int
+	var yyb12 bool
+	var yyhl12 bool = l >= 0
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevValue = ""
+	} else {
+		yyv13 := &x.PrevValue
+		yym14 := z.DecBinary()
+		_ = yym14
+		if false {
+		} else {
+			*((*string)(yyv13)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevIndex = 0
+	} else {
+		yyv15 := &x.PrevIndex
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*uint64)(yyv15)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv17 := &x.Recursive
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*bool)(yyv17)) = r.DecodeBool()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = false
+	} else {
+		yyv19 := &x.Dir
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else {
+			*((*bool)(yyv19)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj12++
+		if yyhl12 {
+			yyb12 = yyj12 > l
+		} else {
+			yyb12 = r.CheckBreak()
+		}
+		if yyb12 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj12-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *Response) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(3)
+			} else {
+				r.WriteMapStart(3)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Action))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("action"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Action))
+				}
+			}
+			var yyn6 bool
+			if x.Node == nil {
+				yyn6 = true
+				goto LABEL6
+			}
+		LABEL6:
+			if yyr2 || yy2arr2 {
+				if yyn6 {
+					r.WriteArrayElem()
+					r.EncodeNil()
+				} else {
+					r.WriteArrayElem()
+					if x.Node == nil {
+						r.EncodeNil()
+					} else {
+						x.Node.CodecEncodeSelf(e)
+					}
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("node"))
+				r.WriteMapElemValue()
+				if yyn6 {
+					r.EncodeNil()
+				} else {
+					if x.Node == nil {
+						r.EncodeNil()
+					} else {
+						x.Node.CodecEncodeSelf(e)
+					}
+				}
+			}
+			var yyn9 bool
+			if x.PrevNode == nil {
+				yyn9 = true
+				goto LABEL9
+			}
+		LABEL9:
+			if yyr2 || yy2arr2 {
+				if yyn9 {
+					r.WriteArrayElem()
+					r.EncodeNil()
+				} else {
+					r.WriteArrayElem()
+					if x.PrevNode == nil {
+						r.EncodeNil()
+					} else {
+						x.PrevNode.CodecEncodeSelf(e)
+					}
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("prevNode"))
+				r.WriteMapElemValue()
+				if yyn9 {
+					r.EncodeNil()
+				} else {
+					if x.PrevNode == nil {
+						r.EncodeNil()
+					} else {
+						x.PrevNode.CodecEncodeSelf(e)
+					}
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *Response) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *Response) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "action":
+			if r.TryDecodeAsNil() {
+				x.Action = ""
+			} else {
+				yyv4 := &x.Action
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "node":
+			if x.Node == nil {
+				x.Node = new(Node)
+			}
+			if r.TryDecodeAsNil() {
+				if x.Node != nil {
+					x.Node = nil
+				}
+			} else {
+				if x.Node == nil {
+					x.Node = new(Node)
+				}
+				x.Node.CodecDecodeSelf(d)
+			}
+		case "prevNode":
+			if x.PrevNode == nil {
+				x.PrevNode = new(Node)
+			}
+			if r.TryDecodeAsNil() {
+				if x.PrevNode != nil {
+					x.PrevNode = nil
+				}
+			} else {
+				if x.PrevNode == nil {
+					x.PrevNode = new(Node)
+				}
+				x.PrevNode.CodecDecodeSelf(d)
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *Response) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj8 int
+	var yyb8 bool
+	var yyhl8 bool = l >= 0
+	yyj8++
+	if yyhl8 {
+		yyb8 = yyj8 > l
+	} else {
+		yyb8 = r.CheckBreak()
+	}
+	if yyb8 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Action = ""
+	} else {
+		yyv9 := &x.Action
+		yym10 := z.DecBinary()
+		_ = yym10
+		if false {
+		} else {
+			*((*string)(yyv9)) = r.DecodeString()
+		}
+	}
+	if x.Node == nil {
+		x.Node = new(Node)
+	}
+	yyj8++
+	if yyhl8 {
+		yyb8 = yyj8 > l
+	} else {
+		yyb8 = r.CheckBreak()
+	}
+	if yyb8 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		if x.Node != nil {
+			x.Node = nil
+		}
+	} else {
+		if x.Node == nil {
+			x.Node = new(Node)
+		}
+		x.Node.CodecDecodeSelf(d)
+	}
+	if x.PrevNode == nil {
+		x.PrevNode = new(Node)
+	}
+	yyj8++
+	if yyhl8 {
+		yyb8 = yyj8 > l
+	} else {
+		yyb8 = r.CheckBreak()
+	}
+	if yyb8 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		if x.PrevNode != nil {
+			x.PrevNode = nil
+		}
+	} else {
+		if x.PrevNode == nil {
+			x.PrevNode = new(Node)
+		}
+		x.PrevNode.CodecDecodeSelf(d)
+	}
+	for {
+		yyj8++
+		if yyhl8 {
+			yyb8 = yyj8 > l
+		} else {
+			yyb8 = r.CheckBreak()
+		}
+		if yyb8 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj8-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *Node) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			var yyq2 [8]bool
+			_ = yyq2
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			yyq2[1] = x.Dir != false
+			yyq2[6] = x.Expiration != nil
+			yyq2[7] = x.TTL != 0
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(8)
+			} else {
+				var yynn2 = 5
+				for _, b := range yyq2 {
+					if b {
+						yynn2++
+					}
+				}
+				r.WriteMapStart(yynn2)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("key"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				if yyq2[1] {
+					yym7 := z.EncBinary()
+					_ = yym7
+					if false {
+					} else {
+						r.EncodeBool(bool(x.Dir))
+					}
+				} else {
+					r.EncodeBool(false)
+				}
+			} else {
+				if yyq2[1] {
+					r.WriteMapElemKey()
+					r.EncodeString(codecSelferC_UTF87612, string("dir"))
+					r.WriteMapElemValue()
+					yym8 := z.EncBinary()
+					_ = yym8
+					if false {
+					} else {
+						r.EncodeBool(bool(x.Dir))
+					}
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("value"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				if x.Nodes == nil {
+					r.EncodeNil()
+				} else {
+					x.Nodes.CodecEncodeSelf(e)
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("nodes"))
+				r.WriteMapElemValue()
+				if x.Nodes == nil {
+					r.EncodeNil()
+				} else {
+					x.Nodes.CodecEncodeSelf(e)
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym16 := z.EncBinary()
+				_ = yym16
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.CreatedIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("createdIndex"))
+				r.WriteMapElemValue()
+				yym17 := z.EncBinary()
+				_ = yym17
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.CreatedIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym19 := z.EncBinary()
+				_ = yym19
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.ModifiedIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("modifiedIndex"))
+				r.WriteMapElemValue()
+				yym20 := z.EncBinary()
+				_ = yym20
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.ModifiedIndex))
+				}
+			}
+			var yyn21 bool
+			if x.Expiration == nil {
+				yyn21 = true
+				goto LABEL21
+			}
+		LABEL21:
+			if yyr2 || yy2arr2 {
+				if yyn21 {
+					r.WriteArrayElem()
+					r.EncodeNil()
+				} else {
+					r.WriteArrayElem()
+					if yyq2[6] {
+						if x.Expiration == nil {
+							r.EncodeNil()
+						} else {
+							yym22 := z.EncBinary()
+							_ = yym22
+							if false {
+							} else if yym23 := z.TimeRtidIfBinc(); yym23 != 0 {
+								r.EncodeBuiltin(yym23, x.Expiration)
+							} else if z.HasExtensions() && z.EncExt(x.Expiration) {
+							} else if yym22 {
+								z.EncBinaryMarshal(x.Expiration)
+							} else if !yym22 && z.IsJSONHandle() {
+								z.EncJSONMarshal(x.Expiration)
+							} else {
+								z.EncFallback(x.Expiration)
+							}
+						}
+					} else {
+						r.EncodeNil()
+					}
+				}
+			} else {
+				if yyq2[6] {
+					r.WriteMapElemKey()
+					r.EncodeString(codecSelferC_UTF87612, string("expiration"))
+					r.WriteMapElemValue()
+					if yyn21 {
+						r.EncodeNil()
+					} else {
+						if x.Expiration == nil {
+							r.EncodeNil()
+						} else {
+							yym24 := z.EncBinary()
+							_ = yym24
+							if false {
+							} else if yym25 := z.TimeRtidIfBinc(); yym25 != 0 {
+								r.EncodeBuiltin(yym25, x.Expiration)
+							} else if z.HasExtensions() && z.EncExt(x.Expiration) {
+							} else if yym24 {
+								z.EncBinaryMarshal(x.Expiration)
+							} else if !yym24 && z.IsJSONHandle() {
+								z.EncJSONMarshal(x.Expiration)
+							} else {
+								z.EncFallback(x.Expiration)
+							}
+						}
+					}
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				if yyq2[7] {
+					yym27 := z.EncBinary()
+					_ = yym27
+					if false {
+					} else {
+						r.EncodeInt(int64(x.TTL))
+					}
+				} else {
+					r.EncodeInt(0)
+				}
+			} else {
+				if yyq2[7] {
+					r.WriteMapElemKey()
+					r.EncodeString(codecSelferC_UTF87612, string("ttl"))
+					r.WriteMapElemValue()
+					yym28 := z.EncBinary()
+					_ = yym28
+					if false {
+					} else {
+						r.EncodeInt(int64(x.TTL))
+					}
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *Node) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *Node) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "key":
+			if r.TryDecodeAsNil() {
+				x.Key = ""
+			} else {
+				yyv4 := &x.Key
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = false
+			} else {
+				yyv6 := &x.Dir
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*bool)(yyv6)) = r.DecodeBool()
+				}
+			}
+		case "value":
+			if r.TryDecodeAsNil() {
+				x.Value = ""
+			} else {
+				yyv8 := &x.Value
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*string)(yyv8)) = r.DecodeString()
+				}
+			}
+		case "nodes":
+			if r.TryDecodeAsNil() {
+				x.Nodes = nil
+			} else {
+				yyv10 := &x.Nodes
+				yyv10.CodecDecodeSelf(d)
+			}
+		case "createdIndex":
+			if r.TryDecodeAsNil() {
+				x.CreatedIndex = 0
+			} else {
+				yyv11 := &x.CreatedIndex
+				yym12 := z.DecBinary()
+				_ = yym12
+				if false {
+				} else {
+					*((*uint64)(yyv11)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "modifiedIndex":
+			if r.TryDecodeAsNil() {
+				x.ModifiedIndex = 0
+			} else {
+				yyv13 := &x.ModifiedIndex
+				yym14 := z.DecBinary()
+				_ = yym14
+				if false {
+				} else {
+					*((*uint64)(yyv13)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "expiration":
+			if x.Expiration == nil {
+				x.Expiration = new(time.Time)
+			}
+			if r.TryDecodeAsNil() {
+				if x.Expiration != nil {
+					x.Expiration = nil
+				}
+			} else {
+				if x.Expiration == nil {
+					x.Expiration = new(time.Time)
+				}
+				yym16 := z.DecBinary()
+				_ = yym16
+				if false {
+				} else if yym17 := z.TimeRtidIfBinc(); yym17 != 0 {
+					r.DecodeBuiltin(yym17, x.Expiration)
+				} else if z.HasExtensions() && z.DecExt(x.Expiration) {
+				} else if yym16 {
+					z.DecBinaryUnmarshal(x.Expiration)
+				} else if !yym16 && z.IsJSONHandle() {
+					z.DecJSONUnmarshal(x.Expiration)
+				} else {
+					z.DecFallback(x.Expiration, false)
+				}
+			}
+		case "ttl":
+			if r.TryDecodeAsNil() {
+				x.TTL = 0
+			} else {
+				yyv18 := &x.TTL
+				yym19 := z.DecBinary()
+				_ = yym19
+				if false {
+				} else {
+					*((*int64)(yyv18)) = int64(r.DecodeInt(64))
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *Node) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj20 int
+	var yyb20 bool
+	var yyhl20 bool = l >= 0
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Key = ""
+	} else {
+		yyv21 := &x.Key
+		yym22 := z.DecBinary()
+		_ = yym22
+		if false {
+		} else {
+			*((*string)(yyv21)) = r.DecodeString()
+		}
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = false
+	} else {
+		yyv23 := &x.Dir
+		yym24 := z.DecBinary()
+		_ = yym24
+		if false {
+		} else {
+			*((*bool)(yyv23)) = r.DecodeBool()
+		}
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Value = ""
+	} else {
+		yyv25 := &x.Value
+		yym26 := z.DecBinary()
+		_ = yym26
+		if false {
+		} else {
+			*((*string)(yyv25)) = r.DecodeString()
+		}
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Nodes = nil
+	} else {
+		yyv27 := &x.Nodes
+		yyv27.CodecDecodeSelf(d)
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.CreatedIndex = 0
+	} else {
+		yyv28 := &x.CreatedIndex
+		yym29 := z.DecBinary()
+		_ = yym29
+		if false {
+		} else {
+			*((*uint64)(yyv28)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.ModifiedIndex = 0
+	} else {
+		yyv30 := &x.ModifiedIndex
+		yym31 := z.DecBinary()
+		_ = yym31
+		if false {
+		} else {
+			*((*uint64)(yyv30)) = uint64(r.DecodeUint(64))
+		}
+	}
+	if x.Expiration == nil {
+		x.Expiration = new(time.Time)
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		if x.Expiration != nil {
+			x.Expiration = nil
+		}
+	} else {
+		if x.Expiration == nil {
+			x.Expiration = new(time.Time)
+		}
+		yym33 := z.DecBinary()
+		_ = yym33
+		if false {
+		} else if yym34 := z.TimeRtidIfBinc(); yym34 != 0 {
+			r.DecodeBuiltin(yym34, x.Expiration)
+		} else if z.HasExtensions() && z.DecExt(x.Expiration) {
+		} else if yym33 {
+			z.DecBinaryUnmarshal(x.Expiration)
+		} else if !yym33 && z.IsJSONHandle() {
+			z.DecJSONUnmarshal(x.Expiration)
+		} else {
+			z.DecFallback(x.Expiration, false)
+		}
+	}
+	yyj20++
+	if yyhl20 {
+		yyb20 = yyj20 > l
+	} else {
+		yyb20 = r.CheckBreak()
+	}
+	if yyb20 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.TTL = 0
+	} else {
+		yyv35 := &x.TTL
+		yym36 := z.DecBinary()
+		_ = yym36
+		if false {
+		} else {
+			*((*int64)(yyv35)) = int64(r.DecodeInt(64))
+		}
+	}
+	for {
+		yyj20++
+		if yyhl20 {
+			yyb20 = yyj20 > l
+		} else {
+			yyb20 = r.CheckBreak()
+		}
+		if yyb20 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj20-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x Nodes) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			h.encNodes((Nodes)(x), e)
+		}
+	}
+}
+
+func (x *Nodes) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		h.decNodes((*Nodes)(x), d)
+	}
+}
+
+func (x *httpKeysAPI) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(0)
+			} else {
+				r.WriteMapStart(0)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *httpKeysAPI) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *httpKeysAPI) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *httpKeysAPI) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj4 int
+	var yyb4 bool
+	var yyhl4 bool = l >= 0
+	for {
+		yyj4++
+		if yyhl4 {
+			yyb4 = yyj4 > l
+		} else {
+			yyb4 = r.CheckBreak()
+		}
+		if yyb4 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj4-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *httpWatcher) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(0)
+			} else {
+				r.WriteMapStart(0)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *httpWatcher) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *httpWatcher) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *httpWatcher) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj4 int
+	var yyb4 bool
+	var yyhl4 bool = l >= 0
+	for {
+		yyj4++
+		if yyhl4 {
+			yyb4 = yyj4 > l
+		} else {
+			yyb4 = r.CheckBreak()
+		}
+		if yyb4 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj4-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *getAction) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(5)
+			} else {
+				r.WriteMapStart(5)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Prefix"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Key"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Sorted))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Sorted"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Sorted))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym16 := z.EncBinary()
+				_ = yym16
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Quorum))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Quorum"))
+				r.WriteMapElemValue()
+				yym17 := z.EncBinary()
+				_ = yym17
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Quorum))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *getAction) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *getAction) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Prefix":
+			if r.TryDecodeAsNil() {
+				x.Prefix = ""
+			} else {
+				yyv4 := &x.Prefix
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "Key":
+			if r.TryDecodeAsNil() {
+				x.Key = ""
+			} else {
+				yyv6 := &x.Key
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv8 := &x.Recursive
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*bool)(yyv8)) = r.DecodeBool()
+				}
+			}
+		case "Sorted":
+			if r.TryDecodeAsNil() {
+				x.Sorted = false
+			} else {
+				yyv10 := &x.Sorted
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*bool)(yyv10)) = r.DecodeBool()
+				}
+			}
+		case "Quorum":
+			if r.TryDecodeAsNil() {
+				x.Quorum = false
+			} else {
+				yyv12 := &x.Quorum
+				yym13 := z.DecBinary()
+				_ = yym13
+				if false {
+				} else {
+					*((*bool)(yyv12)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *getAction) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj14 int
+	var yyb14 bool
+	var yyhl14 bool = l >= 0
+	yyj14++
+	if yyhl14 {
+		yyb14 = yyj14 > l
+	} else {
+		yyb14 = r.CheckBreak()
+	}
+	if yyb14 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Prefix = ""
+	} else {
+		yyv15 := &x.Prefix
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*string)(yyv15)) = r.DecodeString()
+		}
+	}
+	yyj14++
+	if yyhl14 {
+		yyb14 = yyj14 > l
+	} else {
+		yyb14 = r.CheckBreak()
+	}
+	if yyb14 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Key = ""
+	} else {
+		yyv17 := &x.Key
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*string)(yyv17)) = r.DecodeString()
+		}
+	}
+	yyj14++
+	if yyhl14 {
+		yyb14 = yyj14 > l
+	} else {
+		yyb14 = r.CheckBreak()
+	}
+	if yyb14 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv19 := &x.Recursive
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else {
+			*((*bool)(yyv19)) = r.DecodeBool()
+		}
+	}
+	yyj14++
+	if yyhl14 {
+		yyb14 = yyj14 > l
+	} else {
+		yyb14 = r.CheckBreak()
+	}
+	if yyb14 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Sorted = false
+	} else {
+		yyv21 := &x.Sorted
+		yym22 := z.DecBinary()
+		_ = yym22
+		if false {
+		} else {
+			*((*bool)(yyv21)) = r.DecodeBool()
+		}
+	}
+	yyj14++
+	if yyhl14 {
+		yyb14 = yyj14 > l
+	} else {
+		yyb14 = r.CheckBreak()
+	}
+	if yyb14 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Quorum = false
+	} else {
+		yyv23 := &x.Quorum
+		yym24 := z.DecBinary()
+		_ = yym24
+		if false {
+		} else {
+			*((*bool)(yyv23)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj14++
+		if yyhl14 {
+			yyb14 = yyj14 > l
+		} else {
+			yyb14 = r.CheckBreak()
+		}
+		if yyb14 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj14-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *waitAction) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(4)
+			} else {
+				r.WriteMapStart(4)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Prefix"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Key"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.WaitIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("WaitIndex"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.WaitIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *waitAction) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *waitAction) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Prefix":
+			if r.TryDecodeAsNil() {
+				x.Prefix = ""
+			} else {
+				yyv4 := &x.Prefix
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "Key":
+			if r.TryDecodeAsNil() {
+				x.Key = ""
+			} else {
+				yyv6 := &x.Key
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "WaitIndex":
+			if r.TryDecodeAsNil() {
+				x.WaitIndex = 0
+			} else {
+				yyv8 := &x.WaitIndex
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*uint64)(yyv8)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv10 := &x.Recursive
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*bool)(yyv10)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *waitAction) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj12 int
+	var yyb12 bool
+	var yyhl12 bool = l >= 0
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Prefix = ""
+	} else {
+		yyv13 := &x.Prefix
+		yym14 := z.DecBinary()
+		_ = yym14
+		if false {
+		} else {
+			*((*string)(yyv13)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Key = ""
+	} else {
+		yyv15 := &x.Key
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*string)(yyv15)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.WaitIndex = 0
+	} else {
+		yyv17 := &x.WaitIndex
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*uint64)(yyv17)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv19 := &x.Recursive
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else {
+			*((*bool)(yyv19)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj12++
+		if yyhl12 {
+			yyb12 = yyj12 > l
+		} else {
+			yyb12 = r.CheckBreak()
+		}
+		if yyb12 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj12-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *setAction) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(10)
+			} else {
+				r.WriteMapStart(10)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Prefix"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Key"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Value"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevValue"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym16 := z.EncBinary()
+				_ = yym16
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevIndex"))
+				r.WriteMapElemValue()
+				yym17 := z.EncBinary()
+				_ = yym17
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				x.PrevExist.CodecEncodeSelf(e)
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevExist"))
+				r.WriteMapElemValue()
+				x.PrevExist.CodecEncodeSelf(e)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym22 := z.EncBinary()
+				_ = yym22
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("TTL"))
+				r.WriteMapElemValue()
+				yym23 := z.EncBinary()
+				_ = yym23
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym25 := z.EncBinary()
+				_ = yym25
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Refresh))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Refresh"))
+				r.WriteMapElemValue()
+				yym26 := z.EncBinary()
+				_ = yym26
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Refresh))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym28 := z.EncBinary()
+				_ = yym28
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Dir"))
+				r.WriteMapElemValue()
+				yym29 := z.EncBinary()
+				_ = yym29
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym31 := z.EncBinary()
+				_ = yym31
+				if false {
+				} else {
+					r.EncodeBool(bool(x.NoValueOnSuccess))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("NoValueOnSuccess"))
+				r.WriteMapElemValue()
+				yym32 := z.EncBinary()
+				_ = yym32
+				if false {
+				} else {
+					r.EncodeBool(bool(x.NoValueOnSuccess))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *setAction) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *setAction) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Prefix":
+			if r.TryDecodeAsNil() {
+				x.Prefix = ""
+			} else {
+				yyv4 := &x.Prefix
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "Key":
+			if r.TryDecodeAsNil() {
+				x.Key = ""
+			} else {
+				yyv6 := &x.Key
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "Value":
+			if r.TryDecodeAsNil() {
+				x.Value = ""
+			} else {
+				yyv8 := &x.Value
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*string)(yyv8)) = r.DecodeString()
+				}
+			}
+		case "PrevValue":
+			if r.TryDecodeAsNil() {
+				x.PrevValue = ""
+			} else {
+				yyv10 := &x.PrevValue
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*string)(yyv10)) = r.DecodeString()
+				}
+			}
+		case "PrevIndex":
+			if r.TryDecodeAsNil() {
+				x.PrevIndex = 0
+			} else {
+				yyv12 := &x.PrevIndex
+				yym13 := z.DecBinary()
+				_ = yym13
+				if false {
+				} else {
+					*((*uint64)(yyv12)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "PrevExist":
+			if r.TryDecodeAsNil() {
+				x.PrevExist = ""
+			} else {
+				yyv14 := &x.PrevExist
+				yyv14.CodecDecodeSelf(d)
+			}
+		case "TTL":
+			if r.TryDecodeAsNil() {
+				x.TTL = 0
+			} else {
+				yyv15 := &x.TTL
+				yym16 := z.DecBinary()
+				_ = yym16
+				if false {
+				} else if z.HasExtensions() && z.DecExt(yyv15) {
+				} else {
+					*((*int64)(yyv15)) = int64(r.DecodeInt(64))
+				}
+			}
+		case "Refresh":
+			if r.TryDecodeAsNil() {
+				x.Refresh = false
+			} else {
+				yyv17 := &x.Refresh
+				yym18 := z.DecBinary()
+				_ = yym18
+				if false {
+				} else {
+					*((*bool)(yyv17)) = r.DecodeBool()
+				}
+			}
+		case "Dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = false
+			} else {
+				yyv19 := &x.Dir
+				yym20 := z.DecBinary()
+				_ = yym20
+				if false {
+				} else {
+					*((*bool)(yyv19)) = r.DecodeBool()
+				}
+			}
+		case "NoValueOnSuccess":
+			if r.TryDecodeAsNil() {
+				x.NoValueOnSuccess = false
+			} else {
+				yyv21 := &x.NoValueOnSuccess
+				yym22 := z.DecBinary()
+				_ = yym22
+				if false {
+				} else {
+					*((*bool)(yyv21)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *setAction) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj23 int
+	var yyb23 bool
+	var yyhl23 bool = l >= 0
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Prefix = ""
+	} else {
+		yyv24 := &x.Prefix
+		yym25 := z.DecBinary()
+		_ = yym25
+		if false {
+		} else {
+			*((*string)(yyv24)) = r.DecodeString()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Key = ""
+	} else {
+		yyv26 := &x.Key
+		yym27 := z.DecBinary()
+		_ = yym27
+		if false {
+		} else {
+			*((*string)(yyv26)) = r.DecodeString()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Value = ""
+	} else {
+		yyv28 := &x.Value
+		yym29 := z.DecBinary()
+		_ = yym29
+		if false {
+		} else {
+			*((*string)(yyv28)) = r.DecodeString()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevValue = ""
+	} else {
+		yyv30 := &x.PrevValue
+		yym31 := z.DecBinary()
+		_ = yym31
+		if false {
+		} else {
+			*((*string)(yyv30)) = r.DecodeString()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevIndex = 0
+	} else {
+		yyv32 := &x.PrevIndex
+		yym33 := z.DecBinary()
+		_ = yym33
+		if false {
+		} else {
+			*((*uint64)(yyv32)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevExist = ""
+	} else {
+		yyv34 := &x.PrevExist
+		yyv34.CodecDecodeSelf(d)
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.TTL = 0
+	} else {
+		yyv35 := &x.TTL
+		yym36 := z.DecBinary()
+		_ = yym36
+		if false {
+		} else if z.HasExtensions() && z.DecExt(yyv35) {
+		} else {
+			*((*int64)(yyv35)) = int64(r.DecodeInt(64))
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Refresh = false
+	} else {
+		yyv37 := &x.Refresh
+		yym38 := z.DecBinary()
+		_ = yym38
+		if false {
+		} else {
+			*((*bool)(yyv37)) = r.DecodeBool()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = false
+	} else {
+		yyv39 := &x.Dir
+		yym40 := z.DecBinary()
+		_ = yym40
+		if false {
+		} else {
+			*((*bool)(yyv39)) = r.DecodeBool()
+		}
+	}
+	yyj23++
+	if yyhl23 {
+		yyb23 = yyj23 > l
+	} else {
+		yyb23 = r.CheckBreak()
+	}
+	if yyb23 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.NoValueOnSuccess = false
+	} else {
+		yyv41 := &x.NoValueOnSuccess
+		yym42 := z.DecBinary()
+		_ = yym42
+		if false {
+		} else {
+			*((*bool)(yyv41)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj23++
+		if yyhl23 {
+			yyb23 = yyj23 > l
+		} else {
+			yyb23 = r.CheckBreak()
+		}
+		if yyb23 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj23-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *deleteAction) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(6)
+			} else {
+				r.WriteMapStart(6)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Prefix"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Key"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Key))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevValue"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.PrevValue))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("PrevIndex"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else {
+					r.EncodeUint(uint64(x.PrevIndex))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym16 := z.EncBinary()
+				_ = yym16
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Dir"))
+				r.WriteMapElemValue()
+				yym17 := z.EncBinary()
+				_ = yym17
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Dir))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym19 := z.EncBinary()
+				_ = yym19
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Recursive"))
+				r.WriteMapElemValue()
+				yym20 := z.EncBinary()
+				_ = yym20
+				if false {
+				} else {
+					r.EncodeBool(bool(x.Recursive))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *deleteAction) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *deleteAction) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Prefix":
+			if r.TryDecodeAsNil() {
+				x.Prefix = ""
+			} else {
+				yyv4 := &x.Prefix
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "Key":
+			if r.TryDecodeAsNil() {
+				x.Key = ""
+			} else {
+				yyv6 := &x.Key
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "PrevValue":
+			if r.TryDecodeAsNil() {
+				x.PrevValue = ""
+			} else {
+				yyv8 := &x.PrevValue
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*string)(yyv8)) = r.DecodeString()
+				}
+			}
+		case "PrevIndex":
+			if r.TryDecodeAsNil() {
+				x.PrevIndex = 0
+			} else {
+				yyv10 := &x.PrevIndex
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else {
+					*((*uint64)(yyv10)) = uint64(r.DecodeUint(64))
+				}
+			}
+		case "Dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = false
+			} else {
+				yyv12 := &x.Dir
+				yym13 := z.DecBinary()
+				_ = yym13
+				if false {
+				} else {
+					*((*bool)(yyv12)) = r.DecodeBool()
+				}
+			}
+		case "Recursive":
+			if r.TryDecodeAsNil() {
+				x.Recursive = false
+			} else {
+				yyv14 := &x.Recursive
+				yym15 := z.DecBinary()
+				_ = yym15
+				if false {
+				} else {
+					*((*bool)(yyv14)) = r.DecodeBool()
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *deleteAction) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj16 int
+	var yyb16 bool
+	var yyhl16 bool = l >= 0
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Prefix = ""
+	} else {
+		yyv17 := &x.Prefix
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*string)(yyv17)) = r.DecodeString()
+		}
+	}
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Key = ""
+	} else {
+		yyv19 := &x.Key
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else {
+			*((*string)(yyv19)) = r.DecodeString()
+		}
+	}
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevValue = ""
+	} else {
+		yyv21 := &x.PrevValue
+		yym22 := z.DecBinary()
+		_ = yym22
+		if false {
+		} else {
+			*((*string)(yyv21)) = r.DecodeString()
+		}
+	}
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.PrevIndex = 0
+	} else {
+		yyv23 := &x.PrevIndex
+		yym24 := z.DecBinary()
+		_ = yym24
+		if false {
+		} else {
+			*((*uint64)(yyv23)) = uint64(r.DecodeUint(64))
+		}
+	}
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = false
+	} else {
+		yyv25 := &x.Dir
+		yym26 := z.DecBinary()
+		_ = yym26
+		if false {
+		} else {
+			*((*bool)(yyv25)) = r.DecodeBool()
+		}
+	}
+	yyj16++
+	if yyhl16 {
+		yyb16 = yyj16 > l
+	} else {
+		yyb16 = r.CheckBreak()
+	}
+	if yyb16 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Recursive = false
+	} else {
+		yyv27 := &x.Recursive
+		yym28 := z.DecBinary()
+		_ = yym28
+		if false {
+		} else {
+			*((*bool)(yyv27)) = r.DecodeBool()
+		}
+	}
+	for {
+		yyj16++
+		if yyhl16 {
+			yyb16 = yyj16 > l
+		} else {
+			yyb16 = r.CheckBreak()
+		}
+		if yyb16 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj16-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x *createInOrderAction) CodecEncodeSelf(e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	if x == nil {
+		r.EncodeNil()
+	} else {
+		yym1 := z.EncBinary()
+		_ = yym1
+		if false {
+		} else if z.HasExtensions() && z.EncExt(x) {
+		} else {
+			yysep2 := !z.EncBinary()
+			yy2arr2 := z.EncBasicHandle().StructToArray
+			_, _ = yysep2, yy2arr2
+			const yyr2 bool = false
+			if yyr2 || yy2arr2 {
+				r.WriteArrayStart(4)
+			} else {
+				r.WriteMapStart(4)
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym4 := z.EncBinary()
+				_ = yym4
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Prefix"))
+				r.WriteMapElemValue()
+				yym5 := z.EncBinary()
+				_ = yym5
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Prefix))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym7 := z.EncBinary()
+				_ = yym7
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Dir))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Dir"))
+				r.WriteMapElemValue()
+				yym8 := z.EncBinary()
+				_ = yym8
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Dir))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym10 := z.EncBinary()
+				_ = yym10
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("Value"))
+				r.WriteMapElemValue()
+				yym11 := z.EncBinary()
+				_ = yym11
+				if false {
+				} else {
+					r.EncodeString(codecSelferC_UTF87612, string(x.Value))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayElem()
+				yym13 := z.EncBinary()
+				_ = yym13
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			} else {
+				r.WriteMapElemKey()
+				r.EncodeString(codecSelferC_UTF87612, string("TTL"))
+				r.WriteMapElemValue()
+				yym14 := z.EncBinary()
+				_ = yym14
+				if false {
+				} else if z.HasExtensions() && z.EncExt(x.TTL) {
+				} else {
+					r.EncodeInt(int64(x.TTL))
+				}
+			}
+			if yyr2 || yy2arr2 {
+				r.WriteArrayEnd()
+			} else {
+				r.WriteMapEnd()
+			}
+		}
+	}
+}
+
+func (x *createInOrderAction) CodecDecodeSelf(d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	yym1 := z.DecBinary()
+	_ = yym1
+	if false {
+	} else if z.HasExtensions() && z.DecExt(x) {
+	} else {
+		yyct2 := r.ContainerType()
+		if yyct2 == codecSelferValueTypeMap7612 {
+			yyl2 := r.ReadMapStart()
+			if yyl2 == 0 {
+				r.ReadMapEnd()
+			} else {
+				x.codecDecodeSelfFromMap(yyl2, d)
+			}
+		} else if yyct2 == codecSelferValueTypeArray7612 {
+			yyl2 := r.ReadArrayStart()
+			if yyl2 == 0 {
+				r.ReadArrayEnd()
+			} else {
+				x.codecDecodeSelfFromArray(yyl2, d)
+			}
+		} else {
+			panic(codecSelferOnlyMapOrArrayEncodeToStructErr7612)
+		}
+	}
+}
+
+func (x *createInOrderAction) codecDecodeSelfFromMap(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yys3Slc = z.DecScratchBuffer() // default slice to decode into
+	_ = yys3Slc
+	var yyhl3 bool = l >= 0
+	for yyj3 := 0; ; yyj3++ {
+		if yyhl3 {
+			if yyj3 >= l {
+				break
+			}
+		} else {
+			if r.CheckBreak() {
+				break
+			}
+		}
+		r.ReadMapElemKey()
+		yys3Slc = r.DecodeStringAsBytes()
+		yys3 := string(yys3Slc)
+		r.ReadMapElemValue()
+		switch yys3 {
+		case "Prefix":
+			if r.TryDecodeAsNil() {
+				x.Prefix = ""
+			} else {
+				yyv4 := &x.Prefix
+				yym5 := z.DecBinary()
+				_ = yym5
+				if false {
+				} else {
+					*((*string)(yyv4)) = r.DecodeString()
+				}
+			}
+		case "Dir":
+			if r.TryDecodeAsNil() {
+				x.Dir = ""
+			} else {
+				yyv6 := &x.Dir
+				yym7 := z.DecBinary()
+				_ = yym7
+				if false {
+				} else {
+					*((*string)(yyv6)) = r.DecodeString()
+				}
+			}
+		case "Value":
+			if r.TryDecodeAsNil() {
+				x.Value = ""
+			} else {
+				yyv8 := &x.Value
+				yym9 := z.DecBinary()
+				_ = yym9
+				if false {
+				} else {
+					*((*string)(yyv8)) = r.DecodeString()
+				}
+			}
+		case "TTL":
+			if r.TryDecodeAsNil() {
+				x.TTL = 0
+			} else {
+				yyv10 := &x.TTL
+				yym11 := z.DecBinary()
+				_ = yym11
+				if false {
+				} else if z.HasExtensions() && z.DecExt(yyv10) {
+				} else {
+					*((*int64)(yyv10)) = int64(r.DecodeInt(64))
+				}
+			}
+		default:
+			z.DecStructFieldNotFound(-1, yys3)
+		} // end switch yys3
+	} // end for yyj3
+	r.ReadMapEnd()
+}
+
+func (x *createInOrderAction) codecDecodeSelfFromArray(l int, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+	var yyj12 int
+	var yyb12 bool
+	var yyhl12 bool = l >= 0
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Prefix = ""
+	} else {
+		yyv13 := &x.Prefix
+		yym14 := z.DecBinary()
+		_ = yym14
+		if false {
+		} else {
+			*((*string)(yyv13)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Dir = ""
+	} else {
+		yyv15 := &x.Dir
+		yym16 := z.DecBinary()
+		_ = yym16
+		if false {
+		} else {
+			*((*string)(yyv15)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.Value = ""
+	} else {
+		yyv17 := &x.Value
+		yym18 := z.DecBinary()
+		_ = yym18
+		if false {
+		} else {
+			*((*string)(yyv17)) = r.DecodeString()
+		}
+	}
+	yyj12++
+	if yyhl12 {
+		yyb12 = yyj12 > l
+	} else {
+		yyb12 = r.CheckBreak()
+	}
+	if yyb12 {
+		r.ReadArrayEnd()
+		return
+	}
+	r.ReadArrayElem()
+	if r.TryDecodeAsNil() {
+		x.TTL = 0
+	} else {
+		yyv19 := &x.TTL
+		yym20 := z.DecBinary()
+		_ = yym20
+		if false {
+		} else if z.HasExtensions() && z.DecExt(yyv19) {
+		} else {
+			*((*int64)(yyv19)) = int64(r.DecodeInt(64))
+		}
+	}
+	for {
+		yyj12++
+		if yyhl12 {
+			yyb12 = yyj12 > l
+		} else {
+			yyb12 = r.CheckBreak()
+		}
+		if yyb12 {
+			break
+		}
+		r.ReadArrayElem()
+		z.DecStructFieldNotFound(yyj12-1, "")
+	}
+	r.ReadArrayEnd()
+}
+
+func (x codecSelfer7612) encNodes(v Nodes, e *codec1978.Encoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperEncoder(e)
+	_, _, _ = h, z, r
+	r.WriteArrayStart(len(v))
+	for _, yyv1 := range v {
+		r.WriteArrayElem()
+		if yyv1 == nil {
+			r.EncodeNil()
+		} else {
+			yyv1.CodecEncodeSelf(e)
+		}
+	}
+	r.WriteArrayEnd()
+}
+
+func (x codecSelfer7612) decNodes(v *Nodes, d *codec1978.Decoder) {
+	var h codecSelfer7612
+	z, r := codec1978.GenHelperDecoder(d)
+	_, _, _ = h, z, r
+
+	yyv1 := *v
+	yyh1, yyl1 := z.DecSliceHelperStart()
+	var yyc1 bool
+	_ = yyc1
+	if yyl1 == 0 {
+		if yyv1 == nil {
+			yyv1 = []*Node{}
+			yyc1 = true
+		} else if len(yyv1) != 0 {
+			yyv1 = yyv1[:0]
+			yyc1 = true
+		}
+	} else {
+		yyhl1 := yyl1 > 0
+		var yyrl1 int
+		_ = yyrl1
+		if yyhl1 {
+			if yyl1 > cap(yyv1) {
+				yyrl1 = z.DecInferLen(yyl1, z.DecBasicHandle().MaxInitLen, 8)
+				if yyrl1 <= cap(yyv1) {
+					yyv1 = yyv1[:yyrl1]
+				} else {
+					yyv1 = make([]*Node, yyrl1)
+				}
+				yyc1 = true
+			} else if yyl1 != len(yyv1) {
+				yyv1 = yyv1[:yyl1]
+				yyc1 = true
+			}
+		}
+		var yyj1 int
+		// var yydn1 bool
+		for ; (yyhl1 && yyj1 < yyl1) || !(yyhl1 || r.CheckBreak()); yyj1++ {
+			if yyj1 == 0 && len(yyv1) == 0 {
+				if yyhl1 {
+					yyrl1 = z.DecInferLen(yyl1, z.DecBasicHandle().MaxInitLen, 8)
+				} else {
+					yyrl1 = 8
+				}
+				yyv1 = make([]*Node, yyrl1)
+				yyc1 = true
+			}
+			yyh1.ElemContainerState(yyj1)
+			// yydn1 = r.TryDecodeAsNil()
+
+			// if indefinite, etc, then expand the slice if necessary
+			var yydb1 bool
+			if yyj1 >= len(yyv1) {
+				yyv1 = append(yyv1, nil)
+				yyc1 = true
+
+			}
+			if yydb1 {
+				z.DecSwallow()
+			} else {
+				if r.TryDecodeAsNil() {
+					if yyv1[yyj1] != nil {
+						*yyv1[yyj1] = Node{}
+					}
+				} else {
+					if yyv1[yyj1] == nil {
+						yyv1[yyj1] = new(Node)
+					}
+					yyw2 := yyv1[yyj1]
+					yyw2.CodecDecodeSelf(d)
+				}
+
+			}
+
+		}
+		if yyj1 < len(yyv1) {
+			yyv1 = yyv1[:yyj1]
+			yyc1 = true
+		} else if yyj1 == 0 && yyv1 == nil {
+			yyv1 = make([]*Node, 0)
+			yyc1 = true
+		}
+	}
+	yyh1.End()
+	if yyc1 {
+		*v = yyv1
+	}
+
+}
diff --git a/vendor/github.com/coreos/etcd/client/keys.go b/vendor/github.com/coreos/etcd/client/keys.go
new file mode 100644
index 0000000000..8b9fd3f87a
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/keys.go
@@ -0,0 +1,681 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+//go:generate codecgen -d 1819 -r "Node|Response|Nodes" -o keys.generated.go keys.go
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"net/http"
+	"net/url"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/coreos/etcd/pkg/pathutil"
+	"github.com/ugorji/go/codec"
+)
+
+const (
+	ErrorCodeKeyNotFound  = 100
+	ErrorCodeTestFailed   = 101
+	ErrorCodeNotFile      = 102
+	ErrorCodeNotDir       = 104
+	ErrorCodeNodeExist    = 105
+	ErrorCodeRootROnly    = 107
+	ErrorCodeDirNotEmpty  = 108
+	ErrorCodeUnauthorized = 110
+
+	ErrorCodePrevValueRequired = 201
+	ErrorCodeTTLNaN            = 202
+	ErrorCodeIndexNaN          = 203
+	ErrorCodeInvalidField      = 209
+	ErrorCodeInvalidForm       = 210
+
+	ErrorCodeRaftInternal = 300
+	ErrorCodeLeaderElect  = 301
+
+	ErrorCodeWatcherCleared    = 400
+	ErrorCodeEventIndexCleared = 401
+)
+
+type Error struct {
+	Code    int    `json:"errorCode"`
+	Message string `json:"message"`
+	Cause   string `json:"cause"`
+	Index   uint64 `json:"index"`
+}
+
+func (e Error) Error() string {
+	return fmt.Sprintf("%v: %v (%v) [%v]", e.Code, e.Message, e.Cause, e.Index)
+}
+
+var (
+	ErrInvalidJSON = errors.New("client: response is invalid json. The endpoint is probably not valid etcd cluster endpoint.")
+	ErrEmptyBody   = errors.New("client: response body is empty")
+)
+
+// PrevExistType is used to define an existence condition when setting
+// or deleting Nodes.
+type PrevExistType string
+
+const (
+	PrevIgnore  = PrevExistType("")
+	PrevExist   = PrevExistType("true")
+	PrevNoExist = PrevExistType("false")
+)
+
+var (
+	defaultV2KeysPrefix = "/v2/keys"
+)
+
+// NewKeysAPI builds a KeysAPI that interacts with etcd's key-value
+// API over HTTP.
+func NewKeysAPI(c Client) KeysAPI {
+	return NewKeysAPIWithPrefix(c, defaultV2KeysPrefix)
+}
+
+// NewKeysAPIWithPrefix acts like NewKeysAPI, but allows the caller
+// to provide a custom base URL path. This should only be used in
+// very rare cases.
+func NewKeysAPIWithPrefix(c Client, p string) KeysAPI {
+	return &httpKeysAPI{
+		client: c,
+		prefix: p,
+	}
+}
+
+type KeysAPI interface {
+	// Get retrieves a set of Nodes from etcd
+	Get(ctx context.Context, key string, opts *GetOptions) (*Response, error)
+
+	// Set assigns a new value to a Node identified by a given key. The caller
+	// may define a set of conditions in the SetOptions. If SetOptions.Dir=true
+	// then value is ignored.
+	Set(ctx context.Context, key, value string, opts *SetOptions) (*Response, error)
+
+	// Delete removes a Node identified by the given key, optionally destroying
+	// all of its children as well. The caller may define a set of required
+	// conditions in an DeleteOptions object.
+	Delete(ctx context.Context, key string, opts *DeleteOptions) (*Response, error)
+
+	// Create is an alias for Set w/ PrevExist=false
+	Create(ctx context.Context, key, value string) (*Response, error)
+
+	// CreateInOrder is used to atomically create in-order keys within the given directory.
+	CreateInOrder(ctx context.Context, dir, value string, opts *CreateInOrderOptions) (*Response, error)
+
+	// Update is an alias for Set w/ PrevExist=true
+	Update(ctx context.Context, key, value string) (*Response, error)
+
+	// Watcher builds a new Watcher targeted at a specific Node identified
+	// by the given key. The Watcher may be configured at creation time
+	// through a WatcherOptions object. The returned Watcher is designed
+	// to emit events that happen to a Node, and optionally to its children.
+	Watcher(key string, opts *WatcherOptions) Watcher
+}
+
+type WatcherOptions struct {
+	// AfterIndex defines the index after-which the Watcher should
+	// start emitting events. For example, if a value of 5 is
+	// provided, the first event will have an index >= 6.
+	//
+	// Setting AfterIndex to 0 (default) means that the Watcher
+	// should start watching for events starting at the current
+	// index, whatever that may be.
+	AfterIndex uint64
+
+	// Recursive specifies whether or not the Watcher should emit
+	// events that occur in children of the given keyspace. If set
+	// to false (default), events will be limited to those that
+	// occur for the exact key.
+	Recursive bool
+}
+
+type CreateInOrderOptions struct {
+	// TTL defines a period of time after-which the Node should
+	// expire and no longer exist. Values <= 0 are ignored. Given
+	// that the zero-value is ignored, TTL cannot be used to set
+	// a TTL of 0.
+	TTL time.Duration
+}
+
+type SetOptions struct {
+	// PrevValue specifies what the current value of the Node must
+	// be in order for the Set operation to succeed.
+	//
+	// Leaving this field empty means that the caller wishes to
+	// ignore the current value of the Node. This cannot be used
+	// to compare the Node's current value to an empty string.
+	//
+	// PrevValue is ignored if Dir=true
+	PrevValue string
+
+	// PrevIndex indicates what the current ModifiedIndex of the
+	// Node must be in order for the Set operation to succeed.
+	//
+	// If PrevIndex is set to 0 (default), no comparison is made.
+	PrevIndex uint64
+
+	// PrevExist specifies whether the Node must currently exist
+	// (PrevExist) or not (PrevNoExist). If the caller does not
+	// care about existence, set PrevExist to PrevIgnore, or simply
+	// leave it unset.
+	PrevExist PrevExistType
+
+	// TTL defines a period of time after-which the Node should
+	// expire and no longer exist. Values <= 0 are ignored. Given
+	// that the zero-value is ignored, TTL cannot be used to set
+	// a TTL of 0.
+	TTL time.Duration
+
+	// Refresh set to true means a TTL value can be updated
+	// without firing a watch or changing the node value. A
+	// value must not be provided when refreshing a key.
+	Refresh bool
+
+	// Dir specifies whether or not this Node should be created as a directory.
+	Dir bool
+
+	// NoValueOnSuccess specifies whether the response contains the current value of the Node.
+	// If set, the response will only contain the current value when the request fails.
+	NoValueOnSuccess bool
+}
+
+type GetOptions struct {
+	// Recursive defines whether or not all children of the Node
+	// should be returned.
+	Recursive bool
+
+	// Sort instructs the server whether or not to sort the Nodes.
+	// If true, the Nodes are sorted alphabetically by key in
+	// ascending order (A to z). If false (default), the Nodes will
+	// not be sorted and the ordering used should not be considered
+	// predictable.
+	Sort bool
+
+	// Quorum specifies whether it gets the latest committed value that
+	// has been applied in quorum of members, which ensures external
+	// consistency (or linearizability).
+	Quorum bool
+}
+
+type DeleteOptions struct {
+	// PrevValue specifies what the current value of the Node must
+	// be in order for the Delete operation to succeed.
+	//
+	// Leaving this field empty means that the caller wishes to
+	// ignore the current value of the Node. This cannot be used
+	// to compare the Node's current value to an empty string.
+	PrevValue string
+
+	// PrevIndex indicates what the current ModifiedIndex of the
+	// Node must be in order for the Delete operation to succeed.
+	//
+	// If PrevIndex is set to 0 (default), no comparison is made.
+	PrevIndex uint64
+
+	// Recursive defines whether or not all children of the Node
+	// should be deleted. If set to true, all children of the Node
+	// identified by the given key will be deleted. If left unset
+	// or explicitly set to false, only a single Node will be
+	// deleted.
+	Recursive bool
+
+	// Dir specifies whether or not this Node should be removed as a directory.
+	Dir bool
+}
+
+type Watcher interface {
+	// Next blocks until an etcd event occurs, then returns a Response
+	// representing that event. The behavior of Next depends on the
+	// WatcherOptions used to construct the Watcher. Next is designed to
+	// be called repeatedly, each time blocking until a subsequent event
+	// is available.
+	//
+	// If the provided context is cancelled, Next will return a non-nil
+	// error. Any other failures encountered while waiting for the next
+	// event (connection issues, deserialization failures, etc) will
+	// also result in a non-nil error.
+	Next(context.Context) (*Response, error)
+}
+
+type Response struct {
+	// Action is the name of the operation that occurred. Possible values
+	// include get, set, delete, update, create, compareAndSwap,
+	// compareAndDelete and expire.
+	Action string `json:"action"`
+
+	// Node represents the state of the relevant etcd Node.
+	Node *Node `json:"node"`
+
+	// PrevNode represents the previous state of the Node. PrevNode is non-nil
+	// only if the Node existed before the action occurred and the action
+	// caused a change to the Node.
+	PrevNode *Node `json:"prevNode"`
+
+	// Index holds the cluster-level index at the time the Response was generated.
+	// This index is not tied to the Node(s) contained in this Response.
+	Index uint64 `json:"-"`
+
+	// ClusterID holds the cluster-level ID reported by the server.  This
+	// should be different for different etcd clusters.
+	ClusterID string `json:"-"`
+}
+
+type Node struct {
+	// Key represents the unique location of this Node (e.g. "/foo/bar").
+	Key string `json:"key"`
+
+	// Dir reports whether node describes a directory.
+	Dir bool `json:"dir,omitempty"`
+
+	// Value is the current data stored on this Node. If this Node
+	// is a directory, Value will be empty.
+	Value string `json:"value"`
+
+	// Nodes holds the children of this Node, only if this Node is a directory.
+	// This slice of will be arbitrarily deep (children, grandchildren, great-
+	// grandchildren, etc.) if a recursive Get or Watch request were made.
+	Nodes Nodes `json:"nodes"`
+
+	// CreatedIndex is the etcd index at-which this Node was created.
+	CreatedIndex uint64 `json:"createdIndex"`
+
+	// ModifiedIndex is the etcd index at-which this Node was last modified.
+	ModifiedIndex uint64 `json:"modifiedIndex"`
+
+	// Expiration is the server side expiration time of the key.
+	Expiration *time.Time `json:"expiration,omitempty"`
+
+	// TTL is the time to live of the key in second.
+	TTL int64 `json:"ttl,omitempty"`
+}
+
+func (n *Node) String() string {
+	return fmt.Sprintf("{Key: %s, CreatedIndex: %d, ModifiedIndex: %d, TTL: %d}", n.Key, n.CreatedIndex, n.ModifiedIndex, n.TTL)
+}
+
+// TTLDuration returns the Node's TTL as a time.Duration object
+func (n *Node) TTLDuration() time.Duration {
+	return time.Duration(n.TTL) * time.Second
+}
+
+type Nodes []*Node
+
+// interfaces for sorting
+
+func (ns Nodes) Len() int           { return len(ns) }
+func (ns Nodes) Less(i, j int) bool { return ns[i].Key < ns[j].Key }
+func (ns Nodes) Swap(i, j int)      { ns[i], ns[j] = ns[j], ns[i] }
+
+type httpKeysAPI struct {
+	client httpClient
+	prefix string
+}
+
+func (k *httpKeysAPI) Set(ctx context.Context, key, val string, opts *SetOptions) (*Response, error) {
+	act := &setAction{
+		Prefix: k.prefix,
+		Key:    key,
+		Value:  val,
+	}
+
+	if opts != nil {
+		act.PrevValue = opts.PrevValue
+		act.PrevIndex = opts.PrevIndex
+		act.PrevExist = opts.PrevExist
+		act.TTL = opts.TTL
+		act.Refresh = opts.Refresh
+		act.Dir = opts.Dir
+		act.NoValueOnSuccess = opts.NoValueOnSuccess
+	}
+
+	doCtx := ctx
+	if act.PrevExist == PrevNoExist {
+		doCtx = context.WithValue(doCtx, &oneShotCtxValue, &oneShotCtxValue)
+	}
+	resp, body, err := k.client.Do(doCtx, act)
+	if err != nil {
+		return nil, err
+	}
+
+	return unmarshalHTTPResponse(resp.StatusCode, resp.Header, body)
+}
+
+func (k *httpKeysAPI) Create(ctx context.Context, key, val string) (*Response, error) {
+	return k.Set(ctx, key, val, &SetOptions{PrevExist: PrevNoExist})
+}
+
+func (k *httpKeysAPI) CreateInOrder(ctx context.Context, dir, val string, opts *CreateInOrderOptions) (*Response, error) {
+	act := &createInOrderAction{
+		Prefix: k.prefix,
+		Dir:    dir,
+		Value:  val,
+	}
+
+	if opts != nil {
+		act.TTL = opts.TTL
+	}
+
+	resp, body, err := k.client.Do(ctx, act)
+	if err != nil {
+		return nil, err
+	}
+
+	return unmarshalHTTPResponse(resp.StatusCode, resp.Header, body)
+}
+
+func (k *httpKeysAPI) Update(ctx context.Context, key, val string) (*Response, error) {
+	return k.Set(ctx, key, val, &SetOptions{PrevExist: PrevExist})
+}
+
+func (k *httpKeysAPI) Delete(ctx context.Context, key string, opts *DeleteOptions) (*Response, error) {
+	act := &deleteAction{
+		Prefix: k.prefix,
+		Key:    key,
+	}
+
+	if opts != nil {
+		act.PrevValue = opts.PrevValue
+		act.PrevIndex = opts.PrevIndex
+		act.Dir = opts.Dir
+		act.Recursive = opts.Recursive
+	}
+
+	doCtx := context.WithValue(ctx, &oneShotCtxValue, &oneShotCtxValue)
+	resp, body, err := k.client.Do(doCtx, act)
+	if err != nil {
+		return nil, err
+	}
+
+	return unmarshalHTTPResponse(resp.StatusCode, resp.Header, body)
+}
+
+func (k *httpKeysAPI) Get(ctx context.Context, key string, opts *GetOptions) (*Response, error) {
+	act := &getAction{
+		Prefix: k.prefix,
+		Key:    key,
+	}
+
+	if opts != nil {
+		act.Recursive = opts.Recursive
+		act.Sorted = opts.Sort
+		act.Quorum = opts.Quorum
+	}
+
+	resp, body, err := k.client.Do(ctx, act)
+	if err != nil {
+		return nil, err
+	}
+
+	return unmarshalHTTPResponse(resp.StatusCode, resp.Header, body)
+}
+
+func (k *httpKeysAPI) Watcher(key string, opts *WatcherOptions) Watcher {
+	act := waitAction{
+		Prefix: k.prefix,
+		Key:    key,
+	}
+
+	if opts != nil {
+		act.Recursive = opts.Recursive
+		if opts.AfterIndex > 0 {
+			act.WaitIndex = opts.AfterIndex + 1
+		}
+	}
+
+	return &httpWatcher{
+		client:   k.client,
+		nextWait: act,
+	}
+}
+
+type httpWatcher struct {
+	client   httpClient
+	nextWait waitAction
+}
+
+func (hw *httpWatcher) Next(ctx context.Context) (*Response, error) {
+	for {
+		httpresp, body, err := hw.client.Do(ctx, &hw.nextWait)
+		if err != nil {
+			return nil, err
+		}
+
+		resp, err := unmarshalHTTPResponse(httpresp.StatusCode, httpresp.Header, body)
+		if err != nil {
+			if err == ErrEmptyBody {
+				continue
+			}
+			return nil, err
+		}
+
+		hw.nextWait.WaitIndex = resp.Node.ModifiedIndex + 1
+		return resp, nil
+	}
+}
+
+// v2KeysURL forms a URL representing the location of a key.
+// The endpoint argument represents the base URL of an etcd
+// server. The prefix is the path needed to route from the
+// provided endpoint's path to the root of the keys API
+// (typically "/v2/keys").
+func v2KeysURL(ep url.URL, prefix, key string) *url.URL {
+	// We concatenate all parts together manually. We cannot use
+	// path.Join because it does not reserve trailing slash.
+	// We call CanonicalURLPath to further cleanup the path.
+	if prefix != "" && prefix[0] != '/' {
+		prefix = "/" + prefix
+	}
+	if key != "" && key[0] != '/' {
+		key = "/" + key
+	}
+	ep.Path = pathutil.CanonicalURLPath(ep.Path + prefix + key)
+	return &ep
+}
+
+type getAction struct {
+	Prefix    string
+	Key       string
+	Recursive bool
+	Sorted    bool
+	Quorum    bool
+}
+
+func (g *getAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2KeysURL(ep, g.Prefix, g.Key)
+
+	params := u.Query()
+	params.Set("recursive", strconv.FormatBool(g.Recursive))
+	params.Set("sorted", strconv.FormatBool(g.Sorted))
+	params.Set("quorum", strconv.FormatBool(g.Quorum))
+	u.RawQuery = params.Encode()
+
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	return req
+}
+
+type waitAction struct {
+	Prefix    string
+	Key       string
+	WaitIndex uint64
+	Recursive bool
+}
+
+func (w *waitAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2KeysURL(ep, w.Prefix, w.Key)
+
+	params := u.Query()
+	params.Set("wait", "true")
+	params.Set("waitIndex", strconv.FormatUint(w.WaitIndex, 10))
+	params.Set("recursive", strconv.FormatBool(w.Recursive))
+	u.RawQuery = params.Encode()
+
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	return req
+}
+
+type setAction struct {
+	Prefix           string
+	Key              string
+	Value            string
+	PrevValue        string
+	PrevIndex        uint64
+	PrevExist        PrevExistType
+	TTL              time.Duration
+	Refresh          bool
+	Dir              bool
+	NoValueOnSuccess bool
+}
+
+func (a *setAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2KeysURL(ep, a.Prefix, a.Key)
+
+	params := u.Query()
+	form := url.Values{}
+
+	// we're either creating a directory or setting a key
+	if a.Dir {
+		params.Set("dir", strconv.FormatBool(a.Dir))
+	} else {
+		// These options are only valid for setting a key
+		if a.PrevValue != "" {
+			params.Set("prevValue", a.PrevValue)
+		}
+		form.Add("value", a.Value)
+	}
+
+	// Options which apply to both setting a key and creating a dir
+	if a.PrevIndex != 0 {
+		params.Set("prevIndex", strconv.FormatUint(a.PrevIndex, 10))
+	}
+	if a.PrevExist != PrevIgnore {
+		params.Set("prevExist", string(a.PrevExist))
+	}
+	if a.TTL > 0 {
+		form.Add("ttl", strconv.FormatUint(uint64(a.TTL.Seconds()), 10))
+	}
+
+	if a.Refresh {
+		form.Add("refresh", "true")
+	}
+	if a.NoValueOnSuccess {
+		params.Set("noValueOnSuccess", strconv.FormatBool(a.NoValueOnSuccess))
+	}
+
+	u.RawQuery = params.Encode()
+	body := strings.NewReader(form.Encode())
+
+	req, _ := http.NewRequest("PUT", u.String(), body)
+	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
+
+	return req
+}
+
+type deleteAction struct {
+	Prefix    string
+	Key       string
+	PrevValue string
+	PrevIndex uint64
+	Dir       bool
+	Recursive bool
+}
+
+func (a *deleteAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2KeysURL(ep, a.Prefix, a.Key)
+
+	params := u.Query()
+	if a.PrevValue != "" {
+		params.Set("prevValue", a.PrevValue)
+	}
+	if a.PrevIndex != 0 {
+		params.Set("prevIndex", strconv.FormatUint(a.PrevIndex, 10))
+	}
+	if a.Dir {
+		params.Set("dir", "true")
+	}
+	if a.Recursive {
+		params.Set("recursive", "true")
+	}
+	u.RawQuery = params.Encode()
+
+	req, _ := http.NewRequest("DELETE", u.String(), nil)
+	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
+
+	return req
+}
+
+type createInOrderAction struct {
+	Prefix string
+	Dir    string
+	Value  string
+	TTL    time.Duration
+}
+
+func (a *createInOrderAction) HTTPRequest(ep url.URL) *http.Request {
+	u := v2KeysURL(ep, a.Prefix, a.Dir)
+
+	form := url.Values{}
+	form.Add("value", a.Value)
+	if a.TTL > 0 {
+		form.Add("ttl", strconv.FormatUint(uint64(a.TTL.Seconds()), 10))
+	}
+	body := strings.NewReader(form.Encode())
+
+	req, _ := http.NewRequest("POST", u.String(), body)
+	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
+	return req
+}
+
+func unmarshalHTTPResponse(code int, header http.Header, body []byte) (res *Response, err error) {
+	switch code {
+	case http.StatusOK, http.StatusCreated:
+		if len(body) == 0 {
+			return nil, ErrEmptyBody
+		}
+		res, err = unmarshalSuccessfulKeysResponse(header, body)
+	default:
+		err = unmarshalFailedKeysResponse(body)
+	}
+	return res, err
+}
+
+func unmarshalSuccessfulKeysResponse(header http.Header, body []byte) (*Response, error) {
+	var res Response
+	err := codec.NewDecoderBytes(body, new(codec.JsonHandle)).Decode(&res)
+	if err != nil {
+		return nil, ErrInvalidJSON
+	}
+	if header.Get("X-Etcd-Index") != "" {
+		res.Index, err = strconv.ParseUint(header.Get("X-Etcd-Index"), 10, 64)
+		if err != nil {
+			return nil, err
+		}
+	}
+	res.ClusterID = header.Get("X-Etcd-Cluster-ID")
+	return &res, nil
+}
+
+func unmarshalFailedKeysResponse(body []byte) error {
+	var etcdErr Error
+	if err := json.Unmarshal(body, &etcdErr); err != nil {
+		return ErrInvalidJSON
+	}
+	return etcdErr
+}
diff --git a/vendor/github.com/coreos/etcd/client/members.go b/vendor/github.com/coreos/etcd/client/members.go
new file mode 100644
index 0000000000..aafa3d1b87
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/members.go
@@ -0,0 +1,303 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"net/url"
+	"path"
+
+	"github.com/coreos/etcd/pkg/types"
+)
+
+var (
+	defaultV2MembersPrefix = "/v2/members"
+	defaultLeaderSuffix    = "/leader"
+)
+
+type Member struct {
+	// ID is the unique identifier of this Member.
+	ID string `json:"id"`
+
+	// Name is a human-readable, non-unique identifier of this Member.
+	Name string `json:"name"`
+
+	// PeerURLs represents the HTTP(S) endpoints this Member uses to
+	// participate in etcd's consensus protocol.
+	PeerURLs []string `json:"peerURLs"`
+
+	// ClientURLs represents the HTTP(S) endpoints on which this Member
+	// serves its client-facing APIs.
+	ClientURLs []string `json:"clientURLs"`
+}
+
+type memberCollection []Member
+
+func (c *memberCollection) UnmarshalJSON(data []byte) error {
+	d := struct {
+		Members []Member
+	}{}
+
+	if err := json.Unmarshal(data, &d); err != nil {
+		return err
+	}
+
+	if d.Members == nil {
+		*c = make([]Member, 0)
+		return nil
+	}
+
+	*c = d.Members
+	return nil
+}
+
+type memberCreateOrUpdateRequest struct {
+	PeerURLs types.URLs
+}
+
+func (m *memberCreateOrUpdateRequest) MarshalJSON() ([]byte, error) {
+	s := struct {
+		PeerURLs []string `json:"peerURLs"`
+	}{
+		PeerURLs: make([]string, len(m.PeerURLs)),
+	}
+
+	for i, u := range m.PeerURLs {
+		s.PeerURLs[i] = u.String()
+	}
+
+	return json.Marshal(&s)
+}
+
+// NewMembersAPI constructs a new MembersAPI that uses HTTP to
+// interact with etcd's membership API.
+func NewMembersAPI(c Client) MembersAPI {
+	return &httpMembersAPI{
+		client: c,
+	}
+}
+
+type MembersAPI interface {
+	// List enumerates the current cluster membership.
+	List(ctx context.Context) ([]Member, error)
+
+	// Add instructs etcd to accept a new Member into the cluster.
+	Add(ctx context.Context, peerURL string) (*Member, error)
+
+	// Remove demotes an existing Member out of the cluster.
+	Remove(ctx context.Context, mID string) error
+
+	// Update instructs etcd to update an existing Member in the cluster.
+	Update(ctx context.Context, mID string, peerURLs []string) error
+
+	// Leader gets current leader of the cluster
+	Leader(ctx context.Context) (*Member, error)
+}
+
+type httpMembersAPI struct {
+	client httpClient
+}
+
+func (m *httpMembersAPI) List(ctx context.Context) ([]Member, error) {
+	req := &membersAPIActionList{}
+	resp, body, err := m.client.Do(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+
+	if err := assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		return nil, err
+	}
+
+	var mCollection memberCollection
+	if err := json.Unmarshal(body, &mCollection); err != nil {
+		return nil, err
+	}
+
+	return []Member(mCollection), nil
+}
+
+func (m *httpMembersAPI) Add(ctx context.Context, peerURL string) (*Member, error) {
+	urls, err := types.NewURLs([]string{peerURL})
+	if err != nil {
+		return nil, err
+	}
+
+	req := &membersAPIActionAdd{peerURLs: urls}
+	resp, body, err := m.client.Do(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+
+	if err := assertStatusCode(resp.StatusCode, http.StatusCreated, http.StatusConflict); err != nil {
+		return nil, err
+	}
+
+	if resp.StatusCode != http.StatusCreated {
+		var merr membersError
+		if err := json.Unmarshal(body, &merr); err != nil {
+			return nil, err
+		}
+		return nil, merr
+	}
+
+	var memb Member
+	if err := json.Unmarshal(body, &memb); err != nil {
+		return nil, err
+	}
+
+	return &memb, nil
+}
+
+func (m *httpMembersAPI) Update(ctx context.Context, memberID string, peerURLs []string) error {
+	urls, err := types.NewURLs(peerURLs)
+	if err != nil {
+		return err
+	}
+
+	req := &membersAPIActionUpdate{peerURLs: urls, memberID: memberID}
+	resp, body, err := m.client.Do(ctx, req)
+	if err != nil {
+		return err
+	}
+
+	if err := assertStatusCode(resp.StatusCode, http.StatusNoContent, http.StatusNotFound, http.StatusConflict); err != nil {
+		return err
+	}
+
+	if resp.StatusCode != http.StatusNoContent {
+		var merr membersError
+		if err := json.Unmarshal(body, &merr); err != nil {
+			return err
+		}
+		return merr
+	}
+
+	return nil
+}
+
+func (m *httpMembersAPI) Remove(ctx context.Context, memberID string) error {
+	req := &membersAPIActionRemove{memberID: memberID}
+	resp, _, err := m.client.Do(ctx, req)
+	if err != nil {
+		return err
+	}
+
+	return assertStatusCode(resp.StatusCode, http.StatusNoContent, http.StatusGone)
+}
+
+func (m *httpMembersAPI) Leader(ctx context.Context) (*Member, error) {
+	req := &membersAPIActionLeader{}
+	resp, body, err := m.client.Do(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+
+	if err := assertStatusCode(resp.StatusCode, http.StatusOK); err != nil {
+		return nil, err
+	}
+
+	var leader Member
+	if err := json.Unmarshal(body, &leader); err != nil {
+		return nil, err
+	}
+
+	return &leader, nil
+}
+
+type membersAPIActionList struct{}
+
+func (l *membersAPIActionList) HTTPRequest(ep url.URL) *http.Request {
+	u := v2MembersURL(ep)
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	return req
+}
+
+type membersAPIActionRemove struct {
+	memberID string
+}
+
+func (d *membersAPIActionRemove) HTTPRequest(ep url.URL) *http.Request {
+	u := v2MembersURL(ep)
+	u.Path = path.Join(u.Path, d.memberID)
+	req, _ := http.NewRequest("DELETE", u.String(), nil)
+	return req
+}
+
+type membersAPIActionAdd struct {
+	peerURLs types.URLs
+}
+
+func (a *membersAPIActionAdd) HTTPRequest(ep url.URL) *http.Request {
+	u := v2MembersURL(ep)
+	m := memberCreateOrUpdateRequest{PeerURLs: a.peerURLs}
+	b, _ := json.Marshal(&m)
+	req, _ := http.NewRequest("POST", u.String(), bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+type membersAPIActionUpdate struct {
+	memberID string
+	peerURLs types.URLs
+}
+
+func (a *membersAPIActionUpdate) HTTPRequest(ep url.URL) *http.Request {
+	u := v2MembersURL(ep)
+	m := memberCreateOrUpdateRequest{PeerURLs: a.peerURLs}
+	u.Path = path.Join(u.Path, a.memberID)
+	b, _ := json.Marshal(&m)
+	req, _ := http.NewRequest("PUT", u.String(), bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	return req
+}
+
+func assertStatusCode(got int, want ...int) (err error) {
+	for _, w := range want {
+		if w == got {
+			return nil
+		}
+	}
+	return fmt.Errorf("unexpected status code %d", got)
+}
+
+type membersAPIActionLeader struct{}
+
+func (l *membersAPIActionLeader) HTTPRequest(ep url.URL) *http.Request {
+	u := v2MembersURL(ep)
+	u.Path = path.Join(u.Path, defaultLeaderSuffix)
+	req, _ := http.NewRequest("GET", u.String(), nil)
+	return req
+}
+
+// v2MembersURL add the necessary path to the provided endpoint
+// to route requests to the default v2 members API.
+func v2MembersURL(ep url.URL) *url.URL {
+	ep.Path = path.Join(ep.Path, defaultV2MembersPrefix)
+	return &ep
+}
+
+type membersError struct {
+	Message string `json:"message"`
+	Code    int    `json:"-"`
+}
+
+func (e membersError) Error() string {
+	return e.Message
+}
diff --git a/vendor/github.com/coreos/etcd/client/util.go b/vendor/github.com/coreos/etcd/client/util.go
new file mode 100644
index 0000000000..15a8babff4
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/client/util.go
@@ -0,0 +1,53 @@
+// Copyright 2016 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package client
+
+import (
+	"regexp"
+)
+
+var (
+	roleNotFoundRegExp *regexp.Regexp
+	userNotFoundRegExp *regexp.Regexp
+)
+
+func init() {
+	roleNotFoundRegExp = regexp.MustCompile("auth: Role .* does not exist.")
+	userNotFoundRegExp = regexp.MustCompile("auth: User .* does not exist.")
+}
+
+// IsKeyNotFound returns true if the error code is ErrorCodeKeyNotFound.
+func IsKeyNotFound(err error) bool {
+	if cErr, ok := err.(Error); ok {
+		return cErr.Code == ErrorCodeKeyNotFound
+	}
+	return false
+}
+
+// IsRoleNotFound returns true if the error means role not found of v2 API.
+func IsRoleNotFound(err error) bool {
+	if ae, ok := err.(authError); ok {
+		return roleNotFoundRegExp.MatchString(ae.Message)
+	}
+	return false
+}
+
+// IsUserNotFound returns true if the error means user not found of v2 API.
+func IsUserNotFound(err error) bool {
+	if ae, ok := err.(authError); ok {
+		return userNotFoundRegExp.MatchString(ae.Message)
+	}
+	return false
+}
diff --git a/vendor/github.com/coreos/etcd/cmd/etcd b/vendor/github.com/coreos/etcd/cmd/etcd
new file mode 120000
index 0000000000..b870225aa0
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/cmd/etcd
@@ -0,0 +1 @@
+../
\ No newline at end of file
diff --git a/vendor/github.com/coreos/etcd/cmd/etcdctl b/vendor/github.com/coreos/etcd/cmd/etcdctl
new file mode 120000
index 0000000000..05bb269d60
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/cmd/etcdctl
@@ -0,0 +1 @@
+../etcdctl
\ No newline at end of file
diff --git a/vendor/github.com/coreos/etcd/cmd/functional b/vendor/github.com/coreos/etcd/cmd/functional
new file mode 120000
index 0000000000..44faa31aef
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/cmd/functional
@@ -0,0 +1 @@
+../functional
\ No newline at end of file
diff --git a/vendor/github.com/coreos/etcd/cmd/tools b/vendor/github.com/coreos/etcd/cmd/tools
new file mode 120000
index 0000000000..4887d6e0c9
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/cmd/tools
@@ -0,0 +1 @@
+../tools
\ No newline at end of file
diff --git a/vendor/github.com/coreos/etcd/pkg/pathutil/path.go b/vendor/github.com/coreos/etcd/pkg/pathutil/path.go
new file mode 100644
index 0000000000..f26254ba93
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/pathutil/path.go
@@ -0,0 +1,31 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package pathutil implements utility functions for handling slash-separated
+// paths.
+package pathutil
+
+import "path"
+
+// CanonicalURLPath returns the canonical url path for p, which follows the rules:
+// 1. the path always starts with "/"
+// 2. replace multiple slashes with a single slash
+// 3. replace each '.' '..' path name element with equivalent one
+// 4. keep the trailing slash
+// The function is borrowed from stdlib http.cleanPath in server.go.
+func CanonicalURLPath(p string) string {
+	if p == "" {
+		return "/"
+	}
+	if p[0] != '/' {
+		p = "/" + p
+	}
+	np := path.Clean(p)
+	// path.Clean removes trailing slash except for root,
+	// put the trailing slash back if necessary.
+	if p[len(p)-1] == '/' && np != "/" {
+		np += "/"
+	}
+	return np
+}
diff --git a/vendor/github.com/coreos/etcd/pkg/srv/srv.go b/vendor/github.com/coreos/etcd/pkg/srv/srv.go
new file mode 100644
index 0000000000..600061ce8e
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/srv/srv.go
@@ -0,0 +1,141 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package srv looks up DNS SRV records.
+package srv
+
+import (
+	"fmt"
+	"net"
+	"net/url"
+	"strings"
+
+	"github.com/coreos/etcd/pkg/types"
+)
+
+var (
+	// indirection for testing
+	lookupSRV      = net.LookupSRV // net.DefaultResolver.LookupSRV when ctxs don't conflict
+	resolveTCPAddr = net.ResolveTCPAddr
+)
+
+// GetCluster gets the cluster information via DNS discovery.
+// Also sees each entry as a separate instance.
+func GetCluster(service, name, dns string, apurls types.URLs) ([]string, error) {
+	tempName := int(0)
+	tcp2ap := make(map[string]url.URL)
+
+	// First, resolve the apurls
+	for _, url := range apurls {
+		tcpAddr, err := resolveTCPAddr("tcp", url.Host)
+		if err != nil {
+			return nil, err
+		}
+		tcp2ap[tcpAddr.String()] = url
+	}
+
+	stringParts := []string{}
+	updateNodeMap := func(service, scheme string) error {
+		_, addrs, err := lookupSRV(service, "tcp", dns)
+		if err != nil {
+			return err
+		}
+		for _, srv := range addrs {
+			port := fmt.Sprintf("%d", srv.Port)
+			host := net.JoinHostPort(srv.Target, port)
+			tcpAddr, terr := resolveTCPAddr("tcp", host)
+			if terr != nil {
+				err = terr
+				continue
+			}
+			n := ""
+			url, ok := tcp2ap[tcpAddr.String()]
+			if ok {
+				n = name
+			}
+			if n == "" {
+				n = fmt.Sprintf("%d", tempName)
+				tempName++
+			}
+			// SRV records have a trailing dot but URL shouldn't.
+			shortHost := strings.TrimSuffix(srv.Target, ".")
+			urlHost := net.JoinHostPort(shortHost, port)
+			if ok && url.Scheme != scheme {
+				err = fmt.Errorf("bootstrap at %s from DNS for %s has scheme mismatch with expected peer %s", scheme+"://"+urlHost, service, url.String())
+			} else {
+				stringParts = append(stringParts, fmt.Sprintf("%s=%s://%s", n, scheme, urlHost))
+			}
+		}
+		if len(stringParts) == 0 {
+			return err
+		}
+		return nil
+	}
+
+	failCount := 0
+	err := updateNodeMap(service+"-ssl", "https")
+	srvErr := make([]string, 2)
+	if err != nil {
+		srvErr[0] = fmt.Sprintf("error querying DNS SRV records for _%s-ssl %s", service, err)
+		failCount++
+	}
+	err = updateNodeMap(service, "http")
+	if err != nil {
+		srvErr[1] = fmt.Sprintf("error querying DNS SRV records for _%s %s", service, err)
+		failCount++
+	}
+	if failCount == 2 {
+		return nil, fmt.Errorf("srv: too many errors querying DNS SRV records (%q, %q)", srvErr[0], srvErr[1])
+	}
+	return stringParts, nil
+}
+
+type SRVClients struct {
+	Endpoints []string
+	SRVs      []*net.SRV
+}
+
+// GetClient looks up the client endpoints for a service and domain.
+func GetClient(service, domain string) (*SRVClients, error) {
+	var urls []*url.URL
+	var srvs []*net.SRV
+
+	updateURLs := func(service, scheme string) error {
+		_, addrs, err := lookupSRV(service, "tcp", domain)
+		if err != nil {
+			return err
+		}
+		for _, srv := range addrs {
+			urls = append(urls, &url.URL{
+				Scheme: scheme,
+				Host:   net.JoinHostPort(srv.Target, fmt.Sprintf("%d", srv.Port)),
+			})
+		}
+		srvs = append(srvs, addrs...)
+		return nil
+	}
+
+	errHTTPS := updateURLs(service+"-ssl", "https")
+	errHTTP := updateURLs(service, "http")
+
+	if errHTTPS != nil && errHTTP != nil {
+		return nil, fmt.Errorf("dns lookup errors: %s and %s", errHTTPS, errHTTP)
+	}
+
+	endpoints := make([]string, len(urls))
+	for i := range urls {
+		endpoints[i] = urls[i].String()
+	}
+	return &SRVClients{Endpoints: endpoints, SRVs: srvs}, nil
+}
diff --git a/vendor/github.com/coreos/etcd/pkg/types/doc.go b/vendor/github.com/coreos/etcd/pkg/types/doc.go
new file mode 100644
index 0000000000..de8ef0bd71
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/doc.go
@@ -0,0 +1,17 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package types declares various data types and implements type-checking
+// functions.
+package types
diff --git a/vendor/github.com/coreos/etcd/pkg/types/id.go b/vendor/github.com/coreos/etcd/pkg/types/id.go
new file mode 100644
index 0000000000..1b042d9ce6
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/id.go
@@ -0,0 +1,41 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+import (
+	"strconv"
+)
+
+// ID represents a generic identifier which is canonically
+// stored as a uint64 but is typically represented as a
+// base-16 string for input/output
+type ID uint64
+
+func (i ID) String() string {
+	return strconv.FormatUint(uint64(i), 16)
+}
+
+// IDFromString attempts to create an ID from a base-16 string.
+func IDFromString(s string) (ID, error) {
+	i, err := strconv.ParseUint(s, 16, 64)
+	return ID(i), err
+}
+
+// IDSlice implements the sort interface
+type IDSlice []ID
+
+func (p IDSlice) Len() int           { return len(p) }
+func (p IDSlice) Less(i, j int) bool { return uint64(p[i]) < uint64(p[j]) }
+func (p IDSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
diff --git a/vendor/github.com/coreos/etcd/pkg/types/set.go b/vendor/github.com/coreos/etcd/pkg/types/set.go
new file mode 100644
index 0000000000..c111b0c0c0
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/set.go
@@ -0,0 +1,178 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+import (
+	"reflect"
+	"sort"
+	"sync"
+)
+
+type Set interface {
+	Add(string)
+	Remove(string)
+	Contains(string) bool
+	Equals(Set) bool
+	Length() int
+	Values() []string
+	Copy() Set
+	Sub(Set) Set
+}
+
+func NewUnsafeSet(values ...string) *unsafeSet {
+	set := &unsafeSet{make(map[string]struct{})}
+	for _, v := range values {
+		set.Add(v)
+	}
+	return set
+}
+
+func NewThreadsafeSet(values ...string) *tsafeSet {
+	us := NewUnsafeSet(values...)
+	return &tsafeSet{us, sync.RWMutex{}}
+}
+
+type unsafeSet struct {
+	d map[string]struct{}
+}
+
+// Add adds a new value to the set (no-op if the value is already present)
+func (us *unsafeSet) Add(value string) {
+	us.d[value] = struct{}{}
+}
+
+// Remove removes the given value from the set
+func (us *unsafeSet) Remove(value string) {
+	delete(us.d, value)
+}
+
+// Contains returns whether the set contains the given value
+func (us *unsafeSet) Contains(value string) (exists bool) {
+	_, exists = us.d[value]
+	return exists
+}
+
+// ContainsAll returns whether the set contains all given values
+func (us *unsafeSet) ContainsAll(values []string) bool {
+	for _, s := range values {
+		if !us.Contains(s) {
+			return false
+		}
+	}
+	return true
+}
+
+// Equals returns whether the contents of two sets are identical
+func (us *unsafeSet) Equals(other Set) bool {
+	v1 := sort.StringSlice(us.Values())
+	v2 := sort.StringSlice(other.Values())
+	v1.Sort()
+	v2.Sort()
+	return reflect.DeepEqual(v1, v2)
+}
+
+// Length returns the number of elements in the set
+func (us *unsafeSet) Length() int {
+	return len(us.d)
+}
+
+// Values returns the values of the Set in an unspecified order.
+func (us *unsafeSet) Values() (values []string) {
+	values = make([]string, 0)
+	for val := range us.d {
+		values = append(values, val)
+	}
+	return values
+}
+
+// Copy creates a new Set containing the values of the first
+func (us *unsafeSet) Copy() Set {
+	cp := NewUnsafeSet()
+	for val := range us.d {
+		cp.Add(val)
+	}
+
+	return cp
+}
+
+// Sub removes all elements in other from the set
+func (us *unsafeSet) Sub(other Set) Set {
+	oValues := other.Values()
+	result := us.Copy().(*unsafeSet)
+
+	for _, val := range oValues {
+		if _, ok := result.d[val]; !ok {
+			continue
+		}
+		delete(result.d, val)
+	}
+
+	return result
+}
+
+type tsafeSet struct {
+	us *unsafeSet
+	m  sync.RWMutex
+}
+
+func (ts *tsafeSet) Add(value string) {
+	ts.m.Lock()
+	defer ts.m.Unlock()
+	ts.us.Add(value)
+}
+
+func (ts *tsafeSet) Remove(value string) {
+	ts.m.Lock()
+	defer ts.m.Unlock()
+	ts.us.Remove(value)
+}
+
+func (ts *tsafeSet) Contains(value string) (exists bool) {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	return ts.us.Contains(value)
+}
+
+func (ts *tsafeSet) Equals(other Set) bool {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	return ts.us.Equals(other)
+}
+
+func (ts *tsafeSet) Length() int {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	return ts.us.Length()
+}
+
+func (ts *tsafeSet) Values() (values []string) {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	return ts.us.Values()
+}
+
+func (ts *tsafeSet) Copy() Set {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	usResult := ts.us.Copy().(*unsafeSet)
+	return &tsafeSet{usResult, sync.RWMutex{}}
+}
+
+func (ts *tsafeSet) Sub(other Set) Set {
+	ts.m.RLock()
+	defer ts.m.RUnlock()
+	usResult := ts.us.Sub(other).(*unsafeSet)
+	return &tsafeSet{usResult, sync.RWMutex{}}
+}
diff --git a/vendor/github.com/coreos/etcd/pkg/types/slice.go b/vendor/github.com/coreos/etcd/pkg/types/slice.go
new file mode 100644
index 0000000000..0dd9ca798a
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/slice.go
@@ -0,0 +1,22 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+// Uint64Slice implements sort interface
+type Uint64Slice []uint64
+
+func (p Uint64Slice) Len() int           { return len(p) }
+func (p Uint64Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Uint64Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
diff --git a/vendor/github.com/coreos/etcd/pkg/types/urls.go b/vendor/github.com/coreos/etcd/pkg/types/urls.go
new file mode 100644
index 0000000000..9e5d03ff64
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/urls.go
@@ -0,0 +1,82 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"net/url"
+	"sort"
+	"strings"
+)
+
+type URLs []url.URL
+
+func NewURLs(strs []string) (URLs, error) {
+	all := make([]url.URL, len(strs))
+	if len(all) == 0 {
+		return nil, errors.New("no valid URLs given")
+	}
+	for i, in := range strs {
+		in = strings.TrimSpace(in)
+		u, err := url.Parse(in)
+		if err != nil {
+			return nil, err
+		}
+		if u.Scheme != "http" && u.Scheme != "https" && u.Scheme != "unix" && u.Scheme != "unixs" {
+			return nil, fmt.Errorf("URL scheme must be http, https, unix, or unixs: %s", in)
+		}
+		if _, _, err := net.SplitHostPort(u.Host); err != nil {
+			return nil, fmt.Errorf(`URL address does not have the form "host:port": %s`, in)
+		}
+		if u.Path != "" {
+			return nil, fmt.Errorf("URL must not contain a path: %s", in)
+		}
+		all[i] = *u
+	}
+	us := URLs(all)
+	us.Sort()
+
+	return us, nil
+}
+
+func MustNewURLs(strs []string) URLs {
+	urls, err := NewURLs(strs)
+	if err != nil {
+		panic(err)
+	}
+	return urls
+}
+
+func (us URLs) String() string {
+	return strings.Join(us.StringSlice(), ",")
+}
+
+func (us *URLs) Sort() {
+	sort.Sort(us)
+}
+func (us URLs) Len() int           { return len(us) }
+func (us URLs) Less(i, j int) bool { return us[i].String() < us[j].String() }
+func (us URLs) Swap(i, j int)      { us[i], us[j] = us[j], us[i] }
+
+func (us URLs) StringSlice() []string {
+	out := make([]string, len(us))
+	for i := range us {
+		out[i] = us[i].String()
+	}
+
+	return out
+}
diff --git a/vendor/github.com/coreos/etcd/pkg/types/urlsmap.go b/vendor/github.com/coreos/etcd/pkg/types/urlsmap.go
new file mode 100644
index 0000000000..47690cc381
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/pkg/types/urlsmap.go
@@ -0,0 +1,107 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package types
+
+import (
+	"fmt"
+	"sort"
+	"strings"
+)
+
+// URLsMap is a map from a name to its URLs.
+type URLsMap map[string]URLs
+
+// NewURLsMap returns a URLsMap instantiated from the given string,
+// which consists of discovery-formatted names-to-URLs, like:
+// mach0=http://1.1.1.1:2380,mach0=http://2.2.2.2::2380,mach1=http://3.3.3.3:2380,mach2=http://4.4.4.4:2380
+func NewURLsMap(s string) (URLsMap, error) {
+	m := parse(s)
+
+	cl := URLsMap{}
+	for name, urls := range m {
+		us, err := NewURLs(urls)
+		if err != nil {
+			return nil, err
+		}
+		cl[name] = us
+	}
+	return cl, nil
+}
+
+// NewURLsMapFromStringMap takes a map of strings and returns a URLsMap. The
+// string values in the map can be multiple values separated by the sep string.
+func NewURLsMapFromStringMap(m map[string]string, sep string) (URLsMap, error) {
+	var err error
+	um := URLsMap{}
+	for k, v := range m {
+		um[k], err = NewURLs(strings.Split(v, sep))
+		if err != nil {
+			return nil, err
+		}
+	}
+	return um, nil
+}
+
+// String turns URLsMap into discovery-formatted name-to-URLs sorted by name.
+func (c URLsMap) String() string {
+	var pairs []string
+	for name, urls := range c {
+		for _, url := range urls {
+			pairs = append(pairs, fmt.Sprintf("%s=%s", name, url.String()))
+		}
+	}
+	sort.Strings(pairs)
+	return strings.Join(pairs, ",")
+}
+
+// URLs returns a list of all URLs.
+// The returned list is sorted in ascending lexicographical order.
+func (c URLsMap) URLs() []string {
+	var urls []string
+	for _, us := range c {
+		for _, u := range us {
+			urls = append(urls, u.String())
+		}
+	}
+	sort.Strings(urls)
+	return urls
+}
+
+// Len returns the size of URLsMap.
+func (c URLsMap) Len() int {
+	return len(c)
+}
+
+// parse parses the given string and returns a map listing the values specified for each key.
+func parse(s string) map[string][]string {
+	m := make(map[string][]string)
+	for s != "" {
+		key := s
+		if i := strings.IndexAny(key, ","); i >= 0 {
+			key, s = key[:i], key[i+1:]
+		} else {
+			s = ""
+		}
+		if key == "" {
+			continue
+		}
+		value := ""
+		if i := strings.Index(key, "="); i >= 0 {
+			key, value = key[:i], key[i+1:]
+		}
+		m[key] = append(m[key], value)
+	}
+	return m
+}
diff --git a/vendor/github.com/coreos/etcd/raft/raftpb/raft.pb.go b/vendor/github.com/coreos/etcd/raft/raftpb/raft.pb.go
new file mode 100644
index 0000000000..fd9ee3729e
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/raft/raftpb/raft.pb.go
@@ -0,0 +1,2004 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: raft.proto
+
+/*
+	Package raftpb is a generated protocol buffer package.
+
+	It is generated from these files:
+		raft.proto
+
+	It has these top-level messages:
+		Entry
+		SnapshotMetadata
+		Snapshot
+		Message
+		HardState
+		ConfState
+		ConfChange
+*/
+package raftpb
+
+import (
+	"fmt"
+
+	proto "github.com/golang/protobuf/proto"
+
+	math "math"
+
+	_ "github.com/gogo/protobuf/gogoproto"
+
+	io "io"
+)
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.ProtoPackageIsVersion2 // please upgrade the proto package
+
+type EntryType int32
+
+const (
+	EntryNormal     EntryType = 0
+	EntryConfChange EntryType = 1
+)
+
+var EntryType_name = map[int32]string{
+	0: "EntryNormal",
+	1: "EntryConfChange",
+}
+var EntryType_value = map[string]int32{
+	"EntryNormal":     0,
+	"EntryConfChange": 1,
+}
+
+func (x EntryType) Enum() *EntryType {
+	p := new(EntryType)
+	*p = x
+	return p
+}
+func (x EntryType) String() string {
+	return proto.EnumName(EntryType_name, int32(x))
+}
+func (x *EntryType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(EntryType_value, data, "EntryType")
+	if err != nil {
+		return err
+	}
+	*x = EntryType(value)
+	return nil
+}
+func (EntryType) EnumDescriptor() ([]byte, []int) { return fileDescriptorRaft, []int{0} }
+
+type MessageType int32
+
+const (
+	MsgHup            MessageType = 0
+	MsgBeat           MessageType = 1
+	MsgProp           MessageType = 2
+	MsgApp            MessageType = 3
+	MsgAppResp        MessageType = 4
+	MsgVote           MessageType = 5
+	MsgVoteResp       MessageType = 6
+	MsgSnap           MessageType = 7
+	MsgHeartbeat      MessageType = 8
+	MsgHeartbeatResp  MessageType = 9
+	MsgUnreachable    MessageType = 10
+	MsgSnapStatus     MessageType = 11
+	MsgCheckQuorum    MessageType = 12
+	MsgTransferLeader MessageType = 13
+	MsgTimeoutNow     MessageType = 14
+	MsgReadIndex      MessageType = 15
+	MsgReadIndexResp  MessageType = 16
+	MsgPreVote        MessageType = 17
+	MsgPreVoteResp    MessageType = 18
+)
+
+var MessageType_name = map[int32]string{
+	0:  "MsgHup",
+	1:  "MsgBeat",
+	2:  "MsgProp",
+	3:  "MsgApp",
+	4:  "MsgAppResp",
+	5:  "MsgVote",
+	6:  "MsgVoteResp",
+	7:  "MsgSnap",
+	8:  "MsgHeartbeat",
+	9:  "MsgHeartbeatResp",
+	10: "MsgUnreachable",
+	11: "MsgSnapStatus",
+	12: "MsgCheckQuorum",
+	13: "MsgTransferLeader",
+	14: "MsgTimeoutNow",
+	15: "MsgReadIndex",
+	16: "MsgReadIndexResp",
+	17: "MsgPreVote",
+	18: "MsgPreVoteResp",
+}
+var MessageType_value = map[string]int32{
+	"MsgHup":            0,
+	"MsgBeat":           1,
+	"MsgProp":           2,
+	"MsgApp":            3,
+	"MsgAppResp":        4,
+	"MsgVote":           5,
+	"MsgVoteResp":       6,
+	"MsgSnap":           7,
+	"MsgHeartbeat":      8,
+	"MsgHeartbeatResp":  9,
+	"MsgUnreachable":    10,
+	"MsgSnapStatus":     11,
+	"MsgCheckQuorum":    12,
+	"MsgTransferLeader": 13,
+	"MsgTimeoutNow":     14,
+	"MsgReadIndex":      15,
+	"MsgReadIndexResp":  16,
+	"MsgPreVote":        17,
+	"MsgPreVoteResp":    18,
+}
+
+func (x MessageType) Enum() *MessageType {
+	p := new(MessageType)
+	*p = x
+	return p
+}
+func (x MessageType) String() string {
+	return proto.EnumName(MessageType_name, int32(x))
+}
+func (x *MessageType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(MessageType_value, data, "MessageType")
+	if err != nil {
+		return err
+	}
+	*x = MessageType(value)
+	return nil
+}
+func (MessageType) EnumDescriptor() ([]byte, []int) { return fileDescriptorRaft, []int{1} }
+
+type ConfChangeType int32
+
+const (
+	ConfChangeAddNode        ConfChangeType = 0
+	ConfChangeRemoveNode     ConfChangeType = 1
+	ConfChangeUpdateNode     ConfChangeType = 2
+	ConfChangeAddLearnerNode ConfChangeType = 3
+)
+
+var ConfChangeType_name = map[int32]string{
+	0: "ConfChangeAddNode",
+	1: "ConfChangeRemoveNode",
+	2: "ConfChangeUpdateNode",
+	3: "ConfChangeAddLearnerNode",
+}
+var ConfChangeType_value = map[string]int32{
+	"ConfChangeAddNode":        0,
+	"ConfChangeRemoveNode":     1,
+	"ConfChangeUpdateNode":     2,
+	"ConfChangeAddLearnerNode": 3,
+}
+
+func (x ConfChangeType) Enum() *ConfChangeType {
+	p := new(ConfChangeType)
+	*p = x
+	return p
+}
+func (x ConfChangeType) String() string {
+	return proto.EnumName(ConfChangeType_name, int32(x))
+}
+func (x *ConfChangeType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(ConfChangeType_value, data, "ConfChangeType")
+	if err != nil {
+		return err
+	}
+	*x = ConfChangeType(value)
+	return nil
+}
+func (ConfChangeType) EnumDescriptor() ([]byte, []int) { return fileDescriptorRaft, []int{2} }
+
+type Entry struct {
+	Term             uint64    `protobuf:"varint,2,opt,name=Term" json:"Term"`
+	Index            uint64    `protobuf:"varint,3,opt,name=Index" json:"Index"`
+	Type             EntryType `protobuf:"varint,1,opt,name=Type,enum=raftpb.EntryType" json:"Type"`
+	Data             []byte    `protobuf:"bytes,4,opt,name=Data" json:"Data,omitempty"`
+	XXX_unrecognized []byte    `json:"-"`
+}
+
+func (m *Entry) Reset()                    { *m = Entry{} }
+func (m *Entry) String() string            { return proto.CompactTextString(m) }
+func (*Entry) ProtoMessage()               {}
+func (*Entry) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{0} }
+
+type SnapshotMetadata struct {
+	ConfState        ConfState `protobuf:"bytes,1,opt,name=conf_state,json=confState" json:"conf_state"`
+	Index            uint64    `protobuf:"varint,2,opt,name=index" json:"index"`
+	Term             uint64    `protobuf:"varint,3,opt,name=term" json:"term"`
+	XXX_unrecognized []byte    `json:"-"`
+}
+
+func (m *SnapshotMetadata) Reset()                    { *m = SnapshotMetadata{} }
+func (m *SnapshotMetadata) String() string            { return proto.CompactTextString(m) }
+func (*SnapshotMetadata) ProtoMessage()               {}
+func (*SnapshotMetadata) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{1} }
+
+type Snapshot struct {
+	Data             []byte           `protobuf:"bytes,1,opt,name=data" json:"data,omitempty"`
+	Metadata         SnapshotMetadata `protobuf:"bytes,2,opt,name=metadata" json:"metadata"`
+	XXX_unrecognized []byte           `json:"-"`
+}
+
+func (m *Snapshot) Reset()                    { *m = Snapshot{} }
+func (m *Snapshot) String() string            { return proto.CompactTextString(m) }
+func (*Snapshot) ProtoMessage()               {}
+func (*Snapshot) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{2} }
+
+type Message struct {
+	Type             MessageType `protobuf:"varint,1,opt,name=type,enum=raftpb.MessageType" json:"type"`
+	To               uint64      `protobuf:"varint,2,opt,name=to" json:"to"`
+	From             uint64      `protobuf:"varint,3,opt,name=from" json:"from"`
+	Term             uint64      `protobuf:"varint,4,opt,name=term" json:"term"`
+	LogTerm          uint64      `protobuf:"varint,5,opt,name=logTerm" json:"logTerm"`
+	Index            uint64      `protobuf:"varint,6,opt,name=index" json:"index"`
+	Entries          []Entry     `protobuf:"bytes,7,rep,name=entries" json:"entries"`
+	Commit           uint64      `protobuf:"varint,8,opt,name=commit" json:"commit"`
+	Snapshot         Snapshot    `protobuf:"bytes,9,opt,name=snapshot" json:"snapshot"`
+	Reject           bool        `protobuf:"varint,10,opt,name=reject" json:"reject"`
+	RejectHint       uint64      `protobuf:"varint,11,opt,name=rejectHint" json:"rejectHint"`
+	Context          []byte      `protobuf:"bytes,12,opt,name=context" json:"context,omitempty"`
+	XXX_unrecognized []byte      `json:"-"`
+}
+
+func (m *Message) Reset()                    { *m = Message{} }
+func (m *Message) String() string            { return proto.CompactTextString(m) }
+func (*Message) ProtoMessage()               {}
+func (*Message) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{3} }
+
+type HardState struct {
+	Term             uint64 `protobuf:"varint,1,opt,name=term" json:"term"`
+	Vote             uint64 `protobuf:"varint,2,opt,name=vote" json:"vote"`
+	Commit           uint64 `protobuf:"varint,3,opt,name=commit" json:"commit"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *HardState) Reset()                    { *m = HardState{} }
+func (m *HardState) String() string            { return proto.CompactTextString(m) }
+func (*HardState) ProtoMessage()               {}
+func (*HardState) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{4} }
+
+type ConfState struct {
+	Nodes            []uint64 `protobuf:"varint,1,rep,name=nodes" json:"nodes,omitempty"`
+	Learners         []uint64 `protobuf:"varint,2,rep,name=learners" json:"learners,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *ConfState) Reset()                    { *m = ConfState{} }
+func (m *ConfState) String() string            { return proto.CompactTextString(m) }
+func (*ConfState) ProtoMessage()               {}
+func (*ConfState) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{5} }
+
+type ConfChange struct {
+	ID               uint64         `protobuf:"varint,1,opt,name=ID" json:"ID"`
+	Type             ConfChangeType `protobuf:"varint,2,opt,name=Type,enum=raftpb.ConfChangeType" json:"Type"`
+	NodeID           uint64         `protobuf:"varint,3,opt,name=NodeID" json:"NodeID"`
+	Context          []byte         `protobuf:"bytes,4,opt,name=Context" json:"Context,omitempty"`
+	XXX_unrecognized []byte         `json:"-"`
+}
+
+func (m *ConfChange) Reset()                    { *m = ConfChange{} }
+func (m *ConfChange) String() string            { return proto.CompactTextString(m) }
+func (*ConfChange) ProtoMessage()               {}
+func (*ConfChange) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{6} }
+
+func init() {
+	proto.RegisterType((*Entry)(nil), "raftpb.Entry")
+	proto.RegisterType((*SnapshotMetadata)(nil), "raftpb.SnapshotMetadata")
+	proto.RegisterType((*Snapshot)(nil), "raftpb.Snapshot")
+	proto.RegisterType((*Message)(nil), "raftpb.Message")
+	proto.RegisterType((*HardState)(nil), "raftpb.HardState")
+	proto.RegisterType((*ConfState)(nil), "raftpb.ConfState")
+	proto.RegisterType((*ConfChange)(nil), "raftpb.ConfChange")
+	proto.RegisterEnum("raftpb.EntryType", EntryType_name, EntryType_value)
+	proto.RegisterEnum("raftpb.MessageType", MessageType_name, MessageType_value)
+	proto.RegisterEnum("raftpb.ConfChangeType", ConfChangeType_name, ConfChangeType_value)
+}
+func (m *Entry) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Entry) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0x8
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Type))
+	dAtA[i] = 0x10
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Term))
+	dAtA[i] = 0x18
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Index))
+	if m.Data != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *SnapshotMetadata) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SnapshotMetadata) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.ConfState.Size()))
+	n1, err := m.ConfState.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n1
+	dAtA[i] = 0x10
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Index))
+	dAtA[i] = 0x18
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Term))
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *Snapshot) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Snapshot) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Data != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Metadata.Size()))
+	n2, err := m.Metadata.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n2
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *Message) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Message) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0x8
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Type))
+	dAtA[i] = 0x10
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.To))
+	dAtA[i] = 0x18
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.From))
+	dAtA[i] = 0x20
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Term))
+	dAtA[i] = 0x28
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.LogTerm))
+	dAtA[i] = 0x30
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Index))
+	if len(m.Entries) > 0 {
+		for _, msg := range m.Entries {
+			dAtA[i] = 0x3a
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	dAtA[i] = 0x40
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Commit))
+	dAtA[i] = 0x4a
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Snapshot.Size()))
+	n3, err := m.Snapshot.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n3
+	dAtA[i] = 0x50
+	i++
+	if m.Reject {
+		dAtA[i] = 1
+	} else {
+		dAtA[i] = 0
+	}
+	i++
+	dAtA[i] = 0x58
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.RejectHint))
+	if m.Context != nil {
+		dAtA[i] = 0x62
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Context)))
+		i += copy(dAtA[i:], m.Context)
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *HardState) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HardState) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0x8
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Term))
+	dAtA[i] = 0x10
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Vote))
+	dAtA[i] = 0x18
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Commit))
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *ConfState) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ConfState) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, num := range m.Nodes {
+			dAtA[i] = 0x8
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(num))
+		}
+	}
+	if len(m.Learners) > 0 {
+		for _, num := range m.Learners {
+			dAtA[i] = 0x10
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(num))
+		}
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *ConfChange) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ConfChange) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0x8
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.ID))
+	dAtA[i] = 0x10
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Type))
+	dAtA[i] = 0x18
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.NodeID))
+	if m.Context != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Context)))
+		i += copy(dAtA[i:], m.Context)
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func encodeVarintRaft(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *Entry) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovRaft(uint64(m.Type))
+	n += 1 + sovRaft(uint64(m.Term))
+	n += 1 + sovRaft(uint64(m.Index))
+	if m.Data != nil {
+		l = len(m.Data)
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *SnapshotMetadata) Size() (n int) {
+	var l int
+	_ = l
+	l = m.ConfState.Size()
+	n += 1 + l + sovRaft(uint64(l))
+	n += 1 + sovRaft(uint64(m.Index))
+	n += 1 + sovRaft(uint64(m.Term))
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *Snapshot) Size() (n int) {
+	var l int
+	_ = l
+	if m.Data != nil {
+		l = len(m.Data)
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	l = m.Metadata.Size()
+	n += 1 + l + sovRaft(uint64(l))
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *Message) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovRaft(uint64(m.Type))
+	n += 1 + sovRaft(uint64(m.To))
+	n += 1 + sovRaft(uint64(m.From))
+	n += 1 + sovRaft(uint64(m.Term))
+	n += 1 + sovRaft(uint64(m.LogTerm))
+	n += 1 + sovRaft(uint64(m.Index))
+	if len(m.Entries) > 0 {
+		for _, e := range m.Entries {
+			l = e.Size()
+			n += 1 + l + sovRaft(uint64(l))
+		}
+	}
+	n += 1 + sovRaft(uint64(m.Commit))
+	l = m.Snapshot.Size()
+	n += 1 + l + sovRaft(uint64(l))
+	n += 2
+	n += 1 + sovRaft(uint64(m.RejectHint))
+	if m.Context != nil {
+		l = len(m.Context)
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *HardState) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovRaft(uint64(m.Term))
+	n += 1 + sovRaft(uint64(m.Vote))
+	n += 1 + sovRaft(uint64(m.Commit))
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *ConfState) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, e := range m.Nodes {
+			n += 1 + sovRaft(uint64(e))
+		}
+	}
+	if len(m.Learners) > 0 {
+		for _, e := range m.Learners {
+			n += 1 + sovRaft(uint64(e))
+		}
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *ConfChange) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovRaft(uint64(m.ID))
+	n += 1 + sovRaft(uint64(m.Type))
+	n += 1 + sovRaft(uint64(m.NodeID))
+	if m.Context != nil {
+		l = len(m.Context)
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func sovRaft(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozRaft(x uint64) (n int) {
+	return sovRaft(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (m *Entry) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Entry: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Entry: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (EntryType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Term", wireType)
+			}
+			m.Term = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Term |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Index", wireType)
+			}
+			m.Index = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Index |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SnapshotMetadata) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SnapshotMetadata: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SnapshotMetadata: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfState", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.ConfState.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Index", wireType)
+			}
+			m.Index = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Index |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Term", wireType)
+			}
+			m.Term = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Term |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Snapshot) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Snapshot: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Snapshot: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Metadata", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Metadata.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Message) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Message: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Message: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (MessageType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field To", wireType)
+			}
+			m.To = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.To |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field From", wireType)
+			}
+			m.From = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.From |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Term", wireType)
+			}
+			m.Term = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Term |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LogTerm", wireType)
+			}
+			m.LogTerm = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LogTerm |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Index", wireType)
+			}
+			m.Index = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Index |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Entries", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Entries = append(m.Entries, Entry{})
+			if err := m.Entries[len(m.Entries)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Commit", wireType)
+			}
+			m.Commit = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Commit |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Snapshot", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Snapshot.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reject", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Reject = bool(v != 0)
+		case 11:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RejectHint", wireType)
+			}
+			m.RejectHint = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.RejectHint |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 12:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Context", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Context = append(m.Context[:0], dAtA[iNdEx:postIndex]...)
+			if m.Context == nil {
+				m.Context = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *HardState) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HardState: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HardState: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Term", wireType)
+			}
+			m.Term = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Term |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Vote", wireType)
+			}
+			m.Vote = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Vote |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Commit", wireType)
+			}
+			m.Commit = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Commit |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ConfState) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ConfState: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ConfState: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType == 0 {
+				var v uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Nodes = append(m.Nodes, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthRaft
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v uint64
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowRaft
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (uint64(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Nodes = append(m.Nodes, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nodes", wireType)
+			}
+		case 2:
+			if wireType == 0 {
+				var v uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Learners = append(m.Learners, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthRaft
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v uint64
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowRaft
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (uint64(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Learners = append(m.Learners, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Learners", wireType)
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ConfChange) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ConfChange: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ConfChange: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			m.ID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (ConfChangeType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			m.NodeID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.NodeID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Context", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Context = append(m.Context[:0], dAtA[iNdEx:postIndex]...)
+			if m.Context == nil {
+				m.Context = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipRaft(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthRaft
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipRaft(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthRaft = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowRaft   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("raft.proto", fileDescriptorRaft) }
+
+var fileDescriptorRaft = []byte{
+	// 815 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x64, 0x54, 0xcd, 0x6e, 0x23, 0x45,
+	0x10, 0xf6, 0x8c, 0xc7, 0x7f, 0x35, 0x8e, 0xd3, 0xa9, 0x35, 0xa8, 0x15, 0x45, 0xc6, 0xb2, 0x38,
+	0x58, 0x41, 0x1b, 0x20, 0x07, 0x0e, 0x48, 0x1c, 0x36, 0x09, 0x52, 0x22, 0xad, 0xa3, 0xc5, 0x9b,
+	0xe5, 0x80, 0x84, 0x50, 0xc7, 0x53, 0x9e, 0x18, 0x32, 0xd3, 0xa3, 0x9e, 0xf6, 0xb2, 0xb9, 0x20,
+	0x1e, 0x80, 0x07, 0xe0, 0xc2, 0xfb, 0xe4, 0xb8, 0x12, 0x77, 0xc4, 0x86, 0x17, 0x41, 0xdd, 0xd3,
+	0x63, 0xcf, 0x24, 0xb7, 0xae, 0xef, 0xab, 0xae, 0xfa, 0xea, 0xeb, 0x9a, 0x01, 0x50, 0x62, 0xa9,
+	0x8f, 0x32, 0x25, 0xb5, 0xc4, 0xb6, 0x39, 0x67, 0xd7, 0xfb, 0xc3, 0x58, 0xc6, 0xd2, 0x42, 0x9f,
+	0x9b, 0x53, 0xc1, 0x4e, 0x7e, 0x83, 0xd6, 0xb7, 0xa9, 0x56, 0x77, 0xf8, 0x19, 0x04, 0x57, 0x77,
+	0x19, 0x71, 0x6f, 0xec, 0x4d, 0x07, 0xc7, 0x7b, 0x47, 0xc5, 0xad, 0x23, 0x4b, 0x1a, 0xe2, 0x24,
+	0xb8, 0xff, 0xe7, 0x93, 0xc6, 0xdc, 0x26, 0x21, 0x87, 0xe0, 0x8a, 0x54, 0xc2, 0xfd, 0xb1, 0x37,
+	0x0d, 0x36, 0x0c, 0xa9, 0x04, 0xf7, 0xa1, 0x75, 0x91, 0x46, 0xf4, 0x8e, 0x37, 0x2b, 0x54, 0x01,
+	0x21, 0x42, 0x70, 0x26, 0xb4, 0xe0, 0xc1, 0xd8, 0x9b, 0xf6, 0xe7, 0xf6, 0x3c, 0xf9, 0xdd, 0x03,
+	0xf6, 0x3a, 0x15, 0x59, 0x7e, 0x23, 0xf5, 0x8c, 0xb4, 0x88, 0x84, 0x16, 0xf8, 0x15, 0xc0, 0x42,
+	0xa6, 0xcb, 0x9f, 0x72, 0x2d, 0x74, 0xa1, 0x28, 0xdc, 0x2a, 0x3a, 0x95, 0xe9, 0xf2, 0xb5, 0x21,
+	0x5c, 0xf1, 0xde, 0xa2, 0x04, 0x4c, 0xf3, 0x95, 0x6d, 0x5e, 0xd5, 0x55, 0x40, 0x46, 0xb2, 0x36,
+	0x92, 0xab, 0xba, 0x2c, 0x32, 0xf9, 0x01, 0xba, 0xa5, 0x02, 0x23, 0xd1, 0x28, 0xb0, 0x3d, 0xfb,
+	0x73, 0x7b, 0xc6, 0xaf, 0xa1, 0x9b, 0x38, 0x65, 0xb6, 0x70, 0x78, 0xcc, 0x4b, 0x2d, 0x8f, 0x95,
+	0xbb, 0xba, 0x9b, 0xfc, 0xc9, 0x5f, 0x4d, 0xe8, 0xcc, 0x28, 0xcf, 0x45, 0x4c, 0xf8, 0x1c, 0x02,
+	0xbd, 0x75, 0xf8, 0x59, 0x59, 0xc3, 0xd1, 0x55, 0x8f, 0x4d, 0x1a, 0x0e, 0xc1, 0xd7, 0xb2, 0x36,
+	0x89, 0xaf, 0xa5, 0x19, 0x63, 0xa9, 0xe4, 0xa3, 0x31, 0x0c, 0xb2, 0x19, 0x30, 0x78, 0x3c, 0x20,
+	0x8e, 0xa0, 0x73, 0x2b, 0x63, 0xfb, 0x60, 0xad, 0x0a, 0x59, 0x82, 0x5b, 0xdb, 0xda, 0x4f, 0x6d,
+	0x7b, 0x0e, 0x1d, 0x4a, 0xb5, 0x5a, 0x51, 0xce, 0x3b, 0xe3, 0xe6, 0x34, 0x3c, 0xde, 0xa9, 0x6d,
+	0x46, 0x59, 0xca, 0xe5, 0xe0, 0x01, 0xb4, 0x17, 0x32, 0x49, 0x56, 0x9a, 0x77, 0x2b, 0xb5, 0x1c,
+	0x86, 0xc7, 0xd0, 0xcd, 0x9d, 0x63, 0xbc, 0x67, 0x9d, 0x64, 0x8f, 0x9d, 0x2c, 0x1d, 0x2c, 0xf3,
+	0x4c, 0x45, 0x45, 0x3f, 0xd3, 0x42, 0x73, 0x18, 0x7b, 0xd3, 0x6e, 0x59, 0xb1, 0xc0, 0xf0, 0x53,
+	0x80, 0xe2, 0x74, 0xbe, 0x4a, 0x35, 0x0f, 0x2b, 0x3d, 0x2b, 0x38, 0x72, 0xe8, 0x2c, 0x64, 0xaa,
+	0xe9, 0x9d, 0xe6, 0x7d, 0xfb, 0xb0, 0x65, 0x38, 0xf9, 0x11, 0x7a, 0xe7, 0x42, 0x45, 0xc5, 0xfa,
+	0x94, 0x0e, 0x7a, 0x4f, 0x1c, 0xe4, 0x10, 0xbc, 0x95, 0x9a, 0xea, 0xfb, 0x6e, 0x90, 0xca, 0xc0,
+	0xcd, 0xa7, 0x03, 0x4f, 0xbe, 0x81, 0xde, 0x66, 0x5d, 0x71, 0x08, 0xad, 0x54, 0x46, 0x94, 0x73,
+	0x6f, 0xdc, 0x9c, 0x06, 0xf3, 0x22, 0xc0, 0x7d, 0xe8, 0xde, 0x92, 0x50, 0x29, 0xa9, 0x9c, 0xfb,
+	0x96, 0xd8, 0xc4, 0x93, 0x3f, 0x3c, 0x00, 0x73, 0xff, 0xf4, 0x46, 0xa4, 0xb1, 0xdd, 0x88, 0x8b,
+	0xb3, 0x9a, 0x3a, 0xff, 0xe2, 0x0c, 0xbf, 0x70, 0x1f, 0xae, 0x6f, 0xd7, 0xea, 0xe3, 0xea, 0x67,
+	0x52, 0xdc, 0x7b, 0xf2, 0xf5, 0x1e, 0x40, 0xfb, 0x52, 0x46, 0x74, 0x71, 0x56, 0xd7, 0x5c, 0x60,
+	0xc6, 0xac, 0x53, 0x67, 0x56, 0xf1, 0xa1, 0x96, 0xe1, 0xe1, 0x97, 0xd0, 0xdb, 0xfc, 0x0e, 0x70,
+	0x17, 0x42, 0x1b, 0x5c, 0x4a, 0x95, 0x88, 0x5b, 0xd6, 0xc0, 0x67, 0xb0, 0x6b, 0x81, 0x6d, 0x63,
+	0xe6, 0x1d, 0xfe, 0xed, 0x43, 0x58, 0x59, 0x70, 0x04, 0x68, 0xcf, 0xf2, 0xf8, 0x7c, 0x9d, 0xb1,
+	0x06, 0x86, 0xd0, 0x99, 0xe5, 0xf1, 0x09, 0x09, 0xcd, 0x3c, 0x17, 0xbc, 0x52, 0x32, 0x63, 0xbe,
+	0xcb, 0x7a, 0x91, 0x65, 0xac, 0x89, 0x03, 0x80, 0xe2, 0x3c, 0xa7, 0x3c, 0x63, 0x81, 0x4b, 0xfc,
+	0x5e, 0x6a, 0x62, 0x2d, 0x23, 0xc2, 0x05, 0x96, 0x6d, 0x3b, 0xd6, 0x2c, 0x13, 0xeb, 0x20, 0x83,
+	0xbe, 0x69, 0x46, 0x42, 0xe9, 0x6b, 0xd3, 0xa5, 0x8b, 0x43, 0x60, 0x55, 0xc4, 0x5e, 0xea, 0x21,
+	0xc2, 0x60, 0x96, 0xc7, 0x6f, 0x52, 0x45, 0x62, 0x71, 0x23, 0xae, 0x6f, 0x89, 0x01, 0xee, 0xc1,
+	0x8e, 0x2b, 0x64, 0x1e, 0x6f, 0x9d, 0xb3, 0xd0, 0xa5, 0x9d, 0xde, 0xd0, 0xe2, 0x97, 0xef, 0xd6,
+	0x52, 0xad, 0x13, 0xd6, 0xc7, 0x8f, 0x60, 0x6f, 0x96, 0xc7, 0x57, 0x4a, 0xa4, 0xf9, 0x92, 0xd4,
+	0x4b, 0x12, 0x11, 0x29, 0xb6, 0xe3, 0x6e, 0x5f, 0xad, 0x12, 0x92, 0x6b, 0x7d, 0x29, 0x7f, 0x65,
+	0x03, 0x27, 0x66, 0x4e, 0x22, 0xb2, 0x3f, 0x43, 0xb6, 0xeb, 0xc4, 0x6c, 0x10, 0x2b, 0x86, 0xb9,
+	0x79, 0x5f, 0x29, 0xb2, 0x23, 0xee, 0xb9, 0xae, 0x2e, 0xb6, 0x39, 0x78, 0x78, 0x07, 0x83, 0xfa,
+	0xf3, 0x1a, 0x1d, 0x5b, 0xe4, 0x45, 0x14, 0x99, 0xb7, 0x64, 0x0d, 0xe4, 0x30, 0xdc, 0xc2, 0x73,
+	0x4a, 0xe4, 0x5b, 0xb2, 0x8c, 0x57, 0x67, 0xde, 0x64, 0x91, 0xd0, 0x05, 0xe3, 0xe3, 0x01, 0xf0,
+	0x5a, 0xa9, 0x97, 0xc5, 0x36, 0x5a, 0xb6, 0x79, 0xc2, 0xef, 0x3f, 0x8c, 0x1a, 0xef, 0x3f, 0x8c,
+	0x1a, 0xf7, 0x0f, 0x23, 0xef, 0xfd, 0xc3, 0xc8, 0xfb, 0xf7, 0x61, 0xe4, 0xfd, 0xf9, 0xdf, 0xa8,
+	0xf1, 0x7f, 0x00, 0x00, 0x00, 0xff, 0xff, 0x86, 0x52, 0x5b, 0xe0, 0x74, 0x06, 0x00, 0x00,
+}
diff --git a/vendor/github.com/coreos/etcd/version/version.go b/vendor/github.com/coreos/etcd/version/version.go
new file mode 100644
index 0000000000..ea04ae5675
--- /dev/null
+++ b/vendor/github.com/coreos/etcd/version/version.go
@@ -0,0 +1,56 @@
+// Copyright 2015 The etcd Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package version implements etcd version parsing and contains latest version
+// information.
+package version
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/coreos/go-semver/semver"
+)
+
+var (
+	// MinClusterVersion is the min cluster version this etcd binary is compatible with.
+	MinClusterVersion = "3.0.0"
+	Version           = "3.3.5"
+	APIVersion        = "unknown"
+
+	// Git SHA Value will be set during build
+	GitSHA = "Not provided (use ./build instead of go build)"
+)
+
+func init() {
+	ver, err := semver.NewVersion(Version)
+	if err == nil {
+		APIVersion = fmt.Sprintf("%d.%d", ver.Major, ver.Minor)
+	}
+}
+
+type Versions struct {
+	Server  string `json:"etcdserver"`
+	Cluster string `json:"etcdcluster"`
+	// TODO: raft state machine version
+}
+
+// Cluster only keeps the major.minor.
+func Cluster(v string) string {
+	vs := strings.Split(v, ".")
+	if len(vs) <= 2 {
+		return v
+	}
+	return fmt.Sprintf("%s.%s", vs[0], vs[1])
+}
diff --git a/vendor/github.com/coreos/go-semver/LICENSE b/vendor/github.com/coreos/go-semver/LICENSE
new file mode 100644
index 0000000000..d645695673
--- /dev/null
+++ b/vendor/github.com/coreos/go-semver/LICENSE
@@ -0,0 +1,202 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/coreos/go-semver/semver/semver.go b/vendor/github.com/coreos/go-semver/semver/semver.go
new file mode 100644
index 0000000000..110fc23e15
--- /dev/null
+++ b/vendor/github.com/coreos/go-semver/semver/semver.go
@@ -0,0 +1,268 @@
+// Copyright 2013-2015 CoreOS, Inc.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Semantic Versions http://semver.org
+package semver
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"strconv"
+	"strings"
+)
+
+type Version struct {
+	Major      int64
+	Minor      int64
+	Patch      int64
+	PreRelease PreRelease
+	Metadata   string
+}
+
+type PreRelease string
+
+func splitOff(input *string, delim string) (val string) {
+	parts := strings.SplitN(*input, delim, 2)
+
+	if len(parts) == 2 {
+		*input = parts[0]
+		val = parts[1]
+	}
+
+	return val
+}
+
+func New(version string) *Version {
+	return Must(NewVersion(version))
+}
+
+func NewVersion(version string) (*Version, error) {
+	v := Version{}
+
+	if err := v.Set(version); err != nil {
+		return nil, err
+	}
+
+	return &v, nil
+}
+
+// Must is a helper for wrapping NewVersion and will panic if err is not nil.
+func Must(v *Version, err error) *Version {
+	if err != nil {
+		panic(err)
+	}
+	return v
+}
+
+// Set parses and updates v from the given version string. Implements flag.Value
+func (v *Version) Set(version string) error {
+	metadata := splitOff(&version, "+")
+	preRelease := PreRelease(splitOff(&version, "-"))
+	dotParts := strings.SplitN(version, ".", 3)
+
+	if len(dotParts) != 3 {
+		return fmt.Errorf("%s is not in dotted-tri format", version)
+	}
+
+	parsed := make([]int64, 3, 3)
+
+	for i, v := range dotParts[:3] {
+		val, err := strconv.ParseInt(v, 10, 64)
+		parsed[i] = val
+		if err != nil {
+			return err
+		}
+	}
+
+	v.Metadata = metadata
+	v.PreRelease = preRelease
+	v.Major = parsed[0]
+	v.Minor = parsed[1]
+	v.Patch = parsed[2]
+	return nil
+}
+
+func (v Version) String() string {
+	var buffer bytes.Buffer
+
+	fmt.Fprintf(&buffer, "%d.%d.%d", v.Major, v.Minor, v.Patch)
+
+	if v.PreRelease != "" {
+		fmt.Fprintf(&buffer, "-%s", v.PreRelease)
+	}
+
+	if v.Metadata != "" {
+		fmt.Fprintf(&buffer, "+%s", v.Metadata)
+	}
+
+	return buffer.String()
+}
+
+func (v *Version) UnmarshalYAML(unmarshal func(interface{}) error) error {
+	var data string
+	if err := unmarshal(&data); err != nil {
+		return err
+	}
+	return v.Set(data)
+}
+
+func (v Version) MarshalJSON() ([]byte, error) {
+	return []byte(`"` + v.String() + `"`), nil
+}
+
+func (v *Version) UnmarshalJSON(data []byte) error {
+	l := len(data)
+	if l == 0 || string(data) == `""` {
+		return nil
+	}
+	if l < 2 || data[0] != '"' || data[l-1] != '"' {
+		return errors.New("invalid semver string")
+	}
+	return v.Set(string(data[1 : l-1]))
+}
+
+// Compare tests if v is less than, equal to, or greater than versionB,
+// returning -1, 0, or +1 respectively.
+func (v Version) Compare(versionB Version) int {
+	if cmp := recursiveCompare(v.Slice(), versionB.Slice()); cmp != 0 {
+		return cmp
+	}
+	return preReleaseCompare(v, versionB)
+}
+
+// Equal tests if v is equal to versionB.
+func (v Version) Equal(versionB Version) bool {
+	return v.Compare(versionB) == 0
+}
+
+// LessThan tests if v is less than versionB.
+func (v Version) LessThan(versionB Version) bool {
+	return v.Compare(versionB) < 0
+}
+
+// Slice converts the comparable parts of the semver into a slice of integers.
+func (v Version) Slice() []int64 {
+	return []int64{v.Major, v.Minor, v.Patch}
+}
+
+func (p PreRelease) Slice() []string {
+	preRelease := string(p)
+	return strings.Split(preRelease, ".")
+}
+
+func preReleaseCompare(versionA Version, versionB Version) int {
+	a := versionA.PreRelease
+	b := versionB.PreRelease
+
+	/* Handle the case where if two versions are otherwise equal it is the
+	 * one without a PreRelease that is greater */
+	if len(a) == 0 && (len(b) > 0) {
+		return 1
+	} else if len(b) == 0 && (len(a) > 0) {
+		return -1
+	}
+
+	// If there is a prerelease, check and compare each part.
+	return recursivePreReleaseCompare(a.Slice(), b.Slice())
+}
+
+func recursiveCompare(versionA []int64, versionB []int64) int {
+	if len(versionA) == 0 {
+		return 0
+	}
+
+	a := versionA[0]
+	b := versionB[0]
+
+	if a > b {
+		return 1
+	} else if a < b {
+		return -1
+	}
+
+	return recursiveCompare(versionA[1:], versionB[1:])
+}
+
+func recursivePreReleaseCompare(versionA []string, versionB []string) int {
+	// A larger set of pre-release fields has a higher precedence than a smaller set,
+	// if all of the preceding identifiers are equal.
+	if len(versionA) == 0 {
+		if len(versionB) > 0 {
+			return -1
+		}
+		return 0
+	} else if len(versionB) == 0 {
+		// We're longer than versionB so return 1.
+		return 1
+	}
+
+	a := versionA[0]
+	b := versionB[0]
+
+	aInt := false
+	bInt := false
+
+	aI, err := strconv.Atoi(versionA[0])
+	if err == nil {
+		aInt = true
+	}
+
+	bI, err := strconv.Atoi(versionB[0])
+	if err == nil {
+		bInt = true
+	}
+
+	// Handle Integer Comparison
+	if aInt && bInt {
+		if aI > bI {
+			return 1
+		} else if aI < bI {
+			return -1
+		}
+	}
+
+	// Handle String Comparison
+	if a > b {
+		return 1
+	} else if a < b {
+		return -1
+	}
+
+	return recursivePreReleaseCompare(versionA[1:], versionB[1:])
+}
+
+// BumpMajor increments the Major field by 1 and resets all other fields to their default values
+func (v *Version) BumpMajor() {
+	v.Major += 1
+	v.Minor = 0
+	v.Patch = 0
+	v.PreRelease = PreRelease("")
+	v.Metadata = ""
+}
+
+// BumpMinor increments the Minor field by 1 and resets all other fields to their default values
+func (v *Version) BumpMinor() {
+	v.Minor += 1
+	v.Patch = 0
+	v.PreRelease = PreRelease("")
+	v.Metadata = ""
+}
+
+// BumpPatch increments the Patch field by 1 and resets all other fields to their default values
+func (v *Version) BumpPatch() {
+	v.Patch += 1
+	v.PreRelease = PreRelease("")
+	v.Metadata = ""
+}
diff --git a/vendor/github.com/coreos/go-semver/semver/sort.go b/vendor/github.com/coreos/go-semver/semver/sort.go
new file mode 100644
index 0000000000..e256b41a5d
--- /dev/null
+++ b/vendor/github.com/coreos/go-semver/semver/sort.go
@@ -0,0 +1,38 @@
+// Copyright 2013-2015 CoreOS, Inc.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package semver
+
+import (
+	"sort"
+)
+
+type Versions []*Version
+
+func (s Versions) Len() int {
+	return len(s)
+}
+
+func (s Versions) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s Versions) Less(i, j int) bool {
+	return s[i].LessThan(*s[j])
+}
+
+// Sort sorts the given slice of Version
+func Sort(versions []*Version) {
+	sort.Sort(Versions(versions))
+}
diff --git a/vendor/github.com/deckarep/golang-set/LICENSE b/vendor/github.com/deckarep/golang-set/LICENSE
new file mode 100644
index 0000000000..b5768f89cf
--- /dev/null
+++ b/vendor/github.com/deckarep/golang-set/LICENSE
@@ -0,0 +1,22 @@
+Open Source Initiative OSI - The MIT License (MIT):Licensing
+
+The MIT License (MIT)
+Copyright (c) 2013 Ralph Caraveo (deckarep@gmail.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
\ No newline at end of file
diff --git a/vendor/github.com/deckarep/golang-set/iterator.go b/vendor/github.com/deckarep/golang-set/iterator.go
new file mode 100644
index 0000000000..9dfecade42
--- /dev/null
+++ b/vendor/github.com/deckarep/golang-set/iterator.go
@@ -0,0 +1,58 @@
+/*
+Open Source Initiative OSI - The MIT License (MIT):Licensing
+
+The MIT License (MIT)
+Copyright (c) 2013 Ralph Caraveo (deckarep@gmail.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+*/
+
+package mapset
+
+// Iterator defines an iterator over a Set, its C channel can be used to range over the Set's
+// elements.
+type Iterator struct {
+	C    <-chan interface{}
+	stop chan struct{}
+}
+
+// Stop stops the Iterator, no further elements will be received on C, C will be closed.
+func (i *Iterator) Stop() {
+	// Allows for Stop() to be called multiple times
+	// (close() panics when called on already closed channel)
+	defer func() {
+		recover()
+	}()
+
+	close(i.stop)
+
+	// Exhaust any remaining elements.
+	for range i.C {
+	}
+}
+
+// newIterator returns a new Iterator instance together with its item and stop channels.
+func newIterator() (*Iterator, chan<- interface{}, <-chan struct{}) {
+	itemChan := make(chan interface{})
+	stopChan := make(chan struct{})
+	return &Iterator{
+		C:    itemChan,
+		stop: stopChan,
+	}, itemChan, stopChan
+}
diff --git a/vendor/github.com/deckarep/golang-set/set.go b/vendor/github.com/deckarep/golang-set/set.go
new file mode 100644
index 0000000000..7411982a96
--- /dev/null
+++ b/vendor/github.com/deckarep/golang-set/set.go
@@ -0,0 +1,214 @@
+/*
+Open Source Initiative OSI - The MIT License (MIT):Licensing
+
+The MIT License (MIT)
+Copyright (c) 2013 Ralph Caraveo (deckarep@gmail.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+*/
+
+// Package mapset implements a simple and generic set collection.
+// Items stored within it are unordered and unique. It supports
+// typical set operations: membership testing, intersection, union,
+// difference, symmetric difference and cloning.
+//
+// Package mapset provides two implementations of the Set
+// interface. The default implementation is safe for concurrent
+// access, but a non-thread-safe implementation is also provided for
+// programs that can benefit from the slight speed improvement and
+// that can enforce mutual exclusion through other means.
+package mapset
+
+// Set is the primary interface provided by the mapset package.  It
+// represents an unordered set of data and a large number of
+// operations that can be applied to that set.
+type Set interface {
+	// Adds an element to the set. Returns whether
+	// the item was added.
+	Add(i interface{}) bool
+
+	// Returns the number of elements in the set.
+	Cardinality() int
+
+	// Removes all elements from the set, leaving
+	// the empty set.
+	Clear()
+
+	// Returns a clone of the set using the same
+	// implementation, duplicating all keys.
+	Clone() Set
+
+	// Returns whether the given items
+	// are all in the set.
+	Contains(i ...interface{}) bool
+
+	// Returns the difference between this set
+	// and other. The returned set will contain
+	// all elements of this set that are not also
+	// elements of other.
+	//
+	// Note that the argument to Difference
+	// must be of the same type as the receiver
+	// of the method. Otherwise, Difference will
+	// panic.
+	Difference(other Set) Set
+
+	// Determines if two sets are equal to each
+	// other. If they have the same cardinality
+	// and contain the same elements, they are
+	// considered equal. The order in which
+	// the elements were added is irrelevant.
+	//
+	// Note that the argument to Equal must be
+	// of the same type as the receiver of the
+	// method. Otherwise, Equal will panic.
+	Equal(other Set) bool
+
+	// Returns a new set containing only the elements
+	// that exist only in both sets.
+	//
+	// Note that the argument to Intersect
+	// must be of the same type as the receiver
+	// of the method. Otherwise, Intersect will
+	// panic.
+	Intersect(other Set) Set
+
+	// Determines if every element in this set is in
+	// the other set but the two sets are not equal.
+	//
+	// Note that the argument to IsProperSubset
+	// must be of the same type as the receiver
+	// of the method. Otherwise, IsProperSubset
+	// will panic.
+	IsProperSubset(other Set) bool
+
+	// Determines if every element in the other set
+	// is in this set but the two sets are not
+	// equal.
+	//
+	// Note that the argument to IsSuperset
+	// must be of the same type as the receiver
+	// of the method. Otherwise, IsSuperset will
+	// panic.
+	IsProperSuperset(other Set) bool
+
+	// Determines if every element in this set is in
+	// the other set.
+	//
+	// Note that the argument to IsSubset
+	// must be of the same type as the receiver
+	// of the method. Otherwise, IsSubset will
+	// panic.
+	IsSubset(other Set) bool
+
+	// Determines if every element in the other set
+	// is in this set.
+	//
+	// Note that the argument to IsSuperset
+	// must be of the same type as the receiver
+	// of the method. Otherwise, IsSuperset will
+	// panic.
+	IsSuperset(other Set) bool
+
+	// Iterates over elements and executes the passed func against each element.
+	// If passed func returns true, stop iteration at the time.
+	Each(func(interface{}) bool)
+
+	// Returns a channel of elements that you can
+	// range over.
+	Iter() <-chan interface{}
+
+	// Returns an Iterator object that you can
+	// use to range over the set.
+	Iterator() *Iterator
+
+	// Remove a single element from the set.
+	Remove(i interface{})
+
+	// Provides a convenient string representation
+	// of the current state of the set.
+	String() string
+
+	// Returns a new set with all elements which are
+	// in either this set or the other set but not in both.
+	//
+	// Note that the argument to SymmetricDifference
+	// must be of the same type as the receiver
+	// of the method. Otherwise, SymmetricDifference
+	// will panic.
+	SymmetricDifference(other Set) Set
+
+	// Returns a new set with all elements in both sets.
+	//
+	// Note that the argument to Union must be of the
+
+	// same type as the receiver of the method.
+	// Otherwise, IsSuperset will panic.
+	Union(other Set) Set
+
+	// Returns all subsets of a given set (Power Set).
+	PowerSet() Set
+
+	// Returns the Cartesian Product of two sets.
+	CartesianProduct(other Set) Set
+
+	// Returns the members of the set as a slice.
+	ToSlice() []interface{}
+}
+
+// NewSet creates and returns a reference to an empty set.  Operations
+// on the resulting set are thread-safe.
+func NewSet(s ...interface{}) Set {
+	set := newThreadSafeSet()
+	for _, item := range s {
+		set.Add(item)
+	}
+	return &set
+}
+
+// NewSetWith creates and returns a new set with the given elements.
+// Operations on the resulting set are thread-safe.
+func NewSetWith(elts ...interface{}) Set {
+	return NewSetFromSlice(elts)
+}
+
+// NewSetFromSlice creates and returns a reference to a set from an
+// existing slice.  Operations on the resulting set are thread-safe.
+func NewSetFromSlice(s []interface{}) Set {
+	a := NewSet(s...)
+	return a
+}
+
+// NewThreadUnsafeSet creates and returns a reference to an empty set.
+// Operations on the resulting set are not thread-safe.
+func NewThreadUnsafeSet() Set {
+	set := newThreadUnsafeSet()
+	return &set
+}
+
+// NewThreadUnsafeSetFromSlice creates and returns a reference to a
+// set from an existing slice.  Operations on the resulting set are
+// not thread-safe.
+func NewThreadUnsafeSetFromSlice(s []interface{}) Set {
+	a := NewThreadUnsafeSet()
+	for _, item := range s {
+		a.Add(item)
+	}
+	return a
+}
diff --git a/vendor/github.com/deckarep/golang-set/threadsafe.go b/vendor/github.com/deckarep/golang-set/threadsafe.go
new file mode 100644
index 0000000000..8dae16195b
--- /dev/null
+++ b/vendor/github.com/deckarep/golang-set/threadsafe.go
@@ -0,0 +1,271 @@
+/*
+Open Source Initiative OSI - The MIT License (MIT):Licensing
+
+The MIT License (MIT)
+Copyright (c) 2013 Ralph Caraveo (deckarep@gmail.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+*/
+
+package mapset
+
+import "sync"
+
+type threadSafeSet struct {
+	s threadUnsafeSet
+	sync.RWMutex
+}
+
+func newThreadSafeSet() threadSafeSet {
+	return threadSafeSet{s: newThreadUnsafeSet()}
+}
+
+func (set *threadSafeSet) Add(i interface{}) bool {
+	set.Lock()
+	ret := set.s.Add(i)
+	set.Unlock()
+	return ret
+}
+
+func (set *threadSafeSet) Contains(i ...interface{}) bool {
+	set.RLock()
+	ret := set.s.Contains(i...)
+	set.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) IsSubset(other Set) bool {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	ret := set.s.IsSubset(&o.s)
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) IsProperSubset(other Set) bool {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	defer set.RUnlock()
+	o.RLock()
+	defer o.RUnlock()
+
+	return set.s.IsProperSubset(&o.s)
+}
+
+func (set *threadSafeSet) IsSuperset(other Set) bool {
+	return other.IsSubset(set)
+}
+
+func (set *threadSafeSet) IsProperSuperset(other Set) bool {
+	return other.IsProperSubset(set)
+}
+
+func (set *threadSafeSet) Union(other Set) Set {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	unsafeUnion := set.s.Union(&o.s).(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeUnion}
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) Intersect(other Set) Set {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	unsafeIntersection := set.s.Intersect(&o.s).(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeIntersection}
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) Difference(other Set) Set {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	unsafeDifference := set.s.Difference(&o.s).(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeDifference}
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) SymmetricDifference(other Set) Set {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	unsafeDifference := set.s.SymmetricDifference(&o.s).(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeDifference}
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) Clear() {
+	set.Lock()
+	set.s = newThreadUnsafeSet()
+	set.Unlock()
+}
+
+func (set *threadSafeSet) Remove(i interface{}) {
+	set.Lock()
+	delete(set.s, i)
+	set.Unlock()
+}
+
+func (set *threadSafeSet) Cardinality() int {
+	set.RLock()
+	defer set.RUnlock()
+	return len(set.s)
+}
+
+func (set *threadSafeSet) Each(cb func(interface{}) bool) {
+	set.RLock()
+	for elem := range set.s {
+		if cb(elem) {
+			break
+		}
+	}
+	set.RUnlock()
+}
+
+func (set *threadSafeSet) Iter() <-chan interface{} {
+	ch := make(chan interface{})
+	go func() {
+		set.RLock()
+
+		for elem := range set.s {
+			ch <- elem
+		}
+		close(ch)
+		set.RUnlock()
+	}()
+
+	return ch
+}
+
+func (set *threadSafeSet) Iterator() *Iterator {
+	iterator, ch, stopCh := newIterator()
+
+	go func() {
+		set.RLock()
+	L:
+		for elem := range set.s {
+			select {
+			case <-stopCh:
+				break L
+			case ch <- elem:
+			}
+		}
+		close(ch)
+		set.RUnlock()
+	}()
+
+	return iterator
+}
+
+func (set *threadSafeSet) Equal(other Set) bool {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	ret := set.s.Equal(&o.s)
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) Clone() Set {
+	set.RLock()
+
+	unsafeClone := set.s.Clone().(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeClone}
+	set.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) String() string {
+	set.RLock()
+	ret := set.s.String()
+	set.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) PowerSet() Set {
+	set.RLock()
+	ret := set.s.PowerSet()
+	set.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) CartesianProduct(other Set) Set {
+	o := other.(*threadSafeSet)
+
+	set.RLock()
+	o.RLock()
+
+	unsafeCartProduct := set.s.CartesianProduct(&o.s).(*threadUnsafeSet)
+	ret := &threadSafeSet{s: *unsafeCartProduct}
+	set.RUnlock()
+	o.RUnlock()
+	return ret
+}
+
+func (set *threadSafeSet) ToSlice() []interface{} {
+	keys := make([]interface{}, 0, set.Cardinality())
+	set.RLock()
+	for elem := range set.s {
+		keys = append(keys, elem)
+	}
+	set.RUnlock()
+	return keys
+}
+
+func (set *threadSafeSet) MarshalJSON() ([]byte, error) {
+	set.RLock()
+	b, err := set.s.MarshalJSON()
+	set.RUnlock()
+
+	return b, err
+}
+
+func (set *threadSafeSet) UnmarshalJSON(p []byte) error {
+	set.RLock()
+	err := set.s.UnmarshalJSON(p)
+	set.RUnlock()
+
+	return err
+}
diff --git a/vendor/github.com/deckarep/golang-set/threadunsafe.go b/vendor/github.com/deckarep/golang-set/threadunsafe.go
new file mode 100644
index 0000000000..fec2e3781e
--- /dev/null
+++ b/vendor/github.com/deckarep/golang-set/threadunsafe.go
@@ -0,0 +1,325 @@
+/*
+Open Source Initiative OSI - The MIT License (MIT):Licensing
+
+The MIT License (MIT)
+Copyright (c) 2013 Ralph Caraveo (deckarep@gmail.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+*/
+
+package mapset
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+type threadUnsafeSet map[interface{}]struct{}
+
+// An OrderedPair represents a 2-tuple of values.
+type OrderedPair struct {
+	First  interface{}
+	Second interface{}
+}
+
+func newThreadUnsafeSet() threadUnsafeSet {
+	return make(threadUnsafeSet)
+}
+
+// Equal says whether two 2-tuples contain the same values in the same order.
+func (pair *OrderedPair) Equal(other OrderedPair) bool {
+	if pair.First == other.First &&
+		pair.Second == other.Second {
+		return true
+	}
+
+	return false
+}
+
+func (set *threadUnsafeSet) Add(i interface{}) bool {
+	_, found := (*set)[i]
+	(*set)[i] = struct{}{}
+	return !found //False if it existed already
+}
+
+func (set *threadUnsafeSet) Contains(i ...interface{}) bool {
+	for _, val := range i {
+		if _, ok := (*set)[val]; !ok {
+			return false
+		}
+	}
+	return true
+}
+
+func (set *threadUnsafeSet) IsSubset(other Set) bool {
+	_ = other.(*threadUnsafeSet)
+	for elem := range *set {
+		if !other.Contains(elem) {
+			return false
+		}
+	}
+	return true
+}
+
+func (set *threadUnsafeSet) IsProperSubset(other Set) bool {
+	return set.IsSubset(other) && !set.Equal(other)
+}
+
+func (set *threadUnsafeSet) IsSuperset(other Set) bool {
+	return other.IsSubset(set)
+}
+
+func (set *threadUnsafeSet) IsProperSuperset(other Set) bool {
+	return set.IsSuperset(other) && !set.Equal(other)
+}
+
+func (set *threadUnsafeSet) Union(other Set) Set {
+	o := other.(*threadUnsafeSet)
+
+	unionedSet := newThreadUnsafeSet()
+
+	for elem := range *set {
+		unionedSet.Add(elem)
+	}
+	for elem := range *o {
+		unionedSet.Add(elem)
+	}
+	return &unionedSet
+}
+
+func (set *threadUnsafeSet) Intersect(other Set) Set {
+	o := other.(*threadUnsafeSet)
+
+	intersection := newThreadUnsafeSet()
+	// loop over smaller set
+	if set.Cardinality() < other.Cardinality() {
+		for elem := range *set {
+			if other.Contains(elem) {
+				intersection.Add(elem)
+			}
+		}
+	} else {
+		for elem := range *o {
+			if set.Contains(elem) {
+				intersection.Add(elem)
+			}
+		}
+	}
+	return &intersection
+}
+
+func (set *threadUnsafeSet) Difference(other Set) Set {
+	_ = other.(*threadUnsafeSet)
+
+	difference := newThreadUnsafeSet()
+	for elem := range *set {
+		if !other.Contains(elem) {
+			difference.Add(elem)
+		}
+	}
+	return &difference
+}
+
+func (set *threadUnsafeSet) SymmetricDifference(other Set) Set {
+	_ = other.(*threadUnsafeSet)
+
+	aDiff := set.Difference(other)
+	bDiff := other.Difference(set)
+	return aDiff.Union(bDiff)
+}
+
+func (set *threadUnsafeSet) Clear() {
+	*set = newThreadUnsafeSet()
+}
+
+func (set *threadUnsafeSet) Remove(i interface{}) {
+	delete(*set, i)
+}
+
+func (set *threadUnsafeSet) Cardinality() int {
+	return len(*set)
+}
+
+func (set *threadUnsafeSet) Each(cb func(interface{}) bool) {
+	for elem := range *set {
+		if cb(elem) {
+			break
+		}
+	}
+}
+
+func (set *threadUnsafeSet) Iter() <-chan interface{} {
+	ch := make(chan interface{})
+	go func() {
+		for elem := range *set {
+			ch <- elem
+		}
+		close(ch)
+	}()
+
+	return ch
+}
+
+func (set *threadUnsafeSet) Iterator() *Iterator {
+	iterator, ch, stopCh := newIterator()
+
+	go func() {
+	L:
+		for elem := range *set {
+			select {
+			case <-stopCh:
+				break L
+			case ch <- elem:
+			}
+		}
+		close(ch)
+	}()
+
+	return iterator
+}
+
+func (set *threadUnsafeSet) Equal(other Set) bool {
+	_ = other.(*threadUnsafeSet)
+
+	if set.Cardinality() != other.Cardinality() {
+		return false
+	}
+	for elem := range *set {
+		if !other.Contains(elem) {
+			return false
+		}
+	}
+	return true
+}
+
+func (set *threadUnsafeSet) Clone() Set {
+	clonedSet := newThreadUnsafeSet()
+	for elem := range *set {
+		clonedSet.Add(elem)
+	}
+	return &clonedSet
+}
+
+func (set *threadUnsafeSet) String() string {
+	items := make([]string, 0, len(*set))
+
+	for elem := range *set {
+		items = append(items, fmt.Sprintf("%v", elem))
+	}
+	return fmt.Sprintf("Set{%s}", strings.Join(items, ", "))
+}
+
+// String outputs a 2-tuple in the form "(A, B)".
+func (pair OrderedPair) String() string {
+	return fmt.Sprintf("(%v, %v)", pair.First, pair.Second)
+}
+
+func (set *threadUnsafeSet) PowerSet() Set {
+	powSet := NewThreadUnsafeSet()
+	nullset := newThreadUnsafeSet()
+	powSet.Add(&nullset)
+
+	for es := range *set {
+		u := newThreadUnsafeSet()
+		j := powSet.Iter()
+		for er := range j {
+			p := newThreadUnsafeSet()
+			if reflect.TypeOf(er).Name() == "" {
+				k := er.(*threadUnsafeSet)
+				for ek := range *(k) {
+					p.Add(ek)
+				}
+			} else {
+				p.Add(er)
+			}
+			p.Add(es)
+			u.Add(&p)
+		}
+
+		powSet = powSet.Union(&u)
+	}
+
+	return powSet
+}
+
+func (set *threadUnsafeSet) CartesianProduct(other Set) Set {
+	o := other.(*threadUnsafeSet)
+	cartProduct := NewThreadUnsafeSet()
+
+	for i := range *set {
+		for j := range *o {
+			elem := OrderedPair{First: i, Second: j}
+			cartProduct.Add(elem)
+		}
+	}
+
+	return cartProduct
+}
+
+func (set *threadUnsafeSet) ToSlice() []interface{} {
+	keys := make([]interface{}, 0, set.Cardinality())
+	for elem := range *set {
+		keys = append(keys, elem)
+	}
+
+	return keys
+}
+
+// MarshalJSON creates a JSON array from the set, it marshals all elements
+func (set *threadUnsafeSet) MarshalJSON() ([]byte, error) {
+	items := make([]string, 0, set.Cardinality())
+
+	for elem := range *set {
+		b, err := json.Marshal(elem)
+		if err != nil {
+			return nil, err
+		}
+
+		items = append(items, string(b))
+	}
+
+	return []byte(fmt.Sprintf("[%s]", strings.Join(items, ","))), nil
+}
+
+// UnmarshalJSON recreates a set from a JSON array, it only decodes
+// primitive types. Numbers are decoded as json.Number.
+func (set *threadUnsafeSet) UnmarshalJSON(b []byte) error {
+	var i []interface{}
+
+	d := json.NewDecoder(bytes.NewReader(b))
+	d.UseNumber()
+	err := d.Decode(&i)
+	if err != nil {
+		return err
+	}
+
+	for _, v := range i {
+		switch t := v.(type) {
+		case []interface{}, map[string]interface{}:
+			continue
+		default:
+			set.Add(t)
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/distribution/AUTHORS b/vendor/github.com/docker/distribution/AUTHORS
new file mode 100644
index 0000000000..252ff8aa2a
--- /dev/null
+++ b/vendor/github.com/docker/distribution/AUTHORS
@@ -0,0 +1,182 @@
+a-palchikov <deemok@gmail.com>
+Aaron Lehmann <aaron.lehmann@docker.com>
+Aaron Schlesinger <aschlesinger@deis.com>
+Aaron Vinson <avinson.public@gmail.com>
+Adam Duke <adam.v.duke@gmail.com>
+Adam Enger <adamenger@gmail.com>
+Adrian Mouat <adrian.mouat@gmail.com>
+Ahmet Alp Balkan <ahmetalpbalkan@gmail.com>
+Alex Chan <alex.chan@metaswitch.com>
+Alex Elman <aelman@indeed.com>
+Alexey Gladkov <gladkov.alexey@gmail.com>
+allencloud <allen.sun@daocloud.io>
+amitshukla <ashukla73@hotmail.com>
+Amy Lindburg <amy.lindburg@docker.com>
+Andrew Hsu <andrewhsu@acm.org>
+Andrew Meredith <andymeredith@gmail.com>
+Andrew T Nguyen <andrew.nguyen@docker.com>
+Andrey Kostov <kostov.andrey@gmail.com>
+Andy Goldstein <agoldste@redhat.com>
+Anis Elleuch <vadmeste@gmail.com>
+Anton Tiurin <noxiouz@yandex.ru>
+Antonio Mercado <amercado@thinknode.com>
+Antonio Murdaca <runcom@redhat.com>
+Anusha Ragunathan <anusha@docker.com>
+Arien Holthuizen <aholthuizen@schubergphilis.com>
+Arnaud Porterie <arnaud.porterie@docker.com>
+Arthur Baars <arthur@semmle.com>
+Asuka Suzuki <hello@tanksuzuki.com>
+Avi Miller <avi.miller@oracle.com>
+Ayose Cazorla <ayosec@gmail.com>
+BadZen <dave.trombley@gmail.com>
+Ben Bodenmiller <bbodenmiller@hotmail.com>
+Ben Firshman <ben@firshman.co.uk>
+bin liu <liubin0329@gmail.com>
+Brian Bland <brian.bland@docker.com>
+burnettk <burnettk@gmail.com>
+Carson A <ca@carsonoid.net>
+Cezar Sa Espinola <cezarsa@gmail.com>
+Charles Smith <charles.smith@docker.com>
+Chris Dillon <squarism@gmail.com>
+cuiwei13 <cuiwei13@pku.edu.cn>
+cyli <cyli@twistedmatrix.com>
+Daisuke Fujita <dtanshi45@gmail.com>
+Daniel Huhn <daniel@danielhuhn.de>
+Darren Shepherd <darren@rancher.com>
+Dave Trombley <dave.trombley@gmail.com>
+Dave Tucker <dt@docker.com>
+David Lawrence <david.lawrence@docker.com>
+David Verhasselt <david@crowdway.com>
+David Xia <dxia@spotify.com>
+davidli <wenquan.li@hp.com>
+Dejan Golja <dejan@golja.org>
+Derek McGowan <derek@mcgstyle.net>
+Diogo Mónica <diogo.monica@gmail.com>
+DJ Enriquez <dj.enriquez@infospace.com>
+Donald Huang <don.hcd@gmail.com>
+Doug Davis <dug@us.ibm.com>
+Edgar Lee <edgar.lee@docker.com>
+Eric Yang <windfarer@gmail.com>
+Fabio Berchtold <jamesclonk@jamesclonk.ch>
+Fabio Huser <fabio@fh1.ch>
+farmerworking <farmerworking@gmail.com>
+Felix Yan <felixonmars@archlinux.org>
+Florentin Raud <florentin.raud@gmail.com>
+Frank Chen <frankchn@gmail.com>
+Frederick F. Kautz IV <fkautz@alumni.cmu.edu>
+gabriell nascimento <gabriell@bluesoft.com.br>
+Gleb Schukin <gschukin@ptsecurity.com>
+harche <p.harshal@gmail.com>
+Henri Gomez <henri.gomez@gmail.com>
+Hu Keping <hukeping@huawei.com>
+Hua Wang <wanghua.humble@gmail.com>
+HuKeping <hukeping@huawei.com>
+Ian Babrou <ibobrik@gmail.com>
+igayoso <igayoso@gmail.com>
+Jack Griffin <jackpg14@gmail.com>
+James Findley <jfindley@fastmail.com>
+Jason Freidman <jason.freidman@gmail.com>
+Jason Heiss <jheiss@aput.net>
+Jeff Nickoloff <jeff@allingeek.com>
+Jess Frazelle <acidburn@google.com>
+Jessie Frazelle <jessie@docker.com>
+jhaohai <jhaohai@foxmail.com>
+Jianqing Wang <tsing@jianqing.org>
+Jihoon Chung <jihoon@gmail.com>
+Joao Fernandes <joao.fernandes@docker.com>
+John Mulhausen <john@docker.com>
+John Starks <jostarks@microsoft.com>
+Jon Johnson <jonjohnson@google.com>
+Jon Poler <jonathan.poler@apcera.com>
+Jonathan Boulle <jonathanboulle@gmail.com>
+Jordan Liggitt <jliggitt@redhat.com>
+Josh Chorlton <josh.chorlton@docker.com>
+Josh Hawn <josh.hawn@docker.com>
+Julien Fernandez <julien.fernandez@gmail.com>
+Ke Xu <leonhartx.k@gmail.com>
+Keerthan Mala <kmala@engineyard.com>
+Kelsey Hightower <kelsey.hightower@gmail.com>
+Kenneth Lim <kennethlimcp@gmail.com>
+Kenny Leung <kleung@google.com>
+Li Yi <denverdino@gmail.com>
+Liu Hua <sdu.liu@huawei.com>
+liuchang0812 <liuchang0812@gmail.com>
+Lloyd Ramey <lnr0626@gmail.com>
+Louis Kottmann <louis.kottmann@gmail.com>
+Luke Carpenter <x@rubynerd.net>
+Marcus Martins <marcus@docker.com>
+Mary Anthony <mary@docker.com>
+Matt Bentley <mbentley@mbentley.net>
+Matt Duch <matt@learnmetrics.com>
+Matt Moore <mattmoor@google.com>
+Matt Robenolt <matt@ydekproductions.com>
+Matthew Green <greenmr@live.co.uk>
+Michael Prokop <mika@grml.org>
+Michal Minar <miminar@redhat.com>
+Michal Minář <miminar@redhat.com>
+Mike Brown <brownwm@us.ibm.com>
+Miquel Sabaté <msabate@suse.com>
+Misty Stanley-Jones <misty@apache.org>
+Misty Stanley-Jones <misty@docker.com>
+Morgan Bauer <mbauer@us.ibm.com>
+moxiegirl <mary@docker.com>
+Nathan Sullivan <nathan@nightsys.net>
+nevermosby <robolwq@qq.com>
+Nghia Tran <tcnghia@gmail.com>
+Nikita Tarasov <nikita@mygento.ru>
+Noah Treuhaft <noah.treuhaft@docker.com>
+Nuutti Kotivuori <nuutti.kotivuori@poplatek.fi>
+Oilbeater <liumengxinfly@gmail.com>
+Olivier Gambier <olivier@docker.com>
+Olivier Jacques <olivier.jacques@hp.com>
+Omer Cohen <git@omer.io>
+Patrick Devine <patrick.devine@docker.com>
+Phil Estes <estesp@linux.vnet.ibm.com>
+Philip Misiowiec <philip@atlashealth.com>
+Pierre-Yves Ritschard <pyr@spootnik.org>
+Qiao Anran <qiaoanran@gmail.com>
+Randy Barlow <randy@electronsweatshop.com>
+Richard Scothern <richard.scothern@docker.com>
+Rodolfo Carvalho <rhcarvalho@gmail.com>
+Rusty Conover <rusty@luckydinosaur.com>
+Sean Boran <Boran@users.noreply.github.com>
+Sebastiaan van Stijn <github@gone.nl>
+Sebastien Coavoux <s.coavoux@free.fr>
+Serge Dubrouski <sergeyfd@gmail.com>
+Sharif Nassar <sharif@mrwacky.com>
+Shawn Falkner-Horine <dreadpirateshawn@gmail.com>
+Shreyas Karnik <karnik.shreyas@gmail.com>
+Simon Thulbourn <simon+github@thulbourn.com>
+spacexnice <yaoyao.xyy@alibaba-inc.com>
+Spencer Rinehart <anubis@overthemonkey.com>
+Stan Hu <stanhu@gmail.com>
+Stefan Majewsky <stefan.majewsky@sap.com>
+Stefan Weil <sw@weilnetz.de>
+Stephen J Day <stephen.day@docker.com>
+Sungho Moon <sungho.moon@navercorp.com>
+Sven Dowideit <SvenDowideit@home.org.au>
+Sylvain Baubeau <sbaubeau@redhat.com>
+Ted Reed <ted.reed@gmail.com>
+tgic <farmer1992@gmail.com>
+Thomas Sjögren <konstruktoid@users.noreply.github.com>
+Tianon Gravi <admwiggin@gmail.com>
+Tibor Vass <teabee89@gmail.com>
+Tonis Tiigi <tonistiigi@gmail.com>
+Tony Holdstock-Brown <tony@docker.com>
+Trevor Pounds <trevor.pounds@gmail.com>
+Troels Thomsen <troels@thomsen.io>
+Victor Vieux <vieux@docker.com>
+Victoria Bialas <victoria.bialas@docker.com>
+Vincent Batts <vbatts@redhat.com>
+Vincent Demeester <vincent@sbr.pm>
+Vincent Giersch <vincent.giersch@ovh.net>
+W. Trevor King <wking@tremily.us>
+weiyuan.yl <weiyuan.yl@alibaba-inc.com>
+xg.song <xg.song@venusource.com>
+xiekeyang <xiekeyang@huawei.com>
+Yann ROBERT <yann.robert@anantaplex.fr>
+yaoyao.xyy <yaoyao.xyy@alibaba-inc.com>
+yuexiao-wang <wang.yuexiao@zte.com.cn>
+yuzou <zouyu7@huawei.com>
+zhouhaibing089 <zhouhaibing089@gmail.com>
+姜继忠 <jizhong.jiangjz@alibaba-inc.com>
diff --git a/vendor/github.com/docker/distribution/LICENSE b/vendor/github.com/docker/distribution/LICENSE
new file mode 100644
index 0000000000..e06d208186
--- /dev/null
+++ b/vendor/github.com/docker/distribution/LICENSE
@@ -0,0 +1,202 @@
+Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+
diff --git a/vendor/github.com/docker/distribution/blobs.go b/vendor/github.com/docker/distribution/blobs.go
new file mode 100644
index 0000000000..145b078532
--- /dev/null
+++ b/vendor/github.com/docker/distribution/blobs.go
@@ -0,0 +1,257 @@
+package distribution
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"io"
+	"net/http"
+	"time"
+
+	"github.com/docker/distribution/reference"
+	"github.com/opencontainers/go-digest"
+)
+
+var (
+	// ErrBlobExists returned when blob already exists
+	ErrBlobExists = errors.New("blob exists")
+
+	// ErrBlobDigestUnsupported when blob digest is an unsupported version.
+	ErrBlobDigestUnsupported = errors.New("unsupported blob digest")
+
+	// ErrBlobUnknown when blob is not found.
+	ErrBlobUnknown = errors.New("unknown blob")
+
+	// ErrBlobUploadUnknown returned when upload is not found.
+	ErrBlobUploadUnknown = errors.New("blob upload unknown")
+
+	// ErrBlobInvalidLength returned when the blob has an expected length on
+	// commit, meaning mismatched with the descriptor or an invalid value.
+	ErrBlobInvalidLength = errors.New("blob invalid length")
+)
+
+// ErrBlobInvalidDigest returned when digest check fails.
+type ErrBlobInvalidDigest struct {
+	Digest digest.Digest
+	Reason error
+}
+
+func (err ErrBlobInvalidDigest) Error() string {
+	return fmt.Sprintf("invalid digest for referenced layer: %v, %v",
+		err.Digest, err.Reason)
+}
+
+// ErrBlobMounted returned when a blob is mounted from another repository
+// instead of initiating an upload session.
+type ErrBlobMounted struct {
+	From       reference.Canonical
+	Descriptor Descriptor
+}
+
+func (err ErrBlobMounted) Error() string {
+	return fmt.Sprintf("blob mounted from: %v to: %v",
+		err.From, err.Descriptor)
+}
+
+// Descriptor describes targeted content. Used in conjunction with a blob
+// store, a descriptor can be used to fetch, store and target any kind of
+// blob. The struct also describes the wire protocol format. Fields should
+// only be added but never changed.
+type Descriptor struct {
+	// MediaType describe the type of the content. All text based formats are
+	// encoded as utf-8.
+	MediaType string `json:"mediaType,omitempty"`
+
+	// Size in bytes of content.
+	Size int64 `json:"size,omitempty"`
+
+	// Digest uniquely identifies the content. A byte stream can be verified
+	// against against this digest.
+	Digest digest.Digest `json:"digest,omitempty"`
+
+	// URLs contains the source URLs of this content.
+	URLs []string `json:"urls,omitempty"`
+
+	// NOTE: Before adding a field here, please ensure that all
+	// other options have been exhausted. Much of the type relationships
+	// depend on the simplicity of this type.
+}
+
+// Descriptor returns the descriptor, to make it satisfy the Describable
+// interface. Note that implementations of Describable are generally objects
+// which can be described, not simply descriptors; this exception is in place
+// to make it more convenient to pass actual descriptors to functions that
+// expect Describable objects.
+func (d Descriptor) Descriptor() Descriptor {
+	return d
+}
+
+// BlobStatter makes blob descriptors available by digest. The service may
+// provide a descriptor of a different digest if the provided digest is not
+// canonical.
+type BlobStatter interface {
+	// Stat provides metadata about a blob identified by the digest. If the
+	// blob is unknown to the describer, ErrBlobUnknown will be returned.
+	Stat(ctx context.Context, dgst digest.Digest) (Descriptor, error)
+}
+
+// BlobDeleter enables deleting blobs from storage.
+type BlobDeleter interface {
+	Delete(ctx context.Context, dgst digest.Digest) error
+}
+
+// BlobEnumerator enables iterating over blobs from storage
+type BlobEnumerator interface {
+	Enumerate(ctx context.Context, ingester func(dgst digest.Digest) error) error
+}
+
+// BlobDescriptorService manages metadata about a blob by digest. Most
+// implementations will not expose such an interface explicitly. Such mappings
+// should be maintained by interacting with the BlobIngester. Hence, this is
+// left off of BlobService and BlobStore.
+type BlobDescriptorService interface {
+	BlobStatter
+
+	// SetDescriptor assigns the descriptor to the digest. The provided digest and
+	// the digest in the descriptor must map to identical content but they may
+	// differ on their algorithm. The descriptor must have the canonical
+	// digest of the content and the digest algorithm must match the
+	// annotators canonical algorithm.
+	//
+	// Such a facility can be used to map blobs between digest domains, with
+	// the restriction that the algorithm of the descriptor must match the
+	// canonical algorithm (ie sha256) of the annotator.
+	SetDescriptor(ctx context.Context, dgst digest.Digest, desc Descriptor) error
+
+	// Clear enables descriptors to be unlinked
+	Clear(ctx context.Context, dgst digest.Digest) error
+}
+
+// BlobDescriptorServiceFactory creates middleware for BlobDescriptorService.
+type BlobDescriptorServiceFactory interface {
+	BlobAccessController(svc BlobDescriptorService) BlobDescriptorService
+}
+
+// ReadSeekCloser is the primary reader type for blob data, combining
+// io.ReadSeeker with io.Closer.
+type ReadSeekCloser interface {
+	io.ReadSeeker
+	io.Closer
+}
+
+// BlobProvider describes operations for getting blob data.
+type BlobProvider interface {
+	// Get returns the entire blob identified by digest along with the descriptor.
+	Get(ctx context.Context, dgst digest.Digest) ([]byte, error)
+
+	// Open provides a ReadSeekCloser to the blob identified by the provided
+	// descriptor. If the blob is not known to the service, an error will be
+	// returned.
+	Open(ctx context.Context, dgst digest.Digest) (ReadSeekCloser, error)
+}
+
+// BlobServer can serve blobs via http.
+type BlobServer interface {
+	// ServeBlob attempts to serve the blob, identified by dgst, via http. The
+	// service may decide to redirect the client elsewhere or serve the data
+	// directly.
+	//
+	// This handler only issues successful responses, such as 2xx or 3xx,
+	// meaning it serves data or issues a redirect. If the blob is not
+	// available, an error will be returned and the caller may still issue a
+	// response.
+	//
+	// The implementation may serve the same blob from a different digest
+	// domain. The appropriate headers will be set for the blob, unless they
+	// have already been set by the caller.
+	ServeBlob(ctx context.Context, w http.ResponseWriter, r *http.Request, dgst digest.Digest) error
+}
+
+// BlobIngester ingests blob data.
+type BlobIngester interface {
+	// Put inserts the content p into the blob service, returning a descriptor
+	// or an error.
+	Put(ctx context.Context, mediaType string, p []byte) (Descriptor, error)
+
+	// Create allocates a new blob writer to add a blob to this service. The
+	// returned handle can be written to and later resumed using an opaque
+	// identifier. With this approach, one can Close and Resume a BlobWriter
+	// multiple times until the BlobWriter is committed or cancelled.
+	Create(ctx context.Context, options ...BlobCreateOption) (BlobWriter, error)
+
+	// Resume attempts to resume a write to a blob, identified by an id.
+	Resume(ctx context.Context, id string) (BlobWriter, error)
+}
+
+// BlobCreateOption is a general extensible function argument for blob creation
+// methods. A BlobIngester may choose to honor any or none of the given
+// BlobCreateOptions, which can be specific to the implementation of the
+// BlobIngester receiving them.
+// TODO (brianbland): unify this with ManifestServiceOption in the future
+type BlobCreateOption interface {
+	Apply(interface{}) error
+}
+
+// CreateOptions is a collection of blob creation modifiers relevant to general
+// blob storage intended to be configured by the BlobCreateOption.Apply method.
+type CreateOptions struct {
+	Mount struct {
+		ShouldMount bool
+		From        reference.Canonical
+		// Stat allows to pass precalculated descriptor to link and return.
+		// Blob access check will be skipped if set.
+		Stat *Descriptor
+	}
+}
+
+// BlobWriter provides a handle for inserting data into a blob store.
+// Instances should be obtained from BlobWriteService.Writer and
+// BlobWriteService.Resume. If supported by the store, a writer can be
+// recovered with the id.
+type BlobWriter interface {
+	io.WriteCloser
+	io.ReaderFrom
+
+	// Size returns the number of bytes written to this blob.
+	Size() int64
+
+	// ID returns the identifier for this writer. The ID can be used with the
+	// Blob service to later resume the write.
+	ID() string
+
+	// StartedAt returns the time this blob write was started.
+	StartedAt() time.Time
+
+	// Commit completes the blob writer process. The content is verified
+	// against the provided provisional descriptor, which may result in an
+	// error. Depending on the implementation, written data may be validated
+	// against the provisional descriptor fields. If MediaType is not present,
+	// the implementation may reject the commit or assign "application/octet-
+	// stream" to the blob. The returned descriptor may have a different
+	// digest depending on the blob store, referred to as the canonical
+	// descriptor.
+	Commit(ctx context.Context, provisional Descriptor) (canonical Descriptor, err error)
+
+	// Cancel ends the blob write without storing any data and frees any
+	// associated resources. Any data written thus far will be lost. Cancel
+	// implementations should allow multiple calls even after a commit that
+	// result in a no-op. This allows use of Cancel in a defer statement,
+	// increasing the assurance that it is correctly called.
+	Cancel(ctx context.Context) error
+}
+
+// BlobService combines the operations to access, read and write blobs. This
+// can be used to describe remote blob services.
+type BlobService interface {
+	BlobStatter
+	BlobProvider
+	BlobIngester
+}
+
+// BlobStore represent the entire suite of blob related operations. Such an
+// implementation can access, read, write, delete and serve blobs.
+type BlobStore interface {
+	BlobService
+	BlobServer
+	BlobDeleter
+}
diff --git a/vendor/github.com/docker/distribution/digestset/set.go b/vendor/github.com/docker/distribution/digestset/set.go
new file mode 100644
index 0000000000..71327dca72
--- /dev/null
+++ b/vendor/github.com/docker/distribution/digestset/set.go
@@ -0,0 +1,247 @@
+package digestset
+
+import (
+	"errors"
+	"sort"
+	"strings"
+	"sync"
+
+	digest "github.com/opencontainers/go-digest"
+)
+
+var (
+	// ErrDigestNotFound is used when a matching digest
+	// could not be found in a set.
+	ErrDigestNotFound = errors.New("digest not found")
+
+	// ErrDigestAmbiguous is used when multiple digests
+	// are found in a set. None of the matching digests
+	// should be considered valid matches.
+	ErrDigestAmbiguous = errors.New("ambiguous digest string")
+)
+
+// Set is used to hold a unique set of digests which
+// may be easily referenced by easily  referenced by a string
+// representation of the digest as well as short representation.
+// The uniqueness of the short representation is based on other
+// digests in the set. If digests are omitted from this set,
+// collisions in a larger set may not be detected, therefore it
+// is important to always do short representation lookups on
+// the complete set of digests. To mitigate collisions, an
+// appropriately long short code should be used.
+type Set struct {
+	mutex   sync.RWMutex
+	entries digestEntries
+}
+
+// NewSet creates an empty set of digests
+// which may have digests added.
+func NewSet() *Set {
+	return &Set{
+		entries: digestEntries{},
+	}
+}
+
+// checkShortMatch checks whether two digests match as either whole
+// values or short values. This function does not test equality,
+// rather whether the second value could match against the first
+// value.
+func checkShortMatch(alg digest.Algorithm, hex, shortAlg, shortHex string) bool {
+	if len(hex) == len(shortHex) {
+		if hex != shortHex {
+			return false
+		}
+		if len(shortAlg) > 0 && string(alg) != shortAlg {
+			return false
+		}
+	} else if !strings.HasPrefix(hex, shortHex) {
+		return false
+	} else if len(shortAlg) > 0 && string(alg) != shortAlg {
+		return false
+	}
+	return true
+}
+
+// Lookup looks for a digest matching the given string representation.
+// If no digests could be found ErrDigestNotFound will be returned
+// with an empty digest value. If multiple matches are found
+// ErrDigestAmbiguous will be returned with an empty digest value.
+func (dst *Set) Lookup(d string) (digest.Digest, error) {
+	dst.mutex.RLock()
+	defer dst.mutex.RUnlock()
+	if len(dst.entries) == 0 {
+		return "", ErrDigestNotFound
+	}
+	var (
+		searchFunc func(int) bool
+		alg        digest.Algorithm
+		hex        string
+	)
+	dgst, err := digest.Parse(d)
+	if err == digest.ErrDigestInvalidFormat {
+		hex = d
+		searchFunc = func(i int) bool {
+			return dst.entries[i].val >= d
+		}
+	} else {
+		hex = dgst.Hex()
+		alg = dgst.Algorithm()
+		searchFunc = func(i int) bool {
+			if dst.entries[i].val == hex {
+				return dst.entries[i].alg >= alg
+			}
+			return dst.entries[i].val >= hex
+		}
+	}
+	idx := sort.Search(len(dst.entries), searchFunc)
+	if idx == len(dst.entries) || !checkShortMatch(dst.entries[idx].alg, dst.entries[idx].val, string(alg), hex) {
+		return "", ErrDigestNotFound
+	}
+	if dst.entries[idx].alg == alg && dst.entries[idx].val == hex {
+		return dst.entries[idx].digest, nil
+	}
+	if idx+1 < len(dst.entries) && checkShortMatch(dst.entries[idx+1].alg, dst.entries[idx+1].val, string(alg), hex) {
+		return "", ErrDigestAmbiguous
+	}
+
+	return dst.entries[idx].digest, nil
+}
+
+// Add adds the given digest to the set. An error will be returned
+// if the given digest is invalid. If the digest already exists in the
+// set, this operation will be a no-op.
+func (dst *Set) Add(d digest.Digest) error {
+	if err := d.Validate(); err != nil {
+		return err
+	}
+	dst.mutex.Lock()
+	defer dst.mutex.Unlock()
+	entry := &digestEntry{alg: d.Algorithm(), val: d.Hex(), digest: d}
+	searchFunc := func(i int) bool {
+		if dst.entries[i].val == entry.val {
+			return dst.entries[i].alg >= entry.alg
+		}
+		return dst.entries[i].val >= entry.val
+	}
+	idx := sort.Search(len(dst.entries), searchFunc)
+	if idx == len(dst.entries) {
+		dst.entries = append(dst.entries, entry)
+		return nil
+	} else if dst.entries[idx].digest == d {
+		return nil
+	}
+
+	entries := append(dst.entries, nil)
+	copy(entries[idx+1:], entries[idx:len(entries)-1])
+	entries[idx] = entry
+	dst.entries = entries
+	return nil
+}
+
+// Remove removes the given digest from the set. An err will be
+// returned if the given digest is invalid. If the digest does
+// not exist in the set, this operation will be a no-op.
+func (dst *Set) Remove(d digest.Digest) error {
+	if err := d.Validate(); err != nil {
+		return err
+	}
+	dst.mutex.Lock()
+	defer dst.mutex.Unlock()
+	entry := &digestEntry{alg: d.Algorithm(), val: d.Hex(), digest: d}
+	searchFunc := func(i int) bool {
+		if dst.entries[i].val == entry.val {
+			return dst.entries[i].alg >= entry.alg
+		}
+		return dst.entries[i].val >= entry.val
+	}
+	idx := sort.Search(len(dst.entries), searchFunc)
+	// Not found if idx is after or value at idx is not digest
+	if idx == len(dst.entries) || dst.entries[idx].digest != d {
+		return nil
+	}
+
+	entries := dst.entries
+	copy(entries[idx:], entries[idx+1:])
+	entries = entries[:len(entries)-1]
+	dst.entries = entries
+
+	return nil
+}
+
+// All returns all the digests in the set
+func (dst *Set) All() []digest.Digest {
+	dst.mutex.RLock()
+	defer dst.mutex.RUnlock()
+	retValues := make([]digest.Digest, len(dst.entries))
+	for i := range dst.entries {
+		retValues[i] = dst.entries[i].digest
+	}
+
+	return retValues
+}
+
+// ShortCodeTable returns a map of Digest to unique short codes. The
+// length represents the minimum value, the maximum length may be the
+// entire value of digest if uniqueness cannot be achieved without the
+// full value. This function will attempt to make short codes as short
+// as possible to be unique.
+func ShortCodeTable(dst *Set, length int) map[digest.Digest]string {
+	dst.mutex.RLock()
+	defer dst.mutex.RUnlock()
+	m := make(map[digest.Digest]string, len(dst.entries))
+	l := length
+	resetIdx := 0
+	for i := 0; i < len(dst.entries); i++ {
+		var short string
+		extended := true
+		for extended {
+			extended = false
+			if len(dst.entries[i].val) <= l {
+				short = dst.entries[i].digest.String()
+			} else {
+				short = dst.entries[i].val[:l]
+				for j := i + 1; j < len(dst.entries); j++ {
+					if checkShortMatch(dst.entries[j].alg, dst.entries[j].val, "", short) {
+						if j > resetIdx {
+							resetIdx = j
+						}
+						extended = true
+					} else {
+						break
+					}
+				}
+				if extended {
+					l++
+				}
+			}
+		}
+		m[dst.entries[i].digest] = short
+		if i >= resetIdx {
+			l = length
+		}
+	}
+	return m
+}
+
+type digestEntry struct {
+	alg    digest.Algorithm
+	val    string
+	digest digest.Digest
+}
+
+type digestEntries []*digestEntry
+
+func (d digestEntries) Len() int {
+	return len(d)
+}
+
+func (d digestEntries) Less(i, j int) bool {
+	if d[i].val != d[j].val {
+		return d[i].val < d[j].val
+	}
+	return d[i].alg < d[j].alg
+}
+
+func (d digestEntries) Swap(i, j int) {
+	d[i], d[j] = d[j], d[i]
+}
diff --git a/vendor/github.com/docker/distribution/doc.go b/vendor/github.com/docker/distribution/doc.go
new file mode 100644
index 0000000000..bdd8cb708e
--- /dev/null
+++ b/vendor/github.com/docker/distribution/doc.go
@@ -0,0 +1,7 @@
+// Package distribution will define the interfaces for the components of
+// docker distribution. The goal is to allow users to reliably package, ship
+// and store content related to docker images.
+//
+// This is currently a work in progress. More details are available in the
+// README.md.
+package distribution
diff --git a/vendor/github.com/docker/distribution/errors.go b/vendor/github.com/docker/distribution/errors.go
new file mode 100644
index 0000000000..020d33258b
--- /dev/null
+++ b/vendor/github.com/docker/distribution/errors.go
@@ -0,0 +1,115 @@
+package distribution
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+
+	"github.com/opencontainers/go-digest"
+)
+
+// ErrAccessDenied is returned when an access to a requested resource is
+// denied.
+var ErrAccessDenied = errors.New("access denied")
+
+// ErrManifestNotModified is returned when a conditional manifest GetByTag
+// returns nil due to the client indicating it has the latest version
+var ErrManifestNotModified = errors.New("manifest not modified")
+
+// ErrUnsupported is returned when an unimplemented or unsupported action is
+// performed
+var ErrUnsupported = errors.New("operation unsupported")
+
+// ErrTagUnknown is returned if the given tag is not known by the tag service
+type ErrTagUnknown struct {
+	Tag string
+}
+
+func (err ErrTagUnknown) Error() string {
+	return fmt.Sprintf("unknown tag=%s", err.Tag)
+}
+
+// ErrRepositoryUnknown is returned if the named repository is not known by
+// the registry.
+type ErrRepositoryUnknown struct {
+	Name string
+}
+
+func (err ErrRepositoryUnknown) Error() string {
+	return fmt.Sprintf("unknown repository name=%s", err.Name)
+}
+
+// ErrRepositoryNameInvalid should be used to denote an invalid repository
+// name. Reason may set, indicating the cause of invalidity.
+type ErrRepositoryNameInvalid struct {
+	Name   string
+	Reason error
+}
+
+func (err ErrRepositoryNameInvalid) Error() string {
+	return fmt.Sprintf("repository name %q invalid: %v", err.Name, err.Reason)
+}
+
+// ErrManifestUnknown is returned if the manifest is not known by the
+// registry.
+type ErrManifestUnknown struct {
+	Name string
+	Tag  string
+}
+
+func (err ErrManifestUnknown) Error() string {
+	return fmt.Sprintf("unknown manifest name=%s tag=%s", err.Name, err.Tag)
+}
+
+// ErrManifestUnknownRevision is returned when a manifest cannot be found by
+// revision within a repository.
+type ErrManifestUnknownRevision struct {
+	Name     string
+	Revision digest.Digest
+}
+
+func (err ErrManifestUnknownRevision) Error() string {
+	return fmt.Sprintf("unknown manifest name=%s revision=%s", err.Name, err.Revision)
+}
+
+// ErrManifestUnverified is returned when the registry is unable to verify
+// the manifest.
+type ErrManifestUnverified struct{}
+
+func (ErrManifestUnverified) Error() string {
+	return "unverified manifest"
+}
+
+// ErrManifestVerification provides a type to collect errors encountered
+// during manifest verification. Currently, it accepts errors of all types,
+// but it may be narrowed to those involving manifest verification.
+type ErrManifestVerification []error
+
+func (errs ErrManifestVerification) Error() string {
+	var parts []string
+	for _, err := range errs {
+		parts = append(parts, err.Error())
+	}
+
+	return fmt.Sprintf("errors verifying manifest: %v", strings.Join(parts, ","))
+}
+
+// ErrManifestBlobUnknown returned when a referenced blob cannot be found.
+type ErrManifestBlobUnknown struct {
+	Digest digest.Digest
+}
+
+func (err ErrManifestBlobUnknown) Error() string {
+	return fmt.Sprintf("unknown blob %v on manifest", err.Digest)
+}
+
+// ErrManifestNameInvalid should be used to denote an invalid manifest
+// name. Reason may set, indicating the cause of invalidity.
+type ErrManifestNameInvalid struct {
+	Name   string
+	Reason error
+}
+
+func (err ErrManifestNameInvalid) Error() string {
+	return fmt.Sprintf("manifest name %q invalid: %v", err.Name, err.Reason)
+}
diff --git a/vendor/github.com/docker/distribution/manifests.go b/vendor/github.com/docker/distribution/manifests.go
new file mode 100644
index 0000000000..1816baea1d
--- /dev/null
+++ b/vendor/github.com/docker/distribution/manifests.go
@@ -0,0 +1,125 @@
+package distribution
+
+import (
+	"context"
+	"fmt"
+	"mime"
+
+	"github.com/opencontainers/go-digest"
+)
+
+// Manifest represents a registry object specifying a set of
+// references and an optional target
+type Manifest interface {
+	// References returns a list of objects which make up this manifest.
+	// A reference is anything which can be represented by a
+	// distribution.Descriptor. These can consist of layers, resources or other
+	// manifests.
+	//
+	// While no particular order is required, implementations should return
+	// them from highest to lowest priority. For example, one might want to
+	// return the base layer before the top layer.
+	References() []Descriptor
+
+	// Payload provides the serialized format of the manifest, in addition to
+	// the media type.
+	Payload() (mediaType string, payload []byte, err error)
+}
+
+// ManifestBuilder creates a manifest allowing one to include dependencies.
+// Instances can be obtained from a version-specific manifest package.  Manifest
+// specific data is passed into the function which creates the builder.
+type ManifestBuilder interface {
+	// Build creates the manifest from his builder.
+	Build(ctx context.Context) (Manifest, error)
+
+	// References returns a list of objects which have been added to this
+	// builder. The dependencies are returned in the order they were added,
+	// which should be from base to head.
+	References() []Descriptor
+
+	// AppendReference includes the given object in the manifest after any
+	// existing dependencies. If the add fails, such as when adding an
+	// unsupported dependency, an error may be returned.
+	//
+	// The destination of the reference is dependent on the manifest type and
+	// the dependency type.
+	AppendReference(dependency Describable) error
+}
+
+// ManifestService describes operations on image manifests.
+type ManifestService interface {
+	// Exists returns true if the manifest exists.
+	Exists(ctx context.Context, dgst digest.Digest) (bool, error)
+
+	// Get retrieves the manifest specified by the given digest
+	Get(ctx context.Context, dgst digest.Digest, options ...ManifestServiceOption) (Manifest, error)
+
+	// Put creates or updates the given manifest returning the manifest digest
+	Put(ctx context.Context, manifest Manifest, options ...ManifestServiceOption) (digest.Digest, error)
+
+	// Delete removes the manifest specified by the given digest. Deleting
+	// a manifest that doesn't exist will return ErrManifestNotFound
+	Delete(ctx context.Context, dgst digest.Digest) error
+}
+
+// ManifestEnumerator enables iterating over manifests
+type ManifestEnumerator interface {
+	// Enumerate calls ingester for each manifest.
+	Enumerate(ctx context.Context, ingester func(digest.Digest) error) error
+}
+
+// Describable is an interface for descriptors
+type Describable interface {
+	Descriptor() Descriptor
+}
+
+// ManifestMediaTypes returns the supported media types for manifests.
+func ManifestMediaTypes() (mediaTypes []string) {
+	for t := range mappings {
+		if t != "" {
+			mediaTypes = append(mediaTypes, t)
+		}
+	}
+	return
+}
+
+// UnmarshalFunc implements manifest unmarshalling a given MediaType
+type UnmarshalFunc func([]byte) (Manifest, Descriptor, error)
+
+var mappings = make(map[string]UnmarshalFunc, 0)
+
+// UnmarshalManifest looks up manifest unmarshal functions based on
+// MediaType
+func UnmarshalManifest(ctHeader string, p []byte) (Manifest, Descriptor, error) {
+	// Need to look up by the actual media type, not the raw contents of
+	// the header. Strip semicolons and anything following them.
+	var mediaType string
+	if ctHeader != "" {
+		var err error
+		mediaType, _, err = mime.ParseMediaType(ctHeader)
+		if err != nil {
+			return nil, Descriptor{}, err
+		}
+	}
+
+	unmarshalFunc, ok := mappings[mediaType]
+	if !ok {
+		unmarshalFunc, ok = mappings[""]
+		if !ok {
+			return nil, Descriptor{}, fmt.Errorf("unsupported manifest media type and no default available: %s", mediaType)
+		}
+	}
+
+	return unmarshalFunc(p)
+}
+
+// RegisterManifestSchema registers an UnmarshalFunc for a given schema type.  This
+// should be called from specific
+func RegisterManifestSchema(mediaType string, u UnmarshalFunc) error {
+	if _, ok := mappings[mediaType]; ok {
+		return fmt.Errorf("manifest media type registration would overwrite existing: %s", mediaType)
+	}
+	mappings[mediaType] = u
+	return nil
+}
diff --git a/vendor/github.com/docker/distribution/reference/helpers.go b/vendor/github.com/docker/distribution/reference/helpers.go
new file mode 100644
index 0000000000..978df7eabb
--- /dev/null
+++ b/vendor/github.com/docker/distribution/reference/helpers.go
@@ -0,0 +1,42 @@
+package reference
+
+import "path"
+
+// IsNameOnly returns true if reference only contains a repo name.
+func IsNameOnly(ref Named) bool {
+	if _, ok := ref.(NamedTagged); ok {
+		return false
+	}
+	if _, ok := ref.(Canonical); ok {
+		return false
+	}
+	return true
+}
+
+// FamiliarName returns the familiar name string
+// for the given named, familiarizing if needed.
+func FamiliarName(ref Named) string {
+	if nn, ok := ref.(normalizedNamed); ok {
+		return nn.Familiar().Name()
+	}
+	return ref.Name()
+}
+
+// FamiliarString returns the familiar string representation
+// for the given reference, familiarizing if needed.
+func FamiliarString(ref Reference) string {
+	if nn, ok := ref.(normalizedNamed); ok {
+		return nn.Familiar().String()
+	}
+	return ref.String()
+}
+
+// FamiliarMatch reports whether ref matches the specified pattern.
+// See https://godoc.org/path#Match for supported patterns.
+func FamiliarMatch(pattern string, ref Reference) (bool, error) {
+	matched, err := path.Match(pattern, FamiliarString(ref))
+	if namedRef, isNamed := ref.(Named); isNamed && !matched {
+		matched, _ = path.Match(pattern, FamiliarName(namedRef))
+	}
+	return matched, err
+}
diff --git a/vendor/github.com/docker/distribution/reference/normalize.go b/vendor/github.com/docker/distribution/reference/normalize.go
new file mode 100644
index 0000000000..2d71fc5e9f
--- /dev/null
+++ b/vendor/github.com/docker/distribution/reference/normalize.go
@@ -0,0 +1,170 @@
+package reference
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+
+	"github.com/docker/distribution/digestset"
+	"github.com/opencontainers/go-digest"
+)
+
+var (
+	legacyDefaultDomain = "index.docker.io"
+	defaultDomain       = "docker.io"
+	officialRepoName    = "library"
+	defaultTag          = "latest"
+)
+
+// normalizedNamed represents a name which has been
+// normalized and has a familiar form. A familiar name
+// is what is used in Docker UI. An example normalized
+// name is "docker.io/library/ubuntu" and corresponding
+// familiar name of "ubuntu".
+type normalizedNamed interface {
+	Named
+	Familiar() Named
+}
+
+// ParseNormalizedNamed parses a string into a named reference
+// transforming a familiar name from Docker UI to a fully
+// qualified reference. If the value may be an identifier
+// use ParseAnyReference.
+func ParseNormalizedNamed(s string) (Named, error) {
+	if ok := anchoredIdentifierRegexp.MatchString(s); ok {
+		return nil, fmt.Errorf("invalid repository name (%s), cannot specify 64-byte hexadecimal strings", s)
+	}
+	domain, remainder := splitDockerDomain(s)
+	var remoteName string
+	if tagSep := strings.IndexRune(remainder, ':'); tagSep > -1 {
+		remoteName = remainder[:tagSep]
+	} else {
+		remoteName = remainder
+	}
+	if strings.ToLower(remoteName) != remoteName {
+		return nil, errors.New("invalid reference format: repository name must be lowercase")
+	}
+
+	ref, err := Parse(domain + "/" + remainder)
+	if err != nil {
+		return nil, err
+	}
+	named, isNamed := ref.(Named)
+	if !isNamed {
+		return nil, fmt.Errorf("reference %s has no name", ref.String())
+	}
+	return named, nil
+}
+
+// splitDockerDomain splits a repository name to domain and remotename string.
+// If no valid domain is found, the default domain is used. Repository name
+// needs to be already validated before.
+func splitDockerDomain(name string) (domain, remainder string) {
+	i := strings.IndexRune(name, '/')
+	if i == -1 || (!strings.ContainsAny(name[:i], ".:") && name[:i] != "localhost") {
+		domain, remainder = defaultDomain, name
+	} else {
+		domain, remainder = name[:i], name[i+1:]
+	}
+	if domain == legacyDefaultDomain {
+		domain = defaultDomain
+	}
+	if domain == defaultDomain && !strings.ContainsRune(remainder, '/') {
+		remainder = officialRepoName + "/" + remainder
+	}
+	return
+}
+
+// familiarizeName returns a shortened version of the name familiar
+// to to the Docker UI. Familiar names have the default domain
+// "docker.io" and "library/" repository prefix removed.
+// For example, "docker.io/library/redis" will have the familiar
+// name "redis" and "docker.io/dmcgowan/myapp" will be "dmcgowan/myapp".
+// Returns a familiarized named only reference.
+func familiarizeName(named namedRepository) repository {
+	repo := repository{
+		domain: named.Domain(),
+		path:   named.Path(),
+	}
+
+	if repo.domain == defaultDomain {
+		repo.domain = ""
+		// Handle official repositories which have the pattern "library/<official repo name>"
+		if split := strings.Split(repo.path, "/"); len(split) == 2 && split[0] == officialRepoName {
+			repo.path = split[1]
+		}
+	}
+	return repo
+}
+
+func (r reference) Familiar() Named {
+	return reference{
+		namedRepository: familiarizeName(r.namedRepository),
+		tag:             r.tag,
+		digest:          r.digest,
+	}
+}
+
+func (r repository) Familiar() Named {
+	return familiarizeName(r)
+}
+
+func (t taggedReference) Familiar() Named {
+	return taggedReference{
+		namedRepository: familiarizeName(t.namedRepository),
+		tag:             t.tag,
+	}
+}
+
+func (c canonicalReference) Familiar() Named {
+	return canonicalReference{
+		namedRepository: familiarizeName(c.namedRepository),
+		digest:          c.digest,
+	}
+}
+
+// TagNameOnly adds the default tag "latest" to a reference if it only has
+// a repo name.
+func TagNameOnly(ref Named) Named {
+	if IsNameOnly(ref) {
+		namedTagged, err := WithTag(ref, defaultTag)
+		if err != nil {
+			// Default tag must be valid, to create a NamedTagged
+			// type with non-validated input the WithTag function
+			// should be used instead
+			panic(err)
+		}
+		return namedTagged
+	}
+	return ref
+}
+
+// ParseAnyReference parses a reference string as a possible identifier,
+// full digest, or familiar name.
+func ParseAnyReference(ref string) (Reference, error) {
+	if ok := anchoredIdentifierRegexp.MatchString(ref); ok {
+		return digestReference("sha256:" + ref), nil
+	}
+	if dgst, err := digest.Parse(ref); err == nil {
+		return digestReference(dgst), nil
+	}
+
+	return ParseNormalizedNamed(ref)
+}
+
+// ParseAnyReferenceWithSet parses a reference string as a possible short
+// identifier to be matched in a digest set, a full digest, or familiar name.
+func ParseAnyReferenceWithSet(ref string, ds *digestset.Set) (Reference, error) {
+	if ok := anchoredShortIdentifierRegexp.MatchString(ref); ok {
+		dgst, err := ds.Lookup(ref)
+		if err == nil {
+			return digestReference(dgst), nil
+		}
+	} else {
+		if dgst, err := digest.Parse(ref); err == nil {
+			return digestReference(dgst), nil
+		}
+	}
+
+	return ParseNormalizedNamed(ref)
+}
diff --git a/vendor/github.com/docker/distribution/reference/reference.go b/vendor/github.com/docker/distribution/reference/reference.go
new file mode 100644
index 0000000000..2f66cca87a
--- /dev/null
+++ b/vendor/github.com/docker/distribution/reference/reference.go
@@ -0,0 +1,433 @@
+// Package reference provides a general type to represent any way of referencing images within the registry.
+// Its main purpose is to abstract tags and digests (content-addressable hash).
+//
+// Grammar
+//
+// 	reference                       := name [ ":" tag ] [ "@" digest ]
+//	name                            := [domain '/'] path-component ['/' path-component]*
+//	domain                          := domain-component ['.' domain-component]* [':' port-number]
+//	domain-component                := /([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])/
+//	port-number                     := /[0-9]+/
+//	path-component                  := alpha-numeric [separator alpha-numeric]*
+// 	alpha-numeric                   := /[a-z0-9]+/
+//	separator                       := /[_.]|__|[-]*/
+//
+//	tag                             := /[\w][\w.-]{0,127}/
+//
+//	digest                          := digest-algorithm ":" digest-hex
+//	digest-algorithm                := digest-algorithm-component [ digest-algorithm-separator digest-algorithm-component ]*
+//	digest-algorithm-separator      := /[+.-_]/
+//	digest-algorithm-component      := /[A-Za-z][A-Za-z0-9]*/
+//	digest-hex                      := /[0-9a-fA-F]{32,}/ ; At least 128 bit digest value
+//
+//	identifier                      := /[a-f0-9]{64}/
+//	short-identifier                := /[a-f0-9]{6,64}/
+package reference
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+
+	"github.com/opencontainers/go-digest"
+)
+
+const (
+	// NameTotalLengthMax is the maximum total number of characters in a repository name.
+	NameTotalLengthMax = 255
+)
+
+var (
+	// ErrReferenceInvalidFormat represents an error while trying to parse a string as a reference.
+	ErrReferenceInvalidFormat = errors.New("invalid reference format")
+
+	// ErrTagInvalidFormat represents an error while trying to parse a string as a tag.
+	ErrTagInvalidFormat = errors.New("invalid tag format")
+
+	// ErrDigestInvalidFormat represents an error while trying to parse a string as a tag.
+	ErrDigestInvalidFormat = errors.New("invalid digest format")
+
+	// ErrNameContainsUppercase is returned for invalid repository names that contain uppercase characters.
+	ErrNameContainsUppercase = errors.New("repository name must be lowercase")
+
+	// ErrNameEmpty is returned for empty, invalid repository names.
+	ErrNameEmpty = errors.New("repository name must have at least one component")
+
+	// ErrNameTooLong is returned when a repository name is longer than NameTotalLengthMax.
+	ErrNameTooLong = fmt.Errorf("repository name must not be more than %v characters", NameTotalLengthMax)
+
+	// ErrNameNotCanonical is returned when a name is not canonical.
+	ErrNameNotCanonical = errors.New("repository name must be canonical")
+)
+
+// Reference is an opaque object reference identifier that may include
+// modifiers such as a hostname, name, tag, and digest.
+type Reference interface {
+	// String returns the full reference
+	String() string
+}
+
+// Field provides a wrapper type for resolving correct reference types when
+// working with encoding.
+type Field struct {
+	reference Reference
+}
+
+// AsField wraps a reference in a Field for encoding.
+func AsField(reference Reference) Field {
+	return Field{reference}
+}
+
+// Reference unwraps the reference type from the field to
+// return the Reference object. This object should be
+// of the appropriate type to further check for different
+// reference types.
+func (f Field) Reference() Reference {
+	return f.reference
+}
+
+// MarshalText serializes the field to byte text which
+// is the string of the reference.
+func (f Field) MarshalText() (p []byte, err error) {
+	return []byte(f.reference.String()), nil
+}
+
+// UnmarshalText parses text bytes by invoking the
+// reference parser to ensure the appropriately
+// typed reference object is wrapped by field.
+func (f *Field) UnmarshalText(p []byte) error {
+	r, err := Parse(string(p))
+	if err != nil {
+		return err
+	}
+
+	f.reference = r
+	return nil
+}
+
+// Named is an object with a full name
+type Named interface {
+	Reference
+	Name() string
+}
+
+// Tagged is an object which has a tag
+type Tagged interface {
+	Reference
+	Tag() string
+}
+
+// NamedTagged is an object including a name and tag.
+type NamedTagged interface {
+	Named
+	Tag() string
+}
+
+// Digested is an object which has a digest
+// in which it can be referenced by
+type Digested interface {
+	Reference
+	Digest() digest.Digest
+}
+
+// Canonical reference is an object with a fully unique
+// name including a name with domain and digest
+type Canonical interface {
+	Named
+	Digest() digest.Digest
+}
+
+// namedRepository is a reference to a repository with a name.
+// A namedRepository has both domain and path components.
+type namedRepository interface {
+	Named
+	Domain() string
+	Path() string
+}
+
+// Domain returns the domain part of the Named reference
+func Domain(named Named) string {
+	if r, ok := named.(namedRepository); ok {
+		return r.Domain()
+	}
+	domain, _ := splitDomain(named.Name())
+	return domain
+}
+
+// Path returns the name without the domain part of the Named reference
+func Path(named Named) (name string) {
+	if r, ok := named.(namedRepository); ok {
+		return r.Path()
+	}
+	_, path := splitDomain(named.Name())
+	return path
+}
+
+func splitDomain(name string) (string, string) {
+	match := anchoredNameRegexp.FindStringSubmatch(name)
+	if len(match) != 3 {
+		return "", name
+	}
+	return match[1], match[2]
+}
+
+// SplitHostname splits a named reference into a
+// hostname and name string. If no valid hostname is
+// found, the hostname is empty and the full value
+// is returned as name
+// DEPRECATED: Use Domain or Path
+func SplitHostname(named Named) (string, string) {
+	if r, ok := named.(namedRepository); ok {
+		return r.Domain(), r.Path()
+	}
+	return splitDomain(named.Name())
+}
+
+// Parse parses s and returns a syntactically valid Reference.
+// If an error was encountered it is returned, along with a nil Reference.
+// NOTE: Parse will not handle short digests.
+func Parse(s string) (Reference, error) {
+	matches := ReferenceRegexp.FindStringSubmatch(s)
+	if matches == nil {
+		if s == "" {
+			return nil, ErrNameEmpty
+		}
+		if ReferenceRegexp.FindStringSubmatch(strings.ToLower(s)) != nil {
+			return nil, ErrNameContainsUppercase
+		}
+		return nil, ErrReferenceInvalidFormat
+	}
+
+	if len(matches[1]) > NameTotalLengthMax {
+		return nil, ErrNameTooLong
+	}
+
+	var repo repository
+
+	nameMatch := anchoredNameRegexp.FindStringSubmatch(matches[1])
+	if nameMatch != nil && len(nameMatch) == 3 {
+		repo.domain = nameMatch[1]
+		repo.path = nameMatch[2]
+	} else {
+		repo.domain = ""
+		repo.path = matches[1]
+	}
+
+	ref := reference{
+		namedRepository: repo,
+		tag:             matches[2],
+	}
+	if matches[3] != "" {
+		var err error
+		ref.digest, err = digest.Parse(matches[3])
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	r := getBestReferenceType(ref)
+	if r == nil {
+		return nil, ErrNameEmpty
+	}
+
+	return r, nil
+}
+
+// ParseNamed parses s and returns a syntactically valid reference implementing
+// the Named interface. The reference must have a name and be in the canonical
+// form, otherwise an error is returned.
+// If an error was encountered it is returned, along with a nil Reference.
+// NOTE: ParseNamed will not handle short digests.
+func ParseNamed(s string) (Named, error) {
+	named, err := ParseNormalizedNamed(s)
+	if err != nil {
+		return nil, err
+	}
+	if named.String() != s {
+		return nil, ErrNameNotCanonical
+	}
+	return named, nil
+}
+
+// WithName returns a named object representing the given string. If the input
+// is invalid ErrReferenceInvalidFormat will be returned.
+func WithName(name string) (Named, error) {
+	if len(name) > NameTotalLengthMax {
+		return nil, ErrNameTooLong
+	}
+
+	match := anchoredNameRegexp.FindStringSubmatch(name)
+	if match == nil || len(match) != 3 {
+		return nil, ErrReferenceInvalidFormat
+	}
+	return repository{
+		domain: match[1],
+		path:   match[2],
+	}, nil
+}
+
+// WithTag combines the name from "name" and the tag from "tag" to form a
+// reference incorporating both the name and the tag.
+func WithTag(name Named, tag string) (NamedTagged, error) {
+	if !anchoredTagRegexp.MatchString(tag) {
+		return nil, ErrTagInvalidFormat
+	}
+	var repo repository
+	if r, ok := name.(namedRepository); ok {
+		repo.domain = r.Domain()
+		repo.path = r.Path()
+	} else {
+		repo.path = name.Name()
+	}
+	if canonical, ok := name.(Canonical); ok {
+		return reference{
+			namedRepository: repo,
+			tag:             tag,
+			digest:          canonical.Digest(),
+		}, nil
+	}
+	return taggedReference{
+		namedRepository: repo,
+		tag:             tag,
+	}, nil
+}
+
+// WithDigest combines the name from "name" and the digest from "digest" to form
+// a reference incorporating both the name and the digest.
+func WithDigest(name Named, digest digest.Digest) (Canonical, error) {
+	if !anchoredDigestRegexp.MatchString(digest.String()) {
+		return nil, ErrDigestInvalidFormat
+	}
+	var repo repository
+	if r, ok := name.(namedRepository); ok {
+		repo.domain = r.Domain()
+		repo.path = r.Path()
+	} else {
+		repo.path = name.Name()
+	}
+	if tagged, ok := name.(Tagged); ok {
+		return reference{
+			namedRepository: repo,
+			tag:             tagged.Tag(),
+			digest:          digest,
+		}, nil
+	}
+	return canonicalReference{
+		namedRepository: repo,
+		digest:          digest,
+	}, nil
+}
+
+// TrimNamed removes any tag or digest from the named reference.
+func TrimNamed(ref Named) Named {
+	domain, path := SplitHostname(ref)
+	return repository{
+		domain: domain,
+		path:   path,
+	}
+}
+
+func getBestReferenceType(ref reference) Reference {
+	if ref.Name() == "" {
+		// Allow digest only references
+		if ref.digest != "" {
+			return digestReference(ref.digest)
+		}
+		return nil
+	}
+	if ref.tag == "" {
+		if ref.digest != "" {
+			return canonicalReference{
+				namedRepository: ref.namedRepository,
+				digest:          ref.digest,
+			}
+		}
+		return ref.namedRepository
+	}
+	if ref.digest == "" {
+		return taggedReference{
+			namedRepository: ref.namedRepository,
+			tag:             ref.tag,
+		}
+	}
+
+	return ref
+}
+
+type reference struct {
+	namedRepository
+	tag    string
+	digest digest.Digest
+}
+
+func (r reference) String() string {
+	return r.Name() + ":" + r.tag + "@" + r.digest.String()
+}
+
+func (r reference) Tag() string {
+	return r.tag
+}
+
+func (r reference) Digest() digest.Digest {
+	return r.digest
+}
+
+type repository struct {
+	domain string
+	path   string
+}
+
+func (r repository) String() string {
+	return r.Name()
+}
+
+func (r repository) Name() string {
+	if r.domain == "" {
+		return r.path
+	}
+	return r.domain + "/" + r.path
+}
+
+func (r repository) Domain() string {
+	return r.domain
+}
+
+func (r repository) Path() string {
+	return r.path
+}
+
+type digestReference digest.Digest
+
+func (d digestReference) String() string {
+	return digest.Digest(d).String()
+}
+
+func (d digestReference) Digest() digest.Digest {
+	return digest.Digest(d)
+}
+
+type taggedReference struct {
+	namedRepository
+	tag string
+}
+
+func (t taggedReference) String() string {
+	return t.Name() + ":" + t.tag
+}
+
+func (t taggedReference) Tag() string {
+	return t.tag
+}
+
+type canonicalReference struct {
+	namedRepository
+	digest digest.Digest
+}
+
+func (c canonicalReference) String() string {
+	return c.Name() + "@" + c.digest.String()
+}
+
+func (c canonicalReference) Digest() digest.Digest {
+	return c.digest
+}
diff --git a/vendor/github.com/docker/distribution/reference/regexp.go b/vendor/github.com/docker/distribution/reference/regexp.go
new file mode 100644
index 0000000000..7860349320
--- /dev/null
+++ b/vendor/github.com/docker/distribution/reference/regexp.go
@@ -0,0 +1,143 @@
+package reference
+
+import "regexp"
+
+var (
+	// alphaNumericRegexp defines the alpha numeric atom, typically a
+	// component of names. This only allows lower case characters and digits.
+	alphaNumericRegexp = match(`[a-z0-9]+`)
+
+	// separatorRegexp defines the separators allowed to be embedded in name
+	// components. This allow one period, one or two underscore and multiple
+	// dashes.
+	separatorRegexp = match(`(?:[._]|__|[-]*)`)
+
+	// nameComponentRegexp restricts registry path component names to start
+	// with at least one letter or number, with following parts able to be
+	// separated by one period, one or two underscore and multiple dashes.
+	nameComponentRegexp = expression(
+		alphaNumericRegexp,
+		optional(repeated(separatorRegexp, alphaNumericRegexp)))
+
+	// domainComponentRegexp restricts the registry domain component of a
+	// repository name to start with a component as defined by DomainRegexp
+	// and followed by an optional port.
+	domainComponentRegexp = match(`(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])`)
+
+	// DomainRegexp defines the structure of potential domain components
+	// that may be part of image names. This is purposely a subset of what is
+	// allowed by DNS to ensure backwards compatibility with Docker image
+	// names.
+	DomainRegexp = expression(
+		domainComponentRegexp,
+		optional(repeated(literal(`.`), domainComponentRegexp)),
+		optional(literal(`:`), match(`[0-9]+`)))
+
+	// TagRegexp matches valid tag names. From docker/docker:graph/tags.go.
+	TagRegexp = match(`[\w][\w.-]{0,127}`)
+
+	// anchoredTagRegexp matches valid tag names, anchored at the start and
+	// end of the matched string.
+	anchoredTagRegexp = anchored(TagRegexp)
+
+	// DigestRegexp matches valid digests.
+	DigestRegexp = match(`[A-Za-z][A-Za-z0-9]*(?:[-_+.][A-Za-z][A-Za-z0-9]*)*[:][[:xdigit:]]{32,}`)
+
+	// anchoredDigestRegexp matches valid digests, anchored at the start and
+	// end of the matched string.
+	anchoredDigestRegexp = anchored(DigestRegexp)
+
+	// NameRegexp is the format for the name component of references. The
+	// regexp has capturing groups for the domain and name part omitting
+	// the separating forward slash from either.
+	NameRegexp = expression(
+		optional(DomainRegexp, literal(`/`)),
+		nameComponentRegexp,
+		optional(repeated(literal(`/`), nameComponentRegexp)))
+
+	// anchoredNameRegexp is used to parse a name value, capturing the
+	// domain and trailing components.
+	anchoredNameRegexp = anchored(
+		optional(capture(DomainRegexp), literal(`/`)),
+		capture(nameComponentRegexp,
+			optional(repeated(literal(`/`), nameComponentRegexp))))
+
+	// ReferenceRegexp is the full supported format of a reference. The regexp
+	// is anchored and has capturing groups for name, tag, and digest
+	// components.
+	ReferenceRegexp = anchored(capture(NameRegexp),
+		optional(literal(":"), capture(TagRegexp)),
+		optional(literal("@"), capture(DigestRegexp)))
+
+	// IdentifierRegexp is the format for string identifier used as a
+	// content addressable identifier using sha256. These identifiers
+	// are like digests without the algorithm, since sha256 is used.
+	IdentifierRegexp = match(`([a-f0-9]{64})`)
+
+	// ShortIdentifierRegexp is the format used to represent a prefix
+	// of an identifier. A prefix may be used to match a sha256 identifier
+	// within a list of trusted identifiers.
+	ShortIdentifierRegexp = match(`([a-f0-9]{6,64})`)
+
+	// anchoredIdentifierRegexp is used to check or match an
+	// identifier value, anchored at start and end of string.
+	anchoredIdentifierRegexp = anchored(IdentifierRegexp)
+
+	// anchoredShortIdentifierRegexp is used to check if a value
+	// is a possible identifier prefix, anchored at start and end
+	// of string.
+	anchoredShortIdentifierRegexp = anchored(ShortIdentifierRegexp)
+)
+
+// match compiles the string to a regular expression.
+var match = regexp.MustCompile
+
+// literal compiles s into a literal regular expression, escaping any regexp
+// reserved characters.
+func literal(s string) *regexp.Regexp {
+	re := match(regexp.QuoteMeta(s))
+
+	if _, complete := re.LiteralPrefix(); !complete {
+		panic("must be a literal")
+	}
+
+	return re
+}
+
+// expression defines a full expression, where each regular expression must
+// follow the previous.
+func expression(res ...*regexp.Regexp) *regexp.Regexp {
+	var s string
+	for _, re := range res {
+		s += re.String()
+	}
+
+	return match(s)
+}
+
+// optional wraps the expression in a non-capturing group and makes the
+// production optional.
+func optional(res ...*regexp.Regexp) *regexp.Regexp {
+	return match(group(expression(res...)).String() + `?`)
+}
+
+// repeated wraps the regexp in a non-capturing group to get one or more
+// matches.
+func repeated(res ...*regexp.Regexp) *regexp.Regexp {
+	return match(group(expression(res...)).String() + `+`)
+}
+
+// group wraps the regexp in a non-capturing group.
+func group(res ...*regexp.Regexp) *regexp.Regexp {
+	return match(`(?:` + expression(res...).String() + `)`)
+}
+
+// capture wraps the expression in a capturing group.
+func capture(res ...*regexp.Regexp) *regexp.Regexp {
+	return match(`(` + expression(res...).String() + `)`)
+}
+
+// anchored anchors the regular expression by adding start and end delimiters.
+func anchored(res ...*regexp.Regexp) *regexp.Regexp {
+	return match(`^` + expression(res...).String() + `$`)
+}
diff --git a/vendor/github.com/docker/distribution/registry.go b/vendor/github.com/docker/distribution/registry.go
new file mode 100644
index 0000000000..a3a80ab884
--- /dev/null
+++ b/vendor/github.com/docker/distribution/registry.go
@@ -0,0 +1,113 @@
+package distribution
+
+import (
+	"context"
+
+	"github.com/docker/distribution/reference"
+)
+
+// Scope defines the set of items that match a namespace.
+type Scope interface {
+	// Contains returns true if the name belongs to the namespace.
+	Contains(name string) bool
+}
+
+type fullScope struct{}
+
+func (f fullScope) Contains(string) bool {
+	return true
+}
+
+// GlobalScope represents the full namespace scope which contains
+// all other scopes.
+var GlobalScope = Scope(fullScope{})
+
+// Namespace represents a collection of repositories, addressable by name.
+// Generally, a namespace is backed by a set of one or more services,
+// providing facilities such as registry access, trust, and indexing.
+type Namespace interface {
+	// Scope describes the names that can be used with this Namespace. The
+	// global namespace will have a scope that matches all names. The scope
+	// effectively provides an identity for the namespace.
+	Scope() Scope
+
+	// Repository should return a reference to the named repository. The
+	// registry may or may not have the repository but should always return a
+	// reference.
+	Repository(ctx context.Context, name reference.Named) (Repository, error)
+
+	// Repositories fills 'repos' with a lexicographically sorted catalog of repositories
+	// up to the size of 'repos' and returns the value 'n' for the number of entries
+	// which were filled.  'last' contains an offset in the catalog, and 'err' will be
+	// set to io.EOF if there are no more entries to obtain.
+	Repositories(ctx context.Context, repos []string, last string) (n int, err error)
+
+	// Blobs returns a blob enumerator to access all blobs
+	Blobs() BlobEnumerator
+
+	// BlobStatter returns a BlobStatter to control
+	BlobStatter() BlobStatter
+}
+
+// RepositoryEnumerator describes an operation to enumerate repositories
+type RepositoryEnumerator interface {
+	Enumerate(ctx context.Context, ingester func(string) error) error
+}
+
+// ManifestServiceOption is a function argument for Manifest Service methods
+type ManifestServiceOption interface {
+	Apply(ManifestService) error
+}
+
+// WithTag allows a tag to be passed into Put
+func WithTag(tag string) ManifestServiceOption {
+	return WithTagOption{tag}
+}
+
+// WithTagOption holds a tag
+type WithTagOption struct{ Tag string }
+
+// Apply conforms to the ManifestServiceOption interface
+func (o WithTagOption) Apply(m ManifestService) error {
+	// no implementation
+	return nil
+}
+
+// WithManifestMediaTypes lists the media types the client wishes
+// the server to provide.
+func WithManifestMediaTypes(mediaTypes []string) ManifestServiceOption {
+	return WithManifestMediaTypesOption{mediaTypes}
+}
+
+// WithManifestMediaTypesOption holds a list of accepted media types
+type WithManifestMediaTypesOption struct{ MediaTypes []string }
+
+// Apply conforms to the ManifestServiceOption interface
+func (o WithManifestMediaTypesOption) Apply(m ManifestService) error {
+	// no implementation
+	return nil
+}
+
+// Repository is a named collection of manifests and layers.
+type Repository interface {
+	// Named returns the name of the repository.
+	Named() reference.Named
+
+	// Manifests returns a reference to this repository's manifest service.
+	// with the supplied options applied.
+	Manifests(ctx context.Context, options ...ManifestServiceOption) (ManifestService, error)
+
+	// Blobs returns a reference to this repository's blob service.
+	Blobs(ctx context.Context) BlobStore
+
+	// TODO(stevvooe): The above BlobStore return can probably be relaxed to
+	// be a BlobService for use with clients. This will allow such
+	// implementations to avoid implementing ServeBlob.
+
+	// Tags returns a reference to this repositories tag service
+	Tags(ctx context.Context) TagService
+}
+
+// TODO(stevvooe): Must add close methods to all these. May want to change the
+// way instances are created to better reflect internal dependency
+// relationships.
diff --git a/vendor/github.com/docker/distribution/tags.go b/vendor/github.com/docker/distribution/tags.go
new file mode 100644
index 0000000000..f22df2b850
--- /dev/null
+++ b/vendor/github.com/docker/distribution/tags.go
@@ -0,0 +1,27 @@
+package distribution
+
+import (
+	"context"
+)
+
+// TagService provides access to information about tagged objects.
+type TagService interface {
+	// Get retrieves the descriptor identified by the tag. Some
+	// implementations may differentiate between "trusted" tags and
+	// "untrusted" tags. If a tag is "untrusted", the mapping will be returned
+	// as an ErrTagUntrusted error, with the target descriptor.
+	Get(ctx context.Context, tag string) (Descriptor, error)
+
+	// Tag associates the tag with the provided descriptor, updating the
+	// current association, if needed.
+	Tag(ctx context.Context, tag string, desc Descriptor) error
+
+	// Untag removes the given tag association
+	Untag(ctx context.Context, tag string) error
+
+	// All returns the set of tags managed by this tag service
+	All(ctx context.Context) ([]string, error)
+
+	// Lookup returns the set of tags referencing the given digest.
+	Lookup(ctx context.Context, digest Descriptor) ([]string, error)
+}
diff --git a/vendor/github.com/docker/docker/AUTHORS b/vendor/github.com/docker/docker/AUTHORS
index 84059b7c2e..c5dafd7228 100644
--- a/vendor/github.com/docker/docker/AUTHORS
+++ b/vendor/github.com/docker/docker/AUTHORS
@@ -374,6 +374,7 @@ Dan Levy <dan@danlevy.net>
 Dan McPherson <dmcphers@redhat.com>
 Dan Stine <sw@stinemail.com>
 Dan Williams <me@deedubs.com>
+Dani Louca <dani.louca@docker.com>
 Daniel Antlinger <d.antlinger@gmx.at>
 Daniel Dao <dqminh@cloudflare.com>
 Daniel Exner <dex@dragonslave.de>
@@ -740,7 +741,7 @@ Isao Jonas <isao.jonas@gmail.com>
 Ivan Babrou <ibobrik@gmail.com>
 Ivan Fraixedes <ifcdev@gmail.com>
 Ivan Grcic <igrcic@gmail.com>
-Ivan Markin <twim@riseup.net>
+Ivan Markin <sw@nogoegst.net>
 J Bruni <joaohbruni@yahoo.com.br>
 J. Nunn <jbnunn@gmail.com>
 Jack Danger Canty <jackdanger@squareup.com>
@@ -886,6 +887,7 @@ John V. Martinez <jvmatl@gmail.com>
 John Warwick <jwarwick@gmail.com>
 John Willis <john.willis@docker.com>
 Jon Johnson <jonjohnson@google.com>
+Jon Surrell <jon.surrell@gmail.com>
 Jon Wedaman <jweede@gmail.com>
 Jonas Pfenniger <jonas@pfenniger.name>
 Jonathan A. Sternberg <jonathansternberg@gmail.com>
@@ -1161,6 +1163,7 @@ Matt Hoyle <matt@deployable.co>
 Matt McCormick <matt.mccormick@kitware.com>
 Matt Moore <mattmoor@google.com>
 Matt Richardson <matt@redgumtech.com.au>
+Matt Rickard <mrick@google.com>
 Matt Robenolt <matt@ydekproductions.com>
 Matt Schurenko <matt.schurenko@gmail.com>
 Matt Williams <mattyw@me.com>
@@ -1317,6 +1320,7 @@ Nikolay Milovanov <nmil@itransformers.net>
 Nirmal Mehta <nirmalkmehta@gmail.com>
 Nishant Totla <nishanttotla@gmail.com>
 NIWA Hideyuki <niwa.niwa@nifty.ne.jp>
+Noah Meyerhans <nmeyerha@amazon.com>
 Noah Treuhaft <noah.treuhaft@docker.com>
 noducks <onemannoducks@gmail.com>
 Nolan Darilek <nolan@thewordnerd.info>
@@ -1365,6 +1369,7 @@ Paul Nasrat <pnasrat@gmail.com>
 Paul Weaver <pauweave@cisco.com>
 Paulo Ribeiro <paigr.io@gmail.com>
 Pavel Lobashov <ShockwaveNN@gmail.com>
+Pavel Pletenev <cpp.create@gmail.com>
 Pavel Pospisil <pospispa@gmail.com>
 Pavel Sutyrin <pavel.sutyrin@gmail.com>
 Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
@@ -1642,6 +1647,7 @@ Stefan S. <tronicum@user.github.com>
 Stefan Scherer <scherer_stefan@icloud.com>
 Stefan Staudenmeyer <doerte@instana.com>
 Stefan Weil <sw@weilnetz.de>
+Stephan Spindler <shutefan@gmail.com>
 Stephen Crosby <stevecrozz@gmail.com>
 Stephen Day <stephen.day@docker.com>
 Stephen Drake <stephen@xenolith.net>
@@ -1823,7 +1829,7 @@ Vojtech Vitek (V-Teq) <vvitek@redhat.com>
 waitingkuo <waitingkuo0527@gmail.com>
 Walter Leibbrandt <github@wrl.co.za>
 Walter Stanish <walter@pratyeka.org>
-WANG Chao <wcwxyz@gmail.com>
+Wang Chao <chao.wang@ucloud.cn>
 Wang Guoliang <liangcszzu@163.com>
 Wang Jie <wangjie5@chinaskycloud.com>
 Wang Long <long.wanglong@huawei.com>
@@ -1834,6 +1840,7 @@ Ward Vandewege <ward@jhvc.com>
 WarheadsSE <max@warheads.net>
 Wayne Chang <wayne@neverfear.org>
 Wayne Song <wsong@docker.com>
+Weerasak Chongnguluam <singpor@gmail.com>
 Wei Wu <wuwei4455@gmail.com>
 Wei-Ting Kuo <waitingkuo0527@gmail.com>
 weiyan <weiyan3@huawei.com>
diff --git a/vendor/github.com/docker/docker/api/common.go b/vendor/github.com/docker/docker/api/common.go
new file mode 100644
index 0000000000..beb251a989
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/common.go
@@ -0,0 +1,11 @@
+package api // import "github.com/docker/docker/api"
+
+// Common constants for daemon and client.
+const (
+	// DefaultVersion of Current REST API
+	DefaultVersion string = "1.37"
+
+	// NoBaseImageSpecifier is the symbol used by the FROM
+	// command to specify that no base image is to be used.
+	NoBaseImageSpecifier string = "scratch"
+)
diff --git a/vendor/github.com/docker/docker/api/common_unix.go b/vendor/github.com/docker/docker/api/common_unix.go
new file mode 100644
index 0000000000..af1a541646
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/common_unix.go
@@ -0,0 +1,6 @@
+// +build !windows
+
+package api // import "github.com/docker/docker/api"
+
+// MinVersion represents Minimum REST API version supported
+const MinVersion string = "1.12"
diff --git a/vendor/github.com/docker/docker/api/common_windows.go b/vendor/github.com/docker/docker/api/common_windows.go
new file mode 100644
index 0000000000..590ba5479b
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/common_windows.go
@@ -0,0 +1,8 @@
+package api // import "github.com/docker/docker/api"
+
+// MinVersion represents Minimum REST API version supported
+// Technically the first daemon API version released on Windows is v1.25 in
+// engine version 1.13. However, some clients are explicitly using downlevel
+// APIs (e.g. docker-compose v2.1 file format) and that is just too restrictive.
+// Hence also allowing 1.24 on Windows.
+const MinVersion string = "1.24"
diff --git a/vendor/github.com/docker/docker/api/types/auth.go b/vendor/github.com/docker/docker/api/types/auth.go
new file mode 100644
index 0000000000..ddf15bb182
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/auth.go
@@ -0,0 +1,22 @@
+package types // import "github.com/docker/docker/api/types"
+
+// AuthConfig contains authorization information for connecting to a Registry
+type AuthConfig struct {
+	Username string `json:"username,omitempty"`
+	Password string `json:"password,omitempty"`
+	Auth     string `json:"auth,omitempty"`
+
+	// Email is an optional value associated with the username.
+	// This field is deprecated and will be removed in a later
+	// version of docker.
+	Email string `json:"email,omitempty"`
+
+	ServerAddress string `json:"serveraddress,omitempty"`
+
+	// IdentityToken is used to authenticate the user and get
+	// an access token for the registry.
+	IdentityToken string `json:"identitytoken,omitempty"`
+
+	// RegistryToken is a bearer token to be sent to a registry
+	RegistryToken string `json:"registrytoken,omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/backend/backend.go b/vendor/github.com/docker/docker/api/types/backend/backend.go
new file mode 100644
index 0000000000..ef1e669c39
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/backend/backend.go
@@ -0,0 +1,128 @@
+// Package backend includes types to send information to server backends.
+package backend // import "github.com/docker/docker/api/types/backend"
+
+import (
+	"io"
+	"time"
+
+	"github.com/docker/docker/api/types/container"
+)
+
+// ContainerAttachConfig holds the streams to use when connecting to a container to view logs.
+type ContainerAttachConfig struct {
+	GetStreams func() (io.ReadCloser, io.Writer, io.Writer, error)
+	UseStdin   bool
+	UseStdout  bool
+	UseStderr  bool
+	Logs       bool
+	Stream     bool
+	DetachKeys string
+
+	// Used to signify that streams are multiplexed and therefore need a StdWriter to encode stdout/stderr messages accordingly.
+	// TODO @cpuguy83: This shouldn't be needed. It was only added so that http and websocket endpoints can use the same function, and the websocket function was not using a stdwriter prior to this change...
+	// HOWEVER, the websocket endpoint is using a single stream and SHOULD be encoded with stdout/stderr as is done for HTTP since it is still just a single stream.
+	// Since such a change is an API change unrelated to the current changeset we'll keep it as is here and change separately.
+	MuxStreams bool
+}
+
+// PartialLogMetaData provides meta data for a partial log message. Messages
+// exceeding a predefined size are split into chunks with this metadata. The
+// expectation is for the logger endpoints to assemble the chunks using this
+// metadata.
+type PartialLogMetaData struct {
+	Last    bool   //true if this message is last of a partial
+	ID      string // identifies group of messages comprising a single record
+	Ordinal int    // ordering of message in partial group
+}
+
+// LogMessage is datastructure that represents piece of output produced by some
+// container.  The Line member is a slice of an array whose contents can be
+// changed after a log driver's Log() method returns.
+// changes to this struct need to be reflect in the reset method in
+// daemon/logger/logger.go
+type LogMessage struct {
+	Line         []byte
+	Source       string
+	Timestamp    time.Time
+	Attrs        []LogAttr
+	PLogMetaData *PartialLogMetaData
+
+	// Err is an error associated with a message. Completeness of a message
+	// with Err is not expected, tho it may be partially complete (fields may
+	// be missing, gibberish, or nil)
+	Err error
+}
+
+// LogAttr is used to hold the extra attributes available in the log message.
+type LogAttr struct {
+	Key   string
+	Value string
+}
+
+// LogSelector is a list of services and tasks that should be returned as part
+// of a log stream. It is similar to swarmapi.LogSelector, with the difference
+// that the names don't have to be resolved to IDs; this is mostly to avoid
+// accidents later where a swarmapi LogSelector might have been incorrectly
+// used verbatim (and to avoid the handler having to import swarmapi types)
+type LogSelector struct {
+	Services []string
+	Tasks    []string
+}
+
+// ContainerStatsConfig holds information for configuring the runtime
+// behavior of a backend.ContainerStats() call.
+type ContainerStatsConfig struct {
+	Stream    bool
+	OutStream io.Writer
+	Version   string
+}
+
+// ExecInspect holds information about a running process started
+// with docker exec.
+type ExecInspect struct {
+	ID            string
+	Running       bool
+	ExitCode      *int
+	ProcessConfig *ExecProcessConfig
+	OpenStdin     bool
+	OpenStderr    bool
+	OpenStdout    bool
+	CanRemove     bool
+	ContainerID   string
+	DetachKeys    []byte
+	Pid           int
+}
+
+// ExecProcessConfig holds information about the exec process
+// running on the host.
+type ExecProcessConfig struct {
+	Tty        bool     `json:"tty"`
+	Entrypoint string   `json:"entrypoint"`
+	Arguments  []string `json:"arguments"`
+	Privileged *bool    `json:"privileged,omitempty"`
+	User       string   `json:"user,omitempty"`
+}
+
+// CreateImageConfig is the configuration for creating an image from a
+// container.
+type CreateImageConfig struct {
+	Repo    string
+	Tag     string
+	Pause   bool
+	Author  string
+	Comment string
+	Config  *container.Config
+	Changes []string
+}
+
+// CommitConfig is the configuration for creating an image as part of a build.
+type CommitConfig struct {
+	Author              string
+	Comment             string
+	Config              *container.Config
+	ContainerConfig     *container.Config
+	ContainerID         string
+	ContainerMountLabel string
+	ContainerOS         string
+	ParentImageID       string
+}
diff --git a/vendor/github.com/docker/docker/api/types/backend/build.go b/vendor/github.com/docker/docker/api/types/backend/build.go
new file mode 100644
index 0000000000..31e00ec6ce
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/backend/build.go
@@ -0,0 +1,44 @@
+package backend // import "github.com/docker/docker/api/types/backend"
+
+import (
+	"io"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/pkg/streamformatter"
+)
+
+// PullOption defines different modes for accessing images
+type PullOption int
+
+const (
+	// PullOptionNoPull only returns local images
+	PullOptionNoPull PullOption = iota
+	// PullOptionForcePull always tries to pull a ref from the registry first
+	PullOptionForcePull
+	// PullOptionPreferLocal uses local image if it exists, otherwise pulls
+	PullOptionPreferLocal
+)
+
+// ProgressWriter is a data object to transport progress streams to the client
+type ProgressWriter struct {
+	Output             io.Writer
+	StdoutFormatter    io.Writer
+	StderrFormatter    io.Writer
+	AuxFormatter       *streamformatter.AuxFormatter
+	ProgressReaderFunc func(io.ReadCloser) io.ReadCloser
+}
+
+// BuildConfig is the configuration used by a BuildManager to start a build
+type BuildConfig struct {
+	Source         io.ReadCloser
+	ProgressWriter ProgressWriter
+	Options        *types.ImageBuildOptions
+}
+
+// GetImageAndLayerOptions are the options supported by GetImageAndReleasableLayer
+type GetImageAndLayerOptions struct {
+	PullOption PullOption
+	AuthConfig map[string]types.AuthConfig
+	Output     io.Writer
+	OS         string
+}
diff --git a/vendor/github.com/docker/docker/api/types/client.go b/vendor/github.com/docker/docker/api/types/client.go
new file mode 100644
index 0000000000..18b36d592b
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/client.go
@@ -0,0 +1,390 @@
+package types // import "github.com/docker/docker/api/types"
+
+import (
+	"bufio"
+	"io"
+	"net"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/api/types/filters"
+	units "github.com/docker/go-units"
+)
+
+// CheckpointCreateOptions holds parameters to create a checkpoint from a container
+type CheckpointCreateOptions struct {
+	CheckpointID  string
+	CheckpointDir string
+	Exit          bool
+}
+
+// CheckpointListOptions holds parameters to list checkpoints for a container
+type CheckpointListOptions struct {
+	CheckpointDir string
+}
+
+// CheckpointDeleteOptions holds parameters to delete a checkpoint from a container
+type CheckpointDeleteOptions struct {
+	CheckpointID  string
+	CheckpointDir string
+}
+
+// ContainerAttachOptions holds parameters to attach to a container.
+type ContainerAttachOptions struct {
+	Stream     bool
+	Stdin      bool
+	Stdout     bool
+	Stderr     bool
+	DetachKeys string
+	Logs       bool
+}
+
+// ContainerCommitOptions holds parameters to commit changes into a container.
+type ContainerCommitOptions struct {
+	Reference string
+	Comment   string
+	Author    string
+	Changes   []string
+	Pause     bool
+	Config    *container.Config
+}
+
+// ContainerExecInspect holds information returned by exec inspect.
+type ContainerExecInspect struct {
+	ExecID      string
+	ContainerID string
+	Running     bool
+	ExitCode    int
+	Pid         int
+}
+
+// ContainerListOptions holds parameters to list containers with.
+type ContainerListOptions struct {
+	Quiet   bool
+	Size    bool
+	All     bool
+	Latest  bool
+	Since   string
+	Before  string
+	Limit   int
+	Filters filters.Args
+}
+
+// ContainerLogsOptions holds parameters to filter logs with.
+type ContainerLogsOptions struct {
+	ShowStdout bool
+	ShowStderr bool
+	Since      string
+	Until      string
+	Timestamps bool
+	Follow     bool
+	Tail       string
+	Details    bool
+}
+
+// ContainerRemoveOptions holds parameters to remove containers.
+type ContainerRemoveOptions struct {
+	RemoveVolumes bool
+	RemoveLinks   bool
+	Force         bool
+}
+
+// ContainerStartOptions holds parameters to start containers.
+type ContainerStartOptions struct {
+	CheckpointID  string
+	CheckpointDir string
+}
+
+// CopyToContainerOptions holds information
+// about files to copy into a container
+type CopyToContainerOptions struct {
+	AllowOverwriteDirWithFile bool
+	CopyUIDGID                bool
+}
+
+// EventsOptions holds parameters to filter events with.
+type EventsOptions struct {
+	Since   string
+	Until   string
+	Filters filters.Args
+}
+
+// NetworkListOptions holds parameters to filter the list of networks with.
+type NetworkListOptions struct {
+	Filters filters.Args
+}
+
+// HijackedResponse holds connection information for a hijacked request.
+type HijackedResponse struct {
+	Conn   net.Conn
+	Reader *bufio.Reader
+}
+
+// Close closes the hijacked connection and reader.
+func (h *HijackedResponse) Close() {
+	h.Conn.Close()
+}
+
+// CloseWriter is an interface that implements structs
+// that close input streams to prevent from writing.
+type CloseWriter interface {
+	CloseWrite() error
+}
+
+// CloseWrite closes a readWriter for writing.
+func (h *HijackedResponse) CloseWrite() error {
+	if conn, ok := h.Conn.(CloseWriter); ok {
+		return conn.CloseWrite()
+	}
+	return nil
+}
+
+// ImageBuildOptions holds the information
+// necessary to build images.
+type ImageBuildOptions struct {
+	Tags           []string
+	SuppressOutput bool
+	RemoteContext  string
+	NoCache        bool
+	Remove         bool
+	ForceRemove    bool
+	PullParent     bool
+	Isolation      container.Isolation
+	CPUSetCPUs     string
+	CPUSetMems     string
+	CPUShares      int64
+	CPUQuota       int64
+	CPUPeriod      int64
+	Memory         int64
+	MemorySwap     int64
+	CgroupParent   string
+	NetworkMode    string
+	ShmSize        int64
+	Dockerfile     string
+	Ulimits        []*units.Ulimit
+	// BuildArgs needs to be a *string instead of just a string so that
+	// we can tell the difference between "" (empty string) and no value
+	// at all (nil). See the parsing of buildArgs in
+	// api/server/router/build/build_routes.go for even more info.
+	BuildArgs   map[string]*string
+	AuthConfigs map[string]AuthConfig
+	Context     io.Reader
+	Labels      map[string]string
+	// squash the resulting image's layers to the parent
+	// preserves the original image and creates a new one from the parent with all
+	// the changes applied to a single layer
+	Squash bool
+	// CacheFrom specifies images that are used for matching cache. Images
+	// specified here do not need to have a valid parent chain to match cache.
+	CacheFrom   []string
+	SecurityOpt []string
+	ExtraHosts  []string // List of extra hosts
+	Target      string
+	SessionID   string
+	Platform    string
+}
+
+// ImageBuildResponse holds information
+// returned by a server after building
+// an image.
+type ImageBuildResponse struct {
+	Body   io.ReadCloser
+	OSType string
+}
+
+// ImageCreateOptions holds information to create images.
+type ImageCreateOptions struct {
+	RegistryAuth string // RegistryAuth is the base64 encoded credentials for the registry.
+	Platform     string // Platform is the target platform of the image if it needs to be pulled from the registry.
+}
+
+// ImageImportSource holds source information for ImageImport
+type ImageImportSource struct {
+	Source     io.Reader // Source is the data to send to the server to create this image from. You must set SourceName to "-" to leverage this.
+	SourceName string    // SourceName is the name of the image to pull. Set to "-" to leverage the Source attribute.
+}
+
+// ImageImportOptions holds information to import images from the client host.
+type ImageImportOptions struct {
+	Tag      string   // Tag is the name to tag this image with. This attribute is deprecated.
+	Message  string   // Message is the message to tag the image with
+	Changes  []string // Changes are the raw changes to apply to this image
+	Platform string   // Platform is the target platform of the image
+}
+
+// ImageListOptions holds parameters to filter the list of images with.
+type ImageListOptions struct {
+	All     bool
+	Filters filters.Args
+}
+
+// ImageLoadResponse returns information to the client about a load process.
+type ImageLoadResponse struct {
+	// Body must be closed to avoid a resource leak
+	Body io.ReadCloser
+	JSON bool
+}
+
+// ImagePullOptions holds information to pull images.
+type ImagePullOptions struct {
+	All           bool
+	RegistryAuth  string // RegistryAuth is the base64 encoded credentials for the registry
+	PrivilegeFunc RequestPrivilegeFunc
+	Platform      string
+}
+
+// RequestPrivilegeFunc is a function interface that
+// clients can supply to retry operations after
+// getting an authorization error.
+// This function returns the registry authentication
+// header value in base 64 format, or an error
+// if the privilege request fails.
+type RequestPrivilegeFunc func() (string, error)
+
+//ImagePushOptions holds information to push images.
+type ImagePushOptions ImagePullOptions
+
+// ImageRemoveOptions holds parameters to remove images.
+type ImageRemoveOptions struct {
+	Force         bool
+	PruneChildren bool
+}
+
+// ImageSearchOptions holds parameters to search images with.
+type ImageSearchOptions struct {
+	RegistryAuth  string
+	PrivilegeFunc RequestPrivilegeFunc
+	Filters       filters.Args
+	Limit         int
+}
+
+// ResizeOptions holds parameters to resize a tty.
+// It can be used to resize container ttys and
+// exec process ttys too.
+type ResizeOptions struct {
+	Height uint
+	Width  uint
+}
+
+// NodeListOptions holds parameters to list nodes with.
+type NodeListOptions struct {
+	Filters filters.Args
+}
+
+// NodeRemoveOptions holds parameters to remove nodes with.
+type NodeRemoveOptions struct {
+	Force bool
+}
+
+// ServiceCreateOptions contains the options to use when creating a service.
+type ServiceCreateOptions struct {
+	// EncodedRegistryAuth is the encoded registry authorization credentials to
+	// use when updating the service.
+	//
+	// This field follows the format of the X-Registry-Auth header.
+	EncodedRegistryAuth string
+
+	// QueryRegistry indicates whether the service update requires
+	// contacting a registry. A registry may be contacted to retrieve
+	// the image digest and manifest, which in turn can be used to update
+	// platform or other information about the service.
+	QueryRegistry bool
+}
+
+// ServiceCreateResponse contains the information returned to a client
+// on the creation of a new service.
+type ServiceCreateResponse struct {
+	// ID is the ID of the created service.
+	ID string
+	// Warnings is a set of non-fatal warning messages to pass on to the user.
+	Warnings []string `json:",omitempty"`
+}
+
+// Values for RegistryAuthFrom in ServiceUpdateOptions
+const (
+	RegistryAuthFromSpec         = "spec"
+	RegistryAuthFromPreviousSpec = "previous-spec"
+)
+
+// ServiceUpdateOptions contains the options to be used for updating services.
+type ServiceUpdateOptions struct {
+	// EncodedRegistryAuth is the encoded registry authorization credentials to
+	// use when updating the service.
+	//
+	// This field follows the format of the X-Registry-Auth header.
+	EncodedRegistryAuth string
+
+	// TODO(stevvooe): Consider moving the version parameter of ServiceUpdate
+	// into this field. While it does open API users up to racy writes, most
+	// users may not need that level of consistency in practice.
+
+	// RegistryAuthFrom specifies where to find the registry authorization
+	// credentials if they are not given in EncodedRegistryAuth. Valid
+	// values are "spec" and "previous-spec".
+	RegistryAuthFrom string
+
+	// Rollback indicates whether a server-side rollback should be
+	// performed. When this is set, the provided spec will be ignored.
+	// The valid values are "previous" and "none". An empty value is the
+	// same as "none".
+	Rollback string
+
+	// QueryRegistry indicates whether the service update requires
+	// contacting a registry. A registry may be contacted to retrieve
+	// the image digest and manifest, which in turn can be used to update
+	// platform or other information about the service.
+	QueryRegistry bool
+}
+
+// ServiceListOptions holds parameters to list services with.
+type ServiceListOptions struct {
+	Filters filters.Args
+}
+
+// ServiceInspectOptions holds parameters related to the "service inspect"
+// operation.
+type ServiceInspectOptions struct {
+	InsertDefaults bool
+}
+
+// TaskListOptions holds parameters to list tasks with.
+type TaskListOptions struct {
+	Filters filters.Args
+}
+
+// PluginRemoveOptions holds parameters to remove plugins.
+type PluginRemoveOptions struct {
+	Force bool
+}
+
+// PluginEnableOptions holds parameters to enable plugins.
+type PluginEnableOptions struct {
+	Timeout int
+}
+
+// PluginDisableOptions holds parameters to disable plugins.
+type PluginDisableOptions struct {
+	Force bool
+}
+
+// PluginInstallOptions holds parameters to install a plugin.
+type PluginInstallOptions struct {
+	Disabled              bool
+	AcceptAllPermissions  bool
+	RegistryAuth          string // RegistryAuth is the base64 encoded credentials for the registry
+	RemoteRef             string // RemoteRef is the plugin name on the registry
+	PrivilegeFunc         RequestPrivilegeFunc
+	AcceptPermissionsFunc func(PluginPrivileges) (bool, error)
+	Args                  []string
+}
+
+// SwarmUnlockKeyResponse contains the response for Engine API:
+// GET /swarm/unlockkey
+type SwarmUnlockKeyResponse struct {
+	// UnlockKey is the unlock key in ASCII-armored format.
+	UnlockKey string
+}
+
+// PluginCreateOptions hold all options to plugin create.
+type PluginCreateOptions struct {
+	RepoName string
+}
diff --git a/vendor/github.com/docker/docker/api/types/configs.go b/vendor/github.com/docker/docker/api/types/configs.go
new file mode 100644
index 0000000000..f6537a27f2
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/configs.go
@@ -0,0 +1,57 @@
+package types // import "github.com/docker/docker/api/types"
+
+import (
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/api/types/network"
+)
+
+// configs holds structs used for internal communication between the
+// frontend (such as an http server) and the backend (such as the
+// docker daemon).
+
+// ContainerCreateConfig is the parameter set to ContainerCreate()
+type ContainerCreateConfig struct {
+	Name             string
+	Config           *container.Config
+	HostConfig       *container.HostConfig
+	NetworkingConfig *network.NetworkingConfig
+	AdjustCPUShares  bool
+}
+
+// ContainerRmConfig holds arguments for the container remove
+// operation. This struct is used to tell the backend what operations
+// to perform.
+type ContainerRmConfig struct {
+	ForceRemove, RemoveVolume, RemoveLink bool
+}
+
+// ExecConfig is a small subset of the Config struct that holds the configuration
+// for the exec feature of docker.
+type ExecConfig struct {
+	User         string   // User that will run the command
+	Privileged   bool     // Is the container in privileged mode
+	Tty          bool     // Attach standard streams to a tty.
+	AttachStdin  bool     // Attach the standard input, makes possible user interaction
+	AttachStderr bool     // Attach the standard error
+	AttachStdout bool     // Attach the standard output
+	Detach       bool     // Execute in detach mode
+	DetachKeys   string   // Escape keys for detach
+	Env          []string // Environment variables
+	WorkingDir   string   // Working directory
+	Cmd          []string // Execution commands and args
+}
+
+// PluginRmConfig holds arguments for plugin remove.
+type PluginRmConfig struct {
+	ForceRemove bool
+}
+
+// PluginEnableConfig holds arguments for plugin enable
+type PluginEnableConfig struct {
+	Timeout int
+}
+
+// PluginDisableConfig holds arguments for plugin disable.
+type PluginDisableConfig struct {
+	ForceDisable bool
+}
diff --git a/vendor/github.com/docker/docker/api/types/error_response.go b/vendor/github.com/docker/docker/api/types/error_response.go
new file mode 100644
index 0000000000..dc942d9d9e
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/error_response.go
@@ -0,0 +1,13 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// ErrorResponse Represents an error.
+// swagger:model ErrorResponse
+type ErrorResponse struct {
+
+	// The error message.
+	// Required: true
+	Message string `json:"message"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/filters/parse.go b/vendor/github.com/docker/docker/api/types/filters/parse.go
new file mode 100644
index 0000000000..a41e3d8d96
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/filters/parse.go
@@ -0,0 +1,350 @@
+/*Package filters provides tools for encoding a mapping of keys to a set of
+multiple values.
+*/
+package filters // import "github.com/docker/docker/api/types/filters"
+
+import (
+	"encoding/json"
+	"errors"
+	"regexp"
+	"strings"
+
+	"github.com/docker/docker/api/types/versions"
+)
+
+// Args stores a mapping of keys to a set of multiple values.
+type Args struct {
+	fields map[string]map[string]bool
+}
+
+// KeyValuePair are used to initialize a new Args
+type KeyValuePair struct {
+	Key   string
+	Value string
+}
+
+// Arg creates a new KeyValuePair for initializing Args
+func Arg(key, value string) KeyValuePair {
+	return KeyValuePair{Key: key, Value: value}
+}
+
+// NewArgs returns a new Args populated with the initial args
+func NewArgs(initialArgs ...KeyValuePair) Args {
+	args := Args{fields: map[string]map[string]bool{}}
+	for _, arg := range initialArgs {
+		args.Add(arg.Key, arg.Value)
+	}
+	return args
+}
+
+// ParseFlag parses a key=value string and adds it to an Args.
+//
+// Deprecated: Use Args.Add()
+func ParseFlag(arg string, prev Args) (Args, error) {
+	filters := prev
+	if len(arg) == 0 {
+		return filters, nil
+	}
+
+	if !strings.Contains(arg, "=") {
+		return filters, ErrBadFormat
+	}
+
+	f := strings.SplitN(arg, "=", 2)
+
+	name := strings.ToLower(strings.TrimSpace(f[0]))
+	value := strings.TrimSpace(f[1])
+
+	filters.Add(name, value)
+
+	return filters, nil
+}
+
+// ErrBadFormat is an error returned when a filter is not in the form key=value
+//
+// Deprecated: this error will be removed in a future version
+var ErrBadFormat = errors.New("bad format of filter (expected name=value)")
+
+// ToParam encodes the Args as args JSON encoded string
+//
+// Deprecated: use ToJSON
+func ToParam(a Args) (string, error) {
+	return ToJSON(a)
+}
+
+// MarshalJSON returns a JSON byte representation of the Args
+func (args Args) MarshalJSON() ([]byte, error) {
+	if len(args.fields) == 0 {
+		return []byte{}, nil
+	}
+	return json.Marshal(args.fields)
+}
+
+// ToJSON returns the Args as a JSON encoded string
+func ToJSON(a Args) (string, error) {
+	if a.Len() == 0 {
+		return "", nil
+	}
+	buf, err := json.Marshal(a)
+	return string(buf), err
+}
+
+// ToParamWithVersion encodes Args as a JSON string. If version is less than 1.22
+// then the encoded format will use an older legacy format where the values are a
+// list of strings, instead of a set.
+//
+// Deprecated: Use ToJSON
+func ToParamWithVersion(version string, a Args) (string, error) {
+	if a.Len() == 0 {
+		return "", nil
+	}
+
+	if version != "" && versions.LessThan(version, "1.22") {
+		buf, err := json.Marshal(convertArgsToSlice(a.fields))
+		return string(buf), err
+	}
+
+	return ToJSON(a)
+}
+
+// FromParam decodes a JSON encoded string into Args
+//
+// Deprecated: use FromJSON
+func FromParam(p string) (Args, error) {
+	return FromJSON(p)
+}
+
+// FromJSON decodes a JSON encoded string into Args
+func FromJSON(p string) (Args, error) {
+	args := NewArgs()
+
+	if p == "" {
+		return args, nil
+	}
+
+	raw := []byte(p)
+	err := json.Unmarshal(raw, &args)
+	if err == nil {
+		return args, nil
+	}
+
+	// Fallback to parsing arguments in the legacy slice format
+	deprecated := map[string][]string{}
+	if legacyErr := json.Unmarshal(raw, &deprecated); legacyErr != nil {
+		return args, err
+	}
+
+	args.fields = deprecatedArgs(deprecated)
+	return args, nil
+}
+
+// UnmarshalJSON populates the Args from JSON encode bytes
+func (args Args) UnmarshalJSON(raw []byte) error {
+	if len(raw) == 0 {
+		return nil
+	}
+	return json.Unmarshal(raw, &args.fields)
+}
+
+// Get returns the list of values associated with the key
+func (args Args) Get(key string) []string {
+	values := args.fields[key]
+	if values == nil {
+		return make([]string, 0)
+	}
+	slice := make([]string, 0, len(values))
+	for key := range values {
+		slice = append(slice, key)
+	}
+	return slice
+}
+
+// Add a new value to the set of values
+func (args Args) Add(key, value string) {
+	if _, ok := args.fields[key]; ok {
+		args.fields[key][value] = true
+	} else {
+		args.fields[key] = map[string]bool{value: true}
+	}
+}
+
+// Del removes a value from the set
+func (args Args) Del(key, value string) {
+	if _, ok := args.fields[key]; ok {
+		delete(args.fields[key], value)
+		if len(args.fields[key]) == 0 {
+			delete(args.fields, key)
+		}
+	}
+}
+
+// Len returns the number of keys in the mapping
+func (args Args) Len() int {
+	return len(args.fields)
+}
+
+// MatchKVList returns true if all the pairs in sources exist as key=value
+// pairs in the mapping at key, or if there are no values at key.
+func (args Args) MatchKVList(key string, sources map[string]string) bool {
+	fieldValues := args.fields[key]
+
+	//do not filter if there is no filter set or cannot determine filter
+	if len(fieldValues) == 0 {
+		return true
+	}
+
+	if len(sources) == 0 {
+		return false
+	}
+
+	for value := range fieldValues {
+		testKV := strings.SplitN(value, "=", 2)
+
+		v, ok := sources[testKV[0]]
+		if !ok {
+			return false
+		}
+		if len(testKV) == 2 && testKV[1] != v {
+			return false
+		}
+	}
+
+	return true
+}
+
+// Match returns true if any of the values at key match the source string
+func (args Args) Match(field, source string) bool {
+	if args.ExactMatch(field, source) {
+		return true
+	}
+
+	fieldValues := args.fields[field]
+	for name2match := range fieldValues {
+		match, err := regexp.MatchString(name2match, source)
+		if err != nil {
+			continue
+		}
+		if match {
+			return true
+		}
+	}
+	return false
+}
+
+// ExactMatch returns true if the source matches exactly one of the values.
+func (args Args) ExactMatch(key, source string) bool {
+	fieldValues, ok := args.fields[key]
+	//do not filter if there is no filter set or cannot determine filter
+	if !ok || len(fieldValues) == 0 {
+		return true
+	}
+
+	// try to match full name value to avoid O(N) regular expression matching
+	return fieldValues[source]
+}
+
+// UniqueExactMatch returns true if there is only one value and the source
+// matches exactly the value.
+func (args Args) UniqueExactMatch(key, source string) bool {
+	fieldValues := args.fields[key]
+	//do not filter if there is no filter set or cannot determine filter
+	if len(fieldValues) == 0 {
+		return true
+	}
+	if len(args.fields[key]) != 1 {
+		return false
+	}
+
+	// try to match full name value to avoid O(N) regular expression matching
+	return fieldValues[source]
+}
+
+// FuzzyMatch returns true if the source matches exactly one value,  or the
+// source has one of the values as a prefix.
+func (args Args) FuzzyMatch(key, source string) bool {
+	if args.ExactMatch(key, source) {
+		return true
+	}
+
+	fieldValues := args.fields[key]
+	for prefix := range fieldValues {
+		if strings.HasPrefix(source, prefix) {
+			return true
+		}
+	}
+	return false
+}
+
+// Include returns true if the key exists in the mapping
+//
+// Deprecated: use Contains
+func (args Args) Include(field string) bool {
+	_, ok := args.fields[field]
+	return ok
+}
+
+// Contains returns true if the key exists in the mapping
+func (args Args) Contains(field string) bool {
+	_, ok := args.fields[field]
+	return ok
+}
+
+type invalidFilter string
+
+func (e invalidFilter) Error() string {
+	return "Invalid filter '" + string(e) + "'"
+}
+
+func (invalidFilter) InvalidParameter() {}
+
+// Validate compared the set of accepted keys against the keys in the mapping.
+// An error is returned if any mapping keys are not in the accepted set.
+func (args Args) Validate(accepted map[string]bool) error {
+	for name := range args.fields {
+		if !accepted[name] {
+			return invalidFilter(name)
+		}
+	}
+	return nil
+}
+
+// WalkValues iterates over the list of values for a key in the mapping and calls
+// op() for each value. If op returns an error the iteration stops and the
+// error is returned.
+func (args Args) WalkValues(field string, op func(value string) error) error {
+	if _, ok := args.fields[field]; !ok {
+		return nil
+	}
+	for v := range args.fields[field] {
+		if err := op(v); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func deprecatedArgs(d map[string][]string) map[string]map[string]bool {
+	m := map[string]map[string]bool{}
+	for k, v := range d {
+		values := map[string]bool{}
+		for _, vv := range v {
+			values[vv] = true
+		}
+		m[k] = values
+	}
+	return m
+}
+
+func convertArgsToSlice(f map[string]map[string]bool) map[string][]string {
+	m := map[string][]string{}
+	for k, v := range f {
+		values := []string{}
+		for kk := range v {
+			if v[kk] {
+				values = append(values, kk)
+			}
+		}
+		m[k] = values
+	}
+	return m
+}
diff --git a/vendor/github.com/docker/docker/api/types/graph_driver_data.go b/vendor/github.com/docker/docker/api/types/graph_driver_data.go
new file mode 100644
index 0000000000..4d9bf1c62c
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/graph_driver_data.go
@@ -0,0 +1,17 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// GraphDriverData Information about a container's graph driver.
+// swagger:model GraphDriverData
+type GraphDriverData struct {
+
+	// data
+	// Required: true
+	Data map[string]string `json:"Data"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/id_response.go b/vendor/github.com/docker/docker/api/types/id_response.go
new file mode 100644
index 0000000000..7592d2f8b1
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/id_response.go
@@ -0,0 +1,13 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// IDResponse Response to an API call that returns just an Id
+// swagger:model IdResponse
+type IDResponse struct {
+
+	// The id of the newly created object.
+	// Required: true
+	ID string `json:"Id"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/image_delete_response_item.go b/vendor/github.com/docker/docker/api/types/image_delete_response_item.go
new file mode 100644
index 0000000000..b9a65a0d8e
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/image_delete_response_item.go
@@ -0,0 +1,15 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// ImageDeleteResponseItem image delete response item
+// swagger:model ImageDeleteResponseItem
+type ImageDeleteResponseItem struct {
+
+	// The image ID of an image that was deleted
+	Deleted string `json:"Deleted,omitempty"`
+
+	// The image ID of an image that was untagged
+	Untagged string `json:"Untagged,omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/image_summary.go b/vendor/github.com/docker/docker/api/types/image_summary.go
new file mode 100644
index 0000000000..e145b3dcfc
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/image_summary.go
@@ -0,0 +1,49 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// ImageSummary image summary
+// swagger:model ImageSummary
+type ImageSummary struct {
+
+	// containers
+	// Required: true
+	Containers int64 `json:"Containers"`
+
+	// created
+	// Required: true
+	Created int64 `json:"Created"`
+
+	// Id
+	// Required: true
+	ID string `json:"Id"`
+
+	// labels
+	// Required: true
+	Labels map[string]string `json:"Labels"`
+
+	// parent Id
+	// Required: true
+	ParentID string `json:"ParentId"`
+
+	// repo digests
+	// Required: true
+	RepoDigests []string `json:"RepoDigests"`
+
+	// repo tags
+	// Required: true
+	RepoTags []string `json:"RepoTags"`
+
+	// shared size
+	// Required: true
+	SharedSize int64 `json:"SharedSize"`
+
+	// size
+	// Required: true
+	Size int64 `json:"Size"`
+
+	// virtual size
+	// Required: true
+	VirtualSize int64 `json:"VirtualSize"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/network/network.go b/vendor/github.com/docker/docker/api/types/network/network.go
new file mode 100644
index 0000000000..761d0b34f2
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/network/network.go
@@ -0,0 +1,108 @@
+package network // import "github.com/docker/docker/api/types/network"
+
+// Address represents an IP address
+type Address struct {
+	Addr      string
+	PrefixLen int
+}
+
+// IPAM represents IP Address Management
+type IPAM struct {
+	Driver  string
+	Options map[string]string //Per network IPAM driver options
+	Config  []IPAMConfig
+}
+
+// IPAMConfig represents IPAM configurations
+type IPAMConfig struct {
+	Subnet     string            `json:",omitempty"`
+	IPRange    string            `json:",omitempty"`
+	Gateway    string            `json:",omitempty"`
+	AuxAddress map[string]string `json:"AuxiliaryAddresses,omitempty"`
+}
+
+// EndpointIPAMConfig represents IPAM configurations for the endpoint
+type EndpointIPAMConfig struct {
+	IPv4Address  string   `json:",omitempty"`
+	IPv6Address  string   `json:",omitempty"`
+	LinkLocalIPs []string `json:",omitempty"`
+}
+
+// Copy makes a copy of the endpoint ipam config
+func (cfg *EndpointIPAMConfig) Copy() *EndpointIPAMConfig {
+	cfgCopy := *cfg
+	cfgCopy.LinkLocalIPs = make([]string, 0, len(cfg.LinkLocalIPs))
+	cfgCopy.LinkLocalIPs = append(cfgCopy.LinkLocalIPs, cfg.LinkLocalIPs...)
+	return &cfgCopy
+}
+
+// PeerInfo represents one peer of an overlay network
+type PeerInfo struct {
+	Name string
+	IP   string
+}
+
+// EndpointSettings stores the network endpoint details
+type EndpointSettings struct {
+	// Configurations
+	IPAMConfig *EndpointIPAMConfig
+	Links      []string
+	Aliases    []string
+	// Operational data
+	NetworkID           string
+	EndpointID          string
+	Gateway             string
+	IPAddress           string
+	IPPrefixLen         int
+	IPv6Gateway         string
+	GlobalIPv6Address   string
+	GlobalIPv6PrefixLen int
+	MacAddress          string
+	DriverOpts          map[string]string
+}
+
+// Task carries the information about one backend task
+type Task struct {
+	Name       string
+	EndpointID string
+	EndpointIP string
+	Info       map[string]string
+}
+
+// ServiceInfo represents service parameters with the list of service's tasks
+type ServiceInfo struct {
+	VIP          string
+	Ports        []string
+	LocalLBIndex int
+	Tasks        []Task
+}
+
+// Copy makes a deep copy of `EndpointSettings`
+func (es *EndpointSettings) Copy() *EndpointSettings {
+	epCopy := *es
+	if es.IPAMConfig != nil {
+		epCopy.IPAMConfig = es.IPAMConfig.Copy()
+	}
+
+	if es.Links != nil {
+		links := make([]string, 0, len(es.Links))
+		epCopy.Links = append(links, es.Links...)
+	}
+
+	if es.Aliases != nil {
+		aliases := make([]string, 0, len(es.Aliases))
+		epCopy.Aliases = append(aliases, es.Aliases...)
+	}
+	return &epCopy
+}
+
+// NetworkingConfig represents the container's networking configuration for each of its interfaces
+// Carries the networking configs specified in the `docker run` and `docker network connect` commands
+type NetworkingConfig struct {
+	EndpointsConfig map[string]*EndpointSettings // Endpoint configs for each connecting network
+}
+
+// ConfigReference specifies the source which provides a network's configuration
+type ConfigReference struct {
+	Network string
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin.go b/vendor/github.com/docker/docker/api/types/plugin.go
new file mode 100644
index 0000000000..cab333e01a
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin.go
@@ -0,0 +1,200 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// Plugin A plugin for the Engine API
+// swagger:model Plugin
+type Plugin struct {
+
+	// config
+	// Required: true
+	Config PluginConfig `json:"Config"`
+
+	// True if the plugin is running. False if the plugin is not running, only installed.
+	// Required: true
+	Enabled bool `json:"Enabled"`
+
+	// Id
+	ID string `json:"Id,omitempty"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+
+	// plugin remote reference used to push/pull the plugin
+	PluginReference string `json:"PluginReference,omitempty"`
+
+	// settings
+	// Required: true
+	Settings PluginSettings `json:"Settings"`
+}
+
+// PluginConfig The config of a plugin.
+// swagger:model PluginConfig
+type PluginConfig struct {
+
+	// args
+	// Required: true
+	Args PluginConfigArgs `json:"Args"`
+
+	// description
+	// Required: true
+	Description string `json:"Description"`
+
+	// Docker Version used to create the plugin
+	DockerVersion string `json:"DockerVersion,omitempty"`
+
+	// documentation
+	// Required: true
+	Documentation string `json:"Documentation"`
+
+	// entrypoint
+	// Required: true
+	Entrypoint []string `json:"Entrypoint"`
+
+	// env
+	// Required: true
+	Env []PluginEnv `json:"Env"`
+
+	// interface
+	// Required: true
+	Interface PluginConfigInterface `json:"Interface"`
+
+	// ipc host
+	// Required: true
+	IpcHost bool `json:"IpcHost"`
+
+	// linux
+	// Required: true
+	Linux PluginConfigLinux `json:"Linux"`
+
+	// mounts
+	// Required: true
+	Mounts []PluginMount `json:"Mounts"`
+
+	// network
+	// Required: true
+	Network PluginConfigNetwork `json:"Network"`
+
+	// pid host
+	// Required: true
+	PidHost bool `json:"PidHost"`
+
+	// propagated mount
+	// Required: true
+	PropagatedMount string `json:"PropagatedMount"`
+
+	// user
+	User PluginConfigUser `json:"User,omitempty"`
+
+	// work dir
+	// Required: true
+	WorkDir string `json:"WorkDir"`
+
+	// rootfs
+	Rootfs *PluginConfigRootfs `json:"rootfs,omitempty"`
+}
+
+// PluginConfigArgs plugin config args
+// swagger:model PluginConfigArgs
+type PluginConfigArgs struct {
+
+	// description
+	// Required: true
+	Description string `json:"Description"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+
+	// settable
+	// Required: true
+	Settable []string `json:"Settable"`
+
+	// value
+	// Required: true
+	Value []string `json:"Value"`
+}
+
+// PluginConfigInterface The interface between Docker and the plugin
+// swagger:model PluginConfigInterface
+type PluginConfigInterface struct {
+
+	// socket
+	// Required: true
+	Socket string `json:"Socket"`
+
+	// types
+	// Required: true
+	Types []PluginInterfaceType `json:"Types"`
+}
+
+// PluginConfigLinux plugin config linux
+// swagger:model PluginConfigLinux
+type PluginConfigLinux struct {
+
+	// allow all devices
+	// Required: true
+	AllowAllDevices bool `json:"AllowAllDevices"`
+
+	// capabilities
+	// Required: true
+	Capabilities []string `json:"Capabilities"`
+
+	// devices
+	// Required: true
+	Devices []PluginDevice `json:"Devices"`
+}
+
+// PluginConfigNetwork plugin config network
+// swagger:model PluginConfigNetwork
+type PluginConfigNetwork struct {
+
+	// type
+	// Required: true
+	Type string `json:"Type"`
+}
+
+// PluginConfigRootfs plugin config rootfs
+// swagger:model PluginConfigRootfs
+type PluginConfigRootfs struct {
+
+	// diff ids
+	DiffIds []string `json:"diff_ids"`
+
+	// type
+	Type string `json:"type,omitempty"`
+}
+
+// PluginConfigUser plugin config user
+// swagger:model PluginConfigUser
+type PluginConfigUser struct {
+
+	// g ID
+	GID uint32 `json:"GID,omitempty"`
+
+	// UID
+	UID uint32 `json:"UID,omitempty"`
+}
+
+// PluginSettings Settings that can be modified by users.
+// swagger:model PluginSettings
+type PluginSettings struct {
+
+	// args
+	// Required: true
+	Args []string `json:"Args"`
+
+	// devices
+	// Required: true
+	Devices []PluginDevice `json:"Devices"`
+
+	// env
+	// Required: true
+	Env []string `json:"Env"`
+
+	// mounts
+	// Required: true
+	Mounts []PluginMount `json:"Mounts"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_device.go b/vendor/github.com/docker/docker/api/types/plugin_device.go
new file mode 100644
index 0000000000..5699010675
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin_device.go
@@ -0,0 +1,25 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// PluginDevice plugin device
+// swagger:model PluginDevice
+type PluginDevice struct {
+
+	// description
+	// Required: true
+	Description string `json:"Description"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+
+	// path
+	// Required: true
+	Path *string `json:"Path"`
+
+	// settable
+	// Required: true
+	Settable []string `json:"Settable"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_env.go b/vendor/github.com/docker/docker/api/types/plugin_env.go
new file mode 100644
index 0000000000..32962dc2eb
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin_env.go
@@ -0,0 +1,25 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// PluginEnv plugin env
+// swagger:model PluginEnv
+type PluginEnv struct {
+
+	// description
+	// Required: true
+	Description string `json:"Description"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+
+	// settable
+	// Required: true
+	Settable []string `json:"Settable"`
+
+	// value
+	// Required: true
+	Value *string `json:"Value"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_interface_type.go b/vendor/github.com/docker/docker/api/types/plugin_interface_type.go
new file mode 100644
index 0000000000..c82f204e87
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin_interface_type.go
@@ -0,0 +1,21 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// PluginInterfaceType plugin interface type
+// swagger:model PluginInterfaceType
+type PluginInterfaceType struct {
+
+	// capability
+	// Required: true
+	Capability string `json:"Capability"`
+
+	// prefix
+	// Required: true
+	Prefix string `json:"Prefix"`
+
+	// version
+	// Required: true
+	Version string `json:"Version"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_mount.go b/vendor/github.com/docker/docker/api/types/plugin_mount.go
new file mode 100644
index 0000000000..5c031cf8b5
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin_mount.go
@@ -0,0 +1,37 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// PluginMount plugin mount
+// swagger:model PluginMount
+type PluginMount struct {
+
+	// description
+	// Required: true
+	Description string `json:"Description"`
+
+	// destination
+	// Required: true
+	Destination string `json:"Destination"`
+
+	// name
+	// Required: true
+	Name string `json:"Name"`
+
+	// options
+	// Required: true
+	Options []string `json:"Options"`
+
+	// settable
+	// Required: true
+	Settable []string `json:"Settable"`
+
+	// source
+	// Required: true
+	Source *string `json:"Source"`
+
+	// type
+	// Required: true
+	Type string `json:"Type"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugin_responses.go b/vendor/github.com/docker/docker/api/types/plugin_responses.go
new file mode 100644
index 0000000000..60d1fb5ad8
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugin_responses.go
@@ -0,0 +1,71 @@
+package types // import "github.com/docker/docker/api/types"
+
+import (
+	"encoding/json"
+	"fmt"
+	"sort"
+)
+
+// PluginsListResponse contains the response for the Engine API
+type PluginsListResponse []*Plugin
+
+// UnmarshalJSON implements json.Unmarshaler for PluginInterfaceType
+func (t *PluginInterfaceType) UnmarshalJSON(p []byte) error {
+	versionIndex := len(p)
+	prefixIndex := 0
+	if len(p) < 2 || p[0] != '"' || p[len(p)-1] != '"' {
+		return fmt.Errorf("%q is not a plugin interface type", p)
+	}
+	p = p[1 : len(p)-1]
+loop:
+	for i, b := range p {
+		switch b {
+		case '.':
+			prefixIndex = i
+		case '/':
+			versionIndex = i
+			break loop
+		}
+	}
+	t.Prefix = string(p[:prefixIndex])
+	t.Capability = string(p[prefixIndex+1 : versionIndex])
+	if versionIndex < len(p) {
+		t.Version = string(p[versionIndex+1:])
+	}
+	return nil
+}
+
+// MarshalJSON implements json.Marshaler for PluginInterfaceType
+func (t *PluginInterfaceType) MarshalJSON() ([]byte, error) {
+	return json.Marshal(t.String())
+}
+
+// String implements fmt.Stringer for PluginInterfaceType
+func (t PluginInterfaceType) String() string {
+	return fmt.Sprintf("%s.%s/%s", t.Prefix, t.Capability, t.Version)
+}
+
+// PluginPrivilege describes a permission the user has to accept
+// upon installing a plugin.
+type PluginPrivilege struct {
+	Name        string
+	Description string
+	Value       []string
+}
+
+// PluginPrivileges is a list of PluginPrivilege
+type PluginPrivileges []PluginPrivilege
+
+func (s PluginPrivileges) Len() int {
+	return len(s)
+}
+
+func (s PluginPrivileges) Less(i, j int) bool {
+	return s[i].Name < s[j].Name
+}
+
+func (s PluginPrivileges) Swap(i, j int) {
+	sort.Strings(s[i].Value)
+	sort.Strings(s[j].Value)
+	s[i], s[j] = s[j], s[i]
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugins/logdriver/entry.pb.go b/vendor/github.com/docker/docker/api/types/plugins/logdriver/entry.pb.go
new file mode 100644
index 0000000000..5d7d8b4c41
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugins/logdriver/entry.pb.go
@@ -0,0 +1,449 @@
+// Code generated by protoc-gen-gogo.
+// source: entry.proto
+// DO NOT EDIT!
+
+/*
+	Package logdriver is a generated protocol buffer package.
+
+	It is generated from these files:
+		entry.proto
+
+	It has these top-level messages:
+		LogEntry
+*/
+package logdriver
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type LogEntry struct {
+	Source   string `protobuf:"bytes,1,opt,name=source,proto3" json:"source,omitempty"`
+	TimeNano int64  `protobuf:"varint,2,opt,name=time_nano,json=timeNano,proto3" json:"time_nano,omitempty"`
+	Line     []byte `protobuf:"bytes,3,opt,name=line,proto3" json:"line,omitempty"`
+	Partial  bool   `protobuf:"varint,4,opt,name=partial,proto3" json:"partial,omitempty"`
+}
+
+func (m *LogEntry) Reset()                    { *m = LogEntry{} }
+func (m *LogEntry) String() string            { return proto.CompactTextString(m) }
+func (*LogEntry) ProtoMessage()               {}
+func (*LogEntry) Descriptor() ([]byte, []int) { return fileDescriptorEntry, []int{0} }
+
+func (m *LogEntry) GetSource() string {
+	if m != nil {
+		return m.Source
+	}
+	return ""
+}
+
+func (m *LogEntry) GetTimeNano() int64 {
+	if m != nil {
+		return m.TimeNano
+	}
+	return 0
+}
+
+func (m *LogEntry) GetLine() []byte {
+	if m != nil {
+		return m.Line
+	}
+	return nil
+}
+
+func (m *LogEntry) GetPartial() bool {
+	if m != nil {
+		return m.Partial
+	}
+	return false
+}
+
+func init() {
+	proto.RegisterType((*LogEntry)(nil), "LogEntry")
+}
+func (m *LogEntry) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogEntry) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Source) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintEntry(dAtA, i, uint64(len(m.Source)))
+		i += copy(dAtA[i:], m.Source)
+	}
+	if m.TimeNano != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintEntry(dAtA, i, uint64(m.TimeNano))
+	}
+	if len(m.Line) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintEntry(dAtA, i, uint64(len(m.Line)))
+		i += copy(dAtA[i:], m.Line)
+	}
+	if m.Partial {
+		dAtA[i] = 0x20
+		i++
+		if m.Partial {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func encodeFixed64Entry(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Entry(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintEntry(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *LogEntry) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Source)
+	if l > 0 {
+		n += 1 + l + sovEntry(uint64(l))
+	}
+	if m.TimeNano != 0 {
+		n += 1 + sovEntry(uint64(m.TimeNano))
+	}
+	l = len(m.Line)
+	if l > 0 {
+		n += 1 + l + sovEntry(uint64(l))
+	}
+	if m.Partial {
+		n += 2
+	}
+	return n
+}
+
+func sovEntry(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozEntry(x uint64) (n int) {
+	return sovEntry(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (m *LogEntry) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowEntry
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogEntry: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogEntry: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Source", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthEntry
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Source = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TimeNano", wireType)
+			}
+			m.TimeNano = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.TimeNano |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Line", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthEntry
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Line = append(m.Line[:0], dAtA[iNdEx:postIndex]...)
+			if m.Line == nil {
+				m.Line = []byte{}
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Partial", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Partial = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipEntry(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthEntry
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipEntry(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowEntry
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowEntry
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthEntry
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowEntry
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipEntry(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthEntry = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowEntry   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("entry.proto", fileDescriptorEntry) }
+
+var fileDescriptorEntry = []byte{
+	// 149 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0x4e, 0xcd, 0x2b, 0x29,
+	0xaa, 0xd4, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x57, 0xca, 0xe5, 0xe2, 0xf0, 0xc9, 0x4f, 0x77, 0x05,
+	0x89, 0x08, 0x89, 0x71, 0xb1, 0x15, 0xe7, 0x97, 0x16, 0x25, 0xa7, 0x4a, 0x30, 0x2a, 0x30, 0x6a,
+	0x70, 0x06, 0x41, 0x79, 0x42, 0xd2, 0x5c, 0x9c, 0x25, 0x99, 0xb9, 0xa9, 0xf1, 0x79, 0x89, 0x79,
+	0xf9, 0x12, 0x4c, 0x0a, 0x8c, 0x1a, 0xcc, 0x41, 0x1c, 0x20, 0x01, 0xbf, 0xc4, 0xbc, 0x7c, 0x21,
+	0x21, 0x2e, 0x96, 0x9c, 0xcc, 0xbc, 0x54, 0x09, 0x66, 0x05, 0x46, 0x0d, 0x9e, 0x20, 0x30, 0x5b,
+	0x48, 0x82, 0x8b, 0xbd, 0x20, 0xb1, 0xa8, 0x24, 0x33, 0x31, 0x47, 0x82, 0x45, 0x81, 0x51, 0x83,
+	0x23, 0x08, 0xc6, 0x75, 0xe2, 0x39, 0xf1, 0x48, 0x8e, 0xf1, 0xc2, 0x23, 0x39, 0xc6, 0x07, 0x8f,
+	0xe4, 0x18, 0x93, 0xd8, 0xc0, 0x6e, 0x30, 0x06, 0x04, 0x00, 0x00, 0xff, 0xff, 0x2d, 0x24, 0x5a,
+	0xd4, 0x92, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/docker/api/types/plugins/logdriver/gen.go b/vendor/github.com/docker/docker/api/types/plugins/logdriver/gen.go
new file mode 100644
index 0000000000..e5f10b5e0d
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugins/logdriver/gen.go
@@ -0,0 +1,3 @@
+//go:generate protoc --gogofast_out=import_path=github.com/docker/docker/api/types/plugins/logdriver:. entry.proto
+
+package logdriver // import "github.com/docker/docker/api/types/plugins/logdriver"
diff --git a/vendor/github.com/docker/docker/api/types/plugins/logdriver/io.go b/vendor/github.com/docker/docker/api/types/plugins/logdriver/io.go
new file mode 100644
index 0000000000..9081b3b45f
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/plugins/logdriver/io.go
@@ -0,0 +1,87 @@
+package logdriver // import "github.com/docker/docker/api/types/plugins/logdriver"
+
+import (
+	"encoding/binary"
+	"io"
+)
+
+const binaryEncodeLen = 4
+
+// LogEntryEncoder encodes a LogEntry to a protobuf stream
+// The stream should look like:
+//
+// [uint32 binary encoded message size][protobuf message]
+//
+// To decode an entry, read the first 4 bytes to get the size of the entry,
+// then read `size` bytes from the stream.
+type LogEntryEncoder interface {
+	Encode(*LogEntry) error
+}
+
+// NewLogEntryEncoder creates a protobuf stream encoder for log entries.
+// This is used to write out  log entries to a stream.
+func NewLogEntryEncoder(w io.Writer) LogEntryEncoder {
+	return &logEntryEncoder{
+		w:   w,
+		buf: make([]byte, 1024),
+	}
+}
+
+type logEntryEncoder struct {
+	buf []byte
+	w   io.Writer
+}
+
+func (e *logEntryEncoder) Encode(l *LogEntry) error {
+	n := l.Size()
+
+	total := n + binaryEncodeLen
+	if total > len(e.buf) {
+		e.buf = make([]byte, total)
+	}
+	binary.BigEndian.PutUint32(e.buf, uint32(n))
+
+	if _, err := l.MarshalTo(e.buf[binaryEncodeLen:]); err != nil {
+		return err
+	}
+	_, err := e.w.Write(e.buf[:total])
+	return err
+}
+
+// LogEntryDecoder decodes log entries from a stream
+// It is expected that the wire format is as defined by LogEntryEncoder.
+type LogEntryDecoder interface {
+	Decode(*LogEntry) error
+}
+
+// NewLogEntryDecoder creates a new stream decoder for log entries
+func NewLogEntryDecoder(r io.Reader) LogEntryDecoder {
+	return &logEntryDecoder{
+		lenBuf: make([]byte, binaryEncodeLen),
+		buf:    make([]byte, 1024),
+		r:      r,
+	}
+}
+
+type logEntryDecoder struct {
+	r      io.Reader
+	lenBuf []byte
+	buf    []byte
+}
+
+func (d *logEntryDecoder) Decode(l *LogEntry) error {
+	_, err := io.ReadFull(d.r, d.lenBuf)
+	if err != nil {
+		return err
+	}
+
+	size := int(binary.BigEndian.Uint32(d.lenBuf))
+	if len(d.buf) < size {
+		d.buf = make([]byte, size)
+	}
+
+	if _, err := io.ReadFull(d.r, d.buf[:size]); err != nil {
+		return err
+	}
+	return l.Unmarshal(d.buf[:size])
+}
diff --git a/vendor/github.com/docker/docker/api/types/port.go b/vendor/github.com/docker/docker/api/types/port.go
new file mode 100644
index 0000000000..ad52d46d56
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/port.go
@@ -0,0 +1,23 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// Port An open port on a container
+// swagger:model Port
+type Port struct {
+
+	// IP
+	IP string `json:"IP,omitempty"`
+
+	// Port on the container
+	// Required: true
+	PrivatePort uint16 `json:"PrivatePort"`
+
+	// Port exposed on the host
+	PublicPort uint16 `json:"PublicPort,omitempty"`
+
+	// type
+	// Required: true
+	Type string `json:"Type"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/registry/authenticate.go b/vendor/github.com/docker/docker/api/types/registry/authenticate.go
new file mode 100644
index 0000000000..f0a2113e40
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/registry/authenticate.go
@@ -0,0 +1,21 @@
+package registry // import "github.com/docker/docker/api/types/registry"
+
+// ----------------------------------------------------------------------------
+// DO NOT EDIT THIS FILE
+// This file was generated by `swagger generate operation`
+//
+// See hack/generate-swagger-api.sh
+// ----------------------------------------------------------------------------
+
+// AuthenticateOKBody authenticate o k body
+// swagger:model AuthenticateOKBody
+type AuthenticateOKBody struct {
+
+	// An opaque token used to authenticate a user after a successful login
+	// Required: true
+	IdentityToken string `json:"IdentityToken"`
+
+	// The status of the authentication
+	// Required: true
+	Status string `json:"Status"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/registry/registry.go b/vendor/github.com/docker/docker/api/types/registry/registry.go
new file mode 100644
index 0000000000..8789ad3b32
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/registry/registry.go
@@ -0,0 +1,119 @@
+package registry // import "github.com/docker/docker/api/types/registry"
+
+import (
+	"encoding/json"
+	"net"
+
+	"github.com/opencontainers/image-spec/specs-go/v1"
+)
+
+// ServiceConfig stores daemon registry services configuration.
+type ServiceConfig struct {
+	AllowNondistributableArtifactsCIDRs     []*NetIPNet
+	AllowNondistributableArtifactsHostnames []string
+	InsecureRegistryCIDRs                   []*NetIPNet           `json:"InsecureRegistryCIDRs"`
+	IndexConfigs                            map[string]*IndexInfo `json:"IndexConfigs"`
+	Mirrors                                 []string
+}
+
+// NetIPNet is the net.IPNet type, which can be marshalled and
+// unmarshalled to JSON
+type NetIPNet net.IPNet
+
+// String returns the CIDR notation of ipnet
+func (ipnet *NetIPNet) String() string {
+	return (*net.IPNet)(ipnet).String()
+}
+
+// MarshalJSON returns the JSON representation of the IPNet
+func (ipnet *NetIPNet) MarshalJSON() ([]byte, error) {
+	return json.Marshal((*net.IPNet)(ipnet).String())
+}
+
+// UnmarshalJSON sets the IPNet from a byte array of JSON
+func (ipnet *NetIPNet) UnmarshalJSON(b []byte) (err error) {
+	var ipnetStr string
+	if err = json.Unmarshal(b, &ipnetStr); err == nil {
+		var cidr *net.IPNet
+		if _, cidr, err = net.ParseCIDR(ipnetStr); err == nil {
+			*ipnet = NetIPNet(*cidr)
+		}
+	}
+	return
+}
+
+// IndexInfo contains information about a registry
+//
+// RepositoryInfo Examples:
+// {
+//   "Index" : {
+//     "Name" : "docker.io",
+//     "Mirrors" : ["https://registry-2.docker.io/v1/", "https://registry-3.docker.io/v1/"],
+//     "Secure" : true,
+//     "Official" : true,
+//   },
+//   "RemoteName" : "library/debian",
+//   "LocalName" : "debian",
+//   "CanonicalName" : "docker.io/debian"
+//   "Official" : true,
+// }
+//
+// {
+//   "Index" : {
+//     "Name" : "127.0.0.1:5000",
+//     "Mirrors" : [],
+//     "Secure" : false,
+//     "Official" : false,
+//   },
+//   "RemoteName" : "user/repo",
+//   "LocalName" : "127.0.0.1:5000/user/repo",
+//   "CanonicalName" : "127.0.0.1:5000/user/repo",
+//   "Official" : false,
+// }
+type IndexInfo struct {
+	// Name is the name of the registry, such as "docker.io"
+	Name string
+	// Mirrors is a list of mirrors, expressed as URIs
+	Mirrors []string
+	// Secure is set to false if the registry is part of the list of
+	// insecure registries. Insecure registries accept HTTP and/or accept
+	// HTTPS with certificates from unknown CAs.
+	Secure bool
+	// Official indicates whether this is an official registry
+	Official bool
+}
+
+// SearchResult describes a search result returned from a registry
+type SearchResult struct {
+	// StarCount indicates the number of stars this repository has
+	StarCount int `json:"star_count"`
+	// IsOfficial is true if the result is from an official repository.
+	IsOfficial bool `json:"is_official"`
+	// Name is the name of the repository
+	Name string `json:"name"`
+	// IsAutomated indicates whether the result is automated
+	IsAutomated bool `json:"is_automated"`
+	// Description is a textual description of the repository
+	Description string `json:"description"`
+}
+
+// SearchResults lists a collection search results returned from a registry
+type SearchResults struct {
+	// Query contains the query string that generated the search results
+	Query string `json:"query"`
+	// NumResults indicates the number of results the query returned
+	NumResults int `json:"num_results"`
+	// Results is a slice containing the actual results for the search
+	Results []SearchResult `json:"results"`
+}
+
+// DistributionInspect describes the result obtained from contacting the
+// registry to retrieve image metadata
+type DistributionInspect struct {
+	// Descriptor contains information about the manifest, including
+	// the content addressable digest
+	Descriptor v1.Descriptor
+	// Platforms contains the list of platforms supported by the image,
+	// obtained by parsing the manifest
+	Platforms []v1.Platform
+}
diff --git a/vendor/github.com/docker/docker/api/types/seccomp.go b/vendor/github.com/docker/docker/api/types/seccomp.go
new file mode 100644
index 0000000000..67a41e1a89
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/seccomp.go
@@ -0,0 +1,93 @@
+package types // import "github.com/docker/docker/api/types"
+
+// Seccomp represents the config for a seccomp profile for syscall restriction.
+type Seccomp struct {
+	DefaultAction Action `json:"defaultAction"`
+	// Architectures is kept to maintain backward compatibility with the old
+	// seccomp profile.
+	Architectures []Arch         `json:"architectures,omitempty"`
+	ArchMap       []Architecture `json:"archMap,omitempty"`
+	Syscalls      []*Syscall     `json:"syscalls"`
+}
+
+// Architecture is used to represent a specific architecture
+// and its sub-architectures
+type Architecture struct {
+	Arch      Arch   `json:"architecture"`
+	SubArches []Arch `json:"subArchitectures"`
+}
+
+// Arch used for architectures
+type Arch string
+
+// Additional architectures permitted to be used for system calls
+// By default only the native architecture of the kernel is permitted
+const (
+	ArchX86         Arch = "SCMP_ARCH_X86"
+	ArchX86_64      Arch = "SCMP_ARCH_X86_64"
+	ArchX32         Arch = "SCMP_ARCH_X32"
+	ArchARM         Arch = "SCMP_ARCH_ARM"
+	ArchAARCH64     Arch = "SCMP_ARCH_AARCH64"
+	ArchMIPS        Arch = "SCMP_ARCH_MIPS"
+	ArchMIPS64      Arch = "SCMP_ARCH_MIPS64"
+	ArchMIPS64N32   Arch = "SCMP_ARCH_MIPS64N32"
+	ArchMIPSEL      Arch = "SCMP_ARCH_MIPSEL"
+	ArchMIPSEL64    Arch = "SCMP_ARCH_MIPSEL64"
+	ArchMIPSEL64N32 Arch = "SCMP_ARCH_MIPSEL64N32"
+	ArchPPC         Arch = "SCMP_ARCH_PPC"
+	ArchPPC64       Arch = "SCMP_ARCH_PPC64"
+	ArchPPC64LE     Arch = "SCMP_ARCH_PPC64LE"
+	ArchS390        Arch = "SCMP_ARCH_S390"
+	ArchS390X       Arch = "SCMP_ARCH_S390X"
+)
+
+// Action taken upon Seccomp rule match
+type Action string
+
+// Define actions for Seccomp rules
+const (
+	ActKill  Action = "SCMP_ACT_KILL"
+	ActTrap  Action = "SCMP_ACT_TRAP"
+	ActErrno Action = "SCMP_ACT_ERRNO"
+	ActTrace Action = "SCMP_ACT_TRACE"
+	ActAllow Action = "SCMP_ACT_ALLOW"
+)
+
+// Operator used to match syscall arguments in Seccomp
+type Operator string
+
+// Define operators for syscall arguments in Seccomp
+const (
+	OpNotEqual     Operator = "SCMP_CMP_NE"
+	OpLessThan     Operator = "SCMP_CMP_LT"
+	OpLessEqual    Operator = "SCMP_CMP_LE"
+	OpEqualTo      Operator = "SCMP_CMP_EQ"
+	OpGreaterEqual Operator = "SCMP_CMP_GE"
+	OpGreaterThan  Operator = "SCMP_CMP_GT"
+	OpMaskedEqual  Operator = "SCMP_CMP_MASKED_EQ"
+)
+
+// Arg used for matching specific syscall arguments in Seccomp
+type Arg struct {
+	Index    uint     `json:"index"`
+	Value    uint64   `json:"value"`
+	ValueTwo uint64   `json:"valueTwo"`
+	Op       Operator `json:"op"`
+}
+
+// Filter is used to conditionally apply Seccomp rules
+type Filter struct {
+	Caps   []string `json:"caps,omitempty"`
+	Arches []string `json:"arches,omitempty"`
+}
+
+// Syscall is used to match a group of syscalls in Seccomp
+type Syscall struct {
+	Name     string   `json:"name,omitempty"`
+	Names    []string `json:"names,omitempty"`
+	Action   Action   `json:"action"`
+	Args     []*Arg   `json:"args"`
+	Comment  string   `json:"comment"`
+	Includes Filter   `json:"includes"`
+	Excludes Filter   `json:"excludes"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/service_update_response.go b/vendor/github.com/docker/docker/api/types/service_update_response.go
new file mode 100644
index 0000000000..74ea64b1bb
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/service_update_response.go
@@ -0,0 +1,12 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// ServiceUpdateResponse service update response
+// swagger:model ServiceUpdateResponse
+type ServiceUpdateResponse struct {
+
+	// Optional warning messages
+	Warnings []string `json:"Warnings"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/stats.go b/vendor/github.com/docker/docker/api/types/stats.go
new file mode 100644
index 0000000000..60175c0613
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/stats.go
@@ -0,0 +1,181 @@
+// Package types is used for API stability in the types and response to the
+// consumers of the API stats endpoint.
+package types // import "github.com/docker/docker/api/types"
+
+import "time"
+
+// ThrottlingData stores CPU throttling stats of one running container.
+// Not used on Windows.
+type ThrottlingData struct {
+	// Number of periods with throttling active
+	Periods uint64 `json:"periods"`
+	// Number of periods when the container hits its throttling limit.
+	ThrottledPeriods uint64 `json:"throttled_periods"`
+	// Aggregate time the container was throttled for in nanoseconds.
+	ThrottledTime uint64 `json:"throttled_time"`
+}
+
+// CPUUsage stores All CPU stats aggregated since container inception.
+type CPUUsage struct {
+	// Total CPU time consumed.
+	// Units: nanoseconds (Linux)
+	// Units: 100's of nanoseconds (Windows)
+	TotalUsage uint64 `json:"total_usage"`
+
+	// Total CPU time consumed per core (Linux). Not used on Windows.
+	// Units: nanoseconds.
+	PercpuUsage []uint64 `json:"percpu_usage,omitempty"`
+
+	// Time spent by tasks of the cgroup in kernel mode (Linux).
+	// Time spent by all container processes in kernel mode (Windows).
+	// Units: nanoseconds (Linux).
+	// Units: 100's of nanoseconds (Windows). Not populated for Hyper-V Containers.
+	UsageInKernelmode uint64 `json:"usage_in_kernelmode"`
+
+	// Time spent by tasks of the cgroup in user mode (Linux).
+	// Time spent by all container processes in user mode (Windows).
+	// Units: nanoseconds (Linux).
+	// Units: 100's of nanoseconds (Windows). Not populated for Hyper-V Containers
+	UsageInUsermode uint64 `json:"usage_in_usermode"`
+}
+
+// CPUStats aggregates and wraps all CPU related info of container
+type CPUStats struct {
+	// CPU Usage. Linux and Windows.
+	CPUUsage CPUUsage `json:"cpu_usage"`
+
+	// System Usage. Linux only.
+	SystemUsage uint64 `json:"system_cpu_usage,omitempty"`
+
+	// Online CPUs. Linux only.
+	OnlineCPUs uint32 `json:"online_cpus,omitempty"`
+
+	// Throttling Data. Linux only.
+	ThrottlingData ThrottlingData `json:"throttling_data,omitempty"`
+}
+
+// MemoryStats aggregates all memory stats since container inception on Linux.
+// Windows returns stats for commit and private working set only.
+type MemoryStats struct {
+	// Linux Memory Stats
+
+	// current res_counter usage for memory
+	Usage uint64 `json:"usage,omitempty"`
+	// maximum usage ever recorded.
+	MaxUsage uint64 `json:"max_usage,omitempty"`
+	// TODO(vishh): Export these as stronger types.
+	// all the stats exported via memory.stat.
+	Stats map[string]uint64 `json:"stats,omitempty"`
+	// number of times memory usage hits limits.
+	Failcnt uint64 `json:"failcnt,omitempty"`
+	Limit   uint64 `json:"limit,omitempty"`
+
+	// Windows Memory Stats
+	// See https://technet.microsoft.com/en-us/magazine/ff382715.aspx
+
+	// committed bytes
+	Commit uint64 `json:"commitbytes,omitempty"`
+	// peak committed bytes
+	CommitPeak uint64 `json:"commitpeakbytes,omitempty"`
+	// private working set
+	PrivateWorkingSet uint64 `json:"privateworkingset,omitempty"`
+}
+
+// BlkioStatEntry is one small entity to store a piece of Blkio stats
+// Not used on Windows.
+type BlkioStatEntry struct {
+	Major uint64 `json:"major"`
+	Minor uint64 `json:"minor"`
+	Op    string `json:"op"`
+	Value uint64 `json:"value"`
+}
+
+// BlkioStats stores All IO service stats for data read and write.
+// This is a Linux specific structure as the differences between expressing
+// block I/O on Windows and Linux are sufficiently significant to make
+// little sense attempting to morph into a combined structure.
+type BlkioStats struct {
+	// number of bytes transferred to and from the block device
+	IoServiceBytesRecursive []BlkioStatEntry `json:"io_service_bytes_recursive"`
+	IoServicedRecursive     []BlkioStatEntry `json:"io_serviced_recursive"`
+	IoQueuedRecursive       []BlkioStatEntry `json:"io_queue_recursive"`
+	IoServiceTimeRecursive  []BlkioStatEntry `json:"io_service_time_recursive"`
+	IoWaitTimeRecursive     []BlkioStatEntry `json:"io_wait_time_recursive"`
+	IoMergedRecursive       []BlkioStatEntry `json:"io_merged_recursive"`
+	IoTimeRecursive         []BlkioStatEntry `json:"io_time_recursive"`
+	SectorsRecursive        []BlkioStatEntry `json:"sectors_recursive"`
+}
+
+// StorageStats is the disk I/O stats for read/write on Windows.
+type StorageStats struct {
+	ReadCountNormalized  uint64 `json:"read_count_normalized,omitempty"`
+	ReadSizeBytes        uint64 `json:"read_size_bytes,omitempty"`
+	WriteCountNormalized uint64 `json:"write_count_normalized,omitempty"`
+	WriteSizeBytes       uint64 `json:"write_size_bytes,omitempty"`
+}
+
+// NetworkStats aggregates the network stats of one container
+type NetworkStats struct {
+	// Bytes received. Windows and Linux.
+	RxBytes uint64 `json:"rx_bytes"`
+	// Packets received. Windows and Linux.
+	RxPackets uint64 `json:"rx_packets"`
+	// Received errors. Not used on Windows. Note that we dont `omitempty` this
+	// field as it is expected in the >=v1.21 API stats structure.
+	RxErrors uint64 `json:"rx_errors"`
+	// Incoming packets dropped. Windows and Linux.
+	RxDropped uint64 `json:"rx_dropped"`
+	// Bytes sent. Windows and Linux.
+	TxBytes uint64 `json:"tx_bytes"`
+	// Packets sent. Windows and Linux.
+	TxPackets uint64 `json:"tx_packets"`
+	// Sent errors. Not used on Windows. Note that we dont `omitempty` this
+	// field as it is expected in the >=v1.21 API stats structure.
+	TxErrors uint64 `json:"tx_errors"`
+	// Outgoing packets dropped. Windows and Linux.
+	TxDropped uint64 `json:"tx_dropped"`
+	// Endpoint ID. Not used on Linux.
+	EndpointID string `json:"endpoint_id,omitempty"`
+	// Instance ID. Not used on Linux.
+	InstanceID string `json:"instance_id,omitempty"`
+}
+
+// PidsStats contains the stats of a container's pids
+type PidsStats struct {
+	// Current is the number of pids in the cgroup
+	Current uint64 `json:"current,omitempty"`
+	// Limit is the hard limit on the number of pids in the cgroup.
+	// A "Limit" of 0 means that there is no limit.
+	Limit uint64 `json:"limit,omitempty"`
+}
+
+// Stats is Ultimate struct aggregating all types of stats of one container
+type Stats struct {
+	// Common stats
+	Read    time.Time `json:"read"`
+	PreRead time.Time `json:"preread"`
+
+	// Linux specific stats, not populated on Windows.
+	PidsStats  PidsStats  `json:"pids_stats,omitempty"`
+	BlkioStats BlkioStats `json:"blkio_stats,omitempty"`
+
+	// Windows specific stats, not populated on Linux.
+	NumProcs     uint32       `json:"num_procs"`
+	StorageStats StorageStats `json:"storage_stats,omitempty"`
+
+	// Shared stats
+	CPUStats    CPUStats    `json:"cpu_stats,omitempty"`
+	PreCPUStats CPUStats    `json:"precpu_stats,omitempty"` // "Pre"="Previous"
+	MemoryStats MemoryStats `json:"memory_stats,omitempty"`
+}
+
+// StatsJSON is newly used Networks
+type StatsJSON struct {
+	Stats
+
+	Name string `json:"name,omitempty"`
+	ID   string `json:"id,omitempty"`
+
+	// Networks request version >=1.21
+	Networks map[string]NetworkStats `json:"networks,omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/common.go b/vendor/github.com/docker/docker/api/types/swarm/common.go
new file mode 100644
index 0000000000..ef020f458b
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/common.go
@@ -0,0 +1,40 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import "time"
+
+// Version represents the internal object version.
+type Version struct {
+	Index uint64 `json:",omitempty"`
+}
+
+// Meta is a base object inherited by most of the other once.
+type Meta struct {
+	Version   Version   `json:",omitempty"`
+	CreatedAt time.Time `json:",omitempty"`
+	UpdatedAt time.Time `json:",omitempty"`
+}
+
+// Annotations represents how to describe an object.
+type Annotations struct {
+	Name   string            `json:",omitempty"`
+	Labels map[string]string `json:"Labels"`
+}
+
+// Driver represents a driver (network, logging, secrets backend).
+type Driver struct {
+	Name    string            `json:",omitempty"`
+	Options map[string]string `json:",omitempty"`
+}
+
+// TLSInfo represents the TLS information about what CA certificate is trusted,
+// and who the issuer for a TLS certificate is
+type TLSInfo struct {
+	// TrustRoot is the trusted CA root certificate in PEM format
+	TrustRoot string `json:",omitempty"`
+
+	// CertIssuer is the raw subject bytes of the issuer
+	CertIssuerSubject []byte `json:",omitempty"`
+
+	// CertIssuerPublicKey is the raw public key bytes of the issuer
+	CertIssuerPublicKey []byte `json:",omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/config.go b/vendor/github.com/docker/docker/api/types/swarm/config.go
new file mode 100644
index 0000000000..a1555cf43e
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/config.go
@@ -0,0 +1,35 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import "os"
+
+// Config represents a config.
+type Config struct {
+	ID string
+	Meta
+	Spec ConfigSpec
+}
+
+// ConfigSpec represents a config specification from a config in swarm
+type ConfigSpec struct {
+	Annotations
+	Data []byte `json:",omitempty"`
+
+	// Templating controls whether and how to evaluate the config payload as
+	// a template. If it is not set, no templating is used.
+	Templating *Driver `json:",omitempty"`
+}
+
+// ConfigReferenceFileTarget is a file target in a config reference
+type ConfigReferenceFileTarget struct {
+	Name string
+	UID  string
+	GID  string
+	Mode os.FileMode
+}
+
+// ConfigReference is a reference to a config in swarm
+type ConfigReference struct {
+	File       *ConfigReferenceFileTarget
+	ConfigID   string
+	ConfigName string
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/container.go b/vendor/github.com/docker/docker/api/types/swarm/container.go
new file mode 100644
index 0000000000..0041653c9d
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/container.go
@@ -0,0 +1,73 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import (
+	"time"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/api/types/mount"
+)
+
+// DNSConfig specifies DNS related configurations in resolver configuration file (resolv.conf)
+// Detailed documentation is available in:
+// http://man7.org/linux/man-pages/man5/resolv.conf.5.html
+// `nameserver`, `search`, `options` have been supported.
+// TODO: `domain` is not supported yet.
+type DNSConfig struct {
+	// Nameservers specifies the IP addresses of the name servers
+	Nameservers []string `json:",omitempty"`
+	// Search specifies the search list for host-name lookup
+	Search []string `json:",omitempty"`
+	// Options allows certain internal resolver variables to be modified
+	Options []string `json:",omitempty"`
+}
+
+// SELinuxContext contains the SELinux labels of the container.
+type SELinuxContext struct {
+	Disable bool
+
+	User  string
+	Role  string
+	Type  string
+	Level string
+}
+
+// CredentialSpec for managed service account (Windows only)
+type CredentialSpec struct {
+	File     string
+	Registry string
+}
+
+// Privileges defines the security options for the container.
+type Privileges struct {
+	CredentialSpec *CredentialSpec
+	SELinuxContext *SELinuxContext
+}
+
+// ContainerSpec represents the spec of a container.
+type ContainerSpec struct {
+	Image           string                  `json:",omitempty"`
+	Labels          map[string]string       `json:",omitempty"`
+	Command         []string                `json:",omitempty"`
+	Args            []string                `json:",omitempty"`
+	Hostname        string                  `json:",omitempty"`
+	Env             []string                `json:",omitempty"`
+	Dir             string                  `json:",omitempty"`
+	User            string                  `json:",omitempty"`
+	Groups          []string                `json:",omitempty"`
+	Privileges      *Privileges             `json:",omitempty"`
+	StopSignal      string                  `json:",omitempty"`
+	TTY             bool                    `json:",omitempty"`
+	OpenStdin       bool                    `json:",omitempty"`
+	ReadOnly        bool                    `json:",omitempty"`
+	Mounts          []mount.Mount           `json:",omitempty"`
+	StopGracePeriod *time.Duration          `json:",omitempty"`
+	Healthcheck     *container.HealthConfig `json:",omitempty"`
+	// The format of extra hosts on swarmkit is specified in:
+	// http://man7.org/linux/man-pages/man5/hosts.5.html
+	//    IP_address canonical_hostname [aliases...]
+	Hosts     []string            `json:",omitempty"`
+	DNSConfig *DNSConfig          `json:",omitempty"`
+	Secrets   []*SecretReference  `json:",omitempty"`
+	Configs   []*ConfigReference  `json:",omitempty"`
+	Isolation container.Isolation `json:",omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/network.go b/vendor/github.com/docker/docker/api/types/swarm/network.go
new file mode 100644
index 0000000000..98ef3284d1
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/network.go
@@ -0,0 +1,121 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import (
+	"github.com/docker/docker/api/types/network"
+)
+
+// Endpoint represents an endpoint.
+type Endpoint struct {
+	Spec       EndpointSpec        `json:",omitempty"`
+	Ports      []PortConfig        `json:",omitempty"`
+	VirtualIPs []EndpointVirtualIP `json:",omitempty"`
+}
+
+// EndpointSpec represents the spec of an endpoint.
+type EndpointSpec struct {
+	Mode  ResolutionMode `json:",omitempty"`
+	Ports []PortConfig   `json:",omitempty"`
+}
+
+// ResolutionMode represents a resolution mode.
+type ResolutionMode string
+
+const (
+	// ResolutionModeVIP VIP
+	ResolutionModeVIP ResolutionMode = "vip"
+	// ResolutionModeDNSRR DNSRR
+	ResolutionModeDNSRR ResolutionMode = "dnsrr"
+)
+
+// PortConfig represents the config of a port.
+type PortConfig struct {
+	Name     string             `json:",omitempty"`
+	Protocol PortConfigProtocol `json:",omitempty"`
+	// TargetPort is the port inside the container
+	TargetPort uint32 `json:",omitempty"`
+	// PublishedPort is the port on the swarm hosts
+	PublishedPort uint32 `json:",omitempty"`
+	// PublishMode is the mode in which port is published
+	PublishMode PortConfigPublishMode `json:",omitempty"`
+}
+
+// PortConfigPublishMode represents the mode in which the port is to
+// be published.
+type PortConfigPublishMode string
+
+const (
+	// PortConfigPublishModeIngress is used for ports published
+	// for ingress load balancing using routing mesh.
+	PortConfigPublishModeIngress PortConfigPublishMode = "ingress"
+	// PortConfigPublishModeHost is used for ports published
+	// for direct host level access on the host where the task is running.
+	PortConfigPublishModeHost PortConfigPublishMode = "host"
+)
+
+// PortConfigProtocol represents the protocol of a port.
+type PortConfigProtocol string
+
+const (
+	// TODO(stevvooe): These should be used generally, not just for PortConfig.
+
+	// PortConfigProtocolTCP TCP
+	PortConfigProtocolTCP PortConfigProtocol = "tcp"
+	// PortConfigProtocolUDP UDP
+	PortConfigProtocolUDP PortConfigProtocol = "udp"
+	// PortConfigProtocolSCTP SCTP
+	PortConfigProtocolSCTP PortConfigProtocol = "sctp"
+)
+
+// EndpointVirtualIP represents the virtual ip of a port.
+type EndpointVirtualIP struct {
+	NetworkID string `json:",omitempty"`
+	Addr      string `json:",omitempty"`
+}
+
+// Network represents a network.
+type Network struct {
+	ID string
+	Meta
+	Spec        NetworkSpec  `json:",omitempty"`
+	DriverState Driver       `json:",omitempty"`
+	IPAMOptions *IPAMOptions `json:",omitempty"`
+}
+
+// NetworkSpec represents the spec of a network.
+type NetworkSpec struct {
+	Annotations
+	DriverConfiguration *Driver                  `json:",omitempty"`
+	IPv6Enabled         bool                     `json:",omitempty"`
+	Internal            bool                     `json:",omitempty"`
+	Attachable          bool                     `json:",omitempty"`
+	Ingress             bool                     `json:",omitempty"`
+	IPAMOptions         *IPAMOptions             `json:",omitempty"`
+	ConfigFrom          *network.ConfigReference `json:",omitempty"`
+	Scope               string                   `json:",omitempty"`
+}
+
+// NetworkAttachmentConfig represents the configuration of a network attachment.
+type NetworkAttachmentConfig struct {
+	Target     string            `json:",omitempty"`
+	Aliases    []string          `json:",omitempty"`
+	DriverOpts map[string]string `json:",omitempty"`
+}
+
+// NetworkAttachment represents a network attachment.
+type NetworkAttachment struct {
+	Network   Network  `json:",omitempty"`
+	Addresses []string `json:",omitempty"`
+}
+
+// IPAMOptions represents ipam options.
+type IPAMOptions struct {
+	Driver  Driver       `json:",omitempty"`
+	Configs []IPAMConfig `json:",omitempty"`
+}
+
+// IPAMConfig represents ipam configuration.
+type IPAMConfig struct {
+	Subnet  string `json:",omitempty"`
+	Range   string `json:",omitempty"`
+	Gateway string `json:",omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/node.go b/vendor/github.com/docker/docker/api/types/swarm/node.go
new file mode 100644
index 0000000000..1e30f5fa10
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/node.go
@@ -0,0 +1,115 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+// Node represents a node.
+type Node struct {
+	ID string
+	Meta
+	// Spec defines the desired state of the node as specified by the user.
+	// The system will honor this and will *never* modify it.
+	Spec NodeSpec `json:",omitempty"`
+	// Description encapsulates the properties of the Node as reported by the
+	// agent.
+	Description NodeDescription `json:",omitempty"`
+	// Status provides the current status of the node, as seen by the manager.
+	Status NodeStatus `json:",omitempty"`
+	// ManagerStatus provides the current status of the node's manager
+	// component, if the node is a manager.
+	ManagerStatus *ManagerStatus `json:",omitempty"`
+}
+
+// NodeSpec represents the spec of a node.
+type NodeSpec struct {
+	Annotations
+	Role         NodeRole         `json:",omitempty"`
+	Availability NodeAvailability `json:",omitempty"`
+}
+
+// NodeRole represents the role of a node.
+type NodeRole string
+
+const (
+	// NodeRoleWorker WORKER
+	NodeRoleWorker NodeRole = "worker"
+	// NodeRoleManager MANAGER
+	NodeRoleManager NodeRole = "manager"
+)
+
+// NodeAvailability represents the availability of a node.
+type NodeAvailability string
+
+const (
+	// NodeAvailabilityActive ACTIVE
+	NodeAvailabilityActive NodeAvailability = "active"
+	// NodeAvailabilityPause PAUSE
+	NodeAvailabilityPause NodeAvailability = "pause"
+	// NodeAvailabilityDrain DRAIN
+	NodeAvailabilityDrain NodeAvailability = "drain"
+)
+
+// NodeDescription represents the description of a node.
+type NodeDescription struct {
+	Hostname  string            `json:",omitempty"`
+	Platform  Platform          `json:",omitempty"`
+	Resources Resources         `json:",omitempty"`
+	Engine    EngineDescription `json:",omitempty"`
+	TLSInfo   TLSInfo           `json:",omitempty"`
+}
+
+// Platform represents the platform (Arch/OS).
+type Platform struct {
+	Architecture string `json:",omitempty"`
+	OS           string `json:",omitempty"`
+}
+
+// EngineDescription represents the description of an engine.
+type EngineDescription struct {
+	EngineVersion string              `json:",omitempty"`
+	Labels        map[string]string   `json:",omitempty"`
+	Plugins       []PluginDescription `json:",omitempty"`
+}
+
+// PluginDescription represents the description of an engine plugin.
+type PluginDescription struct {
+	Type string `json:",omitempty"`
+	Name string `json:",omitempty"`
+}
+
+// NodeStatus represents the status of a node.
+type NodeStatus struct {
+	State   NodeState `json:",omitempty"`
+	Message string    `json:",omitempty"`
+	Addr    string    `json:",omitempty"`
+}
+
+// Reachability represents the reachability of a node.
+type Reachability string
+
+const (
+	// ReachabilityUnknown UNKNOWN
+	ReachabilityUnknown Reachability = "unknown"
+	// ReachabilityUnreachable UNREACHABLE
+	ReachabilityUnreachable Reachability = "unreachable"
+	// ReachabilityReachable REACHABLE
+	ReachabilityReachable Reachability = "reachable"
+)
+
+// ManagerStatus represents the status of a manager.
+type ManagerStatus struct {
+	Leader       bool         `json:",omitempty"`
+	Reachability Reachability `json:",omitempty"`
+	Addr         string       `json:",omitempty"`
+}
+
+// NodeState represents the state of a node.
+type NodeState string
+
+const (
+	// NodeStateUnknown UNKNOWN
+	NodeStateUnknown NodeState = "unknown"
+	// NodeStateDown DOWN
+	NodeStateDown NodeState = "down"
+	// NodeStateReady READY
+	NodeStateReady NodeState = "ready"
+	// NodeStateDisconnected DISCONNECTED
+	NodeStateDisconnected NodeState = "disconnected"
+)
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime.go b/vendor/github.com/docker/docker/api/types/swarm/runtime.go
new file mode 100644
index 0000000000..81b5f4cfd9
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/runtime.go
@@ -0,0 +1,19 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+// RuntimeType is the type of runtime used for the TaskSpec
+type RuntimeType string
+
+// RuntimeURL is the proto type url
+type RuntimeURL string
+
+const (
+	// RuntimeContainer is the container based runtime
+	RuntimeContainer RuntimeType = "container"
+	// RuntimePlugin is the plugin based runtime
+	RuntimePlugin RuntimeType = "plugin"
+
+	// RuntimeURLContainer is the proto url for the container type
+	RuntimeURLContainer RuntimeURL = "types.docker.com/RuntimeContainer"
+	// RuntimeURLPlugin is the proto url for the plugin type
+	RuntimeURLPlugin RuntimeURL = "types.docker.com/RuntimePlugin"
+)
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go b/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
new file mode 100644
index 0000000000..98c2806c31
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/runtime/gen.go
@@ -0,0 +1,3 @@
+//go:generate protoc -I . --gogofast_out=import_path=github.com/docker/docker/api/types/swarm/runtime:. plugin.proto
+
+package runtime // import "github.com/docker/docker/api/types/swarm/runtime"
diff --git a/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go b/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
new file mode 100644
index 0000000000..1fdc9b0436
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/runtime/plugin.pb.go
@@ -0,0 +1,712 @@
+// Code generated by protoc-gen-gogo.
+// source: plugin.proto
+// DO NOT EDIT!
+
+/*
+	Package runtime is a generated protocol buffer package.
+
+	It is generated from these files:
+		plugin.proto
+
+	It has these top-level messages:
+		PluginSpec
+		PluginPrivilege
+*/
+package runtime
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// PluginSpec defines the base payload which clients can specify for creating
+// a service with the plugin runtime.
+type PluginSpec struct {
+	Name       string             `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	Remote     string             `protobuf:"bytes,2,opt,name=remote,proto3" json:"remote,omitempty"`
+	Privileges []*PluginPrivilege `protobuf:"bytes,3,rep,name=privileges" json:"privileges,omitempty"`
+	Disabled   bool               `protobuf:"varint,4,opt,name=disabled,proto3" json:"disabled,omitempty"`
+}
+
+func (m *PluginSpec) Reset()                    { *m = PluginSpec{} }
+func (m *PluginSpec) String() string            { return proto.CompactTextString(m) }
+func (*PluginSpec) ProtoMessage()               {}
+func (*PluginSpec) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{0} }
+
+func (m *PluginSpec) GetName() string {
+	if m != nil {
+		return m.Name
+	}
+	return ""
+}
+
+func (m *PluginSpec) GetRemote() string {
+	if m != nil {
+		return m.Remote
+	}
+	return ""
+}
+
+func (m *PluginSpec) GetPrivileges() []*PluginPrivilege {
+	if m != nil {
+		return m.Privileges
+	}
+	return nil
+}
+
+func (m *PluginSpec) GetDisabled() bool {
+	if m != nil {
+		return m.Disabled
+	}
+	return false
+}
+
+// PluginPrivilege describes a permission the user has to accept
+// upon installing a plugin.
+type PluginPrivilege struct {
+	Name        string   `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	Description string   `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
+	Value       []string `protobuf:"bytes,3,rep,name=value" json:"value,omitempty"`
+}
+
+func (m *PluginPrivilege) Reset()                    { *m = PluginPrivilege{} }
+func (m *PluginPrivilege) String() string            { return proto.CompactTextString(m) }
+func (*PluginPrivilege) ProtoMessage()               {}
+func (*PluginPrivilege) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{1} }
+
+func (m *PluginPrivilege) GetName() string {
+	if m != nil {
+		return m.Name
+	}
+	return ""
+}
+
+func (m *PluginPrivilege) GetDescription() string {
+	if m != nil {
+		return m.Description
+	}
+	return ""
+}
+
+func (m *PluginPrivilege) GetValue() []string {
+	if m != nil {
+		return m.Value
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*PluginSpec)(nil), "PluginSpec")
+	proto.RegisterType((*PluginPrivilege)(nil), "PluginPrivilege")
+}
+func (m *PluginSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PluginSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.Remote) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Remote)))
+		i += copy(dAtA[i:], m.Remote)
+	}
+	if len(m.Privileges) > 0 {
+		for _, msg := range m.Privileges {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintPlugin(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Disabled {
+		dAtA[i] = 0x20
+		i++
+		if m.Disabled {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *PluginPrivilege) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PluginPrivilege) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.Description) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintPlugin(dAtA, i, uint64(len(m.Description)))
+		i += copy(dAtA[i:], m.Description)
+	}
+	if len(m.Value) > 0 {
+		for _, s := range m.Value {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func encodeFixed64Plugin(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Plugin(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintPlugin(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *PluginSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovPlugin(uint64(l))
+	}
+	l = len(m.Remote)
+	if l > 0 {
+		n += 1 + l + sovPlugin(uint64(l))
+	}
+	if len(m.Privileges) > 0 {
+		for _, e := range m.Privileges {
+			l = e.Size()
+			n += 1 + l + sovPlugin(uint64(l))
+		}
+	}
+	if m.Disabled {
+		n += 2
+	}
+	return n
+}
+
+func (m *PluginPrivilege) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovPlugin(uint64(l))
+	}
+	l = len(m.Description)
+	if l > 0 {
+		n += 1 + l + sovPlugin(uint64(l))
+	}
+	if len(m.Value) > 0 {
+		for _, s := range m.Value {
+			l = len(s)
+			n += 1 + l + sovPlugin(uint64(l))
+		}
+	}
+	return n
+}
+
+func sovPlugin(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozPlugin(x uint64) (n int) {
+	return sovPlugin(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (m *PluginSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PluginSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PluginSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Remote", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Remote = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Privileges", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Privileges = append(m.Privileges, &PluginPrivilege{})
+			if err := m.Privileges[len(m.Privileges)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Disabled", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Disabled = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipPlugin(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PluginPrivilege) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PluginPrivilege: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PluginPrivilege: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Description", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Description = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = append(m.Value, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipPlugin(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipPlugin(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthPlugin
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowPlugin
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipPlugin(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthPlugin = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowPlugin   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("plugin.proto", fileDescriptorPlugin) }
+
+var fileDescriptorPlugin = []byte{
+	// 196 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0x29, 0xc8, 0x29, 0x4d,
+	0xcf, 0xcc, 0xd3, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x57, 0x6a, 0x63, 0xe4, 0xe2, 0x0a, 0x00, 0x0b,
+	0x04, 0x17, 0xa4, 0x26, 0x0b, 0x09, 0x71, 0xb1, 0xe4, 0x25, 0xe6, 0xa6, 0x4a, 0x30, 0x2a, 0x30,
+	0x6a, 0x70, 0x06, 0x81, 0xd9, 0x42, 0x62, 0x5c, 0x6c, 0x45, 0xa9, 0xb9, 0xf9, 0x25, 0xa9, 0x12,
+	0x4c, 0x60, 0x51, 0x28, 0x4f, 0xc8, 0x80, 0x8b, 0xab, 0xa0, 0x28, 0xb3, 0x2c, 0x33, 0x27, 0x35,
+	0x3d, 0xb5, 0x58, 0x82, 0x59, 0x81, 0x59, 0x83, 0xdb, 0x48, 0x40, 0x0f, 0x62, 0x58, 0x00, 0x4c,
+	0x22, 0x08, 0x49, 0x8d, 0x90, 0x14, 0x17, 0x47, 0x4a, 0x66, 0x71, 0x62, 0x52, 0x4e, 0x6a, 0x8a,
+	0x04, 0x8b, 0x02, 0xa3, 0x06, 0x47, 0x10, 0x9c, 0xaf, 0x14, 0xcb, 0xc5, 0x8f, 0xa6, 0x15, 0xab,
+	0x63, 0x14, 0xb8, 0xb8, 0x53, 0x52, 0x8b, 0x93, 0x8b, 0x32, 0x0b, 0x4a, 0x32, 0xf3, 0xf3, 0xa0,
+	0x2e, 0x42, 0x16, 0x12, 0x12, 0xe1, 0x62, 0x2d, 0x4b, 0xcc, 0x29, 0x4d, 0x05, 0xbb, 0x88, 0x33,
+	0x08, 0xc2, 0x71, 0xe2, 0x39, 0xf1, 0x48, 0x8e, 0xf1, 0xc2, 0x23, 0x39, 0xc6, 0x07, 0x8f, 0xe4,
+	0x18, 0x93, 0xd8, 0xc0, 0x9e, 0x37, 0x06, 0x04, 0x00, 0x00, 0xff, 0xff, 0xb8, 0x84, 0xad, 0x79,
+	0x0c, 0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/secret.go b/vendor/github.com/docker/docker/api/types/swarm/secret.go
new file mode 100644
index 0000000000..d5213ec981
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/secret.go
@@ -0,0 +1,36 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import "os"
+
+// Secret represents a secret.
+type Secret struct {
+	ID string
+	Meta
+	Spec SecretSpec
+}
+
+// SecretSpec represents a secret specification from a secret in swarm
+type SecretSpec struct {
+	Annotations
+	Data   []byte  `json:",omitempty"`
+	Driver *Driver `json:",omitempty"` // name of the secrets driver used to fetch the secret's value from an external secret store
+
+	// Templating controls whether and how to evaluate the secret payload as
+	// a template. If it is not set, no templating is used.
+	Templating *Driver `json:",omitempty"`
+}
+
+// SecretReferenceFileTarget is a file target in a secret reference
+type SecretReferenceFileTarget struct {
+	Name string
+	UID  string
+	GID  string
+	Mode os.FileMode
+}
+
+// SecretReference is a reference to a secret in swarm
+type SecretReference struct {
+	File       *SecretReferenceFileTarget
+	SecretID   string
+	SecretName string
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/service.go b/vendor/github.com/docker/docker/api/types/swarm/service.go
new file mode 100644
index 0000000000..abf192e759
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/service.go
@@ -0,0 +1,124 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import "time"
+
+// Service represents a service.
+type Service struct {
+	ID string
+	Meta
+	Spec         ServiceSpec   `json:",omitempty"`
+	PreviousSpec *ServiceSpec  `json:",omitempty"`
+	Endpoint     Endpoint      `json:",omitempty"`
+	UpdateStatus *UpdateStatus `json:",omitempty"`
+}
+
+// ServiceSpec represents the spec of a service.
+type ServiceSpec struct {
+	Annotations
+
+	// TaskTemplate defines how the service should construct new tasks when
+	// orchestrating this service.
+	TaskTemplate   TaskSpec      `json:",omitempty"`
+	Mode           ServiceMode   `json:",omitempty"`
+	UpdateConfig   *UpdateConfig `json:",omitempty"`
+	RollbackConfig *UpdateConfig `json:",omitempty"`
+
+	// Networks field in ServiceSpec is deprecated. The
+	// same field in TaskSpec should be used instead.
+	// This field will be removed in a future release.
+	Networks     []NetworkAttachmentConfig `json:",omitempty"`
+	EndpointSpec *EndpointSpec             `json:",omitempty"`
+}
+
+// ServiceMode represents the mode of a service.
+type ServiceMode struct {
+	Replicated *ReplicatedService `json:",omitempty"`
+	Global     *GlobalService     `json:",omitempty"`
+}
+
+// UpdateState is the state of a service update.
+type UpdateState string
+
+const (
+	// UpdateStateUpdating is the updating state.
+	UpdateStateUpdating UpdateState = "updating"
+	// UpdateStatePaused is the paused state.
+	UpdateStatePaused UpdateState = "paused"
+	// UpdateStateCompleted is the completed state.
+	UpdateStateCompleted UpdateState = "completed"
+	// UpdateStateRollbackStarted is the state with a rollback in progress.
+	UpdateStateRollbackStarted UpdateState = "rollback_started"
+	// UpdateStateRollbackPaused is the state with a rollback in progress.
+	UpdateStateRollbackPaused UpdateState = "rollback_paused"
+	// UpdateStateRollbackCompleted is the state with a rollback in progress.
+	UpdateStateRollbackCompleted UpdateState = "rollback_completed"
+)
+
+// UpdateStatus reports the status of a service update.
+type UpdateStatus struct {
+	State       UpdateState `json:",omitempty"`
+	StartedAt   *time.Time  `json:",omitempty"`
+	CompletedAt *time.Time  `json:",omitempty"`
+	Message     string      `json:",omitempty"`
+}
+
+// ReplicatedService is a kind of ServiceMode.
+type ReplicatedService struct {
+	Replicas *uint64 `json:",omitempty"`
+}
+
+// GlobalService is a kind of ServiceMode.
+type GlobalService struct{}
+
+const (
+	// UpdateFailureActionPause PAUSE
+	UpdateFailureActionPause = "pause"
+	// UpdateFailureActionContinue CONTINUE
+	UpdateFailureActionContinue = "continue"
+	// UpdateFailureActionRollback ROLLBACK
+	UpdateFailureActionRollback = "rollback"
+
+	// UpdateOrderStopFirst STOP_FIRST
+	UpdateOrderStopFirst = "stop-first"
+	// UpdateOrderStartFirst START_FIRST
+	UpdateOrderStartFirst = "start-first"
+)
+
+// UpdateConfig represents the update configuration.
+type UpdateConfig struct {
+	// Maximum number of tasks to be updated in one iteration.
+	// 0 means unlimited parallelism.
+	Parallelism uint64
+
+	// Amount of time between updates.
+	Delay time.Duration `json:",omitempty"`
+
+	// FailureAction is the action to take when an update failures.
+	FailureAction string `json:",omitempty"`
+
+	// Monitor indicates how long to monitor a task for failure after it is
+	// created. If the task fails by ending up in one of the states
+	// REJECTED, COMPLETED, or FAILED, within Monitor from its creation,
+	// this counts as a failure. If it fails after Monitor, it does not
+	// count as a failure. If Monitor is unspecified, a default value will
+	// be used.
+	Monitor time.Duration `json:",omitempty"`
+
+	// MaxFailureRatio is the fraction of tasks that may fail during
+	// an update before the failure action is invoked. Any task created by
+	// the current update which ends up in one of the states REJECTED,
+	// COMPLETED or FAILED within Monitor from its creation counts as a
+	// failure. The number of failures is divided by the number of tasks
+	// being updated, and if this fraction is greater than
+	// MaxFailureRatio, the failure action is invoked.
+	//
+	// If the failure action is CONTINUE, there is no effect.
+	// If the failure action is PAUSE, no more tasks will be updated until
+	// another update is started.
+	MaxFailureRatio float32
+
+	// Order indicates the order of operations when rolling out an updated
+	// task. Either the old task is shut down before the new task is
+	// started, or the new task is started before the old task is shut down.
+	Order string
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/swarm.go b/vendor/github.com/docker/docker/api/types/swarm/swarm.go
new file mode 100644
index 0000000000..1b111d725b
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/swarm.go
@@ -0,0 +1,217 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import "time"
+
+// ClusterInfo represents info about the cluster for outputting in "info"
+// it contains the same information as "Swarm", but without the JoinTokens
+type ClusterInfo struct {
+	ID string
+	Meta
+	Spec                   Spec
+	TLSInfo                TLSInfo
+	RootRotationInProgress bool
+}
+
+// Swarm represents a swarm.
+type Swarm struct {
+	ClusterInfo
+	JoinTokens JoinTokens
+}
+
+// JoinTokens contains the tokens workers and managers need to join the swarm.
+type JoinTokens struct {
+	// Worker is the join token workers may use to join the swarm.
+	Worker string
+	// Manager is the join token managers may use to join the swarm.
+	Manager string
+}
+
+// Spec represents the spec of a swarm.
+type Spec struct {
+	Annotations
+
+	Orchestration    OrchestrationConfig `json:",omitempty"`
+	Raft             RaftConfig          `json:",omitempty"`
+	Dispatcher       DispatcherConfig    `json:",omitempty"`
+	CAConfig         CAConfig            `json:",omitempty"`
+	TaskDefaults     TaskDefaults        `json:",omitempty"`
+	EncryptionConfig EncryptionConfig    `json:",omitempty"`
+}
+
+// OrchestrationConfig represents orchestration configuration.
+type OrchestrationConfig struct {
+	// TaskHistoryRetentionLimit is the number of historic tasks to keep per instance or
+	// node. If negative, never remove completed or failed tasks.
+	TaskHistoryRetentionLimit *int64 `json:",omitempty"`
+}
+
+// TaskDefaults parameterizes cluster-level task creation with default values.
+type TaskDefaults struct {
+	// LogDriver selects the log driver to use for tasks created in the
+	// orchestrator if unspecified by a service.
+	//
+	// Updating this value will only have an affect on new tasks. Old tasks
+	// will continue use their previously configured log driver until
+	// recreated.
+	LogDriver *Driver `json:",omitempty"`
+}
+
+// EncryptionConfig controls at-rest encryption of data and keys.
+type EncryptionConfig struct {
+	// AutoLockManagers specifies whether or not managers TLS keys and raft data
+	// should be encrypted at rest in such a way that they must be unlocked
+	// before the manager node starts up again.
+	AutoLockManagers bool
+}
+
+// RaftConfig represents raft configuration.
+type RaftConfig struct {
+	// SnapshotInterval is the number of log entries between snapshots.
+	SnapshotInterval uint64 `json:",omitempty"`
+
+	// KeepOldSnapshots is the number of snapshots to keep beyond the
+	// current snapshot.
+	KeepOldSnapshots *uint64 `json:",omitempty"`
+
+	// LogEntriesForSlowFollowers is the number of log entries to keep
+	// around to sync up slow followers after a snapshot is created.
+	LogEntriesForSlowFollowers uint64 `json:",omitempty"`
+
+	// ElectionTick is the number of ticks that a follower will wait for a message
+	// from the leader before becoming a candidate and starting an election.
+	// ElectionTick must be greater than HeartbeatTick.
+	//
+	// A tick currently defaults to one second, so these translate directly to
+	// seconds currently, but this is NOT guaranteed.
+	ElectionTick int
+
+	// HeartbeatTick is the number of ticks between heartbeats. Every
+	// HeartbeatTick ticks, the leader will send a heartbeat to the
+	// followers.
+	//
+	// A tick currently defaults to one second, so these translate directly to
+	// seconds currently, but this is NOT guaranteed.
+	HeartbeatTick int
+}
+
+// DispatcherConfig represents dispatcher configuration.
+type DispatcherConfig struct {
+	// HeartbeatPeriod defines how often agent should send heartbeats to
+	// dispatcher.
+	HeartbeatPeriod time.Duration `json:",omitempty"`
+}
+
+// CAConfig represents CA configuration.
+type CAConfig struct {
+	// NodeCertExpiry is the duration certificates should be issued for
+	NodeCertExpiry time.Duration `json:",omitempty"`
+
+	// ExternalCAs is a list of CAs to which a manager node will make
+	// certificate signing requests for node certificates.
+	ExternalCAs []*ExternalCA `json:",omitempty"`
+
+	// SigningCACert and SigningCAKey specify the desired signing root CA and
+	// root CA key for the swarm.  When inspecting the cluster, the key will
+	// be redacted.
+	SigningCACert string `json:",omitempty"`
+	SigningCAKey  string `json:",omitempty"`
+
+	// If this value changes, and there is no specified signing cert and key,
+	// then the swarm is forced to generate a new root certificate ane key.
+	ForceRotate uint64 `json:",omitempty"`
+}
+
+// ExternalCAProtocol represents type of external CA.
+type ExternalCAProtocol string
+
+// ExternalCAProtocolCFSSL CFSSL
+const ExternalCAProtocolCFSSL ExternalCAProtocol = "cfssl"
+
+// ExternalCA defines external CA to be used by the cluster.
+type ExternalCA struct {
+	// Protocol is the protocol used by this external CA.
+	Protocol ExternalCAProtocol
+
+	// URL is the URL where the external CA can be reached.
+	URL string
+
+	// Options is a set of additional key/value pairs whose interpretation
+	// depends on the specified CA type.
+	Options map[string]string `json:",omitempty"`
+
+	// CACert specifies which root CA is used by this external CA.  This certificate must
+	// be in PEM format.
+	CACert string
+}
+
+// InitRequest is the request used to init a swarm.
+type InitRequest struct {
+	ListenAddr       string
+	AdvertiseAddr    string
+	DataPathAddr     string
+	ForceNewCluster  bool
+	Spec             Spec
+	AutoLockManagers bool
+	Availability     NodeAvailability
+}
+
+// JoinRequest is the request used to join a swarm.
+type JoinRequest struct {
+	ListenAddr    string
+	AdvertiseAddr string
+	DataPathAddr  string
+	RemoteAddrs   []string
+	JoinToken     string // accept by secret
+	Availability  NodeAvailability
+}
+
+// UnlockRequest is the request used to unlock a swarm.
+type UnlockRequest struct {
+	// UnlockKey is the unlock key in ASCII-armored format.
+	UnlockKey string
+}
+
+// LocalNodeState represents the state of the local node.
+type LocalNodeState string
+
+const (
+	// LocalNodeStateInactive INACTIVE
+	LocalNodeStateInactive LocalNodeState = "inactive"
+	// LocalNodeStatePending PENDING
+	LocalNodeStatePending LocalNodeState = "pending"
+	// LocalNodeStateActive ACTIVE
+	LocalNodeStateActive LocalNodeState = "active"
+	// LocalNodeStateError ERROR
+	LocalNodeStateError LocalNodeState = "error"
+	// LocalNodeStateLocked LOCKED
+	LocalNodeStateLocked LocalNodeState = "locked"
+)
+
+// Info represents generic information about swarm.
+type Info struct {
+	NodeID   string
+	NodeAddr string
+
+	LocalNodeState   LocalNodeState
+	ControlAvailable bool
+	Error            string
+
+	RemoteManagers []Peer
+	Nodes          int `json:",omitempty"`
+	Managers       int `json:",omitempty"`
+
+	Cluster *ClusterInfo `json:",omitempty"`
+}
+
+// Peer represents a peer.
+type Peer struct {
+	NodeID string
+	Addr   string
+}
+
+// UpdateFlags contains flags for SwarmUpdate.
+type UpdateFlags struct {
+	RotateWorkerToken      bool
+	RotateManagerToken     bool
+	RotateManagerUnlockKey bool
+}
diff --git a/vendor/github.com/docker/docker/api/types/swarm/task.go b/vendor/github.com/docker/docker/api/types/swarm/task.go
new file mode 100644
index 0000000000..5c2bc492e4
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/swarm/task.go
@@ -0,0 +1,188 @@
+package swarm // import "github.com/docker/docker/api/types/swarm"
+
+import (
+	"time"
+
+	"github.com/docker/docker/api/types/swarm/runtime"
+)
+
+// TaskState represents the state of a task.
+type TaskState string
+
+const (
+	// TaskStateNew NEW
+	TaskStateNew TaskState = "new"
+	// TaskStateAllocated ALLOCATED
+	TaskStateAllocated TaskState = "allocated"
+	// TaskStatePending PENDING
+	TaskStatePending TaskState = "pending"
+	// TaskStateAssigned ASSIGNED
+	TaskStateAssigned TaskState = "assigned"
+	// TaskStateAccepted ACCEPTED
+	TaskStateAccepted TaskState = "accepted"
+	// TaskStatePreparing PREPARING
+	TaskStatePreparing TaskState = "preparing"
+	// TaskStateReady READY
+	TaskStateReady TaskState = "ready"
+	// TaskStateStarting STARTING
+	TaskStateStarting TaskState = "starting"
+	// TaskStateRunning RUNNING
+	TaskStateRunning TaskState = "running"
+	// TaskStateComplete COMPLETE
+	TaskStateComplete TaskState = "complete"
+	// TaskStateShutdown SHUTDOWN
+	TaskStateShutdown TaskState = "shutdown"
+	// TaskStateFailed FAILED
+	TaskStateFailed TaskState = "failed"
+	// TaskStateRejected REJECTED
+	TaskStateRejected TaskState = "rejected"
+	// TaskStateRemove REMOVE
+	TaskStateRemove TaskState = "remove"
+	// TaskStateOrphaned ORPHANED
+	TaskStateOrphaned TaskState = "orphaned"
+)
+
+// Task represents a task.
+type Task struct {
+	ID string
+	Meta
+	Annotations
+
+	Spec                TaskSpec            `json:",omitempty"`
+	ServiceID           string              `json:",omitempty"`
+	Slot                int                 `json:",omitempty"`
+	NodeID              string              `json:",omitempty"`
+	Status              TaskStatus          `json:",omitempty"`
+	DesiredState        TaskState           `json:",omitempty"`
+	NetworksAttachments []NetworkAttachment `json:",omitempty"`
+	GenericResources    []GenericResource   `json:",omitempty"`
+}
+
+// TaskSpec represents the spec of a task.
+type TaskSpec struct {
+	// ContainerSpec and PluginSpec are mutually exclusive.
+	// PluginSpec will only be used when the `Runtime` field is set to `plugin`
+	ContainerSpec *ContainerSpec      `json:",omitempty"`
+	PluginSpec    *runtime.PluginSpec `json:",omitempty"`
+
+	Resources     *ResourceRequirements     `json:",omitempty"`
+	RestartPolicy *RestartPolicy            `json:",omitempty"`
+	Placement     *Placement                `json:",omitempty"`
+	Networks      []NetworkAttachmentConfig `json:",omitempty"`
+
+	// LogDriver specifies the LogDriver to use for tasks created from this
+	// spec. If not present, the one on cluster default on swarm.Spec will be
+	// used, finally falling back to the engine default if not specified.
+	LogDriver *Driver `json:",omitempty"`
+
+	// ForceUpdate is a counter that triggers an update even if no relevant
+	// parameters have been changed.
+	ForceUpdate uint64
+
+	Runtime RuntimeType `json:",omitempty"`
+}
+
+// Resources represents resources (CPU/Memory).
+type Resources struct {
+	NanoCPUs         int64             `json:",omitempty"`
+	MemoryBytes      int64             `json:",omitempty"`
+	GenericResources []GenericResource `json:",omitempty"`
+}
+
+// GenericResource represents a "user defined" resource which can
+// be either an integer (e.g: SSD=3) or a string (e.g: SSD=sda1)
+type GenericResource struct {
+	NamedResourceSpec    *NamedGenericResource    `json:",omitempty"`
+	DiscreteResourceSpec *DiscreteGenericResource `json:",omitempty"`
+}
+
+// NamedGenericResource represents a "user defined" resource which is defined
+// as a string.
+// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
+// Value is used to identify the resource (GPU="UUID-1", FPGA="/dev/sdb5", ...)
+type NamedGenericResource struct {
+	Kind  string `json:",omitempty"`
+	Value string `json:",omitempty"`
+}
+
+// DiscreteGenericResource represents a "user defined" resource which is defined
+// as an integer
+// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
+// Value is used to count the resource (SSD=5, HDD=3, ...)
+type DiscreteGenericResource struct {
+	Kind  string `json:",omitempty"`
+	Value int64  `json:",omitempty"`
+}
+
+// ResourceRequirements represents resources requirements.
+type ResourceRequirements struct {
+	Limits       *Resources `json:",omitempty"`
+	Reservations *Resources `json:",omitempty"`
+}
+
+// Placement represents orchestration parameters.
+type Placement struct {
+	Constraints []string              `json:",omitempty"`
+	Preferences []PlacementPreference `json:",omitempty"`
+
+	// Platforms stores all the platforms that the image can run on.
+	// This field is used in the platform filter for scheduling. If empty,
+	// then the platform filter is off, meaning there are no scheduling restrictions.
+	Platforms []Platform `json:",omitempty"`
+}
+
+// PlacementPreference provides a way to make the scheduler aware of factors
+// such as topology.
+type PlacementPreference struct {
+	Spread *SpreadOver
+}
+
+// SpreadOver is a scheduling preference that instructs the scheduler to spread
+// tasks evenly over groups of nodes identified by labels.
+type SpreadOver struct {
+	// label descriptor, such as engine.labels.az
+	SpreadDescriptor string
+}
+
+// RestartPolicy represents the restart policy.
+type RestartPolicy struct {
+	Condition   RestartPolicyCondition `json:",omitempty"`
+	Delay       *time.Duration         `json:",omitempty"`
+	MaxAttempts *uint64                `json:",omitempty"`
+	Window      *time.Duration         `json:",omitempty"`
+}
+
+// RestartPolicyCondition represents when to restart.
+type RestartPolicyCondition string
+
+const (
+	// RestartPolicyConditionNone NONE
+	RestartPolicyConditionNone RestartPolicyCondition = "none"
+	// RestartPolicyConditionOnFailure ON_FAILURE
+	RestartPolicyConditionOnFailure RestartPolicyCondition = "on-failure"
+	// RestartPolicyConditionAny ANY
+	RestartPolicyConditionAny RestartPolicyCondition = "any"
+)
+
+// TaskStatus represents the status of a task.
+type TaskStatus struct {
+	Timestamp       time.Time        `json:",omitempty"`
+	State           TaskState        `json:",omitempty"`
+	Message         string           `json:",omitempty"`
+	Err             string           `json:",omitempty"`
+	ContainerStatus *ContainerStatus `json:",omitempty"`
+	PortStatus      PortStatus       `json:",omitempty"`
+}
+
+// ContainerStatus represents the status of a container.
+type ContainerStatus struct {
+	ContainerID string
+	PID         int
+	ExitCode    int
+}
+
+// PortStatus represents the port status of a task's host ports whose
+// service has published host ports
+type PortStatus struct {
+	Ports []PortConfig `json:",omitempty"`
+}
diff --git a/vendor/github.com/docker/docker/api/types/types.go b/vendor/github.com/docker/docker/api/types/types.go
new file mode 100644
index 0000000000..729f4eb6c4
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/types.go
@@ -0,0 +1,587 @@
+package types // import "github.com/docker/docker/api/types"
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/api/types/filters"
+	"github.com/docker/docker/api/types/mount"
+	"github.com/docker/docker/api/types/network"
+	"github.com/docker/docker/api/types/registry"
+	"github.com/docker/docker/api/types/swarm"
+	"github.com/docker/go-connections/nat"
+)
+
+// RootFS returns Image's RootFS description including the layer IDs.
+type RootFS struct {
+	Type      string
+	Layers    []string `json:",omitempty"`
+	BaseLayer string   `json:",omitempty"`
+}
+
+// ImageInspect contains response of Engine API:
+// GET "/images/{name:.*}/json"
+type ImageInspect struct {
+	ID              string `json:"Id"`
+	RepoTags        []string
+	RepoDigests     []string
+	Parent          string
+	Comment         string
+	Created         string
+	Container       string
+	ContainerConfig *container.Config
+	DockerVersion   string
+	Author          string
+	Config          *container.Config
+	Architecture    string
+	Os              string
+	OsVersion       string `json:",omitempty"`
+	Size            int64
+	VirtualSize     int64
+	GraphDriver     GraphDriverData
+	RootFS          RootFS
+	Metadata        ImageMetadata
+}
+
+// ImageMetadata contains engine-local data about the image
+type ImageMetadata struct {
+	LastTagTime time.Time `json:",omitempty"`
+}
+
+// Container contains response of Engine API:
+// GET "/containers/json"
+type Container struct {
+	ID         string `json:"Id"`
+	Names      []string
+	Image      string
+	ImageID    string
+	Command    string
+	Created    int64
+	Ports      []Port
+	SizeRw     int64 `json:",omitempty"`
+	SizeRootFs int64 `json:",omitempty"`
+	Labels     map[string]string
+	State      string
+	Status     string
+	HostConfig struct {
+		NetworkMode string `json:",omitempty"`
+	}
+	NetworkSettings *SummaryNetworkSettings
+	Mounts          []MountPoint
+}
+
+// CopyConfig contains request body of Engine API:
+// POST "/containers/"+containerID+"/copy"
+type CopyConfig struct {
+	Resource string
+}
+
+// ContainerPathStat is used to encode the header from
+// GET "/containers/{name:.*}/archive"
+// "Name" is the file or directory name.
+type ContainerPathStat struct {
+	Name       string      `json:"name"`
+	Size       int64       `json:"size"`
+	Mode       os.FileMode `json:"mode"`
+	Mtime      time.Time   `json:"mtime"`
+	LinkTarget string      `json:"linkTarget"`
+}
+
+// ContainerStats contains response of Engine API:
+// GET "/stats"
+type ContainerStats struct {
+	Body   io.ReadCloser `json:"body"`
+	OSType string        `json:"ostype"`
+}
+
+// Ping contains response of Engine API:
+// GET "/_ping"
+type Ping struct {
+	APIVersion   string
+	OSType       string
+	Experimental bool
+}
+
+// ComponentVersion describes the version information for a specific component.
+type ComponentVersion struct {
+	Name    string
+	Version string
+	Details map[string]string `json:",omitempty"`
+}
+
+// Version contains response of Engine API:
+// GET "/version"
+type Version struct {
+	Platform   struct{ Name string } `json:",omitempty"`
+	Components []ComponentVersion    `json:",omitempty"`
+
+	// The following fields are deprecated, they relate to the Engine component and are kept for backwards compatibility
+
+	Version       string
+	APIVersion    string `json:"ApiVersion"`
+	MinAPIVersion string `json:"MinAPIVersion,omitempty"`
+	GitCommit     string
+	GoVersion     string
+	Os            string
+	Arch          string
+	KernelVersion string `json:",omitempty"`
+	Experimental  bool   `json:",omitempty"`
+	BuildTime     string `json:",omitempty"`
+}
+
+// Commit holds the Git-commit (SHA1) that a binary was built from, as reported
+// in the version-string of external tools, such as containerd, or runC.
+type Commit struct {
+	ID       string // ID is the actual commit ID of external tool.
+	Expected string // Expected is the commit ID of external tool expected by dockerd as set at build time.
+}
+
+// Info contains response of Engine API:
+// GET "/info"
+type Info struct {
+	ID                 string
+	Containers         int
+	ContainersRunning  int
+	ContainersPaused   int
+	ContainersStopped  int
+	Images             int
+	Driver             string
+	DriverStatus       [][2]string
+	SystemStatus       [][2]string
+	Plugins            PluginsInfo
+	MemoryLimit        bool
+	SwapLimit          bool
+	KernelMemory       bool
+	CPUCfsPeriod       bool `json:"CpuCfsPeriod"`
+	CPUCfsQuota        bool `json:"CpuCfsQuota"`
+	CPUShares          bool
+	CPUSet             bool
+	IPv4Forwarding     bool
+	BridgeNfIptables   bool
+	BridgeNfIP6tables  bool `json:"BridgeNfIp6tables"`
+	Debug              bool
+	NFd                int
+	OomKillDisable     bool
+	NGoroutines        int
+	SystemTime         string
+	LoggingDriver      string
+	CgroupDriver       string
+	NEventsListener    int
+	KernelVersion      string
+	OperatingSystem    string
+	OSType             string
+	Architecture       string
+	IndexServerAddress string
+	RegistryConfig     *registry.ServiceConfig
+	NCPU               int
+	MemTotal           int64
+	GenericResources   []swarm.GenericResource
+	DockerRootDir      string
+	HTTPProxy          string `json:"HttpProxy"`
+	HTTPSProxy         string `json:"HttpsProxy"`
+	NoProxy            string
+	Name               string
+	Labels             []string
+	ExperimentalBuild  bool
+	ServerVersion      string
+	ClusterStore       string
+	ClusterAdvertise   string
+	Runtimes           map[string]Runtime
+	DefaultRuntime     string
+	Swarm              swarm.Info
+	// LiveRestoreEnabled determines whether containers should be kept
+	// running when the daemon is shutdown or upon daemon start if
+	// running containers are detected
+	LiveRestoreEnabled bool
+	Isolation          container.Isolation
+	InitBinary         string
+	ContainerdCommit   Commit
+	RuncCommit         Commit
+	InitCommit         Commit
+	SecurityOptions    []string
+}
+
+// KeyValue holds a key/value pair
+type KeyValue struct {
+	Key, Value string
+}
+
+// SecurityOpt contains the name and options of a security option
+type SecurityOpt struct {
+	Name    string
+	Options []KeyValue
+}
+
+// DecodeSecurityOptions decodes a security options string slice to a type safe
+// SecurityOpt
+func DecodeSecurityOptions(opts []string) ([]SecurityOpt, error) {
+	so := []SecurityOpt{}
+	for _, opt := range opts {
+		// support output from a < 1.13 docker daemon
+		if !strings.Contains(opt, "=") {
+			so = append(so, SecurityOpt{Name: opt})
+			continue
+		}
+		secopt := SecurityOpt{}
+		split := strings.Split(opt, ",")
+		for _, s := range split {
+			kv := strings.SplitN(s, "=", 2)
+			if len(kv) != 2 {
+				return nil, fmt.Errorf("invalid security option %q", s)
+			}
+			if kv[0] == "" || kv[1] == "" {
+				return nil, errors.New("invalid empty security option")
+			}
+			if kv[0] == "name" {
+				secopt.Name = kv[1]
+				continue
+			}
+			secopt.Options = append(secopt.Options, KeyValue{Key: kv[0], Value: kv[1]})
+		}
+		so = append(so, secopt)
+	}
+	return so, nil
+}
+
+// PluginsInfo is a temp struct holding Plugins name
+// registered with docker daemon. It is used by Info struct
+type PluginsInfo struct {
+	// List of Volume plugins registered
+	Volume []string
+	// List of Network plugins registered
+	Network []string
+	// List of Authorization plugins registered
+	Authorization []string
+	// List of Log plugins registered
+	Log []string
+}
+
+// ExecStartCheck is a temp struct used by execStart
+// Config fields is part of ExecConfig in runconfig package
+type ExecStartCheck struct {
+	// ExecStart will first check if it's detached
+	Detach bool
+	// Check if there's a tty
+	Tty bool
+}
+
+// HealthcheckResult stores information about a single run of a healthcheck probe
+type HealthcheckResult struct {
+	Start    time.Time // Start is the time this check started
+	End      time.Time // End is the time this check ended
+	ExitCode int       // ExitCode meanings: 0=healthy, 1=unhealthy, 2=reserved (considered unhealthy), else=error running probe
+	Output   string    // Output from last check
+}
+
+// Health states
+const (
+	NoHealthcheck = "none"      // Indicates there is no healthcheck
+	Starting      = "starting"  // Starting indicates that the container is not yet ready
+	Healthy       = "healthy"   // Healthy indicates that the container is running correctly
+	Unhealthy     = "unhealthy" // Unhealthy indicates that the container has a problem
+)
+
+// Health stores information about the container's healthcheck results
+type Health struct {
+	Status        string               // Status is one of Starting, Healthy or Unhealthy
+	FailingStreak int                  // FailingStreak is the number of consecutive failures
+	Log           []*HealthcheckResult // Log contains the last few results (oldest first)
+}
+
+// ContainerState stores container's running state
+// it's part of ContainerJSONBase and will return by "inspect" command
+type ContainerState struct {
+	Status     string // String representation of the container state. Can be one of "created", "running", "paused", "restarting", "removing", "exited", or "dead"
+	Running    bool
+	Paused     bool
+	Restarting bool
+	OOMKilled  bool
+	Dead       bool
+	Pid        int
+	ExitCode   int
+	Error      string
+	StartedAt  string
+	FinishedAt string
+	Health     *Health `json:",omitempty"`
+}
+
+// ContainerNode stores information about the node that a container
+// is running on.  It's only available in Docker Swarm
+type ContainerNode struct {
+	ID        string
+	IPAddress string `json:"IP"`
+	Addr      string
+	Name      string
+	Cpus      int
+	Memory    int64
+	Labels    map[string]string
+}
+
+// ContainerJSONBase contains response of Engine API:
+// GET "/containers/{name:.*}/json"
+type ContainerJSONBase struct {
+	ID              string `json:"Id"`
+	Created         string
+	Path            string
+	Args            []string
+	State           *ContainerState
+	Image           string
+	ResolvConfPath  string
+	HostnamePath    string
+	HostsPath       string
+	LogPath         string
+	Node            *ContainerNode `json:",omitempty"`
+	Name            string
+	RestartCount    int
+	Driver          string
+	Platform        string
+	MountLabel      string
+	ProcessLabel    string
+	AppArmorProfile string
+	ExecIDs         []string
+	HostConfig      *container.HostConfig
+	GraphDriver     GraphDriverData
+	SizeRw          *int64 `json:",omitempty"`
+	SizeRootFs      *int64 `json:",omitempty"`
+}
+
+// ContainerJSON is newly used struct along with MountPoint
+type ContainerJSON struct {
+	*ContainerJSONBase
+	Mounts          []MountPoint
+	Config          *container.Config
+	NetworkSettings *NetworkSettings
+}
+
+// NetworkSettings exposes the network settings in the api
+type NetworkSettings struct {
+	NetworkSettingsBase
+	DefaultNetworkSettings
+	Networks map[string]*network.EndpointSettings
+}
+
+// SummaryNetworkSettings provides a summary of container's networks
+// in /containers/json
+type SummaryNetworkSettings struct {
+	Networks map[string]*network.EndpointSettings
+}
+
+// NetworkSettingsBase holds basic information about networks
+type NetworkSettingsBase struct {
+	Bridge                 string      // Bridge is the Bridge name the network uses(e.g. `docker0`)
+	SandboxID              string      // SandboxID uniquely represents a container's network stack
+	HairpinMode            bool        // HairpinMode specifies if hairpin NAT should be enabled on the virtual interface
+	LinkLocalIPv6Address   string      // LinkLocalIPv6Address is an IPv6 unicast address using the link-local prefix
+	LinkLocalIPv6PrefixLen int         // LinkLocalIPv6PrefixLen is the prefix length of an IPv6 unicast address
+	Ports                  nat.PortMap // Ports is a collection of PortBinding indexed by Port
+	SandboxKey             string      // SandboxKey identifies the sandbox
+	SecondaryIPAddresses   []network.Address
+	SecondaryIPv6Addresses []network.Address
+}
+
+// DefaultNetworkSettings holds network information
+// during the 2 release deprecation period.
+// It will be removed in Docker 1.11.
+type DefaultNetworkSettings struct {
+	EndpointID          string // EndpointID uniquely represents a service endpoint in a Sandbox
+	Gateway             string // Gateway holds the gateway address for the network
+	GlobalIPv6Address   string // GlobalIPv6Address holds network's global IPv6 address
+	GlobalIPv6PrefixLen int    // GlobalIPv6PrefixLen represents mask length of network's global IPv6 address
+	IPAddress           string // IPAddress holds the IPv4 address for the network
+	IPPrefixLen         int    // IPPrefixLen represents mask length of network's IPv4 address
+	IPv6Gateway         string // IPv6Gateway holds gateway address specific for IPv6
+	MacAddress          string // MacAddress holds the MAC address for the network
+}
+
+// MountPoint represents a mount point configuration inside the container.
+// This is used for reporting the mountpoints in use by a container.
+type MountPoint struct {
+	Type        mount.Type `json:",omitempty"`
+	Name        string     `json:",omitempty"`
+	Source      string
+	Destination string
+	Driver      string `json:",omitempty"`
+	Mode        string
+	RW          bool
+	Propagation mount.Propagation
+}
+
+// NetworkResource is the body of the "get network" http response message
+type NetworkResource struct {
+	Name       string                         // Name is the requested name of the network
+	ID         string                         `json:"Id"` // ID uniquely identifies a network on a single machine
+	Created    time.Time                      // Created is the time the network created
+	Scope      string                         // Scope describes the level at which the network exists (e.g. `swarm` for cluster-wide or `local` for machine level)
+	Driver     string                         // Driver is the Driver name used to create the network (e.g. `bridge`, `overlay`)
+	EnableIPv6 bool                           // EnableIPv6 represents whether to enable IPv6
+	IPAM       network.IPAM                   // IPAM is the network's IP Address Management
+	Internal   bool                           // Internal represents if the network is used internal only
+	Attachable bool                           // Attachable represents if the global scope is manually attachable by regular containers from workers in swarm mode.
+	Ingress    bool                           // Ingress indicates the network is providing the routing-mesh for the swarm cluster.
+	ConfigFrom network.ConfigReference        // ConfigFrom specifies the source which will provide the configuration for this network.
+	ConfigOnly bool                           // ConfigOnly networks are place-holder networks for network configurations to be used by other networks. ConfigOnly networks cannot be used directly to run containers or services.
+	Containers map[string]EndpointResource    // Containers contains endpoints belonging to the network
+	Options    map[string]string              // Options holds the network specific options to use for when creating the network
+	Labels     map[string]string              // Labels holds metadata specific to the network being created
+	Peers      []network.PeerInfo             `json:",omitempty"` // List of peer nodes for an overlay network
+	Services   map[string]network.ServiceInfo `json:",omitempty"`
+}
+
+// EndpointResource contains network resources allocated and used for a container in a network
+type EndpointResource struct {
+	Name        string
+	EndpointID  string
+	MacAddress  string
+	IPv4Address string
+	IPv6Address string
+}
+
+// NetworkCreate is the expected body of the "create network" http request message
+type NetworkCreate struct {
+	// Check for networks with duplicate names.
+	// Network is primarily keyed based on a random ID and not on the name.
+	// Network name is strictly a user-friendly alias to the network
+	// which is uniquely identified using ID.
+	// And there is no guaranteed way to check for duplicates.
+	// Option CheckDuplicate is there to provide a best effort checking of any networks
+	// which has the same name but it is not guaranteed to catch all name collisions.
+	CheckDuplicate bool
+	Driver         string
+	Scope          string
+	EnableIPv6     bool
+	IPAM           *network.IPAM
+	Internal       bool
+	Attachable     bool
+	Ingress        bool
+	ConfigOnly     bool
+	ConfigFrom     *network.ConfigReference
+	Options        map[string]string
+	Labels         map[string]string
+}
+
+// NetworkCreateRequest is the request message sent to the server for network create call.
+type NetworkCreateRequest struct {
+	NetworkCreate
+	Name string
+}
+
+// NetworkCreateResponse is the response message sent by the server for network create call
+type NetworkCreateResponse struct {
+	ID      string `json:"Id"`
+	Warning string
+}
+
+// NetworkConnect represents the data to be used to connect a container to the network
+type NetworkConnect struct {
+	Container      string
+	EndpointConfig *network.EndpointSettings `json:",omitempty"`
+}
+
+// NetworkDisconnect represents the data to be used to disconnect a container from the network
+type NetworkDisconnect struct {
+	Container string
+	Force     bool
+}
+
+// NetworkInspectOptions holds parameters to inspect network
+type NetworkInspectOptions struct {
+	Scope   string
+	Verbose bool
+}
+
+// Checkpoint represents the details of a checkpoint
+type Checkpoint struct {
+	Name string // Name is the name of the checkpoint
+}
+
+// Runtime describes an OCI runtime
+type Runtime struct {
+	Path string   `json:"path"`
+	Args []string `json:"runtimeArgs,omitempty"`
+}
+
+// DiskUsage contains response of Engine API:
+// GET "/system/df"
+type DiskUsage struct {
+	LayersSize  int64
+	Images      []*ImageSummary
+	Containers  []*Container
+	Volumes     []*Volume
+	BuilderSize int64
+}
+
+// ContainersPruneReport contains the response for Engine API:
+// POST "/containers/prune"
+type ContainersPruneReport struct {
+	ContainersDeleted []string
+	SpaceReclaimed    uint64
+}
+
+// VolumesPruneReport contains the response for Engine API:
+// POST "/volumes/prune"
+type VolumesPruneReport struct {
+	VolumesDeleted []string
+	SpaceReclaimed uint64
+}
+
+// ImagesPruneReport contains the response for Engine API:
+// POST "/images/prune"
+type ImagesPruneReport struct {
+	ImagesDeleted  []ImageDeleteResponseItem
+	SpaceReclaimed uint64
+}
+
+// BuildCachePruneReport contains the response for Engine API:
+// POST "/build/prune"
+type BuildCachePruneReport struct {
+	SpaceReclaimed uint64
+}
+
+// NetworksPruneReport contains the response for Engine API:
+// POST "/networks/prune"
+type NetworksPruneReport struct {
+	NetworksDeleted []string
+}
+
+// SecretCreateResponse contains the information returned to a client
+// on the creation of a new secret.
+type SecretCreateResponse struct {
+	// ID is the id of the created secret.
+	ID string
+}
+
+// SecretListOptions holds parameters to list secrets
+type SecretListOptions struct {
+	Filters filters.Args
+}
+
+// ConfigCreateResponse contains the information returned to a client
+// on the creation of a new config.
+type ConfigCreateResponse struct {
+	// ID is the id of the created config.
+	ID string
+}
+
+// ConfigListOptions holds parameters to list configs
+type ConfigListOptions struct {
+	Filters filters.Args
+}
+
+// PushResult contains the tag, manifest digest, and manifest size from the
+// push. It's used to signal this information to the trust code in the client
+// so it can sign the manifest if necessary.
+type PushResult struct {
+	Tag    string
+	Digest string
+	Size   int
+}
+
+// BuildResult contains the image id of a successful build
+type BuildResult struct {
+	ID string
+}
diff --git a/vendor/github.com/docker/docker/api/types/versions/compare.go b/vendor/github.com/docker/docker/api/types/versions/compare.go
new file mode 100644
index 0000000000..8ccb0aa92e
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/versions/compare.go
@@ -0,0 +1,62 @@
+package versions // import "github.com/docker/docker/api/types/versions"
+
+import (
+	"strconv"
+	"strings"
+)
+
+// compare compares two version strings
+// returns -1 if v1 < v2, 1 if v1 > v2, 0 otherwise.
+func compare(v1, v2 string) int {
+	var (
+		currTab  = strings.Split(v1, ".")
+		otherTab = strings.Split(v2, ".")
+	)
+
+	max := len(currTab)
+	if len(otherTab) > max {
+		max = len(otherTab)
+	}
+	for i := 0; i < max; i++ {
+		var currInt, otherInt int
+
+		if len(currTab) > i {
+			currInt, _ = strconv.Atoi(currTab[i])
+		}
+		if len(otherTab) > i {
+			otherInt, _ = strconv.Atoi(otherTab[i])
+		}
+		if currInt > otherInt {
+			return 1
+		}
+		if otherInt > currInt {
+			return -1
+		}
+	}
+	return 0
+}
+
+// LessThan checks if a version is less than another
+func LessThan(v, other string) bool {
+	return compare(v, other) == -1
+}
+
+// LessThanOrEqualTo checks if a version is less than or equal to another
+func LessThanOrEqualTo(v, other string) bool {
+	return compare(v, other) <= 0
+}
+
+// GreaterThan checks if a version is greater than another
+func GreaterThan(v, other string) bool {
+	return compare(v, other) == 1
+}
+
+// GreaterThanOrEqualTo checks if a version is greater than or equal to another
+func GreaterThanOrEqualTo(v, other string) bool {
+	return compare(v, other) >= 0
+}
+
+// Equal checks if a version is equal to another
+func Equal(v, other string) bool {
+	return compare(v, other) == 0
+}
diff --git a/vendor/github.com/docker/docker/api/types/volume.go b/vendor/github.com/docker/docker/api/types/volume.go
new file mode 100644
index 0000000000..b5ee96a500
--- /dev/null
+++ b/vendor/github.com/docker/docker/api/types/volume.go
@@ -0,0 +1,69 @@
+package types
+
+// This file was generated by the swagger tool.
+// Editing this file might prove futile when you re-run the swagger generate command
+
+// Volume volume
+// swagger:model Volume
+type Volume struct {
+
+	// Date/Time the volume was created.
+	CreatedAt string `json:"CreatedAt,omitempty"`
+
+	// Name of the volume driver used by the volume.
+	// Required: true
+	Driver string `json:"Driver"`
+
+	// User-defined key/value metadata.
+	// Required: true
+	Labels map[string]string `json:"Labels"`
+
+	// Mount path of the volume on the host.
+	// Required: true
+	Mountpoint string `json:"Mountpoint"`
+
+	// Name of the volume.
+	// Required: true
+	Name string `json:"Name"`
+
+	// The driver specific options used when creating the volume.
+	// Required: true
+	Options map[string]string `json:"Options"`
+
+	// The level at which the volume exists. Either `global` for cluster-wide, or `local` for machine level.
+	// Required: true
+	Scope string `json:"Scope"`
+
+	// Low-level details about the volume, provided by the volume driver.
+	// Details are returned as a map with key/value pairs:
+	// `{"key":"value","key2":"value2"}`.
+	//
+	// The `Status` field is optional, and is omitted if the volume driver
+	// does not support this feature.
+	//
+	Status map[string]interface{} `json:"Status,omitempty"`
+
+	// usage data
+	UsageData *VolumeUsageData `json:"UsageData,omitempty"`
+}
+
+// VolumeUsageData Usage details about the volume. This information is used by the
+// `GET /system/df` endpoint, and omitted in other endpoints.
+//
+// swagger:model VolumeUsageData
+type VolumeUsageData struct {
+
+	// The number of containers referencing this volume. This field
+	// is set to `-1` if the reference-count is not available.
+	//
+	// Required: true
+	RefCount int64 `json:"RefCount"`
+
+	// Amount of disk space used by the volume (in bytes). This information
+	// is only available for volumes created with the `"local"` volume
+	// driver. For volumes created with other volume drivers, this field
+	// is set to `-1` ("not available")
+	//
+	// Required: true
+	Size int64 `json:"Size"`
+}
diff --git a/vendor/github.com/docker/docker/builder/builder.go b/vendor/github.com/docker/docker/builder/builder.go
new file mode 100644
index 0000000000..3c5edb0679
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/builder.go
@@ -0,0 +1,115 @@
+// Package builder defines interfaces for any Docker builder to implement.
+//
+// Historically, only server-side Dockerfile interpreters existed.
+// This package allows for other implementations of Docker builders.
+package builder // import "github.com/docker/docker/builder"
+
+import (
+	"context"
+	"io"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/api/types/container"
+	containerpkg "github.com/docker/docker/container"
+	"github.com/docker/docker/image"
+	"github.com/docker/docker/layer"
+	"github.com/docker/docker/pkg/containerfs"
+)
+
+const (
+	// DefaultDockerfileName is the Default filename with Docker commands, read by docker build
+	DefaultDockerfileName string = "Dockerfile"
+)
+
+// Source defines a location that can be used as a source for the ADD/COPY
+// instructions in the builder.
+type Source interface {
+	// Root returns root path for accessing source
+	Root() containerfs.ContainerFS
+	// Close allows to signal that the filesystem tree won't be used anymore.
+	// For Context implementations using a temporary directory, it is recommended to
+	// delete the temporary directory in Close().
+	Close() error
+	// Hash returns a checksum for a file
+	Hash(path string) (string, error)
+}
+
+// Backend abstracts calls to a Docker Daemon.
+type Backend interface {
+	ImageBackend
+	ExecBackend
+
+	// CommitBuildStep creates a new Docker image from the config generated by
+	// a build step.
+	CommitBuildStep(backend.CommitConfig) (image.ID, error)
+	// ContainerCreateWorkdir creates the workdir
+	ContainerCreateWorkdir(containerID string) error
+
+	CreateImage(config []byte, parent string) (Image, error)
+
+	ImageCacheBuilder
+}
+
+// ImageBackend are the interface methods required from an image component
+type ImageBackend interface {
+	GetImageAndReleasableLayer(ctx context.Context, refOrID string, opts backend.GetImageAndLayerOptions) (Image, ROLayer, error)
+}
+
+// ExecBackend contains the interface methods required for executing containers
+type ExecBackend interface {
+	// ContainerAttachRaw attaches to container.
+	ContainerAttachRaw(cID string, stdin io.ReadCloser, stdout, stderr io.Writer, stream bool, attached chan struct{}) error
+	// ContainerCreate creates a new Docker container and returns potential warnings
+	ContainerCreate(config types.ContainerCreateConfig) (container.ContainerCreateCreatedBody, error)
+	// ContainerRm removes a container specified by `id`.
+	ContainerRm(name string, config *types.ContainerRmConfig) error
+	// ContainerKill stops the container execution abruptly.
+	ContainerKill(containerID string, sig uint64) error
+	// ContainerStart starts a new container
+	ContainerStart(containerID string, hostConfig *container.HostConfig, checkpoint string, checkpointDir string) error
+	// ContainerWait stops processing until the given container is stopped.
+	ContainerWait(ctx context.Context, name string, condition containerpkg.WaitCondition) (<-chan containerpkg.StateStatus, error)
+}
+
+// Result is the output produced by a Builder
+type Result struct {
+	ImageID   string
+	FromImage Image
+}
+
+// ImageCacheBuilder represents a generator for stateful image cache.
+type ImageCacheBuilder interface {
+	// MakeImageCache creates a stateful image cache.
+	MakeImageCache(cacheFrom []string) ImageCache
+}
+
+// ImageCache abstracts an image cache.
+// (parent image, child runconfig) -> child image
+type ImageCache interface {
+	// GetCache returns a reference to a cached image whose parent equals `parent`
+	// and runconfig equals `cfg`. A cache miss is expected to return an empty ID and a nil error.
+	GetCache(parentID string, cfg *container.Config) (imageID string, err error)
+}
+
+// Image represents a Docker image used by the builder.
+type Image interface {
+	ImageID() string
+	RunConfig() *container.Config
+	MarshalJSON() ([]byte, error)
+	OperatingSystem() string
+}
+
+// ROLayer is a reference to image rootfs layer
+type ROLayer interface {
+	Release() error
+	NewRWLayer() (RWLayer, error)
+	DiffID() layer.DiffID
+}
+
+// RWLayer is active layer that can be read/modified
+type RWLayer interface {
+	Release() error
+	Root() containerfs.ContainerFS
+	Commit() (ROLayer, error)
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/buildargs.go b/vendor/github.com/docker/docker/builder/dockerfile/buildargs.go
new file mode 100644
index 0000000000..232f9d23f6
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/buildargs.go
@@ -0,0 +1,172 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"fmt"
+	"io"
+
+	"github.com/docker/docker/runconfig/opts"
+)
+
+// builtinAllowedBuildArgs is list of built-in allowed build args
+// these args are considered transparent and are excluded from the image history.
+// Filtering from history is implemented in dispatchers.go
+var builtinAllowedBuildArgs = map[string]bool{
+	"HTTP_PROXY":  true,
+	"http_proxy":  true,
+	"HTTPS_PROXY": true,
+	"https_proxy": true,
+	"FTP_PROXY":   true,
+	"ftp_proxy":   true,
+	"NO_PROXY":    true,
+	"no_proxy":    true,
+}
+
+// BuildArgs manages arguments used by the builder
+type BuildArgs struct {
+	// args that are allowed for expansion/substitution and passing to commands in 'run'.
+	allowedBuildArgs map[string]*string
+	// args defined before the first `FROM` in a Dockerfile
+	allowedMetaArgs map[string]*string
+	// args referenced by the Dockerfile
+	referencedArgs map[string]struct{}
+	// args provided by the user on the command line
+	argsFromOptions map[string]*string
+}
+
+// NewBuildArgs creates a new BuildArgs type
+func NewBuildArgs(argsFromOptions map[string]*string) *BuildArgs {
+	return &BuildArgs{
+		allowedBuildArgs: make(map[string]*string),
+		allowedMetaArgs:  make(map[string]*string),
+		referencedArgs:   make(map[string]struct{}),
+		argsFromOptions:  argsFromOptions,
+	}
+}
+
+// Clone returns a copy of the BuildArgs type
+func (b *BuildArgs) Clone() *BuildArgs {
+	result := NewBuildArgs(b.argsFromOptions)
+	for k, v := range b.allowedBuildArgs {
+		result.allowedBuildArgs[k] = v
+	}
+	for k, v := range b.allowedMetaArgs {
+		result.allowedMetaArgs[k] = v
+	}
+	for k := range b.referencedArgs {
+		result.referencedArgs[k] = struct{}{}
+	}
+	return result
+}
+
+// MergeReferencedArgs merges referenced args from another BuildArgs
+// object into the current one
+func (b *BuildArgs) MergeReferencedArgs(other *BuildArgs) {
+	for k := range other.referencedArgs {
+		b.referencedArgs[k] = struct{}{}
+	}
+}
+
+// WarnOnUnusedBuildArgs checks if there are any leftover build-args that were
+// passed but not consumed during build. Print a warning, if there are any.
+func (b *BuildArgs) WarnOnUnusedBuildArgs(out io.Writer) {
+	leftoverArgs := []string{}
+	for arg := range b.argsFromOptions {
+		_, isReferenced := b.referencedArgs[arg]
+		_, isBuiltin := builtinAllowedBuildArgs[arg]
+		if !isBuiltin && !isReferenced {
+			leftoverArgs = append(leftoverArgs, arg)
+		}
+	}
+	if len(leftoverArgs) > 0 {
+		fmt.Fprintf(out, "[Warning] One or more build-args %v were not consumed\n", leftoverArgs)
+	}
+}
+
+// ResetAllowed clears the list of args that are allowed to be used by a
+// directive
+func (b *BuildArgs) ResetAllowed() {
+	b.allowedBuildArgs = make(map[string]*string)
+}
+
+// AddMetaArg adds a new meta arg that can be used by FROM directives
+func (b *BuildArgs) AddMetaArg(key string, value *string) {
+	b.allowedMetaArgs[key] = value
+}
+
+// AddArg adds a new arg that can be used by directives
+func (b *BuildArgs) AddArg(key string, value *string) {
+	b.allowedBuildArgs[key] = value
+	b.referencedArgs[key] = struct{}{}
+}
+
+// IsReferencedOrNotBuiltin checks if the key is a built-in arg, or if it has been
+// referenced by the Dockerfile. Returns true if the arg is not a builtin or
+// if the builtin has been referenced in the Dockerfile.
+func (b *BuildArgs) IsReferencedOrNotBuiltin(key string) bool {
+	_, isBuiltin := builtinAllowedBuildArgs[key]
+	_, isAllowed := b.allowedBuildArgs[key]
+	return isAllowed || !isBuiltin
+}
+
+// GetAllAllowed returns a mapping with all the allowed args
+func (b *BuildArgs) GetAllAllowed() map[string]string {
+	return b.getAllFromMapping(b.allowedBuildArgs)
+}
+
+// GetAllMeta returns a mapping with all the meta meta args
+func (b *BuildArgs) GetAllMeta() map[string]string {
+	return b.getAllFromMapping(b.allowedMetaArgs)
+}
+
+func (b *BuildArgs) getAllFromMapping(source map[string]*string) map[string]string {
+	m := make(map[string]string)
+
+	keys := keysFromMaps(source, builtinAllowedBuildArgs)
+	for _, key := range keys {
+		v, ok := b.getBuildArg(key, source)
+		if ok {
+			m[key] = v
+		}
+	}
+	return m
+}
+
+// FilterAllowed returns all allowed args without the filtered args
+func (b *BuildArgs) FilterAllowed(filter []string) []string {
+	envs := []string{}
+	configEnv := opts.ConvertKVStringsToMap(filter)
+
+	for key, val := range b.GetAllAllowed() {
+		if _, ok := configEnv[key]; !ok {
+			envs = append(envs, fmt.Sprintf("%s=%s", key, val))
+		}
+	}
+	return envs
+}
+
+func (b *BuildArgs) getBuildArg(key string, mapping map[string]*string) (string, bool) {
+	defaultValue, exists := mapping[key]
+	// Return override from options if one is defined
+	if v, ok := b.argsFromOptions[key]; ok && v != nil {
+		return *v, ok
+	}
+
+	if defaultValue == nil {
+		if v, ok := b.allowedMetaArgs[key]; ok && v != nil {
+			return *v, ok
+		}
+		return "", false
+	}
+	return *defaultValue, exists
+}
+
+func keysFromMaps(source map[string]*string, builtin map[string]bool) []string {
+	keys := []string{}
+	for key := range source {
+		keys = append(keys, key)
+	}
+	for key := range builtin {
+		keys = append(keys, key)
+	}
+	return keys
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/builder.go b/vendor/github.com/docker/docker/builder/dockerfile/builder.go
new file mode 100644
index 0000000000..21d84cb513
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/builder.go
@@ -0,0 +1,413 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"bytes"
+	"context"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/docker/docker/builder/dockerfile/parser"
+	"github.com/docker/docker/builder/dockerfile/shell"
+	"github.com/docker/docker/builder/fscache"
+	"github.com/docker/docker/builder/remotecontext"
+	"github.com/docker/docker/errdefs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/streamformatter"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/pkg/system"
+	"github.com/moby/buildkit/session"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"golang.org/x/sync/syncmap"
+)
+
+var validCommitCommands = map[string]bool{
+	"cmd":         true,
+	"entrypoint":  true,
+	"healthcheck": true,
+	"env":         true,
+	"expose":      true,
+	"label":       true,
+	"onbuild":     true,
+	"user":        true,
+	"volume":      true,
+	"workdir":     true,
+}
+
+const (
+	stepFormat = "Step %d/%d : %v"
+)
+
+// SessionGetter is object used to get access to a session by uuid
+type SessionGetter interface {
+	Get(ctx context.Context, uuid string) (session.Caller, error)
+}
+
+// BuildManager is shared across all Builder objects
+type BuildManager struct {
+	idMappings *idtools.IDMappings
+	backend    builder.Backend
+	pathCache  pathCache // TODO: make this persistent
+	sg         SessionGetter
+	fsCache    *fscache.FSCache
+}
+
+// NewBuildManager creates a BuildManager
+func NewBuildManager(b builder.Backend, sg SessionGetter, fsCache *fscache.FSCache, idMappings *idtools.IDMappings) (*BuildManager, error) {
+	bm := &BuildManager{
+		backend:    b,
+		pathCache:  &syncmap.Map{},
+		sg:         sg,
+		idMappings: idMappings,
+		fsCache:    fsCache,
+	}
+	if err := fsCache.RegisterTransport(remotecontext.ClientSessionRemote, NewClientSessionTransport()); err != nil {
+		return nil, err
+	}
+	return bm, nil
+}
+
+// Build starts a new build from a BuildConfig
+func (bm *BuildManager) Build(ctx context.Context, config backend.BuildConfig) (*builder.Result, error) {
+	buildsTriggered.Inc()
+	if config.Options.Dockerfile == "" {
+		config.Options.Dockerfile = builder.DefaultDockerfileName
+	}
+
+	source, dockerfile, err := remotecontext.Detect(config)
+	if err != nil {
+		return nil, err
+	}
+	defer func() {
+		if source != nil {
+			if err := source.Close(); err != nil {
+				logrus.Debugf("[BUILDER] failed to remove temporary context: %v", err)
+			}
+		}
+	}()
+
+	ctx, cancel := context.WithCancel(ctx)
+	defer cancel()
+
+	if src, err := bm.initializeClientSession(ctx, cancel, config.Options); err != nil {
+		return nil, err
+	} else if src != nil {
+		source = src
+	}
+
+	os := ""
+	apiPlatform := system.ParsePlatform(config.Options.Platform)
+	if apiPlatform.OS != "" {
+		os = apiPlatform.OS
+	}
+	config.Options.Platform = os
+
+	builderOptions := builderOptions{
+		Options:        config.Options,
+		ProgressWriter: config.ProgressWriter,
+		Backend:        bm.backend,
+		PathCache:      bm.pathCache,
+		IDMappings:     bm.idMappings,
+	}
+	return newBuilder(ctx, builderOptions).build(source, dockerfile)
+}
+
+func (bm *BuildManager) initializeClientSession(ctx context.Context, cancel func(), options *types.ImageBuildOptions) (builder.Source, error) {
+	if options.SessionID == "" || bm.sg == nil {
+		return nil, nil
+	}
+	logrus.Debug("client is session enabled")
+
+	connectCtx, cancelCtx := context.WithTimeout(ctx, sessionConnectTimeout)
+	defer cancelCtx()
+
+	c, err := bm.sg.Get(connectCtx, options.SessionID)
+	if err != nil {
+		return nil, err
+	}
+	go func() {
+		<-c.Context().Done()
+		cancel()
+	}()
+	if options.RemoteContext == remotecontext.ClientSessionRemote {
+		st := time.Now()
+		csi, err := NewClientSessionSourceIdentifier(ctx, bm.sg, options.SessionID)
+		if err != nil {
+			return nil, err
+		}
+		src, err := bm.fsCache.SyncFrom(ctx, csi)
+		if err != nil {
+			return nil, err
+		}
+		logrus.Debugf("sync-time: %v", time.Since(st))
+		return src, nil
+	}
+	return nil, nil
+}
+
+// builderOptions are the dependencies required by the builder
+type builderOptions struct {
+	Options        *types.ImageBuildOptions
+	Backend        builder.Backend
+	ProgressWriter backend.ProgressWriter
+	PathCache      pathCache
+	IDMappings     *idtools.IDMappings
+}
+
+// Builder is a Dockerfile builder
+// It implements the builder.Backend interface.
+type Builder struct {
+	options *types.ImageBuildOptions
+
+	Stdout io.Writer
+	Stderr io.Writer
+	Aux    *streamformatter.AuxFormatter
+	Output io.Writer
+
+	docker    builder.Backend
+	clientCtx context.Context
+
+	idMappings       *idtools.IDMappings
+	disableCommit    bool
+	imageSources     *imageSources
+	pathCache        pathCache
+	containerManager *containerManager
+	imageProber      ImageProber
+}
+
+// newBuilder creates a new Dockerfile builder from an optional dockerfile and a Options.
+func newBuilder(clientCtx context.Context, options builderOptions) *Builder {
+	config := options.Options
+	if config == nil {
+		config = new(types.ImageBuildOptions)
+	}
+
+	b := &Builder{
+		clientCtx:        clientCtx,
+		options:          config,
+		Stdout:           options.ProgressWriter.StdoutFormatter,
+		Stderr:           options.ProgressWriter.StderrFormatter,
+		Aux:              options.ProgressWriter.AuxFormatter,
+		Output:           options.ProgressWriter.Output,
+		docker:           options.Backend,
+		idMappings:       options.IDMappings,
+		imageSources:     newImageSources(clientCtx, options),
+		pathCache:        options.PathCache,
+		imageProber:      newImageProber(options.Backend, config.CacheFrom, config.NoCache),
+		containerManager: newContainerManager(options.Backend),
+	}
+
+	return b
+}
+
+// Build runs the Dockerfile builder by parsing the Dockerfile and executing
+// the instructions from the file.
+func (b *Builder) build(source builder.Source, dockerfile *parser.Result) (*builder.Result, error) {
+	defer b.imageSources.Unmount()
+
+	addNodesForLabelOption(dockerfile.AST, b.options.Labels)
+
+	stages, metaArgs, err := instructions.Parse(dockerfile.AST)
+	if err != nil {
+		if instructions.IsUnknownInstruction(err) {
+			buildsFailed.WithValues(metricsUnknownInstructionError).Inc()
+		}
+		return nil, errdefs.InvalidParameter(err)
+	}
+	if b.options.Target != "" {
+		targetIx, found := instructions.HasStage(stages, b.options.Target)
+		if !found {
+			buildsFailed.WithValues(metricsBuildTargetNotReachableError).Inc()
+			return nil, errdefs.InvalidParameter(errors.Errorf("failed to reach build target %s in Dockerfile", b.options.Target))
+		}
+		stages = stages[:targetIx+1]
+	}
+
+	dockerfile.PrintWarnings(b.Stderr)
+	dispatchState, err := b.dispatchDockerfileWithCancellation(stages, metaArgs, dockerfile.EscapeToken, source)
+	if err != nil {
+		return nil, err
+	}
+	if dispatchState.imageID == "" {
+		buildsFailed.WithValues(metricsDockerfileEmptyError).Inc()
+		return nil, errors.New("No image was generated. Is your Dockerfile empty?")
+	}
+	return &builder.Result{ImageID: dispatchState.imageID, FromImage: dispatchState.baseImage}, nil
+}
+
+func emitImageID(aux *streamformatter.AuxFormatter, state *dispatchState) error {
+	if aux == nil || state.imageID == "" {
+		return nil
+	}
+	return aux.Emit(types.BuildResult{ID: state.imageID})
+}
+
+func processMetaArg(meta instructions.ArgCommand, shlex *shell.Lex, args *BuildArgs) error {
+	// shell.Lex currently only support the concatenated string format
+	envs := convertMapToEnvList(args.GetAllAllowed())
+	if err := meta.Expand(func(word string) (string, error) {
+		return shlex.ProcessWord(word, envs)
+	}); err != nil {
+		return err
+	}
+	args.AddArg(meta.Key, meta.Value)
+	args.AddMetaArg(meta.Key, meta.Value)
+	return nil
+}
+
+func printCommand(out io.Writer, currentCommandIndex int, totalCommands int, cmd interface{}) int {
+	fmt.Fprintf(out, stepFormat, currentCommandIndex, totalCommands, cmd)
+	fmt.Fprintln(out)
+	return currentCommandIndex + 1
+}
+
+func (b *Builder) dispatchDockerfileWithCancellation(parseResult []instructions.Stage, metaArgs []instructions.ArgCommand, escapeToken rune, source builder.Source) (*dispatchState, error) {
+	dispatchRequest := dispatchRequest{}
+	buildArgs := NewBuildArgs(b.options.BuildArgs)
+	totalCommands := len(metaArgs) + len(parseResult)
+	currentCommandIndex := 1
+	for _, stage := range parseResult {
+		totalCommands += len(stage.Commands)
+	}
+	shlex := shell.NewLex(escapeToken)
+	for _, meta := range metaArgs {
+		currentCommandIndex = printCommand(b.Stdout, currentCommandIndex, totalCommands, &meta)
+
+		err := processMetaArg(meta, shlex, buildArgs)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	stagesResults := newStagesBuildResults()
+
+	for _, stage := range parseResult {
+		if err := stagesResults.checkStageNameAvailable(stage.Name); err != nil {
+			return nil, err
+		}
+		dispatchRequest = newDispatchRequest(b, escapeToken, source, buildArgs, stagesResults)
+
+		currentCommandIndex = printCommand(b.Stdout, currentCommandIndex, totalCommands, stage.SourceCode)
+		if err := initializeStage(dispatchRequest, &stage); err != nil {
+			return nil, err
+		}
+		dispatchRequest.state.updateRunConfig()
+		fmt.Fprintf(b.Stdout, " ---> %s\n", stringid.TruncateID(dispatchRequest.state.imageID))
+		for _, cmd := range stage.Commands {
+			select {
+			case <-b.clientCtx.Done():
+				logrus.Debug("Builder: build cancelled!")
+				fmt.Fprint(b.Stdout, "Build cancelled\n")
+				buildsFailed.WithValues(metricsBuildCanceled).Inc()
+				return nil, errors.New("Build cancelled")
+			default:
+				// Not cancelled yet, keep going...
+			}
+
+			currentCommandIndex = printCommand(b.Stdout, currentCommandIndex, totalCommands, cmd)
+
+			if err := dispatch(dispatchRequest, cmd); err != nil {
+				return nil, err
+			}
+			dispatchRequest.state.updateRunConfig()
+			fmt.Fprintf(b.Stdout, " ---> %s\n", stringid.TruncateID(dispatchRequest.state.imageID))
+
+		}
+		if err := emitImageID(b.Aux, dispatchRequest.state); err != nil {
+			return nil, err
+		}
+		buildArgs.MergeReferencedArgs(dispatchRequest.state.buildArgs)
+		if err := commitStage(dispatchRequest.state, stagesResults); err != nil {
+			return nil, err
+		}
+	}
+	buildArgs.WarnOnUnusedBuildArgs(b.Stdout)
+	return dispatchRequest.state, nil
+}
+
+func addNodesForLabelOption(dockerfile *parser.Node, labels map[string]string) {
+	if len(labels) == 0 {
+		return
+	}
+
+	node := parser.NodeFromLabels(labels)
+	dockerfile.Children = append(dockerfile.Children, node)
+}
+
+// BuildFromConfig builds directly from `changes`, treating it as if it were the contents of a Dockerfile
+// It will:
+// - Call parse.Parse() to get an AST root for the concatenated Dockerfile entries.
+// - Do build by calling builder.dispatch() to call all entries' handling routines
+//
+// BuildFromConfig is used by the /commit endpoint, with the changes
+// coming from the query parameter of the same name.
+//
+// TODO: Remove?
+func BuildFromConfig(config *container.Config, changes []string, os string) (*container.Config, error) {
+	if !system.IsOSSupported(os) {
+		return nil, errdefs.InvalidParameter(system.ErrNotSupportedOperatingSystem)
+	}
+	if len(changes) == 0 {
+		return config, nil
+	}
+
+	dockerfile, err := parser.Parse(bytes.NewBufferString(strings.Join(changes, "\n")))
+	if err != nil {
+		return nil, errdefs.InvalidParameter(err)
+	}
+
+	b := newBuilder(context.Background(), builderOptions{
+		Options: &types.ImageBuildOptions{NoCache: true},
+	})
+
+	// ensure that the commands are valid
+	for _, n := range dockerfile.AST.Children {
+		if !validCommitCommands[n.Value] {
+			return nil, errdefs.InvalidParameter(errors.Errorf("%s is not a valid change command", n.Value))
+		}
+	}
+
+	b.Stdout = ioutil.Discard
+	b.Stderr = ioutil.Discard
+	b.disableCommit = true
+
+	commands := []instructions.Command{}
+	for _, n := range dockerfile.AST.Children {
+		cmd, err := instructions.ParseCommand(n)
+		if err != nil {
+			return nil, errdefs.InvalidParameter(err)
+		}
+		commands = append(commands, cmd)
+	}
+
+	dispatchRequest := newDispatchRequest(b, dockerfile.EscapeToken, nil, NewBuildArgs(b.options.BuildArgs), newStagesBuildResults())
+	// We make mutations to the configuration, ensure we have a copy
+	dispatchRequest.state.runConfig = copyRunConfig(config)
+	dispatchRequest.state.imageID = config.Image
+	dispatchRequest.state.operatingSystem = os
+	for _, cmd := range commands {
+		err := dispatch(dispatchRequest, cmd)
+		if err != nil {
+			return nil, errdefs.InvalidParameter(err)
+		}
+		dispatchRequest.state.updateRunConfig()
+	}
+
+	return dispatchRequest.state.runConfig, nil
+}
+
+func convertMapToEnvList(m map[string]string) []string {
+	result := []string{}
+	for k, v := range m {
+		result = append(result, k+"="+v)
+	}
+	return result
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/builder_unix.go b/vendor/github.com/docker/docker/builder/dockerfile/builder_unix.go
new file mode 100644
index 0000000000..c4453459b3
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/builder_unix.go
@@ -0,0 +1,7 @@
+// +build !windows
+
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+func defaultShellForOS(os string) []string {
+	return []string{"/bin/sh", "-c"}
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/builder_windows.go b/vendor/github.com/docker/docker/builder/dockerfile/builder_windows.go
new file mode 100644
index 0000000000..fbafa52aec
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/builder_windows.go
@@ -0,0 +1,8 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+func defaultShellForOS(os string) []string {
+	if os == "linux" {
+		return []string{"/bin/sh", "-c"}
+	}
+	return []string{"cmd", "/S", "/C"}
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/clientsession.go b/vendor/github.com/docker/docker/builder/dockerfile/clientsession.go
new file mode 100644
index 0000000000..b48090d7b5
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/clientsession.go
@@ -0,0 +1,76 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"context"
+	"time"
+
+	"github.com/docker/docker/builder/fscache"
+	"github.com/docker/docker/builder/remotecontext"
+	"github.com/moby/buildkit/session"
+	"github.com/moby/buildkit/session/filesync"
+	"github.com/pkg/errors"
+)
+
+const sessionConnectTimeout = 5 * time.Second
+
+// ClientSessionTransport is a transport for copying files from docker client
+// to the daemon.
+type ClientSessionTransport struct{}
+
+// NewClientSessionTransport returns new ClientSessionTransport instance
+func NewClientSessionTransport() *ClientSessionTransport {
+	return &ClientSessionTransport{}
+}
+
+// Copy data from a remote to a destination directory.
+func (cst *ClientSessionTransport) Copy(ctx context.Context, id fscache.RemoteIdentifier, dest string, cu filesync.CacheUpdater) error {
+	csi, ok := id.(*ClientSessionSourceIdentifier)
+	if !ok {
+		return errors.New("invalid identifier for client session")
+	}
+
+	return filesync.FSSync(ctx, csi.caller, filesync.FSSendRequestOpt{
+		IncludePatterns: csi.includePatterns,
+		DestDir:         dest,
+		CacheUpdater:    cu,
+	})
+}
+
+// ClientSessionSourceIdentifier is an identifier that can be used for requesting
+// files from remote client
+type ClientSessionSourceIdentifier struct {
+	includePatterns []string
+	caller          session.Caller
+	uuid            string
+}
+
+// NewClientSessionSourceIdentifier returns new ClientSessionSourceIdentifier instance
+func NewClientSessionSourceIdentifier(ctx context.Context, sg SessionGetter, uuid string) (*ClientSessionSourceIdentifier, error) {
+	csi := &ClientSessionSourceIdentifier{
+		uuid: uuid,
+	}
+	caller, err := sg.Get(ctx, uuid)
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to get session for %s", uuid)
+	}
+
+	csi.caller = caller
+	return csi, nil
+}
+
+// Transport returns transport identifier for remote identifier
+func (csi *ClientSessionSourceIdentifier) Transport() string {
+	return remotecontext.ClientSessionRemote
+}
+
+// SharedKey returns shared key for remote identifier. Shared key is used
+// for finding the base for a repeated transfer.
+func (csi *ClientSessionSourceIdentifier) SharedKey() string {
+	return csi.caller.SharedKey()
+}
+
+// Key returns unique key for remote identifier. Requests with same key return
+// same data.
+func (csi *ClientSessionSourceIdentifier) Key() string {
+	return csi.uuid
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/containerbackend.go b/vendor/github.com/docker/docker/builder/dockerfile/containerbackend.go
new file mode 100644
index 0000000000..54adfb13f7
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/containerbackend.go
@@ -0,0 +1,146 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"context"
+	"fmt"
+	"io"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/builder"
+	containerpkg "github.com/docker/docker/container"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+type containerManager struct {
+	tmpContainers map[string]struct{}
+	backend       builder.ExecBackend
+}
+
+// newContainerManager creates a new container backend
+func newContainerManager(docker builder.ExecBackend) *containerManager {
+	return &containerManager{
+		backend:       docker,
+		tmpContainers: make(map[string]struct{}),
+	}
+}
+
+// Create a container
+func (c *containerManager) Create(runConfig *container.Config, hostConfig *container.HostConfig) (container.ContainerCreateCreatedBody, error) {
+	container, err := c.backend.ContainerCreate(types.ContainerCreateConfig{
+		Config:     runConfig,
+		HostConfig: hostConfig,
+	})
+	if err != nil {
+		return container, err
+	}
+	c.tmpContainers[container.ID] = struct{}{}
+	return container, nil
+}
+
+var errCancelled = errors.New("build cancelled")
+
+// Run a container by ID
+func (c *containerManager) Run(ctx context.Context, cID string, stdout, stderr io.Writer) (err error) {
+	attached := make(chan struct{})
+	errCh := make(chan error)
+	go func() {
+		errCh <- c.backend.ContainerAttachRaw(cID, nil, stdout, stderr, true, attached)
+	}()
+	select {
+	case err := <-errCh:
+		return err
+	case <-attached:
+	}
+
+	finished := make(chan struct{})
+	cancelErrCh := make(chan error, 1)
+	go func() {
+		select {
+		case <-ctx.Done():
+			logrus.Debugln("Build cancelled, killing and removing container:", cID)
+			c.backend.ContainerKill(cID, 0)
+			c.removeContainer(cID, stdout)
+			cancelErrCh <- errCancelled
+		case <-finished:
+			cancelErrCh <- nil
+		}
+	}()
+
+	if err := c.backend.ContainerStart(cID, nil, "", ""); err != nil {
+		close(finished)
+		logCancellationError(cancelErrCh, "error from ContainerStart: "+err.Error())
+		return err
+	}
+
+	// Block on reading output from container, stop on err or chan closed
+	if err := <-errCh; err != nil {
+		close(finished)
+		logCancellationError(cancelErrCh, "error from errCh: "+err.Error())
+		return err
+	}
+
+	waitC, err := c.backend.ContainerWait(ctx, cID, containerpkg.WaitConditionNotRunning)
+	if err != nil {
+		close(finished)
+		logCancellationError(cancelErrCh, fmt.Sprintf("unable to begin ContainerWait: %s", err))
+		return err
+	}
+
+	if status := <-waitC; status.ExitCode() != 0 {
+		close(finished)
+		logCancellationError(cancelErrCh,
+			fmt.Sprintf("a non-zero code from ContainerWait: %d", status.ExitCode()))
+		return &statusCodeError{code: status.ExitCode(), err: status.Err()}
+	}
+
+	close(finished)
+	return <-cancelErrCh
+}
+
+func logCancellationError(cancelErrCh chan error, msg string) {
+	if cancelErr := <-cancelErrCh; cancelErr != nil {
+		logrus.Debugf("Build cancelled (%v): %s", cancelErr, msg)
+	}
+}
+
+type statusCodeError struct {
+	code int
+	err  error
+}
+
+func (e *statusCodeError) Error() string {
+	if e.err == nil {
+		return ""
+	}
+	return e.err.Error()
+}
+
+func (e *statusCodeError) StatusCode() int {
+	return e.code
+}
+
+func (c *containerManager) removeContainer(containerID string, stdout io.Writer) error {
+	rmConfig := &types.ContainerRmConfig{
+		ForceRemove:  true,
+		RemoveVolume: true,
+	}
+	if err := c.backend.ContainerRm(containerID, rmConfig); err != nil {
+		fmt.Fprintf(stdout, "Error removing intermediate container %s: %v\n", stringid.TruncateID(containerID), err)
+		return err
+	}
+	return nil
+}
+
+// RemoveAll containers managed by this container manager
+func (c *containerManager) RemoveAll(stdout io.Writer) {
+	for containerID := range c.tmpContainers {
+		if err := c.removeContainer(containerID, stdout); err != nil {
+			return
+		}
+		delete(c.tmpContainers, containerID)
+		fmt.Fprintf(stdout, "Removing intermediate container %s\n", stringid.TruncateID(containerID))
+	}
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/copy.go b/vendor/github.com/docker/docker/builder/dockerfile/copy.go
new file mode 100644
index 0000000000..cb9f24d205
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/copy.go
@@ -0,0 +1,558 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"archive/tar"
+	"fmt"
+	"io"
+	"mime"
+	"net/http"
+	"net/url"
+	"os"
+	"path/filepath"
+	"runtime"
+	"sort"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/remotecontext"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/docker/pkg/progress"
+	"github.com/docker/docker/pkg/streamformatter"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/docker/pkg/urlutil"
+	"github.com/pkg/errors"
+)
+
+const unnamedFilename = "__unnamed__"
+
+type pathCache interface {
+	Load(key interface{}) (value interface{}, ok bool)
+	Store(key, value interface{})
+}
+
+// copyInfo is a data object which stores the metadata about each source file in
+// a copyInstruction
+type copyInfo struct {
+	root         containerfs.ContainerFS
+	path         string
+	hash         string
+	noDecompress bool
+}
+
+func (c copyInfo) fullPath() (string, error) {
+	return c.root.ResolveScopedPath(c.path, true)
+}
+
+func newCopyInfoFromSource(source builder.Source, path string, hash string) copyInfo {
+	return copyInfo{root: source.Root(), path: path, hash: hash}
+}
+
+func newCopyInfos(copyInfos ...copyInfo) []copyInfo {
+	return copyInfos
+}
+
+// copyInstruction is a fully parsed COPY or ADD command that is passed to
+// Builder.performCopy to copy files into the image filesystem
+type copyInstruction struct {
+	cmdName                 string
+	infos                   []copyInfo
+	dest                    string
+	chownStr                string
+	allowLocalDecompression bool
+}
+
+// copier reads a raw COPY or ADD command, fetches remote sources using a downloader,
+// and creates a copyInstruction
+type copier struct {
+	imageSource *imageMount
+	source      builder.Source
+	pathCache   pathCache
+	download    sourceDownloader
+	platform    string
+	// for cleanup. TODO: having copier.cleanup() is error prone and hard to
+	// follow. Code calling performCopy should manage the lifecycle of its params.
+	// Copier should take override source as input, not imageMount.
+	activeLayer builder.RWLayer
+	tmpPaths    []string
+}
+
+func copierFromDispatchRequest(req dispatchRequest, download sourceDownloader, imageSource *imageMount) copier {
+	return copier{
+		source:      req.source,
+		pathCache:   req.builder.pathCache,
+		download:    download,
+		imageSource: imageSource,
+		platform:    req.builder.options.Platform,
+	}
+}
+
+func (o *copier) createCopyInstruction(args []string, cmdName string) (copyInstruction, error) {
+	inst := copyInstruction{cmdName: cmdName}
+	last := len(args) - 1
+
+	// Work in platform-specific filepath semantics
+	inst.dest = fromSlash(args[last], o.platform)
+	separator := string(separator(o.platform))
+	infos, err := o.getCopyInfosForSourcePaths(args[0:last], inst.dest)
+	if err != nil {
+		return inst, errors.Wrapf(err, "%s failed", cmdName)
+	}
+	if len(infos) > 1 && !strings.HasSuffix(inst.dest, separator) {
+		return inst, errors.Errorf("When using %s with more than one source file, the destination must be a directory and end with a /", cmdName)
+	}
+	inst.infos = infos
+	return inst, nil
+}
+
+// getCopyInfosForSourcePaths iterates over the source files and calculate the info
+// needed to copy (e.g. hash value if cached)
+// The dest is used in case source is URL (and ends with "/")
+func (o *copier) getCopyInfosForSourcePaths(sources []string, dest string) ([]copyInfo, error) {
+	var infos []copyInfo
+	for _, orig := range sources {
+		subinfos, err := o.getCopyInfoForSourcePath(orig, dest)
+		if err != nil {
+			return nil, err
+		}
+		infos = append(infos, subinfos...)
+	}
+
+	if len(infos) == 0 {
+		return nil, errors.New("no source files were specified")
+	}
+	return infos, nil
+}
+
+func (o *copier) getCopyInfoForSourcePath(orig, dest string) ([]copyInfo, error) {
+	if !urlutil.IsURL(orig) {
+		return o.calcCopyInfo(orig, true)
+	}
+
+	remote, path, err := o.download(orig)
+	if err != nil {
+		return nil, err
+	}
+	// If path == "" then we are unable to determine filename from src
+	// We have to make sure dest is available
+	if path == "" {
+		if strings.HasSuffix(dest, "/") {
+			return nil, errors.Errorf("cannot determine filename for source %s", orig)
+		}
+		path = unnamedFilename
+	}
+	o.tmpPaths = append(o.tmpPaths, remote.Root().Path())
+
+	hash, err := remote.Hash(path)
+	ci := newCopyInfoFromSource(remote, path, hash)
+	ci.noDecompress = true // data from http shouldn't be extracted even on ADD
+	return newCopyInfos(ci), err
+}
+
+// Cleanup removes any temporary directories created as part of downloading
+// remote files.
+func (o *copier) Cleanup() {
+	for _, path := range o.tmpPaths {
+		os.RemoveAll(path)
+	}
+	o.tmpPaths = []string{}
+	if o.activeLayer != nil {
+		o.activeLayer.Release()
+		o.activeLayer = nil
+	}
+}
+
+// TODO: allowWildcards can probably be removed by refactoring this function further.
+func (o *copier) calcCopyInfo(origPath string, allowWildcards bool) ([]copyInfo, error) {
+	imageSource := o.imageSource
+
+	// TODO: do this when creating copier. Requires validateCopySourcePath
+	// (and other below) to be aware of the difference sources. Why is it only
+	// done on image Source?
+	if imageSource != nil {
+		var err error
+		rwLayer, err := imageSource.NewRWLayer()
+		if err != nil {
+			return nil, err
+		}
+		o.activeLayer = rwLayer
+
+		o.source, err = remotecontext.NewLazySource(rwLayer.Root())
+		if err != nil {
+			return nil, errors.Wrapf(err, "failed to create context for copy from %s", rwLayer.Root().Path())
+		}
+	}
+
+	if o.source == nil {
+		return nil, errors.Errorf("missing build context")
+	}
+
+	root := o.source.Root()
+
+	if err := validateCopySourcePath(imageSource, origPath, root.OS()); err != nil {
+		return nil, err
+	}
+
+	// Work in source OS specific filepath semantics
+	// For LCOW, this is NOT the daemon OS.
+	origPath = root.FromSlash(origPath)
+	origPath = strings.TrimPrefix(origPath, string(root.Separator()))
+	origPath = strings.TrimPrefix(origPath, "."+string(root.Separator()))
+
+	// Deal with wildcards
+	if allowWildcards && containsWildcards(origPath, root.OS()) {
+		return o.copyWithWildcards(origPath)
+	}
+
+	if imageSource != nil && imageSource.ImageID() != "" {
+		// return a cached copy if one exists
+		if h, ok := o.pathCache.Load(imageSource.ImageID() + origPath); ok {
+			return newCopyInfos(newCopyInfoFromSource(o.source, origPath, h.(string))), nil
+		}
+	}
+
+	// Deal with the single file case
+	copyInfo, err := copyInfoForFile(o.source, origPath)
+	switch {
+	case err != nil:
+		return nil, err
+	case copyInfo.hash != "":
+		o.storeInPathCache(imageSource, origPath, copyInfo.hash)
+		return newCopyInfos(copyInfo), err
+	}
+
+	// TODO: remove, handle dirs in Hash()
+	subfiles, err := walkSource(o.source, origPath)
+	if err != nil {
+		return nil, err
+	}
+
+	hash := hashStringSlice("dir", subfiles)
+	o.storeInPathCache(imageSource, origPath, hash)
+	return newCopyInfos(newCopyInfoFromSource(o.source, origPath, hash)), nil
+}
+
+func containsWildcards(name, platform string) bool {
+	isWindows := platform == "windows"
+	for i := 0; i < len(name); i++ {
+		ch := name[i]
+		if ch == '\\' && !isWindows {
+			i++
+		} else if ch == '*' || ch == '?' || ch == '[' {
+			return true
+		}
+	}
+	return false
+}
+
+func (o *copier) storeInPathCache(im *imageMount, path string, hash string) {
+	if im != nil {
+		o.pathCache.Store(im.ImageID()+path, hash)
+	}
+}
+
+func (o *copier) copyWithWildcards(origPath string) ([]copyInfo, error) {
+	root := o.source.Root()
+	var copyInfos []copyInfo
+	if err := root.Walk(root.Path(), func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+		rel, err := remotecontext.Rel(root, path)
+		if err != nil {
+			return err
+		}
+
+		if rel == "." {
+			return nil
+		}
+		if match, _ := root.Match(origPath, rel); !match {
+			return nil
+		}
+
+		// Note we set allowWildcards to false in case the name has
+		// a * in it
+		subInfos, err := o.calcCopyInfo(rel, false)
+		if err != nil {
+			return err
+		}
+		copyInfos = append(copyInfos, subInfos...)
+		return nil
+	}); err != nil {
+		return nil, err
+	}
+	return copyInfos, nil
+}
+
+func copyInfoForFile(source builder.Source, path string) (copyInfo, error) {
+	fi, err := remotecontext.StatAt(source, path)
+	if err != nil {
+		return copyInfo{}, err
+	}
+
+	if fi.IsDir() {
+		return copyInfo{}, nil
+	}
+	hash, err := source.Hash(path)
+	if err != nil {
+		return copyInfo{}, err
+	}
+	return newCopyInfoFromSource(source, path, "file:"+hash), nil
+}
+
+// TODO: dedupe with copyWithWildcards()
+func walkSource(source builder.Source, origPath string) ([]string, error) {
+	fp, err := remotecontext.FullPath(source, origPath)
+	if err != nil {
+		return nil, err
+	}
+	// Must be a dir
+	var subfiles []string
+	err = source.Root().Walk(fp, func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+		rel, err := remotecontext.Rel(source.Root(), path)
+		if err != nil {
+			return err
+		}
+		if rel == "." {
+			return nil
+		}
+		hash, err := source.Hash(rel)
+		if err != nil {
+			return nil
+		}
+		// we already checked handleHash above
+		subfiles = append(subfiles, hash)
+		return nil
+	})
+	if err != nil {
+		return nil, err
+	}
+
+	sort.Strings(subfiles)
+	return subfiles, nil
+}
+
+type sourceDownloader func(string) (builder.Source, string, error)
+
+func newRemoteSourceDownloader(output, stdout io.Writer) sourceDownloader {
+	return func(url string) (builder.Source, string, error) {
+		return downloadSource(output, stdout, url)
+	}
+}
+
+func errOnSourceDownload(_ string) (builder.Source, string, error) {
+	return nil, "", errors.New("source can't be a URL for COPY")
+}
+
+func getFilenameForDownload(path string, resp *http.Response) string {
+	// Guess filename based on source
+	if path != "" && !strings.HasSuffix(path, "/") {
+		if filename := filepath.Base(filepath.FromSlash(path)); filename != "" {
+			return filename
+		}
+	}
+
+	// Guess filename based on Content-Disposition
+	if contentDisposition := resp.Header.Get("Content-Disposition"); contentDisposition != "" {
+		if _, params, err := mime.ParseMediaType(contentDisposition); err == nil {
+			if params["filename"] != "" && !strings.HasSuffix(params["filename"], "/") {
+				if filename := filepath.Base(filepath.FromSlash(params["filename"])); filename != "" {
+					return filename
+				}
+			}
+		}
+	}
+	return ""
+}
+
+func downloadSource(output io.Writer, stdout io.Writer, srcURL string) (remote builder.Source, p string, err error) {
+	u, err := url.Parse(srcURL)
+	if err != nil {
+		return
+	}
+
+	resp, err := remotecontext.GetWithStatusError(srcURL)
+	if err != nil {
+		return
+	}
+
+	filename := getFilenameForDownload(u.Path, resp)
+
+	// Prepare file in a tmp dir
+	tmpDir, err := ioutils.TempDir("", "docker-remote")
+	if err != nil {
+		return
+	}
+	defer func() {
+		if err != nil {
+			os.RemoveAll(tmpDir)
+		}
+	}()
+	// If filename is empty, the returned filename will be "" but
+	// the tmp filename will be created as "__unnamed__"
+	tmpFileName := filename
+	if filename == "" {
+		tmpFileName = unnamedFilename
+	}
+	tmpFileName = filepath.Join(tmpDir, tmpFileName)
+	tmpFile, err := os.OpenFile(tmpFileName, os.O_RDWR|os.O_CREATE|os.O_EXCL, 0600)
+	if err != nil {
+		return
+	}
+
+	progressOutput := streamformatter.NewJSONProgressOutput(output, true)
+	progressReader := progress.NewProgressReader(resp.Body, progressOutput, resp.ContentLength, "", "Downloading")
+	// Download and dump result to tmp file
+	// TODO: add filehash directly
+	if _, err = io.Copy(tmpFile, progressReader); err != nil {
+		tmpFile.Close()
+		return
+	}
+	// TODO: how important is this random blank line to the output?
+	fmt.Fprintln(stdout)
+
+	// Set the mtime to the Last-Modified header value if present
+	// Otherwise just remove atime and mtime
+	mTime := time.Time{}
+
+	lastMod := resp.Header.Get("Last-Modified")
+	if lastMod != "" {
+		// If we can't parse it then just let it default to 'zero'
+		// otherwise use the parsed time value
+		if parsedMTime, err := http.ParseTime(lastMod); err == nil {
+			mTime = parsedMTime
+		}
+	}
+
+	tmpFile.Close()
+
+	if err = system.Chtimes(tmpFileName, mTime, mTime); err != nil {
+		return
+	}
+
+	lc, err := remotecontext.NewLazySource(containerfs.NewLocalContainerFS(tmpDir))
+	return lc, filename, err
+}
+
+type copyFileOptions struct {
+	decompress bool
+	chownPair  idtools.IDPair
+	archiver   Archiver
+}
+
+type copyEndpoint struct {
+	driver containerfs.Driver
+	path   string
+}
+
+func performCopyForInfo(dest copyInfo, source copyInfo, options copyFileOptions) error {
+	srcPath, err := source.fullPath()
+	if err != nil {
+		return err
+	}
+
+	destPath, err := dest.fullPath()
+	if err != nil {
+		return err
+	}
+
+	archiver := options.archiver
+
+	srcEndpoint := &copyEndpoint{driver: source.root, path: srcPath}
+	destEndpoint := &copyEndpoint{driver: dest.root, path: destPath}
+
+	src, err := source.root.Stat(srcPath)
+	if err != nil {
+		return errors.Wrapf(err, "source path not found")
+	}
+	if src.IsDir() {
+		return copyDirectory(archiver, srcEndpoint, destEndpoint, options.chownPair)
+	}
+	if options.decompress && isArchivePath(source.root, srcPath) && !source.noDecompress {
+		return archiver.UntarPath(srcPath, destPath)
+	}
+
+	destExistsAsDir, err := isExistingDirectory(destEndpoint)
+	if err != nil {
+		return err
+	}
+	// dest.path must be used because destPath has already been cleaned of any
+	// trailing slash
+	if endsInSlash(dest.root, dest.path) || destExistsAsDir {
+		// source.path must be used to get the correct filename when the source
+		// is a symlink
+		destPath = dest.root.Join(destPath, source.root.Base(source.path))
+		destEndpoint = &copyEndpoint{driver: dest.root, path: destPath}
+	}
+	return copyFile(archiver, srcEndpoint, destEndpoint, options.chownPair)
+}
+
+func isArchivePath(driver containerfs.ContainerFS, path string) bool {
+	file, err := driver.Open(path)
+	if err != nil {
+		return false
+	}
+	defer file.Close()
+	rdr, err := archive.DecompressStream(file)
+	if err != nil {
+		return false
+	}
+	r := tar.NewReader(rdr)
+	_, err = r.Next()
+	return err == nil
+}
+
+func copyDirectory(archiver Archiver, source, dest *copyEndpoint, chownPair idtools.IDPair) error {
+	destExists, err := isExistingDirectory(dest)
+	if err != nil {
+		return errors.Wrapf(err, "failed to query destination path")
+	}
+
+	if err := archiver.CopyWithTar(source.path, dest.path); err != nil {
+		return errors.Wrapf(err, "failed to copy directory")
+	}
+	// TODO: @gupta-ak. Investigate how LCOW permission mappings will work.
+	return fixPermissions(source.path, dest.path, chownPair, !destExists)
+}
+
+func copyFile(archiver Archiver, source, dest *copyEndpoint, chownPair idtools.IDPair) error {
+	if runtime.GOOS == "windows" && dest.driver.OS() == "linux" {
+		// LCOW
+		if err := dest.driver.MkdirAll(dest.driver.Dir(dest.path), 0755); err != nil {
+			return errors.Wrapf(err, "failed to create new directory")
+		}
+	} else {
+		if err := idtools.MkdirAllAndChownNew(filepath.Dir(dest.path), 0755, chownPair); err != nil {
+			// Normal containers
+			return errors.Wrapf(err, "failed to create new directory")
+		}
+	}
+
+	if err := archiver.CopyFileWithTar(source.path, dest.path); err != nil {
+		return errors.Wrapf(err, "failed to copy file")
+	}
+	// TODO: @gupta-ak. Investigate how LCOW permission mappings will work.
+	return fixPermissions(source.path, dest.path, chownPair, false)
+}
+
+func endsInSlash(driver containerfs.Driver, path string) bool {
+	return strings.HasSuffix(path, string(driver.Separator()))
+}
+
+// isExistingDirectory returns true if the path exists and is a directory
+func isExistingDirectory(point *copyEndpoint) (bool, error) {
+	destStat, err := point.driver.Stat(point.path)
+	switch {
+	case os.IsNotExist(err):
+		return false, nil
+	case err != nil:
+		return false, err
+	}
+	return destStat.IsDir(), nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/copy_unix.go b/vendor/github.com/docker/docker/builder/dockerfile/copy_unix.go
new file mode 100644
index 0000000000..15453452e5
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/copy_unix.go
@@ -0,0 +1,48 @@
+// +build !windows
+
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+)
+
+func fixPermissions(source, destination string, rootIDs idtools.IDPair, overrideSkip bool) error {
+	var (
+		skipChownRoot bool
+		err           error
+	)
+	if !overrideSkip {
+		destEndpoint := &copyEndpoint{driver: containerfs.NewLocalDriver(), path: destination}
+		skipChownRoot, err = isExistingDirectory(destEndpoint)
+		if err != nil {
+			return err
+		}
+	}
+
+	// We Walk on the source rather than on the destination because we don't
+	// want to change permissions on things we haven't created or modified.
+	return filepath.Walk(source, func(fullpath string, info os.FileInfo, err error) error {
+		// Do not alter the walk root iff. it existed before, as it doesn't fall under
+		// the domain of "things we should chown".
+		if skipChownRoot && source == fullpath {
+			return nil
+		}
+
+		// Path is prefixed by source: substitute with destination instead.
+		cleaned, err := filepath.Rel(source, fullpath)
+		if err != nil {
+			return err
+		}
+
+		fullpath = filepath.Join(destination, cleaned)
+		return os.Lchown(fullpath, rootIDs.UID, rootIDs.GID)
+	})
+}
+
+func validateCopySourcePath(imageSource *imageMount, origPath, platform string) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/copy_windows.go b/vendor/github.com/docker/docker/builder/dockerfile/copy_windows.go
new file mode 100644
index 0000000000..907c34407c
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/copy_windows.go
@@ -0,0 +1,43 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"errors"
+	"path/filepath"
+	"strings"
+
+	"github.com/docker/docker/pkg/idtools"
+)
+
+var pathBlacklist = map[string]bool{
+	"c:\\":        true,
+	"c:\\windows": true,
+}
+
+func fixPermissions(source, destination string, rootIDs idtools.IDPair, overrideSkip bool) error {
+	// chown is not supported on Windows
+	return nil
+}
+
+func validateCopySourcePath(imageSource *imageMount, origPath, platform string) error {
+	// validate windows paths from other images + LCOW
+	if imageSource == nil || platform != "windows" {
+		return nil
+	}
+
+	origPath = filepath.FromSlash(origPath)
+	p := strings.ToLower(filepath.Clean(origPath))
+	if !filepath.IsAbs(p) {
+		if filepath.VolumeName(p) != "" {
+			if p[len(p)-2:] == ":." { // case where clean returns weird c:. paths
+				p = p[:len(p)-1]
+			}
+			p += "\\"
+		} else {
+			p = filepath.Join("c:\\", p)
+		}
+	}
+	if _, blacklisted := pathBlacklist[p]; blacklisted {
+		return errors.New("copy from c:\\ or c:\\windows is not allowed on windows")
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/dispatchers.go b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers.go
new file mode 100644
index 0000000000..9dd7502453
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers.go
@@ -0,0 +1,571 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+// This file contains the dispatchers for each command. Note that
+// `nullDispatch` is not actually a command, but support for commands we parse
+// but do nothing with.
+//
+// See evaluator.go for a higher level discussion of the whole evaluator
+// package.
+
+import (
+	"bytes"
+	"fmt"
+	"runtime"
+	"sort"
+	"strings"
+
+	"github.com/docker/docker/api"
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/api/types/strslice"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/docker/docker/builder/dockerfile/parser"
+	"github.com/docker/docker/builder/dockerfile/shell"
+	"github.com/docker/docker/errdefs"
+	"github.com/docker/docker/image"
+	"github.com/docker/docker/pkg/jsonmessage"
+	"github.com/docker/docker/pkg/signal"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/go-connections/nat"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// ENV foo bar
+//
+// Sets the environment variable foo to bar, also makes interpolation
+// in the dockerfile available from the next statement on via ${foo}.
+//
+func dispatchEnv(d dispatchRequest, c *instructions.EnvCommand) error {
+	runConfig := d.state.runConfig
+	commitMessage := bytes.NewBufferString("ENV")
+	for _, e := range c.Env {
+		name := e.Key
+		newVar := e.String()
+
+		commitMessage.WriteString(" " + newVar)
+		gotOne := false
+		for i, envVar := range runConfig.Env {
+			envParts := strings.SplitN(envVar, "=", 2)
+			compareFrom := envParts[0]
+			if shell.EqualEnvKeys(compareFrom, name) {
+				runConfig.Env[i] = newVar
+				gotOne = true
+				break
+			}
+		}
+		if !gotOne {
+			runConfig.Env = append(runConfig.Env, newVar)
+		}
+	}
+	return d.builder.commit(d.state, commitMessage.String())
+}
+
+// MAINTAINER some text <maybe@an.email.address>
+//
+// Sets the maintainer metadata.
+func dispatchMaintainer(d dispatchRequest, c *instructions.MaintainerCommand) error {
+
+	d.state.maintainer = c.Maintainer
+	return d.builder.commit(d.state, "MAINTAINER "+c.Maintainer)
+}
+
+// LABEL some json data describing the image
+//
+// Sets the Label variable foo to bar,
+//
+func dispatchLabel(d dispatchRequest, c *instructions.LabelCommand) error {
+	if d.state.runConfig.Labels == nil {
+		d.state.runConfig.Labels = make(map[string]string)
+	}
+	commitStr := "LABEL"
+	for _, v := range c.Labels {
+		d.state.runConfig.Labels[v.Key] = v.Value
+		commitStr += " " + v.String()
+	}
+	return d.builder.commit(d.state, commitStr)
+}
+
+// ADD foo /path
+//
+// Add the file 'foo' to '/path'. Tarball and Remote URL (git, http) handling
+// exist here. If you do not wish to have this automatic handling, use COPY.
+//
+func dispatchAdd(d dispatchRequest, c *instructions.AddCommand) error {
+	downloader := newRemoteSourceDownloader(d.builder.Output, d.builder.Stdout)
+	copier := copierFromDispatchRequest(d, downloader, nil)
+	defer copier.Cleanup()
+
+	copyInstruction, err := copier.createCopyInstruction(c.SourcesAndDest, "ADD")
+	if err != nil {
+		return err
+	}
+	copyInstruction.chownStr = c.Chown
+	copyInstruction.allowLocalDecompression = true
+
+	return d.builder.performCopy(d.state, copyInstruction)
+}
+
+// COPY foo /path
+//
+// Same as 'ADD' but without the tar and remote url handling.
+//
+func dispatchCopy(d dispatchRequest, c *instructions.CopyCommand) error {
+	var im *imageMount
+	var err error
+	if c.From != "" {
+		im, err = d.getImageMount(c.From)
+		if err != nil {
+			return errors.Wrapf(err, "invalid from flag value %s", c.From)
+		}
+	}
+	copier := copierFromDispatchRequest(d, errOnSourceDownload, im)
+	defer copier.Cleanup()
+	copyInstruction, err := copier.createCopyInstruction(c.SourcesAndDest, "COPY")
+	if err != nil {
+		return err
+	}
+	copyInstruction.chownStr = c.Chown
+
+	return d.builder.performCopy(d.state, copyInstruction)
+}
+
+func (d *dispatchRequest) getImageMount(imageRefOrID string) (*imageMount, error) {
+	if imageRefOrID == "" {
+		// TODO: this could return the source in the default case as well?
+		return nil, nil
+	}
+
+	var localOnly bool
+	stage, err := d.stages.get(imageRefOrID)
+	if err != nil {
+		return nil, err
+	}
+	if stage != nil {
+		imageRefOrID = stage.Image
+		localOnly = true
+	}
+	return d.builder.imageSources.Get(imageRefOrID, localOnly, d.state.operatingSystem)
+}
+
+// FROM [--platform=platform] imagename[:tag | @digest] [AS build-stage-name]
+//
+func initializeStage(d dispatchRequest, cmd *instructions.Stage) error {
+	d.builder.imageProber.Reset()
+	if err := system.ValidatePlatform(&cmd.Platform); err != nil {
+		return err
+	}
+	image, err := d.getFromImage(d.shlex, cmd.BaseName, cmd.Platform.OS)
+	if err != nil {
+		return err
+	}
+	state := d.state
+	if err := state.beginStage(cmd.Name, image); err != nil {
+		return err
+	}
+	if len(state.runConfig.OnBuild) > 0 {
+		triggers := state.runConfig.OnBuild
+		state.runConfig.OnBuild = nil
+		return dispatchTriggeredOnBuild(d, triggers)
+	}
+	return nil
+}
+
+func dispatchTriggeredOnBuild(d dispatchRequest, triggers []string) error {
+	fmt.Fprintf(d.builder.Stdout, "# Executing %d build trigger", len(triggers))
+	if len(triggers) > 1 {
+		fmt.Fprint(d.builder.Stdout, "s")
+	}
+	fmt.Fprintln(d.builder.Stdout)
+	for _, trigger := range triggers {
+		d.state.updateRunConfig()
+		ast, err := parser.Parse(strings.NewReader(trigger))
+		if err != nil {
+			return err
+		}
+		if len(ast.AST.Children) != 1 {
+			return errors.New("onbuild trigger should be a single expression")
+		}
+		cmd, err := instructions.ParseCommand(ast.AST.Children[0])
+		if err != nil {
+			if instructions.IsUnknownInstruction(err) {
+				buildsFailed.WithValues(metricsUnknownInstructionError).Inc()
+			}
+			return err
+		}
+		err = dispatch(d, cmd)
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (d *dispatchRequest) getExpandedImageName(shlex *shell.Lex, name string) (string, error) {
+	substitutionArgs := []string{}
+	for key, value := range d.state.buildArgs.GetAllMeta() {
+		substitutionArgs = append(substitutionArgs, key+"="+value)
+	}
+
+	name, err := shlex.ProcessWord(name, substitutionArgs)
+	if err != nil {
+		return "", err
+	}
+	return name, nil
+}
+
+// getOsFromFlagsAndStage calculates the operating system if we need to pull an image.
+// stagePlatform contains the value supplied by optional `--platform=` on
+// a current FROM statement. b.builder.options.Platform contains the operating
+// system part of the optional flag passed in the API call (or CLI flag
+// through `docker build --platform=...`). Precedence is for an explicit
+// platform indication in the FROM statement.
+func (d *dispatchRequest) getOsFromFlagsAndStage(stageOS string) string {
+	switch {
+	case stageOS != "":
+		return stageOS
+	case d.builder.options.Platform != "":
+		// Note this is API "platform", but by this point, as the daemon is not
+		// multi-arch aware yet, it is guaranteed to only hold the OS part here.
+		return d.builder.options.Platform
+	default:
+		return runtime.GOOS
+	}
+}
+
+func (d *dispatchRequest) getImageOrStage(name string, stageOS string) (builder.Image, error) {
+	var localOnly bool
+	if im, ok := d.stages.getByName(name); ok {
+		name = im.Image
+		localOnly = true
+	}
+
+	os := d.getOsFromFlagsAndStage(stageOS)
+
+	// Windows cannot support a container with no base image unless it is LCOW.
+	if name == api.NoBaseImageSpecifier {
+		imageImage := &image.Image{}
+		imageImage.OS = runtime.GOOS
+		if runtime.GOOS == "windows" {
+			switch os {
+			case "windows", "":
+				return nil, errors.New("Windows does not support FROM scratch")
+			case "linux":
+				if !system.LCOWSupported() {
+					return nil, errors.New("Linux containers are not supported on this system")
+				}
+				imageImage.OS = "linux"
+			default:
+				return nil, errors.Errorf("operating system %q is not supported", os)
+			}
+		}
+		return builder.Image(imageImage), nil
+	}
+	imageMount, err := d.builder.imageSources.Get(name, localOnly, os)
+	if err != nil {
+		return nil, err
+	}
+	return imageMount.Image(), nil
+}
+func (d *dispatchRequest) getFromImage(shlex *shell.Lex, name string, stageOS string) (builder.Image, error) {
+	name, err := d.getExpandedImageName(shlex, name)
+	if err != nil {
+		return nil, err
+	}
+	return d.getImageOrStage(name, stageOS)
+}
+
+func dispatchOnbuild(d dispatchRequest, c *instructions.OnbuildCommand) error {
+
+	d.state.runConfig.OnBuild = append(d.state.runConfig.OnBuild, c.Expression)
+	return d.builder.commit(d.state, "ONBUILD "+c.Expression)
+}
+
+// WORKDIR /tmp
+//
+// Set the working directory for future RUN/CMD/etc statements.
+//
+func dispatchWorkdir(d dispatchRequest, c *instructions.WorkdirCommand) error {
+	runConfig := d.state.runConfig
+	var err error
+	runConfig.WorkingDir, err = normalizeWorkdir(d.state.operatingSystem, runConfig.WorkingDir, c.Path)
+	if err != nil {
+		return err
+	}
+
+	// For performance reasons, we explicitly do a create/mkdir now
+	// This avoids having an unnecessary expensive mount/unmount calls
+	// (on Windows in particular) during each container create.
+	// Prior to 1.13, the mkdir was deferred and not executed at this step.
+	if d.builder.disableCommit {
+		// Don't call back into the daemon if we're going through docker commit --change "WORKDIR /foo".
+		// We've already updated the runConfig and that's enough.
+		return nil
+	}
+
+	comment := "WORKDIR " + runConfig.WorkingDir
+	runConfigWithCommentCmd := copyRunConfig(runConfig, withCmdCommentString(comment, d.state.operatingSystem))
+	containerID, err := d.builder.probeAndCreate(d.state, runConfigWithCommentCmd)
+	if err != nil || containerID == "" {
+		return err
+	}
+	if err := d.builder.docker.ContainerCreateWorkdir(containerID); err != nil {
+		return err
+	}
+
+	return d.builder.commitContainer(d.state, containerID, runConfigWithCommentCmd)
+}
+
+func resolveCmdLine(cmd instructions.ShellDependantCmdLine, runConfig *container.Config, os string) []string {
+	result := cmd.CmdLine
+	if cmd.PrependShell && result != nil {
+		result = append(getShell(runConfig, os), result...)
+	}
+	return result
+}
+
+// RUN some command yo
+//
+// run a command and commit the image. Args are automatically prepended with
+// the current SHELL which defaults to 'sh -c' under linux or 'cmd /S /C' under
+// Windows, in the event there is only one argument The difference in processing:
+//
+// RUN echo hi          # sh -c echo hi       (Linux and LCOW)
+// RUN echo hi          # cmd /S /C echo hi   (Windows)
+// RUN [ "echo", "hi" ] # echo hi
+//
+func dispatchRun(d dispatchRequest, c *instructions.RunCommand) error {
+	if !system.IsOSSupported(d.state.operatingSystem) {
+		return system.ErrNotSupportedOperatingSystem
+	}
+	stateRunConfig := d.state.runConfig
+	cmdFromArgs := resolveCmdLine(c.ShellDependantCmdLine, stateRunConfig, d.state.operatingSystem)
+	buildArgs := d.state.buildArgs.FilterAllowed(stateRunConfig.Env)
+
+	saveCmd := cmdFromArgs
+	if len(buildArgs) > 0 {
+		saveCmd = prependEnvOnCmd(d.state.buildArgs, buildArgs, cmdFromArgs)
+	}
+
+	runConfigForCacheProbe := copyRunConfig(stateRunConfig,
+		withCmd(saveCmd),
+		withEntrypointOverride(saveCmd, nil))
+	hit, err := d.builder.probeCache(d.state, runConfigForCacheProbe)
+	if err != nil || hit {
+		return err
+	}
+
+	runConfig := copyRunConfig(stateRunConfig,
+		withCmd(cmdFromArgs),
+		withEnv(append(stateRunConfig.Env, buildArgs...)),
+		withEntrypointOverride(saveCmd, strslice.StrSlice{""}))
+
+	// set config as already being escaped, this prevents double escaping on windows
+	runConfig.ArgsEscaped = true
+
+	logrus.Debugf("[BUILDER] Command to be executed: %v", runConfig.Cmd)
+	cID, err := d.builder.create(runConfig)
+	if err != nil {
+		return err
+	}
+	if err := d.builder.containerManager.Run(d.builder.clientCtx, cID, d.builder.Stdout, d.builder.Stderr); err != nil {
+		if err, ok := err.(*statusCodeError); ok {
+			// TODO: change error type, because jsonmessage.JSONError assumes HTTP
+			msg := fmt.Sprintf(
+				"The command '%s' returned a non-zero code: %d",
+				strings.Join(runConfig.Cmd, " "), err.StatusCode())
+			if err.Error() != "" {
+				msg = fmt.Sprintf("%s: %s", msg, err.Error())
+			}
+			return &jsonmessage.JSONError{
+				Message: msg,
+				Code:    err.StatusCode(),
+			}
+		}
+		return err
+	}
+
+	return d.builder.commitContainer(d.state, cID, runConfigForCacheProbe)
+}
+
+// Derive the command to use for probeCache() and to commit in this container.
+// Note that we only do this if there are any build-time env vars.  Also, we
+// use the special argument "|#" at the start of the args array. This will
+// avoid conflicts with any RUN command since commands can not
+// start with | (vertical bar). The "#" (number of build envs) is there to
+// help ensure proper cache matches. We don't want a RUN command
+// that starts with "foo=abc" to be considered part of a build-time env var.
+//
+// remove any unreferenced built-in args from the environment variables.
+// These args are transparent so resulting image should be the same regardless
+// of the value.
+func prependEnvOnCmd(buildArgs *BuildArgs, buildArgVars []string, cmd strslice.StrSlice) strslice.StrSlice {
+	var tmpBuildEnv []string
+	for _, env := range buildArgVars {
+		key := strings.SplitN(env, "=", 2)[0]
+		if buildArgs.IsReferencedOrNotBuiltin(key) {
+			tmpBuildEnv = append(tmpBuildEnv, env)
+		}
+	}
+
+	sort.Strings(tmpBuildEnv)
+	tmpEnv := append([]string{fmt.Sprintf("|%d", len(tmpBuildEnv))}, tmpBuildEnv...)
+	return strslice.StrSlice(append(tmpEnv, cmd...))
+}
+
+// CMD foo
+//
+// Set the default command to run in the container (which may be empty).
+// Argument handling is the same as RUN.
+//
+func dispatchCmd(d dispatchRequest, c *instructions.CmdCommand) error {
+	runConfig := d.state.runConfig
+	cmd := resolveCmdLine(c.ShellDependantCmdLine, runConfig, d.state.operatingSystem)
+	runConfig.Cmd = cmd
+	// set config as already being escaped, this prevents double escaping on windows
+	runConfig.ArgsEscaped = true
+
+	if err := d.builder.commit(d.state, fmt.Sprintf("CMD %q", cmd)); err != nil {
+		return err
+	}
+
+	if len(c.ShellDependantCmdLine.CmdLine) != 0 {
+		d.state.cmdSet = true
+	}
+
+	return nil
+}
+
+// HEALTHCHECK foo
+//
+// Set the default healthcheck command to run in the container (which may be empty).
+// Argument handling is the same as RUN.
+//
+func dispatchHealthcheck(d dispatchRequest, c *instructions.HealthCheckCommand) error {
+	runConfig := d.state.runConfig
+	if runConfig.Healthcheck != nil {
+		oldCmd := runConfig.Healthcheck.Test
+		if len(oldCmd) > 0 && oldCmd[0] != "NONE" {
+			fmt.Fprintf(d.builder.Stdout, "Note: overriding previous HEALTHCHECK: %v\n", oldCmd)
+		}
+	}
+	runConfig.Healthcheck = c.Health
+	return d.builder.commit(d.state, fmt.Sprintf("HEALTHCHECK %q", runConfig.Healthcheck))
+}
+
+// ENTRYPOINT /usr/sbin/nginx
+//
+// Set the entrypoint to /usr/sbin/nginx. Will accept the CMD as the arguments
+// to /usr/sbin/nginx. Uses the default shell if not in JSON format.
+//
+// Handles command processing similar to CMD and RUN, only req.runConfig.Entrypoint
+// is initialized at newBuilder time instead of through argument parsing.
+//
+func dispatchEntrypoint(d dispatchRequest, c *instructions.EntrypointCommand) error {
+	runConfig := d.state.runConfig
+	cmd := resolveCmdLine(c.ShellDependantCmdLine, runConfig, d.state.operatingSystem)
+	runConfig.Entrypoint = cmd
+	if !d.state.cmdSet {
+		runConfig.Cmd = nil
+	}
+
+	return d.builder.commit(d.state, fmt.Sprintf("ENTRYPOINT %q", runConfig.Entrypoint))
+}
+
+// EXPOSE 6667/tcp 7000/tcp
+//
+// Expose ports for links and port mappings. This all ends up in
+// req.runConfig.ExposedPorts for runconfig.
+//
+func dispatchExpose(d dispatchRequest, c *instructions.ExposeCommand, envs []string) error {
+	// custom multi word expansion
+	// expose $FOO with FOO="80 443" is expanded as EXPOSE [80,443]. This is the only command supporting word to words expansion
+	// so the word processing has been de-generalized
+	ports := []string{}
+	for _, p := range c.Ports {
+		ps, err := d.shlex.ProcessWords(p, envs)
+		if err != nil {
+			return err
+		}
+		ports = append(ports, ps...)
+	}
+	c.Ports = ports
+
+	ps, _, err := nat.ParsePortSpecs(ports)
+	if err != nil {
+		return err
+	}
+
+	if d.state.runConfig.ExposedPorts == nil {
+		d.state.runConfig.ExposedPorts = make(nat.PortSet)
+	}
+	for p := range ps {
+		d.state.runConfig.ExposedPorts[p] = struct{}{}
+	}
+
+	return d.builder.commit(d.state, "EXPOSE "+strings.Join(c.Ports, " "))
+}
+
+// USER foo
+//
+// Set the user to 'foo' for future commands and when running the
+// ENTRYPOINT/CMD at container run time.
+//
+func dispatchUser(d dispatchRequest, c *instructions.UserCommand) error {
+	d.state.runConfig.User = c.User
+	return d.builder.commit(d.state, fmt.Sprintf("USER %v", c.User))
+}
+
+// VOLUME /foo
+//
+// Expose the volume /foo for use. Will also accept the JSON array form.
+//
+func dispatchVolume(d dispatchRequest, c *instructions.VolumeCommand) error {
+	if d.state.runConfig.Volumes == nil {
+		d.state.runConfig.Volumes = map[string]struct{}{}
+	}
+	for _, v := range c.Volumes {
+		if v == "" {
+			return errors.New("VOLUME specified can not be an empty string")
+		}
+		d.state.runConfig.Volumes[v] = struct{}{}
+	}
+	return d.builder.commit(d.state, fmt.Sprintf("VOLUME %v", c.Volumes))
+}
+
+// STOPSIGNAL signal
+//
+// Set the signal that will be used to kill the container.
+func dispatchStopSignal(d dispatchRequest, c *instructions.StopSignalCommand) error {
+
+	_, err := signal.ParseSignal(c.Signal)
+	if err != nil {
+		return errdefs.InvalidParameter(err)
+	}
+	d.state.runConfig.StopSignal = c.Signal
+	return d.builder.commit(d.state, fmt.Sprintf("STOPSIGNAL %v", c.Signal))
+}
+
+// ARG name[=value]
+//
+// Adds the variable foo to the trusted list of variables that can be passed
+// to builder using the --build-arg flag for expansion/substitution or passing to 'run'.
+// Dockerfile author may optionally set a default value of this variable.
+func dispatchArg(d dispatchRequest, c *instructions.ArgCommand) error {
+
+	commitStr := "ARG " + c.Key
+	if c.Value != nil {
+		commitStr += "=" + *c.Value
+	}
+
+	d.state.buildArgs.AddArg(c.Key, c.Value)
+	return d.builder.commit(d.state, commitStr)
+}
+
+// SHELL powershell -command
+//
+// Set the non-default shell to use.
+func dispatchShell(d dispatchRequest, c *instructions.ShellCommand) error {
+	d.state.runConfig.Shell = c.Shell
+	return d.builder.commit(d.state, fmt.Sprintf("SHELL %v", d.state.runConfig.Shell))
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_unix.go b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_unix.go
new file mode 100644
index 0000000000..b3ba380323
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_unix.go
@@ -0,0 +1,23 @@
+// +build !windows
+
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"errors"
+	"os"
+	"path/filepath"
+)
+
+// normalizeWorkdir normalizes a user requested working directory in a
+// platform semantically consistent way.
+func normalizeWorkdir(_ string, current string, requested string) (string, error) {
+	if requested == "" {
+		return "", errors.New("cannot normalize nothing")
+	}
+	current = filepath.FromSlash(current)
+	requested = filepath.FromSlash(requested)
+	if !filepath.IsAbs(requested) {
+		return filepath.Join(string(os.PathSeparator), current, requested), nil
+	}
+	return requested, nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_windows.go b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_windows.go
new file mode 100644
index 0000000000..7824d1169b
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/dispatchers_windows.go
@@ -0,0 +1,95 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"path"
+	"path/filepath"
+	"regexp"
+	"strings"
+
+	"github.com/docker/docker/pkg/system"
+)
+
+var pattern = regexp.MustCompile(`^[a-zA-Z]:\.$`)
+
+// normalizeWorkdir normalizes a user requested working directory in a
+// platform semantically consistent way.
+func normalizeWorkdir(platform string, current string, requested string) (string, error) {
+	if platform == "" {
+		platform = "windows"
+	}
+	if platform == "windows" {
+		return normalizeWorkdirWindows(current, requested)
+	}
+	return normalizeWorkdirUnix(current, requested)
+}
+
+// normalizeWorkdirUnix normalizes a user requested working directory in a
+// platform semantically consistent way.
+func normalizeWorkdirUnix(current string, requested string) (string, error) {
+	if requested == "" {
+		return "", errors.New("cannot normalize nothing")
+	}
+	current = strings.Replace(current, string(os.PathSeparator), "/", -1)
+	requested = strings.Replace(requested, string(os.PathSeparator), "/", -1)
+	if !path.IsAbs(requested) {
+		return path.Join(`/`, current, requested), nil
+	}
+	return requested, nil
+}
+
+// normalizeWorkdirWindows normalizes a user requested working directory in a
+// platform semantically consistent way.
+func normalizeWorkdirWindows(current string, requested string) (string, error) {
+	if requested == "" {
+		return "", errors.New("cannot normalize nothing")
+	}
+
+	// `filepath.Clean` will replace "" with "." so skip in that case
+	if current != "" {
+		current = filepath.Clean(current)
+	}
+	if requested != "" {
+		requested = filepath.Clean(requested)
+	}
+
+	// If either current or requested in Windows is:
+	// C:
+	// C:.
+	// then an error will be thrown as the definition for the above
+	// refers to `current directory on drive C:`
+	// Since filepath.Clean() will automatically normalize the above
+	// to `C:.`, we only need to check the last format
+	if pattern.MatchString(current) {
+		return "", fmt.Errorf("%s is not a directory. If you are specifying a drive letter, please add a trailing '\\'", current)
+	}
+	if pattern.MatchString(requested) {
+		return "", fmt.Errorf("%s is not a directory. If you are specifying a drive letter, please add a trailing '\\'", requested)
+	}
+
+	// Target semantics is C:\somefolder, specifically in the format:
+	// UPPERCASEDriveLetter-Colon-Backslash-FolderName. We are already
+	// guaranteed that `current`, if set, is consistent. This allows us to
+	// cope correctly with any of the following in a Dockerfile:
+	//	WORKDIR a                       --> C:\a
+	//	WORKDIR c:\\foo                 --> C:\foo
+	//	WORKDIR \\foo                   --> C:\foo
+	//	WORKDIR /foo                    --> C:\foo
+	//	WORKDIR c:\\foo \ WORKDIR bar   --> C:\foo --> C:\foo\bar
+	//	WORKDIR C:/foo \ WORKDIR bar    --> C:\foo --> C:\foo\bar
+	//	WORKDIR C:/foo \ WORKDIR \\bar  --> C:\foo --> C:\bar
+	//	WORKDIR /foo \ WORKDIR c:/bar   --> C:\foo --> C:\bar
+	if len(current) == 0 || system.IsAbs(requested) {
+		if (requested[0] == os.PathSeparator) ||
+			(len(requested) > 1 && string(requested[1]) != ":") ||
+			(len(requested) == 1) {
+			requested = filepath.Join(`C:\`, requested)
+		}
+	} else {
+		requested = filepath.Join(current, requested)
+	}
+	// Upper-case drive letter
+	return (strings.ToUpper(string(requested[0])) + requested[1:]), nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/evaluator.go b/vendor/github.com/docker/docker/builder/dockerfile/evaluator.go
new file mode 100644
index 0000000000..75073cec6d
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/evaluator.go
@@ -0,0 +1,250 @@
+// Package dockerfile is the evaluation step in the Dockerfile parse/evaluate pipeline.
+//
+// It incorporates a dispatch table based on the parser.Node values (see the
+// parser package for more information) that are yielded from the parser itself.
+// Calling newBuilder with the BuildOpts struct can be used to customize the
+// experience for execution purposes only. Parsing is controlled in the parser
+// package, and this division of responsibility should be respected.
+//
+// Please see the jump table targets for the actual invocations, most of which
+// will call out to the functions in internals.go to deal with their tasks.
+//
+// ONBUILD is a special case, which is covered in the onbuild() func in
+// dispatchers.go.
+//
+// The evaluator uses the concept of "steps", which are usually each processable
+// line in the Dockerfile. Each step is numbered and certain actions are taken
+// before and after each step, such as creating an image ID and removing temporary
+// containers and images. Note that ONBUILD creates a kinda-sorta "sub run" which
+// includes its own set of steps (usually only one of them).
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"reflect"
+	"runtime"
+	"strconv"
+	"strings"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/docker/docker/builder/dockerfile/shell"
+	"github.com/docker/docker/errdefs"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/docker/runconfig/opts"
+	"github.com/pkg/errors"
+)
+
+func dispatch(d dispatchRequest, cmd instructions.Command) (err error) {
+	if c, ok := cmd.(instructions.PlatformSpecific); ok {
+		err := c.CheckPlatform(d.state.operatingSystem)
+		if err != nil {
+			return errdefs.InvalidParameter(err)
+		}
+	}
+	runConfigEnv := d.state.runConfig.Env
+	envs := append(runConfigEnv, d.state.buildArgs.FilterAllowed(runConfigEnv)...)
+
+	if ex, ok := cmd.(instructions.SupportsSingleWordExpansion); ok {
+		err := ex.Expand(func(word string) (string, error) {
+			return d.shlex.ProcessWord(word, envs)
+		})
+		if err != nil {
+			return errdefs.InvalidParameter(err)
+		}
+	}
+
+	defer func() {
+		if d.builder.options.ForceRemove {
+			d.builder.containerManager.RemoveAll(d.builder.Stdout)
+			return
+		}
+		if d.builder.options.Remove && err == nil {
+			d.builder.containerManager.RemoveAll(d.builder.Stdout)
+			return
+		}
+	}()
+	switch c := cmd.(type) {
+	case *instructions.EnvCommand:
+		return dispatchEnv(d, c)
+	case *instructions.MaintainerCommand:
+		return dispatchMaintainer(d, c)
+	case *instructions.LabelCommand:
+		return dispatchLabel(d, c)
+	case *instructions.AddCommand:
+		return dispatchAdd(d, c)
+	case *instructions.CopyCommand:
+		return dispatchCopy(d, c)
+	case *instructions.OnbuildCommand:
+		return dispatchOnbuild(d, c)
+	case *instructions.WorkdirCommand:
+		return dispatchWorkdir(d, c)
+	case *instructions.RunCommand:
+		return dispatchRun(d, c)
+	case *instructions.CmdCommand:
+		return dispatchCmd(d, c)
+	case *instructions.HealthCheckCommand:
+		return dispatchHealthcheck(d, c)
+	case *instructions.EntrypointCommand:
+		return dispatchEntrypoint(d, c)
+	case *instructions.ExposeCommand:
+		return dispatchExpose(d, c, envs)
+	case *instructions.UserCommand:
+		return dispatchUser(d, c)
+	case *instructions.VolumeCommand:
+		return dispatchVolume(d, c)
+	case *instructions.StopSignalCommand:
+		return dispatchStopSignal(d, c)
+	case *instructions.ArgCommand:
+		return dispatchArg(d, c)
+	case *instructions.ShellCommand:
+		return dispatchShell(d, c)
+	}
+	return errors.Errorf("unsupported command type: %v", reflect.TypeOf(cmd))
+}
+
+// dispatchState is a data object which is modified by dispatchers
+type dispatchState struct {
+	runConfig       *container.Config
+	maintainer      string
+	cmdSet          bool
+	imageID         string
+	baseImage       builder.Image
+	stageName       string
+	buildArgs       *BuildArgs
+	operatingSystem string
+}
+
+func newDispatchState(baseArgs *BuildArgs) *dispatchState {
+	args := baseArgs.Clone()
+	args.ResetAllowed()
+	return &dispatchState{runConfig: &container.Config{}, buildArgs: args}
+}
+
+type stagesBuildResults struct {
+	flat    []*container.Config
+	indexed map[string]*container.Config
+}
+
+func newStagesBuildResults() *stagesBuildResults {
+	return &stagesBuildResults{
+		indexed: make(map[string]*container.Config),
+	}
+}
+
+func (r *stagesBuildResults) getByName(name string) (*container.Config, bool) {
+	c, ok := r.indexed[strings.ToLower(name)]
+	return c, ok
+}
+
+func (r *stagesBuildResults) validateIndex(i int) error {
+	if i == len(r.flat) {
+		return errors.New("refers to current build stage")
+	}
+	if i < 0 || i > len(r.flat) {
+		return errors.New("index out of bounds")
+	}
+	return nil
+}
+
+func (r *stagesBuildResults) get(nameOrIndex string) (*container.Config, error) {
+	if c, ok := r.getByName(nameOrIndex); ok {
+		return c, nil
+	}
+	ix, err := strconv.ParseInt(nameOrIndex, 10, 0)
+	if err != nil {
+		return nil, nil
+	}
+	if err := r.validateIndex(int(ix)); err != nil {
+		return nil, err
+	}
+	return r.flat[ix], nil
+}
+
+func (r *stagesBuildResults) checkStageNameAvailable(name string) error {
+	if name != "" {
+		if _, ok := r.getByName(name); ok {
+			return errors.Errorf("%s stage name already used", name)
+		}
+	}
+	return nil
+}
+
+func (r *stagesBuildResults) commitStage(name string, config *container.Config) error {
+	if name != "" {
+		if _, ok := r.getByName(name); ok {
+			return errors.Errorf("%s stage name already used", name)
+		}
+		r.indexed[strings.ToLower(name)] = config
+	}
+	r.flat = append(r.flat, config)
+	return nil
+}
+
+func commitStage(state *dispatchState, stages *stagesBuildResults) error {
+	return stages.commitStage(state.stageName, state.runConfig)
+}
+
+type dispatchRequest struct {
+	state   *dispatchState
+	shlex   *shell.Lex
+	builder *Builder
+	source  builder.Source
+	stages  *stagesBuildResults
+}
+
+func newDispatchRequest(builder *Builder, escapeToken rune, source builder.Source, buildArgs *BuildArgs, stages *stagesBuildResults) dispatchRequest {
+	return dispatchRequest{
+		state:   newDispatchState(buildArgs),
+		shlex:   shell.NewLex(escapeToken),
+		builder: builder,
+		source:  source,
+		stages:  stages,
+	}
+}
+
+func (s *dispatchState) updateRunConfig() {
+	s.runConfig.Image = s.imageID
+}
+
+// hasFromImage returns true if the builder has processed a `FROM <image>` line
+func (s *dispatchState) hasFromImage() bool {
+	return s.imageID != "" || (s.baseImage != nil && s.baseImage.ImageID() == "")
+}
+
+func (s *dispatchState) beginStage(stageName string, image builder.Image) error {
+	s.stageName = stageName
+	s.imageID = image.ImageID()
+	s.operatingSystem = image.OperatingSystem()
+	if s.operatingSystem == "" { // In case it isn't set
+		s.operatingSystem = runtime.GOOS
+	}
+	if !system.IsOSSupported(s.operatingSystem) {
+		return system.ErrNotSupportedOperatingSystem
+	}
+
+	if image.RunConfig() != nil {
+		// copy avoids referencing the same instance when 2 stages have the same base
+		s.runConfig = copyRunConfig(image.RunConfig())
+	} else {
+		s.runConfig = &container.Config{}
+	}
+	s.baseImage = image
+	s.setDefaultPath()
+	s.runConfig.OpenStdin = false
+	s.runConfig.StdinOnce = false
+	return nil
+}
+
+// Add the default PATH to runConfig.ENV if one exists for the operating system and there
+// is no PATH set. Note that Windows containers on Windows won't have one as it's set by HCS
+func (s *dispatchState) setDefaultPath() {
+	defaultPath := system.DefaultPathEnv(s.operatingSystem)
+	if defaultPath == "" {
+		return
+	}
+	envMap := opts.ConvertKVStringsToMap(s.runConfig.Env)
+	if _, ok := envMap["PATH"]; !ok {
+		s.runConfig.Env = append(s.runConfig.Env, "PATH="+defaultPath)
+	}
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/imagecontext.go b/vendor/github.com/docker/docker/builder/dockerfile/imagecontext.go
new file mode 100644
index 0000000000..53a4b9774b
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/imagecontext.go
@@ -0,0 +1,121 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"context"
+	"runtime"
+
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/builder"
+	dockerimage "github.com/docker/docker/image"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+type getAndMountFunc func(string, bool, string) (builder.Image, builder.ROLayer, error)
+
+// imageSources mounts images and provides a cache for mounted images. It tracks
+// all images so they can be unmounted at the end of the build.
+type imageSources struct {
+	byImageID map[string]*imageMount
+	mounts    []*imageMount
+	getImage  getAndMountFunc
+}
+
+func newImageSources(ctx context.Context, options builderOptions) *imageSources {
+	getAndMount := func(idOrRef string, localOnly bool, osForPull string) (builder.Image, builder.ROLayer, error) {
+		pullOption := backend.PullOptionNoPull
+		if !localOnly {
+			if options.Options.PullParent {
+				pullOption = backend.PullOptionForcePull
+			} else {
+				pullOption = backend.PullOptionPreferLocal
+			}
+		}
+		return options.Backend.GetImageAndReleasableLayer(ctx, idOrRef, backend.GetImageAndLayerOptions{
+			PullOption: pullOption,
+			AuthConfig: options.Options.AuthConfigs,
+			Output:     options.ProgressWriter.Output,
+			OS:         osForPull,
+		})
+	}
+
+	return &imageSources{
+		byImageID: make(map[string]*imageMount),
+		getImage:  getAndMount,
+	}
+}
+
+func (m *imageSources) Get(idOrRef string, localOnly bool, osForPull string) (*imageMount, error) {
+	if im, ok := m.byImageID[idOrRef]; ok {
+		return im, nil
+	}
+
+	image, layer, err := m.getImage(idOrRef, localOnly, osForPull)
+	if err != nil {
+		return nil, err
+	}
+	im := newImageMount(image, layer)
+	m.Add(im)
+	return im, nil
+}
+
+func (m *imageSources) Unmount() (retErr error) {
+	for _, im := range m.mounts {
+		if err := im.unmount(); err != nil {
+			logrus.Error(err)
+			retErr = err
+		}
+	}
+	return
+}
+
+func (m *imageSources) Add(im *imageMount) {
+	switch im.image {
+	case nil:
+		// set the OS for scratch images
+		os := runtime.GOOS
+		// Windows does not support scratch except for LCOW
+		if runtime.GOOS == "windows" {
+			os = "linux"
+		}
+		im.image = &dockerimage.Image{V1Image: dockerimage.V1Image{OS: os}}
+	default:
+		m.byImageID[im.image.ImageID()] = im
+	}
+	m.mounts = append(m.mounts, im)
+}
+
+// imageMount is a reference to an image that can be used as a builder.Source
+type imageMount struct {
+	image  builder.Image
+	source builder.Source
+	layer  builder.ROLayer
+}
+
+func newImageMount(image builder.Image, layer builder.ROLayer) *imageMount {
+	im := &imageMount{image: image, layer: layer}
+	return im
+}
+
+func (im *imageMount) unmount() error {
+	if im.layer == nil {
+		return nil
+	}
+	if err := im.layer.Release(); err != nil {
+		return errors.Wrapf(err, "failed to unmount previous build image %s", im.image.ImageID())
+	}
+	im.layer = nil
+	return nil
+}
+
+func (im *imageMount) Image() builder.Image {
+	return im.image
+}
+
+func (im *imageMount) NewRWLayer() (builder.RWLayer, error) {
+	return im.layer.NewRWLayer()
+}
+
+func (im *imageMount) ImageID() string {
+	return im.image.ImageID()
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/imageprobe.go b/vendor/github.com/docker/docker/builder/dockerfile/imageprobe.go
new file mode 100644
index 0000000000..6960bf8897
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/imageprobe.go
@@ -0,0 +1,63 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/builder"
+	"github.com/sirupsen/logrus"
+)
+
+// ImageProber exposes an Image cache to the Builder. It supports resetting a
+// cache.
+type ImageProber interface {
+	Reset()
+	Probe(parentID string, runConfig *container.Config) (string, error)
+}
+
+type imageProber struct {
+	cache       builder.ImageCache
+	reset       func() builder.ImageCache
+	cacheBusted bool
+}
+
+func newImageProber(cacheBuilder builder.ImageCacheBuilder, cacheFrom []string, noCache bool) ImageProber {
+	if noCache {
+		return &nopProber{}
+	}
+
+	reset := func() builder.ImageCache {
+		return cacheBuilder.MakeImageCache(cacheFrom)
+	}
+	return &imageProber{cache: reset(), reset: reset}
+}
+
+func (c *imageProber) Reset() {
+	c.cache = c.reset()
+	c.cacheBusted = false
+}
+
+// Probe checks if cache match can be found for current build instruction.
+// It returns the cachedID if there is a hit, and the empty string on miss
+func (c *imageProber) Probe(parentID string, runConfig *container.Config) (string, error) {
+	if c.cacheBusted {
+		return "", nil
+	}
+	cacheID, err := c.cache.GetCache(parentID, runConfig)
+	if err != nil {
+		return "", err
+	}
+	if len(cacheID) == 0 {
+		logrus.Debugf("[BUILDER] Cache miss: %s", runConfig.Cmd)
+		c.cacheBusted = true
+		return "", nil
+	}
+	logrus.Debugf("[BUILDER] Use cached version: %s", runConfig.Cmd)
+	return cacheID, nil
+}
+
+type nopProber struct{}
+
+func (c *nopProber) Reset() {}
+
+func (c *nopProber) Probe(_ string, _ *container.Config) (string, error) {
+	return "", nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/instructions/commands.go b/vendor/github.com/docker/docker/builder/dockerfile/instructions/commands.go
index ef435b27b3..9d864e5325 100644
--- a/vendor/github.com/docker/docker/builder/dockerfile/instructions/commands.go
+++ b/vendor/github.com/docker/docker/builder/dockerfile/instructions/commands.go
@@ -7,9 +7,10 @@ import (
 
 	"github.com/docker/docker/api/types/container"
 	"github.com/docker/docker/api/types/strslice"
+	specs "github.com/opencontainers/image-spec/specs-go/v1"
 )
 
-// KeyValuePair represent an arbitrary named value (useful in slice insted of map[string] string to preserve ordering)
+// KeyValuePair represent an arbitrary named value (useful in slice instead of map[string] string to preserve ordering)
 type KeyValuePair struct {
 	Key   string
 	Value string
@@ -195,7 +196,7 @@ func (c *WorkdirCommand) Expand(expander SingleWordExpander) error {
 	return nil
 }
 
-// ShellDependantCmdLine represents a cmdline optionaly prepended with the shell
+// ShellDependantCmdLine represents a cmdline optionally prepended with the shell
 type ShellDependantCmdLine struct {
 	CmdLine      strslice.StrSlice
 	PrependShell bool
@@ -361,6 +362,7 @@ type Stage struct {
 	Commands   []Command
 	BaseName   string
 	SourceCode string
+	Platform   specs.Platform
 }
 
 // AddCommand to the stage
@@ -388,7 +390,8 @@ func CurrentStage(s []Stage) (*Stage, error) {
 // HasStage looks for the presence of a given stage name
 func HasStage(s []Stage, name string) (int, bool) {
 	for i, stage := range s {
-		if stage.Name == name {
+		// Stage name is case-insensitive by design
+		if strings.EqualFold(stage.Name, name) {
 			return i, true
 		}
 	}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/instructions/parse.go b/vendor/github.com/docker/docker/builder/dockerfile/instructions/parse.go
index 9226f4d46e..e2d69a4887 100644
--- a/vendor/github.com/docker/docker/builder/dockerfile/instructions/parse.go
+++ b/vendor/github.com/docker/docker/builder/dockerfile/instructions/parse.go
@@ -12,6 +12,7 @@ import (
 	"github.com/docker/docker/api/types/strslice"
 	"github.com/docker/docker/builder/dockerfile/command"
 	"github.com/docker/docker/builder/dockerfile/parser"
+	"github.com/docker/docker/pkg/system"
 	"github.com/pkg/errors"
 )
 
@@ -271,16 +272,17 @@ func parseFrom(req parseRequest) (*Stage, error) {
 		return nil, err
 	}
 
+	flPlatform := req.flags.AddString("platform", "")
 	if err := req.flags.Parse(); err != nil {
 		return nil, err
 	}
 	code := strings.TrimSpace(req.original)
-
 	return &Stage{
 		BaseName:   req.args[0],
 		Name:       stageName,
 		SourceCode: code,
 		Commands:   []Command{},
+		Platform:   *system.ParsePlatform(flPlatform.Value),
 	}, nil
 
 }
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/internals.go b/vendor/github.com/docker/docker/builder/dockerfile/internals.go
new file mode 100644
index 0000000000..53748f0619
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/internals.go
@@ -0,0 +1,486 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+// internals for handling commands. Covers many areas and a lot of
+// non-contiguous functionality. Please read the comments.
+
+import (
+	"crypto/sha256"
+	"encoding/hex"
+	"fmt"
+	"io"
+	"os"
+	"path"
+	"path/filepath"
+	"runtime"
+	"strings"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/image"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/chrootarchive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/go-connections/nat"
+	"github.com/pkg/errors"
+)
+
+// Archiver defines an interface for copying files from one destination to
+// another using Tar/Untar.
+type Archiver interface {
+	TarUntar(src, dst string) error
+	UntarPath(src, dst string) error
+	CopyWithTar(src, dst string) error
+	CopyFileWithTar(src, dst string) error
+	IDMappings() *idtools.IDMappings
+}
+
+// The builder will use the following interfaces if the container fs implements
+// these for optimized copies to and from the container.
+type extractor interface {
+	ExtractArchive(src io.Reader, dst string, opts *archive.TarOptions) error
+}
+
+type archiver interface {
+	ArchivePath(src string, opts *archive.TarOptions) (io.ReadCloser, error)
+}
+
+// helper functions to get tar/untar func
+func untarFunc(i interface{}) containerfs.UntarFunc {
+	if ea, ok := i.(extractor); ok {
+		return ea.ExtractArchive
+	}
+	return chrootarchive.Untar
+}
+
+func tarFunc(i interface{}) containerfs.TarFunc {
+	if ap, ok := i.(archiver); ok {
+		return ap.ArchivePath
+	}
+	return archive.TarWithOptions
+}
+
+func (b *Builder) getArchiver(src, dst containerfs.Driver) Archiver {
+	t, u := tarFunc(src), untarFunc(dst)
+	return &containerfs.Archiver{
+		SrcDriver:     src,
+		DstDriver:     dst,
+		Tar:           t,
+		Untar:         u,
+		IDMappingsVar: b.idMappings,
+	}
+}
+
+func (b *Builder) commit(dispatchState *dispatchState, comment string) error {
+	if b.disableCommit {
+		return nil
+	}
+	if !dispatchState.hasFromImage() {
+		return errors.New("Please provide a source image with `from` prior to commit")
+	}
+
+	runConfigWithCommentCmd := copyRunConfig(dispatchState.runConfig, withCmdComment(comment, dispatchState.operatingSystem))
+	hit, err := b.probeCache(dispatchState, runConfigWithCommentCmd)
+	if err != nil || hit {
+		return err
+	}
+	id, err := b.create(runConfigWithCommentCmd)
+	if err != nil {
+		return err
+	}
+
+	return b.commitContainer(dispatchState, id, runConfigWithCommentCmd)
+}
+
+func (b *Builder) commitContainer(dispatchState *dispatchState, id string, containerConfig *container.Config) error {
+	if b.disableCommit {
+		return nil
+	}
+
+	commitCfg := backend.CommitConfig{
+		Author: dispatchState.maintainer,
+		// TODO: this copy should be done by Commit()
+		Config:          copyRunConfig(dispatchState.runConfig),
+		ContainerConfig: containerConfig,
+		ContainerID:     id,
+	}
+
+	imageID, err := b.docker.CommitBuildStep(commitCfg)
+	dispatchState.imageID = string(imageID)
+	return err
+}
+
+func (b *Builder) exportImage(state *dispatchState, layer builder.RWLayer, parent builder.Image, runConfig *container.Config) error {
+	newLayer, err := layer.Commit()
+	if err != nil {
+		return err
+	}
+
+	// add an image mount without an image so the layer is properly unmounted
+	// if there is an error before we can add the full mount with image
+	b.imageSources.Add(newImageMount(nil, newLayer))
+
+	parentImage, ok := parent.(*image.Image)
+	if !ok {
+		return errors.Errorf("unexpected image type")
+	}
+
+	newImage := image.NewChildImage(parentImage, image.ChildConfig{
+		Author:          state.maintainer,
+		ContainerConfig: runConfig,
+		DiffID:          newLayer.DiffID(),
+		Config:          copyRunConfig(state.runConfig),
+	}, parentImage.OS)
+
+	// TODO: it seems strange to marshal this here instead of just passing in the
+	// image struct
+	config, err := newImage.MarshalJSON()
+	if err != nil {
+		return errors.Wrap(err, "failed to encode image config")
+	}
+
+	exportedImage, err := b.docker.CreateImage(config, state.imageID)
+	if err != nil {
+		return errors.Wrapf(err, "failed to export image")
+	}
+
+	state.imageID = exportedImage.ImageID()
+	b.imageSources.Add(newImageMount(exportedImage, newLayer))
+	return nil
+}
+
+func (b *Builder) performCopy(state *dispatchState, inst copyInstruction) error {
+	srcHash := getSourceHashFromInfos(inst.infos)
+
+	var chownComment string
+	if inst.chownStr != "" {
+		chownComment = fmt.Sprintf("--chown=%s", inst.chownStr)
+	}
+	commentStr := fmt.Sprintf("%s %s%s in %s ", inst.cmdName, chownComment, srcHash, inst.dest)
+
+	// TODO: should this have been using origPaths instead of srcHash in the comment?
+	runConfigWithCommentCmd := copyRunConfig(
+		state.runConfig,
+		withCmdCommentString(commentStr, state.operatingSystem))
+	hit, err := b.probeCache(state, runConfigWithCommentCmd)
+	if err != nil || hit {
+		return err
+	}
+
+	imageMount, err := b.imageSources.Get(state.imageID, true, state.operatingSystem)
+	if err != nil {
+		return errors.Wrapf(err, "failed to get destination image %q", state.imageID)
+	}
+
+	rwLayer, err := imageMount.NewRWLayer()
+	if err != nil {
+		return err
+	}
+	defer rwLayer.Release()
+
+	destInfo, err := createDestInfo(state.runConfig.WorkingDir, inst, rwLayer, state.operatingSystem)
+	if err != nil {
+		return err
+	}
+
+	chownPair := b.idMappings.RootPair()
+	// if a chown was requested, perform the steps to get the uid, gid
+	// translated (if necessary because of user namespaces), and replace
+	// the root pair with the chown pair for copy operations
+	if inst.chownStr != "" {
+		chownPair, err = parseChownFlag(inst.chownStr, destInfo.root.Path(), b.idMappings)
+		if err != nil {
+			return errors.Wrapf(err, "unable to convert uid/gid chown string to host mapping")
+		}
+	}
+
+	for _, info := range inst.infos {
+		opts := copyFileOptions{
+			decompress: inst.allowLocalDecompression,
+			archiver:   b.getArchiver(info.root, destInfo.root),
+			chownPair:  chownPair,
+		}
+		if err := performCopyForInfo(destInfo, info, opts); err != nil {
+			return errors.Wrapf(err, "failed to copy files")
+		}
+	}
+	return b.exportImage(state, rwLayer, imageMount.Image(), runConfigWithCommentCmd)
+}
+
+func createDestInfo(workingDir string, inst copyInstruction, rwLayer builder.RWLayer, platform string) (copyInfo, error) {
+	// Twiddle the destination when it's a relative path - meaning, make it
+	// relative to the WORKINGDIR
+	dest, err := normalizeDest(workingDir, inst.dest, platform)
+	if err != nil {
+		return copyInfo{}, errors.Wrapf(err, "invalid %s", inst.cmdName)
+	}
+
+	return copyInfo{root: rwLayer.Root(), path: dest}, nil
+}
+
+// normalizeDest normalises the destination of a COPY/ADD command in a
+// platform semantically consistent way.
+func normalizeDest(workingDir, requested string, platform string) (string, error) {
+	dest := fromSlash(requested, platform)
+	endsInSlash := strings.HasSuffix(dest, string(separator(platform)))
+
+	if platform != "windows" {
+		if !path.IsAbs(requested) {
+			dest = path.Join("/", filepath.ToSlash(workingDir), dest)
+			// Make sure we preserve any trailing slash
+			if endsInSlash {
+				dest += "/"
+			}
+		}
+		return dest, nil
+	}
+
+	// We are guaranteed that the working directory is already consistent,
+	// However, Windows also has, for now, the limitation that ADD/COPY can
+	// only be done to the system drive, not any drives that might be present
+	// as a result of a bind mount.
+	//
+	// So... if the path requested is Linux-style absolute (/foo or \\foo),
+	// we assume it is the system drive. If it is a Windows-style absolute
+	// (DRIVE:\\foo), error if DRIVE is not C. And finally, ensure we
+	// strip any configured working directories drive letter so that it
+	// can be subsequently legitimately converted to a Windows volume-style
+	// pathname.
+
+	// Not a typo - filepath.IsAbs, not system.IsAbs on this next check as
+	// we only want to validate where the DriveColon part has been supplied.
+	if filepath.IsAbs(dest) {
+		if strings.ToUpper(string(dest[0])) != "C" {
+			return "", fmt.Errorf("Windows does not support destinations not on the system drive (C:)")
+		}
+		dest = dest[2:] // Strip the drive letter
+	}
+
+	// Cannot handle relative where WorkingDir is not the system drive.
+	if len(workingDir) > 0 {
+		if ((len(workingDir) > 1) && !system.IsAbs(workingDir[2:])) || (len(workingDir) == 1) {
+			return "", fmt.Errorf("Current WorkingDir %s is not platform consistent", workingDir)
+		}
+		if !system.IsAbs(dest) {
+			if string(workingDir[0]) != "C" {
+				return "", fmt.Errorf("Windows does not support relative paths when WORKDIR is not the system drive")
+			}
+			dest = filepath.Join(string(os.PathSeparator), workingDir[2:], dest)
+			// Make sure we preserve any trailing slash
+			if endsInSlash {
+				dest += string(os.PathSeparator)
+			}
+		}
+	}
+	return dest, nil
+}
+
+// For backwards compat, if there's just one info then use it as the
+// cache look-up string, otherwise hash 'em all into one
+func getSourceHashFromInfos(infos []copyInfo) string {
+	if len(infos) == 1 {
+		return infos[0].hash
+	}
+	var hashs []string
+	for _, info := range infos {
+		hashs = append(hashs, info.hash)
+	}
+	return hashStringSlice("multi", hashs)
+}
+
+func hashStringSlice(prefix string, slice []string) string {
+	hasher := sha256.New()
+	hasher.Write([]byte(strings.Join(slice, ",")))
+	return prefix + ":" + hex.EncodeToString(hasher.Sum(nil))
+}
+
+type runConfigModifier func(*container.Config)
+
+func withCmd(cmd []string) runConfigModifier {
+	return func(runConfig *container.Config) {
+		runConfig.Cmd = cmd
+	}
+}
+
+// withCmdComment sets Cmd to a nop comment string. See withCmdCommentString for
+// why there are two almost identical versions of this.
+func withCmdComment(comment string, platform string) runConfigModifier {
+	return func(runConfig *container.Config) {
+		runConfig.Cmd = append(getShell(runConfig, platform), "#(nop) ", comment)
+	}
+}
+
+// withCmdCommentString exists to maintain compatibility with older versions.
+// A few instructions (workdir, copy, add) used a nop comment that is a single arg
+// where as all the other instructions used a two arg comment string. This
+// function implements the single arg version.
+func withCmdCommentString(comment string, platform string) runConfigModifier {
+	return func(runConfig *container.Config) {
+		runConfig.Cmd = append(getShell(runConfig, platform), "#(nop) "+comment)
+	}
+}
+
+func withEnv(env []string) runConfigModifier {
+	return func(runConfig *container.Config) {
+		runConfig.Env = env
+	}
+}
+
+// withEntrypointOverride sets an entrypoint on runConfig if the command is
+// not empty. The entrypoint is left unmodified if command is empty.
+//
+// The dockerfile RUN instruction expect to run without an entrypoint
+// so the runConfig entrypoint needs to be modified accordingly. ContainerCreate
+// will change a []string{""} entrypoint to nil, so we probe the cache with the
+// nil entrypoint.
+func withEntrypointOverride(cmd []string, entrypoint []string) runConfigModifier {
+	return func(runConfig *container.Config) {
+		if len(cmd) > 0 {
+			runConfig.Entrypoint = entrypoint
+		}
+	}
+}
+
+func copyRunConfig(runConfig *container.Config, modifiers ...runConfigModifier) *container.Config {
+	copy := *runConfig
+	copy.Cmd = copyStringSlice(runConfig.Cmd)
+	copy.Env = copyStringSlice(runConfig.Env)
+	copy.Entrypoint = copyStringSlice(runConfig.Entrypoint)
+	copy.OnBuild = copyStringSlice(runConfig.OnBuild)
+	copy.Shell = copyStringSlice(runConfig.Shell)
+
+	if copy.Volumes != nil {
+		copy.Volumes = make(map[string]struct{}, len(runConfig.Volumes))
+		for k, v := range runConfig.Volumes {
+			copy.Volumes[k] = v
+		}
+	}
+
+	if copy.ExposedPorts != nil {
+		copy.ExposedPorts = make(nat.PortSet, len(runConfig.ExposedPorts))
+		for k, v := range runConfig.ExposedPorts {
+			copy.ExposedPorts[k] = v
+		}
+	}
+
+	if copy.Labels != nil {
+		copy.Labels = make(map[string]string, len(runConfig.Labels))
+		for k, v := range runConfig.Labels {
+			copy.Labels[k] = v
+		}
+	}
+
+	for _, modifier := range modifiers {
+		modifier(&copy)
+	}
+	return &copy
+}
+
+func copyStringSlice(orig []string) []string {
+	if orig == nil {
+		return nil
+	}
+	return append([]string{}, orig...)
+}
+
+// getShell is a helper function which gets the right shell for prefixing the
+// shell-form of RUN, ENTRYPOINT and CMD instructions
+func getShell(c *container.Config, os string) []string {
+	if 0 == len(c.Shell) {
+		return append([]string{}, defaultShellForOS(os)[:]...)
+	}
+	return append([]string{}, c.Shell[:]...)
+}
+
+func (b *Builder) probeCache(dispatchState *dispatchState, runConfig *container.Config) (bool, error) {
+	cachedID, err := b.imageProber.Probe(dispatchState.imageID, runConfig)
+	if cachedID == "" || err != nil {
+		return false, err
+	}
+	fmt.Fprint(b.Stdout, " ---> Using cache\n")
+
+	dispatchState.imageID = cachedID
+	return true, nil
+}
+
+var defaultLogConfig = container.LogConfig{Type: "none"}
+
+func (b *Builder) probeAndCreate(dispatchState *dispatchState, runConfig *container.Config) (string, error) {
+	if hit, err := b.probeCache(dispatchState, runConfig); err != nil || hit {
+		return "", err
+	}
+	// Set a log config to override any default value set on the daemon
+	hostConfig := &container.HostConfig{LogConfig: defaultLogConfig}
+	container, err := b.containerManager.Create(runConfig, hostConfig)
+	return container.ID, err
+}
+
+func (b *Builder) create(runConfig *container.Config) (string, error) {
+	hostConfig := hostConfigFromOptions(b.options)
+	container, err := b.containerManager.Create(runConfig, hostConfig)
+	if err != nil {
+		return "", err
+	}
+	// TODO: could this be moved into containerManager.Create() ?
+	for _, warning := range container.Warnings {
+		fmt.Fprintf(b.Stdout, " ---> [Warning] %s\n", warning)
+	}
+	fmt.Fprintf(b.Stdout, " ---> Running in %s\n", stringid.TruncateID(container.ID))
+	return container.ID, nil
+}
+
+func hostConfigFromOptions(options *types.ImageBuildOptions) *container.HostConfig {
+	resources := container.Resources{
+		CgroupParent: options.CgroupParent,
+		CPUShares:    options.CPUShares,
+		CPUPeriod:    options.CPUPeriod,
+		CPUQuota:     options.CPUQuota,
+		CpusetCpus:   options.CPUSetCPUs,
+		CpusetMems:   options.CPUSetMems,
+		Memory:       options.Memory,
+		MemorySwap:   options.MemorySwap,
+		Ulimits:      options.Ulimits,
+	}
+
+	hc := &container.HostConfig{
+		SecurityOpt: options.SecurityOpt,
+		Isolation:   options.Isolation,
+		ShmSize:     options.ShmSize,
+		Resources:   resources,
+		NetworkMode: container.NetworkMode(options.NetworkMode),
+		// Set a log config to override any default value set on the daemon
+		LogConfig:  defaultLogConfig,
+		ExtraHosts: options.ExtraHosts,
+	}
+
+	// For WCOW, the default of 20GB hard-coded in the platform
+	// is too small for builder scenarios where many users are
+	// using RUN statements to install large amounts of data.
+	// Use 127GB as that's the default size of a VHD in Hyper-V.
+	if runtime.GOOS == "windows" && options.Platform == "windows" {
+		hc.StorageOpt = make(map[string]string)
+		hc.StorageOpt["size"] = "127GB"
+	}
+
+	return hc
+}
+
+// fromSlash works like filepath.FromSlash but with a given OS platform field
+func fromSlash(path, platform string) string {
+	if platform == "windows" {
+		return strings.Replace(path, "/", "\\", -1)
+	}
+	return path
+}
+
+// separator returns a OS path separator for the given OS platform
+func separator(platform string) byte {
+	if platform == "windows" {
+		return '\\'
+	}
+	return '/'
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/internals_linux.go b/vendor/github.com/docker/docker/builder/dockerfile/internals_linux.go
new file mode 100644
index 0000000000..1014b16a21
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/internals_linux.go
@@ -0,0 +1,88 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"path/filepath"
+	"strconv"
+	"strings"
+
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/symlink"
+	lcUser "github.com/opencontainers/runc/libcontainer/user"
+	"github.com/pkg/errors"
+)
+
+func parseChownFlag(chown, ctrRootPath string, idMappings *idtools.IDMappings) (idtools.IDPair, error) {
+	var userStr, grpStr string
+	parts := strings.Split(chown, ":")
+	if len(parts) > 2 {
+		return idtools.IDPair{}, errors.New("invalid chown string format: " + chown)
+	}
+	if len(parts) == 1 {
+		// if no group specified, use the user spec as group as well
+		userStr, grpStr = parts[0], parts[0]
+	} else {
+		userStr, grpStr = parts[0], parts[1]
+	}
+
+	passwdPath, err := symlink.FollowSymlinkInScope(filepath.Join(ctrRootPath, "etc", "passwd"), ctrRootPath)
+	if err != nil {
+		return idtools.IDPair{}, errors.Wrapf(err, "can't resolve /etc/passwd path in container rootfs")
+	}
+	groupPath, err := symlink.FollowSymlinkInScope(filepath.Join(ctrRootPath, "etc", "group"), ctrRootPath)
+	if err != nil {
+		return idtools.IDPair{}, errors.Wrapf(err, "can't resolve /etc/group path in container rootfs")
+	}
+	uid, err := lookupUser(userStr, passwdPath)
+	if err != nil {
+		return idtools.IDPair{}, errors.Wrapf(err, "can't find uid for user "+userStr)
+	}
+	gid, err := lookupGroup(grpStr, groupPath)
+	if err != nil {
+		return idtools.IDPair{}, errors.Wrapf(err, "can't find gid for group "+grpStr)
+	}
+
+	// convert as necessary because of user namespaces
+	chownPair, err := idMappings.ToHost(idtools.IDPair{UID: uid, GID: gid})
+	if err != nil {
+		return idtools.IDPair{}, errors.Wrapf(err, "unable to convert uid/gid to host mapping")
+	}
+	return chownPair, nil
+}
+
+func lookupUser(userStr, filepath string) (int, error) {
+	// if the string is actually a uid integer, parse to int and return
+	// as we don't need to translate with the help of files
+	uid, err := strconv.Atoi(userStr)
+	if err == nil {
+		return uid, nil
+	}
+	users, err := lcUser.ParsePasswdFileFilter(filepath, func(u lcUser.User) bool {
+		return u.Name == userStr
+	})
+	if err != nil {
+		return 0, err
+	}
+	if len(users) == 0 {
+		return 0, errors.New("no such user: " + userStr)
+	}
+	return users[0].Uid, nil
+}
+
+func lookupGroup(groupStr, filepath string) (int, error) {
+	// if the string is actually a gid integer, parse to int and return
+	// as we don't need to translate with the help of files
+	gid, err := strconv.Atoi(groupStr)
+	if err == nil {
+		return gid, nil
+	}
+	groups, err := lcUser.ParseGroupFileFilter(filepath, func(g lcUser.Group) bool {
+		return g.Name == groupStr
+	})
+	if err != nil {
+		return 0, err
+	}
+	if len(groups) == 0 {
+		return 0, errors.New("no such group: " + groupStr)
+	}
+	return groups[0].Gid, nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/internals_windows.go b/vendor/github.com/docker/docker/builder/dockerfile/internals_windows.go
new file mode 100644
index 0000000000..26978b48cf
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/internals_windows.go
@@ -0,0 +1,7 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import "github.com/docker/docker/pkg/idtools"
+
+func parseChownFlag(chown, ctrRootPath string, idMappings *idtools.IDMappings) (idtools.IDPair, error) {
+	return idMappings.RootPair(), nil
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/metrics.go b/vendor/github.com/docker/docker/builder/dockerfile/metrics.go
new file mode 100644
index 0000000000..ceafa7ad62
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerfile/metrics.go
@@ -0,0 +1,44 @@
+package dockerfile // import "github.com/docker/docker/builder/dockerfile"
+
+import (
+	"github.com/docker/go-metrics"
+)
+
+var (
+	buildsTriggered metrics.Counter
+	buildsFailed    metrics.LabeledCounter
+)
+
+// Build metrics prometheus messages, these values must be initialized before
+// using them. See the example below in the "builds_failed" metric definition.
+const (
+	metricsDockerfileSyntaxError        = "dockerfile_syntax_error"
+	metricsDockerfileEmptyError         = "dockerfile_empty_error"
+	metricsCommandNotSupportedError     = "command_not_supported_error"
+	metricsErrorProcessingCommandsError = "error_processing_commands_error"
+	metricsBuildTargetNotReachableError = "build_target_not_reachable_error"
+	metricsMissingOnbuildArgumentsError = "missing_onbuild_arguments_error"
+	metricsUnknownInstructionError      = "unknown_instruction_error"
+	metricsBuildCanceled                = "build_canceled"
+)
+
+func init() {
+	buildMetrics := metrics.NewNamespace("builder", "", nil)
+
+	buildsTriggered = buildMetrics.NewCounter("builds_triggered", "Number of triggered image builds")
+	buildsFailed = buildMetrics.NewLabeledCounter("builds_failed", "Number of failed image builds", "reason")
+	for _, r := range []string{
+		metricsDockerfileSyntaxError,
+		metricsDockerfileEmptyError,
+		metricsCommandNotSupportedError,
+		metricsErrorProcessingCommandsError,
+		metricsBuildTargetNotReachableError,
+		metricsMissingOnbuildArgumentsError,
+		metricsUnknownInstructionError,
+		metricsBuildCanceled,
+	} {
+		buildsFailed.WithValues(r)
+	}
+
+	metrics.Register(buildMetrics)
+}
diff --git a/vendor/github.com/docker/docker/builder/dockerfile/parser/parser.go b/vendor/github.com/docker/docker/builder/dockerfile/parser/parser.go
index 277176ee1c..b065b8a4ea 100644
--- a/vendor/github.com/docker/docker/builder/dockerfile/parser/parser.go
+++ b/vendor/github.com/docker/docker/builder/dockerfile/parser/parser.go
@@ -7,13 +7,11 @@ import (
 	"fmt"
 	"io"
 	"regexp"
-	"runtime"
 	"strconv"
 	"strings"
 	"unicode"
 
 	"github.com/docker/docker/builder/dockerfile/command"
-	"github.com/docker/docker/pkg/system"
 	"github.com/pkg/errors"
 )
 
@@ -81,11 +79,10 @@ func (node *Node) AddChild(child *Node, startLine, endLine int) {
 }
 
 var (
-	dispatch             map[string]func(string, *Directive) (*Node, map[string]bool, error)
-	tokenWhitespace      = regexp.MustCompile(`[\t\v\f\r ]+`)
-	tokenEscapeCommand   = regexp.MustCompile(`^#[ \t]*escape[ \t]*=[ \t]*(?P<escapechar>.).*$`)
-	tokenPlatformCommand = regexp.MustCompile(`^#[ \t]*platform[ \t]*=[ \t]*(?P<platform>.*)$`)
-	tokenComment         = regexp.MustCompile(`^#.*$`)
+	dispatch           map[string]func(string, *Directive) (*Node, map[string]bool, error)
+	tokenWhitespace    = regexp.MustCompile(`[\t\v\f\r ]+`)
+	tokenEscapeCommand = regexp.MustCompile(`^#[ \t]*escape[ \t]*=[ \t]*(?P<escapechar>.).*$`)
+	tokenComment       = regexp.MustCompile(`^#.*$`)
 )
 
 // DefaultEscapeToken is the default escape token
@@ -95,11 +92,9 @@ const DefaultEscapeToken = '\\'
 // parsing directives.
 type Directive struct {
 	escapeToken           rune           // Current escape token
-	platformToken         string         // Current platform token
 	lineContinuationRegex *regexp.Regexp // Current line continuation regex
 	processingComplete    bool           // Whether we are done looking for directives
 	escapeSeen            bool           // Whether the escape directive has been seen
-	platformSeen          bool           // Whether the platform directive has been seen
 }
 
 // setEscapeToken sets the default token for escaping characters in a Dockerfile.
@@ -112,25 +107,9 @@ func (d *Directive) setEscapeToken(s string) error {
 	return nil
 }
 
-// setPlatformToken sets the default platform for pulling images in a Dockerfile.
-func (d *Directive) setPlatformToken(s string) error {
-	s = strings.ToLower(s)
-	valid := []string{runtime.GOOS}
-	if system.LCOWSupported() {
-		valid = append(valid, "linux")
-	}
-	for _, item := range valid {
-		if s == item {
-			d.platformToken = s
-			return nil
-		}
-	}
-	return fmt.Errorf("invalid PLATFORM '%s'. Must be one of %v", s, valid)
-}
-
-// possibleParserDirective looks for one or more parser directives '# escapeToken=<char>' and
-// '# platform=<string>'. Parser directives must precede any builder instruction
-// or other comments, and cannot be repeated.
+// possibleParserDirective looks for parser directives, eg '# escapeToken=<char>'.
+// Parser directives must precede any builder instruction or other comments,
+// and cannot be repeated.
 func (d *Directive) possibleParserDirective(line string) error {
 	if d.processingComplete {
 		return nil
@@ -149,22 +128,6 @@ func (d *Directive) possibleParserDirective(line string) error {
 		}
 	}
 
-	// Only recognise a platform token if LCOW is supported
-	if system.LCOWSupported() {
-		tpcMatch := tokenPlatformCommand.FindStringSubmatch(strings.ToLower(line))
-		if len(tpcMatch) != 0 {
-			for i, n := range tokenPlatformCommand.SubexpNames() {
-				if n == "platform" {
-					if d.platformSeen {
-						return errors.New("only one platform parser directive can be used")
-					}
-					d.platformSeen = true
-					return d.setPlatformToken(tpcMatch[i])
-				}
-			}
-		}
-	}
-
 	d.processingComplete = true
 	return nil
 }
@@ -237,10 +200,7 @@ func newNodeFromLine(line string, directive *Directive) (*Node, error) {
 type Result struct {
 	AST         *Node
 	EscapeToken rune
-	// TODO @jhowardmsft - see https://github.com/moby/moby/issues/34617
-	// This next field will be removed in a future update for LCOW support.
-	OS       string
-	Warnings []string
+	Warnings    []string
 }
 
 // PrintWarnings to the writer
@@ -320,7 +280,6 @@ func Parse(rwc io.Reader) (*Result, error) {
 		AST:         root,
 		Warnings:    warnings,
 		EscapeToken: d.escapeToken,
-		OS:          d.platformToken,
 	}, handleScannerError(scanner.Err())
 }
 
diff --git a/vendor/github.com/docker/docker/builder/dockerignore/dockerignore.go b/vendor/github.com/docker/docker/builder/dockerignore/dockerignore.go
new file mode 100644
index 0000000000..57f224afc8
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/dockerignore/dockerignore.go
@@ -0,0 +1,64 @@
+package dockerignore // import "github.com/docker/docker/builder/dockerignore"
+
+import (
+	"bufio"
+	"bytes"
+	"fmt"
+	"io"
+	"path/filepath"
+	"strings"
+)
+
+// ReadAll reads a .dockerignore file and returns the list of file patterns
+// to ignore. Note this will trim whitespace from each line as well
+// as use GO's "clean" func to get the shortest/cleanest path for each.
+func ReadAll(reader io.Reader) ([]string, error) {
+	if reader == nil {
+		return nil, nil
+	}
+
+	scanner := bufio.NewScanner(reader)
+	var excludes []string
+	currentLine := 0
+
+	utf8bom := []byte{0xEF, 0xBB, 0xBF}
+	for scanner.Scan() {
+		scannedBytes := scanner.Bytes()
+		// We trim UTF8 BOM
+		if currentLine == 0 {
+			scannedBytes = bytes.TrimPrefix(scannedBytes, utf8bom)
+		}
+		pattern := string(scannedBytes)
+		currentLine++
+		// Lines starting with # (comments) are ignored before processing
+		if strings.HasPrefix(pattern, "#") {
+			continue
+		}
+		pattern = strings.TrimSpace(pattern)
+		if pattern == "" {
+			continue
+		}
+		// normalize absolute paths to paths relative to the context
+		// (taking care of '!' prefix)
+		invert := pattern[0] == '!'
+		if invert {
+			pattern = strings.TrimSpace(pattern[1:])
+		}
+		if len(pattern) > 0 {
+			pattern = filepath.Clean(pattern)
+			pattern = filepath.ToSlash(pattern)
+			if len(pattern) > 1 && pattern[0] == '/' {
+				pattern = pattern[1:]
+			}
+		}
+		if invert {
+			pattern = "!" + pattern
+		}
+
+		excludes = append(excludes, pattern)
+	}
+	if err := scanner.Err(); err != nil {
+		return nil, fmt.Errorf("Error reading .dockerignore: %v", err)
+	}
+	return excludes, nil
+}
diff --git a/vendor/github.com/docker/docker/builder/fscache/fscache.go b/vendor/github.com/docker/docker/builder/fscache/fscache.go
new file mode 100644
index 0000000000..e80f3d5bce
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/fscache/fscache.go
@@ -0,0 +1,652 @@
+package fscache // import "github.com/docker/docker/builder/fscache"
+
+import (
+	"archive/tar"
+	"context"
+	"crypto/sha256"
+	"encoding/json"
+	"hash"
+	"os"
+	"path/filepath"
+	"sort"
+	"sync"
+	"time"
+
+	"github.com/boltdb/bolt"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/remotecontext"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/directory"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/pkg/tarsum"
+	"github.com/moby/buildkit/session/filesync"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"github.com/tonistiigi/fsutil"
+	"golang.org/x/sync/singleflight"
+)
+
+const dbFile = "fscache.db"
+const cacheKey = "cache"
+const metaKey = "meta"
+
+// Backend is a backing implementation for FSCache
+type Backend interface {
+	Get(id string) (string, error)
+	Remove(id string) error
+}
+
+// FSCache allows syncing remote resources to cached snapshots
+type FSCache struct {
+	opt        Opt
+	transports map[string]Transport
+	mu         sync.Mutex
+	g          singleflight.Group
+	store      *fsCacheStore
+}
+
+// Opt defines options for initializing FSCache
+type Opt struct {
+	Backend  Backend
+	Root     string // for storing local metadata
+	GCPolicy GCPolicy
+}
+
+// GCPolicy defines policy for garbage collection
+type GCPolicy struct {
+	MaxSize         uint64
+	MaxKeepDuration time.Duration
+}
+
+// NewFSCache returns new FSCache object
+func NewFSCache(opt Opt) (*FSCache, error) {
+	store, err := newFSCacheStore(opt)
+	if err != nil {
+		return nil, err
+	}
+	return &FSCache{
+		store:      store,
+		opt:        opt,
+		transports: make(map[string]Transport),
+	}, nil
+}
+
+// Transport defines a method for syncing remote data to FSCache
+type Transport interface {
+	Copy(ctx context.Context, id RemoteIdentifier, dest string, cs filesync.CacheUpdater) error
+}
+
+// RemoteIdentifier identifies a transfer request
+type RemoteIdentifier interface {
+	Key() string
+	SharedKey() string
+	Transport() string
+}
+
+// RegisterTransport registers a new transport method
+func (fsc *FSCache) RegisterTransport(id string, transport Transport) error {
+	fsc.mu.Lock()
+	defer fsc.mu.Unlock()
+	if _, ok := fsc.transports[id]; ok {
+		return errors.Errorf("transport %v already exists", id)
+	}
+	fsc.transports[id] = transport
+	return nil
+}
+
+// SyncFrom returns a source based on a remote identifier
+func (fsc *FSCache) SyncFrom(ctx context.Context, id RemoteIdentifier) (builder.Source, error) { // cacheOpt
+	trasportID := id.Transport()
+	fsc.mu.Lock()
+	transport, ok := fsc.transports[id.Transport()]
+	if !ok {
+		fsc.mu.Unlock()
+		return nil, errors.Errorf("invalid transport %s", trasportID)
+	}
+
+	logrus.Debugf("SyncFrom %s %s", id.Key(), id.SharedKey())
+	fsc.mu.Unlock()
+	sourceRef, err, _ := fsc.g.Do(id.Key(), func() (interface{}, error) {
+		var sourceRef *cachedSourceRef
+		sourceRef, err := fsc.store.Get(id.Key())
+		if err == nil {
+			return sourceRef, nil
+		}
+
+		// check for unused shared cache
+		sharedKey := id.SharedKey()
+		if sharedKey != "" {
+			r, err := fsc.store.Rebase(sharedKey, id.Key())
+			if err == nil {
+				sourceRef = r
+			}
+		}
+
+		if sourceRef == nil {
+			var err error
+			sourceRef, err = fsc.store.New(id.Key(), sharedKey)
+			if err != nil {
+				return nil, errors.Wrap(err, "failed to create remote context")
+			}
+		}
+
+		if err := syncFrom(ctx, sourceRef, transport, id); err != nil {
+			sourceRef.Release()
+			return nil, err
+		}
+		if err := sourceRef.resetSize(-1); err != nil {
+			return nil, err
+		}
+		return sourceRef, nil
+	})
+	if err != nil {
+		return nil, err
+	}
+	ref := sourceRef.(*cachedSourceRef)
+	if ref.src == nil { // failsafe
+		return nil, errors.Errorf("invalid empty pull")
+	}
+	wc := &wrappedContext{Source: ref.src, closer: func() error {
+		ref.Release()
+		return nil
+	}}
+	return wc, nil
+}
+
+// DiskUsage reports how much data is allocated by the cache
+func (fsc *FSCache) DiskUsage(ctx context.Context) (int64, error) {
+	return fsc.store.DiskUsage(ctx)
+}
+
+// Prune allows manually cleaning up the cache
+func (fsc *FSCache) Prune(ctx context.Context) (uint64, error) {
+	return fsc.store.Prune(ctx)
+}
+
+// Close stops the gc and closes the persistent db
+func (fsc *FSCache) Close() error {
+	return fsc.store.Close()
+}
+
+func syncFrom(ctx context.Context, cs *cachedSourceRef, transport Transport, id RemoteIdentifier) (retErr error) {
+	src := cs.src
+	if src == nil {
+		src = remotecontext.NewCachableSource(cs.Dir())
+	}
+
+	if !cs.cached {
+		if err := cs.storage.db.View(func(tx *bolt.Tx) error {
+			b := tx.Bucket([]byte(id.Key()))
+			dt := b.Get([]byte(cacheKey))
+			if dt != nil {
+				if err := src.UnmarshalBinary(dt); err != nil {
+					return err
+				}
+			} else {
+				return errors.Wrap(src.Scan(), "failed to scan cache records")
+			}
+			return nil
+		}); err != nil {
+			return err
+		}
+	}
+
+	dc := &detectChanges{f: src.HandleChange}
+
+	// todo: probably send a bucket to `Copy` and let it return source
+	// but need to make sure that tx is safe
+	if err := transport.Copy(ctx, id, cs.Dir(), dc); err != nil {
+		return errors.Wrapf(err, "failed to copy to %s", cs.Dir())
+	}
+
+	if !dc.supported {
+		if err := src.Scan(); err != nil {
+			return errors.Wrap(err, "failed to scan cache records after transfer")
+		}
+	}
+	cs.cached = true
+	cs.src = src
+	return cs.storage.db.Update(func(tx *bolt.Tx) error {
+		dt, err := src.MarshalBinary()
+		if err != nil {
+			return err
+		}
+		b := tx.Bucket([]byte(id.Key()))
+		return b.Put([]byte(cacheKey), dt)
+	})
+}
+
+type fsCacheStore struct {
+	mu       sync.Mutex
+	sources  map[string]*cachedSource
+	db       *bolt.DB
+	fs       Backend
+	gcTimer  *time.Timer
+	gcPolicy GCPolicy
+}
+
+// CachePolicy defines policy for keeping a resource in cache
+type CachePolicy struct {
+	Priority int
+	LastUsed time.Time
+}
+
+func defaultCachePolicy() CachePolicy {
+	return CachePolicy{Priority: 10, LastUsed: time.Now()}
+}
+
+func newFSCacheStore(opt Opt) (*fsCacheStore, error) {
+	if err := os.MkdirAll(opt.Root, 0700); err != nil {
+		return nil, err
+	}
+	p := filepath.Join(opt.Root, dbFile)
+	db, err := bolt.Open(p, 0600, nil)
+	if err != nil {
+		return nil, errors.Wrap(err, "failed to open database file %s")
+	}
+	s := &fsCacheStore{db: db, sources: make(map[string]*cachedSource), fs: opt.Backend, gcPolicy: opt.GCPolicy}
+	db.View(func(tx *bolt.Tx) error {
+		return tx.ForEach(func(name []byte, b *bolt.Bucket) error {
+			dt := b.Get([]byte(metaKey))
+			if dt == nil {
+				return nil
+			}
+			var sm sourceMeta
+			if err := json.Unmarshal(dt, &sm); err != nil {
+				return err
+			}
+			dir, err := s.fs.Get(sm.BackendID)
+			if err != nil {
+				return err // TODO: handle gracefully
+			}
+			source := &cachedSource{
+				refs:       make(map[*cachedSourceRef]struct{}),
+				id:         string(name),
+				dir:        dir,
+				sourceMeta: sm,
+				storage:    s,
+			}
+			s.sources[string(name)] = source
+			return nil
+		})
+	})
+
+	s.gcTimer = s.startPeriodicGC(5 * time.Minute)
+	return s, nil
+}
+
+func (s *fsCacheStore) startPeriodicGC(interval time.Duration) *time.Timer {
+	var t *time.Timer
+	t = time.AfterFunc(interval, func() {
+		if err := s.GC(); err != nil {
+			logrus.Errorf("build gc error: %v", err)
+		}
+		t.Reset(interval)
+	})
+	return t
+}
+
+func (s *fsCacheStore) Close() error {
+	s.gcTimer.Stop()
+	return s.db.Close()
+}
+
+func (s *fsCacheStore) New(id, sharedKey string) (*cachedSourceRef, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var ret *cachedSource
+	if err := s.db.Update(func(tx *bolt.Tx) error {
+		b, err := tx.CreateBucket([]byte(id))
+		if err != nil {
+			return err
+		}
+		backendID := stringid.GenerateRandomID()
+		dir, err := s.fs.Get(backendID)
+		if err != nil {
+			return err
+		}
+		source := &cachedSource{
+			refs: make(map[*cachedSourceRef]struct{}),
+			id:   id,
+			dir:  dir,
+			sourceMeta: sourceMeta{
+				BackendID:   backendID,
+				SharedKey:   sharedKey,
+				CachePolicy: defaultCachePolicy(),
+			},
+			storage: s,
+		}
+		dt, err := json.Marshal(source.sourceMeta)
+		if err != nil {
+			return err
+		}
+		if err := b.Put([]byte(metaKey), dt); err != nil {
+			return err
+		}
+		s.sources[id] = source
+		ret = source
+		return nil
+	}); err != nil {
+		return nil, err
+	}
+	return ret.getRef(), nil
+}
+
+func (s *fsCacheStore) Rebase(sharedKey, newid string) (*cachedSourceRef, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var ret *cachedSource
+	for id, snap := range s.sources {
+		if snap.SharedKey == sharedKey && len(snap.refs) == 0 {
+			if err := s.db.Update(func(tx *bolt.Tx) error {
+				if err := tx.DeleteBucket([]byte(id)); err != nil {
+					return err
+				}
+				b, err := tx.CreateBucket([]byte(newid))
+				if err != nil {
+					return err
+				}
+				snap.id = newid
+				snap.CachePolicy = defaultCachePolicy()
+				dt, err := json.Marshal(snap.sourceMeta)
+				if err != nil {
+					return err
+				}
+				if err := b.Put([]byte(metaKey), dt); err != nil {
+					return err
+				}
+				delete(s.sources, id)
+				s.sources[newid] = snap
+				return nil
+			}); err != nil {
+				return nil, err
+			}
+			ret = snap
+			break
+		}
+	}
+	if ret == nil {
+		return nil, errors.Errorf("no candidate for rebase")
+	}
+	return ret.getRef(), nil
+}
+
+func (s *fsCacheStore) Get(id string) (*cachedSourceRef, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	src, ok := s.sources[id]
+	if !ok {
+		return nil, errors.Errorf("not found")
+	}
+	return src.getRef(), nil
+}
+
+// DiskUsage reports how much data is allocated by the cache
+func (s *fsCacheStore) DiskUsage(ctx context.Context) (int64, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var size int64
+
+	for _, snap := range s.sources {
+		if len(snap.refs) == 0 {
+			ss, err := snap.getSize(ctx)
+			if err != nil {
+				return 0, err
+			}
+			size += ss
+		}
+	}
+	return size, nil
+}
+
+// Prune allows manually cleaning up the cache
+func (s *fsCacheStore) Prune(ctx context.Context) (uint64, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var size uint64
+
+	for id, snap := range s.sources {
+		select {
+		case <-ctx.Done():
+			logrus.Debugf("Cache prune operation cancelled, pruned size: %d", size)
+			// when the context is cancelled, only return current size and nil
+			return size, nil
+		default:
+		}
+		if len(snap.refs) == 0 {
+			ss, err := snap.getSize(ctx)
+			if err != nil {
+				return size, err
+			}
+			if err := s.delete(id); err != nil {
+				return size, errors.Wrapf(err, "failed to delete %s", id)
+			}
+			size += uint64(ss)
+		}
+	}
+	return size, nil
+}
+
+// GC runs a garbage collector on FSCache
+func (s *fsCacheStore) GC() error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	var size uint64
+
+	ctx := context.Background()
+	cutoff := time.Now().Add(-s.gcPolicy.MaxKeepDuration)
+	var blacklist []*cachedSource
+
+	for id, snap := range s.sources {
+		if len(snap.refs) == 0 {
+			if cutoff.After(snap.CachePolicy.LastUsed) {
+				if err := s.delete(id); err != nil {
+					return errors.Wrapf(err, "failed to delete %s", id)
+				}
+			} else {
+				ss, err := snap.getSize(ctx)
+				if err != nil {
+					return err
+				}
+				size += uint64(ss)
+				blacklist = append(blacklist, snap)
+			}
+		}
+	}
+
+	sort.Sort(sortableCacheSources(blacklist))
+	for _, snap := range blacklist {
+		if size <= s.gcPolicy.MaxSize {
+			break
+		}
+		ss, err := snap.getSize(ctx)
+		if err != nil {
+			return err
+		}
+		if err := s.delete(snap.id); err != nil {
+			return errors.Wrapf(err, "failed to delete %s", snap.id)
+		}
+		size -= uint64(ss)
+	}
+	return nil
+}
+
+// keep mu while calling this
+func (s *fsCacheStore) delete(id string) error {
+	src, ok := s.sources[id]
+	if !ok {
+		return nil
+	}
+	if len(src.refs) > 0 {
+		return errors.Errorf("can't delete %s because it has active references", id)
+	}
+	delete(s.sources, id)
+	if err := s.db.Update(func(tx *bolt.Tx) error {
+		return tx.DeleteBucket([]byte(id))
+	}); err != nil {
+		return err
+	}
+	return s.fs.Remove(src.BackendID)
+}
+
+type sourceMeta struct {
+	SharedKey   string
+	BackendID   string
+	CachePolicy CachePolicy
+	Size        int64
+}
+
+type cachedSource struct {
+	sourceMeta
+	refs    map[*cachedSourceRef]struct{}
+	id      string
+	dir     string
+	src     *remotecontext.CachableSource
+	storage *fsCacheStore
+	cached  bool // keep track if cache is up to date
+}
+
+type cachedSourceRef struct {
+	*cachedSource
+}
+
+func (cs *cachedSource) Dir() string {
+	return cs.dir
+}
+
+// hold storage lock before calling
+func (cs *cachedSource) getRef() *cachedSourceRef {
+	ref := &cachedSourceRef{cachedSource: cs}
+	cs.refs[ref] = struct{}{}
+	return ref
+}
+
+// hold storage lock before calling
+func (cs *cachedSource) getSize(ctx context.Context) (int64, error) {
+	if cs.sourceMeta.Size < 0 {
+		ss, err := directory.Size(ctx, cs.dir)
+		if err != nil {
+			return 0, err
+		}
+		if err := cs.resetSize(ss); err != nil {
+			return 0, err
+		}
+		return ss, nil
+	}
+	return cs.sourceMeta.Size, nil
+}
+
+func (cs *cachedSource) resetSize(val int64) error {
+	cs.sourceMeta.Size = val
+	return cs.saveMeta()
+}
+func (cs *cachedSource) saveMeta() error {
+	return cs.storage.db.Update(func(tx *bolt.Tx) error {
+		b := tx.Bucket([]byte(cs.id))
+		dt, err := json.Marshal(cs.sourceMeta)
+		if err != nil {
+			return err
+		}
+		return b.Put([]byte(metaKey), dt)
+	})
+}
+
+func (csr *cachedSourceRef) Release() error {
+	csr.cachedSource.storage.mu.Lock()
+	defer csr.cachedSource.storage.mu.Unlock()
+	delete(csr.cachedSource.refs, csr)
+	if len(csr.cachedSource.refs) == 0 {
+		go csr.cachedSource.storage.GC()
+	}
+	return nil
+}
+
+type detectChanges struct {
+	f         fsutil.ChangeFunc
+	supported bool
+}
+
+func (dc *detectChanges) HandleChange(kind fsutil.ChangeKind, path string, fi os.FileInfo, err error) error {
+	if dc == nil {
+		return nil
+	}
+	return dc.f(kind, path, fi, err)
+}
+
+func (dc *detectChanges) MarkSupported(v bool) {
+	if dc == nil {
+		return
+	}
+	dc.supported = v
+}
+
+func (dc *detectChanges) ContentHasher() fsutil.ContentHasher {
+	return newTarsumHash
+}
+
+type wrappedContext struct {
+	builder.Source
+	closer func() error
+}
+
+func (wc *wrappedContext) Close() error {
+	if err := wc.Source.Close(); err != nil {
+		return err
+	}
+	return wc.closer()
+}
+
+type sortableCacheSources []*cachedSource
+
+// Len is the number of elements in the collection.
+func (s sortableCacheSources) Len() int {
+	return len(s)
+}
+
+// Less reports whether the element with
+// index i should sort before the element with index j.
+func (s sortableCacheSources) Less(i, j int) bool {
+	return s[i].CachePolicy.LastUsed.Before(s[j].CachePolicy.LastUsed)
+}
+
+// Swap swaps the elements with indexes i and j.
+func (s sortableCacheSources) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func newTarsumHash(stat *fsutil.Stat) (hash.Hash, error) {
+	fi := &fsutil.StatInfo{stat}
+	p := stat.Path
+	if fi.IsDir() {
+		p += string(os.PathSeparator)
+	}
+	h, err := archive.FileInfoHeader(p, fi, stat.Linkname)
+	if err != nil {
+		return nil, err
+	}
+	h.Name = p
+	h.Uid = int(stat.Uid)
+	h.Gid = int(stat.Gid)
+	h.Linkname = stat.Linkname
+	if stat.Xattrs != nil {
+		h.Xattrs = make(map[string]string)
+		for k, v := range stat.Xattrs {
+			h.Xattrs[k] = string(v)
+		}
+	}
+
+	tsh := &tarsumHash{h: h, Hash: sha256.New()}
+	tsh.Reset()
+	return tsh, nil
+}
+
+// Reset resets the Hash to its initial state.
+func (tsh *tarsumHash) Reset() {
+	tsh.Hash.Reset()
+	tarsum.WriteV1Header(tsh.h, tsh.Hash)
+}
+
+type tarsumHash struct {
+	hash.Hash
+	h *tar.Header
+}
diff --git a/vendor/github.com/docker/docker/builder/fscache/naivedriver.go b/vendor/github.com/docker/docker/builder/fscache/naivedriver.go
new file mode 100644
index 0000000000..053509aecf
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/fscache/naivedriver.go
@@ -0,0 +1,28 @@
+package fscache // import "github.com/docker/docker/builder/fscache"
+
+import (
+	"os"
+	"path/filepath"
+
+	"github.com/pkg/errors"
+)
+
+// NewNaiveCacheBackend is a basic backend implementation for fscache
+func NewNaiveCacheBackend(root string) Backend {
+	return &naiveCacheBackend{root: root}
+}
+
+type naiveCacheBackend struct {
+	root string
+}
+
+func (tcb *naiveCacheBackend) Get(id string) (string, error) {
+	d := filepath.Join(tcb.root, id)
+	if err := os.MkdirAll(d, 0700); err != nil {
+		return "", errors.Wrapf(err, "failed to create tmp dir for %s", d)
+	}
+	return d, nil
+}
+func (tcb *naiveCacheBackend) Remove(id string) error {
+	return errors.WithStack(os.RemoveAll(filepath.Join(tcb.root, id)))
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/archive.go b/vendor/github.com/docker/docker/builder/remotecontext/archive.go
new file mode 100644
index 0000000000..6d247f945d
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/archive.go
@@ -0,0 +1,125 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"io"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/chrootarchive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/docker/pkg/tarsum"
+	"github.com/pkg/errors"
+)
+
+type archiveContext struct {
+	root containerfs.ContainerFS
+	sums tarsum.FileInfoSums
+}
+
+func (c *archiveContext) Close() error {
+	return c.root.RemoveAll(c.root.Path())
+}
+
+func convertPathError(err error, cleanpath string) error {
+	if err, ok := err.(*os.PathError); ok {
+		err.Path = cleanpath
+		return err
+	}
+	return err
+}
+
+type modifiableContext interface {
+	builder.Source
+	// Remove deletes the entry specified by `path`.
+	// It is usual for directory entries to delete all its subentries.
+	Remove(path string) error
+}
+
+// FromArchive returns a build source from a tar stream.
+//
+// It extracts the tar stream to a temporary folder that is deleted as soon as
+// the Context is closed.
+// As the extraction happens, a tarsum is calculated for every file, and the set of
+// all those sums then becomes the source of truth for all operations on this Context.
+//
+// Closing tarStream has to be done by the caller.
+func FromArchive(tarStream io.Reader) (builder.Source, error) {
+	root, err := ioutils.TempDir("", "docker-builder")
+	if err != nil {
+		return nil, err
+	}
+
+	// Assume local file system. Since it's coming from a tar file.
+	tsc := &archiveContext{root: containerfs.NewLocalContainerFS(root)}
+
+	// Make sure we clean-up upon error.  In the happy case the caller
+	// is expected to manage the clean-up
+	defer func() {
+		if err != nil {
+			tsc.Close()
+		}
+	}()
+
+	decompressedStream, err := archive.DecompressStream(tarStream)
+	if err != nil {
+		return nil, err
+	}
+
+	sum, err := tarsum.NewTarSum(decompressedStream, true, tarsum.Version1)
+	if err != nil {
+		return nil, err
+	}
+
+	err = chrootarchive.Untar(sum, root, nil)
+	if err != nil {
+		return nil, err
+	}
+
+	tsc.sums = sum.GetSums()
+	return tsc, nil
+}
+
+func (c *archiveContext) Root() containerfs.ContainerFS {
+	return c.root
+}
+
+func (c *archiveContext) Remove(path string) error {
+	_, fullpath, err := normalize(path, c.root)
+	if err != nil {
+		return err
+	}
+	return c.root.RemoveAll(fullpath)
+}
+
+func (c *archiveContext) Hash(path string) (string, error) {
+	cleanpath, fullpath, err := normalize(path, c.root)
+	if err != nil {
+		return "", err
+	}
+
+	rel, err := c.root.Rel(c.root.Path(), fullpath)
+	if err != nil {
+		return "", convertPathError(err, cleanpath)
+	}
+
+	// Use the checksum of the followed path(not the possible symlink) because
+	// this is the file that is actually copied.
+	if tsInfo := c.sums.GetFile(filepath.ToSlash(rel)); tsInfo != nil {
+		return tsInfo.Sum(), nil
+	}
+	// We set sum to path by default for the case where GetFile returns nil.
+	// The usual case is if relative path is empty.
+	return path, nil // backwards compat TODO: see if really needed
+}
+
+func normalize(path string, root containerfs.ContainerFS) (cleanPath, fullPath string, err error) {
+	cleanPath = root.Clean(string(root.Separator()) + path)[1:]
+	fullPath, err = root.ResolveScopedPath(path, true)
+	if err != nil {
+		return "", "", errors.Wrapf(err, "forbidden path outside the build context: %s (%s)", path, cleanPath)
+	}
+	return
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/detect.go b/vendor/github.com/docker/docker/builder/remotecontext/detect.go
new file mode 100644
index 0000000000..af4e20f886
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/detect.go
@@ -0,0 +1,180 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"os"
+	"strings"
+
+	"github.com/containerd/continuity/driver"
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/dockerfile/parser"
+	"github.com/docker/docker/builder/dockerignore"
+	"github.com/docker/docker/pkg/fileutils"
+	"github.com/docker/docker/pkg/urlutil"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// ClientSessionRemote is identifier for client-session context transport
+const ClientSessionRemote = "client-session"
+
+// Detect returns a context and dockerfile from remote location or local
+// archive. progressReader is only used if remoteURL is actually a URL
+// (not empty, and not a Git endpoint).
+func Detect(config backend.BuildConfig) (remote builder.Source, dockerfile *parser.Result, err error) {
+	remoteURL := config.Options.RemoteContext
+	dockerfilePath := config.Options.Dockerfile
+
+	switch {
+	case remoteURL == "":
+		remote, dockerfile, err = newArchiveRemote(config.Source, dockerfilePath)
+	case remoteURL == ClientSessionRemote:
+		res, err := parser.Parse(config.Source)
+		if err != nil {
+			return nil, nil, err
+		}
+		return nil, res, nil
+	case urlutil.IsGitURL(remoteURL):
+		remote, dockerfile, err = newGitRemote(remoteURL, dockerfilePath)
+	case urlutil.IsURL(remoteURL):
+		remote, dockerfile, err = newURLRemote(remoteURL, dockerfilePath, config.ProgressWriter.ProgressReaderFunc)
+	default:
+		err = fmt.Errorf("remoteURL (%s) could not be recognized as URL", remoteURL)
+	}
+	return
+}
+
+func newArchiveRemote(rc io.ReadCloser, dockerfilePath string) (builder.Source, *parser.Result, error) {
+	defer rc.Close()
+	c, err := FromArchive(rc)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	return withDockerfileFromContext(c.(modifiableContext), dockerfilePath)
+}
+
+func withDockerfileFromContext(c modifiableContext, dockerfilePath string) (builder.Source, *parser.Result, error) {
+	df, err := openAt(c, dockerfilePath)
+	if err != nil {
+		if os.IsNotExist(err) {
+			if dockerfilePath == builder.DefaultDockerfileName {
+				lowercase := strings.ToLower(dockerfilePath)
+				if _, err := StatAt(c, lowercase); err == nil {
+					return withDockerfileFromContext(c, lowercase)
+				}
+			}
+			return nil, nil, errors.Errorf("Cannot locate specified Dockerfile: %s", dockerfilePath) // backwards compatible error
+		}
+		c.Close()
+		return nil, nil, err
+	}
+
+	res, err := readAndParseDockerfile(dockerfilePath, df)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	df.Close()
+
+	if err := removeDockerfile(c, dockerfilePath); err != nil {
+		c.Close()
+		return nil, nil, err
+	}
+
+	return c, res, nil
+}
+
+func newGitRemote(gitURL string, dockerfilePath string) (builder.Source, *parser.Result, error) {
+	c, err := MakeGitContext(gitURL) // TODO: change this to NewLazySource
+	if err != nil {
+		return nil, nil, err
+	}
+	return withDockerfileFromContext(c.(modifiableContext), dockerfilePath)
+}
+
+func newURLRemote(url string, dockerfilePath string, progressReader func(in io.ReadCloser) io.ReadCloser) (builder.Source, *parser.Result, error) {
+	contentType, content, err := downloadRemote(url)
+	if err != nil {
+		return nil, nil, err
+	}
+	defer content.Close()
+
+	switch contentType {
+	case mimeTypes.TextPlain:
+		res, err := parser.Parse(progressReader(content))
+		return nil, res, err
+	default:
+		source, err := FromArchive(progressReader(content))
+		if err != nil {
+			return nil, nil, err
+		}
+		return withDockerfileFromContext(source.(modifiableContext), dockerfilePath)
+	}
+}
+
+func removeDockerfile(c modifiableContext, filesToRemove ...string) error {
+	f, err := openAt(c, ".dockerignore")
+	// Note that a missing .dockerignore file isn't treated as an error
+	switch {
+	case os.IsNotExist(err):
+		return nil
+	case err != nil:
+		return err
+	}
+	excludes, err := dockerignore.ReadAll(f)
+	if err != nil {
+		f.Close()
+		return err
+	}
+	f.Close()
+	filesToRemove = append([]string{".dockerignore"}, filesToRemove...)
+	for _, fileToRemove := range filesToRemove {
+		if rm, _ := fileutils.Matches(fileToRemove, excludes); rm {
+			if err := c.Remove(fileToRemove); err != nil {
+				logrus.Errorf("failed to remove %s: %v", fileToRemove, err)
+			}
+		}
+	}
+	return nil
+}
+
+func readAndParseDockerfile(name string, rc io.Reader) (*parser.Result, error) {
+	br := bufio.NewReader(rc)
+	if _, err := br.Peek(1); err != nil {
+		if err == io.EOF {
+			return nil, errors.Errorf("the Dockerfile (%s) cannot be empty", name)
+		}
+		return nil, errors.Wrap(err, "unexpected error reading Dockerfile")
+	}
+	return parser.Parse(br)
+}
+
+func openAt(remote builder.Source, path string) (driver.File, error) {
+	fullPath, err := FullPath(remote, path)
+	if err != nil {
+		return nil, err
+	}
+	return remote.Root().Open(fullPath)
+}
+
+// StatAt is a helper for calling Stat on a path from a source
+func StatAt(remote builder.Source, path string) (os.FileInfo, error) {
+	fullPath, err := FullPath(remote, path)
+	if err != nil {
+		return nil, err
+	}
+	return remote.Root().Stat(fullPath)
+}
+
+// FullPath is a helper for getting a full path for a path from a source
+func FullPath(remote builder.Source, path string) (string, error) {
+	fullPath, err := remote.Root().ResolveScopedPath(path, true)
+	if err != nil {
+		return "", fmt.Errorf("Forbidden path outside the build context: %s (%s)", path, fullPath) // backwards compat with old error
+	}
+	return fullPath, nil
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/filehash.go b/vendor/github.com/docker/docker/builder/remotecontext/filehash.go
new file mode 100644
index 0000000000..3565dd8279
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/filehash.go
@@ -0,0 +1,45 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"archive/tar"
+	"crypto/sha256"
+	"hash"
+	"os"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/tarsum"
+)
+
+// NewFileHash returns new hash that is used for the builder cache keys
+func NewFileHash(path, name string, fi os.FileInfo) (hash.Hash, error) {
+	var link string
+	if fi.Mode()&os.ModeSymlink != 0 {
+		var err error
+		link, err = os.Readlink(path)
+		if err != nil {
+			return nil, err
+		}
+	}
+	hdr, err := archive.FileInfoHeader(name, fi, link)
+	if err != nil {
+		return nil, err
+	}
+	if err := archive.ReadSecurityXattrToTarHeader(path, hdr); err != nil {
+		return nil, err
+	}
+	tsh := &tarsumHash{hdr: hdr, Hash: sha256.New()}
+	tsh.Reset() // initialize header
+	return tsh, nil
+}
+
+type tarsumHash struct {
+	hash.Hash
+	hdr *tar.Header
+}
+
+// Reset resets the Hash to its initial state.
+func (tsh *tarsumHash) Reset() {
+	// comply with hash.Hash and reset to the state hash had before any writes
+	tsh.Hash.Reset()
+	tarsum.WriteV1Header(tsh.hdr, tsh.Hash)
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/generate.go b/vendor/github.com/docker/docker/builder/remotecontext/generate.go
new file mode 100644
index 0000000000..84c1b3b5ea
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/generate.go
@@ -0,0 +1,3 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+//go:generate protoc --gogoslick_out=. tarsum.proto
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/git.go b/vendor/github.com/docker/docker/builder/remotecontext/git.go
new file mode 100644
index 0000000000..1583ca28d0
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/git.go
@@ -0,0 +1,35 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"os"
+
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/builder/remotecontext/git"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/sirupsen/logrus"
+)
+
+// MakeGitContext returns a Context from gitURL that is cloned in a temporary directory.
+func MakeGitContext(gitURL string) (builder.Source, error) {
+	root, err := git.Clone(gitURL)
+	if err != nil {
+		return nil, err
+	}
+
+	c, err := archive.Tar(root, archive.Uncompressed)
+	if err != nil {
+		return nil, err
+	}
+
+	defer func() {
+		err := c.Close()
+		if err != nil {
+			logrus.WithField("action", "MakeGitContext").WithField("module", "builder").WithField("url", gitURL).WithError(err).Error("error while closing git context")
+		}
+		err = os.RemoveAll(root)
+		if err != nil {
+			logrus.WithField("action", "MakeGitContext").WithField("module", "builder").WithField("url", gitURL).WithError(err).Error("error while removing path and children of root")
+		}
+	}()
+	return FromArchive(c)
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/git/gitutils.go b/vendor/github.com/docker/docker/builder/remotecontext/git/gitutils.go
new file mode 100644
index 0000000000..77a45beff3
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/git/gitutils.go
@@ -0,0 +1,204 @@
+package git // import "github.com/docker/docker/builder/remotecontext/git"
+
+import (
+	"io/ioutil"
+	"net/http"
+	"net/url"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"strings"
+
+	"github.com/docker/docker/pkg/symlink"
+	"github.com/docker/docker/pkg/urlutil"
+	"github.com/pkg/errors"
+)
+
+type gitRepo struct {
+	remote string
+	ref    string
+	subdir string
+}
+
+// Clone clones a repository into a newly created directory which
+// will be under "docker-build-git"
+func Clone(remoteURL string) (string, error) {
+	repo, err := parseRemoteURL(remoteURL)
+
+	if err != nil {
+		return "", err
+	}
+
+	return cloneGitRepo(repo)
+}
+
+func cloneGitRepo(repo gitRepo) (checkoutDir string, err error) {
+	fetch := fetchArgs(repo.remote, repo.ref)
+
+	root, err := ioutil.TempDir("", "docker-build-git")
+	if err != nil {
+		return "", err
+	}
+
+	defer func() {
+		if err != nil {
+			os.RemoveAll(root)
+		}
+	}()
+
+	if out, err := gitWithinDir(root, "init"); err != nil {
+		return "", errors.Wrapf(err, "failed to init repo at %s: %s", root, out)
+	}
+
+	// Add origin remote for compatibility with previous implementation that
+	// used "git clone" and also to make sure local refs are created for branches
+	if out, err := gitWithinDir(root, "remote", "add", "origin", repo.remote); err != nil {
+		return "", errors.Wrapf(err, "failed add origin repo at %s: %s", repo.remote, out)
+	}
+
+	if output, err := gitWithinDir(root, fetch...); err != nil {
+		return "", errors.Wrapf(err, "error fetching: %s", output)
+	}
+
+	checkoutDir, err = checkoutGit(root, repo.ref, repo.subdir)
+	if err != nil {
+		return "", err
+	}
+
+	cmd := exec.Command("git", "submodule", "update", "--init", "--recursive", "--depth=1")
+	cmd.Dir = root
+	output, err := cmd.CombinedOutput()
+	if err != nil {
+		return "", errors.Wrapf(err, "error initializing submodules: %s", output)
+	}
+
+	return checkoutDir, nil
+}
+
+func parseRemoteURL(remoteURL string) (gitRepo, error) {
+	repo := gitRepo{}
+
+	if !isGitTransport(remoteURL) {
+		remoteURL = "https://" + remoteURL
+	}
+
+	var fragment string
+	if strings.HasPrefix(remoteURL, "git@") {
+		// git@.. is not an URL, so cannot be parsed as URL
+		parts := strings.SplitN(remoteURL, "#", 2)
+
+		repo.remote = parts[0]
+		if len(parts) == 2 {
+			fragment = parts[1]
+		}
+		repo.ref, repo.subdir = getRefAndSubdir(fragment)
+	} else {
+		u, err := url.Parse(remoteURL)
+		if err != nil {
+			return repo, err
+		}
+
+		repo.ref, repo.subdir = getRefAndSubdir(u.Fragment)
+		u.Fragment = ""
+		repo.remote = u.String()
+	}
+	return repo, nil
+}
+
+func getRefAndSubdir(fragment string) (ref string, subdir string) {
+	refAndDir := strings.SplitN(fragment, ":", 2)
+	ref = "master"
+	if len(refAndDir[0]) != 0 {
+		ref = refAndDir[0]
+	}
+	if len(refAndDir) > 1 && len(refAndDir[1]) != 0 {
+		subdir = refAndDir[1]
+	}
+	return
+}
+
+func fetchArgs(remoteURL string, ref string) []string {
+	args := []string{"fetch"}
+
+	if supportsShallowClone(remoteURL) {
+		args = append(args, "--depth", "1")
+	}
+
+	return append(args, "origin", ref)
+}
+
+// Check if a given git URL supports a shallow git clone,
+// i.e. it is a non-HTTP server or a smart HTTP server.
+func supportsShallowClone(remoteURL string) bool {
+	if urlutil.IsURL(remoteURL) {
+		// Check if the HTTP server is smart
+
+		// Smart servers must correctly respond to a query for the git-upload-pack service
+		serviceURL := remoteURL + "/info/refs?service=git-upload-pack"
+
+		// Try a HEAD request and fallback to a Get request on error
+		res, err := http.Head(serviceURL)
+		if err != nil || res.StatusCode != http.StatusOK {
+			res, err = http.Get(serviceURL)
+			if err == nil {
+				res.Body.Close()
+			}
+			if err != nil || res.StatusCode != http.StatusOK {
+				// request failed
+				return false
+			}
+		}
+
+		if res.Header.Get("Content-Type") != "application/x-git-upload-pack-advertisement" {
+			// Fallback, not a smart server
+			return false
+		}
+		return true
+	}
+	// Non-HTTP protocols always support shallow clones
+	return true
+}
+
+func checkoutGit(root, ref, subdir string) (string, error) {
+	// Try checking out by ref name first. This will work on branches and sets
+	// .git/HEAD to the current branch name
+	if output, err := gitWithinDir(root, "checkout", ref); err != nil {
+		// If checking out by branch name fails check out the last fetched ref
+		if _, err2 := gitWithinDir(root, "checkout", "FETCH_HEAD"); err2 != nil {
+			return "", errors.Wrapf(err, "error checking out %s: %s", ref, output)
+		}
+	}
+
+	if subdir != "" {
+		newCtx, err := symlink.FollowSymlinkInScope(filepath.Join(root, subdir), root)
+		if err != nil {
+			return "", errors.Wrapf(err, "error setting git context, %q not within git root", subdir)
+		}
+
+		fi, err := os.Stat(newCtx)
+		if err != nil {
+			return "", err
+		}
+		if !fi.IsDir() {
+			return "", errors.Errorf("error setting git context, not a directory: %s", newCtx)
+		}
+		root = newCtx
+	}
+
+	return root, nil
+}
+
+func gitWithinDir(dir string, args ...string) ([]byte, error) {
+	a := []string{"--work-tree", dir, "--git-dir", filepath.Join(dir, ".git")}
+	return git(append(a, args...)...)
+}
+
+func git(args ...string) ([]byte, error) {
+	return exec.Command("git", args...).CombinedOutput()
+}
+
+// isGitTransport returns true if the provided str is a git transport by inspecting
+// the prefix of the string for known protocols used in git.
+func isGitTransport(str string) bool {
+	return urlutil.IsURL(str) || strings.HasPrefix(str, "git://") || strings.HasPrefix(str, "git@")
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/lazycontext.go b/vendor/github.com/docker/docker/builder/remotecontext/lazycontext.go
new file mode 100644
index 0000000000..442cecad85
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/lazycontext.go
@@ -0,0 +1,102 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"encoding/hex"
+	"os"
+	"strings"
+
+	"github.com/docker/docker/builder"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/pools"
+	"github.com/pkg/errors"
+)
+
+// NewLazySource creates a new LazyContext. LazyContext defines a hashed build
+// context based on a root directory. Individual files are hashed first time
+// they are asked. It is not safe to call methods of LazyContext concurrently.
+func NewLazySource(root containerfs.ContainerFS) (builder.Source, error) {
+	return &lazySource{
+		root: root,
+		sums: make(map[string]string),
+	}, nil
+}
+
+type lazySource struct {
+	root containerfs.ContainerFS
+	sums map[string]string
+}
+
+func (c *lazySource) Root() containerfs.ContainerFS {
+	return c.root
+}
+
+func (c *lazySource) Close() error {
+	return nil
+}
+
+func (c *lazySource) Hash(path string) (string, error) {
+	cleanPath, fullPath, err := normalize(path, c.root)
+	if err != nil {
+		return "", err
+	}
+
+	relPath, err := Rel(c.root, fullPath)
+	if err != nil {
+		return "", errors.WithStack(convertPathError(err, cleanPath))
+	}
+
+	fi, err := os.Lstat(fullPath)
+	if err != nil {
+		// Backwards compatibility: a missing file returns a path as hash.
+		// This is reached in the case of a broken symlink.
+		return relPath, nil
+	}
+
+	sum, ok := c.sums[relPath]
+	if !ok {
+		sum, err = c.prepareHash(relPath, fi)
+		if err != nil {
+			return "", err
+		}
+	}
+
+	return sum, nil
+}
+
+func (c *lazySource) prepareHash(relPath string, fi os.FileInfo) (string, error) {
+	p := c.root.Join(c.root.Path(), relPath)
+	h, err := NewFileHash(p, relPath, fi)
+	if err != nil {
+		return "", errors.Wrapf(err, "failed to create hash for %s", relPath)
+	}
+	if fi.Mode().IsRegular() && fi.Size() > 0 {
+		f, err := c.root.Open(p)
+		if err != nil {
+			return "", errors.Wrapf(err, "failed to open %s", relPath)
+		}
+		defer f.Close()
+		if _, err := pools.Copy(h, f); err != nil {
+			return "", errors.Wrapf(err, "failed to copy file data for %s", relPath)
+		}
+	}
+	sum := hex.EncodeToString(h.Sum(nil))
+	c.sums[relPath] = sum
+	return sum, nil
+}
+
+// Rel makes a path relative to base path. Same as `filepath.Rel` but can also
+// handle UUID paths in windows.
+func Rel(basepath containerfs.ContainerFS, targpath string) (string, error) {
+	// filepath.Rel can't handle UUID paths in windows
+	if basepath.OS() == "windows" {
+		pfx := basepath.Path() + `\`
+		if strings.HasPrefix(targpath, pfx) {
+			p := strings.TrimPrefix(targpath, pfx)
+			if p == "" {
+				p = "."
+			}
+			return p, nil
+		}
+	}
+	return basepath.Rel(basepath.Path(), targpath)
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/mimetype.go b/vendor/github.com/docker/docker/builder/remotecontext/mimetype.go
new file mode 100644
index 0000000000..e8a6210e9c
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/mimetype.go
@@ -0,0 +1,27 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"mime"
+	"net/http"
+)
+
+// mimeTypes stores the MIME content type.
+var mimeTypes = struct {
+	TextPlain   string
+	OctetStream string
+}{"text/plain", "application/octet-stream"}
+
+// detectContentType returns a best guess representation of the MIME
+// content type for the bytes at c.  The value detected by
+// http.DetectContentType is guaranteed not be nil, defaulting to
+// application/octet-stream when a better guess cannot be made. The
+// result of this detection is then run through mime.ParseMediaType()
+// which separates the actual MIME string from any parameters.
+func detectContentType(c []byte) (string, map[string]string, error) {
+	ct := http.DetectContentType(c)
+	contentType, args, err := mime.ParseMediaType(ct)
+	if err != nil {
+		return "", nil, err
+	}
+	return contentType, args, nil
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/remote.go b/vendor/github.com/docker/docker/builder/remotecontext/remote.go
new file mode 100644
index 0000000000..1fb80549b8
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/remote.go
@@ -0,0 +1,127 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"net/http"
+	"net/url"
+	"regexp"
+
+	"github.com/docker/docker/errdefs"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/pkg/errors"
+)
+
+// When downloading remote contexts, limit the amount (in bytes)
+// to be read from the response body in order to detect its Content-Type
+const maxPreambleLength = 100
+
+const acceptableRemoteMIME = `(?:application/(?:(?:x\-)?tar|octet\-stream|((?:x\-)?(?:gzip|bzip2?|xz)))|(?:text/plain))`
+
+var mimeRe = regexp.MustCompile(acceptableRemoteMIME)
+
+// downloadRemote context from a url and returns it, along with the parsed content type
+func downloadRemote(remoteURL string) (string, io.ReadCloser, error) {
+	response, err := GetWithStatusError(remoteURL)
+	if err != nil {
+		return "", nil, errors.Wrapf(err, "error downloading remote context %s", remoteURL)
+	}
+
+	contentType, contextReader, err := inspectResponse(
+		response.Header.Get("Content-Type"),
+		response.Body,
+		response.ContentLength)
+	if err != nil {
+		response.Body.Close()
+		return "", nil, errors.Wrapf(err, "error detecting content type for remote %s", remoteURL)
+	}
+
+	return contentType, ioutils.NewReadCloserWrapper(contextReader, response.Body.Close), nil
+}
+
+// GetWithStatusError does an http.Get() and returns an error if the
+// status code is 4xx or 5xx.
+func GetWithStatusError(address string) (resp *http.Response, err error) {
+	if resp, err = http.Get(address); err != nil {
+		if uerr, ok := err.(*url.Error); ok {
+			if derr, ok := uerr.Err.(*net.DNSError); ok && !derr.IsTimeout {
+				return nil, errdefs.NotFound(err)
+			}
+		}
+		return nil, errdefs.System(err)
+	}
+	if resp.StatusCode < 400 {
+		return resp, nil
+	}
+	msg := fmt.Sprintf("failed to GET %s with status %s", address, resp.Status)
+	body, err := ioutil.ReadAll(resp.Body)
+	resp.Body.Close()
+	if err != nil {
+		return nil, errdefs.System(errors.New(msg + ": error reading body"))
+	}
+
+	msg += ": " + string(bytes.TrimSpace(body))
+	switch resp.StatusCode {
+	case http.StatusNotFound:
+		return nil, errdefs.NotFound(errors.New(msg))
+	case http.StatusBadRequest:
+		return nil, errdefs.InvalidParameter(errors.New(msg))
+	case http.StatusUnauthorized:
+		return nil, errdefs.Unauthorized(errors.New(msg))
+	case http.StatusForbidden:
+		return nil, errdefs.Forbidden(errors.New(msg))
+	}
+	return nil, errdefs.Unknown(errors.New(msg))
+}
+
+// inspectResponse looks into the http response data at r to determine whether its
+// content-type is on the list of acceptable content types for remote build contexts.
+// This function returns:
+//    - a string representation of the detected content-type
+//    - an io.Reader for the response body
+//    - an error value which will be non-nil either when something goes wrong while
+//      reading bytes from r or when the detected content-type is not acceptable.
+func inspectResponse(ct string, r io.Reader, clen int64) (string, io.Reader, error) {
+	plen := clen
+	if plen <= 0 || plen > maxPreambleLength {
+		plen = maxPreambleLength
+	}
+
+	preamble := make([]byte, plen)
+	rlen, err := r.Read(preamble)
+	if rlen == 0 {
+		return ct, r, errors.New("empty response")
+	}
+	if err != nil && err != io.EOF {
+		return ct, r, err
+	}
+
+	preambleR := bytes.NewReader(preamble[:rlen])
+	bodyReader := io.MultiReader(preambleR, r)
+	// Some web servers will use application/octet-stream as the default
+	// content type for files without an extension (e.g. 'Dockerfile')
+	// so if we receive this value we better check for text content
+	contentType := ct
+	if len(ct) == 0 || ct == mimeTypes.OctetStream {
+		contentType, _, err = detectContentType(preamble)
+		if err != nil {
+			return contentType, bodyReader, err
+		}
+	}
+
+	contentType = selectAcceptableMIME(contentType)
+	var cterr error
+	if len(contentType) == 0 {
+		cterr = fmt.Errorf("unsupported Content-Type %q", ct)
+		contentType = ct
+	}
+
+	return contentType, bodyReader, cterr
+}
+
+func selectAcceptableMIME(ct string) string {
+	return mimeRe.FindString(ct)
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/tarsum.go b/vendor/github.com/docker/docker/builder/remotecontext/tarsum.go
new file mode 100644
index 0000000000..9e8c7d6072
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/tarsum.go
@@ -0,0 +1,157 @@
+package remotecontext // import "github.com/docker/docker/builder/remotecontext"
+
+import (
+	"os"
+	"sync"
+
+	"github.com/docker/docker/pkg/containerfs"
+	iradix "github.com/hashicorp/go-immutable-radix"
+	digest "github.com/opencontainers/go-digest"
+	"github.com/pkg/errors"
+	"github.com/tonistiigi/fsutil"
+)
+
+type hashed interface {
+	Digest() digest.Digest
+}
+
+// CachableSource is a source that contains cache records for its contents
+type CachableSource struct {
+	mu   sync.Mutex
+	root containerfs.ContainerFS
+	tree *iradix.Tree
+	txn  *iradix.Txn
+}
+
+// NewCachableSource creates new CachableSource
+func NewCachableSource(root string) *CachableSource {
+	ts := &CachableSource{
+		tree: iradix.New(),
+		root: containerfs.NewLocalContainerFS(root),
+	}
+	return ts
+}
+
+// MarshalBinary marshals current cache information to a byte array
+func (cs *CachableSource) MarshalBinary() ([]byte, error) {
+	b := TarsumBackup{Hashes: make(map[string]string)}
+	root := cs.getRoot()
+	root.Walk(func(k []byte, v interface{}) bool {
+		b.Hashes[string(k)] = v.(*fileInfo).sum
+		return false
+	})
+	return b.Marshal()
+}
+
+// UnmarshalBinary decodes cache information for presented byte array
+func (cs *CachableSource) UnmarshalBinary(data []byte) error {
+	var b TarsumBackup
+	if err := b.Unmarshal(data); err != nil {
+		return err
+	}
+	txn := iradix.New().Txn()
+	for p, v := range b.Hashes {
+		txn.Insert([]byte(p), &fileInfo{sum: v})
+	}
+	cs.mu.Lock()
+	defer cs.mu.Unlock()
+	cs.tree = txn.Commit()
+	return nil
+}
+
+// Scan rescans the cache information from the file system
+func (cs *CachableSource) Scan() error {
+	lc, err := NewLazySource(cs.root)
+	if err != nil {
+		return err
+	}
+	txn := iradix.New().Txn()
+	err = cs.root.Walk(cs.root.Path(), func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return errors.Wrapf(err, "failed to walk %s", path)
+		}
+		rel, err := Rel(cs.root, path)
+		if err != nil {
+			return err
+		}
+		h, err := lc.Hash(rel)
+		if err != nil {
+			return err
+		}
+		txn.Insert([]byte(rel), &fileInfo{sum: h})
+		return nil
+	})
+	if err != nil {
+		return err
+	}
+	cs.mu.Lock()
+	defer cs.mu.Unlock()
+	cs.tree = txn.Commit()
+	return nil
+}
+
+// HandleChange notifies the source about a modification operation
+func (cs *CachableSource) HandleChange(kind fsutil.ChangeKind, p string, fi os.FileInfo, err error) (retErr error) {
+	cs.mu.Lock()
+	if cs.txn == nil {
+		cs.txn = cs.tree.Txn()
+	}
+	if kind == fsutil.ChangeKindDelete {
+		cs.txn.Delete([]byte(p))
+		cs.mu.Unlock()
+		return
+	}
+
+	h, ok := fi.(hashed)
+	if !ok {
+		cs.mu.Unlock()
+		return errors.Errorf("invalid fileinfo: %s", p)
+	}
+
+	hfi := &fileInfo{
+		sum: h.Digest().Hex(),
+	}
+	cs.txn.Insert([]byte(p), hfi)
+	cs.mu.Unlock()
+	return nil
+}
+
+func (cs *CachableSource) getRoot() *iradix.Node {
+	cs.mu.Lock()
+	if cs.txn != nil {
+		cs.tree = cs.txn.Commit()
+		cs.txn = nil
+	}
+	t := cs.tree
+	cs.mu.Unlock()
+	return t.Root()
+}
+
+// Close closes the source
+func (cs *CachableSource) Close() error {
+	return nil
+}
+
+// Hash returns a hash for a single file in the source
+func (cs *CachableSource) Hash(path string) (string, error) {
+	n := cs.getRoot()
+	// TODO: check this for symlinks
+	v, ok := n.Get([]byte(path))
+	if !ok {
+		return path, nil
+	}
+	return v.(*fileInfo).sum, nil
+}
+
+// Root returns a root directory for the source
+func (cs *CachableSource) Root() containerfs.ContainerFS {
+	return cs.root
+}
+
+type fileInfo struct {
+	sum string
+}
+
+func (fi *fileInfo) Hash() string {
+	return fi.sum
+}
diff --git a/vendor/github.com/docker/docker/builder/remotecontext/tarsum.pb.go b/vendor/github.com/docker/docker/builder/remotecontext/tarsum.pb.go
new file mode 100644
index 0000000000..1d23bbe65b
--- /dev/null
+++ b/vendor/github.com/docker/docker/builder/remotecontext/tarsum.pb.go
@@ -0,0 +1,525 @@
+// Code generated by protoc-gen-gogo.
+// source: tarsum.proto
+// DO NOT EDIT!
+
+/*
+Package remotecontext is a generated protocol buffer package.
+
+It is generated from these files:
+	tarsum.proto
+
+It has these top-level messages:
+	TarsumBackup
+*/
+package remotecontext
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strings "strings"
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type TarsumBackup struct {
+	Hashes map[string]string `protobuf:"bytes,1,rep,name=Hashes" json:"Hashes,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *TarsumBackup) Reset()                    { *m = TarsumBackup{} }
+func (*TarsumBackup) ProtoMessage()               {}
+func (*TarsumBackup) Descriptor() ([]byte, []int) { return fileDescriptorTarsum, []int{0} }
+
+func (m *TarsumBackup) GetHashes() map[string]string {
+	if m != nil {
+		return m.Hashes
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*TarsumBackup)(nil), "remotecontext.TarsumBackup")
+}
+func (this *TarsumBackup) Equal(that interface{}) bool {
+	if that == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	}
+
+	that1, ok := that.(*TarsumBackup)
+	if !ok {
+		that2, ok := that.(TarsumBackup)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	} else if this == nil {
+		return false
+	}
+	if len(this.Hashes) != len(that1.Hashes) {
+		return false
+	}
+	for i := range this.Hashes {
+		if this.Hashes[i] != that1.Hashes[i] {
+			return false
+		}
+	}
+	return true
+}
+func (this *TarsumBackup) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&remotecontext.TarsumBackup{")
+	keysForHashes := make([]string, 0, len(this.Hashes))
+	for k := range this.Hashes {
+		keysForHashes = append(keysForHashes, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForHashes)
+	mapStringForHashes := "map[string]string{"
+	for _, k := range keysForHashes {
+		mapStringForHashes += fmt.Sprintf("%#v: %#v,", k, this.Hashes[k])
+	}
+	mapStringForHashes += "}"
+	if this.Hashes != nil {
+		s = append(s, "Hashes: "+mapStringForHashes+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringTarsum(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *TarsumBackup) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TarsumBackup) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Hashes) > 0 {
+		for k := range m.Hashes {
+			dAtA[i] = 0xa
+			i++
+			v := m.Hashes[k]
+			mapSize := 1 + len(k) + sovTarsum(uint64(len(k))) + 1 + len(v) + sovTarsum(uint64(len(v)))
+			i = encodeVarintTarsum(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTarsum(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTarsum(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	return i, nil
+}
+
+func encodeFixed64Tarsum(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Tarsum(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintTarsum(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *TarsumBackup) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Hashes) > 0 {
+		for k, v := range m.Hashes {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTarsum(uint64(len(k))) + 1 + len(v) + sovTarsum(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTarsum(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func sovTarsum(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozTarsum(x uint64) (n int) {
+	return sovTarsum(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *TarsumBackup) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForHashes := make([]string, 0, len(this.Hashes))
+	for k := range this.Hashes {
+		keysForHashes = append(keysForHashes, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForHashes)
+	mapStringForHashes := "map[string]string{"
+	for _, k := range keysForHashes {
+		mapStringForHashes += fmt.Sprintf("%v: %v,", k, this.Hashes[k])
+	}
+	mapStringForHashes += "}"
+	s := strings.Join([]string{`&TarsumBackup{`,
+		`Hashes:` + mapStringForHashes + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringTarsum(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *TarsumBackup) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTarsum
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TarsumBackup: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TarsumBackup: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Hashes", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTarsum
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTarsum
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTarsum
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTarsum
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTarsum
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Hashes == nil {
+				m.Hashes = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTarsum
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTarsum
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTarsum
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Hashes[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Hashes[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTarsum(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTarsum
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipTarsum(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowTarsum
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTarsum
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTarsum
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthTarsum
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowTarsum
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipTarsum(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthTarsum = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowTarsum   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("tarsum.proto", fileDescriptorTarsum) }
+
+var fileDescriptorTarsum = []byte{
+	// 196 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0x29, 0x49, 0x2c, 0x2a,
+	0x2e, 0xcd, 0xd5, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x2d, 0x4a, 0xcd, 0xcd, 0x2f, 0x49,
+	0x4d, 0xce, 0xcf, 0x2b, 0x49, 0xad, 0x28, 0x51, 0xea, 0x62, 0xe4, 0xe2, 0x09, 0x01, 0xcb, 0x3b,
+	0x25, 0x26, 0x67, 0x97, 0x16, 0x08, 0xd9, 0x73, 0xb1, 0x79, 0x24, 0x16, 0x67, 0xa4, 0x16, 0x4b,
+	0x30, 0x2a, 0x30, 0x6b, 0x70, 0x1b, 0xa9, 0xeb, 0xa1, 0x68, 0xd0, 0x43, 0x56, 0xac, 0x07, 0x51,
+	0xe9, 0x9a, 0x57, 0x52, 0x54, 0x19, 0x04, 0xd5, 0x26, 0x65, 0xc9, 0xc5, 0x8d, 0x24, 0x2c, 0x24,
+	0xc0, 0xc5, 0x9c, 0x9d, 0x5a, 0x29, 0xc1, 0xa8, 0xc0, 0xa8, 0xc1, 0x19, 0x04, 0x62, 0x0a, 0x89,
+	0x70, 0xb1, 0x96, 0x25, 0xe6, 0x94, 0xa6, 0x4a, 0x30, 0x81, 0xc5, 0x20, 0x1c, 0x2b, 0x26, 0x0b,
+	0x46, 0x27, 0x9d, 0x0b, 0x0f, 0xe5, 0x18, 0x6e, 0x3c, 0x94, 0x63, 0xf8, 0xf0, 0x50, 0x8e, 0xb1,
+	0xe1, 0x91, 0x1c, 0xe3, 0x8a, 0x47, 0x72, 0x8c, 0x27, 0x1e, 0xc9, 0x31, 0x5e, 0x78, 0x24, 0xc7,
+	0xf8, 0xe0, 0x91, 0x1c, 0xe3, 0x8b, 0x47, 0x72, 0x0c, 0x1f, 0x1e, 0xc9, 0x31, 0x4e, 0x78, 0x2c,
+	0xc7, 0x90, 0xc4, 0x06, 0xf6, 0x90, 0x31, 0x20, 0x00, 0x00, 0xff, 0xff, 0x89, 0x57, 0x7d, 0x3f,
+	0xe0, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/docker/container/archive.go b/vendor/github.com/docker/docker/container/archive.go
new file mode 100644
index 0000000000..ed72c4a405
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/archive.go
@@ -0,0 +1,86 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"os"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/system"
+	"github.com/pkg/errors"
+)
+
+// ResolvePath resolves the given path in the container to a resource on the
+// host. Returns a resolved path (absolute path to the resource on the host),
+// the absolute path to the resource relative to the container's rootfs, and
+// an error if the path points to outside the container's rootfs.
+func (container *Container) ResolvePath(path string) (resolvedPath, absPath string, err error) {
+	if container.BaseFS == nil {
+		return "", "", errors.New("ResolvePath: BaseFS of container " + container.ID + " is unexpectedly nil")
+	}
+	// Check if a drive letter supplied, it must be the system drive. No-op except on Windows
+	path, err = system.CheckSystemDriveAndRemoveDriveLetter(path, container.BaseFS)
+	if err != nil {
+		return "", "", err
+	}
+
+	// Consider the given path as an absolute path in the container.
+	absPath = archive.PreserveTrailingDotOrSeparator(
+		container.BaseFS.Join(string(container.BaseFS.Separator()), path),
+		path,
+		container.BaseFS.Separator())
+
+	// Split the absPath into its Directory and Base components. We will
+	// resolve the dir in the scope of the container then append the base.
+	dirPath, basePath := container.BaseFS.Split(absPath)
+
+	resolvedDirPath, err := container.GetResourcePath(dirPath)
+	if err != nil {
+		return "", "", err
+	}
+
+	// resolvedDirPath will have been cleaned (no trailing path separators) so
+	// we can manually join it with the base path element.
+	resolvedPath = resolvedDirPath + string(container.BaseFS.Separator()) + basePath
+	return resolvedPath, absPath, nil
+}
+
+// StatPath is the unexported version of StatPath. Locks and mounts should
+// be acquired before calling this method and the given path should be fully
+// resolved to a path on the host corresponding to the given absolute path
+// inside the container.
+func (container *Container) StatPath(resolvedPath, absPath string) (stat *types.ContainerPathStat, err error) {
+	if container.BaseFS == nil {
+		return nil, errors.New("StatPath: BaseFS of container " + container.ID + " is unexpectedly nil")
+	}
+	driver := container.BaseFS
+
+	lstat, err := driver.Lstat(resolvedPath)
+	if err != nil {
+		return nil, err
+	}
+
+	var linkTarget string
+	if lstat.Mode()&os.ModeSymlink != 0 {
+		// Fully evaluate the symlink in the scope of the container rootfs.
+		hostPath, err := container.GetResourcePath(absPath)
+		if err != nil {
+			return nil, err
+		}
+
+		linkTarget, err = driver.Rel(driver.Path(), hostPath)
+		if err != nil {
+			return nil, err
+		}
+
+		// Make it an absolute path.
+		linkTarget = driver.Join(string(driver.Separator()), linkTarget)
+	}
+
+	return &types.ContainerPathStat{
+		Name:       driver.Base(absPath),
+		Size:       lstat.Size(),
+		Mode:       lstat.Mode(),
+		Mtime:      lstat.ModTime(),
+		LinkTarget: linkTarget,
+	}, nil
+}
diff --git a/vendor/github.com/docker/docker/container/container.go b/vendor/github.com/docker/docker/container/container.go
new file mode 100644
index 0000000000..5a6a9255be
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/container.go
@@ -0,0 +1,1095 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"fmt"
+	"io"
+	"net"
+	"os"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/containerd/containerd/cio"
+	containertypes "github.com/docker/docker/api/types/container"
+	mounttypes "github.com/docker/docker/api/types/mount"
+	networktypes "github.com/docker/docker/api/types/network"
+	swarmtypes "github.com/docker/docker/api/types/swarm"
+	"github.com/docker/docker/container/stream"
+	"github.com/docker/docker/daemon/exec"
+	"github.com/docker/docker/daemon/logger"
+	"github.com/docker/docker/daemon/logger/jsonfilelog"
+	"github.com/docker/docker/daemon/network"
+	"github.com/docker/docker/image"
+	"github.com/docker/docker/layer"
+	"github.com/docker/docker/opts"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/docker/pkg/signal"
+	"github.com/docker/docker/pkg/symlink"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/docker/restartmanager"
+	"github.com/docker/docker/runconfig"
+	"github.com/docker/docker/volume"
+	volumemounts "github.com/docker/docker/volume/mounts"
+	"github.com/docker/go-connections/nat"
+	units "github.com/docker/go-units"
+	"github.com/docker/libnetwork"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/types"
+	agentexec "github.com/docker/swarmkit/agent/exec"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+const configFileName = "config.v2.json"
+
+var (
+	errInvalidEndpoint = errors.New("invalid endpoint while building port map info")
+	errInvalidNetwork  = errors.New("invalid network settings while building port map info")
+)
+
+// ExitStatus provides exit reasons for a container.
+type ExitStatus struct {
+	// The exit code with which the container exited.
+	ExitCode int
+
+	// Whether the container encountered an OOM.
+	OOMKilled bool
+
+	// Time at which the container died
+	ExitedAt time.Time
+}
+
+// Container holds the structure defining a container object.
+type Container struct {
+	StreamConfig *stream.Config
+	// embed for Container to support states directly.
+	*State          `json:"State"`          // Needed for Engine API version <= 1.11
+	Root            string                  `json:"-"` // Path to the "home" of the container, including metadata.
+	BaseFS          containerfs.ContainerFS `json:"-"` // interface containing graphdriver mount
+	RWLayer         layer.RWLayer           `json:"-"`
+	ID              string
+	Created         time.Time
+	Managed         bool
+	Path            string
+	Args            []string
+	Config          *containertypes.Config
+	ImageID         image.ID `json:"Image"`
+	NetworkSettings *network.Settings
+	LogPath         string
+	Name            string
+	Driver          string
+	OS              string
+	// MountLabel contains the options for the 'mount' command
+	MountLabel             string
+	ProcessLabel           string
+	RestartCount           int
+	HasBeenStartedBefore   bool
+	HasBeenManuallyStopped bool // used for unless-stopped restart policy
+	MountPoints            map[string]*volumemounts.MountPoint
+	HostConfig             *containertypes.HostConfig `json:"-"` // do not serialize the host config in the json, otherwise we'll make the container unportable
+	ExecCommands           *exec.Store                `json:"-"`
+	DependencyStore        agentexec.DependencyGetter `json:"-"`
+	SecretReferences       []*swarmtypes.SecretReference
+	ConfigReferences       []*swarmtypes.ConfigReference
+	// logDriver for closing
+	LogDriver      logger.Logger  `json:"-"`
+	LogCopier      *logger.Copier `json:"-"`
+	restartManager restartmanager.RestartManager
+	attachContext  *attachContext
+
+	// Fields here are specific to Unix platforms
+	AppArmorProfile string
+	HostnamePath    string
+	HostsPath       string
+	ShmPath         string
+	ResolvConfPath  string
+	SeccompProfile  string
+	NoNewPrivileges bool
+
+	// Fields here are specific to Windows
+	NetworkSharedContainerID string   `json:"-"`
+	SharedEndpointList       []string `json:"-"`
+}
+
+// NewBaseContainer creates a new container with its
+// basic configuration.
+func NewBaseContainer(id, root string) *Container {
+	return &Container{
+		ID:            id,
+		State:         NewState(),
+		ExecCommands:  exec.NewStore(),
+		Root:          root,
+		MountPoints:   make(map[string]*volumemounts.MountPoint),
+		StreamConfig:  stream.NewConfig(),
+		attachContext: &attachContext{},
+	}
+}
+
+// FromDisk loads the container configuration stored in the host.
+func (container *Container) FromDisk() error {
+	pth, err := container.ConfigPath()
+	if err != nil {
+		return err
+	}
+
+	jsonSource, err := os.Open(pth)
+	if err != nil {
+		return err
+	}
+	defer jsonSource.Close()
+
+	dec := json.NewDecoder(jsonSource)
+
+	// Load container settings
+	if err := dec.Decode(container); err != nil {
+		return err
+	}
+
+	// Ensure the operating system is set if blank. Assume it is the OS of the
+	// host OS if not, to ensure containers created before multiple-OS
+	// support are migrated
+	if container.OS == "" {
+		container.OS = runtime.GOOS
+	}
+
+	return container.readHostConfig()
+}
+
+// toDisk saves the container configuration on disk and returns a deep copy.
+func (container *Container) toDisk() (*Container, error) {
+	var (
+		buf      bytes.Buffer
+		deepCopy Container
+	)
+	pth, err := container.ConfigPath()
+	if err != nil {
+		return nil, err
+	}
+
+	// Save container settings
+	f, err := ioutils.NewAtomicFileWriter(pth, 0600)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	w := io.MultiWriter(&buf, f)
+	if err := json.NewEncoder(w).Encode(container); err != nil {
+		return nil, err
+	}
+
+	if err := json.NewDecoder(&buf).Decode(&deepCopy); err != nil {
+		return nil, err
+	}
+	deepCopy.HostConfig, err = container.WriteHostConfig()
+	if err != nil {
+		return nil, err
+	}
+
+	return &deepCopy, nil
+}
+
+// CheckpointTo makes the Container's current state visible to queries, and persists state.
+// Callers must hold a Container lock.
+func (container *Container) CheckpointTo(store ViewDB) error {
+	deepCopy, err := container.toDisk()
+	if err != nil {
+		return err
+	}
+	return store.Save(deepCopy)
+}
+
+// readHostConfig reads the host configuration from disk for the container.
+func (container *Container) readHostConfig() error {
+	container.HostConfig = &containertypes.HostConfig{}
+	// If the hostconfig file does not exist, do not read it.
+	// (We still have to initialize container.HostConfig,
+	// but that's OK, since we just did that above.)
+	pth, err := container.HostConfigPath()
+	if err != nil {
+		return err
+	}
+
+	f, err := os.Open(pth)
+	if err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+	defer f.Close()
+
+	if err := json.NewDecoder(f).Decode(&container.HostConfig); err != nil {
+		return err
+	}
+
+	container.InitDNSHostConfig()
+
+	return nil
+}
+
+// WriteHostConfig saves the host configuration on disk for the container,
+// and returns a deep copy of the saved object. Callers must hold a Container lock.
+func (container *Container) WriteHostConfig() (*containertypes.HostConfig, error) {
+	var (
+		buf      bytes.Buffer
+		deepCopy containertypes.HostConfig
+	)
+
+	pth, err := container.HostConfigPath()
+	if err != nil {
+		return nil, err
+	}
+
+	f, err := ioutils.NewAtomicFileWriter(pth, 0644)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	w := io.MultiWriter(&buf, f)
+	if err := json.NewEncoder(w).Encode(&container.HostConfig); err != nil {
+		return nil, err
+	}
+
+	if err := json.NewDecoder(&buf).Decode(&deepCopy); err != nil {
+		return nil, err
+	}
+	return &deepCopy, nil
+}
+
+// SetupWorkingDirectory sets up the container's working directory as set in container.Config.WorkingDir
+func (container *Container) SetupWorkingDirectory(rootIDs idtools.IDPair) error {
+	// TODO @jhowardmsft, @gupta-ak LCOW Support. This will need revisiting.
+	// We will need to do remote filesystem operations here.
+	if container.OS != runtime.GOOS {
+		return nil
+	}
+
+	if container.Config.WorkingDir == "" {
+		return nil
+	}
+
+	container.Config.WorkingDir = filepath.Clean(container.Config.WorkingDir)
+	pth, err := container.GetResourcePath(container.Config.WorkingDir)
+	if err != nil {
+		return err
+	}
+
+	if err := idtools.MkdirAllAndChownNew(pth, 0755, rootIDs); err != nil {
+		pthInfo, err2 := os.Stat(pth)
+		if err2 == nil && pthInfo != nil && !pthInfo.IsDir() {
+			return errors.Errorf("Cannot mkdir: %s is not a directory", container.Config.WorkingDir)
+		}
+
+		return err
+	}
+
+	return nil
+}
+
+// GetResourcePath evaluates `path` in the scope of the container's BaseFS, with proper path
+// sanitisation. Symlinks are all scoped to the BaseFS of the container, as
+// though the container's BaseFS was `/`.
+//
+// The BaseFS of a container is the host-facing path which is bind-mounted as
+// `/` inside the container. This method is essentially used to access a
+// particular path inside the container as though you were a process in that
+// container.
+//
+// NOTE: The returned path is *only* safely scoped inside the container's BaseFS
+//       if no component of the returned path changes (such as a component
+//       symlinking to a different path) between using this method and using the
+//       path. See symlink.FollowSymlinkInScope for more details.
+func (container *Container) GetResourcePath(path string) (string, error) {
+	if container.BaseFS == nil {
+		return "", errors.New("GetResourcePath: BaseFS of container " + container.ID + " is unexpectedly nil")
+	}
+	// IMPORTANT - These are paths on the OS where the daemon is running, hence
+	// any filepath operations must be done in an OS agnostic way.
+	r, e := container.BaseFS.ResolveScopedPath(path, false)
+
+	// Log this here on the daemon side as there's otherwise no indication apart
+	// from the error being propagated all the way back to the client. This makes
+	// debugging significantly easier and clearly indicates the error comes from the daemon.
+	if e != nil {
+		logrus.Errorf("Failed to ResolveScopedPath BaseFS %s path %s %s\n", container.BaseFS.Path(), path, e)
+	}
+	return r, e
+}
+
+// GetRootResourcePath evaluates `path` in the scope of the container's root, with proper path
+// sanitisation. Symlinks are all scoped to the root of the container, as
+// though the container's root was `/`.
+//
+// The root of a container is the host-facing configuration metadata directory.
+// Only use this method to safely access the container's `container.json` or
+// other metadata files. If in doubt, use container.GetResourcePath.
+//
+// NOTE: The returned path is *only* safely scoped inside the container's root
+//       if no component of the returned path changes (such as a component
+//       symlinking to a different path) between using this method and using the
+//       path. See symlink.FollowSymlinkInScope for more details.
+func (container *Container) GetRootResourcePath(path string) (string, error) {
+	// IMPORTANT - These are paths on the OS where the daemon is running, hence
+	// any filepath operations must be done in an OS agnostic way.
+	cleanPath := filepath.Join(string(os.PathSeparator), path)
+	return symlink.FollowSymlinkInScope(filepath.Join(container.Root, cleanPath), container.Root)
+}
+
+// ExitOnNext signals to the monitor that it should not restart the container
+// after we send the kill signal.
+func (container *Container) ExitOnNext() {
+	container.RestartManager().Cancel()
+}
+
+// HostConfigPath returns the path to the container's JSON hostconfig
+func (container *Container) HostConfigPath() (string, error) {
+	return container.GetRootResourcePath("hostconfig.json")
+}
+
+// ConfigPath returns the path to the container's JSON config
+func (container *Container) ConfigPath() (string, error) {
+	return container.GetRootResourcePath(configFileName)
+}
+
+// CheckpointDir returns the directory checkpoints are stored in
+func (container *Container) CheckpointDir() string {
+	return filepath.Join(container.Root, "checkpoints")
+}
+
+// StartLogger starts a new logger driver for the container.
+func (container *Container) StartLogger() (logger.Logger, error) {
+	cfg := container.HostConfig.LogConfig
+	initDriver, err := logger.GetLogDriver(cfg.Type)
+	if err != nil {
+		return nil, errors.Wrap(err, "failed to get logging factory")
+	}
+	info := logger.Info{
+		Config:              cfg.Config,
+		ContainerID:         container.ID,
+		ContainerName:       container.Name,
+		ContainerEntrypoint: container.Path,
+		ContainerArgs:       container.Args,
+		ContainerImageID:    container.ImageID.String(),
+		ContainerImageName:  container.Config.Image,
+		ContainerCreated:    container.Created,
+		ContainerEnv:        container.Config.Env,
+		ContainerLabels:     container.Config.Labels,
+		DaemonName:          "docker",
+	}
+
+	// Set logging file for "json-logger"
+	if cfg.Type == jsonfilelog.Name {
+		info.LogPath, err = container.GetRootResourcePath(fmt.Sprintf("%s-json.log", container.ID))
+		if err != nil {
+			return nil, err
+		}
+
+		container.LogPath = info.LogPath
+	}
+
+	l, err := initDriver(info)
+	if err != nil {
+		return nil, err
+	}
+
+	if containertypes.LogMode(cfg.Config["mode"]) == containertypes.LogModeNonBlock {
+		bufferSize := int64(-1)
+		if s, exists := cfg.Config["max-buffer-size"]; exists {
+			bufferSize, err = units.RAMInBytes(s)
+			if err != nil {
+				return nil, err
+			}
+		}
+		l = logger.NewRingLogger(l, info, bufferSize)
+	}
+	return l, nil
+}
+
+// GetProcessLabel returns the process label for the container.
+func (container *Container) GetProcessLabel() string {
+	// even if we have a process label return "" if we are running
+	// in privileged mode
+	if container.HostConfig.Privileged {
+		return ""
+	}
+	return container.ProcessLabel
+}
+
+// GetMountLabel returns the mounting label for the container.
+// This label is empty if the container is privileged.
+func (container *Container) GetMountLabel() string {
+	return container.MountLabel
+}
+
+// GetExecIDs returns the list of exec commands running on the container.
+func (container *Container) GetExecIDs() []string {
+	return container.ExecCommands.List()
+}
+
+// ShouldRestart decides whether the daemon should restart the container or not.
+// This is based on the container's restart policy.
+func (container *Container) ShouldRestart() bool {
+	shouldRestart, _, _ := container.RestartManager().ShouldRestart(uint32(container.ExitCode()), container.HasBeenManuallyStopped, container.FinishedAt.Sub(container.StartedAt))
+	return shouldRestart
+}
+
+// AddMountPointWithVolume adds a new mount point configured with a volume to the container.
+func (container *Container) AddMountPointWithVolume(destination string, vol volume.Volume, rw bool) {
+	operatingSystem := container.OS
+	if operatingSystem == "" {
+		operatingSystem = runtime.GOOS
+	}
+	volumeParser := volumemounts.NewParser(operatingSystem)
+	container.MountPoints[destination] = &volumemounts.MountPoint{
+		Type:        mounttypes.TypeVolume,
+		Name:        vol.Name(),
+		Driver:      vol.DriverName(),
+		Destination: destination,
+		RW:          rw,
+		Volume:      vol,
+		CopyData:    volumeParser.DefaultCopyMode(),
+	}
+}
+
+// UnmountVolumes unmounts all volumes
+func (container *Container) UnmountVolumes(volumeEventLog func(name, action string, attributes map[string]string)) error {
+	var errors []string
+	for _, volumeMount := range container.MountPoints {
+		if volumeMount.Volume == nil {
+			continue
+		}
+
+		if err := volumeMount.Cleanup(); err != nil {
+			errors = append(errors, err.Error())
+			continue
+		}
+
+		attributes := map[string]string{
+			"driver":    volumeMount.Volume.DriverName(),
+			"container": container.ID,
+		}
+		volumeEventLog(volumeMount.Volume.Name(), "unmount", attributes)
+	}
+	if len(errors) > 0 {
+		return fmt.Errorf("error while unmounting volumes for container %s: %s", container.ID, strings.Join(errors, "; "))
+	}
+	return nil
+}
+
+// IsDestinationMounted checks whether a path is mounted on the container or not.
+func (container *Container) IsDestinationMounted(destination string) bool {
+	return container.MountPoints[destination] != nil
+}
+
+// StopSignal returns the signal used to stop the container.
+func (container *Container) StopSignal() int {
+	var stopSignal syscall.Signal
+	if container.Config.StopSignal != "" {
+		stopSignal, _ = signal.ParseSignal(container.Config.StopSignal)
+	}
+
+	if int(stopSignal) == 0 {
+		stopSignal, _ = signal.ParseSignal(signal.DefaultStopSignal)
+	}
+	return int(stopSignal)
+}
+
+// StopTimeout returns the timeout (in seconds) used to stop the container.
+func (container *Container) StopTimeout() int {
+	if container.Config.StopTimeout != nil {
+		return *container.Config.StopTimeout
+	}
+	return DefaultStopTimeout
+}
+
+// InitDNSHostConfig ensures that the dns fields are never nil.
+// New containers don't ever have those fields nil,
+// but pre created containers can still have those nil values.
+// The non-recommended host configuration in the start api can
+// make these fields nil again, this corrects that issue until
+// we remove that behavior for good.
+// See https://github.com/docker/docker/pull/17779
+// for a more detailed explanation on why we don't want that.
+func (container *Container) InitDNSHostConfig() {
+	container.Lock()
+	defer container.Unlock()
+	if container.HostConfig.DNS == nil {
+		container.HostConfig.DNS = make([]string, 0)
+	}
+
+	if container.HostConfig.DNSSearch == nil {
+		container.HostConfig.DNSSearch = make([]string, 0)
+	}
+
+	if container.HostConfig.DNSOptions == nil {
+		container.HostConfig.DNSOptions = make([]string, 0)
+	}
+}
+
+// GetEndpointInNetwork returns the container's endpoint to the provided network.
+func (container *Container) GetEndpointInNetwork(n libnetwork.Network) (libnetwork.Endpoint, error) {
+	endpointName := strings.TrimPrefix(container.Name, "/")
+	return n.EndpointByName(endpointName)
+}
+
+func (container *Container) buildPortMapInfo(ep libnetwork.Endpoint) error {
+	if ep == nil {
+		return errInvalidEndpoint
+	}
+
+	networkSettings := container.NetworkSettings
+	if networkSettings == nil {
+		return errInvalidNetwork
+	}
+
+	if len(networkSettings.Ports) == 0 {
+		pm, err := getEndpointPortMapInfo(ep)
+		if err != nil {
+			return err
+		}
+		networkSettings.Ports = pm
+	}
+	return nil
+}
+
+func getEndpointPortMapInfo(ep libnetwork.Endpoint) (nat.PortMap, error) {
+	pm := nat.PortMap{}
+	driverInfo, err := ep.DriverInfo()
+	if err != nil {
+		return pm, err
+	}
+
+	if driverInfo == nil {
+		// It is not an error for epInfo to be nil
+		return pm, nil
+	}
+
+	if expData, ok := driverInfo[netlabel.ExposedPorts]; ok {
+		if exposedPorts, ok := expData.([]types.TransportPort); ok {
+			for _, tp := range exposedPorts {
+				natPort, err := nat.NewPort(tp.Proto.String(), strconv.Itoa(int(tp.Port)))
+				if err != nil {
+					return pm, fmt.Errorf("Error parsing Port value(%v):%v", tp.Port, err)
+				}
+				pm[natPort] = nil
+			}
+		}
+	}
+
+	mapData, ok := driverInfo[netlabel.PortMap]
+	if !ok {
+		return pm, nil
+	}
+
+	if portMapping, ok := mapData.([]types.PortBinding); ok {
+		for _, pp := range portMapping {
+			natPort, err := nat.NewPort(pp.Proto.String(), strconv.Itoa(int(pp.Port)))
+			if err != nil {
+				return pm, err
+			}
+			natBndg := nat.PortBinding{HostIP: pp.HostIP.String(), HostPort: strconv.Itoa(int(pp.HostPort))}
+			pm[natPort] = append(pm[natPort], natBndg)
+		}
+	}
+
+	return pm, nil
+}
+
+// GetSandboxPortMapInfo retrieves the current port-mapping programmed for the given sandbox
+func GetSandboxPortMapInfo(sb libnetwork.Sandbox) nat.PortMap {
+	pm := nat.PortMap{}
+	if sb == nil {
+		return pm
+	}
+
+	for _, ep := range sb.Endpoints() {
+		pm, _ = getEndpointPortMapInfo(ep)
+		if len(pm) > 0 {
+			break
+		}
+	}
+	return pm
+}
+
+// BuildEndpointInfo sets endpoint-related fields on container.NetworkSettings based on the provided network and endpoint.
+func (container *Container) BuildEndpointInfo(n libnetwork.Network, ep libnetwork.Endpoint) error {
+	if ep == nil {
+		return errInvalidEndpoint
+	}
+
+	networkSettings := container.NetworkSettings
+	if networkSettings == nil {
+		return errInvalidNetwork
+	}
+
+	epInfo := ep.Info()
+	if epInfo == nil {
+		// It is not an error to get an empty endpoint info
+		return nil
+	}
+
+	if _, ok := networkSettings.Networks[n.Name()]; !ok {
+		networkSettings.Networks[n.Name()] = &network.EndpointSettings{
+			EndpointSettings: &networktypes.EndpointSettings{},
+		}
+	}
+	networkSettings.Networks[n.Name()].NetworkID = n.ID()
+	networkSettings.Networks[n.Name()].EndpointID = ep.ID()
+
+	iface := epInfo.Iface()
+	if iface == nil {
+		return nil
+	}
+
+	if iface.MacAddress() != nil {
+		networkSettings.Networks[n.Name()].MacAddress = iface.MacAddress().String()
+	}
+
+	if iface.Address() != nil {
+		ones, _ := iface.Address().Mask.Size()
+		networkSettings.Networks[n.Name()].IPAddress = iface.Address().IP.String()
+		networkSettings.Networks[n.Name()].IPPrefixLen = ones
+	}
+
+	if iface.AddressIPv6() != nil && iface.AddressIPv6().IP.To16() != nil {
+		onesv6, _ := iface.AddressIPv6().Mask.Size()
+		networkSettings.Networks[n.Name()].GlobalIPv6Address = iface.AddressIPv6().IP.String()
+		networkSettings.Networks[n.Name()].GlobalIPv6PrefixLen = onesv6
+	}
+
+	return nil
+}
+
+type named interface {
+	Name() string
+}
+
+// UpdateJoinInfo updates network settings when container joins network n with endpoint ep.
+func (container *Container) UpdateJoinInfo(n named, ep libnetwork.Endpoint) error {
+	if err := container.buildPortMapInfo(ep); err != nil {
+		return err
+	}
+
+	epInfo := ep.Info()
+	if epInfo == nil {
+		// It is not an error to get an empty endpoint info
+		return nil
+	}
+	if epInfo.Gateway() != nil {
+		container.NetworkSettings.Networks[n.Name()].Gateway = epInfo.Gateway().String()
+	}
+	if epInfo.GatewayIPv6().To16() != nil {
+		container.NetworkSettings.Networks[n.Name()].IPv6Gateway = epInfo.GatewayIPv6().String()
+	}
+
+	return nil
+}
+
+// UpdateSandboxNetworkSettings updates the sandbox ID and Key.
+func (container *Container) UpdateSandboxNetworkSettings(sb libnetwork.Sandbox) error {
+	container.NetworkSettings.SandboxID = sb.ID()
+	container.NetworkSettings.SandboxKey = sb.Key()
+	return nil
+}
+
+// BuildJoinOptions builds endpoint Join options from a given network.
+func (container *Container) BuildJoinOptions(n named) ([]libnetwork.EndpointOption, error) {
+	var joinOptions []libnetwork.EndpointOption
+	if epConfig, ok := container.NetworkSettings.Networks[n.Name()]; ok {
+		for _, str := range epConfig.Links {
+			name, alias, err := opts.ParseLink(str)
+			if err != nil {
+				return nil, err
+			}
+			joinOptions = append(joinOptions, libnetwork.CreateOptionAlias(name, alias))
+		}
+		for k, v := range epConfig.DriverOpts {
+			joinOptions = append(joinOptions, libnetwork.EndpointOptionGeneric(options.Generic{k: v}))
+		}
+	}
+
+	return joinOptions, nil
+}
+
+// BuildCreateEndpointOptions builds endpoint options from a given network.
+func (container *Container) BuildCreateEndpointOptions(n libnetwork.Network, epConfig *networktypes.EndpointSettings, sb libnetwork.Sandbox, daemonDNS []string) ([]libnetwork.EndpointOption, error) {
+	var (
+		bindings      = make(nat.PortMap)
+		pbList        []types.PortBinding
+		exposeList    []types.TransportPort
+		createOptions []libnetwork.EndpointOption
+	)
+
+	defaultNetName := runconfig.DefaultDaemonNetworkMode().NetworkName()
+
+	if (!container.EnableServiceDiscoveryOnDefaultNetwork() && n.Name() == defaultNetName) ||
+		container.NetworkSettings.IsAnonymousEndpoint {
+		createOptions = append(createOptions, libnetwork.CreateOptionAnonymous())
+	}
+
+	if epConfig != nil {
+		ipam := epConfig.IPAMConfig
+
+		if ipam != nil {
+			var (
+				ipList          []net.IP
+				ip, ip6, linkip net.IP
+			)
+
+			for _, ips := range ipam.LinkLocalIPs {
+				if linkip = net.ParseIP(ips); linkip == nil && ips != "" {
+					return nil, errors.Errorf("Invalid link-local IP address: %s", ipam.LinkLocalIPs)
+				}
+				ipList = append(ipList, linkip)
+
+			}
+
+			if ip = net.ParseIP(ipam.IPv4Address); ip == nil && ipam.IPv4Address != "" {
+				return nil, errors.Errorf("Invalid IPv4 address: %s)", ipam.IPv4Address)
+			}
+
+			if ip6 = net.ParseIP(ipam.IPv6Address); ip6 == nil && ipam.IPv6Address != "" {
+				return nil, errors.Errorf("Invalid IPv6 address: %s)", ipam.IPv6Address)
+			}
+
+			createOptions = append(createOptions,
+				libnetwork.CreateOptionIpam(ip, ip6, ipList, nil))
+
+		}
+
+		for _, alias := range epConfig.Aliases {
+			createOptions = append(createOptions, libnetwork.CreateOptionMyAlias(alias))
+		}
+		for k, v := range epConfig.DriverOpts {
+			createOptions = append(createOptions, libnetwork.EndpointOptionGeneric(options.Generic{k: v}))
+		}
+	}
+
+	if container.NetworkSettings.Service != nil {
+		svcCfg := container.NetworkSettings.Service
+
+		var vip string
+		if svcCfg.VirtualAddresses[n.ID()] != nil {
+			vip = svcCfg.VirtualAddresses[n.ID()].IPv4
+		}
+
+		var portConfigs []*libnetwork.PortConfig
+		for _, portConfig := range svcCfg.ExposedPorts {
+			portConfigs = append(portConfigs, &libnetwork.PortConfig{
+				Name:          portConfig.Name,
+				Protocol:      libnetwork.PortConfig_Protocol(portConfig.Protocol),
+				TargetPort:    portConfig.TargetPort,
+				PublishedPort: portConfig.PublishedPort,
+			})
+		}
+
+		createOptions = append(createOptions, libnetwork.CreateOptionService(svcCfg.Name, svcCfg.ID, net.ParseIP(vip), portConfigs, svcCfg.Aliases[n.ID()]))
+	}
+
+	if !containertypes.NetworkMode(n.Name()).IsUserDefined() {
+		createOptions = append(createOptions, libnetwork.CreateOptionDisableResolution())
+	}
+
+	// configs that are applicable only for the endpoint in the network
+	// to which container was connected to on docker run.
+	// Ideally all these network-specific endpoint configurations must be moved under
+	// container.NetworkSettings.Networks[n.Name()]
+	if n.Name() == container.HostConfig.NetworkMode.NetworkName() ||
+		(n.Name() == defaultNetName && container.HostConfig.NetworkMode.IsDefault()) {
+		if container.Config.MacAddress != "" {
+			mac, err := net.ParseMAC(container.Config.MacAddress)
+			if err != nil {
+				return nil, err
+			}
+
+			genericOption := options.Generic{
+				netlabel.MacAddress: mac,
+			}
+
+			createOptions = append(createOptions, libnetwork.EndpointOptionGeneric(genericOption))
+		}
+
+	}
+
+	// Port-mapping rules belong to the container & applicable only to non-internal networks
+	portmaps := GetSandboxPortMapInfo(sb)
+	if n.Info().Internal() || len(portmaps) > 0 {
+		return createOptions, nil
+	}
+
+	if container.HostConfig.PortBindings != nil {
+		for p, b := range container.HostConfig.PortBindings {
+			bindings[p] = []nat.PortBinding{}
+			for _, bb := range b {
+				bindings[p] = append(bindings[p], nat.PortBinding{
+					HostIP:   bb.HostIP,
+					HostPort: bb.HostPort,
+				})
+			}
+		}
+	}
+
+	portSpecs := container.Config.ExposedPorts
+	ports := make([]nat.Port, len(portSpecs))
+	var i int
+	for p := range portSpecs {
+		ports[i] = p
+		i++
+	}
+	nat.SortPortMap(ports, bindings)
+	for _, port := range ports {
+		expose := types.TransportPort{}
+		expose.Proto = types.ParseProtocol(port.Proto())
+		expose.Port = uint16(port.Int())
+		exposeList = append(exposeList, expose)
+
+		pb := types.PortBinding{Port: expose.Port, Proto: expose.Proto}
+		binding := bindings[port]
+		for i := 0; i < len(binding); i++ {
+			pbCopy := pb.GetCopy()
+			newP, err := nat.NewPort(nat.SplitProtoPort(binding[i].HostPort))
+			var portStart, portEnd int
+			if err == nil {
+				portStart, portEnd, err = newP.Range()
+			}
+			if err != nil {
+				return nil, errors.Wrapf(err, "Error parsing HostPort value (%s)", binding[i].HostPort)
+			}
+			pbCopy.HostPort = uint16(portStart)
+			pbCopy.HostPortEnd = uint16(portEnd)
+			pbCopy.HostIP = net.ParseIP(binding[i].HostIP)
+			pbList = append(pbList, pbCopy)
+		}
+
+		if container.HostConfig.PublishAllPorts && len(binding) == 0 {
+			pbList = append(pbList, pb)
+		}
+	}
+
+	var dns []string
+
+	if len(container.HostConfig.DNS) > 0 {
+		dns = container.HostConfig.DNS
+	} else if len(daemonDNS) > 0 {
+		dns = daemonDNS
+	}
+
+	if len(dns) > 0 {
+		createOptions = append(createOptions,
+			libnetwork.CreateOptionDNS(dns))
+	}
+
+	createOptions = append(createOptions,
+		libnetwork.CreateOptionPortMapping(pbList),
+		libnetwork.CreateOptionExposedPorts(exposeList))
+
+	return createOptions, nil
+}
+
+// UpdateMonitor updates monitor configure for running container
+func (container *Container) UpdateMonitor(restartPolicy containertypes.RestartPolicy) {
+	type policySetter interface {
+		SetPolicy(containertypes.RestartPolicy)
+	}
+
+	if rm, ok := container.RestartManager().(policySetter); ok {
+		rm.SetPolicy(restartPolicy)
+	}
+}
+
+// FullHostname returns hostname and optional domain appended to it.
+func (container *Container) FullHostname() string {
+	fullHostname := container.Config.Hostname
+	if container.Config.Domainname != "" {
+		fullHostname = fmt.Sprintf("%s.%s", fullHostname, container.Config.Domainname)
+	}
+	return fullHostname
+}
+
+// RestartManager returns the current restartmanager instance connected to container.
+func (container *Container) RestartManager() restartmanager.RestartManager {
+	if container.restartManager == nil {
+		container.restartManager = restartmanager.New(container.HostConfig.RestartPolicy, container.RestartCount)
+	}
+	return container.restartManager
+}
+
+// ResetRestartManager initializes new restartmanager based on container config
+func (container *Container) ResetRestartManager(resetCount bool) {
+	if container.restartManager != nil {
+		container.restartManager.Cancel()
+	}
+	if resetCount {
+		container.RestartCount = 0
+	}
+	container.restartManager = nil
+}
+
+type attachContext struct {
+	ctx    context.Context
+	cancel context.CancelFunc
+	mu     sync.Mutex
+}
+
+// InitAttachContext initializes or returns existing context for attach calls to
+// track container liveness.
+func (container *Container) InitAttachContext() context.Context {
+	container.attachContext.mu.Lock()
+	defer container.attachContext.mu.Unlock()
+	if container.attachContext.ctx == nil {
+		container.attachContext.ctx, container.attachContext.cancel = context.WithCancel(context.Background())
+	}
+	return container.attachContext.ctx
+}
+
+// CancelAttachContext cancels attach context. All attach calls should detach
+// after this call.
+func (container *Container) CancelAttachContext() {
+	container.attachContext.mu.Lock()
+	if container.attachContext.ctx != nil {
+		container.attachContext.cancel()
+		container.attachContext.ctx = nil
+	}
+	container.attachContext.mu.Unlock()
+}
+
+func (container *Container) startLogging() error {
+	if container.HostConfig.LogConfig.Type == "none" {
+		return nil // do not start logging routines
+	}
+
+	l, err := container.StartLogger()
+	if err != nil {
+		return fmt.Errorf("failed to initialize logging driver: %v", err)
+	}
+
+	copier := logger.NewCopier(map[string]io.Reader{"stdout": container.StdoutPipe(), "stderr": container.StderrPipe()}, l)
+	container.LogCopier = copier
+	copier.Run()
+	container.LogDriver = l
+
+	return nil
+}
+
+// StdinPipe gets the stdin stream of the container
+func (container *Container) StdinPipe() io.WriteCloser {
+	return container.StreamConfig.StdinPipe()
+}
+
+// StdoutPipe gets the stdout stream of the container
+func (container *Container) StdoutPipe() io.ReadCloser {
+	return container.StreamConfig.StdoutPipe()
+}
+
+// StderrPipe gets the stderr stream of the container
+func (container *Container) StderrPipe() io.ReadCloser {
+	return container.StreamConfig.StderrPipe()
+}
+
+// CloseStreams closes the container's stdio streams
+func (container *Container) CloseStreams() error {
+	return container.StreamConfig.CloseStreams()
+}
+
+// InitializeStdio is called by libcontainerd to connect the stdio.
+func (container *Container) InitializeStdio(iop *cio.DirectIO) (cio.IO, error) {
+	if err := container.startLogging(); err != nil {
+		container.Reset(false)
+		return nil, err
+	}
+
+	container.StreamConfig.CopyToPipe(iop)
+
+	if container.StreamConfig.Stdin() == nil && !container.Config.Tty {
+		if iop.Stdin != nil {
+			if err := iop.Stdin.Close(); err != nil {
+				logrus.Warnf("error closing stdin: %+v", err)
+			}
+		}
+	}
+
+	return &rio{IO: iop, sc: container.StreamConfig}, nil
+}
+
+// MountsResourcePath returns the path where mounts are stored for the given mount
+func (container *Container) MountsResourcePath(mount string) (string, error) {
+	return container.GetRootResourcePath(filepath.Join("mounts", mount))
+}
+
+// SecretMountPath returns the path of the secret mount for the container
+func (container *Container) SecretMountPath() (string, error) {
+	return container.MountsResourcePath("secrets")
+}
+
+// SecretFilePath returns the path to the location of a secret on the host.
+func (container *Container) SecretFilePath(secretRef swarmtypes.SecretReference) (string, error) {
+	secrets, err := container.SecretMountPath()
+	if err != nil {
+		return "", err
+	}
+	return filepath.Join(secrets, secretRef.SecretID), nil
+}
+
+func getSecretTargetPath(r *swarmtypes.SecretReference) string {
+	if filepath.IsAbs(r.File.Name) {
+		return r.File.Name
+	}
+
+	return filepath.Join(containerSecretMountPath, r.File.Name)
+}
+
+// CreateDaemonEnvironment creates a new environment variable slice for this container.
+func (container *Container) CreateDaemonEnvironment(tty bool, linkedEnv []string) []string {
+	// Setup environment
+	os := container.OS
+	if os == "" {
+		os = runtime.GOOS
+	}
+	env := []string{}
+	if runtime.GOOS != "windows" || (runtime.GOOS == "windows" && os == "linux") {
+		env = []string{
+			"PATH=" + system.DefaultPathEnv(os),
+			"HOSTNAME=" + container.Config.Hostname,
+		}
+		if tty {
+			env = append(env, "TERM=xterm")
+		}
+		env = append(env, linkedEnv...)
+	}
+
+	// because the env on the container can override certain default values
+	// we need to replace the 'env' keys where they match and append anything
+	// else.
+	env = ReplaceOrAppendEnvValues(env, container.Config.Env)
+	return env
+}
+
+type rio struct {
+	cio.IO
+
+	sc *stream.Config
+}
+
+func (i *rio) Close() error {
+	i.IO.Close()
+
+	return i.sc.CloseStreams()
+}
+
+func (i *rio) Wait() {
+	i.sc.Wait()
+
+	i.IO.Wait()
+}
diff --git a/vendor/github.com/docker/docker/container/container_linux.go b/vendor/github.com/docker/docker/container/container_linux.go
new file mode 100644
index 0000000000..ea2ebabaaa
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/container_linux.go
@@ -0,0 +1,9 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+func detachMounted(path string) error {
+	return unix.Unmount(path, unix.MNT_DETACH)
+}
diff --git a/vendor/github.com/docker/docker/container/container_notlinux.go b/vendor/github.com/docker/docker/container/container_notlinux.go
new file mode 100644
index 0000000000..dc9751b8c7
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/container_notlinux.go
@@ -0,0 +1,23 @@
+// +build freebsd
+
+package container // import "github.com/docker/docker/container"
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+func detachMounted(path string) error {
+	// FreeBSD do not support the lazy unmount or MNT_DETACH feature.
+	// Therefore there are separate definitions for this.
+	return unix.Unmount(path, 0)
+}
+
+// SecretMounts returns the mounts for the secret path
+func (container *Container) SecretMounts() []Mount {
+	return nil
+}
+
+// UnmountSecrets unmounts the fs for secrets
+func (container *Container) UnmountSecrets() error {
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/container/container_unix.go b/vendor/github.com/docker/docker/container/container_unix.go
new file mode 100644
index 0000000000..9397cdf60b
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/container_unix.go
@@ -0,0 +1,462 @@
+// +build linux freebsd
+
+package container // import "github.com/docker/docker/container"
+
+import (
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/containerd/continuity/fs"
+	"github.com/docker/docker/api/types"
+	containertypes "github.com/docker/docker/api/types/container"
+	mounttypes "github.com/docker/docker/api/types/mount"
+	swarmtypes "github.com/docker/docker/api/types/swarm"
+	"github.com/docker/docker/pkg/mount"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/volume"
+	volumemounts "github.com/docker/docker/volume/mounts"
+	"github.com/opencontainers/selinux/go-selinux/label"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"golang.org/x/sys/unix"
+)
+
+const (
+	// DefaultStopTimeout is the timeout (in seconds) for the syscall signal used to stop a container.
+	DefaultStopTimeout = 10
+
+	containerSecretMountPath = "/run/secrets"
+)
+
+// TrySetNetworkMount attempts to set the network mounts given a provided destination and
+// the path to use for it; return true if the given destination was a network mount file
+func (container *Container) TrySetNetworkMount(destination string, path string) bool {
+	if destination == "/etc/resolv.conf" {
+		container.ResolvConfPath = path
+		return true
+	}
+	if destination == "/etc/hostname" {
+		container.HostnamePath = path
+		return true
+	}
+	if destination == "/etc/hosts" {
+		container.HostsPath = path
+		return true
+	}
+
+	return false
+}
+
+// BuildHostnameFile writes the container's hostname file.
+func (container *Container) BuildHostnameFile() error {
+	hostnamePath, err := container.GetRootResourcePath("hostname")
+	if err != nil {
+		return err
+	}
+	container.HostnamePath = hostnamePath
+	return ioutil.WriteFile(container.HostnamePath, []byte(container.Config.Hostname+"\n"), 0644)
+}
+
+// NetworkMounts returns the list of network mounts.
+func (container *Container) NetworkMounts() []Mount {
+	var mounts []Mount
+	shared := container.HostConfig.NetworkMode.IsContainer()
+	parser := volumemounts.NewParser(container.OS)
+	if container.ResolvConfPath != "" {
+		if _, err := os.Stat(container.ResolvConfPath); err != nil {
+			logrus.Warnf("ResolvConfPath set to %q, but can't stat this filename (err = %v); skipping", container.ResolvConfPath, err)
+		} else {
+			writable := !container.HostConfig.ReadonlyRootfs
+			if m, exists := container.MountPoints["/etc/resolv.conf"]; exists {
+				writable = m.RW
+			} else {
+				label.Relabel(container.ResolvConfPath, container.MountLabel, shared)
+			}
+			mounts = append(mounts, Mount{
+				Source:      container.ResolvConfPath,
+				Destination: "/etc/resolv.conf",
+				Writable:    writable,
+				Propagation: string(parser.DefaultPropagationMode()),
+			})
+		}
+	}
+	if container.HostnamePath != "" {
+		if _, err := os.Stat(container.HostnamePath); err != nil {
+			logrus.Warnf("HostnamePath set to %q, but can't stat this filename (err = %v); skipping", container.HostnamePath, err)
+		} else {
+			writable := !container.HostConfig.ReadonlyRootfs
+			if m, exists := container.MountPoints["/etc/hostname"]; exists {
+				writable = m.RW
+			} else {
+				label.Relabel(container.HostnamePath, container.MountLabel, shared)
+			}
+			mounts = append(mounts, Mount{
+				Source:      container.HostnamePath,
+				Destination: "/etc/hostname",
+				Writable:    writable,
+				Propagation: string(parser.DefaultPropagationMode()),
+			})
+		}
+	}
+	if container.HostsPath != "" {
+		if _, err := os.Stat(container.HostsPath); err != nil {
+			logrus.Warnf("HostsPath set to %q, but can't stat this filename (err = %v); skipping", container.HostsPath, err)
+		} else {
+			writable := !container.HostConfig.ReadonlyRootfs
+			if m, exists := container.MountPoints["/etc/hosts"]; exists {
+				writable = m.RW
+			} else {
+				label.Relabel(container.HostsPath, container.MountLabel, shared)
+			}
+			mounts = append(mounts, Mount{
+				Source:      container.HostsPath,
+				Destination: "/etc/hosts",
+				Writable:    writable,
+				Propagation: string(parser.DefaultPropagationMode()),
+			})
+		}
+	}
+	return mounts
+}
+
+// CopyImagePathContent copies files in destination to the volume.
+func (container *Container) CopyImagePathContent(v volume.Volume, destination string) error {
+	rootfs, err := container.GetResourcePath(destination)
+	if err != nil {
+		return err
+	}
+
+	if _, err = ioutil.ReadDir(rootfs); err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+
+	id := stringid.GenerateNonCryptoID()
+	path, err := v.Mount(id)
+	if err != nil {
+		return err
+	}
+
+	defer func() {
+		if err := v.Unmount(id); err != nil {
+			logrus.Warnf("error while unmounting volume %s: %v", v.Name(), err)
+		}
+	}()
+	if err := label.Relabel(path, container.MountLabel, true); err != nil && err != unix.ENOTSUP {
+		return err
+	}
+	return copyExistingContents(rootfs, path)
+}
+
+// ShmResourcePath returns path to shm
+func (container *Container) ShmResourcePath() (string, error) {
+	return container.MountsResourcePath("shm")
+}
+
+// HasMountFor checks if path is a mountpoint
+func (container *Container) HasMountFor(path string) bool {
+	_, exists := container.MountPoints[path]
+	if exists {
+		return true
+	}
+
+	// Also search among the tmpfs mounts
+	for dest := range container.HostConfig.Tmpfs {
+		if dest == path {
+			return true
+		}
+	}
+
+	return false
+}
+
+// UnmountIpcMount uses the provided unmount function to unmount shm if it was mounted
+func (container *Container) UnmountIpcMount(unmount func(pth string) error) error {
+	if container.HasMountFor("/dev/shm") {
+		return nil
+	}
+
+	// container.ShmPath should not be used here as it may point
+	// to the host's or other container's /dev/shm
+	shmPath, err := container.ShmResourcePath()
+	if err != nil {
+		return err
+	}
+	if shmPath == "" {
+		return nil
+	}
+	if err = unmount(shmPath); err != nil && !os.IsNotExist(err) {
+		if mounted, mErr := mount.Mounted(shmPath); mounted || mErr != nil {
+			return errors.Wrapf(err, "umount %s", shmPath)
+		}
+	}
+	return nil
+}
+
+// IpcMounts returns the list of IPC mounts
+func (container *Container) IpcMounts() []Mount {
+	var mounts []Mount
+	parser := volumemounts.NewParser(container.OS)
+
+	if container.HasMountFor("/dev/shm") {
+		return mounts
+	}
+	if container.ShmPath == "" {
+		return mounts
+	}
+
+	label.SetFileLabel(container.ShmPath, container.MountLabel)
+	mounts = append(mounts, Mount{
+		Source:      container.ShmPath,
+		Destination: "/dev/shm",
+		Writable:    true,
+		Propagation: string(parser.DefaultPropagationMode()),
+	})
+
+	return mounts
+}
+
+// SecretMounts returns the mounts for the secret path.
+func (container *Container) SecretMounts() ([]Mount, error) {
+	var mounts []Mount
+	for _, r := range container.SecretReferences {
+		if r.File == nil {
+			continue
+		}
+		src, err := container.SecretFilePath(*r)
+		if err != nil {
+			return nil, err
+		}
+		mounts = append(mounts, Mount{
+			Source:      src,
+			Destination: getSecretTargetPath(r),
+			Writable:    false,
+		})
+	}
+	for _, r := range container.ConfigReferences {
+		fPath, err := container.ConfigFilePath(*r)
+		if err != nil {
+			return nil, err
+		}
+		mounts = append(mounts, Mount{
+			Source:      fPath,
+			Destination: r.File.Name,
+			Writable:    false,
+		})
+	}
+
+	return mounts, nil
+}
+
+// UnmountSecrets unmounts the local tmpfs for secrets
+func (container *Container) UnmountSecrets() error {
+	p, err := container.SecretMountPath()
+	if err != nil {
+		return err
+	}
+	if _, err := os.Stat(p); err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+
+	return mount.RecursiveUnmount(p)
+}
+
+type conflictingUpdateOptions string
+
+func (e conflictingUpdateOptions) Error() string {
+	return string(e)
+}
+
+func (e conflictingUpdateOptions) Conflict() {}
+
+// UpdateContainer updates configuration of a container. Callers must hold a Lock on the Container.
+func (container *Container) UpdateContainer(hostConfig *containertypes.HostConfig) error {
+	// update resources of container
+	resources := hostConfig.Resources
+	cResources := &container.HostConfig.Resources
+
+	// validate NanoCPUs, CPUPeriod, and CPUQuota
+	// Because NanoCPU effectively updates CPUPeriod/CPUQuota,
+	// once NanoCPU is already set, updating CPUPeriod/CPUQuota will be blocked, and vice versa.
+	// In the following we make sure the intended update (resources) does not conflict with the existing (cResource).
+	if resources.NanoCPUs > 0 && cResources.CPUPeriod > 0 {
+		return conflictingUpdateOptions("Conflicting options: Nano CPUs cannot be updated as CPU Period has already been set")
+	}
+	if resources.NanoCPUs > 0 && cResources.CPUQuota > 0 {
+		return conflictingUpdateOptions("Conflicting options: Nano CPUs cannot be updated as CPU Quota has already been set")
+	}
+	if resources.CPUPeriod > 0 && cResources.NanoCPUs > 0 {
+		return conflictingUpdateOptions("Conflicting options: CPU Period cannot be updated as NanoCPUs has already been set")
+	}
+	if resources.CPUQuota > 0 && cResources.NanoCPUs > 0 {
+		return conflictingUpdateOptions("Conflicting options: CPU Quota cannot be updated as NanoCPUs has already been set")
+	}
+
+	if resources.BlkioWeight != 0 {
+		cResources.BlkioWeight = resources.BlkioWeight
+	}
+	if resources.CPUShares != 0 {
+		cResources.CPUShares = resources.CPUShares
+	}
+	if resources.NanoCPUs != 0 {
+		cResources.NanoCPUs = resources.NanoCPUs
+	}
+	if resources.CPUPeriod != 0 {
+		cResources.CPUPeriod = resources.CPUPeriod
+	}
+	if resources.CPUQuota != 0 {
+		cResources.CPUQuota = resources.CPUQuota
+	}
+	if resources.CpusetCpus != "" {
+		cResources.CpusetCpus = resources.CpusetCpus
+	}
+	if resources.CpusetMems != "" {
+		cResources.CpusetMems = resources.CpusetMems
+	}
+	if resources.Memory != 0 {
+		// if memory limit smaller than already set memoryswap limit and doesn't
+		// update the memoryswap limit, then error out.
+		if resources.Memory > cResources.MemorySwap && resources.MemorySwap == 0 {
+			return conflictingUpdateOptions("Memory limit should be smaller than already set memoryswap limit, update the memoryswap at the same time")
+		}
+		cResources.Memory = resources.Memory
+	}
+	if resources.MemorySwap != 0 {
+		cResources.MemorySwap = resources.MemorySwap
+	}
+	if resources.MemoryReservation != 0 {
+		cResources.MemoryReservation = resources.MemoryReservation
+	}
+	if resources.KernelMemory != 0 {
+		cResources.KernelMemory = resources.KernelMemory
+	}
+	if resources.CPURealtimePeriod != 0 {
+		cResources.CPURealtimePeriod = resources.CPURealtimePeriod
+	}
+	if resources.CPURealtimeRuntime != 0 {
+		cResources.CPURealtimeRuntime = resources.CPURealtimeRuntime
+	}
+
+	// update HostConfig of container
+	if hostConfig.RestartPolicy.Name != "" {
+		if container.HostConfig.AutoRemove && !hostConfig.RestartPolicy.IsNone() {
+			return conflictingUpdateOptions("Restart policy cannot be updated because AutoRemove is enabled for the container")
+		}
+		container.HostConfig.RestartPolicy = hostConfig.RestartPolicy
+	}
+
+	return nil
+}
+
+// DetachAndUnmount uses a detached mount on all mount destinations, then
+// unmounts each volume normally.
+// This is used from daemon/archive for `docker cp`
+func (container *Container) DetachAndUnmount(volumeEventLog func(name, action string, attributes map[string]string)) error {
+	networkMounts := container.NetworkMounts()
+	mountPaths := make([]string, 0, len(container.MountPoints)+len(networkMounts))
+
+	for _, mntPoint := range container.MountPoints {
+		dest, err := container.GetResourcePath(mntPoint.Destination)
+		if err != nil {
+			logrus.Warnf("Failed to get volume destination path for container '%s' at '%s' while lazily unmounting: %v", container.ID, mntPoint.Destination, err)
+			continue
+		}
+		mountPaths = append(mountPaths, dest)
+	}
+
+	for _, m := range networkMounts {
+		dest, err := container.GetResourcePath(m.Destination)
+		if err != nil {
+			logrus.Warnf("Failed to get volume destination path for container '%s' at '%s' while lazily unmounting: %v", container.ID, m.Destination, err)
+			continue
+		}
+		mountPaths = append(mountPaths, dest)
+	}
+
+	for _, mountPath := range mountPaths {
+		if err := detachMounted(mountPath); err != nil {
+			logrus.Warnf("%s unmountVolumes: Failed to do lazy umount fo volume '%s': %v", container.ID, mountPath, err)
+		}
+	}
+	return container.UnmountVolumes(volumeEventLog)
+}
+
+// copyExistingContents copies from the source to the destination and
+// ensures the ownership is appropriately set.
+func copyExistingContents(source, destination string) error {
+	dstList, err := ioutil.ReadDir(destination)
+	if err != nil {
+		return err
+	}
+	if len(dstList) != 0 {
+		// destination is not empty, do not copy
+		return nil
+	}
+	return fs.CopyDir(destination, source)
+}
+
+// TmpfsMounts returns the list of tmpfs mounts
+func (container *Container) TmpfsMounts() ([]Mount, error) {
+	parser := volumemounts.NewParser(container.OS)
+	var mounts []Mount
+	for dest, data := range container.HostConfig.Tmpfs {
+		mounts = append(mounts, Mount{
+			Source:      "tmpfs",
+			Destination: dest,
+			Data:        data,
+		})
+	}
+	for dest, mnt := range container.MountPoints {
+		if mnt.Type == mounttypes.TypeTmpfs {
+			data, err := parser.ConvertTmpfsOptions(mnt.Spec.TmpfsOptions, mnt.Spec.ReadOnly)
+			if err != nil {
+				return nil, err
+			}
+			mounts = append(mounts, Mount{
+				Source:      "tmpfs",
+				Destination: dest,
+				Data:        data,
+			})
+		}
+	}
+	return mounts, nil
+}
+
+// EnableServiceDiscoveryOnDefaultNetwork Enable service discovery on default network
+func (container *Container) EnableServiceDiscoveryOnDefaultNetwork() bool {
+	return false
+}
+
+// GetMountPoints gives a platform specific transformation to types.MountPoint. Callers must hold a Container lock.
+func (container *Container) GetMountPoints() []types.MountPoint {
+	mountPoints := make([]types.MountPoint, 0, len(container.MountPoints))
+	for _, m := range container.MountPoints {
+		mountPoints = append(mountPoints, types.MountPoint{
+			Type:        m.Type,
+			Name:        m.Name,
+			Source:      m.Path(),
+			Destination: m.Destination,
+			Driver:      m.Driver,
+			Mode:        m.Mode,
+			RW:          m.RW,
+			Propagation: m.Propagation,
+		})
+	}
+	return mountPoints
+}
+
+// ConfigFilePath returns the path to the on-disk location of a config.
+// On unix, configs are always considered secret
+func (container *Container) ConfigFilePath(configRef swarmtypes.ConfigReference) (string, error) {
+	mounts, err := container.SecretMountPath()
+	if err != nil {
+		return "", err
+	}
+	return filepath.Join(mounts, configRef.ConfigID), nil
+}
diff --git a/vendor/github.com/docker/docker/container/container_windows.go b/vendor/github.com/docker/docker/container/container_windows.go
new file mode 100644
index 0000000000..b5bdb5bc34
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/container_windows.go
@@ -0,0 +1,213 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"fmt"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/api/types"
+	containertypes "github.com/docker/docker/api/types/container"
+	swarmtypes "github.com/docker/docker/api/types/swarm"
+	"github.com/docker/docker/pkg/system"
+)
+
+const (
+	containerSecretMountPath         = `C:\ProgramData\Docker\secrets`
+	containerInternalSecretMountPath = `C:\ProgramData\Docker\internal\secrets`
+	containerInternalConfigsDirPath  = `C:\ProgramData\Docker\internal\configs`
+
+	// DefaultStopTimeout is the timeout (in seconds) for the shutdown call on a container
+	DefaultStopTimeout = 30
+)
+
+// UnmountIpcMount unmounts Ipc related mounts.
+// This is a NOOP on windows.
+func (container *Container) UnmountIpcMount(unmount func(pth string) error) error {
+	return nil
+}
+
+// IpcMounts returns the list of Ipc related mounts.
+func (container *Container) IpcMounts() []Mount {
+	return nil
+}
+
+// CreateSecretSymlinks creates symlinks to files in the secret mount.
+func (container *Container) CreateSecretSymlinks() error {
+	for _, r := range container.SecretReferences {
+		if r.File == nil {
+			continue
+		}
+		resolvedPath, _, err := container.ResolvePath(getSecretTargetPath(r))
+		if err != nil {
+			return err
+		}
+		if err := system.MkdirAll(filepath.Dir(resolvedPath), 0, ""); err != nil {
+			return err
+		}
+		if err := os.Symlink(filepath.Join(containerInternalSecretMountPath, r.SecretID), resolvedPath); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// SecretMounts returns the mount for the secret path.
+// All secrets are stored in a single mount on Windows. Target symlinks are
+// created for each secret, pointing to the files in this mount.
+func (container *Container) SecretMounts() ([]Mount, error) {
+	var mounts []Mount
+	if len(container.SecretReferences) > 0 {
+		src, err := container.SecretMountPath()
+		if err != nil {
+			return nil, err
+		}
+		mounts = append(mounts, Mount{
+			Source:      src,
+			Destination: containerInternalSecretMountPath,
+			Writable:    false,
+		})
+	}
+
+	return mounts, nil
+}
+
+// UnmountSecrets unmounts the fs for secrets
+func (container *Container) UnmountSecrets() error {
+	p, err := container.SecretMountPath()
+	if err != nil {
+		return err
+	}
+	return os.RemoveAll(p)
+}
+
+// CreateConfigSymlinks creates symlinks to files in the config mount.
+func (container *Container) CreateConfigSymlinks() error {
+	for _, configRef := range container.ConfigReferences {
+		if configRef.File == nil {
+			continue
+		}
+		resolvedPath, _, err := container.ResolvePath(configRef.File.Name)
+		if err != nil {
+			return err
+		}
+		if err := system.MkdirAll(filepath.Dir(resolvedPath), 0, ""); err != nil {
+			return err
+		}
+		if err := os.Symlink(filepath.Join(containerInternalConfigsDirPath, configRef.ConfigID), resolvedPath); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// ConfigMounts returns the mount for configs.
+// TODO: Right now Windows doesn't really have a "secure" storage for secrets,
+// however some configs may contain secrets. Once secure storage is worked out,
+// configs and secret handling should be merged.
+func (container *Container) ConfigMounts() []Mount {
+	var mounts []Mount
+	if len(container.ConfigReferences) > 0 {
+		mounts = append(mounts, Mount{
+			Source:      container.ConfigsDirPath(),
+			Destination: containerInternalConfigsDirPath,
+			Writable:    false,
+		})
+	}
+
+	return mounts
+}
+
+// DetachAndUnmount unmounts all volumes.
+// On Windows it only delegates to `UnmountVolumes` since there is nothing to
+// force unmount.
+func (container *Container) DetachAndUnmount(volumeEventLog func(name, action string, attributes map[string]string)) error {
+	return container.UnmountVolumes(volumeEventLog)
+}
+
+// TmpfsMounts returns the list of tmpfs mounts
+func (container *Container) TmpfsMounts() ([]Mount, error) {
+	var mounts []Mount
+	return mounts, nil
+}
+
+// UpdateContainer updates configuration of a container. Callers must hold a Lock on the Container.
+func (container *Container) UpdateContainer(hostConfig *containertypes.HostConfig) error {
+	resources := hostConfig.Resources
+	if resources.CPUShares != 0 ||
+		resources.Memory != 0 ||
+		resources.NanoCPUs != 0 ||
+		resources.CgroupParent != "" ||
+		resources.BlkioWeight != 0 ||
+		len(resources.BlkioWeightDevice) != 0 ||
+		len(resources.BlkioDeviceReadBps) != 0 ||
+		len(resources.BlkioDeviceWriteBps) != 0 ||
+		len(resources.BlkioDeviceReadIOps) != 0 ||
+		len(resources.BlkioDeviceWriteIOps) != 0 ||
+		resources.CPUPeriod != 0 ||
+		resources.CPUQuota != 0 ||
+		resources.CPURealtimePeriod != 0 ||
+		resources.CPURealtimeRuntime != 0 ||
+		resources.CpusetCpus != "" ||
+		resources.CpusetMems != "" ||
+		len(resources.Devices) != 0 ||
+		len(resources.DeviceCgroupRules) != 0 ||
+		resources.DiskQuota != 0 ||
+		resources.KernelMemory != 0 ||
+		resources.MemoryReservation != 0 ||
+		resources.MemorySwap != 0 ||
+		resources.MemorySwappiness != nil ||
+		resources.OomKillDisable != nil ||
+		resources.PidsLimit != 0 ||
+		len(resources.Ulimits) != 0 ||
+		resources.CPUCount != 0 ||
+		resources.CPUPercent != 0 ||
+		resources.IOMaximumIOps != 0 ||
+		resources.IOMaximumBandwidth != 0 {
+		return fmt.Errorf("resource updating isn't supported on Windows")
+	}
+	// update HostConfig of container
+	if hostConfig.RestartPolicy.Name != "" {
+		if container.HostConfig.AutoRemove && !hostConfig.RestartPolicy.IsNone() {
+			return fmt.Errorf("Restart policy cannot be updated because AutoRemove is enabled for the container")
+		}
+		container.HostConfig.RestartPolicy = hostConfig.RestartPolicy
+	}
+	return nil
+}
+
+// BuildHostnameFile writes the container's hostname file.
+func (container *Container) BuildHostnameFile() error {
+	return nil
+}
+
+// EnableServiceDiscoveryOnDefaultNetwork Enable service discovery on default network
+func (container *Container) EnableServiceDiscoveryOnDefaultNetwork() bool {
+	return true
+}
+
+// GetMountPoints gives a platform specific transformation to types.MountPoint. Callers must hold a Container lock.
+func (container *Container) GetMountPoints() []types.MountPoint {
+	mountPoints := make([]types.MountPoint, 0, len(container.MountPoints))
+	for _, m := range container.MountPoints {
+		mountPoints = append(mountPoints, types.MountPoint{
+			Type:        m.Type,
+			Name:        m.Name,
+			Source:      m.Path(),
+			Destination: m.Destination,
+			Driver:      m.Driver,
+			RW:          m.RW,
+		})
+	}
+	return mountPoints
+}
+
+func (container *Container) ConfigsDirPath() string {
+	return filepath.Join(container.Root, "configs")
+}
+
+// ConfigFilePath returns the path to the on-disk location of a config.
+func (container *Container) ConfigFilePath(configRef swarmtypes.ConfigReference) string {
+	return filepath.Join(container.ConfigsDirPath(), configRef.ConfigID)
+}
diff --git a/vendor/github.com/docker/docker/container/env.go b/vendor/github.com/docker/docker/container/env.go
new file mode 100644
index 0000000000..d225fd1471
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/env.go
@@ -0,0 +1,43 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"strings"
+)
+
+// ReplaceOrAppendEnvValues returns the defaults with the overrides either
+// replaced by env key or appended to the list
+func ReplaceOrAppendEnvValues(defaults, overrides []string) []string {
+	cache := make(map[string]int, len(defaults))
+	for i, e := range defaults {
+		parts := strings.SplitN(e, "=", 2)
+		cache[parts[0]] = i
+	}
+
+	for _, value := range overrides {
+		// Values w/o = means they want this env to be removed/unset.
+		if !strings.Contains(value, "=") {
+			if i, exists := cache[value]; exists {
+				defaults[i] = "" // Used to indicate it should be removed
+			}
+			continue
+		}
+
+		// Just do a normal set/update
+		parts := strings.SplitN(value, "=", 2)
+		if i, exists := cache[parts[0]]; exists {
+			defaults[i] = value
+		} else {
+			defaults = append(defaults, value)
+		}
+	}
+
+	// Now remove all entries that we want to "unset"
+	for i := 0; i < len(defaults); i++ {
+		if defaults[i] == "" {
+			defaults = append(defaults[:i], defaults[i+1:]...)
+			i--
+		}
+	}
+
+	return defaults
+}
diff --git a/vendor/github.com/docker/docker/container/health.go b/vendor/github.com/docker/docker/container/health.go
new file mode 100644
index 0000000000..167ee9b476
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/health.go
@@ -0,0 +1,82 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"sync"
+
+	"github.com/docker/docker/api/types"
+	"github.com/sirupsen/logrus"
+)
+
+// Health holds the current container health-check state
+type Health struct {
+	types.Health
+	stop chan struct{} // Write struct{} to stop the monitor
+	mu   sync.Mutex
+}
+
+// String returns a human-readable description of the health-check state
+func (s *Health) String() string {
+	status := s.Status()
+
+	switch status {
+	case types.Starting:
+		return "health: starting"
+	default: // Healthy and Unhealthy are clear on their own
+		return s.Health.Status
+	}
+}
+
+// Status returns the current health status.
+//
+// Note that this takes a lock and the value may change after being read.
+func (s *Health) Status() string {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	// This happens when the monitor has yet to be setup.
+	if s.Health.Status == "" {
+		return types.Unhealthy
+	}
+
+	return s.Health.Status
+}
+
+// SetStatus writes the current status to the underlying health structure,
+// obeying the locking semantics.
+//
+// Status may be set directly if another lock is used.
+func (s *Health) SetStatus(new string) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	s.Health.Status = new
+}
+
+// OpenMonitorChannel creates and returns a new monitor channel. If there
+// already is one, it returns nil.
+func (s *Health) OpenMonitorChannel() chan struct{} {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	if s.stop == nil {
+		logrus.Debug("OpenMonitorChannel")
+		s.stop = make(chan struct{})
+		return s.stop
+	}
+	return nil
+}
+
+// CloseMonitorChannel closes any existing monitor channel.
+func (s *Health) CloseMonitorChannel() {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	if s.stop != nil {
+		logrus.Debug("CloseMonitorChannel: waiting for probe to stop")
+		close(s.stop)
+		s.stop = nil
+		// unhealthy when the monitor has stopped for compatibility reasons
+		s.Health.Status = types.Unhealthy
+		logrus.Debug("CloseMonitorChannel done")
+	}
+}
diff --git a/vendor/github.com/docker/docker/container/history.go b/vendor/github.com/docker/docker/container/history.go
new file mode 100644
index 0000000000..7117d9a437
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/history.go
@@ -0,0 +1,30 @@
+package container // import "github.com/docker/docker/container"
+
+import "sort"
+
+// History is a convenience type for storing a list of containers,
+// sorted by creation date in descendant order.
+type History []*Container
+
+// Len returns the number of containers in the history.
+func (history *History) Len() int {
+	return len(*history)
+}
+
+// Less compares two containers and returns true if the second one
+// was created before the first one.
+func (history *History) Less(i, j int) bool {
+	containers := *history
+	return containers[j].Created.Before(containers[i].Created)
+}
+
+// Swap switches containers i and j positions in the history.
+func (history *History) Swap(i, j int) {
+	containers := *history
+	containers[i], containers[j] = containers[j], containers[i]
+}
+
+// sort orders the history by creation date in descendant order.
+func (history *History) sort() {
+	sort.Sort(history)
+}
diff --git a/vendor/github.com/docker/docker/container/memory_store.go b/vendor/github.com/docker/docker/container/memory_store.go
new file mode 100644
index 0000000000..ad4c9e20f6
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/memory_store.go
@@ -0,0 +1,95 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"sync"
+)
+
+// memoryStore implements a Store in memory.
+type memoryStore struct {
+	s map[string]*Container
+	sync.RWMutex
+}
+
+// NewMemoryStore initializes a new memory store.
+func NewMemoryStore() Store {
+	return &memoryStore{
+		s: make(map[string]*Container),
+	}
+}
+
+// Add appends a new container to the memory store.
+// It overrides the id if it existed before.
+func (c *memoryStore) Add(id string, cont *Container) {
+	c.Lock()
+	c.s[id] = cont
+	c.Unlock()
+}
+
+// Get returns a container from the store by id.
+func (c *memoryStore) Get(id string) *Container {
+	var res *Container
+	c.RLock()
+	res = c.s[id]
+	c.RUnlock()
+	return res
+}
+
+// Delete removes a container from the store by id.
+func (c *memoryStore) Delete(id string) {
+	c.Lock()
+	delete(c.s, id)
+	c.Unlock()
+}
+
+// List returns a sorted list of containers from the store.
+// The containers are ordered by creation date.
+func (c *memoryStore) List() []*Container {
+	containers := History(c.all())
+	containers.sort()
+	return containers
+}
+
+// Size returns the number of containers in the store.
+func (c *memoryStore) Size() int {
+	c.RLock()
+	defer c.RUnlock()
+	return len(c.s)
+}
+
+// First returns the first container found in the store by a given filter.
+func (c *memoryStore) First(filter StoreFilter) *Container {
+	for _, cont := range c.all() {
+		if filter(cont) {
+			return cont
+		}
+	}
+	return nil
+}
+
+// ApplyAll calls the reducer function with every container in the store.
+// This operation is asynchronous in the memory store.
+// NOTE: Modifications to the store MUST NOT be done by the StoreReducer.
+func (c *memoryStore) ApplyAll(apply StoreReducer) {
+	wg := new(sync.WaitGroup)
+	for _, cont := range c.all() {
+		wg.Add(1)
+		go func(container *Container) {
+			apply(container)
+			wg.Done()
+		}(cont)
+	}
+
+	wg.Wait()
+}
+
+func (c *memoryStore) all() []*Container {
+	c.RLock()
+	containers := make([]*Container, 0, len(c.s))
+	for _, cont := range c.s {
+		containers = append(containers, cont)
+	}
+	c.RUnlock()
+	return containers
+}
+
+var _ Store = &memoryStore{}
diff --git a/vendor/github.com/docker/docker/container/monitor.go b/vendor/github.com/docker/docker/container/monitor.go
new file mode 100644
index 0000000000..1735e3487e
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/monitor.go
@@ -0,0 +1,46 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	loggerCloseTimeout = 10 * time.Second
+)
+
+// Reset puts a container into a state where it can be restarted again.
+func (container *Container) Reset(lock bool) {
+	if lock {
+		container.Lock()
+		defer container.Unlock()
+	}
+
+	if err := container.CloseStreams(); err != nil {
+		logrus.Errorf("%s: %s", container.ID, err)
+	}
+
+	// Re-create a brand new stdin pipe once the container exited
+	if container.Config.OpenStdin {
+		container.StreamConfig.NewInputPipes()
+	}
+
+	if container.LogDriver != nil {
+		if container.LogCopier != nil {
+			exit := make(chan struct{})
+			go func() {
+				container.LogCopier.Wait()
+				close(exit)
+			}()
+			select {
+			case <-time.After(loggerCloseTimeout):
+				logrus.Warn("Logger didn't exit in time: logs may be truncated")
+			case <-exit:
+			}
+		}
+		container.LogDriver.Close()
+		container.LogCopier = nil
+		container.LogDriver = nil
+	}
+}
diff --git a/vendor/github.com/docker/docker/container/mounts_unix.go b/vendor/github.com/docker/docker/container/mounts_unix.go
new file mode 100644
index 0000000000..62f4441dce
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/mounts_unix.go
@@ -0,0 +1,12 @@
+// +build !windows
+
+package container // import "github.com/docker/docker/container"
+
+// Mount contains information for a mount operation.
+type Mount struct {
+	Source      string `json:"source"`
+	Destination string `json:"destination"`
+	Writable    bool   `json:"writable"`
+	Data        string `json:"data"`
+	Propagation string `json:"mountpropagation"`
+}
diff --git a/vendor/github.com/docker/docker/container/mounts_windows.go b/vendor/github.com/docker/docker/container/mounts_windows.go
new file mode 100644
index 0000000000..8f27e88067
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/mounts_windows.go
@@ -0,0 +1,8 @@
+package container // import "github.com/docker/docker/container"
+
+// Mount contains information for a mount operation.
+type Mount struct {
+	Source      string `json:"source"`
+	Destination string `json:"destination"`
+	Writable    bool   `json:"writable"`
+}
diff --git a/vendor/github.com/docker/docker/container/state.go b/vendor/github.com/docker/docker/container/state.go
new file mode 100644
index 0000000000..7c2a1ec81c
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/state.go
@@ -0,0 +1,409 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/go-units"
+)
+
+// State holds the current container state, and has methods to get and
+// set the state. Container has an embed, which allows all of the
+// functions defined against State to run against Container.
+type State struct {
+	sync.Mutex
+	// Note that `Running` and `Paused` are not mutually exclusive:
+	// When pausing a container (on Linux), the cgroups freezer is used to suspend
+	// all processes in the container. Freezing the process requires the process to
+	// be running. As a result, paused containers are both `Running` _and_ `Paused`.
+	Running           bool
+	Paused            bool
+	Restarting        bool
+	OOMKilled         bool
+	RemovalInProgress bool // Not need for this to be persistent on disk.
+	Dead              bool
+	Pid               int
+	ExitCodeValue     int    `json:"ExitCode"`
+	ErrorMsg          string `json:"Error"` // contains last known error during container start, stop, or remove
+	StartedAt         time.Time
+	FinishedAt        time.Time
+	Health            *Health
+
+	waitStop   chan struct{}
+	waitRemove chan struct{}
+}
+
+// StateStatus is used to return container wait results.
+// Implements exec.ExitCode interface.
+// This type is needed as State include a sync.Mutex field which make
+// copying it unsafe.
+type StateStatus struct {
+	exitCode int
+	err      error
+}
+
+// ExitCode returns current exitcode for the state.
+func (s StateStatus) ExitCode() int {
+	return s.exitCode
+}
+
+// Err returns current error for the state. Returns nil if the container had
+// exited on its own.
+func (s StateStatus) Err() error {
+	return s.err
+}
+
+// NewState creates a default state object with a fresh channel for state changes.
+func NewState() *State {
+	return &State{
+		waitStop:   make(chan struct{}),
+		waitRemove: make(chan struct{}),
+	}
+}
+
+// String returns a human-readable description of the state
+func (s *State) String() string {
+	if s.Running {
+		if s.Paused {
+			return fmt.Sprintf("Up %s (Paused)", units.HumanDuration(time.Now().UTC().Sub(s.StartedAt)))
+		}
+		if s.Restarting {
+			return fmt.Sprintf("Restarting (%d) %s ago", s.ExitCodeValue, units.HumanDuration(time.Now().UTC().Sub(s.FinishedAt)))
+		}
+
+		if h := s.Health; h != nil {
+			return fmt.Sprintf("Up %s (%s)", units.HumanDuration(time.Now().UTC().Sub(s.StartedAt)), h.String())
+		}
+
+		return fmt.Sprintf("Up %s", units.HumanDuration(time.Now().UTC().Sub(s.StartedAt)))
+	}
+
+	if s.RemovalInProgress {
+		return "Removal In Progress"
+	}
+
+	if s.Dead {
+		return "Dead"
+	}
+
+	if s.StartedAt.IsZero() {
+		return "Created"
+	}
+
+	if s.FinishedAt.IsZero() {
+		return ""
+	}
+
+	return fmt.Sprintf("Exited (%d) %s ago", s.ExitCodeValue, units.HumanDuration(time.Now().UTC().Sub(s.FinishedAt)))
+}
+
+// IsValidHealthString checks if the provided string is a valid container health status or not.
+func IsValidHealthString(s string) bool {
+	return s == types.Starting ||
+		s == types.Healthy ||
+		s == types.Unhealthy ||
+		s == types.NoHealthcheck
+}
+
+// StateString returns a single string to describe state
+func (s *State) StateString() string {
+	if s.Running {
+		if s.Paused {
+			return "paused"
+		}
+		if s.Restarting {
+			return "restarting"
+		}
+		return "running"
+	}
+
+	if s.RemovalInProgress {
+		return "removing"
+	}
+
+	if s.Dead {
+		return "dead"
+	}
+
+	if s.StartedAt.IsZero() {
+		return "created"
+	}
+
+	return "exited"
+}
+
+// IsValidStateString checks if the provided string is a valid container state or not.
+func IsValidStateString(s string) bool {
+	if s != "paused" &&
+		s != "restarting" &&
+		s != "removing" &&
+		s != "running" &&
+		s != "dead" &&
+		s != "created" &&
+		s != "exited" {
+		return false
+	}
+	return true
+}
+
+// WaitCondition is an enum type for different states to wait for.
+type WaitCondition int
+
+// Possible WaitCondition Values.
+//
+// WaitConditionNotRunning (default) is used to wait for any of the non-running
+// states: "created", "exited", "dead", "removing", or "removed".
+//
+// WaitConditionNextExit is used to wait for the next time the state changes
+// to a non-running state. If the state is currently "created" or "exited",
+// this would cause Wait() to block until either the container runs and exits
+// or is removed.
+//
+// WaitConditionRemoved is used to wait for the container to be removed.
+const (
+	WaitConditionNotRunning WaitCondition = iota
+	WaitConditionNextExit
+	WaitConditionRemoved
+)
+
+// Wait waits until the container is in a certain state indicated by the given
+// condition. A context must be used for cancelling the request, controlling
+// timeouts, and avoiding goroutine leaks. Wait must be called without holding
+// the state lock. Returns a channel from which the caller will receive the
+// result. If the container exited on its own, the result's Err() method will
+// be nil and its ExitCode() method will return the container's exit code,
+// otherwise, the results Err() method will return an error indicating why the
+// wait operation failed.
+func (s *State) Wait(ctx context.Context, condition WaitCondition) <-chan StateStatus {
+	s.Lock()
+	defer s.Unlock()
+
+	if condition == WaitConditionNotRunning && !s.Running {
+		// Buffer so we can put it in the channel now.
+		resultC := make(chan StateStatus, 1)
+
+		// Send the current status.
+		resultC <- StateStatus{
+			exitCode: s.ExitCode(),
+			err:      s.Err(),
+		}
+
+		return resultC
+	}
+
+	// If we are waiting only for removal, the waitStop channel should
+	// remain nil and block forever.
+	var waitStop chan struct{}
+	if condition < WaitConditionRemoved {
+		waitStop = s.waitStop
+	}
+
+	// Always wait for removal, just in case the container gets removed
+	// while it is still in a "created" state, in which case it is never
+	// actually stopped.
+	waitRemove := s.waitRemove
+
+	resultC := make(chan StateStatus)
+
+	go func() {
+		select {
+		case <-ctx.Done():
+			// Context timeout or cancellation.
+			resultC <- StateStatus{
+				exitCode: -1,
+				err:      ctx.Err(),
+			}
+			return
+		case <-waitStop:
+		case <-waitRemove:
+		}
+
+		s.Lock()
+		result := StateStatus{
+			exitCode: s.ExitCode(),
+			err:      s.Err(),
+		}
+		s.Unlock()
+
+		resultC <- result
+	}()
+
+	return resultC
+}
+
+// IsRunning returns whether the running flag is set. Used by Container to check whether a container is running.
+func (s *State) IsRunning() bool {
+	s.Lock()
+	res := s.Running
+	s.Unlock()
+	return res
+}
+
+// GetPID holds the process id of a container.
+func (s *State) GetPID() int {
+	s.Lock()
+	res := s.Pid
+	s.Unlock()
+	return res
+}
+
+// ExitCode returns current exitcode for the state. Take lock before if state
+// may be shared.
+func (s *State) ExitCode() int {
+	return s.ExitCodeValue
+}
+
+// SetExitCode sets current exitcode for the state. Take lock before if state
+// may be shared.
+func (s *State) SetExitCode(ec int) {
+	s.ExitCodeValue = ec
+}
+
+// SetRunning sets the state of the container to "running".
+func (s *State) SetRunning(pid int, initial bool) {
+	s.ErrorMsg = ""
+	s.Paused = false
+	s.Running = true
+	s.Restarting = false
+	if initial {
+		s.Paused = false
+	}
+	s.ExitCodeValue = 0
+	s.Pid = pid
+	if initial {
+		s.StartedAt = time.Now().UTC()
+	}
+}
+
+// SetStopped sets the container state to "stopped" without locking.
+func (s *State) SetStopped(exitStatus *ExitStatus) {
+	s.Running = false
+	s.Paused = false
+	s.Restarting = false
+	s.Pid = 0
+	if exitStatus.ExitedAt.IsZero() {
+		s.FinishedAt = time.Now().UTC()
+	} else {
+		s.FinishedAt = exitStatus.ExitedAt
+	}
+	s.ExitCodeValue = exitStatus.ExitCode
+	s.OOMKilled = exitStatus.OOMKilled
+	close(s.waitStop) // fire waiters for stop
+	s.waitStop = make(chan struct{})
+}
+
+// SetRestarting sets the container state to "restarting" without locking.
+// It also sets the container PID to 0.
+func (s *State) SetRestarting(exitStatus *ExitStatus) {
+	// we should consider the container running when it is restarting because of
+	// all the checks in docker around rm/stop/etc
+	s.Running = true
+	s.Restarting = true
+	s.Paused = false
+	s.Pid = 0
+	s.FinishedAt = time.Now().UTC()
+	s.ExitCodeValue = exitStatus.ExitCode
+	s.OOMKilled = exitStatus.OOMKilled
+	close(s.waitStop) // fire waiters for stop
+	s.waitStop = make(chan struct{})
+}
+
+// SetError sets the container's error state. This is useful when we want to
+// know the error that occurred when container transits to another state
+// when inspecting it
+func (s *State) SetError(err error) {
+	s.ErrorMsg = ""
+	if err != nil {
+		s.ErrorMsg = err.Error()
+	}
+}
+
+// IsPaused returns whether the container is paused or not.
+func (s *State) IsPaused() bool {
+	s.Lock()
+	res := s.Paused
+	s.Unlock()
+	return res
+}
+
+// IsRestarting returns whether the container is restarting or not.
+func (s *State) IsRestarting() bool {
+	s.Lock()
+	res := s.Restarting
+	s.Unlock()
+	return res
+}
+
+// SetRemovalInProgress sets the container state as being removed.
+// It returns true if the container was already in that state.
+func (s *State) SetRemovalInProgress() bool {
+	s.Lock()
+	defer s.Unlock()
+	if s.RemovalInProgress {
+		return true
+	}
+	s.RemovalInProgress = true
+	return false
+}
+
+// ResetRemovalInProgress makes the RemovalInProgress state to false.
+func (s *State) ResetRemovalInProgress() {
+	s.Lock()
+	s.RemovalInProgress = false
+	s.Unlock()
+}
+
+// IsRemovalInProgress returns whether the RemovalInProgress flag is set.
+// Used by Container to check whether a container is being removed.
+func (s *State) IsRemovalInProgress() bool {
+	s.Lock()
+	res := s.RemovalInProgress
+	s.Unlock()
+	return res
+}
+
+// SetDead sets the container state to "dead"
+func (s *State) SetDead() {
+	s.Lock()
+	s.Dead = true
+	s.Unlock()
+}
+
+// IsDead returns whether the Dead flag is set. Used by Container to check whether a container is dead.
+func (s *State) IsDead() bool {
+	s.Lock()
+	res := s.Dead
+	s.Unlock()
+	return res
+}
+
+// SetRemoved assumes this container is already in the "dead" state and
+// closes the internal waitRemove channel to unblock callers waiting for a
+// container to be removed.
+func (s *State) SetRemoved() {
+	s.SetRemovalError(nil)
+}
+
+// SetRemovalError is to be called in case a container remove failed.
+// It sets an error and closes the internal waitRemove channel to unblock
+// callers waiting for the container to be removed.
+func (s *State) SetRemovalError(err error) {
+	s.SetError(err)
+	s.Lock()
+	close(s.waitRemove) // Unblock those waiting on remove.
+	// Recreate the channel so next ContainerWait will work
+	s.waitRemove = make(chan struct{})
+	s.Unlock()
+}
+
+// Err returns an error if there is one.
+func (s *State) Err() error {
+	if s.ErrorMsg != "" {
+		return errors.New(s.ErrorMsg)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/container/store.go b/vendor/github.com/docker/docker/container/store.go
new file mode 100644
index 0000000000..3af0389856
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/store.go
@@ -0,0 +1,28 @@
+package container // import "github.com/docker/docker/container"
+
+// StoreFilter defines a function to filter
+// container in the store.
+type StoreFilter func(*Container) bool
+
+// StoreReducer defines a function to
+// manipulate containers in the store
+type StoreReducer func(*Container)
+
+// Store defines an interface that
+// any container store must implement.
+type Store interface {
+	// Add appends a new container to the store.
+	Add(string, *Container)
+	// Get returns a container from the store by the identifier it was stored with.
+	Get(string) *Container
+	// Delete removes a container from the store by the identifier it was stored with.
+	Delete(string)
+	// List returns a list of containers from the store.
+	List() []*Container
+	// Size returns the number of containers in the store.
+	Size() int
+	// First returns the first container found in the store by a given filter.
+	First(StoreFilter) *Container
+	// ApplyAll calls the reducer function with every container in the store.
+	ApplyAll(StoreReducer)
+}
diff --git a/vendor/github.com/docker/docker/container/stream/attach.go b/vendor/github.com/docker/docker/container/stream/attach.go
new file mode 100644
index 0000000000..cee90b88a1
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/stream/attach.go
@@ -0,0 +1,184 @@
+package stream // import "github.com/docker/docker/container/stream"
+
+import (
+	"context"
+	"io"
+	"sync"
+
+	"github.com/docker/docker/pkg/pools"
+	"github.com/docker/docker/pkg/term"
+	"github.com/sirupsen/logrus"
+)
+
+var defaultEscapeSequence = []byte{16, 17} // ctrl-p, ctrl-q
+
+// AttachConfig is the config struct used to attach a client to a stream's stdio
+type AttachConfig struct {
+	// Tells the attach copier that the stream's stdin is a TTY and to look for
+	// escape sequences in stdin to detach from the stream.
+	// When true the escape sequence is not passed to the underlying stream
+	TTY bool
+	// Specifies the detach keys the client will be using
+	// Only useful when `TTY` is true
+	DetachKeys []byte
+
+	// CloseStdin signals that once done, stdin for the attached stream should be closed
+	// For example, this would close the attached container's stdin.
+	CloseStdin bool
+
+	// UseStd* indicate whether the client has requested to be connected to the
+	// given stream or not.  These flags are used instead of checking Std* != nil
+	// at points before the client streams Std* are wired up.
+	UseStdin, UseStdout, UseStderr bool
+
+	// CStd* are the streams directly connected to the container
+	CStdin           io.WriteCloser
+	CStdout, CStderr io.ReadCloser
+
+	// Provide client streams to wire up to
+	Stdin          io.ReadCloser
+	Stdout, Stderr io.Writer
+}
+
+// AttachStreams attaches the container's streams to the AttachConfig
+func (c *Config) AttachStreams(cfg *AttachConfig) {
+	if cfg.UseStdin {
+		cfg.CStdin = c.StdinPipe()
+	}
+
+	if cfg.UseStdout {
+		cfg.CStdout = c.StdoutPipe()
+	}
+
+	if cfg.UseStderr {
+		cfg.CStderr = c.StderrPipe()
+	}
+}
+
+// CopyStreams starts goroutines to copy data in and out to/from the container
+func (c *Config) CopyStreams(ctx context.Context, cfg *AttachConfig) <-chan error {
+	var (
+		wg     sync.WaitGroup
+		errors = make(chan error, 3)
+	)
+
+	if cfg.Stdin != nil {
+		wg.Add(1)
+	}
+
+	if cfg.Stdout != nil {
+		wg.Add(1)
+	}
+
+	if cfg.Stderr != nil {
+		wg.Add(1)
+	}
+
+	// Connect stdin of container to the attach stdin stream.
+	go func() {
+		if cfg.Stdin == nil {
+			return
+		}
+		logrus.Debug("attach: stdin: begin")
+
+		var err error
+		if cfg.TTY {
+			_, err = copyEscapable(cfg.CStdin, cfg.Stdin, cfg.DetachKeys)
+		} else {
+			_, err = pools.Copy(cfg.CStdin, cfg.Stdin)
+		}
+		if err == io.ErrClosedPipe {
+			err = nil
+		}
+		if err != nil {
+			logrus.Errorf("attach: stdin: %s", err)
+			errors <- err
+		}
+		if cfg.CloseStdin && !cfg.TTY {
+			cfg.CStdin.Close()
+		} else {
+			// No matter what, when stdin is closed (io.Copy unblock), close stdout and stderr
+			if cfg.CStdout != nil {
+				cfg.CStdout.Close()
+			}
+			if cfg.CStderr != nil {
+				cfg.CStderr.Close()
+			}
+		}
+		logrus.Debug("attach: stdin: end")
+		wg.Done()
+	}()
+
+	attachStream := func(name string, stream io.Writer, streamPipe io.ReadCloser) {
+		if stream == nil {
+			return
+		}
+
+		logrus.Debugf("attach: %s: begin", name)
+		_, err := pools.Copy(stream, streamPipe)
+		if err == io.ErrClosedPipe {
+			err = nil
+		}
+		if err != nil {
+			logrus.Errorf("attach: %s: %v", name, err)
+			errors <- err
+		}
+		// Make sure stdin gets closed
+		if cfg.Stdin != nil {
+			cfg.Stdin.Close()
+		}
+		streamPipe.Close()
+		logrus.Debugf("attach: %s: end", name)
+		wg.Done()
+	}
+
+	go attachStream("stdout", cfg.Stdout, cfg.CStdout)
+	go attachStream("stderr", cfg.Stderr, cfg.CStderr)
+
+	errs := make(chan error, 1)
+
+	go func() {
+		defer close(errs)
+		errs <- func() error {
+			done := make(chan struct{})
+			go func() {
+				wg.Wait()
+				close(done)
+			}()
+			select {
+			case <-done:
+			case <-ctx.Done():
+				// close all pipes
+				if cfg.CStdin != nil {
+					cfg.CStdin.Close()
+				}
+				if cfg.CStdout != nil {
+					cfg.CStdout.Close()
+				}
+				if cfg.CStderr != nil {
+					cfg.CStderr.Close()
+				}
+				<-done
+			}
+			close(errors)
+			for err := range errors {
+				if err != nil {
+					return err
+				}
+			}
+			return nil
+		}()
+	}()
+
+	return errs
+}
+
+func copyEscapable(dst io.Writer, src io.ReadCloser, keys []byte) (written int64, err error) {
+	if len(keys) == 0 {
+		keys = defaultEscapeSequence
+	}
+	pr := term.NewEscapeProxy(src, keys)
+	defer src.Close()
+
+	return pools.Copy(dst, pr)
+}
diff --git a/vendor/github.com/docker/docker/container/stream/streams.go b/vendor/github.com/docker/docker/container/stream/streams.go
new file mode 100644
index 0000000000..d81867c1da
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/stream/streams.go
@@ -0,0 +1,146 @@
+package stream // import "github.com/docker/docker/container/stream"
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"strings"
+	"sync"
+
+	"github.com/containerd/containerd/cio"
+	"github.com/docker/docker/pkg/broadcaster"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/docker/pkg/pools"
+	"github.com/sirupsen/logrus"
+)
+
+// Config holds information about I/O streams managed together.
+//
+// config.StdinPipe returns a WriteCloser which can be used to feed data
+// to the standard input of the streamConfig's active process.
+// config.StdoutPipe and streamConfig.StderrPipe each return a ReadCloser
+// which can be used to retrieve the standard output (and error) generated
+// by the container's active process. The output (and error) are actually
+// copied and delivered to all StdoutPipe and StderrPipe consumers, using
+// a kind of "broadcaster".
+type Config struct {
+	sync.WaitGroup
+	stdout    *broadcaster.Unbuffered
+	stderr    *broadcaster.Unbuffered
+	stdin     io.ReadCloser
+	stdinPipe io.WriteCloser
+}
+
+// NewConfig creates a stream config and initializes
+// the standard err and standard out to new unbuffered broadcasters.
+func NewConfig() *Config {
+	return &Config{
+		stderr: new(broadcaster.Unbuffered),
+		stdout: new(broadcaster.Unbuffered),
+	}
+}
+
+// Stdout returns the standard output in the configuration.
+func (c *Config) Stdout() *broadcaster.Unbuffered {
+	return c.stdout
+}
+
+// Stderr returns the standard error in the configuration.
+func (c *Config) Stderr() *broadcaster.Unbuffered {
+	return c.stderr
+}
+
+// Stdin returns the standard input in the configuration.
+func (c *Config) Stdin() io.ReadCloser {
+	return c.stdin
+}
+
+// StdinPipe returns an input writer pipe as an io.WriteCloser.
+func (c *Config) StdinPipe() io.WriteCloser {
+	return c.stdinPipe
+}
+
+// StdoutPipe creates a new io.ReadCloser with an empty bytes pipe.
+// It adds this new out pipe to the Stdout broadcaster.
+// This will block stdout if unconsumed.
+func (c *Config) StdoutPipe() io.ReadCloser {
+	bytesPipe := ioutils.NewBytesPipe()
+	c.stdout.Add(bytesPipe)
+	return bytesPipe
+}
+
+// StderrPipe creates a new io.ReadCloser with an empty bytes pipe.
+// It adds this new err pipe to the Stderr broadcaster.
+// This will block stderr if unconsumed.
+func (c *Config) StderrPipe() io.ReadCloser {
+	bytesPipe := ioutils.NewBytesPipe()
+	c.stderr.Add(bytesPipe)
+	return bytesPipe
+}
+
+// NewInputPipes creates new pipes for both standard inputs, Stdin and StdinPipe.
+func (c *Config) NewInputPipes() {
+	c.stdin, c.stdinPipe = io.Pipe()
+}
+
+// NewNopInputPipe creates a new input pipe that will silently drop all messages in the input.
+func (c *Config) NewNopInputPipe() {
+	c.stdinPipe = ioutils.NopWriteCloser(ioutil.Discard)
+}
+
+// CloseStreams ensures that the configured streams are properly closed.
+func (c *Config) CloseStreams() error {
+	var errors []string
+
+	if c.stdin != nil {
+		if err := c.stdin.Close(); err != nil {
+			errors = append(errors, fmt.Sprintf("error close stdin: %s", err))
+		}
+	}
+
+	if err := c.stdout.Clean(); err != nil {
+		errors = append(errors, fmt.Sprintf("error close stdout: %s", err))
+	}
+
+	if err := c.stderr.Clean(); err != nil {
+		errors = append(errors, fmt.Sprintf("error close stderr: %s", err))
+	}
+
+	if len(errors) > 0 {
+		return fmt.Errorf(strings.Join(errors, "\n"))
+	}
+
+	return nil
+}
+
+// CopyToPipe connects streamconfig with a libcontainerd.IOPipe
+func (c *Config) CopyToPipe(iop *cio.DirectIO) {
+	copyFunc := func(w io.Writer, r io.ReadCloser) {
+		c.Add(1)
+		go func() {
+			if _, err := pools.Copy(w, r); err != nil {
+				logrus.Errorf("stream copy error: %v", err)
+			}
+			r.Close()
+			c.Done()
+		}()
+	}
+
+	if iop.Stdout != nil {
+		copyFunc(c.Stdout(), iop.Stdout)
+	}
+	if iop.Stderr != nil {
+		copyFunc(c.Stderr(), iop.Stderr)
+	}
+
+	if stdin := c.Stdin(); stdin != nil {
+		if iop.Stdin != nil {
+			go func() {
+				pools.Copy(iop.Stdin, stdin)
+				if err := iop.Stdin.Close(); err != nil {
+					logrus.Warnf("failed to close stdin: %v", err)
+				}
+			}()
+		}
+	}
+}
diff --git a/vendor/github.com/docker/docker/container/view.go b/vendor/github.com/docker/docker/container/view.go
new file mode 100644
index 0000000000..baf6fe7195
--- /dev/null
+++ b/vendor/github.com/docker/docker/container/view.go
@@ -0,0 +1,494 @@
+package container // import "github.com/docker/docker/container"
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/api/types/network"
+	"github.com/docker/go-connections/nat"
+	"github.com/hashicorp/go-memdb"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	memdbContainersTable  = "containers"
+	memdbNamesTable       = "names"
+	memdbIDIndex          = "id"
+	memdbContainerIDIndex = "containerid"
+)
+
+var (
+	// ErrNameReserved is an error which is returned when a name is requested to be reserved that already is reserved
+	ErrNameReserved = errors.New("name is reserved")
+	// ErrNameNotReserved is an error which is returned when trying to find a name that is not reserved
+	ErrNameNotReserved = errors.New("name is not reserved")
+)
+
+// Snapshot is a read only view for Containers. It holds all information necessary to serve container queries in a
+// versioned ACID in-memory store.
+type Snapshot struct {
+	types.Container
+
+	// additional info queries need to filter on
+	// preserve nanosec resolution for queries
+	CreatedAt    time.Time
+	StartedAt    time.Time
+	Name         string
+	Pid          int
+	ExitCode     int
+	Running      bool
+	Paused       bool
+	Managed      bool
+	ExposedPorts nat.PortSet
+	PortBindings nat.PortSet
+	Health       string
+	HostConfig   struct {
+		Isolation string
+	}
+}
+
+// nameAssociation associates a container id with a name.
+type nameAssociation struct {
+	// name is the name to associate. Note that name is the primary key
+	// ("id" in memdb).
+	name        string
+	containerID string
+}
+
+// ViewDB provides an in-memory transactional (ACID) container Store
+type ViewDB interface {
+	Snapshot() View
+	Save(*Container) error
+	Delete(*Container) error
+
+	ReserveName(name, containerID string) error
+	ReleaseName(name string) error
+}
+
+// View can be used by readers to avoid locking
+type View interface {
+	All() ([]Snapshot, error)
+	Get(id string) (*Snapshot, error)
+
+	GetID(name string) (string, error)
+	GetAllNames() map[string][]string
+}
+
+var schema = &memdb.DBSchema{
+	Tables: map[string]*memdb.TableSchema{
+		memdbContainersTable: {
+			Name: memdbContainersTable,
+			Indexes: map[string]*memdb.IndexSchema{
+				memdbIDIndex: {
+					Name:    memdbIDIndex,
+					Unique:  true,
+					Indexer: &containerByIDIndexer{},
+				},
+			},
+		},
+		memdbNamesTable: {
+			Name: memdbNamesTable,
+			Indexes: map[string]*memdb.IndexSchema{
+				// Used for names, because "id" is the primary key in memdb.
+				memdbIDIndex: {
+					Name:    memdbIDIndex,
+					Unique:  true,
+					Indexer: &namesByNameIndexer{},
+				},
+				memdbContainerIDIndex: {
+					Name:    memdbContainerIDIndex,
+					Indexer: &namesByContainerIDIndexer{},
+				},
+			},
+		},
+	},
+}
+
+type memDB struct {
+	store *memdb.MemDB
+}
+
+// NoSuchContainerError indicates that the container wasn't found in the
+// database.
+type NoSuchContainerError struct {
+	id string
+}
+
+// Error satisfies the error interface.
+func (e NoSuchContainerError) Error() string {
+	return "no such container " + e.id
+}
+
+// NewViewDB provides the default implementation, with the default schema
+func NewViewDB() (ViewDB, error) {
+	store, err := memdb.NewMemDB(schema)
+	if err != nil {
+		return nil, err
+	}
+	return &memDB{store: store}, nil
+}
+
+// Snapshot provides a consistent read-only View of the database
+func (db *memDB) Snapshot() View {
+	return &memdbView{
+		txn: db.store.Txn(false),
+	}
+}
+
+func (db *memDB) withTxn(cb func(*memdb.Txn) error) error {
+	txn := db.store.Txn(true)
+	err := cb(txn)
+	if err != nil {
+		txn.Abort()
+		return err
+	}
+	txn.Commit()
+	return nil
+}
+
+// Save atomically updates the in-memory store state for a Container.
+// Only read only (deep) copies of containers may be passed in.
+func (db *memDB) Save(c *Container) error {
+	return db.withTxn(func(txn *memdb.Txn) error {
+		return txn.Insert(memdbContainersTable, c)
+	})
+}
+
+// Delete removes an item by ID
+func (db *memDB) Delete(c *Container) error {
+	return db.withTxn(func(txn *memdb.Txn) error {
+		view := &memdbView{txn: txn}
+		names := view.getNames(c.ID)
+
+		for _, name := range names {
+			txn.Delete(memdbNamesTable, nameAssociation{name: name})
+		}
+
+		// Ignore error - the container may not actually exist in the
+		// db, but we still need to clean up associated names.
+		txn.Delete(memdbContainersTable, NewBaseContainer(c.ID, c.Root))
+		return nil
+	})
+}
+
+// ReserveName registers a container ID to a name
+// ReserveName is idempotent
+// Attempting to reserve a container ID to a name that already exists results in an `ErrNameReserved`
+// A name reservation is globally unique
+func (db *memDB) ReserveName(name, containerID string) error {
+	return db.withTxn(func(txn *memdb.Txn) error {
+		s, err := txn.First(memdbNamesTable, memdbIDIndex, name)
+		if err != nil {
+			return err
+		}
+		if s != nil {
+			if s.(nameAssociation).containerID != containerID {
+				return ErrNameReserved
+			}
+			return nil
+		}
+		return txn.Insert(memdbNamesTable, nameAssociation{name: name, containerID: containerID})
+	})
+}
+
+// ReleaseName releases the reserved name
+// Once released, a name can be reserved again
+func (db *memDB) ReleaseName(name string) error {
+	return db.withTxn(func(txn *memdb.Txn) error {
+		return txn.Delete(memdbNamesTable, nameAssociation{name: name})
+	})
+}
+
+type memdbView struct {
+	txn *memdb.Txn
+}
+
+// All returns a all items in this snapshot. Returned objects must never be modified.
+func (v *memdbView) All() ([]Snapshot, error) {
+	var all []Snapshot
+	iter, err := v.txn.Get(memdbContainersTable, memdbIDIndex)
+	if err != nil {
+		return nil, err
+	}
+	for {
+		item := iter.Next()
+		if item == nil {
+			break
+		}
+		snapshot := v.transform(item.(*Container))
+		all = append(all, *snapshot)
+	}
+	return all, nil
+}
+
+// Get returns an item by id. Returned objects must never be modified.
+func (v *memdbView) Get(id string) (*Snapshot, error) {
+	s, err := v.txn.First(memdbContainersTable, memdbIDIndex, id)
+	if err != nil {
+		return nil, err
+	}
+	if s == nil {
+		return nil, NoSuchContainerError{id: id}
+	}
+	return v.transform(s.(*Container)), nil
+}
+
+// getNames lists all the reserved names for the given container ID.
+func (v *memdbView) getNames(containerID string) []string {
+	iter, err := v.txn.Get(memdbNamesTable, memdbContainerIDIndex, containerID)
+	if err != nil {
+		return nil
+	}
+
+	var names []string
+	for {
+		item := iter.Next()
+		if item == nil {
+			break
+		}
+		names = append(names, item.(nameAssociation).name)
+	}
+
+	return names
+}
+
+// GetID returns the container ID that the passed in name is reserved to.
+func (v *memdbView) GetID(name string) (string, error) {
+	s, err := v.txn.First(memdbNamesTable, memdbIDIndex, name)
+	if err != nil {
+		return "", err
+	}
+	if s == nil {
+		return "", ErrNameNotReserved
+	}
+	return s.(nameAssociation).containerID, nil
+}
+
+// GetAllNames returns all registered names.
+func (v *memdbView) GetAllNames() map[string][]string {
+	iter, err := v.txn.Get(memdbNamesTable, memdbContainerIDIndex)
+	if err != nil {
+		return nil
+	}
+
+	out := make(map[string][]string)
+	for {
+		item := iter.Next()
+		if item == nil {
+			break
+		}
+		assoc := item.(nameAssociation)
+		out[assoc.containerID] = append(out[assoc.containerID], assoc.name)
+	}
+
+	return out
+}
+
+// transform maps a (deep) copied Container object to what queries need.
+// A lock on the Container is not held because these are immutable deep copies.
+func (v *memdbView) transform(container *Container) *Snapshot {
+	health := types.NoHealthcheck
+	if container.Health != nil {
+		health = container.Health.Status()
+	}
+	snapshot := &Snapshot{
+		Container: types.Container{
+			ID:      container.ID,
+			Names:   v.getNames(container.ID),
+			ImageID: container.ImageID.String(),
+			Ports:   []types.Port{},
+			Mounts:  container.GetMountPoints(),
+			State:   container.State.StateString(),
+			Status:  container.State.String(),
+			Created: container.Created.Unix(),
+		},
+		CreatedAt:    container.Created,
+		StartedAt:    container.StartedAt,
+		Name:         container.Name,
+		Pid:          container.Pid,
+		Managed:      container.Managed,
+		ExposedPorts: make(nat.PortSet),
+		PortBindings: make(nat.PortSet),
+		Health:       health,
+		Running:      container.Running,
+		Paused:       container.Paused,
+		ExitCode:     container.ExitCode(),
+	}
+
+	if snapshot.Names == nil {
+		// Dead containers will often have no name, so make sure the response isn't null
+		snapshot.Names = []string{}
+	}
+
+	if container.HostConfig != nil {
+		snapshot.Container.HostConfig.NetworkMode = string(container.HostConfig.NetworkMode)
+		snapshot.HostConfig.Isolation = string(container.HostConfig.Isolation)
+		for binding := range container.HostConfig.PortBindings {
+			snapshot.PortBindings[binding] = struct{}{}
+		}
+	}
+
+	if container.Config != nil {
+		snapshot.Image = container.Config.Image
+		snapshot.Labels = container.Config.Labels
+		for exposed := range container.Config.ExposedPorts {
+			snapshot.ExposedPorts[exposed] = struct{}{}
+		}
+	}
+
+	if len(container.Args) > 0 {
+		args := []string{}
+		for _, arg := range container.Args {
+			if strings.Contains(arg, " ") {
+				args = append(args, fmt.Sprintf("'%s'", arg))
+			} else {
+				args = append(args, arg)
+			}
+		}
+		argsAsString := strings.Join(args, " ")
+		snapshot.Command = fmt.Sprintf("%s %s", container.Path, argsAsString)
+	} else {
+		snapshot.Command = container.Path
+	}
+
+	snapshot.Ports = []types.Port{}
+	networks := make(map[string]*network.EndpointSettings)
+	if container.NetworkSettings != nil {
+		for name, netw := range container.NetworkSettings.Networks {
+			if netw == nil || netw.EndpointSettings == nil {
+				continue
+			}
+			networks[name] = &network.EndpointSettings{
+				EndpointID:          netw.EndpointID,
+				Gateway:             netw.Gateway,
+				IPAddress:           netw.IPAddress,
+				IPPrefixLen:         netw.IPPrefixLen,
+				IPv6Gateway:         netw.IPv6Gateway,
+				GlobalIPv6Address:   netw.GlobalIPv6Address,
+				GlobalIPv6PrefixLen: netw.GlobalIPv6PrefixLen,
+				MacAddress:          netw.MacAddress,
+				NetworkID:           netw.NetworkID,
+			}
+			if netw.IPAMConfig != nil {
+				networks[name].IPAMConfig = &network.EndpointIPAMConfig{
+					IPv4Address: netw.IPAMConfig.IPv4Address,
+					IPv6Address: netw.IPAMConfig.IPv6Address,
+				}
+			}
+		}
+		for port, bindings := range container.NetworkSettings.Ports {
+			p, err := nat.ParsePort(port.Port())
+			if err != nil {
+				logrus.Warnf("invalid port map %+v", err)
+				continue
+			}
+			if len(bindings) == 0 {
+				snapshot.Ports = append(snapshot.Ports, types.Port{
+					PrivatePort: uint16(p),
+					Type:        port.Proto(),
+				})
+				continue
+			}
+			for _, binding := range bindings {
+				h, err := nat.ParsePort(binding.HostPort)
+				if err != nil {
+					logrus.Warnf("invalid host port map %+v", err)
+					continue
+				}
+				snapshot.Ports = append(snapshot.Ports, types.Port{
+					PrivatePort: uint16(p),
+					PublicPort:  uint16(h),
+					Type:        port.Proto(),
+					IP:          binding.HostIP,
+				})
+			}
+		}
+	}
+	snapshot.NetworkSettings = &types.SummaryNetworkSettings{Networks: networks}
+
+	return snapshot
+}
+
+// containerByIDIndexer is used to extract the ID field from Container types.
+// memdb.StringFieldIndex can not be used since ID is a field from an embedded struct.
+type containerByIDIndexer struct{}
+
+// FromObject implements the memdb.SingleIndexer interface for Container objects
+func (e *containerByIDIndexer) FromObject(obj interface{}) (bool, []byte, error) {
+	c, ok := obj.(*Container)
+	if !ok {
+		return false, nil, fmt.Errorf("%T is not a Container", obj)
+	}
+	// Add the null character as a terminator
+	v := c.ID + "\x00"
+	return true, []byte(v), nil
+}
+
+// FromArgs implements the memdb.Indexer interface
+func (e *containerByIDIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
+
+// namesByNameIndexer is used to index container name associations by name.
+type namesByNameIndexer struct{}
+
+func (e *namesByNameIndexer) FromObject(obj interface{}) (bool, []byte, error) {
+	n, ok := obj.(nameAssociation)
+	if !ok {
+		return false, nil, fmt.Errorf(`%T does not have type "nameAssociation"`, obj)
+	}
+
+	// Add the null character as a terminator
+	return true, []byte(n.name + "\x00"), nil
+}
+
+func (e *namesByNameIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
+
+// namesByContainerIDIndexer is used to index container names by container ID.
+type namesByContainerIDIndexer struct{}
+
+func (e *namesByContainerIDIndexer) FromObject(obj interface{}) (bool, []byte, error) {
+	n, ok := obj.(nameAssociation)
+	if !ok {
+		return false, nil, fmt.Errorf(`%T does not have type "nameAssocation"`, obj)
+	}
+
+	// Add the null character as a terminator
+	return true, []byte(n.containerID + "\x00"), nil
+}
+
+func (e *namesByContainerIDIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/cluster/provider/network.go b/vendor/github.com/docker/docker/daemon/cluster/provider/network.go
new file mode 100644
index 0000000000..533baa0e17
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/cluster/provider/network.go
@@ -0,0 +1,37 @@
+package provider // import "github.com/docker/docker/daemon/cluster/provider"
+
+import "github.com/docker/docker/api/types"
+
+// NetworkCreateRequest is a request when creating a network.
+type NetworkCreateRequest struct {
+	ID string
+	types.NetworkCreateRequest
+}
+
+// NetworkCreateResponse is a response when creating a network.
+type NetworkCreateResponse struct {
+	ID string `json:"Id"`
+}
+
+// VirtualAddress represents a virtual address.
+type VirtualAddress struct {
+	IPv4 string
+	IPv6 string
+}
+
+// PortConfig represents a port configuration.
+type PortConfig struct {
+	Name          string
+	Protocol      int32
+	TargetPort    uint32
+	PublishedPort uint32
+}
+
+// ServiceConfig represents a service configuration.
+type ServiceConfig struct {
+	ID               string
+	Name             string
+	Aliases          map[string][]string
+	VirtualAddresses map[string]*VirtualAddress
+	ExposedPorts     []*PortConfig
+}
diff --git a/vendor/github.com/docker/docker/daemon/exec/exec.go b/vendor/github.com/docker/docker/daemon/exec/exec.go
new file mode 100644
index 0000000000..ca4e1aeb49
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/exec/exec.go
@@ -0,0 +1,144 @@
+package exec // import "github.com/docker/docker/daemon/exec"
+
+import (
+	"runtime"
+	"sync"
+
+	"github.com/containerd/containerd/cio"
+	"github.com/docker/docker/container/stream"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/sirupsen/logrus"
+)
+
+// Config holds the configurations for execs. The Daemon keeps
+// track of both running and finished execs so that they can be
+// examined both during and after completion.
+type Config struct {
+	sync.Mutex
+	StreamConfig *stream.Config
+	ID           string
+	Running      bool
+	ExitCode     *int
+	OpenStdin    bool
+	OpenStderr   bool
+	OpenStdout   bool
+	CanRemove    bool
+	ContainerID  string
+	DetachKeys   []byte
+	Entrypoint   string
+	Args         []string
+	Tty          bool
+	Privileged   bool
+	User         string
+	WorkingDir   string
+	Env          []string
+	Pid          int
+}
+
+// NewConfig initializes the a new exec configuration
+func NewConfig() *Config {
+	return &Config{
+		ID:           stringid.GenerateNonCryptoID(),
+		StreamConfig: stream.NewConfig(),
+	}
+}
+
+type rio struct {
+	cio.IO
+
+	sc *stream.Config
+}
+
+func (i *rio) Close() error {
+	i.IO.Close()
+
+	return i.sc.CloseStreams()
+}
+
+func (i *rio) Wait() {
+	i.sc.Wait()
+
+	i.IO.Wait()
+}
+
+// InitializeStdio is called by libcontainerd to connect the stdio.
+func (c *Config) InitializeStdio(iop *cio.DirectIO) (cio.IO, error) {
+	c.StreamConfig.CopyToPipe(iop)
+
+	if c.StreamConfig.Stdin() == nil && !c.Tty && runtime.GOOS == "windows" {
+		if iop.Stdin != nil {
+			if err := iop.Stdin.Close(); err != nil {
+				logrus.Errorf("error closing exec stdin: %+v", err)
+			}
+		}
+	}
+
+	return &rio{IO: iop, sc: c.StreamConfig}, nil
+}
+
+// CloseStreams closes the stdio streams for the exec
+func (c *Config) CloseStreams() error {
+	return c.StreamConfig.CloseStreams()
+}
+
+// SetExitCode sets the exec config's exit code
+func (c *Config) SetExitCode(code int) {
+	c.ExitCode = &code
+}
+
+// Store keeps track of the exec configurations.
+type Store struct {
+	byID map[string]*Config
+	sync.RWMutex
+}
+
+// NewStore initializes a new exec store.
+func NewStore() *Store {
+	return &Store{
+		byID: make(map[string]*Config),
+	}
+}
+
+// Commands returns the exec configurations in the store.
+func (e *Store) Commands() map[string]*Config {
+	e.RLock()
+	byID := make(map[string]*Config, len(e.byID))
+	for id, config := range e.byID {
+		byID[id] = config
+	}
+	e.RUnlock()
+	return byID
+}
+
+// Add adds a new exec configuration to the store.
+func (e *Store) Add(id string, Config *Config) {
+	e.Lock()
+	e.byID[id] = Config
+	e.Unlock()
+}
+
+// Get returns an exec configuration by its id.
+func (e *Store) Get(id string) *Config {
+	e.RLock()
+	res := e.byID[id]
+	e.RUnlock()
+	return res
+}
+
+// Delete removes an exec configuration from the store.
+func (e *Store) Delete(id string, pid int) {
+	e.Lock()
+	delete(e.byID, id)
+	e.Unlock()
+}
+
+// List returns the list of exec ids in the store.
+func (e *Store) List() []string {
+	var IDs []string
+	e.RLock()
+	for id := range e.byID {
+		IDs = append(IDs, id)
+	}
+	e.RUnlock()
+	return IDs
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/counter.go b/vendor/github.com/docker/docker/daemon/graphdriver/counter.go
new file mode 100644
index 0000000000..2772bd247d
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/counter.go
@@ -0,0 +1,62 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import "sync"
+
+type minfo struct {
+	check bool
+	count int
+}
+
+// RefCounter is a generic counter for use by graphdriver Get/Put calls
+type RefCounter struct {
+	counts  map[string]*minfo
+	mu      sync.Mutex
+	checker Checker
+}
+
+// NewRefCounter returns a new RefCounter
+func NewRefCounter(c Checker) *RefCounter {
+	return &RefCounter{
+		checker: c,
+		counts:  make(map[string]*minfo),
+	}
+}
+
+// Increment increases the ref count for the given id and returns the current count
+func (c *RefCounter) Increment(path string) int {
+	return c.incdec(path, func(minfo *minfo) {
+		minfo.count++
+	})
+}
+
+// Decrement decreases the ref count for the given id and returns the current count
+func (c *RefCounter) Decrement(path string) int {
+	return c.incdec(path, func(minfo *minfo) {
+		minfo.count--
+	})
+}
+
+func (c *RefCounter) incdec(path string, infoOp func(minfo *minfo)) int {
+	c.mu.Lock()
+	m := c.counts[path]
+	if m == nil {
+		m = &minfo{}
+		c.counts[path] = m
+	}
+	// if we are checking this path for the first time check to make sure
+	// if it was already mounted on the system and make sure we have a correct ref
+	// count if it is mounted as it is in use.
+	if !m.check {
+		m.check = true
+		if c.checker.IsMounted(path) {
+			m.count++
+		}
+	}
+	infoOp(m)
+	count := m.count
+	if count <= 0 {
+		delete(c.counts, path)
+	}
+	c.mu.Unlock()
+	return count
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/driver.go b/vendor/github.com/docker/docker/daemon/graphdriver/driver.go
new file mode 100644
index 0000000000..a9e1957393
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/driver.go
@@ -0,0 +1,307 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vbatts/tar-split/tar/storage"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/plugingetter"
+)
+
+// FsMagic unsigned id of the filesystem in use.
+type FsMagic uint32
+
+const (
+	// FsMagicUnsupported is a predefined constant value other than a valid filesystem id.
+	FsMagicUnsupported = FsMagic(0x00000000)
+)
+
+var (
+	// All registered drivers
+	drivers map[string]InitFunc
+)
+
+//CreateOpts contains optional arguments for Create() and CreateReadWrite()
+// methods.
+type CreateOpts struct {
+	MountLabel string
+	StorageOpt map[string]string
+}
+
+// InitFunc initializes the storage driver.
+type InitFunc func(root string, options []string, uidMaps, gidMaps []idtools.IDMap) (Driver, error)
+
+// ProtoDriver defines the basic capabilities of a driver.
+// This interface exists solely to be a minimum set of methods
+// for client code which choose not to implement the entire Driver
+// interface and use the NaiveDiffDriver wrapper constructor.
+//
+// Use of ProtoDriver directly by client code is not recommended.
+type ProtoDriver interface {
+	// String returns a string representation of this driver.
+	String() string
+	// CreateReadWrite creates a new, empty filesystem layer that is ready
+	// to be used as the storage for a container. Additional options can
+	// be passed in opts. parent may be "" and opts may be nil.
+	CreateReadWrite(id, parent string, opts *CreateOpts) error
+	// Create creates a new, empty, filesystem layer with the
+	// specified id and parent and options passed in opts. Parent
+	// may be "" and opts may be nil.
+	Create(id, parent string, opts *CreateOpts) error
+	// Remove attempts to remove the filesystem layer with this id.
+	Remove(id string) error
+	// Get returns the mountpoint for the layered filesystem referred
+	// to by this id. You can optionally specify a mountLabel or "".
+	// Returns the absolute path to the mounted layered filesystem.
+	Get(id, mountLabel string) (fs containerfs.ContainerFS, err error)
+	// Put releases the system resources for the specified id,
+	// e.g, unmounting layered filesystem.
+	Put(id string) error
+	// Exists returns whether a filesystem layer with the specified
+	// ID exists on this driver.
+	Exists(id string) bool
+	// Status returns a set of key-value pairs which give low
+	// level diagnostic status about this driver.
+	Status() [][2]string
+	// Returns a set of key-value pairs which give low level information
+	// about the image/container driver is managing.
+	GetMetadata(id string) (map[string]string, error)
+	// Cleanup performs necessary tasks to release resources
+	// held by the driver, e.g., unmounting all layered filesystems
+	// known to this driver.
+	Cleanup() error
+}
+
+// DiffDriver is the interface to use to implement graph diffs
+type DiffDriver interface {
+	// Diff produces an archive of the changes between the specified
+	// layer and its parent layer which may be "".
+	Diff(id, parent string) (io.ReadCloser, error)
+	// Changes produces a list of changes between the specified layer
+	// and its parent layer. If parent is "", then all changes will be ADD changes.
+	Changes(id, parent string) ([]archive.Change, error)
+	// ApplyDiff extracts the changeset from the given diff into the
+	// layer with the specified id and parent, returning the size of the
+	// new layer in bytes.
+	// The archive.Reader must be an uncompressed stream.
+	ApplyDiff(id, parent string, diff io.Reader) (size int64, err error)
+	// DiffSize calculates the changes between the specified id
+	// and its parent and returns the size in bytes of the changes
+	// relative to its base filesystem directory.
+	DiffSize(id, parent string) (size int64, err error)
+}
+
+// Driver is the interface for layered/snapshot file system drivers.
+type Driver interface {
+	ProtoDriver
+	DiffDriver
+}
+
+// Capabilities defines a list of capabilities a driver may implement.
+// These capabilities are not required; however, they do determine how a
+// graphdriver can be used.
+type Capabilities struct {
+	// Flags that this driver is capable of reproducing exactly equivalent
+	// diffs for read-only layers. If set, clients can rely on the driver
+	// for consistent tar streams, and avoid extra processing to account
+	// for potential differences (eg: the layer store's use of tar-split).
+	ReproducesExactDiffs bool
+}
+
+// CapabilityDriver is the interface for layered file system drivers that
+// can report on their Capabilities.
+type CapabilityDriver interface {
+	Capabilities() Capabilities
+}
+
+// DiffGetterDriver is the interface for layered file system drivers that
+// provide a specialized function for getting file contents for tar-split.
+type DiffGetterDriver interface {
+	Driver
+	// DiffGetter returns an interface to efficiently retrieve the contents
+	// of files in a layer.
+	DiffGetter(id string) (FileGetCloser, error)
+}
+
+// FileGetCloser extends the storage.FileGetter interface with a Close method
+// for cleaning up.
+type FileGetCloser interface {
+	storage.FileGetter
+	// Close cleans up any resources associated with the FileGetCloser.
+	Close() error
+}
+
+// Checker makes checks on specified filesystems.
+type Checker interface {
+	// IsMounted returns true if the provided path is mounted for the specific checker
+	IsMounted(path string) bool
+}
+
+func init() {
+	drivers = make(map[string]InitFunc)
+}
+
+// Register registers an InitFunc for the driver.
+func Register(name string, initFunc InitFunc) error {
+	if _, exists := drivers[name]; exists {
+		return fmt.Errorf("Name already registered %s", name)
+	}
+	drivers[name] = initFunc
+
+	return nil
+}
+
+// GetDriver initializes and returns the registered driver
+func GetDriver(name string, pg plugingetter.PluginGetter, config Options) (Driver, error) {
+	if initFunc, exists := drivers[name]; exists {
+		return initFunc(filepath.Join(config.Root, name), config.DriverOptions, config.UIDMaps, config.GIDMaps)
+	}
+
+	pluginDriver, err := lookupPlugin(name, pg, config)
+	if err == nil {
+		return pluginDriver, nil
+	}
+	logrus.WithError(err).WithField("driver", name).WithField("home-dir", config.Root).Error("Failed to GetDriver graph")
+	return nil, ErrNotSupported
+}
+
+// getBuiltinDriver initializes and returns the registered driver, but does not try to load from plugins
+func getBuiltinDriver(name, home string, options []string, uidMaps, gidMaps []idtools.IDMap) (Driver, error) {
+	if initFunc, exists := drivers[name]; exists {
+		return initFunc(filepath.Join(home, name), options, uidMaps, gidMaps)
+	}
+	logrus.Errorf("Failed to built-in GetDriver graph %s %s", name, home)
+	return nil, ErrNotSupported
+}
+
+// Options is used to initialize a graphdriver
+type Options struct {
+	Root                string
+	DriverOptions       []string
+	UIDMaps             []idtools.IDMap
+	GIDMaps             []idtools.IDMap
+	ExperimentalEnabled bool
+}
+
+// New creates the driver and initializes it at the specified root.
+func New(name string, pg plugingetter.PluginGetter, config Options) (Driver, error) {
+	if name != "" {
+		logrus.Debugf("[graphdriver] trying provided driver: %s", name) // so the logs show specified driver
+		return GetDriver(name, pg, config)
+	}
+
+	// Guess for prior driver
+	driversMap := scanPriorDrivers(config.Root)
+	list := strings.Split(priority, ",")
+	logrus.Debugf("[graphdriver] priority list: %v", list)
+	for _, name := range list {
+		if name == "vfs" {
+			// don't use vfs even if there is state present.
+			continue
+		}
+		if _, prior := driversMap[name]; prior {
+			// of the state found from prior drivers, check in order of our priority
+			// which we would prefer
+			driver, err := getBuiltinDriver(name, config.Root, config.DriverOptions, config.UIDMaps, config.GIDMaps)
+			if err != nil {
+				// unlike below, we will return error here, because there is prior
+				// state, and now it is no longer supported/prereq/compatible, so
+				// something changed and needs attention. Otherwise the daemon's
+				// images would just "disappear".
+				logrus.Errorf("[graphdriver] prior storage driver %s failed: %s", name, err)
+				return nil, err
+			}
+
+			// abort starting when there are other prior configured drivers
+			// to ensure the user explicitly selects the driver to load
+			if len(driversMap)-1 > 0 {
+				var driversSlice []string
+				for name := range driversMap {
+					driversSlice = append(driversSlice, name)
+				}
+
+				return nil, fmt.Errorf("%s contains several valid graphdrivers: %s; Please cleanup or explicitly choose storage driver (-s <DRIVER>)", config.Root, strings.Join(driversSlice, ", "))
+			}
+
+			logrus.Infof("[graphdriver] using prior storage driver: %s", name)
+			return driver, nil
+		}
+	}
+
+	// Check for priority drivers first
+	for _, name := range list {
+		driver, err := getBuiltinDriver(name, config.Root, config.DriverOptions, config.UIDMaps, config.GIDMaps)
+		if err != nil {
+			if IsDriverNotSupported(err) {
+				continue
+			}
+			return nil, err
+		}
+		return driver, nil
+	}
+
+	// Check all registered drivers if no priority driver is found
+	for name, initFunc := range drivers {
+		driver, err := initFunc(filepath.Join(config.Root, name), config.DriverOptions, config.UIDMaps, config.GIDMaps)
+		if err != nil {
+			if IsDriverNotSupported(err) {
+				continue
+			}
+			return nil, err
+		}
+		return driver, nil
+	}
+	return nil, fmt.Errorf("No supported storage backend found")
+}
+
+// scanPriorDrivers returns an un-ordered scan of directories of prior storage drivers
+func scanPriorDrivers(root string) map[string]bool {
+	driversMap := make(map[string]bool)
+
+	for driver := range drivers {
+		p := filepath.Join(root, driver)
+		if _, err := os.Stat(p); err == nil && driver != "vfs" {
+			if !isEmptyDir(p) {
+				driversMap[driver] = true
+			}
+		}
+	}
+	return driversMap
+}
+
+// IsInitialized checks if the driver's home-directory exists and is non-empty.
+func IsInitialized(driverHome string) bool {
+	_, err := os.Stat(driverHome)
+	if os.IsNotExist(err) {
+		return false
+	}
+	if err != nil {
+		logrus.Warnf("graphdriver.IsInitialized: stat failed: %v", err)
+	}
+	return !isEmptyDir(driverHome)
+}
+
+// isEmptyDir checks if a directory is empty. It is used to check if prior
+// storage-driver directories exist. If an error occurs, it also assumes the
+// directory is not empty (which preserves the behavior _before_ this check
+// was added)
+func isEmptyDir(name string) bool {
+	f, err := os.Open(name)
+	if err != nil {
+		return false
+	}
+	defer f.Close()
+
+	if _, err = f.Readdirnames(1); err == io.EOF {
+		return true
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/driver_freebsd.go b/vendor/github.com/docker/docker/daemon/graphdriver/driver_freebsd.go
new file mode 100644
index 0000000000..cd83c4e21a
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/driver_freebsd.go
@@ -0,0 +1,21 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"syscall"
+
+	"golang.org/x/sys/unix"
+)
+
+var (
+	// List of drivers that should be used in an order
+	priority = "zfs"
+)
+
+// Mounted checks if the given path is mounted as the fs type
+func Mounted(fsType FsMagic, mountPath string) (bool, error) {
+	var buf unix.Statfs_t
+	if err := syscall.Statfs(mountPath, &buf); err != nil {
+		return false, err
+	}
+	return FsMagic(buf.Type) == fsType, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/driver_linux.go b/vendor/github.com/docker/docker/daemon/graphdriver/driver_linux.go
new file mode 100644
index 0000000000..61c6b24a9c
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/driver_linux.go
@@ -0,0 +1,124 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"github.com/docker/docker/pkg/mount"
+	"golang.org/x/sys/unix"
+)
+
+const (
+	// FsMagicAufs filesystem id for Aufs
+	FsMagicAufs = FsMagic(0x61756673)
+	// FsMagicBtrfs filesystem id for Btrfs
+	FsMagicBtrfs = FsMagic(0x9123683E)
+	// FsMagicCramfs filesystem id for Cramfs
+	FsMagicCramfs = FsMagic(0x28cd3d45)
+	// FsMagicEcryptfs filesystem id for eCryptfs
+	FsMagicEcryptfs = FsMagic(0xf15f)
+	// FsMagicExtfs filesystem id for Extfs
+	FsMagicExtfs = FsMagic(0x0000EF53)
+	// FsMagicF2fs filesystem id for F2fs
+	FsMagicF2fs = FsMagic(0xF2F52010)
+	// FsMagicGPFS filesystem id for GPFS
+	FsMagicGPFS = FsMagic(0x47504653)
+	// FsMagicJffs2Fs filesystem if for Jffs2Fs
+	FsMagicJffs2Fs = FsMagic(0x000072b6)
+	// FsMagicJfs filesystem id for Jfs
+	FsMagicJfs = FsMagic(0x3153464a)
+	// FsMagicNfsFs filesystem id for NfsFs
+	FsMagicNfsFs = FsMagic(0x00006969)
+	// FsMagicRAMFs filesystem id for RamFs
+	FsMagicRAMFs = FsMagic(0x858458f6)
+	// FsMagicReiserFs filesystem id for ReiserFs
+	FsMagicReiserFs = FsMagic(0x52654973)
+	// FsMagicSmbFs filesystem id for SmbFs
+	FsMagicSmbFs = FsMagic(0x0000517B)
+	// FsMagicSquashFs filesystem id for SquashFs
+	FsMagicSquashFs = FsMagic(0x73717368)
+	// FsMagicTmpFs filesystem id for TmpFs
+	FsMagicTmpFs = FsMagic(0x01021994)
+	// FsMagicVxFS filesystem id for VxFs
+	FsMagicVxFS = FsMagic(0xa501fcf5)
+	// FsMagicXfs filesystem id for Xfs
+	FsMagicXfs = FsMagic(0x58465342)
+	// FsMagicZfs filesystem id for Zfs
+	FsMagicZfs = FsMagic(0x2fc12fc1)
+	// FsMagicOverlay filesystem id for overlay
+	FsMagicOverlay = FsMagic(0x794C7630)
+)
+
+var (
+	// List of drivers that should be used in an order
+	priority = "btrfs,zfs,overlay2,aufs,overlay,devicemapper,vfs"
+
+	// FsNames maps filesystem id to name of the filesystem.
+	FsNames = map[FsMagic]string{
+		FsMagicAufs:        "aufs",
+		FsMagicBtrfs:       "btrfs",
+		FsMagicCramfs:      "cramfs",
+		FsMagicEcryptfs:    "ecryptfs",
+		FsMagicExtfs:       "extfs",
+		FsMagicF2fs:        "f2fs",
+		FsMagicGPFS:        "gpfs",
+		FsMagicJffs2Fs:     "jffs2",
+		FsMagicJfs:         "jfs",
+		FsMagicNfsFs:       "nfs",
+		FsMagicOverlay:     "overlayfs",
+		FsMagicRAMFs:       "ramfs",
+		FsMagicReiserFs:    "reiserfs",
+		FsMagicSmbFs:       "smb",
+		FsMagicSquashFs:    "squashfs",
+		FsMagicTmpFs:       "tmpfs",
+		FsMagicUnsupported: "unsupported",
+		FsMagicVxFS:        "vxfs",
+		FsMagicXfs:         "xfs",
+		FsMagicZfs:         "zfs",
+	}
+)
+
+// GetFSMagic returns the filesystem id given the path.
+func GetFSMagic(rootpath string) (FsMagic, error) {
+	var buf unix.Statfs_t
+	if err := unix.Statfs(rootpath, &buf); err != nil {
+		return 0, err
+	}
+	return FsMagic(buf.Type), nil
+}
+
+// NewFsChecker returns a checker configured for the provided FsMagic
+func NewFsChecker(t FsMagic) Checker {
+	return &fsChecker{
+		t: t,
+	}
+}
+
+type fsChecker struct {
+	t FsMagic
+}
+
+func (c *fsChecker) IsMounted(path string) bool {
+	m, _ := Mounted(c.t, path)
+	return m
+}
+
+// NewDefaultChecker returns a check that parses /proc/mountinfo to check
+// if the specified path is mounted.
+func NewDefaultChecker() Checker {
+	return &defaultChecker{}
+}
+
+type defaultChecker struct {
+}
+
+func (c *defaultChecker) IsMounted(path string) bool {
+	m, _ := mount.Mounted(path)
+	return m
+}
+
+// Mounted checks if the given path is mounted as the fs type
+func Mounted(fsType FsMagic, mountPath string) (bool, error) {
+	var buf unix.Statfs_t
+	if err := unix.Statfs(mountPath, &buf); err != nil {
+		return false, err
+	}
+	return FsMagic(buf.Type) == fsType, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/driver_unsupported.go b/vendor/github.com/docker/docker/daemon/graphdriver/driver_unsupported.go
new file mode 100644
index 0000000000..1f2e8f071b
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/driver_unsupported.go
@@ -0,0 +1,13 @@
+// +build !linux,!windows,!freebsd
+
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+var (
+	// List of drivers that should be used in an order
+	priority = "unsupported"
+)
+
+// GetFSMagic returns the filesystem id given the path.
+func GetFSMagic(rootpath string) (FsMagic, error) {
+	return FsMagicUnsupported, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/driver_windows.go b/vendor/github.com/docker/docker/daemon/graphdriver/driver_windows.go
new file mode 100644
index 0000000000..856b575e75
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/driver_windows.go
@@ -0,0 +1,12 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+var (
+	// List of drivers that should be used in order
+	priority = "windowsfilter"
+)
+
+// GetFSMagic returns the filesystem id given the path.
+func GetFSMagic(rootpath string) (FsMagic, error) {
+	// Note it is OK to return FsMagicUnsupported on Windows.
+	return FsMagicUnsupported, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/errors.go b/vendor/github.com/docker/docker/daemon/graphdriver/errors.go
new file mode 100644
index 0000000000..96d3544552
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/errors.go
@@ -0,0 +1,36 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+const (
+	// ErrNotSupported returned when driver is not supported.
+	ErrNotSupported NotSupportedError = "driver not supported"
+	// ErrPrerequisites returned when driver does not meet prerequisites.
+	ErrPrerequisites NotSupportedError = "prerequisites for driver not satisfied (wrong filesystem?)"
+	// ErrIncompatibleFS returned when file system is not supported.
+	ErrIncompatibleFS NotSupportedError = "backing file system is unsupported for this graph driver"
+)
+
+// ErrUnSupported signals that the graph-driver is not supported on the current configuration
+type ErrUnSupported interface {
+	NotSupported()
+}
+
+// NotSupportedError signals that the graph-driver is not supported on the current configuration
+type NotSupportedError string
+
+func (e NotSupportedError) Error() string {
+	return string(e)
+}
+
+// NotSupported signals that a graph-driver is not supported.
+func (e NotSupportedError) NotSupported() {}
+
+// IsDriverNotSupported returns true if the error initializing
+// the graph driver is a non-supported error.
+func IsDriverNotSupported(err error) bool {
+	switch err.(type) {
+	case ErrUnSupported:
+		return true
+	default:
+		return false
+	}
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/fsdiff.go b/vendor/github.com/docker/docker/daemon/graphdriver/fsdiff.go
new file mode 100644
index 0000000000..e1f368508a
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/fsdiff.go
@@ -0,0 +1,175 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"io"
+	"time"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/chrootarchive"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// ApplyUncompressedLayer defines the unpack method used by the graph
+	// driver.
+	ApplyUncompressedLayer = chrootarchive.ApplyUncompressedLayer
+)
+
+// NaiveDiffDriver takes a ProtoDriver and adds the
+// capability of the Diffing methods on the local file system,
+// which it may or may not support on its own. See the comment
+// on the exported NewNaiveDiffDriver function below.
+// Notably, the AUFS driver doesn't need to be wrapped like this.
+type NaiveDiffDriver struct {
+	ProtoDriver
+	uidMaps []idtools.IDMap
+	gidMaps []idtools.IDMap
+}
+
+// NewNaiveDiffDriver returns a fully functional driver that wraps the
+// given ProtoDriver and adds the capability of the following methods which
+// it may or may not support on its own:
+//     Diff(id, parent string) (archive.Archive, error)
+//     Changes(id, parent string) ([]archive.Change, error)
+//     ApplyDiff(id, parent string, diff archive.Reader) (size int64, err error)
+//     DiffSize(id, parent string) (size int64, err error)
+func NewNaiveDiffDriver(driver ProtoDriver, uidMaps, gidMaps []idtools.IDMap) Driver {
+	return &NaiveDiffDriver{ProtoDriver: driver,
+		uidMaps: uidMaps,
+		gidMaps: gidMaps}
+}
+
+// Diff produces an archive of the changes between the specified
+// layer and its parent layer which may be "".
+func (gdw *NaiveDiffDriver) Diff(id, parent string) (arch io.ReadCloser, err error) {
+	startTime := time.Now()
+	driver := gdw.ProtoDriver
+
+	layerRootFs, err := driver.Get(id, "")
+	if err != nil {
+		return nil, err
+	}
+	layerFs := layerRootFs.Path()
+
+	defer func() {
+		if err != nil {
+			driver.Put(id)
+		}
+	}()
+
+	if parent == "" {
+		archive, err := archive.Tar(layerFs, archive.Uncompressed)
+		if err != nil {
+			return nil, err
+		}
+		return ioutils.NewReadCloserWrapper(archive, func() error {
+			err := archive.Close()
+			driver.Put(id)
+			return err
+		}), nil
+	}
+
+	parentRootFs, err := driver.Get(parent, "")
+	if err != nil {
+		return nil, err
+	}
+	defer driver.Put(parent)
+
+	parentFs := parentRootFs.Path()
+
+	changes, err := archive.ChangesDirs(layerFs, parentFs)
+	if err != nil {
+		return nil, err
+	}
+
+	archive, err := archive.ExportChanges(layerFs, changes, gdw.uidMaps, gdw.gidMaps)
+	if err != nil {
+		return nil, err
+	}
+
+	return ioutils.NewReadCloserWrapper(archive, func() error {
+		err := archive.Close()
+		driver.Put(id)
+
+		// NaiveDiffDriver compares file metadata with parent layers. Parent layers
+		// are extracted from tar's with full second precision on modified time.
+		// We need this hack here to make sure calls within same second receive
+		// correct result.
+		time.Sleep(time.Until(startTime.Truncate(time.Second).Add(time.Second)))
+		return err
+	}), nil
+}
+
+// Changes produces a list of changes between the specified layer
+// and its parent layer. If parent is "", then all changes will be ADD changes.
+func (gdw *NaiveDiffDriver) Changes(id, parent string) ([]archive.Change, error) {
+	driver := gdw.ProtoDriver
+
+	layerRootFs, err := driver.Get(id, "")
+	if err != nil {
+		return nil, err
+	}
+	defer driver.Put(id)
+
+	layerFs := layerRootFs.Path()
+	parentFs := ""
+
+	if parent != "" {
+		parentRootFs, err := driver.Get(parent, "")
+		if err != nil {
+			return nil, err
+		}
+		defer driver.Put(parent)
+		parentFs = parentRootFs.Path()
+	}
+
+	return archive.ChangesDirs(layerFs, parentFs)
+}
+
+// ApplyDiff extracts the changeset from the given diff into the
+// layer with the specified id and parent, returning the size of the
+// new layer in bytes.
+func (gdw *NaiveDiffDriver) ApplyDiff(id, parent string, diff io.Reader) (size int64, err error) {
+	driver := gdw.ProtoDriver
+
+	// Mount the root filesystem so we can apply the diff/layer.
+	layerRootFs, err := driver.Get(id, "")
+	if err != nil {
+		return
+	}
+	defer driver.Put(id)
+
+	layerFs := layerRootFs.Path()
+	options := &archive.TarOptions{UIDMaps: gdw.uidMaps,
+		GIDMaps: gdw.gidMaps}
+	start := time.Now().UTC()
+	logrus.Debug("Start untar layer")
+	if size, err = ApplyUncompressedLayer(layerFs, diff, options); err != nil {
+		return
+	}
+	logrus.Debugf("Untar time: %vs", time.Now().UTC().Sub(start).Seconds())
+
+	return
+}
+
+// DiffSize calculates the changes between the specified layer
+// and its parent and returns the size in bytes of the changes
+// relative to its base filesystem directory.
+func (gdw *NaiveDiffDriver) DiffSize(id, parent string) (size int64, err error) {
+	driver := gdw.ProtoDriver
+
+	changes, err := gdw.Changes(id, parent)
+	if err != nil {
+		return
+	}
+
+	layerFs, err := driver.Get(id, "")
+	if err != nil {
+		return
+	}
+	defer driver.Put(id)
+
+	return archive.ChangesSize(layerFs.Path(), changes), nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/plugin.go b/vendor/github.com/docker/docker/daemon/graphdriver/plugin.go
new file mode 100644
index 0000000000..d8058d9236
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/plugin.go
@@ -0,0 +1,33 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"fmt"
+	"path/filepath"
+
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/plugin/v2"
+)
+
+func lookupPlugin(name string, pg plugingetter.PluginGetter, config Options) (Driver, error) {
+	if !config.ExperimentalEnabled {
+		return nil, fmt.Errorf("graphdriver plugins are only supported with experimental mode")
+	}
+	pl, err := pg.Get(name, "GraphDriver", plugingetter.Acquire)
+	if err != nil {
+		return nil, fmt.Errorf("Error looking up graphdriver plugin %s: %v", name, err)
+	}
+	return newPluginDriver(name, pl, config)
+}
+
+func newPluginDriver(name string, pl plugingetter.CompatPlugin, config Options) (Driver, error) {
+	home := config.Root
+	if !pl.IsV1() {
+		if p, ok := pl.(*v2.Plugin); ok {
+			if p.PluginObj.Config.PropagatedMount != "" {
+				home = p.PluginObj.Config.PropagatedMount
+			}
+		}
+	}
+	proxy := &graphDriverProxy{name, pl, Capabilities{}}
+	return proxy, proxy.Init(filepath.Join(home, name), config.DriverOptions, config.UIDMaps, config.GIDMaps)
+}
diff --git a/vendor/github.com/docker/docker/daemon/graphdriver/proxy.go b/vendor/github.com/docker/docker/daemon/graphdriver/proxy.go
new file mode 100644
index 0000000000..10a7a527ae
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/graphdriver/proxy.go
@@ -0,0 +1,263 @@
+package graphdriver // import "github.com/docker/docker/daemon/graphdriver"
+
+import (
+	"errors"
+	"fmt"
+	"io"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/pkg/plugins"
+)
+
+type graphDriverProxy struct {
+	name string
+	p    plugingetter.CompatPlugin
+	caps Capabilities
+}
+
+type graphDriverRequest struct {
+	ID         string            `json:",omitempty"`
+	Parent     string            `json:",omitempty"`
+	MountLabel string            `json:",omitempty"`
+	StorageOpt map[string]string `json:",omitempty"`
+}
+
+type graphDriverResponse struct {
+	Err          string            `json:",omitempty"`
+	Dir          string            `json:",omitempty"`
+	Exists       bool              `json:",omitempty"`
+	Status       [][2]string       `json:",omitempty"`
+	Changes      []archive.Change  `json:",omitempty"`
+	Size         int64             `json:",omitempty"`
+	Metadata     map[string]string `json:",omitempty"`
+	Capabilities Capabilities      `json:",omitempty"`
+}
+
+type graphDriverInitRequest struct {
+	Home    string
+	Opts    []string        `json:"Opts"`
+	UIDMaps []idtools.IDMap `json:"UIDMaps"`
+	GIDMaps []idtools.IDMap `json:"GIDMaps"`
+}
+
+func (d *graphDriverProxy) Init(home string, opts []string, uidMaps, gidMaps []idtools.IDMap) error {
+	if !d.p.IsV1() {
+		if cp, ok := d.p.(plugingetter.CountedPlugin); ok {
+			// always acquire here, it will be cleaned up on daemon shutdown
+			cp.Acquire()
+		}
+	}
+	args := &graphDriverInitRequest{
+		Home:    home,
+		Opts:    opts,
+		UIDMaps: uidMaps,
+		GIDMaps: gidMaps,
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Init", args, &ret); err != nil {
+		return err
+	}
+	if ret.Err != "" {
+		return errors.New(ret.Err)
+	}
+	caps, err := d.fetchCaps()
+	if err != nil {
+		return err
+	}
+	d.caps = caps
+	return nil
+}
+
+func (d *graphDriverProxy) fetchCaps() (Capabilities, error) {
+	args := &graphDriverRequest{}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Capabilities", args, &ret); err != nil {
+		if !plugins.IsNotFound(err) {
+			return Capabilities{}, err
+		}
+	}
+	return ret.Capabilities, nil
+}
+
+func (d *graphDriverProxy) String() string {
+	return d.name
+}
+
+func (d *graphDriverProxy) Capabilities() Capabilities {
+	return d.caps
+}
+
+func (d *graphDriverProxy) CreateReadWrite(id, parent string, opts *CreateOpts) error {
+	return d.create("GraphDriver.CreateReadWrite", id, parent, opts)
+}
+
+func (d *graphDriverProxy) Create(id, parent string, opts *CreateOpts) error {
+	return d.create("GraphDriver.Create", id, parent, opts)
+}
+
+func (d *graphDriverProxy) create(method, id, parent string, opts *CreateOpts) error {
+	args := &graphDriverRequest{
+		ID:     id,
+		Parent: parent,
+	}
+	if opts != nil {
+		args.MountLabel = opts.MountLabel
+		args.StorageOpt = opts.StorageOpt
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call(method, args, &ret); err != nil {
+		return err
+	}
+	if ret.Err != "" {
+		return errors.New(ret.Err)
+	}
+	return nil
+}
+
+func (d *graphDriverProxy) Remove(id string) error {
+	args := &graphDriverRequest{ID: id}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Remove", args, &ret); err != nil {
+		return err
+	}
+	if ret.Err != "" {
+		return errors.New(ret.Err)
+	}
+	return nil
+}
+
+func (d *graphDriverProxy) Get(id, mountLabel string) (containerfs.ContainerFS, error) {
+	args := &graphDriverRequest{
+		ID:         id,
+		MountLabel: mountLabel,
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Get", args, &ret); err != nil {
+		return nil, err
+	}
+	var err error
+	if ret.Err != "" {
+		err = errors.New(ret.Err)
+	}
+	return containerfs.NewLocalContainerFS(d.p.ScopedPath(ret.Dir)), err
+}
+
+func (d *graphDriverProxy) Put(id string) error {
+	args := &graphDriverRequest{ID: id}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Put", args, &ret); err != nil {
+		return err
+	}
+	if ret.Err != "" {
+		return errors.New(ret.Err)
+	}
+	return nil
+}
+
+func (d *graphDriverProxy) Exists(id string) bool {
+	args := &graphDriverRequest{ID: id}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Exists", args, &ret); err != nil {
+		return false
+	}
+	return ret.Exists
+}
+
+func (d *graphDriverProxy) Status() [][2]string {
+	args := &graphDriverRequest{}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Status", args, &ret); err != nil {
+		return nil
+	}
+	return ret.Status
+}
+
+func (d *graphDriverProxy) GetMetadata(id string) (map[string]string, error) {
+	args := &graphDriverRequest{
+		ID: id,
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.GetMetadata", args, &ret); err != nil {
+		return nil, err
+	}
+	if ret.Err != "" {
+		return nil, errors.New(ret.Err)
+	}
+	return ret.Metadata, nil
+}
+
+func (d *graphDriverProxy) Cleanup() error {
+	if !d.p.IsV1() {
+		if cp, ok := d.p.(plugingetter.CountedPlugin); ok {
+			// always release
+			defer cp.Release()
+		}
+	}
+
+	args := &graphDriverRequest{}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Cleanup", args, &ret); err != nil {
+		return nil
+	}
+	if ret.Err != "" {
+		return errors.New(ret.Err)
+	}
+	return nil
+}
+
+func (d *graphDriverProxy) Diff(id, parent string) (io.ReadCloser, error) {
+	args := &graphDriverRequest{
+		ID:     id,
+		Parent: parent,
+	}
+	body, err := d.p.Client().Stream("GraphDriver.Diff", args)
+	if err != nil {
+		return nil, err
+	}
+	return body, nil
+}
+
+func (d *graphDriverProxy) Changes(id, parent string) ([]archive.Change, error) {
+	args := &graphDriverRequest{
+		ID:     id,
+		Parent: parent,
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.Changes", args, &ret); err != nil {
+		return nil, err
+	}
+	if ret.Err != "" {
+		return nil, errors.New(ret.Err)
+	}
+
+	return ret.Changes, nil
+}
+
+func (d *graphDriverProxy) ApplyDiff(id, parent string, diff io.Reader) (int64, error) {
+	var ret graphDriverResponse
+	if err := d.p.Client().SendFile(fmt.Sprintf("GraphDriver.ApplyDiff?id=%s&parent=%s", id, parent), diff, &ret); err != nil {
+		return -1, err
+	}
+	if ret.Err != "" {
+		return -1, errors.New(ret.Err)
+	}
+	return ret.Size, nil
+}
+
+func (d *graphDriverProxy) DiffSize(id, parent string) (int64, error) {
+	args := &graphDriverRequest{
+		ID:     id,
+		Parent: parent,
+	}
+	var ret graphDriverResponse
+	if err := d.p.Client().Call("GraphDriver.DiffSize", args, &ret); err != nil {
+		return -1, err
+	}
+	if ret.Err != "" {
+		return -1, errors.New(ret.Err)
+	}
+	return ret.Size, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/adapter.go b/vendor/github.com/docker/docker/daemon/logger/adapter.go
new file mode 100644
index 0000000000..5b9252d324
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/adapter.go
@@ -0,0 +1,139 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"io"
+	"os"
+	"path/filepath"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/api/types/plugins/logdriver"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// pluginAdapter takes a plugin and implements the Logger interface for logger
+// instances
+type pluginAdapter struct {
+	driverName   string
+	id           string
+	plugin       logPlugin
+	fifoPath     string
+	capabilities Capability
+	logInfo      Info
+
+	// synchronize access to the log stream and shared buffer
+	mu     sync.Mutex
+	enc    logdriver.LogEntryEncoder
+	stream io.WriteCloser
+	// buf is shared for each `Log()` call to reduce allocations.
+	// buf must be protected by mutex
+	buf logdriver.LogEntry
+}
+
+func (a *pluginAdapter) Log(msg *Message) error {
+	a.mu.Lock()
+
+	a.buf.Line = msg.Line
+	a.buf.TimeNano = msg.Timestamp.UnixNano()
+	a.buf.Partial = (msg.PLogMetaData != nil)
+	a.buf.Source = msg.Source
+
+	err := a.enc.Encode(&a.buf)
+	a.buf.Reset()
+
+	a.mu.Unlock()
+
+	PutMessage(msg)
+	return err
+}
+
+func (a *pluginAdapter) Name() string {
+	return a.driverName
+}
+
+func (a *pluginAdapter) Close() error {
+	a.mu.Lock()
+	defer a.mu.Unlock()
+
+	if err := a.plugin.StopLogging(filepath.Join("/", "run", "docker", "logging", a.id)); err != nil {
+		return err
+	}
+
+	if err := a.stream.Close(); err != nil {
+		logrus.WithError(err).Error("error closing plugin fifo")
+	}
+	if err := os.Remove(a.fifoPath); err != nil && !os.IsNotExist(err) {
+		logrus.WithError(err).Error("error cleaning up plugin fifo")
+	}
+
+	// may be nil, especially for unit tests
+	if pluginGetter != nil {
+		pluginGetter.Get(a.Name(), extName, plugingetter.Release)
+	}
+	return nil
+}
+
+type pluginAdapterWithRead struct {
+	*pluginAdapter
+}
+
+func (a *pluginAdapterWithRead) ReadLogs(config ReadConfig) *LogWatcher {
+	watcher := NewLogWatcher()
+
+	go func() {
+		defer close(watcher.Msg)
+		stream, err := a.plugin.ReadLogs(a.logInfo, config)
+		if err != nil {
+			watcher.Err <- errors.Wrap(err, "error getting log reader")
+			return
+		}
+		defer stream.Close()
+
+		dec := logdriver.NewLogEntryDecoder(stream)
+		for {
+			select {
+			case <-watcher.WatchClose():
+				return
+			default:
+			}
+
+			var buf logdriver.LogEntry
+			if err := dec.Decode(&buf); err != nil {
+				if err == io.EOF {
+					return
+				}
+				select {
+				case watcher.Err <- errors.Wrap(err, "error decoding log message"):
+				case <-watcher.WatchClose():
+				}
+				return
+			}
+
+			msg := &Message{
+				Timestamp: time.Unix(0, buf.TimeNano),
+				Line:      buf.Line,
+				Source:    buf.Source,
+			}
+
+			// plugin should handle this, but check just in case
+			if !config.Since.IsZero() && msg.Timestamp.Before(config.Since) {
+				continue
+			}
+			if !config.Until.IsZero() && msg.Timestamp.After(config.Until) {
+				return
+			}
+
+			select {
+			case watcher.Msg <- msg:
+			case <-watcher.WatchClose():
+				// make sure the message we consumed is sent
+				watcher.Msg <- msg
+				return
+			}
+		}
+	}()
+
+	return watcher
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/copier.go b/vendor/github.com/docker/docker/daemon/logger/copier.go
new file mode 100644
index 0000000000..ae86777f33
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/copier.go
@@ -0,0 +1,182 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"bytes"
+	"io"
+	"sync"
+	"time"
+
+	types "github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	// readSize is the maximum bytes read during a single read
+	// operation.
+	readSize = 2 * 1024
+
+	// defaultBufSize provides a reasonable default for loggers that do
+	// not have an external limit to impose on log line size.
+	defaultBufSize = 16 * 1024
+)
+
+// Copier can copy logs from specified sources to Logger and attach Timestamp.
+// Writes are concurrent, so you need implement some sync in your logger.
+type Copier struct {
+	// srcs is map of name -> reader pairs, for example "stdout", "stderr"
+	srcs      map[string]io.Reader
+	dst       Logger
+	copyJobs  sync.WaitGroup
+	closeOnce sync.Once
+	closed    chan struct{}
+}
+
+// NewCopier creates a new Copier
+func NewCopier(srcs map[string]io.Reader, dst Logger) *Copier {
+	return &Copier{
+		srcs:   srcs,
+		dst:    dst,
+		closed: make(chan struct{}),
+	}
+}
+
+// Run starts logs copying
+func (c *Copier) Run() {
+	for src, w := range c.srcs {
+		c.copyJobs.Add(1)
+		go c.copySrc(src, w)
+	}
+}
+
+func (c *Copier) copySrc(name string, src io.Reader) {
+	defer c.copyJobs.Done()
+
+	bufSize := defaultBufSize
+	if sizedLogger, ok := c.dst.(SizedLogger); ok {
+		bufSize = sizedLogger.BufSize()
+	}
+	buf := make([]byte, bufSize)
+
+	n := 0
+	eof := false
+	var partialid string
+	var partialTS time.Time
+	var ordinal int
+	firstPartial := true
+	hasMorePartial := false
+
+	for {
+		select {
+		case <-c.closed:
+			return
+		default:
+			// Work out how much more data we are okay with reading this time.
+			upto := n + readSize
+			if upto > cap(buf) {
+				upto = cap(buf)
+			}
+			// Try to read that data.
+			if upto > n {
+				read, err := src.Read(buf[n:upto])
+				if err != nil {
+					if err != io.EOF {
+						logrus.Errorf("Error scanning log stream: %s", err)
+						return
+					}
+					eof = true
+				}
+				n += read
+			}
+			// If we have no data to log, and there's no more coming, we're done.
+			if n == 0 && eof {
+				return
+			}
+			// Break up the data that we've buffered up into lines, and log each in turn.
+			p := 0
+
+			for q := bytes.IndexByte(buf[p:n], '\n'); q >= 0; q = bytes.IndexByte(buf[p:n], '\n') {
+				select {
+				case <-c.closed:
+					return
+				default:
+					msg := NewMessage()
+					msg.Source = name
+					msg.Line = append(msg.Line, buf[p:p+q]...)
+
+					if hasMorePartial {
+						msg.PLogMetaData = &types.PartialLogMetaData{ID: partialid, Ordinal: ordinal, Last: true}
+
+						// reset
+						partialid = ""
+						ordinal = 0
+						firstPartial = true
+						hasMorePartial = false
+					}
+					if msg.PLogMetaData == nil {
+						msg.Timestamp = time.Now().UTC()
+					} else {
+						msg.Timestamp = partialTS
+					}
+
+					if logErr := c.dst.Log(msg); logErr != nil {
+						logrus.Errorf("Failed to log msg %q for logger %s: %s", msg.Line, c.dst.Name(), logErr)
+					}
+				}
+				p += q + 1
+			}
+			// If there's no more coming, or the buffer is full but
+			// has no newlines, log whatever we haven't logged yet,
+			// noting that it's a partial log line.
+			if eof || (p == 0 && n == len(buf)) {
+				if p < n {
+					msg := NewMessage()
+					msg.Source = name
+					msg.Line = append(msg.Line, buf[p:n]...)
+
+					// Generate unique partialID for first partial. Use it across partials.
+					// Record timestamp for first partial. Use it across partials.
+					// Initialize Ordinal for first partial. Increment it across partials.
+					if firstPartial {
+						msg.Timestamp = time.Now().UTC()
+						partialTS = msg.Timestamp
+						partialid = stringid.GenerateRandomID()
+						ordinal = 1
+						firstPartial = false
+					} else {
+						msg.Timestamp = partialTS
+					}
+					msg.PLogMetaData = &types.PartialLogMetaData{ID: partialid, Ordinal: ordinal, Last: false}
+					ordinal++
+					hasMorePartial = true
+
+					if logErr := c.dst.Log(msg); logErr != nil {
+						logrus.Errorf("Failed to log msg %q for logger %s: %s", msg.Line, c.dst.Name(), logErr)
+					}
+					p = 0
+					n = 0
+				}
+				if eof {
+					return
+				}
+			}
+			// Move any unlogged data to the front of the buffer in preparation for another read.
+			if p > 0 {
+				copy(buf[0:], buf[p:n])
+				n -= p
+			}
+		}
+	}
+}
+
+// Wait waits until all copying is done
+func (c *Copier) Wait() {
+	c.copyJobs.Wait()
+}
+
+// Close closes the copier
+func (c *Copier) Close() {
+	c.closeOnce.Do(func() {
+		close(c.closed)
+	})
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/factory.go b/vendor/github.com/docker/docker/daemon/logger/factory.go
new file mode 100644
index 0000000000..9723f7fc0c
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/factory.go
@@ -0,0 +1,162 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"fmt"
+	"sort"
+	"sync"
+
+	containertypes "github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/pkg/plugingetter"
+	units "github.com/docker/go-units"
+	"github.com/pkg/errors"
+)
+
+// Creator builds a logging driver instance with given context.
+type Creator func(Info) (Logger, error)
+
+// LogOptValidator checks the options specific to the underlying
+// logging implementation.
+type LogOptValidator func(cfg map[string]string) error
+
+type logdriverFactory struct {
+	registry     map[string]Creator
+	optValidator map[string]LogOptValidator
+	m            sync.Mutex
+}
+
+func (lf *logdriverFactory) list() []string {
+	ls := make([]string, 0, len(lf.registry))
+	lf.m.Lock()
+	for name := range lf.registry {
+		ls = append(ls, name)
+	}
+	lf.m.Unlock()
+	sort.Strings(ls)
+	return ls
+}
+
+// ListDrivers gets the list of registered log driver names
+func ListDrivers() []string {
+	return factory.list()
+}
+
+func (lf *logdriverFactory) register(name string, c Creator) error {
+	if lf.driverRegistered(name) {
+		return fmt.Errorf("logger: log driver named '%s' is already registered", name)
+	}
+
+	lf.m.Lock()
+	lf.registry[name] = c
+	lf.m.Unlock()
+	return nil
+}
+
+func (lf *logdriverFactory) driverRegistered(name string) bool {
+	lf.m.Lock()
+	_, ok := lf.registry[name]
+	lf.m.Unlock()
+	if !ok {
+		if pluginGetter != nil { // this can be nil when the init functions are running
+			if l, _ := getPlugin(name, plugingetter.Lookup); l != nil {
+				return true
+			}
+		}
+	}
+	return ok
+}
+
+func (lf *logdriverFactory) registerLogOptValidator(name string, l LogOptValidator) error {
+	lf.m.Lock()
+	defer lf.m.Unlock()
+
+	if _, ok := lf.optValidator[name]; ok {
+		return fmt.Errorf("logger: log validator named '%s' is already registered", name)
+	}
+	lf.optValidator[name] = l
+	return nil
+}
+
+func (lf *logdriverFactory) get(name string) (Creator, error) {
+	lf.m.Lock()
+	defer lf.m.Unlock()
+
+	c, ok := lf.registry[name]
+	if ok {
+		return c, nil
+	}
+
+	c, err := getPlugin(name, plugingetter.Acquire)
+	return c, errors.Wrapf(err, "logger: no log driver named '%s' is registered", name)
+}
+
+func (lf *logdriverFactory) getLogOptValidator(name string) LogOptValidator {
+	lf.m.Lock()
+	defer lf.m.Unlock()
+
+	c := lf.optValidator[name]
+	return c
+}
+
+var factory = &logdriverFactory{registry: make(map[string]Creator), optValidator: make(map[string]LogOptValidator)} // global factory instance
+
+// RegisterLogDriver registers the given logging driver builder with given logging
+// driver name.
+func RegisterLogDriver(name string, c Creator) error {
+	return factory.register(name, c)
+}
+
+// RegisterLogOptValidator registers the logging option validator with
+// the given logging driver name.
+func RegisterLogOptValidator(name string, l LogOptValidator) error {
+	return factory.registerLogOptValidator(name, l)
+}
+
+// GetLogDriver provides the logging driver builder for a logging driver name.
+func GetLogDriver(name string) (Creator, error) {
+	return factory.get(name)
+}
+
+var builtInLogOpts = map[string]bool{
+	"mode":            true,
+	"max-buffer-size": true,
+}
+
+// ValidateLogOpts checks the options for the given log driver. The
+// options supported are specific to the LogDriver implementation.
+func ValidateLogOpts(name string, cfg map[string]string) error {
+	if name == "none" {
+		return nil
+	}
+
+	switch containertypes.LogMode(cfg["mode"]) {
+	case containertypes.LogModeBlocking, containertypes.LogModeNonBlock, containertypes.LogModeUnset:
+	default:
+		return fmt.Errorf("logger: logging mode not supported: %s", cfg["mode"])
+	}
+
+	if s, ok := cfg["max-buffer-size"]; ok {
+		if containertypes.LogMode(cfg["mode"]) != containertypes.LogModeNonBlock {
+			return fmt.Errorf("logger: max-buffer-size option is only supported with 'mode=%s'", containertypes.LogModeNonBlock)
+		}
+		if _, err := units.RAMInBytes(s); err != nil {
+			return errors.Wrap(err, "error parsing option max-buffer-size")
+		}
+	}
+
+	if !factory.driverRegistered(name) {
+		return fmt.Errorf("logger: no log driver named '%s' is registered", name)
+	}
+
+	filteredOpts := make(map[string]string, len(builtInLogOpts))
+	for k, v := range cfg {
+		if !builtInLogOpts[k] {
+			filteredOpts[k] = v
+		}
+	}
+
+	validator := factory.getLogOptValidator(name)
+	if validator != nil {
+		return validator(filteredOpts)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonfilelog.go b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonfilelog.go
new file mode 100644
index 0000000000..7d0533ec84
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonfilelog.go
@@ -0,0 +1,185 @@
+// Package jsonfilelog provides the default Logger implementation for
+// Docker logging. This logger logs to files on the host server in the
+// JSON format.
+package jsonfilelog // import "github.com/docker/docker/daemon/logger/jsonfilelog"
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"strconv"
+	"sync"
+
+	"github.com/docker/docker/daemon/logger"
+	"github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog"
+	"github.com/docker/docker/daemon/logger/loggerutils"
+	units "github.com/docker/go-units"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// Name is the name of the file that the jsonlogger logs to.
+const Name = "json-file"
+
+// JSONFileLogger is Logger implementation for default Docker logging.
+type JSONFileLogger struct {
+	mu      sync.Mutex
+	closed  bool
+	writer  *loggerutils.LogFile
+	readers map[*logger.LogWatcher]struct{} // stores the active log followers
+	tag     string                          // tag values requested by the user to log
+}
+
+func init() {
+	if err := logger.RegisterLogDriver(Name, New); err != nil {
+		logrus.Fatal(err)
+	}
+	if err := logger.RegisterLogOptValidator(Name, ValidateLogOpt); err != nil {
+		logrus.Fatal(err)
+	}
+}
+
+// New creates new JSONFileLogger which writes to filename passed in
+// on given context.
+func New(info logger.Info) (logger.Logger, error) {
+	var capval int64 = -1
+	if capacity, ok := info.Config["max-size"]; ok {
+		var err error
+		capval, err = units.FromHumanSize(capacity)
+		if err != nil {
+			return nil, err
+		}
+		if capval <= 0 {
+			return nil, fmt.Errorf("max-size should be a positive numbler")
+		}
+	}
+	var maxFiles = 1
+	if maxFileString, ok := info.Config["max-file"]; ok {
+		var err error
+		maxFiles, err = strconv.Atoi(maxFileString)
+		if err != nil {
+			return nil, err
+		}
+		if maxFiles < 1 {
+			return nil, fmt.Errorf("max-file cannot be less than 1")
+		}
+	}
+
+	var compress bool
+	if compressString, ok := info.Config["compress"]; ok {
+		var err error
+		compress, err = strconv.ParseBool(compressString)
+		if err != nil {
+			return nil, err
+		}
+		if compress && (maxFiles == 1 || capval == -1) {
+			return nil, fmt.Errorf("compress cannot be true when max-file is less than 2 or max-size is not set")
+		}
+	}
+
+	attrs, err := info.ExtraAttributes(nil)
+	if err != nil {
+		return nil, err
+	}
+
+	// no default template. only use a tag if the user asked for it
+	tag, err := loggerutils.ParseLogTag(info, "")
+	if err != nil {
+		return nil, err
+	}
+	if tag != "" {
+		attrs["tag"] = tag
+	}
+
+	var extra []byte
+	if len(attrs) > 0 {
+		var err error
+		extra, err = json.Marshal(attrs)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	buf := bytes.NewBuffer(nil)
+	marshalFunc := func(msg *logger.Message) ([]byte, error) {
+		if err := marshalMessage(msg, extra, buf); err != nil {
+			return nil, err
+		}
+		b := buf.Bytes()
+		buf.Reset()
+		return b, nil
+	}
+
+	writer, err := loggerutils.NewLogFile(info.LogPath, capval, maxFiles, compress, marshalFunc, decodeFunc, 0640)
+	if err != nil {
+		return nil, err
+	}
+
+	return &JSONFileLogger{
+		writer:  writer,
+		readers: make(map[*logger.LogWatcher]struct{}),
+		tag:     tag,
+	}, nil
+}
+
+// Log converts logger.Message to jsonlog.JSONLog and serializes it to file.
+func (l *JSONFileLogger) Log(msg *logger.Message) error {
+	l.mu.Lock()
+	err := l.writer.WriteLogEntry(msg)
+	l.mu.Unlock()
+	return err
+}
+
+func marshalMessage(msg *logger.Message, extra json.RawMessage, buf *bytes.Buffer) error {
+	logLine := msg.Line
+	if msg.PLogMetaData == nil || (msg.PLogMetaData != nil && msg.PLogMetaData.Last) {
+		logLine = append(msg.Line, '\n')
+	}
+	err := (&jsonlog.JSONLogs{
+		Log:      logLine,
+		Stream:   msg.Source,
+		Created:  msg.Timestamp,
+		RawAttrs: extra,
+	}).MarshalJSONBuf(buf)
+	if err != nil {
+		return errors.Wrap(err, "error writing log message to buffer")
+	}
+	err = buf.WriteByte('\n')
+	return errors.Wrap(err, "error finalizing log buffer")
+}
+
+// ValidateLogOpt looks for json specific log options max-file & max-size.
+func ValidateLogOpt(cfg map[string]string) error {
+	for key := range cfg {
+		switch key {
+		case "max-file":
+		case "max-size":
+		case "compress":
+		case "labels":
+		case "env":
+		case "env-regex":
+		case "tag":
+		default:
+			return fmt.Errorf("unknown log opt '%s' for json-file log driver", key)
+		}
+	}
+	return nil
+}
+
+// Close closes underlying file and signals all readers to stop.
+func (l *JSONFileLogger) Close() error {
+	l.mu.Lock()
+	l.closed = true
+	err := l.writer.Close()
+	for r := range l.readers {
+		r.Close()
+		delete(l.readers, r)
+	}
+	l.mu.Unlock()
+	return err
+}
+
+// Name returns name of this logger.
+func (l *JSONFileLogger) Name() string {
+	return Name
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlog.go b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlog.go
new file mode 100644
index 0000000000..74be8e7da0
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlog.go
@@ -0,0 +1,25 @@
+package jsonlog // import "github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog"
+
+import (
+	"time"
+)
+
+// JSONLog is a log message, typically a single entry from a given log stream.
+type JSONLog struct {
+	// Log is the log message
+	Log string `json:"log,omitempty"`
+	// Stream is the log source
+	Stream string `json:"stream,omitempty"`
+	// Created is the created timestamp of log
+	Created time.Time `json:"time"`
+	// Attrs is the list of extra attributes provided by the user
+	Attrs map[string]string `json:"attrs,omitempty"`
+}
+
+// Reset all fields to their zero value.
+func (jl *JSONLog) Reset() {
+	jl.Log = ""
+	jl.Stream = ""
+	jl.Created = time.Time{}
+	jl.Attrs = make(map[string]string)
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlogbytes.go b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlogbytes.go
new file mode 100644
index 0000000000..577c718f63
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/jsonlogbytes.go
@@ -0,0 +1,125 @@
+package jsonlog // import "github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog"
+
+import (
+	"bytes"
+	"encoding/json"
+	"time"
+	"unicode/utf8"
+)
+
+// JSONLogs marshals encoded JSONLog objects
+type JSONLogs struct {
+	Log     []byte    `json:"log,omitempty"`
+	Stream  string    `json:"stream,omitempty"`
+	Created time.Time `json:"time"`
+
+	// json-encoded bytes
+	RawAttrs json.RawMessage `json:"attrs,omitempty"`
+}
+
+// MarshalJSONBuf is an optimized JSON marshaller that avoids reflection
+// and unnecessary allocation.
+func (mj *JSONLogs) MarshalJSONBuf(buf *bytes.Buffer) error {
+	var first = true
+
+	buf.WriteString(`{`)
+	if len(mj.Log) != 0 {
+		first = false
+		buf.WriteString(`"log":`)
+		ffjsonWriteJSONBytesAsString(buf, mj.Log)
+	}
+	if len(mj.Stream) != 0 {
+		if first {
+			first = false
+		} else {
+			buf.WriteString(`,`)
+		}
+		buf.WriteString(`"stream":`)
+		ffjsonWriteJSONBytesAsString(buf, []byte(mj.Stream))
+	}
+	if len(mj.RawAttrs) > 0 {
+		if first {
+			first = false
+		} else {
+			buf.WriteString(`,`)
+		}
+		buf.WriteString(`"attrs":`)
+		buf.Write(mj.RawAttrs)
+	}
+	if !first {
+		buf.WriteString(`,`)
+	}
+
+	created, err := fastTimeMarshalJSON(mj.Created)
+	if err != nil {
+		return err
+	}
+
+	buf.WriteString(`"time":`)
+	buf.WriteString(created)
+	buf.WriteString(`}`)
+	return nil
+}
+
+func ffjsonWriteJSONBytesAsString(buf *bytes.Buffer, s []byte) {
+	const hex = "0123456789abcdef"
+
+	buf.WriteByte('"')
+	start := 0
+	for i := 0; i < len(s); {
+		if b := s[i]; b < utf8.RuneSelf {
+			if 0x20 <= b && b != '\\' && b != '"' && b != '<' && b != '>' && b != '&' {
+				i++
+				continue
+			}
+			if start < i {
+				buf.Write(s[start:i])
+			}
+			switch b {
+			case '\\', '"':
+				buf.WriteByte('\\')
+				buf.WriteByte(b)
+			case '\n':
+				buf.WriteByte('\\')
+				buf.WriteByte('n')
+			case '\r':
+				buf.WriteByte('\\')
+				buf.WriteByte('r')
+			default:
+
+				buf.WriteString(`\u00`)
+				buf.WriteByte(hex[b>>4])
+				buf.WriteByte(hex[b&0xF])
+			}
+			i++
+			start = i
+			continue
+		}
+		c, size := utf8.DecodeRune(s[i:])
+		if c == utf8.RuneError && size == 1 {
+			if start < i {
+				buf.Write(s[start:i])
+			}
+			buf.WriteString(`\ufffd`)
+			i += size
+			start = i
+			continue
+		}
+
+		if c == '\u2028' || c == '\u2029' {
+			if start < i {
+				buf.Write(s[start:i])
+			}
+			buf.WriteString(`\u202`)
+			buf.WriteByte(hex[c&0xF])
+			i += size
+			start = i
+			continue
+		}
+		i += size
+	}
+	if start < len(s) {
+		buf.Write(s[start:])
+	}
+	buf.WriteByte('"')
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/time_marshalling.go b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/time_marshalling.go
new file mode 100644
index 0000000000..1822ea5dbc
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog/time_marshalling.go
@@ -0,0 +1,20 @@
+package jsonlog // import "github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog"
+
+import (
+	"time"
+
+	"github.com/pkg/errors"
+)
+
+const jsonFormat = `"` + time.RFC3339Nano + `"`
+
+// fastTimeMarshalJSON avoids one of the extra allocations that
+// time.MarshalJSON is making.
+func fastTimeMarshalJSON(t time.Time) (string, error) {
+	if y := t.Year(); y < 0 || y >= 10000 {
+		// RFC 3339 is clear that years are 4 digits exactly.
+		// See golang.org/issue/4556#c15 for more discussion.
+		return "", errors.New("time.MarshalJSON: year outside of range [0,9999]")
+	}
+	return t.Format(jsonFormat), nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/read.go b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/read.go
new file mode 100644
index 0000000000..ab1793bb72
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/jsonfilelog/read.go
@@ -0,0 +1,89 @@
+package jsonfilelog // import "github.com/docker/docker/daemon/logger/jsonfilelog"
+
+import (
+	"encoding/json"
+	"io"
+
+	"github.com/docker/docker/api/types/backend"
+	"github.com/docker/docker/daemon/logger"
+	"github.com/docker/docker/daemon/logger/jsonfilelog/jsonlog"
+)
+
+const maxJSONDecodeRetry = 20000
+
+// ReadLogs implements the logger's LogReader interface for the logs
+// created by this driver.
+func (l *JSONFileLogger) ReadLogs(config logger.ReadConfig) *logger.LogWatcher {
+	logWatcher := logger.NewLogWatcher()
+
+	go l.readLogs(logWatcher, config)
+	return logWatcher
+}
+
+func (l *JSONFileLogger) readLogs(watcher *logger.LogWatcher, config logger.ReadConfig) {
+	defer close(watcher.Msg)
+
+	l.mu.Lock()
+	l.readers[watcher] = struct{}{}
+	l.mu.Unlock()
+
+	l.writer.ReadLogs(config, watcher)
+
+	l.mu.Lock()
+	delete(l.readers, watcher)
+	l.mu.Unlock()
+}
+
+func decodeLogLine(dec *json.Decoder, l *jsonlog.JSONLog) (*logger.Message, error) {
+	l.Reset()
+	if err := dec.Decode(l); err != nil {
+		return nil, err
+	}
+
+	var attrs []backend.LogAttr
+	if len(l.Attrs) != 0 {
+		attrs = make([]backend.LogAttr, 0, len(l.Attrs))
+		for k, v := range l.Attrs {
+			attrs = append(attrs, backend.LogAttr{Key: k, Value: v})
+		}
+	}
+	msg := &logger.Message{
+		Source:    l.Stream,
+		Timestamp: l.Created,
+		Line:      []byte(l.Log),
+		Attrs:     attrs,
+	}
+	return msg, nil
+}
+
+// decodeFunc is used to create a decoder for the log file reader
+func decodeFunc(rdr io.Reader) func() (*logger.Message, error) {
+	l := &jsonlog.JSONLog{}
+	dec := json.NewDecoder(rdr)
+	return func() (msg *logger.Message, err error) {
+		for retries := 0; retries < maxJSONDecodeRetry; retries++ {
+			msg, err = decodeLogLine(dec, l)
+			if err == nil {
+				break
+			}
+
+			// try again, could be due to a an incomplete json object as we read
+			if _, ok := err.(*json.SyntaxError); ok {
+				dec = json.NewDecoder(rdr)
+				retries++
+				continue
+			}
+
+			// io.ErrUnexpectedEOF is returned from json.Decoder when there is
+			// remaining data in the parser's buffer while an io.EOF occurs.
+			// If the json logger writes a partial json log entry to the disk
+			// while at the same time the decoder tries to decode it, the race condition happens.
+			if err == io.ErrUnexpectedEOF {
+				reader := io.MultiReader(dec.Buffered(), rdr)
+				dec = json.NewDecoder(reader)
+				retries++
+			}
+		}
+		return msg, err
+	}
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/logger.go b/vendor/github.com/docker/docker/daemon/logger/logger.go
new file mode 100644
index 0000000000..912e855c7f
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/logger.go
@@ -0,0 +1,145 @@
+// Package logger defines interfaces that logger drivers implement to
+// log messages.
+//
+// The other half of a logger driver is the implementation of the
+// factory, which holds the contextual instance information that
+// allows multiple loggers of the same type to perform different
+// actions, such as logging to different locations.
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"sync"
+	"time"
+
+	"github.com/docker/docker/api/types/backend"
+)
+
+// ErrReadLogsNotSupported is returned when the underlying log driver does not support reading
+type ErrReadLogsNotSupported struct{}
+
+func (ErrReadLogsNotSupported) Error() string {
+	return "configured logging driver does not support reading"
+}
+
+// NotImplemented makes this error implement the `NotImplemented` interface from api/errdefs
+func (ErrReadLogsNotSupported) NotImplemented() {}
+
+const (
+	logWatcherBufferSize = 4096
+)
+
+var messagePool = &sync.Pool{New: func() interface{} { return &Message{Line: make([]byte, 0, 256)} }}
+
+// NewMessage returns a new message from the message sync.Pool
+func NewMessage() *Message {
+	return messagePool.Get().(*Message)
+}
+
+// PutMessage puts the specified message back n the message pool.
+// The message fields are reset before putting into the pool.
+func PutMessage(msg *Message) {
+	msg.reset()
+	messagePool.Put(msg)
+}
+
+// Message is data structure that represents piece of output produced by some
+// container.  The Line member is a slice of an array whose contents can be
+// changed after a log driver's Log() method returns.
+//
+// Message is subtyped from backend.LogMessage because there is a lot of
+// internal complexity around the Message type that should not be exposed
+// to any package not explicitly importing the logger type.
+//
+// Any changes made to this struct must also be updated in the `reset` function
+type Message backend.LogMessage
+
+// reset sets the message back to default values
+// This is used when putting a message back into the message pool.
+// Any changes to the `Message` struct should be reflected here.
+func (m *Message) reset() {
+	m.Line = m.Line[:0]
+	m.Source = ""
+	m.Attrs = nil
+	m.PLogMetaData = nil
+
+	m.Err = nil
+}
+
+// AsLogMessage returns a pointer to the message as a pointer to
+// backend.LogMessage, which is an identical type with a different purpose
+func (m *Message) AsLogMessage() *backend.LogMessage {
+	return (*backend.LogMessage)(m)
+}
+
+// Logger is the interface for docker logging drivers.
+type Logger interface {
+	Log(*Message) error
+	Name() string
+	Close() error
+}
+
+// SizedLogger is the interface for logging drivers that can control
+// the size of buffer used for their messages.
+type SizedLogger interface {
+	Logger
+	BufSize() int
+}
+
+// ReadConfig is the configuration passed into ReadLogs.
+type ReadConfig struct {
+	Since  time.Time
+	Until  time.Time
+	Tail   int
+	Follow bool
+}
+
+// LogReader is the interface for reading log messages for loggers that support reading.
+type LogReader interface {
+	// Read logs from underlying logging backend
+	ReadLogs(ReadConfig) *LogWatcher
+}
+
+// LogWatcher is used when consuming logs read from the LogReader interface.
+type LogWatcher struct {
+	// For sending log messages to a reader.
+	Msg chan *Message
+	// For sending error messages that occur while while reading logs.
+	Err           chan error
+	closeOnce     sync.Once
+	closeNotifier chan struct{}
+}
+
+// NewLogWatcher returns a new LogWatcher.
+func NewLogWatcher() *LogWatcher {
+	return &LogWatcher{
+		Msg:           make(chan *Message, logWatcherBufferSize),
+		Err:           make(chan error, 1),
+		closeNotifier: make(chan struct{}),
+	}
+}
+
+// Close notifies the underlying log reader to stop.
+func (w *LogWatcher) Close() {
+	// only close if not already closed
+	w.closeOnce.Do(func() {
+		close(w.closeNotifier)
+	})
+}
+
+// WatchClose returns a channel receiver that receives notification
+// when the watcher has been closed. This should only be called from
+// one goroutine.
+func (w *LogWatcher) WatchClose() <-chan struct{} {
+	return w.closeNotifier
+}
+
+// Capability defines the list of capabilities that a driver can implement
+// These capabilities are not required to be a logging driver, however do
+// determine how a logging driver can be used
+type Capability struct {
+	// Determines if a log driver can read back logs
+	ReadLogs bool
+}
+
+// MarshalFunc is a func that marshals a message into an arbitrary format
+type MarshalFunc func(*Message) ([]byte, error)
diff --git a/vendor/github.com/docker/docker/daemon/logger/loggerutils/log_tag.go b/vendor/github.com/docker/docker/daemon/logger/loggerutils/log_tag.go
new file mode 100644
index 0000000000..719512dbdb
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/loggerutils/log_tag.go
@@ -0,0 +1,31 @@
+package loggerutils // import "github.com/docker/docker/daemon/logger/loggerutils"
+
+import (
+	"bytes"
+
+	"github.com/docker/docker/daemon/logger"
+	"github.com/docker/docker/daemon/logger/templates"
+)
+
+// DefaultTemplate defines the defaults template logger should use.
+const DefaultTemplate = "{{.ID}}"
+
+// ParseLogTag generates a context aware tag for consistency across different
+// log drivers based on the context of the running container.
+func ParseLogTag(info logger.Info, defaultTemplate string) (string, error) {
+	tagTemplate := info.Config["tag"]
+	if tagTemplate == "" {
+		tagTemplate = defaultTemplate
+	}
+
+	tmpl, err := templates.NewParse("log-tag", tagTemplate)
+	if err != nil {
+		return "", err
+	}
+	buf := new(bytes.Buffer)
+	if err := tmpl.Execute(buf, &info); err != nil {
+		return "", err
+	}
+
+	return buf.String(), nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/loggerutils/logfile.go b/vendor/github.com/docker/docker/daemon/logger/loggerutils/logfile.go
new file mode 100644
index 0000000000..b4148ce645
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/loggerutils/logfile.go
@@ -0,0 +1,656 @@
+package loggerutils // import "github.com/docker/docker/daemon/logger/loggerutils"
+
+import (
+	"bytes"
+	"compress/gzip"
+	"context"
+	"encoding/json"
+	"fmt"
+	"io"
+	"os"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/daemon/logger"
+	"github.com/docker/docker/daemon/logger/loggerutils/multireader"
+	"github.com/docker/docker/pkg/filenotify"
+	"github.com/docker/docker/pkg/pools"
+	"github.com/docker/docker/pkg/pubsub"
+	"github.com/docker/docker/pkg/tailfile"
+	"github.com/fsnotify/fsnotify"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+const tmpLogfileSuffix = ".tmp"
+
+// rotateFileMetadata is a metadata of the gzip header of the compressed log file
+type rotateFileMetadata struct {
+	LastTime time.Time `json:"lastTime,omitempty"`
+}
+
+// refCounter is a counter of logfile being referenced
+type refCounter struct {
+	mu      sync.Mutex
+	counter map[string]int
+}
+
+// Reference increase the reference counter for specified logfile
+func (rc *refCounter) GetReference(fileName string, openRefFile func(fileName string, exists bool) (*os.File, error)) (*os.File, error) {
+	rc.mu.Lock()
+	defer rc.mu.Unlock()
+
+	var (
+		file *os.File
+		err  error
+	)
+	_, ok := rc.counter[fileName]
+	file, err = openRefFile(fileName, ok)
+	if err != nil {
+		return nil, err
+	}
+
+	if ok {
+		rc.counter[fileName]++
+	} else if file != nil {
+		rc.counter[file.Name()] = 1
+	}
+
+	return file, nil
+}
+
+// Dereference reduce the reference counter for specified logfile
+func (rc *refCounter) Dereference(fileName string) error {
+	rc.mu.Lock()
+	defer rc.mu.Unlock()
+
+	rc.counter[fileName]--
+	if rc.counter[fileName] <= 0 {
+		delete(rc.counter, fileName)
+		err := os.Remove(fileName)
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// LogFile is Logger implementation for default Docker logging.
+type LogFile struct {
+	mu              sync.RWMutex // protects the logfile access
+	f               *os.File     // store for closing
+	closed          bool
+	rotateMu        sync.Mutex // blocks the next rotation until the current rotation is completed
+	capacity        int64      // maximum size of each file
+	currentSize     int64      // current size of the latest file
+	maxFiles        int        // maximum number of files
+	compress        bool       // whether old versions of log files are compressed
+	lastTimestamp   time.Time  // timestamp of the last log
+	filesRefCounter refCounter // keep reference-counted of decompressed files
+	notifyRotate    *pubsub.Publisher
+	marshal         logger.MarshalFunc
+	createDecoder   makeDecoderFunc
+	perms           os.FileMode
+}
+
+type makeDecoderFunc func(rdr io.Reader) func() (*logger.Message, error)
+
+//NewLogFile creates new LogFile
+func NewLogFile(logPath string, capacity int64, maxFiles int, compress bool, marshaller logger.MarshalFunc, decodeFunc makeDecoderFunc, perms os.FileMode) (*LogFile, error) {
+	log, err := os.OpenFile(logPath, os.O_WRONLY|os.O_APPEND|os.O_CREATE, perms)
+	if err != nil {
+		return nil, err
+	}
+
+	size, err := log.Seek(0, os.SEEK_END)
+	if err != nil {
+		return nil, err
+	}
+
+	return &LogFile{
+		f:               log,
+		capacity:        capacity,
+		currentSize:     size,
+		maxFiles:        maxFiles,
+		compress:        compress,
+		filesRefCounter: refCounter{counter: make(map[string]int)},
+		notifyRotate:    pubsub.NewPublisher(0, 1),
+		marshal:         marshaller,
+		createDecoder:   decodeFunc,
+		perms:           perms,
+	}, nil
+}
+
+// WriteLogEntry writes the provided log message to the current log file.
+// This may trigger a rotation event if the max file/capacity limits are hit.
+func (w *LogFile) WriteLogEntry(msg *logger.Message) error {
+	b, err := w.marshal(msg)
+	if err != nil {
+		return errors.Wrap(err, "error marshalling log message")
+	}
+
+	logger.PutMessage(msg)
+
+	w.mu.Lock()
+	if w.closed {
+		w.mu.Unlock()
+		return errors.New("cannot write because the output file was closed")
+	}
+
+	if err := w.checkCapacityAndRotate(); err != nil {
+		w.mu.Unlock()
+		return err
+	}
+
+	n, err := w.f.Write(b)
+	if err == nil {
+		w.currentSize += int64(n)
+		w.lastTimestamp = msg.Timestamp
+	}
+	w.mu.Unlock()
+	return err
+}
+
+func (w *LogFile) checkCapacityAndRotate() error {
+	if w.capacity == -1 {
+		return nil
+	}
+
+	if w.currentSize >= w.capacity {
+		w.rotateMu.Lock()
+		fname := w.f.Name()
+		if err := w.f.Close(); err != nil {
+			w.rotateMu.Unlock()
+			return errors.Wrap(err, "error closing file")
+		}
+		if err := rotate(fname, w.maxFiles, w.compress); err != nil {
+			w.rotateMu.Unlock()
+			return err
+		}
+		file, err := os.OpenFile(fname, os.O_WRONLY|os.O_TRUNC|os.O_CREATE, w.perms)
+		if err != nil {
+			w.rotateMu.Unlock()
+			return err
+		}
+		w.f = file
+		w.currentSize = 0
+		w.notifyRotate.Publish(struct{}{})
+
+		if w.maxFiles <= 1 || !w.compress {
+			w.rotateMu.Unlock()
+			return nil
+		}
+
+		go func() {
+			compressFile(fname+".1", w.lastTimestamp)
+			w.rotateMu.Unlock()
+		}()
+	}
+
+	return nil
+}
+
+func rotate(name string, maxFiles int, compress bool) error {
+	if maxFiles < 2 {
+		return nil
+	}
+
+	var extension string
+	if compress {
+		extension = ".gz"
+	}
+	for i := maxFiles - 1; i > 1; i-- {
+		toPath := name + "." + strconv.Itoa(i) + extension
+		fromPath := name + "." + strconv.Itoa(i-1) + extension
+		if err := os.Rename(fromPath, toPath); err != nil && !os.IsNotExist(err) {
+			return err
+		}
+	}
+
+	if err := os.Rename(name, name+".1"); err != nil && !os.IsNotExist(err) {
+		return err
+	}
+
+	return nil
+}
+
+func compressFile(fileName string, lastTimestamp time.Time) {
+	file, err := os.Open(fileName)
+	if err != nil {
+		logrus.Errorf("Failed to open log file: %v", err)
+		return
+	}
+	defer func() {
+		file.Close()
+		err := os.Remove(fileName)
+		if err != nil {
+			logrus.Errorf("Failed to remove source log file: %v", err)
+		}
+	}()
+
+	outFile, err := os.OpenFile(fileName+".gz", os.O_CREATE|os.O_RDWR, 0640)
+	if err != nil {
+		logrus.Errorf("Failed to open or create gzip log file: %v", err)
+		return
+	}
+	defer func() {
+		outFile.Close()
+		if err != nil {
+			os.Remove(fileName + ".gz")
+		}
+	}()
+
+	compressWriter := gzip.NewWriter(outFile)
+	defer compressWriter.Close()
+
+	// Add the last log entry timestramp to the gzip header
+	extra := rotateFileMetadata{}
+	extra.LastTime = lastTimestamp
+	compressWriter.Header.Extra, err = json.Marshal(&extra)
+	if err != nil {
+		// Here log the error only and don't return since this is just an optimization.
+		logrus.Warningf("Failed to marshal JSON: %v", err)
+	}
+
+	_, err = pools.Copy(compressWriter, file)
+	if err != nil {
+		logrus.WithError(err).WithField("module", "container.logs").WithField("file", fileName).Error("Error compressing log file")
+		return
+	}
+}
+
+// MaxFiles return maximum number of files
+func (w *LogFile) MaxFiles() int {
+	return w.maxFiles
+}
+
+// Close closes underlying file and signals all readers to stop.
+func (w *LogFile) Close() error {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	if w.closed {
+		return nil
+	}
+	if err := w.f.Close(); err != nil {
+		return err
+	}
+	w.closed = true
+	return nil
+}
+
+// ReadLogs decodes entries from log files and sends them the passed in watcher
+func (w *LogFile) ReadLogs(config logger.ReadConfig, watcher *logger.LogWatcher) {
+	w.mu.RLock()
+	currentFile, err := os.Open(w.f.Name())
+	if err != nil {
+		w.mu.RUnlock()
+		watcher.Err <- err
+		return
+	}
+	defer currentFile.Close()
+
+	currentChunk, err := newSectionReader(currentFile)
+	if err != nil {
+		w.mu.RUnlock()
+		watcher.Err <- err
+		return
+	}
+
+	if config.Tail != 0 {
+		files, err := w.openRotatedFiles(config)
+		if err != nil {
+			w.mu.RUnlock()
+			watcher.Err <- err
+			return
+		}
+		w.mu.RUnlock()
+		seekers := make([]io.ReadSeeker, 0, len(files)+1)
+		for _, f := range files {
+			seekers = append(seekers, f)
+		}
+		if currentChunk.Size() > 0 {
+			seekers = append(seekers, currentChunk)
+		}
+		if len(seekers) > 0 {
+			tailFile(multireader.MultiReadSeeker(seekers...), watcher, w.createDecoder, config)
+		}
+		for _, f := range files {
+			f.Close()
+			fileName := f.Name()
+			if strings.HasSuffix(fileName, tmpLogfileSuffix) {
+				err := w.filesRefCounter.Dereference(fileName)
+				if err != nil {
+					logrus.Errorf("Failed to dereference the log file %q: %v", fileName, err)
+				}
+			}
+		}
+
+		w.mu.RLock()
+	}
+
+	if !config.Follow || w.closed {
+		w.mu.RUnlock()
+		return
+	}
+	w.mu.RUnlock()
+
+	notifyRotate := w.notifyRotate.Subscribe()
+	defer w.notifyRotate.Evict(notifyRotate)
+	followLogs(currentFile, watcher, notifyRotate, w.createDecoder, config.Since, config.Until)
+}
+
+func (w *LogFile) openRotatedFiles(config logger.ReadConfig) (files []*os.File, err error) {
+	w.rotateMu.Lock()
+	defer w.rotateMu.Unlock()
+
+	defer func() {
+		if err == nil {
+			return
+		}
+		for _, f := range files {
+			f.Close()
+			if strings.HasSuffix(f.Name(), tmpLogfileSuffix) {
+				err := os.Remove(f.Name())
+				if err != nil && !os.IsNotExist(err) {
+					logrus.Warningf("Failed to remove the logfile %q: %v", f.Name, err)
+				}
+			}
+		}
+	}()
+
+	for i := w.maxFiles; i > 1; i-- {
+		f, err := os.Open(fmt.Sprintf("%s.%d", w.f.Name(), i-1))
+		if err != nil {
+			if !os.IsNotExist(err) {
+				return nil, err
+			}
+
+			fileName := fmt.Sprintf("%s.%d.gz", w.f.Name(), i-1)
+			decompressedFileName := fileName + tmpLogfileSuffix
+			tmpFile, err := w.filesRefCounter.GetReference(decompressedFileName, func(refFileName string, exists bool) (*os.File, error) {
+				if exists {
+					return os.Open(refFileName)
+				}
+				return decompressfile(fileName, refFileName, config.Since)
+			})
+
+			if err != nil {
+				if !os.IsNotExist(err) {
+					return nil, err
+				}
+				continue
+			}
+			if tmpFile == nil {
+				// The log before `config.Since` does not need to read
+				break
+			}
+
+			files = append(files, tmpFile)
+			continue
+		}
+		files = append(files, f)
+	}
+
+	return files, nil
+}
+
+func decompressfile(fileName, destFileName string, since time.Time) (*os.File, error) {
+	cf, err := os.Open(fileName)
+	if err != nil {
+		return nil, err
+	}
+	defer cf.Close()
+
+	rc, err := gzip.NewReader(cf)
+	if err != nil {
+		return nil, err
+	}
+	defer rc.Close()
+
+	// Extract the last log entry timestramp from the gzip header
+	extra := &rotateFileMetadata{}
+	err = json.Unmarshal(rc.Header.Extra, extra)
+	if err == nil && extra.LastTime.Before(since) {
+		return nil, nil
+	}
+
+	rs, err := os.OpenFile(destFileName, os.O_CREATE|os.O_RDWR, 0640)
+	if err != nil {
+		return nil, err
+	}
+
+	_, err = pools.Copy(rs, rc)
+	if err != nil {
+		rs.Close()
+		rErr := os.Remove(rs.Name())
+		if rErr != nil && os.IsNotExist(rErr) {
+			logrus.Errorf("Failed to remove the logfile %q: %v", rs.Name(), rErr)
+		}
+		return nil, err
+	}
+
+	return rs, nil
+}
+
+func newSectionReader(f *os.File) (*io.SectionReader, error) {
+	// seek to the end to get the size
+	// we'll leave this at the end of the file since section reader does not advance the reader
+	size, err := f.Seek(0, os.SEEK_END)
+	if err != nil {
+		return nil, errors.Wrap(err, "error getting current file size")
+	}
+	return io.NewSectionReader(f, 0, size), nil
+}
+
+type decodeFunc func() (*logger.Message, error)
+
+func tailFile(f io.ReadSeeker, watcher *logger.LogWatcher, createDecoder makeDecoderFunc, config logger.ReadConfig) {
+	var rdr io.Reader = f
+	if config.Tail > 0 {
+		ls, err := tailfile.TailFile(f, config.Tail)
+		if err != nil {
+			watcher.Err <- err
+			return
+		}
+		rdr = bytes.NewBuffer(bytes.Join(ls, []byte("\n")))
+	}
+
+	decodeLogLine := createDecoder(rdr)
+	for {
+		msg, err := decodeLogLine()
+		if err != nil {
+			if err != io.EOF {
+				watcher.Err <- err
+			}
+			return
+		}
+		if !config.Since.IsZero() && msg.Timestamp.Before(config.Since) {
+			continue
+		}
+		if !config.Until.IsZero() && msg.Timestamp.After(config.Until) {
+			return
+		}
+		select {
+		case <-watcher.WatchClose():
+			return
+		case watcher.Msg <- msg:
+		}
+	}
+}
+
+func followLogs(f *os.File, logWatcher *logger.LogWatcher, notifyRotate chan interface{}, createDecoder makeDecoderFunc, since, until time.Time) {
+	decodeLogLine := createDecoder(f)
+
+	name := f.Name()
+	fileWatcher, err := watchFile(name)
+	if err != nil {
+		logWatcher.Err <- err
+		return
+	}
+	defer func() {
+		f.Close()
+		fileWatcher.Remove(name)
+		fileWatcher.Close()
+	}()
+
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+	go func() {
+		select {
+		case <-logWatcher.WatchClose():
+			fileWatcher.Remove(name)
+			cancel()
+		case <-ctx.Done():
+			return
+		}
+	}()
+
+	var retries int
+	handleRotate := func() error {
+		f.Close()
+		fileWatcher.Remove(name)
+
+		// retry when the file doesn't exist
+		for retries := 0; retries <= 5; retries++ {
+			f, err = os.Open(name)
+			if err == nil || !os.IsNotExist(err) {
+				break
+			}
+		}
+		if err != nil {
+			return err
+		}
+		if err := fileWatcher.Add(name); err != nil {
+			return err
+		}
+		decodeLogLine = createDecoder(f)
+		return nil
+	}
+
+	errRetry := errors.New("retry")
+	errDone := errors.New("done")
+	waitRead := func() error {
+		select {
+		case e := <-fileWatcher.Events():
+			switch e.Op {
+			case fsnotify.Write:
+				decodeLogLine = createDecoder(f)
+				return nil
+			case fsnotify.Rename, fsnotify.Remove:
+				select {
+				case <-notifyRotate:
+				case <-ctx.Done():
+					return errDone
+				}
+				if err := handleRotate(); err != nil {
+					return err
+				}
+				return nil
+			}
+			return errRetry
+		case err := <-fileWatcher.Errors():
+			logrus.Debug("logger got error watching file: %v", err)
+			// Something happened, let's try and stay alive and create a new watcher
+			if retries <= 5 {
+				fileWatcher.Close()
+				fileWatcher, err = watchFile(name)
+				if err != nil {
+					return err
+				}
+				retries++
+				return errRetry
+			}
+			return err
+		case <-ctx.Done():
+			return errDone
+		}
+	}
+
+	handleDecodeErr := func(err error) error {
+		if err != io.EOF {
+			return err
+		}
+
+		for {
+			err := waitRead()
+			if err == nil {
+				break
+			}
+			if err == errRetry {
+				continue
+			}
+			return err
+		}
+		return nil
+	}
+
+	// main loop
+	for {
+		msg, err := decodeLogLine()
+		if err != nil {
+			if err := handleDecodeErr(err); err != nil {
+				if err == errDone {
+					return
+				}
+				// we got an unrecoverable error, so return
+				logWatcher.Err <- err
+				return
+			}
+			// ready to try again
+			continue
+		}
+
+		retries = 0 // reset retries since we've succeeded
+		if !since.IsZero() && msg.Timestamp.Before(since) {
+			continue
+		}
+		if !until.IsZero() && msg.Timestamp.After(until) {
+			return
+		}
+		select {
+		case logWatcher.Msg <- msg:
+		case <-ctx.Done():
+			logWatcher.Msg <- msg
+			for {
+				msg, err := decodeLogLine()
+				if err != nil {
+					return
+				}
+				if !since.IsZero() && msg.Timestamp.Before(since) {
+					continue
+				}
+				if !until.IsZero() && msg.Timestamp.After(until) {
+					return
+				}
+				logWatcher.Msg <- msg
+			}
+		}
+	}
+}
+
+func watchFile(name string) (filenotify.FileWatcher, error) {
+	fileWatcher, err := filenotify.New()
+	if err != nil {
+		return nil, err
+	}
+
+	logger := logrus.WithFields(logrus.Fields{
+		"module": "logger",
+		"fille":  name,
+	})
+
+	if err := fileWatcher.Add(name); err != nil {
+		logger.WithError(err).Warnf("falling back to file poller")
+		fileWatcher.Close()
+		fileWatcher = filenotify.NewPollingWatcher()
+
+		if err := fileWatcher.Add(name); err != nil {
+			fileWatcher.Close()
+			logger.WithError(err).Debugf("error watching log file for modifications")
+			return nil, err
+		}
+	}
+	return fileWatcher, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/loggerutils/multireader/multireader.go b/vendor/github.com/docker/docker/daemon/logger/loggerutils/multireader/multireader.go
new file mode 100644
index 0000000000..77980a2a0a
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/loggerutils/multireader/multireader.go
@@ -0,0 +1,212 @@
+package multireader // import "github.com/docker/docker/daemon/logger/loggerutils/multireader"
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"os"
+)
+
+type pos struct {
+	idx    int
+	offset int64
+}
+
+type multiReadSeeker struct {
+	readers []io.ReadSeeker
+	pos     *pos
+	posIdx  map[io.ReadSeeker]int
+}
+
+func (r *multiReadSeeker) Seek(offset int64, whence int) (int64, error) {
+	var tmpOffset int64
+	switch whence {
+	case os.SEEK_SET:
+		for i, rdr := range r.readers {
+			// get size of the current reader
+			s, err := rdr.Seek(0, os.SEEK_END)
+			if err != nil {
+				return -1, err
+			}
+
+			if offset > tmpOffset+s {
+				if i == len(r.readers)-1 {
+					rdrOffset := s + (offset - tmpOffset)
+					if _, err := rdr.Seek(rdrOffset, os.SEEK_SET); err != nil {
+						return -1, err
+					}
+					r.pos = &pos{i, rdrOffset}
+					return offset, nil
+				}
+
+				tmpOffset += s
+				continue
+			}
+
+			rdrOffset := offset - tmpOffset
+			idx := i
+
+			if _, err := rdr.Seek(rdrOffset, os.SEEK_SET); err != nil {
+				return -1, err
+			}
+			// make sure all following readers are at 0
+			for _, rdr := range r.readers[i+1:] {
+				rdr.Seek(0, os.SEEK_SET)
+			}
+
+			if rdrOffset == s && i != len(r.readers)-1 {
+				idx++
+				rdrOffset = 0
+			}
+			r.pos = &pos{idx, rdrOffset}
+			return offset, nil
+		}
+	case os.SEEK_END:
+		for _, rdr := range r.readers {
+			s, err := rdr.Seek(0, os.SEEK_END)
+			if err != nil {
+				return -1, err
+			}
+			tmpOffset += s
+		}
+		if _, err := r.Seek(tmpOffset+offset, os.SEEK_SET); err != nil {
+			return -1, err
+		}
+		return tmpOffset + offset, nil
+	case os.SEEK_CUR:
+		if r.pos == nil {
+			return r.Seek(offset, os.SEEK_SET)
+		}
+		// Just return the current offset
+		if offset == 0 {
+			return r.getCurOffset()
+		}
+
+		curOffset, err := r.getCurOffset()
+		if err != nil {
+			return -1, err
+		}
+		rdr, rdrOffset, err := r.getReaderForOffset(curOffset + offset)
+		if err != nil {
+			return -1, err
+		}
+
+		r.pos = &pos{r.posIdx[rdr], rdrOffset}
+		return curOffset + offset, nil
+	default:
+		return -1, fmt.Errorf("Invalid whence: %d", whence)
+	}
+
+	return -1, fmt.Errorf("Error seeking for whence: %d, offset: %d", whence, offset)
+}
+
+func (r *multiReadSeeker) getReaderForOffset(offset int64) (io.ReadSeeker, int64, error) {
+
+	var offsetTo int64
+
+	for _, rdr := range r.readers {
+		size, err := getReadSeekerSize(rdr)
+		if err != nil {
+			return nil, -1, err
+		}
+		if offsetTo+size > offset {
+			return rdr, offset - offsetTo, nil
+		}
+		if rdr == r.readers[len(r.readers)-1] {
+			return rdr, offsetTo + offset, nil
+		}
+		offsetTo += size
+	}
+
+	return nil, 0, nil
+}
+
+func (r *multiReadSeeker) getCurOffset() (int64, error) {
+	var totalSize int64
+	for _, rdr := range r.readers[:r.pos.idx+1] {
+		if r.posIdx[rdr] == r.pos.idx {
+			totalSize += r.pos.offset
+			break
+		}
+
+		size, err := getReadSeekerSize(rdr)
+		if err != nil {
+			return -1, fmt.Errorf("error getting seeker size: %v", err)
+		}
+		totalSize += size
+	}
+	return totalSize, nil
+}
+
+func (r *multiReadSeeker) Read(b []byte) (int, error) {
+	if r.pos == nil {
+		// make sure all readers are at 0
+		r.Seek(0, os.SEEK_SET)
+	}
+
+	bLen := int64(len(b))
+	buf := bytes.NewBuffer(nil)
+	var rdr io.ReadSeeker
+
+	for _, rdr = range r.readers[r.pos.idx:] {
+		readBytes, err := io.CopyN(buf, rdr, bLen)
+		if err != nil && err != io.EOF {
+			return -1, err
+		}
+		bLen -= readBytes
+
+		if bLen == 0 {
+			break
+		}
+	}
+
+	rdrPos, err := rdr.Seek(0, os.SEEK_CUR)
+	if err != nil {
+		return -1, err
+	}
+	r.pos = &pos{r.posIdx[rdr], rdrPos}
+	return buf.Read(b)
+}
+
+func getReadSeekerSize(rdr io.ReadSeeker) (int64, error) {
+	// save the current position
+	pos, err := rdr.Seek(0, os.SEEK_CUR)
+	if err != nil {
+		return -1, err
+	}
+
+	// get the size
+	size, err := rdr.Seek(0, os.SEEK_END)
+	if err != nil {
+		return -1, err
+	}
+
+	// reset the position
+	if _, err := rdr.Seek(pos, os.SEEK_SET); err != nil {
+		return -1, err
+	}
+	return size, nil
+}
+
+// MultiReadSeeker returns a ReadSeeker that's the logical concatenation of the provided
+// input readseekers. After calling this method the initial position is set to the
+// beginning of the first ReadSeeker. At the end of a ReadSeeker, Read always advances
+// to the beginning of the next ReadSeeker and returns EOF at the end of the last ReadSeeker.
+// Seek can be used over the sum of lengths of all readseekers.
+//
+// When a MultiReadSeeker is used, no Read and Seek operations should be made on
+// its ReadSeeker components. Also, users should make no assumption on the state
+// of individual readseekers while the MultiReadSeeker is used.
+func MultiReadSeeker(readers ...io.ReadSeeker) io.ReadSeeker {
+	if len(readers) == 1 {
+		return readers[0]
+	}
+	idx := make(map[io.ReadSeeker]int)
+	for i, rdr := range readers {
+		idx[rdr] = i
+	}
+	return &multiReadSeeker{
+		readers: readers,
+		posIdx:  idx,
+	}
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/loginfo.go b/vendor/github.com/docker/docker/daemon/logger/loginfo.go
new file mode 100644
index 0000000000..4c48235f5c
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/loginfo.go
@@ -0,0 +1,129 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"fmt"
+	"os"
+	"regexp"
+	"strings"
+	"time"
+)
+
+// Info provides enough information for a logging driver to do its function.
+type Info struct {
+	Config              map[string]string
+	ContainerID         string
+	ContainerName       string
+	ContainerEntrypoint string
+	ContainerArgs       []string
+	ContainerImageID    string
+	ContainerImageName  string
+	ContainerCreated    time.Time
+	ContainerEnv        []string
+	ContainerLabels     map[string]string
+	LogPath             string
+	DaemonName          string
+}
+
+// ExtraAttributes returns the user-defined extra attributes (labels,
+// environment variables) in key-value format. This can be used by log drivers
+// that support metadata to add more context to a log.
+func (info *Info) ExtraAttributes(keyMod func(string) string) (map[string]string, error) {
+	extra := make(map[string]string)
+	labels, ok := info.Config["labels"]
+	if ok && len(labels) > 0 {
+		for _, l := range strings.Split(labels, ",") {
+			if v, ok := info.ContainerLabels[l]; ok {
+				if keyMod != nil {
+					l = keyMod(l)
+				}
+				extra[l] = v
+			}
+		}
+	}
+
+	envMapping := make(map[string]string)
+	for _, e := range info.ContainerEnv {
+		if kv := strings.SplitN(e, "=", 2); len(kv) == 2 {
+			envMapping[kv[0]] = kv[1]
+		}
+	}
+
+	env, ok := info.Config["env"]
+	if ok && len(env) > 0 {
+		for _, l := range strings.Split(env, ",") {
+			if v, ok := envMapping[l]; ok {
+				if keyMod != nil {
+					l = keyMod(l)
+				}
+				extra[l] = v
+			}
+		}
+	}
+
+	envRegex, ok := info.Config["env-regex"]
+	if ok && len(envRegex) > 0 {
+		re, err := regexp.Compile(envRegex)
+		if err != nil {
+			return nil, err
+		}
+		for k, v := range envMapping {
+			if re.MatchString(k) {
+				if keyMod != nil {
+					k = keyMod(k)
+				}
+				extra[k] = v
+			}
+		}
+	}
+
+	return extra, nil
+}
+
+// Hostname returns the hostname from the underlying OS.
+func (info *Info) Hostname() (string, error) {
+	hostname, err := os.Hostname()
+	if err != nil {
+		return "", fmt.Errorf("logger: can not resolve hostname: %v", err)
+	}
+	return hostname, nil
+}
+
+// Command returns the command that the container being logged was
+// started with. The Entrypoint is prepended to the container
+// arguments.
+func (info *Info) Command() string {
+	terms := []string{info.ContainerEntrypoint}
+	terms = append(terms, info.ContainerArgs...)
+	command := strings.Join(terms, " ")
+	return command
+}
+
+// ID Returns the Container ID shortened to 12 characters.
+func (info *Info) ID() string {
+	return info.ContainerID[:12]
+}
+
+// FullID is an alias of ContainerID.
+func (info *Info) FullID() string {
+	return info.ContainerID
+}
+
+// Name returns the ContainerName without a preceding '/'.
+func (info *Info) Name() string {
+	return strings.TrimPrefix(info.ContainerName, "/")
+}
+
+// ImageID returns the ContainerImageID shortened to 12 characters.
+func (info *Info) ImageID() string {
+	return info.ContainerImageID[:12]
+}
+
+// ImageFullID is an alias of ContainerImageID.
+func (info *Info) ImageFullID() string {
+	return info.ContainerImageID
+}
+
+// ImageName is an alias of ContainerImageName
+func (info *Info) ImageName() string {
+	return info.ContainerImageName
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/plugin.go b/vendor/github.com/docker/docker/daemon/logger/plugin.go
new file mode 100644
index 0000000000..cd0e60b7cd
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/plugin.go
@@ -0,0 +1,90 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/api/types/plugins/logdriver"
+	getter "github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/pkg/errors"
+)
+
+var pluginGetter getter.PluginGetter
+
+const extName = "LogDriver"
+
+// logPlugin defines the available functions that logging plugins must implement.
+type logPlugin interface {
+	StartLogging(streamPath string, info Info) (err error)
+	StopLogging(streamPath string) (err error)
+	Capabilities() (cap Capability, err error)
+	ReadLogs(info Info, config ReadConfig) (stream io.ReadCloser, err error)
+}
+
+// RegisterPluginGetter sets the plugingetter
+func RegisterPluginGetter(plugingetter getter.PluginGetter) {
+	pluginGetter = plugingetter
+}
+
+// GetDriver returns a logging driver by its name.
+// If the driver is empty, it looks for the local driver.
+func getPlugin(name string, mode int) (Creator, error) {
+	p, err := pluginGetter.Get(name, extName, mode)
+	if err != nil {
+		return nil, fmt.Errorf("error looking up logging plugin %s: %v", name, err)
+	}
+
+	d := &logPluginProxy{p.Client()}
+	return makePluginCreator(name, d, p.ScopedPath), nil
+}
+
+func makePluginCreator(name string, l *logPluginProxy, scopePath func(s string) string) Creator {
+	return func(logCtx Info) (logger Logger, err error) {
+		defer func() {
+			if err != nil {
+				pluginGetter.Get(name, extName, getter.Release)
+			}
+		}()
+
+		unscopedPath := filepath.Join("/", "run", "docker", "logging")
+		logRoot := scopePath(unscopedPath)
+		if err := os.MkdirAll(logRoot, 0700); err != nil {
+			return nil, err
+		}
+
+		id := stringid.GenerateNonCryptoID()
+		a := &pluginAdapter{
+			driverName: name,
+			id:         id,
+			plugin:     l,
+			fifoPath:   filepath.Join(logRoot, id),
+			logInfo:    logCtx,
+		}
+
+		cap, err := a.plugin.Capabilities()
+		if err == nil {
+			a.capabilities = cap
+		}
+
+		stream, err := openPluginStream(a)
+		if err != nil {
+			return nil, err
+		}
+
+		a.stream = stream
+		a.enc = logdriver.NewLogEntryEncoder(a.stream)
+
+		if err := l.StartLogging(filepath.Join(unscopedPath, id), logCtx); err != nil {
+			return nil, errors.Wrapf(err, "error creating logger")
+		}
+
+		if cap.ReadLogs {
+			return &pluginAdapterWithRead{a}, nil
+		}
+
+		return a, nil
+	}
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/plugin_unix.go b/vendor/github.com/docker/docker/daemon/logger/plugin_unix.go
new file mode 100644
index 0000000000..6192f52eb8
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/plugin_unix.go
@@ -0,0 +1,20 @@
+// +build linux freebsd
+
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"context"
+	"io"
+
+	"github.com/containerd/fifo"
+	"github.com/pkg/errors"
+	"golang.org/x/sys/unix"
+)
+
+func openPluginStream(a *pluginAdapter) (io.WriteCloser, error) {
+	f, err := fifo.OpenFifo(context.Background(), a.fifoPath, unix.O_WRONLY|unix.O_CREAT|unix.O_NONBLOCK, 0700)
+	if err != nil {
+		return nil, errors.Wrapf(err, "error creating i/o pipe for log plugin: %s", a.Name())
+	}
+	return f, nil
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/plugin_unsupported.go b/vendor/github.com/docker/docker/daemon/logger/plugin_unsupported.go
new file mode 100644
index 0000000000..2ad47cc077
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/plugin_unsupported.go
@@ -0,0 +1,12 @@
+// +build !linux,!freebsd
+
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"errors"
+	"io"
+)
+
+func openPluginStream(a *pluginAdapter) (io.WriteCloser, error) {
+	return nil, errors.New("log plugin not supported")
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/proxy.go b/vendor/github.com/docker/docker/daemon/logger/proxy.go
new file mode 100644
index 0000000000..4a1c778108
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/proxy.go
@@ -0,0 +1,107 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"errors"
+	"io"
+)
+
+type client interface {
+	Call(string, interface{}, interface{}) error
+	Stream(string, interface{}) (io.ReadCloser, error)
+}
+
+type logPluginProxy struct {
+	client
+}
+
+type logPluginProxyStartLoggingRequest struct {
+	File string
+	Info Info
+}
+
+type logPluginProxyStartLoggingResponse struct {
+	Err string
+}
+
+func (pp *logPluginProxy) StartLogging(file string, info Info) (err error) {
+	var (
+		req logPluginProxyStartLoggingRequest
+		ret logPluginProxyStartLoggingResponse
+	)
+
+	req.File = file
+	req.Info = info
+	if err = pp.Call("LogDriver.StartLogging", req, &ret); err != nil {
+		return
+	}
+
+	if ret.Err != "" {
+		err = errors.New(ret.Err)
+	}
+
+	return
+}
+
+type logPluginProxyStopLoggingRequest struct {
+	File string
+}
+
+type logPluginProxyStopLoggingResponse struct {
+	Err string
+}
+
+func (pp *logPluginProxy) StopLogging(file string) (err error) {
+	var (
+		req logPluginProxyStopLoggingRequest
+		ret logPluginProxyStopLoggingResponse
+	)
+
+	req.File = file
+	if err = pp.Call("LogDriver.StopLogging", req, &ret); err != nil {
+		return
+	}
+
+	if ret.Err != "" {
+		err = errors.New(ret.Err)
+	}
+
+	return
+}
+
+type logPluginProxyCapabilitiesResponse struct {
+	Cap Capability
+	Err string
+}
+
+func (pp *logPluginProxy) Capabilities() (cap Capability, err error) {
+	var (
+		ret logPluginProxyCapabilitiesResponse
+	)
+
+	if err = pp.Call("LogDriver.Capabilities", nil, &ret); err != nil {
+		return
+	}
+
+	cap = ret.Cap
+
+	if ret.Err != "" {
+		err = errors.New(ret.Err)
+	}
+
+	return
+}
+
+type logPluginProxyReadLogsRequest struct {
+	Info   Info
+	Config ReadConfig
+}
+
+func (pp *logPluginProxy) ReadLogs(info Info, config ReadConfig) (stream io.ReadCloser, err error) {
+	var (
+		req logPluginProxyReadLogsRequest
+	)
+
+	req.Info = info
+	req.Config = config
+	return pp.Stream("LogDriver.ReadLogs", req)
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/ring.go b/vendor/github.com/docker/docker/daemon/logger/ring.go
new file mode 100644
index 0000000000..887f2ea18a
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/ring.go
@@ -0,0 +1,223 @@
+package logger // import "github.com/docker/docker/daemon/logger"
+
+import (
+	"errors"
+	"sync"
+	"sync/atomic"
+
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	defaultRingMaxSize = 1e6 // 1MB
+)
+
+// RingLogger is a ring buffer that implements the Logger interface.
+// This is used when lossy logging is OK.
+type RingLogger struct {
+	buffer    *messageRing
+	l         Logger
+	logInfo   Info
+	closeFlag int32
+}
+
+type ringWithReader struct {
+	*RingLogger
+}
+
+func (r *ringWithReader) ReadLogs(cfg ReadConfig) *LogWatcher {
+	reader, ok := r.l.(LogReader)
+	if !ok {
+		// something is wrong if we get here
+		panic("expected log reader")
+	}
+	return reader.ReadLogs(cfg)
+}
+
+func newRingLogger(driver Logger, logInfo Info, maxSize int64) *RingLogger {
+	l := &RingLogger{
+		buffer:  newRing(maxSize),
+		l:       driver,
+		logInfo: logInfo,
+	}
+	go l.run()
+	return l
+}
+
+// NewRingLogger creates a new Logger that is implemented as a RingBuffer wrapping
+// the passed in logger.
+func NewRingLogger(driver Logger, logInfo Info, maxSize int64) Logger {
+	if maxSize < 0 {
+		maxSize = defaultRingMaxSize
+	}
+	l := newRingLogger(driver, logInfo, maxSize)
+	if _, ok := driver.(LogReader); ok {
+		return &ringWithReader{l}
+	}
+	return l
+}
+
+// Log queues messages into the ring buffer
+func (r *RingLogger) Log(msg *Message) error {
+	if r.closed() {
+		return errClosed
+	}
+	return r.buffer.Enqueue(msg)
+}
+
+// Name returns the name of the underlying logger
+func (r *RingLogger) Name() string {
+	return r.l.Name()
+}
+
+func (r *RingLogger) closed() bool {
+	return atomic.LoadInt32(&r.closeFlag) == 1
+}
+
+func (r *RingLogger) setClosed() {
+	atomic.StoreInt32(&r.closeFlag, 1)
+}
+
+// Close closes the logger
+func (r *RingLogger) Close() error {
+	r.setClosed()
+	r.buffer.Close()
+	// empty out the queue
+	var logErr bool
+	for _, msg := range r.buffer.Drain() {
+		if logErr {
+			// some error logging a previous message, so re-insert to message pool
+			// and assume log driver is hosed
+			PutMessage(msg)
+			continue
+		}
+
+		if err := r.l.Log(msg); err != nil {
+			logrus.WithField("driver", r.l.Name()).
+				WithField("container", r.logInfo.ContainerID).
+				WithError(err).
+				Errorf("Error writing log message")
+			logErr = true
+		}
+	}
+	return r.l.Close()
+}
+
+// run consumes messages from the ring buffer and forwards them to the underling
+// logger.
+// This is run in a goroutine when the RingLogger is created
+func (r *RingLogger) run() {
+	for {
+		if r.closed() {
+			return
+		}
+		msg, err := r.buffer.Dequeue()
+		if err != nil {
+			// buffer is closed
+			return
+		}
+		if err := r.l.Log(msg); err != nil {
+			logrus.WithField("driver", r.l.Name()).
+				WithField("container", r.logInfo.ContainerID).
+				WithError(err).
+				Errorf("Error writing log message")
+		}
+	}
+}
+
+type messageRing struct {
+	mu sync.Mutex
+	// signals callers of `Dequeue` to wake up either on `Close` or when a new `Message` is added
+	wait *sync.Cond
+
+	sizeBytes int64 // current buffer size
+	maxBytes  int64 // max buffer size size
+	queue     []*Message
+	closed    bool
+}
+
+func newRing(maxBytes int64) *messageRing {
+	queueSize := 1000
+	if maxBytes == 0 || maxBytes == 1 {
+		// With 0 or 1 max byte size, the maximum size of the queue would only ever be 1
+		// message long.
+		queueSize = 1
+	}
+
+	r := &messageRing{queue: make([]*Message, 0, queueSize), maxBytes: maxBytes}
+	r.wait = sync.NewCond(&r.mu)
+	return r
+}
+
+// Enqueue adds a message to the buffer queue
+// If the message is too big for the buffer it drops the oldest messages to make room
+// If there are no messages in the queue and the message is still too big, it adds the message anyway.
+func (r *messageRing) Enqueue(m *Message) error {
+	mSize := int64(len(m.Line))
+
+	r.mu.Lock()
+	if r.closed {
+		r.mu.Unlock()
+		return errClosed
+	}
+	if mSize+r.sizeBytes > r.maxBytes && len(r.queue) > 0 {
+		r.wait.Signal()
+		r.mu.Unlock()
+		return nil
+	}
+
+	r.queue = append(r.queue, m)
+	r.sizeBytes += mSize
+	r.wait.Signal()
+	r.mu.Unlock()
+	return nil
+}
+
+// Dequeue pulls a message off the queue
+// If there are no messages, it waits for one.
+// If the buffer is closed, it will return immediately.
+func (r *messageRing) Dequeue() (*Message, error) {
+	r.mu.Lock()
+	for len(r.queue) == 0 && !r.closed {
+		r.wait.Wait()
+	}
+
+	if r.closed {
+		r.mu.Unlock()
+		return nil, errClosed
+	}
+
+	msg := r.queue[0]
+	r.queue = r.queue[1:]
+	r.sizeBytes -= int64(len(msg.Line))
+	r.mu.Unlock()
+	return msg, nil
+}
+
+var errClosed = errors.New("closed")
+
+// Close closes the buffer ensuring no new messages can be added.
+// Any callers waiting to dequeue a message will be woken up.
+func (r *messageRing) Close() {
+	r.mu.Lock()
+	if r.closed {
+		r.mu.Unlock()
+		return
+	}
+
+	r.closed = true
+	r.wait.Broadcast()
+	r.mu.Unlock()
+}
+
+// Drain drains all messages from the queue.
+// This can be used after `Close()` to get any remaining messages that were in queue.
+func (r *messageRing) Drain() []*Message {
+	r.mu.Lock()
+	ls := make([]*Message, 0, len(r.queue))
+	ls = append(ls, r.queue...)
+	r.sizeBytes = 0
+	r.queue = r.queue[:0]
+	r.mu.Unlock()
+	return ls
+}
diff --git a/vendor/github.com/docker/docker/daemon/logger/templates/templates.go b/vendor/github.com/docker/docker/daemon/logger/templates/templates.go
new file mode 100644
index 0000000000..ab76d0f1c2
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/logger/templates/templates.go
@@ -0,0 +1,50 @@
+package templates // import "github.com/docker/docker/daemon/logger/templates"
+
+import (
+	"bytes"
+	"encoding/json"
+	"strings"
+	"text/template"
+)
+
+// basicFunctions are the set of initial
+// functions provided to every template.
+var basicFunctions = template.FuncMap{
+	"json": func(v interface{}) string {
+		buf := &bytes.Buffer{}
+		enc := json.NewEncoder(buf)
+		enc.SetEscapeHTML(false)
+		enc.Encode(v)
+		// Remove the trailing new line added by the encoder
+		return strings.TrimSpace(buf.String())
+	},
+	"split":    strings.Split,
+	"join":     strings.Join,
+	"title":    strings.Title,
+	"lower":    strings.ToLower,
+	"upper":    strings.ToUpper,
+	"pad":      padWithSpace,
+	"truncate": truncateWithLength,
+}
+
+// NewParse creates a new tagged template with the basic functions
+// and parses the given format.
+func NewParse(tag, format string) (*template.Template, error) {
+	return template.New(tag).Funcs(basicFunctions).Parse(format)
+}
+
+// padWithSpace adds whitespace to the input if the input is non-empty
+func padWithSpace(source string, prefix, suffix int) string {
+	if source == "" {
+		return source
+	}
+	return strings.Repeat(" ", prefix) + source + strings.Repeat(" ", suffix)
+}
+
+// truncateWithLength truncates the source string up to the length provided by the input
+func truncateWithLength(source string, length int) string {
+	if len(source) < length {
+		return source
+	}
+	return source[:length]
+}
diff --git a/vendor/github.com/docker/docker/daemon/network/settings.go b/vendor/github.com/docker/docker/daemon/network/settings.go
new file mode 100644
index 0000000000..b0460ed6ae
--- /dev/null
+++ b/vendor/github.com/docker/docker/daemon/network/settings.go
@@ -0,0 +1,69 @@
+package network // import "github.com/docker/docker/daemon/network"
+
+import (
+	"net"
+
+	networktypes "github.com/docker/docker/api/types/network"
+	clustertypes "github.com/docker/docker/daemon/cluster/provider"
+	"github.com/docker/go-connections/nat"
+	"github.com/pkg/errors"
+)
+
+// Settings stores configuration details about the daemon network config
+// TODO Windows. Many of these fields can be factored out.,
+type Settings struct {
+	Bridge                 string
+	SandboxID              string
+	HairpinMode            bool
+	LinkLocalIPv6Address   string
+	LinkLocalIPv6PrefixLen int
+	Networks               map[string]*EndpointSettings
+	Service                *clustertypes.ServiceConfig
+	Ports                  nat.PortMap
+	SandboxKey             string
+	SecondaryIPAddresses   []networktypes.Address
+	SecondaryIPv6Addresses []networktypes.Address
+	IsAnonymousEndpoint    bool
+	HasSwarmEndpoint       bool
+}
+
+// EndpointSettings is a package local wrapper for
+// networktypes.EndpointSettings which stores Endpoint state that
+// needs to be persisted to disk but not exposed in the api.
+type EndpointSettings struct {
+	*networktypes.EndpointSettings
+	IPAMOperational bool
+}
+
+// AttachmentStore stores the load balancer IP address for a network id.
+type AttachmentStore struct {
+	//key: networkd id
+	//value: load balancer ip address
+	networkToNodeLBIP map[string]net.IP
+}
+
+// ResetAttachments clears any existing load balancer IP to network mapping and
+// sets the mapping to the given attachments.
+func (store *AttachmentStore) ResetAttachments(attachments map[string]string) error {
+	store.ClearAttachments()
+	for nid, nodeIP := range attachments {
+		ip, _, err := net.ParseCIDR(nodeIP)
+		if err != nil {
+			store.networkToNodeLBIP = make(map[string]net.IP)
+			return errors.Wrapf(err, "Failed to parse load balancer address %s", nodeIP)
+		}
+		store.networkToNodeLBIP[nid] = ip
+	}
+	return nil
+}
+
+// ClearAttachments clears all the mappings of network to load balancer IP Address.
+func (store *AttachmentStore) ClearAttachments() {
+	store.networkToNodeLBIP = make(map[string]net.IP)
+}
+
+// GetIPForNetwork return the load balancer IP address for the given network.
+func (store *AttachmentStore) GetIPForNetwork(networkID string) (net.IP, bool) {
+	ip, exists := store.networkToNodeLBIP[networkID]
+	return ip, exists
+}
diff --git a/vendor/github.com/docker/docker/dockerversion/useragent.go b/vendor/github.com/docker/docker/dockerversion/useragent.go
new file mode 100644
index 0000000000..2eceb6fa9e
--- /dev/null
+++ b/vendor/github.com/docker/docker/dockerversion/useragent.go
@@ -0,0 +1,76 @@
+package dockerversion // import "github.com/docker/docker/dockerversion"
+
+import (
+	"context"
+	"fmt"
+	"runtime"
+
+	"github.com/docker/docker/pkg/parsers/kernel"
+	"github.com/docker/docker/pkg/useragent"
+)
+
+// UAStringKey is used as key type for user-agent string in net/context struct
+const UAStringKey = "upstream-user-agent"
+
+// DockerUserAgent is the User-Agent the Docker client uses to identify itself.
+// In accordance with RFC 7231 (5.5.3) is of the form:
+//    [docker client's UA] UpstreamClient([upstream client's UA])
+func DockerUserAgent(ctx context.Context) string {
+	httpVersion := make([]useragent.VersionInfo, 0, 6)
+	httpVersion = append(httpVersion, useragent.VersionInfo{Name: "docker", Version: Version})
+	httpVersion = append(httpVersion, useragent.VersionInfo{Name: "go", Version: runtime.Version()})
+	httpVersion = append(httpVersion, useragent.VersionInfo{Name: "git-commit", Version: GitCommit})
+	if kernelVersion, err := kernel.GetKernelVersion(); err == nil {
+		httpVersion = append(httpVersion, useragent.VersionInfo{Name: "kernel", Version: kernelVersion.String()})
+	}
+	httpVersion = append(httpVersion, useragent.VersionInfo{Name: "os", Version: runtime.GOOS})
+	httpVersion = append(httpVersion, useragent.VersionInfo{Name: "arch", Version: runtime.GOARCH})
+
+	dockerUA := useragent.AppendVersions("", httpVersion...)
+	upstreamUA := getUserAgentFromContext(ctx)
+	if len(upstreamUA) > 0 {
+		ret := insertUpstreamUserAgent(upstreamUA, dockerUA)
+		return ret
+	}
+	return dockerUA
+}
+
+// getUserAgentFromContext returns the previously saved user-agent context stored in ctx, if one exists
+func getUserAgentFromContext(ctx context.Context) string {
+	var upstreamUA string
+	if ctx != nil {
+		var ki interface{} = ctx.Value(UAStringKey)
+		if ki != nil {
+			upstreamUA = ctx.Value(UAStringKey).(string)
+		}
+	}
+	return upstreamUA
+}
+
+// escapeStr returns s with every rune in charsToEscape escaped by a backslash
+func escapeStr(s string, charsToEscape string) string {
+	var ret string
+	for _, currRune := range s {
+		appended := false
+		for _, escapableRune := range charsToEscape {
+			if currRune == escapableRune {
+				ret += `\` + string(currRune)
+				appended = true
+				break
+			}
+		}
+		if !appended {
+			ret += string(currRune)
+		}
+	}
+	return ret
+}
+
+// insertUpstreamUserAgent adds the upstream client useragent to create a user-agent
+// string of the form:
+//   $dockerUA UpstreamClient($upstreamUA)
+func insertUpstreamUserAgent(upstreamUA string, dockerUA string) string {
+	charsToEscape := `();\`
+	upstreamUAEscaped := escapeStr(upstreamUA, charsToEscape)
+	return fmt.Sprintf("%s UpstreamClient(%s)", dockerUA, upstreamUAEscaped)
+}
diff --git a/vendor/github.com/docker/docker/dockerversion/version_lib.go b/vendor/github.com/docker/docker/dockerversion/version_lib.go
new file mode 100644
index 0000000000..1489be0a25
--- /dev/null
+++ b/vendor/github.com/docker/docker/dockerversion/version_lib.go
@@ -0,0 +1,17 @@
+// +build !autogen
+
+// Package dockerversion is auto-generated at build-time
+package dockerversion // import "github.com/docker/docker/dockerversion"
+
+// Default build-time variable for library-import.
+// This file is overridden on build with build-time informations.
+const (
+	GitCommit          string = "library-import"
+	Version            string = "library-import"
+	BuildTime          string = "library-import"
+	IAmStatic          string = "library-import"
+	ContainerdCommitID string = "library-import"
+	RuncCommitID       string = "library-import"
+	InitCommitID       string = "library-import"
+	PlatformName       string = ""
+)
diff --git a/vendor/github.com/docker/docker/errdefs/defs.go b/vendor/github.com/docker/docker/errdefs/defs.go
new file mode 100644
index 0000000000..e6a2275b2d
--- /dev/null
+++ b/vendor/github.com/docker/docker/errdefs/defs.go
@@ -0,0 +1,74 @@
+package errdefs // import "github.com/docker/docker/errdefs"
+
+// ErrNotFound signals that the requested object doesn't exist
+type ErrNotFound interface {
+	NotFound()
+}
+
+// ErrInvalidParameter signals that the user input is invalid
+type ErrInvalidParameter interface {
+	InvalidParameter()
+}
+
+// ErrConflict signals that some internal state conflicts with the requested action and can't be performed.
+// A change in state should be able to clear this error.
+type ErrConflict interface {
+	Conflict()
+}
+
+// ErrUnauthorized is used to signify that the user is not authorized to perform a specific action
+type ErrUnauthorized interface {
+	Unauthorized()
+}
+
+// ErrUnavailable signals that the requested action/subsystem is not available.
+type ErrUnavailable interface {
+	Unavailable()
+}
+
+// ErrForbidden signals that the requested action cannot be performed under any circumstances.
+// When a ErrForbidden is returned, the caller should never retry the action.
+type ErrForbidden interface {
+	Forbidden()
+}
+
+// ErrSystem signals that some internal error occurred.
+// An example of this would be a failed mount request.
+type ErrSystem interface {
+	System()
+}
+
+// ErrNotModified signals that an action can't be performed because it's already in the desired state
+type ErrNotModified interface {
+	NotModified()
+}
+
+// ErrAlreadyExists is a special case of ErrConflict which signals that the desired object already exists
+type ErrAlreadyExists interface {
+	AlreadyExists()
+}
+
+// ErrNotImplemented signals that the requested action/feature is not implemented on the system as configured.
+type ErrNotImplemented interface {
+	NotImplemented()
+}
+
+// ErrUnknown signals that the kind of error that occurred is not known.
+type ErrUnknown interface {
+	Unknown()
+}
+
+// ErrCancelled signals that the action was cancelled.
+type ErrCancelled interface {
+	Cancelled()
+}
+
+// ErrDeadline signals that the deadline was reached before the action completed.
+type ErrDeadline interface {
+	DeadlineExceeded()
+}
+
+// ErrDataLoss indicates that data was lost or there is data corruption.
+type ErrDataLoss interface {
+	DataLoss()
+}
diff --git a/vendor/github.com/docker/docker/errdefs/doc.go b/vendor/github.com/docker/docker/errdefs/doc.go
new file mode 100644
index 0000000000..c211f174fc
--- /dev/null
+++ b/vendor/github.com/docker/docker/errdefs/doc.go
@@ -0,0 +1,8 @@
+// Package errdefs defines a set of error interfaces that packages should use for communicating classes of errors.
+// Errors that cross the package boundary should implement one (and only one) of these interfaces.
+//
+// Packages should not reference these interfaces directly, only implement them.
+// To check if a particular error implements one of these interfaces, there are helper
+// functions provided (e.g. `Is<SomeError>`) which can be used rather than asserting the interfaces directly.
+// If you must assert on these interfaces, be sure to check the causal chain (`err.Cause()`).
+package errdefs // import "github.com/docker/docker/errdefs"
diff --git a/vendor/github.com/docker/docker/errdefs/helpers.go b/vendor/github.com/docker/docker/errdefs/helpers.go
new file mode 100644
index 0000000000..6169c2bc62
--- /dev/null
+++ b/vendor/github.com/docker/docker/errdefs/helpers.go
@@ -0,0 +1,240 @@
+package errdefs // import "github.com/docker/docker/errdefs"
+
+import "context"
+
+type errNotFound struct{ error }
+
+func (errNotFound) NotFound() {}
+
+func (e errNotFound) Cause() error {
+	return e.error
+}
+
+// NotFound is a helper to create an error of the class with the same name from any error type
+func NotFound(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errNotFound{err}
+}
+
+type errInvalidParameter struct{ error }
+
+func (errInvalidParameter) InvalidParameter() {}
+
+func (e errInvalidParameter) Cause() error {
+	return e.error
+}
+
+// InvalidParameter is a helper to create an error of the class with the same name from any error type
+func InvalidParameter(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errInvalidParameter{err}
+}
+
+type errConflict struct{ error }
+
+func (errConflict) Conflict() {}
+
+func (e errConflict) Cause() error {
+	return e.error
+}
+
+// Conflict is a helper to create an error of the class with the same name from any error type
+func Conflict(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errConflict{err}
+}
+
+type errUnauthorized struct{ error }
+
+func (errUnauthorized) Unauthorized() {}
+
+func (e errUnauthorized) Cause() error {
+	return e.error
+}
+
+// Unauthorized is a helper to create an error of the class with the same name from any error type
+func Unauthorized(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errUnauthorized{err}
+}
+
+type errUnavailable struct{ error }
+
+func (errUnavailable) Unavailable() {}
+
+func (e errUnavailable) Cause() error {
+	return e.error
+}
+
+// Unavailable is a helper to create an error of the class with the same name from any error type
+func Unavailable(err error) error {
+	return errUnavailable{err}
+}
+
+type errForbidden struct{ error }
+
+func (errForbidden) Forbidden() {}
+
+func (e errForbidden) Cause() error {
+	return e.error
+}
+
+// Forbidden is a helper to create an error of the class with the same name from any error type
+func Forbidden(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errForbidden{err}
+}
+
+type errSystem struct{ error }
+
+func (errSystem) System() {}
+
+func (e errSystem) Cause() error {
+	return e.error
+}
+
+// System is a helper to create an error of the class with the same name from any error type
+func System(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errSystem{err}
+}
+
+type errNotModified struct{ error }
+
+func (errNotModified) NotModified() {}
+
+func (e errNotModified) Cause() error {
+	return e.error
+}
+
+// NotModified is a helper to create an error of the class with the same name from any error type
+func NotModified(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errNotModified{err}
+}
+
+type errAlreadyExists struct{ error }
+
+func (errAlreadyExists) AlreadyExists() {}
+
+func (e errAlreadyExists) Cause() error {
+	return e.error
+}
+
+// AlreadyExists is a helper to create an error of the class with the same name from any error type
+func AlreadyExists(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errAlreadyExists{err}
+}
+
+type errNotImplemented struct{ error }
+
+func (errNotImplemented) NotImplemented() {}
+
+func (e errNotImplemented) Cause() error {
+	return e.error
+}
+
+// NotImplemented is a helper to create an error of the class with the same name from any error type
+func NotImplemented(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errNotImplemented{err}
+}
+
+type errUnknown struct{ error }
+
+func (errUnknown) Unknown() {}
+
+func (e errUnknown) Cause() error {
+	return e.error
+}
+
+// Unknown is a helper to create an error of the class with the same name from any error type
+func Unknown(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errUnknown{err}
+}
+
+type errCancelled struct{ error }
+
+func (errCancelled) Cancelled() {}
+
+func (e errCancelled) Cause() error {
+	return e.error
+}
+
+// Cancelled is a helper to create an error of the class with the same name from any error type
+func Cancelled(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errCancelled{err}
+}
+
+type errDeadline struct{ error }
+
+func (errDeadline) DeadlineExceeded() {}
+
+func (e errDeadline) Cause() error {
+	return e.error
+}
+
+// Deadline is a helper to create an error of the class with the same name from any error type
+func Deadline(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errDeadline{err}
+}
+
+type errDataLoss struct{ error }
+
+func (errDataLoss) DataLoss() {}
+
+func (e errDataLoss) Cause() error {
+	return e.error
+}
+
+// DataLoss is a helper to create an error of the class with the same name from any error type
+func DataLoss(err error) error {
+	if err == nil {
+		return nil
+	}
+	return errDataLoss{err}
+}
+
+// FromContext returns the error class from the passed in context
+func FromContext(ctx context.Context) error {
+	e := ctx.Err()
+	if e == nil {
+		return nil
+	}
+
+	if e == context.Canceled {
+		return Cancelled(e)
+	}
+	if e == context.DeadlineExceeded {
+		return Deadline(e)
+	}
+	return Unknown(e)
+}
diff --git a/vendor/github.com/docker/docker/errdefs/is.go b/vendor/github.com/docker/docker/errdefs/is.go
new file mode 100644
index 0000000000..cc26e4b750
--- /dev/null
+++ b/vendor/github.com/docker/docker/errdefs/is.go
@@ -0,0 +1,114 @@
+package errdefs // import "github.com/docker/docker/errdefs"
+
+type causer interface {
+	Cause() error
+}
+
+func getImplementer(err error) error {
+	switch e := err.(type) {
+	case
+		ErrNotFound,
+		ErrInvalidParameter,
+		ErrConflict,
+		ErrUnauthorized,
+		ErrUnavailable,
+		ErrForbidden,
+		ErrSystem,
+		ErrNotModified,
+		ErrAlreadyExists,
+		ErrNotImplemented,
+		ErrCancelled,
+		ErrDeadline,
+		ErrDataLoss,
+		ErrUnknown:
+		return err
+	case causer:
+		return getImplementer(e.Cause())
+	default:
+		return err
+	}
+}
+
+// IsNotFound returns if the passed in error is an ErrNotFound
+func IsNotFound(err error) bool {
+	_, ok := getImplementer(err).(ErrNotFound)
+	return ok
+}
+
+// IsInvalidParameter returns if the passed in error is an ErrInvalidParameter
+func IsInvalidParameter(err error) bool {
+	_, ok := getImplementer(err).(ErrInvalidParameter)
+	return ok
+}
+
+// IsConflict returns if the passed in error is an ErrConflict
+func IsConflict(err error) bool {
+	_, ok := getImplementer(err).(ErrConflict)
+	return ok
+}
+
+// IsUnauthorized returns if the the passed in error is an ErrUnauthorized
+func IsUnauthorized(err error) bool {
+	_, ok := getImplementer(err).(ErrUnauthorized)
+	return ok
+}
+
+// IsUnavailable returns if the passed in error is an ErrUnavailable
+func IsUnavailable(err error) bool {
+	_, ok := getImplementer(err).(ErrUnavailable)
+	return ok
+}
+
+// IsForbidden returns if the passed in error is an ErrForbidden
+func IsForbidden(err error) bool {
+	_, ok := getImplementer(err).(ErrForbidden)
+	return ok
+}
+
+// IsSystem returns if the passed in error is an ErrSystem
+func IsSystem(err error) bool {
+	_, ok := getImplementer(err).(ErrSystem)
+	return ok
+}
+
+// IsNotModified returns if the passed in error is a NotModified error
+func IsNotModified(err error) bool {
+	_, ok := getImplementer(err).(ErrNotModified)
+	return ok
+}
+
+// IsAlreadyExists returns if the passed in error is a AlreadyExists error
+func IsAlreadyExists(err error) bool {
+	_, ok := getImplementer(err).(ErrAlreadyExists)
+	return ok
+}
+
+// IsNotImplemented returns if the passed in error is an ErrNotImplemented
+func IsNotImplemented(err error) bool {
+	_, ok := getImplementer(err).(ErrNotImplemented)
+	return ok
+}
+
+// IsUnknown returns if the passed in error is an ErrUnknown
+func IsUnknown(err error) bool {
+	_, ok := getImplementer(err).(ErrUnknown)
+	return ok
+}
+
+// IsCancelled returns if the passed in error is an ErrCancelled
+func IsCancelled(err error) bool {
+	_, ok := getImplementer(err).(ErrCancelled)
+	return ok
+}
+
+// IsDeadline returns if the passed in error is an ErrDeadline
+func IsDeadline(err error) bool {
+	_, ok := getImplementer(err).(ErrDeadline)
+	return ok
+}
+
+// IsDataLoss returns if the passed in error is an ErrDataLoss
+func IsDataLoss(err error) bool {
+	_, ok := getImplementer(err).(ErrDataLoss)
+	return ok
+}
diff --git a/vendor/github.com/docker/docker/image/fs.go b/vendor/github.com/docker/docker/image/fs.go
new file mode 100644
index 0000000000..7080c8c015
--- /dev/null
+++ b/vendor/github.com/docker/docker/image/fs.go
@@ -0,0 +1,175 @@
+package image // import "github.com/docker/docker/image"
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"sync"
+
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/opencontainers/go-digest"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// DigestWalkFunc is function called by StoreBackend.Walk
+type DigestWalkFunc func(id digest.Digest) error
+
+// StoreBackend provides interface for image.Store persistence
+type StoreBackend interface {
+	Walk(f DigestWalkFunc) error
+	Get(id digest.Digest) ([]byte, error)
+	Set(data []byte) (digest.Digest, error)
+	Delete(id digest.Digest) error
+	SetMetadata(id digest.Digest, key string, data []byte) error
+	GetMetadata(id digest.Digest, key string) ([]byte, error)
+	DeleteMetadata(id digest.Digest, key string) error
+}
+
+// fs implements StoreBackend using the filesystem.
+type fs struct {
+	sync.RWMutex
+	root string
+}
+
+const (
+	contentDirName  = "content"
+	metadataDirName = "metadata"
+)
+
+// NewFSStoreBackend returns new filesystem based backend for image.Store
+func NewFSStoreBackend(root string) (StoreBackend, error) {
+	return newFSStore(root)
+}
+
+func newFSStore(root string) (*fs, error) {
+	s := &fs{
+		root: root,
+	}
+	if err := os.MkdirAll(filepath.Join(root, contentDirName, string(digest.Canonical)), 0700); err != nil {
+		return nil, errors.Wrap(err, "failed to create storage backend")
+	}
+	if err := os.MkdirAll(filepath.Join(root, metadataDirName, string(digest.Canonical)), 0700); err != nil {
+		return nil, errors.Wrap(err, "failed to create storage backend")
+	}
+	return s, nil
+}
+
+func (s *fs) contentFile(dgst digest.Digest) string {
+	return filepath.Join(s.root, contentDirName, string(dgst.Algorithm()), dgst.Hex())
+}
+
+func (s *fs) metadataDir(dgst digest.Digest) string {
+	return filepath.Join(s.root, metadataDirName, string(dgst.Algorithm()), dgst.Hex())
+}
+
+// Walk calls the supplied callback for each image ID in the storage backend.
+func (s *fs) Walk(f DigestWalkFunc) error {
+	// Only Canonical digest (sha256) is currently supported
+	s.RLock()
+	dir, err := ioutil.ReadDir(filepath.Join(s.root, contentDirName, string(digest.Canonical)))
+	s.RUnlock()
+	if err != nil {
+		return err
+	}
+	for _, v := range dir {
+		dgst := digest.NewDigestFromHex(string(digest.Canonical), v.Name())
+		if err := dgst.Validate(); err != nil {
+			logrus.Debugf("skipping invalid digest %s: %s", dgst, err)
+			continue
+		}
+		if err := f(dgst); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// Get returns the content stored under a given digest.
+func (s *fs) Get(dgst digest.Digest) ([]byte, error) {
+	s.RLock()
+	defer s.RUnlock()
+
+	return s.get(dgst)
+}
+
+func (s *fs) get(dgst digest.Digest) ([]byte, error) {
+	content, err := ioutil.ReadFile(s.contentFile(dgst))
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to get digest %s", dgst)
+	}
+
+	// todo: maybe optional
+	if digest.FromBytes(content) != dgst {
+		return nil, fmt.Errorf("failed to verify: %v", dgst)
+	}
+
+	return content, nil
+}
+
+// Set stores content by checksum.
+func (s *fs) Set(data []byte) (digest.Digest, error) {
+	s.Lock()
+	defer s.Unlock()
+
+	if len(data) == 0 {
+		return "", fmt.Errorf("invalid empty data")
+	}
+
+	dgst := digest.FromBytes(data)
+	if err := ioutils.AtomicWriteFile(s.contentFile(dgst), data, 0600); err != nil {
+		return "", errors.Wrap(err, "failed to write digest data")
+	}
+
+	return dgst, nil
+}
+
+// Delete removes content and metadata files associated with the digest.
+func (s *fs) Delete(dgst digest.Digest) error {
+	s.Lock()
+	defer s.Unlock()
+
+	if err := os.RemoveAll(s.metadataDir(dgst)); err != nil {
+		return err
+	}
+	return os.Remove(s.contentFile(dgst))
+}
+
+// SetMetadata sets metadata for a given ID. It fails if there's no base file.
+func (s *fs) SetMetadata(dgst digest.Digest, key string, data []byte) error {
+	s.Lock()
+	defer s.Unlock()
+	if _, err := s.get(dgst); err != nil {
+		return err
+	}
+
+	baseDir := filepath.Join(s.metadataDir(dgst))
+	if err := os.MkdirAll(baseDir, 0700); err != nil {
+		return err
+	}
+	return ioutils.AtomicWriteFile(filepath.Join(s.metadataDir(dgst), key), data, 0600)
+}
+
+// GetMetadata returns metadata for a given digest.
+func (s *fs) GetMetadata(dgst digest.Digest, key string) ([]byte, error) {
+	s.RLock()
+	defer s.RUnlock()
+
+	if _, err := s.get(dgst); err != nil {
+		return nil, err
+	}
+	bytes, err := ioutil.ReadFile(filepath.Join(s.metadataDir(dgst), key))
+	if err != nil {
+		return nil, errors.Wrap(err, "failed to read metadata")
+	}
+	return bytes, nil
+}
+
+// DeleteMetadata removes the metadata associated with a digest.
+func (s *fs) DeleteMetadata(dgst digest.Digest, key string) error {
+	s.Lock()
+	defer s.Unlock()
+
+	return os.RemoveAll(filepath.Join(s.metadataDir(dgst), key))
+}
diff --git a/vendor/github.com/docker/docker/image/image.go b/vendor/github.com/docker/docker/image/image.go
new file mode 100644
index 0000000000..7e0646f072
--- /dev/null
+++ b/vendor/github.com/docker/docker/image/image.go
@@ -0,0 +1,232 @@
+package image // import "github.com/docker/docker/image"
+
+import (
+	"encoding/json"
+	"errors"
+	"io"
+	"runtime"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/dockerversion"
+	"github.com/docker/docker/layer"
+	"github.com/opencontainers/go-digest"
+)
+
+// ID is the content-addressable ID of an image.
+type ID digest.Digest
+
+func (id ID) String() string {
+	return id.Digest().String()
+}
+
+// Digest converts ID into a digest
+func (id ID) Digest() digest.Digest {
+	return digest.Digest(id)
+}
+
+// IDFromDigest creates an ID from a digest
+func IDFromDigest(digest digest.Digest) ID {
+	return ID(digest)
+}
+
+// V1Image stores the V1 image configuration.
+type V1Image struct {
+	// ID is a unique 64 character identifier of the image
+	ID string `json:"id,omitempty"`
+	// Parent is the ID of the parent image
+	Parent string `json:"parent,omitempty"`
+	// Comment is the commit message that was set when committing the image
+	Comment string `json:"comment,omitempty"`
+	// Created is the timestamp at which the image was created
+	Created time.Time `json:"created"`
+	// Container is the id of the container used to commit
+	Container string `json:"container,omitempty"`
+	// ContainerConfig is the configuration of the container that is committed into the image
+	ContainerConfig container.Config `json:"container_config,omitempty"`
+	// DockerVersion specifies the version of Docker that was used to build the image
+	DockerVersion string `json:"docker_version,omitempty"`
+	// Author is the name of the author that was specified when committing the image
+	Author string `json:"author,omitempty"`
+	// Config is the configuration of the container received from the client
+	Config *container.Config `json:"config,omitempty"`
+	// Architecture is the hardware that the image is built and runs on
+	Architecture string `json:"architecture,omitempty"`
+	// OS is the operating system used to build and run the image
+	OS string `json:"os,omitempty"`
+	// Size is the total size of the image including all layers it is composed of
+	Size int64 `json:",omitempty"`
+}
+
+// Image stores the image configuration
+type Image struct {
+	V1Image
+	Parent     ID        `json:"parent,omitempty"`
+	RootFS     *RootFS   `json:"rootfs,omitempty"`
+	History    []History `json:"history,omitempty"`
+	OSVersion  string    `json:"os.version,omitempty"`
+	OSFeatures []string  `json:"os.features,omitempty"`
+
+	// rawJSON caches the immutable JSON associated with this image.
+	rawJSON []byte
+
+	// computedID is the ID computed from the hash of the image config.
+	// Not to be confused with the legacy V1 ID in V1Image.
+	computedID ID
+}
+
+// RawJSON returns the immutable JSON associated with the image.
+func (img *Image) RawJSON() []byte {
+	return img.rawJSON
+}
+
+// ID returns the image's content-addressable ID.
+func (img *Image) ID() ID {
+	return img.computedID
+}
+
+// ImageID stringifies ID.
+func (img *Image) ImageID() string {
+	return img.ID().String()
+}
+
+// RunConfig returns the image's container config.
+func (img *Image) RunConfig() *container.Config {
+	return img.Config
+}
+
+// BaseImgArch returns the image's architecture. If not populated, defaults to the host runtime arch.
+func (img *Image) BaseImgArch() string {
+	arch := img.Architecture
+	if arch == "" {
+		arch = runtime.GOARCH
+	}
+	return arch
+}
+
+// OperatingSystem returns the image's operating system. If not populated, defaults to the host runtime OS.
+func (img *Image) OperatingSystem() string {
+	os := img.OS
+	if os == "" {
+		os = runtime.GOOS
+	}
+	return os
+}
+
+// MarshalJSON serializes the image to JSON. It sorts the top-level keys so
+// that JSON that's been manipulated by a push/pull cycle with a legacy
+// registry won't end up with a different key order.
+func (img *Image) MarshalJSON() ([]byte, error) {
+	type MarshalImage Image
+
+	pass1, err := json.Marshal(MarshalImage(*img))
+	if err != nil {
+		return nil, err
+	}
+
+	var c map[string]*json.RawMessage
+	if err := json.Unmarshal(pass1, &c); err != nil {
+		return nil, err
+	}
+	return json.Marshal(c)
+}
+
+// ChildConfig is the configuration to apply to an Image to create a new
+// Child image. Other properties of the image are copied from the parent.
+type ChildConfig struct {
+	ContainerID     string
+	Author          string
+	Comment         string
+	DiffID          layer.DiffID
+	ContainerConfig *container.Config
+	Config          *container.Config
+}
+
+// NewChildImage creates a new Image as a child of this image.
+func NewChildImage(img *Image, child ChildConfig, platform string) *Image {
+	isEmptyLayer := layer.IsEmpty(child.DiffID)
+	var rootFS *RootFS
+	if img.RootFS != nil {
+		rootFS = img.RootFS.Clone()
+	} else {
+		rootFS = NewRootFS()
+	}
+
+	if !isEmptyLayer {
+		rootFS.Append(child.DiffID)
+	}
+	imgHistory := NewHistory(
+		child.Author,
+		child.Comment,
+		strings.Join(child.ContainerConfig.Cmd, " "),
+		isEmptyLayer)
+
+	return &Image{
+		V1Image: V1Image{
+			DockerVersion:   dockerversion.Version,
+			Config:          child.Config,
+			Architecture:    img.BaseImgArch(),
+			OS:              platform,
+			Container:       child.ContainerID,
+			ContainerConfig: *child.ContainerConfig,
+			Author:          child.Author,
+			Created:         imgHistory.Created,
+		},
+		RootFS:     rootFS,
+		History:    append(img.History, imgHistory),
+		OSFeatures: img.OSFeatures,
+		OSVersion:  img.OSVersion,
+	}
+}
+
+// History stores build commands that were used to create an image
+type History struct {
+	// Created is the timestamp at which the image was created
+	Created time.Time `json:"created"`
+	// Author is the name of the author that was specified when committing the image
+	Author string `json:"author,omitempty"`
+	// CreatedBy keeps the Dockerfile command used while building the image
+	CreatedBy string `json:"created_by,omitempty"`
+	// Comment is the commit message that was set when committing the image
+	Comment string `json:"comment,omitempty"`
+	// EmptyLayer is set to true if this history item did not generate a
+	// layer. Otherwise, the history item is associated with the next
+	// layer in the RootFS section.
+	EmptyLayer bool `json:"empty_layer,omitempty"`
+}
+
+// NewHistory creates a new history struct from arguments, and sets the created
+// time to the current time in UTC
+func NewHistory(author, comment, createdBy string, isEmptyLayer bool) History {
+	return History{
+		Author:     author,
+		Created:    time.Now().UTC(),
+		CreatedBy:  createdBy,
+		Comment:    comment,
+		EmptyLayer: isEmptyLayer,
+	}
+}
+
+// Exporter provides interface for loading and saving images
+type Exporter interface {
+	Load(io.ReadCloser, io.Writer, bool) error
+	// TODO: Load(net.Context, io.ReadCloser, <- chan StatusMessage) error
+	Save([]string, io.Writer) error
+}
+
+// NewFromJSON creates an Image configuration from json.
+func NewFromJSON(src []byte) (*Image, error) {
+	img := &Image{}
+
+	if err := json.Unmarshal(src, img); err != nil {
+		return nil, err
+	}
+	if img.RootFS == nil {
+		return nil, errors.New("invalid image JSON, no RootFS key")
+	}
+
+	img.rawJSON = src
+
+	return img, nil
+}
diff --git a/vendor/github.com/docker/docker/image/rootfs.go b/vendor/github.com/docker/docker/image/rootfs.go
new file mode 100644
index 0000000000..84843e10c6
--- /dev/null
+++ b/vendor/github.com/docker/docker/image/rootfs.go
@@ -0,0 +1,52 @@
+package image // import "github.com/docker/docker/image"
+
+import (
+	"runtime"
+
+	"github.com/docker/docker/layer"
+	"github.com/sirupsen/logrus"
+)
+
+// TypeLayers is used for RootFS.Type for filesystems organized into layers.
+const TypeLayers = "layers"
+
+// typeLayersWithBase is an older format used by Windows up to v1.12. We
+// explicitly handle this as an error case to ensure that a daemon which still
+// has an older image like this on disk can still start, even though the
+// image itself is not usable. See https://github.com/docker/docker/pull/25806.
+const typeLayersWithBase = "layers+base"
+
+// RootFS describes images root filesystem
+// This is currently a placeholder that only supports layers. In the future
+// this can be made into an interface that supports different implementations.
+type RootFS struct {
+	Type    string         `json:"type"`
+	DiffIDs []layer.DiffID `json:"diff_ids,omitempty"`
+}
+
+// NewRootFS returns empty RootFS struct
+func NewRootFS() *RootFS {
+	return &RootFS{Type: TypeLayers}
+}
+
+// Append appends a new diffID to rootfs
+func (r *RootFS) Append(id layer.DiffID) {
+	r.DiffIDs = append(r.DiffIDs, id)
+}
+
+// Clone returns a copy of the RootFS
+func (r *RootFS) Clone() *RootFS {
+	newRoot := NewRootFS()
+	newRoot.Type = r.Type
+	newRoot.DiffIDs = append(r.DiffIDs)
+	return newRoot
+}
+
+// ChainID returns the ChainID for the top layer in RootFS.
+func (r *RootFS) ChainID() layer.ChainID {
+	if runtime.GOOS == "windows" && r.Type == typeLayersWithBase {
+		logrus.Warnf("Layer type is unsupported on this platform. DiffIDs: '%v'", r.DiffIDs)
+		return ""
+	}
+	return layer.CreateChainID(r.DiffIDs)
+}
diff --git a/vendor/github.com/docker/docker/image/store.go b/vendor/github.com/docker/docker/image/store.go
new file mode 100644
index 0000000000..9fd7d7dcf3
--- /dev/null
+++ b/vendor/github.com/docker/docker/image/store.go
@@ -0,0 +1,345 @@
+package image // import "github.com/docker/docker/image"
+
+import (
+	"encoding/json"
+	"fmt"
+	"sync"
+	"time"
+
+	"github.com/docker/distribution/digestset"
+	"github.com/docker/docker/layer"
+	"github.com/docker/docker/pkg/system"
+	"github.com/opencontainers/go-digest"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+)
+
+// Store is an interface for creating and accessing images
+type Store interface {
+	Create(config []byte) (ID, error)
+	Get(id ID) (*Image, error)
+	Delete(id ID) ([]layer.Metadata, error)
+	Search(partialID string) (ID, error)
+	SetParent(id ID, parent ID) error
+	GetParent(id ID) (ID, error)
+	SetLastUpdated(id ID) error
+	GetLastUpdated(id ID) (time.Time, error)
+	Children(id ID) []ID
+	Map() map[ID]*Image
+	Heads() map[ID]*Image
+	Len() int
+}
+
+// LayerGetReleaser is a minimal interface for getting and releasing images.
+type LayerGetReleaser interface {
+	Get(layer.ChainID) (layer.Layer, error)
+	Release(layer.Layer) ([]layer.Metadata, error)
+}
+
+type imageMeta struct {
+	layer    layer.Layer
+	children map[ID]struct{}
+}
+
+type store struct {
+	sync.RWMutex
+	lss       map[string]LayerGetReleaser
+	images    map[ID]*imageMeta
+	fs        StoreBackend
+	digestSet *digestset.Set
+}
+
+// NewImageStore returns new store object for given set of layer stores
+func NewImageStore(fs StoreBackend, lss map[string]LayerGetReleaser) (Store, error) {
+	is := &store{
+		lss:       lss,
+		images:    make(map[ID]*imageMeta),
+		fs:        fs,
+		digestSet: digestset.NewSet(),
+	}
+
+	// load all current images and retain layers
+	if err := is.restore(); err != nil {
+		return nil, err
+	}
+
+	return is, nil
+}
+
+func (is *store) restore() error {
+	err := is.fs.Walk(func(dgst digest.Digest) error {
+		img, err := is.Get(IDFromDigest(dgst))
+		if err != nil {
+			logrus.Errorf("invalid image %v, %v", dgst, err)
+			return nil
+		}
+		var l layer.Layer
+		if chainID := img.RootFS.ChainID(); chainID != "" {
+			if !system.IsOSSupported(img.OperatingSystem()) {
+				return system.ErrNotSupportedOperatingSystem
+			}
+			l, err = is.lss[img.OperatingSystem()].Get(chainID)
+			if err != nil {
+				if err == layer.ErrLayerDoesNotExist {
+					logrus.Errorf("layer does not exist, not restoring image %v, %v, %s", dgst, chainID, img.OperatingSystem())
+					return nil
+				}
+				return err
+			}
+		}
+		if err := is.digestSet.Add(dgst); err != nil {
+			return err
+		}
+
+		imageMeta := &imageMeta{
+			layer:    l,
+			children: make(map[ID]struct{}),
+		}
+
+		is.images[IDFromDigest(dgst)] = imageMeta
+
+		return nil
+	})
+	if err != nil {
+		return err
+	}
+
+	// Second pass to fill in children maps
+	for id := range is.images {
+		if parent, err := is.GetParent(id); err == nil {
+			if parentMeta := is.images[parent]; parentMeta != nil {
+				parentMeta.children[id] = struct{}{}
+			}
+		}
+	}
+
+	return nil
+}
+
+func (is *store) Create(config []byte) (ID, error) {
+	var img Image
+	err := json.Unmarshal(config, &img)
+	if err != nil {
+		return "", err
+	}
+
+	// Must reject any config that references diffIDs from the history
+	// which aren't among the rootfs layers.
+	rootFSLayers := make(map[layer.DiffID]struct{})
+	for _, diffID := range img.RootFS.DiffIDs {
+		rootFSLayers[diffID] = struct{}{}
+	}
+
+	layerCounter := 0
+	for _, h := range img.History {
+		if !h.EmptyLayer {
+			layerCounter++
+		}
+	}
+	if layerCounter > len(img.RootFS.DiffIDs) {
+		return "", errors.New("too many non-empty layers in History section")
+	}
+
+	dgst, err := is.fs.Set(config)
+	if err != nil {
+		return "", err
+	}
+	imageID := IDFromDigest(dgst)
+
+	is.Lock()
+	defer is.Unlock()
+
+	if _, exists := is.images[imageID]; exists {
+		return imageID, nil
+	}
+
+	layerID := img.RootFS.ChainID()
+
+	var l layer.Layer
+	if layerID != "" {
+		if !system.IsOSSupported(img.OperatingSystem()) {
+			return "", system.ErrNotSupportedOperatingSystem
+		}
+		l, err = is.lss[img.OperatingSystem()].Get(layerID)
+		if err != nil {
+			return "", errors.Wrapf(err, "failed to get layer %s", layerID)
+		}
+	}
+
+	imageMeta := &imageMeta{
+		layer:    l,
+		children: make(map[ID]struct{}),
+	}
+
+	is.images[imageID] = imageMeta
+	if err := is.digestSet.Add(imageID.Digest()); err != nil {
+		delete(is.images, imageID)
+		return "", err
+	}
+
+	return imageID, nil
+}
+
+type imageNotFoundError string
+
+func (e imageNotFoundError) Error() string {
+	return "No such image: " + string(e)
+}
+
+func (imageNotFoundError) NotFound() {}
+
+func (is *store) Search(term string) (ID, error) {
+	dgst, err := is.digestSet.Lookup(term)
+	if err != nil {
+		if err == digestset.ErrDigestNotFound {
+			err = imageNotFoundError(term)
+		}
+		return "", errors.WithStack(err)
+	}
+	return IDFromDigest(dgst), nil
+}
+
+func (is *store) Get(id ID) (*Image, error) {
+	// todo: Check if image is in images
+	// todo: Detect manual insertions and start using them
+	config, err := is.fs.Get(id.Digest())
+	if err != nil {
+		return nil, err
+	}
+
+	img, err := NewFromJSON(config)
+	if err != nil {
+		return nil, err
+	}
+	img.computedID = id
+
+	img.Parent, err = is.GetParent(id)
+	if err != nil {
+		img.Parent = ""
+	}
+
+	return img, nil
+}
+
+func (is *store) Delete(id ID) ([]layer.Metadata, error) {
+	is.Lock()
+	defer is.Unlock()
+
+	imageMeta := is.images[id]
+	if imageMeta == nil {
+		return nil, fmt.Errorf("unrecognized image ID %s", id.String())
+	}
+	img, err := is.Get(id)
+	if err != nil {
+		return nil, fmt.Errorf("unrecognized image %s, %v", id.String(), err)
+	}
+	if !system.IsOSSupported(img.OperatingSystem()) {
+		return nil, fmt.Errorf("unsupported image operating system %q", img.OperatingSystem())
+	}
+	for id := range imageMeta.children {
+		is.fs.DeleteMetadata(id.Digest(), "parent")
+	}
+	if parent, err := is.GetParent(id); err == nil && is.images[parent] != nil {
+		delete(is.images[parent].children, id)
+	}
+
+	if err := is.digestSet.Remove(id.Digest()); err != nil {
+		logrus.Errorf("error removing %s from digest set: %q", id, err)
+	}
+	delete(is.images, id)
+	is.fs.Delete(id.Digest())
+
+	if imageMeta.layer != nil {
+		return is.lss[img.OperatingSystem()].Release(imageMeta.layer)
+	}
+	return nil, nil
+}
+
+func (is *store) SetParent(id, parent ID) error {
+	is.Lock()
+	defer is.Unlock()
+	parentMeta := is.images[parent]
+	if parentMeta == nil {
+		return fmt.Errorf("unknown parent image ID %s", parent.String())
+	}
+	if parent, err := is.GetParent(id); err == nil && is.images[parent] != nil {
+		delete(is.images[parent].children, id)
+	}
+	parentMeta.children[id] = struct{}{}
+	return is.fs.SetMetadata(id.Digest(), "parent", []byte(parent))
+}
+
+func (is *store) GetParent(id ID) (ID, error) {
+	d, err := is.fs.GetMetadata(id.Digest(), "parent")
+	if err != nil {
+		return "", err
+	}
+	return ID(d), nil // todo: validate?
+}
+
+// SetLastUpdated time for the image ID to the current time
+func (is *store) SetLastUpdated(id ID) error {
+	lastUpdated := []byte(time.Now().Format(time.RFC3339Nano))
+	return is.fs.SetMetadata(id.Digest(), "lastUpdated", lastUpdated)
+}
+
+// GetLastUpdated time for the image ID
+func (is *store) GetLastUpdated(id ID) (time.Time, error) {
+	bytes, err := is.fs.GetMetadata(id.Digest(), "lastUpdated")
+	if err != nil || len(bytes) == 0 {
+		// No lastUpdated time
+		return time.Time{}, nil
+	}
+	return time.Parse(time.RFC3339Nano, string(bytes))
+}
+
+func (is *store) Children(id ID) []ID {
+	is.RLock()
+	defer is.RUnlock()
+
+	return is.children(id)
+}
+
+func (is *store) children(id ID) []ID {
+	var ids []ID
+	if is.images[id] != nil {
+		for id := range is.images[id].children {
+			ids = append(ids, id)
+		}
+	}
+	return ids
+}
+
+func (is *store) Heads() map[ID]*Image {
+	return is.imagesMap(false)
+}
+
+func (is *store) Map() map[ID]*Image {
+	return is.imagesMap(true)
+}
+
+func (is *store) imagesMap(all bool) map[ID]*Image {
+	is.RLock()
+	defer is.RUnlock()
+
+	images := make(map[ID]*Image)
+
+	for id := range is.images {
+		if !all && len(is.children(id)) > 0 {
+			continue
+		}
+		img, err := is.Get(id)
+		if err != nil {
+			logrus.Errorf("invalid image access: %q, error: %q", id, err)
+			continue
+		}
+		images[id] = img
+	}
+	return images
+}
+
+func (is *store) Len() int {
+	is.RLock()
+	defer is.RUnlock()
+	return len(is.images)
+}
diff --git a/vendor/github.com/docker/docker/layer/empty.go b/vendor/github.com/docker/docker/layer/empty.go
new file mode 100644
index 0000000000..c81c702140
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/empty.go
@@ -0,0 +1,61 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"archive/tar"
+	"bytes"
+	"fmt"
+	"io"
+	"io/ioutil"
+)
+
+// DigestSHA256EmptyTar is the canonical sha256 digest of empty tar file -
+// (1024 NULL bytes)
+const DigestSHA256EmptyTar = DiffID("sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef")
+
+type emptyLayer struct{}
+
+// EmptyLayer is a layer that corresponds to empty tar.
+var EmptyLayer = &emptyLayer{}
+
+func (el *emptyLayer) TarStream() (io.ReadCloser, error) {
+	buf := new(bytes.Buffer)
+	tarWriter := tar.NewWriter(buf)
+	tarWriter.Close()
+	return ioutil.NopCloser(buf), nil
+}
+
+func (el *emptyLayer) TarStreamFrom(p ChainID) (io.ReadCloser, error) {
+	if p == "" {
+		return el.TarStream()
+	}
+	return nil, fmt.Errorf("can't get parent tar stream of an empty layer")
+}
+
+func (el *emptyLayer) ChainID() ChainID {
+	return ChainID(DigestSHA256EmptyTar)
+}
+
+func (el *emptyLayer) DiffID() DiffID {
+	return DigestSHA256EmptyTar
+}
+
+func (el *emptyLayer) Parent() Layer {
+	return nil
+}
+
+func (el *emptyLayer) Size() (size int64, err error) {
+	return 0, nil
+}
+
+func (el *emptyLayer) DiffSize() (size int64, err error) {
+	return 0, nil
+}
+
+func (el *emptyLayer) Metadata() (map[string]string, error) {
+	return make(map[string]string), nil
+}
+
+// IsEmpty returns true if the layer is an EmptyLayer
+func IsEmpty(diffID DiffID) bool {
+	return diffID == DigestSHA256EmptyTar
+}
diff --git a/vendor/github.com/docker/docker/layer/filestore.go b/vendor/github.com/docker/docker/layer/filestore.go
new file mode 100644
index 0000000000..b1cbb80166
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/filestore.go
@@ -0,0 +1,355 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"compress/gzip"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"regexp"
+	"strconv"
+	"strings"
+
+	"github.com/docker/distribution"
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/opencontainers/go-digest"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	stringIDRegexp      = regexp.MustCompile(`^[a-f0-9]{64}(-init)?$`)
+	supportedAlgorithms = []digest.Algorithm{
+		digest.SHA256,
+		// digest.SHA384, // Currently not used
+		// digest.SHA512, // Currently not used
+	}
+)
+
+type fileMetadataStore struct {
+	root string
+}
+
+type fileMetadataTransaction struct {
+	store *fileMetadataStore
+	ws    *ioutils.AtomicWriteSet
+}
+
+// newFSMetadataStore returns an instance of a metadata store
+// which is backed by files on disk using the provided root
+// as the root of metadata files.
+func newFSMetadataStore(root string) (*fileMetadataStore, error) {
+	if err := os.MkdirAll(root, 0700); err != nil {
+		return nil, err
+	}
+	return &fileMetadataStore{
+		root: root,
+	}, nil
+}
+
+func (fms *fileMetadataStore) getLayerDirectory(layer ChainID) string {
+	dgst := digest.Digest(layer)
+	return filepath.Join(fms.root, string(dgst.Algorithm()), dgst.Hex())
+}
+
+func (fms *fileMetadataStore) getLayerFilename(layer ChainID, filename string) string {
+	return filepath.Join(fms.getLayerDirectory(layer), filename)
+}
+
+func (fms *fileMetadataStore) getMountDirectory(mount string) string {
+	return filepath.Join(fms.root, "mounts", mount)
+}
+
+func (fms *fileMetadataStore) getMountFilename(mount, filename string) string {
+	return filepath.Join(fms.getMountDirectory(mount), filename)
+}
+
+func (fms *fileMetadataStore) StartTransaction() (*fileMetadataTransaction, error) {
+	tmpDir := filepath.Join(fms.root, "tmp")
+	if err := os.MkdirAll(tmpDir, 0755); err != nil {
+		return nil, err
+	}
+	ws, err := ioutils.NewAtomicWriteSet(tmpDir)
+	if err != nil {
+		return nil, err
+	}
+
+	return &fileMetadataTransaction{
+		store: fms,
+		ws:    ws,
+	}, nil
+}
+
+func (fm *fileMetadataTransaction) SetSize(size int64) error {
+	content := fmt.Sprintf("%d", size)
+	return fm.ws.WriteFile("size", []byte(content), 0644)
+}
+
+func (fm *fileMetadataTransaction) SetParent(parent ChainID) error {
+	return fm.ws.WriteFile("parent", []byte(digest.Digest(parent).String()), 0644)
+}
+
+func (fm *fileMetadataTransaction) SetDiffID(diff DiffID) error {
+	return fm.ws.WriteFile("diff", []byte(digest.Digest(diff).String()), 0644)
+}
+
+func (fm *fileMetadataTransaction) SetCacheID(cacheID string) error {
+	return fm.ws.WriteFile("cache-id", []byte(cacheID), 0644)
+}
+
+func (fm *fileMetadataTransaction) SetDescriptor(ref distribution.Descriptor) error {
+	jsonRef, err := json.Marshal(ref)
+	if err != nil {
+		return err
+	}
+	return fm.ws.WriteFile("descriptor.json", jsonRef, 0644)
+}
+
+func (fm *fileMetadataTransaction) TarSplitWriter(compressInput bool) (io.WriteCloser, error) {
+	f, err := fm.ws.FileWriter("tar-split.json.gz", os.O_TRUNC|os.O_CREATE|os.O_WRONLY, 0644)
+	if err != nil {
+		return nil, err
+	}
+	var wc io.WriteCloser
+	if compressInput {
+		wc = gzip.NewWriter(f)
+	} else {
+		wc = f
+	}
+
+	return ioutils.NewWriteCloserWrapper(wc, func() error {
+		wc.Close()
+		return f.Close()
+	}), nil
+}
+
+func (fm *fileMetadataTransaction) Commit(layer ChainID) error {
+	finalDir := fm.store.getLayerDirectory(layer)
+	if err := os.MkdirAll(filepath.Dir(finalDir), 0755); err != nil {
+		return err
+	}
+
+	return fm.ws.Commit(finalDir)
+}
+
+func (fm *fileMetadataTransaction) Cancel() error {
+	return fm.ws.Cancel()
+}
+
+func (fm *fileMetadataTransaction) String() string {
+	return fm.ws.String()
+}
+
+func (fms *fileMetadataStore) GetSize(layer ChainID) (int64, error) {
+	content, err := ioutil.ReadFile(fms.getLayerFilename(layer, "size"))
+	if err != nil {
+		return 0, err
+	}
+
+	size, err := strconv.ParseInt(string(content), 10, 64)
+	if err != nil {
+		return 0, err
+	}
+
+	return size, nil
+}
+
+func (fms *fileMetadataStore) GetParent(layer ChainID) (ChainID, error) {
+	content, err := ioutil.ReadFile(fms.getLayerFilename(layer, "parent"))
+	if err != nil {
+		if os.IsNotExist(err) {
+			return "", nil
+		}
+		return "", err
+	}
+
+	dgst, err := digest.Parse(strings.TrimSpace(string(content)))
+	if err != nil {
+		return "", err
+	}
+
+	return ChainID(dgst), nil
+}
+
+func (fms *fileMetadataStore) GetDiffID(layer ChainID) (DiffID, error) {
+	content, err := ioutil.ReadFile(fms.getLayerFilename(layer, "diff"))
+	if err != nil {
+		return "", err
+	}
+
+	dgst, err := digest.Parse(strings.TrimSpace(string(content)))
+	if err != nil {
+		return "", err
+	}
+
+	return DiffID(dgst), nil
+}
+
+func (fms *fileMetadataStore) GetCacheID(layer ChainID) (string, error) {
+	contentBytes, err := ioutil.ReadFile(fms.getLayerFilename(layer, "cache-id"))
+	if err != nil {
+		return "", err
+	}
+	content := strings.TrimSpace(string(contentBytes))
+
+	if !stringIDRegexp.MatchString(content) {
+		return "", errors.New("invalid cache id value")
+	}
+
+	return content, nil
+}
+
+func (fms *fileMetadataStore) GetDescriptor(layer ChainID) (distribution.Descriptor, error) {
+	content, err := ioutil.ReadFile(fms.getLayerFilename(layer, "descriptor.json"))
+	if err != nil {
+		if os.IsNotExist(err) {
+			// only return empty descriptor to represent what is stored
+			return distribution.Descriptor{}, nil
+		}
+		return distribution.Descriptor{}, err
+	}
+
+	var ref distribution.Descriptor
+	err = json.Unmarshal(content, &ref)
+	if err != nil {
+		return distribution.Descriptor{}, err
+	}
+	return ref, err
+}
+
+func (fms *fileMetadataStore) TarSplitReader(layer ChainID) (io.ReadCloser, error) {
+	fz, err := os.Open(fms.getLayerFilename(layer, "tar-split.json.gz"))
+	if err != nil {
+		return nil, err
+	}
+	f, err := gzip.NewReader(fz)
+	if err != nil {
+		fz.Close()
+		return nil, err
+	}
+
+	return ioutils.NewReadCloserWrapper(f, func() error {
+		f.Close()
+		return fz.Close()
+	}), nil
+}
+
+func (fms *fileMetadataStore) SetMountID(mount string, mountID string) error {
+	if err := os.MkdirAll(fms.getMountDirectory(mount), 0755); err != nil {
+		return err
+	}
+	return ioutil.WriteFile(fms.getMountFilename(mount, "mount-id"), []byte(mountID), 0644)
+}
+
+func (fms *fileMetadataStore) SetInitID(mount string, init string) error {
+	if err := os.MkdirAll(fms.getMountDirectory(mount), 0755); err != nil {
+		return err
+	}
+	return ioutil.WriteFile(fms.getMountFilename(mount, "init-id"), []byte(init), 0644)
+}
+
+func (fms *fileMetadataStore) SetMountParent(mount string, parent ChainID) error {
+	if err := os.MkdirAll(fms.getMountDirectory(mount), 0755); err != nil {
+		return err
+	}
+	return ioutil.WriteFile(fms.getMountFilename(mount, "parent"), []byte(digest.Digest(parent).String()), 0644)
+}
+
+func (fms *fileMetadataStore) GetMountID(mount string) (string, error) {
+	contentBytes, err := ioutil.ReadFile(fms.getMountFilename(mount, "mount-id"))
+	if err != nil {
+		return "", err
+	}
+	content := strings.TrimSpace(string(contentBytes))
+
+	if !stringIDRegexp.MatchString(content) {
+		return "", errors.New("invalid mount id value")
+	}
+
+	return content, nil
+}
+
+func (fms *fileMetadataStore) GetInitID(mount string) (string, error) {
+	contentBytes, err := ioutil.ReadFile(fms.getMountFilename(mount, "init-id"))
+	if err != nil {
+		if os.IsNotExist(err) {
+			return "", nil
+		}
+		return "", err
+	}
+	content := strings.TrimSpace(string(contentBytes))
+
+	if !stringIDRegexp.MatchString(content) {
+		return "", errors.New("invalid init id value")
+	}
+
+	return content, nil
+}
+
+func (fms *fileMetadataStore) GetMountParent(mount string) (ChainID, error) {
+	content, err := ioutil.ReadFile(fms.getMountFilename(mount, "parent"))
+	if err != nil {
+		if os.IsNotExist(err) {
+			return "", nil
+		}
+		return "", err
+	}
+
+	dgst, err := digest.Parse(strings.TrimSpace(string(content)))
+	if err != nil {
+		return "", err
+	}
+
+	return ChainID(dgst), nil
+}
+
+func (fms *fileMetadataStore) List() ([]ChainID, []string, error) {
+	var ids []ChainID
+	for _, algorithm := range supportedAlgorithms {
+		fileInfos, err := ioutil.ReadDir(filepath.Join(fms.root, string(algorithm)))
+		if err != nil {
+			if os.IsNotExist(err) {
+				continue
+			}
+			return nil, nil, err
+		}
+
+		for _, fi := range fileInfos {
+			if fi.IsDir() && fi.Name() != "mounts" {
+				dgst := digest.NewDigestFromHex(string(algorithm), fi.Name())
+				if err := dgst.Validate(); err != nil {
+					logrus.Debugf("Ignoring invalid digest %s:%s", algorithm, fi.Name())
+				} else {
+					ids = append(ids, ChainID(dgst))
+				}
+			}
+		}
+	}
+
+	fileInfos, err := ioutil.ReadDir(filepath.Join(fms.root, "mounts"))
+	if err != nil {
+		if os.IsNotExist(err) {
+			return ids, []string{}, nil
+		}
+		return nil, nil, err
+	}
+
+	var mounts []string
+	for _, fi := range fileInfos {
+		if fi.IsDir() {
+			mounts = append(mounts, fi.Name())
+		}
+	}
+
+	return ids, mounts, nil
+}
+
+func (fms *fileMetadataStore) Remove(layer ChainID) error {
+	return os.RemoveAll(fms.getLayerDirectory(layer))
+}
+
+func (fms *fileMetadataStore) RemoveMount(mount string) error {
+	return os.RemoveAll(fms.getMountDirectory(mount))
+}
diff --git a/vendor/github.com/docker/docker/layer/filestore_unix.go b/vendor/github.com/docker/docker/layer/filestore_unix.go
new file mode 100644
index 0000000000..68e7f90779
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/filestore_unix.go
@@ -0,0 +1,15 @@
+// +build !windows
+
+package layer // import "github.com/docker/docker/layer"
+
+import "runtime"
+
+// setOS writes the "os" file to the layer filestore
+func (fm *fileMetadataTransaction) setOS(os string) error {
+	return nil
+}
+
+// getOS reads the "os" file from the layer filestore
+func (fms *fileMetadataStore) getOS(layer ChainID) (string, error) {
+	return runtime.GOOS, nil
+}
diff --git a/vendor/github.com/docker/docker/layer/filestore_windows.go b/vendor/github.com/docker/docker/layer/filestore_windows.go
new file mode 100644
index 0000000000..cecad426c8
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/filestore_windows.go
@@ -0,0 +1,35 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"strings"
+)
+
+// setOS writes the "os" file to the layer filestore
+func (fm *fileMetadataTransaction) setOS(os string) error {
+	if os == "" {
+		return nil
+	}
+	return fm.ws.WriteFile("os", []byte(os), 0644)
+}
+
+// getOS reads the "os" file from the layer filestore
+func (fms *fileMetadataStore) getOS(layer ChainID) (string, error) {
+	contentBytes, err := ioutil.ReadFile(fms.getLayerFilename(layer, "os"))
+	if err != nil {
+		// For backwards compatibility, the os file may not exist. Default to "windows" if missing.
+		if os.IsNotExist(err) {
+			return "windows", nil
+		}
+		return "", err
+	}
+	content := strings.TrimSpace(string(contentBytes))
+
+	if content != "windows" && content != "linux" {
+		return "", fmt.Errorf("invalid operating system value: %s", content)
+	}
+
+	return content, nil
+}
diff --git a/vendor/github.com/docker/docker/layer/layer.go b/vendor/github.com/docker/docker/layer/layer.go
new file mode 100644
index 0000000000..d0c7fa8608
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/layer.go
@@ -0,0 +1,237 @@
+// Package layer is package for managing read-only
+// and read-write mounts on the union file system
+// driver. Read-only mounts are referenced using a
+// content hash and are protected from mutation in
+// the exposed interface. The tar format is used
+// to create read-only layers and export both
+// read-only and writable layers. The exported
+// tar data for a read-only layer should match
+// the tar used to create the layer.
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"errors"
+	"io"
+
+	"github.com/docker/distribution"
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/containerfs"
+	"github.com/opencontainers/go-digest"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// ErrLayerDoesNotExist is used when an operation is
+	// attempted on a layer which does not exist.
+	ErrLayerDoesNotExist = errors.New("layer does not exist")
+
+	// ErrLayerNotRetained is used when a release is
+	// attempted on a layer which is not retained.
+	ErrLayerNotRetained = errors.New("layer not retained")
+
+	// ErrMountDoesNotExist is used when an operation is
+	// attempted on a mount layer which does not exist.
+	ErrMountDoesNotExist = errors.New("mount does not exist")
+
+	// ErrMountNameConflict is used when a mount is attempted
+	// to be created but there is already a mount with the name
+	// used for creation.
+	ErrMountNameConflict = errors.New("mount already exists with name")
+
+	// ErrActiveMount is used when an operation on a
+	// mount is attempted but the layer is still
+	// mounted and the operation cannot be performed.
+	ErrActiveMount = errors.New("mount still active")
+
+	// ErrNotMounted is used when requesting an active
+	// mount but the layer is not mounted.
+	ErrNotMounted = errors.New("not mounted")
+
+	// ErrMaxDepthExceeded is used when a layer is attempted
+	// to be created which would result in a layer depth
+	// greater than the 125 max.
+	ErrMaxDepthExceeded = errors.New("max depth exceeded")
+
+	// ErrNotSupported is used when the action is not supported
+	// on the current host operating system.
+	ErrNotSupported = errors.New("not support on this host operating system")
+)
+
+// ChainID is the content-addressable ID of a layer.
+type ChainID digest.Digest
+
+// String returns a string rendition of a layer ID
+func (id ChainID) String() string {
+	return string(id)
+}
+
+// DiffID is the hash of an individual layer tar.
+type DiffID digest.Digest
+
+// String returns a string rendition of a layer DiffID
+func (diffID DiffID) String() string {
+	return string(diffID)
+}
+
+// TarStreamer represents an object which may
+// have its contents exported as a tar stream.
+type TarStreamer interface {
+	// TarStream returns a tar archive stream
+	// for the contents of a layer.
+	TarStream() (io.ReadCloser, error)
+}
+
+// Layer represents a read-only layer
+type Layer interface {
+	TarStreamer
+
+	// TarStreamFrom returns a tar archive stream for all the layer chain with
+	// arbitrary depth.
+	TarStreamFrom(ChainID) (io.ReadCloser, error)
+
+	// ChainID returns the content hash of the entire layer chain. The hash
+	// chain is made up of DiffID of top layer and all of its parents.
+	ChainID() ChainID
+
+	// DiffID returns the content hash of the layer
+	// tar stream used to create this layer.
+	DiffID() DiffID
+
+	// Parent returns the next layer in the layer chain.
+	Parent() Layer
+
+	// Size returns the size of the entire layer chain. The size
+	// is calculated from the total size of all files in the layers.
+	Size() (int64, error)
+
+	// DiffSize returns the size difference of the top layer
+	// from parent layer.
+	DiffSize() (int64, error)
+
+	// Metadata returns the low level storage metadata associated
+	// with layer.
+	Metadata() (map[string]string, error)
+}
+
+// RWLayer represents a layer which is
+// read and writable
+type RWLayer interface {
+	TarStreamer
+
+	// Name of mounted layer
+	Name() string
+
+	// Parent returns the layer which the writable
+	// layer was created from.
+	Parent() Layer
+
+	// Mount mounts the RWLayer and returns the filesystem path
+	// the to the writable layer.
+	Mount(mountLabel string) (containerfs.ContainerFS, error)
+
+	// Unmount unmounts the RWLayer. This should be called
+	// for every mount. If there are multiple mount calls
+	// this operation will only decrement the internal mount counter.
+	Unmount() error
+
+	// Size represents the size of the writable layer
+	// as calculated by the total size of the files
+	// changed in the mutable layer.
+	Size() (int64, error)
+
+	// Changes returns the set of changes for the mutable layer
+	// from the base layer.
+	Changes() ([]archive.Change, error)
+
+	// Metadata returns the low level metadata for the mutable layer
+	Metadata() (map[string]string, error)
+}
+
+// Metadata holds information about a
+// read-only layer
+type Metadata struct {
+	// ChainID is the content hash of the layer
+	ChainID ChainID
+
+	// DiffID is the hash of the tar data used to
+	// create the layer
+	DiffID DiffID
+
+	// Size is the size of the layer and all parents
+	Size int64
+
+	// DiffSize is the size of the top layer
+	DiffSize int64
+}
+
+// MountInit is a function to initialize a
+// writable mount. Changes made here will
+// not be included in the Tar stream of the
+// RWLayer.
+type MountInit func(root containerfs.ContainerFS) error
+
+// CreateRWLayerOpts contains optional arguments to be passed to CreateRWLayer
+type CreateRWLayerOpts struct {
+	MountLabel string
+	InitFunc   MountInit
+	StorageOpt map[string]string
+}
+
+// Store represents a backend for managing both
+// read-only and read-write layers.
+type Store interface {
+	Register(io.Reader, ChainID) (Layer, error)
+	Get(ChainID) (Layer, error)
+	Map() map[ChainID]Layer
+	Release(Layer) ([]Metadata, error)
+
+	CreateRWLayer(id string, parent ChainID, opts *CreateRWLayerOpts) (RWLayer, error)
+	GetRWLayer(id string) (RWLayer, error)
+	GetMountID(id string) (string, error)
+	ReleaseRWLayer(RWLayer) ([]Metadata, error)
+
+	Cleanup() error
+	DriverStatus() [][2]string
+	DriverName() string
+}
+
+// DescribableStore represents a layer store capable of storing
+// descriptors for layers.
+type DescribableStore interface {
+	RegisterWithDescriptor(io.Reader, ChainID, distribution.Descriptor) (Layer, error)
+}
+
+// CreateChainID returns ID for a layerDigest slice
+func CreateChainID(dgsts []DiffID) ChainID {
+	return createChainIDFromParent("", dgsts...)
+}
+
+func createChainIDFromParent(parent ChainID, dgsts ...DiffID) ChainID {
+	if len(dgsts) == 0 {
+		return parent
+	}
+	if parent == "" {
+		return createChainIDFromParent(ChainID(dgsts[0]), dgsts[1:]...)
+	}
+	// H = "H(n-1) SHA256(n)"
+	dgst := digest.FromBytes([]byte(string(parent) + " " + string(dgsts[0])))
+	return createChainIDFromParent(ChainID(dgst), dgsts[1:]...)
+}
+
+// ReleaseAndLog releases the provided layer from the given layer
+// store, logging any error and release metadata
+func ReleaseAndLog(ls Store, l Layer) {
+	metadata, err := ls.Release(l)
+	if err != nil {
+		logrus.Errorf("Error releasing layer %s: %v", l.ChainID(), err)
+	}
+	LogReleaseMetadata(metadata)
+}
+
+// LogReleaseMetadata logs a metadata array, uses this to
+// ensure consistent logging for release metadata
+func LogReleaseMetadata(metadatas []Metadata) {
+	for _, metadata := range metadatas {
+		logrus.Infof("Layer %s cleaned up", metadata.ChainID)
+	}
+}
diff --git a/vendor/github.com/docker/docker/layer/layer_store.go b/vendor/github.com/docker/docker/layer/layer_store.go
new file mode 100644
index 0000000000..bf0705afc5
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/layer_store.go
@@ -0,0 +1,750 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"sync"
+
+	"github.com/docker/distribution"
+	"github.com/docker/docker/daemon/graphdriver"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/pkg/system"
+	"github.com/opencontainers/go-digest"
+	"github.com/sirupsen/logrus"
+	"github.com/vbatts/tar-split/tar/asm"
+	"github.com/vbatts/tar-split/tar/storage"
+)
+
+// maxLayerDepth represents the maximum number of
+// layers which can be chained together. 125 was
+// chosen to account for the 127 max in some
+// graphdrivers plus the 2 additional layers
+// used to create a rwlayer.
+const maxLayerDepth = 125
+
+type layerStore struct {
+	store       *fileMetadataStore
+	driver      graphdriver.Driver
+	useTarSplit bool
+
+	layerMap map[ChainID]*roLayer
+	layerL   sync.Mutex
+
+	mounts map[string]*mountedLayer
+	mountL sync.Mutex
+	os     string
+}
+
+// StoreOptions are the options used to create a new Store instance
+type StoreOptions struct {
+	Root                      string
+	MetadataStorePathTemplate string
+	GraphDriver               string
+	GraphDriverOptions        []string
+	IDMappings                *idtools.IDMappings
+	PluginGetter              plugingetter.PluginGetter
+	ExperimentalEnabled       bool
+	OS                        string
+}
+
+// NewStoreFromOptions creates a new Store instance
+func NewStoreFromOptions(options StoreOptions) (Store, error) {
+	driver, err := graphdriver.New(options.GraphDriver, options.PluginGetter, graphdriver.Options{
+		Root:                options.Root,
+		DriverOptions:       options.GraphDriverOptions,
+		UIDMaps:             options.IDMappings.UIDs(),
+		GIDMaps:             options.IDMappings.GIDs(),
+		ExperimentalEnabled: options.ExperimentalEnabled,
+	})
+	if err != nil {
+		return nil, fmt.Errorf("error initializing graphdriver: %v", err)
+	}
+	logrus.Debugf("Initialized graph driver %s", driver)
+
+	root := fmt.Sprintf(options.MetadataStorePathTemplate, driver)
+
+	return newStoreFromGraphDriver(root, driver, options.OS)
+}
+
+// newStoreFromGraphDriver creates a new Store instance using the provided
+// metadata store and graph driver. The metadata store will be used to restore
+// the Store.
+func newStoreFromGraphDriver(root string, driver graphdriver.Driver, os string) (Store, error) {
+	if !system.IsOSSupported(os) {
+		return nil, fmt.Errorf("failed to initialize layer store as operating system '%s' is not supported", os)
+	}
+	caps := graphdriver.Capabilities{}
+	if capDriver, ok := driver.(graphdriver.CapabilityDriver); ok {
+		caps = capDriver.Capabilities()
+	}
+
+	ms, err := newFSMetadataStore(root)
+	if err != nil {
+		return nil, err
+	}
+
+	ls := &layerStore{
+		store:       ms,
+		driver:      driver,
+		layerMap:    map[ChainID]*roLayer{},
+		mounts:      map[string]*mountedLayer{},
+		useTarSplit: !caps.ReproducesExactDiffs,
+		os:          os,
+	}
+
+	ids, mounts, err := ms.List()
+	if err != nil {
+		return nil, err
+	}
+
+	for _, id := range ids {
+		l, err := ls.loadLayer(id)
+		if err != nil {
+			logrus.Debugf("Failed to load layer %s: %s", id, err)
+			continue
+		}
+		if l.parent != nil {
+			l.parent.referenceCount++
+		}
+	}
+
+	for _, mount := range mounts {
+		if err := ls.loadMount(mount); err != nil {
+			logrus.Debugf("Failed to load mount %s: %s", mount, err)
+		}
+	}
+
+	return ls, nil
+}
+
+func (ls *layerStore) loadLayer(layer ChainID) (*roLayer, error) {
+	cl, ok := ls.layerMap[layer]
+	if ok {
+		return cl, nil
+	}
+
+	diff, err := ls.store.GetDiffID(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get diff id for %s: %s", layer, err)
+	}
+
+	size, err := ls.store.GetSize(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get size for %s: %s", layer, err)
+	}
+
+	cacheID, err := ls.store.GetCacheID(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get cache id for %s: %s", layer, err)
+	}
+
+	parent, err := ls.store.GetParent(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get parent for %s: %s", layer, err)
+	}
+
+	descriptor, err := ls.store.GetDescriptor(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get descriptor for %s: %s", layer, err)
+	}
+
+	os, err := ls.store.getOS(layer)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get operating system for %s: %s", layer, err)
+	}
+
+	if os != ls.os {
+		return nil, fmt.Errorf("failed to load layer with os %s into layerstore for %s", os, ls.os)
+	}
+
+	cl = &roLayer{
+		chainID:    layer,
+		diffID:     diff,
+		size:       size,
+		cacheID:    cacheID,
+		layerStore: ls,
+		references: map[Layer]struct{}{},
+		descriptor: descriptor,
+	}
+
+	if parent != "" {
+		p, err := ls.loadLayer(parent)
+		if err != nil {
+			return nil, err
+		}
+		cl.parent = p
+	}
+
+	ls.layerMap[cl.chainID] = cl
+
+	return cl, nil
+}
+
+func (ls *layerStore) loadMount(mount string) error {
+	if _, ok := ls.mounts[mount]; ok {
+		return nil
+	}
+
+	mountID, err := ls.store.GetMountID(mount)
+	if err != nil {
+		return err
+	}
+
+	initID, err := ls.store.GetInitID(mount)
+	if err != nil {
+		return err
+	}
+
+	parent, err := ls.store.GetMountParent(mount)
+	if err != nil {
+		return err
+	}
+
+	ml := &mountedLayer{
+		name:       mount,
+		mountID:    mountID,
+		initID:     initID,
+		layerStore: ls,
+		references: map[RWLayer]*referencedRWLayer{},
+	}
+
+	if parent != "" {
+		p, err := ls.loadLayer(parent)
+		if err != nil {
+			return err
+		}
+		ml.parent = p
+
+		p.referenceCount++
+	}
+
+	ls.mounts[ml.name] = ml
+
+	return nil
+}
+
+func (ls *layerStore) applyTar(tx *fileMetadataTransaction, ts io.Reader, parent string, layer *roLayer) error {
+	digester := digest.Canonical.Digester()
+	tr := io.TeeReader(ts, digester.Hash())
+
+	rdr := tr
+	if ls.useTarSplit {
+		tsw, err := tx.TarSplitWriter(true)
+		if err != nil {
+			return err
+		}
+		metaPacker := storage.NewJSONPacker(tsw)
+		defer tsw.Close()
+
+		// we're passing nil here for the file putter, because the ApplyDiff will
+		// handle the extraction of the archive
+		rdr, err = asm.NewInputTarStream(tr, metaPacker, nil)
+		if err != nil {
+			return err
+		}
+	}
+
+	applySize, err := ls.driver.ApplyDiff(layer.cacheID, parent, rdr)
+	if err != nil {
+		return err
+	}
+
+	// Discard trailing data but ensure metadata is picked up to reconstruct stream
+	io.Copy(ioutil.Discard, rdr) // ignore error as reader may be closed
+
+	layer.size = applySize
+	layer.diffID = DiffID(digester.Digest())
+
+	logrus.Debugf("Applied tar %s to %s, size: %d", layer.diffID, layer.cacheID, applySize)
+
+	return nil
+}
+
+func (ls *layerStore) Register(ts io.Reader, parent ChainID) (Layer, error) {
+	return ls.registerWithDescriptor(ts, parent, distribution.Descriptor{})
+}
+
+func (ls *layerStore) registerWithDescriptor(ts io.Reader, parent ChainID, descriptor distribution.Descriptor) (Layer, error) {
+	// err is used to hold the error which will always trigger
+	// cleanup of creates sources but may not be an error returned
+	// to the caller (already exists).
+	var err error
+	var pid string
+	var p *roLayer
+
+	if string(parent) != "" {
+		p = ls.get(parent)
+		if p == nil {
+			return nil, ErrLayerDoesNotExist
+		}
+		pid = p.cacheID
+		// Release parent chain if error
+		defer func() {
+			if err != nil {
+				ls.layerL.Lock()
+				ls.releaseLayer(p)
+				ls.layerL.Unlock()
+			}
+		}()
+		if p.depth() >= maxLayerDepth {
+			err = ErrMaxDepthExceeded
+			return nil, err
+		}
+	}
+
+	// Create new roLayer
+	layer := &roLayer{
+		parent:         p,
+		cacheID:        stringid.GenerateRandomID(),
+		referenceCount: 1,
+		layerStore:     ls,
+		references:     map[Layer]struct{}{},
+		descriptor:     descriptor,
+	}
+
+	if err = ls.driver.Create(layer.cacheID, pid, nil); err != nil {
+		return nil, err
+	}
+
+	tx, err := ls.store.StartTransaction()
+	if err != nil {
+		return nil, err
+	}
+
+	defer func() {
+		if err != nil {
+			logrus.Debugf("Cleaning up layer %s: %v", layer.cacheID, err)
+			if err := ls.driver.Remove(layer.cacheID); err != nil {
+				logrus.Errorf("Error cleaning up cache layer %s: %v", layer.cacheID, err)
+			}
+			if err := tx.Cancel(); err != nil {
+				logrus.Errorf("Error canceling metadata transaction %q: %s", tx.String(), err)
+			}
+		}
+	}()
+
+	if err = ls.applyTar(tx, ts, pid, layer); err != nil {
+		return nil, err
+	}
+
+	if layer.parent == nil {
+		layer.chainID = ChainID(layer.diffID)
+	} else {
+		layer.chainID = createChainIDFromParent(layer.parent.chainID, layer.diffID)
+	}
+
+	if err = storeLayer(tx, layer); err != nil {
+		return nil, err
+	}
+
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+
+	if existingLayer := ls.getWithoutLock(layer.chainID); existingLayer != nil {
+		// Set error for cleanup, but do not return the error
+		err = errors.New("layer already exists")
+		return existingLayer.getReference(), nil
+	}
+
+	if err = tx.Commit(layer.chainID); err != nil {
+		return nil, err
+	}
+
+	ls.layerMap[layer.chainID] = layer
+
+	return layer.getReference(), nil
+}
+
+func (ls *layerStore) getWithoutLock(layer ChainID) *roLayer {
+	l, ok := ls.layerMap[layer]
+	if !ok {
+		return nil
+	}
+
+	l.referenceCount++
+
+	return l
+}
+
+func (ls *layerStore) get(l ChainID) *roLayer {
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+	return ls.getWithoutLock(l)
+}
+
+func (ls *layerStore) Get(l ChainID) (Layer, error) {
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+
+	layer := ls.getWithoutLock(l)
+	if layer == nil {
+		return nil, ErrLayerDoesNotExist
+	}
+
+	return layer.getReference(), nil
+}
+
+func (ls *layerStore) Map() map[ChainID]Layer {
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+
+	layers := map[ChainID]Layer{}
+
+	for k, v := range ls.layerMap {
+		layers[k] = v
+	}
+
+	return layers
+}
+
+func (ls *layerStore) deleteLayer(layer *roLayer, metadata *Metadata) error {
+	err := ls.driver.Remove(layer.cacheID)
+	if err != nil {
+		return err
+	}
+	err = ls.store.Remove(layer.chainID)
+	if err != nil {
+		return err
+	}
+	metadata.DiffID = layer.diffID
+	metadata.ChainID = layer.chainID
+	metadata.Size, err = layer.Size()
+	if err != nil {
+		return err
+	}
+	metadata.DiffSize = layer.size
+
+	return nil
+}
+
+func (ls *layerStore) releaseLayer(l *roLayer) ([]Metadata, error) {
+	depth := 0
+	removed := []Metadata{}
+	for {
+		if l.referenceCount == 0 {
+			panic("layer not retained")
+		}
+		l.referenceCount--
+		if l.referenceCount != 0 {
+			return removed, nil
+		}
+
+		if len(removed) == 0 && depth > 0 {
+			panic("cannot remove layer with child")
+		}
+		if l.hasReferences() {
+			panic("cannot delete referenced layer")
+		}
+		var metadata Metadata
+		if err := ls.deleteLayer(l, &metadata); err != nil {
+			return nil, err
+		}
+
+		delete(ls.layerMap, l.chainID)
+		removed = append(removed, metadata)
+
+		if l.parent == nil {
+			return removed, nil
+		}
+
+		depth++
+		l = l.parent
+	}
+}
+
+func (ls *layerStore) Release(l Layer) ([]Metadata, error) {
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+	layer, ok := ls.layerMap[l.ChainID()]
+	if !ok {
+		return []Metadata{}, nil
+	}
+	if !layer.hasReference(l) {
+		return nil, ErrLayerNotRetained
+	}
+
+	layer.deleteReference(l)
+
+	return ls.releaseLayer(layer)
+}
+
+func (ls *layerStore) CreateRWLayer(name string, parent ChainID, opts *CreateRWLayerOpts) (RWLayer, error) {
+	var (
+		storageOpt map[string]string
+		initFunc   MountInit
+		mountLabel string
+	)
+
+	if opts != nil {
+		mountLabel = opts.MountLabel
+		storageOpt = opts.StorageOpt
+		initFunc = opts.InitFunc
+	}
+
+	ls.mountL.Lock()
+	defer ls.mountL.Unlock()
+	m, ok := ls.mounts[name]
+	if ok {
+		return nil, ErrMountNameConflict
+	}
+
+	var err error
+	var pid string
+	var p *roLayer
+	if string(parent) != "" {
+		p = ls.get(parent)
+		if p == nil {
+			return nil, ErrLayerDoesNotExist
+		}
+		pid = p.cacheID
+
+		// Release parent chain if error
+		defer func() {
+			if err != nil {
+				ls.layerL.Lock()
+				ls.releaseLayer(p)
+				ls.layerL.Unlock()
+			}
+		}()
+	}
+
+	m = &mountedLayer{
+		name:       name,
+		parent:     p,
+		mountID:    ls.mountID(name),
+		layerStore: ls,
+		references: map[RWLayer]*referencedRWLayer{},
+	}
+
+	if initFunc != nil {
+		pid, err = ls.initMount(m.mountID, pid, mountLabel, initFunc, storageOpt)
+		if err != nil {
+			return nil, err
+		}
+		m.initID = pid
+	}
+
+	createOpts := &graphdriver.CreateOpts{
+		StorageOpt: storageOpt,
+	}
+
+	if err = ls.driver.CreateReadWrite(m.mountID, pid, createOpts); err != nil {
+		return nil, err
+	}
+	if err = ls.saveMount(m); err != nil {
+		return nil, err
+	}
+
+	return m.getReference(), nil
+}
+
+func (ls *layerStore) GetRWLayer(id string) (RWLayer, error) {
+	ls.mountL.Lock()
+	defer ls.mountL.Unlock()
+	mount, ok := ls.mounts[id]
+	if !ok {
+		return nil, ErrMountDoesNotExist
+	}
+
+	return mount.getReference(), nil
+}
+
+func (ls *layerStore) GetMountID(id string) (string, error) {
+	ls.mountL.Lock()
+	defer ls.mountL.Unlock()
+	mount, ok := ls.mounts[id]
+	if !ok {
+		return "", ErrMountDoesNotExist
+	}
+	logrus.Debugf("GetMountID id: %s -> mountID: %s", id, mount.mountID)
+
+	return mount.mountID, nil
+}
+
+func (ls *layerStore) ReleaseRWLayer(l RWLayer) ([]Metadata, error) {
+	ls.mountL.Lock()
+	defer ls.mountL.Unlock()
+	m, ok := ls.mounts[l.Name()]
+	if !ok {
+		return []Metadata{}, nil
+	}
+
+	if err := m.deleteReference(l); err != nil {
+		return nil, err
+	}
+
+	if m.hasReferences() {
+		return []Metadata{}, nil
+	}
+
+	if err := ls.driver.Remove(m.mountID); err != nil {
+		logrus.Errorf("Error removing mounted layer %s: %s", m.name, err)
+		m.retakeReference(l)
+		return nil, err
+	}
+
+	if m.initID != "" {
+		if err := ls.driver.Remove(m.initID); err != nil {
+			logrus.Errorf("Error removing init layer %s: %s", m.name, err)
+			m.retakeReference(l)
+			return nil, err
+		}
+	}
+
+	if err := ls.store.RemoveMount(m.name); err != nil {
+		logrus.Errorf("Error removing mount metadata: %s: %s", m.name, err)
+		m.retakeReference(l)
+		return nil, err
+	}
+
+	delete(ls.mounts, m.Name())
+
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+	if m.parent != nil {
+		return ls.releaseLayer(m.parent)
+	}
+
+	return []Metadata{}, nil
+}
+
+func (ls *layerStore) saveMount(mount *mountedLayer) error {
+	if err := ls.store.SetMountID(mount.name, mount.mountID); err != nil {
+		return err
+	}
+
+	if mount.initID != "" {
+		if err := ls.store.SetInitID(mount.name, mount.initID); err != nil {
+			return err
+		}
+	}
+
+	if mount.parent != nil {
+		if err := ls.store.SetMountParent(mount.name, mount.parent.chainID); err != nil {
+			return err
+		}
+	}
+
+	ls.mounts[mount.name] = mount
+
+	return nil
+}
+
+func (ls *layerStore) initMount(graphID, parent, mountLabel string, initFunc MountInit, storageOpt map[string]string) (string, error) {
+	// Use "<graph-id>-init" to maintain compatibility with graph drivers
+	// which are expecting this layer with this special name. If all
+	// graph drivers can be updated to not rely on knowing about this layer
+	// then the initID should be randomly generated.
+	initID := fmt.Sprintf("%s-init", graphID)
+
+	createOpts := &graphdriver.CreateOpts{
+		MountLabel: mountLabel,
+		StorageOpt: storageOpt,
+	}
+
+	if err := ls.driver.CreateReadWrite(initID, parent, createOpts); err != nil {
+		return "", err
+	}
+	p, err := ls.driver.Get(initID, "")
+	if err != nil {
+		return "", err
+	}
+
+	if err := initFunc(p); err != nil {
+		ls.driver.Put(initID)
+		return "", err
+	}
+
+	if err := ls.driver.Put(initID); err != nil {
+		return "", err
+	}
+
+	return initID, nil
+}
+
+func (ls *layerStore) getTarStream(rl *roLayer) (io.ReadCloser, error) {
+	if !ls.useTarSplit {
+		var parentCacheID string
+		if rl.parent != nil {
+			parentCacheID = rl.parent.cacheID
+		}
+
+		return ls.driver.Diff(rl.cacheID, parentCacheID)
+	}
+
+	r, err := ls.store.TarSplitReader(rl.chainID)
+	if err != nil {
+		return nil, err
+	}
+
+	pr, pw := io.Pipe()
+	go func() {
+		err := ls.assembleTarTo(rl.cacheID, r, nil, pw)
+		if err != nil {
+			pw.CloseWithError(err)
+		} else {
+			pw.Close()
+		}
+	}()
+
+	return pr, nil
+}
+
+func (ls *layerStore) assembleTarTo(graphID string, metadata io.ReadCloser, size *int64, w io.Writer) error {
+	diffDriver, ok := ls.driver.(graphdriver.DiffGetterDriver)
+	if !ok {
+		diffDriver = &naiveDiffPathDriver{ls.driver}
+	}
+
+	defer metadata.Close()
+
+	// get our relative path to the container
+	fileGetCloser, err := diffDriver.DiffGetter(graphID)
+	if err != nil {
+		return err
+	}
+	defer fileGetCloser.Close()
+
+	metaUnpacker := storage.NewJSONUnpacker(metadata)
+	upackerCounter := &unpackSizeCounter{metaUnpacker, size}
+	logrus.Debugf("Assembling tar data for %s", graphID)
+	return asm.WriteOutputTarStream(fileGetCloser, upackerCounter, w)
+}
+
+func (ls *layerStore) Cleanup() error {
+	return ls.driver.Cleanup()
+}
+
+func (ls *layerStore) DriverStatus() [][2]string {
+	return ls.driver.Status()
+}
+
+func (ls *layerStore) DriverName() string {
+	return ls.driver.String()
+}
+
+type naiveDiffPathDriver struct {
+	graphdriver.Driver
+}
+
+type fileGetPutter struct {
+	storage.FileGetter
+	driver graphdriver.Driver
+	id     string
+}
+
+func (w *fileGetPutter) Close() error {
+	return w.driver.Put(w.id)
+}
+
+func (n *naiveDiffPathDriver) DiffGetter(id string) (graphdriver.FileGetCloser, error) {
+	p, err := n.Driver.Get(id, "")
+	if err != nil {
+		return nil, err
+	}
+	return &fileGetPutter{storage.NewPathFileGetter(p.Path()), n.Driver, id}, nil
+}
diff --git a/vendor/github.com/docker/docker/layer/layer_store_windows.go b/vendor/github.com/docker/docker/layer/layer_store_windows.go
new file mode 100644
index 0000000000..eca1f6a83b
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/layer_store_windows.go
@@ -0,0 +1,11 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"io"
+
+	"github.com/docker/distribution"
+)
+
+func (ls *layerStore) RegisterWithDescriptor(ts io.Reader, parent ChainID, descriptor distribution.Descriptor) (Layer, error) {
+	return ls.registerWithDescriptor(ts, parent, descriptor)
+}
diff --git a/vendor/github.com/docker/docker/layer/layer_unix.go b/vendor/github.com/docker/docker/layer/layer_unix.go
new file mode 100644
index 0000000000..002c7ff838
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/layer_unix.go
@@ -0,0 +1,9 @@
+// +build linux freebsd darwin openbsd
+
+package layer // import "github.com/docker/docker/layer"
+
+import "github.com/docker/docker/pkg/stringid"
+
+func (ls *layerStore) mountID(name string) string {
+	return stringid.GenerateRandomID()
+}
diff --git a/vendor/github.com/docker/docker/layer/layer_windows.go b/vendor/github.com/docker/docker/layer/layer_windows.go
new file mode 100644
index 0000000000..25ef26afc1
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/layer_windows.go
@@ -0,0 +1,46 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"errors"
+)
+
+// Getter is an interface to get the path to a layer on the host.
+type Getter interface {
+	// GetLayerPath gets the path for the layer. This is different from Get()
+	// since that returns an interface to account for umountable layers.
+	GetLayerPath(id string) (string, error)
+}
+
+// GetLayerPath returns the path to a layer
+func GetLayerPath(s Store, layer ChainID) (string, error) {
+	ls, ok := s.(*layerStore)
+	if !ok {
+		return "", errors.New("unsupported layer store")
+	}
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+
+	rl, ok := ls.layerMap[layer]
+	if !ok {
+		return "", ErrLayerDoesNotExist
+	}
+
+	if layerGetter, ok := ls.driver.(Getter); ok {
+		return layerGetter.GetLayerPath(rl.cacheID)
+	}
+	path, err := ls.driver.Get(rl.cacheID, "")
+	if err != nil {
+		return "", err
+	}
+
+	if err := ls.driver.Put(rl.cacheID); err != nil {
+		return "", err
+	}
+
+	return path.Path(), nil
+}
+
+func (ls *layerStore) mountID(name string) string {
+	// windows has issues if container ID doesn't match mount ID
+	return name
+}
diff --git a/vendor/github.com/docker/docker/layer/migration.go b/vendor/github.com/docker/docker/layer/migration.go
new file mode 100644
index 0000000000..2668ea96bb
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/migration.go
@@ -0,0 +1,252 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"compress/gzip"
+	"errors"
+	"fmt"
+	"io"
+	"os"
+
+	"github.com/opencontainers/go-digest"
+	"github.com/sirupsen/logrus"
+	"github.com/vbatts/tar-split/tar/asm"
+	"github.com/vbatts/tar-split/tar/storage"
+)
+
+// CreateRWLayerByGraphID creates a RWLayer in the layer store using
+// the provided name with the given graphID. To get the RWLayer
+// after migration the layer may be retrieved by the given name.
+func (ls *layerStore) CreateRWLayerByGraphID(name, graphID string, parent ChainID) (err error) {
+	ls.mountL.Lock()
+	defer ls.mountL.Unlock()
+	m, ok := ls.mounts[name]
+	if ok {
+		if m.parent.chainID != parent {
+			return errors.New("name conflict, mismatched parent")
+		}
+		if m.mountID != graphID {
+			return errors.New("mount already exists")
+		}
+
+		return nil
+	}
+
+	if !ls.driver.Exists(graphID) {
+		return fmt.Errorf("graph ID does not exist: %q", graphID)
+	}
+
+	var p *roLayer
+	if string(parent) != "" {
+		p = ls.get(parent)
+		if p == nil {
+			return ErrLayerDoesNotExist
+		}
+
+		// Release parent chain if error
+		defer func() {
+			if err != nil {
+				ls.layerL.Lock()
+				ls.releaseLayer(p)
+				ls.layerL.Unlock()
+			}
+		}()
+	}
+
+	// TODO: Ensure graphID has correct parent
+
+	m = &mountedLayer{
+		name:       name,
+		parent:     p,
+		mountID:    graphID,
+		layerStore: ls,
+		references: map[RWLayer]*referencedRWLayer{},
+	}
+
+	// Check for existing init layer
+	initID := fmt.Sprintf("%s-init", graphID)
+	if ls.driver.Exists(initID) {
+		m.initID = initID
+	}
+
+	return ls.saveMount(m)
+}
+
+func (ls *layerStore) ChecksumForGraphID(id, parent, oldTarDataPath, newTarDataPath string) (diffID DiffID, size int64, err error) {
+	defer func() {
+		if err != nil {
+			logrus.Debugf("could not get checksum for %q with tar-split: %q", id, err)
+			diffID, size, err = ls.checksumForGraphIDNoTarsplit(id, parent, newTarDataPath)
+		}
+	}()
+
+	if oldTarDataPath == "" {
+		err = errors.New("no tar-split file")
+		return
+	}
+
+	tarDataFile, err := os.Open(oldTarDataPath)
+	if err != nil {
+		return
+	}
+	defer tarDataFile.Close()
+	uncompressed, err := gzip.NewReader(tarDataFile)
+	if err != nil {
+		return
+	}
+
+	dgst := digest.Canonical.Digester()
+	err = ls.assembleTarTo(id, uncompressed, &size, dgst.Hash())
+	if err != nil {
+		return
+	}
+
+	diffID = DiffID(dgst.Digest())
+	err = os.RemoveAll(newTarDataPath)
+	if err != nil {
+		return
+	}
+	err = os.Link(oldTarDataPath, newTarDataPath)
+
+	return
+}
+
+func (ls *layerStore) checksumForGraphIDNoTarsplit(id, parent, newTarDataPath string) (diffID DiffID, size int64, err error) {
+	rawarchive, err := ls.driver.Diff(id, parent)
+	if err != nil {
+		return
+	}
+	defer rawarchive.Close()
+
+	f, err := os.Create(newTarDataPath)
+	if err != nil {
+		return
+	}
+	defer f.Close()
+	mfz := gzip.NewWriter(f)
+	defer mfz.Close()
+	metaPacker := storage.NewJSONPacker(mfz)
+
+	packerCounter := &packSizeCounter{metaPacker, &size}
+
+	archive, err := asm.NewInputTarStream(rawarchive, packerCounter, nil)
+	if err != nil {
+		return
+	}
+	dgst, err := digest.FromReader(archive)
+	if err != nil {
+		return
+	}
+	diffID = DiffID(dgst)
+	return
+}
+
+func (ls *layerStore) RegisterByGraphID(graphID string, parent ChainID, diffID DiffID, tarDataFile string, size int64) (Layer, error) {
+	// err is used to hold the error which will always trigger
+	// cleanup of creates sources but may not be an error returned
+	// to the caller (already exists).
+	var err error
+	var p *roLayer
+	if string(parent) != "" {
+		p = ls.get(parent)
+		if p == nil {
+			return nil, ErrLayerDoesNotExist
+		}
+
+		// Release parent chain if error
+		defer func() {
+			if err != nil {
+				ls.layerL.Lock()
+				ls.releaseLayer(p)
+				ls.layerL.Unlock()
+			}
+		}()
+	}
+
+	// Create new roLayer
+	layer := &roLayer{
+		parent:         p,
+		cacheID:        graphID,
+		referenceCount: 1,
+		layerStore:     ls,
+		references:     map[Layer]struct{}{},
+		diffID:         diffID,
+		size:           size,
+		chainID:        createChainIDFromParent(parent, diffID),
+	}
+
+	ls.layerL.Lock()
+	defer ls.layerL.Unlock()
+
+	if existingLayer := ls.getWithoutLock(layer.chainID); existingLayer != nil {
+		// Set error for cleanup, but do not return
+		err = errors.New("layer already exists")
+		return existingLayer.getReference(), nil
+	}
+
+	tx, err := ls.store.StartTransaction()
+	if err != nil {
+		return nil, err
+	}
+
+	defer func() {
+		if err != nil {
+			logrus.Debugf("Cleaning up transaction after failed migration for %s: %v", graphID, err)
+			if err := tx.Cancel(); err != nil {
+				logrus.Errorf("Error canceling metadata transaction %q: %s", tx.String(), err)
+			}
+		}
+	}()
+
+	tsw, err := tx.TarSplitWriter(false)
+	if err != nil {
+		return nil, err
+	}
+	defer tsw.Close()
+	tdf, err := os.Open(tarDataFile)
+	if err != nil {
+		return nil, err
+	}
+	defer tdf.Close()
+	_, err = io.Copy(tsw, tdf)
+	if err != nil {
+		return nil, err
+	}
+
+	if err = storeLayer(tx, layer); err != nil {
+		return nil, err
+	}
+
+	if err = tx.Commit(layer.chainID); err != nil {
+		return nil, err
+	}
+
+	ls.layerMap[layer.chainID] = layer
+
+	return layer.getReference(), nil
+}
+
+type unpackSizeCounter struct {
+	unpacker storage.Unpacker
+	size     *int64
+}
+
+func (u *unpackSizeCounter) Next() (*storage.Entry, error) {
+	e, err := u.unpacker.Next()
+	if err == nil && u.size != nil {
+		*u.size += e.Size
+	}
+	return e, err
+}
+
+type packSizeCounter struct {
+	packer storage.Packer
+	size   *int64
+}
+
+func (p *packSizeCounter) AddEntry(e storage.Entry) (int, error) {
+	n, err := p.packer.AddEntry(e)
+	if err == nil && p.size != nil {
+		*p.size += e.Size
+	}
+	return n, err
+}
diff --git a/vendor/github.com/docker/docker/layer/mounted_layer.go b/vendor/github.com/docker/docker/layer/mounted_layer.go
new file mode 100644
index 0000000000..d6858c662c
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/mounted_layer.go
@@ -0,0 +1,100 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"io"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/containerfs"
+)
+
+type mountedLayer struct {
+	name       string
+	mountID    string
+	initID     string
+	parent     *roLayer
+	path       string
+	layerStore *layerStore
+
+	references map[RWLayer]*referencedRWLayer
+}
+
+func (ml *mountedLayer) cacheParent() string {
+	if ml.initID != "" {
+		return ml.initID
+	}
+	if ml.parent != nil {
+		return ml.parent.cacheID
+	}
+	return ""
+}
+
+func (ml *mountedLayer) TarStream() (io.ReadCloser, error) {
+	return ml.layerStore.driver.Diff(ml.mountID, ml.cacheParent())
+}
+
+func (ml *mountedLayer) Name() string {
+	return ml.name
+}
+
+func (ml *mountedLayer) Parent() Layer {
+	if ml.parent != nil {
+		return ml.parent
+	}
+
+	// Return a nil interface instead of an interface wrapping a nil
+	// pointer.
+	return nil
+}
+
+func (ml *mountedLayer) Size() (int64, error) {
+	return ml.layerStore.driver.DiffSize(ml.mountID, ml.cacheParent())
+}
+
+func (ml *mountedLayer) Changes() ([]archive.Change, error) {
+	return ml.layerStore.driver.Changes(ml.mountID, ml.cacheParent())
+}
+
+func (ml *mountedLayer) Metadata() (map[string]string, error) {
+	return ml.layerStore.driver.GetMetadata(ml.mountID)
+}
+
+func (ml *mountedLayer) getReference() RWLayer {
+	ref := &referencedRWLayer{
+		mountedLayer: ml,
+	}
+	ml.references[ref] = ref
+
+	return ref
+}
+
+func (ml *mountedLayer) hasReferences() bool {
+	return len(ml.references) > 0
+}
+
+func (ml *mountedLayer) deleteReference(ref RWLayer) error {
+	if _, ok := ml.references[ref]; !ok {
+		return ErrLayerNotRetained
+	}
+	delete(ml.references, ref)
+	return nil
+}
+
+func (ml *mountedLayer) retakeReference(r RWLayer) {
+	if ref, ok := r.(*referencedRWLayer); ok {
+		ml.references[ref] = ref
+	}
+}
+
+type referencedRWLayer struct {
+	*mountedLayer
+}
+
+func (rl *referencedRWLayer) Mount(mountLabel string) (containerfs.ContainerFS, error) {
+	return rl.layerStore.driver.Get(rl.mountedLayer.mountID, mountLabel)
+}
+
+// Unmount decrements the activity count and unmounts the underlying layer
+// Callers should only call `Unmount` once per call to `Mount`, even on error.
+func (rl *referencedRWLayer) Unmount() error {
+	return rl.layerStore.driver.Put(rl.mountedLayer.mountID)
+}
diff --git a/vendor/github.com/docker/docker/layer/ro_layer.go b/vendor/github.com/docker/docker/layer/ro_layer.go
new file mode 100644
index 0000000000..bc0fe1dddf
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/ro_layer.go
@@ -0,0 +1,178 @@
+package layer // import "github.com/docker/docker/layer"
+
+import (
+	"fmt"
+	"io"
+
+	"github.com/docker/distribution"
+	"github.com/opencontainers/go-digest"
+)
+
+type roLayer struct {
+	chainID    ChainID
+	diffID     DiffID
+	parent     *roLayer
+	cacheID    string
+	size       int64
+	layerStore *layerStore
+	descriptor distribution.Descriptor
+
+	referenceCount int
+	references     map[Layer]struct{}
+}
+
+// TarStream for roLayer guarantees that the data that is produced is the exact
+// data that the layer was registered with.
+func (rl *roLayer) TarStream() (io.ReadCloser, error) {
+	rc, err := rl.layerStore.getTarStream(rl)
+	if err != nil {
+		return nil, err
+	}
+
+	vrc, err := newVerifiedReadCloser(rc, digest.Digest(rl.diffID))
+	if err != nil {
+		return nil, err
+	}
+	return vrc, nil
+}
+
+// TarStreamFrom does not make any guarantees to the correctness of the produced
+// data. As such it should not be used when the layer content must be verified
+// to be an exact match to the registered layer.
+func (rl *roLayer) TarStreamFrom(parent ChainID) (io.ReadCloser, error) {
+	var parentCacheID string
+	for pl := rl.parent; pl != nil; pl = pl.parent {
+		if pl.chainID == parent {
+			parentCacheID = pl.cacheID
+			break
+		}
+	}
+
+	if parent != ChainID("") && parentCacheID == "" {
+		return nil, fmt.Errorf("layer ID '%s' is not a parent of the specified layer: cannot provide diff to non-parent", parent)
+	}
+	return rl.layerStore.driver.Diff(rl.cacheID, parentCacheID)
+}
+
+func (rl *roLayer) ChainID() ChainID {
+	return rl.chainID
+}
+
+func (rl *roLayer) DiffID() DiffID {
+	return rl.diffID
+}
+
+func (rl *roLayer) Parent() Layer {
+	if rl.parent == nil {
+		return nil
+	}
+	return rl.parent
+}
+
+func (rl *roLayer) Size() (size int64, err error) {
+	if rl.parent != nil {
+		size, err = rl.parent.Size()
+		if err != nil {
+			return
+		}
+	}
+
+	return size + rl.size, nil
+}
+
+func (rl *roLayer) DiffSize() (size int64, err error) {
+	return rl.size, nil
+}
+
+func (rl *roLayer) Metadata() (map[string]string, error) {
+	return rl.layerStore.driver.GetMetadata(rl.cacheID)
+}
+
+type referencedCacheLayer struct {
+	*roLayer
+}
+
+func (rl *roLayer) getReference() Layer {
+	ref := &referencedCacheLayer{
+		roLayer: rl,
+	}
+	rl.references[ref] = struct{}{}
+
+	return ref
+}
+
+func (rl *roLayer) hasReference(ref Layer) bool {
+	_, ok := rl.references[ref]
+	return ok
+}
+
+func (rl *roLayer) hasReferences() bool {
+	return len(rl.references) > 0
+}
+
+func (rl *roLayer) deleteReference(ref Layer) {
+	delete(rl.references, ref)
+}
+
+func (rl *roLayer) depth() int {
+	if rl.parent == nil {
+		return 1
+	}
+	return rl.parent.depth() + 1
+}
+
+func storeLayer(tx *fileMetadataTransaction, layer *roLayer) error {
+	if err := tx.SetDiffID(layer.diffID); err != nil {
+		return err
+	}
+	if err := tx.SetSize(layer.size); err != nil {
+		return err
+	}
+	if err := tx.SetCacheID(layer.cacheID); err != nil {
+		return err
+	}
+	// Do not store empty descriptors
+	if layer.descriptor.Digest != "" {
+		if err := tx.SetDescriptor(layer.descriptor); err != nil {
+			return err
+		}
+	}
+	if layer.parent != nil {
+		if err := tx.SetParent(layer.parent.chainID); err != nil {
+			return err
+		}
+	}
+	return tx.setOS(layer.layerStore.os)
+}
+
+func newVerifiedReadCloser(rc io.ReadCloser, dgst digest.Digest) (io.ReadCloser, error) {
+	return &verifiedReadCloser{
+		rc:       rc,
+		dgst:     dgst,
+		verifier: dgst.Verifier(),
+	}, nil
+}
+
+type verifiedReadCloser struct {
+	rc       io.ReadCloser
+	dgst     digest.Digest
+	verifier digest.Verifier
+}
+
+func (vrc *verifiedReadCloser) Read(p []byte) (n int, err error) {
+	n, err = vrc.rc.Read(p)
+	if n > 0 {
+		if n, err := vrc.verifier.Write(p[:n]); err != nil {
+			return n, err
+		}
+	}
+	if err == io.EOF {
+		if !vrc.verifier.Verified() {
+			err = fmt.Errorf("could not verify layer data for: %s. This may be because internal files in the layer store were modified. Re-pulling or rebuilding this image may resolve the issue", vrc.dgst)
+		}
+	}
+	return
+}
+func (vrc *verifiedReadCloser) Close() error {
+	return vrc.rc.Close()
+}
diff --git a/vendor/github.com/docker/docker/layer/ro_layer_windows.go b/vendor/github.com/docker/docker/layer/ro_layer_windows.go
new file mode 100644
index 0000000000..a4f0c8088e
--- /dev/null
+++ b/vendor/github.com/docker/docker/layer/ro_layer_windows.go
@@ -0,0 +1,9 @@
+package layer // import "github.com/docker/docker/layer"
+
+import "github.com/docker/distribution"
+
+var _ distribution.Describable = &roLayer{}
+
+func (rl *roLayer) Descriptor() distribution.Descriptor {
+	return rl.descriptor
+}
diff --git a/vendor/github.com/docker/docker/oci/defaults.go b/vendor/github.com/docker/docker/oci/defaults.go
new file mode 100644
index 0000000000..4145412dd4
--- /dev/null
+++ b/vendor/github.com/docker/docker/oci/defaults.go
@@ -0,0 +1,211 @@
+package oci // import "github.com/docker/docker/oci"
+
+import (
+	"os"
+	"runtime"
+
+	"github.com/opencontainers/runtime-spec/specs-go"
+)
+
+func iPtr(i int64) *int64        { return &i }
+func u32Ptr(i int64) *uint32     { u := uint32(i); return &u }
+func fmPtr(i int64) *os.FileMode { fm := os.FileMode(i); return &fm }
+
+func defaultCapabilities() []string {
+	return []string{
+		"CAP_CHOWN",
+		"CAP_DAC_OVERRIDE",
+		"CAP_FSETID",
+		"CAP_FOWNER",
+		"CAP_MKNOD",
+		"CAP_NET_RAW",
+		"CAP_SETGID",
+		"CAP_SETUID",
+		"CAP_SETFCAP",
+		"CAP_SETPCAP",
+		"CAP_NET_BIND_SERVICE",
+		"CAP_SYS_CHROOT",
+		"CAP_KILL",
+		"CAP_AUDIT_WRITE",
+	}
+}
+
+// DefaultSpec returns the default spec used by docker for the current Platform
+func DefaultSpec() specs.Spec {
+	return DefaultOSSpec(runtime.GOOS)
+}
+
+// DefaultOSSpec returns the spec for a given OS
+func DefaultOSSpec(osName string) specs.Spec {
+	if osName == "windows" {
+		return DefaultWindowsSpec()
+	}
+	return DefaultLinuxSpec()
+}
+
+// DefaultWindowsSpec create a default spec for running Windows containers
+func DefaultWindowsSpec() specs.Spec {
+	return specs.Spec{
+		Version: specs.Version,
+		Windows: &specs.Windows{},
+		Process: &specs.Process{},
+		Root:    &specs.Root{},
+	}
+}
+
+// DefaultLinuxSpec create a default spec for running Linux containers
+func DefaultLinuxSpec() specs.Spec {
+	s := specs.Spec{
+		Version: specs.Version,
+		Process: &specs.Process{
+			Capabilities: &specs.LinuxCapabilities{
+				Bounding:    defaultCapabilities(),
+				Permitted:   defaultCapabilities(),
+				Inheritable: defaultCapabilities(),
+				Effective:   defaultCapabilities(),
+			},
+		},
+		Root: &specs.Root{},
+	}
+	s.Mounts = []specs.Mount{
+		{
+			Destination: "/proc",
+			Type:        "proc",
+			Source:      "proc",
+			Options:     []string{"nosuid", "noexec", "nodev"},
+		},
+		{
+			Destination: "/dev",
+			Type:        "tmpfs",
+			Source:      "tmpfs",
+			Options:     []string{"nosuid", "strictatime", "mode=755", "size=65536k"},
+		},
+		{
+			Destination: "/dev/pts",
+			Type:        "devpts",
+			Source:      "devpts",
+			Options:     []string{"nosuid", "noexec", "newinstance", "ptmxmode=0666", "mode=0620", "gid=5"},
+		},
+		{
+			Destination: "/sys",
+			Type:        "sysfs",
+			Source:      "sysfs",
+			Options:     []string{"nosuid", "noexec", "nodev", "ro"},
+		},
+		{
+			Destination: "/sys/fs/cgroup",
+			Type:        "cgroup",
+			Source:      "cgroup",
+			Options:     []string{"ro", "nosuid", "noexec", "nodev"},
+		},
+		{
+			Destination: "/dev/mqueue",
+			Type:        "mqueue",
+			Source:      "mqueue",
+			Options:     []string{"nosuid", "noexec", "nodev"},
+		},
+		{
+			Destination: "/dev/shm",
+			Type:        "tmpfs",
+			Source:      "shm",
+			Options:     []string{"nosuid", "noexec", "nodev", "mode=1777"},
+		},
+	}
+
+	s.Linux = &specs.Linux{
+		MaskedPaths: []string{
+			"/proc/kcore",
+			"/proc/keys",
+			"/proc/latency_stats",
+			"/proc/timer_list",
+			"/proc/timer_stats",
+			"/proc/sched_debug",
+			"/proc/scsi",
+			"/sys/firmware",
+		},
+		ReadonlyPaths: []string{
+			"/proc/asound",
+			"/proc/bus",
+			"/proc/fs",
+			"/proc/irq",
+			"/proc/sys",
+			"/proc/sysrq-trigger",
+		},
+		Namespaces: []specs.LinuxNamespace{
+			{Type: "mount"},
+			{Type: "network"},
+			{Type: "uts"},
+			{Type: "pid"},
+			{Type: "ipc"},
+		},
+		// Devices implicitly contains the following devices:
+		// null, zero, full, random, urandom, tty, console, and ptmx.
+		// ptmx is a bind mount or symlink of the container's ptmx.
+		// See also: https://github.com/opencontainers/runtime-spec/blob/master/config-linux.md#default-devices
+		Devices: []specs.LinuxDevice{},
+		Resources: &specs.LinuxResources{
+			Devices: []specs.LinuxDeviceCgroup{
+				{
+					Allow:  false,
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(1),
+					Minor:  iPtr(5),
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(1),
+					Minor:  iPtr(3),
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(1),
+					Minor:  iPtr(9),
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(1),
+					Minor:  iPtr(8),
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(5),
+					Minor:  iPtr(0),
+					Access: "rwm",
+				},
+				{
+					Allow:  true,
+					Type:   "c",
+					Major:  iPtr(5),
+					Minor:  iPtr(1),
+					Access: "rwm",
+				},
+				{
+					Allow:  false,
+					Type:   "c",
+					Major:  iPtr(10),
+					Minor:  iPtr(229),
+					Access: "rwm",
+				},
+			},
+		},
+	}
+
+	// For LCOW support, populate a blank Windows spec
+	if runtime.GOOS == "windows" {
+		s.Windows = &specs.Windows{}
+	}
+
+	return s
+}
diff --git a/vendor/github.com/docker/docker/oci/devices_linux.go b/vendor/github.com/docker/docker/oci/devices_linux.go
new file mode 100644
index 0000000000..7f1658e53c
--- /dev/null
+++ b/vendor/github.com/docker/docker/oci/devices_linux.go
@@ -0,0 +1,86 @@
+package oci // import "github.com/docker/docker/oci"
+
+import (
+	"fmt"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/opencontainers/runc/libcontainer/configs"
+	"github.com/opencontainers/runc/libcontainer/devices"
+	specs "github.com/opencontainers/runtime-spec/specs-go"
+)
+
+// Device transforms a libcontainer configs.Device to a specs.LinuxDevice object.
+func Device(d *configs.Device) specs.LinuxDevice {
+	return specs.LinuxDevice{
+		Type:     string(d.Type),
+		Path:     d.Path,
+		Major:    d.Major,
+		Minor:    d.Minor,
+		FileMode: fmPtr(int64(d.FileMode)),
+		UID:      u32Ptr(int64(d.Uid)),
+		GID:      u32Ptr(int64(d.Gid)),
+	}
+}
+
+func deviceCgroup(d *configs.Device) specs.LinuxDeviceCgroup {
+	t := string(d.Type)
+	return specs.LinuxDeviceCgroup{
+		Allow:  true,
+		Type:   t,
+		Major:  &d.Major,
+		Minor:  &d.Minor,
+		Access: d.Permissions,
+	}
+}
+
+// DevicesFromPath computes a list of devices and device permissions from paths (pathOnHost and pathInContainer) and cgroup permissions.
+func DevicesFromPath(pathOnHost, pathInContainer, cgroupPermissions string) (devs []specs.LinuxDevice, devPermissions []specs.LinuxDeviceCgroup, err error) {
+	resolvedPathOnHost := pathOnHost
+
+	// check if it is a symbolic link
+	if src, e := os.Lstat(pathOnHost); e == nil && src.Mode()&os.ModeSymlink == os.ModeSymlink {
+		if linkedPathOnHost, e := filepath.EvalSymlinks(pathOnHost); e == nil {
+			resolvedPathOnHost = linkedPathOnHost
+		}
+	}
+
+	device, err := devices.DeviceFromPath(resolvedPathOnHost, cgroupPermissions)
+	// if there was no error, return the device
+	if err == nil {
+		device.Path = pathInContainer
+		return append(devs, Device(device)), append(devPermissions, deviceCgroup(device)), nil
+	}
+
+	// if the device is not a device node
+	// try to see if it's a directory holding many devices
+	if err == devices.ErrNotADevice {
+
+		// check if it is a directory
+		if src, e := os.Stat(resolvedPathOnHost); e == nil && src.IsDir() {
+
+			// mount the internal devices recursively
+			filepath.Walk(resolvedPathOnHost, func(dpath string, f os.FileInfo, e error) error {
+				childDevice, e := devices.DeviceFromPath(dpath, cgroupPermissions)
+				if e != nil {
+					// ignore the device
+					return nil
+				}
+
+				// add the device to userSpecified devices
+				childDevice.Path = strings.Replace(dpath, resolvedPathOnHost, pathInContainer, 1)
+				devs = append(devs, Device(childDevice))
+				devPermissions = append(devPermissions, deviceCgroup(childDevice))
+
+				return nil
+			})
+		}
+	}
+
+	if len(devs) > 0 {
+		return devs, devPermissions, nil
+	}
+
+	return devs, devPermissions, fmt.Errorf("error gathering device information while adding custom device %q: %s", pathOnHost, err)
+}
diff --git a/vendor/github.com/docker/docker/oci/devices_unsupported.go b/vendor/github.com/docker/docker/oci/devices_unsupported.go
new file mode 100644
index 0000000000..af6dd3bda2
--- /dev/null
+++ b/vendor/github.com/docker/docker/oci/devices_unsupported.go
@@ -0,0 +1,20 @@
+// +build !linux
+
+package oci // import "github.com/docker/docker/oci"
+
+import (
+	"errors"
+
+	"github.com/opencontainers/runc/libcontainer/configs"
+	specs "github.com/opencontainers/runtime-spec/specs-go"
+)
+
+// Device transforms a libcontainer configs.Device to a specs.Device object.
+// Not implemented
+func Device(d *configs.Device) specs.LinuxDevice { return specs.LinuxDevice{} }
+
+// DevicesFromPath computes a list of devices and device permissions from paths (pathOnHost and pathInContainer) and cgroup permissions.
+// Not implemented
+func DevicesFromPath(pathOnHost, pathInContainer, cgroupPermissions string) (devs []specs.LinuxDevice, devPermissions []specs.LinuxDeviceCgroup, err error) {
+	return nil, nil, errors.New("oci/devices: unsupported platform")
+}
diff --git a/vendor/github.com/docker/docker/oci/namespaces.go b/vendor/github.com/docker/docker/oci/namespaces.go
new file mode 100644
index 0000000000..f32e489b4a
--- /dev/null
+++ b/vendor/github.com/docker/docker/oci/namespaces.go
@@ -0,0 +1,13 @@
+package oci // import "github.com/docker/docker/oci"
+
+import specs "github.com/opencontainers/runtime-spec/specs-go"
+
+// RemoveNamespace removes the `nsType` namespace from OCI spec `s`
+func RemoveNamespace(s *specs.Spec, nsType specs.LinuxNamespaceType) {
+	for i, n := range s.Linux.Namespaces {
+		if n.Type == nsType {
+			s.Linux.Namespaces = append(s.Linux.Namespaces[:i], s.Linux.Namespaces[i+1:]...)
+			return
+		}
+	}
+}
diff --git a/vendor/github.com/docker/docker/opts/address_pools.go b/vendor/github.com/docker/docker/opts/address_pools.go
new file mode 100644
index 0000000000..99c89bb626
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/address_pools.go
@@ -0,0 +1,84 @@
+package opts
+
+import (
+	"encoding/csv"
+	"encoding/json"
+	"fmt"
+	"strconv"
+	"strings"
+
+	types "github.com/docker/libnetwork/ipamutils"
+)
+
+// PoolsOpt is a Value type for parsing the default address pools definitions
+type PoolsOpt struct {
+	values []*types.NetworkToSplit
+}
+
+// UnmarshalJSON fills values structure  info from JSON input
+func (p *PoolsOpt) UnmarshalJSON(raw []byte) error {
+	return json.Unmarshal(raw, &(p.values))
+}
+
+// Set predefined pools
+func (p *PoolsOpt) Set(value string) error {
+	csvReader := csv.NewReader(strings.NewReader(value))
+	fields, err := csvReader.Read()
+	if err != nil {
+		return err
+	}
+
+	poolsDef := types.NetworkToSplit{}
+
+	for _, field := range fields {
+		parts := strings.SplitN(field, "=", 2)
+		if len(parts) != 2 {
+			return fmt.Errorf("invalid field '%s' must be a key=value pair", field)
+		}
+
+		key := strings.ToLower(parts[0])
+		value := strings.ToLower(parts[1])
+
+		switch key {
+		case "base":
+			poolsDef.Base = value
+		case "size":
+			size, err := strconv.Atoi(value)
+			if err != nil {
+				return fmt.Errorf("invalid size value: %q (must be integer): %v", value, err)
+			}
+			poolsDef.Size = size
+		default:
+			return fmt.Errorf("unexpected key '%s' in '%s'", key, field)
+		}
+	}
+
+	p.values = append(p.values, &poolsDef)
+
+	return nil
+}
+
+// Type returns the type of this option
+func (p *PoolsOpt) Type() string {
+	return "pool-options"
+}
+
+// String returns a string repr of this option
+func (p *PoolsOpt) String() string {
+	pools := []string{}
+	for _, pool := range p.values {
+		repr := fmt.Sprintf("%s %d", pool.Base, pool.Size)
+		pools = append(pools, repr)
+	}
+	return strings.Join(pools, ", ")
+}
+
+// Value returns the mounts
+func (p *PoolsOpt) Value() []*types.NetworkToSplit {
+	return p.values
+}
+
+// Name returns the flag name of this option
+func (p *PoolsOpt) Name() string {
+	return "default-address-pools"
+}
diff --git a/vendor/github.com/docker/docker/opts/env.go b/vendor/github.com/docker/docker/opts/env.go
new file mode 100644
index 0000000000..f6e5e9074d
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/env.go
@@ -0,0 +1,48 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+	"os"
+	"runtime"
+	"strings"
+
+	"github.com/pkg/errors"
+)
+
+// ValidateEnv validates an environment variable and returns it.
+// If no value is specified, it returns the current value using os.Getenv.
+//
+// As on ParseEnvFile and related to #16585, environment variable names
+// are not validate what so ever, it's up to application inside docker
+// to validate them or not.
+//
+// The only validation here is to check if name is empty, per #25099
+func ValidateEnv(val string) (string, error) {
+	arr := strings.Split(val, "=")
+	if arr[0] == "" {
+		return "", errors.Errorf("invalid environment variable: %s", val)
+	}
+	if len(arr) > 1 {
+		return val, nil
+	}
+	if !doesEnvExist(val) {
+		return val, nil
+	}
+	return fmt.Sprintf("%s=%s", val, os.Getenv(val)), nil
+}
+
+func doesEnvExist(name string) bool {
+	for _, entry := range os.Environ() {
+		parts := strings.SplitN(entry, "=", 2)
+		if runtime.GOOS == "windows" {
+			// Environment variable are case-insensitive on Windows. PaTh, path and PATH are equivalent.
+			if strings.EqualFold(parts[0], name) {
+				return true
+			}
+		}
+		if parts[0] == name {
+			return true
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/docker/opts/hosts.go b/vendor/github.com/docker/docker/opts/hosts.go
new file mode 100644
index 0000000000..2adf4211d5
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/hosts.go
@@ -0,0 +1,165 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+	"net"
+	"net/url"
+	"strconv"
+	"strings"
+)
+
+var (
+	// DefaultHTTPPort Default HTTP Port used if only the protocol is provided to -H flag e.g. dockerd -H tcp://
+	// These are the IANA registered port numbers for use with Docker
+	// see http://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=docker
+	DefaultHTTPPort = 2375 // Default HTTP Port
+	// DefaultTLSHTTPPort Default HTTP Port used when TLS enabled
+	DefaultTLSHTTPPort = 2376 // Default TLS encrypted HTTP Port
+	// DefaultUnixSocket Path for the unix socket.
+	// Docker daemon by default always listens on the default unix socket
+	DefaultUnixSocket = "/var/run/docker.sock"
+	// DefaultTCPHost constant defines the default host string used by docker on Windows
+	DefaultTCPHost = fmt.Sprintf("tcp://%s:%d", DefaultHTTPHost, DefaultHTTPPort)
+	// DefaultTLSHost constant defines the default host string used by docker for TLS sockets
+	DefaultTLSHost = fmt.Sprintf("tcp://%s:%d", DefaultHTTPHost, DefaultTLSHTTPPort)
+	// DefaultNamedPipe defines the default named pipe used by docker on Windows
+	DefaultNamedPipe = `//./pipe/docker_engine`
+)
+
+// ValidateHost validates that the specified string is a valid host and returns it.
+func ValidateHost(val string) (string, error) {
+	host := strings.TrimSpace(val)
+	// The empty string means default and is not handled by parseDaemonHost
+	if host != "" {
+		_, err := parseDaemonHost(host)
+		if err != nil {
+			return val, err
+		}
+	}
+	// Note: unlike most flag validators, we don't return the mutated value here
+	//       we need to know what the user entered later (using ParseHost) to adjust for TLS
+	return val, nil
+}
+
+// ParseHost and set defaults for a Daemon host string
+func ParseHost(defaultToTLS bool, val string) (string, error) {
+	host := strings.TrimSpace(val)
+	if host == "" {
+		if defaultToTLS {
+			host = DefaultTLSHost
+		} else {
+			host = DefaultHost
+		}
+	} else {
+		var err error
+		host, err = parseDaemonHost(host)
+		if err != nil {
+			return val, err
+		}
+	}
+	return host, nil
+}
+
+// parseDaemonHost parses the specified address and returns an address that will be used as the host.
+// Depending of the address specified, this may return one of the global Default* strings defined in hosts.go.
+func parseDaemonHost(addr string) (string, error) {
+	addrParts := strings.SplitN(addr, "://", 2)
+	if len(addrParts) == 1 && addrParts[0] != "" {
+		addrParts = []string{"tcp", addrParts[0]}
+	}
+
+	switch addrParts[0] {
+	case "tcp":
+		return ParseTCPAddr(addrParts[1], DefaultTCPHost)
+	case "unix":
+		return parseSimpleProtoAddr("unix", addrParts[1], DefaultUnixSocket)
+	case "npipe":
+		return parseSimpleProtoAddr("npipe", addrParts[1], DefaultNamedPipe)
+	case "fd":
+		return addr, nil
+	default:
+		return "", fmt.Errorf("Invalid bind address format: %s", addr)
+	}
+}
+
+// parseSimpleProtoAddr parses and validates that the specified address is a valid
+// socket address for simple protocols like unix and npipe. It returns a formatted
+// socket address, either using the address parsed from addr, or the contents of
+// defaultAddr if addr is a blank string.
+func parseSimpleProtoAddr(proto, addr, defaultAddr string) (string, error) {
+	addr = strings.TrimPrefix(addr, proto+"://")
+	if strings.Contains(addr, "://") {
+		return "", fmt.Errorf("Invalid proto, expected %s: %s", proto, addr)
+	}
+	if addr == "" {
+		addr = defaultAddr
+	}
+	return fmt.Sprintf("%s://%s", proto, addr), nil
+}
+
+// ParseTCPAddr parses and validates that the specified address is a valid TCP
+// address. It returns a formatted TCP address, either using the address parsed
+// from tryAddr, or the contents of defaultAddr if tryAddr is a blank string.
+// tryAddr is expected to have already been Trim()'d
+// defaultAddr must be in the full `tcp://host:port` form
+func ParseTCPAddr(tryAddr string, defaultAddr string) (string, error) {
+	if tryAddr == "" || tryAddr == "tcp://" {
+		return defaultAddr, nil
+	}
+	addr := strings.TrimPrefix(tryAddr, "tcp://")
+	if strings.Contains(addr, "://") || addr == "" {
+		return "", fmt.Errorf("Invalid proto, expected tcp: %s", tryAddr)
+	}
+
+	defaultAddr = strings.TrimPrefix(defaultAddr, "tcp://")
+	defaultHost, defaultPort, err := net.SplitHostPort(defaultAddr)
+	if err != nil {
+		return "", err
+	}
+	// url.Parse fails for trailing colon on IPv6 brackets on Go 1.5, but
+	// not 1.4. See https://github.com/golang/go/issues/12200 and
+	// https://github.com/golang/go/issues/6530.
+	if strings.HasSuffix(addr, "]:") {
+		addr += defaultPort
+	}
+
+	u, err := url.Parse("tcp://" + addr)
+	if err != nil {
+		return "", err
+	}
+	host, port, err := net.SplitHostPort(u.Host)
+	if err != nil {
+		// try port addition once
+		host, port, err = net.SplitHostPort(net.JoinHostPort(u.Host, defaultPort))
+	}
+	if err != nil {
+		return "", fmt.Errorf("Invalid bind address format: %s", tryAddr)
+	}
+
+	if host == "" {
+		host = defaultHost
+	}
+	if port == "" {
+		port = defaultPort
+	}
+	p, err := strconv.Atoi(port)
+	if err != nil && p == 0 {
+		return "", fmt.Errorf("Invalid bind address format: %s", tryAddr)
+	}
+
+	return fmt.Sprintf("tcp://%s%s", net.JoinHostPort(host, port), u.Path), nil
+}
+
+// ValidateExtraHost validates that the specified string is a valid extrahost and returns it.
+// ExtraHost is in the form of name:ip where the ip has to be a valid ip (IPv4 or IPv6).
+func ValidateExtraHost(val string) (string, error) {
+	// allow for IPv6 addresses in extra hosts by only splitting on first ":"
+	arr := strings.SplitN(val, ":", 2)
+	if len(arr) != 2 || len(arr[0]) == 0 {
+		return "", fmt.Errorf("bad format for add-host: %q", val)
+	}
+	if _, err := ValidateIPAddress(arr[1]); err != nil {
+		return "", fmt.Errorf("invalid IP address in add-host: %q", arr[1])
+	}
+	return val, nil
+}
diff --git a/vendor/github.com/docker/docker/opts/hosts_unix.go b/vendor/github.com/docker/docker/opts/hosts_unix.go
new file mode 100644
index 0000000000..9d5bb64565
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/hosts_unix.go
@@ -0,0 +1,8 @@
+// +build !windows
+
+package opts // import "github.com/docker/docker/opts"
+
+import "fmt"
+
+// DefaultHost constant defines the default host string used by docker on other hosts than Windows
+var DefaultHost = fmt.Sprintf("unix://%s", DefaultUnixSocket)
diff --git a/vendor/github.com/docker/docker/opts/hosts_windows.go b/vendor/github.com/docker/docker/opts/hosts_windows.go
new file mode 100644
index 0000000000..906eba53ee
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/hosts_windows.go
@@ -0,0 +1,4 @@
+package opts // import "github.com/docker/docker/opts"
+
+// DefaultHost constant defines the default host string used by docker on Windows
+var DefaultHost = "npipe://" + DefaultNamedPipe
diff --git a/vendor/github.com/docker/docker/opts/ip.go b/vendor/github.com/docker/docker/opts/ip.go
new file mode 100644
index 0000000000..cfbff3a9fd
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/ip.go
@@ -0,0 +1,47 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+	"net"
+)
+
+// IPOpt holds an IP. It is used to store values from CLI flags.
+type IPOpt struct {
+	*net.IP
+}
+
+// NewIPOpt creates a new IPOpt from a reference net.IP and a
+// string representation of an IP. If the string is not a valid
+// IP it will fallback to the specified reference.
+func NewIPOpt(ref *net.IP, defaultVal string) *IPOpt {
+	o := &IPOpt{
+		IP: ref,
+	}
+	o.Set(defaultVal)
+	return o
+}
+
+// Set sets an IPv4 or IPv6 address from a given string. If the given
+// string is not parsable as an IP address it returns an error.
+func (o *IPOpt) Set(val string) error {
+	ip := net.ParseIP(val)
+	if ip == nil {
+		return fmt.Errorf("%s is not an ip address", val)
+	}
+	*o.IP = ip
+	return nil
+}
+
+// String returns the IP address stored in the IPOpt. If stored IP is a
+// nil pointer, it returns an empty string.
+func (o *IPOpt) String() string {
+	if *o.IP == nil {
+		return ""
+	}
+	return o.IP.String()
+}
+
+// Type returns the type of the option
+func (o *IPOpt) Type() string {
+	return "ip"
+}
diff --git a/vendor/github.com/docker/docker/opts/opts.go b/vendor/github.com/docker/docker/opts/opts.go
new file mode 100644
index 0000000000..bfdcb996b0
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/opts.go
@@ -0,0 +1,337 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+	"net"
+	"path"
+	"regexp"
+	"strings"
+
+	units "github.com/docker/go-units"
+)
+
+var (
+	alphaRegexp  = regexp.MustCompile(`[a-zA-Z]`)
+	domainRegexp = regexp.MustCompile(`^(:?(:?[a-zA-Z0-9]|(:?[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9]))(:?\.(:?[a-zA-Z0-9]|(:?[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])))*)\.?\s*$`)
+)
+
+// ListOpts holds a list of values and a validation function.
+type ListOpts struct {
+	values    *[]string
+	validator ValidatorFctType
+}
+
+// NewListOpts creates a new ListOpts with the specified validator.
+func NewListOpts(validator ValidatorFctType) ListOpts {
+	var values []string
+	return *NewListOptsRef(&values, validator)
+}
+
+// NewListOptsRef creates a new ListOpts with the specified values and validator.
+func NewListOptsRef(values *[]string, validator ValidatorFctType) *ListOpts {
+	return &ListOpts{
+		values:    values,
+		validator: validator,
+	}
+}
+
+func (opts *ListOpts) String() string {
+	if len(*opts.values) == 0 {
+		return ""
+	}
+	return fmt.Sprintf("%v", *opts.values)
+}
+
+// Set validates if needed the input value and adds it to the
+// internal slice.
+func (opts *ListOpts) Set(value string) error {
+	if opts.validator != nil {
+		v, err := opts.validator(value)
+		if err != nil {
+			return err
+		}
+		value = v
+	}
+	(*opts.values) = append((*opts.values), value)
+	return nil
+}
+
+// Delete removes the specified element from the slice.
+func (opts *ListOpts) Delete(key string) {
+	for i, k := range *opts.values {
+		if k == key {
+			(*opts.values) = append((*opts.values)[:i], (*opts.values)[i+1:]...)
+			return
+		}
+	}
+}
+
+// GetMap returns the content of values in a map in order to avoid
+// duplicates.
+func (opts *ListOpts) GetMap() map[string]struct{} {
+	ret := make(map[string]struct{})
+	for _, k := range *opts.values {
+		ret[k] = struct{}{}
+	}
+	return ret
+}
+
+// GetAll returns the values of slice.
+func (opts *ListOpts) GetAll() []string {
+	return (*opts.values)
+}
+
+// GetAllOrEmpty returns the values of the slice
+// or an empty slice when there are no values.
+func (opts *ListOpts) GetAllOrEmpty() []string {
+	v := *opts.values
+	if v == nil {
+		return make([]string, 0)
+	}
+	return v
+}
+
+// Get checks the existence of the specified key.
+func (opts *ListOpts) Get(key string) bool {
+	for _, k := range *opts.values {
+		if k == key {
+			return true
+		}
+	}
+	return false
+}
+
+// Len returns the amount of element in the slice.
+func (opts *ListOpts) Len() int {
+	return len((*opts.values))
+}
+
+// Type returns a string name for this Option type
+func (opts *ListOpts) Type() string {
+	return "list"
+}
+
+// WithValidator returns the ListOpts with validator set.
+func (opts *ListOpts) WithValidator(validator ValidatorFctType) *ListOpts {
+	opts.validator = validator
+	return opts
+}
+
+// NamedOption is an interface that list and map options
+// with names implement.
+type NamedOption interface {
+	Name() string
+}
+
+// NamedListOpts is a ListOpts with a configuration name.
+// This struct is useful to keep reference to the assigned
+// field name in the internal configuration struct.
+type NamedListOpts struct {
+	name string
+	ListOpts
+}
+
+var _ NamedOption = &NamedListOpts{}
+
+// NewNamedListOptsRef creates a reference to a new NamedListOpts struct.
+func NewNamedListOptsRef(name string, values *[]string, validator ValidatorFctType) *NamedListOpts {
+	return &NamedListOpts{
+		name:     name,
+		ListOpts: *NewListOptsRef(values, validator),
+	}
+}
+
+// Name returns the name of the NamedListOpts in the configuration.
+func (o *NamedListOpts) Name() string {
+	return o.name
+}
+
+// MapOpts holds a map of values and a validation function.
+type MapOpts struct {
+	values    map[string]string
+	validator ValidatorFctType
+}
+
+// Set validates if needed the input value and add it to the
+// internal map, by splitting on '='.
+func (opts *MapOpts) Set(value string) error {
+	if opts.validator != nil {
+		v, err := opts.validator(value)
+		if err != nil {
+			return err
+		}
+		value = v
+	}
+	vals := strings.SplitN(value, "=", 2)
+	if len(vals) == 1 {
+		(opts.values)[vals[0]] = ""
+	} else {
+		(opts.values)[vals[0]] = vals[1]
+	}
+	return nil
+}
+
+// GetAll returns the values of MapOpts as a map.
+func (opts *MapOpts) GetAll() map[string]string {
+	return opts.values
+}
+
+func (opts *MapOpts) String() string {
+	return fmt.Sprintf("%v", opts.values)
+}
+
+// Type returns a string name for this Option type
+func (opts *MapOpts) Type() string {
+	return "map"
+}
+
+// NewMapOpts creates a new MapOpts with the specified map of values and a validator.
+func NewMapOpts(values map[string]string, validator ValidatorFctType) *MapOpts {
+	if values == nil {
+		values = make(map[string]string)
+	}
+	return &MapOpts{
+		values:    values,
+		validator: validator,
+	}
+}
+
+// NamedMapOpts is a MapOpts struct with a configuration name.
+// This struct is useful to keep reference to the assigned
+// field name in the internal configuration struct.
+type NamedMapOpts struct {
+	name string
+	MapOpts
+}
+
+var _ NamedOption = &NamedMapOpts{}
+
+// NewNamedMapOpts creates a reference to a new NamedMapOpts struct.
+func NewNamedMapOpts(name string, values map[string]string, validator ValidatorFctType) *NamedMapOpts {
+	return &NamedMapOpts{
+		name:    name,
+		MapOpts: *NewMapOpts(values, validator),
+	}
+}
+
+// Name returns the name of the NamedMapOpts in the configuration.
+func (o *NamedMapOpts) Name() string {
+	return o.name
+}
+
+// ValidatorFctType defines a validator function that returns a validated string and/or an error.
+type ValidatorFctType func(val string) (string, error)
+
+// ValidatorFctListType defines a validator function that returns a validated list of string and/or an error
+type ValidatorFctListType func(val string) ([]string, error)
+
+// ValidateIPAddress validates an Ip address.
+func ValidateIPAddress(val string) (string, error) {
+	var ip = net.ParseIP(strings.TrimSpace(val))
+	if ip != nil {
+		return ip.String(), nil
+	}
+	return "", fmt.Errorf("%s is not an ip address", val)
+}
+
+// ValidateDNSSearch validates domain for resolvconf search configuration.
+// A zero length domain is represented by a dot (.).
+func ValidateDNSSearch(val string) (string, error) {
+	if val = strings.Trim(val, " "); val == "." {
+		return val, nil
+	}
+	return validateDomain(val)
+}
+
+func validateDomain(val string) (string, error) {
+	if alphaRegexp.FindString(val) == "" {
+		return "", fmt.Errorf("%s is not a valid domain", val)
+	}
+	ns := domainRegexp.FindSubmatch([]byte(val))
+	if len(ns) > 0 && len(ns[1]) < 255 {
+		return string(ns[1]), nil
+	}
+	return "", fmt.Errorf("%s is not a valid domain", val)
+}
+
+// ValidateLabel validates that the specified string is a valid label, and returns it.
+// Labels are in the form on key=value.
+func ValidateLabel(val string) (string, error) {
+	if strings.Count(val, "=") < 1 {
+		return "", fmt.Errorf("bad attribute format: %s", val)
+	}
+	return val, nil
+}
+
+// ValidateSingleGenericResource validates that a single entry in the
+// generic resource list is valid.
+// i.e 'GPU=UID1' is valid however 'GPU:UID1' or 'UID1' isn't
+func ValidateSingleGenericResource(val string) (string, error) {
+	if strings.Count(val, "=") < 1 {
+		return "", fmt.Errorf("invalid node-generic-resource format `%s` expected `name=value`", val)
+	}
+	return val, nil
+}
+
+// ParseLink parses and validates the specified string as a link format (name:alias)
+func ParseLink(val string) (string, string, error) {
+	if val == "" {
+		return "", "", fmt.Errorf("empty string specified for links")
+	}
+	arr := strings.Split(val, ":")
+	if len(arr) > 2 {
+		return "", "", fmt.Errorf("bad format for links: %s", val)
+	}
+	if len(arr) == 1 {
+		return val, val, nil
+	}
+	// This is kept because we can actually get a HostConfig with links
+	// from an already created container and the format is not `foo:bar`
+	// but `/foo:/c1/bar`
+	if strings.HasPrefix(arr[0], "/") {
+		_, alias := path.Split(arr[1])
+		return arr[0][1:], alias, nil
+	}
+	return arr[0], arr[1], nil
+}
+
+// MemBytes is a type for human readable memory bytes (like 128M, 2g, etc)
+type MemBytes int64
+
+// String returns the string format of the human readable memory bytes
+func (m *MemBytes) String() string {
+	// NOTE: In spf13/pflag/flag.go, "0" is considered as "zero value" while "0 B" is not.
+	// We return "0" in case value is 0 here so that the default value is hidden.
+	// (Sometimes "default 0 B" is actually misleading)
+	if m.Value() != 0 {
+		return units.BytesSize(float64(m.Value()))
+	}
+	return "0"
+}
+
+// Set sets the value of the MemBytes by passing a string
+func (m *MemBytes) Set(value string) error {
+	val, err := units.RAMInBytes(value)
+	*m = MemBytes(val)
+	return err
+}
+
+// Type returns the type
+func (m *MemBytes) Type() string {
+	return "bytes"
+}
+
+// Value returns the value in int64
+func (m *MemBytes) Value() int64 {
+	return int64(*m)
+}
+
+// UnmarshalJSON is the customized unmarshaler for MemBytes
+func (m *MemBytes) UnmarshalJSON(s []byte) error {
+	if len(s) <= 2 || s[0] != '"' || s[len(s)-1] != '"' {
+		return fmt.Errorf("invalid size: %q", s)
+	}
+	val, err := units.RAMInBytes(string(s[1 : len(s)-1]))
+	*m = MemBytes(val)
+	return err
+}
diff --git a/vendor/github.com/docker/docker/opts/opts_unix.go b/vendor/github.com/docker/docker/opts/opts_unix.go
new file mode 100644
index 0000000000..0c32367cb2
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/opts_unix.go
@@ -0,0 +1,6 @@
+// +build !windows
+
+package opts // import "github.com/docker/docker/opts"
+
+// DefaultHTTPHost Default HTTP Host used if only port is provided to -H flag e.g. dockerd -H tcp://:8080
+const DefaultHTTPHost = "localhost"
diff --git a/vendor/github.com/docker/docker/opts/opts_windows.go b/vendor/github.com/docker/docker/opts/opts_windows.go
new file mode 100644
index 0000000000..0e1b6c6d18
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/opts_windows.go
@@ -0,0 +1,56 @@
+package opts // import "github.com/docker/docker/opts"
+
+// TODO Windows. Identify bug in GOLang 1.5.1+ and/or Windows Server 2016 TP5.
+// @jhowardmsft, @swernli.
+//
+// On Windows, this mitigates a problem with the default options of running
+// a docker client against a local docker daemon on TP5.
+//
+// What was found that if the default host is "localhost", even if the client
+// (and daemon as this is local) is not physically on a network, and the DNS
+// cache is flushed (ipconfig /flushdns), then the client will pause for
+// exactly one second when connecting to the daemon for calls. For example
+// using docker run windowsservercore cmd, the CLI will send a create followed
+// by an attach. You see the delay between the attach finishing and the attach
+// being seen by the daemon.
+//
+// Here's some daemon debug logs with additional debug spew put in. The
+// AfterWriteJSON log is the very last thing the daemon does as part of the
+// create call. The POST /attach is the second CLI call. Notice the second
+// time gap.
+//
+// time="2015-11-06T13:38:37.259627400-08:00" level=debug msg="After createRootfs"
+// time="2015-11-06T13:38:37.263626300-08:00" level=debug msg="After setHostConfig"
+// time="2015-11-06T13:38:37.267631200-08:00" level=debug msg="before createContainerPl...."
+// time="2015-11-06T13:38:37.271629500-08:00" level=debug msg=ToDiskLocking....
+// time="2015-11-06T13:38:37.275643200-08:00" level=debug msg="loggin event...."
+// time="2015-11-06T13:38:37.277627600-08:00" level=debug msg="logged event...."
+// time="2015-11-06T13:38:37.279631800-08:00" level=debug msg="In defer func"
+// time="2015-11-06T13:38:37.282628100-08:00" level=debug msg="After daemon.create"
+// time="2015-11-06T13:38:37.286651700-08:00" level=debug msg="return 2"
+// time="2015-11-06T13:38:37.289629500-08:00" level=debug msg="Returned from daemon.ContainerCreate"
+// time="2015-11-06T13:38:37.311629100-08:00" level=debug msg="After WriteJSON"
+// ... 1 second gap here....
+// time="2015-11-06T13:38:38.317866200-08:00" level=debug msg="Calling POST /v1.22/containers/984758282b842f779e805664b2c95d563adc9a979c8a3973e68c807843ee4757/attach"
+// time="2015-11-06T13:38:38.326882500-08:00" level=info msg="POST /v1.22/containers/984758282b842f779e805664b2c95d563adc9a979c8a3973e68c807843ee4757/attach?stderr=1&stdin=1&stdout=1&stream=1"
+//
+// We suspect this is either a bug introduced in GOLang 1.5.1, or that a change
+// in GOLang 1.5.1 (from 1.4.3) is exposing a bug in Windows. In theory,
+// the Windows networking stack is supposed to resolve "localhost" internally,
+// without hitting DNS, or even reading the hosts file (which is why localhost
+// is commented out in the hosts file on Windows).
+//
+// We have validated that working around this using the actual IPv4 localhost
+// address does not cause the delay.
+//
+// This does not occur with the docker client built with 1.4.3 on the same
+// Windows build, regardless of whether the daemon is built using 1.5.1
+// or 1.4.3. It does not occur on Linux. We also verified we see the same thing
+// on a cross-compiled Windows binary (from Linux).
+//
+// Final note: This is a mitigation, not a 'real' fix. It is still susceptible
+// to the delay if a user were to do 'docker run -H=tcp://localhost:2375...'
+// explicitly.
+
+// DefaultHTTPHost Default HTTP Host used if only port is provided to -H flag e.g. dockerd -H tcp://:8080
+const DefaultHTTPHost = "127.0.0.1"
diff --git a/vendor/github.com/docker/docker/opts/quotedstring.go b/vendor/github.com/docker/docker/opts/quotedstring.go
new file mode 100644
index 0000000000..6c889070e8
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/quotedstring.go
@@ -0,0 +1,37 @@
+package opts // import "github.com/docker/docker/opts"
+
+// QuotedString is a string that may have extra quotes around the value. The
+// quotes are stripped from the value.
+type QuotedString struct {
+	value *string
+}
+
+// Set sets a new value
+func (s *QuotedString) Set(val string) error {
+	*s.value = trimQuotes(val)
+	return nil
+}
+
+// Type returns the type of the value
+func (s *QuotedString) Type() string {
+	return "string"
+}
+
+func (s *QuotedString) String() string {
+	return *s.value
+}
+
+func trimQuotes(value string) string {
+	lastIndex := len(value) - 1
+	for _, char := range []byte{'\'', '"'} {
+		if value[0] == char && value[lastIndex] == char {
+			return value[1:lastIndex]
+		}
+	}
+	return value
+}
+
+// NewQuotedString returns a new quoted string option
+func NewQuotedString(value *string) *QuotedString {
+	return &QuotedString{value: value}
+}
diff --git a/vendor/github.com/docker/docker/opts/runtime.go b/vendor/github.com/docker/docker/opts/runtime.go
new file mode 100644
index 0000000000..4b9babf0a5
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/runtime.go
@@ -0,0 +1,79 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/docker/docker/api/types"
+)
+
+// RuntimeOpt defines a map of Runtimes
+type RuntimeOpt struct {
+	name             string
+	stockRuntimeName string
+	values           *map[string]types.Runtime
+}
+
+// NewNamedRuntimeOpt creates a new RuntimeOpt
+func NewNamedRuntimeOpt(name string, ref *map[string]types.Runtime, stockRuntime string) *RuntimeOpt {
+	if ref == nil {
+		ref = &map[string]types.Runtime{}
+	}
+	return &RuntimeOpt{name: name, values: ref, stockRuntimeName: stockRuntime}
+}
+
+// Name returns the name of the NamedListOpts in the configuration.
+func (o *RuntimeOpt) Name() string {
+	return o.name
+}
+
+// Set validates and updates the list of Runtimes
+func (o *RuntimeOpt) Set(val string) error {
+	parts := strings.SplitN(val, "=", 2)
+	if len(parts) != 2 {
+		return fmt.Errorf("invalid runtime argument: %s", val)
+	}
+
+	parts[0] = strings.TrimSpace(parts[0])
+	parts[1] = strings.TrimSpace(parts[1])
+	if parts[0] == "" || parts[1] == "" {
+		return fmt.Errorf("invalid runtime argument: %s", val)
+	}
+
+	parts[0] = strings.ToLower(parts[0])
+	if parts[0] == o.stockRuntimeName {
+		return fmt.Errorf("runtime name '%s' is reserved", o.stockRuntimeName)
+	}
+
+	if _, ok := (*o.values)[parts[0]]; ok {
+		return fmt.Errorf("runtime '%s' was already defined", parts[0])
+	}
+
+	(*o.values)[parts[0]] = types.Runtime{Path: parts[1]}
+
+	return nil
+}
+
+// String returns Runtime values as a string.
+func (o *RuntimeOpt) String() string {
+	var out []string
+	for k := range *o.values {
+		out = append(out, k)
+	}
+
+	return fmt.Sprintf("%v", out)
+}
+
+// GetMap returns a map of Runtimes (name: path)
+func (o *RuntimeOpt) GetMap() map[string]types.Runtime {
+	if o.values != nil {
+		return *o.values
+	}
+
+	return map[string]types.Runtime{}
+}
+
+// Type returns the type of the option
+func (o *RuntimeOpt) Type() string {
+	return "runtime"
+}
diff --git a/vendor/github.com/docker/docker/opts/ulimit.go b/vendor/github.com/docker/docker/opts/ulimit.go
new file mode 100644
index 0000000000..0e2a36236c
--- /dev/null
+++ b/vendor/github.com/docker/docker/opts/ulimit.go
@@ -0,0 +1,81 @@
+package opts // import "github.com/docker/docker/opts"
+
+import (
+	"fmt"
+
+	"github.com/docker/go-units"
+)
+
+// UlimitOpt defines a map of Ulimits
+type UlimitOpt struct {
+	values *map[string]*units.Ulimit
+}
+
+// NewUlimitOpt creates a new UlimitOpt
+func NewUlimitOpt(ref *map[string]*units.Ulimit) *UlimitOpt {
+	if ref == nil {
+		ref = &map[string]*units.Ulimit{}
+	}
+	return &UlimitOpt{ref}
+}
+
+// Set validates a Ulimit and sets its name as a key in UlimitOpt
+func (o *UlimitOpt) Set(val string) error {
+	l, err := units.ParseUlimit(val)
+	if err != nil {
+		return err
+	}
+
+	(*o.values)[l.Name] = l
+
+	return nil
+}
+
+// String returns Ulimit values as a string.
+func (o *UlimitOpt) String() string {
+	var out []string
+	for _, v := range *o.values {
+		out = append(out, v.String())
+	}
+
+	return fmt.Sprintf("%v", out)
+}
+
+// GetList returns a slice of pointers to Ulimits.
+func (o *UlimitOpt) GetList() []*units.Ulimit {
+	var ulimits []*units.Ulimit
+	for _, v := range *o.values {
+		ulimits = append(ulimits, v)
+	}
+
+	return ulimits
+}
+
+// Type returns the option type
+func (o *UlimitOpt) Type() string {
+	return "ulimit"
+}
+
+// NamedUlimitOpt defines a named map of Ulimits
+type NamedUlimitOpt struct {
+	name string
+	UlimitOpt
+}
+
+var _ NamedOption = &NamedUlimitOpt{}
+
+// NewNamedUlimitOpt creates a new NamedUlimitOpt
+func NewNamedUlimitOpt(name string, ref *map[string]*units.Ulimit) *NamedUlimitOpt {
+	if ref == nil {
+		ref = &map[string]*units.Ulimit{}
+	}
+	return &NamedUlimitOpt{
+		name:      name,
+		UlimitOpt: *NewUlimitOpt(ref),
+	}
+}
+
+// Name returns the option name
+func (o *NamedUlimitOpt) Name() string {
+	return o.name
+}
diff --git a/vendor/github.com/docker/docker/pkg/archive/archive.go b/vendor/github.com/docker/docker/pkg/archive/archive.go
index e8f50869d9..5fb3995e9b 100644
--- a/vendor/github.com/docker/docker/pkg/archive/archive.go
+++ b/vendor/github.com/docker/docker/pkg/archive/archive.go
@@ -17,6 +17,7 @@ import (
 	"strconv"
 	"strings"
 	"syscall"
+	"time"
 
 	"github.com/docker/docker/pkg/fileutils"
 	"github.com/docker/docker/pkg/idtools"
@@ -360,6 +361,10 @@ func FileInfoHeader(name string, fi os.FileInfo, link string) (*tar.Header, erro
 	if err != nil {
 		return nil, err
 	}
+	hdr.Format = tar.FormatPAX
+	hdr.ModTime = hdr.ModTime.Truncate(time.Second)
+	hdr.AccessTime = time.Time{}
+	hdr.ChangeTime = time.Time{}
 	hdr.Mode = fillGo18FileTypeBits(int64(chmodTarEntry(os.FileMode(hdr.Mode))), fi)
 	name, err = canonicalTarName(name, fi.IsDir())
 	if err != nil {
@@ -1158,6 +1163,10 @@ func (archiver *Archiver) CopyFileWithTar(src, dst string) (err error) {
 			if err != nil {
 				return err
 			}
+			hdr.Format = tar.FormatPAX
+			hdr.ModTime = hdr.ModTime.Truncate(time.Second)
+			hdr.AccessTime = time.Time{}
+			hdr.ChangeTime = time.Time{}
 			hdr.Name = filepath.Base(dst)
 			hdr.Mode = int64(chmodTarEntry(os.FileMode(hdr.Mode)))
 
diff --git a/vendor/github.com/docker/docker/pkg/broadcaster/unbuffered.go b/vendor/github.com/docker/docker/pkg/broadcaster/unbuffered.go
new file mode 100644
index 0000000000..6bb285123f
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/broadcaster/unbuffered.go
@@ -0,0 +1,49 @@
+package broadcaster // import "github.com/docker/docker/pkg/broadcaster"
+
+import (
+	"io"
+	"sync"
+)
+
+// Unbuffered accumulates multiple io.WriteCloser by stream.
+type Unbuffered struct {
+	mu      sync.Mutex
+	writers []io.WriteCloser
+}
+
+// Add adds new io.WriteCloser.
+func (w *Unbuffered) Add(writer io.WriteCloser) {
+	w.mu.Lock()
+	w.writers = append(w.writers, writer)
+	w.mu.Unlock()
+}
+
+// Write writes bytes to all writers. Failed writers will be evicted during
+// this call.
+func (w *Unbuffered) Write(p []byte) (n int, err error) {
+	w.mu.Lock()
+	var evict []int
+	for i, sw := range w.writers {
+		if n, err := sw.Write(p); err != nil || n != len(p) {
+			// On error, evict the writer
+			evict = append(evict, i)
+		}
+	}
+	for n, i := range evict {
+		w.writers = append(w.writers[:i-n], w.writers[i-n+1:]...)
+	}
+	w.mu.Unlock()
+	return len(p), nil
+}
+
+// Clean closes and removes all writers. Last non-eol-terminated part of data
+// will be saved.
+func (w *Unbuffered) Clean() error {
+	w.mu.Lock()
+	for _, sw := range w.writers {
+		sw.Close()
+	}
+	w.writers = nil
+	w.mu.Unlock()
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/archive.go b/vendor/github.com/docker/docker/pkg/chrootarchive/archive.go
new file mode 100644
index 0000000000..47c9a2b94c
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/archive.go
@@ -0,0 +1,73 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/idtools"
+)
+
+// NewArchiver returns a new Archiver which uses chrootarchive.Untar
+func NewArchiver(idMappings *idtools.IDMappings) *archive.Archiver {
+	if idMappings == nil {
+		idMappings = &idtools.IDMappings{}
+	}
+	return &archive.Archiver{
+		Untar:         Untar,
+		IDMappingsVar: idMappings,
+	}
+}
+
+// Untar reads a stream of bytes from `archive`, parses it as a tar archive,
+// and unpacks it into the directory at `dest`.
+// The archive may be compressed with one of the following algorithms:
+//  identity (uncompressed), gzip, bzip2, xz.
+func Untar(tarArchive io.Reader, dest string, options *archive.TarOptions) error {
+	return untarHandler(tarArchive, dest, options, true)
+}
+
+// UntarUncompressed reads a stream of bytes from `archive`, parses it as a tar archive,
+// and unpacks it into the directory at `dest`.
+// The archive must be an uncompressed stream.
+func UntarUncompressed(tarArchive io.Reader, dest string, options *archive.TarOptions) error {
+	return untarHandler(tarArchive, dest, options, false)
+}
+
+// Handler for teasing out the automatic decompression
+func untarHandler(tarArchive io.Reader, dest string, options *archive.TarOptions, decompress bool) error {
+	if tarArchive == nil {
+		return fmt.Errorf("Empty archive")
+	}
+	if options == nil {
+		options = &archive.TarOptions{}
+	}
+	if options.ExcludePatterns == nil {
+		options.ExcludePatterns = []string{}
+	}
+
+	idMappings := idtools.NewIDMappingsFromMaps(options.UIDMaps, options.GIDMaps)
+	rootIDs := idMappings.RootPair()
+
+	dest = filepath.Clean(dest)
+	if _, err := os.Stat(dest); os.IsNotExist(err) {
+		if err := idtools.MkdirAllAndChownNew(dest, 0755, rootIDs); err != nil {
+			return err
+		}
+	}
+
+	r := ioutil.NopCloser(tarArchive)
+	if decompress {
+		decompressedArchive, err := archive.DecompressStream(tarArchive)
+		if err != nil {
+			return err
+		}
+		defer decompressedArchive.Close()
+		r = decompressedArchive
+	}
+
+	return invokeUnpack(r, dest, options)
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/archive_unix.go b/vendor/github.com/docker/docker/pkg/chrootarchive/archive_unix.go
new file mode 100644
index 0000000000..5df8afd662
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/archive_unix.go
@@ -0,0 +1,88 @@
+// +build !windows
+
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"bytes"
+	"encoding/json"
+	"flag"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"runtime"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/reexec"
+)
+
+// untar is the entry-point for docker-untar on re-exec. This is not used on
+// Windows as it does not support chroot, hence no point sandboxing through
+// chroot and rexec.
+func untar() {
+	runtime.LockOSThread()
+	flag.Parse()
+
+	var options *archive.TarOptions
+
+	//read the options from the pipe "ExtraFiles"
+	if err := json.NewDecoder(os.NewFile(3, "options")).Decode(&options); err != nil {
+		fatal(err)
+	}
+
+	if err := chroot(flag.Arg(0)); err != nil {
+		fatal(err)
+	}
+
+	if err := archive.Unpack(os.Stdin, "/", options); err != nil {
+		fatal(err)
+	}
+	// fully consume stdin in case it is zero padded
+	if _, err := flush(os.Stdin); err != nil {
+		fatal(err)
+	}
+
+	os.Exit(0)
+}
+
+func invokeUnpack(decompressedArchive io.Reader, dest string, options *archive.TarOptions) error {
+
+	// We can't pass a potentially large exclude list directly via cmd line
+	// because we easily overrun the kernel's max argument/environment size
+	// when the full image list is passed (e.g. when this is used by
+	// `docker load`). We will marshall the options via a pipe to the
+	// child
+	r, w, err := os.Pipe()
+	if err != nil {
+		return fmt.Errorf("Untar pipe failure: %v", err)
+	}
+
+	cmd := reexec.Command("docker-untar", dest)
+	cmd.Stdin = decompressedArchive
+
+	cmd.ExtraFiles = append(cmd.ExtraFiles, r)
+	output := bytes.NewBuffer(nil)
+	cmd.Stdout = output
+	cmd.Stderr = output
+
+	if err := cmd.Start(); err != nil {
+		w.Close()
+		return fmt.Errorf("Untar error on re-exec cmd: %v", err)
+	}
+	//write the options to the pipe for the untar exec to read
+	if err := json.NewEncoder(w).Encode(options); err != nil {
+		w.Close()
+		return fmt.Errorf("Untar json encode to pipe failed: %v", err)
+	}
+	w.Close()
+
+	if err := cmd.Wait(); err != nil {
+		// when `xz -d -c -q | docker-untar ...` failed on docker-untar side,
+		// we need to exhaust `xz`'s output, otherwise the `xz` side will be
+		// pending on write pipe forever
+		io.Copy(ioutil.Discard, decompressedArchive)
+
+		return fmt.Errorf("Error processing tar file(%v): %s", err, output)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/archive_windows.go b/vendor/github.com/docker/docker/pkg/chrootarchive/archive_windows.go
new file mode 100644
index 0000000000..f2973132a3
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/archive_windows.go
@@ -0,0 +1,22 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"io"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/longpath"
+)
+
+// chroot is not supported by Windows
+func chroot(path string) error {
+	return nil
+}
+
+func invokeUnpack(decompressedArchive io.ReadCloser,
+	dest string,
+	options *archive.TarOptions) error {
+	// Windows is different to Linux here because Windows does not support
+	// chroot. Hence there is no point sandboxing a chrooted process to
+	// do the unpack. We call inline instead within the daemon process.
+	return archive.Unpack(decompressedArchive, longpath.AddPrefix(dest), options)
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_linux.go b/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_linux.go
new file mode 100644
index 0000000000..9802fad514
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_linux.go
@@ -0,0 +1,113 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/pkg/mount"
+	rsystem "github.com/opencontainers/runc/libcontainer/system"
+	"golang.org/x/sys/unix"
+)
+
+// chroot on linux uses pivot_root instead of chroot
+// pivot_root takes a new root and an old root.
+// Old root must be a sub-dir of new root, it is where the current rootfs will reside after the call to pivot_root.
+// New root is where the new rootfs is set to.
+// Old root is removed after the call to pivot_root so it is no longer available under the new root.
+// This is similar to how libcontainer sets up a container's rootfs
+func chroot(path string) (err error) {
+	// if the engine is running in a user namespace we need to use actual chroot
+	if rsystem.RunningInUserNS() {
+		return realChroot(path)
+	}
+	if err := unix.Unshare(unix.CLONE_NEWNS); err != nil {
+		return fmt.Errorf("Error creating mount namespace before pivot: %v", err)
+	}
+
+	// Make everything in new ns slave.
+	// Don't use `private` here as this could race where the mountns gets a
+	//   reference to a mount and an unmount from the host does not propagate,
+	//   which could potentially cause transient errors for other operations,
+	//   even though this should be relatively small window here `slave` should
+	//   not cause any problems.
+	if err := mount.MakeRSlave("/"); err != nil {
+		return err
+	}
+
+	if mounted, _ := mount.Mounted(path); !mounted {
+		if err := mount.Mount(path, path, "bind", "rbind,rw"); err != nil {
+			return realChroot(path)
+		}
+	}
+
+	// setup oldRoot for pivot_root
+	pivotDir, err := ioutil.TempDir(path, ".pivot_root")
+	if err != nil {
+		return fmt.Errorf("Error setting up pivot dir: %v", err)
+	}
+
+	var mounted bool
+	defer func() {
+		if mounted {
+			// make sure pivotDir is not mounted before we try to remove it
+			if errCleanup := unix.Unmount(pivotDir, unix.MNT_DETACH); errCleanup != nil {
+				if err == nil {
+					err = errCleanup
+				}
+				return
+			}
+		}
+
+		errCleanup := os.Remove(pivotDir)
+		// pivotDir doesn't exist if pivot_root failed and chroot+chdir was successful
+		// because we already cleaned it up on failed pivot_root
+		if errCleanup != nil && !os.IsNotExist(errCleanup) {
+			errCleanup = fmt.Errorf("Error cleaning up after pivot: %v", errCleanup)
+			if err == nil {
+				err = errCleanup
+			}
+		}
+	}()
+
+	if err := unix.PivotRoot(path, pivotDir); err != nil {
+		// If pivot fails, fall back to the normal chroot after cleaning up temp dir
+		if err := os.Remove(pivotDir); err != nil {
+			return fmt.Errorf("Error cleaning up after failed pivot: %v", err)
+		}
+		return realChroot(path)
+	}
+	mounted = true
+
+	// This is the new path for where the old root (prior to the pivot) has been moved to
+	// This dir contains the rootfs of the caller, which we need to remove so it is not visible during extraction
+	pivotDir = filepath.Join("/", filepath.Base(pivotDir))
+
+	if err := unix.Chdir("/"); err != nil {
+		return fmt.Errorf("Error changing to new root: %v", err)
+	}
+
+	// Make the pivotDir (where the old root lives) private so it can be unmounted without propagating to the host
+	if err := unix.Mount("", pivotDir, "", unix.MS_PRIVATE|unix.MS_REC, ""); err != nil {
+		return fmt.Errorf("Error making old root private after pivot: %v", err)
+	}
+
+	// Now unmount the old root so it's no longer visible from the new root
+	if err := unix.Unmount(pivotDir, unix.MNT_DETACH); err != nil {
+		return fmt.Errorf("Error while unmounting old root after pivot: %v", err)
+	}
+	mounted = false
+
+	return nil
+}
+
+func realChroot(path string) error {
+	if err := unix.Chroot(path); err != nil {
+		return fmt.Errorf("Error after fallback to chroot: %v", err)
+	}
+	if err := unix.Chdir("/"); err != nil {
+		return fmt.Errorf("Error changing to new root after chroot: %v", err)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_unix.go b/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_unix.go
new file mode 100644
index 0000000000..9a1ee58754
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/chroot_unix.go
@@ -0,0 +1,12 @@
+// +build !windows,!linux
+
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import "golang.org/x/sys/unix"
+
+func chroot(path string) error {
+	if err := unix.Chroot(path); err != nil {
+		return err
+	}
+	return unix.Chdir("/")
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/diff.go b/vendor/github.com/docker/docker/pkg/chrootarchive/diff.go
new file mode 100644
index 0000000000..7712cc17c8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/diff.go
@@ -0,0 +1,23 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"io"
+
+	"github.com/docker/docker/pkg/archive"
+)
+
+// ApplyLayer parses a diff in the standard layer format from `layer`,
+// and applies it to the directory `dest`. The stream `layer` can only be
+// uncompressed.
+// Returns the size in bytes of the contents of the layer.
+func ApplyLayer(dest string, layer io.Reader) (size int64, err error) {
+	return applyLayerHandler(dest, layer, &archive.TarOptions{}, true)
+}
+
+// ApplyUncompressedLayer parses a diff in the standard layer format from
+// `layer`, and applies it to the directory `dest`. The stream `layer`
+// can only be uncompressed.
+// Returns the size in bytes of the contents of the layer.
+func ApplyUncompressedLayer(dest string, layer io.Reader, options *archive.TarOptions) (int64, error) {
+	return applyLayerHandler(dest, layer, options, false)
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/diff_unix.go b/vendor/github.com/docker/docker/pkg/chrootarchive/diff_unix.go
new file mode 100644
index 0000000000..d96a09f8fa
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/diff_unix.go
@@ -0,0 +1,130 @@
+//+build !windows
+
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"bytes"
+	"encoding/json"
+	"flag"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"runtime"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/reexec"
+	"github.com/docker/docker/pkg/system"
+	rsystem "github.com/opencontainers/runc/libcontainer/system"
+)
+
+type applyLayerResponse struct {
+	LayerSize int64 `json:"layerSize"`
+}
+
+// applyLayer is the entry-point for docker-applylayer on re-exec. This is not
+// used on Windows as it does not support chroot, hence no point sandboxing
+// through chroot and rexec.
+func applyLayer() {
+
+	var (
+		tmpDir  string
+		err     error
+		options *archive.TarOptions
+	)
+	runtime.LockOSThread()
+	flag.Parse()
+
+	inUserns := rsystem.RunningInUserNS()
+	if err := chroot(flag.Arg(0)); err != nil {
+		fatal(err)
+	}
+
+	// We need to be able to set any perms
+	oldmask, err := system.Umask(0)
+	defer system.Umask(oldmask)
+	if err != nil {
+		fatal(err)
+	}
+
+	if err := json.Unmarshal([]byte(os.Getenv("OPT")), &options); err != nil {
+		fatal(err)
+	}
+
+	if inUserns {
+		options.InUserNS = true
+	}
+
+	if tmpDir, err = ioutil.TempDir("/", "temp-docker-extract"); err != nil {
+		fatal(err)
+	}
+
+	os.Setenv("TMPDIR", tmpDir)
+	size, err := archive.UnpackLayer("/", os.Stdin, options)
+	os.RemoveAll(tmpDir)
+	if err != nil {
+		fatal(err)
+	}
+
+	encoder := json.NewEncoder(os.Stdout)
+	if err := encoder.Encode(applyLayerResponse{size}); err != nil {
+		fatal(fmt.Errorf("unable to encode layerSize JSON: %s", err))
+	}
+
+	if _, err := flush(os.Stdin); err != nil {
+		fatal(err)
+	}
+
+	os.Exit(0)
+}
+
+// applyLayerHandler parses a diff in the standard layer format from `layer`, and
+// applies it to the directory `dest`. Returns the size in bytes of the
+// contents of the layer.
+func applyLayerHandler(dest string, layer io.Reader, options *archive.TarOptions, decompress bool) (size int64, err error) {
+	dest = filepath.Clean(dest)
+	if decompress {
+		decompressed, err := archive.DecompressStream(layer)
+		if err != nil {
+			return 0, err
+		}
+		defer decompressed.Close()
+
+		layer = decompressed
+	}
+	if options == nil {
+		options = &archive.TarOptions{}
+		if rsystem.RunningInUserNS() {
+			options.InUserNS = true
+		}
+	}
+	if options.ExcludePatterns == nil {
+		options.ExcludePatterns = []string{}
+	}
+
+	data, err := json.Marshal(options)
+	if err != nil {
+		return 0, fmt.Errorf("ApplyLayer json encode: %v", err)
+	}
+
+	cmd := reexec.Command("docker-applyLayer", dest)
+	cmd.Stdin = layer
+	cmd.Env = append(cmd.Env, fmt.Sprintf("OPT=%s", data))
+
+	outBuf, errBuf := new(bytes.Buffer), new(bytes.Buffer)
+	cmd.Stdout, cmd.Stderr = outBuf, errBuf
+
+	if err = cmd.Run(); err != nil {
+		return 0, fmt.Errorf("ApplyLayer %s stdout: %s stderr: %s", err, outBuf, errBuf)
+	}
+
+	// Stdout should be a valid JSON struct representing an applyLayerResponse.
+	response := applyLayerResponse{}
+	decoder := json.NewDecoder(outBuf)
+	if err = decoder.Decode(&response); err != nil {
+		return 0, fmt.Errorf("unable to decode ApplyLayer JSON response: %s", err)
+	}
+
+	return response.LayerSize, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/diff_windows.go b/vendor/github.com/docker/docker/pkg/chrootarchive/diff_windows.go
new file mode 100644
index 0000000000..8f3f3a4a8a
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/diff_windows.go
@@ -0,0 +1,45 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/longpath"
+)
+
+// applyLayerHandler parses a diff in the standard layer format from `layer`, and
+// applies it to the directory `dest`. Returns the size in bytes of the
+// contents of the layer.
+func applyLayerHandler(dest string, layer io.Reader, options *archive.TarOptions, decompress bool) (size int64, err error) {
+	dest = filepath.Clean(dest)
+
+	// Ensure it is a Windows-style volume path
+	dest = longpath.AddPrefix(dest)
+
+	if decompress {
+		decompressed, err := archive.DecompressStream(layer)
+		if err != nil {
+			return 0, err
+		}
+		defer decompressed.Close()
+
+		layer = decompressed
+	}
+
+	tmpDir, err := ioutil.TempDir(os.Getenv("temp"), "temp-docker-extract")
+	if err != nil {
+		return 0, fmt.Errorf("ApplyLayer failed to create temp-docker-extract under %s. %s", dest, err)
+	}
+
+	s, err := archive.UnpackLayer(dest, layer, nil)
+	os.RemoveAll(tmpDir)
+	if err != nil {
+		return 0, fmt.Errorf("ApplyLayer %s failed UnpackLayer to %s: %s", layer, dest, err)
+	}
+
+	return s, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/init_unix.go b/vendor/github.com/docker/docker/pkg/chrootarchive/init_unix.go
new file mode 100644
index 0000000000..a15e4bb83c
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/init_unix.go
@@ -0,0 +1,28 @@
+// +build !windows
+
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+
+	"github.com/docker/docker/pkg/reexec"
+)
+
+func init() {
+	reexec.Register("docker-applyLayer", applyLayer)
+	reexec.Register("docker-untar", untar)
+}
+
+func fatal(err error) {
+	fmt.Fprint(os.Stderr, err)
+	os.Exit(1)
+}
+
+// flush consumes all the bytes from the reader discarding
+// any errors
+func flush(r io.Reader) (bytes int64, err error) {
+	return io.Copy(ioutil.Discard, r)
+}
diff --git a/vendor/github.com/docker/docker/pkg/chrootarchive/init_windows.go b/vendor/github.com/docker/docker/pkg/chrootarchive/init_windows.go
new file mode 100644
index 0000000000..15ed874e77
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/chrootarchive/init_windows.go
@@ -0,0 +1,4 @@
+package chrootarchive // import "github.com/docker/docker/pkg/chrootarchive"
+
+func init() {
+}
diff --git a/vendor/github.com/docker/docker/pkg/containerfs/archiver.go b/vendor/github.com/docker/docker/pkg/containerfs/archiver.go
new file mode 100644
index 0000000000..1fb7ff7bdc
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/containerfs/archiver.go
@@ -0,0 +1,203 @@
+package containerfs // import "github.com/docker/docker/pkg/containerfs"
+
+import (
+	"archive/tar"
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"time"
+
+	"github.com/docker/docker/pkg/archive"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/system"
+	"github.com/sirupsen/logrus"
+)
+
+// TarFunc provides a function definition for a custom Tar function
+type TarFunc func(string, *archive.TarOptions) (io.ReadCloser, error)
+
+// UntarFunc provides a function definition for a custom Untar function
+type UntarFunc func(io.Reader, string, *archive.TarOptions) error
+
+// Archiver provides a similar implementation of the archive.Archiver package with the rootfs abstraction
+type Archiver struct {
+	SrcDriver     Driver
+	DstDriver     Driver
+	Tar           TarFunc
+	Untar         UntarFunc
+	IDMappingsVar *idtools.IDMappings
+}
+
+// TarUntar is a convenience function which calls Tar and Untar, with the output of one piped into the other.
+// If either Tar or Untar fails, TarUntar aborts and returns the error.
+func (archiver *Archiver) TarUntar(src, dst string) error {
+	logrus.Debugf("TarUntar(%s %s)", src, dst)
+	tarArchive, err := archiver.Tar(src, &archive.TarOptions{Compression: archive.Uncompressed})
+	if err != nil {
+		return err
+	}
+	defer tarArchive.Close()
+	options := &archive.TarOptions{
+		UIDMaps: archiver.IDMappingsVar.UIDs(),
+		GIDMaps: archiver.IDMappingsVar.GIDs(),
+	}
+	return archiver.Untar(tarArchive, dst, options)
+}
+
+// UntarPath untar a file from path to a destination, src is the source tar file path.
+func (archiver *Archiver) UntarPath(src, dst string) error {
+	tarArchive, err := archiver.SrcDriver.Open(src)
+	if err != nil {
+		return err
+	}
+	defer tarArchive.Close()
+	options := &archive.TarOptions{
+		UIDMaps: archiver.IDMappingsVar.UIDs(),
+		GIDMaps: archiver.IDMappingsVar.GIDs(),
+	}
+	return archiver.Untar(tarArchive, dst, options)
+}
+
+// CopyWithTar creates a tar archive of filesystem path `src`, and
+// unpacks it at filesystem path `dst`.
+// The archive is streamed directly with fixed buffering and no
+// intermediary disk IO.
+func (archiver *Archiver) CopyWithTar(src, dst string) error {
+	srcSt, err := archiver.SrcDriver.Stat(src)
+	if err != nil {
+		return err
+	}
+	if !srcSt.IsDir() {
+		return archiver.CopyFileWithTar(src, dst)
+	}
+
+	// if this archiver is set up with ID mapping we need to create
+	// the new destination directory with the remapped root UID/GID pair
+	// as owner
+	rootIDs := archiver.IDMappingsVar.RootPair()
+	// Create dst, copy src's content into it
+	if err := idtools.MkdirAllAndChownNew(dst, 0755, rootIDs); err != nil {
+		return err
+	}
+	logrus.Debugf("Calling TarUntar(%s, %s)", src, dst)
+	return archiver.TarUntar(src, dst)
+}
+
+// CopyFileWithTar emulates the behavior of the 'cp' command-line
+// for a single file. It copies a regular file from path `src` to
+// path `dst`, and preserves all its metadata.
+func (archiver *Archiver) CopyFileWithTar(src, dst string) (err error) {
+	logrus.Debugf("CopyFileWithTar(%s, %s)", src, dst)
+	srcDriver := archiver.SrcDriver
+	dstDriver := archiver.DstDriver
+
+	srcSt, err := srcDriver.Stat(src)
+	if err != nil {
+		return err
+	}
+
+	if srcSt.IsDir() {
+		return fmt.Errorf("Can't copy a directory")
+	}
+
+	// Clean up the trailing slash. This must be done in an operating
+	// system specific manner.
+	if dst[len(dst)-1] == dstDriver.Separator() {
+		dst = dstDriver.Join(dst, srcDriver.Base(src))
+	}
+
+	// The original call was system.MkdirAll, which is just
+	// os.MkdirAll on not-Windows and changed for Windows.
+	if dstDriver.OS() == "windows" {
+		// Now we are WCOW
+		if err := system.MkdirAll(filepath.Dir(dst), 0700, ""); err != nil {
+			return err
+		}
+	} else {
+		// We can just use the driver.MkdirAll function
+		if err := dstDriver.MkdirAll(dstDriver.Dir(dst), 0700); err != nil {
+			return err
+		}
+	}
+
+	r, w := io.Pipe()
+	errC := make(chan error, 1)
+
+	go func() {
+		defer close(errC)
+		errC <- func() error {
+			defer w.Close()
+
+			srcF, err := srcDriver.Open(src)
+			if err != nil {
+				return err
+			}
+			defer srcF.Close()
+
+			hdr, err := tar.FileInfoHeader(srcSt, "")
+			if err != nil {
+				return err
+			}
+			hdr.Format = tar.FormatPAX
+			hdr.ModTime = hdr.ModTime.Truncate(time.Second)
+			hdr.AccessTime = time.Time{}
+			hdr.ChangeTime = time.Time{}
+			hdr.Name = dstDriver.Base(dst)
+			if dstDriver.OS() == "windows" {
+				hdr.Mode = int64(chmodTarEntry(os.FileMode(hdr.Mode)))
+			} else {
+				hdr.Mode = int64(os.FileMode(hdr.Mode))
+			}
+
+			if err := remapIDs(archiver.IDMappingsVar, hdr); err != nil {
+				return err
+			}
+
+			tw := tar.NewWriter(w)
+			defer tw.Close()
+			if err := tw.WriteHeader(hdr); err != nil {
+				return err
+			}
+			if _, err := io.Copy(tw, srcF); err != nil {
+				return err
+			}
+			return nil
+		}()
+	}()
+	defer func() {
+		if er := <-errC; err == nil && er != nil {
+			err = er
+		}
+	}()
+
+	err = archiver.Untar(r, dstDriver.Dir(dst), nil)
+	if err != nil {
+		r.CloseWithError(err)
+	}
+	return err
+}
+
+// IDMappings returns the IDMappings of the archiver.
+func (archiver *Archiver) IDMappings() *idtools.IDMappings {
+	return archiver.IDMappingsVar
+}
+
+func remapIDs(idMappings *idtools.IDMappings, hdr *tar.Header) error {
+	ids, err := idMappings.ToHost(idtools.IDPair{UID: hdr.Uid, GID: hdr.Gid})
+	hdr.Uid, hdr.Gid = ids.UID, ids.GID
+	return err
+}
+
+// chmodTarEntry is used to adjust the file permissions used in tar header based
+// on the platform the archival is done.
+func chmodTarEntry(perm os.FileMode) os.FileMode {
+	//perm &= 0755 // this 0-ed out tar flags (like link, regular file, directory marker etc.)
+	permPart := perm & os.ModePerm
+	noPermPart := perm &^ os.ModePerm
+	// Add the x bit: make everything +x from windows
+	permPart |= 0111
+	permPart &= 0755
+
+	return noPermPart | permPart
+}
diff --git a/vendor/github.com/docker/docker/pkg/containerfs/containerfs.go b/vendor/github.com/docker/docker/pkg/containerfs/containerfs.go
new file mode 100644
index 0000000000..7bb1d8c369
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/containerfs/containerfs.go
@@ -0,0 +1,87 @@
+package containerfs // import "github.com/docker/docker/pkg/containerfs"
+
+import (
+	"path/filepath"
+	"runtime"
+
+	"github.com/containerd/continuity/driver"
+	"github.com/containerd/continuity/pathdriver"
+	"github.com/docker/docker/pkg/symlink"
+)
+
+// ContainerFS is that represents a root file system
+type ContainerFS interface {
+	// Path returns the path to the root. Note that this may not exist
+	// on the local system, so the continuity operations must be used
+	Path() string
+
+	// ResolveScopedPath evaluates the given path scoped to the root.
+	// For example, if root=/a, and path=/b/c, then this function would return /a/b/c.
+	// If rawPath is true, then the function will not preform any modifications
+	// before path resolution. Otherwise, the function will clean the given path
+	// by making it an absolute path.
+	ResolveScopedPath(path string, rawPath bool) (string, error)
+
+	Driver
+}
+
+// Driver combines both continuity's Driver and PathDriver interfaces with a Platform
+// field to determine the OS.
+type Driver interface {
+	// OS returns the OS where the rootfs is located. Essentially,
+	// runtime.GOOS for everything aside from LCOW, which is "linux"
+	OS() string
+
+	// Architecture returns the hardware architecture where the
+	// container is located.
+	Architecture() string
+
+	// Driver & PathDriver provide methods to manipulate files & paths
+	driver.Driver
+	pathdriver.PathDriver
+}
+
+// NewLocalContainerFS is a helper function to implement daemon's Mount interface
+// when the graphdriver mount point is a local path on the machine.
+func NewLocalContainerFS(path string) ContainerFS {
+	return &local{
+		path:       path,
+		Driver:     driver.LocalDriver,
+		PathDriver: pathdriver.LocalPathDriver,
+	}
+}
+
+// NewLocalDriver provides file and path drivers for a local file system. They are
+// essentially a wrapper around the `os` and `filepath` functions.
+func NewLocalDriver() Driver {
+	return &local{
+		Driver:     driver.LocalDriver,
+		PathDriver: pathdriver.LocalPathDriver,
+	}
+}
+
+type local struct {
+	path string
+	driver.Driver
+	pathdriver.PathDriver
+}
+
+func (l *local) Path() string {
+	return l.path
+}
+
+func (l *local) ResolveScopedPath(path string, rawPath bool) (string, error) {
+	cleanedPath := path
+	if !rawPath {
+		cleanedPath = cleanScopedPath(path)
+	}
+	return symlink.FollowSymlinkInScope(filepath.Join(l.path, cleanedPath), l.path)
+}
+
+func (l *local) OS() string {
+	return runtime.GOOS
+}
+
+func (l *local) Architecture() string {
+	return runtime.GOARCH
+}
diff --git a/vendor/github.com/docker/docker/pkg/containerfs/containerfs_unix.go b/vendor/github.com/docker/docker/pkg/containerfs/containerfs_unix.go
new file mode 100644
index 0000000000..6a99459517
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/containerfs/containerfs_unix.go
@@ -0,0 +1,10 @@
+// +build !windows
+
+package containerfs // import "github.com/docker/docker/pkg/containerfs"
+
+import "path/filepath"
+
+// cleanScopedPath preappends a to combine with a mnt path.
+func cleanScopedPath(path string) string {
+	return filepath.Join(string(filepath.Separator), path)
+}
diff --git a/vendor/github.com/docker/docker/pkg/containerfs/containerfs_windows.go b/vendor/github.com/docker/docker/pkg/containerfs/containerfs_windows.go
new file mode 100644
index 0000000000..9fb7084628
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/containerfs/containerfs_windows.go
@@ -0,0 +1,15 @@
+package containerfs // import "github.com/docker/docker/pkg/containerfs"
+
+import "path/filepath"
+
+// cleanScopedPath removes the C:\ syntax, and prepares to combine
+// with a volume path
+func cleanScopedPath(path string) string {
+	if len(path) >= 2 {
+		c := path[0]
+		if path[1] == ':' && ('a' <= c && c <= 'z' || 'A' <= c && c <= 'Z') {
+			path = path[2:]
+		}
+	}
+	return filepath.Join(string(filepath.Separator), path)
+}
diff --git a/vendor/github.com/docker/docker/pkg/directory/directory.go b/vendor/github.com/docker/docker/pkg/directory/directory.go
new file mode 100644
index 0000000000..51d4a6ea22
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/directory/directory.go
@@ -0,0 +1,26 @@
+package directory // import "github.com/docker/docker/pkg/directory"
+
+import (
+	"io/ioutil"
+	"os"
+	"path/filepath"
+)
+
+// MoveToSubdir moves all contents of a directory to a subdirectory underneath the original path
+func MoveToSubdir(oldpath, subdir string) error {
+
+	infos, err := ioutil.ReadDir(oldpath)
+	if err != nil {
+		return err
+	}
+	for _, info := range infos {
+		if info.Name() != subdir {
+			oldName := filepath.Join(oldpath, info.Name())
+			newName := filepath.Join(oldpath, subdir, info.Name())
+			if err := os.Rename(oldName, newName); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/directory/directory_unix.go b/vendor/github.com/docker/docker/pkg/directory/directory_unix.go
new file mode 100644
index 0000000000..60e6dfd7ea
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/directory/directory_unix.go
@@ -0,0 +1,54 @@
+// +build linux freebsd
+
+package directory // import "github.com/docker/docker/pkg/directory"
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+	"syscall"
+)
+
+// Size walks a directory tree and returns its total size in bytes.
+func Size(ctx context.Context, dir string) (size int64, err error) {
+	data := make(map[uint64]struct{})
+	err = filepath.Walk(dir, func(d string, fileInfo os.FileInfo, err error) error {
+		if err != nil {
+			// if dir does not exist, Size() returns the error.
+			// if dir/x disappeared while walking, Size() ignores dir/x.
+			if os.IsNotExist(err) && d != dir {
+				return nil
+			}
+			return err
+		}
+		select {
+		case <-ctx.Done():
+			return ctx.Err()
+		default:
+		}
+
+		// Ignore directory sizes
+		if fileInfo == nil {
+			return nil
+		}
+
+		s := fileInfo.Size()
+		if fileInfo.IsDir() || s == 0 {
+			return nil
+		}
+
+		// Check inode to handle hard links correctly
+		inode := fileInfo.Sys().(*syscall.Stat_t).Ino
+		// inode is not a uint64 on all platforms. Cast it to avoid issues.
+		if _, exists := data[inode]; exists {
+			return nil
+		}
+		// inode is not a uint64 on all platforms. Cast it to avoid issues.
+		data[inode] = struct{}{}
+
+		size += s
+
+		return nil
+	})
+	return
+}
diff --git a/vendor/github.com/docker/docker/pkg/directory/directory_windows.go b/vendor/github.com/docker/docker/pkg/directory/directory_windows.go
new file mode 100644
index 0000000000..f07f241880
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/directory/directory_windows.go
@@ -0,0 +1,42 @@
+package directory // import "github.com/docker/docker/pkg/directory"
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+)
+
+// Size walks a directory tree and returns its total size in bytes.
+func Size(ctx context.Context, dir string) (size int64, err error) {
+	err = filepath.Walk(dir, func(d string, fileInfo os.FileInfo, err error) error {
+		if err != nil {
+			// if dir does not exist, Size() returns the error.
+			// if dir/x disappeared while walking, Size() ignores dir/x.
+			if os.IsNotExist(err) && d != dir {
+				return nil
+			}
+			return err
+		}
+
+		select {
+		case <-ctx.Done():
+			return ctx.Err()
+		default:
+		}
+
+		// Ignore directory sizes
+		if fileInfo == nil {
+			return nil
+		}
+
+		s := fileInfo.Size()
+		if fileInfo.IsDir() || s == 0 {
+			return nil
+		}
+
+		size += s
+
+		return nil
+	})
+	return
+}
diff --git a/vendor/github.com/docker/docker/pkg/discovery/backends.go b/vendor/github.com/docker/docker/pkg/discovery/backends.go
new file mode 100644
index 0000000000..1d038285ad
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/discovery/backends.go
@@ -0,0 +1,107 @@
+package discovery // import "github.com/docker/docker/pkg/discovery"
+
+import (
+	"fmt"
+	"net"
+	"strings"
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// Backends is a global map of discovery backends indexed by their
+	// associated scheme.
+	backends = make(map[string]Backend)
+)
+
+// Register makes a discovery backend available by the provided scheme.
+// If Register is called twice with the same scheme an error is returned.
+func Register(scheme string, d Backend) error {
+	if _, exists := backends[scheme]; exists {
+		return fmt.Errorf("scheme already registered %s", scheme)
+	}
+	logrus.WithField("name", scheme).Debugf("Registering discovery service")
+	backends[scheme] = d
+	return nil
+}
+
+func parse(rawurl string) (string, string) {
+	parts := strings.SplitN(rawurl, "://", 2)
+
+	// nodes:port,node2:port => nodes://node1:port,node2:port
+	if len(parts) == 1 {
+		return "nodes", parts[0]
+	}
+	return parts[0], parts[1]
+}
+
+// ParseAdvertise parses the --cluster-advertise daemon config which accepts
+// <ip-address>:<port> or <interface-name>:<port>
+func ParseAdvertise(advertise string) (string, error) {
+	var (
+		iface *net.Interface
+		addrs []net.Addr
+		err   error
+	)
+
+	addr, port, err := net.SplitHostPort(advertise)
+
+	if err != nil {
+		return "", fmt.Errorf("invalid --cluster-advertise configuration: %s: %v", advertise, err)
+	}
+
+	ip := net.ParseIP(addr)
+	// If it is a valid ip-address, use it as is
+	if ip != nil {
+		return advertise, nil
+	}
+
+	// If advertise is a valid interface name, get the valid IPv4 address and use it to advertise
+	ifaceName := addr
+	iface, err = net.InterfaceByName(ifaceName)
+	if err != nil {
+		return "", fmt.Errorf("invalid cluster advertise IP address or interface name (%s) : %v", advertise, err)
+	}
+
+	addrs, err = iface.Addrs()
+	if err != nil {
+		return "", fmt.Errorf("unable to get advertise IP address from interface (%s) : %v", advertise, err)
+	}
+
+	if len(addrs) == 0 {
+		return "", fmt.Errorf("no available advertise IP address in interface (%s)", advertise)
+	}
+
+	addr = ""
+	for _, a := range addrs {
+		ip, _, err := net.ParseCIDR(a.String())
+		if err != nil {
+			return "", fmt.Errorf("error deriving advertise ip-address in interface (%s) : %v", advertise, err)
+		}
+		if ip.To4() == nil || ip.IsLoopback() {
+			continue
+		}
+		addr = ip.String()
+		break
+	}
+	if addr == "" {
+		return "", fmt.Errorf("could not find a valid ip-address in interface %s", advertise)
+	}
+
+	addr = net.JoinHostPort(addr, port)
+	return addr, nil
+}
+
+// New returns a new Discovery given a URL, heartbeat and ttl settings.
+// Returns an error if the URL scheme is not supported.
+func New(rawurl string, heartbeat time.Duration, ttl time.Duration, clusterOpts map[string]string) (Backend, error) {
+	scheme, uri := parse(rawurl)
+	if backend, exists := backends[scheme]; exists {
+		logrus.WithFields(logrus.Fields{"name": scheme, "uri": uri}).Debugf("Initializing discovery service")
+		err := backend.Initialize(uri, heartbeat, ttl, clusterOpts)
+		return backend, err
+	}
+
+	return nil, ErrNotSupported
+}
diff --git a/vendor/github.com/docker/docker/pkg/discovery/discovery.go b/vendor/github.com/docker/docker/pkg/discovery/discovery.go
new file mode 100644
index 0000000000..828c5ca488
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/discovery/discovery.go
@@ -0,0 +1,35 @@
+package discovery // import "github.com/docker/docker/pkg/discovery"
+
+import (
+	"errors"
+	"time"
+)
+
+var (
+	// ErrNotSupported is returned when a discovery service is not supported.
+	ErrNotSupported = errors.New("discovery service not supported")
+
+	// ErrNotImplemented is returned when discovery feature is not implemented
+	// by discovery backend.
+	ErrNotImplemented = errors.New("not implemented in this discovery service")
+)
+
+// Watcher provides watching over a cluster for nodes joining and leaving.
+type Watcher interface {
+	// Watch the discovery for entry changes.
+	// Returns a channel that will receive changes or an error.
+	// Providing a non-nil stopCh can be used to stop watching.
+	Watch(stopCh <-chan struct{}) (<-chan Entries, <-chan error)
+}
+
+// Backend is implemented by discovery backends which manage cluster entries.
+type Backend interface {
+	// Watcher must be provided by every backend.
+	Watcher
+
+	// Initialize the discovery with URIs, a heartbeat, a ttl and optional settings.
+	Initialize(string, time.Duration, time.Duration, map[string]string) error
+
+	// Register to the discovery.
+	Register(string) error
+}
diff --git a/vendor/github.com/docker/docker/pkg/discovery/entry.go b/vendor/github.com/docker/docker/pkg/discovery/entry.go
new file mode 100644
index 0000000000..be06c75787
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/discovery/entry.go
@@ -0,0 +1,94 @@
+package discovery // import "github.com/docker/docker/pkg/discovery"
+
+import "net"
+
+// NewEntry creates a new entry.
+func NewEntry(url string) (*Entry, error) {
+	host, port, err := net.SplitHostPort(url)
+	if err != nil {
+		return nil, err
+	}
+	return &Entry{host, port}, nil
+}
+
+// An Entry represents a host.
+type Entry struct {
+	Host string
+	Port string
+}
+
+// Equals returns true if cmp contains the same data.
+func (e *Entry) Equals(cmp *Entry) bool {
+	return e.Host == cmp.Host && e.Port == cmp.Port
+}
+
+// String returns the string form of an entry.
+func (e *Entry) String() string {
+	return net.JoinHostPort(e.Host, e.Port)
+}
+
+// Entries is a list of *Entry with some helpers.
+type Entries []*Entry
+
+// Equals returns true if cmp contains the same data.
+func (e Entries) Equals(cmp Entries) bool {
+	// Check if the file has really changed.
+	if len(e) != len(cmp) {
+		return false
+	}
+	for i := range e {
+		if !e[i].Equals(cmp[i]) {
+			return false
+		}
+	}
+	return true
+}
+
+// Contains returns true if the Entries contain a given Entry.
+func (e Entries) Contains(entry *Entry) bool {
+	for _, curr := range e {
+		if curr.Equals(entry) {
+			return true
+		}
+	}
+	return false
+}
+
+// Diff compares two entries and returns the added and removed entries.
+func (e Entries) Diff(cmp Entries) (Entries, Entries) {
+	added := Entries{}
+	for _, entry := range cmp {
+		if !e.Contains(entry) {
+			added = append(added, entry)
+		}
+	}
+
+	removed := Entries{}
+	for _, entry := range e {
+		if !cmp.Contains(entry) {
+			removed = append(removed, entry)
+		}
+	}
+
+	return added, removed
+}
+
+// CreateEntries returns an array of entries based on the given addresses.
+func CreateEntries(addrs []string) (Entries, error) {
+	entries := Entries{}
+	if addrs == nil {
+		return entries, nil
+	}
+
+	for _, addr := range addrs {
+		if len(addr) == 0 {
+			continue
+		}
+		entry, err := NewEntry(addr)
+		if err != nil {
+			return nil, err
+		}
+		entries = append(entries, entry)
+	}
+	return entries, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/discovery/generator.go b/vendor/github.com/docker/docker/pkg/discovery/generator.go
new file mode 100644
index 0000000000..788015fe23
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/discovery/generator.go
@@ -0,0 +1,35 @@
+package discovery // import "github.com/docker/docker/pkg/discovery"
+
+import (
+	"fmt"
+	"regexp"
+	"strconv"
+)
+
+// Generate takes care of IP generation
+func Generate(pattern string) []string {
+	re, _ := regexp.Compile(`\[(.+):(.+)\]`)
+	submatch := re.FindStringSubmatch(pattern)
+	if submatch == nil {
+		return []string{pattern}
+	}
+
+	from, err := strconv.Atoi(submatch[1])
+	if err != nil {
+		return []string{pattern}
+	}
+	to, err := strconv.Atoi(submatch[2])
+	if err != nil {
+		return []string{pattern}
+	}
+
+	template := re.ReplaceAllString(pattern, "%d")
+
+	var result []string
+	for val := from; val <= to; val++ {
+		entry := fmt.Sprintf(template, val)
+		result = append(result, entry)
+	}
+
+	return result
+}
diff --git a/vendor/github.com/docker/docker/pkg/discovery/kv/kv.go b/vendor/github.com/docker/docker/pkg/discovery/kv/kv.go
new file mode 100644
index 0000000000..30fe6714c8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/discovery/kv/kv.go
@@ -0,0 +1,192 @@
+package kv // import "github.com/docker/docker/pkg/discovery/kv"
+
+import (
+	"fmt"
+	"path"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/pkg/discovery"
+	"github.com/docker/go-connections/tlsconfig"
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+	"github.com/docker/libkv/store/consul"
+	"github.com/docker/libkv/store/etcd"
+	"github.com/docker/libkv/store/zookeeper"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	defaultDiscoveryPath = "docker/nodes"
+)
+
+// Discovery is exported
+type Discovery struct {
+	backend   store.Backend
+	store     store.Store
+	heartbeat time.Duration
+	ttl       time.Duration
+	prefix    string
+	path      string
+}
+
+func init() {
+	Init()
+}
+
+// Init is exported
+func Init() {
+	// Register to libkv
+	zookeeper.Register()
+	consul.Register()
+	etcd.Register()
+
+	// Register to internal discovery service
+	discovery.Register("zk", &Discovery{backend: store.ZK})
+	discovery.Register("consul", &Discovery{backend: store.CONSUL})
+	discovery.Register("etcd", &Discovery{backend: store.ETCD})
+}
+
+// Initialize is exported
+func (s *Discovery) Initialize(uris string, heartbeat time.Duration, ttl time.Duration, clusterOpts map[string]string) error {
+	var (
+		parts = strings.SplitN(uris, "/", 2)
+		addrs = strings.Split(parts[0], ",")
+		err   error
+	)
+
+	// A custom prefix to the path can be optionally used.
+	if len(parts) == 2 {
+		s.prefix = parts[1]
+	}
+
+	s.heartbeat = heartbeat
+	s.ttl = ttl
+
+	// Use a custom path if specified in discovery options
+	dpath := defaultDiscoveryPath
+	if clusterOpts["kv.path"] != "" {
+		dpath = clusterOpts["kv.path"]
+	}
+
+	s.path = path.Join(s.prefix, dpath)
+
+	var config *store.Config
+	if clusterOpts["kv.cacertfile"] != "" && clusterOpts["kv.certfile"] != "" && clusterOpts["kv.keyfile"] != "" {
+		logrus.Info("Initializing discovery with TLS")
+		tlsConfig, err := tlsconfig.Client(tlsconfig.Options{
+			CAFile:   clusterOpts["kv.cacertfile"],
+			CertFile: clusterOpts["kv.certfile"],
+			KeyFile:  clusterOpts["kv.keyfile"],
+		})
+		if err != nil {
+			return err
+		}
+		config = &store.Config{
+			// Set ClientTLS to trigger https (bug in libkv/etcd)
+			ClientTLS: &store.ClientTLSConfig{
+				CACertFile: clusterOpts["kv.cacertfile"],
+				CertFile:   clusterOpts["kv.certfile"],
+				KeyFile:    clusterOpts["kv.keyfile"],
+			},
+			// The actual TLS config that will be used
+			TLS: tlsConfig,
+		}
+	} else {
+		logrus.Info("Initializing discovery without TLS")
+	}
+
+	// Creates a new store, will ignore options given
+	// if not supported by the chosen store
+	s.store, err = libkv.NewStore(s.backend, addrs, config)
+	return err
+}
+
+// Watch the store until either there's a store error or we receive a stop request.
+// Returns false if we shouldn't attempt watching the store anymore (stop request received).
+func (s *Discovery) watchOnce(stopCh <-chan struct{}, watchCh <-chan []*store.KVPair, discoveryCh chan discovery.Entries, errCh chan error) bool {
+	for {
+		select {
+		case pairs := <-watchCh:
+			if pairs == nil {
+				return true
+			}
+
+			logrus.WithField("discovery", s.backend).Debugf("Watch triggered with %d nodes", len(pairs))
+
+			// Convert `KVPair` into `discovery.Entry`.
+			addrs := make([]string, len(pairs))
+			for _, pair := range pairs {
+				addrs = append(addrs, string(pair.Value))
+			}
+
+			entries, err := discovery.CreateEntries(addrs)
+			if err != nil {
+				errCh <- err
+			} else {
+				discoveryCh <- entries
+			}
+		case <-stopCh:
+			// We were requested to stop watching.
+			return false
+		}
+	}
+}
+
+// Watch is exported
+func (s *Discovery) Watch(stopCh <-chan struct{}) (<-chan discovery.Entries, <-chan error) {
+	ch := make(chan discovery.Entries)
+	errCh := make(chan error)
+
+	go func() {
+		defer close(ch)
+		defer close(errCh)
+
+		// Forever: Create a store watch, watch until we get an error and then try again.
+		// Will only stop if we receive a stopCh request.
+		for {
+			// Create the path to watch if it does not exist yet
+			exists, err := s.store.Exists(s.path)
+			if err != nil {
+				errCh <- err
+			}
+			if !exists {
+				if err := s.store.Put(s.path, []byte(""), &store.WriteOptions{IsDir: true}); err != nil {
+					errCh <- err
+				}
+			}
+
+			// Set up a watch.
+			watchCh, err := s.store.WatchTree(s.path, stopCh)
+			if err != nil {
+				errCh <- err
+			} else {
+				if !s.watchOnce(stopCh, watchCh, ch, errCh) {
+					return
+				}
+			}
+
+			// If we get here it means the store watch channel was closed. This
+			// is unexpected so let's retry later.
+			errCh <- fmt.Errorf("Unexpected watch error")
+			time.Sleep(s.heartbeat)
+		}
+	}()
+	return ch, errCh
+}
+
+// Register is exported
+func (s *Discovery) Register(addr string) error {
+	opts := &store.WriteOptions{TTL: s.ttl}
+	return s.store.Put(path.Join(s.path, addr), []byte(addr), opts)
+}
+
+// Store returns the underlying store used by KV discovery.
+func (s *Discovery) Store() store.Store {
+	return s.store
+}
+
+// Prefix returns the store prefix
+func (s *Discovery) Prefix() string {
+	return s.prefix
+}
diff --git a/vendor/github.com/docker/docker/pkg/filenotify/filenotify.go b/vendor/github.com/docker/docker/pkg/filenotify/filenotify.go
new file mode 100644
index 0000000000..8b6cb56f17
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/filenotify/filenotify.go
@@ -0,0 +1,40 @@
+// Package filenotify provides a mechanism for watching file(s) for changes.
+// Generally leans on fsnotify, but provides a poll-based notifier which fsnotify does not support.
+// These are wrapped up in a common interface so that either can be used interchangeably in your code.
+package filenotify // import "github.com/docker/docker/pkg/filenotify"
+
+import "github.com/fsnotify/fsnotify"
+
+// FileWatcher is an interface for implementing file notification watchers
+type FileWatcher interface {
+	Events() <-chan fsnotify.Event
+	Errors() <-chan error
+	Add(name string) error
+	Remove(name string) error
+	Close() error
+}
+
+// New tries to use an fs-event watcher, and falls back to the poller if there is an error
+func New() (FileWatcher, error) {
+	if watcher, err := NewEventWatcher(); err == nil {
+		return watcher, nil
+	}
+	return NewPollingWatcher(), nil
+}
+
+// NewPollingWatcher returns a poll-based file watcher
+func NewPollingWatcher() FileWatcher {
+	return &filePoller{
+		events: make(chan fsnotify.Event),
+		errors: make(chan error),
+	}
+}
+
+// NewEventWatcher returns an fs-event based file watcher
+func NewEventWatcher() (FileWatcher, error) {
+	watcher, err := fsnotify.NewWatcher()
+	if err != nil {
+		return nil, err
+	}
+	return &fsNotifyWatcher{watcher}, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/filenotify/fsnotify.go b/vendor/github.com/docker/docker/pkg/filenotify/fsnotify.go
new file mode 100644
index 0000000000..5a737d6530
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/filenotify/fsnotify.go
@@ -0,0 +1,18 @@
+package filenotify // import "github.com/docker/docker/pkg/filenotify"
+
+import "github.com/fsnotify/fsnotify"
+
+// fsNotifyWatcher wraps the fsnotify package to satisfy the FileNotifier interface
+type fsNotifyWatcher struct {
+	*fsnotify.Watcher
+}
+
+// Events returns the fsnotify event channel receiver
+func (w *fsNotifyWatcher) Events() <-chan fsnotify.Event {
+	return w.Watcher.Events
+}
+
+// Errors returns the fsnotify error channel receiver
+func (w *fsNotifyWatcher) Errors() <-chan error {
+	return w.Watcher.Errors
+}
diff --git a/vendor/github.com/docker/docker/pkg/filenotify/poller.go b/vendor/github.com/docker/docker/pkg/filenotify/poller.go
new file mode 100644
index 0000000000..22f1897034
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/filenotify/poller.go
@@ -0,0 +1,204 @@
+package filenotify // import "github.com/docker/docker/pkg/filenotify"
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"sync"
+	"time"
+
+	"github.com/sirupsen/logrus"
+
+	"github.com/fsnotify/fsnotify"
+)
+
+var (
+	// errPollerClosed is returned when the poller is closed
+	errPollerClosed = errors.New("poller is closed")
+	// errNoSuchWatch is returned when trying to remove a watch that doesn't exist
+	errNoSuchWatch = errors.New("watch does not exist")
+)
+
+// watchWaitTime is the time to wait between file poll loops
+const watchWaitTime = 200 * time.Millisecond
+
+// filePoller is used to poll files for changes, especially in cases where fsnotify
+// can't be run (e.g. when inotify handles are exhausted)
+// filePoller satisfies the FileWatcher interface
+type filePoller struct {
+	// watches is the list of files currently being polled, close the associated channel to stop the watch
+	watches map[string]chan struct{}
+	// events is the channel to listen to for watch events
+	events chan fsnotify.Event
+	// errors is the channel to listen to for watch errors
+	errors chan error
+	// mu locks the poller for modification
+	mu sync.Mutex
+	// closed is used to specify when the poller has already closed
+	closed bool
+}
+
+// Add adds a filename to the list of watches
+// once added the file is polled for changes in a separate goroutine
+func (w *filePoller) Add(name string) error {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+
+	if w.closed {
+		return errPollerClosed
+	}
+
+	f, err := os.Open(name)
+	if err != nil {
+		return err
+	}
+	fi, err := os.Stat(name)
+	if err != nil {
+		return err
+	}
+
+	if w.watches == nil {
+		w.watches = make(map[string]chan struct{})
+	}
+	if _, exists := w.watches[name]; exists {
+		return fmt.Errorf("watch exists")
+	}
+	chClose := make(chan struct{})
+	w.watches[name] = chClose
+
+	go w.watch(f, fi, chClose)
+	return nil
+}
+
+// Remove stops and removes watch with the specified name
+func (w *filePoller) Remove(name string) error {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	return w.remove(name)
+}
+
+func (w *filePoller) remove(name string) error {
+	if w.closed {
+		return errPollerClosed
+	}
+
+	chClose, exists := w.watches[name]
+	if !exists {
+		return errNoSuchWatch
+	}
+	close(chClose)
+	delete(w.watches, name)
+	return nil
+}
+
+// Events returns the event channel
+// This is used for notifications on events about watched files
+func (w *filePoller) Events() <-chan fsnotify.Event {
+	return w.events
+}
+
+// Errors returns the errors channel
+// This is used for notifications about errors on watched files
+func (w *filePoller) Errors() <-chan error {
+	return w.errors
+}
+
+// Close closes the poller
+// All watches are stopped, removed, and the poller cannot be added to
+func (w *filePoller) Close() error {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+
+	if w.closed {
+		return nil
+	}
+
+	w.closed = true
+	for name := range w.watches {
+		w.remove(name)
+		delete(w.watches, name)
+	}
+	return nil
+}
+
+// sendEvent publishes the specified event to the events channel
+func (w *filePoller) sendEvent(e fsnotify.Event, chClose <-chan struct{}) error {
+	select {
+	case w.events <- e:
+	case <-chClose:
+		return fmt.Errorf("closed")
+	}
+	return nil
+}
+
+// sendErr publishes the specified error to the errors channel
+func (w *filePoller) sendErr(e error, chClose <-chan struct{}) error {
+	select {
+	case w.errors <- e:
+	case <-chClose:
+		return fmt.Errorf("closed")
+	}
+	return nil
+}
+
+// watch is responsible for polling the specified file for changes
+// upon finding changes to a file or errors, sendEvent/sendErr is called
+func (w *filePoller) watch(f *os.File, lastFi os.FileInfo, chClose chan struct{}) {
+	defer f.Close()
+	for {
+		time.Sleep(watchWaitTime)
+		select {
+		case <-chClose:
+			logrus.Debugf("watch for %s closed", f.Name())
+			return
+		default:
+		}
+
+		fi, err := os.Stat(f.Name())
+		if err != nil {
+			// if we got an error here and lastFi is not set, we can presume that nothing has changed
+			// This should be safe since before `watch()` is called, a stat is performed, there is any error `watch` is not called
+			if lastFi == nil {
+				continue
+			}
+			// If it doesn't exist at this point, it must have been removed
+			// no need to send the error here since this is a valid operation
+			if os.IsNotExist(err) {
+				if err := w.sendEvent(fsnotify.Event{Op: fsnotify.Remove, Name: f.Name()}, chClose); err != nil {
+					return
+				}
+				lastFi = nil
+				continue
+			}
+			// at this point, send the error
+			if err := w.sendErr(err, chClose); err != nil {
+				return
+			}
+			continue
+		}
+
+		if lastFi == nil {
+			if err := w.sendEvent(fsnotify.Event{Op: fsnotify.Create, Name: fi.Name()}, chClose); err != nil {
+				return
+			}
+			lastFi = fi
+			continue
+		}
+
+		if fi.Mode() != lastFi.Mode() {
+			if err := w.sendEvent(fsnotify.Event{Op: fsnotify.Chmod, Name: fi.Name()}, chClose); err != nil {
+				return
+			}
+			lastFi = fi
+			continue
+		}
+
+		if fi.ModTime() != lastFi.ModTime() || fi.Size() != lastFi.Size() {
+			if err := w.sendEvent(fsnotify.Event{Op: fsnotify.Write, Name: fi.Name()}, chClose); err != nil {
+				return
+			}
+			lastFi = fi
+			continue
+		}
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/ioutils/readers.go b/vendor/github.com/docker/docker/pkg/ioutils/readers.go
index 72f7f2319f..1f657bd3dc 100644
--- a/vendor/github.com/docker/docker/pkg/ioutils/readers.go
+++ b/vendor/github.com/docker/docker/pkg/ioutils/readers.go
@@ -1,11 +1,10 @@
 package ioutils // import "github.com/docker/docker/pkg/ioutils"
 
 import (
+	"context"
 	"crypto/sha256"
 	"encoding/hex"
 	"io"
-
-	"golang.org/x/net/context"
 )
 
 // ReadCloserWrapper wraps an io.Reader, and implements an io.ReadCloser
diff --git a/vendor/github.com/docker/docker/pkg/jsonmessage/jsonmessage.go b/vendor/github.com/docker/docker/pkg/jsonmessage/jsonmessage.go
new file mode 100644
index 0000000000..b9f40d3ef1
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/jsonmessage/jsonmessage.go
@@ -0,0 +1,335 @@
+package jsonmessage // import "github.com/docker/docker/pkg/jsonmessage"
+
+import (
+	"encoding/json"
+	"fmt"
+	"io"
+	"os"
+	"strings"
+	"time"
+
+	gotty "github.com/Nvveen/Gotty"
+	"github.com/docker/docker/pkg/term"
+	units "github.com/docker/go-units"
+)
+
+// RFC3339NanoFixed is time.RFC3339Nano with nanoseconds padded using zeros to
+// ensure the formatted time isalways the same number of characters.
+const RFC3339NanoFixed = "2006-01-02T15:04:05.000000000Z07:00"
+
+// JSONError wraps a concrete Code and Message, `Code` is
+// is an integer error code, `Message` is the error message.
+type JSONError struct {
+	Code    int    `json:"code,omitempty"`
+	Message string `json:"message,omitempty"`
+}
+
+func (e *JSONError) Error() string {
+	return e.Message
+}
+
+// JSONProgress describes a Progress. terminalFd is the fd of the current terminal,
+// Start is the initial value for the operation. Current is the current status and
+// value of the progress made towards Total. Total is the end value describing when
+// we made 100% progress for an operation.
+type JSONProgress struct {
+	terminalFd uintptr
+	Current    int64 `json:"current,omitempty"`
+	Total      int64 `json:"total,omitempty"`
+	Start      int64 `json:"start,omitempty"`
+	// If true, don't show xB/yB
+	HideCounts bool   `json:"hidecounts,omitempty"`
+	Units      string `json:"units,omitempty"`
+	nowFunc    func() time.Time
+	winSize    int
+}
+
+func (p *JSONProgress) String() string {
+	var (
+		width       = p.width()
+		pbBox       string
+		numbersBox  string
+		timeLeftBox string
+	)
+	if p.Current <= 0 && p.Total <= 0 {
+		return ""
+	}
+	if p.Total <= 0 {
+		switch p.Units {
+		case "":
+			current := units.HumanSize(float64(p.Current))
+			return fmt.Sprintf("%8v", current)
+		default:
+			return fmt.Sprintf("%d %s", p.Current, p.Units)
+		}
+	}
+
+	percentage := int(float64(p.Current)/float64(p.Total)*100) / 2
+	if percentage > 50 {
+		percentage = 50
+	}
+	if width > 110 {
+		// this number can't be negative gh#7136
+		numSpaces := 0
+		if 50-percentage > 0 {
+			numSpaces = 50 - percentage
+		}
+		pbBox = fmt.Sprintf("[%s>%s] ", strings.Repeat("=", percentage), strings.Repeat(" ", numSpaces))
+	}
+
+	switch {
+	case p.HideCounts:
+	case p.Units == "": // no units, use bytes
+		current := units.HumanSize(float64(p.Current))
+		total := units.HumanSize(float64(p.Total))
+
+		numbersBox = fmt.Sprintf("%8v/%v", current, total)
+
+		if p.Current > p.Total {
+			// remove total display if the reported current is wonky.
+			numbersBox = fmt.Sprintf("%8v", current)
+		}
+	default:
+		numbersBox = fmt.Sprintf("%d/%d %s", p.Current, p.Total, p.Units)
+
+		if p.Current > p.Total {
+			// remove total display if the reported current is wonky.
+			numbersBox = fmt.Sprintf("%d %s", p.Current, p.Units)
+		}
+	}
+
+	if p.Current > 0 && p.Start > 0 && percentage < 50 {
+		fromStart := p.now().Sub(time.Unix(p.Start, 0))
+		perEntry := fromStart / time.Duration(p.Current)
+		left := time.Duration(p.Total-p.Current) * perEntry
+		left = (left / time.Second) * time.Second
+
+		if width > 50 {
+			timeLeftBox = " " + left.String()
+		}
+	}
+	return pbBox + numbersBox + timeLeftBox
+}
+
+// shim for testing
+func (p *JSONProgress) now() time.Time {
+	if p.nowFunc == nil {
+		p.nowFunc = func() time.Time {
+			return time.Now().UTC()
+		}
+	}
+	return p.nowFunc()
+}
+
+// shim for testing
+func (p *JSONProgress) width() int {
+	if p.winSize != 0 {
+		return p.winSize
+	}
+	ws, err := term.GetWinsize(p.terminalFd)
+	if err == nil {
+		return int(ws.Width)
+	}
+	return 200
+}
+
+// JSONMessage defines a message struct. It describes
+// the created time, where it from, status, ID of the
+// message. It's used for docker events.
+type JSONMessage struct {
+	Stream          string        `json:"stream,omitempty"`
+	Status          string        `json:"status,omitempty"`
+	Progress        *JSONProgress `json:"progressDetail,omitempty"`
+	ProgressMessage string        `json:"progress,omitempty"` //deprecated
+	ID              string        `json:"id,omitempty"`
+	From            string        `json:"from,omitempty"`
+	Time            int64         `json:"time,omitempty"`
+	TimeNano        int64         `json:"timeNano,omitempty"`
+	Error           *JSONError    `json:"errorDetail,omitempty"`
+	ErrorMessage    string        `json:"error,omitempty"` //deprecated
+	// Aux contains out-of-band data, such as digests for push signing and image id after building.
+	Aux *json.RawMessage `json:"aux,omitempty"`
+}
+
+/* Satisfied by gotty.TermInfo as well as noTermInfo from below */
+type termInfo interface {
+	Parse(attr string, params ...interface{}) (string, error)
+}
+
+type noTermInfo struct{} // canary used when no terminfo.
+
+func (ti *noTermInfo) Parse(attr string, params ...interface{}) (string, error) {
+	return "", fmt.Errorf("noTermInfo")
+}
+
+func clearLine(out io.Writer, ti termInfo) {
+	// el2 (clear whole line) is not exposed by terminfo.
+
+	// First clear line from beginning to cursor
+	if attr, err := ti.Parse("el1"); err == nil {
+		fmt.Fprintf(out, "%s", attr)
+	} else {
+		fmt.Fprintf(out, "\x1b[1K")
+	}
+	// Then clear line from cursor to end
+	if attr, err := ti.Parse("el"); err == nil {
+		fmt.Fprintf(out, "%s", attr)
+	} else {
+		fmt.Fprintf(out, "\x1b[K")
+	}
+}
+
+func cursorUp(out io.Writer, ti termInfo, l int) {
+	if l == 0 { // Should never be the case, but be tolerant
+		return
+	}
+	if attr, err := ti.Parse("cuu", l); err == nil {
+		fmt.Fprintf(out, "%s", attr)
+	} else {
+		fmt.Fprintf(out, "\x1b[%dA", l)
+	}
+}
+
+func cursorDown(out io.Writer, ti termInfo, l int) {
+	if l == 0 { // Should never be the case, but be tolerant
+		return
+	}
+	if attr, err := ti.Parse("cud", l); err == nil {
+		fmt.Fprintf(out, "%s", attr)
+	} else {
+		fmt.Fprintf(out, "\x1b[%dB", l)
+	}
+}
+
+// Display displays the JSONMessage to `out`. `termInfo` is non-nil if `out`
+// is a terminal. If this is the case, it will erase the entire current line
+// when displaying the progressbar.
+func (jm *JSONMessage) Display(out io.Writer, termInfo termInfo) error {
+	if jm.Error != nil {
+		if jm.Error.Code == 401 {
+			return fmt.Errorf("authentication is required")
+		}
+		return jm.Error
+	}
+	var endl string
+	if termInfo != nil && jm.Stream == "" && jm.Progress != nil {
+		clearLine(out, termInfo)
+		endl = "\r"
+		fmt.Fprintf(out, endl)
+	} else if jm.Progress != nil && jm.Progress.String() != "" { //disable progressbar in non-terminal
+		return nil
+	}
+	if jm.TimeNano != 0 {
+		fmt.Fprintf(out, "%s ", time.Unix(0, jm.TimeNano).Format(RFC3339NanoFixed))
+	} else if jm.Time != 0 {
+		fmt.Fprintf(out, "%s ", time.Unix(jm.Time, 0).Format(RFC3339NanoFixed))
+	}
+	if jm.ID != "" {
+		fmt.Fprintf(out, "%s: ", jm.ID)
+	}
+	if jm.From != "" {
+		fmt.Fprintf(out, "(from %s) ", jm.From)
+	}
+	if jm.Progress != nil && termInfo != nil {
+		fmt.Fprintf(out, "%s %s%s", jm.Status, jm.Progress.String(), endl)
+	} else if jm.ProgressMessage != "" { //deprecated
+		fmt.Fprintf(out, "%s %s%s", jm.Status, jm.ProgressMessage, endl)
+	} else if jm.Stream != "" {
+		fmt.Fprintf(out, "%s%s", jm.Stream, endl)
+	} else {
+		fmt.Fprintf(out, "%s%s\n", jm.Status, endl)
+	}
+	return nil
+}
+
+// DisplayJSONMessagesStream displays a json message stream from `in` to `out`, `isTerminal`
+// describes if `out` is a terminal. If this is the case, it will print `\n` at the end of
+// each line and move the cursor while displaying.
+func DisplayJSONMessagesStream(in io.Reader, out io.Writer, terminalFd uintptr, isTerminal bool, auxCallback func(*json.RawMessage)) error {
+	var (
+		dec = json.NewDecoder(in)
+		ids = make(map[string]int)
+	)
+
+	var termInfo termInfo
+
+	if isTerminal {
+		term := os.Getenv("TERM")
+		if term == "" {
+			term = "vt102"
+		}
+
+		var err error
+		if termInfo, err = gotty.OpenTermInfo(term); err != nil {
+			termInfo = &noTermInfo{}
+		}
+	}
+
+	for {
+		diff := 0
+		var jm JSONMessage
+		if err := dec.Decode(&jm); err != nil {
+			if err == io.EOF {
+				break
+			}
+			return err
+		}
+
+		if jm.Aux != nil {
+			if auxCallback != nil {
+				auxCallback(jm.Aux)
+			}
+			continue
+		}
+
+		if jm.Progress != nil {
+			jm.Progress.terminalFd = terminalFd
+		}
+		if jm.ID != "" && (jm.Progress != nil || jm.ProgressMessage != "") {
+			line, ok := ids[jm.ID]
+			if !ok {
+				// NOTE: This approach of using len(id) to
+				// figure out the number of lines of history
+				// only works as long as we clear the history
+				// when we output something that's not
+				// accounted for in the map, such as a line
+				// with no ID.
+				line = len(ids)
+				ids[jm.ID] = line
+				if termInfo != nil {
+					fmt.Fprintf(out, "\n")
+				}
+			}
+			diff = len(ids) - line
+			if termInfo != nil {
+				cursorUp(out, termInfo, diff)
+			}
+		} else {
+			// When outputting something that isn't progress
+			// output, clear the history of previous lines. We
+			// don't want progress entries from some previous
+			// operation to be updated (for example, pull -a
+			// with multiple tags).
+			ids = make(map[string]int)
+		}
+		err := jm.Display(out, termInfo)
+		if jm.ID != "" && termInfo != nil {
+			cursorDown(out, termInfo, diff)
+		}
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+type stream interface {
+	io.Writer
+	FD() uintptr
+	IsTerminal() bool
+}
+
+// DisplayJSONMessagesToStream prints json messages to the output stream
+func DisplayJSONMessagesToStream(in io.Reader, stream stream, auxCallback func(*json.RawMessage)) error {
+	return DisplayJSONMessagesStream(in, stream, stream.FD(), stream.IsTerminal(), auxCallback)
+}
diff --git a/vendor/github.com/docker/docker/pkg/locker/locker.go b/vendor/github.com/docker/docker/pkg/locker/locker.go
new file mode 100644
index 0000000000..dbd47fc465
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/locker/locker.go
@@ -0,0 +1,112 @@
+/*
+Package locker provides a mechanism for creating finer-grained locking to help
+free up more global locks to handle other tasks.
+
+The implementation looks close to a sync.Mutex, however the user must provide a
+reference to use to refer to the underlying lock when locking and unlocking,
+and unlock may generate an error.
+
+If a lock with a given name does not exist when `Lock` is called, one is
+created.
+Lock references are automatically cleaned up on `Unlock` if nothing else is
+waiting for the lock.
+*/
+package locker // import "github.com/docker/docker/pkg/locker"
+
+import (
+	"errors"
+	"sync"
+	"sync/atomic"
+)
+
+// ErrNoSuchLock is returned when the requested lock does not exist
+var ErrNoSuchLock = errors.New("no such lock")
+
+// Locker provides a locking mechanism based on the passed in reference name
+type Locker struct {
+	mu    sync.Mutex
+	locks map[string]*lockCtr
+}
+
+// lockCtr is used by Locker to represent a lock with a given name.
+type lockCtr struct {
+	mu sync.Mutex
+	// waiters is the number of waiters waiting to acquire the lock
+	// this is int32 instead of uint32 so we can add `-1` in `dec()`
+	waiters int32
+}
+
+// inc increments the number of waiters waiting for the lock
+func (l *lockCtr) inc() {
+	atomic.AddInt32(&l.waiters, 1)
+}
+
+// dec decrements the number of waiters waiting on the lock
+func (l *lockCtr) dec() {
+	atomic.AddInt32(&l.waiters, -1)
+}
+
+// count gets the current number of waiters
+func (l *lockCtr) count() int32 {
+	return atomic.LoadInt32(&l.waiters)
+}
+
+// Lock locks the mutex
+func (l *lockCtr) Lock() {
+	l.mu.Lock()
+}
+
+// Unlock unlocks the mutex
+func (l *lockCtr) Unlock() {
+	l.mu.Unlock()
+}
+
+// New creates a new Locker
+func New() *Locker {
+	return &Locker{
+		locks: make(map[string]*lockCtr),
+	}
+}
+
+// Lock locks a mutex with the given name. If it doesn't exist, one is created
+func (l *Locker) Lock(name string) {
+	l.mu.Lock()
+	if l.locks == nil {
+		l.locks = make(map[string]*lockCtr)
+	}
+
+	nameLock, exists := l.locks[name]
+	if !exists {
+		nameLock = &lockCtr{}
+		l.locks[name] = nameLock
+	}
+
+	// increment the nameLock waiters while inside the main mutex
+	// this makes sure that the lock isn't deleted if `Lock` and `Unlock` are called concurrently
+	nameLock.inc()
+	l.mu.Unlock()
+
+	// Lock the nameLock outside the main mutex so we don't block other operations
+	// once locked then we can decrement the number of waiters for this lock
+	nameLock.Lock()
+	nameLock.dec()
+}
+
+// Unlock unlocks the mutex with the given name
+// If the given lock is not being waited on by any other callers, it is deleted
+func (l *Locker) Unlock(name string) error {
+	l.mu.Lock()
+	nameLock, exists := l.locks[name]
+	if !exists {
+		l.mu.Unlock()
+		return ErrNoSuchLock
+	}
+
+	if nameLock.count() == 0 {
+		delete(l.locks, name)
+	}
+	nameLock.Unlock()
+
+	l.mu.Unlock()
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/mount/mount.go b/vendor/github.com/docker/docker/pkg/mount/mount.go
index 8ff4925d73..874aff6545 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mount.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mount.go
@@ -3,32 +3,64 @@ package mount // import "github.com/docker/docker/pkg/mount"
 import (
 	"sort"
 	"strings"
-
 	"syscall"
 
 	"github.com/sirupsen/logrus"
 )
 
-// GetMounts retrieves a list of mounts for the current running process.
-func GetMounts() ([]*Info, error) {
-	return parseMountTable()
+// FilterFunc is a type defining a callback function
+// to filter out unwanted entries. It takes a pointer
+// to an Info struct (not fully populated, currently
+// only Mountpoint is filled in), and returns two booleans:
+//  - skip: true if the entry should be skipped
+//  - stop: true if parsing should be stopped after the entry
+type FilterFunc func(*Info) (skip, stop bool)
+
+// PrefixFilter discards all entries whose mount points
+// do not start with a prefix specified
+func PrefixFilter(prefix string) FilterFunc {
+	return func(m *Info) (bool, bool) {
+		skip := !strings.HasPrefix(m.Mountpoint, prefix)
+		return skip, false
+	}
+}
+
+// SingleEntryFilter looks for a specific entry
+func SingleEntryFilter(mp string) FilterFunc {
+	return func(m *Info) (bool, bool) {
+		if m.Mountpoint == mp {
+			return false, true // don't skip, stop now
+		}
+		return true, false // skip, keep going
+	}
+}
+
+// ParentsFilter returns all entries whose mount points
+// can be parents of a path specified, discarding others.
+// For example, given `/var/lib/docker/something`, entries
+// like `/var/lib/docker`, `/var` and `/` are returned.
+func ParentsFilter(path string) FilterFunc {
+	return func(m *Info) (bool, bool) {
+		skip := !strings.HasPrefix(path, m.Mountpoint)
+		return skip, false
+	}
+}
+
+// GetMounts retrieves a list of mounts for the current running process,
+// with an optional filter applied (use nil for no filter).
+func GetMounts(f FilterFunc) ([]*Info, error) {
+	return parseMountTable(f)
 }
 
 // Mounted determines if a specified mountpoint has been mounted.
 // On Linux it looks at /proc/self/mountinfo.
 func Mounted(mountpoint string) (bool, error) {
-	entries, err := parseMountTable()
+	entries, err := GetMounts(SingleEntryFilter(mountpoint))
 	if err != nil {
 		return false, err
 	}
 
-	// Search the table for the mountpoint
-	for _, e := range entries {
-		if e.Mountpoint == mountpoint {
-			return true, nil
-		}
-	}
-	return false, nil
+	return len(entries) > 0, nil
 }
 
 // Mount will mount filesystem according to the specified configuration, on the
@@ -57,27 +89,28 @@ func ForceMount(device, target, mType, options string) error {
 // Unmount lazily unmounts a filesystem on supported platforms, otherwise
 // does a normal unmount.
 func Unmount(target string) error {
-	if mounted, err := Mounted(target); err != nil || !mounted {
-		return err
+	err := unmount(target, mntDetach)
+	if err == syscall.EINVAL {
+		// ignore "not mounted" error
+		err = nil
 	}
-	return unmount(target, mntDetach)
+	return err
 }
 
 // RecursiveUnmount unmounts the target and all mounts underneath, starting with
 // the deepsest mount first.
 func RecursiveUnmount(target string) error {
-	mounts, err := GetMounts()
+	mounts, err := parseMountTable(PrefixFilter(target))
 	if err != nil {
 		return err
 	}
 
 	// Make the deepest mount be first
-	sort.Sort(sort.Reverse(byMountpoint(mounts)))
+	sort.Slice(mounts, func(i, j int) bool {
+		return len(mounts[i].Mountpoint) > len(mounts[j].Mountpoint)
+	})
 
 	for i, m := range mounts {
-		if !strings.HasPrefix(m.Mountpoint, target) {
-			continue
-		}
 		logrus.Debugf("Trying to unmount %s", m.Mountpoint)
 		err = unmount(m.Mountpoint, mntDetach)
 		if err != nil {
diff --git a/vendor/github.com/docker/docker/pkg/mount/mountinfo.go b/vendor/github.com/docker/docker/pkg/mount/mountinfo.go
index 05803938af..ecd03fc022 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mountinfo.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mountinfo.go
@@ -38,17 +38,3 @@ type Info struct {
 	// VfsOpts represents per super block options.
 	VfsOpts string
 }
-
-type byMountpoint []*Info
-
-func (by byMountpoint) Len() int {
-	return len(by)
-}
-
-func (by byMountpoint) Less(i, j int) bool {
-	return by[i].Mountpoint < by[j].Mountpoint
-}
-
-func (by byMountpoint) Swap(i, j int) {
-	by[i], by[j] = by[j], by[i]
-}
diff --git a/vendor/github.com/docker/docker/pkg/mount/mountinfo_freebsd.go b/vendor/github.com/docker/docker/pkg/mount/mountinfo_freebsd.go
index b86f4a97f6..36c89dc1a2 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mountinfo_freebsd.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mountinfo_freebsd.go
@@ -15,7 +15,7 @@ import (
 
 // Parse /proc/self/mountinfo because comparing Dev and ino does not work from
 // bind mounts.
-func parseMountTable() ([]*Info, error) {
+func parseMountTable(filter FilterFunc) ([]*Info, error) {
 	var rawEntries *C.struct_statfs
 
 	count := int(C.getmntinfo(&rawEntries, C.MNT_WAIT))
@@ -32,10 +32,24 @@ func parseMountTable() ([]*Info, error) {
 	var out []*Info
 	for _, entry := range entries {
 		var mountinfo Info
+		var skip, stop bool
 		mountinfo.Mountpoint = C.GoString(&entry.f_mntonname[0])
+
+		if filter != nil {
+			// filter out entries we're not interested in
+			skip, stop = filter(p)
+			if skip {
+				continue
+			}
+		}
+
 		mountinfo.Source = C.GoString(&entry.f_mntfromname[0])
 		mountinfo.Fstype = C.GoString(&entry.f_fstypename[0])
+
 		out = append(out, &mountinfo)
+		if stop {
+			break
+		}
 	}
 	return out, nil
 }
diff --git a/vendor/github.com/docker/docker/pkg/mount/mountinfo_linux.go b/vendor/github.com/docker/docker/pkg/mount/mountinfo_linux.go
index 4afa8d538d..c1dba01fc3 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mountinfo_linux.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mountinfo_linux.go
@@ -5,80 +5,119 @@ import (
 	"fmt"
 	"io"
 	"os"
+	"strconv"
 	"strings"
 )
 
-const (
-	/* 36 35 98:0 /mnt1 /mnt2 rw,noatime master:1 - ext3 /dev/root rw,errors=continue
-	   (1)(2)(3)   (4)   (5)      (6)      (7)   (8) (9)   (10)         (11)
+func parseInfoFile(r io.Reader, filter FilterFunc) ([]*Info, error) {
+	s := bufio.NewScanner(r)
+	out := []*Info{}
+	for s.Scan() {
+		if err := s.Err(); err != nil {
+			return nil, err
+		}
+		/*
+		   36 35 98:0 /mnt1 /mnt2 rw,noatime master:1 - ext3 /dev/root rw,errors=continue
+		   (1)(2)(3)   (4)   (5)      (6)      (7)   (8) (9)   (10)         (11)
 
-	   (1) mount ID:  unique identifier of the mount (may be reused after umount)
-	   (2) parent ID:  ID of parent (or of self for the top of the mount tree)
-	   (3) major:minor:  value of st_dev for files on filesystem
-	   (4) root:  root of the mount within the filesystem
-	   (5) mount point:  mount point relative to the process's root
-	   (6) mount options:  per mount options
-	   (7) optional fields:  zero or more fields of the form "tag[:value]"
-	   (8) separator:  marks the end of the optional fields
-	   (9) filesystem type:  name of filesystem of the form "type[.subtype]"
-	   (10) mount source:  filesystem specific information or "none"
-	   (11) super options:  per super block options*/
-	mountinfoFormat = "%d %d %d:%d %s %s %s %s"
-)
+		   (1) mount ID:  unique identifier of the mount (may be reused after umount)
+		   (2) parent ID:  ID of parent (or of self for the top of the mount tree)
+		   (3) major:minor:  value of st_dev for files on filesystem
+		   (4) root:  root of the mount within the filesystem
+		   (5) mount point:  mount point relative to the process's root
+		   (6) mount options:  per mount options
+		   (7) optional fields:  zero or more fields of the form "tag[:value]"
+		   (8) separator:  marks the end of the optional fields
+		   (9) filesystem type:  name of filesystem of the form "type[.subtype]"
+		   (10) mount source:  filesystem specific information or "none"
+		   (11) super options:  per super block options
+		*/
 
-// Parse /proc/self/mountinfo because comparing Dev and ino does not work from
-// bind mounts
-func parseMountTable() ([]*Info, error) {
-	f, err := os.Open("/proc/self/mountinfo")
-	if err != nil {
-		return nil, err
-	}
-	defer f.Close()
+		text := s.Text()
+		fields := strings.Split(text, " ")
+		numFields := len(fields)
+		if numFields < 10 {
+			// should be at least 10 fields
+			return nil, fmt.Errorf("Parsing '%s' failed: not enough fields (%d)", text, numFields)
+		}
 
-	return parseInfoFile(f)
-}
+		p := &Info{}
+		// ignore any numbers parsing errors, as there should not be any
+		p.ID, _ = strconv.Atoi(fields[0])
+		p.Parent, _ = strconv.Atoi(fields[1])
+		mm := strings.Split(fields[2], ":")
+		if len(mm) != 2 {
+			return nil, fmt.Errorf("Parsing '%s' failed: unexpected minor:major pair %s", text, mm)
+		}
+		p.Major, _ = strconv.Atoi(mm[0])
+		p.Minor, _ = strconv.Atoi(mm[1])
 
-func parseInfoFile(r io.Reader) ([]*Info, error) {
-	var (
-		s   = bufio.NewScanner(r)
-		out = []*Info{}
-	)
+		p.Root = fields[3]
+		p.Mountpoint = fields[4]
+		p.Opts = fields[5]
 
-	for s.Scan() {
-		if err := s.Err(); err != nil {
-			return nil, err
+		var skip, stop bool
+		if filter != nil {
+			// filter out entries we're not interested in
+			skip, stop = filter(p)
+			if skip {
+				continue
+			}
 		}
 
-		var (
-			p              = &Info{}
-			text           = s.Text()
-			optionalFields string
-		)
-
-		if _, err := fmt.Sscanf(text, mountinfoFormat,
-			&p.ID, &p.Parent, &p.Major, &p.Minor,
-			&p.Root, &p.Mountpoint, &p.Opts, &optionalFields); err != nil {
-			return nil, fmt.Errorf("Scanning '%s' failed: %s", text, err)
+		// one or more optional fields, when a separator (-)
+		i := 6
+		for ; i < numFields && fields[i] != "-"; i++ {
+			switch i {
+			case 6:
+				p.Optional = fields[6]
+			default:
+				/* NOTE there might be more optional fields before the such as
+				   fields[7]...fields[N] (where N < sepIndex), although
+				   as of Linux kernel 4.15 the only known ones are
+				   mount propagation flags in fields[6]. The correct
+				   behavior is to ignore any unknown optional fields.
+				*/
+				break
+			}
 		}
-		// Safe as mountinfo encodes mountpoints with spaces as \040.
-		index := strings.Index(text, " - ")
-		postSeparatorFields := strings.Fields(text[index+3:])
-		if len(postSeparatorFields) < 3 {
-			return nil, fmt.Errorf("Error found less than 3 fields post '-' in %q", text)
+		if i == numFields {
+			return nil, fmt.Errorf("Parsing '%s' failed: missing separator ('-')", text)
 		}
 
-		if optionalFields != "-" {
-			p.Optional = optionalFields
+		// There should be 3 fields after the separator...
+		if i+4 > numFields {
+			return nil, fmt.Errorf("Parsing '%s' failed: not enough fields after a separator", text)
 		}
+		// ... but in Linux <= 3.9 mounting a cifs with spaces in a share name
+		// (like "//serv/My Documents") _may_ end up having a space in the last field
+		// of mountinfo (like "unc=//serv/My Documents"). Since kernel 3.10-rc1, cifs
+		// option unc= is ignored,  so a space should not appear. In here we ignore
+		// those "extra" fields caused by extra spaces.
+		p.Fstype = fields[i+1]
+		p.Source = fields[i+2]
+		p.VfsOpts = fields[i+3]
 
-		p.Fstype = postSeparatorFields[0]
-		p.Source = postSeparatorFields[1]
-		p.VfsOpts = strings.Join(postSeparatorFields[2:], " ")
 		out = append(out, p)
+		if stop {
+			break
+		}
 	}
 	return out, nil
 }
 
+// Parse /proc/self/mountinfo because comparing Dev and ino does not work from
+// bind mounts
+func parseMountTable(filter FilterFunc) ([]*Info, error) {
+	f, err := os.Open("/proc/self/mountinfo")
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return parseInfoFile(f, filter)
+}
+
 // PidMountInfo collects the mounts for a specific process ID. If the process
 // ID is unknown, it is better to use `GetMounts` which will inspect
 // "/proc/self/mountinfo" instead.
@@ -89,5 +128,5 @@ func PidMountInfo(pid int) ([]*Info, error) {
 	}
 	defer f.Close()
 
-	return parseInfoFile(f)
+	return parseInfoFile(f, nil)
 }
diff --git a/vendor/github.com/docker/docker/pkg/mount/mountinfo_unsupported.go b/vendor/github.com/docker/docker/pkg/mount/mountinfo_unsupported.go
index 2ecc8baed8..fd16d3ed69 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mountinfo_unsupported.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mountinfo_unsupported.go
@@ -7,6 +7,6 @@ import (
 	"runtime"
 )
 
-func parseMountTable() ([]*Info, error) {
+func parseMountTable(f FilterFunc) ([]*Info, error) {
 	return nil, fmt.Errorf("mount.parseMountTable is not implemented on %s/%s", runtime.GOOS, runtime.GOARCH)
 }
diff --git a/vendor/github.com/docker/docker/pkg/mount/mountinfo_windows.go b/vendor/github.com/docker/docker/pkg/mount/mountinfo_windows.go
index 7ecba7c13a..27e0f6976e 100644
--- a/vendor/github.com/docker/docker/pkg/mount/mountinfo_windows.go
+++ b/vendor/github.com/docker/docker/pkg/mount/mountinfo_windows.go
@@ -1,6 +1,6 @@
 package mount // import "github.com/docker/docker/pkg/mount"
 
-func parseMountTable() ([]*Info, error) {
+func parseMountTable(f FilterFunc) ([]*Info, error) {
 	// Do NOT return an error!
 	return nil, nil
 }
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel.go
new file mode 100644
index 0000000000..94780ef610
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel.go
@@ -0,0 +1,74 @@
+// +build !windows
+
+// Package kernel provides helper function to get, parse and compare kernel
+// versions for different platforms.
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"errors"
+	"fmt"
+)
+
+// VersionInfo holds information about the kernel.
+type VersionInfo struct {
+	Kernel int    // Version of the kernel (e.g. 4.1.2-generic -> 4)
+	Major  int    // Major part of the kernel version (e.g. 4.1.2-generic -> 1)
+	Minor  int    // Minor part of the kernel version (e.g. 4.1.2-generic -> 2)
+	Flavor string // Flavor of the kernel version (e.g. 4.1.2-generic -> generic)
+}
+
+func (k *VersionInfo) String() string {
+	return fmt.Sprintf("%d.%d.%d%s", k.Kernel, k.Major, k.Minor, k.Flavor)
+}
+
+// CompareKernelVersion compares two kernel.VersionInfo structs.
+// Returns -1 if a < b, 0 if a == b, 1 it a > b
+func CompareKernelVersion(a, b VersionInfo) int {
+	if a.Kernel < b.Kernel {
+		return -1
+	} else if a.Kernel > b.Kernel {
+		return 1
+	}
+
+	if a.Major < b.Major {
+		return -1
+	} else if a.Major > b.Major {
+		return 1
+	}
+
+	if a.Minor < b.Minor {
+		return -1
+	} else if a.Minor > b.Minor {
+		return 1
+	}
+
+	return 0
+}
+
+// ParseRelease parses a string and creates a VersionInfo based on it.
+func ParseRelease(release string) (*VersionInfo, error) {
+	var (
+		kernel, major, minor, parsed int
+		flavor, partial              string
+	)
+
+	// Ignore error from Sscanf to allow an empty flavor.  Instead, just
+	// make sure we got all the version numbers.
+	parsed, _ = fmt.Sscanf(release, "%d.%d%s", &kernel, &major, &partial)
+	if parsed < 2 {
+		return nil, errors.New("Can't parse kernel version " + release)
+	}
+
+	// sometimes we have 3.12.25-gentoo, but sometimes we just have 3.12-1-amd64
+	parsed, _ = fmt.Sscanf(partial, ".%d%s", &minor, &flavor)
+	if parsed < 1 {
+		flavor = partial
+	}
+
+	return &VersionInfo{
+		Kernel: kernel,
+		Major:  major,
+		Minor:  minor,
+		Flavor: flavor,
+	}, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_darwin.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_darwin.go
new file mode 100644
index 0000000000..6e599eebcc
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_darwin.go
@@ -0,0 +1,56 @@
+// +build darwin
+
+// Package kernel provides helper function to get, parse and compare kernel
+// versions for different platforms.
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"fmt"
+	"os/exec"
+	"strings"
+
+	"github.com/mattn/go-shellwords"
+)
+
+// GetKernelVersion gets the current kernel version.
+func GetKernelVersion() (*VersionInfo, error) {
+	release, err := getRelease()
+	if err != nil {
+		return nil, err
+	}
+
+	return ParseRelease(release)
+}
+
+// getRelease uses `system_profiler SPSoftwareDataType` to get OSX kernel version
+func getRelease() (string, error) {
+	cmd := exec.Command("system_profiler", "SPSoftwareDataType")
+	osName, err := cmd.Output()
+	if err != nil {
+		return "", err
+	}
+
+	var release string
+	data := strings.Split(string(osName), "\n")
+	for _, line := range data {
+		if strings.Contains(line, "Kernel Version") {
+			// It has the format like '      Kernel Version: Darwin 14.5.0'
+			content := strings.SplitN(line, ":", 2)
+			if len(content) != 2 {
+				return "", fmt.Errorf("Kernel Version is invalid")
+			}
+
+			prettyNames, err := shellwords.Parse(content[1])
+			if err != nil {
+				return "", fmt.Errorf("Kernel Version is invalid: %s", err.Error())
+			}
+
+			if len(prettyNames) != 2 {
+				return "", fmt.Errorf("Kernel Version needs to be 'Darwin x.x.x' ")
+			}
+			release = prettyNames[1]
+		}
+	}
+
+	return release, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_unix.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_unix.go
new file mode 100644
index 0000000000..8a9aa31225
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_unix.go
@@ -0,0 +1,35 @@
+// +build linux freebsd openbsd
+
+// Package kernel provides helper function to get, parse and compare kernel
+// versions for different platforms.
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"bytes"
+
+	"github.com/sirupsen/logrus"
+)
+
+// GetKernelVersion gets the current kernel version.
+func GetKernelVersion() (*VersionInfo, error) {
+	uts, err := uname()
+	if err != nil {
+		return nil, err
+	}
+
+	// Remove the \x00 from the release for Atoi to parse correctly
+	return ParseRelease(string(uts.Release[:bytes.IndexByte(uts.Release[:], 0)]))
+}
+
+// CheckKernelVersion checks if current kernel is newer than (or equal to)
+// the given version.
+func CheckKernelVersion(k, major, minor int) bool {
+	if v, err := GetKernelVersion(); err != nil {
+		logrus.Warnf("error getting kernel version: %s", err)
+	} else {
+		if CompareKernelVersion(*v, VersionInfo{Kernel: k, Major: major, Minor: minor}) < 0 {
+			return false
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_windows.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_windows.go
new file mode 100644
index 0000000000..b7b15a1fd2
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/kernel_windows.go
@@ -0,0 +1,51 @@
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"fmt"
+
+	"golang.org/x/sys/windows"
+	"golang.org/x/sys/windows/registry"
+)
+
+// VersionInfo holds information about the kernel.
+type VersionInfo struct {
+	kvi   string // Version of the kernel (e.g. 6.1.7601.17592 -> 6)
+	major int    // Major part of the kernel version (e.g. 6.1.7601.17592 -> 1)
+	minor int    // Minor part of the kernel version (e.g. 6.1.7601.17592 -> 7601)
+	build int    // Build number of the kernel version (e.g. 6.1.7601.17592 -> 17592)
+}
+
+func (k *VersionInfo) String() string {
+	return fmt.Sprintf("%d.%d %d (%s)", k.major, k.minor, k.build, k.kvi)
+}
+
+// GetKernelVersion gets the current kernel version.
+func GetKernelVersion() (*VersionInfo, error) {
+
+	KVI := &VersionInfo{"Unknown", 0, 0, 0}
+
+	k, err := registry.OpenKey(registry.LOCAL_MACHINE, `SOFTWARE\Microsoft\Windows NT\CurrentVersion`, registry.QUERY_VALUE)
+	if err != nil {
+		return KVI, err
+	}
+	defer k.Close()
+
+	blex, _, err := k.GetStringValue("BuildLabEx")
+	if err != nil {
+		return KVI, err
+	}
+	KVI.kvi = blex
+
+	// Important - docker.exe MUST be manifested for this API to return
+	// the correct information.
+	dwVersion, err := windows.GetVersion()
+	if err != nil {
+		return KVI, err
+	}
+
+	KVI.major = int(dwVersion & 0xFF)
+	KVI.minor = int((dwVersion & 0XFF00) >> 8)
+	KVI.build = int((dwVersion & 0xFFFF0000) >> 16)
+
+	return KVI, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_linux.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_linux.go
new file mode 100644
index 0000000000..212ff4502b
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_linux.go
@@ -0,0 +1,17 @@
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import "golang.org/x/sys/unix"
+
+// Utsname represents the system name structure.
+// It is passthrough for unix.Utsname in order to make it portable with
+// other platforms where it is not available.
+type Utsname unix.Utsname
+
+func uname() (*unix.Utsname, error) {
+	uts := &unix.Utsname{}
+
+	if err := unix.Uname(uts); err != nil {
+		return nil, err
+	}
+	return uts, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_solaris.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_solaris.go
new file mode 100644
index 0000000000..b2139b60e8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_solaris.go
@@ -0,0 +1,14 @@
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+func uname() (*unix.Utsname, error) {
+	uts := &unix.Utsname{}
+
+	if err := unix.Uname(uts); err != nil {
+		return nil, err
+	}
+	return uts, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_unsupported.go b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_unsupported.go
new file mode 100644
index 0000000000..97906e4cd7
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/kernel/uname_unsupported.go
@@ -0,0 +1,18 @@
+// +build !linux
+
+package kernel // import "github.com/docker/docker/pkg/parsers/kernel"
+
+import (
+	"errors"
+)
+
+// Utsname represents the system name structure.
+// It is defined here to make it portable as it is available on linux but not
+// on windows.
+type Utsname struct {
+	Release [65]byte
+}
+
+func uname() (*Utsname, error) {
+	return nil, errors.New("Kernel version detection is available only on linux")
+}
diff --git a/vendor/github.com/docker/docker/pkg/parsers/parsers.go b/vendor/github.com/docker/docker/pkg/parsers/parsers.go
new file mode 100644
index 0000000000..c4186a4c0a
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/parsers/parsers.go
@@ -0,0 +1,69 @@
+// Package parsers provides helper functions to parse and validate different type
+// of string. It can be hosts, unix addresses, tcp addresses, filters, kernel
+// operating system versions.
+package parsers // import "github.com/docker/docker/pkg/parsers"
+
+import (
+	"fmt"
+	"strconv"
+	"strings"
+)
+
+// ParseKeyValueOpt parses and validates the specified string as a key/value pair (key=value)
+func ParseKeyValueOpt(opt string) (string, string, error) {
+	parts := strings.SplitN(opt, "=", 2)
+	if len(parts) != 2 {
+		return "", "", fmt.Errorf("Unable to parse key/value option: %s", opt)
+	}
+	return strings.TrimSpace(parts[0]), strings.TrimSpace(parts[1]), nil
+}
+
+// ParseUintList parses and validates the specified string as the value
+// found in some cgroup file (e.g. `cpuset.cpus`, `cpuset.mems`), which could be
+// one of the formats below. Note that duplicates are actually allowed in the
+// input string. It returns a `map[int]bool` with available elements from `val`
+// set to `true`.
+// Supported formats:
+//     7
+//     1-6
+//     0,3-4,7,8-10
+//     0-0,0,1-7
+//     03,1-3      <- this is gonna get parsed as [1,2,3]
+//     3,2,1
+//     0-2,3,1
+func ParseUintList(val string) (map[int]bool, error) {
+	if val == "" {
+		return map[int]bool{}, nil
+	}
+
+	availableInts := make(map[int]bool)
+	split := strings.Split(val, ",")
+	errInvalidFormat := fmt.Errorf("invalid format: %s", val)
+
+	for _, r := range split {
+		if !strings.Contains(r, "-") {
+			v, err := strconv.Atoi(r)
+			if err != nil {
+				return nil, errInvalidFormat
+			}
+			availableInts[v] = true
+		} else {
+			split := strings.SplitN(r, "-", 2)
+			min, err := strconv.Atoi(split[0])
+			if err != nil {
+				return nil, errInvalidFormat
+			}
+			max, err := strconv.Atoi(split[1])
+			if err != nil {
+				return nil, errInvalidFormat
+			}
+			if max < min {
+				return nil, errInvalidFormat
+			}
+			for i := min; i <= max; i++ {
+				availableInts[i] = true
+			}
+		}
+	}
+	return availableInts, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugingetter/getter.go b/vendor/github.com/docker/docker/pkg/plugingetter/getter.go
new file mode 100644
index 0000000000..0e1699d913
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugingetter/getter.go
@@ -0,0 +1,37 @@
+package plugingetter // import "github.com/docker/docker/pkg/plugingetter"
+
+import (
+	"github.com/docker/docker/pkg/plugins"
+)
+
+const (
+	// Lookup doesn't update RefCount
+	Lookup = 0
+	// Acquire increments RefCount
+	Acquire = 1
+	// Release decrements RefCount
+	Release = -1
+)
+
+// CompatPlugin is an abstraction to handle both v2(new) and v1(legacy) plugins.
+type CompatPlugin interface {
+	Client() *plugins.Client
+	Name() string
+	ScopedPath(string) string
+	IsV1() bool
+}
+
+// CountedPlugin is a plugin which is reference counted.
+type CountedPlugin interface {
+	Acquire()
+	Release()
+	CompatPlugin
+}
+
+// PluginGetter is the interface implemented by Store
+type PluginGetter interface {
+	Get(name, capability string, mode int) (CompatPlugin, error)
+	GetAllByCap(capability string) ([]CompatPlugin, error)
+	GetAllManagedPluginsByCap(capability string) []CompatPlugin
+	Handle(capability string, callback func(string, *plugins.Client))
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/client.go b/vendor/github.com/docker/docker/pkg/plugins/client.go
new file mode 100644
index 0000000000..0353305358
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/client.go
@@ -0,0 +1,242 @@
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+import (
+	"bytes"
+	"context"
+	"encoding/json"
+	"io"
+	"io/ioutil"
+	"net/http"
+	"net/url"
+	"time"
+
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/docker/pkg/plugins/transport"
+	"github.com/docker/go-connections/sockets"
+	"github.com/docker/go-connections/tlsconfig"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	defaultTimeOut = 30
+)
+
+func newTransport(addr string, tlsConfig *tlsconfig.Options) (transport.Transport, error) {
+	tr := &http.Transport{}
+
+	if tlsConfig != nil {
+		c, err := tlsconfig.Client(*tlsConfig)
+		if err != nil {
+			return nil, err
+		}
+		tr.TLSClientConfig = c
+	}
+
+	u, err := url.Parse(addr)
+	if err != nil {
+		return nil, err
+	}
+	socket := u.Host
+	if socket == "" {
+		// valid local socket addresses have the host empty.
+		socket = u.Path
+	}
+	if err := sockets.ConfigureTransport(tr, u.Scheme, socket); err != nil {
+		return nil, err
+	}
+	scheme := httpScheme(u)
+
+	return transport.NewHTTPTransport(tr, scheme, socket), nil
+}
+
+// NewClient creates a new plugin client (http).
+func NewClient(addr string, tlsConfig *tlsconfig.Options) (*Client, error) {
+	clientTransport, err := newTransport(addr, tlsConfig)
+	if err != nil {
+		return nil, err
+	}
+	return newClientWithTransport(clientTransport, 0), nil
+}
+
+// NewClientWithTimeout creates a new plugin client (http).
+func NewClientWithTimeout(addr string, tlsConfig *tlsconfig.Options, timeout time.Duration) (*Client, error) {
+	clientTransport, err := newTransport(addr, tlsConfig)
+	if err != nil {
+		return nil, err
+	}
+	return newClientWithTransport(clientTransport, timeout), nil
+}
+
+// newClientWithTransport creates a new plugin client with a given transport.
+func newClientWithTransport(tr transport.Transport, timeout time.Duration) *Client {
+	return &Client{
+		http: &http.Client{
+			Transport: tr,
+			Timeout:   timeout,
+		},
+		requestFactory: tr,
+	}
+}
+
+// Client represents a plugin client.
+type Client struct {
+	http           *http.Client // http client to use
+	requestFactory transport.RequestFactory
+}
+
+// RequestOpts is the set of options that can be passed into a request
+type RequestOpts struct {
+	Timeout time.Duration
+}
+
+// WithRequestTimeout sets a timeout duration for plugin requests
+func WithRequestTimeout(t time.Duration) func(*RequestOpts) {
+	return func(o *RequestOpts) {
+		o.Timeout = t
+	}
+}
+
+// Call calls the specified method with the specified arguments for the plugin.
+// It will retry for 30 seconds if a failure occurs when calling.
+func (c *Client) Call(serviceMethod string, args, ret interface{}) error {
+	return c.CallWithOptions(serviceMethod, args, ret)
+}
+
+// CallWithOptions is just like call except it takes options
+func (c *Client) CallWithOptions(serviceMethod string, args interface{}, ret interface{}, opts ...func(*RequestOpts)) error {
+	var buf bytes.Buffer
+	if args != nil {
+		if err := json.NewEncoder(&buf).Encode(args); err != nil {
+			return err
+		}
+	}
+	body, err := c.callWithRetry(serviceMethod, &buf, true, opts...)
+	if err != nil {
+		return err
+	}
+	defer body.Close()
+	if ret != nil {
+		if err := json.NewDecoder(body).Decode(&ret); err != nil {
+			logrus.Errorf("%s: error reading plugin resp: %v", serviceMethod, err)
+			return err
+		}
+	}
+	return nil
+}
+
+// Stream calls the specified method with the specified arguments for the plugin and returns the response body
+func (c *Client) Stream(serviceMethod string, args interface{}) (io.ReadCloser, error) {
+	var buf bytes.Buffer
+	if err := json.NewEncoder(&buf).Encode(args); err != nil {
+		return nil, err
+	}
+	return c.callWithRetry(serviceMethod, &buf, true)
+}
+
+// SendFile calls the specified method, and passes through the IO stream
+func (c *Client) SendFile(serviceMethod string, data io.Reader, ret interface{}) error {
+	body, err := c.callWithRetry(serviceMethod, data, true)
+	if err != nil {
+		return err
+	}
+	defer body.Close()
+	if err := json.NewDecoder(body).Decode(&ret); err != nil {
+		logrus.Errorf("%s: error reading plugin resp: %v", serviceMethod, err)
+		return err
+	}
+	return nil
+}
+
+func (c *Client) callWithRetry(serviceMethod string, data io.Reader, retry bool, reqOpts ...func(*RequestOpts)) (io.ReadCloser, error) {
+	var retries int
+	start := time.Now()
+
+	var opts RequestOpts
+	for _, o := range reqOpts {
+		o(&opts)
+	}
+
+	for {
+		req, err := c.requestFactory.NewRequest(serviceMethod, data)
+		if err != nil {
+			return nil, err
+		}
+
+		cancelRequest := func() {}
+		if opts.Timeout > 0 {
+			var ctx context.Context
+			ctx, cancelRequest = context.WithTimeout(req.Context(), opts.Timeout)
+			req = req.WithContext(ctx)
+		}
+
+		resp, err := c.http.Do(req)
+		if err != nil {
+			cancelRequest()
+			if !retry {
+				return nil, err
+			}
+
+			timeOff := backoff(retries)
+			if abort(start, timeOff) {
+				return nil, err
+			}
+			retries++
+			logrus.Warnf("Unable to connect to plugin: %s%s: %v, retrying in %v", req.URL.Host, req.URL.Path, err, timeOff)
+			time.Sleep(timeOff)
+			continue
+		}
+
+		if resp.StatusCode != http.StatusOK {
+			b, err := ioutil.ReadAll(resp.Body)
+			resp.Body.Close()
+			cancelRequest()
+			if err != nil {
+				return nil, &statusError{resp.StatusCode, serviceMethod, err.Error()}
+			}
+
+			// Plugins' Response(s) should have an Err field indicating what went
+			// wrong. Try to unmarshal into ResponseErr. Otherwise fallback to just
+			// return the string(body)
+			type responseErr struct {
+				Err string
+			}
+			remoteErr := responseErr{}
+			if err := json.Unmarshal(b, &remoteErr); err == nil {
+				if remoteErr.Err != "" {
+					return nil, &statusError{resp.StatusCode, serviceMethod, remoteErr.Err}
+				}
+			}
+			// old way...
+			return nil, &statusError{resp.StatusCode, serviceMethod, string(b)}
+		}
+		return ioutils.NewReadCloserWrapper(resp.Body, func() error {
+			err := resp.Body.Close()
+			cancelRequest()
+			return err
+		}), nil
+	}
+}
+
+func backoff(retries int) time.Duration {
+	b, max := 1, defaultTimeOut
+	for b < max && retries > 0 {
+		b *= 2
+		retries--
+	}
+	if b > max {
+		b = max
+	}
+	return time.Duration(b) * time.Second
+}
+
+func abort(start time.Time, timeOff time.Duration) bool {
+	return timeOff+time.Since(start) >= time.Duration(defaultTimeOut)*time.Second
+}
+
+func httpScheme(u *url.URL) string {
+	scheme := u.Scheme
+	if scheme != "https" {
+		scheme = "http"
+	}
+	return scheme
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/discovery.go b/vendor/github.com/docker/docker/pkg/plugins/discovery.go
new file mode 100644
index 0000000000..4b79bd29ad
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/discovery.go
@@ -0,0 +1,154 @@
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+import (
+	"encoding/json"
+	"fmt"
+	"io/ioutil"
+	"net/url"
+	"os"
+	"path/filepath"
+	"strings"
+	"sync"
+
+	"github.com/pkg/errors"
+)
+
+var (
+	// ErrNotFound plugin not found
+	ErrNotFound = errors.New("plugin not found")
+	socketsPath = "/run/docker/plugins"
+)
+
+// localRegistry defines a registry that is local (using unix socket).
+type localRegistry struct{}
+
+func newLocalRegistry() localRegistry {
+	return localRegistry{}
+}
+
+// Scan scans all the plugin paths and returns all the names it found
+func Scan() ([]string, error) {
+	var names []string
+	dirEntries, err := ioutil.ReadDir(socketsPath)
+	if err != nil && !os.IsNotExist(err) {
+		return nil, errors.Wrap(err, "error reading dir entries")
+	}
+
+	for _, fi := range dirEntries {
+		if fi.IsDir() {
+			fi, err = os.Stat(filepath.Join(socketsPath, fi.Name(), fi.Name()+".sock"))
+			if err != nil {
+				continue
+			}
+		}
+
+		if fi.Mode()&os.ModeSocket != 0 {
+			names = append(names, strings.TrimSuffix(filepath.Base(fi.Name()), filepath.Ext(fi.Name())))
+		}
+	}
+
+	for _, p := range specsPaths {
+		dirEntries, err := ioutil.ReadDir(p)
+		if err != nil && !os.IsNotExist(err) {
+			return nil, errors.Wrap(err, "error reading dir entries")
+		}
+
+		for _, fi := range dirEntries {
+			if fi.IsDir() {
+				infos, err := ioutil.ReadDir(filepath.Join(p, fi.Name()))
+				if err != nil {
+					continue
+				}
+
+				for _, info := range infos {
+					if strings.TrimSuffix(info.Name(), filepath.Ext(info.Name())) == fi.Name() {
+						fi = info
+						break
+					}
+				}
+			}
+
+			ext := filepath.Ext(fi.Name())
+			switch ext {
+			case ".spec", ".json":
+				plugin := strings.TrimSuffix(fi.Name(), ext)
+				names = append(names, plugin)
+			default:
+			}
+		}
+	}
+	return names, nil
+}
+
+// Plugin returns the plugin registered with the given name (or returns an error).
+func (l *localRegistry) Plugin(name string) (*Plugin, error) {
+	socketpaths := pluginPaths(socketsPath, name, ".sock")
+
+	for _, p := range socketpaths {
+		if fi, err := os.Stat(p); err == nil && fi.Mode()&os.ModeSocket != 0 {
+			return NewLocalPlugin(name, "unix://"+p), nil
+		}
+	}
+
+	var txtspecpaths []string
+	for _, p := range specsPaths {
+		txtspecpaths = append(txtspecpaths, pluginPaths(p, name, ".spec")...)
+		txtspecpaths = append(txtspecpaths, pluginPaths(p, name, ".json")...)
+	}
+
+	for _, p := range txtspecpaths {
+		if _, err := os.Stat(p); err == nil {
+			if strings.HasSuffix(p, ".json") {
+				return readPluginJSONInfo(name, p)
+			}
+			return readPluginInfo(name, p)
+		}
+	}
+	return nil, errors.Wrapf(ErrNotFound, "could not find plugin %s in v1 plugin registry", name)
+}
+
+func readPluginInfo(name, path string) (*Plugin, error) {
+	content, err := ioutil.ReadFile(path)
+	if err != nil {
+		return nil, err
+	}
+	addr := strings.TrimSpace(string(content))
+
+	u, err := url.Parse(addr)
+	if err != nil {
+		return nil, err
+	}
+
+	if len(u.Scheme) == 0 {
+		return nil, fmt.Errorf("Unknown protocol")
+	}
+
+	return NewLocalPlugin(name, addr), nil
+}
+
+func readPluginJSONInfo(name, path string) (*Plugin, error) {
+	f, err := os.Open(path)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	var p Plugin
+	if err := json.NewDecoder(f).Decode(&p); err != nil {
+		return nil, err
+	}
+	p.name = name
+	if p.TLSConfig != nil && len(p.TLSConfig.CAFile) == 0 {
+		p.TLSConfig.InsecureSkipVerify = true
+	}
+	p.activateWait = sync.NewCond(&sync.Mutex{})
+
+	return &p, nil
+}
+
+func pluginPaths(base, name, ext string) []string {
+	return []string{
+		filepath.Join(base, name+ext),
+		filepath.Join(base, name, name+ext),
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/discovery_unix.go b/vendor/github.com/docker/docker/pkg/plugins/discovery_unix.go
new file mode 100644
index 0000000000..58058f2828
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/discovery_unix.go
@@ -0,0 +1,5 @@
+// +build !windows
+
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+var specsPaths = []string{"/etc/docker/plugins", "/usr/lib/docker/plugins"}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/discovery_windows.go b/vendor/github.com/docker/docker/pkg/plugins/discovery_windows.go
new file mode 100644
index 0000000000..f0af3477f4
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/discovery_windows.go
@@ -0,0 +1,8 @@
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+import (
+	"os"
+	"path/filepath"
+)
+
+var specsPaths = []string{filepath.Join(os.Getenv("programdata"), "docker", "plugins")}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/errors.go b/vendor/github.com/docker/docker/pkg/plugins/errors.go
new file mode 100644
index 0000000000..6735c304bf
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/errors.go
@@ -0,0 +1,33 @@
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+import (
+	"fmt"
+	"net/http"
+)
+
+type statusError struct {
+	status int
+	method string
+	err    string
+}
+
+// Error returns a formatted string for this error type
+func (e *statusError) Error() string {
+	return fmt.Sprintf("%s: %v", e.method, e.err)
+}
+
+// IsNotFound indicates if the passed in error is from an http.StatusNotFound from the plugin
+func IsNotFound(err error) bool {
+	return isStatusError(err, http.StatusNotFound)
+}
+
+func isStatusError(err error, status int) bool {
+	if err == nil {
+		return false
+	}
+	e, ok := err.(*statusError)
+	if !ok {
+		return false
+	}
+	return e.status == status
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/plugins.go b/vendor/github.com/docker/docker/pkg/plugins/plugins.go
new file mode 100644
index 0000000000..3ee4720a19
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/plugins.go
@@ -0,0 +1,329 @@
+// Package plugins provides structures and helper functions to manage Docker
+// plugins.
+//
+// Docker discovers plugins by looking for them in the plugin directory whenever
+// a user or container tries to use one by name. UNIX domain socket files must
+// be located under /run/docker/plugins, whereas spec files can be located
+// either under /etc/docker/plugins or /usr/lib/docker/plugins. This is handled
+// by the Registry interface, which lets you list all plugins or get a plugin by
+// its name if it exists.
+//
+// The plugins need to implement an HTTP server and bind this to the UNIX socket
+// or the address specified in the spec files.
+// A handshake is send at /Plugin.Activate, and plugins are expected to return
+// a Manifest with a list of of Docker subsystems which this plugin implements.
+//
+// In order to use a plugins, you can use the ``Get`` with the name of the
+// plugin and the subsystem it implements.
+//
+//	plugin, err := plugins.Get("example", "VolumeDriver")
+//	if err != nil {
+//		return fmt.Errorf("Error looking up volume plugin example: %v", err)
+//	}
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+import (
+	"errors"
+	"sync"
+	"time"
+
+	"github.com/docker/go-connections/tlsconfig"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// ErrNotImplements is returned if the plugin does not implement the requested driver.
+	ErrNotImplements = errors.New("Plugin does not implement the requested driver")
+)
+
+type plugins struct {
+	sync.Mutex
+	plugins map[string]*Plugin
+}
+
+type extpointHandlers struct {
+	sync.RWMutex
+	extpointHandlers map[string][]func(string, *Client)
+}
+
+var (
+	storage  = plugins{plugins: make(map[string]*Plugin)}
+	handlers = extpointHandlers{extpointHandlers: make(map[string][]func(string, *Client))}
+)
+
+// Manifest lists what a plugin implements.
+type Manifest struct {
+	// List of subsystem the plugin implements.
+	Implements []string
+}
+
+// Plugin is the definition of a docker plugin.
+type Plugin struct {
+	// Name of the plugin
+	name string
+	// Address of the plugin
+	Addr string
+	// TLS configuration of the plugin
+	TLSConfig *tlsconfig.Options
+	// Client attached to the plugin
+	client *Client
+	// Manifest of the plugin (see above)
+	Manifest *Manifest `json:"-"`
+
+	// wait for activation to finish
+	activateWait *sync.Cond
+	// error produced by activation
+	activateErr error
+	// keeps track of callback handlers run against this plugin
+	handlersRun bool
+}
+
+// Name returns the name of the plugin.
+func (p *Plugin) Name() string {
+	return p.name
+}
+
+// Client returns a ready-to-use plugin client that can be used to communicate with the plugin.
+func (p *Plugin) Client() *Client {
+	return p.client
+}
+
+// IsV1 returns true for V1 plugins and false otherwise.
+func (p *Plugin) IsV1() bool {
+	return true
+}
+
+// NewLocalPlugin creates a new local plugin.
+func NewLocalPlugin(name, addr string) *Plugin {
+	return &Plugin{
+		name: name,
+		Addr: addr,
+		// TODO: change to nil
+		TLSConfig:    &tlsconfig.Options{InsecureSkipVerify: true},
+		activateWait: sync.NewCond(&sync.Mutex{}),
+	}
+}
+
+func (p *Plugin) activate() error {
+	p.activateWait.L.Lock()
+
+	if p.activated() {
+		p.runHandlers()
+		p.activateWait.L.Unlock()
+		return p.activateErr
+	}
+
+	p.activateErr = p.activateWithLock()
+
+	p.runHandlers()
+	p.activateWait.L.Unlock()
+	p.activateWait.Broadcast()
+	return p.activateErr
+}
+
+// runHandlers runs the registered handlers for the implemented plugin types
+// This should only be run after activation, and while the activation lock is held.
+func (p *Plugin) runHandlers() {
+	if !p.activated() {
+		return
+	}
+
+	handlers.RLock()
+	if !p.handlersRun {
+		for _, iface := range p.Manifest.Implements {
+			hdlrs, handled := handlers.extpointHandlers[iface]
+			if !handled {
+				continue
+			}
+			for _, handler := range hdlrs {
+				handler(p.name, p.client)
+			}
+		}
+		p.handlersRun = true
+	}
+	handlers.RUnlock()
+
+}
+
+// activated returns if the plugin has already been activated.
+// This should only be called with the activation lock held
+func (p *Plugin) activated() bool {
+	return p.Manifest != nil
+}
+
+func (p *Plugin) activateWithLock() error {
+	c, err := NewClient(p.Addr, p.TLSConfig)
+	if err != nil {
+		return err
+	}
+	p.client = c
+
+	m := new(Manifest)
+	if err = p.client.Call("Plugin.Activate", nil, m); err != nil {
+		return err
+	}
+
+	p.Manifest = m
+	return nil
+}
+
+func (p *Plugin) waitActive() error {
+	p.activateWait.L.Lock()
+	for !p.activated() && p.activateErr == nil {
+		p.activateWait.Wait()
+	}
+	p.activateWait.L.Unlock()
+	return p.activateErr
+}
+
+func (p *Plugin) implements(kind string) bool {
+	if p.Manifest == nil {
+		return false
+	}
+	for _, driver := range p.Manifest.Implements {
+		if driver == kind {
+			return true
+		}
+	}
+	return false
+}
+
+func load(name string) (*Plugin, error) {
+	return loadWithRetry(name, true)
+}
+
+func loadWithRetry(name string, retry bool) (*Plugin, error) {
+	registry := newLocalRegistry()
+	start := time.Now()
+
+	var retries int
+	for {
+		pl, err := registry.Plugin(name)
+		if err != nil {
+			if !retry {
+				return nil, err
+			}
+
+			timeOff := backoff(retries)
+			if abort(start, timeOff) {
+				return nil, err
+			}
+			retries++
+			logrus.Warnf("Unable to locate plugin: %s, retrying in %v", name, timeOff)
+			time.Sleep(timeOff)
+			continue
+		}
+
+		storage.Lock()
+		if pl, exists := storage.plugins[name]; exists {
+			storage.Unlock()
+			return pl, pl.activate()
+		}
+		storage.plugins[name] = pl
+		storage.Unlock()
+
+		err = pl.activate()
+
+		if err != nil {
+			storage.Lock()
+			delete(storage.plugins, name)
+			storage.Unlock()
+		}
+
+		return pl, err
+	}
+}
+
+func get(name string) (*Plugin, error) {
+	storage.Lock()
+	pl, ok := storage.plugins[name]
+	storage.Unlock()
+	if ok {
+		return pl, pl.activate()
+	}
+	return load(name)
+}
+
+// Get returns the plugin given the specified name and requested implementation.
+func Get(name, imp string) (*Plugin, error) {
+	pl, err := get(name)
+	if err != nil {
+		return nil, err
+	}
+	if err := pl.waitActive(); err == nil && pl.implements(imp) {
+		logrus.Debugf("%s implements: %s", name, imp)
+		return pl, nil
+	}
+	return nil, ErrNotImplements
+}
+
+// Handle adds the specified function to the extpointHandlers.
+func Handle(iface string, fn func(string, *Client)) {
+	handlers.Lock()
+	hdlrs, ok := handlers.extpointHandlers[iface]
+	if !ok {
+		hdlrs = []func(string, *Client){}
+	}
+
+	hdlrs = append(hdlrs, fn)
+	handlers.extpointHandlers[iface] = hdlrs
+
+	storage.Lock()
+	for _, p := range storage.plugins {
+		p.activateWait.L.Lock()
+		if p.activated() && p.implements(iface) {
+			p.handlersRun = false
+		}
+		p.activateWait.L.Unlock()
+	}
+	storage.Unlock()
+
+	handlers.Unlock()
+}
+
+// GetAll returns all the plugins for the specified implementation
+func GetAll(imp string) ([]*Plugin, error) {
+	pluginNames, err := Scan()
+	if err != nil {
+		return nil, err
+	}
+
+	type plLoad struct {
+		pl  *Plugin
+		err error
+	}
+
+	chPl := make(chan *plLoad, len(pluginNames))
+	var wg sync.WaitGroup
+	for _, name := range pluginNames {
+		storage.Lock()
+		pl, ok := storage.plugins[name]
+		storage.Unlock()
+		if ok {
+			chPl <- &plLoad{pl, nil}
+			continue
+		}
+
+		wg.Add(1)
+		go func(name string) {
+			defer wg.Done()
+			pl, err := loadWithRetry(name, false)
+			chPl <- &plLoad{pl, err}
+		}(name)
+	}
+
+	wg.Wait()
+	close(chPl)
+
+	var out []*Plugin
+	for pl := range chPl {
+		if pl.err != nil {
+			logrus.Error(pl.err)
+			continue
+		}
+		if err := pl.pl.waitActive(); err == nil && pl.pl.implements(imp) {
+			out = append(out, pl.pl)
+		}
+	}
+	return out, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/plugins_unix.go b/vendor/github.com/docker/docker/pkg/plugins/plugins_unix.go
new file mode 100644
index 0000000000..cdfbe93458
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/plugins_unix.go
@@ -0,0 +1,9 @@
+// +build !windows
+
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+// ScopedPath returns the path scoped to the plugin's rootfs.
+// For v1 plugins, this always returns the path unchanged as v1 plugins run directly on the host.
+func (p *Plugin) ScopedPath(s string) string {
+	return s
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/plugins_windows.go b/vendor/github.com/docker/docker/pkg/plugins/plugins_windows.go
new file mode 100644
index 0000000000..ddf1d786c6
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/plugins_windows.go
@@ -0,0 +1,7 @@
+package plugins // import "github.com/docker/docker/pkg/plugins"
+
+// ScopedPath returns the path scoped to the plugin's rootfs.
+// For v1 plugins, this always returns the path unchanged as v1 plugins run directly on the host.
+func (p *Plugin) ScopedPath(s string) string {
+	return s
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/transport/http.go b/vendor/github.com/docker/docker/pkg/plugins/transport/http.go
new file mode 100644
index 0000000000..76d3bdb712
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/transport/http.go
@@ -0,0 +1,36 @@
+package transport // import "github.com/docker/docker/pkg/plugins/transport"
+
+import (
+	"io"
+	"net/http"
+)
+
+// httpTransport holds an http.RoundTripper
+// and information about the scheme and address the transport
+// sends request to.
+type httpTransport struct {
+	http.RoundTripper
+	scheme string
+	addr   string
+}
+
+// NewHTTPTransport creates a new httpTransport.
+func NewHTTPTransport(r http.RoundTripper, scheme, addr string) Transport {
+	return httpTransport{
+		RoundTripper: r,
+		scheme:       scheme,
+		addr:         addr,
+	}
+}
+
+// NewRequest creates a new http.Request and sets the URL
+// scheme and address with the transport's fields.
+func (t httpTransport) NewRequest(path string, data io.Reader) (*http.Request, error) {
+	req, err := newHTTPRequest(path, data)
+	if err != nil {
+		return nil, err
+	}
+	req.URL.Scheme = t.scheme
+	req.URL.Host = t.addr
+	return req, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/plugins/transport/transport.go b/vendor/github.com/docker/docker/pkg/plugins/transport/transport.go
new file mode 100644
index 0000000000..9cb13335a8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/plugins/transport/transport.go
@@ -0,0 +1,36 @@
+package transport // import "github.com/docker/docker/pkg/plugins/transport"
+
+import (
+	"io"
+	"net/http"
+	"strings"
+)
+
+// VersionMimetype is the Content-Type the engine sends to plugins.
+const VersionMimetype = "application/vnd.docker.plugins.v1.2+json"
+
+// RequestFactory defines an interface that
+// transports can implement to create new requests.
+type RequestFactory interface {
+	NewRequest(path string, data io.Reader) (*http.Request, error)
+}
+
+// Transport defines an interface that plugin transports
+// must implement.
+type Transport interface {
+	http.RoundTripper
+	RequestFactory
+}
+
+// newHTTPRequest creates a new request with a path and a body.
+func newHTTPRequest(path string, data io.Reader) (*http.Request, error) {
+	if !strings.HasPrefix(path, "/") {
+		path = "/" + path
+	}
+	req, err := http.NewRequest("POST", path, data)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Add("Accept", VersionMimetype)
+	return req, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/progress/progress.go b/vendor/github.com/docker/docker/pkg/progress/progress.go
new file mode 100644
index 0000000000..9aea591954
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/progress/progress.go
@@ -0,0 +1,89 @@
+package progress // import "github.com/docker/docker/pkg/progress"
+
+import (
+	"fmt"
+)
+
+// Progress represents the progress of a transfer.
+type Progress struct {
+	ID string
+
+	// Progress contains a Message or...
+	Message string
+
+	// ...progress of an action
+	Action  string
+	Current int64
+	Total   int64
+
+	// If true, don't show xB/yB
+	HideCounts bool
+	// If not empty, use units instead of bytes for counts
+	Units string
+
+	// Aux contains extra information not presented to the user, such as
+	// digests for push signing.
+	Aux interface{}
+
+	LastUpdate bool
+}
+
+// Output is an interface for writing progress information. It's
+// like a writer for progress, but we don't call it Writer because
+// that would be confusing next to ProgressReader (also, because it
+// doesn't implement the io.Writer interface).
+type Output interface {
+	WriteProgress(Progress) error
+}
+
+type chanOutput chan<- Progress
+
+func (out chanOutput) WriteProgress(p Progress) error {
+	out <- p
+	return nil
+}
+
+// ChanOutput returns an Output that writes progress updates to the
+// supplied channel.
+func ChanOutput(progressChan chan<- Progress) Output {
+	return chanOutput(progressChan)
+}
+
+type discardOutput struct{}
+
+func (discardOutput) WriteProgress(Progress) error {
+	return nil
+}
+
+// DiscardOutput returns an Output that discards progress
+func DiscardOutput() Output {
+	return discardOutput{}
+}
+
+// Update is a convenience function to write a progress update to the channel.
+func Update(out Output, id, action string) {
+	out.WriteProgress(Progress{ID: id, Action: action})
+}
+
+// Updatef is a convenience function to write a printf-formatted progress update
+// to the channel.
+func Updatef(out Output, id, format string, a ...interface{}) {
+	Update(out, id, fmt.Sprintf(format, a...))
+}
+
+// Message is a convenience function to write a progress message to the channel.
+func Message(out Output, id, message string) {
+	out.WriteProgress(Progress{ID: id, Message: message})
+}
+
+// Messagef is a convenience function to write a printf-formatted progress
+// message to the channel.
+func Messagef(out Output, id, format string, a ...interface{}) {
+	Message(out, id, fmt.Sprintf(format, a...))
+}
+
+// Aux sends auxiliary information over a progress interface, which will not be
+// formatted for the UI. This is used for things such as push signing.
+func Aux(out Output, a interface{}) {
+	out.WriteProgress(Progress{Aux: a})
+}
diff --git a/vendor/github.com/docker/docker/pkg/progress/progressreader.go b/vendor/github.com/docker/docker/pkg/progress/progressreader.go
new file mode 100644
index 0000000000..7ca07dc640
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/progress/progressreader.go
@@ -0,0 +1,66 @@
+package progress // import "github.com/docker/docker/pkg/progress"
+
+import (
+	"io"
+	"time"
+
+	"golang.org/x/time/rate"
+)
+
+// Reader is a Reader with progress bar.
+type Reader struct {
+	in          io.ReadCloser // Stream to read from
+	out         Output        // Where to send progress bar to
+	size        int64
+	current     int64
+	lastUpdate  int64
+	id          string
+	action      string
+	rateLimiter *rate.Limiter
+}
+
+// NewProgressReader creates a new ProgressReader.
+func NewProgressReader(in io.ReadCloser, out Output, size int64, id, action string) *Reader {
+	return &Reader{
+		in:          in,
+		out:         out,
+		size:        size,
+		id:          id,
+		action:      action,
+		rateLimiter: rate.NewLimiter(rate.Every(100*time.Millisecond), 1),
+	}
+}
+
+func (p *Reader) Read(buf []byte) (n int, err error) {
+	read, err := p.in.Read(buf)
+	p.current += int64(read)
+	updateEvery := int64(1024 * 512) //512kB
+	if p.size > 0 {
+		// Update progress for every 1% read if 1% < 512kB
+		if increment := int64(0.01 * float64(p.size)); increment < updateEvery {
+			updateEvery = increment
+		}
+	}
+	if p.current-p.lastUpdate > updateEvery || err != nil {
+		p.updateProgress(err != nil && read == 0)
+		p.lastUpdate = p.current
+	}
+
+	return read, err
+}
+
+// Close closes the progress reader and its underlying reader.
+func (p *Reader) Close() error {
+	if p.current < p.size {
+		// print a full progress bar when closing prematurely
+		p.current = p.size
+		p.updateProgress(false)
+	}
+	return p.in.Close()
+}
+
+func (p *Reader) updateProgress(last bool) {
+	if last || p.current == p.size || p.rateLimiter.Allow() {
+		p.out.WriteProgress(Progress{ID: p.id, Action: p.action, Current: p.current, Total: p.size, LastUpdate: last})
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/pubsub/publisher.go b/vendor/github.com/docker/docker/pkg/pubsub/publisher.go
new file mode 100644
index 0000000000..76033ed9e4
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/pubsub/publisher.go
@@ -0,0 +1,121 @@
+package pubsub // import "github.com/docker/docker/pkg/pubsub"
+
+import (
+	"sync"
+	"time"
+)
+
+var wgPool = sync.Pool{New: func() interface{} { return new(sync.WaitGroup) }}
+
+// NewPublisher creates a new pub/sub publisher to broadcast messages.
+// The duration is used as the send timeout as to not block the publisher publishing
+// messages to other clients if one client is slow or unresponsive.
+// The buffer is used when creating new channels for subscribers.
+func NewPublisher(publishTimeout time.Duration, buffer int) *Publisher {
+	return &Publisher{
+		buffer:      buffer,
+		timeout:     publishTimeout,
+		subscribers: make(map[subscriber]topicFunc),
+	}
+}
+
+type subscriber chan interface{}
+type topicFunc func(v interface{}) bool
+
+// Publisher is basic pub/sub structure. Allows to send events and subscribe
+// to them. Can be safely used from multiple goroutines.
+type Publisher struct {
+	m           sync.RWMutex
+	buffer      int
+	timeout     time.Duration
+	subscribers map[subscriber]topicFunc
+}
+
+// Len returns the number of subscribers for the publisher
+func (p *Publisher) Len() int {
+	p.m.RLock()
+	i := len(p.subscribers)
+	p.m.RUnlock()
+	return i
+}
+
+// Subscribe adds a new subscriber to the publisher returning the channel.
+func (p *Publisher) Subscribe() chan interface{} {
+	return p.SubscribeTopic(nil)
+}
+
+// SubscribeTopic adds a new subscriber that filters messages sent by a topic.
+func (p *Publisher) SubscribeTopic(topic topicFunc) chan interface{} {
+	ch := make(chan interface{}, p.buffer)
+	p.m.Lock()
+	p.subscribers[ch] = topic
+	p.m.Unlock()
+	return ch
+}
+
+// SubscribeTopicWithBuffer adds a new subscriber that filters messages sent by a topic.
+// The returned channel has a buffer of the specified size.
+func (p *Publisher) SubscribeTopicWithBuffer(topic topicFunc, buffer int) chan interface{} {
+	ch := make(chan interface{}, buffer)
+	p.m.Lock()
+	p.subscribers[ch] = topic
+	p.m.Unlock()
+	return ch
+}
+
+// Evict removes the specified subscriber from receiving any more messages.
+func (p *Publisher) Evict(sub chan interface{}) {
+	p.m.Lock()
+	delete(p.subscribers, sub)
+	close(sub)
+	p.m.Unlock()
+}
+
+// Publish sends the data in v to all subscribers currently registered with the publisher.
+func (p *Publisher) Publish(v interface{}) {
+	p.m.RLock()
+	if len(p.subscribers) == 0 {
+		p.m.RUnlock()
+		return
+	}
+
+	wg := wgPool.Get().(*sync.WaitGroup)
+	for sub, topic := range p.subscribers {
+		wg.Add(1)
+		go p.sendTopic(sub, topic, v, wg)
+	}
+	wg.Wait()
+	wgPool.Put(wg)
+	p.m.RUnlock()
+}
+
+// Close closes the channels to all subscribers registered with the publisher.
+func (p *Publisher) Close() {
+	p.m.Lock()
+	for sub := range p.subscribers {
+		delete(p.subscribers, sub)
+		close(sub)
+	}
+	p.m.Unlock()
+}
+
+func (p *Publisher) sendTopic(sub subscriber, topic topicFunc, v interface{}, wg *sync.WaitGroup) {
+	defer wg.Done()
+	if topic != nil && !topic(v) {
+		return
+	}
+
+	// send under a select as to not block if the receiver is unavailable
+	if p.timeout > 0 {
+		select {
+		case sub <- v:
+		case <-time.After(p.timeout):
+		}
+		return
+	}
+
+	select {
+	case sub <- v:
+	default:
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/reexec/command_linux.go b/vendor/github.com/docker/docker/pkg/reexec/command_linux.go
new file mode 100644
index 0000000000..efea71794f
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/reexec/command_linux.go
@@ -0,0 +1,28 @@
+package reexec // import "github.com/docker/docker/pkg/reexec"
+
+import (
+	"os/exec"
+	"syscall"
+
+	"golang.org/x/sys/unix"
+)
+
+// Self returns the path to the current process's binary.
+// Returns "/proc/self/exe".
+func Self() string {
+	return "/proc/self/exe"
+}
+
+// Command returns *exec.Cmd which has Path as current binary. Also it setting
+// SysProcAttr.Pdeathsig to SIGTERM.
+// This will use the in-memory version (/proc/self/exe) of the current binary,
+// it is thus safe to delete or replace the on-disk binary (os.Args[0]).
+func Command(args ...string) *exec.Cmd {
+	return &exec.Cmd{
+		Path: Self(),
+		Args: args,
+		SysProcAttr: &syscall.SysProcAttr{
+			Pdeathsig: unix.SIGTERM,
+		},
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/reexec/command_unix.go b/vendor/github.com/docker/docker/pkg/reexec/command_unix.go
new file mode 100644
index 0000000000..ceaabbdeee
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/reexec/command_unix.go
@@ -0,0 +1,23 @@
+// +build freebsd darwin
+
+package reexec // import "github.com/docker/docker/pkg/reexec"
+
+import (
+	"os/exec"
+)
+
+// Self returns the path to the current process's binary.
+// Uses os.Args[0].
+func Self() string {
+	return naiveSelf()
+}
+
+// Command returns *exec.Cmd which has Path as current binary.
+// For example if current binary is "docker" at "/usr/bin/", then cmd.Path will
+// be set to "/usr/bin/docker".
+func Command(args ...string) *exec.Cmd {
+	return &exec.Cmd{
+		Path: Self(),
+		Args: args,
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/reexec/command_unsupported.go b/vendor/github.com/docker/docker/pkg/reexec/command_unsupported.go
new file mode 100644
index 0000000000..09fb4b2d29
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/reexec/command_unsupported.go
@@ -0,0 +1,12 @@
+// +build !linux,!windows,!freebsd,!darwin
+
+package reexec // import "github.com/docker/docker/pkg/reexec"
+
+import (
+	"os/exec"
+)
+
+// Command is unsupported on operating systems apart from Linux, Windows, and Darwin.
+func Command(args ...string) *exec.Cmd {
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/reexec/command_windows.go b/vendor/github.com/docker/docker/pkg/reexec/command_windows.go
new file mode 100644
index 0000000000..438226890f
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/reexec/command_windows.go
@@ -0,0 +1,21 @@
+package reexec // import "github.com/docker/docker/pkg/reexec"
+
+import (
+	"os/exec"
+)
+
+// Self returns the path to the current process's binary.
+// Uses os.Args[0].
+func Self() string {
+	return naiveSelf()
+}
+
+// Command returns *exec.Cmd which has Path as current binary.
+// For example if current binary is "docker.exe" at "C:\", then cmd.Path will
+// be set to "C:\docker.exe".
+func Command(args ...string) *exec.Cmd {
+	return &exec.Cmd{
+		Path: Self(),
+		Args: args,
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/reexec/reexec.go b/vendor/github.com/docker/docker/pkg/reexec/reexec.go
new file mode 100644
index 0000000000..f8ccddd599
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/reexec/reexec.go
@@ -0,0 +1,47 @@
+package reexec // import "github.com/docker/docker/pkg/reexec"
+
+import (
+	"fmt"
+	"os"
+	"os/exec"
+	"path/filepath"
+)
+
+var registeredInitializers = make(map[string]func())
+
+// Register adds an initialization func under the specified name
+func Register(name string, initializer func()) {
+	if _, exists := registeredInitializers[name]; exists {
+		panic(fmt.Sprintf("reexec func already registered under name %q", name))
+	}
+
+	registeredInitializers[name] = initializer
+}
+
+// Init is called as the first part of the exec process and returns true if an
+// initialization function was called.
+func Init() bool {
+	initializer, exists := registeredInitializers[os.Args[0]]
+	if exists {
+		initializer()
+
+		return true
+	}
+	return false
+}
+
+func naiveSelf() string {
+	name := os.Args[0]
+	if filepath.Base(name) == name {
+		if lp, err := exec.LookPath(name); err == nil {
+			return lp
+		}
+	}
+	// handle conversion of relative paths to absolute
+	if absName, err := filepath.Abs(name); err == nil {
+		return absName
+	}
+	// if we couldn't get absolute name, return original
+	// (NOTE: Go only errors on Abs() if os.Getwd fails)
+	return name
+}
diff --git a/vendor/github.com/docker/docker/pkg/streamformatter/streamformatter.go b/vendor/github.com/docker/docker/pkg/streamformatter/streamformatter.go
new file mode 100644
index 0000000000..2b5e713040
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/streamformatter/streamformatter.go
@@ -0,0 +1,159 @@
+// Package streamformatter provides helper functions to format a stream.
+package streamformatter // import "github.com/docker/docker/pkg/streamformatter"
+
+import (
+	"encoding/json"
+	"fmt"
+	"io"
+
+	"github.com/docker/docker/pkg/jsonmessage"
+	"github.com/docker/docker/pkg/progress"
+)
+
+const streamNewline = "\r\n"
+
+type jsonProgressFormatter struct{}
+
+func appendNewline(source []byte) []byte {
+	return append(source, []byte(streamNewline)...)
+}
+
+// FormatStatus formats the specified objects according to the specified format (and id).
+func FormatStatus(id, format string, a ...interface{}) []byte {
+	str := fmt.Sprintf(format, a...)
+	b, err := json.Marshal(&jsonmessage.JSONMessage{ID: id, Status: str})
+	if err != nil {
+		return FormatError(err)
+	}
+	return appendNewline(b)
+}
+
+// FormatError formats the error as a JSON object
+func FormatError(err error) []byte {
+	jsonError, ok := err.(*jsonmessage.JSONError)
+	if !ok {
+		jsonError = &jsonmessage.JSONError{Message: err.Error()}
+	}
+	if b, err := json.Marshal(&jsonmessage.JSONMessage{Error: jsonError, ErrorMessage: err.Error()}); err == nil {
+		return appendNewline(b)
+	}
+	return []byte(`{"error":"format error"}` + streamNewline)
+}
+
+func (sf *jsonProgressFormatter) formatStatus(id, format string, a ...interface{}) []byte {
+	return FormatStatus(id, format, a...)
+}
+
+// formatProgress formats the progress information for a specified action.
+func (sf *jsonProgressFormatter) formatProgress(id, action string, progress *jsonmessage.JSONProgress, aux interface{}) []byte {
+	if progress == nil {
+		progress = &jsonmessage.JSONProgress{}
+	}
+	var auxJSON *json.RawMessage
+	if aux != nil {
+		auxJSONBytes, err := json.Marshal(aux)
+		if err != nil {
+			return nil
+		}
+		auxJSON = new(json.RawMessage)
+		*auxJSON = auxJSONBytes
+	}
+	b, err := json.Marshal(&jsonmessage.JSONMessage{
+		Status:          action,
+		ProgressMessage: progress.String(),
+		Progress:        progress,
+		ID:              id,
+		Aux:             auxJSON,
+	})
+	if err != nil {
+		return nil
+	}
+	return appendNewline(b)
+}
+
+type rawProgressFormatter struct{}
+
+func (sf *rawProgressFormatter) formatStatus(id, format string, a ...interface{}) []byte {
+	return []byte(fmt.Sprintf(format, a...) + streamNewline)
+}
+
+func (sf *rawProgressFormatter) formatProgress(id, action string, progress *jsonmessage.JSONProgress, aux interface{}) []byte {
+	if progress == nil {
+		progress = &jsonmessage.JSONProgress{}
+	}
+	endl := "\r"
+	if progress.String() == "" {
+		endl += "\n"
+	}
+	return []byte(action + " " + progress.String() + endl)
+}
+
+// NewProgressOutput returns a progress.Output object that can be passed to
+// progress.NewProgressReader.
+func NewProgressOutput(out io.Writer) progress.Output {
+	return &progressOutput{sf: &rawProgressFormatter{}, out: out, newLines: true}
+}
+
+// NewJSONProgressOutput returns a progress.Output that that formats output
+// using JSON objects
+func NewJSONProgressOutput(out io.Writer, newLines bool) progress.Output {
+	return &progressOutput{sf: &jsonProgressFormatter{}, out: out, newLines: newLines}
+}
+
+type formatProgress interface {
+	formatStatus(id, format string, a ...interface{}) []byte
+	formatProgress(id, action string, progress *jsonmessage.JSONProgress, aux interface{}) []byte
+}
+
+type progressOutput struct {
+	sf       formatProgress
+	out      io.Writer
+	newLines bool
+}
+
+// WriteProgress formats progress information from a ProgressReader.
+func (out *progressOutput) WriteProgress(prog progress.Progress) error {
+	var formatted []byte
+	if prog.Message != "" {
+		formatted = out.sf.formatStatus(prog.ID, prog.Message)
+	} else {
+		jsonProgress := jsonmessage.JSONProgress{Current: prog.Current, Total: prog.Total, HideCounts: prog.HideCounts, Units: prog.Units}
+		formatted = out.sf.formatProgress(prog.ID, prog.Action, &jsonProgress, prog.Aux)
+	}
+	_, err := out.out.Write(formatted)
+	if err != nil {
+		return err
+	}
+
+	if out.newLines && prog.LastUpdate {
+		_, err = out.out.Write(out.sf.formatStatus("", ""))
+		return err
+	}
+
+	return nil
+}
+
+// AuxFormatter is a streamFormatter that writes aux progress messages
+type AuxFormatter struct {
+	io.Writer
+}
+
+// Emit emits the given interface as an aux progress message
+func (sf *AuxFormatter) Emit(aux interface{}) error {
+	auxJSONBytes, err := json.Marshal(aux)
+	if err != nil {
+		return err
+	}
+	auxJSON := new(json.RawMessage)
+	*auxJSON = auxJSONBytes
+	msgJSON, err := json.Marshal(&jsonmessage.JSONMessage{Aux: auxJSON})
+	if err != nil {
+		return err
+	}
+	msgJSON = appendNewline(msgJSON)
+	n, err := sf.Writer.Write(msgJSON)
+	if n != len(msgJSON) {
+		return io.ErrShortWrite
+	}
+	return err
+}
diff --git a/vendor/github.com/docker/docker/pkg/streamformatter/streamwriter.go b/vendor/github.com/docker/docker/pkg/streamformatter/streamwriter.go
new file mode 100644
index 0000000000..1473ed974a
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/streamformatter/streamwriter.go
@@ -0,0 +1,47 @@
+package streamformatter // import "github.com/docker/docker/pkg/streamformatter"
+
+import (
+	"encoding/json"
+	"io"
+
+	"github.com/docker/docker/pkg/jsonmessage"
+)
+
+type streamWriter struct {
+	io.Writer
+	lineFormat func([]byte) string
+}
+
+func (sw *streamWriter) Write(buf []byte) (int, error) {
+	formattedBuf := sw.format(buf)
+	n, err := sw.Writer.Write(formattedBuf)
+	if n != len(formattedBuf) {
+		return n, io.ErrShortWrite
+	}
+	return len(buf), err
+}
+
+func (sw *streamWriter) format(buf []byte) []byte {
+	msg := &jsonmessage.JSONMessage{Stream: sw.lineFormat(buf)}
+	b, err := json.Marshal(msg)
+	if err != nil {
+		return FormatError(err)
+	}
+	return appendNewline(b)
+}
+
+// NewStdoutWriter returns a writer which formats the output as json message
+// representing stdout lines
+func NewStdoutWriter(out io.Writer) io.Writer {
+	return &streamWriter{Writer: out, lineFormat: func(buf []byte) string {
+		return string(buf)
+	}}
+}
+
+// NewStderrWriter returns a writer which formats the output as json message
+// representing stderr lines
+func NewStderrWriter(out io.Writer) io.Writer {
+	return &streamWriter{Writer: out, lineFormat: func(buf []byte) string {
+		return "\033[91m" + string(buf) + "\033[0m"
+	}}
+}
diff --git a/vendor/github.com/docker/docker/pkg/stringid/stringid.go b/vendor/github.com/docker/docker/pkg/stringid/stringid.go
new file mode 100644
index 0000000000..fa7d9166eb
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/stringid/stringid.go
@@ -0,0 +1,99 @@
+// Package stringid provides helper functions for dealing with string identifiers
+package stringid // import "github.com/docker/docker/pkg/stringid"
+
+import (
+	cryptorand "crypto/rand"
+	"encoding/hex"
+	"fmt"
+	"io"
+	"math"
+	"math/big"
+	"math/rand"
+	"regexp"
+	"strconv"
+	"strings"
+	"time"
+)
+
+const shortLen = 12
+
+var (
+	validShortID = regexp.MustCompile("^[a-f0-9]{12}$")
+	validHex     = regexp.MustCompile(`^[a-f0-9]{64}$`)
+)
+
+// IsShortID determines if an arbitrary string *looks like* a short ID.
+func IsShortID(id string) bool {
+	return validShortID.MatchString(id)
+}
+
+// TruncateID returns a shorthand version of a string identifier for convenience.
+// A collision with other shorthands is very unlikely, but possible.
+// In case of a collision a lookup with TruncIndex.Get() will fail, and the caller
+// will need to use a longer prefix, or the full-length Id.
+func TruncateID(id string) string {
+	if i := strings.IndexRune(id, ':'); i >= 0 {
+		id = id[i+1:]
+	}
+	if len(id) > shortLen {
+		id = id[:shortLen]
+	}
+	return id
+}
+
+func generateID(r io.Reader) string {
+	b := make([]byte, 32)
+	for {
+		if _, err := io.ReadFull(r, b); err != nil {
+			panic(err) // This shouldn't happen
+		}
+		id := hex.EncodeToString(b)
+		// if we try to parse the truncated for as an int and we don't have
+		// an error then the value is all numeric and causes issues when
+		// used as a hostname. ref #3869
+		if _, err := strconv.ParseInt(TruncateID(id), 10, 64); err == nil {
+			continue
+		}
+		return id
+	}
+}
+
+// GenerateRandomID returns a unique id.
+func GenerateRandomID() string {
+	return generateID(cryptorand.Reader)
+}
+
+// GenerateNonCryptoID generates unique id without using cryptographically
+// secure sources of random.
+// It helps you to save entropy.
+func GenerateNonCryptoID() string {
+	return generateID(readerFunc(rand.Read))
+}
+
+// ValidateID checks whether an ID string is a valid image ID.
+func ValidateID(id string) error {
+	if ok := validHex.MatchString(id); !ok {
+		return fmt.Errorf("image ID %q is invalid", id)
+	}
+	return nil
+}
+
+func init() {
+	// safely set the seed globally so we generate random ids. Tries to use a
+	// crypto seed before falling back to time.
+	var seed int64
+	if cryptoseed, err := cryptorand.Int(cryptorand.Reader, big.NewInt(math.MaxInt64)); err != nil {
+		// This should not happen, but worst-case fallback to time-based seed.
+		seed = time.Now().UnixNano()
+	} else {
+		seed = cryptoseed.Int64()
+	}
+
+	rand.Seed(seed)
+}
+
+type readerFunc func(p []byte) (int, error)
+
+func (fn readerFunc) Read(p []byte) (int, error) {
+	return fn(p)
+}
diff --git a/vendor/github.com/docker/docker/pkg/symlink/fs.go b/vendor/github.com/docker/docker/pkg/symlink/fs.go
new file mode 100644
index 0000000000..7b894cde73
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/symlink/fs.go
@@ -0,0 +1,144 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE.BSD file.
+
+// This code is a modified version of path/filepath/symlink.go from the Go standard library.
+
+package symlink // import "github.com/docker/docker/pkg/symlink"
+
+import (
+	"bytes"
+	"errors"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/docker/docker/pkg/system"
+)
+
+// FollowSymlinkInScope is a wrapper around evalSymlinksInScope that returns an
+// absolute path. This function handles paths in a platform-agnostic manner.
+func FollowSymlinkInScope(path, root string) (string, error) {
+	path, err := filepath.Abs(filepath.FromSlash(path))
+	if err != nil {
+		return "", err
+	}
+	root, err = filepath.Abs(filepath.FromSlash(root))
+	if err != nil {
+		return "", err
+	}
+	return evalSymlinksInScope(path, root)
+}
+
+// evalSymlinksInScope will evaluate symlinks in `path` within a scope `root` and return
+// a result guaranteed to be contained within the scope `root`, at the time of the call.
+// Symlinks in `root` are not evaluated and left as-is.
+// Errors encountered while attempting to evaluate symlinks in path will be returned.
+// Non-existing paths are valid and do not constitute an error.
+// `path` has to contain `root` as a prefix, or else an error will be returned.
+// Trying to break out from `root` does not constitute an error.
+//
+// Example:
+//   If /foo/bar -> /outside,
+//   FollowSymlinkInScope("/foo/bar", "/foo") == "/foo/outside" instead of "/outside"
+//
+// IMPORTANT: it is the caller's responsibility to call evalSymlinksInScope *after* relevant symlinks
+// are created and not to create subsequently, additional symlinks that could potentially make a
+// previously-safe path, unsafe. Example: if /foo/bar does not exist, evalSymlinksInScope("/foo/bar", "/foo")
+// would return "/foo/bar". If one makes /foo/bar a symlink to /baz subsequently, then "/foo/bar" should
+// no longer be considered safely contained in "/foo".
+func evalSymlinksInScope(path, root string) (string, error) {
+	root = filepath.Clean(root)
+	if path == root {
+		return path, nil
+	}
+	if !strings.HasPrefix(path, root) {
+		return "", errors.New("evalSymlinksInScope: " + path + " is not in " + root)
+	}
+	const maxIter = 255
+	originalPath := path
+	// given root of "/a" and path of "/a/b/../../c" we want path to be "/b/../../c"
+	path = path[len(root):]
+	if root == string(filepath.Separator) {
+		path = string(filepath.Separator) + path
+	}
+	if !strings.HasPrefix(path, string(filepath.Separator)) {
+		return "", errors.New("evalSymlinksInScope: " + path + " is not in " + root)
+	}
+	path = filepath.Clean(path)
+	// consume path by taking each frontmost path element,
+	// expanding it if it's a symlink, and appending it to b
+	var b bytes.Buffer
+	// b here will always be considered to be the "current absolute path inside
+	// root" when we append paths to it, we also append a slash and use
+	// filepath.Clean after the loop to trim the trailing slash
+	for n := 0; path != ""; n++ {
+		if n > maxIter {
+			return "", errors.New("evalSymlinksInScope: too many links in " + originalPath)
+		}
+
+		// find next path component, p
+		i := strings.IndexRune(path, filepath.Separator)
+		var p string
+		if i == -1 {
+			p, path = path, ""
+		} else {
+			p, path = path[:i], path[i+1:]
+		}
+
+		if p == "" {
+			continue
+		}
+
+		// this takes a b.String() like "b/../" and a p like "c" and turns it
+		// into "/b/../c" which then gets filepath.Cleaned into "/c" and then
+		// root gets prepended and we Clean again (to remove any trailing slash
+		// if the first Clean gave us just "/")
+		cleanP := filepath.Clean(string(filepath.Separator) + b.String() + p)
+		if isDriveOrRoot(cleanP) {
+			// never Lstat "/" itself, or drive letters on Windows
+			b.Reset()
+			continue
+		}
+		fullP := filepath.Clean(root + cleanP)
+
+		fi, err := os.Lstat(fullP)
+		if os.IsNotExist(err) {
+			// if p does not exist, accept it
+			b.WriteString(p)
+			b.WriteRune(filepath.Separator)
+			continue
+		}
+		if err != nil {
+			return "", err
+		}
+		if fi.Mode()&os.ModeSymlink == 0 {
+			b.WriteString(p)
+			b.WriteRune(filepath.Separator)
+			continue
+		}
+
+		// it's a symlink, put it at the front of path
+		dest, err := os.Readlink(fullP)
+		if err != nil {
+			return "", err
+		}
+		if system.IsAbs(dest) {
+			b.Reset()
+		}
+		path = dest + string(filepath.Separator) + path
+	}
+
+	// see note above on "fullP := ..." for why this is double-cleaned and
+	// what's happening here
+	return filepath.Clean(root + filepath.Clean(string(filepath.Separator)+b.String())), nil
+}
+
+// EvalSymlinks returns the path name after the evaluation of any symbolic
+// links.
+// If path is relative the result will be relative to the current directory,
+// unless one of the components is an absolute symbolic link.
+// This version has been updated to support long paths prepended with `\\?\`.
+func EvalSymlinks(path string) (string, error) {
+	return evalSymlinks(path)
+}
diff --git a/vendor/github.com/docker/docker/pkg/symlink/fs_unix.go b/vendor/github.com/docker/docker/pkg/symlink/fs_unix.go
new file mode 100644
index 0000000000..c6dafcb0b9
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/symlink/fs_unix.go
@@ -0,0 +1,15 @@
+// +build !windows
+
+package symlink // import "github.com/docker/docker/pkg/symlink"
+
+import (
+	"path/filepath"
+)
+
+func evalSymlinks(path string) (string, error) {
+	return filepath.EvalSymlinks(path)
+}
+
+func isDriveOrRoot(p string) bool {
+	return p == string(filepath.Separator)
+}
diff --git a/vendor/github.com/docker/docker/pkg/symlink/fs_windows.go b/vendor/github.com/docker/docker/pkg/symlink/fs_windows.go
new file mode 100644
index 0000000000..754761717b
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/symlink/fs_windows.go
@@ -0,0 +1,169 @@
+package symlink // import "github.com/docker/docker/pkg/symlink"
+
+import (
+	"bytes"
+	"errors"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/docker/docker/pkg/longpath"
+	"golang.org/x/sys/windows"
+)
+
+func toShort(path string) (string, error) {
+	p, err := windows.UTF16FromString(path)
+	if err != nil {
+		return "", err
+	}
+	b := p // GetShortPathName says we can reuse buffer
+	n, err := windows.GetShortPathName(&p[0], &b[0], uint32(len(b)))
+	if err != nil {
+		return "", err
+	}
+	if n > uint32(len(b)) {
+		b = make([]uint16, n)
+		if _, err = windows.GetShortPathName(&p[0], &b[0], uint32(len(b))); err != nil {
+			return "", err
+		}
+	}
+	return windows.UTF16ToString(b), nil
+}
+
+func toLong(path string) (string, error) {
+	p, err := windows.UTF16FromString(path)
+	if err != nil {
+		return "", err
+	}
+	b := p // GetLongPathName says we can reuse buffer
+	n, err := windows.GetLongPathName(&p[0], &b[0], uint32(len(b)))
+	if err != nil {
+		return "", err
+	}
+	if n > uint32(len(b)) {
+		b = make([]uint16, n)
+		n, err = windows.GetLongPathName(&p[0], &b[0], uint32(len(b)))
+		if err != nil {
+			return "", err
+		}
+	}
+	b = b[:n]
+	return windows.UTF16ToString(b), nil
+}
+
+func evalSymlinks(path string) (string, error) {
+	path, err := walkSymlinks(path)
+	if err != nil {
+		return "", err
+	}
+
+	p, err := toShort(path)
+	if err != nil {
+		return "", err
+	}
+	p, err = toLong(p)
+	if err != nil {
+		return "", err
+	}
+	// windows.GetLongPathName does not change the case of the drive letter,
+	// but the result of EvalSymlinks must be unique, so we have
+	// EvalSymlinks(`c:\a`) == EvalSymlinks(`C:\a`).
+	// Make drive letter upper case.
+	if len(p) >= 2 && p[1] == ':' && 'a' <= p[0] && p[0] <= 'z' {
+		p = string(p[0]+'A'-'a') + p[1:]
+	} else if len(p) >= 6 && p[5] == ':' && 'a' <= p[4] && p[4] <= 'z' {
+		p = p[:3] + string(p[4]+'A'-'a') + p[5:]
+	}
+	return filepath.Clean(p), nil
+}
+
+const utf8RuneSelf = 0x80
+
+func walkSymlinks(path string) (string, error) {
+	const maxIter = 255
+	originalPath := path
+	// consume path by taking each frontmost path element,
+	// expanding it if it's a symlink, and appending it to b
+	var b bytes.Buffer
+	for n := 0; path != ""; n++ {
+		if n > maxIter {
+			return "", errors.New("EvalSymlinks: too many links in " + originalPath)
+		}
+
+		// A path beginning with `\\?\` represents the root, so automatically
+		// skip that part and begin processing the next segment.
+		if strings.HasPrefix(path, longpath.Prefix) {
+			b.WriteString(longpath.Prefix)
+			path = path[4:]
+			continue
+		}
+
+		// find next path component, p
+		var i = -1
+		for j, c := range path {
+			if c < utf8RuneSelf && os.IsPathSeparator(uint8(c)) {
+				i = j
+				break
+			}
+		}
+		var p string
+		if i == -1 {
+			p, path = path, ""
+		} else {
+			p, path = path[:i], path[i+1:]
+		}
+
+		if p == "" {
+			if b.Len() == 0 {
+				// must be absolute path
+				b.WriteRune(filepath.Separator)
+			}
+			continue
+		}
+
+		// If this is the first segment after the long path prefix, accept the
+		// current segment as a volume root or UNC share and move on to the next.
+		if b.String() == longpath.Prefix {
+			b.WriteString(p)
+			b.WriteRune(filepath.Separator)
+			continue
+		}
+
+		fi, err := os.Lstat(b.String() + p)
+		if err != nil {
+			return "", err
+		}
+		if fi.Mode()&os.ModeSymlink == 0 {
+			b.WriteString(p)
+			if path != "" || (b.Len() == 2 && len(p) == 2 && p[1] == ':') {
+				b.WriteRune(filepath.Separator)
+			}
+			continue
+		}
+
+		// it's a symlink, put it at the front of path
+		dest, err := os.Readlink(b.String() + p)
+		if err != nil {
+			return "", err
+		}
+		if filepath.IsAbs(dest) || os.IsPathSeparator(dest[0]) {
+			b.Reset()
+		}
+		path = dest + string(filepath.Separator) + path
+	}
+	return filepath.Clean(b.String()), nil
+}
+
+func isDriveOrRoot(p string) bool {
+	if p == string(filepath.Separator) {
+		return true
+	}
+
+	length := len(p)
+	if length >= 2 {
+		if p[length-1] == ':' && (('a' <= p[length-2] && p[length-2] <= 'z') || ('A' <= p[length-2] && p[length-2] <= 'Z')) {
+			return true
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/numcpu.go b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu.go
new file mode 100644
index 0000000000..eea2d25bf9
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu.go
@@ -0,0 +1,12 @@
+// +build !linux,!windows
+
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+import (
+	"runtime"
+)
+
+// NumCPU returns the number of CPUs
+func NumCPU() int {
+	return runtime.NumCPU()
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_linux.go b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_linux.go
new file mode 100644
index 0000000000..5f6c6df8c4
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_linux.go
@@ -0,0 +1,42 @@
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+import (
+	"runtime"
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+// numCPU queries the system for the count of threads available
+// for use to this process.
+//
+// Issues two syscalls.
+// Returns 0 on errors. Use |runtime.NumCPU| in that case.
+func numCPU() int {
+	// Gets the affinity mask for a process: The very one invoking this function.
+	pid, _, _ := unix.RawSyscall(unix.SYS_GETPID, 0, 0, 0)
+
+	var mask [1024 / 64]uintptr
+	_, _, err := unix.RawSyscall(unix.SYS_SCHED_GETAFFINITY, pid, uintptr(len(mask)*8), uintptr(unsafe.Pointer(&mask[0])))
+	if err != 0 {
+		return 0
+	}
+
+	// For every available thread a bit is set in the mask.
+	ncpu := 0
+	for _, e := range mask {
+		if e == 0 {
+			continue
+		}
+		ncpu += int(popcnt(uint64(e)))
+	}
+	return ncpu
+}
+
+// NumCPU returns the number of CPUs which are currently online
+func NumCPU() int {
+	if ncpu := numCPU(); ncpu > 0 {
+		return ncpu
+	}
+	return runtime.NumCPU()
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_windows.go b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_windows.go
new file mode 100644
index 0000000000..13523f671f
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/numcpu_windows.go
@@ -0,0 +1,35 @@
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+import (
+	"runtime"
+	"unsafe"
+
+	"golang.org/x/sys/windows"
+)
+
+var (
+	kernel32               = windows.NewLazySystemDLL("kernel32.dll")
+	getCurrentProcess      = kernel32.NewProc("GetCurrentProcess")
+	getProcessAffinityMask = kernel32.NewProc("GetProcessAffinityMask")
+)
+
+func numCPU() int {
+	// Gets the affinity mask for a process
+	var mask, sysmask uintptr
+	currentProcess, _, _ := getCurrentProcess.Call()
+	ret, _, _ := getProcessAffinityMask.Call(currentProcess, uintptr(unsafe.Pointer(&mask)), uintptr(unsafe.Pointer(&sysmask)))
+	if ret == 0 {
+		return 0
+	}
+	// For every available thread a bit is set in the mask.
+	ncpu := int(popcnt(uint64(mask)))
+	return ncpu
+}
+
+// NumCPU returns the number of CPUs which are currently online
+func NumCPU() int {
+	if ncpu := numCPU(); ncpu > 0 {
+		return ncpu
+	}
+	return runtime.NumCPU()
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo.go b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo.go
new file mode 100644
index 0000000000..8fc0ecc25e
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo.go
@@ -0,0 +1,144 @@
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+import "github.com/docker/docker/pkg/parsers"
+
+// SysInfo stores information about which features a kernel supports.
+// TODO Windows: Factor out platform specific capabilities.
+type SysInfo struct {
+	// Whether the kernel supports AppArmor or not
+	AppArmor bool
+	// Whether the kernel supports Seccomp or not
+	Seccomp bool
+
+	cgroupMemInfo
+	cgroupCPUInfo
+	cgroupBlkioInfo
+	cgroupCpusetInfo
+	cgroupPids
+
+	// Whether IPv4 forwarding is supported or not, if this was disabled, networking will not work
+	IPv4ForwardingDisabled bool
+
+	// Whether bridge-nf-call-iptables is supported or not
+	BridgeNFCallIPTablesDisabled bool
+
+	// Whether bridge-nf-call-ip6tables is supported or not
+	BridgeNFCallIP6TablesDisabled bool
+
+	// Whether the cgroup has the mountpoint of "devices" or not
+	CgroupDevicesEnabled bool
+}
+
+type cgroupMemInfo struct {
+	// Whether memory limit is supported or not
+	MemoryLimit bool
+
+	// Whether swap limit is supported or not
+	SwapLimit bool
+
+	// Whether soft limit is supported or not
+	MemoryReservation bool
+
+	// Whether OOM killer disable is supported or not
+	OomKillDisable bool
+
+	// Whether memory swappiness is supported or not
+	MemorySwappiness bool
+
+	// Whether kernel memory limit is supported or not
+	KernelMemory bool
+}
+
+type cgroupCPUInfo struct {
+	// Whether CPU shares is supported or not
+	CPUShares bool
+
+	// Whether CPU CFS(Completely Fair Scheduler) period is supported or not
+	CPUCfsPeriod bool
+
+	// Whether CPU CFS(Completely Fair Scheduler) quota is supported or not
+	CPUCfsQuota bool
+
+	// Whether CPU real-time period is supported or not
+	CPURealtimePeriod bool
+
+	// Whether CPU real-time runtime is supported or not
+	CPURealtimeRuntime bool
+}
+
+type cgroupBlkioInfo struct {
+	// Whether Block IO weight is supported or not
+	BlkioWeight bool
+
+	// Whether Block IO weight_device is supported or not
+	BlkioWeightDevice bool
+
+	// Whether Block IO read limit in bytes per second is supported or not
+	BlkioReadBpsDevice bool
+
+	// Whether Block IO write limit in bytes per second is supported or not
+	BlkioWriteBpsDevice bool
+
+	// Whether Block IO read limit in IO per second is supported or not
+	BlkioReadIOpsDevice bool
+
+	// Whether Block IO write limit in IO per second is supported or not
+	BlkioWriteIOpsDevice bool
+}
+
+type cgroupCpusetInfo struct {
+	// Whether Cpuset is supported or not
+	Cpuset bool
+
+	// Available Cpuset's cpus
+	Cpus string
+
+	// Available Cpuset's memory nodes
+	Mems string
+}
+
+type cgroupPids struct {
+	// Whether Pids Limit is supported or not
+	PidsLimit bool
+}
+
+// IsCpusetCpusAvailable returns `true` if the provided string set is contained
+// in cgroup's cpuset.cpus set, `false` otherwise.
+// If error is not nil a parsing error occurred.
+func (c cgroupCpusetInfo) IsCpusetCpusAvailable(provided string) (bool, error) {
+	return isCpusetListAvailable(provided, c.Cpus)
+}
+
+// IsCpusetMemsAvailable returns `true` if the provided string set is contained
+// in cgroup's cpuset.mems set, `false` otherwise.
+// If error is not nil a parsing error occurred.
+func (c cgroupCpusetInfo) IsCpusetMemsAvailable(provided string) (bool, error) {
+	return isCpusetListAvailable(provided, c.Mems)
+}
+
+func isCpusetListAvailable(provided, available string) (bool, error) {
+	parsedProvided, err := parsers.ParseUintList(provided)
+	if err != nil {
+		return false, err
+	}
+	parsedAvailable, err := parsers.ParseUintList(available)
+	if err != nil {
+		return false, err
+	}
+	for k := range parsedProvided {
+		if !parsedAvailable[k] {
+			return false, nil
+		}
+	}
+	return true, nil
+}
+
+// Returns bit count of 1, used by NumCPU
+func popcnt(x uint64) (n byte) {
+	x -= (x >> 1) & 0x5555555555555555
+	x = (x>>2)&0x3333333333333333 + x&0x3333333333333333
+	x += x >> 4
+	x &= 0x0f0f0f0f0f0f0f0f
+	x *= 0x0101010101010101
+	return byte(x >> 56)
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_linux.go b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_linux.go
new file mode 100644
index 0000000000..dde5be19bc
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_linux.go
@@ -0,0 +1,254 @@
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path"
+	"strings"
+
+	"github.com/opencontainers/runc/libcontainer/cgroups"
+	"github.com/sirupsen/logrus"
+	"golang.org/x/sys/unix"
+)
+
+func findCgroupMountpoints() (map[string]string, error) {
+	cgMounts, err := cgroups.GetCgroupMounts(false)
+	if err != nil {
+		return nil, fmt.Errorf("Failed to parse cgroup information: %v", err)
+	}
+	mps := make(map[string]string)
+	for _, m := range cgMounts {
+		for _, ss := range m.Subsystems {
+			mps[ss] = m.Mountpoint
+		}
+	}
+	return mps, nil
+}
+
+// New returns a new SysInfo, using the filesystem to detect which features
+// the kernel supports. If `quiet` is `false` warnings are printed in logs
+// whenever an error occurs or misconfigurations are present.
+func New(quiet bool) *SysInfo {
+	sysInfo := &SysInfo{}
+	cgMounts, err := findCgroupMountpoints()
+	if err != nil {
+		logrus.Warnf("Failed to parse cgroup information: %v", err)
+	} else {
+		sysInfo.cgroupMemInfo = checkCgroupMem(cgMounts, quiet)
+		sysInfo.cgroupCPUInfo = checkCgroupCPU(cgMounts, quiet)
+		sysInfo.cgroupBlkioInfo = checkCgroupBlkioInfo(cgMounts, quiet)
+		sysInfo.cgroupCpusetInfo = checkCgroupCpusetInfo(cgMounts, quiet)
+		sysInfo.cgroupPids = checkCgroupPids(quiet)
+	}
+
+	_, ok := cgMounts["devices"]
+	sysInfo.CgroupDevicesEnabled = ok
+
+	sysInfo.IPv4ForwardingDisabled = !readProcBool("/proc/sys/net/ipv4/ip_forward")
+	sysInfo.BridgeNFCallIPTablesDisabled = !readProcBool("/proc/sys/net/bridge/bridge-nf-call-iptables")
+	sysInfo.BridgeNFCallIP6TablesDisabled = !readProcBool("/proc/sys/net/bridge/bridge-nf-call-ip6tables")
+
+	// Check if AppArmor is supported.
+	if _, err := os.Stat("/sys/kernel/security/apparmor"); !os.IsNotExist(err) {
+		sysInfo.AppArmor = true
+	}
+
+	// Check if Seccomp is supported, via CONFIG_SECCOMP.
+	if err := unix.Prctl(unix.PR_GET_SECCOMP, 0, 0, 0, 0); err != unix.EINVAL {
+		// Make sure the kernel has CONFIG_SECCOMP_FILTER.
+		if err := unix.Prctl(unix.PR_SET_SECCOMP, unix.SECCOMP_MODE_FILTER, 0, 0, 0); err != unix.EINVAL {
+			sysInfo.Seccomp = true
+		}
+	}
+
+	return sysInfo
+}
+
+// checkCgroupMem reads the memory information from the memory cgroup mount point.
+func checkCgroupMem(cgMounts map[string]string, quiet bool) cgroupMemInfo {
+	mountPoint, ok := cgMounts["memory"]
+	if !ok {
+		if !quiet {
+			logrus.Warn("Your kernel does not support cgroup memory limit")
+		}
+		return cgroupMemInfo{}
+	}
+
+	swapLimit := cgroupEnabled(mountPoint, "memory.memsw.limit_in_bytes")
+	if !quiet && !swapLimit {
+		logrus.Warn("Your kernel does not support swap memory limit")
+	}
+	memoryReservation := cgroupEnabled(mountPoint, "memory.soft_limit_in_bytes")
+	if !quiet && !memoryReservation {
+		logrus.Warn("Your kernel does not support memory reservation")
+	}
+	oomKillDisable := cgroupEnabled(mountPoint, "memory.oom_control")
+	if !quiet && !oomKillDisable {
+		logrus.Warn("Your kernel does not support oom control")
+	}
+	memorySwappiness := cgroupEnabled(mountPoint, "memory.swappiness")
+	if !quiet && !memorySwappiness {
+		logrus.Warn("Your kernel does not support memory swappiness")
+	}
+	kernelMemory := cgroupEnabled(mountPoint, "memory.kmem.limit_in_bytes")
+	if !quiet && !kernelMemory {
+		logrus.Warn("Your kernel does not support kernel memory limit")
+	}
+
+	return cgroupMemInfo{
+		MemoryLimit:       true,
+		SwapLimit:         swapLimit,
+		MemoryReservation: memoryReservation,
+		OomKillDisable:    oomKillDisable,
+		MemorySwappiness:  memorySwappiness,
+		KernelMemory:      kernelMemory,
+	}
+}
+
+// checkCgroupCPU reads the cpu information from the cpu cgroup mount point.
+func checkCgroupCPU(cgMounts map[string]string, quiet bool) cgroupCPUInfo {
+	mountPoint, ok := cgMounts["cpu"]
+	if !ok {
+		if !quiet {
+			logrus.Warn("Unable to find cpu cgroup in mounts")
+		}
+		return cgroupCPUInfo{}
+	}
+
+	cpuShares := cgroupEnabled(mountPoint, "cpu.shares")
+	if !quiet && !cpuShares {
+		logrus.Warn("Your kernel does not support cgroup cpu shares")
+	}
+
+	cpuCfsPeriod := cgroupEnabled(mountPoint, "cpu.cfs_period_us")
+	if !quiet && !cpuCfsPeriod {
+		logrus.Warn("Your kernel does not support cgroup cfs period")
+	}
+
+	cpuCfsQuota := cgroupEnabled(mountPoint, "cpu.cfs_quota_us")
+	if !quiet && !cpuCfsQuota {
+		logrus.Warn("Your kernel does not support cgroup cfs quotas")
+	}
+
+	cpuRealtimePeriod := cgroupEnabled(mountPoint, "cpu.rt_period_us")
+	if !quiet && !cpuRealtimePeriod {
+		logrus.Warn("Your kernel does not support cgroup rt period")
+	}
+
+	cpuRealtimeRuntime := cgroupEnabled(mountPoint, "cpu.rt_runtime_us")
+	if !quiet && !cpuRealtimeRuntime {
+		logrus.Warn("Your kernel does not support cgroup rt runtime")
+	}
+
+	return cgroupCPUInfo{
+		CPUShares:          cpuShares,
+		CPUCfsPeriod:       cpuCfsPeriod,
+		CPUCfsQuota:        cpuCfsQuota,
+		CPURealtimePeriod:  cpuRealtimePeriod,
+		CPURealtimeRuntime: cpuRealtimeRuntime,
+	}
+}
+
+// checkCgroupBlkioInfo reads the blkio information from the blkio cgroup mount point.
+func checkCgroupBlkioInfo(cgMounts map[string]string, quiet bool) cgroupBlkioInfo {
+	mountPoint, ok := cgMounts["blkio"]
+	if !ok {
+		if !quiet {
+			logrus.Warn("Unable to find blkio cgroup in mounts")
+		}
+		return cgroupBlkioInfo{}
+	}
+
+	weight := cgroupEnabled(mountPoint, "blkio.weight")
+	if !quiet && !weight {
+		logrus.Warn("Your kernel does not support cgroup blkio weight")
+	}
+
+	weightDevice := cgroupEnabled(mountPoint, "blkio.weight_device")
+	if !quiet && !weightDevice {
+		logrus.Warn("Your kernel does not support cgroup blkio weight_device")
+	}
+
+	readBpsDevice := cgroupEnabled(mountPoint, "blkio.throttle.read_bps_device")
+	if !quiet && !readBpsDevice {
+		logrus.Warn("Your kernel does not support cgroup blkio throttle.read_bps_device")
+	}
+
+	writeBpsDevice := cgroupEnabled(mountPoint, "blkio.throttle.write_bps_device")
+	if !quiet && !writeBpsDevice {
+		logrus.Warn("Your kernel does not support cgroup blkio throttle.write_bps_device")
+	}
+	readIOpsDevice := cgroupEnabled(mountPoint, "blkio.throttle.read_iops_device")
+	if !quiet && !readIOpsDevice {
+		logrus.Warn("Your kernel does not support cgroup blkio throttle.read_iops_device")
+	}
+
+	writeIOpsDevice := cgroupEnabled(mountPoint, "blkio.throttle.write_iops_device")
+	if !quiet && !writeIOpsDevice {
+		logrus.Warn("Your kernel does not support cgroup blkio throttle.write_iops_device")
+	}
+	return cgroupBlkioInfo{
+		BlkioWeight:          weight,
+		BlkioWeightDevice:    weightDevice,
+		BlkioReadBpsDevice:   readBpsDevice,
+		BlkioWriteBpsDevice:  writeBpsDevice,
+		BlkioReadIOpsDevice:  readIOpsDevice,
+		BlkioWriteIOpsDevice: writeIOpsDevice,
+	}
+}
+
+// checkCgroupCpusetInfo reads the cpuset information from the cpuset cgroup mount point.
+func checkCgroupCpusetInfo(cgMounts map[string]string, quiet bool) cgroupCpusetInfo {
+	mountPoint, ok := cgMounts["cpuset"]
+	if !ok {
+		if !quiet {
+			logrus.Warn("Unable to find cpuset cgroup in mounts")
+		}
+		return cgroupCpusetInfo{}
+	}
+
+	cpus, err := ioutil.ReadFile(path.Join(mountPoint, "cpuset.cpus"))
+	if err != nil {
+		return cgroupCpusetInfo{}
+	}
+
+	mems, err := ioutil.ReadFile(path.Join(mountPoint, "cpuset.mems"))
+	if err != nil {
+		return cgroupCpusetInfo{}
+	}
+
+	return cgroupCpusetInfo{
+		Cpuset: true,
+		Cpus:   strings.TrimSpace(string(cpus)),
+		Mems:   strings.TrimSpace(string(mems)),
+	}
+}
+
+// checkCgroupPids reads the pids information from the pids cgroup mount point.
+func checkCgroupPids(quiet bool) cgroupPids {
+	_, err := cgroups.FindCgroupMountpoint("pids")
+	if err != nil {
+		if !quiet {
+			logrus.Warn(err)
+		}
+		return cgroupPids{}
+	}
+
+	return cgroupPids{
+		PidsLimit: true,
+	}
+}
+
+func cgroupEnabled(mountPoint, name string) bool {
+	_, err := os.Stat(path.Join(mountPoint, name))
+	return err == nil
+}
+
+func readProcBool(path string) bool {
+	val, err := ioutil.ReadFile(path)
+	if err != nil {
+		return false
+	}
+	return strings.TrimSpace(string(val)) == "1"
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_unix.go b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_unix.go
new file mode 100644
index 0000000000..23cc695fb8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_unix.go
@@ -0,0 +1,9 @@
+// +build !linux,!windows
+
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+// New returns an empty SysInfo for non linux for now.
+func New(quiet bool) *SysInfo {
+	sysInfo := &SysInfo{}
+	return sysInfo
+}
diff --git a/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_windows.go b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_windows.go
new file mode 100644
index 0000000000..5f68524e7e
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/sysinfo/sysinfo_windows.go
@@ -0,0 +1,7 @@
+package sysinfo // import "github.com/docker/docker/pkg/sysinfo"
+
+// New returns an empty SysInfo for windows for now.
+func New(quiet bool) *SysInfo {
+	sysInfo := &SysInfo{}
+	return sysInfo
+}
diff --git a/vendor/github.com/docker/docker/pkg/system/syscall_windows.go b/vendor/github.com/docker/docker/pkg/system/syscall_windows.go
index 85e89a7eea..ee7e0256f3 100644
--- a/vendor/github.com/docker/docker/pkg/system/syscall_windows.go
+++ b/vendor/github.com/docker/docker/pkg/system/syscall_windows.go
@@ -1,6 +1,7 @@
 package system // import "github.com/docker/docker/pkg/system"
 
 import (
+	"fmt"
 	"unsafe"
 
 	"github.com/sirupsen/logrus"
@@ -53,6 +54,10 @@ func GetOSVersion() OSVersion {
 	return osv
 }
 
+func (osv OSVersion) ToString() string {
+	return fmt.Sprintf("%d.%d.%d", osv.MajorVersion, osv.MinorVersion, osv.Build)
+}
+
 // IsWindowsClient returns true if the SKU is client
 // @engine maintainers - this function should not be removed or modified as it
 // is used to enforce licensing restrictions on Windows.
diff --git a/vendor/github.com/docker/docker/pkg/tailfile/tailfile.go b/vendor/github.com/docker/docker/pkg/tailfile/tailfile.go
new file mode 100644
index 0000000000..e835893746
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tailfile/tailfile.go
@@ -0,0 +1,66 @@
+// Package tailfile provides helper functions to read the nth lines of any
+// ReadSeeker.
+package tailfile // import "github.com/docker/docker/pkg/tailfile"
+
+import (
+	"bytes"
+	"errors"
+	"io"
+	"os"
+)
+
+const blockSize = 1024
+
+var eol = []byte("\n")
+
+// ErrNonPositiveLinesNumber is an error returned if the lines number was negative.
+var ErrNonPositiveLinesNumber = errors.New("The number of lines to extract from the file must be positive")
+
+//TailFile returns last n lines of reader f (could be a nil).
+func TailFile(f io.ReadSeeker, n int) ([][]byte, error) {
+	if n <= 0 {
+		return nil, ErrNonPositiveLinesNumber
+	}
+	size, err := f.Seek(0, os.SEEK_END)
+	if err != nil {
+		return nil, err
+	}
+	block := -1
+	var data []byte
+	var cnt int
+	for {
+		var b []byte
+		step := int64(block * blockSize)
+		left := size + step // how many bytes to beginning
+		if left < 0 {
+			if _, err := f.Seek(0, os.SEEK_SET); err != nil {
+				return nil, err
+			}
+			b = make([]byte, blockSize+left)
+			if _, err := f.Read(b); err != nil {
+				return nil, err
+			}
+			data = append(b, data...)
+			break
+		} else {
+			b = make([]byte, blockSize)
+			if _, err := f.Seek(left, os.SEEK_SET); err != nil {
+				return nil, err
+			}
+			if _, err := f.Read(b); err != nil {
+				return nil, err
+			}
+			data = append(b, data...)
+		}
+		cnt += bytes.Count(b, eol)
+		if cnt > n {
+			break
+		}
+		block--
+	}
+	lines := bytes.Split(data, eol)
+	if n < len(lines) {
+		return lines[len(lines)-n-1 : len(lines)-1], nil
+	}
+	return lines[:len(lines)-1], nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/tarsum/builder_context.go b/vendor/github.com/docker/docker/pkg/tarsum/builder_context.go
new file mode 100644
index 0000000000..bc7d84df4e
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tarsum/builder_context.go
@@ -0,0 +1,21 @@
+package tarsum // import "github.com/docker/docker/pkg/tarsum"
+
+// BuilderContext is an interface extending TarSum by adding the Remove method.
+// In general there was concern about adding this method to TarSum itself
+// so instead it is being added just to "BuilderContext" which will then
+// only be used during the .dockerignore file processing
+// - see builder/evaluator.go
+type BuilderContext interface {
+	TarSum
+	Remove(string)
+}
+
+func (bc *tarSum) Remove(filename string) {
+	for i, fis := range bc.sums {
+		if fis.Name() == filename {
+			bc.sums = append(bc.sums[:i], bc.sums[i+1:]...)
+			// Note, we don't just return because there could be
+			// more than one with this name
+		}
+	}
+}
diff --git a/vendor/github.com/docker/docker/pkg/tarsum/fileinfosums.go b/vendor/github.com/docker/docker/pkg/tarsum/fileinfosums.go
new file mode 100644
index 0000000000..01d4ed59b2
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tarsum/fileinfosums.go
@@ -0,0 +1,133 @@
+package tarsum // import "github.com/docker/docker/pkg/tarsum"
+
+import (
+	"runtime"
+	"sort"
+	"strings"
+)
+
+// FileInfoSumInterface provides an interface for accessing file checksum
+// information within a tar file. This info is accessed through interface
+// so the actual name and sum cannot be melded with.
+type FileInfoSumInterface interface {
+	// File name
+	Name() string
+	// Checksum of this particular file and its headers
+	Sum() string
+	// Position of file in the tar
+	Pos() int64
+}
+
+type fileInfoSum struct {
+	name string
+	sum  string
+	pos  int64
+}
+
+func (fis fileInfoSum) Name() string {
+	return fis.name
+}
+func (fis fileInfoSum) Sum() string {
+	return fis.sum
+}
+func (fis fileInfoSum) Pos() int64 {
+	return fis.pos
+}
+
+// FileInfoSums provides a list of FileInfoSumInterfaces.
+type FileInfoSums []FileInfoSumInterface
+
+// GetFile returns the first FileInfoSumInterface with a matching name.
+func (fis FileInfoSums) GetFile(name string) FileInfoSumInterface {
+	// We do case insensitive matching on Windows as c:\APP and c:\app are
+	// the same. See issue #33107.
+	for i := range fis {
+		if (runtime.GOOS == "windows" && strings.EqualFold(fis[i].Name(), name)) ||
+			(runtime.GOOS != "windows" && fis[i].Name() == name) {
+			return fis[i]
+		}
+	}
+	return nil
+}
+
+// GetAllFile returns a FileInfoSums with all matching names.
+func (fis FileInfoSums) GetAllFile(name string) FileInfoSums {
+	f := FileInfoSums{}
+	for i := range fis {
+		if fis[i].Name() == name {
+			f = append(f, fis[i])
+		}
+	}
+	return f
+}
+
+// GetDuplicatePaths returns a FileInfoSums with all duplicated paths.
+func (fis FileInfoSums) GetDuplicatePaths() (dups FileInfoSums) {
+	seen := make(map[string]int, len(fis)) // allocate earl. no need to grow this map.
+	for i := range fis {
+		f := fis[i]
+		if _, ok := seen[f.Name()]; ok {
+			dups = append(dups, f)
+		} else {
+			seen[f.Name()] = 0
+		}
+	}
+	return dups
+}
+
+// Len returns the size of the FileInfoSums.
+func (fis FileInfoSums) Len() int { return len(fis) }
+
+// Swap swaps two FileInfoSum values if a FileInfoSums list.
+func (fis FileInfoSums) Swap(i, j int) { fis[i], fis[j] = fis[j], fis[i] }
+
+// SortByPos sorts FileInfoSums content by position.
+func (fis FileInfoSums) SortByPos() {
+	sort.Sort(byPos{fis})
+}
+
+// SortByNames sorts FileInfoSums content by name.
+func (fis FileInfoSums) SortByNames() {
+	sort.Sort(byName{fis})
+}
+
+// SortBySums sorts FileInfoSums content by sums.
+func (fis FileInfoSums) SortBySums() {
+	dups := fis.GetDuplicatePaths()
+	if len(dups) > 0 {
+		sort.Sort(bySum{fis, dups})
+	} else {
+		sort.Sort(bySum{fis, nil})
+	}
+}
+
+// byName is a sort.Sort helper for sorting by file names.
+// If names are the same, order them by their appearance in the tar archive
+type byName struct{ FileInfoSums }
+
+func (bn byName) Less(i, j int) bool {
+	if bn.FileInfoSums[i].Name() == bn.FileInfoSums[j].Name() {
+		return bn.FileInfoSums[i].Pos() < bn.FileInfoSums[j].Pos()
+	}
+	return bn.FileInfoSums[i].Name() < bn.FileInfoSums[j].Name()
+}
+
+// bySum is a sort.Sort helper for sorting by the sums of all the fileinfos in the tar archive
+type bySum struct {
+	FileInfoSums
+	dups FileInfoSums
+}
+
+func (bs bySum) Less(i, j int) bool {
+	if bs.dups != nil && bs.FileInfoSums[i].Name() == bs.FileInfoSums[j].Name() {
+		return bs.FileInfoSums[i].Pos() < bs.FileInfoSums[j].Pos()
+	}
+	return bs.FileInfoSums[i].Sum() < bs.FileInfoSums[j].Sum()
+}
+
+// byPos is a sort.Sort helper for sorting by the sums of all the fileinfos by their original order
+type byPos struct{ FileInfoSums }
+
+func (bp byPos) Less(i, j int) bool {
+	return bp.FileInfoSums[i].Pos() < bp.FileInfoSums[j].Pos()
+}
diff --git a/vendor/github.com/docker/docker/pkg/tarsum/tarsum.go b/vendor/github.com/docker/docker/pkg/tarsum/tarsum.go
new file mode 100644
index 0000000000..5542e1b2c0
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tarsum/tarsum.go
@@ -0,0 +1,301 @@
+// Package tarsum provides algorithms to perform checksum calculation on
+// filesystem layers.
+//
+// The transportation of filesystems, regarding Docker, is done with tar(1)
+// archives. There are a variety of tar serialization formats [2], and a key
+// concern here is ensuring a repeatable checksum given a set of inputs from a
+// generic tar archive. Types of transportation include distribution to and from a
+// registry endpoint, saving and loading through commands or Docker daemon APIs,
+// transferring the build context from client to Docker daemon, and committing the
+// filesystem of a container to become an image.
+//
+// As tar archives are used for transit, but not preserved in many situations, the
+// focus of the algorithm is to ensure the integrity of the preserved filesystem,
+// while maintaining a deterministic accountability. This includes neither
+// constraining the ordering or manipulation of the files during the creation or
+// unpacking of the archive, nor include additional metadata state about the file
+// system attributes.
+package tarsum // import "github.com/docker/docker/pkg/tarsum"
+
+import (
+	"archive/tar"
+	"bytes"
+	"compress/gzip"
+	"crypto"
+	"crypto/sha256"
+	"encoding/hex"
+	"errors"
+	"fmt"
+	"hash"
+	"io"
+	"path"
+	"strings"
+)
+
+const (
+	buf8K  = 8 * 1024
+	buf16K = 16 * 1024
+	buf32K = 32 * 1024
+)
+
+// NewTarSum creates a new interface for calculating a fixed time checksum of a
+// tar archive.
+//
+// This is used for calculating checksums of layers of an image, in some cases
+// including the byte payload of the image's json metadata as well, and for
+// calculating the checksums for buildcache.
+func NewTarSum(r io.Reader, dc bool, v Version) (TarSum, error) {
+	return NewTarSumHash(r, dc, v, DefaultTHash)
+}
+
+// NewTarSumHash creates a new TarSum, providing a THash to use rather than
+// the DefaultTHash.
+func NewTarSumHash(r io.Reader, dc bool, v Version, tHash THash) (TarSum, error) {
+	headerSelector, err := getTarHeaderSelector(v)
+	if err != nil {
+		return nil, err
+	}
+	ts := &tarSum{Reader: r, DisableCompression: dc, tarSumVersion: v, headerSelector: headerSelector, tHash: tHash}
+	err = ts.initTarSum()
+	return ts, err
+}
+
+// NewTarSumForLabel creates a new TarSum using the provided TarSum version+hash label.
+func NewTarSumForLabel(r io.Reader, disableCompression bool, label string) (TarSum, error) {
+	parts := strings.SplitN(label, "+", 2)
+	if len(parts) != 2 {
+		return nil, errors.New("tarsum label string should be of the form: {tarsum_version}+{hash_name}")
+	}
+
+	versionName, hashName := parts[0], parts[1]
+
+	version, ok := tarSumVersionsByName[versionName]
+	if !ok {
+		return nil, fmt.Errorf("unknown TarSum version name: %q", versionName)
+	}
+
+	hashConfig, ok := standardHashConfigs[hashName]
+	if !ok {
+		return nil, fmt.Errorf("unknown TarSum hash name: %q", hashName)
+	}
+
+	tHash := NewTHash(hashConfig.name, hashConfig.hash.New)
+
+	return NewTarSumHash(r, disableCompression, version, tHash)
+}
+
+// TarSum is the generic interface for calculating fixed time
+// checksums of a tar archive.
+type TarSum interface {
+	io.Reader
+	GetSums() FileInfoSums
+	Sum([]byte) string
+	Version() Version
+	Hash() THash
+}
+
+// tarSum struct is the structure for a Version0 checksum calculation.
+type tarSum struct {
+	io.Reader
+	tarR               *tar.Reader
+	tarW               *tar.Writer
+	writer             writeCloseFlusher
+	bufTar             *bytes.Buffer
+	bufWriter          *bytes.Buffer
+	bufData            []byte
+	h                  hash.Hash
+	tHash              THash
+	sums               FileInfoSums
+	fileCounter        int64
+	currentFile        string
+	finished           bool
+	first              bool
+	DisableCompression bool              // false by default. When false, the output gzip compressed.
+	tarSumVersion      Version           // this field is not exported so it can not be mutated during use
+	headerSelector     tarHeaderSelector // handles selecting and ordering headers for files in the archive
+}
+
+func (ts tarSum) Hash() THash {
+	return ts.tHash
+}
+
+func (ts tarSum) Version() Version {
+	return ts.tarSumVersion
+}
+
+// THash provides a hash.Hash type generator and its name.
+type THash interface {
+	Hash() hash.Hash
+	Name() string
+}
+
+// NewTHash is a convenience method for creating a THash.
+func NewTHash(name string, h func() hash.Hash) THash {
+	return simpleTHash{n: name, h: h}
+}
+
+type tHashConfig struct {
+	name string
+	hash crypto.Hash
+}
+
+var (
+	// NOTE: DO NOT include MD5 or SHA1, which are considered insecure.
+	standardHashConfigs = map[string]tHashConfig{
+		"sha256": {name: "sha256", hash: crypto.SHA256},
+		"sha512": {name: "sha512", hash: crypto.SHA512},
+	}
+)
+
+// DefaultTHash is default TarSum hashing algorithm - "sha256".
+var DefaultTHash = NewTHash("sha256", sha256.New)
+
+type simpleTHash struct {
+	n string
+	h func() hash.Hash
+}
+
+func (sth simpleTHash) Name() string    { return sth.n }
+func (sth simpleTHash) Hash() hash.Hash { return sth.h() }
+
+func (ts *tarSum) encodeHeader(h *tar.Header) error {
+	for _, elem := range ts.headerSelector.selectHeaders(h) {
+		// Ignore these headers to be compatible with versions
+		// before go 1.10
+		if elem[0] == "gname" || elem[0] == "uname" {
+			elem[1] = ""
+		}
+		if _, err := ts.h.Write([]byte(elem[0] + elem[1])); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (ts *tarSum) initTarSum() error {
+	ts.bufTar = bytes.NewBuffer([]byte{})
+	ts.bufWriter = bytes.NewBuffer([]byte{})
+	ts.tarR = tar.NewReader(ts.Reader)
+	ts.tarW = tar.NewWriter(ts.bufTar)
+	if !ts.DisableCompression {
+		ts.writer = gzip.NewWriter(ts.bufWriter)
+	} else {
+		ts.writer = &nopCloseFlusher{Writer: ts.bufWriter}
+	}
+	if ts.tHash == nil {
+		ts.tHash = DefaultTHash
+	}
+	ts.h = ts.tHash.Hash()
+	ts.h.Reset()
+	ts.first = true
+	ts.sums = FileInfoSums{}
+	return nil
+}
+
+func (ts *tarSum) Read(buf []byte) (int, error) {
+	if ts.finished {
+		return ts.bufWriter.Read(buf)
+	}
+	if len(ts.bufData) < len(buf) {
+		switch {
+		case len(buf) <= buf8K:
+			ts.bufData = make([]byte, buf8K)
+		case len(buf) <= buf16K:
+			ts.bufData = make([]byte, buf16K)
+		case len(buf) <= buf32K:
+			ts.bufData = make([]byte, buf32K)
+		default:
+			ts.bufData = make([]byte, len(buf))
+		}
+	}
+	buf2 := ts.bufData[:len(buf)]
+
+	n, err := ts.tarR.Read(buf2)
+	if err != nil {
+		if err == io.EOF {
+			if _, err := ts.h.Write(buf2[:n]); err != nil {
+				return 0, err
+			}
+			if !ts.first {
+				ts.sums = append(ts.sums, fileInfoSum{name: ts.currentFile, sum: hex.EncodeToString(ts.h.Sum(nil)), pos: ts.fileCounter})
+				ts.fileCounter++
+				ts.h.Reset()
+			} else {
+				ts.first = false
+			}
+
+			if _, err := ts.tarW.Write(buf2[:n]); err != nil {
+				return 0, err
+			}
+
+			currentHeader, err := ts.tarR.Next()
+			if err != nil {
+				if err == io.EOF {
+					if err := ts.tarW.Close(); err != nil {
+						return 0, err
+					}
+					if _, err := io.Copy(ts.writer, ts.bufTar); err != nil {
+						return 0, err
+					}
+					if err := ts.writer.Close(); err != nil {
+						return 0, err
+					}
+					ts.finished = true
+					return ts.bufWriter.Read(buf)
+				}
+				return 0, err
+			}
+
+			ts.currentFile = path.Join(".", path.Join("/", currentHeader.Name))
+			if err := ts.encodeHeader(currentHeader); err != nil {
+				return 0, err
+			}
+			if err := ts.tarW.WriteHeader(currentHeader); err != nil {
+				return 0, err
+			}
+
+			if _, err := io.Copy(ts.writer, ts.bufTar); err != nil {
+				return 0, err
+			}
+			ts.writer.Flush()
+
+			return ts.bufWriter.Read(buf)
+		}
+		return 0, err
+	}
+
+	// Filling the hash buffer
+	if _, err = ts.h.Write(buf2[:n]); err != nil {
+		return 0, err
+	}
+
+	// Filling the tar writer
+	if _, err = ts.tarW.Write(buf2[:n]); err != nil {
+		return 0, err
+	}
+
+	// Filling the output writer
+	if _, err = io.Copy(ts.writer, ts.bufTar); err != nil {
+		return 0, err
+	}
+	ts.writer.Flush()
+
+	return ts.bufWriter.Read(buf)
+}
+
+func (ts *tarSum) Sum(extra []byte) string {
+	ts.sums.SortBySums()
+	h := ts.tHash.Hash()
+	if extra != nil {
+		h.Write(extra)
+	}
+	for _, fis := range ts.sums {
+		h.Write([]byte(fis.Sum()))
+	}
+	checksum := ts.Version().String() + "+" + ts.tHash.Name() + ":" + hex.EncodeToString(h.Sum(nil))
+	return checksum
+}
+
+func (ts *tarSum) GetSums() FileInfoSums {
+	return ts.sums
+}
diff --git a/vendor/github.com/docker/docker/pkg/tarsum/versioning.go b/vendor/github.com/docker/docker/pkg/tarsum/versioning.go
new file mode 100644
index 0000000000..aa1f171862
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tarsum/versioning.go
@@ -0,0 +1,158 @@
+package tarsum // import "github.com/docker/docker/pkg/tarsum"
+
+import (
+	"archive/tar"
+	"errors"
+	"io"
+	"sort"
+	"strconv"
+	"strings"
+)
+
+// Version is used for versioning of the TarSum algorithm
+// based on the prefix of the hash used
+// i.e. "tarsum+sha256:e58fcf7418d4390dec8e8fb69d88c06ec07039d651fedd3aa72af9972e7d046b"
+type Version int
+
+// Prefix of "tarsum"
+const (
+	Version0 Version = iota
+	Version1
+	// VersionDev this constant will be either the latest or an unsettled next-version of the TarSum calculation
+	VersionDev
+)
+
+// WriteV1Header writes a tar header to a writer in V1 tarsum format.
+func WriteV1Header(h *tar.Header, w io.Writer) {
+	for _, elem := range v1TarHeaderSelect(h) {
+		w.Write([]byte(elem[0] + elem[1]))
+	}
+}
+
+// VersionLabelForChecksum returns the label for the given tarsum
+// checksum, i.e., everything before the first `+` character in
+// the string or an empty string if no label separator is found.
+func VersionLabelForChecksum(checksum string) string {
+	// Checksums are in the form: {versionLabel}+{hashID}:{hex}
+	sepIndex := strings.Index(checksum, "+")
+	if sepIndex < 0 {
+		return ""
+	}
+	return checksum[:sepIndex]
+}
+
+// GetVersions gets a list of all known tarsum versions.
+func GetVersions() []Version {
+	v := []Version{}
+	for k := range tarSumVersions {
+		v = append(v, k)
+	}
+	return v
+}
+
+var (
+	tarSumVersions = map[Version]string{
+		Version0:   "tarsum",
+		Version1:   "tarsum.v1",
+		VersionDev: "tarsum.dev",
+	}
+	tarSumVersionsByName = map[string]Version{
+		"tarsum":     Version0,
+		"tarsum.v1":  Version1,
+		"tarsum.dev": VersionDev,
+	}
+)
+
+func (tsv Version) String() string {
+	return tarSumVersions[tsv]
+}
+
+// GetVersionFromTarsum returns the Version from the provided string.
+func GetVersionFromTarsum(tarsum string) (Version, error) {
+	tsv := tarsum
+	if strings.Contains(tarsum, "+") {
+		tsv = strings.SplitN(tarsum, "+", 2)[0]
+	}
+	for v, s := range tarSumVersions {
+		if s == tsv {
+			return v, nil
+		}
+	}
+	return -1, ErrNotVersion
+}
+
+// Errors that may be returned by functions in this package
+var (
+	ErrNotVersion            = errors.New("string does not include a TarSum Version")
+	ErrVersionNotImplemented = errors.New("TarSum Version is not yet implemented")
+)
+
+// tarHeaderSelector is the interface which different versions
+// of tarsum should use for selecting and ordering tar headers
+// for each item in the archive.
+type tarHeaderSelector interface {
+	selectHeaders(h *tar.Header) (orderedHeaders [][2]string)
+}
+
+type tarHeaderSelectFunc func(h *tar.Header) (orderedHeaders [][2]string)
+
+func (f tarHeaderSelectFunc) selectHeaders(h *tar.Header) (orderedHeaders [][2]string) {
+	return f(h)
+}
+
+func v0TarHeaderSelect(h *tar.Header) (orderedHeaders [][2]string) {
+	return [][2]string{
+		{"name", h.Name},
+		{"mode", strconv.FormatInt(h.Mode, 10)},
+		{"uid", strconv.Itoa(h.Uid)},
+		{"gid", strconv.Itoa(h.Gid)},
+		{"size", strconv.FormatInt(h.Size, 10)},
+		{"mtime", strconv.FormatInt(h.ModTime.UTC().Unix(), 10)},
+		{"typeflag", string([]byte{h.Typeflag})},
+		{"linkname", h.Linkname},
+		{"uname", h.Uname},
+		{"gname", h.Gname},
+		{"devmajor", strconv.FormatInt(h.Devmajor, 10)},
+		{"devminor", strconv.FormatInt(h.Devminor, 10)},
+	}
+}
+
+func v1TarHeaderSelect(h *tar.Header) (orderedHeaders [][2]string) {
+	// Get extended attributes.
+	xAttrKeys := make([]string, len(h.Xattrs))
+	for k := range h.Xattrs {
+		xAttrKeys = append(xAttrKeys, k)
+	}
+	sort.Strings(xAttrKeys)
+
+	// Make the slice with enough capacity to hold the 11 basic headers
+	// we want from the v0 selector plus however many xattrs we have.
+	orderedHeaders = make([][2]string, 0, 11+len(xAttrKeys))
+
+	// Copy all headers from v0 excluding the 'mtime' header (the 5th element).
+	v0headers := v0TarHeaderSelect(h)
+	orderedHeaders = append(orderedHeaders, v0headers[0:5]...)
+	orderedHeaders = append(orderedHeaders, v0headers[6:]...)
+
+	// Finally, append the sorted xattrs.
+	for _, k := range xAttrKeys {
+		orderedHeaders = append(orderedHeaders, [2]string{k, h.Xattrs[k]})
+	}
+
+	return
+}
+
+var registeredHeaderSelectors = map[Version]tarHeaderSelectFunc{
+	Version0:   v0TarHeaderSelect,
+	Version1:   v1TarHeaderSelect,
+	VersionDev: v1TarHeaderSelect,
+}
+
+func getTarHeaderSelector(v Version) (tarHeaderSelector, error) {
+	headerSelector, ok := registeredHeaderSelectors[v]
+	if !ok {
+		return nil, ErrVersionNotImplemented
+	}
+
+	return headerSelector, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/tarsum/writercloser.go b/vendor/github.com/docker/docker/pkg/tarsum/writercloser.go
new file mode 100644
index 0000000000..c4c45a35e7
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/tarsum/writercloser.go
@@ -0,0 +1,22 @@
+package tarsum // import "github.com/docker/docker/pkg/tarsum"
+
+import (
+	"io"
+)
+
+type writeCloseFlusher interface {
+	io.WriteCloser
+	Flush() error
+}
+
+type nopCloseFlusher struct {
+	io.Writer
+}
+
+func (n *nopCloseFlusher) Close() error {
+	return nil
+}
+
+func (n *nopCloseFlusher) Flush() error {
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/ascii.go b/vendor/github.com/docker/docker/pkg/term/ascii.go
new file mode 100644
index 0000000000..87bca8d4ac
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/ascii.go
@@ -0,0 +1,66 @@
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"fmt"
+	"strings"
+)
+
+// ASCII list the possible supported ASCII key sequence
+var ASCII = []string{
+	"ctrl-@",
+	"ctrl-a",
+	"ctrl-b",
+	"ctrl-c",
+	"ctrl-d",
+	"ctrl-e",
+	"ctrl-f",
+	"ctrl-g",
+	"ctrl-h",
+	"ctrl-i",
+	"ctrl-j",
+	"ctrl-k",
+	"ctrl-l",
+	"ctrl-m",
+	"ctrl-n",
+	"ctrl-o",
+	"ctrl-p",
+	"ctrl-q",
+	"ctrl-r",
+	"ctrl-s",
+	"ctrl-t",
+	"ctrl-u",
+	"ctrl-v",
+	"ctrl-w",
+	"ctrl-x",
+	"ctrl-y",
+	"ctrl-z",
+	"ctrl-[",
+	"ctrl-\\",
+	"ctrl-]",
+	"ctrl-^",
+	"ctrl-_",
+}
+
+// ToBytes converts a string representing a suite of key-sequence to the corresponding ASCII code.
+func ToBytes(keys string) ([]byte, error) {
+	codes := []byte{}
+next:
+	for _, key := range strings.Split(keys, ",") {
+		if len(key) != 1 {
+			for code, ctrl := range ASCII {
+				if ctrl == key {
+					codes = append(codes, byte(code))
+					continue next
+				}
+			}
+			if key == "DEL" {
+				codes = append(codes, 127)
+			} else {
+				return nil, fmt.Errorf("Unknown character: '%s'", key)
+			}
+		} else {
+			codes = append(codes, key[0])
+		}
+	}
+	return codes, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/proxy.go b/vendor/github.com/docker/docker/pkg/term/proxy.go
new file mode 100644
index 0000000000..da733e5848
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/proxy.go
@@ -0,0 +1,78 @@
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"io"
+)
+
+// EscapeError is special error which returned by a TTY proxy reader's Read()
+// method in case its detach escape sequence is read.
+type EscapeError struct{}
+
+func (EscapeError) Error() string {
+	return "read escape sequence"
+}
+
+// escapeProxy is used only for attaches with a TTY. It is used to proxy
+// stdin keypresses from the underlying reader and look for the passed in
+// escape key sequence to signal a detach.
+type escapeProxy struct {
+	escapeKeys   []byte
+	escapeKeyPos int
+	r            io.Reader
+}
+
+// NewEscapeProxy returns a new TTY proxy reader which wraps the given reader
+// and detects when the specified escape keys are read, in which case the Read
+// method will return an error of type EscapeError.
+func NewEscapeProxy(r io.Reader, escapeKeys []byte) io.Reader {
+	return &escapeProxy{
+		escapeKeys: escapeKeys,
+		r:          r,
+	}
+}
+
+func (r *escapeProxy) Read(buf []byte) (int, error) {
+	nr, err := r.r.Read(buf)
+
+	if len(r.escapeKeys) == 0 {
+		return nr, err
+	}
+
+	preserve := func() {
+		// this preserves the original key presses in the passed in buffer
+		nr += r.escapeKeyPos
+		preserve := make([]byte, 0, r.escapeKeyPos+len(buf))
+		preserve = append(preserve, r.escapeKeys[:r.escapeKeyPos]...)
+		preserve = append(preserve, buf...)
+		r.escapeKeyPos = 0
+		copy(buf[0:nr], preserve)
+	}
+
+	if nr != 1 || err != nil {
+		if r.escapeKeyPos > 0 {
+			preserve()
+		}
+		return nr, err
+	}
+
+	if buf[0] != r.escapeKeys[r.escapeKeyPos] {
+		if r.escapeKeyPos > 0 {
+			preserve()
+		}
+		return nr, nil
+	}
+
+	if r.escapeKeyPos == len(r.escapeKeys)-1 {
+		return 0, EscapeError{}
+	}
+
+	// Looks like we've got an escape key, but we need to match again on the next
+	// read.
+	// Store the current escape key we found so we can look for the next one on
+	// the next read.
+	// Since this is an escape key, make sure we don't let the caller read it
+	// If later on we find that this is not the escape sequence, we'll add the
+	// keys back
+	r.escapeKeyPos++
+	return nr - r.escapeKeyPos, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/tc.go b/vendor/github.com/docker/docker/pkg/term/tc.go
new file mode 100644
index 0000000000..01bcaa8abb
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/tc.go
@@ -0,0 +1,20 @@
+// +build !windows
+
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+func tcget(fd uintptr, p *Termios) syscall.Errno {
+	_, _, err := unix.Syscall(unix.SYS_IOCTL, fd, uintptr(getTermios), uintptr(unsafe.Pointer(p)))
+	return err
+}
+
+func tcset(fd uintptr, p *Termios) syscall.Errno {
+	_, _, err := unix.Syscall(unix.SYS_IOCTL, fd, setTermios, uintptr(unsafe.Pointer(p)))
+	return err
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/term.go b/vendor/github.com/docker/docker/pkg/term/term.go
new file mode 100644
index 0000000000..0589a95519
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/term.go
@@ -0,0 +1,124 @@
+// +build !windows
+
+// Package term provides structures and helper functions to work with
+// terminal (state, sizes).
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"os/signal"
+
+	"golang.org/x/sys/unix"
+)
+
+var (
+	// ErrInvalidState is returned if the state of the terminal is invalid.
+	ErrInvalidState = errors.New("Invalid terminal state")
+)
+
+// State represents the state of the terminal.
+type State struct {
+	termios Termios
+}
+
+// Winsize represents the size of the terminal window.
+type Winsize struct {
+	Height uint16
+	Width  uint16
+	x      uint16
+	y      uint16
+}
+
+// StdStreams returns the standard streams (stdin, stdout, stderr).
+func StdStreams() (stdIn io.ReadCloser, stdOut, stdErr io.Writer) {
+	return os.Stdin, os.Stdout, os.Stderr
+}
+
+// GetFdInfo returns the file descriptor for an os.File and indicates whether the file represents a terminal.
+func GetFdInfo(in interface{}) (uintptr, bool) {
+	var inFd uintptr
+	var isTerminalIn bool
+	if file, ok := in.(*os.File); ok {
+		inFd = file.Fd()
+		isTerminalIn = IsTerminal(inFd)
+	}
+	return inFd, isTerminalIn
+}
+
+// IsTerminal returns true if the given file descriptor is a terminal.
+func IsTerminal(fd uintptr) bool {
+	var termios Termios
+	return tcget(fd, &termios) == 0
+}
+
+// RestoreTerminal restores the terminal connected to the given file descriptor
+// to a previous state.
+func RestoreTerminal(fd uintptr, state *State) error {
+	if state == nil {
+		return ErrInvalidState
+	}
+	if err := tcset(fd, &state.termios); err != 0 {
+		return err
+	}
+	return nil
+}
+
+// SaveState saves the state of the terminal connected to the given file descriptor.
+func SaveState(fd uintptr) (*State, error) {
+	var oldState State
+	if err := tcget(fd, &oldState.termios); err != 0 {
+		return nil, err
+	}
+
+	return &oldState, nil
+}
+
+// DisableEcho applies the specified state to the terminal connected to the file
+// descriptor, with echo disabled.
+func DisableEcho(fd uintptr, state *State) error {
+	newState := state.termios
+	newState.Lflag &^= unix.ECHO
+
+	if err := tcset(fd, &newState); err != 0 {
+		return err
+	}
+	handleInterrupt(fd, state)
+	return nil
+}
+
+// SetRawTerminal puts the terminal connected to the given file descriptor into
+// raw mode and returns the previous state. On UNIX, this puts both the input
+// and output into raw mode. On Windows, it only puts the input into raw mode.
+func SetRawTerminal(fd uintptr) (*State, error) {
+	oldState, err := MakeRaw(fd)
+	if err != nil {
+		return nil, err
+	}
+	handleInterrupt(fd, oldState)
+	return oldState, err
+}
+
+// SetRawTerminalOutput puts the output of terminal connected to the given file
+// descriptor into raw mode. On UNIX, this does nothing and returns nil for the
+// state. On Windows, it disables LF -> CRLF translation.
+func SetRawTerminalOutput(fd uintptr) (*State, error) {
+	return nil, nil
+}
+
+func handleInterrupt(fd uintptr, state *State) {
+	sigchan := make(chan os.Signal, 1)
+	signal.Notify(sigchan, os.Interrupt)
+	go func() {
+		for range sigchan {
+			// quit cleanly and the new terminal item is on a new line
+			fmt.Println()
+			signal.Stop(sigchan)
+			close(sigchan)
+			RestoreTerminal(fd, state)
+			os.Exit(1)
+		}
+	}()
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/term_windows.go b/vendor/github.com/docker/docker/pkg/term/term_windows.go
new file mode 100644
index 0000000000..64ead3c53b
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/term_windows.go
@@ -0,0 +1,228 @@
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"io"
+	"os"
+	"os/signal"
+	"syscall" // used for STD_INPUT_HANDLE, STD_OUTPUT_HANDLE and STD_ERROR_HANDLE
+
+	"github.com/Azure/go-ansiterm/winterm"
+	"github.com/docker/docker/pkg/term/windows"
+)
+
+// State holds the console mode for the terminal.
+type State struct {
+	mode uint32
+}
+
+// Winsize is used for window size.
+type Winsize struct {
+	Height uint16
+	Width  uint16
+}
+
+// vtInputSupported is true if winterm.ENABLE_VIRTUAL_TERMINAL_INPUT is supported by the console
+var vtInputSupported bool
+
+// StdStreams returns the standard streams (stdin, stdout, stderr).
+func StdStreams() (stdIn io.ReadCloser, stdOut, stdErr io.Writer) {
+	// Turn on VT handling on all std handles, if possible. This might
+	// fail, in which case we will fall back to terminal emulation.
+	var emulateStdin, emulateStdout, emulateStderr bool
+	fd := os.Stdin.Fd()
+	if mode, err := winterm.GetConsoleMode(fd); err == nil {
+		// Validate that winterm.ENABLE_VIRTUAL_TERMINAL_INPUT is supported, but do not set it.
+		if err = winterm.SetConsoleMode(fd, mode|winterm.ENABLE_VIRTUAL_TERMINAL_INPUT); err != nil {
+			emulateStdin = true
+		} else {
+			vtInputSupported = true
+		}
+		// Unconditionally set the console mode back even on failure because SetConsoleMode
+		// remembers invalid bits on input handles.
+		winterm.SetConsoleMode(fd, mode)
+	}
+
+	fd = os.Stdout.Fd()
+	if mode, err := winterm.GetConsoleMode(fd); err == nil {
+		// Validate winterm.DISABLE_NEWLINE_AUTO_RETURN is supported, but do not set it.
+		if err = winterm.SetConsoleMode(fd, mode|winterm.ENABLE_VIRTUAL_TERMINAL_PROCESSING|winterm.DISABLE_NEWLINE_AUTO_RETURN); err != nil {
+			emulateStdout = true
+		} else {
+			winterm.SetConsoleMode(fd, mode|winterm.ENABLE_VIRTUAL_TERMINAL_PROCESSING)
+		}
+	}
+
+	fd = os.Stderr.Fd()
+	if mode, err := winterm.GetConsoleMode(fd); err == nil {
+		// Validate winterm.DISABLE_NEWLINE_AUTO_RETURN is supported, but do not set it.
+		if err = winterm.SetConsoleMode(fd, mode|winterm.ENABLE_VIRTUAL_TERMINAL_PROCESSING|winterm.DISABLE_NEWLINE_AUTO_RETURN); err != nil {
+			emulateStderr = true
+		} else {
+			winterm.SetConsoleMode(fd, mode|winterm.ENABLE_VIRTUAL_TERMINAL_PROCESSING)
+		}
+	}
+
+	if os.Getenv("ConEmuANSI") == "ON" || os.Getenv("ConsoleZVersion") != "" {
+		// The ConEmu and ConsoleZ terminals emulate ANSI on output streams well.
+		emulateStdin = true
+		emulateStdout = false
+		emulateStderr = false
+	}
+
+	// Temporarily use STD_INPUT_HANDLE, STD_OUTPUT_HANDLE and
+	// STD_ERROR_HANDLE from syscall rather than x/sys/windows as long as
+	// go-ansiterm hasn't switch to x/sys/windows.
+	// TODO: switch back to x/sys/windows once go-ansiterm has switched
+	if emulateStdin {
+		stdIn = windowsconsole.NewAnsiReader(syscall.STD_INPUT_HANDLE)
+	} else {
+		stdIn = os.Stdin
+	}
+
+	if emulateStdout {
+		stdOut = windowsconsole.NewAnsiWriter(syscall.STD_OUTPUT_HANDLE)
+	} else {
+		stdOut = os.Stdout
+	}
+
+	if emulateStderr {
+		stdErr = windowsconsole.NewAnsiWriter(syscall.STD_ERROR_HANDLE)
+	} else {
+		stdErr = os.Stderr
+	}
+
+	return
+}
+
+// GetFdInfo returns the file descriptor for an os.File and indicates whether the file represents a terminal.
+func GetFdInfo(in interface{}) (uintptr, bool) {
+	return windowsconsole.GetHandleInfo(in)
+}
+
+// GetWinsize returns the window size based on the specified file descriptor.
+func GetWinsize(fd uintptr) (*Winsize, error) {
+	info, err := winterm.GetConsoleScreenBufferInfo(fd)
+	if err != nil {
+		return nil, err
+	}
+
+	winsize := &Winsize{
+		Width:  uint16(info.Window.Right - info.Window.Left + 1),
+		Height: uint16(info.Window.Bottom - info.Window.Top + 1),
+	}
+
+	return winsize, nil
+}
+
+// IsTerminal returns true if the given file descriptor is a terminal.
+func IsTerminal(fd uintptr) bool {
+	return windowsconsole.IsConsole(fd)
+}
+
+// RestoreTerminal restores the terminal connected to the given file descriptor
+// to a previous state.
+func RestoreTerminal(fd uintptr, state *State) error {
+	return winterm.SetConsoleMode(fd, state.mode)
+}
+
+// SaveState saves the state of the terminal connected to the given file descriptor.
+func SaveState(fd uintptr) (*State, error) {
+	mode, e := winterm.GetConsoleMode(fd)
+	if e != nil {
+		return nil, e
+	}
+
+	return &State{mode: mode}, nil
+}
+
+// DisableEcho disables echo for the terminal connected to the given file descriptor.
+// -- See https://msdn.microsoft.com/en-us/library/windows/desktop/ms683462(v=vs.85).aspx
+func DisableEcho(fd uintptr, state *State) error {
+	mode := state.mode
+	mode &^= winterm.ENABLE_ECHO_INPUT
+	mode |= winterm.ENABLE_PROCESSED_INPUT | winterm.ENABLE_LINE_INPUT
+	err := winterm.SetConsoleMode(fd, mode)
+	if err != nil {
+		return err
+	}
+
+	// Register an interrupt handler to catch and restore prior state
+	restoreAtInterrupt(fd, state)
+	return nil
+}
+
+// SetRawTerminal puts the terminal connected to the given file descriptor into
+// raw mode and returns the previous state. On UNIX, this puts both the input
+// and output into raw mode. On Windows, it only puts the input into raw mode.
+func SetRawTerminal(fd uintptr) (*State, error) {
+	state, err := MakeRaw(fd)
+	if err != nil {
+		return nil, err
+	}
+
+	// Register an interrupt handler to catch and restore prior state
+	restoreAtInterrupt(fd, state)
+	return state, err
+}
+
+// SetRawTerminalOutput puts the output of terminal connected to the given file
+// descriptor into raw mode. On UNIX, this does nothing and returns nil for the
+// state. On Windows, it disables LF -> CRLF translation.
+func SetRawTerminalOutput(fd uintptr) (*State, error) {
+	state, err := SaveState(fd)
+	if err != nil {
+		return nil, err
+	}
+
+	// Ignore failures, since winterm.DISABLE_NEWLINE_AUTO_RETURN might not be supported on this
+	// version of Windows.
+	winterm.SetConsoleMode(fd, state.mode|winterm.DISABLE_NEWLINE_AUTO_RETURN)
+	return state, err
+}
+
+// MakeRaw puts the terminal (Windows Console) connected to the given file descriptor into raw
+// mode and returns the previous state of the terminal so that it can be restored.
+func MakeRaw(fd uintptr) (*State, error) {
+	state, err := SaveState(fd)
+	if err != nil {
+		return nil, err
+	}
+
+	mode := state.mode
+
+	// See
+	// -- https://msdn.microsoft.com/en-us/library/windows/desktop/ms686033(v=vs.85).aspx
+	// -- https://msdn.microsoft.com/en-us/library/windows/desktop/ms683462(v=vs.85).aspx
+
+	// Disable these modes
+	mode &^= winterm.ENABLE_ECHO_INPUT
+	mode &^= winterm.ENABLE_LINE_INPUT
+	mode &^= winterm.ENABLE_MOUSE_INPUT
+	mode &^= winterm.ENABLE_WINDOW_INPUT
+	mode &^= winterm.ENABLE_PROCESSED_INPUT
+
+	// Enable these modes
+	mode |= winterm.ENABLE_EXTENDED_FLAGS
+	mode |= winterm.ENABLE_INSERT_MODE
+	mode |= winterm.ENABLE_QUICK_EDIT_MODE
+	if vtInputSupported {
+		mode |= winterm.ENABLE_VIRTUAL_TERMINAL_INPUT
+	}
+
+	err = winterm.SetConsoleMode(fd, mode)
+	if err != nil {
+		return nil, err
+	}
+	return state, nil
+}
+
+func restoreAtInterrupt(fd uintptr, state *State) {
+	sigchan := make(chan os.Signal, 1)
+	signal.Notify(sigchan, os.Interrupt)
+
+	go func() {
+		_ = <-sigchan
+		RestoreTerminal(fd, state)
+		os.Exit(0)
+	}()
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/termios_bsd.go b/vendor/github.com/docker/docker/pkg/term/termios_bsd.go
new file mode 100644
index 0000000000..48b16f5203
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/termios_bsd.go
@@ -0,0 +1,42 @@
+// +build darwin freebsd openbsd netbsd
+
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+const (
+	getTermios = unix.TIOCGETA
+	setTermios = unix.TIOCSETA
+)
+
+// Termios is the Unix API for terminal I/O.
+type Termios unix.Termios
+
+// MakeRaw put the terminal connected to the given file descriptor into raw
+// mode and returns the previous state of the terminal so that it can be
+// restored.
+func MakeRaw(fd uintptr) (*State, error) {
+	var oldState State
+	if _, _, err := unix.Syscall(unix.SYS_IOCTL, fd, getTermios, uintptr(unsafe.Pointer(&oldState.termios))); err != 0 {
+		return nil, err
+	}
+
+	newState := oldState.termios
+	newState.Iflag &^= (unix.IGNBRK | unix.BRKINT | unix.PARMRK | unix.ISTRIP | unix.INLCR | unix.IGNCR | unix.ICRNL | unix.IXON)
+	newState.Oflag &^= unix.OPOST
+	newState.Lflag &^= (unix.ECHO | unix.ECHONL | unix.ICANON | unix.ISIG | unix.IEXTEN)
+	newState.Cflag &^= (unix.CSIZE | unix.PARENB)
+	newState.Cflag |= unix.CS8
+	newState.Cc[unix.VMIN] = 1
+	newState.Cc[unix.VTIME] = 0
+
+	if _, _, err := unix.Syscall(unix.SYS_IOCTL, fd, setTermios, uintptr(unsafe.Pointer(&newState))); err != 0 {
+		return nil, err
+	}
+
+	return &oldState, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/termios_linux.go b/vendor/github.com/docker/docker/pkg/term/termios_linux.go
new file mode 100644
index 0000000000..6d4c63fdb7
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/termios_linux.go
@@ -0,0 +1,39 @@
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+const (
+	getTermios = unix.TCGETS
+	setTermios = unix.TCSETS
+)
+
+// Termios is the Unix API for terminal I/O.
+type Termios unix.Termios
+
+// MakeRaw put the terminal connected to the given file descriptor into raw
+// mode and returns the previous state of the terminal so that it can be
+// restored.
+func MakeRaw(fd uintptr) (*State, error) {
+	termios, err := unix.IoctlGetTermios(int(fd), getTermios)
+	if err != nil {
+		return nil, err
+	}
+
+	var oldState State
+	oldState.termios = Termios(*termios)
+
+	termios.Iflag &^= (unix.IGNBRK | unix.BRKINT | unix.PARMRK | unix.ISTRIP | unix.INLCR | unix.IGNCR | unix.ICRNL | unix.IXON)
+	termios.Oflag &^= unix.OPOST
+	termios.Lflag &^= (unix.ECHO | unix.ECHONL | unix.ICANON | unix.ISIG | unix.IEXTEN)
+	termios.Cflag &^= (unix.CSIZE | unix.PARENB)
+	termios.Cflag |= unix.CS8
+	termios.Cc[unix.VMIN] = 1
+	termios.Cc[unix.VTIME] = 0
+
+	if err := unix.IoctlSetTermios(int(fd), setTermios, termios); err != nil {
+		return nil, err
+	}
+	return &oldState, nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/windows/ansi_reader.go b/vendor/github.com/docker/docker/pkg/term/windows/ansi_reader.go
new file mode 100644
index 0000000000..1d7c452cc8
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/windows/ansi_reader.go
@@ -0,0 +1,263 @@
+// +build windows
+
+package windowsconsole // import "github.com/docker/docker/pkg/term/windows"
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"strings"
+	"unsafe"
+
+	ansiterm "github.com/Azure/go-ansiterm"
+	"github.com/Azure/go-ansiterm/winterm"
+)
+
+const (
+	escapeSequence = ansiterm.KEY_ESC_CSI
+)
+
+// ansiReader wraps a standard input file (e.g., os.Stdin) providing ANSI sequence translation.
+type ansiReader struct {
+	file     *os.File
+	fd       uintptr
+	buffer   []byte
+	cbBuffer int
+	command  []byte
+}
+
+// NewAnsiReader returns an io.ReadCloser that provides VT100 terminal emulation on top of a
+// Windows console input handle.
+func NewAnsiReader(nFile int) io.ReadCloser {
+	initLogger()
+	file, fd := winterm.GetStdFile(nFile)
+	return &ansiReader{
+		file:    file,
+		fd:      fd,
+		command: make([]byte, 0, ansiterm.ANSI_MAX_CMD_LENGTH),
+		buffer:  make([]byte, 0),
+	}
+}
+
+// Close closes the wrapped file.
+func (ar *ansiReader) Close() (err error) {
+	return ar.file.Close()
+}
+
+// Fd returns the file descriptor of the wrapped file.
+func (ar *ansiReader) Fd() uintptr {
+	return ar.fd
+}
+
+// Read reads up to len(p) bytes of translated input events into p.
+func (ar *ansiReader) Read(p []byte) (int, error) {
+	if len(p) == 0 {
+		return 0, nil
+	}
+
+	// Previously read bytes exist, read as much as we can and return
+	if len(ar.buffer) > 0 {
+		logger.Debugf("Reading previously cached bytes")
+
+		originalLength := len(ar.buffer)
+		copiedLength := copy(p, ar.buffer)
+
+		if copiedLength == originalLength {
+			ar.buffer = make([]byte, 0, len(p))
+		} else {
+			ar.buffer = ar.buffer[copiedLength:]
+		}
+
+		logger.Debugf("Read from cache p[%d]: % x", copiedLength, p)
+		return copiedLength, nil
+	}
+
+	// Read and translate key events
+	events, err := readInputEvents(ar.fd, len(p))
+	if err != nil {
+		return 0, err
+	} else if len(events) == 0 {
+		logger.Debug("No input events detected")
+		return 0, nil
+	}
+
+	keyBytes := translateKeyEvents(events, []byte(escapeSequence))
+
+	// Save excess bytes and right-size keyBytes
+	if len(keyBytes) > len(p) {
+		logger.Debugf("Received %d keyBytes, only room for %d bytes", len(keyBytes), len(p))
+		ar.buffer = keyBytes[len(p):]
+		keyBytes = keyBytes[:len(p)]
+	} else if len(keyBytes) == 0 {
+		logger.Debug("No key bytes returned from the translator")
+		return 0, nil
+	}
+
+	copiedLength := copy(p, keyBytes)
+	if copiedLength != len(keyBytes) {
+		return 0, errors.New("unexpected copy length encountered")
+	}
+
+	logger.Debugf("Read        p[%d]: % x", copiedLength, p)
+	logger.Debugf("Read keyBytes[%d]: % x", copiedLength, keyBytes)
+	return copiedLength, nil
+}
+
+// readInputEvents polls until at least one event is available.
+func readInputEvents(fd uintptr, maxBytes int) ([]winterm.INPUT_RECORD, error) {
+	// Determine the maximum number of records to retrieve
+	// -- Cast around the type system to obtain the size of a single INPUT_RECORD.
+	//    unsafe.Sizeof requires an expression vs. a type-reference; the casting
+	//    tricks the type system into believing it has such an expression.
+	recordSize := int(unsafe.Sizeof(*((*winterm.INPUT_RECORD)(unsafe.Pointer(&maxBytes)))))
+	countRecords := maxBytes / recordSize
+	if countRecords > ansiterm.MAX_INPUT_EVENTS {
+		countRecords = ansiterm.MAX_INPUT_EVENTS
+	} else if countRecords == 0 {
+		countRecords = 1
+	}
+	logger.Debugf("[windows] readInputEvents: Reading %v records (buffer size %v, record size %v)", countRecords, maxBytes, recordSize)
+
+	// Wait for and read input events
+	events := make([]winterm.INPUT_RECORD, countRecords)
+	nEvents := uint32(0)
+	eventsExist, err := winterm.WaitForSingleObject(fd, winterm.WAIT_INFINITE)
+	if err != nil {
+		return nil, err
+	}
+
+	if eventsExist {
+		err = winterm.ReadConsoleInput(fd, events, &nEvents)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	// Return a slice restricted to the number of returned records
+	logger.Debugf("[windows] readInputEvents: Read %v events", nEvents)
+	return events[:nEvents], nil
+}
+
+// KeyEvent Translation Helpers
+
+var arrowKeyMapPrefix = map[uint16]string{
+	winterm.VK_UP:    "%s%sA",
+	winterm.VK_DOWN:  "%s%sB",
+	winterm.VK_RIGHT: "%s%sC",
+	winterm.VK_LEFT:  "%s%sD",
+}
+
+var keyMapPrefix = map[uint16]string{
+	winterm.VK_UP:     "\x1B[%sA",
+	winterm.VK_DOWN:   "\x1B[%sB",
+	winterm.VK_RIGHT:  "\x1B[%sC",
+	winterm.VK_LEFT:   "\x1B[%sD",
+	winterm.VK_HOME:   "\x1B[1%s~", // showkey shows ^[[1
+	winterm.VK_END:    "\x1B[4%s~", // showkey shows ^[[4
+	winterm.VK_INSERT: "\x1B[2%s~",
+	winterm.VK_DELETE: "\x1B[3%s~",
+	winterm.VK_PRIOR:  "\x1B[5%s~",
+	winterm.VK_NEXT:   "\x1B[6%s~",
+	winterm.VK_F1:     "",
+	winterm.VK_F2:     "",
+	winterm.VK_F3:     "\x1B[13%s~",
+	winterm.VK_F4:     "\x1B[14%s~",
+	winterm.VK_F5:     "\x1B[15%s~",
+	winterm.VK_F6:     "\x1B[17%s~",
+	winterm.VK_F7:     "\x1B[18%s~",
+	winterm.VK_F8:     "\x1B[19%s~",
+	winterm.VK_F9:     "\x1B[20%s~",
+	winterm.VK_F10:    "\x1B[21%s~",
+	winterm.VK_F11:    "\x1B[23%s~",
+	winterm.VK_F12:    "\x1B[24%s~",
+}
+
+// translateKeyEvents converts the input events into the appropriate ANSI string.
+func translateKeyEvents(events []winterm.INPUT_RECORD, escapeSequence []byte) []byte {
+	var buffer bytes.Buffer
+	for _, event := range events {
+		if event.EventType == winterm.KEY_EVENT && event.KeyEvent.KeyDown != 0 {
+			buffer.WriteString(keyToString(&event.KeyEvent, escapeSequence))
+		}
+	}
+
+	return buffer.Bytes()
+}
+
+// keyToString maps the given input event record to the corresponding string.
+func keyToString(keyEvent *winterm.KEY_EVENT_RECORD, escapeSequence []byte) string {
+	if keyEvent.UnicodeChar == 0 {
+		return formatVirtualKey(keyEvent.VirtualKeyCode, keyEvent.ControlKeyState, escapeSequence)
+	}
+
+	_, alt, control := getControlKeys(keyEvent.ControlKeyState)
+	if control {
+		// TODO(azlinux): Implement following control sequences
+		// <Ctrl>-D  Signals the end of input from the keyboard; also exits current shell.
+		// <Ctrl>-H  Deletes the first character to the left of the cursor. Also called the ERASE key.
+		// <Ctrl>-Q  Restarts printing after it has been stopped with <Ctrl>-s.
+		// <Ctrl>-S  Suspends printing on the screen (does not stop the program).
+		// <Ctrl>-U  Deletes all characters on the current line. Also called the KILL key.
+		// <Ctrl>-E  Quits current command and creates a core
+
+	}
+
+	// <Alt>+Key generates ESC N Key
+	if !control && alt {
+		return ansiterm.KEY_ESC_N + strings.ToLower(string(keyEvent.UnicodeChar))
+	}
+
+	return string(keyEvent.UnicodeChar)
+}
+
+// formatVirtualKey converts a virtual key (e.g., up arrow) into the appropriate ANSI string.
+func formatVirtualKey(key uint16, controlState uint32, escapeSequence []byte) string {
+	shift, alt, control := getControlKeys(controlState)
+	modifier := getControlKeysModifier(shift, alt, control)
+
+	if format, ok := arrowKeyMapPrefix[key]; ok {
+		return fmt.Sprintf(format, escapeSequence, modifier)
+	}
+
+	if format, ok := keyMapPrefix[key]; ok {
+		return fmt.Sprintf(format, modifier)
+	}
+
+	return ""
+}
+
+// getControlKeys extracts the shift, alt, and ctrl key states.
+func getControlKeys(controlState uint32) (shift, alt, control bool) {
+	shift = 0 != (controlState & winterm.SHIFT_PRESSED)
+	alt = 0 != (controlState & (winterm.LEFT_ALT_PRESSED | winterm.RIGHT_ALT_PRESSED))
+	control = 0 != (controlState & (winterm.LEFT_CTRL_PRESSED | winterm.RIGHT_CTRL_PRESSED))
+	return shift, alt, control
+}
+
+// getControlKeysModifier returns the ANSI modifier for the given combination of control keys.
+func getControlKeysModifier(shift, alt, control bool) string {
+	if shift && alt && control {
+		return ansiterm.KEY_CONTROL_PARAM_8
+	}
+	if alt && control {
+		return ansiterm.KEY_CONTROL_PARAM_7
+	}
+	if shift && control {
+		return ansiterm.KEY_CONTROL_PARAM_6
+	}
+	if control {
+		return ansiterm.KEY_CONTROL_PARAM_5
+	}
+	if shift && alt {
+		return ansiterm.KEY_CONTROL_PARAM_4
+	}
+	if alt {
+		return ansiterm.KEY_CONTROL_PARAM_3
+	}
+	if shift {
+		return ansiterm.KEY_CONTROL_PARAM_2
+	}
+	return ""
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/windows/ansi_writer.go b/vendor/github.com/docker/docker/pkg/term/windows/ansi_writer.go
new file mode 100644
index 0000000000..7799a03fc5
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/windows/ansi_writer.go
@@ -0,0 +1,64 @@
+// +build windows
+
+package windowsconsole // import "github.com/docker/docker/pkg/term/windows"
+
+import (
+	"io"
+	"os"
+
+	ansiterm "github.com/Azure/go-ansiterm"
+	"github.com/Azure/go-ansiterm/winterm"
+)
+
+// ansiWriter wraps a standard output file (e.g., os.Stdout) providing ANSI sequence translation.
+type ansiWriter struct {
+	file           *os.File
+	fd             uintptr
+	infoReset      *winterm.CONSOLE_SCREEN_BUFFER_INFO
+	command        []byte
+	escapeSequence []byte
+	inAnsiSequence bool
+	parser         *ansiterm.AnsiParser
+}
+
+// NewAnsiWriter returns an io.Writer that provides VT100 terminal emulation on top of a
+// Windows console output handle.
+func NewAnsiWriter(nFile int) io.Writer {
+	initLogger()
+	file, fd := winterm.GetStdFile(nFile)
+	info, err := winterm.GetConsoleScreenBufferInfo(fd)
+	if err != nil {
+		return nil
+	}
+
+	parser := ansiterm.CreateParser("Ground", winterm.CreateWinEventHandler(fd, file))
+	logger.Infof("newAnsiWriter: parser %p", parser)
+
+	aw := &ansiWriter{
+		file:           file,
+		fd:             fd,
+		infoReset:      info,
+		command:        make([]byte, 0, ansiterm.ANSI_MAX_CMD_LENGTH),
+		escapeSequence: []byte(ansiterm.KEY_ESC_CSI),
+		parser:         parser,
+	}
+
+	logger.Infof("newAnsiWriter: aw.parser %p", aw.parser)
+	logger.Infof("newAnsiWriter: %v", aw)
+	return aw
+}
+
+func (aw *ansiWriter) Fd() uintptr {
+	return aw.fd
+}
+
+// Write writes len(p) bytes from p to the underlying data stream.
+func (aw *ansiWriter) Write(p []byte) (total int, err error) {
+	if len(p) == 0 {
+		return 0, nil
+	}
+
+	logger.Infof("Write: % x", p)
+	logger.Infof("Write: %s", string(p))
+	return aw.parser.Parse(p)
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/windows/console.go b/vendor/github.com/docker/docker/pkg/term/windows/console.go
new file mode 100644
index 0000000000..5274019758
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/windows/console.go
@@ -0,0 +1,35 @@
+// +build windows
+
+package windowsconsole // import "github.com/docker/docker/pkg/term/windows"
+
+import (
+	"os"
+
+	"github.com/Azure/go-ansiterm/winterm"
+)
+
+// GetHandleInfo returns file descriptor and bool indicating whether the file is a console.
+func GetHandleInfo(in interface{}) (uintptr, bool) {
+	switch t := in.(type) {
+	case *ansiReader:
+		return t.Fd(), true
+	case *ansiWriter:
+		return t.Fd(), true
+	}
+
+	var inFd uintptr
+	var isTerminal bool
+
+	if file, ok := in.(*os.File); ok {
+		inFd = file.Fd()
+		isTerminal = IsConsole(inFd)
+	}
+	return inFd, isTerminal
+}
+
+// IsConsole returns true if the given file descriptor is a Windows Console.
+// The code assumes that GetConsoleMode will return an error for file descriptors that are not a console.
+func IsConsole(fd uintptr) bool {
+	_, e := winterm.GetConsoleMode(fd)
+	return e == nil
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/windows/windows.go b/vendor/github.com/docker/docker/pkg/term/windows/windows.go
new file mode 100644
index 0000000000..1f8965969c
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/windows/windows.go
@@ -0,0 +1,33 @@
+// These files implement ANSI-aware input and output streams for use by the Docker Windows client.
+// When asked for the set of standard streams (e.g., stdin, stdout, stderr), the code will create
+// and return pseudo-streams that convert ANSI sequences to / from Windows Console API calls.
+
+package windowsconsole // import "github.com/docker/docker/pkg/term/windows"
+
+import (
+	"io/ioutil"
+	"os"
+	"sync"
+
+	ansiterm "github.com/Azure/go-ansiterm"
+	"github.com/sirupsen/logrus"
+)
+
+var logger *logrus.Logger
+var initOnce sync.Once
+
+func initLogger() {
+	initOnce.Do(func() {
+		logFile := ioutil.Discard
+
+		if isDebugEnv := os.Getenv(ansiterm.LogEnv); isDebugEnv == "1" {
+			logFile, _ = os.Create("ansiReaderWriter.log")
+		}
+
+		logger = &logrus.Logger{
+			Out:       logFile,
+			Formatter: new(logrus.TextFormatter),
+			Level:     logrus.DebugLevel,
+		}
+	})
+}
diff --git a/vendor/github.com/docker/docker/pkg/term/winsize.go b/vendor/github.com/docker/docker/pkg/term/winsize.go
new file mode 100644
index 0000000000..a19663ad83
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/term/winsize.go
@@ -0,0 +1,20 @@
+// +build !windows
+
+package term // import "github.com/docker/docker/pkg/term"
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+// GetWinsize returns the window size based on the specified file descriptor.
+func GetWinsize(fd uintptr) (*Winsize, error) {
+	uws, err := unix.IoctlGetWinsize(int(fd), unix.TIOCGWINSZ)
+	ws := &Winsize{Height: uws.Row, Width: uws.Col, x: uws.Xpixel, y: uws.Ypixel}
+	return ws, err
+}
+
+// SetWinsize tries to set the specified window size for the specified file descriptor.
+func SetWinsize(fd uintptr, ws *Winsize) error {
+	uws := &unix.Winsize{Row: ws.Height, Col: ws.Width, Xpixel: ws.x, Ypixel: ws.y}
+	return unix.IoctlSetWinsize(int(fd), unix.TIOCSWINSZ, uws)
+}
diff --git a/vendor/github.com/docker/docker/pkg/urlutil/urlutil.go b/vendor/github.com/docker/docker/pkg/urlutil/urlutil.go
new file mode 100644
index 0000000000..eaf2535da3
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/urlutil/urlutil.go
@@ -0,0 +1,44 @@
+// Package urlutil provides helper function to check urls kind.
+// It supports http urls, git urls and transport url (tcp://, …)
+package urlutil // import "github.com/docker/docker/pkg/urlutil"
+
+import (
+	"regexp"
+	"strings"
+)
+
+var (
+	validPrefixes = map[string][]string{
+		"url":       {"http://", "https://"},
+		"git":       {"git://", "github.com/", "git@"},
+		"transport": {"tcp://", "tcp+tls://", "udp://", "unix://", "unixgram://"},
+	}
+	urlPathWithFragmentSuffix = regexp.MustCompile(".git(?:#.+)?$")
+)
+
+// IsURL returns true if the provided str is an HTTP(S) URL.
+func IsURL(str string) bool {
+	return checkURL(str, "url")
+}
+
+// IsGitURL returns true if the provided str is a git repository URL.
+func IsGitURL(str string) bool {
+	if IsURL(str) && urlPathWithFragmentSuffix.MatchString(str) {
+		return true
+	}
+	return checkURL(str, "git")
+}
+
+// IsTransportURL returns true if the provided str is a transport (tcp, tcp+tls, udp, unix) URL.
+func IsTransportURL(str string) bool {
+	return checkURL(str, "transport")
+}
+
+func checkURL(str, kind string) bool {
+	for _, prefix := range validPrefixes[kind] {
+		if strings.HasPrefix(str, prefix) {
+			return true
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/docker/pkg/useragent/useragent.go b/vendor/github.com/docker/docker/pkg/useragent/useragent.go
new file mode 100644
index 0000000000..22db82129b
--- /dev/null
+++ b/vendor/github.com/docker/docker/pkg/useragent/useragent.go
@@ -0,0 +1,55 @@
+// Package useragent provides helper functions to pack
+// version information into a single User-Agent header.
+package useragent // import "github.com/docker/docker/pkg/useragent"
+
+import (
+	"strings"
+)
+
+// VersionInfo is used to model UserAgent versions.
+type VersionInfo struct {
+	Name    string
+	Version string
+}
+
+func (vi *VersionInfo) isValid() bool {
+	const stopChars = " \t\r\n/"
+	name := vi.Name
+	vers := vi.Version
+	if len(name) == 0 || strings.ContainsAny(name, stopChars) {
+		return false
+	}
+	if len(vers) == 0 || strings.ContainsAny(vers, stopChars) {
+		return false
+	}
+	return true
+}
+
+// AppendVersions converts versions to a string and appends the string to the string base.
+//
+// Each VersionInfo will be converted to a string in the format of
+// "product/version", where the "product" is get from the name field, while
+// version is get from the version field. Several pieces of version information
+// will be concatenated and separated by space.
+//
+// Example:
+// AppendVersions("base", VersionInfo{"foo", "1.0"}, VersionInfo{"bar", "2.0"})
+// results in "base foo/1.0 bar/2.0".
+func AppendVersions(base string, versions ...VersionInfo) string {
+	if len(versions) == 0 {
+		return base
+	}
+
+	verstrs := make([]string, 0, 1+len(versions))
+	if len(base) > 0 {
+		verstrs = append(verstrs, base)
+	}
+
+	for _, v := range versions {
+		if !v.isValid() {
+			continue
+		}
+		verstrs = append(verstrs, v.Name+"/"+v.Version)
+	}
+	return strings.Join(verstrs, " ")
+}
diff --git a/vendor/github.com/docker/docker/plugin/v2/plugin.go b/vendor/github.com/docker/docker/plugin/v2/plugin.go
new file mode 100644
index 0000000000..c00a9d0169
--- /dev/null
+++ b/vendor/github.com/docker/docker/plugin/v2/plugin.go
@@ -0,0 +1,266 @@
+package v2 // import "github.com/docker/docker/plugin/v2"
+
+import (
+	"fmt"
+	"path/filepath"
+	"strings"
+	"sync"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/pkg/plugins"
+	"github.com/opencontainers/go-digest"
+	specs "github.com/opencontainers/runtime-spec/specs-go"
+)
+
+// Plugin represents an individual plugin.
+type Plugin struct {
+	mu        sync.RWMutex
+	PluginObj types.Plugin `json:"plugin"` // todo: embed struct
+	pClient   *plugins.Client
+	refCount  int
+	Rootfs    string // TODO: make private
+
+	Config   digest.Digest
+	Blobsums []digest.Digest
+
+	modifyRuntimeSpec func(*specs.Spec)
+
+	SwarmServiceID string
+}
+
+const defaultPluginRuntimeDestination = "/run/docker/plugins"
+
+// ErrInadequateCapability indicates that the plugin did not have the requested capability.
+type ErrInadequateCapability struct {
+	cap string
+}
+
+func (e ErrInadequateCapability) Error() string {
+	return fmt.Sprintf("plugin does not provide %q capability", e.cap)
+}
+
+// ScopedPath returns the path scoped to the plugin rootfs
+func (p *Plugin) ScopedPath(s string) string {
+	if p.PluginObj.Config.PropagatedMount != "" && strings.HasPrefix(s, p.PluginObj.Config.PropagatedMount) {
+		// re-scope to the propagated mount path on the host
+		return filepath.Join(filepath.Dir(p.Rootfs), "propagated-mount", strings.TrimPrefix(s, p.PluginObj.Config.PropagatedMount))
+	}
+	return filepath.Join(p.Rootfs, s)
+}
+
+// Client returns the plugin client.
+func (p *Plugin) Client() *plugins.Client {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.pClient
+}
+
+// SetPClient set the plugin client.
+func (p *Plugin) SetPClient(client *plugins.Client) {
+	p.mu.Lock()
+	defer p.mu.Unlock()
+
+	p.pClient = client
+}
+
+// IsV1 returns true for V1 plugins and false otherwise.
+func (p *Plugin) IsV1() bool {
+	return false
+}
+
+// Name returns the plugin name.
+func (p *Plugin) Name() string {
+	return p.PluginObj.Name
+}
+
+// FilterByCap query the plugin for a given capability.
+func (p *Plugin) FilterByCap(capability string) (*Plugin, error) {
+	capability = strings.ToLower(capability)
+	for _, typ := range p.PluginObj.Config.Interface.Types {
+		if typ.Capability == capability && typ.Prefix == "docker" {
+			return p, nil
+		}
+	}
+	return nil, ErrInadequateCapability{capability}
+}
+
+// InitEmptySettings initializes empty settings for a plugin.
+func (p *Plugin) InitEmptySettings() {
+	p.PluginObj.Settings.Mounts = make([]types.PluginMount, len(p.PluginObj.Config.Mounts))
+	copy(p.PluginObj.Settings.Mounts, p.PluginObj.Config.Mounts)
+	p.PluginObj.Settings.Devices = make([]types.PluginDevice, len(p.PluginObj.Config.Linux.Devices))
+	copy(p.PluginObj.Settings.Devices, p.PluginObj.Config.Linux.Devices)
+	p.PluginObj.Settings.Env = make([]string, 0, len(p.PluginObj.Config.Env))
+	for _, env := range p.PluginObj.Config.Env {
+		if env.Value != nil {
+			p.PluginObj.Settings.Env = append(p.PluginObj.Settings.Env, fmt.Sprintf("%s=%s", env.Name, *env.Value))
+		}
+	}
+	p.PluginObj.Settings.Args = make([]string, len(p.PluginObj.Config.Args.Value))
+	copy(p.PluginObj.Settings.Args, p.PluginObj.Config.Args.Value)
+}
+
+// Set is used to pass arguments to the plugin.
+func (p *Plugin) Set(args []string) error {
+	p.mu.Lock()
+	defer p.mu.Unlock()
+
+	if p.PluginObj.Enabled {
+		return fmt.Errorf("cannot set on an active plugin, disable plugin before setting")
+	}
+
+	sets, err := newSettables(args)
+	if err != nil {
+		return err
+	}
+
+	// TODO(vieux): lots of code duplication here, needs to be refactored.
+
+next:
+	for _, s := range sets {
+		// range over all the envs in the config
+		for _, env := range p.PluginObj.Config.Env {
+			// found the env in the config
+			if env.Name == s.name {
+				// is it settable ?
+				if ok, err := s.isSettable(allowedSettableFieldsEnv, env.Settable); err != nil {
+					return err
+				} else if !ok {
+					return fmt.Errorf("%q is not settable", s.prettyName())
+				}
+				// is it, so lets update the settings in memory
+				updateSettingsEnv(&p.PluginObj.Settings.Env, &s)
+				continue next
+			}
+		}
+
+		// range over all the mounts in the config
+		for _, mount := range p.PluginObj.Config.Mounts {
+			// found the mount in the config
+			if mount.Name == s.name {
+				// is it settable ?
+				if ok, err := s.isSettable(allowedSettableFieldsMounts, mount.Settable); err != nil {
+					return err
+				} else if !ok {
+					return fmt.Errorf("%q is not settable", s.prettyName())
+				}
+
+				// it is, so lets update the settings in memory
+				if mount.Source == nil {
+					return fmt.Errorf("Plugin config has no mount source")
+				}
+				*mount.Source = s.value
+				continue next
+			}
+		}
+
+		// range over all the devices in the config
+		for _, device := range p.PluginObj.Config.Linux.Devices {
+			// found the device in the config
+			if device.Name == s.name {
+				// is it settable ?
+				if ok, err := s.isSettable(allowedSettableFieldsDevices, device.Settable); err != nil {
+					return err
+				} else if !ok {
+					return fmt.Errorf("%q is not settable", s.prettyName())
+				}
+
+				// it is, so lets update the settings in memory
+				if device.Path == nil {
+					return fmt.Errorf("Plugin config has no device path")
+				}
+				*device.Path = s.value
+				continue next
+			}
+		}
+
+		// found the name in the config
+		if p.PluginObj.Config.Args.Name == s.name {
+			// is it settable ?
+			if ok, err := s.isSettable(allowedSettableFieldsArgs, p.PluginObj.Config.Args.Settable); err != nil {
+				return err
+			} else if !ok {
+				return fmt.Errorf("%q is not settable", s.prettyName())
+			}
+
+			// it is, so lets update the settings in memory
+			p.PluginObj.Settings.Args = strings.Split(s.value, " ")
+			continue next
+		}
+
+		return fmt.Errorf("setting %q not found in the plugin configuration", s.name)
+	}
+
+	return nil
+}
+
+// IsEnabled returns the active state of the plugin.
+func (p *Plugin) IsEnabled() bool {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.PluginObj.Enabled
+}
+
+// GetID returns the plugin's ID.
+func (p *Plugin) GetID() string {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.PluginObj.ID
+}
+
+// GetSocket returns the plugin socket.
+func (p *Plugin) GetSocket() string {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.PluginObj.Config.Interface.Socket
+}
+
+// GetTypes returns the interface types of a plugin.
+func (p *Plugin) GetTypes() []types.PluginInterfaceType {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.PluginObj.Config.Interface.Types
+}
+
+// GetRefCount returns the reference count.
+func (p *Plugin) GetRefCount() int {
+	p.mu.RLock()
+	defer p.mu.RUnlock()
+
+	return p.refCount
+}
+
+// AddRefCount adds to reference count.
+func (p *Plugin) AddRefCount(count int) {
+	p.mu.Lock()
+	defer p.mu.Unlock()
+
+	p.refCount += count
+}
+
+// Acquire increments the plugin's reference count
+// This should be followed up by `Release()` when the plugin is no longer in use.
+func (p *Plugin) Acquire() {
+	p.AddRefCount(plugingetter.Acquire)
+}
+
+// Release decrements the plugin's reference count
+// This should only be called when the plugin is no longer in use, e.g. with
+// via `Acquire()` or getter.Get("name", "type", plugingetter.Acquire)
+func (p *Plugin) Release() {
+	p.AddRefCount(plugingetter.Release)
+}
+
+// SetSpecOptModifier sets the function to use to modify the the generated
+// runtime spec.
+func (p *Plugin) SetSpecOptModifier(f func(*specs.Spec)) {
+	p.mu.Lock()
+	p.modifyRuntimeSpec = f
+	p.mu.Unlock()
+}
diff --git a/vendor/github.com/docker/docker/plugin/v2/plugin_linux.go b/vendor/github.com/docker/docker/plugin/v2/plugin_linux.go
new file mode 100644
index 0000000000..4ad582cd83
--- /dev/null
+++ b/vendor/github.com/docker/docker/plugin/v2/plugin_linux.go
@@ -0,0 +1,141 @@
+package v2 // import "github.com/docker/docker/plugin/v2"
+
+import (
+	"os"
+	"path/filepath"
+	"runtime"
+	"strings"
+
+	"github.com/docker/docker/api/types"
+	"github.com/docker/docker/oci"
+	"github.com/docker/docker/pkg/system"
+	specs "github.com/opencontainers/runtime-spec/specs-go"
+	"github.com/pkg/errors"
+)
+
+// InitSpec creates an OCI spec from the plugin's config.
+func (p *Plugin) InitSpec(execRoot string) (*specs.Spec, error) {
+	s := oci.DefaultSpec()
+
+	s.Root = &specs.Root{
+		Path:     p.Rootfs,
+		Readonly: false, // TODO: all plugins should be readonly? settable in config?
+	}
+
+	userMounts := make(map[string]struct{}, len(p.PluginObj.Settings.Mounts))
+	for _, m := range p.PluginObj.Settings.Mounts {
+		userMounts[m.Destination] = struct{}{}
+	}
+
+	execRoot = filepath.Join(execRoot, p.PluginObj.ID)
+	if err := os.MkdirAll(execRoot, 0700); err != nil {
+		return nil, errors.WithStack(err)
+	}
+
+	if p.PluginObj.Config.PropagatedMount != "" {
+		pRoot := filepath.Join(filepath.Dir(p.Rootfs), "propagated-mount")
+		s.Mounts = append(s.Mounts, specs.Mount{
+			Source:      pRoot,
+			Destination: p.PluginObj.Config.PropagatedMount,
+			Type:        "bind",
+			Options:     []string{"rbind", "rw", "rshared"},
+		})
+		s.Linux.RootfsPropagation = "rshared"
+	}
+
+	mounts := append(p.PluginObj.Config.Mounts, types.PluginMount{
+		Source:      &execRoot,
+		Destination: defaultPluginRuntimeDestination,
+		Type:        "bind",
+		Options:     []string{"rbind", "rshared"},
+	})
+
+	if p.PluginObj.Config.Network.Type != "" {
+		// TODO: if net == bridge, use libnetwork controller to create a new plugin-specific bridge, bind mount /etc/hosts and /etc/resolv.conf look at the docker code (allocateNetwork, initialize)
+		if p.PluginObj.Config.Network.Type == "host" {
+			oci.RemoveNamespace(&s, specs.LinuxNamespaceType("network"))
+		}
+		etcHosts := "/etc/hosts"
+		resolvConf := "/etc/resolv.conf"
+		mounts = append(mounts,
+			types.PluginMount{
+				Source:      &etcHosts,
+				Destination: etcHosts,
+				Type:        "bind",
+				Options:     []string{"rbind", "ro"},
+			},
+			types.PluginMount{
+				Source:      &resolvConf,
+				Destination: resolvConf,
+				Type:        "bind",
+				Options:     []string{"rbind", "ro"},
+			})
+	}
+	if p.PluginObj.Config.PidHost {
+		oci.RemoveNamespace(&s, specs.LinuxNamespaceType("pid"))
+	}
+
+	if p.PluginObj.Config.IpcHost {
+		oci.RemoveNamespace(&s, specs.LinuxNamespaceType("ipc"))
+	}
+
+	for _, mnt := range mounts {
+		m := specs.Mount{
+			Destination: mnt.Destination,
+			Type:        mnt.Type,
+			Options:     mnt.Options,
+		}
+		if mnt.Source == nil {
+			return nil, errors.New("mount source is not specified")
+		}
+		m.Source = *mnt.Source
+		s.Mounts = append(s.Mounts, m)
+	}
+
+	for i, m := range s.Mounts {
+		if strings.HasPrefix(m.Destination, "/dev/") {
+			if _, ok := userMounts[m.Destination]; ok {
+				s.Mounts = append(s.Mounts[:i], s.Mounts[i+1:]...)
+			}
+		}
+	}
+
+	if p.PluginObj.Config.Linux.AllowAllDevices {
+		s.Linux.Resources.Devices = []specs.LinuxDeviceCgroup{{Allow: true, Access: "rwm"}}
+	}
+	for _, dev := range p.PluginObj.Settings.Devices {
+		path := *dev.Path
+		d, dPermissions, err := oci.DevicesFromPath(path, path, "rwm")
+		if err != nil {
+			return nil, errors.WithStack(err)
+		}
+		s.Linux.Devices = append(s.Linux.Devices, d...)
+		s.Linux.Resources.Devices = append(s.Linux.Resources.Devices, dPermissions...)
+	}
+
+	envs := make([]string, 1, len(p.PluginObj.Settings.Env)+1)
+	envs[0] = "PATH=" + system.DefaultPathEnv(runtime.GOOS)
+	envs = append(envs, p.PluginObj.Settings.Env...)
+
+	args := append(p.PluginObj.Config.Entrypoint, p.PluginObj.Settings.Args...)
+	cwd := p.PluginObj.Config.WorkDir
+	if len(cwd) == 0 {
+		cwd = "/"
+	}
+	s.Process.Terminal = false
+	s.Process.Args = args
+	s.Process.Cwd = cwd
+	s.Process.Env = envs
+
+	caps := s.Process.Capabilities
+	caps.Bounding = append(caps.Bounding, p.PluginObj.Config.Linux.Capabilities...)
+	caps.Permitted = append(caps.Permitted, p.PluginObj.Config.Linux.Capabilities...)
+	caps.Inheritable = append(caps.Inheritable, p.PluginObj.Config.Linux.Capabilities...)
+	caps.Effective = append(caps.Effective, p.PluginObj.Config.Linux.Capabilities...)
+
+	if p.modifyRuntimeSpec != nil {
+		p.modifyRuntimeSpec(&s)
+	}
+
+	return &s, nil
+}
diff --git a/vendor/github.com/docker/docker/plugin/v2/plugin_unsupported.go b/vendor/github.com/docker/docker/plugin/v2/plugin_unsupported.go
new file mode 100644
index 0000000000..734b2ac664
--- /dev/null
+++ b/vendor/github.com/docker/docker/plugin/v2/plugin_unsupported.go
@@ -0,0 +1,14 @@
+// +build !linux
+
+package v2 // import "github.com/docker/docker/plugin/v2"
+
+import (
+	"errors"
+
+	specs "github.com/opencontainers/runtime-spec/specs-go"
+)
+
+// InitSpec creates an OCI spec from the plugin's config.
+func (p *Plugin) InitSpec(execRoot string) (*specs.Spec, error) {
+	return nil, errors.New("not supported")
+}
diff --git a/vendor/github.com/docker/docker/plugin/v2/settable.go b/vendor/github.com/docker/docker/plugin/v2/settable.go
new file mode 100644
index 0000000000..efda564705
--- /dev/null
+++ b/vendor/github.com/docker/docker/plugin/v2/settable.go
@@ -0,0 +1,102 @@
+package v2 // import "github.com/docker/docker/plugin/v2"
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+)
+
+type settable struct {
+	name  string
+	field string
+	value string
+}
+
+var (
+	allowedSettableFieldsEnv     = []string{"value"}
+	allowedSettableFieldsArgs    = []string{"value"}
+	allowedSettableFieldsDevices = []string{"path"}
+	allowedSettableFieldsMounts  = []string{"source"}
+
+	errMultipleFields = errors.New("multiple fields are settable, one must be specified")
+	errInvalidFormat  = errors.New("invalid format, must be <name>[.<field>][=<value>]")
+)
+
+func newSettables(args []string) ([]settable, error) {
+	sets := make([]settable, 0, len(args))
+	for _, arg := range args {
+		set, err := newSettable(arg)
+		if err != nil {
+			return nil, err
+		}
+		sets = append(sets, set)
+	}
+	return sets, nil
+}
+
+func newSettable(arg string) (settable, error) {
+	var set settable
+	if i := strings.Index(arg, "="); i == 0 {
+		return set, errInvalidFormat
+	} else if i < 0 {
+		set.name = arg
+	} else {
+		set.name = arg[:i]
+		set.value = arg[i+1:]
+	}
+
+	if i := strings.LastIndex(set.name, "."); i > 0 {
+		set.field = set.name[i+1:]
+		set.name = arg[:i]
+	}
+
+	return set, nil
+}
+
+// prettyName return name.field if there is a field, otherwise name.
+func (set *settable) prettyName() string {
+	if set.field != "" {
+		return fmt.Sprintf("%s.%s", set.name, set.field)
+	}
+	return set.name
+}
+
+func (set *settable) isSettable(allowedSettableFields []string, settable []string) (bool, error) {
+	if set.field == "" {
+		if len(settable) == 1 {
+			// if field is not specified and there only one settable, default to it.
+			set.field = settable[0]
+		} else if len(settable) > 1 {
+			return false, errMultipleFields
+		}
+	}
+
+	isAllowed := false
+	for _, allowedSettableField := range allowedSettableFields {
+		if set.field == allowedSettableField {
+			isAllowed = true
+			break
+		}
+	}
+
+	if isAllowed {
+		for _, settableField := range settable {
+			if set.field == settableField {
+				return true, nil
+			}
+		}
+	}
+
+	return false, nil
+}
+
+func updateSettingsEnv(env *[]string, set *settable) {
+	for i, e := range *env {
+		if parts := strings.SplitN(e, "=", 2); parts[0] == set.name {
+			(*env)[i] = fmt.Sprintf("%s=%s", set.name, set.value)
+			return
+		}
+	}
+
+	*env = append(*env, fmt.Sprintf("%s=%s", set.name, set.value))
+}
diff --git a/vendor/github.com/docker/docker/restartmanager/restartmanager.go b/vendor/github.com/docker/docker/restartmanager/restartmanager.go
new file mode 100644
index 0000000000..6468ccf7e6
--- /dev/null
+++ b/vendor/github.com/docker/docker/restartmanager/restartmanager.go
@@ -0,0 +1,133 @@
+package restartmanager // import "github.com/docker/docker/restartmanager"
+
+import (
+	"errors"
+	"fmt"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/api/types/container"
+)
+
+const (
+	backoffMultiplier = 2
+	defaultTimeout    = 100 * time.Millisecond
+	maxRestartTimeout = 1 * time.Minute
+)
+
+// ErrRestartCanceled is returned when the restart manager has been
+// canceled and will no longer restart the container.
+var ErrRestartCanceled = errors.New("restart canceled")
+
+// RestartManager defines object that controls container restarting rules.
+type RestartManager interface {
+	Cancel() error
+	ShouldRestart(exitCode uint32, hasBeenManuallyStopped bool, executionDuration time.Duration) (bool, chan error, error)
+}
+
+type restartManager struct {
+	sync.Mutex
+	sync.Once
+	policy       container.RestartPolicy
+	restartCount int
+	timeout      time.Duration
+	active       bool
+	cancel       chan struct{}
+	canceled     bool
+}
+
+// New returns a new restartManager based on a policy.
+func New(policy container.RestartPolicy, restartCount int) RestartManager {
+	return &restartManager{policy: policy, restartCount: restartCount, cancel: make(chan struct{})}
+}
+
+func (rm *restartManager) SetPolicy(policy container.RestartPolicy) {
+	rm.Lock()
+	rm.policy = policy
+	rm.Unlock()
+}
+
+func (rm *restartManager) ShouldRestart(exitCode uint32, hasBeenManuallyStopped bool, executionDuration time.Duration) (bool, chan error, error) {
+	if rm.policy.IsNone() {
+		return false, nil, nil
+	}
+	rm.Lock()
+	unlockOnExit := true
+	defer func() {
+		if unlockOnExit {
+			rm.Unlock()
+		}
+	}()
+
+	if rm.canceled {
+		return false, nil, ErrRestartCanceled
+	}
+
+	if rm.active {
+		return false, nil, fmt.Errorf("invalid call on an active restart manager")
+	}
+	// if the container ran for more than 10s, regardless of status and policy reset the
+	// the timeout back to the default.
+	if executionDuration.Seconds() >= 10 {
+		rm.timeout = 0
+	}
+	switch {
+	case rm.timeout == 0:
+		rm.timeout = defaultTimeout
+	case rm.timeout < maxRestartTimeout:
+		rm.timeout *= backoffMultiplier
+	}
+	if rm.timeout > maxRestartTimeout {
+		rm.timeout = maxRestartTimeout
+	}
+
+	var restart bool
+	switch {
+	case rm.policy.IsAlways():
+		restart = true
+	case rm.policy.IsUnlessStopped() && !hasBeenManuallyStopped:
+		restart = true
+	case rm.policy.IsOnFailure():
+		// the default value of 0 for MaximumRetryCount means that we will not enforce a maximum count
+		if max := rm.policy.MaximumRetryCount; max == 0 || rm.restartCount < max {
+			restart = exitCode != 0
+		}
+	}
+
+	if !restart {
+		rm.active = false
+		return false, nil, nil
+	}
+
+	rm.restartCount++
+
+	unlockOnExit = false
+	rm.active = true
+	rm.Unlock()
+
+	ch := make(chan error)
+	go func() {
+		select {
+		case <-rm.cancel:
+			ch <- ErrRestartCanceled
+			close(ch)
+		case <-time.After(rm.timeout):
+			rm.Lock()
+			close(ch)
+			rm.active = false
+			rm.Unlock()
+		}
+	}()
+
+	return true, ch, nil
+}
+
+func (rm *restartManager) Cancel() error {
+	rm.Do(func() {
+		rm.Lock()
+		rm.canceled = true
+		close(rm.cancel)
+		rm.Unlock()
+	})
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/runconfig/config.go b/vendor/github.com/docker/docker/runconfig/config.go
new file mode 100644
index 0000000000..cbacf47df3
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/config.go
@@ -0,0 +1,81 @@
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"encoding/json"
+	"io"
+
+	"github.com/docker/docker/api/types/container"
+	networktypes "github.com/docker/docker/api/types/network"
+	"github.com/docker/docker/pkg/sysinfo"
+)
+
+// ContainerDecoder implements httputils.ContainerDecoder
+// calling DecodeContainerConfig.
+type ContainerDecoder struct{}
+
+// DecodeConfig makes ContainerDecoder to implement httputils.ContainerDecoder
+func (r ContainerDecoder) DecodeConfig(src io.Reader) (*container.Config, *container.HostConfig, *networktypes.NetworkingConfig, error) {
+	return decodeContainerConfig(src)
+}
+
+// DecodeHostConfig makes ContainerDecoder to implement httputils.ContainerDecoder
+func (r ContainerDecoder) DecodeHostConfig(src io.Reader) (*container.HostConfig, error) {
+	return decodeHostConfig(src)
+}
+
+// decodeContainerConfig decodes a json encoded config into a ContainerConfigWrapper
+// struct and returns both a Config and a HostConfig struct
+// Be aware this function is not checking whether the resulted structs are nil,
+// it's your business to do so
+func decodeContainerConfig(src io.Reader) (*container.Config, *container.HostConfig, *networktypes.NetworkingConfig, error) {
+	var w ContainerConfigWrapper
+
+	decoder := json.NewDecoder(src)
+	if err := decoder.Decode(&w); err != nil {
+		return nil, nil, nil, err
+	}
+
+	hc := w.getHostConfig()
+
+	// Perform platform-specific processing of Volumes and Binds.
+	if w.Config != nil && hc != nil {
+
+		// Initialize the volumes map if currently nil
+		if w.Config.Volumes == nil {
+			w.Config.Volumes = make(map[string]struct{})
+		}
+	}
+
+	// Certain parameters need daemon-side validation that cannot be done
+	// on the client, as only the daemon knows what is valid for the platform.
+	if err := validateNetMode(w.Config, hc); err != nil {
+		return nil, nil, nil, err
+	}
+
+	// Validate isolation
+	if err := validateIsolation(hc); err != nil {
+		return nil, nil, nil, err
+	}
+
+	// Validate QoS
+	if err := validateQoS(hc); err != nil {
+		return nil, nil, nil, err
+	}
+
+	// Validate Resources
+	if err := validateResources(hc, sysinfo.New(true)); err != nil {
+		return nil, nil, nil, err
+	}
+
+	// Validate Privileged
+	if err := validatePrivileged(hc); err != nil {
+		return nil, nil, nil, err
+	}
+
+	// Validate ReadonlyRootfs
+	if err := validateReadonlyRootfs(hc); err != nil {
+		return nil, nil, nil, err
+	}
+
+	return w.Config, hc, w.NetworkingConfig, nil
+}
diff --git a/vendor/github.com/docker/docker/runconfig/config_unix.go b/vendor/github.com/docker/docker/runconfig/config_unix.go
new file mode 100644
index 0000000000..65e8d6fcd4
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/config_unix.go
@@ -0,0 +1,59 @@
+// +build !windows
+
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"github.com/docker/docker/api/types/container"
+	networktypes "github.com/docker/docker/api/types/network"
+)
+
+// ContainerConfigWrapper is a Config wrapper that holds the container Config (portable)
+// and the corresponding HostConfig (non-portable).
+type ContainerConfigWrapper struct {
+	*container.Config
+	InnerHostConfig       *container.HostConfig          `json:"HostConfig,omitempty"`
+	Cpuset                string                         `json:",omitempty"` // Deprecated. Exported for backwards compatibility.
+	NetworkingConfig      *networktypes.NetworkingConfig `json:"NetworkingConfig,omitempty"`
+	*container.HostConfig                                // Deprecated. Exported to read attributes from json that are not in the inner host config structure.
+}
+
+// getHostConfig gets the HostConfig of the Config.
+// It's mostly there to handle Deprecated fields of the ContainerConfigWrapper
+func (w *ContainerConfigWrapper) getHostConfig() *container.HostConfig {
+	hc := w.HostConfig
+
+	if hc == nil && w.InnerHostConfig != nil {
+		hc = w.InnerHostConfig
+	} else if w.InnerHostConfig != nil {
+		if hc.Memory != 0 && w.InnerHostConfig.Memory == 0 {
+			w.InnerHostConfig.Memory = hc.Memory
+		}
+		if hc.MemorySwap != 0 && w.InnerHostConfig.MemorySwap == 0 {
+			w.InnerHostConfig.MemorySwap = hc.MemorySwap
+		}
+		if hc.CPUShares != 0 && w.InnerHostConfig.CPUShares == 0 {
+			w.InnerHostConfig.CPUShares = hc.CPUShares
+		}
+		if hc.CpusetCpus != "" && w.InnerHostConfig.CpusetCpus == "" {
+			w.InnerHostConfig.CpusetCpus = hc.CpusetCpus
+		}
+
+		if hc.VolumeDriver != "" && w.InnerHostConfig.VolumeDriver == "" {
+			w.InnerHostConfig.VolumeDriver = hc.VolumeDriver
+		}
+
+		hc = w.InnerHostConfig
+	}
+
+	if hc != nil {
+		if w.Cpuset != "" && hc.CpusetCpus == "" {
+			hc.CpusetCpus = w.Cpuset
+		}
+	}
+
+	// Make sure NetworkMode has an acceptable value. We do this to ensure
+	// backwards compatible API behavior.
+	SetDefaultNetModeIfBlank(hc)
+
+	return hc
+}
diff --git a/vendor/github.com/docker/docker/runconfig/config_windows.go b/vendor/github.com/docker/docker/runconfig/config_windows.go
new file mode 100644
index 0000000000..cced59d4df
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/config_windows.go
@@ -0,0 +1,19 @@
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"github.com/docker/docker/api/types/container"
+	networktypes "github.com/docker/docker/api/types/network"
+)
+
+// ContainerConfigWrapper is a Config wrapper that holds the container Config (portable)
+// and the corresponding HostConfig (non-portable).
+type ContainerConfigWrapper struct {
+	*container.Config
+	HostConfig       *container.HostConfig          `json:"HostConfig,omitempty"`
+	NetworkingConfig *networktypes.NetworkingConfig `json:"NetworkingConfig,omitempty"`
+}
+
+// getHostConfig gets the HostConfig of the Config.
+func (w *ContainerConfigWrapper) getHostConfig() *container.HostConfig {
+	return w.HostConfig
+}
diff --git a/vendor/github.com/docker/docker/runconfig/errors.go b/vendor/github.com/docker/docker/runconfig/errors.go
new file mode 100644
index 0000000000..038fe39660
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/errors.go
@@ -0,0 +1,42 @@
+package runconfig // import "github.com/docker/docker/runconfig"
+
+const (
+	// ErrConflictContainerNetworkAndLinks conflict between --net=container and links
+	ErrConflictContainerNetworkAndLinks validationError = "conflicting options: container type network can't be used with links. This would result in undefined behavior"
+	// ErrConflictSharedNetwork conflict between private and other networks
+	ErrConflictSharedNetwork validationError = "container sharing network namespace with another container or host cannot be connected to any other network"
+	// ErrConflictHostNetwork conflict from being disconnected from host network or connected to host network.
+	ErrConflictHostNetwork validationError = "container cannot be disconnected from host network or connected to host network"
+	// ErrConflictNoNetwork conflict between private and other networks
+	ErrConflictNoNetwork validationError = "container cannot be connected to multiple networks with one of the networks in private (none) mode"
+	// ErrConflictNetworkAndDNS conflict between --dns and the network mode
+	ErrConflictNetworkAndDNS validationError = "conflicting options: dns and the network mode"
+	// ErrConflictNetworkHostname conflict between the hostname and the network mode
+	ErrConflictNetworkHostname validationError = "conflicting options: hostname and the network mode"
+	// ErrConflictHostNetworkAndLinks conflict between --net=host and links
+	ErrConflictHostNetworkAndLinks validationError = "conflicting options: host type networking can't be used with links. This would result in undefined behavior"
+	// ErrConflictContainerNetworkAndMac conflict between the mac address and the network mode
+	ErrConflictContainerNetworkAndMac validationError = "conflicting options: mac-address and the network mode"
+	// ErrConflictNetworkHosts conflict between add-host and the network mode
+	ErrConflictNetworkHosts validationError = "conflicting options: custom host-to-IP mapping and the network mode"
+	// ErrConflictNetworkPublishPorts conflict between the publish options and the network mode
+	ErrConflictNetworkPublishPorts validationError = "conflicting options: port publishing and the container type network mode"
+	// ErrConflictNetworkExposePorts conflict between the expose option and the network mode
+	ErrConflictNetworkExposePorts validationError = "conflicting options: port exposing and the container type network mode"
+	// ErrUnsupportedNetworkAndIP conflict between network mode and requested ip address
+	ErrUnsupportedNetworkAndIP validationError = "user specified IP address is supported on user defined networks only"
+	// ErrUnsupportedNetworkNoSubnetAndIP conflict between network with no configured subnet and requested ip address
+	ErrUnsupportedNetworkNoSubnetAndIP validationError = "user specified IP address is supported only when connecting to networks with user configured subnets"
+	// ErrUnsupportedNetworkAndAlias conflict between network mode and alias
+	ErrUnsupportedNetworkAndAlias validationError = "network-scoped alias is supported only for containers in user defined networks"
+	// ErrConflictUTSHostname conflict between the hostname and the UTS mode
+	ErrConflictUTSHostname validationError = "conflicting options: hostname and the UTS mode"
+)
+
+type validationError string
+
+func (e validationError) Error() string {
+	return string(e)
+}
+
+func (e validationError) InvalidParameter() {}
diff --git a/vendor/github.com/docker/docker/runconfig/hostconfig.go b/vendor/github.com/docker/docker/runconfig/hostconfig.go
new file mode 100644
index 0000000000..7d99e5acfa
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/hostconfig.go
@@ -0,0 +1,79 @@
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"encoding/json"
+	"io"
+	"strings"
+
+	"github.com/docker/docker/api/types/container"
+)
+
+// DecodeHostConfig creates a HostConfig based on the specified Reader.
+// It assumes the content of the reader will be JSON, and decodes it.
+func decodeHostConfig(src io.Reader) (*container.HostConfig, error) {
+	decoder := json.NewDecoder(src)
+
+	var w ContainerConfigWrapper
+	if err := decoder.Decode(&w); err != nil {
+		return nil, err
+	}
+
+	hc := w.getHostConfig()
+	return hc, nil
+}
+
+// SetDefaultNetModeIfBlank changes the NetworkMode in a HostConfig structure
+// to default if it is not populated. This ensures backwards compatibility after
+// the validation of the network mode was moved from the docker CLI to the
+// docker daemon.
+func SetDefaultNetModeIfBlank(hc *container.HostConfig) {
+	if hc != nil {
+		if hc.NetworkMode == container.NetworkMode("") {
+			hc.NetworkMode = container.NetworkMode("default")
+		}
+	}
+}
+
+// validateNetContainerMode ensures that the various combinations of requested
+// network settings wrt container mode are valid.
+func validateNetContainerMode(c *container.Config, hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	parts := strings.Split(string(hc.NetworkMode), ":")
+	if parts[0] == "container" {
+		if len(parts) < 2 || parts[1] == "" {
+			return validationError("Invalid network mode: invalid container format container:<name|id>")
+		}
+	}
+
+	if hc.NetworkMode.IsContainer() && c.Hostname != "" {
+		return ErrConflictNetworkHostname
+	}
+
+	if hc.NetworkMode.IsContainer() && len(hc.Links) > 0 {
+		return ErrConflictContainerNetworkAndLinks
+	}
+
+	if hc.NetworkMode.IsContainer() && len(hc.DNS) > 0 {
+		return ErrConflictNetworkAndDNS
+	}
+
+	if hc.NetworkMode.IsContainer() && len(hc.ExtraHosts) > 0 {
+		return ErrConflictNetworkHosts
+	}
+
+	if (hc.NetworkMode.IsContainer() || hc.NetworkMode.IsHost()) && c.MacAddress != "" {
+		return ErrConflictContainerNetworkAndMac
+	}
+
+	if hc.NetworkMode.IsContainer() && (len(hc.PortBindings) > 0 || hc.PublishAllPorts) {
+		return ErrConflictNetworkPublishPorts
+	}
+
+	if hc.NetworkMode.IsContainer() && len(c.ExposedPorts) > 0 {
+		return ErrConflictNetworkExposePorts
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/runconfig/hostconfig_unix.go b/vendor/github.com/docker/docker/runconfig/hostconfig_unix.go
new file mode 100644
index 0000000000..e579b06d9b
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/hostconfig_unix.go
@@ -0,0 +1,110 @@
+// +build !windows
+
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"fmt"
+	"runtime"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/pkg/sysinfo"
+)
+
+// DefaultDaemonNetworkMode returns the default network stack the daemon should
+// use.
+func DefaultDaemonNetworkMode() container.NetworkMode {
+	return container.NetworkMode("bridge")
+}
+
+// IsPreDefinedNetwork indicates if a network is predefined by the daemon
+func IsPreDefinedNetwork(network string) bool {
+	n := container.NetworkMode(network)
+	return n.IsBridge() || n.IsHost() || n.IsNone() || n.IsDefault()
+}
+
+// validateNetMode ensures that the various combinations of requested
+// network settings are valid.
+func validateNetMode(c *container.Config, hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+
+	err := validateNetContainerMode(c, hc)
+	if err != nil {
+		return err
+	}
+
+	if hc.UTSMode.IsHost() && c.Hostname != "" {
+		return ErrConflictUTSHostname
+	}
+
+	if hc.NetworkMode.IsHost() && len(hc.Links) > 0 {
+		return ErrConflictHostNetworkAndLinks
+	}
+
+	return nil
+}
+
+// validateIsolation performs platform specific validation of
+// isolation in the hostconfig structure. Linux only supports "default"
+// which is LXC container isolation
+func validateIsolation(hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	if !hc.Isolation.IsValid() {
+		return fmt.Errorf("Invalid isolation: %q - %s only supports 'default'", hc.Isolation, runtime.GOOS)
+	}
+	return nil
+}
+
+// validateQoS performs platform specific validation of the QoS settings
+func validateQoS(hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+
+	if hc.IOMaximumBandwidth != 0 {
+		return fmt.Errorf("Invalid QoS settings: %s does not support configuration of maximum bandwidth", runtime.GOOS)
+	}
+
+	if hc.IOMaximumIOps != 0 {
+		return fmt.Errorf("Invalid QoS settings: %s does not support configuration of maximum IOPs", runtime.GOOS)
+	}
+	return nil
+}
+
+// validateResources performs platform specific validation of the resource settings
+// cpu-rt-runtime and cpu-rt-period can not be greater than their parent, cpu-rt-runtime requires sys_nice
+func validateResources(hc *container.HostConfig, si *sysinfo.SysInfo) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+
+	if hc.Resources.CPURealtimePeriod > 0 && !si.CPURealtimePeriod {
+		return fmt.Errorf("Your kernel does not support cgroup cpu real-time period")
+	}
+
+	if hc.Resources.CPURealtimeRuntime > 0 && !si.CPURealtimeRuntime {
+		return fmt.Errorf("Your kernel does not support cgroup cpu real-time runtime")
+	}
+
+	if hc.Resources.CPURealtimePeriod != 0 && hc.Resources.CPURealtimeRuntime != 0 && hc.Resources.CPURealtimeRuntime > hc.Resources.CPURealtimePeriod {
+		return fmt.Errorf("cpu real-time runtime cannot be higher than cpu real-time period")
+	}
+	return nil
+}
+
+// validatePrivileged performs platform specific validation of the Privileged setting
+func validatePrivileged(hc *container.HostConfig) error {
+	return nil
+}
+
+// validateReadonlyRootfs performs platform specific validation of the ReadonlyRootfs setting
+func validateReadonlyRootfs(hc *container.HostConfig) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/runconfig/hostconfig_windows.go b/vendor/github.com/docker/docker/runconfig/hostconfig_windows.go
new file mode 100644
index 0000000000..33a4668af1
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/hostconfig_windows.go
@@ -0,0 +1,96 @@
+package runconfig // import "github.com/docker/docker/runconfig"
+
+import (
+	"fmt"
+
+	"github.com/docker/docker/api/types/container"
+	"github.com/docker/docker/pkg/sysinfo"
+)
+
+// DefaultDaemonNetworkMode returns the default network stack the daemon should
+// use.
+func DefaultDaemonNetworkMode() container.NetworkMode {
+	return container.NetworkMode("nat")
+}
+
+// IsPreDefinedNetwork indicates if a network is predefined by the daemon
+func IsPreDefinedNetwork(network string) bool {
+	return !container.NetworkMode(network).IsUserDefined()
+}
+
+// validateNetMode ensures that the various combinations of requested
+// network settings are valid.
+func validateNetMode(c *container.Config, hc *container.HostConfig) error {
+	if hc == nil {
+		return nil
+	}
+
+	err := validateNetContainerMode(c, hc)
+	if err != nil {
+		return err
+	}
+
+	if hc.NetworkMode.IsContainer() && hc.Isolation.IsHyperV() {
+		return fmt.Errorf("Using the network stack of another container is not supported while using Hyper-V Containers")
+	}
+
+	return nil
+}
+
+// validateIsolation performs platform specific validation of the
+// isolation in the hostconfig structure. Windows supports 'default' (or
+// blank), 'process', or 'hyperv'.
+func validateIsolation(hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	if !hc.Isolation.IsValid() {
+		return fmt.Errorf("Invalid isolation: %q. Windows supports 'default', 'process', or 'hyperv'", hc.Isolation)
+	}
+	return nil
+}
+
+// validateQoS performs platform specific validation of the Qos settings
+func validateQoS(hc *container.HostConfig) error {
+	return nil
+}
+
+// validateResources performs platform specific validation of the resource settings
+func validateResources(hc *container.HostConfig, si *sysinfo.SysInfo) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	if hc.Resources.CPURealtimePeriod != 0 {
+		return fmt.Errorf("Windows does not support CPU real-time period")
+	}
+	if hc.Resources.CPURealtimeRuntime != 0 {
+		return fmt.Errorf("Windows does not support CPU real-time runtime")
+	}
+	return nil
+}
+
+// validatePrivileged performs platform specific validation of the Privileged setting
+func validatePrivileged(hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	if hc.Privileged {
+		return fmt.Errorf("Windows does not support privileged mode")
+	}
+	return nil
+}
+
+// validateReadonlyRootfs performs platform specific validation of the ReadonlyRootfs setting
+func validateReadonlyRootfs(hc *container.HostConfig) error {
+	// We may not be passed a host config, such as in the case of docker commit
+	if hc == nil {
+		return nil
+	}
+	if hc.ReadonlyRootfs {
+		return fmt.Errorf("Windows does not support root filesystem in read-only mode")
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/docker/runconfig/opts/parse.go b/vendor/github.com/docker/docker/runconfig/opts/parse.go
new file mode 100644
index 0000000000..8f7baeb637
--- /dev/null
+++ b/vendor/github.com/docker/docker/runconfig/opts/parse.go
@@ -0,0 +1,20 @@
+package opts // import "github.com/docker/docker/runconfig/opts"
+
+import (
+	"strings"
+)
+
+// ConvertKVStringsToMap converts ["key=value"] to {"key":"value"}
+func ConvertKVStringsToMap(values []string) map[string]string {
+	result := make(map[string]string, len(values))
+	for _, value := range values {
+		kv := strings.SplitN(value, "=", 2)
+		if len(kv) == 1 {
+			result[kv[0]] = ""
+		} else {
+			result[kv[0]] = kv[1]
+		}
+	}
+
+	return result
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/lcow_parser.go b/vendor/github.com/docker/docker/volume/mounts/lcow_parser.go
new file mode 100644
index 0000000000..bafb7b07f8
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/lcow_parser.go
@@ -0,0 +1,34 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"errors"
+	"path"
+
+	"github.com/docker/docker/api/types/mount"
+)
+
+var lcowSpecificValidators mountValidator = func(m *mount.Mount) error {
+	if path.Clean(m.Target) == "/" {
+		return ErrVolumeTargetIsRoot
+	}
+	if m.Type == mount.TypeNamedPipe {
+		return errors.New("Linux containers on Windows do not support named pipe mounts")
+	}
+	return nil
+}
+
+type lcowParser struct {
+	windowsParser
+}
+
+func (p *lcowParser) ValidateMountConfig(mnt *mount.Mount) error {
+	return p.validateMountConfigReg(mnt, rxLCOWDestination, lcowSpecificValidators)
+}
+
+func (p *lcowParser) ParseMountRaw(raw, volumeDriver string) (*MountPoint, error) {
+	return p.parseMountRaw(raw, volumeDriver, rxLCOWDestination, false, lcowSpecificValidators)
+}
+
+func (p *lcowParser) ParseMountSpec(cfg mount.Mount) (*MountPoint, error) {
+	return p.parseMountSpec(cfg, rxLCOWDestination, false, lcowSpecificValidators)
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/linux_parser.go b/vendor/github.com/docker/docker/volume/mounts/linux_parser.go
new file mode 100644
index 0000000000..8e436aec0e
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/linux_parser.go
@@ -0,0 +1,417 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"errors"
+	"fmt"
+	"path"
+	"path/filepath"
+	"strings"
+
+	"github.com/docker/docker/api/types/mount"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/volume"
+)
+
+type linuxParser struct {
+}
+
+func linuxSplitRawSpec(raw string) ([]string, error) {
+	if strings.Count(raw, ":") > 2 {
+		return nil, errInvalidSpec(raw)
+	}
+
+	arr := strings.SplitN(raw, ":", 3)
+	if arr[0] == "" {
+		return nil, errInvalidSpec(raw)
+	}
+	return arr, nil
+}
+
+func linuxValidateNotRoot(p string) error {
+	p = path.Clean(strings.Replace(p, `\`, `/`, -1))
+	if p == "/" {
+		return ErrVolumeTargetIsRoot
+	}
+	return nil
+}
+func linuxValidateAbsolute(p string) error {
+	p = strings.Replace(p, `\`, `/`, -1)
+	if path.IsAbs(p) {
+		return nil
+	}
+	return fmt.Errorf("invalid mount path: '%s' mount path must be absolute", p)
+}
+func (p *linuxParser) ValidateMountConfig(mnt *mount.Mount) error {
+	// there was something looking like a bug in existing codebase:
+	// - validateMountConfig on linux was called with options skipping bind source existence when calling ParseMountRaw
+	// - but not when calling ParseMountSpec directly... nor when the unit test called it directly
+	return p.validateMountConfigImpl(mnt, true)
+}
+func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSourceExists bool) error {
+	if len(mnt.Target) == 0 {
+		return &errMountConfig{mnt, errMissingField("Target")}
+	}
+
+	if err := linuxValidateNotRoot(mnt.Target); err != nil {
+		return &errMountConfig{mnt, err}
+	}
+
+	if err := linuxValidateAbsolute(mnt.Target); err != nil {
+		return &errMountConfig{mnt, err}
+	}
+
+	switch mnt.Type {
+	case mount.TypeBind:
+		if len(mnt.Source) == 0 {
+			return &errMountConfig{mnt, errMissingField("Source")}
+		}
+		// Don't error out just because the propagation mode is not supported on the platform
+		if opts := mnt.BindOptions; opts != nil {
+			if len(opts.Propagation) > 0 && len(linuxPropagationModes) > 0 {
+				if _, ok := linuxPropagationModes[opts.Propagation]; !ok {
+					return &errMountConfig{mnt, fmt.Errorf("invalid propagation mode: %s", opts.Propagation)}
+				}
+			}
+		}
+		if mnt.VolumeOptions != nil {
+			return &errMountConfig{mnt, errExtraField("VolumeOptions")}
+		}
+
+		if err := linuxValidateAbsolute(mnt.Source); err != nil {
+			return &errMountConfig{mnt, err}
+		}
+
+		if validateBindSourceExists {
+			exists, _, _ := currentFileInfoProvider.fileInfo(mnt.Source)
+			if !exists {
+				return &errMountConfig{mnt, errBindSourceDoesNotExist(mnt.Source)}
+			}
+		}
+
+	case mount.TypeVolume:
+		if mnt.BindOptions != nil {
+			return &errMountConfig{mnt, errExtraField("BindOptions")}
+		}
+
+		if len(mnt.Source) == 0 && mnt.ReadOnly {
+			return &errMountConfig{mnt, fmt.Errorf("must not set ReadOnly mode when using anonymous volumes")}
+		}
+	case mount.TypeTmpfs:
+		if len(mnt.Source) != 0 {
+			return &errMountConfig{mnt, errExtraField("Source")}
+		}
+		if _, err := p.ConvertTmpfsOptions(mnt.TmpfsOptions, mnt.ReadOnly); err != nil {
+			return &errMountConfig{mnt, err}
+		}
+	default:
+		return &errMountConfig{mnt, errors.New("mount type unknown")}
+	}
+	return nil
+}
+
+// read-write modes
+var rwModes = map[string]bool{
+	"rw": true,
+	"ro": true,
+}
+
+// label modes
+var linuxLabelModes = map[string]bool{
+	"Z": true,
+	"z": true,
+}
+
+// consistency modes
+var linuxConsistencyModes = map[mount.Consistency]bool{
+	mount.ConsistencyFull:      true,
+	mount.ConsistencyCached:    true,
+	mount.ConsistencyDelegated: true,
+}
+var linuxPropagationModes = map[mount.Propagation]bool{
+	mount.PropagationPrivate:  true,
+	mount.PropagationRPrivate: true,
+	mount.PropagationSlave:    true,
+	mount.PropagationRSlave:   true,
+	mount.PropagationShared:   true,
+	mount.PropagationRShared:  true,
+}
+
+const linuxDefaultPropagationMode = mount.PropagationRPrivate
+
+func linuxGetPropagation(mode string) mount.Propagation {
+	for _, o := range strings.Split(mode, ",") {
+		prop := mount.Propagation(o)
+		if linuxPropagationModes[prop] {
+			return prop
+		}
+	}
+	return linuxDefaultPropagationMode
+}
+
+func linuxHasPropagation(mode string) bool {
+	for _, o := range strings.Split(mode, ",") {
+		if linuxPropagationModes[mount.Propagation(o)] {
+			return true
+		}
+	}
+	return false
+}
+
+func linuxValidMountMode(mode string) bool {
+	if mode == "" {
+		return true
+	}
+
+	rwModeCount := 0
+	labelModeCount := 0
+	propagationModeCount := 0
+	copyModeCount := 0
+	consistencyModeCount := 0
+
+	for _, o := range strings.Split(mode, ",") {
+		switch {
+		case rwModes[o]:
+			rwModeCount++
+		case linuxLabelModes[o]:
+			labelModeCount++
+		case linuxPropagationModes[mount.Propagation(o)]:
+			propagationModeCount++
+		case copyModeExists(o):
+			copyModeCount++
+		case linuxConsistencyModes[mount.Consistency(o)]:
+			consistencyModeCount++
+		default:
+			return false
+		}
+	}
+
+	// Only one string for each mode is allowed.
+	if rwModeCount > 1 || labelModeCount > 1 || propagationModeCount > 1 || copyModeCount > 1 || consistencyModeCount > 1 {
+		return false
+	}
+	return true
+}
+
+func (p *linuxParser) ReadWrite(mode string) bool {
+	if !linuxValidMountMode(mode) {
+		return false
+	}
+
+	for _, o := range strings.Split(mode, ",") {
+		if o == "ro" {
+			return false
+		}
+	}
+	return true
+}
+
+func (p *linuxParser) ParseMountRaw(raw, volumeDriver string) (*MountPoint, error) {
+	arr, err := linuxSplitRawSpec(raw)
+	if err != nil {
+		return nil, err
+	}
+
+	var spec mount.Mount
+	var mode string
+	switch len(arr) {
+	case 1:
+		// Just a destination path in the container
+		spec.Target = arr[0]
+	case 2:
+		if linuxValidMountMode(arr[1]) {
+			// Destination + Mode is not a valid volume - volumes
+			// cannot include a mode. e.g. /foo:rw
+			return nil, errInvalidSpec(raw)
+		}
+		// Host Source Path or Name + Destination
+		spec.Source = arr[0]
+		spec.Target = arr[1]
+	case 3:
+		// HostSourcePath+DestinationPath+Mode
+		spec.Source = arr[0]
+		spec.Target = arr[1]
+		mode = arr[2]
+	default:
+		return nil, errInvalidSpec(raw)
+	}
+
+	if !linuxValidMountMode(mode) {
+		return nil, errInvalidMode(mode)
+	}
+
+	if path.IsAbs(spec.Source) {
+		spec.Type = mount.TypeBind
+	} else {
+		spec.Type = mount.TypeVolume
+	}
+
+	spec.ReadOnly = !p.ReadWrite(mode)
+
+	// cannot assume that if a volume driver is passed in that we should set it
+	if volumeDriver != "" && spec.Type == mount.TypeVolume {
+		spec.VolumeOptions = &mount.VolumeOptions{
+			DriverConfig: &mount.Driver{Name: volumeDriver},
+		}
+	}
+
+	if copyData, isSet := getCopyMode(mode, p.DefaultCopyMode()); isSet {
+		if spec.VolumeOptions == nil {
+			spec.VolumeOptions = &mount.VolumeOptions{}
+		}
+		spec.VolumeOptions.NoCopy = !copyData
+	}
+	if linuxHasPropagation(mode) {
+		spec.BindOptions = &mount.BindOptions{
+			Propagation: linuxGetPropagation(mode),
+		}
+	}
+
+	mp, err := p.parseMountSpec(spec, false)
+	if mp != nil {
+		mp.Mode = mode
+	}
+	if err != nil {
+		err = fmt.Errorf("%v: %v", errInvalidSpec(raw), err)
+	}
+	return mp, err
+}
+func (p *linuxParser) ParseMountSpec(cfg mount.Mount) (*MountPoint, error) {
+	return p.parseMountSpec(cfg, true)
+}
+func (p *linuxParser) parseMountSpec(cfg mount.Mount, validateBindSourceExists bool) (*MountPoint, error) {
+	if err := p.validateMountConfigImpl(&cfg, validateBindSourceExists); err != nil {
+		return nil, err
+	}
+	mp := &MountPoint{
+		RW:          !cfg.ReadOnly,
+		Destination: path.Clean(filepath.ToSlash(cfg.Target)),
+		Type:        cfg.Type,
+		Spec:        cfg,
+	}
+
+	switch cfg.Type {
+	case mount.TypeVolume:
+		if cfg.Source == "" {
+			mp.Name = stringid.GenerateNonCryptoID()
+		} else {
+			mp.Name = cfg.Source
+		}
+		mp.CopyData = p.DefaultCopyMode()
+
+		if cfg.VolumeOptions != nil {
+			if cfg.VolumeOptions.DriverConfig != nil {
+				mp.Driver = cfg.VolumeOptions.DriverConfig.Name
+			}
+			if cfg.VolumeOptions.NoCopy {
+				mp.CopyData = false
+			}
+		}
+	case mount.TypeBind:
+		mp.Source = path.Clean(filepath.ToSlash(cfg.Source))
+		if cfg.BindOptions != nil && len(cfg.BindOptions.Propagation) > 0 {
+			mp.Propagation = cfg.BindOptions.Propagation
+		} else {
+			// If user did not specify a propagation mode, get
+			// default propagation mode.
+			mp.Propagation = linuxDefaultPropagationMode
+		}
+	case mount.TypeTmpfs:
+		// NOP
+	}
+	return mp, nil
+}
+
+func (p *linuxParser) ParseVolumesFrom(spec string) (string, string, error) {
+	if len(spec) == 0 {
+		return "", "", fmt.Errorf("volumes-from specification cannot be an empty string")
+	}
+
+	specParts := strings.SplitN(spec, ":", 2)
+	id := specParts[0]
+	mode := "rw"
+
+	if len(specParts) == 2 {
+		mode = specParts[1]
+		if !linuxValidMountMode(mode) {
+			return "", "", errInvalidMode(mode)
+		}
+		// For now don't allow propagation properties while importing
+		// volumes from data container. These volumes will inherit
+		// the same propagation property as of the original volume
+		// in data container. This probably can be relaxed in future.
+		if linuxHasPropagation(mode) {
+			return "", "", errInvalidMode(mode)
+		}
+		// Do not allow copy modes on volumes-from
+		if _, isSet := getCopyMode(mode, p.DefaultCopyMode()); isSet {
+			return "", "", errInvalidMode(mode)
+		}
+	}
+	return id, mode, nil
+}
+
+func (p *linuxParser) DefaultPropagationMode() mount.Propagation {
+	return linuxDefaultPropagationMode
+}
+
+func (p *linuxParser) ConvertTmpfsOptions(opt *mount.TmpfsOptions, readOnly bool) (string, error) {
+	var rawOpts []string
+	if readOnly {
+		rawOpts = append(rawOpts, "ro")
+	}
+
+	if opt != nil && opt.Mode != 0 {
+		rawOpts = append(rawOpts, fmt.Sprintf("mode=%o", opt.Mode))
+	}
+
+	if opt != nil && opt.SizeBytes != 0 {
+		// calculate suffix here, making this linux specific, but that is
+		// okay, since API is that way anyways.
+
+		// we do this by finding the suffix that divides evenly into the
+		// value, returning the value itself, with no suffix, if it fails.
+		//
+		// For the most part, we don't enforce any semantic to this values.
+		// The operating system will usually align this and enforce minimum
+		// and maximums.
+		var (
+			size   = opt.SizeBytes
+			suffix string
+		)
+		for _, r := range []struct {
+			suffix  string
+			divisor int64
+		}{
+			{"g", 1 << 30},
+			{"m", 1 << 20},
+			{"k", 1 << 10},
+		} {
+			if size%r.divisor == 0 {
+				size = size / r.divisor
+				suffix = r.suffix
+				break
+			}
+		}
+
+		rawOpts = append(rawOpts, fmt.Sprintf("size=%d%s", size, suffix))
+	}
+	return strings.Join(rawOpts, ","), nil
+}
+
+func (p *linuxParser) DefaultCopyMode() bool {
+	return true
+}
+func (p *linuxParser) ValidateVolumeName(name string) error {
+	return nil
+}
+
+func (p *linuxParser) IsBackwardCompatible(m *MountPoint) bool {
+	return len(m.Source) > 0 || m.Driver == volume.DefaultDriverName
+}
+
+func (p *linuxParser) ValidateTmpfsMountDestination(dest string) error {
+	if err := linuxValidateNotRoot(dest); err != nil {
+		return err
+	}
+	return linuxValidateAbsolute(dest)
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/mounts.go b/vendor/github.com/docker/docker/volume/mounts/mounts.go
new file mode 100644
index 0000000000..8f255a5482
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/mounts.go
@@ -0,0 +1,170 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"fmt"
+	"os"
+	"path/filepath"
+	"syscall"
+
+	mounttypes "github.com/docker/docker/api/types/mount"
+	"github.com/docker/docker/pkg/idtools"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/docker/volume"
+	"github.com/opencontainers/selinux/go-selinux/label"
+	"github.com/pkg/errors"
+)
+
+// MountPoint is the intersection point between a volume and a container. It
+// specifies which volume is to be used and where inside a container it should
+// be mounted.
+//
+// Note that this type is embedded in `container.Container` object and persisted to disk.
+// Changes to this struct need to by synced with on disk state.
+type MountPoint struct {
+	// Source is the source path of the mount.
+	// E.g. `mount --bind /foo /bar`, `/foo` is the `Source`.
+	Source string
+	// Destination is the path relative to the container root (`/`) to the mount point
+	// It is where the `Source` is mounted to
+	Destination string
+	// RW is set to true when the mountpoint should be mounted as read-write
+	RW bool
+	// Name is the name reference to the underlying data defined by `Source`
+	// e.g., the volume name
+	Name string
+	// Driver is the volume driver used to create the volume (if it is a volume)
+	Driver string
+	// Type of mount to use, see `Type<foo>` definitions in github.com/docker/docker/api/types/mount
+	Type mounttypes.Type `json:",omitempty"`
+	// Volume is the volume providing data to this mountpoint.
+	// This is nil unless `Type` is set to `TypeVolume`
+	Volume volume.Volume `json:"-"`
+
+	// Mode is the comma separated list of options supplied by the user when creating
+	// the bind/volume mount.
+	// Note Mode is not used on Windows
+	Mode string `json:"Relabel,omitempty"` // Originally field was `Relabel`"
+
+	// Propagation describes how the mounts are propagated from the host into the
+	// mount point, and vice-versa.
+	// See https://www.kernel.org/doc/Documentation/filesystems/sharedsubtree.txt
+	// Note Propagation is not used on Windows
+	Propagation mounttypes.Propagation `json:",omitempty"` // Mount propagation string
+
+	// Specifies if data should be copied from the container before the first mount
+	// Use a pointer here so we can tell if the user set this value explicitly
+	// This allows us to error out when the user explicitly enabled copy but we can't copy due to the volume being populated
+	CopyData bool `json:"-"`
+	// ID is the opaque ID used to pass to the volume driver.
+	// This should be set by calls to `Mount` and unset by calls to `Unmount`
+	ID string `json:",omitempty"`
+
+	// Sepc is a copy of the API request that created this mount.
+	Spec mounttypes.Mount
+
+	// Track usage of this mountpoint
+	// Specifically needed for containers which are running and calls to `docker cp`
+	// because both these actions require mounting the volumes.
+	active int
+}
+
+// Cleanup frees resources used by the mountpoint
+func (m *MountPoint) Cleanup() error {
+	if m.Volume == nil || m.ID == "" {
+		return nil
+	}
+
+	if err := m.Volume.Unmount(m.ID); err != nil {
+		return errors.Wrapf(err, "error unmounting volume %s", m.Volume.Name())
+	}
+
+	m.active--
+	if m.active == 0 {
+		m.ID = ""
+	}
+	return nil
+}
+
+// Setup sets up a mount point by either mounting the volume if it is
+// configured, or creating the source directory if supplied.
+// The, optional, checkFun parameter allows doing additional checking
+// before creating the source directory on the host.
+func (m *MountPoint) Setup(mountLabel string, rootIDs idtools.IDPair, checkFun func(m *MountPoint) error) (path string, err error) {
+	defer func() {
+		if err != nil || !label.RelabelNeeded(m.Mode) {
+			return
+		}
+
+		var sourcePath string
+		sourcePath, err = filepath.EvalSymlinks(m.Source)
+		if err != nil {
+			path = ""
+			err = errors.Wrapf(err, "error evaluating symlinks from mount source %q", m.Source)
+			return
+		}
+		err = label.Relabel(sourcePath, mountLabel, label.IsShared(m.Mode))
+		if err == syscall.ENOTSUP {
+			err = nil
+		}
+		if err != nil {
+			path = ""
+			err = errors.Wrapf(err, "error setting label on mount source '%s'", sourcePath)
+		}
+	}()
+
+	if m.Volume != nil {
+		id := m.ID
+		if id == "" {
+			id = stringid.GenerateNonCryptoID()
+		}
+		path, err := m.Volume.Mount(id)
+		if err != nil {
+			return "", errors.Wrapf(err, "error while mounting volume '%s'", m.Source)
+		}
+
+		m.ID = id
+		m.active++
+		return path, nil
+	}
+
+	if len(m.Source) == 0 {
+		return "", fmt.Errorf("Unable to setup mount point, neither source nor volume defined")
+	}
+
+	if m.Type == mounttypes.TypeBind {
+		// Before creating the source directory on the host, invoke checkFun if it's not nil. One of
+		// the use case is to forbid creating the daemon socket as a directory if the daemon is in
+		// the process of shutting down.
+		if checkFun != nil {
+			if err := checkFun(m); err != nil {
+				return "", err
+			}
+		}
+		// idtools.MkdirAllNewAs() produces an error if m.Source exists and is a file (not a directory)
+		// also, makes sure that if the directory is created, the correct remapped rootUID/rootGID will own it
+		if err := idtools.MkdirAllAndChownNew(m.Source, 0755, rootIDs); err != nil {
+			if perr, ok := err.(*os.PathError); ok {
+				if perr.Err != syscall.ENOTDIR {
+					return "", errors.Wrapf(err, "error while creating mount source path '%s'", m.Source)
+				}
+			}
+		}
+	}
+	return m.Source, nil
+}
+
+// Path returns the path of a volume in a mount point.
+func (m *MountPoint) Path() string {
+	if m.Volume != nil {
+		return m.Volume.Path()
+	}
+	return m.Source
+}
+
+func errInvalidMode(mode string) error {
+	return errors.Errorf("invalid mode: %v", mode)
+}
+
+func errInvalidSpec(spec string) error {
+	return errors.Errorf("invalid volume specification: '%s'", spec)
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/parser.go b/vendor/github.com/docker/docker/volume/mounts/parser.go
new file mode 100644
index 0000000000..73681750ea
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/parser.go
@@ -0,0 +1,47 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"errors"
+	"runtime"
+
+	"github.com/docker/docker/api/types/mount"
+)
+
+const (
+	// OSLinux is the same as runtime.GOOS on linux
+	OSLinux = "linux"
+	// OSWindows is the same as runtime.GOOS on windows
+	OSWindows = "windows"
+)
+
+// ErrVolumeTargetIsRoot is returned when the target destination is root.
+// It's used by both LCOW and Linux parsers.
+var ErrVolumeTargetIsRoot = errors.New("invalid specification: destination can't be '/'")
+
+// Parser represents a platform specific parser for mount expressions
+type Parser interface {
+	ParseMountRaw(raw, volumeDriver string) (*MountPoint, error)
+	ParseMountSpec(cfg mount.Mount) (*MountPoint, error)
+	ParseVolumesFrom(spec string) (string, string, error)
+	DefaultPropagationMode() mount.Propagation
+	ConvertTmpfsOptions(opt *mount.TmpfsOptions, readOnly bool) (string, error)
+	DefaultCopyMode() bool
+	ValidateVolumeName(name string) error
+	ReadWrite(mode string) bool
+	IsBackwardCompatible(m *MountPoint) bool
+	HasResource(m *MountPoint, absPath string) bool
+	ValidateTmpfsMountDestination(dest string) error
+	ValidateMountConfig(mt *mount.Mount) error
+}
+
+// NewParser creates a parser for a given container OS, depending on the current host OS (linux on a windows host will resolve to an lcowParser)
+func NewParser(containerOS string) Parser {
+	switch containerOS {
+	case OSWindows:
+		return &windowsParser{}
+	}
+	if runtime.GOOS == OSWindows {
+		return &lcowParser{}
+	}
+	return &linuxParser{}
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/validate.go b/vendor/github.com/docker/docker/volume/mounts/validate.go
new file mode 100644
index 0000000000..0b71526901
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/validate.go
@@ -0,0 +1,28 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"fmt"
+
+	"github.com/docker/docker/api/types/mount"
+	"github.com/pkg/errors"
+)
+
+type errMountConfig struct {
+	mount *mount.Mount
+	err   error
+}
+
+func (e *errMountConfig) Error() string {
+	return fmt.Sprintf("invalid mount config for type %q: %v", e.mount.Type, e.err.Error())
+}
+
+func errBindSourceDoesNotExist(path string) error {
+	return errors.Errorf("bind mount source path does not exist: %s", path)
+}
+
+func errExtraField(name string) error {
+	return errors.Errorf("field %s must not be specified", name)
+}
+func errMissingField(name string) error {
+	return errors.Errorf("field %s must not be empty", name)
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/volume_copy.go b/vendor/github.com/docker/docker/volume/mounts/volume_copy.go
new file mode 100644
index 0000000000..04056fa50a
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/volume_copy.go
@@ -0,0 +1,23 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import "strings"
+
+// {<copy mode>=isEnabled}
+var copyModes = map[string]bool{
+	"nocopy": false,
+}
+
+func copyModeExists(mode string) bool {
+	_, exists := copyModes[mode]
+	return exists
+}
+
+// GetCopyMode gets the copy mode from the mode string for mounts
+func getCopyMode(mode string, def bool) (bool, bool) {
+	for _, o := range strings.Split(mode, ",") {
+		if isEnabled, exists := copyModes[o]; exists {
+			return isEnabled, true
+		}
+	}
+	return def, false
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/volume_unix.go b/vendor/github.com/docker/docker/volume/mounts/volume_unix.go
new file mode 100644
index 0000000000..c6d51e0710
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/volume_unix.go
@@ -0,0 +1,18 @@
+// +build linux freebsd darwin
+
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"fmt"
+	"path/filepath"
+	"strings"
+)
+
+func (p *linuxParser) HasResource(m *MountPoint, absolutePath string) bool {
+	relPath, err := filepath.Rel(m.Destination, absolutePath)
+	return err == nil && relPath != ".." && !strings.HasPrefix(relPath, fmt.Sprintf("..%c", filepath.Separator))
+}
+
+func (p *windowsParser) HasResource(m *MountPoint, absolutePath string) bool {
+	return false
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/volume_windows.go b/vendor/github.com/docker/docker/volume/mounts/volume_windows.go
new file mode 100644
index 0000000000..773e7db88a
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/volume_windows.go
@@ -0,0 +1,8 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+func (p *windowsParser) HasResource(m *MountPoint, absolutePath string) bool {
+	return false
+}
+func (p *linuxParser) HasResource(m *MountPoint, absolutePath string) bool {
+	return false
+}
diff --git a/vendor/github.com/docker/docker/volume/mounts/windows_parser.go b/vendor/github.com/docker/docker/volume/mounts/windows_parser.go
new file mode 100644
index 0000000000..ac61044043
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/mounts/windows_parser.go
@@ -0,0 +1,456 @@
+package mounts // import "github.com/docker/docker/volume/mounts"
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"regexp"
+	"runtime"
+	"strings"
+
+	"github.com/docker/docker/api/types/mount"
+	"github.com/docker/docker/pkg/stringid"
+)
+
+type windowsParser struct {
+}
+
+const (
+	// Spec should be in the format [source:]destination[:mode]
+	//
+	// Examples: c:\foo bar:d:rw
+	//           c:\foo:d:\bar
+	//           myname:d:
+	//           d:\
+	//
+	// Explanation of this regex! Thanks @thaJeztah on IRC and gist for help. See
+	// https://gist.github.com/thaJeztah/6185659e4978789fb2b2. A good place to
+	// test is https://regex-golang.appspot.com/assets/html/index.html
+	//
+	// Useful link for referencing named capturing groups:
+	// http://stackoverflow.com/questions/20750843/using-named-matches-from-go-regex
+	//
+	// There are three match groups: source, destination and mode.
+	//
+
+	// rxHostDir is the first option of a source
+	rxHostDir = `(?:\\\\\?\\)?[a-z]:[\\/](?:[^\\/:*?"<>|\r\n]+[\\/]?)*`
+	// rxName is the second option of a source
+	rxName = `[^\\/:*?"<>|\r\n]+`
+
+	// RXReservedNames are reserved names not possible on Windows
+	rxReservedNames = `(con)|(prn)|(nul)|(aux)|(com[1-9])|(lpt[1-9])`
+
+	// rxPipe is a named path pipe (starts with `\\.\pipe\`, possibly with / instead of \)
+	rxPipe = `[/\\]{2}.[/\\]pipe[/\\][^:*?"<>|\r\n]+`
+	// rxSource is the combined possibilities for a source
+	rxSource = `((?P<source>((` + rxHostDir + `)|(` + rxName + `)|(` + rxPipe + `))):)?`
+
+	// Source. Can be either a host directory, a name, or omitted:
+	//  HostDir:
+	//    -  Essentially using the folder solution from
+	//       https://www.safaribooksonline.com/library/view/regular-expressions-cookbook/9781449327453/ch08s18.html
+	//       but adding case insensitivity.
+	//    -  Must be an absolute path such as c:\path
+	//    -  Can include spaces such as `c:\program files`
+	//    -  And then followed by a colon which is not in the capture group
+	//    -  And can be optional
+	//  Name:
+	//    -  Must not contain invalid NTFS filename characters (https://msdn.microsoft.com/en-us/library/windows/desktop/aa365247(v=vs.85).aspx)
+	//    -  And then followed by a colon which is not in the capture group
+	//    -  And can be optional
+
+	// rxDestination is the regex expression for the mount destination
+	rxDestination = `(?P<destination>((?:\\\\\?\\)?([a-z]):((?:[\\/][^\\/:*?"<>\r\n]+)*[\\/]?))|(` + rxPipe + `))`
+
+	rxLCOWDestination = `(?P<destination>/(?:[^\\/:*?"<>\r\n]+[/]?)*)`
+	// Destination (aka container path):
+	//    -  Variation on hostdir but can be a drive followed by colon as well
+	//    -  If a path, must be absolute. Can include spaces
+	//    -  Drive cannot be c: (explicitly checked in code, not RegEx)
+
+	// rxMode is the regex expression for the mode of the mount
+	// Mode (optional):
+	//    -  Hopefully self explanatory in comparison to above regex's.
+	//    -  Colon is not in the capture group
+	rxMode = `(:(?P<mode>(?i)ro|rw))?`
+)
+
+type mountValidator func(mnt *mount.Mount) error
+
+func windowsSplitRawSpec(raw, destRegex string) ([]string, error) {
+	specExp := regexp.MustCompile(`^` + rxSource + destRegex + rxMode + `$`)
+	match := specExp.FindStringSubmatch(strings.ToLower(raw))
+
+	// Must have something back
+	if len(match) == 0 {
+		return nil, errInvalidSpec(raw)
+	}
+
+	var split []string
+	matchgroups := make(map[string]string)
+	// Pull out the sub expressions from the named capture groups
+	for i, name := range specExp.SubexpNames() {
+		matchgroups[name] = strings.ToLower(match[i])
+	}
+	if source, exists := matchgroups["source"]; exists {
+		if source != "" {
+			split = append(split, source)
+		}
+	}
+	if destination, exists := matchgroups["destination"]; exists {
+		if destination != "" {
+			split = append(split, destination)
+		}
+	}
+	if mode, exists := matchgroups["mode"]; exists {
+		if mode != "" {
+			split = append(split, mode)
+		}
+	}
+	// Fix #26329. If the destination appears to be a file, and the source is null,
+	// it may be because we've fallen through the possible naming regex and hit a
+	// situation where the user intention was to map a file into a container through
+	// a local volume, but this is not supported by the platform.
+	if matchgroups["source"] == "" && matchgroups["destination"] != "" {
+		volExp := regexp.MustCompile(`^` + rxName + `$`)
+		reservedNameExp := regexp.MustCompile(`^` + rxReservedNames + `$`)
+
+		if volExp.MatchString(matchgroups["destination"]) {
+			if reservedNameExp.MatchString(matchgroups["destination"]) {
+				return nil, fmt.Errorf("volume name %q cannot be a reserved word for Windows filenames", matchgroups["destination"])
+			}
+		} else {
+
+			exists, isDir, _ := currentFileInfoProvider.fileInfo(matchgroups["destination"])
+			if exists && !isDir {
+				return nil, fmt.Errorf("file '%s' cannot be mapped. Only directories can be mapped on this platform", matchgroups["destination"])
+
+			}
+		}
+	}
+	return split, nil
+}
+
+func windowsValidMountMode(mode string) bool {
+	if mode == "" {
+		return true
+	}
+	return rwModes[strings.ToLower(mode)]
+}
+func windowsValidateNotRoot(p string) error {
+	p = strings.ToLower(strings.Replace(p, `/`, `\`, -1))
+	if p == "c:" || p == `c:\` {
+		return fmt.Errorf("destination path cannot be `c:` or `c:\\`: %v", p)
+	}
+	return nil
+}
+
+var windowsSpecificValidators mountValidator = func(mnt *mount.Mount) error {
+	return windowsValidateNotRoot(mnt.Target)
+}
+
+func windowsValidateRegex(p, r string) error {
+	if regexp.MustCompile(`^` + r + `$`).MatchString(strings.ToLower(p)) {
+		return nil
+	}
+	return fmt.Errorf("invalid mount path: '%s'", p)
+}
+func windowsValidateAbsolute(p string) error {
+	if err := windowsValidateRegex(p, rxDestination); err != nil {
+		return fmt.Errorf("invalid mount path: '%s' mount path must be absolute", p)
+	}
+	return nil
+}
+
+func windowsDetectMountType(p string) mount.Type {
+	if strings.HasPrefix(p, `\\.\pipe\`) {
+		return mount.TypeNamedPipe
+	} else if regexp.MustCompile(`^` + rxHostDir + `$`).MatchString(p) {
+		return mount.TypeBind
+	} else {
+		return mount.TypeVolume
+	}
+}
+
+func (p *windowsParser) ReadWrite(mode string) bool {
+	return strings.ToLower(mode) != "ro"
+}
+
+// IsVolumeNameValid checks a volume name in a platform specific manner.
+func (p *windowsParser) ValidateVolumeName(name string) error {
+	nameExp := regexp.MustCompile(`^` + rxName + `$`)
+	if !nameExp.MatchString(name) {
+		return errors.New("invalid volume name")
+	}
+	nameExp = regexp.MustCompile(`^` + rxReservedNames + `$`)
+	if nameExp.MatchString(name) {
+		return fmt.Errorf("volume name %q cannot be a reserved word for Windows filenames", name)
+	}
+	return nil
+}
+func (p *windowsParser) ValidateMountConfig(mnt *mount.Mount) error {
+	return p.validateMountConfigReg(mnt, rxDestination, windowsSpecificValidators)
+}
+
+type fileInfoProvider interface {
+	fileInfo(path string) (exist, isDir bool, err error)
+}
+
+type defaultFileInfoProvider struct {
+}
+
+func (defaultFileInfoProvider) fileInfo(path string) (exist, isDir bool, err error) {
+	fi, err := os.Stat(path)
+	if err != nil {
+		if !os.IsNotExist(err) {
+			return false, false, err
+		}
+		return false, false, nil
+	}
+	return true, fi.IsDir(), nil
+}
+
+var currentFileInfoProvider fileInfoProvider = defaultFileInfoProvider{}
+
+func (p *windowsParser) validateMountConfigReg(mnt *mount.Mount, destRegex string, additionalValidators ...mountValidator) error {
+
+	for _, v := range additionalValidators {
+		if err := v(mnt); err != nil {
+			return &errMountConfig{mnt, err}
+		}
+	}
+	if len(mnt.Target) == 0 {
+		return &errMountConfig{mnt, errMissingField("Target")}
+	}
+
+	if err := windowsValidateRegex(mnt.Target, destRegex); err != nil {
+		return &errMountConfig{mnt, err}
+	}
+
+	switch mnt.Type {
+	case mount.TypeBind:
+		if len(mnt.Source) == 0 {
+			return &errMountConfig{mnt, errMissingField("Source")}
+		}
+		// Don't error out just because the propagation mode is not supported on the platform
+		if opts := mnt.BindOptions; opts != nil {
+			if len(opts.Propagation) > 0 {
+				return &errMountConfig{mnt, fmt.Errorf("invalid propagation mode: %s", opts.Propagation)}
+			}
+		}
+		if mnt.VolumeOptions != nil {
+			return &errMountConfig{mnt, errExtraField("VolumeOptions")}
+		}
+
+		if err := windowsValidateAbsolute(mnt.Source); err != nil {
+			return &errMountConfig{mnt, err}
+		}
+
+		exists, isdir, err := currentFileInfoProvider.fileInfo(mnt.Source)
+		if err != nil {
+			return &errMountConfig{mnt, err}
+		}
+		if !exists {
+			return &errMountConfig{mnt, errBindSourceDoesNotExist(mnt.Source)}
+		}
+		if !isdir {
+			return &errMountConfig{mnt, fmt.Errorf("source path must be a directory")}
+		}
+
+	case mount.TypeVolume:
+		if mnt.BindOptions != nil {
+			return &errMountConfig{mnt, errExtraField("BindOptions")}
+		}
+
+		if len(mnt.Source) == 0 && mnt.ReadOnly {
+			return &errMountConfig{mnt, fmt.Errorf("must not set ReadOnly mode when using anonymous volumes")}
+		}
+
+		if len(mnt.Source) != 0 {
+			if err := p.ValidateVolumeName(mnt.Source); err != nil {
+				return &errMountConfig{mnt, err}
+			}
+		}
+	case mount.TypeNamedPipe:
+		if len(mnt.Source) == 0 {
+			return &errMountConfig{mnt, errMissingField("Source")}
+		}
+
+		if mnt.BindOptions != nil {
+			return &errMountConfig{mnt, errExtraField("BindOptions")}
+		}
+
+		if mnt.ReadOnly {
+			return &errMountConfig{mnt, errExtraField("ReadOnly")}
+		}
+
+		if windowsDetectMountType(mnt.Source) != mount.TypeNamedPipe {
+			return &errMountConfig{mnt, fmt.Errorf("'%s' is not a valid pipe path", mnt.Source)}
+		}
+
+		if windowsDetectMountType(mnt.Target) != mount.TypeNamedPipe {
+			return &errMountConfig{mnt, fmt.Errorf("'%s' is not a valid pipe path", mnt.Target)}
+		}
+	default:
+		return &errMountConfig{mnt, errors.New("mount type unknown")}
+	}
+	return nil
+}
+func (p *windowsParser) ParseMountRaw(raw, volumeDriver string) (*MountPoint, error) {
+	return p.parseMountRaw(raw, volumeDriver, rxDestination, true, windowsSpecificValidators)
+}
+
+func (p *windowsParser) parseMountRaw(raw, volumeDriver, destRegex string, convertTargetToBackslash bool, additionalValidators ...mountValidator) (*MountPoint, error) {
+	arr, err := windowsSplitRawSpec(raw, destRegex)
+	if err != nil {
+		return nil, err
+	}
+
+	var spec mount.Mount
+	var mode string
+	switch len(arr) {
+	case 1:
+		// Just a destination path in the container
+		spec.Target = arr[0]
+	case 2:
+		if windowsValidMountMode(arr[1]) {
+			// Destination + Mode is not a valid volume - volumes
+			// cannot include a mode. e.g. /foo:rw
+			return nil, errInvalidSpec(raw)
+		}
+		// Host Source Path or Name + Destination
+		spec.Source = strings.Replace(arr[0], `/`, `\`, -1)
+		spec.Target = arr[1]
+	case 3:
+		// HostSourcePath+DestinationPath+Mode
+		spec.Source = strings.Replace(arr[0], `/`, `\`, -1)
+		spec.Target = arr[1]
+		mode = arr[2]
+	default:
+		return nil, errInvalidSpec(raw)
+	}
+	if convertTargetToBackslash {
+		spec.Target = strings.Replace(spec.Target, `/`, `\`, -1)
+	}
+
+	if !windowsValidMountMode(mode) {
+		return nil, errInvalidMode(mode)
+	}
+
+	spec.Type = windowsDetectMountType(spec.Source)
+	spec.ReadOnly = !p.ReadWrite(mode)
+
+	// cannot assume that if a volume driver is passed in that we should set it
+	if volumeDriver != "" && spec.Type == mount.TypeVolume {
+		spec.VolumeOptions = &mount.VolumeOptions{
+			DriverConfig: &mount.Driver{Name: volumeDriver},
+		}
+	}
+
+	if copyData, isSet := getCopyMode(mode, p.DefaultCopyMode()); isSet {
+		if spec.VolumeOptions == nil {
+			spec.VolumeOptions = &mount.VolumeOptions{}
+		}
+		spec.VolumeOptions.NoCopy = !copyData
+	}
+
+	mp, err := p.parseMountSpec(spec, destRegex, convertTargetToBackslash, additionalValidators...)
+	if mp != nil {
+		mp.Mode = mode
+	}
+	if err != nil {
+		err = fmt.Errorf("%v: %v", errInvalidSpec(raw), err)
+	}
+	return mp, err
+}
+
+func (p *windowsParser) ParseMountSpec(cfg mount.Mount) (*MountPoint, error) {
+	return p.parseMountSpec(cfg, rxDestination, true, windowsSpecificValidators)
+}
+func (p *windowsParser) parseMountSpec(cfg mount.Mount, destRegex string, convertTargetToBackslash bool, additionalValidators ...mountValidator) (*MountPoint, error) {
+	if err := p.validateMountConfigReg(&cfg, destRegex, additionalValidators...); err != nil {
+		return nil, err
+	}
+	mp := &MountPoint{
+		RW:          !cfg.ReadOnly,
+		Destination: cfg.Target,
+		Type:        cfg.Type,
+		Spec:        cfg,
+	}
+	if convertTargetToBackslash {
+		mp.Destination = strings.Replace(cfg.Target, `/`, `\`, -1)
+	}
+
+	switch cfg.Type {
+	case mount.TypeVolume:
+		if cfg.Source == "" {
+			mp.Name = stringid.GenerateNonCryptoID()
+		} else {
+			mp.Name = cfg.Source
+		}
+		mp.CopyData = p.DefaultCopyMode()
+
+		if cfg.VolumeOptions != nil {
+			if cfg.VolumeOptions.DriverConfig != nil {
+				mp.Driver = cfg.VolumeOptions.DriverConfig.Name
+			}
+			if cfg.VolumeOptions.NoCopy {
+				mp.CopyData = false
+			}
+		}
+	case mount.TypeBind:
+		mp.Source = strings.Replace(cfg.Source, `/`, `\`, -1)
+	case mount.TypeNamedPipe:
+		mp.Source = strings.Replace(cfg.Source, `/`, `\`, -1)
+	}
+	// cleanup trailing `\` except for paths like `c:\`
+	if len(mp.Source) > 3 && mp.Source[len(mp.Source)-1] == '\\' {
+		mp.Source = mp.Source[:len(mp.Source)-1]
+	}
+	if len(mp.Destination) > 3 && mp.Destination[len(mp.Destination)-1] == '\\' {
+		mp.Destination = mp.Destination[:len(mp.Destination)-1]
+	}
+	return mp, nil
+}
+
+func (p *windowsParser) ParseVolumesFrom(spec string) (string, string, error) {
+	if len(spec) == 0 {
+		return "", "", fmt.Errorf("volumes-from specification cannot be an empty string")
+	}
+
+	specParts := strings.SplitN(spec, ":", 2)
+	id := specParts[0]
+	mode := "rw"
+
+	if len(specParts) == 2 {
+		mode = specParts[1]
+		if !windowsValidMountMode(mode) {
+			return "", "", errInvalidMode(mode)
+		}
+
+		// Do not allow copy modes on volumes-from
+		if _, isSet := getCopyMode(mode, p.DefaultCopyMode()); isSet {
+			return "", "", errInvalidMode(mode)
+		}
+	}
+	return id, mode, nil
+}
+
+func (p *windowsParser) DefaultPropagationMode() mount.Propagation {
+	return mount.Propagation("")
+}
+
+func (p *windowsParser) ConvertTmpfsOptions(opt *mount.TmpfsOptions, readOnly bool) (string, error) {
+	return "", fmt.Errorf("%s does not support tmpfs", runtime.GOOS)
+}
+func (p *windowsParser) DefaultCopyMode() bool {
+	return false
+}
+func (p *windowsParser) IsBackwardCompatible(m *MountPoint) bool {
+	return false
+}
+
+func (p *windowsParser) ValidateTmpfsMountDestination(dest string) error {
+	return errors.New("Platform does not support tmpfs")
+}
diff --git a/vendor/github.com/docker/docker/volume/volume.go b/vendor/github.com/docker/docker/volume/volume.go
new file mode 100644
index 0000000000..61c8243979
--- /dev/null
+++ b/vendor/github.com/docker/docker/volume/volume.go
@@ -0,0 +1,69 @@
+package volume // import "github.com/docker/docker/volume"
+
+import (
+	"time"
+)
+
+// DefaultDriverName is the driver name used for the driver
+// implemented in the local package.
+const DefaultDriverName = "local"
+
+// Scopes define if a volume has is cluster-wide (global) or local only.
+// Scopes are returned by the volume driver when it is queried for capabilities and then set on a volume
+const (
+	LocalScope  = "local"
+	GlobalScope = "global"
+)
+
+// Driver is for creating and removing volumes.
+type Driver interface {
+	// Name returns the name of the volume driver.
+	Name() string
+	// Create makes a new volume with the given name.
+	Create(name string, opts map[string]string) (Volume, error)
+	// Remove deletes the volume.
+	Remove(vol Volume) (err error)
+	// List lists all the volumes the driver has
+	List() ([]Volume, error)
+	// Get retrieves the volume with the requested name
+	Get(name string) (Volume, error)
+	// Scope returns the scope of the driver (e.g. `global` or `local`).
+	// Scope determines how the driver is handled at a cluster level
+	Scope() string
+}
+
+// Capability defines a set of capabilities that a driver is able to handle.
+type Capability struct {
+	// Scope is the scope of the driver, `global` or `local`
+	// A `global` scope indicates that the driver manages volumes across the cluster
+	// A `local` scope indicates that the driver only manages volumes resources local to the host
+	// Scope is declared by the driver
+	Scope string
+}
+
+// Volume is a place to store data. It is backed by a specific driver, and can be mounted.
+type Volume interface {
+	// Name returns the name of the volume
+	Name() string
+	// DriverName returns the name of the driver which owns this volume.
+	DriverName() string
+	// Path returns the absolute path to the volume.
+	Path() string
+	// Mount mounts the volume and returns the absolute path to
+	// where it can be consumed.
+	Mount(id string) (string, error)
+	// Unmount unmounts the volume when it is no longer in use.
+	Unmount(id string) error
+	// CreatedAt returns Volume Creation time
+	CreatedAt() (time.Time, error)
+	// Status returns low-level status information about a volume
+	Status() map[string]interface{}
+}
+
+// DetailedVolume wraps a Volume with user-defined labels, options, and cluster scope (e.g., `local` or `global`)
+type DetailedVolume interface {
+	Labels() map[string]string
+	Options() map[string]string
+	Scope() string
+	Volume
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/inmem_socket.go b/vendor/github.com/docker/go-connections/sockets/inmem_socket.go
new file mode 100644
index 0000000000..99846ffddb
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/inmem_socket.go
@@ -0,0 +1,81 @@
+package sockets
+
+import (
+	"errors"
+	"net"
+	"sync"
+)
+
+var errClosed = errors.New("use of closed network connection")
+
+// InmemSocket implements net.Listener using in-memory only connections.
+type InmemSocket struct {
+	chConn  chan net.Conn
+	chClose chan struct{}
+	addr    string
+	mu      sync.Mutex
+}
+
+// dummyAddr is used to satisfy net.Addr for the in-mem socket
+// it is just stored as a string and returns the string for all calls
+type dummyAddr string
+
+// NewInmemSocket creates an in-memory only net.Listener
+// The addr argument can be any string, but is used to satisfy the `Addr()` part
+// of the net.Listener interface
+func NewInmemSocket(addr string, bufSize int) *InmemSocket {
+	return &InmemSocket{
+		chConn:  make(chan net.Conn, bufSize),
+		chClose: make(chan struct{}),
+		addr:    addr,
+	}
+}
+
+// Addr returns the socket's addr string to satisfy net.Listener
+func (s *InmemSocket) Addr() net.Addr {
+	return dummyAddr(s.addr)
+}
+
+// Accept implements the Accept method in the Listener interface; it waits for the next call and returns a generic Conn.
+func (s *InmemSocket) Accept() (net.Conn, error) {
+	select {
+	case conn := <-s.chConn:
+		return conn, nil
+	case <-s.chClose:
+		return nil, errClosed
+	}
+}
+
+// Close closes the listener. It will be unavailable for use once closed.
+func (s *InmemSocket) Close() error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	select {
+	case <-s.chClose:
+	default:
+		close(s.chClose)
+	}
+	return nil
+}
+
+// Dial is used to establish a connection with the in-mem server
+func (s *InmemSocket) Dial(network, addr string) (net.Conn, error) {
+	srvConn, clientConn := net.Pipe()
+	select {
+	case s.chConn <- srvConn:
+	case <-s.chClose:
+		return nil, errClosed
+	}
+
+	return clientConn, nil
+}
+
+// Network returns the addr string, satisfies net.Addr
+func (a dummyAddr) Network() string {
+	return string(a)
+}
+
+// String returns the string form
+func (a dummyAddr) String() string {
+	return string(a)
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/proxy.go b/vendor/github.com/docker/go-connections/sockets/proxy.go
new file mode 100644
index 0000000000..98e9a1dc61
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/proxy.go
@@ -0,0 +1,51 @@
+package sockets
+
+import (
+	"net"
+	"net/url"
+	"os"
+	"strings"
+
+	"golang.org/x/net/proxy"
+)
+
+// GetProxyEnv allows access to the uppercase and the lowercase forms of
+// proxy-related variables.  See the Go specification for details on these
+// variables. https://golang.org/pkg/net/http/
+func GetProxyEnv(key string) string {
+	proxyValue := os.Getenv(strings.ToUpper(key))
+	if proxyValue == "" {
+		return os.Getenv(strings.ToLower(key))
+	}
+	return proxyValue
+}
+
+// DialerFromEnvironment takes in a "direct" *net.Dialer and returns a
+// proxy.Dialer which will route the connections through the proxy using the
+// given dialer.
+func DialerFromEnvironment(direct *net.Dialer) (proxy.Dialer, error) {
+	allProxy := GetProxyEnv("all_proxy")
+	if len(allProxy) == 0 {
+		return direct, nil
+	}
+
+	proxyURL, err := url.Parse(allProxy)
+	if err != nil {
+		return direct, err
+	}
+
+	proxyFromURL, err := proxy.FromURL(proxyURL, direct)
+	if err != nil {
+		return direct, err
+	}
+
+	noProxy := GetProxyEnv("no_proxy")
+	if len(noProxy) == 0 {
+		return proxyFromURL, nil
+	}
+
+	perHost := proxy.NewPerHost(proxyFromURL, direct)
+	perHost.AddFromString(noProxy)
+
+	return perHost, nil
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets.go b/vendor/github.com/docker/go-connections/sockets/sockets.go
new file mode 100644
index 0000000000..a1d7beb4d8
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/sockets.go
@@ -0,0 +1,38 @@
+// Package sockets provides helper functions to create and configure Unix or TCP sockets.
+package sockets
+
+import (
+	"errors"
+	"net"
+	"net/http"
+	"time"
+)
+
+// Why 32? See https://github.com/docker/docker/pull/8035.
+const defaultTimeout = 32 * time.Second
+
+// ErrProtocolNotAvailable is returned when a given transport protocol is not provided by the operating system.
+var ErrProtocolNotAvailable = errors.New("protocol not available")
+
+// ConfigureTransport configures the specified Transport according to the
+// specified proto and addr.
+// If the proto is unix (using a unix socket to communicate) or npipe the
+// compression is disabled.
+func ConfigureTransport(tr *http.Transport, proto, addr string) error {
+	switch proto {
+	case "unix":
+		return configureUnixTransport(tr, proto, addr)
+	case "npipe":
+		return configureNpipeTransport(tr, proto, addr)
+	default:
+		tr.Proxy = http.ProxyFromEnvironment
+		dialer, err := DialerFromEnvironment(&net.Dialer{
+			Timeout: defaultTimeout,
+		})
+		if err != nil {
+			return err
+		}
+		tr.Dial = dialer.Dial
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets_unix.go b/vendor/github.com/docker/go-connections/sockets/sockets_unix.go
new file mode 100644
index 0000000000..386cf0dbbd
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/sockets_unix.go
@@ -0,0 +1,35 @@
+// +build !windows
+
+package sockets
+
+import (
+	"fmt"
+	"net"
+	"net/http"
+	"syscall"
+	"time"
+)
+
+const maxUnixSocketPathSize = len(syscall.RawSockaddrUnix{}.Path)
+
+func configureUnixTransport(tr *http.Transport, proto, addr string) error {
+	if len(addr) > maxUnixSocketPathSize {
+		return fmt.Errorf("Unix socket path %q is too long", addr)
+	}
+	// No need for compression in local communications.
+	tr.DisableCompression = true
+	tr.Dial = func(_, _ string) (net.Conn, error) {
+		return net.DialTimeout(proto, addr, defaultTimeout)
+	}
+	return nil
+}
+
+func configureNpipeTransport(tr *http.Transport, proto, addr string) error {
+	return ErrProtocolNotAvailable
+}
+
+// DialPipe connects to a Windows named pipe.
+// This is not supported on other OSes.
+func DialPipe(_ string, _ time.Duration) (net.Conn, error) {
+	return nil, syscall.EAFNOSUPPORT
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/sockets_windows.go b/vendor/github.com/docker/go-connections/sockets/sockets_windows.go
new file mode 100644
index 0000000000..5c21644e1f
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/sockets_windows.go
@@ -0,0 +1,27 @@
+package sockets
+
+import (
+	"net"
+	"net/http"
+	"time"
+
+	"github.com/Microsoft/go-winio"
+)
+
+func configureUnixTransport(tr *http.Transport, proto, addr string) error {
+	return ErrProtocolNotAvailable
+}
+
+func configureNpipeTransport(tr *http.Transport, proto, addr string) error {
+	// No need for compression in local communications.
+	tr.DisableCompression = true
+	tr.Dial = func(_, _ string) (net.Conn, error) {
+		return DialPipe(addr, defaultTimeout)
+	}
+	return nil
+}
+
+// DialPipe connects to a Windows named pipe.
+func DialPipe(addr string, timeout time.Duration) (net.Conn, error) {
+	return winio.DialPipe(addr, &timeout)
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/tcp_socket.go b/vendor/github.com/docker/go-connections/sockets/tcp_socket.go
new file mode 100644
index 0000000000..53cbb6c79e
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/tcp_socket.go
@@ -0,0 +1,22 @@
+// Package sockets provides helper functions to create and configure Unix or TCP sockets.
+package sockets
+
+import (
+	"crypto/tls"
+	"net"
+)
+
+// NewTCPSocket creates a TCP socket listener with the specified address and
+// the specified tls configuration. If TLSConfig is set, will encapsulate the
+// TCP listener inside a TLS one.
+func NewTCPSocket(addr string, tlsConfig *tls.Config) (net.Listener, error) {
+	l, err := net.Listen("tcp", addr)
+	if err != nil {
+		return nil, err
+	}
+	if tlsConfig != nil {
+		tlsConfig.NextProtos = []string{"http/1.1"}
+		l = tls.NewListener(l, tlsConfig)
+	}
+	return l, nil
+}
diff --git a/vendor/github.com/docker/go-connections/sockets/unix_socket.go b/vendor/github.com/docker/go-connections/sockets/unix_socket.go
new file mode 100644
index 0000000000..a8b5dbb6fd
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/sockets/unix_socket.go
@@ -0,0 +1,32 @@
+// +build !windows
+
+package sockets
+
+import (
+	"net"
+	"os"
+	"syscall"
+)
+
+// NewUnixSocket creates a unix socket with the specified path and group.
+func NewUnixSocket(path string, gid int) (net.Listener, error) {
+	if err := syscall.Unlink(path); err != nil && !os.IsNotExist(err) {
+		return nil, err
+	}
+	mask := syscall.Umask(0777)
+	defer syscall.Umask(mask)
+
+	l, err := net.Listen("unix", path)
+	if err != nil {
+		return nil, err
+	}
+	if err := os.Chown(path, 0, gid); err != nil {
+		l.Close()
+		return nil, err
+	}
+	if err := os.Chmod(path, 0660); err != nil {
+		l.Close()
+		return nil, err
+	}
+	return l, nil
+}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go b/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
new file mode 100644
index 0000000000..1ca0965e06
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/tlsconfig/certpool_go17.go
@@ -0,0 +1,18 @@
+// +build go1.7
+
+package tlsconfig
+
+import (
+	"crypto/x509"
+	"runtime"
+)
+
+// SystemCertPool returns a copy of the system cert pool,
+// returns an error if failed to load or empty pool on windows.
+func SystemCertPool() (*x509.CertPool, error) {
+	certpool, err := x509.SystemCertPool()
+	if err != nil && runtime.GOOS == "windows" {
+		return x509.NewCertPool(), nil
+	}
+	return certpool, err
+}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go b/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
new file mode 100644
index 0000000000..9ca974539a
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/tlsconfig/certpool_other.go
@@ -0,0 +1,14 @@
+// +build !go1.7
+
+package tlsconfig
+
+import (
+	"crypto/x509"
+
+)
+
+// SystemCertPool returns an new empty cert pool,
+// accessing system cert pool is supported in go 1.7
+func SystemCertPool() (*x509.CertPool, error) {
+	return x509.NewCertPool(), nil
+}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config.go b/vendor/github.com/docker/go-connections/tlsconfig/config.go
new file mode 100644
index 0000000000..1b31bbb8b1
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/tlsconfig/config.go
@@ -0,0 +1,244 @@
+// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
+//
+// As a reminder from https://golang.org/pkg/crypto/tls/#Config:
+//	A Config structure is used to configure a TLS client or server. After one has been passed to a TLS function it must not be modified.
+//	A Config may be reused; the tls package will also not modify it.
+package tlsconfig
+
+import (
+	"crypto/tls"
+	"crypto/x509"
+	"encoding/pem"
+	"fmt"
+	"io/ioutil"
+	"os"
+
+	"github.com/pkg/errors"
+)
+
+// Options represents the information needed to create client and server TLS configurations.
+type Options struct {
+	CAFile string
+
+	// If either CertFile or KeyFile is empty, Client() will not load them
+	// preventing the client from authenticating to the server.
+	// However, Server() requires them and will error out if they are empty.
+	CertFile string
+	KeyFile  string
+
+	// client-only option
+	InsecureSkipVerify bool
+	// server-only option
+	ClientAuth tls.ClientAuthType
+	// If ExclusiveRootPools is set, then if a CA file is provided, the root pool used for TLS
+	// creds will include exclusively the roots in that CA file.  If no CA file is provided,
+	// the system pool will be used.
+	ExclusiveRootPools bool
+	MinVersion         uint16
+	// If Passphrase is set, it will be used to decrypt a TLS private key
+	// if the key is encrypted
+	Passphrase string
+}
+
+// Extra (server-side) accepted CBC cipher suites - will phase out in the future
+var acceptedCBCCiphers = []uint16{
+	tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
+	tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
+	tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
+	tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
+	tls.TLS_RSA_WITH_AES_256_CBC_SHA,
+	tls.TLS_RSA_WITH_AES_128_CBC_SHA,
+}
+
+// DefaultServerAcceptedCiphers should be uses by code which already has a crypto/tls
+// options struct but wants to use a commonly accepted set of TLS cipher suites, with
+// known weak algorithms removed.
+var DefaultServerAcceptedCiphers = append(clientCipherSuites, acceptedCBCCiphers...)
+
+// allTLSVersions lists all the TLS versions and is used by the code that validates
+// a uint16 value as a TLS version.
+var allTLSVersions = map[uint16]struct{}{
+	tls.VersionSSL30: {},
+	tls.VersionTLS10: {},
+	tls.VersionTLS11: {},
+	tls.VersionTLS12: {},
+}
+
+// ServerDefault returns a secure-enough TLS configuration for the server TLS configuration.
+func ServerDefault() *tls.Config {
+	return &tls.Config{
+		// Avoid fallback to SSL protocols < TLS1.0
+		MinVersion:               tls.VersionTLS10,
+		PreferServerCipherSuites: true,
+		CipherSuites:             DefaultServerAcceptedCiphers,
+	}
+}
+
+// ClientDefault returns a secure-enough TLS configuration for the client TLS configuration.
+func ClientDefault() *tls.Config {
+	return &tls.Config{
+		// Prefer TLS1.2 as the client minimum
+		MinVersion:   tls.VersionTLS12,
+		CipherSuites: clientCipherSuites,
+	}
+}
+
+// certPool returns an X.509 certificate pool from `caFile`, the certificate file.
+func certPool(caFile string, exclusivePool bool) (*x509.CertPool, error) {
+	// If we should verify the server, we need to load a trusted ca
+	var (
+		certPool *x509.CertPool
+		err      error
+	)
+	if exclusivePool {
+		certPool = x509.NewCertPool()
+	} else {
+		certPool, err = SystemCertPool()
+		if err != nil {
+			return nil, fmt.Errorf("failed to read system certificates: %v", err)
+		}
+	}
+	pem, err := ioutil.ReadFile(caFile)
+	if err != nil {
+		return nil, fmt.Errorf("could not read CA certificate %q: %v", caFile, err)
+	}
+	if !certPool.AppendCertsFromPEM(pem) {
+		return nil, fmt.Errorf("failed to append certificates from PEM file: %q", caFile)
+	}
+	return certPool, nil
+}
+
+// isValidMinVersion checks that the input value is a valid tls minimum version
+func isValidMinVersion(version uint16) bool {
+	_, ok := allTLSVersions[version]
+	return ok
+}
+
+// adjustMinVersion sets the MinVersion on `config`, the input configuration.
+// It assumes the current MinVersion on the `config` is the lowest allowed.
+func adjustMinVersion(options Options, config *tls.Config) error {
+	if options.MinVersion > 0 {
+		if !isValidMinVersion(options.MinVersion) {
+			return fmt.Errorf("Invalid minimum TLS version: %x", options.MinVersion)
+		}
+		if options.MinVersion < config.MinVersion {
+			return fmt.Errorf("Requested minimum TLS version is too low. Should be at-least: %x", config.MinVersion)
+		}
+		config.MinVersion = options.MinVersion
+	}
+
+	return nil
+}
+
+// IsErrEncryptedKey returns true if the 'err' is an error of incorrect
+// password when tryin to decrypt a TLS private key
+func IsErrEncryptedKey(err error) bool {
+	return errors.Cause(err) == x509.IncorrectPasswordError
+}
+
+// getPrivateKey returns the private key in 'keyBytes', in PEM-encoded format.
+// If the private key is encrypted, 'passphrase' is used to decrypted the
+// private key.
+func getPrivateKey(keyBytes []byte, passphrase string) ([]byte, error) {
+	// this section makes some small changes to code from notary/tuf/utils/x509.go
+	pemBlock, _ := pem.Decode(keyBytes)
+	if pemBlock == nil {
+		return nil, fmt.Errorf("no valid private key found")
+	}
+
+	var err error
+	if x509.IsEncryptedPEMBlock(pemBlock) {
+		keyBytes, err = x509.DecryptPEMBlock(pemBlock, []byte(passphrase))
+		if err != nil {
+			return nil, errors.Wrap(err, "private key is encrypted, but could not decrypt it")
+		}
+		keyBytes = pem.EncodeToMemory(&pem.Block{Type: pemBlock.Type, Bytes: keyBytes})
+	}
+
+	return keyBytes, nil
+}
+
+// getCert returns a Certificate from the CertFile and KeyFile in 'options',
+// if the key is encrypted, the Passphrase in 'options' will be used to
+// decrypt it.
+func getCert(options Options) ([]tls.Certificate, error) {
+	if options.CertFile == "" && options.KeyFile == "" {
+		return nil, nil
+	}
+
+	errMessage := "Could not load X509 key pair"
+
+	cert, err := ioutil.ReadFile(options.CertFile)
+	if err != nil {
+		return nil, errors.Wrap(err, errMessage)
+	}
+
+	prKeyBytes, err := ioutil.ReadFile(options.KeyFile)
+	if err != nil {
+		return nil, errors.Wrap(err, errMessage)
+	}
+
+	prKeyBytes, err = getPrivateKey(prKeyBytes, options.Passphrase)
+	if err != nil {
+		return nil, errors.Wrap(err, errMessage)
+	}
+
+	tlsCert, err := tls.X509KeyPair(cert, prKeyBytes)
+	if err != nil {
+		return nil, errors.Wrap(err, errMessage)
+	}
+
+	return []tls.Certificate{tlsCert}, nil
+}
+
+// Client returns a TLS configuration meant to be used by a client.
+func Client(options Options) (*tls.Config, error) {
+	tlsConfig := ClientDefault()
+	tlsConfig.InsecureSkipVerify = options.InsecureSkipVerify
+	if !options.InsecureSkipVerify && options.CAFile != "" {
+		CAs, err := certPool(options.CAFile, options.ExclusiveRootPools)
+		if err != nil {
+			return nil, err
+		}
+		tlsConfig.RootCAs = CAs
+	}
+
+	tlsCerts, err := getCert(options)
+	if err != nil {
+		return nil, err
+	}
+	tlsConfig.Certificates = tlsCerts
+
+	if err := adjustMinVersion(options, tlsConfig); err != nil {
+		return nil, err
+	}
+
+	return tlsConfig, nil
+}
+
+// Server returns a TLS configuration meant to be used by a server.
+func Server(options Options) (*tls.Config, error) {
+	tlsConfig := ServerDefault()
+	tlsConfig.ClientAuth = options.ClientAuth
+	tlsCert, err := tls.LoadX509KeyPair(options.CertFile, options.KeyFile)
+	if err != nil {
+		if os.IsNotExist(err) {
+			return nil, fmt.Errorf("Could not load X509 key pair (cert: %q, key: %q): %v", options.CertFile, options.KeyFile, err)
+		}
+		return nil, fmt.Errorf("Error reading X509 key pair (cert: %q, key: %q): %v. Make sure the key is not encrypted.", options.CertFile, options.KeyFile, err)
+	}
+	tlsConfig.Certificates = []tls.Certificate{tlsCert}
+	if options.ClientAuth >= tls.VerifyClientCertIfGiven && options.CAFile != "" {
+		CAs, err := certPool(options.CAFile, options.ExclusiveRootPools)
+		if err != nil {
+			return nil, err
+		}
+		tlsConfig.ClientCAs = CAs
+	}
+
+	if err := adjustMinVersion(options, tlsConfig); err != nil {
+		return nil, err
+	}
+
+	return tlsConfig, nil
+}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go b/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
new file mode 100644
index 0000000000..6b4c6a7c0d
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/tlsconfig/config_client_ciphers.go
@@ -0,0 +1,17 @@
+// +build go1.5
+
+// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
+//
+package tlsconfig
+
+import (
+	"crypto/tls"
+)
+
+// Client TLS cipher suites (dropping CBC ciphers for client preferred suite set)
+var clientCipherSuites = []uint16{
+	tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
+	tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
+	tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
+	tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
+}
diff --git a/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go b/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
new file mode 100644
index 0000000000..ee22df47cb
--- /dev/null
+++ b/vendor/github.com/docker/go-connections/tlsconfig/config_legacy_client_ciphers.go
@@ -0,0 +1,15 @@
+// +build !go1.5
+
+// Package tlsconfig provides primitives to retrieve secure-enough TLS configurations for both clients and servers.
+//
+package tlsconfig
+
+import (
+	"crypto/tls"
+)
+
+// Client TLS cipher suites (dropping CBC ciphers for client preferred suite set)
+var clientCipherSuites = []uint16{
+	tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
+	tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
+}
diff --git a/vendor/github.com/docker/go-events/LICENSE b/vendor/github.com/docker/go-events/LICENSE
new file mode 100644
index 0000000000..6d630cf595
--- /dev/null
+++ b/vendor/github.com/docker/go-events/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright 2016 Docker, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/docker/go-events/broadcast.go b/vendor/github.com/docker/go-events/broadcast.go
new file mode 100644
index 0000000000..5120078dfb
--- /dev/null
+++ b/vendor/github.com/docker/go-events/broadcast.go
@@ -0,0 +1,178 @@
+package events
+
+import (
+	"fmt"
+	"sync"
+
+	"github.com/sirupsen/logrus"
+)
+
+// Broadcaster sends events to multiple, reliable Sinks. The goal of this
+// component is to dispatch events to configured endpoints. Reliability can be
+// provided by wrapping incoming sinks.
+type Broadcaster struct {
+	sinks   []Sink
+	events  chan Event
+	adds    chan configureRequest
+	removes chan configureRequest
+
+	shutdown chan struct{}
+	closed   chan struct{}
+	once     sync.Once
+}
+
+// NewBroadcaster appends one or more sinks to the list of sinks. The
+// broadcaster behavior will be affected by the properties of the sink.
+// Generally, the sink should accept all messages and deal with reliability on
+// its own. Use of EventQueue and RetryingSink should be used here.
+func NewBroadcaster(sinks ...Sink) *Broadcaster {
+	b := Broadcaster{
+		sinks:    sinks,
+		events:   make(chan Event),
+		adds:     make(chan configureRequest),
+		removes:  make(chan configureRequest),
+		shutdown: make(chan struct{}),
+		closed:   make(chan struct{}),
+	}
+
+	// Start the broadcaster
+	go b.run()
+
+	return &b
+}
+
+// Write accepts an event to be dispatched to all sinks. This method will never
+// fail and should never block (hopefully!). The caller cedes the memory to the
+// broadcaster and should not modify it after calling write.
+func (b *Broadcaster) Write(event Event) error {
+	select {
+	case b.events <- event:
+	case <-b.closed:
+		return ErrSinkClosed
+	}
+	return nil
+}
+
+// Add the sink to the broadcaster.
+//
+// The provided sink must be comparable with equality. Typically, this just
+// works with a regular pointer type.
+func (b *Broadcaster) Add(sink Sink) error {
+	return b.configure(b.adds, sink)
+}
+
+// Remove the provided sink.
+func (b *Broadcaster) Remove(sink Sink) error {
+	return b.configure(b.removes, sink)
+}
+
+type configureRequest struct {
+	sink     Sink
+	response chan error
+}
+
+func (b *Broadcaster) configure(ch chan configureRequest, sink Sink) error {
+	response := make(chan error, 1)
+
+	for {
+		select {
+		case ch <- configureRequest{
+			sink:     sink,
+			response: response}:
+			ch = nil
+		case err := <-response:
+			return err
+		case <-b.closed:
+			return ErrSinkClosed
+		}
+	}
+}
+
+// Close the broadcaster, ensuring that all messages are flushed to the
+// underlying sink before returning.
+func (b *Broadcaster) Close() error {
+	b.once.Do(func() {
+		close(b.shutdown)
+	})
+
+	<-b.closed
+	return nil
+}
+
+// run is the main broadcast loop, started when the broadcaster is created.
+// Under normal conditions, it waits for events on the event channel. After
+// Close is called, this goroutine will exit.
+func (b *Broadcaster) run() {
+	defer close(b.closed)
+	remove := func(target Sink) {
+		for i, sink := range b.sinks {
+			if sink == target {
+				b.sinks = append(b.sinks[:i], b.sinks[i+1:]...)
+				break
+			}
+		}
+	}
+
+	for {
+		select {
+		case event := <-b.events:
+			for _, sink := range b.sinks {
+				if err := sink.Write(event); err != nil {
+					if err == ErrSinkClosed {
+						// remove closed sinks
+						remove(sink)
+						continue
+					}
+					logrus.WithField("event", event).WithField("events.sink", sink).WithError(err).
+						Errorf("broadcaster: dropping event")
+				}
+			}
+		case request := <-b.adds:
+			// while we have to iterate for add/remove, common iteration for
+			// send is faster against slice.
+
+			var found bool
+			for _, sink := range b.sinks {
+				if request.sink == sink {
+					found = true
+					break
+				}
+			}
+
+			if !found {
+				b.sinks = append(b.sinks, request.sink)
+			}
+			// b.sinks[request.sink] = struct{}{}
+			request.response <- nil
+		case request := <-b.removes:
+			remove(request.sink)
+			request.response <- nil
+		case <-b.shutdown:
+			// close all the underlying sinks
+			for _, sink := range b.sinks {
+				if err := sink.Close(); err != nil && err != ErrSinkClosed {
+					logrus.WithField("events.sink", sink).WithError(err).
+						Errorf("broadcaster: closing sink failed")
+				}
+			}
+			return
+		}
+	}
+}
+
+func (b *Broadcaster) String() string {
+	// Serialize copy of this broadcaster without the sync.Once, to avoid
+	// a data race.
+
+	b2 := map[string]interface{}{
+		"sinks":   b.sinks,
+		"events":  b.events,
+		"adds":    b.adds,
+		"removes": b.removes,
+
+		"shutdown": b.shutdown,
+		"closed":   b.closed,
+	}
+
+	return fmt.Sprint(b2)
+}
diff --git a/vendor/github.com/docker/go-events/channel.go b/vendor/github.com/docker/go-events/channel.go
new file mode 100644
index 0000000000..802cf51ffe
--- /dev/null
+++ b/vendor/github.com/docker/go-events/channel.go
@@ -0,0 +1,61 @@
+package events
+
+import (
+	"fmt"
+	"sync"
+)
+
+// Channel provides a sink that can be listened on. The writer and channel
+// listener must operate in separate goroutines.
+//
+// Consumers should listen on Channel.C until Closed is closed.
+type Channel struct {
+	C chan Event
+
+	closed chan struct{}
+	once   sync.Once
+}
+
+// NewChannel returns a channel. If buffer is zero, the channel is
+// unbuffered.
+func NewChannel(buffer int) *Channel {
+	return &Channel{
+		C:      make(chan Event, buffer),
+		closed: make(chan struct{}),
+	}
+}
+
+// Done returns a channel that will always proceed once the sink is closed.
+func (ch *Channel) Done() chan struct{} {
+	return ch.closed
+}
+
+// Write the event to the channel. Must be called in a separate goroutine from
+// the listener.
+func (ch *Channel) Write(event Event) error {
+	select {
+	case ch.C <- event:
+		return nil
+	case <-ch.closed:
+		return ErrSinkClosed
+	}
+}
+
+// Close the channel sink.
+func (ch *Channel) Close() error {
+	ch.once.Do(func() {
+		close(ch.closed)
+	})
+
+	return nil
+}
+
+func (ch *Channel) String() string {
+	// Serialize a copy of the Channel that doesn't contain the sync.Once,
+	// to avoid a data race.
+	ch2 := map[string]interface{}{
+		"C":      ch.C,
+		"closed": ch.closed,
+	}
+	return fmt.Sprint(ch2)
+}
diff --git a/vendor/github.com/docker/go-events/errors.go b/vendor/github.com/docker/go-events/errors.go
new file mode 100644
index 0000000000..56db7c2510
--- /dev/null
+++ b/vendor/github.com/docker/go-events/errors.go
@@ -0,0 +1,10 @@
+package events
+
+import "fmt"
+
+var (
+	// ErrSinkClosed is returned if a write is issued to a sink that has been
+	// closed. If encountered, the error should be considered terminal and
+	// retries will not be successful.
+	ErrSinkClosed = fmt.Errorf("events: sink closed")
+)
diff --git a/vendor/github.com/docker/go-events/event.go b/vendor/github.com/docker/go-events/event.go
new file mode 100644
index 0000000000..f0f1d9ea5f
--- /dev/null
+++ b/vendor/github.com/docker/go-events/event.go
@@ -0,0 +1,15 @@
+package events
+
+// Event marks items that can be sent as events.
+type Event interface{}
+
+// Sink accepts and sends events.
+type Sink interface {
+	// Write an event to the Sink. If no error is returned, the caller will
+	// assume that all events have been committed to the sink. If an error is
+	// received, the caller may retry sending the event.
+	Write(event Event) error
+
+	// Close the sink, possibly waiting for pending events to flush.
+	Close() error
+}
diff --git a/vendor/github.com/docker/go-events/filter.go b/vendor/github.com/docker/go-events/filter.go
new file mode 100644
index 0000000000..e6c0eb69dd
--- /dev/null
+++ b/vendor/github.com/docker/go-events/filter.go
@@ -0,0 +1,52 @@
+package events
+
+// Matcher matches events.
+type Matcher interface {
+	Match(event Event) bool
+}
+
+// MatcherFunc implements matcher with just a function.
+type MatcherFunc func(event Event) bool
+
+// Match calls the wrapped function.
+func (fn MatcherFunc) Match(event Event) bool {
+	return fn(event)
+}
+
+// Filter provides an event sink that sends only events that are accepted by a
+// Matcher. No methods on filter are goroutine safe.
+type Filter struct {
+	dst     Sink
+	matcher Matcher
+	closed  bool
+}
+
+// NewFilter returns a new filter that will send to events to dst that return
+// true for Matcher.
+func NewFilter(dst Sink, matcher Matcher) Sink {
+	return &Filter{dst: dst, matcher: matcher}
+}
+
+// Write an event to the filter.
+func (f *Filter) Write(event Event) error {
+	if f.closed {
+		return ErrSinkClosed
+	}
+
+	if f.matcher.Match(event) {
+		return f.dst.Write(event)
+	}
+
+	return nil
+}
+
+// Close the filter and allow no more events to pass through.
+func (f *Filter) Close() error {
+	// TODO(stevvooe): Not all sinks should have Close.
+	if f.closed {
+		return nil
+	}
+
+	f.closed = true
+	return f.dst.Close()
+}
diff --git a/vendor/github.com/docker/go-events/queue.go b/vendor/github.com/docker/go-events/queue.go
new file mode 100644
index 0000000000..4bb770afc2
--- /dev/null
+++ b/vendor/github.com/docker/go-events/queue.go
@@ -0,0 +1,111 @@
+package events
+
+import (
+	"container/list"
+	"sync"
+
+	"github.com/sirupsen/logrus"
+)
+
+// Queue accepts all messages into a queue for asynchronous consumption
+// by a sink. It is unbounded and thread safe but the sink must be reliable or
+// events will be dropped.
+type Queue struct {
+	dst    Sink
+	events *list.List
+	cond   *sync.Cond
+	mu     sync.Mutex
+	closed bool
+}
+
+// NewQueue returns a queue to the provided Sink dst.
+func NewQueue(dst Sink) *Queue {
+	eq := Queue{
+		dst:    dst,
+		events: list.New(),
+	}
+
+	eq.cond = sync.NewCond(&eq.mu)
+	go eq.run()
+	return &eq
+}
+
+// Write accepts the events into the queue, only failing if the queue has
+// been closed.
+func (eq *Queue) Write(event Event) error {
+	eq.mu.Lock()
+	defer eq.mu.Unlock()
+
+	if eq.closed {
+		return ErrSinkClosed
+	}
+
+	eq.events.PushBack(event)
+	eq.cond.Signal() // signal waiters
+
+	return nil
+}
+
+// Close shutsdown the event queue, flushing
+func (eq *Queue) Close() error {
+	eq.mu.Lock()
+	defer eq.mu.Unlock()
+
+	if eq.closed {
+		return nil
+	}
+
+	// set closed flag
+	eq.closed = true
+	eq.cond.Signal() // signal flushes queue
+	eq.cond.Wait()   // wait for signal from last flush
+	return eq.dst.Close()
+}
+
+// run is the main goroutine to flush events to the target sink.
+func (eq *Queue) run() {
+	for {
+		event := eq.next()
+
+		if event == nil {
+			return // nil block means event queue is closed.
+		}
+
+		if err := eq.dst.Write(event); err != nil {
+			// TODO(aaronl): Dropping events could be bad depending
+			// on the application. We should have a way of
+			// communicating this condition. However, logging
+			// at a log level above debug may not be appropriate.
+			// Eventually, go-events should not use logrus at all,
+			// and should bubble up conditions like this through
+			// error values.
+			logrus.WithFields(logrus.Fields{
+				"event": event,
+				"sink":  eq.dst,
+			}).WithError(err).Debug("eventqueue: dropped event")
+		}
+	}
+}
+
+// next encompasses the critical section of the run loop. When the queue is
+// empty, it will block on the condition. If new data arrives, it will wake
+// and return a block. When closed, a nil slice will be returned.
+func (eq *Queue) next() Event {
+	eq.mu.Lock()
+	defer eq.mu.Unlock()
+
+	for eq.events.Len() < 1 {
+		if eq.closed {
+			eq.cond.Broadcast()
+			return nil
+		}
+
+		eq.cond.Wait()
+	}
+
+	front := eq.events.Front()
+	block := front.Value.(Event)
+	eq.events.Remove(front)
+
+	return block
+}
diff --git a/vendor/github.com/docker/go-events/retry.go b/vendor/github.com/docker/go-events/retry.go
new file mode 100644
index 0000000000..2df55d2160
--- /dev/null
+++ b/vendor/github.com/docker/go-events/retry.go
@@ -0,0 +1,260 @@
+package events
+
+import (
+	"fmt"
+	"math/rand"
+	"sync"
+	"sync/atomic"
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+// RetryingSink retries the write until success or an ErrSinkClosed is
+// returned. Underlying sink must have p > 0 of succeeding or the sink will
+// block. Retry is configured with a RetryStrategy.  Concurrent calls to a
+// retrying sink are serialized through the sink, meaning that if one is
+// in-flight, another will not proceed.
+type RetryingSink struct {
+	sink     Sink
+	strategy RetryStrategy
+	closed   chan struct{}
+	once     sync.Once
+}
+
+// NewRetryingSink returns a sink that will retry writes to a sink, backing
+// off on failure. Parameters threshold and backoff adjust the behavior of the
+// circuit breaker.
+func NewRetryingSink(sink Sink, strategy RetryStrategy) *RetryingSink {
+	rs := &RetryingSink{
+		sink:     sink,
+		strategy: strategy,
+		closed:   make(chan struct{}),
+	}
+
+	return rs
+}
+
+// Write attempts to flush the events to the downstream sink until it succeeds
+// or the sink is closed.
+func (rs *RetryingSink) Write(event Event) error {
+	logger := logrus.WithField("event", event)
+
+retry:
+	select {
+	case <-rs.closed:
+		return ErrSinkClosed
+	default:
+	}
+
+	if backoff := rs.strategy.Proceed(event); backoff > 0 {
+		select {
+		case <-time.After(backoff):
+			// TODO(stevvooe): This branch holds up the next try. Before, we
+			// would simply break to the "retry" label and then possibly wait
+			// again. However, this requires all retry strategies to have a
+			// large probability of probing the sync for success, rather than
+			// just backing off and sending the request.
+		case <-rs.closed:
+			return ErrSinkClosed
+		}
+	}
+
+	if err := rs.sink.Write(event); err != nil {
+		if err == ErrSinkClosed {
+			// terminal!
+			return err
+		}
+
+		logger := logger.WithError(err) // shadow!!
+
+		if rs.strategy.Failure(event, err) {
+			logger.Errorf("retryingsink: dropped event")
+			return nil
+		}
+
+		logger.Errorf("retryingsink: error writing event, retrying")
+		goto retry
+	}
+
+	rs.strategy.Success(event)
+	return nil
+}
+
+// Close closes the sink and the underlying sink.
+func (rs *RetryingSink) Close() error {
+	rs.once.Do(func() {
+		close(rs.closed)
+	})
+
+	return nil
+}
+
+func (rs *RetryingSink) String() string {
+	// Serialize a copy of the RetryingSink without the sync.Once, to avoid
+	// a data race.
+	rs2 := map[string]interface{}{
+		"sink":     rs.sink,
+		"strategy": rs.strategy,
+		"closed":   rs.closed,
+	}
+	return fmt.Sprint(rs2)
+}
+
+// RetryStrategy defines a strategy for retrying event sink writes.
+//
+// All methods should be goroutine safe.
+type RetryStrategy interface {
+	// Proceed is called before every event send. If proceed returns a
+	// positive, non-zero integer, the retryer will back off by the provided
+	// duration.
+	//
+	// An event is provided, by may be ignored.
+	Proceed(event Event) time.Duration
+
+	// Failure reports a failure to the strategy. If this method returns true,
+	// the event should be dropped.
+	Failure(event Event, err error) bool
+
+	// Success should be called when an event is sent successfully.
+	Success(event Event)
+}
+
+// Breaker implements a circuit breaker retry strategy.
+//
+// The current implementation never drops events.
+type Breaker struct {
+	threshold int
+	recent    int
+	last      time.Time
+	backoff   time.Duration // time after which we retry after failure.
+	mu        sync.Mutex
+}
+
+var _ RetryStrategy = &Breaker{}
+
+// NewBreaker returns a breaker that will backoff after the threshold has been
+// tripped. A Breaker is thread safe and may be shared by many goroutines.
+func NewBreaker(threshold int, backoff time.Duration) *Breaker {
+	return &Breaker{
+		threshold: threshold,
+		backoff:   backoff,
+	}
+}
+
+// Proceed checks the failures against the threshold.
+func (b *Breaker) Proceed(event Event) time.Duration {
+	b.mu.Lock()
+	defer b.mu.Unlock()
+
+	if b.recent < b.threshold {
+		return 0
+	}
+
+	return b.last.Add(b.backoff).Sub(time.Now())
+}
+
+// Success resets the breaker.
+func (b *Breaker) Success(event Event) {
+	b.mu.Lock()
+	defer b.mu.Unlock()
+
+	b.recent = 0
+	b.last = time.Time{}
+}
+
+// Failure records the failure and latest failure time.
+func (b *Breaker) Failure(event Event, err error) bool {
+	b.mu.Lock()
+	defer b.mu.Unlock()
+
+	b.recent++
+	b.last = time.Now().UTC()
+	return false // never drop events.
+}
+
+var (
+	// DefaultExponentialBackoffConfig provides a default configuration for
+	// exponential backoff.
+	DefaultExponentialBackoffConfig = ExponentialBackoffConfig{
+		Base:   time.Second,
+		Factor: time.Second,
+		Max:    20 * time.Second,
+	}
+)
+
+// ExponentialBackoffConfig configures backoff parameters.
+//
+// Note that these parameters operate on the upper bound for choosing a random
+// value. For example, at Base=1s, a random value in [0,1s) will be chosen for
+// the backoff value.
+type ExponentialBackoffConfig struct {
+	// Base is the minimum bound for backing off after failure.
+	Base time.Duration
+
+	// Factor sets the amount of time by which the backoff grows with each
+	// failure.
+	Factor time.Duration
+
+	// Max is the absolute maxiumum bound for a single backoff.
+	Max time.Duration
+}
+
+// ExponentialBackoff implements random backoff with exponentially increasing
+// bounds as the number consecutive failures increase.
+type ExponentialBackoff struct {
+	config   ExponentialBackoffConfig
+	failures uint64 // consecutive failure counter.
+}
+
+// NewExponentialBackoff returns an exponential backoff strategy with the
+// desired config. If config is nil, the default is returned.
+func NewExponentialBackoff(config ExponentialBackoffConfig) *ExponentialBackoff {
+	return &ExponentialBackoff{
+		config: config,
+	}
+}
+
+// Proceed returns the next randomly bound exponential backoff time.
+func (b *ExponentialBackoff) Proceed(event Event) time.Duration {
+	return b.backoff(atomic.LoadUint64(&b.failures))
+}
+
+// Success resets the failures counter.
+func (b *ExponentialBackoff) Success(event Event) {
+	atomic.StoreUint64(&b.failures, 0)
+}
+
+// Failure increments the failure counter.
+func (b *ExponentialBackoff) Failure(event Event, err error) bool {
+	atomic.AddUint64(&b.failures, 1)
+	return false
+}
+
+// backoff calculates the amount of time to wait based on the number of
+// consecutive failures.
+func (b *ExponentialBackoff) backoff(failures uint64) time.Duration {
+	if failures <= 0 {
+		// proceed normally when there are no failures.
+		return 0
+	}
+
+	factor := b.config.Factor
+	if factor <= 0 {
+		factor = DefaultExponentialBackoffConfig.Factor
+	}
+
+	backoff := b.config.Base + factor*time.Duration(1<<(failures-1))
+
+	max := b.config.Max
+	if max <= 0 {
+		max = DefaultExponentialBackoffConfig.Max
+	}
+
+	if backoff > max || backoff < 0 {
+		backoff = max
+	}
+
+	// Choose a uniformly distributed value from [0, backoff).
+	return time.Duration(rand.Int63n(int64(backoff)))
+}
diff --git a/vendor/github.com/docker/go-metrics/LICENSE.code b/vendor/github.com/docker/go-metrics/LICENSE.code
new file mode 100644
index 0000000000..8f3fee627a
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/LICENSE.code
@@ -0,0 +1,191 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        https://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2013-2016 Docker, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       https://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/docker/go-metrics/LICENSE.docs b/vendor/github.com/docker/go-metrics/LICENSE.docs
new file mode 100644
index 0000000000..e26cd4fc8e
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/LICENSE.docs
@@ -0,0 +1,425 @@
+Attribution-ShareAlike 4.0 International
+
+=======================================================================
+
+Creative Commons Corporation ("Creative Commons") is not a law firm and
+does not provide legal services or legal advice. Distribution of
+Creative Commons public licenses does not create a lawyer-client or
+other relationship. Creative Commons makes its licenses and related
+information available on an "as-is" basis. Creative Commons gives no
+warranties regarding its licenses, any material licensed under their
+terms and conditions, or any related information. Creative Commons
+disclaims all liability for damages resulting from their use to the
+fullest extent possible.
+
+Using Creative Commons Public Licenses
+
+Creative Commons public licenses provide a standard set of terms and
+conditions that creators and other rights holders may use to share
+original works of authorship and other material subject to copyright
+and certain other rights specified in the public license below. The
+following considerations are for informational purposes only, are not
+exhaustive, and do not form part of our licenses.
+
+     Considerations for licensors: Our public licenses are
+     intended for use by those authorized to give the public
+     permission to use material in ways otherwise restricted by
+     copyright and certain other rights. Our licenses are
+     irrevocable. Licensors should read and understand the terms
+     and conditions of the license they choose before applying it.
+     Licensors should also secure all rights necessary before
+     applying our licenses so that the public can reuse the
+     material as expected. Licensors should clearly mark any
+     material not subject to the license. This includes other CC-
+     licensed material, or material used under an exception or
+     limitation to copyright. More considerations for licensors:
+	wiki.creativecommons.org/Considerations_for_licensors
+
+     Considerations for the public: By using one of our public
+     licenses, a licensor grants the public permission to use the
+     licensed material under specified terms and conditions. If
+     the licensor's permission is not necessary for any reason--for
+     example, because of any applicable exception or limitation to
+     copyright--then that use is not regulated by the license. Our
+     licenses grant only permissions under copyright and certain
+     other rights that a licensor has authority to grant. Use of
+     the licensed material may still be restricted for other
+     reasons, including because others have copyright or other
+     rights in the material. A licensor may make special requests,
+     such as asking that all changes be marked or described.
+     Although not required by our licenses, you are encouraged to
+     respect those requests where reasonable. More_considerations
+     for the public:
+	wiki.creativecommons.org/Considerations_for_licensees
+
+=======================================================================
+
+Creative Commons Attribution-ShareAlike 4.0 International Public
+License
+
+By exercising the Licensed Rights (defined below), You accept and agree
+to be bound by the terms and conditions of this Creative Commons
+Attribution-ShareAlike 4.0 International Public License ("Public
+License"). To the extent this Public License may be interpreted as a
+contract, You are granted the Licensed Rights in consideration of Your
+acceptance of these terms and conditions, and the Licensor grants You
+such rights in consideration of benefits the Licensor receives from
+making the Licensed Material available under these terms and
+conditions.
+
+
+Section 1 -- Definitions.
+
+  a. Adapted Material means material subject to Copyright and Similar
+     Rights that is derived from or based upon the Licensed Material
+     and in which the Licensed Material is translated, altered,
+     arranged, transformed, or otherwise modified in a manner requiring
+     permission under the Copyright and Similar Rights held by the
+     Licensor. For purposes of this Public License, where the Licensed
+     Material is a musical work, performance, or sound recording,
+     Adapted Material is always produced where the Licensed Material is
+     synched in timed relation with a moving image.
+
+  b. Adapter's License means the license You apply to Your Copyright
+     and Similar Rights in Your contributions to Adapted Material in
+     accordance with the terms and conditions of this Public License.
+
+  c. BY-SA Compatible License means a license listed at
+     creativecommons.org/compatiblelicenses, approved by Creative
+     Commons as essentially the equivalent of this Public License.
+
+  d. Copyright and Similar Rights means copyright and/or similar rights
+     closely related to copyright including, without limitation,
+     performance, broadcast, sound recording, and Sui Generis Database
+     Rights, without regard to how the rights are labeled or
+     categorized. For purposes of this Public License, the rights
+     specified in Section 2(b)(1)-(2) are not Copyright and Similar
+     Rights.
+
+  e. Effective Technological Measures means those measures that, in the
+     absence of proper authority, may not be circumvented under laws
+     fulfilling obligations under Article 11 of the WIPO Copyright
+     Treaty adopted on December 20, 1996, and/or similar international
+     agreements.
+
+  f. Exceptions and Limitations means fair use, fair dealing, and/or
+     any other exception or limitation to Copyright and Similar Rights
+     that applies to Your use of the Licensed Material.
+
+  g. License Elements means the license attributes listed in the name
+     of a Creative Commons Public License. The License Elements of this
+     Public License are Attribution and ShareAlike.
+
+  h. Licensed Material means the artistic or literary work, database,
+     or other material to which the Licensor applied this Public
+     License.
+
+  i. Licensed Rights means the rights granted to You subject to the
+     terms and conditions of this Public License, which are limited to
+     all Copyright and Similar Rights that apply to Your use of the
+     Licensed Material and that the Licensor has authority to license.
+
+  j. Licensor means the individual(s) or entity(ies) granting rights
+     under this Public License.
+
+  k. Share means to provide material to the public by any means or
+     process that requires permission under the Licensed Rights, such
+     as reproduction, public display, public performance, distribution,
+     dissemination, communication, or importation, and to make material
+     available to the public including in ways that members of the
+     public may access the material from a place and at a time
+     individually chosen by them.
+
+  l. Sui Generis Database Rights means rights other than copyright
+     resulting from Directive 96/9/EC of the European Parliament and of
+     the Council of 11 March 1996 on the legal protection of databases,
+     as amended and/or succeeded, as well as other essentially
+     equivalent rights anywhere in the world.
+
+  m. You means the individual or entity exercising the Licensed Rights
+     under this Public License. Your has a corresponding meaning.
+
+
+Section 2 -- Scope.
+
+  a. License grant.
+
+       1. Subject to the terms and conditions of this Public License,
+          the Licensor hereby grants You a worldwide, royalty-free,
+          non-sublicensable, non-exclusive, irrevocable license to
+          exercise the Licensed Rights in the Licensed Material to:
+
+            a. reproduce and Share the Licensed Material, in whole or
+               in part; and
+
+            b. produce, reproduce, and Share Adapted Material.
+
+       2. Exceptions and Limitations. For the avoidance of doubt, where
+          Exceptions and Limitations apply to Your use, this Public
+          License does not apply, and You do not need to comply with
+          its terms and conditions.
+
+       3. Term. The term of this Public License is specified in Section
+          6(a).
+
+       4. Media and formats; technical modifications allowed. The
+          Licensor authorizes You to exercise the Licensed Rights in
+          all media and formats whether now known or hereafter created,
+          and to make technical modifications necessary to do so. The
+          Licensor waives and/or agrees not to assert any right or
+          authority to forbid You from making technical modifications
+          necessary to exercise the Licensed Rights, including
+          technical modifications necessary to circumvent Effective
+          Technological Measures. For purposes of this Public License,
+          simply making modifications authorized by this Section 2(a)
+          (4) never produces Adapted Material.
+
+       5. Downstream recipients.
+
+            a. Offer from the Licensor -- Licensed Material. Every
+               recipient of the Licensed Material automatically
+               receives an offer from the Licensor to exercise the
+               Licensed Rights under the terms and conditions of this
+               Public License.
+
+            b. Additional offer from the Licensor -- Adapted Material.
+               Every recipient of Adapted Material from You
+               automatically receives an offer from the Licensor to
+               exercise the Licensed Rights in the Adapted Material
+               under the conditions of the Adapter's License You apply.
+
+            c. No downstream restrictions. You may not offer or impose
+               any additional or different terms or conditions on, or
+               apply any Effective Technological Measures to, the
+               Licensed Material if doing so restricts exercise of the
+               Licensed Rights by any recipient of the Licensed
+               Material.
+
+       6. No endorsement. Nothing in this Public License constitutes or
+          may be construed as permission to assert or imply that You
+          are, or that Your use of the Licensed Material is, connected
+          with, or sponsored, endorsed, or granted official status by,
+          the Licensor or others designated to receive attribution as
+          provided in Section 3(a)(1)(A)(i).
+
+  b. Other rights.
+
+       1. Moral rights, such as the right of integrity, are not
+          licensed under this Public License, nor are publicity,
+          privacy, and/or other similar personality rights; however, to
+          the extent possible, the Licensor waives and/or agrees not to
+          assert any such rights held by the Licensor to the limited
+          extent necessary to allow You to exercise the Licensed
+          Rights, but not otherwise.
+
+       2. Patent and trademark rights are not licensed under this
+          Public License.
+
+       3. To the extent possible, the Licensor waives any right to
+          collect royalties from You for the exercise of the Licensed
+          Rights, whether directly or through a collecting society
+          under any voluntary or waivable statutory or compulsory
+          licensing scheme. In all other cases the Licensor expressly
+          reserves any right to collect such royalties.
+
+
+Section 3 -- License Conditions.
+
+Your exercise of the Licensed Rights is expressly made subject to the
+following conditions.
+
+  a. Attribution.
+
+       1. If You Share the Licensed Material (including in modified
+          form), You must:
+
+            a. retain the following if it is supplied by the Licensor
+               with the Licensed Material:
+
+                 i. identification of the creator(s) of the Licensed
+                    Material and any others designated to receive
+                    attribution, in any reasonable manner requested by
+                    the Licensor (including by pseudonym if
+                    designated);
+
+                ii. a copyright notice;
+
+               iii. a notice that refers to this Public License;
+
+                iv. a notice that refers to the disclaimer of
+                    warranties;
+
+                 v. a URI or hyperlink to the Licensed Material to the
+                    extent reasonably practicable;
+
+            b. indicate if You modified the Licensed Material and
+               retain an indication of any previous modifications; and
+
+            c. indicate the Licensed Material is licensed under this
+               Public License, and include the text of, or the URI or
+               hyperlink to, this Public License.
+
+       2. You may satisfy the conditions in Section 3(a)(1) in any
+          reasonable manner based on the medium, means, and context in
+          which You Share the Licensed Material. For example, it may be
+          reasonable to satisfy the conditions by providing a URI or
+          hyperlink to a resource that includes the required
+          information.
+
+       3. If requested by the Licensor, You must remove any of the
+          information required by Section 3(a)(1)(A) to the extent
+          reasonably practicable.
+
+  b. ShareAlike.
+
+     In addition to the conditions in Section 3(a), if You Share
+     Adapted Material You produce, the following conditions also apply.
+
+       1. The Adapter's License You apply must be a Creative Commons
+          license with the same License Elements, this version or
+          later, or a BY-SA Compatible License.
+
+       2. You must include the text of, or the URI or hyperlink to, the
+          Adapter's License You apply. You may satisfy this condition
+          in any reasonable manner based on the medium, means, and
+          context in which You Share Adapted Material.
+
+       3. You may not offer or impose any additional or different terms
+          or conditions on, or apply any Effective Technological
+          Measures to, Adapted Material that restrict exercise of the
+          rights granted under the Adapter's License You apply.
+
+
+Section 4 -- Sui Generis Database Rights.
+
+Where the Licensed Rights include Sui Generis Database Rights that
+apply to Your use of the Licensed Material:
+
+  a. for the avoidance of doubt, Section 2(a)(1) grants You the right
+     to extract, reuse, reproduce, and Share all or a substantial
+     portion of the contents of the database;
+
+  b. if You include all or a substantial portion of the database
+     contents in a database in which You have Sui Generis Database
+     Rights, then the database in which You have Sui Generis Database
+     Rights (but not its individual contents) is Adapted Material,
+
+     including for purposes of Section 3(b); and
+  c. You must comply with the conditions in Section 3(a) if You Share
+     all or a substantial portion of the contents of the database.
+
+For the avoidance of doubt, this Section 4 supplements and does not
+replace Your obligations under this Public License where the Licensed
+Rights include other Copyright and Similar Rights.
+
+
+Section 5 -- Disclaimer of Warranties and Limitation of Liability.
+
+  a. UNLESS OTHERWISE SEPARATELY UNDERTAKEN BY THE LICENSOR, TO THE
+     EXTENT POSSIBLE, THE LICENSOR OFFERS THE LICENSED MATERIAL AS-IS
+     AND AS-AVAILABLE, AND MAKES NO REPRESENTATIONS OR WARRANTIES OF
+     ANY KIND CONCERNING THE LICENSED MATERIAL, WHETHER EXPRESS,
+     IMPLIED, STATUTORY, OR OTHER. THIS INCLUDES, WITHOUT LIMITATION,
+     WARRANTIES OF TITLE, MERCHANTABILITY, FITNESS FOR A PARTICULAR
+     PURPOSE, NON-INFRINGEMENT, ABSENCE OF LATENT OR OTHER DEFECTS,
+     ACCURACY, OR THE PRESENCE OR ABSENCE OF ERRORS, WHETHER OR NOT
+     KNOWN OR DISCOVERABLE. WHERE DISCLAIMERS OF WARRANTIES ARE NOT
+     ALLOWED IN FULL OR IN PART, THIS DISCLAIMER MAY NOT APPLY TO YOU.
+
+  b. TO THE EXTENT POSSIBLE, IN NO EVENT WILL THE LICENSOR BE LIABLE
+     TO YOU ON ANY LEGAL THEORY (INCLUDING, WITHOUT LIMITATION,
+     NEGLIGENCE) OR OTHERWISE FOR ANY DIRECT, SPECIAL, INDIRECT,
+     INCIDENTAL, CONSEQUENTIAL, PUNITIVE, EXEMPLARY, OR OTHER LOSSES,
+     COSTS, EXPENSES, OR DAMAGES ARISING OUT OF THIS PUBLIC LICENSE OR
+     USE OF THE LICENSED MATERIAL, EVEN IF THE LICENSOR HAS BEEN
+     ADVISED OF THE POSSIBILITY OF SUCH LOSSES, COSTS, EXPENSES, OR
+     DAMAGES. WHERE A LIMITATION OF LIABILITY IS NOT ALLOWED IN FULL OR
+     IN PART, THIS LIMITATION MAY NOT APPLY TO YOU.
+
+  c. The disclaimer of warranties and limitation of liability provided
+     above shall be interpreted in a manner that, to the extent
+     possible, most closely approximates an absolute disclaimer and
+     waiver of all liability.
+
+
+Section 6 -- Term and Termination.
+
+  a. This Public License applies for the term of the Copyright and
+     Similar Rights licensed here. However, if You fail to comply with
+     this Public License, then Your rights under this Public License
+     terminate automatically.
+
+  b. Where Your right to use the Licensed Material has terminated under
+     Section 6(a), it reinstates:
+
+       1. automatically as of the date the violation is cured, provided
+          it is cured within 30 days of Your discovery of the
+          violation; or
+
+       2. upon express reinstatement by the Licensor.
+
+     For the avoidance of doubt, this Section 6(b) does not affect any
+     right the Licensor may have to seek remedies for Your violations
+     of this Public License.
+
+  c. For the avoidance of doubt, the Licensor may also offer the
+     Licensed Material under separate terms or conditions or stop
+     distributing the Licensed Material at any time; however, doing so
+     will not terminate this Public License.
+
+  d. Sections 1, 5, 6, 7, and 8 survive termination of this Public
+     License.
+
+
+Section 7 -- Other Terms and Conditions.
+
+  a. The Licensor shall not be bound by any additional or different
+     terms or conditions communicated by You unless expressly agreed.
+
+  b. Any arrangements, understandings, or agreements regarding the
+     Licensed Material not stated herein are separate from and
+     independent of the terms and conditions of this Public License.
+
+
+Section 8 -- Interpretation.
+
+  a. For the avoidance of doubt, this Public License does not, and
+     shall not be interpreted to, reduce, limit, restrict, or impose
+     conditions on any use of the Licensed Material that could lawfully
+     be made without permission under this Public License.
+
+  b. To the extent possible, if any provision of this Public License is
+     deemed unenforceable, it shall be automatically reformed to the
+     minimum extent necessary to make it enforceable. If the provision
+     cannot be reformed, it shall be severed from this Public License
+     without affecting the enforceability of the remaining terms and
+     conditions.
+
+  c. No term or condition of this Public License will be waived and no
+     failure to comply consented to unless expressly agreed to by the
+     Licensor.
+
+  d. Nothing in this Public License constitutes or may be interpreted
+     as a limitation upon, or waiver of, any privileges and immunities
+     that apply to the Licensor or You, including from the legal
+     processes of any jurisdiction or authority.
+
+
+=======================================================================
+
+Creative Commons is not a party to its public licenses.
+Notwithstanding, Creative Commons may elect to apply one of its public
+licenses to material it publishes and in those instances will be
+considered the "Licensor." Except for the limited purpose of indicating
+that material is shared under a Creative Commons public license or as
+otherwise permitted by the Creative Commons policies published at
+creativecommons.org/policies, Creative Commons does not authorize the
+use of the trademark "Creative Commons" or any other trademark or logo
+of Creative Commons without its prior written consent including,
+without limitation, in connection with any unauthorized modifications
+to any of its public licenses or any other arrangements,
+understandings, or agreements concerning use of licensed material. For
+the avoidance of doubt, this paragraph does not form part of the public
+licenses.
+
+Creative Commons may be contacted at creativecommons.org.
diff --git a/vendor/github.com/docker/go-metrics/NOTICE b/vendor/github.com/docker/go-metrics/NOTICE
new file mode 100644
index 0000000000..8915f02773
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/NOTICE
@@ -0,0 +1,16 @@
+Docker
+Copyright 2012-2015 Docker, Inc.
+
+This product includes software developed at Docker, Inc. (https://www.docker.com).
+
+The following is courtesy of our legal counsel:
+
+
+Use and transfer of Docker may be subject to certain restrictions by the
+United States and other governments.
+It is your responsibility to ensure that your use and/or transfer does not
+violate applicable laws.
+
+For more information, please see https://www.bis.doc.gov
+
+See also https://www.apache.org/dev/crypto.html and/or seek legal counsel.
diff --git a/vendor/github.com/docker/go-metrics/counter.go b/vendor/github.com/docker/go-metrics/counter.go
new file mode 100644
index 0000000000..fe36316a45
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/counter.go
@@ -0,0 +1,52 @@
+package metrics
+
+import "github.com/prometheus/client_golang/prometheus"
+
+// Counter is a metrics that can only increment its current count
+type Counter interface {
+	// Inc adds Sum(vs) to the counter. Sum(vs) must be positive.
+	//
+	// If len(vs) == 0, increments the counter by 1.
+	Inc(vs ...float64)
+}
+
+// LabeledCounter is counter that must have labels populated before use.
+type LabeledCounter interface {
+	WithValues(vs ...string) Counter
+}
+
+type labeledCounter struct {
+	pc *prometheus.CounterVec
+}
+
+func (lc *labeledCounter) WithValues(vs ...string) Counter {
+	return &counter{pc: lc.pc.WithLabelValues(vs...)}
+}
+
+func (lc *labeledCounter) Describe(ch chan<- *prometheus.Desc) {
+	lc.pc.Describe(ch)
+}
+
+func (lc *labeledCounter) Collect(ch chan<- prometheus.Metric) {
+	lc.pc.Collect(ch)
+}
+
+type counter struct {
+	pc prometheus.Counter
+}
+
+func (c *counter) Inc(vs ...float64) {
+	if len(vs) == 0 {
+		c.pc.Inc()
+	}
+
+	c.pc.Add(sumFloat64(vs...))
+}
+
+func (c *counter) Describe(ch chan<- *prometheus.Desc) {
+	c.pc.Describe(ch)
+}
+
+func (c *counter) Collect(ch chan<- prometheus.Metric) {
+	c.pc.Collect(ch)
+}
diff --git a/vendor/github.com/docker/go-metrics/docs.go b/vendor/github.com/docker/go-metrics/docs.go
new file mode 100644
index 0000000000..8fbdfc697d
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/docs.go
@@ -0,0 +1,3 @@
+// This package is small wrapper around the prometheus go client to help enforce convention and best practices for metrics collection in Docker projects.
+
+package metrics
diff --git a/vendor/github.com/docker/go-metrics/gauge.go b/vendor/github.com/docker/go-metrics/gauge.go
new file mode 100644
index 0000000000..74296e8774
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/gauge.go
@@ -0,0 +1,72 @@
+package metrics
+
+import "github.com/prometheus/client_golang/prometheus"
+
+// Gauge is a metric that allows incrementing and decrementing a value
+type Gauge interface {
+	Inc(...float64)
+	Dec(...float64)
+
+	// Add adds the provided value to the gauge's current value
+	Add(float64)
+
+	// Set replaces the gauge's current value with the provided value
+	Set(float64)
+}
+
+// LabeledGauge describes a gauge the must have values populated before use.
+type LabeledGauge interface {
+	WithValues(labels ...string) Gauge
+}
+
+type labeledGauge struct {
+	pg *prometheus.GaugeVec
+}
+
+func (lg *labeledGauge) WithValues(labels ...string) Gauge {
+	return &gauge{pg: lg.pg.WithLabelValues(labels...)}
+}
+
+func (lg *labeledGauge) Describe(c chan<- *prometheus.Desc) {
+	lg.pg.Describe(c)
+}
+
+func (lg *labeledGauge) Collect(c chan<- prometheus.Metric) {
+	lg.pg.Collect(c)
+}
+
+type gauge struct {
+	pg prometheus.Gauge
+}
+
+func (g *gauge) Inc(vs ...float64) {
+	if len(vs) == 0 {
+		g.pg.Inc()
+	}
+
+	g.Add(sumFloat64(vs...))
+}
+
+func (g *gauge) Dec(vs ...float64) {
+	if len(vs) == 0 {
+		g.pg.Dec()
+	}
+
+	g.Add(-sumFloat64(vs...))
+}
+
+func (g *gauge) Add(v float64) {
+	g.pg.Add(v)
+}
+
+func (g *gauge) Set(v float64) {
+	g.pg.Set(v)
+}
+
+func (g *gauge) Describe(c chan<- *prometheus.Desc) {
+	g.pg.Describe(c)
+}
+
+func (g *gauge) Collect(c chan<- prometheus.Metric) {
+	g.pg.Collect(c)
+}
diff --git a/vendor/github.com/docker/go-metrics/handler.go b/vendor/github.com/docker/go-metrics/handler.go
new file mode 100644
index 0000000000..05601e9ecd
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/handler.go
@@ -0,0 +1,74 @@
+package metrics
+
+import (
+	"net/http"
+
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/client_golang/prometheus/promhttp"
+)
+
+// HTTPHandlerOpts describes a set of configurable options of http metrics
+type HTTPHandlerOpts struct {
+	DurationBuckets     []float64
+	RequestSizeBuckets  []float64
+	ResponseSizeBuckets []float64
+}
+
+const (
+	InstrumentHandlerResponseSize = iota
+	InstrumentHandlerRequestSize
+	InstrumentHandlerDuration
+	InstrumentHandlerCounter
+	InstrumentHandlerInFlight
+)
+
+type HTTPMetric struct {
+	prometheus.Collector
+	handlerType int
+}
+
+var (
+	defaultDurationBuckets     = []float64{.005, .01, .025, .05, .1, .25, .5, 1, 2.5, 5, 10, 25, 60}
+	defaultRequestSizeBuckets  = prometheus.ExponentialBuckets(1024, 2, 22) //1K to 4G
+	defaultResponseSizeBuckets = defaultRequestSizeBuckets
+)
+
+// Handler returns the global http.Handler that provides the prometheus
+// metrics format on GET requests. This handler is no longer instrumented.
+func Handler() http.Handler {
+	return promhttp.Handler()
+}
+
+func InstrumentHandler(metrics []*HTTPMetric, handler http.Handler) http.HandlerFunc {
+	return InstrumentHandlerFunc(metrics, handler.ServeHTTP)
+}
+
+func InstrumentHandlerFunc(metrics []*HTTPMetric, handlerFunc http.HandlerFunc) http.HandlerFunc {
+	var handler http.Handler
+	handler = http.HandlerFunc(handlerFunc)
+	for _, metric := range metrics {
+		switch metric.handlerType {
+		case InstrumentHandlerResponseSize:
+			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
+				handler = promhttp.InstrumentHandlerResponseSize(collector, handler)
+			}
+		case InstrumentHandlerRequestSize:
+			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
+				handler = promhttp.InstrumentHandlerRequestSize(collector, handler)
+			}
+		case InstrumentHandlerDuration:
+			if collector, ok := metric.Collector.(prometheus.ObserverVec); ok {
+				handler = promhttp.InstrumentHandlerDuration(collector, handler)
+			}
+		case InstrumentHandlerCounter:
+			if collector, ok := metric.Collector.(*prometheus.CounterVec); ok {
+				handler = promhttp.InstrumentHandlerCounter(collector, handler)
+			}
+		case InstrumentHandlerInFlight:
+			if collector, ok := metric.Collector.(prometheus.Gauge); ok {
+				handler = promhttp.InstrumentHandlerInFlight(collector, handler)
+			}
+		}
+	}
+	return handler.ServeHTTP
+}
diff --git a/vendor/github.com/docker/go-metrics/helpers.go b/vendor/github.com/docker/go-metrics/helpers.go
new file mode 100644
index 0000000000..68b7f51b33
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/helpers.go
@@ -0,0 +1,10 @@
+package metrics
+
+func sumFloat64(vs ...float64) float64 {
+	var sum float64
+	for _, v := range vs {
+		sum += v
+	}
+
+	return sum
+}
diff --git a/vendor/github.com/docker/go-metrics/namespace.go b/vendor/github.com/docker/go-metrics/namespace.go
new file mode 100644
index 0000000000..798315451a
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/namespace.go
@@ -0,0 +1,315 @@
+package metrics
+
+import (
+	"fmt"
+	"sync"
+
+	"github.com/prometheus/client_golang/prometheus"
+)
+
+type Labels map[string]string
+
+// NewNamespace returns a namespaces that is responsible for managing a collection of
+// metrics for a particual namespace and subsystem
+//
+// labels allows const labels to be added to all metrics created in this namespace
+// and are commonly used for data like application version and git commit
+func NewNamespace(name, subsystem string, labels Labels) *Namespace {
+	if labels == nil {
+		labels = make(map[string]string)
+	}
+	return &Namespace{
+		name:      name,
+		subsystem: subsystem,
+		labels:    labels,
+	}
+}
+
+// Namespace describes a set of metrics that share a namespace and subsystem.
+type Namespace struct {
+	name      string
+	subsystem string
+	labels    Labels
+	mu        sync.Mutex
+	metrics   []prometheus.Collector
+}
+
+// WithConstLabels returns a namespace with the provided set of labels merged
+// with the existing constant labels on the namespace.
+//
+//  Only metrics created with the returned namespace will get the new constant
+//  labels.  The returned namespace must be registered separately.
+func (n *Namespace) WithConstLabels(labels Labels) *Namespace {
+	n.mu.Lock()
+	ns := &Namespace{
+		name:      n.name,
+		subsystem: n.subsystem,
+		labels:    mergeLabels(n.labels, labels),
+	}
+	n.mu.Unlock()
+	return ns
+}
+
+func (n *Namespace) NewCounter(name, help string) Counter {
+	c := &counter{pc: prometheus.NewCounter(n.newCounterOpts(name, help))}
+	n.Add(c)
+	return c
+}
+
+func (n *Namespace) NewLabeledCounter(name, help string, labels ...string) LabeledCounter {
+	c := &labeledCounter{pc: prometheus.NewCounterVec(n.newCounterOpts(name, help), labels)}
+	n.Add(c)
+	return c
+}
+
+func (n *Namespace) newCounterOpts(name, help string) prometheus.CounterOpts {
+	return prometheus.CounterOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        makeName(name, Total),
+		Help:        help,
+		ConstLabels: prometheus.Labels(n.labels),
+	}
+}
+
+func (n *Namespace) NewTimer(name, help string) Timer {
+	t := &timer{
+		m: prometheus.NewHistogram(n.newTimerOpts(name, help)),
+	}
+	n.Add(t)
+	return t
+}
+
+func (n *Namespace) NewLabeledTimer(name, help string, labels ...string) LabeledTimer {
+	t := &labeledTimer{
+		m: prometheus.NewHistogramVec(n.newTimerOpts(name, help), labels),
+	}
+	n.Add(t)
+	return t
+}
+
+func (n *Namespace) newTimerOpts(name, help string) prometheus.HistogramOpts {
+	return prometheus.HistogramOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        makeName(name, Seconds),
+		Help:        help,
+		ConstLabels: prometheus.Labels(n.labels),
+	}
+}
+
+func (n *Namespace) NewGauge(name, help string, unit Unit) Gauge {
+	g := &gauge{
+		pg: prometheus.NewGauge(n.newGaugeOpts(name, help, unit)),
+	}
+	n.Add(g)
+	return g
+}
+
+func (n *Namespace) NewLabeledGauge(name, help string, unit Unit, labels ...string) LabeledGauge {
+	g := &labeledGauge{
+		pg: prometheus.NewGaugeVec(n.newGaugeOpts(name, help, unit), labels),
+	}
+	n.Add(g)
+	return g
+}
+
+func (n *Namespace) newGaugeOpts(name, help string, unit Unit) prometheus.GaugeOpts {
+	return prometheus.GaugeOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        makeName(name, unit),
+		Help:        help,
+		ConstLabels: prometheus.Labels(n.labels),
+	}
+}
+
+func (n *Namespace) Describe(ch chan<- *prometheus.Desc) {
+	n.mu.Lock()
+	defer n.mu.Unlock()
+
+	for _, metric := range n.metrics {
+		metric.Describe(ch)
+	}
+}
+
+func (n *Namespace) Collect(ch chan<- prometheus.Metric) {
+	n.mu.Lock()
+	defer n.mu.Unlock()
+
+	for _, metric := range n.metrics {
+		metric.Collect(ch)
+	}
+}
+
+func (n *Namespace) Add(collector prometheus.Collector) {
+	n.mu.Lock()
+	n.metrics = append(n.metrics, collector)
+	n.mu.Unlock()
+}
+
+func (n *Namespace) NewDesc(name, help string, unit Unit, labels ...string) *prometheus.Desc {
+	name = makeName(name, unit)
+	namespace := n.name
+	if n.subsystem != "" {
+		namespace = fmt.Sprintf("%s_%s", namespace, n.subsystem)
+	}
+	name = fmt.Sprintf("%s_%s", namespace, name)
+	return prometheus.NewDesc(name, help, labels, prometheus.Labels(n.labels))
+}
+
+// mergeLabels merges two or more labels objects into a single map, favoring
+// the later labels.
+func mergeLabels(lbs ...Labels) Labels {
+	merged := make(Labels)
+
+	for _, target := range lbs {
+		for k, v := range target {
+			merged[k] = v
+		}
+	}
+
+	return merged
+}
+
+func makeName(name string, unit Unit) string {
+	if unit == "" {
+		return name
+	}
+
+	return fmt.Sprintf("%s_%s", name, unit)
+}
+
+func (n *Namespace) NewDefaultHttpMetrics(handlerName string) []*HTTPMetric {
+	return n.NewHttpMetricsWithOpts(handlerName, HTTPHandlerOpts{
+		DurationBuckets:     defaultDurationBuckets,
+		RequestSizeBuckets:  defaultResponseSizeBuckets,
+		ResponseSizeBuckets: defaultResponseSizeBuckets,
+	})
+}
+
+func (n *Namespace) NewHttpMetrics(handlerName string, durationBuckets, requestSizeBuckets, responseSizeBuckets []float64) []*HTTPMetric {
+	return n.NewHttpMetricsWithOpts(handlerName, HTTPHandlerOpts{
+		DurationBuckets:     durationBuckets,
+		RequestSizeBuckets:  requestSizeBuckets,
+		ResponseSizeBuckets: responseSizeBuckets,
+	})
+}
+
+func (n *Namespace) NewHttpMetricsWithOpts(handlerName string, opts HTTPHandlerOpts) []*HTTPMetric {
+	var httpMetrics []*HTTPMetric
+	inFlightMetric := n.NewInFlightGaugeMetric(handlerName)
+	requestTotalMetric := n.NewRequestTotalMetric(handlerName)
+	requestDurationMetric := n.NewRequestDurationMetric(handlerName, opts.DurationBuckets)
+	requestSizeMetric := n.NewRequestSizeMetric(handlerName, opts.RequestSizeBuckets)
+	responseSizeMetric := n.NewResponseSizeMetric(handlerName, opts.ResponseSizeBuckets)
+	httpMetrics = append(httpMetrics, inFlightMetric, requestDurationMetric, requestTotalMetric, requestSizeMetric, responseSizeMetric)
+	return httpMetrics
+}
+
+func (n *Namespace) NewInFlightGaugeMetric(handlerName string) *HTTPMetric {
+	labels := prometheus.Labels(n.labels)
+	labels["handler"] = handlerName
+	metric := prometheus.NewGauge(prometheus.GaugeOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        "in_flight_requests",
+		Help:        "The in-flight HTTP requests",
+		ConstLabels: prometheus.Labels(labels),
+	})
+	httpMetric := &HTTPMetric{
+		Collector:   metric,
+		handlerType: InstrumentHandlerInFlight,
+	}
+	n.Add(httpMetric)
+	return httpMetric
+}
+
+func (n *Namespace) NewRequestTotalMetric(handlerName string) *HTTPMetric {
+	labels := prometheus.Labels(n.labels)
+	labels["handler"] = handlerName
+	metric := prometheus.NewCounterVec(
+		prometheus.CounterOpts{
+			Namespace:   n.name,
+			Subsystem:   n.subsystem,
+			Name:        "requests_total",
+			Help:        "Total number of HTTP requests made.",
+			ConstLabels: prometheus.Labels(labels),
+		},
+		[]string{"code", "method"},
+	)
+	httpMetric := &HTTPMetric{
+		Collector:   metric,
+		handlerType: InstrumentHandlerCounter,
+	}
+	n.Add(httpMetric)
+	return httpMetric
+}
+func (n *Namespace) NewRequestDurationMetric(handlerName string, buckets []float64) *HTTPMetric {
+	if len(buckets) == 0 {
+		panic("DurationBuckets must be provided")
+	}
+	labels := prometheus.Labels(n.labels)
+	labels["handler"] = handlerName
+	opts := prometheus.HistogramOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        "request_duration_seconds",
+		Help:        "The HTTP request latencies in seconds.",
+		Buckets:     buckets,
+		ConstLabels: prometheus.Labels(labels),
+	}
+	metric := prometheus.NewHistogramVec(opts, []string{"method"})
+	httpMetric := &HTTPMetric{
+		Collector:   metric,
+		handlerType: InstrumentHandlerDuration,
+	}
+	n.Add(httpMetric)
+	return httpMetric
+}
+
+func (n *Namespace) NewRequestSizeMetric(handlerName string, buckets []float64) *HTTPMetric {
+	if len(buckets) == 0 {
+		panic("RequestSizeBuckets must be provided")
+	}
+	labels := prometheus.Labels(n.labels)
+	labels["handler"] = handlerName
+	opts := prometheus.HistogramOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        "request_size_bytes",
+		Help:        "The HTTP request sizes in bytes.",
+		Buckets:     buckets,
+		ConstLabels: prometheus.Labels(labels),
+	}
+	metric := prometheus.NewHistogramVec(opts, []string{})
+	httpMetric := &HTTPMetric{
+		Collector:   metric,
+		handlerType: InstrumentHandlerRequestSize,
+	}
+	n.Add(httpMetric)
+	return httpMetric
+}
+
+func (n *Namespace) NewResponseSizeMetric(handlerName string, buckets []float64) *HTTPMetric {
+	if len(buckets) == 0 {
+		panic("ResponseSizeBuckets must be provided")
+	}
+	labels := prometheus.Labels(n.labels)
+	labels["handler"] = handlerName
+	opts := prometheus.HistogramOpts{
+		Namespace:   n.name,
+		Subsystem:   n.subsystem,
+		Name:        "response_size_bytes",
+		Help:        "The HTTP response sizes in bytes.",
+		Buckets:     buckets,
+		ConstLabels: prometheus.Labels(labels),
+	}
+	metrics := prometheus.NewHistogramVec(opts, []string{})
+	httpMetric := &HTTPMetric{
+		Collector:   metrics,
+		handlerType: InstrumentHandlerResponseSize,
+	}
+	n.Add(httpMetric)
+	return httpMetric
+}
diff --git a/vendor/github.com/docker/go-metrics/register.go b/vendor/github.com/docker/go-metrics/register.go
new file mode 100644
index 0000000000..708358df01
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/register.go
@@ -0,0 +1,15 @@
+package metrics
+
+import "github.com/prometheus/client_golang/prometheus"
+
+// Register adds all the metrics in the provided namespace to the global
+// metrics registry
+func Register(n *Namespace) {
+	prometheus.MustRegister(n)
+}
+
+// Deregister removes all the metrics in the provided namespace from the
+// global metrics registry
+func Deregister(n *Namespace) {
+	prometheus.Unregister(n)
+}
diff --git a/vendor/github.com/docker/go-metrics/timer.go b/vendor/github.com/docker/go-metrics/timer.go
new file mode 100644
index 0000000000..824c98739c
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/timer.go
@@ -0,0 +1,85 @@
+package metrics
+
+import (
+	"time"
+
+	"github.com/prometheus/client_golang/prometheus"
+)
+
+// StartTimer begins a timer observation at the callsite. When the target
+// operation is completed, the caller should call the return done func().
+func StartTimer(timer Timer) (done func()) {
+	start := time.Now()
+	return func() {
+		timer.Update(time.Since(start))
+	}
+}
+
+// Timer is a metric that allows collecting the duration of an action in seconds
+type Timer interface {
+	// Update records an observation, duration, and converts to the target
+	// units.
+	Update(duration time.Duration)
+
+	// UpdateSince will add the duration from the provided starting time to the
+	// timer's summary with the precisions that was used in creation of the timer
+	UpdateSince(time.Time)
+}
+
+// LabeledTimer is a timer that must have label values populated before use.
+type LabeledTimer interface {
+	WithValues(labels ...string) *labeledTimerObserver
+}
+
+type labeledTimer struct {
+	m *prometheus.HistogramVec
+}
+
+type labeledTimerObserver struct {
+	m prometheus.Observer
+}
+
+func (lbo *labeledTimerObserver) Update(duration time.Duration) {
+	lbo.m.Observe(duration.Seconds())
+}
+
+func (lbo *labeledTimerObserver) UpdateSince(since time.Time) {
+	lbo.m.Observe(time.Since(since).Seconds())
+}
+
+func (lt *labeledTimer) WithValues(labels ...string) *labeledTimerObserver {
+	return &labeledTimerObserver{m: lt.m.WithLabelValues(labels...)}
+}
+
+func (lt *labeledTimer) Describe(c chan<- *prometheus.Desc) {
+	lt.m.Describe(c)
+}
+
+func (lt *labeledTimer) Collect(c chan<- prometheus.Metric) {
+	lt.m.Collect(c)
+}
+
+type timer struct {
+	m prometheus.Observer
+}
+
+func (t *timer) Update(duration time.Duration) {
+	t.m.Observe(duration.Seconds())
+}
+
+func (t *timer) UpdateSince(since time.Time) {
+	t.m.Observe(time.Since(since).Seconds())
+}
+
+func (t *timer) Describe(c chan<- *prometheus.Desc) {
+	c <- t.m.(prometheus.Metric).Desc()
+}
+
+func (t *timer) Collect(c chan<- prometheus.Metric) {
+	// Are there any observers that don't implement Collector? It is really
+	// unclear what the point of the upstream change was, but we'll let this
+	// panic if we get an observer that doesn't implement collector. In this
+	// case, we should almost always see metricVec objects, so this should
+	// never panic.
+	t.m.(prometheus.Collector).Collect(c)
+}
diff --git a/vendor/github.com/docker/go-metrics/unit.go b/vendor/github.com/docker/go-metrics/unit.go
new file mode 100644
index 0000000000..c96622f903
--- /dev/null
+++ b/vendor/github.com/docker/go-metrics/unit.go
@@ -0,0 +1,12 @@
+package metrics
+
+// Unit represents the type or precision of a metric that is appended to
+// the metrics fully qualified name
+type Unit string
+
+const (
+	Nanoseconds Unit = "nanoseconds"
+	Seconds     Unit = "seconds"
+	Bytes       Unit = "bytes"
+	Total       Unit = "total"
+)
diff --git a/vendor/github.com/docker/libkv/LICENSE.code b/vendor/github.com/docker/libkv/LICENSE.code
new file mode 100644
index 0000000000..34c4ea7c50
--- /dev/null
+++ b/vendor/github.com/docker/libkv/LICENSE.code
@@ -0,0 +1,191 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2014-2016 Docker, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/docker/libkv/LICENSE.docs b/vendor/github.com/docker/libkv/LICENSE.docs
new file mode 100644
index 0000000000..e26cd4fc8e
--- /dev/null
+++ b/vendor/github.com/docker/libkv/LICENSE.docs
@@ -0,0 +1,425 @@
+Attribution-ShareAlike 4.0 International
+
+=======================================================================
+
+Creative Commons Corporation ("Creative Commons") is not a law firm and
+does not provide legal services or legal advice. Distribution of
+Creative Commons public licenses does not create a lawyer-client or
+other relationship. Creative Commons makes its licenses and related
+information available on an "as-is" basis. Creative Commons gives no
+warranties regarding its licenses, any material licensed under their
+terms and conditions, or any related information. Creative Commons
+disclaims all liability for damages resulting from their use to the
+fullest extent possible.
+
+Using Creative Commons Public Licenses
+
+Creative Commons public licenses provide a standard set of terms and
+conditions that creators and other rights holders may use to share
+original works of authorship and other material subject to copyright
+and certain other rights specified in the public license below. The
+following considerations are for informational purposes only, are not
+exhaustive, and do not form part of our licenses.
+
+     Considerations for licensors: Our public licenses are
+     intended for use by those authorized to give the public
+     permission to use material in ways otherwise restricted by
+     copyright and certain other rights. Our licenses are
+     irrevocable. Licensors should read and understand the terms
+     and conditions of the license they choose before applying it.
+     Licensors should also secure all rights necessary before
+     applying our licenses so that the public can reuse the
+     material as expected. Licensors should clearly mark any
+     material not subject to the license. This includes other CC-
+     licensed material, or material used under an exception or
+     limitation to copyright. More considerations for licensors:
+	wiki.creativecommons.org/Considerations_for_licensors
+
+     Considerations for the public: By using one of our public
+     licenses, a licensor grants the public permission to use the
+     licensed material under specified terms and conditions. If
+     the licensor's permission is not necessary for any reason--for
+     example, because of any applicable exception or limitation to
+     copyright--then that use is not regulated by the license. Our
+     licenses grant only permissions under copyright and certain
+     other rights that a licensor has authority to grant. Use of
+     the licensed material may still be restricted for other
+     reasons, including because others have copyright or other
+     rights in the material. A licensor may make special requests,
+     such as asking that all changes be marked or described.
+     Although not required by our licenses, you are encouraged to
+     respect those requests where reasonable. More_considerations
+     for the public:
+	wiki.creativecommons.org/Considerations_for_licensees
+
+=======================================================================
+
+Creative Commons Attribution-ShareAlike 4.0 International Public
+License
+
+By exercising the Licensed Rights (defined below), You accept and agree
+to be bound by the terms and conditions of this Creative Commons
+Attribution-ShareAlike 4.0 International Public License ("Public
+License"). To the extent this Public License may be interpreted as a
+contract, You are granted the Licensed Rights in consideration of Your
+acceptance of these terms and conditions, and the Licensor grants You
+such rights in consideration of benefits the Licensor receives from
+making the Licensed Material available under these terms and
+conditions.
+
+
+Section 1 -- Definitions.
+
+  a. Adapted Material means material subject to Copyright and Similar
+     Rights that is derived from or based upon the Licensed Material
+     and in which the Licensed Material is translated, altered,
+     arranged, transformed, or otherwise modified in a manner requiring
+     permission under the Copyright and Similar Rights held by the
+     Licensor. For purposes of this Public License, where the Licensed
+     Material is a musical work, performance, or sound recording,
+     Adapted Material is always produced where the Licensed Material is
+     synched in timed relation with a moving image.
+
+  b. Adapter's License means the license You apply to Your Copyright
+     and Similar Rights in Your contributions to Adapted Material in
+     accordance with the terms and conditions of this Public License.
+
+  c. BY-SA Compatible License means a license listed at
+     creativecommons.org/compatiblelicenses, approved by Creative
+     Commons as essentially the equivalent of this Public License.
+
+  d. Copyright and Similar Rights means copyright and/or similar rights
+     closely related to copyright including, without limitation,
+     performance, broadcast, sound recording, and Sui Generis Database
+     Rights, without regard to how the rights are labeled or
+     categorized. For purposes of this Public License, the rights
+     specified in Section 2(b)(1)-(2) are not Copyright and Similar
+     Rights.
+
+  e. Effective Technological Measures means those measures that, in the
+     absence of proper authority, may not be circumvented under laws
+     fulfilling obligations under Article 11 of the WIPO Copyright
+     Treaty adopted on December 20, 1996, and/or similar international
+     agreements.
+
+  f. Exceptions and Limitations means fair use, fair dealing, and/or
+     any other exception or limitation to Copyright and Similar Rights
+     that applies to Your use of the Licensed Material.
+
+  g. License Elements means the license attributes listed in the name
+     of a Creative Commons Public License. The License Elements of this
+     Public License are Attribution and ShareAlike.
+
+  h. Licensed Material means the artistic or literary work, database,
+     or other material to which the Licensor applied this Public
+     License.
+
+  i. Licensed Rights means the rights granted to You subject to the
+     terms and conditions of this Public License, which are limited to
+     all Copyright and Similar Rights that apply to Your use of the
+     Licensed Material and that the Licensor has authority to license.
+
+  j. Licensor means the individual(s) or entity(ies) granting rights
+     under this Public License.
+
+  k. Share means to provide material to the public by any means or
+     process that requires permission under the Licensed Rights, such
+     as reproduction, public display, public performance, distribution,
+     dissemination, communication, or importation, and to make material
+     available to the public including in ways that members of the
+     public may access the material from a place and at a time
+     individually chosen by them.
+
+  l. Sui Generis Database Rights means rights other than copyright
+     resulting from Directive 96/9/EC of the European Parliament and of
+     the Council of 11 March 1996 on the legal protection of databases,
+     as amended and/or succeeded, as well as other essentially
+     equivalent rights anywhere in the world.
+
+  m. You means the individual or entity exercising the Licensed Rights
+     under this Public License. Your has a corresponding meaning.
+
+
+Section 2 -- Scope.
+
+  a. License grant.
+
+       1. Subject to the terms and conditions of this Public License,
+          the Licensor hereby grants You a worldwide, royalty-free,
+          non-sublicensable, non-exclusive, irrevocable license to
+          exercise the Licensed Rights in the Licensed Material to:
+
+            a. reproduce and Share the Licensed Material, in whole or
+               in part; and
+
+            b. produce, reproduce, and Share Adapted Material.
+
+       2. Exceptions and Limitations. For the avoidance of doubt, where
+          Exceptions and Limitations apply to Your use, this Public
+          License does not apply, and You do not need to comply with
+          its terms and conditions.
+
+       3. Term. The term of this Public License is specified in Section
+          6(a).
+
+       4. Media and formats; technical modifications allowed. The
+          Licensor authorizes You to exercise the Licensed Rights in
+          all media and formats whether now known or hereafter created,
+          and to make technical modifications necessary to do so. The
+          Licensor waives and/or agrees not to assert any right or
+          authority to forbid You from making technical modifications
+          necessary to exercise the Licensed Rights, including
+          technical modifications necessary to circumvent Effective
+          Technological Measures. For purposes of this Public License,
+          simply making modifications authorized by this Section 2(a)
+          (4) never produces Adapted Material.
+
+       5. Downstream recipients.
+
+            a. Offer from the Licensor -- Licensed Material. Every
+               recipient of the Licensed Material automatically
+               receives an offer from the Licensor to exercise the
+               Licensed Rights under the terms and conditions of this
+               Public License.
+
+            b. Additional offer from the Licensor -- Adapted Material.
+               Every recipient of Adapted Material from You
+               automatically receives an offer from the Licensor to
+               exercise the Licensed Rights in the Adapted Material
+               under the conditions of the Adapter's License You apply.
+
+            c. No downstream restrictions. You may not offer or impose
+               any additional or different terms or conditions on, or
+               apply any Effective Technological Measures to, the
+               Licensed Material if doing so restricts exercise of the
+               Licensed Rights by any recipient of the Licensed
+               Material.
+
+       6. No endorsement. Nothing in this Public License constitutes or
+          may be construed as permission to assert or imply that You
+          are, or that Your use of the Licensed Material is, connected
+          with, or sponsored, endorsed, or granted official status by,
+          the Licensor or others designated to receive attribution as
+          provided in Section 3(a)(1)(A)(i).
+
+  b. Other rights.
+
+       1. Moral rights, such as the right of integrity, are not
+          licensed under this Public License, nor are publicity,
+          privacy, and/or other similar personality rights; however, to
+          the extent possible, the Licensor waives and/or agrees not to
+          assert any such rights held by the Licensor to the limited
+          extent necessary to allow You to exercise the Licensed
+          Rights, but not otherwise.
+
+       2. Patent and trademark rights are not licensed under this
+          Public License.
+
+       3. To the extent possible, the Licensor waives any right to
+          collect royalties from You for the exercise of the Licensed
+          Rights, whether directly or through a collecting society
+          under any voluntary or waivable statutory or compulsory
+          licensing scheme. In all other cases the Licensor expressly
+          reserves any right to collect such royalties.
+
+
+Section 3 -- License Conditions.
+
+Your exercise of the Licensed Rights is expressly made subject to the
+following conditions.
+
+  a. Attribution.
+
+       1. If You Share the Licensed Material (including in modified
+          form), You must:
+
+            a. retain the following if it is supplied by the Licensor
+               with the Licensed Material:
+
+                 i. identification of the creator(s) of the Licensed
+                    Material and any others designated to receive
+                    attribution, in any reasonable manner requested by
+                    the Licensor (including by pseudonym if
+                    designated);
+
+                ii. a copyright notice;
+
+               iii. a notice that refers to this Public License;
+
+                iv. a notice that refers to the disclaimer of
+                    warranties;
+
+                 v. a URI or hyperlink to the Licensed Material to the
+                    extent reasonably practicable;
+
+            b. indicate if You modified the Licensed Material and
+               retain an indication of any previous modifications; and
+
+            c. indicate the Licensed Material is licensed under this
+               Public License, and include the text of, or the URI or
+               hyperlink to, this Public License.
+
+       2. You may satisfy the conditions in Section 3(a)(1) in any
+          reasonable manner based on the medium, means, and context in
+          which You Share the Licensed Material. For example, it may be
+          reasonable to satisfy the conditions by providing a URI or
+          hyperlink to a resource that includes the required
+          information.
+
+       3. If requested by the Licensor, You must remove any of the
+          information required by Section 3(a)(1)(A) to the extent
+          reasonably practicable.
+
+  b. ShareAlike.
+
+     In addition to the conditions in Section 3(a), if You Share
+     Adapted Material You produce, the following conditions also apply.
+
+       1. The Adapter's License You apply must be a Creative Commons
+          license with the same License Elements, this version or
+          later, or a BY-SA Compatible License.
+
+       2. You must include the text of, or the URI or hyperlink to, the
+          Adapter's License You apply. You may satisfy this condition
+          in any reasonable manner based on the medium, means, and
+          context in which You Share Adapted Material.
+
+       3. You may not offer or impose any additional or different terms
+          or conditions on, or apply any Effective Technological
+          Measures to, Adapted Material that restrict exercise of the
+          rights granted under the Adapter's License You apply.
+
+
+Section 4 -- Sui Generis Database Rights.
+
+Where the Licensed Rights include Sui Generis Database Rights that
+apply to Your use of the Licensed Material:
+
+  a. for the avoidance of doubt, Section 2(a)(1) grants You the right
+     to extract, reuse, reproduce, and Share all or a substantial
+     portion of the contents of the database;
+
+  b. if You include all or a substantial portion of the database
+     contents in a database in which You have Sui Generis Database
+     Rights, then the database in which You have Sui Generis Database
+     Rights (but not its individual contents) is Adapted Material,
+
+     including for purposes of Section 3(b); and
+  c. You must comply with the conditions in Section 3(a) if You Share
+     all or a substantial portion of the contents of the database.
+
+For the avoidance of doubt, this Section 4 supplements and does not
+replace Your obligations under this Public License where the Licensed
+Rights include other Copyright and Similar Rights.
+
+
+Section 5 -- Disclaimer of Warranties and Limitation of Liability.
+
+  a. UNLESS OTHERWISE SEPARATELY UNDERTAKEN BY THE LICENSOR, TO THE
+     EXTENT POSSIBLE, THE LICENSOR OFFERS THE LICENSED MATERIAL AS-IS
+     AND AS-AVAILABLE, AND MAKES NO REPRESENTATIONS OR WARRANTIES OF
+     ANY KIND CONCERNING THE LICENSED MATERIAL, WHETHER EXPRESS,
+     IMPLIED, STATUTORY, OR OTHER. THIS INCLUDES, WITHOUT LIMITATION,
+     WARRANTIES OF TITLE, MERCHANTABILITY, FITNESS FOR A PARTICULAR
+     PURPOSE, NON-INFRINGEMENT, ABSENCE OF LATENT OR OTHER DEFECTS,
+     ACCURACY, OR THE PRESENCE OR ABSENCE OF ERRORS, WHETHER OR NOT
+     KNOWN OR DISCOVERABLE. WHERE DISCLAIMERS OF WARRANTIES ARE NOT
+     ALLOWED IN FULL OR IN PART, THIS DISCLAIMER MAY NOT APPLY TO YOU.
+
+  b. TO THE EXTENT POSSIBLE, IN NO EVENT WILL THE LICENSOR BE LIABLE
+     TO YOU ON ANY LEGAL THEORY (INCLUDING, WITHOUT LIMITATION,
+     NEGLIGENCE) OR OTHERWISE FOR ANY DIRECT, SPECIAL, INDIRECT,
+     INCIDENTAL, CONSEQUENTIAL, PUNITIVE, EXEMPLARY, OR OTHER LOSSES,
+     COSTS, EXPENSES, OR DAMAGES ARISING OUT OF THIS PUBLIC LICENSE OR
+     USE OF THE LICENSED MATERIAL, EVEN IF THE LICENSOR HAS BEEN
+     ADVISED OF THE POSSIBILITY OF SUCH LOSSES, COSTS, EXPENSES, OR
+     DAMAGES. WHERE A LIMITATION OF LIABILITY IS NOT ALLOWED IN FULL OR
+     IN PART, THIS LIMITATION MAY NOT APPLY TO YOU.
+
+  c. The disclaimer of warranties and limitation of liability provided
+     above shall be interpreted in a manner that, to the extent
+     possible, most closely approximates an absolute disclaimer and
+     waiver of all liability.
+
+
+Section 6 -- Term and Termination.
+
+  a. This Public License applies for the term of the Copyright and
+     Similar Rights licensed here. However, if You fail to comply with
+     this Public License, then Your rights under this Public License
+     terminate automatically.
+
+  b. Where Your right to use the Licensed Material has terminated under
+     Section 6(a), it reinstates:
+
+       1. automatically as of the date the violation is cured, provided
+          it is cured within 30 days of Your discovery of the
+          violation; or
+
+       2. upon express reinstatement by the Licensor.
+
+     For the avoidance of doubt, this Section 6(b) does not affect any
+     right the Licensor may have to seek remedies for Your violations
+     of this Public License.
+
+  c. For the avoidance of doubt, the Licensor may also offer the
+     Licensed Material under separate terms or conditions or stop
+     distributing the Licensed Material at any time; however, doing so
+     will not terminate this Public License.
+
+  d. Sections 1, 5, 6, 7, and 8 survive termination of this Public
+     License.
+
+
+Section 7 -- Other Terms and Conditions.
+
+  a. The Licensor shall not be bound by any additional or different
+     terms or conditions communicated by You unless expressly agreed.
+
+  b. Any arrangements, understandings, or agreements regarding the
+     Licensed Material not stated herein are separate from and
+     independent of the terms and conditions of this Public License.
+
+
+Section 8 -- Interpretation.
+
+  a. For the avoidance of doubt, this Public License does not, and
+     shall not be interpreted to, reduce, limit, restrict, or impose
+     conditions on any use of the Licensed Material that could lawfully
+     be made without permission under this Public License.
+
+  b. To the extent possible, if any provision of this Public License is
+     deemed unenforceable, it shall be automatically reformed to the
+     minimum extent necessary to make it enforceable. If the provision
+     cannot be reformed, it shall be severed from this Public License
+     without affecting the enforceability of the remaining terms and
+     conditions.
+
+  c. No term or condition of this Public License will be waived and no
+     failure to comply consented to unless expressly agreed to by the
+     Licensor.
+
+  d. Nothing in this Public License constitutes or may be interpreted
+     as a limitation upon, or waiver of, any privileges and immunities
+     that apply to the Licensor or You, including from the legal
+     processes of any jurisdiction or authority.
+
+
+=======================================================================
+
+Creative Commons is not a party to its public licenses.
+Notwithstanding, Creative Commons may elect to apply one of its public
+licenses to material it publishes and in those instances will be
+considered the "Licensor." Except for the limited purpose of indicating
+that material is shared under a Creative Commons public license or as
+otherwise permitted by the Creative Commons policies published at
+creativecommons.org/policies, Creative Commons does not authorize the
+use of the trademark "Creative Commons" or any other trademark or logo
+of Creative Commons without its prior written consent including,
+without limitation, in connection with any unauthorized modifications
+to any of its public licenses or any other arrangements,
+understandings, or agreements concerning use of licensed material. For
+the avoidance of doubt, this paragraph does not form part of the public
+licenses.
+
+Creative Commons may be contacted at creativecommons.org.
diff --git a/vendor/github.com/docker/libkv/libkv.go b/vendor/github.com/docker/libkv/libkv.go
new file mode 100644
index 0000000000..bdb8c7529f
--- /dev/null
+++ b/vendor/github.com/docker/libkv/libkv.go
@@ -0,0 +1,40 @@
+package libkv
+
+import (
+	"fmt"
+	"sort"
+	"strings"
+
+	"github.com/docker/libkv/store"
+)
+
+// Initialize creates a new Store object, initializing the client
+type Initialize func(addrs []string, options *store.Config) (store.Store, error)
+
+var (
+	// Backend initializers
+	initializers = make(map[store.Backend]Initialize)
+
+	supportedBackend = func() string {
+		keys := make([]string, 0, len(initializers))
+		for k := range initializers {
+			keys = append(keys, string(k))
+		}
+		sort.Strings(keys)
+		return strings.Join(keys, ", ")
+	}()
+)
+
+// NewStore creates an instance of store
+func NewStore(backend store.Backend, addrs []string, options *store.Config) (store.Store, error) {
+	if init, exists := initializers[backend]; exists {
+		return init(addrs, options)
+	}
+
+	return nil, fmt.Errorf("%s %s", store.ErrBackendNotSupported.Error(), supportedBackend)
+}
+
+// AddStore adds a new store backend to libkv
+func AddStore(store store.Backend, init Initialize) {
+	initializers[store] = init
+}
diff --git a/vendor/github.com/docker/libkv/store/boltdb/boltdb.go b/vendor/github.com/docker/libkv/store/boltdb/boltdb.go
new file mode 100644
index 0000000000..4026e0a20c
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/boltdb/boltdb.go
@@ -0,0 +1,469 @@
+package boltdb
+
+import (
+	"bytes"
+	"encoding/binary"
+	"errors"
+	"os"
+	"path/filepath"
+	"sync"
+	"sync/atomic"
+	"time"
+
+	"github.com/boltdb/bolt"
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+)
+
+var (
+	// ErrMultipleEndpointsUnsupported is thrown when multiple endpoints specified for
+	// BoltDB. Endpoint has to be a local file path
+	ErrMultipleEndpointsUnsupported = errors.New("boltdb supports one endpoint and should be a file path")
+	// ErrBoltBucketOptionMissing is thrown when boltBcuket config option is missing
+	ErrBoltBucketOptionMissing = errors.New("boltBucket config option missing")
+)
+
+const (
+	filePerm os.FileMode = 0644
+)
+
+//BoltDB type implements the Store interface
+type BoltDB struct {
+	client     *bolt.DB
+	boltBucket []byte
+	dbIndex    uint64
+	path       string
+	timeout    time.Duration
+	// By default libkv opens and closes the bolt DB connection  for every
+	// get/put operation. This allows multiple apps to use a Bolt DB at the
+	// same time.
+	// PersistConnection flag provides an option to override ths behavior.
+	// ie: open the connection in New and use it till Close is called.
+	PersistConnection bool
+	sync.Mutex
+}
+
+const (
+	libkvmetadatalen = 8
+	transientTimeout = time.Duration(10) * time.Second
+)
+
+// Register registers boltdb to libkv
+func Register() {
+	libkv.AddStore(store.BOLTDB, New)
+}
+
+// New opens a new BoltDB connection to the specified path and bucket
+func New(endpoints []string, options *store.Config) (store.Store, error) {
+	var (
+		db          *bolt.DB
+		err         error
+		boltOptions *bolt.Options
+	)
+
+	if len(endpoints) > 1 {
+		return nil, ErrMultipleEndpointsUnsupported
+	}
+
+	if (options == nil) || (len(options.Bucket) == 0) {
+		return nil, ErrBoltBucketOptionMissing
+	}
+
+	dir, _ := filepath.Split(endpoints[0])
+	if err = os.MkdirAll(dir, 0750); err != nil {
+		return nil, err
+	}
+
+	if options.PersistConnection {
+		boltOptions = &bolt.Options{Timeout: options.ConnectionTimeout}
+		db, err = bolt.Open(endpoints[0], filePerm, boltOptions)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	b := &BoltDB{
+		client:            db,
+		path:              endpoints[0],
+		boltBucket:        []byte(options.Bucket),
+		timeout:           transientTimeout,
+		PersistConnection: options.PersistConnection,
+	}
+
+	return b, nil
+}
+
+func (b *BoltDB) reset() {
+	b.path = ""
+	b.boltBucket = []byte{}
+}
+
+func (b *BoltDB) getDBhandle() (*bolt.DB, error) {
+	var (
+		db  *bolt.DB
+		err error
+	)
+	if !b.PersistConnection {
+		boltOptions := &bolt.Options{Timeout: b.timeout}
+		if db, err = bolt.Open(b.path, filePerm, boltOptions); err != nil {
+			return nil, err
+		}
+		b.client = db
+	}
+
+	return b.client, nil
+}
+
+func (b *BoltDB) releaseDBhandle() {
+	if !b.PersistConnection {
+		b.client.Close()
+	}
+}
+
+// Get the value at "key". BoltDB doesn't provide an inbuilt last modified index with every kv pair. Its implemented by
+// by a atomic counter maintained by the libkv and appened to the value passed by the client.
+func (b *BoltDB) Get(key string) (*store.KVPair, error) {
+	var (
+		val []byte
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	if db, err = b.getDBhandle(); err != nil {
+		return nil, err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.View(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+
+		v := bucket.Get([]byte(key))
+		val = make([]byte, len(v))
+		copy(val, v)
+
+		return nil
+	})
+
+	if len(val) == 0 {
+		return nil, store.ErrKeyNotFound
+	}
+	if err != nil {
+		return nil, err
+	}
+
+	dbIndex := binary.LittleEndian.Uint64(val[:libkvmetadatalen])
+	val = val[libkvmetadatalen:]
+
+	return &store.KVPair{Key: key, Value: val, LastIndex: (dbIndex)}, nil
+}
+
+//Put the key, value pair. index number metadata is prepended to the value
+func (b *BoltDB) Put(key string, value []byte, opts *store.WriteOptions) error {
+	var (
+		dbIndex uint64
+		db      *bolt.DB
+		err     error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	dbval := make([]byte, libkvmetadatalen)
+
+	if db, err = b.getDBhandle(); err != nil {
+		return err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.Update(func(tx *bolt.Tx) error {
+		bucket, err := tx.CreateBucketIfNotExists(b.boltBucket)
+		if err != nil {
+			return err
+		}
+
+		dbIndex = atomic.AddUint64(&b.dbIndex, 1)
+		binary.LittleEndian.PutUint64(dbval, dbIndex)
+		dbval = append(dbval, value...)
+
+		err = bucket.Put([]byte(key), dbval)
+		if err != nil {
+			return err
+		}
+		return nil
+	})
+	return err
+}
+
+//Delete the value for the given key.
+func (b *BoltDB) Delete(key string) error {
+	var (
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	if db, err = b.getDBhandle(); err != nil {
+		return err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.Update(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+		err := bucket.Delete([]byte(key))
+		return err
+	})
+	return err
+}
+
+// Exists checks if the key exists inside the store
+func (b *BoltDB) Exists(key string) (bool, error) {
+	var (
+		val []byte
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	if db, err = b.getDBhandle(); err != nil {
+		return false, err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.View(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+
+		val = bucket.Get([]byte(key))
+
+		return nil
+	})
+
+	if len(val) == 0 {
+		return false, err
+	}
+	return true, err
+}
+
+// List returns the range of keys starting with the passed in prefix
+func (b *BoltDB) List(keyPrefix string) ([]*store.KVPair, error) {
+	var (
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	kv := []*store.KVPair{}
+
+	if db, err = b.getDBhandle(); err != nil {
+		return nil, err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.View(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+
+		cursor := bucket.Cursor()
+		prefix := []byte(keyPrefix)
+
+		for key, v := cursor.Seek(prefix); bytes.HasPrefix(key, prefix); key, v = cursor.Next() {
+
+			dbIndex := binary.LittleEndian.Uint64(v[:libkvmetadatalen])
+			v = v[libkvmetadatalen:]
+			val := make([]byte, len(v))
+			copy(val, v)
+
+			kv = append(kv, &store.KVPair{
+				Key:       string(key),
+				Value:     val,
+				LastIndex: dbIndex,
+			})
+		}
+		return nil
+	})
+	if len(kv) == 0 {
+		return nil, store.ErrKeyNotFound
+	}
+	return kv, err
+}
+
+// AtomicDelete deletes a value at "key" if the key
+// has not been modified in the meantime, throws an
+// error if this is the case
+func (b *BoltDB) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
+	var (
+		val []byte
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	if previous == nil {
+		return false, store.ErrPreviousNotSpecified
+	}
+	if db, err = b.getDBhandle(); err != nil {
+		return false, err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.Update(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+
+		val = bucket.Get([]byte(key))
+		if val == nil {
+			return store.ErrKeyNotFound
+		}
+		dbIndex := binary.LittleEndian.Uint64(val[:libkvmetadatalen])
+		if dbIndex != previous.LastIndex {
+			return store.ErrKeyModified
+		}
+		err := bucket.Delete([]byte(key))
+		return err
+	})
+	if err != nil {
+		return false, err
+	}
+	return true, err
+}
+
+// AtomicPut puts a value at "key" if the key has not been
+// modified since the last Put, throws an error if this is the case
+func (b *BoltDB) AtomicPut(key string, value []byte, previous *store.KVPair, options *store.WriteOptions) (bool, *store.KVPair, error) {
+	var (
+		val     []byte
+		dbIndex uint64
+		db      *bolt.DB
+		err     error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	dbval := make([]byte, libkvmetadatalen)
+
+	if db, err = b.getDBhandle(); err != nil {
+		return false, nil, err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.Update(func(tx *bolt.Tx) error {
+		var err error
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			if previous != nil {
+				return store.ErrKeyNotFound
+			}
+			bucket, err = tx.CreateBucket(b.boltBucket)
+			if err != nil {
+				return err
+			}
+		}
+		// AtomicPut is equivalent to Put if previous is nil and the Ky
+		// doesn't exist in the DB.
+		val = bucket.Get([]byte(key))
+		if previous == nil && len(val) != 0 {
+			return store.ErrKeyExists
+		}
+		if previous != nil {
+			if len(val) == 0 {
+				return store.ErrKeyNotFound
+			}
+			dbIndex = binary.LittleEndian.Uint64(val[:libkvmetadatalen])
+			if dbIndex != previous.LastIndex {
+				return store.ErrKeyModified
+			}
+		}
+		dbIndex = atomic.AddUint64(&b.dbIndex, 1)
+		binary.LittleEndian.PutUint64(dbval, b.dbIndex)
+		dbval = append(dbval, value...)
+		return (bucket.Put([]byte(key), dbval))
+	})
+	if err != nil {
+		return false, nil, err
+	}
+
+	updated := &store.KVPair{
+		Key:       key,
+		Value:     value,
+		LastIndex: dbIndex,
+	}
+
+	return true, updated, nil
+}
+
+// Close the db connection to the BoltDB
+func (b *BoltDB) Close() {
+	b.Lock()
+	defer b.Unlock()
+
+	if !b.PersistConnection {
+		b.reset()
+	} else {
+		b.client.Close()
+	}
+	return
+}
+
+// DeleteTree deletes a range of keys with a given prefix
+func (b *BoltDB) DeleteTree(keyPrefix string) error {
+	var (
+		db  *bolt.DB
+		err error
+	)
+	b.Lock()
+	defer b.Unlock()
+
+	if db, err = b.getDBhandle(); err != nil {
+		return err
+	}
+	defer b.releaseDBhandle()
+
+	err = db.Update(func(tx *bolt.Tx) error {
+		bucket := tx.Bucket(b.boltBucket)
+		if bucket == nil {
+			return store.ErrKeyNotFound
+		}
+
+		cursor := bucket.Cursor()
+		prefix := []byte(keyPrefix)
+
+		for key, _ := cursor.Seek(prefix); bytes.HasPrefix(key, prefix); key, _ = cursor.Next() {
+			_ = bucket.Delete([]byte(key))
+		}
+		return nil
+	})
+
+	return err
+}
+
+// NewLock has to implemented at the library level since its not supported by BoltDB
+func (b *BoltDB) NewLock(key string, options *store.LockOptions) (store.Locker, error) {
+	return nil, store.ErrCallNotSupported
+}
+
+// Watch has to implemented at the library level since its not supported by BoltDB
+func (b *BoltDB) Watch(key string, stopCh <-chan struct{}) (<-chan *store.KVPair, error) {
+	return nil, store.ErrCallNotSupported
+}
+
+// WatchTree has to implemented at the library level since its not supported by BoltDB
+func (b *BoltDB) WatchTree(directory string, stopCh <-chan struct{}) (<-chan []*store.KVPair, error) {
+	return nil, store.ErrCallNotSupported
+}
diff --git a/vendor/github.com/docker/libkv/store/consul/consul.go b/vendor/github.com/docker/libkv/store/consul/consul.go
new file mode 100644
index 0000000000..cb64be72d6
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/consul/consul.go
@@ -0,0 +1,558 @@
+package consul
+
+import (
+	"crypto/tls"
+	"errors"
+	"net/http"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+	api "github.com/hashicorp/consul/api"
+)
+
+const (
+	// DefaultWatchWaitTime is how long we block for at a
+	// time to check if the watched key has changed. This
+	// affects the minimum time it takes to cancel a watch.
+	DefaultWatchWaitTime = 15 * time.Second
+
+	// RenewSessionRetryMax is the number of time we should try
+	// to renew the session before giving up and throwing an error
+	RenewSessionRetryMax = 5
+
+	// MaxSessionDestroyAttempts is the maximum times we will try
+	// to explicitely destroy the session attached to a lock after
+	// the connectivity to the store has been lost
+	MaxSessionDestroyAttempts = 5
+
+	// defaultLockTTL is the default ttl for the consul lock
+	defaultLockTTL = 20 * time.Second
+)
+
+var (
+	// ErrMultipleEndpointsUnsupported is thrown when there are
+	// multiple endpoints specified for Consul
+	ErrMultipleEndpointsUnsupported = errors.New("consul does not support multiple endpoints")
+
+	// ErrSessionRenew is thrown when the session can't be
+	// renewed because the Consul version does not support sessions
+	ErrSessionRenew = errors.New("cannot set or renew session for ttl, unable to operate on sessions")
+)
+
+// Consul is the receiver type for the
+// Store interface
+type Consul struct {
+	sync.Mutex
+	config *api.Config
+	client *api.Client
+}
+
+type consulLock struct {
+	lock    *api.Lock
+	renewCh chan struct{}
+}
+
+// Register registers consul to libkv
+func Register() {
+	libkv.AddStore(store.CONSUL, New)
+}
+
+// New creates a new Consul client given a list
+// of endpoints and optional tls config
+func New(endpoints []string, options *store.Config) (store.Store, error) {
+	if len(endpoints) > 1 {
+		return nil, ErrMultipleEndpointsUnsupported
+	}
+
+	s := &Consul{}
+
+	// Create Consul client
+	config := api.DefaultConfig()
+	s.config = config
+	config.HttpClient = http.DefaultClient
+	config.Address = endpoints[0]
+	config.Scheme = "http"
+
+	// Set options
+	if options != nil {
+		if options.TLS != nil {
+			s.setTLS(options.TLS)
+		}
+		if options.ConnectionTimeout != 0 {
+			s.setTimeout(options.ConnectionTimeout)
+		}
+	}
+
+	// Creates a new client
+	client, err := api.NewClient(config)
+	if err != nil {
+		return nil, err
+	}
+	s.client = client
+
+	return s, nil
+}
+
+// SetTLS sets Consul TLS options
+func (s *Consul) setTLS(tls *tls.Config) {
+	s.config.HttpClient.Transport = &http.Transport{
+		TLSClientConfig: tls,
+	}
+	s.config.Scheme = "https"
+}
+
+// SetTimeout sets the timeout for connecting to Consul
+func (s *Consul) setTimeout(time time.Duration) {
+	s.config.WaitTime = time
+}
+
+// Normalize the key for usage in Consul
+func (s *Consul) normalize(key string) string {
+	key = store.Normalize(key)
+	return strings.TrimPrefix(key, "/")
+}
+
+func (s *Consul) renewSession(pair *api.KVPair, ttl time.Duration) error {
+	// Check if there is any previous session with an active TTL
+	session, err := s.getActiveSession(pair.Key)
+	if err != nil {
+		return err
+	}
+
+	if session == "" {
+		entry := &api.SessionEntry{
+			Behavior:  api.SessionBehaviorDelete, // Delete the key when the session expires
+			TTL:       (ttl / 2).String(),        // Consul multiplies the TTL by 2x
+			LockDelay: 1 * time.Millisecond,      // Virtually disable lock delay
+		}
+
+		// Create the key session
+		session, _, err = s.client.Session().Create(entry, nil)
+		if err != nil {
+			return err
+		}
+
+		lockOpts := &api.LockOptions{
+			Key:     pair.Key,
+			Session: session,
+		}
+
+		// Lock and ignore if lock is held
+		// It's just a placeholder for the
+		// ephemeral behavior
+		lock, _ := s.client.LockOpts(lockOpts)
+		if lock != nil {
+			lock.Lock(nil)
+		}
+	}
+
+	_, _, err = s.client.Session().Renew(session, nil)
+	return err
+}
+
+// getActiveSession checks if the key already has
+// a session attached
+func (s *Consul) getActiveSession(key string) (string, error) {
+	pair, _, err := s.client.KV().Get(key, nil)
+	if err != nil {
+		return "", err
+	}
+	if pair != nil && pair.Session != "" {
+		return pair.Session, nil
+	}
+	return "", nil
+}
+
+// Get the value at "key", returns the last modified index
+// to use in conjunction to CAS calls
+func (s *Consul) Get(key string) (*store.KVPair, error) {
+	options := &api.QueryOptions{
+		AllowStale:        false,
+		RequireConsistent: true,
+	}
+
+	pair, meta, err := s.client.KV().Get(s.normalize(key), options)
+	if err != nil {
+		return nil, err
+	}
+
+	// If pair is nil then the key does not exist
+	if pair == nil {
+		return nil, store.ErrKeyNotFound
+	}
+
+	return &store.KVPair{Key: pair.Key, Value: pair.Value, LastIndex: meta.LastIndex}, nil
+}
+
+// Put a value at "key"
+func (s *Consul) Put(key string, value []byte, opts *store.WriteOptions) error {
+	key = s.normalize(key)
+
+	p := &api.KVPair{
+		Key:   key,
+		Value: value,
+		Flags: api.LockFlagValue,
+	}
+
+	if opts != nil && opts.TTL > 0 {
+		// Create or renew a session holding a TTL. Operations on sessions
+		// are not deterministic: creating or renewing a session can fail
+		for retry := 1; retry <= RenewSessionRetryMax; retry++ {
+			err := s.renewSession(p, opts.TTL)
+			if err == nil {
+				break
+			}
+			if retry == RenewSessionRetryMax {
+				return ErrSessionRenew
+			}
+		}
+	}
+
+	_, err := s.client.KV().Put(p, nil)
+	return err
+}
+
+// Delete a value at "key"
+func (s *Consul) Delete(key string) error {
+	if _, err := s.Get(key); err != nil {
+		return err
+	}
+	_, err := s.client.KV().Delete(s.normalize(key), nil)
+	return err
+}
+
+// Exists checks that the key exists inside the store
+func (s *Consul) Exists(key string) (bool, error) {
+	_, err := s.Get(key)
+	if err != nil {
+		if err == store.ErrKeyNotFound {
+			return false, nil
+		}
+		return false, err
+	}
+	return true, nil
+}
+
+// List child nodes of a given directory
+func (s *Consul) List(directory string) ([]*store.KVPair, error) {
+	pairs, _, err := s.client.KV().List(s.normalize(directory), nil)
+	if err != nil {
+		return nil, err
+	}
+	if len(pairs) == 0 {
+		return nil, store.ErrKeyNotFound
+	}
+
+	kv := []*store.KVPair{}
+
+	for _, pair := range pairs {
+		if pair.Key == directory {
+			continue
+		}
+		kv = append(kv, &store.KVPair{
+			Key:       pair.Key,
+			Value:     pair.Value,
+			LastIndex: pair.ModifyIndex,
+		})
+	}
+
+	return kv, nil
+}
+
+// DeleteTree deletes a range of keys under a given directory
+func (s *Consul) DeleteTree(directory string) error {
+	if _, err := s.List(directory); err != nil {
+		return err
+	}
+	_, err := s.client.KV().DeleteTree(s.normalize(directory), nil)
+	return err
+}
+
+// Watch for changes on a "key"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creation, the current value will first
+// be sent to the channel. Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Consul) Watch(key string, stopCh <-chan struct{}) (<-chan *store.KVPair, error) {
+	kv := s.client.KV()
+	watchCh := make(chan *store.KVPair)
+
+	go func() {
+		defer close(watchCh)
+
+		// Use a wait time in order to check if we should quit
+		// from time to time.
+		opts := &api.QueryOptions{WaitTime: DefaultWatchWaitTime}
+
+		for {
+			// Check if we should quit
+			select {
+			case <-stopCh:
+				return
+			default:
+			}
+
+			// Get the key
+			pair, meta, err := kv.Get(key, opts)
+			if err != nil {
+				return
+			}
+
+			// If LastIndex didn't change then it means `Get` returned
+			// because of the WaitTime and the key didn't changed.
+			if opts.WaitIndex == meta.LastIndex {
+				continue
+			}
+			opts.WaitIndex = meta.LastIndex
+
+			// Return the value to the channel
+			// FIXME: What happens when a key is deleted?
+			if pair != nil {
+				watchCh <- &store.KVPair{
+					Key:       pair.Key,
+					Value:     pair.Value,
+					LastIndex: pair.ModifyIndex,
+				}
+			}
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// WatchTree watches for changes on a "directory"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creating a watch, the current childs values
+// will be sent to the channel .Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Consul) WatchTree(directory string, stopCh <-chan struct{}) (<-chan []*store.KVPair, error) {
+	kv := s.client.KV()
+	watchCh := make(chan []*store.KVPair)
+
+	go func() {
+		defer close(watchCh)
+
+		// Use a wait time in order to check if we should quit
+		// from time to time.
+		opts := &api.QueryOptions{WaitTime: DefaultWatchWaitTime}
+		for {
+			// Check if we should quit
+			select {
+			case <-stopCh:
+				return
+			default:
+			}
+
+			// Get all the childrens
+			pairs, meta, err := kv.List(directory, opts)
+			if err != nil {
+				return
+			}
+
+			// If LastIndex didn't change then it means `Get` returned
+			// because of the WaitTime and the child keys didn't change.
+			if opts.WaitIndex == meta.LastIndex {
+				continue
+			}
+			opts.WaitIndex = meta.LastIndex
+
+			// Return children KV pairs to the channel
+			kvpairs := []*store.KVPair{}
+			for _, pair := range pairs {
+				if pair.Key == directory {
+					continue
+				}
+				kvpairs = append(kvpairs, &store.KVPair{
+					Key:       pair.Key,
+					Value:     pair.Value,
+					LastIndex: pair.ModifyIndex,
+				})
+			}
+			watchCh <- kvpairs
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// NewLock returns a handle to a lock struct which can
+// be used to provide mutual exclusion on a key
+func (s *Consul) NewLock(key string, options *store.LockOptions) (store.Locker, error) {
+	lockOpts := &api.LockOptions{
+		Key: s.normalize(key),
+	}
+
+	lock := &consulLock{}
+
+	ttl := defaultLockTTL
+
+	if options != nil {
+		// Set optional TTL on Lock
+		if options.TTL != 0 {
+			ttl = options.TTL
+		}
+		// Set optional value on Lock
+		if options.Value != nil {
+			lockOpts.Value = options.Value
+		}
+	}
+
+	entry := &api.SessionEntry{
+		Behavior:  api.SessionBehaviorRelease, // Release the lock when the session expires
+		TTL:       (ttl / 2).String(),         // Consul multiplies the TTL by 2x
+		LockDelay: 1 * time.Millisecond,       // Virtually disable lock delay
+	}
+
+	// Create the key session
+	session, _, err := s.client.Session().Create(entry, nil)
+	if err != nil {
+		return nil, err
+	}
+
+	// Place the session and renew chan on lock
+	lockOpts.Session = session
+	lock.renewCh = options.RenewLock
+
+	l, err := s.client.LockOpts(lockOpts)
+	if err != nil {
+		return nil, err
+	}
+
+	// Renew the session ttl lock periodically
+	s.renewLockSession(entry.TTL, session, options.RenewLock)
+
+	lock.lock = l
+	return lock, nil
+}
+
+// renewLockSession is used to renew a session Lock, it takes
+// a stopRenew chan which is used to explicitely stop the session
+// renew process. The renew routine never stops until a signal is
+// sent to this channel. If deleting the session fails because the
+// connection to the store is lost, it keeps trying to delete the
+// session periodically until it can contact the store, this ensures
+// that the lock is not maintained indefinitely which ensures liveness
+// over safety for the lock when the store becomes unavailable.
+func (s *Consul) renewLockSession(initialTTL string, id string, stopRenew chan struct{}) {
+	sessionDestroyAttempts := 0
+	ttl, err := time.ParseDuration(initialTTL)
+	if err != nil {
+		return
+	}
+	go func() {
+		for {
+			select {
+			case <-time.After(ttl / 2):
+				entry, _, err := s.client.Session().Renew(id, nil)
+				if err != nil {
+					// If an error occurs, continue until the
+					// session gets destroyed explicitely or
+					// the session ttl times out
+					continue
+				}
+				if entry == nil {
+					return
+				}
+
+				// Handle the server updating the TTL
+				ttl, _ = time.ParseDuration(entry.TTL)
+
+			case <-stopRenew:
+				// Attempt a session destroy
+				_, err := s.client.Session().Destroy(id, nil)
+				if err == nil {
+					return
+				}
+
+				if sessionDestroyAttempts >= MaxSessionDestroyAttempts {
+					return
+				}
+
+				// We can't destroy the session because the store
+				// is unavailable, wait for the session renew period
+				sessionDestroyAttempts++
+				time.Sleep(ttl / 2)
+			}
+		}
+	}()
+}
+
+// Lock attempts to acquire the lock and blocks while
+// doing so. It returns a channel that is closed if our
+// lock is lost or if an error occurs
+func (l *consulLock) Lock(stopChan chan struct{}) (<-chan struct{}, error) {
+	return l.lock.Lock(stopChan)
+}
+
+// Unlock the "key". Calling unlock while
+// not holding the lock will throw an error
+func (l *consulLock) Unlock() error {
+	if l.renewCh != nil {
+		close(l.renewCh)
+	}
+	return l.lock.Unlock()
+}
+
+// AtomicPut put a value at "key" if the key has not been
+// modified in the meantime, throws an error if this is the case
+func (s *Consul) AtomicPut(key string, value []byte, previous *store.KVPair, options *store.WriteOptions) (bool, *store.KVPair, error) {
+
+	p := &api.KVPair{Key: s.normalize(key), Value: value, Flags: api.LockFlagValue}
+
+	if previous == nil {
+		// Consul interprets ModifyIndex = 0 as new key.
+		p.ModifyIndex = 0
+	} else {
+		p.ModifyIndex = previous.LastIndex
+	}
+
+	ok, _, err := s.client.KV().CAS(p, nil)
+	if err != nil {
+		return false, nil, err
+	}
+	if !ok {
+		if previous == nil {
+			return false, nil, store.ErrKeyExists
+		}
+		return false, nil, store.ErrKeyModified
+	}
+
+	pair, err := s.Get(key)
+	if err != nil {
+		return false, nil, err
+	}
+
+	return true, pair, nil
+}
+
+// AtomicDelete deletes a value at "key" if the key has not
+// been modified in the meantime, throws an error if this is the case
+func (s *Consul) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
+	if previous == nil {
+		return false, store.ErrPreviousNotSpecified
+	}
+
+	p := &api.KVPair{Key: s.normalize(key), ModifyIndex: previous.LastIndex, Flags: api.LockFlagValue}
+
+	// Extra Get operation to check on the key
+	_, err := s.Get(key)
+	if err != nil && err == store.ErrKeyNotFound {
+		return false, err
+	}
+
+	if work, _, err := s.client.KV().DeleteCAS(p, nil); err != nil {
+		return false, err
+	} else if !work {
+		return false, store.ErrKeyModified
+	}
+
+	return true, nil
+}
+
+// Close closes the client connection
+func (s *Consul) Close() {
+	return
+}
diff --git a/vendor/github.com/docker/libkv/store/etcd/etcd.go b/vendor/github.com/docker/libkv/store/etcd/etcd.go
new file mode 100644
index 0000000000..c932ca665e
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/etcd/etcd.go
@@ -0,0 +1,606 @@
+package etcd
+
+import (
+	"crypto/tls"
+	"errors"
+	"log"
+	"net"
+	"net/http"
+	"strings"
+	"time"
+
+	"golang.org/x/net/context"
+
+	etcd "github.com/coreos/etcd/client"
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+)
+
+var (
+	// ErrAbortTryLock is thrown when a user stops trying to seek the lock
+	// by sending a signal to the stop chan, this is used to verify if the
+	// operation succeeded
+	ErrAbortTryLock = errors.New("lock operation aborted")
+)
+
+// Etcd is the receiver type for the
+// Store interface
+type Etcd struct {
+	client etcd.KeysAPI
+}
+
+type etcdLock struct {
+	client    etcd.KeysAPI
+	stopLock  chan struct{}
+	stopRenew chan struct{}
+	key       string
+	value     string
+	last      *etcd.Response
+	ttl       time.Duration
+}
+
+const (
+	periodicSync      = 5 * time.Minute
+	defaultLockTTL    = 20 * time.Second
+	defaultUpdateTime = 5 * time.Second
+)
+
+// Register registers etcd to libkv
+func Register() {
+	libkv.AddStore(store.ETCD, New)
+}
+
+// New creates a new Etcd client given a list
+// of endpoints and an optional tls config
+func New(addrs []string, options *store.Config) (store.Store, error) {
+	s := &Etcd{}
+
+	var (
+		entries []string
+		err     error
+	)
+
+	entries = store.CreateEndpoints(addrs, "http")
+	cfg := &etcd.Config{
+		Endpoints:               entries,
+		Transport:               etcd.DefaultTransport,
+		HeaderTimeoutPerRequest: 3 * time.Second,
+	}
+
+	// Set options
+	if options != nil {
+		if options.TLS != nil {
+			setTLS(cfg, options.TLS, addrs)
+		}
+		if options.ConnectionTimeout != 0 {
+			setTimeout(cfg, options.ConnectionTimeout)
+		}
+		if options.Username != "" {
+			setCredentials(cfg, options.Username, options.Password)
+		}
+	}
+
+	c, err := etcd.New(*cfg)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	s.client = etcd.NewKeysAPI(c)
+
+	// Periodic Cluster Sync
+	go func() {
+		for {
+			if err := c.AutoSync(context.Background(), periodicSync); err != nil {
+				return
+			}
+		}
+	}()
+
+	return s, nil
+}
+
+// SetTLS sets the tls configuration given a tls.Config scheme
+func setTLS(cfg *etcd.Config, tls *tls.Config, addrs []string) {
+	entries := store.CreateEndpoints(addrs, "https")
+	cfg.Endpoints = entries
+
+	// Set transport
+	t := http.Transport{
+		Dial: (&net.Dialer{
+			Timeout:   30 * time.Second,
+			KeepAlive: 30 * time.Second,
+		}).Dial,
+		TLSHandshakeTimeout: 10 * time.Second,
+		TLSClientConfig:     tls,
+	}
+
+	cfg.Transport = &t
+}
+
+// setTimeout sets the timeout used for connecting to the store
+func setTimeout(cfg *etcd.Config, time time.Duration) {
+	cfg.HeaderTimeoutPerRequest = time
+}
+
+// setCredentials sets the username/password credentials for connecting to Etcd
+func setCredentials(cfg *etcd.Config, username, password string) {
+	cfg.Username = username
+	cfg.Password = password
+}
+
+// Normalize the key for usage in Etcd
+func (s *Etcd) normalize(key string) string {
+	key = store.Normalize(key)
+	return strings.TrimPrefix(key, "/")
+}
+
+// keyNotFound checks on the error returned by the KeysAPI
+// to verify if the key exists in the store or not
+func keyNotFound(err error) bool {
+	if err != nil {
+		if etcdError, ok := err.(etcd.Error); ok {
+			if etcdError.Code == etcd.ErrorCodeKeyNotFound ||
+				etcdError.Code == etcd.ErrorCodeNotFile ||
+				etcdError.Code == etcd.ErrorCodeNotDir {
+				return true
+			}
+		}
+	}
+	return false
+}
+
+// Get the value at "key", returns the last modified
+// index to use in conjunction to Atomic calls
+func (s *Etcd) Get(key string) (pair *store.KVPair, err error) {
+	getOpts := &etcd.GetOptions{
+		Quorum: true,
+	}
+
+	result, err := s.client.Get(context.Background(), s.normalize(key), getOpts)
+	if err != nil {
+		if keyNotFound(err) {
+			return nil, store.ErrKeyNotFound
+		}
+		return nil, err
+	}
+
+	pair = &store.KVPair{
+		Key:       key,
+		Value:     []byte(result.Node.Value),
+		LastIndex: result.Node.ModifiedIndex,
+	}
+
+	return pair, nil
+}
+
+// Put a value at "key"
+func (s *Etcd) Put(key string, value []byte, opts *store.WriteOptions) error {
+	setOpts := &etcd.SetOptions{}
+
+	// Set options
+	if opts != nil {
+		setOpts.Dir = opts.IsDir
+		setOpts.TTL = opts.TTL
+	}
+
+	_, err := s.client.Set(context.Background(), s.normalize(key), string(value), setOpts)
+	return err
+}
+
+// Delete a value at "key"
+func (s *Etcd) Delete(key string) error {
+	opts := &etcd.DeleteOptions{
+		Recursive: false,
+	}
+
+	_, err := s.client.Delete(context.Background(), s.normalize(key), opts)
+	if keyNotFound(err) {
+		return store.ErrKeyNotFound
+	}
+	return err
+}
+
+// Exists checks if the key exists inside the store
+func (s *Etcd) Exists(key string) (bool, error) {
+	_, err := s.Get(key)
+	if err != nil {
+		if err == store.ErrKeyNotFound {
+			return false, nil
+		}
+		return false, err
+	}
+	return true, nil
+}
+
+// Watch for changes on a "key"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creation, the current value will first
+// be sent to the channel. Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Etcd) Watch(key string, stopCh <-chan struct{}) (<-chan *store.KVPair, error) {
+	opts := &etcd.WatcherOptions{Recursive: false}
+	watcher := s.client.Watcher(s.normalize(key), opts)
+
+	// watchCh is sending back events to the caller
+	watchCh := make(chan *store.KVPair)
+
+	go func() {
+		defer close(watchCh)
+
+		// Get the current value
+		pair, err := s.Get(key)
+		if err != nil {
+			return
+		}
+
+		// Push the current value through the channel.
+		watchCh <- pair
+
+		for {
+			// Check if the watch was stopped by the caller
+			select {
+			case <-stopCh:
+				return
+			default:
+			}
+
+			result, err := watcher.Next(context.Background())
+
+			if err != nil {
+				return
+			}
+
+			watchCh <- &store.KVPair{
+				Key:       key,
+				Value:     []byte(result.Node.Value),
+				LastIndex: result.Node.ModifiedIndex,
+			}
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// WatchTree watches for changes on a "directory"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creating a watch, the current childs values
+// will be sent to the channel. Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Etcd) WatchTree(directory string, stopCh <-chan struct{}) (<-chan []*store.KVPair, error) {
+	watchOpts := &etcd.WatcherOptions{Recursive: true}
+	watcher := s.client.Watcher(s.normalize(directory), watchOpts)
+
+	// watchCh is sending back events to the caller
+	watchCh := make(chan []*store.KVPair)
+
+	go func() {
+		defer close(watchCh)
+
+		// Get child values
+		list, err := s.List(directory)
+		if err != nil {
+			return
+		}
+
+		// Push the current value through the channel.
+		watchCh <- list
+
+		for {
+			// Check if the watch was stopped by the caller
+			select {
+			case <-stopCh:
+				return
+			default:
+			}
+
+			_, err := watcher.Next(context.Background())
+
+			if err != nil {
+				return
+			}
+
+			list, err = s.List(directory)
+			if err != nil {
+				return
+			}
+
+			watchCh <- list
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// AtomicPut puts a value at "key" if the key has not been
+// modified in the meantime, throws an error if this is the case
+func (s *Etcd) AtomicPut(key string, value []byte, previous *store.KVPair, opts *store.WriteOptions) (bool, *store.KVPair, error) {
+	var (
+		meta *etcd.Response
+		err  error
+	)
+
+	setOpts := &etcd.SetOptions{}
+
+	if previous != nil {
+		setOpts.PrevExist = etcd.PrevExist
+		setOpts.PrevIndex = previous.LastIndex
+		if previous.Value != nil {
+			setOpts.PrevValue = string(previous.Value)
+		}
+	} else {
+		setOpts.PrevExist = etcd.PrevNoExist
+	}
+
+	if opts != nil {
+		if opts.TTL > 0 {
+			setOpts.TTL = opts.TTL
+		}
+	}
+
+	meta, err = s.client.Set(context.Background(), s.normalize(key), string(value), setOpts)
+	if err != nil {
+		if etcdError, ok := err.(etcd.Error); ok {
+			// Compare failed
+			if etcdError.Code == etcd.ErrorCodeTestFailed {
+				return false, nil, store.ErrKeyModified
+			}
+			// Node exists error (when PrevNoExist)
+			if etcdError.Code == etcd.ErrorCodeNodeExist {
+				return false, nil, store.ErrKeyExists
+			}
+		}
+		return false, nil, err
+	}
+
+	updated := &store.KVPair{
+		Key:       key,
+		Value:     value,
+		LastIndex: meta.Node.ModifiedIndex,
+	}
+
+	return true, updated, nil
+}
+
+// AtomicDelete deletes a value at "key" if the key
+// has not been modified in the meantime, throws an
+// error if this is the case
+func (s *Etcd) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
+	if previous == nil {
+		return false, store.ErrPreviousNotSpecified
+	}
+
+	delOpts := &etcd.DeleteOptions{}
+
+	if previous != nil {
+		delOpts.PrevIndex = previous.LastIndex
+		if previous.Value != nil {
+			delOpts.PrevValue = string(previous.Value)
+		}
+	}
+
+	_, err := s.client.Delete(context.Background(), s.normalize(key), delOpts)
+	if err != nil {
+		if etcdError, ok := err.(etcd.Error); ok {
+			// Key Not Found
+			if etcdError.Code == etcd.ErrorCodeKeyNotFound {
+				return false, store.ErrKeyNotFound
+			}
+			// Compare failed
+			if etcdError.Code == etcd.ErrorCodeTestFailed {
+				return false, store.ErrKeyModified
+			}
+		}
+		return false, err
+	}
+
+	return true, nil
+}
+
+// List child nodes of a given directory
+func (s *Etcd) List(directory string) ([]*store.KVPair, error) {
+	getOpts := &etcd.GetOptions{
+		Quorum:    true,
+		Recursive: true,
+		Sort:      true,
+	}
+
+	resp, err := s.client.Get(context.Background(), s.normalize(directory), getOpts)
+	if err != nil {
+		if keyNotFound(err) {
+			return nil, store.ErrKeyNotFound
+		}
+		return nil, err
+	}
+
+	kv := []*store.KVPair{}
+	for _, n := range resp.Node.Nodes {
+		kv = append(kv, &store.KVPair{
+			Key:       n.Key,
+			Value:     []byte(n.Value),
+			LastIndex: n.ModifiedIndex,
+		})
+	}
+	return kv, nil
+}
+
+// DeleteTree deletes a range of keys under a given directory
+func (s *Etcd) DeleteTree(directory string) error {
+	delOpts := &etcd.DeleteOptions{
+		Recursive: true,
+	}
+
+	_, err := s.client.Delete(context.Background(), s.normalize(directory), delOpts)
+	if keyNotFound(err) {
+		return store.ErrKeyNotFound
+	}
+	return err
+}
+
+// NewLock returns a handle to a lock struct which can
+// be used to provide mutual exclusion on a key
+func (s *Etcd) NewLock(key string, options *store.LockOptions) (lock store.Locker, err error) {
+	var value string
+	ttl := defaultLockTTL
+	renewCh := make(chan struct{})
+
+	// Apply options on Lock
+	if options != nil {
+		if options.Value != nil {
+			value = string(options.Value)
+		}
+		if options.TTL != 0 {
+			ttl = options.TTL
+		}
+		if options.RenewLock != nil {
+			renewCh = options.RenewLock
+		}
+	}
+
+	// Create lock object
+	lock = &etcdLock{
+		client:    s.client,
+		stopRenew: renewCh,
+		key:       s.normalize(key),
+		value:     value,
+		ttl:       ttl,
+	}
+
+	return lock, nil
+}
+
+// Lock attempts to acquire the lock and blocks while
+// doing so. It returns a channel that is closed if our
+// lock is lost or if an error occurs
+func (l *etcdLock) Lock(stopChan chan struct{}) (<-chan struct{}, error) {
+
+	// Lock holder channel
+	lockHeld := make(chan struct{})
+	stopLocking := l.stopRenew
+
+	setOpts := &etcd.SetOptions{
+		TTL: l.ttl,
+	}
+
+	for {
+		setOpts.PrevExist = etcd.PrevNoExist
+		resp, err := l.client.Set(context.Background(), l.key, l.value, setOpts)
+		if err != nil {
+			if etcdError, ok := err.(etcd.Error); ok {
+				if etcdError.Code != etcd.ErrorCodeNodeExist {
+					return nil, err
+				}
+				setOpts.PrevIndex = ^uint64(0)
+			}
+		} else {
+			setOpts.PrevIndex = resp.Node.ModifiedIndex
+		}
+
+		setOpts.PrevExist = etcd.PrevExist
+		l.last, err = l.client.Set(context.Background(), l.key, l.value, setOpts)
+
+		if err == nil {
+			// Leader section
+			l.stopLock = stopLocking
+			go l.holdLock(l.key, lockHeld, stopLocking)
+			break
+		} else {
+			// If this is a legitimate error, return
+			if etcdError, ok := err.(etcd.Error); ok {
+				if etcdError.Code != etcd.ErrorCodeTestFailed {
+					return nil, err
+				}
+			}
+
+			// Seeker section
+			errorCh := make(chan error)
+			chWStop := make(chan bool)
+			free := make(chan bool)
+
+			go l.waitLock(l.key, errorCh, chWStop, free)
+
+			// Wait for the key to be available or for
+			// a signal to stop trying to lock the key
+			select {
+			case <-free:
+				break
+			case err := <-errorCh:
+				return nil, err
+			case <-stopChan:
+				return nil, ErrAbortTryLock
+			}
+
+			// Delete or Expire event occurred
+			// Retry
+		}
+	}
+
+	return lockHeld, nil
+}
+
+// Hold the lock as long as we can
+// Updates the key ttl periodically until we receive
+// an explicit stop signal from the Unlock method
+func (l *etcdLock) holdLock(key string, lockHeld chan struct{}, stopLocking <-chan struct{}) {
+	defer close(lockHeld)
+
+	update := time.NewTicker(l.ttl / 3)
+	defer update.Stop()
+
+	var err error
+	setOpts := &etcd.SetOptions{TTL: l.ttl}
+
+	for {
+		select {
+		case <-update.C:
+			setOpts.PrevIndex = l.last.Node.ModifiedIndex
+			l.last, err = l.client.Set(context.Background(), key, l.value, setOpts)
+			if err != nil {
+				return
+			}
+
+		case <-stopLocking:
+			return
+		}
+	}
+}
+
+// WaitLock simply waits for the key to be available for creation
+func (l *etcdLock) waitLock(key string, errorCh chan error, stopWatchCh chan bool, free chan<- bool) {
+	opts := &etcd.WatcherOptions{Recursive: false}
+	watcher := l.client.Watcher(key, opts)
+
+	for {
+		event, err := watcher.Next(context.Background())
+		if err != nil {
+			errorCh <- err
+			return
+		}
+		if event.Action == "delete" || event.Action == "expire" {
+			free <- true
+			return
+		}
+	}
+}
+
+// Unlock the "key". Calling unlock while
+// not holding the lock will throw an error
+func (l *etcdLock) Unlock() error {
+	if l.stopLock != nil {
+		l.stopLock <- struct{}{}
+	}
+	if l.last != nil {
+		delOpts := &etcd.DeleteOptions{
+			PrevIndex: l.last.Node.ModifiedIndex,
+		}
+		_, err := l.client.Delete(context.Background(), l.key, delOpts)
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// Close closes the client connection
+func (s *Etcd) Close() {
+	return
+}
diff --git a/vendor/github.com/docker/libkv/store/helpers.go b/vendor/github.com/docker/libkv/store/helpers.go
new file mode 100644
index 0000000000..0fb74c9ae1
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/helpers.go
@@ -0,0 +1,47 @@
+package store
+
+import (
+	"strings"
+)
+
+// CreateEndpoints creates a list of endpoints given the right scheme
+func CreateEndpoints(addrs []string, scheme string) (entries []string) {
+	for _, addr := range addrs {
+		entries = append(entries, scheme+"://"+addr)
+	}
+	return entries
+}
+
+// Normalize the key for each store to the form:
+//
+//     /path/to/key
+//
+func Normalize(key string) string {
+	return "/" + join(SplitKey(key))
+}
+
+// GetDirectory gets the full directory part of
+// the key to the form:
+//
+//     /path/to/
+//
+func GetDirectory(key string) string {
+	parts := SplitKey(key)
+	parts = parts[:len(parts)-1]
+	return "/" + join(parts)
+}
+
+// SplitKey splits the key to extract path informations
+func SplitKey(key string) (path []string) {
+	if strings.Contains(key, "/") {
+		path = strings.Split(key, "/")
+	} else {
+		path = []string{key}
+	}
+	return path
+}
+
+// join the path parts with '/'
+func join(parts []string) string {
+	return strings.Join(parts, "/")
+}
diff --git a/vendor/github.com/docker/libkv/store/store.go b/vendor/github.com/docker/libkv/store/store.go
new file mode 100644
index 0000000000..7a4850c019
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/store.go
@@ -0,0 +1,132 @@
+package store
+
+import (
+	"crypto/tls"
+	"errors"
+	"time"
+)
+
+// Backend represents a KV Store Backend
+type Backend string
+
+const (
+	// CONSUL backend
+	CONSUL Backend = "consul"
+	// ETCD backend
+	ETCD Backend = "etcd"
+	// ZK backend
+	ZK Backend = "zk"
+	// BOLTDB backend
+	BOLTDB Backend = "boltdb"
+)
+
+var (
+	// ErrBackendNotSupported is thrown when the backend k/v store is not supported by libkv
+	ErrBackendNotSupported = errors.New("Backend storage not supported yet, please choose one of")
+	// ErrCallNotSupported is thrown when a method is not implemented/supported by the current backend
+	ErrCallNotSupported = errors.New("The current call is not supported with this backend")
+	// ErrNotReachable is thrown when the API cannot be reached for issuing common store operations
+	ErrNotReachable = errors.New("Api not reachable")
+	// ErrCannotLock is thrown when there is an error acquiring a lock on a key
+	ErrCannotLock = errors.New("Error acquiring the lock")
+	// ErrKeyModified is thrown during an atomic operation if the index does not match the one in the store
+	ErrKeyModified = errors.New("Unable to complete atomic operation, key modified")
+	// ErrKeyNotFound is thrown when the key is not found in the store during a Get operation
+	ErrKeyNotFound = errors.New("Key not found in store")
+	// ErrPreviousNotSpecified is thrown when the previous value is not specified for an atomic operation
+	ErrPreviousNotSpecified = errors.New("Previous K/V pair should be provided for the Atomic operation")
+	// ErrKeyExists is thrown when the previous value exists in the case of an AtomicPut
+	ErrKeyExists = errors.New("Previous K/V pair exists, cannot complete Atomic operation")
+)
+
+// Config contains the options for a storage client
+type Config struct {
+	ClientTLS         *ClientTLSConfig
+	TLS               *tls.Config
+	ConnectionTimeout time.Duration
+	Bucket            string
+	PersistConnection bool
+	Username          string
+	Password          string
+}
+
+// ClientTLSConfig contains data for a Client TLS configuration in the form
+// the etcd client wants it.  Eventually we'll adapt it for ZK and Consul.
+type ClientTLSConfig struct {
+	CertFile   string
+	KeyFile    string
+	CACertFile string
+}
+
+// Store represents the backend K/V storage
+// Each store should support every call listed
+// here. Or it couldn't be implemented as a K/V
+// backend for libkv
+type Store interface {
+	// Put a value at the specified key
+	Put(key string, value []byte, options *WriteOptions) error
+
+	// Get a value given its key
+	Get(key string) (*KVPair, error)
+
+	// Delete the value at the specified key
+	Delete(key string) error
+
+	// Verify if a Key exists in the store
+	Exists(key string) (bool, error)
+
+	// Watch for changes on a key
+	Watch(key string, stopCh <-chan struct{}) (<-chan *KVPair, error)
+
+	// WatchTree watches for changes on child nodes under
+	// a given directory
+	WatchTree(directory string, stopCh <-chan struct{}) (<-chan []*KVPair, error)
+
+	// NewLock creates a lock for a given key.
+	// The returned Locker is not held and must be acquired
+	// with `.Lock`. The Value is optional.
+	NewLock(key string, options *LockOptions) (Locker, error)
+
+	// List the content of a given prefix
+	List(directory string) ([]*KVPair, error)
+
+	// DeleteTree deletes a range of keys under a given directory
+	DeleteTree(directory string) error
+
+	// Atomic CAS operation on a single value.
+	// Pass previous = nil to create a new key.
+	AtomicPut(key string, value []byte, previous *KVPair, options *WriteOptions) (bool, *KVPair, error)
+
+	// Atomic delete of a single value
+	AtomicDelete(key string, previous *KVPair) (bool, error)
+
+	// Close the store connection
+	Close()
+}
+
+// KVPair represents {Key, Value, Lastindex} tuple
+type KVPair struct {
+	Key       string
+	Value     []byte
+	LastIndex uint64
+}
+
+// WriteOptions contains optional request parameters
+type WriteOptions struct {
+	IsDir bool
+	TTL   time.Duration
+}
+
+// LockOptions contains optional request parameters
+type LockOptions struct {
+	Value     []byte        // Optional, value to associate with the lock
+	TTL       time.Duration // Optional, expiration ttl associated with the lock
+	RenewLock chan struct{} // Optional, chan used to control and stop the session ttl renewal for the lock
+}
+
+// Locker provides locking mechanism on top of the store.
+// Similar to `sync.Lock` except it may return errors.
+type Locker interface {
+	Lock(stopChan chan struct{}) (<-chan struct{}, error)
+	Unlock() error
+}
diff --git a/vendor/github.com/docker/libkv/store/zookeeper/zookeeper.go b/vendor/github.com/docker/libkv/store/zookeeper/zookeeper.go
new file mode 100644
index 0000000000..ff8d4ebe0f
--- /dev/null
+++ b/vendor/github.com/docker/libkv/store/zookeeper/zookeeper.go
@@ -0,0 +1,429 @@
+package zookeeper
+
+import (
+	"strings"
+	"time"
+
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+	zk "github.com/samuel/go-zookeeper/zk"
+)
+
+const (
+	// SOH control character
+	SOH = "\x01"
+
+	defaultTimeout = 10 * time.Second
+)
+
+// Zookeeper is the receiver type for
+// the Store interface
+type Zookeeper struct {
+	timeout time.Duration
+	client  *zk.Conn
+}
+
+type zookeeperLock struct {
+	client *zk.Conn
+	lock   *zk.Lock
+	key    string
+	value  []byte
+}
+
+// Register registers zookeeper to libkv
+func Register() {
+	libkv.AddStore(store.ZK, New)
+}
+
+// New creates a new Zookeeper client given a
+// list of endpoints and an optional tls config
+func New(endpoints []string, options *store.Config) (store.Store, error) {
+	s := &Zookeeper{}
+	s.timeout = defaultTimeout
+
+	// Set options
+	if options != nil {
+		if options.ConnectionTimeout != 0 {
+			s.setTimeout(options.ConnectionTimeout)
+		}
+	}
+
+	// Connect to Zookeeper
+	conn, _, err := zk.Connect(endpoints, s.timeout)
+	if err != nil {
+		return nil, err
+	}
+	s.client = conn
+
+	return s, nil
+}
+
+// setTimeout sets the timeout for connecting to Zookeeper
+func (s *Zookeeper) setTimeout(time time.Duration) {
+	s.timeout = time
+}
+
+// Get the value at "key", returns the last modified index
+// to use in conjunction to Atomic calls
+func (s *Zookeeper) Get(key string) (pair *store.KVPair, err error) {
+	resp, meta, err := s.client.Get(s.normalize(key))
+
+	if err != nil {
+		if err == zk.ErrNoNode {
+			return nil, store.ErrKeyNotFound
+		}
+		return nil, err
+	}
+
+	// FIXME handle very rare cases where Get returns the
+	// SOH control character instead of the actual value
+	if string(resp) == SOH {
+		return s.Get(store.Normalize(key))
+	}
+
+	pair = &store.KVPair{
+		Key:       key,
+		Value:     resp,
+		LastIndex: uint64(meta.Version),
+	}
+
+	return pair, nil
+}
+
+// createFullPath creates the entire path for a directory
+// that does not exist
+func (s *Zookeeper) createFullPath(path []string, ephemeral bool) error {
+	for i := 1; i <= len(path); i++ {
+		newpath := "/" + strings.Join(path[:i], "/")
+		if i == len(path) && ephemeral {
+			_, err := s.client.Create(newpath, []byte{}, zk.FlagEphemeral, zk.WorldACL(zk.PermAll))
+			return err
+		}
+		_, err := s.client.Create(newpath, []byte{}, 0, zk.WorldACL(zk.PermAll))
+		if err != nil {
+			// Skip if node already exists
+			if err != zk.ErrNodeExists {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+// Put a value at "key"
+func (s *Zookeeper) Put(key string, value []byte, opts *store.WriteOptions) error {
+	fkey := s.normalize(key)
+
+	exists, err := s.Exists(key)
+	if err != nil {
+		return err
+	}
+
+	if !exists {
+		if opts != nil && opts.TTL > 0 {
+			s.createFullPath(store.SplitKey(strings.TrimSuffix(key, "/")), true)
+		} else {
+			s.createFullPath(store.SplitKey(strings.TrimSuffix(key, "/")), false)
+		}
+	}
+
+	_, err = s.client.Set(fkey, value, -1)
+	return err
+}
+
+// Delete a value at "key"
+func (s *Zookeeper) Delete(key string) error {
+	err := s.client.Delete(s.normalize(key), -1)
+	if err == zk.ErrNoNode {
+		return store.ErrKeyNotFound
+	}
+	return err
+}
+
+// Exists checks if the key exists inside the store
+func (s *Zookeeper) Exists(key string) (bool, error) {
+	exists, _, err := s.client.Exists(s.normalize(key))
+	if err != nil {
+		return false, err
+	}
+	return exists, nil
+}
+
+// Watch for changes on a "key"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creation, the current value will first
+// be sent to the channel. Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Zookeeper) Watch(key string, stopCh <-chan struct{}) (<-chan *store.KVPair, error) {
+	// Get the key first
+	pair, err := s.Get(key)
+	if err != nil {
+		return nil, err
+	}
+
+	// Catch zk notifications and fire changes into the channel.
+	watchCh := make(chan *store.KVPair)
+	go func() {
+		defer close(watchCh)
+
+		// Get returns the current value to the channel prior
+		// to listening to any event that may occur on that key
+		watchCh <- pair
+		for {
+			_, _, eventCh, err := s.client.GetW(s.normalize(key))
+			if err != nil {
+				return
+			}
+			select {
+			case e := <-eventCh:
+				if e.Type == zk.EventNodeDataChanged {
+					if entry, err := s.Get(key); err == nil {
+						watchCh <- entry
+					}
+				}
+			case <-stopCh:
+				// There is no way to stop GetW so just quit
+				return
+			}
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// WatchTree watches for changes on a "directory"
+// It returns a channel that will receive changes or pass
+// on errors. Upon creating a watch, the current childs values
+// will be sent to the channel .Providing a non-nil stopCh can
+// be used to stop watching.
+func (s *Zookeeper) WatchTree(directory string, stopCh <-chan struct{}) (<-chan []*store.KVPair, error) {
+	// List the childrens first
+	entries, err := s.List(directory)
+	if err != nil {
+		return nil, err
+	}
+
+	// Catch zk notifications and fire changes into the channel.
+	watchCh := make(chan []*store.KVPair)
+	go func() {
+		defer close(watchCh)
+
+		// List returns the children values to the channel
+		// prior to listening to any events that may occur
+		// on those keys
+		watchCh <- entries
+
+		for {
+			_, _, eventCh, err := s.client.ChildrenW(s.normalize(directory))
+			if err != nil {
+				return
+			}
+			select {
+			case e := <-eventCh:
+				if e.Type == zk.EventNodeChildrenChanged {
+					if kv, err := s.List(directory); err == nil {
+						watchCh <- kv
+					}
+				}
+			case <-stopCh:
+				// There is no way to stop GetW so just quit
+				return
+			}
+		}
+	}()
+
+	return watchCh, nil
+}
+
+// List child nodes of a given directory
+func (s *Zookeeper) List(directory string) ([]*store.KVPair, error) {
+	keys, stat, err := s.client.Children(s.normalize(directory))
+	if err != nil {
+		if err == zk.ErrNoNode {
+			return nil, store.ErrKeyNotFound
+		}
+		return nil, err
+	}
+
+	kv := []*store.KVPair{}
+
+	// FIXME Costly Get request for each child key..
+	for _, key := range keys {
+		pair, err := s.Get(strings.TrimSuffix(directory, "/") + s.normalize(key))
+		if err != nil {
+			// If node is not found: List is out of date, retry
+			if err == store.ErrKeyNotFound {
+				return s.List(directory)
+			}
+			return nil, err
+		}
+
+		kv = append(kv, &store.KVPair{
+			Key:       key,
+			Value:     []byte(pair.Value),
+			LastIndex: uint64(stat.Version),
+		})
+	}
+
+	return kv, nil
+}
+
+// DeleteTree deletes a range of keys under a given directory
+func (s *Zookeeper) DeleteTree(directory string) error {
+	pairs, err := s.List(directory)
+	if err != nil {
+		return err
+	}
+
+	var reqs []interface{}
+
+	for _, pair := range pairs {
+		reqs = append(reqs, &zk.DeleteRequest{
+			Path:    s.normalize(directory + "/" + pair.Key),
+			Version: -1,
+		})
+	}
+
+	_, err = s.client.Multi(reqs...)
+	return err
+}
+
+// AtomicPut put a value at "key" if the key has not been
+// modified in the meantime, throws an error if this is the case
+func (s *Zookeeper) AtomicPut(key string, value []byte, previous *store.KVPair, _ *store.WriteOptions) (bool, *store.KVPair, error) {
+	var lastIndex uint64
+
+	if previous != nil {
+		meta, err := s.client.Set(s.normalize(key), value, int32(previous.LastIndex))
+		if err != nil {
+			// Compare Failed
+			if err == zk.ErrBadVersion {
+				return false, nil, store.ErrKeyModified
+			}
+			return false, nil, err
+		}
+		lastIndex = uint64(meta.Version)
+	} else {
+		// Interpret previous == nil as create operation.
+		_, err := s.client.Create(s.normalize(key), value, 0, zk.WorldACL(zk.PermAll))
+		if err != nil {
+			// Directory does not exist
+			if err == zk.ErrNoNode {
+
+				// Create the directory
+				parts := store.SplitKey(strings.TrimSuffix(key, "/"))
+				parts = parts[:len(parts)-1]
+				if err = s.createFullPath(parts, false); err != nil {
+					// Failed to create the directory.
+					return false, nil, err
+				}
+
+				// Create the node
+				if _, err := s.client.Create(s.normalize(key), value, 0, zk.WorldACL(zk.PermAll)); err != nil {
+					// Node exist error (when previous nil)
+					if err == zk.ErrNodeExists {
+						return false, nil, store.ErrKeyExists
+					}
+					return false, nil, err
+				}
+
+			} else {
+				// Node Exists error (when previous nil)
+				if err == zk.ErrNodeExists {
+					return false, nil, store.ErrKeyExists
+				}
+
+				// Unhandled error
+				return false, nil, err
+			}
+		}
+		lastIndex = 0 // Newly created nodes have version 0.
+	}
+
+	pair := &store.KVPair{
+		Key:       key,
+		Value:     value,
+		LastIndex: lastIndex,
+	}
+
+	return true, pair, nil
+}
+
+// AtomicDelete deletes a value at "key" if the key
+// has not been modified in the meantime, throws an
+// error if this is the case
+func (s *Zookeeper) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
+	if previous == nil {
+		return false, store.ErrPreviousNotSpecified
+	}
+
+	err := s.client.Delete(s.normalize(key), int32(previous.LastIndex))
+	if err != nil {
+		// Key not found
+		if err == zk.ErrNoNode {
+			return false, store.ErrKeyNotFound
+		}
+		// Compare failed
+		if err == zk.ErrBadVersion {
+			return false, store.ErrKeyModified
+		}
+		// General store error
+		return false, err
+	}
+	return true, nil
+}
+
+// NewLock returns a handle to a lock struct which can
+// be used to provide mutual exclusion on a key
+func (s *Zookeeper) NewLock(key string, options *store.LockOptions) (lock store.Locker, err error) {
+	value := []byte("")
+
+	// Apply options
+	if options != nil {
+		if options.Value != nil {
+			value = options.Value
+		}
+	}
+
+	lock = &zookeeperLock{
+		client: s.client,
+		key:    s.normalize(key),
+		value:  value,
+		lock:   zk.NewLock(s.client, s.normalize(key), zk.WorldACL(zk.PermAll)),
+	}
+
+	return lock, err
+}
+
+// Lock attempts to acquire the lock and blocks while
+// doing so. It returns a channel that is closed if our
+// lock is lost or if an error occurs
+func (l *zookeeperLock) Lock(stopChan chan struct{}) (<-chan struct{}, error) {
+	err := l.lock.Lock()
+
+	if err == nil {
+		// We hold the lock, we can set our value
+		// FIXME: The value is left behind
+		// (problematic for leader election)
+		_, err = l.client.Set(l.key, l.value, -1)
+	}
+
+	return make(chan struct{}), err
+}
+
+// Unlock the "key". Calling unlock while
+// not holding the lock will throw an error
+func (l *zookeeperLock) Unlock() error {
+	return l.lock.Unlock()
+}
+
+// Close closes the client connection
+func (s *Zookeeper) Close() {
+	s.client.Close()
+}
+
+// Normalize the key for usage in Zookeeper
+func (s *Zookeeper) normalize(key string) string {
+	key = store.Normalize(key)
+	return strings.TrimSuffix(key, "/")
+}
diff --git a/vendor/github.com/docker/libnetwork/LICENSE b/vendor/github.com/docker/libnetwork/LICENSE
new file mode 100644
index 0000000000..e06d208186
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/LICENSE
@@ -0,0 +1,202 @@
+Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+
diff --git a/vendor/github.com/docker/libnetwork/agent.go b/vendor/github.com/docker/libnetwork/agent.go
new file mode 100644
index 0000000000..c90fa81ff8
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/agent.go
@@ -0,0 +1,975 @@
+package libnetwork
+
+//go:generate protoc -I.:Godeps/_workspace/src/github.com/gogo/protobuf  --gogo_out=import_path=github.com/docker/libnetwork,Mgogoproto/gogo.proto=github.com/gogo/protobuf/gogoproto:. agent.proto
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+	"sort"
+	"sync"
+
+	"github.com/docker/go-events"
+	"github.com/docker/libnetwork/cluster"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/networkdb"
+	"github.com/docker/libnetwork/types"
+	"github.com/gogo/protobuf/proto"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	subsysGossip = "networking:gossip"
+	subsysIPSec  = "networking:ipsec"
+	keyringSize  = 3
+)
+
+// ByTime implements sort.Interface for []*types.EncryptionKey based on
+// the LamportTime field.
+type ByTime []*types.EncryptionKey
+
+func (b ByTime) Len() int           { return len(b) }
+func (b ByTime) Swap(i, j int)      { b[i], b[j] = b[j], b[i] }
+func (b ByTime) Less(i, j int) bool { return b[i].LamportTime < b[j].LamportTime }
+
+type agent struct {
+	networkDB         *networkdb.NetworkDB
+	bindAddr          string
+	advertiseAddr     string
+	dataPathAddr      string
+	coreCancelFuncs   []func()
+	driverCancelFuncs map[string][]func()
+	sync.Mutex
+}
+
+func (a *agent) dataPathAddress() string {
+	a.Lock()
+	defer a.Unlock()
+	if a.dataPathAddr != "" {
+		return a.dataPathAddr
+	}
+	return a.advertiseAddr
+}
+
+const libnetworkEPTable = "endpoint_table"
+
+func getBindAddr(ifaceName string) (string, error) {
+	iface, err := net.InterfaceByName(ifaceName)
+	if err != nil {
+		return "", fmt.Errorf("failed to find interface %s: %v", ifaceName, err)
+	}
+
+	addrs, err := iface.Addrs()
+	if err != nil {
+		return "", fmt.Errorf("failed to get interface addresses: %v", err)
+	}
+
+	for _, a := range addrs {
+		addr, ok := a.(*net.IPNet)
+		if !ok {
+			continue
+		}
+		addrIP := addr.IP
+
+		if addrIP.IsLinkLocalUnicast() {
+			continue
+		}
+
+		return addrIP.String(), nil
+	}
+
+	return "", fmt.Errorf("failed to get bind address")
+}
+
+func resolveAddr(addrOrInterface string) (string, error) {
+	// Try and see if this is a valid IP address
+	if net.ParseIP(addrOrInterface) != nil {
+		return addrOrInterface, nil
+	}
+
+	addr, err := net.ResolveIPAddr("ip", addrOrInterface)
+	if err != nil {
+		// If not a valid IP address, it should be a valid interface
+		return getBindAddr(addrOrInterface)
+	}
+	return addr.String(), nil
+}
+
+func (c *controller) handleKeyChange(keys []*types.EncryptionKey) error {
+	drvEnc := discoverapi.DriverEncryptionUpdate{}
+
+	a := c.getAgent()
+	if a == nil {
+		logrus.Debug("Skipping key change as agent is nil")
+		return nil
+	}
+
+	// Find the deleted key. If the deleted key was the primary key,
+	// a new primary key should be set before removing if from keyring.
+	c.Lock()
+	added := []byte{}
+	deleted := []byte{}
+	j := len(c.keys)
+	for i := 0; i < j; {
+		same := false
+		for _, key := range keys {
+			if same = key.LamportTime == c.keys[i].LamportTime; same {
+				break
+			}
+		}
+		if !same {
+			cKey := c.keys[i]
+			if cKey.Subsystem == subsysGossip {
+				deleted = cKey.Key
+			}
+
+			if cKey.Subsystem == subsysIPSec {
+				drvEnc.Prune = cKey.Key
+				drvEnc.PruneTag = cKey.LamportTime
+			}
+			c.keys[i], c.keys[j-1] = c.keys[j-1], c.keys[i]
+			c.keys[j-1] = nil
+			j--
+		}
+		i++
+	}
+	c.keys = c.keys[:j]
+
+	// Find the new key and add it to the key ring
+	for _, key := range keys {
+		same := false
+		for _, cKey := range c.keys {
+			if same = cKey.LamportTime == key.LamportTime; same {
+				break
+			}
+		}
+		if !same {
+			c.keys = append(c.keys, key)
+			if key.Subsystem == subsysGossip {
+				added = key.Key
+			}
+
+			if key.Subsystem == subsysIPSec {
+				drvEnc.Key = key.Key
+				drvEnc.Tag = key.LamportTime
+			}
+		}
+	}
+	c.Unlock()
+
+	if len(added) > 0 {
+		a.networkDB.SetKey(added)
+	}
+
+	key, _, err := c.getPrimaryKeyTag(subsysGossip)
+	if err != nil {
+		return err
+	}
+	a.networkDB.SetPrimaryKey(key)
+
+	key, tag, err := c.getPrimaryKeyTag(subsysIPSec)
+	if err != nil {
+		return err
+	}
+	drvEnc.Primary = key
+	drvEnc.PrimaryTag = tag
+
+	if len(deleted) > 0 {
+		a.networkDB.RemoveKey(deleted)
+	}
+
+	c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+		err := driver.DiscoverNew(discoverapi.EncryptionKeysUpdate, drvEnc)
+		if err != nil {
+			logrus.Warnf("Failed to update datapath keys in driver %s: %v", name, err)
+		}
+		return false
+	})
+
+	return nil
+}
+
+func (c *controller) agentSetup(clusterProvider cluster.Provider) error {
+	agent := c.getAgent()
+
+	// If the agent is already present there is no need to try to initilize it again
+	if agent != nil {
+		return nil
+	}
+
+	bindAddr := clusterProvider.GetLocalAddress()
+	advAddr := clusterProvider.GetAdvertiseAddress()
+	dataAddr := clusterProvider.GetDataPathAddress()
+	remoteList := clusterProvider.GetRemoteAddressList()
+	remoteAddrList := make([]string, 0, len(remoteList))
+	for _, remote := range remoteList {
+		addr, _, _ := net.SplitHostPort(remote)
+		remoteAddrList = append(remoteAddrList, addr)
+	}
+
+	listen := clusterProvider.GetListenAddress()
+	listenAddr, _, _ := net.SplitHostPort(listen)
+
+	logrus.Infof("Initializing Libnetwork Agent Listen-Addr=%s Local-addr=%s Adv-addr=%s Data-addr=%s Remote-addr-list=%v MTU=%d",
+		listenAddr, bindAddr, advAddr, dataAddr, remoteAddrList, c.Config().Daemon.NetworkControlPlaneMTU)
+	if advAddr != "" && agent == nil {
+		if err := c.agentInit(listenAddr, bindAddr, advAddr, dataAddr); err != nil {
+			logrus.Errorf("error in agentInit: %v", err)
+			return err
+		}
+		c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+			if capability.ConnectivityScope == datastore.GlobalScope {
+				c.agentDriverNotify(driver)
+			}
+			return false
+		})
+	}
+
+	if len(remoteAddrList) > 0 {
+		if err := c.agentJoin(remoteAddrList); err != nil {
+			logrus.Errorf("Error in joining gossip cluster : %v(join will be retried in background)", err)
+		}
+	}
+
+	return nil
+}
+
+// For a given subsystem getKeys sorts the keys by lamport time and returns
+// slice of keys and lamport time which can used as a unique tag for the keys
+func (c *controller) getKeys(subsys string) ([][]byte, []uint64) {
+	c.Lock()
+	defer c.Unlock()
+
+	sort.Sort(ByTime(c.keys))
+
+	keys := [][]byte{}
+	tags := []uint64{}
+	for _, key := range c.keys {
+		if key.Subsystem == subsys {
+			keys = append(keys, key.Key)
+			tags = append(tags, key.LamportTime)
+		}
+	}
+
+	keys[0], keys[1] = keys[1], keys[0]
+	tags[0], tags[1] = tags[1], tags[0]
+	return keys, tags
+}
+
+// getPrimaryKeyTag returns the primary key for a given subsystem from the
+// list of sorted key and the associated tag
+func (c *controller) getPrimaryKeyTag(subsys string) ([]byte, uint64, error) {
+	c.Lock()
+	defer c.Unlock()
+	sort.Sort(ByTime(c.keys))
+	keys := []*types.EncryptionKey{}
+	for _, key := range c.keys {
+		if key.Subsystem == subsys {
+			keys = append(keys, key)
+		}
+	}
+	return keys[1].Key, keys[1].LamportTime, nil
+}
+
+func (c *controller) agentInit(listenAddr, bindAddrOrInterface, advertiseAddr, dataPathAddr string) error {
+	bindAddr, err := resolveAddr(bindAddrOrInterface)
+	if err != nil {
+		return err
+	}
+
+	keys, _ := c.getKeys(subsysGossip)
+
+	netDBConf := networkdb.DefaultConfig()
+	netDBConf.BindAddr = listenAddr
+	netDBConf.AdvertiseAddr = advertiseAddr
+	netDBConf.Keys = keys
+	if c.Config().Daemon.NetworkControlPlaneMTU != 0 {
+		// Consider the MTU remove the IP hdr (IPv4 or IPv6) and the TCP/UDP hdr.
+		// To be on the safe side let's cut 100 bytes
+		netDBConf.PacketBufferSize = (c.Config().Daemon.NetworkControlPlaneMTU - 100)
+		logrus.Debugf("Control plane MTU: %d will initialize NetworkDB with: %d",
+			c.Config().Daemon.NetworkControlPlaneMTU, netDBConf.PacketBufferSize)
+	}
+	nDB, err := networkdb.New(netDBConf)
+	if err != nil {
+		return err
+	}
+
+	// Register the diagnostic handlers
+	c.DiagnosticServer.RegisterHandler(nDB, networkdb.NetDbPaths2Func)
+
+	var cancelList []func()
+	ch, cancel := nDB.Watch(libnetworkEPTable, "", "")
+	cancelList = append(cancelList, cancel)
+	nodeCh, cancel := nDB.Watch(networkdb.NodeTable, "", "")
+	cancelList = append(cancelList, cancel)
+
+	c.Lock()
+	c.agent = &agent{
+		networkDB:         nDB,
+		bindAddr:          bindAddr,
+		advertiseAddr:     advertiseAddr,
+		dataPathAddr:      dataPathAddr,
+		coreCancelFuncs:   cancelList,
+		driverCancelFuncs: make(map[string][]func()),
+	}
+	c.Unlock()
+
+	go c.handleTableEvents(ch, c.handleEpTableEvent)
+	go c.handleTableEvents(nodeCh, c.handleNodeTableEvent)
+
+	drvEnc := discoverapi.DriverEncryptionConfig{}
+	keys, tags := c.getKeys(subsysIPSec)
+	drvEnc.Keys = keys
+	drvEnc.Tags = tags
+
+	c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+		err := driver.DiscoverNew(discoverapi.EncryptionKeysConfig, drvEnc)
+		if err != nil {
+			logrus.Warnf("Failed to set datapath keys in driver %s: %v", name, err)
+		}
+		return false
+	})
+
+	c.WalkNetworks(joinCluster)
+
+	return nil
+}
+
+func (c *controller) agentJoin(remoteAddrList []string) error {
+	agent := c.getAgent()
+	if agent == nil {
+		return nil
+	}
+	return agent.networkDB.Join(remoteAddrList)
+}
+
+func (c *controller) agentDriverNotify(d driverapi.Driver) {
+	agent := c.getAgent()
+	if agent == nil {
+		return
+	}
+
+	if err := d.DiscoverNew(discoverapi.NodeDiscovery, discoverapi.NodeDiscoveryData{
+		Address:     agent.dataPathAddress(),
+		BindAddress: agent.bindAddr,
+		Self:        true,
+	}); err != nil {
+		logrus.Warnf("Failed the node discovery in driver: %v", err)
+	}
+
+	drvEnc := discoverapi.DriverEncryptionConfig{}
+	keys, tags := c.getKeys(subsysIPSec)
+	drvEnc.Keys = keys
+	drvEnc.Tags = tags
+
+	if err := d.DiscoverNew(discoverapi.EncryptionKeysConfig, drvEnc); err != nil {
+		logrus.Warnf("Failed to set datapath keys in driver: %v", err)
+	}
+}
+
+func (c *controller) agentClose() {
+	// Acquire current agent instance and reset its pointer
+	// then run closing functions
+	c.Lock()
+	agent := c.agent
+	c.agent = nil
+	c.Unlock()
+
+	if agent == nil {
+		return
+	}
+
+	var cancelList []func()
+
+	agent.Lock()
+	for _, cancelFuncs := range agent.driverCancelFuncs {
+		cancelList = append(cancelList, cancelFuncs...)
+	}
+
+	// Add also the cancel functions for the network db
+	cancelList = append(cancelList, agent.coreCancelFuncs...)
+	agent.Unlock()
+
+	for _, cancel := range cancelList {
+		cancel()
+	}
+
+	agent.networkDB.Close()
+}
+
+// Task has the backend container details
+type Task struct {
+	Name       string
+	EndpointID string
+	EndpointIP string
+	Info       map[string]string
+}
+
+// ServiceInfo has service specific details along with the list of backend tasks
+type ServiceInfo struct {
+	VIP          string
+	LocalLBIndex int
+	Tasks        []Task
+	Ports        []string
+}
+
+type epRecord struct {
+	ep      EndpointRecord
+	info    map[string]string
+	lbIndex int
+}
+
+func (n *network) Services() map[string]ServiceInfo {
+	eps := make(map[string]epRecord)
+
+	if !n.isClusterEligible() {
+		return nil
+	}
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return nil
+	}
+
+	// Walk through libnetworkEPTable and fetch the driver agnostic endpoint info
+	entries := agent.networkDB.GetTableByNetwork(libnetworkEPTable, n.id)
+	for eid, value := range entries {
+		var epRec EndpointRecord
+		nid := n.ID()
+		if err := proto.Unmarshal(value.Value, &epRec); err != nil {
+			logrus.Errorf("Unmarshal of libnetworkEPTable failed for endpoint %s in network %s, %v", eid, nid, err)
+			continue
+		}
+		i := n.getController().getLBIndex(epRec.ServiceID, nid, epRec.IngressPorts)
+		eps[eid] = epRecord{
+			ep:      epRec,
+			lbIndex: i,
+		}
+	}
+
+	// Walk through the driver's tables, have the driver decode the entries
+	// and return the tuple {ep ID, value}. value is a string that coveys
+	// relevant info about the endpoint.
+	d, err := n.driver(true)
+	if err != nil {
+		logrus.Errorf("Could not resolve driver for network %s/%s while fetching services: %v", n.networkType, n.ID(), err)
+		return nil
+	}
+	for _, table := range n.driverTables {
+		if table.objType != driverapi.EndpointObject {
+			continue
+		}
+		entries := agent.networkDB.GetTableByNetwork(table.name, n.id)
+		for key, value := range entries {
+			epID, info := d.DecodeTableEntry(table.name, key, value.Value)
+			if ep, ok := eps[epID]; !ok {
+				logrus.Errorf("Inconsistent driver and libnetwork state for endpoint %s", epID)
+			} else {
+				ep.info = info
+				eps[epID] = ep
+			}
+		}
+	}
+
+	// group the endpoints into a map keyed by the service name
+	sinfo := make(map[string]ServiceInfo)
+	for ep, epr := range eps {
+		var (
+			s  ServiceInfo
+			ok bool
+		)
+		if s, ok = sinfo[epr.ep.ServiceName]; !ok {
+			s = ServiceInfo{
+				VIP:          epr.ep.VirtualIP,
+				LocalLBIndex: epr.lbIndex,
+			}
+		}
+		ports := []string{}
+		if s.Ports == nil {
+			for _, port := range epr.ep.IngressPorts {
+				p := fmt.Sprintf("Target: %d, Publish: %d", port.TargetPort, port.PublishedPort)
+				ports = append(ports, p)
+			}
+			s.Ports = ports
+		}
+		s.Tasks = append(s.Tasks, Task{
+			Name:       epr.ep.Name,
+			EndpointID: ep,
+			EndpointIP: epr.ep.EndpointIP,
+			Info:       epr.info,
+		})
+		sinfo[epr.ep.ServiceName] = s
+	}
+	return sinfo
+}
+
+func (n *network) isClusterEligible() bool {
+	if n.scope != datastore.SwarmScope || !n.driverIsMultihost() {
+		return false
+	}
+	return n.getController().getAgent() != nil
+}
+
+func (n *network) joinCluster() error {
+	if !n.isClusterEligible() {
+		return nil
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return nil
+	}
+
+	return agent.networkDB.JoinNetwork(n.ID())
+}
+
+func (n *network) leaveCluster() error {
+	if !n.isClusterEligible() {
+		return nil
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return nil
+	}
+
+	return agent.networkDB.LeaveNetwork(n.ID())
+}
+
+func (ep *endpoint) addDriverInfoToCluster() error {
+	n := ep.getNetwork()
+	if !n.isClusterEligible() {
+		return nil
+	}
+	if ep.joinInfo == nil {
+		return nil
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return nil
+	}
+
+	for _, te := range ep.joinInfo.driverTableEntries {
+		if err := agent.networkDB.CreateEntry(te.tableName, n.ID(), te.key, te.value); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (ep *endpoint) deleteDriverInfoFromCluster() error {
+	n := ep.getNetwork()
+	if !n.isClusterEligible() {
+		return nil
+	}
+	if ep.joinInfo == nil {
+		return nil
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return nil
+	}
+
+	for _, te := range ep.joinInfo.driverTableEntries {
+		if err := agent.networkDB.DeleteEntry(te.tableName, n.ID(), te.key); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (ep *endpoint) addServiceInfoToCluster(sb *sandbox) error {
+	if ep.isAnonymous() && len(ep.myAliases) == 0 || ep.Iface().Address() == nil {
+		return nil
+	}
+
+	n := ep.getNetwork()
+	if !n.isClusterEligible() {
+		return nil
+	}
+
+	sb.Service.Lock()
+	defer sb.Service.Unlock()
+	logrus.Debugf("addServiceInfoToCluster START for %s %s", ep.svcName, ep.ID())
+
+	// Check that the endpoint is still present on the sandbox before adding it to the service discovery.
+	// This is to handle a race between the EnableService and the sbLeave
+	// It is possible that the EnableService starts, fetches the list of the endpoints and
+	// by the time the addServiceInfoToCluster is called the endpoint got removed from the sandbox
+	// The risk is that the deleteServiceInfoToCluster happens before the addServiceInfoToCluster.
+	// This check under the Service lock of the sandbox ensure the correct behavior.
+	// If the addServiceInfoToCluster arrives first may find or not the endpoint and will proceed or exit
+	// but in any case the deleteServiceInfoToCluster will follow doing the cleanup if needed.
+	// In case the deleteServiceInfoToCluster arrives first, this one is happening after the endpoint is
+	// removed from the list, in this situation the delete will bail out not finding any data to cleanup
+	// and the add will bail out not finding the endpoint on the sandbox.
+	if e := sb.getEndpoint(ep.ID()); e == nil {
+		logrus.Warnf("addServiceInfoToCluster suppressing service resolution ep is not anymore in the sandbox %s", ep.ID())
+		return nil
+	}
+
+	c := n.getController()
+	agent := c.getAgent()
+
+	name := ep.Name()
+	if ep.isAnonymous() {
+		name = ep.MyAliases()[0]
+	}
+
+	var ingressPorts []*PortConfig
+	if ep.svcID != "" {
+		// This is a task part of a service
+		// Gossip ingress ports only in ingress network.
+		if n.ingress {
+			ingressPorts = ep.ingressPorts
+		}
+		if err := c.addServiceBinding(ep.svcName, ep.svcID, n.ID(), ep.ID(), name, ep.virtualIP, ingressPorts, ep.svcAliases, ep.myAliases, ep.Iface().Address().IP, "addServiceInfoToCluster"); err != nil {
+			return err
+		}
+	} else {
+		// This is a container simply attached to an attachable network
+		if err := c.addContainerNameResolution(n.ID(), ep.ID(), name, ep.myAliases, ep.Iface().Address().IP, "addServiceInfoToCluster"); err != nil {
+			return err
+		}
+	}
+
+	buf, err := proto.Marshal(&EndpointRecord{
+		Name:            name,
+		ServiceName:     ep.svcName,
+		ServiceID:       ep.svcID,
+		VirtualIP:       ep.virtualIP.String(),
+		IngressPorts:    ingressPorts,
+		Aliases:         ep.svcAliases,
+		TaskAliases:     ep.myAliases,
+		EndpointIP:      ep.Iface().Address().IP.String(),
+		ServiceDisabled: false,
+	})
+	if err != nil {
+		return err
+	}
+
+	if agent != nil {
+		if err := agent.networkDB.CreateEntry(libnetworkEPTable, n.ID(), ep.ID(), buf); err != nil {
+			logrus.Warnf("addServiceInfoToCluster NetworkDB CreateEntry failed for %s %s err:%s", ep.id, n.id, err)
+			return err
+		}
+	}
+
+	logrus.Debugf("addServiceInfoToCluster END for %s %s", ep.svcName, ep.ID())
+
+	return nil
+}
+
+func (ep *endpoint) deleteServiceInfoFromCluster(sb *sandbox, fullRemove bool, method string) error {
+	if ep.isAnonymous() && len(ep.myAliases) == 0 {
+		return nil
+	}
+
+	n := ep.getNetwork()
+	if !n.isClusterEligible() {
+		return nil
+	}
+
+	sb.Service.Lock()
+	defer sb.Service.Unlock()
+	logrus.Debugf("deleteServiceInfoFromCluster from %s START for %s %s", method, ep.svcName, ep.ID())
+
+	// Avoid a race w/ with a container that aborts preemptively.  This would
+	// get caught in disableServceInNetworkDB, but we check here to make the
+	// nature of the condition more clear.
+	// See comment in addServiceInfoToCluster()
+	if e := sb.getEndpoint(ep.ID()); e == nil {
+		logrus.Warnf("deleteServiceInfoFromCluster suppressing service resolution ep is not anymore in the sandbox %s", ep.ID())
+		return nil
+	}
+
+	c := n.getController()
+	agent := c.getAgent()
+
+	name := ep.Name()
+	if ep.isAnonymous() {
+		name = ep.MyAliases()[0]
+	}
+
+	if agent != nil {
+		// First update the networkDB then locally
+		if fullRemove {
+			if err := agent.networkDB.DeleteEntry(libnetworkEPTable, n.ID(), ep.ID()); err != nil {
+				logrus.Warnf("deleteServiceInfoFromCluster NetworkDB DeleteEntry failed for %s %s err:%s", ep.id, n.id, err)
+			}
+		} else {
+			disableServiceInNetworkDB(agent, n, ep)
+		}
+	}
+
+	if ep.Iface().Address() != nil {
+		if ep.svcID != "" {
+			// This is a task part of a service
+			var ingressPorts []*PortConfig
+			if n.ingress {
+				ingressPorts = ep.ingressPorts
+			}
+			if err := c.rmServiceBinding(ep.svcName, ep.svcID, n.ID(), ep.ID(), name, ep.virtualIP, ingressPorts, ep.svcAliases, ep.myAliases, ep.Iface().Address().IP, "deleteServiceInfoFromCluster", true, fullRemove); err != nil {
+				return err
+			}
+		} else {
+			// This is a container simply attached to an attachable network
+			if err := c.delContainerNameResolution(n.ID(), ep.ID(), name, ep.myAliases, ep.Iface().Address().IP, "deleteServiceInfoFromCluster"); err != nil {
+				return err
+			}
+		}
+	}
+
+	logrus.Debugf("deleteServiceInfoFromCluster from %s END for %s %s", method, ep.svcName, ep.ID())
+
+	return nil
+}
+
+func disableServiceInNetworkDB(a *agent, n *network, ep *endpoint) {
+	var epRec EndpointRecord
+
+	logrus.Debugf("disableServiceInNetworkDB for %s %s", ep.svcName, ep.ID())
+
+	// Update existing record to indicate that the service is disabled
+	inBuf, err := a.networkDB.GetEntry(libnetworkEPTable, n.ID(), ep.ID())
+	if err != nil {
+		logrus.Warnf("disableServiceInNetworkDB GetEntry failed for %s %s err:%s", ep.id, n.id, err)
+		return
+	}
+	// Should never fail
+	if err := proto.Unmarshal(inBuf, &epRec); err != nil {
+		logrus.Errorf("disableServiceInNetworkDB unmarshal failed for %s %s err:%s", ep.id, n.id, err)
+		return
+	}
+	epRec.ServiceDisabled = true
+	// Should never fail
+	outBuf, err := proto.Marshal(&epRec)
+	if err != nil {
+		logrus.Errorf("disableServiceInNetworkDB marshalling failed for %s %s err:%s", ep.id, n.id, err)
+		return
+	}
+	// Send update to the whole cluster
+	if err := a.networkDB.UpdateEntry(libnetworkEPTable, n.ID(), ep.ID(), outBuf); err != nil {
+		logrus.Warnf("disableServiceInNetworkDB UpdateEntry failed for %s %s err:%s", ep.id, n.id, err)
+	}
+}
+
+func (n *network) addDriverWatches() {
+	if !n.isClusterEligible() {
+		return
+	}
+
+	c := n.getController()
+	agent := c.getAgent()
+	if agent == nil {
+		return
+	}
+	for _, table := range n.driverTables {
+		ch, cancel := agent.networkDB.Watch(table.name, n.ID(), "")
+		agent.Lock()
+		agent.driverCancelFuncs[n.ID()] = append(agent.driverCancelFuncs[n.ID()], cancel)
+		agent.Unlock()
+		go c.handleTableEvents(ch, n.handleDriverTableEvent)
+		d, err := n.driver(false)
+		if err != nil {
+			logrus.Errorf("Could not resolve driver %s while walking driver tabl: %v", n.networkType, err)
+			return
+		}
+
+		agent.networkDB.WalkTable(table.name, func(nid, key string, value []byte, deleted bool) bool {
+			// skip the entries that are mark for deletion, this is safe because this function is
+			// called at initialization time so there is no state to delete
+			if nid == n.ID() && !deleted {
+				d.EventNotify(driverapi.Create, nid, table.name, key, value)
+			}
+			return false
+		})
+	}
+}
+
+func (n *network) cancelDriverWatches() {
+	if !n.isClusterEligible() {
+		return
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return
+	}
+
+	agent.Lock()
+	cancelFuncs := agent.driverCancelFuncs[n.ID()]
+	delete(agent.driverCancelFuncs, n.ID())
+	agent.Unlock()
+
+	for _, cancel := range cancelFuncs {
+		cancel()
+	}
+}
+
+func (c *controller) handleTableEvents(ch *events.Channel, fn func(events.Event)) {
+	for {
+		select {
+		case ev := <-ch.C:
+			fn(ev)
+		case <-ch.Done():
+			return
+		}
+	}
+}
+
+func (n *network) handleDriverTableEvent(ev events.Event) {
+	d, err := n.driver(false)
+	if err != nil {
+		logrus.Errorf("Could not resolve driver %s while handling driver table event: %v", n.networkType, err)
+		return
+	}
+
+	var (
+		etype driverapi.EventType
+		tname string
+		key   string
+		value []byte
+	)
+
+	switch event := ev.(type) {
+	case networkdb.CreateEvent:
+		tname = event.Table
+		key = event.Key
+		value = event.Value
+		etype = driverapi.Create
+	case networkdb.DeleteEvent:
+		tname = event.Table
+		key = event.Key
+		value = event.Value
+		etype = driverapi.Delete
+	case networkdb.UpdateEvent:
+		tname = event.Table
+		key = event.Key
+		value = event.Value
+		etype = driverapi.Delete
+	}
+
+	d.EventNotify(etype, n.ID(), tname, key, value)
+}
+
+func (c *controller) handleNodeTableEvent(ev events.Event) {
+	var (
+		value    []byte
+		isAdd    bool
+		nodeAddr networkdb.NodeAddr
+	)
+	switch event := ev.(type) {
+	case networkdb.CreateEvent:
+		value = event.Value
+		isAdd = true
+	case networkdb.DeleteEvent:
+		value = event.Value
+	case networkdb.UpdateEvent:
+		logrus.Errorf("Unexpected update node table event = %#v", event)
+	}
+
+	err := json.Unmarshal(value, &nodeAddr)
+	if err != nil {
+		logrus.Errorf("Error unmarshalling node table event %v", err)
+		return
+	}
+	c.processNodeDiscovery([]net.IP{nodeAddr.Addr}, isAdd)
+
+}
+
+func (c *controller) handleEpTableEvent(ev events.Event) {
+	var (
+		nid   string
+		eid   string
+		value []byte
+		epRec EndpointRecord
+	)
+
+	switch event := ev.(type) {
+	case networkdb.CreateEvent:
+		nid = event.NetworkID
+		eid = event.Key
+		value = event.Value
+	case networkdb.DeleteEvent:
+		nid = event.NetworkID
+		eid = event.Key
+		value = event.Value
+	case networkdb.UpdateEvent:
+		nid = event.NetworkID
+		eid = event.Key
+		value = event.Value
+	default:
+		logrus.Errorf("Unexpected update service table event = %#v", event)
+		return
+	}
+
+	err := proto.Unmarshal(value, &epRec)
+	if err != nil {
+		logrus.Errorf("Failed to unmarshal service table value: %v", err)
+		return
+	}
+
+	containerName := epRec.Name
+	svcName := epRec.ServiceName
+	svcID := epRec.ServiceID
+	vip := net.ParseIP(epRec.VirtualIP)
+	ip := net.ParseIP(epRec.EndpointIP)
+	ingressPorts := epRec.IngressPorts
+	serviceAliases := epRec.Aliases
+	taskAliases := epRec.TaskAliases
+
+	if containerName == "" || ip == nil {
+		logrus.Errorf("Invalid endpoint name/ip received while handling service table event %s", value)
+		return
+	}
+
+	switch ev.(type) {
+	case networkdb.CreateEvent:
+		logrus.Debugf("handleEpTableEvent ADD %s R:%v", eid, epRec)
+		if svcID != "" {
+			// This is a remote task part of a service
+			if err := c.addServiceBinding(svcName, svcID, nid, eid, containerName, vip, ingressPorts, serviceAliases, taskAliases, ip, "handleEpTableEvent"); err != nil {
+				logrus.Errorf("failed adding service binding for %s epRec:%v err:%v", eid, epRec, err)
+				return
+			}
+		} else {
+			// This is a remote container simply attached to an attachable network
+			if err := c.addContainerNameResolution(nid, eid, containerName, taskAliases, ip, "handleEpTableEvent"); err != nil {
+				logrus.Errorf("failed adding container name resolution for %s epRec:%v err:%v", eid, epRec, err)
+			}
+		}
+
+	case networkdb.DeleteEvent:
+		logrus.Debugf("handleEpTableEvent DEL %s R:%v", eid, epRec)
+		if svcID != "" {
+			// This is a remote task part of a service
+			if err := c.rmServiceBinding(svcName, svcID, nid, eid, containerName, vip, ingressPorts, serviceAliases, taskAliases, ip, "handleEpTableEvent", true, true); err != nil {
+				logrus.Errorf("failed removing service binding for %s epRec:%v err:%v", eid, epRec, err)
+				return
+			}
+		} else {
+			// This is a remote container simply attached to an attachable network
+			if err := c.delContainerNameResolution(nid, eid, containerName, taskAliases, ip, "handleEpTableEvent"); err != nil {
+				logrus.Errorf("failed removing container name resolution for %s epRec:%v err:%v", eid, epRec, err)
+			}
+		}
+	case networkdb.UpdateEvent:
+		logrus.Debugf("handleEpTableEvent UPD %s R:%v", eid, epRec)
+		// We currently should only get these to inform us that an endpoint
+		// is disabled.  Report if otherwise.
+		if svcID == "" || !epRec.ServiceDisabled {
+			logrus.Errorf("Unexpected update table event for %s epRec:%v", eid, epRec)
+			return
+		}
+		// This is a remote task that is part of a service that is now disabled
+		if err := c.rmServiceBinding(svcName, svcID, nid, eid, containerName, vip, ingressPorts, serviceAliases, taskAliases, ip, "handleEpTableEvent", true, false); err != nil {
+			logrus.Errorf("failed disabling service binding for %s epRec:%v err:%v", eid, epRec, err)
+			return
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/agent.pb.go b/vendor/github.com/docker/libnetwork/agent.pb.go
new file mode 100644
index 0000000000..4092973c9b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/agent.pb.go
@@ -0,0 +1,1095 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: agent.proto
+
+/*
+	Package libnetwork is a generated protocol buffer package.
+
+	It is generated from these files:
+		agent.proto
+
+	It has these top-level messages:
+		EndpointRecord
+		PortConfig
+*/
+package libnetwork
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type PortConfig_Protocol int32
+
+const (
+	ProtocolTCP  PortConfig_Protocol = 0
+	ProtocolUDP  PortConfig_Protocol = 1
+	ProtocolSCTP PortConfig_Protocol = 2
+)
+
+var PortConfig_Protocol_name = map[int32]string{
+	0: "TCP",
+	1: "UDP",
+	2: "SCTP",
+}
+var PortConfig_Protocol_value = map[string]int32{
+	"TCP":  0,
+	"UDP":  1,
+	"SCTP": 2,
+}
+
+func (x PortConfig_Protocol) String() string {
+	return proto.EnumName(PortConfig_Protocol_name, int32(x))
+}
+func (PortConfig_Protocol) EnumDescriptor() ([]byte, []int) { return fileDescriptorAgent, []int{1, 0} }
+
+// EndpointRecord specifies all the endpoint specific information that
+// needs to gossiped to nodes participating in the network.
+type EndpointRecord struct {
+	// Name of the container
+	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	// Service name of the service to which this endpoint belongs.
+	ServiceName string `protobuf:"bytes,2,opt,name=service_name,json=serviceName,proto3" json:"service_name,omitempty"`
+	// Service ID of the service to which this endpoint belongs.
+	ServiceID string `protobuf:"bytes,3,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	// Virtual IP of the service to which this endpoint belongs.
+	VirtualIP string `protobuf:"bytes,4,opt,name=virtual_ip,json=virtualIp,proto3" json:"virtual_ip,omitempty"`
+	// IP assigned to this endpoint.
+	EndpointIP string `protobuf:"bytes,5,opt,name=endpoint_ip,json=endpointIp,proto3" json:"endpoint_ip,omitempty"`
+	// IngressPorts exposed by the service to which this endpoint belongs.
+	IngressPorts []*PortConfig `protobuf:"bytes,6,rep,name=ingress_ports,json=ingressPorts" json:"ingress_ports,omitempty"`
+	// A list of aliases which are alternate names for the service
+	Aliases []string `protobuf:"bytes,7,rep,name=aliases" json:"aliases,omitempty"`
+	// List of aliases task specific aliases
+	TaskAliases []string `protobuf:"bytes,8,rep,name=task_aliases,json=taskAliases" json:"task_aliases,omitempty"`
+	// Whether this enpoint's service has been disabled
+	ServiceDisabled bool `protobuf:"varint,9,opt,name=service_disabled,json=serviceDisabled,proto3" json:"service_disabled,omitempty"`
+}
+
+func (m *EndpointRecord) Reset()                    { *m = EndpointRecord{} }
+func (*EndpointRecord) ProtoMessage()               {}
+func (*EndpointRecord) Descriptor() ([]byte, []int) { return fileDescriptorAgent, []int{0} }
+
+func (m *EndpointRecord) GetName() string {
+	if m != nil {
+		return m.Name
+	}
+	return ""
+}
+
+func (m *EndpointRecord) GetServiceName() string {
+	if m != nil {
+		return m.ServiceName
+	}
+	return ""
+}
+
+func (m *EndpointRecord) GetServiceID() string {
+	if m != nil {
+		return m.ServiceID
+	}
+	return ""
+}
+
+func (m *EndpointRecord) GetVirtualIP() string {
+	if m != nil {
+		return m.VirtualIP
+	}
+	return ""
+}
+
+func (m *EndpointRecord) GetEndpointIP() string {
+	if m != nil {
+		return m.EndpointIP
+	}
+	return ""
+}
+
+func (m *EndpointRecord) GetIngressPorts() []*PortConfig {
+	if m != nil {
+		return m.IngressPorts
+	}
+	return nil
+}
+
+func (m *EndpointRecord) GetAliases() []string {
+	if m != nil {
+		return m.Aliases
+	}
+	return nil
+}
+
+func (m *EndpointRecord) GetTaskAliases() []string {
+	if m != nil {
+		return m.TaskAliases
+	}
+	return nil
+}
+
+func (m *EndpointRecord) GetServiceDisabled() bool {
+	if m != nil {
+		return m.ServiceDisabled
+	}
+	return false
+}
+
+// PortConfig specifies an exposed port which can be
+// addressed using the given name. This can be later queried
+// using a service discovery api or a DNS SRV query. The node
+// port specifies a port that can be used to address this
+// service external to the cluster by sending a connection
+// request to this port to any node on the cluster.
+type PortConfig struct {
+	// Name for the port. If provided the port information can
+	// be queried using the name as in a DNS SRV query.
+	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	// Protocol for the port which is exposed.
+	Protocol PortConfig_Protocol `protobuf:"varint,2,opt,name=protocol,proto3,enum=libnetwork.PortConfig_Protocol" json:"protocol,omitempty"`
+	// The port which the application is exposing and is bound to.
+	TargetPort uint32 `protobuf:"varint,3,opt,name=target_port,json=targetPort,proto3" json:"target_port,omitempty"`
+	// PublishedPort specifies the port on which the service is
+	// exposed on all nodes on the cluster. If not specified an
+	// arbitrary port in the node port range is allocated by the
+	// system. If specified it should be within the node port
+	// range and it should be available.
+	PublishedPort uint32 `protobuf:"varint,4,opt,name=published_port,json=publishedPort,proto3" json:"published_port,omitempty"`
+}
+
+func (m *PortConfig) Reset()                    { *m = PortConfig{} }
+func (*PortConfig) ProtoMessage()               {}
+func (*PortConfig) Descriptor() ([]byte, []int) { return fileDescriptorAgent, []int{1} }
+
+func (m *PortConfig) GetName() string {
+	if m != nil {
+		return m.Name
+	}
+	return ""
+}
+
+func (m *PortConfig) GetProtocol() PortConfig_Protocol {
+	if m != nil {
+		return m.Protocol
+	}
+	return ProtocolTCP
+}
+
+func (m *PortConfig) GetTargetPort() uint32 {
+	if m != nil {
+		return m.TargetPort
+	}
+	return 0
+}
+
+func (m *PortConfig) GetPublishedPort() uint32 {
+	if m != nil {
+		return m.PublishedPort
+	}
+	return 0
+}
+
+func init() {
+	proto.RegisterType((*EndpointRecord)(nil), "libnetwork.EndpointRecord")
+	proto.RegisterType((*PortConfig)(nil), "libnetwork.PortConfig")
+	proto.RegisterEnum("libnetwork.PortConfig_Protocol", PortConfig_Protocol_name, PortConfig_Protocol_value)
+}
+func (this *EndpointRecord) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 13)
+	s = append(s, "&libnetwork.EndpointRecord{")
+	s = append(s, "Name: "+fmt.Sprintf("%#v", this.Name)+",\n")
+	s = append(s, "ServiceName: "+fmt.Sprintf("%#v", this.ServiceName)+",\n")
+	s = append(s, "ServiceID: "+fmt.Sprintf("%#v", this.ServiceID)+",\n")
+	s = append(s, "VirtualIP: "+fmt.Sprintf("%#v", this.VirtualIP)+",\n")
+	s = append(s, "EndpointIP: "+fmt.Sprintf("%#v", this.EndpointIP)+",\n")
+	if this.IngressPorts != nil {
+		s = append(s, "IngressPorts: "+fmt.Sprintf("%#v", this.IngressPorts)+",\n")
+	}
+	s = append(s, "Aliases: "+fmt.Sprintf("%#v", this.Aliases)+",\n")
+	s = append(s, "TaskAliases: "+fmt.Sprintf("%#v", this.TaskAliases)+",\n")
+	s = append(s, "ServiceDisabled: "+fmt.Sprintf("%#v", this.ServiceDisabled)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *PortConfig) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 8)
+	s = append(s, "&libnetwork.PortConfig{")
+	s = append(s, "Name: "+fmt.Sprintf("%#v", this.Name)+",\n")
+	s = append(s, "Protocol: "+fmt.Sprintf("%#v", this.Protocol)+",\n")
+	s = append(s, "TargetPort: "+fmt.Sprintf("%#v", this.TargetPort)+",\n")
+	s = append(s, "PublishedPort: "+fmt.Sprintf("%#v", this.PublishedPort)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringAgent(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *EndpointRecord) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *EndpointRecord) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.ServiceName) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.ServiceName)))
+		i += copy(dAtA[i:], m.ServiceName)
+	}
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if len(m.VirtualIP) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.VirtualIP)))
+		i += copy(dAtA[i:], m.VirtualIP)
+	}
+	if len(m.EndpointIP) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.EndpointIP)))
+		i += copy(dAtA[i:], m.EndpointIP)
+	}
+	if len(m.IngressPorts) > 0 {
+		for _, msg := range m.IngressPorts {
+			dAtA[i] = 0x32
+			i++
+			i = encodeVarintAgent(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			dAtA[i] = 0x3a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.TaskAliases) > 0 {
+		for _, s := range m.TaskAliases {
+			dAtA[i] = 0x42
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if m.ServiceDisabled {
+		dAtA[i] = 0x48
+		i++
+		if m.ServiceDisabled {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *PortConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PortConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if m.Protocol != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(m.Protocol))
+	}
+	if m.TargetPort != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(m.TargetPort))
+	}
+	if m.PublishedPort != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintAgent(dAtA, i, uint64(m.PublishedPort))
+	}
+	return i, nil
+}
+
+func encodeVarintAgent(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *EndpointRecord) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	l = len(m.ServiceName)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	l = len(m.VirtualIP)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	l = len(m.EndpointIP)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	if len(m.IngressPorts) > 0 {
+		for _, e := range m.IngressPorts {
+			l = e.Size()
+			n += 1 + l + sovAgent(uint64(l))
+		}
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			l = len(s)
+			n += 1 + l + sovAgent(uint64(l))
+		}
+	}
+	if len(m.TaskAliases) > 0 {
+		for _, s := range m.TaskAliases {
+			l = len(s)
+			n += 1 + l + sovAgent(uint64(l))
+		}
+	}
+	if m.ServiceDisabled {
+		n += 2
+	}
+	return n
+}
+
+func (m *PortConfig) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovAgent(uint64(l))
+	}
+	if m.Protocol != 0 {
+		n += 1 + sovAgent(uint64(m.Protocol))
+	}
+	if m.TargetPort != 0 {
+		n += 1 + sovAgent(uint64(m.TargetPort))
+	}
+	if m.PublishedPort != 0 {
+		n += 1 + sovAgent(uint64(m.PublishedPort))
+	}
+	return n
+}
+
+func sovAgent(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozAgent(x uint64) (n int) {
+	return sovAgent(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *EndpointRecord) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&EndpointRecord{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`ServiceName:` + fmt.Sprintf("%v", this.ServiceName) + `,`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`VirtualIP:` + fmt.Sprintf("%v", this.VirtualIP) + `,`,
+		`EndpointIP:` + fmt.Sprintf("%v", this.EndpointIP) + `,`,
+		`IngressPorts:` + strings.Replace(fmt.Sprintf("%v", this.IngressPorts), "PortConfig", "PortConfig", 1) + `,`,
+		`Aliases:` + fmt.Sprintf("%v", this.Aliases) + `,`,
+		`TaskAliases:` + fmt.Sprintf("%v", this.TaskAliases) + `,`,
+		`ServiceDisabled:` + fmt.Sprintf("%v", this.ServiceDisabled) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PortConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PortConfig{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`Protocol:` + fmt.Sprintf("%v", this.Protocol) + `,`,
+		`TargetPort:` + fmt.Sprintf("%v", this.TargetPort) + `,`,
+		`PublishedPort:` + fmt.Sprintf("%v", this.PublishedPort) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringAgent(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *EndpointRecord) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowAgent
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: EndpointRecord: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: EndpointRecord: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field VirtualIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.VirtualIP = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EndpointIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EndpointIP = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IngressPorts", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IngressPorts = append(m.IngressPorts, &PortConfig{})
+			if err := m.IngressPorts[len(m.IngressPorts)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Aliases", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Aliases = append(m.Aliases, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskAliases", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskAliases = append(m.TaskAliases, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 9:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceDisabled", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.ServiceDisabled = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipAgent(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthAgent
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PortConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowAgent
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PortConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PortConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAgent
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Protocol", wireType)
+			}
+			m.Protocol = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Protocol |= (PortConfig_Protocol(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TargetPort", wireType)
+			}
+			m.TargetPort = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.TargetPort |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PublishedPort", wireType)
+			}
+			m.PublishedPort = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.PublishedPort |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipAgent(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthAgent
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipAgent(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowAgent
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowAgent
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthAgent
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowAgent
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipAgent(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthAgent = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowAgent   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("agent.proto", fileDescriptorAgent) }
+
+var fileDescriptorAgent = []byte{
+	// 459 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x6c, 0x91, 0x31, 0x6f, 0xd3, 0x4c,
+	0x18, 0xc7, 0xe3, 0xc4, 0x6f, 0x1b, 0x3f, 0x4e, 0x52, 0xeb, 0xf4, 0x0a, 0x59, 0x1e, 0x1c, 0x13,
+	0x09, 0x29, 0x48, 0x28, 0x95, 0xca, 0xd8, 0x89, 0x26, 0x0c, 0x5e, 0x90, 0x75, 0x4d, 0x59, 0x83,
+	0x13, 0x1f, 0xe6, 0x54, 0xe3, 0xb3, 0xee, 0xae, 0x65, 0x65, 0x03, 0xf5, 0x3b, 0x74, 0xe2, 0xcb,
+	0x30, 0x32, 0x32, 0x55, 0xd4, 0x9f, 0x80, 0x95, 0x0d, 0xdd, 0xf9, 0xae, 0x11, 0x52, 0xb7, 0xf3,
+	0xef, 0xff, 0x3b, 0xeb, 0xb9, 0xff, 0x03, 0x7e, 0x5e, 0x92, 0x5a, 0x2e, 0x1a, 0xce, 0x24, 0x43,
+	0x50, 0xd1, 0x6d, 0x4d, 0xe4, 0x27, 0xc6, 0x2f, 0xa3, 0xff, 0x4b, 0x56, 0x32, 0x8d, 0x8f, 0xd5,
+	0xa9, 0x33, 0x66, 0x7f, 0xfa, 0x30, 0x79, 0x5d, 0x17, 0x0d, 0xa3, 0xb5, 0xc4, 0x64, 0xc7, 0x78,
+	0x81, 0x10, 0xb8, 0x75, 0xfe, 0x91, 0x84, 0x4e, 0xe2, 0xcc, 0x3d, 0xac, 0xcf, 0xe8, 0x29, 0x8c,
+	0x04, 0xe1, 0xd7, 0x74, 0x47, 0x36, 0x3a, 0xeb, 0xeb, 0xcc, 0x37, 0xec, 0x8d, 0x52, 0x5e, 0x00,
+	0x58, 0x85, 0x16, 0xe1, 0x40, 0x09, 0x67, 0xe3, 0xf6, 0x6e, 0xea, 0x9d, 0x77, 0x34, 0x5d, 0x61,
+	0xcf, 0x08, 0x69, 0xa1, 0xec, 0x6b, 0xca, 0xe5, 0x55, 0x5e, 0x6d, 0x68, 0x13, 0xba, 0x7b, 0xfb,
+	0x6d, 0x47, 0xd3, 0x0c, 0x7b, 0x46, 0x48, 0x1b, 0x74, 0x0c, 0x3e, 0x31, 0x43, 0x2a, 0xfd, 0x3f,
+	0xad, 0x4f, 0xda, 0xbb, 0x29, 0xd8, 0xd9, 0xd3, 0x0c, 0x83, 0x55, 0xd2, 0x06, 0x9d, 0xc2, 0x98,
+	0xd6, 0x25, 0x27, 0x42, 0x6c, 0x1a, 0xc6, 0xa5, 0x08, 0x0f, 0x92, 0xc1, 0xdc, 0x3f, 0x79, 0xb2,
+	0xd8, 0x17, 0xb2, 0xc8, 0x18, 0x97, 0x4b, 0x56, 0xbf, 0xa7, 0x25, 0x1e, 0x19, 0x59, 0x21, 0x81,
+	0x42, 0x38, 0xcc, 0x2b, 0x9a, 0x0b, 0x22, 0xc2, 0xc3, 0x64, 0x30, 0xf7, 0xb0, 0xfd, 0x54, 0x35,
+	0xc8, 0x5c, 0x5c, 0x6e, 0x6c, 0x3c, 0xd4, 0xb1, 0xaf, 0xd8, 0x2b, 0xa3, 0x3c, 0x87, 0xc0, 0xd6,
+	0x50, 0x50, 0x91, 0x6f, 0x2b, 0x52, 0x84, 0x5e, 0xe2, 0xcc, 0x87, 0xf8, 0xc8, 0xf0, 0x95, 0xc1,
+	0xb3, 0x2f, 0x7d, 0x80, 0xfd, 0x10, 0x8f, 0xf6, 0x7e, 0x0a, 0x43, 0xbd, 0xa7, 0x1d, 0xab, 0x74,
+	0xe7, 0x93, 0x93, 0xe9, 0xe3, 0x4f, 0x58, 0x64, 0x46, 0xc3, 0x0f, 0x17, 0xd0, 0x14, 0x7c, 0x99,
+	0xf3, 0x92, 0x48, 0xdd, 0x81, 0x5e, 0xc9, 0x18, 0x43, 0x87, 0xd4, 0x4d, 0xf4, 0x0c, 0x26, 0xcd,
+	0xd5, 0xb6, 0xa2, 0xe2, 0x03, 0x29, 0x3a, 0xc7, 0xd5, 0xce, 0xf8, 0x81, 0x2a, 0x6d, 0xf6, 0x0e,
+	0x86, 0xf6, 0xef, 0x28, 0x84, 0xc1, 0x7a, 0x99, 0x05, 0xbd, 0xe8, 0xe8, 0xe6, 0x36, 0xf1, 0x2d,
+	0x5e, 0x2f, 0x33, 0x95, 0x5c, 0xac, 0xb2, 0xc0, 0xf9, 0x37, 0xb9, 0x58, 0x65, 0x28, 0x02, 0xf7,
+	0x7c, 0xb9, 0xce, 0x82, 0x7e, 0x14, 0xdc, 0xdc, 0x26, 0x23, 0x1b, 0x29, 0x16, 0xb9, 0x5f, 0xbf,
+	0xc5, 0xbd, 0xb3, 0xf0, 0xe7, 0x7d, 0xdc, 0xfb, 0x7d, 0x1f, 0x3b, 0x9f, 0xdb, 0xd8, 0xf9, 0xde,
+	0xc6, 0xce, 0x8f, 0x36, 0x76, 0x7e, 0xb5, 0xb1, 0xb3, 0x3d, 0xd0, 0xaf, 0x79, 0xf9, 0x37, 0x00,
+	0x00, 0xff, 0xff, 0x55, 0x29, 0x75, 0x5c, 0xd7, 0x02, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/libnetwork/bitseq/sequence.go b/vendor/github.com/docker/libnetwork/bitseq/sequence.go
new file mode 100644
index 0000000000..0069d495b7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/bitseq/sequence.go
@@ -0,0 +1,737 @@
+// Package bitseq provides a structure and utilities for representing long bitmask
+// as sequence of run-length encoded blocks. It operates directly on the encoded
+// representation, it does not decode/encode.
+package bitseq
+
+import (
+	"encoding/binary"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// block sequence constants
+// If needed we can think of making these configurable
+const (
+	blockLen      = uint32(32)
+	blockBytes    = uint64(blockLen / 8)
+	blockMAX      = uint32(1<<blockLen - 1)
+	blockFirstBit = uint32(1) << (blockLen - 1)
+	invalidPos    = uint64(0xFFFFFFFFFFFFFFFF)
+)
+
+var (
+	// ErrNoBitAvailable is returned when no more bits are available to set
+	ErrNoBitAvailable = errors.New("no bit available")
+	// ErrBitAllocated is returned when the specific bit requested is already set
+	ErrBitAllocated = errors.New("requested bit is already allocated")
+)
+
+// Handle contains the sequece representing the bitmask and its identifier
+type Handle struct {
+	bits       uint64
+	unselected uint64
+	head       *sequence
+	app        string
+	id         string
+	dbIndex    uint64
+	dbExists   bool
+	curr       uint64
+	store      datastore.DataStore
+	sync.Mutex
+}
+
+// NewHandle returns a thread-safe instance of the bitmask handler
+func NewHandle(app string, ds datastore.DataStore, id string, numElements uint64) (*Handle, error) {
+	h := &Handle{
+		app:        app,
+		id:         id,
+		store:      ds,
+		bits:       numElements,
+		unselected: numElements,
+		head: &sequence{
+			block: 0x0,
+			count: getNumBlocks(numElements),
+		},
+	}
+
+	if h.store == nil {
+		return h, nil
+	}
+
+	// Get the initial status from the ds if present.
+	if err := h.store.GetObject(datastore.Key(h.Key()...), h); err != nil && err != datastore.ErrKeyNotFound {
+		return nil, err
+	}
+
+	// If the handle is not in store, write it.
+	if !h.Exists() {
+		if err := h.writeToStore(); err != nil {
+			return nil, fmt.Errorf("failed to write bitsequence to store: %v", err)
+		}
+	}
+
+	return h, nil
+}
+
+// sequence represents a recurring sequence of 32 bits long bitmasks
+type sequence struct {
+	block uint32    // block is a symbol representing 4 byte long allocation bitmask
+	count uint64    // number of consecutive blocks (symbols)
+	next  *sequence // next sequence
+}
+
+// String returns a string representation of the block sequence starting from this block
+func (s *sequence) toString() string {
+	var nextBlock string
+	if s.next == nil {
+		nextBlock = "end"
+	} else {
+		nextBlock = s.next.toString()
+	}
+	return fmt.Sprintf("(0x%x, %d)->%s", s.block, s.count, nextBlock)
+}
+
+// GetAvailableBit returns the position of the first unset bit in the bitmask represented by this sequence
+func (s *sequence) getAvailableBit(from uint64) (uint64, uint64, error) {
+	if s.block == blockMAX || s.count == 0 {
+		return invalidPos, invalidPos, ErrNoBitAvailable
+	}
+	bits := from
+	bitSel := blockFirstBit >> from
+	for bitSel > 0 && s.block&bitSel != 0 {
+		bitSel >>= 1
+		bits++
+	}
+	// Check if the loop exited because it could not
+	// find any available bit int block  starting from
+	// "from". Return invalid pos in that case.
+	if bitSel == 0 {
+		return invalidPos, invalidPos, ErrNoBitAvailable
+	}
+	return bits / 8, bits % 8, nil
+}
+
+// GetCopy returns a copy of the linked list rooted at this node
+func (s *sequence) getCopy() *sequence {
+	n := &sequence{block: s.block, count: s.count}
+	pn := n
+	ps := s.next
+	for ps != nil {
+		pn.next = &sequence{block: ps.block, count: ps.count}
+		pn = pn.next
+		ps = ps.next
+	}
+	return n
+}
+
+// Equal checks if this sequence is equal to the passed one
+func (s *sequence) equal(o *sequence) bool {
+	this := s
+	other := o
+	for this != nil {
+		if other == nil {
+			return false
+		}
+		if this.block != other.block || this.count != other.count {
+			return false
+		}
+		this = this.next
+		other = other.next
+	}
+	// Check if other is longer than this
+	if other != nil {
+		return false
+	}
+	return true
+}
+
+// ToByteArray converts the sequence into a byte array
+func (s *sequence) toByteArray() ([]byte, error) {
+	var bb []byte
+
+	p := s
+	for p != nil {
+		b := make([]byte, 12)
+		binary.BigEndian.PutUint32(b[0:], p.block)
+		binary.BigEndian.PutUint64(b[4:], p.count)
+		bb = append(bb, b...)
+		p = p.next
+	}
+
+	return bb, nil
+}
+
+// fromByteArray construct the sequence from the byte array
+func (s *sequence) fromByteArray(data []byte) error {
+	l := len(data)
+	if l%12 != 0 {
+		return fmt.Errorf("cannot deserialize byte sequence of length %d (%v)", l, data)
+	}
+
+	p := s
+	i := 0
+	for {
+		p.block = binary.BigEndian.Uint32(data[i : i+4])
+		p.count = binary.BigEndian.Uint64(data[i+4 : i+12])
+		i += 12
+		if i == l {
+			break
+		}
+		p.next = &sequence{}
+		p = p.next
+	}
+
+	return nil
+}
+
+func (h *Handle) getCopy() *Handle {
+	return &Handle{
+		bits:       h.bits,
+		unselected: h.unselected,
+		head:       h.head.getCopy(),
+		app:        h.app,
+		id:         h.id,
+		dbIndex:    h.dbIndex,
+		dbExists:   h.dbExists,
+		store:      h.store,
+		curr:       h.curr,
+	}
+}
+
+// SetAnyInRange atomically sets the first unset bit in the specified range in the sequence and returns the corresponding ordinal
+func (h *Handle) SetAnyInRange(start, end uint64, serial bool) (uint64, error) {
+	if end < start || end >= h.bits {
+		return invalidPos, fmt.Errorf("invalid bit range [%d, %d]", start, end)
+	}
+	if h.Unselected() == 0 {
+		return invalidPos, ErrNoBitAvailable
+	}
+	return h.set(0, start, end, true, false, serial)
+}
+
+// SetAny atomically sets the first unset bit in the sequence and returns the corresponding ordinal
+func (h *Handle) SetAny(serial bool) (uint64, error) {
+	if h.Unselected() == 0 {
+		return invalidPos, ErrNoBitAvailable
+	}
+	return h.set(0, 0, h.bits-1, true, false, serial)
+}
+
+// Set atomically sets the corresponding bit in the sequence
+func (h *Handle) Set(ordinal uint64) error {
+	if err := h.validateOrdinal(ordinal); err != nil {
+		return err
+	}
+	_, err := h.set(ordinal, 0, 0, false, false, false)
+	return err
+}
+
+// Unset atomically unsets the corresponding bit in the sequence
+func (h *Handle) Unset(ordinal uint64) error {
+	if err := h.validateOrdinal(ordinal); err != nil {
+		return err
+	}
+	_, err := h.set(ordinal, 0, 0, false, true, false)
+	return err
+}
+
+// IsSet atomically checks if the ordinal bit is set. In case ordinal
+// is outside of the bit sequence limits, false is returned.
+func (h *Handle) IsSet(ordinal uint64) bool {
+	if err := h.validateOrdinal(ordinal); err != nil {
+		return false
+	}
+	h.Lock()
+	_, _, err := checkIfAvailable(h.head, ordinal)
+	h.Unlock()
+	return err != nil
+}
+
+func (h *Handle) runConsistencyCheck() bool {
+	corrupted := false
+	for p, c := h.head, h.head.next; c != nil; c = c.next {
+		if c.count == 0 {
+			corrupted = true
+			p.next = c.next
+			continue // keep same p
+		}
+		p = c
+	}
+	return corrupted
+}
+
+// CheckConsistency checks if the bit sequence is in an inconsistent state and attempts to fix it.
+// It looks for a corruption signature that may happen in docker 1.9.0 and 1.9.1.
+func (h *Handle) CheckConsistency() error {
+	for {
+		h.Lock()
+		store := h.store
+		h.Unlock()
+
+		if store != nil {
+			if err := store.GetObject(datastore.Key(h.Key()...), h); err != nil && err != datastore.ErrKeyNotFound {
+				return err
+			}
+		}
+
+		h.Lock()
+		nh := h.getCopy()
+		h.Unlock()
+
+		if !nh.runConsistencyCheck() {
+			return nil
+		}
+
+		if err := nh.writeToStore(); err != nil {
+			if _, ok := err.(types.RetryError); !ok {
+				return fmt.Errorf("internal failure while fixing inconsistent bitsequence: %v", err)
+			}
+			continue
+		}
+
+		logrus.Infof("Fixed inconsistent bit sequence in datastore:\n%s\n%s", h, nh)
+
+		h.Lock()
+		h.head = nh.head
+		h.Unlock()
+
+		return nil
+	}
+}
+
+// set/reset the bit
+func (h *Handle) set(ordinal, start, end uint64, any bool, release bool, serial bool) (uint64, error) {
+	var (
+		bitPos  uint64
+		bytePos uint64
+		ret     uint64
+		err     error
+	)
+
+	for {
+		var store datastore.DataStore
+		curr := uint64(0)
+		h.Lock()
+		store = h.store
+		if store != nil {
+			h.Unlock() // The lock is acquired in the GetObject
+			if err := store.GetObject(datastore.Key(h.Key()...), h); err != nil && err != datastore.ErrKeyNotFound {
+				return ret, err
+			}
+			h.Lock() // Acquire the lock back
+		}
+		logrus.Debugf("Received set for ordinal %v, start %v, end %v, any %t, release %t, serial:%v curr:%d \n", ordinal, start, end, any, release, serial, h.curr)
+		if serial {
+			curr = h.curr
+		}
+		// Get position if available
+		if release {
+			bytePos, bitPos = ordinalToPos(ordinal)
+		} else {
+			if any {
+				bytePos, bitPos, err = getAvailableFromCurrent(h.head, start, curr, end)
+				ret = posToOrdinal(bytePos, bitPos)
+				if err == nil {
+					h.curr = ret + 1
+				}
+			} else {
+				bytePos, bitPos, err = checkIfAvailable(h.head, ordinal)
+				ret = ordinal
+			}
+		}
+		if err != nil {
+			h.Unlock()
+			return ret, err
+		}
+
+		// Create a private copy of h and work on it
+		nh := h.getCopy()
+
+		nh.head = pushReservation(bytePos, bitPos, nh.head, release)
+		if release {
+			nh.unselected++
+		} else {
+			nh.unselected--
+		}
+
+		if h.store != nil {
+			h.Unlock()
+			// Attempt to write private copy to store
+			if err := nh.writeToStore(); err != nil {
+				if _, ok := err.(types.RetryError); !ok {
+					return ret, fmt.Errorf("internal failure while setting the bit: %v", err)
+				}
+				// Retry
+				continue
+			}
+			h.Lock()
+		}
+
+		// Previous atomic push was succesfull. Save private copy to local copy
+		h.unselected = nh.unselected
+		h.head = nh.head
+		h.dbExists = nh.dbExists
+		h.dbIndex = nh.dbIndex
+		h.Unlock()
+		return ret, nil
+	}
+}
+
+// checks is needed because to cover the case where the number of bits is not a multiple of blockLen
+func (h *Handle) validateOrdinal(ordinal uint64) error {
+	h.Lock()
+	defer h.Unlock()
+	if ordinal >= h.bits {
+		return errors.New("bit does not belong to the sequence")
+	}
+	return nil
+}
+
+// Destroy removes from the datastore the data belonging to this handle
+func (h *Handle) Destroy() error {
+	for {
+		if err := h.deleteFromStore(); err != nil {
+			if _, ok := err.(types.RetryError); !ok {
+				return fmt.Errorf("internal failure while destroying the sequence: %v", err)
+			}
+			// Fetch latest
+			if err := h.store.GetObject(datastore.Key(h.Key()...), h); err != nil {
+				if err == datastore.ErrKeyNotFound { // already removed
+					return nil
+				}
+				return fmt.Errorf("failed to fetch from store when destroying the sequence: %v", err)
+			}
+			continue
+		}
+		return nil
+	}
+}
+
+// ToByteArray converts this handle's data into a byte array
+func (h *Handle) ToByteArray() ([]byte, error) {
+
+	h.Lock()
+	defer h.Unlock()
+	ba := make([]byte, 16)
+	binary.BigEndian.PutUint64(ba[0:], h.bits)
+	binary.BigEndian.PutUint64(ba[8:], h.unselected)
+	bm, err := h.head.toByteArray()
+	if err != nil {
+		return nil, fmt.Errorf("failed to serialize head: %s", err.Error())
+	}
+	ba = append(ba, bm...)
+
+	return ba, nil
+}
+
+// FromByteArray reads his handle's data from a byte array
+func (h *Handle) FromByteArray(ba []byte) error {
+	if ba == nil {
+		return errors.New("nil byte array")
+	}
+
+	nh := &sequence{}
+	err := nh.fromByteArray(ba[16:])
+	if err != nil {
+		return fmt.Errorf("failed to deserialize head: %s", err.Error())
+	}
+
+	h.Lock()
+	h.head = nh
+	h.bits = binary.BigEndian.Uint64(ba[0:8])
+	h.unselected = binary.BigEndian.Uint64(ba[8:16])
+	h.Unlock()
+
+	return nil
+}
+
+// Bits returns the length of the bit sequence
+func (h *Handle) Bits() uint64 {
+	return h.bits
+}
+
+// Unselected returns the number of bits which are not selected
+func (h *Handle) Unselected() uint64 {
+	h.Lock()
+	defer h.Unlock()
+	return h.unselected
+}
+
+func (h *Handle) String() string {
+	h.Lock()
+	defer h.Unlock()
+	return fmt.Sprintf("App: %s, ID: %s, DBIndex: 0x%x, bits: %d, unselected: %d, sequence: %s",
+		h.app, h.id, h.dbIndex, h.bits, h.unselected, h.head.toString())
+}
+
+// MarshalJSON encodes Handle into json message
+func (h *Handle) MarshalJSON() ([]byte, error) {
+	m := map[string]interface{}{
+		"id": h.id,
+	}
+
+	b, err := h.ToByteArray()
+	if err != nil {
+		return nil, err
+	}
+	m["sequence"] = b
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes json message into Handle
+func (h *Handle) UnmarshalJSON(data []byte) error {
+	var (
+		m   map[string]interface{}
+		b   []byte
+		err error
+	)
+	if err = json.Unmarshal(data, &m); err != nil {
+		return err
+	}
+	h.id = m["id"].(string)
+	bi, _ := json.Marshal(m["sequence"])
+	if err := json.Unmarshal(bi, &b); err != nil {
+		return err
+	}
+	return h.FromByteArray(b)
+}
+
+// getFirstAvailable looks for the first unset bit in passed mask starting from start
+func getFirstAvailable(head *sequence, start uint64) (uint64, uint64, error) {
+	// Find sequence which contains the start bit
+	byteStart, bitStart := ordinalToPos(start)
+	current, _, precBlocks, inBlockBytePos := findSequence(head, byteStart)
+	// Derive the this sequence offsets
+	byteOffset := byteStart - inBlockBytePos
+	bitOffset := inBlockBytePos*8 + bitStart
+	for current != nil {
+		if current.block != blockMAX {
+			// If the current block is not full, check if there is any bit
+			// from the current bit in the current block. If not, before proceeding to the
+			// next block node, make sure we check for available bit in the next
+			// instance of the same block. Due to RLE same block signature will be
+			// compressed.
+		retry:
+			bytePos, bitPos, err := current.getAvailableBit(bitOffset)
+			if err != nil && precBlocks == current.count-1 {
+				// This is the last instance in the same block node,
+				// so move to the next block.
+				goto next
+			}
+			if err != nil {
+				// There are some more instances of the same block, so add the offset
+				// and be optimistic that you will find the available bit in the next
+				// instance of the same block.
+				bitOffset = 0
+				byteOffset += blockBytes
+				precBlocks++
+				goto retry
+			}
+			return byteOffset + bytePos, bitPos, err
+		}
+		// Moving to next block: Reset bit offset.
+	next:
+		bitOffset = 0
+		byteOffset += (current.count * blockBytes) - (precBlocks * blockBytes)
+		precBlocks = 0
+		current = current.next
+	}
+	return invalidPos, invalidPos, ErrNoBitAvailable
+}
+
+// getAvailableFromCurrent will look for available ordinal from the current ordinal.
+// If none found then it will loop back to the start to check of the available bit.
+// This can be further optimized to check from start till curr in case of a rollover
+func getAvailableFromCurrent(head *sequence, start, curr, end uint64) (uint64, uint64, error) {
+	var bytePos, bitPos uint64
+	var err error
+	if curr != 0 && curr > start {
+		bytePos, bitPos, err = getFirstAvailable(head, curr)
+		ret := posToOrdinal(bytePos, bitPos)
+		if end < ret || err != nil {
+			goto begin
+		}
+		return bytePos, bitPos, nil
+	}
+
+begin:
+	bytePos, bitPos, err = getFirstAvailable(head, start)
+	ret := posToOrdinal(bytePos, bitPos)
+	if end < ret || err != nil {
+		return invalidPos, invalidPos, ErrNoBitAvailable
+	}
+	return bytePos, bitPos, nil
+}
+
+// checkIfAvailable checks if the bit correspondent to the specified ordinal is unset
+// If the ordinal is beyond the sequence limits, a negative response is returned
+func checkIfAvailable(head *sequence, ordinal uint64) (uint64, uint64, error) {
+	bytePos, bitPos := ordinalToPos(ordinal)
+
+	// Find the sequence containing this byte
+	current, _, _, inBlockBytePos := findSequence(head, bytePos)
+	if current != nil {
+		// Check whether the bit corresponding to the ordinal address is unset
+		bitSel := blockFirstBit >> (inBlockBytePos*8 + bitPos)
+		if current.block&bitSel == 0 {
+			return bytePos, bitPos, nil
+		}
+	}
+
+	return invalidPos, invalidPos, ErrBitAllocated
+}
+
+// Given the byte position and the sequences list head, return the pointer to the
+// sequence containing the byte (current), the pointer to the previous sequence,
+// the number of blocks preceding the block containing the byte inside the current sequence.
+// If bytePos is outside of the list, function will return (nil, nil, 0, invalidPos)
+func findSequence(head *sequence, bytePos uint64) (*sequence, *sequence, uint64, uint64) {
+	// Find the sequence containing this byte
+	previous := head
+	current := head
+	n := bytePos
+	for current.next != nil && n >= (current.count*blockBytes) { // Nil check for less than 32 addresses masks
+		n -= (current.count * blockBytes)
+		previous = current
+		current = current.next
+	}
+
+	// If byte is outside of the list, let caller know
+	if n >= (current.count * blockBytes) {
+		return nil, nil, 0, invalidPos
+	}
+
+	// Find the byte position inside the block and the number of blocks
+	// preceding the block containing the byte inside this sequence
+	precBlocks := n / blockBytes
+	inBlockBytePos := bytePos % blockBytes
+
+	return current, previous, precBlocks, inBlockBytePos
+}
+
+// PushReservation pushes the bit reservation inside the bitmask.
+// Given byte and bit positions, identify the sequence (current) which holds the block containing the affected bit.
+// Create a new block with the modified bit according to the operation (allocate/release).
+// Create a new sequence containing the new block and insert it in the proper position.
+// Remove current sequence if empty.
+// Check if new sequence can be merged with neighbour (previous/next) sequences.
+//
+//
+// Identify "current" sequence containing block:
+//                                      [prev seq] [current seq] [next seq]
+//
+// Based on block position, resulting list of sequences can be any of three forms:
+//
+//        block position                        Resulting list of sequences
+// A) block is first in current:         [prev seq] [new] [modified current seq] [next seq]
+// B) block is last in current:          [prev seq] [modified current seq] [new] [next seq]
+// C) block is in the middle of current: [prev seq] [curr pre] [new] [curr post] [next seq]
+func pushReservation(bytePos, bitPos uint64, head *sequence, release bool) *sequence {
+	// Store list's head
+	newHead := head
+
+	// Find the sequence containing this byte
+	current, previous, precBlocks, inBlockBytePos := findSequence(head, bytePos)
+	if current == nil {
+		return newHead
+	}
+
+	// Construct updated block
+	bitSel := blockFirstBit >> (inBlockBytePos*8 + bitPos)
+	newBlock := current.block
+	if release {
+		newBlock &^= bitSel
+	} else {
+		newBlock |= bitSel
+	}
+
+	// Quit if it was a redundant request
+	if current.block == newBlock {
+		return newHead
+	}
+
+	// Current sequence inevitably looses one block, upadate count
+	current.count--
+
+	// Create new sequence
+	newSequence := &sequence{block: newBlock, count: 1}
+
+	// Insert the new sequence in the list based on block position
+	if precBlocks == 0 { // First in sequence (A)
+		newSequence.next = current
+		if current == head {
+			newHead = newSequence
+			previous = newHead
+		} else {
+			previous.next = newSequence
+		}
+		removeCurrentIfEmpty(&newHead, newSequence, current)
+		mergeSequences(previous)
+	} else if precBlocks == current.count { // Last in sequence (B)
+		newSequence.next = current.next
+		current.next = newSequence
+		mergeSequences(current)
+	} else { // In between the sequence (C)
+		currPre := &sequence{block: current.block, count: precBlocks, next: newSequence}
+		currPost := current
+		currPost.count -= precBlocks
+		newSequence.next = currPost
+		if currPost == head {
+			newHead = currPre
+		} else {
+			previous.next = currPre
+		}
+		// No merging or empty current possible here
+	}
+
+	return newHead
+}
+
+// Removes the current sequence from the list if empty, adjusting the head pointer if needed
+func removeCurrentIfEmpty(head **sequence, previous, current *sequence) {
+	if current.count == 0 {
+		if current == *head {
+			*head = current.next
+		} else {
+			previous.next = current.next
+			current = current.next
+		}
+	}
+}
+
+// Given a pointer to a sequence, it checks if it can be merged with any following sequences
+// It stops when no more merging is possible.
+// TODO: Optimization: only attempt merge from start to end sequence, no need to scan till the end of the list
+func mergeSequences(seq *sequence) {
+	if seq != nil {
+		// Merge all what possible from seq
+		for seq.next != nil && seq.block == seq.next.block {
+			seq.count += seq.next.count
+			seq.next = seq.next.next
+		}
+		// Move to next
+		mergeSequences(seq.next)
+	}
+}
+
+func getNumBlocks(numBits uint64) uint64 {
+	numBlocks := numBits / uint64(blockLen)
+	if numBits%uint64(blockLen) != 0 {
+		numBlocks++
+	}
+	return numBlocks
+}
+
+func ordinalToPos(ordinal uint64) (uint64, uint64) {
+	return ordinal / 8, ordinal % 8
+}
+
+func posToOrdinal(bytePos, bitPos uint64) uint64 {
+	return bytePos*8 + bitPos
+}
diff --git a/vendor/github.com/docker/libnetwork/bitseq/store.go b/vendor/github.com/docker/libnetwork/bitseq/store.go
new file mode 100644
index 0000000000..cdb7f04264
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/bitseq/store.go
@@ -0,0 +1,142 @@
+package bitseq
+
+import (
+	"encoding/json"
+	"fmt"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/types"
+)
+
+// Key provides the Key to be used in KV Store
+func (h *Handle) Key() []string {
+	h.Lock()
+	defer h.Unlock()
+	return []string{h.app, h.id}
+}
+
+// KeyPrefix returns the immediate parent key that can be used for tree walk
+func (h *Handle) KeyPrefix() []string {
+	h.Lock()
+	defer h.Unlock()
+	return []string{h.app}
+}
+
+// Value marshals the data to be stored in the KV store
+func (h *Handle) Value() []byte {
+	b, err := json.Marshal(h)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+// SetValue unmarshals the data from the KV store
+func (h *Handle) SetValue(value []byte) error {
+	return json.Unmarshal(value, h)
+}
+
+// Index returns the latest DB Index as seen by this object
+func (h *Handle) Index() uint64 {
+	h.Lock()
+	defer h.Unlock()
+	return h.dbIndex
+}
+
+// SetIndex method allows the datastore to store the latest DB Index into this object
+func (h *Handle) SetIndex(index uint64) {
+	h.Lock()
+	h.dbIndex = index
+	h.dbExists = true
+	h.Unlock()
+}
+
+// Exists method is true if this object has been stored in the DB.
+func (h *Handle) Exists() bool {
+	h.Lock()
+	defer h.Unlock()
+	return h.dbExists
+}
+
+// New method returns a handle based on the receiver handle
+func (h *Handle) New() datastore.KVObject {
+	h.Lock()
+	defer h.Unlock()
+
+	return &Handle{
+		app:   h.app,
+		store: h.store,
+	}
+}
+
+// CopyTo deep copies the handle into the passed destination object
+func (h *Handle) CopyTo(o datastore.KVObject) error {
+	h.Lock()
+	defer h.Unlock()
+
+	dstH := o.(*Handle)
+	if h == dstH {
+		return nil
+	}
+	dstH.Lock()
+	dstH.bits = h.bits
+	dstH.unselected = h.unselected
+	dstH.head = h.head.getCopy()
+	dstH.app = h.app
+	dstH.id = h.id
+	dstH.dbIndex = h.dbIndex
+	dstH.dbExists = h.dbExists
+	dstH.store = h.store
+	dstH.curr = h.curr
+	dstH.Unlock()
+
+	return nil
+}
+
+// Skip provides a way for a KV Object to avoid persisting it in the KV Store
+func (h *Handle) Skip() bool {
+	return false
+}
+
+// DataScope method returns the storage scope of the datastore
+func (h *Handle) DataScope() string {
+	h.Lock()
+	defer h.Unlock()
+
+	return h.store.Scope()
+}
+
+func (h *Handle) fromDsValue(value []byte) error {
+	var ba []byte
+	if err := json.Unmarshal(value, &ba); err != nil {
+		return fmt.Errorf("failed to decode json: %s", err.Error())
+	}
+	if err := h.FromByteArray(ba); err != nil {
+		return fmt.Errorf("failed to decode handle: %s", err.Error())
+	}
+	return nil
+}
+
+func (h *Handle) writeToStore() error {
+	h.Lock()
+	store := h.store
+	h.Unlock()
+	if store == nil {
+		return nil
+	}
+	err := store.PutObjectAtomic(h)
+	if err == datastore.ErrKeyModified {
+		return types.RetryErrorf("failed to perform atomic write (%v). Retry might fix the error", err)
+	}
+	return err
+}
+
+func (h *Handle) deleteFromStore() error {
+	h.Lock()
+	store := h.store
+	h.Unlock()
+	if store == nil {
+		return nil
+	}
+	return store.DeleteObjectAtomic(h)
+}
diff --git a/vendor/github.com/docker/libnetwork/client/mflag/LICENSE b/vendor/github.com/docker/libnetwork/client/mflag/LICENSE
new file mode 100644
index 0000000000..9b4f4a294e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/client/mflag/LICENSE
@@ -0,0 +1,27 @@
+Copyright (c) 2014-2016 The Docker & Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/docker/libnetwork/cluster/provider.go b/vendor/github.com/docker/libnetwork/cluster/provider.go
new file mode 100644
index 0000000000..0259eb7005
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/cluster/provider.go
@@ -0,0 +1,37 @@
+package cluster
+
+import (
+	"context"
+
+	"github.com/docker/docker/api/types/network"
+)
+
+const (
+	// EventSocketChange control socket changed
+	EventSocketChange = iota
+	// EventNodeReady cluster node in ready state
+	EventNodeReady
+	// EventNodeLeave node is leaving the cluster
+	EventNodeLeave
+	// EventNetworkKeysAvailable network keys correctly configured in the networking layer
+	EventNetworkKeysAvailable
+)
+
+// ConfigEventType type of the event produced by the cluster
+type ConfigEventType uint8
+
+// Provider provides clustering config details
+type Provider interface {
+	IsManager() bool
+	IsAgent() bool
+	GetLocalAddress() string
+	GetListenAddress() string
+	GetAdvertiseAddress() string
+	GetDataPathAddress() string
+	GetRemoteAddressList() []string
+	ListenClusterEvents() <-chan ConfigEventType
+	AttachNetwork(string, string, []string) (*network.NetworkingConfig, error)
+	DetachNetwork(string, string) error
+	UpdateAttachment(string, string, *network.NetworkingConfig) error
+	WaitForDetachment(context.Context, string, string, string, string) error
+}
diff --git a/vendor/github.com/docker/libnetwork/common/caller.go b/vendor/github.com/docker/libnetwork/common/caller.go
new file mode 100644
index 0000000000..0dec3bc0bc
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/common/caller.go
@@ -0,0 +1,29 @@
+package common
+
+import (
+	"runtime"
+	"strings"
+)
+
+func callerInfo(i int) string {
+	ptr, _, _, ok := runtime.Caller(i)
+	fName := "unknown"
+	if ok {
+		f := runtime.FuncForPC(ptr)
+		if f != nil {
+			// f.Name() is like: github.com/docker/libnetwork/common.MethodName
+			tmp := strings.Split(f.Name(), ".")
+			if len(tmp) > 0 {
+				fName = tmp[len(tmp)-1]
+			}
+		}
+	}
+
+	return fName
+}
+
+// CallerName returns the name of the function at the specified level
+// level == 0 means current method name
+func CallerName(level int) string {
+	return callerInfo(2 + level)
+}
diff --git a/vendor/github.com/docker/libnetwork/common/setmatrix.go b/vendor/github.com/docker/libnetwork/common/setmatrix.go
new file mode 100644
index 0000000000..72be5bbbfc
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/common/setmatrix.go
@@ -0,0 +1,135 @@
+package common
+
+import (
+	"sync"
+
+	mapset "github.com/deckarep/golang-set"
+)
+
+// SetMatrix is a map of Sets
+type SetMatrix interface {
+	// Get returns the members of the set for a specific key as a slice.
+	Get(key string) ([]interface{}, bool)
+	// Contains is used to verify if an element is in a set for a specific key
+	// returns true if the element is in the set
+	// returns true if there is a set for the key
+	Contains(key string, value interface{}) (bool, bool)
+	// Insert inserts the value in the set of a key
+	// returns true if the value is inserted (was not already in the set), false otherwise
+	// returns also the length of the set for the key
+	Insert(key string, value interface{}) (bool, int)
+	// Remove removes the value in the set for a specific key
+	// returns true if the value is deleted, false otherwise
+	// returns also the length of the set for the key
+	Remove(key string, value interface{}) (bool, int)
+	// Cardinality returns the number of elements in the set for a key
+	// returns false if the set is not present
+	Cardinality(key string) (int, bool)
+	// String returns the string version of the set, empty otherwise
+	// returns false if the set is not present
+	String(key string) (string, bool)
+	// Returns all the keys in the map
+	Keys() []string
+}
+
+type setMatrix struct {
+	matrix map[string]mapset.Set
+
+	sync.Mutex
+}
+
+// NewSetMatrix creates a new set matrix object
+func NewSetMatrix() SetMatrix {
+	s := &setMatrix{}
+	s.init()
+	return s
+}
+
+func (s *setMatrix) init() {
+	s.matrix = make(map[string]mapset.Set)
+}
+
+func (s *setMatrix) Get(key string) ([]interface{}, bool) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		return nil, ok
+	}
+	return set.ToSlice(), ok
+}
+
+func (s *setMatrix) Contains(key string, value interface{}) (bool, bool) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		return false, ok
+	}
+	return set.Contains(value), ok
+}
+
+func (s *setMatrix) Insert(key string, value interface{}) (bool, int) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		s.matrix[key] = mapset.NewSet()
+		s.matrix[key].Add(value)
+		return true, 1
+	}
+
+	return set.Add(value), set.Cardinality()
+}
+
+func (s *setMatrix) Remove(key string, value interface{}) (bool, int) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		return false, 0
+	}
+
+	var removed bool
+	if set.Contains(value) {
+		set.Remove(value)
+		removed = true
+		// If the set is empty remove it from the matrix
+		if set.Cardinality() == 0 {
+			delete(s.matrix, key)
+		}
+	}
+
+	return removed, set.Cardinality()
+}
+
+func (s *setMatrix) Cardinality(key string) (int, bool) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		return 0, ok
+	}
+
+	return set.Cardinality(), ok
+}
+
+func (s *setMatrix) String(key string) (string, bool) {
+	s.Lock()
+	defer s.Unlock()
+	set, ok := s.matrix[key]
+	if !ok {
+		return "", ok
+	}
+	return set.String(), ok
+}
+
+func (s *setMatrix) Keys() []string {
+	s.Lock()
+	defer s.Unlock()
+	keys := make([]string, 0, len(s.matrix))
+	for k := range s.matrix {
+		keys = append(keys, k)
+	}
+	return keys
+}
diff --git a/vendor/github.com/docker/libnetwork/config/config.go b/vendor/github.com/docker/libnetwork/config/config.go
new file mode 100644
index 0000000000..4ba85a9c61
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/config/config.go
@@ -0,0 +1,307 @@
+package config
+
+import (
+	"strings"
+
+	"github.com/BurntSushi/toml"
+	"github.com/docker/docker/pkg/discovery"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/go-connections/tlsconfig"
+	"github.com/docker/libkv/store"
+	"github.com/docker/libnetwork/cluster"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/ipamutils"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/osl"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	warningThNetworkControlPlaneMTU = 1500
+	minimumNetworkControlPlaneMTU   = 500
+)
+
+// Config encapsulates configurations of various Libnetwork components
+type Config struct {
+	Daemon          DaemonCfg
+	Cluster         ClusterCfg
+	Scopes          map[string]*datastore.ScopeCfg
+	ActiveSandboxes map[string]interface{}
+	PluginGetter    plugingetter.PluginGetter
+}
+
+// DaemonCfg represents libnetwork core configuration
+type DaemonCfg struct {
+	Debug                  bool
+	Experimental           bool
+	DataDir                string
+	DefaultNetwork         string
+	DefaultDriver          string
+	Labels                 []string
+	DriverCfg              map[string]interface{}
+	ClusterProvider        cluster.Provider
+	NetworkControlPlaneMTU int
+	DefaultAddressPool     []*ipamutils.NetworkToSplit
+}
+
+// ClusterCfg represents cluster configuration
+type ClusterCfg struct {
+	Watcher   discovery.Watcher
+	Address   string
+	Discovery string
+	Heartbeat uint64
+}
+
+// LoadDefaultScopes loads default scope configs for scopes which
+// doesn't have explicit user specified configs.
+func (c *Config) LoadDefaultScopes(dataDir string) {
+	for k, v := range datastore.DefaultScopes(dataDir) {
+		if _, ok := c.Scopes[k]; !ok {
+			c.Scopes[k] = v
+		}
+	}
+}
+
+// ParseConfig parses the libnetwork configuration file
+func ParseConfig(tomlCfgFile string) (*Config, error) {
+	cfg := &Config{
+		Scopes: map[string]*datastore.ScopeCfg{},
+	}
+
+	if _, err := toml.DecodeFile(tomlCfgFile, cfg); err != nil {
+		return nil, err
+	}
+
+	cfg.LoadDefaultScopes(cfg.Daemon.DataDir)
+	return cfg, nil
+}
+
+// ParseConfigOptions parses the configuration options and returns
+// a reference to the corresponding Config structure
+func ParseConfigOptions(cfgOptions ...Option) *Config {
+	cfg := &Config{
+		Daemon: DaemonCfg{
+			DriverCfg: make(map[string]interface{}),
+		},
+		Scopes: make(map[string]*datastore.ScopeCfg),
+	}
+
+	cfg.ProcessOptions(cfgOptions...)
+	cfg.LoadDefaultScopes(cfg.Daemon.DataDir)
+
+	return cfg
+}
+
+// Option is an option setter function type used to pass various configurations
+// to the controller
+type Option func(c *Config)
+
+// OptionDefaultNetwork function returns an option setter for a default network
+func OptionDefaultNetwork(dn string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option DefaultNetwork: %s", dn)
+		c.Daemon.DefaultNetwork = strings.TrimSpace(dn)
+	}
+}
+
+// OptionDefaultDriver function returns an option setter for default driver
+func OptionDefaultDriver(dd string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option DefaultDriver: %s", dd)
+		c.Daemon.DefaultDriver = strings.TrimSpace(dd)
+	}
+}
+
+// OptionDefaultAddressPoolConfig function returns an option setter for default address pool
+func OptionDefaultAddressPoolConfig(addressPool []*ipamutils.NetworkToSplit) Option {
+	return func(c *Config) {
+		c.Daemon.DefaultAddressPool = addressPool
+	}
+}
+
+// OptionDriverConfig returns an option setter for driver configuration.
+func OptionDriverConfig(networkType string, config map[string]interface{}) Option {
+	return func(c *Config) {
+		c.Daemon.DriverCfg[networkType] = config
+	}
+}
+
+// OptionLabels function returns an option setter for labels
+func OptionLabels(labels []string) Option {
+	return func(c *Config) {
+		for _, label := range labels {
+			if strings.HasPrefix(label, netlabel.Prefix) {
+				c.Daemon.Labels = append(c.Daemon.Labels, label)
+			}
+		}
+	}
+}
+
+// OptionKVProvider function returns an option setter for kvstore provider
+func OptionKVProvider(provider string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option OptionKVProvider: %s", provider)
+		if _, ok := c.Scopes[datastore.GlobalScope]; !ok {
+			c.Scopes[datastore.GlobalScope] = &datastore.ScopeCfg{}
+		}
+		c.Scopes[datastore.GlobalScope].Client.Provider = strings.TrimSpace(provider)
+	}
+}
+
+// OptionKVProviderURL function returns an option setter for kvstore url
+func OptionKVProviderURL(url string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option OptionKVProviderURL: %s", url)
+		if _, ok := c.Scopes[datastore.GlobalScope]; !ok {
+			c.Scopes[datastore.GlobalScope] = &datastore.ScopeCfg{}
+		}
+		c.Scopes[datastore.GlobalScope].Client.Address = strings.TrimSpace(url)
+	}
+}
+
+// OptionKVOpts function returns an option setter for kvstore options
+func OptionKVOpts(opts map[string]string) Option {
+	return func(c *Config) {
+		if opts["kv.cacertfile"] != "" && opts["kv.certfile"] != "" && opts["kv.keyfile"] != "" {
+			logrus.Info("Option Initializing KV with TLS")
+			tlsConfig, err := tlsconfig.Client(tlsconfig.Options{
+				CAFile:   opts["kv.cacertfile"],
+				CertFile: opts["kv.certfile"],
+				KeyFile:  opts["kv.keyfile"],
+			})
+			if err != nil {
+				logrus.Errorf("Unable to set up TLS: %s", err)
+				return
+			}
+			if _, ok := c.Scopes[datastore.GlobalScope]; !ok {
+				c.Scopes[datastore.GlobalScope] = &datastore.ScopeCfg{}
+			}
+			if c.Scopes[datastore.GlobalScope].Client.Config == nil {
+				c.Scopes[datastore.GlobalScope].Client.Config = &store.Config{TLS: tlsConfig}
+			} else {
+				c.Scopes[datastore.GlobalScope].Client.Config.TLS = tlsConfig
+			}
+			// Workaround libkv/etcd bug for https
+			c.Scopes[datastore.GlobalScope].Client.Config.ClientTLS = &store.ClientTLSConfig{
+				CACertFile: opts["kv.cacertfile"],
+				CertFile:   opts["kv.certfile"],
+				KeyFile:    opts["kv.keyfile"],
+			}
+		} else {
+			logrus.Info("Option Initializing KV without TLS")
+		}
+	}
+}
+
+// OptionDiscoveryWatcher function returns an option setter for discovery watcher
+func OptionDiscoveryWatcher(watcher discovery.Watcher) Option {
+	return func(c *Config) {
+		c.Cluster.Watcher = watcher
+	}
+}
+
+// OptionDiscoveryAddress function returns an option setter for self discovery address
+func OptionDiscoveryAddress(address string) Option {
+	return func(c *Config) {
+		c.Cluster.Address = address
+	}
+}
+
+// OptionDataDir function returns an option setter for data folder
+func OptionDataDir(dataDir string) Option {
+	return func(c *Config) {
+		c.Daemon.DataDir = dataDir
+	}
+}
+
+// OptionExecRoot function returns an option setter for exec root folder
+func OptionExecRoot(execRoot string) Option {
+	return func(c *Config) {
+		osl.SetBasePath(execRoot)
+	}
+}
+
+// OptionPluginGetter returns a plugingetter for remote drivers.
+func OptionPluginGetter(pg plugingetter.PluginGetter) Option {
+	return func(c *Config) {
+		c.PluginGetter = pg
+	}
+}
+
+// OptionExperimental function returns an option setter for experimental daemon
+func OptionExperimental(exp bool) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option Experimental: %v", exp)
+		c.Daemon.Experimental = exp
+	}
+}
+
+// OptionNetworkControlPlaneMTU function returns an option setter for control plane MTU
+func OptionNetworkControlPlaneMTU(exp int) Option {
+	return func(c *Config) {
+		logrus.Debugf("Network Control Plane MTU: %d", exp)
+		if exp < warningThNetworkControlPlaneMTU {
+			logrus.Warnf("Received a MTU of %d, this value is very low, the network control plane can misbehave,"+
+				" defaulting to minimum value (%d)", exp, minimumNetworkControlPlaneMTU)
+			if exp < minimumNetworkControlPlaneMTU {
+				exp = minimumNetworkControlPlaneMTU
+			}
+		}
+		c.Daemon.NetworkControlPlaneMTU = exp
+	}
+}
+
+// ProcessOptions processes options and stores it in config
+func (c *Config) ProcessOptions(options ...Option) {
+	for _, opt := range options {
+		if opt != nil {
+			opt(c)
+		}
+	}
+}
+
+// IsValidName validates configuration objects supported by libnetwork
+func IsValidName(name string) bool {
+	return strings.TrimSpace(name) != ""
+}
+
+// OptionLocalKVProvider function returns an option setter for kvstore provider
+func OptionLocalKVProvider(provider string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option OptionLocalKVProvider: %s", provider)
+		if _, ok := c.Scopes[datastore.LocalScope]; !ok {
+			c.Scopes[datastore.LocalScope] = &datastore.ScopeCfg{}
+		}
+		c.Scopes[datastore.LocalScope].Client.Provider = strings.TrimSpace(provider)
+	}
+}
+
+// OptionLocalKVProviderURL function returns an option setter for kvstore url
+func OptionLocalKVProviderURL(url string) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option OptionLocalKVProviderURL: %s", url)
+		if _, ok := c.Scopes[datastore.LocalScope]; !ok {
+			c.Scopes[datastore.LocalScope] = &datastore.ScopeCfg{}
+		}
+		c.Scopes[datastore.LocalScope].Client.Address = strings.TrimSpace(url)
+	}
+}
+
+// OptionLocalKVProviderConfig function returns an option setter for kvstore config
+func OptionLocalKVProviderConfig(config *store.Config) Option {
+	return func(c *Config) {
+		logrus.Debugf("Option OptionLocalKVProviderConfig: %v", config)
+		if _, ok := c.Scopes[datastore.LocalScope]; !ok {
+			c.Scopes[datastore.LocalScope] = &datastore.ScopeCfg{}
+		}
+		c.Scopes[datastore.LocalScope].Client.Config = config
+	}
+}
+
+// OptionActiveSandboxes function returns an option setter for passing the sandboxes
+// which were active during previous daemon life
+func OptionActiveSandboxes(sandboxes map[string]interface{}) Option {
+	return func(c *Config) {
+		c.ActiveSandboxes = sandboxes
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/controller.go b/vendor/github.com/docker/libnetwork/controller.go
new file mode 100644
index 0000000000..225f7fa609
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/controller.go
@@ -0,0 +1,1333 @@
+/*
+Package libnetwork provides the basic functionality and extension points to
+create network namespaces and allocate interfaces for containers to use.
+
+	networkType := "bridge"
+
+	// Create a new controller instance
+	driverOptions := options.Generic{}
+	genericOption := make(map[string]interface{})
+	genericOption[netlabel.GenericData] = driverOptions
+	controller, err := libnetwork.New(config.OptionDriverConfig(networkType, genericOption))
+	if err != nil {
+		return
+	}
+
+	// Create a network for containers to join.
+	// NewNetwork accepts Variadic optional arguments that libnetwork and Drivers can make use of
+	network, err := controller.NewNetwork(networkType, "network1", "")
+	if err != nil {
+		return
+	}
+
+	// For each new container: allocate IP and interfaces. The returned network
+	// settings will be used for container infos (inspect and such), as well as
+	// iptables rules for port publishing. This info is contained or accessible
+	// from the returned endpoint.
+	ep, err := network.CreateEndpoint("Endpoint1")
+	if err != nil {
+		return
+	}
+
+	// Create the sandbox for the container.
+	// NewSandbox accepts Variadic optional arguments which libnetwork can use.
+	sbx, err := controller.NewSandbox("container1",
+		libnetwork.OptionHostname("test"),
+		libnetwork.OptionDomainname("docker.io"))
+
+	// A sandbox can join the endpoint via the join api.
+	err = ep.Join(sbx)
+	if err != nil {
+		return
+	}
+*/
+package libnetwork
+
+import (
+	"container/heap"
+	"fmt"
+	"net"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/pkg/discovery"
+	"github.com/docker/docker/pkg/locker"
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/docker/pkg/plugins"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/libnetwork/cluster"
+	"github.com/docker/libnetwork/config"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/diagnostic"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/drvregistry"
+	"github.com/docker/libnetwork/hostdiscovery"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// NetworkController provides the interface for controller instance which manages
+// networks.
+type NetworkController interface {
+	// ID provides a unique identity for the controller
+	ID() string
+
+	// BuiltinDrivers returns list of builtin drivers
+	BuiltinDrivers() []string
+
+	// BuiltinIPAMDrivers returns list of builtin ipam drivers
+	BuiltinIPAMDrivers() []string
+
+	// Config method returns the bootup configuration for the controller
+	Config() config.Config
+
+	// Create a new network. The options parameter carries network specific options.
+	NewNetwork(networkType, name string, id string, options ...NetworkOption) (Network, error)
+
+	// Networks returns the list of Network(s) managed by this controller.
+	Networks() []Network
+
+	// WalkNetworks uses the provided function to walk the Network(s) managed by this controller.
+	WalkNetworks(walker NetworkWalker)
+
+	// NetworkByName returns the Network which has the passed name. If not found, the error ErrNoSuchNetwork is returned.
+	NetworkByName(name string) (Network, error)
+
+	// NetworkByID returns the Network which has the passed id. If not found, the error ErrNoSuchNetwork is returned.
+	NetworkByID(id string) (Network, error)
+
+	// NewSandbox creates a new network sandbox for the passed container id
+	NewSandbox(containerID string, options ...SandboxOption) (Sandbox, error)
+
+	// Sandboxes returns the list of Sandbox(s) managed by this controller.
+	Sandboxes() []Sandbox
+
+	// WalkSandboxes uses the provided function to walk the Sandbox(s) managed by this controller.
+	WalkSandboxes(walker SandboxWalker)
+
+	// SandboxByID returns the Sandbox which has the passed id. If not found, a types.NotFoundError is returned.
+	SandboxByID(id string) (Sandbox, error)
+
+	// SandboxDestroy destroys a sandbox given a container ID
+	SandboxDestroy(id string) error
+
+	// Stop network controller
+	Stop()
+
+	// ReloadCondfiguration updates the controller configuration
+	ReloadConfiguration(cfgOptions ...config.Option) error
+
+	// SetClusterProvider sets cluster provider
+	SetClusterProvider(provider cluster.Provider)
+
+	// Wait for agent initialization complete in libnetwork controller
+	AgentInitWait()
+
+	// Wait for agent to stop if running
+	AgentStopWait()
+
+	// SetKeys configures the encryption key for gossip and overlay data path
+	SetKeys(keys []*types.EncryptionKey) error
+
+	// StartDiagnostic start the network diagnostic mode
+	StartDiagnostic(port int)
+	// StopDiagnostic start the network diagnostic mode
+	StopDiagnostic()
+	// IsDiagnosticEnabled returns true if the diagnostic is enabled
+	IsDiagnosticEnabled() bool
+}
+
+// NetworkWalker is a client provided function which will be used to walk the Networks.
+// When the function returns true, the walk will stop.
+type NetworkWalker func(nw Network) bool
+
+// SandboxWalker is a client provided function which will be used to walk the Sandboxes.
+// When the function returns true, the walk will stop.
+type SandboxWalker func(sb Sandbox) bool
+
+type sandboxTable map[string]*sandbox
+
+type controller struct {
+	id                     string
+	drvRegistry            *drvregistry.DrvRegistry
+	sandboxes              sandboxTable
+	cfg                    *config.Config
+	stores                 []datastore.DataStore
+	discovery              hostdiscovery.HostDiscovery
+	extKeyListener         net.Listener
+	watchCh                chan *endpoint
+	unWatchCh              chan *endpoint
+	svcRecords             map[string]svcInfo
+	nmap                   map[string]*netWatch
+	serviceBindings        map[serviceKey]*service
+	defOsSbox              osl.Sandbox
+	ingressSandbox         *sandbox
+	sboxOnce               sync.Once
+	agent                  *agent
+	networkLocker          *locker.Locker
+	agentInitDone          chan struct{}
+	agentStopDone          chan struct{}
+	keys                   []*types.EncryptionKey
+	clusterConfigAvailable bool
+	DiagnosticServer       *diagnostic.Server
+	sync.Mutex
+}
+
+type initializer struct {
+	fn    drvregistry.InitFunc
+	ntype string
+}
+
+// New creates a new instance of network controller.
+func New(cfgOptions ...config.Option) (NetworkController, error) {
+	c := &controller{
+		id:               stringid.GenerateRandomID(),
+		cfg:              config.ParseConfigOptions(cfgOptions...),
+		sandboxes:        sandboxTable{},
+		svcRecords:       make(map[string]svcInfo),
+		serviceBindings:  make(map[serviceKey]*service),
+		agentInitDone:    make(chan struct{}),
+		networkLocker:    locker.New(),
+		DiagnosticServer: diagnostic.New(),
+	}
+	c.DiagnosticServer.Init()
+
+	if err := c.initStores(); err != nil {
+		return nil, err
+	}
+
+	drvRegistry, err := drvregistry.New(c.getStore(datastore.LocalScope), c.getStore(datastore.GlobalScope), c.RegisterDriver, nil, c.cfg.PluginGetter)
+	if err != nil {
+		return nil, err
+	}
+
+	for _, i := range getInitializers(c.cfg.Daemon.Experimental) {
+		var dcfg map[string]interface{}
+
+		// External plugins don't need config passed through daemon. They can
+		// bootstrap themselves
+		if i.ntype != "remote" {
+			dcfg = c.makeDriverConfig(i.ntype)
+		}
+
+		if err := drvRegistry.AddDriver(i.ntype, i.fn, dcfg); err != nil {
+			return nil, err
+		}
+	}
+
+	if err = initIPAMDrivers(drvRegistry, nil, c.getStore(datastore.GlobalScope), c.cfg.Daemon.DefaultAddressPool); err != nil {
+		return nil, err
+	}
+
+	c.drvRegistry = drvRegistry
+
+	if c.cfg != nil && c.cfg.Cluster.Watcher != nil {
+		if err := c.initDiscovery(c.cfg.Cluster.Watcher); err != nil {
+			// Failing to initialize discovery is a bad situation to be in.
+			// But it cannot fail creating the Controller
+			logrus.Errorf("Failed to Initialize Discovery : %v", err)
+		}
+	}
+
+	c.WalkNetworks(populateSpecial)
+
+	// Reserve pools first before doing cleanup. Otherwise the
+	// cleanups of endpoint/network and sandbox below will
+	// generate many unnecessary warnings
+	c.reservePools()
+
+	// Cleanup resources
+	c.sandboxCleanup(c.cfg.ActiveSandboxes)
+	c.cleanupLocalEndpoints()
+	c.networkCleanup()
+
+	if err := c.startExternalKeyListener(); err != nil {
+		return nil, err
+	}
+
+	return c, nil
+}
+
+func (c *controller) SetClusterProvider(provider cluster.Provider) {
+	var sameProvider bool
+	c.Lock()
+	// Avoids to spawn multiple goroutine for the same cluster provider
+	if c.cfg.Daemon.ClusterProvider == provider {
+		// If the cluster provider is already set, there is already a go routine spawned
+		// that is listening for events, so nothing to do here
+		sameProvider = true
+	} else {
+		c.cfg.Daemon.ClusterProvider = provider
+	}
+	c.Unlock()
+
+	if provider == nil || sameProvider {
+		return
+	}
+	// We don't want to spawn a new go routine if the previous one did not exit yet
+	c.AgentStopWait()
+	go c.clusterAgentInit()
+}
+
+func isValidClusteringIP(addr string) bool {
+	return addr != "" && !net.ParseIP(addr).IsLoopback() && !net.ParseIP(addr).IsUnspecified()
+}
+
+// libnetwork side of agent depends on the keys. On the first receipt of
+// keys setup the agent. For subsequent key set handle the key change
+func (c *controller) SetKeys(keys []*types.EncryptionKey) error {
+	subsysKeys := make(map[string]int)
+	for _, key := range keys {
+		if key.Subsystem != subsysGossip &&
+			key.Subsystem != subsysIPSec {
+			return fmt.Errorf("key received for unrecognized subsystem")
+		}
+		subsysKeys[key.Subsystem]++
+	}
+	for s, count := range subsysKeys {
+		if count != keyringSize {
+			return fmt.Errorf("incorrect number of keys for subsystem %v", s)
+		}
+	}
+
+	agent := c.getAgent()
+
+	if agent == nil {
+		c.Lock()
+		c.keys = keys
+		c.Unlock()
+		return nil
+	}
+	return c.handleKeyChange(keys)
+}
+
+func (c *controller) getAgent() *agent {
+	c.Lock()
+	defer c.Unlock()
+	return c.agent
+}
+
+func (c *controller) clusterAgentInit() {
+	clusterProvider := c.cfg.Daemon.ClusterProvider
+	var keysAvailable bool
+	for {
+		eventType := <-clusterProvider.ListenClusterEvents()
+		// The events: EventSocketChange, EventNodeReady and EventNetworkKeysAvailable are not ordered
+		// when all the condition for the agent initialization are met then proceed with it
+		switch eventType {
+		case cluster.EventNetworkKeysAvailable:
+			// Validates that the keys are actually available before starting the initialization
+			// This will handle old spurious messages left on the channel
+			c.Lock()
+			keysAvailable = c.keys != nil
+			c.Unlock()
+			fallthrough
+		case cluster.EventSocketChange, cluster.EventNodeReady:
+			if keysAvailable && !c.isDistributedControl() {
+				c.agentOperationStart()
+				if err := c.agentSetup(clusterProvider); err != nil {
+					c.agentStopComplete()
+				} else {
+					c.agentInitComplete()
+				}
+			}
+		case cluster.EventNodeLeave:
+			keysAvailable = false
+			c.agentOperationStart()
+			c.Lock()
+			c.keys = nil
+			c.Unlock()
+
+			// We are leaving the cluster. Make sure we
+			// close the gossip so that we stop all
+			// incoming gossip updates before cleaning up
+			// any remaining service bindings. But before
+			// deleting the networks since the networks
+			// should still be present when cleaning up
+			// service bindings
+			c.agentClose()
+			c.cleanupServiceDiscovery("")
+			c.cleanupServiceBindings("")
+
+			c.agentStopComplete()
+
+			return
+		}
+	}
+}
+
+// AgentInitWait waits for agent initialization to be completed in the controller.
+func (c *controller) AgentInitWait() {
+	c.Lock()
+	agentInitDone := c.agentInitDone
+	c.Unlock()
+
+	if agentInitDone != nil {
+		<-agentInitDone
+	}
+}
+
+// AgentStopWait waits for the Agent stop to be completed in the controller
+func (c *controller) AgentStopWait() {
+	c.Lock()
+	agentStopDone := c.agentStopDone
+	c.Unlock()
+	if agentStopDone != nil {
+		<-agentStopDone
+	}
+}
+
+// agentOperationStart marks the start of an Agent Init or Agent Stop
+func (c *controller) agentOperationStart() {
+	c.Lock()
+	if c.agentInitDone == nil {
+		c.agentInitDone = make(chan struct{})
+	}
+	if c.agentStopDone == nil {
+		c.agentStopDone = make(chan struct{})
+	}
+	c.Unlock()
+}
+
+// agentInitComplete notifies the successful completion of the Agent initialization
+func (c *controller) agentInitComplete() {
+	c.Lock()
+	if c.agentInitDone != nil {
+		close(c.agentInitDone)
+		c.agentInitDone = nil
+	}
+	c.Unlock()
+}
+
+// agentStopComplete notifies the successful completion of the Agent stop
+func (c *controller) agentStopComplete() {
+	c.Lock()
+	if c.agentStopDone != nil {
+		close(c.agentStopDone)
+		c.agentStopDone = nil
+	}
+	c.Unlock()
+}
+
+func (c *controller) makeDriverConfig(ntype string) map[string]interface{} {
+	if c.cfg == nil {
+		return nil
+	}
+
+	config := make(map[string]interface{})
+
+	for _, label := range c.cfg.Daemon.Labels {
+		if !strings.HasPrefix(netlabel.Key(label), netlabel.DriverPrefix+"."+ntype) {
+			continue
+		}
+
+		config[netlabel.Key(label)] = netlabel.Value(label)
+	}
+
+	drvCfg, ok := c.cfg.Daemon.DriverCfg[ntype]
+	if ok {
+		for k, v := range drvCfg.(map[string]interface{}) {
+			config[k] = v
+		}
+	}
+
+	for k, v := range c.cfg.Scopes {
+		if !v.IsValid() {
+			continue
+		}
+		config[netlabel.MakeKVClient(k)] = discoverapi.DatastoreConfigData{
+			Scope:    k,
+			Provider: v.Client.Provider,
+			Address:  v.Client.Address,
+			Config:   v.Client.Config,
+		}
+	}
+
+	return config
+}
+
+var procReloadConfig = make(chan (bool), 1)
+
+func (c *controller) ReloadConfiguration(cfgOptions ...config.Option) error {
+	procReloadConfig <- true
+	defer func() { <-procReloadConfig }()
+
+	// For now we accept the configuration reload only as a mean to provide a global store config after boot.
+	// Refuse the configuration if it alters an existing datastore client configuration.
+	update := false
+	cfg := config.ParseConfigOptions(cfgOptions...)
+
+	for s := range c.cfg.Scopes {
+		if _, ok := cfg.Scopes[s]; !ok {
+			return types.ForbiddenErrorf("cannot accept new configuration because it removes an existing datastore client")
+		}
+	}
+	for s, nSCfg := range cfg.Scopes {
+		if eSCfg, ok := c.cfg.Scopes[s]; ok {
+			if eSCfg.Client.Provider != nSCfg.Client.Provider ||
+				eSCfg.Client.Address != nSCfg.Client.Address {
+				return types.ForbiddenErrorf("cannot accept new configuration because it modifies an existing datastore client")
+			}
+		} else {
+			if err := c.initScopedStore(s, nSCfg); err != nil {
+				return err
+			}
+			update = true
+		}
+	}
+	if !update {
+		return nil
+	}
+
+	c.Lock()
+	c.cfg = cfg
+	c.Unlock()
+
+	var dsConfig *discoverapi.DatastoreConfigData
+	for scope, sCfg := range cfg.Scopes {
+		if scope == datastore.LocalScope || !sCfg.IsValid() {
+			continue
+		}
+		dsConfig = &discoverapi.DatastoreConfigData{
+			Scope:    scope,
+			Provider: sCfg.Client.Provider,
+			Address:  sCfg.Client.Address,
+			Config:   sCfg.Client.Config,
+		}
+		break
+	}
+	if dsConfig == nil {
+		return nil
+	}
+
+	c.drvRegistry.WalkIPAMs(func(name string, driver ipamapi.Ipam, cap *ipamapi.Capability) bool {
+		err := driver.DiscoverNew(discoverapi.DatastoreConfig, *dsConfig)
+		if err != nil {
+			logrus.Errorf("Failed to set datastore in driver %s: %v", name, err)
+		}
+		return false
+	})
+
+	c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+		err := driver.DiscoverNew(discoverapi.DatastoreConfig, *dsConfig)
+		if err != nil {
+			logrus.Errorf("Failed to set datastore in driver %s: %v", name, err)
+		}
+		return false
+	})
+
+	if c.discovery == nil && c.cfg.Cluster.Watcher != nil {
+		if err := c.initDiscovery(c.cfg.Cluster.Watcher); err != nil {
+			logrus.Errorf("Failed to Initialize Discovery after configuration update: %v", err)
+		}
+	}
+
+	return nil
+}
+
+func (c *controller) ID() string {
+	return c.id
+}
+
+func (c *controller) BuiltinDrivers() []string {
+	drivers := []string{}
+	c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+		if driver.IsBuiltIn() {
+			drivers = append(drivers, name)
+		}
+		return false
+	})
+	return drivers
+}
+
+func (c *controller) BuiltinIPAMDrivers() []string {
+	drivers := []string{}
+	c.drvRegistry.WalkIPAMs(func(name string, driver ipamapi.Ipam, cap *ipamapi.Capability) bool {
+		if driver.IsBuiltIn() {
+			drivers = append(drivers, name)
+		}
+		return false
+	})
+	return drivers
+}
+
+func (c *controller) validateHostDiscoveryConfig() bool {
+	if c.cfg == nil || c.cfg.Cluster.Discovery == "" || c.cfg.Cluster.Address == "" {
+		return false
+	}
+	return true
+}
+
+func (c *controller) clusterHostID() string {
+	c.Lock()
+	defer c.Unlock()
+	if c.cfg == nil || c.cfg.Cluster.Address == "" {
+		return ""
+	}
+	addr := strings.Split(c.cfg.Cluster.Address, ":")
+	return addr[0]
+}
+
+func (c *controller) isNodeAlive(node string) bool {
+	if c.discovery == nil {
+		return false
+	}
+
+	nodes := c.discovery.Fetch()
+	for _, n := range nodes {
+		if n.String() == node {
+			return true
+		}
+	}
+
+	return false
+}
+
+func (c *controller) initDiscovery(watcher discovery.Watcher) error {
+	if c.cfg == nil {
+		return fmt.Errorf("discovery initialization requires a valid configuration")
+	}
+
+	c.discovery = hostdiscovery.NewHostDiscovery(watcher)
+	return c.discovery.Watch(c.activeCallback, c.hostJoinCallback, c.hostLeaveCallback)
+}
+
+func (c *controller) activeCallback() {
+	ds := c.getStore(datastore.GlobalScope)
+	if ds != nil && !ds.Active() {
+		ds.RestartWatch()
+	}
+}
+
+func (c *controller) hostJoinCallback(nodes []net.IP) {
+	c.processNodeDiscovery(nodes, true)
+}
+
+func (c *controller) hostLeaveCallback(nodes []net.IP) {
+	c.processNodeDiscovery(nodes, false)
+}
+
+func (c *controller) processNodeDiscovery(nodes []net.IP, add bool) {
+	c.drvRegistry.WalkDrivers(func(name string, driver driverapi.Driver, capability driverapi.Capability) bool {
+		c.pushNodeDiscovery(driver, capability, nodes, add)
+		return false
+	})
+}
+
+func (c *controller) pushNodeDiscovery(d driverapi.Driver, cap driverapi.Capability, nodes []net.IP, add bool) {
+	var self net.IP
+	if c.cfg != nil {
+		addr := strings.Split(c.cfg.Cluster.Address, ":")
+		self = net.ParseIP(addr[0])
+		// if external kvstore is not configured, try swarm-mode config
+		if self == nil {
+			if agent := c.getAgent(); agent != nil {
+				self = net.ParseIP(agent.advertiseAddr)
+			}
+		}
+	}
+
+	if d == nil || cap.ConnectivityScope != datastore.GlobalScope || nodes == nil {
+		return
+	}
+
+	for _, node := range nodes {
+		nodeData := discoverapi.NodeDiscoveryData{Address: node.String(), Self: node.Equal(self)}
+		var err error
+		if add {
+			err = d.DiscoverNew(discoverapi.NodeDiscovery, nodeData)
+		} else {
+			err = d.DiscoverDelete(discoverapi.NodeDiscovery, nodeData)
+		}
+		if err != nil {
+			logrus.Debugf("discovery notification error: %v", err)
+		}
+	}
+}
+
+func (c *controller) Config() config.Config {
+	c.Lock()
+	defer c.Unlock()
+	if c.cfg == nil {
+		return config.Config{}
+	}
+	return *c.cfg
+}
+
+func (c *controller) isManager() bool {
+	c.Lock()
+	defer c.Unlock()
+	if c.cfg == nil || c.cfg.Daemon.ClusterProvider == nil {
+		return false
+	}
+	return c.cfg.Daemon.ClusterProvider.IsManager()
+}
+
+func (c *controller) isAgent() bool {
+	c.Lock()
+	defer c.Unlock()
+	if c.cfg == nil || c.cfg.Daemon.ClusterProvider == nil {
+		return false
+	}
+	return c.cfg.Daemon.ClusterProvider.IsAgent()
+}
+
+func (c *controller) isDistributedControl() bool {
+	return !c.isManager() && !c.isAgent()
+}
+
+func (c *controller) GetPluginGetter() plugingetter.PluginGetter {
+	return c.drvRegistry.GetPluginGetter()
+}
+
+func (c *controller) RegisterDriver(networkType string, driver driverapi.Driver, capability driverapi.Capability) error {
+	c.Lock()
+	hd := c.discovery
+	c.Unlock()
+
+	if hd != nil {
+		c.pushNodeDiscovery(driver, capability, hd.Fetch(), true)
+	}
+
+	c.agentDriverNotify(driver)
+	return nil
+}
+
+// NewNetwork creates a new network of the specified network type. The options
+// are network specific and modeled in a generic way.
+func (c *controller) NewNetwork(networkType, name string, id string, options ...NetworkOption) (Network, error) {
+	if id != "" {
+		c.networkLocker.Lock(id)
+		defer c.networkLocker.Unlock(id)
+
+		if _, err := c.NetworkByID(id); err == nil {
+			return nil, NetworkNameError(id)
+		}
+	}
+
+	if !config.IsValidName(name) {
+		return nil, ErrInvalidName(name)
+	}
+
+	if id == "" {
+		id = stringid.GenerateRandomID()
+	}
+
+	defaultIpam := defaultIpamForNetworkType(networkType)
+	// Construct the network object
+	network := &network{
+		name:        name,
+		networkType: networkType,
+		generic:     map[string]interface{}{netlabel.GenericData: make(map[string]string)},
+		ipamType:    defaultIpam,
+		id:          id,
+		created:     time.Now(),
+		ctrlr:       c,
+		persist:     true,
+		drvOnce:     &sync.Once{},
+	}
+
+	network.processOptions(options...)
+	if err := network.validateConfiguration(); err != nil {
+		return nil, err
+	}
+
+	var (
+		cap *driverapi.Capability
+		err error
+	)
+
+	// Reset network types, force local scope and skip allocation and
+	// plumbing for configuration networks. Reset of the config-only
+	// network drivers is needed so that this special network is not
+	// usable by old engine versions.
+	if network.configOnly {
+		network.scope = datastore.LocalScope
+		network.networkType = "null"
+		goto addToStore
+	}
+
+	_, cap, err = network.resolveDriver(network.networkType, true)
+	if err != nil {
+		return nil, err
+	}
+
+	if network.scope == datastore.LocalScope && cap.DataScope == datastore.GlobalScope {
+		return nil, types.ForbiddenErrorf("cannot downgrade network scope for %s networks", networkType)
+
+	}
+	if network.ingress && cap.DataScope != datastore.GlobalScope {
+		return nil, types.ForbiddenErrorf("Ingress network can only be global scope network")
+	}
+
+	// At this point the network scope is still unknown if not set by user
+	if (cap.DataScope == datastore.GlobalScope || network.scope == datastore.SwarmScope) &&
+		!c.isDistributedControl() && !network.dynamic {
+		if c.isManager() {
+			// For non-distributed controlled environment, globalscoped non-dynamic networks are redirected to Manager
+			return nil, ManagerRedirectError(name)
+		}
+		return nil, types.ForbiddenErrorf("Cannot create a multi-host network from a worker node. Please create the network from a manager node.")
+	}
+
+	if network.scope == datastore.SwarmScope && c.isDistributedControl() {
+		return nil, types.ForbiddenErrorf("cannot create a swarm scoped network when swarm is not active")
+	}
+
+	// Make sure we have a driver available for this network type
+	// before we allocate anything.
+	if _, err := network.driver(true); err != nil {
+		return nil, err
+	}
+
+	// From this point on, we need the network specific configuration,
+	// which may come from a configuration-only network
+	if network.configFrom != "" {
+		t, err := c.getConfigNetwork(network.configFrom)
+		if err != nil {
+			return nil, types.NotFoundErrorf("configuration network %q does not exist", network.configFrom)
+		}
+		if err := t.applyConfigurationTo(network); err != nil {
+			return nil, types.InternalErrorf("Failed to apply configuration: %v", err)
+		}
+		defer func() {
+			if err == nil {
+				if err := t.getEpCnt().IncEndpointCnt(); err != nil {
+					logrus.Warnf("Failed to update reference count for configuration network %q on creation of network %q: %v",
+						t.Name(), network.Name(), err)
+				}
+			}
+		}()
+	}
+
+	err = network.ipamAllocate()
+	if err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			network.ipamRelease()
+		}
+	}()
+
+	err = c.addNetwork(network)
+	if err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			if e := network.deleteNetwork(); e != nil {
+				logrus.Warnf("couldn't roll back driver network on network %s creation failure: %v", network.name, err)
+			}
+		}
+	}()
+
+addToStore:
+	// First store the endpoint count, then the network. To avoid to
+	// end up with a datastore containing a network and not an epCnt,
+	// in case of an ungraceful shutdown during this function call.
+	epCnt := &endpointCnt{n: network}
+	if err = c.updateToStore(epCnt); err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			if e := c.deleteFromStore(epCnt); e != nil {
+				logrus.Warnf("could not rollback from store, epCnt %v on failure (%v): %v", epCnt, err, e)
+			}
+		}
+	}()
+
+	network.epCnt = epCnt
+	if err = c.updateToStore(network); err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			if e := c.deleteFromStore(network); e != nil {
+				logrus.Warnf("could not rollback from store, network %v on failure (%v): %v", network, err, e)
+			}
+		}
+	}()
+
+	if network.configOnly {
+		return network, nil
+	}
+
+	joinCluster(network)
+	defer func() {
+		if err != nil {
+			network.cancelDriverWatches()
+			if e := network.leaveCluster(); e != nil {
+				logrus.Warnf("Failed to leave agent cluster on network %s on failure (%v): %v", network.name, err, e)
+			}
+		}
+	}()
+
+	if len(network.loadBalancerIP) != 0 {
+		if err = network.createLoadBalancerSandbox(); err != nil {
+			return nil, err
+		}
+	}
+
+	if !c.isDistributedControl() {
+		c.Lock()
+		arrangeIngressFilterRule()
+		c.Unlock()
+	}
+
+	c.arrangeUserFilterRule()
+
+	return network, nil
+}
+
+var joinCluster NetworkWalker = func(nw Network) bool {
+	n := nw.(*network)
+	if n.configOnly {
+		return false
+	}
+	if err := n.joinCluster(); err != nil {
+		logrus.Errorf("Failed to join network %s (%s) into agent cluster: %v", n.Name(), n.ID(), err)
+	}
+	n.addDriverWatches()
+	return false
+}
+
+func (c *controller) reservePools() {
+	networks, err := c.getNetworksForScope(datastore.LocalScope)
+	if err != nil {
+		logrus.Warnf("Could not retrieve networks from local store during ipam allocation for existing networks: %v", err)
+		return
+	}
+
+	for _, n := range networks {
+		if n.configOnly {
+			continue
+		}
+		if !doReplayPoolReserve(n) {
+			continue
+		}
+		// Construct pseudo configs for the auto IP case
+		autoIPv4 := (len(n.ipamV4Config) == 0 || (len(n.ipamV4Config) == 1 && n.ipamV4Config[0].PreferredPool == "")) && len(n.ipamV4Info) > 0
+		autoIPv6 := (len(n.ipamV6Config) == 0 || (len(n.ipamV6Config) == 1 && n.ipamV6Config[0].PreferredPool == "")) && len(n.ipamV6Info) > 0
+		if autoIPv4 {
+			n.ipamV4Config = []*IpamConf{{PreferredPool: n.ipamV4Info[0].Pool.String()}}
+		}
+		if n.enableIPv6 && autoIPv6 {
+			n.ipamV6Config = []*IpamConf{{PreferredPool: n.ipamV6Info[0].Pool.String()}}
+		}
+		// Account current network gateways
+		for i, c := range n.ipamV4Config {
+			if c.Gateway == "" && n.ipamV4Info[i].Gateway != nil {
+				c.Gateway = n.ipamV4Info[i].Gateway.IP.String()
+			}
+		}
+		if n.enableIPv6 {
+			for i, c := range n.ipamV6Config {
+				if c.Gateway == "" && n.ipamV6Info[i].Gateway != nil {
+					c.Gateway = n.ipamV6Info[i].Gateway.IP.String()
+				}
+			}
+		}
+		// Reserve pools
+		if err := n.ipamAllocate(); err != nil {
+			logrus.Warnf("Failed to allocate ipam pool(s) for network %q (%s): %v", n.Name(), n.ID(), err)
+		}
+		// Reserve existing endpoints' addresses
+		ipam, _, err := n.getController().getIPAMDriver(n.ipamType)
+		if err != nil {
+			logrus.Warnf("Failed to retrieve ipam driver for network %q (%s) during address reservation", n.Name(), n.ID())
+			continue
+		}
+		epl, err := n.getEndpointsFromStore()
+		if err != nil {
+			logrus.Warnf("Failed to retrieve list of current endpoints on network %q (%s)", n.Name(), n.ID())
+			continue
+		}
+		for _, ep := range epl {
+			if err := ep.assignAddress(ipam, true, ep.Iface().AddressIPv6() != nil); err != nil {
+				logrus.Warnf("Failed to reserve current address for endpoint %q (%s) on network %q (%s)",
+					ep.Name(), ep.ID(), n.Name(), n.ID())
+			}
+		}
+	}
+}
+
+func doReplayPoolReserve(n *network) bool {
+	_, caps, err := n.getController().getIPAMDriver(n.ipamType)
+	if err != nil {
+		logrus.Warnf("Failed to retrieve ipam driver for network %q (%s): %v", n.Name(), n.ID(), err)
+		return false
+	}
+	return caps.RequiresRequestReplay
+}
+
+func (c *controller) addNetwork(n *network) error {
+	d, err := n.driver(true)
+	if err != nil {
+		return err
+	}
+
+	// Create the network
+	if err := d.CreateNetwork(n.id, n.generic, n, n.getIPData(4), n.getIPData(6)); err != nil {
+		return err
+	}
+
+	n.startResolver()
+
+	return nil
+}
+
+func (c *controller) Networks() []Network {
+	var list []Network
+
+	networks, err := c.getNetworksFromStore()
+	if err != nil {
+		logrus.Error(err)
+	}
+
+	for _, n := range networks {
+		if n.inDelete {
+			continue
+		}
+		list = append(list, n)
+	}
+
+	return list
+}
+
+func (c *controller) WalkNetworks(walker NetworkWalker) {
+	for _, n := range c.Networks() {
+		if walker(n) {
+			return
+		}
+	}
+}
+
+func (c *controller) NetworkByName(name string) (Network, error) {
+	if name == "" {
+		return nil, ErrInvalidName(name)
+	}
+	var n Network
+
+	s := func(current Network) bool {
+		if current.Name() == name {
+			n = current
+			return true
+		}
+		return false
+	}
+
+	c.WalkNetworks(s)
+
+	if n == nil {
+		return nil, ErrNoSuchNetwork(name)
+	}
+
+	return n, nil
+}
+
+func (c *controller) NetworkByID(id string) (Network, error) {
+	if id == "" {
+		return nil, ErrInvalidID(id)
+	}
+
+	n, err := c.getNetworkFromStore(id)
+	if err != nil {
+		return nil, ErrNoSuchNetwork(id)
+	}
+
+	return n, nil
+}
+
+// NewSandbox creates a new sandbox for the passed container id
+func (c *controller) NewSandbox(containerID string, options ...SandboxOption) (Sandbox, error) {
+	if containerID == "" {
+		return nil, types.BadRequestErrorf("invalid container ID")
+	}
+
+	var sb *sandbox
+	c.Lock()
+	for _, s := range c.sandboxes {
+		if s.containerID == containerID {
+			// If not a stub, then we already have a complete sandbox.
+			if !s.isStub {
+				sbID := s.ID()
+				c.Unlock()
+				return nil, types.ForbiddenErrorf("container %s is already present in sandbox %s", containerID, sbID)
+			}
+
+			// We already have a stub sandbox from the
+			// store. Make use of it so that we don't lose
+			// the endpoints from store but reset the
+			// isStub flag.
+			sb = s
+			sb.isStub = false
+			break
+		}
+	}
+	c.Unlock()
+
+	sandboxID := stringid.GenerateRandomID()
+	if runtime.GOOS == "windows" {
+		sandboxID = containerID
+	}
+
+	// Create sandbox and process options first. Key generation depends on an option
+	if sb == nil {
+		sb = &sandbox{
+			id:                 sandboxID,
+			containerID:        containerID,
+			endpoints:          epHeap{},
+			epPriority:         map[string]int{},
+			populatedEndpoints: map[string]struct{}{},
+			config:             containerConfig{},
+			controller:         c,
+			extDNS:             []extDNSEntry{},
+		}
+	}
+
+	heap.Init(&sb.endpoints)
+
+	sb.processOptions(options...)
+
+	c.Lock()
+	if sb.ingress && c.ingressSandbox != nil {
+		c.Unlock()
+		return nil, types.ForbiddenErrorf("ingress sandbox already present")
+	}
+
+	if sb.ingress {
+		c.ingressSandbox = sb
+		sb.config.hostsPath = filepath.Join(c.cfg.Daemon.DataDir, "/network/files/hosts")
+		sb.config.resolvConfPath = filepath.Join(c.cfg.Daemon.DataDir, "/network/files/resolv.conf")
+		sb.id = "ingress_sbox"
+	}
+	c.Unlock()
+
+	var err error
+	defer func() {
+		if err != nil {
+			c.Lock()
+			if sb.ingress {
+				c.ingressSandbox = nil
+			}
+			c.Unlock()
+		}
+	}()
+
+	if err = sb.setupResolutionFiles(); err != nil {
+		return nil, err
+	}
+
+	if sb.config.useDefaultSandBox {
+		c.sboxOnce.Do(func() {
+			c.defOsSbox, err = osl.NewSandbox(sb.Key(), false, false)
+		})
+
+		if err != nil {
+			c.sboxOnce = sync.Once{}
+			return nil, fmt.Errorf("failed to create default sandbox: %v", err)
+		}
+
+		sb.osSbox = c.defOsSbox
+	}
+
+	if sb.osSbox == nil && !sb.config.useExternalKey {
+		if sb.osSbox, err = osl.NewSandbox(sb.Key(), !sb.config.useDefaultSandBox, false); err != nil {
+			return nil, fmt.Errorf("failed to create new osl sandbox: %v", err)
+		}
+	}
+
+	c.Lock()
+	c.sandboxes[sb.id] = sb
+	c.Unlock()
+	defer func() {
+		if err != nil {
+			c.Lock()
+			delete(c.sandboxes, sb.id)
+			c.Unlock()
+		}
+	}()
+
+	err = sb.storeUpdate()
+	if err != nil {
+		return nil, fmt.Errorf("failed to update the store state of sandbox: %v", err)
+	}
+
+	return sb, nil
+}
+
+func (c *controller) Sandboxes() []Sandbox {
+	c.Lock()
+	defer c.Unlock()
+
+	list := make([]Sandbox, 0, len(c.sandboxes))
+	for _, s := range c.sandboxes {
+		// Hide stub sandboxes from libnetwork users
+		if s.isStub {
+			continue
+		}
+
+		list = append(list, s)
+	}
+
+	return list
+}
+
+func (c *controller) WalkSandboxes(walker SandboxWalker) {
+	for _, sb := range c.Sandboxes() {
+		if walker(sb) {
+			return
+		}
+	}
+}
+
+func (c *controller) SandboxByID(id string) (Sandbox, error) {
+	if id == "" {
+		return nil, ErrInvalidID(id)
+	}
+	c.Lock()
+	s, ok := c.sandboxes[id]
+	c.Unlock()
+	if !ok {
+		return nil, types.NotFoundErrorf("sandbox %s not found", id)
+	}
+	return s, nil
+}
+
+// SandboxDestroy destroys a sandbox given a container ID
+func (c *controller) SandboxDestroy(id string) error {
+	var sb *sandbox
+	c.Lock()
+	for _, s := range c.sandboxes {
+		if s.containerID == id {
+			sb = s
+			break
+		}
+	}
+	c.Unlock()
+
+	// It is not an error if sandbox is not available
+	if sb == nil {
+		return nil
+	}
+
+	return sb.Delete()
+}
+
+// SandboxContainerWalker returns a Sandbox Walker function which looks for an existing Sandbox with the passed containerID
+func SandboxContainerWalker(out *Sandbox, containerID string) SandboxWalker {
+	return func(sb Sandbox) bool {
+		if sb.ContainerID() == containerID {
+			*out = sb
+			return true
+		}
+		return false
+	}
+}
+
+// SandboxKeyWalker returns a Sandbox Walker function which looks for an existing Sandbox with the passed key
+func SandboxKeyWalker(out *Sandbox, key string) SandboxWalker {
+	return func(sb Sandbox) bool {
+		if sb.Key() == key {
+			*out = sb
+			return true
+		}
+		return false
+	}
+}
+
+func (c *controller) loadDriver(networkType string) error {
+	var err error
+
+	if pg := c.GetPluginGetter(); pg != nil {
+		_, err = pg.Get(networkType, driverapi.NetworkPluginEndpointType, plugingetter.Lookup)
+	} else {
+		_, err = plugins.Get(networkType, driverapi.NetworkPluginEndpointType)
+	}
+
+	if err != nil {
+		if err == plugins.ErrNotFound {
+			return types.NotFoundErrorf(err.Error())
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (c *controller) loadIPAMDriver(name string) error {
+	var err error
+
+	if pg := c.GetPluginGetter(); pg != nil {
+		_, err = pg.Get(name, ipamapi.PluginEndpointType, plugingetter.Lookup)
+	} else {
+		_, err = plugins.Get(name, ipamapi.PluginEndpointType)
+	}
+
+	if err != nil {
+		if err == plugins.ErrNotFound {
+			return types.NotFoundErrorf(err.Error())
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (c *controller) getIPAMDriver(name string) (ipamapi.Ipam, *ipamapi.Capability, error) {
+	id, cap := c.drvRegistry.IPAM(name)
+	if id == nil {
+		// Might be a plugin name. Try loading it
+		if err := c.loadIPAMDriver(name); err != nil {
+			return nil, nil, err
+		}
+
+		// Now that we resolved the plugin, try again looking up the registry
+		id, cap = c.drvRegistry.IPAM(name)
+		if id == nil {
+			return nil, nil, types.BadRequestErrorf("invalid ipam driver: %q", name)
+		}
+	}
+
+	return id, cap, nil
+}
+
+func (c *controller) Stop() {
+	c.closeStores()
+	c.stopExternalKeyListener()
+	osl.GC()
+}
+
+// StartDiagnostic start the network dias mode
+func (c *controller) StartDiagnostic(port int) {
+	c.Lock()
+	if !c.DiagnosticServer.IsDiagnosticEnabled() {
+		c.DiagnosticServer.EnableDiagnostic("127.0.0.1", port)
+	}
+	c.Unlock()
+}
+
+// StopDiagnostic start the network dias mode
+func (c *controller) StopDiagnostic() {
+	c.Lock()
+	if c.DiagnosticServer.IsDiagnosticEnabled() {
+		c.DiagnosticServer.DisableDiagnostic()
+	}
+	c.Unlock()
+}
+
+// IsDiagnosticEnabled returns true if the dias is enabled
+func (c *controller) IsDiagnosticEnabled() bool {
+	c.Lock()
+	defer c.Unlock()
+	return c.DiagnosticServer.IsDiagnosticEnabled()
+}
diff --git a/vendor/github.com/docker/libnetwork/datastore/cache.go b/vendor/github.com/docker/libnetwork/datastore/cache.go
new file mode 100644
index 0000000000..49839ae8f2
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/datastore/cache.go
@@ -0,0 +1,178 @@
+package datastore
+
+import (
+	"errors"
+	"fmt"
+	"sync"
+
+	"github.com/docker/libkv/store"
+)
+
+type kvMap map[string]KVObject
+
+type cache struct {
+	sync.Mutex
+	kmm map[string]kvMap
+	ds  *datastore
+}
+
+func newCache(ds *datastore) *cache {
+	return &cache{kmm: make(map[string]kvMap), ds: ds}
+}
+
+func (c *cache) kmap(kvObject KVObject) (kvMap, error) {
+	var err error
+
+	c.Lock()
+	keyPrefix := Key(kvObject.KeyPrefix()...)
+	kmap, ok := c.kmm[keyPrefix]
+	c.Unlock()
+
+	if ok {
+		return kmap, nil
+	}
+
+	kmap = kvMap{}
+
+	// Bail out right away if the kvObject does not implement KVConstructor
+	ctor, ok := kvObject.(KVConstructor)
+	if !ok {
+		return nil, errors.New("error while populating kmap, object does not implement KVConstructor interface")
+	}
+
+	kvList, err := c.ds.store.List(keyPrefix)
+	if err != nil {
+		if err == store.ErrKeyNotFound {
+			// If the store doesn't have anything then there is nothing to
+			// populate in the cache. Just bail out.
+			goto out
+		}
+
+		return nil, fmt.Errorf("error while populating kmap: %v", err)
+	}
+
+	for _, kvPair := range kvList {
+		// Ignore empty kvPair values
+		if len(kvPair.Value) == 0 {
+			continue
+		}
+
+		dstO := ctor.New()
+		err = dstO.SetValue(kvPair.Value)
+		if err != nil {
+			return nil, err
+		}
+
+		// Make sure the object has a correct view of the DB index in
+		// case we need to modify it and update the DB.
+		dstO.SetIndex(kvPair.LastIndex)
+
+		kmap[Key(dstO.Key()...)] = dstO
+	}
+
+out:
+	// There may multiple go routines racing to fill the
+	// cache. The one which places the kmap in c.kmm first
+	// wins. The others should just use what the first populated.
+	c.Lock()
+	kmapNew, ok := c.kmm[keyPrefix]
+	if ok {
+		c.Unlock()
+		return kmapNew, nil
+	}
+
+	c.kmm[keyPrefix] = kmap
+	c.Unlock()
+
+	return kmap, nil
+}
+
+func (c *cache) add(kvObject KVObject, atomic bool) error {
+	kmap, err := c.kmap(kvObject)
+	if err != nil {
+		return err
+	}
+
+	c.Lock()
+	// If atomic is true, cache needs to maintain its own index
+	// for atomicity and the add needs to be atomic.
+	if atomic {
+		if prev, ok := kmap[Key(kvObject.Key()...)]; ok {
+			if prev.Index() != kvObject.Index() {
+				c.Unlock()
+				return ErrKeyModified
+			}
+		}
+
+		// Increment index
+		index := kvObject.Index()
+		index++
+		kvObject.SetIndex(index)
+	}
+
+	kmap[Key(kvObject.Key()...)] = kvObject
+	c.Unlock()
+	return nil
+}
+
+func (c *cache) del(kvObject KVObject, atomic bool) error {
+	kmap, err := c.kmap(kvObject)
+	if err != nil {
+		return err
+	}
+
+	c.Lock()
+	// If atomic is true, cache needs to maintain its own index
+	// for atomicity and del needs to be atomic.
+	if atomic {
+		if prev, ok := kmap[Key(kvObject.Key()...)]; ok {
+			if prev.Index() != kvObject.Index() {
+				c.Unlock()
+				return ErrKeyModified
+			}
+		}
+	}
+
+	delete(kmap, Key(kvObject.Key()...))
+	c.Unlock()
+	return nil
+}
+
+func (c *cache) get(key string, kvObject KVObject) error {
+	kmap, err := c.kmap(kvObject)
+	if err != nil {
+		return err
+	}
+
+	c.Lock()
+	defer c.Unlock()
+
+	o, ok := kmap[Key(kvObject.Key()...)]
+	if !ok {
+		return ErrKeyNotFound
+	}
+
+	ctor, ok := o.(KVConstructor)
+	if !ok {
+		return errors.New("kvobject does not implement KVConstructor interface. could not get object")
+	}
+
+	return ctor.CopyTo(kvObject)
+}
+
+func (c *cache) list(kvObject KVObject) ([]KVObject, error) {
+	kmap, err := c.kmap(kvObject)
+	if err != nil {
+		return nil, err
+	}
+
+	c.Lock()
+	defer c.Unlock()
+
+	var kvol []KVObject
+	for _, v := range kmap {
+		kvol = append(kvol, v)
+	}
+
+	return kvol, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/datastore/datastore.go b/vendor/github.com/docker/libnetwork/datastore/datastore.go
new file mode 100644
index 0000000000..82feef1c84
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/datastore/datastore.go
@@ -0,0 +1,660 @@
+package datastore
+
+import (
+	"fmt"
+	"log"
+	"reflect"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/libkv"
+	"github.com/docker/libkv/store"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/types"
+)
+
+//DataStore exported
+type DataStore interface {
+	// GetObject gets data from datastore and unmarshals to the specified object
+	GetObject(key string, o KVObject) error
+	// PutObject adds a new Record based on an object into the datastore
+	PutObject(kvObject KVObject) error
+	// PutObjectAtomic provides an atomic add and update operation for a Record
+	PutObjectAtomic(kvObject KVObject) error
+	// DeleteObject deletes a record
+	DeleteObject(kvObject KVObject) error
+	// DeleteObjectAtomic performs an atomic delete operation
+	DeleteObjectAtomic(kvObject KVObject) error
+	// DeleteTree deletes a record
+	DeleteTree(kvObject KVObject) error
+	// Watchable returns whether the store is watchable or not
+	Watchable() bool
+	// Watch for changes on a KVObject
+	Watch(kvObject KVObject, stopCh <-chan struct{}) (<-chan KVObject, error)
+	// RestartWatch retriggers stopped Watches
+	RestartWatch()
+	// Active returns if the store is active
+	Active() bool
+	// List returns of a list of KVObjects belonging to the parent
+	// key. The caller must pass a KVObject of the same type as
+	// the objects that need to be listed
+	List(string, KVObject) ([]KVObject, error)
+	// Map returns a Map of KVObjects
+	Map(key string, kvObject KVObject) (map[string]KVObject, error)
+	// Scope returns the scope of the store
+	Scope() string
+	// KVStore returns access to the KV Store
+	KVStore() store.Store
+	// Close closes the data store
+	Close()
+}
+
+// ErrKeyModified is raised for an atomic update when the update is working on a stale state
+var (
+	ErrKeyModified = store.ErrKeyModified
+	ErrKeyNotFound = store.ErrKeyNotFound
+)
+
+type datastore struct {
+	scope      string
+	store      store.Store
+	cache      *cache
+	watchCh    chan struct{}
+	active     bool
+	sequential bool
+	sync.Mutex
+}
+
+// KVObject is Key/Value interface used by objects to be part of the DataStore
+type KVObject interface {
+	// Key method lets an object provide the Key to be used in KV Store
+	Key() []string
+	// KeyPrefix method lets an object return immediate parent key that can be used for tree walk
+	KeyPrefix() []string
+	// Value method lets an object marshal its content to be stored in the KV store
+	Value() []byte
+	// SetValue is used by the datastore to set the object's value when loaded from the data store.
+	SetValue([]byte) error
+	// Index method returns the latest DB Index as seen by the object
+	Index() uint64
+	// SetIndex method allows the datastore to store the latest DB Index into the object
+	SetIndex(uint64)
+	// True if the object exists in the datastore, false if it hasn't been stored yet.
+	// When SetIndex() is called, the object has been stored.
+	Exists() bool
+	// DataScope indicates the storage scope of the KV object
+	DataScope() string
+	// Skip provides a way for a KV Object to avoid persisting it in the KV Store
+	Skip() bool
+}
+
+// KVConstructor interface defines methods which can construct a KVObject from another.
+type KVConstructor interface {
+	// New returns a new object which is created based on the
+	// source object
+	New() KVObject
+	// CopyTo deep copies the contents of the implementing object
+	// to the passed destination object
+	CopyTo(KVObject) error
+}
+
+// ScopeCfg represents Datastore configuration.
+type ScopeCfg struct {
+	Client ScopeClientCfg
+}
+
+// ScopeClientCfg represents Datastore Client-only mode configuration
+type ScopeClientCfg struct {
+	Provider string
+	Address  string
+	Config   *store.Config
+}
+
+const (
+	// LocalScope indicates to store the KV object in local datastore such as boltdb
+	LocalScope = "local"
+	// GlobalScope indicates to store the KV object in global datastore such as consul/etcd/zookeeper
+	GlobalScope = "global"
+	// SwarmScope is not indicating a datastore location. It is defined here
+	// along with the other two scopes just for consistency.
+	SwarmScope    = "swarm"
+	defaultPrefix = "/var/lib/docker/network/files"
+)
+
+const (
+	// NetworkKeyPrefix is the prefix for network key in the kv store
+	NetworkKeyPrefix = "network"
+	// EndpointKeyPrefix is the prefix for endpoint key in the kv store
+	EndpointKeyPrefix = "endpoint"
+)
+
+var (
+	defaultScopes = makeDefaultScopes()
+)
+
+func makeDefaultScopes() map[string]*ScopeCfg {
+	def := make(map[string]*ScopeCfg)
+	def[LocalScope] = &ScopeCfg{
+		Client: ScopeClientCfg{
+			Provider: string(store.BOLTDB),
+			Address:  defaultPrefix + "/local-kv.db",
+			Config: &store.Config{
+				Bucket:            "libnetwork",
+				ConnectionTimeout: time.Minute,
+			},
+		},
+	}
+
+	return def
+}
+
+var defaultRootChain = []string{"docker", "network", "v1.0"}
+var rootChain = defaultRootChain
+
+// DefaultScopes returns a map of default scopes and its config for clients to use.
+func DefaultScopes(dataDir string) map[string]*ScopeCfg {
+	if dataDir != "" {
+		defaultScopes[LocalScope].Client.Address = dataDir + "/network/files/local-kv.db"
+		return defaultScopes
+	}
+
+	defaultScopes[LocalScope].Client.Address = defaultPrefix + "/local-kv.db"
+	return defaultScopes
+}
+
+// IsValid checks if the scope config has valid configuration.
+func (cfg *ScopeCfg) IsValid() bool {
+	if cfg == nil ||
+		strings.TrimSpace(cfg.Client.Provider) == "" ||
+		strings.TrimSpace(cfg.Client.Address) == "" {
+		return false
+	}
+
+	return true
+}
+
+//Key provides convenient method to create a Key
+func Key(key ...string) string {
+	keychain := append(rootChain, key...)
+	str := strings.Join(keychain, "/")
+	return str + "/"
+}
+
+//ParseKey provides convenient method to unpack the key to complement the Key function
+func ParseKey(key string) ([]string, error) {
+	chain := strings.Split(strings.Trim(key, "/"), "/")
+
+	// The key must atleast be equal to the rootChain in order to be considered as valid
+	if len(chain) <= len(rootChain) || !reflect.DeepEqual(chain[0:len(rootChain)], rootChain) {
+		return nil, types.BadRequestErrorf("invalid Key : %s", key)
+	}
+	return chain[len(rootChain):], nil
+}
+
+// newClient used to connect to KV Store
+func newClient(scope string, kv string, addr string, config *store.Config, cached bool) (DataStore, error) {
+
+	if cached && scope != LocalScope {
+		return nil, fmt.Errorf("caching supported only for scope %s", LocalScope)
+	}
+	sequential := false
+	if scope == LocalScope {
+		sequential = true
+	}
+
+	if config == nil {
+		config = &store.Config{}
+	}
+
+	var addrs []string
+
+	if kv == string(store.BOLTDB) {
+		// Parse file path
+		addrs = strings.Split(addr, ",")
+	} else {
+		// Parse URI
+		parts := strings.SplitN(addr, "/", 2)
+		addrs = strings.Split(parts[0], ",")
+
+		// Add the custom prefix to the root chain
+		if len(parts) == 2 {
+			rootChain = append([]string{parts[1]}, defaultRootChain...)
+		}
+	}
+
+	store, err := libkv.NewStore(store.Backend(kv), addrs, config)
+	if err != nil {
+		return nil, err
+	}
+
+	ds := &datastore{scope: scope, store: store, active: true, watchCh: make(chan struct{}), sequential: sequential}
+	if cached {
+		ds.cache = newCache(ds)
+	}
+
+	return ds, nil
+}
+
+// NewDataStore creates a new instance of LibKV data store
+func NewDataStore(scope string, cfg *ScopeCfg) (DataStore, error) {
+	if cfg == nil || cfg.Client.Provider == "" || cfg.Client.Address == "" {
+		c, ok := defaultScopes[scope]
+		if !ok || c.Client.Provider == "" || c.Client.Address == "" {
+			return nil, fmt.Errorf("unexpected scope %s without configuration passed", scope)
+		}
+
+		cfg = c
+	}
+
+	var cached bool
+	if scope == LocalScope {
+		cached = true
+	}
+
+	return newClient(scope, cfg.Client.Provider, cfg.Client.Address, cfg.Client.Config, cached)
+}
+
+// NewDataStoreFromConfig creates a new instance of LibKV data store starting from the datastore config data
+func NewDataStoreFromConfig(dsc discoverapi.DatastoreConfigData) (DataStore, error) {
+	var (
+		ok    bool
+		sCfgP *store.Config
+	)
+
+	sCfgP, ok = dsc.Config.(*store.Config)
+	if !ok && dsc.Config != nil {
+		return nil, fmt.Errorf("cannot parse store configuration: %v", dsc.Config)
+	}
+
+	scopeCfg := &ScopeCfg{
+		Client: ScopeClientCfg{
+			Address:  dsc.Address,
+			Provider: dsc.Provider,
+			Config:   sCfgP,
+		},
+	}
+
+	ds, err := NewDataStore(dsc.Scope, scopeCfg)
+	if err != nil {
+		return nil, fmt.Errorf("failed to construct datastore client from datastore configuration %v: %v", dsc, err)
+	}
+
+	return ds, err
+}
+
+func (ds *datastore) Close() {
+	ds.store.Close()
+}
+
+func (ds *datastore) Scope() string {
+	return ds.scope
+}
+
+func (ds *datastore) Active() bool {
+	return ds.active
+}
+
+func (ds *datastore) Watchable() bool {
+	return ds.scope != LocalScope
+}
+
+func (ds *datastore) Watch(kvObject KVObject, stopCh <-chan struct{}) (<-chan KVObject, error) {
+	sCh := make(chan struct{})
+
+	ctor, ok := kvObject.(KVConstructor)
+	if !ok {
+		return nil, fmt.Errorf("error watching object type %T, object does not implement KVConstructor interface", kvObject)
+	}
+
+	kvpCh, err := ds.store.Watch(Key(kvObject.Key()...), sCh)
+	if err != nil {
+		return nil, err
+	}
+
+	kvoCh := make(chan KVObject)
+
+	go func() {
+	retry_watch:
+		var err error
+
+		// Make sure to get a new instance of watch channel
+		ds.Lock()
+		watchCh := ds.watchCh
+		ds.Unlock()
+
+	loop:
+		for {
+			select {
+			case <-stopCh:
+				close(sCh)
+				return
+			case kvPair := <-kvpCh:
+				// If the backend KV store gets reset libkv's go routine
+				// for the watch can exit resulting in a nil value in
+				// channel.
+				if kvPair == nil {
+					ds.Lock()
+					ds.active = false
+					ds.Unlock()
+					break loop
+				}
+
+				dstO := ctor.New()
+
+				if err = dstO.SetValue(kvPair.Value); err != nil {
+					log.Printf("Could not unmarshal kvpair value = %s", string(kvPair.Value))
+					break
+				}
+
+				dstO.SetIndex(kvPair.LastIndex)
+				kvoCh <- dstO
+			}
+		}
+
+		// Wait on watch channel for a re-trigger when datastore becomes active
+		<-watchCh
+
+		kvpCh, err = ds.store.Watch(Key(kvObject.Key()...), sCh)
+		if err != nil {
+			log.Printf("Could not watch the key %s in store: %v", Key(kvObject.Key()...), err)
+		}
+
+		goto retry_watch
+	}()
+
+	return kvoCh, nil
+}
+
+func (ds *datastore) RestartWatch() {
+	ds.Lock()
+	defer ds.Unlock()
+
+	ds.active = true
+	watchCh := ds.watchCh
+	ds.watchCh = make(chan struct{})
+	close(watchCh)
+}
+
+func (ds *datastore) KVStore() store.Store {
+	return ds.store
+}
+
+// PutObjectAtomic adds a new Record based on an object into the datastore
+func (ds *datastore) PutObjectAtomic(kvObject KVObject) error {
+	var (
+		previous *store.KVPair
+		pair     *store.KVPair
+		err      error
+	)
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	if kvObject == nil {
+		return types.BadRequestErrorf("invalid KV Object : nil")
+	}
+
+	kvObjValue := kvObject.Value()
+
+	if kvObjValue == nil {
+		return types.BadRequestErrorf("invalid KV Object with a nil Value for key %s", Key(kvObject.Key()...))
+	}
+
+	if kvObject.Skip() {
+		goto add_cache
+	}
+
+	if kvObject.Exists() {
+		previous = &store.KVPair{Key: Key(kvObject.Key()...), LastIndex: kvObject.Index()}
+	} else {
+		previous = nil
+	}
+
+	_, pair, err = ds.store.AtomicPut(Key(kvObject.Key()...), kvObjValue, previous, nil)
+	if err != nil {
+		if err == store.ErrKeyExists {
+			return ErrKeyModified
+		}
+		return err
+	}
+
+	kvObject.SetIndex(pair.LastIndex)
+
+add_cache:
+	if ds.cache != nil {
+		// If persistent store is skipped, sequencing needs to
+		// happen in cache.
+		return ds.cache.add(kvObject, kvObject.Skip())
+	}
+
+	return nil
+}
+
+// PutObject adds a new Record based on an object into the datastore
+func (ds *datastore) PutObject(kvObject KVObject) error {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	if kvObject == nil {
+		return types.BadRequestErrorf("invalid KV Object : nil")
+	}
+
+	if kvObject.Skip() {
+		goto add_cache
+	}
+
+	if err := ds.putObjectWithKey(kvObject, kvObject.Key()...); err != nil {
+		return err
+	}
+
+add_cache:
+	if ds.cache != nil {
+		// If persistent store is skipped, sequencing needs to
+		// happen in cache.
+		return ds.cache.add(kvObject, kvObject.Skip())
+	}
+
+	return nil
+}
+
+func (ds *datastore) putObjectWithKey(kvObject KVObject, key ...string) error {
+	kvObjValue := kvObject.Value()
+
+	if kvObjValue == nil {
+		return types.BadRequestErrorf("invalid KV Object with a nil Value for key %s", Key(kvObject.Key()...))
+	}
+	return ds.store.Put(Key(key...), kvObjValue, nil)
+}
+
+// GetObject returns a record matching the key
+func (ds *datastore) GetObject(key string, o KVObject) error {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	if ds.cache != nil {
+		return ds.cache.get(key, o)
+	}
+
+	kvPair, err := ds.store.Get(key)
+	if err != nil {
+		return err
+	}
+
+	if err := o.SetValue(kvPair.Value); err != nil {
+		return err
+	}
+
+	// Make sure the object has a correct view of the DB index in
+	// case we need to modify it and update the DB.
+	o.SetIndex(kvPair.LastIndex)
+	return nil
+}
+
+func (ds *datastore) ensureParent(parent string) error {
+	exists, err := ds.store.Exists(parent)
+	if err != nil {
+		return err
+	}
+	if exists {
+		return nil
+	}
+	return ds.store.Put(parent, []byte{}, &store.WriteOptions{IsDir: true})
+}
+
+func (ds *datastore) List(key string, kvObject KVObject) ([]KVObject, error) {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	if ds.cache != nil {
+		return ds.cache.list(kvObject)
+	}
+
+	var kvol []KVObject
+	cb := func(key string, val KVObject) {
+		kvol = append(kvol, val)
+	}
+	err := ds.iterateKVPairsFromStore(key, kvObject, cb)
+	if err != nil {
+		return nil, err
+	}
+	return kvol, nil
+}
+
+func (ds *datastore) iterateKVPairsFromStore(key string, kvObject KVObject, callback func(string, KVObject)) error {
+	// Bail out right away if the kvObject does not implement KVConstructor
+	ctor, ok := kvObject.(KVConstructor)
+	if !ok {
+		return fmt.Errorf("error listing objects, object does not implement KVConstructor interface")
+	}
+
+	// Make sure the parent key exists
+	if err := ds.ensureParent(key); err != nil {
+		return err
+	}
+
+	kvList, err := ds.store.List(key)
+	if err != nil {
+		return err
+	}
+
+	for _, kvPair := range kvList {
+		if len(kvPair.Value) == 0 {
+			continue
+		}
+
+		dstO := ctor.New()
+		if err := dstO.SetValue(kvPair.Value); err != nil {
+			return err
+		}
+
+		// Make sure the object has a correct view of the DB index in
+		// case we need to modify it and update the DB.
+		dstO.SetIndex(kvPair.LastIndex)
+		callback(kvPair.Key, dstO)
+	}
+
+	return nil
+}
+
+func (ds *datastore) Map(key string, kvObject KVObject) (map[string]KVObject, error) {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	kvol := make(map[string]KVObject)
+	cb := func(key string, val KVObject) {
+		// Trim the leading & trailing "/" to make it consistent across all stores
+		kvol[strings.Trim(key, "/")] = val
+	}
+	err := ds.iterateKVPairsFromStore(key, kvObject, cb)
+	if err != nil {
+		return nil, err
+	}
+	return kvol, nil
+}
+
+// DeleteObject unconditionally deletes a record from the store
+func (ds *datastore) DeleteObject(kvObject KVObject) error {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	// cleaup the cache first
+	if ds.cache != nil {
+		// If persistent store is skipped, sequencing needs to
+		// happen in cache.
+		ds.cache.del(kvObject, kvObject.Skip())
+	}
+
+	if kvObject.Skip() {
+		return nil
+	}
+
+	return ds.store.Delete(Key(kvObject.Key()...))
+}
+
+// DeleteObjectAtomic performs atomic delete on a record
+func (ds *datastore) DeleteObjectAtomic(kvObject KVObject) error {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	if kvObject == nil {
+		return types.BadRequestErrorf("invalid KV Object : nil")
+	}
+
+	previous := &store.KVPair{Key: Key(kvObject.Key()...), LastIndex: kvObject.Index()}
+
+	if kvObject.Skip() {
+		goto del_cache
+	}
+
+	if _, err := ds.store.AtomicDelete(Key(kvObject.Key()...), previous); err != nil {
+		if err == store.ErrKeyExists {
+			return ErrKeyModified
+		}
+		return err
+	}
+
+del_cache:
+	// cleanup the cache only if AtomicDelete went through successfully
+	if ds.cache != nil {
+		// If persistent store is skipped, sequencing needs to
+		// happen in cache.
+		return ds.cache.del(kvObject, kvObject.Skip())
+	}
+
+	return nil
+}
+
+// DeleteTree unconditionally deletes a record from the store
+func (ds *datastore) DeleteTree(kvObject KVObject) error {
+	if ds.sequential {
+		ds.Lock()
+		defer ds.Unlock()
+	}
+
+	// cleaup the cache first
+	if ds.cache != nil {
+		// If persistent store is skipped, sequencing needs to
+		// happen in cache.
+		ds.cache.del(kvObject, kvObject.Skip())
+	}
+
+	if kvObject.Skip() {
+		return nil
+	}
+
+	return ds.store.DeleteTree(Key(kvObject.KeyPrefix()...))
+}
diff --git a/vendor/github.com/docker/libnetwork/datastore/mock_store.go b/vendor/github.com/docker/libnetwork/datastore/mock_store.go
new file mode 100644
index 0000000000..0817339b6a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/datastore/mock_store.go
@@ -0,0 +1,129 @@
+package datastore
+
+import (
+	"errors"
+
+	"github.com/docker/libkv/store"
+	"github.com/docker/libnetwork/types"
+)
+
+var (
+	// ErrNotImplmented exported
+	ErrNotImplmented = errors.New("Functionality not implemented")
+)
+
+// MockData exported
+type MockData struct {
+	Data  []byte
+	Index uint64
+}
+
+// MockStore exported
+type MockStore struct {
+	db map[string]*MockData
+}
+
+// NewMockStore creates a Map backed Datastore that is useful for mocking
+func NewMockStore() *MockStore {
+	db := make(map[string]*MockData)
+	return &MockStore{db}
+}
+
+// Get the value at "key", returns the last modified index
+// to use in conjunction to CAS calls
+func (s *MockStore) Get(key string) (*store.KVPair, error) {
+	mData := s.db[key]
+	if mData == nil {
+		return nil, nil
+	}
+	return &store.KVPair{Value: mData.Data, LastIndex: mData.Index}, nil
+
+}
+
+// Put a value at "key"
+func (s *MockStore) Put(key string, value []byte, options *store.WriteOptions) error {
+	mData := s.db[key]
+	if mData == nil {
+		mData = &MockData{value, 0}
+	}
+	mData.Index = mData.Index + 1
+	s.db[key] = mData
+	return nil
+}
+
+// Delete a value at "key"
+func (s *MockStore) Delete(key string) error {
+	delete(s.db, key)
+	return nil
+}
+
+// Exists checks that the key exists inside the store
+func (s *MockStore) Exists(key string) (bool, error) {
+	_, ok := s.db[key]
+	return ok, nil
+}
+
+// List gets a range of values at "directory"
+func (s *MockStore) List(prefix string) ([]*store.KVPair, error) {
+	return nil, ErrNotImplmented
+}
+
+// DeleteTree deletes a range of values at "directory"
+func (s *MockStore) DeleteTree(prefix string) error {
+	delete(s.db, prefix)
+	return nil
+}
+
+// Watch a single key for modifications
+func (s *MockStore) Watch(key string, stopCh <-chan struct{}) (<-chan *store.KVPair, error) {
+	return nil, ErrNotImplmented
+}
+
+// WatchTree triggers a watch on a range of values at "directory"
+func (s *MockStore) WatchTree(prefix string, stopCh <-chan struct{}) (<-chan []*store.KVPair, error) {
+	return nil, ErrNotImplmented
+}
+
+// NewLock exposed
+func (s *MockStore) NewLock(key string, options *store.LockOptions) (store.Locker, error) {
+	return nil, ErrNotImplmented
+}
+
+// AtomicPut put a value at "key" if the key has not been
+// modified in the meantime, throws an error if this is the case
+func (s *MockStore) AtomicPut(key string, newValue []byte, previous *store.KVPair, options *store.WriteOptions) (bool, *store.KVPair, error) {
+	mData := s.db[key]
+
+	if previous == nil {
+		if mData != nil {
+			return false, nil, types.BadRequestErrorf("atomic put failed because key exists")
+		} // Else OK.
+	} else {
+		if mData == nil {
+			return false, nil, types.BadRequestErrorf("atomic put failed because key exists")
+		}
+		if mData != nil && mData.Index != previous.LastIndex {
+			return false, nil, types.BadRequestErrorf("atomic put failed due to mismatched Index")
+		} // Else OK.
+	}
+	err := s.Put(key, newValue, nil)
+	if err != nil {
+		return false, nil, err
+	}
+	return true, &store.KVPair{Key: key, Value: newValue, LastIndex: s.db[key].Index}, nil
+}
+
+// AtomicDelete deletes a value at "key" if the key has not
+// been modified in the meantime, throws an error if this is the case
+func (s *MockStore) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
+	mData := s.db[key]
+	if mData != nil && mData.Index != previous.LastIndex {
+		return false, types.BadRequestErrorf("atomic delete failed due to mismatched Index")
+	}
+	return true, s.Delete(key)
+}
+
+// Close closes the client connection
+func (s *MockStore) Close() {
+	return
+}
diff --git a/vendor/github.com/docker/libnetwork/default_gateway.go b/vendor/github.com/docker/libnetwork/default_gateway.go
new file mode 100644
index 0000000000..9a60fd6758
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/default_gateway.go
@@ -0,0 +1,201 @@
+package libnetwork
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	gwEPlen = 12
+)
+
+var procGwNetwork = make(chan (bool), 1)
+
+/*
+   libnetwork creates a bridge network "docker_gw_bridge" for providing
+   default gateway for the containers if none of the container's endpoints
+   have GW set by the driver. ICC is set to false for the GW_bridge network.
+
+   If a driver can't provide external connectivity it can choose to not set
+   the GW IP for the endpoint.
+
+   endpoint on the GW_bridge network is managed dynamically by libnetwork.
+   ie:
+   - its created when an endpoint without GW joins the container
+   - its deleted when an endpoint with GW joins the container
+*/
+
+func (sb *sandbox) setupDefaultGW() error {
+
+	// check if the container already has a GW endpoint
+	if ep := sb.getEndpointInGWNetwork(); ep != nil {
+		return nil
+	}
+
+	c := sb.controller
+
+	// Look for default gw network. In case of error (includes not found),
+	// retry and create it if needed in a serialized execution.
+	n, err := c.NetworkByName(libnGWNetwork)
+	if err != nil {
+		if n, err = c.defaultGwNetwork(); err != nil {
+			return err
+		}
+	}
+
+	createOptions := []EndpointOption{CreateOptionAnonymous()}
+
+	eplen := gwEPlen
+	if len(sb.containerID) < gwEPlen {
+		eplen = len(sb.containerID)
+	}
+
+	sbLabels := sb.Labels()
+
+	if sbLabels[netlabel.PortMap] != nil {
+		createOptions = append(createOptions, CreateOptionPortMapping(sbLabels[netlabel.PortMap].([]types.PortBinding)))
+	}
+
+	if sbLabels[netlabel.ExposedPorts] != nil {
+		createOptions = append(createOptions, CreateOptionExposedPorts(sbLabels[netlabel.ExposedPorts].([]types.TransportPort)))
+	}
+
+	epOption := getPlatformOption()
+	if epOption != nil {
+		createOptions = append(createOptions, epOption)
+	}
+
+	newEp, err := n.CreateEndpoint("gateway_"+sb.containerID[0:eplen], createOptions...)
+	if err != nil {
+		return fmt.Errorf("container %s: endpoint create on GW Network failed: %v", sb.containerID, err)
+	}
+
+	defer func() {
+		if err != nil {
+			if err2 := newEp.Delete(true); err2 != nil {
+				logrus.Warnf("Failed to remove gw endpoint for container %s after failing to join the gateway network: %v",
+					sb.containerID, err2)
+			}
+		}
+	}()
+
+	epLocal := newEp.(*endpoint)
+
+	if err = epLocal.sbJoin(sb); err != nil {
+		return fmt.Errorf("container %s: endpoint join on GW Network failed: %v", sb.containerID, err)
+	}
+
+	return nil
+}
+
+// If present, detach and remove the endpoint connecting the sandbox to the default gw network.
+func (sb *sandbox) clearDefaultGW() error {
+	var ep *endpoint
+
+	if ep = sb.getEndpointInGWNetwork(); ep == nil {
+		return nil
+	}
+	if err := ep.sbLeave(sb, false); err != nil {
+		return fmt.Errorf("container %s: endpoint leaving GW Network failed: %v", sb.containerID, err)
+	}
+	if err := ep.Delete(false); err != nil {
+		return fmt.Errorf("container %s: deleting endpoint on GW Network failed: %v", sb.containerID, err)
+	}
+	return nil
+}
+
+// Evaluate whether the sandbox requires a default gateway based
+// on the endpoints to which it is connected. It does not account
+// for the default gateway network endpoint.
+
+func (sb *sandbox) needDefaultGW() bool {
+	var needGW bool
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.endpointInGWNetwork() {
+			continue
+		}
+		if ep.getNetwork().Type() == "null" || ep.getNetwork().Type() == "host" {
+			continue
+		}
+		if ep.getNetwork().Internal() {
+			continue
+		}
+		// During stale sandbox cleanup, joinInfo may be nil
+		if ep.joinInfo != nil && ep.joinInfo.disableGatewayService {
+			continue
+		}
+		// TODO v6 needs to be handled.
+		if len(ep.Gateway()) > 0 {
+			return false
+		}
+		for _, r := range ep.StaticRoutes() {
+			if r.Destination != nil && r.Destination.String() == "0.0.0.0/0" {
+				return false
+			}
+		}
+		needGW = true
+	}
+
+	return needGW
+}
+
+func (sb *sandbox) getEndpointInGWNetwork() *endpoint {
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.getNetwork().name == libnGWNetwork && strings.HasPrefix(ep.Name(), "gateway_") {
+			return ep
+		}
+	}
+	return nil
+}
+
+func (ep *endpoint) endpointInGWNetwork() bool {
+	if ep.getNetwork().name == libnGWNetwork && strings.HasPrefix(ep.Name(), "gateway_") {
+		return true
+	}
+	return false
+}
+
+func (sb *sandbox) getEPwithoutGateway() *endpoint {
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.getNetwork().Type() == "null" || ep.getNetwork().Type() == "host" {
+			continue
+		}
+		if len(ep.Gateway()) == 0 {
+			return ep
+		}
+	}
+	return nil
+}
+
+// Looks for the default gw network and creates it if not there.
+// Parallel executions are serialized.
+func (c *controller) defaultGwNetwork() (Network, error) {
+	procGwNetwork <- true
+	defer func() { <-procGwNetwork }()
+
+	n, err := c.NetworkByName(libnGWNetwork)
+	if err != nil {
+		if _, ok := err.(types.NotFoundError); ok {
+			n, err = c.createGWNetwork()
+		}
+	}
+	return n, err
+}
+
+// Returns the endpoint which is providing external connectivity to the sandbox
+func (sb *sandbox) getGatewayEndpoint() *endpoint {
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.getNetwork().Type() == "null" || ep.getNetwork().Type() == "host" {
+			continue
+		}
+		if len(ep.Gateway()) != 0 {
+			return ep
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/default_gateway_freebsd.go b/vendor/github.com/docker/libnetwork/default_gateway_freebsd.go
new file mode 100644
index 0000000000..dc4b1bd592
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/default_gateway_freebsd.go
@@ -0,0 +1,13 @@
+package libnetwork
+
+import "github.com/docker/libnetwork/types"
+
+const libnGWNetwork = "docker_gwbridge"
+
+func getPlatformOption() EndpointOption {
+	return nil
+}
+
+func (c *controller) createGWNetwork() (Network, error) {
+	return nil, types.NotImplementedErrorf("default gateway functionality is not implemented in freebsd")
+}
diff --git a/vendor/github.com/docker/libnetwork/default_gateway_linux.go b/vendor/github.com/docker/libnetwork/default_gateway_linux.go
new file mode 100644
index 0000000000..60df856722
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/default_gateway_linux.go
@@ -0,0 +1,32 @@
+package libnetwork
+
+import (
+	"fmt"
+	"strconv"
+
+	"github.com/docker/libnetwork/drivers/bridge"
+)
+
+const libnGWNetwork = "docker_gwbridge"
+
+func getPlatformOption() EndpointOption {
+	return nil
+}
+
+func (c *controller) createGWNetwork() (Network, error) {
+	netOption := map[string]string{
+		bridge.BridgeName:         libnGWNetwork,
+		bridge.EnableICC:          strconv.FormatBool(false),
+		bridge.EnableIPMasquerade: strconv.FormatBool(true),
+	}
+
+	n, err := c.NewNetwork("bridge", libnGWNetwork, "",
+		NetworkOptionDriverOpts(netOption),
+		NetworkOptionEnableIPv6(false),
+	)
+
+	if err != nil {
+		return nil, fmt.Errorf("error creating external connectivity network: %v", err)
+	}
+	return n, err
+}
diff --git a/vendor/github.com/docker/libnetwork/default_gateway_windows.go b/vendor/github.com/docker/libnetwork/default_gateway_windows.go
new file mode 100644
index 0000000000..f4ba198e57
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/default_gateway_windows.go
@@ -0,0 +1,22 @@
+package libnetwork
+
+import (
+	windriver "github.com/docker/libnetwork/drivers/windows"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/types"
+)
+
+const libnGWNetwork = "nat"
+
+func getPlatformOption() EndpointOption {
+
+	epOption := options.Generic{
+		windriver.DisableICC: true,
+		windriver.DisableDNS: true,
+	}
+	return EndpointOptionGeneric(epOption)
+}
+
+func (c *controller) createGWNetwork() (Network, error) {
+	return nil, types.NotImplementedErrorf("default gateway functionality is not implemented in windows")
+}
diff --git a/vendor/github.com/docker/libnetwork/diagnostic/server.go b/vendor/github.com/docker/libnetwork/diagnostic/server.go
new file mode 100644
index 0000000000..f351762bd1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/diagnostic/server.go
@@ -0,0 +1,227 @@
+package diagnostic
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"sync"
+	"sync/atomic"
+
+	stackdump "github.com/docker/docker/pkg/signal"
+	"github.com/docker/libnetwork/common"
+	"github.com/sirupsen/logrus"
+)
+
+// HTTPHandlerFunc TODO
+type HTTPHandlerFunc func(interface{}, http.ResponseWriter, *http.Request)
+
+type httpHandlerCustom struct {
+	ctx interface{}
+	F   func(interface{}, http.ResponseWriter, *http.Request)
+}
+
+// ServeHTTP TODO
+func (h httpHandlerCustom) ServeHTTP(w http.ResponseWriter, r *http.Request) {
+	h.F(h.ctx, w, r)
+}
+
+var diagPaths2Func = map[string]HTTPHandlerFunc{
+	"/":          notImplemented,
+	"/help":      help,
+	"/ready":     ready,
+	"/stackdump": stackTrace,
+}
+
+// Server when the debug is enabled exposes a
+// This data structure is protected by the Agent mutex so does not require and additional mutex here
+type Server struct {
+	enable            int32
+	srv               *http.Server
+	port              int
+	mux               *http.ServeMux
+	registeredHanders map[string]bool
+	sync.Mutex
+}
+
+// New creates a new diagnostic server
+func New() *Server {
+	return &Server{
+		registeredHanders: make(map[string]bool),
+	}
+}
+
+// Init initialize the mux for the http handling and register the base hooks
+func (s *Server) Init() {
+	s.mux = http.NewServeMux()
+
+	// Register local handlers
+	s.RegisterHandler(s, diagPaths2Func)
+}
+
+// RegisterHandler allows to register new handlers to the mux and to a specific path
+func (s *Server) RegisterHandler(ctx interface{}, hdlrs map[string]HTTPHandlerFunc) {
+	s.Lock()
+	defer s.Unlock()
+	for path, fun := range hdlrs {
+		if _, ok := s.registeredHanders[path]; ok {
+			continue
+		}
+		s.mux.Handle(path, httpHandlerCustom{ctx, fun})
+		s.registeredHanders[path] = true
+	}
+}
+
+// ServeHTTP this is the method called bu the ListenAndServe, and is needed to allow us to
+// use our custom mux
+func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
+	s.mux.ServeHTTP(w, r)
+}
+
+// EnableDiagnostic opens a TCP socket to debug the passed network DB
+func (s *Server) EnableDiagnostic(ip string, port int) {
+	s.Lock()
+	defer s.Unlock()
+
+	s.port = port
+
+	if s.enable == 1 {
+		logrus.Info("The server is already up and running")
+		return
+	}
+
+	logrus.Infof("Starting the diagnostic server listening on %d for commands", port)
+	srv := &http.Server{Addr: fmt.Sprintf("%s:%d", ip, port), Handler: s}
+	s.srv = srv
+	s.enable = 1
+	go func(n *Server) {
+		// Ingore ErrServerClosed that is returned on the Shutdown call
+		if err := srv.ListenAndServe(); err != nil && err != http.ErrServerClosed {
+			logrus.Errorf("ListenAndServe error: %s", err)
+			atomic.SwapInt32(&n.enable, 0)
+		}
+	}(s)
+}
+
+// DisableDiagnostic stop the dubug and closes the tcp socket
+func (s *Server) DisableDiagnostic() {
+	s.Lock()
+	defer s.Unlock()
+
+	s.srv.Shutdown(context.Background())
+	s.srv = nil
+	s.enable = 0
+	logrus.Info("Disabling the diagnostic server")
+}
+
+// IsDiagnosticEnabled returns true when the debug is enabled
+func (s *Server) IsDiagnosticEnabled() bool {
+	s.Lock()
+	defer s.Unlock()
+	return s.enable == 1
+}
+
+func notImplemented(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	_, json := ParseHTTPFormOptions(r)
+	rsp := WrongCommand("not implemented", fmt.Sprintf("URL path: %s no method implemented check /help\n", r.URL.Path))
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("command not implemented done")
+
+	HTTPReply(w, rsp, json)
+}
+
+func help(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	_, json := ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("help done")
+
+	n, ok := ctx.(*Server)
+	var result string
+	if ok {
+		for path := range n.registeredHanders {
+			result += fmt.Sprintf("%s\n", path)
+		}
+		HTTPReply(w, CommandSucceed(&StringCmd{Info: result}), json)
+	}
+}
+
+func ready(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	_, json := ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("ready done")
+	HTTPReply(w, CommandSucceed(&StringCmd{Info: "OK"}), json)
+}
+
+func stackTrace(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	_, json := ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("stack trace")
+
+	path, err := stackdump.DumpStacks("/tmp/")
+	if err != nil {
+		log.WithError(err).Error("failed to write goroutines dump")
+		HTTPReply(w, FailCommand(err), json)
+	} else {
+		log.Info("stack trace done")
+		HTTPReply(w, CommandSucceed(&StringCmd{Info: fmt.Sprintf("goroutine stacks written to %s", path)}), json)
+	}
+}
+
+// DebugHTTPForm helper to print the form url parameters
+func DebugHTTPForm(r *http.Request) {
+	for k, v := range r.Form {
+		logrus.Debugf("Form[%q] = %q\n", k, v)
+	}
+}
+
+// JSONOutput contains details on JSON output printing
+type JSONOutput struct {
+	enable      bool
+	prettyPrint bool
+}
+
+// ParseHTTPFormOptions easily parse the JSON printing options
+func ParseHTTPFormOptions(r *http.Request) (bool, *JSONOutput) {
+	_, unsafe := r.Form["unsafe"]
+	v, json := r.Form["json"]
+	var pretty bool
+	if len(v) > 0 {
+		pretty = v[0] == "pretty"
+	}
+	return unsafe, &JSONOutput{enable: json, prettyPrint: pretty}
+}
+
+// HTTPReply helper function that takes care of sending the message out
+func HTTPReply(w http.ResponseWriter, r *HTTPResult, j *JSONOutput) (int, error) {
+	var response []byte
+	if j.enable {
+		w.Header().Set("Content-Type", "application/json")
+		var err error
+		if j.prettyPrint {
+			response, err = json.MarshalIndent(r, "", "  ")
+			if err != nil {
+				response, _ = json.MarshalIndent(FailCommand(err), "", "  ")
+			}
+		} else {
+			response, err = json.Marshal(r)
+			if err != nil {
+				response, _ = json.Marshal(FailCommand(err))
+			}
+		}
+	} else {
+		response = []byte(r.String())
+	}
+	return fmt.Fprint(w, string(response))
+}
diff --git a/vendor/github.com/docker/libnetwork/diagnostic/types.go b/vendor/github.com/docker/libnetwork/diagnostic/types.go
new file mode 100644
index 0000000000..4eb4ca0d9f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/diagnostic/types.go
@@ -0,0 +1,122 @@
+package diagnostic
+
+import "fmt"
+
+// StringInterface interface that has to be implemented by messages
+type StringInterface interface {
+	String() string
+}
+
+// CommandSucceed creates a success message
+func CommandSucceed(result StringInterface) *HTTPResult {
+	return &HTTPResult{
+		Message: "OK",
+		Details: result,
+	}
+}
+
+// FailCommand creates a failure message with error
+func FailCommand(err error) *HTTPResult {
+	return &HTTPResult{
+		Message: "FAIL",
+		Details: &ErrorCmd{Error: err.Error()},
+	}
+}
+
+// WrongCommand creates a wrong command response
+func WrongCommand(message, usage string) *HTTPResult {
+	return &HTTPResult{
+		Message: message,
+		Details: &UsageCmd{Usage: usage},
+	}
+}
+
+// HTTPResult Diagnostic Server HTTP result operation
+type HTTPResult struct {
+	Message string          `json:"message"`
+	Details StringInterface `json:"details"`
+}
+
+func (h *HTTPResult) String() string {
+	rsp := h.Message
+	if h.Details != nil {
+		rsp += "\n" + h.Details.String()
+	}
+	return rsp
+}
+
+// UsageCmd command with usage field
+type UsageCmd struct {
+	Usage string `json:"usage"`
+}
+
+func (u *UsageCmd) String() string {
+	return "Usage: " + u.Usage
+}
+
+// StringCmd command with info string
+type StringCmd struct {
+	Info string `json:"info"`
+}
+
+func (s *StringCmd) String() string {
+	return s.Info
+}
+
+// ErrorCmd command with error
+type ErrorCmd struct {
+	Error string `json:"error"`
+}
+
+func (e *ErrorCmd) String() string {
+	return "Error: " + e.Error
+}
+
+// TableObj network db table object
+type TableObj struct {
+	Length   int               `json:"size"`
+	Elements []StringInterface `json:"entries"`
+}
+
+func (t *TableObj) String() string {
+	output := fmt.Sprintf("total entries: %d\n", t.Length)
+	for _, e := range t.Elements {
+		output += e.String()
+	}
+	return output
+}
+
+// PeerEntryObj entry in the networkdb peer table
+type PeerEntryObj struct {
+	Index int    `json:"-"`
+	Name  string `json:"-=name"`
+	IP    string `json:"ip"`
+}
+
+func (p *PeerEntryObj) String() string {
+	return fmt.Sprintf("%d) %s -> %s\n", p.Index, p.Name, p.IP)
+}
+
+// TableEntryObj network db table entry object
+type TableEntryObj struct {
+	Index int    `json:"-"`
+	Key   string `json:"key"`
+	Value string `json:"value"`
+	Owner string `json:"owner"`
+}
+
+func (t *TableEntryObj) String() string {
+	return fmt.Sprintf("%d) k:`%s` -> v:`%s` owner:`%s`\n", t.Index, t.Key, t.Value, t.Owner)
+}
+
+// TableEndpointsResult fully typed message for proper unmarshaling on the client side
+type TableEndpointsResult struct {
+	TableObj
+	Elements []TableEntryObj `json:"entries"`
+}
+
+// TablePeersResult fully typed message for proper unmarshaling on the client side
+type TablePeersResult struct {
+	TableObj
+	Elements []PeerEntryObj `json:"entries"`
+}
diff --git a/vendor/github.com/docker/libnetwork/discoverapi/discoverapi.go b/vendor/github.com/docker/libnetwork/discoverapi/discoverapi.go
new file mode 100644
index 0000000000..7ac36155db
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/discoverapi/discoverapi.go
@@ -0,0 +1,60 @@
+package discoverapi
+
+// Discover is an interface to be implemented by the component interested in receiving discover events
+// like new node joining the cluster or datastore updates
+type Discover interface {
+	// DiscoverNew is a notification for a new discovery event, Example:a new node joining a cluster
+	DiscoverNew(dType DiscoveryType, data interface{}) error
+
+	// DiscoverDelete is a notification for a discovery delete event, Example:a node leaving a cluster
+	DiscoverDelete(dType DiscoveryType, data interface{}) error
+}
+
+// DiscoveryType represents the type of discovery element the DiscoverNew function is invoked on
+type DiscoveryType int
+
+const (
+	// NodeDiscovery represents Node join/leave events provided by discovery
+	NodeDiscovery = iota + 1
+	// DatastoreConfig represents an add/remove datastore event
+	DatastoreConfig
+	// EncryptionKeysConfig represents the initial key(s) for performing datapath encryption
+	EncryptionKeysConfig
+	// EncryptionKeysUpdate represents an update to the datapath encryption key(s)
+	EncryptionKeysUpdate
+)
+
+// NodeDiscoveryData represents the structure backing the node discovery data json string
+type NodeDiscoveryData struct {
+	Address     string
+	BindAddress string
+	Self        bool
+}
+
+// DatastoreConfigData is the data for the datastore update event message
+type DatastoreConfigData struct {
+	Scope    string
+	Provider string
+	Address  string
+	Config   interface{}
+}
+
+// DriverEncryptionConfig contains the initial datapath encryption key(s)
+// Key in first position is the primary key, the one to be used in tx.
+// Original key and tag types are []byte and uint64
+type DriverEncryptionConfig struct {
+	Keys [][]byte
+	Tags []uint64
+}
+
+// DriverEncryptionUpdate carries an update to the encryption key(s) as:
+// a new key and/or set a primary key and/or a removal of an existing key.
+// Original key and tag types are []byte and uint64
+type DriverEncryptionUpdate struct {
+	Key        []byte
+	Tag        uint64
+	Primary    []byte
+	PrimaryTag uint64
+	Prune      []byte
+	PruneTag   uint64
+}
diff --git a/vendor/github.com/docker/libnetwork/driverapi/driverapi.go b/vendor/github.com/docker/libnetwork/driverapi/driverapi.go
new file mode 100644
index 0000000000..48a14ae57a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/driverapi/driverapi.go
@@ -0,0 +1,213 @@
+package driverapi
+
+import (
+	"net"
+
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/libnetwork/discoverapi"
+)
+
+// NetworkPluginEndpointType represents the Endpoint Type used by Plugin system
+const NetworkPluginEndpointType = "NetworkDriver"
+
+// Driver is an interface that every plugin driver needs to implement.
+type Driver interface {
+	discoverapi.Discover
+
+	// NetworkAllocate invokes the driver method to allocate network
+	// specific resources passing network id and network specific config.
+	// It returns a key,value pair of network specific driver allocations
+	// to the caller.
+	NetworkAllocate(nid string, options map[string]string, ipV4Data, ipV6Data []IPAMData) (map[string]string, error)
+
+	// NetworkFree invokes the driver method to free network specific resources
+	// associated with a given network id.
+	NetworkFree(nid string) error
+
+	// CreateNetwork invokes the driver method to create a network
+	// passing the network id and network specific config. The
+	// config mechanism will eventually be replaced with labels
+	// which are yet to be introduced. The driver can return a
+	// list of table names for which it is interested in receiving
+	// notification when a CRUD operation is performed on any
+	// entry in that table. This will be ignored for local scope
+	// drivers.
+	CreateNetwork(nid string, options map[string]interface{}, nInfo NetworkInfo, ipV4Data, ipV6Data []IPAMData) error
+
+	// DeleteNetwork invokes the driver method to delete network passing
+	// the network id.
+	DeleteNetwork(nid string) error
+
+	// CreateEndpoint invokes the driver method to create an endpoint
+	// passing the network id, endpoint id endpoint information and driver
+	// specific config. The endpoint information can be either consumed by
+	// the driver or populated by the driver. The config mechanism will
+	// eventually be replaced with labels which are yet to be introduced.
+	CreateEndpoint(nid, eid string, ifInfo InterfaceInfo, options map[string]interface{}) error
+
+	// DeleteEndpoint invokes the driver method to delete an endpoint
+	// passing the network id and endpoint id.
+	DeleteEndpoint(nid, eid string) error
+
+	// EndpointOperInfo retrieves from the driver the operational data related to the specified endpoint
+	EndpointOperInfo(nid, eid string) (map[string]interface{}, error)
+
+	// Join method is invoked when a Sandbox is attached to an endpoint.
+	Join(nid, eid string, sboxKey string, jinfo JoinInfo, options map[string]interface{}) error
+
+	// Leave method is invoked when a Sandbox detaches from an endpoint.
+	Leave(nid, eid string) error
+
+	// ProgramExternalConnectivity invokes the driver method which does the necessary
+	// programming to allow the external connectivity dictated by the passed options
+	ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error
+
+	// RevokeExternalConnectivity asks the driver to remove any external connectivity
+	// programming that was done so far
+	RevokeExternalConnectivity(nid, eid string) error
+
+	// EventNotify notifies the driver when a CRUD operation has
+	// happened on a table of its interest as soon as this node
+	// receives such an event in the gossip layer. This method is
+	// only invoked for the global scope driver.
+	EventNotify(event EventType, nid string, tableName string, key string, value []byte)
+
+	// DecodeTableEntry passes the driver a key, value pair from table it registered
+	// with libnetwork. Driver should return {object ID, map[string]string} tuple.
+	// If DecodeTableEntry is called for a table associated with NetworkObject or
+	// EndpointObject the return object ID should be the network id or endppoint id
+	// associated with that entry. map should have information about the object that
+	// can be presented to the user.
+	// For exampe: overlay driver returns the VTEP IP of the host that has the endpoint
+	// which is shown in 'network inspect --verbose'
+	DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string)
+
+	// Type returns the type of this driver, the network type this driver manages
+	Type() string
+
+	// IsBuiltIn returns true if it is a built-in driver
+	IsBuiltIn() bool
+}
+
+// NetworkInfo provides a go interface for drivers to provide network
+// specific information to libnetwork.
+type NetworkInfo interface {
+	// TableEventRegister registers driver interest in a given
+	// table name.
+	TableEventRegister(tableName string, objType ObjectType) error
+}
+
+// InterfaceInfo provides a go interface for drivers to retrive
+// network information to interface resources.
+type InterfaceInfo interface {
+	// SetMacAddress allows the driver to set the mac address to the endpoint interface
+	// during the call to CreateEndpoint, if the mac address is not already set.
+	SetMacAddress(mac net.HardwareAddr) error
+
+	// SetIPAddress allows the driver to set the ip address to the endpoint interface
+	// during the call to CreateEndpoint, if the address is not already set.
+	// The API is to be used to assign both the IPv4 and IPv6 address types.
+	SetIPAddress(ip *net.IPNet) error
+
+	// MacAddress returns the MAC address.
+	MacAddress() net.HardwareAddr
+
+	// Address returns the IPv4 address.
+	Address() *net.IPNet
+
+	// AddressIPv6 returns the IPv6 address.
+	AddressIPv6() *net.IPNet
+}
+
+// InterfaceNameInfo provides a go interface for the drivers to assign names
+// to interfaces.
+type InterfaceNameInfo interface {
+	// SetNames method assigns the srcName and dstPrefix for the interface.
+	SetNames(srcName, dstPrefix string) error
+}
+
+// JoinInfo represents a set of resources that the driver has the ability to provide during
+// join time.
+type JoinInfo interface {
+	// InterfaceName returns an InterfaceNameInfo go interface to facilitate
+	// setting the names for the interface.
+	InterfaceName() InterfaceNameInfo
+
+	// SetGateway sets the default IPv4 gateway when a container joins the endpoint.
+	SetGateway(net.IP) error
+
+	// SetGatewayIPv6 sets the default IPv6 gateway when a container joins the endpoint.
+	SetGatewayIPv6(net.IP) error
+
+	// AddStaticRoute adds a route to the sandbox.
+	// It may be used in addition to or instead of a default gateway (as above).
+	AddStaticRoute(destination *net.IPNet, routeType int, nextHop net.IP) error
+
+	// DisableGatewayService tells libnetwork not to provide Default GW for the container
+	DisableGatewayService()
+
+	// AddTableEntry adds a table entry to the gossip layer
+	// passing the table name, key and an opaque value.
+	AddTableEntry(tableName string, key string, value []byte) error
+}
+
+// DriverCallback provides a Callback interface for Drivers into LibNetwork
+type DriverCallback interface {
+	// GetPluginGetter returns the pluginv2 getter.
+	GetPluginGetter() plugingetter.PluginGetter
+	// RegisterDriver provides a way for Remote drivers to dynamically register new NetworkType and associate with a driver instance
+	RegisterDriver(name string, driver Driver, capability Capability) error
+}
+
+// Capability represents the high level capabilities of the drivers which libnetwork can make use of
+type Capability struct {
+	DataScope         string
+	ConnectivityScope string
+}
+
+// IPAMData represents the per-network ip related
+// operational information libnetwork will send
+// to the network driver during CreateNetwork()
+type IPAMData struct {
+	AddressSpace string
+	Pool         *net.IPNet
+	Gateway      *net.IPNet
+	AuxAddresses map[string]*net.IPNet
+}
+
+// EventType defines a type for the CRUD event
+type EventType uint8
+
+const (
+	// Create event is generated when a table entry is created,
+	Create EventType = 1 + iota
+	// Update event is generated when a table entry is updated.
+	Update
+	// Delete event is generated when a table entry is deleted.
+	Delete
+)
+
+// ObjectType represents the type of object driver wants to store in libnetwork's networkDB
+type ObjectType int
+
+const (
+	// EndpointObject should be set for libnetwork endpoint object related data
+	EndpointObject ObjectType = 1 + iota
+	// NetworkObject should be set for libnetwork network object related data
+	NetworkObject
+	// OpaqueObject is for driver specific data with no corresponding libnetwork object
+	OpaqueObject
+)
+
+// IsValidType validates the passed in type against the valid object types
+func IsValidType(objType ObjectType) bool {
+	switch objType {
+	case EndpointObject:
+		fallthrough
+	case NetworkObject:
+		fallthrough
+	case OpaqueObject:
+		return true
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/libnetwork/driverapi/errors.go b/vendor/github.com/docker/libnetwork/driverapi/errors.go
new file mode 100644
index 0000000000..041ef41506
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/driverapi/errors.go
@@ -0,0 +1,56 @@
+package driverapi
+
+import (
+	"fmt"
+)
+
+// ErrNoNetwork is returned if no network with the specified id exists
+type ErrNoNetwork string
+
+func (enn ErrNoNetwork) Error() string {
+	return fmt.Sprintf("No network (%s) exists", string(enn))
+}
+
+// NotFound denotes the type of this error
+func (enn ErrNoNetwork) NotFound() {}
+
+// ErrEndpointExists is returned if more than one endpoint is added to the network
+type ErrEndpointExists string
+
+func (ee ErrEndpointExists) Error() string {
+	return fmt.Sprintf("Endpoint (%s) already exists (Only one endpoint allowed)", string(ee))
+}
+
+// Forbidden denotes the type of this error
+func (ee ErrEndpointExists) Forbidden() {}
+
+// ErrNotImplemented is returned when a Driver has not implemented an API yet
+type ErrNotImplemented struct{}
+
+func (eni *ErrNotImplemented) Error() string {
+	return "The API is not implemented yet"
+}
+
+// NotImplemented denotes the type of this error
+func (eni *ErrNotImplemented) NotImplemented() {}
+
+// ErrNoEndpoint is returned if no endpoint with the specified id exists
+type ErrNoEndpoint string
+
+func (ene ErrNoEndpoint) Error() string {
+	return fmt.Sprintf("No endpoint (%s) exists", string(ene))
+}
+
+// NotFound denotes the type of this error
+func (ene ErrNoEndpoint) NotFound() {}
+
+// ErrActiveRegistration represents an error when a driver is registered to a networkType that is previously registered
+type ErrActiveRegistration string
+
+// Error interface for ErrActiveRegistration
+func (ar ErrActiveRegistration) Error() string {
+	return fmt.Sprintf("Driver already registered for type %q", string(ar))
+}
+
+// Forbidden denotes the type of this error
+func (ar ErrActiveRegistration) Forbidden() {}
diff --git a/vendor/github.com/docker/libnetwork/driverapi/ipamdata.go b/vendor/github.com/docker/libnetwork/driverapi/ipamdata.go
new file mode 100644
index 0000000000..fc1c2af441
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/driverapi/ipamdata.go
@@ -0,0 +1,103 @@
+package driverapi
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/types"
+)
+
+// MarshalJSON encodes IPAMData into json message
+func (i *IPAMData) MarshalJSON() ([]byte, error) {
+	m := map[string]interface{}{}
+	m["AddressSpace"] = i.AddressSpace
+	if i.Pool != nil {
+		m["Pool"] = i.Pool.String()
+	}
+	if i.Gateway != nil {
+		m["Gateway"] = i.Gateway.String()
+	}
+	if i.AuxAddresses != nil {
+		am := make(map[string]string, len(i.AuxAddresses))
+		for k, v := range i.AuxAddresses {
+			am[k] = v.String()
+		}
+		m["AuxAddresses"] = am
+	}
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes a json message into IPAMData
+func (i *IPAMData) UnmarshalJSON(data []byte) error {
+	var (
+		m   map[string]interface{}
+		err error
+	)
+	if err := json.Unmarshal(data, &m); err != nil {
+		return err
+	}
+	i.AddressSpace = m["AddressSpace"].(string)
+	if v, ok := m["Pool"]; ok {
+		if i.Pool, err = types.ParseCIDR(v.(string)); err != nil {
+			return err
+		}
+	}
+	if v, ok := m["Gateway"]; ok {
+		if i.Gateway, err = types.ParseCIDR(v.(string)); err != nil {
+			return err
+		}
+	}
+	if v, ok := m["AuxAddresses"]; ok {
+		b, _ := json.Marshal(v)
+		var am map[string]string
+		if err = json.Unmarshal(b, &am); err != nil {
+			return err
+		}
+		i.AuxAddresses = make(map[string]*net.IPNet, len(am))
+		for k, v := range am {
+			if i.AuxAddresses[k], err = types.ParseCIDR(v); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+// Validate checks whether the IPAMData structure contains congruent data
+func (i *IPAMData) Validate() error {
+	var isV6 bool
+	if i.Pool == nil {
+		return types.BadRequestErrorf("invalid pool")
+	}
+	if i.Gateway == nil {
+		return types.BadRequestErrorf("invalid gateway address")
+	}
+	isV6 = i.IsV6()
+	if isV6 && i.Gateway.IP.To4() != nil || !isV6 && i.Gateway.IP.To4() == nil {
+		return types.BadRequestErrorf("incongruent ip versions for pool and gateway")
+	}
+	for k, sip := range i.AuxAddresses {
+		if isV6 && sip.IP.To4() != nil || !isV6 && sip.IP.To4() == nil {
+			return types.BadRequestErrorf("incongruent ip versions for pool and secondary ip address %s", k)
+		}
+	}
+	if !i.Pool.Contains(i.Gateway.IP) {
+		return types.BadRequestErrorf("invalid gateway address (%s) does not belong to the pool (%s)", i.Gateway, i.Pool)
+	}
+	for k, sip := range i.AuxAddresses {
+		if !i.Pool.Contains(sip.IP) {
+			return types.BadRequestErrorf("invalid secondary address %s (%s) does not belong to the pool (%s)", k, i.Gateway, i.Pool)
+		}
+	}
+	return nil
+}
+
+// IsV6 returns whether this is an IPv6 IPAMData structure
+func (i *IPAMData) IsV6() bool {
+	return nil == i.Pool.IP.To4()
+}
+
+func (i *IPAMData) String() string {
+	return fmt.Sprintf("AddressSpace: %s\nPool: %v\nGateway: %v\nAddresses: %v", i.AddressSpace, i.Pool, i.Gateway, i.AuxAddresses)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/bridge.go b/vendor/github.com/docker/libnetwork/drivers/bridge/bridge.go
new file mode 100644
index 0000000000..783d45c113
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/bridge.go
@@ -0,0 +1,1508 @@
+package bridge
+
+import (
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"net"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"strconv"
+	"sync"
+	"syscall"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/iptables"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/portmapper"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+const (
+	networkType                = "bridge"
+	vethPrefix                 = "veth"
+	vethLen                    = 7
+	defaultContainerVethPrefix = "eth"
+	maxAllocatePortAttempts    = 10
+)
+
+const (
+	// DefaultGatewayV4AuxKey represents the default-gateway configured by the user
+	DefaultGatewayV4AuxKey = "DefaultGatewayIPv4"
+	// DefaultGatewayV6AuxKey represents the ipv6 default-gateway configured by the user
+	DefaultGatewayV6AuxKey = "DefaultGatewayIPv6"
+)
+
+type defaultBridgeNetworkConflict struct {
+	ID string
+}
+
+func (d defaultBridgeNetworkConflict) Error() string {
+	return fmt.Sprintf("Stale default bridge network %s", d.ID)
+}
+
+type iptableCleanFunc func() error
+type iptablesCleanFuncs []iptableCleanFunc
+
+// configuration info for the "bridge" driver.
+type configuration struct {
+	EnableIPForwarding  bool
+	EnableIPTables      bool
+	EnableUserlandProxy bool
+	UserlandProxyPath   string
+}
+
+// networkConfiguration for network specific configuration
+type networkConfiguration struct {
+	ID                   string
+	BridgeName           string
+	EnableIPv6           bool
+	EnableIPMasquerade   bool
+	EnableICC            bool
+	Mtu                  int
+	DefaultBindingIP     net.IP
+	DefaultBridge        bool
+	ContainerIfacePrefix string
+	// Internal fields set after ipam data parsing
+	AddressIPv4        *net.IPNet
+	AddressIPv6        *net.IPNet
+	DefaultGatewayIPv4 net.IP
+	DefaultGatewayIPv6 net.IP
+	dbIndex            uint64
+	dbExists           bool
+	Internal           bool
+
+	BridgeIfaceCreator ifaceCreator
+}
+
+// ifaceCreator represents how the bridge interface was created
+type ifaceCreator int8
+
+const (
+	ifaceCreatorUnknown ifaceCreator = iota
+	ifaceCreatedByLibnetwork
+	ifaceCreatedByUser
+)
+
+// endpointConfiguration represents the user specified configuration for the sandbox endpoint
+type endpointConfiguration struct {
+	MacAddress net.HardwareAddr
+}
+
+// containerConfiguration represents the user specified configuration for a container
+type containerConfiguration struct {
+	ParentEndpoints []string
+	ChildEndpoints  []string
+}
+
+// cnnectivityConfiguration represents the user specified configuration regarding the external connectivity
+type connectivityConfiguration struct {
+	PortBindings []types.PortBinding
+	ExposedPorts []types.TransportPort
+}
+
+type bridgeEndpoint struct {
+	id              string
+	nid             string
+	srcName         string
+	addr            *net.IPNet
+	addrv6          *net.IPNet
+	macAddress      net.HardwareAddr
+	config          *endpointConfiguration // User specified parameters
+	containerConfig *containerConfiguration
+	extConnConfig   *connectivityConfiguration
+	portMapping     []types.PortBinding // Operation port bindings
+	dbIndex         uint64
+	dbExists        bool
+}
+
+type bridgeNetwork struct {
+	id            string
+	bridge        *bridgeInterface // The bridge's L3 interface
+	config        *networkConfiguration
+	endpoints     map[string]*bridgeEndpoint // key: endpoint id
+	portMapper    *portmapper.PortMapper
+	driver        *driver // The network's driver
+	iptCleanFuncs iptablesCleanFuncs
+	sync.Mutex
+}
+
+type driver struct {
+	config          *configuration
+	network         *bridgeNetwork
+	natChain        *iptables.ChainInfo
+	filterChain     *iptables.ChainInfo
+	isolationChain1 *iptables.ChainInfo
+	isolationChain2 *iptables.ChainInfo
+	networks        map[string]*bridgeNetwork
+	store           datastore.DataStore
+	nlh             *netlink.Handle
+	configNetwork   sync.Mutex
+	sync.Mutex
+}
+
+// New constructs a new bridge driver
+func newDriver() *driver {
+	return &driver{networks: map[string]*bridgeNetwork{}, config: &configuration{}}
+}
+
+// Init registers a new instance of bridge driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	d := newDriver()
+	if err := d.configure(config); err != nil {
+		return err
+	}
+
+	c := driverapi.Capability{
+		DataScope:         datastore.LocalScope,
+		ConnectivityScope: datastore.LocalScope,
+	}
+	return dc.RegisterDriver(networkType, d, c)
+}
+
+// Validate performs a static validation on the network configuration parameters.
+// Whatever can be assessed a priori before attempting any programming.
+func (c *networkConfiguration) Validate() error {
+	if c.Mtu < 0 {
+		return ErrInvalidMtu(c.Mtu)
+	}
+
+	// If bridge v4 subnet is specified
+	if c.AddressIPv4 != nil {
+		// If default gw is specified, it must be part of bridge subnet
+		if c.DefaultGatewayIPv4 != nil {
+			if !c.AddressIPv4.Contains(c.DefaultGatewayIPv4) {
+				return &ErrInvalidGateway{}
+			}
+		}
+	}
+
+	// If default v6 gw is specified, AddressIPv6 must be specified and gw must belong to AddressIPv6 subnet
+	if c.EnableIPv6 && c.DefaultGatewayIPv6 != nil {
+		if c.AddressIPv6 == nil || !c.AddressIPv6.Contains(c.DefaultGatewayIPv6) {
+			return &ErrInvalidGateway{}
+		}
+	}
+	return nil
+}
+
+// Conflicts check if two NetworkConfiguration objects overlap
+func (c *networkConfiguration) Conflicts(o *networkConfiguration) error {
+	if o == nil {
+		return errors.New("same configuration")
+	}
+
+	// Also empty, because only one network with empty name is allowed
+	if c.BridgeName == o.BridgeName {
+		return errors.New("networks have same bridge name")
+	}
+
+	// They must be in different subnets
+	if (c.AddressIPv4 != nil && o.AddressIPv4 != nil) &&
+		(c.AddressIPv4.Contains(o.AddressIPv4.IP) || o.AddressIPv4.Contains(c.AddressIPv4.IP)) {
+		return errors.New("networks have overlapping IPv4")
+	}
+
+	// They must be in different v6 subnets
+	if (c.AddressIPv6 != nil && o.AddressIPv6 != nil) &&
+		(c.AddressIPv6.Contains(o.AddressIPv6.IP) || o.AddressIPv6.Contains(c.AddressIPv6.IP)) {
+		return errors.New("networks have overlapping IPv6")
+	}
+
+	return nil
+}
+
+func (c *networkConfiguration) fromLabels(labels map[string]string) error {
+	var err error
+	for label, value := range labels {
+		switch label {
+		case BridgeName:
+			c.BridgeName = value
+		case netlabel.DriverMTU:
+			if c.Mtu, err = strconv.Atoi(value); err != nil {
+				return parseErr(label, value, err.Error())
+			}
+		case netlabel.EnableIPv6:
+			if c.EnableIPv6, err = strconv.ParseBool(value); err != nil {
+				return parseErr(label, value, err.Error())
+			}
+		case EnableIPMasquerade:
+			if c.EnableIPMasquerade, err = strconv.ParseBool(value); err != nil {
+				return parseErr(label, value, err.Error())
+			}
+		case EnableICC:
+			if c.EnableICC, err = strconv.ParseBool(value); err != nil {
+				return parseErr(label, value, err.Error())
+			}
+		case DefaultBridge:
+			if c.DefaultBridge, err = strconv.ParseBool(value); err != nil {
+				return parseErr(label, value, err.Error())
+			}
+		case DefaultBindingIP:
+			if c.DefaultBindingIP = net.ParseIP(value); c.DefaultBindingIP == nil {
+				return parseErr(label, value, "nil ip")
+			}
+		case netlabel.ContainerIfacePrefix:
+			c.ContainerIfacePrefix = value
+		}
+	}
+
+	return nil
+}
+
+func parseErr(label, value, errString string) error {
+	return types.BadRequestErrorf("failed to parse %s value: %v (%s)", label, value, errString)
+}
+
+func (n *bridgeNetwork) registerIptCleanFunc(clean iptableCleanFunc) {
+	n.iptCleanFuncs = append(n.iptCleanFuncs, clean)
+}
+
+func (n *bridgeNetwork) getDriverChains() (*iptables.ChainInfo, *iptables.ChainInfo, *iptables.ChainInfo, *iptables.ChainInfo, error) {
+	n.Lock()
+	defer n.Unlock()
+
+	if n.driver == nil {
+		return nil, nil, nil, nil, types.BadRequestErrorf("no driver found")
+	}
+
+	return n.driver.natChain, n.driver.filterChain, n.driver.isolationChain1, n.driver.isolationChain2, nil
+}
+
+func (n *bridgeNetwork) getNetworkBridgeName() string {
+	n.Lock()
+	config := n.config
+	n.Unlock()
+
+	return config.BridgeName
+}
+
+func (n *bridgeNetwork) getEndpoint(eid string) (*bridgeEndpoint, error) {
+	n.Lock()
+	defer n.Unlock()
+
+	if eid == "" {
+		return nil, InvalidEndpointIDError(eid)
+	}
+
+	if ep, ok := n.endpoints[eid]; ok {
+		return ep, nil
+	}
+
+	return nil, nil
+}
+
+// Install/Removes the iptables rules needed to isolate this network
+// from each of the other networks
+func (n *bridgeNetwork) isolateNetwork(others []*bridgeNetwork, enable bool) error {
+	n.Lock()
+	thisConfig := n.config
+	n.Unlock()
+
+	if thisConfig.Internal {
+		return nil
+	}
+
+	// Install the rules to isolate this network against each of the other networks
+	return setINC(thisConfig.BridgeName, enable)
+}
+
+func (d *driver) configure(option map[string]interface{}) error {
+	var (
+		config          *configuration
+		err             error
+		natChain        *iptables.ChainInfo
+		filterChain     *iptables.ChainInfo
+		isolationChain1 *iptables.ChainInfo
+		isolationChain2 *iptables.ChainInfo
+	)
+
+	genericData, ok := option[netlabel.GenericData]
+	if !ok || genericData == nil {
+		return nil
+	}
+
+	switch opt := genericData.(type) {
+	case options.Generic:
+		opaqueConfig, err := options.GenerateFromModel(opt, &configuration{})
+		if err != nil {
+			return err
+		}
+		config = opaqueConfig.(*configuration)
+	case *configuration:
+		config = opt
+	default:
+		return &ErrInvalidDriverConfig{}
+	}
+
+	if config.EnableIPTables {
+		if _, err := os.Stat("/proc/sys/net/bridge"); err != nil {
+			if out, err := exec.Command("modprobe", "-va", "bridge", "br_netfilter").CombinedOutput(); err != nil {
+				logrus.Warnf("Running modprobe bridge br_netfilter failed with message: %s, error: %v", out, err)
+			}
+		}
+		removeIPChains()
+		natChain, filterChain, isolationChain1, isolationChain2, err = setupIPChains(config)
+		if err != nil {
+			return err
+		}
+		// Make sure on firewall reload, first thing being re-played is chains creation
+		iptables.OnReloaded(func() { logrus.Debugf("Recreating iptables chains on firewall reload"); setupIPChains(config) })
+	}
+
+	if config.EnableIPForwarding {
+		err = setupIPForwarding(config.EnableIPTables)
+		if err != nil {
+			logrus.Warn(err)
+			return err
+		}
+	}
+
+	d.Lock()
+	d.natChain = natChain
+	d.filterChain = filterChain
+	d.isolationChain1 = isolationChain1
+	d.isolationChain2 = isolationChain2
+	d.config = config
+	d.Unlock()
+
+	err = d.initStore(option)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (d *driver) getNetwork(id string) (*bridgeNetwork, error) {
+	d.Lock()
+	defer d.Unlock()
+
+	if id == "" {
+		return nil, types.BadRequestErrorf("invalid network id: %s", id)
+	}
+
+	if nw, ok := d.networks[id]; ok {
+		return nw, nil
+	}
+
+	return nil, types.NotFoundErrorf("network not found: %s", id)
+}
+
+func parseNetworkGenericOptions(data interface{}) (*networkConfiguration, error) {
+	var (
+		err    error
+		config *networkConfiguration
+	)
+
+	switch opt := data.(type) {
+	case *networkConfiguration:
+		config = opt
+	case map[string]string:
+		config = &networkConfiguration{
+			EnableICC:          true,
+			EnableIPMasquerade: true,
+		}
+		err = config.fromLabels(opt)
+	case options.Generic:
+		var opaqueConfig interface{}
+		if opaqueConfig, err = options.GenerateFromModel(opt, config); err == nil {
+			config = opaqueConfig.(*networkConfiguration)
+		}
+	default:
+		err = types.BadRequestErrorf("do not recognize network configuration format: %T", opt)
+	}
+
+	return config, err
+}
+
+func (c *networkConfiguration) processIPAM(id string, ipamV4Data, ipamV6Data []driverapi.IPAMData) error {
+	if len(ipamV4Data) > 1 || len(ipamV6Data) > 1 {
+		return types.ForbiddenErrorf("bridge driver doesn't support multiple subnets")
+	}
+
+	if len(ipamV4Data) == 0 {
+		return types.BadRequestErrorf("bridge network %s requires ipv4 configuration", id)
+	}
+
+	if ipamV4Data[0].Gateway != nil {
+		c.AddressIPv4 = types.GetIPNetCopy(ipamV4Data[0].Gateway)
+	}
+
+	if gw, ok := ipamV4Data[0].AuxAddresses[DefaultGatewayV4AuxKey]; ok {
+		c.DefaultGatewayIPv4 = gw.IP
+	}
+
+	if len(ipamV6Data) > 0 {
+		c.AddressIPv6 = ipamV6Data[0].Pool
+
+		if ipamV6Data[0].Gateway != nil {
+			c.AddressIPv6 = types.GetIPNetCopy(ipamV6Data[0].Gateway)
+		}
+
+		if gw, ok := ipamV6Data[0].AuxAddresses[DefaultGatewayV6AuxKey]; ok {
+			c.DefaultGatewayIPv6 = gw.IP
+		}
+	}
+
+	return nil
+}
+
+func parseNetworkOptions(id string, option options.Generic) (*networkConfiguration, error) {
+	var (
+		err    error
+		config = &networkConfiguration{}
+	)
+
+	// Parse generic label first, config will be re-assigned
+	if genData, ok := option[netlabel.GenericData]; ok && genData != nil {
+		if config, err = parseNetworkGenericOptions(genData); err != nil {
+			return nil, err
+		}
+	}
+
+	// Process well-known labels next
+	if val, ok := option[netlabel.EnableIPv6]; ok {
+		config.EnableIPv6 = val.(bool)
+	}
+
+	if val, ok := option[netlabel.Internal]; ok {
+		if internal, ok := val.(bool); ok && internal {
+			config.Internal = true
+		}
+	}
+
+	// Finally validate the configuration
+	if err = config.Validate(); err != nil {
+		return nil, err
+	}
+
+	if config.BridgeName == "" && config.DefaultBridge == false {
+		config.BridgeName = "br-" + id[:12]
+	}
+
+	exists, err := bridgeInterfaceExists(config.BridgeName)
+	if err != nil {
+		return nil, err
+	}
+
+	if !exists {
+		config.BridgeIfaceCreator = ifaceCreatedByLibnetwork
+	} else {
+		config.BridgeIfaceCreator = ifaceCreatedByUser
+	}
+
+	config.ID = id
+	return config, nil
+}
+
+// Returns the non link-local IPv6 subnet for the containers attached to this bridge if found, nil otherwise
+func getV6Network(config *networkConfiguration, i *bridgeInterface) *net.IPNet {
+	if config.AddressIPv6 != nil {
+		return config.AddressIPv6
+	}
+	if i.bridgeIPv6 != nil && i.bridgeIPv6.IP != nil && !i.bridgeIPv6.IP.IsLinkLocalUnicast() {
+		return i.bridgeIPv6
+	}
+
+	return nil
+}
+
+// Return a slice of networks over which caller can iterate safely
+func (d *driver) getNetworks() []*bridgeNetwork {
+	d.Lock()
+	defer d.Unlock()
+
+	ls := make([]*bridgeNetwork, 0, len(d.networks))
+	for _, nw := range d.networks {
+		ls = append(ls, nw)
+	}
+	return ls
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+// Create a new network using bridge plugin
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	if len(ipV4Data) == 0 || ipV4Data[0].Pool.String() == "0.0.0.0/0" {
+		return types.BadRequestErrorf("ipv4 pool is empty")
+	}
+	// Sanity checks
+	d.Lock()
+	if _, ok := d.networks[id]; ok {
+		d.Unlock()
+		return types.ForbiddenErrorf("network %s exists", id)
+	}
+	d.Unlock()
+
+	// Parse and validate the config. It should not be conflict with existing networks' config
+	config, err := parseNetworkOptions(id, option)
+	if err != nil {
+		return err
+	}
+
+	if err = config.processIPAM(id, ipV4Data, ipV6Data); err != nil {
+		return err
+	}
+
+	// start the critical section, from this point onward we are dealing with the list of networks
+	// so to be consistent we cannot allow that the list changes
+	d.configNetwork.Lock()
+	defer d.configNetwork.Unlock()
+
+	// check network conflicts
+	if err = d.checkConflict(config); err != nil {
+		nerr, ok := err.(defaultBridgeNetworkConflict)
+		if !ok {
+			return err
+		}
+		// Got a conflict with a stale default network, clean that up and continue
+		logrus.Warn(nerr)
+		d.deleteNetwork(nerr.ID)
+	}
+
+	// there is no conflict, now create the network
+	if err = d.createNetwork(config); err != nil {
+		return err
+	}
+
+	return d.storeUpdate(config)
+}
+
+func (d *driver) checkConflict(config *networkConfiguration) error {
+	networkList := d.getNetworks()
+	for _, nw := range networkList {
+		nw.Lock()
+		nwConfig := nw.config
+		nw.Unlock()
+		if err := nwConfig.Conflicts(config); err != nil {
+			if config.DefaultBridge {
+				// We encountered and identified a stale default network
+				// We must delete it as libnetwork is the source of truth
+				// The default network being created must be the only one
+				// This can happen only from docker 1.12 on ward
+				logrus.Infof("Found stale default bridge network %s (%s)", nwConfig.ID, nwConfig.BridgeName)
+				return defaultBridgeNetworkConflict{nwConfig.ID}
+			}
+
+			return types.ForbiddenErrorf("cannot create network %s (%s): conflicts with network %s (%s): %s",
+				config.ID, config.BridgeName, nwConfig.ID, nwConfig.BridgeName, err.Error())
+		}
+	}
+	return nil
+}
+
+func (d *driver) createNetwork(config *networkConfiguration) error {
+	var err error
+
+	defer osl.InitOSContext()()
+
+	networkList := d.getNetworks()
+
+	// Initialize handle when needed
+	d.Lock()
+	if d.nlh == nil {
+		d.nlh = ns.NlHandle()
+	}
+	d.Unlock()
+
+	// Create or retrieve the bridge L3 interface
+	bridgeIface, err := newInterface(d.nlh, config)
+	if err != nil {
+		return err
+	}
+
+	// Create and set network handler in driver
+	network := &bridgeNetwork{
+		id:         config.ID,
+		endpoints:  make(map[string]*bridgeEndpoint),
+		config:     config,
+		portMapper: portmapper.New(d.config.UserlandProxyPath),
+		bridge:     bridgeIface,
+		driver:     d,
+	}
+
+	d.Lock()
+	d.networks[config.ID] = network
+	d.Unlock()
+
+	// On failure make sure to reset driver network handler to nil
+	defer func() {
+		if err != nil {
+			d.Lock()
+			delete(d.networks, config.ID)
+			d.Unlock()
+		}
+	}()
+
+	// Add inter-network communication rules.
+	setupNetworkIsolationRules := func(config *networkConfiguration, i *bridgeInterface) error {
+		if err := network.isolateNetwork(networkList, true); err != nil {
+			if err = network.isolateNetwork(networkList, false); err != nil {
+				logrus.Warnf("Failed on removing the inter-network iptables rules on cleanup: %v", err)
+			}
+			return err
+		}
+		// register the cleanup function
+		network.registerIptCleanFunc(func() error {
+			nwList := d.getNetworks()
+			return network.isolateNetwork(nwList, false)
+		})
+		return nil
+	}
+
+	// Prepare the bridge setup configuration
+	bridgeSetup := newBridgeSetup(config, bridgeIface)
+
+	// If the bridge interface doesn't exist, we need to start the setup steps
+	// by creating a new device and assigning it an IPv4 address.
+	bridgeAlreadyExists := bridgeIface.exists()
+	if !bridgeAlreadyExists {
+		bridgeSetup.queueStep(setupDevice)
+	}
+
+	// Even if a bridge exists try to setup IPv4.
+	bridgeSetup.queueStep(setupBridgeIPv4)
+
+	enableIPv6Forwarding := d.config.EnableIPForwarding && config.AddressIPv6 != nil
+
+	// Conditionally queue setup steps depending on configuration values.
+	for _, step := range []struct {
+		Condition bool
+		Fn        setupStep
+	}{
+		// Enable IPv6 on the bridge if required. We do this even for a
+		// previously  existing bridge, as it may be here from a previous
+		// installation where IPv6 wasn't supported yet and needs to be
+		// assigned an IPv6 link-local address.
+		{config.EnableIPv6, setupBridgeIPv6},
+
+		// We ensure that the bridge has the expectedIPv4 and IPv6 addresses in
+		// the case of a previously existing device.
+		{bridgeAlreadyExists, setupVerifyAndReconcile},
+
+		// Enable IPv6 Forwarding
+		{enableIPv6Forwarding, setupIPv6Forwarding},
+
+		// Setup Loopback Adresses Routing
+		{!d.config.EnableUserlandProxy, setupLoopbackAdressesRouting},
+
+		// Setup IPTables.
+		{d.config.EnableIPTables, network.setupIPTables},
+
+		//We want to track firewalld configuration so that
+		//if it is started/reloaded, the rules can be applied correctly
+		{d.config.EnableIPTables, network.setupFirewalld},
+
+		// Setup DefaultGatewayIPv4
+		{config.DefaultGatewayIPv4 != nil, setupGatewayIPv4},
+
+		// Setup DefaultGatewayIPv6
+		{config.DefaultGatewayIPv6 != nil, setupGatewayIPv6},
+
+		// Add inter-network communication rules.
+		{d.config.EnableIPTables, setupNetworkIsolationRules},
+
+		//Configure bridge networking filtering if ICC is off and IP tables are enabled
+		{!config.EnableICC && d.config.EnableIPTables, setupBridgeNetFiltering},
+	} {
+		if step.Condition {
+			bridgeSetup.queueStep(step.Fn)
+		}
+	}
+
+	// Apply the prepared list of steps, and abort at the first error.
+	bridgeSetup.queueStep(setupDeviceUp)
+	return bridgeSetup.apply()
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+
+	d.configNetwork.Lock()
+	defer d.configNetwork.Unlock()
+
+	return d.deleteNetwork(nid)
+}
+
+func (d *driver) deleteNetwork(nid string) error {
+	var err error
+
+	defer osl.InitOSContext()()
+	// Get network handler and remove it from driver
+	d.Lock()
+	n, ok := d.networks[nid]
+	d.Unlock()
+
+	if !ok {
+		return types.InternalMaskableErrorf("network %s does not exist", nid)
+	}
+
+	n.Lock()
+	config := n.config
+	n.Unlock()
+
+	// delele endpoints belong to this network
+	for _, ep := range n.endpoints {
+		if err := n.releasePorts(ep); err != nil {
+			logrus.Warn(err)
+		}
+		if link, err := d.nlh.LinkByName(ep.srcName); err == nil {
+			if err := d.nlh.LinkDel(link); err != nil {
+				logrus.WithError(err).Errorf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+			}
+		}
+
+		if err := d.storeDelete(ep); err != nil {
+			logrus.Warnf("Failed to remove bridge endpoint %s from store: %v", ep.id[0:7], err)
+		}
+	}
+
+	d.Lock()
+	delete(d.networks, nid)
+	d.Unlock()
+
+	// On failure set network handler back in driver, but
+	// only if is not already taken over by some other thread
+	defer func() {
+		if err != nil {
+			d.Lock()
+			if _, ok := d.networks[nid]; !ok {
+				d.networks[nid] = n
+			}
+			d.Unlock()
+		}
+	}()
+
+	switch config.BridgeIfaceCreator {
+	case ifaceCreatedByLibnetwork, ifaceCreatorUnknown:
+		// We only delete the bridge if it was created by the bridge driver and
+		// it is not the default one (to keep the backward compatible behavior.)
+		if !config.DefaultBridge {
+			if err := d.nlh.LinkDel(n.bridge.Link); err != nil {
+				logrus.Warnf("Failed to remove bridge interface %s on network %s delete: %v", config.BridgeName, nid, err)
+			}
+		}
+	case ifaceCreatedByUser:
+		// Don't delete the bridge interface if it was not created by libnetwork.
+	}
+
+	// clean all relevant iptables rules
+	for _, cleanFunc := range n.iptCleanFuncs {
+		if errClean := cleanFunc(); errClean != nil {
+			logrus.Warnf("Failed to clean iptables rules for bridge network: %v", errClean)
+		}
+	}
+	return d.storeDelete(config)
+}
+
+func addToBridge(nlh *netlink.Handle, ifaceName, bridgeName string) error {
+	link, err := nlh.LinkByName(ifaceName)
+	if err != nil {
+		return fmt.Errorf("could not find interface %s: %v", ifaceName, err)
+	}
+	if err = nlh.LinkSetMaster(link,
+		&netlink.Bridge{LinkAttrs: netlink.LinkAttrs{Name: bridgeName}}); err != nil {
+		logrus.Debugf("Failed to add %s to bridge via netlink.Trying ioctl: %v", ifaceName, err)
+		iface, err := net.InterfaceByName(ifaceName)
+		if err != nil {
+			return fmt.Errorf("could not find network interface %s: %v", ifaceName, err)
+		}
+
+		master, err := net.InterfaceByName(bridgeName)
+		if err != nil {
+			return fmt.Errorf("could not find bridge %s: %v", bridgeName, err)
+		}
+
+		return ioctlAddToBridge(iface, master)
+	}
+	return nil
+}
+
+func setHairpinMode(nlh *netlink.Handle, link netlink.Link, enable bool) error {
+	err := nlh.LinkSetHairpin(link, enable)
+	if err != nil && err != syscall.EINVAL {
+		// If error is not EINVAL something else went wrong, bail out right away
+		return fmt.Errorf("unable to set hairpin mode on %s via netlink: %v",
+			link.Attrs().Name, err)
+	}
+
+	// Hairpin mode successfully set up
+	if err == nil {
+		return nil
+	}
+
+	// The netlink method failed with EINVAL which is probably because of an older
+	// kernel. Try one more time via the sysfs method.
+	path := filepath.Join("/sys/class/net", link.Attrs().Name, "brport/hairpin_mode")
+
+	var val []byte
+	if enable {
+		val = []byte{'1', '\n'}
+	} else {
+		val = []byte{'0', '\n'}
+	}
+
+	if err := ioutil.WriteFile(path, val, 0644); err != nil {
+		return fmt.Errorf("unable to set hairpin mode on %s via sysfs: %v", link.Attrs().Name, err)
+	}
+
+	return nil
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo, epOptions map[string]interface{}) error {
+	defer osl.InitOSContext()()
+
+	if ifInfo == nil {
+		return errors.New("invalid interface info passed")
+	}
+
+	// Get the network handler and make sure it exists
+	d.Lock()
+	n, ok := d.networks[nid]
+	dconfig := d.config
+	d.Unlock()
+
+	if !ok {
+		return types.NotFoundErrorf("network %s does not exist", nid)
+	}
+	if n == nil {
+		return driverapi.ErrNoNetwork(nid)
+	}
+
+	// Sanity check
+	n.Lock()
+	if n.id != nid {
+		n.Unlock()
+		return InvalidNetworkIDError(nid)
+	}
+	n.Unlock()
+
+	// Check if endpoint id is good and retrieve correspondent endpoint
+	ep, err := n.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	// Endpoint with that id exists either on desired or other sandbox
+	if ep != nil {
+		return driverapi.ErrEndpointExists(eid)
+	}
+
+	// Try to convert the options to endpoint configuration
+	epConfig, err := parseEndpointOptions(epOptions)
+	if err != nil {
+		return err
+	}
+
+	// Create and add the endpoint
+	n.Lock()
+	endpoint := &bridgeEndpoint{id: eid, nid: nid, config: epConfig}
+	n.endpoints[eid] = endpoint
+	n.Unlock()
+
+	// On failure make sure to remove the endpoint
+	defer func() {
+		if err != nil {
+			n.Lock()
+			delete(n.endpoints, eid)
+			n.Unlock()
+		}
+	}()
+
+	// Generate a name for what will be the host side pipe interface
+	hostIfName, err := netutils.GenerateIfaceName(d.nlh, vethPrefix, vethLen)
+	if err != nil {
+		return err
+	}
+
+	// Generate a name for what will be the sandbox side pipe interface
+	containerIfName, err := netutils.GenerateIfaceName(d.nlh, vethPrefix, vethLen)
+	if err != nil {
+		return err
+	}
+
+	// Generate and add the interface pipe host <-> sandbox
+	veth := &netlink.Veth{
+		LinkAttrs: netlink.LinkAttrs{Name: hostIfName, TxQLen: 0},
+		PeerName:  containerIfName}
+	if err = d.nlh.LinkAdd(veth); err != nil {
+		return types.InternalErrorf("failed to add the host (%s) <=> sandbox (%s) pair interfaces: %v", hostIfName, containerIfName, err)
+	}
+
+	// Get the host side pipe interface handler
+	host, err := d.nlh.LinkByName(hostIfName)
+	if err != nil {
+		return types.InternalErrorf("failed to find host side interface %s: %v", hostIfName, err)
+	}
+	defer func() {
+		if err != nil {
+			if err := d.nlh.LinkDel(host); err != nil {
+				logrus.WithError(err).Warnf("Failed to delete host side interface (%s)'s link", hostIfName)
+			}
+		}
+	}()
+
+	// Get the sandbox side pipe interface handler
+	sbox, err := d.nlh.LinkByName(containerIfName)
+	if err != nil {
+		return types.InternalErrorf("failed to find sandbox side interface %s: %v", containerIfName, err)
+	}
+	defer func() {
+		if err != nil {
+			if err := d.nlh.LinkDel(sbox); err != nil {
+				logrus.WithError(err).Warnf("Failed to delete sandbox side interface (%s)'s link", containerIfName)
+			}
+		}
+	}()
+
+	n.Lock()
+	config := n.config
+	n.Unlock()
+
+	// Add bridge inherited attributes to pipe interfaces
+	if config.Mtu != 0 {
+		err = d.nlh.LinkSetMTU(host, config.Mtu)
+		if err != nil {
+			return types.InternalErrorf("failed to set MTU on host interface %s: %v", hostIfName, err)
+		}
+		err = d.nlh.LinkSetMTU(sbox, config.Mtu)
+		if err != nil {
+			return types.InternalErrorf("failed to set MTU on sandbox interface %s: %v", containerIfName, err)
+		}
+	}
+
+	// Attach host side pipe interface into the bridge
+	if err = addToBridge(d.nlh, hostIfName, config.BridgeName); err != nil {
+		return fmt.Errorf("adding interface %s to bridge %s failed: %v", hostIfName, config.BridgeName, err)
+	}
+
+	if !dconfig.EnableUserlandProxy {
+		err = setHairpinMode(d.nlh, host, true)
+		if err != nil {
+			return err
+		}
+	}
+
+	// Store the sandbox side pipe interface parameters
+	endpoint.srcName = containerIfName
+	endpoint.macAddress = ifInfo.MacAddress()
+	endpoint.addr = ifInfo.Address()
+	endpoint.addrv6 = ifInfo.AddressIPv6()
+
+	// Set the sbox's MAC if not provided. If specified, use the one configured by user, otherwise generate one based on IP.
+	if endpoint.macAddress == nil {
+		endpoint.macAddress = electMacAddress(epConfig, endpoint.addr.IP)
+		if err = ifInfo.SetMacAddress(endpoint.macAddress); err != nil {
+			return err
+		}
+	}
+
+	// Up the host interface after finishing all netlink configuration
+	if err = d.nlh.LinkSetUp(host); err != nil {
+		return fmt.Errorf("could not set link up for host interface %s: %v", hostIfName, err)
+	}
+
+	if endpoint.addrv6 == nil && config.EnableIPv6 {
+		var ip6 net.IP
+		network := n.bridge.bridgeIPv6
+		if config.AddressIPv6 != nil {
+			network = config.AddressIPv6
+		}
+
+		ones, _ := network.Mask.Size()
+		if ones > 80 {
+			err = types.ForbiddenErrorf("Cannot self generate an IPv6 address on network %v: At least 48 host bits are needed.", network)
+			return err
+		}
+
+		ip6 = make(net.IP, len(network.IP))
+		copy(ip6, network.IP)
+		for i, h := range endpoint.macAddress {
+			ip6[i+10] = h
+		}
+
+		endpoint.addrv6 = &net.IPNet{IP: ip6, Mask: network.Mask}
+		if err = ifInfo.SetIPAddress(endpoint.addrv6); err != nil {
+			return err
+		}
+	}
+
+	if err = d.storeUpdate(endpoint); err != nil {
+		return fmt.Errorf("failed to save bridge endpoint %s to store: %v", endpoint.id[0:7], err)
+	}
+
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	var err error
+
+	defer osl.InitOSContext()()
+
+	// Get the network handler and make sure it exists
+	d.Lock()
+	n, ok := d.networks[nid]
+	d.Unlock()
+
+	if !ok {
+		return types.InternalMaskableErrorf("network %s does not exist", nid)
+	}
+	if n == nil {
+		return driverapi.ErrNoNetwork(nid)
+	}
+
+	// Sanity Check
+	n.Lock()
+	if n.id != nid {
+		n.Unlock()
+		return InvalidNetworkIDError(nid)
+	}
+	n.Unlock()
+
+	// Check endpoint id and if an endpoint is actually there
+	ep, err := n.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+	if ep == nil {
+		return EndpointNotFoundError(eid)
+	}
+
+	// Remove it
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+
+	// On failure make sure to set back ep in n.endpoints, but only
+	// if it hasn't been taken over already by some other thread.
+	defer func() {
+		if err != nil {
+			n.Lock()
+			if _, ok := n.endpoints[eid]; !ok {
+				n.endpoints[eid] = ep
+			}
+			n.Unlock()
+		}
+	}()
+
+	// Try removal of link. Discard error: it is a best effort.
+	// Also make sure defer does not see this error either.
+	if link, err := d.nlh.LinkByName(ep.srcName); err == nil {
+		if err := d.nlh.LinkDel(link); err != nil {
+			logrus.WithError(err).Errorf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+		}
+	}
+
+	if err := d.storeDelete(ep); err != nil {
+		logrus.Warnf("Failed to remove bridge endpoint %s from store: %v", ep.id[0:7], err)
+	}
+
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	// Get the network handler and make sure it exists
+	d.Lock()
+	n, ok := d.networks[nid]
+	d.Unlock()
+	if !ok {
+		return nil, types.NotFoundErrorf("network %s does not exist", nid)
+	}
+	if n == nil {
+		return nil, driverapi.ErrNoNetwork(nid)
+	}
+
+	// Sanity check
+	n.Lock()
+	if n.id != nid {
+		n.Unlock()
+		return nil, InvalidNetworkIDError(nid)
+	}
+	n.Unlock()
+
+	// Check if endpoint id is good and retrieve correspondent endpoint
+	ep, err := n.getEndpoint(eid)
+	if err != nil {
+		return nil, err
+	}
+	if ep == nil {
+		return nil, driverapi.ErrNoEndpoint(eid)
+	}
+
+	m := make(map[string]interface{})
+
+	if ep.extConnConfig != nil && ep.extConnConfig.ExposedPorts != nil {
+		// Return a copy of the config data
+		epc := make([]types.TransportPort, 0, len(ep.extConnConfig.ExposedPorts))
+		for _, tp := range ep.extConnConfig.ExposedPorts {
+			epc = append(epc, tp.GetCopy())
+		}
+		m[netlabel.ExposedPorts] = epc
+	}
+
+	if ep.portMapping != nil {
+		// Return a copy of the operational data
+		pmc := make([]types.PortBinding, 0, len(ep.portMapping))
+		for _, pm := range ep.portMapping {
+			pmc = append(pmc, pm.GetCopy())
+		}
+		m[netlabel.PortMap] = pmc
+	}
+
+	if len(ep.macAddress) != 0 {
+		m[netlabel.MacAddress] = ep.macAddress
+	}
+
+	return m, nil
+}
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	defer osl.InitOSContext()()
+
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	if endpoint == nil {
+		return EndpointNotFoundError(eid)
+	}
+
+	endpoint.containerConfig, err = parseContainerOptions(options)
+	if err != nil {
+		return err
+	}
+
+	iNames := jinfo.InterfaceName()
+	containerVethPrefix := defaultContainerVethPrefix
+	if network.config.ContainerIfacePrefix != "" {
+		containerVethPrefix = network.config.ContainerIfacePrefix
+	}
+	err = iNames.SetNames(endpoint.srcName, containerVethPrefix)
+	if err != nil {
+		return err
+	}
+
+	err = jinfo.SetGateway(network.bridge.gatewayIPv4)
+	if err != nil {
+		return err
+	}
+
+	err = jinfo.SetGatewayIPv6(network.bridge.gatewayIPv6)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	defer osl.InitOSContext()()
+
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return types.InternalMaskableErrorf("%s", err)
+	}
+
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	if endpoint == nil {
+		return EndpointNotFoundError(eid)
+	}
+
+	if !network.config.EnableICC {
+		if err = d.link(network, endpoint, false); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	defer osl.InitOSContext()()
+
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	if endpoint == nil {
+		return EndpointNotFoundError(eid)
+	}
+
+	endpoint.extConnConfig, err = parseConnectivityOptions(options)
+	if err != nil {
+		return err
+	}
+
+	// Program any required port mapping and store them in the endpoint
+	endpoint.portMapping, err = network.allocatePorts(endpoint, network.config.DefaultBindingIP, d.config.EnableUserlandProxy)
+	if err != nil {
+		return err
+	}
+
+	defer func() {
+		if err != nil {
+			if e := network.releasePorts(endpoint); e != nil {
+				logrus.Errorf("Failed to release ports allocated for the bridge endpoint %s on failure %v because of %v",
+					eid, err, e)
+			}
+			endpoint.portMapping = nil
+		}
+	}()
+
+	if err = d.storeUpdate(endpoint); err != nil {
+		return fmt.Errorf("failed to update bridge endpoint %s to store: %v", endpoint.id[0:7], err)
+	}
+
+	if !network.config.EnableICC {
+		return d.link(network, endpoint, true)
+	}
+
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	defer osl.InitOSContext()()
+
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	if endpoint == nil {
+		return EndpointNotFoundError(eid)
+	}
+
+	err = network.releasePorts(endpoint)
+	if err != nil {
+		logrus.Warn(err)
+	}
+
+	endpoint.portMapping = nil
+
+	// Clean the connection tracker state of the host for the specific endpoint
+	// The host kernel keeps track of the connections (TCP and UDP), so if a new endpoint gets the same IP of
+	// this one (that is going down), is possible that some of the packets would not be routed correctly inside
+	// the new endpoint
+	// Deeper details: https://github.com/docker/docker/issues/8795
+	clearEndpointConnections(d.nlh, endpoint)
+
+	if err = d.storeUpdate(endpoint); err != nil {
+		return fmt.Errorf("failed to update bridge endpoint %s to store: %v", endpoint.id[0:7], err)
+	}
+
+	return nil
+}
+
+func (d *driver) link(network *bridgeNetwork, endpoint *bridgeEndpoint, enable bool) error {
+	var err error
+
+	cc := endpoint.containerConfig
+	if cc == nil {
+		return nil
+	}
+	ec := endpoint.extConnConfig
+	if ec == nil {
+		return nil
+	}
+
+	if ec.ExposedPorts != nil {
+		for _, p := range cc.ParentEndpoints {
+			var parentEndpoint *bridgeEndpoint
+			parentEndpoint, err = network.getEndpoint(p)
+			if err != nil {
+				return err
+			}
+			if parentEndpoint == nil {
+				err = InvalidEndpointIDError(p)
+				return err
+			}
+
+			l := newLink(parentEndpoint.addr.IP.String(),
+				endpoint.addr.IP.String(),
+				ec.ExposedPorts, network.config.BridgeName)
+			if enable {
+				err = l.Enable()
+				if err != nil {
+					return err
+				}
+				defer func() {
+					if err != nil {
+						l.Disable()
+					}
+				}()
+			} else {
+				l.Disable()
+			}
+		}
+	}
+
+	for _, c := range cc.ChildEndpoints {
+		var childEndpoint *bridgeEndpoint
+		childEndpoint, err = network.getEndpoint(c)
+		if err != nil {
+			return err
+		}
+		if childEndpoint == nil {
+			err = InvalidEndpointIDError(c)
+			return err
+		}
+		if childEndpoint.extConnConfig == nil || childEndpoint.extConnConfig.ExposedPorts == nil {
+			continue
+		}
+
+		l := newLink(endpoint.addr.IP.String(),
+			childEndpoint.addr.IP.String(),
+			childEndpoint.extConnConfig.ExposedPorts, network.config.BridgeName)
+		if enable {
+			err = l.Enable()
+			if err != nil {
+				return err
+			}
+			defer func() {
+				if err != nil {
+					l.Disable()
+				}
+			}()
+		} else {
+			l.Disable()
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) Type() string {
+	return networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func parseEndpointOptions(epOptions map[string]interface{}) (*endpointConfiguration, error) {
+	if epOptions == nil {
+		return nil, nil
+	}
+
+	ec := &endpointConfiguration{}
+
+	if opt, ok := epOptions[netlabel.MacAddress]; ok {
+		if mac, ok := opt.(net.HardwareAddr); ok {
+			ec.MacAddress = mac
+		} else {
+			return nil, &ErrInvalidEndpointConfig{}
+		}
+	}
+
+	return ec, nil
+}
+
+func parseContainerOptions(cOptions map[string]interface{}) (*containerConfiguration, error) {
+	if cOptions == nil {
+		return nil, nil
+	}
+	genericData := cOptions[netlabel.GenericData]
+	if genericData == nil {
+		return nil, nil
+	}
+	switch opt := genericData.(type) {
+	case options.Generic:
+		opaqueConfig, err := options.GenerateFromModel(opt, &containerConfiguration{})
+		if err != nil {
+			return nil, err
+		}
+		return opaqueConfig.(*containerConfiguration), nil
+	case *containerConfiguration:
+		return opt, nil
+	default:
+		return nil, nil
+	}
+}
+
+func parseConnectivityOptions(cOptions map[string]interface{}) (*connectivityConfiguration, error) {
+	if cOptions == nil {
+		return nil, nil
+	}
+
+	cc := &connectivityConfiguration{}
+
+	if opt, ok := cOptions[netlabel.PortMap]; ok {
+		if pb, ok := opt.([]types.PortBinding); ok {
+			cc.PortBindings = pb
+		} else {
+			return nil, types.BadRequestErrorf("Invalid port mapping data in connectivity configuration: %v", opt)
+		}
+	}
+
+	if opt, ok := cOptions[netlabel.ExposedPorts]; ok {
+		if ports, ok := opt.([]types.TransportPort); ok {
+			cc.ExposedPorts = ports
+		} else {
+			return nil, types.BadRequestErrorf("Invalid exposed ports data in connectivity configuration: %v", opt)
+		}
+	}
+
+	return cc, nil
+}
+
+func electMacAddress(epConfig *endpointConfiguration, ip net.IP) net.HardwareAddr {
+	if epConfig != nil && epConfig.MacAddress != nil {
+		return epConfig.MacAddress
+	}
+	return netutils.GenerateMACFromIP(ip)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/bridge_store.go b/vendor/github.com/docker/libnetwork/drivers/bridge/bridge_store.go
new file mode 100644
index 0000000000..b0e4ff02b5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/bridge_store.go
@@ -0,0 +1,388 @@
+package bridge
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	// network config prefix was not specific enough.
+	// To be backward compatible, need custom endpoint
+	// prefix with different root
+	bridgePrefix         = "bridge"
+	bridgeEndpointPrefix = "bridge-endpoint"
+)
+
+func (d *driver) initStore(option map[string]interface{}) error {
+	if data, ok := option[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("bridge driver failed to initialize data store: %v", err)
+		}
+
+		err = d.populateNetworks()
+		if err != nil {
+			return err
+		}
+
+		err = d.populateEndpoints()
+		if err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) populateNetworks() error {
+	kvol, err := d.store.List(datastore.Key(bridgePrefix), &networkConfiguration{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get bridge network configurations from store: %v", err)
+	}
+
+	// It's normal for network configuration state to be empty. Just return.
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ncfg := kvo.(*networkConfiguration)
+		if err = d.createNetwork(ncfg); err != nil {
+			logrus.Warnf("could not create bridge network for id %s bridge name %s while booting up from persistent state: %v", ncfg.ID, ncfg.BridgeName, err)
+		}
+		logrus.Debugf("Network (%s) restored", ncfg.ID[0:7])
+	}
+
+	return nil
+}
+
+func (d *driver) populateEndpoints() error {
+	kvol, err := d.store.List(datastore.Key(bridgeEndpointPrefix), &bridgeEndpoint{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get bridge endpoints from store: %v", err)
+	}
+
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ep := kvo.(*bridgeEndpoint)
+		n, ok := d.networks[ep.nid]
+		if !ok {
+			logrus.Debugf("Network (%s) not found for restored bridge endpoint (%s)", ep.nid[0:7], ep.id[0:7])
+			logrus.Debugf("Deleting stale bridge endpoint (%s) from store", ep.id[0:7])
+			if err := d.storeDelete(ep); err != nil {
+				logrus.Debugf("Failed to delete stale bridge endpoint (%s) from store", ep.id[0:7])
+			}
+			continue
+		}
+		n.endpoints[ep.id] = ep
+		n.restorePortAllocations(ep)
+		logrus.Debugf("Endpoint (%s) restored to network (%s)", ep.id[0:7], ep.nid[0:7])
+	}
+
+	return nil
+}
+
+func (d *driver) storeUpdate(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Warnf("bridge store not initialized. kv object %s is not added to the store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+
+	if err := d.store.PutObjectAtomic(kvObject); err != nil {
+		return fmt.Errorf("failed to update bridge store for object type %T: %v", kvObject, err)
+	}
+
+	return nil
+}
+
+func (d *driver) storeDelete(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Debugf("bridge store not initialized. kv object %s is not deleted from store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+
+retry:
+	if err := d.store.DeleteObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := d.store.GetObject(datastore.Key(kvObject.Key()...), kvObject); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to delete: %v", err)
+			}
+			goto retry
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (ncfg *networkConfiguration) MarshalJSON() ([]byte, error) {
+	nMap := make(map[string]interface{})
+	nMap["ID"] = ncfg.ID
+	nMap["BridgeName"] = ncfg.BridgeName
+	nMap["EnableIPv6"] = ncfg.EnableIPv6
+	nMap["EnableIPMasquerade"] = ncfg.EnableIPMasquerade
+	nMap["EnableICC"] = ncfg.EnableICC
+	nMap["Mtu"] = ncfg.Mtu
+	nMap["Internal"] = ncfg.Internal
+	nMap["DefaultBridge"] = ncfg.DefaultBridge
+	nMap["DefaultBindingIP"] = ncfg.DefaultBindingIP.String()
+	nMap["DefaultGatewayIPv4"] = ncfg.DefaultGatewayIPv4.String()
+	nMap["DefaultGatewayIPv6"] = ncfg.DefaultGatewayIPv6.String()
+	nMap["ContainerIfacePrefix"] = ncfg.ContainerIfacePrefix
+	nMap["BridgeIfaceCreator"] = ncfg.BridgeIfaceCreator
+
+	if ncfg.AddressIPv4 != nil {
+		nMap["AddressIPv4"] = ncfg.AddressIPv4.String()
+	}
+
+	if ncfg.AddressIPv6 != nil {
+		nMap["AddressIPv6"] = ncfg.AddressIPv6.String()
+	}
+
+	return json.Marshal(nMap)
+}
+
+func (ncfg *networkConfiguration) UnmarshalJSON(b []byte) error {
+	var (
+		err  error
+		nMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &nMap); err != nil {
+		return err
+	}
+
+	if v, ok := nMap["AddressIPv4"]; ok {
+		if ncfg.AddressIPv4, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode bridge network address IPv4 after json unmarshal: %s", v.(string))
+		}
+	}
+
+	if v, ok := nMap["AddressIPv6"]; ok {
+		if ncfg.AddressIPv6, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode bridge network address IPv6 after json unmarshal: %s", v.(string))
+		}
+	}
+
+	if v, ok := nMap["ContainerIfacePrefix"]; ok {
+		ncfg.ContainerIfacePrefix = v.(string)
+	}
+
+	ncfg.DefaultBridge = nMap["DefaultBridge"].(bool)
+	ncfg.DefaultBindingIP = net.ParseIP(nMap["DefaultBindingIP"].(string))
+	ncfg.DefaultGatewayIPv4 = net.ParseIP(nMap["DefaultGatewayIPv4"].(string))
+	ncfg.DefaultGatewayIPv6 = net.ParseIP(nMap["DefaultGatewayIPv6"].(string))
+	ncfg.ID = nMap["ID"].(string)
+	ncfg.BridgeName = nMap["BridgeName"].(string)
+	ncfg.EnableIPv6 = nMap["EnableIPv6"].(bool)
+	ncfg.EnableIPMasquerade = nMap["EnableIPMasquerade"].(bool)
+	ncfg.EnableICC = nMap["EnableICC"].(bool)
+	ncfg.Mtu = int(nMap["Mtu"].(float64))
+	if v, ok := nMap["Internal"]; ok {
+		ncfg.Internal = v.(bool)
+	}
+
+	if v, ok := nMap["BridgeIfaceCreator"]; ok {
+		ncfg.BridgeIfaceCreator = ifaceCreator(v.(float64))
+	}
+
+	return nil
+}
+
+func (ncfg *networkConfiguration) Key() []string {
+	return []string{bridgePrefix, ncfg.ID}
+}
+
+func (ncfg *networkConfiguration) KeyPrefix() []string {
+	return []string{bridgePrefix}
+}
+
+func (ncfg *networkConfiguration) Value() []byte {
+	b, err := json.Marshal(ncfg)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ncfg *networkConfiguration) SetValue(value []byte) error {
+	return json.Unmarshal(value, ncfg)
+}
+
+func (ncfg *networkConfiguration) Index() uint64 {
+	return ncfg.dbIndex
+}
+
+func (ncfg *networkConfiguration) SetIndex(index uint64) {
+	ncfg.dbIndex = index
+	ncfg.dbExists = true
+}
+
+func (ncfg *networkConfiguration) Exists() bool {
+	return ncfg.dbExists
+}
+
+func (ncfg *networkConfiguration) Skip() bool {
+	return false
+}
+
+func (ncfg *networkConfiguration) New() datastore.KVObject {
+	return &networkConfiguration{}
+}
+
+func (ncfg *networkConfiguration) CopyTo(o datastore.KVObject) error {
+	dstNcfg := o.(*networkConfiguration)
+	*dstNcfg = *ncfg
+	return nil
+}
+
+func (ncfg *networkConfiguration) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (ep *bridgeEndpoint) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	epMap["id"] = ep.id
+	epMap["nid"] = ep.nid
+	epMap["SrcName"] = ep.srcName
+	epMap["MacAddress"] = ep.macAddress.String()
+	epMap["Addr"] = ep.addr.String()
+	if ep.addrv6 != nil {
+		epMap["Addrv6"] = ep.addrv6.String()
+	}
+	epMap["Config"] = ep.config
+	epMap["ContainerConfig"] = ep.containerConfig
+	epMap["ExternalConnConfig"] = ep.extConnConfig
+	epMap["PortMapping"] = ep.portMapping
+
+	return json.Marshal(epMap)
+}
+
+func (ep *bridgeEndpoint) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return fmt.Errorf("Failed to unmarshal to bridge endpoint: %v", err)
+	}
+
+	if v, ok := epMap["MacAddress"]; ok {
+		if ep.macAddress, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode bridge endpoint MAC address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addr"]; ok {
+		if ep.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode bridge endpoint IPv4 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addrv6"]; ok {
+		if ep.addrv6, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode bridge endpoint IPv6 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	ep.id = epMap["id"].(string)
+	ep.nid = epMap["nid"].(string)
+	ep.srcName = epMap["SrcName"].(string)
+	d, _ := json.Marshal(epMap["Config"])
+	if err := json.Unmarshal(d, &ep.config); err != nil {
+		logrus.Warnf("Failed to decode endpoint config %v", err)
+	}
+	d, _ = json.Marshal(epMap["ContainerConfig"])
+	if err := json.Unmarshal(d, &ep.containerConfig); err != nil {
+		logrus.Warnf("Failed to decode endpoint container config %v", err)
+	}
+	d, _ = json.Marshal(epMap["ExternalConnConfig"])
+	if err := json.Unmarshal(d, &ep.extConnConfig); err != nil {
+		logrus.Warnf("Failed to decode endpoint external connectivity configuration %v", err)
+	}
+	d, _ = json.Marshal(epMap["PortMapping"])
+	if err := json.Unmarshal(d, &ep.portMapping); err != nil {
+		logrus.Warnf("Failed to decode endpoint port mapping %v", err)
+	}
+
+	return nil
+}
+
+func (ep *bridgeEndpoint) Key() []string {
+	return []string{bridgeEndpointPrefix, ep.id}
+}
+
+func (ep *bridgeEndpoint) KeyPrefix() []string {
+	return []string{bridgeEndpointPrefix}
+}
+
+func (ep *bridgeEndpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *bridgeEndpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *bridgeEndpoint) Index() uint64 {
+	return ep.dbIndex
+}
+
+func (ep *bridgeEndpoint) SetIndex(index uint64) {
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *bridgeEndpoint) Exists() bool {
+	return ep.dbExists
+}
+
+func (ep *bridgeEndpoint) Skip() bool {
+	return false
+}
+
+func (ep *bridgeEndpoint) New() datastore.KVObject {
+	return &bridgeEndpoint{}
+}
+
+func (ep *bridgeEndpoint) CopyTo(o datastore.KVObject) error {
+	dstEp := o.(*bridgeEndpoint)
+	*dstEp = *ep
+	return nil
+}
+
+func (ep *bridgeEndpoint) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (n *bridgeNetwork) restorePortAllocations(ep *bridgeEndpoint) {
+	if ep.extConnConfig == nil ||
+		ep.extConnConfig.ExposedPorts == nil ||
+		ep.extConnConfig.PortBindings == nil {
+		return
+	}
+	tmp := ep.extConnConfig.PortBindings
+	ep.extConnConfig.PortBindings = ep.portMapping
+	_, err := n.allocatePorts(ep, n.config.DefaultBindingIP, n.driver.config.EnableUserlandProxy)
+	if err != nil {
+		logrus.Warnf("Failed to reserve existing port mapping for endpoint %s:%v", ep.id[0:7], err)
+	}
+	ep.extConnConfig.PortBindings = tmp
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/errors.go b/vendor/github.com/docker/libnetwork/drivers/bridge/errors.go
new file mode 100644
index 0000000000..93960794cb
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/errors.go
@@ -0,0 +1,341 @@
+package bridge
+
+import (
+	"fmt"
+	"net"
+)
+
+// ErrConfigExists error is returned when driver already has a config applied.
+type ErrConfigExists struct{}
+
+func (ece *ErrConfigExists) Error() string {
+	return "configuration already exists, bridge configuration can be applied only once"
+}
+
+// Forbidden denotes the type of this error
+func (ece *ErrConfigExists) Forbidden() {}
+
+// ErrInvalidDriverConfig error is returned when Bridge Driver is passed an invalid config
+type ErrInvalidDriverConfig struct{}
+
+func (eidc *ErrInvalidDriverConfig) Error() string {
+	return "Invalid configuration passed to Bridge Driver"
+}
+
+// BadRequest denotes the type of this error
+func (eidc *ErrInvalidDriverConfig) BadRequest() {}
+
+// ErrInvalidNetworkConfig error is returned when a network is created on a driver without valid config.
+type ErrInvalidNetworkConfig struct{}
+
+func (einc *ErrInvalidNetworkConfig) Error() string {
+	return "trying to create a network on a driver without valid config"
+}
+
+// Forbidden denotes the type of this error
+func (einc *ErrInvalidNetworkConfig) Forbidden() {}
+
+// ErrInvalidContainerConfig error is returned when an endpoint create is attempted with an invalid configuration.
+type ErrInvalidContainerConfig struct{}
+
+func (eicc *ErrInvalidContainerConfig) Error() string {
+	return "Error in joining a container due to invalid configuration"
+}
+
+// BadRequest denotes the type of this error
+func (eicc *ErrInvalidContainerConfig) BadRequest() {}
+
+// ErrInvalidEndpointConfig error is returned when an endpoint create is attempted with an invalid endpoint configuration.
+type ErrInvalidEndpointConfig struct{}
+
+func (eiec *ErrInvalidEndpointConfig) Error() string {
+	return "trying to create an endpoint with an invalid endpoint configuration"
+}
+
+// BadRequest denotes the type of this error
+func (eiec *ErrInvalidEndpointConfig) BadRequest() {}
+
+// ErrNetworkExists error is returned when a network already exists and another network is created.
+type ErrNetworkExists struct{}
+
+func (ene *ErrNetworkExists) Error() string {
+	return "network already exists, bridge can only have one network"
+}
+
+// Forbidden denotes the type of this error
+func (ene *ErrNetworkExists) Forbidden() {}
+
+// ErrIfaceName error is returned when a new name could not be generated.
+type ErrIfaceName struct{}
+
+func (ein *ErrIfaceName) Error() string {
+	return "failed to find name for new interface"
+}
+
+// InternalError denotes the type of this error
+func (ein *ErrIfaceName) InternalError() {}
+
+// ErrNoIPAddr error is returned when bridge has no IPv4 address configured.
+type ErrNoIPAddr struct{}
+
+func (enip *ErrNoIPAddr) Error() string {
+	return "bridge has no IPv4 address configured"
+}
+
+// InternalError denotes the type of this error
+func (enip *ErrNoIPAddr) InternalError() {}
+
+// ErrInvalidGateway is returned when the user provided default gateway (v4/v6) is not not valid.
+type ErrInvalidGateway struct{}
+
+func (eig *ErrInvalidGateway) Error() string {
+	return "default gateway ip must be part of the network"
+}
+
+// BadRequest denotes the type of this error
+func (eig *ErrInvalidGateway) BadRequest() {}
+
+// ErrInvalidContainerSubnet is returned when the container subnet (FixedCIDR) is not valid.
+type ErrInvalidContainerSubnet struct{}
+
+func (eis *ErrInvalidContainerSubnet) Error() string {
+	return "container subnet must be a subset of bridge network"
+}
+
+// BadRequest denotes the type of this error
+func (eis *ErrInvalidContainerSubnet) BadRequest() {}
+
+// ErrInvalidMtu is returned when the user provided MTU is not valid.
+type ErrInvalidMtu int
+
+func (eim ErrInvalidMtu) Error() string {
+	return fmt.Sprintf("invalid MTU number: %d", int(eim))
+}
+
+// BadRequest denotes the type of this error
+func (eim ErrInvalidMtu) BadRequest() {}
+
+// ErrInvalidPort is returned when the container or host port specified in the port binding is not valid.
+type ErrInvalidPort string
+
+func (ip ErrInvalidPort) Error() string {
+	return fmt.Sprintf("invalid transport port: %s", string(ip))
+}
+
+// BadRequest denotes the type of this error
+func (ip ErrInvalidPort) BadRequest() {}
+
+// ErrUnsupportedAddressType is returned when the specified address type is not supported.
+type ErrUnsupportedAddressType string
+
+func (uat ErrUnsupportedAddressType) Error() string {
+	return fmt.Sprintf("unsupported address type: %s", string(uat))
+}
+
+// BadRequest denotes the type of this error
+func (uat ErrUnsupportedAddressType) BadRequest() {}
+
+// ErrInvalidAddressBinding is returned when the host address specified in the port binding is not valid.
+type ErrInvalidAddressBinding string
+
+func (iab ErrInvalidAddressBinding) Error() string {
+	return fmt.Sprintf("invalid host address in port binding: %s", string(iab))
+}
+
+// BadRequest denotes the type of this error
+func (iab ErrInvalidAddressBinding) BadRequest() {}
+
+// ActiveEndpointsError is returned when there are
+// still active endpoints in the network being deleted.
+type ActiveEndpointsError string
+
+func (aee ActiveEndpointsError) Error() string {
+	return fmt.Sprintf("network %s has active endpoint", string(aee))
+}
+
+// Forbidden denotes the type of this error
+func (aee ActiveEndpointsError) Forbidden() {}
+
+// InvalidNetworkIDError is returned when the passed
+// network id for an existing network is not a known id.
+type InvalidNetworkIDError string
+
+func (inie InvalidNetworkIDError) Error() string {
+	return fmt.Sprintf("invalid network id %s", string(inie))
+}
+
+// NotFound denotes the type of this error
+func (inie InvalidNetworkIDError) NotFound() {}
+
+// InvalidEndpointIDError is returned when the passed
+// endpoint id is not valid.
+type InvalidEndpointIDError string
+
+func (ieie InvalidEndpointIDError) Error() string {
+	return fmt.Sprintf("invalid endpoint id: %s", string(ieie))
+}
+
+// BadRequest denotes the type of this error
+func (ieie InvalidEndpointIDError) BadRequest() {}
+
+// InvalidSandboxIDError is returned when the passed
+// sandbox id is not valid.
+type InvalidSandboxIDError string
+
+func (isie InvalidSandboxIDError) Error() string {
+	return fmt.Sprintf("invalid sandbox id: %s", string(isie))
+}
+
+// BadRequest denotes the type of this error
+func (isie InvalidSandboxIDError) BadRequest() {}
+
+// EndpointNotFoundError is returned when the no endpoint
+// with the passed endpoint id is found.
+type EndpointNotFoundError string
+
+func (enfe EndpointNotFoundError) Error() string {
+	return fmt.Sprintf("endpoint not found: %s", string(enfe))
+}
+
+// NotFound denotes the type of this error
+func (enfe EndpointNotFoundError) NotFound() {}
+
+// NonDefaultBridgeExistError is returned when a non-default
+// bridge config is passed but it does not already exist.
+type NonDefaultBridgeExistError string
+
+func (ndbee NonDefaultBridgeExistError) Error() string {
+	return fmt.Sprintf("bridge device with non default name %s must be created manually", string(ndbee))
+}
+
+// Forbidden denotes the type of this error
+func (ndbee NonDefaultBridgeExistError) Forbidden() {}
+
+// NonDefaultBridgeNeedsIPError is returned when a non-default
+// bridge config is passed but it has no ip configured
+type NonDefaultBridgeNeedsIPError string
+
+func (ndbee NonDefaultBridgeNeedsIPError) Error() string {
+	return fmt.Sprintf("bridge device with non default name %s must have a valid IP address", string(ndbee))
+}
+
+// Forbidden denotes the type of this error
+func (ndbee NonDefaultBridgeNeedsIPError) Forbidden() {}
+
+// FixedCIDRv4Error is returned when fixed-cidrv4 configuration
+// failed.
+type FixedCIDRv4Error struct {
+	Net    *net.IPNet
+	Subnet *net.IPNet
+	Err    error
+}
+
+func (fcv4 *FixedCIDRv4Error) Error() string {
+	return fmt.Sprintf("setup FixedCIDRv4 failed for subnet %s in %s: %v", fcv4.Subnet, fcv4.Net, fcv4.Err)
+}
+
+// InternalError denotes the type of this error
+func (fcv4 *FixedCIDRv4Error) InternalError() {}
+
+// FixedCIDRv6Error is returned when fixed-cidrv6 configuration
+// failed.
+type FixedCIDRv6Error struct {
+	Net *net.IPNet
+	Err error
+}
+
+func (fcv6 *FixedCIDRv6Error) Error() string {
+	return fmt.Sprintf("setup FixedCIDRv6 failed for subnet %s in %s: %v", fcv6.Net, fcv6.Net, fcv6.Err)
+}
+
+// InternalError denotes the type of this error
+func (fcv6 *FixedCIDRv6Error) InternalError() {}
+
+// IPTableCfgError is returned when an unexpected ip tables configuration is entered
+type IPTableCfgError string
+
+func (name IPTableCfgError) Error() string {
+	return fmt.Sprintf("unexpected request to set IP tables for interface: %s", string(name))
+}
+
+// BadRequest denotes the type of this error
+func (name IPTableCfgError) BadRequest() {}
+
+// InvalidIPTablesCfgError is returned when an invalid ip tables configuration is entered
+type InvalidIPTablesCfgError string
+
+func (action InvalidIPTablesCfgError) Error() string {
+	return fmt.Sprintf("Invalid IPTables action '%s'", string(action))
+}
+
+// BadRequest denotes the type of this error
+func (action InvalidIPTablesCfgError) BadRequest() {}
+
+// IPv4AddrRangeError is returned when a valid IP address range couldn't be found.
+type IPv4AddrRangeError string
+
+func (name IPv4AddrRangeError) Error() string {
+	return fmt.Sprintf("can't find an address range for interface %q", string(name))
+}
+
+// BadRequest denotes the type of this error
+func (name IPv4AddrRangeError) BadRequest() {}
+
+// IPv4AddrAddError is returned when IPv4 address could not be added to the bridge.
+type IPv4AddrAddError struct {
+	IP  *net.IPNet
+	Err error
+}
+
+func (ipv4 *IPv4AddrAddError) Error() string {
+	return fmt.Sprintf("failed to add IPv4 address %s to bridge: %v", ipv4.IP, ipv4.Err)
+}
+
+// InternalError denotes the type of this error
+func (ipv4 *IPv4AddrAddError) InternalError() {}
+
+// IPv6AddrAddError is returned when IPv6 address could not be added to the bridge.
+type IPv6AddrAddError struct {
+	IP  *net.IPNet
+	Err error
+}
+
+func (ipv6 *IPv6AddrAddError) Error() string {
+	return fmt.Sprintf("failed to add IPv6 address %s to bridge: %v", ipv6.IP, ipv6.Err)
+}
+
+// InternalError denotes the type of this error
+func (ipv6 *IPv6AddrAddError) InternalError() {}
+
+// IPv4AddrNoMatchError is returned when the bridge's IPv4 address does not match configured.
+type IPv4AddrNoMatchError struct {
+	IP    net.IP
+	CfgIP net.IP
+}
+
+func (ipv4 *IPv4AddrNoMatchError) Error() string {
+	return fmt.Sprintf("bridge IPv4 (%s) does not match requested configuration %s", ipv4.IP, ipv4.CfgIP)
+}
+
+// BadRequest denotes the type of this error
+func (ipv4 *IPv4AddrNoMatchError) BadRequest() {}
+
+// IPv6AddrNoMatchError is returned when the bridge's IPv6 address does not match configured.
+type IPv6AddrNoMatchError net.IPNet
+
+func (ipv6 *IPv6AddrNoMatchError) Error() string {
+	return fmt.Sprintf("bridge IPv6 addresses do not match the expected bridge configuration %s", (*net.IPNet)(ipv6).String())
+}
+
+// BadRequest denotes the type of this error
+func (ipv6 *IPv6AddrNoMatchError) BadRequest() {}
+
+// InvalidLinkIPAddrError is returned when a link is configured to a container with an invalid ip address
+type InvalidLinkIPAddrError string
+
+func (address InvalidLinkIPAddrError) Error() string {
+	return fmt.Sprintf("Cannot link to a container with Invalid IP Address '%s'", string(address))
+}
+
+// BadRequest denotes the type of this error
+func (address InvalidLinkIPAddrError) BadRequest() {}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/interface.go b/vendor/github.com/docker/libnetwork/drivers/bridge/interface.go
new file mode 100644
index 0000000000..c9f3e8dfb7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/interface.go
@@ -0,0 +1,86 @@
+package bridge
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+const (
+	// DefaultBridgeName is the default name for the bridge interface managed
+	// by the driver when unspecified by the caller.
+	DefaultBridgeName = "docker0"
+)
+
+// Interface models the bridge network device.
+type bridgeInterface struct {
+	Link        netlink.Link
+	bridgeIPv4  *net.IPNet
+	bridgeIPv6  *net.IPNet
+	gatewayIPv4 net.IP
+	gatewayIPv6 net.IP
+	nlh         *netlink.Handle
+}
+
+// newInterface creates a new bridge interface structure. It attempts to find
+// an already existing device identified by the configuration BridgeName field,
+// or the default bridge name when unspecified, but doesn't attempt to create
+// one when missing
+func newInterface(nlh *netlink.Handle, config *networkConfiguration) (*bridgeInterface, error) {
+	var err error
+	i := &bridgeInterface{nlh: nlh}
+
+	// Initialize the bridge name to the default if unspecified.
+	if config.BridgeName == "" {
+		config.BridgeName = DefaultBridgeName
+	}
+
+	// Attempt to find an existing bridge named with the specified name.
+	i.Link, err = nlh.LinkByName(config.BridgeName)
+	if err != nil {
+		logrus.Debugf("Did not find any interface with name %s: %v", config.BridgeName, err)
+	} else if _, ok := i.Link.(*netlink.Bridge); !ok {
+		return nil, fmt.Errorf("existing interface %s is not a bridge", i.Link.Attrs().Name)
+	}
+	return i, nil
+}
+
+// exists indicates if the existing bridge interface exists on the system.
+func (i *bridgeInterface) exists() bool {
+	return i.Link != nil
+}
+
+// addresses returns all IPv4 addresses and all IPv6 addresses for the bridge interface.
+func (i *bridgeInterface) addresses() ([]netlink.Addr, []netlink.Addr, error) {
+	v4addr, err := i.nlh.AddrList(i.Link, netlink.FAMILY_V4)
+	if err != nil {
+		return nil, nil, fmt.Errorf("Failed to retrieve V4 addresses: %v", err)
+	}
+
+	v6addr, err := i.nlh.AddrList(i.Link, netlink.FAMILY_V6)
+	if err != nil {
+		return nil, nil, fmt.Errorf("Failed to retrieve V6 addresses: %v", err)
+	}
+
+	if len(v4addr) == 0 {
+		return nil, v6addr, nil
+	}
+	return v4addr, v6addr, nil
+}
+
+func (i *bridgeInterface) programIPv6Address() error {
+	_, nlAddressList, err := i.addresses()
+	if err != nil {
+		return &IPv6AddrAddError{IP: i.bridgeIPv6, Err: fmt.Errorf("failed to retrieve address list: %v", err)}
+	}
+	nlAddr := netlink.Addr{IPNet: i.bridgeIPv6}
+	if findIPv6Address(nlAddr, nlAddressList) {
+		return nil
+	}
+	if err := i.nlh.AddrAdd(i.Link, &nlAddr); err != nil {
+		return &IPv6AddrAddError{IP: i.bridgeIPv6, Err: err}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/labels.go b/vendor/github.com/docker/libnetwork/drivers/bridge/labels.go
new file mode 100644
index 0000000000..7447bd3f93
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/labels.go
@@ -0,0 +1,18 @@
+package bridge
+
+const (
+	// BridgeName label for bridge driver
+	BridgeName = "com.docker.network.bridge.name"
+
+	// EnableIPMasquerade label for bridge driver
+	EnableIPMasquerade = "com.docker.network.bridge.enable_ip_masquerade"
+
+	// EnableICC label
+	EnableICC = "com.docker.network.bridge.enable_icc"
+
+	// DefaultBindingIP label
+	DefaultBindingIP = "com.docker.network.bridge.host_binding_ipv4"
+
+	// DefaultBridge label
+	DefaultBridge = "com.docker.network.bridge.default_bridge"
+)
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/link.go b/vendor/github.com/docker/libnetwork/drivers/bridge/link.go
new file mode 100644
index 0000000000..d364516f1a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/link.go
@@ -0,0 +1,85 @@
+package bridge
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type link struct {
+	parentIP string
+	childIP  string
+	ports    []types.TransportPort
+	bridge   string
+}
+
+func (l *link) String() string {
+	return fmt.Sprintf("%s <-> %s [%v] on %s", l.parentIP, l.childIP, l.ports, l.bridge)
+}
+
+func newLink(parentIP, childIP string, ports []types.TransportPort, bridge string) *link {
+	return &link{
+		childIP:  childIP,
+		parentIP: parentIP,
+		ports:    ports,
+		bridge:   bridge,
+	}
+
+}
+
+func (l *link) Enable() error {
+	// -A == iptables append flag
+	linkFunction := func() error {
+		return linkContainers("-A", l.parentIP, l.childIP, l.ports, l.bridge, false)
+	}
+
+	iptables.OnReloaded(func() { linkFunction() })
+	return linkFunction()
+}
+
+func (l *link) Disable() {
+	// -D == iptables delete flag
+	err := linkContainers("-D", l.parentIP, l.childIP, l.ports, l.bridge, true)
+	if err != nil {
+		logrus.Errorf("Error removing IPTables rules for a link %s due to %s", l.String(), err.Error())
+	}
+	// Return proper error once we move to use a proper iptables package
+	// that returns typed errors
+}
+
+func linkContainers(action, parentIP, childIP string, ports []types.TransportPort, bridge string,
+	ignoreErrors bool) error {
+	var nfAction iptables.Action
+
+	switch action {
+	case "-A":
+		nfAction = iptables.Append
+	case "-I":
+		nfAction = iptables.Insert
+	case "-D":
+		nfAction = iptables.Delete
+	default:
+		return InvalidIPTablesCfgError(action)
+	}
+
+	ip1 := net.ParseIP(parentIP)
+	if ip1 == nil {
+		return InvalidLinkIPAddrError(parentIP)
+	}
+	ip2 := net.ParseIP(childIP)
+	if ip2 == nil {
+		return InvalidLinkIPAddrError(childIP)
+	}
+
+	chain := iptables.ChainInfo{Name: DockerChain}
+	for _, port := range ports {
+		err := chain.Link(nfAction, ip1, ip2, int(port.Port), port.Proto.String(), bridge)
+		if !ignoreErrors && err != nil {
+			return err
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux.go b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux.go
new file mode 100644
index 0000000000..6b49efa166
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux.go
@@ -0,0 +1,131 @@
+package bridge
+
+import (
+	"fmt"
+	"math/rand"
+	"net"
+	"syscall"
+	"time"
+	"unsafe"
+
+	"github.com/docker/libnetwork/netutils"
+)
+
+const (
+	ifNameSize   = 16
+	ioctlBrAdd   = 0x89a0
+	ioctlBrAddIf = 0x89a2
+)
+
+type ifreqIndex struct {
+	IfrnName  [ifNameSize]byte
+	IfruIndex int32
+}
+
+type ifreqHwaddr struct {
+	IfrnName   [ifNameSize]byte
+	IfruHwaddr syscall.RawSockaddr
+}
+
+var rnd = rand.New(rand.NewSource(time.Now().UnixNano()))
+
+// THIS CODE DOES NOT COMMUNICATE WITH KERNEL VIA RTNETLINK INTERFACE
+// IT IS HERE FOR BACKWARDS COMPATIBILITY WITH OLDER LINUX KERNELS
+// WHICH SHIP WITH OLDER NOT ENTIRELY FUNCTIONAL VERSION OF NETLINK
+func getIfSocket() (fd int, err error) {
+	for _, socket := range []int{
+		syscall.AF_INET,
+		syscall.AF_PACKET,
+		syscall.AF_INET6,
+	} {
+		if fd, err = syscall.Socket(socket, syscall.SOCK_DGRAM, 0); err == nil {
+			break
+		}
+	}
+	if err == nil {
+		return fd, nil
+	}
+	return -1, err
+}
+
+func ifIoctBridge(iface, master *net.Interface, op uintptr) error {
+	if len(master.Name) >= ifNameSize {
+		return fmt.Errorf("Interface name %s too long", master.Name)
+	}
+
+	s, err := getIfSocket()
+	if err != nil {
+		return err
+	}
+	defer syscall.Close(s)
+
+	ifr := ifreqIndex{}
+	copy(ifr.IfrnName[:len(ifr.IfrnName)-1], master.Name)
+	ifr.IfruIndex = int32(iface.Index)
+
+	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, uintptr(s), op, uintptr(unsafe.Pointer(&ifr))); err != 0 {
+		return err
+	}
+
+	return nil
+}
+
+// Add a slave to a bridge device.  This is more backward-compatible than
+// netlink.NetworkSetMaster and works on RHEL 6.
+func ioctlAddToBridge(iface, master *net.Interface) error {
+	return ifIoctBridge(iface, master, ioctlBrAddIf)
+}
+
+func ioctlSetMacAddress(name, addr string) error {
+	if len(name) >= ifNameSize {
+		return fmt.Errorf("Interface name %s too long", name)
+	}
+
+	hw, err := net.ParseMAC(addr)
+	if err != nil {
+		return err
+	}
+
+	s, err := getIfSocket()
+	if err != nil {
+		return err
+	}
+	defer syscall.Close(s)
+
+	ifr := ifreqHwaddr{}
+	ifr.IfruHwaddr.Family = syscall.ARPHRD_ETHER
+	copy(ifr.IfrnName[:len(ifr.IfrnName)-1], name)
+
+	for i := 0; i < 6; i++ {
+		ifr.IfruHwaddr.Data[i] = ifrDataByte(hw[i])
+	}
+
+	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, uintptr(s), syscall.SIOCSIFHWADDR, uintptr(unsafe.Pointer(&ifr))); err != 0 {
+		return err
+	}
+	return nil
+}
+
+func ioctlCreateBridge(name string, setMacAddr bool) error {
+	if len(name) >= ifNameSize {
+		return fmt.Errorf("Interface name %s too long", name)
+	}
+
+	s, err := getIfSocket()
+	if err != nil {
+		return err
+	}
+	defer syscall.Close(s)
+
+	nameBytePtr, err := syscall.BytePtrFromString(name)
+	if err != nil {
+		return err
+	}
+	if _, _, err := syscall.Syscall(syscall.SYS_IOCTL, uintptr(s), ioctlBrAdd, uintptr(unsafe.Pointer(nameBytePtr))); err != 0 {
+		return err
+	}
+	if setMacAddr {
+		return ioctlSetMacAddress(name, netutils.GenerateRandomMAC().String())
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_armppc64.go b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_armppc64.go
new file mode 100644
index 0000000000..739d9c6ba3
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_armppc64.go
@@ -0,0 +1,7 @@
+// +build arm ppc64 ppc64le
+
+package bridge
+
+func ifrDataByte(b byte) uint8 {
+	return uint8(b)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_notarm.go b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_notarm.go
new file mode 100644
index 0000000000..df526952f7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_linux_notarm.go
@@ -0,0 +1,7 @@
+// +build !arm,!ppc64,!ppc64le
+
+package bridge
+
+func ifrDataByte(b byte) int8 {
+	return int8(b)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_unsupported.go b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_unsupported.go
new file mode 100644
index 0000000000..7e2d57b660
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/netlink_deprecated_unsupported.go
@@ -0,0 +1,18 @@
+// +build !linux
+
+package bridge
+
+import (
+	"errors"
+	"net"
+)
+
+// Add a slave to a bridge device.  This is more backward-compatible than
+// netlink.NetworkSetMaster and works on RHEL 6.
+func ioctlAddToBridge(iface, master *net.Interface) error {
+	return errors.New("not implemented")
+}
+
+func ioctlCreateBridge(name string, setMacAddr bool) error {
+	return errors.New("not implemented")
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/port_mapping.go b/vendor/github.com/docker/libnetwork/drivers/bridge/port_mapping.go
new file mode 100644
index 0000000000..853129fc27
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/port_mapping.go
@@ -0,0 +1,132 @@
+package bridge
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/ishidawataru/sctp"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	defaultBindingIP = net.IPv4(0, 0, 0, 0)
+)
+
+func (n *bridgeNetwork) allocatePorts(ep *bridgeEndpoint, reqDefBindIP net.IP, ulPxyEnabled bool) ([]types.PortBinding, error) {
+	if ep.extConnConfig == nil || ep.extConnConfig.PortBindings == nil {
+		return nil, nil
+	}
+
+	defHostIP := defaultBindingIP
+	if reqDefBindIP != nil {
+		defHostIP = reqDefBindIP
+	}
+
+	return n.allocatePortsInternal(ep.extConnConfig.PortBindings, ep.addr.IP, defHostIP, ulPxyEnabled)
+}
+
+func (n *bridgeNetwork) allocatePortsInternal(bindings []types.PortBinding, containerIP, defHostIP net.IP, ulPxyEnabled bool) ([]types.PortBinding, error) {
+	bs := make([]types.PortBinding, 0, len(bindings))
+	for _, c := range bindings {
+		b := c.GetCopy()
+		if err := n.allocatePort(&b, containerIP, defHostIP, ulPxyEnabled); err != nil {
+			// On allocation failure, release previously allocated ports. On cleanup error, just log a warning message
+			if cuErr := n.releasePortsInternal(bs); cuErr != nil {
+				logrus.Warnf("Upon allocation failure for %v, failed to clear previously allocated port bindings: %v", b, cuErr)
+			}
+			return nil, err
+		}
+		bs = append(bs, b)
+	}
+	return bs, nil
+}
+
+func (n *bridgeNetwork) allocatePort(bnd *types.PortBinding, containerIP, defHostIP net.IP, ulPxyEnabled bool) error {
+	var (
+		host net.Addr
+		err  error
+	)
+
+	// Store the container interface address in the operational binding
+	bnd.IP = containerIP
+
+	// Adjust the host address in the operational binding
+	if len(bnd.HostIP) == 0 {
+		bnd.HostIP = defHostIP
+	}
+
+	// Adjust HostPortEnd if this is not a range.
+	if bnd.HostPortEnd == 0 {
+		bnd.HostPortEnd = bnd.HostPort
+	}
+
+	// Construct the container side transport address
+	container, err := bnd.ContainerAddr()
+	if err != nil {
+		return err
+	}
+
+	// Try up to maxAllocatePortAttempts times to get a port that's not already allocated.
+	for i := 0; i < maxAllocatePortAttempts; i++ {
+		if host, err = n.portMapper.MapRange(container, bnd.HostIP, int(bnd.HostPort), int(bnd.HostPortEnd), ulPxyEnabled); err == nil {
+			break
+		}
+		// There is no point in immediately retrying to map an explicitly chosen port.
+		if bnd.HostPort != 0 {
+			logrus.Warnf("Failed to allocate and map port %d-%d: %s", bnd.HostPort, bnd.HostPortEnd, err)
+			break
+		}
+		logrus.Warnf("Failed to allocate and map port: %s, retry: %d", err, i+1)
+	}
+	if err != nil {
+		return err
+	}
+
+	// Save the host port (regardless it was or not specified in the binding)
+	switch netAddr := host.(type) {
+	case *net.TCPAddr:
+		bnd.HostPort = uint16(host.(*net.TCPAddr).Port)
+		return nil
+	case *net.UDPAddr:
+		bnd.HostPort = uint16(host.(*net.UDPAddr).Port)
+		return nil
+	case *sctp.SCTPAddr:
+		bnd.HostPort = uint16(host.(*sctp.SCTPAddr).Port)
+		return nil
+	default:
+		// For completeness
+		return ErrUnsupportedAddressType(fmt.Sprintf("%T", netAddr))
+	}
+}
+
+func (n *bridgeNetwork) releasePorts(ep *bridgeEndpoint) error {
+	return n.releasePortsInternal(ep.portMapping)
+}
+
+func (n *bridgeNetwork) releasePortsInternal(bindings []types.PortBinding) error {
+	var errorBuf bytes.Buffer
+
+	// Attempt to release all port bindings, do not stop on failure
+	for _, m := range bindings {
+		if err := n.releasePort(m); err != nil {
+			errorBuf.WriteString(fmt.Sprintf("\ncould not release %v because of %v", m, err))
+		}
+	}
+
+	if errorBuf.Len() != 0 {
+		return errors.New(errorBuf.String())
+	}
+	return nil
+}
+
+func (n *bridgeNetwork) releasePort(bnd types.PortBinding) error {
+	// Construct the host side transport address
+	host, err := bnd.HostAddr()
+	if err != nil {
+		return err
+	}
+	return n.portMapper.Unmap(host)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup.go
new file mode 100644
index 0000000000..eeb3611b78
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup.go
@@ -0,0 +1,26 @@
+package bridge
+
+type setupStep func(*networkConfiguration, *bridgeInterface) error
+
+type bridgeSetup struct {
+	config *networkConfiguration
+	bridge *bridgeInterface
+	steps  []setupStep
+}
+
+func newBridgeSetup(c *networkConfiguration, i *bridgeInterface) *bridgeSetup {
+	return &bridgeSetup{config: c, bridge: i}
+}
+
+func (b *bridgeSetup) apply() error {
+	for _, fn := range b.steps {
+		if err := fn(b.config, b.bridge); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (b *bridgeSetup) queueStep(step setupStep) {
+	b.steps = append(b.steps, step)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_bridgenetfiltering.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_bridgenetfiltering.go
new file mode 100644
index 0000000000..9b90acfac2
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_bridgenetfiltering.go
@@ -0,0 +1,163 @@
+package bridge
+
+import (
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"os"
+	"syscall"
+
+	"github.com/sirupsen/logrus"
+)
+
+// Enumeration type saying which versions of IP protocol to process.
+type ipVersion int
+
+const (
+	ipvnone ipVersion = iota
+	ipv4
+	ipv6
+	ipvboth
+)
+
+//Gets the IP version in use ( [ipv4], [ipv6] or [ipv4 and ipv6] )
+func getIPVersion(config *networkConfiguration) ipVersion {
+	ipVersion := ipv4
+	if config.AddressIPv6 != nil || config.EnableIPv6 {
+		ipVersion |= ipv6
+	}
+	return ipVersion
+}
+
+func setupBridgeNetFiltering(config *networkConfiguration, i *bridgeInterface) error {
+	err := checkBridgeNetFiltering(config, i)
+	if err != nil {
+		if ptherr, ok := err.(*os.PathError); ok {
+			if errno, ok := ptherr.Err.(syscall.Errno); ok && errno == syscall.ENOENT {
+				if isRunningInContainer() {
+					logrus.Warnf("running inside docker container, ignoring missing kernel params: %v", err)
+					err = nil
+				} else {
+					err = errors.New("please ensure that br_netfilter kernel module is loaded")
+				}
+			}
+		}
+		if err != nil {
+			return fmt.Errorf("cannot restrict inter-container communication: %v", err)
+		}
+	}
+	return nil
+}
+
+//Enable bridge net filtering if ip forwarding is enabled. See github issue #11404
+func checkBridgeNetFiltering(config *networkConfiguration, i *bridgeInterface) error {
+	ipVer := getIPVersion(config)
+	iface := config.BridgeName
+	doEnable := func(ipVer ipVersion) error {
+		var ipVerName string
+		if ipVer == ipv4 {
+			ipVerName = "IPv4"
+		} else {
+			ipVerName = "IPv6"
+		}
+		enabled, err := isPacketForwardingEnabled(ipVer, iface)
+		if err != nil {
+			logrus.Warnf("failed to check %s forwarding: %v", ipVerName, err)
+		} else if enabled {
+			enabled, err := getKernelBoolParam(getBridgeNFKernelParam(ipVer))
+			if err != nil || enabled {
+				return err
+			}
+			return setKernelBoolParam(getBridgeNFKernelParam(ipVer), true)
+		}
+		return nil
+	}
+
+	switch ipVer {
+	case ipv4, ipv6:
+		return doEnable(ipVer)
+	case ipvboth:
+		v4err := doEnable(ipv4)
+		v6err := doEnable(ipv6)
+		if v4err == nil {
+			return v6err
+		}
+		return v4err
+	default:
+		return nil
+	}
+}
+
+// Get kernel param path saying whether IPv${ipVer} traffic is being forwarded
+// on particular interface. Interface may be specified for IPv6 only. If
+// `iface` is empty, `default` will be assumed, which represents default value
+// for new interfaces.
+func getForwardingKernelParam(ipVer ipVersion, iface string) string {
+	switch ipVer {
+	case ipv4:
+		return "/proc/sys/net/ipv4/ip_forward"
+	case ipv6:
+		if iface == "" {
+			iface = "default"
+		}
+		return fmt.Sprintf("/proc/sys/net/ipv6/conf/%s/forwarding", iface)
+	default:
+		return ""
+	}
+}
+
+// Get kernel param path saying whether bridged IPv${ipVer} traffic shall be
+// passed to ip${ipVer}tables' chains.
+func getBridgeNFKernelParam(ipVer ipVersion) string {
+	switch ipVer {
+	case ipv4:
+		return "/proc/sys/net/bridge/bridge-nf-call-iptables"
+	case ipv6:
+		return "/proc/sys/net/bridge/bridge-nf-call-ip6tables"
+	default:
+		return ""
+	}
+}
+
+//Gets the value of the kernel parameters located at the given path
+func getKernelBoolParam(path string) (bool, error) {
+	enabled := false
+	line, err := ioutil.ReadFile(path)
+	if err != nil {
+		return false, err
+	}
+	if len(line) > 0 {
+		enabled = line[0] == '1'
+	}
+	return enabled, err
+}
+
+//Sets the value of the kernel parameter located at the given path
+func setKernelBoolParam(path string, on bool) error {
+	value := byte('0')
+	if on {
+		value = byte('1')
+	}
+	return ioutil.WriteFile(path, []byte{value, '\n'}, 0644)
+}
+
+//Checks to see if packet forwarding is enabled
+func isPacketForwardingEnabled(ipVer ipVersion, iface string) (bool, error) {
+	switch ipVer {
+	case ipv4, ipv6:
+		return getKernelBoolParam(getForwardingKernelParam(ipVer, iface))
+	case ipvboth:
+		enabled, err := getKernelBoolParam(getForwardingKernelParam(ipv4, ""))
+		if err != nil || !enabled {
+			return enabled, err
+		}
+		return getKernelBoolParam(getForwardingKernelParam(ipv6, iface))
+	default:
+		return true, nil
+	}
+}
+
+func isRunningInContainer() bool {
+	_, err := os.Stat("/.dockerenv")
+	return !os.IsNotExist(err)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_device.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_device.go
new file mode 100644
index 0000000000..a9dfd06771
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_device.go
@@ -0,0 +1,68 @@
+package bridge
+
+import (
+	"fmt"
+
+	"github.com/docker/docker/pkg/parsers/kernel"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+// SetupDevice create a new bridge interface/
+func setupDevice(config *networkConfiguration, i *bridgeInterface) error {
+	var setMac bool
+
+	// We only attempt to create the bridge when the requested device name is
+	// the default one.
+	if config.BridgeName != DefaultBridgeName && config.DefaultBridge {
+		return NonDefaultBridgeExistError(config.BridgeName)
+	}
+
+	// Set the bridgeInterface netlink.Bridge.
+	i.Link = &netlink.Bridge{
+		LinkAttrs: netlink.LinkAttrs{
+			Name: config.BridgeName,
+		},
+	}
+
+	// Only set the bridge's MAC address if the kernel version is > 3.3, as it
+	// was not supported before that.
+	kv, err := kernel.GetKernelVersion()
+	if err != nil {
+		logrus.Errorf("Failed to check kernel versions: %v. Will not assign a MAC address to the bridge interface", err)
+	} else {
+		setMac = kv.Kernel > 3 || (kv.Kernel == 3 && kv.Major >= 3)
+	}
+
+	if err = i.nlh.LinkAdd(i.Link); err != nil {
+		logrus.Debugf("Failed to create bridge %s via netlink. Trying ioctl", config.BridgeName)
+		return ioctlCreateBridge(config.BridgeName, setMac)
+	}
+
+	if setMac {
+		hwAddr := netutils.GenerateRandomMAC()
+		if err = i.nlh.LinkSetHardwareAddr(i.Link, hwAddr); err != nil {
+			return fmt.Errorf("failed to set bridge mac-address %s : %s", hwAddr, err.Error())
+		}
+		logrus.Debugf("Setting bridge mac address to %s", hwAddr)
+	}
+	return err
+}
+
+// SetupDeviceUp ups the given bridge interface.
+func setupDeviceUp(config *networkConfiguration, i *bridgeInterface) error {
+	err := i.nlh.LinkSetUp(i.Link)
+	if err != nil {
+		return fmt.Errorf("Failed to set link up for %s: %v", config.BridgeName, err)
+	}
+
+	// Attempt to update the bridge interface to refresh the flags status,
+	// ignoring any failure to do so.
+	if lnk, err := i.nlh.LinkByName(config.BridgeName); err == nil {
+		i.Link = lnk
+	} else {
+		logrus.Warnf("Failed to retrieve link for interface (%s): %v", config.BridgeName, err)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_firewalld.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_firewalld.go
new file mode 100644
index 0000000000..50cbdb1ddc
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_firewalld.go
@@ -0,0 +1,20 @@
+package bridge
+
+import "github.com/docker/libnetwork/iptables"
+
+func (n *bridgeNetwork) setupFirewalld(config *networkConfiguration, i *bridgeInterface) error {
+	d := n.driver
+	d.Lock()
+	driverConfig := d.config
+	d.Unlock()
+
+	// Sanity check.
+	if !driverConfig.EnableIPTables {
+		return IPTableCfgError(config.BridgeName)
+	}
+
+	iptables.OnReloaded(func() { n.setupIPTables(config, i) })
+	iptables.OnReloaded(n.portMapper.ReMapAll)
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_forwarding.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_forwarding.go
new file mode 100644
index 0000000000..355a14d996
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_forwarding.go
@@ -0,0 +1,56 @@
+package bridge
+
+import (
+	"fmt"
+	"io/ioutil"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	ipv4ForwardConf     = "/proc/sys/net/ipv4/ip_forward"
+	ipv4ForwardConfPerm = 0644
+)
+
+func configureIPForwarding(enable bool) error {
+	var val byte
+	if enable {
+		val = '1'
+	}
+	return ioutil.WriteFile(ipv4ForwardConf, []byte{val, '\n'}, ipv4ForwardConfPerm)
+}
+
+func setupIPForwarding(enableIPTables bool) error {
+	// Get current IPv4 forward setup
+	ipv4ForwardData, err := ioutil.ReadFile(ipv4ForwardConf)
+	if err != nil {
+		return fmt.Errorf("Cannot read IP forwarding setup: %v", err)
+	}
+
+	// Enable IPv4 forwarding only if it is not already enabled
+	if ipv4ForwardData[0] != '1' {
+		// Enable IPv4 forwarding
+		if err := configureIPForwarding(true); err != nil {
+			return fmt.Errorf("Enabling IP forwarding failed: %v", err)
+		}
+		// When enabling ip_forward set the default policy on forward chain to
+		// drop only if the daemon option iptables is not set to false.
+		if !enableIPTables {
+			return nil
+		}
+		if err := iptables.SetDefaultPolicy(iptables.Filter, "FORWARD", iptables.Drop); err != nil {
+			if err := configureIPForwarding(false); err != nil {
+				logrus.Errorf("Disabling IP forwarding failed, %v", err)
+			}
+			return err
+		}
+		iptables.OnReloaded(func() {
+			logrus.Debug("Setting the default DROP policy on firewall reload")
+			if err := iptables.SetDefaultPolicy(iptables.Filter, "FORWARD", iptables.Drop); err != nil {
+				logrus.Warnf("Settig the default DROP policy on firewall reload failed, %v", err)
+			}
+		})
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_tables.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_tables.go
new file mode 100644
index 0000000000..5865a18f18
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ip_tables.go
@@ -0,0 +1,363 @@
+package bridge
+
+import (
+	"errors"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+// DockerChain: DOCKER iptable chain name
+const (
+	DockerChain = "DOCKER"
+	// Isolation between bridge networks is achieved in two stages by means
+	// of the following two chains in the filter table. The first chain matches
+	// on the source interface being a bridge network's bridge and the
+	// destination being a different interface. A positive match leads to the
+	// second isolation chain. No match returns to the parent chain. The second
+	// isolation chain matches on destination interface being a bridge network's
+	// bridge. A positive match identifies a packet originated from one bridge
+	// network's bridge destined to another bridge network's bridge and will
+	// result in the packet being dropped. No match returns to the parent chain.
+	IsolationChain1 = "DOCKER-ISOLATION-STAGE-1"
+	IsolationChain2 = "DOCKER-ISOLATION-STAGE-2"
+)
+
+func setupIPChains(config *configuration) (*iptables.ChainInfo, *iptables.ChainInfo, *iptables.ChainInfo, *iptables.ChainInfo, error) {
+	// Sanity check.
+	if config.EnableIPTables == false {
+		return nil, nil, nil, nil, errors.New("cannot create new chains, EnableIPTable is disabled")
+	}
+
+	hairpinMode := !config.EnableUserlandProxy
+
+	natChain, err := iptables.NewChain(DockerChain, iptables.Nat, hairpinMode)
+	if err != nil {
+		return nil, nil, nil, nil, fmt.Errorf("failed to create NAT chain %s: %v", DockerChain, err)
+	}
+	defer func() {
+		if err != nil {
+			if err := iptables.RemoveExistingChain(DockerChain, iptables.Nat); err != nil {
+				logrus.Warnf("failed on removing iptables NAT chain %s on cleanup: %v", DockerChain, err)
+			}
+		}
+	}()
+
+	filterChain, err := iptables.NewChain(DockerChain, iptables.Filter, false)
+	if err != nil {
+		return nil, nil, nil, nil, fmt.Errorf("failed to create FILTER chain %s: %v", DockerChain, err)
+	}
+	defer func() {
+		if err != nil {
+			if err := iptables.RemoveExistingChain(DockerChain, iptables.Filter); err != nil {
+				logrus.Warnf("failed on removing iptables FILTER chain %s on cleanup: %v", DockerChain, err)
+			}
+		}
+	}()
+
+	isolationChain1, err := iptables.NewChain(IsolationChain1, iptables.Filter, false)
+	if err != nil {
+		return nil, nil, nil, nil, fmt.Errorf("failed to create FILTER isolation chain: %v", err)
+	}
+	defer func() {
+		if err != nil {
+			if err := iptables.RemoveExistingChain(IsolationChain1, iptables.Filter); err != nil {
+				logrus.Warnf("failed on removing iptables FILTER chain %s on cleanup: %v", IsolationChain1, err)
+			}
+		}
+	}()
+
+	isolationChain2, err := iptables.NewChain(IsolationChain2, iptables.Filter, false)
+	if err != nil {
+		return nil, nil, nil, nil, fmt.Errorf("failed to create FILTER isolation chain: %v", err)
+	}
+	defer func() {
+		if err != nil {
+			if err := iptables.RemoveExistingChain(IsolationChain2, iptables.Filter); err != nil {
+				logrus.Warnf("failed on removing iptables FILTER chain %s on cleanup: %v", IsolationChain2, err)
+			}
+		}
+	}()
+
+	if err := iptables.AddReturnRule(IsolationChain1); err != nil {
+		return nil, nil, nil, nil, err
+	}
+
+	if err := iptables.AddReturnRule(IsolationChain2); err != nil {
+		return nil, nil, nil, nil, err
+	}
+
+	return natChain, filterChain, isolationChain1, isolationChain2, nil
+}
+
+func (n *bridgeNetwork) setupIPTables(config *networkConfiguration, i *bridgeInterface) error {
+	var err error
+
+	d := n.driver
+	d.Lock()
+	driverConfig := d.config
+	d.Unlock()
+
+	// Sanity check.
+	if driverConfig.EnableIPTables == false {
+		return errors.New("Cannot program chains, EnableIPTable is disabled")
+	}
+
+	// Pickup this configuration option from driver
+	hairpinMode := !driverConfig.EnableUserlandProxy
+
+	maskedAddrv4 := &net.IPNet{
+		IP:   i.bridgeIPv4.IP.Mask(i.bridgeIPv4.Mask),
+		Mask: i.bridgeIPv4.Mask,
+	}
+	if config.Internal {
+		if err = setupInternalNetworkRules(config.BridgeName, maskedAddrv4, config.EnableICC, true); err != nil {
+			return fmt.Errorf("Failed to Setup IP tables: %s", err.Error())
+		}
+		n.registerIptCleanFunc(func() error {
+			return setupInternalNetworkRules(config.BridgeName, maskedAddrv4, config.EnableICC, false)
+		})
+	} else {
+		if err = setupIPTablesInternal(config.BridgeName, maskedAddrv4, config.EnableICC, config.EnableIPMasquerade, hairpinMode, true); err != nil {
+			return fmt.Errorf("Failed to Setup IP tables: %s", err.Error())
+		}
+		n.registerIptCleanFunc(func() error {
+			return setupIPTablesInternal(config.BridgeName, maskedAddrv4, config.EnableICC, config.EnableIPMasquerade, hairpinMode, false)
+		})
+		natChain, filterChain, _, _, err := n.getDriverChains()
+		if err != nil {
+			return fmt.Errorf("Failed to setup IP tables, cannot acquire chain info %s", err.Error())
+		}
+
+		err = iptables.ProgramChain(natChain, config.BridgeName, hairpinMode, true)
+		if err != nil {
+			return fmt.Errorf("Failed to program NAT chain: %s", err.Error())
+		}
+
+		err = iptables.ProgramChain(filterChain, config.BridgeName, hairpinMode, true)
+		if err != nil {
+			return fmt.Errorf("Failed to program FILTER chain: %s", err.Error())
+		}
+
+		n.registerIptCleanFunc(func() error {
+			return iptables.ProgramChain(filterChain, config.BridgeName, hairpinMode, false)
+		})
+
+		n.portMapper.SetIptablesChain(natChain, n.getNetworkBridgeName())
+	}
+
+	d.Lock()
+	err = iptables.EnsureJumpRule("FORWARD", IsolationChain1)
+	d.Unlock()
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+type iptRule struct {
+	table   iptables.Table
+	chain   string
+	preArgs []string
+	args    []string
+}
+
+func setupIPTablesInternal(bridgeIface string, addr net.Addr, icc, ipmasq, hairpin, enable bool) error {
+
+	var (
+		address   = addr.String()
+		natRule   = iptRule{table: iptables.Nat, chain: "POSTROUTING", preArgs: []string{"-t", "nat"}, args: []string{"-s", address, "!", "-o", bridgeIface, "-j", "MASQUERADE"}}
+		hpNatRule = iptRule{table: iptables.Nat, chain: "POSTROUTING", preArgs: []string{"-t", "nat"}, args: []string{"-m", "addrtype", "--src-type", "LOCAL", "-o", bridgeIface, "-j", "MASQUERADE"}}
+		skipDNAT  = iptRule{table: iptables.Nat, chain: DockerChain, preArgs: []string{"-t", "nat"}, args: []string{"-i", bridgeIface, "-j", "RETURN"}}
+		outRule   = iptRule{table: iptables.Filter, chain: "FORWARD", args: []string{"-i", bridgeIface, "!", "-o", bridgeIface, "-j", "ACCEPT"}}
+	)
+
+	// Set NAT.
+	if ipmasq {
+		if err := programChainRule(natRule, "NAT", enable); err != nil {
+			return err
+		}
+	}
+
+	if ipmasq && !hairpin {
+		if err := programChainRule(skipDNAT, "SKIP DNAT", enable); err != nil {
+			return err
+		}
+	}
+
+	// In hairpin mode, masquerade traffic from localhost
+	if hairpin {
+		if err := programChainRule(hpNatRule, "MASQ LOCAL HOST", enable); err != nil {
+			return err
+		}
+	}
+
+	// Set Inter Container Communication.
+	if err := setIcc(bridgeIface, icc, enable); err != nil {
+		return err
+	}
+
+	// Set Accept on all non-intercontainer outgoing packets.
+	return programChainRule(outRule, "ACCEPT NON_ICC OUTGOING", enable)
+}
+
+func programChainRule(rule iptRule, ruleDescr string, insert bool) error {
+	var (
+		prefix    []string
+		operation string
+		condition bool
+		doesExist = iptables.Exists(rule.table, rule.chain, rule.args...)
+	)
+
+	if insert {
+		condition = !doesExist
+		prefix = []string{"-I", rule.chain}
+		operation = "enable"
+	} else {
+		condition = doesExist
+		prefix = []string{"-D", rule.chain}
+		operation = "disable"
+	}
+	if rule.preArgs != nil {
+		prefix = append(rule.preArgs, prefix...)
+	}
+
+	if condition {
+		if err := iptables.RawCombinedOutput(append(prefix, rule.args...)...); err != nil {
+			return fmt.Errorf("Unable to %s %s rule: %s", operation, ruleDescr, err.Error())
+		}
+	}
+
+	return nil
+}
+
+func setIcc(bridgeIface string, iccEnable, insert bool) error {
+	var (
+		table      = iptables.Filter
+		chain      = "FORWARD"
+		args       = []string{"-i", bridgeIface, "-o", bridgeIface, "-j"}
+		acceptArgs = append(args, "ACCEPT")
+		dropArgs   = append(args, "DROP")
+	)
+
+	if insert {
+		if !iccEnable {
+			iptables.Raw(append([]string{"-D", chain}, acceptArgs...)...)
+
+			if !iptables.Exists(table, chain, dropArgs...) {
+				if err := iptables.RawCombinedOutput(append([]string{"-A", chain}, dropArgs...)...); err != nil {
+					return fmt.Errorf("Unable to prevent intercontainer communication: %s", err.Error())
+				}
+			}
+		} else {
+			iptables.Raw(append([]string{"-D", chain}, dropArgs...)...)
+
+			if !iptables.Exists(table, chain, acceptArgs...) {
+				if err := iptables.RawCombinedOutput(append([]string{"-I", chain}, acceptArgs...)...); err != nil {
+					return fmt.Errorf("Unable to allow intercontainer communication: %s", err.Error())
+				}
+			}
+		}
+	} else {
+		// Remove any ICC rule.
+		if !iccEnable {
+			if iptables.Exists(table, chain, dropArgs...) {
+				iptables.Raw(append([]string{"-D", chain}, dropArgs...)...)
+			}
+		} else {
+			if iptables.Exists(table, chain, acceptArgs...) {
+				iptables.Raw(append([]string{"-D", chain}, acceptArgs...)...)
+			}
+		}
+	}
+
+	return nil
+}
+
+// Control Inter Network Communication. Install[Remove] only if it is [not] present.
+func setINC(iface string, enable bool) error {
+	var (
+		action    = iptables.Insert
+		actionMsg = "add"
+		chains    = []string{IsolationChain1, IsolationChain2}
+		rules     = [][]string{
+			{"-i", iface, "!", "-o", iface, "-j", IsolationChain2},
+			{"-o", iface, "-j", "DROP"},
+		}
+	)
+
+	if !enable {
+		action = iptables.Delete
+		actionMsg = "remove"
+	}
+
+	for i, chain := range chains {
+		if err := iptables.ProgramRule(iptables.Filter, chain, action, rules[i]); err != nil {
+			msg := fmt.Sprintf("unable to %s inter-network communication rule: %v", actionMsg, err)
+			if enable {
+				if i == 1 {
+					// Rollback the rule installed on first chain
+					if err2 := iptables.ProgramRule(iptables.Filter, chains[0], iptables.Delete, rules[0]); err2 != nil {
+						logrus.Warn("Failed to rollback iptables rule after failure (%v): %v", err, err2)
+					}
+				}
+				return fmt.Errorf(msg)
+			}
+			logrus.Warn(msg)
+		}
+	}
+
+	return nil
+}
+
+// Obsolete chain from previous docker versions
+const oldIsolationChain = "DOCKER-ISOLATION"
+
+func removeIPChains() {
+	// Remove obsolete rules from default chains
+	iptables.ProgramRule(iptables.Filter, "FORWARD", iptables.Delete, []string{"-j", oldIsolationChain})
+
+	// Remove chains
+	for _, chainInfo := range []iptables.ChainInfo{
+		{Name: DockerChain, Table: iptables.Nat},
+		{Name: DockerChain, Table: iptables.Filter},
+		{Name: IsolationChain1, Table: iptables.Filter},
+		{Name: IsolationChain2, Table: iptables.Filter},
+		{Name: oldIsolationChain, Table: iptables.Filter},
+	} {
+		if err := chainInfo.Remove(); err != nil {
+			logrus.Warnf("Failed to remove existing iptables entries in table %s chain %s : %v", chainInfo.Table, chainInfo.Name, err)
+		}
+	}
+}
+
+func setupInternalNetworkRules(bridgeIface string, addr net.Addr, icc, insert bool) error {
+	var (
+		inDropRule  = iptRule{table: iptables.Filter, chain: IsolationChain1, args: []string{"-i", bridgeIface, "!", "-d", addr.String(), "-j", "DROP"}}
+		outDropRule = iptRule{table: iptables.Filter, chain: IsolationChain1, args: []string{"-o", bridgeIface, "!", "-s", addr.String(), "-j", "DROP"}}
+	)
+	if err := programChainRule(inDropRule, "DROP INCOMING", insert); err != nil {
+		return err
+	}
+	if err := programChainRule(outDropRule, "DROP OUTGOING", insert); err != nil {
+		return err
+	}
+	// Set Inter Container Communication.
+	return setIcc(bridgeIface, icc, insert)
+}
+
+func clearEndpointConnections(nlh *netlink.Handle, ep *bridgeEndpoint) {
+	var ipv4List []net.IP
+	var ipv6List []net.IP
+	if ep.addr != nil {
+		ipv4List = append(ipv4List, ep.addr.IP)
+	}
+	if ep.addrv6 != nil {
+		ipv6List = append(ipv6List, ep.addrv6.IP)
+	}
+	iptables.DeleteConntrackEntries(nlh, ipv4List, ipv6List)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv4.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv4.go
new file mode 100644
index 0000000000..671bd3302e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv4.go
@@ -0,0 +1,80 @@
+package bridge
+
+import (
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"net"
+	"path/filepath"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+func selectIPv4Address(addresses []netlink.Addr, selector *net.IPNet) (netlink.Addr, error) {
+	if len(addresses) == 0 {
+		return netlink.Addr{}, errors.New("unable to select an address as the address pool is empty")
+	}
+	if selector != nil {
+		for _, addr := range addresses {
+			if selector.Contains(addr.IP) {
+				return addr, nil
+			}
+		}
+	}
+	return addresses[0], nil
+}
+
+func setupBridgeIPv4(config *networkConfiguration, i *bridgeInterface) error {
+	addrv4List, _, err := i.addresses()
+	if err != nil {
+		return fmt.Errorf("failed to retrieve bridge interface addresses: %v", err)
+	}
+
+	addrv4, _ := selectIPv4Address(addrv4List, config.AddressIPv4)
+
+	if !types.CompareIPNet(addrv4.IPNet, config.AddressIPv4) {
+		if addrv4.IPNet != nil {
+			if err := i.nlh.AddrDel(i.Link, &addrv4); err != nil {
+				return fmt.Errorf("failed to remove current ip address from bridge: %v", err)
+			}
+		}
+		logrus.Debugf("Assigning address to bridge interface %s: %s", config.BridgeName, config.AddressIPv4)
+		if err := i.nlh.AddrAdd(i.Link, &netlink.Addr{IPNet: config.AddressIPv4}); err != nil {
+			return &IPv4AddrAddError{IP: config.AddressIPv4, Err: err}
+		}
+	}
+
+	// Store bridge network and default gateway
+	i.bridgeIPv4 = config.AddressIPv4
+	i.gatewayIPv4 = config.AddressIPv4.IP
+
+	return nil
+}
+
+func setupGatewayIPv4(config *networkConfiguration, i *bridgeInterface) error {
+	if !i.bridgeIPv4.Contains(config.DefaultGatewayIPv4) {
+		return &ErrInvalidGateway{}
+	}
+
+	// Store requested default gateway
+	i.gatewayIPv4 = config.DefaultGatewayIPv4
+
+	return nil
+}
+
+func setupLoopbackAdressesRouting(config *networkConfiguration, i *bridgeInterface) error {
+	sysPath := filepath.Join("/proc/sys/net/ipv4/conf", config.BridgeName, "route_localnet")
+	ipv4LoRoutingData, err := ioutil.ReadFile(sysPath)
+	if err != nil {
+		return fmt.Errorf("Cannot read IPv4 local routing setup: %v", err)
+	}
+	// Enable loopback adresses routing only if it isn't already enabled
+	if ipv4LoRoutingData[0] != '1' {
+		if err := ioutil.WriteFile(sysPath, []byte{'1', '\n'}, 0644); err != nil {
+			return fmt.Errorf("Unable to enable local routing for hairpin mode: %v", err)
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv6.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv6.go
new file mode 100644
index 0000000000..b944be081e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_ipv6.go
@@ -0,0 +1,119 @@
+package bridge
+
+import (
+	"fmt"
+	"io/ioutil"
+	"net"
+	"os"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+var bridgeIPv6 *net.IPNet
+
+const (
+	bridgeIPv6Str          = "fe80::1/64"
+	ipv6ForwardConfPerm    = 0644
+	ipv6ForwardConfDefault = "/proc/sys/net/ipv6/conf/default/forwarding"
+	ipv6ForwardConfAll     = "/proc/sys/net/ipv6/conf/all/forwarding"
+)
+
+func init() {
+	// We allow ourselves to panic in this special case because we indicate a
+	// failure to parse a compile-time define constant.
+	var err error
+	if bridgeIPv6, err = types.ParseCIDR(bridgeIPv6Str); err != nil {
+		panic(fmt.Sprintf("Cannot parse default bridge IPv6 address %q: %v", bridgeIPv6Str, err))
+	}
+}
+
+func setupBridgeIPv6(config *networkConfiguration, i *bridgeInterface) error {
+	procFile := "/proc/sys/net/ipv6/conf/" + config.BridgeName + "/disable_ipv6"
+	ipv6BridgeData, err := ioutil.ReadFile(procFile)
+	if err != nil {
+		return fmt.Errorf("Cannot read IPv6 setup for bridge %v: %v", config.BridgeName, err)
+	}
+	// Enable IPv6 on the bridge only if it isn't already enabled
+	if ipv6BridgeData[0] != '0' {
+		if err := ioutil.WriteFile(procFile, []byte{'0', '\n'}, ipv6ForwardConfPerm); err != nil {
+			return fmt.Errorf("Unable to enable IPv6 addresses on bridge: %v", err)
+		}
+	}
+
+	// Store bridge network and default gateway
+	i.bridgeIPv6 = bridgeIPv6
+	i.gatewayIPv6 = i.bridgeIPv6.IP
+
+	if err := i.programIPv6Address(); err != nil {
+		return err
+	}
+
+	if config.AddressIPv6 == nil {
+		return nil
+	}
+
+	// Store the user specified bridge network and network gateway and program it
+	i.bridgeIPv6 = config.AddressIPv6
+	i.gatewayIPv6 = config.AddressIPv6.IP
+
+	if err := i.programIPv6Address(); err != nil {
+		return err
+	}
+
+	// Setting route to global IPv6 subnet
+	logrus.Debugf("Adding route to IPv6 network %s via device %s", config.AddressIPv6.String(), config.BridgeName)
+	err = i.nlh.RouteAdd(&netlink.Route{
+		Scope:     netlink.SCOPE_UNIVERSE,
+		LinkIndex: i.Link.Attrs().Index,
+		Dst:       config.AddressIPv6,
+	})
+	if err != nil && !os.IsExist(err) {
+		logrus.Errorf("Could not add route to IPv6 network %s via device %s", config.AddressIPv6.String(), config.BridgeName)
+	}
+
+	return nil
+}
+
+func setupGatewayIPv6(config *networkConfiguration, i *bridgeInterface) error {
+	if config.AddressIPv6 == nil {
+		return &ErrInvalidContainerSubnet{}
+	}
+	if !config.AddressIPv6.Contains(config.DefaultGatewayIPv6) {
+		return &ErrInvalidGateway{}
+	}
+
+	// Store requested default gateway
+	i.gatewayIPv6 = config.DefaultGatewayIPv6
+
+	return nil
+}
+
+func setupIPv6Forwarding(config *networkConfiguration, i *bridgeInterface) error {
+	// Get current IPv6 default forwarding setup
+	ipv6ForwardDataDefault, err := ioutil.ReadFile(ipv6ForwardConfDefault)
+	if err != nil {
+		return fmt.Errorf("Cannot read IPv6 default forwarding setup: %v", err)
+	}
+	// Enable IPv6 default forwarding only if it is not already enabled
+	if ipv6ForwardDataDefault[0] != '1' {
+		if err := ioutil.WriteFile(ipv6ForwardConfDefault, []byte{'1', '\n'}, ipv6ForwardConfPerm); err != nil {
+			logrus.Warnf("Unable to enable IPv6 default forwarding: %v", err)
+		}
+	}
+
+	// Get current IPv6 all forwarding setup
+	ipv6ForwardDataAll, err := ioutil.ReadFile(ipv6ForwardConfAll)
+	if err != nil {
+		return fmt.Errorf("Cannot read IPv6 all forwarding setup: %v", err)
+	}
+	// Enable IPv6 all forwarding only if it is not already enabled
+	if ipv6ForwardDataAll[0] != '1' {
+		if err := ioutil.WriteFile(ipv6ForwardConfAll, []byte{'1', '\n'}, ipv6ForwardConfPerm); err != nil {
+			logrus.Warnf("Unable to enable IPv6 all forwarding: %v", err)
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/bridge/setup_verify.go b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_verify.go
new file mode 100644
index 0000000000..de77c38a66
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/bridge/setup_verify.go
@@ -0,0 +1,73 @@
+package bridge
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+func setupVerifyAndReconcile(config *networkConfiguration, i *bridgeInterface) error {
+	// Fetch a slice of IPv4 addresses and a slice of IPv6 addresses from the bridge.
+	addrsv4, addrsv6, err := i.addresses()
+	if err != nil {
+		return fmt.Errorf("Failed to verify ip addresses: %v", err)
+	}
+
+	addrv4, _ := selectIPv4Address(addrsv4, config.AddressIPv4)
+
+	// Verify that the bridge does have an IPv4 address.
+	if addrv4.IPNet == nil {
+		return &ErrNoIPAddr{}
+	}
+
+	// Verify that the bridge IPv4 address matches the requested configuration.
+	if config.AddressIPv4 != nil && !addrv4.IP.Equal(config.AddressIPv4.IP) {
+		return &IPv4AddrNoMatchError{IP: addrv4.IP, CfgIP: config.AddressIPv4.IP}
+	}
+
+	// Verify that one of the bridge IPv6 addresses matches the requested
+	// configuration.
+	if config.EnableIPv6 && !findIPv6Address(netlink.Addr{IPNet: bridgeIPv6}, addrsv6) {
+		return (*IPv6AddrNoMatchError)(bridgeIPv6)
+	}
+
+	// Release any residual IPv6 address that might be there because of older daemon instances
+	for _, addrv6 := range addrsv6 {
+		if addrv6.IP.IsGlobalUnicast() && !types.CompareIPNet(addrv6.IPNet, i.bridgeIPv6) {
+			if err := i.nlh.AddrDel(i.Link, &addrv6); err != nil {
+				logrus.Warnf("Failed to remove residual IPv6 address %s from bridge: %v", addrv6.IPNet, err)
+			}
+		}
+	}
+
+	return nil
+}
+
+func findIPv6Address(addr netlink.Addr, addresses []netlink.Addr) bool {
+	for _, addrv6 := range addresses {
+		if addrv6.String() == addr.String() {
+			return true
+		}
+	}
+	return false
+}
+
+func bridgeInterfaceExists(name string) (bool, error) {
+	nlh := ns.NlHandle()
+	link, err := nlh.LinkByName(name)
+	if err != nil {
+		if strings.Contains(err.Error(), "Link not found") {
+			return false, nil
+		}
+		return false, fmt.Errorf("failed to check bridge interface existence: %v", err)
+	}
+
+	if link.Type() == "bridge" {
+		return true, nil
+	}
+	return false, fmt.Errorf("existing interface %s is not a bridge", name)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/host/host.go b/vendor/github.com/docker/libnetwork/drivers/host/host.go
new file mode 100644
index 0000000000..a71d461380
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/host/host.go
@@ -0,0 +1,106 @@
+package host
+
+import (
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/types"
+)
+
+const networkType = "host"
+
+type driver struct {
+	network string
+	sync.Mutex
+}
+
+// Init registers a new instance of host driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope:         datastore.LocalScope,
+		ConnectivityScope: datastore.LocalScope,
+	}
+	return dc.RegisterDriver(networkType, &driver{}, c)
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	d.Lock()
+	defer d.Unlock()
+
+	if d.network != "" {
+		return types.ForbiddenErrorf("only one instance of \"%s\" network is allowed", networkType)
+	}
+
+	d.network = id
+
+	return nil
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	return types.ForbiddenErrorf("network of type \"%s\" cannot be deleted", networkType)
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo, epOptions map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	return make(map[string]interface{}, 0), nil
+}
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) Type() string {
+	return networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan.go
new file mode 100644
index 0000000000..c64ad555a3
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan.go
@@ -0,0 +1,115 @@
+package ipvlan
+
+import (
+	"net"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+)
+
+const (
+	vethLen             = 7
+	containerVethPrefix = "eth"
+	vethPrefix          = "veth"
+	ipvlanType          = "ipvlan" // driver type name
+	modeL2              = "l2"     // ipvlan mode l2 is the default
+	modeL3              = "l3"     // ipvlan L3 mode
+	parentOpt           = "parent" // parent interface -o parent
+	modeOpt             = "_mode"  // ipvlan mode ux opt suffix
+)
+
+var driverModeOpt = ipvlanType + modeOpt // mode -o ipvlan_mode
+
+type endpointTable map[string]*endpoint
+
+type networkTable map[string]*network
+
+type driver struct {
+	networks networkTable
+	sync.Once
+	sync.Mutex
+	store datastore.DataStore
+}
+
+type endpoint struct {
+	id       string
+	nid      string
+	mac      net.HardwareAddr
+	addr     *net.IPNet
+	addrv6   *net.IPNet
+	srcName  string
+	dbIndex  uint64
+	dbExists bool
+}
+
+type network struct {
+	id        string
+	sbox      osl.Sandbox
+	endpoints endpointTable
+	driver    *driver
+	config    *configuration
+	sync.Mutex
+}
+
+// Init initializes and registers the libnetwork ipvlan driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope:         datastore.LocalScope,
+		ConnectivityScope: datastore.GlobalScope,
+	}
+	d := &driver{
+		networks: networkTable{},
+	}
+	d.initStore(config)
+
+	return dc.RegisterDriver(ipvlanType, d, c)
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	return make(map[string]interface{}, 0), nil
+}
+
+func (d *driver) Type() string {
+	return ipvlanType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+// DiscoverNew is a notification for a new discovery event.
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event.
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_endpoint.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_endpoint.go
new file mode 100644
index 0000000000..139cbaf8b7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_endpoint.go
@@ -0,0 +1,89 @@
+package ipvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// CreateEndpoint assigns the mac, ip and endpoint id for the new container
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo,
+	epOptions map[string]interface{}) error {
+	defer osl.InitOSContext()()
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+	if ifInfo.MacAddress() != nil {
+		return fmt.Errorf("%s interfaces do not support custom mac address assigment", ipvlanType)
+	}
+	ep := &endpoint{
+		id:     eid,
+		nid:    nid,
+		addr:   ifInfo.Address(),
+		addrv6: ifInfo.AddressIPv6(),
+	}
+	if ep.addr == nil {
+		return fmt.Errorf("create endpoint was not passed an IP address")
+	}
+	// disallow port mapping -p
+	if opt, ok := epOptions[netlabel.PortMap]; ok {
+		if _, ok := opt.([]types.PortBinding); ok {
+			if len(opt.([]types.PortBinding)) > 0 {
+				logrus.Warnf("%s driver does not support port mappings", ipvlanType)
+			}
+		}
+	}
+	// disallow port exposure --expose
+	if opt, ok := epOptions[netlabel.ExposedPorts]; ok {
+		if _, ok := opt.([]types.TransportPort); ok {
+			if len(opt.([]types.TransportPort)) > 0 {
+				logrus.Warnf("%s driver does not support port exposures", ipvlanType)
+			}
+		}
+	}
+
+	if err := d.storeUpdate(ep); err != nil {
+		return fmt.Errorf("failed to save ipvlan endpoint %s to store: %v", ep.id[0:7], err)
+	}
+
+	n.addEndpoint(ep)
+
+	return nil
+}
+
+// DeleteEndpoint remove the endpoint and associated netlink interface
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	defer osl.InitOSContext()()
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("endpoint id %q not found", eid)
+	}
+	if link, err := ns.NlHandle().LinkByName(ep.srcName); err == nil {
+		if err := ns.NlHandle().LinkDel(link); err != nil {
+			logrus.WithError(err).Warnf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+		}
+	}
+
+	if err := d.storeDelete(ep); err != nil {
+		logrus.Warnf("Failed to remove ipvlan endpoint %s from store: %v", ep.id[0:7], err)
+	}
+	n.deleteEndpoint(ep.id)
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_joinleave.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_joinleave.go
new file mode 100644
index 0000000000..9d229a245e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_joinleave.go
@@ -0,0 +1,199 @@
+package ipvlan
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type staticRoute struct {
+	Destination *net.IPNet
+	RouteType   int
+	NextHop     net.IP
+}
+
+const (
+	defaultV4RouteCidr = "0.0.0.0/0"
+	defaultV6RouteCidr = "::/0"
+)
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	defer osl.InitOSContext()()
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+	endpoint := n.endpoint(eid)
+	if endpoint == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+	// generate a name for the iface that will be renamed to eth0 in the sbox
+	containerIfName, err := netutils.GenerateIfaceName(ns.NlHandle(), vethPrefix, vethLen)
+	if err != nil {
+		return fmt.Errorf("error generating an interface name: %v", err)
+	}
+	// create the netlink ipvlan interface
+	vethName, err := createIPVlan(containerIfName, n.config.Parent, n.config.IpvlanMode)
+	if err != nil {
+		return err
+	}
+	// bind the generated iface name to the endpoint
+	endpoint.srcName = vethName
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+	if n.config.IpvlanMode == modeL3 {
+		// disable gateway services to add a default gw using dev eth0 only
+		jinfo.DisableGatewayService()
+		defaultRoute, err := ifaceGateway(defaultV4RouteCidr)
+		if err != nil {
+			return err
+		}
+		if err := jinfo.AddStaticRoute(defaultRoute.Destination, defaultRoute.RouteType, defaultRoute.NextHop); err != nil {
+			return fmt.Errorf("failed to set an ipvlan l3 mode ipv4 default gateway: %v", err)
+		}
+		logrus.Debugf("Ipvlan Endpoint Joined with IPv4_Addr: %s, Ipvlan_Mode: %s, Parent: %s",
+			ep.addr.IP.String(), n.config.IpvlanMode, n.config.Parent)
+		// If the endpoint has a v6 address, set a v6 default route
+		if ep.addrv6 != nil {
+			default6Route, err := ifaceGateway(defaultV6RouteCidr)
+			if err != nil {
+				return err
+			}
+			if err = jinfo.AddStaticRoute(default6Route.Destination, default6Route.RouteType, default6Route.NextHop); err != nil {
+				return fmt.Errorf("failed to set an ipvlan l3 mode ipv6 default gateway: %v", err)
+			}
+			logrus.Debugf("Ipvlan Endpoint Joined with IPv6_Addr: %s, Ipvlan_Mode: %s, Parent: %s",
+				ep.addrv6.IP.String(), n.config.IpvlanMode, n.config.Parent)
+		}
+	}
+	if n.config.IpvlanMode == modeL2 {
+		// parse and correlate the endpoint v4 address with the available v4 subnets
+		if len(n.config.Ipv4Subnets) > 0 {
+			s := n.getSubnetforIPv4(ep.addr)
+			if s == nil {
+				return fmt.Errorf("could not find a valid ipv4 subnet for endpoint %s", eid)
+			}
+			v4gw, _, err := net.ParseCIDR(s.GwIP)
+			if err != nil {
+				return fmt.Errorf("gatway %s is not a valid ipv4 address: %v", s.GwIP, err)
+			}
+			err = jinfo.SetGateway(v4gw)
+			if err != nil {
+				return err
+			}
+			logrus.Debugf("Ipvlan Endpoint Joined with IPv4_Addr: %s, Gateway: %s, Ipvlan_Mode: %s, Parent: %s",
+				ep.addr.IP.String(), v4gw.String(), n.config.IpvlanMode, n.config.Parent)
+		}
+		// parse and correlate the endpoint v6 address with the available v6 subnets
+		if len(n.config.Ipv6Subnets) > 0 {
+			s := n.getSubnetforIPv6(ep.addrv6)
+			if s == nil {
+				return fmt.Errorf("could not find a valid ipv6 subnet for endpoint %s", eid)
+			}
+			v6gw, _, err := net.ParseCIDR(s.GwIP)
+			if err != nil {
+				return fmt.Errorf("gatway %s is not a valid ipv6 address: %v", s.GwIP, err)
+			}
+			err = jinfo.SetGatewayIPv6(v6gw)
+			if err != nil {
+				return err
+			}
+			logrus.Debugf("Ipvlan Endpoint Joined with IPv6_Addr: %s, Gateway: %s, Ipvlan_Mode: %s, Parent: %s",
+				ep.addrv6.IP.String(), v6gw.String(), n.config.IpvlanMode, n.config.Parent)
+		}
+	}
+	iNames := jinfo.InterfaceName()
+	err = iNames.SetNames(vethName, containerVethPrefix)
+	if err != nil {
+		return err
+	}
+	if err = d.storeUpdate(ep); err != nil {
+		return fmt.Errorf("failed to save ipvlan endpoint %s to store: %v", ep.id[0:7], err)
+	}
+
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	defer osl.InitOSContext()()
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+	if endpoint == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+
+	return nil
+}
+
+// ifaceGateway returns a static route for either v4/v6 to be set to the container eth0
+func ifaceGateway(dfNet string) (*staticRoute, error) {
+	nh, dst, err := net.ParseCIDR(dfNet)
+	if err != nil {
+		return nil, fmt.Errorf("unable to parse default route %v", err)
+	}
+	defaultRoute := &staticRoute{
+		Destination: dst,
+		RouteType:   types.CONNECTED,
+		NextHop:     nh,
+	}
+
+	return defaultRoute, nil
+}
+
+// getSubnetforIPv4 returns the ipv4 subnet to which the given IP belongs
+func (n *network) getSubnetforIPv4(ip *net.IPNet) *ipv4Subnet {
+	for _, s := range n.config.Ipv4Subnets {
+		_, snet, err := net.ParseCIDR(s.SubnetIP)
+		if err != nil {
+			return nil
+		}
+		// first check if the mask lengths are the same
+		i, _ := snet.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if snet.Contains(ip.IP) {
+			return s
+		}
+	}
+
+	return nil
+}
+
+// getSubnetforIPv6 returns the ipv6 subnet to which the given IP belongs
+func (n *network) getSubnetforIPv6(ip *net.IPNet) *ipv6Subnet {
+	for _, s := range n.config.Ipv6Subnets {
+		_, snet, err := net.ParseCIDR(s.SubnetIP)
+		if err != nil {
+			return nil
+		}
+		// first check if the mask lengths are the same
+		i, _ := snet.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if snet.Contains(ip.IP) {
+			return s
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_network.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_network.go
new file mode 100644
index 0000000000..437919cf9d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_network.go
@@ -0,0 +1,252 @@
+package ipvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/docker/pkg/parsers/kernel"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// CreateNetwork the network for the specified driver type
+func (d *driver) CreateNetwork(nid string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	defer osl.InitOSContext()()
+	kv, err := kernel.GetKernelVersion()
+	if err != nil {
+		return fmt.Errorf("Failed to check kernel version for %s driver support: %v", ipvlanType, err)
+	}
+	// ensure Kernel version is >= v4.2 for ipvlan support
+	if kv.Kernel < ipvlanKernelVer || (kv.Kernel == ipvlanKernelVer && kv.Major < ipvlanMajorVer) {
+		return fmt.Errorf("kernel version failed to meet the minimum ipvlan kernel requirement of %d.%d, found %d.%d.%d",
+			ipvlanKernelVer, ipvlanMajorVer, kv.Kernel, kv.Major, kv.Minor)
+	}
+	// reject a null v4 network
+	if len(ipV4Data) == 0 || ipV4Data[0].Pool.String() == "0.0.0.0/0" {
+		return fmt.Errorf("ipv4 pool is empty")
+	}
+	// parse and validate the config and bind to networkConfiguration
+	config, err := parseNetworkOptions(nid, option)
+	if err != nil {
+		return err
+	}
+	config.ID = nid
+	err = config.processIPAM(nid, ipV4Data, ipV6Data)
+	if err != nil {
+		return err
+	}
+	// verify the ipvlan mode from -o ipvlan_mode option
+	switch config.IpvlanMode {
+	case "", modeL2:
+		// default to ipvlan L2 mode if -o ipvlan_mode is empty
+		config.IpvlanMode = modeL2
+	case modeL3:
+		config.IpvlanMode = modeL3
+	default:
+		return fmt.Errorf("requested ipvlan mode '%s' is not valid, 'l2' mode is the ipvlan driver default", config.IpvlanMode)
+	}
+	// loopback is not a valid parent link
+	if config.Parent == "lo" {
+		return fmt.Errorf("loopback interface is not a valid %s parent link", ipvlanType)
+	}
+	// if parent interface not specified, create a dummy type link to use named dummy+net_id
+	if config.Parent == "" {
+		config.Parent = getDummyName(stringid.TruncateID(config.ID))
+		// empty parent and --internal are handled the same. Set here to update k/v
+		config.Internal = true
+	}
+	err = d.createNetwork(config)
+	if err != nil {
+		return err
+	}
+	// update persistent db, rollback on fail
+	err = d.storeUpdate(config)
+	if err != nil {
+		d.deleteNetwork(config.ID)
+		logrus.Debugf("encoutered an error rolling back a network create for %s : %v", config.ID, err)
+		return err
+	}
+
+	return nil
+}
+
+// createNetwork is used by new network callbacks and persistent network cache
+func (d *driver) createNetwork(config *configuration) error {
+	networkList := d.getNetworks()
+	for _, nw := range networkList {
+		if config.Parent == nw.config.Parent {
+			return fmt.Errorf("network %s is already using parent interface %s",
+				getDummyName(stringid.TruncateID(nw.config.ID)), config.Parent)
+		}
+	}
+	if !parentExists(config.Parent) {
+		// if the --internal flag is set, create a dummy link
+		if config.Internal {
+			err := createDummyLink(config.Parent, getDummyName(stringid.TruncateID(config.ID)))
+			if err != nil {
+				return err
+			}
+			config.CreatedSlaveLink = true
+			// notify the user in logs they have limited comunicatins
+			if config.Parent == getDummyName(stringid.TruncateID(config.ID)) {
+				logrus.Debugf("Empty -o parent= and --internal flags limit communications to other containers inside of network: %s",
+					config.Parent)
+			}
+		} else {
+			// if the subinterface parent_iface.vlan_id checks do not pass, return err.
+			//  a valid example is 'eth0.10' for a parent iface 'eth0' with a vlan id '10'
+			err := createVlanLink(config.Parent)
+			if err != nil {
+				return err
+			}
+			// if driver created the networks slave link, record it for future deletion
+			config.CreatedSlaveLink = true
+		}
+	}
+	n := &network{
+		id:        config.ID,
+		driver:    d,
+		endpoints: endpointTable{},
+		config:    config,
+	}
+	// add the *network
+	d.addNetwork(n)
+
+	return nil
+}
+
+// DeleteNetwork the network for the specified driver type
+func (d *driver) DeleteNetwork(nid string) error {
+	defer osl.InitOSContext()()
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %s not found", nid)
+	}
+	// if the driver created the slave interface, delete it, otherwise leave it
+	if ok := n.config.CreatedSlaveLink; ok {
+		// if the interface exists, only delete if it matches iface.vlan or dummy.net_id naming
+		if ok := parentExists(n.config.Parent); ok {
+			// only delete the link if it is named the net_id
+			if n.config.Parent == getDummyName(stringid.TruncateID(nid)) {
+				err := delDummyLink(n.config.Parent)
+				if err != nil {
+					logrus.Debugf("link %s was not deleted, continuing the delete network operation: %v",
+						n.config.Parent, err)
+				}
+			} else {
+				// only delete the link if it matches iface.vlan naming
+				err := delVlanLink(n.config.Parent)
+				if err != nil {
+					logrus.Debugf("link %s was not deleted, continuing the delete network operation: %v",
+						n.config.Parent, err)
+				}
+			}
+		}
+	}
+	for _, ep := range n.endpoints {
+		if link, err := ns.NlHandle().LinkByName(ep.srcName); err == nil {
+			if err := ns.NlHandle().LinkDel(link); err != nil {
+				logrus.WithError(err).Warnf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+			}
+		}
+
+		if err := d.storeDelete(ep); err != nil {
+			logrus.Warnf("Failed to remove ipvlan endpoint %s from store: %v", ep.id[0:7], err)
+		}
+	}
+	// delete the *network
+	d.deleteNetwork(nid)
+	// delete the network record from persistent cache
+	err := d.storeDelete(n.config)
+	if err != nil {
+		return fmt.Errorf("error deleting deleting id %s from datastore: %v", nid, err)
+	}
+	return nil
+}
+
+// parseNetworkOptions parse docker network options
+func parseNetworkOptions(id string, option options.Generic) (*configuration, error) {
+	var (
+		err    error
+		config = &configuration{}
+	)
+	// parse generic labels first
+	if genData, ok := option[netlabel.GenericData]; ok && genData != nil {
+		if config, err = parseNetworkGenericOptions(genData); err != nil {
+			return nil, err
+		}
+	}
+	// setting the parent to "" will trigger an isolated network dummy parent link
+	if _, ok := option[netlabel.Internal]; ok {
+		config.Internal = true
+		// empty --parent= and --internal are handled the same.
+		config.Parent = ""
+	}
+	return config, nil
+}
+
+// parseNetworkGenericOptions parse generic driver docker network options
+func parseNetworkGenericOptions(data interface{}) (*configuration, error) {
+	var (
+		err    error
+		config *configuration
+	)
+	switch opt := data.(type) {
+	case *configuration:
+		config = opt
+	case map[string]string:
+		config = &configuration{}
+		err = config.fromOptions(opt)
+	case options.Generic:
+		var opaqueConfig interface{}
+		if opaqueConfig, err = options.GenerateFromModel(opt, config); err == nil {
+			config = opaqueConfig.(*configuration)
+		}
+	default:
+		err = types.BadRequestErrorf("unrecognized network configuration format: %v", opt)
+	}
+	return config, err
+}
+
+// fromOptions binds the generic options to networkConfiguration to cache
+func (config *configuration) fromOptions(labels map[string]string) error {
+	for label, value := range labels {
+		switch label {
+		case parentOpt:
+			// parse driver option '-o parent'
+			config.Parent = value
+		case driverModeOpt:
+			// parse driver option '-o ipvlan_mode'
+			config.IpvlanMode = value
+		}
+	}
+	return nil
+}
+
+// processIPAM parses v4 and v6 IP information and binds it to the network configuration
+func (config *configuration) processIPAM(id string, ipamV4Data, ipamV6Data []driverapi.IPAMData) error {
+	if len(ipamV4Data) > 0 {
+		for _, ipd := range ipamV4Data {
+			s := &ipv4Subnet{
+				SubnetIP: ipd.Pool.String(),
+				GwIP:     ipd.Gateway.String(),
+			}
+			config.Ipv4Subnets = append(config.Ipv4Subnets, s)
+		}
+	}
+	if len(ipamV6Data) > 0 {
+		for _, ipd := range ipamV6Data {
+			s := &ipv6Subnet{
+				SubnetIP: ipd.Pool.String(),
+				GwIP:     ipd.Gateway.String(),
+			}
+			config.Ipv6Subnets = append(config.Ipv6Subnets, s)
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_setup.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_setup.go
new file mode 100644
index 0000000000..28d6cca4e0
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_setup.go
@@ -0,0 +1,205 @@
+package ipvlan
+
+import (
+	"fmt"
+	"strconv"
+	"strings"
+
+	"github.com/docker/libnetwork/ns"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+const (
+	dummyPrefix     = "di-" // ipvlan prefix for dummy parent interface
+	ipvlanKernelVer = 4     // minimum ipvlan kernel support
+	ipvlanMajorVer  = 2     // minimum ipvlan major kernel support
+)
+
+// createIPVlan Create the ipvlan slave specifying the source name
+func createIPVlan(containerIfName, parent, ipvlanMode string) (string, error) {
+	// Set the ipvlan mode. Default is bridge mode
+	mode, err := setIPVlanMode(ipvlanMode)
+	if err != nil {
+		return "", fmt.Errorf("Unsupported %s ipvlan mode: %v", ipvlanMode, err)
+	}
+	// verify the Docker host interface acting as the macvlan parent iface exists
+	if !parentExists(parent) {
+		return "", fmt.Errorf("the requested parent interface %s was not found on the Docker host", parent)
+	}
+	// Get the link for the master index (Example: the docker host eth iface)
+	parentLink, err := ns.NlHandle().LinkByName(parent)
+	if err != nil {
+		return "", fmt.Errorf("error occoured looking up the %s parent iface %s error: %s", ipvlanType, parent, err)
+	}
+	// Create an ipvlan link
+	ipvlan := &netlink.IPVlan{
+		LinkAttrs: netlink.LinkAttrs{
+			Name:        containerIfName,
+			ParentIndex: parentLink.Attrs().Index,
+		},
+		Mode: mode,
+	}
+	if err := ns.NlHandle().LinkAdd(ipvlan); err != nil {
+		// If a user creates a macvlan and ipvlan on same parent, only one slave iface can be active at a time.
+		return "", fmt.Errorf("failed to create the %s port: %v", ipvlanType, err)
+	}
+
+	return ipvlan.Attrs().Name, nil
+}
+
+// setIPVlanMode setter for one of the two ipvlan port types
+func setIPVlanMode(mode string) (netlink.IPVlanMode, error) {
+	switch mode {
+	case modeL2:
+		return netlink.IPVLAN_MODE_L2, nil
+	case modeL3:
+		return netlink.IPVLAN_MODE_L3, nil
+	default:
+		return 0, fmt.Errorf("Unknown ipvlan mode: %s", mode)
+	}
+}
+
+// parentExists check if the specified interface exists in the default namespace
+func parentExists(ifaceStr string) bool {
+	_, err := ns.NlHandle().LinkByName(ifaceStr)
+	if err != nil {
+		return false
+	}
+
+	return true
+}
+
+// createVlanLink parses sub-interfaces and vlan id for creation
+func createVlanLink(parentName string) error {
+	if strings.Contains(parentName, ".") {
+		parent, vidInt, err := parseVlan(parentName)
+		if err != nil {
+			return err
+		}
+		// VLAN identifier or VID is a 12-bit field specifying the VLAN to which the frame belongs
+		if vidInt > 4094 || vidInt < 1 {
+			return fmt.Errorf("vlan id must be between 1-4094, received: %d", vidInt)
+		}
+		// get the parent link to attach a vlan subinterface
+		parentLink, err := ns.NlHandle().LinkByName(parent)
+		if err != nil {
+			return fmt.Errorf("failed to find master interface %s on the Docker host: %v", parent, err)
+		}
+		vlanLink := &netlink.Vlan{
+			LinkAttrs: netlink.LinkAttrs{
+				Name:        parentName,
+				ParentIndex: parentLink.Attrs().Index,
+			},
+			VlanId: vidInt,
+		}
+		// create the subinterface
+		if err := ns.NlHandle().LinkAdd(vlanLink); err != nil {
+			return fmt.Errorf("failed to create %s vlan link: %v", vlanLink.Name, err)
+		}
+		// Bring the new netlink iface up
+		if err := ns.NlHandle().LinkSetUp(vlanLink); err != nil {
+			return fmt.Errorf("failed to enable %s the ipvlan parent link %v", vlanLink.Name, err)
+		}
+		logrus.Debugf("Added a vlan tagged netlink subinterface: %s with a vlan id: %d", parentName, vidInt)
+		return nil
+	}
+
+	return fmt.Errorf("invalid subinterface vlan name %s, example formatting is eth0.10", parentName)
+}
+
+// delVlanLink verifies only sub-interfaces with a vlan id get deleted
+func delVlanLink(linkName string) error {
+	if strings.Contains(linkName, ".") {
+		_, _, err := parseVlan(linkName)
+		if err != nil {
+			return err
+		}
+		// delete the vlan subinterface
+		vlanLink, err := ns.NlHandle().LinkByName(linkName)
+		if err != nil {
+			return fmt.Errorf("failed to find interface %s on the Docker host : %v", linkName, err)
+		}
+		// verify a parent interface isn't being deleted
+		if vlanLink.Attrs().ParentIndex == 0 {
+			return fmt.Errorf("interface %s does not appear to be a slave device: %v", linkName, err)
+		}
+		// delete the ipvlan slave device
+		if err := ns.NlHandle().LinkDel(vlanLink); err != nil {
+			return fmt.Errorf("failed to delete  %s link: %v", linkName, err)
+		}
+		logrus.Debugf("Deleted a vlan tagged netlink subinterface: %s", linkName)
+	}
+	// if the subinterface doesn't parse to iface.vlan_id leave the interface in
+	// place since it could be a user specified name not created by the driver.
+	return nil
+}
+
+// parseVlan parses and verifies a slave interface name: -o parent=eth0.10
+func parseVlan(linkName string) (string, int, error) {
+	// parse -o parent=eth0.10
+	splitName := strings.Split(linkName, ".")
+	if len(splitName) != 2 {
+		return "", 0, fmt.Errorf("required interface name format is: name.vlan_id, ex. eth0.10 for vlan 10, instead received %s", linkName)
+	}
+	parent, vidStr := splitName[0], splitName[1]
+	// validate type and convert vlan id to int
+	vidInt, err := strconv.Atoi(vidStr)
+	if err != nil {
+		return "", 0, fmt.Errorf("unable to parse a valid vlan id from: %s (ex. eth0.10 for vlan 10)", vidStr)
+	}
+	// Check if the interface exists
+	if !parentExists(parent) {
+		return "", 0, fmt.Errorf("-o parent interface does was not found on the host: %s", parent)
+	}
+
+	return parent, vidInt, nil
+}
+
+// createDummyLink creates a dummy0 parent link
+func createDummyLink(dummyName, truncNetID string) error {
+	// create a parent interface since one was not specified
+	parent := &netlink.Dummy{
+		LinkAttrs: netlink.LinkAttrs{
+			Name: dummyName,
+		},
+	}
+	if err := ns.NlHandle().LinkAdd(parent); err != nil {
+		return err
+	}
+	parentDummyLink, err := ns.NlHandle().LinkByName(dummyName)
+	if err != nil {
+		return fmt.Errorf("error occoured looking up the %s parent iface %s error: %s", ipvlanType, dummyName, err)
+	}
+	// bring the new netlink iface up
+	if err := ns.NlHandle().LinkSetUp(parentDummyLink); err != nil {
+		return fmt.Errorf("failed to enable %s the ipvlan parent link: %v", dummyName, err)
+	}
+
+	return nil
+}
+
+// delDummyLink deletes the link type dummy used when -o parent is not passed
+func delDummyLink(linkName string) error {
+	// delete the vlan subinterface
+	dummyLink, err := ns.NlHandle().LinkByName(linkName)
+	if err != nil {
+		return fmt.Errorf("failed to find link %s on the Docker host : %v", linkName, err)
+	}
+	// verify a parent interface is being deleted
+	if dummyLink.Attrs().ParentIndex != 0 {
+		return fmt.Errorf("link %s is not a parent dummy interface", linkName)
+	}
+	// delete the ipvlan dummy device
+	if err := ns.NlHandle().LinkDel(dummyLink); err != nil {
+		return fmt.Errorf("failed to delete the dummy %s link: %v", linkName, err)
+	}
+	logrus.Debugf("Deleted a dummy parent link: %s", linkName)
+
+	return nil
+}
+
+// getDummyName returns the name of a dummy parent with truncated net ID and driver prefix
+func getDummyName(netID string) string {
+	return dummyPrefix + netID
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_state.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_state.go
new file mode 100644
index 0000000000..2a4ad25b40
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_state.go
@@ -0,0 +1,115 @@
+package ipvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+func (d *driver) network(nid string) *network {
+	d.Lock()
+	n, ok := d.networks[nid]
+	d.Unlock()
+	if !ok {
+		logrus.Errorf("network id %s not found", nid)
+	}
+
+	return n
+}
+
+func (d *driver) addNetwork(n *network) {
+	d.Lock()
+	d.networks[n.id] = n
+	d.Unlock()
+}
+
+func (d *driver) deleteNetwork(nid string) {
+	d.Lock()
+	delete(d.networks, nid)
+	d.Unlock()
+}
+
+// getNetworks Safely returns a slice of existng networks
+func (d *driver) getNetworks() []*network {
+	d.Lock()
+	defer d.Unlock()
+
+	ls := make([]*network, 0, len(d.networks))
+	for _, nw := range d.networks {
+		ls = append(ls, nw)
+	}
+
+	return ls
+}
+
+func (n *network) endpoint(eid string) *endpoint {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.endpoints[eid]
+}
+
+func (n *network) addEndpoint(ep *endpoint) {
+	n.Lock()
+	n.endpoints[ep.id] = ep
+	n.Unlock()
+}
+
+func (n *network) deleteEndpoint(eid string) {
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+}
+
+func (n *network) getEndpoint(eid string) (*endpoint, error) {
+	n.Lock()
+	defer n.Unlock()
+	if eid == "" {
+		return nil, fmt.Errorf("endpoint id %s not found", eid)
+	}
+	if ep, ok := n.endpoints[eid]; ok {
+		return ep, nil
+	}
+
+	return nil, nil
+}
+
+func validateID(nid, eid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+	if eid == "" {
+		return fmt.Errorf("invalid endpoint id")
+	}
+
+	return nil
+}
+
+func (n *network) sandbox() osl.Sandbox {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.sbox
+}
+
+func (n *network) setSandbox(sbox osl.Sandbox) {
+	n.Lock()
+	n.sbox = sbox
+	n.Unlock()
+}
+
+func (d *driver) getNetwork(id string) (*network, error) {
+	d.Lock()
+	defer d.Unlock()
+	if id == "" {
+		return nil, types.BadRequestErrorf("invalid network id: %s", id)
+	}
+
+	if nw, ok := d.networks[id]; ok {
+		return nw, nil
+	}
+
+	return nil, types.NotFoundErrorf("network not found: %s", id)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_store.go b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_store.go
new file mode 100644
index 0000000000..197e29966a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/ipvlan/ipvlan_store.go
@@ -0,0 +1,349 @@
+package ipvlan
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	ipvlanPrefix         = "ipvlan"
+	ipvlanNetworkPrefix  = ipvlanPrefix + "/network"
+	ipvlanEndpointPrefix = ipvlanPrefix + "/endpoint"
+)
+
+// networkConfiguration for this driver's network specific configuration
+type configuration struct {
+	ID               string
+	Mtu              int
+	dbIndex          uint64
+	dbExists         bool
+	Internal         bool
+	Parent           string
+	IpvlanMode       string
+	CreatedSlaveLink bool
+	Ipv4Subnets      []*ipv4Subnet
+	Ipv6Subnets      []*ipv6Subnet
+}
+
+type ipv4Subnet struct {
+	SubnetIP string
+	GwIP     string
+}
+
+type ipv6Subnet struct {
+	SubnetIP string
+	GwIP     string
+}
+
+// initStore drivers are responsible for caching their own persistent state
+func (d *driver) initStore(option map[string]interface{}) error {
+	if data, ok := option[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("ipvlan driver failed to initialize data store: %v", err)
+		}
+
+		return d.populateNetworks()
+	}
+
+	return nil
+}
+
+// populateNetworks is invoked at driver init to recreate persistently stored networks
+func (d *driver) populateNetworks() error {
+	kvol, err := d.store.List(datastore.Key(ipvlanNetworkPrefix), &configuration{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get ipvlan network configurations from store: %v", err)
+	}
+	// If empty it simply means no ipvlan networks have been created yet
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+	for _, kvo := range kvol {
+		config := kvo.(*configuration)
+		if err = d.createNetwork(config); err != nil {
+			logrus.Warnf("could not create ipvlan network for id %s from persistent state", config.ID)
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) populateEndpoints() error {
+	kvol, err := d.store.List(datastore.Key(ipvlanEndpointPrefix), &endpoint{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get ipvlan endpoints from store: %v", err)
+	}
+
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ep := kvo.(*endpoint)
+		n, ok := d.networks[ep.nid]
+		if !ok {
+			logrus.Debugf("Network (%s) not found for restored ipvlan endpoint (%s)", ep.nid[0:7], ep.id[0:7])
+			logrus.Debugf("Deleting stale ipvlan endpoint (%s) from store", ep.id[0:7])
+			if err := d.storeDelete(ep); err != nil {
+				logrus.Debugf("Failed to delete stale ipvlan endpoint (%s) from store", ep.id[0:7])
+			}
+			continue
+		}
+		n.endpoints[ep.id] = ep
+		logrus.Debugf("Endpoint (%s) restored to network (%s)", ep.id[0:7], ep.nid[0:7])
+	}
+
+	return nil
+}
+
+// storeUpdate used to update persistent ipvlan network records as they are created
+func (d *driver) storeUpdate(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Warnf("ipvlan store not initialized. kv object %s is not added to the store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+	if err := d.store.PutObjectAtomic(kvObject); err != nil {
+		return fmt.Errorf("failed to update ipvlan store for object type %T: %v", kvObject, err)
+	}
+
+	return nil
+}
+
+// storeDelete used to delete ipvlan network records from persistent cache as they are deleted
+func (d *driver) storeDelete(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Debugf("ipvlan store not initialized. kv object %s is not deleted from store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+retry:
+	if err := d.store.DeleteObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := d.store.GetObject(datastore.Key(kvObject.Key()...), kvObject); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to delete: %v", err)
+			}
+			goto retry
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (config *configuration) MarshalJSON() ([]byte, error) {
+	nMap := make(map[string]interface{})
+	nMap["ID"] = config.ID
+	nMap["Mtu"] = config.Mtu
+	nMap["Parent"] = config.Parent
+	nMap["IpvlanMode"] = config.IpvlanMode
+	nMap["Internal"] = config.Internal
+	nMap["CreatedSubIface"] = config.CreatedSlaveLink
+	if len(config.Ipv4Subnets) > 0 {
+		iis, err := json.Marshal(config.Ipv4Subnets)
+		if err != nil {
+			return nil, err
+		}
+		nMap["Ipv4Subnets"] = string(iis)
+	}
+	if len(config.Ipv6Subnets) > 0 {
+		iis, err := json.Marshal(config.Ipv6Subnets)
+		if err != nil {
+			return nil, err
+		}
+		nMap["Ipv6Subnets"] = string(iis)
+	}
+
+	return json.Marshal(nMap)
+}
+
+func (config *configuration) UnmarshalJSON(b []byte) error {
+	var (
+		err  error
+		nMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &nMap); err != nil {
+		return err
+	}
+	config.ID = nMap["ID"].(string)
+	config.Mtu = int(nMap["Mtu"].(float64))
+	config.Parent = nMap["Parent"].(string)
+	config.IpvlanMode = nMap["IpvlanMode"].(string)
+	config.Internal = nMap["Internal"].(bool)
+	config.CreatedSlaveLink = nMap["CreatedSubIface"].(bool)
+	if v, ok := nMap["Ipv4Subnets"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &config.Ipv4Subnets); err != nil {
+			return err
+		}
+	}
+	if v, ok := nMap["Ipv6Subnets"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &config.Ipv6Subnets); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (config *configuration) Key() []string {
+	return []string{ipvlanNetworkPrefix, config.ID}
+}
+
+func (config *configuration) KeyPrefix() []string {
+	return []string{ipvlanNetworkPrefix}
+}
+
+func (config *configuration) Value() []byte {
+	b, err := json.Marshal(config)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (config *configuration) SetValue(value []byte) error {
+	return json.Unmarshal(value, config)
+}
+
+func (config *configuration) Index() uint64 {
+	return config.dbIndex
+}
+
+func (config *configuration) SetIndex(index uint64) {
+	config.dbIndex = index
+	config.dbExists = true
+}
+
+func (config *configuration) Exists() bool {
+	return config.dbExists
+}
+
+func (config *configuration) Skip() bool {
+	return false
+}
+
+func (config *configuration) New() datastore.KVObject {
+	return &configuration{}
+}
+
+func (config *configuration) CopyTo(o datastore.KVObject) error {
+	dstNcfg := o.(*configuration)
+	*dstNcfg = *config
+	return nil
+}
+
+func (config *configuration) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (ep *endpoint) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	epMap["id"] = ep.id
+	epMap["nid"] = ep.nid
+	epMap["SrcName"] = ep.srcName
+	if len(ep.mac) != 0 {
+		epMap["MacAddress"] = ep.mac.String()
+	}
+	if ep.addr != nil {
+		epMap["Addr"] = ep.addr.String()
+	}
+	if ep.addrv6 != nil {
+		epMap["Addrv6"] = ep.addrv6.String()
+	}
+	return json.Marshal(epMap)
+}
+
+func (ep *endpoint) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return fmt.Errorf("Failed to unmarshal to ipvlan endpoint: %v", err)
+	}
+
+	if v, ok := epMap["MacAddress"]; ok {
+		if ep.mac, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode ipvlan endpoint MAC address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addr"]; ok {
+		if ep.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode ipvlan endpoint IPv4 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addrv6"]; ok {
+		if ep.addrv6, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode ipvlan endpoint IPv6 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	ep.id = epMap["id"].(string)
+	ep.nid = epMap["nid"].(string)
+	ep.srcName = epMap["SrcName"].(string)
+
+	return nil
+}
+
+func (ep *endpoint) Key() []string {
+	return []string{ipvlanEndpointPrefix, ep.id}
+}
+
+func (ep *endpoint) KeyPrefix() []string {
+	return []string{ipvlanEndpointPrefix}
+}
+
+func (ep *endpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *endpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *endpoint) Index() uint64 {
+	return ep.dbIndex
+}
+
+func (ep *endpoint) SetIndex(index uint64) {
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *endpoint) Exists() bool {
+	return ep.dbExists
+}
+
+func (ep *endpoint) Skip() bool {
+	return false
+}
+
+func (ep *endpoint) New() datastore.KVObject {
+	return &endpoint{}
+}
+
+func (ep *endpoint) CopyTo(o datastore.KVObject) error {
+	dstEp := o.(*endpoint)
+	*dstEp = *ep
+	return nil
+}
+
+func (ep *endpoint) DataScope() string {
+	return datastore.LocalScope
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan.go
new file mode 100644
index 0000000000..872e6f3ec1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan.go
@@ -0,0 +1,117 @@
+package macvlan
+
+import (
+	"net"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+)
+
+const (
+	vethLen             = 7
+	containerVethPrefix = "eth"
+	vethPrefix          = "veth"
+	macvlanType         = "macvlan"  // driver type name
+	modePrivate         = "private"  // macvlan mode private
+	modeVepa            = "vepa"     // macvlan mode vepa
+	modeBridge          = "bridge"   // macvlan mode bridge
+	modePassthru        = "passthru" // macvlan mode passthrough
+	parentOpt           = "parent"   // parent interface -o parent
+	modeOpt             = "_mode"    // macvlan mode ux opt suffix
+)
+
+var driverModeOpt = macvlanType + modeOpt // mode --option macvlan_mode
+
+type endpointTable map[string]*endpoint
+
+type networkTable map[string]*network
+
+type driver struct {
+	networks networkTable
+	sync.Once
+	sync.Mutex
+	store datastore.DataStore
+}
+
+type endpoint struct {
+	id       string
+	nid      string
+	mac      net.HardwareAddr
+	addr     *net.IPNet
+	addrv6   *net.IPNet
+	srcName  string
+	dbIndex  uint64
+	dbExists bool
+}
+
+type network struct {
+	id        string
+	sbox      osl.Sandbox
+	endpoints endpointTable
+	driver    *driver
+	config    *configuration
+	sync.Mutex
+}
+
+// Init initializes and registers the libnetwork macvlan driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope:         datastore.LocalScope,
+		ConnectivityScope: datastore.GlobalScope,
+	}
+	d := &driver{
+		networks: networkTable{},
+	}
+	d.initStore(config)
+
+	return dc.RegisterDriver(macvlanType, d, c)
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	return make(map[string]interface{}, 0), nil
+}
+
+func (d *driver) Type() string {
+	return macvlanType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+// DiscoverNew is a notification for a new discovery event
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_endpoint.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_endpoint.go
new file mode 100644
index 0000000000..bf3e0bbd14
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_endpoint.go
@@ -0,0 +1,96 @@
+package macvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// CreateEndpoint assigns the mac, ip and endpoint id for the new container
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo,
+	epOptions map[string]interface{}) error {
+	defer osl.InitOSContext()()
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+	ep := &endpoint{
+		id:     eid,
+		nid:    nid,
+		addr:   ifInfo.Address(),
+		addrv6: ifInfo.AddressIPv6(),
+		mac:    ifInfo.MacAddress(),
+	}
+	if ep.addr == nil {
+		return fmt.Errorf("create endpoint was not passed an IP address")
+	}
+	if ep.mac == nil {
+		ep.mac = netutils.GenerateMACFromIP(ep.addr.IP)
+		if err := ifInfo.SetMacAddress(ep.mac); err != nil {
+			return err
+		}
+	}
+	// disallow portmapping -p
+	if opt, ok := epOptions[netlabel.PortMap]; ok {
+		if _, ok := opt.([]types.PortBinding); ok {
+			if len(opt.([]types.PortBinding)) > 0 {
+				logrus.Warnf("%s driver does not support port mappings", macvlanType)
+			}
+		}
+	}
+	// disallow port exposure --expose
+	if opt, ok := epOptions[netlabel.ExposedPorts]; ok {
+		if _, ok := opt.([]types.TransportPort); ok {
+			if len(opt.([]types.TransportPort)) > 0 {
+				logrus.Warnf("%s driver does not support port exposures", macvlanType)
+			}
+		}
+	}
+
+	if err := d.storeUpdate(ep); err != nil {
+		return fmt.Errorf("failed to save macvlan endpoint %s to store: %v", ep.id[0:7], err)
+	}
+
+	n.addEndpoint(ep)
+
+	return nil
+}
+
+// DeleteEndpoint removes the endpoint and associated netlink interface
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	defer osl.InitOSContext()()
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("endpoint id %q not found", eid)
+	}
+	if link, err := ns.NlHandle().LinkByName(ep.srcName); err == nil {
+		if err := ns.NlHandle().LinkDel(link); err != nil {
+			logrus.WithError(err).Warnf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+		}
+	}
+
+	if err := d.storeDelete(ep); err != nil {
+		logrus.Warnf("Failed to remove macvlan endpoint %s from store: %v", ep.id[0:7], err)
+	}
+
+	n.deleteEndpoint(ep.id)
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_joinleave.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_joinleave.go
new file mode 100644
index 0000000000..778613db77
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_joinleave.go
@@ -0,0 +1,144 @@
+package macvlan
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/sirupsen/logrus"
+)
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	defer osl.InitOSContext()()
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+	endpoint := n.endpoint(eid)
+	if endpoint == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+	// generate a name for the iface that will be renamed to eth0 in the sbox
+	containerIfName, err := netutils.GenerateIfaceName(ns.NlHandle(), vethPrefix, vethLen)
+	if err != nil {
+		return fmt.Errorf("error generating an interface name: %s", err)
+	}
+	// create the netlink macvlan interface
+	vethName, err := createMacVlan(containerIfName, n.config.Parent, n.config.MacvlanMode)
+	if err != nil {
+		return err
+	}
+	// bind the generated iface name to the endpoint
+	endpoint.srcName = vethName
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+	// parse and match the endpoint address with the available v4 subnets
+	if len(n.config.Ipv4Subnets) > 0 {
+		s := n.getSubnetforIPv4(ep.addr)
+		if s == nil {
+			return fmt.Errorf("could not find a valid ipv4 subnet for endpoint %s", eid)
+		}
+		v4gw, _, err := net.ParseCIDR(s.GwIP)
+		if err != nil {
+			return fmt.Errorf("gatway %s is not a valid ipv4 address: %v", s.GwIP, err)
+		}
+		err = jinfo.SetGateway(v4gw)
+		if err != nil {
+			return err
+		}
+		logrus.Debugf("Macvlan Endpoint Joined with IPv4_Addr: %s, Gateway: %s, MacVlan_Mode: %s, Parent: %s",
+			ep.addr.IP.String(), v4gw.String(), n.config.MacvlanMode, n.config.Parent)
+	}
+	// parse and match the endpoint address with the available v6 subnets
+	if len(n.config.Ipv6Subnets) > 0 {
+		s := n.getSubnetforIPv6(ep.addrv6)
+		if s == nil {
+			return fmt.Errorf("could not find a valid ipv6 subnet for endpoint %s", eid)
+		}
+		v6gw, _, err := net.ParseCIDR(s.GwIP)
+		if err != nil {
+			return fmt.Errorf("gatway %s is not a valid ipv6 address: %v", s.GwIP, err)
+		}
+		err = jinfo.SetGatewayIPv6(v6gw)
+		if err != nil {
+			return err
+		}
+		logrus.Debugf("Macvlan Endpoint Joined with IPv6_Addr: %s Gateway: %s MacVlan_Mode: %s, Parent: %s",
+			ep.addrv6.IP.String(), v6gw.String(), n.config.MacvlanMode, n.config.Parent)
+	}
+	iNames := jinfo.InterfaceName()
+	err = iNames.SetNames(vethName, containerVethPrefix)
+	if err != nil {
+		return err
+	}
+	if err := d.storeUpdate(ep); err != nil {
+		return fmt.Errorf("failed to save macvlan endpoint %s to store: %v", ep.id[0:7], err)
+	}
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	defer osl.InitOSContext()()
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+	if endpoint == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+
+	return nil
+}
+
+// getSubnetforIP returns the ipv4 subnet to which the given IP belongs
+func (n *network) getSubnetforIPv4(ip *net.IPNet) *ipv4Subnet {
+	for _, s := range n.config.Ipv4Subnets {
+		_, snet, err := net.ParseCIDR(s.SubnetIP)
+		if err != nil {
+			return nil
+		}
+		// first check if the mask lengths are the same
+		i, _ := snet.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if snet.Contains(ip.IP) {
+			return s
+		}
+	}
+
+	return nil
+}
+
+// getSubnetforIPv6 returns the ipv6 subnet to which the given IP belongs
+func (n *network) getSubnetforIPv6(ip *net.IPNet) *ipv6Subnet {
+	for _, s := range n.config.Ipv6Subnets {
+		_, snet, err := net.ParseCIDR(s.SubnetIP)
+		if err != nil {
+			return nil
+		}
+		// first check if the mask lengths are the same
+		i, _ := snet.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if snet.Contains(ip.IP) {
+			return s
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_network.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_network.go
new file mode 100644
index 0000000000..be4cf0f445
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_network.go
@@ -0,0 +1,260 @@
+package macvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/docker/pkg/parsers/kernel"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// CreateNetwork the network for the specified driver type
+func (d *driver) CreateNetwork(nid string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	defer osl.InitOSContext()()
+	kv, err := kernel.GetKernelVersion()
+	if err != nil {
+		return fmt.Errorf("failed to check kernel version for %s driver support: %v", macvlanType, err)
+	}
+	// ensure Kernel version is >= v3.9 for macvlan support
+	if kv.Kernel < macvlanKernelVer || (kv.Kernel == macvlanKernelVer && kv.Major < macvlanMajorVer) {
+		return fmt.Errorf("kernel version failed to meet the minimum macvlan kernel requirement of %d.%d, found %d.%d.%d",
+			macvlanKernelVer, macvlanMajorVer, kv.Kernel, kv.Major, kv.Minor)
+	}
+	// reject a null v4 network
+	if len(ipV4Data) == 0 || ipV4Data[0].Pool.String() == "0.0.0.0/0" {
+		return fmt.Errorf("ipv4 pool is empty")
+	}
+	// parse and validate the config and bind to networkConfiguration
+	config, err := parseNetworkOptions(nid, option)
+	if err != nil {
+		return err
+	}
+	config.ID = nid
+	err = config.processIPAM(nid, ipV4Data, ipV6Data)
+	if err != nil {
+		return err
+	}
+	// verify the macvlan mode from -o macvlan_mode option
+	switch config.MacvlanMode {
+	case "", modeBridge:
+		// default to macvlan bridge mode if -o macvlan_mode is empty
+		config.MacvlanMode = modeBridge
+	case modePrivate:
+		config.MacvlanMode = modePrivate
+	case modePassthru:
+		config.MacvlanMode = modePassthru
+	case modeVepa:
+		config.MacvlanMode = modeVepa
+	default:
+		return fmt.Errorf("requested macvlan mode '%s' is not valid, 'bridge' mode is the macvlan driver default", config.MacvlanMode)
+	}
+	// loopback is not a valid parent link
+	if config.Parent == "lo" {
+		return fmt.Errorf("loopback interface is not a valid %s parent link", macvlanType)
+	}
+	// if parent interface not specified, create a dummy type link to use named dummy+net_id
+	if config.Parent == "" {
+		config.Parent = getDummyName(stringid.TruncateID(config.ID))
+		// empty parent and --internal are handled the same. Set here to update k/v
+		config.Internal = true
+	}
+	err = d.createNetwork(config)
+	if err != nil {
+		return err
+	}
+	// update persistent db, rollback on fail
+	err = d.storeUpdate(config)
+	if err != nil {
+		d.deleteNetwork(config.ID)
+		logrus.Debugf("encoutered an error rolling back a network create for %s : %v", config.ID, err)
+		return err
+	}
+
+	return nil
+}
+
+// createNetwork is used by new network callbacks and persistent network cache
+func (d *driver) createNetwork(config *configuration) error {
+	networkList := d.getNetworks()
+	for _, nw := range networkList {
+		if config.Parent == nw.config.Parent {
+			return fmt.Errorf("network %s is already using parent interface %s",
+				getDummyName(stringid.TruncateID(nw.config.ID)), config.Parent)
+		}
+	}
+	if !parentExists(config.Parent) {
+		// if the --internal flag is set, create a dummy link
+		if config.Internal {
+			err := createDummyLink(config.Parent, getDummyName(stringid.TruncateID(config.ID)))
+			if err != nil {
+				return err
+			}
+			config.CreatedSlaveLink = true
+			// notify the user in logs they have limited comunicatins
+			if config.Parent == getDummyName(stringid.TruncateID(config.ID)) {
+				logrus.Debugf("Empty -o parent= and --internal flags limit communications to other containers inside of network: %s",
+					config.Parent)
+			}
+		} else {
+			// if the subinterface parent_iface.vlan_id checks do not pass, return err.
+			//  a valid example is 'eth0.10' for a parent iface 'eth0' with a vlan id '10'
+			err := createVlanLink(config.Parent)
+			if err != nil {
+				return err
+			}
+			// if driver created the networks slave link, record it for future deletion
+			config.CreatedSlaveLink = true
+		}
+	}
+	n := &network{
+		id:        config.ID,
+		driver:    d,
+		endpoints: endpointTable{},
+		config:    config,
+	}
+	// add the *network
+	d.addNetwork(n)
+
+	return nil
+}
+
+// DeleteNetwork deletes the network for the specified driver type
+func (d *driver) DeleteNetwork(nid string) error {
+	defer osl.InitOSContext()()
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %s not found", nid)
+	}
+	// if the driver created the slave interface, delete it, otherwise leave it
+	if ok := n.config.CreatedSlaveLink; ok {
+		// if the interface exists, only delete if it matches iface.vlan or dummy.net_id naming
+		if ok := parentExists(n.config.Parent); ok {
+			// only delete the link if it is named the net_id
+			if n.config.Parent == getDummyName(stringid.TruncateID(nid)) {
+				err := delDummyLink(n.config.Parent)
+				if err != nil {
+					logrus.Debugf("link %s was not deleted, continuing the delete network operation: %v",
+						n.config.Parent, err)
+				}
+			} else {
+				// only delete the link if it matches iface.vlan naming
+				err := delVlanLink(n.config.Parent)
+				if err != nil {
+					logrus.Debugf("link %s was not deleted, continuing the delete network operation: %v",
+						n.config.Parent, err)
+				}
+			}
+		}
+	}
+	for _, ep := range n.endpoints {
+		if link, err := ns.NlHandle().LinkByName(ep.srcName); err == nil {
+			if err := ns.NlHandle().LinkDel(link); err != nil {
+				logrus.WithError(err).Warnf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.srcName, ep.id)
+			}
+		}
+
+		if err := d.storeDelete(ep); err != nil {
+			logrus.Warnf("Failed to remove macvlan endpoint %s from store: %v", ep.id[0:7], err)
+		}
+	}
+	// delete the *network
+	d.deleteNetwork(nid)
+	// delete the network record from persistent cache
+	err := d.storeDelete(n.config)
+	if err != nil {
+		return fmt.Errorf("error deleting deleting id %s from datastore: %v", nid, err)
+	}
+	return nil
+}
+
+// parseNetworkOptions parses docker network options
+func parseNetworkOptions(id string, option options.Generic) (*configuration, error) {
+	var (
+		err    error
+		config = &configuration{}
+	)
+	// parse generic labels first
+	if genData, ok := option[netlabel.GenericData]; ok && genData != nil {
+		if config, err = parseNetworkGenericOptions(genData); err != nil {
+			return nil, err
+		}
+	}
+	// setting the parent to "" will trigger an isolated network dummy parent link
+	if _, ok := option[netlabel.Internal]; ok {
+		config.Internal = true
+		// empty --parent= and --internal are handled the same.
+		config.Parent = ""
+	}
+
+	return config, nil
+}
+
+// parseNetworkGenericOptions parses generic driver docker network options
+func parseNetworkGenericOptions(data interface{}) (*configuration, error) {
+	var (
+		err    error
+		config *configuration
+	)
+	switch opt := data.(type) {
+	case *configuration:
+		config = opt
+	case map[string]string:
+		config = &configuration{}
+		err = config.fromOptions(opt)
+	case options.Generic:
+		var opaqueConfig interface{}
+		if opaqueConfig, err = options.GenerateFromModel(opt, config); err == nil {
+			config = opaqueConfig.(*configuration)
+		}
+	default:
+		err = types.BadRequestErrorf("unrecognized network configuration format: %v", opt)
+	}
+
+	return config, err
+}
+
+// fromOptions binds the generic options to networkConfiguration to cache
+func (config *configuration) fromOptions(labels map[string]string) error {
+	for label, value := range labels {
+		switch label {
+		case parentOpt:
+			// parse driver option '-o parent'
+			config.Parent = value
+		case driverModeOpt:
+			// parse driver option '-o macvlan_mode'
+			config.MacvlanMode = value
+		}
+	}
+
+	return nil
+}
+
+// processIPAM parses v4 and v6 IP information and binds it to the network configuration
+func (config *configuration) processIPAM(id string, ipamV4Data, ipamV6Data []driverapi.IPAMData) error {
+	if len(ipamV4Data) > 0 {
+		for _, ipd := range ipamV4Data {
+			s := &ipv4Subnet{
+				SubnetIP: ipd.Pool.String(),
+				GwIP:     ipd.Gateway.String(),
+			}
+			config.Ipv4Subnets = append(config.Ipv4Subnets, s)
+		}
+	}
+	if len(ipamV6Data) > 0 {
+		for _, ipd := range ipamV6Data {
+			s := &ipv6Subnet{
+				SubnetIP: ipd.Pool.String(),
+				GwIP:     ipd.Gateway.String(),
+			}
+			config.Ipv6Subnets = append(config.Ipv6Subnets, s)
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_setup.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_setup.go
new file mode 100644
index 0000000000..98d4bd3832
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_setup.go
@@ -0,0 +1,209 @@
+package macvlan
+
+import (
+	"fmt"
+	"strconv"
+	"strings"
+
+	"github.com/docker/libnetwork/ns"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+const (
+	dummyPrefix      = "dm-" // macvlan prefix for dummy parent interface
+	macvlanKernelVer = 3     // minimum macvlan kernel support
+	macvlanMajorVer  = 9     // minimum macvlan major kernel support
+)
+
+// Create the macvlan slave specifying the source name
+func createMacVlan(containerIfName, parent, macvlanMode string) (string, error) {
+	// Set the macvlan mode. Default is bridge mode
+	mode, err := setMacVlanMode(macvlanMode)
+	if err != nil {
+		return "", fmt.Errorf("Unsupported %s macvlan mode: %v", macvlanMode, err)
+	}
+	// verify the Docker host interface acting as the macvlan parent iface exists
+	if !parentExists(parent) {
+		return "", fmt.Errorf("the requested parent interface %s was not found on the Docker host", parent)
+	}
+	// Get the link for the master index (Example: the docker host eth iface)
+	parentLink, err := ns.NlHandle().LinkByName(parent)
+	if err != nil {
+		return "", fmt.Errorf("error occoured looking up the %s parent iface %s error: %s", macvlanType, parent, err)
+	}
+	// Create a macvlan link
+	macvlan := &netlink.Macvlan{
+		LinkAttrs: netlink.LinkAttrs{
+			Name:        containerIfName,
+			ParentIndex: parentLink.Attrs().Index,
+		},
+		Mode: mode,
+	}
+	if err := ns.NlHandle().LinkAdd(macvlan); err != nil {
+		// If a user creates a macvlan and ipvlan on same parent, only one slave iface can be active at a time.
+		return "", fmt.Errorf("failed to create the %s port: %v", macvlanType, err)
+	}
+
+	return macvlan.Attrs().Name, nil
+}
+
+// setMacVlanMode setter for one of the four macvlan port types
+func setMacVlanMode(mode string) (netlink.MacvlanMode, error) {
+	switch mode {
+	case modePrivate:
+		return netlink.MACVLAN_MODE_PRIVATE, nil
+	case modeVepa:
+		return netlink.MACVLAN_MODE_VEPA, nil
+	case modeBridge:
+		return netlink.MACVLAN_MODE_BRIDGE, nil
+	case modePassthru:
+		return netlink.MACVLAN_MODE_PASSTHRU, nil
+	default:
+		return 0, fmt.Errorf("unknown macvlan mode: %s", mode)
+	}
+}
+
+// parentExists checks if the specified interface exists in the default namespace
+func parentExists(ifaceStr string) bool {
+	_, err := ns.NlHandle().LinkByName(ifaceStr)
+	if err != nil {
+		return false
+	}
+
+	return true
+}
+
+// createVlanLink parses sub-interfaces and vlan id for creation
+func createVlanLink(parentName string) error {
+	if strings.Contains(parentName, ".") {
+		parent, vidInt, err := parseVlan(parentName)
+		if err != nil {
+			return err
+		}
+		// VLAN identifier or VID is a 12-bit field specifying the VLAN to which the frame belongs
+		if vidInt > 4094 || vidInt < 1 {
+			return fmt.Errorf("vlan id must be between 1-4094, received: %d", vidInt)
+		}
+		// get the parent link to attach a vlan subinterface
+		parentLink, err := ns.NlHandle().LinkByName(parent)
+		if err != nil {
+			return fmt.Errorf("failed to find master interface %s on the Docker host: %v", parent, err)
+		}
+		vlanLink := &netlink.Vlan{
+			LinkAttrs: netlink.LinkAttrs{
+				Name:        parentName,
+				ParentIndex: parentLink.Attrs().Index,
+			},
+			VlanId: vidInt,
+		}
+		// create the subinterface
+		if err := ns.NlHandle().LinkAdd(vlanLink); err != nil {
+			return fmt.Errorf("failed to create %s vlan link: %v", vlanLink.Name, err)
+		}
+		// Bring the new netlink iface up
+		if err := ns.NlHandle().LinkSetUp(vlanLink); err != nil {
+			return fmt.Errorf("failed to enable %s the macvlan parent link %v", vlanLink.Name, err)
+		}
+		logrus.Debugf("Added a vlan tagged netlink subinterface: %s with a vlan id: %d", parentName, vidInt)
+		return nil
+	}
+
+	return fmt.Errorf("invalid subinterface vlan name %s, example formatting is eth0.10", parentName)
+}
+
+// delVlanLink verifies only sub-interfaces with a vlan id get deleted
+func delVlanLink(linkName string) error {
+	if strings.Contains(linkName, ".") {
+		_, _, err := parseVlan(linkName)
+		if err != nil {
+			return err
+		}
+		// delete the vlan subinterface
+		vlanLink, err := ns.NlHandle().LinkByName(linkName)
+		if err != nil {
+			return fmt.Errorf("failed to find interface %s on the Docker host : %v", linkName, err)
+		}
+		// verify a parent interface isn't being deleted
+		if vlanLink.Attrs().ParentIndex == 0 {
+			return fmt.Errorf("interface %s does not appear to be a slave device: %v", linkName, err)
+		}
+		// delete the macvlan slave device
+		if err := ns.NlHandle().LinkDel(vlanLink); err != nil {
+			return fmt.Errorf("failed to delete  %s link: %v", linkName, err)
+		}
+		logrus.Debugf("Deleted a vlan tagged netlink subinterface: %s", linkName)
+	}
+	// if the subinterface doesn't parse to iface.vlan_id leave the interface in
+	// place since it could be a user specified name not created by the driver.
+	return nil
+}
+
+// parseVlan parses and verifies a slave interface name: -o parent=eth0.10
+func parseVlan(linkName string) (string, int, error) {
+	// parse -o parent=eth0.10
+	splitName := strings.Split(linkName, ".")
+	if len(splitName) != 2 {
+		return "", 0, fmt.Errorf("required interface name format is: name.vlan_id, ex. eth0.10 for vlan 10, instead received %s", linkName)
+	}
+	parent, vidStr := splitName[0], splitName[1]
+	// validate type and convert vlan id to int
+	vidInt, err := strconv.Atoi(vidStr)
+	if err != nil {
+		return "", 0, fmt.Errorf("unable to parse a valid vlan id from: %s (ex. eth0.10 for vlan 10)", vidStr)
+	}
+	// Check if the interface exists
+	if !parentExists(parent) {
+		return "", 0, fmt.Errorf("-o parent interface does was not found on the host: %s", parent)
+	}
+
+	return parent, vidInt, nil
+}
+
+// createDummyLink creates a dummy0 parent link
+func createDummyLink(dummyName, truncNetID string) error {
+	// create a parent interface since one was not specified
+	parent := &netlink.Dummy{
+		LinkAttrs: netlink.LinkAttrs{
+			Name: dummyName,
+		},
+	}
+	if err := ns.NlHandle().LinkAdd(parent); err != nil {
+		return err
+	}
+	parentDummyLink, err := ns.NlHandle().LinkByName(dummyName)
+	if err != nil {
+		return fmt.Errorf("error occoured looking up the %s parent iface %s error: %s", macvlanType, dummyName, err)
+	}
+	// bring the new netlink iface up
+	if err := ns.NlHandle().LinkSetUp(parentDummyLink); err != nil {
+		return fmt.Errorf("failed to enable %s the macvlan parent link: %v", dummyName, err)
+	}
+
+	return nil
+}
+
+// delDummyLink deletes the link type dummy used when -o parent is not passed
+func delDummyLink(linkName string) error {
+	// delete the vlan subinterface
+	dummyLink, err := ns.NlHandle().LinkByName(linkName)
+	if err != nil {
+		return fmt.Errorf("failed to find link %s on the Docker host : %v", linkName, err)
+	}
+	// verify a parent interface is being deleted
+	if dummyLink.Attrs().ParentIndex != 0 {
+		return fmt.Errorf("link %s is not a parent dummy interface", linkName)
+	}
+	// delete the macvlan dummy device
+	if err := ns.NlHandle().LinkDel(dummyLink); err != nil {
+		return fmt.Errorf("failed to delete the dummy %s link: %v", linkName, err)
+	}
+	logrus.Debugf("Deleted a dummy parent link: %s", linkName)
+
+	return nil
+}
+
+// getDummyName returns the name of a dummy parent with truncated net ID and driver prefix
+func getDummyName(netID string) string {
+	return dummyPrefix + netID
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_state.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_state.go
new file mode 100644
index 0000000000..8fd1a9e4dc
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_state.go
@@ -0,0 +1,113 @@
+package macvlan
+
+import (
+	"fmt"
+
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+func (d *driver) network(nid string) *network {
+	d.Lock()
+	n, ok := d.networks[nid]
+	d.Unlock()
+	if !ok {
+		logrus.Errorf("network id %s not found", nid)
+	}
+
+	return n
+}
+
+func (d *driver) addNetwork(n *network) {
+	d.Lock()
+	d.networks[n.id] = n
+	d.Unlock()
+}
+
+func (d *driver) deleteNetwork(nid string) {
+	d.Lock()
+	delete(d.networks, nid)
+	d.Unlock()
+}
+
+// getNetworks Safely returns a slice of existing networks
+func (d *driver) getNetworks() []*network {
+	d.Lock()
+	defer d.Unlock()
+
+	ls := make([]*network, 0, len(d.networks))
+	for _, nw := range d.networks {
+		ls = append(ls, nw)
+	}
+
+	return ls
+}
+
+func (n *network) endpoint(eid string) *endpoint {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.endpoints[eid]
+}
+
+func (n *network) addEndpoint(ep *endpoint) {
+	n.Lock()
+	n.endpoints[ep.id] = ep
+	n.Unlock()
+}
+
+func (n *network) deleteEndpoint(eid string) {
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+}
+
+func (n *network) getEndpoint(eid string) (*endpoint, error) {
+	n.Lock()
+	defer n.Unlock()
+	if eid == "" {
+		return nil, fmt.Errorf("endpoint id %s not found", eid)
+	}
+	if ep, ok := n.endpoints[eid]; ok {
+		return ep, nil
+	}
+
+	return nil, nil
+}
+
+func validateID(nid, eid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+	if eid == "" {
+		return fmt.Errorf("invalid endpoint id")
+	}
+	return nil
+}
+
+func (n *network) sandbox() osl.Sandbox {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.sbox
+}
+
+func (n *network) setSandbox(sbox osl.Sandbox) {
+	n.Lock()
+	n.sbox = sbox
+	n.Unlock()
+}
+
+func (d *driver) getNetwork(id string) (*network, error) {
+	d.Lock()
+	defer d.Unlock()
+	if id == "" {
+		return nil, types.BadRequestErrorf("invalid network id: %s", id)
+	}
+	if nw, ok := d.networks[id]; ok {
+		return nw, nil
+	}
+
+	return nil, types.NotFoundErrorf("network not found: %s", id)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_store.go b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_store.go
new file mode 100644
index 0000000000..655a49c08b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/macvlan/macvlan_store.go
@@ -0,0 +1,351 @@
+package macvlan
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	macvlanPrefix         = "macvlan"
+	macvlanNetworkPrefix  = macvlanPrefix + "/network"
+	macvlanEndpointPrefix = macvlanPrefix + "/endpoint"
+)
+
+// networkConfiguration for this driver's network specific configuration
+type configuration struct {
+	ID               string
+	Mtu              int
+	dbIndex          uint64
+	dbExists         bool
+	Internal         bool
+	Parent           string
+	MacvlanMode      string
+	CreatedSlaveLink bool
+	Ipv4Subnets      []*ipv4Subnet
+	Ipv6Subnets      []*ipv6Subnet
+}
+
+type ipv4Subnet struct {
+	SubnetIP string
+	GwIP     string
+}
+
+type ipv6Subnet struct {
+	SubnetIP string
+	GwIP     string
+}
+
+// initStore drivers are responsible for caching their own persistent state
+func (d *driver) initStore(option map[string]interface{}) error {
+	if data, ok := option[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("macvlan driver failed to initialize data store: %v", err)
+		}
+
+		return d.populateNetworks()
+	}
+
+	return nil
+}
+
+// populateNetworks is invoked at driver init to recreate persistently stored networks
+func (d *driver) populateNetworks() error {
+	kvol, err := d.store.List(datastore.Key(macvlanPrefix), &configuration{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get macvlan network configurations from store: %v", err)
+	}
+	// If empty it simply means no macvlan networks have been created yet
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+	for _, kvo := range kvol {
+		config := kvo.(*configuration)
+		if err = d.createNetwork(config); err != nil {
+			logrus.Warnf("Could not create macvlan network for id %s from persistent state", config.ID)
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) populateEndpoints() error {
+	kvol, err := d.store.List(datastore.Key(macvlanEndpointPrefix), &endpoint{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get macvlan endpoints from store: %v", err)
+	}
+
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ep := kvo.(*endpoint)
+		n, ok := d.networks[ep.nid]
+		if !ok {
+			logrus.Debugf("Network (%s) not found for restored macvlan endpoint (%s)", ep.nid[0:7], ep.id[0:7])
+			logrus.Debugf("Deleting stale macvlan endpoint (%s) from store", ep.id[0:7])
+			if err := d.storeDelete(ep); err != nil {
+				logrus.Debugf("Failed to delete stale macvlan endpoint (%s) from store", ep.id[0:7])
+			}
+			continue
+		}
+		n.endpoints[ep.id] = ep
+		logrus.Debugf("Endpoint (%s) restored to network (%s)", ep.id[0:7], ep.nid[0:7])
+	}
+
+	return nil
+}
+
+// storeUpdate used to update persistent macvlan network records as they are created
+func (d *driver) storeUpdate(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Warnf("macvlan store not initialized. kv object %s is not added to the store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+	if err := d.store.PutObjectAtomic(kvObject); err != nil {
+		return fmt.Errorf("failed to update macvlan store for object type %T: %v", kvObject, err)
+	}
+
+	return nil
+}
+
+// storeDelete used to delete macvlan records from persistent cache as they are deleted
+func (d *driver) storeDelete(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Debugf("macvlan store not initialized. kv object %s is not deleted from store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+retry:
+	if err := d.store.DeleteObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := d.store.GetObject(datastore.Key(kvObject.Key()...), kvObject); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to delete: %v", err)
+			}
+			goto retry
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (config *configuration) MarshalJSON() ([]byte, error) {
+	nMap := make(map[string]interface{})
+	nMap["ID"] = config.ID
+	nMap["Mtu"] = config.Mtu
+	nMap["Parent"] = config.Parent
+	nMap["MacvlanMode"] = config.MacvlanMode
+	nMap["Internal"] = config.Internal
+	nMap["CreatedSubIface"] = config.CreatedSlaveLink
+	if len(config.Ipv4Subnets) > 0 {
+		iis, err := json.Marshal(config.Ipv4Subnets)
+		if err != nil {
+			return nil, err
+		}
+		nMap["Ipv4Subnets"] = string(iis)
+	}
+	if len(config.Ipv6Subnets) > 0 {
+		iis, err := json.Marshal(config.Ipv6Subnets)
+		if err != nil {
+			return nil, err
+		}
+		nMap["Ipv6Subnets"] = string(iis)
+	}
+
+	return json.Marshal(nMap)
+}
+
+func (config *configuration) UnmarshalJSON(b []byte) error {
+	var (
+		err  error
+		nMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &nMap); err != nil {
+		return err
+	}
+	config.ID = nMap["ID"].(string)
+	config.Mtu = int(nMap["Mtu"].(float64))
+	config.Parent = nMap["Parent"].(string)
+	config.MacvlanMode = nMap["MacvlanMode"].(string)
+	config.Internal = nMap["Internal"].(bool)
+	config.CreatedSlaveLink = nMap["CreatedSubIface"].(bool)
+	if v, ok := nMap["Ipv4Subnets"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &config.Ipv4Subnets); err != nil {
+			return err
+		}
+	}
+	if v, ok := nMap["Ipv6Subnets"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &config.Ipv6Subnets); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (config *configuration) Key() []string {
+	return []string{macvlanNetworkPrefix, config.ID}
+}
+
+func (config *configuration) KeyPrefix() []string {
+	return []string{macvlanNetworkPrefix}
+}
+
+func (config *configuration) Value() []byte {
+	b, err := json.Marshal(config)
+	if err != nil {
+		return nil
+	}
+
+	return b
+}
+
+func (config *configuration) SetValue(value []byte) error {
+	return json.Unmarshal(value, config)
+}
+
+func (config *configuration) Index() uint64 {
+	return config.dbIndex
+}
+
+func (config *configuration) SetIndex(index uint64) {
+	config.dbIndex = index
+	config.dbExists = true
+}
+
+func (config *configuration) Exists() bool {
+	return config.dbExists
+}
+
+func (config *configuration) Skip() bool {
+	return false
+}
+
+func (config *configuration) New() datastore.KVObject {
+	return &configuration{}
+}
+
+func (config *configuration) CopyTo(o datastore.KVObject) error {
+	dstNcfg := o.(*configuration)
+	*dstNcfg = *config
+
+	return nil
+}
+
+func (config *configuration) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (ep *endpoint) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	epMap["id"] = ep.id
+	epMap["nid"] = ep.nid
+	epMap["SrcName"] = ep.srcName
+	if len(ep.mac) != 0 {
+		epMap["MacAddress"] = ep.mac.String()
+	}
+	if ep.addr != nil {
+		epMap["Addr"] = ep.addr.String()
+	}
+	if ep.addrv6 != nil {
+		epMap["Addrv6"] = ep.addrv6.String()
+	}
+	return json.Marshal(epMap)
+}
+
+func (ep *endpoint) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return fmt.Errorf("Failed to unmarshal to macvlan endpoint: %v", err)
+	}
+
+	if v, ok := epMap["MacAddress"]; ok {
+		if ep.mac, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode macvlan endpoint MAC address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addr"]; ok {
+		if ep.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode macvlan endpoint IPv4 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addrv6"]; ok {
+		if ep.addrv6, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode macvlan endpoint IPv6 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	ep.id = epMap["id"].(string)
+	ep.nid = epMap["nid"].(string)
+	ep.srcName = epMap["SrcName"].(string)
+
+	return nil
+}
+
+func (ep *endpoint) Key() []string {
+	return []string{macvlanEndpointPrefix, ep.id}
+}
+
+func (ep *endpoint) KeyPrefix() []string {
+	return []string{macvlanEndpointPrefix}
+}
+
+func (ep *endpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *endpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *endpoint) Index() uint64 {
+	return ep.dbIndex
+}
+
+func (ep *endpoint) SetIndex(index uint64) {
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *endpoint) Exists() bool {
+	return ep.dbExists
+}
+
+func (ep *endpoint) Skip() bool {
+	return false
+}
+
+func (ep *endpoint) New() datastore.KVObject {
+	return &endpoint{}
+}
+
+func (ep *endpoint) CopyTo(o datastore.KVObject) error {
+	dstEp := o.(*endpoint)
+	*dstEp = *ep
+	return nil
+}
+
+func (ep *endpoint) DataScope() string {
+	return datastore.LocalScope
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/null/null.go b/vendor/github.com/docker/libnetwork/drivers/null/null.go
new file mode 100644
index 0000000000..7f2a5e32f7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/null/null.go
@@ -0,0 +1,105 @@
+package null
+
+import (
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/types"
+)
+
+const networkType = "null"
+
+type driver struct {
+	network string
+	sync.Mutex
+}
+
+// Init registers a new instance of null driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope: datastore.LocalScope,
+	}
+	return dc.RegisterDriver(networkType, &driver{}, c)
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	d.Lock()
+	defer d.Unlock()
+
+	if d.network != "" {
+		return types.ForbiddenErrorf("only one instance of \"%s\" network is allowed", networkType)
+	}
+
+	d.network = id
+
+	return nil
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	return types.ForbiddenErrorf("network of type \"%s\" cannot be deleted", networkType)
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo, epOptions map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	return make(map[string]interface{}, 0), nil
+}
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) Type() string {
+	return networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/encryption.go b/vendor/github.com/docker/libnetwork/drivers/overlay/encryption.go
new file mode 100644
index 0000000000..bcae0bd4e5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/encryption.go
@@ -0,0 +1,639 @@
+package overlay
+
+import (
+	"bytes"
+	"encoding/binary"
+	"encoding/hex"
+	"fmt"
+	"hash/fnv"
+	"net"
+	"sync"
+	"syscall"
+
+	"strconv"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+const (
+	r            = 0xD0C4E3
+	pktExpansion = 26 // SPI(4) + SeqN(4) + IV(8) + PadLength(1) + NextHeader(1) + ICV(8)
+)
+
+const (
+	forward = iota + 1
+	reverse
+	bidir
+)
+
+var spMark = netlink.XfrmMark{Value: uint32(r), Mask: 0xffffffff}
+
+type key struct {
+	value []byte
+	tag   uint32
+}
+
+func (k *key) String() string {
+	if k != nil {
+		return fmt.Sprintf("(key: %s, tag: 0x%x)", hex.EncodeToString(k.value)[0:5], k.tag)
+	}
+	return ""
+}
+
+type spi struct {
+	forward int
+	reverse int
+}
+
+func (s *spi) String() string {
+	return fmt.Sprintf("SPI(FWD: 0x%x, REV: 0x%x)", uint32(s.forward), uint32(s.reverse))
+}
+
+type encrMap struct {
+	nodes map[string][]*spi
+	sync.Mutex
+}
+
+func (e *encrMap) String() string {
+	e.Lock()
+	defer e.Unlock()
+	b := new(bytes.Buffer)
+	for k, v := range e.nodes {
+		b.WriteString("\n")
+		b.WriteString(k)
+		b.WriteString(":")
+		b.WriteString("[")
+		for _, s := range v {
+			b.WriteString(s.String())
+			b.WriteString(",")
+		}
+		b.WriteString("]")
+
+	}
+	return b.String()
+}
+
+func (d *driver) checkEncryption(nid string, rIP net.IP, vxlanID uint32, isLocal, add bool) error {
+	logrus.Debugf("checkEncryption(%s, %v, %d, %t)", nid[0:7], rIP, vxlanID, isLocal)
+
+	n := d.network(nid)
+	if n == nil || !n.secure {
+		return nil
+	}
+
+	if len(d.keys) == 0 {
+		return types.ForbiddenErrorf("encryption key is not present")
+	}
+
+	lIP := net.ParseIP(d.bindAddress)
+	aIP := net.ParseIP(d.advertiseAddress)
+	nodes := map[string]net.IP{}
+
+	switch {
+	case isLocal:
+		if err := d.peerDbNetworkWalk(nid, func(pKey *peerKey, pEntry *peerEntry) bool {
+			if !aIP.Equal(pEntry.vtep) {
+				nodes[pEntry.vtep.String()] = pEntry.vtep
+			}
+			return false
+		}); err != nil {
+			logrus.Warnf("Failed to retrieve list of participating nodes in overlay network %s: %v", nid[0:5], err)
+		}
+	default:
+		if len(d.network(nid).endpoints) > 0 {
+			nodes[rIP.String()] = rIP
+		}
+	}
+
+	logrus.Debugf("List of nodes: %s", nodes)
+
+	if add {
+		for _, rIP := range nodes {
+			if err := setupEncryption(lIP, aIP, rIP, vxlanID, d.secMap, d.keys); err != nil {
+				logrus.Warnf("Failed to program network encryption between %s and %s: %v", lIP, rIP, err)
+			}
+		}
+	} else {
+		if len(nodes) == 0 {
+			if err := removeEncryption(lIP, rIP, d.secMap); err != nil {
+				logrus.Warnf("Failed to remove network encryption between %s and %s: %v", lIP, rIP, err)
+			}
+		}
+	}
+
+	return nil
+}
+
+func setupEncryption(localIP, advIP, remoteIP net.IP, vni uint32, em *encrMap, keys []*key) error {
+	logrus.Debugf("Programming encryption for vxlan %d between %s and %s", vni, localIP, remoteIP)
+	rIPs := remoteIP.String()
+
+	indices := make([]*spi, 0, len(keys))
+
+	err := programMangle(vni, true)
+	if err != nil {
+		logrus.Warn(err)
+	}
+
+	err = programInput(vni, true)
+	if err != nil {
+		logrus.Warn(err)
+	}
+
+	for i, k := range keys {
+		spis := &spi{buildSPI(advIP, remoteIP, k.tag), buildSPI(remoteIP, advIP, k.tag)}
+		dir := reverse
+		if i == 0 {
+			dir = bidir
+		}
+		fSA, rSA, err := programSA(localIP, remoteIP, spis, k, dir, true)
+		if err != nil {
+			logrus.Warn(err)
+		}
+		indices = append(indices, spis)
+		if i != 0 {
+			continue
+		}
+		err = programSP(fSA, rSA, true)
+		if err != nil {
+			logrus.Warn(err)
+		}
+	}
+
+	em.Lock()
+	em.nodes[rIPs] = indices
+	em.Unlock()
+
+	return nil
+}
+
+func removeEncryption(localIP, remoteIP net.IP, em *encrMap) error {
+	em.Lock()
+	indices, ok := em.nodes[remoteIP.String()]
+	em.Unlock()
+	if !ok {
+		return nil
+	}
+	for i, idxs := range indices {
+		dir := reverse
+		if i == 0 {
+			dir = bidir
+		}
+		fSA, rSA, err := programSA(localIP, remoteIP, idxs, nil, dir, false)
+		if err != nil {
+			logrus.Warn(err)
+		}
+		if i != 0 {
+			continue
+		}
+		err = programSP(fSA, rSA, false)
+		if err != nil {
+			logrus.Warn(err)
+		}
+	}
+	return nil
+}
+
+func programMangle(vni uint32, add bool) (err error) {
+	var (
+		p      = strconv.FormatUint(uint64(vxlanPort), 10)
+		c      = fmt.Sprintf("0>>22&0x3C@12&0xFFFFFF00=%d", int(vni)<<8)
+		m      = strconv.FormatUint(uint64(r), 10)
+		chain  = "OUTPUT"
+		rule   = []string{"-p", "udp", "--dport", p, "-m", "u32", "--u32", c, "-j", "MARK", "--set-mark", m}
+		a      = "-A"
+		action = "install"
+	)
+
+	if add == iptables.Exists(iptables.Mangle, chain, rule...) {
+		return
+	}
+
+	if !add {
+		a = "-D"
+		action = "remove"
+	}
+
+	if err = iptables.RawCombinedOutput(append([]string{"-t", string(iptables.Mangle), a, chain}, rule...)...); err != nil {
+		logrus.Warnf("could not %s mangle rule: %v", action, err)
+	}
+
+	return
+}
+
+func programInput(vni uint32, add bool) (err error) {
+	var (
+		port       = strconv.FormatUint(uint64(vxlanPort), 10)
+		vniMatch   = fmt.Sprintf("0>>22&0x3C@12&0xFFFFFF00=%d", int(vni)<<8)
+		plainVxlan = []string{"-p", "udp", "--dport", port, "-m", "u32", "--u32", vniMatch, "-j"}
+		ipsecVxlan = append([]string{"-m", "policy", "--dir", "in", "--pol", "ipsec"}, plainVxlan...)
+		block      = append(plainVxlan, "DROP")
+		accept     = append(ipsecVxlan, "ACCEPT")
+		chain      = "INPUT"
+		action     = iptables.Append
+		msg        = "add"
+	)
+
+	if !add {
+		action = iptables.Delete
+		msg = "remove"
+	}
+
+	if err := iptables.ProgramRule(iptables.Filter, chain, action, accept); err != nil {
+		logrus.Errorf("could not %s input rule: %v. Please do it manually.", msg, err)
+	}
+
+	if err := iptables.ProgramRule(iptables.Filter, chain, action, block); err != nil {
+		logrus.Errorf("could not %s input rule: %v. Please do it manually.", msg, err)
+	}
+
+	return
+}
+
+func programSA(localIP, remoteIP net.IP, spi *spi, k *key, dir int, add bool) (fSA *netlink.XfrmState, rSA *netlink.XfrmState, err error) {
+	var (
+		action      = "Removing"
+		xfrmProgram = ns.NlHandle().XfrmStateDel
+	)
+
+	if add {
+		action = "Adding"
+		xfrmProgram = ns.NlHandle().XfrmStateAdd
+	}
+
+	if dir&reverse > 0 {
+		rSA = &netlink.XfrmState{
+			Src:   remoteIP,
+			Dst:   localIP,
+			Proto: netlink.XFRM_PROTO_ESP,
+			Spi:   spi.reverse,
+			Mode:  netlink.XFRM_MODE_TRANSPORT,
+			Reqid: r,
+		}
+		if add {
+			rSA.Aead = buildAeadAlgo(k, spi.reverse)
+		}
+
+		exists, err := saExists(rSA)
+		if err != nil {
+			exists = !add
+		}
+
+		if add != exists {
+			logrus.Debugf("%s: rSA{%s}", action, rSA)
+			if err := xfrmProgram(rSA); err != nil {
+				logrus.Warnf("Failed %s rSA{%s}: %v", action, rSA, err)
+			}
+		}
+	}
+
+	if dir&forward > 0 {
+		fSA = &netlink.XfrmState{
+			Src:   localIP,
+			Dst:   remoteIP,
+			Proto: netlink.XFRM_PROTO_ESP,
+			Spi:   spi.forward,
+			Mode:  netlink.XFRM_MODE_TRANSPORT,
+			Reqid: r,
+		}
+		if add {
+			fSA.Aead = buildAeadAlgo(k, spi.forward)
+		}
+
+		exists, err := saExists(fSA)
+		if err != nil {
+			exists = !add
+		}
+
+		if add != exists {
+			logrus.Debugf("%s fSA{%s}", action, fSA)
+			if err := xfrmProgram(fSA); err != nil {
+				logrus.Warnf("Failed %s fSA{%s}: %v.", action, fSA, err)
+			}
+		}
+	}
+
+	return
+}
+
+func programSP(fSA *netlink.XfrmState, rSA *netlink.XfrmState, add bool) error {
+	action := "Removing"
+	xfrmProgram := ns.NlHandle().XfrmPolicyDel
+	if add {
+		action = "Adding"
+		xfrmProgram = ns.NlHandle().XfrmPolicyAdd
+	}
+
+	// Create a congruent cidr
+	s := types.GetMinimalIP(fSA.Src)
+	d := types.GetMinimalIP(fSA.Dst)
+	fullMask := net.CIDRMask(8*len(s), 8*len(s))
+
+	fPol := &netlink.XfrmPolicy{
+		Src:     &net.IPNet{IP: s, Mask: fullMask},
+		Dst:     &net.IPNet{IP: d, Mask: fullMask},
+		Dir:     netlink.XFRM_DIR_OUT,
+		Proto:   17,
+		DstPort: 4789,
+		Mark:    &spMark,
+		Tmpls: []netlink.XfrmPolicyTmpl{
+			{
+				Src:   fSA.Src,
+				Dst:   fSA.Dst,
+				Proto: netlink.XFRM_PROTO_ESP,
+				Mode:  netlink.XFRM_MODE_TRANSPORT,
+				Spi:   fSA.Spi,
+				Reqid: r,
+			},
+		},
+	}
+
+	exists, err := spExists(fPol)
+	if err != nil {
+		exists = !add
+	}
+
+	if add != exists {
+		logrus.Debugf("%s fSP{%s}", action, fPol)
+		if err := xfrmProgram(fPol); err != nil {
+			logrus.Warnf("%s fSP{%s}: %v", action, fPol, err)
+		}
+	}
+
+	return nil
+}
+
+func saExists(sa *netlink.XfrmState) (bool, error) {
+	_, err := ns.NlHandle().XfrmStateGet(sa)
+	switch err {
+	case nil:
+		return true, nil
+	case syscall.ESRCH:
+		return false, nil
+	default:
+		err = fmt.Errorf("Error while checking for SA existence: %v", err)
+		logrus.Warn(err)
+		return false, err
+	}
+}
+
+func spExists(sp *netlink.XfrmPolicy) (bool, error) {
+	_, err := ns.NlHandle().XfrmPolicyGet(sp)
+	switch err {
+	case nil:
+		return true, nil
+	case syscall.ENOENT:
+		return false, nil
+	default:
+		err = fmt.Errorf("Error while checking for SP existence: %v", err)
+		logrus.Warn(err)
+		return false, err
+	}
+}
+
+func buildSPI(src, dst net.IP, st uint32) int {
+	b := make([]byte, 4)
+	binary.BigEndian.PutUint32(b, st)
+	h := fnv.New32a()
+	h.Write(src)
+	h.Write(b)
+	h.Write(dst)
+	return int(binary.BigEndian.Uint32(h.Sum(nil)))
+}
+
+func buildAeadAlgo(k *key, s int) *netlink.XfrmStateAlgo {
+	salt := make([]byte, 4)
+	binary.BigEndian.PutUint32(salt, uint32(s))
+	return &netlink.XfrmStateAlgo{
+		Name:   "rfc4106(gcm(aes))",
+		Key:    append(k.value, salt...),
+		ICVLen: 64,
+	}
+}
+
+func (d *driver) secMapWalk(f func(string, []*spi) ([]*spi, bool)) error {
+	d.secMap.Lock()
+	for node, indices := range d.secMap.nodes {
+		idxs, stop := f(node, indices)
+		if idxs != nil {
+			d.secMap.nodes[node] = idxs
+		}
+		if stop {
+			break
+		}
+	}
+	d.secMap.Unlock()
+	return nil
+}
+
+func (d *driver) setKeys(keys []*key) error {
+	// Remove any stale policy, state
+	clearEncryptionStates()
+	// Accept the encryption keys and clear any stale encryption map
+	d.Lock()
+	d.keys = keys
+	d.secMap = &encrMap{nodes: map[string][]*spi{}}
+	d.Unlock()
+	logrus.Debugf("Initial encryption keys: %v", keys)
+	return nil
+}
+
+// updateKeys allows to add a new key and/or change the primary key and/or prune an existing key
+// The primary key is the key used in transmission and will go in first position in the list.
+func (d *driver) updateKeys(newKey, primary, pruneKey *key) error {
+	logrus.Debugf("Updating Keys. New: %v, Primary: %v, Pruned: %v", newKey, primary, pruneKey)
+
+	logrus.Debugf("Current: %v", d.keys)
+
+	var (
+		newIdx = -1
+		priIdx = -1
+		delIdx = -1
+		lIP    = net.ParseIP(d.bindAddress)
+		aIP    = net.ParseIP(d.advertiseAddress)
+	)
+
+	d.Lock()
+	defer d.Unlock()
+
+	// add new
+	if newKey != nil {
+		d.keys = append(d.keys, newKey)
+		newIdx += len(d.keys)
+	}
+	for i, k := range d.keys {
+		if primary != nil && k.tag == primary.tag {
+			priIdx = i
+		}
+		if pruneKey != nil && k.tag == pruneKey.tag {
+			delIdx = i
+		}
+	}
+
+	if (newKey != nil && newIdx == -1) ||
+		(primary != nil && priIdx == -1) ||
+		(pruneKey != nil && delIdx == -1) {
+		return types.BadRequestErrorf("cannot find proper key indices while processing key update:"+
+			"(newIdx,priIdx,delIdx):(%d, %d, %d)", newIdx, priIdx, delIdx)
+	}
+
+	if priIdx != -1 && priIdx == delIdx {
+		return types.BadRequestErrorf("attempting to both make a key (index %d) primary and delete it", priIdx)
+	}
+
+	d.secMapWalk(func(rIPs string, spis []*spi) ([]*spi, bool) {
+		rIP := net.ParseIP(rIPs)
+		return updateNodeKey(lIP, aIP, rIP, spis, d.keys, newIdx, priIdx, delIdx), false
+	})
+
+	// swap primary
+	if priIdx != -1 {
+		d.keys[0], d.keys[priIdx] = d.keys[priIdx], d.keys[0]
+	}
+	// prune
+	if delIdx != -1 {
+		if delIdx == 0 {
+			delIdx = priIdx
+		}
+		d.keys = append(d.keys[:delIdx], d.keys[delIdx+1:]...)
+	}
+
+	logrus.Debugf("Updated: %v", d.keys)
+
+	return nil
+}
+
+/********************************************************
+ * Steady state: rSA0, rSA1, rSA2, fSA1, fSP1
+ * Rotation --> -rSA0, +rSA3, +fSA2, +fSP2/-fSP1, -fSA1
+ * Steady state: rSA1, rSA2, rSA3, fSA2, fSP2
+ *********************************************************/
+
+// Spis and keys are sorted in such away the one in position 0 is the primary
+func updateNodeKey(lIP, aIP, rIP net.IP, idxs []*spi, curKeys []*key, newIdx, priIdx, delIdx int) []*spi {
+	logrus.Debugf("Updating keys for node: %s (%d,%d,%d)", rIP, newIdx, priIdx, delIdx)
+
+	spis := idxs
+	logrus.Debugf("Current: %v", spis)
+
+	// add new
+	if newIdx != -1 {
+		spis = append(spis, &spi{
+			forward: buildSPI(aIP, rIP, curKeys[newIdx].tag),
+			reverse: buildSPI(rIP, aIP, curKeys[newIdx].tag),
+		})
+	}
+
+	if delIdx != -1 {
+		// -rSA0
+		programSA(lIP, rIP, spis[delIdx], nil, reverse, false)
+	}
+
+	if newIdx > -1 {
+		// +rSA2
+		programSA(lIP, rIP, spis[newIdx], curKeys[newIdx], reverse, true)
+	}
+
+	if priIdx > 0 {
+		// +fSA2
+		fSA2, _, _ := programSA(lIP, rIP, spis[priIdx], curKeys[priIdx], forward, true)
+
+		// +fSP2, -fSP1
+		s := types.GetMinimalIP(fSA2.Src)
+		d := types.GetMinimalIP(fSA2.Dst)
+		fullMask := net.CIDRMask(8*len(s), 8*len(s))
+
+		fSP1 := &netlink.XfrmPolicy{
+			Src:     &net.IPNet{IP: s, Mask: fullMask},
+			Dst:     &net.IPNet{IP: d, Mask: fullMask},
+			Dir:     netlink.XFRM_DIR_OUT,
+			Proto:   17,
+			DstPort: 4789,
+			Mark:    &spMark,
+			Tmpls: []netlink.XfrmPolicyTmpl{
+				{
+					Src:   fSA2.Src,
+					Dst:   fSA2.Dst,
+					Proto: netlink.XFRM_PROTO_ESP,
+					Mode:  netlink.XFRM_MODE_TRANSPORT,
+					Spi:   fSA2.Spi,
+					Reqid: r,
+				},
+			},
+		}
+		logrus.Debugf("Updating fSP{%s}", fSP1)
+		if err := ns.NlHandle().XfrmPolicyUpdate(fSP1); err != nil {
+			logrus.Warnf("Failed to update fSP{%s}: %v", fSP1, err)
+		}
+
+		// -fSA1
+		programSA(lIP, rIP, spis[0], nil, forward, false)
+	}
+
+	// swap
+	if priIdx > 0 {
+		swp := spis[0]
+		spis[0] = spis[priIdx]
+		spis[priIdx] = swp
+	}
+	// prune
+	if delIdx != -1 {
+		if delIdx == 0 {
+			delIdx = priIdx
+		}
+		spis = append(spis[:delIdx], spis[delIdx+1:]...)
+	}
+
+	logrus.Debugf("Updated: %v", spis)
+
+	return spis
+}
+
+func (n *network) maxMTU() int {
+	mtu := 1500
+	if n.mtu != 0 {
+		mtu = n.mtu
+	}
+	mtu -= vxlanEncap
+	if n.secure {
+		// In case of encryption account for the
+		// esp packet espansion and padding
+		mtu -= pktExpansion
+		mtu -= (mtu % 4)
+	}
+	return mtu
+}
+
+func clearEncryptionStates() {
+	nlh := ns.NlHandle()
+	spList, err := nlh.XfrmPolicyList(netlink.FAMILY_ALL)
+	if err != nil {
+		logrus.Warnf("Failed to retrieve SP list for cleanup: %v", err)
+	}
+	saList, err := nlh.XfrmStateList(netlink.FAMILY_ALL)
+	if err != nil {
+		logrus.Warnf("Failed to retrieve SA list for cleanup: %v", err)
+	}
+	for _, sp := range spList {
+		if sp.Mark != nil && sp.Mark.Value == spMark.Value {
+			if err := nlh.XfrmPolicyDel(&sp); err != nil {
+				logrus.Warnf("Failed to delete stale SP %s: %v", sp, err)
+				continue
+			}
+			logrus.Debugf("Removed stale SP: %s", sp)
+		}
+	}
+	for _, sa := range saList {
+		if sa.Reqid == r {
+			if err := nlh.XfrmStateDel(&sa); err != nil {
+				logrus.Warnf("Failed to delete stale SA %s: %v", sa, err)
+				continue
+			}
+			logrus.Debugf("Removed stale SA: %s", sa)
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/filter.go b/vendor/github.com/docker/libnetwork/drivers/overlay/filter.go
new file mode 100644
index 0000000000..1601803aa0
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/filter.go
@@ -0,0 +1,142 @@
+package overlay
+
+import (
+	"fmt"
+	"sync"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/sirupsen/logrus"
+)
+
+const globalChain = "DOCKER-OVERLAY"
+
+var filterOnce sync.Once
+
+var filterChan = make(chan struct{}, 1)
+
+func filterWait() func() {
+	filterChan <- struct{}{}
+	return func() { <-filterChan }
+}
+
+func chainExists(cname string) bool {
+	if _, err := iptables.Raw("-L", cname); err != nil {
+		return false
+	}
+
+	return true
+}
+
+func setupGlobalChain() {
+	// Because of an ungraceful shutdown, chain could already be present
+	if !chainExists(globalChain) {
+		if err := iptables.RawCombinedOutput("-N", globalChain); err != nil {
+			logrus.Errorf("could not create global overlay chain: %v", err)
+			return
+		}
+	}
+
+	if !iptables.Exists(iptables.Filter, globalChain, "-j", "RETURN") {
+		if err := iptables.RawCombinedOutput("-A", globalChain, "-j", "RETURN"); err != nil {
+			logrus.Errorf("could not install default return chain in the overlay global chain: %v", err)
+		}
+	}
+}
+
+func setNetworkChain(cname string, remove bool) error {
+	// Initialize the onetime global overlay chain
+	filterOnce.Do(setupGlobalChain)
+
+	exists := chainExists(cname)
+
+	opt := "-N"
+	// In case of remove, make sure to flush the rules in the chain
+	if remove && exists {
+		if err := iptables.RawCombinedOutput("-F", cname); err != nil {
+			return fmt.Errorf("failed to flush overlay network chain %s rules: %v", cname, err)
+		}
+		opt = "-X"
+	}
+
+	if (!remove && !exists) || (remove && exists) {
+		if err := iptables.RawCombinedOutput(opt, cname); err != nil {
+			return fmt.Errorf("failed network chain operation %q for chain %s: %v", opt, cname, err)
+		}
+	}
+
+	if !remove {
+		if !iptables.Exists(iptables.Filter, cname, "-j", "DROP") {
+			if err := iptables.RawCombinedOutput("-A", cname, "-j", "DROP"); err != nil {
+				return fmt.Errorf("failed adding default drop rule to overlay network chain %s: %v", cname, err)
+			}
+		}
+	}
+
+	return nil
+}
+
+func addNetworkChain(cname string) error {
+	defer filterWait()()
+
+	return setNetworkChain(cname, false)
+}
+
+func removeNetworkChain(cname string) error {
+	defer filterWait()()
+
+	return setNetworkChain(cname, true)
+}
+
+func setFilters(cname, brName string, remove bool) error {
+	opt := "-I"
+	if remove {
+		opt = "-D"
+	}
+
+	// Every time we set filters for a new subnet make sure to move the global overlay hook to the top of the both the OUTPUT and forward chains
+	if !remove {
+		for _, chain := range []string{"OUTPUT", "FORWARD"} {
+			exists := iptables.Exists(iptables.Filter, chain, "-j", globalChain)
+			if exists {
+				if err := iptables.RawCombinedOutput("-D", chain, "-j", globalChain); err != nil {
+					return fmt.Errorf("failed to delete overlay hook in chain %s while moving the hook: %v", chain, err)
+				}
+			}
+
+			if err := iptables.RawCombinedOutput("-I", chain, "-j", globalChain); err != nil {
+				return fmt.Errorf("failed to insert overlay hook in chain %s: %v", chain, err)
+			}
+		}
+	}
+
+	// Insert/Delete the rule to jump to per-bridge chain
+	exists := iptables.Exists(iptables.Filter, globalChain, "-o", brName, "-j", cname)
+	if (!remove && !exists) || (remove && exists) {
+		if err := iptables.RawCombinedOutput(opt, globalChain, "-o", brName, "-j", cname); err != nil {
+			return fmt.Errorf("failed to add per-bridge filter rule for bridge %s, network chain %s: %v", brName, cname, err)
+		}
+	}
+
+	exists = iptables.Exists(iptables.Filter, cname, "-i", brName, "-j", "ACCEPT")
+	if (!remove && exists) || (remove && !exists) {
+		return nil
+	}
+
+	if err := iptables.RawCombinedOutput(opt, cname, "-i", brName, "-j", "ACCEPT"); err != nil {
+		return fmt.Errorf("failed to add overlay filter rile for network chain %s, bridge %s: %v", cname, brName, err)
+	}
+
+	return nil
+}
+
+func addFilters(cname, brName string) error {
+	defer filterWait()()
+
+	return setFilters(cname, brName, false)
+}
+
+func removeFilters(cname, brName string) error {
+	defer filterWait()()
+
+	return setFilters(cname, brName, true)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/joinleave.go b/vendor/github.com/docker/libnetwork/drivers/overlay/joinleave.go
new file mode 100644
index 0000000000..0770513e7d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/joinleave.go
@@ -0,0 +1,240 @@
+package overlay
+
+import (
+	"fmt"
+	"net"
+	"syscall"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/gogo/protobuf/proto"
+	"github.com/sirupsen/logrus"
+)
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("could not find network with id %s", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+
+	if n.secure && len(d.keys) == 0 {
+		return fmt.Errorf("cannot join secure network: encryption keys not present")
+	}
+
+	nlh := ns.NlHandle()
+
+	if n.secure && !nlh.SupportsNetlinkFamily(syscall.NETLINK_XFRM) {
+		return fmt.Errorf("cannot join secure network: required modules to install IPSEC rules are missing on host")
+	}
+
+	s := n.getSubnetforIP(ep.addr)
+	if s == nil {
+		return fmt.Errorf("could not find subnet for endpoint %s", eid)
+	}
+
+	if err := n.obtainVxlanID(s); err != nil {
+		return fmt.Errorf("couldn't get vxlan id for %q: %v", s.subnetIP.String(), err)
+	}
+
+	if err := n.joinSandbox(false); err != nil {
+		return fmt.Errorf("network sandbox join failed: %v", err)
+	}
+
+	if err := n.joinSubnetSandbox(s, false); err != nil {
+		return fmt.Errorf("subnet sandbox join failed for %q: %v", s.subnetIP.String(), err)
+	}
+
+	// joinSubnetSandbox gets called when an endpoint comes up on a new subnet in the
+	// overlay network. Hence the Endpoint count should be updated outside joinSubnetSandbox
+	n.incEndpointCount()
+
+	sbox := n.sandbox()
+
+	overlayIfName, containerIfName, err := createVethPair()
+	if err != nil {
+		return err
+	}
+
+	ep.ifName = containerIfName
+
+	if err = d.writeEndpointToStore(ep); err != nil {
+		return fmt.Errorf("failed to update overlay endpoint %s to local data store: %v", ep.id[0:7], err)
+	}
+
+	// Set the container interface and its peer MTU to 1450 to allow
+	// for 50 bytes vxlan encap (inner eth header(14) + outer IP(20) +
+	// outer UDP(8) + vxlan header(8))
+	mtu := n.maxMTU()
+
+	veth, err := nlh.LinkByName(overlayIfName)
+	if err != nil {
+		return fmt.Errorf("cound not find link by name %s: %v", overlayIfName, err)
+	}
+	err = nlh.LinkSetMTU(veth, mtu)
+	if err != nil {
+		return err
+	}
+
+	if err = sbox.AddInterface(overlayIfName, "veth",
+		sbox.InterfaceOptions().Master(s.brName)); err != nil {
+		return fmt.Errorf("could not add veth pair inside the network sandbox: %v", err)
+	}
+
+	veth, err = nlh.LinkByName(containerIfName)
+	if err != nil {
+		return fmt.Errorf("could not find link by name %s: %v", containerIfName, err)
+	}
+	err = nlh.LinkSetMTU(veth, mtu)
+	if err != nil {
+		return err
+	}
+
+	if err = nlh.LinkSetHardwareAddr(veth, ep.mac); err != nil {
+		return fmt.Errorf("could not set mac address (%v) to the container interface: %v", ep.mac, err)
+	}
+
+	for _, sub := range n.subnets {
+		if sub == s {
+			continue
+		}
+		if err = jinfo.AddStaticRoute(sub.subnetIP, types.NEXTHOP, s.gwIP.IP); err != nil {
+			logrus.Errorf("Adding subnet %s static route in network %q failed\n", s.subnetIP, n.id)
+		}
+	}
+
+	if iNames := jinfo.InterfaceName(); iNames != nil {
+		err = iNames.SetNames(containerIfName, "eth")
+		if err != nil {
+			return err
+		}
+	}
+
+	d.peerAdd(nid, eid, ep.addr.IP, ep.addr.Mask, ep.mac, net.ParseIP(d.advertiseAddress), false, false, true)
+
+	if err = d.checkEncryption(nid, nil, n.vxlanID(s), true, true); err != nil {
+		logrus.Warn(err)
+	}
+
+	buf, err := proto.Marshal(&PeerRecord{
+		EndpointIP:       ep.addr.String(),
+		EndpointMAC:      ep.mac.String(),
+		TunnelEndpointIP: d.advertiseAddress,
+	})
+	if err != nil {
+		return err
+	}
+
+	if err := jinfo.AddTableEntry(ovPeerTable, eid, buf); err != nil {
+		logrus.Errorf("overlay: Failed adding table entry to joininfo: %v", err)
+	}
+
+	d.pushLocalEndpointEvent("join", nid, eid)
+
+	return nil
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	if tablename != ovPeerTable {
+		logrus.Errorf("DecodeTableEntry: unexpected table name %s", tablename)
+		return "", nil
+	}
+
+	var peer PeerRecord
+	if err := proto.Unmarshal(value, &peer); err != nil {
+		logrus.Errorf("DecodeTableEntry: failed to unmarshal peer record for key %s: %v", key, err)
+		return "", nil
+	}
+
+	return key, map[string]string{
+		"Host IP": peer.TunnelEndpointIP,
+	}
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+	if tableName != ovPeerTable {
+		logrus.Errorf("Unexpected table notification for table %s received", tableName)
+		return
+	}
+
+	eid := key
+
+	var peer PeerRecord
+	if err := proto.Unmarshal(value, &peer); err != nil {
+		logrus.Errorf("Failed to unmarshal peer record: %v", err)
+		return
+	}
+
+	// Ignore local peers. We already know about them and they
+	// should not be added to vxlan fdb.
+	if peer.TunnelEndpointIP == d.advertiseAddress {
+		return
+	}
+
+	addr, err := types.ParseCIDR(peer.EndpointIP)
+	if err != nil {
+		logrus.Errorf("Invalid peer IP %s received in event notify", peer.EndpointIP)
+		return
+	}
+
+	mac, err := net.ParseMAC(peer.EndpointMAC)
+	if err != nil {
+		logrus.Errorf("Invalid mac %s received in event notify", peer.EndpointMAC)
+		return
+	}
+
+	vtep := net.ParseIP(peer.TunnelEndpointIP)
+	if vtep == nil {
+		logrus.Errorf("Invalid VTEP %s received in event notify", peer.TunnelEndpointIP)
+		return
+	}
+
+	if etype == driverapi.Delete {
+		d.peerDelete(nid, eid, addr.IP, addr.Mask, mac, vtep, false)
+		return
+	}
+
+	d.peerAdd(nid, eid, addr.IP, addr.Mask, mac, vtep, false, false, false)
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("could not find network with id %s", nid)
+	}
+
+	ep := n.endpoint(eid)
+
+	if ep == nil {
+		return types.InternalMaskableErrorf("could not find endpoint with id %s", eid)
+	}
+
+	if d.notifyCh != nil {
+		d.notifyCh <- ovNotify{
+			action: "leave",
+			nw:     n,
+			ep:     ep,
+		}
+	}
+
+	d.peerDelete(nid, eid, ep.addr.IP, ep.addr.Mask, ep.mac, net.ParseIP(d.advertiseAddress), true)
+
+	n.leaveSandbox()
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_linux.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_linux.go
new file mode 100644
index 0000000000..68f1ee9cee
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_linux.go
@@ -0,0 +1,72 @@
+package overlay
+
+import (
+	"io/ioutil"
+	"path"
+	"strconv"
+	"strings"
+
+	"github.com/sirupsen/logrus"
+)
+
+type conditionalCheck func(val1, val2 string) bool
+
+type osValue struct {
+	value   string
+	checkFn conditionalCheck
+}
+
+var osConfig = map[string]osValue{
+	"net.ipv4.neigh.default.gc_thresh1": {"8192", checkHigher},
+	"net.ipv4.neigh.default.gc_thresh2": {"49152", checkHigher},
+	"net.ipv4.neigh.default.gc_thresh3": {"65536", checkHigher},
+}
+
+func propertyIsValid(val1, val2 string, check conditionalCheck) bool {
+	if check == nil || check(val1, val2) {
+		return true
+	}
+	return false
+}
+
+func checkHigher(val1, val2 string) bool {
+	val1Int, _ := strconv.ParseInt(val1, 10, 32)
+	val2Int, _ := strconv.ParseInt(val2, 10, 32)
+	return val1Int < val2Int
+}
+
+// writeSystemProperty writes the value to a path under /proc/sys as determined from the key.
+// For e.g. net.ipv4.ip_forward translated to /proc/sys/net/ipv4/ip_forward.
+func writeSystemProperty(key, value string) error {
+	keyPath := strings.Replace(key, ".", "/", -1)
+	return ioutil.WriteFile(path.Join("/proc/sys", keyPath), []byte(value), 0644)
+}
+
+func readSystemProperty(key string) (string, error) {
+	keyPath := strings.Replace(key, ".", "/", -1)
+	value, err := ioutil.ReadFile(path.Join("/proc/sys", keyPath))
+	if err != nil {
+		return "", err
+	}
+	return string(value), nil
+}
+
+func applyOStweaks() {
+	for k, v := range osConfig {
+		// read the existing property from disk
+		oldv, err := readSystemProperty(k)
+		if err != nil {
+			logrus.Errorf("error reading the kernel parameter %s, error: %s", k, err)
+			continue
+		}
+
+		if propertyIsValid(oldv, v.value, v.checkFn) {
+			// write new prop value to disk
+			if err := writeSystemProperty(k, v.value); err != nil {
+				logrus.Errorf("error setting the kernel parameter %s = %s, (leaving as %s) error: %s", k, v.value, oldv, err)
+				continue
+			}
+			logrus.Debugf("updated kernel parameter %s = %s (was %s)", k, v.value, oldv)
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_unsupported.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_unsupported.go
new file mode 100644
index 0000000000..a5e8d91083
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ostweaks_unsupported.go
@@ -0,0 +1,5 @@
+// +build !linux
+
+package overlay
+
+func applyOStweaks() {}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ov_endpoint.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_endpoint.go
new file mode 100644
index 0000000000..bb08de465c
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_endpoint.go
@@ -0,0 +1,252 @@
+package overlay
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type endpointTable map[string]*endpoint
+
+const overlayEndpointPrefix = "overlay/endpoint"
+
+type endpoint struct {
+	id       string
+	nid      string
+	ifName   string
+	mac      net.HardwareAddr
+	addr     *net.IPNet
+	dbExists bool
+	dbIndex  uint64
+}
+
+func (n *network) endpoint(eid string) *endpoint {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.endpoints[eid]
+}
+
+func (n *network) addEndpoint(ep *endpoint) {
+	n.Lock()
+	n.endpoints[ep.id] = ep
+	n.Unlock()
+}
+
+func (n *network) deleteEndpoint(eid string) {
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo,
+	epOptions map[string]interface{}) error {
+	var err error
+
+	if err = validateID(nid, eid); err != nil {
+		return err
+	}
+
+	// Since we perform lazy configuration make sure we try
+	// configuring the driver when we enter CreateEndpoint since
+	// CreateNetwork may not be called in every node.
+	if err := d.configure(); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+
+	ep := &endpoint{
+		id:   eid,
+		nid:  n.id,
+		addr: ifInfo.Address(),
+		mac:  ifInfo.MacAddress(),
+	}
+	if ep.addr == nil {
+		return fmt.Errorf("create endpoint was not passed interface IP address")
+	}
+
+	if s := n.getSubnetforIP(ep.addr); s == nil {
+		return fmt.Errorf("no matching subnet for IP %q in network %q", ep.addr, nid)
+	}
+
+	if ep.mac == nil {
+		ep.mac = netutils.GenerateMACFromIP(ep.addr.IP)
+		if err := ifInfo.SetMacAddress(ep.mac); err != nil {
+			return err
+		}
+	}
+
+	n.addEndpoint(ep)
+
+	if err := d.writeEndpointToStore(ep); err != nil {
+		return fmt.Errorf("failed to update overlay endpoint %s to local store: %v", ep.id[0:7], err)
+	}
+
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	nlh := ns.NlHandle()
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("endpoint id %q not found", eid)
+	}
+
+	n.deleteEndpoint(eid)
+
+	if err := d.deleteEndpointFromStore(ep); err != nil {
+		logrus.Warnf("Failed to delete overlay endpoint %s from local store: %v", ep.id[0:7], err)
+	}
+
+	if ep.ifName == "" {
+		return nil
+	}
+
+	link, err := nlh.LinkByName(ep.ifName)
+	if err != nil {
+		logrus.Debugf("Failed to retrieve interface (%s)'s link on endpoint (%s) delete: %v", ep.ifName, ep.id, err)
+		return nil
+	}
+	if err := nlh.LinkDel(link); err != nil {
+		logrus.Debugf("Failed to delete interface (%s)'s link on endpoint (%s) delete: %v", ep.ifName, ep.id, err)
+	}
+
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	return make(map[string]interface{}, 0), nil
+}
+
+func (d *driver) deleteEndpointFromStore(e *endpoint) error {
+	if d.localStore == nil {
+		return fmt.Errorf("overlay local store not initialized, ep not deleted")
+	}
+
+	return d.localStore.DeleteObjectAtomic(e)
+}
+
+func (d *driver) writeEndpointToStore(e *endpoint) error {
+	if d.localStore == nil {
+		return fmt.Errorf("overlay local store not initialized, ep not added")
+	}
+
+	return d.localStore.PutObjectAtomic(e)
+}
+
+func (ep *endpoint) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (ep *endpoint) New() datastore.KVObject {
+	return &endpoint{}
+}
+
+func (ep *endpoint) CopyTo(o datastore.KVObject) error {
+	dstep := o.(*endpoint)
+	*dstep = *ep
+	return nil
+}
+
+func (ep *endpoint) Key() []string {
+	return []string{overlayEndpointPrefix, ep.id}
+}
+
+func (ep *endpoint) KeyPrefix() []string {
+	return []string{overlayEndpointPrefix}
+}
+
+func (ep *endpoint) Index() uint64 {
+	return ep.dbIndex
+}
+
+func (ep *endpoint) SetIndex(index uint64) {
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *endpoint) Exists() bool {
+	return ep.dbExists
+}
+
+func (ep *endpoint) Skip() bool {
+	return false
+}
+
+func (ep *endpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *endpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *endpoint) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+
+	epMap["id"] = ep.id
+	epMap["nid"] = ep.nid
+	if ep.ifName != "" {
+		epMap["ifName"] = ep.ifName
+	}
+	if ep.addr != nil {
+		epMap["addr"] = ep.addr.String()
+	}
+	if len(ep.mac) != 0 {
+		epMap["mac"] = ep.mac.String()
+	}
+
+	return json.Marshal(epMap)
+}
+
+func (ep *endpoint) UnmarshalJSON(value []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+
+	json.Unmarshal(value, &epMap)
+
+	ep.id = epMap["id"].(string)
+	ep.nid = epMap["nid"].(string)
+	if v, ok := epMap["mac"]; ok {
+		if ep.mac, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint interface mac address after json unmarshal: %s", v.(string))
+		}
+	}
+	if v, ok := epMap["addr"]; ok {
+		if ep.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint interface ipv4 address after json unmarshal: %v", err)
+		}
+	}
+	if v, ok := epMap["ifName"]; ok {
+		ep.ifName = v.(string)
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ov_network.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_network.go
new file mode 100644
index 0000000000..9c83127d4f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_network.go
@@ -0,0 +1,1128 @@
+package overlay
+
+import (
+	"encoding/json"
+	"fmt"
+	"io/ioutil"
+	"net"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"sync"
+	"syscall"
+
+	"github.com/docker/docker/pkg/reexec"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/resolvconf"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+var (
+	hostMode    bool
+	networkOnce sync.Once
+	networkMu   sync.Mutex
+	vniTbl      = make(map[uint32]string)
+)
+
+type networkTable map[string]*network
+
+type subnet struct {
+	once      *sync.Once
+	vxlanName string
+	brName    string
+	vni       uint32
+	initErr   error
+	subnetIP  *net.IPNet
+	gwIP      *net.IPNet
+}
+
+type subnetJSON struct {
+	SubnetIP string
+	GwIP     string
+	Vni      uint32
+}
+
+type network struct {
+	id        string
+	dbIndex   uint64
+	dbExists  bool
+	sbox      osl.Sandbox
+	nlSocket  *nl.NetlinkSocket
+	endpoints endpointTable
+	driver    *driver
+	joinCnt   int
+	once      *sync.Once
+	initEpoch int
+	initErr   error
+	subnets   []*subnet
+	secure    bool
+	mtu       int
+	sync.Mutex
+}
+
+func init() {
+	reexec.Register("set-default-vlan", setDefaultVlan)
+}
+
+func setDefaultVlan() {
+	if len(os.Args) < 3 {
+		logrus.Error("insufficient number of arguments")
+		os.Exit(1)
+	}
+
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+
+	nsPath := os.Args[1]
+	ns, err := netns.GetFromPath(nsPath)
+	if err != nil {
+		logrus.Errorf("overlay namespace get failed, %v", err)
+		os.Exit(1)
+	}
+	if err = netns.Set(ns); err != nil {
+		logrus.Errorf("setting into overlay namespace failed, %v", err)
+		os.Exit(1)
+	}
+
+	// make sure the sysfs mount doesn't propagate back
+	if err = syscall.Unshare(syscall.CLONE_NEWNS); err != nil {
+		logrus.Errorf("unshare failed, %v", err)
+		os.Exit(1)
+	}
+
+	flag := syscall.MS_PRIVATE | syscall.MS_REC
+	if err = syscall.Mount("", "/", "", uintptr(flag), ""); err != nil {
+		logrus.Errorf("root mount failed, %v", err)
+		os.Exit(1)
+	}
+
+	if err = syscall.Mount("sysfs", "/sys", "sysfs", 0, ""); err != nil {
+		logrus.Errorf("mounting sysfs failed, %v", err)
+		os.Exit(1)
+	}
+
+	brName := os.Args[2]
+	path := filepath.Join("/sys/class/net", brName, "bridge/default_pvid")
+	data := []byte{'0', '\n'}
+
+	if err = ioutil.WriteFile(path, data, 0644); err != nil {
+		logrus.Errorf("enabling default vlan on bridge %s failed %v", brName, err)
+		os.Exit(1)
+	}
+	os.Exit(0)
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	if id == "" {
+		return fmt.Errorf("invalid network id")
+	}
+	if len(ipV4Data) == 0 || ipV4Data[0].Pool.String() == "0.0.0.0/0" {
+		return types.BadRequestErrorf("ipv4 pool is empty")
+	}
+
+	// Since we perform lazy configuration make sure we try
+	// configuring the driver when we enter CreateNetwork
+	if err := d.configure(); err != nil {
+		return err
+	}
+
+	n := &network{
+		id:        id,
+		driver:    d,
+		endpoints: endpointTable{},
+		once:      &sync.Once{},
+		subnets:   []*subnet{},
+	}
+
+	vnis := make([]uint32, 0, len(ipV4Data))
+	if gval, ok := option[netlabel.GenericData]; ok {
+		optMap := gval.(map[string]string)
+		if val, ok := optMap[netlabel.OverlayVxlanIDList]; ok {
+			logrus.Debugf("overlay: Received vxlan IDs: %s", val)
+			vniStrings := strings.Split(val, ",")
+			for _, vniStr := range vniStrings {
+				vni, err := strconv.Atoi(vniStr)
+				if err != nil {
+					return fmt.Errorf("invalid vxlan id value %q passed", vniStr)
+				}
+
+				vnis = append(vnis, uint32(vni))
+			}
+		}
+		if _, ok := optMap[secureOption]; ok {
+			n.secure = true
+		}
+		if val, ok := optMap[netlabel.DriverMTU]; ok {
+			var err error
+			if n.mtu, err = strconv.Atoi(val); err != nil {
+				return fmt.Errorf("failed to parse %v: %v", val, err)
+			}
+			if n.mtu < 0 {
+				return fmt.Errorf("invalid MTU value: %v", n.mtu)
+			}
+		}
+	}
+
+	// If we are getting vnis from libnetwork, either we get for
+	// all subnets or none.
+	if len(vnis) != 0 && len(vnis) < len(ipV4Data) {
+		return fmt.Errorf("insufficient vnis(%d) passed to overlay", len(vnis))
+	}
+
+	for i, ipd := range ipV4Data {
+		s := &subnet{
+			subnetIP: ipd.Pool,
+			gwIP:     ipd.Gateway,
+			once:     &sync.Once{},
+		}
+
+		if len(vnis) != 0 {
+			s.vni = vnis[i]
+		}
+
+		n.subnets = append(n.subnets, s)
+	}
+
+	d.Lock()
+	defer d.Unlock()
+	if d.networks[n.id] != nil {
+		return fmt.Errorf("attempt to create overlay network %v that already exists", n.id)
+	}
+
+	if err := n.writeToStore(); err != nil {
+		return fmt.Errorf("failed to update data store for network %v: %v", n.id, err)
+	}
+
+	// Make sure no rule is on the way from any stale secure network
+	if !n.secure {
+		for _, vni := range vnis {
+			programMangle(vni, false)
+			programInput(vni, false)
+		}
+	}
+
+	if nInfo != nil {
+		if err := nInfo.TableEventRegister(ovPeerTable, driverapi.EndpointObject); err != nil {
+			// XXX Undo writeToStore?  No method to so.  Why?
+			return err
+		}
+	}
+
+	d.networks[id] = n
+
+	return nil
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+
+	// Make sure driver resources are initialized before proceeding
+	if err := d.configure(); err != nil {
+		return err
+	}
+
+	d.Lock()
+	defer d.Unlock()
+
+	// This is similar to d.network(), but we need to keep holding the lock
+	// until we are done removing this network.
+	n, ok := d.networks[nid]
+	if !ok {
+		n = d.restoreNetworkFromStore(nid)
+	}
+	if n == nil {
+		return fmt.Errorf("could not find network with id %s", nid)
+	}
+
+	for _, ep := range n.endpoints {
+		if ep.ifName != "" {
+			if link, err := ns.NlHandle().LinkByName(ep.ifName); err == nil {
+				if err := ns.NlHandle().LinkDel(link); err != nil {
+					logrus.WithError(err).Warnf("Failed to delete interface (%s)'s link on endpoint (%s) delete", ep.ifName, ep.id)
+				}
+			}
+		}
+
+		if err := d.deleteEndpointFromStore(ep); err != nil {
+			logrus.Warnf("Failed to delete overlay endpoint %s from local store: %v", ep.id[0:7], err)
+		}
+	}
+	// flush the peerDB entries
+	d.peerFlush(nid)
+	delete(d.networks, nid)
+
+	vnis, err := n.releaseVxlanID()
+	if err != nil {
+		return err
+	}
+
+	if n.secure {
+		for _, vni := range vnis {
+			programMangle(vni, false)
+			programInput(vni, false)
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+func (n *network) incEndpointCount() {
+	n.Lock()
+	defer n.Unlock()
+	n.joinCnt++
+}
+
+func (n *network) joinSandbox(restore bool) error {
+	// If there is a race between two go routines here only one will win
+	// the other will wait.
+	n.once.Do(func() {
+		// save the error status of initSandbox in n.initErr so that
+		// all the racing go routines are able to know the status.
+		n.initErr = n.initSandbox(restore)
+	})
+
+	return n.initErr
+}
+
+func (n *network) joinSubnetSandbox(s *subnet, restore bool) error {
+	s.once.Do(func() {
+		s.initErr = n.initSubnetSandbox(s, restore)
+	})
+	return s.initErr
+}
+
+func (n *network) leaveSandbox() {
+	n.Lock()
+	defer n.Unlock()
+	n.joinCnt--
+	if n.joinCnt != 0 {
+		return
+	}
+
+	// We are about to destroy sandbox since the container is leaving the network
+	// Reinitialize the once variable so that we will be able to trigger one time
+	// sandbox initialization(again) when another container joins subsequently.
+	n.once = &sync.Once{}
+	for _, s := range n.subnets {
+		s.once = &sync.Once{}
+	}
+
+	n.destroySandbox()
+}
+
+// to be called while holding network lock
+func (n *network) destroySandbox() {
+	if n.sbox != nil {
+		for _, iface := range n.sbox.Info().Interfaces() {
+			if err := iface.Remove(); err != nil {
+				logrus.Debugf("Remove interface %s failed: %v", iface.SrcName(), err)
+			}
+		}
+
+		for _, s := range n.subnets {
+			if hostMode {
+				if err := removeFilters(n.id[:12], s.brName); err != nil {
+					logrus.Warnf("Could not remove overlay filters: %v", err)
+				}
+			}
+
+			if s.vxlanName != "" {
+				err := deleteInterface(s.vxlanName)
+				if err != nil {
+					logrus.Warnf("could not cleanup sandbox properly: %v", err)
+				}
+			}
+		}
+
+		if hostMode {
+			if err := removeNetworkChain(n.id[:12]); err != nil {
+				logrus.Warnf("could not remove network chain: %v", err)
+			}
+		}
+
+		// Close the netlink socket, this will also release the watchMiss goroutine that is using it
+		if n.nlSocket != nil {
+			n.nlSocket.Close()
+			n.nlSocket = nil
+		}
+
+		n.sbox.Destroy()
+		n.sbox = nil
+	}
+}
+
+func populateVNITbl() {
+	filepath.Walk(filepath.Dir(osl.GenerateKey("walk")),
+		func(path string, info os.FileInfo, err error) error {
+			_, fname := filepath.Split(path)
+
+			if len(strings.Split(fname, "-")) <= 1 {
+				return nil
+			}
+
+			ns, err := netns.GetFromPath(path)
+			if err != nil {
+				logrus.Errorf("Could not open namespace path %s during vni population: %v", path, err)
+				return nil
+			}
+			defer ns.Close()
+
+			nlh, err := netlink.NewHandleAt(ns, syscall.NETLINK_ROUTE)
+			if err != nil {
+				logrus.Errorf("Could not open netlink handle during vni population for ns %s: %v", path, err)
+				return nil
+			}
+			defer nlh.Delete()
+
+			err = nlh.SetSocketTimeout(soTimeout)
+			if err != nil {
+				logrus.Warnf("Failed to set the timeout on the netlink handle sockets for vni table population: %v", err)
+			}
+
+			links, err := nlh.LinkList()
+			if err != nil {
+				logrus.Errorf("Failed to list interfaces during vni population for ns %s: %v", path, err)
+				return nil
+			}
+
+			for _, l := range links {
+				if l.Type() == "vxlan" {
+					vniTbl[uint32(l.(*netlink.Vxlan).VxlanId)] = path
+				}
+			}
+
+			return nil
+		})
+}
+
+func networkOnceInit() {
+	populateVNITbl()
+
+	if os.Getenv("_OVERLAY_HOST_MODE") != "" {
+		hostMode = true
+		return
+	}
+
+	err := createVxlan("testvxlan", 1, 0)
+	if err != nil {
+		logrus.Errorf("Failed to create testvxlan interface: %v", err)
+		return
+	}
+
+	defer deleteInterface("testvxlan")
+
+	path := "/proc/self/ns/net"
+	hNs, err := netns.GetFromPath(path)
+	if err != nil {
+		logrus.Errorf("Failed to get network namespace from path %s while setting host mode: %v", path, err)
+		return
+	}
+	defer hNs.Close()
+
+	nlh := ns.NlHandle()
+
+	iface, err := nlh.LinkByName("testvxlan")
+	if err != nil {
+		logrus.Errorf("Failed to get link testvxlan while setting host mode: %v", err)
+		return
+	}
+
+	// If we are not able to move the vxlan interface to a namespace
+	// then fallback to host mode
+	if err := nlh.LinkSetNsFd(iface, int(hNs)); err != nil {
+		hostMode = true
+	}
+}
+
+func (n *network) generateVxlanName(s *subnet) string {
+	id := n.id
+	if len(n.id) > 5 {
+		id = n.id[:5]
+	}
+
+	return "vx-" + fmt.Sprintf("%06x", n.vxlanID(s)) + "-" + id
+}
+
+func (n *network) generateBridgeName(s *subnet) string {
+	id := n.id
+	if len(n.id) > 5 {
+		id = n.id[:5]
+	}
+
+	return n.getBridgeNamePrefix(s) + "-" + id
+}
+
+func (n *network) getBridgeNamePrefix(s *subnet) string {
+	return "ov-" + fmt.Sprintf("%06x", n.vxlanID(s))
+}
+
+func checkOverlap(nw *net.IPNet) error {
+	var nameservers []string
+
+	if rc, err := resolvconf.Get(); err == nil {
+		nameservers = resolvconf.GetNameserversAsCIDR(rc.Content)
+	}
+
+	if err := netutils.CheckNameserverOverlaps(nameservers, nw); err != nil {
+		return fmt.Errorf("overlay subnet %s failed check with nameserver: %v: %v", nw.String(), nameservers, err)
+	}
+
+	if err := netutils.CheckRouteOverlaps(nw); err != nil {
+		return fmt.Errorf("overlay subnet %s failed check with host route table: %v", nw.String(), err)
+	}
+
+	return nil
+}
+
+func (n *network) restoreSubnetSandbox(s *subnet, brName, vxlanName string) error {
+	sbox := n.sandbox()
+
+	// restore overlay osl sandbox
+	Ifaces := make(map[string][]osl.IfaceOption)
+	brIfaceOption := make([]osl.IfaceOption, 2)
+	brIfaceOption = append(brIfaceOption, sbox.InterfaceOptions().Address(s.gwIP))
+	brIfaceOption = append(brIfaceOption, sbox.InterfaceOptions().Bridge(true))
+	Ifaces[brName+"+br"] = brIfaceOption
+
+	err := sbox.Restore(Ifaces, nil, nil, nil)
+	if err != nil {
+		return err
+	}
+
+	Ifaces = make(map[string][]osl.IfaceOption)
+	vxlanIfaceOption := make([]osl.IfaceOption, 1)
+	vxlanIfaceOption = append(vxlanIfaceOption, sbox.InterfaceOptions().Master(brName))
+	Ifaces[vxlanName+"+vxlan"] = vxlanIfaceOption
+	return sbox.Restore(Ifaces, nil, nil, nil)
+}
+
+func (n *network) setupSubnetSandbox(s *subnet, brName, vxlanName string) error {
+
+	if hostMode {
+		// Try to delete stale bridge interface if it exists
+		if err := deleteInterface(brName); err != nil {
+			deleteInterfaceBySubnet(n.getBridgeNamePrefix(s), s)
+		}
+		// Try to delete the vxlan interface by vni if already present
+		deleteVxlanByVNI("", n.vxlanID(s))
+
+		if err := checkOverlap(s.subnetIP); err != nil {
+			return err
+		}
+	}
+
+	if !hostMode {
+		// Try to find this subnet's vni is being used in some
+		// other namespace by looking at vniTbl that we just
+		// populated in the once init. If a hit is found then
+		// it must a stale namespace from previous
+		// life. Destroy it completely and reclaim resourced.
+		networkMu.Lock()
+		path, ok := vniTbl[n.vxlanID(s)]
+		networkMu.Unlock()
+
+		if ok {
+			deleteVxlanByVNI(path, n.vxlanID(s))
+			if err := syscall.Unmount(path, syscall.MNT_FORCE); err != nil {
+				logrus.Errorf("unmount of %s failed: %v", path, err)
+			}
+			os.Remove(path)
+
+			networkMu.Lock()
+			delete(vniTbl, n.vxlanID(s))
+			networkMu.Unlock()
+		}
+	}
+
+	// create a bridge and vxlan device for this subnet and move it to the sandbox
+	sbox := n.sandbox()
+
+	if err := sbox.AddInterface(brName, "br",
+		sbox.InterfaceOptions().Address(s.gwIP),
+		sbox.InterfaceOptions().Bridge(true)); err != nil {
+		return fmt.Errorf("bridge creation in sandbox failed for subnet %q: %v", s.subnetIP.String(), err)
+	}
+
+	err := createVxlan(vxlanName, n.vxlanID(s), n.maxMTU())
+	if err != nil {
+		return err
+	}
+
+	if err := sbox.AddInterface(vxlanName, "vxlan",
+		sbox.InterfaceOptions().Master(brName)); err != nil {
+		return fmt.Errorf("vxlan interface creation failed for subnet %q: %v", s.subnetIP.String(), err)
+	}
+
+	if !hostMode {
+		var name string
+		for _, i := range sbox.Info().Interfaces() {
+			if i.Bridge() {
+				name = i.DstName()
+			}
+		}
+		cmd := &exec.Cmd{
+			Path:   reexec.Self(),
+			Args:   []string{"set-default-vlan", sbox.Key(), name},
+			Stdout: os.Stdout,
+			Stderr: os.Stderr,
+		}
+		if err := cmd.Run(); err != nil {
+			// not a fatal error
+			logrus.Errorf("reexec to set bridge default vlan failed %v", err)
+		}
+	}
+
+	if hostMode {
+		if err := addFilters(n.id[:12], brName); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (n *network) initSubnetSandbox(s *subnet, restore bool) error {
+	brName := n.generateBridgeName(s)
+	vxlanName := n.generateVxlanName(s)
+
+	if restore {
+		if err := n.restoreSubnetSandbox(s, brName, vxlanName); err != nil {
+			return err
+		}
+	} else {
+		if err := n.setupSubnetSandbox(s, brName, vxlanName); err != nil {
+			return err
+		}
+	}
+
+	n.Lock()
+	s.vxlanName = vxlanName
+	s.brName = brName
+	n.Unlock()
+
+	return nil
+}
+
+func (n *network) cleanupStaleSandboxes() {
+	filepath.Walk(filepath.Dir(osl.GenerateKey("walk")),
+		func(path string, info os.FileInfo, err error) error {
+			_, fname := filepath.Split(path)
+
+			pList := strings.Split(fname, "-")
+			if len(pList) <= 1 {
+				return nil
+			}
+
+			pattern := pList[1]
+			if strings.Contains(n.id, pattern) {
+				// Delete all vnis
+				deleteVxlanByVNI(path, 0)
+				syscall.Unmount(path, syscall.MNT_DETACH)
+				os.Remove(path)
+
+				// Now that we have destroyed this
+				// sandbox, remove all references to
+				// it in vniTbl so that we don't
+				// inadvertently destroy the sandbox
+				// created in this life.
+				networkMu.Lock()
+				for vni, tblPath := range vniTbl {
+					if tblPath == path {
+						delete(vniTbl, vni)
+					}
+				}
+				networkMu.Unlock()
+			}
+
+			return nil
+		})
+}
+
+func (n *network) initSandbox(restore bool) error {
+	n.Lock()
+	n.initEpoch++
+	n.Unlock()
+
+	networkOnce.Do(networkOnceInit)
+
+	if !restore {
+		if hostMode {
+			if err := addNetworkChain(n.id[:12]); err != nil {
+				return err
+			}
+		}
+
+		// If there are any stale sandboxes related to this network
+		// from previous daemon life clean it up here
+		n.cleanupStaleSandboxes()
+	}
+
+	// In the restore case network sandbox already exist; but we don't know
+	// what epoch number it was created with. It has to be retrieved by
+	// searching the net namespaces.
+	var key string
+	if restore {
+		key = osl.GenerateKey("-" + n.id)
+	} else {
+		key = osl.GenerateKey(fmt.Sprintf("%d-", n.initEpoch) + n.id)
+	}
+
+	sbox, err := osl.NewSandbox(key, !hostMode, restore)
+	if err != nil {
+		return fmt.Errorf("could not get network sandbox (oper %t): %v", restore, err)
+	}
+
+	// this is needed to let the peerAdd configure the sandbox
+	n.setSandbox(sbox)
+
+	if !restore {
+		// Initialize the sandbox with all the peers previously received from networkdb
+		n.driver.initSandboxPeerDB(n.id)
+	}
+
+	// If we are in swarm mode, we don't need anymore the watchMiss routine.
+	// This will save 1 thread and 1 netlink socket per network
+	if !n.driver.isSerfAlive() {
+		return nil
+	}
+
+	var nlSock *nl.NetlinkSocket
+	sbox.InvokeFunc(func() {
+		nlSock, err = nl.Subscribe(syscall.NETLINK_ROUTE, syscall.RTNLGRP_NEIGH)
+		if err != nil {
+			return
+		}
+		// set the receive timeout to not remain stuck on the RecvFrom if the fd gets closed
+		tv := syscall.NsecToTimeval(soTimeout.Nanoseconds())
+		err = nlSock.SetReceiveTimeout(&tv)
+	})
+	n.setNetlinkSocket(nlSock)
+
+	if err == nil {
+		go n.watchMiss(nlSock, key)
+	} else {
+		logrus.Errorf("failed to subscribe to neighbor group netlink messages for overlay network %s in sbox %s: %v",
+			n.id, sbox.Key(), err)
+	}
+
+	return nil
+}
+
+func (n *network) watchMiss(nlSock *nl.NetlinkSocket, nsPath string) {
+	// With the new version of the netlink library the deserialize function makes
+	// requests about the interface of the netlink message. This can succeed only
+	// if this go routine is in the target namespace. For this reason following we
+	// lock the thread on that namespace
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+	newNs, err := netns.GetFromPath(nsPath)
+	if err != nil {
+		logrus.WithError(err).Errorf("failed to get the namespace %s", nsPath)
+		return
+	}
+	defer newNs.Close()
+	if err = netns.Set(newNs); err != nil {
+		logrus.WithError(err).Errorf("failed to enter the namespace %s", nsPath)
+		return
+	}
+	for {
+		msgs, err := nlSock.Receive()
+		if err != nil {
+			n.Lock()
+			nlFd := nlSock.GetFd()
+			n.Unlock()
+			if nlFd == -1 {
+				// The netlink socket got closed, simply exit to not leak this goroutine
+				return
+			}
+			// When the receive timeout expires the receive will return EAGAIN
+			if err == syscall.EAGAIN {
+				// we continue here to avoid spam for timeouts
+				continue
+			}
+			logrus.Errorf("Failed to receive from netlink: %v ", err)
+			continue
+		}
+
+		for _, msg := range msgs {
+			if msg.Header.Type != syscall.RTM_GETNEIGH && msg.Header.Type != syscall.RTM_NEWNEIGH {
+				continue
+			}
+
+			neigh, err := netlink.NeighDeserialize(msg.Data)
+			if err != nil {
+				logrus.Errorf("Failed to deserialize netlink ndmsg: %v", err)
+				continue
+			}
+
+			var (
+				ip             net.IP
+				mac            net.HardwareAddr
+				l2Miss, l3Miss bool
+			)
+			if neigh.IP.To4() != nil {
+				ip = neigh.IP
+				l3Miss = true
+			} else if neigh.HardwareAddr != nil {
+				mac = []byte(neigh.HardwareAddr)
+				ip = net.IP(mac[2:])
+				l2Miss = true
+			} else {
+				continue
+			}
+
+			// Not any of the network's subnets. Ignore.
+			if !n.contains(ip) {
+				continue
+			}
+
+			if neigh.State&(netlink.NUD_STALE|netlink.NUD_INCOMPLETE) == 0 {
+				continue
+			}
+
+			logrus.Debugf("miss notification: dest IP %v, dest MAC %v", ip, mac)
+			mac, IPmask, vtep, err := n.driver.resolvePeer(n.id, ip)
+			if err != nil {
+				logrus.Errorf("could not resolve peer %q: %v", ip, err)
+				continue
+			}
+			n.driver.peerAdd(n.id, "dummy", ip, IPmask, mac, vtep, l2Miss, l3Miss, false)
+		}
+	}
+}
+
+// Restore a network from the store to the driver if it is present.
+// Must be called with the driver locked!
+func (d *driver) restoreNetworkFromStore(nid string) *network {
+	n := d.getNetworkFromStore(nid)
+	if n != nil {
+		n.driver = d
+		n.endpoints = endpointTable{}
+		n.once = &sync.Once{}
+		d.networks[nid] = n
+	}
+	return n
+}
+
+func (d *driver) network(nid string) *network {
+	d.Lock()
+	defer d.Unlock()
+	n, ok := d.networks[nid]
+	if !ok {
+		n = d.restoreNetworkFromStore(nid)
+	}
+
+	return n
+}
+
+func (d *driver) getNetworkFromStore(nid string) *network {
+	if d.store == nil {
+		return nil
+	}
+
+	n := &network{id: nid}
+	if err := d.store.GetObject(datastore.Key(n.Key()...), n); err != nil {
+		return nil
+	}
+
+	return n
+}
+
+func (n *network) sandbox() osl.Sandbox {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.sbox
+}
+
+func (n *network) setSandbox(sbox osl.Sandbox) {
+	n.Lock()
+	n.sbox = sbox
+	n.Unlock()
+}
+
+func (n *network) setNetlinkSocket(nlSk *nl.NetlinkSocket) {
+	n.Lock()
+	n.nlSocket = nlSk
+	n.Unlock()
+}
+
+func (n *network) vxlanID(s *subnet) uint32 {
+	n.Lock()
+	defer n.Unlock()
+
+	return s.vni
+}
+
+func (n *network) setVxlanID(s *subnet, vni uint32) {
+	n.Lock()
+	s.vni = vni
+	n.Unlock()
+}
+
+func (n *network) Key() []string {
+	return []string{"overlay", "network", n.id}
+}
+
+func (n *network) KeyPrefix() []string {
+	return []string{"overlay", "network"}
+}
+
+func (n *network) Value() []byte {
+	m := map[string]interface{}{}
+
+	netJSON := []*subnetJSON{}
+
+	for _, s := range n.subnets {
+		sj := &subnetJSON{
+			SubnetIP: s.subnetIP.String(),
+			GwIP:     s.gwIP.String(),
+			Vni:      s.vni,
+		}
+		netJSON = append(netJSON, sj)
+	}
+
+	m["secure"] = n.secure
+	m["subnets"] = netJSON
+	m["mtu"] = n.mtu
+	b, err := json.Marshal(m)
+	if err != nil {
+		return []byte{}
+	}
+
+	return b
+}
+
+func (n *network) Index() uint64 {
+	return n.dbIndex
+}
+
+func (n *network) SetIndex(index uint64) {
+	n.dbIndex = index
+	n.dbExists = true
+}
+
+func (n *network) Exists() bool {
+	return n.dbExists
+}
+
+func (n *network) Skip() bool {
+	return false
+}
+
+func (n *network) SetValue(value []byte) error {
+	var (
+		m       map[string]interface{}
+		newNet  bool
+		isMap   = true
+		netJSON = []*subnetJSON{}
+	)
+
+	if err := json.Unmarshal(value, &m); err != nil {
+		err := json.Unmarshal(value, &netJSON)
+		if err != nil {
+			return err
+		}
+		isMap = false
+	}
+
+	if len(n.subnets) == 0 {
+		newNet = true
+	}
+
+	if isMap {
+		if val, ok := m["secure"]; ok {
+			n.secure = val.(bool)
+		}
+		if val, ok := m["mtu"]; ok {
+			n.mtu = int(val.(float64))
+		}
+		bytes, err := json.Marshal(m["subnets"])
+		if err != nil {
+			return err
+		}
+		if err := json.Unmarshal(bytes, &netJSON); err != nil {
+			return err
+		}
+	}
+
+	for _, sj := range netJSON {
+		subnetIPstr := sj.SubnetIP
+		gwIPstr := sj.GwIP
+		vni := sj.Vni
+
+		subnetIP, _ := types.ParseCIDR(subnetIPstr)
+		gwIP, _ := types.ParseCIDR(gwIPstr)
+
+		if newNet {
+			s := &subnet{
+				subnetIP: subnetIP,
+				gwIP:     gwIP,
+				vni:      vni,
+				once:     &sync.Once{},
+			}
+			n.subnets = append(n.subnets, s)
+		} else {
+			sNet := n.getMatchingSubnet(subnetIP)
+			if sNet != nil {
+				sNet.vni = vni
+			}
+		}
+	}
+	return nil
+}
+
+func (n *network) DataScope() string {
+	return datastore.GlobalScope
+}
+
+func (n *network) writeToStore() error {
+	if n.driver.store == nil {
+		return nil
+	}
+
+	return n.driver.store.PutObjectAtomic(n)
+}
+
+func (n *network) releaseVxlanID() ([]uint32, error) {
+	if len(n.subnets) == 0 {
+		return nil, nil
+	}
+
+	if n.driver.store != nil {
+		if err := n.driver.store.DeleteObjectAtomic(n); err != nil {
+			if err == datastore.ErrKeyModified || err == datastore.ErrKeyNotFound {
+				// In both the above cases we can safely assume that the key has been removed by some other
+				// instance and so simply get out of here
+				return nil, nil
+			}
+
+			return nil, fmt.Errorf("failed to delete network to vxlan id map: %v", err)
+		}
+	}
+	var vnis []uint32
+	for _, s := range n.subnets {
+		if n.driver.vxlanIdm != nil {
+			vni := n.vxlanID(s)
+			vnis = append(vnis, vni)
+			n.driver.vxlanIdm.Release(uint64(vni))
+		}
+
+		n.setVxlanID(s, 0)
+	}
+
+	return vnis, nil
+}
+
+func (n *network) obtainVxlanID(s *subnet) error {
+	//return if the subnet already has a vxlan id assigned
+	if s.vni != 0 {
+		return nil
+	}
+
+	if n.driver.store == nil {
+		return fmt.Errorf("no valid vxlan id and no datastore configured, cannot obtain vxlan id")
+	}
+
+	for {
+		if err := n.driver.store.GetObject(datastore.Key(n.Key()...), n); err != nil {
+			return fmt.Errorf("getting network %q from datastore failed %v", n.id, err)
+		}
+
+		if s.vni == 0 {
+			vxlanID, err := n.driver.vxlanIdm.GetID(true)
+			if err != nil {
+				return fmt.Errorf("failed to allocate vxlan id: %v", err)
+			}
+
+			n.setVxlanID(s, uint32(vxlanID))
+			if err := n.writeToStore(); err != nil {
+				n.driver.vxlanIdm.Release(uint64(n.vxlanID(s)))
+				n.setVxlanID(s, 0)
+				if err == datastore.ErrKeyModified {
+					continue
+				}
+				return fmt.Errorf("network %q failed to update data store: %v", n.id, err)
+			}
+			return nil
+		}
+		return nil
+	}
+}
+
+// contains return true if the passed ip belongs to one the network's
+// subnets
+func (n *network) contains(ip net.IP) bool {
+	for _, s := range n.subnets {
+		if s.subnetIP.Contains(ip) {
+			return true
+		}
+	}
+
+	return false
+}
+
+// getSubnetforIP returns the subnet to which the given IP belongs
+func (n *network) getSubnetforIP(ip *net.IPNet) *subnet {
+	for _, s := range n.subnets {
+		// first check if the mask lengths are the same
+		i, _ := s.subnetIP.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if s.subnetIP.Contains(ip.IP) {
+			return s
+		}
+	}
+	return nil
+}
+
+// getMatchingSubnet return the network's subnet that matches the input
+func (n *network) getMatchingSubnet(ip *net.IPNet) *subnet {
+	if ip == nil {
+		return nil
+	}
+	for _, s := range n.subnets {
+		// first check if the mask lengths are the same
+		i, _ := s.subnetIP.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if s.subnetIP.IP.Equal(ip.IP) {
+			return s
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ov_serf.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_serf.go
new file mode 100644
index 0000000000..f644799afd
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_serf.go
@@ -0,0 +1,229 @@
+package overlay
+
+import (
+	"fmt"
+	"net"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/serf/serf"
+	"github.com/sirupsen/logrus"
+)
+
+type ovNotify struct {
+	action string
+	ep     *endpoint
+	nw     *network
+}
+
+type logWriter struct{}
+
+func (l *logWriter) Write(p []byte) (int, error) {
+	str := string(p)
+
+	switch {
+	case strings.Contains(str, "[WARN]"):
+		logrus.Warn(str)
+	case strings.Contains(str, "[DEBUG]"):
+		logrus.Debug(str)
+	case strings.Contains(str, "[INFO]"):
+		logrus.Info(str)
+	case strings.Contains(str, "[ERR]"):
+		logrus.Error(str)
+	}
+
+	return len(p), nil
+}
+
+func (d *driver) serfInit() error {
+	var err error
+
+	config := serf.DefaultConfig()
+	config.Init()
+	config.MemberlistConfig.BindAddr = d.advertiseAddress
+
+	d.eventCh = make(chan serf.Event, 4)
+	config.EventCh = d.eventCh
+	config.UserCoalescePeriod = 1 * time.Second
+	config.UserQuiescentPeriod = 50 * time.Millisecond
+
+	config.LogOutput = &logWriter{}
+	config.MemberlistConfig.LogOutput = config.LogOutput
+
+	s, err := serf.Create(config)
+	if err != nil {
+		return fmt.Errorf("failed to create cluster node: %v", err)
+	}
+	defer func() {
+		if err != nil {
+			s.Shutdown()
+		}
+	}()
+
+	d.serfInstance = s
+
+	d.notifyCh = make(chan ovNotify)
+	d.exitCh = make(chan chan struct{})
+
+	go d.startSerfLoop(d.eventCh, d.notifyCh, d.exitCh)
+	return nil
+}
+
+func (d *driver) serfJoin(neighIP string) error {
+	if neighIP == "" {
+		return fmt.Errorf("no neighbor to join")
+	}
+	if _, err := d.serfInstance.Join([]string{neighIP}, true); err != nil {
+		return fmt.Errorf("Failed to join the cluster at neigh IP %s: %v",
+			neighIP, err)
+	}
+	return nil
+}
+
+func (d *driver) notifyEvent(event ovNotify) {
+	ep := event.ep
+
+	ePayload := fmt.Sprintf("%s %s %s %s", event.action, ep.addr.IP.String(),
+		net.IP(ep.addr.Mask).String(), ep.mac.String())
+	eName := fmt.Sprintf("jl %s %s %s", d.serfInstance.LocalMember().Addr.String(),
+		event.nw.id, ep.id)
+
+	if err := d.serfInstance.UserEvent(eName, []byte(ePayload), true); err != nil {
+		logrus.Errorf("Sending user event failed: %v\n", err)
+	}
+}
+
+func (d *driver) processEvent(u serf.UserEvent) {
+	logrus.Debugf("Received user event name:%s, payload:%s LTime:%d \n", u.Name,
+		string(u.Payload), uint64(u.LTime))
+
+	var dummy, action, vtepStr, nid, eid, ipStr, maskStr, macStr string
+	if _, err := fmt.Sscan(u.Name, &dummy, &vtepStr, &nid, &eid); err != nil {
+		fmt.Printf("Failed to scan name string: %v\n", err)
+	}
+
+	if _, err := fmt.Sscan(string(u.Payload), &action,
+		&ipStr, &maskStr, &macStr); err != nil {
+		fmt.Printf("Failed to scan value string: %v\n", err)
+	}
+
+	logrus.Debugf("Parsed data = %s/%s/%s/%s/%s/%s\n", nid, eid, vtepStr, ipStr, maskStr, macStr)
+
+	mac, err := net.ParseMAC(macStr)
+	if err != nil {
+		logrus.Errorf("Failed to parse mac: %v\n", err)
+	}
+
+	if d.serfInstance.LocalMember().Addr.String() == vtepStr {
+		return
+	}
+
+	switch action {
+	case "join":
+		d.peerAdd(nid, eid, net.ParseIP(ipStr), net.IPMask(net.ParseIP(maskStr).To4()), mac, net.ParseIP(vtepStr), false, false, false)
+	case "leave":
+		d.peerDelete(nid, eid, net.ParseIP(ipStr), net.IPMask(net.ParseIP(maskStr).To4()), mac, net.ParseIP(vtepStr), false)
+	}
+}
+
+func (d *driver) processQuery(q *serf.Query) {
+	logrus.Debugf("Received query name:%s, payload:%s\n", q.Name,
+		string(q.Payload))
+
+	var nid, ipStr string
+	if _, err := fmt.Sscan(string(q.Payload), &nid, &ipStr); err != nil {
+		fmt.Printf("Failed to scan query payload string: %v\n", err)
+	}
+
+	pKey, pEntry, err := d.peerDbSearch(nid, net.ParseIP(ipStr))
+	if err != nil {
+		return
+	}
+
+	logrus.Debugf("Sending peer query resp mac %v, mask %s, vtep %s", pKey.peerMac, net.IP(pEntry.peerIPMask).String(), pEntry.vtep)
+	q.Respond([]byte(fmt.Sprintf("%s %s %s", pKey.peerMac.String(), net.IP(pEntry.peerIPMask).String(), pEntry.vtep.String())))
+}
+
+func (d *driver) resolvePeer(nid string, peerIP net.IP) (net.HardwareAddr, net.IPMask, net.IP, error) {
+	if d.serfInstance == nil {
+		return nil, nil, nil, fmt.Errorf("could not resolve peer: serf instance not initialized")
+	}
+
+	qPayload := fmt.Sprintf("%s %s", string(nid), peerIP.String())
+	resp, err := d.serfInstance.Query("peerlookup", []byte(qPayload), nil)
+	if err != nil {
+		return nil, nil, nil, fmt.Errorf("resolving peer by querying the cluster failed: %v", err)
+	}
+
+	respCh := resp.ResponseCh()
+	select {
+	case r := <-respCh:
+		var macStr, maskStr, vtepStr string
+		if _, err := fmt.Sscan(string(r.Payload), &macStr, &maskStr, &vtepStr); err != nil {
+			return nil, nil, nil, fmt.Errorf("bad response %q for the resolve query: %v", string(r.Payload), err)
+		}
+
+		mac, err := net.ParseMAC(macStr)
+		if err != nil {
+			return nil, nil, nil, fmt.Errorf("failed to parse mac: %v", err)
+		}
+
+		logrus.Debugf("Received peer query response, mac %s, vtep %s, mask %s", macStr, vtepStr, maskStr)
+		return mac, net.IPMask(net.ParseIP(maskStr).To4()), net.ParseIP(vtepStr), nil
+
+	case <-time.After(time.Second):
+		return nil, nil, nil, fmt.Errorf("timed out resolving peer by querying the cluster")
+	}
+}
+
+func (d *driver) startSerfLoop(eventCh chan serf.Event, notifyCh chan ovNotify,
+	exitCh chan chan struct{}) {
+
+	for {
+		select {
+		case notify, ok := <-notifyCh:
+			if !ok {
+				break
+			}
+
+			d.notifyEvent(notify)
+		case ch, ok := <-exitCh:
+			if !ok {
+				break
+			}
+
+			if err := d.serfInstance.Leave(); err != nil {
+				logrus.Errorf("failed leaving the cluster: %v\n", err)
+			}
+
+			d.serfInstance.Shutdown()
+			close(ch)
+			return
+		case e, ok := <-eventCh:
+			if !ok {
+				break
+			}
+
+			if e.EventType() == serf.EventQuery {
+				d.processQuery(e.(*serf.Query))
+				break
+			}
+
+			u, ok := e.(serf.UserEvent)
+			if !ok {
+				break
+			}
+			d.processEvent(u)
+		}
+	}
+}
+
+func (d *driver) isSerfAlive() bool {
+	d.Lock()
+	serfInstance := d.serfInstance
+	d.Unlock()
+	if serfInstance == nil || serfInstance.State() != serf.SerfAlive {
+		return false
+	}
+	return true
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/ov_utils.go b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_utils.go
new file mode 100644
index 0000000000..27f57c1fe2
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/ov_utils.go
@@ -0,0 +1,161 @@
+package overlay
+
+import (
+	"fmt"
+	"strings"
+	"syscall"
+
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+	"github.com/vishvananda/netns"
+)
+
+var soTimeout = ns.NetlinkSocketsTimeout
+
+func validateID(nid, eid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+
+	if eid == "" {
+		return fmt.Errorf("invalid endpoint id")
+	}
+
+	return nil
+}
+
+func createVethPair() (string, string, error) {
+	defer osl.InitOSContext()()
+	nlh := ns.NlHandle()
+
+	// Generate a name for what will be the host side pipe interface
+	name1, err := netutils.GenerateIfaceName(nlh, vethPrefix, vethLen)
+	if err != nil {
+		return "", "", fmt.Errorf("error generating veth name1: %v", err)
+	}
+
+	// Generate a name for what will be the sandbox side pipe interface
+	name2, err := netutils.GenerateIfaceName(nlh, vethPrefix, vethLen)
+	if err != nil {
+		return "", "", fmt.Errorf("error generating veth name2: %v", err)
+	}
+
+	// Generate and add the interface pipe host <-> sandbox
+	veth := &netlink.Veth{
+		LinkAttrs: netlink.LinkAttrs{Name: name1, TxQLen: 0},
+		PeerName:  name2}
+	if err := nlh.LinkAdd(veth); err != nil {
+		return "", "", fmt.Errorf("error creating veth pair: %v", err)
+	}
+
+	return name1, name2, nil
+}
+
+func createVxlan(name string, vni uint32, mtu int) error {
+	defer osl.InitOSContext()()
+
+	vxlan := &netlink.Vxlan{
+		LinkAttrs: netlink.LinkAttrs{Name: name, MTU: mtu},
+		VxlanId:   int(vni),
+		Learning:  true,
+		Port:      vxlanPort,
+		Proxy:     true,
+		L3miss:    true,
+		L2miss:    true,
+	}
+
+	if err := ns.NlHandle().LinkAdd(vxlan); err != nil {
+		return fmt.Errorf("error creating vxlan interface: %v", err)
+	}
+
+	return nil
+}
+
+func deleteInterfaceBySubnet(brPrefix string, s *subnet) error {
+	defer osl.InitOSContext()()
+
+	nlh := ns.NlHandle()
+	links, err := nlh.LinkList()
+	if err != nil {
+		return fmt.Errorf("failed to list interfaces while deleting bridge interface by subnet: %v", err)
+	}
+
+	for _, l := range links {
+		name := l.Attrs().Name
+		if _, ok := l.(*netlink.Bridge); ok && strings.HasPrefix(name, brPrefix) {
+			addrList, err := nlh.AddrList(l, netlink.FAMILY_V4)
+			if err != nil {
+				logrus.Errorf("error getting AddressList for bridge %s", name)
+				continue
+			}
+			for _, addr := range addrList {
+				if netutils.NetworkOverlaps(addr.IPNet, s.subnetIP) {
+					err = nlh.LinkDel(l)
+					if err != nil {
+						logrus.Errorf("error deleting bridge (%s) with subnet %v: %v", name, addr.IPNet, err)
+					}
+				}
+			}
+		}
+	}
+	return nil
+
+}
+
+func deleteInterface(name string) error {
+	defer osl.InitOSContext()()
+
+	link, err := ns.NlHandle().LinkByName(name)
+	if err != nil {
+		return fmt.Errorf("failed to find interface with name %s: %v", name, err)
+	}
+
+	if err := ns.NlHandle().LinkDel(link); err != nil {
+		return fmt.Errorf("error deleting interface with name %s: %v", name, err)
+	}
+
+	return nil
+}
+
+func deleteVxlanByVNI(path string, vni uint32) error {
+	defer osl.InitOSContext()()
+
+	nlh := ns.NlHandle()
+	if path != "" {
+		ns, err := netns.GetFromPath(path)
+		if err != nil {
+			return fmt.Errorf("failed to get ns handle for %s: %v", path, err)
+		}
+		defer ns.Close()
+
+		nlh, err = netlink.NewHandleAt(ns, syscall.NETLINK_ROUTE)
+		if err != nil {
+			return fmt.Errorf("failed to get netlink handle for ns %s: %v", path, err)
+		}
+		defer nlh.Delete()
+		err = nlh.SetSocketTimeout(soTimeout)
+		if err != nil {
+			logrus.Warnf("Failed to set the timeout on the netlink handle sockets for vxlan deletion: %v", err)
+		}
+	}
+
+	links, err := nlh.LinkList()
+	if err != nil {
+		return fmt.Errorf("failed to list interfaces while deleting vxlan interface by vni: %v", err)
+	}
+
+	for _, l := range links {
+		if l.Type() == "vxlan" && (vni == 0 || l.(*netlink.Vxlan).VxlanId == int(vni)) {
+			err = nlh.LinkDel(l)
+			if err != nil {
+				return fmt.Errorf("error deleting vxlan interface with id %d: %v", vni, err)
+			}
+			return nil
+		}
+	}
+
+	return fmt.Errorf("could not find a vxlan interface to delete with id %d", vni)
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.go b/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.go
new file mode 100644
index 0000000000..f029c5cce4
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.go
@@ -0,0 +1,407 @@
+package overlay
+
+//go:generate protoc -I.:../../Godeps/_workspace/src/github.com/gogo/protobuf  --gogo_out=import_path=github.com/docker/libnetwork/drivers/overlay,Mgogoproto/gogo.proto=github.com/gogo/protobuf/gogoproto:. overlay.proto
+
+import (
+	"context"
+	"fmt"
+	"net"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/idm"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/hashicorp/serf/serf"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	networkType  = "overlay"
+	vethPrefix   = "veth"
+	vethLen      = 7
+	vxlanIDStart = 256
+	vxlanIDEnd   = (1 << 24) - 1
+	vxlanPort    = 4789
+	vxlanEncap   = 50
+	secureOption = "encrypted"
+)
+
+var initVxlanIdm = make(chan (bool), 1)
+
+type driver struct {
+	eventCh          chan serf.Event
+	notifyCh         chan ovNotify
+	exitCh           chan chan struct{}
+	bindAddress      string
+	advertiseAddress string
+	neighIP          string
+	config           map[string]interface{}
+	peerDb           peerNetworkMap
+	secMap           *encrMap
+	serfInstance     *serf.Serf
+	networks         networkTable
+	store            datastore.DataStore
+	localStore       datastore.DataStore
+	vxlanIdm         *idm.Idm
+	initOS           sync.Once
+	joinOnce         sync.Once
+	localJoinOnce    sync.Once
+	keys             []*key
+	peerOpCh         chan *peerOperation
+	peerOpCancel     context.CancelFunc
+	sync.Mutex
+}
+
+// Init registers a new instance of overlay driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope:         datastore.GlobalScope,
+		ConnectivityScope: datastore.GlobalScope,
+	}
+	d := &driver{
+		networks: networkTable{},
+		peerDb: peerNetworkMap{
+			mp: map[string]*peerMap{},
+		},
+		secMap:   &encrMap{nodes: map[string][]*spi{}},
+		config:   config,
+		peerOpCh: make(chan *peerOperation),
+	}
+
+	// Launch the go routine for processing peer operations
+	ctx, cancel := context.WithCancel(context.Background())
+	d.peerOpCancel = cancel
+	go d.peerOpRoutine(ctx, d.peerOpCh)
+
+	if data, ok := config[netlabel.GlobalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("failed to initialize data store: %v", err)
+		}
+	}
+
+	if data, ok := config[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.localStore, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("failed to initialize local data store: %v", err)
+		}
+	}
+
+	if err := d.restoreEndpoints(); err != nil {
+		logrus.Warnf("Failure during overlay endpoints restore: %v", err)
+	}
+
+	// If an error happened when the network join the sandbox during the endpoints restore
+	// we should reset it now along with the once variable, so that subsequent endpoint joins
+	// outside of the restore path can potentially fix the network join and succeed.
+	for nid, n := range d.networks {
+		if n.initErr != nil {
+			logrus.Infof("resetting init error and once variable for network %s after unsuccessful endpoint restore: %v", nid, n.initErr)
+			n.initErr = nil
+			n.once = &sync.Once{}
+		}
+	}
+
+	return dc.RegisterDriver(networkType, d, c)
+}
+
+// Endpoints are stored in the local store. Restore them and reconstruct the overlay sandbox
+func (d *driver) restoreEndpoints() error {
+	if d.localStore == nil {
+		logrus.Warn("Cannot restore overlay endpoints because local datastore is missing")
+		return nil
+	}
+	kvol, err := d.localStore.List(datastore.Key(overlayEndpointPrefix), &endpoint{})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to read overlay endpoint from store: %v", err)
+	}
+
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+	for _, kvo := range kvol {
+		ep := kvo.(*endpoint)
+		n := d.network(ep.nid)
+		if n == nil {
+			logrus.Debugf("Network (%s) not found for restored endpoint (%s)", ep.nid[0:7], ep.id[0:7])
+			logrus.Debugf("Deleting stale overlay endpoint (%s) from store", ep.id[0:7])
+			if err := d.deleteEndpointFromStore(ep); err != nil {
+				logrus.Debugf("Failed to delete stale overlay endpoint (%s) from store", ep.id[0:7])
+			}
+			continue
+		}
+		n.addEndpoint(ep)
+
+		s := n.getSubnetforIP(ep.addr)
+		if s == nil {
+			return fmt.Errorf("could not find subnet for endpoint %s", ep.id)
+		}
+
+		if err := n.joinSandbox(true); err != nil {
+			return fmt.Errorf("restore network sandbox failed: %v", err)
+		}
+
+		if err := n.joinSubnetSandbox(s, true); err != nil {
+			return fmt.Errorf("restore subnet sandbox failed for %q: %v", s.subnetIP.String(), err)
+		}
+
+		Ifaces := make(map[string][]osl.IfaceOption)
+		vethIfaceOption := make([]osl.IfaceOption, 1)
+		vethIfaceOption = append(vethIfaceOption, n.sbox.InterfaceOptions().Master(s.brName))
+		Ifaces["veth+veth"] = vethIfaceOption
+
+		err := n.sbox.Restore(Ifaces, nil, nil, nil)
+		if err != nil {
+			return fmt.Errorf("failed to restore overlay sandbox: %v", err)
+		}
+
+		n.incEndpointCount()
+		d.peerAdd(ep.nid, ep.id, ep.addr.IP, ep.addr.Mask, ep.mac, net.ParseIP(d.advertiseAddress), false, false, true)
+	}
+	return nil
+}
+
+// Fini cleans up the driver resources
+func Fini(drv driverapi.Driver) {
+	d := drv.(*driver)
+
+	// Notify the peer go routine to return
+	if d.peerOpCancel != nil {
+		d.peerOpCancel()
+	}
+
+	if d.exitCh != nil {
+		waitCh := make(chan struct{})
+
+		d.exitCh <- waitCh
+
+		<-waitCh
+	}
+}
+
+func (d *driver) configure() error {
+
+	// Apply OS specific kernel configs if needed
+	d.initOS.Do(applyOStweaks)
+
+	if d.store == nil {
+		return nil
+	}
+
+	if d.vxlanIdm == nil {
+		return d.initializeVxlanIdm()
+	}
+
+	return nil
+}
+
+func (d *driver) initializeVxlanIdm() error {
+	var err error
+
+	initVxlanIdm <- true
+	defer func() { <-initVxlanIdm }()
+
+	if d.vxlanIdm != nil {
+		return nil
+	}
+
+	d.vxlanIdm, err = idm.New(d.store, "vxlan-id", vxlanIDStart, vxlanIDEnd)
+	if err != nil {
+		return fmt.Errorf("failed to initialize vxlan id manager: %v", err)
+	}
+
+	return nil
+}
+
+func (d *driver) Type() string {
+	return networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+func validateSelf(node string) error {
+	advIP := net.ParseIP(node)
+	if advIP == nil {
+		return fmt.Errorf("invalid self address (%s)", node)
+	}
+
+	addrs, err := net.InterfaceAddrs()
+	if err != nil {
+		return fmt.Errorf("Unable to get interface addresses %v", err)
+	}
+	for _, addr := range addrs {
+		ip, _, err := net.ParseCIDR(addr.String())
+		if err == nil && ip.Equal(advIP) {
+			return nil
+		}
+	}
+	return fmt.Errorf("Multi-Host overlay networking requires cluster-advertise(%s) to be configured with a local ip-address that is reachable within the cluster", advIP.String())
+}
+
+func (d *driver) nodeJoin(advertiseAddress, bindAddress string, self bool) {
+	if self && !d.isSerfAlive() {
+		d.Lock()
+		d.advertiseAddress = advertiseAddress
+		d.bindAddress = bindAddress
+		d.Unlock()
+
+		// If containers are already running on this network update the
+		// advertise address in the peerDB
+		d.localJoinOnce.Do(func() {
+			d.peerDBUpdateSelf()
+		})
+
+		// If there is no cluster store there is no need to start serf.
+		if d.store != nil {
+			if err := validateSelf(advertiseAddress); err != nil {
+				logrus.Warn(err.Error())
+			}
+			err := d.serfInit()
+			if err != nil {
+				logrus.Errorf("initializing serf instance failed: %v", err)
+				d.Lock()
+				d.advertiseAddress = ""
+				d.bindAddress = ""
+				d.Unlock()
+				return
+			}
+		}
+	}
+
+	d.Lock()
+	if !self {
+		d.neighIP = advertiseAddress
+	}
+	neighIP := d.neighIP
+	d.Unlock()
+
+	if d.serfInstance != nil && neighIP != "" {
+		var err error
+		d.joinOnce.Do(func() {
+			err = d.serfJoin(neighIP)
+			if err == nil {
+				d.pushLocalDb()
+			}
+		})
+		if err != nil {
+			logrus.Errorf("joining serf neighbor %s failed: %v", advertiseAddress, err)
+			d.Lock()
+			d.joinOnce = sync.Once{}
+			d.Unlock()
+			return
+		}
+	}
+}
+
+func (d *driver) pushLocalEndpointEvent(action, nid, eid string) {
+	n := d.network(nid)
+	if n == nil {
+		logrus.Debugf("Error pushing local endpoint event for network %s", nid)
+		return
+	}
+	ep := n.endpoint(eid)
+	if ep == nil {
+		logrus.Debugf("Error pushing local endpoint event for ep %s / %s", nid, eid)
+		return
+	}
+
+	if !d.isSerfAlive() {
+		return
+	}
+	d.notifyCh <- ovNotify{
+		action: "join",
+		nw:     n,
+		ep:     ep,
+	}
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	var err error
+	switch dType {
+	case discoverapi.NodeDiscovery:
+		nodeData, ok := data.(discoverapi.NodeDiscoveryData)
+		if !ok || nodeData.Address == "" {
+			return fmt.Errorf("invalid discovery data")
+		}
+		d.nodeJoin(nodeData.Address, nodeData.BindAddress, nodeData.Self)
+	case discoverapi.DatastoreConfig:
+		if d.store != nil {
+			return types.ForbiddenErrorf("cannot accept datastore configuration: Overlay driver has a datastore configured already")
+		}
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("failed to initialize data store: %v", err)
+		}
+	case discoverapi.EncryptionKeysConfig:
+		encrData, ok := data.(discoverapi.DriverEncryptionConfig)
+		if !ok {
+			return fmt.Errorf("invalid encryption key notification data")
+		}
+		keys := make([]*key, 0, len(encrData.Keys))
+		for i := 0; i < len(encrData.Keys); i++ {
+			k := &key{
+				value: encrData.Keys[i],
+				tag:   uint32(encrData.Tags[i]),
+			}
+			keys = append(keys, k)
+		}
+		if err := d.setKeys(keys); err != nil {
+			logrus.Warn(err)
+		}
+	case discoverapi.EncryptionKeysUpdate:
+		var newKey, delKey, priKey *key
+		encrData, ok := data.(discoverapi.DriverEncryptionUpdate)
+		if !ok {
+			return fmt.Errorf("invalid encryption key notification data")
+		}
+		if encrData.Key != nil {
+			newKey = &key{
+				value: encrData.Key,
+				tag:   uint32(encrData.Tag),
+			}
+		}
+		if encrData.Primary != nil {
+			priKey = &key{
+				value: encrData.Primary,
+				tag:   uint32(encrData.PrimaryTag),
+			}
+		}
+		if encrData.Prune != nil {
+			delKey = &key{
+				value: encrData.Prune,
+				tag:   uint32(encrData.PruneTag),
+			}
+		}
+		if err := d.updateKeys(newKey, priKey, delKey); err != nil {
+			logrus.Warn(err)
+		}
+	default:
+	}
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.pb.go b/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.pb.go
new file mode 100644
index 0000000000..cfa0eeeae4
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/overlay.pb.go
@@ -0,0 +1,468 @@
+// Code generated by protoc-gen-gogo.
+// source: overlay.proto
+// DO NOT EDIT!
+
+/*
+	Package overlay is a generated protocol buffer package.
+
+	It is generated from these files:
+		overlay.proto
+
+	It has these top-level messages:
+		PeerRecord
+*/
+package overlay
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+
+import strings "strings"
+import github_com_gogo_protobuf_proto "github.com/gogo/protobuf/proto"
+import sort "sort"
+import strconv "strconv"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+const _ = proto.GoGoProtoPackageIsVersion1
+
+// PeerRecord defines the information corresponding to a peer
+// container in the overlay network.
+type PeerRecord struct {
+	// Endpoint IP is the IP of the container attachment on the
+	// given overlay network.
+	EndpointIP string `protobuf:"bytes,1,opt,name=endpoint_ip,json=endpointIp,proto3" json:"endpoint_ip,omitempty"`
+	// Endpoint MAC is the mac address of the container attachment
+	// on the given overlay network.
+	EndpointMAC string `protobuf:"bytes,2,opt,name=endpoint_mac,json=endpointMac,proto3" json:"endpoint_mac,omitempty"`
+	// Tunnel Endpoint IP defines the host IP for the host in
+	// which this container is running and can be reached by
+	// building a tunnel to that host IP.
+	TunnelEndpointIP string `protobuf:"bytes,3,opt,name=tunnel_endpoint_ip,json=tunnelEndpointIp,proto3" json:"tunnel_endpoint_ip,omitempty"`
+}
+
+func (m *PeerRecord) Reset()                    { *m = PeerRecord{} }
+func (*PeerRecord) ProtoMessage()               {}
+func (*PeerRecord) Descriptor() ([]byte, []int) { return fileDescriptorOverlay, []int{0} }
+
+func init() {
+	proto.RegisterType((*PeerRecord)(nil), "overlay.PeerRecord")
+}
+func (this *PeerRecord) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&overlay.PeerRecord{")
+	s = append(s, "EndpointIP: "+fmt.Sprintf("%#v", this.EndpointIP)+",\n")
+	s = append(s, "EndpointMAC: "+fmt.Sprintf("%#v", this.EndpointMAC)+",\n")
+	s = append(s, "TunnelEndpointIP: "+fmt.Sprintf("%#v", this.TunnelEndpointIP)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringOverlay(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func extensionToGoStringOverlay(e map[int32]github_com_gogo_protobuf_proto.Extension) string {
+	if e == nil {
+		return "nil"
+	}
+	s := "map[int32]proto.Extension{"
+	keys := make([]int, 0, len(e))
+	for k := range e {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+	ss := []string{}
+	for _, k := range keys {
+		ss = append(ss, strconv.Itoa(k)+": "+e[int32(k)].GoString())
+	}
+	s += strings.Join(ss, ",") + "}"
+	return s
+}
+func (m *PeerRecord) Marshal() (data []byte, err error) {
+	size := m.Size()
+	data = make([]byte, size)
+	n, err := m.MarshalTo(data)
+	if err != nil {
+		return nil, err
+	}
+	return data[:n], nil
+}
+
+func (m *PeerRecord) MarshalTo(data []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.EndpointIP) > 0 {
+		data[i] = 0xa
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.EndpointIP)))
+		i += copy(data[i:], m.EndpointIP)
+	}
+	if len(m.EndpointMAC) > 0 {
+		data[i] = 0x12
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.EndpointMAC)))
+		i += copy(data[i:], m.EndpointMAC)
+	}
+	if len(m.TunnelEndpointIP) > 0 {
+		data[i] = 0x1a
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.TunnelEndpointIP)))
+		i += copy(data[i:], m.TunnelEndpointIP)
+	}
+	return i, nil
+}
+
+func encodeFixed64Overlay(data []byte, offset int, v uint64) int {
+	data[offset] = uint8(v)
+	data[offset+1] = uint8(v >> 8)
+	data[offset+2] = uint8(v >> 16)
+	data[offset+3] = uint8(v >> 24)
+	data[offset+4] = uint8(v >> 32)
+	data[offset+5] = uint8(v >> 40)
+	data[offset+6] = uint8(v >> 48)
+	data[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Overlay(data []byte, offset int, v uint32) int {
+	data[offset] = uint8(v)
+	data[offset+1] = uint8(v >> 8)
+	data[offset+2] = uint8(v >> 16)
+	data[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintOverlay(data []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		data[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	data[offset] = uint8(v)
+	return offset + 1
+}
+func (m *PeerRecord) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.EndpointIP)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	l = len(m.EndpointMAC)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	l = len(m.TunnelEndpointIP)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	return n
+}
+
+func sovOverlay(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozOverlay(x uint64) (n int) {
+	return sovOverlay(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *PeerRecord) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PeerRecord{`,
+		`EndpointIP:` + fmt.Sprintf("%v", this.EndpointIP) + `,`,
+		`EndpointMAC:` + fmt.Sprintf("%v", this.EndpointMAC) + `,`,
+		`TunnelEndpointIP:` + fmt.Sprintf("%v", this.TunnelEndpointIP) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringOverlay(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *PeerRecord) Unmarshal(data []byte) error {
+	l := len(data)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowOverlay
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := data[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PeerRecord: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PeerRecord: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EndpointIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EndpointIP = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EndpointMAC", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EndpointMAC = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TunnelEndpointIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TunnelEndpointIP = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipOverlay(data[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipOverlay(data []byte) (n int, err error) {
+	l := len(data)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowOverlay
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := data[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if data[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthOverlay
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowOverlay
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := data[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipOverlay(data[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthOverlay = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowOverlay   = fmt.Errorf("proto: integer overflow")
+)
+
+var fileDescriptorOverlay = []byte{
+	// 195 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0xcd, 0x2f, 0x4b, 0x2d,
+	0xca, 0x49, 0xac, 0xd4, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0x62, 0x87, 0x72, 0xa5, 0x44, 0xd2,
+	0xf3, 0xd3, 0xf3, 0xc1, 0x62, 0xfa, 0x20, 0x16, 0x44, 0x5a, 0x69, 0x2b, 0x23, 0x17, 0x57, 0x40,
+	0x6a, 0x6a, 0x51, 0x50, 0x6a, 0x72, 0x7e, 0x51, 0x8a, 0x90, 0x3e, 0x17, 0x77, 0x6a, 0x5e, 0x4a,
+	0x41, 0x7e, 0x66, 0x5e, 0x49, 0x7c, 0x66, 0x81, 0x04, 0xa3, 0x02, 0xa3, 0x06, 0xa7, 0x13, 0xdf,
+	0xa3, 0x7b, 0xf2, 0x5c, 0xae, 0x50, 0x61, 0xcf, 0x80, 0x20, 0x2e, 0x98, 0x12, 0xcf, 0x02, 0x21,
+	0x23, 0x2e, 0x1e, 0xb8, 0x86, 0xdc, 0xc4, 0x64, 0x09, 0x26, 0xb0, 0x0e, 0x7e, 0xa0, 0x0e, 0x6e,
+	0x98, 0x0e, 0x5f, 0x47, 0xe7, 0x20, 0xb8, 0xa9, 0xbe, 0x89, 0xc9, 0x42, 0x4e, 0x5c, 0x42, 0x25,
+	0xa5, 0x79, 0x79, 0xa9, 0x39, 0xf1, 0xc8, 0x76, 0x31, 0x83, 0x75, 0x8a, 0x00, 0x75, 0x0a, 0x84,
+	0x80, 0x65, 0x91, 0x6c, 0x14, 0x28, 0x41, 0x15, 0x29, 0x70, 0x92, 0xb8, 0xf1, 0x50, 0x8e, 0xe1,
+	0xc3, 0x43, 0x39, 0xc6, 0x86, 0x47, 0x72, 0x8c, 0x27, 0x80, 0xf8, 0x02, 0x10, 0x3f, 0x00, 0xe2,
+	0x24, 0x36, 0xb0, 0xc7, 0x8c, 0x01, 0x01, 0x00, 0x00, 0xff, 0xff, 0xbf, 0xd7, 0x7d, 0x7d, 0x08,
+	0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/overlay/peerdb.go b/vendor/github.com/docker/libnetwork/drivers/overlay/peerdb.go
new file mode 100644
index 0000000000..bdd3cb12af
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/overlay/peerdb.go
@@ -0,0 +1,525 @@
+package overlay
+
+import (
+	"context"
+	"fmt"
+	"net"
+	"sync"
+	"syscall"
+
+	"github.com/docker/libnetwork/common"
+	"github.com/docker/libnetwork/osl"
+	"github.com/sirupsen/logrus"
+)
+
+const ovPeerTable = "overlay_peer_table"
+
+type peerKey struct {
+	peerIP  net.IP
+	peerMac net.HardwareAddr
+}
+
+type peerEntry struct {
+	eid        string
+	vtep       net.IP
+	peerIPMask net.IPMask
+	isLocal    bool
+}
+
+func (p *peerEntry) MarshalDB() peerEntryDB {
+	ones, bits := p.peerIPMask.Size()
+	return peerEntryDB{
+		eid:            p.eid,
+		vtep:           p.vtep.String(),
+		peerIPMaskOnes: ones,
+		peerIPMaskBits: bits,
+		isLocal:        p.isLocal,
+	}
+}
+
+// This the structure saved into the set (SetMatrix), due to the implementation of it
+// the value inserted in the set has to be Hashable so the []byte had to be converted into
+// strings
+type peerEntryDB struct {
+	eid            string
+	vtep           string
+	peerIPMaskOnes int
+	peerIPMaskBits int
+	isLocal        bool
+}
+
+func (p *peerEntryDB) UnMarshalDB() peerEntry {
+	return peerEntry{
+		eid:        p.eid,
+		vtep:       net.ParseIP(p.vtep),
+		peerIPMask: net.CIDRMask(p.peerIPMaskOnes, p.peerIPMaskBits),
+		isLocal:    p.isLocal,
+	}
+}
+
+type peerMap struct {
+	// set of peerEntry, note they have to be objects and not pointers to maintain the proper equality checks
+	mp common.SetMatrix
+	sync.Mutex
+}
+
+type peerNetworkMap struct {
+	// map with key peerKey
+	mp map[string]*peerMap
+	sync.Mutex
+}
+
+func (pKey peerKey) String() string {
+	return fmt.Sprintf("%s %s", pKey.peerIP, pKey.peerMac)
+}
+
+func (pKey *peerKey) Scan(state fmt.ScanState, verb rune) error {
+	ipB, err := state.Token(true, nil)
+	if err != nil {
+		return err
+	}
+
+	pKey.peerIP = net.ParseIP(string(ipB))
+
+	macB, err := state.Token(true, nil)
+	if err != nil {
+		return err
+	}
+
+	pKey.peerMac, err = net.ParseMAC(string(macB))
+	return err
+}
+
+func (d *driver) peerDbWalk(f func(string, *peerKey, *peerEntry) bool) error {
+	d.peerDb.Lock()
+	nids := []string{}
+	for nid := range d.peerDb.mp {
+		nids = append(nids, nid)
+	}
+	d.peerDb.Unlock()
+
+	for _, nid := range nids {
+		d.peerDbNetworkWalk(nid, func(pKey *peerKey, pEntry *peerEntry) bool {
+			return f(nid, pKey, pEntry)
+		})
+	}
+	return nil
+}
+
+func (d *driver) peerDbNetworkWalk(nid string, f func(*peerKey, *peerEntry) bool) error {
+	d.peerDb.Lock()
+	pMap, ok := d.peerDb.mp[nid]
+	d.peerDb.Unlock()
+
+	if !ok {
+		return nil
+	}
+
+	mp := map[string]peerEntry{}
+	pMap.Lock()
+	for _, pKeyStr := range pMap.mp.Keys() {
+		entryDBList, ok := pMap.mp.Get(pKeyStr)
+		if ok {
+			peerEntryDB := entryDBList[0].(peerEntryDB)
+			mp[pKeyStr] = peerEntryDB.UnMarshalDB()
+		}
+	}
+	pMap.Unlock()
+
+	for pKeyStr, pEntry := range mp {
+		var pKey peerKey
+		if _, err := fmt.Sscan(pKeyStr, &pKey); err != nil {
+			logrus.Warnf("Peer key scan on network %s failed: %v", nid, err)
+		}
+		if f(&pKey, &pEntry) {
+			return nil
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) peerDbSearch(nid string, peerIP net.IP) (*peerKey, *peerEntry, error) {
+	var pKeyMatched *peerKey
+	var pEntryMatched *peerEntry
+	err := d.peerDbNetworkWalk(nid, func(pKey *peerKey, pEntry *peerEntry) bool {
+		if pKey.peerIP.Equal(peerIP) {
+			pKeyMatched = pKey
+			pEntryMatched = pEntry
+			return true
+		}
+
+		return false
+	})
+
+	if err != nil {
+		return nil, nil, fmt.Errorf("peerdb search for peer ip %q failed: %v", peerIP, err)
+	}
+
+	if pKeyMatched == nil || pEntryMatched == nil {
+		return nil, nil, fmt.Errorf("peer ip %q not found in peerdb", peerIP)
+	}
+
+	return pKeyMatched, pEntryMatched, nil
+}
+
+func (d *driver) peerDbAdd(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, isLocal bool) (bool, int) {
+
+	d.peerDb.Lock()
+	pMap, ok := d.peerDb.mp[nid]
+	if !ok {
+		d.peerDb.mp[nid] = &peerMap{
+			mp: common.NewSetMatrix(),
+		}
+
+		pMap = d.peerDb.mp[nid]
+	}
+	d.peerDb.Unlock()
+
+	pKey := peerKey{
+		peerIP:  peerIP,
+		peerMac: peerMac,
+	}
+
+	pEntry := peerEntry{
+		eid:        eid,
+		vtep:       vtep,
+		peerIPMask: peerIPMask,
+		isLocal:    isLocal,
+	}
+
+	pMap.Lock()
+	defer pMap.Unlock()
+	b, i := pMap.mp.Insert(pKey.String(), pEntry.MarshalDB())
+	if i != 1 {
+		// Transient case, there is more than one endpoint that is using the same IP,MAC pair
+		s, _ := pMap.mp.String(pKey.String())
+		logrus.Warnf("peerDbAdd transient condition - Key:%s cardinality:%d db state:%s", pKey.String(), i, s)
+	}
+	return b, i
+}
+
+func (d *driver) peerDbDelete(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, isLocal bool) (bool, int) {
+
+	d.peerDb.Lock()
+	pMap, ok := d.peerDb.mp[nid]
+	if !ok {
+		d.peerDb.Unlock()
+		return false, 0
+	}
+	d.peerDb.Unlock()
+
+	pKey := peerKey{
+		peerIP:  peerIP,
+		peerMac: peerMac,
+	}
+
+	pEntry := peerEntry{
+		eid:        eid,
+		vtep:       vtep,
+		peerIPMask: peerIPMask,
+		isLocal:    isLocal,
+	}
+
+	pMap.Lock()
+	defer pMap.Unlock()
+	b, i := pMap.mp.Remove(pKey.String(), pEntry.MarshalDB())
+	if i != 0 {
+		// Transient case, there is more than one endpoint that is using the same IP,MAC pair
+		s, _ := pMap.mp.String(pKey.String())
+		logrus.Warnf("peerDbDelete transient condition - Key:%s cardinality:%d db state:%s", pKey.String(), i, s)
+	}
+	return b, i
+}
+
+// The overlay uses a lazy initialization approach, this means that when a network is created
+// and the driver registered the overlay does not allocate resources till the moment that a
+// sandbox is actually created.
+// At the moment of this call, that happens when a sandbox is initialized, is possible that
+// networkDB has already delivered some events of peers already available on remote nodes,
+// these peers are saved into the peerDB and this function is used to properly configure
+// the network sandbox with all those peers that got previously notified.
+// Note also that this method sends a single message on the channel and the go routine on the
+// other side, will atomically loop on the whole table of peers and will program their state
+// in one single atomic operation. This is fundamental to guarantee consistency, and avoid that
+// new peerAdd or peerDelete gets reordered during the sandbox init.
+func (d *driver) initSandboxPeerDB(nid string) {
+	d.peerInit(nid)
+}
+
+type peerOperationType int32
+
+const (
+	peerOperationINIT peerOperationType = iota
+	peerOperationADD
+	peerOperationDELETE
+	peerOperationFLUSH
+)
+
+type peerOperation struct {
+	opType     peerOperationType
+	networkID  string
+	endpointID string
+	peerIP     net.IP
+	peerIPMask net.IPMask
+	peerMac    net.HardwareAddr
+	vtepIP     net.IP
+	l2Miss     bool
+	l3Miss     bool
+	localPeer  bool
+	callerName string
+}
+
+func (d *driver) peerOpRoutine(ctx context.Context, ch chan *peerOperation) {
+	var err error
+	for {
+		select {
+		case <-ctx.Done():
+			return
+		case op := <-ch:
+			switch op.opType {
+			case peerOperationINIT:
+				err = d.peerInitOp(op.networkID)
+			case peerOperationADD:
+				err = d.peerAddOp(op.networkID, op.endpointID, op.peerIP, op.peerIPMask, op.peerMac, op.vtepIP, op.l2Miss, op.l3Miss, true, op.localPeer)
+			case peerOperationDELETE:
+				err = d.peerDeleteOp(op.networkID, op.endpointID, op.peerIP, op.peerIPMask, op.peerMac, op.vtepIP, op.localPeer)
+			case peerOperationFLUSH:
+				err = d.peerFlushOp(op.networkID)
+			}
+			if err != nil {
+				logrus.Warnf("Peer operation failed:%s op:%v", err, op)
+			}
+		}
+	}
+}
+
+func (d *driver) peerInit(nid string) {
+	callerName := common.CallerName(1)
+	d.peerOpCh <- &peerOperation{
+		opType:     peerOperationINIT,
+		networkID:  nid,
+		callerName: callerName,
+	}
+}
+
+func (d *driver) peerInitOp(nid string) error {
+	return d.peerDbNetworkWalk(nid, func(pKey *peerKey, pEntry *peerEntry) bool {
+		// Local entries do not need to be added
+		if pEntry.isLocal {
+			return false
+		}
+
+		d.peerAddOp(nid, pEntry.eid, pKey.peerIP, pEntry.peerIPMask, pKey.peerMac, pEntry.vtep, false, false, false, pEntry.isLocal)
+		// return false to loop on all entries
+		return false
+	})
+}
+
+func (d *driver) peerAdd(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, l2Miss, l3Miss, localPeer bool) {
+	d.peerOpCh <- &peerOperation{
+		opType:     peerOperationADD,
+		networkID:  nid,
+		endpointID: eid,
+		peerIP:     peerIP,
+		peerIPMask: peerIPMask,
+		peerMac:    peerMac,
+		vtepIP:     vtep,
+		l2Miss:     l2Miss,
+		l3Miss:     l3Miss,
+		localPeer:  localPeer,
+		callerName: common.CallerName(1),
+	}
+}
+
+func (d *driver) peerAddOp(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, l2Miss, l3Miss, updateDB, localPeer bool) error {
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	var dbEntries int
+	var inserted bool
+	if updateDB {
+		inserted, dbEntries = d.peerDbAdd(nid, eid, peerIP, peerIPMask, peerMac, vtep, localPeer)
+		if !inserted {
+			logrus.Warnf("Entry already present in db: nid:%s eid:%s peerIP:%v peerMac:%v isLocal:%t vtep:%v",
+				nid, eid, peerIP, peerMac, localPeer, vtep)
+		}
+	}
+
+	// Local peers do not need any further configuration
+	if localPeer {
+		return nil
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return nil
+	}
+
+	sbox := n.sandbox()
+	if sbox == nil {
+		// We are hitting this case for all the events that are arriving before that the sandbox
+		// is being created. The peer got already added into the database and the sanbox init will
+		// call the peerDbUpdateSandbox that will configure all these peers from the database
+		return nil
+	}
+
+	IP := &net.IPNet{
+		IP:   peerIP,
+		Mask: peerIPMask,
+	}
+
+	s := n.getSubnetforIP(IP)
+	if s == nil {
+		return fmt.Errorf("couldn't find the subnet %q in network %q", IP.String(), n.id)
+	}
+
+	if err := n.obtainVxlanID(s); err != nil {
+		return fmt.Errorf("couldn't get vxlan id for %q: %v", s.subnetIP.String(), err)
+	}
+
+	if err := n.joinSubnetSandbox(s, false); err != nil {
+		return fmt.Errorf("subnet sandbox join failed for %q: %v", s.subnetIP.String(), err)
+	}
+
+	if err := d.checkEncryption(nid, vtep, n.vxlanID(s), false, true); err != nil {
+		logrus.Warn(err)
+	}
+
+	// Add neighbor entry for the peer IP
+	if err := sbox.AddNeighbor(peerIP, peerMac, l3Miss, sbox.NeighborOptions().LinkName(s.vxlanName)); err != nil {
+		if _, ok := err.(osl.NeighborSearchError); ok && dbEntries > 1 {
+			// We are in the transient case so only the first configuration is programmed into the kernel
+			// Upon deletion if the active configuration is deleted the next one from the database will be restored
+			// Note we are skipping also the next configuration
+			return nil
+		}
+		return fmt.Errorf("could not add neighbor entry for nid:%s eid:%s into the sandbox:%v", nid, eid, err)
+	}
+
+	// Add fdb entry to the bridge for the peer mac
+	if err := sbox.AddNeighbor(vtep, peerMac, l2Miss, sbox.NeighborOptions().LinkName(s.vxlanName),
+		sbox.NeighborOptions().Family(syscall.AF_BRIDGE)); err != nil {
+		return fmt.Errorf("could not add fdb entry for nid:%s eid:%s into the sandbox:%v", nid, eid, err)
+	}
+
+	return nil
+}
+
+func (d *driver) peerDelete(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, localPeer bool) {
+	d.peerOpCh <- &peerOperation{
+		opType:     peerOperationDELETE,
+		networkID:  nid,
+		endpointID: eid,
+		peerIP:     peerIP,
+		peerIPMask: peerIPMask,
+		peerMac:    peerMac,
+		vtepIP:     vtep,
+		callerName: common.CallerName(1),
+		localPeer:  localPeer,
+	}
+}
+
+func (d *driver) peerDeleteOp(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, localPeer bool) error {
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	deleted, dbEntries := d.peerDbDelete(nid, eid, peerIP, peerIPMask, peerMac, vtep, localPeer)
+	if !deleted {
+		logrus.Warnf("Entry was not in db: nid:%s eid:%s peerIP:%v peerMac:%v isLocal:%t vtep:%v",
+			nid, eid, peerIP, peerMac, localPeer, vtep)
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return nil
+	}
+
+	sbox := n.sandbox()
+	if sbox == nil {
+		return nil
+	}
+
+	if err := d.checkEncryption(nid, vtep, 0, localPeer, false); err != nil {
+		logrus.Warn(err)
+	}
+
+	// Local peers do not have any local configuration to delete
+	if !localPeer {
+		// Remove fdb entry to the bridge for the peer mac
+		if err := sbox.DeleteNeighbor(vtep, peerMac, true); err != nil {
+			if _, ok := err.(osl.NeighborSearchError); ok && dbEntries > 0 {
+				// We fall in here if there is a transient state and if the neighbor that is being deleted
+				// was never been configured into the kernel (we allow only 1 configuration at the time per <ip,mac> mapping)
+				return nil
+			}
+			return fmt.Errorf("could not delete fdb entry for nid:%s eid:%s into the sandbox:%v", nid, eid, err)
+		}
+
+		// Delete neighbor entry for the peer IP
+		if err := sbox.DeleteNeighbor(peerIP, peerMac, true); err != nil {
+			return fmt.Errorf("could not delete neighbor entry for nid:%s eid:%s into the sandbox:%v", nid, eid, err)
+		}
+	}
+
+	if dbEntries == 0 {
+		return nil
+	}
+
+	// If there is still an entry into the database and the deletion went through without errors means that there is now no
+	// configuration active in the kernel.
+	// Restore one configuration for the <ip,mac> directly from the database, note that is guaranteed that there is one
+	peerKey, peerEntry, err := d.peerDbSearch(nid, peerIP)
+	if err != nil {
+		logrus.Errorf("peerDeleteOp unable to restore a configuration for nid:%s ip:%v mac:%v err:%s", nid, peerIP, peerMac, err)
+		return err
+	}
+	return d.peerAddOp(nid, peerEntry.eid, peerIP, peerEntry.peerIPMask, peerKey.peerMac, peerEntry.vtep, false, false, false, peerEntry.isLocal)
+}
+
+func (d *driver) peerFlush(nid string) {
+	d.peerOpCh <- &peerOperation{
+		opType:     peerOperationFLUSH,
+		networkID:  nid,
+		callerName: common.CallerName(1),
+	}
+}
+
+func (d *driver) peerFlushOp(nid string) error {
+	d.peerDb.Lock()
+	defer d.peerDb.Unlock()
+	_, ok := d.peerDb.mp[nid]
+	if !ok {
+		return fmt.Errorf("Unable to find the peerDB for nid:%s", nid)
+	}
+	delete(d.peerDb.mp, nid)
+	return nil
+}
+
+func (d *driver) pushLocalDb() {
+	d.peerDbWalk(func(nid string, pKey *peerKey, pEntry *peerEntry) bool {
+		if pEntry.isLocal {
+			d.pushLocalEndpointEvent("join", nid, pEntry.eid)
+		}
+		return false
+	})
+}
+
+func (d *driver) peerDBUpdateSelf() {
+	d.peerDbWalk(func(nid string, pkey *peerKey, pEntry *peerEntry) bool {
+		if pEntry.isLocal {
+			pEntry.vtep = net.ParseIP(d.advertiseAddress)
+		}
+		return false
+	})
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/remote/api/api.go b/vendor/github.com/docker/libnetwork/drivers/remote/api/api.go
new file mode 100644
index 0000000000..d24f190162
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/remote/api/api.go
@@ -0,0 +1,221 @@
+/*
+Package api represents all requests and responses suitable for conversation
+with a remote driver.
+*/
+package api
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+)
+
+// Response is the basic response structure used in all responses.
+type Response struct {
+	Err string
+}
+
+// GetError returns the error from the response, if any.
+func (r *Response) GetError() string {
+	return r.Err
+}
+
+// GetCapabilityResponse is the response of GetCapability request
+type GetCapabilityResponse struct {
+	Response
+	Scope             string
+	ConnectivityScope string
+}
+
+// AllocateNetworkRequest requests allocation of new network by manager
+type AllocateNetworkRequest struct {
+	// A network ID that remote plugins are expected to store for future
+	// reference.
+	NetworkID string
+
+	// A free form map->object interface for communication of options.
+	Options map[string]string
+
+	// IPAMData contains the address pool information for this network
+	IPv4Data, IPv6Data []driverapi.IPAMData
+}
+
+// AllocateNetworkResponse is the response to the AllocateNetworkRequest.
+type AllocateNetworkResponse struct {
+	Response
+	// A free form plugin specific string->string object to be sent in
+	// CreateNetworkRequest call in the libnetwork agents
+	Options map[string]string
+}
+
+// FreeNetworkRequest is the request to free allocated network in the manager
+type FreeNetworkRequest struct {
+	// The ID of the network to be freed.
+	NetworkID string
+}
+
+// FreeNetworkResponse is the response to a request for freeing a network.
+type FreeNetworkResponse struct {
+	Response
+}
+
+// CreateNetworkRequest requests a new network.
+type CreateNetworkRequest struct {
+	// A network ID that remote plugins are expected to store for future
+	// reference.
+	NetworkID string
+
+	// A free form map->object interface for communication of options.
+	Options map[string]interface{}
+
+	// IPAMData contains the address pool information for this network
+	IPv4Data, IPv6Data []driverapi.IPAMData
+}
+
+// CreateNetworkResponse is the response to the CreateNetworkRequest.
+type CreateNetworkResponse struct {
+	Response
+}
+
+// DeleteNetworkRequest is the request to delete an existing network.
+type DeleteNetworkRequest struct {
+	// The ID of the network to delete.
+	NetworkID string
+}
+
+// DeleteNetworkResponse is the response to a request for deleting a network.
+type DeleteNetworkResponse struct {
+	Response
+}
+
+// CreateEndpointRequest is the request to create an endpoint within a network.
+type CreateEndpointRequest struct {
+	// Provided at create time, this will be the network id referenced.
+	NetworkID string
+	// The ID of the endpoint for later reference.
+	EndpointID string
+	Interface  *EndpointInterface
+	Options    map[string]interface{}
+}
+
+// EndpointInterface represents an interface endpoint.
+type EndpointInterface struct {
+	Address     string
+	AddressIPv6 string
+	MacAddress  string
+}
+
+// CreateEndpointResponse is the response to the CreateEndpoint action.
+type CreateEndpointResponse struct {
+	Response
+	Interface *EndpointInterface
+}
+
+// Interface is the representation of a linux interface.
+type Interface struct {
+	Address     *net.IPNet
+	AddressIPv6 *net.IPNet
+	MacAddress  net.HardwareAddr
+}
+
+// DeleteEndpointRequest describes the API for deleting an endpoint.
+type DeleteEndpointRequest struct {
+	NetworkID  string
+	EndpointID string
+}
+
+// DeleteEndpointResponse is the response to the DeleteEndpoint action.
+type DeleteEndpointResponse struct {
+	Response
+}
+
+// EndpointInfoRequest retrieves information about the endpoint from the network driver.
+type EndpointInfoRequest struct {
+	NetworkID  string
+	EndpointID string
+}
+
+// EndpointInfoResponse is the response to an EndpointInfoRequest.
+type EndpointInfoResponse struct {
+	Response
+	Value map[string]interface{}
+}
+
+// JoinRequest describes the API for joining an endpoint to a sandbox.
+type JoinRequest struct {
+	NetworkID  string
+	EndpointID string
+	SandboxKey string
+	Options    map[string]interface{}
+}
+
+// InterfaceName is the struct represetation of a pair of devices with source
+// and destination, for the purposes of putting an endpoint into a container.
+type InterfaceName struct {
+	SrcName   string
+	DstName   string
+	DstPrefix string
+}
+
+// StaticRoute is the plain JSON representation of a static route.
+type StaticRoute struct {
+	Destination string
+	RouteType   int
+	NextHop     string
+}
+
+// JoinResponse is the response to a JoinRequest.
+type JoinResponse struct {
+	Response
+	InterfaceName         *InterfaceName
+	Gateway               string
+	GatewayIPv6           string
+	StaticRoutes          []StaticRoute
+	DisableGatewayService bool
+}
+
+// LeaveRequest describes the API for detaching an endpoint from a sandbox.
+type LeaveRequest struct {
+	NetworkID  string
+	EndpointID string
+}
+
+// LeaveResponse is the answer to LeaveRequest.
+type LeaveResponse struct {
+	Response
+}
+
+// ProgramExternalConnectivityRequest describes the API for programming the external connectivity for the given endpoint.
+type ProgramExternalConnectivityRequest struct {
+	NetworkID  string
+	EndpointID string
+	Options    map[string]interface{}
+}
+
+// ProgramExternalConnectivityResponse is the answer to ProgramExternalConnectivityRequest.
+type ProgramExternalConnectivityResponse struct {
+	Response
+}
+
+// RevokeExternalConnectivityRequest describes the API for revoking the external connectivity for the given endpoint.
+type RevokeExternalConnectivityRequest struct {
+	NetworkID  string
+	EndpointID string
+}
+
+// RevokeExternalConnectivityResponse is the answer to RevokeExternalConnectivityRequest.
+type RevokeExternalConnectivityResponse struct {
+	Response
+}
+
+// DiscoveryNotification represents a discovery notification
+type DiscoveryNotification struct {
+	DiscoveryType discoverapi.DiscoveryType
+	DiscoveryData interface{}
+}
+
+// DiscoveryResponse is used by libnetwork to log any plugin error processing the discovery notifications
+type DiscoveryResponse struct {
+	Response
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/remote/driver.go b/vendor/github.com/docker/libnetwork/drivers/remote/driver.go
new file mode 100644
index 0000000000..b52163025a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/remote/driver.go
@@ -0,0 +1,409 @@
+package remote
+
+import (
+	"errors"
+	"fmt"
+	"net"
+
+	"github.com/docker/docker/pkg/plugins"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/drivers/remote/api"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type driver struct {
+	endpoint    *plugins.Client
+	networkType string
+}
+
+type maybeError interface {
+	GetError() string
+}
+
+func newDriver(name string, client *plugins.Client) driverapi.Driver {
+	return &driver{networkType: name, endpoint: client}
+}
+
+// Init makes sure a remote driver is registered when a network driver
+// plugin is activated.
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	newPluginHandler := func(name string, client *plugins.Client) {
+		// negotiate driver capability with client
+		d := newDriver(name, client)
+		c, err := d.(*driver).getCapabilities()
+		if err != nil {
+			logrus.Errorf("error getting capability for %s due to %v", name, err)
+			return
+		}
+		if err = dc.RegisterDriver(name, d, *c); err != nil {
+			logrus.Errorf("error registering driver for %s due to %v", name, err)
+		}
+	}
+
+	// Unit test code is unaware of a true PluginStore. So we fall back to v1 plugins.
+	handleFunc := plugins.Handle
+	if pg := dc.GetPluginGetter(); pg != nil {
+		handleFunc = pg.Handle
+		activePlugins := pg.GetAllManagedPluginsByCap(driverapi.NetworkPluginEndpointType)
+		for _, ap := range activePlugins {
+			newPluginHandler(ap.Name(), ap.Client())
+		}
+	}
+	handleFunc(driverapi.NetworkPluginEndpointType, newPluginHandler)
+
+	return nil
+}
+
+// Get capability from client
+func (d *driver) getCapabilities() (*driverapi.Capability, error) {
+	var capResp api.GetCapabilityResponse
+	if err := d.call("GetCapabilities", nil, &capResp); err != nil {
+		return nil, err
+	}
+
+	c := &driverapi.Capability{}
+	switch capResp.Scope {
+	case "global":
+		c.DataScope = datastore.GlobalScope
+	case "local":
+		c.DataScope = datastore.LocalScope
+	default:
+		return nil, fmt.Errorf("invalid capability: expecting 'local' or 'global', got %s", capResp.Scope)
+	}
+
+	switch capResp.ConnectivityScope {
+	case "global":
+		c.ConnectivityScope = datastore.GlobalScope
+	case "local":
+		c.ConnectivityScope = datastore.LocalScope
+	case "":
+		c.ConnectivityScope = c.DataScope
+	default:
+		return nil, fmt.Errorf("invalid capability: expecting 'local' or 'global', got %s", capResp.Scope)
+	}
+
+	return c, nil
+}
+
+// Config is not implemented for remote drivers, since it is assumed
+// to be supplied to the remote process out-of-band (e.g., as command
+// line arguments).
+func (d *driver) Config(option map[string]interface{}) error {
+	return &driverapi.ErrNotImplemented{}
+}
+
+func (d *driver) call(methodName string, arg interface{}, retVal maybeError) error {
+	method := driverapi.NetworkPluginEndpointType + "." + methodName
+	err := d.endpoint.Call(method, arg, retVal)
+	if err != nil {
+		return err
+	}
+	if e := retVal.GetError(); e != "" {
+		return fmt.Errorf("remote: %s", e)
+	}
+	return nil
+}
+
+func (d *driver) NetworkAllocate(id string, options map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	create := &api.AllocateNetworkRequest{
+		NetworkID: id,
+		Options:   options,
+		IPv4Data:  ipV4Data,
+		IPv6Data:  ipV6Data,
+	}
+	retVal := api.AllocateNetworkResponse{}
+	err := d.call("AllocateNetwork", create, &retVal)
+	return retVal.Options, err
+}
+
+func (d *driver) NetworkFree(id string) error {
+	fr := &api.FreeNetworkRequest{NetworkID: id}
+	return d.call("FreeNetwork", fr, &api.FreeNetworkResponse{})
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+func (d *driver) CreateNetwork(id string, options map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	create := &api.CreateNetworkRequest{
+		NetworkID: id,
+		Options:   options,
+		IPv4Data:  ipV4Data,
+		IPv6Data:  ipV6Data,
+	}
+	return d.call("CreateNetwork", create, &api.CreateNetworkResponse{})
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	delete := &api.DeleteNetworkRequest{NetworkID: nid}
+	return d.call("DeleteNetwork", delete, &api.DeleteNetworkResponse{})
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo, epOptions map[string]interface{}) error {
+	if ifInfo == nil {
+		return errors.New("must not be called with nil InterfaceInfo")
+	}
+
+	reqIface := &api.EndpointInterface{}
+	if ifInfo.Address() != nil {
+		reqIface.Address = ifInfo.Address().String()
+	}
+	if ifInfo.AddressIPv6() != nil {
+		reqIface.AddressIPv6 = ifInfo.AddressIPv6().String()
+	}
+	if ifInfo.MacAddress() != nil {
+		reqIface.MacAddress = ifInfo.MacAddress().String()
+	}
+
+	create := &api.CreateEndpointRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+		Interface:  reqIface,
+		Options:    epOptions,
+	}
+	var res api.CreateEndpointResponse
+	if err := d.call("CreateEndpoint", create, &res); err != nil {
+		return err
+	}
+
+	inIface, err := parseInterface(res)
+	if err != nil {
+		return err
+	}
+	if inIface == nil {
+		// Remote driver did not set any field
+		return nil
+	}
+
+	if inIface.MacAddress != nil {
+		if err := ifInfo.SetMacAddress(inIface.MacAddress); err != nil {
+			return errorWithRollback(fmt.Sprintf("driver modified interface MAC address: %v", err), d.DeleteEndpoint(nid, eid))
+		}
+	}
+	if inIface.Address != nil {
+		if err := ifInfo.SetIPAddress(inIface.Address); err != nil {
+			return errorWithRollback(fmt.Sprintf("driver modified interface address: %v", err), d.DeleteEndpoint(nid, eid))
+		}
+	}
+	if inIface.AddressIPv6 != nil {
+		if err := ifInfo.SetIPAddress(inIface.AddressIPv6); err != nil {
+			return errorWithRollback(fmt.Sprintf("driver modified interface address: %v", err), d.DeleteEndpoint(nid, eid))
+		}
+	}
+
+	return nil
+}
+
+func errorWithRollback(msg string, err error) error {
+	rollback := "rolled back"
+	if err != nil {
+		rollback = "failed to roll back: " + err.Error()
+	}
+	return fmt.Errorf("%s; %s", msg, rollback)
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	delete := &api.DeleteEndpointRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+	}
+	return d.call("DeleteEndpoint", delete, &api.DeleteEndpointResponse{})
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	info := &api.EndpointInfoRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+	}
+	var res api.EndpointInfoResponse
+	if err := d.call("EndpointOperInfo", info, &res); err != nil {
+		return nil, err
+	}
+	return res.Value, nil
+}
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	join := &api.JoinRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+		SandboxKey: sboxKey,
+		Options:    options,
+	}
+	var (
+		res api.JoinResponse
+		err error
+	)
+	if err = d.call("Join", join, &res); err != nil {
+		return err
+	}
+
+	ifaceName := res.InterfaceName
+	if iface := jinfo.InterfaceName(); iface != nil && ifaceName != nil {
+		if err := iface.SetNames(ifaceName.SrcName, ifaceName.DstPrefix); err != nil {
+			return errorWithRollback(fmt.Sprintf("failed to set interface name: %s", err), d.Leave(nid, eid))
+		}
+	}
+
+	var addr net.IP
+	if res.Gateway != "" {
+		if addr = net.ParseIP(res.Gateway); addr == nil {
+			return fmt.Errorf(`unable to parse Gateway "%s"`, res.Gateway)
+		}
+		if jinfo.SetGateway(addr) != nil {
+			return errorWithRollback(fmt.Sprintf("failed to set gateway: %v", addr), d.Leave(nid, eid))
+		}
+	}
+	if res.GatewayIPv6 != "" {
+		if addr = net.ParseIP(res.GatewayIPv6); addr == nil {
+			return fmt.Errorf(`unable to parse GatewayIPv6 "%s"`, res.GatewayIPv6)
+		}
+		if jinfo.SetGatewayIPv6(addr) != nil {
+			return errorWithRollback(fmt.Sprintf("failed to set gateway IPv6: %v", addr), d.Leave(nid, eid))
+		}
+	}
+	if len(res.StaticRoutes) > 0 {
+		routes, err := parseStaticRoutes(res)
+		if err != nil {
+			return err
+		}
+		for _, route := range routes {
+			if jinfo.AddStaticRoute(route.Destination, route.RouteType, route.NextHop) != nil {
+				return errorWithRollback(fmt.Sprintf("failed to set static route: %v", route), d.Leave(nid, eid))
+			}
+		}
+	}
+	if res.DisableGatewayService {
+		jinfo.DisableGatewayService()
+	}
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	leave := &api.LeaveRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+	}
+	return d.call("Leave", leave, &api.LeaveResponse{})
+}
+
+// ProgramExternalConnectivity is invoked to program the rules to allow external connectivity for the endpoint.
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	data := &api.ProgramExternalConnectivityRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+		Options:    options,
+	}
+	err := d.call("ProgramExternalConnectivity", data, &api.ProgramExternalConnectivityResponse{})
+	if err != nil && plugins.IsNotFound(err) {
+		// It is not mandatory yet to support this method
+		return nil
+	}
+	return err
+}
+
+// RevokeExternalConnectivity method is invoked to remove any external connectivity programming related to the endpoint.
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	data := &api.RevokeExternalConnectivityRequest{
+		NetworkID:  nid,
+		EndpointID: eid,
+	}
+	err := d.call("RevokeExternalConnectivity", data, &api.RevokeExternalConnectivityResponse{})
+	if err != nil && plugins.IsNotFound(err) {
+		// It is not mandatory yet to support this method
+		return nil
+	}
+	return err
+}
+
+func (d *driver) Type() string {
+	return d.networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return false
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	if dType != discoverapi.NodeDiscovery {
+		return nil
+	}
+	notif := &api.DiscoveryNotification{
+		DiscoveryType: dType,
+		DiscoveryData: data,
+	}
+	return d.call("DiscoverNew", notif, &api.DiscoveryResponse{})
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	if dType != discoverapi.NodeDiscovery {
+		return nil
+	}
+	notif := &api.DiscoveryNotification{
+		DiscoveryType: dType,
+		DiscoveryData: data,
+	}
+	return d.call("DiscoverDelete", notif, &api.DiscoveryResponse{})
+}
+
+func parseStaticRoutes(r api.JoinResponse) ([]*types.StaticRoute, error) {
+	var routes = make([]*types.StaticRoute, len(r.StaticRoutes))
+	for i, inRoute := range r.StaticRoutes {
+		var err error
+		outRoute := &types.StaticRoute{RouteType: inRoute.RouteType}
+
+		if inRoute.Destination != "" {
+			if outRoute.Destination, err = types.ParseCIDR(inRoute.Destination); err != nil {
+				return nil, err
+			}
+		}
+
+		if inRoute.NextHop != "" {
+			outRoute.NextHop = net.ParseIP(inRoute.NextHop)
+			if outRoute.NextHop == nil {
+				return nil, fmt.Errorf("failed to parse nexthop IP %s", inRoute.NextHop)
+			}
+		}
+
+		routes[i] = outRoute
+	}
+	return routes, nil
+}
+
+// parseInterfaces validates all the parameters of an Interface and returns them.
+func parseInterface(r api.CreateEndpointResponse) (*api.Interface, error) {
+	var outIf *api.Interface
+
+	inIf := r.Interface
+	if inIf != nil {
+		var err error
+		outIf = &api.Interface{}
+		if inIf.Address != "" {
+			if outIf.Address, err = types.ParseCIDR(inIf.Address); err != nil {
+				return nil, err
+			}
+		}
+		if inIf.AddressIPv6 != "" {
+			if outIf.AddressIPv6, err = types.ParseCIDR(inIf.AddressIPv6); err != nil {
+				return nil, err
+			}
+		}
+		if inIf.MacAddress != "" {
+			if outIf.MacAddress, err = net.ParseMAC(inIf.MacAddress); err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	return outIf, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/labels.go b/vendor/github.com/docker/libnetwork/drivers/windows/labels.go
new file mode 100644
index 0000000000..a4b23c1a22
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/labels.go
@@ -0,0 +1,51 @@
+package windows
+
+const (
+	// NetworkName label for bridge driver
+	NetworkName = "com.docker.network.windowsshim.networkname"
+
+	// HNSID of the discovered network
+	HNSID = "com.docker.network.windowsshim.hnsid"
+
+	// RoutingDomain of the network
+	RoutingDomain = "com.docker.network.windowsshim.routingdomain"
+
+	// Interface of the network
+	Interface = "com.docker.network.windowsshim.interface"
+
+	// QosPolicies of the endpoint
+	QosPolicies = "com.docker.endpoint.windowsshim.qospolicies"
+
+	// VLAN of the network
+	VLAN = "com.docker.network.windowsshim.vlanid"
+
+	// VSID of the network
+	VSID = "com.docker.network.windowsshim.vsid"
+
+	// DNSSuffix of the network
+	DNSSuffix = "com.docker.network.windowsshim.dnssuffix"
+
+	// DNSServers of the network
+	DNSServers = "com.docker.network.windowsshim.dnsservers"
+
+	// MacPool of the network
+	MacPool = "com.docker.network.windowsshim.macpool"
+
+	// SourceMac of the network
+	SourceMac = "com.docker.network.windowsshim.sourcemac"
+
+	// DisableICC label
+	DisableICC = "com.docker.network.windowsshim.disableicc"
+
+	// DisableDNS label
+	DisableDNS = "com.docker.network.windowsshim.disable_dns"
+
+	// DisableGatewayDNS label
+	DisableGatewayDNS = "com.docker.network.windowsshim.disable_gatewaydns"
+
+	// EnableOutboundNat label
+	EnableOutboundNat = "com.docker.network.windowsshim.enable_outboundnat"
+
+	// OutboundNatExceptions label
+	OutboundNatExceptions = "com.docker.network.windowsshim.outboundnat_exceptions"
+)
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/joinleave_windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/joinleave_windows.go
new file mode 100644
index 0000000000..83bee5ad93
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/joinleave_windows.go
@@ -0,0 +1,112 @@
+package overlay
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/types"
+	"github.com/gogo/protobuf/proto"
+	"github.com/sirupsen/logrus"
+)
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("could not find network with id %s", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+
+	buf, err := proto.Marshal(&PeerRecord{
+		EndpointIP:       ep.addr.String(),
+		EndpointMAC:      ep.mac.String(),
+		TunnelEndpointIP: n.providerAddress,
+	})
+
+	if err != nil {
+		return err
+	}
+
+	if err := jinfo.AddTableEntry(ovPeerTable, eid, buf); err != nil {
+		logrus.Errorf("overlay: Failed adding table entry to joininfo: %v", err)
+	}
+
+	if ep.disablegateway {
+		jinfo.DisableGatewayService()
+	}
+
+	return nil
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+	if tableName != ovPeerTable {
+		logrus.Errorf("Unexpected table notification for table %s received", tableName)
+		return
+	}
+
+	eid := key
+
+	var peer PeerRecord
+	if err := proto.Unmarshal(value, &peer); err != nil {
+		logrus.Errorf("Failed to unmarshal peer record: %v", err)
+		return
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return
+	}
+
+	// Ignore local peers. We already know about them and they
+	// should not be added to vxlan fdb.
+	if peer.TunnelEndpointIP == n.providerAddress {
+		return
+	}
+
+	addr, err := types.ParseCIDR(peer.EndpointIP)
+	if err != nil {
+		logrus.Errorf("Invalid peer IP %s received in event notify", peer.EndpointIP)
+		return
+	}
+
+	mac, err := net.ParseMAC(peer.EndpointMAC)
+	if err != nil {
+		logrus.Errorf("Invalid mac %s received in event notify", peer.EndpointMAC)
+		return
+	}
+
+	vtep := net.ParseIP(peer.TunnelEndpointIP)
+	if vtep == nil {
+		logrus.Errorf("Invalid VTEP %s received in event notify", peer.TunnelEndpointIP)
+		return
+	}
+
+	if etype == driverapi.Delete {
+		d.peerDelete(nid, eid, addr.IP, addr.Mask, mac, vtep, true)
+		return
+	}
+
+	d.peerAdd(nid, eid, addr.IP, addr.Mask, mac, vtep, true)
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_endpoint_windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_endpoint_windows.go
new file mode 100644
index 0000000000..b7bda4a6b2
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_endpoint_windows.go
@@ -0,0 +1,265 @@
+package overlay
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/drivers/windows"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type endpointTable map[string]*endpoint
+
+const overlayEndpointPrefix = "overlay/endpoint"
+
+type endpoint struct {
+	id             string
+	nid            string
+	profileID      string
+	remote         bool
+	mac            net.HardwareAddr
+	addr           *net.IPNet
+	disablegateway bool
+	portMapping    []types.PortBinding // Operation port bindings
+}
+
+func validateID(nid, eid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+
+	if eid == "" {
+		return fmt.Errorf("invalid endpoint id")
+	}
+
+	return nil
+}
+
+func (n *network) endpoint(eid string) *endpoint {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.endpoints[eid]
+}
+
+func (n *network) addEndpoint(ep *endpoint) {
+	n.Lock()
+	n.endpoints[ep.id] = ep
+	n.Unlock()
+}
+
+func (n *network) deleteEndpoint(eid string) {
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+}
+
+func (n *network) removeEndpointWithAddress(addr *net.IPNet) {
+	var networkEndpoint *endpoint
+	n.Lock()
+	for _, ep := range n.endpoints {
+		if ep.addr.IP.Equal(addr.IP) {
+			networkEndpoint = ep
+			break
+		}
+	}
+
+	if networkEndpoint != nil {
+		delete(n.endpoints, networkEndpoint.id)
+	}
+	n.Unlock()
+
+	if networkEndpoint != nil {
+		logrus.Debugf("Removing stale endpoint from HNS")
+		_, err := hcsshim.HNSEndpointRequest("DELETE", networkEndpoint.profileID, "")
+
+		if err != nil {
+			logrus.Debugf("Failed to delete stale overlay endpoint (%s) from hns", networkEndpoint.id[0:7])
+		}
+	}
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo,
+	epOptions map[string]interface{}) error {
+	var err error
+	if err = validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep != nil {
+		logrus.Debugf("Deleting stale endpoint %s", eid)
+		n.deleteEndpoint(eid)
+
+		_, err := hcsshim.HNSEndpointRequest("DELETE", ep.profileID, "")
+		if err != nil {
+			return err
+		}
+	}
+
+	ep = &endpoint{
+		id:   eid,
+		nid:  n.id,
+		addr: ifInfo.Address(),
+		mac:  ifInfo.MacAddress(),
+	}
+
+	if ep.addr == nil {
+		return fmt.Errorf("create endpoint was not passed interface IP address")
+	}
+
+	s := n.getSubnetforIP(ep.addr)
+	if s == nil {
+		return fmt.Errorf("no matching subnet for IP %q in network %q", ep.addr, nid)
+	}
+
+	// Todo: Add port bindings and qos policies here
+
+	hnsEndpoint := &hcsshim.HNSEndpoint{
+		Name:              eid,
+		VirtualNetwork:    n.hnsID,
+		IPAddress:         ep.addr.IP,
+		EnableInternalDNS: true,
+		GatewayAddress:    s.gwIP.String(),
+	}
+
+	if ep.mac != nil {
+		hnsEndpoint.MacAddress = ep.mac.String()
+	}
+
+	paPolicy, err := json.Marshal(hcsshim.PaPolicy{
+		Type: "PA",
+		PA:   n.providerAddress,
+	})
+
+	if err != nil {
+		return err
+	}
+
+	hnsEndpoint.Policies = append(hnsEndpoint.Policies, paPolicy)
+
+	if system.GetOSVersion().Build > 16236 {
+		natPolicy, err := json.Marshal(hcsshim.PaPolicy{
+			Type: "OutBoundNAT",
+		})
+
+		if err != nil {
+			return err
+		}
+
+		hnsEndpoint.Policies = append(hnsEndpoint.Policies, natPolicy)
+
+		epConnectivity, err := windows.ParseEndpointConnectivity(epOptions)
+		if err != nil {
+			return err
+		}
+
+		pbPolicy, err := windows.ConvertPortBindings(epConnectivity.PortBindings)
+		if err != nil {
+			return err
+		}
+		hnsEndpoint.Policies = append(hnsEndpoint.Policies, pbPolicy...)
+
+		ep.disablegateway = true
+	}
+
+	configurationb, err := json.Marshal(hnsEndpoint)
+	if err != nil {
+		return err
+	}
+
+	hnsresponse, err := hcsshim.HNSEndpointRequest("POST", "", string(configurationb))
+	if err != nil {
+		return err
+	}
+
+	ep.profileID = hnsresponse.Id
+
+	if ep.mac == nil {
+		ep.mac, err = net.ParseMAC(hnsresponse.MacAddress)
+		if err != nil {
+			return err
+		}
+
+		if err := ifInfo.SetMacAddress(ep.mac); err != nil {
+			return err
+		}
+	}
+
+	ep.portMapping, err = windows.ParsePortBindingPolicies(hnsresponse.Policies)
+	if err != nil {
+		hcsshim.HNSEndpointRequest("DELETE", hnsresponse.Id, "")
+		return err
+	}
+
+	n.addEndpoint(ep)
+
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return fmt.Errorf("network id %q not found", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("endpoint id %q not found", eid)
+	}
+
+	n.deleteEndpoint(eid)
+
+	_, err := hcsshim.HNSEndpointRequest("DELETE", ep.profileID, "")
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	if err := validateID(nid, eid); err != nil {
+		return nil, err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return nil, fmt.Errorf("network id %q not found", nid)
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return nil, fmt.Errorf("endpoint id %q not found", eid)
+	}
+
+	data := make(map[string]interface{}, 1)
+	data["hnsid"] = ep.profileID
+	data["AllowUnqualifiedDNSQuery"] = true
+
+	if ep.portMapping != nil {
+		// Return a copy of the operational data
+		pmc := make([]types.PortBinding, 0, len(ep.portMapping))
+		for _, pm := range ep.portMapping {
+			pmc = append(pmc, pm.GetCopy())
+		}
+		data[netlabel.PortMap] = pmc
+	}
+
+	return data, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_network_windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_network_windows.go
new file mode 100644
index 0000000000..9cc46f8cfe
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/ov_network_windows.go
@@ -0,0 +1,381 @@
+package overlay
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+	"strconv"
+	"strings"
+	"sync"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	hostMode  bool
+	networkMu sync.Mutex
+)
+
+type networkTable map[string]*network
+
+type subnet struct {
+	vni      uint32
+	subnetIP *net.IPNet
+	gwIP     *net.IP
+}
+
+type subnetJSON struct {
+	SubnetIP string
+	GwIP     string
+	Vni      uint32
+}
+
+type network struct {
+	id              string
+	name            string
+	hnsID           string
+	providerAddress string
+	interfaceName   string
+	endpoints       endpointTable
+	driver          *driver
+	initEpoch       int
+	initErr         error
+	subnets         []*subnet
+	secure          bool
+	sync.Mutex
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	var (
+		networkName   string
+		interfaceName string
+		staleNetworks []string
+	)
+
+	if id == "" {
+		return fmt.Errorf("invalid network id")
+	}
+
+	if nInfo == nil {
+		return fmt.Errorf("invalid network info structure")
+	}
+
+	if len(ipV4Data) == 0 || ipV4Data[0].Pool.String() == "0.0.0.0/0" {
+		return types.BadRequestErrorf("ipv4 pool is empty")
+	}
+
+	staleNetworks = make([]string, 0)
+	vnis := make([]uint32, 0, len(ipV4Data))
+
+	existingNetwork := d.network(id)
+	if existingNetwork != nil {
+		logrus.Debugf("Network preexists. Deleting %s", id)
+		err := d.DeleteNetwork(id)
+		if err != nil {
+			logrus.Errorf("Error deleting stale network %s", err.Error())
+		}
+	}
+
+	n := &network{
+		id:        id,
+		driver:    d,
+		endpoints: endpointTable{},
+		subnets:   []*subnet{},
+	}
+
+	genData, ok := option[netlabel.GenericData].(map[string]string)
+
+	if !ok {
+		return fmt.Errorf("Unknown generic data option")
+	}
+
+	for label, value := range genData {
+		switch label {
+		case "com.docker.network.windowsshim.networkname":
+			networkName = value
+		case "com.docker.network.windowsshim.interface":
+			interfaceName = value
+		case "com.docker.network.windowsshim.hnsid":
+			n.hnsID = value
+		case netlabel.OverlayVxlanIDList:
+			vniStrings := strings.Split(value, ",")
+			for _, vniStr := range vniStrings {
+				vni, err := strconv.Atoi(vniStr)
+				if err != nil {
+					return fmt.Errorf("invalid vxlan id value %q passed", vniStr)
+				}
+
+				vnis = append(vnis, uint32(vni))
+			}
+		}
+	}
+
+	// If we are getting vnis from libnetwork, either we get for
+	// all subnets or none.
+	if len(vnis) < len(ipV4Data) {
+		return fmt.Errorf("insufficient vnis(%d) passed to overlay. Windows driver requires VNIs to be prepopulated", len(vnis))
+	}
+
+	for i, ipd := range ipV4Data {
+		s := &subnet{
+			subnetIP: ipd.Pool,
+			gwIP:     &ipd.Gateway.IP,
+		}
+
+		if len(vnis) != 0 {
+			s.vni = vnis[i]
+		}
+
+		d.Lock()
+		for _, network := range d.networks {
+			found := false
+			for _, sub := range network.subnets {
+				if sub.vni == s.vni {
+					staleNetworks = append(staleNetworks, network.id)
+					found = true
+					break
+				}
+			}
+			if found {
+				break
+			}
+		}
+		d.Unlock()
+
+		n.subnets = append(n.subnets, s)
+	}
+
+	for _, staleNetwork := range staleNetworks {
+		d.DeleteNetwork(staleNetwork)
+	}
+
+	n.name = networkName
+	if n.name == "" {
+		n.name = id
+	}
+
+	n.interfaceName = interfaceName
+
+	if nInfo != nil {
+		if err := nInfo.TableEventRegister(ovPeerTable, driverapi.EndpointObject); err != nil {
+			return err
+		}
+	}
+
+	d.addNetwork(n)
+
+	err := d.createHnsNetwork(n)
+
+	if err != nil {
+		d.deleteNetwork(id)
+	} else {
+		genData["com.docker.network.windowsshim.hnsid"] = n.hnsID
+	}
+
+	return err
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	if nid == "" {
+		return fmt.Errorf("invalid network id")
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return types.ForbiddenErrorf("could not find network with id %s", nid)
+	}
+
+	_, err := hcsshim.HNSNetworkRequest("DELETE", n.hnsID, "")
+	if err != nil {
+		return types.ForbiddenErrorf(err.Error())
+	}
+
+	d.deleteNetwork(nid)
+
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) addNetwork(n *network) {
+	d.Lock()
+	d.networks[n.id] = n
+	d.Unlock()
+}
+
+func (d *driver) deleteNetwork(nid string) {
+	d.Lock()
+	delete(d.networks, nid)
+	d.Unlock()
+}
+
+func (d *driver) network(nid string) *network {
+	d.Lock()
+	defer d.Unlock()
+	return d.networks[nid]
+}
+
+// func (n *network) restoreNetworkEndpoints() error {
+// 	logrus.Infof("Restoring endpoints for overlay network: %s", n.id)
+
+// 	hnsresponse, err := hcsshim.HNSListEndpointRequest("GET", "", "")
+// 	if err != nil {
+// 		return err
+// 	}
+
+// 	for _, endpoint := range hnsresponse {
+// 		if endpoint.VirtualNetwork != n.hnsID {
+// 			continue
+// 		}
+
+// 		ep := n.convertToOverlayEndpoint(&endpoint)
+
+// 		if ep != nil {
+// 			logrus.Debugf("Restored endpoint:%s Remote:%t", ep.id, ep.remote)
+// 			n.addEndpoint(ep)
+// 		}
+// 	}
+
+// 	return nil
+// }
+
+func (n *network) convertToOverlayEndpoint(v *hcsshim.HNSEndpoint) *endpoint {
+	ep := &endpoint{
+		id:        v.Name,
+		profileID: v.Id,
+		nid:       n.id,
+		remote:    v.IsRemoteEndpoint,
+	}
+
+	mac, err := net.ParseMAC(v.MacAddress)
+
+	if err != nil {
+		return nil
+	}
+
+	ep.mac = mac
+	ep.addr = &net.IPNet{
+		IP:   v.IPAddress,
+		Mask: net.CIDRMask(32, 32),
+	}
+
+	return ep
+}
+
+func (d *driver) createHnsNetwork(n *network) error {
+
+	subnets := []hcsshim.Subnet{}
+
+	for _, s := range n.subnets {
+		subnet := hcsshim.Subnet{
+			AddressPrefix: s.subnetIP.String(),
+		}
+
+		if s.gwIP != nil {
+			subnet.GatewayAddress = s.gwIP.String()
+		}
+
+		vsidPolicy, err := json.Marshal(hcsshim.VsidPolicy{
+			Type: "VSID",
+			VSID: uint(s.vni),
+		})
+
+		if err != nil {
+			return err
+		}
+
+		subnet.Policies = append(subnet.Policies, vsidPolicy)
+		subnets = append(subnets, subnet)
+	}
+
+	network := &hcsshim.HNSNetwork{
+		Name:               n.name,
+		Type:               d.Type(),
+		Subnets:            subnets,
+		NetworkAdapterName: n.interfaceName,
+		AutomaticDNS:       true,
+	}
+
+	configurationb, err := json.Marshal(network)
+	if err != nil {
+		return err
+	}
+
+	configuration := string(configurationb)
+	logrus.Infof("HNSNetwork Request =%v", configuration)
+
+	hnsresponse, err := hcsshim.HNSNetworkRequest("POST", "", configuration)
+	if err != nil {
+		return err
+	}
+
+	n.hnsID = hnsresponse.Id
+	n.providerAddress = hnsresponse.ManagementIP
+
+	return nil
+}
+
+// contains return true if the passed ip belongs to one the network's
+// subnets
+func (n *network) contains(ip net.IP) bool {
+	for _, s := range n.subnets {
+		if s.subnetIP.Contains(ip) {
+			return true
+		}
+	}
+
+	return false
+}
+
+// getSubnetforIP returns the subnet to which the given IP belongs
+func (n *network) getSubnetforIP(ip *net.IPNet) *subnet {
+	for _, s := range n.subnets {
+		// first check if the mask lengths are the same
+		i, _ := s.subnetIP.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if s.subnetIP.Contains(ip.IP) {
+			return s
+		}
+	}
+	return nil
+}
+
+// getMatchingSubnet return the network's subnet that matches the input
+func (n *network) getMatchingSubnet(ip *net.IPNet) *subnet {
+	if ip == nil {
+		return nil
+	}
+	for _, s := range n.subnets {
+		// first check if the mask lengths are the same
+		i, _ := s.subnetIP.Mask.Size()
+		j, _ := ip.Mask.Size()
+		if i != j {
+			continue
+		}
+		if s.subnetIP.IP.Equal(ip.IP) {
+			return s
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay.pb.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay.pb.go
new file mode 100644
index 0000000000..cfa0eeeae4
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay.pb.go
@@ -0,0 +1,468 @@
+// Code generated by protoc-gen-gogo.
+// source: overlay.proto
+// DO NOT EDIT!
+
+/*
+	Package overlay is a generated protocol buffer package.
+
+	It is generated from these files:
+		overlay.proto
+
+	It has these top-level messages:
+		PeerRecord
+*/
+package overlay
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+
+import strings "strings"
+import github_com_gogo_protobuf_proto "github.com/gogo/protobuf/proto"
+import sort "sort"
+import strconv "strconv"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+const _ = proto.GoGoProtoPackageIsVersion1
+
+// PeerRecord defines the information corresponding to a peer
+// container in the overlay network.
+type PeerRecord struct {
+	// Endpoint IP is the IP of the container attachment on the
+	// given overlay network.
+	EndpointIP string `protobuf:"bytes,1,opt,name=endpoint_ip,json=endpointIp,proto3" json:"endpoint_ip,omitempty"`
+	// Endpoint MAC is the mac address of the container attachment
+	// on the given overlay network.
+	EndpointMAC string `protobuf:"bytes,2,opt,name=endpoint_mac,json=endpointMac,proto3" json:"endpoint_mac,omitempty"`
+	// Tunnel Endpoint IP defines the host IP for the host in
+	// which this container is running and can be reached by
+	// building a tunnel to that host IP.
+	TunnelEndpointIP string `protobuf:"bytes,3,opt,name=tunnel_endpoint_ip,json=tunnelEndpointIp,proto3" json:"tunnel_endpoint_ip,omitempty"`
+}
+
+func (m *PeerRecord) Reset()                    { *m = PeerRecord{} }
+func (*PeerRecord) ProtoMessage()               {}
+func (*PeerRecord) Descriptor() ([]byte, []int) { return fileDescriptorOverlay, []int{0} }
+
+func init() {
+	proto.RegisterType((*PeerRecord)(nil), "overlay.PeerRecord")
+}
+func (this *PeerRecord) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&overlay.PeerRecord{")
+	s = append(s, "EndpointIP: "+fmt.Sprintf("%#v", this.EndpointIP)+",\n")
+	s = append(s, "EndpointMAC: "+fmt.Sprintf("%#v", this.EndpointMAC)+",\n")
+	s = append(s, "TunnelEndpointIP: "+fmt.Sprintf("%#v", this.TunnelEndpointIP)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringOverlay(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func extensionToGoStringOverlay(e map[int32]github_com_gogo_protobuf_proto.Extension) string {
+	if e == nil {
+		return "nil"
+	}
+	s := "map[int32]proto.Extension{"
+	keys := make([]int, 0, len(e))
+	for k := range e {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+	ss := []string{}
+	for _, k := range keys {
+		ss = append(ss, strconv.Itoa(k)+": "+e[int32(k)].GoString())
+	}
+	s += strings.Join(ss, ",") + "}"
+	return s
+}
+func (m *PeerRecord) Marshal() (data []byte, err error) {
+	size := m.Size()
+	data = make([]byte, size)
+	n, err := m.MarshalTo(data)
+	if err != nil {
+		return nil, err
+	}
+	return data[:n], nil
+}
+
+func (m *PeerRecord) MarshalTo(data []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.EndpointIP) > 0 {
+		data[i] = 0xa
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.EndpointIP)))
+		i += copy(data[i:], m.EndpointIP)
+	}
+	if len(m.EndpointMAC) > 0 {
+		data[i] = 0x12
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.EndpointMAC)))
+		i += copy(data[i:], m.EndpointMAC)
+	}
+	if len(m.TunnelEndpointIP) > 0 {
+		data[i] = 0x1a
+		i++
+		i = encodeVarintOverlay(data, i, uint64(len(m.TunnelEndpointIP)))
+		i += copy(data[i:], m.TunnelEndpointIP)
+	}
+	return i, nil
+}
+
+func encodeFixed64Overlay(data []byte, offset int, v uint64) int {
+	data[offset] = uint8(v)
+	data[offset+1] = uint8(v >> 8)
+	data[offset+2] = uint8(v >> 16)
+	data[offset+3] = uint8(v >> 24)
+	data[offset+4] = uint8(v >> 32)
+	data[offset+5] = uint8(v >> 40)
+	data[offset+6] = uint8(v >> 48)
+	data[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Overlay(data []byte, offset int, v uint32) int {
+	data[offset] = uint8(v)
+	data[offset+1] = uint8(v >> 8)
+	data[offset+2] = uint8(v >> 16)
+	data[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintOverlay(data []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		data[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	data[offset] = uint8(v)
+	return offset + 1
+}
+func (m *PeerRecord) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.EndpointIP)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	l = len(m.EndpointMAC)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	l = len(m.TunnelEndpointIP)
+	if l > 0 {
+		n += 1 + l + sovOverlay(uint64(l))
+	}
+	return n
+}
+
+func sovOverlay(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozOverlay(x uint64) (n int) {
+	return sovOverlay(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *PeerRecord) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PeerRecord{`,
+		`EndpointIP:` + fmt.Sprintf("%v", this.EndpointIP) + `,`,
+		`EndpointMAC:` + fmt.Sprintf("%v", this.EndpointMAC) + `,`,
+		`TunnelEndpointIP:` + fmt.Sprintf("%v", this.TunnelEndpointIP) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringOverlay(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *PeerRecord) Unmarshal(data []byte) error {
+	l := len(data)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowOverlay
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := data[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PeerRecord: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PeerRecord: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EndpointIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EndpointIP = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EndpointMAC", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EndpointMAC = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TunnelEndpointIP", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TunnelEndpointIP = string(data[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipOverlay(data[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthOverlay
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipOverlay(data []byte) (n int, err error) {
+	l := len(data)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowOverlay
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := data[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if data[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowOverlay
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := data[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthOverlay
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowOverlay
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := data[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipOverlay(data[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthOverlay = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowOverlay   = fmt.Errorf("proto: integer overflow")
+)
+
+var fileDescriptorOverlay = []byte{
+	// 195 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0xcd, 0x2f, 0x4b, 0x2d,
+	0xca, 0x49, 0xac, 0xd4, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0x62, 0x87, 0x72, 0xa5, 0x44, 0xd2,
+	0xf3, 0xd3, 0xf3, 0xc1, 0x62, 0xfa, 0x20, 0x16, 0x44, 0x5a, 0x69, 0x2b, 0x23, 0x17, 0x57, 0x40,
+	0x6a, 0x6a, 0x51, 0x50, 0x6a, 0x72, 0x7e, 0x51, 0x8a, 0x90, 0x3e, 0x17, 0x77, 0x6a, 0x5e, 0x4a,
+	0x41, 0x7e, 0x66, 0x5e, 0x49, 0x7c, 0x66, 0x81, 0x04, 0xa3, 0x02, 0xa3, 0x06, 0xa7, 0x13, 0xdf,
+	0xa3, 0x7b, 0xf2, 0x5c, 0xae, 0x50, 0x61, 0xcf, 0x80, 0x20, 0x2e, 0x98, 0x12, 0xcf, 0x02, 0x21,
+	0x23, 0x2e, 0x1e, 0xb8, 0x86, 0xdc, 0xc4, 0x64, 0x09, 0x26, 0xb0, 0x0e, 0x7e, 0xa0, 0x0e, 0x6e,
+	0x98, 0x0e, 0x5f, 0x47, 0xe7, 0x20, 0xb8, 0xa9, 0xbe, 0x89, 0xc9, 0x42, 0x4e, 0x5c, 0x42, 0x25,
+	0xa5, 0x79, 0x79, 0xa9, 0x39, 0xf1, 0xc8, 0x76, 0x31, 0x83, 0x75, 0x8a, 0x00, 0x75, 0x0a, 0x84,
+	0x80, 0x65, 0x91, 0x6c, 0x14, 0x28, 0x41, 0x15, 0x29, 0x70, 0x92, 0xb8, 0xf1, 0x50, 0x8e, 0xe1,
+	0xc3, 0x43, 0x39, 0xc6, 0x86, 0x47, 0x72, 0x8c, 0x27, 0x80, 0xf8, 0x02, 0x10, 0x3f, 0x00, 0xe2,
+	0x24, 0x36, 0xb0, 0xc7, 0x8c, 0x01, 0x01, 0x00, 0x00, 0xff, 0xff, 0xbf, 0xd7, 0x7d, 0x7d, 0x08,
+	0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay_windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay_windows.go
new file mode 100644
index 0000000000..65ad62ae0d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/overlay_windows.go
@@ -0,0 +1,159 @@
+package overlay
+
+//go:generate protoc -I.:../../Godeps/_workspace/src/github.com/gogo/protobuf  --gogo_out=import_path=github.com/docker/libnetwork/drivers/overlay,Mgogoproto/gogo.proto=github.com/gogo/protobuf/gogoproto:. overlay.proto
+
+import (
+	"encoding/json"
+	"net"
+	"sync"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	networkType  = "overlay"
+	vethPrefix   = "veth"
+	vethLen      = 7
+	secureOption = "encrypted"
+)
+
+type driver struct {
+	config     map[string]interface{}
+	networks   networkTable
+	store      datastore.DataStore
+	localStore datastore.DataStore
+	once       sync.Once
+	joinOnce   sync.Once
+	sync.Mutex
+}
+
+// Init registers a new instance of overlay driver
+func Init(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	c := driverapi.Capability{
+		DataScope:         datastore.GlobalScope,
+		ConnectivityScope: datastore.GlobalScope,
+	}
+
+	d := &driver{
+		networks: networkTable{},
+		config:   config,
+	}
+
+	if data, ok := config[netlabel.GlobalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("failed to initialize data store: %v", err)
+		}
+	}
+
+	if data, ok := config[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.localStore, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("failed to initialize local data store: %v", err)
+		}
+	}
+
+	d.restoreHNSNetworks()
+
+	return dc.RegisterDriver(networkType, d, c)
+}
+
+func (d *driver) restoreHNSNetworks() error {
+	logrus.Infof("Restoring existing overlay networks from HNS into docker")
+
+	hnsresponse, err := hcsshim.HNSListNetworkRequest("GET", "", "")
+	if err != nil {
+		return err
+	}
+
+	for _, v := range hnsresponse {
+		if v.Type != networkType {
+			continue
+		}
+
+		logrus.Infof("Restoring overlay network: %s", v.Name)
+		n := d.convertToOverlayNetwork(&v)
+		d.addNetwork(n)
+
+		//
+		// We assume that any network will be recreated on daemon restart
+		// and therefore don't restore hns endpoints for now
+		//
+		//n.restoreNetworkEndpoints()
+	}
+
+	return nil
+}
+
+func (d *driver) convertToOverlayNetwork(v *hcsshim.HNSNetwork) *network {
+	n := &network{
+		id:              v.Name,
+		hnsID:           v.Id,
+		driver:          d,
+		endpoints:       endpointTable{},
+		subnets:         []*subnet{},
+		providerAddress: v.ManagementIP,
+	}
+
+	for _, hnsSubnet := range v.Subnets {
+		vsidPolicy := &hcsshim.VsidPolicy{}
+		for _, policy := range hnsSubnet.Policies {
+			if err := json.Unmarshal([]byte(policy), &vsidPolicy); err == nil && vsidPolicy.Type == "VSID" {
+				break
+			}
+		}
+
+		gwIP := net.ParseIP(hnsSubnet.GatewayAddress)
+		localsubnet := &subnet{
+			vni:  uint32(vsidPolicy.VSID),
+			gwIP: &gwIP,
+		}
+
+		_, subnetIP, err := net.ParseCIDR(hnsSubnet.AddressPrefix)
+
+		if err != nil {
+			logrus.Errorf("Error parsing subnet address %s ", hnsSubnet.AddressPrefix)
+			continue
+		}
+
+		localsubnet.subnetIP = subnetIP
+
+		n.subnets = append(n.subnets, localsubnet)
+	}
+
+	return n
+}
+
+func (d *driver) Type() string {
+	return networkType
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return types.NotImplementedErrorf("not implemented")
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/overlay/peerdb_windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/peerdb_windows.go
new file mode 100644
index 0000000000..159bfd6ed1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/overlay/peerdb_windows.go
@@ -0,0 +1,120 @@
+package overlay
+
+import (
+	"fmt"
+	"net"
+
+	"encoding/json"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+
+	"github.com/Microsoft/hcsshim"
+)
+
+const ovPeerTable = "overlay_peer_table"
+
+func (d *driver) peerAdd(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, updateDb bool) error {
+
+	logrus.Debugf("WINOVERLAY: Enter peerAdd for ca ip %s with ca mac %s", peerIP.String(), peerMac.String())
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return nil
+	}
+
+	if updateDb {
+		logrus.Info("WINOVERLAY: peerAdd: notifying HNS of the REMOTE endpoint")
+
+		hnsEndpoint := &hcsshim.HNSEndpoint{
+			Name:             eid,
+			VirtualNetwork:   n.hnsID,
+			MacAddress:       peerMac.String(),
+			IPAddress:        peerIP,
+			IsRemoteEndpoint: true,
+		}
+
+		paPolicy, err := json.Marshal(hcsshim.PaPolicy{
+			Type: "PA",
+			PA:   vtep.String(),
+		})
+
+		if err != nil {
+			return err
+		}
+
+		hnsEndpoint.Policies = append(hnsEndpoint.Policies, paPolicy)
+
+		configurationb, err := json.Marshal(hnsEndpoint)
+		if err != nil {
+			return err
+		}
+
+		// Temp: We have to create an endpoint object to keep track of the HNS ID for
+		// this endpoint so that we can retrieve it later when the endpoint is deleted.
+		// This seems unnecessary when we already have dockers EID. See if we can pass
+		// the global EID to HNS to use as it's ID, rather than having each HNS assign
+		// it's own local ID for the endpoint
+
+		addr, err := types.ParseCIDR(peerIP.String() + "/32")
+		if err != nil {
+			return err
+		}
+
+		n.removeEndpointWithAddress(addr)
+
+		hnsresponse, err := hcsshim.HNSEndpointRequest("POST", "", string(configurationb))
+		if err != nil {
+			return err
+		}
+
+		ep := &endpoint{
+			id:        eid,
+			nid:       nid,
+			addr:      addr,
+			mac:       peerMac,
+			profileID: hnsresponse.Id,
+			remote:    true,
+		}
+
+		n.addEndpoint(ep)
+	}
+
+	return nil
+}
+
+func (d *driver) peerDelete(nid, eid string, peerIP net.IP, peerIPMask net.IPMask,
+	peerMac net.HardwareAddr, vtep net.IP, updateDb bool) error {
+
+	logrus.Infof("WINOVERLAY: Enter peerDelete for endpoint %s and peer ip %s", eid, peerIP.String())
+
+	if err := validateID(nid, eid); err != nil {
+		return err
+	}
+
+	n := d.network(nid)
+	if n == nil {
+		return nil
+	}
+
+	ep := n.endpoint(eid)
+	if ep == nil {
+		return fmt.Errorf("could not find endpoint with id %s", eid)
+	}
+
+	if updateDb {
+		_, err := hcsshim.HNSEndpointRequest("DELETE", ep.profileID, "")
+		if err != nil {
+			return err
+		}
+
+		n.deleteEndpoint(eid)
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/windows.go b/vendor/github.com/docker/libnetwork/drivers/windows/windows.go
new file mode 100644
index 0000000000..5927fd8560
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/windows.go
@@ -0,0 +1,867 @@
+// +build windows
+
+// Shim for the Host Network Service (HNS) to manage networking for
+// Windows Server containers and Hyper-V containers. This module
+// is a basic libnetwork driver that passes all the calls to HNS
+// It implements the 4 networking modes supported by HNS L2Bridge,
+// L2Tunnel, NAT and Transparent(DHCP)
+//
+// The network are stored in memory and docker daemon ensures discovering
+// and loading these networks on startup
+
+package windows
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+	"strconv"
+	"strings"
+	"sync"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/docker/pkg/system"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// networkConfiguration for network specific configuration
+type networkConfiguration struct {
+	ID                    string
+	Type                  string
+	Name                  string
+	HnsID                 string
+	RDID                  string
+	VLAN                  uint
+	VSID                  uint
+	DNSServers            string
+	MacPools              []hcsshim.MacPool
+	DNSSuffix             string
+	SourceMac             string
+	NetworkAdapterName    string
+	dbIndex               uint64
+	dbExists              bool
+	DisableGatewayDNS     bool
+	EnableOutboundNat     bool
+	OutboundNatExceptions []string
+}
+
+// endpointConfiguration represents the user specified configuration for the sandbox endpoint
+type endpointOption struct {
+	MacAddress  net.HardwareAddr
+	QosPolicies []types.QosPolicy
+	DNSServers  []string
+	DisableDNS  bool
+	DisableICC  bool
+}
+
+// EndpointConnectivity stores the port bindings and exposed ports that the user has specified in epOptions.
+type EndpointConnectivity struct {
+	PortBindings []types.PortBinding
+	ExposedPorts []types.TransportPort
+}
+
+type hnsEndpoint struct {
+	id        string
+	nid       string
+	profileID string
+	Type      string
+	//Note: Currently, the sandboxID is the same as the containerID since windows does
+	//not expose the sandboxID.
+	//In the future, windows will support a proper sandboxID that is different
+	//than the containerID.
+	//Therefore, we are using sandboxID now, so that we won't have to change this code
+	//when windows properly supports a sandboxID.
+	sandboxID      string
+	macAddress     net.HardwareAddr
+	epOption       *endpointOption       // User specified parameters
+	epConnectivity *EndpointConnectivity // User specified parameters
+	portMapping    []types.PortBinding   // Operation port bindings
+	addr           *net.IPNet
+	gateway        net.IP
+	dbIndex        uint64
+	dbExists       bool
+}
+
+type hnsNetwork struct {
+	id        string
+	created   bool
+	config    *networkConfiguration
+	endpoints map[string]*hnsEndpoint // key: endpoint id
+	driver    *driver                 // The network's driver
+	sync.Mutex
+}
+
+type driver struct {
+	name     string
+	networks map[string]*hnsNetwork
+	store    datastore.DataStore
+	sync.Mutex
+}
+
+const (
+	errNotFound = "HNS failed with error : The object identifier does not represent a valid object. "
+)
+
+// IsBuiltinLocalDriver validates if network-type is a builtin local-scoped driver
+func IsBuiltinLocalDriver(networkType string) bool {
+	if "l2bridge" == networkType || "l2tunnel" == networkType || "nat" == networkType || "ics" == networkType || "transparent" == networkType {
+		return true
+	}
+
+	return false
+}
+
+// New constructs a new bridge driver
+func newDriver(networkType string) *driver {
+	return &driver{name: networkType, networks: map[string]*hnsNetwork{}}
+}
+
+// GetInit returns an initializer for the given network type
+func GetInit(networkType string) func(dc driverapi.DriverCallback, config map[string]interface{}) error {
+	return func(dc driverapi.DriverCallback, config map[string]interface{}) error {
+		if !IsBuiltinLocalDriver(networkType) {
+			return types.BadRequestErrorf("Network type not supported: %s", networkType)
+		}
+
+		d := newDriver(networkType)
+
+		err := d.initStore(config)
+		if err != nil {
+			return err
+		}
+
+		return dc.RegisterDriver(networkType, d, driverapi.Capability{
+			DataScope:         datastore.LocalScope,
+			ConnectivityScope: datastore.LocalScope,
+		})
+	}
+}
+
+func (d *driver) getNetwork(id string) (*hnsNetwork, error) {
+	d.Lock()
+	defer d.Unlock()
+
+	if nw, ok := d.networks[id]; ok {
+		return nw, nil
+	}
+
+	return nil, types.NotFoundErrorf("network not found: %s", id)
+}
+
+func (n *hnsNetwork) getEndpoint(eid string) (*hnsEndpoint, error) {
+	n.Lock()
+	defer n.Unlock()
+
+	if ep, ok := n.endpoints[eid]; ok {
+		return ep, nil
+	}
+
+	return nil, types.NotFoundErrorf("Endpoint not found: %s", eid)
+}
+
+func (d *driver) parseNetworkOptions(id string, genericOptions map[string]string) (*networkConfiguration, error) {
+	config := &networkConfiguration{Type: d.name}
+
+	for label, value := range genericOptions {
+		switch label {
+		case NetworkName:
+			config.Name = value
+		case HNSID:
+			config.HnsID = value
+		case RoutingDomain:
+			config.RDID = value
+		case Interface:
+			config.NetworkAdapterName = value
+		case DNSSuffix:
+			config.DNSSuffix = value
+		case DNSServers:
+			config.DNSServers = value
+		case DisableGatewayDNS:
+			b, err := strconv.ParseBool(value)
+			if err != nil {
+				return nil, err
+			}
+			config.DisableGatewayDNS = b
+		case MacPool:
+			config.MacPools = make([]hcsshim.MacPool, 0)
+			s := strings.Split(value, ",")
+			if len(s)%2 != 0 {
+				return nil, types.BadRequestErrorf("Invalid mac pool. You must specify both a start range and an end range")
+			}
+			for i := 0; i < len(s)-1; i += 2 {
+				config.MacPools = append(config.MacPools, hcsshim.MacPool{
+					StartMacAddress: s[i],
+					EndMacAddress:   s[i+1],
+				})
+			}
+		case VLAN:
+			vlan, err := strconv.ParseUint(value, 10, 32)
+			if err != nil {
+				return nil, err
+			}
+			config.VLAN = uint(vlan)
+		case VSID:
+			vsid, err := strconv.ParseUint(value, 10, 32)
+			if err != nil {
+				return nil, err
+			}
+			config.VSID = uint(vsid)
+		case EnableOutboundNat:
+			if system.GetOSVersion().Build <= 16236 {
+				return nil, fmt.Errorf("Invalid network option. OutboundNat is not supported on this OS version")
+			}
+			b, err := strconv.ParseBool(value)
+			if err != nil {
+				return nil, err
+			}
+			config.EnableOutboundNat = b
+		case OutboundNatExceptions:
+			s := strings.Split(value, ",")
+			config.OutboundNatExceptions = s
+		}
+	}
+
+	config.ID = id
+	config.Type = d.name
+	return config, nil
+}
+
+func (c *networkConfiguration) processIPAM(id string, ipamV4Data, ipamV6Data []driverapi.IPAMData) error {
+	if len(ipamV6Data) > 0 {
+		return types.ForbiddenErrorf("windowsshim driver doesn't support v6 subnets")
+	}
+
+	if len(ipamV4Data) == 0 {
+		return types.BadRequestErrorf("network %s requires ipv4 configuration", id)
+	}
+
+	return nil
+}
+
+func (d *driver) EventNotify(etype driverapi.EventType, nid, tableName, key string, value []byte) {
+}
+
+func (d *driver) DecodeTableEntry(tablename string, key string, value []byte) (string, map[string]string) {
+	return "", nil
+}
+
+func (d *driver) createNetwork(config *networkConfiguration) error {
+	network := &hnsNetwork{
+		id:        config.ID,
+		endpoints: make(map[string]*hnsEndpoint),
+		config:    config,
+		driver:    d,
+	}
+
+	d.Lock()
+	d.networks[config.ID] = network
+	d.Unlock()
+
+	return nil
+}
+
+// Create a new network
+func (d *driver) CreateNetwork(id string, option map[string]interface{}, nInfo driverapi.NetworkInfo, ipV4Data, ipV6Data []driverapi.IPAMData) error {
+	if _, err := d.getNetwork(id); err == nil {
+		return types.ForbiddenErrorf("network %s exists", id)
+	}
+
+	genData, ok := option[netlabel.GenericData].(map[string]string)
+	if !ok {
+		return fmt.Errorf("Unknown generic data option")
+	}
+
+	// Parse and validate the config. It should not conflict with existing networks' config
+	config, err := d.parseNetworkOptions(id, genData)
+	if err != nil {
+		return err
+	}
+
+	err = config.processIPAM(id, ipV4Data, ipV6Data)
+	if err != nil {
+		return err
+	}
+
+	err = d.createNetwork(config)
+
+	if err != nil {
+		return err
+	}
+
+	// A non blank hnsid indicates that the network was discovered
+	// from HNS. No need to call HNS if this network was discovered
+	// from HNS
+	if config.HnsID == "" {
+		subnets := []hcsshim.Subnet{}
+
+		for _, ipData := range ipV4Data {
+			subnet := hcsshim.Subnet{
+				AddressPrefix: ipData.Pool.String(),
+			}
+
+			if ipData.Gateway != nil {
+				subnet.GatewayAddress = ipData.Gateway.IP.String()
+			}
+
+			subnets = append(subnets, subnet)
+		}
+
+		network := &hcsshim.HNSNetwork{
+			Name:               config.Name,
+			Type:               d.name,
+			Subnets:            subnets,
+			DNSServerList:      config.DNSServers,
+			DNSSuffix:          config.DNSSuffix,
+			MacPools:           config.MacPools,
+			SourceMac:          config.SourceMac,
+			NetworkAdapterName: config.NetworkAdapterName,
+		}
+
+		if config.VLAN != 0 {
+			vlanPolicy, err := json.Marshal(hcsshim.VlanPolicy{
+				Type: "VLAN",
+				VLAN: config.VLAN,
+			})
+
+			if err != nil {
+				return err
+			}
+			network.Policies = append(network.Policies, vlanPolicy)
+		}
+
+		if config.VSID != 0 {
+			vsidPolicy, err := json.Marshal(hcsshim.VsidPolicy{
+				Type: "VSID",
+				VSID: config.VSID,
+			})
+
+			if err != nil {
+				return err
+			}
+			network.Policies = append(network.Policies, vsidPolicy)
+		}
+
+		if network.Name == "" {
+			network.Name = id
+		}
+
+		configurationb, err := json.Marshal(network)
+		if err != nil {
+			return err
+		}
+
+		configuration := string(configurationb)
+		logrus.Debugf("HNSNetwork Request =%v Address Space=%v", configuration, subnets)
+
+		hnsresponse, err := hcsshim.HNSNetworkRequest("POST", "", configuration)
+		if err != nil {
+			return err
+		}
+
+		config.HnsID = hnsresponse.Id
+		genData[HNSID] = config.HnsID
+
+	} else {
+		// Delete any stale HNS endpoints for this network.
+		if endpoints, err := hcsshim.HNSListEndpointRequest(); err == nil {
+			for _, ep := range endpoints {
+				if ep.VirtualNetwork == config.HnsID {
+					logrus.Infof("Removing stale HNS endpoint %s", ep.Id)
+					_, err = hcsshim.HNSEndpointRequest("DELETE", ep.Id, "")
+					if err != nil {
+						logrus.Warnf("Error removing HNS endpoint %s", ep.Id)
+					}
+				}
+			}
+		} else {
+			logrus.Warnf("Error listing HNS endpoints for network %s", config.HnsID)
+		}
+	}
+
+	n, err := d.getNetwork(id)
+	if err != nil {
+		return err
+	}
+	n.created = true
+	return d.storeUpdate(config)
+}
+
+func (d *driver) DeleteNetwork(nid string) error {
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return types.InternalMaskableErrorf("%s", err)
+	}
+
+	n.Lock()
+	config := n.config
+	n.Unlock()
+
+	if n.created {
+		_, err = hcsshim.HNSNetworkRequest("DELETE", config.HnsID, "")
+		if err != nil && err.Error() != errNotFound {
+			return types.ForbiddenErrorf(err.Error())
+		}
+	}
+
+	d.Lock()
+	delete(d.networks, nid)
+	d.Unlock()
+
+	// delele endpoints belong to this network
+	for _, ep := range n.endpoints {
+		if err := d.storeDelete(ep); err != nil {
+			logrus.Warnf("Failed to remove bridge endpoint %s from store: %v", ep.id[0:7], err)
+		}
+	}
+
+	return d.storeDelete(config)
+}
+
+func convertQosPolicies(qosPolicies []types.QosPolicy) ([]json.RawMessage, error) {
+	var qps []json.RawMessage
+
+	// Enumerate through the qos policies specified by the user and convert
+	// them into the internal structure matching the JSON blob that can be
+	// understood by the HCS.
+	for _, elem := range qosPolicies {
+		encodedPolicy, err := json.Marshal(hcsshim.QosPolicy{
+			Type: "QOS",
+			MaximumOutgoingBandwidthInBytes: elem.MaxEgressBandwidth,
+		})
+
+		if err != nil {
+			return nil, err
+		}
+		qps = append(qps, encodedPolicy)
+	}
+	return qps, nil
+}
+
+// ConvertPortBindings converts PortBindings to JSON for HNS request
+func ConvertPortBindings(portBindings []types.PortBinding) ([]json.RawMessage, error) {
+	var pbs []json.RawMessage
+
+	// Enumerate through the port bindings specified by the user and convert
+	// them into the internal structure matching the JSON blob that can be
+	// understood by the HCS.
+	for _, elem := range portBindings {
+		proto := strings.ToUpper(elem.Proto.String())
+		if proto != "TCP" && proto != "UDP" {
+			return nil, fmt.Errorf("invalid protocol %s", elem.Proto.String())
+		}
+
+		if elem.HostPort != elem.HostPortEnd {
+			return nil, fmt.Errorf("Windows does not support more than one host port in NAT settings")
+		}
+
+		if len(elem.HostIP) != 0 {
+			return nil, fmt.Errorf("Windows does not support host IP addresses in NAT settings")
+		}
+
+		encodedPolicy, err := json.Marshal(hcsshim.NatPolicy{
+			Type:         "NAT",
+			ExternalPort: elem.HostPort,
+			InternalPort: elem.Port,
+			Protocol:     elem.Proto.String(),
+		})
+
+		if err != nil {
+			return nil, err
+		}
+		pbs = append(pbs, encodedPolicy)
+	}
+	return pbs, nil
+}
+
+// ParsePortBindingPolicies parses HNS endpoint response message to PortBindings
+func ParsePortBindingPolicies(policies []json.RawMessage) ([]types.PortBinding, error) {
+	var bindings []types.PortBinding
+	hcsPolicy := &hcsshim.NatPolicy{}
+
+	for _, elem := range policies {
+
+		if err := json.Unmarshal([]byte(elem), &hcsPolicy); err != nil || hcsPolicy.Type != "NAT" {
+			continue
+		}
+
+		binding := types.PortBinding{
+			HostPort:    hcsPolicy.ExternalPort,
+			HostPortEnd: hcsPolicy.ExternalPort,
+			Port:        hcsPolicy.InternalPort,
+			Proto:       types.ParseProtocol(hcsPolicy.Protocol),
+			HostIP:      net.IPv4(0, 0, 0, 0),
+		}
+
+		bindings = append(bindings, binding)
+	}
+
+	return bindings, nil
+}
+
+func parseEndpointOptions(epOptions map[string]interface{}) (*endpointOption, error) {
+	if epOptions == nil {
+		return nil, nil
+	}
+
+	ec := &endpointOption{}
+
+	if opt, ok := epOptions[netlabel.MacAddress]; ok {
+		if mac, ok := opt.(net.HardwareAddr); ok {
+			ec.MacAddress = mac
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	if opt, ok := epOptions[QosPolicies]; ok {
+		if policies, ok := opt.([]types.QosPolicy); ok {
+			ec.QosPolicies = policies
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	if opt, ok := epOptions[netlabel.DNSServers]; ok {
+		if dns, ok := opt.([]string); ok {
+			ec.DNSServers = dns
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	if opt, ok := epOptions[DisableICC]; ok {
+		if disableICC, ok := opt.(bool); ok {
+			ec.DisableICC = disableICC
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	if opt, ok := epOptions[DisableDNS]; ok {
+		if disableDNS, ok := opt.(bool); ok {
+			ec.DisableDNS = disableDNS
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	return ec, nil
+}
+
+// ParseEndpointConnectivity parses options passed to CreateEndpoint, specifically port bindings, and store in a endpointConnectivity object.
+func ParseEndpointConnectivity(epOptions map[string]interface{}) (*EndpointConnectivity, error) {
+	if epOptions == nil {
+		return nil, nil
+	}
+
+	ec := &EndpointConnectivity{}
+
+	if opt, ok := epOptions[netlabel.PortMap]; ok {
+		if bs, ok := opt.([]types.PortBinding); ok {
+			ec.PortBindings = bs
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+
+	if opt, ok := epOptions[netlabel.ExposedPorts]; ok {
+		if ports, ok := opt.([]types.TransportPort); ok {
+			ec.ExposedPorts = ports
+		} else {
+			return nil, fmt.Errorf("Invalid endpoint configuration")
+		}
+	}
+	return ec, nil
+}
+
+func (d *driver) CreateEndpoint(nid, eid string, ifInfo driverapi.InterfaceInfo, epOptions map[string]interface{}) error {
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+
+	// Check if endpoint id is good and retrieve corresponding endpoint
+	ep, err := n.getEndpoint(eid)
+	if err == nil && ep != nil {
+		return driverapi.ErrEndpointExists(eid)
+	}
+
+	endpointStruct := &hcsshim.HNSEndpoint{
+		VirtualNetwork: n.config.HnsID,
+	}
+
+	epOption, err := parseEndpointOptions(epOptions)
+	if err != nil {
+		return err
+	}
+	epConnectivity, err := ParseEndpointConnectivity(epOptions)
+	if err != nil {
+		return err
+	}
+
+	macAddress := ifInfo.MacAddress()
+	// Use the macaddress if it was provided
+	if macAddress != nil {
+		endpointStruct.MacAddress = strings.Replace(macAddress.String(), ":", "-", -1)
+	}
+
+	endpointStruct.Policies, err = ConvertPortBindings(epConnectivity.PortBindings)
+	if err != nil {
+		return err
+	}
+
+	qosPolicies, err := convertQosPolicies(epOption.QosPolicies)
+	if err != nil {
+		return err
+	}
+	endpointStruct.Policies = append(endpointStruct.Policies, qosPolicies...)
+
+	if ifInfo.Address() != nil {
+		endpointStruct.IPAddress = ifInfo.Address().IP
+	}
+
+	endpointStruct.DNSServerList = strings.Join(epOption.DNSServers, ",")
+
+	// overwrite the ep DisableDNS option if DisableGatewayDNS was set to true during the network creation option
+	if n.config.DisableGatewayDNS {
+		logrus.Debugf("n.config.DisableGatewayDNS[%v] overwrites epOption.DisableDNS[%v]", n.config.DisableGatewayDNS, epOption.DisableDNS)
+		epOption.DisableDNS = n.config.DisableGatewayDNS
+	}
+
+	if n.driver.name == "nat" && !epOption.DisableDNS {
+		logrus.Debugf("endpointStruct.EnableInternalDNS =[%v]", endpointStruct.EnableInternalDNS)
+		endpointStruct.EnableInternalDNS = true
+	}
+
+	endpointStruct.DisableICC = epOption.DisableICC
+
+	// Inherit OutboundNat policy from the network
+	if n.config.EnableOutboundNat {
+		outboundNatPolicy, err := json.Marshal(hcsshim.OutboundNatPolicy{
+			Policy:     hcsshim.Policy{Type: hcsshim.OutboundNat},
+			Exceptions: n.config.OutboundNatExceptions,
+		})
+
+		if err != nil {
+			return err
+		}
+		endpointStruct.Policies = append(endpointStruct.Policies, outboundNatPolicy)
+	}
+
+	configurationb, err := json.Marshal(endpointStruct)
+	if err != nil {
+		return err
+	}
+
+	hnsresponse, err := hcsshim.HNSEndpointRequest("POST", "", string(configurationb))
+	if err != nil {
+		return err
+	}
+
+	mac, err := net.ParseMAC(hnsresponse.MacAddress)
+	if err != nil {
+		return err
+	}
+
+	// TODO For now the ip mask is not in the info generated by HNS
+	endpoint := &hnsEndpoint{
+		id:         eid,
+		nid:        n.id,
+		Type:       d.name,
+		addr:       &net.IPNet{IP: hnsresponse.IPAddress, Mask: hnsresponse.IPAddress.DefaultMask()},
+		macAddress: mac,
+	}
+
+	if hnsresponse.GatewayAddress != "" {
+		endpoint.gateway = net.ParseIP(hnsresponse.GatewayAddress)
+	}
+
+	endpoint.profileID = hnsresponse.Id
+	endpoint.epConnectivity = epConnectivity
+	endpoint.epOption = epOption
+	endpoint.portMapping, err = ParsePortBindingPolicies(hnsresponse.Policies)
+
+	if err != nil {
+		hcsshim.HNSEndpointRequest("DELETE", hnsresponse.Id, "")
+		return err
+	}
+
+	n.Lock()
+	n.endpoints[eid] = endpoint
+	n.Unlock()
+
+	if ifInfo.Address() == nil {
+		ifInfo.SetIPAddress(endpoint.addr)
+	}
+
+	if macAddress == nil {
+		ifInfo.SetMacAddress(endpoint.macAddress)
+	}
+
+	if err = d.storeUpdate(endpoint); err != nil {
+		logrus.Errorf("Failed to save endpoint %s to store: %v", endpoint.id[0:7], err)
+	}
+
+	return nil
+}
+
+func (d *driver) DeleteEndpoint(nid, eid string) error {
+	n, err := d.getNetwork(nid)
+	if err != nil {
+		return types.InternalMaskableErrorf("%s", err)
+	}
+
+	ep, err := n.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	n.Lock()
+	delete(n.endpoints, eid)
+	n.Unlock()
+
+	_, err = hcsshim.HNSEndpointRequest("DELETE", ep.profileID, "")
+	if err != nil && err.Error() != errNotFound {
+		return err
+	}
+
+	if err := d.storeDelete(ep); err != nil {
+		logrus.Warnf("Failed to remove bridge endpoint %s from store: %v", ep.id[0:7], err)
+	}
+	return nil
+}
+
+func (d *driver) EndpointOperInfo(nid, eid string) (map[string]interface{}, error) {
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return nil, err
+	}
+
+	ep, err := network.getEndpoint(eid)
+	if err != nil {
+		return nil, err
+	}
+
+	data := make(map[string]interface{}, 1)
+	if network.driver.name == "nat" {
+		data["AllowUnqualifiedDNSQuery"] = true
+	}
+
+	data["hnsid"] = ep.profileID
+	if ep.epConnectivity.ExposedPorts != nil {
+		// Return a copy of the config data
+		epc := make([]types.TransportPort, 0, len(ep.epConnectivity.ExposedPorts))
+		for _, tp := range ep.epConnectivity.ExposedPorts {
+			epc = append(epc, tp.GetCopy())
+		}
+		data[netlabel.ExposedPorts] = epc
+	}
+
+	if ep.portMapping != nil {
+		// Return a copy of the operational data
+		pmc := make([]types.PortBinding, 0, len(ep.portMapping))
+		for _, pm := range ep.portMapping {
+			pmc = append(pmc, pm.GetCopy())
+		}
+		data[netlabel.PortMap] = pmc
+	}
+
+	if len(ep.macAddress) != 0 {
+		data[netlabel.MacAddress] = ep.macAddress
+	}
+	return data, nil
+}
+
+// Join method is invoked when a Sandbox is attached to an endpoint.
+func (d *driver) Join(nid, eid string, sboxKey string, jinfo driverapi.JoinInfo, options map[string]interface{}) error {
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return err
+	}
+
+	// Ensure that the endpoint exists
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	err = jinfo.SetGateway(endpoint.gateway)
+	if err != nil {
+		return err
+	}
+
+	endpoint.sandboxID = sboxKey
+
+	err = hcsshim.HotAttachEndpoint(endpoint.sandboxID, endpoint.profileID)
+	if err != nil {
+		// If container doesn't exists in hcs, do not throw error for hot add/remove
+		if err != hcsshim.ErrComputeSystemDoesNotExist {
+			return err
+		}
+	}
+
+	jinfo.DisableGatewayService()
+	return nil
+}
+
+// Leave method is invoked when a Sandbox detaches from an endpoint.
+func (d *driver) Leave(nid, eid string) error {
+	network, err := d.getNetwork(nid)
+	if err != nil {
+		return types.InternalMaskableErrorf("%s", err)
+	}
+
+	// Ensure that the endpoint exists
+	endpoint, err := network.getEndpoint(eid)
+	if err != nil {
+		return err
+	}
+
+	err = hcsshim.HotDetachEndpoint(endpoint.sandboxID, endpoint.profileID)
+	if err != nil {
+		// If container doesn't exists in hcs, do not throw error for hot add/remove
+		if err != hcsshim.ErrComputeSystemDoesNotExist {
+			return err
+		}
+	}
+	return nil
+}
+
+func (d *driver) ProgramExternalConnectivity(nid, eid string, options map[string]interface{}) error {
+	return nil
+}
+
+func (d *driver) RevokeExternalConnectivity(nid, eid string) error {
+	return nil
+}
+
+func (d *driver) NetworkAllocate(id string, option map[string]string, ipV4Data, ipV6Data []driverapi.IPAMData) (map[string]string, error) {
+	return nil, types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) NetworkFree(id string) error {
+	return types.NotImplementedErrorf("not implemented")
+}
+
+func (d *driver) Type() string {
+	return d.name
+}
+
+func (d *driver) IsBuiltIn() bool {
+	return true
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new node joining a cluster
+func (d *driver) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (d *driver) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers/windows/windows_store.go b/vendor/github.com/docker/libnetwork/drivers/windows/windows_store.go
new file mode 100644
index 0000000000..9f8a7b18f5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers/windows/windows_store.go
@@ -0,0 +1,339 @@
+// +build windows
+
+package windows
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	windowsPrefix         = "windows"
+	windowsEndpointPrefix = "windows-endpoint"
+)
+
+func (d *driver) initStore(option map[string]interface{}) error {
+	if data, ok := option[netlabel.LocalKVClient]; ok {
+		var err error
+		dsc, ok := data.(discoverapi.DatastoreConfigData)
+		if !ok {
+			return types.InternalErrorf("incorrect data in datastore configuration: %v", data)
+		}
+		d.store, err = datastore.NewDataStoreFromConfig(dsc)
+		if err != nil {
+			return types.InternalErrorf("windows driver failed to initialize data store: %v", err)
+		}
+
+		err = d.populateNetworks()
+		if err != nil {
+			return err
+		}
+
+		err = d.populateEndpoints()
+		if err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (d *driver) populateNetworks() error {
+	kvol, err := d.store.List(datastore.Key(windowsPrefix), &networkConfiguration{Type: d.name})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get windows network configurations from store: %v", err)
+	}
+
+	// It's normal for network configuration state to be empty. Just return.
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ncfg := kvo.(*networkConfiguration)
+		if ncfg.Type != d.name {
+			continue
+		}
+		if err = d.createNetwork(ncfg); err != nil {
+			logrus.Warnf("could not create windows network for id %s hnsid %s while booting up from persistent state: %v", ncfg.ID, ncfg.HnsID, err)
+		}
+		logrus.Debugf("Network  %v (%s) restored", d.name, ncfg.ID[0:7])
+	}
+
+	return nil
+}
+
+func (d *driver) populateEndpoints() error {
+	kvol, err := d.store.List(datastore.Key(windowsEndpointPrefix), &hnsEndpoint{Type: d.name})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return fmt.Errorf("failed to get endpoints from store: %v", err)
+	}
+
+	if err == datastore.ErrKeyNotFound {
+		return nil
+	}
+
+	for _, kvo := range kvol {
+		ep := kvo.(*hnsEndpoint)
+		if ep.Type != d.name {
+			continue
+		}
+		n, ok := d.networks[ep.nid]
+		if !ok {
+			logrus.Debugf("Network (%s) not found for restored endpoint (%s)", ep.nid[0:7], ep.id[0:7])
+			logrus.Debugf("Deleting stale endpoint (%s) from store", ep.id[0:7])
+			if err := d.storeDelete(ep); err != nil {
+				logrus.Debugf("Failed to delete stale endpoint (%s) from store", ep.id[0:7])
+			}
+			continue
+		}
+		n.endpoints[ep.id] = ep
+		logrus.Debugf("Endpoint (%s) restored to network (%s)", ep.id[0:7], ep.nid[0:7])
+	}
+
+	return nil
+}
+
+func (d *driver) storeUpdate(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Warnf("store not initialized. kv object %s is not added to the store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+
+	if err := d.store.PutObjectAtomic(kvObject); err != nil {
+		return fmt.Errorf("failed to update store for object type %T: %v", kvObject, err)
+	}
+
+	return nil
+}
+
+func (d *driver) storeDelete(kvObject datastore.KVObject) error {
+	if d.store == nil {
+		logrus.Debugf("store not initialized. kv object %s is not deleted from store", datastore.Key(kvObject.Key()...))
+		return nil
+	}
+
+retry:
+	if err := d.store.DeleteObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := d.store.GetObject(datastore.Key(kvObject.Key()...), kvObject); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to delete: %v", err)
+			}
+			goto retry
+		}
+		return err
+	}
+
+	return nil
+}
+
+func (ncfg *networkConfiguration) MarshalJSON() ([]byte, error) {
+	nMap := make(map[string]interface{})
+
+	nMap["ID"] = ncfg.ID
+	nMap["Type"] = ncfg.Type
+	nMap["Name"] = ncfg.Name
+	nMap["HnsID"] = ncfg.HnsID
+	nMap["VLAN"] = ncfg.VLAN
+	nMap["VSID"] = ncfg.VSID
+	nMap["DNSServers"] = ncfg.DNSServers
+	nMap["DNSSuffix"] = ncfg.DNSSuffix
+	nMap["SourceMac"] = ncfg.SourceMac
+	nMap["NetworkAdapterName"] = ncfg.NetworkAdapterName
+
+	return json.Marshal(nMap)
+}
+
+func (ncfg *networkConfiguration) UnmarshalJSON(b []byte) error {
+	var (
+		err  error
+		nMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &nMap); err != nil {
+		return err
+	}
+
+	ncfg.ID = nMap["ID"].(string)
+	ncfg.Type = nMap["Type"].(string)
+	ncfg.Name = nMap["Name"].(string)
+	ncfg.HnsID = nMap["HnsID"].(string)
+	ncfg.VLAN = uint(nMap["VLAN"].(float64))
+	ncfg.VSID = uint(nMap["VSID"].(float64))
+	ncfg.DNSServers = nMap["DNSServers"].(string)
+	ncfg.DNSSuffix = nMap["DNSSuffix"].(string)
+	ncfg.SourceMac = nMap["SourceMac"].(string)
+	ncfg.NetworkAdapterName = nMap["NetworkAdapterName"].(string)
+	return nil
+}
+
+func (ncfg *networkConfiguration) Key() []string {
+	return []string{windowsPrefix + ncfg.Type, ncfg.ID}
+}
+
+func (ncfg *networkConfiguration) KeyPrefix() []string {
+	return []string{windowsPrefix + ncfg.Type}
+}
+
+func (ncfg *networkConfiguration) Value() []byte {
+	b, err := json.Marshal(ncfg)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ncfg *networkConfiguration) SetValue(value []byte) error {
+	return json.Unmarshal(value, ncfg)
+}
+
+func (ncfg *networkConfiguration) Index() uint64 {
+	return ncfg.dbIndex
+}
+
+func (ncfg *networkConfiguration) SetIndex(index uint64) {
+	ncfg.dbIndex = index
+	ncfg.dbExists = true
+}
+
+func (ncfg *networkConfiguration) Exists() bool {
+	return ncfg.dbExists
+}
+
+func (ncfg *networkConfiguration) Skip() bool {
+	return false
+}
+
+func (ncfg *networkConfiguration) New() datastore.KVObject {
+	return &networkConfiguration{Type: ncfg.Type}
+}
+
+func (ncfg *networkConfiguration) CopyTo(o datastore.KVObject) error {
+	dstNcfg := o.(*networkConfiguration)
+	*dstNcfg = *ncfg
+	return nil
+}
+
+func (ncfg *networkConfiguration) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (ep *hnsEndpoint) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	epMap["id"] = ep.id
+	epMap["nid"] = ep.nid
+	epMap["Type"] = ep.Type
+	epMap["profileID"] = ep.profileID
+	epMap["MacAddress"] = ep.macAddress.String()
+	if ep.addr.IP != nil {
+		epMap["Addr"] = ep.addr.String()
+	}
+	if ep.gateway != nil {
+		epMap["gateway"] = ep.gateway.String()
+	}
+	epMap["epOption"] = ep.epOption
+	epMap["epConnectivity"] = ep.epConnectivity
+	epMap["PortMapping"] = ep.portMapping
+
+	return json.Marshal(epMap)
+}
+
+func (ep *hnsEndpoint) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return fmt.Errorf("Failed to unmarshal to endpoint: %v", err)
+	}
+	if v, ok := epMap["MacAddress"]; ok {
+		if ep.macAddress, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint MAC address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["Addr"]; ok {
+		if ep.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint IPv4 address (%s) after json unmarshal: %v", v.(string), err)
+		}
+	}
+	if v, ok := epMap["gateway"]; ok {
+		ep.gateway = net.ParseIP(v.(string))
+	}
+	ep.id = epMap["id"].(string)
+	ep.Type = epMap["Type"].(string)
+	ep.nid = epMap["nid"].(string)
+	ep.profileID = epMap["profileID"].(string)
+	d, _ := json.Marshal(epMap["epOption"])
+	if err := json.Unmarshal(d, &ep.epOption); err != nil {
+		logrus.Warnf("Failed to decode endpoint container config %v", err)
+	}
+	d, _ = json.Marshal(epMap["epConnectivity"])
+	if err := json.Unmarshal(d, &ep.epConnectivity); err != nil {
+		logrus.Warnf("Failed to decode endpoint external connectivity configuration %v", err)
+	}
+	d, _ = json.Marshal(epMap["PortMapping"])
+	if err := json.Unmarshal(d, &ep.portMapping); err != nil {
+		logrus.Warnf("Failed to decode endpoint port mapping %v", err)
+	}
+
+	return nil
+}
+
+func (ep *hnsEndpoint) Key() []string {
+	return []string{windowsEndpointPrefix + ep.Type, ep.id}
+}
+
+func (ep *hnsEndpoint) KeyPrefix() []string {
+	return []string{windowsEndpointPrefix + ep.Type}
+}
+
+func (ep *hnsEndpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *hnsEndpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *hnsEndpoint) Index() uint64 {
+	return ep.dbIndex
+}
+
+func (ep *hnsEndpoint) SetIndex(index uint64) {
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *hnsEndpoint) Exists() bool {
+	return ep.dbExists
+}
+
+func (ep *hnsEndpoint) Skip() bool {
+	return false
+}
+
+func (ep *hnsEndpoint) New() datastore.KVObject {
+	return &hnsEndpoint{Type: ep.Type}
+}
+
+func (ep *hnsEndpoint) CopyTo(o datastore.KVObject) error {
+	dstEp := o.(*hnsEndpoint)
+	*dstEp = *ep
+	return nil
+}
+
+func (ep *hnsEndpoint) DataScope() string {
+	return datastore.LocalScope
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers_experimental_linux.go b/vendor/github.com/docker/libnetwork/drivers_experimental_linux.go
new file mode 100644
index 0000000000..4f540d4a87
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers_experimental_linux.go
@@ -0,0 +1,9 @@
+package libnetwork
+
+import "github.com/docker/libnetwork/drivers/ipvlan"
+
+func additionalDrivers() []initializer {
+	return []initializer{
+		{ipvlan.Init, "ipvlan"},
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers_freebsd.go b/vendor/github.com/docker/libnetwork/drivers_freebsd.go
new file mode 100644
index 0000000000..d117c25780
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers_freebsd.go
@@ -0,0 +1,13 @@
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/drivers/null"
+	"github.com/docker/libnetwork/drivers/remote"
+)
+
+func getInitializers(experimental bool) []initializer {
+	return []initializer{
+		{null.Init, "null"},
+		{remote.Init, "remote"},
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers_ipam.go b/vendor/github.com/docker/libnetwork/drivers_ipam.go
new file mode 100644
index 0000000000..f47c01c714
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers_ipam.go
@@ -0,0 +1,25 @@
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/drvregistry"
+	"github.com/docker/libnetwork/ipamapi"
+	builtinIpam "github.com/docker/libnetwork/ipams/builtin"
+	nullIpam "github.com/docker/libnetwork/ipams/null"
+	remoteIpam "github.com/docker/libnetwork/ipams/remote"
+	"github.com/docker/libnetwork/ipamutils"
+)
+
+func initIPAMDrivers(r *drvregistry.DrvRegistry, lDs, gDs interface{}, addressPool []*ipamutils.NetworkToSplit) error {
+	builtinIpam.SetDefaultIPAddressPool(addressPool)
+	for _, fn := range [](func(ipamapi.Callback, interface{}, interface{}) error){
+		builtinIpam.Init,
+		remoteIpam.Init,
+		nullIpam.Init,
+	} {
+		if err := fn(r, lDs, gDs); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers_linux.go b/vendor/github.com/docker/libnetwork/drivers_linux.go
new file mode 100644
index 0000000000..c53d516fa6
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers_linux.go
@@ -0,0 +1,26 @@
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/drivers/bridge"
+	"github.com/docker/libnetwork/drivers/host"
+	"github.com/docker/libnetwork/drivers/macvlan"
+	"github.com/docker/libnetwork/drivers/null"
+	"github.com/docker/libnetwork/drivers/overlay"
+	"github.com/docker/libnetwork/drivers/remote"
+)
+
+func getInitializers(experimental bool) []initializer {
+	in := []initializer{
+		{bridge.Init, "bridge"},
+		{host.Init, "host"},
+		{macvlan.Init, "macvlan"},
+		{null.Init, "null"},
+		{remote.Init, "remote"},
+		{overlay.Init, "overlay"},
+	}
+
+	if experimental {
+		in = append(in, additionalDrivers()...)
+	}
+	return in
+}
diff --git a/vendor/github.com/docker/libnetwork/drivers_windows.go b/vendor/github.com/docker/libnetwork/drivers_windows.go
new file mode 100644
index 0000000000..a037c16efb
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drivers_windows.go
@@ -0,0 +1,21 @@
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/drivers/null"
+	"github.com/docker/libnetwork/drivers/remote"
+	"github.com/docker/libnetwork/drivers/windows"
+	"github.com/docker/libnetwork/drivers/windows/overlay"
+)
+
+func getInitializers(experimental bool) []initializer {
+	return []initializer{
+		{null.Init, "null"},
+		{overlay.Init, "overlay"},
+		{remote.Init, "remote"},
+		{windows.GetInit("transparent"), "transparent"},
+		{windows.GetInit("l2bridge"), "l2bridge"},
+		{windows.GetInit("l2tunnel"), "l2tunnel"},
+		{windows.GetInit("nat"), "nat"},
+		{windows.GetInit("ics"), "ics"},
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/drvregistry/drvregistry.go b/vendor/github.com/docker/libnetwork/drvregistry/drvregistry.go
new file mode 100644
index 0000000000..b3fe9bafcf
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/drvregistry/drvregistry.go
@@ -0,0 +1,228 @@
+package drvregistry
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+	"sync"
+
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/types"
+)
+
+type driverData struct {
+	driver     driverapi.Driver
+	capability driverapi.Capability
+}
+
+type ipamData struct {
+	driver     ipamapi.Ipam
+	capability *ipamapi.Capability
+	// default address spaces are provided by ipam driver at registration time
+	defaultLocalAddressSpace, defaultGlobalAddressSpace string
+}
+
+type driverTable map[string]*driverData
+type ipamTable map[string]*ipamData
+
+// DrvRegistry holds the registry of all network drivers and IPAM drivers that it knows about.
+type DrvRegistry struct {
+	sync.Mutex
+	drivers      driverTable
+	ipamDrivers  ipamTable
+	dfn          DriverNotifyFunc
+	ifn          IPAMNotifyFunc
+	pluginGetter plugingetter.PluginGetter
+}
+
+// Functors definition
+
+// InitFunc defines the driver initialization function signature.
+type InitFunc func(driverapi.DriverCallback, map[string]interface{}) error
+
+// IPAMWalkFunc defines the IPAM driver table walker function signature.
+type IPAMWalkFunc func(name string, driver ipamapi.Ipam, cap *ipamapi.Capability) bool
+
+// DriverWalkFunc defines the network driver table walker function signature.
+type DriverWalkFunc func(name string, driver driverapi.Driver, capability driverapi.Capability) bool
+
+// IPAMNotifyFunc defines the notify function signature when a new IPAM driver gets registered.
+type IPAMNotifyFunc func(name string, driver ipamapi.Ipam, cap *ipamapi.Capability) error
+
+// DriverNotifyFunc defines the notify function signature when a new network driver gets registered.
+type DriverNotifyFunc func(name string, driver driverapi.Driver, capability driverapi.Capability) error
+
+// New retruns a new driver registry handle.
+func New(lDs, gDs interface{}, dfn DriverNotifyFunc, ifn IPAMNotifyFunc, pg plugingetter.PluginGetter) (*DrvRegistry, error) {
+	r := &DrvRegistry{
+		drivers:      make(driverTable),
+		ipamDrivers:  make(ipamTable),
+		dfn:          dfn,
+		ifn:          ifn,
+		pluginGetter: pg,
+	}
+
+	return r, nil
+}
+
+// AddDriver adds a network driver to the registry.
+func (r *DrvRegistry) AddDriver(ntype string, fn InitFunc, config map[string]interface{}) error {
+	return fn(r, config)
+}
+
+// WalkIPAMs walks the IPAM drivers registered in the registry and invokes the passed walk function and each one of them.
+func (r *DrvRegistry) WalkIPAMs(ifn IPAMWalkFunc) {
+	type ipamVal struct {
+		name string
+		data *ipamData
+	}
+
+	r.Lock()
+	ivl := make([]ipamVal, 0, len(r.ipamDrivers))
+	for k, v := range r.ipamDrivers {
+		ivl = append(ivl, ipamVal{name: k, data: v})
+	}
+	r.Unlock()
+
+	for _, iv := range ivl {
+		if ifn(iv.name, iv.data.driver, iv.data.capability) {
+			break
+		}
+	}
+}
+
+// WalkDrivers walks the network drivers registered in the registry and invokes the passed walk function and each one of them.
+func (r *DrvRegistry) WalkDrivers(dfn DriverWalkFunc) {
+	type driverVal struct {
+		name string
+		data *driverData
+	}
+
+	r.Lock()
+	dvl := make([]driverVal, 0, len(r.drivers))
+	for k, v := range r.drivers {
+		dvl = append(dvl, driverVal{name: k, data: v})
+	}
+	r.Unlock()
+
+	for _, dv := range dvl {
+		if dfn(dv.name, dv.data.driver, dv.data.capability) {
+			break
+		}
+	}
+}
+
+// Driver returns the actual network driver instance and its capability  which registered with the passed name.
+func (r *DrvRegistry) Driver(name string) (driverapi.Driver, *driverapi.Capability) {
+	r.Lock()
+	defer r.Unlock()
+
+	d, ok := r.drivers[name]
+	if !ok {
+		return nil, nil
+	}
+
+	return d.driver, &d.capability
+}
+
+// IPAM returns the actual IPAM driver instance and its capability which registered with the passed name.
+func (r *DrvRegistry) IPAM(name string) (ipamapi.Ipam, *ipamapi.Capability) {
+	r.Lock()
+	defer r.Unlock()
+
+	i, ok := r.ipamDrivers[name]
+	if !ok {
+		return nil, nil
+	}
+
+	return i.driver, i.capability
+}
+
+// IPAMDefaultAddressSpaces returns the default address space strings for the passed IPAM driver name.
+func (r *DrvRegistry) IPAMDefaultAddressSpaces(name string) (string, string, error) {
+	r.Lock()
+	defer r.Unlock()
+
+	i, ok := r.ipamDrivers[name]
+	if !ok {
+		return "", "", fmt.Errorf("ipam %s not found", name)
+	}
+
+	return i.defaultLocalAddressSpace, i.defaultGlobalAddressSpace, nil
+}
+
+// GetPluginGetter returns the plugingetter
+func (r *DrvRegistry) GetPluginGetter() plugingetter.PluginGetter {
+	return r.pluginGetter
+}
+
+// RegisterDriver registers the network driver when it gets discovered.
+func (r *DrvRegistry) RegisterDriver(ntype string, driver driverapi.Driver, capability driverapi.Capability) error {
+	if strings.TrimSpace(ntype) == "" {
+		return errors.New("network type string cannot be empty")
+	}
+
+	r.Lock()
+	dd, ok := r.drivers[ntype]
+	r.Unlock()
+
+	if ok && dd.driver.IsBuiltIn() {
+		return driverapi.ErrActiveRegistration(ntype)
+	}
+
+	if r.dfn != nil {
+		if err := r.dfn(ntype, driver, capability); err != nil {
+			return err
+		}
+	}
+
+	dData := &driverData{driver, capability}
+
+	r.Lock()
+	r.drivers[ntype] = dData
+	r.Unlock()
+
+	return nil
+}
+
+func (r *DrvRegistry) registerIpamDriver(name string, driver ipamapi.Ipam, caps *ipamapi.Capability) error {
+	if strings.TrimSpace(name) == "" {
+		return errors.New("ipam driver name string cannot be empty")
+	}
+
+	r.Lock()
+	dd, ok := r.ipamDrivers[name]
+	r.Unlock()
+	if ok && dd.driver.IsBuiltIn() {
+		return types.ForbiddenErrorf("ipam driver %q already registered", name)
+	}
+
+	locAS, glbAS, err := driver.GetDefaultAddressSpaces()
+	if err != nil {
+		return types.InternalErrorf("ipam driver %q failed to return default address spaces: %v", name, err)
+	}
+
+	if r.ifn != nil {
+		if err := r.ifn(name, driver, caps); err != nil {
+			return err
+		}
+	}
+
+	r.Lock()
+	r.ipamDrivers[name] = &ipamData{driver: driver, defaultLocalAddressSpace: locAS, defaultGlobalAddressSpace: glbAS, capability: caps}
+	r.Unlock()
+
+	return nil
+}
+
+// RegisterIpamDriver registers the IPAM driver discovered with default capabilities.
+func (r *DrvRegistry) RegisterIpamDriver(name string, driver ipamapi.Ipam) error {
+	return r.registerIpamDriver(name, driver, &ipamapi.Capability{})
+}
+
+// RegisterIpamDriverWithCapabilities registers the IPAM driver discovered with specified capabilities.
+func (r *DrvRegistry) RegisterIpamDriverWithCapabilities(name string, driver ipamapi.Ipam, caps *ipamapi.Capability) error {
+	return r.registerIpamDriver(name, driver, caps)
+}
diff --git a/vendor/github.com/docker/libnetwork/endpoint.go b/vendor/github.com/docker/libnetwork/endpoint.go
new file mode 100644
index 0000000000..b2cb9b1a78
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/endpoint.go
@@ -0,0 +1,1217 @@
+package libnetwork
+
+import (
+	"container/heap"
+	"encoding/json"
+	"fmt"
+	"net"
+	"strings"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// Endpoint represents a logical connection between a network and a sandbox.
+type Endpoint interface {
+	// A system generated id for this endpoint.
+	ID() string
+
+	// Name returns the name of this endpoint.
+	Name() string
+
+	// Network returns the name of the network to which this endpoint is attached.
+	Network() string
+
+	// Join joins the sandbox to the endpoint and populates into the sandbox
+	// the network resources allocated for the endpoint.
+	Join(sandbox Sandbox, options ...EndpointOption) error
+
+	// Leave detaches the network resources populated in the sandbox.
+	Leave(sandbox Sandbox, options ...EndpointOption) error
+
+	// Return certain operational data belonging to this endpoint
+	Info() EndpointInfo
+
+	// DriverInfo returns a collection of driver operational data related to this endpoint retrieved from the driver
+	DriverInfo() (map[string]interface{}, error)
+
+	// Delete and detaches this endpoint from the network.
+	Delete(force bool) error
+}
+
+// EndpointOption is an option setter function type used to pass various options to Network
+// and Endpoint interfaces methods. The various setter functions of type EndpointOption are
+// provided by libnetwork, they look like <Create|Join|Leave>Option[...](...)
+type EndpointOption func(ep *endpoint)
+
+type endpoint struct {
+	name              string
+	id                string
+	network           *network
+	iface             *endpointInterface
+	joinInfo          *endpointJoinInfo
+	sandboxID         string
+	locator           string
+	exposedPorts      []types.TransportPort
+	anonymous         bool
+	disableResolution bool
+	generic           map[string]interface{}
+	joinLeaveDone     chan struct{}
+	prefAddress       net.IP
+	prefAddressV6     net.IP
+	ipamOptions       map[string]string
+	aliases           map[string]string
+	myAliases         []string
+	svcID             string
+	svcName           string
+	virtualIP         net.IP
+	svcAliases        []string
+	ingressPorts      []*PortConfig
+	dbIndex           uint64
+	dbExists          bool
+	serviceEnabled    bool
+	loadBalancer      bool
+	sync.Mutex
+}
+
+func (ep *endpoint) MarshalJSON() ([]byte, error) {
+	ep.Lock()
+	defer ep.Unlock()
+
+	epMap := make(map[string]interface{})
+	epMap["name"] = ep.name
+	epMap["id"] = ep.id
+	epMap["ep_iface"] = ep.iface
+	epMap["joinInfo"] = ep.joinInfo
+	epMap["exposed_ports"] = ep.exposedPorts
+	if ep.generic != nil {
+		epMap["generic"] = ep.generic
+	}
+	epMap["sandbox"] = ep.sandboxID
+	epMap["locator"] = ep.locator
+	epMap["anonymous"] = ep.anonymous
+	epMap["disableResolution"] = ep.disableResolution
+	epMap["myAliases"] = ep.myAliases
+	epMap["svcName"] = ep.svcName
+	epMap["svcID"] = ep.svcID
+	epMap["virtualIP"] = ep.virtualIP.String()
+	epMap["ingressPorts"] = ep.ingressPorts
+	epMap["svcAliases"] = ep.svcAliases
+	epMap["loadBalancer"] = ep.loadBalancer
+
+	return json.Marshal(epMap)
+}
+
+func (ep *endpoint) UnmarshalJSON(b []byte) (err error) {
+	ep.Lock()
+	defer ep.Unlock()
+
+	var epMap map[string]interface{}
+	if err := json.Unmarshal(b, &epMap); err != nil {
+		return err
+	}
+	ep.name = epMap["name"].(string)
+	ep.id = epMap["id"].(string)
+
+	ib, _ := json.Marshal(epMap["ep_iface"])
+	json.Unmarshal(ib, &ep.iface)
+
+	jb, _ := json.Marshal(epMap["joinInfo"])
+	json.Unmarshal(jb, &ep.joinInfo)
+
+	tb, _ := json.Marshal(epMap["exposed_ports"])
+	var tPorts []types.TransportPort
+	json.Unmarshal(tb, &tPorts)
+	ep.exposedPorts = tPorts
+
+	cb, _ := json.Marshal(epMap["sandbox"])
+	json.Unmarshal(cb, &ep.sandboxID)
+
+	if v, ok := epMap["generic"]; ok {
+		ep.generic = v.(map[string]interface{})
+
+		if opt, ok := ep.generic[netlabel.PortMap]; ok {
+			pblist := []types.PortBinding{}
+
+			for i := 0; i < len(opt.([]interface{})); i++ {
+				pb := types.PortBinding{}
+				tmp := opt.([]interface{})[i].(map[string]interface{})
+
+				bytes, err := json.Marshal(tmp)
+				if err != nil {
+					logrus.Error(err)
+					break
+				}
+				err = json.Unmarshal(bytes, &pb)
+				if err != nil {
+					logrus.Error(err)
+					break
+				}
+				pblist = append(pblist, pb)
+			}
+			ep.generic[netlabel.PortMap] = pblist
+		}
+
+		if opt, ok := ep.generic[netlabel.ExposedPorts]; ok {
+			tplist := []types.TransportPort{}
+
+			for i := 0; i < len(opt.([]interface{})); i++ {
+				tp := types.TransportPort{}
+				tmp := opt.([]interface{})[i].(map[string]interface{})
+
+				bytes, err := json.Marshal(tmp)
+				if err != nil {
+					logrus.Error(err)
+					break
+				}
+				err = json.Unmarshal(bytes, &tp)
+				if err != nil {
+					logrus.Error(err)
+					break
+				}
+				tplist = append(tplist, tp)
+			}
+			ep.generic[netlabel.ExposedPorts] = tplist
+
+		}
+	}
+
+	if v, ok := epMap["anonymous"]; ok {
+		ep.anonymous = v.(bool)
+	}
+	if v, ok := epMap["disableResolution"]; ok {
+		ep.disableResolution = v.(bool)
+	}
+	if l, ok := epMap["locator"]; ok {
+		ep.locator = l.(string)
+	}
+
+	if sn, ok := epMap["svcName"]; ok {
+		ep.svcName = sn.(string)
+	}
+
+	if si, ok := epMap["svcID"]; ok {
+		ep.svcID = si.(string)
+	}
+
+	if vip, ok := epMap["virtualIP"]; ok {
+		ep.virtualIP = net.ParseIP(vip.(string))
+	}
+
+	if v, ok := epMap["loadBalancer"]; ok {
+		ep.loadBalancer = v.(bool)
+	}
+
+	sal, _ := json.Marshal(epMap["svcAliases"])
+	var svcAliases []string
+	json.Unmarshal(sal, &svcAliases)
+	ep.svcAliases = svcAliases
+
+	pc, _ := json.Marshal(epMap["ingressPorts"])
+	var ingressPorts []*PortConfig
+	json.Unmarshal(pc, &ingressPorts)
+	ep.ingressPorts = ingressPorts
+
+	ma, _ := json.Marshal(epMap["myAliases"])
+	var myAliases []string
+	json.Unmarshal(ma, &myAliases)
+	ep.myAliases = myAliases
+	return nil
+}
+
+func (ep *endpoint) New() datastore.KVObject {
+	return &endpoint{network: ep.getNetwork()}
+}
+
+func (ep *endpoint) CopyTo(o datastore.KVObject) error {
+	ep.Lock()
+	defer ep.Unlock()
+
+	dstEp := o.(*endpoint)
+	dstEp.name = ep.name
+	dstEp.id = ep.id
+	dstEp.sandboxID = ep.sandboxID
+	dstEp.locator = ep.locator
+	dstEp.dbIndex = ep.dbIndex
+	dstEp.dbExists = ep.dbExists
+	dstEp.anonymous = ep.anonymous
+	dstEp.disableResolution = ep.disableResolution
+	dstEp.svcName = ep.svcName
+	dstEp.svcID = ep.svcID
+	dstEp.virtualIP = ep.virtualIP
+	dstEp.loadBalancer = ep.loadBalancer
+
+	dstEp.svcAliases = make([]string, len(ep.svcAliases))
+	copy(dstEp.svcAliases, ep.svcAliases)
+
+	dstEp.ingressPorts = make([]*PortConfig, len(ep.ingressPorts))
+	copy(dstEp.ingressPorts, ep.ingressPorts)
+
+	if ep.iface != nil {
+		dstEp.iface = &endpointInterface{}
+		ep.iface.CopyTo(dstEp.iface)
+	}
+
+	if ep.joinInfo != nil {
+		dstEp.joinInfo = &endpointJoinInfo{}
+		ep.joinInfo.CopyTo(dstEp.joinInfo)
+	}
+
+	dstEp.exposedPorts = make([]types.TransportPort, len(ep.exposedPorts))
+	copy(dstEp.exposedPorts, ep.exposedPorts)
+
+	dstEp.myAliases = make([]string, len(ep.myAliases))
+	copy(dstEp.myAliases, ep.myAliases)
+
+	dstEp.generic = options.Generic{}
+	for k, v := range ep.generic {
+		dstEp.generic[k] = v
+	}
+
+	return nil
+}
+
+func (ep *endpoint) ID() string {
+	ep.Lock()
+	defer ep.Unlock()
+
+	return ep.id
+}
+
+func (ep *endpoint) Name() string {
+	ep.Lock()
+	defer ep.Unlock()
+
+	return ep.name
+}
+
+func (ep *endpoint) MyAliases() []string {
+	ep.Lock()
+	defer ep.Unlock()
+
+	return ep.myAliases
+}
+
+func (ep *endpoint) Network() string {
+	if ep.network == nil {
+		return ""
+	}
+
+	return ep.network.name
+}
+
+func (ep *endpoint) isAnonymous() bool {
+	ep.Lock()
+	defer ep.Unlock()
+	return ep.anonymous
+}
+
+// isServiceEnabled check if service is enabled on the endpoint
+func (ep *endpoint) isServiceEnabled() bool {
+	ep.Lock()
+	defer ep.Unlock()
+	return ep.serviceEnabled
+}
+
+// enableService sets service enabled on the endpoint
+func (ep *endpoint) enableService() {
+	ep.Lock()
+	defer ep.Unlock()
+	ep.serviceEnabled = true
+}
+
+// disableService disables service on the endpoint
+func (ep *endpoint) disableService() {
+	ep.Lock()
+	defer ep.Unlock()
+	ep.serviceEnabled = false
+}
+
+func (ep *endpoint) needResolver() bool {
+	ep.Lock()
+	defer ep.Unlock()
+	return !ep.disableResolution
+}
+
+// endpoint Key structure : endpoint/network-id/endpoint-id
+func (ep *endpoint) Key() []string {
+	if ep.network == nil {
+		return nil
+	}
+
+	return []string{datastore.EndpointKeyPrefix, ep.network.id, ep.id}
+}
+
+func (ep *endpoint) KeyPrefix() []string {
+	if ep.network == nil {
+		return nil
+	}
+
+	return []string{datastore.EndpointKeyPrefix, ep.network.id}
+}
+
+func (ep *endpoint) networkIDFromKey(key string) (string, error) {
+	// endpoint Key structure : docker/libnetwork/endpoint/${network-id}/${endpoint-id}
+	// it's an invalid key if the key doesn't have all the 5 key elements above
+	keyElements := strings.Split(key, "/")
+	if !strings.HasPrefix(key, datastore.Key(datastore.EndpointKeyPrefix)) || len(keyElements) < 5 {
+		return "", fmt.Errorf("invalid endpoint key : %v", key)
+	}
+	// network-id is placed at index=3. pls refer to endpoint.Key() method
+	return strings.Split(key, "/")[3], nil
+}
+
+func (ep *endpoint) Value() []byte {
+	b, err := json.Marshal(ep)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ep *endpoint) SetValue(value []byte) error {
+	return json.Unmarshal(value, ep)
+}
+
+func (ep *endpoint) Index() uint64 {
+	ep.Lock()
+	defer ep.Unlock()
+	return ep.dbIndex
+}
+
+func (ep *endpoint) SetIndex(index uint64) {
+	ep.Lock()
+	defer ep.Unlock()
+	ep.dbIndex = index
+	ep.dbExists = true
+}
+
+func (ep *endpoint) Exists() bool {
+	ep.Lock()
+	defer ep.Unlock()
+	return ep.dbExists
+}
+
+func (ep *endpoint) Skip() bool {
+	return ep.getNetwork().Skip()
+}
+
+func (ep *endpoint) processOptions(options ...EndpointOption) {
+	ep.Lock()
+	defer ep.Unlock()
+
+	for _, opt := range options {
+		if opt != nil {
+			opt(ep)
+		}
+	}
+}
+
+func (ep *endpoint) getNetwork() *network {
+	ep.Lock()
+	defer ep.Unlock()
+
+	return ep.network
+}
+
+func (ep *endpoint) getNetworkFromStore() (*network, error) {
+	if ep.network == nil {
+		return nil, fmt.Errorf("invalid network object in endpoint %s", ep.Name())
+	}
+
+	return ep.network.getController().getNetworkFromStore(ep.network.id)
+}
+
+func (ep *endpoint) Join(sbox Sandbox, options ...EndpointOption) error {
+	if sbox == nil {
+		return types.BadRequestErrorf("endpoint cannot be joined by nil container")
+	}
+
+	sb, ok := sbox.(*sandbox)
+	if !ok {
+		return types.BadRequestErrorf("not a valid Sandbox interface")
+	}
+
+	sb.joinLeaveStart()
+	defer sb.joinLeaveEnd()
+
+	return ep.sbJoin(sb, options...)
+}
+
+func (ep *endpoint) sbJoin(sb *sandbox, options ...EndpointOption) (err error) {
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return fmt.Errorf("failed to get network from store during join: %v", err)
+	}
+
+	ep, err = n.getEndpointFromStore(ep.ID())
+	if err != nil {
+		return fmt.Errorf("failed to get endpoint from store during join: %v", err)
+	}
+
+	ep.Lock()
+	if ep.sandboxID != "" {
+		ep.Unlock()
+		return types.ForbiddenErrorf("another container is attached to the same network endpoint")
+	}
+	ep.network = n
+	ep.sandboxID = sb.ID()
+	ep.joinInfo = &endpointJoinInfo{}
+	epid := ep.id
+	ep.Unlock()
+	defer func() {
+		if err != nil {
+			ep.Lock()
+			ep.sandboxID = ""
+			ep.Unlock()
+		}
+	}()
+
+	nid := n.ID()
+
+	ep.processOptions(options...)
+
+	d, err := n.driver(true)
+	if err != nil {
+		return fmt.Errorf("failed to get driver during join: %v", err)
+	}
+
+	err = d.Join(nid, epid, sb.Key(), ep, sb.Labels())
+	if err != nil {
+		return err
+	}
+	defer func() {
+		if err != nil {
+			if e := d.Leave(nid, epid); e != nil {
+				logrus.Warnf("driver leave failed while rolling back join: %v", e)
+			}
+		}
+	}()
+
+	// Watch for service records
+	if !n.getController().isAgent() {
+		n.getController().watchSvcRecord(ep)
+	}
+
+	if doUpdateHostsFile(n, sb) {
+		address := ""
+		if ip := ep.getFirstInterfaceAddress(); ip != nil {
+			address = ip.String()
+		}
+		if err = sb.updateHostsFile(address); err != nil {
+			return err
+		}
+	}
+	if err = sb.updateDNS(n.enableIPv6); err != nil {
+		return err
+	}
+
+	// Current endpoint providing external connectivity for the sandbox
+	extEp := sb.getGatewayEndpoint()
+
+	sb.Lock()
+	heap.Push(&sb.endpoints, ep)
+	sb.Unlock()
+	defer func() {
+		if err != nil {
+			sb.removeEndpoint(ep)
+		}
+	}()
+
+	if err = sb.populateNetworkResources(ep); err != nil {
+		return err
+	}
+
+	if err = n.getController().updateToStore(ep); err != nil {
+		return err
+	}
+
+	if err = ep.addDriverInfoToCluster(); err != nil {
+		return err
+	}
+
+	defer func() {
+		if err != nil {
+			if e := ep.deleteDriverInfoFromCluster(); e != nil {
+				logrus.Errorf("Could not delete endpoint state for endpoint %s from cluster on join failure: %v", ep.Name(), e)
+			}
+		}
+	}()
+
+	if sb.needDefaultGW() && sb.getEndpointInGWNetwork() == nil {
+		return sb.setupDefaultGW()
+	}
+
+	moveExtConn := sb.getGatewayEndpoint() != extEp
+
+	if moveExtConn {
+		if extEp != nil {
+			logrus.Debugf("Revoking external connectivity on endpoint %s (%s)", extEp.Name(), extEp.ID())
+			extN, err := extEp.getNetworkFromStore()
+			if err != nil {
+				return fmt.Errorf("failed to get network from store for revoking external connectivity during join: %v", err)
+			}
+			extD, err := extN.driver(true)
+			if err != nil {
+				return fmt.Errorf("failed to get driver for revoking external connectivity during join: %v", err)
+			}
+			if err = extD.RevokeExternalConnectivity(extEp.network.ID(), extEp.ID()); err != nil {
+				return types.InternalErrorf(
+					"driver failed revoking external connectivity on endpoint %s (%s): %v",
+					extEp.Name(), extEp.ID(), err)
+			}
+			defer func() {
+				if err != nil {
+					if e := extD.ProgramExternalConnectivity(extEp.network.ID(), extEp.ID(), sb.Labels()); e != nil {
+						logrus.Warnf("Failed to roll-back external connectivity on endpoint %s (%s): %v",
+							extEp.Name(), extEp.ID(), e)
+					}
+				}
+			}()
+		}
+		if !n.internal {
+			logrus.Debugf("Programming external connectivity on endpoint %s (%s)", ep.Name(), ep.ID())
+			if err = d.ProgramExternalConnectivity(n.ID(), ep.ID(), sb.Labels()); err != nil {
+				return types.InternalErrorf(
+					"driver failed programming external connectivity on endpoint %s (%s): %v",
+					ep.Name(), ep.ID(), err)
+			}
+		}
+
+	}
+
+	if !sb.needDefaultGW() {
+		if e := sb.clearDefaultGW(); e != nil {
+			logrus.Warnf("Failure while disconnecting sandbox %s (%s) from gateway network: %v",
+				sb.ID(), sb.ContainerID(), e)
+		}
+	}
+
+	return nil
+}
+
+func doUpdateHostsFile(n *network, sb *sandbox) bool {
+	return !n.ingress && n.Name() != libnGWNetwork
+}
+
+func (ep *endpoint) rename(name string) error {
+	var (
+		err      error
+		netWatch *netWatch
+		ok       bool
+	)
+
+	n := ep.getNetwork()
+	if n == nil {
+		return fmt.Errorf("network not connected for ep %q", ep.name)
+	}
+
+	c := n.getController()
+
+	sb, ok := ep.getSandbox()
+	if !ok {
+		logrus.Warnf("rename for %s aborted, sandbox %s is not anymore present", ep.ID(), ep.sandboxID)
+		return nil
+	}
+
+	if c.isAgent() {
+		if err = ep.deleteServiceInfoFromCluster(sb, true, "rename"); err != nil {
+			return types.InternalErrorf("Could not delete service state for endpoint %s from cluster on rename: %v", ep.Name(), err)
+		}
+	} else {
+		c.Lock()
+		netWatch, ok = c.nmap[n.ID()]
+		c.Unlock()
+		if !ok {
+			return fmt.Errorf("watch null for network %q", n.Name())
+		}
+		n.updateSvcRecord(ep, c.getLocalEps(netWatch), false)
+	}
+
+	oldName := ep.name
+	oldAnonymous := ep.anonymous
+	ep.name = name
+	ep.anonymous = false
+
+	if c.isAgent() {
+		if err = ep.addServiceInfoToCluster(sb); err != nil {
+			return types.InternalErrorf("Could not add service state for endpoint %s to cluster on rename: %v", ep.Name(), err)
+		}
+		defer func() {
+			if err != nil {
+				ep.deleteServiceInfoFromCluster(sb, true, "rename")
+				ep.name = oldName
+				ep.anonymous = oldAnonymous
+				ep.addServiceInfoToCluster(sb)
+			}
+		}()
+	} else {
+		n.updateSvcRecord(ep, c.getLocalEps(netWatch), true)
+		defer func() {
+			if err != nil {
+				n.updateSvcRecord(ep, c.getLocalEps(netWatch), false)
+				ep.name = oldName
+				ep.anonymous = oldAnonymous
+				n.updateSvcRecord(ep, c.getLocalEps(netWatch), true)
+			}
+		}()
+	}
+
+	// Update the store with the updated name
+	if err = c.updateToStore(ep); err != nil {
+		return err
+	}
+	// After the name change do a dummy endpoint count update to
+	// trigger the service record update in the peer nodes
+
+	// Ignore the error because updateStore fail for EpCnt is a
+	// benign error. Besides there is no meaningful recovery that
+	// we can do. When the cluster recovers subsequent EpCnt update
+	// will force the peers to get the correct EP name.
+	n.getEpCnt().updateStore()
+
+	return err
+}
+
+func (ep *endpoint) hasInterface(iName string) bool {
+	ep.Lock()
+	defer ep.Unlock()
+
+	return ep.iface != nil && ep.iface.srcName == iName
+}
+
+func (ep *endpoint) Leave(sbox Sandbox, options ...EndpointOption) error {
+	if sbox == nil || sbox.ID() == "" || sbox.Key() == "" {
+		return types.BadRequestErrorf("invalid Sandbox passed to endpoint leave: %v", sbox)
+	}
+
+	sb, ok := sbox.(*sandbox)
+	if !ok {
+		return types.BadRequestErrorf("not a valid Sandbox interface")
+	}
+
+	sb.joinLeaveStart()
+	defer sb.joinLeaveEnd()
+
+	return ep.sbLeave(sb, false, options...)
+}
+
+func (ep *endpoint) sbLeave(sb *sandbox, force bool, options ...EndpointOption) error {
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return fmt.Errorf("failed to get network from store during leave: %v", err)
+	}
+
+	ep, err = n.getEndpointFromStore(ep.ID())
+	if err != nil {
+		return fmt.Errorf("failed to get endpoint from store during leave: %v", err)
+	}
+
+	ep.Lock()
+	sid := ep.sandboxID
+	ep.Unlock()
+
+	if sid == "" {
+		return types.ForbiddenErrorf("cannot leave endpoint with no attached sandbox")
+	}
+	if sid != sb.ID() {
+		return types.ForbiddenErrorf("unexpected sandbox ID in leave request. Expected %s. Got %s", ep.sandboxID, sb.ID())
+	}
+
+	ep.processOptions(options...)
+
+	d, err := n.driver(!force)
+	if err != nil {
+		return fmt.Errorf("failed to get driver during endpoint leave: %v", err)
+	}
+
+	ep.Lock()
+	ep.sandboxID = ""
+	ep.network = n
+	ep.Unlock()
+
+	// Current endpoint providing external connectivity to the sandbox
+	extEp := sb.getGatewayEndpoint()
+	moveExtConn := extEp != nil && (extEp.ID() == ep.ID())
+
+	if d != nil {
+		if moveExtConn {
+			logrus.Debugf("Revoking external connectivity on endpoint %s (%s)", ep.Name(), ep.ID())
+			if err := d.RevokeExternalConnectivity(n.id, ep.id); err != nil {
+				logrus.Warnf("driver failed revoking external connectivity on endpoint %s (%s): %v",
+					ep.Name(), ep.ID(), err)
+			}
+		}
+
+		if err := d.Leave(n.id, ep.id); err != nil {
+			if _, ok := err.(types.MaskableError); !ok {
+				logrus.Warnf("driver error disconnecting container %s : %v", ep.name, err)
+			}
+		}
+	}
+
+	if ep.svcID != "" {
+		if err := ep.deleteServiceInfoFromCluster(sb, true, "sbLeave"); err != nil {
+			logrus.Warnf("Failed to clean up service info on container %s disconnect: %v", ep.name, err)
+		}
+	}
+
+	if err := sb.clearNetworkResources(ep); err != nil {
+		logrus.Warnf("Failed to clean up network resources on container %s disconnect: %v", ep.name, err)
+	}
+
+	// Update the store about the sandbox detach only after we
+	// have completed sb.clearNetworkresources above to avoid
+	// spurious logs when cleaning up the sandbox when the daemon
+	// ungracefully exits and restarts before completing sandbox
+	// detach but after store has been updated.
+	if err := n.getController().updateToStore(ep); err != nil {
+		return err
+	}
+
+	if e := ep.deleteDriverInfoFromCluster(); e != nil {
+		logrus.Errorf("Failed to delete endpoint state for endpoint %s from cluster: %v", ep.Name(), e)
+	}
+
+	sb.deleteHostsEntries(n.getSvcRecords(ep))
+	if !sb.inDelete && sb.needDefaultGW() && sb.getEndpointInGWNetwork() == nil {
+		return sb.setupDefaultGW()
+	}
+
+	// New endpoint providing external connectivity for the sandbox
+	extEp = sb.getGatewayEndpoint()
+	if moveExtConn && extEp != nil {
+		logrus.Debugf("Programming external connectivity on endpoint %s (%s)", extEp.Name(), extEp.ID())
+		extN, err := extEp.getNetworkFromStore()
+		if err != nil {
+			return fmt.Errorf("failed to get network from store for programming external connectivity during leave: %v", err)
+		}
+		extD, err := extN.driver(true)
+		if err != nil {
+			return fmt.Errorf("failed to get driver for programming external connectivity during leave: %v", err)
+		}
+		if err := extD.ProgramExternalConnectivity(extEp.network.ID(), extEp.ID(), sb.Labels()); err != nil {
+			logrus.Warnf("driver failed programming external connectivity on endpoint %s: (%s) %v",
+				extEp.Name(), extEp.ID(), err)
+		}
+	}
+
+	if !sb.needDefaultGW() {
+		if err := sb.clearDefaultGW(); err != nil {
+			logrus.Warnf("Failure while disconnecting sandbox %s (%s) from gateway network: %v",
+				sb.ID(), sb.ContainerID(), err)
+		}
+	}
+
+	return nil
+}
+
+func (ep *endpoint) Delete(force bool) error {
+	var err error
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return fmt.Errorf("failed to get network during Delete: %v", err)
+	}
+
+	ep, err = n.getEndpointFromStore(ep.ID())
+	if err != nil {
+		return fmt.Errorf("failed to get endpoint from store during Delete: %v", err)
+	}
+
+	ep.Lock()
+	epid := ep.id
+	name := ep.name
+	sbid := ep.sandboxID
+	ep.Unlock()
+
+	sb, _ := n.getController().SandboxByID(sbid)
+	if sb != nil && !force {
+		return &ActiveContainerError{name: name, id: epid}
+	}
+
+	if sb != nil {
+		if e := ep.sbLeave(sb.(*sandbox), force); e != nil {
+			logrus.Warnf("failed to leave sandbox for endpoint %s : %v", name, e)
+		}
+	}
+
+	if err = n.getController().deleteFromStore(ep); err != nil {
+		return err
+	}
+
+	defer func() {
+		if err != nil && !force {
+			ep.dbExists = false
+			if e := n.getController().updateToStore(ep); e != nil {
+				logrus.Warnf("failed to recreate endpoint in store %s : %v", name, e)
+			}
+		}
+	}()
+
+	// unwatch for service records
+	n.getController().unWatchSvcRecord(ep)
+
+	if err = ep.deleteEndpoint(force); err != nil && !force {
+		return err
+	}
+
+	ep.releaseAddress()
+
+	if err := n.getEpCnt().DecEndpointCnt(); err != nil {
+		logrus.Warnf("failed to decrement endpoint count for ep %s: %v", ep.ID(), err)
+	}
+
+	return nil
+}
+
+func (ep *endpoint) deleteEndpoint(force bool) error {
+	ep.Lock()
+	n := ep.network
+	name := ep.name
+	epid := ep.id
+	ep.Unlock()
+
+	driver, err := n.driver(!force)
+	if err != nil {
+		return fmt.Errorf("failed to delete endpoint: %v", err)
+	}
+
+	if driver == nil {
+		return nil
+	}
+
+	if err := driver.DeleteEndpoint(n.id, epid); err != nil {
+		if _, ok := err.(types.ForbiddenError); ok {
+			return err
+		}
+
+		if _, ok := err.(types.MaskableError); !ok {
+			logrus.Warnf("driver error deleting endpoint %s : %v", name, err)
+		}
+	}
+
+	return nil
+}
+
+func (ep *endpoint) getSandbox() (*sandbox, bool) {
+	c := ep.network.getController()
+	ep.Lock()
+	sid := ep.sandboxID
+	ep.Unlock()
+
+	c.Lock()
+	ps, ok := c.sandboxes[sid]
+	c.Unlock()
+
+	return ps, ok
+}
+
+func (ep *endpoint) getFirstInterfaceAddress() net.IP {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.iface.addr != nil {
+		return ep.iface.addr.IP
+	}
+
+	return nil
+}
+
+// EndpointOptionGeneric function returns an option setter for a Generic option defined
+// in a Dictionary of Key-Value pair
+func EndpointOptionGeneric(generic map[string]interface{}) EndpointOption {
+	return func(ep *endpoint) {
+		for k, v := range generic {
+			ep.generic[k] = v
+		}
+	}
+}
+
+var (
+	linkLocalMask     = net.CIDRMask(16, 32)
+	linkLocalMaskIPv6 = net.CIDRMask(64, 128)
+)
+
+// CreateOptionIpam function returns an option setter for the ipam configuration for this endpoint
+func CreateOptionIpam(ipV4, ipV6 net.IP, llIPs []net.IP, ipamOptions map[string]string) EndpointOption {
+	return func(ep *endpoint) {
+		ep.prefAddress = ipV4
+		ep.prefAddressV6 = ipV6
+		if len(llIPs) != 0 {
+			for _, ip := range llIPs {
+				nw := &net.IPNet{IP: ip, Mask: linkLocalMask}
+				if ip.To4() == nil {
+					nw.Mask = linkLocalMaskIPv6
+				}
+				ep.iface.llAddrs = append(ep.iface.llAddrs, nw)
+			}
+		}
+		ep.ipamOptions = ipamOptions
+	}
+}
+
+// CreateOptionExposedPorts function returns an option setter for the container exposed
+// ports option to be passed to network.CreateEndpoint() method.
+func CreateOptionExposedPorts(exposedPorts []types.TransportPort) EndpointOption {
+	return func(ep *endpoint) {
+		// Defensive copy
+		eps := make([]types.TransportPort, len(exposedPorts))
+		copy(eps, exposedPorts)
+		// Store endpoint label and in generic because driver needs it
+		ep.exposedPorts = eps
+		ep.generic[netlabel.ExposedPorts] = eps
+	}
+}
+
+// CreateOptionPortMapping function returns an option setter for the mapping
+// ports option to be passed to network.CreateEndpoint() method.
+func CreateOptionPortMapping(portBindings []types.PortBinding) EndpointOption {
+	return func(ep *endpoint) {
+		// Store a copy of the bindings as generic data to pass to the driver
+		pbs := make([]types.PortBinding, len(portBindings))
+		copy(pbs, portBindings)
+		ep.generic[netlabel.PortMap] = pbs
+	}
+}
+
+// CreateOptionDNS function returns an option setter for dns entry option to
+// be passed to container Create method.
+func CreateOptionDNS(dns []string) EndpointOption {
+	return func(ep *endpoint) {
+		ep.generic[netlabel.DNSServers] = dns
+	}
+}
+
+// CreateOptionAnonymous function returns an option setter for setting
+// this endpoint as anonymous
+func CreateOptionAnonymous() EndpointOption {
+	return func(ep *endpoint) {
+		ep.anonymous = true
+	}
+}
+
+// CreateOptionDisableResolution function returns an option setter to indicate
+// this endpoint doesn't want embedded DNS server functionality
+func CreateOptionDisableResolution() EndpointOption {
+	return func(ep *endpoint) {
+		ep.disableResolution = true
+	}
+}
+
+// CreateOptionAlias function returns an option setter for setting endpoint alias
+func CreateOptionAlias(name string, alias string) EndpointOption {
+	return func(ep *endpoint) {
+		if ep.aliases == nil {
+			ep.aliases = make(map[string]string)
+		}
+		ep.aliases[alias] = name
+	}
+}
+
+// CreateOptionService function returns an option setter for setting service binding configuration
+func CreateOptionService(name, id string, vip net.IP, ingressPorts []*PortConfig, aliases []string) EndpointOption {
+	return func(ep *endpoint) {
+		ep.svcName = name
+		ep.svcID = id
+		ep.virtualIP = vip
+		ep.ingressPorts = ingressPorts
+		ep.svcAliases = aliases
+	}
+}
+
+// CreateOptionMyAlias function returns an option setter for setting endpoint's self alias
+func CreateOptionMyAlias(alias string) EndpointOption {
+	return func(ep *endpoint) {
+		ep.myAliases = append(ep.myAliases, alias)
+	}
+}
+
+// CreateOptionLoadBalancer function returns an option setter for denoting the endpoint is a load balancer for a network
+func CreateOptionLoadBalancer() EndpointOption {
+	return func(ep *endpoint) {
+		ep.loadBalancer = true
+	}
+}
+
+// JoinOptionPriority function returns an option setter for priority option to
+// be passed to the endpoint.Join() method.
+func JoinOptionPriority(ep Endpoint, prio int) EndpointOption {
+	return func(ep *endpoint) {
+		// ep lock already acquired
+		c := ep.network.getController()
+		c.Lock()
+		sb, ok := c.sandboxes[ep.sandboxID]
+		c.Unlock()
+		if !ok {
+			logrus.Errorf("Could not set endpoint priority value during Join to endpoint %s: No sandbox id present in endpoint", ep.id)
+			return
+		}
+		sb.epPriority[ep.id] = prio
+	}
+}
+
+func (ep *endpoint) DataScope() string {
+	return ep.getNetwork().DataScope()
+}
+
+func (ep *endpoint) assignAddress(ipam ipamapi.Ipam, assignIPv4, assignIPv6 bool) error {
+	var err error
+
+	n := ep.getNetwork()
+	if n.hasSpecialDriver() {
+		return nil
+	}
+
+	logrus.Debugf("Assigning addresses for endpoint %s's interface on network %s", ep.Name(), n.Name())
+
+	if assignIPv4 {
+		if err = ep.assignAddressVersion(4, ipam); err != nil {
+			return err
+		}
+	}
+
+	if assignIPv6 {
+		err = ep.assignAddressVersion(6, ipam)
+	}
+
+	return err
+}
+
+func (ep *endpoint) assignAddressVersion(ipVer int, ipam ipamapi.Ipam) error {
+	var (
+		poolID  *string
+		address **net.IPNet
+		prefAdd net.IP
+		progAdd net.IP
+	)
+
+	n := ep.getNetwork()
+	switch ipVer {
+	case 4:
+		poolID = &ep.iface.v4PoolID
+		address = &ep.iface.addr
+		prefAdd = ep.prefAddress
+	case 6:
+		poolID = &ep.iface.v6PoolID
+		address = &ep.iface.addrv6
+		prefAdd = ep.prefAddressV6
+	default:
+		return types.InternalErrorf("incorrect ip version number passed: %d", ipVer)
+	}
+
+	ipInfo := n.getIPInfo(ipVer)
+
+	// ipv6 address is not mandatory
+	if len(ipInfo) == 0 && ipVer == 6 {
+		return nil
+	}
+
+	// The address to program may be chosen by the user or by the network driver in one specific
+	// case to support backward compatibility with `docker daemon --fixed-cidrv6` use case
+	if prefAdd != nil {
+		progAdd = prefAdd
+	} else if *address != nil {
+		progAdd = (*address).IP
+	}
+
+	for _, d := range ipInfo {
+		if progAdd != nil && !d.Pool.Contains(progAdd) {
+			continue
+		}
+		addr, _, err := ipam.RequestAddress(d.PoolID, progAdd, ep.ipamOptions)
+		if err == nil {
+			ep.Lock()
+			*address = addr
+			*poolID = d.PoolID
+			ep.Unlock()
+			return nil
+		}
+		if err != ipamapi.ErrNoAvailableIPs || progAdd != nil {
+			return err
+		}
+	}
+	if progAdd != nil {
+		return types.BadRequestErrorf("Invalid address %s: It does not belong to any of this network's subnets", prefAdd)
+	}
+	return fmt.Errorf("no available IPv%d addresses on this network's address pools: %s (%s)", ipVer, n.Name(), n.ID())
+}
+
+func (ep *endpoint) releaseAddress() {
+	n := ep.getNetwork()
+	if n.hasSpecialDriver() {
+		return
+	}
+
+	logrus.Debugf("Releasing addresses for endpoint %s's interface on network %s", ep.Name(), n.Name())
+
+	ipam, _, err := n.getController().getIPAMDriver(n.ipamType)
+	if err != nil {
+		logrus.Warnf("Failed to retrieve ipam driver to release interface address on delete of endpoint %s (%s): %v", ep.Name(), ep.ID(), err)
+		return
+	}
+
+	if ep.iface.addr != nil {
+		if err := ipam.ReleaseAddress(ep.iface.v4PoolID, ep.iface.addr.IP); err != nil {
+			logrus.Warnf("Failed to release ip address %s on delete of endpoint %s (%s): %v", ep.iface.addr.IP, ep.Name(), ep.ID(), err)
+		}
+	}
+
+	if ep.iface.addrv6 != nil && ep.iface.addrv6.IP.IsGlobalUnicast() {
+		if err := ipam.ReleaseAddress(ep.iface.v6PoolID, ep.iface.addrv6.IP); err != nil {
+			logrus.Warnf("Failed to release ip address %s on delete of endpoint %s (%s): %v", ep.iface.addrv6.IP, ep.Name(), ep.ID(), err)
+		}
+	}
+}
+
+func (c *controller) cleanupLocalEndpoints() {
+	// Get used endpoints
+	eps := make(map[string]interface{})
+	for _, sb := range c.sandboxes {
+		for _, ep := range sb.endpoints {
+			eps[ep.id] = true
+		}
+	}
+	nl, err := c.getNetworksForScope(datastore.LocalScope)
+	if err != nil {
+		logrus.Warnf("Could not get list of networks during endpoint cleanup: %v", err)
+		return
+	}
+
+	for _, n := range nl {
+		if n.ConfigOnly() {
+			continue
+		}
+		epl, err := n.getEndpointsFromStore()
+		if err != nil {
+			logrus.Warnf("Could not get list of endpoints in network %s during endpoint cleanup: %v", n.name, err)
+			continue
+		}
+
+		for _, ep := range epl {
+			if _, ok := eps[ep.id]; ok {
+				continue
+			}
+			logrus.Infof("Removing stale endpoint %s (%s)", ep.name, ep.id)
+			if err := ep.Delete(true); err != nil {
+				logrus.Warnf("Could not delete local endpoint %s during endpoint cleanup: %v", ep.name, err)
+			}
+		}
+
+		epl, err = n.getEndpointsFromStore()
+		if err != nil {
+			logrus.Warnf("Could not get list of endpoints in network %s for count update: %v", n.name, err)
+			continue
+		}
+
+		epCnt := n.getEpCnt().EndpointCnt()
+		if epCnt != uint64(len(epl)) {
+			logrus.Infof("Fixing inconsistent endpoint_cnt for network %s. Expected=%d, Actual=%d", n.name, len(epl), epCnt)
+			n.getEpCnt().setCnt(uint64(len(epl)))
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/endpoint_cnt.go b/vendor/github.com/docker/libnetwork/endpoint_cnt.go
new file mode 100644
index 0000000000..7b7527426d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/endpoint_cnt.go
@@ -0,0 +1,182 @@
+package libnetwork
+
+import (
+	"encoding/json"
+	"fmt"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+)
+
+type endpointCnt struct {
+	n        *network
+	Count    uint64
+	dbIndex  uint64
+	dbExists bool
+	sync.Mutex
+}
+
+const epCntKeyPrefix = "endpoint_count"
+
+func (ec *endpointCnt) Key() []string {
+	ec.Lock()
+	defer ec.Unlock()
+
+	return []string{epCntKeyPrefix, ec.n.id}
+}
+
+func (ec *endpointCnt) KeyPrefix() []string {
+	ec.Lock()
+	defer ec.Unlock()
+
+	return []string{epCntKeyPrefix, ec.n.id}
+}
+
+func (ec *endpointCnt) Value() []byte {
+	ec.Lock()
+	defer ec.Unlock()
+
+	b, err := json.Marshal(ec)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (ec *endpointCnt) SetValue(value []byte) error {
+	ec.Lock()
+	defer ec.Unlock()
+
+	return json.Unmarshal(value, &ec)
+}
+
+func (ec *endpointCnt) Index() uint64 {
+	ec.Lock()
+	defer ec.Unlock()
+	return ec.dbIndex
+}
+
+func (ec *endpointCnt) SetIndex(index uint64) {
+	ec.Lock()
+	ec.dbIndex = index
+	ec.dbExists = true
+	ec.Unlock()
+}
+
+func (ec *endpointCnt) Exists() bool {
+	ec.Lock()
+	defer ec.Unlock()
+	return ec.dbExists
+}
+
+func (ec *endpointCnt) Skip() bool {
+	ec.Lock()
+	defer ec.Unlock()
+	return !ec.n.persist
+}
+
+func (ec *endpointCnt) New() datastore.KVObject {
+	ec.Lock()
+	defer ec.Unlock()
+
+	return &endpointCnt{
+		n: ec.n,
+	}
+}
+
+func (ec *endpointCnt) CopyTo(o datastore.KVObject) error {
+	ec.Lock()
+	defer ec.Unlock()
+
+	dstEc := o.(*endpointCnt)
+	dstEc.n = ec.n
+	dstEc.Count = ec.Count
+	dstEc.dbExists = ec.dbExists
+	dstEc.dbIndex = ec.dbIndex
+
+	return nil
+}
+
+func (ec *endpointCnt) DataScope() string {
+	return ec.n.DataScope()
+}
+
+func (ec *endpointCnt) EndpointCnt() uint64 {
+	ec.Lock()
+	defer ec.Unlock()
+
+	return ec.Count
+}
+
+func (ec *endpointCnt) updateStore() error {
+	store := ec.n.getController().getStore(ec.DataScope())
+	if store == nil {
+		return fmt.Errorf("store not found for scope %s on endpoint count update", ec.DataScope())
+	}
+	// make a copy of count and n to avoid being overwritten by store.GetObject
+	count := ec.EndpointCnt()
+	n := ec.n
+	for {
+		if err := ec.n.getController().updateToStore(ec); err == nil || err != datastore.ErrKeyModified {
+			return err
+		}
+		if err := store.GetObject(datastore.Key(ec.Key()...), ec); err != nil {
+			return fmt.Errorf("could not update the kvobject to latest on endpoint count update: %v", err)
+		}
+		ec.Lock()
+		ec.Count = count
+		ec.n = n
+		ec.Unlock()
+	}
+}
+
+func (ec *endpointCnt) setCnt(cnt uint64) error {
+	ec.Lock()
+	ec.Count = cnt
+	ec.Unlock()
+	return ec.updateStore()
+}
+
+func (ec *endpointCnt) atomicIncDecEpCnt(inc bool) error {
+	store := ec.n.getController().getStore(ec.DataScope())
+	if store == nil {
+		return fmt.Errorf("store not found for scope %s", ec.DataScope())
+	}
+
+	tmp := &endpointCnt{n: ec.n}
+	if err := store.GetObject(datastore.Key(ec.Key()...), tmp); err != nil {
+		return err
+	}
+retry:
+	ec.Lock()
+	if inc {
+		ec.Count++
+	} else {
+		if ec.Count > 0 {
+			ec.Count--
+		}
+	}
+	ec.Unlock()
+
+	if err := ec.n.getController().updateToStore(ec); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := store.GetObject(datastore.Key(ec.Key()...), ec); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to atomic add endpoint count: %v", err)
+			}
+
+			goto retry
+		}
+
+		return err
+	}
+
+	return nil
+}
+
+func (ec *endpointCnt) IncEndpointCnt() error {
+	return ec.atomicIncDecEpCnt(true)
+}
+
+func (ec *endpointCnt) DecEndpointCnt() error {
+	return ec.atomicIncDecEpCnt(false)
+}
diff --git a/vendor/github.com/docker/libnetwork/endpoint_info.go b/vendor/github.com/docker/libnetwork/endpoint_info.go
new file mode 100644
index 0000000000..68d3e8673d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/endpoint_info.go
@@ -0,0 +1,452 @@
+package libnetwork
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/types"
+)
+
+// EndpointInfo provides an interface to retrieve network resources bound to the endpoint.
+type EndpointInfo interface {
+	// Iface returns InterfaceInfo, go interface that can be used
+	// to get more information on the interface which was assigned to
+	// the endpoint by the driver. This can be used after the
+	// endpoint has been created.
+	Iface() InterfaceInfo
+
+	// Gateway returns the IPv4 gateway assigned by the driver.
+	// This will only return a valid value if a container has joined the endpoint.
+	Gateway() net.IP
+
+	// GatewayIPv6 returns the IPv6 gateway assigned by the driver.
+	// This will only return a valid value if a container has joined the endpoint.
+	GatewayIPv6() net.IP
+
+	// StaticRoutes returns the list of static routes configured by the network
+	// driver when the container joins a network
+	StaticRoutes() []*types.StaticRoute
+
+	// Sandbox returns the attached sandbox if there, nil otherwise.
+	Sandbox() Sandbox
+
+	// LoadBalancer returns whether the endpoint is the load balancer endpoint for the network.
+	LoadBalancer() bool
+}
+
+// InterfaceInfo provides an interface to retrieve interface addresses bound to the endpoint.
+type InterfaceInfo interface {
+	// MacAddress returns the MAC address assigned to the endpoint.
+	MacAddress() net.HardwareAddr
+
+	// Address returns the IPv4 address assigned to the endpoint.
+	Address() *net.IPNet
+
+	// AddressIPv6 returns the IPv6 address assigned to the endpoint.
+	AddressIPv6() *net.IPNet
+
+	// LinkLocalAddresses returns the list of link-local (IPv4/IPv6) addresses assigned to the endpoint.
+	LinkLocalAddresses() []*net.IPNet
+}
+
+type endpointInterface struct {
+	mac       net.HardwareAddr
+	addr      *net.IPNet
+	addrv6    *net.IPNet
+	llAddrs   []*net.IPNet
+	srcName   string
+	dstPrefix string
+	routes    []*net.IPNet
+	v4PoolID  string
+	v6PoolID  string
+}
+
+func (epi *endpointInterface) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	if epi.mac != nil {
+		epMap["mac"] = epi.mac.String()
+	}
+	if epi.addr != nil {
+		epMap["addr"] = epi.addr.String()
+	}
+	if epi.addrv6 != nil {
+		epMap["addrv6"] = epi.addrv6.String()
+	}
+	if len(epi.llAddrs) != 0 {
+		list := make([]string, 0, len(epi.llAddrs))
+		for _, ll := range epi.llAddrs {
+			list = append(list, ll.String())
+		}
+		epMap["llAddrs"] = list
+	}
+	epMap["srcName"] = epi.srcName
+	epMap["dstPrefix"] = epi.dstPrefix
+	var routes []string
+	for _, route := range epi.routes {
+		routes = append(routes, route.String())
+	}
+	epMap["routes"] = routes
+	epMap["v4PoolID"] = epi.v4PoolID
+	epMap["v6PoolID"] = epi.v6PoolID
+	return json.Marshal(epMap)
+}
+
+func (epi *endpointInterface) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return err
+	}
+	if v, ok := epMap["mac"]; ok {
+		if epi.mac, err = net.ParseMAC(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint interface mac address after json unmarshal: %s", v.(string))
+		}
+	}
+	if v, ok := epMap["addr"]; ok {
+		if epi.addr, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint interface ipv4 address after json unmarshal: %v", err)
+		}
+	}
+	if v, ok := epMap["addrv6"]; ok {
+		if epi.addrv6, err = types.ParseCIDR(v.(string)); err != nil {
+			return types.InternalErrorf("failed to decode endpoint interface ipv6 address after json unmarshal: %v", err)
+		}
+	}
+	if v, ok := epMap["llAddrs"]; ok {
+		list := v.([]interface{})
+		epi.llAddrs = make([]*net.IPNet, 0, len(list))
+		for _, llS := range list {
+			ll, err := types.ParseCIDR(llS.(string))
+			if err != nil {
+				return types.InternalErrorf("failed to decode endpoint interface link-local address (%v) after json unmarshal: %v", llS, err)
+			}
+			epi.llAddrs = append(epi.llAddrs, ll)
+		}
+	}
+	epi.srcName = epMap["srcName"].(string)
+	epi.dstPrefix = epMap["dstPrefix"].(string)
+
+	rb, _ := json.Marshal(epMap["routes"])
+	var routes []string
+	json.Unmarshal(rb, &routes)
+	epi.routes = make([]*net.IPNet, 0)
+	for _, route := range routes {
+		ip, ipr, err := net.ParseCIDR(route)
+		if err == nil {
+			ipr.IP = ip
+			epi.routes = append(epi.routes, ipr)
+		}
+	}
+	epi.v4PoolID = epMap["v4PoolID"].(string)
+	epi.v6PoolID = epMap["v6PoolID"].(string)
+
+	return nil
+}
+
+func (epi *endpointInterface) CopyTo(dstEpi *endpointInterface) error {
+	dstEpi.mac = types.GetMacCopy(epi.mac)
+	dstEpi.addr = types.GetIPNetCopy(epi.addr)
+	dstEpi.addrv6 = types.GetIPNetCopy(epi.addrv6)
+	dstEpi.srcName = epi.srcName
+	dstEpi.dstPrefix = epi.dstPrefix
+	dstEpi.v4PoolID = epi.v4PoolID
+	dstEpi.v6PoolID = epi.v6PoolID
+	if len(epi.llAddrs) != 0 {
+		dstEpi.llAddrs = make([]*net.IPNet, 0, len(epi.llAddrs))
+		dstEpi.llAddrs = append(dstEpi.llAddrs, epi.llAddrs...)
+	}
+
+	for _, route := range epi.routes {
+		dstEpi.routes = append(dstEpi.routes, types.GetIPNetCopy(route))
+	}
+
+	return nil
+}
+
+type endpointJoinInfo struct {
+	gw                    net.IP
+	gw6                   net.IP
+	StaticRoutes          []*types.StaticRoute
+	driverTableEntries    []*tableEntry
+	disableGatewayService bool
+}
+
+type tableEntry struct {
+	tableName string
+	key       string
+	value     []byte
+}
+
+func (ep *endpoint) Info() EndpointInfo {
+	if ep.sandboxID != "" {
+		return ep
+	}
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return nil
+	}
+
+	ep, err = n.getEndpointFromStore(ep.ID())
+	if err != nil {
+		return nil
+	}
+
+	sb, ok := ep.getSandbox()
+	if !ok {
+		// endpoint hasn't joined any sandbox.
+		// Just return the endpoint
+		return ep
+	}
+
+	return sb.getEndpoint(ep.ID())
+}
+
+func (ep *endpoint) Iface() InterfaceInfo {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.iface != nil {
+		return ep.iface
+	}
+
+	return nil
+}
+
+func (ep *endpoint) Interface() driverapi.InterfaceInfo {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.iface != nil {
+		return ep.iface
+	}
+
+	return nil
+}
+
+func (epi *endpointInterface) SetMacAddress(mac net.HardwareAddr) error {
+	if epi.mac != nil {
+		return types.ForbiddenErrorf("endpoint interface MAC address present (%s). Cannot be modified with %s.", epi.mac, mac)
+	}
+	if mac == nil {
+		return types.BadRequestErrorf("tried to set nil MAC address to endpoint interface")
+	}
+	epi.mac = types.GetMacCopy(mac)
+	return nil
+}
+
+func (epi *endpointInterface) SetIPAddress(address *net.IPNet) error {
+	if address.IP == nil {
+		return types.BadRequestErrorf("tried to set nil IP address to endpoint interface")
+	}
+	if address.IP.To4() == nil {
+		return setAddress(&epi.addrv6, address)
+	}
+	return setAddress(&epi.addr, address)
+}
+
+func setAddress(ifaceAddr **net.IPNet, address *net.IPNet) error {
+	if *ifaceAddr != nil {
+		return types.ForbiddenErrorf("endpoint interface IP present (%s). Cannot be modified with (%s).", *ifaceAddr, address)
+	}
+	*ifaceAddr = types.GetIPNetCopy(address)
+	return nil
+}
+
+func (epi *endpointInterface) MacAddress() net.HardwareAddr {
+	return types.GetMacCopy(epi.mac)
+}
+
+func (epi *endpointInterface) Address() *net.IPNet {
+	return types.GetIPNetCopy(epi.addr)
+}
+
+func (epi *endpointInterface) AddressIPv6() *net.IPNet {
+	return types.GetIPNetCopy(epi.addrv6)
+}
+
+func (epi *endpointInterface) LinkLocalAddresses() []*net.IPNet {
+	return epi.llAddrs
+}
+
+func (epi *endpointInterface) SetNames(srcName string, dstPrefix string) error {
+	epi.srcName = srcName
+	epi.dstPrefix = dstPrefix
+	return nil
+}
+
+func (ep *endpoint) InterfaceName() driverapi.InterfaceNameInfo {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.iface != nil {
+		return ep.iface
+	}
+
+	return nil
+}
+
+func (ep *endpoint) AddStaticRoute(destination *net.IPNet, routeType int, nextHop net.IP) error {
+	ep.Lock()
+	defer ep.Unlock()
+
+	r := types.StaticRoute{Destination: destination, RouteType: routeType, NextHop: nextHop}
+
+	if routeType == types.NEXTHOP {
+		// If the route specifies a next-hop, then it's loosely routed (i.e. not bound to a particular interface).
+		ep.joinInfo.StaticRoutes = append(ep.joinInfo.StaticRoutes, &r)
+	} else {
+		// If the route doesn't specify a next-hop, it must be a connected route, bound to an interface.
+		ep.iface.routes = append(ep.iface.routes, r.Destination)
+	}
+	return nil
+}
+
+func (ep *endpoint) AddTableEntry(tableName, key string, value []byte) error {
+	ep.Lock()
+	defer ep.Unlock()
+
+	ep.joinInfo.driverTableEntries = append(ep.joinInfo.driverTableEntries, &tableEntry{
+		tableName: tableName,
+		key:       key,
+		value:     value,
+	})
+
+	return nil
+}
+
+func (ep *endpoint) Sandbox() Sandbox {
+	cnt, ok := ep.getSandbox()
+	if !ok {
+		return nil
+	}
+	return cnt
+}
+
+func (ep *endpoint) LoadBalancer() bool {
+	ep.Lock()
+	defer ep.Unlock()
+	return ep.loadBalancer
+}
+
+func (ep *endpoint) StaticRoutes() []*types.StaticRoute {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.joinInfo == nil {
+		return nil
+	}
+
+	return ep.joinInfo.StaticRoutes
+}
+
+func (ep *endpoint) Gateway() net.IP {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.joinInfo == nil {
+		return net.IP{}
+	}
+
+	return types.GetIPCopy(ep.joinInfo.gw)
+}
+
+func (ep *endpoint) GatewayIPv6() net.IP {
+	ep.Lock()
+	defer ep.Unlock()
+
+	if ep.joinInfo == nil {
+		return net.IP{}
+	}
+
+	return types.GetIPCopy(ep.joinInfo.gw6)
+}
+
+func (ep *endpoint) SetGateway(gw net.IP) error {
+	ep.Lock()
+	defer ep.Unlock()
+
+	ep.joinInfo.gw = types.GetIPCopy(gw)
+	return nil
+}
+
+func (ep *endpoint) SetGatewayIPv6(gw6 net.IP) error {
+	ep.Lock()
+	defer ep.Unlock()
+
+	ep.joinInfo.gw6 = types.GetIPCopy(gw6)
+	return nil
+}
+
+func (ep *endpoint) retrieveFromStore() (*endpoint, error) {
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return nil, fmt.Errorf("could not find network in store to get latest endpoint %s: %v", ep.Name(), err)
+	}
+	return n.getEndpointFromStore(ep.ID())
+}
+
+func (ep *endpoint) DisableGatewayService() {
+	ep.Lock()
+	defer ep.Unlock()
+
+	ep.joinInfo.disableGatewayService = true
+}
+
+func (epj *endpointJoinInfo) MarshalJSON() ([]byte, error) {
+	epMap := make(map[string]interface{})
+	if epj.gw != nil {
+		epMap["gw"] = epj.gw.String()
+	}
+	if epj.gw6 != nil {
+		epMap["gw6"] = epj.gw6.String()
+	}
+	epMap["disableGatewayService"] = epj.disableGatewayService
+	epMap["StaticRoutes"] = epj.StaticRoutes
+	return json.Marshal(epMap)
+}
+
+func (epj *endpointJoinInfo) UnmarshalJSON(b []byte) error {
+	var (
+		err   error
+		epMap map[string]interface{}
+	)
+	if err = json.Unmarshal(b, &epMap); err != nil {
+		return err
+	}
+	if v, ok := epMap["gw"]; ok {
+		epj.gw = net.ParseIP(v.(string))
+	}
+	if v, ok := epMap["gw6"]; ok {
+		epj.gw6 = net.ParseIP(v.(string))
+	}
+	epj.disableGatewayService = epMap["disableGatewayService"].(bool)
+
+	var tStaticRoute []types.StaticRoute
+	if v, ok := epMap["StaticRoutes"]; ok {
+		tb, _ := json.Marshal(v)
+		var tStaticRoute []types.StaticRoute
+		json.Unmarshal(tb, &tStaticRoute)
+	}
+	var StaticRoutes []*types.StaticRoute
+	for _, r := range tStaticRoute {
+		StaticRoutes = append(StaticRoutes, &r)
+	}
+	epj.StaticRoutes = StaticRoutes
+
+	return nil
+}
+
+func (epj *endpointJoinInfo) CopyTo(dstEpj *endpointJoinInfo) error {
+	dstEpj.disableGatewayService = epj.disableGatewayService
+	dstEpj.StaticRoutes = make([]*types.StaticRoute, len(epj.StaticRoutes))
+	copy(dstEpj.StaticRoutes, epj.StaticRoutes)
+	dstEpj.driverTableEntries = make([]*tableEntry, len(epj.driverTableEntries))
+	copy(dstEpj.driverTableEntries, epj.driverTableEntries)
+	dstEpj.gw = types.GetIPCopy(epj.gw)
+	dstEpj.gw6 = types.GetIPCopy(epj.gw6)
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/endpoint_info_unix.go b/vendor/github.com/docker/libnetwork/endpoint_info_unix.go
new file mode 100644
index 0000000000..f2534f4904
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/endpoint_info_unix.go
@@ -0,0 +1,30 @@
+// +build !windows
+
+package libnetwork
+
+import "fmt"
+
+func (ep *endpoint) DriverInfo() (map[string]interface{}, error) {
+	ep, err := ep.retrieveFromStore()
+	if err != nil {
+		return nil, err
+	}
+
+	if sb, ok := ep.getSandbox(); ok {
+		if gwep := sb.getEndpointInGWNetwork(); gwep != nil && gwep.ID() != ep.ID() {
+			return gwep.DriverInfo()
+		}
+	}
+
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return nil, fmt.Errorf("could not find network in store for driver info: %v", err)
+	}
+
+	driver, err := n.driver(true)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get driver info: %v", err)
+	}
+
+	return driver.EndpointOperInfo(n.ID(), ep.ID())
+}
diff --git a/vendor/github.com/docker/libnetwork/endpoint_info_windows.go b/vendor/github.com/docker/libnetwork/endpoint_info_windows.go
new file mode 100644
index 0000000000..93ad8330e9
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/endpoint_info_windows.go
@@ -0,0 +1,45 @@
+// +build windows
+
+package libnetwork
+
+import "fmt"
+
+func (ep *endpoint) DriverInfo() (map[string]interface{}, error) {
+	ep, err := ep.retrieveFromStore()
+	if err != nil {
+		return nil, err
+	}
+
+	var gwDriverInfo map[string]interface{}
+	if sb, ok := ep.getSandbox(); ok {
+		if gwep := sb.getEndpointInGWNetwork(); gwep != nil && gwep.ID() != ep.ID() {
+
+			gwDriverInfo, err = gwep.DriverInfo()
+			if err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	n, err := ep.getNetworkFromStore()
+	if err != nil {
+		return nil, fmt.Errorf("could not find network in store for driver info: %v", err)
+	}
+
+	driver, err := n.driver(true)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get driver info: %v", err)
+	}
+
+	epInfo, err := driver.EndpointOperInfo(n.ID(), ep.ID())
+	if err != nil {
+		return nil, err
+	}
+
+	if epInfo != nil {
+		epInfo["GW_INFO"] = gwDriverInfo
+		return epInfo, nil
+	}
+
+	return gwDriverInfo, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/error.go b/vendor/github.com/docker/libnetwork/error.go
new file mode 100644
index 0000000000..5f00709ff9
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/error.go
@@ -0,0 +1,193 @@
+package libnetwork
+
+import (
+	"fmt"
+)
+
+// ErrNoSuchNetwork is returned when a network query finds no result
+type ErrNoSuchNetwork string
+
+func (nsn ErrNoSuchNetwork) Error() string {
+	return fmt.Sprintf("network %s not found", string(nsn))
+}
+
+// NotFound denotes the type of this error
+func (nsn ErrNoSuchNetwork) NotFound() {}
+
+// ErrNoSuchEndpoint is returned when an endpoint query finds no result
+type ErrNoSuchEndpoint string
+
+func (nse ErrNoSuchEndpoint) Error() string {
+	return fmt.Sprintf("endpoint %s not found", string(nse))
+}
+
+// NotFound denotes the type of this error
+func (nse ErrNoSuchEndpoint) NotFound() {}
+
+// ErrInvalidNetworkDriver is returned if an invalid driver
+// name is passed.
+type ErrInvalidNetworkDriver string
+
+func (ind ErrInvalidNetworkDriver) Error() string {
+	return fmt.Sprintf("invalid driver bound to network: %s", string(ind))
+}
+
+// BadRequest denotes the type of this error
+func (ind ErrInvalidNetworkDriver) BadRequest() {}
+
+// ErrInvalidJoin is returned if a join is attempted on an endpoint
+// which already has a container joined.
+type ErrInvalidJoin struct{}
+
+func (ij ErrInvalidJoin) Error() string {
+	return "a container has already joined the endpoint"
+}
+
+// BadRequest denotes the type of this error
+func (ij ErrInvalidJoin) BadRequest() {}
+
+// ErrNoContainer is returned when the endpoint has no container
+// attached to it.
+type ErrNoContainer struct{}
+
+func (nc ErrNoContainer) Error() string {
+	return "no container is attached to the endpoint"
+}
+
+// Maskable denotes the type of this error
+func (nc ErrNoContainer) Maskable() {}
+
+// ErrInvalidID is returned when a query-by-id method is being invoked
+// with an empty id parameter
+type ErrInvalidID string
+
+func (ii ErrInvalidID) Error() string {
+	return fmt.Sprintf("invalid id: %s", string(ii))
+}
+
+// BadRequest denotes the type of this error
+func (ii ErrInvalidID) BadRequest() {}
+
+// ErrInvalidName is returned when a query-by-name or resource create method is
+// invoked with an empty name parameter
+type ErrInvalidName string
+
+func (in ErrInvalidName) Error() string {
+	return fmt.Sprintf("invalid name: %s", string(in))
+}
+
+// BadRequest denotes the type of this error
+func (in ErrInvalidName) BadRequest() {}
+
+// ErrInvalidConfigFile type is returned when an invalid LibNetwork config file is detected
+type ErrInvalidConfigFile string
+
+func (cf ErrInvalidConfigFile) Error() string {
+	return fmt.Sprintf("Invalid Config file %q", string(cf))
+}
+
+// NetworkTypeError type is returned when the network type string is not
+// known to libnetwork.
+type NetworkTypeError string
+
+func (nt NetworkTypeError) Error() string {
+	return fmt.Sprintf("unknown driver %q", string(nt))
+}
+
+// NotFound denotes the type of this error
+func (nt NetworkTypeError) NotFound() {}
+
+// NetworkNameError is returned when a network with the same name already exists.
+type NetworkNameError string
+
+func (nnr NetworkNameError) Error() string {
+	return fmt.Sprintf("network with name %s already exists", string(nnr))
+}
+
+// Forbidden denotes the type of this error
+func (nnr NetworkNameError) Forbidden() {}
+
+// UnknownNetworkError is returned when libnetwork could not find in its database
+// a network with the same name and id.
+type UnknownNetworkError struct {
+	name string
+	id   string
+}
+
+func (une *UnknownNetworkError) Error() string {
+	return fmt.Sprintf("unknown network %s id %s", une.name, une.id)
+}
+
+// NotFound denotes the type of this error
+func (une *UnknownNetworkError) NotFound() {}
+
+// ActiveEndpointsError is returned when a network is deleted which has active
+// endpoints in it.
+type ActiveEndpointsError struct {
+	name string
+	id   string
+}
+
+func (aee *ActiveEndpointsError) Error() string {
+	return fmt.Sprintf("network %s id %s has active endpoints", aee.name, aee.id)
+}
+
+// Forbidden denotes the type of this error
+func (aee *ActiveEndpointsError) Forbidden() {}
+
+// UnknownEndpointError is returned when libnetwork could not find in its database
+// an endpoint with the same name and id.
+type UnknownEndpointError struct {
+	name string
+	id   string
+}
+
+func (uee *UnknownEndpointError) Error() string {
+	return fmt.Sprintf("unknown endpoint %s id %s", uee.name, uee.id)
+}
+
+// NotFound denotes the type of this error
+func (uee *UnknownEndpointError) NotFound() {}
+
+// ActiveContainerError is returned when an endpoint is deleted which has active
+// containers attached to it.
+type ActiveContainerError struct {
+	name string
+	id   string
+}
+
+func (ace *ActiveContainerError) Error() string {
+	return fmt.Sprintf("endpoint with name %s id %s has active containers", ace.name, ace.id)
+}
+
+// Forbidden denotes the type of this error
+func (ace *ActiveContainerError) Forbidden() {}
+
+// InvalidContainerIDError is returned when an invalid container id is passed
+// in Join/Leave
+type InvalidContainerIDError string
+
+func (id InvalidContainerIDError) Error() string {
+	return fmt.Sprintf("invalid container id %s", string(id))
+}
+
+// BadRequest denotes the type of this error
+func (id InvalidContainerIDError) BadRequest() {}
+
+// ManagerRedirectError is returned when the request should be redirected to Manager
+type ManagerRedirectError string
+
+func (mr ManagerRedirectError) Error() string {
+	return "Redirect the request to the manager"
+}
+
+// Maskable denotes the type of this error
+func (mr ManagerRedirectError) Maskable() {}
+
+// ErrDataStoreNotInitialized is returned if an invalid data scope is passed
+// for getting data store
+type ErrDataStoreNotInitialized string
+
+func (dsni ErrDataStoreNotInitialized) Error() string {
+	return fmt.Sprintf("datastore for scope %q is not initialized", string(dsni))
+}
diff --git a/vendor/github.com/docker/libnetwork/etchosts/etchosts.go b/vendor/github.com/docker/libnetwork/etchosts/etchosts.go
new file mode 100644
index 0000000000..d55298af45
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/etchosts/etchosts.go
@@ -0,0 +1,208 @@
+package etchosts
+
+import (
+	"bufio"
+	"bytes"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"regexp"
+	"strings"
+	"sync"
+)
+
+// Record Structure for a single host record
+type Record struct {
+	Hosts string
+	IP    string
+}
+
+// WriteTo writes record to file and returns bytes written or error
+func (r Record) WriteTo(w io.Writer) (int64, error) {
+	n, err := fmt.Fprintf(w, "%s\t%s\n", r.IP, r.Hosts)
+	return int64(n), err
+}
+
+var (
+	// Default hosts config records slice
+	defaultContent = []Record{
+		{Hosts: "localhost", IP: "127.0.0.1"},
+		{Hosts: "localhost ip6-localhost ip6-loopback", IP: "::1"},
+		{Hosts: "ip6-localnet", IP: "fe00::0"},
+		{Hosts: "ip6-mcastprefix", IP: "ff00::0"},
+		{Hosts: "ip6-allnodes", IP: "ff02::1"},
+		{Hosts: "ip6-allrouters", IP: "ff02::2"},
+	}
+
+	// A cache of path level locks for synchronizing /etc/hosts
+	// updates on a file level
+	pathMap = make(map[string]*sync.Mutex)
+
+	// A package level mutex to synchronize the cache itself
+	pathMutex sync.Mutex
+)
+
+func pathLock(path string) func() {
+	pathMutex.Lock()
+	defer pathMutex.Unlock()
+
+	pl, ok := pathMap[path]
+	if !ok {
+		pl = &sync.Mutex{}
+		pathMap[path] = pl
+	}
+
+	pl.Lock()
+	return func() {
+		pl.Unlock()
+	}
+}
+
+// Drop drops the path string from the path cache
+func Drop(path string) {
+	pathMutex.Lock()
+	defer pathMutex.Unlock()
+
+	delete(pathMap, path)
+}
+
+// Build function
+// path is path to host file string required
+// IP, hostname, and domainname set main record leave empty for no master record
+// extraContent is an array of extra host records.
+func Build(path, IP, hostname, domainname string, extraContent []Record) error {
+	defer pathLock(path)()
+
+	content := bytes.NewBuffer(nil)
+	if IP != "" {
+		//set main record
+		var mainRec Record
+		mainRec.IP = IP
+		// User might have provided a FQDN in hostname or split it across hostname
+		// and domainname.  We want the FQDN and the bare hostname.
+		fqdn := hostname
+		if domainname != "" {
+			fqdn = fmt.Sprintf("%s.%s", fqdn, domainname)
+		}
+		parts := strings.SplitN(fqdn, ".", 2)
+		if len(parts) == 2 {
+			mainRec.Hosts = fmt.Sprintf("%s %s", fqdn, parts[0])
+		} else {
+			mainRec.Hosts = fqdn
+		}
+		if _, err := mainRec.WriteTo(content); err != nil {
+			return err
+		}
+	}
+	// Write defaultContent slice to buffer
+	for _, r := range defaultContent {
+		if _, err := r.WriteTo(content); err != nil {
+			return err
+		}
+	}
+	// Write extra content from function arguments
+	for _, r := range extraContent {
+		if _, err := r.WriteTo(content); err != nil {
+			return err
+		}
+	}
+
+	return ioutil.WriteFile(path, content.Bytes(), 0644)
+}
+
+// Add adds an arbitrary number of Records to an already existing /etc/hosts file
+func Add(path string, recs []Record) error {
+	defer pathLock(path)()
+
+	if len(recs) == 0 {
+		return nil
+	}
+
+	b, err := mergeRecords(path, recs)
+	if err != nil {
+		return err
+	}
+
+	return ioutil.WriteFile(path, b, 0644)
+}
+
+func mergeRecords(path string, recs []Record) ([]byte, error) {
+	f, err := os.Open(path)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	content := bytes.NewBuffer(nil)
+
+	if _, err := content.ReadFrom(f); err != nil {
+		return nil, err
+	}
+
+	for _, r := range recs {
+		if _, err := r.WriteTo(content); err != nil {
+			return nil, err
+		}
+	}
+
+	return content.Bytes(), nil
+}
+
+// Delete deletes an arbitrary number of Records already existing in /etc/hosts file
+func Delete(path string, recs []Record) error {
+	defer pathLock(path)()
+
+	if len(recs) == 0 {
+		return nil
+	}
+	old, err := os.Open(path)
+	if err != nil {
+		return err
+	}
+
+	var buf bytes.Buffer
+
+	s := bufio.NewScanner(old)
+	eol := []byte{'\n'}
+loop:
+	for s.Scan() {
+		b := s.Bytes()
+		if len(b) == 0 {
+			continue
+		}
+
+		if b[0] == '#' {
+			buf.Write(b)
+			buf.Write(eol)
+			continue
+		}
+		for _, r := range recs {
+			if bytes.HasSuffix(b, []byte("\t"+r.Hosts)) {
+				continue loop
+			}
+		}
+		buf.Write(b)
+		buf.Write(eol)
+	}
+	old.Close()
+	if err := s.Err(); err != nil {
+		return err
+	}
+	return ioutil.WriteFile(path, buf.Bytes(), 0644)
+}
+
+// Update all IP addresses where hostname matches.
+// path is path to host file
+// IP is new IP address
+// hostname is hostname to search for to replace IP
+func Update(path, IP, hostname string) error {
+	defer pathLock(path)()
+
+	old, err := ioutil.ReadFile(path)
+	if err != nil {
+		return err
+	}
+	var re = regexp.MustCompile(fmt.Sprintf("(\\S*)(\\t%s)(\\s|\\.)", regexp.QuoteMeta(hostname)))
+	return ioutil.WriteFile(path, re.ReplaceAll(old, []byte(IP+"$2"+"$3")), 0644)
+}
diff --git a/vendor/github.com/docker/libnetwork/firewall_linux.go b/vendor/github.com/docker/libnetwork/firewall_linux.go
new file mode 100644
index 0000000000..54f9621f81
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/firewall_linux.go
@@ -0,0 +1,40 @@
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/iptables"
+	"github.com/sirupsen/logrus"
+)
+
+const userChain = "DOCKER-USER"
+
+func (c *controller) arrangeUserFilterRule() {
+	c.Lock()
+	arrangeUserFilterRule()
+	c.Unlock()
+	iptables.OnReloaded(func() {
+		c.Lock()
+		arrangeUserFilterRule()
+		c.Unlock()
+	})
+}
+
+// This chain allow users to configure firewall policies in a way that persists
+// docker operations/restarts. Docker will not delete or modify any pre-existing
+// rules from the DOCKER-USER filter chain.
+func arrangeUserFilterRule() {
+	_, err := iptables.NewChain(userChain, iptables.Filter, false)
+	if err != nil {
+		logrus.Warnf("Failed to create %s chain: %v", userChain, err)
+		return
+	}
+
+	if err = iptables.AddReturnRule(userChain); err != nil {
+		logrus.Warnf("Failed to add the RETURN rule for %s: %v", userChain, err)
+		return
+	}
+
+	err = iptables.EnsureJumpRule("FORWARD", userChain)
+	if err != nil {
+		logrus.Warnf("Failed to ensure the jump rule for %s: %v", userChain, err)
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/firewall_others.go b/vendor/github.com/docker/libnetwork/firewall_others.go
new file mode 100644
index 0000000000..901f568fed
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/firewall_others.go
@@ -0,0 +1,6 @@
+// +build !linux
+
+package libnetwork
+
+func (c *controller) arrangeUserFilterRule() {
+}
diff --git a/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery.go b/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery.go
new file mode 100644
index 0000000000..452b5628c1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery.go
@@ -0,0 +1,121 @@
+package hostdiscovery
+
+import (
+	"net"
+	"sync"
+
+	"github.com/sirupsen/logrus"
+
+	mapset "github.com/deckarep/golang-set"
+	"github.com/docker/docker/pkg/discovery"
+	// Including KV
+	_ "github.com/docker/docker/pkg/discovery/kv"
+	"github.com/docker/libkv/store/consul"
+	"github.com/docker/libkv/store/etcd"
+	"github.com/docker/libkv/store/zookeeper"
+	"github.com/docker/libnetwork/types"
+)
+
+type hostDiscovery struct {
+	watcher  discovery.Watcher
+	nodes    mapset.Set
+	stopChan chan struct{}
+	sync.Mutex
+}
+
+func init() {
+	consul.Register()
+	etcd.Register()
+	zookeeper.Register()
+}
+
+// NewHostDiscovery function creates a host discovery object
+func NewHostDiscovery(watcher discovery.Watcher) HostDiscovery {
+	return &hostDiscovery{watcher: watcher, nodes: mapset.NewSet(), stopChan: make(chan struct{})}
+}
+
+func (h *hostDiscovery) Watch(activeCallback ActiveCallback, joinCallback JoinCallback, leaveCallback LeaveCallback) error {
+	h.Lock()
+	d := h.watcher
+	h.Unlock()
+	if d == nil {
+		return types.BadRequestErrorf("invalid discovery watcher")
+	}
+	discoveryCh, errCh := d.Watch(h.stopChan)
+	go h.monitorDiscovery(discoveryCh, errCh, activeCallback, joinCallback, leaveCallback)
+	return nil
+}
+
+func (h *hostDiscovery) monitorDiscovery(ch <-chan discovery.Entries, errCh <-chan error,
+	activeCallback ActiveCallback, joinCallback JoinCallback, leaveCallback LeaveCallback) {
+	for {
+		select {
+		case entries := <-ch:
+			h.processCallback(entries, activeCallback, joinCallback, leaveCallback)
+		case err := <-errCh:
+			if err != nil {
+				logrus.Errorf("discovery error: %v", err)
+			}
+		case <-h.stopChan:
+			return
+		}
+	}
+}
+
+func (h *hostDiscovery) StopDiscovery() error {
+	h.Lock()
+	stopChan := h.stopChan
+	h.watcher = nil
+	h.Unlock()
+
+	close(stopChan)
+	return nil
+}
+
+func (h *hostDiscovery) processCallback(entries discovery.Entries,
+	activeCallback ActiveCallback, joinCallback JoinCallback, leaveCallback LeaveCallback) {
+	updated := hosts(entries)
+	h.Lock()
+	existing := h.nodes
+	added, removed := diff(existing, updated)
+	h.nodes = updated
+	h.Unlock()
+
+	activeCallback()
+	if len(added) > 0 {
+		joinCallback(added)
+	}
+	if len(removed) > 0 {
+		leaveCallback(removed)
+	}
+}
+
+func diff(existing mapset.Set, updated mapset.Set) (added []net.IP, removed []net.IP) {
+	addSlice := updated.Difference(existing).ToSlice()
+	removeSlice := existing.Difference(updated).ToSlice()
+	for _, ip := range addSlice {
+		added = append(added, net.ParseIP(ip.(string)))
+	}
+	for _, ip := range removeSlice {
+		removed = append(removed, net.ParseIP(ip.(string)))
+	}
+	return
+}
+
+func (h *hostDiscovery) Fetch() []net.IP {
+	h.Lock()
+	defer h.Unlock()
+	ips := []net.IP{}
+	for _, ipstr := range h.nodes.ToSlice() {
+		ips = append(ips, net.ParseIP(ipstr.(string)))
+	}
+	return ips
+}
+
+func hosts(entries discovery.Entries) mapset.Set {
+	hosts := mapset.NewSet()
+	for _, entry := range entries {
+		hosts.Add(entry.Host)
+	}
+	return hosts
+}
diff --git a/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery_api.go b/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery_api.go
new file mode 100644
index 0000000000..f0ca40e31f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/hostdiscovery/hostdiscovery_api.go
@@ -0,0 +1,22 @@
+package hostdiscovery
+
+import "net"
+
+// JoinCallback provides a callback event for new node joining the cluster
+type JoinCallback func(entries []net.IP)
+
+// ActiveCallback provides a callback event for active discovery event
+type ActiveCallback func()
+
+// LeaveCallback provides a callback event for node leaving the cluster
+type LeaveCallback func(entries []net.IP)
+
+// HostDiscovery primary interface
+type HostDiscovery interface {
+	//Watch Node join and leave cluster events
+	Watch(activeCallback ActiveCallback, joinCallback JoinCallback, leaveCallback LeaveCallback) error
+	// StopDiscovery stops the discovery process
+	StopDiscovery() error
+	// Fetch returns a list of host IPs that are currently discovered
+	Fetch() []net.IP
+}
diff --git a/vendor/github.com/docker/libnetwork/idm/idm.go b/vendor/github.com/docker/libnetwork/idm/idm.go
new file mode 100644
index 0000000000..d5843d4a58
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/idm/idm.go
@@ -0,0 +1,76 @@
+// Package idm manages reservation/release of numerical ids from a configured set of contiguous ids
+package idm
+
+import (
+	"errors"
+	"fmt"
+
+	"github.com/docker/libnetwork/bitseq"
+	"github.com/docker/libnetwork/datastore"
+)
+
+// Idm manages the reservation/release of numerical ids from a contiguous set
+type Idm struct {
+	start  uint64
+	end    uint64
+	handle *bitseq.Handle
+}
+
+// New returns an instance of id manager for a [start,end] set of numerical ids
+func New(ds datastore.DataStore, id string, start, end uint64) (*Idm, error) {
+	if id == "" {
+		return nil, errors.New("Invalid id")
+	}
+	if end <= start {
+		return nil, fmt.Errorf("Invalid set range: [%d, %d]", start, end)
+	}
+
+	h, err := bitseq.NewHandle("idm", ds, id, 1+end-start)
+	if err != nil {
+		return nil, fmt.Errorf("failed to initialize bit sequence handler: %s", err.Error())
+	}
+
+	return &Idm{start: start, end: end, handle: h}, nil
+}
+
+// GetID returns the first available id in the set
+func (i *Idm) GetID(serial bool) (uint64, error) {
+	if i.handle == nil {
+		return 0, errors.New("ID set is not initialized")
+	}
+	ordinal, err := i.handle.SetAny(serial)
+	return i.start + ordinal, err
+}
+
+// GetSpecificID tries to reserve the specified id
+func (i *Idm) GetSpecificID(id uint64) error {
+	if i.handle == nil {
+		return errors.New("ID set is not initialized")
+	}
+
+	if id < i.start || id > i.end {
+		return errors.New("Requested id does not belong to the set")
+	}
+
+	return i.handle.Set(id - i.start)
+}
+
+// GetIDInRange returns the first available id in the set within a [start,end] range
+func (i *Idm) GetIDInRange(start, end uint64, serial bool) (uint64, error) {
+	if i.handle == nil {
+		return 0, errors.New("ID set is not initialized")
+	}
+
+	if start < i.start || end > i.end {
+		return 0, errors.New("Requested range does not belong to the set")
+	}
+
+	ordinal, err := i.handle.SetAnyInRange(start-i.start, end-i.start, serial)
+
+	return i.start + ordinal, err
+}
+
+// Release releases the specified id
+func (i *Idm) Release(id uint64) {
+	i.handle.Unset(id - i.start)
+}
diff --git a/vendor/github.com/docker/libnetwork/ipam/allocator.go b/vendor/github.com/docker/libnetwork/ipam/allocator.go
new file mode 100644
index 0000000000..d1a91c077f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipam/allocator.go
@@ -0,0 +1,609 @@
+package ipam
+
+import (
+	"fmt"
+	"net"
+	"sort"
+	"sync"
+
+	"github.com/docker/libnetwork/bitseq"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/ipamutils"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	localAddressSpace  = "LocalDefault"
+	globalAddressSpace = "GlobalDefault"
+	// The biggest configurable host subnets
+	minNetSize   = 8
+	minNetSizeV6 = 64
+	// datastore keyes for ipam objects
+	dsConfigKey = "ipam/" + ipamapi.DefaultIPAM + "/config"
+	dsDataKey   = "ipam/" + ipamapi.DefaultIPAM + "/data"
+)
+
+// Allocator provides per address space ipv4/ipv6 book keeping
+type Allocator struct {
+	// Predefined pools for default address spaces
+	predefined map[string][]*net.IPNet
+	addrSpaces map[string]*addrSpace
+	// stores        []datastore.Datastore
+	// Allocated addresses in each address space's subnet
+	addresses map[SubnetKey]*bitseq.Handle
+	sync.Mutex
+}
+
+// NewAllocator returns an instance of libnetwork ipam
+func NewAllocator(lcDs, glDs datastore.DataStore) (*Allocator, error) {
+	a := &Allocator{}
+
+	// Load predefined subnet pools
+	a.predefined = map[string][]*net.IPNet{
+		localAddressSpace:  ipamutils.PredefinedBroadNetworks,
+		globalAddressSpace: ipamutils.PredefinedGranularNetworks,
+	}
+
+	// Initialize bitseq map
+	a.addresses = make(map[SubnetKey]*bitseq.Handle)
+
+	// Initialize address spaces
+	a.addrSpaces = make(map[string]*addrSpace)
+	for _, aspc := range []struct {
+		as string
+		ds datastore.DataStore
+	}{
+		{localAddressSpace, lcDs},
+		{globalAddressSpace, glDs},
+	} {
+		a.initializeAddressSpace(aspc.as, aspc.ds)
+	}
+
+	return a, nil
+}
+
+func (a *Allocator) refresh(as string) error {
+	aSpace, err := a.getAddressSpaceFromStore(as)
+	if err != nil {
+		return types.InternalErrorf("error getting pools config from store: %v", err)
+	}
+
+	if aSpace == nil {
+		return nil
+	}
+
+	a.Lock()
+	a.addrSpaces[as] = aSpace
+	a.Unlock()
+
+	return nil
+}
+
+func (a *Allocator) updateBitMasks(aSpace *addrSpace) error {
+	var inserterList []func() error
+
+	aSpace.Lock()
+	for k, v := range aSpace.subnets {
+		if v.Range == nil {
+			kk := k
+			vv := v
+			inserterList = append(inserterList, func() error { return a.insertBitMask(kk, vv.Pool) })
+		}
+	}
+	aSpace.Unlock()
+
+	// Add the bitmasks (data could come from datastore)
+	if inserterList != nil {
+		for _, f := range inserterList {
+			if err := f(); err != nil {
+				return err
+			}
+		}
+	}
+
+	return nil
+}
+
+// Checks for and fixes damaged bitmask.
+func (a *Allocator) checkConsistency(as string) {
+	var sKeyList []SubnetKey
+
+	// Retrieve this address space's configuration and bitmasks from the datastore
+	a.refresh(as)
+	a.Lock()
+	aSpace, ok := a.addrSpaces[as]
+	a.Unlock()
+	if !ok {
+		return
+	}
+	a.updateBitMasks(aSpace)
+
+	aSpace.Lock()
+	for sk, pd := range aSpace.subnets {
+		if pd.Range != nil {
+			continue
+		}
+		sKeyList = append(sKeyList, sk)
+	}
+	aSpace.Unlock()
+
+	for _, sk := range sKeyList {
+		a.Lock()
+		bm := a.addresses[sk]
+		a.Unlock()
+		if err := bm.CheckConsistency(); err != nil {
+			logrus.Warnf("Error while running consistency check for %s: %v", sk, err)
+		}
+	}
+}
+
+func (a *Allocator) initializeAddressSpace(as string, ds datastore.DataStore) error {
+	scope := ""
+	if ds != nil {
+		scope = ds.Scope()
+	}
+
+	a.Lock()
+	if currAS, ok := a.addrSpaces[as]; ok {
+		if currAS.ds != nil {
+			a.Unlock()
+			return types.ForbiddenErrorf("a datastore is already configured for the address space %s", as)
+		}
+	}
+	a.addrSpaces[as] = &addrSpace{
+		subnets: map[SubnetKey]*PoolData{},
+		id:      dsConfigKey + "/" + as,
+		scope:   scope,
+		ds:      ds,
+		alloc:   a,
+	}
+	a.Unlock()
+
+	a.checkConsistency(as)
+
+	return nil
+}
+
+// DiscoverNew informs the allocator about a new global scope datastore
+func (a *Allocator) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	if dType != discoverapi.DatastoreConfig {
+		return nil
+	}
+
+	dsc, ok := data.(discoverapi.DatastoreConfigData)
+	if !ok {
+		return types.InternalErrorf("incorrect data in datastore update notification: %v", data)
+	}
+
+	ds, err := datastore.NewDataStoreFromConfig(dsc)
+	if err != nil {
+		return err
+	}
+
+	return a.initializeAddressSpace(globalAddressSpace, ds)
+}
+
+// DiscoverDelete is a notification of no interest for the allocator
+func (a *Allocator) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// GetDefaultAddressSpaces returns the local and global default address spaces
+func (a *Allocator) GetDefaultAddressSpaces() (string, string, error) {
+	return localAddressSpace, globalAddressSpace, nil
+}
+
+// RequestPool returns an address pool along with its unique id.
+func (a *Allocator) RequestPool(addressSpace, pool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error) {
+	logrus.Debugf("RequestPool(%s, %s, %s, %v, %t)", addressSpace, pool, subPool, options, v6)
+
+	k, nw, ipr, err := a.parsePoolRequest(addressSpace, pool, subPool, v6)
+	if err != nil {
+		return "", nil, nil, types.InternalErrorf("failed to parse pool request for address space %q pool %q subpool %q: %v", addressSpace, pool, subPool, err)
+	}
+
+	pdf := k == nil
+
+retry:
+	if pdf {
+		if nw, err = a.getPredefinedPool(addressSpace, v6); err != nil {
+			return "", nil, nil, err
+		}
+		k = &SubnetKey{AddressSpace: addressSpace, Subnet: nw.String()}
+	}
+
+	if err := a.refresh(addressSpace); err != nil {
+		return "", nil, nil, err
+	}
+
+	aSpace, err := a.getAddrSpace(addressSpace)
+	if err != nil {
+		return "", nil, nil, err
+	}
+
+	insert, err := aSpace.updatePoolDBOnAdd(*k, nw, ipr, pdf)
+	if err != nil {
+		if _, ok := err.(types.MaskableError); ok {
+			logrus.Debugf("Retrying predefined pool search: %v", err)
+			goto retry
+		}
+		return "", nil, nil, err
+	}
+
+	if err := a.writeToStore(aSpace); err != nil {
+		if _, ok := err.(types.RetryError); !ok {
+			return "", nil, nil, types.InternalErrorf("pool configuration failed because of %s", err.Error())
+		}
+
+		goto retry
+	}
+
+	return k.String(), nw, nil, insert()
+}
+
+// ReleasePool releases the address pool identified by the passed id
+func (a *Allocator) ReleasePool(poolID string) error {
+	logrus.Debugf("ReleasePool(%s)", poolID)
+	k := SubnetKey{}
+	if err := k.FromString(poolID); err != nil {
+		return types.BadRequestErrorf("invalid pool id: %s", poolID)
+	}
+
+retry:
+	if err := a.refresh(k.AddressSpace); err != nil {
+		return err
+	}
+
+	aSpace, err := a.getAddrSpace(k.AddressSpace)
+	if err != nil {
+		return err
+	}
+
+	remove, err := aSpace.updatePoolDBOnRemoval(k)
+	if err != nil {
+		return err
+	}
+
+	if err = a.writeToStore(aSpace); err != nil {
+		if _, ok := err.(types.RetryError); !ok {
+			return types.InternalErrorf("pool (%s) removal failed because of %v", poolID, err)
+		}
+		goto retry
+	}
+
+	return remove()
+}
+
+// Given the address space, returns the local or global PoolConfig based on the
+// address space is local or global. AddressSpace locality is being registered with IPAM out of band.
+func (a *Allocator) getAddrSpace(as string) (*addrSpace, error) {
+	a.Lock()
+	defer a.Unlock()
+	aSpace, ok := a.addrSpaces[as]
+	if !ok {
+		return nil, types.BadRequestErrorf("cannot find address space %s (most likely the backing datastore is not configured)", as)
+	}
+	return aSpace, nil
+}
+
+func (a *Allocator) parsePoolRequest(addressSpace, pool, subPool string, v6 bool) (*SubnetKey, *net.IPNet, *AddressRange, error) {
+	var (
+		nw  *net.IPNet
+		ipr *AddressRange
+		err error
+	)
+
+	if addressSpace == "" {
+		return nil, nil, nil, ipamapi.ErrInvalidAddressSpace
+	}
+
+	if pool == "" && subPool != "" {
+		return nil, nil, nil, ipamapi.ErrInvalidSubPool
+	}
+
+	if pool == "" {
+		return nil, nil, nil, nil
+	}
+
+	if _, nw, err = net.ParseCIDR(pool); err != nil {
+		return nil, nil, nil, ipamapi.ErrInvalidPool
+	}
+
+	if subPool != "" {
+		if ipr, err = getAddressRange(subPool, nw); err != nil {
+			return nil, nil, nil, err
+		}
+	}
+
+	return &SubnetKey{AddressSpace: addressSpace, Subnet: nw.String(), ChildSubnet: subPool}, nw, ipr, nil
+}
+
+func (a *Allocator) insertBitMask(key SubnetKey, pool *net.IPNet) error {
+	//logrus.Debugf("Inserting bitmask (%s, %s)", key.String(), pool.String())
+
+	store := a.getStore(key.AddressSpace)
+	ipVer := getAddressVersion(pool.IP)
+	ones, bits := pool.Mask.Size()
+	numAddresses := uint64(1 << uint(bits-ones))
+
+	// Allow /64 subnet
+	if ipVer == v6 && numAddresses == 0 {
+		numAddresses--
+	}
+
+	// Generate the new address masks. AddressMask content may come from datastore
+	h, err := bitseq.NewHandle(dsDataKey, store, key.String(), numAddresses)
+	if err != nil {
+		return err
+	}
+
+	// Do not let network identifier address be reserved
+	// Do the same for IPv6 so that bridge ip starts with XXXX...::1
+	h.Set(0)
+
+	// Do not let broadcast address be reserved
+	if ipVer == v4 {
+		h.Set(numAddresses - 1)
+	}
+
+	a.Lock()
+	a.addresses[key] = h
+	a.Unlock()
+	return nil
+}
+
+func (a *Allocator) retrieveBitmask(k SubnetKey, n *net.IPNet) (*bitseq.Handle, error) {
+	a.Lock()
+	bm, ok := a.addresses[k]
+	a.Unlock()
+	if !ok {
+		logrus.Debugf("Retrieving bitmask (%s, %s)", k.String(), n.String())
+		if err := a.insertBitMask(k, n); err != nil {
+			return nil, types.InternalErrorf("could not find bitmask in datastore for %s", k.String())
+		}
+		a.Lock()
+		bm = a.addresses[k]
+		a.Unlock()
+	}
+	return bm, nil
+}
+
+func (a *Allocator) getPredefineds(as string) []*net.IPNet {
+	a.Lock()
+	defer a.Unlock()
+	l := make([]*net.IPNet, 0, len(a.predefined[as]))
+	for _, pool := range a.predefined[as] {
+		l = append(l, pool)
+	}
+	return l
+}
+
+func (a *Allocator) getPredefinedPool(as string, ipV6 bool) (*net.IPNet, error) {
+	var v ipVersion
+	v = v4
+	if ipV6 {
+		v = v6
+	}
+
+	if as != localAddressSpace && as != globalAddressSpace {
+		return nil, types.NotImplementedErrorf("no default pool availbale for non-default addresss spaces")
+	}
+
+	aSpace, err := a.getAddrSpace(as)
+	if err != nil {
+		return nil, err
+	}
+
+	for _, nw := range a.getPredefineds(as) {
+		if v != getAddressVersion(nw.IP) {
+			continue
+		}
+		aSpace.Lock()
+		if _, ok := aSpace.subnets[SubnetKey{AddressSpace: as, Subnet: nw.String()}]; ok {
+			aSpace.Unlock()
+			continue
+		}
+		if !aSpace.contains(as, nw) {
+			aSpace.Unlock()
+			return nw, nil
+		}
+		aSpace.Unlock()
+	}
+
+	return nil, types.NotFoundErrorf("could not find an available, non-overlapping IPv%d address pool among the defaults to assign to the network", v)
+}
+
+// RequestAddress returns an address from the specified pool ID
+func (a *Allocator) RequestAddress(poolID string, prefAddress net.IP, opts map[string]string) (*net.IPNet, map[string]string, error) {
+	logrus.Debugf("RequestAddress(%s, %v, %v)", poolID, prefAddress, opts)
+	k := SubnetKey{}
+	if err := k.FromString(poolID); err != nil {
+		return nil, nil, types.BadRequestErrorf("invalid pool id: %s", poolID)
+	}
+
+	if err := a.refresh(k.AddressSpace); err != nil {
+		return nil, nil, err
+	}
+
+	aSpace, err := a.getAddrSpace(k.AddressSpace)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	aSpace.Lock()
+	p, ok := aSpace.subnets[k]
+	if !ok {
+		aSpace.Unlock()
+		return nil, nil, types.NotFoundErrorf("cannot find address pool for poolID:%s", poolID)
+	}
+
+	if prefAddress != nil && !p.Pool.Contains(prefAddress) {
+		aSpace.Unlock()
+		return nil, nil, ipamapi.ErrIPOutOfRange
+	}
+
+	c := p
+	for c.Range != nil {
+		k = c.ParentKey
+		c = aSpace.subnets[k]
+	}
+	aSpace.Unlock()
+
+	bm, err := a.retrieveBitmask(k, c.Pool)
+	if err != nil {
+		return nil, nil, types.InternalErrorf("could not find bitmask in datastore for %s on address %v request from pool %s: %v",
+			k.String(), prefAddress, poolID, err)
+	}
+	// In order to request for a serial ip address allocation, callers can pass in the option to request
+	// IP allocation serially or first available IP in the subnet
+	var serial bool
+	if opts != nil {
+		if val, ok := opts[ipamapi.AllocSerialPrefix]; ok {
+			serial = (val == "true")
+		}
+	}
+	ip, err := a.getAddress(p.Pool, bm, prefAddress, p.Range, serial)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	return &net.IPNet{IP: ip, Mask: p.Pool.Mask}, nil, nil
+}
+
+// ReleaseAddress releases the address from the specified pool ID
+func (a *Allocator) ReleaseAddress(poolID string, address net.IP) error {
+	logrus.Debugf("ReleaseAddress(%s, %v)", poolID, address)
+	k := SubnetKey{}
+	if err := k.FromString(poolID); err != nil {
+		return types.BadRequestErrorf("invalid pool id: %s", poolID)
+	}
+
+	if err := a.refresh(k.AddressSpace); err != nil {
+		return err
+	}
+
+	aSpace, err := a.getAddrSpace(k.AddressSpace)
+	if err != nil {
+		return err
+	}
+
+	aSpace.Lock()
+	p, ok := aSpace.subnets[k]
+	if !ok {
+		aSpace.Unlock()
+		return types.NotFoundErrorf("cannot find address pool for poolID:%s", poolID)
+	}
+
+	if address == nil {
+		aSpace.Unlock()
+		return types.BadRequestErrorf("invalid address: nil")
+	}
+
+	if !p.Pool.Contains(address) {
+		aSpace.Unlock()
+		return ipamapi.ErrIPOutOfRange
+	}
+
+	c := p
+	for c.Range != nil {
+		k = c.ParentKey
+		c = aSpace.subnets[k]
+	}
+	aSpace.Unlock()
+
+	mask := p.Pool.Mask
+
+	h, err := types.GetHostPartIP(address, mask)
+	if err != nil {
+		return types.InternalErrorf("failed to release address %s: %v", address.String(), err)
+	}
+
+	bm, err := a.retrieveBitmask(k, c.Pool)
+	if err != nil {
+		return types.InternalErrorf("could not find bitmask in datastore for %s on address %v release from pool %s: %v",
+			k.String(), address, poolID, err)
+	}
+
+	return bm.Unset(ipToUint64(h))
+}
+
+func (a *Allocator) getAddress(nw *net.IPNet, bitmask *bitseq.Handle, prefAddress net.IP, ipr *AddressRange, serial bool) (net.IP, error) {
+	var (
+		ordinal uint64
+		err     error
+		base    *net.IPNet
+	)
+
+	base = types.GetIPNetCopy(nw)
+
+	if bitmask.Unselected() <= 0 {
+		return nil, ipamapi.ErrNoAvailableIPs
+	}
+	if ipr == nil && prefAddress == nil {
+		ordinal, err = bitmask.SetAny(serial)
+	} else if prefAddress != nil {
+		hostPart, e := types.GetHostPartIP(prefAddress, base.Mask)
+		if e != nil {
+			return nil, types.InternalErrorf("failed to allocate requested address %s: %v", prefAddress.String(), e)
+		}
+		ordinal = ipToUint64(types.GetMinimalIP(hostPart))
+		err = bitmask.Set(ordinal)
+	} else {
+		ordinal, err = bitmask.SetAnyInRange(ipr.Start, ipr.End, serial)
+	}
+
+	switch err {
+	case nil:
+		// Convert IP ordinal for this subnet into IP address
+		return generateAddress(ordinal, base), nil
+	case bitseq.ErrBitAllocated:
+		return nil, ipamapi.ErrIPAlreadyAllocated
+	case bitseq.ErrNoBitAvailable:
+		return nil, ipamapi.ErrNoAvailableIPs
+	default:
+		return nil, err
+	}
+}
+
+// DumpDatabase dumps the internal info
+func (a *Allocator) DumpDatabase() string {
+	a.Lock()
+	aspaces := make(map[string]*addrSpace, len(a.addrSpaces))
+	orderedAS := make([]string, 0, len(a.addrSpaces))
+	for as, aSpace := range a.addrSpaces {
+		orderedAS = append(orderedAS, as)
+		aspaces[as] = aSpace
+	}
+	a.Unlock()
+
+	sort.Strings(orderedAS)
+
+	var s string
+	for _, as := range orderedAS {
+		aSpace := aspaces[as]
+		s = fmt.Sprintf("\n\n%s Config", as)
+		aSpace.Lock()
+		for k, config := range aSpace.subnets {
+			s += fmt.Sprintf("\n%v: %v", k, config)
+			if config.Range == nil {
+				a.retrieveBitmask(k, config.Pool)
+			}
+		}
+		aSpace.Unlock()
+	}
+
+	s = fmt.Sprintf("%s\n\nBitmasks", s)
+	for k, bm := range a.addresses {
+		s += fmt.Sprintf("\n%s: %s", k, bm)
+	}
+
+	return s
+}
+
+// IsBuiltIn returns true for builtin drivers
+func (a *Allocator) IsBuiltIn() bool {
+	return true
+}
diff --git a/vendor/github.com/docker/libnetwork/ipam/store.go b/vendor/github.com/docker/libnetwork/ipam/store.go
new file mode 100644
index 0000000000..124d585518
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipam/store.go
@@ -0,0 +1,136 @@
+package ipam
+
+import (
+	"encoding/json"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// Key provides the Key to be used in KV Store
+func (aSpace *addrSpace) Key() []string {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+	return []string{aSpace.id}
+}
+
+// KeyPrefix returns the immediate parent key that can be used for tree walk
+func (aSpace *addrSpace) KeyPrefix() []string {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+	return []string{dsConfigKey}
+}
+
+// Value marshals the data to be stored in the KV store
+func (aSpace *addrSpace) Value() []byte {
+	b, err := json.Marshal(aSpace)
+	if err != nil {
+		logrus.Warnf("Failed to marshal ipam configured pools: %v", err)
+		return nil
+	}
+	return b
+}
+
+// SetValue unmarshalls the data from the KV store.
+func (aSpace *addrSpace) SetValue(value []byte) error {
+	rc := &addrSpace{subnets: make(map[SubnetKey]*PoolData)}
+	if err := json.Unmarshal(value, rc); err != nil {
+		return err
+	}
+	aSpace.subnets = rc.subnets
+	return nil
+}
+
+// Index returns the latest DB Index as seen by this object
+func (aSpace *addrSpace) Index() uint64 {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+	return aSpace.dbIndex
+}
+
+// SetIndex method allows the datastore to store the latest DB Index into this object
+func (aSpace *addrSpace) SetIndex(index uint64) {
+	aSpace.Lock()
+	aSpace.dbIndex = index
+	aSpace.dbExists = true
+	aSpace.Unlock()
+}
+
+// Exists method is true if this object has been stored in the DB.
+func (aSpace *addrSpace) Exists() bool {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+	return aSpace.dbExists
+}
+
+// Skip provides a way for a KV Object to avoid persisting it in the KV Store
+func (aSpace *addrSpace) Skip() bool {
+	return false
+}
+
+func (a *Allocator) getStore(as string) datastore.DataStore {
+	a.Lock()
+	defer a.Unlock()
+
+	if aSpace, ok := a.addrSpaces[as]; ok {
+		return aSpace.ds
+	}
+
+	return nil
+}
+
+func (a *Allocator) getAddressSpaceFromStore(as string) (*addrSpace, error) {
+	store := a.getStore(as)
+
+	// IPAM may not have a valid store. In such cases it is just in-memory state.
+	if store == nil {
+		return nil, nil
+	}
+
+	pc := &addrSpace{id: dsConfigKey + "/" + as, ds: store, alloc: a}
+	if err := store.GetObject(datastore.Key(pc.Key()...), pc); err != nil {
+		if err == datastore.ErrKeyNotFound {
+			return nil, nil
+		}
+
+		return nil, types.InternalErrorf("could not get pools config from store: %v", err)
+	}
+
+	return pc, nil
+}
+
+func (a *Allocator) writeToStore(aSpace *addrSpace) error {
+	store := aSpace.store()
+
+	// IPAM may not have a valid store. In such cases it is just in-memory state.
+	if store == nil {
+		return nil
+	}
+
+	err := store.PutObjectAtomic(aSpace)
+	if err == datastore.ErrKeyModified {
+		return types.RetryErrorf("failed to perform atomic write (%v). retry might fix the error", err)
+	}
+
+	return err
+}
+
+func (a *Allocator) deleteFromStore(aSpace *addrSpace) error {
+	store := aSpace.store()
+
+	// IPAM may not have a valid store. In such cases it is just in-memory state.
+	if store == nil {
+		return nil
+	}
+
+	return store.DeleteObjectAtomic(aSpace)
+}
+
+// DataScope method returns the storage scope of the datastore
+func (aSpace *addrSpace) DataScope() string {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	return aSpace.scope
+}
diff --git a/vendor/github.com/docker/libnetwork/ipam/structures.go b/vendor/github.com/docker/libnetwork/ipam/structures.go
new file mode 100644
index 0000000000..09a77695dd
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipam/structures.go
@@ -0,0 +1,362 @@
+package ipam
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+	"strings"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/types"
+)
+
+// SubnetKey is the pointer to the configured pools in each address space
+type SubnetKey struct {
+	AddressSpace string
+	Subnet       string
+	ChildSubnet  string
+}
+
+// PoolData contains the configured pool data
+type PoolData struct {
+	ParentKey SubnetKey
+	Pool      *net.IPNet
+	Range     *AddressRange `json:",omitempty"`
+	RefCount  int
+}
+
+// addrSpace contains the pool configurations for the address space
+type addrSpace struct {
+	subnets  map[SubnetKey]*PoolData
+	dbIndex  uint64
+	dbExists bool
+	id       string
+	scope    string
+	ds       datastore.DataStore
+	alloc    *Allocator
+	sync.Mutex
+}
+
+// AddressRange specifies first and last ip ordinal which
+// identifies a range in a pool of addresses
+type AddressRange struct {
+	Sub        *net.IPNet
+	Start, End uint64
+}
+
+// String returns the string form of the AddressRange object
+func (r *AddressRange) String() string {
+	return fmt.Sprintf("Sub: %s, range [%d, %d]", r.Sub, r.Start, r.End)
+}
+
+// MarshalJSON returns the JSON encoding of the Range object
+func (r *AddressRange) MarshalJSON() ([]byte, error) {
+	m := map[string]interface{}{
+		"Sub":   r.Sub.String(),
+		"Start": r.Start,
+		"End":   r.End,
+	}
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes data into the Range object
+func (r *AddressRange) UnmarshalJSON(data []byte) error {
+	m := map[string]interface{}{}
+	err := json.Unmarshal(data, &m)
+	if err != nil {
+		return err
+	}
+	if r.Sub, err = types.ParseCIDR(m["Sub"].(string)); err != nil {
+		return err
+	}
+	r.Start = uint64(m["Start"].(float64))
+	r.End = uint64(m["End"].(float64))
+	return nil
+}
+
+// String returns the string form of the SubnetKey object
+func (s *SubnetKey) String() string {
+	k := fmt.Sprintf("%s/%s", s.AddressSpace, s.Subnet)
+	if s.ChildSubnet != "" {
+		k = fmt.Sprintf("%s/%s", k, s.ChildSubnet)
+	}
+	return k
+}
+
+// FromString populates the SubnetKey object reading it from string
+func (s *SubnetKey) FromString(str string) error {
+	if str == "" || !strings.Contains(str, "/") {
+		return types.BadRequestErrorf("invalid string form for subnetkey: %s", str)
+	}
+
+	p := strings.Split(str, "/")
+	if len(p) != 3 && len(p) != 5 {
+		return types.BadRequestErrorf("invalid string form for subnetkey: %s", str)
+	}
+	s.AddressSpace = p[0]
+	s.Subnet = fmt.Sprintf("%s/%s", p[1], p[2])
+	if len(p) == 5 {
+		s.ChildSubnet = fmt.Sprintf("%s/%s", p[3], p[4])
+	}
+
+	return nil
+}
+
+// String returns the string form of the PoolData object
+func (p *PoolData) String() string {
+	return fmt.Sprintf("ParentKey: %s, Pool: %s, Range: %s, RefCount: %d",
+		p.ParentKey.String(), p.Pool.String(), p.Range, p.RefCount)
+}
+
+// MarshalJSON returns the JSON encoding of the PoolData object
+func (p *PoolData) MarshalJSON() ([]byte, error) {
+	m := map[string]interface{}{
+		"ParentKey": p.ParentKey,
+		"RefCount":  p.RefCount,
+	}
+	if p.Pool != nil {
+		m["Pool"] = p.Pool.String()
+	}
+	if p.Range != nil {
+		m["Range"] = p.Range
+	}
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes data into the PoolData object
+func (p *PoolData) UnmarshalJSON(data []byte) error {
+	var (
+		err error
+		t   struct {
+			ParentKey SubnetKey
+			Pool      string
+			Range     *AddressRange `json:",omitempty"`
+			RefCount  int
+		}
+	)
+
+	if err = json.Unmarshal(data, &t); err != nil {
+		return err
+	}
+
+	p.ParentKey = t.ParentKey
+	p.Range = t.Range
+	p.RefCount = t.RefCount
+	if t.Pool != "" {
+		if p.Pool, err = types.ParseCIDR(t.Pool); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// MarshalJSON returns the JSON encoding of the addrSpace object
+func (aSpace *addrSpace) MarshalJSON() ([]byte, error) {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	m := map[string]interface{}{
+		"Scope": string(aSpace.scope),
+	}
+
+	if aSpace.subnets != nil {
+		s := map[string]*PoolData{}
+		for k, v := range aSpace.subnets {
+			s[k.String()] = v
+		}
+		m["Subnets"] = s
+	}
+
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes data into the addrSpace object
+func (aSpace *addrSpace) UnmarshalJSON(data []byte) error {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	m := map[string]interface{}{}
+	err := json.Unmarshal(data, &m)
+	if err != nil {
+		return err
+	}
+
+	aSpace.scope = datastore.LocalScope
+	s := m["Scope"].(string)
+	if s == string(datastore.GlobalScope) {
+		aSpace.scope = datastore.GlobalScope
+	}
+
+	if v, ok := m["Subnets"]; ok {
+		sb, _ := json.Marshal(v)
+		var s map[string]*PoolData
+		err := json.Unmarshal(sb, &s)
+		if err != nil {
+			return err
+		}
+		for ks, v := range s {
+			k := SubnetKey{}
+			k.FromString(ks)
+			aSpace.subnets[k] = v
+		}
+	}
+
+	return nil
+}
+
+// CopyTo deep copies the pool data to the destination pooldata
+func (p *PoolData) CopyTo(dstP *PoolData) error {
+	dstP.ParentKey = p.ParentKey
+	dstP.Pool = types.GetIPNetCopy(p.Pool)
+
+	if p.Range != nil {
+		dstP.Range = &AddressRange{}
+		dstP.Range.Sub = types.GetIPNetCopy(p.Range.Sub)
+		dstP.Range.Start = p.Range.Start
+		dstP.Range.End = p.Range.End
+	}
+
+	dstP.RefCount = p.RefCount
+	return nil
+}
+
+func (aSpace *addrSpace) CopyTo(o datastore.KVObject) error {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	dstAspace := o.(*addrSpace)
+
+	dstAspace.id = aSpace.id
+	dstAspace.ds = aSpace.ds
+	dstAspace.alloc = aSpace.alloc
+	dstAspace.scope = aSpace.scope
+	dstAspace.dbIndex = aSpace.dbIndex
+	dstAspace.dbExists = aSpace.dbExists
+
+	dstAspace.subnets = make(map[SubnetKey]*PoolData)
+	for k, v := range aSpace.subnets {
+		dstAspace.subnets[k] = &PoolData{}
+		v.CopyTo(dstAspace.subnets[k])
+	}
+
+	return nil
+}
+
+func (aSpace *addrSpace) New() datastore.KVObject {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	return &addrSpace{
+		id:    aSpace.id,
+		ds:    aSpace.ds,
+		alloc: aSpace.alloc,
+		scope: aSpace.scope,
+	}
+}
+
+func (aSpace *addrSpace) updatePoolDBOnAdd(k SubnetKey, nw *net.IPNet, ipr *AddressRange, pdf bool) (func() error, error) {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	// Check if already allocated
+	if p, ok := aSpace.subnets[k]; ok {
+		if pdf {
+			return nil, types.InternalMaskableErrorf("predefined pool %s is already reserved", nw)
+		}
+		aSpace.incRefCount(p, 1)
+		return func() error { return nil }, nil
+	}
+
+	// If master pool, check for overlap
+	if ipr == nil {
+		if aSpace.contains(k.AddressSpace, nw) {
+			return nil, ipamapi.ErrPoolOverlap
+		}
+		// This is a new master pool, add it along with corresponding bitmask
+		aSpace.subnets[k] = &PoolData{Pool: nw, RefCount: 1}
+		return func() error { return aSpace.alloc.insertBitMask(k, nw) }, nil
+	}
+
+	// This is a new non-master pool
+	p := &PoolData{
+		ParentKey: SubnetKey{AddressSpace: k.AddressSpace, Subnet: k.Subnet},
+		Pool:      nw,
+		Range:     ipr,
+		RefCount:  1,
+	}
+	aSpace.subnets[k] = p
+
+	// Look for parent pool
+	pp, ok := aSpace.subnets[p.ParentKey]
+	if ok {
+		aSpace.incRefCount(pp, 1)
+		return func() error { return nil }, nil
+	}
+
+	// Parent pool does not exist, add it along with corresponding bitmask
+	aSpace.subnets[p.ParentKey] = &PoolData{Pool: nw, RefCount: 1}
+	return func() error { return aSpace.alloc.insertBitMask(p.ParentKey, nw) }, nil
+}
+
+func (aSpace *addrSpace) updatePoolDBOnRemoval(k SubnetKey) (func() error, error) {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	p, ok := aSpace.subnets[k]
+	if !ok {
+		return nil, ipamapi.ErrBadPool
+	}
+
+	aSpace.incRefCount(p, -1)
+
+	c := p
+	for ok {
+		if c.RefCount == 0 {
+			delete(aSpace.subnets, k)
+			if c.Range == nil {
+				return func() error {
+					bm, err := aSpace.alloc.retrieveBitmask(k, c.Pool)
+					if err != nil {
+						return types.InternalErrorf("could not find bitmask in datastore for pool %s removal: %v", k.String(), err)
+					}
+					return bm.Destroy()
+				}, nil
+			}
+		}
+		k = c.ParentKey
+		c, ok = aSpace.subnets[k]
+	}
+
+	return func() error { return nil }, nil
+}
+
+func (aSpace *addrSpace) incRefCount(p *PoolData, delta int) {
+	c := p
+	ok := true
+	for ok {
+		c.RefCount += delta
+		c, ok = aSpace.subnets[c.ParentKey]
+	}
+}
+
+// Checks whether the passed subnet is a superset or subset of any of the subset in this config db
+func (aSpace *addrSpace) contains(space string, nw *net.IPNet) bool {
+	for k, v := range aSpace.subnets {
+		if space == k.AddressSpace && k.ChildSubnet == "" {
+			if nw.Contains(v.Pool.IP) || v.Pool.Contains(nw.IP) {
+				return true
+			}
+		}
+	}
+	return false
+}
+
+func (aSpace *addrSpace) store() datastore.DataStore {
+	aSpace.Lock()
+	defer aSpace.Unlock()
+
+	return aSpace.ds
+}
diff --git a/vendor/github.com/docker/libnetwork/ipam/utils.go b/vendor/github.com/docker/libnetwork/ipam/utils.go
new file mode 100644
index 0000000000..5117c55cc7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipam/utils.go
@@ -0,0 +1,81 @@
+package ipam
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/types"
+)
+
+type ipVersion int
+
+const (
+	v4 = 4
+	v6 = 6
+)
+
+func getAddressRange(pool string, masterNw *net.IPNet) (*AddressRange, error) {
+	ip, nw, err := net.ParseCIDR(pool)
+	if err != nil {
+		return nil, ipamapi.ErrInvalidSubPool
+	}
+	lIP, e := types.GetHostPartIP(nw.IP, masterNw.Mask)
+	if e != nil {
+		return nil, fmt.Errorf("failed to compute range's lowest ip address: %v", e)
+	}
+	bIP, e := types.GetBroadcastIP(nw.IP, nw.Mask)
+	if e != nil {
+		return nil, fmt.Errorf("failed to compute range's broadcast ip address: %v", e)
+	}
+	hIP, e := types.GetHostPartIP(bIP, masterNw.Mask)
+	if e != nil {
+		return nil, fmt.Errorf("failed to compute range's highest ip address: %v", e)
+	}
+	nw.IP = ip
+	return &AddressRange{nw, ipToUint64(types.GetMinimalIP(lIP)), ipToUint64(types.GetMinimalIP(hIP))}, nil
+}
+
+// It generates the ip address in the passed subnet specified by
+// the passed host address ordinal
+func generateAddress(ordinal uint64, network *net.IPNet) net.IP {
+	var address [16]byte
+
+	// Get network portion of IP
+	if getAddressVersion(network.IP) == v4 {
+		copy(address[:], network.IP.To4())
+	} else {
+		copy(address[:], network.IP)
+	}
+
+	end := len(network.Mask)
+	addIntToIP(address[:end], ordinal)
+
+	return net.IP(address[:end])
+}
+
+func getAddressVersion(ip net.IP) ipVersion {
+	if ip.To4() == nil {
+		return v6
+	}
+	return v4
+}
+
+// Adds the ordinal IP to the current array
+// 192.168.0.0 + 53 => 192.168.0.53
+func addIntToIP(array []byte, ordinal uint64) {
+	for i := len(array) - 1; i >= 0; i-- {
+		array[i] |= (byte)(ordinal & 0xff)
+		ordinal >>= 8
+	}
+}
+
+// Convert an ordinal to the respective IP address
+func ipToUint64(ip []byte) (value uint64) {
+	cip := types.GetMinimalIP(ip)
+	for i := 0; i < len(cip); i++ {
+		j := len(cip) - 1 - i
+		value += uint64(cip[i]) << uint(j*8)
+	}
+	return value
+}
diff --git a/vendor/github.com/docker/libnetwork/ipamapi/contract.go b/vendor/github.com/docker/libnetwork/ipamapi/contract.go
new file mode 100644
index 0000000000..7f967863d8
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipamapi/contract.go
@@ -0,0 +1,96 @@
+// Package ipamapi specifies the contract the IPAM service (built-in or remote) needs to satisfy.
+package ipamapi
+
+import (
+	"net"
+
+	"github.com/docker/docker/pkg/plugingetter"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/types"
+)
+
+/********************
+ * IPAM plugin types
+ ********************/
+
+const (
+	// DefaultIPAM is the name of the built-in default ipam driver
+	DefaultIPAM = "default"
+	// NullIPAM is the name of the built-in null ipam driver
+	NullIPAM = "null"
+	// PluginEndpointType represents the Endpoint Type used by Plugin system
+	PluginEndpointType = "IpamDriver"
+	// RequestAddressType represents the Address Type used when requesting an address
+	RequestAddressType = "RequestAddressType"
+)
+
+// Callback provides a Callback interface for registering an IPAM instance into LibNetwork
+type Callback interface {
+	// GetPluginGetter returns the pluginv2 getter.
+	GetPluginGetter() plugingetter.PluginGetter
+	// RegisterIpamDriver provides a way for Remote drivers to dynamically register with libnetwork
+	RegisterIpamDriver(name string, driver Ipam) error
+	// RegisterIpamDriverWithCapabilities provides a way for Remote drivers to dynamically register with libnetwork and specify capabilities
+	RegisterIpamDriverWithCapabilities(name string, driver Ipam, capability *Capability) error
+}
+
+/**************
+ * IPAM Errors
+ **************/
+
+// Well-known errors returned by IPAM
+var (
+	ErrIpamInternalError   = types.InternalErrorf("IPAM Internal Error")
+	ErrInvalidAddressSpace = types.BadRequestErrorf("Invalid Address Space")
+	ErrInvalidPool         = types.BadRequestErrorf("Invalid Address Pool")
+	ErrInvalidSubPool      = types.BadRequestErrorf("Invalid Address SubPool")
+	ErrInvalidRequest      = types.BadRequestErrorf("Invalid Request")
+	ErrPoolNotFound        = types.BadRequestErrorf("Address Pool not found")
+	ErrOverlapPool         = types.ForbiddenErrorf("Address pool overlaps with existing pool on this address space")
+	ErrNoAvailablePool     = types.NoServiceErrorf("No available pool")
+	ErrNoAvailableIPs      = types.NoServiceErrorf("No available addresses on this pool")
+	ErrNoIPReturned        = types.NoServiceErrorf("No address returned")
+	ErrIPAlreadyAllocated  = types.ForbiddenErrorf("Address already in use")
+	ErrIPOutOfRange        = types.BadRequestErrorf("Requested address is out of range")
+	ErrPoolOverlap         = types.ForbiddenErrorf("Pool overlaps with other one on this address space")
+	ErrBadPool             = types.BadRequestErrorf("Address space does not contain specified address pool")
+)
+
+/*******************************
+ * IPAM Service Interface
+ *******************************/
+
+// Ipam represents the interface the IPAM service plugins must implement
+// in order to allow injection/modification of IPAM database.
+type Ipam interface {
+	discoverapi.Discover
+
+	// GetDefaultAddressSpaces returns the default local and global address spaces for this ipam
+	GetDefaultAddressSpaces() (string, string, error)
+	// RequestPool returns an address pool along with its unique id. Address space is a mandatory field
+	// which denotes a set of non-overlapping pools. pool describes the pool of addresses in CIDR notation.
+	// subpool indicates a smaller range of addresses from the pool, for now it is specified in CIDR notation.
+	// Both pool and subpool are non mandatory fields. When they are not specified, Ipam driver may choose to
+	// return a self chosen pool for this request. In such case the v6 flag needs to be set appropriately so
+	// that the driver would return the expected ip version pool.
+	RequestPool(addressSpace, pool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error)
+	// ReleasePool releases the address pool identified by the passed id
+	ReleasePool(poolID string) error
+	// Request address from the specified pool ID. Input options or required IP can be passed.
+	RequestAddress(string, net.IP, map[string]string) (*net.IPNet, map[string]string, error)
+	// Release the address from the specified pool ID
+	ReleaseAddress(string, net.IP) error
+
+	//IsBuiltIn returns true if it is a built-in driver.
+	IsBuiltIn() bool
+}
+
+// Capability represents the requirements and capabilities of the IPAM driver
+type Capability struct {
+	// Whether on address request, libnetwork must
+	// specify the endpoint MAC address
+	RequiresMACAddress bool
+	// Whether of daemon start, libnetwork must replay the pool
+	// request and the address request for current local networks
+	RequiresRequestReplay bool
+}
diff --git a/vendor/github.com/docker/libnetwork/ipamapi/labels.go b/vendor/github.com/docker/libnetwork/ipamapi/labels.go
new file mode 100644
index 0000000000..e5c7d1cc7e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipamapi/labels.go
@@ -0,0 +1,10 @@
+package ipamapi
+
+const (
+	// Prefix constant marks the reserved label space for libnetwork
+	Prefix = "com.docker.network"
+
+	// AllocSerialPrefix constant marks the reserved label space for libnetwork ipam
+	// allocation ordering.(serial/first available)
+	AllocSerialPrefix = Prefix + ".ipam.serial"
+)
diff --git a/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_unix.go b/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_unix.go
new file mode 100644
index 0000000000..0ab861d170
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_unix.go
@@ -0,0 +1,58 @@
+// +build linux freebsd darwin
+
+package builtin
+
+import (
+	"errors"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/ipam"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/ipamutils"
+)
+
+var (
+	// defaultAddressPool Stores user configured subnet list
+	defaultAddressPool []*ipamutils.NetworkToSplit
+)
+
+// Init registers the built-in ipam service with libnetwork
+func Init(ic ipamapi.Callback, l, g interface{}) error {
+	var (
+		ok                bool
+		localDs, globalDs datastore.DataStore
+	)
+
+	if l != nil {
+		if localDs, ok = l.(datastore.DataStore); !ok {
+			return errors.New("incorrect local datastore passed to built-in ipam init")
+		}
+	}
+
+	if g != nil {
+		if globalDs, ok = g.(datastore.DataStore); !ok {
+			return errors.New("incorrect global datastore passed to built-in ipam init")
+		}
+	}
+
+	ipamutils.InitNetworks(GetDefaultIPAddressPool())
+
+	a, err := ipam.NewAllocator(localDs, globalDs)
+	if err != nil {
+		return err
+	}
+
+	cps := &ipamapi.Capability{RequiresRequestReplay: true}
+
+	return ic.RegisterIpamDriverWithCapabilities(ipamapi.DefaultIPAM, a, cps)
+}
+
+// SetDefaultIPAddressPool stores default address pool.
+func SetDefaultIPAddressPool(addressPool []*ipamutils.NetworkToSplit) {
+	defaultAddressPool = addressPool
+}
+
+// GetDefaultIPAddressPool returns default address pool.
+func GetDefaultIPAddressPool() []*ipamutils.NetworkToSplit {
+	return defaultAddressPool
+}
diff --git a/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_windows.go b/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_windows.go
new file mode 100644
index 0000000000..e994595658
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/builtin/builtin_windows.go
@@ -0,0 +1,72 @@
+// +build windows
+
+package builtin
+
+import (
+	"errors"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/ipam"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/ipamutils"
+
+	windowsipam "github.com/docker/libnetwork/ipams/windowsipam"
+)
+
+var (
+	// defaultAddressPool Stores user configured subnet list
+	defaultAddressPool []*ipamutils.NetworkToSplit
+)
+
+// InitDockerDefault registers the built-in ipam service with libnetwork
+func InitDockerDefault(ic ipamapi.Callback, l, g interface{}) error {
+	var (
+		ok                bool
+		localDs, globalDs datastore.DataStore
+	)
+
+	if l != nil {
+		if localDs, ok = l.(datastore.DataStore); !ok {
+			return errors.New("incorrect local datastore passed to built-in ipam init")
+		}
+	}
+
+	if g != nil {
+		if globalDs, ok = g.(datastore.DataStore); !ok {
+			return errors.New("incorrect global datastore passed to built-in ipam init")
+		}
+	}
+
+	ipamutils.InitNetworks(nil)
+
+	a, err := ipam.NewAllocator(localDs, globalDs)
+	if err != nil {
+		return err
+	}
+
+	cps := &ipamapi.Capability{RequiresRequestReplay: true}
+
+	return ic.RegisterIpamDriverWithCapabilities(ipamapi.DefaultIPAM, a, cps)
+}
+
+// Init registers the built-in ipam service with libnetwork
+func Init(ic ipamapi.Callback, l, g interface{}) error {
+	initFunc := windowsipam.GetInit(windowsipam.DefaultIPAM)
+
+	err := InitDockerDefault(ic, l, g)
+	if err != nil {
+		return err
+	}
+
+	return initFunc(ic, l, g)
+}
+
+// SetDefaultIPAddressPool stores default address pool .
+func SetDefaultIPAddressPool(addressPool []*ipamutils.NetworkToSplit) {
+	defaultAddressPool = addressPool
+}
+
+// GetDefaultIPAddressPool returns default address pool .
+func GetDefaultIPAddressPool() []*ipamutils.NetworkToSplit {
+	return defaultAddressPool
+}
diff --git a/vendor/github.com/docker/libnetwork/ipams/null/null.go b/vendor/github.com/docker/libnetwork/ipams/null/null.go
new file mode 100644
index 0000000000..339b5308d1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/null/null.go
@@ -0,0 +1,75 @@
+// Package null implements the null ipam driver. Null ipam driver satisfies ipamapi contract,
+// but does not effectively reserve/allocate any address pool or address
+package null
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/types"
+)
+
+var (
+	defaultAS      = "null"
+	defaultPool, _ = types.ParseCIDR("0.0.0.0/0")
+	defaultPoolID  = fmt.Sprintf("%s/%s", defaultAS, defaultPool.String())
+)
+
+type allocator struct{}
+
+func (a *allocator) GetDefaultAddressSpaces() (string, string, error) {
+	return defaultAS, defaultAS, nil
+}
+
+func (a *allocator) RequestPool(addressSpace, pool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error) {
+	if addressSpace != defaultAS {
+		return "", nil, nil, types.BadRequestErrorf("unknown address space: %s", addressSpace)
+	}
+	if pool != "" {
+		return "", nil, nil, types.BadRequestErrorf("null ipam driver does not handle specific address pool requests")
+	}
+	if subPool != "" {
+		return "", nil, nil, types.BadRequestErrorf("null ipam driver does not handle specific address subpool requests")
+	}
+	if v6 {
+		return "", nil, nil, types.BadRequestErrorf("null ipam driver does not handle IPv6 address pool pool requests")
+	}
+	return defaultPoolID, defaultPool, nil, nil
+}
+
+func (a *allocator) ReleasePool(poolID string) error {
+	return nil
+}
+
+func (a *allocator) RequestAddress(poolID string, ip net.IP, opts map[string]string) (*net.IPNet, map[string]string, error) {
+	if poolID != defaultPoolID {
+		return nil, nil, types.BadRequestErrorf("unknown pool id: %s", poolID)
+	}
+	return nil, nil, nil
+}
+
+func (a *allocator) ReleaseAddress(poolID string, ip net.IP) error {
+	if poolID != defaultPoolID {
+		return types.BadRequestErrorf("unknown pool id: %s", poolID)
+	}
+	return nil
+}
+
+func (a *allocator) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (a *allocator) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (a *allocator) IsBuiltIn() bool {
+	return true
+}
+
+// Init registers a remote ipam when its plugin is activated
+func Init(ic ipamapi.Callback, l, g interface{}) error {
+	return ic.RegisterIpamDriver(ipamapi.NullIPAM, &allocator{})
+}
diff --git a/vendor/github.com/docker/libnetwork/ipams/remote/api/api.go b/vendor/github.com/docker/libnetwork/ipams/remote/api/api.go
new file mode 100644
index 0000000000..543c99bb00
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/remote/api/api.go
@@ -0,0 +1,94 @@
+// Package api defines the data structure to be used in the request/response
+// messages between libnetwork and the remote ipam plugin
+package api
+
+import "github.com/docker/libnetwork/ipamapi"
+
+// Response is the basic response structure used in all responses
+type Response struct {
+	Error string
+}
+
+// IsSuccess returns whether the plugin response is successful
+func (r *Response) IsSuccess() bool {
+	return r.Error == ""
+}
+
+// GetError returns the error from the response, if any.
+func (r *Response) GetError() string {
+	return r.Error
+}
+
+// GetCapabilityResponse is the response of GetCapability request
+type GetCapabilityResponse struct {
+	Response
+	RequiresMACAddress    bool
+	RequiresRequestReplay bool
+}
+
+// ToCapability converts the capability response into the internal ipam driver capability structure
+func (capRes GetCapabilityResponse) ToCapability() *ipamapi.Capability {
+	return &ipamapi.Capability{
+		RequiresMACAddress:    capRes.RequiresMACAddress,
+		RequiresRequestReplay: capRes.RequiresRequestReplay,
+	}
+}
+
+// GetAddressSpacesResponse is the response to the ``get default address spaces`` request message
+type GetAddressSpacesResponse struct {
+	Response
+	LocalDefaultAddressSpace  string
+	GlobalDefaultAddressSpace string
+}
+
+// RequestPoolRequest represents the expected data in a ``request address pool`` request message
+type RequestPoolRequest struct {
+	AddressSpace string
+	Pool         string
+	SubPool      string
+	Options      map[string]string
+	V6           bool
+}
+
+// RequestPoolResponse represents the response message to a ``request address pool`` request
+type RequestPoolResponse struct {
+	Response
+	PoolID string
+	Pool   string // CIDR format
+	Data   map[string]string
+}
+
+// ReleasePoolRequest represents the expected data in a ``release address pool`` request message
+type ReleasePoolRequest struct {
+	PoolID string
+}
+
+// ReleasePoolResponse represents the response message to a ``release address pool`` request
+type ReleasePoolResponse struct {
+	Response
+}
+
+// RequestAddressRequest represents the expected data in a ``request address`` request message
+type RequestAddressRequest struct {
+	PoolID  string
+	Address string
+	Options map[string]string
+}
+
+// RequestAddressResponse represents the expected data in the response message to a ``request address`` request
+type RequestAddressResponse struct {
+	Response
+	Address string // in CIDR format
+	Data    map[string]string
+}
+
+// ReleaseAddressRequest represents the expected data in a ``release address`` request message
+type ReleaseAddressRequest struct {
+	PoolID  string
+	Address string
+}
+
+// ReleaseAddressResponse represents the response message to a ``release address`` request
+type ReleaseAddressResponse struct {
+	Response
+}
diff --git a/vendor/github.com/docker/libnetwork/ipams/remote/remote.go b/vendor/github.com/docker/libnetwork/ipams/remote/remote.go
new file mode 100644
index 0000000000..9f2f1d5fed
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/remote/remote.go
@@ -0,0 +1,155 @@
+package remote
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/docker/pkg/plugins"
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/ipams/remote/api"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+type allocator struct {
+	endpoint *plugins.Client
+	name     string
+}
+
+// PluginResponse is the interface for the plugin request responses
+type PluginResponse interface {
+	IsSuccess() bool
+	GetError() string
+}
+
+func newAllocator(name string, client *plugins.Client) ipamapi.Ipam {
+	a := &allocator{name: name, endpoint: client}
+	return a
+}
+
+// Init registers a remote ipam when its plugin is activated
+func Init(cb ipamapi.Callback, l, g interface{}) error {
+
+	newPluginHandler := func(name string, client *plugins.Client) {
+		a := newAllocator(name, client)
+		if cps, err := a.(*allocator).getCapabilities(); err == nil {
+			if err := cb.RegisterIpamDriverWithCapabilities(name, a, cps); err != nil {
+				logrus.Errorf("error registering remote ipam driver %s due to %v", name, err)
+			}
+		} else {
+			logrus.Infof("remote ipam driver %s does not support capabilities", name)
+			logrus.Debug(err)
+			if err := cb.RegisterIpamDriver(name, a); err != nil {
+				logrus.Errorf("error registering remote ipam driver %s due to %v", name, err)
+			}
+		}
+	}
+
+	// Unit test code is unaware of a true PluginStore. So we fall back to v1 plugins.
+	handleFunc := plugins.Handle
+	if pg := cb.GetPluginGetter(); pg != nil {
+		handleFunc = pg.Handle
+		activePlugins := pg.GetAllManagedPluginsByCap(ipamapi.PluginEndpointType)
+		for _, ap := range activePlugins {
+			newPluginHandler(ap.Name(), ap.Client())
+		}
+	}
+	handleFunc(ipamapi.PluginEndpointType, newPluginHandler)
+	return nil
+}
+
+func (a *allocator) call(methodName string, arg interface{}, retVal PluginResponse) error {
+	method := ipamapi.PluginEndpointType + "." + methodName
+	err := a.endpoint.Call(method, arg, retVal)
+	if err != nil {
+		return err
+	}
+	if !retVal.IsSuccess() {
+		return fmt.Errorf("remote: %s", retVal.GetError())
+	}
+	return nil
+}
+
+func (a *allocator) getCapabilities() (*ipamapi.Capability, error) {
+	var res api.GetCapabilityResponse
+	if err := a.call("GetCapabilities", nil, &res); err != nil {
+		return nil, err
+	}
+	return res.ToCapability(), nil
+}
+
+// GetDefaultAddressSpaces returns the local and global default address spaces
+func (a *allocator) GetDefaultAddressSpaces() (string, string, error) {
+	res := &api.GetAddressSpacesResponse{}
+	if err := a.call("GetDefaultAddressSpaces", nil, res); err != nil {
+		return "", "", err
+	}
+	return res.LocalDefaultAddressSpace, res.GlobalDefaultAddressSpace, nil
+}
+
+// RequestPool requests an address pool in the specified address space
+func (a *allocator) RequestPool(addressSpace, pool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error) {
+	req := &api.RequestPoolRequest{AddressSpace: addressSpace, Pool: pool, SubPool: subPool, Options: options, V6: v6}
+	res := &api.RequestPoolResponse{}
+	if err := a.call("RequestPool", req, res); err != nil {
+		return "", nil, nil, err
+	}
+	retPool, err := types.ParseCIDR(res.Pool)
+	return res.PoolID, retPool, res.Data, err
+}
+
+// ReleasePool removes an address pool from the specified address space
+func (a *allocator) ReleasePool(poolID string) error {
+	req := &api.ReleasePoolRequest{PoolID: poolID}
+	res := &api.ReleasePoolResponse{}
+	return a.call("ReleasePool", req, res)
+}
+
+// RequestAddress requests an address from the address pool
+func (a *allocator) RequestAddress(poolID string, address net.IP, options map[string]string) (*net.IPNet, map[string]string, error) {
+	var (
+		prefAddress string
+		retAddress  *net.IPNet
+		err         error
+	)
+	if address != nil {
+		prefAddress = address.String()
+	}
+	req := &api.RequestAddressRequest{PoolID: poolID, Address: prefAddress, Options: options}
+	res := &api.RequestAddressResponse{}
+	if err := a.call("RequestAddress", req, res); err != nil {
+		return nil, nil, err
+	}
+	if res.Address != "" {
+		retAddress, err = types.ParseCIDR(res.Address)
+	} else {
+		return nil, nil, ipamapi.ErrNoIPReturned
+	}
+	return retAddress, res.Data, err
+}
+
+// ReleaseAddress releases the address from the specified address pool
+func (a *allocator) ReleaseAddress(poolID string, address net.IP) error {
+	var relAddress string
+	if address != nil {
+		relAddress = address.String()
+	}
+	req := &api.ReleaseAddressRequest{PoolID: poolID, Address: relAddress}
+	res := &api.ReleaseAddressResponse{}
+	return a.call("ReleaseAddress", req, res)
+}
+
+// DiscoverNew is a notification for a new discovery event, such as a new global datastore
+func (a *allocator) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification for a discovery delete event, such as a node leaving a cluster
+func (a *allocator) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (a *allocator) IsBuiltIn() bool {
+	return false
+}
diff --git a/vendor/github.com/docker/libnetwork/ipams/windowsipam/windowsipam.go b/vendor/github.com/docker/libnetwork/ipams/windowsipam/windowsipam.go
new file mode 100644
index 0000000000..5c7b1f5411
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipams/windowsipam/windowsipam.go
@@ -0,0 +1,102 @@
+package windowsipam
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/discoverapi"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	localAddressSpace  = "LocalDefault"
+	globalAddressSpace = "GlobalDefault"
+)
+
+// DefaultIPAM defines the default ipam-driver for local-scoped windows networks
+const DefaultIPAM = "windows"
+
+var (
+	defaultPool, _ = types.ParseCIDR("0.0.0.0/0")
+)
+
+type allocator struct {
+}
+
+// GetInit registers the built-in ipam service with libnetwork
+func GetInit(ipamName string) func(ic ipamapi.Callback, l, g interface{}) error {
+	return func(ic ipamapi.Callback, l, g interface{}) error {
+		return ic.RegisterIpamDriver(ipamName, &allocator{})
+	}
+}
+
+func (a *allocator) GetDefaultAddressSpaces() (string, string, error) {
+	return localAddressSpace, globalAddressSpace, nil
+}
+
+// RequestPool returns an address pool along with its unique id. This is a null ipam driver. It allocates the
+// subnet user asked and does not validate anything. Doesn't support subpool allocation
+func (a *allocator) RequestPool(addressSpace, pool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error) {
+	logrus.Debugf("RequestPool(%s, %s, %s, %v, %t)", addressSpace, pool, subPool, options, v6)
+	if subPool != "" || v6 {
+		return "", nil, nil, types.InternalErrorf("This request is not supported by null ipam driver")
+	}
+
+	var ipNet *net.IPNet
+	var err error
+
+	if pool != "" {
+		_, ipNet, err = net.ParseCIDR(pool)
+		if err != nil {
+			return "", nil, nil, err
+		}
+	} else {
+		ipNet = defaultPool
+	}
+
+	return ipNet.String(), ipNet, nil, nil
+}
+
+// ReleasePool releases the address pool - always succeeds
+func (a *allocator) ReleasePool(poolID string) error {
+	logrus.Debugf("ReleasePool(%s)", poolID)
+	return nil
+}
+
+// RequestAddress returns an address from the specified pool ID.
+// Always allocate the 0.0.0.0/32 ip if no preferred address was specified
+func (a *allocator) RequestAddress(poolID string, prefAddress net.IP, opts map[string]string) (*net.IPNet, map[string]string, error) {
+	logrus.Debugf("RequestAddress(%s, %v, %v)", poolID, prefAddress, opts)
+	_, ipNet, err := net.ParseCIDR(poolID)
+
+	if err != nil {
+		return nil, nil, err
+	}
+
+	if prefAddress != nil {
+		return &net.IPNet{IP: prefAddress, Mask: ipNet.Mask}, nil, nil
+	}
+
+	return nil, nil, nil
+}
+
+// ReleaseAddress releases the address - always succeeds
+func (a *allocator) ReleaseAddress(poolID string, address net.IP) error {
+	logrus.Debugf("ReleaseAddress(%s, %v)", poolID, address)
+	return nil
+}
+
+// DiscoverNew informs the allocator about a new global scope datastore
+func (a *allocator) DiscoverNew(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+// DiscoverDelete is a notification of no interest for the allocator
+func (a *allocator) DiscoverDelete(dType discoverapi.DiscoveryType, data interface{}) error {
+	return nil
+}
+
+func (a *allocator) IsBuiltIn() bool {
+	return true
+}
diff --git a/vendor/github.com/docker/libnetwork/ipamutils/utils.go b/vendor/github.com/docker/libnetwork/ipamutils/utils.go
new file mode 100644
index 0000000000..f8eca58e8c
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipamutils/utils.go
@@ -0,0 +1,96 @@
+// Package ipamutils provides utility functions for ipam management
+package ipamutils
+
+import (
+	"fmt"
+	"net"
+	"sync"
+
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// PredefinedBroadNetworks contains a list of 31 IPv4 private networks with host size 16 and 12
+	// (172.17-31.x.x/16, 192.168.x.x/20) which do not overlap with the networks in `PredefinedGranularNetworks`
+	PredefinedBroadNetworks []*net.IPNet
+	// PredefinedGranularNetworks contains a list of 64K IPv4 private networks with host size 8
+	// (10.x.x.x/24) which do not overlap with the networks in `PredefinedBroadNetworks`
+	PredefinedGranularNetworks []*net.IPNet
+	initNetworksOnce           sync.Once
+
+	defaultBroadNetwork = []*NetworkToSplit{{"172.17.0.0/16", 16}, {"172.18.0.0/16", 16}, {"172.19.0.0/16", 16},
+		{"172.20.0.0/14", 16}, {"172.24.0.0/14", 16}, {"172.28.0.0/14", 16},
+		{"192.168.0.0/16", 20}}
+	defaultGranularNetwork = []*NetworkToSplit{{"10.0.0.0/8", 24}}
+)
+
+// NetworkToSplit represent a network that has to be split in chunks with mask length Size.
+// Each subnet in the set is derived from the Base pool. Base is to be passed
+// in CIDR format.
+// Example: a Base "10.10.0.0/16 with Size 24 will define the set of 256
+// 10.10.[0-255].0/24 address pools
+type NetworkToSplit struct {
+	Base string `json:"base"`
+	Size int    `json:"size"`
+}
+
+// InitNetworks initializes the broad network pool and the granular network pool
+func InitNetworks(defaultAddressPool []*NetworkToSplit) {
+	initNetworksOnce.Do(func() {
+		// error ingnored should never fail
+		PredefinedGranularNetworks, _ = splitNetworks(defaultGranularNetwork)
+		if defaultAddressPool == nil {
+			defaultAddressPool = defaultBroadNetwork
+		}
+		var err error
+		if PredefinedBroadNetworks, err = splitNetworks(defaultAddressPool); err != nil {
+			logrus.WithError(err).Error("InitAddressPools failed to initialize the default address pool")
+		}
+	})
+}
+
+// splitNetworks takes a slice of networks, split them accordingly and returns them
+func splitNetworks(list []*NetworkToSplit) ([]*net.IPNet, error) {
+	localPools := make([]*net.IPNet, 0, len(list))
+
+	for _, p := range list {
+		_, b, err := net.ParseCIDR(p.Base)
+		if err != nil {
+			return nil, fmt.Errorf("invalid base pool %q: %v", p.Base, err)
+		}
+		ones, _ := b.Mask.Size()
+		if p.Size <= 0 || p.Size < ones {
+			return nil, fmt.Errorf("invalid pools size: %d", p.Size)
+		}
+		localPools = append(localPools, splitNetwork(p.Size, b)...)
+	}
+	return localPools, nil
+}
+
+func splitNetwork(size int, base *net.IPNet) []*net.IPNet {
+	one, bits := base.Mask.Size()
+	mask := net.CIDRMask(size, bits)
+	n := 1 << uint(size-one)
+	s := uint(bits - size)
+	list := make([]*net.IPNet, 0, n)
+
+	for i := 0; i < n; i++ {
+		ip := copyIP(base.IP)
+		addIntToIP(ip, uint(i<<s))
+		list = append(list, &net.IPNet{IP: ip, Mask: mask})
+	}
+	return list
+}
+
+func copyIP(from net.IP) net.IP {
+	ip := make([]byte, len(from))
+	copy(ip, from)
+	return ip
+}
+
+func addIntToIP(array net.IP, ordinal uint) {
+	for i := len(array) - 1; i >= 0; i-- {
+		array[i] |= (byte)(ordinal & 0xff)
+		ordinal >>= 8
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/iptables/conntrack.go b/vendor/github.com/docker/libnetwork/iptables/conntrack.go
new file mode 100644
index 0000000000..08317c33ee
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/iptables/conntrack.go
@@ -0,0 +1,59 @@
+package iptables
+
+import (
+	"errors"
+	"net"
+	"syscall"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+var (
+	// ErrConntrackNotConfigurable means that conntrack module is not loaded or does not have the netlink module loaded
+	ErrConntrackNotConfigurable = errors.New("conntrack is not available")
+)
+
+// IsConntrackProgrammable returns true if the handle supports the NETLINK_NETFILTER and the base modules are loaded
+func IsConntrackProgrammable(nlh *netlink.Handle) bool {
+	return nlh.SupportsNetlinkFamily(syscall.NETLINK_NETFILTER)
+}
+
+// DeleteConntrackEntries deletes all the conntrack connections on the host for the specified IP
+// Returns the number of flows deleted for IPv4, IPv6 else error
+func DeleteConntrackEntries(nlh *netlink.Handle, ipv4List []net.IP, ipv6List []net.IP) (uint, uint, error) {
+	if !IsConntrackProgrammable(nlh) {
+		return 0, 0, ErrConntrackNotConfigurable
+	}
+
+	var totalIPv4FlowPurged uint
+	for _, ipAddress := range ipv4List {
+		flowPurged, err := purgeConntrackState(nlh, syscall.AF_INET, ipAddress)
+		if err != nil {
+			logrus.Warnf("Failed to delete conntrack state for %s: %v", ipAddress, err)
+			continue
+		}
+		totalIPv4FlowPurged += flowPurged
+	}
+
+	var totalIPv6FlowPurged uint
+	for _, ipAddress := range ipv6List {
+		flowPurged, err := purgeConntrackState(nlh, syscall.AF_INET6, ipAddress)
+		if err != nil {
+			logrus.Warnf("Failed to delete conntrack state for %s: %v", ipAddress, err)
+			continue
+		}
+		totalIPv6FlowPurged += flowPurged
+	}
+
+	logrus.Debugf("DeleteConntrackEntries purged ipv4:%d, ipv6:%d", totalIPv4FlowPurged, totalIPv6FlowPurged)
+	return totalIPv4FlowPurged, totalIPv6FlowPurged, nil
+}
+
+func purgeConntrackState(nlh *netlink.Handle, family netlink.InetFamily, ipAddress net.IP) (uint, error) {
+	filter := &netlink.ConntrackFilter{}
+	// NOTE: doing the flush using the ipAddress is safe because today there cannot be multiple networks with the same subnet
+	// so it will not be possible to flush flows that are of other containers
+	filter.AddIP(netlink.ConntrackNatAnyIP, ipAddress)
+	return nlh.ConntrackDeleteFilter(netlink.ConntrackTable, family, filter)
+}
diff --git a/vendor/github.com/docker/libnetwork/iptables/firewalld.go b/vendor/github.com/docker/libnetwork/iptables/firewalld.go
new file mode 100644
index 0000000000..c9838d5b65
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/iptables/firewalld.go
@@ -0,0 +1,167 @@
+package iptables
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/godbus/dbus"
+	"github.com/sirupsen/logrus"
+)
+
+// IPV defines the table string
+type IPV string
+
+const (
+	// Iptables point ipv4 table
+	Iptables IPV = "ipv4"
+	// IP6Tables point to ipv6 table
+	IP6Tables IPV = "ipv6"
+	// Ebtables point to bridge table
+	Ebtables IPV = "eb"
+)
+const (
+	dbusInterface = "org.fedoraproject.FirewallD1"
+	dbusPath      = "/org/fedoraproject/FirewallD1"
+)
+
+// Conn is a connection to firewalld dbus endpoint.
+type Conn struct {
+	sysconn *dbus.Conn
+	sysobj  dbus.BusObject
+	signal  chan *dbus.Signal
+}
+
+var (
+	connection       *Conn
+	firewalldRunning bool      // is Firewalld service running
+	onReloaded       []*func() // callbacks when Firewalld has been reloaded
+)
+
+// FirewalldInit initializes firewalld management code.
+func FirewalldInit() error {
+	var err error
+
+	if connection, err = newConnection(); err != nil {
+		return fmt.Errorf("Failed to connect to D-Bus system bus: %v", err)
+	}
+	firewalldRunning = checkRunning()
+	if !firewalldRunning {
+		connection.sysconn.Close()
+		connection = nil
+	}
+	if connection != nil {
+		go signalHandler()
+	}
+
+	return nil
+}
+
+// New() establishes a connection to the system bus.
+func newConnection() (*Conn, error) {
+	c := new(Conn)
+	if err := c.initConnection(); err != nil {
+		return nil, err
+	}
+
+	return c, nil
+}
+
+// Innitialize D-Bus connection.
+func (c *Conn) initConnection() error {
+	var err error
+
+	c.sysconn, err = dbus.SystemBus()
+	if err != nil {
+		return err
+	}
+
+	// This never fails, even if the service is not running atm.
+	c.sysobj = c.sysconn.Object(dbusInterface, dbus.ObjectPath(dbusPath))
+
+	rule := fmt.Sprintf("type='signal',path='%s',interface='%s',sender='%s',member='Reloaded'",
+		dbusPath, dbusInterface, dbusInterface)
+	c.sysconn.BusObject().Call("org.freedesktop.DBus.AddMatch", 0, rule)
+
+	rule = fmt.Sprintf("type='signal',interface='org.freedesktop.DBus',member='NameOwnerChanged',path='/org/freedesktop/DBus',sender='org.freedesktop.DBus',arg0='%s'",
+		dbusInterface)
+	c.sysconn.BusObject().Call("org.freedesktop.DBus.AddMatch", 0, rule)
+
+	c.signal = make(chan *dbus.Signal, 10)
+	c.sysconn.Signal(c.signal)
+
+	return nil
+}
+
+func signalHandler() {
+	for signal := range connection.signal {
+		if strings.Contains(signal.Name, "NameOwnerChanged") {
+			firewalldRunning = checkRunning()
+			dbusConnectionChanged(signal.Body)
+		} else if strings.Contains(signal.Name, "Reloaded") {
+			reloaded()
+		}
+	}
+}
+
+func dbusConnectionChanged(args []interface{}) {
+	name := args[0].(string)
+	oldOwner := args[1].(string)
+	newOwner := args[2].(string)
+
+	if name != dbusInterface {
+		return
+	}
+
+	if len(newOwner) > 0 {
+		connectionEstablished()
+	} else if len(oldOwner) > 0 {
+		connectionLost()
+	}
+}
+
+func connectionEstablished() {
+	reloaded()
+}
+
+func connectionLost() {
+	// Doesn't do anything for now. Libvirt also doesn't react to this.
+}
+
+// call all callbacks
+func reloaded() {
+	for _, pf := range onReloaded {
+		(*pf)()
+	}
+}
+
+// OnReloaded add callback
+func OnReloaded(callback func()) {
+	for _, pf := range onReloaded {
+		if pf == &callback {
+			return
+		}
+	}
+	onReloaded = append(onReloaded, &callback)
+}
+
+// Call some remote method to see whether the service is actually running.
+func checkRunning() bool {
+	var zone string
+	var err error
+
+	if connection != nil {
+		err = connection.sysobj.Call(dbusInterface+".getDefaultZone", 0).Store(&zone)
+		return err == nil
+	}
+	return false
+}
+
+// Passthrough method simply passes args through to iptables/ip6tables
+func Passthrough(ipv IPV, args ...string) ([]byte, error) {
+	var output string
+	logrus.Debugf("Firewalld passthrough: %s, %s", ipv, args)
+	if err := connection.sysobj.Call(dbusInterface+".direct.passthrough", 0, ipv, args).Store(&output); err != nil {
+		return nil, err
+	}
+	return []byte(output), nil
+}
diff --git a/vendor/github.com/docker/libnetwork/iptables/iptables.go b/vendor/github.com/docker/libnetwork/iptables/iptables.go
new file mode 100644
index 0000000000..50896d935a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/iptables/iptables.go
@@ -0,0 +1,575 @@
+package iptables
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"os/exec"
+	"regexp"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/sirupsen/logrus"
+)
+
+// Action signifies the iptable action.
+type Action string
+
+// Policy is the default iptable policies
+type Policy string
+
+// Table refers to Nat, Filter or Mangle.
+type Table string
+
+const (
+	// Append appends the rule at the end of the chain.
+	Append Action = "-A"
+	// Delete deletes the rule from the chain.
+	Delete Action = "-D"
+	// Insert inserts the rule at the top of the chain.
+	Insert Action = "-I"
+	// Nat table is used for nat translation rules.
+	Nat Table = "nat"
+	// Filter table is used for filter rules.
+	Filter Table = "filter"
+	// Mangle table is used for mangling the packet.
+	Mangle Table = "mangle"
+	// Drop is the default iptables DROP policy
+	Drop Policy = "DROP"
+	// Accept is the default iptables ACCEPT policy
+	Accept Policy = "ACCEPT"
+)
+
+var (
+	iptablesPath  string
+	supportsXlock = false
+	supportsCOpt  = false
+	xLockWaitMsg  = "Another app is currently holding the xtables lock"
+	// used to lock iptables commands if xtables lock is not supported
+	bestEffortLock sync.Mutex
+	// ErrIptablesNotFound is returned when the rule is not found.
+	ErrIptablesNotFound = errors.New("Iptables not found")
+	initOnce            sync.Once
+)
+
+// ChainInfo defines the iptables chain.
+type ChainInfo struct {
+	Name        string
+	Table       Table
+	HairpinMode bool
+}
+
+// ChainError is returned to represent errors during ip table operation.
+type ChainError struct {
+	Chain  string
+	Output []byte
+}
+
+func (e ChainError) Error() string {
+	return fmt.Sprintf("Error iptables %s: %s", e.Chain, string(e.Output))
+}
+
+func probe() {
+	if out, err := exec.Command("modprobe", "-va", "nf_nat").CombinedOutput(); err != nil {
+		logrus.Warnf("Running modprobe nf_nat failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+	if out, err := exec.Command("modprobe", "-va", "xt_conntrack").CombinedOutput(); err != nil {
+		logrus.Warnf("Running modprobe xt_conntrack failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+}
+
+func initFirewalld() {
+	if err := FirewalldInit(); err != nil {
+		logrus.Debugf("Fail to initialize firewalld: %v, using raw iptables instead", err)
+	}
+}
+
+func detectIptables() {
+	path, err := exec.LookPath("iptables")
+	if err != nil {
+		return
+	}
+	iptablesPath = path
+	supportsXlock = exec.Command(iptablesPath, "--wait", "-L", "-n").Run() == nil
+	mj, mn, mc, err := GetVersion()
+	if err != nil {
+		logrus.Warnf("Failed to read iptables version: %v", err)
+		return
+	}
+	supportsCOpt = supportsCOption(mj, mn, mc)
+}
+
+func initDependencies() {
+	probe()
+	initFirewalld()
+	detectIptables()
+}
+
+func initCheck() error {
+	initOnce.Do(initDependencies)
+
+	if iptablesPath == "" {
+		return ErrIptablesNotFound
+	}
+	return nil
+}
+
+// NewChain adds a new chain to ip table.
+func NewChain(name string, table Table, hairpinMode bool) (*ChainInfo, error) {
+	c := &ChainInfo{
+		Name:        name,
+		Table:       table,
+		HairpinMode: hairpinMode,
+	}
+	if string(c.Table) == "" {
+		c.Table = Filter
+	}
+
+	// Add chain if it doesn't exist
+	if _, err := Raw("-t", string(c.Table), "-n", "-L", c.Name); err != nil {
+		if output, err := Raw("-t", string(c.Table), "-N", c.Name); err != nil {
+			return nil, err
+		} else if len(output) != 0 {
+			return nil, fmt.Errorf("Could not create %s/%s chain: %s", c.Table, c.Name, output)
+		}
+	}
+	return c, nil
+}
+
+// ProgramChain is used to add rules to a chain
+func ProgramChain(c *ChainInfo, bridgeName string, hairpinMode, enable bool) error {
+	if c.Name == "" {
+		return errors.New("Could not program chain, missing chain name")
+	}
+
+	switch c.Table {
+	case Nat:
+		preroute := []string{
+			"-m", "addrtype",
+			"--dst-type", "LOCAL",
+			"-j", c.Name}
+		if !Exists(Nat, "PREROUTING", preroute...) && enable {
+			if err := c.Prerouting(Append, preroute...); err != nil {
+				return fmt.Errorf("Failed to inject %s in PREROUTING chain: %s", c.Name, err)
+			}
+		} else if Exists(Nat, "PREROUTING", preroute...) && !enable {
+			if err := c.Prerouting(Delete, preroute...); err != nil {
+				return fmt.Errorf("Failed to remove %s in PREROUTING chain: %s", c.Name, err)
+			}
+		}
+		output := []string{
+			"-m", "addrtype",
+			"--dst-type", "LOCAL",
+			"-j", c.Name}
+		if !hairpinMode {
+			output = append(output, "!", "--dst", "127.0.0.0/8")
+		}
+		if !Exists(Nat, "OUTPUT", output...) && enable {
+			if err := c.Output(Append, output...); err != nil {
+				return fmt.Errorf("Failed to inject %s in OUTPUT chain: %s", c.Name, err)
+			}
+		} else if Exists(Nat, "OUTPUT", output...) && !enable {
+			if err := c.Output(Delete, output...); err != nil {
+				return fmt.Errorf("Failed to inject %s in OUTPUT chain: %s", c.Name, err)
+			}
+		}
+	case Filter:
+		if bridgeName == "" {
+			return fmt.Errorf("Could not program chain %s/%s, missing bridge name",
+				c.Table, c.Name)
+		}
+		link := []string{
+			"-o", bridgeName,
+			"-j", c.Name}
+		if !Exists(Filter, "FORWARD", link...) && enable {
+			insert := append([]string{string(Insert), "FORWARD"}, link...)
+			if output, err := Raw(insert...); err != nil {
+				return err
+			} else if len(output) != 0 {
+				return fmt.Errorf("Could not create linking rule to %s/%s: %s", c.Table, c.Name, output)
+			}
+		} else if Exists(Filter, "FORWARD", link...) && !enable {
+			del := append([]string{string(Delete), "FORWARD"}, link...)
+			if output, err := Raw(del...); err != nil {
+				return err
+			} else if len(output) != 0 {
+				return fmt.Errorf("Could not delete linking rule from %s/%s: %s", c.Table, c.Name, output)
+			}
+
+		}
+		establish := []string{
+			"-o", bridgeName,
+			"-m", "conntrack",
+			"--ctstate", "RELATED,ESTABLISHED",
+			"-j", "ACCEPT"}
+		if !Exists(Filter, "FORWARD", establish...) && enable {
+			insert := append([]string{string(Insert), "FORWARD"}, establish...)
+			if output, err := Raw(insert...); err != nil {
+				return err
+			} else if len(output) != 0 {
+				return fmt.Errorf("Could not create establish rule to %s: %s", c.Table, output)
+			}
+		} else if Exists(Filter, "FORWARD", establish...) && !enable {
+			del := append([]string{string(Delete), "FORWARD"}, establish...)
+			if output, err := Raw(del...); err != nil {
+				return err
+			} else if len(output) != 0 {
+				return fmt.Errorf("Could not delete establish rule from %s: %s", c.Table, output)
+			}
+		}
+	}
+	return nil
+}
+
+// RemoveExistingChain removes existing chain from the table.
+func RemoveExistingChain(name string, table Table) error {
+	c := &ChainInfo{
+		Name:  name,
+		Table: table,
+	}
+	if string(c.Table) == "" {
+		c.Table = Filter
+	}
+	return c.Remove()
+}
+
+// Forward adds forwarding rule to 'filter' table and corresponding nat rule to 'nat' table.
+func (c *ChainInfo) Forward(action Action, ip net.IP, port int, proto, destAddr string, destPort int, bridgeName string) error {
+	daddr := ip.String()
+	if ip.IsUnspecified() {
+		// iptables interprets "0.0.0.0" as "0.0.0.0/32", whereas we
+		// want "0.0.0.0/0". "0/0" is correctly interpreted as "any
+		// value" by both iptables and ip6tables.
+		daddr = "0/0"
+	}
+
+	args := []string{
+		"-p", proto,
+		"-d", daddr,
+		"--dport", strconv.Itoa(port),
+		"-j", "DNAT",
+		"--to-destination", net.JoinHostPort(destAddr, strconv.Itoa(destPort))}
+	if !c.HairpinMode {
+		args = append(args, "!", "-i", bridgeName)
+	}
+	if err := ProgramRule(Nat, c.Name, action, args); err != nil {
+		return err
+	}
+
+	args = []string{
+		"!", "-i", bridgeName,
+		"-o", bridgeName,
+		"-p", proto,
+		"-d", destAddr,
+		"--dport", strconv.Itoa(destPort),
+		"-j", "ACCEPT",
+	}
+	if err := ProgramRule(Filter, c.Name, action, args); err != nil {
+		return err
+	}
+
+	args = []string{
+		"-p", proto,
+		"-s", destAddr,
+		"-d", destAddr,
+		"--dport", strconv.Itoa(destPort),
+		"-j", "MASQUERADE",
+	}
+
+	if err := ProgramRule(Nat, "POSTROUTING", action, args); err != nil {
+		return err
+	}
+
+	if proto == "sctp" {
+		// Linux kernel v4.9 and below enables NETIF_F_SCTP_CRC for veth by
+		// the following commit.
+		// This introduces a problem when conbined with a physical NIC without
+		// NETIF_F_SCTP_CRC. As for a workaround, here we add an iptables entry
+		// to fill the checksum.
+		//
+		// https://github.com/torvalds/linux/commit/c80fafbbb59ef9924962f83aac85531039395b18
+		args = []string{
+			"-p", proto,
+			"--sport", strconv.Itoa(destPort),
+			"-j", "CHECKSUM",
+			"--checksum-fill",
+		}
+		if err := ProgramRule(Mangle, "POSTROUTING", action, args); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// Link adds reciprocal ACCEPT rule for two supplied IP addresses.
+// Traffic is allowed from ip1 to ip2 and vice-versa
+func (c *ChainInfo) Link(action Action, ip1, ip2 net.IP, port int, proto string, bridgeName string) error {
+	// forward
+	args := []string{
+		"-i", bridgeName, "-o", bridgeName,
+		"-p", proto,
+		"-s", ip1.String(),
+		"-d", ip2.String(),
+		"--dport", strconv.Itoa(port),
+		"-j", "ACCEPT",
+	}
+	if err := ProgramRule(Filter, c.Name, action, args); err != nil {
+		return err
+	}
+	// reverse
+	args[7], args[9] = args[9], args[7]
+	args[10] = "--sport"
+	return ProgramRule(Filter, c.Name, action, args)
+}
+
+// ProgramRule adds the rule specified by args only if the
+// rule is not already present in the chain. Reciprocally,
+// it removes the rule only if present.
+func ProgramRule(table Table, chain string, action Action, args []string) error {
+	if Exists(table, chain, args...) != (action == Delete) {
+		return nil
+	}
+	return RawCombinedOutput(append([]string{"-t", string(table), string(action), chain}, args...)...)
+}
+
+// Prerouting adds linking rule to nat/PREROUTING chain.
+func (c *ChainInfo) Prerouting(action Action, args ...string) error {
+	a := []string{"-t", string(Nat), string(action), "PREROUTING"}
+	if len(args) > 0 {
+		a = append(a, args...)
+	}
+	if output, err := Raw(a...); err != nil {
+		return err
+	} else if len(output) != 0 {
+		return ChainError{Chain: "PREROUTING", Output: output}
+	}
+	return nil
+}
+
+// Output adds linking rule to an OUTPUT chain.
+func (c *ChainInfo) Output(action Action, args ...string) error {
+	a := []string{"-t", string(c.Table), string(action), "OUTPUT"}
+	if len(args) > 0 {
+		a = append(a, args...)
+	}
+	if output, err := Raw(a...); err != nil {
+		return err
+	} else if len(output) != 0 {
+		return ChainError{Chain: "OUTPUT", Output: output}
+	}
+	return nil
+}
+
+// Remove removes the chain.
+func (c *ChainInfo) Remove() error {
+	// Ignore errors - This could mean the chains were never set up
+	if c.Table == Nat {
+		c.Prerouting(Delete, "-m", "addrtype", "--dst-type", "LOCAL", "-j", c.Name)
+		c.Output(Delete, "-m", "addrtype", "--dst-type", "LOCAL", "!", "--dst", "127.0.0.0/8", "-j", c.Name)
+		c.Output(Delete, "-m", "addrtype", "--dst-type", "LOCAL", "-j", c.Name) // Created in versions <= 0.1.6
+
+		c.Prerouting(Delete)
+		c.Output(Delete)
+	}
+	Raw("-t", string(c.Table), "-F", c.Name)
+	Raw("-t", string(c.Table), "-X", c.Name)
+	return nil
+}
+
+// Exists checks if a rule exists
+func Exists(table Table, chain string, rule ...string) bool {
+	return exists(false, table, chain, rule...)
+}
+
+// ExistsNative behaves as Exists with the difference it
+// will always invoke `iptables` binary.
+func ExistsNative(table Table, chain string, rule ...string) bool {
+	return exists(true, table, chain, rule...)
+}
+
+func exists(native bool, table Table, chain string, rule ...string) bool {
+	f := Raw
+	if native {
+		f = raw
+	}
+
+	if string(table) == "" {
+		table = Filter
+	}
+
+	if err := initCheck(); err != nil {
+		// The exists() signature does not allow us to return an error, but at least
+		// we can skip the (likely invalid) exec invocation.
+		return false
+	}
+
+	if supportsCOpt {
+		// if exit status is 0 then return true, the rule exists
+		_, err := f(append([]string{"-t", string(table), "-C", chain}, rule...)...)
+		return err == nil
+	}
+
+	// parse "iptables -S" for the rule (it checks rules in a specific chain
+	// in a specific table and it is very unreliable)
+	return existsRaw(table, chain, rule...)
+}
+
+func existsRaw(table Table, chain string, rule ...string) bool {
+	ruleString := fmt.Sprintf("%s %s\n", chain, strings.Join(rule, " "))
+	existingRules, _ := exec.Command(iptablesPath, "-t", string(table), "-S", chain).Output()
+
+	return strings.Contains(string(existingRules), ruleString)
+}
+
+// Maximum duration that an iptables operation can take
+// before flagging a warning.
+const opWarnTime = 2 * time.Second
+
+func filterOutput(start time.Time, output []byte, args ...string) []byte {
+	// Flag operations that have taken a long time to complete
+	opTime := time.Since(start)
+	if opTime > opWarnTime {
+		logrus.Warnf("xtables contention detected while running [%s]: Waited for %.2f seconds and received %q", strings.Join(args, " "), float64(opTime)/float64(time.Second), string(output))
+	}
+	// ignore iptables' message about xtables lock:
+	// it is a warning, not an error.
+	if strings.Contains(string(output), xLockWaitMsg) {
+		output = []byte("")
+	}
+	// Put further filters here if desired
+	return output
+}
+
+// Raw calls 'iptables' system command, passing supplied arguments.
+func Raw(args ...string) ([]byte, error) {
+	if firewalldRunning {
+		startTime := time.Now()
+		output, err := Passthrough(Iptables, args...)
+		if err == nil || !strings.Contains(err.Error(), "was not provided by any .service files") {
+			return filterOutput(startTime, output, args...), err
+		}
+	}
+	return raw(args...)
+}
+
+func raw(args ...string) ([]byte, error) {
+	if err := initCheck(); err != nil {
+		return nil, err
+	}
+	if supportsXlock {
+		args = append([]string{"--wait"}, args...)
+	} else {
+		bestEffortLock.Lock()
+		defer bestEffortLock.Unlock()
+	}
+
+	logrus.Debugf("%s, %v", iptablesPath, args)
+
+	startTime := time.Now()
+	output, err := exec.Command(iptablesPath, args...).CombinedOutput()
+	if err != nil {
+		return nil, fmt.Errorf("iptables failed: iptables %v: %s (%s)", strings.Join(args, " "), output, err)
+	}
+
+	return filterOutput(startTime, output, args...), err
+}
+
+// RawCombinedOutput inernally calls the Raw function and returns a non nil
+// error if Raw returned a non nil error or a non empty output
+func RawCombinedOutput(args ...string) error {
+	if output, err := Raw(args...); err != nil || len(output) != 0 {
+		return fmt.Errorf("%s (%v)", string(output), err)
+	}
+	return nil
+}
+
+// RawCombinedOutputNative behave as RawCombinedOutput with the difference it
+// will always invoke `iptables` binary
+func RawCombinedOutputNative(args ...string) error {
+	if output, err := raw(args...); err != nil || len(output) != 0 {
+		return fmt.Errorf("%s (%v)", string(output), err)
+	}
+	return nil
+}
+
+// ExistChain checks if a chain exists
+func ExistChain(chain string, table Table) bool {
+	if _, err := Raw("-t", string(table), "-nL", chain); err == nil {
+		return true
+	}
+	return false
+}
+
+// GetVersion reads the iptables version numbers during initialization
+func GetVersion() (major, minor, micro int, err error) {
+	out, err := exec.Command(iptablesPath, "--version").CombinedOutput()
+	if err == nil {
+		major, minor, micro = parseVersionNumbers(string(out))
+	}
+	return
+}
+
+// SetDefaultPolicy sets the passed default policy for the table/chain
+func SetDefaultPolicy(table Table, chain string, policy Policy) error {
+	if err := RawCombinedOutput("-t", string(table), "-P", chain, string(policy)); err != nil {
+		return fmt.Errorf("setting default policy to %v in %v chain failed: %v", policy, chain, err)
+	}
+	return nil
+}
+
+func parseVersionNumbers(input string) (major, minor, micro int) {
+	re := regexp.MustCompile(`v\d*.\d*.\d*`)
+	line := re.FindString(input)
+	fmt.Sscanf(line, "v%d.%d.%d", &major, &minor, &micro)
+	return
+}
+
+// iptables -C, --check option was added in v.1.4.11
+// http://ftp.netfilter.org/pub/iptables/changes-iptables-1.4.11.txt
+func supportsCOption(mj, mn, mc int) bool {
+	return mj > 1 || (mj == 1 && (mn > 4 || (mn == 4 && mc >= 11)))
+}
+
+// AddReturnRule adds a return rule for the chain in the filter table
+func AddReturnRule(chain string) error {
+	var (
+		table = Filter
+		args  = []string{"-j", "RETURN"}
+	)
+
+	if Exists(table, chain, args...) {
+		return nil
+	}
+
+	err := RawCombinedOutput(append([]string{"-A", chain}, args...)...)
+	if err != nil {
+		return fmt.Errorf("unable to add return rule in %s chain: %s", chain, err.Error())
+	}
+
+	return nil
+}
+
+// EnsureJumpRule ensures the jump rule is on top
+func EnsureJumpRule(fromChain, toChain string) error {
+	var (
+		table = Filter
+		args  = []string{"-j", toChain}
+	)
+
+	if Exists(table, fromChain, args...) {
+		err := RawCombinedOutput(append([]string{"-D", fromChain}, args...)...)
+		if err != nil {
+			return fmt.Errorf("unable to remove jump to %s rule in %s chain: %s", toChain, fromChain, err.Error())
+		}
+	}
+
+	err := RawCombinedOutput(append([]string{"-I", fromChain}, args...)...)
+	if err != nil {
+		return fmt.Errorf("unable to insert jump to %s rule in %s chain: %s", toChain, fromChain, err.Error())
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/ipvs/constants.go b/vendor/github.com/docker/libnetwork/ipvs/constants.go
new file mode 100644
index 0000000000..d36bec0e80
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipvs/constants.go
@@ -0,0 +1,147 @@
+// +build linux
+
+package ipvs
+
+const (
+	genlCtrlID = 0x10
+)
+
+// GENL control commands
+const (
+	genlCtrlCmdUnspec uint8 = iota
+	genlCtrlCmdNewFamily
+	genlCtrlCmdDelFamily
+	genlCtrlCmdGetFamily
+)
+
+// GENL family attributes
+const (
+	genlCtrlAttrUnspec int = iota
+	genlCtrlAttrFamilyID
+	genlCtrlAttrFamilyName
+)
+
+// IPVS genl commands
+const (
+	ipvsCmdUnspec uint8 = iota
+	ipvsCmdNewService
+	ipvsCmdSetService
+	ipvsCmdDelService
+	ipvsCmdGetService
+	ipvsCmdNewDest
+	ipvsCmdSetDest
+	ipvsCmdDelDest
+	ipvsCmdGetDest
+	ipvsCmdNewDaemon
+	ipvsCmdDelDaemon
+	ipvsCmdGetDaemon
+	ipvsCmdSetConfig
+	ipvsCmdGetConfig
+	ipvsCmdSetInfo
+	ipvsCmdGetInfo
+	ipvsCmdZero
+	ipvsCmdFlush
+)
+
+// Attributes used in the first level of commands
+const (
+	ipvsCmdAttrUnspec int = iota
+	ipvsCmdAttrService
+	ipvsCmdAttrDest
+	ipvsCmdAttrDaemon
+	ipvsCmdAttrTimeoutTCP
+	ipvsCmdAttrTimeoutTCPFin
+	ipvsCmdAttrTimeoutUDP
+)
+
+// Attributes used to describe a service. Used inside nested attribute
+// ipvsCmdAttrService
+const (
+	ipvsSvcAttrUnspec int = iota
+	ipvsSvcAttrAddressFamily
+	ipvsSvcAttrProtocol
+	ipvsSvcAttrAddress
+	ipvsSvcAttrPort
+	ipvsSvcAttrFWMark
+	ipvsSvcAttrSchedName
+	ipvsSvcAttrFlags
+	ipvsSvcAttrTimeout
+	ipvsSvcAttrNetmask
+	ipvsSvcAttrStats
+	ipvsSvcAttrPEName
+)
+
+// Attributes used to describe a destination (real server). Used
+// inside nested attribute ipvsCmdAttrDest.
+const (
+	ipvsDestAttrUnspec int = iota
+	ipvsDestAttrAddress
+	ipvsDestAttrPort
+	ipvsDestAttrForwardingMethod
+	ipvsDestAttrWeight
+	ipvsDestAttrUpperThreshold
+	ipvsDestAttrLowerThreshold
+	ipvsDestAttrActiveConnections
+	ipvsDestAttrInactiveConnections
+	ipvsDestAttrPersistentConnections
+	ipvsDestAttrStats
+	ipvsDestAttrAddressFamily
+)
+
+// IPVS Svc Statistics constancs
+
+const (
+	ipvsSvcStatsUnspec int = iota
+	ipvsSvcStatsConns
+	ipvsSvcStatsPktsIn
+	ipvsSvcStatsPktsOut
+	ipvsSvcStatsBytesIn
+	ipvsSvcStatsBytesOut
+	ipvsSvcStatsCPS
+	ipvsSvcStatsPPSIn
+	ipvsSvcStatsPPSOut
+	ipvsSvcStatsBPSIn
+	ipvsSvcStatsBPSOut
+)
+
+// Destination forwarding methods
+const (
+	// ConnectionFlagFwdmask indicates the mask in the connection
+	// flags which is used by forwarding method bits.
+	ConnectionFlagFwdMask = 0x0007
+
+	// ConnectionFlagMasq is used for masquerade forwarding method.
+	ConnectionFlagMasq = 0x0000
+
+	// ConnectionFlagLocalNode is used for local node forwarding
+	// method.
+	ConnectionFlagLocalNode = 0x0001
+
+	// ConnectionFlagTunnel is used for tunnel mode forwarding
+	// method.
+	ConnectionFlagTunnel = 0x0002
+
+	// ConnectionFlagDirectRoute is used for direct routing
+	// forwarding method.
+	ConnectionFlagDirectRoute = 0x0003
+)
+
+const (
+	// RoundRobin distributes jobs equally amongst the available
+	// real servers.
+	RoundRobin = "rr"
+
+	// LeastConnection assigns more jobs to real servers with
+	// fewer active jobs.
+	LeastConnection = "lc"
+
+	// DestinationHashing assigns jobs to servers through looking
+	// up a statically assigned hash table by their destination IP
+	// addresses.
+	DestinationHashing = "dh"
+
+	// SourceHashing assigns jobs to servers through looking up
+	// a statically assigned hash table by their source IP
+	// addresses.
+	SourceHashing = "sh"
+)
diff --git a/vendor/github.com/docker/libnetwork/ipvs/ipvs.go b/vendor/github.com/docker/libnetwork/ipvs/ipvs.go
new file mode 100644
index 0000000000..effbb716eb
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipvs/ipvs.go
@@ -0,0 +1,184 @@
+// +build linux
+
+package ipvs
+
+import (
+	"net"
+	"syscall"
+	"time"
+
+	"fmt"
+
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+const (
+	netlinkRecvSocketsTimeout = 3 * time.Second
+	netlinkSendSocketTimeout  = 30 * time.Second
+)
+
+// Service defines an IPVS service in its entirety.
+type Service struct {
+	// Virtual service address.
+	Address  net.IP
+	Protocol uint16
+	Port     uint16
+	FWMark   uint32 // Firewall mark of the service.
+
+	// Virtual service options.
+	SchedName     string
+	Flags         uint32
+	Timeout       uint32
+	Netmask       uint32
+	AddressFamily uint16
+	PEName        string
+	Stats         SvcStats
+}
+
+// SvcStats defines an IPVS service statistics
+type SvcStats struct {
+	Connections uint32
+	PacketsIn   uint32
+	PacketsOut  uint32
+	BytesIn     uint64
+	BytesOut    uint64
+	CPS         uint32
+	BPSOut      uint32
+	PPSIn       uint32
+	PPSOut      uint32
+	BPSIn       uint32
+}
+
+// Destination defines an IPVS destination (real server) in its
+// entirety.
+type Destination struct {
+	Address         net.IP
+	Port            uint16
+	Weight          int
+	ConnectionFlags uint32
+	AddressFamily   uint16
+	UpperThreshold  uint32
+	LowerThreshold  uint32
+}
+
+// Handle provides a namespace specific ipvs handle to program ipvs
+// rules.
+type Handle struct {
+	seq  uint32
+	sock *nl.NetlinkSocket
+}
+
+// New provides a new ipvs handle in the namespace pointed to by the
+// passed path. It will return a valid handle or an error in case an
+// error occurred while creating the handle.
+func New(path string) (*Handle, error) {
+	setup()
+
+	n := netns.None()
+	if path != "" {
+		var err error
+		n, err = netns.GetFromPath(path)
+		if err != nil {
+			return nil, err
+		}
+	}
+	defer n.Close()
+
+	sock, err := nl.GetNetlinkSocketAt(n, netns.None(), syscall.NETLINK_GENERIC)
+	if err != nil {
+		return nil, err
+	}
+	// Add operation timeout to avoid deadlocks
+	tv := syscall.NsecToTimeval(netlinkSendSocketTimeout.Nanoseconds())
+	if err := sock.SetSendTimeout(&tv); err != nil {
+		return nil, err
+	}
+	tv = syscall.NsecToTimeval(netlinkRecvSocketsTimeout.Nanoseconds())
+	if err := sock.SetReceiveTimeout(&tv); err != nil {
+		return nil, err
+	}
+
+	return &Handle{sock: sock}, nil
+}
+
+// Close closes the ipvs handle. The handle is invalid after Close
+// returns.
+func (i *Handle) Close() {
+	if i.sock != nil {
+		i.sock.Close()
+	}
+}
+
+// NewService creates a new ipvs service in the passed handle.
+func (i *Handle) NewService(s *Service) error {
+	return i.doCmd(s, nil, ipvsCmdNewService)
+}
+
+// IsServicePresent queries for the ipvs service in the passed handle.
+func (i *Handle) IsServicePresent(s *Service) bool {
+	return nil == i.doCmd(s, nil, ipvsCmdGetService)
+}
+
+// UpdateService updates an already existing service in the passed
+// handle.
+func (i *Handle) UpdateService(s *Service) error {
+	return i.doCmd(s, nil, ipvsCmdSetService)
+}
+
+// DelService deletes an already existing service in the passed
+// handle.
+func (i *Handle) DelService(s *Service) error {
+	return i.doCmd(s, nil, ipvsCmdDelService)
+}
+
+// Flush deletes all existing services in the passed
+// handle.
+func (i *Handle) Flush() error {
+	_, err := i.doCmdWithoutAttr(ipvsCmdFlush)
+	return err
+}
+
+// NewDestination creates a new real server in the passed ipvs
+// service which should already be existing in the passed handle.
+func (i *Handle) NewDestination(s *Service, d *Destination) error {
+	return i.doCmd(s, d, ipvsCmdNewDest)
+}
+
+// UpdateDestination updates an already existing real server in the
+// passed ipvs service in the passed handle.
+func (i *Handle) UpdateDestination(s *Service, d *Destination) error {
+	return i.doCmd(s, d, ipvsCmdSetDest)
+}
+
+// DelDestination deletes an already existing real server in the
+// passed ipvs service in the passed handle.
+func (i *Handle) DelDestination(s *Service, d *Destination) error {
+	return i.doCmd(s, d, ipvsCmdDelDest)
+}
+
+// GetServices returns an array of services configured on the Node
+func (i *Handle) GetServices() ([]*Service, error) {
+	return i.doGetServicesCmd(nil)
+}
+
+// GetDestinations returns an array of Destinations configured for this Service
+func (i *Handle) GetDestinations(s *Service) ([]*Destination, error) {
+	return i.doGetDestinationsCmd(s, nil)
+}
+
+// GetService gets details of a specific IPVS services, useful in updating statisics etc.,
+func (i *Handle) GetService(s *Service) (*Service, error) {
+
+	res, err := i.doGetServicesCmd(s)
+	if err != nil {
+		return nil, err
+	}
+
+	// We are looking for exactly one service otherwise error out
+	if len(res) != 1 {
+		return nil, fmt.Errorf("Expected only one service obtained=%d", len(res))
+	}
+
+	return res[0], nil
+}
diff --git a/vendor/github.com/docker/libnetwork/ipvs/netlink.go b/vendor/github.com/docker/libnetwork/ipvs/netlink.go
new file mode 100644
index 0000000000..c062a1789d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ipvs/netlink.go
@@ -0,0 +1,556 @@
+// +build linux
+
+package ipvs
+
+import (
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"net"
+	"os/exec"
+	"strings"
+	"sync"
+	"sync/atomic"
+	"syscall"
+	"unsafe"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+// For Quick Reference IPVS related netlink message is described at the end of this file.
+var (
+	native     = nl.NativeEndian()
+	ipvsFamily int
+	ipvsOnce   sync.Once
+)
+
+type genlMsgHdr struct {
+	cmd      uint8
+	version  uint8
+	reserved uint16
+}
+
+type ipvsFlags struct {
+	flags uint32
+	mask  uint32
+}
+
+func deserializeGenlMsg(b []byte) (hdr *genlMsgHdr) {
+	return (*genlMsgHdr)(unsafe.Pointer(&b[0:unsafe.Sizeof(*hdr)][0]))
+}
+
+func (hdr *genlMsgHdr) Serialize() []byte {
+	return (*(*[unsafe.Sizeof(*hdr)]byte)(unsafe.Pointer(hdr)))[:]
+}
+
+func (hdr *genlMsgHdr) Len() int {
+	return int(unsafe.Sizeof(*hdr))
+}
+
+func (f *ipvsFlags) Serialize() []byte {
+	return (*(*[unsafe.Sizeof(*f)]byte)(unsafe.Pointer(f)))[:]
+}
+
+func (f *ipvsFlags) Len() int {
+	return int(unsafe.Sizeof(*f))
+}
+
+func setup() {
+	ipvsOnce.Do(func() {
+		var err error
+		if out, err := exec.Command("modprobe", "-va", "ip_vs").CombinedOutput(); err != nil {
+			logrus.Warnf("Running modprobe ip_vs failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+		}
+
+		ipvsFamily, err = getIPVSFamily()
+		if err != nil {
+			logrus.Error("Could not get ipvs family information from the kernel. It is possible that ipvs is not enabled in your kernel. Native loadbalancing will not work until this is fixed.")
+		}
+	})
+}
+
+func fillService(s *Service) nl.NetlinkRequestData {
+	cmdAttr := nl.NewRtAttr(ipvsCmdAttrService, nil)
+	nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrAddressFamily, nl.Uint16Attr(s.AddressFamily))
+	if s.FWMark != 0 {
+		nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrFWMark, nl.Uint32Attr(s.FWMark))
+	} else {
+		nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrProtocol, nl.Uint16Attr(s.Protocol))
+		nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrAddress, rawIPData(s.Address))
+
+		// Port needs to be in network byte order.
+		portBuf := new(bytes.Buffer)
+		binary.Write(portBuf, binary.BigEndian, s.Port)
+		nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrPort, portBuf.Bytes())
+	}
+
+	nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrSchedName, nl.ZeroTerminated(s.SchedName))
+	if s.PEName != "" {
+		nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrPEName, nl.ZeroTerminated(s.PEName))
+	}
+	f := &ipvsFlags{
+		flags: s.Flags,
+		mask:  0xFFFFFFFF,
+	}
+	nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrFlags, f.Serialize())
+	nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrTimeout, nl.Uint32Attr(s.Timeout))
+	nl.NewRtAttrChild(cmdAttr, ipvsSvcAttrNetmask, nl.Uint32Attr(s.Netmask))
+	return cmdAttr
+}
+
+func fillDestinaton(d *Destination) nl.NetlinkRequestData {
+	cmdAttr := nl.NewRtAttr(ipvsCmdAttrDest, nil)
+
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrAddress, rawIPData(d.Address))
+	// Port needs to be in network byte order.
+	portBuf := new(bytes.Buffer)
+	binary.Write(portBuf, binary.BigEndian, d.Port)
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrPort, portBuf.Bytes())
+
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrForwardingMethod, nl.Uint32Attr(d.ConnectionFlags&ConnectionFlagFwdMask))
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrWeight, nl.Uint32Attr(uint32(d.Weight)))
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrUpperThreshold, nl.Uint32Attr(d.UpperThreshold))
+	nl.NewRtAttrChild(cmdAttr, ipvsDestAttrLowerThreshold, nl.Uint32Attr(d.LowerThreshold))
+
+	return cmdAttr
+}
+
+func (i *Handle) doCmdwithResponse(s *Service, d *Destination, cmd uint8) ([][]byte, error) {
+	req := newIPVSRequest(cmd)
+	req.Seq = atomic.AddUint32(&i.seq, 1)
+
+	if s == nil {
+		req.Flags |= syscall.NLM_F_DUMP                    //Flag to dump all messages
+		req.AddData(nl.NewRtAttr(ipvsCmdAttrService, nil)) //Add a dummy attribute
+	} else {
+		req.AddData(fillService(s))
+	}
+
+	if d == nil {
+		if cmd == ipvsCmdGetDest {
+			req.Flags |= syscall.NLM_F_DUMP
+		}
+
+	} else {
+		req.AddData(fillDestinaton(d))
+	}
+
+	res, err := execute(i.sock, req, 0)
+	if err != nil {
+		return [][]byte{}, err
+	}
+
+	return res, nil
+}
+
+func (i *Handle) doCmd(s *Service, d *Destination, cmd uint8) error {
+	_, err := i.doCmdwithResponse(s, d, cmd)
+
+	return err
+}
+
+func getIPVSFamily() (int, error) {
+	sock, err := nl.GetNetlinkSocketAt(netns.None(), netns.None(), syscall.NETLINK_GENERIC)
+	if err != nil {
+		return 0, err
+	}
+	defer sock.Close()
+
+	req := newGenlRequest(genlCtrlID, genlCtrlCmdGetFamily)
+	req.AddData(nl.NewRtAttr(genlCtrlAttrFamilyName, nl.ZeroTerminated("IPVS")))
+
+	msgs, err := execute(sock, req, 0)
+	if err != nil {
+		return 0, err
+	}
+
+	for _, m := range msgs {
+		hdr := deserializeGenlMsg(m)
+		attrs, err := nl.ParseRouteAttr(m[hdr.Len():])
+		if err != nil {
+			return 0, err
+		}
+
+		for _, attr := range attrs {
+			switch int(attr.Attr.Type) {
+			case genlCtrlAttrFamilyID:
+				return int(native.Uint16(attr.Value[0:2])), nil
+			}
+		}
+	}
+
+	return 0, fmt.Errorf("no family id in the netlink response")
+}
+
+func rawIPData(ip net.IP) []byte {
+	family := nl.GetIPFamily(ip)
+	if family == nl.FAMILY_V4 {
+		return ip.To4()
+	}
+	return ip
+}
+
+func newIPVSRequest(cmd uint8) *nl.NetlinkRequest {
+	return newGenlRequest(ipvsFamily, cmd)
+}
+
+func newGenlRequest(familyID int, cmd uint8) *nl.NetlinkRequest {
+	req := nl.NewNetlinkRequest(familyID, syscall.NLM_F_ACK)
+	req.AddData(&genlMsgHdr{cmd: cmd, version: 1})
+	return req
+}
+
+func execute(s *nl.NetlinkSocket, req *nl.NetlinkRequest, resType uint16) ([][]byte, error) {
+	if err := s.Send(req); err != nil {
+		return nil, err
+	}
+
+	pid, err := s.GetPid()
+	if err != nil {
+		return nil, err
+	}
+
+	var res [][]byte
+
+done:
+	for {
+		msgs, err := s.Receive()
+		if err != nil {
+			if s.GetFd() == -1 {
+				return nil, fmt.Errorf("Socket got closed on receive")
+			}
+			if err == syscall.EAGAIN {
+				// timeout fired
+				continue
+			}
+			return nil, err
+		}
+		for _, m := range msgs {
+			if m.Header.Seq != req.Seq {
+				continue
+			}
+			if m.Header.Pid != pid {
+				return nil, fmt.Errorf("Wrong pid %d, expected %d", m.Header.Pid, pid)
+			}
+			if m.Header.Type == syscall.NLMSG_DONE {
+				break done
+			}
+			if m.Header.Type == syscall.NLMSG_ERROR {
+				error := int32(native.Uint32(m.Data[0:4]))
+				if error == 0 {
+					break done
+				}
+				return nil, syscall.Errno(-error)
+			}
+			if resType != 0 && m.Header.Type != resType {
+				continue
+			}
+			res = append(res, m.Data)
+			if m.Header.Flags&syscall.NLM_F_MULTI == 0 {
+				break done
+			}
+		}
+	}
+	return res, nil
+}
+
+func parseIP(ip []byte, family uint16) (net.IP, error) {
+
+	var resIP net.IP
+
+	switch family {
+	case syscall.AF_INET:
+		resIP = (net.IP)(ip[:4])
+	case syscall.AF_INET6:
+		resIP = (net.IP)(ip[:16])
+	default:
+		return nil, fmt.Errorf("parseIP Error ip=%v", ip)
+
+	}
+	return resIP, nil
+}
+
+// parseStats
+func assembleStats(msg []byte) (SvcStats, error) {
+
+	var s SvcStats
+
+	attrs, err := nl.ParseRouteAttr(msg)
+	if err != nil {
+		return s, err
+	}
+
+	for _, attr := range attrs {
+		attrType := int(attr.Attr.Type)
+		switch attrType {
+		case ipvsSvcStatsConns:
+			s.Connections = native.Uint32(attr.Value)
+		case ipvsSvcStatsPktsIn:
+			s.PacketsIn = native.Uint32(attr.Value)
+		case ipvsSvcStatsPktsOut:
+			s.PacketsOut = native.Uint32(attr.Value)
+		case ipvsSvcStatsBytesIn:
+			s.BytesIn = native.Uint64(attr.Value)
+		case ipvsSvcStatsBytesOut:
+			s.BytesOut = native.Uint64(attr.Value)
+		case ipvsSvcStatsCPS:
+			s.CPS = native.Uint32(attr.Value)
+		case ipvsSvcStatsPPSIn:
+			s.PPSIn = native.Uint32(attr.Value)
+		case ipvsSvcStatsPPSOut:
+			s.PPSOut = native.Uint32(attr.Value)
+		case ipvsSvcStatsBPSIn:
+			s.BPSIn = native.Uint32(attr.Value)
+		case ipvsSvcStatsBPSOut:
+			s.BPSOut = native.Uint32(attr.Value)
+		}
+	}
+	return s, nil
+}
+
+// assembleService assembles a services back from a hain of netlink attributes
+func assembleService(attrs []syscall.NetlinkRouteAttr) (*Service, error) {
+
+	var s Service
+
+	for _, attr := range attrs {
+
+		attrType := int(attr.Attr.Type)
+
+		switch attrType {
+
+		case ipvsSvcAttrAddressFamily:
+			s.AddressFamily = native.Uint16(attr.Value)
+		case ipvsSvcAttrProtocol:
+			s.Protocol = native.Uint16(attr.Value)
+		case ipvsSvcAttrAddress:
+			ip, err := parseIP(attr.Value, s.AddressFamily)
+			if err != nil {
+				return nil, err
+			}
+			s.Address = ip
+		case ipvsSvcAttrPort:
+			s.Port = binary.BigEndian.Uint16(attr.Value)
+		case ipvsSvcAttrFWMark:
+			s.FWMark = native.Uint32(attr.Value)
+		case ipvsSvcAttrSchedName:
+			s.SchedName = nl.BytesToString(attr.Value)
+		case ipvsSvcAttrFlags:
+			s.Flags = native.Uint32(attr.Value)
+		case ipvsSvcAttrTimeout:
+			s.Timeout = native.Uint32(attr.Value)
+		case ipvsSvcAttrNetmask:
+			s.Netmask = native.Uint32(attr.Value)
+		case ipvsSvcAttrStats:
+			stats, err := assembleStats(attr.Value)
+			if err != nil {
+				return nil, err
+			}
+			s.Stats = stats
+		}
+
+	}
+	return &s, nil
+}
+
+// parseService given a ipvs netlink response this function will respond with a valid service entry, an error otherwise
+func (i *Handle) parseService(msg []byte) (*Service, error) {
+
+	var s *Service
+
+	//Remove General header for this message and parse the NetLink message
+	hdr := deserializeGenlMsg(msg)
+	NetLinkAttrs, err := nl.ParseRouteAttr(msg[hdr.Len():])
+	if err != nil {
+		return nil, err
+	}
+	if len(NetLinkAttrs) == 0 {
+		return nil, fmt.Errorf("error no valid netlink message found while parsing service record")
+	}
+
+	//Now Parse and get IPVS related attributes messages packed in this message.
+	ipvsAttrs, err := nl.ParseRouteAttr(NetLinkAttrs[0].Value)
+	if err != nil {
+		return nil, err
+	}
+
+	//Assemble all the IPVS related attribute messages and create a service record
+	s, err = assembleService(ipvsAttrs)
+	if err != nil {
+		return nil, err
+	}
+
+	return s, nil
+}
+
+// doGetServicesCmd a wrapper which could be used commonly for both GetServices() and GetService(*Service)
+func (i *Handle) doGetServicesCmd(svc *Service) ([]*Service, error) {
+	var res []*Service
+
+	msgs, err := i.doCmdwithResponse(svc, nil, ipvsCmdGetService)
+	if err != nil {
+		return nil, err
+	}
+
+	for _, msg := range msgs {
+		srv, err := i.parseService(msg)
+		if err != nil {
+			return nil, err
+		}
+		res = append(res, srv)
+	}
+
+	return res, nil
+}
+
+// doCmdWithoutAttr a simple wrapper of netlink socket execute command
+func (i *Handle) doCmdWithoutAttr(cmd uint8) ([][]byte, error) {
+	req := newIPVSRequest(cmd)
+	req.Seq = atomic.AddUint32(&i.seq, 1)
+	return execute(i.sock, req, 0)
+}
+
+func assembleDestination(attrs []syscall.NetlinkRouteAttr) (*Destination, error) {
+
+	var d Destination
+
+	for _, attr := range attrs {
+
+		attrType := int(attr.Attr.Type)
+
+		switch attrType {
+		case ipvsDestAttrAddress:
+			ip, err := parseIP(attr.Value, syscall.AF_INET)
+			if err != nil {
+				return nil, err
+			}
+			d.Address = ip
+		case ipvsDestAttrPort:
+			d.Port = binary.BigEndian.Uint16(attr.Value)
+		case ipvsDestAttrForwardingMethod:
+			d.ConnectionFlags = native.Uint32(attr.Value)
+		case ipvsDestAttrWeight:
+			d.Weight = int(native.Uint16(attr.Value))
+		case ipvsDestAttrUpperThreshold:
+			d.UpperThreshold = native.Uint32(attr.Value)
+		case ipvsDestAttrLowerThreshold:
+			d.LowerThreshold = native.Uint32(attr.Value)
+		case ipvsDestAttrAddressFamily:
+			d.AddressFamily = native.Uint16(attr.Value)
+		}
+	}
+	return &d, nil
+}
+
+// parseDestination given a ipvs netlink response this function will respond with a valid destination entry, an error otherwise
+func (i *Handle) parseDestination(msg []byte) (*Destination, error) {
+	var dst *Destination
+
+	//Remove General header for this message
+	hdr := deserializeGenlMsg(msg)
+	NetLinkAttrs, err := nl.ParseRouteAttr(msg[hdr.Len():])
+	if err != nil {
+		return nil, err
+	}
+	if len(NetLinkAttrs) == 0 {
+		return nil, fmt.Errorf("error no valid netlink message found while parsing destination record")
+	}
+
+	//Now Parse and get IPVS related attributes messages packed in this message.
+	ipvsAttrs, err := nl.ParseRouteAttr(NetLinkAttrs[0].Value)
+	if err != nil {
+		return nil, err
+	}
+
+	//Assemble netlink attributes and create a Destination record
+	dst, err = assembleDestination(ipvsAttrs)
+	if err != nil {
+		return nil, err
+	}
+
+	return dst, nil
+}
+
+// doGetDestinationsCmd a wrapper function to be used by GetDestinations and GetDestination(d) apis
+func (i *Handle) doGetDestinationsCmd(s *Service, d *Destination) ([]*Destination, error) {
+
+	var res []*Destination
+
+	msgs, err := i.doCmdwithResponse(s, d, ipvsCmdGetDest)
+	if err != nil {
+		return nil, err
+	}
+
+	for _, msg := range msgs {
+		dest, err := i.parseDestination(msg)
+		if err != nil {
+			return res, err
+		}
+		res = append(res, dest)
+	}
+	return res, nil
+}
+
+// IPVS related netlink message format explained
+
+/* EACH NETLINK MSG is of the below format, this is what we will receive from execute() api.
+   If we have multiple netlink objects to process like GetServices() etc., execute() will
+   supply an array of this below object
+
+            NETLINK MSG
+|-----------------------------------|
+    0        1        2        3
+|--------|--------|--------|--------| -
+| CMD ID |  VER   |    RESERVED     | |==> General Message Header represented by genlMsgHdr
+|-----------------------------------| -
+|    ATTR LEN     |   ATTR TYPE     | |
+|-----------------------------------| |
+|                                   | |
+|              VALUE                | |
+|     []byte Array of IPVS MSG      | |==> Attribute Message represented by syscall.NetlinkRouteAttr
+|        PADDED BY 4 BYTES          | |
+|                                   | |
+|-----------------------------------| -
+
+
+ Once We strip genlMsgHdr from above NETLINK MSG, we should parse the VALUE.
+ VALUE will have an array of netlink attributes (syscall.NetlinkRouteAttr) such that each attribute will
+ represent a "Service" or "Destination" object's field.  If we assemble these attributes we can construct
+ Service or Destination.
+
+            IPVS MSG
+|-----------------------------------|
+     0        1        2        3
+|--------|--------|--------|--------|
+|    ATTR LEN     |    ATTR TYPE    |
+|-----------------------------------|
+|                                   |
+|                                   |
+| []byte IPVS ATTRIBUTE  BY 4 BYTES |
+|                                   |
+|                                   |
+|-----------------------------------|
+           NEXT ATTRIBUTE
+|-----------------------------------|
+|    ATTR LEN     |    ATTR TYPE    |
+|-----------------------------------|
+|                                   |
+|                                   |
+| []byte IPVS ATTRIBUTE  BY 4 BYTES |
+|                                   |
+|                                   |
+|-----------------------------------|
+           NEXT ATTRIBUTE
+|-----------------------------------|
+|    ATTR LEN     |    ATTR TYPE    |
+|-----------------------------------|
+|                                   |
+|                                   |
+| []byte IPVS ATTRIBUTE  BY 4 BYTES |
+|                                   |
+|                                   |
+|-----------------------------------|
+
+*/
diff --git a/vendor/github.com/docker/libnetwork/netlabel/labels.go b/vendor/github.com/docker/libnetwork/netlabel/labels.go
new file mode 100644
index 0000000000..1594556ec7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/netlabel/labels.go
@@ -0,0 +1,129 @@
+package netlabel
+
+import (
+	"strings"
+)
+
+const (
+	// Prefix constant marks the reserved label space for libnetwork
+	Prefix = "com.docker.network"
+
+	// DriverPrefix constant marks the reserved label space for libnetwork drivers
+	DriverPrefix = Prefix + ".driver"
+
+	// DriverPrivatePrefix constant marks the reserved label space
+	// for internal libnetwork drivers
+	DriverPrivatePrefix = DriverPrefix + ".private"
+
+	// GenericData constant that helps to identify an option as a Generic constant
+	GenericData = Prefix + ".generic"
+
+	// PortMap constant represents Port Mapping
+	PortMap = Prefix + ".portmap"
+
+	// MacAddress constant represents Mac Address config of a Container
+	MacAddress = Prefix + ".endpoint.macaddress"
+
+	// ExposedPorts constant represents the container's Exposed Ports
+	ExposedPorts = Prefix + ".endpoint.exposedports"
+
+	// DNSServers A list of DNS servers associated with the endpoint
+	DNSServers = Prefix + ".endpoint.dnsservers"
+
+	//EnableIPv6 constant represents enabling IPV6 at network level
+	EnableIPv6 = Prefix + ".enable_ipv6"
+
+	// DriverMTU constant represents the MTU size for the network driver
+	DriverMTU = DriverPrefix + ".mtu"
+
+	// OverlayBindInterface constant represents overlay driver bind interface
+	OverlayBindInterface = DriverPrefix + ".overlay.bind_interface"
+
+	// OverlayNeighborIP constant represents overlay driver neighbor IP
+	OverlayNeighborIP = DriverPrefix + ".overlay.neighbor_ip"
+
+	// OverlayVxlanIDList constant represents a list of VXLAN Ids as csv
+	OverlayVxlanIDList = DriverPrefix + ".overlay.vxlanid_list"
+
+	// Gateway represents the gateway for the network
+	Gateway = Prefix + ".gateway"
+
+	// Internal constant represents that the network is internal which disables default gateway service
+	Internal = Prefix + ".internal"
+
+	// ContainerIfacePrefix can be used to override the interface prefix used inside the container
+	ContainerIfacePrefix = Prefix + ".container_iface_prefix"
+)
+
+var (
+	// GlobalKVProvider constant represents the KV provider backend
+	GlobalKVProvider = MakeKVProvider("global")
+
+	// GlobalKVProviderURL constant represents the KV provider URL
+	GlobalKVProviderURL = MakeKVProviderURL("global")
+
+	// GlobalKVProviderConfig constant represents the KV provider Config
+	GlobalKVProviderConfig = MakeKVProviderConfig("global")
+
+	// GlobalKVClient constants represents the global kv store client
+	GlobalKVClient = MakeKVClient("global")
+
+	// LocalKVProvider constant represents the KV provider backend
+	LocalKVProvider = MakeKVProvider("local")
+
+	// LocalKVProviderURL constant represents the KV provider URL
+	LocalKVProviderURL = MakeKVProviderURL("local")
+
+	// LocalKVProviderConfig constant represents the KV provider Config
+	LocalKVProviderConfig = MakeKVProviderConfig("local")
+
+	// LocalKVClient constants represents the local kv store client
+	LocalKVClient = MakeKVClient("local")
+)
+
+// MakeKVProvider returns the kvprovider label for the scope
+func MakeKVProvider(scope string) string {
+	return DriverPrivatePrefix + scope + "kv_provider"
+}
+
+// MakeKVProviderURL returns the kvprovider url label for the scope
+func MakeKVProviderURL(scope string) string {
+	return DriverPrivatePrefix + scope + "kv_provider_url"
+}
+
+// MakeKVProviderConfig returns the kvprovider config label for the scope
+func MakeKVProviderConfig(scope string) string {
+	return DriverPrivatePrefix + scope + "kv_provider_config"
+}
+
+// MakeKVClient returns the kv client label for the scope
+func MakeKVClient(scope string) string {
+	return DriverPrivatePrefix + scope + "kv_client"
+}
+
+// Key extracts the key portion of the label
+func Key(label string) (key string) {
+	if kv := strings.SplitN(label, "=", 2); len(kv) > 0 {
+		key = kv[0]
+	}
+	return
+}
+
+// Value extracts the value portion of the label
+func Value(label string) (value string) {
+	if kv := strings.SplitN(label, "=", 2); len(kv) > 1 {
+		value = kv[1]
+	}
+	return
+}
+
+// KeyValue decomposes the label in the (key,value) pair
+func KeyValue(label string) (key string, value string) {
+	if kv := strings.SplitN(label, "=", 2); len(kv) > 0 {
+		key = kv[0]
+		if len(kv) > 1 {
+			value = kv[1]
+		}
+	}
+	return
+}
diff --git a/vendor/github.com/docker/libnetwork/netutils/utils.go b/vendor/github.com/docker/libnetwork/netutils/utils.go
new file mode 100644
index 0000000000..7de98f6b07
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/netutils/utils.go
@@ -0,0 +1,194 @@
+// Network utility functions.
+
+package netutils
+
+import (
+	"crypto/rand"
+	"encoding/hex"
+	"errors"
+	"fmt"
+	"io"
+	"net"
+	"strings"
+
+	"github.com/docker/libnetwork/types"
+)
+
+var (
+	// ErrNetworkOverlapsWithNameservers preformatted error
+	ErrNetworkOverlapsWithNameservers = errors.New("requested network overlaps with nameserver")
+	// ErrNetworkOverlaps preformatted error
+	ErrNetworkOverlaps = errors.New("requested network overlaps with existing network")
+	// ErrNoDefaultRoute preformatted error
+	ErrNoDefaultRoute = errors.New("no default route")
+)
+
+// CheckNameserverOverlaps checks whether the passed network overlaps with any of the nameservers
+func CheckNameserverOverlaps(nameservers []string, toCheck *net.IPNet) error {
+	if len(nameservers) > 0 {
+		for _, ns := range nameservers {
+			_, nsNetwork, err := net.ParseCIDR(ns)
+			if err != nil {
+				return err
+			}
+			if NetworkOverlaps(toCheck, nsNetwork) {
+				return ErrNetworkOverlapsWithNameservers
+			}
+		}
+	}
+	return nil
+}
+
+// NetworkOverlaps detects overlap between one IPNet and another
+func NetworkOverlaps(netX *net.IPNet, netY *net.IPNet) bool {
+	return netX.Contains(netY.IP) || netY.Contains(netX.IP)
+}
+
+// NetworkRange calculates the first and last IP addresses in an IPNet
+func NetworkRange(network *net.IPNet) (net.IP, net.IP) {
+	if network == nil {
+		return nil, nil
+	}
+
+	firstIP := network.IP.Mask(network.Mask)
+	lastIP := types.GetIPCopy(firstIP)
+	for i := 0; i < len(firstIP); i++ {
+		lastIP[i] = firstIP[i] | ^network.Mask[i]
+	}
+
+	if network.IP.To4() != nil {
+		firstIP = firstIP.To4()
+		lastIP = lastIP.To4()
+	}
+
+	return firstIP, lastIP
+}
+
+// GetIfaceAddr returns the first IPv4 address and slice of IPv6 addresses for the specified network interface
+func GetIfaceAddr(name string) (net.Addr, []net.Addr, error) {
+	iface, err := net.InterfaceByName(name)
+	if err != nil {
+		return nil, nil, err
+	}
+	addrs, err := iface.Addrs()
+	if err != nil {
+		return nil, nil, err
+	}
+	var addrs4 []net.Addr
+	var addrs6 []net.Addr
+	for _, addr := range addrs {
+		ip := (addr.(*net.IPNet)).IP
+		if ip4 := ip.To4(); ip4 != nil {
+			addrs4 = append(addrs4, addr)
+		} else if ip6 := ip.To16(); len(ip6) == net.IPv6len {
+			addrs6 = append(addrs6, addr)
+		}
+	}
+	switch {
+	case len(addrs4) == 0:
+		return nil, nil, fmt.Errorf("Interface %v has no IPv4 addresses", name)
+	case len(addrs4) > 1:
+		fmt.Printf("Interface %v has more than 1 IPv4 address. Defaulting to using %v\n",
+			name, (addrs4[0].(*net.IPNet)).IP)
+	}
+	return addrs4[0], addrs6, nil
+}
+
+func genMAC(ip net.IP) net.HardwareAddr {
+	hw := make(net.HardwareAddr, 6)
+	// The first byte of the MAC address has to comply with these rules:
+	// 1. Unicast: Set the least-significant bit to 0.
+	// 2. Address is locally administered: Set the second-least-significant bit (U/L) to 1.
+	hw[0] = 0x02
+	// The first 24 bits of the MAC represent the Organizationally Unique Identifier (OUI).
+	// Since this address is locally administered, we can do whatever we want as long as
+	// it doesn't conflict with other addresses.
+	hw[1] = 0x42
+	// Fill the remaining 4 bytes based on the input
+	if ip == nil {
+		rand.Read(hw[2:])
+	} else {
+		copy(hw[2:], ip.To4())
+	}
+	return hw
+}
+
+// GenerateRandomMAC returns a new 6-byte(48-bit) hardware address (MAC)
+func GenerateRandomMAC() net.HardwareAddr {
+	return genMAC(nil)
+}
+
+// GenerateMACFromIP returns a locally administered MAC address where the 4 least
+// significant bytes are derived from the IPv4 address.
+func GenerateMACFromIP(ip net.IP) net.HardwareAddr {
+	return genMAC(ip)
+}
+
+// GenerateRandomName returns a new name joined with a prefix.  This size
+// specified is used to truncate the randomly generated value
+func GenerateRandomName(prefix string, size int) (string, error) {
+	id := make([]byte, 32)
+	if _, err := io.ReadFull(rand.Reader, id); err != nil {
+		return "", err
+	}
+	return prefix + hex.EncodeToString(id)[:size], nil
+}
+
+// ReverseIP accepts a V4 or V6 IP string in the canonical form and returns a reversed IP in
+// the dotted decimal form . This is used to setup the IP to service name mapping in the optimal
+// way for the DNS PTR queries.
+func ReverseIP(IP string) string {
+	var reverseIP []string
+
+	if net.ParseIP(IP).To4() != nil {
+		reverseIP = strings.Split(IP, ".")
+		l := len(reverseIP)
+		for i, j := 0, l-1; i < l/2; i, j = i+1, j-1 {
+			reverseIP[i], reverseIP[j] = reverseIP[j], reverseIP[i]
+		}
+	} else {
+		reverseIP = strings.Split(IP, ":")
+
+		// Reversed IPv6 is represented in dotted decimal instead of the typical
+		// colon hex notation
+		for key := range reverseIP {
+			if len(reverseIP[key]) == 0 { // expand the compressed 0s
+				reverseIP[key] = strings.Repeat("0000", 8-strings.Count(IP, ":"))
+			} else if len(reverseIP[key]) < 4 { // 0-padding needed
+				reverseIP[key] = strings.Repeat("0", 4-len(reverseIP[key])) + reverseIP[key]
+			}
+		}
+
+		reverseIP = strings.Split(strings.Join(reverseIP, ""), "")
+
+		l := len(reverseIP)
+		for i, j := 0, l-1; i < l/2; i, j = i+1, j-1 {
+			reverseIP[i], reverseIP[j] = reverseIP[j], reverseIP[i]
+		}
+	}
+
+	return strings.Join(reverseIP, ".")
+}
+
+// ParseAlias parses and validates the specified string as an alias format (name:alias)
+func ParseAlias(val string) (string, string, error) {
+	if val == "" {
+		return "", "", errors.New("empty string specified for alias")
+	}
+	arr := strings.Split(val, ":")
+	if len(arr) > 2 {
+		return "", "", fmt.Errorf("bad format for alias: %s", val)
+	}
+	if len(arr) == 1 {
+		return val, val, nil
+	}
+	return arr[0], arr[1], nil
+}
+
+// ValidateAlias validates that the specified string has a valid alias format (containerName:alias).
+func ValidateAlias(val string) (string, error) {
+	if _, _, err := ParseAlias(val); err != nil {
+		return val, err
+	}
+	return val, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/netutils/utils_freebsd.go b/vendor/github.com/docker/libnetwork/netutils/utils_freebsd.go
new file mode 100644
index 0000000000..02bcd32aa8
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/netutils/utils_freebsd.go
@@ -0,0 +1,23 @@
+package netutils
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/types"
+)
+
+// ElectInterfaceAddresses looks for an interface on the OS with the specified name
+// and returns returns all its IPv4 and IPv6 addresses in CIDR notation.
+// If a failure in retrieving the addresses or no IPv4 address is found, an error is returned.
+// If the interface does not exist, it chooses from a predefined
+// list the first IPv4 address which does not conflict with other
+// interfaces on the system.
+func ElectInterfaceAddresses(name string) ([]*net.IPNet, []*net.IPNet, error) {
+	return nil, nil, types.NotImplementedErrorf("not supported on freebsd")
+}
+
+// FindAvailableNetwork returns a network from the passed list which does not
+// overlap with existing interfaces in the system
+func FindAvailableNetwork(list []*net.IPNet) (*net.IPNet, error) {
+	return nil, types.NotImplementedErrorf("not supported on freebsd")
+}
diff --git a/vendor/github.com/docker/libnetwork/netutils/utils_linux.go b/vendor/github.com/docker/libnetwork/netutils/utils_linux.go
new file mode 100644
index 0000000000..870cc12855
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/netutils/utils_linux.go
@@ -0,0 +1,126 @@
+// +build linux
+// Network utility functions.
+
+package netutils
+
+import (
+	"fmt"
+	"net"
+	"strings"
+
+	"github.com/docker/libnetwork/ipamutils"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/resolvconf"
+	"github.com/docker/libnetwork/types"
+	"github.com/vishvananda/netlink"
+)
+
+var (
+	networkGetRoutesFct func(netlink.Link, int) ([]netlink.Route, error)
+)
+
+// CheckRouteOverlaps checks whether the passed network overlaps with any existing routes
+func CheckRouteOverlaps(toCheck *net.IPNet) error {
+	if networkGetRoutesFct == nil {
+		networkGetRoutesFct = ns.NlHandle().RouteList
+	}
+	networks, err := networkGetRoutesFct(nil, netlink.FAMILY_V4)
+	if err != nil {
+		return err
+	}
+	for _, network := range networks {
+		if network.Dst != nil && NetworkOverlaps(toCheck, network.Dst) {
+			return ErrNetworkOverlaps
+		}
+	}
+	return nil
+}
+
+// GenerateIfaceName returns an interface name using the passed in
+// prefix and the length of random bytes. The api ensures that the
+// there are is no interface which exists with that name.
+func GenerateIfaceName(nlh *netlink.Handle, prefix string, len int) (string, error) {
+	linkByName := netlink.LinkByName
+	if nlh != nil {
+		linkByName = nlh.LinkByName
+	}
+	for i := 0; i < 3; i++ {
+		name, err := GenerateRandomName(prefix, len)
+		if err != nil {
+			continue
+		}
+		_, err = linkByName(name)
+		if err != nil {
+			if strings.Contains(err.Error(), "not found") {
+				return name, nil
+			}
+			return "", err
+		}
+	}
+	return "", types.InternalErrorf("could not generate interface name")
+}
+
+// ElectInterfaceAddresses looks for an interface on the OS with the
+// specified name and returns returns all its IPv4 and IPv6 addresses in CIDR notation.
+// If a failure in retrieving the addresses or no IPv4 address is found, an error is returned.
+// If the interface does not exist, it chooses from a predefined
+// list the first IPv4 address which does not conflict with other
+// interfaces on the system.
+func ElectInterfaceAddresses(name string) ([]*net.IPNet, []*net.IPNet, error) {
+	var (
+		v4Nets []*net.IPNet
+		v6Nets []*net.IPNet
+	)
+
+	defer osl.InitOSContext()()
+
+	link, _ := ns.NlHandle().LinkByName(name)
+	if link != nil {
+		v4addr, err := ns.NlHandle().AddrList(link, netlink.FAMILY_V4)
+		if err != nil {
+			return nil, nil, err
+		}
+		v6addr, err := ns.NlHandle().AddrList(link, netlink.FAMILY_V6)
+		if err != nil {
+			return nil, nil, err
+		}
+		for _, nlAddr := range v4addr {
+			v4Nets = append(v4Nets, nlAddr.IPNet)
+		}
+		for _, nlAddr := range v6addr {
+			v6Nets = append(v6Nets, nlAddr.IPNet)
+		}
+	}
+
+	if link == nil || len(v4Nets) == 0 {
+		// Choose from predefined broad networks
+		v4Net, err := FindAvailableNetwork(ipamutils.PredefinedBroadNetworks)
+		if err != nil {
+			return nil, nil, err
+		}
+		v4Nets = append(v4Nets, v4Net)
+	}
+
+	return v4Nets, v6Nets, nil
+}
+
+// FindAvailableNetwork returns a network from the passed list which does not
+// overlap with existing interfaces in the system
+func FindAvailableNetwork(list []*net.IPNet) (*net.IPNet, error) {
+	// We don't check for an error here, because we don't really care if we
+	// can't read /etc/resolv.conf. So instead we skip the append if resolvConf
+	// is nil. It either doesn't exist, or we can't read it for some reason.
+	var nameservers []string
+	if rc, err := resolvconf.Get(); err == nil {
+		nameservers = resolvconf.GetNameserversAsCIDR(rc.Content)
+	}
+	for _, nw := range list {
+		if err := CheckNameserverOverlaps(nameservers, nw); err == nil {
+			if err := CheckRouteOverlaps(nw); err == nil {
+				return nw, nil
+			}
+		}
+	}
+	return nil, fmt.Errorf("no available network")
+}
diff --git a/vendor/github.com/docker/libnetwork/netutils/utils_windows.go b/vendor/github.com/docker/libnetwork/netutils/utils_windows.go
new file mode 100644
index 0000000000..73af44ec71
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/netutils/utils_windows.go
@@ -0,0 +1,25 @@
+package netutils
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/types"
+)
+
+// ElectInterfaceAddresses looks for an interface on the OS with the specified name
+// and returns returns all its IPv4 and IPv6 addresses in CIDR notation.
+// If a failure in retrieving the addresses or no IPv4 address is found, an error is returned.
+// If the interface does not exist, it chooses from a predefined
+// list the first IPv4 address which does not conflict with other
+// interfaces on the system.
+func ElectInterfaceAddresses(name string) ([]*net.IPNet, []*net.IPNet, error) {
+	return nil, nil, types.NotImplementedErrorf("not supported on windows")
+}
+
+// FindAvailableNetwork returns a network from the passed list which does not
+// overlap with existing interfaces in the system
+
+// TODO : Use appropriate windows APIs to identify non-overlapping subnets
+func FindAvailableNetwork(list []*net.IPNet) (*net.IPNet, error) {
+	return nil, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/network.go b/vendor/github.com/docker/libnetwork/network.go
new file mode 100644
index 0000000000..e283d65815
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/network.go
@@ -0,0 +1,2133 @@
+package libnetwork
+
+import (
+	"encoding/json"
+	"fmt"
+	"net"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/libnetwork/common"
+	"github.com/docker/libnetwork/config"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/driverapi"
+	"github.com/docker/libnetwork/etchosts"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/netutils"
+	"github.com/docker/libnetwork/networkdb"
+	"github.com/docker/libnetwork/options"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// A Network represents a logical connectivity zone that containers may
+// join using the Link method. A Network is managed by a specific driver.
+type Network interface {
+	// A user chosen name for this network.
+	Name() string
+
+	// A system generated id for this network.
+	ID() string
+
+	// The type of network, which corresponds to its managing driver.
+	Type() string
+
+	// Create a new endpoint to this network symbolically identified by the
+	// specified unique name. The options parameter carries driver specific options.
+	CreateEndpoint(name string, options ...EndpointOption) (Endpoint, error)
+
+	// Delete the network.
+	Delete() error
+
+	// Endpoints returns the list of Endpoint(s) in this network.
+	Endpoints() []Endpoint
+
+	// WalkEndpoints uses the provided function to walk the Endpoints
+	WalkEndpoints(walker EndpointWalker)
+
+	// EndpointByName returns the Endpoint which has the passed name. If not found, the error ErrNoSuchEndpoint is returned.
+	EndpointByName(name string) (Endpoint, error)
+
+	// EndpointByID returns the Endpoint which has the passed id. If not found, the error ErrNoSuchEndpoint is returned.
+	EndpointByID(id string) (Endpoint, error)
+
+	// Return certain operational data belonging to this network
+	Info() NetworkInfo
+}
+
+// NetworkInfo returns some configuration and operational information about the network
+type NetworkInfo interface {
+	IpamConfig() (string, map[string]string, []*IpamConf, []*IpamConf)
+	IpamInfo() ([]*IpamInfo, []*IpamInfo)
+	DriverOptions() map[string]string
+	Scope() string
+	IPv6Enabled() bool
+	Internal() bool
+	Attachable() bool
+	Ingress() bool
+	ConfigFrom() string
+	ConfigOnly() bool
+	Labels() map[string]string
+	Dynamic() bool
+	Created() time.Time
+	// Peers returns a slice of PeerInfo structures which has the information about the peer
+	// nodes participating in the same overlay network. This is currently the per-network
+	// gossip cluster. For non-dynamic overlay networks and bridge networks it returns an
+	// empty slice
+	Peers() []networkdb.PeerInfo
+	//Services returns a map of services keyed by the service name with the details
+	//of all the tasks that belong to the service. Applicable only in swarm mode.
+	Services() map[string]ServiceInfo
+}
+
+// EndpointWalker is a client provided function which will be used to walk the Endpoints.
+// When the function returns true, the walk will stop.
+type EndpointWalker func(ep Endpoint) bool
+
+// ipInfo is the reverse mapping from IP to service name to serve the PTR query.
+// extResolver is set if an externl server resolves a service name to this IP.
+// Its an indication to defer PTR queries also to that external server.
+type ipInfo struct {
+	name        string
+	serviceID   string
+	extResolver bool
+}
+
+// svcMapEntry is the body of the element into the svcMap
+// The ip is a string because the SetMatrix does not accept non hashable values
+type svcMapEntry struct {
+	ip        string
+	serviceID string
+}
+
+type svcInfo struct {
+	svcMap     common.SetMatrix
+	svcIPv6Map common.SetMatrix
+	ipMap      common.SetMatrix
+	service    map[string][]servicePorts
+}
+
+// backing container or host's info
+type serviceTarget struct {
+	name string
+	ip   net.IP
+	port uint16
+}
+
+type servicePorts struct {
+	portName string
+	proto    string
+	target   []serviceTarget
+}
+
+type networkDBTable struct {
+	name    string
+	objType driverapi.ObjectType
+}
+
+// IpamConf contains all the ipam related configurations for a network
+type IpamConf struct {
+	// The master address pool for containers and network interfaces
+	PreferredPool string
+	// A subset of the master pool. If specified,
+	// this becomes the container pool
+	SubPool string
+	// Preferred Network Gateway address (optional)
+	Gateway string
+	// Auxiliary addresses for network driver. Must be within the master pool.
+	// libnetwork will reserve them if they fall into the container pool
+	AuxAddresses map[string]string
+}
+
+// Validate checks whether the configuration is valid
+func (c *IpamConf) Validate() error {
+	if c.Gateway != "" && nil == net.ParseIP(c.Gateway) {
+		return types.BadRequestErrorf("invalid gateway address %s in Ipam configuration", c.Gateway)
+	}
+	return nil
+}
+
+// IpamInfo contains all the ipam related operational info for a network
+type IpamInfo struct {
+	PoolID string
+	Meta   map[string]string
+	driverapi.IPAMData
+}
+
+// MarshalJSON encodes IpamInfo into json message
+func (i *IpamInfo) MarshalJSON() ([]byte, error) {
+	m := map[string]interface{}{
+		"PoolID": i.PoolID,
+	}
+	v, err := json.Marshal(&i.IPAMData)
+	if err != nil {
+		return nil, err
+	}
+	m["IPAMData"] = string(v)
+
+	if i.Meta != nil {
+		m["Meta"] = i.Meta
+	}
+	return json.Marshal(m)
+}
+
+// UnmarshalJSON decodes json message into PoolData
+func (i *IpamInfo) UnmarshalJSON(data []byte) error {
+	var (
+		m   map[string]interface{}
+		err error
+	)
+	if err = json.Unmarshal(data, &m); err != nil {
+		return err
+	}
+	i.PoolID = m["PoolID"].(string)
+	if v, ok := m["Meta"]; ok {
+		b, _ := json.Marshal(v)
+		if err = json.Unmarshal(b, &i.Meta); err != nil {
+			return err
+		}
+	}
+	if v, ok := m["IPAMData"]; ok {
+		if err = json.Unmarshal([]byte(v.(string)), &i.IPAMData); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+type network struct {
+	ctrlr          *controller
+	name           string
+	networkType    string
+	id             string
+	created        time.Time
+	scope          string // network data scope
+	labels         map[string]string
+	ipamType       string
+	ipamOptions    map[string]string
+	addrSpace      string
+	ipamV4Config   []*IpamConf
+	ipamV6Config   []*IpamConf
+	ipamV4Info     []*IpamInfo
+	ipamV6Info     []*IpamInfo
+	enableIPv6     bool
+	postIPv6       bool
+	epCnt          *endpointCnt
+	generic        options.Generic
+	dbIndex        uint64
+	dbExists       bool
+	persist        bool
+	stopWatchCh    chan struct{}
+	drvOnce        *sync.Once
+	resolverOnce   sync.Once
+	resolver       []Resolver
+	internal       bool
+	attachable     bool
+	inDelete       bool
+	ingress        bool
+	driverTables   []networkDBTable
+	dynamic        bool
+	configOnly     bool
+	configFrom     string
+	loadBalancerIP net.IP
+	sync.Mutex
+}
+
+func (n *network) Name() string {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.name
+}
+
+func (n *network) ID() string {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.id
+}
+
+func (n *network) Created() time.Time {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.created
+}
+
+func (n *network) Type() string {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.networkType
+}
+
+func (n *network) Key() []string {
+	n.Lock()
+	defer n.Unlock()
+	return []string{datastore.NetworkKeyPrefix, n.id}
+}
+
+func (n *network) KeyPrefix() []string {
+	return []string{datastore.NetworkKeyPrefix}
+}
+
+func (n *network) Value() []byte {
+	n.Lock()
+	defer n.Unlock()
+	b, err := json.Marshal(n)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (n *network) SetValue(value []byte) error {
+	return json.Unmarshal(value, n)
+}
+
+func (n *network) Index() uint64 {
+	n.Lock()
+	defer n.Unlock()
+	return n.dbIndex
+}
+
+func (n *network) SetIndex(index uint64) {
+	n.Lock()
+	n.dbIndex = index
+	n.dbExists = true
+	n.Unlock()
+}
+
+func (n *network) Exists() bool {
+	n.Lock()
+	defer n.Unlock()
+	return n.dbExists
+}
+
+func (n *network) Skip() bool {
+	n.Lock()
+	defer n.Unlock()
+	return !n.persist
+}
+
+func (n *network) New() datastore.KVObject {
+	n.Lock()
+	defer n.Unlock()
+
+	return &network{
+		ctrlr:   n.ctrlr,
+		drvOnce: &sync.Once{},
+		scope:   n.scope,
+	}
+}
+
+// CopyTo deep copies to the destination IpamConfig
+func (c *IpamConf) CopyTo(dstC *IpamConf) error {
+	dstC.PreferredPool = c.PreferredPool
+	dstC.SubPool = c.SubPool
+	dstC.Gateway = c.Gateway
+	if c.AuxAddresses != nil {
+		dstC.AuxAddresses = make(map[string]string, len(c.AuxAddresses))
+		for k, v := range c.AuxAddresses {
+			dstC.AuxAddresses[k] = v
+		}
+	}
+	return nil
+}
+
+// CopyTo deep copies to the destination IpamInfo
+func (i *IpamInfo) CopyTo(dstI *IpamInfo) error {
+	dstI.PoolID = i.PoolID
+	if i.Meta != nil {
+		dstI.Meta = make(map[string]string)
+		for k, v := range i.Meta {
+			dstI.Meta[k] = v
+		}
+	}
+
+	dstI.AddressSpace = i.AddressSpace
+	dstI.Pool = types.GetIPNetCopy(i.Pool)
+	dstI.Gateway = types.GetIPNetCopy(i.Gateway)
+
+	if i.AuxAddresses != nil {
+		dstI.AuxAddresses = make(map[string]*net.IPNet)
+		for k, v := range i.AuxAddresses {
+			dstI.AuxAddresses[k] = types.GetIPNetCopy(v)
+		}
+	}
+
+	return nil
+}
+
+func (n *network) validateConfiguration() error {
+	if n.configOnly {
+		// Only supports network specific configurations.
+		// Network operator configurations are not supported.
+		if n.ingress || n.internal || n.attachable || n.scope != "" {
+			return types.ForbiddenErrorf("configuration network can only contain network " +
+				"specific fields. Network operator fields like " +
+				"[ ingress | internal | attachable | scope ] are not supported.")
+		}
+	}
+	if n.configFrom != "" {
+		if n.configOnly {
+			return types.ForbiddenErrorf("a configuration network cannot depend on another configuration network")
+		}
+		if n.ipamType != "" &&
+			n.ipamType != defaultIpamForNetworkType(n.networkType) ||
+			n.enableIPv6 ||
+			len(n.labels) > 0 || len(n.ipamOptions) > 0 ||
+			len(n.ipamV4Config) > 0 || len(n.ipamV6Config) > 0 {
+			return types.ForbiddenErrorf("user specified configurations are not supported if the network depends on a configuration network")
+		}
+		if len(n.generic) > 0 {
+			if data, ok := n.generic[netlabel.GenericData]; ok {
+				var (
+					driverOptions map[string]string
+					opts          interface{}
+				)
+				switch data.(type) {
+				case map[string]interface{}:
+					opts = data.(map[string]interface{})
+				case map[string]string:
+					opts = data.(map[string]string)
+				}
+				ba, err := json.Marshal(opts)
+				if err != nil {
+					return fmt.Errorf("failed to validate network configuration: %v", err)
+				}
+				if err := json.Unmarshal(ba, &driverOptions); err != nil {
+					return fmt.Errorf("failed to validate network configuration: %v", err)
+				}
+				if len(driverOptions) > 0 {
+					return types.ForbiddenErrorf("network driver options are not supported if the network depends on a configuration network")
+				}
+			}
+		}
+	}
+	return nil
+}
+
+// Applies network specific configurations
+func (n *network) applyConfigurationTo(to *network) error {
+	to.enableIPv6 = n.enableIPv6
+	if len(n.labels) > 0 {
+		to.labels = make(map[string]string, len(n.labels))
+		for k, v := range n.labels {
+			if _, ok := to.labels[k]; !ok {
+				to.labels[k] = v
+			}
+		}
+	}
+	if len(n.ipamType) != 0 {
+		to.ipamType = n.ipamType
+	}
+	if len(n.ipamOptions) > 0 {
+		to.ipamOptions = make(map[string]string, len(n.ipamOptions))
+		for k, v := range n.ipamOptions {
+			if _, ok := to.ipamOptions[k]; !ok {
+				to.ipamOptions[k] = v
+			}
+		}
+	}
+	if len(n.ipamV4Config) > 0 {
+		to.ipamV4Config = make([]*IpamConf, 0, len(n.ipamV4Config))
+		to.ipamV4Config = append(to.ipamV4Config, n.ipamV4Config...)
+	}
+	if len(n.ipamV6Config) > 0 {
+		to.ipamV6Config = make([]*IpamConf, 0, len(n.ipamV6Config))
+		to.ipamV6Config = append(to.ipamV6Config, n.ipamV6Config...)
+	}
+	if len(n.generic) > 0 {
+		to.generic = options.Generic{}
+		for k, v := range n.generic {
+			to.generic[k] = v
+		}
+	}
+	return nil
+}
+
+func (n *network) CopyTo(o datastore.KVObject) error {
+	n.Lock()
+	defer n.Unlock()
+
+	dstN := o.(*network)
+	dstN.name = n.name
+	dstN.id = n.id
+	dstN.created = n.created
+	dstN.networkType = n.networkType
+	dstN.scope = n.scope
+	dstN.dynamic = n.dynamic
+	dstN.ipamType = n.ipamType
+	dstN.enableIPv6 = n.enableIPv6
+	dstN.persist = n.persist
+	dstN.postIPv6 = n.postIPv6
+	dstN.dbIndex = n.dbIndex
+	dstN.dbExists = n.dbExists
+	dstN.drvOnce = n.drvOnce
+	dstN.internal = n.internal
+	dstN.attachable = n.attachable
+	dstN.inDelete = n.inDelete
+	dstN.ingress = n.ingress
+	dstN.configOnly = n.configOnly
+	dstN.configFrom = n.configFrom
+	dstN.loadBalancerIP = n.loadBalancerIP
+
+	// copy labels
+	if dstN.labels == nil {
+		dstN.labels = make(map[string]string, len(n.labels))
+	}
+	for k, v := range n.labels {
+		dstN.labels[k] = v
+	}
+
+	if n.ipamOptions != nil {
+		dstN.ipamOptions = make(map[string]string, len(n.ipamOptions))
+		for k, v := range n.ipamOptions {
+			dstN.ipamOptions[k] = v
+		}
+	}
+
+	for _, v4conf := range n.ipamV4Config {
+		dstV4Conf := &IpamConf{}
+		v4conf.CopyTo(dstV4Conf)
+		dstN.ipamV4Config = append(dstN.ipamV4Config, dstV4Conf)
+	}
+
+	for _, v4info := range n.ipamV4Info {
+		dstV4Info := &IpamInfo{}
+		v4info.CopyTo(dstV4Info)
+		dstN.ipamV4Info = append(dstN.ipamV4Info, dstV4Info)
+	}
+
+	for _, v6conf := range n.ipamV6Config {
+		dstV6Conf := &IpamConf{}
+		v6conf.CopyTo(dstV6Conf)
+		dstN.ipamV6Config = append(dstN.ipamV6Config, dstV6Conf)
+	}
+
+	for _, v6info := range n.ipamV6Info {
+		dstV6Info := &IpamInfo{}
+		v6info.CopyTo(dstV6Info)
+		dstN.ipamV6Info = append(dstN.ipamV6Info, dstV6Info)
+	}
+
+	dstN.generic = options.Generic{}
+	for k, v := range n.generic {
+		dstN.generic[k] = v
+	}
+
+	return nil
+}
+
+func (n *network) DataScope() string {
+	s := n.Scope()
+	// All swarm scope networks have local datascope
+	if s == datastore.SwarmScope {
+		s = datastore.LocalScope
+	}
+	return s
+}
+
+func (n *network) getEpCnt() *endpointCnt {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.epCnt
+}
+
+// TODO : Can be made much more generic with the help of reflection (but has some golang limitations)
+func (n *network) MarshalJSON() ([]byte, error) {
+	netMap := make(map[string]interface{})
+	netMap["name"] = n.name
+	netMap["id"] = n.id
+	netMap["created"] = n.created
+	netMap["networkType"] = n.networkType
+	netMap["scope"] = n.scope
+	netMap["labels"] = n.labels
+	netMap["ipamType"] = n.ipamType
+	netMap["ipamOptions"] = n.ipamOptions
+	netMap["addrSpace"] = n.addrSpace
+	netMap["enableIPv6"] = n.enableIPv6
+	if n.generic != nil {
+		netMap["generic"] = n.generic
+	}
+	netMap["persist"] = n.persist
+	netMap["postIPv6"] = n.postIPv6
+	if len(n.ipamV4Config) > 0 {
+		ics, err := json.Marshal(n.ipamV4Config)
+		if err != nil {
+			return nil, err
+		}
+		netMap["ipamV4Config"] = string(ics)
+	}
+	if len(n.ipamV4Info) > 0 {
+		iis, err := json.Marshal(n.ipamV4Info)
+		if err != nil {
+			return nil, err
+		}
+		netMap["ipamV4Info"] = string(iis)
+	}
+	if len(n.ipamV6Config) > 0 {
+		ics, err := json.Marshal(n.ipamV6Config)
+		if err != nil {
+			return nil, err
+		}
+		netMap["ipamV6Config"] = string(ics)
+	}
+	if len(n.ipamV6Info) > 0 {
+		iis, err := json.Marshal(n.ipamV6Info)
+		if err != nil {
+			return nil, err
+		}
+		netMap["ipamV6Info"] = string(iis)
+	}
+	netMap["internal"] = n.internal
+	netMap["attachable"] = n.attachable
+	netMap["inDelete"] = n.inDelete
+	netMap["ingress"] = n.ingress
+	netMap["configOnly"] = n.configOnly
+	netMap["configFrom"] = n.configFrom
+	netMap["loadBalancerIP"] = n.loadBalancerIP
+	return json.Marshal(netMap)
+}
+
+// TODO : Can be made much more generic with the help of reflection (but has some golang limitations)
+func (n *network) UnmarshalJSON(b []byte) (err error) {
+	var netMap map[string]interface{}
+	if err := json.Unmarshal(b, &netMap); err != nil {
+		return err
+	}
+	n.name = netMap["name"].(string)
+	n.id = netMap["id"].(string)
+	// "created" is not available in older versions
+	if v, ok := netMap["created"]; ok {
+		// n.created is time.Time but marshalled as string
+		if err = n.created.UnmarshalText([]byte(v.(string))); err != nil {
+			logrus.Warnf("failed to unmarshal creation time %v: %v", v, err)
+			n.created = time.Time{}
+		}
+	}
+	n.networkType = netMap["networkType"].(string)
+	n.enableIPv6 = netMap["enableIPv6"].(bool)
+
+	// if we weren't unmarshaling to netMap we could simply set n.labels
+	// unfortunately, we can't because map[string]interface{} != map[string]string
+	if labels, ok := netMap["labels"].(map[string]interface{}); ok {
+		n.labels = make(map[string]string, len(labels))
+		for label, value := range labels {
+			n.labels[label] = value.(string)
+		}
+	}
+
+	if v, ok := netMap["ipamOptions"]; ok {
+		if iOpts, ok := v.(map[string]interface{}); ok {
+			n.ipamOptions = make(map[string]string, len(iOpts))
+			for k, v := range iOpts {
+				n.ipamOptions[k] = v.(string)
+			}
+		}
+	}
+
+	if v, ok := netMap["generic"]; ok {
+		n.generic = v.(map[string]interface{})
+		// Restore opts in their map[string]string form
+		if v, ok := n.generic[netlabel.GenericData]; ok {
+			var lmap map[string]string
+			ba, err := json.Marshal(v)
+			if err != nil {
+				return err
+			}
+			if err := json.Unmarshal(ba, &lmap); err != nil {
+				return err
+			}
+			n.generic[netlabel.GenericData] = lmap
+		}
+	}
+	if v, ok := netMap["persist"]; ok {
+		n.persist = v.(bool)
+	}
+	if v, ok := netMap["postIPv6"]; ok {
+		n.postIPv6 = v.(bool)
+	}
+	if v, ok := netMap["ipamType"]; ok {
+		n.ipamType = v.(string)
+	} else {
+		n.ipamType = ipamapi.DefaultIPAM
+	}
+	if v, ok := netMap["addrSpace"]; ok {
+		n.addrSpace = v.(string)
+	}
+	if v, ok := netMap["ipamV4Config"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &n.ipamV4Config); err != nil {
+			return err
+		}
+	}
+	if v, ok := netMap["ipamV4Info"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &n.ipamV4Info); err != nil {
+			return err
+		}
+	}
+	if v, ok := netMap["ipamV6Config"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &n.ipamV6Config); err != nil {
+			return err
+		}
+	}
+	if v, ok := netMap["ipamV6Info"]; ok {
+		if err := json.Unmarshal([]byte(v.(string)), &n.ipamV6Info); err != nil {
+			return err
+		}
+	}
+	if v, ok := netMap["internal"]; ok {
+		n.internal = v.(bool)
+	}
+	if v, ok := netMap["attachable"]; ok {
+		n.attachable = v.(bool)
+	}
+	if s, ok := netMap["scope"]; ok {
+		n.scope = s.(string)
+	}
+	if v, ok := netMap["inDelete"]; ok {
+		n.inDelete = v.(bool)
+	}
+	if v, ok := netMap["ingress"]; ok {
+		n.ingress = v.(bool)
+	}
+	if v, ok := netMap["configOnly"]; ok {
+		n.configOnly = v.(bool)
+	}
+	if v, ok := netMap["configFrom"]; ok {
+		n.configFrom = v.(string)
+	}
+	if v, ok := netMap["loadBalancerIP"]; ok {
+		n.loadBalancerIP = net.ParseIP(v.(string))
+	}
+	// Reconcile old networks with the recently added `--ipv6` flag
+	if !n.enableIPv6 {
+		n.enableIPv6 = len(n.ipamV6Info) > 0
+	}
+	return nil
+}
+
+// NetworkOption is an option setter function type used to pass various options to
+// NewNetwork method. The various setter functions of type NetworkOption are
+// provided by libnetwork, they look like NetworkOptionXXXX(...)
+type NetworkOption func(n *network)
+
+// NetworkOptionGeneric function returns an option setter for a Generic option defined
+// in a Dictionary of Key-Value pair
+func NetworkOptionGeneric(generic map[string]interface{}) NetworkOption {
+	return func(n *network) {
+		if n.generic == nil {
+			n.generic = make(map[string]interface{})
+		}
+		if val, ok := generic[netlabel.EnableIPv6]; ok {
+			n.enableIPv6 = val.(bool)
+		}
+		if val, ok := generic[netlabel.Internal]; ok {
+			n.internal = val.(bool)
+		}
+		for k, v := range generic {
+			n.generic[k] = v
+		}
+	}
+}
+
+// NetworkOptionIngress returns an option setter to indicate if a network is
+// an ingress network.
+func NetworkOptionIngress(ingress bool) NetworkOption {
+	return func(n *network) {
+		n.ingress = ingress
+	}
+}
+
+// NetworkOptionPersist returns an option setter to set persistence policy for a network
+func NetworkOptionPersist(persist bool) NetworkOption {
+	return func(n *network) {
+		n.persist = persist
+	}
+}
+
+// NetworkOptionEnableIPv6 returns an option setter to explicitly configure IPv6
+func NetworkOptionEnableIPv6(enableIPv6 bool) NetworkOption {
+	return func(n *network) {
+		if n.generic == nil {
+			n.generic = make(map[string]interface{})
+		}
+		n.enableIPv6 = enableIPv6
+		n.generic[netlabel.EnableIPv6] = enableIPv6
+	}
+}
+
+// NetworkOptionInternalNetwork returns an option setter to config the network
+// to be internal which disables default gateway service
+func NetworkOptionInternalNetwork() NetworkOption {
+	return func(n *network) {
+		if n.generic == nil {
+			n.generic = make(map[string]interface{})
+		}
+		n.internal = true
+		n.generic[netlabel.Internal] = true
+	}
+}
+
+// NetworkOptionAttachable returns an option setter to set attachable for a network
+func NetworkOptionAttachable(attachable bool) NetworkOption {
+	return func(n *network) {
+		n.attachable = attachable
+	}
+}
+
+// NetworkOptionScope returns an option setter to overwrite the network's scope.
+// By default the network's scope is set to the network driver's datascope.
+func NetworkOptionScope(scope string) NetworkOption {
+	return func(n *network) {
+		n.scope = scope
+	}
+}
+
+// NetworkOptionIpam function returns an option setter for the ipam configuration for this network
+func NetworkOptionIpam(ipamDriver string, addrSpace string, ipV4 []*IpamConf, ipV6 []*IpamConf, opts map[string]string) NetworkOption {
+	return func(n *network) {
+		if ipamDriver != "" {
+			n.ipamType = ipamDriver
+			if ipamDriver == ipamapi.DefaultIPAM {
+				n.ipamType = defaultIpamForNetworkType(n.Type())
+			}
+		}
+		n.ipamOptions = opts
+		n.addrSpace = addrSpace
+		n.ipamV4Config = ipV4
+		n.ipamV6Config = ipV6
+	}
+}
+
+// NetworkOptionLBEndpoint function returns an option setter for the configuration of the load balancer endpoint for this network
+func NetworkOptionLBEndpoint(ip net.IP) NetworkOption {
+	return func(n *network) {
+		n.loadBalancerIP = ip
+	}
+}
+
+// NetworkOptionDriverOpts function returns an option setter for any driver parameter described by a map
+func NetworkOptionDriverOpts(opts map[string]string) NetworkOption {
+	return func(n *network) {
+		if n.generic == nil {
+			n.generic = make(map[string]interface{})
+		}
+		if opts == nil {
+			opts = make(map[string]string)
+		}
+		// Store the options
+		n.generic[netlabel.GenericData] = opts
+	}
+}
+
+// NetworkOptionLabels function returns an option setter for labels specific to a network
+func NetworkOptionLabels(labels map[string]string) NetworkOption {
+	return func(n *network) {
+		n.labels = labels
+	}
+}
+
+// NetworkOptionDynamic function returns an option setter for dynamic option for a network
+func NetworkOptionDynamic() NetworkOption {
+	return func(n *network) {
+		n.dynamic = true
+	}
+}
+
+// NetworkOptionDeferIPv6Alloc instructs the network to defer the IPV6 address allocation until after the endpoint has been created
+// It is being provided to support the specific docker daemon flags where user can deterministically assign an IPv6 address
+// to a container as combination of fixed-cidr-v6 + mac-address
+// TODO: Remove this option setter once we support endpoint ipam options
+func NetworkOptionDeferIPv6Alloc(enable bool) NetworkOption {
+	return func(n *network) {
+		n.postIPv6 = enable
+	}
+}
+
+// NetworkOptionConfigOnly tells controller this network is
+// a configuration only network. It serves as a configuration
+// for other networks.
+func NetworkOptionConfigOnly() NetworkOption {
+	return func(n *network) {
+		n.configOnly = true
+	}
+}
+
+// NetworkOptionConfigFrom tells controller to pick the
+// network configuration from a configuration only network
+func NetworkOptionConfigFrom(name string) NetworkOption {
+	return func(n *network) {
+		n.configFrom = name
+	}
+}
+
+func (n *network) processOptions(options ...NetworkOption) {
+	for _, opt := range options {
+		if opt != nil {
+			opt(n)
+		}
+	}
+}
+
+func (n *network) resolveDriver(name string, load bool) (driverapi.Driver, *driverapi.Capability, error) {
+	c := n.getController()
+
+	// Check if a driver for the specified network type is available
+	d, cap := c.drvRegistry.Driver(name)
+	if d == nil {
+		if load {
+			err := c.loadDriver(name)
+			if err != nil {
+				return nil, nil, err
+			}
+
+			d, cap = c.drvRegistry.Driver(name)
+			if d == nil {
+				return nil, nil, fmt.Errorf("could not resolve driver %s in registry", name)
+			}
+		} else {
+			// don't fail if driver loading is not required
+			return nil, nil, nil
+		}
+	}
+
+	return d, cap, nil
+}
+
+func (n *network) driverScope() string {
+	_, cap, err := n.resolveDriver(n.networkType, true)
+	if err != nil {
+		// If driver could not be resolved simply return an empty string
+		return ""
+	}
+
+	return cap.DataScope
+}
+
+func (n *network) driverIsMultihost() bool {
+	_, cap, err := n.resolveDriver(n.networkType, true)
+	if err != nil {
+		return false
+	}
+	return cap.ConnectivityScope == datastore.GlobalScope
+}
+
+func (n *network) driver(load bool) (driverapi.Driver, error) {
+	d, cap, err := n.resolveDriver(n.networkType, load)
+	if err != nil {
+		return nil, err
+	}
+
+	n.Lock()
+	// If load is not required, driver, cap and err may all be nil
+	if n.scope == "" && cap != nil {
+		n.scope = cap.DataScope
+	}
+	if n.dynamic {
+		// If the network is dynamic, then it is swarm
+		// scoped regardless of the backing driver.
+		n.scope = datastore.SwarmScope
+	}
+	n.Unlock()
+	return d, nil
+}
+
+func (n *network) Delete() error {
+	return n.delete(false)
+}
+
+func (n *network) delete(force bool) error {
+	n.Lock()
+	c := n.ctrlr
+	name := n.name
+	id := n.id
+	n.Unlock()
+
+	c.networkLocker.Lock(id)
+	defer c.networkLocker.Unlock(id)
+
+	n, err := c.getNetworkFromStore(id)
+	if err != nil {
+		return &UnknownNetworkError{name: name, id: id}
+	}
+
+	if len(n.loadBalancerIP) != 0 {
+		endpoints := n.Endpoints()
+		if force || (len(endpoints) == 1 && !n.ingress) {
+			n.deleteLoadBalancerSandbox()
+		}
+		//Reload the network from the store to update the epcnt.
+		n, err = c.getNetworkFromStore(id)
+		if err != nil {
+			return &UnknownNetworkError{name: name, id: id}
+		}
+	}
+
+	if !force && n.getEpCnt().EndpointCnt() != 0 {
+		if n.configOnly {
+			return types.ForbiddenErrorf("configuration network %q is in use", n.Name())
+		}
+		return &ActiveEndpointsError{name: n.name, id: n.id}
+	}
+
+	// Mark the network for deletion
+	n.inDelete = true
+	if err = c.updateToStore(n); err != nil {
+		return fmt.Errorf("error marking network %s (%s) for deletion: %v", n.Name(), n.ID(), err)
+	}
+
+	if n.ConfigFrom() != "" {
+		if t, err := c.getConfigNetwork(n.ConfigFrom()); err == nil {
+			if err := t.getEpCnt().DecEndpointCnt(); err != nil {
+				logrus.Warnf("Failed to update reference count for configuration network %q on removal of network %q: %v",
+					t.Name(), n.Name(), err)
+			}
+		} else {
+			logrus.Warnf("Could not find configuration network %q during removal of network %q", n.configOnly, n.Name())
+		}
+	}
+
+	if n.configOnly {
+		goto removeFromStore
+	}
+
+	if err = n.deleteNetwork(); err != nil {
+		if !force {
+			return err
+		}
+		logrus.Debugf("driver failed to delete stale network %s (%s): %v", n.Name(), n.ID(), err)
+	}
+
+	n.ipamRelease()
+	if err = c.updateToStore(n); err != nil {
+		logrus.Warnf("Failed to update store after ipam release for network %s (%s): %v", n.Name(), n.ID(), err)
+	}
+
+	// We are about to delete the network. Leave the gossip
+	// cluster for the network to stop all incoming network
+	// specific gossip updates before cleaning up all the service
+	// bindings for the network. But cleanup service binding
+	// before deleting the network from the store since service
+	// bindings cleanup requires the network in the store.
+	n.cancelDriverWatches()
+	if err = n.leaveCluster(); err != nil {
+		logrus.Errorf("Failed leaving network %s from the agent cluster: %v", n.Name(), err)
+	}
+
+	// Cleanup the service discovery for this network
+	c.cleanupServiceDiscovery(n.ID())
+
+	// Cleanup the load balancer
+	c.cleanupServiceBindings(n.ID())
+
+removeFromStore:
+	// deleteFromStore performs an atomic delete operation and the
+	// network.epCnt will help prevent any possible
+	// race between endpoint join and network delete
+	if err = c.deleteFromStore(n.getEpCnt()); err != nil {
+		if !force {
+			return fmt.Errorf("error deleting network endpoint count from store: %v", err)
+		}
+		logrus.Debugf("Error deleting endpoint count from store for stale network %s (%s) for deletion: %v", n.Name(), n.ID(), err)
+	}
+
+	if err = c.deleteFromStore(n); err != nil {
+		return fmt.Errorf("error deleting network from store: %v", err)
+	}
+
+	return nil
+}
+
+func (n *network) deleteNetwork() error {
+	d, err := n.driver(true)
+	if err != nil {
+		return fmt.Errorf("failed deleting network: %v", err)
+	}
+
+	if err := d.DeleteNetwork(n.ID()); err != nil {
+		// Forbidden Errors should be honored
+		if _, ok := err.(types.ForbiddenError); ok {
+			return err
+		}
+
+		if _, ok := err.(types.MaskableError); !ok {
+			logrus.Warnf("driver error deleting network %s : %v", n.name, err)
+		}
+	}
+
+	for _, resolver := range n.resolver {
+		resolver.Stop()
+	}
+	return nil
+}
+
+func (n *network) addEndpoint(ep *endpoint) error {
+	d, err := n.driver(true)
+	if err != nil {
+		return fmt.Errorf("failed to add endpoint: %v", err)
+	}
+
+	err = d.CreateEndpoint(n.id, ep.id, ep.Interface(), ep.generic)
+	if err != nil {
+		return types.InternalErrorf("failed to create endpoint %s on network %s: %v",
+			ep.Name(), n.Name(), err)
+	}
+
+	return nil
+}
+
+func (n *network) CreateEndpoint(name string, options ...EndpointOption) (Endpoint, error) {
+	var err error
+	if !config.IsValidName(name) {
+		return nil, ErrInvalidName(name)
+	}
+
+	if n.ConfigOnly() {
+		return nil, types.ForbiddenErrorf("cannot create endpoint on configuration-only network")
+	}
+
+	if _, err = n.EndpointByName(name); err == nil {
+		return nil, types.ForbiddenErrorf("endpoint with name %s already exists in network %s", name, n.Name())
+	}
+
+	n.ctrlr.networkLocker.Lock(n.id)
+	defer n.ctrlr.networkLocker.Unlock(n.id)
+
+	return n.createEndpoint(name, options...)
+
+}
+
+func (n *network) createEndpoint(name string, options ...EndpointOption) (Endpoint, error) {
+	var err error
+
+	ep := &endpoint{name: name, generic: make(map[string]interface{}), iface: &endpointInterface{}}
+	ep.id = stringid.GenerateRandomID()
+
+	// Initialize ep.network with a possibly stale copy of n. We need this to get network from
+	// store. But once we get it from store we will have the most uptodate copy possibly.
+	ep.network = n
+	ep.locator = n.getController().clusterHostID()
+	ep.network, err = ep.getNetworkFromStore()
+	if err != nil {
+		return nil, fmt.Errorf("failed to get network during CreateEndpoint: %v", err)
+	}
+	n = ep.network
+
+	ep.processOptions(options...)
+
+	for _, llIPNet := range ep.Iface().LinkLocalAddresses() {
+		if !llIPNet.IP.IsLinkLocalUnicast() {
+			return nil, types.BadRequestErrorf("invalid link local IP address: %v", llIPNet.IP)
+		}
+	}
+
+	if opt, ok := ep.generic[netlabel.MacAddress]; ok {
+		if mac, ok := opt.(net.HardwareAddr); ok {
+			ep.iface.mac = mac
+		}
+	}
+
+	ipam, cap, err := n.getController().getIPAMDriver(n.ipamType)
+	if err != nil {
+		return nil, err
+	}
+
+	if cap.RequiresMACAddress {
+		if ep.iface.mac == nil {
+			ep.iface.mac = netutils.GenerateRandomMAC()
+		}
+		if ep.ipamOptions == nil {
+			ep.ipamOptions = make(map[string]string)
+		}
+		ep.ipamOptions[netlabel.MacAddress] = ep.iface.mac.String()
+	}
+
+	if err = ep.assignAddress(ipam, true, n.enableIPv6 && !n.postIPv6); err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			ep.releaseAddress()
+		}
+	}()
+	// Moving updateToSTore before calling addEndpoint so that we shall clean up VETH interfaces in case
+	// DockerD get killed between addEndpoint and updateSTore call
+	if err = n.getController().updateToStore(ep); err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			if e := n.getController().deleteFromStore(ep); e != nil {
+				logrus.Warnf("error rolling back endpoint %s from store: %v", name, e)
+			}
+		}
+	}()
+
+	if err = n.addEndpoint(ep); err != nil {
+		return nil, err
+	}
+	defer func() {
+		if err != nil {
+			if e := ep.deleteEndpoint(false); e != nil {
+				logrus.Warnf("cleaning up endpoint failed %s : %v", name, e)
+			}
+		}
+	}()
+
+	if err = ep.assignAddress(ipam, false, n.enableIPv6 && n.postIPv6); err != nil {
+		return nil, err
+	}
+
+	// Watch for service records
+	n.getController().watchSvcRecord(ep)
+	defer func() {
+		if err != nil {
+			n.getController().unWatchSvcRecord(ep)
+		}
+	}()
+
+	// Increment endpoint count to indicate completion of endpoint addition
+	if err = n.getEpCnt().IncEndpointCnt(); err != nil {
+		return nil, err
+	}
+
+	return ep, nil
+}
+
+func (n *network) Endpoints() []Endpoint {
+	var list []Endpoint
+
+	endpoints, err := n.getEndpointsFromStore()
+	if err != nil {
+		logrus.Error(err)
+	}
+
+	for _, ep := range endpoints {
+		list = append(list, ep)
+	}
+
+	return list
+}
+
+func (n *network) WalkEndpoints(walker EndpointWalker) {
+	for _, e := range n.Endpoints() {
+		if walker(e) {
+			return
+		}
+	}
+}
+
+func (n *network) EndpointByName(name string) (Endpoint, error) {
+	if name == "" {
+		return nil, ErrInvalidName(name)
+	}
+	var e Endpoint
+
+	s := func(current Endpoint) bool {
+		if current.Name() == name {
+			e = current
+			return true
+		}
+		return false
+	}
+
+	n.WalkEndpoints(s)
+
+	if e == nil {
+		return nil, ErrNoSuchEndpoint(name)
+	}
+
+	return e, nil
+}
+
+func (n *network) EndpointByID(id string) (Endpoint, error) {
+	if id == "" {
+		return nil, ErrInvalidID(id)
+	}
+
+	ep, err := n.getEndpointFromStore(id)
+	if err != nil {
+		return nil, ErrNoSuchEndpoint(id)
+	}
+
+	return ep, nil
+}
+
+func (n *network) updateSvcRecord(ep *endpoint, localEps []*endpoint, isAdd bool) {
+	var ipv6 net.IP
+	epName := ep.Name()
+	if iface := ep.Iface(); iface.Address() != nil {
+		myAliases := ep.MyAliases()
+		if iface.AddressIPv6() != nil {
+			ipv6 = iface.AddressIPv6().IP
+		}
+
+		serviceID := ep.svcID
+		if serviceID == "" {
+			serviceID = ep.ID()
+		}
+		if isAdd {
+			// If anonymous endpoint has an alias use the first alias
+			// for ip->name mapping. Not having the reverse mapping
+			// breaks some apps
+			if ep.isAnonymous() {
+				if len(myAliases) > 0 {
+					n.addSvcRecords(ep.ID(), myAliases[0], serviceID, iface.Address().IP, ipv6, true, "updateSvcRecord")
+				}
+			} else {
+				n.addSvcRecords(ep.ID(), epName, serviceID, iface.Address().IP, ipv6, true, "updateSvcRecord")
+			}
+			for _, alias := range myAliases {
+				n.addSvcRecords(ep.ID(), alias, serviceID, iface.Address().IP, ipv6, false, "updateSvcRecord")
+			}
+		} else {
+			if ep.isAnonymous() {
+				if len(myAliases) > 0 {
+					n.deleteSvcRecords(ep.ID(), myAliases[0], serviceID, iface.Address().IP, ipv6, true, "updateSvcRecord")
+				}
+			} else {
+				n.deleteSvcRecords(ep.ID(), epName, serviceID, iface.Address().IP, ipv6, true, "updateSvcRecord")
+			}
+			for _, alias := range myAliases {
+				n.deleteSvcRecords(ep.ID(), alias, serviceID, iface.Address().IP, ipv6, false, "updateSvcRecord")
+			}
+		}
+	}
+}
+
+func addIPToName(ipMap common.SetMatrix, name, serviceID string, ip net.IP) {
+	reverseIP := netutils.ReverseIP(ip.String())
+	ipMap.Insert(reverseIP, ipInfo{
+		name:      name,
+		serviceID: serviceID,
+	})
+}
+
+func delIPToName(ipMap common.SetMatrix, name, serviceID string, ip net.IP) {
+	reverseIP := netutils.ReverseIP(ip.String())
+	ipMap.Remove(reverseIP, ipInfo{
+		name:      name,
+		serviceID: serviceID,
+	})
+}
+
+func addNameToIP(svcMap common.SetMatrix, name, serviceID string, epIP net.IP) {
+	svcMap.Insert(name, svcMapEntry{
+		ip:        epIP.String(),
+		serviceID: serviceID,
+	})
+}
+
+func delNameToIP(svcMap common.SetMatrix, name, serviceID string, epIP net.IP) {
+	svcMap.Remove(name, svcMapEntry{
+		ip:        epIP.String(),
+		serviceID: serviceID,
+	})
+}
+
+func (n *network) addSvcRecords(eID, name, serviceID string, epIP, epIPv6 net.IP, ipMapUpdate bool, method string) {
+	// Do not add service names for ingress network as this is a
+	// routing only network
+	if n.ingress {
+		return
+	}
+
+	logrus.Debugf("%s (%s).addSvcRecords(%s, %s, %s, %t) %s sid:%s", eID, n.ID()[0:7], name, epIP, epIPv6, ipMapUpdate, method, serviceID)
+
+	c := n.getController()
+	c.Lock()
+	defer c.Unlock()
+
+	sr, ok := c.svcRecords[n.ID()]
+	if !ok {
+		sr = svcInfo{
+			svcMap:     common.NewSetMatrix(),
+			svcIPv6Map: common.NewSetMatrix(),
+			ipMap:      common.NewSetMatrix(),
+		}
+		c.svcRecords[n.ID()] = sr
+	}
+
+	if ipMapUpdate {
+		addIPToName(sr.ipMap, name, serviceID, epIP)
+		if epIPv6 != nil {
+			addIPToName(sr.ipMap, name, serviceID, epIPv6)
+		}
+	}
+
+	addNameToIP(sr.svcMap, name, serviceID, epIP)
+	if epIPv6 != nil {
+		addNameToIP(sr.svcIPv6Map, name, serviceID, epIPv6)
+	}
+}
+
+func (n *network) deleteSvcRecords(eID, name, serviceID string, epIP net.IP, epIPv6 net.IP, ipMapUpdate bool, method string) {
+	// Do not delete service names from ingress network as this is a
+	// routing only network
+	if n.ingress {
+		return
+	}
+
+	logrus.Debugf("%s (%s).deleteSvcRecords(%s, %s, %s, %t) %s sid:%s ", eID, n.ID()[0:7], name, epIP, epIPv6, ipMapUpdate, method, serviceID)
+
+	c := n.getController()
+	c.Lock()
+	defer c.Unlock()
+
+	sr, ok := c.svcRecords[n.ID()]
+	if !ok {
+		return
+	}
+
+	if ipMapUpdate {
+		delIPToName(sr.ipMap, name, serviceID, epIP)
+
+		if epIPv6 != nil {
+			delIPToName(sr.ipMap, name, serviceID, epIPv6)
+		}
+	}
+
+	delNameToIP(sr.svcMap, name, serviceID, epIP)
+
+	if epIPv6 != nil {
+		delNameToIP(sr.svcIPv6Map, name, serviceID, epIPv6)
+	}
+}
+
+func (n *network) getSvcRecords(ep *endpoint) []etchosts.Record {
+	n.Lock()
+	defer n.Unlock()
+
+	if ep == nil {
+		return nil
+	}
+
+	var recs []etchosts.Record
+
+	epName := ep.Name()
+
+	n.ctrlr.Lock()
+	defer n.ctrlr.Unlock()
+	sr, ok := n.ctrlr.svcRecords[n.id]
+	if !ok || sr.svcMap == nil {
+		return nil
+	}
+
+	svcMapKeys := sr.svcMap.Keys()
+	// Loop on service names on this network
+	for _, k := range svcMapKeys {
+		if strings.Split(k, ".")[0] == epName {
+			continue
+		}
+		// Get all the IPs associated to this service
+		mapEntryList, ok := sr.svcMap.Get(k)
+		if !ok {
+			// The key got deleted
+			continue
+		}
+		if len(mapEntryList) == 0 {
+			logrus.Warnf("Found empty list of IP addresses for service %s on network %s (%s)", k, n.name, n.id)
+			continue
+		}
+
+		recs = append(recs, etchosts.Record{
+			Hosts: k,
+			IP:    mapEntryList[0].(svcMapEntry).ip,
+		})
+	}
+
+	return recs
+}
+
+func (n *network) getController() *controller {
+	n.Lock()
+	defer n.Unlock()
+	return n.ctrlr
+}
+
+func (n *network) ipamAllocate() error {
+	if n.hasSpecialDriver() {
+		return nil
+	}
+
+	ipam, _, err := n.getController().getIPAMDriver(n.ipamType)
+	if err != nil {
+		return err
+	}
+
+	if n.addrSpace == "" {
+		if n.addrSpace, err = n.deriveAddressSpace(); err != nil {
+			return err
+		}
+	}
+
+	err = n.ipamAllocateVersion(4, ipam)
+	if err != nil {
+		return err
+	}
+
+	defer func() {
+		if err != nil {
+			n.ipamReleaseVersion(4, ipam)
+		}
+	}()
+
+	if !n.enableIPv6 {
+		return nil
+	}
+
+	err = n.ipamAllocateVersion(6, ipam)
+	return err
+}
+
+func (n *network) requestPoolHelper(ipam ipamapi.Ipam, addressSpace, preferredPool, subPool string, options map[string]string, v6 bool) (string, *net.IPNet, map[string]string, error) {
+	for {
+		poolID, pool, meta, err := ipam.RequestPool(addressSpace, preferredPool, subPool, options, v6)
+		if err != nil {
+			return "", nil, nil, err
+		}
+
+		// If the network belongs to global scope or the pool was
+		// explicitly chosen or it is invalid, do not perform the overlap check.
+		if n.Scope() == datastore.GlobalScope || preferredPool != "" || !types.IsIPNetValid(pool) {
+			return poolID, pool, meta, nil
+		}
+
+		// Check for overlap and if none found, we have found the right pool.
+		if _, err := netutils.FindAvailableNetwork([]*net.IPNet{pool}); err == nil {
+			return poolID, pool, meta, nil
+		}
+
+		// Pool obtained in this iteration is
+		// overlapping. Hold onto the pool and don't release
+		// it yet, because we don't want ipam to give us back
+		// the same pool over again. But make sure we still do
+		// a deferred release when we have either obtained a
+		// non-overlapping pool or ran out of pre-defined
+		// pools.
+		defer func() {
+			if err := ipam.ReleasePool(poolID); err != nil {
+				logrus.Warnf("Failed to release overlapping pool %s while returning from pool request helper for network %s", pool, n.Name())
+			}
+		}()
+
+		// If this is a preferred pool request and the network
+		// is local scope and there is an overlap, we fail the
+		// network creation right here. The pool will be
+		// released in the defer.
+		if preferredPool != "" {
+			return "", nil, nil, fmt.Errorf("requested subnet %s overlaps in the host", preferredPool)
+		}
+	}
+}
+
+func (n *network) ipamAllocateVersion(ipVer int, ipam ipamapi.Ipam) error {
+	var (
+		cfgList  *[]*IpamConf
+		infoList *[]*IpamInfo
+		err      error
+	)
+
+	switch ipVer {
+	case 4:
+		cfgList = &n.ipamV4Config
+		infoList = &n.ipamV4Info
+	case 6:
+		cfgList = &n.ipamV6Config
+		infoList = &n.ipamV6Info
+	default:
+		return types.InternalErrorf("incorrect ip version passed to ipam allocate: %d", ipVer)
+	}
+
+	if len(*cfgList) == 0 {
+		*cfgList = []*IpamConf{{}}
+	}
+
+	*infoList = make([]*IpamInfo, len(*cfgList))
+
+	logrus.Debugf("Allocating IPv%d pools for network %s (%s)", ipVer, n.Name(), n.ID())
+
+	for i, cfg := range *cfgList {
+		if err = cfg.Validate(); err != nil {
+			return err
+		}
+		d := &IpamInfo{}
+		(*infoList)[i] = d
+
+		d.AddressSpace = n.addrSpace
+		d.PoolID, d.Pool, d.Meta, err = n.requestPoolHelper(ipam, n.addrSpace, cfg.PreferredPool, cfg.SubPool, n.ipamOptions, ipVer == 6)
+		if err != nil {
+			return err
+		}
+
+		defer func() {
+			if err != nil {
+				if err := ipam.ReleasePool(d.PoolID); err != nil {
+					logrus.Warnf("Failed to release address pool %s after failure to create network %s (%s)", d.PoolID, n.Name(), n.ID())
+				}
+			}
+		}()
+
+		if gws, ok := d.Meta[netlabel.Gateway]; ok {
+			if d.Gateway, err = types.ParseCIDR(gws); err != nil {
+				return types.BadRequestErrorf("failed to parse gateway address (%v) returned by ipam driver: %v", gws, err)
+			}
+		}
+
+		// If user requested a specific gateway, libnetwork will allocate it
+		// irrespective of whether ipam driver returned a gateway already.
+		// If none of the above is true, libnetwork will allocate one.
+		if cfg.Gateway != "" || d.Gateway == nil {
+			var gatewayOpts = map[string]string{
+				ipamapi.RequestAddressType: netlabel.Gateway,
+			}
+			if d.Gateway, _, err = ipam.RequestAddress(d.PoolID, net.ParseIP(cfg.Gateway), gatewayOpts); err != nil {
+				return types.InternalErrorf("failed to allocate gateway (%v): %v", cfg.Gateway, err)
+			}
+		}
+
+		// Auxiliary addresses must be part of the master address pool
+		// If they fall into the container addressable pool, libnetwork will reserve them
+		if cfg.AuxAddresses != nil {
+			var ip net.IP
+			d.IPAMData.AuxAddresses = make(map[string]*net.IPNet, len(cfg.AuxAddresses))
+			for k, v := range cfg.AuxAddresses {
+				if ip = net.ParseIP(v); ip == nil {
+					return types.BadRequestErrorf("non parsable secondary ip address (%s:%s) passed for network %s", k, v, n.Name())
+				}
+				if !d.Pool.Contains(ip) {
+					return types.ForbiddenErrorf("auxilairy address: (%s:%s) must belong to the master pool: %s", k, v, d.Pool)
+				}
+				// Attempt reservation in the container addressable pool, silent the error if address does not belong to that pool
+				if d.IPAMData.AuxAddresses[k], _, err = ipam.RequestAddress(d.PoolID, ip, nil); err != nil && err != ipamapi.ErrIPOutOfRange {
+					return types.InternalErrorf("failed to allocate secondary ip address (%s:%s): %v", k, v, err)
+				}
+			}
+		}
+	}
+
+	return nil
+}
+
+func (n *network) ipamRelease() {
+	if n.hasSpecialDriver() {
+		return
+	}
+	ipam, _, err := n.getController().getIPAMDriver(n.ipamType)
+	if err != nil {
+		logrus.Warnf("Failed to retrieve ipam driver to release address pool(s) on delete of network %s (%s): %v", n.Name(), n.ID(), err)
+		return
+	}
+	n.ipamReleaseVersion(4, ipam)
+	n.ipamReleaseVersion(6, ipam)
+}
+
+func (n *network) ipamReleaseVersion(ipVer int, ipam ipamapi.Ipam) {
+	var infoList *[]*IpamInfo
+
+	switch ipVer {
+	case 4:
+		infoList = &n.ipamV4Info
+	case 6:
+		infoList = &n.ipamV6Info
+	default:
+		logrus.Warnf("incorrect ip version passed to ipam release: %d", ipVer)
+		return
+	}
+
+	if len(*infoList) == 0 {
+		return
+	}
+
+	logrus.Debugf("releasing IPv%d pools from network %s (%s)", ipVer, n.Name(), n.ID())
+
+	for _, d := range *infoList {
+		if d.Gateway != nil {
+			if err := ipam.ReleaseAddress(d.PoolID, d.Gateway.IP); err != nil {
+				logrus.Warnf("Failed to release gateway ip address %s on delete of network %s (%s): %v", d.Gateway.IP, n.Name(), n.ID(), err)
+			}
+		}
+		if d.IPAMData.AuxAddresses != nil {
+			for k, nw := range d.IPAMData.AuxAddresses {
+				if d.Pool.Contains(nw.IP) {
+					if err := ipam.ReleaseAddress(d.PoolID, nw.IP); err != nil && err != ipamapi.ErrIPOutOfRange {
+						logrus.Warnf("Failed to release secondary ip address %s (%v) on delete of network %s (%s): %v", k, nw.IP, n.Name(), n.ID(), err)
+					}
+				}
+			}
+		}
+		if err := ipam.ReleasePool(d.PoolID); err != nil {
+			logrus.Warnf("Failed to release address pool %s on delete of network %s (%s): %v", d.PoolID, n.Name(), n.ID(), err)
+		}
+	}
+
+	*infoList = nil
+}
+
+func (n *network) getIPInfo(ipVer int) []*IpamInfo {
+	var info []*IpamInfo
+	switch ipVer {
+	case 4:
+		info = n.ipamV4Info
+	case 6:
+		info = n.ipamV6Info
+	default:
+		return nil
+	}
+	l := make([]*IpamInfo, 0, len(info))
+	n.Lock()
+	l = append(l, info...)
+	n.Unlock()
+	return l
+}
+
+func (n *network) getIPData(ipVer int) []driverapi.IPAMData {
+	var info []*IpamInfo
+	switch ipVer {
+	case 4:
+		info = n.ipamV4Info
+	case 6:
+		info = n.ipamV6Info
+	default:
+		return nil
+	}
+	l := make([]driverapi.IPAMData, 0, len(info))
+	n.Lock()
+	for _, d := range info {
+		l = append(l, d.IPAMData)
+	}
+	n.Unlock()
+	return l
+}
+
+func (n *network) deriveAddressSpace() (string, error) {
+	local, global, err := n.getController().drvRegistry.IPAMDefaultAddressSpaces(n.ipamType)
+	if err != nil {
+		return "", types.NotFoundErrorf("failed to get default address space: %v", err)
+	}
+	if n.DataScope() == datastore.GlobalScope {
+		return global, nil
+	}
+	return local, nil
+}
+
+func (n *network) Info() NetworkInfo {
+	return n
+}
+
+func (n *network) Peers() []networkdb.PeerInfo {
+	if !n.Dynamic() {
+		return []networkdb.PeerInfo{}
+	}
+
+	agent := n.getController().getAgent()
+	if agent == nil {
+		return []networkdb.PeerInfo{}
+	}
+
+	return agent.networkDB.Peers(n.ID())
+}
+
+func (n *network) DriverOptions() map[string]string {
+	n.Lock()
+	defer n.Unlock()
+	if n.generic != nil {
+		if m, ok := n.generic[netlabel.GenericData]; ok {
+			return m.(map[string]string)
+		}
+	}
+	return map[string]string{}
+}
+
+func (n *network) Scope() string {
+	n.Lock()
+	defer n.Unlock()
+	return n.scope
+}
+
+func (n *network) IpamConfig() (string, map[string]string, []*IpamConf, []*IpamConf) {
+	n.Lock()
+	defer n.Unlock()
+
+	v4L := make([]*IpamConf, len(n.ipamV4Config))
+	v6L := make([]*IpamConf, len(n.ipamV6Config))
+
+	for i, c := range n.ipamV4Config {
+		cc := &IpamConf{}
+		c.CopyTo(cc)
+		v4L[i] = cc
+	}
+
+	for i, c := range n.ipamV6Config {
+		cc := &IpamConf{}
+		c.CopyTo(cc)
+		v6L[i] = cc
+	}
+
+	return n.ipamType, n.ipamOptions, v4L, v6L
+}
+
+func (n *network) IpamInfo() ([]*IpamInfo, []*IpamInfo) {
+	n.Lock()
+	defer n.Unlock()
+
+	v4Info := make([]*IpamInfo, len(n.ipamV4Info))
+	v6Info := make([]*IpamInfo, len(n.ipamV6Info))
+
+	for i, info := range n.ipamV4Info {
+		ic := &IpamInfo{}
+		info.CopyTo(ic)
+		v4Info[i] = ic
+	}
+
+	for i, info := range n.ipamV6Info {
+		ic := &IpamInfo{}
+		info.CopyTo(ic)
+		v6Info[i] = ic
+	}
+
+	return v4Info, v6Info
+}
+
+func (n *network) Internal() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.internal
+}
+
+func (n *network) Attachable() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.attachable
+}
+
+func (n *network) Ingress() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.ingress
+}
+
+func (n *network) Dynamic() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.dynamic
+}
+
+func (n *network) IPv6Enabled() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.enableIPv6
+}
+
+func (n *network) ConfigFrom() string {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.configFrom
+}
+
+func (n *network) ConfigOnly() bool {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.configOnly
+}
+
+func (n *network) Labels() map[string]string {
+	n.Lock()
+	defer n.Unlock()
+
+	var lbls = make(map[string]string, len(n.labels))
+	for k, v := range n.labels {
+		lbls[k] = v
+	}
+
+	return lbls
+}
+
+func (n *network) TableEventRegister(tableName string, objType driverapi.ObjectType) error {
+	if !driverapi.IsValidType(objType) {
+		return fmt.Errorf("invalid object type %v in registering table, %s", objType, tableName)
+	}
+
+	t := networkDBTable{
+		name:    tableName,
+		objType: objType,
+	}
+	n.Lock()
+	defer n.Unlock()
+	n.driverTables = append(n.driverTables, t)
+	return nil
+}
+
+// Special drivers are ones which do not need to perform any network plumbing
+func (n *network) hasSpecialDriver() bool {
+	return n.Type() == "host" || n.Type() == "null"
+}
+
+func (n *network) ResolveName(req string, ipType int) ([]net.IP, bool) {
+	var ipv6Miss bool
+
+	c := n.getController()
+	c.Lock()
+	defer c.Unlock()
+	sr, ok := c.svcRecords[n.ID()]
+
+	if !ok {
+		return nil, false
+	}
+
+	req = strings.TrimSuffix(req, ".")
+	ipSet, ok := sr.svcMap.Get(req)
+
+	if ipType == types.IPv6 {
+		// If the name resolved to v4 address then its a valid name in
+		// the docker network domain. If the network is not v6 enabled
+		// set ipv6Miss to filter the DNS query from going to external
+		// resolvers.
+		if ok && !n.enableIPv6 {
+			ipv6Miss = true
+		}
+		ipSet, ok = sr.svcIPv6Map.Get(req)
+	}
+
+	if ok && len(ipSet) > 0 {
+		// this map is to avoid IP duplicates, this can happen during a transition period where 2 services are using the same IP
+		noDup := make(map[string]bool)
+		var ipLocal []net.IP
+		for _, ip := range ipSet {
+			if _, dup := noDup[ip.(svcMapEntry).ip]; !dup {
+				noDup[ip.(svcMapEntry).ip] = true
+				ipLocal = append(ipLocal, net.ParseIP(ip.(svcMapEntry).ip))
+			}
+		}
+		return ipLocal, ok
+	}
+
+	return nil, ipv6Miss
+}
+
+func (n *network) HandleQueryResp(name string, ip net.IP) {
+	c := n.getController()
+	c.Lock()
+	defer c.Unlock()
+	sr, ok := c.svcRecords[n.ID()]
+
+	if !ok {
+		return
+	}
+
+	ipStr := netutils.ReverseIP(ip.String())
+	// If an object with extResolver == true is already in the set this call will fail
+	// but anyway it means that has already been inserted before
+	if ok, _ := sr.ipMap.Contains(ipStr, ipInfo{name: name}); ok {
+		sr.ipMap.Remove(ipStr, ipInfo{name: name})
+		sr.ipMap.Insert(ipStr, ipInfo{name: name, extResolver: true})
+	}
+}
+
+func (n *network) ResolveIP(ip string) string {
+	c := n.getController()
+	c.Lock()
+	defer c.Unlock()
+	sr, ok := c.svcRecords[n.ID()]
+
+	if !ok {
+		return ""
+	}
+
+	nwName := n.Name()
+
+	elemSet, ok := sr.ipMap.Get(ip)
+	if !ok || len(elemSet) == 0 {
+		return ""
+	}
+	// NOTE it is possible to have more than one element in the Set, this will happen
+	// because of interleave of different events from different sources (local container create vs
+	// network db notifications)
+	// In such cases the resolution will be based on the first element of the set, and can vary
+	// during the system stabilitation
+	elem, ok := elemSet[0].(ipInfo)
+	if !ok {
+		setStr, b := sr.ipMap.String(ip)
+		logrus.Errorf("expected set of ipInfo type for key %s set:%t %s", ip, b, setStr)
+		return ""
+	}
+
+	if elem.extResolver {
+		return ""
+	}
+
+	return elem.name + "." + nwName
+}
+
+func (n *network) ResolveService(name string) ([]*net.SRV, []net.IP) {
+	c := n.getController()
+
+	srv := []*net.SRV{}
+	ip := []net.IP{}
+
+	logrus.Debugf("Service name To resolve: %v", name)
+
+	// There are DNS implementaions that allow SRV queries for names not in
+	// the format defined by RFC 2782. Hence specific validations checks are
+	// not done
+	parts := strings.Split(name, ".")
+	if len(parts) < 3 {
+		return nil, nil
+	}
+
+	portName := parts[0]
+	proto := parts[1]
+	svcName := strings.Join(parts[2:], ".")
+
+	c.Lock()
+	defer c.Unlock()
+	sr, ok := c.svcRecords[n.ID()]
+
+	if !ok {
+		return nil, nil
+	}
+
+	svcs, ok := sr.service[svcName]
+	if !ok {
+		return nil, nil
+	}
+
+	for _, svc := range svcs {
+		if svc.portName != portName {
+			continue
+		}
+		if svc.proto != proto {
+			continue
+		}
+		for _, t := range svc.target {
+			srv = append(srv,
+				&net.SRV{
+					Target: t.name,
+					Port:   t.port,
+				})
+
+			ip = append(ip, t.ip)
+		}
+	}
+
+	return srv, ip
+}
+
+func (n *network) ExecFunc(f func()) error {
+	return types.NotImplementedErrorf("ExecFunc not supported by network")
+}
+
+func (n *network) NdotsSet() bool {
+	return false
+}
+
+// config-only network is looked up by name
+func (c *controller) getConfigNetwork(name string) (*network, error) {
+	var n Network
+
+	s := func(current Network) bool {
+		if current.Info().ConfigOnly() && current.Name() == name {
+			n = current
+			return true
+		}
+		return false
+	}
+
+	c.WalkNetworks(s)
+
+	if n == nil {
+		return nil, types.NotFoundErrorf("configuration network %q not found", name)
+	}
+
+	return n.(*network), nil
+}
+
+func (n *network) createLoadBalancerSandbox() error {
+	sandboxName := n.name + "-sbox"
+	sbOptions := []SandboxOption{}
+	if n.ingress {
+		sbOptions = append(sbOptions, OptionIngress())
+	}
+	sb, err := n.ctrlr.NewSandbox(sandboxName, sbOptions...)
+	if err != nil {
+		return err
+	}
+	defer func() {
+		if err != nil {
+			if e := n.ctrlr.SandboxDestroy(sandboxName); e != nil {
+				logrus.Warnf("could not delete sandbox %s on failure on failure (%v): %v", sandboxName, err, e)
+			}
+		}
+	}()
+
+	endpointName := n.name + "-endpoint"
+	epOptions := []EndpointOption{
+		CreateOptionIpam(n.loadBalancerIP, nil, nil, nil),
+		CreateOptionLoadBalancer(),
+	}
+	ep, err := n.createEndpoint(endpointName, epOptions...)
+	if err != nil {
+		return err
+	}
+	defer func() {
+		if err != nil {
+			if e := ep.Delete(true); e != nil {
+				logrus.Warnf("could not delete endpoint %s on failure on failure (%v): %v", endpointName, err, e)
+			}
+		}
+	}()
+
+	if err := ep.Join(sb, nil); err != nil {
+		return err
+	}
+	return sb.EnableService()
+}
+
+func (n *network) deleteLoadBalancerSandbox() {
+	n.Lock()
+	c := n.ctrlr
+	name := n.name
+	n.Unlock()
+
+	endpointName := name + "-endpoint"
+	sandboxName := name + "-sbox"
+
+	endpoint, err := n.EndpointByName(endpointName)
+	if err != nil {
+		logrus.Warnf("Failed to find load balancer endpoint %s on network %s: %v", endpointName, name, err)
+	} else {
+
+		info := endpoint.Info()
+		if info != nil {
+			sb := info.Sandbox()
+			if sb != nil {
+				if err := sb.DisableService(); err != nil {
+					logrus.Warnf("Failed to disable service on sandbox %s: %v", sandboxName, err)
+					//Ignore error and attempt to delete the load balancer endpoint
+				}
+			}
+		}
+
+		if err := endpoint.Delete(true); err != nil {
+			logrus.Warnf("Failed to delete endpoint %s (%s) in %s: %v", endpoint.Name(), endpoint.ID(), sandboxName, err)
+			//Ignore error and attempt to delete the sandbox.
+		}
+	}
+
+	if err := c.SandboxDestroy(sandboxName); err != nil {
+		logrus.Warnf("Failed to delete %s sandbox: %v", sandboxName, err)
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/network_unix.go b/vendor/github.com/docker/libnetwork/network_unix.go
new file mode 100644
index 0000000000..585261ece0
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/network_unix.go
@@ -0,0 +1,14 @@
+// +build !windows
+
+package libnetwork
+
+import "github.com/docker/libnetwork/ipamapi"
+
+// Stub implementations for DNS related functions
+
+func (n *network) startResolver() {
+}
+
+func defaultIpamForNetworkType(networkType string) string {
+	return ipamapi.DefaultIPAM
+}
diff --git a/vendor/github.com/docker/libnetwork/network_windows.go b/vendor/github.com/docker/libnetwork/network_windows.go
new file mode 100644
index 0000000000..e7819e1c3e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/network_windows.go
@@ -0,0 +1,75 @@
+// +build windows
+
+package libnetwork
+
+import (
+	"runtime"
+	"time"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/libnetwork/drivers/windows"
+	"github.com/docker/libnetwork/ipamapi"
+	"github.com/docker/libnetwork/ipams/windowsipam"
+	"github.com/sirupsen/logrus"
+)
+
+func executeInCompartment(compartmentID uint32, x func()) {
+	runtime.LockOSThread()
+
+	if err := hcsshim.SetCurrentThreadCompartmentId(compartmentID); err != nil {
+		logrus.Error(err)
+	}
+	defer func() {
+		hcsshim.SetCurrentThreadCompartmentId(0)
+		runtime.UnlockOSThread()
+	}()
+
+	x()
+}
+
+func (n *network) startResolver() {
+	if n.networkType == "ics" {
+		return
+	}
+	n.resolverOnce.Do(func() {
+		logrus.Debugf("Launching DNS server for network %q", n.Name())
+		options := n.Info().DriverOptions()
+		hnsid := options[windows.HNSID]
+
+		if hnsid == "" {
+			return
+		}
+
+		hnsresponse, err := hcsshim.HNSNetworkRequest("GET", hnsid, "")
+		if err != nil {
+			logrus.Errorf("Resolver Setup/Start failed for container %s, %q", n.Name(), err)
+			return
+		}
+
+		for _, subnet := range hnsresponse.Subnets {
+			if subnet.GatewayAddress != "" {
+				for i := 0; i < 3; i++ {
+					resolver := NewResolver(subnet.GatewayAddress, false, "", n)
+					logrus.Debugf("Binding a resolver on network %s gateway %s", n.Name(), subnet.GatewayAddress)
+					executeInCompartment(hnsresponse.DNSServerCompartment, resolver.SetupFunc(53))
+
+					if err = resolver.Start(); err != nil {
+						logrus.Errorf("Resolver Setup/Start failed for container %s, %q", n.Name(), err)
+						time.Sleep(1 * time.Second)
+					} else {
+						logrus.Debugf("Resolver bound successfully for network %s", n.Name())
+						n.resolver = append(n.resolver, resolver)
+						break
+					}
+				}
+			}
+		}
+	})
+}
+
+func defaultIpamForNetworkType(networkType string) string {
+	if windows.IsBuiltinLocalDriver(networkType) {
+		return windowsipam.DefaultIPAM
+	}
+	return ipamapi.DefaultIPAM
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/broadcast.go b/vendor/github.com/docker/libnetwork/networkdb/broadcast.go
new file mode 100644
index 0000000000..174023b22b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/broadcast.go
@@ -0,0 +1,174 @@
+package networkdb
+
+import (
+	"errors"
+	"time"
+
+	"github.com/hashicorp/memberlist"
+	"github.com/hashicorp/serf/serf"
+)
+
+const broadcastTimeout = 5 * time.Second
+
+type networkEventMessage struct {
+	id   string
+	node string
+	msg  []byte
+}
+
+func (m *networkEventMessage) Invalidates(other memberlist.Broadcast) bool {
+	otherm := other.(*networkEventMessage)
+	return m.id == otherm.id && m.node == otherm.node
+}
+
+func (m *networkEventMessage) Message() []byte {
+	return m.msg
+}
+
+func (m *networkEventMessage) Finished() {
+}
+
+func (nDB *NetworkDB) sendNetworkEvent(nid string, event NetworkEvent_Type, ltime serf.LamportTime) error {
+	nEvent := NetworkEvent{
+		Type:      event,
+		LTime:     ltime,
+		NodeName:  nDB.config.NodeID,
+		NetworkID: nid,
+	}
+
+	raw, err := encodeMessage(MessageTypeNetworkEvent, &nEvent)
+	if err != nil {
+		return err
+	}
+
+	nDB.networkBroadcasts.QueueBroadcast(&networkEventMessage{
+		msg:  raw,
+		id:   nid,
+		node: nDB.config.NodeID,
+	})
+	return nil
+}
+
+type nodeEventMessage struct {
+	msg    []byte
+	notify chan<- struct{}
+}
+
+func (m *nodeEventMessage) Invalidates(other memberlist.Broadcast) bool {
+	return false
+}
+
+func (m *nodeEventMessage) Message() []byte {
+	return m.msg
+}
+
+func (m *nodeEventMessage) Finished() {
+	if m.notify != nil {
+		close(m.notify)
+	}
+}
+
+func (nDB *NetworkDB) sendNodeEvent(event NodeEvent_Type) error {
+	nEvent := NodeEvent{
+		Type:     event,
+		LTime:    nDB.networkClock.Increment(),
+		NodeName: nDB.config.NodeID,
+	}
+
+	raw, err := encodeMessage(MessageTypeNodeEvent, &nEvent)
+	if err != nil {
+		return err
+	}
+
+	notifyCh := make(chan struct{})
+	nDB.nodeBroadcasts.QueueBroadcast(&nodeEventMessage{
+		msg:    raw,
+		notify: notifyCh,
+	})
+
+	nDB.RLock()
+	noPeers := len(nDB.nodes) <= 1
+	nDB.RUnlock()
+
+	// Message enqueued, do not wait for a send if no peer is present
+	if noPeers {
+		return nil
+	}
+
+	// Wait for the broadcast
+	select {
+	case <-notifyCh:
+	case <-time.After(broadcastTimeout):
+		return errors.New("timed out broadcasting node event")
+	}
+
+	return nil
+}
+
+type tableEventMessage struct {
+	id    string
+	tname string
+	key   string
+	msg   []byte
+	node  string
+}
+
+func (m *tableEventMessage) Invalidates(other memberlist.Broadcast) bool {
+	otherm := other.(*tableEventMessage)
+	return m.tname == otherm.tname && m.id == otherm.id && m.key == otherm.key
+}
+
+func (m *tableEventMessage) Message() []byte {
+	return m.msg
+}
+
+func (m *tableEventMessage) Finished() {
+}
+
+func (nDB *NetworkDB) sendTableEvent(event TableEvent_Type, nid string, tname string, key string, entry *entry) error {
+	tEvent := TableEvent{
+		Type:      event,
+		LTime:     entry.ltime,
+		NodeName:  nDB.config.NodeID,
+		NetworkID: nid,
+		TableName: tname,
+		Key:       key,
+		Value:     entry.value,
+		// The duration in second is a float that below would be truncated
+		ResidualReapTime: int32(entry.reapTime.Seconds()),
+	}
+
+	raw, err := encodeMessage(MessageTypeTableEvent, &tEvent)
+	if err != nil {
+		return err
+	}
+
+	var broadcastQ *memberlist.TransmitLimitedQueue
+	nDB.RLock()
+	thisNodeNetworks, ok := nDB.networks[nDB.config.NodeID]
+	if ok {
+		// The network may have been removed
+		network, networkOk := thisNodeNetworks[nid]
+		if !networkOk {
+			nDB.RUnlock()
+			return nil
+		}
+
+		broadcastQ = network.tableBroadcasts
+	}
+	nDB.RUnlock()
+
+	// The network may have been removed
+	if broadcastQ == nil {
+		return nil
+	}
+
+	broadcastQ.QueueBroadcast(&tableEventMessage{
+		msg:   raw,
+		id:    nid,
+		tname: tname,
+		key:   key,
+		node:  nDB.config.NodeID,
+	})
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/cluster.go b/vendor/github.com/docker/libnetwork/networkdb/cluster.go
new file mode 100644
index 0000000000..bd48fb9f18
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/cluster.go
@@ -0,0 +1,731 @@
+package networkdb
+
+import (
+	"bytes"
+	"context"
+	"crypto/rand"
+	"encoding/hex"
+	"fmt"
+	"log"
+	"math/big"
+	rnd "math/rand"
+	"net"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/memberlist"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	reapPeriod            = 5 * time.Second
+	rejoinClusterDuration = 10 * time.Second
+	rejoinInterval        = 60 * time.Second
+	retryInterval         = 1 * time.Second
+	nodeReapInterval      = 24 * time.Hour
+	nodeReapPeriod        = 2 * time.Hour
+)
+
+type logWriter struct{}
+
+func (l *logWriter) Write(p []byte) (int, error) {
+	str := string(p)
+	str = strings.TrimSuffix(str, "\n")
+
+	switch {
+	case strings.HasPrefix(str, "[WARN] "):
+		str = strings.TrimPrefix(str, "[WARN] ")
+		logrus.Warn(str)
+	case strings.HasPrefix(str, "[DEBUG] "):
+		str = strings.TrimPrefix(str, "[DEBUG] ")
+		logrus.Debug(str)
+	case strings.HasPrefix(str, "[INFO] "):
+		str = strings.TrimPrefix(str, "[INFO] ")
+		logrus.Info(str)
+	case strings.HasPrefix(str, "[ERR] "):
+		str = strings.TrimPrefix(str, "[ERR] ")
+		logrus.Warn(str)
+	}
+
+	return len(p), nil
+}
+
+// SetKey adds a new key to the key ring
+func (nDB *NetworkDB) SetKey(key []byte) {
+	logrus.Debugf("Adding key %s", hex.EncodeToString(key)[0:5])
+	nDB.Lock()
+	defer nDB.Unlock()
+	for _, dbKey := range nDB.config.Keys {
+		if bytes.Equal(key, dbKey) {
+			return
+		}
+	}
+	nDB.config.Keys = append(nDB.config.Keys, key)
+	if nDB.keyring != nil {
+		nDB.keyring.AddKey(key)
+	}
+}
+
+// SetPrimaryKey sets the given key as the primary key. This should have
+// been added apriori through SetKey
+func (nDB *NetworkDB) SetPrimaryKey(key []byte) {
+	logrus.Debugf("Primary Key %s", hex.EncodeToString(key)[0:5])
+	nDB.RLock()
+	defer nDB.RUnlock()
+	for _, dbKey := range nDB.config.Keys {
+		if bytes.Equal(key, dbKey) {
+			if nDB.keyring != nil {
+				nDB.keyring.UseKey(dbKey)
+			}
+			break
+		}
+	}
+}
+
+// RemoveKey removes a key from the key ring. The key being removed
+// can't be the primary key
+func (nDB *NetworkDB) RemoveKey(key []byte) {
+	logrus.Debugf("Remove Key %s", hex.EncodeToString(key)[0:5])
+	nDB.Lock()
+	defer nDB.Unlock()
+	for i, dbKey := range nDB.config.Keys {
+		if bytes.Equal(key, dbKey) {
+			nDB.config.Keys = append(nDB.config.Keys[:i], nDB.config.Keys[i+1:]...)
+			if nDB.keyring != nil {
+				nDB.keyring.RemoveKey(dbKey)
+			}
+			break
+		}
+	}
+}
+
+func (nDB *NetworkDB) clusterInit() error {
+	nDB.lastStatsTimestamp = time.Now()
+	nDB.lastHealthTimestamp = nDB.lastStatsTimestamp
+
+	config := memberlist.DefaultLANConfig()
+	config.Name = nDB.config.NodeID
+	config.BindAddr = nDB.config.BindAddr
+	config.AdvertiseAddr = nDB.config.AdvertiseAddr
+	config.UDPBufferSize = nDB.config.PacketBufferSize
+
+	if nDB.config.BindPort != 0 {
+		config.BindPort = nDB.config.BindPort
+	}
+
+	config.ProtocolVersion = memberlist.ProtocolVersion2Compatible
+	config.Delegate = &delegate{nDB: nDB}
+	config.Events = &eventDelegate{nDB: nDB}
+	// custom logger that does not add time or date, so they are not
+	// duplicated by logrus
+	config.Logger = log.New(&logWriter{}, "", 0)
+
+	var err error
+	if len(nDB.config.Keys) > 0 {
+		for i, key := range nDB.config.Keys {
+			logrus.Debugf("Encryption key %d: %s", i+1, hex.EncodeToString(key)[0:5])
+		}
+		nDB.keyring, err = memberlist.NewKeyring(nDB.config.Keys, nDB.config.Keys[0])
+		if err != nil {
+			return err
+		}
+		config.Keyring = nDB.keyring
+	}
+
+	nDB.networkBroadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			nDB.RLock()
+			num := len(nDB.nodes)
+			nDB.RUnlock()
+			return num
+		},
+		RetransmitMult: config.RetransmitMult,
+	}
+
+	nDB.nodeBroadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			nDB.RLock()
+			num := len(nDB.nodes)
+			nDB.RUnlock()
+			return num
+		},
+		RetransmitMult: config.RetransmitMult,
+	}
+
+	mlist, err := memberlist.Create(config)
+	if err != nil {
+		return fmt.Errorf("failed to create memberlist: %v", err)
+	}
+
+	nDB.ctx, nDB.cancelCtx = context.WithCancel(context.Background())
+	nDB.memberlist = mlist
+
+	for _, trigger := range []struct {
+		interval time.Duration
+		fn       func()
+	}{
+		{reapPeriod, nDB.reapState},
+		{config.GossipInterval, nDB.gossip},
+		{config.PushPullInterval, nDB.bulkSyncTables},
+		{retryInterval, nDB.reconnectNode},
+		{nodeReapPeriod, nDB.reapDeadNode},
+		{rejoinInterval, nDB.rejoinClusterBootStrap},
+	} {
+		t := time.NewTicker(trigger.interval)
+		go nDB.triggerFunc(trigger.interval, t.C, trigger.fn)
+		nDB.tickers = append(nDB.tickers, t)
+	}
+
+	return nil
+}
+
+func (nDB *NetworkDB) retryJoin(ctx context.Context, members []string) {
+	t := time.NewTicker(retryInterval)
+	defer t.Stop()
+
+	for {
+		select {
+		case <-t.C:
+			if _, err := nDB.memberlist.Join(members); err != nil {
+				logrus.Errorf("Failed to join memberlist %s on retry: %v", members, err)
+				continue
+			}
+			if err := nDB.sendNodeEvent(NodeEventTypeJoin); err != nil {
+				logrus.Errorf("failed to send node join on retry: %v", err)
+				continue
+			}
+			return
+		case <-ctx.Done():
+			return
+		}
+	}
+
+}
+
+func (nDB *NetworkDB) clusterJoin(members []string) error {
+	mlist := nDB.memberlist
+
+	if _, err := mlist.Join(members); err != nil {
+		// In case of failure, we no longer need to explicitly call retryJoin.
+		// rejoinClusterBootStrap, which runs every minute, will retryJoin for 10sec
+		return fmt.Errorf("could not join node to memberlist: %v", err)
+	}
+
+	if err := nDB.sendNodeEvent(NodeEventTypeJoin); err != nil {
+		return fmt.Errorf("failed to send node join: %v", err)
+	}
+
+	return nil
+}
+
+func (nDB *NetworkDB) clusterLeave() error {
+	mlist := nDB.memberlist
+
+	if err := nDB.sendNodeEvent(NodeEventTypeLeave); err != nil {
+		logrus.Errorf("failed to send node leave: %v", err)
+	}
+
+	if err := mlist.Leave(time.Second); err != nil {
+		return err
+	}
+
+	// cancel the context
+	nDB.cancelCtx()
+
+	for _, t := range nDB.tickers {
+		t.Stop()
+	}
+
+	return mlist.Shutdown()
+}
+
+func (nDB *NetworkDB) triggerFunc(stagger time.Duration, C <-chan time.Time, f func()) {
+	// Use a random stagger to avoid syncronizing
+	randStagger := time.Duration(uint64(rnd.Int63()) % uint64(stagger))
+	select {
+	case <-time.After(randStagger):
+	case <-nDB.ctx.Done():
+		return
+	}
+	for {
+		select {
+		case <-C:
+			f()
+		case <-nDB.ctx.Done():
+			return
+		}
+	}
+}
+
+func (nDB *NetworkDB) reapDeadNode() {
+	nDB.Lock()
+	defer nDB.Unlock()
+	for _, nodeMap := range []map[string]*node{
+		nDB.failedNodes,
+		nDB.leftNodes,
+	} {
+		for id, n := range nodeMap {
+			if n.reapTime > nodeReapPeriod {
+				n.reapTime -= nodeReapPeriod
+				continue
+			}
+			logrus.Debugf("Garbage collect node %v", n.Name)
+			delete(nodeMap, id)
+		}
+	}
+}
+
+// rejoinClusterBootStrap is called periodically to check if all bootStrap nodes are active in the cluster,
+// if not, call the cluster join to merge 2 separate clusters that are formed when all managers
+// stopped/started at the same time
+func (nDB *NetworkDB) rejoinClusterBootStrap() {
+	nDB.RLock()
+	if len(nDB.bootStrapIP) == 0 {
+		nDB.RUnlock()
+		return
+	}
+
+	bootStrapIPs := make([]string, 0, len(nDB.bootStrapIP))
+	for _, bootIP := range nDB.bootStrapIP {
+		for _, node := range nDB.nodes {
+			if node.Addr.Equal(bootIP) {
+				// One of the bootstrap nodes is part of the cluster, return
+				nDB.RUnlock()
+				return
+			}
+		}
+		bootStrapIPs = append(bootStrapIPs, bootIP.String())
+	}
+	nDB.RUnlock()
+	// None of the bootStrap nodes are in the cluster, call memberlist join
+	logrus.Debugf("rejoinClusterBootStrap, calling cluster join with bootStrap %v", bootStrapIPs)
+	ctx, cancel := context.WithTimeout(nDB.ctx, rejoinClusterDuration)
+	defer cancel()
+	nDB.retryJoin(ctx, bootStrapIPs)
+}
+
+func (nDB *NetworkDB) reconnectNode() {
+	nDB.RLock()
+	if len(nDB.failedNodes) == 0 {
+		nDB.RUnlock()
+		return
+	}
+
+	nodes := make([]*node, 0, len(nDB.failedNodes))
+	for _, n := range nDB.failedNodes {
+		nodes = append(nodes, n)
+	}
+	nDB.RUnlock()
+
+	node := nodes[randomOffset(len(nodes))]
+	addr := net.UDPAddr{IP: node.Addr, Port: int(node.Port)}
+
+	if _, err := nDB.memberlist.Join([]string{addr.String()}); err != nil {
+		return
+	}
+
+	if err := nDB.sendNodeEvent(NodeEventTypeJoin); err != nil {
+		return
+	}
+
+	logrus.Debugf("Initiating bulk sync with node %s after reconnect", node.Name)
+	nDB.bulkSync([]string{node.Name}, true)
+}
+
+// For timing the entry deletion in the repaer APIs that doesn't use monotonic clock
+// source (time.Now, Sub etc.) should be avoided. Hence we use reapTime in every
+// entry which is set initially to reapInterval and decremented by reapPeriod every time
+// the reaper runs. NOTE nDB.reapTableEntries updates the reapTime with a readlock. This
+// is safe as long as no other concurrent path touches the reapTime field.
+func (nDB *NetworkDB) reapState() {
+	// The reapTableEntries leverage the presence of the network so garbage collect entries first
+	nDB.reapTableEntries()
+	nDB.reapNetworks()
+}
+
+func (nDB *NetworkDB) reapNetworks() {
+	nDB.Lock()
+	for _, nn := range nDB.networks {
+		for id, n := range nn {
+			if n.leaving {
+				if n.reapTime <= 0 {
+					delete(nn, id)
+					continue
+				}
+				n.reapTime -= reapPeriod
+			}
+		}
+	}
+	nDB.Unlock()
+}
+
+func (nDB *NetworkDB) reapTableEntries() {
+	var nodeNetworks []string
+	// This is best effort, if the list of network changes will be picked up in the next cycle
+	nDB.RLock()
+	for nid := range nDB.networks[nDB.config.NodeID] {
+		nodeNetworks = append(nodeNetworks, nid)
+	}
+	nDB.RUnlock()
+
+	cycleStart := time.Now()
+	// In order to avoid blocking the database for a long time, apply the garbage collection logic by network
+	// The lock is taken at the beginning of the cycle and the deletion is inline
+	for _, nid := range nodeNetworks {
+		nDB.Lock()
+		nDB.indexes[byNetwork].WalkPrefix(fmt.Sprintf("/%s", nid), func(path string, v interface{}) bool {
+			// timeCompensation compensate in case the lock took some time to be released
+			timeCompensation := time.Since(cycleStart)
+			entry, ok := v.(*entry)
+			if !ok || !entry.deleting {
+				return false
+			}
+
+			// In this check we are adding an extra 1 second to guarantee that when the number is truncated to int32 to fit the packet
+			// for the tableEvent the number is always strictly > 1 and never 0
+			if entry.reapTime > reapPeriod+timeCompensation+time.Second {
+				entry.reapTime -= reapPeriod + timeCompensation
+				return false
+			}
+
+			params := strings.Split(path[1:], "/")
+			nid := params[0]
+			tname := params[1]
+			key := params[2]
+
+			okTable, okNetwork := nDB.deleteEntry(nid, tname, key)
+			if !okTable {
+				logrus.Errorf("Table tree delete failed, entry with key:%s does not exists in the table:%s network:%s", key, tname, nid)
+			}
+			if !okNetwork {
+				logrus.Errorf("Network tree delete failed, entry with key:%s does not exists in the network:%s table:%s", key, nid, tname)
+			}
+
+			return false
+		})
+		nDB.Unlock()
+	}
+}
+
+func (nDB *NetworkDB) gossip() {
+	networkNodes := make(map[string][]string)
+	nDB.RLock()
+	thisNodeNetworks := nDB.networks[nDB.config.NodeID]
+	for nid := range thisNodeNetworks {
+		networkNodes[nid] = nDB.networkNodes[nid]
+	}
+	printStats := time.Since(nDB.lastStatsTimestamp) >= nDB.config.StatsPrintPeriod
+	printHealth := time.Since(nDB.lastHealthTimestamp) >= nDB.config.HealthPrintPeriod
+	nDB.RUnlock()
+
+	if printHealth {
+		healthScore := nDB.memberlist.GetHealthScore()
+		if healthScore != 0 {
+			logrus.Warnf("NetworkDB stats %v(%v) - healthscore:%d (connectivity issues)", nDB.config.Hostname, nDB.config.NodeID, healthScore)
+		}
+		nDB.lastHealthTimestamp = time.Now()
+	}
+
+	for nid, nodes := range networkNodes {
+		mNodes := nDB.mRandomNodes(3, nodes)
+		bytesAvail := nDB.config.PacketBufferSize - compoundHeaderOverhead
+
+		nDB.RLock()
+		network, ok := thisNodeNetworks[nid]
+		nDB.RUnlock()
+		if !ok || network == nil {
+			// It is normal for the network to be removed
+			// between the time we collect the network
+			// attachments of this node and processing
+			// them here.
+			continue
+		}
+
+		broadcastQ := network.tableBroadcasts
+
+		if broadcastQ == nil {
+			logrus.Errorf("Invalid broadcastQ encountered while gossiping for network %s", nid)
+			continue
+		}
+
+		msgs := broadcastQ.GetBroadcasts(compoundOverhead, bytesAvail)
+		// Collect stats and print the queue info, note this code is here also to have a view of the queues empty
+		network.qMessagesSent += len(msgs)
+		if printStats {
+			logrus.Infof("NetworkDB stats %v(%v) - netID:%s leaving:%t netPeers:%d entries:%d Queue qLen:%d netMsg/s:%d",
+				nDB.config.Hostname, nDB.config.NodeID,
+				nid, network.leaving, broadcastQ.NumNodes(), network.entriesNumber, broadcastQ.NumQueued(),
+				network.qMessagesSent/int((nDB.config.StatsPrintPeriod/time.Second)))
+			network.qMessagesSent = 0
+		}
+
+		if len(msgs) == 0 {
+			continue
+		}
+
+		// Create a compound message
+		compound := makeCompoundMessage(msgs)
+
+		for _, node := range mNodes {
+			nDB.RLock()
+			mnode := nDB.nodes[node]
+			nDB.RUnlock()
+
+			if mnode == nil {
+				break
+			}
+
+			// Send the compound message
+			if err := nDB.memberlist.SendBestEffort(&mnode.Node, compound); err != nil {
+				logrus.Errorf("Failed to send gossip to %s: %s", mnode.Addr, err)
+			}
+		}
+	}
+	// Reset the stats
+	if printStats {
+		nDB.lastStatsTimestamp = time.Now()
+	}
+}
+
+func (nDB *NetworkDB) bulkSyncTables() {
+	var networks []string
+	nDB.RLock()
+	for nid, network := range nDB.networks[nDB.config.NodeID] {
+		if network.leaving {
+			continue
+		}
+		networks = append(networks, nid)
+	}
+	nDB.RUnlock()
+
+	for {
+		if len(networks) == 0 {
+			break
+		}
+
+		nid := networks[0]
+		networks = networks[1:]
+
+		nDB.RLock()
+		nodes := nDB.networkNodes[nid]
+		nDB.RUnlock()
+
+		// No peer nodes on this network. Move on.
+		if len(nodes) == 0 {
+			continue
+		}
+
+		completed, err := nDB.bulkSync(nodes, false)
+		if err != nil {
+			logrus.Errorf("periodic bulk sync failure for network %s: %v", nid, err)
+			continue
+		}
+
+		// Remove all the networks for which we have
+		// successfully completed bulk sync in this iteration.
+		updatedNetworks := make([]string, 0, len(networks))
+		for _, nid := range networks {
+			var found bool
+			for _, completedNid := range completed {
+				if nid == completedNid {
+					found = true
+					break
+				}
+			}
+
+			if !found {
+				updatedNetworks = append(updatedNetworks, nid)
+			}
+		}
+
+		networks = updatedNetworks
+	}
+}
+
+func (nDB *NetworkDB) bulkSync(nodes []string, all bool) ([]string, error) {
+	if !all {
+		// Get 2 random nodes. 2nd node will be tried if the bulk sync to
+		// 1st node fails.
+		nodes = nDB.mRandomNodes(2, nodes)
+	}
+
+	if len(nodes) == 0 {
+		return nil, nil
+	}
+
+	var err error
+	var networks []string
+	for _, node := range nodes {
+		if node == nDB.config.NodeID {
+			continue
+		}
+		logrus.Debugf("%v(%v): Initiating bulk sync with node %v", nDB.config.Hostname, nDB.config.NodeID, node)
+		networks = nDB.findCommonNetworks(node)
+		err = nDB.bulkSyncNode(networks, node, true)
+		// if its periodic bulksync stop after the first successful sync
+		if !all && err == nil {
+			break
+		}
+		if err != nil {
+			err = fmt.Errorf("bulk sync to node %s failed: %v", node, err)
+			logrus.Warn(err.Error())
+		}
+	}
+
+	if err != nil {
+		return nil, err
+	}
+
+	return networks, nil
+}
+
+// Bulk sync all the table entries belonging to a set of networks to a
+// single peer node. It can be unsolicited or can be in response to an
+// unsolicited bulk sync
+func (nDB *NetworkDB) bulkSyncNode(networks []string, node string, unsolicited bool) error {
+	var msgs [][]byte
+
+	var unsolMsg string
+	if unsolicited {
+		unsolMsg = "unsolicited"
+	}
+
+	logrus.Debugf("%v(%v): Initiating %s bulk sync for networks %v with node %s",
+		nDB.config.Hostname, nDB.config.NodeID, unsolMsg, networks, node)
+
+	nDB.RLock()
+	mnode := nDB.nodes[node]
+	if mnode == nil {
+		nDB.RUnlock()
+		return nil
+	}
+
+	for _, nid := range networks {
+		nDB.indexes[byNetwork].WalkPrefix(fmt.Sprintf("/%s", nid), func(path string, v interface{}) bool {
+			entry, ok := v.(*entry)
+			if !ok {
+				return false
+			}
+
+			eType := TableEventTypeCreate
+			if entry.deleting {
+				eType = TableEventTypeDelete
+			}
+
+			params := strings.Split(path[1:], "/")
+			tEvent := TableEvent{
+				Type:      eType,
+				LTime:     entry.ltime,
+				NodeName:  entry.node,
+				NetworkID: nid,
+				TableName: params[1],
+				Key:       params[2],
+				Value:     entry.value,
+				// The duration in second is a float that below would be truncated
+				ResidualReapTime: int32(entry.reapTime.Seconds()),
+			}
+
+			msg, err := encodeMessage(MessageTypeTableEvent, &tEvent)
+			if err != nil {
+				logrus.Errorf("Encode failure during bulk sync: %#v", tEvent)
+				return false
+			}
+
+			msgs = append(msgs, msg)
+			return false
+		})
+	}
+	nDB.RUnlock()
+
+	// Create a compound message
+	compound := makeCompoundMessage(msgs)
+
+	bsm := BulkSyncMessage{
+		LTime:       nDB.tableClock.Time(),
+		Unsolicited: unsolicited,
+		NodeName:    nDB.config.NodeID,
+		Networks:    networks,
+		Payload:     compound,
+	}
+
+	buf, err := encodeMessage(MessageTypeBulkSync, &bsm)
+	if err != nil {
+		return fmt.Errorf("failed to encode bulk sync message: %v", err)
+	}
+
+	nDB.Lock()
+	ch := make(chan struct{})
+	nDB.bulkSyncAckTbl[node] = ch
+	nDB.Unlock()
+
+	err = nDB.memberlist.SendReliable(&mnode.Node, buf)
+	if err != nil {
+		nDB.Lock()
+		delete(nDB.bulkSyncAckTbl, node)
+		nDB.Unlock()
+
+		return fmt.Errorf("failed to send a TCP message during bulk sync: %v", err)
+	}
+
+	// Wait on a response only if it is unsolicited.
+	if unsolicited {
+		startTime := time.Now()
+		t := time.NewTimer(30 * time.Second)
+		select {
+		case <-t.C:
+			logrus.Errorf("Bulk sync to node %s timed out", node)
+		case <-ch:
+			logrus.Debugf("%v(%v): Bulk sync to node %s took %s", nDB.config.Hostname, nDB.config.NodeID, node, time.Since(startTime))
+		}
+		t.Stop()
+	}
+
+	return nil
+}
+
+// Returns a random offset between 0 and n
+func randomOffset(n int) int {
+	if n == 0 {
+		return 0
+	}
+
+	val, err := rand.Int(rand.Reader, big.NewInt(int64(n)))
+	if err != nil {
+		logrus.Errorf("Failed to get a random offset: %v", err)
+		return 0
+	}
+
+	return int(val.Int64())
+}
+
+// mRandomNodes is used to select up to m random nodes. It is possible
+// that less than m nodes are returned.
+func (nDB *NetworkDB) mRandomNodes(m int, nodes []string) []string {
+	n := len(nodes)
+	mNodes := make([]string, 0, m)
+OUTER:
+	// Probe up to 3*n times, with large n this is not necessary
+	// since k << n, but with small n we want search to be
+	// exhaustive
+	for i := 0; i < 3*n && len(mNodes) < m; i++ {
+		// Get random node
+		idx := randomOffset(n)
+		node := nodes[idx]
+
+		if node == nDB.config.NodeID {
+			continue
+		}
+
+		// Check if we have this node already
+		for j := 0; j < len(mNodes); j++ {
+			if node == mNodes[j] {
+				continue OUTER
+			}
+		}
+
+		// Append the node
+		mNodes = append(mNodes, node)
+	}
+
+	return mNodes
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/delegate.go b/vendor/github.com/docker/libnetwork/networkdb/delegate.go
new file mode 100644
index 0000000000..9a379fe7cd
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/delegate.go
@@ -0,0 +1,476 @@
+package networkdb
+
+import (
+	"net"
+	"time"
+
+	"github.com/gogo/protobuf/proto"
+	"github.com/sirupsen/logrus"
+)
+
+type delegate struct {
+	nDB *NetworkDB
+}
+
+func (d *delegate) NodeMeta(limit int) []byte {
+	return []byte{}
+}
+
+func (nDB *NetworkDB) handleNodeEvent(nEvent *NodeEvent) bool {
+	// Update our local clock if the received messages has newer
+	// time.
+	nDB.networkClock.Witness(nEvent.LTime)
+
+	nDB.Lock()
+	defer nDB.Unlock()
+
+	// check if the node exists
+	n, _, _ := nDB.findNode(nEvent.NodeName)
+	if n == nil {
+		return false
+	}
+
+	// check if the event is fresh
+	if n.ltime >= nEvent.LTime {
+		return false
+	}
+
+	// If we are here means that the event is fresher and the node is known. Update the laport time
+	n.ltime = nEvent.LTime
+
+	// If the node is not known from memberlist we cannot process save any state of it else if it actually
+	// dies we won't receive any notification and we will remain stuck with it
+	if _, ok := nDB.nodes[nEvent.NodeName]; !ok {
+		logrus.Error("node: %s is unknown to memberlist", nEvent.NodeName)
+		return false
+	}
+
+	switch nEvent.Type {
+	case NodeEventTypeJoin:
+		moved, err := nDB.changeNodeState(n.Name, nodeActiveState)
+		if err != nil {
+			logrus.WithError(err).Error("unable to find the node to move")
+			return false
+		}
+		if moved {
+			logrus.Infof("%v(%v): Node join event for %s/%s", nDB.config.Hostname, nDB.config.NodeID, n.Name, n.Addr)
+		}
+		return moved
+	case NodeEventTypeLeave:
+		moved, err := nDB.changeNodeState(n.Name, nodeLeftState)
+		if err != nil {
+			logrus.WithError(err).Error("unable to find the node to move")
+			return false
+		}
+		if moved {
+			logrus.Infof("%v(%v): Node leave event for %s/%s", nDB.config.Hostname, nDB.config.NodeID, n.Name, n.Addr)
+		}
+		return moved
+	}
+
+	return false
+}
+
+func (nDB *NetworkDB) handleNetworkEvent(nEvent *NetworkEvent) bool {
+	// Update our local clock if the received messages has newer
+	// time.
+	nDB.networkClock.Witness(nEvent.LTime)
+
+	nDB.Lock()
+	defer nDB.Unlock()
+
+	if nEvent.NodeName == nDB.config.NodeID {
+		return false
+	}
+
+	nodeNetworks, ok := nDB.networks[nEvent.NodeName]
+	if !ok {
+		// We haven't heard about this node at all.  Ignore the leave
+		if nEvent.Type == NetworkEventTypeLeave {
+			return false
+		}
+
+		nodeNetworks = make(map[string]*network)
+		nDB.networks[nEvent.NodeName] = nodeNetworks
+	}
+
+	if n, ok := nodeNetworks[nEvent.NetworkID]; ok {
+		// We have the latest state. Ignore the event
+		// since it is stale.
+		if n.ltime >= nEvent.LTime {
+			return false
+		}
+
+		n.ltime = nEvent.LTime
+		n.leaving = nEvent.Type == NetworkEventTypeLeave
+		if n.leaving {
+			n.reapTime = nDB.config.reapNetworkInterval
+
+			// The remote node is leaving the network, but not the gossip cluster.
+			// Mark all its entries in deleted state, this will guarantee that
+			// if some node bulk sync with us, the deleted state of
+			// these entries will be propagated.
+			nDB.deleteNodeNetworkEntries(nEvent.NetworkID, nEvent.NodeName)
+		}
+
+		if nEvent.Type == NetworkEventTypeLeave {
+			nDB.deleteNetworkNode(nEvent.NetworkID, nEvent.NodeName)
+		} else {
+			nDB.addNetworkNode(nEvent.NetworkID, nEvent.NodeName)
+		}
+
+		return true
+	}
+
+	if nEvent.Type == NetworkEventTypeLeave {
+		return false
+	}
+
+	// If the node is not known from memberlist we cannot process save any state of it else if it actually
+	// dies we won't receive any notification and we will remain stuck with it
+	if _, ok := nDB.nodes[nEvent.NodeName]; !ok {
+		return false
+	}
+
+	// This remote network join is being seen the first time.
+	nodeNetworks[nEvent.NetworkID] = &network{
+		id:    nEvent.NetworkID,
+		ltime: nEvent.LTime,
+	}
+
+	nDB.addNetworkNode(nEvent.NetworkID, nEvent.NodeName)
+	return true
+}
+
+func (nDB *NetworkDB) handleTableEvent(tEvent *TableEvent) bool {
+	// Update our local clock if the received messages has newer time.
+	nDB.tableClock.Witness(tEvent.LTime)
+
+	// Ignore the table events for networks that are in the process of going away
+	nDB.RLock()
+	networks := nDB.networks[nDB.config.NodeID]
+	network, ok := networks[tEvent.NetworkID]
+	// Check if the owner of the event is still part of the network
+	nodes := nDB.networkNodes[tEvent.NetworkID]
+	var nodePresent bool
+	for _, node := range nodes {
+		if node == tEvent.NodeName {
+			nodePresent = true
+			break
+		}
+	}
+	nDB.RUnlock()
+
+	if !ok || network.leaving || !nodePresent {
+		// I'm out of the network OR the event owner is not anymore part of the network so do not propagate
+		return false
+	}
+
+	nDB.Lock()
+	e, err := nDB.getEntry(tEvent.TableName, tEvent.NetworkID, tEvent.Key)
+	if err == nil {
+		// We have the latest state. Ignore the event
+		// since it is stale.
+		if e.ltime >= tEvent.LTime {
+			nDB.Unlock()
+			return false
+		}
+	}
+
+	e = &entry{
+		ltime:    tEvent.LTime,
+		node:     tEvent.NodeName,
+		value:    tEvent.Value,
+		deleting: tEvent.Type == TableEventTypeDelete,
+		reapTime: time.Duration(tEvent.ResidualReapTime) * time.Second,
+	}
+
+	// All the entries marked for deletion should have a reapTime set greater than 0
+	// This case can happen if the cluster is running different versions of the engine where the old version does not have the
+	// field. If that is not the case, this can be a BUG
+	if e.deleting && e.reapTime == 0 {
+		logrus.Warnf("%v(%v) handleTableEvent object %+v has a 0 reapTime, is the cluster running the same docker engine version?",
+			nDB.config.Hostname, nDB.config.NodeID, tEvent)
+		e.reapTime = nDB.config.reapEntryInterval
+	}
+	nDB.createOrUpdateEntry(tEvent.NetworkID, tEvent.TableName, tEvent.Key, e)
+	nDB.Unlock()
+
+	if err != nil && tEvent.Type == TableEventTypeDelete {
+		// If it is a delete event and we did not have a state for it, don't propagate to the application
+		// If the residual reapTime is lower or equal to 1/6 of the total reapTime don't bother broadcasting it around
+		// most likely the cluster is already aware of it, if not who will sync with this node will catch the state too.
+		// This also avoids that deletion of entries close to their garbage collection ends up circuling around forever
+		return e.reapTime > nDB.config.reapEntryInterval/6
+	}
+
+	var op opType
+	switch tEvent.Type {
+	case TableEventTypeCreate:
+		op = opCreate
+	case TableEventTypeUpdate:
+		op = opUpdate
+	case TableEventTypeDelete:
+		op = opDelete
+	}
+
+	nDB.broadcaster.Write(makeEvent(op, tEvent.TableName, tEvent.NetworkID, tEvent.Key, tEvent.Value))
+	return true
+}
+
+func (nDB *NetworkDB) handleCompound(buf []byte, isBulkSync bool) {
+	// Decode the parts
+	parts, err := decodeCompoundMessage(buf)
+	if err != nil {
+		logrus.Errorf("Failed to decode compound request: %v", err)
+		return
+	}
+
+	// Handle each message
+	for _, part := range parts {
+		nDB.handleMessage(part, isBulkSync)
+	}
+}
+
+func (nDB *NetworkDB) handleTableMessage(buf []byte, isBulkSync bool) {
+	var tEvent TableEvent
+	if err := proto.Unmarshal(buf, &tEvent); err != nil {
+		logrus.Errorf("Error decoding table event message: %v", err)
+		return
+	}
+
+	// Ignore messages that this node generated.
+	if tEvent.NodeName == nDB.config.NodeID {
+		return
+	}
+
+	if rebroadcast := nDB.handleTableEvent(&tEvent); rebroadcast {
+		var err error
+		buf, err = encodeRawMessage(MessageTypeTableEvent, buf)
+		if err != nil {
+			logrus.Errorf("Error marshalling gossip message for network event rebroadcast: %v", err)
+			return
+		}
+
+		nDB.RLock()
+		n, ok := nDB.networks[nDB.config.NodeID][tEvent.NetworkID]
+		nDB.RUnlock()
+
+		// if the network is not there anymore, OR we are leaving the network OR the broadcast queue is not present
+		if !ok || n.leaving || n.tableBroadcasts == nil {
+			return
+		}
+
+		n.tableBroadcasts.QueueBroadcast(&tableEventMessage{
+			msg:   buf,
+			id:    tEvent.NetworkID,
+			tname: tEvent.TableName,
+			key:   tEvent.Key,
+			node:  tEvent.NodeName,
+		})
+	}
+}
+
+func (nDB *NetworkDB) handleNodeMessage(buf []byte) {
+	var nEvent NodeEvent
+	if err := proto.Unmarshal(buf, &nEvent); err != nil {
+		logrus.Errorf("Error decoding node event message: %v", err)
+		return
+	}
+
+	if rebroadcast := nDB.handleNodeEvent(&nEvent); rebroadcast {
+		var err error
+		buf, err = encodeRawMessage(MessageTypeNodeEvent, buf)
+		if err != nil {
+			logrus.Errorf("Error marshalling gossip message for node event rebroadcast: %v", err)
+			return
+		}
+
+		nDB.nodeBroadcasts.QueueBroadcast(&nodeEventMessage{
+			msg: buf,
+		})
+	}
+}
+
+func (nDB *NetworkDB) handleNetworkMessage(buf []byte) {
+	var nEvent NetworkEvent
+	if err := proto.Unmarshal(buf, &nEvent); err != nil {
+		logrus.Errorf("Error decoding network event message: %v", err)
+		return
+	}
+
+	if rebroadcast := nDB.handleNetworkEvent(&nEvent); rebroadcast {
+		var err error
+		buf, err = encodeRawMessage(MessageTypeNetworkEvent, buf)
+		if err != nil {
+			logrus.Errorf("Error marshalling gossip message for network event rebroadcast: %v", err)
+			return
+		}
+
+		nDB.networkBroadcasts.QueueBroadcast(&networkEventMessage{
+			msg:  buf,
+			id:   nEvent.NetworkID,
+			node: nEvent.NodeName,
+		})
+	}
+}
+
+func (nDB *NetworkDB) handleBulkSync(buf []byte) {
+	var bsm BulkSyncMessage
+	if err := proto.Unmarshal(buf, &bsm); err != nil {
+		logrus.Errorf("Error decoding bulk sync message: %v", err)
+		return
+	}
+
+	if bsm.LTime > 0 {
+		nDB.tableClock.Witness(bsm.LTime)
+	}
+
+	nDB.handleMessage(bsm.Payload, true)
+
+	// Don't respond to a bulk sync which was not unsolicited
+	if !bsm.Unsolicited {
+		nDB.Lock()
+		ch, ok := nDB.bulkSyncAckTbl[bsm.NodeName]
+		if ok {
+			close(ch)
+			delete(nDB.bulkSyncAckTbl, bsm.NodeName)
+		}
+		nDB.Unlock()
+
+		return
+	}
+
+	var nodeAddr net.IP
+	nDB.RLock()
+	if node, ok := nDB.nodes[bsm.NodeName]; ok {
+		nodeAddr = node.Addr
+	}
+	nDB.RUnlock()
+
+	if err := nDB.bulkSyncNode(bsm.Networks, bsm.NodeName, false); err != nil {
+		logrus.Errorf("Error in responding to bulk sync from node %s: %v", nodeAddr, err)
+	}
+}
+
+func (nDB *NetworkDB) handleMessage(buf []byte, isBulkSync bool) {
+	mType, data, err := decodeMessage(buf)
+	if err != nil {
+		logrus.Errorf("Error decoding gossip message to get message type: %v", err)
+		return
+	}
+
+	switch mType {
+	case MessageTypeNodeEvent:
+		nDB.handleNodeMessage(data)
+	case MessageTypeNetworkEvent:
+		nDB.handleNetworkMessage(data)
+	case MessageTypeTableEvent:
+		nDB.handleTableMessage(data, isBulkSync)
+	case MessageTypeBulkSync:
+		nDB.handleBulkSync(data)
+	case MessageTypeCompound:
+		nDB.handleCompound(data, isBulkSync)
+	default:
+		logrus.Errorf("%v(%v): unknown message type %d", nDB.config.Hostname, nDB.config.NodeID, mType)
+	}
+}
+
+func (d *delegate) NotifyMsg(buf []byte) {
+	if len(buf) == 0 {
+		return
+	}
+
+	d.nDB.handleMessage(buf, false)
+}
+
+func (d *delegate) GetBroadcasts(overhead, limit int) [][]byte {
+	msgs := d.nDB.networkBroadcasts.GetBroadcasts(overhead, limit)
+	msgs = append(msgs, d.nDB.nodeBroadcasts.GetBroadcasts(overhead, limit)...)
+	return msgs
+}
+
+func (d *delegate) LocalState(join bool) []byte {
+	if join {
+		// Update all the local node/network state to a new time to
+		// force update on the node we are trying to rejoin, just in
+		// case that node has these in leaving state still. This is
+		// facilitate fast convergence after recovering from a gossip
+		// failure.
+		d.nDB.updateLocalNetworkTime()
+	}
+
+	d.nDB.RLock()
+	defer d.nDB.RUnlock()
+
+	pp := NetworkPushPull{
+		LTime:    d.nDB.networkClock.Time(),
+		NodeName: d.nDB.config.NodeID,
+	}
+
+	for name, nn := range d.nDB.networks {
+		for _, n := range nn {
+			pp.Networks = append(pp.Networks, &NetworkEntry{
+				LTime:     n.ltime,
+				NetworkID: n.id,
+				NodeName:  name,
+				Leaving:   n.leaving,
+			})
+		}
+	}
+
+	buf, err := encodeMessage(MessageTypePushPull, &pp)
+	if err != nil {
+		logrus.Errorf("Failed to encode local network state: %v", err)
+		return nil
+	}
+
+	return buf
+}
+
+func (d *delegate) MergeRemoteState(buf []byte, isJoin bool) {
+	if len(buf) == 0 {
+		logrus.Error("zero byte remote network state received")
+		return
+	}
+
+	var gMsg GossipMessage
+	err := proto.Unmarshal(buf, &gMsg)
+	if err != nil {
+		logrus.Errorf("Error unmarshalling push pull message: %v", err)
+		return
+	}
+
+	if gMsg.Type != MessageTypePushPull {
+		logrus.Errorf("Invalid message type %v received from remote", buf[0])
+	}
+
+	pp := NetworkPushPull{}
+	if err := proto.Unmarshal(gMsg.Data, &pp); err != nil {
+		logrus.Errorf("Failed to decode remote network state: %v", err)
+		return
+	}
+
+	nodeEvent := &NodeEvent{
+		LTime:    pp.LTime,
+		NodeName: pp.NodeName,
+		Type:     NodeEventTypeJoin,
+	}
+	d.nDB.handleNodeEvent(nodeEvent)
+
+	for _, n := range pp.Networks {
+		nEvent := &NetworkEvent{
+			LTime:     n.LTime,
+			NodeName:  n.NodeName,
+			NetworkID: n.NetworkID,
+			Type:      NetworkEventTypeJoin,
+		}
+
+		if n.Leaving {
+			nEvent.Type = NetworkEventTypeLeave
+		}
+
+		d.nDB.handleNetworkEvent(nEvent)
+	}
+
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/event_delegate.go b/vendor/github.com/docker/libnetwork/networkdb/event_delegate.go
new file mode 100644
index 0000000000..78ebe0fd9e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/event_delegate.go
@@ -0,0 +1,72 @@
+package networkdb
+
+import (
+	"encoding/json"
+	"net"
+
+	"github.com/hashicorp/memberlist"
+	"github.com/sirupsen/logrus"
+)
+
+type eventDelegate struct {
+	nDB *NetworkDB
+}
+
+func (e *eventDelegate) broadcastNodeEvent(addr net.IP, op opType) {
+	value, err := json.Marshal(&NodeAddr{addr})
+	if err == nil {
+		e.nDB.broadcaster.Write(makeEvent(op, NodeTable, "", "", value))
+	} else {
+		logrus.Errorf("Error marshalling node broadcast event %s", addr.String())
+	}
+}
+
+func (e *eventDelegate) NotifyJoin(mn *memberlist.Node) {
+	logrus.Infof("Node %s/%s, joined gossip cluster", mn.Name, mn.Addr)
+	e.broadcastNodeEvent(mn.Addr, opCreate)
+	e.nDB.Lock()
+	defer e.nDB.Unlock()
+
+	// In case the node is rejoining after a failure or leave,
+	// just add the node back to active
+	if moved, _ := e.nDB.changeNodeState(mn.Name, nodeActiveState); moved {
+		return
+	}
+
+	// Every node has a unique ID
+	// Check on the base of the IP address if the new node that joined is actually a new incarnation of a previous
+	// failed or shutdown one
+	e.nDB.purgeReincarnation(mn)
+
+	e.nDB.nodes[mn.Name] = &node{Node: *mn}
+	logrus.Infof("Node %s/%s, added to nodes list", mn.Name, mn.Addr)
+}
+
+func (e *eventDelegate) NotifyLeave(mn *memberlist.Node) {
+	logrus.Infof("Node %s/%s, left gossip cluster", mn.Name, mn.Addr)
+	e.broadcastNodeEvent(mn.Addr, opDelete)
+
+	e.nDB.Lock()
+	defer e.nDB.Unlock()
+
+	n, currState, _ := e.nDB.findNode(mn.Name)
+	if n == nil {
+		logrus.Errorf("Node %s/%s not found in the node lists", mn.Name, mn.Addr)
+		return
+	}
+	// if the node was active means that did not send the leave cluster message, so it's probable that
+	// failed. Else would be already in the left list so nothing else has to be done
+	if currState == nodeActiveState {
+		moved, err := e.nDB.changeNodeState(mn.Name, nodeFailedState)
+		if err != nil {
+			logrus.WithError(err).Errorf("impossible condition, node %s/%s not present in the list", mn.Name, mn.Addr)
+			return
+		}
+		if moved {
+			logrus.Infof("Node %s/%s, added to failed nodes list", mn.Name, mn.Addr)
+		}
+	}
+}
+
+func (e *eventDelegate) NotifyUpdate(n *memberlist.Node) {
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/message.go b/vendor/github.com/docker/libnetwork/networkdb/message.go
new file mode 100644
index 0000000000..81a6d832a6
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/message.go
@@ -0,0 +1,98 @@
+package networkdb
+
+import "github.com/gogo/protobuf/proto"
+
+const (
+	// Compound message header overhead 1 byte(message type) + 4
+	// bytes (num messages)
+	compoundHeaderOverhead = 5
+
+	// Overhead for each embedded message in a compound message 4
+	// bytes (len of embedded message)
+	compoundOverhead = 4
+)
+
+func encodeRawMessage(t MessageType, raw []byte) ([]byte, error) {
+	gMsg := GossipMessage{
+		Type: t,
+		Data: raw,
+	}
+
+	buf, err := proto.Marshal(&gMsg)
+	if err != nil {
+		return nil, err
+	}
+
+	return buf, nil
+}
+
+func encodeMessage(t MessageType, msg interface{}) ([]byte, error) {
+	buf, err := proto.Marshal(msg.(proto.Message))
+	if err != nil {
+		return nil, err
+	}
+
+	buf, err = encodeRawMessage(t, buf)
+	if err != nil {
+		return nil, err
+	}
+
+	return buf, nil
+}
+
+func decodeMessage(buf []byte) (MessageType, []byte, error) {
+	var gMsg GossipMessage
+
+	err := proto.Unmarshal(buf, &gMsg)
+	if err != nil {
+		return MessageTypeInvalid, nil, err
+	}
+
+	return gMsg.Type, gMsg.Data, nil
+}
+
+// makeCompoundMessage takes a list of messages and generates
+// a single compound message containing all of them
+func makeCompoundMessage(msgs [][]byte) []byte {
+	cMsg := CompoundMessage{}
+
+	cMsg.Messages = make([]*CompoundMessage_SimpleMessage, 0, len(msgs))
+	for _, m := range msgs {
+		cMsg.Messages = append(cMsg.Messages, &CompoundMessage_SimpleMessage{
+			Payload: m,
+		})
+	}
+
+	buf, err := proto.Marshal(&cMsg)
+	if err != nil {
+		return nil
+	}
+
+	gMsg := GossipMessage{
+		Type: MessageTypeCompound,
+		Data: buf,
+	}
+
+	buf, err = proto.Marshal(&gMsg)
+	if err != nil {
+		return nil
+	}
+
+	return buf
+}
+
+// decodeCompoundMessage splits a compound message and returns
+// the slices of individual messages. Returns any potential error.
+func decodeCompoundMessage(buf []byte) ([][]byte, error) {
+	var cMsg CompoundMessage
+	if err := proto.Unmarshal(buf, &cMsg); err != nil {
+		return nil, err
+	}
+
+	parts := make([][]byte, 0, len(cMsg.Messages))
+	for _, m := range cMsg.Messages {
+		parts = append(parts, m.Payload)
+	}
+
+	return parts, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/networkdb.go b/vendor/github.com/docker/libnetwork/networkdb/networkdb.go
new file mode 100644
index 0000000000..c433913a46
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/networkdb.go
@@ -0,0 +1,762 @@
+package networkdb
+
+//go:generate protoc -I.:../vendor/github.com/gogo/protobuf --gogo_out=import_path=github.com/docker/libnetwork/networkdb,Mgogoproto/gogo.proto=github.com/gogo/protobuf/gogoproto:. networkdb.proto
+
+import (
+	"context"
+	"fmt"
+	"net"
+	"os"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/armon/go-radix"
+	"github.com/docker/docker/pkg/stringid"
+	"github.com/docker/go-events"
+	"github.com/docker/libnetwork/types"
+	"github.com/hashicorp/memberlist"
+	"github.com/hashicorp/serf/serf"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	byTable int = 1 + iota
+	byNetwork
+)
+
+// NetworkDB instance drives the networkdb cluster and acts the broker
+// for cluster-scoped and network-scoped gossip and watches.
+type NetworkDB struct {
+	// The clocks MUST be the first things
+	// in this struct due to Golang issue #599.
+
+	// Global lamport clock for node network attach events.
+	networkClock serf.LamportClock
+
+	// Global lamport clock for table events.
+	tableClock serf.LamportClock
+
+	sync.RWMutex
+
+	// NetworkDB configuration.
+	config *Config
+
+	// All the tree index (byTable, byNetwork) that we maintain
+	// the db.
+	indexes map[int]*radix.Tree
+
+	// Memberlist we use to drive the cluster.
+	memberlist *memberlist.Memberlist
+
+	// List of all peer nodes in the cluster not-limited to any
+	// network.
+	nodes map[string]*node
+
+	// List of all peer nodes which have failed
+	failedNodes map[string]*node
+
+	// List of all peer nodes which have left
+	leftNodes map[string]*node
+
+	// A multi-dimensional map of network/node attachmemts. The
+	// first key is a node name and the second key is a network ID
+	// for the network that node is participating in.
+	networks map[string]map[string]*network
+
+	// A map of nodes which are participating in a given
+	// network. The key is a network ID.
+	networkNodes map[string][]string
+
+	// A table of ack channels for every node from which we are
+	// waiting for an ack.
+	bulkSyncAckTbl map[string]chan struct{}
+
+	// Broadcast queue for network event gossip.
+	networkBroadcasts *memberlist.TransmitLimitedQueue
+
+	// Broadcast queue for node event gossip.
+	nodeBroadcasts *memberlist.TransmitLimitedQueue
+
+	// A central context to stop all go routines running on
+	// behalf of the NetworkDB instance.
+	ctx       context.Context
+	cancelCtx context.CancelFunc
+
+	// A central broadcaster for all local watchers watching table
+	// events.
+	broadcaster *events.Broadcaster
+
+	// List of all tickers which needed to be stopped when
+	// cleaning up.
+	tickers []*time.Ticker
+
+	// Reference to the memberlist's keyring to add & remove keys
+	keyring *memberlist.Keyring
+
+	// bootStrapIP is the list of IPs that can be used to bootstrap
+	// the gossip.
+	bootStrapIP []net.IP
+
+	// lastStatsTimestamp is the last timestamp when the stats got printed
+	lastStatsTimestamp time.Time
+
+	// lastHealthTimestamp is the last timestamp when the health score got printed
+	lastHealthTimestamp time.Time
+}
+
+// PeerInfo represents the peer (gossip cluster) nodes of a network
+type PeerInfo struct {
+	Name string
+	IP   string
+}
+
+// PeerClusterInfo represents the peer (gossip cluster) nodes
+type PeerClusterInfo struct {
+	PeerInfo
+}
+
+type node struct {
+	memberlist.Node
+	ltime serf.LamportTime
+	// Number of hours left before the reaper removes the node
+	reapTime time.Duration
+}
+
+// network describes the node/network attachment.
+type network struct {
+	// Network ID
+	id string
+
+	// Lamport time for the latest state of the entry.
+	ltime serf.LamportTime
+
+	// Node leave is in progress.
+	leaving bool
+
+	// Number of seconds still left before a deleted network entry gets
+	// removed from networkDB
+	reapTime time.Duration
+
+	// The broadcast queue for table event gossip. This is only
+	// initialized for this node's network attachment entries.
+	tableBroadcasts *memberlist.TransmitLimitedQueue
+
+	// Number of gossip messages sent related to this network during the last stats collection period
+	qMessagesSent int
+
+	// Number of entries on the network. This value is the sum of all the entries of all the tables of a specific network.
+	// Its use is for statistics purposes. It keep tracks of database size and is printed per network every StatsPrintPeriod
+	// interval
+	entriesNumber int
+}
+
+// Config represents the configuration of the networdb instance and
+// can be passed by the caller.
+type Config struct {
+	// NodeID is the node unique identifier of the node when is part of the cluster
+	NodeID string
+
+	// Hostname is the node hostname.
+	Hostname string
+
+	// BindAddr is the IP on which networkdb listens. It can be
+	// 0.0.0.0 to listen on all addresses on the host.
+	BindAddr string
+
+	// AdvertiseAddr is the node's IP address that we advertise for
+	// cluster communication.
+	AdvertiseAddr string
+
+	// BindPort is the local node's port to which we bind to for
+	// cluster communication.
+	BindPort int
+
+	// Keys to be added to the Keyring of the memberlist. Key at index
+	// 0 is the primary key
+	Keys [][]byte
+
+	// PacketBufferSize is the maximum number of bytes that memberlist will
+	// put in a packet (this will be for UDP packets by default with a NetTransport).
+	// A safe value for this is typically 1400 bytes (which is the default). However,
+	// depending on your network's MTU (Maximum Transmission Unit) you may
+	// be able to increase this to get more content into each gossip packet.
+	PacketBufferSize int
+
+	// reapEntryInterval duration of a deleted entry before being garbage collected
+	reapEntryInterval time.Duration
+
+	// reapNetworkInterval duration of a delted network before being garbage collected
+	// NOTE this MUST always be higher than reapEntryInterval
+	reapNetworkInterval time.Duration
+
+	// StatsPrintPeriod the period to use to print queue stats
+	// Default is 5min
+	StatsPrintPeriod time.Duration
+
+	// HealthPrintPeriod the period to use to print the health score
+	// Default is 1min
+	HealthPrintPeriod time.Duration
+}
+
+// entry defines a table entry
+type entry struct {
+	// node from which this entry was learned.
+	node string
+
+	// Lamport time for the most recent update to the entry
+	ltime serf.LamportTime
+
+	// Opaque value store in the entry
+	value []byte
+
+	// Deleting the entry is in progress. All entries linger in
+	// the cluster for certain amount of time after deletion.
+	deleting bool
+
+	// Number of seconds still left before a deleted table entry gets
+	// removed from networkDB
+	reapTime time.Duration
+}
+
+// DefaultConfig returns a NetworkDB config with default values
+func DefaultConfig() *Config {
+	hostname, _ := os.Hostname()
+	return &Config{
+		NodeID:            stringid.TruncateID(stringid.GenerateRandomID()),
+		Hostname:          hostname,
+		BindAddr:          "0.0.0.0",
+		PacketBufferSize:  1400,
+		StatsPrintPeriod:  5 * time.Minute,
+		HealthPrintPeriod: 1 * time.Minute,
+		reapEntryInterval: 30 * time.Minute,
+	}
+}
+
+// New creates a new instance of NetworkDB using the Config passed by
+// the caller.
+func New(c *Config) (*NetworkDB, error) {
+	// The garbage collection logic for entries leverage the presence of the network.
+	// For this reason the expiration time of the network is put slightly higher than the entry expiration so that
+	// there is at least 5 extra cycle to make sure that all the entries are properly deleted before deleting the network.
+	c.reapNetworkInterval = c.reapEntryInterval + 5*reapPeriod
+
+	nDB := &NetworkDB{
+		config:         c,
+		indexes:        make(map[int]*radix.Tree),
+		networks:       make(map[string]map[string]*network),
+		nodes:          make(map[string]*node),
+		failedNodes:    make(map[string]*node),
+		leftNodes:      make(map[string]*node),
+		networkNodes:   make(map[string][]string),
+		bulkSyncAckTbl: make(map[string]chan struct{}),
+		broadcaster:    events.NewBroadcaster(),
+	}
+
+	nDB.indexes[byTable] = radix.New()
+	nDB.indexes[byNetwork] = radix.New()
+
+	logrus.Infof("New memberlist node - Node:%v will use memberlist nodeID:%v with config:%+v", c.Hostname, c.NodeID, c)
+	if err := nDB.clusterInit(); err != nil {
+		return nil, err
+	}
+
+	return nDB, nil
+}
+
+// Join joins this NetworkDB instance with a list of peer NetworkDB
+// instances passed by the caller in the form of addr:port
+func (nDB *NetworkDB) Join(members []string) error {
+	nDB.Lock()
+	nDB.bootStrapIP = make([]net.IP, 0, len(members))
+	for _, m := range members {
+		nDB.bootStrapIP = append(nDB.bootStrapIP, net.ParseIP(m))
+	}
+	nDB.Unlock()
+	return nDB.clusterJoin(members)
+}
+
+// Close destroys this NetworkDB instance by leave the cluster,
+// stopping timers, canceling goroutines etc.
+func (nDB *NetworkDB) Close() {
+	if err := nDB.clusterLeave(); err != nil {
+		logrus.Errorf("%v(%v) Could not close DB: %v", nDB.config.Hostname, nDB.config.NodeID, err)
+	}
+
+	//Avoid (*Broadcaster).run goroutine leak
+	nDB.broadcaster.Close()
+}
+
+// ClusterPeers returns all the gossip cluster peers.
+func (nDB *NetworkDB) ClusterPeers() []PeerInfo {
+	nDB.RLock()
+	defer nDB.RUnlock()
+	peers := make([]PeerInfo, 0, len(nDB.nodes))
+	for _, node := range nDB.nodes {
+		peers = append(peers, PeerInfo{
+			Name: node.Name,
+			IP:   node.Node.Addr.String(),
+		})
+	}
+	return peers
+}
+
+// Peers returns the gossip peers for a given network.
+func (nDB *NetworkDB) Peers(nid string) []PeerInfo {
+	nDB.RLock()
+	defer nDB.RUnlock()
+	peers := make([]PeerInfo, 0, len(nDB.networkNodes[nid]))
+	for _, nodeName := range nDB.networkNodes[nid] {
+		if node, ok := nDB.nodes[nodeName]; ok {
+			peers = append(peers, PeerInfo{
+				Name: node.Name,
+				IP:   node.Addr.String(),
+			})
+		} else {
+			// Added for testing purposes, this condition should never happen else mean that the network list
+			// is out of sync with the node list
+			peers = append(peers, PeerInfo{Name: nodeName, IP: "unknown"})
+		}
+	}
+	return peers
+}
+
+// GetEntry retrieves the value of a table entry in a given (network,
+// table, key) tuple
+func (nDB *NetworkDB) GetEntry(tname, nid, key string) ([]byte, error) {
+	nDB.RLock()
+	defer nDB.RUnlock()
+	entry, err := nDB.getEntry(tname, nid, key)
+	if err != nil {
+		return nil, err
+	}
+	if entry != nil && entry.deleting {
+		return nil, types.NotFoundErrorf("entry in table %s network id %s and key %s deleted and pending garbage collection", tname, nid, key)
+	}
+
+	return entry.value, nil
+}
+
+func (nDB *NetworkDB) getEntry(tname, nid, key string) (*entry, error) {
+	e, ok := nDB.indexes[byTable].Get(fmt.Sprintf("/%s/%s/%s", tname, nid, key))
+	if !ok {
+		return nil, types.NotFoundErrorf("could not get entry in table %s with network id %s and key %s", tname, nid, key)
+	}
+
+	return e.(*entry), nil
+}
+
+// CreateEntry creates a table entry in NetworkDB for given (network,
+// table, key) tuple and if the NetworkDB is part of the cluster
+// propagates this event to the cluster. It is an error to create an
+// entry for the same tuple for which there is already an existing
+// entry unless the current entry is deleting state.
+func (nDB *NetworkDB) CreateEntry(tname, nid, key string, value []byte) error {
+	nDB.Lock()
+	oldEntry, err := nDB.getEntry(tname, nid, key)
+	if err == nil || (oldEntry != nil && !oldEntry.deleting) {
+		nDB.Unlock()
+		return fmt.Errorf("cannot create entry in table %s with network id %s and key %s, already exists", tname, nid, key)
+	}
+
+	entry := &entry{
+		ltime: nDB.tableClock.Increment(),
+		node:  nDB.config.NodeID,
+		value: value,
+	}
+
+	nDB.createOrUpdateEntry(nid, tname, key, entry)
+	nDB.Unlock()
+
+	if err := nDB.sendTableEvent(TableEventTypeCreate, nid, tname, key, entry); err != nil {
+		return fmt.Errorf("cannot send create event for table %s, %v", tname, err)
+	}
+
+	return nil
+}
+
+// UpdateEntry updates a table entry in NetworkDB for given (network,
+// table, key) tuple and if the NetworkDB is part of the cluster
+// propagates this event to the cluster. It is an error to update a
+// non-existent entry.
+func (nDB *NetworkDB) UpdateEntry(tname, nid, key string, value []byte) error {
+	nDB.Lock()
+	if _, err := nDB.getEntry(tname, nid, key); err != nil {
+		nDB.Unlock()
+		return fmt.Errorf("cannot update entry as the entry in table %s with network id %s and key %s does not exist", tname, nid, key)
+	}
+
+	entry := &entry{
+		ltime: nDB.tableClock.Increment(),
+		node:  nDB.config.NodeID,
+		value: value,
+	}
+
+	nDB.createOrUpdateEntry(nid, tname, key, entry)
+	nDB.Unlock()
+
+	if err := nDB.sendTableEvent(TableEventTypeUpdate, nid, tname, key, entry); err != nil {
+		return fmt.Errorf("cannot send table update event: %v", err)
+	}
+
+	return nil
+}
+
+// TableElem elem
+type TableElem struct {
+	Value []byte
+	owner string
+}
+
+// GetTableByNetwork walks the networkdb by the give table and network id and
+// returns a map of keys and values
+func (nDB *NetworkDB) GetTableByNetwork(tname, nid string) map[string]*TableElem {
+	entries := make(map[string]*TableElem)
+	nDB.indexes[byTable].WalkPrefix(fmt.Sprintf("/%s/%s", tname, nid), func(k string, v interface{}) bool {
+		entry := v.(*entry)
+		if entry.deleting {
+			return false
+		}
+		key := k[strings.LastIndex(k, "/")+1:]
+		entries[key] = &TableElem{Value: entry.value, owner: entry.node}
+		return false
+	})
+	return entries
+}
+
+// DeleteEntry deletes a table entry in NetworkDB for given (network,
+// table, key) tuple and if the NetworkDB is part of the cluster
+// propagates this event to the cluster.
+func (nDB *NetworkDB) DeleteEntry(tname, nid, key string) error {
+	nDB.Lock()
+	oldEntry, err := nDB.getEntry(tname, nid, key)
+	if err != nil || oldEntry == nil || oldEntry.deleting {
+		nDB.Unlock()
+		return fmt.Errorf("cannot delete entry %s with network id %s and key %s "+
+			"does not exist or is already being deleted", tname, nid, key)
+	}
+
+	entry := &entry{
+		ltime:    nDB.tableClock.Increment(),
+		node:     nDB.config.NodeID,
+		value:    oldEntry.value,
+		deleting: true,
+		reapTime: nDB.config.reapEntryInterval,
+	}
+
+	nDB.createOrUpdateEntry(nid, tname, key, entry)
+	nDB.Unlock()
+
+	if err := nDB.sendTableEvent(TableEventTypeDelete, nid, tname, key, entry); err != nil {
+		return fmt.Errorf("cannot send table delete event: %v", err)
+	}
+
+	return nil
+}
+
+func (nDB *NetworkDB) deleteNodeFromNetworks(deletedNode string) {
+	for nid, nodes := range nDB.networkNodes {
+		updatedNodes := make([]string, 0, len(nodes))
+		for _, node := range nodes {
+			if node == deletedNode {
+				continue
+			}
+
+			updatedNodes = append(updatedNodes, node)
+		}
+
+		nDB.networkNodes[nid] = updatedNodes
+	}
+
+	delete(nDB.networks, deletedNode)
+}
+
+// deleteNodeNetworkEntries is called in 2 conditions with 2 different outcomes:
+// 1) when a notification is coming of a node leaving the network
+//		- Walk all the network entries and mark the leaving node's entries for deletion
+//			These will be garbage collected when the reap timer will expire
+// 2) when the local node is leaving the network
+//		- Walk all the network entries:
+//			A) if the entry is owned by the local node
+//		  then we will mark it for deletion. This will ensure that if a node did not
+//		  yet received the notification that the local node is leaving, will be aware
+//		  of the entries to be deleted.
+//			B) if the entry is owned by a remote node, then we can safely delete it. This
+//			ensures that if we join back this network as we receive the CREATE event for
+//		  entries owned by remote nodes, we will accept them and we notify the application
+func (nDB *NetworkDB) deleteNodeNetworkEntries(nid, node string) {
+	// Indicates if the delete is triggered for the local node
+	isNodeLocal := node == nDB.config.NodeID
+
+	nDB.indexes[byNetwork].WalkPrefix(fmt.Sprintf("/%s", nid),
+		func(path string, v interface{}) bool {
+			oldEntry := v.(*entry)
+			params := strings.Split(path[1:], "/")
+			nid := params[0]
+			tname := params[1]
+			key := params[2]
+
+			// If the entry is owned by a remote node and this node is not leaving the network
+			if oldEntry.node != node && !isNodeLocal {
+				// Don't do anything because the event is triggered for a node that does not own this entry
+				return false
+			}
+
+			// If this entry is already marked for deletion and this node is not leaving the network
+			if oldEntry.deleting && !isNodeLocal {
+				// Don't do anything this entry will be already garbage collected using the old reapTime
+				return false
+			}
+
+			entry := &entry{
+				ltime:    oldEntry.ltime,
+				node:     oldEntry.node,
+				value:    oldEntry.value,
+				deleting: true,
+				reapTime: nDB.config.reapEntryInterval,
+			}
+
+			// we arrived at this point in 2 cases:
+			// 1) this entry is owned by the node that is leaving the network
+			// 2) the local node is leaving the network
+			if oldEntry.node == node {
+				if isNodeLocal {
+					// TODO fcrisciani: this can be removed if there is no way to leave the network
+					// without doing a delete of all the objects
+					entry.ltime++
+				}
+
+				if !oldEntry.deleting {
+					nDB.createOrUpdateEntry(nid, tname, key, entry)
+				}
+			} else {
+				// the local node is leaving the network, all the entries of remote nodes can be safely removed
+				nDB.deleteEntry(nid, tname, key)
+			}
+
+			// Notify to the upper layer only entries not already marked for deletion
+			if !oldEntry.deleting {
+				nDB.broadcaster.Write(makeEvent(opDelete, tname, nid, key, entry.value))
+			}
+			return false
+		})
+}
+
+func (nDB *NetworkDB) deleteNodeTableEntries(node string) {
+	nDB.indexes[byTable].Walk(func(path string, v interface{}) bool {
+		oldEntry := v.(*entry)
+		if oldEntry.node != node {
+			return false
+		}
+
+		params := strings.Split(path[1:], "/")
+		tname := params[0]
+		nid := params[1]
+		key := params[2]
+
+		nDB.deleteEntry(nid, tname, key)
+
+		if !oldEntry.deleting {
+			nDB.broadcaster.Write(makeEvent(opDelete, tname, nid, key, oldEntry.value))
+		}
+		return false
+	})
+}
+
+// WalkTable walks a single table in NetworkDB and invokes the passed
+// function for each entry in the table passing the network, key,
+// value. The walk stops if the passed function returns a true.
+func (nDB *NetworkDB) WalkTable(tname string, fn func(string, string, []byte, bool) bool) error {
+	nDB.RLock()
+	values := make(map[string]interface{})
+	nDB.indexes[byTable].WalkPrefix(fmt.Sprintf("/%s", tname), func(path string, v interface{}) bool {
+		values[path] = v
+		return false
+	})
+	nDB.RUnlock()
+
+	for k, v := range values {
+		params := strings.Split(k[1:], "/")
+		nid := params[1]
+		key := params[2]
+		if fn(nid, key, v.(*entry).value, v.(*entry).deleting) {
+			return nil
+		}
+	}
+
+	return nil
+}
+
+// JoinNetwork joins this node to a given network and propagates this
+// event across the cluster. This triggers this node joining the
+// sub-cluster of this network and participates in the network-scoped
+// gossip and bulk sync for this network.
+func (nDB *NetworkDB) JoinNetwork(nid string) error {
+	ltime := nDB.networkClock.Increment()
+
+	nDB.Lock()
+	nodeNetworks, ok := nDB.networks[nDB.config.NodeID]
+	if !ok {
+		nodeNetworks = make(map[string]*network)
+		nDB.networks[nDB.config.NodeID] = nodeNetworks
+	}
+	n, ok := nodeNetworks[nid]
+	var entries int
+	if ok {
+		entries = n.entriesNumber
+	}
+	nodeNetworks[nid] = &network{id: nid, ltime: ltime, entriesNumber: entries}
+	nodeNetworks[nid].tableBroadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			//TODO fcrisciani this can be optimized maybe avoiding the lock?
+			// this call is done each GetBroadcasts call to evaluate the number of
+			// replicas for the message
+			nDB.RLock()
+			defer nDB.RUnlock()
+			return len(nDB.networkNodes[nid])
+		},
+		RetransmitMult: 4,
+	}
+	nDB.addNetworkNode(nid, nDB.config.NodeID)
+	networkNodes := nDB.networkNodes[nid]
+	nDB.Unlock()
+
+	if err := nDB.sendNetworkEvent(nid, NetworkEventTypeJoin, ltime); err != nil {
+		return fmt.Errorf("failed to send leave network event for %s: %v", nid, err)
+	}
+
+	logrus.Debugf("%v(%v): joined network %s", nDB.config.Hostname, nDB.config.NodeID, nid)
+	if _, err := nDB.bulkSync(networkNodes, true); err != nil {
+		logrus.Errorf("Error bulk syncing while joining network %s: %v", nid, err)
+	}
+
+	return nil
+}
+
+// LeaveNetwork leaves this node from a given network and propagates
+// this event across the cluster. This triggers this node leaving the
+// sub-cluster of this network and as a result will no longer
+// participate in the network-scoped gossip and bulk sync for this
+// network. Also remove all the table entries for this network from
+// networkdb
+func (nDB *NetworkDB) LeaveNetwork(nid string) error {
+	ltime := nDB.networkClock.Increment()
+	if err := nDB.sendNetworkEvent(nid, NetworkEventTypeLeave, ltime); err != nil {
+		return fmt.Errorf("failed to send leave network event for %s: %v", nid, err)
+	}
+
+	nDB.Lock()
+	defer nDB.Unlock()
+
+	// Remove myself from the list of the nodes participating to the network
+	nDB.deleteNetworkNode(nid, nDB.config.NodeID)
+
+	// Update all the local entries marking them for deletion and delete all the remote entries
+	nDB.deleteNodeNetworkEntries(nid, nDB.config.NodeID)
+
+	nodeNetworks, ok := nDB.networks[nDB.config.NodeID]
+	if !ok {
+		return fmt.Errorf("could not find self node for network %s while trying to leave", nid)
+	}
+
+	n, ok := nodeNetworks[nid]
+	if !ok {
+		return fmt.Errorf("could not find network %s while trying to leave", nid)
+	}
+
+	logrus.Debugf("%v(%v): leaving network %s", nDB.config.Hostname, nDB.config.NodeID, nid)
+	n.ltime = ltime
+	n.reapTime = nDB.config.reapNetworkInterval
+	n.leaving = true
+	return nil
+}
+
+// addNetworkNode adds the node to the list of nodes which participate
+// in the passed network only if it is not already present. Caller
+// should hold the NetworkDB lock while calling this
+func (nDB *NetworkDB) addNetworkNode(nid string, nodeName string) {
+	nodes := nDB.networkNodes[nid]
+	for _, node := range nodes {
+		if node == nodeName {
+			return
+		}
+	}
+
+	nDB.networkNodes[nid] = append(nDB.networkNodes[nid], nodeName)
+}
+
+// Deletes the node from the list of nodes which participate in the
+// passed network. Caller should hold the NetworkDB lock while calling
+// this
+func (nDB *NetworkDB) deleteNetworkNode(nid string, nodeName string) {
+	nodes, ok := nDB.networkNodes[nid]
+	if !ok || len(nodes) == 0 {
+		return
+	}
+	newNodes := make([]string, 0, len(nodes)-1)
+	for _, name := range nodes {
+		if name == nodeName {
+			continue
+		}
+		newNodes = append(newNodes, name)
+	}
+	nDB.networkNodes[nid] = newNodes
+}
+
+// findCommonnetworks find the networks that both this node and the
+// passed node have joined.
+func (nDB *NetworkDB) findCommonNetworks(nodeName string) []string {
+	nDB.RLock()
+	defer nDB.RUnlock()
+
+	var networks []string
+	for nid := range nDB.networks[nDB.config.NodeID] {
+		if n, ok := nDB.networks[nodeName][nid]; ok {
+			if !n.leaving {
+				networks = append(networks, nid)
+			}
+		}
+	}
+
+	return networks
+}
+
+func (nDB *NetworkDB) updateLocalNetworkTime() {
+	nDB.Lock()
+	defer nDB.Unlock()
+
+	ltime := nDB.networkClock.Increment()
+	for _, n := range nDB.networks[nDB.config.NodeID] {
+		n.ltime = ltime
+	}
+}
+
+// createOrUpdateEntry this function handles the creation or update of entries into the local
+// tree store. It is also used to keep in sync the entries number of the network (all tables are aggregated)
+func (nDB *NetworkDB) createOrUpdateEntry(nid, tname, key string, entry interface{}) (bool, bool) {
+	_, okTable := nDB.indexes[byTable].Insert(fmt.Sprintf("/%s/%s/%s", tname, nid, key), entry)
+	_, okNetwork := nDB.indexes[byNetwork].Insert(fmt.Sprintf("/%s/%s/%s", nid, tname, key), entry)
+	if !okNetwork {
+		// Add only if it is an insert not an update
+		n, ok := nDB.networks[nDB.config.NodeID][nid]
+		if ok {
+			n.entriesNumber++
+		}
+	}
+	return okTable, okNetwork
+}
+
+// deleteEntry this function handles the deletion of entries into the local tree store.
+// It is also used to keep in sync the entries number of the network (all tables are aggregated)
+func (nDB *NetworkDB) deleteEntry(nid, tname, key string) (bool, bool) {
+	_, okTable := nDB.indexes[byTable].Delete(fmt.Sprintf("/%s/%s/%s", tname, nid, key))
+	_, okNetwork := nDB.indexes[byNetwork].Delete(fmt.Sprintf("/%s/%s/%s", nid, tname, key))
+	if okNetwork {
+		// Remove only if the delete is successful
+		n, ok := nDB.networks[nDB.config.NodeID][nid]
+		if ok {
+			n.entriesNumber--
+		}
+	}
+	return okTable, okNetwork
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/networkdb.pb.go b/vendor/github.com/docker/libnetwork/networkdb/networkdb.pb.go
new file mode 100644
index 0000000000..7087a57ca0
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/networkdb.pb.go
@@ -0,0 +1,2733 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: networkdb.proto
+
+/*
+	Package networkdb is a generated protocol buffer package.
+
+	It is generated from these files:
+		networkdb.proto
+
+	It has these top-level messages:
+		GossipMessage
+		NodeEvent
+		NetworkEvent
+		NetworkEntry
+		NetworkPushPull
+		TableEvent
+		BulkSyncMessage
+		CompoundMessage
+*/
+package networkdb
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+
+import github_com_hashicorp_serf_serf "github.com/hashicorp/serf/serf"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// MessageType enum defines all the core message types that networkdb
+// uses to communicate to peers.
+type MessageType int32
+
+const (
+	MessageTypeInvalid MessageType = 0
+	// NetworEvent message type is used to communicate network
+	// attachments on the node.
+	MessageTypeNetworkEvent MessageType = 1
+	// TableEvent message type is used to communicate any table
+	// CRUD event that happened on the node.
+	MessageTypeTableEvent MessageType = 2
+	// PushPull message type is used to syncup all network
+	// attachments on a peer node either during startup of this
+	// node or with a random peer node periodically thereafter.
+	MessageTypePushPull MessageType = 3
+	// BulkSync message is used to bulksync the whole networkdb
+	// state with a peer node during startup of this node or with
+	// a random peer node periodically thereafter.
+	MessageTypeBulkSync MessageType = 4
+	// Compound message type is used to form a compound message
+	// which is a pack of many message of above types, packed into
+	// a single compound message.
+	MessageTypeCompound MessageType = 5
+	// NodeEvent message type is used to communicare node
+	// join/leave events in the cluster
+	MessageTypeNodeEvent MessageType = 6
+)
+
+var MessageType_name = map[int32]string{
+	0: "INVALID",
+	1: "NETWORK_EVENT",
+	2: "TABLE_EVENT",
+	3: "PUSH_PULL",
+	4: "BULK_SYNC",
+	5: "COMPOUND",
+	6: "NODE_EVENT",
+}
+var MessageType_value = map[string]int32{
+	"INVALID":       0,
+	"NETWORK_EVENT": 1,
+	"TABLE_EVENT":   2,
+	"PUSH_PULL":     3,
+	"BULK_SYNC":     4,
+	"COMPOUND":      5,
+	"NODE_EVENT":    6,
+}
+
+func (x MessageType) String() string {
+	return proto.EnumName(MessageType_name, int32(x))
+}
+func (MessageType) EnumDescriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{0} }
+
+type NodeEvent_Type int32
+
+const (
+	NodeEventTypeInvalid NodeEvent_Type = 0
+	// Join event is generated when this node joins the cluster.
+	NodeEventTypeJoin NodeEvent_Type = 1
+	// Leave event is generated when this node leaves the cluster.
+	NodeEventTypeLeave NodeEvent_Type = 2
+)
+
+var NodeEvent_Type_name = map[int32]string{
+	0: "INVALID",
+	1: "JOIN",
+	2: "LEAVE",
+}
+var NodeEvent_Type_value = map[string]int32{
+	"INVALID": 0,
+	"JOIN":    1,
+	"LEAVE":   2,
+}
+
+func (x NodeEvent_Type) String() string {
+	return proto.EnumName(NodeEvent_Type_name, int32(x))
+}
+func (NodeEvent_Type) EnumDescriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{1, 0} }
+
+type NetworkEvent_Type int32
+
+const (
+	NetworkEventTypeInvalid NetworkEvent_Type = 0
+	// Join event is generated when this node joins a network.
+	NetworkEventTypeJoin NetworkEvent_Type = 1
+	// Leave event is generated when this node leaves a network.
+	NetworkEventTypeLeave NetworkEvent_Type = 2
+)
+
+var NetworkEvent_Type_name = map[int32]string{
+	0: "INVALID",
+	1: "JOIN",
+	2: "LEAVE",
+}
+var NetworkEvent_Type_value = map[string]int32{
+	"INVALID": 0,
+	"JOIN":    1,
+	"LEAVE":   2,
+}
+
+func (x NetworkEvent_Type) String() string {
+	return proto.EnumName(NetworkEvent_Type_name, int32(x))
+}
+func (NetworkEvent_Type) EnumDescriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{2, 0} }
+
+type TableEvent_Type int32
+
+const (
+	TableEventTypeInvalid TableEvent_Type = 0
+	// Create signifies that this table entry was just
+	// created.
+	TableEventTypeCreate TableEvent_Type = 1
+	// Update signifies that this table entry was just
+	// updated.
+	TableEventTypeUpdate TableEvent_Type = 2
+	// Delete signifies that this table entry was just
+	// updated.
+	TableEventTypeDelete TableEvent_Type = 3
+)
+
+var TableEvent_Type_name = map[int32]string{
+	0: "INVALID",
+	1: "CREATE",
+	2: "UPDATE",
+	3: "DELETE",
+}
+var TableEvent_Type_value = map[string]int32{
+	"INVALID": 0,
+	"CREATE":  1,
+	"UPDATE":  2,
+	"DELETE":  3,
+}
+
+func (x TableEvent_Type) String() string {
+	return proto.EnumName(TableEvent_Type_name, int32(x))
+}
+func (TableEvent_Type) EnumDescriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{5, 0} }
+
+// GossipMessage is a basic message header used by all messages types.
+type GossipMessage struct {
+	Type MessageType `protobuf:"varint,1,opt,name=type,proto3,enum=networkdb.MessageType" json:"type,omitempty"`
+	Data []byte      `protobuf:"bytes,2,opt,name=data,proto3" json:"data,omitempty"`
+}
+
+func (m *GossipMessage) Reset()                    { *m = GossipMessage{} }
+func (*GossipMessage) ProtoMessage()               {}
+func (*GossipMessage) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{0} }
+
+func (m *GossipMessage) GetType() MessageType {
+	if m != nil {
+		return m.Type
+	}
+	return MessageTypeInvalid
+}
+
+func (m *GossipMessage) GetData() []byte {
+	if m != nil {
+		return m.Data
+	}
+	return nil
+}
+
+// NodeEvent message payload definition.
+type NodeEvent struct {
+	Type NodeEvent_Type `protobuf:"varint,1,opt,name=type,proto3,enum=networkdb.NodeEvent_Type" json:"type,omitempty"`
+	// Lamport time using a network lamport clock indicating the
+	// time this event was generated on the node where it was
+	// generated.
+	LTime github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,2,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	// Source node name.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+}
+
+func (m *NodeEvent) Reset()                    { *m = NodeEvent{} }
+func (*NodeEvent) ProtoMessage()               {}
+func (*NodeEvent) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{1} }
+
+func (m *NodeEvent) GetType() NodeEvent_Type {
+	if m != nil {
+		return m.Type
+	}
+	return NodeEventTypeInvalid
+}
+
+func (m *NodeEvent) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+// NetworkEvent message payload definition.
+type NetworkEvent struct {
+	Type NetworkEvent_Type `protobuf:"varint,1,opt,name=type,proto3,enum=networkdb.NetworkEvent_Type" json:"type,omitempty"`
+	// Lamport time using a network lamport clock indicating the
+	// time this event was generated on the node where it was
+	// generated.
+	LTime github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,2,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	// Source node name.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+	// ID of the network for which the event is generated.
+	NetworkID string `protobuf:"bytes,4,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+}
+
+func (m *NetworkEvent) Reset()                    { *m = NetworkEvent{} }
+func (*NetworkEvent) ProtoMessage()               {}
+func (*NetworkEvent) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{2} }
+
+func (m *NetworkEvent) GetType() NetworkEvent_Type {
+	if m != nil {
+		return m.Type
+	}
+	return NetworkEventTypeInvalid
+}
+
+func (m *NetworkEvent) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+func (m *NetworkEvent) GetNetworkID() string {
+	if m != nil {
+		return m.NetworkID
+	}
+	return ""
+}
+
+// NetworkEntry for push pull of networks.
+type NetworkEntry struct {
+	// ID of the network
+	NetworkID string `protobuf:"bytes,1,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+	// Latest lamport time of the network attachment when this
+	// network event was recorded.
+	LTime github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,2,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	// Source node name where this network attachment happened.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+	// Indicates if a leave from this network is in progress.
+	Leaving bool `protobuf:"varint,4,opt,name=leaving,proto3" json:"leaving,omitempty"`
+}
+
+func (m *NetworkEntry) Reset()                    { *m = NetworkEntry{} }
+func (*NetworkEntry) ProtoMessage()               {}
+func (*NetworkEntry) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{3} }
+
+func (m *NetworkEntry) GetNetworkID() string {
+	if m != nil {
+		return m.NetworkID
+	}
+	return ""
+}
+
+func (m *NetworkEntry) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+func (m *NetworkEntry) GetLeaving() bool {
+	if m != nil {
+		return m.Leaving
+	}
+	return false
+}
+
+// NetworkPushpull message payload definition.
+type NetworkPushPull struct {
+	// Lamport time when this push pull was initiated.
+	LTime    github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,1,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	Networks []*NetworkEntry                            `protobuf:"bytes,2,rep,name=networks" json:"networks,omitempty"`
+	// Name of the node sending this push pull payload.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+}
+
+func (m *NetworkPushPull) Reset()                    { *m = NetworkPushPull{} }
+func (*NetworkPushPull) ProtoMessage()               {}
+func (*NetworkPushPull) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{4} }
+
+func (m *NetworkPushPull) GetNetworks() []*NetworkEntry {
+	if m != nil {
+		return m.Networks
+	}
+	return nil
+}
+
+func (m *NetworkPushPull) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+// TableEvent message payload definition.
+type TableEvent struct {
+	Type TableEvent_Type `protobuf:"varint,1,opt,name=type,proto3,enum=networkdb.TableEvent_Type" json:"type,omitempty"`
+	// Lamport time when this event was generated.
+	LTime github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,2,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	// Node name where this event originated.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+	// ID of the network to which this table entry belongs.
+	NetworkID string `protobuf:"bytes,4,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+	// Name of the table to which this table entry belongs.
+	TableName string `protobuf:"bytes,5,opt,name=table_name,json=tableName,proto3" json:"table_name,omitempty"`
+	// Entry key.
+	Key string `protobuf:"bytes,6,opt,name=key,proto3" json:"key,omitempty"`
+	// Entry value.
+	Value []byte `protobuf:"bytes,7,opt,name=value,proto3" json:"value,omitempty"`
+	// Residual reap time for the entry before getting deleted in seconds
+	ResidualReapTime int32 `protobuf:"varint,8,opt,name=residual_reap_time,json=residualReapTime,proto3" json:"residual_reap_time,omitempty"`
+}
+
+func (m *TableEvent) Reset()                    { *m = TableEvent{} }
+func (*TableEvent) ProtoMessage()               {}
+func (*TableEvent) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{5} }
+
+func (m *TableEvent) GetType() TableEvent_Type {
+	if m != nil {
+		return m.Type
+	}
+	return TableEventTypeInvalid
+}
+
+func (m *TableEvent) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+func (m *TableEvent) GetNetworkID() string {
+	if m != nil {
+		return m.NetworkID
+	}
+	return ""
+}
+
+func (m *TableEvent) GetTableName() string {
+	if m != nil {
+		return m.TableName
+	}
+	return ""
+}
+
+func (m *TableEvent) GetKey() string {
+	if m != nil {
+		return m.Key
+	}
+	return ""
+}
+
+func (m *TableEvent) GetValue() []byte {
+	if m != nil {
+		return m.Value
+	}
+	return nil
+}
+
+func (m *TableEvent) GetResidualReapTime() int32 {
+	if m != nil {
+		return m.ResidualReapTime
+	}
+	return 0
+}
+
+// BulkSync message payload definition.
+type BulkSyncMessage struct {
+	// Lamport time when this bulk sync was initiated.
+	LTime github_com_hashicorp_serf_serf.LamportTime `protobuf:"varint,1,opt,name=l_time,json=lTime,proto3,customtype=github.com/hashicorp/serf/serf.LamportTime" json:"l_time"`
+	// Indicates if this bulksync is a response to a bulk sync
+	// request from a peer node.
+	Unsolicited bool `protobuf:"varint,2,opt,name=unsolicited,proto3" json:"unsolicited,omitempty"`
+	// Name of the node which is producing this bulk sync message.
+	NodeName string `protobuf:"bytes,3,opt,name=node_name,json=nodeName,proto3" json:"node_name,omitempty"`
+	// List of network names whose table entries are getting
+	// bulksynced as part of the bulksync.
+	Networks []string `protobuf:"bytes,4,rep,name=networks" json:"networks,omitempty"`
+	// Bulksync payload
+	Payload []byte `protobuf:"bytes,5,opt,name=payload,proto3" json:"payload,omitempty"`
+}
+
+func (m *BulkSyncMessage) Reset()                    { *m = BulkSyncMessage{} }
+func (*BulkSyncMessage) ProtoMessage()               {}
+func (*BulkSyncMessage) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{6} }
+
+func (m *BulkSyncMessage) GetUnsolicited() bool {
+	if m != nil {
+		return m.Unsolicited
+	}
+	return false
+}
+
+func (m *BulkSyncMessage) GetNodeName() string {
+	if m != nil {
+		return m.NodeName
+	}
+	return ""
+}
+
+func (m *BulkSyncMessage) GetNetworks() []string {
+	if m != nil {
+		return m.Networks
+	}
+	return nil
+}
+
+func (m *BulkSyncMessage) GetPayload() []byte {
+	if m != nil {
+		return m.Payload
+	}
+	return nil
+}
+
+// Compound message payload definition.
+type CompoundMessage struct {
+	// A list of simple messages.
+	Messages []*CompoundMessage_SimpleMessage `protobuf:"bytes,1,rep,name=messages" json:"messages,omitempty"`
+}
+
+func (m *CompoundMessage) Reset()                    { *m = CompoundMessage{} }
+func (*CompoundMessage) ProtoMessage()               {}
+func (*CompoundMessage) Descriptor() ([]byte, []int) { return fileDescriptorNetworkdb, []int{7} }
+
+func (m *CompoundMessage) GetMessages() []*CompoundMessage_SimpleMessage {
+	if m != nil {
+		return m.Messages
+	}
+	return nil
+}
+
+type CompoundMessage_SimpleMessage struct {
+	// Bytestring payload of a message constructed using
+	// other message type definitions.
+	Payload []byte `protobuf:"bytes,1,opt,name=Payload,proto3" json:"Payload,omitempty"`
+}
+
+func (m *CompoundMessage_SimpleMessage) Reset()      { *m = CompoundMessage_SimpleMessage{} }
+func (*CompoundMessage_SimpleMessage) ProtoMessage() {}
+func (*CompoundMessage_SimpleMessage) Descriptor() ([]byte, []int) {
+	return fileDescriptorNetworkdb, []int{7, 0}
+}
+
+func (m *CompoundMessage_SimpleMessage) GetPayload() []byte {
+	if m != nil {
+		return m.Payload
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*GossipMessage)(nil), "networkdb.GossipMessage")
+	proto.RegisterType((*NodeEvent)(nil), "networkdb.NodeEvent")
+	proto.RegisterType((*NetworkEvent)(nil), "networkdb.NetworkEvent")
+	proto.RegisterType((*NetworkEntry)(nil), "networkdb.NetworkEntry")
+	proto.RegisterType((*NetworkPushPull)(nil), "networkdb.NetworkPushPull")
+	proto.RegisterType((*TableEvent)(nil), "networkdb.TableEvent")
+	proto.RegisterType((*BulkSyncMessage)(nil), "networkdb.BulkSyncMessage")
+	proto.RegisterType((*CompoundMessage)(nil), "networkdb.CompoundMessage")
+	proto.RegisterType((*CompoundMessage_SimpleMessage)(nil), "networkdb.CompoundMessage.SimpleMessage")
+	proto.RegisterEnum("networkdb.MessageType", MessageType_name, MessageType_value)
+	proto.RegisterEnum("networkdb.NodeEvent_Type", NodeEvent_Type_name, NodeEvent_Type_value)
+	proto.RegisterEnum("networkdb.NetworkEvent_Type", NetworkEvent_Type_name, NetworkEvent_Type_value)
+	proto.RegisterEnum("networkdb.TableEvent_Type", TableEvent_Type_name, TableEvent_Type_value)
+}
+func (this *GossipMessage) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&networkdb.GossipMessage{")
+	s = append(s, "Type: "+fmt.Sprintf("%#v", this.Type)+",\n")
+	s = append(s, "Data: "+fmt.Sprintf("%#v", this.Data)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *NodeEvent) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&networkdb.NodeEvent{")
+	s = append(s, "Type: "+fmt.Sprintf("%#v", this.Type)+",\n")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *NetworkEvent) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 8)
+	s = append(s, "&networkdb.NetworkEvent{")
+	s = append(s, "Type: "+fmt.Sprintf("%#v", this.Type)+",\n")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "NetworkID: "+fmt.Sprintf("%#v", this.NetworkID)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *NetworkEntry) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 8)
+	s = append(s, "&networkdb.NetworkEntry{")
+	s = append(s, "NetworkID: "+fmt.Sprintf("%#v", this.NetworkID)+",\n")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "Leaving: "+fmt.Sprintf("%#v", this.Leaving)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *NetworkPushPull) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&networkdb.NetworkPushPull{")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	if this.Networks != nil {
+		s = append(s, "Networks: "+fmt.Sprintf("%#v", this.Networks)+",\n")
+	}
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *TableEvent) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 12)
+	s = append(s, "&networkdb.TableEvent{")
+	s = append(s, "Type: "+fmt.Sprintf("%#v", this.Type)+",\n")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "NetworkID: "+fmt.Sprintf("%#v", this.NetworkID)+",\n")
+	s = append(s, "TableName: "+fmt.Sprintf("%#v", this.TableName)+",\n")
+	s = append(s, "Key: "+fmt.Sprintf("%#v", this.Key)+",\n")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "ResidualReapTime: "+fmt.Sprintf("%#v", this.ResidualReapTime)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *BulkSyncMessage) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 9)
+	s = append(s, "&networkdb.BulkSyncMessage{")
+	s = append(s, "LTime: "+fmt.Sprintf("%#v", this.LTime)+",\n")
+	s = append(s, "Unsolicited: "+fmt.Sprintf("%#v", this.Unsolicited)+",\n")
+	s = append(s, "NodeName: "+fmt.Sprintf("%#v", this.NodeName)+",\n")
+	s = append(s, "Networks: "+fmt.Sprintf("%#v", this.Networks)+",\n")
+	s = append(s, "Payload: "+fmt.Sprintf("%#v", this.Payload)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *CompoundMessage) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&networkdb.CompoundMessage{")
+	if this.Messages != nil {
+		s = append(s, "Messages: "+fmt.Sprintf("%#v", this.Messages)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *CompoundMessage_SimpleMessage) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&networkdb.CompoundMessage_SimpleMessage{")
+	s = append(s, "Payload: "+fmt.Sprintf("%#v", this.Payload)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringNetworkdb(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *GossipMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GossipMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.Type))
+	}
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	return i, nil
+}
+
+func (m *NodeEvent) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeEvent) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	return i, nil
+}
+
+func (m *NetworkEvent) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkEvent) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	return i, nil
+}
+
+func (m *NetworkEntry) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkEntry) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	if m.LTime != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	if m.Leaving {
+		dAtA[i] = 0x20
+		i++
+		if m.Leaving {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *NetworkPushPull) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkPushPull) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.LTime != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintNetworkdb(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	return i, nil
+}
+
+func (m *TableEvent) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TableEvent) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	if len(m.TableName) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.TableName)))
+		i += copy(dAtA[i:], m.TableName)
+	}
+	if len(m.Key) > 0 {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.Key)))
+		i += copy(dAtA[i:], m.Key)
+	}
+	if len(m.Value) > 0 {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	if m.ResidualReapTime != 0 {
+		dAtA[i] = 0x40
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.ResidualReapTime))
+	}
+	return i, nil
+}
+
+func (m *BulkSyncMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *BulkSyncMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.LTime != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(m.LTime))
+	}
+	if m.Unsolicited {
+		dAtA[i] = 0x10
+		i++
+		if m.Unsolicited {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.NodeName) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.NodeName)))
+		i += copy(dAtA[i:], m.NodeName)
+	}
+	if len(m.Networks) > 0 {
+		for _, s := range m.Networks {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Payload) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.Payload)))
+		i += copy(dAtA[i:], m.Payload)
+	}
+	return i, nil
+}
+
+func (m *CompoundMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CompoundMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Messages) > 0 {
+		for _, msg := range m.Messages {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintNetworkdb(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *CompoundMessage_SimpleMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CompoundMessage_SimpleMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Payload) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintNetworkdb(dAtA, i, uint64(len(m.Payload)))
+		i += copy(dAtA[i:], m.Payload)
+	}
+	return i, nil
+}
+
+func encodeFixed64Networkdb(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Networkdb(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintNetworkdb(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *GossipMessage) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovNetworkdb(uint64(m.Type))
+	}
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func (m *NodeEvent) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovNetworkdb(uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func (m *NetworkEvent) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovNetworkdb(uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func (m *NetworkEntry) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	if m.Leaving {
+		n += 2
+	}
+	return n
+}
+
+func (m *NetworkPushPull) Size() (n int) {
+	var l int
+	_ = l
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovNetworkdb(uint64(l))
+		}
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func (m *TableEvent) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovNetworkdb(uint64(m.Type))
+	}
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	l = len(m.TableName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	l = len(m.Key)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	if m.ResidualReapTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.ResidualReapTime))
+	}
+	return n
+}
+
+func (m *BulkSyncMessage) Size() (n int) {
+	var l int
+	_ = l
+	if m.LTime != 0 {
+		n += 1 + sovNetworkdb(uint64(m.LTime))
+	}
+	if m.Unsolicited {
+		n += 2
+	}
+	l = len(m.NodeName)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	if len(m.Networks) > 0 {
+		for _, s := range m.Networks {
+			l = len(s)
+			n += 1 + l + sovNetworkdb(uint64(l))
+		}
+	}
+	l = len(m.Payload)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func (m *CompoundMessage) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Messages) > 0 {
+		for _, e := range m.Messages {
+			l = e.Size()
+			n += 1 + l + sovNetworkdb(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *CompoundMessage_SimpleMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Payload)
+	if l > 0 {
+		n += 1 + l + sovNetworkdb(uint64(l))
+	}
+	return n
+}
+
+func sovNetworkdb(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozNetworkdb(x uint64) (n int) {
+	return sovNetworkdb(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *GossipMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GossipMessage{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NodeEvent) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeEvent{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkEvent) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkEvent{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkEntry) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkEntry{`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`Leaving:` + fmt.Sprintf("%v", this.Leaving) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkPushPull) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkPushPull{`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "NetworkEntry", "NetworkEntry", 1) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TableEvent) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TableEvent{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`TableName:` + fmt.Sprintf("%v", this.TableName) + `,`,
+		`Key:` + fmt.Sprintf("%v", this.Key) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`ResidualReapTime:` + fmt.Sprintf("%v", this.ResidualReapTime) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *BulkSyncMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&BulkSyncMessage{`,
+		`LTime:` + fmt.Sprintf("%v", this.LTime) + `,`,
+		`Unsolicited:` + fmt.Sprintf("%v", this.Unsolicited) + `,`,
+		`NodeName:` + fmt.Sprintf("%v", this.NodeName) + `,`,
+		`Networks:` + fmt.Sprintf("%v", this.Networks) + `,`,
+		`Payload:` + fmt.Sprintf("%v", this.Payload) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CompoundMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CompoundMessage{`,
+		`Messages:` + strings.Replace(fmt.Sprintf("%v", this.Messages), "CompoundMessage_SimpleMessage", "CompoundMessage_SimpleMessage", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CompoundMessage_SimpleMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CompoundMessage_SimpleMessage{`,
+		`Payload:` + fmt.Sprintf("%v", this.Payload) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringNetworkdb(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *GossipMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GossipMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GossipMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (MessageType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NodeEvent) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeEvent: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeEvent: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (NodeEvent_Type(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkEvent) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkEvent: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkEvent: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (NetworkEvent_Type(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkEntry) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkEntry: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkEntry: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Leaving", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Leaving = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkPushPull) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkPushPull: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkPushPull: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &NetworkEntry{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TableEvent) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TableEvent: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TableEvent: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (TableEvent_Type(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TableName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TableName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Key", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Key = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = append(m.Value[:0], dAtA[iNdEx:postIndex]...)
+			if m.Value == nil {
+				m.Value = []byte{}
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResidualReapTime", wireType)
+			}
+			m.ResidualReapTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ResidualReapTime |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *BulkSyncMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BulkSyncMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BulkSyncMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LTime", wireType)
+			}
+			m.LTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LTime |= (github_com_hashicorp_serf_serf.LamportTime(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Unsolicited", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Unsolicited = bool(v != 0)
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Payload", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Payload = append(m.Payload[:0], dAtA[iNdEx:postIndex]...)
+			if m.Payload == nil {
+				m.Payload = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CompoundMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CompoundMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CompoundMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Messages", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Messages = append(m.Messages, &CompoundMessage_SimpleMessage{})
+			if err := m.Messages[len(m.Messages)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CompoundMessage_SimpleMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SimpleMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SimpleMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Payload", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Payload = append(m.Payload[:0], dAtA[iNdEx:postIndex]...)
+			if m.Payload == nil {
+				m.Payload = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipNetworkdb(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthNetworkdb
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipNetworkdb(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowNetworkdb
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowNetworkdb
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthNetworkdb
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowNetworkdb
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipNetworkdb(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthNetworkdb = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowNetworkdb   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("networkdb.proto", fileDescriptorNetworkdb) }
+
+var fileDescriptorNetworkdb = []byte{
+	// 953 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x96, 0xcd, 0x6e, 0xe3, 0x54,
+	0x14, 0xc7, 0x7b, 0xf3, 0xd5, 0xe4, 0x34, 0xa5, 0xe6, 0x4e, 0x67, 0xc6, 0xe3, 0x81, 0xc4, 0x98,
+	0x99, 0x2a, 0x53, 0x41, 0x8a, 0x3a, 0x4f, 0xd0, 0x24, 0x16, 0x64, 0x26, 0xe3, 0x44, 0x6e, 0x52,
+	0xc4, 0x2a, 0xba, 0xad, 0x2f, 0xa9, 0x55, 0xc7, 0xb6, 0x6c, 0x27, 0x28, 0x2b, 0x10, 0xab, 0x51,
+	0x16, 0xbc, 0x41, 0x56, 0xc3, 0x9a, 0x07, 0x40, 0x2c, 0x59, 0xcc, 0x82, 0x05, 0xec, 0x10, 0x8b,
+	0x88, 0xe6, 0x09, 0x78, 0x04, 0xe4, 0x6b, 0x3b, 0xb9, 0x49, 0xab, 0x91, 0x10, 0x23, 0xc1, 0x26,
+	0xb9, 0x1f, 0xbf, 0x1c, 0x9f, 0xf3, 0xf7, 0xff, 0xdc, 0x1b, 0xd8, 0xb3, 0x69, 0xf0, 0x95, 0xe3,
+	0x5d, 0x19, 0xe7, 0x55, 0xd7, 0x73, 0x02, 0x07, 0x17, 0x96, 0x0b, 0xd2, 0xfe, 0xc0, 0x19, 0x38,
+	0x6c, 0xf5, 0x28, 0x1c, 0x45, 0x80, 0xd2, 0x86, 0xdd, 0x4f, 0x1d, 0xdf, 0x37, 0xdd, 0x17, 0xd4,
+	0xf7, 0xc9, 0x80, 0xe2, 0x43, 0xc8, 0x04, 0x13, 0x97, 0x8a, 0x48, 0x46, 0x95, 0x77, 0x8e, 0xef,
+	0x55, 0x57, 0x11, 0x63, 0xa2, 0x3b, 0x71, 0xa9, 0xce, 0x18, 0x8c, 0x21, 0x63, 0x90, 0x80, 0x88,
+	0x29, 0x19, 0x55, 0x8a, 0x3a, 0x1b, 0x2b, 0xaf, 0x52, 0x50, 0xd0, 0x1c, 0x83, 0xaa, 0x63, 0x6a,
+	0x07, 0xf8, 0xe3, 0xb5, 0x68, 0x0f, 0xb8, 0x68, 0x4b, 0xa6, 0xca, 0x05, 0x6c, 0x42, 0xce, 0xea,
+	0x07, 0xe6, 0x90, 0xb2, 0x90, 0x99, 0xda, 0xf1, 0xeb, 0x79, 0x79, 0xeb, 0x8f, 0x79, 0xf9, 0x70,
+	0x60, 0x06, 0x97, 0xa3, 0xf3, 0xea, 0x85, 0x33, 0x3c, 0xba, 0x24, 0xfe, 0xa5, 0x79, 0xe1, 0x78,
+	0xee, 0x91, 0x4f, 0xbd, 0x2f, 0xd9, 0x47, 0xb5, 0x45, 0x86, 0xae, 0xe3, 0x05, 0x5d, 0x73, 0x48,
+	0xf5, 0xac, 0x15, 0x7e, 0xe1, 0x87, 0x50, 0xb0, 0x1d, 0x83, 0xf6, 0x6d, 0x32, 0xa4, 0x62, 0x5a,
+	0x46, 0x95, 0x82, 0x9e, 0x0f, 0x17, 0x34, 0x32, 0xa4, 0xca, 0xd7, 0x90, 0x09, 0x9f, 0x8a, 0x1f,
+	0xc3, 0x76, 0x53, 0x3b, 0x3b, 0x69, 0x35, 0x1b, 0xc2, 0x96, 0x24, 0x4e, 0x67, 0xf2, 0xfe, 0x32,
+	0xad, 0x70, 0xbf, 0x69, 0x8f, 0x89, 0x65, 0x1a, 0xb8, 0x0c, 0x99, 0x67, 0xed, 0xa6, 0x26, 0x20,
+	0xe9, 0xee, 0x74, 0x26, 0xbf, 0xbb, 0xc6, 0x3c, 0x73, 0x4c, 0x1b, 0x7f, 0x00, 0xd9, 0x96, 0x7a,
+	0x72, 0xa6, 0x0a, 0x29, 0xe9, 0xde, 0x74, 0x26, 0xe3, 0x35, 0xa2, 0x45, 0xc9, 0x98, 0x4a, 0xc5,
+	0x97, 0xaf, 0x4a, 0x5b, 0x3f, 0x7e, 0x5f, 0x62, 0x0f, 0x56, 0xae, 0x53, 0x50, 0xd4, 0x22, 0x2d,
+	0x22, 0xa1, 0x3e, 0x59, 0x13, 0xea, 0x3d, 0x5e, 0x28, 0x0e, 0xfb, 0x0f, 0xb4, 0xc2, 0x1f, 0x01,
+	0xc4, 0xc9, 0xf4, 0x4d, 0x43, 0xcc, 0x84, 0xbb, 0xb5, 0xdd, 0xc5, 0xbc, 0x5c, 0x88, 0x13, 0x6b,
+	0x36, 0xf4, 0xc4, 0x65, 0x4d, 0x43, 0x79, 0x89, 0x62, 0x69, 0x2b, 0xbc, 0xb4, 0x0f, 0xa7, 0x33,
+	0xf9, 0x3e, 0x5f, 0x08, 0xaf, 0xae, 0xb2, 0x54, 0x37, 0x7a, 0x03, 0x1b, 0x18, 0x13, 0xf8, 0xd1,
+	0x4a, 0xe0, 0x07, 0xd3, 0x99, 0x7c, 0x77, 0x13, 0xba, 0x4d, 0xe3, 0x5f, 0xd0, 0x4a, 0x63, 0x3b,
+	0xf0, 0x26, 0x1b, 0x95, 0xa0, 0x37, 0x57, 0xf2, 0x36, 0xf5, 0x7d, 0x72, 0x43, 0xdf, 0x5a, 0x71,
+	0x31, 0x2f, 0xe7, 0xb5, 0x58, 0x63, 0x4e, 0x6d, 0x11, 0xb6, 0x2d, 0x4a, 0xc6, 0xa6, 0x3d, 0x60,
+	0x52, 0xe7, 0xf5, 0x64, 0xaa, 0xfc, 0x84, 0x60, 0x2f, 0x4e, 0xb4, 0x33, 0xf2, 0x2f, 0x3b, 0x23,
+	0xcb, 0xe2, 0x72, 0x44, 0xff, 0x36, 0xc7, 0xa7, 0x90, 0x8f, 0x6b, 0xf7, 0xc5, 0x94, 0x9c, 0xae,
+	0xec, 0x1c, 0xdf, 0xbf, 0xc5, 0x84, 0xa1, 0x8e, 0xfa, 0x12, 0xfc, 0x07, 0x85, 0x29, 0xdf, 0x65,
+	0x00, 0xba, 0xe4, 0xdc, 0x8a, 0x0f, 0x86, 0xea, 0x9a, 0xdf, 0x25, 0xee, 0x51, 0x2b, 0xe8, 0x7f,
+	0xef, 0x76, 0xfc, 0x3e, 0x40, 0x10, 0xa6, 0x1b, 0xc5, 0xca, 0xb2, 0x58, 0x05, 0xb6, 0xc2, 0x82,
+	0x09, 0x90, 0xbe, 0xa2, 0x13, 0x31, 0xc7, 0xd6, 0xc3, 0x21, 0xde, 0x87, 0xec, 0x98, 0x58, 0x23,
+	0x2a, 0x6e, 0xb3, 0x23, 0x33, 0x9a, 0xe0, 0x1a, 0x60, 0x8f, 0xfa, 0xa6, 0x31, 0x22, 0x56, 0xdf,
+	0xa3, 0xc4, 0x8d, 0x0a, 0xcd, 0xcb, 0xa8, 0x92, 0xad, 0xed, 0x2f, 0xe6, 0x65, 0x41, 0x8f, 0x77,
+	0x75, 0x4a, 0x5c, 0x56, 0x8a, 0xe0, 0x6d, 0xac, 0x28, 0x3f, 0x24, 0x8d, 0x77, 0xc0, 0x37, 0x1e,
+	0x6b, 0x96, 0x95, 0xa2, 0x7c, 0xdb, 0x3d, 0x82, 0x5c, 0x5d, 0x57, 0x4f, 0xba, 0x6a, 0xd2, 0x78,
+	0xeb, 0x58, 0xdd, 0xa3, 0x24, 0xa0, 0x21, 0xd5, 0xeb, 0x34, 0x42, 0x2a, 0x75, 0x1b, 0xd5, 0x73,
+	0x8d, 0x98, 0x6a, 0xa8, 0x2d, 0xb5, 0xab, 0x0a, 0xe9, 0xdb, 0xa8, 0x06, 0xb5, 0x68, 0xb0, 0xd9,
+	0x9e, 0xbf, 0x21, 0xd8, 0xab, 0x8d, 0xac, 0xab, 0xd3, 0x89, 0x7d, 0x91, 0x5c, 0x3e, 0x6f, 0xd1,
+	0xcf, 0x32, 0xec, 0x8c, 0x6c, 0xdf, 0xb1, 0xcc, 0x0b, 0x33, 0xa0, 0x06, 0x73, 0x4d, 0x5e, 0xe7,
+	0x97, 0xde, 0xec, 0x03, 0x89, 0x6b, 0x87, 0x8c, 0x9c, 0x66, 0x7b, 0x89, 0xeb, 0x45, 0xd8, 0x76,
+	0xc9, 0xc4, 0x72, 0x88, 0xc1, 0x5e, 0x79, 0x51, 0x4f, 0xa6, 0xca, 0xb7, 0x08, 0xf6, 0xea, 0xce,
+	0xd0, 0x75, 0x46, 0xb6, 0x91, 0xd4, 0xd4, 0x80, 0xfc, 0x30, 0x1a, 0xfa, 0x22, 0x62, 0x8d, 0x55,
+	0xe1, 0xdc, 0xbe, 0x41, 0x57, 0x4f, 0xcd, 0xa1, 0x6b, 0xd1, 0x78, 0xa6, 0x2f, 0x7f, 0x29, 0x3d,
+	0x81, 0xdd, 0xb5, 0xad, 0x30, 0x89, 0x4e, 0x9c, 0x04, 0x8a, 0x92, 0x88, 0xa7, 0x87, 0x3f, 0xa7,
+	0x60, 0x87, 0xbb, 0xab, 0xf1, 0x87, 0xbc, 0x21, 0xd8, 0xf5, 0xc4, 0xed, 0x26, 0x6e, 0xa8, 0xc2,
+	0xae, 0xa6, 0x76, 0x3f, 0x6f, 0xeb, 0xcf, 0xfb, 0xea, 0x99, 0xaa, 0x75, 0x05, 0x14, 0x1d, 0xda,
+	0x1c, 0xba, 0x76, 0x5f, 0x1d, 0xc2, 0x4e, 0xf7, 0xa4, 0xd6, 0x52, 0x63, 0x3a, 0x3e, 0x96, 0x39,
+	0x9a, 0xeb, 0xf5, 0x03, 0x28, 0x74, 0x7a, 0xa7, 0x9f, 0xf5, 0x3b, 0xbd, 0x56, 0x4b, 0x48, 0x4b,
+	0xf7, 0xa7, 0x33, 0xf9, 0x0e, 0x47, 0x2e, 0x4f, 0xb3, 0x03, 0x28, 0xd4, 0x7a, 0xad, 0xe7, 0xfd,
+	0xd3, 0x2f, 0xb4, 0xba, 0x90, 0xb9, 0xc1, 0x25, 0x66, 0xc1, 0x8f, 0x21, 0x5f, 0x6f, 0xbf, 0xe8,
+	0xb4, 0x7b, 0x5a, 0x43, 0xc8, 0xde, 0xc0, 0x12, 0x45, 0x71, 0x05, 0x40, 0x6b, 0x37, 0x92, 0x0c,
+	0x73, 0x91, 0x31, 0xf9, 0x7a, 0x92, 0x4b, 0x5a, 0xba, 0x13, 0x1b, 0x93, 0x97, 0xad, 0x26, 0xfe,
+	0x7e, 0x5d, 0xda, 0xfa, 0xeb, 0xba, 0x84, 0xbe, 0x59, 0x94, 0xd0, 0xeb, 0x45, 0x09, 0xfd, 0xba,
+	0x28, 0xa1, 0x3f, 0x17, 0x25, 0x74, 0x9e, 0x63, 0x7f, 0x9d, 0x9e, 0xfe, 0x1d, 0x00, 0x00, 0xff,
+	0xff, 0x92, 0x82, 0xdb, 0x1a, 0x6e, 0x09, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/networkdbdiagnostic.go b/vendor/github.com/docker/libnetwork/networkdb/networkdbdiagnostic.go
new file mode 100644
index 0000000000..ffeb98d607
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/networkdbdiagnostic.go
@@ -0,0 +1,413 @@
+package networkdb
+
+import (
+	"encoding/base64"
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/docker/libnetwork/common"
+	"github.com/docker/libnetwork/diagnostic"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	missingParameter = "missing parameter"
+	dbNotAvailable   = "database not available"
+)
+
+// NetDbPaths2Func TODO
+var NetDbPaths2Func = map[string]diagnostic.HTTPHandlerFunc{
+	"/join":         dbJoin,
+	"/networkpeers": dbPeers,
+	"/clusterpeers": dbClusterPeers,
+	"/joinnetwork":  dbJoinNetwork,
+	"/leavenetwork": dbLeaveNetwork,
+	"/createentry":  dbCreateEntry,
+	"/updateentry":  dbUpdateEntry,
+	"/deleteentry":  dbDeleteEntry,
+	"/getentry":     dbGetEntry,
+	"/gettable":     dbGetTable,
+}
+
+func dbJoin(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("join cluster")
+
+	if len(r.Form["members"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?members=ip1,ip2,...", r.URL.Path))
+		log.Error("join cluster failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		err := nDB.Join(strings.Split(r.Form["members"][0], ","))
+		if err != nil {
+			rsp := diagnostic.FailCommand(fmt.Errorf("%s error in the DB join %s", r.URL.Path, err))
+			log.WithError(err).Error("join cluster failed")
+			diagnostic.HTTPReply(w, rsp, json)
+			return
+		}
+
+		log.Info("join cluster done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbPeers(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("network peers")
+
+	if len(r.Form["nid"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?nid=test", r.URL.Path))
+		log.Error("network peers failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		peers := nDB.Peers(r.Form["nid"][0])
+		rsp := &diagnostic.TableObj{Length: len(peers)}
+		for i, peerInfo := range peers {
+			if peerInfo.IP == "unknown" {
+				rsp.Elements = append(rsp.Elements, &diagnostic.PeerEntryObj{Index: i, Name: "orphan-" + peerInfo.Name, IP: peerInfo.IP})
+			} else {
+				rsp.Elements = append(rsp.Elements, &diagnostic.PeerEntryObj{Index: i, Name: peerInfo.Name, IP: peerInfo.IP})
+			}
+		}
+		log.WithField("response", fmt.Sprintf("%+v", rsp)).Info("network peers done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(rsp), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbClusterPeers(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("cluster peers")
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		peers := nDB.ClusterPeers()
+		rsp := &diagnostic.TableObj{Length: len(peers)}
+		for i, peerInfo := range peers {
+			rsp.Elements = append(rsp.Elements, &diagnostic.PeerEntryObj{Index: i, Name: peerInfo.Name, IP: peerInfo.IP})
+		}
+		log.WithField("response", fmt.Sprintf("%+v", rsp)).Info("cluster peers done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(rsp), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbCreateEntry(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	unsafe, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("create entry")
+
+	if len(r.Form["tname"]) < 1 ||
+		len(r.Form["nid"]) < 1 ||
+		len(r.Form["key"]) < 1 ||
+		len(r.Form["value"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?tname=table_name&nid=network_id&key=k&value=v", r.URL.Path))
+		log.Error("create entry failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	tname := r.Form["tname"][0]
+	nid := r.Form["nid"][0]
+	key := r.Form["key"][0]
+	value := r.Form["value"][0]
+	decodedValue := []byte(value)
+	if !unsafe {
+		var err error
+		decodedValue, err = base64.StdEncoding.DecodeString(value)
+		if err != nil {
+			log.WithError(err).Error("create entry failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+	}
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		if err := nDB.CreateEntry(tname, nid, key, decodedValue); err != nil {
+			rsp := diagnostic.FailCommand(err)
+			diagnostic.HTTPReply(w, rsp, json)
+			log.WithError(err).Error("create entry failed")
+			return
+		}
+		log.Info("create entry done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbUpdateEntry(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	unsafe, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("update entry")
+
+	if len(r.Form["tname"]) < 1 ||
+		len(r.Form["nid"]) < 1 ||
+		len(r.Form["key"]) < 1 ||
+		len(r.Form["value"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?tname=table_name&nid=network_id&key=k&value=v", r.URL.Path))
+		log.Error("update entry failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	tname := r.Form["tname"][0]
+	nid := r.Form["nid"][0]
+	key := r.Form["key"][0]
+	value := r.Form["value"][0]
+	decodedValue := []byte(value)
+	if !unsafe {
+		var err error
+		decodedValue, err = base64.StdEncoding.DecodeString(value)
+		if err != nil {
+			log.WithError(err).Error("update entry failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+	}
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		if err := nDB.UpdateEntry(tname, nid, key, decodedValue); err != nil {
+			log.WithError(err).Error("update entry failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+		log.Info("update entry done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbDeleteEntry(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("delete entry")
+
+	if len(r.Form["tname"]) < 1 ||
+		len(r.Form["nid"]) < 1 ||
+		len(r.Form["key"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?tname=table_name&nid=network_id&key=k", r.URL.Path))
+		log.Error("delete entry failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	tname := r.Form["tname"][0]
+	nid := r.Form["nid"][0]
+	key := r.Form["key"][0]
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		err := nDB.DeleteEntry(tname, nid, key)
+		if err != nil {
+			log.WithError(err).Error("delete entry failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+		log.Info("delete entry done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbGetEntry(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	unsafe, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("get entry")
+
+	if len(r.Form["tname"]) < 1 ||
+		len(r.Form["nid"]) < 1 ||
+		len(r.Form["key"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?tname=table_name&nid=network_id&key=k", r.URL.Path))
+		log.Error("get entry failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	tname := r.Form["tname"][0]
+	nid := r.Form["nid"][0]
+	key := r.Form["key"][0]
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		value, err := nDB.GetEntry(tname, nid, key)
+		if err != nil {
+			log.WithError(err).Error("get entry failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+
+		var encodedValue string
+		if unsafe {
+			encodedValue = string(value)
+		} else {
+			encodedValue = base64.StdEncoding.EncodeToString(value)
+		}
+
+		rsp := &diagnostic.TableEntryObj{Key: key, Value: encodedValue}
+		log.WithField("response", fmt.Sprintf("%+v", rsp)).Info("get entry done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(rsp), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbJoinNetwork(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("join network")
+
+	if len(r.Form["nid"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?nid=network_id", r.URL.Path))
+		log.Error("join network failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	nid := r.Form["nid"][0]
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		if err := nDB.JoinNetwork(nid); err != nil {
+			log.WithError(err).Error("join network failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+		log.Info("join network done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbLeaveNetwork(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	_, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("leave network")
+
+	if len(r.Form["nid"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?nid=network_id", r.URL.Path))
+		log.Error("leave network failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	nid := r.Form["nid"][0]
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		if err := nDB.LeaveNetwork(nid); err != nil {
+			log.WithError(err).Error("leave network failed")
+			diagnostic.HTTPReply(w, diagnostic.FailCommand(err), json)
+			return
+		}
+		log.Info("leave network done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(nil), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
+
+func dbGetTable(ctx interface{}, w http.ResponseWriter, r *http.Request) {
+	r.ParseForm()
+	diagnostic.DebugHTTPForm(r)
+	unsafe, json := diagnostic.ParseHTTPFormOptions(r)
+
+	// audit logs
+	log := logrus.WithFields(logrus.Fields{"component": "diagnostic", "remoteIP": r.RemoteAddr, "method": common.CallerName(0), "url": r.URL.String()})
+	log.Info("get table")
+
+	if len(r.Form["tname"]) < 1 ||
+		len(r.Form["nid"]) < 1 {
+		rsp := diagnostic.WrongCommand(missingParameter, fmt.Sprintf("%s?tname=table_name&nid=network_id", r.URL.Path))
+		log.Error("get table failed, wrong input")
+		diagnostic.HTTPReply(w, rsp, json)
+		return
+	}
+
+	tname := r.Form["tname"][0]
+	nid := r.Form["nid"][0]
+
+	nDB, ok := ctx.(*NetworkDB)
+	if ok {
+		table := nDB.GetTableByNetwork(tname, nid)
+		rsp := &diagnostic.TableObj{Length: len(table)}
+		var i = 0
+		for k, v := range table {
+			var encodedValue string
+			if unsafe {
+				encodedValue = string(v.Value)
+			} else {
+				encodedValue = base64.StdEncoding.EncodeToString(v.Value)
+			}
+			rsp.Elements = append(rsp.Elements,
+				&diagnostic.TableEntryObj{
+					Index: i,
+					Key:   k,
+					Value: encodedValue,
+					Owner: v.owner,
+				})
+			i++
+		}
+		log.WithField("response", fmt.Sprintf("%+v", rsp)).Info("get table done")
+		diagnostic.HTTPReply(w, diagnostic.CommandSucceed(rsp), json)
+		return
+	}
+	diagnostic.HTTPReply(w, diagnostic.FailCommand(fmt.Errorf("%s", dbNotAvailable)), json)
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/nodemgmt.go b/vendor/github.com/docker/libnetwork/networkdb/nodemgmt.go
new file mode 100644
index 0000000000..f5a7498522
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/nodemgmt.go
@@ -0,0 +1,120 @@
+package networkdb
+
+import (
+	"fmt"
+
+	"github.com/hashicorp/memberlist"
+	"github.com/sirupsen/logrus"
+)
+
+type nodeState int
+
+const (
+	nodeNotFound    nodeState = -1
+	nodeActiveState nodeState = 0
+	nodeLeftState   nodeState = 1
+	nodeFailedState nodeState = 2
+)
+
+var nodeStateName = map[nodeState]string{
+	-1: "NodeNotFound",
+	0:  "NodeActive",
+	1:  "NodeLeft",
+	2:  "NodeFailed",
+}
+
+// findNode search the node into the 3 node lists and returns the node pointer and the list
+// where it got found
+func (nDB *NetworkDB) findNode(nodeName string) (*node, nodeState, map[string]*node) {
+	for i, nodes := range []map[string]*node{
+		nDB.nodes,
+		nDB.leftNodes,
+		nDB.failedNodes,
+	} {
+		if n, ok := nodes[nodeName]; ok {
+			return n, nodeState(i), nodes
+		}
+	}
+	return nil, nodeNotFound, nil
+}
+
+// changeNodeState changes the state of the node specified, returns true if the node was moved,
+// false if there was no need to change the node state. Error will be returned if the node does not
+// exists
+func (nDB *NetworkDB) changeNodeState(nodeName string, newState nodeState) (bool, error) {
+	n, currState, m := nDB.findNode(nodeName)
+	if n == nil {
+		return false, fmt.Errorf("node %s not found", nodeName)
+	}
+
+	switch newState {
+	case nodeActiveState:
+		if currState == nodeActiveState {
+			return false, nil
+		}
+
+		delete(m, nodeName)
+		// reset the node reap time
+		n.reapTime = 0
+		nDB.nodes[nodeName] = n
+	case nodeLeftState:
+		if currState == nodeLeftState {
+			return false, nil
+		}
+
+		delete(m, nodeName)
+		nDB.leftNodes[nodeName] = n
+	case nodeFailedState:
+		if currState == nodeFailedState {
+			return false, nil
+		}
+
+		delete(m, nodeName)
+		nDB.failedNodes[nodeName] = n
+	}
+
+	logrus.Infof("Node %s change state %s --> %s", nodeName, nodeStateName[currState], nodeStateName[newState])
+
+	if newState == nodeLeftState || newState == nodeFailedState {
+		// set the node reap time, if not already set
+		// It is possible that a node passes from failed to left and the reaptime was already set so keep that value
+		if n.reapTime == 0 {
+			n.reapTime = nodeReapInterval
+		}
+		// The node leave or fails, delete all the entries created by it.
+		// If the node was temporary down, deleting the entries will guarantee that the CREATE events will be accepted
+		// If the node instead left because was going down, then it makes sense to just delete all its state
+		nDB.deleteNodeFromNetworks(n.Name)
+		nDB.deleteNodeTableEntries(n.Name)
+	}
+
+	return true, nil
+}
+
+func (nDB *NetworkDB) purgeReincarnation(mn *memberlist.Node) bool {
+	for name, node := range nDB.nodes {
+		if node.Addr.Equal(mn.Addr) && node.Port == mn.Port && mn.Name != name {
+			logrus.Infof("Node %s/%s, is the new incarnation of the active node %s/%s", mn.Name, mn.Addr, name, node.Addr)
+			nDB.changeNodeState(name, nodeLeftState)
+			return true
+		}
+	}
+
+	for name, node := range nDB.failedNodes {
+		if node.Addr.Equal(mn.Addr) && node.Port == mn.Port && mn.Name != name {
+			logrus.Infof("Node %s/%s, is the new incarnation of the failed node %s/%s", mn.Name, mn.Addr, name, node.Addr)
+			nDB.changeNodeState(name, nodeLeftState)
+			return true
+		}
+	}
+
+	for name, node := range nDB.leftNodes {
+		if node.Addr.Equal(mn.Addr) && node.Port == mn.Port && mn.Name != name {
+			logrus.Infof("Node %s/%s, is the new incarnation of the shutdown node %s/%s", mn.Name, mn.Addr, name, node.Addr)
+			nDB.changeNodeState(name, nodeLeftState)
+			return true
+		}
+	}
+
+	return false
+}
diff --git a/vendor/github.com/docker/libnetwork/networkdb/watch.go b/vendor/github.com/docker/libnetwork/networkdb/watch.go
new file mode 100644
index 0000000000..2ef30422a8
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/networkdb/watch.go
@@ -0,0 +1,110 @@
+package networkdb
+
+import (
+	"net"
+
+	"github.com/docker/go-events"
+)
+
+type opType uint8
+
+const (
+	opCreate opType = 1 + iota
+	opUpdate
+	opDelete
+)
+
+type event struct {
+	Table     string
+	NetworkID string
+	Key       string
+	Value     []byte
+}
+
+// NodeTable represents table event for node join and leave
+const NodeTable = "NodeTable"
+
+// NodeAddr represents the value carried for node event in NodeTable
+type NodeAddr struct {
+	Addr net.IP
+}
+
+// CreateEvent generates a table entry create event to the watchers
+type CreateEvent event
+
+// UpdateEvent generates a table entry update event to the watchers
+type UpdateEvent event
+
+// DeleteEvent generates a table entry delete event to the watchers
+type DeleteEvent event
+
+// Watch creates a watcher with filters for a particular table or
+// network or key or any combination of the tuple. If any of the
+// filter is an empty string it acts as a wildcard for that
+// field. Watch returns a channel of events, where the events will be
+// sent.
+func (nDB *NetworkDB) Watch(tname, nid, key string) (*events.Channel, func()) {
+	var matcher events.Matcher
+
+	if tname != "" || nid != "" || key != "" {
+		matcher = events.MatcherFunc(func(ev events.Event) bool {
+			var evt event
+			switch ev := ev.(type) {
+			case CreateEvent:
+				evt = event(ev)
+			case UpdateEvent:
+				evt = event(ev)
+			case DeleteEvent:
+				evt = event(ev)
+			}
+
+			if tname != "" && evt.Table != tname {
+				return false
+			}
+
+			if nid != "" && evt.NetworkID != nid {
+				return false
+			}
+
+			if key != "" && evt.Key != key {
+				return false
+			}
+
+			return true
+		})
+	}
+
+	ch := events.NewChannel(0)
+	sink := events.Sink(events.NewQueue(ch))
+
+	if matcher != nil {
+		sink = events.NewFilter(sink, matcher)
+	}
+
+	nDB.broadcaster.Add(sink)
+	return ch, func() {
+		nDB.broadcaster.Remove(sink)
+		ch.Close()
+		sink.Close()
+	}
+}
+
+func makeEvent(op opType, tname, nid, key string, value []byte) events.Event {
+	ev := event{
+		Table:     tname,
+		NetworkID: nid,
+		Key:       key,
+		Value:     value,
+	}
+
+	switch op {
+	case opCreate:
+		return CreateEvent(ev)
+	case opUpdate:
+		return UpdateEvent(ev)
+	case opDelete:
+		return DeleteEvent(ev)
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/ns/init_linux.go b/vendor/github.com/docker/libnetwork/ns/init_linux.go
new file mode 100644
index 0000000000..567a6242ac
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/ns/init_linux.go
@@ -0,0 +1,140 @@
+package ns
+
+import (
+	"fmt"
+	"os"
+	"os/exec"
+	"strings"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+	"github.com/vishvananda/netns"
+)
+
+var (
+	initNs   netns.NsHandle
+	initNl   *netlink.Handle
+	initOnce sync.Once
+	// NetlinkSocketsTimeout represents the default timeout duration for the sockets
+	NetlinkSocketsTimeout = 3 * time.Second
+)
+
+// Init initializes a new network namespace
+func Init() {
+	var err error
+	initNs, err = netns.Get()
+	if err != nil {
+		logrus.Errorf("could not get initial namespace: %v", err)
+	}
+	initNl, err = netlink.NewHandle(getSupportedNlFamilies()...)
+	if err != nil {
+		logrus.Errorf("could not create netlink handle on initial namespace: %v", err)
+	}
+	err = initNl.SetSocketTimeout(NetlinkSocketsTimeout)
+	if err != nil {
+		logrus.Warnf("Failed to set the timeout on the default netlink handle sockets: %v", err)
+	}
+}
+
+// SetNamespace sets the initial namespace handler
+func SetNamespace() error {
+	initOnce.Do(Init)
+	if err := netns.Set(initNs); err != nil {
+		linkInfo, linkErr := getLink()
+		if linkErr != nil {
+			linkInfo = linkErr.Error()
+		}
+		return fmt.Errorf("failed to set to initial namespace, %v, initns fd %d: %v", linkInfo, initNs, err)
+	}
+	return nil
+}
+
+// ParseHandlerInt transforms the namespace handler into an integer
+func ParseHandlerInt() int {
+	return int(getHandler())
+}
+
+// GetHandler returns the namespace handler
+func getHandler() netns.NsHandle {
+	initOnce.Do(Init)
+	return initNs
+}
+
+func getLink() (string, error) {
+	return os.Readlink(fmt.Sprintf("/proc/%d/task/%d/ns/net", os.Getpid(), syscall.Gettid()))
+}
+
+// NlHandle returns the netlink handler
+func NlHandle() *netlink.Handle {
+	initOnce.Do(Init)
+	return initNl
+}
+
+func getSupportedNlFamilies() []int {
+	fams := []int{syscall.NETLINK_ROUTE}
+	// NETLINK_XFRM test
+	if err := loadXfrmModules(); err != nil {
+		if checkXfrmSocket() != nil {
+			logrus.Warnf("Could not load necessary modules for IPSEC rules: %v", err)
+		} else {
+			fams = append(fams, syscall.NETLINK_XFRM)
+		}
+	} else {
+		fams = append(fams, syscall.NETLINK_XFRM)
+	}
+	// NETLINK_NETFILTER test
+	if err := loadNfConntrackModules(); err != nil {
+		if checkNfSocket() != nil {
+			logrus.Warnf("Could not load necessary modules for Conntrack: %v", err)
+		} else {
+			fams = append(fams, syscall.NETLINK_NETFILTER)
+		}
+	} else {
+		fams = append(fams, syscall.NETLINK_NETFILTER)
+	}
+
+	return fams
+}
+
+func loadXfrmModules() error {
+	if out, err := exec.Command("modprobe", "-va", "xfrm_user").CombinedOutput(); err != nil {
+		return fmt.Errorf("Running modprobe xfrm_user failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+	if out, err := exec.Command("modprobe", "-va", "xfrm_algo").CombinedOutput(); err != nil {
+		return fmt.Errorf("Running modprobe xfrm_algo failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+	return nil
+}
+
+// API check on required xfrm modules (xfrm_user, xfrm_algo)
+func checkXfrmSocket() error {
+	fd, err := syscall.Socket(syscall.AF_NETLINK, syscall.SOCK_RAW, syscall.NETLINK_XFRM)
+	if err != nil {
+		return err
+	}
+	syscall.Close(fd)
+	return nil
+}
+
+func loadNfConntrackModules() error {
+	if out, err := exec.Command("modprobe", "-va", "nf_conntrack").CombinedOutput(); err != nil {
+		return fmt.Errorf("Running modprobe nf_conntrack failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+	if out, err := exec.Command("modprobe", "-va", "nf_conntrack_netlink").CombinedOutput(); err != nil {
+		return fmt.Errorf("Running modprobe nf_conntrack_netlink failed with message: `%s`, error: %v", strings.TrimSpace(string(out)), err)
+	}
+	return nil
+}
+
+// API check on required nf_conntrack* modules (nf_conntrack, nf_conntrack_netlink)
+func checkNfSocket() error {
+	fd, err := syscall.Socket(syscall.AF_NETLINK, syscall.SOCK_RAW, syscall.NETLINK_NETFILTER)
+	if err != nil {
+		return err
+	}
+	syscall.Close(fd)
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/options/options.go b/vendor/github.com/docker/libnetwork/options/options.go
new file mode 100644
index 0000000000..06d8ae5902
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/options/options.go
@@ -0,0 +1,88 @@
+// Package options provides a way to pass unstructured sets of options to a
+// component expecting a strongly-typed configuration structure.
+package options
+
+import (
+	"fmt"
+	"reflect"
+)
+
+// NoSuchFieldError is the error returned when the generic parameters hold a
+// value for a field absent from the destination structure.
+type NoSuchFieldError struct {
+	Field string
+	Type  string
+}
+
+func (e NoSuchFieldError) Error() string {
+	return fmt.Sprintf("no field %q in type %q", e.Field, e.Type)
+}
+
+// CannotSetFieldError is the error returned when the generic parameters hold a
+// value for a field that cannot be set in the destination structure.
+type CannotSetFieldError struct {
+	Field string
+	Type  string
+}
+
+func (e CannotSetFieldError) Error() string {
+	return fmt.Sprintf("cannot set field %q of type %q", e.Field, e.Type)
+}
+
+// TypeMismatchError is the error returned when the type of the generic value
+// for a field mismatches the type of the destination structure.
+type TypeMismatchError struct {
+	Field      string
+	ExpectType string
+	ActualType string
+}
+
+func (e TypeMismatchError) Error() string {
+	return fmt.Sprintf("type mismatch, field %s require type %v, actual type %v", e.Field, e.ExpectType, e.ActualType)
+}
+
+// Generic is a basic type to store arbitrary settings.
+type Generic map[string]interface{}
+
+// NewGeneric returns a new Generic instance.
+func NewGeneric() Generic {
+	return make(Generic)
+}
+
+// GenerateFromModel takes the generic options, and tries to build a new
+// instance of the model's type by matching keys from the generic options to
+// fields in the model.
+//
+// The return value is of the same type than the model (including a potential
+// pointer qualifier).
+func GenerateFromModel(options Generic, model interface{}) (interface{}, error) {
+	modType := reflect.TypeOf(model)
+
+	// If the model is of pointer type, we need to dereference for New.
+	resType := reflect.TypeOf(model)
+	if modType.Kind() == reflect.Ptr {
+		resType = resType.Elem()
+	}
+
+	// Populate the result structure with the generic layout content.
+	res := reflect.New(resType)
+	for name, value := range options {
+		field := res.Elem().FieldByName(name)
+		if !field.IsValid() {
+			return nil, NoSuchFieldError{name, resType.String()}
+		}
+		if !field.CanSet() {
+			return nil, CannotSetFieldError{name, resType.String()}
+		}
+		if reflect.TypeOf(value) != field.Type() {
+			return nil, TypeMismatchError{name, field.Type().String(), reflect.TypeOf(value).String()}
+		}
+		field.Set(reflect.ValueOf(value))
+	}
+
+	// If the model is not of pointer type, return content of the result.
+	if modType.Kind() == reflect.Ptr {
+		return res.Interface(), nil
+	}
+	return res.Elem().Interface(), nil
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/interface_freebsd.go b/vendor/github.com/docker/libnetwork/osl/interface_freebsd.go
new file mode 100644
index 0000000000..9c0141fd9b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/interface_freebsd.go
@@ -0,0 +1,4 @@
+package osl
+
+// IfaceOption is a function option type to set interface options
+type IfaceOption func()
diff --git a/vendor/github.com/docker/libnetwork/osl/interface_linux.go b/vendor/github.com/docker/libnetwork/osl/interface_linux.go
new file mode 100644
index 0000000000..0ecda09f6e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/interface_linux.go
@@ -0,0 +1,450 @@
+package osl
+
+import (
+	"fmt"
+	"net"
+	"regexp"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+	"github.com/vishvananda/netns"
+)
+
+// IfaceOption is a function option type to set interface options
+type IfaceOption func(i *nwIface)
+
+type nwIface struct {
+	srcName     string
+	dstName     string
+	master      string
+	dstMaster   string
+	mac         net.HardwareAddr
+	address     *net.IPNet
+	addressIPv6 *net.IPNet
+	llAddrs     []*net.IPNet
+	routes      []*net.IPNet
+	bridge      bool
+	ns          *networkNamespace
+	sync.Mutex
+}
+
+func (i *nwIface) SrcName() string {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.srcName
+}
+
+func (i *nwIface) DstName() string {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.dstName
+}
+
+func (i *nwIface) DstMaster() string {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.dstMaster
+}
+
+func (i *nwIface) Bridge() bool {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.bridge
+}
+
+func (i *nwIface) Master() string {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.master
+}
+
+func (i *nwIface) MacAddress() net.HardwareAddr {
+	i.Lock()
+	defer i.Unlock()
+
+	return types.GetMacCopy(i.mac)
+}
+
+func (i *nwIface) Address() *net.IPNet {
+	i.Lock()
+	defer i.Unlock()
+
+	return types.GetIPNetCopy(i.address)
+}
+
+func (i *nwIface) AddressIPv6() *net.IPNet {
+	i.Lock()
+	defer i.Unlock()
+
+	return types.GetIPNetCopy(i.addressIPv6)
+}
+
+func (i *nwIface) LinkLocalAddresses() []*net.IPNet {
+	i.Lock()
+	defer i.Unlock()
+
+	return i.llAddrs
+}
+
+func (i *nwIface) Routes() []*net.IPNet {
+	i.Lock()
+	defer i.Unlock()
+
+	routes := make([]*net.IPNet, len(i.routes))
+	for index, route := range i.routes {
+		r := types.GetIPNetCopy(route)
+		routes[index] = r
+	}
+
+	return routes
+}
+
+func (n *networkNamespace) Interfaces() []Interface {
+	n.Lock()
+	defer n.Unlock()
+
+	ifaces := make([]Interface, len(n.iFaces))
+
+	for i, iface := range n.iFaces {
+		ifaces[i] = iface
+	}
+
+	return ifaces
+}
+
+func (i *nwIface) Remove() error {
+	i.Lock()
+	n := i.ns
+	i.Unlock()
+
+	n.Lock()
+	isDefault := n.isDefault
+	nlh := n.nlHandle
+	n.Unlock()
+
+	// Find the network interface identified by the DstName attribute.
+	iface, err := nlh.LinkByName(i.DstName())
+	if err != nil {
+		return err
+	}
+
+	// Down the interface before configuring
+	if err := nlh.LinkSetDown(iface); err != nil {
+		return err
+	}
+
+	err = nlh.LinkSetName(iface, i.SrcName())
+	if err != nil {
+		logrus.Debugf("LinkSetName failed for interface %s: %v", i.SrcName(), err)
+		return err
+	}
+
+	// if it is a bridge just delete it.
+	if i.Bridge() {
+		if err := nlh.LinkDel(iface); err != nil {
+			return fmt.Errorf("failed deleting bridge %q: %v", i.SrcName(), err)
+		}
+	} else if !isDefault {
+		// Move the network interface to caller namespace.
+		if err := nlh.LinkSetNsFd(iface, ns.ParseHandlerInt()); err != nil {
+			logrus.Debugf("LinkSetNsPid failed for interface %s: %v", i.SrcName(), err)
+			return err
+		}
+	}
+
+	n.Lock()
+	for index, intf := range n.iFaces {
+		if intf == i {
+			n.iFaces = append(n.iFaces[:index], n.iFaces[index+1:]...)
+			break
+		}
+	}
+	n.Unlock()
+
+	n.checkLoV6()
+
+	return nil
+}
+
+// Returns the sandbox's side veth interface statistics
+func (i *nwIface) Statistics() (*types.InterfaceStatistics, error) {
+	i.Lock()
+	n := i.ns
+	i.Unlock()
+
+	l, err := n.nlHandle.LinkByName(i.DstName())
+	if err != nil {
+		return nil, fmt.Errorf("failed to retrieve the statistics for %s in netns %s: %v", i.DstName(), n.path, err)
+	}
+
+	stats := l.Attrs().Statistics
+	if stats == nil {
+		return nil, fmt.Errorf("no statistics were returned")
+	}
+
+	return &types.InterfaceStatistics{
+		RxBytes:   uint64(stats.RxBytes),
+		TxBytes:   uint64(stats.TxBytes),
+		RxPackets: uint64(stats.RxPackets),
+		TxPackets: uint64(stats.TxPackets),
+		RxDropped: uint64(stats.RxDropped),
+		TxDropped: uint64(stats.TxDropped),
+	}, nil
+}
+
+func (n *networkNamespace) findDst(srcName string, isBridge bool) string {
+	n.Lock()
+	defer n.Unlock()
+
+	for _, i := range n.iFaces {
+		// The master should match the srcname of the interface and the
+		// master interface should be of type bridge, if searching for a bridge type
+		if i.SrcName() == srcName && (!isBridge || i.Bridge()) {
+			return i.DstName()
+		}
+	}
+
+	return ""
+}
+
+func (n *networkNamespace) AddInterface(srcName, dstPrefix string, options ...IfaceOption) error {
+	i := &nwIface{srcName: srcName, dstName: dstPrefix, ns: n}
+	i.processInterfaceOptions(options...)
+
+	if i.master != "" {
+		i.dstMaster = n.findDst(i.master, true)
+		if i.dstMaster == "" {
+			return fmt.Errorf("could not find an appropriate master %q for %q",
+				i.master, i.srcName)
+		}
+	}
+
+	n.Lock()
+	if n.isDefault {
+		i.dstName = i.srcName
+	} else {
+		i.dstName = fmt.Sprintf("%s%d", dstPrefix, n.nextIfIndex[dstPrefix])
+		n.nextIfIndex[dstPrefix]++
+	}
+
+	path := n.path
+	isDefault := n.isDefault
+	nlh := n.nlHandle
+	nlhHost := ns.NlHandle()
+	n.Unlock()
+
+	// If it is a bridge interface we have to create the bridge inside
+	// the namespace so don't try to lookup the interface using srcName
+	if i.bridge {
+		link := &netlink.Bridge{
+			LinkAttrs: netlink.LinkAttrs{
+				Name: i.srcName,
+			},
+		}
+		if err := nlh.LinkAdd(link); err != nil {
+			return fmt.Errorf("failed to create bridge %q: %v", i.srcName, err)
+		}
+	} else {
+		// Find the network interface identified by the SrcName attribute.
+		iface, err := nlhHost.LinkByName(i.srcName)
+		if err != nil {
+			return fmt.Errorf("failed to get link by name %q: %v", i.srcName, err)
+		}
+
+		// Move the network interface to the destination
+		// namespace only if the namespace is not a default
+		// type
+		if !isDefault {
+			newNs, err := netns.GetFromPath(path)
+			if err != nil {
+				return fmt.Errorf("failed get network namespace %q: %v", path, err)
+			}
+			defer newNs.Close()
+			if err := nlhHost.LinkSetNsFd(iface, int(newNs)); err != nil {
+				return fmt.Errorf("failed to set namespace on link %q: %v", i.srcName, err)
+			}
+		}
+	}
+
+	// Find the network interface identified by the SrcName attribute.
+	iface, err := nlh.LinkByName(i.srcName)
+	if err != nil {
+		return fmt.Errorf("failed to get link by name %q: %v", i.srcName, err)
+	}
+
+	// Down the interface before configuring
+	if err := nlh.LinkSetDown(iface); err != nil {
+		return fmt.Errorf("failed to set link down: %v", err)
+	}
+
+	// Configure the interface now this is moved in the proper namespace.
+	if err := configureInterface(nlh, iface, i); err != nil {
+		return err
+	}
+
+	// Up the interface.
+	cnt := 0
+	for err = nlh.LinkSetUp(iface); err != nil && cnt < 3; cnt++ {
+		logrus.Debugf("retrying link setup because of: %v", err)
+		time.Sleep(10 * time.Millisecond)
+		err = nlh.LinkSetUp(iface)
+	}
+	if err != nil {
+		return fmt.Errorf("failed to set link up: %v", err)
+	}
+
+	// Set the routes on the interface. This can only be done when the interface is up.
+	if err := setInterfaceRoutes(nlh, iface, i); err != nil {
+		return fmt.Errorf("error setting interface %q routes to %q: %v", iface.Attrs().Name, i.Routes(), err)
+	}
+
+	n.Lock()
+	n.iFaces = append(n.iFaces, i)
+	n.Unlock()
+
+	n.checkLoV6()
+
+	return nil
+}
+
+func configureInterface(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	ifaceName := iface.Attrs().Name
+	ifaceConfigurators := []struct {
+		Fn         func(*netlink.Handle, netlink.Link, *nwIface) error
+		ErrMessage string
+	}{
+		{setInterfaceName, fmt.Sprintf("error renaming interface %q to %q", ifaceName, i.DstName())},
+		{setInterfaceMAC, fmt.Sprintf("error setting interface %q MAC to %q", ifaceName, i.MacAddress())},
+		{setInterfaceIP, fmt.Sprintf("error setting interface %q IP to %v", ifaceName, i.Address())},
+		{setInterfaceIPv6, fmt.Sprintf("error setting interface %q IPv6 to %v", ifaceName, i.AddressIPv6())},
+		{setInterfaceMaster, fmt.Sprintf("error setting interface %q master to %q", ifaceName, i.DstMaster())},
+		{setInterfaceLinkLocalIPs, fmt.Sprintf("error setting interface %q link local IPs to %v", ifaceName, i.LinkLocalAddresses())},
+	}
+
+	for _, config := range ifaceConfigurators {
+		if err := config.Fn(nlh, iface, i); err != nil {
+			return fmt.Errorf("%s: %v", config.ErrMessage, err)
+		}
+	}
+	return nil
+}
+
+func setInterfaceMaster(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	if i.DstMaster() == "" {
+		return nil
+	}
+
+	return nlh.LinkSetMaster(iface, &netlink.Bridge{
+		LinkAttrs: netlink.LinkAttrs{Name: i.DstMaster()}})
+}
+
+func setInterfaceMAC(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	if i.MacAddress() == nil {
+		return nil
+	}
+	return nlh.LinkSetHardwareAddr(iface, i.MacAddress())
+}
+
+func setInterfaceIP(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	if i.Address() == nil {
+		return nil
+	}
+	if err := checkRouteConflict(nlh, i.Address(), netlink.FAMILY_V4); err != nil {
+		return err
+	}
+	ipAddr := &netlink.Addr{IPNet: i.Address(), Label: ""}
+	return nlh.AddrAdd(iface, ipAddr)
+}
+
+func setInterfaceIPv6(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	if i.AddressIPv6() == nil {
+		return nil
+	}
+	if err := checkRouteConflict(nlh, i.AddressIPv6(), netlink.FAMILY_V6); err != nil {
+		return err
+	}
+	if err := setIPv6(i.ns.path, i.DstName(), true); err != nil {
+		return fmt.Errorf("failed to enable ipv6: %v", err)
+	}
+	ipAddr := &netlink.Addr{IPNet: i.AddressIPv6(), Label: "", Flags: syscall.IFA_F_NODAD}
+	return nlh.AddrAdd(iface, ipAddr)
+}
+
+func setInterfaceLinkLocalIPs(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	for _, llIP := range i.LinkLocalAddresses() {
+		ipAddr := &netlink.Addr{IPNet: llIP}
+		if err := nlh.AddrAdd(iface, ipAddr); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func setInterfaceName(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	return nlh.LinkSetName(iface, i.DstName())
+}
+
+func setInterfaceRoutes(nlh *netlink.Handle, iface netlink.Link, i *nwIface) error {
+	for _, route := range i.Routes() {
+		err := nlh.RouteAdd(&netlink.Route{
+			Scope:     netlink.SCOPE_LINK,
+			LinkIndex: iface.Attrs().Index,
+			Dst:       route,
+		})
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// In older kernels (like the one in Centos 6.6 distro) sysctl does not have netns support. Therefore
+// we cannot gather the statistics from /sys/class/net/<dev>/statistics/<counter> files. Per-netns stats
+// are naturally found in /proc/net/dev in kernels which support netns (ifconfig relies on that).
+const (
+	netStatsFile = "/proc/net/dev"
+	base         = "[ ]*%s:([ ]+[0-9]+){16}"
+)
+
+func scanInterfaceStats(data, ifName string, i *types.InterfaceStatistics) error {
+	var (
+		bktStr string
+		bkt    uint64
+	)
+
+	regex := fmt.Sprintf(base, ifName)
+	re := regexp.MustCompile(regex)
+	line := re.FindString(data)
+
+	_, err := fmt.Sscanf(line, "%s %d %d %d %d %d %d %d %d %d %d %d %d %d %d %d %d",
+		&bktStr, &i.RxBytes, &i.RxPackets, &i.RxErrors, &i.RxDropped, &bkt, &bkt, &bkt,
+		&bkt, &i.TxBytes, &i.TxPackets, &i.TxErrors, &i.TxDropped, &bkt, &bkt, &bkt, &bkt)
+
+	return err
+}
+
+func checkRouteConflict(nlh *netlink.Handle, address *net.IPNet, family int) error {
+	routes, err := nlh.RouteList(nil, family)
+	if err != nil {
+		return err
+	}
+	for _, route := range routes {
+		if route.Dst != nil {
+			if route.Dst.Contains(address.IP) || address.Contains(route.Dst.IP) {
+				return fmt.Errorf("cannot program address %v in sandbox interface because it conflicts with existing route %s",
+					address, route)
+			}
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/interface_windows.go b/vendor/github.com/docker/libnetwork/osl/interface_windows.go
new file mode 100644
index 0000000000..9c0141fd9b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/interface_windows.go
@@ -0,0 +1,4 @@
+package osl
+
+// IfaceOption is a function option type to set interface options
+type IfaceOption func()
diff --git a/vendor/github.com/docker/libnetwork/osl/namespace_linux.go b/vendor/github.com/docker/libnetwork/osl/namespace_linux.go
new file mode 100644
index 0000000000..6389215e1a
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/namespace_linux.go
@@ -0,0 +1,628 @@
+package osl
+
+import (
+	"fmt"
+	"io/ioutil"
+	"net"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"sync"
+	"syscall"
+	"time"
+
+	"github.com/docker/docker/pkg/reexec"
+	"github.com/docker/libnetwork/ns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+	"github.com/vishvananda/netns"
+)
+
+const defaultPrefix = "/var/run/docker"
+
+func init() {
+	reexec.Register("set-ipv6", reexecSetIPv6)
+}
+
+var (
+	once             sync.Once
+	garbagePathMap   = make(map[string]bool)
+	gpmLock          sync.Mutex
+	gpmWg            sync.WaitGroup
+	gpmCleanupPeriod = 60 * time.Second
+	gpmChan          = make(chan chan struct{})
+	prefix           = defaultPrefix
+)
+
+// The networkNamespace type is the linux implementation of the Sandbox
+// interface. It represents a linux network namespace, and moves an interface
+// into it when called on method AddInterface or sets the gateway etc.
+type networkNamespace struct {
+	path         string
+	iFaces       []*nwIface
+	gw           net.IP
+	gwv6         net.IP
+	staticRoutes []*types.StaticRoute
+	neighbors    []*neigh
+	nextIfIndex  map[string]int
+	isDefault    bool
+	nlHandle     *netlink.Handle
+	loV6Enabled  bool
+	sync.Mutex
+}
+
+// SetBasePath sets the base url prefix for the ns path
+func SetBasePath(path string) {
+	prefix = path
+}
+
+func init() {
+	reexec.Register("netns-create", reexecCreateNamespace)
+}
+
+func basePath() string {
+	return filepath.Join(prefix, "netns")
+}
+
+func createBasePath() {
+	err := os.MkdirAll(basePath(), 0755)
+	if err != nil {
+		panic("Could not create net namespace path directory")
+	}
+
+	// Start the garbage collection go routine
+	go removeUnusedPaths()
+}
+
+func removeUnusedPaths() {
+	gpmLock.Lock()
+	period := gpmCleanupPeriod
+	gpmLock.Unlock()
+
+	ticker := time.NewTicker(period)
+	for {
+		var (
+			gc   chan struct{}
+			gcOk bool
+		)
+
+		select {
+		case <-ticker.C:
+		case gc, gcOk = <-gpmChan:
+		}
+
+		gpmLock.Lock()
+		pathList := make([]string, 0, len(garbagePathMap))
+		for path := range garbagePathMap {
+			pathList = append(pathList, path)
+		}
+		garbagePathMap = make(map[string]bool)
+		gpmWg.Add(1)
+		gpmLock.Unlock()
+
+		for _, path := range pathList {
+			os.Remove(path)
+		}
+
+		gpmWg.Done()
+		if gcOk {
+			close(gc)
+		}
+	}
+}
+
+func addToGarbagePaths(path string) {
+	gpmLock.Lock()
+	garbagePathMap[path] = true
+	gpmLock.Unlock()
+}
+
+func removeFromGarbagePaths(path string) {
+	gpmLock.Lock()
+	delete(garbagePathMap, path)
+	gpmLock.Unlock()
+}
+
+// GC triggers garbage collection of namespace path right away
+// and waits for it.
+func GC() {
+	gpmLock.Lock()
+	if len(garbagePathMap) == 0 {
+		// No need for GC if map is empty
+		gpmLock.Unlock()
+		return
+	}
+	gpmLock.Unlock()
+
+	// if content exists in the garbage paths
+	// we can trigger GC to run, providing a
+	// channel to be notified on completion
+	waitGC := make(chan struct{})
+	gpmChan <- waitGC
+	// wait for GC completion
+	<-waitGC
+}
+
+// GenerateKey generates a sandbox key based on the passed
+// container id.
+func GenerateKey(containerID string) string {
+	maxLen := 12
+	// Read sandbox key from host for overlay
+	if strings.HasPrefix(containerID, "-") {
+		var (
+			index    int
+			indexStr string
+			tmpkey   string
+		)
+		dir, err := ioutil.ReadDir(basePath())
+		if err != nil {
+			return ""
+		}
+
+		for _, v := range dir {
+			id := v.Name()
+			if strings.HasSuffix(id, containerID[:maxLen-1]) {
+				indexStr = strings.TrimSuffix(id, containerID[:maxLen-1])
+				tmpindex, err := strconv.Atoi(indexStr)
+				if err != nil {
+					return ""
+				}
+				if tmpindex > index {
+					index = tmpindex
+					tmpkey = id
+				}
+
+			}
+		}
+		containerID = tmpkey
+		if containerID == "" {
+			return ""
+		}
+	}
+
+	if len(containerID) < maxLen {
+		maxLen = len(containerID)
+	}
+
+	return basePath() + "/" + containerID[:maxLen]
+}
+
+// NewSandbox provides a new sandbox instance created in an os specific way
+// provided a key which uniquely identifies the sandbox
+func NewSandbox(key string, osCreate, isRestore bool) (Sandbox, error) {
+	if !isRestore {
+		err := createNetworkNamespace(key, osCreate)
+		if err != nil {
+			return nil, err
+		}
+	} else {
+		once.Do(createBasePath)
+	}
+
+	n := &networkNamespace{path: key, isDefault: !osCreate, nextIfIndex: make(map[string]int)}
+
+	sboxNs, err := netns.GetFromPath(n.path)
+	if err != nil {
+		return nil, fmt.Errorf("failed get network namespace %q: %v", n.path, err)
+	}
+	defer sboxNs.Close()
+
+	n.nlHandle, err = netlink.NewHandleAt(sboxNs, syscall.NETLINK_ROUTE)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create a netlink handle: %v", err)
+	}
+
+	err = n.nlHandle.SetSocketTimeout(ns.NetlinkSocketsTimeout)
+	if err != nil {
+		logrus.Warnf("Failed to set the timeout on the sandbox netlink handle sockets: %v", err)
+	}
+	// In live-restore mode, IPV6 entries are getting cleaned up due to below code
+	// We should retain IPV6 configrations in live-restore mode when Docker Daemon
+	// comes back. It should work as it is on other cases
+	// As starting point, disable IPv6 on all interfaces
+	if !isRestore && !n.isDefault {
+		err = setIPv6(n.path, "all", false)
+		if err != nil {
+			logrus.Warnf("Failed to disable IPv6 on all interfaces on network namespace %q: %v", n.path, err)
+		}
+	}
+
+	if err = n.loopbackUp(); err != nil {
+		n.nlHandle.Delete()
+		return nil, err
+	}
+
+	return n, nil
+}
+
+func (n *networkNamespace) InterfaceOptions() IfaceOptionSetter {
+	return n
+}
+
+func (n *networkNamespace) NeighborOptions() NeighborOptionSetter {
+	return n
+}
+
+func mountNetworkNamespace(basePath string, lnPath string) error {
+	return syscall.Mount(basePath, lnPath, "bind", syscall.MS_BIND, "")
+}
+
+// GetSandboxForExternalKey returns sandbox object for the supplied path
+func GetSandboxForExternalKey(basePath string, key string) (Sandbox, error) {
+	if err := createNamespaceFile(key); err != nil {
+		return nil, err
+	}
+
+	if err := mountNetworkNamespace(basePath, key); err != nil {
+		return nil, err
+	}
+	n := &networkNamespace{path: key, nextIfIndex: make(map[string]int)}
+
+	sboxNs, err := netns.GetFromPath(n.path)
+	if err != nil {
+		return nil, fmt.Errorf("failed get network namespace %q: %v", n.path, err)
+	}
+	defer sboxNs.Close()
+
+	n.nlHandle, err = netlink.NewHandleAt(sboxNs, syscall.NETLINK_ROUTE)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create a netlink handle: %v", err)
+	}
+
+	err = n.nlHandle.SetSocketTimeout(ns.NetlinkSocketsTimeout)
+	if err != nil {
+		logrus.Warnf("Failed to set the timeout on the sandbox netlink handle sockets: %v", err)
+	}
+
+	// As starting point, disable IPv6 on all interfaces
+	err = setIPv6(n.path, "all", false)
+	if err != nil {
+		logrus.Warnf("Failed to disable IPv6 on all interfaces on network namespace %q: %v", n.path, err)
+	}
+
+	if err = n.loopbackUp(); err != nil {
+		n.nlHandle.Delete()
+		return nil, err
+	}
+
+	return n, nil
+}
+
+func reexecCreateNamespace() {
+	if len(os.Args) < 2 {
+		logrus.Fatal("no namespace path provided")
+	}
+	if err := mountNetworkNamespace("/proc/self/ns/net", os.Args[1]); err != nil {
+		logrus.Fatal(err)
+	}
+}
+
+func createNetworkNamespace(path string, osCreate bool) error {
+	if err := createNamespaceFile(path); err != nil {
+		return err
+	}
+
+	cmd := &exec.Cmd{
+		Path:   reexec.Self(),
+		Args:   append([]string{"netns-create"}, path),
+		Stdout: os.Stdout,
+		Stderr: os.Stderr,
+	}
+	if osCreate {
+		cmd.SysProcAttr = &syscall.SysProcAttr{}
+		cmd.SysProcAttr.Cloneflags = syscall.CLONE_NEWNET
+	}
+	if err := cmd.Run(); err != nil {
+		return fmt.Errorf("namespace creation reexec command failed: %v", err)
+	}
+
+	return nil
+}
+
+func unmountNamespaceFile(path string) {
+	if _, err := os.Stat(path); err == nil {
+		syscall.Unmount(path, syscall.MNT_DETACH)
+	}
+}
+
+func createNamespaceFile(path string) (err error) {
+	var f *os.File
+
+	once.Do(createBasePath)
+	// Remove it from garbage collection list if present
+	removeFromGarbagePaths(path)
+
+	// If the path is there unmount it first
+	unmountNamespaceFile(path)
+
+	// wait for garbage collection to complete if it is in progress
+	// before trying to create the file.
+	gpmWg.Wait()
+
+	if f, err = os.Create(path); err == nil {
+		f.Close()
+	}
+
+	return err
+}
+
+func (n *networkNamespace) loopbackUp() error {
+	iface, err := n.nlHandle.LinkByName("lo")
+	if err != nil {
+		return err
+	}
+	return n.nlHandle.LinkSetUp(iface)
+}
+
+func (n *networkNamespace) AddLoopbackAliasIP(ip *net.IPNet) error {
+	iface, err := n.nlHandle.LinkByName("lo")
+	if err != nil {
+		return err
+	}
+	return n.nlHandle.AddrAdd(iface, &netlink.Addr{IPNet: ip})
+}
+
+func (n *networkNamespace) RemoveLoopbackAliasIP(ip *net.IPNet) error {
+	iface, err := n.nlHandle.LinkByName("lo")
+	if err != nil {
+		return err
+	}
+	return n.nlHandle.AddrDel(iface, &netlink.Addr{IPNet: ip})
+}
+
+func (n *networkNamespace) InvokeFunc(f func()) error {
+	return nsInvoke(n.nsPath(), func(nsFD int) error { return nil }, func(callerFD int) error {
+		f()
+		return nil
+	})
+}
+
+// InitOSContext initializes OS context while configuring network resources
+func InitOSContext() func() {
+	runtime.LockOSThread()
+	if err := ns.SetNamespace(); err != nil {
+		logrus.Error(err)
+	}
+	return runtime.UnlockOSThread
+}
+
+func nsInvoke(path string, prefunc func(nsFD int) error, postfunc func(callerFD int) error) error {
+	defer InitOSContext()()
+
+	newNs, err := netns.GetFromPath(path)
+	if err != nil {
+		return fmt.Errorf("failed get network namespace %q: %v", path, err)
+	}
+	defer newNs.Close()
+
+	// Invoked before the namespace switch happens but after the namespace file
+	// handle is obtained.
+	if err := prefunc(int(newNs)); err != nil {
+		return fmt.Errorf("failed in prefunc: %v", err)
+	}
+
+	if err = netns.Set(newNs); err != nil {
+		return err
+	}
+	defer ns.SetNamespace()
+
+	// Invoked after the namespace switch.
+	return postfunc(ns.ParseHandlerInt())
+}
+
+func (n *networkNamespace) nsPath() string {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.path
+}
+
+func (n *networkNamespace) Info() Info {
+	return n
+}
+
+func (n *networkNamespace) Key() string {
+	return n.path
+}
+
+func (n *networkNamespace) Destroy() error {
+	if n.nlHandle != nil {
+		n.nlHandle.Delete()
+	}
+	// Assuming no running process is executing in this network namespace,
+	// unmounting is sufficient to destroy it.
+	if err := syscall.Unmount(n.path, syscall.MNT_DETACH); err != nil {
+		return err
+	}
+
+	// Stash it into the garbage collection list
+	addToGarbagePaths(n.path)
+	return nil
+}
+
+// Restore restore the network namespace
+func (n *networkNamespace) Restore(ifsopt map[string][]IfaceOption, routes []*types.StaticRoute, gw net.IP, gw6 net.IP) error {
+	// restore interfaces
+	for name, opts := range ifsopt {
+		if !strings.Contains(name, "+") {
+			return fmt.Errorf("wrong iface name in restore osl sandbox interface: %s", name)
+		}
+		seps := strings.Split(name, "+")
+		srcName := seps[0]
+		dstPrefix := seps[1]
+		i := &nwIface{srcName: srcName, dstName: dstPrefix, ns: n}
+		i.processInterfaceOptions(opts...)
+		if i.master != "" {
+			i.dstMaster = n.findDst(i.master, true)
+			if i.dstMaster == "" {
+				return fmt.Errorf("could not find an appropriate master %q for %q",
+					i.master, i.srcName)
+			}
+		}
+		if n.isDefault {
+			i.dstName = i.srcName
+		} else {
+			links, err := n.nlHandle.LinkList()
+			if err != nil {
+				return fmt.Errorf("failed to retrieve list of links in network namespace %q during restore", n.path)
+			}
+			// due to the docker network connect/disconnect, so the dstName should
+			// restore from the namespace
+			for _, link := range links {
+				addrs, err := n.nlHandle.AddrList(link, netlink.FAMILY_V4)
+				if err != nil {
+					return err
+				}
+				ifaceName := link.Attrs().Name
+				if strings.HasPrefix(ifaceName, "vxlan") {
+					if i.dstName == "vxlan" {
+						i.dstName = ifaceName
+						break
+					}
+				}
+				// find the interface name by ip
+				if i.address != nil {
+					for _, addr := range addrs {
+						if addr.IPNet.String() == i.address.String() {
+							i.dstName = ifaceName
+							break
+						}
+						continue
+					}
+					if i.dstName == ifaceName {
+						break
+					}
+				}
+				// This is to find the interface name of the pair in overlay sandbox
+				if strings.HasPrefix(ifaceName, "veth") {
+					if i.master != "" && i.dstName == "veth" {
+						i.dstName = ifaceName
+					}
+				}
+			}
+
+			var index int
+			indexStr := strings.TrimPrefix(i.dstName, dstPrefix)
+			if indexStr != "" {
+				index, err = strconv.Atoi(indexStr)
+				if err != nil {
+					return err
+				}
+			}
+			index++
+			n.Lock()
+			if index > n.nextIfIndex[dstPrefix] {
+				n.nextIfIndex[dstPrefix] = index
+			}
+			n.iFaces = append(n.iFaces, i)
+			n.Unlock()
+		}
+	}
+
+	// restore routes
+	for _, r := range routes {
+		n.Lock()
+		n.staticRoutes = append(n.staticRoutes, r)
+		n.Unlock()
+	}
+
+	// restore gateway
+	if len(gw) > 0 {
+		n.Lock()
+		n.gw = gw
+		n.Unlock()
+	}
+
+	if len(gw6) > 0 {
+		n.Lock()
+		n.gwv6 = gw6
+		n.Unlock()
+	}
+
+	return nil
+}
+
+// Checks whether IPv6 needs to be enabled/disabled on the loopback interface
+func (n *networkNamespace) checkLoV6() {
+	var (
+		enable = false
+		action = "disable"
+	)
+
+	n.Lock()
+	for _, iface := range n.iFaces {
+		if iface.AddressIPv6() != nil {
+			enable = true
+			action = "enable"
+			break
+		}
+	}
+	n.Unlock()
+
+	if n.loV6Enabled == enable {
+		return
+	}
+
+	if err := setIPv6(n.path, "lo", enable); err != nil {
+		logrus.Warnf("Failed to %s IPv6 on loopback interface on network namespace %q: %v", action, n.path, err)
+	}
+
+	n.loV6Enabled = enable
+}
+
+func reexecSetIPv6() {
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+
+	if len(os.Args) < 3 {
+		logrus.Errorf("invalid number of arguments for %s", os.Args[0])
+		os.Exit(1)
+	}
+
+	ns, err := netns.GetFromPath(os.Args[1])
+	if err != nil {
+		logrus.Errorf("failed get network namespace %q: %v", os.Args[1], err)
+		os.Exit(2)
+	}
+	defer ns.Close()
+
+	if err = netns.Set(ns); err != nil {
+		logrus.Errorf("setting into container netns %q failed: %v", os.Args[1], err)
+		os.Exit(3)
+	}
+
+	var (
+		action = "disable"
+		value  = byte('1')
+		path   = fmt.Sprintf("/proc/sys/net/ipv6/conf/%s/disable_ipv6", os.Args[2])
+	)
+
+	if os.Args[3] == "true" {
+		action = "enable"
+		value = byte('0')
+	}
+
+	if err = ioutil.WriteFile(path, []byte{value, '\n'}, 0644); err != nil {
+		logrus.Errorf("failed to %s IPv6 forwarding for container's interface %s: %v", action, os.Args[2], err)
+		os.Exit(4)
+	}
+
+	os.Exit(0)
+}
+
+func setIPv6(path, iface string, enable bool) error {
+	cmd := &exec.Cmd{
+		Path:   reexec.Self(),
+		Args:   append([]string{"set-ipv6"}, path, iface, strconv.FormatBool(enable)),
+		Stdout: os.Stdout,
+		Stderr: os.Stderr,
+	}
+	if err := cmd.Run(); err != nil {
+		return fmt.Errorf("reexec to set IPv6 failed: %v", err)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/namespace_unsupported.go b/vendor/github.com/docker/libnetwork/osl/namespace_unsupported.go
new file mode 100644
index 0000000000..74372e2492
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/namespace_unsupported.go
@@ -0,0 +1,17 @@
+// +build !linux,!windows,!freebsd
+
+package osl
+
+// GC triggers garbage collection of namespace path right away
+// and waits for it.
+func GC() {
+}
+
+// GetSandboxForExternalKey returns sandbox object for the supplied path
+func GetSandboxForExternalKey(path string, key string) (Sandbox, error) {
+	return nil, nil
+}
+
+// SetBasePath sets the base url prefix for the ns path
+func SetBasePath(path string) {
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/namespace_windows.go b/vendor/github.com/docker/libnetwork/osl/namespace_windows.go
new file mode 100644
index 0000000000..49503c00ff
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/namespace_windows.go
@@ -0,0 +1,38 @@
+package osl
+
+import "testing"
+
+// GenerateKey generates a sandbox key based on the passed
+// container id.
+func GenerateKey(containerID string) string {
+	return containerID
+}
+
+// NewSandbox provides a new sandbox instance created in an os specific way
+// provided a key which uniquely identifies the sandbox
+func NewSandbox(key string, osCreate, isRestore bool) (Sandbox, error) {
+	return nil, nil
+}
+
+func GetSandboxForExternalKey(path string, key string) (Sandbox, error) {
+	return nil, nil
+}
+
+// GC triggers garbage collection of namespace path right away
+// and waits for it.
+func GC() {
+}
+
+// InitOSContext initializes OS context while configuring network resources
+func InitOSContext() func() {
+	return func() {}
+}
+
+// SetupTestOSContext sets up a separate test  OS context in which tests will be executed.
+func SetupTestOSContext(t *testing.T) func() {
+	return func() {}
+}
+
+// SetBasePath sets the base url prefix for the ns path
+func SetBasePath(path string) {
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/neigh_freebsd.go b/vendor/github.com/docker/libnetwork/osl/neigh_freebsd.go
new file mode 100644
index 0000000000..280f006396
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/neigh_freebsd.go
@@ -0,0 +1,4 @@
+package osl
+
+// NeighOption is a function option type to set neighbor options
+type NeighOption func()
diff --git a/vendor/github.com/docker/libnetwork/osl/neigh_linux.go b/vendor/github.com/docker/libnetwork/osl/neigh_linux.go
new file mode 100644
index 0000000000..6bf1c16dc5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/neigh_linux.go
@@ -0,0 +1,194 @@
+package osl
+
+import (
+	"bytes"
+	"fmt"
+	"net"
+
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink"
+)
+
+// NeighborSearchError indicates that the neighbor is already present
+type NeighborSearchError struct {
+	ip      net.IP
+	mac     net.HardwareAddr
+	present bool
+}
+
+func (n NeighborSearchError) Error() string {
+	return fmt.Sprintf("Search neighbor failed for IP %v, mac %v, present in db:%t", n.ip, n.mac, n.present)
+}
+
+// NeighOption is a function option type to set interface options
+type NeighOption func(nh *neigh)
+
+type neigh struct {
+	dstIP    net.IP
+	dstMac   net.HardwareAddr
+	linkName string
+	linkDst  string
+	family   int
+}
+
+func (n *networkNamespace) findNeighbor(dstIP net.IP, dstMac net.HardwareAddr) *neigh {
+	n.Lock()
+	defer n.Unlock()
+
+	for _, nh := range n.neighbors {
+		if nh.dstIP.Equal(dstIP) && bytes.Equal(nh.dstMac, dstMac) {
+			return nh
+		}
+	}
+
+	return nil
+}
+
+func (n *networkNamespace) DeleteNeighbor(dstIP net.IP, dstMac net.HardwareAddr, osDelete bool) error {
+	var (
+		iface netlink.Link
+		err   error
+	)
+
+	nh := n.findNeighbor(dstIP, dstMac)
+	if nh == nil {
+		return NeighborSearchError{dstIP, dstMac, false}
+	}
+
+	if osDelete {
+		n.Lock()
+		nlh := n.nlHandle
+		n.Unlock()
+
+		if nh.linkDst != "" {
+			iface, err = nlh.LinkByName(nh.linkDst)
+			if err != nil {
+				return fmt.Errorf("could not find interface with destination name %s: %v",
+					nh.linkDst, err)
+			}
+		}
+
+		nlnh := &netlink.Neigh{
+			IP:     dstIP,
+			State:  netlink.NUD_PERMANENT,
+			Family: nh.family,
+		}
+
+		if nlnh.Family > 0 {
+			nlnh.HardwareAddr = dstMac
+			nlnh.Flags = netlink.NTF_SELF
+		}
+
+		if nh.linkDst != "" {
+			nlnh.LinkIndex = iface.Attrs().Index
+		}
+
+		// If the kernel deletion fails for the neighbor entry still remote it
+		// from the namespace cache. Otherwise if the neighbor moves back to the
+		// same host again, kernel update can fail.
+		if err := nlh.NeighDel(nlnh); err != nil {
+			logrus.Warnf("Deleting neighbor IP %s, mac %s failed, %v", dstIP, dstMac, err)
+		}
+
+		// Delete the dynamic entry in the bridge
+		if nlnh.Family > 0 {
+			nlnh := &netlink.Neigh{
+				IP:     dstIP,
+				Family: nh.family,
+			}
+
+			nlnh.HardwareAddr = dstMac
+			nlnh.Flags = netlink.NTF_MASTER
+			if nh.linkDst != "" {
+				nlnh.LinkIndex = iface.Attrs().Index
+			}
+			nlh.NeighDel(nlnh)
+		}
+	}
+
+	n.Lock()
+	for i, nh := range n.neighbors {
+		if nh.dstIP.Equal(dstIP) && bytes.Equal(nh.dstMac, dstMac) {
+			n.neighbors = append(n.neighbors[:i], n.neighbors[i+1:]...)
+			break
+		}
+	}
+	n.Unlock()
+	logrus.Debugf("Neighbor entry deleted for IP %v, mac %v osDelete:%t", dstIP, dstMac, osDelete)
+
+	return nil
+}
+
+func (n *networkNamespace) AddNeighbor(dstIP net.IP, dstMac net.HardwareAddr, force bool, options ...NeighOption) error {
+	var (
+		iface                  netlink.Link
+		err                    error
+		neighborAlreadyPresent bool
+	)
+
+	// If the namespace already has the neighbor entry but the AddNeighbor is called
+	// because of a miss notification (force flag) program the kernel anyway.
+	nh := n.findNeighbor(dstIP, dstMac)
+	if nh != nil {
+		neighborAlreadyPresent = true
+		logrus.Warnf("Neighbor entry already present for IP %v, mac %v neighbor:%+v forceUpdate:%t", dstIP, dstMac, nh, force)
+		if !force {
+			return NeighborSearchError{dstIP, dstMac, true}
+		}
+	}
+
+	nh = &neigh{
+		dstIP:  dstIP,
+		dstMac: dstMac,
+	}
+
+	nh.processNeighOptions(options...)
+
+	if nh.linkName != "" {
+		nh.linkDst = n.findDst(nh.linkName, false)
+		if nh.linkDst == "" {
+			return fmt.Errorf("could not find the interface with name %s", nh.linkName)
+		}
+	}
+
+	n.Lock()
+	nlh := n.nlHandle
+	n.Unlock()
+
+	if nh.linkDst != "" {
+		iface, err = nlh.LinkByName(nh.linkDst)
+		if err != nil {
+			return fmt.Errorf("could not find interface with destination name %s: %v", nh.linkDst, err)
+		}
+	}
+
+	nlnh := &netlink.Neigh{
+		IP:           dstIP,
+		HardwareAddr: dstMac,
+		State:        netlink.NUD_PERMANENT,
+		Family:       nh.family,
+	}
+
+	if nlnh.Family > 0 {
+		nlnh.Flags = netlink.NTF_SELF
+	}
+
+	if nh.linkDst != "" {
+		nlnh.LinkIndex = iface.Attrs().Index
+	}
+
+	if err := nlh.NeighSet(nlnh); err != nil {
+		return fmt.Errorf("could not add neighbor entry:%+v error:%v", nlnh, err)
+	}
+
+	if neighborAlreadyPresent {
+		return nil
+	}
+
+	n.Lock()
+	n.neighbors = append(n.neighbors, nh)
+	n.Unlock()
+	logrus.Debugf("Neighbor entry added for IP:%v, mac:%v on ifc:%s", dstIP, dstMac, nh.linkName)
+
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/neigh_windows.go b/vendor/github.com/docker/libnetwork/osl/neigh_windows.go
new file mode 100644
index 0000000000..280f006396
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/neigh_windows.go
@@ -0,0 +1,4 @@
+package osl
+
+// NeighOption is a function option type to set neighbor options
+type NeighOption func()
diff --git a/vendor/github.com/docker/libnetwork/osl/options_linux.go b/vendor/github.com/docker/libnetwork/osl/options_linux.go
new file mode 100644
index 0000000000..818669647f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/options_linux.go
@@ -0,0 +1,73 @@
+package osl
+
+import "net"
+
+func (nh *neigh) processNeighOptions(options ...NeighOption) {
+	for _, opt := range options {
+		if opt != nil {
+			opt(nh)
+		}
+	}
+}
+
+func (n *networkNamespace) LinkName(name string) NeighOption {
+	return func(nh *neigh) {
+		nh.linkName = name
+	}
+}
+
+func (n *networkNamespace) Family(family int) NeighOption {
+	return func(nh *neigh) {
+		nh.family = family
+	}
+}
+
+func (i *nwIface) processInterfaceOptions(options ...IfaceOption) {
+	for _, opt := range options {
+		if opt != nil {
+			opt(i)
+		}
+	}
+}
+
+func (n *networkNamespace) Bridge(isBridge bool) IfaceOption {
+	return func(i *nwIface) {
+		i.bridge = isBridge
+	}
+}
+
+func (n *networkNamespace) Master(name string) IfaceOption {
+	return func(i *nwIface) {
+		i.master = name
+	}
+}
+
+func (n *networkNamespace) MacAddress(mac net.HardwareAddr) IfaceOption {
+	return func(i *nwIface) {
+		i.mac = mac
+	}
+}
+
+func (n *networkNamespace) Address(addr *net.IPNet) IfaceOption {
+	return func(i *nwIface) {
+		i.address = addr
+	}
+}
+
+func (n *networkNamespace) AddressIPv6(addr *net.IPNet) IfaceOption {
+	return func(i *nwIface) {
+		i.addressIPv6 = addr
+	}
+}
+
+func (n *networkNamespace) LinkLocalAddresses(list []*net.IPNet) IfaceOption {
+	return func(i *nwIface) {
+		i.llAddrs = list
+	}
+}
+
+func (n *networkNamespace) Routes(routes []*net.IPNet) IfaceOption {
+	return func(i *nwIface) {
+		i.routes = routes
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/route_linux.go b/vendor/github.com/docker/libnetwork/osl/route_linux.go
new file mode 100644
index 0000000000..a9ff191b37
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/route_linux.go
@@ -0,0 +1,203 @@
+package osl
+
+import (
+	"fmt"
+	"net"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/vishvananda/netlink"
+)
+
+func (n *networkNamespace) Gateway() net.IP {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.gw
+}
+
+func (n *networkNamespace) GatewayIPv6() net.IP {
+	n.Lock()
+	defer n.Unlock()
+
+	return n.gwv6
+}
+
+func (n *networkNamespace) StaticRoutes() []*types.StaticRoute {
+	n.Lock()
+	defer n.Unlock()
+
+	routes := make([]*types.StaticRoute, len(n.staticRoutes))
+	for i, route := range n.staticRoutes {
+		r := route.GetCopy()
+		routes[i] = r
+	}
+
+	return routes
+}
+
+func (n *networkNamespace) setGateway(gw net.IP) {
+	n.Lock()
+	n.gw = gw
+	n.Unlock()
+}
+
+func (n *networkNamespace) setGatewayIPv6(gwv6 net.IP) {
+	n.Lock()
+	n.gwv6 = gwv6
+	n.Unlock()
+}
+
+func (n *networkNamespace) SetGateway(gw net.IP) error {
+	// Silently return if the gateway is empty
+	if len(gw) == 0 {
+		return nil
+	}
+
+	err := n.programGateway(gw, true)
+	if err == nil {
+		n.setGateway(gw)
+	}
+
+	return err
+}
+
+func (n *networkNamespace) UnsetGateway() error {
+	gw := n.Gateway()
+
+	// Silently return if the gateway is empty
+	if len(gw) == 0 {
+		return nil
+	}
+
+	err := n.programGateway(gw, false)
+	if err == nil {
+		n.setGateway(net.IP{})
+	}
+
+	return err
+}
+
+func (n *networkNamespace) programGateway(gw net.IP, isAdd bool) error {
+	gwRoutes, err := n.nlHandle.RouteGet(gw)
+	if err != nil {
+		return fmt.Errorf("route for the gateway %s could not be found: %v", gw, err)
+	}
+
+	var linkIndex int
+	for _, gwRoute := range gwRoutes {
+		if gwRoute.Gw == nil {
+			linkIndex = gwRoute.LinkIndex
+			break
+		}
+	}
+
+	if linkIndex == 0 {
+		return fmt.Errorf("Direct route for the gateway %s could not be found", gw)
+	}
+
+	if isAdd {
+		return n.nlHandle.RouteAdd(&netlink.Route{
+			Scope:     netlink.SCOPE_UNIVERSE,
+			LinkIndex: linkIndex,
+			Gw:        gw,
+		})
+	}
+
+	return n.nlHandle.RouteDel(&netlink.Route{
+		Scope:     netlink.SCOPE_UNIVERSE,
+		LinkIndex: linkIndex,
+		Gw:        gw,
+	})
+}
+
+// Program a route in to the namespace routing table.
+func (n *networkNamespace) programRoute(path string, dest *net.IPNet, nh net.IP) error {
+	gwRoutes, err := n.nlHandle.RouteGet(nh)
+	if err != nil {
+		return fmt.Errorf("route for the next hop %s could not be found: %v", nh, err)
+	}
+
+	return n.nlHandle.RouteAdd(&netlink.Route{
+		Scope:     netlink.SCOPE_UNIVERSE,
+		LinkIndex: gwRoutes[0].LinkIndex,
+		Gw:        nh,
+		Dst:       dest,
+	})
+}
+
+// Delete a route from the namespace routing table.
+func (n *networkNamespace) removeRoute(path string, dest *net.IPNet, nh net.IP) error {
+	gwRoutes, err := n.nlHandle.RouteGet(nh)
+	if err != nil {
+		return fmt.Errorf("route for the next hop could not be found: %v", err)
+	}
+
+	return n.nlHandle.RouteDel(&netlink.Route{
+		Scope:     netlink.SCOPE_UNIVERSE,
+		LinkIndex: gwRoutes[0].LinkIndex,
+		Gw:        nh,
+		Dst:       dest,
+	})
+}
+
+func (n *networkNamespace) SetGatewayIPv6(gwv6 net.IP) error {
+	// Silently return if the gateway is empty
+	if len(gwv6) == 0 {
+		return nil
+	}
+
+	err := n.programGateway(gwv6, true)
+	if err == nil {
+		n.setGatewayIPv6(gwv6)
+	}
+
+	return err
+}
+
+func (n *networkNamespace) UnsetGatewayIPv6() error {
+	gwv6 := n.GatewayIPv6()
+
+	// Silently return if the gateway is empty
+	if len(gwv6) == 0 {
+		return nil
+	}
+
+	err := n.programGateway(gwv6, false)
+	if err == nil {
+		n.Lock()
+		n.gwv6 = net.IP{}
+		n.Unlock()
+	}
+
+	return err
+}
+
+func (n *networkNamespace) AddStaticRoute(r *types.StaticRoute) error {
+	err := n.programRoute(n.nsPath(), r.Destination, r.NextHop)
+	if err == nil {
+		n.Lock()
+		n.staticRoutes = append(n.staticRoutes, r)
+		n.Unlock()
+	}
+	return err
+}
+
+func (n *networkNamespace) RemoveStaticRoute(r *types.StaticRoute) error {
+
+	err := n.removeRoute(n.nsPath(), r.Destination, r.NextHop)
+	if err == nil {
+		n.Lock()
+		lastIndex := len(n.staticRoutes) - 1
+		for i, v := range n.staticRoutes {
+			if v == r {
+				// Overwrite the route we're removing with the last element
+				n.staticRoutes[i] = n.staticRoutes[lastIndex]
+				// Shorten the slice to trim the extra element
+				n.staticRoutes = n.staticRoutes[:lastIndex]
+				break
+			}
+		}
+		n.Unlock()
+	}
+	return err
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/sandbox.go b/vendor/github.com/docker/libnetwork/osl/sandbox.go
new file mode 100644
index 0000000000..6ffc46775c
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/sandbox.go
@@ -0,0 +1,171 @@
+// Package osl describes structures and interfaces which abstract os entities
+package osl
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/types"
+)
+
+// Sandbox represents a network sandbox, identified by a specific key.  It
+// holds a list of Interfaces, routes etc, and more can be added dynamically.
+type Sandbox interface {
+	// The path where the network namespace is mounted.
+	Key() string
+
+	// Add an existing Interface to this sandbox. The operation will rename
+	// from the Interface SrcName to DstName as it moves, and reconfigure the
+	// interface according to the specified settings. The caller is expected
+	// to only provide a prefix for DstName. The AddInterface api will auto-generate
+	// an appropriate suffix for the DstName to disambiguate.
+	AddInterface(SrcName string, DstPrefix string, options ...IfaceOption) error
+
+	// Set default IPv4 gateway for the sandbox
+	SetGateway(gw net.IP) error
+
+	// Set default IPv6 gateway for the sandbox
+	SetGatewayIPv6(gw net.IP) error
+
+	// Unset the previously set default IPv4 gateway in the sandbox
+	UnsetGateway() error
+
+	// Unset the previously set default IPv6 gateway in the sandbox
+	UnsetGatewayIPv6() error
+
+	// AddLoopbackAliasIP adds the passed IP address to the sandbox loopback interface
+	AddLoopbackAliasIP(ip *net.IPNet) error
+
+	// RemoveLoopbackAliasIP removes the passed IP address from the sandbox loopback interface
+	RemoveLoopbackAliasIP(ip *net.IPNet) error
+
+	// Add a static route to the sandbox.
+	AddStaticRoute(*types.StaticRoute) error
+
+	// Remove a static route from the sandbox.
+	RemoveStaticRoute(*types.StaticRoute) error
+
+	// AddNeighbor adds a neighbor entry into the sandbox.
+	AddNeighbor(dstIP net.IP, dstMac net.HardwareAddr, force bool, option ...NeighOption) error
+
+	// DeleteNeighbor deletes neighbor entry from the sandbox.
+	DeleteNeighbor(dstIP net.IP, dstMac net.HardwareAddr, osDelete bool) error
+
+	// Returns an interface with methods to set neighbor options.
+	NeighborOptions() NeighborOptionSetter
+
+	// Returns an interface with methods to set interface options.
+	InterfaceOptions() IfaceOptionSetter
+
+	//Invoke
+	InvokeFunc(func()) error
+
+	// Returns an interface with methods to get sandbox state.
+	Info() Info
+
+	// Destroy the sandbox
+	Destroy() error
+
+	// restore sandbox
+	Restore(ifsopt map[string][]IfaceOption, routes []*types.StaticRoute, gw net.IP, gw6 net.IP) error
+}
+
+// NeighborOptionSetter interface defines the option setter methods for interface options
+type NeighborOptionSetter interface {
+	// LinkName returns an option setter to set the srcName of the link that should
+	// be used in the neighbor entry
+	LinkName(string) NeighOption
+
+	// Family returns an option setter to set the address family for the neighbor
+	// entry. eg. AF_BRIDGE
+	Family(int) NeighOption
+}
+
+// IfaceOptionSetter interface defines the option setter methods for interface options.
+type IfaceOptionSetter interface {
+	// Bridge returns an option setter to set if the interface is a bridge.
+	Bridge(bool) IfaceOption
+
+	// MacAddress returns an option setter to set the MAC address.
+	MacAddress(net.HardwareAddr) IfaceOption
+
+	// Address returns an option setter to set IPv4 address.
+	Address(*net.IPNet) IfaceOption
+
+	// Address returns an option setter to set IPv6 address.
+	AddressIPv6(*net.IPNet) IfaceOption
+
+	// LinkLocalAddresses returns an option setter to set the link-local IP addresses.
+	LinkLocalAddresses([]*net.IPNet) IfaceOption
+
+	// Master returns an option setter to set the master interface if any for this
+	// interface. The master interface name should refer to the srcname of a
+	// previously added interface of type bridge.
+	Master(string) IfaceOption
+
+	// Address returns an option setter to set interface routes.
+	Routes([]*net.IPNet) IfaceOption
+}
+
+// Info represents all possible information that
+// the driver wants to place in the sandbox which includes
+// interfaces, routes and gateway
+type Info interface {
+	// The collection of Interface previously added with the AddInterface
+	// method. Note that this doesn't include network interfaces added in any
+	// other way (such as the default loopback interface which is automatically
+	// created on creation of a sandbox).
+	Interfaces() []Interface
+
+	// IPv4 gateway for the sandbox.
+	Gateway() net.IP
+
+	// IPv6 gateway for the sandbox.
+	GatewayIPv6() net.IP
+
+	// Additional static routes for the sandbox.  (Note that directly
+	// connected routes are stored on the particular interface they refer to.)
+	StaticRoutes() []*types.StaticRoute
+
+	// TODO: Add ip tables etc.
+}
+
+// Interface represents the settings and identity of a network device. It is
+// used as a return type for Network.Link, and it is common practice for the
+// caller to use this information when moving interface SrcName from host
+// namespace to DstName in a different net namespace with the appropriate
+// network settings.
+type Interface interface {
+	// The name of the interface in the origin network namespace.
+	SrcName() string
+
+	// The name that will be assigned to the interface once moves inside a
+	// network namespace. When the caller passes in a DstName, it is only
+	// expected to pass a prefix. The name will modified with an appropriately
+	// auto-generated suffix.
+	DstName() string
+
+	// IPv4 address for the interface.
+	Address() *net.IPNet
+
+	// IPv6 address for the interface.
+	AddressIPv6() *net.IPNet
+
+	// LinkLocalAddresses returns the link-local IP addresses assigned to the interface.
+	LinkLocalAddresses() []*net.IPNet
+
+	// IP routes for the interface.
+	Routes() []*net.IPNet
+
+	// Bridge returns true if the interface is a bridge
+	Bridge() bool
+
+	// Master returns the srcname of the master interface for this interface.
+	Master() string
+
+	// Remove an interface from the sandbox by renaming to original name
+	// and moving it out of the sandbox.
+	Remove() error
+
+	// Statistics returns the statistics for this interface
+	Statistics() (*types.InterfaceStatistics, error)
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/sandbox_freebsd.go b/vendor/github.com/docker/libnetwork/osl/sandbox_freebsd.go
new file mode 100644
index 0000000000..e5bc6278ee
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/sandbox_freebsd.go
@@ -0,0 +1,44 @@
+package osl
+
+import "testing"
+
+// GenerateKey generates a sandbox key based on the passed
+// container id.
+func GenerateKey(containerID string) string {
+	maxLen := 12
+	if len(containerID) < maxLen {
+		maxLen = len(containerID)
+	}
+
+	return containerID[:maxLen]
+}
+
+// NewSandbox provides a new sandbox instance created in an os specific way
+// provided a key which uniquely identifies the sandbox
+func NewSandbox(key string, osCreate, isRestore bool) (Sandbox, error) {
+	return nil, nil
+}
+
+// GetSandboxForExternalKey returns sandbox object for the supplied path
+func GetSandboxForExternalKey(path string, key string) (Sandbox, error) {
+	return nil, nil
+}
+
+// GC triggers garbage collection of namespace path right away
+// and waits for it.
+func GC() {
+}
+
+// InitOSContext initializes OS context while configuring network resources
+func InitOSContext() func() {
+	return func() {}
+}
+
+// SetupTestOSContext sets up a separate test  OS context in which tests will be executed.
+func SetupTestOSContext(t *testing.T) func() {
+	return func() {}
+}
+
+// SetBasePath sets the base url prefix for the ns path
+func SetBasePath(path string) {
+}
diff --git a/vendor/github.com/docker/libnetwork/osl/sandbox_unsupported.go b/vendor/github.com/docker/libnetwork/osl/sandbox_unsupported.go
new file mode 100644
index 0000000000..51a656c806
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/osl/sandbox_unsupported.go
@@ -0,0 +1,22 @@
+// +build !linux,!windows,!freebsd
+
+package osl
+
+import "errors"
+
+var (
+	// ErrNotImplemented is for platforms which don't implement sandbox
+	ErrNotImplemented = errors.New("not implemented")
+)
+
+// NewSandbox provides a new sandbox instance created in an os specific way
+// provided a key which uniquely identifies the sandbox
+func NewSandbox(key string, osCreate, isRestore bool) (Sandbox, error) {
+	return nil, ErrNotImplemented
+}
+
+// GenerateKey generates a sandbox key based on the passed
+// container id.
+func GenerateKey(containerID string) string {
+	return ""
+}
diff --git a/vendor/github.com/docker/libnetwork/portallocator/portallocator.go b/vendor/github.com/docker/libnetwork/portallocator/portallocator.go
new file mode 100644
index 0000000000..9798d23eb1
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portallocator/portallocator.go
@@ -0,0 +1,249 @@
+package portallocator
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"sync"
+)
+
+const (
+	// DefaultPortRangeStart indicates the first port in port range
+	DefaultPortRangeStart = 49153
+	// DefaultPortRangeEnd indicates the last port in port range
+	DefaultPortRangeEnd = 65535
+)
+
+type ipMapping map[string]protoMap
+
+var (
+	// ErrAllPortsAllocated is returned when no more ports are available
+	ErrAllPortsAllocated = errors.New("all ports are allocated")
+	// ErrUnknownProtocol is returned when an unknown protocol was specified
+	ErrUnknownProtocol = errors.New("unknown protocol")
+	defaultIP          = net.ParseIP("0.0.0.0")
+	once               sync.Once
+	instance           *PortAllocator
+	createInstance     = func() { instance = newInstance() }
+)
+
+// ErrPortAlreadyAllocated is the returned error information when a requested port is already being used
+type ErrPortAlreadyAllocated struct {
+	ip   string
+	port int
+}
+
+func newErrPortAlreadyAllocated(ip string, port int) ErrPortAlreadyAllocated {
+	return ErrPortAlreadyAllocated{
+		ip:   ip,
+		port: port,
+	}
+}
+
+// IP returns the address to which the used port is associated
+func (e ErrPortAlreadyAllocated) IP() string {
+	return e.ip
+}
+
+// Port returns the value of the already used port
+func (e ErrPortAlreadyAllocated) Port() int {
+	return e.port
+}
+
+// IPPort returns the address and the port in the form ip:port
+func (e ErrPortAlreadyAllocated) IPPort() string {
+	return fmt.Sprintf("%s:%d", e.ip, e.port)
+}
+
+// Error is the implementation of error.Error interface
+func (e ErrPortAlreadyAllocated) Error() string {
+	return fmt.Sprintf("Bind for %s:%d failed: port is already allocated", e.ip, e.port)
+}
+
+type (
+	// PortAllocator manages the transport ports database
+	PortAllocator struct {
+		mutex sync.Mutex
+		ipMap ipMapping
+		Begin int
+		End   int
+	}
+	portRange struct {
+		begin int
+		end   int
+		last  int
+	}
+	portMap struct {
+		p            map[int]struct{}
+		defaultRange string
+		portRanges   map[string]*portRange
+	}
+	protoMap map[string]*portMap
+)
+
+// Get returns the default instance of PortAllocator
+func Get() *PortAllocator {
+	// Port Allocator is a singleton
+	// Note: Long term solution will be each PortAllocator will have access to
+	// the OS so that it can have up to date view of the OS port allocation.
+	// When this happens singleton behavior will be removed. Clients do not
+	// need to worry about this, they will not see a change in behavior.
+	once.Do(createInstance)
+	return instance
+}
+
+func newInstance() *PortAllocator {
+	start, end, err := getDynamicPortRange()
+	if err != nil {
+		start, end = DefaultPortRangeStart, DefaultPortRangeEnd
+	}
+	return &PortAllocator{
+		ipMap: ipMapping{},
+		Begin: start,
+		End:   end,
+	}
+}
+
+// RequestPort requests new port from global ports pool for specified ip and proto.
+// If port is 0 it returns first free port. Otherwise it checks port availability
+// in proto's pool and returns that port or error if port is already busy.
+func (p *PortAllocator) RequestPort(ip net.IP, proto string, port int) (int, error) {
+	return p.RequestPortInRange(ip, proto, port, port)
+}
+
+// RequestPortInRange requests new port from global ports pool for specified ip and proto.
+// If portStart and portEnd are 0 it returns the first free port in the default ephemeral range.
+// If portStart != portEnd it returns the first free port in the requested range.
+// Otherwise (portStart == portEnd) it checks port availability in the requested proto's port-pool
+// and returns that port or error if port is already busy.
+func (p *PortAllocator) RequestPortInRange(ip net.IP, proto string, portStart, portEnd int) (int, error) {
+	p.mutex.Lock()
+	defer p.mutex.Unlock()
+
+	if proto != "tcp" && proto != "udp" && proto != "sctp" {
+		return 0, ErrUnknownProtocol
+	}
+
+	if ip == nil {
+		ip = defaultIP
+	}
+	ipstr := ip.String()
+	protomap, ok := p.ipMap[ipstr]
+	if !ok {
+		protomap = protoMap{
+			"tcp":  p.newPortMap(),
+			"udp":  p.newPortMap(),
+			"sctp": p.newPortMap(),
+		}
+
+		p.ipMap[ipstr] = protomap
+	}
+	mapping := protomap[proto]
+	if portStart > 0 && portStart == portEnd {
+		if _, ok := mapping.p[portStart]; !ok {
+			mapping.p[portStart] = struct{}{}
+			return portStart, nil
+		}
+		return 0, newErrPortAlreadyAllocated(ipstr, portStart)
+	}
+
+	port, err := mapping.findPort(portStart, portEnd)
+	if err != nil {
+		return 0, err
+	}
+	return port, nil
+}
+
+// ReleasePort releases port from global ports pool for specified ip and proto.
+func (p *PortAllocator) ReleasePort(ip net.IP, proto string, port int) error {
+	p.mutex.Lock()
+	defer p.mutex.Unlock()
+
+	if ip == nil {
+		ip = defaultIP
+	}
+	protomap, ok := p.ipMap[ip.String()]
+	if !ok {
+		return nil
+	}
+	delete(protomap[proto].p, port)
+	return nil
+}
+
+func (p *PortAllocator) newPortMap() *portMap {
+	defaultKey := getRangeKey(p.Begin, p.End)
+	pm := &portMap{
+		p:            map[int]struct{}{},
+		defaultRange: defaultKey,
+		portRanges: map[string]*portRange{
+			defaultKey: newPortRange(p.Begin, p.End),
+		},
+	}
+	return pm
+}
+
+// ReleaseAll releases all ports for all ips.
+func (p *PortAllocator) ReleaseAll() error {
+	p.mutex.Lock()
+	p.ipMap = ipMapping{}
+	p.mutex.Unlock()
+	return nil
+}
+
+func getRangeKey(portStart, portEnd int) string {
+	return fmt.Sprintf("%d-%d", portStart, portEnd)
+}
+
+func newPortRange(portStart, portEnd int) *portRange {
+	return &portRange{
+		begin: portStart,
+		end:   portEnd,
+		last:  portEnd,
+	}
+}
+
+func (pm *portMap) getPortRange(portStart, portEnd int) (*portRange, error) {
+	var key string
+	if portStart == 0 && portEnd == 0 {
+		key = pm.defaultRange
+	} else {
+		key = getRangeKey(portStart, portEnd)
+		if portStart == portEnd ||
+			portStart == 0 || portEnd == 0 ||
+			portEnd < portStart {
+			return nil, fmt.Errorf("invalid port range: %s", key)
+		}
+	}
+
+	// Return existing port range, if already known.
+	if pr, exists := pm.portRanges[key]; exists {
+		return pr, nil
+	}
+
+	// Otherwise create a new port range.
+	pr := newPortRange(portStart, portEnd)
+	pm.portRanges[key] = pr
+	return pr, nil
+}
+
+func (pm *portMap) findPort(portStart, portEnd int) (int, error) {
+	pr, err := pm.getPortRange(portStart, portEnd)
+	if err != nil {
+		return 0, err
+	}
+	port := pr.last
+
+	for i := 0; i <= pr.end-pr.begin; i++ {
+		port++
+		if port > pr.end {
+			port = pr.begin
+		}
+
+		if _, ok := pm.p[port]; !ok {
+			pm.p[port] = struct{}{}
+			pr.last = port
+			return port, nil
+		}
+	}
+	return 0, ErrAllPortsAllocated
+}
diff --git a/vendor/github.com/docker/libnetwork/portallocator/portallocator_freebsd.go b/vendor/github.com/docker/libnetwork/portallocator/portallocator_freebsd.go
new file mode 100644
index 0000000000..97d7fbb49d
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portallocator/portallocator_freebsd.go
@@ -0,0 +1,42 @@
+package portallocator
+
+import (
+	"bytes"
+	"fmt"
+	"os/exec"
+)
+
+func getDynamicPortRange() (start int, end int, err error) {
+	portRangeKernelSysctl := []string{"net.inet.ip.portrange.hifirst", "net.ip.portrange.hilast"}
+	portRangeFallback := fmt.Sprintf("using fallback port range %d-%d", DefaultPortRangeStart, DefaultPortRangeEnd)
+	portRangeLowCmd := exec.Command("/sbin/sysctl", portRangeKernelSysctl[0])
+	var portRangeLowOut bytes.Buffer
+	portRangeLowCmd.Stdout = &portRangeLowOut
+	cmdErr := portRangeLowCmd.Run()
+	if cmdErr != nil {
+		return 0, 0, fmt.Errorf("port allocator - sysctl net.inet.ip.portrange.hifirst failed - %s: %v", portRangeFallback, err)
+	}
+	n, err := fmt.Sscanf(portRangeLowOut.String(), "%d", &start)
+	if n != 1 || err != nil {
+		if err == nil {
+			err = fmt.Errorf("unexpected count of parsed numbers (%d)", n)
+		}
+		return 0, 0, fmt.Errorf("port allocator - failed to parse system ephemeral port range start from %s - %s: %v", portRangeLowOut.String(), portRangeFallback, err)
+	}
+
+	portRangeHighCmd := exec.Command("/sbin/sysctl", portRangeKernelSysctl[1])
+	var portRangeHighOut bytes.Buffer
+	portRangeHighCmd.Stdout = &portRangeHighOut
+	cmdErr = portRangeHighCmd.Run()
+	if cmdErr != nil {
+		return 0, 0, fmt.Errorf("port allocator - sysctl net.inet.ip.portrange.hilast failed - %s: %v", portRangeFallback, err)
+	}
+	n, err = fmt.Sscanf(portRangeHighOut.String(), "%d", &end)
+	if n != 1 || err != nil {
+		if err == nil {
+			err = fmt.Errorf("unexpected count of parsed numbers (%d)", n)
+		}
+		return 0, 0, fmt.Errorf("port allocator - failed to parse system ephemeral port range end from %s - %s: %v", portRangeHighOut.String(), portRangeFallback, err)
+	}
+	return start, end, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/portallocator/portallocator_linux.go b/vendor/github.com/docker/libnetwork/portallocator/portallocator_linux.go
new file mode 100644
index 0000000000..687f6dabb7
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portallocator/portallocator_linux.go
@@ -0,0 +1,27 @@
+package portallocator
+
+import (
+	"bufio"
+	"fmt"
+	"os"
+)
+
+func getDynamicPortRange() (start int, end int, err error) {
+	const portRangeKernelParam = "/proc/sys/net/ipv4/ip_local_port_range"
+	portRangeFallback := fmt.Sprintf("using fallback port range %d-%d", DefaultPortRangeStart, DefaultPortRangeEnd)
+	file, err := os.Open(portRangeKernelParam)
+	if err != nil {
+		return 0, 0, fmt.Errorf("port allocator - %s due to error: %v", portRangeFallback, err)
+	}
+
+	defer file.Close()
+
+	n, err := fmt.Fscanf(bufio.NewReader(file), "%d\t%d", &start, &end)
+	if n != 2 || err != nil {
+		if err == nil {
+			err = fmt.Errorf("unexpected count of parsed numbers (%d)", n)
+		}
+		return 0, 0, fmt.Errorf("port allocator - failed to parse system ephemeral port range from %s - %s: %v", portRangeKernelParam, portRangeFallback, err)
+	}
+	return start, end, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/portmapper/mapper.go b/vendor/github.com/docker/libnetwork/portmapper/mapper.go
new file mode 100644
index 0000000000..7fa37b1fb6
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portmapper/mapper.go
@@ -0,0 +1,294 @@
+package portmapper
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"sync"
+
+	"github.com/docker/libnetwork/iptables"
+	"github.com/docker/libnetwork/portallocator"
+	"github.com/ishidawataru/sctp"
+	"github.com/sirupsen/logrus"
+)
+
+type mapping struct {
+	proto         string
+	userlandProxy userlandProxy
+	host          net.Addr
+	container     net.Addr
+}
+
+var newProxy = newProxyCommand
+
+var (
+	// ErrUnknownBackendAddressType refers to an unknown container or unsupported address type
+	ErrUnknownBackendAddressType = errors.New("unknown container address type not supported")
+	// ErrPortMappedForIP refers to a port already mapped to an ip address
+	ErrPortMappedForIP = errors.New("port is already mapped to ip")
+	// ErrPortNotMapped refers to an unmapped port
+	ErrPortNotMapped = errors.New("port is not mapped")
+	// ErrSCTPAddrNoIP refers to a SCTP address without IP address.
+	ErrSCTPAddrNoIP = errors.New("sctp address does not contain any IP address")
+)
+
+// PortMapper manages the network address translation
+type PortMapper struct {
+	chain      *iptables.ChainInfo
+	bridgeName string
+
+	// udp:ip:port
+	currentMappings map[string]*mapping
+	lock            sync.Mutex
+
+	proxyPath string
+
+	Allocator *portallocator.PortAllocator
+}
+
+// New returns a new instance of PortMapper
+func New(proxyPath string) *PortMapper {
+	return NewWithPortAllocator(portallocator.Get(), proxyPath)
+}
+
+// NewWithPortAllocator returns a new instance of PortMapper which will use the specified PortAllocator
+func NewWithPortAllocator(allocator *portallocator.PortAllocator, proxyPath string) *PortMapper {
+	return &PortMapper{
+		currentMappings: make(map[string]*mapping),
+		Allocator:       allocator,
+		proxyPath:       proxyPath,
+	}
+}
+
+// SetIptablesChain sets the specified chain into portmapper
+func (pm *PortMapper) SetIptablesChain(c *iptables.ChainInfo, bridgeName string) {
+	pm.chain = c
+	pm.bridgeName = bridgeName
+}
+
+// Map maps the specified container transport address to the host's network address and transport port
+func (pm *PortMapper) Map(container net.Addr, hostIP net.IP, hostPort int, useProxy bool) (host net.Addr, err error) {
+	return pm.MapRange(container, hostIP, hostPort, hostPort, useProxy)
+}
+
+// MapRange maps the specified container transport address to the host's network address and transport port range
+func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart, hostPortEnd int, useProxy bool) (host net.Addr, err error) {
+	pm.lock.Lock()
+	defer pm.lock.Unlock()
+
+	var (
+		m                 *mapping
+		proto             string
+		allocatedHostPort int
+	)
+
+	switch container.(type) {
+	case *net.TCPAddr:
+		proto = "tcp"
+		if allocatedHostPort, err = pm.Allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
+			return nil, err
+		}
+
+		m = &mapping{
+			proto:     proto,
+			host:      &net.TCPAddr{IP: hostIP, Port: allocatedHostPort},
+			container: container,
+		}
+
+		if useProxy {
+			m.userlandProxy, err = newProxy(proto, hostIP, allocatedHostPort, container.(*net.TCPAddr).IP, container.(*net.TCPAddr).Port, pm.proxyPath)
+			if err != nil {
+				return nil, err
+			}
+		} else {
+			m.userlandProxy, err = newDummyProxy(proto, hostIP, allocatedHostPort)
+			if err != nil {
+				return nil, err
+			}
+		}
+	case *net.UDPAddr:
+		proto = "udp"
+		if allocatedHostPort, err = pm.Allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
+			return nil, err
+		}
+
+		m = &mapping{
+			proto:     proto,
+			host:      &net.UDPAddr{IP: hostIP, Port: allocatedHostPort},
+			container: container,
+		}
+
+		if useProxy {
+			m.userlandProxy, err = newProxy(proto, hostIP, allocatedHostPort, container.(*net.UDPAddr).IP, container.(*net.UDPAddr).Port, pm.proxyPath)
+			if err != nil {
+				return nil, err
+			}
+		} else {
+			m.userlandProxy, err = newDummyProxy(proto, hostIP, allocatedHostPort)
+			if err != nil {
+				return nil, err
+			}
+		}
+	case *sctp.SCTPAddr:
+		proto = "sctp"
+		if allocatedHostPort, err = pm.Allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
+			return nil, err
+		}
+
+		m = &mapping{
+			proto:     proto,
+			host:      &sctp.SCTPAddr{IP: []net.IP{hostIP}, Port: allocatedHostPort},
+			container: container,
+		}
+
+		if useProxy {
+			sctpAddr := container.(*sctp.SCTPAddr)
+			if len(sctpAddr.IP) == 0 {
+				return nil, ErrSCTPAddrNoIP
+			}
+			m.userlandProxy, err = newProxy(proto, hostIP, allocatedHostPort, sctpAddr.IP[0], sctpAddr.Port, pm.proxyPath)
+			if err != nil {
+				return nil, err
+			}
+		} else {
+			m.userlandProxy, err = newDummyProxy(proto, hostIP, allocatedHostPort)
+			if err != nil {
+				return nil, err
+			}
+		}
+	default:
+		return nil, ErrUnknownBackendAddressType
+	}
+
+	// release the allocated port on any further error during return.
+	defer func() {
+		if err != nil {
+			pm.Allocator.ReleasePort(hostIP, proto, allocatedHostPort)
+		}
+	}()
+
+	key := getKey(m.host)
+	if _, exists := pm.currentMappings[key]; exists {
+		return nil, ErrPortMappedForIP
+	}
+
+	containerIP, containerPort := getIPAndPort(m.container)
+	if hostIP.To4() != nil {
+		if err := pm.forward(iptables.Append, m.proto, hostIP, allocatedHostPort, containerIP.String(), containerPort); err != nil {
+			return nil, err
+		}
+	}
+
+	cleanup := func() error {
+		// need to undo the iptables rules before we return
+		m.userlandProxy.Stop()
+		if hostIP.To4() != nil {
+			pm.forward(iptables.Delete, m.proto, hostIP, allocatedHostPort, containerIP.String(), containerPort)
+			if err := pm.Allocator.ReleasePort(hostIP, m.proto, allocatedHostPort); err != nil {
+				return err
+			}
+		}
+
+		return nil
+	}
+
+	if err := m.userlandProxy.Start(); err != nil {
+		if err := cleanup(); err != nil {
+			return nil, fmt.Errorf("Error during port allocation cleanup: %v", err)
+		}
+		return nil, err
+	}
+
+	pm.currentMappings[key] = m
+	return m.host, nil
+}
+
+// Unmap removes stored mapping for the specified host transport address
+func (pm *PortMapper) Unmap(host net.Addr) error {
+	pm.lock.Lock()
+	defer pm.lock.Unlock()
+
+	key := getKey(host)
+	data, exists := pm.currentMappings[key]
+	if !exists {
+		return ErrPortNotMapped
+	}
+
+	if data.userlandProxy != nil {
+		data.userlandProxy.Stop()
+	}
+
+	delete(pm.currentMappings, key)
+
+	containerIP, containerPort := getIPAndPort(data.container)
+	hostIP, hostPort := getIPAndPort(data.host)
+	if err := pm.forward(iptables.Delete, data.proto, hostIP, hostPort, containerIP.String(), containerPort); err != nil {
+		logrus.Errorf("Error on iptables delete: %s", err)
+	}
+
+	switch a := host.(type) {
+	case *net.TCPAddr:
+		return pm.Allocator.ReleasePort(a.IP, "tcp", a.Port)
+	case *net.UDPAddr:
+		return pm.Allocator.ReleasePort(a.IP, "udp", a.Port)
+	case *sctp.SCTPAddr:
+		if len(a.IP) == 0 {
+			return ErrSCTPAddrNoIP
+		}
+		return pm.Allocator.ReleasePort(a.IP[0], "sctp", a.Port)
+	}
+	return ErrUnknownBackendAddressType
+}
+
+//ReMapAll will re-apply all port mappings
+func (pm *PortMapper) ReMapAll() {
+	pm.lock.Lock()
+	defer pm.lock.Unlock()
+	logrus.Debugln("Re-applying all port mappings.")
+	for _, data := range pm.currentMappings {
+		containerIP, containerPort := getIPAndPort(data.container)
+		hostIP, hostPort := getIPAndPort(data.host)
+		if err := pm.forward(iptables.Append, data.proto, hostIP, hostPort, containerIP.String(), containerPort); err != nil {
+			logrus.Errorf("Error on iptables add: %s", err)
+		}
+	}
+}
+
+func getKey(a net.Addr) string {
+	switch t := a.(type) {
+	case *net.TCPAddr:
+		return fmt.Sprintf("%s:%d/%s", t.IP.String(), t.Port, "tcp")
+	case *net.UDPAddr:
+		return fmt.Sprintf("%s:%d/%s", t.IP.String(), t.Port, "udp")
+	case *sctp.SCTPAddr:
+		if len(t.IP) == 0 {
+			logrus.Error(ErrSCTPAddrNoIP)
+			return ""
+		}
+		return fmt.Sprintf("%s:%d/%s", t.IP[0].String(), t.Port, "sctp")
+	}
+	return ""
+}
+
+func getIPAndPort(a net.Addr) (net.IP, int) {
+	switch t := a.(type) {
+	case *net.TCPAddr:
+		return t.IP, t.Port
+	case *net.UDPAddr:
+		return t.IP, t.Port
+	case *sctp.SCTPAddr:
+		if len(t.IP) == 0 {
+			logrus.Error(ErrSCTPAddrNoIP)
+			return nil, 0
+		}
+		return t.IP[0], t.Port
+	}
+	return nil, 0
+}
+
+func (pm *PortMapper) forward(action iptables.Action, proto string, sourceIP net.IP, sourcePort int, containerIP string, containerPort int) error {
+	if pm.chain == nil {
+		return nil
+	}
+	return pm.chain.Forward(action, sourceIP, sourcePort, proto, containerIP, containerPort, pm.bridgeName)
+}
diff --git a/vendor/github.com/docker/libnetwork/portmapper/mock_proxy.go b/vendor/github.com/docker/libnetwork/portmapper/mock_proxy.go
new file mode 100644
index 0000000000..ceb7b02926
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portmapper/mock_proxy.go
@@ -0,0 +1,18 @@
+package portmapper
+
+import "net"
+
+func newMockProxyCommand(proto string, hostIP net.IP, hostPort int, containerIP net.IP, containerPort int, userlandProxyPath string) (userlandProxy, error) {
+	return &mockProxyCommand{}, nil
+}
+
+type mockProxyCommand struct {
+}
+
+func (p *mockProxyCommand) Start() error {
+	return nil
+}
+
+func (p *mockProxyCommand) Stop() error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/portmapper/proxy.go b/vendor/github.com/docker/libnetwork/portmapper/proxy.go
new file mode 100644
index 0000000000..1183c33a7e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portmapper/proxy.go
@@ -0,0 +1,131 @@
+package portmapper
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"os"
+	"os/exec"
+	"time"
+
+	"github.com/ishidawataru/sctp"
+)
+
+var userlandProxyCommandName = "docker-proxy"
+
+type userlandProxy interface {
+	Start() error
+	Stop() error
+}
+
+// proxyCommand wraps an exec.Cmd to run the userland TCP and UDP
+// proxies as separate processes.
+type proxyCommand struct {
+	cmd *exec.Cmd
+}
+
+func (p *proxyCommand) Start() error {
+	r, w, err := os.Pipe()
+	if err != nil {
+		return fmt.Errorf("proxy unable to open os.Pipe %s", err)
+	}
+	defer r.Close()
+	p.cmd.ExtraFiles = []*os.File{w}
+	if err := p.cmd.Start(); err != nil {
+		return err
+	}
+	w.Close()
+
+	errchan := make(chan error, 1)
+	go func() {
+		buf := make([]byte, 2)
+		r.Read(buf)
+
+		if string(buf) != "0\n" {
+			errStr, err := ioutil.ReadAll(r)
+			if err != nil {
+				errchan <- fmt.Errorf("Error reading exit status from userland proxy: %v", err)
+				return
+			}
+
+			errchan <- fmt.Errorf("Error starting userland proxy: %s", errStr)
+			return
+		}
+		errchan <- nil
+	}()
+
+	select {
+	case err := <-errchan:
+		return err
+	case <-time.After(16 * time.Second):
+		return fmt.Errorf("Timed out proxy starting the userland proxy")
+	}
+}
+
+func (p *proxyCommand) Stop() error {
+	if p.cmd.Process != nil {
+		if err := p.cmd.Process.Signal(os.Interrupt); err != nil {
+			return err
+		}
+		return p.cmd.Wait()
+	}
+	return nil
+}
+
+// dummyProxy just listen on some port, it is needed to prevent accidental
+// port allocations on bound port, because without userland proxy we using
+// iptables rules and not net.Listen
+type dummyProxy struct {
+	listener io.Closer
+	addr     net.Addr
+}
+
+func newDummyProxy(proto string, hostIP net.IP, hostPort int) (userlandProxy, error) {
+	switch proto {
+	case "tcp":
+		addr := &net.TCPAddr{IP: hostIP, Port: hostPort}
+		return &dummyProxy{addr: addr}, nil
+	case "udp":
+		addr := &net.UDPAddr{IP: hostIP, Port: hostPort}
+		return &dummyProxy{addr: addr}, nil
+	case "sctp":
+		addr := &sctp.SCTPAddr{IP: []net.IP{hostIP}, Port: hostPort}
+		return &dummyProxy{addr: addr}, nil
+	default:
+		return nil, fmt.Errorf("Unknown addr type: %s", proto)
+	}
+}
+
+func (p *dummyProxy) Start() error {
+	switch addr := p.addr.(type) {
+	case *net.TCPAddr:
+		l, err := net.ListenTCP("tcp", addr)
+		if err != nil {
+			return err
+		}
+		p.listener = l
+	case *net.UDPAddr:
+		l, err := net.ListenUDP("udp", addr)
+		if err != nil {
+			return err
+		}
+		p.listener = l
+	case *sctp.SCTPAddr:
+		l, err := sctp.ListenSCTP("sctp", addr)
+		if err != nil {
+			return err
+		}
+		p.listener = l
+	default:
+		return fmt.Errorf("Unknown addr type: %T", p.addr)
+	}
+	return nil
+}
+
+func (p *dummyProxy) Stop() error {
+	if p.listener != nil {
+		return p.listener.Close()
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/portmapper/proxy_linux.go b/vendor/github.com/docker/libnetwork/portmapper/proxy_linux.go
new file mode 100644
index 0000000000..947cd0ba4b
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/portmapper/proxy_linux.go
@@ -0,0 +1,38 @@
+package portmapper
+
+import (
+	"net"
+	"os/exec"
+	"strconv"
+	"syscall"
+)
+
+func newProxyCommand(proto string, hostIP net.IP, hostPort int, containerIP net.IP, containerPort int, proxyPath string) (userlandProxy, error) {
+	path := proxyPath
+	if proxyPath == "" {
+		cmd, err := exec.LookPath(userlandProxyCommandName)
+		if err != nil {
+			return nil, err
+		}
+		path = cmd
+	}
+
+	args := []string{
+		path,
+		"-proto", proto,
+		"-host-ip", hostIP.String(),
+		"-host-port", strconv.Itoa(hostPort),
+		"-container-ip", containerIP.String(),
+		"-container-port", strconv.Itoa(containerPort),
+	}
+
+	return &proxyCommand{
+		cmd: &exec.Cmd{
+			Path: path,
+			Args: args,
+			SysProcAttr: &syscall.SysProcAttr{
+				Pdeathsig: syscall.SIGTERM, // send a sigterm to the proxy if the daemon process dies
+			},
+		},
+	}, nil
+}
diff --git a/vendor/github.com/docker/libnetwork/resolvconf/dns/resolvconf.go b/vendor/github.com/docker/libnetwork/resolvconf/dns/resolvconf.go
new file mode 100644
index 0000000000..e348bc57f5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/resolvconf/dns/resolvconf.go
@@ -0,0 +1,26 @@
+package dns
+
+import (
+	"regexp"
+)
+
+// IPLocalhost is a regex pattern for IPv4 or IPv6 loopback range.
+const IPLocalhost = `((127\.([0-9]{1,3}\.){2}[0-9]{1,3})|(::1)$)`
+
+// IPv4Localhost is a regex pattern for IPv4 localhost address range.
+const IPv4Localhost = `(127\.([0-9]{1,3}\.){2}[0-9]{1,3})`
+
+var localhostIPRegexp = regexp.MustCompile(IPLocalhost)
+var localhostIPv4Regexp = regexp.MustCompile(IPv4Localhost)
+
+// IsLocalhost returns true if ip matches the localhost IP regular expression.
+// Used for determining if nameserver settings are being passed which are
+// localhost addresses
+func IsLocalhost(ip string) bool {
+	return localhostIPRegexp.MatchString(ip)
+}
+
+// IsIPv4Localhost returns true if ip matches the IPv4 localhost regular expression.
+func IsIPv4Localhost(ip string) bool {
+	return localhostIPv4Regexp.MatchString(ip)
+}
diff --git a/vendor/github.com/docker/libnetwork/resolvconf/resolvconf.go b/vendor/github.com/docker/libnetwork/resolvconf/resolvconf.go
new file mode 100644
index 0000000000..5cb251b131
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/resolvconf/resolvconf.go
@@ -0,0 +1,254 @@
+// Package resolvconf provides utility code to query and update DNS configuration in /etc/resolv.conf
+package resolvconf
+
+import (
+	"bytes"
+	"io/ioutil"
+	"regexp"
+	"strings"
+	"sync"
+
+	"github.com/docker/docker/pkg/ioutils"
+	"github.com/docker/libnetwork/resolvconf/dns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+var (
+	// Note: the default IPv4 & IPv6 resolvers are set to Google's Public DNS
+	defaultIPv4Dns = []string{"nameserver 8.8.8.8", "nameserver 8.8.4.4"}
+	defaultIPv6Dns = []string{"nameserver 2001:4860:4860::8888", "nameserver 2001:4860:4860::8844"}
+	ipv4NumBlock   = `(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)`
+	ipv4Address    = `(` + ipv4NumBlock + `\.){3}` + ipv4NumBlock
+	// This is not an IPv6 address verifier as it will accept a super-set of IPv6, and also
+	// will *not match* IPv4-Embedded IPv6 Addresses (RFC6052), but that and other variants
+	// -- e.g. other link-local types -- either won't work in containers or are unnecessary.
+	// For readability and sufficiency for Docker purposes this seemed more reasonable than a
+	// 1000+ character regexp with exact and complete IPv6 validation
+	ipv6Address = `([0-9A-Fa-f]{0,4}:){2,7}([0-9A-Fa-f]{0,4})(%\w+)?`
+
+	localhostNSRegexp = regexp.MustCompile(`(?m)^nameserver\s+` + dns.IPLocalhost + `\s*\n*`)
+	nsIPv6Regexp      = regexp.MustCompile(`(?m)^nameserver\s+` + ipv6Address + `\s*\n*`)
+	nsRegexp          = regexp.MustCompile(`^\s*nameserver\s*((` + ipv4Address + `)|(` + ipv6Address + `))\s*$`)
+	nsIPv6Regexpmatch = regexp.MustCompile(`^\s*nameserver\s*((` + ipv6Address + `))\s*$`)
+	nsIPv4Regexpmatch = regexp.MustCompile(`^\s*nameserver\s*((` + ipv4Address + `))\s*$`)
+	searchRegexp      = regexp.MustCompile(`^\s*search\s*(([^\s]+\s*)*)$`)
+	optionsRegexp     = regexp.MustCompile(`^\s*options\s*(([^\s]+\s*)*)$`)
+)
+
+var lastModified struct {
+	sync.Mutex
+	sha256   string
+	contents []byte
+}
+
+// File contains the resolv.conf content and its hash
+type File struct {
+	Content []byte
+	Hash    string
+}
+
+// Get returns the contents of /etc/resolv.conf and its hash
+func Get() (*File, error) {
+	resolv, err := ioutil.ReadFile("/etc/resolv.conf")
+	if err != nil {
+		return nil, err
+	}
+	hash, err := ioutils.HashData(bytes.NewReader(resolv))
+	if err != nil {
+		return nil, err
+	}
+	return &File{Content: resolv, Hash: hash}, nil
+}
+
+// GetSpecific returns the contents of the user specified resolv.conf file and its hash
+func GetSpecific(path string) (*File, error) {
+	resolv, err := ioutil.ReadFile(path)
+	if err != nil {
+		return nil, err
+	}
+	hash, err := ioutils.HashData(bytes.NewReader(resolv))
+	if err != nil {
+		return nil, err
+	}
+	return &File{Content: resolv, Hash: hash}, nil
+}
+
+// GetIfChanged retrieves the host /etc/resolv.conf file, checks against the last hash
+// and, if modified since last check, returns the bytes and new hash.
+// This feature is used by the resolv.conf updater for containers
+func GetIfChanged() (*File, error) {
+	lastModified.Lock()
+	defer lastModified.Unlock()
+
+	resolv, err := ioutil.ReadFile("/etc/resolv.conf")
+	if err != nil {
+		return nil, err
+	}
+	newHash, err := ioutils.HashData(bytes.NewReader(resolv))
+	if err != nil {
+		return nil, err
+	}
+	if lastModified.sha256 != newHash {
+		lastModified.sha256 = newHash
+		lastModified.contents = resolv
+		return &File{Content: resolv, Hash: newHash}, nil
+	}
+	// nothing changed, so return no data
+	return nil, nil
+}
+
+// GetLastModified retrieves the last used contents and hash of the host resolv.conf.
+// Used by containers updating on restart
+func GetLastModified() *File {
+	lastModified.Lock()
+	defer lastModified.Unlock()
+
+	return &File{Content: lastModified.contents, Hash: lastModified.sha256}
+}
+
+// FilterResolvDNS cleans up the config in resolvConf.  It has two main jobs:
+// 1. It looks for localhost (127.*|::1) entries in the provided
+//    resolv.conf, removing local nameserver entries, and, if the resulting
+//    cleaned config has no defined nameservers left, adds default DNS entries
+// 2. Given the caller provides the enable/disable state of IPv6, the filter
+//    code will remove all IPv6 nameservers if it is not enabled for containers
+//
+func FilterResolvDNS(resolvConf []byte, ipv6Enabled bool) (*File, error) {
+	cleanedResolvConf := localhostNSRegexp.ReplaceAll(resolvConf, []byte{})
+	// if IPv6 is not enabled, also clean out any IPv6 address nameserver
+	if !ipv6Enabled {
+		cleanedResolvConf = nsIPv6Regexp.ReplaceAll(cleanedResolvConf, []byte{})
+	}
+	// if the resulting resolvConf has no more nameservers defined, add appropriate
+	// default DNS servers for IPv4 and (optionally) IPv6
+	if len(GetNameservers(cleanedResolvConf, types.IP)) == 0 {
+		logrus.Infof("No non-localhost DNS nameservers are left in resolv.conf. Using default external servers: %v", defaultIPv4Dns)
+		dns := defaultIPv4Dns
+		if ipv6Enabled {
+			logrus.Infof("IPv6 enabled; Adding default IPv6 external servers: %v", defaultIPv6Dns)
+			dns = append(dns, defaultIPv6Dns...)
+		}
+		cleanedResolvConf = append(cleanedResolvConf, []byte("\n"+strings.Join(dns, "\n"))...)
+	}
+	hash, err := ioutils.HashData(bytes.NewReader(cleanedResolvConf))
+	if err != nil {
+		return nil, err
+	}
+	return &File{Content: cleanedResolvConf, Hash: hash}, nil
+}
+
+// getLines parses input into lines and strips away comments.
+func getLines(input []byte, commentMarker []byte) [][]byte {
+	lines := bytes.Split(input, []byte("\n"))
+	var output [][]byte
+	for _, currentLine := range lines {
+		var commentIndex = bytes.Index(currentLine, commentMarker)
+		if commentIndex == -1 {
+			output = append(output, currentLine)
+		} else {
+			output = append(output, currentLine[:commentIndex])
+		}
+	}
+	return output
+}
+
+// GetNameservers returns nameservers (if any) listed in /etc/resolv.conf
+func GetNameservers(resolvConf []byte, kind int) []string {
+	nameservers := []string{}
+	for _, line := range getLines(resolvConf, []byte("#")) {
+		var ns [][]byte
+		if kind == types.IP {
+			ns = nsRegexp.FindSubmatch(line)
+		} else if kind == types.IPv4 {
+			ns = nsIPv4Regexpmatch.FindSubmatch(line)
+		} else if kind == types.IPv6 {
+			ns = nsIPv6Regexpmatch.FindSubmatch(line)
+		}
+		if len(ns) > 0 {
+			nameservers = append(nameservers, string(ns[1]))
+		}
+	}
+	return nameservers
+}
+
+// GetNameserversAsCIDR returns nameservers (if any) listed in
+// /etc/resolv.conf as CIDR blocks (e.g., "1.2.3.4/32")
+// This function's output is intended for net.ParseCIDR
+func GetNameserversAsCIDR(resolvConf []byte) []string {
+	nameservers := []string{}
+	for _, nameserver := range GetNameservers(resolvConf, types.IP) {
+		var address string
+		// If IPv6, strip zone if present
+		if strings.Contains(nameserver, ":") {
+			address = strings.Split(nameserver, "%")[0] + "/128"
+		} else {
+			address = nameserver + "/32"
+		}
+		nameservers = append(nameservers, address)
+	}
+	return nameservers
+}
+
+// GetSearchDomains returns search domains (if any) listed in /etc/resolv.conf
+// If more than one search line is encountered, only the contents of the last
+// one is returned.
+func GetSearchDomains(resolvConf []byte) []string {
+	domains := []string{}
+	for _, line := range getLines(resolvConf, []byte("#")) {
+		match := searchRegexp.FindSubmatch(line)
+		if match == nil {
+			continue
+		}
+		domains = strings.Fields(string(match[1]))
+	}
+	return domains
+}
+
+// GetOptions returns options (if any) listed in /etc/resolv.conf
+// If more than one options line is encountered, only the contents of the last
+// one is returned.
+func GetOptions(resolvConf []byte) []string {
+	options := []string{}
+	for _, line := range getLines(resolvConf, []byte("#")) {
+		match := optionsRegexp.FindSubmatch(line)
+		if match == nil {
+			continue
+		}
+		options = strings.Fields(string(match[1]))
+	}
+	return options
+}
+
+// Build writes a configuration file to path containing a "nameserver" entry
+// for every element in dns, a "search" entry for every element in
+// dnsSearch, and an "options" entry for every element in dnsOptions.
+func Build(path string, dns, dnsSearch, dnsOptions []string) (*File, error) {
+	content := bytes.NewBuffer(nil)
+	if len(dnsSearch) > 0 {
+		if searchString := strings.Join(dnsSearch, " "); strings.Trim(searchString, " ") != "." {
+			if _, err := content.WriteString("search " + searchString + "\n"); err != nil {
+				return nil, err
+			}
+		}
+	}
+	for _, dns := range dns {
+		if _, err := content.WriteString("nameserver " + dns + "\n"); err != nil {
+			return nil, err
+		}
+	}
+	if len(dnsOptions) > 0 {
+		if optsString := strings.Join(dnsOptions, " "); strings.Trim(optsString, " ") != "" {
+			if _, err := content.WriteString("options " + optsString + "\n"); err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	hash, err := ioutils.HashData(bytes.NewReader(content.Bytes()))
+	if err != nil {
+		return nil, err
+	}
+
+	return &File{Content: content.Bytes(), Hash: hash}, ioutil.WriteFile(path, content.Bytes(), 0644)
+}
diff --git a/vendor/github.com/docker/libnetwork/resolver.go b/vendor/github.com/docker/libnetwork/resolver.go
new file mode 100644
index 0000000000..e420905350
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/resolver.go
@@ -0,0 +1,555 @@
+package libnetwork
+
+import (
+	"fmt"
+	"math/rand"
+	"net"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/miekg/dns"
+	"github.com/sirupsen/logrus"
+)
+
+// Resolver represents the embedded DNS server in Docker. It operates
+// by listening on container's loopback interface for DNS queries.
+type Resolver interface {
+	// Start starts the name server for the container
+	Start() error
+	// Stop stops the name server for the container. Stopped resolver
+	// can be reused after running the SetupFunc again.
+	Stop()
+	// SetupFunc() provides the setup function that should be run
+	// in the container's network namespace.
+	SetupFunc(int) func()
+	// NameServer() returns the IP of the DNS resolver for the
+	// containers.
+	NameServer() string
+	// SetExtServers configures the external nameservers the resolver
+	// should use to forward queries
+	SetExtServers([]extDNSEntry)
+	// ResolverOptions returns resolv.conf options that should be set
+	ResolverOptions() []string
+}
+
+// DNSBackend represents a backend DNS resolver used for DNS name
+// resolution. All the queries to the resolver are forwared to the
+// backend resolver.
+type DNSBackend interface {
+	// ResolveName resolves a service name to an IPv4 or IPv6 address by searching
+	// the networks the sandbox is connected to. For IPv6 queries, second return
+	// value will be true if the name exists in docker domain but doesn't have an
+	// IPv6 address. Such queries shouldn't be forwarded to external nameservers.
+	ResolveName(name string, iplen int) ([]net.IP, bool)
+	// ResolveIP returns the service name for the passed in IP. IP is in reverse dotted
+	// notation; the format used for DNS PTR records
+	ResolveIP(name string) string
+	// ResolveService returns all the backend details about the containers or hosts
+	// backing a service. Its purpose is to satisfy an SRV query
+	ResolveService(name string) ([]*net.SRV, []net.IP)
+	// ExecFunc allows a function to be executed in the context of the backend
+	// on behalf of the resolver.
+	ExecFunc(f func()) error
+	//NdotsSet queries the backends ndots dns option settings
+	NdotsSet() bool
+	// HandleQueryResp passes the name & IP from a response to the backend. backend
+	// can use it to maintain any required state about the resolution
+	HandleQueryResp(name string, ip net.IP)
+}
+
+const (
+	dnsPort         = "53"
+	ptrIPv4domain   = ".in-addr.arpa."
+	ptrIPv6domain   = ".ip6.arpa."
+	respTTL         = 600
+	maxExtDNS       = 3 //max number of external servers to try
+	extIOTimeout    = 4 * time.Second
+	defaultRespSize = 512
+	maxConcurrent   = 100
+	logInterval     = 2 * time.Second
+)
+
+type extDNSEntry struct {
+	IPStr        string
+	HostLoopback bool
+}
+
+// resolver implements the Resolver interface
+type resolver struct {
+	backend       DNSBackend
+	extDNSList    [maxExtDNS]extDNSEntry
+	server        *dns.Server
+	conn          *net.UDPConn
+	tcpServer     *dns.Server
+	tcpListen     *net.TCPListener
+	err           error
+	count         int32
+	tStamp        time.Time
+	queryLock     sync.Mutex
+	listenAddress string
+	proxyDNS      bool
+	resolverKey   string
+	startCh       chan struct{}
+}
+
+func init() {
+	rand.Seed(time.Now().Unix())
+}
+
+// NewResolver creates a new instance of the Resolver
+func NewResolver(address string, proxyDNS bool, resolverKey string, backend DNSBackend) Resolver {
+	return &resolver{
+		backend:       backend,
+		proxyDNS:      proxyDNS,
+		listenAddress: address,
+		resolverKey:   resolverKey,
+		err:           fmt.Errorf("setup not done yet"),
+		startCh:       make(chan struct{}, 1),
+	}
+}
+
+func (r *resolver) SetupFunc(port int) func() {
+	return (func() {
+		var err error
+
+		// DNS operates primarily on UDP
+		addr := &net.UDPAddr{
+			IP:   net.ParseIP(r.listenAddress),
+			Port: port,
+		}
+
+		r.conn, err = net.ListenUDP("udp", addr)
+		if err != nil {
+			r.err = fmt.Errorf("error in opening name server socket %v", err)
+			return
+		}
+
+		// Listen on a TCP as well
+		tcpaddr := &net.TCPAddr{
+			IP:   net.ParseIP(r.listenAddress),
+			Port: port,
+		}
+
+		r.tcpListen, err = net.ListenTCP("tcp", tcpaddr)
+		if err != nil {
+			r.err = fmt.Errorf("error in opening name TCP server socket %v", err)
+			return
+		}
+		r.err = nil
+	})
+}
+
+func (r *resolver) Start() error {
+	r.startCh <- struct{}{}
+	defer func() { <-r.startCh }()
+
+	// make sure the resolver has been setup before starting
+	if r.err != nil {
+		return r.err
+	}
+
+	if err := r.setupIPTable(); err != nil {
+		return fmt.Errorf("setting up IP table rules failed: %v", err)
+	}
+
+	s := &dns.Server{Handler: r, PacketConn: r.conn}
+	r.server = s
+	go func() {
+		s.ActivateAndServe()
+	}()
+
+	tcpServer := &dns.Server{Handler: r, Listener: r.tcpListen}
+	r.tcpServer = tcpServer
+	go func() {
+		tcpServer.ActivateAndServe()
+	}()
+	return nil
+}
+
+func (r *resolver) Stop() {
+	r.startCh <- struct{}{}
+	defer func() { <-r.startCh }()
+
+	if r.server != nil {
+		r.server.Shutdown()
+	}
+	if r.tcpServer != nil {
+		r.tcpServer.Shutdown()
+	}
+	r.conn = nil
+	r.tcpServer = nil
+	r.err = fmt.Errorf("setup not done yet")
+	r.tStamp = time.Time{}
+	r.count = 0
+	r.queryLock = sync.Mutex{}
+}
+
+func (r *resolver) SetExtServers(extDNS []extDNSEntry) {
+	l := len(extDNS)
+	if l > maxExtDNS {
+		l = maxExtDNS
+	}
+	for i := 0; i < l; i++ {
+		r.extDNSList[i] = extDNS[i]
+	}
+}
+
+func (r *resolver) NameServer() string {
+	return r.listenAddress
+}
+
+func (r *resolver) ResolverOptions() []string {
+	return []string{"ndots:0"}
+}
+
+func setCommonFlags(msg *dns.Msg) {
+	msg.RecursionAvailable = true
+}
+
+func shuffleAddr(addr []net.IP) []net.IP {
+	for i := len(addr) - 1; i > 0; i-- {
+		r := rand.Intn(i + 1)
+		addr[i], addr[r] = addr[r], addr[i]
+	}
+	return addr
+}
+
+func createRespMsg(query *dns.Msg) *dns.Msg {
+	resp := new(dns.Msg)
+	resp.SetReply(query)
+	setCommonFlags(resp)
+
+	return resp
+}
+
+func (r *resolver) handleMXQuery(name string, query *dns.Msg) (*dns.Msg, error) {
+	addrv4, _ := r.backend.ResolveName(name, types.IPv4)
+	addrv6, _ := r.backend.ResolveName(name, types.IPv6)
+
+	if addrv4 == nil && addrv6 == nil {
+		return nil, nil
+	}
+
+	// We were able to resolve the name. Respond with an empty list with
+	// RcodeSuccess/NOERROR so that email clients can treat it as "implicit MX"
+	// [RFC 5321 Section-5.1] and issue a Type A/AAAA query for the name.
+
+	resp := createRespMsg(query)
+	return resp, nil
+}
+
+func (r *resolver) handleIPQuery(name string, query *dns.Msg, ipType int) (*dns.Msg, error) {
+	var addr []net.IP
+	var ipv6Miss bool
+	addr, ipv6Miss = r.backend.ResolveName(name, ipType)
+
+	if addr == nil && ipv6Miss {
+		// Send a reply without any Answer sections
+		logrus.Debugf("[resolver] lookup name %s present without IPv6 address", name)
+		resp := createRespMsg(query)
+		return resp, nil
+	}
+	if addr == nil {
+		return nil, nil
+	}
+
+	logrus.Debugf("[resolver] lookup for %s: IP %v", name, addr)
+
+	resp := createRespMsg(query)
+	if len(addr) > 1 {
+		addr = shuffleAddr(addr)
+	}
+	if ipType == types.IPv4 {
+		for _, ip := range addr {
+			rr := new(dns.A)
+			rr.Hdr = dns.RR_Header{Name: name, Rrtype: dns.TypeA, Class: dns.ClassINET, Ttl: respTTL}
+			rr.A = ip
+			resp.Answer = append(resp.Answer, rr)
+		}
+	} else {
+		for _, ip := range addr {
+			rr := new(dns.AAAA)
+			rr.Hdr = dns.RR_Header{Name: name, Rrtype: dns.TypeAAAA, Class: dns.ClassINET, Ttl: respTTL}
+			rr.AAAA = ip
+			resp.Answer = append(resp.Answer, rr)
+		}
+	}
+	return resp, nil
+}
+
+func (r *resolver) handlePTRQuery(ptr string, query *dns.Msg) (*dns.Msg, error) {
+	parts := []string{}
+
+	if strings.HasSuffix(ptr, ptrIPv4domain) {
+		parts = strings.Split(ptr, ptrIPv4domain)
+	} else if strings.HasSuffix(ptr, ptrIPv6domain) {
+		parts = strings.Split(ptr, ptrIPv6domain)
+	} else {
+		return nil, fmt.Errorf("invalid PTR query, %v", ptr)
+	}
+
+	host := r.backend.ResolveIP(parts[0])
+
+	if len(host) == 0 {
+		return nil, nil
+	}
+
+	logrus.Debugf("[resolver] lookup for IP %s: name %s", parts[0], host)
+	fqdn := dns.Fqdn(host)
+
+	resp := new(dns.Msg)
+	resp.SetReply(query)
+	setCommonFlags(resp)
+
+	rr := new(dns.PTR)
+	rr.Hdr = dns.RR_Header{Name: ptr, Rrtype: dns.TypePTR, Class: dns.ClassINET, Ttl: respTTL}
+	rr.Ptr = fqdn
+	resp.Answer = append(resp.Answer, rr)
+	return resp, nil
+}
+
+func (r *resolver) handleSRVQuery(svc string, query *dns.Msg) (*dns.Msg, error) {
+
+	srv, ip := r.backend.ResolveService(svc)
+
+	if len(srv) == 0 {
+		return nil, nil
+	}
+	if len(srv) != len(ip) {
+		return nil, fmt.Errorf("invalid reply for SRV query %s", svc)
+	}
+
+	resp := createRespMsg(query)
+
+	for i, r := range srv {
+		rr := new(dns.SRV)
+		rr.Hdr = dns.RR_Header{Name: svc, Rrtype: dns.TypePTR, Class: dns.ClassINET, Ttl: respTTL}
+		rr.Port = r.Port
+		rr.Target = r.Target
+		resp.Answer = append(resp.Answer, rr)
+
+		rr1 := new(dns.A)
+		rr1.Hdr = dns.RR_Header{Name: r.Target, Rrtype: dns.TypeA, Class: dns.ClassINET, Ttl: respTTL}
+		rr1.A = ip[i]
+		resp.Extra = append(resp.Extra, rr1)
+	}
+	return resp, nil
+
+}
+
+func truncateResp(resp *dns.Msg, maxSize int, isTCP bool) {
+	if !isTCP {
+		resp.Truncated = true
+	}
+
+	srv := resp.Question[0].Qtype == dns.TypeSRV
+	// trim the Answer RRs one by one till the whole message fits
+	// within the reply size
+	for resp.Len() > maxSize {
+		resp.Answer = resp.Answer[:len(resp.Answer)-1]
+
+		if srv && len(resp.Extra) > 0 {
+			resp.Extra = resp.Extra[:len(resp.Extra)-1]
+		}
+	}
+}
+
+func (r *resolver) ServeDNS(w dns.ResponseWriter, query *dns.Msg) {
+	var (
+		extConn net.Conn
+		resp    *dns.Msg
+		err     error
+	)
+
+	if query == nil || len(query.Question) == 0 {
+		return
+	}
+	name := query.Question[0].Name
+
+	switch query.Question[0].Qtype {
+	case dns.TypeA:
+		resp, err = r.handleIPQuery(name, query, types.IPv4)
+	case dns.TypeAAAA:
+		resp, err = r.handleIPQuery(name, query, types.IPv6)
+	case dns.TypeMX:
+		resp, err = r.handleMXQuery(name, query)
+	case dns.TypePTR:
+		resp, err = r.handlePTRQuery(name, query)
+	case dns.TypeSRV:
+		resp, err = r.handleSRVQuery(name, query)
+	}
+
+	if err != nil {
+		logrus.Error(err)
+		return
+	}
+
+	if resp == nil {
+		// If the backend doesn't support proxying dns request
+		// fail the response
+		if !r.proxyDNS {
+			resp = new(dns.Msg)
+			resp.SetRcode(query, dns.RcodeServerFailure)
+			w.WriteMsg(resp)
+			return
+		}
+
+		// If the user sets ndots > 0 explicitly and the query is
+		// in the root domain don't forward it out. We will return
+		// failure and let the client retry with the search domain
+		// attached
+		switch query.Question[0].Qtype {
+		case dns.TypeA:
+			fallthrough
+		case dns.TypeAAAA:
+			if r.backend.NdotsSet() && !strings.Contains(strings.TrimSuffix(name, "."), ".") {
+				resp = createRespMsg(query)
+			}
+		}
+	}
+
+	proto := w.LocalAddr().Network()
+	maxSize := 0
+	if proto == "tcp" {
+		maxSize = dns.MaxMsgSize - 1
+	} else if proto == "udp" {
+		optRR := query.IsEdns0()
+		if optRR != nil {
+			maxSize = int(optRR.UDPSize())
+		}
+		if maxSize < defaultRespSize {
+			maxSize = defaultRespSize
+		}
+	}
+
+	if resp != nil {
+		if resp.Len() > maxSize {
+			truncateResp(resp, maxSize, proto == "tcp")
+		}
+	} else {
+		for i := 0; i < maxExtDNS; i++ {
+			extDNS := &r.extDNSList[i]
+			if extDNS.IPStr == "" {
+				break
+			}
+			extConnect := func() {
+				addr := fmt.Sprintf("%s:%d", extDNS.IPStr, 53)
+				extConn, err = net.DialTimeout(proto, addr, extIOTimeout)
+			}
+
+			if extDNS.HostLoopback {
+				extConnect()
+			} else {
+				execErr := r.backend.ExecFunc(extConnect)
+				if execErr != nil {
+					logrus.Warn(execErr)
+					continue
+				}
+			}
+			if err != nil {
+				logrus.Warnf("[resolver] connect failed: %s", err)
+				continue
+			}
+			queryType := dns.TypeToString[query.Question[0].Qtype]
+			logrus.Debugf("[resolver] query %s (%s) from %s, forwarding to %s:%s", name, queryType,
+				extConn.LocalAddr().String(), proto, extDNS.IPStr)
+
+			// Timeout has to be set for every IO operation.
+			extConn.SetDeadline(time.Now().Add(extIOTimeout))
+			co := &dns.Conn{
+				Conn:    extConn,
+				UDPSize: uint16(maxSize),
+			}
+			defer co.Close()
+
+			// limits the number of outstanding concurrent queries.
+			if !r.forwardQueryStart() {
+				old := r.tStamp
+				r.tStamp = time.Now()
+				if r.tStamp.Sub(old) > logInterval {
+					logrus.Errorf("[resolver] more than %v concurrent queries from %s", maxConcurrent, extConn.LocalAddr().String())
+				}
+				continue
+			}
+
+			err = co.WriteMsg(query)
+			if err != nil {
+				r.forwardQueryEnd()
+				logrus.Debugf("[resolver] send to DNS server failed, %s", err)
+				continue
+			}
+
+			resp, err = co.ReadMsg()
+			// Truncated DNS replies should be sent to the client so that the
+			// client can retry over TCP
+			if err != nil && err != dns.ErrTruncated {
+				r.forwardQueryEnd()
+				logrus.Debugf("[resolver] read from DNS server failed, %s", err)
+				continue
+			}
+			r.forwardQueryEnd()
+			if resp != nil {
+				if resp.Rcode == dns.RcodeServerFailure {
+					// for Server Failure response, continue to the next external DNS server
+					logrus.Debugf("[resolver] external DNS %s:%s responded with ServFail for %q", proto, extDNS.IPStr, name)
+					continue
+				}
+				answers := 0
+				for _, rr := range resp.Answer {
+					h := rr.Header()
+					switch h.Rrtype {
+					case dns.TypeA:
+						answers++
+						ip := rr.(*dns.A).A
+						logrus.Debugf("[resolver] received A record %q for %q from %s:%s", ip, h.Name, proto, extDNS.IPStr)
+						r.backend.HandleQueryResp(h.Name, ip)
+					case dns.TypeAAAA:
+						answers++
+						ip := rr.(*dns.AAAA).AAAA
+						logrus.Debugf("[resolver] received AAAA record %q for %q from %s:%s", ip, h.Name, proto, extDNS.IPStr)
+						r.backend.HandleQueryResp(h.Name, ip)
+					}
+				}
+				if resp.Answer == nil || answers == 0 {
+					logrus.Debugf("[resolver] external DNS %s:%s did not return any %s records for %q", proto, extDNS.IPStr, queryType, name)
+				}
+				resp.Compress = true
+			} else {
+				logrus.Debugf("[resolver] external DNS %s:%s returned empty response for %q", proto, extDNS.IPStr, name)
+			}
+			break
+		}
+		if resp == nil {
+			return
+		}
+	}
+
+	if err = w.WriteMsg(resp); err != nil {
+		logrus.Errorf("[resolver] error writing resolver resp, %s", err)
+	}
+}
+
+func (r *resolver) forwardQueryStart() bool {
+	r.queryLock.Lock()
+	defer r.queryLock.Unlock()
+
+	if r.count == maxConcurrent {
+		return false
+	}
+	r.count++
+
+	return true
+}
+
+func (r *resolver) forwardQueryEnd() {
+	r.queryLock.Lock()
+	defer r.queryLock.Unlock()
+
+	if r.count == 0 {
+		logrus.Error("[resolver] invalid concurrent query count")
+	} else {
+		r.count--
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/resolver_unix.go b/vendor/github.com/docker/libnetwork/resolver_unix.go
new file mode 100644
index 0000000000..b35009ee74
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/resolver_unix.go
@@ -0,0 +1,101 @@
+// +build !windows
+
+package libnetwork
+
+import (
+	"fmt"
+	"net"
+	"os"
+	"os/exec"
+	"runtime"
+
+	"github.com/docker/docker/pkg/reexec"
+	"github.com/docker/libnetwork/iptables"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netns"
+)
+
+func init() {
+	reexec.Register("setup-resolver", reexecSetupResolver)
+}
+
+const (
+	// outputChain used for docker embed dns
+	outputChain = "DOCKER_OUTPUT"
+	//postroutingchain used for docker embed dns
+	postroutingchain = "DOCKER_POSTROUTING"
+)
+
+func reexecSetupResolver() {
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+
+	if len(os.Args) < 4 {
+		logrus.Error("invalid number of arguments..")
+		os.Exit(1)
+	}
+
+	resolverIP, ipPort, _ := net.SplitHostPort(os.Args[2])
+	_, tcpPort, _ := net.SplitHostPort(os.Args[3])
+	rules := [][]string{
+		{"-t", "nat", "-I", outputChain, "-d", resolverIP, "-p", "udp", "--dport", dnsPort, "-j", "DNAT", "--to-destination", os.Args[2]},
+		{"-t", "nat", "-I", postroutingchain, "-s", resolverIP, "-p", "udp", "--sport", ipPort, "-j", "SNAT", "--to-source", ":" + dnsPort},
+		{"-t", "nat", "-I", outputChain, "-d", resolverIP, "-p", "tcp", "--dport", dnsPort, "-j", "DNAT", "--to-destination", os.Args[3]},
+		{"-t", "nat", "-I", postroutingchain, "-s", resolverIP, "-p", "tcp", "--sport", tcpPort, "-j", "SNAT", "--to-source", ":" + dnsPort},
+	}
+
+	f, err := os.OpenFile(os.Args[1], os.O_RDONLY, 0)
+	if err != nil {
+		logrus.Errorf("failed get network namespace %q: %v", os.Args[1], err)
+		os.Exit(2)
+	}
+	defer f.Close()
+
+	nsFD := f.Fd()
+	if err = netns.Set(netns.NsHandle(nsFD)); err != nil {
+		logrus.Errorf("setting into container net ns %v failed, %v", os.Args[1], err)
+		os.Exit(3)
+	}
+
+	// insert outputChain and postroutingchain
+	err = iptables.RawCombinedOutputNative("-t", "nat", "-C", "OUTPUT", "-d", resolverIP, "-j", outputChain)
+	if err == nil {
+		iptables.RawCombinedOutputNative("-t", "nat", "-F", outputChain)
+	} else {
+		iptables.RawCombinedOutputNative("-t", "nat", "-N", outputChain)
+		iptables.RawCombinedOutputNative("-t", "nat", "-I", "OUTPUT", "-d", resolverIP, "-j", outputChain)
+	}
+
+	err = iptables.RawCombinedOutputNative("-t", "nat", "-C", "POSTROUTING", "-d", resolverIP, "-j", postroutingchain)
+	if err == nil {
+		iptables.RawCombinedOutputNative("-t", "nat", "-F", postroutingchain)
+	} else {
+		iptables.RawCombinedOutputNative("-t", "nat", "-N", postroutingchain)
+		iptables.RawCombinedOutputNative("-t", "nat", "-I", "POSTROUTING", "-d", resolverIP, "-j", postroutingchain)
+	}
+
+	for _, rule := range rules {
+		if iptables.RawCombinedOutputNative(rule...) != nil {
+			logrus.Errorf("setting up rule failed, %v", rule)
+		}
+	}
+}
+
+func (r *resolver) setupIPTable() error {
+	if r.err != nil {
+		return r.err
+	}
+	laddr := r.conn.LocalAddr().String()
+	ltcpaddr := r.tcpListen.Addr().String()
+
+	cmd := &exec.Cmd{
+		Path:   reexec.Self(),
+		Args:   append([]string{"setup-resolver"}, r.resolverKey, laddr, ltcpaddr),
+		Stdout: os.Stdout,
+		Stderr: os.Stderr,
+	}
+	if err := cmd.Run(); err != nil {
+		return fmt.Errorf("reexec failed: %v", err)
+	}
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/resolver_windows.go b/vendor/github.com/docker/libnetwork/resolver_windows.go
new file mode 100644
index 0000000000..aa33b1a2ec
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/resolver_windows.go
@@ -0,0 +1,7 @@
+// +build windows
+
+package libnetwork
+
+func (r *resolver) setupIPTable() error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox.go b/vendor/github.com/docker/libnetwork/sandbox.go
new file mode 100644
index 0000000000..d71f36cf1e
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox.go
@@ -0,0 +1,1246 @@
+package libnetwork
+
+import (
+	"container/heap"
+	"encoding/json"
+	"fmt"
+	"net"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/docker/libnetwork/etchosts"
+	"github.com/docker/libnetwork/netlabel"
+	"github.com/docker/libnetwork/osl"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+// Sandbox provides the control over the network container entity. It is a one to one mapping with the container.
+type Sandbox interface {
+	// ID returns the ID of the sandbox
+	ID() string
+	// Key returns the sandbox's key
+	Key() string
+	// ContainerID returns the container id associated to this sandbox
+	ContainerID() string
+	// Labels returns the sandbox's labels
+	Labels() map[string]interface{}
+	// Statistics retrieves the interfaces' statistics for the sandbox
+	Statistics() (map[string]*types.InterfaceStatistics, error)
+	// Refresh leaves all the endpoints, resets and re-applies the options,
+	// re-joins all the endpoints without destroying the osl sandbox
+	Refresh(options ...SandboxOption) error
+	// SetKey updates the Sandbox Key
+	SetKey(key string) error
+	// Rename changes the name of all attached Endpoints
+	Rename(name string) error
+	// Delete destroys this container after detaching it from all connected endpoints.
+	Delete() error
+	// Endpoints returns all the endpoints connected to the sandbox
+	Endpoints() []Endpoint
+	// ResolveService returns all the backend details about the containers or hosts
+	// backing a service. Its purpose is to satisfy an SRV query
+	ResolveService(name string) ([]*net.SRV, []net.IP)
+	// EnableService  makes a managed container's service available by adding the
+	// endpoint to the service load balancer and service discovery
+	EnableService() error
+	// DisableService removes a managed container's endpoints from the load balancer
+	// and service discovery
+	DisableService() error
+}
+
+// SandboxOption is an option setter function type used to pass various options to
+// NewNetContainer method. The various setter functions of type SandboxOption are
+// provided by libnetwork, they look like ContainerOptionXXXX(...)
+type SandboxOption func(sb *sandbox)
+
+func (sb *sandbox) processOptions(options ...SandboxOption) {
+	for _, opt := range options {
+		if opt != nil {
+			opt(sb)
+		}
+	}
+}
+
+type epHeap []*endpoint
+
+type sandbox struct {
+	id                 string
+	containerID        string
+	config             containerConfig
+	extDNS             []extDNSEntry
+	osSbox             osl.Sandbox
+	controller         *controller
+	resolver           Resolver
+	resolverOnce       sync.Once
+	refCnt             int
+	endpoints          epHeap
+	epPriority         map[string]int
+	populatedEndpoints map[string]struct{}
+	joinLeaveDone      chan struct{}
+	dbIndex            uint64
+	dbExists           bool
+	isStub             bool
+	inDelete           bool
+	ingress            bool
+	ndotsSet           bool
+	sync.Mutex
+	// This mutex is used to serialize service related operation for an endpoint
+	// The lock is here because the endpoint is saved into the store so is not unique
+	Service sync.Mutex
+}
+
+// These are the container configs used to customize container /etc/hosts file.
+type hostsPathConfig struct {
+	hostName        string
+	domainName      string
+	hostsPath       string
+	originHostsPath string
+	extraHosts      []extraHost
+	parentUpdates   []parentUpdate
+}
+
+type parentUpdate struct {
+	cid  string
+	name string
+	ip   string
+}
+
+type extraHost struct {
+	name string
+	IP   string
+}
+
+// These are the container configs used to customize container /etc/resolv.conf file.
+type resolvConfPathConfig struct {
+	resolvConfPath       string
+	originResolvConfPath string
+	resolvConfHashFile   string
+	dnsList              []string
+	dnsSearchList        []string
+	dnsOptionsList       []string
+}
+
+type containerConfig struct {
+	hostsPathConfig
+	resolvConfPathConfig
+	generic           map[string]interface{}
+	useDefaultSandBox bool
+	useExternalKey    bool
+	prio              int // higher the value, more the priority
+	exposedPorts      []types.TransportPort
+}
+
+const (
+	resolverIPSandbox = "127.0.0.11"
+)
+
+func (sb *sandbox) ID() string {
+	return sb.id
+}
+
+func (sb *sandbox) ContainerID() string {
+	return sb.containerID
+}
+
+func (sb *sandbox) Key() string {
+	if sb.config.useDefaultSandBox {
+		return osl.GenerateKey("default")
+	}
+	return osl.GenerateKey(sb.id)
+}
+
+func (sb *sandbox) Labels() map[string]interface{} {
+	sb.Lock()
+	defer sb.Unlock()
+	opts := make(map[string]interface{}, len(sb.config.generic))
+	for k, v := range sb.config.generic {
+		opts[k] = v
+	}
+	return opts
+}
+
+func (sb *sandbox) Statistics() (map[string]*types.InterfaceStatistics, error) {
+	m := make(map[string]*types.InterfaceStatistics)
+
+	sb.Lock()
+	osb := sb.osSbox
+	sb.Unlock()
+	if osb == nil {
+		return m, nil
+	}
+
+	var err error
+	for _, i := range osb.Info().Interfaces() {
+		if m[i.DstName()], err = i.Statistics(); err != nil {
+			return m, err
+		}
+	}
+
+	return m, nil
+}
+
+func (sb *sandbox) Delete() error {
+	return sb.delete(false)
+}
+
+func (sb *sandbox) delete(force bool) error {
+	sb.Lock()
+	if sb.inDelete {
+		sb.Unlock()
+		return types.ForbiddenErrorf("another sandbox delete in progress")
+	}
+	// Set the inDelete flag. This will ensure that we don't
+	// update the store until we have completed all the endpoint
+	// leaves and deletes. And when endpoint leaves and deletes
+	// are completed then we can finally delete the sandbox object
+	// altogether from the data store. If the daemon exits
+	// ungracefully in the middle of a sandbox delete this way we
+	// will have all the references to the endpoints in the
+	// sandbox so that we can clean them up when we restart
+	sb.inDelete = true
+	sb.Unlock()
+
+	c := sb.controller
+
+	// Detach from all endpoints
+	retain := false
+	for _, ep := range sb.getConnectedEndpoints() {
+		// gw network endpoint detach and removal are automatic
+		if ep.endpointInGWNetwork() && !force {
+			continue
+		}
+		// Retain the sanbdox if we can't obtain the network from store.
+		if _, err := c.getNetworkFromStore(ep.getNetwork().ID()); err != nil {
+			if c.isDistributedControl() {
+				retain = true
+			}
+			logrus.Warnf("Failed getting network for ep %s during sandbox %s delete: %v", ep.ID(), sb.ID(), err)
+			continue
+		}
+
+		if !force {
+			if err := ep.Leave(sb); err != nil {
+				logrus.Warnf("Failed detaching sandbox %s from endpoint %s: %v\n", sb.ID(), ep.ID(), err)
+			}
+		}
+
+		if err := ep.Delete(force); err != nil {
+			logrus.Warnf("Failed deleting endpoint %s: %v\n", ep.ID(), err)
+		}
+	}
+
+	if retain {
+		sb.Lock()
+		sb.inDelete = false
+		sb.Unlock()
+		return fmt.Errorf("could not cleanup all the endpoints in container %s / sandbox %s", sb.containerID, sb.id)
+	}
+	// Container is going away. Path cache in etchosts is most
+	// likely not required any more. Drop it.
+	etchosts.Drop(sb.config.hostsPath)
+
+	if sb.resolver != nil {
+		sb.resolver.Stop()
+	}
+
+	if sb.osSbox != nil && !sb.config.useDefaultSandBox {
+		sb.osSbox.Destroy()
+	}
+
+	if err := sb.storeDelete(); err != nil {
+		logrus.Warnf("Failed to delete sandbox %s from store: %v", sb.ID(), err)
+	}
+
+	c.Lock()
+	if sb.ingress {
+		c.ingressSandbox = nil
+	}
+	delete(c.sandboxes, sb.ID())
+	c.Unlock()
+
+	return nil
+}
+
+func (sb *sandbox) Rename(name string) error {
+	var err error
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.endpointInGWNetwork() {
+			continue
+		}
+
+		oldName := ep.Name()
+		lEp := ep
+		if err = ep.rename(name); err != nil {
+			break
+		}
+
+		defer func() {
+			if err != nil {
+				lEp.rename(oldName)
+			}
+		}()
+	}
+
+	return err
+}
+
+func (sb *sandbox) Refresh(options ...SandboxOption) error {
+	// Store connected endpoints
+	epList := sb.getConnectedEndpoints()
+
+	// Detach from all endpoints
+	for _, ep := range epList {
+		if err := ep.Leave(sb); err != nil {
+			logrus.Warnf("Failed detaching sandbox %s from endpoint %s: %v\n", sb.ID(), ep.ID(), err)
+		}
+	}
+
+	// Re-apply options
+	sb.config = containerConfig{}
+	sb.processOptions(options...)
+
+	// Setup discovery files
+	if err := sb.setupResolutionFiles(); err != nil {
+		return err
+	}
+
+	// Re-connect to all endpoints
+	for _, ep := range epList {
+		if err := ep.Join(sb); err != nil {
+			logrus.Warnf("Failed attach sandbox %s to endpoint %s: %v\n", sb.ID(), ep.ID(), err)
+		}
+	}
+
+	return nil
+}
+
+func (sb *sandbox) MarshalJSON() ([]byte, error) {
+	sb.Lock()
+	defer sb.Unlock()
+
+	// We are just interested in the container ID. This can be expanded to include all of containerInfo if there is a need
+	return json.Marshal(sb.id)
+}
+
+func (sb *sandbox) UnmarshalJSON(b []byte) (err error) {
+	sb.Lock()
+	defer sb.Unlock()
+
+	var id string
+	if err := json.Unmarshal(b, &id); err != nil {
+		return err
+	}
+	sb.id = id
+	return nil
+}
+
+func (sb *sandbox) Endpoints() []Endpoint {
+	sb.Lock()
+	defer sb.Unlock()
+
+	endpoints := make([]Endpoint, len(sb.endpoints))
+	for i, ep := range sb.endpoints {
+		endpoints[i] = ep
+	}
+	return endpoints
+}
+
+func (sb *sandbox) getConnectedEndpoints() []*endpoint {
+	sb.Lock()
+	defer sb.Unlock()
+
+	eps := make([]*endpoint, len(sb.endpoints))
+	for i, ep := range sb.endpoints {
+		eps[i] = ep
+	}
+
+	return eps
+}
+
+func (sb *sandbox) removeEndpoint(ep *endpoint) {
+	sb.Lock()
+	defer sb.Unlock()
+
+	for i, e := range sb.endpoints {
+		if e == ep {
+			heap.Remove(&sb.endpoints, i)
+			return
+		}
+	}
+}
+
+func (sb *sandbox) getEndpoint(id string) *endpoint {
+	sb.Lock()
+	defer sb.Unlock()
+
+	for _, ep := range sb.endpoints {
+		if ep.id == id {
+			return ep
+		}
+	}
+
+	return nil
+}
+
+func (sb *sandbox) updateGateway(ep *endpoint) error {
+	sb.Lock()
+	osSbox := sb.osSbox
+	sb.Unlock()
+	if osSbox == nil {
+		return nil
+	}
+	osSbox.UnsetGateway()
+	osSbox.UnsetGatewayIPv6()
+
+	if ep == nil {
+		return nil
+	}
+
+	ep.Lock()
+	joinInfo := ep.joinInfo
+	ep.Unlock()
+
+	if err := osSbox.SetGateway(joinInfo.gw); err != nil {
+		return fmt.Errorf("failed to set gateway while updating gateway: %v", err)
+	}
+
+	if err := osSbox.SetGatewayIPv6(joinInfo.gw6); err != nil {
+		return fmt.Errorf("failed to set IPv6 gateway while updating gateway: %v", err)
+	}
+
+	return nil
+}
+
+func (sb *sandbox) HandleQueryResp(name string, ip net.IP) {
+	for _, ep := range sb.getConnectedEndpoints() {
+		n := ep.getNetwork()
+		n.HandleQueryResp(name, ip)
+	}
+}
+
+func (sb *sandbox) ResolveIP(ip string) string {
+	var svc string
+	logrus.Debugf("IP To resolve %v", ip)
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		n := ep.getNetwork()
+		svc = n.ResolveIP(ip)
+		if len(svc) != 0 {
+			return svc
+		}
+	}
+
+	return svc
+}
+
+func (sb *sandbox) ExecFunc(f func()) error {
+	sb.Lock()
+	osSbox := sb.osSbox
+	sb.Unlock()
+	if osSbox != nil {
+		return osSbox.InvokeFunc(f)
+	}
+	return fmt.Errorf("osl sandbox unavailable in ExecFunc for %v", sb.ContainerID())
+}
+
+func (sb *sandbox) ResolveService(name string) ([]*net.SRV, []net.IP) {
+	srv := []*net.SRV{}
+	ip := []net.IP{}
+
+	logrus.Debugf("Service name To resolve: %v", name)
+
+	// There are DNS implementaions that allow SRV queries for names not in
+	// the format defined by RFC 2782. Hence specific validations checks are
+	// not done
+	parts := strings.Split(name, ".")
+	if len(parts) < 3 {
+		return nil, nil
+	}
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		n := ep.getNetwork()
+
+		srv, ip = n.ResolveService(name)
+		if len(srv) > 0 {
+			break
+		}
+	}
+	return srv, ip
+}
+
+func getDynamicNwEndpoints(epList []*endpoint) []*endpoint {
+	eps := []*endpoint{}
+	for _, ep := range epList {
+		n := ep.getNetwork()
+		if n.dynamic && !n.ingress {
+			eps = append(eps, ep)
+		}
+	}
+	return eps
+}
+
+func getIngressNwEndpoint(epList []*endpoint) *endpoint {
+	for _, ep := range epList {
+		n := ep.getNetwork()
+		if n.ingress {
+			return ep
+		}
+	}
+	return nil
+}
+
+func getLocalNwEndpoints(epList []*endpoint) []*endpoint {
+	eps := []*endpoint{}
+	for _, ep := range epList {
+		n := ep.getNetwork()
+		if !n.dynamic && !n.ingress {
+			eps = append(eps, ep)
+		}
+	}
+	return eps
+}
+
+func (sb *sandbox) ResolveName(name string, ipType int) ([]net.IP, bool) {
+	// Embedded server owns the docker network domain. Resolution should work
+	// for both container_name and container_name.network_name
+	// We allow '.' in service name and network name. For a name a.b.c.d the
+	// following have to tried;
+	// {a.b.c.d in the networks container is connected to}
+	// {a.b.c in network d},
+	// {a.b in network c.d},
+	// {a in network b.c.d},
+
+	logrus.Debugf("Name To resolve: %v", name)
+	name = strings.TrimSuffix(name, ".")
+	reqName := []string{name}
+	networkName := []string{""}
+
+	if strings.Contains(name, ".") {
+		var i int
+		dup := name
+		for {
+			if i = strings.LastIndex(dup, "."); i == -1 {
+				break
+			}
+			networkName = append(networkName, name[i+1:])
+			reqName = append(reqName, name[:i])
+
+			dup = dup[:i]
+		}
+	}
+
+	epList := sb.getConnectedEndpoints()
+
+	// In swarm mode services with exposed ports are connected to user overlay
+	// network, ingress network and docker_gwbridge network. Name resolution
+	// should prioritize returning the VIP/IPs on user overlay network.
+	newList := []*endpoint{}
+	if !sb.controller.isDistributedControl() {
+		newList = append(newList, getDynamicNwEndpoints(epList)...)
+		ingressEP := getIngressNwEndpoint(epList)
+		if ingressEP != nil {
+			newList = append(newList, ingressEP)
+		}
+		newList = append(newList, getLocalNwEndpoints(epList)...)
+		epList = newList
+	}
+
+	for i := 0; i < len(reqName); i++ {
+
+		// First check for local container alias
+		ip, ipv6Miss := sb.resolveName(reqName[i], networkName[i], epList, true, ipType)
+		if ip != nil {
+			return ip, false
+		}
+		if ipv6Miss {
+			return ip, ipv6Miss
+		}
+
+		// Resolve the actual container name
+		ip, ipv6Miss = sb.resolveName(reqName[i], networkName[i], epList, false, ipType)
+		if ip != nil {
+			return ip, false
+		}
+		if ipv6Miss {
+			return ip, ipv6Miss
+		}
+	}
+	return nil, false
+}
+
+func (sb *sandbox) resolveName(req string, networkName string, epList []*endpoint, alias bool, ipType int) ([]net.IP, bool) {
+	var ipv6Miss bool
+
+	for _, ep := range epList {
+		name := req
+		n := ep.getNetwork()
+
+		if networkName != "" && networkName != n.Name() {
+			continue
+		}
+
+		if alias {
+			if ep.aliases == nil {
+				continue
+			}
+
+			var ok bool
+			ep.Lock()
+			name, ok = ep.aliases[req]
+			ep.Unlock()
+			if !ok {
+				continue
+			}
+		} else {
+			// If it is a regular lookup and if the requested name is an alias
+			// don't perform a svc lookup for this endpoint.
+			ep.Lock()
+			if _, ok := ep.aliases[req]; ok {
+				ep.Unlock()
+				continue
+			}
+			ep.Unlock()
+		}
+
+		ip, miss := n.ResolveName(name, ipType)
+
+		if ip != nil {
+			return ip, false
+		}
+
+		if miss {
+			ipv6Miss = miss
+		}
+	}
+	return nil, ipv6Miss
+}
+
+func (sb *sandbox) SetKey(basePath string) error {
+	start := time.Now()
+	defer func() {
+		logrus.Debugf("sandbox set key processing took %s for container %s", time.Since(start), sb.ContainerID())
+	}()
+
+	if basePath == "" {
+		return types.BadRequestErrorf("invalid sandbox key")
+	}
+
+	sb.Lock()
+	if sb.inDelete {
+		sb.Unlock()
+		return types.ForbiddenErrorf("failed to SetKey: sandbox %q delete in progress", sb.id)
+	}
+	oldosSbox := sb.osSbox
+	sb.Unlock()
+
+	if oldosSbox != nil {
+		// If we already have an OS sandbox, release the network resources from that
+		// and destroy the OS snab. We are moving into a new home further down. Note that none
+		// of the network resources gets destroyed during the move.
+		sb.releaseOSSbox()
+	}
+
+	osSbox, err := osl.GetSandboxForExternalKey(basePath, sb.Key())
+	if err != nil {
+		return err
+	}
+
+	sb.Lock()
+	sb.osSbox = osSbox
+	sb.Unlock()
+
+	// If the resolver was setup before stop it and set it up in the
+	// new osl sandbox.
+	if oldosSbox != nil && sb.resolver != nil {
+		sb.resolver.Stop()
+
+		if err := sb.osSbox.InvokeFunc(sb.resolver.SetupFunc(0)); err == nil {
+			if err := sb.resolver.Start(); err != nil {
+				logrus.Errorf("Resolver Start failed for container %s, %q", sb.ContainerID(), err)
+			}
+		} else {
+			logrus.Errorf("Resolver Setup Function failed for container %s, %q", sb.ContainerID(), err)
+		}
+	}
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		if err = sb.populateNetworkResources(ep); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (sb *sandbox) EnableService() (err error) {
+	logrus.Debugf("EnableService %s START", sb.containerID)
+	defer func() {
+		if err != nil {
+			sb.DisableService()
+		}
+	}()
+	for _, ep := range sb.getConnectedEndpoints() {
+		if !ep.isServiceEnabled() {
+			if err := ep.addServiceInfoToCluster(sb); err != nil {
+				return fmt.Errorf("could not update state for endpoint %s into cluster: %v", ep.Name(), err)
+			}
+			ep.enableService()
+		}
+	}
+	logrus.Debugf("EnableService %s DONE", sb.containerID)
+	return nil
+}
+
+func (sb *sandbox) DisableService() (err error) {
+	logrus.Debugf("DisableService %s START", sb.containerID)
+	failedEps := []string{}
+	defer func() {
+		if len(failedEps) > 0 {
+			err = fmt.Errorf("failed to disable service on sandbox:%s, for endpoints %s", sb.ID(), strings.Join(failedEps, ","))
+		}
+	}()
+	for _, ep := range sb.getConnectedEndpoints() {
+		if ep.isServiceEnabled() {
+			if err := ep.deleteServiceInfoFromCluster(sb, false, "DisableService"); err != nil {
+				failedEps = append(failedEps, ep.Name())
+				logrus.Warnf("failed update state for endpoint %s into cluster: %v", ep.Name(), err)
+			}
+			ep.disableService()
+		}
+	}
+	logrus.Debugf("DisableService %s DONE", sb.containerID)
+	return nil
+}
+
+func releaseOSSboxResources(osSbox osl.Sandbox, ep *endpoint) {
+	for _, i := range osSbox.Info().Interfaces() {
+		// Only remove the interfaces owned by this endpoint from the sandbox.
+		if ep.hasInterface(i.SrcName()) {
+			if err := i.Remove(); err != nil {
+				logrus.Debugf("Remove interface %s failed: %v", i.SrcName(), err)
+			}
+		}
+	}
+
+	ep.Lock()
+	joinInfo := ep.joinInfo
+	vip := ep.virtualIP
+	ep.Unlock()
+
+	if len(vip) != 0 {
+		if err := osSbox.RemoveLoopbackAliasIP(&net.IPNet{IP: vip, Mask: net.CIDRMask(32, 32)}); err != nil {
+			logrus.Warnf("Remove virtual IP %v failed: %v", vip, err)
+		}
+	}
+
+	if joinInfo == nil {
+		return
+	}
+
+	// Remove non-interface routes.
+	for _, r := range joinInfo.StaticRoutes {
+		if err := osSbox.RemoveStaticRoute(r); err != nil {
+			logrus.Debugf("Remove route failed: %v", err)
+		}
+	}
+}
+
+func (sb *sandbox) releaseOSSbox() {
+	sb.Lock()
+	osSbox := sb.osSbox
+	sb.osSbox = nil
+	sb.Unlock()
+
+	if osSbox == nil {
+		return
+	}
+
+	for _, ep := range sb.getConnectedEndpoints() {
+		releaseOSSboxResources(osSbox, ep)
+	}
+
+	osSbox.Destroy()
+}
+
+func (sb *sandbox) restoreOslSandbox() error {
+	var routes []*types.StaticRoute
+
+	// restore osl sandbox
+	Ifaces := make(map[string][]osl.IfaceOption)
+	for _, ep := range sb.endpoints {
+		var ifaceOptions []osl.IfaceOption
+		ep.Lock()
+		joinInfo := ep.joinInfo
+		i := ep.iface
+		ep.Unlock()
+
+		if i == nil {
+			logrus.Errorf("error restoring endpoint %s for container %s", ep.Name(), sb.ContainerID())
+			continue
+		}
+
+		ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().Address(i.addr), sb.osSbox.InterfaceOptions().Routes(i.routes))
+		if i.addrv6 != nil && i.addrv6.IP.To16() != nil {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().AddressIPv6(i.addrv6))
+		}
+		if i.mac != nil {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().MacAddress(i.mac))
+		}
+		if len(i.llAddrs) != 0 {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().LinkLocalAddresses(i.llAddrs))
+		}
+		Ifaces[fmt.Sprintf("%s+%s", i.srcName, i.dstPrefix)] = ifaceOptions
+		if joinInfo != nil {
+			routes = append(routes, joinInfo.StaticRoutes...)
+		}
+		if ep.needResolver() {
+			sb.startResolver(true)
+		}
+	}
+
+	gwep := sb.getGatewayEndpoint()
+	if gwep == nil {
+		return nil
+	}
+
+	// restore osl sandbox
+	err := sb.osSbox.Restore(Ifaces, routes, gwep.joinInfo.gw, gwep.joinInfo.gw6)
+	return err
+}
+
+func (sb *sandbox) populateNetworkResources(ep *endpoint) error {
+	sb.Lock()
+	if sb.osSbox == nil {
+		sb.Unlock()
+		return nil
+	}
+	inDelete := sb.inDelete
+	sb.Unlock()
+
+	ep.Lock()
+	joinInfo := ep.joinInfo
+	i := ep.iface
+	ep.Unlock()
+
+	if ep.needResolver() {
+		sb.startResolver(false)
+	}
+
+	if i != nil && i.srcName != "" {
+		var ifaceOptions []osl.IfaceOption
+
+		ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().Address(i.addr), sb.osSbox.InterfaceOptions().Routes(i.routes))
+		if i.addrv6 != nil && i.addrv6.IP.To16() != nil {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().AddressIPv6(i.addrv6))
+		}
+		if len(i.llAddrs) != 0 {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().LinkLocalAddresses(i.llAddrs))
+		}
+		if i.mac != nil {
+			ifaceOptions = append(ifaceOptions, sb.osSbox.InterfaceOptions().MacAddress(i.mac))
+		}
+
+		if err := sb.osSbox.AddInterface(i.srcName, i.dstPrefix, ifaceOptions...); err != nil {
+			return fmt.Errorf("failed to add interface %s to sandbox: %v", i.srcName, err)
+		}
+	}
+
+	if len(ep.virtualIP) != 0 {
+		err := sb.osSbox.AddLoopbackAliasIP(&net.IPNet{IP: ep.virtualIP, Mask: net.CIDRMask(32, 32)})
+		if err != nil {
+			return fmt.Errorf("failed to add virtual IP %v: %v", ep.virtualIP, err)
+		}
+	}
+
+	if joinInfo != nil {
+		// Set up non-interface routes.
+		for _, r := range joinInfo.StaticRoutes {
+			if err := sb.osSbox.AddStaticRoute(r); err != nil {
+				return fmt.Errorf("failed to add static route %s: %v", r.Destination.String(), err)
+			}
+		}
+	}
+
+	if ep == sb.getGatewayEndpoint() {
+		if err := sb.updateGateway(ep); err != nil {
+			return err
+		}
+	}
+
+	// Make sure to add the endpoint to the populated endpoint set
+	// before populating loadbalancers.
+	sb.Lock()
+	sb.populatedEndpoints[ep.ID()] = struct{}{}
+	sb.Unlock()
+
+	// Populate load balancer only after updating all the other
+	// information including gateway and other routes so that
+	// loadbalancers are populated all the network state is in
+	// place in the sandbox.
+	sb.populateLoadbalancers(ep)
+
+	// Only update the store if we did not come here as part of
+	// sandbox delete. If we came here as part of delete then do
+	// not bother updating the store. The sandbox object will be
+	// deleted anyway
+	if !inDelete {
+		return sb.storeUpdate()
+	}
+
+	return nil
+}
+
+func (sb *sandbox) clearNetworkResources(origEp *endpoint) error {
+	ep := sb.getEndpoint(origEp.id)
+	if ep == nil {
+		return fmt.Errorf("could not find the sandbox endpoint data for endpoint %s",
+			origEp.id)
+	}
+
+	sb.Lock()
+	osSbox := sb.osSbox
+	inDelete := sb.inDelete
+	sb.Unlock()
+	if osSbox != nil {
+		releaseOSSboxResources(osSbox, ep)
+	}
+
+	sb.Lock()
+	delete(sb.populatedEndpoints, ep.ID())
+
+	if len(sb.endpoints) == 0 {
+		// sb.endpoints should never be empty and this is unexpected error condition
+		// We log an error message to note this down for debugging purposes.
+		logrus.Errorf("No endpoints in sandbox while trying to remove endpoint %s", ep.Name())
+		sb.Unlock()
+		return nil
+	}
+
+	var (
+		gwepBefore, gwepAfter *endpoint
+		index                 = -1
+	)
+	for i, e := range sb.endpoints {
+		if e == ep {
+			index = i
+		}
+		if len(e.Gateway()) > 0 && gwepBefore == nil {
+			gwepBefore = e
+		}
+		if index != -1 && gwepBefore != nil {
+			break
+		}
+	}
+
+	if index == -1 {
+		logrus.Warnf("Endpoint %s has already been deleted", ep.Name())
+		sb.Unlock()
+		return nil
+	}
+
+	heap.Remove(&sb.endpoints, index)
+	for _, e := range sb.endpoints {
+		if len(e.Gateway()) > 0 {
+			gwepAfter = e
+			break
+		}
+	}
+	delete(sb.epPriority, ep.ID())
+	sb.Unlock()
+
+	if gwepAfter != nil && gwepBefore != gwepAfter {
+		sb.updateGateway(gwepAfter)
+	}
+
+	// Only update the store if we did not come here as part of
+	// sandbox delete. If we came here as part of delete then do
+	// not bother updating the store. The sandbox object will be
+	// deleted anyway
+	if !inDelete {
+		return sb.storeUpdate()
+	}
+
+	return nil
+}
+
+func (sb *sandbox) isEndpointPopulated(ep *endpoint) bool {
+	sb.Lock()
+	_, ok := sb.populatedEndpoints[ep.ID()]
+	sb.Unlock()
+	return ok
+}
+
+// joinLeaveStart waits to ensure there are no joins or leaves in progress and
+// marks this join/leave in progress without race
+func (sb *sandbox) joinLeaveStart() {
+	sb.Lock()
+	defer sb.Unlock()
+
+	for sb.joinLeaveDone != nil {
+		joinLeaveDone := sb.joinLeaveDone
+		sb.Unlock()
+
+		<-joinLeaveDone
+
+		sb.Lock()
+	}
+
+	sb.joinLeaveDone = make(chan struct{})
+}
+
+// joinLeaveEnd marks the end of this join/leave operation and
+// signals the same without race to other join and leave waiters
+func (sb *sandbox) joinLeaveEnd() {
+	sb.Lock()
+	defer sb.Unlock()
+
+	if sb.joinLeaveDone != nil {
+		close(sb.joinLeaveDone)
+		sb.joinLeaveDone = nil
+	}
+}
+
+func (sb *sandbox) hasPortConfigs() bool {
+	opts := sb.Labels()
+	_, hasExpPorts := opts[netlabel.ExposedPorts]
+	_, hasPortMaps := opts[netlabel.PortMap]
+	return hasExpPorts || hasPortMaps
+}
+
+// OptionHostname function returns an option setter for hostname option to
+// be passed to NewSandbox method.
+func OptionHostname(name string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.hostName = name
+	}
+}
+
+// OptionDomainname function returns an option setter for domainname option to
+// be passed to NewSandbox method.
+func OptionDomainname(name string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.domainName = name
+	}
+}
+
+// OptionHostsPath function returns an option setter for hostspath option to
+// be passed to NewSandbox method.
+func OptionHostsPath(path string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.hostsPath = path
+	}
+}
+
+// OptionOriginHostsPath function returns an option setter for origin hosts file path
+// to be passed to NewSandbox method.
+func OptionOriginHostsPath(path string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.originHostsPath = path
+	}
+}
+
+// OptionExtraHost function returns an option setter for extra /etc/hosts options
+// which is a name and IP as strings.
+func OptionExtraHost(name string, IP string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.extraHosts = append(sb.config.extraHosts, extraHost{name: name, IP: IP})
+	}
+}
+
+// OptionParentUpdate function returns an option setter for parent container
+// which needs to update the IP address for the linked container.
+func OptionParentUpdate(cid string, name, ip string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.parentUpdates = append(sb.config.parentUpdates, parentUpdate{cid: cid, name: name, ip: ip})
+	}
+}
+
+// OptionResolvConfPath function returns an option setter for resolvconfpath option to
+// be passed to net container methods.
+func OptionResolvConfPath(path string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.resolvConfPath = path
+	}
+}
+
+// OptionOriginResolvConfPath function returns an option setter to set the path to the
+// origin resolv.conf file to be passed to net container methods.
+func OptionOriginResolvConfPath(path string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.originResolvConfPath = path
+	}
+}
+
+// OptionDNS function returns an option setter for dns entry option to
+// be passed to container Create method.
+func OptionDNS(dns string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.dnsList = append(sb.config.dnsList, dns)
+	}
+}
+
+// OptionDNSSearch function returns an option setter for dns search entry option to
+// be passed to container Create method.
+func OptionDNSSearch(search string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.dnsSearchList = append(sb.config.dnsSearchList, search)
+	}
+}
+
+// OptionDNSOptions function returns an option setter for dns options entry option to
+// be passed to container Create method.
+func OptionDNSOptions(options string) SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.dnsOptionsList = append(sb.config.dnsOptionsList, options)
+	}
+}
+
+// OptionUseDefaultSandbox function returns an option setter for using default sandbox to
+// be passed to container Create method.
+func OptionUseDefaultSandbox() SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.useDefaultSandBox = true
+	}
+}
+
+// OptionUseExternalKey function returns an option setter for using provided namespace
+// instead of creating one.
+func OptionUseExternalKey() SandboxOption {
+	return func(sb *sandbox) {
+		sb.config.useExternalKey = true
+	}
+}
+
+// OptionGeneric function returns an option setter for Generic configuration
+// that is not managed by libNetwork but can be used by the Drivers during the call to
+// net container creation method. Container Labels are a good example.
+func OptionGeneric(generic map[string]interface{}) SandboxOption {
+	return func(sb *sandbox) {
+		if sb.config.generic == nil {
+			sb.config.generic = make(map[string]interface{}, len(generic))
+		}
+		for k, v := range generic {
+			sb.config.generic[k] = v
+		}
+	}
+}
+
+// OptionExposedPorts function returns an option setter for the container exposed
+// ports option to be passed to container Create method.
+func OptionExposedPorts(exposedPorts []types.TransportPort) SandboxOption {
+	return func(sb *sandbox) {
+		if sb.config.generic == nil {
+			sb.config.generic = make(map[string]interface{})
+		}
+		// Defensive copy
+		eps := make([]types.TransportPort, len(exposedPorts))
+		copy(eps, exposedPorts)
+		// Store endpoint label and in generic because driver needs it
+		sb.config.exposedPorts = eps
+		sb.config.generic[netlabel.ExposedPorts] = eps
+	}
+}
+
+// OptionPortMapping function returns an option setter for the mapping
+// ports option to be passed to container Create method.
+func OptionPortMapping(portBindings []types.PortBinding) SandboxOption {
+	return func(sb *sandbox) {
+		if sb.config.generic == nil {
+			sb.config.generic = make(map[string]interface{})
+		}
+		// Store a copy of the bindings as generic data to pass to the driver
+		pbs := make([]types.PortBinding, len(portBindings))
+		copy(pbs, portBindings)
+		sb.config.generic[netlabel.PortMap] = pbs
+	}
+}
+
+// OptionIngress function returns an option setter for marking a
+// sandbox as the controller's ingress sandbox.
+func OptionIngress() SandboxOption {
+	return func(sb *sandbox) {
+		sb.ingress = true
+	}
+}
+
+func (eh epHeap) Len() int { return len(eh) }
+
+func (eh epHeap) Less(i, j int) bool {
+	var (
+		cip, cjp int
+		ok       bool
+	)
+
+	ci, _ := eh[i].getSandbox()
+	cj, _ := eh[j].getSandbox()
+
+	epi := eh[i]
+	epj := eh[j]
+
+	if epi.endpointInGWNetwork() {
+		return false
+	}
+
+	if epj.endpointInGWNetwork() {
+		return true
+	}
+
+	if epi.getNetwork().Internal() {
+		return false
+	}
+
+	if epj.getNetwork().Internal() {
+		return true
+	}
+
+	if epi.joinInfo != nil && epj.joinInfo != nil {
+		if (epi.joinInfo.gw != nil && epi.joinInfo.gw6 != nil) &&
+			(epj.joinInfo.gw == nil || epj.joinInfo.gw6 == nil) {
+			return true
+		}
+		if (epj.joinInfo.gw != nil && epj.joinInfo.gw6 != nil) &&
+			(epi.joinInfo.gw == nil || epi.joinInfo.gw6 == nil) {
+			return false
+		}
+	}
+
+	if ci != nil {
+		cip, ok = ci.epPriority[eh[i].ID()]
+		if !ok {
+			cip = 0
+		}
+	}
+
+	if cj != nil {
+		cjp, ok = cj.epPriority[eh[j].ID()]
+		if !ok {
+			cjp = 0
+		}
+	}
+
+	if cip == cjp {
+		return eh[i].network.Name() < eh[j].network.Name()
+	}
+
+	return cip > cjp
+}
+
+func (eh epHeap) Swap(i, j int) { eh[i], eh[j] = eh[j], eh[i] }
+
+func (eh *epHeap) Push(x interface{}) {
+	*eh = append(*eh, x.(*endpoint))
+}
+
+func (eh *epHeap) Pop() interface{} {
+	old := *eh
+	n := len(old)
+	x := old[n-1]
+	*eh = old[0 : n-1]
+	return x
+}
+
+func (sb *sandbox) NdotsSet() bool {
+	return sb.ndotsSet
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_dns_unix.go b/vendor/github.com/docker/libnetwork/sandbox_dns_unix.go
new file mode 100644
index 0000000000..c4da9272e5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_dns_unix.go
@@ -0,0 +1,420 @@
+// +build !windows
+
+package libnetwork
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path"
+	"path/filepath"
+	"strconv"
+	"strings"
+
+	"github.com/docker/libnetwork/etchosts"
+	"github.com/docker/libnetwork/resolvconf"
+	"github.com/docker/libnetwork/resolvconf/dns"
+	"github.com/docker/libnetwork/types"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	defaultPrefix = "/var/lib/docker/network/files"
+	dirPerm       = 0755
+	filePerm      = 0644
+)
+
+func (sb *sandbox) startResolver(restore bool) {
+	sb.resolverOnce.Do(func() {
+		var err error
+		sb.resolver = NewResolver(resolverIPSandbox, true, sb.Key(), sb)
+		defer func() {
+			if err != nil {
+				sb.resolver = nil
+			}
+		}()
+
+		// In the case of live restore container is already running with
+		// right resolv.conf contents created before. Just update the
+		// external DNS servers from the restored sandbox for embedded
+		// server to use.
+		if !restore {
+			err = sb.rebuildDNS()
+			if err != nil {
+				logrus.Errorf("Updating resolv.conf failed for container %s, %q", sb.ContainerID(), err)
+				return
+			}
+		}
+		sb.resolver.SetExtServers(sb.extDNS)
+
+		if err = sb.osSbox.InvokeFunc(sb.resolver.SetupFunc(0)); err != nil {
+			logrus.Errorf("Resolver Setup function failed for container %s, %q", sb.ContainerID(), err)
+			return
+		}
+
+		if err = sb.resolver.Start(); err != nil {
+			logrus.Errorf("Resolver Start failed for container %s, %q", sb.ContainerID(), err)
+		}
+	})
+}
+
+func (sb *sandbox) setupResolutionFiles() error {
+	if err := sb.buildHostsFile(); err != nil {
+		return err
+	}
+
+	if err := sb.updateParentHosts(); err != nil {
+		return err
+	}
+
+	return sb.setupDNS()
+}
+
+func (sb *sandbox) buildHostsFile() error {
+	if sb.config.hostsPath == "" {
+		sb.config.hostsPath = defaultPrefix + "/" + sb.id + "/hosts"
+	}
+
+	dir, _ := filepath.Split(sb.config.hostsPath)
+	if err := createBasePath(dir); err != nil {
+		return err
+	}
+
+	// This is for the host mode networking
+	if sb.config.originHostsPath != "" {
+		if err := copyFile(sb.config.originHostsPath, sb.config.hostsPath); err != nil && !os.IsNotExist(err) {
+			return types.InternalErrorf("could not copy source hosts file %s to %s: %v", sb.config.originHostsPath, sb.config.hostsPath, err)
+		}
+		return nil
+	}
+
+	extraContent := make([]etchosts.Record, 0, len(sb.config.extraHosts))
+	for _, extraHost := range sb.config.extraHosts {
+		extraContent = append(extraContent, etchosts.Record{Hosts: extraHost.name, IP: extraHost.IP})
+	}
+
+	return etchosts.Build(sb.config.hostsPath, "", sb.config.hostName, sb.config.domainName, extraContent)
+}
+
+func (sb *sandbox) updateHostsFile(ifaceIP string) error {
+	if ifaceIP == "" {
+		return nil
+	}
+
+	if sb.config.originHostsPath != "" {
+		return nil
+	}
+
+	// User might have provided a FQDN in hostname or split it across hostname
+	// and domainname.  We want the FQDN and the bare hostname.
+	fqdn := sb.config.hostName
+	mhost := sb.config.hostName
+	if sb.config.domainName != "" {
+		fqdn = fmt.Sprintf("%s.%s", fqdn, sb.config.domainName)
+	}
+
+	parts := strings.SplitN(fqdn, ".", 2)
+	if len(parts) == 2 {
+		mhost = fmt.Sprintf("%s %s", fqdn, parts[0])
+	}
+
+	extraContent := []etchosts.Record{{Hosts: mhost, IP: ifaceIP}}
+
+	sb.addHostsEntries(extraContent)
+	return nil
+}
+
+func (sb *sandbox) addHostsEntries(recs []etchosts.Record) {
+	if err := etchosts.Add(sb.config.hostsPath, recs); err != nil {
+		logrus.Warnf("Failed adding service host entries to the running container: %v", err)
+	}
+}
+
+func (sb *sandbox) deleteHostsEntries(recs []etchosts.Record) {
+	if err := etchosts.Delete(sb.config.hostsPath, recs); err != nil {
+		logrus.Warnf("Failed deleting service host entries to the running container: %v", err)
+	}
+}
+
+func (sb *sandbox) updateParentHosts() error {
+	var pSb Sandbox
+
+	for _, update := range sb.config.parentUpdates {
+		sb.controller.WalkSandboxes(SandboxContainerWalker(&pSb, update.cid))
+		if pSb == nil {
+			continue
+		}
+		if err := etchosts.Update(pSb.(*sandbox).config.hostsPath, update.ip, update.name); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func (sb *sandbox) restorePath() {
+	if sb.config.resolvConfPath == "" {
+		sb.config.resolvConfPath = defaultPrefix + "/" + sb.id + "/resolv.conf"
+	}
+	sb.config.resolvConfHashFile = sb.config.resolvConfPath + ".hash"
+	if sb.config.hostsPath == "" {
+		sb.config.hostsPath = defaultPrefix + "/" + sb.id + "/hosts"
+	}
+}
+
+func (sb *sandbox) setExternalResolvers(content []byte, addrType int, checkLoopback bool) {
+	servers := resolvconf.GetNameservers(content, addrType)
+	for _, ip := range servers {
+		hostLoopback := false
+		if checkLoopback {
+			hostLoopback = dns.IsIPv4Localhost(ip)
+		}
+		sb.extDNS = append(sb.extDNS, extDNSEntry{
+			IPStr:        ip,
+			HostLoopback: hostLoopback,
+		})
+	}
+}
+
+func (sb *sandbox) setupDNS() error {
+	var newRC *resolvconf.File
+
+	if sb.config.resolvConfPath == "" {
+		sb.config.resolvConfPath = defaultPrefix + "/" + sb.id + "/resolv.conf"
+	}
+
+	sb.config.resolvConfHashFile = sb.config.resolvConfPath + ".hash"
+
+	dir, _ := filepath.Split(sb.config.resolvConfPath)
+	if err := createBasePath(dir); err != nil {
+		return err
+	}
+
+	// This is for the host mode networking
+	if sb.config.originResolvConfPath != "" {
+		if err := copyFile(sb.config.originResolvConfPath, sb.config.resolvConfPath); err != nil {
+			if !os.IsNotExist(err) {
+				return fmt.Errorf("could not copy source resolv.conf file %s to %s: %v", sb.config.originResolvConfPath, sb.config.resolvConfPath, err)
+			}
+			logrus.Infof("%s does not exist, we create an empty resolv.conf for container", sb.config.originResolvConfPath)
+			if err := createFile(sb.config.resolvConfPath); err != nil {
+				return err
+			}
+		}
+		return nil
+	}
+
+	currRC, err := resolvconf.Get()
+	if err != nil {
+		if !os.IsNotExist(err) {
+			return err
+		}
+		// it's ok to continue if /etc/resolv.conf doesn't exist, default resolvers (Google's Public DNS)
+		// will be used
+		currRC = &resolvconf.File{}
+		logrus.Infof("/etc/resolv.conf does not exist")
+	}
+
+	if len(sb.config.dnsList) > 0 || len(sb.config.dnsSearchList) > 0 || len(sb.config.dnsOptionsList) > 0 {
+		var (
+			err            error
+			dnsList        = resolvconf.GetNameservers(currRC.Content, types.IP)
+			dnsSearchList  = resolvconf.GetSearchDomains(currRC.Content)
+			dnsOptionsList = resolvconf.GetOptions(currRC.Content)
+		)
+		if len(sb.config.dnsList) > 0 {
+			dnsList = sb.config.dnsList
+		}
+		if len(sb.config.dnsSearchList) > 0 {
+			dnsSearchList = sb.config.dnsSearchList
+		}
+		if len(sb.config.dnsOptionsList) > 0 {
+			dnsOptionsList = sb.config.dnsOptionsList
+		}
+		newRC, err = resolvconf.Build(sb.config.resolvConfPath, dnsList, dnsSearchList, dnsOptionsList)
+		if err != nil {
+			return err
+		}
+		// After building the resolv.conf from the user config save the
+		// external resolvers in the sandbox. Note that --dns 127.0.0.x
+		// config refers to the loopback in the container namespace
+		sb.setExternalResolvers(newRC.Content, types.IPv4, false)
+	} else {
+		// If the host resolv.conf file has 127.0.0.x container should
+		// use the host restolver for queries. This is supported by the
+		// docker embedded DNS server. Hence save the external resolvers
+		// before filtering it out.
+		sb.setExternalResolvers(currRC.Content, types.IPv4, true)
+
+		// Replace any localhost/127.* (at this point we have no info about ipv6, pass it as true)
+		if newRC, err = resolvconf.FilterResolvDNS(currRC.Content, true); err != nil {
+			return err
+		}
+		// No contention on container resolv.conf file at sandbox creation
+		if err := ioutil.WriteFile(sb.config.resolvConfPath, newRC.Content, filePerm); err != nil {
+			return types.InternalErrorf("failed to write unhaltered resolv.conf file content when setting up dns for sandbox %s: %v", sb.ID(), err)
+		}
+	}
+
+	// Write hash
+	if err := ioutil.WriteFile(sb.config.resolvConfHashFile, []byte(newRC.Hash), filePerm); err != nil {
+		return types.InternalErrorf("failed to write resolv.conf hash file when setting up dns for sandbox %s: %v", sb.ID(), err)
+	}
+
+	return nil
+}
+
+func (sb *sandbox) updateDNS(ipv6Enabled bool) error {
+	var (
+		currHash string
+		hashFile = sb.config.resolvConfHashFile
+	)
+
+	// This is for the host mode networking
+	if sb.config.originResolvConfPath != "" {
+		return nil
+	}
+
+	if len(sb.config.dnsList) > 0 || len(sb.config.dnsSearchList) > 0 || len(sb.config.dnsOptionsList) > 0 {
+		return nil
+	}
+
+	currRC, err := resolvconf.GetSpecific(sb.config.resolvConfPath)
+	if err != nil {
+		if !os.IsNotExist(err) {
+			return err
+		}
+	} else {
+		h, err := ioutil.ReadFile(hashFile)
+		if err != nil {
+			if !os.IsNotExist(err) {
+				return err
+			}
+		} else {
+			currHash = string(h)
+		}
+	}
+
+	if currHash != "" && currHash != currRC.Hash {
+		// Seems the user has changed the container resolv.conf since the last time
+		// we checked so return without doing anything.
+		//logrus.Infof("Skipping update of resolv.conf file with ipv6Enabled: %t because file was touched by user", ipv6Enabled)
+		return nil
+	}
+
+	// replace any localhost/127.* and remove IPv6 nameservers if IPv6 disabled.
+	newRC, err := resolvconf.FilterResolvDNS(currRC.Content, ipv6Enabled)
+	if err != nil {
+		return err
+	}
+	err = ioutil.WriteFile(sb.config.resolvConfPath, newRC.Content, 0644)
+	if err != nil {
+		return err
+	}
+
+	// write the new hash in a temp file and rename it to make the update atomic
+	dir := path.Dir(sb.config.resolvConfPath)
+	tmpHashFile, err := ioutil.TempFile(dir, "hash")
+	if err != nil {
+		return err
+	}
+	if err = tmpHashFile.Chmod(filePerm); err != nil {
+		tmpHashFile.Close()
+		return err
+	}
+	_, err = tmpHashFile.Write([]byte(newRC.Hash))
+	if err1 := tmpHashFile.Close(); err == nil {
+		err = err1
+	}
+	if err != nil {
+		return err
+	}
+	return os.Rename(tmpHashFile.Name(), hashFile)
+}
+
+// Embedded DNS server has to be enabled for this sandbox. Rebuild the container's
+// resolv.conf by doing the following
+// - Add only the embedded server's IP to container's resolv.conf
+// - If the embedded server needs any resolv.conf options add it to the current list
+func (sb *sandbox) rebuildDNS() error {
+	currRC, err := resolvconf.GetSpecific(sb.config.resolvConfPath)
+	if err != nil {
+		return err
+	}
+
+	if len(sb.extDNS) == 0 {
+		sb.setExternalResolvers(currRC.Content, types.IPv4, false)
+	}
+	var (
+		dnsList        = []string{sb.resolver.NameServer()}
+		dnsOptionsList = resolvconf.GetOptions(currRC.Content)
+		dnsSearchList  = resolvconf.GetSearchDomains(currRC.Content)
+	)
+
+	// external v6 DNS servers has to be listed in resolv.conf
+	dnsList = append(dnsList, resolvconf.GetNameservers(currRC.Content, types.IPv6)...)
+
+	// If the user config and embedded DNS server both have ndots option set,
+	// remember the user's config so that unqualified names not in the docker
+	// domain can be dropped.
+	resOptions := sb.resolver.ResolverOptions()
+
+dnsOpt:
+	for _, resOpt := range resOptions {
+		if strings.Contains(resOpt, "ndots") {
+			for _, option := range dnsOptionsList {
+				if strings.Contains(option, "ndots") {
+					parts := strings.Split(option, ":")
+					if len(parts) != 2 {
+						return fmt.Errorf("invalid ndots option %v", option)
+					}
+					if num, err := strconv.Atoi(parts[1]); err != nil {
+						return fmt.Errorf("invalid number for ndots option %v", option)
+					} else if num > 0 {
+						// if the user sets ndots, use the user setting
+						sb.ndotsSet = true
+						break dnsOpt
+					}
+				}
+			}
+		}
+	}
+
+	if !sb.ndotsSet {
+		// if the user did not set the ndots, set it to 0 to prioritize the service name resolution
+		// Ref: https://linux.die.net/man/5/resolv.conf
+		dnsOptionsList = append(dnsOptionsList, resOptions...)
+	}
+
+	_, err = resolvconf.Build(sb.config.resolvConfPath, dnsList, dnsSearchList, dnsOptionsList)
+	return err
+}
+
+func createBasePath(dir string) error {
+	return os.MkdirAll(dir, dirPerm)
+}
+
+func createFile(path string) error {
+	var f *os.File
+
+	dir, _ := filepath.Split(path)
+	err := createBasePath(dir)
+	if err != nil {
+		return err
+	}
+
+	f, err = os.Create(path)
+	if err == nil {
+		f.Close()
+	}
+
+	return err
+}
+
+func copyFile(src, dst string) error {
+	sBytes, err := ioutil.ReadFile(src)
+	if err != nil {
+		return err
+	}
+	return ioutil.WriteFile(dst, sBytes, filePerm)
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_dns_windows.go b/vendor/github.com/docker/libnetwork/sandbox_dns_windows.go
new file mode 100644
index 0000000000..e1ca73edef
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_dns_windows.go
@@ -0,0 +1,35 @@
+// +build windows
+
+package libnetwork
+
+import (
+	"github.com/docker/libnetwork/etchosts"
+)
+
+// Stub implementations for DNS related functions
+
+func (sb *sandbox) startResolver(bool) {
+}
+
+func (sb *sandbox) setupResolutionFiles() error {
+	return nil
+}
+
+func (sb *sandbox) restorePath() {
+}
+
+func (sb *sandbox) updateHostsFile(ifaceIP string) error {
+	return nil
+}
+
+func (sb *sandbox) addHostsEntries(recs []etchosts.Record) {
+
+}
+
+func (sb *sandbox) deleteHostsEntries(recs []etchosts.Record) {
+
+}
+
+func (sb *sandbox) updateDNS(ipv6Enabled bool) error {
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_externalkey.go b/vendor/github.com/docker/libnetwork/sandbox_externalkey.go
new file mode 100644
index 0000000000..3c362f30d6
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_externalkey.go
@@ -0,0 +1,12 @@
+package libnetwork
+
+import "github.com/docker/docker/pkg/reexec"
+
+type setKeyData struct {
+	ContainerID string
+	Key         string
+}
+
+func init() {
+	reexec.Register("libnetwork-setkey", processSetKeyReexec)
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_externalkey_unix.go b/vendor/github.com/docker/libnetwork/sandbox_externalkey_unix.go
new file mode 100644
index 0000000000..f4c4276848
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_externalkey_unix.go
@@ -0,0 +1,176 @@
+// +build linux freebsd
+
+package libnetwork
+
+import (
+	"encoding/json"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"os"
+
+	"github.com/docker/libnetwork/types"
+	"github.com/opencontainers/runc/libcontainer/configs"
+	"github.com/sirupsen/logrus"
+)
+
+const udsBase = "/run/docker/libnetwork/"
+const success = "success"
+
+// processSetKeyReexec is a private function that must be called only on an reexec path
+// It expects 3 args { [0] = "libnetwork-setkey", [1] = <container-id>, [2] = <controller-id> }
+// It also expects configs.HookState as a json string in <stdin>
+// Refer to https://github.com/opencontainers/runc/pull/160/ for more information
+func processSetKeyReexec() {
+	var err error
+
+	// Return a failure to the calling process via ExitCode
+	defer func() {
+		if err != nil {
+			logrus.Fatalf("%v", err)
+		}
+	}()
+
+	// expecting 3 args {[0]="libnetwork-setkey", [1]=<container-id>, [2]=<controller-id> }
+	if len(os.Args) < 3 {
+		err = fmt.Errorf("Re-exec expects 3 args, received : %d", len(os.Args))
+		return
+	}
+	containerID := os.Args[1]
+
+	// We expect configs.HookState as a json string in <stdin>
+	stateBuf, err := ioutil.ReadAll(os.Stdin)
+	if err != nil {
+		return
+	}
+	var state configs.HookState
+	if err = json.Unmarshal(stateBuf, &state); err != nil {
+		return
+	}
+
+	controllerID := os.Args[2]
+
+	err = SetExternalKey(controllerID, containerID, fmt.Sprintf("/proc/%d/ns/net", state.Pid))
+}
+
+// SetExternalKey provides a convenient way to set an External key to a sandbox
+func SetExternalKey(controllerID string, containerID string, key string) error {
+	keyData := setKeyData{
+		ContainerID: containerID,
+		Key:         key}
+
+	c, err := net.Dial("unix", udsBase+controllerID+".sock")
+	if err != nil {
+		return err
+	}
+	defer c.Close()
+
+	if err = sendKey(c, keyData); err != nil {
+		return fmt.Errorf("sendKey failed with : %v", err)
+	}
+	return processReturn(c)
+}
+
+func sendKey(c net.Conn, data setKeyData) error {
+	var err error
+	defer func() {
+		if err != nil {
+			c.Close()
+		}
+	}()
+
+	var b []byte
+	if b, err = json.Marshal(data); err != nil {
+		return err
+	}
+
+	_, err = c.Write(b)
+	return err
+}
+
+func processReturn(r io.Reader) error {
+	buf := make([]byte, 1024)
+	n, err := r.Read(buf[:])
+	if err != nil {
+		return fmt.Errorf("failed to read buf in processReturn : %v", err)
+	}
+	if string(buf[0:n]) != success {
+		return fmt.Errorf(string(buf[0:n]))
+	}
+	return nil
+}
+
+func (c *controller) startExternalKeyListener() error {
+	if err := os.MkdirAll(udsBase, 0600); err != nil {
+		return err
+	}
+	uds := udsBase + c.id + ".sock"
+	l, err := net.Listen("unix", uds)
+	if err != nil {
+		return err
+	}
+	if err := os.Chmod(uds, 0600); err != nil {
+		l.Close()
+		return err
+	}
+	c.Lock()
+	c.extKeyListener = l
+	c.Unlock()
+
+	go c.acceptClientConnections(uds, l)
+	return nil
+}
+
+func (c *controller) acceptClientConnections(sock string, l net.Listener) {
+	for {
+		conn, err := l.Accept()
+		if err != nil {
+			if _, err1 := os.Stat(sock); os.IsNotExist(err1) {
+				logrus.Debugf("Unix socket %s doesn't exist. cannot accept client connections", sock)
+				return
+			}
+			logrus.Errorf("Error accepting connection %v", err)
+			continue
+		}
+		go func() {
+			defer conn.Close()
+
+			err := c.processExternalKey(conn)
+			ret := success
+			if err != nil {
+				ret = err.Error()
+			}
+
+			_, err = conn.Write([]byte(ret))
+			if err != nil {
+				logrus.Errorf("Error returning to the client %v", err)
+			}
+		}()
+	}
+}
+
+func (c *controller) processExternalKey(conn net.Conn) error {
+	buf := make([]byte, 1280)
+	nr, err := conn.Read(buf)
+	if err != nil {
+		return err
+	}
+	var s setKeyData
+	if err = json.Unmarshal(buf[0:nr], &s); err != nil {
+		return err
+	}
+
+	var sandbox Sandbox
+	search := SandboxContainerWalker(&sandbox, s.ContainerID)
+	c.WalkSandboxes(search)
+	if sandbox == nil {
+		return types.BadRequestErrorf("no sandbox present for %s", s.ContainerID)
+	}
+
+	return sandbox.SetKey(s.Key)
+}
+
+func (c *controller) stopExternalKeyListener() {
+	c.extKeyListener.Close()
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_externalkey_windows.go b/vendor/github.com/docker/libnetwork/sandbox_externalkey_windows.go
new file mode 100644
index 0000000000..340cd1735f
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_externalkey_windows.go
@@ -0,0 +1,45 @@
+// +build windows
+
+package libnetwork
+
+import (
+	"io"
+	"net"
+
+	"github.com/docker/libnetwork/types"
+)
+
+// processSetKeyReexec is a private function that must be called only on an reexec path
+// It expects 3 args { [0] = "libnetwork-setkey", [1] = <container-id>, [2] = <controller-id> }
+// It also expects configs.HookState as a json string in <stdin>
+// Refer to https://github.com/opencontainers/runc/pull/160/ for more information
+func processSetKeyReexec() {
+}
+
+// SetExternalKey provides a convenient way to set an External key to a sandbox
+func SetExternalKey(controllerID string, containerID string, key string) error {
+	return types.NotImplementedErrorf("SetExternalKey isn't supported on non linux systems")
+}
+
+func sendKey(c net.Conn, data setKeyData) error {
+	return types.NotImplementedErrorf("sendKey isn't supported on non linux systems")
+}
+
+func processReturn(r io.Reader) error {
+	return types.NotImplementedErrorf("processReturn isn't supported on non linux systems")
+}
+
+// no-op on non linux systems
+func (c *controller) startExternalKeyListener() error {
+	return nil
+}
+
+func (c *controller) acceptClientConnections(sock string, l net.Listener) {
+}
+
+func (c *controller) processExternalKey(conn net.Conn) error {
+	return types.NotImplementedErrorf("processExternalKey isn't supported on non linux systems")
+}
+
+func (c *controller) stopExternalKeyListener() {
+}
diff --git a/vendor/github.com/docker/libnetwork/sandbox_store.go b/vendor/github.com/docker/libnetwork/sandbox_store.go
new file mode 100644
index 0000000000..a083644598
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/sandbox_store.go
@@ -0,0 +1,305 @@
+package libnetwork
+
+import (
+	"container/heap"
+	"encoding/json"
+	"sync"
+
+	"github.com/docker/libnetwork/datastore"
+	"github.com/docker/libnetwork/osl"
+	"github.com/sirupsen/logrus"
+)
+
+const (
+	sandboxPrefix = "sandbox"
+)
+
+type epState struct {
+	Eid string
+	Nid string
+}
+
+type sbState struct {
+	ID         string
+	Cid        string
+	c          *controller
+	dbIndex    uint64
+	dbExists   bool
+	Eps        []epState
+	EpPriority map[string]int
+	// external servers have to be persisted so that on restart of a live-restore
+	// enabled daemon we get the external servers for the running containers.
+	// We have two versions of ExtDNS to support upgrade & downgrade of the daemon
+	// between >=1.14 and <1.14 versions.
+	ExtDNS  []string
+	ExtDNS2 []extDNSEntry
+}
+
+func (sbs *sbState) Key() []string {
+	return []string{sandboxPrefix, sbs.ID}
+}
+
+func (sbs *sbState) KeyPrefix() []string {
+	return []string{sandboxPrefix}
+}
+
+func (sbs *sbState) Value() []byte {
+	b, err := json.Marshal(sbs)
+	if err != nil {
+		return nil
+	}
+	return b
+}
+
+func (sbs *sbState) SetValue(value []byte) error {
+	return json.Unmarshal(value, sbs)
+}
+
+func (sbs *sbState) Index() uint64 {
+	sbi, err := sbs.c.SandboxByID(sbs.ID)
+	if err != nil {
+		return sbs.dbIndex
+	}
+
+	sb := sbi.(*sandbox)
+	maxIndex := sb.dbIndex
+	if sbs.dbIndex > maxIndex {
+		maxIndex = sbs.dbIndex
+	}
+
+	return maxIndex
+}
+
+func (sbs *sbState) SetIndex(index uint64) {
+	sbs.dbIndex = index
+	sbs.dbExists = true
+
+	sbi, err := sbs.c.SandboxByID(sbs.ID)
+	if err != nil {
+		return
+	}
+
+	sb := sbi.(*sandbox)
+	sb.dbIndex = index
+	sb.dbExists = true
+}
+
+func (sbs *sbState) Exists() bool {
+	if sbs.dbExists {
+		return sbs.dbExists
+	}
+
+	sbi, err := sbs.c.SandboxByID(sbs.ID)
+	if err != nil {
+		return false
+	}
+
+	sb := sbi.(*sandbox)
+	return sb.dbExists
+}
+
+func (sbs *sbState) Skip() bool {
+	return false
+}
+
+func (sbs *sbState) New() datastore.KVObject {
+	return &sbState{c: sbs.c}
+}
+
+func (sbs *sbState) CopyTo(o datastore.KVObject) error {
+	dstSbs := o.(*sbState)
+	dstSbs.c = sbs.c
+	dstSbs.ID = sbs.ID
+	dstSbs.Cid = sbs.Cid
+	dstSbs.dbIndex = sbs.dbIndex
+	dstSbs.dbExists = sbs.dbExists
+	dstSbs.EpPriority = sbs.EpPriority
+
+	dstSbs.Eps = append(dstSbs.Eps, sbs.Eps...)
+
+	if len(sbs.ExtDNS2) > 0 {
+		for _, dns := range sbs.ExtDNS2 {
+			dstSbs.ExtDNS2 = append(dstSbs.ExtDNS2, dns)
+			dstSbs.ExtDNS = append(dstSbs.ExtDNS, dns.IPStr)
+		}
+		return nil
+	}
+	for _, dns := range sbs.ExtDNS {
+		dstSbs.ExtDNS = append(dstSbs.ExtDNS, dns)
+		dstSbs.ExtDNS2 = append(dstSbs.ExtDNS2, extDNSEntry{IPStr: dns})
+	}
+
+	return nil
+}
+
+func (sbs *sbState) DataScope() string {
+	return datastore.LocalScope
+}
+
+func (sb *sandbox) storeUpdate() error {
+	sbs := &sbState{
+		c:          sb.controller,
+		ID:         sb.id,
+		Cid:        sb.containerID,
+		EpPriority: sb.epPriority,
+		ExtDNS2:    sb.extDNS,
+	}
+
+	for _, ext := range sb.extDNS {
+		sbs.ExtDNS = append(sbs.ExtDNS, ext.IPStr)
+	}
+
+retry:
+	sbs.Eps = nil
+	for _, ep := range sb.getConnectedEndpoints() {
+		// If the endpoint is not persisted then do not add it to
+		// the sandbox checkpoint
+		if ep.Skip() {
+			continue
+		}
+
+		eps := epState{
+			Nid: ep.getNetwork().ID(),
+			Eid: ep.ID(),
+		}
+
+		sbs.Eps = append(sbs.Eps, eps)
+	}
+
+	err := sb.controller.updateToStore(sbs)
+	if err == datastore.ErrKeyModified {
+		// When we get ErrKeyModified it is sufficient to just
+		// go back and retry.  No need to get the object from
+		// the store because we always regenerate the store
+		// state from in memory sandbox state
+		goto retry
+	}
+
+	return err
+}
+
+func (sb *sandbox) storeDelete() error {
+	sbs := &sbState{
+		c:        sb.controller,
+		ID:       sb.id,
+		Cid:      sb.containerID,
+		dbIndex:  sb.dbIndex,
+		dbExists: sb.dbExists,
+	}
+
+	return sb.controller.deleteFromStore(sbs)
+}
+
+func (c *controller) sandboxCleanup(activeSandboxes map[string]interface{}) {
+	store := c.getStore(datastore.LocalScope)
+	if store == nil {
+		logrus.Error("Could not find local scope store while trying to cleanup sandboxes")
+		return
+	}
+
+	kvol, err := store.List(datastore.Key(sandboxPrefix), &sbState{c: c})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		logrus.Errorf("failed to get sandboxes for scope %s: %v", store.Scope(), err)
+		return
+	}
+
+	// It's normal for no sandboxes to be found. Just bail out.
+	if err == datastore.ErrKeyNotFound {
+		return
+	}
+
+	for _, kvo := range kvol {
+		sbs := kvo.(*sbState)
+
+		sb := &sandbox{
+			id:                 sbs.ID,
+			controller:         sbs.c,
+			containerID:        sbs.Cid,
+			endpoints:          epHeap{},
+			populatedEndpoints: map[string]struct{}{},
+			dbIndex:            sbs.dbIndex,
+			isStub:             true,
+			dbExists:           true,
+		}
+		// If we are restoring from a older version extDNSEntry won't have the
+		// HostLoopback field
+		if len(sbs.ExtDNS2) > 0 {
+			sb.extDNS = sbs.ExtDNS2
+		} else {
+			for _, dns := range sbs.ExtDNS {
+				sb.extDNS = append(sb.extDNS, extDNSEntry{IPStr: dns})
+			}
+		}
+
+		msg := " for cleanup"
+		create := true
+		isRestore := false
+		if val, ok := activeSandboxes[sb.ID()]; ok {
+			msg = ""
+			sb.isStub = false
+			isRestore = true
+			opts := val.([]SandboxOption)
+			sb.processOptions(opts...)
+			sb.restorePath()
+			create = !sb.config.useDefaultSandBox
+			heap.Init(&sb.endpoints)
+		}
+		sb.osSbox, err = osl.NewSandbox(sb.Key(), create, isRestore)
+		if err != nil {
+			logrus.Errorf("failed to create osl sandbox while trying to restore sandbox %s%s: %v", sb.ID()[0:7], msg, err)
+			continue
+		}
+
+		c.Lock()
+		c.sandboxes[sb.id] = sb
+		c.Unlock()
+
+		for _, eps := range sbs.Eps {
+			n, err := c.getNetworkFromStore(eps.Nid)
+			var ep *endpoint
+			if err != nil {
+				logrus.Errorf("getNetworkFromStore for nid %s failed while trying to build sandbox for cleanup: %v", eps.Nid, err)
+				n = &network{id: eps.Nid, ctrlr: c, drvOnce: &sync.Once{}, persist: true}
+				ep = &endpoint{id: eps.Eid, network: n, sandboxID: sbs.ID}
+			} else {
+				ep, err = n.getEndpointFromStore(eps.Eid)
+				if err != nil {
+					logrus.Errorf("getEndpointFromStore for eid %s failed while trying to build sandbox for cleanup: %v", eps.Eid, err)
+					ep = &endpoint{id: eps.Eid, network: n, sandboxID: sbs.ID}
+				}
+			}
+			if _, ok := activeSandboxes[sb.ID()]; ok && err != nil {
+				logrus.Errorf("failed to restore endpoint %s in %s for container %s due to %v", eps.Eid, eps.Nid, sb.ContainerID(), err)
+				continue
+			}
+			heap.Push(&sb.endpoints, ep)
+		}
+
+		if _, ok := activeSandboxes[sb.ID()]; !ok {
+			logrus.Infof("Removing stale sandbox %s (%s)", sb.id, sb.containerID)
+			if err := sb.delete(true); err != nil {
+				logrus.Errorf("Failed to delete sandbox %s while trying to cleanup: %v", sb.id, err)
+			}
+			continue
+		}
+
+		// reconstruct osl sandbox field
+		if !sb.config.useDefaultSandBox {
+			if err := sb.restoreOslSandbox(); err != nil {
+				logrus.Errorf("failed to populate fields for osl sandbox %s", sb.ID())
+				continue
+			}
+		} else {
+			c.sboxOnce.Do(func() {
+				c.defOsSbox = sb.osSbox
+			})
+		}
+
+		for _, ep := range sb.endpoints {
+			// Watch for service records
+			if !c.isAgent() {
+				c.watchSvcRecord(ep)
+			}
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/service.go b/vendor/github.com/docker/libnetwork/service.go
new file mode 100644
index 0000000000..02bcdb1884
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/service.go
@@ -0,0 +1,98 @@
+package libnetwork
+
+import (
+	"fmt"
+	"net"
+	"sync"
+
+	"github.com/docker/libnetwork/common"
+)
+
+var (
+	// A global monotonic counter to assign firewall marks to
+	// services.
+	fwMarkCtr   uint32 = 256
+	fwMarkCtrMu sync.Mutex
+)
+
+type portConfigs []*PortConfig
+
+func (p portConfigs) String() string {
+	if len(p) == 0 {
+		return ""
+	}
+
+	pc := p[0]
+	str := fmt.Sprintf("%d:%d/%s", pc.PublishedPort, pc.TargetPort, PortConfig_Protocol_name[int32(pc.Protocol)])
+	for _, pc := range p[1:] {
+		str = str + fmt.Sprintf(",%d:%d/%s", pc.PublishedPort, pc.TargetPort, PortConfig_Protocol_name[int32(pc.Protocol)])
+	}
+
+	return str
+}
+
+type serviceKey struct {
+	id    string
+	ports string
+}
+
+type service struct {
+	name string // Service Name
+	id   string // Service ID
+
+	// Map of loadbalancers for the service one-per attached
+	// network. It is keyed with network ID.
+	loadBalancers map[string]*loadBalancer
+
+	// List of ingress ports exposed by the service
+	ingressPorts portConfigs
+
+	// Service aliases
+	aliases []string
+
+	// This maps tracks for each IP address the list of endpoints ID
+	// associated with it. At stable state the endpoint ID expected is 1
+	// but during transition and service change it is possible to have
+	// temporary more than 1
+	ipToEndpoint common.SetMatrix
+
+	deleted bool
+
+	sync.Mutex
+}
+
+// assignIPToEndpoint inserts the mapping between the IP and the endpoint identifier
+// returns true if the mapping was not present, false otherwise
+// returns also the number of endpoints associated to the IP
+func (s *service) assignIPToEndpoint(ip, eID string) (bool, int) {
+	return s.ipToEndpoint.Insert(ip, eID)
+}
+
+// removeIPToEndpoint removes the mapping between the IP and the endpoint identifier
+// returns true if the mapping was deleted, false otherwise
+// returns also the number of endpoints associated to the IP
+func (s *service) removeIPToEndpoint(ip, eID string) (bool, int) {
+	return s.ipToEndpoint.Remove(ip, eID)
+}
+
+func (s *service) printIPToEndpoint(ip string) (string, bool) {
+	return s.ipToEndpoint.String(ip)
+}
+
+type lbBackend struct {
+	ip       net.IP
+	disabled bool
+}
+
+type loadBalancer struct {
+	vip    net.IP
+	fwMark uint32
+
+	// Map of backend IPs backing this loadbalancer on this
+	// network. It is keyed with endpoint ID.
+	backEnds map[string]*lbBackend
+
+	// Back pointer to service to which the loadbalancer belongs.
+	service *service
+	sync.Mutex
+}
diff --git a/vendor/github.com/docker/libnetwork/service_common.go b/vendor/github.com/docker/libnetwork/service_common.go
new file mode 100644
index 0000000000..8be2c38528
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/service_common.go
@@ -0,0 +1,395 @@
+// +build linux windows
+
+package libnetwork
+
+import (
+	"net"
+
+	"github.com/docker/libnetwork/common"
+	"github.com/sirupsen/logrus"
+)
+
+const maxSetStringLen = 350
+
+func (c *controller) addEndpointNameResolution(svcName, svcID, nID, eID, containerName string, vip net.IP, serviceAliases, taskAliases []string, ip net.IP, addService bool, method string) error {
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+
+	logrus.Debugf("addEndpointNameResolution %s %s add_service:%t sAliases:%v tAliases:%v", eID, svcName, addService, serviceAliases, taskAliases)
+
+	// Add container resolution mappings
+	c.addContainerNameResolution(nID, eID, containerName, taskAliases, ip, method)
+
+	serviceID := svcID
+	if serviceID == "" {
+		// This is the case of a normal container not part of a service
+		serviceID = eID
+	}
+
+	// Add endpoint IP to special "tasks.svc_name" so that the applications have access to DNS RR.
+	n.(*network).addSvcRecords(eID, "tasks."+svcName, serviceID, ip, nil, false, method)
+	for _, alias := range serviceAliases {
+		n.(*network).addSvcRecords(eID, "tasks."+alias, serviceID, ip, nil, false, method)
+	}
+
+	// Add service name to vip in DNS, if vip is valid. Otherwise resort to DNS RR
+	if len(vip) == 0 {
+		n.(*network).addSvcRecords(eID, svcName, serviceID, ip, nil, false, method)
+		for _, alias := range serviceAliases {
+			n.(*network).addSvcRecords(eID, alias, serviceID, ip, nil, false, method)
+		}
+	}
+
+	if addService && len(vip) != 0 {
+		n.(*network).addSvcRecords(eID, svcName, serviceID, vip, nil, false, method)
+		for _, alias := range serviceAliases {
+			n.(*network).addSvcRecords(eID, alias, serviceID, vip, nil, false, method)
+		}
+	}
+
+	return nil
+}
+
+func (c *controller) addContainerNameResolution(nID, eID, containerName string, taskAliases []string, ip net.IP, method string) error {
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+	logrus.Debugf("addContainerNameResolution %s %s", eID, containerName)
+
+	// Add resolution for container name
+	n.(*network).addSvcRecords(eID, containerName, eID, ip, nil, true, method)
+
+	// Add resolution for taskaliases
+	for _, alias := range taskAliases {
+		n.(*network).addSvcRecords(eID, alias, eID, ip, nil, true, method)
+	}
+
+	return nil
+}
+
+func (c *controller) deleteEndpointNameResolution(svcName, svcID, nID, eID, containerName string, vip net.IP, serviceAliases, taskAliases []string, ip net.IP, rmService, multipleEntries bool, method string) error {
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+
+	logrus.Debugf("deleteEndpointNameResolution %s %s rm_service:%t suppress:%t sAliases:%v tAliases:%v", eID, svcName, rmService, multipleEntries, serviceAliases, taskAliases)
+
+	// Delete container resolution mappings
+	c.delContainerNameResolution(nID, eID, containerName, taskAliases, ip, method)
+
+	serviceID := svcID
+	if serviceID == "" {
+		// This is the case of a normal container not part of a service
+		serviceID = eID
+	}
+
+	// Delete the special "tasks.svc_name" backend record.
+	if !multipleEntries {
+		n.(*network).deleteSvcRecords(eID, "tasks."+svcName, serviceID, ip, nil, false, method)
+		for _, alias := range serviceAliases {
+			n.(*network).deleteSvcRecords(eID, "tasks."+alias, serviceID, ip, nil, false, method)
+		}
+	}
+
+	// If we are doing DNS RR delete the endpoint IP from DNS record right away.
+	if !multipleEntries && len(vip) == 0 {
+		n.(*network).deleteSvcRecords(eID, svcName, serviceID, ip, nil, false, method)
+		for _, alias := range serviceAliases {
+			n.(*network).deleteSvcRecords(eID, alias, serviceID, ip, nil, false, method)
+		}
+	}
+
+	// Remove the DNS record for VIP only if we are removing the service
+	if rmService && len(vip) != 0 && !multipleEntries {
+		n.(*network).deleteSvcRecords(eID, svcName, serviceID, vip, nil, false, method)
+		for _, alias := range serviceAliases {
+			n.(*network).deleteSvcRecords(eID, alias, serviceID, vip, nil, false, method)
+		}
+	}
+
+	return nil
+}
+
+func (c *controller) delContainerNameResolution(nID, eID, containerName string, taskAliases []string, ip net.IP, method string) error {
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+	logrus.Debugf("delContainerNameResolution %s %s", eID, containerName)
+
+	// Delete resolution for container name
+	n.(*network).deleteSvcRecords(eID, containerName, eID, ip, nil, true, method)
+
+	// Delete resolution for taskaliases
+	for _, alias := range taskAliases {
+		n.(*network).deleteSvcRecords(eID, alias, eID, ip, nil, true, method)
+	}
+
+	return nil
+}
+
+func newService(name string, id string, ingressPorts []*PortConfig, serviceAliases []string) *service {
+	return &service{
+		name:          name,
+		id:            id,
+		ingressPorts:  ingressPorts,
+		loadBalancers: make(map[string]*loadBalancer),
+		aliases:       serviceAliases,
+		ipToEndpoint:  common.NewSetMatrix(),
+	}
+}
+
+func (c *controller) getLBIndex(sid, nid string, ingressPorts []*PortConfig) int {
+	skey := serviceKey{
+		id:    sid,
+		ports: portConfigs(ingressPorts).String(),
+	}
+	c.Lock()
+	s, ok := c.serviceBindings[skey]
+	c.Unlock()
+
+	if !ok {
+		return 0
+	}
+
+	s.Lock()
+	lb := s.loadBalancers[nid]
+	s.Unlock()
+
+	return int(lb.fwMark)
+}
+
+// cleanupServiceDiscovery when the network is being deleted, erase all the associated service discovery records
+func (c *controller) cleanupServiceDiscovery(cleanupNID string) {
+	c.Lock()
+	defer c.Unlock()
+	if cleanupNID == "" {
+		logrus.Debugf("cleanupServiceDiscovery for all networks")
+		c.svcRecords = make(map[string]svcInfo)
+		return
+	}
+	logrus.Debugf("cleanupServiceDiscovery for network:%s", cleanupNID)
+	delete(c.svcRecords, cleanupNID)
+}
+
+func (c *controller) cleanupServiceBindings(cleanupNID string) {
+	var cleanupFuncs []func()
+
+	logrus.Debugf("cleanupServiceBindings for %s", cleanupNID)
+	c.Lock()
+	services := make([]*service, 0, len(c.serviceBindings))
+	for _, s := range c.serviceBindings {
+		services = append(services, s)
+	}
+	c.Unlock()
+
+	for _, s := range services {
+		s.Lock()
+		// Skip the serviceBindings that got deleted
+		if s.deleted {
+			s.Unlock()
+			continue
+		}
+		for nid, lb := range s.loadBalancers {
+			if cleanupNID != "" && nid != cleanupNID {
+				continue
+			}
+			for eid, be := range lb.backEnds {
+				cleanupFuncs = append(cleanupFuncs, makeServiceCleanupFunc(c, s, nid, eid, lb.vip, be.ip))
+			}
+		}
+		s.Unlock()
+	}
+
+	for _, f := range cleanupFuncs {
+		f()
+	}
+
+}
+
+func makeServiceCleanupFunc(c *controller, s *service, nID, eID string, vip net.IP, ip net.IP) func() {
+	// ContainerName and taskAliases are not available here, this is still fine because the Service discovery
+	// cleanup already happened before. The only thing that rmServiceBinding is still doing here a part from the Load
+	// Balancer bookeeping, is to keep consistent the mapping of endpoint to IP.
+	return func() {
+		if err := c.rmServiceBinding(s.name, s.id, nID, eID, "", vip, s.ingressPorts, s.aliases, []string{}, ip, "cleanupServiceBindings", false, true); err != nil {
+			logrus.Errorf("Failed to remove service bindings for service %s network %s endpoint %s while cleanup: %v", s.id, nID, eID, err)
+		}
+	}
+}
+
+func (c *controller) addServiceBinding(svcName, svcID, nID, eID, containerName string, vip net.IP, ingressPorts []*PortConfig, serviceAliases, taskAliases []string, ip net.IP, method string) error {
+	var addService bool
+
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+
+	skey := serviceKey{
+		id:    svcID,
+		ports: portConfigs(ingressPorts).String(),
+	}
+
+	var s *service
+	for {
+		c.Lock()
+		var ok bool
+		s, ok = c.serviceBindings[skey]
+		if !ok {
+			// Create a new service if we are seeing this service
+			// for the first time.
+			s = newService(svcName, svcID, ingressPorts, serviceAliases)
+			c.serviceBindings[skey] = s
+		}
+		c.Unlock()
+		s.Lock()
+		if !s.deleted {
+			// ok the object is good to be used
+			break
+		}
+		s.Unlock()
+	}
+	logrus.Debugf("addServiceBinding from %s START for %s %s p:%p nid:%s skey:%v", method, svcName, eID, s, nID, skey)
+	defer s.Unlock()
+
+	lb, ok := s.loadBalancers[nID]
+	if !ok {
+		// Create a new load balancer if we are seeing this
+		// network attachment on the service for the first
+		// time.
+		fwMarkCtrMu.Lock()
+
+		lb = &loadBalancer{
+			vip:      vip,
+			fwMark:   fwMarkCtr,
+			backEnds: make(map[string]*lbBackend),
+			service:  s,
+		}
+
+		fwMarkCtr++
+		fwMarkCtrMu.Unlock()
+
+		s.loadBalancers[nID] = lb
+		addService = true
+	}
+
+	lb.backEnds[eID] = &lbBackend{ip, false}
+
+	ok, entries := s.assignIPToEndpoint(ip.String(), eID)
+	if !ok || entries > 1 {
+		setStr, b := s.printIPToEndpoint(ip.String())
+		if len(setStr) > maxSetStringLen {
+			setStr = setStr[:maxSetStringLen]
+		}
+		logrus.Warnf("addServiceBinding %s possible transient state ok:%t entries:%d set:%t %s", eID, ok, entries, b, setStr)
+	}
+
+	// Add loadbalancer service and backend in all sandboxes in
+	// the network only if vip is valid.
+	if len(vip) != 0 {
+		n.(*network).addLBBackend(ip, vip, lb, ingressPorts)
+	}
+
+	// Add the appropriate name resolutions
+	c.addEndpointNameResolution(svcName, svcID, nID, eID, containerName, vip, serviceAliases, taskAliases, ip, addService, "addServiceBinding")
+
+	logrus.Debugf("addServiceBinding from %s END for %s %s", method, svcName, eID)
+
+	return nil
+}
+
+func (c *controller) rmServiceBinding(svcName, svcID, nID, eID, containerName string, vip net.IP, ingressPorts []*PortConfig, serviceAliases []string, taskAliases []string, ip net.IP, method string, deleteSvcRecords bool, fullRemove bool) error {
+
+	var rmService bool
+
+	n, err := c.NetworkByID(nID)
+	if err != nil {
+		return err
+	}
+
+	skey := serviceKey{
+		id:    svcID,
+		ports: portConfigs(ingressPorts).String(),
+	}
+
+	c.Lock()
+	s, ok := c.serviceBindings[skey]
+	c.Unlock()
+	if !ok {
+		logrus.Warnf("rmServiceBinding %s %s %s aborted c.serviceBindings[skey] !ok", method, svcName, eID)
+		return nil
+	}
+
+	s.Lock()
+	defer s.Unlock()
+	logrus.Debugf("rmServiceBinding from %s START for %s %s p:%p nid:%s sKey:%v deleteSvc:%t", method, svcName, eID, s, nID, skey, deleteSvcRecords)
+	lb, ok := s.loadBalancers[nID]
+	if !ok {
+		logrus.Warnf("rmServiceBinding %s %s %s aborted s.loadBalancers[nid] !ok", method, svcName, eID)
+		return nil
+	}
+
+	be, ok := lb.backEnds[eID]
+	if !ok {
+		logrus.Warnf("rmServiceBinding %s %s %s aborted lb.backEnds[eid] && lb.disabled[eid] !ok", method, svcName, eID)
+		return nil
+	}
+
+	if fullRemove {
+		// delete regardless
+		delete(lb.backEnds, eID)
+	} else {
+		be.disabled = true
+	}
+
+	if len(lb.backEnds) == 0 {
+		// All the backends for this service have been
+		// removed. Time to remove the load balancer and also
+		// remove the service entry in IPVS.
+		rmService = true
+
+		delete(s.loadBalancers, nID)
+		logrus.Debugf("rmServiceBinding %s delete %s, p:%p in loadbalancers len:%d", eID, nID, lb, len(s.loadBalancers))
+	}
+
+	ok, entries := s.removeIPToEndpoint(ip.String(), eID)
+	if !ok || entries > 0 {
+		setStr, b := s.printIPToEndpoint(ip.String())
+		if len(setStr) > maxSetStringLen {
+			setStr = setStr[:maxSetStringLen]
+		}
+		logrus.Warnf("rmServiceBinding %s possible transient state ok:%t entries:%d set:%t %s", eID, ok, entries, b, setStr)
+	}
+
+	// Remove loadbalancer service(if needed) and backend in all
+	// sandboxes in the network only if the vip is valid.
+	if len(vip) != 0 && entries == 0 {
+		n.(*network).rmLBBackend(ip, vip, lb, ingressPorts, rmService, fullRemove)
+	}
+
+	// Delete the name resolutions
+	if deleteSvcRecords {
+		c.deleteEndpointNameResolution(svcName, svcID, nID, eID, containerName, vip, serviceAliases, taskAliases, ip, rmService, entries > 0, "rmServiceBinding")
+	}
+
+	if len(s.loadBalancers) == 0 {
+		// All loadbalancers for the service removed. Time to
+		// remove the service itself.
+		c.Lock()
+
+		// Mark the object as deleted so that the add won't use it wrongly
+		s.deleted = true
+		// NOTE The delete from the serviceBindings map has to be the last operation else we are allowing a race between this service
+		// that is getting deleted and a new service that will be created if the entry is not anymore there
+		delete(c.serviceBindings, skey)
+		c.Unlock()
+	}
+
+	logrus.Debugf("rmServiceBinding from %s END for %s %s", method, svcName, eID)
+	return nil
+}
diff --git a/vendor/github.com/docker/libnetwork/service_linux.go b/vendor/github.com/docker/libnetwork/service_linux.go
new file mode 100644
index 0000000000..ef0590df78
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/service_linux.go
@@ -0,0 +1,796 @@
+package libnetwork
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"sync"
+	"syscall"
+
+	"github.com/docker/docker/pkg/reexec"
+	"github.com/docker/libnetwork/iptables"
+	"github.com/docker/libnetwork/ipvs"
+	"github.com/docker/libnetwork/ns"
+	"github.com/gogo/protobuf/proto"
+	"github.com/ishidawataru/sctp"
+	"github.com/sirupsen/logrus"
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+func init() {
+	reexec.Register("fwmarker", fwMarker)
+	reexec.Register("redirecter", redirecter)
+}
+
+// Get all loadbalancers on this network that is currently discovered
+// on this node.
+func (n *network) connectedLoadbalancers() []*loadBalancer {
+	c := n.getController()
+
+	c.Lock()
+	serviceBindings := make([]*service, 0, len(c.serviceBindings))
+	for _, s := range c.serviceBindings {
+		serviceBindings = append(serviceBindings, s)
+	}
+	c.Unlock()
+
+	var lbs []*loadBalancer
+	for _, s := range serviceBindings {
+		s.Lock()
+		// Skip the serviceBindings that got deleted
+		if s.deleted {
+			s.Unlock()
+			continue
+		}
+		if lb, ok := s.loadBalancers[n.ID()]; ok {
+			lbs = append(lbs, lb)
+		}
+		s.Unlock()
+	}
+
+	return lbs
+}
+
+// Populate all loadbalancers on the network that the passed endpoint
+// belongs to, into this sandbox.
+func (sb *sandbox) populateLoadbalancers(ep *endpoint) {
+	var gwIP net.IP
+
+	// This is an interface less endpoint. Nothing to do.
+	if ep.Iface() == nil {
+		return
+	}
+
+	n := ep.getNetwork()
+	eIP := ep.Iface().Address()
+
+	if n.ingress {
+		if err := addRedirectRules(sb.Key(), eIP, ep.ingressPorts); err != nil {
+			logrus.Errorf("Failed to add redirect rules for ep %s (%s): %v", ep.Name(), ep.ID()[0:7], err)
+		}
+	}
+
+	if sb.ingress {
+		// For the ingress sandbox if this is not gateway
+		// endpoint do nothing.
+		if ep != sb.getGatewayEndpoint() {
+			return
+		}
+
+		// This is the gateway endpoint. Now get the ingress
+		// network and plumb the loadbalancers.
+		gwIP = ep.Iface().Address().IP
+		for _, ep := range sb.getConnectedEndpoints() {
+			if !ep.endpointInGWNetwork() {
+				n = ep.getNetwork()
+				eIP = ep.Iface().Address()
+			}
+		}
+	}
+
+	for _, lb := range n.connectedLoadbalancers() {
+		// Skip if vip is not valid.
+		if len(lb.vip) == 0 {
+			continue
+		}
+
+		lb.service.Lock()
+		for _, be := range lb.backEnds {
+			if !be.disabled {
+				sb.addLBBackend(be.ip, lb.vip, lb.fwMark, lb.service.ingressPorts, eIP, gwIP, n.ingress)
+			}
+		}
+		lb.service.Unlock()
+	}
+}
+
+// Add loadbalancer backend to all sandboxes which has a connection to
+// this network. If needed add the service as well.
+func (n *network) addLBBackend(ip, vip net.IP, lb *loadBalancer, ingressPorts []*PortConfig) {
+	n.WalkEndpoints(func(e Endpoint) bool {
+		ep := e.(*endpoint)
+		if sb, ok := ep.getSandbox(); ok {
+			if !sb.isEndpointPopulated(ep) {
+				return false
+			}
+
+			var gwIP net.IP
+			if ep := sb.getGatewayEndpoint(); ep != nil {
+				gwIP = ep.Iface().Address().IP
+			}
+
+			sb.addLBBackend(ip, vip, lb.fwMark, ingressPorts, ep.Iface().Address(), gwIP, n.ingress)
+		}
+
+		return false
+	})
+}
+
+// Remove loadbalancer backend from all sandboxes which has a
+// connection to this network. If needed remove the service entry as
+// well, as specified by the rmService bool.
+func (n *network) rmLBBackend(ip, vip net.IP, lb *loadBalancer, ingressPorts []*PortConfig, rmService bool, fullRemove bool) {
+	n.WalkEndpoints(func(e Endpoint) bool {
+		ep := e.(*endpoint)
+		if sb, ok := ep.getSandbox(); ok {
+			if !sb.isEndpointPopulated(ep) {
+				return false
+			}
+
+			var gwIP net.IP
+			if ep := sb.getGatewayEndpoint(); ep != nil {
+				gwIP = ep.Iface().Address().IP
+			}
+
+			sb.rmLBBackend(ip, vip, lb.fwMark, ingressPorts, ep.Iface().Address(), gwIP, rmService, fullRemove, n.ingress)
+		}
+
+		return false
+	})
+}
+
+// Add loadbalancer backend into one connected sandbox.
+func (sb *sandbox) addLBBackend(ip, vip net.IP, fwMark uint32, ingressPorts []*PortConfig, eIP *net.IPNet, gwIP net.IP, isIngressNetwork bool) {
+	if sb.osSbox == nil {
+		return
+	}
+
+	if isIngressNetwork && !sb.ingress {
+		return
+	}
+
+	i, err := ipvs.New(sb.Key())
+	if err != nil {
+		logrus.Errorf("Failed to create an ipvs handle for sbox %s (%s,%s) for lb addition: %v", sb.ID()[0:7], sb.ContainerID()[0:7], sb.Key(), err)
+		return
+	}
+	defer i.Close()
+
+	s := &ipvs.Service{
+		AddressFamily: nl.FAMILY_V4,
+		FWMark:        fwMark,
+		SchedName:     ipvs.RoundRobin,
+	}
+
+	if !i.IsServicePresent(s) {
+		var filteredPorts []*PortConfig
+		if sb.ingress {
+			filteredPorts = filterPortConfigs(ingressPorts, false)
+			if err := programIngress(gwIP, filteredPorts, false); err != nil {
+				logrus.Errorf("Failed to add ingress: %v", err)
+				return
+			}
+		}
+
+		logrus.Debugf("Creating service for vip %s fwMark %d ingressPorts %#v in sbox %s (%s)", vip, fwMark, ingressPorts, sb.ID()[0:7], sb.ContainerID()[0:7])
+		if err := invokeFWMarker(sb.Key(), vip, fwMark, ingressPorts, eIP, false); err != nil {
+			logrus.Errorf("Failed to add firewall mark rule in sbox %s (%s): %v", sb.ID()[0:7], sb.ContainerID()[0:7], err)
+			return
+		}
+
+		if err := i.NewService(s); err != nil && err != syscall.EEXIST {
+			logrus.Errorf("Failed to create a new service for vip %s fwmark %d in sbox %s (%s): %v", vip, fwMark, sb.ID()[0:7], sb.ContainerID()[0:7], err)
+			return
+		}
+	}
+
+	d := &ipvs.Destination{
+		AddressFamily: nl.FAMILY_V4,
+		Address:       ip,
+		Weight:        1,
+	}
+
+	// Remove the sched name before using the service to add
+	// destination.
+	s.SchedName = ""
+	if err := i.NewDestination(s, d); err != nil && err != syscall.EEXIST {
+		logrus.Errorf("Failed to create real server %s for vip %s fwmark %d in sbox %s (%s): %v", ip, vip, fwMark, sb.ID()[0:7], sb.ContainerID()[0:7], err)
+	}
+}
+
+// Remove loadbalancer backend from one connected sandbox.
+func (sb *sandbox) rmLBBackend(ip, vip net.IP, fwMark uint32, ingressPorts []*PortConfig, eIP *net.IPNet, gwIP net.IP, rmService bool, fullRemove bool, isIngressNetwork bool) {
+	if sb.osSbox == nil {
+		return
+	}
+
+	if isIngressNetwork && !sb.ingress {
+		return
+	}
+
+	i, err := ipvs.New(sb.Key())
+	if err != nil {
+		logrus.Errorf("Failed to create an ipvs handle for sbox %s (%s,%s) for lb removal: %v", sb.ID()[0:7], sb.ContainerID()[0:7], sb.Key(), err)
+		return
+	}
+	defer i.Close()
+
+	s := &ipvs.Service{
+		AddressFamily: nl.FAMILY_V4,
+		FWMark:        fwMark,
+	}
+
+	d := &ipvs.Destination{
+		AddressFamily: nl.FAMILY_V4,
+		Address:       ip,
+		Weight:        1,
+	}
+
+	if fullRemove {
+		if err := i.DelDestination(s, d); err != nil && err != syscall.ENOENT {
+			logrus.Errorf("Failed to delete real server %s for vip %s fwmark %d in sbox %s (%s): %v", ip, vip, fwMark, sb.ID()[0:7], sb.ContainerID()[0:7], err)
+		}
+	} else {
+		d.Weight = 0
+		if err := i.UpdateDestination(s, d); err != nil && err != syscall.ENOENT {
+			logrus.Errorf("Failed to set LB weight of real server %s to 0 for vip %s fwmark %d in sbox %s (%s): %v", ip, vip, fwMark, sb.ID()[0:7], sb.ContainerID()[0:7], err)
+		}
+	}
+
+	if rmService {
+		s.SchedName = ipvs.RoundRobin
+		if err := i.DelService(s); err != nil && err != syscall.ENOENT {
+			logrus.Errorf("Failed to delete service for vip %s fwmark %d in sbox %s (%s): %v", vip, fwMark, sb.ID()[0:7], sb.ContainerID()[0:7], err)
+		}
+
+		var filteredPorts []*PortConfig
+		if sb.ingress {
+			filteredPorts = filterPortConfigs(ingressPorts, true)
+			if err := programIngress(gwIP, filteredPorts, true); err != nil {
+				logrus.Errorf("Failed to delete ingress: %v", err)
+			}
+		}
+
+		if err := invokeFWMarker(sb.Key(), vip, fwMark, ingressPorts, eIP, true); err != nil {
+			logrus.Errorf("Failed to delete firewall mark rule in sbox %s (%s): %v", sb.ID()[0:7], sb.ContainerID()[0:7], err)
+		}
+	}
+}
+
+const ingressChain = "DOCKER-INGRESS"
+
+var (
+	ingressOnce     sync.Once
+	ingressProxyMu  sync.Mutex
+	ingressProxyTbl = make(map[string]io.Closer)
+	portConfigMu    sync.Mutex
+	portConfigTbl   = make(map[PortConfig]int)
+)
+
+func filterPortConfigs(ingressPorts []*PortConfig, isDelete bool) []*PortConfig {
+	portConfigMu.Lock()
+	iPorts := make([]*PortConfig, 0, len(ingressPorts))
+	for _, pc := range ingressPorts {
+		if isDelete {
+			if cnt, ok := portConfigTbl[*pc]; ok {
+				// This is the last reference to this
+				// port config. Delete the port config
+				// and add it to filtered list to be
+				// plumbed.
+				if cnt == 1 {
+					delete(portConfigTbl, *pc)
+					iPorts = append(iPorts, pc)
+					continue
+				}
+
+				portConfigTbl[*pc] = cnt - 1
+			}
+
+			continue
+		}
+
+		if cnt, ok := portConfigTbl[*pc]; ok {
+			portConfigTbl[*pc] = cnt + 1
+			continue
+		}
+
+		// We are adding it for the first time. Add it to the
+		// filter list to be plumbed.
+		portConfigTbl[*pc] = 1
+		iPorts = append(iPorts, pc)
+	}
+	portConfigMu.Unlock()
+
+	return iPorts
+}
+
+func programIngress(gwIP net.IP, ingressPorts []*PortConfig, isDelete bool) error {
+	addDelOpt := "-I"
+	if isDelete {
+		addDelOpt = "-D"
+	}
+
+	chainExists := iptables.ExistChain(ingressChain, iptables.Nat)
+	filterChainExists := iptables.ExistChain(ingressChain, iptables.Filter)
+
+	ingressOnce.Do(func() {
+		// Flush nat table and filter table ingress chain rules during init if it
+		// exists. It might contain stale rules from previous life.
+		if chainExists {
+			if err := iptables.RawCombinedOutput("-t", "nat", "-F", ingressChain); err != nil {
+				logrus.Errorf("Could not flush nat table ingress chain rules during init: %v", err)
+			}
+		}
+		if filterChainExists {
+			if err := iptables.RawCombinedOutput("-F", ingressChain); err != nil {
+				logrus.Errorf("Could not flush filter table ingress chain rules during init: %v", err)
+			}
+		}
+	})
+
+	if !isDelete {
+		if !chainExists {
+			if err := iptables.RawCombinedOutput("-t", "nat", "-N", ingressChain); err != nil {
+				return fmt.Errorf("failed to create ingress chain: %v", err)
+			}
+		}
+		if !filterChainExists {
+			if err := iptables.RawCombinedOutput("-N", ingressChain); err != nil {
+				return fmt.Errorf("failed to create filter table ingress chain: %v", err)
+			}
+		}
+
+		if !iptables.Exists(iptables.Nat, ingressChain, "-j", "RETURN") {
+			if err := iptables.RawCombinedOutput("-t", "nat", "-A", ingressChain, "-j", "RETURN"); err != nil {
+				return fmt.Errorf("failed to add return rule in nat table ingress chain: %v", err)
+			}
+		}
+
+		if !iptables.Exists(iptables.Filter, ingressChain, "-j", "RETURN") {
+			if err := iptables.RawCombinedOutput("-A", ingressChain, "-j", "RETURN"); err != nil {
+				return fmt.Errorf("failed to add return rule to filter table ingress chain: %v", err)
+			}
+		}
+
+		for _, chain := range []string{"OUTPUT", "PREROUTING"} {
+			if !iptables.Exists(iptables.Nat, chain, "-m", "addrtype", "--dst-type", "LOCAL", "-j", ingressChain) {
+				if err := iptables.RawCombinedOutput("-t", "nat", "-I", chain, "-m", "addrtype", "--dst-type", "LOCAL", "-j", ingressChain); err != nil {
+					return fmt.Errorf("failed to add jump rule in %s to ingress chain: %v", chain, err)
+				}
+			}
+		}
+
+		if !iptables.Exists(iptables.Filter, "FORWARD", "-j", ingressChain) {
+			if err := iptables.RawCombinedOutput("-I", "FORWARD", "-j", ingressChain); err != nil {
+				return fmt.Errorf("failed to add jump rule to %s in filter table forward chain: %v", ingressChain, err)
+			}
+			arrangeUserFilterRule()
+		}
+
+		oifName, err := findOIFName(gwIP)
+		if err != nil {
+			return fmt.Errorf("failed to find gateway bridge interface name for %s: %v", gwIP, err)
+		}
+
+		path := filepath.Join("/proc/sys/net/ipv4/conf", oifName, "route_localnet")
+		if err := ioutil.WriteFile(path, []byte{'1', '\n'}, 0644); err != nil {
+			return fmt.Errorf("could not write to %s: %v", path, err)
+		}
+
+		ruleArgs := strings.Fields(fmt.Sprintf("-m addrtype --src-type LOCAL -o %s -j MASQUERADE", oifName))
+		if !iptables.Exists(iptables.Nat, "POSTROUTING", ruleArgs...) {
+			if err := iptables.RawCombinedOutput(append([]string{"-t", "nat", "-I", "POSTROUTING"}, ruleArgs...)...); err != nil {
+				return fmt.Errorf("failed to add ingress localhost POSTROUTING rule for %s: %v", oifName, err)
+			}
+		}
+	}
+
+	for _, iPort := range ingressPorts {
+		if iptables.ExistChain(ingressChain, iptables.Nat) {
+			rule := strings.Fields(fmt.Sprintf("-t nat %s %s -p %s --dport %d -j DNAT --to-destination %s:%d",
+				addDelOpt, ingressChain, strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.PublishedPort, gwIP, iPort.PublishedPort))
+			if err := iptables.RawCombinedOutput(rule...); err != nil {
+				errStr := fmt.Sprintf("setting up rule failed, %v: %v", rule, err)
+				if !isDelete {
+					return fmt.Errorf("%s", errStr)
+				}
+
+				logrus.Infof("%s", errStr)
+			}
+		}
+
+		// Filter table rules to allow a published service to be accessible in the local node from..
+		// 1) service tasks attached to other networks
+		// 2) unmanaged containers on bridge networks
+		rule := strings.Fields(fmt.Sprintf("%s %s -m state -p %s --sport %d --state ESTABLISHED,RELATED -j ACCEPT",
+			addDelOpt, ingressChain, strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.PublishedPort))
+		if err := iptables.RawCombinedOutput(rule...); err != nil {
+			errStr := fmt.Sprintf("setting up rule failed, %v: %v", rule, err)
+			if !isDelete {
+				return fmt.Errorf("%s", errStr)
+			}
+			logrus.Warnf("%s", errStr)
+		}
+
+		rule = strings.Fields(fmt.Sprintf("%s %s -p %s --dport %d -j ACCEPT",
+			addDelOpt, ingressChain, strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.PublishedPort))
+		if err := iptables.RawCombinedOutput(rule...); err != nil {
+			errStr := fmt.Sprintf("setting up rule failed, %v: %v", rule, err)
+			if !isDelete {
+				return fmt.Errorf("%s", errStr)
+			}
+
+			logrus.Warnf("%s", errStr)
+		}
+
+		if err := plumbProxy(iPort, isDelete); err != nil {
+			logrus.Warnf("failed to create proxy for port %d: %v", iPort.PublishedPort, err)
+		}
+	}
+
+	return nil
+}
+
+// In the filter table FORWARD chain the first rule should be to jump to
+// DOCKER-USER so the user is able to filter packet first.
+// The second rule should be jump to INGRESS-CHAIN.
+// This chain has the rules to allow access to the published ports for swarm tasks
+// from local bridge networks and docker_gwbridge (ie:taks on other swarm netwroks)
+func arrangeIngressFilterRule() {
+	if iptables.ExistChain(ingressChain, iptables.Filter) {
+		if iptables.Exists(iptables.Filter, "FORWARD", "-j", ingressChain) {
+			if err := iptables.RawCombinedOutput("-D", "FORWARD", "-j", ingressChain); err != nil {
+				logrus.Warnf("failed to delete jump rule to ingressChain in filter table: %v", err)
+			}
+		}
+		if err := iptables.RawCombinedOutput("-I", "FORWARD", "-j", ingressChain); err != nil {
+			logrus.Warnf("failed to add jump rule to ingressChain in filter table: %v", err)
+		}
+	}
+}
+
+func findOIFName(ip net.IP) (string, error) {
+	nlh := ns.NlHandle()
+
+	routes, err := nlh.RouteGet(ip)
+	if err != nil {
+		return "", err
+	}
+
+	if len(routes) == 0 {
+		return "", fmt.Errorf("no route to %s", ip)
+	}
+
+	// Pick the first route(typically there is only one route). We
+	// don't support multipath.
+	link, err := nlh.LinkByIndex(routes[0].LinkIndex)
+	if err != nil {
+		return "", err
+	}
+
+	return link.Attrs().Name, nil
+}
+
+func plumbProxy(iPort *PortConfig, isDelete bool) error {
+	var (
+		err error
+		l   io.Closer
+	)
+
+	portSpec := fmt.Sprintf("%d/%s", iPort.PublishedPort, strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]))
+	if isDelete {
+		ingressProxyMu.Lock()
+		if listener, ok := ingressProxyTbl[portSpec]; ok {
+			if listener != nil {
+				listener.Close()
+			}
+		}
+		ingressProxyMu.Unlock()
+
+		return nil
+	}
+
+	switch iPort.Protocol {
+	case ProtocolTCP:
+		l, err = net.ListenTCP("tcp", &net.TCPAddr{Port: int(iPort.PublishedPort)})
+	case ProtocolUDP:
+		l, err = net.ListenUDP("udp", &net.UDPAddr{Port: int(iPort.PublishedPort)})
+	case ProtocolSCTP:
+		l, err = sctp.ListenSCTP("sctp", &sctp.SCTPAddr{Port: int(iPort.PublishedPort)})
+	default:
+		err = fmt.Errorf("unknown protocol %v", iPort.Protocol)
+	}
+
+	if err != nil {
+		return err
+	}
+
+	ingressProxyMu.Lock()
+	ingressProxyTbl[portSpec] = l
+	ingressProxyMu.Unlock()
+
+	return nil
+}
+
+func writePortsToFile(ports []*PortConfig) (string, error) {
+	f, err := ioutil.TempFile("", "port_configs")
+	if err != nil {
+		return "", err
+	}
+	defer f.Close()
+
+	buf, _ := proto.Marshal(&EndpointRecord{
+		IngressPorts: ports,
+	})
+
+	n, err := f.Write(buf)
+	if err != nil {
+		return "", err
+	}
+
+	if n < len(buf) {
+		return "", io.ErrShortWrite
+	}
+
+	return f.Name(), nil
+}
+
+func readPortsFromFile(fileName string) ([]*PortConfig, error) {
+	buf, err := ioutil.ReadFile(fileName)
+	if err != nil {
+		return nil, err
+	}
+
+	var epRec EndpointRecord
+	err = proto.Unmarshal(buf, &epRec)
+	if err != nil {
+		return nil, err
+	}
+
+	return epRec.IngressPorts, nil
+}
+
+// Invoke fwmarker reexec routine to mark vip destined packets with
+// the passed firewall mark.
+func invokeFWMarker(path string, vip net.IP, fwMark uint32, ingressPorts []*PortConfig, eIP *net.IPNet, isDelete bool) error {
+	var ingressPortsFile string
+
+	if len(ingressPorts) != 0 {
+		var err error
+		ingressPortsFile, err = writePortsToFile(ingressPorts)
+		if err != nil {
+			return err
+		}
+
+		defer os.Remove(ingressPortsFile)
+	}
+
+	addDelOpt := "-A"
+	if isDelete {
+		addDelOpt = "-D"
+	}
+
+	cmd := &exec.Cmd{
+		Path:   reexec.Self(),
+		Args:   append([]string{"fwmarker"}, path, vip.String(), fmt.Sprintf("%d", fwMark), addDelOpt, ingressPortsFile, eIP.String()),
+		Stdout: os.Stdout,
+		Stderr: os.Stderr,
+	}
+
+	if err := cmd.Run(); err != nil {
+		return fmt.Errorf("reexec failed: %v", err)
+	}
+
+	return nil
+}
+
+// Firewall marker reexec function.
+func fwMarker() {
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+
+	if len(os.Args) < 7 {
+		logrus.Error("invalid number of arguments..")
+		os.Exit(1)
+	}
+
+	var ingressPorts []*PortConfig
+	if os.Args[5] != "" {
+		var err error
+		ingressPorts, err = readPortsFromFile(os.Args[5])
+		if err != nil {
+			logrus.Errorf("Failed reading ingress ports file: %v", err)
+			os.Exit(6)
+		}
+	}
+
+	vip := os.Args[2]
+	fwMark, err := strconv.ParseUint(os.Args[3], 10, 32)
+	if err != nil {
+		logrus.Errorf("bad fwmark value(%s) passed: %v", os.Args[3], err)
+		os.Exit(2)
+	}
+	addDelOpt := os.Args[4]
+
+	rules := [][]string{}
+	for _, iPort := range ingressPorts {
+		rule := strings.Fields(fmt.Sprintf("-t mangle %s PREROUTING -p %s --dport %d -j MARK --set-mark %d",
+			addDelOpt, strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.PublishedPort, fwMark))
+		rules = append(rules, rule)
+	}
+
+	ns, err := netns.GetFromPath(os.Args[1])
+	if err != nil {
+		logrus.Errorf("failed get network namespace %q: %v", os.Args[1], err)
+		os.Exit(3)
+	}
+	defer ns.Close()
+
+	if err := netns.Set(ns); err != nil {
+		logrus.Errorf("setting into container net ns %v failed, %v", os.Args[1], err)
+		os.Exit(4)
+	}
+
+	if addDelOpt == "-A" {
+		eIP, subnet, err := net.ParseCIDR(os.Args[6])
+		if err != nil {
+			logrus.Errorf("Failed to parse endpoint IP %s: %v", os.Args[6], err)
+			os.Exit(9)
+		}
+
+		ruleParams := strings.Fields(fmt.Sprintf("-m ipvs --ipvs -d %s -j SNAT --to-source %s", subnet, eIP))
+		if !iptables.Exists("nat", "POSTROUTING", ruleParams...) {
+			rule := append(strings.Fields("-t nat -A POSTROUTING"), ruleParams...)
+			rules = append(rules, rule)
+
+			err := ioutil.WriteFile("/proc/sys/net/ipv4/vs/conntrack", []byte{'1', '\n'}, 0644)
+			if err != nil {
+				logrus.Errorf("Failed to write to /proc/sys/net/ipv4/vs/conntrack: %v", err)
+				os.Exit(8)
+			}
+		}
+	}
+
+	rule := strings.Fields(fmt.Sprintf("-t mangle %s OUTPUT -d %s/32 -j MARK --set-mark %d", addDelOpt, vip, fwMark))
+	rules = append(rules, rule)
+
+	rule = strings.Fields(fmt.Sprintf("-t nat %s OUTPUT -p icmp --icmp echo-request -d %s -j DNAT --to 127.0.0.1", addDelOpt, vip))
+	rules = append(rules, rule)
+
+	for _, rule := range rules {
+		if err := iptables.RawCombinedOutputNative(rule...); err != nil {
+			logrus.Errorf("setting up rule failed, %v: %v", rule, err)
+			os.Exit(5)
+		}
+	}
+}
+
+func addRedirectRules(path string, eIP *net.IPNet, ingressPorts []*PortConfig) error {
+	var ingressPortsFile string
+
+	if len(ingressPorts) != 0 {
+		var err error
+		ingressPortsFile, err = writePortsToFile(ingressPorts)
+		if err != nil {
+			return err
+		}
+		defer os.Remove(ingressPortsFile)
+	}
+
+	cmd := &exec.Cmd{
+		Path:   reexec.Self(),
+		Args:   append([]string{"redirecter"}, path, eIP.String(), ingressPortsFile),
+		Stdout: os.Stdout,
+		Stderr: os.Stderr,
+	}
+
+	if err := cmd.Run(); err != nil {
+		return fmt.Errorf("reexec failed: %v", err)
+	}
+
+	return nil
+}
+
+// Redirecter reexec function.
+func redirecter() {
+	runtime.LockOSThread()
+	defer runtime.UnlockOSThread()
+
+	if len(os.Args) < 4 {
+		logrus.Error("invalid number of arguments..")
+		os.Exit(1)
+	}
+
+	var ingressPorts []*PortConfig
+	if os.Args[3] != "" {
+		var err error
+		ingressPorts, err = readPortsFromFile(os.Args[3])
+		if err != nil {
+			logrus.Errorf("Failed reading ingress ports file: %v", err)
+			os.Exit(2)
+		}
+	}
+
+	eIP, _, err := net.ParseCIDR(os.Args[2])
+	if err != nil {
+		logrus.Errorf("Failed to parse endpoint IP %s: %v", os.Args[2], err)
+		os.Exit(3)
+	}
+
+	rules := [][]string{}
+	for _, iPort := range ingressPorts {
+		rule := strings.Fields(fmt.Sprintf("-t nat -A PREROUTING -d %s -p %s --dport %d -j REDIRECT --to-port %d",
+			eIP.String(), strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.PublishedPort, iPort.TargetPort))
+		rules = append(rules, rule)
+		// Allow only incoming connections to exposed ports
+		iRule := strings.Fields(fmt.Sprintf("-I INPUT -d %s -p %s --dport %d -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT",
+			eIP.String(), strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.TargetPort))
+		rules = append(rules, iRule)
+		// Allow only outgoing connections from exposed ports
+		oRule := strings.Fields(fmt.Sprintf("-I OUTPUT -s %s -p %s --sport %d -m conntrack --ctstate ESTABLISHED -j ACCEPT",
+			eIP.String(), strings.ToLower(PortConfig_Protocol_name[int32(iPort.Protocol)]), iPort.TargetPort))
+		rules = append(rules, oRule)
+	}
+
+	ns, err := netns.GetFromPath(os.Args[1])
+	if err != nil {
+		logrus.Errorf("failed get network namespace %q: %v", os.Args[1], err)
+		os.Exit(4)
+	}
+	defer ns.Close()
+
+	if err := netns.Set(ns); err != nil {
+		logrus.Errorf("setting into container net ns %v failed, %v", os.Args[1], err)
+		os.Exit(5)
+	}
+
+	for _, rule := range rules {
+		if err := iptables.RawCombinedOutputNative(rule...); err != nil {
+			logrus.Errorf("setting up rule failed, %v: %v", rule, err)
+			os.Exit(6)
+		}
+	}
+
+	if len(ingressPorts) == 0 {
+		return
+	}
+
+	// Ensure blocking rules for anything else in/to ingress network
+	for _, rule := range [][]string{
+		{"-d", eIP.String(), "-p", "sctp", "-j", "DROP"},
+		{"-d", eIP.String(), "-p", "udp", "-j", "DROP"},
+		{"-d", eIP.String(), "-p", "tcp", "-j", "DROP"},
+	} {
+		if !iptables.ExistsNative(iptables.Filter, "INPUT", rule...) {
+			if err := iptables.RawCombinedOutputNative(append([]string{"-A", "INPUT"}, rule...)...); err != nil {
+				logrus.Errorf("setting up rule failed, %v: %v", rule, err)
+				os.Exit(7)
+			}
+		}
+		rule[0] = "-s"
+		if !iptables.ExistsNative(iptables.Filter, "OUTPUT", rule...) {
+			if err := iptables.RawCombinedOutputNative(append([]string{"-A", "OUTPUT"}, rule...)...); err != nil {
+				logrus.Errorf("setting up rule failed, %v: %v", rule, err)
+				os.Exit(8)
+			}
+		}
+	}
+}
diff --git a/vendor/github.com/docker/libnetwork/service_unsupported.go b/vendor/github.com/docker/libnetwork/service_unsupported.go
new file mode 100644
index 0000000000..37b9828191
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/service_unsupported.go
@@ -0,0 +1,25 @@
+// +build !linux,!windows
+
+package libnetwork
+
+import (
+	"fmt"
+	"net"
+)
+
+func (c *controller) cleanupServiceBindings(nid string) {
+}
+
+func (c *controller) addServiceBinding(name, sid, nid, eid string, vip net.IP, ingressPorts []*PortConfig, aliases []string, ip net.IP) error {
+	return fmt.Errorf("not supported")
+}
+
+func (c *controller) rmServiceBinding(name, sid, nid, eid string, vip net.IP, ingressPorts []*PortConfig, aliases []string, ip net.IP) error {
+	return fmt.Errorf("not supported")
+}
+
+func (sb *sandbox) populateLoadbalancers(ep *endpoint) {
+}
+
+func arrangeIngressFilterRule() {
+}
diff --git a/vendor/github.com/docker/libnetwork/service_windows.go b/vendor/github.com/docker/libnetwork/service_windows.go
new file mode 100644
index 0000000000..a9ce244cfd
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/service_windows.go
@@ -0,0 +1,163 @@
+package libnetwork
+
+import (
+	"net"
+
+	"github.com/Microsoft/hcsshim"
+	"github.com/docker/docker/pkg/system"
+	"github.com/sirupsen/logrus"
+)
+
+type policyLists struct {
+	ilb *hcsshim.PolicyList
+	elb *hcsshim.PolicyList
+}
+
+var lbPolicylistMap map[*loadBalancer]*policyLists
+
+func init() {
+	lbPolicylistMap = make(map[*loadBalancer]*policyLists)
+}
+
+func (n *network) addLBBackend(ip, vip net.IP, lb *loadBalancer, ingressPorts []*PortConfig) {
+
+	if system.GetOSVersion().Build > 16236 {
+		lb.Lock()
+		defer lb.Unlock()
+		//find the load balancer IP for the network.
+		var sourceVIP string
+		for _, e := range n.Endpoints() {
+			epInfo := e.Info()
+			if epInfo == nil {
+				continue
+			}
+			if epInfo.LoadBalancer() {
+				sourceVIP = epInfo.Iface().Address().IP.String()
+				break
+			}
+		}
+
+		if sourceVIP == "" {
+			logrus.Errorf("Failed to find load balancer IP for network %s", n.Name())
+			return
+		}
+
+		var endpoints []hcsshim.HNSEndpoint
+
+		for eid, be := range lb.backEnds {
+			if be.disabled {
+				continue
+			}
+			//Call HNS to get back ID (GUID) corresponding to the endpoint.
+			hnsEndpoint, err := hcsshim.GetHNSEndpointByName(eid)
+			if err != nil {
+				logrus.Errorf("Failed to find HNS ID for endpoint %v: %v", eid, err)
+				return
+			}
+
+			endpoints = append(endpoints, *hnsEndpoint)
+		}
+
+		if policies, ok := lbPolicylistMap[lb]; ok {
+
+			if policies.ilb != nil {
+				policies.ilb.Delete()
+				policies.ilb = nil
+			}
+
+			if policies.elb != nil {
+				policies.elb.Delete()
+				policies.elb = nil
+			}
+			delete(lbPolicylistMap, lb)
+		}
+
+		ilbPolicy, err := hcsshim.AddLoadBalancer(endpoints, true, sourceVIP, vip.String(), 0, 0, 0)
+		if err != nil {
+			logrus.Errorf("Failed to add ILB policy for service %s (%s) with endpoints %v using load balancer IP %s on network %s: %v",
+				lb.service.name, vip.String(), endpoints, sourceVIP, n.Name(), err)
+			return
+		}
+
+		lbPolicylistMap[lb] = &policyLists{
+			ilb: ilbPolicy,
+		}
+
+		publishedPorts := make(map[uint32]uint32)
+
+		for i, port := range ingressPorts {
+			protocol := uint16(6)
+
+			// Skip already published port
+			if publishedPorts[port.PublishedPort] == port.TargetPort {
+				continue
+			}
+
+			if port.Protocol == ProtocolUDP {
+				protocol = 17
+			}
+
+			// check if already has udp matching to add wild card publishing
+			for j := i + 1; j < len(ingressPorts); j++ {
+				if ingressPorts[j].TargetPort == port.TargetPort &&
+					ingressPorts[j].PublishedPort == port.PublishedPort {
+					protocol = 0
+				}
+			}
+
+			publishedPorts[port.PublishedPort] = port.TargetPort
+
+			lbPolicylistMap[lb].elb, err = hcsshim.AddLoadBalancer(endpoints, false, sourceVIP, "", protocol, uint16(port.TargetPort), uint16(port.PublishedPort))
+			if err != nil {
+				logrus.Errorf("Failed to add ELB policy for service %s (ip:%s target port:%v published port:%v) with endpoints %v using load balancer IP %s on network %s: %v",
+					lb.service.name, vip.String(), uint16(port.TargetPort), uint16(port.PublishedPort), endpoints, sourceVIP, n.Name(), err)
+				return
+			}
+		}
+	}
+}
+
+func (n *network) rmLBBackend(ip, vip net.IP, lb *loadBalancer, ingressPorts []*PortConfig, rmService bool, fullRemove bool) {
+	if system.GetOSVersion().Build > 16236 {
+		if numEnabledBackends(lb) > 0 {
+			//Reprogram HNS (actually VFP) with the existing backends.
+			n.addLBBackend(ip, vip, lb, ingressPorts)
+		} else {
+			lb.Lock()
+			defer lb.Unlock()
+			logrus.Debugf("No more backends for service %s (ip:%s).  Removing all policies", lb.service.name, lb.vip.String())
+
+			if policyLists, ok := lbPolicylistMap[lb]; ok {
+				if policyLists.ilb != nil {
+					policyLists.ilb.Delete()
+					policyLists.ilb = nil
+				}
+
+				if policyLists.elb != nil {
+					policyLists.elb.Delete()
+					policyLists.elb = nil
+				}
+				delete(lbPolicylistMap, lb)
+
+			} else {
+				logrus.Errorf("Failed to find policies for service %s (%s)", lb.service.name, lb.vip.String())
+			}
+		}
+	}
+}
+
+func numEnabledBackends(lb *loadBalancer) int {
+	nEnabled := 0
+	for _, be := range lb.backEnds {
+		if !be.disabled {
+			nEnabled++
+		}
+	}
+	return nEnabled
+}
+
+func (sb *sandbox) populateLoadbalancers(ep *endpoint) {
+}
+
+func arrangeIngressFilterRule() {
+}
diff --git a/vendor/github.com/docker/libnetwork/store.go b/vendor/github.com/docker/libnetwork/store.go
new file mode 100644
index 0000000000..95943f6f45
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/store.go
@@ -0,0 +1,496 @@
+package libnetwork
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/docker/libkv/store/boltdb"
+	"github.com/docker/libkv/store/consul"
+	"github.com/docker/libkv/store/etcd"
+	"github.com/docker/libkv/store/zookeeper"
+	"github.com/docker/libnetwork/datastore"
+	"github.com/sirupsen/logrus"
+)
+
+func registerKVStores() {
+	consul.Register()
+	zookeeper.Register()
+	etcd.Register()
+	boltdb.Register()
+}
+
+func (c *controller) initScopedStore(scope string, scfg *datastore.ScopeCfg) error {
+	store, err := datastore.NewDataStore(scope, scfg)
+	if err != nil {
+		return err
+	}
+	c.Lock()
+	c.stores = append(c.stores, store)
+	c.Unlock()
+
+	return nil
+}
+
+func (c *controller) initStores() error {
+	registerKVStores()
+
+	c.Lock()
+	if c.cfg == nil {
+		c.Unlock()
+		return nil
+	}
+	scopeConfigs := c.cfg.Scopes
+	c.stores = nil
+	c.Unlock()
+
+	for scope, scfg := range scopeConfigs {
+		if err := c.initScopedStore(scope, scfg); err != nil {
+			return err
+		}
+	}
+
+	c.startWatch()
+	return nil
+}
+
+func (c *controller) closeStores() {
+	for _, store := range c.getStores() {
+		store.Close()
+	}
+}
+
+func (c *controller) getStore(scope string) datastore.DataStore {
+	c.Lock()
+	defer c.Unlock()
+
+	for _, store := range c.stores {
+		if store.Scope() == scope {
+			return store
+		}
+	}
+
+	return nil
+}
+
+func (c *controller) getStores() []datastore.DataStore {
+	c.Lock()
+	defer c.Unlock()
+
+	return c.stores
+}
+
+func (c *controller) getNetworkFromStore(nid string) (*network, error) {
+	for _, store := range c.getStores() {
+		n := &network{id: nid, ctrlr: c}
+		err := store.GetObject(datastore.Key(n.Key()...), n)
+		// Continue searching in the next store if the key is not found in this store
+		if err != nil {
+			if err != datastore.ErrKeyNotFound {
+				logrus.Debugf("could not find network %s: %v", nid, err)
+			}
+			continue
+		}
+
+		ec := &endpointCnt{n: n}
+		err = store.GetObject(datastore.Key(ec.Key()...), ec)
+		if err != nil && !n.inDelete {
+			return nil, fmt.Errorf("could not find endpoint count for network %s: %v", n.Name(), err)
+		}
+
+		n.epCnt = ec
+		if n.scope == "" {
+			n.scope = store.Scope()
+		}
+		return n, nil
+	}
+
+	return nil, fmt.Errorf("network %s not found", nid)
+}
+
+func (c *controller) getNetworksForScope(scope string) ([]*network, error) {
+	var nl []*network
+
+	store := c.getStore(scope)
+	if store == nil {
+		return nil, nil
+	}
+
+	kvol, err := store.List(datastore.Key(datastore.NetworkKeyPrefix),
+		&network{ctrlr: c})
+	if err != nil && err != datastore.ErrKeyNotFound {
+		return nil, fmt.Errorf("failed to get networks for scope %s: %v",
+			scope, err)
+	}
+
+	for _, kvo := range kvol {
+		n := kvo.(*network)
+		n.ctrlr = c
+
+		ec := &endpointCnt{n: n}
+		err = store.GetObject(datastore.Key(ec.Key()...), ec)
+		if err != nil && !n.inDelete {
+			logrus.Warnf("Could not find endpoint count key %s for network %s while listing: %v", datastore.Key(ec.Key()...), n.Name(), err)
+			continue
+		}
+
+		n.epCnt = ec
+		if n.scope == "" {
+			n.scope = scope
+		}
+		nl = append(nl, n)
+	}
+
+	return nl, nil
+}
+
+func (c *controller) getNetworksFromStore() ([]*network, error) {
+	var nl []*network
+
+	for _, store := range c.getStores() {
+		kvol, err := store.List(datastore.Key(datastore.NetworkKeyPrefix),
+			&network{ctrlr: c})
+		// Continue searching in the next store if no keys found in this store
+		if err != nil {
+			if err != datastore.ErrKeyNotFound {
+				logrus.Debugf("failed to get networks for scope %s: %v", store.Scope(), err)
+			}
+			continue
+		}
+
+		kvep, err := store.Map(datastore.Key(epCntKeyPrefix), &endpointCnt{})
+		if err != nil {
+			if err != datastore.ErrKeyNotFound {
+				logrus.Warnf("failed to get endpoint_count map for scope %s: %v", store.Scope(), err)
+			}
+		}
+
+		for _, kvo := range kvol {
+			n := kvo.(*network)
+			n.Lock()
+			n.ctrlr = c
+			ec := &endpointCnt{n: n}
+			// Trim the leading & trailing "/" to make it consistent across all stores
+			if val, ok := kvep[strings.Trim(datastore.Key(ec.Key()...), "/")]; ok {
+				ec = val.(*endpointCnt)
+				ec.n = n
+				n.epCnt = ec
+			}
+			if n.scope == "" {
+				n.scope = store.Scope()
+			}
+			n.Unlock()
+			nl = append(nl, n)
+		}
+	}
+
+	return nl, nil
+}
+
+func (n *network) getEndpointFromStore(eid string) (*endpoint, error) {
+	var errors []string
+	for _, store := range n.ctrlr.getStores() {
+		ep := &endpoint{id: eid, network: n}
+		err := store.GetObject(datastore.Key(ep.Key()...), ep)
+		// Continue searching in the next store if the key is not found in this store
+		if err != nil {
+			if err != datastore.ErrKeyNotFound {
+				errors = append(errors, fmt.Sprintf("{%s:%v}, ", store.Scope(), err))
+				logrus.Debugf("could not find endpoint %s in %s: %v", eid, store.Scope(), err)
+			}
+			continue
+		}
+		return ep, nil
+	}
+	return nil, fmt.Errorf("could not find endpoint %s: %v", eid, errors)
+}
+
+func (n *network) getEndpointsFromStore() ([]*endpoint, error) {
+	var epl []*endpoint
+
+	tmp := endpoint{network: n}
+	for _, store := range n.getController().getStores() {
+		kvol, err := store.List(datastore.Key(tmp.KeyPrefix()...), &endpoint{network: n})
+		// Continue searching in the next store if no keys found in this store
+		if err != nil {
+			if err != datastore.ErrKeyNotFound {
+				logrus.Debugf("failed to get endpoints for network %s scope %s: %v",
+					n.Name(), store.Scope(), err)
+			}
+			continue
+		}
+
+		for _, kvo := range kvol {
+			ep := kvo.(*endpoint)
+			epl = append(epl, ep)
+		}
+	}
+
+	return epl, nil
+}
+
+func (c *controller) updateToStore(kvObject datastore.KVObject) error {
+	cs := c.getStore(kvObject.DataScope())
+	if cs == nil {
+		return ErrDataStoreNotInitialized(kvObject.DataScope())
+	}
+
+	if err := cs.PutObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			return err
+		}
+		return fmt.Errorf("failed to update store for object type %T: %v", kvObject, err)
+	}
+
+	return nil
+}
+
+func (c *controller) deleteFromStore(kvObject datastore.KVObject) error {
+	cs := c.getStore(kvObject.DataScope())
+	if cs == nil {
+		return ErrDataStoreNotInitialized(kvObject.DataScope())
+	}
+
+retry:
+	if err := cs.DeleteObjectAtomic(kvObject); err != nil {
+		if err == datastore.ErrKeyModified {
+			if err := cs.GetObject(datastore.Key(kvObject.Key()...), kvObject); err != nil {
+				return fmt.Errorf("could not update the kvobject to latest when trying to delete: %v", err)
+			}
+			logrus.Warnf("Error (%v) deleting object %v, retrying....", err, kvObject.Key())
+			goto retry
+		}
+		return err
+	}
+
+	return nil
+}
+
+type netWatch struct {
+	localEps  map[string]*endpoint
+	remoteEps map[string]*endpoint
+	stopCh    chan struct{}
+}
+
+func (c *controller) getLocalEps(nw *netWatch) []*endpoint {
+	c.Lock()
+	defer c.Unlock()
+
+	var epl []*endpoint
+	for _, ep := range nw.localEps {
+		epl = append(epl, ep)
+	}
+
+	return epl
+}
+
+func (c *controller) watchSvcRecord(ep *endpoint) {
+	c.watchCh <- ep
+}
+
+func (c *controller) unWatchSvcRecord(ep *endpoint) {
+	c.unWatchCh <- ep
+}
+
+func (c *controller) networkWatchLoop(nw *netWatch, ep *endpoint, ecCh <-chan datastore.KVObject) {
+	for {
+		select {
+		case <-nw.stopCh:
+			return
+		case o := <-ecCh:
+			ec := o.(*endpointCnt)
+
+			epl, err := ec.n.getEndpointsFromStore()
+			if err != nil {
+				break
+			}
+
+			c.Lock()
+			var addEp []*endpoint
+
+			delEpMap := make(map[string]*endpoint)
+			renameEpMap := make(map[string]bool)
+			for k, v := range nw.remoteEps {
+				delEpMap[k] = v
+			}
+
+			for _, lEp := range epl {
+				if _, ok := nw.localEps[lEp.ID()]; ok {
+					continue
+				}
+
+				if ep, ok := nw.remoteEps[lEp.ID()]; ok {
+					// On a container rename EP ID will remain
+					// the same but the name will change. service
+					// records should reflect the change.
+					// Keep old EP entry in the delEpMap and add
+					// EP from the store (which has the new name)
+					// into the new list
+					if lEp.name == ep.name {
+						delete(delEpMap, lEp.ID())
+						continue
+					}
+					renameEpMap[lEp.ID()] = true
+				}
+				nw.remoteEps[lEp.ID()] = lEp
+				addEp = append(addEp, lEp)
+			}
+
+			// EPs whose name are to be deleted from the svc records
+			// should also be removed from nw's remote EP list, except
+			// the ones that are getting renamed.
+			for _, lEp := range delEpMap {
+				if !renameEpMap[lEp.ID()] {
+					delete(nw.remoteEps, lEp.ID())
+				}
+			}
+			c.Unlock()
+
+			for _, lEp := range delEpMap {
+				ep.getNetwork().updateSvcRecord(lEp, c.getLocalEps(nw), false)
+
+			}
+			for _, lEp := range addEp {
+				ep.getNetwork().updateSvcRecord(lEp, c.getLocalEps(nw), true)
+			}
+		}
+	}
+}
+
+func (c *controller) processEndpointCreate(nmap map[string]*netWatch, ep *endpoint) {
+	n := ep.getNetwork()
+	if !c.isDistributedControl() && n.Scope() == datastore.SwarmScope && n.driverIsMultihost() {
+		return
+	}
+
+	c.Lock()
+	nw, ok := nmap[n.ID()]
+	c.Unlock()
+
+	if ok {
+		// Update the svc db for the local endpoint join right away
+		n.updateSvcRecord(ep, c.getLocalEps(nw), true)
+
+		c.Lock()
+		nw.localEps[ep.ID()] = ep
+
+		// If we had learned that from the kv store remove it
+		// from remote ep list now that we know that this is
+		// indeed a local endpoint
+		delete(nw.remoteEps, ep.ID())
+		c.Unlock()
+		return
+	}
+
+	nw = &netWatch{
+		localEps:  make(map[string]*endpoint),
+		remoteEps: make(map[string]*endpoint),
+	}
+
+	// Update the svc db for the local endpoint join right away
+	// Do this before adding this ep to localEps so that we don't
+	// try to update this ep's container's svc records
+	n.updateSvcRecord(ep, c.getLocalEps(nw), true)
+
+	c.Lock()
+	nw.localEps[ep.ID()] = ep
+	nmap[n.ID()] = nw
+	nw.stopCh = make(chan struct{})
+	c.Unlock()
+
+	store := c.getStore(n.DataScope())
+	if store == nil {
+		return
+	}
+
+	if !store.Watchable() {
+		return
+	}
+
+	ch, err := store.Watch(n.getEpCnt(), nw.stopCh)
+	if err != nil {
+		logrus.Warnf("Error creating watch for network: %v", err)
+		return
+	}
+
+	go c.networkWatchLoop(nw, ep, ch)
+}
+
+func (c *controller) processEndpointDelete(nmap map[string]*netWatch, ep *endpoint) {
+	n := ep.getNetwork()
+	if !c.isDistributedControl() && n.Scope() == datastore.SwarmScope && n.driverIsMultihost() {
+		return
+	}
+
+	c.Lock()
+	nw, ok := nmap[n.ID()]
+
+	if ok {
+		delete(nw.localEps, ep.ID())
+		c.Unlock()
+
+		// Update the svc db about local endpoint leave right away
+		// Do this after we remove this ep from localEps so that we
+		// don't try to remove this svc record from this ep's container.
+		n.updateSvcRecord(ep, c.getLocalEps(nw), false)
+
+		c.Lock()
+		if len(nw.localEps) == 0 {
+			close(nw.stopCh)
+
+			// This is the last container going away for the network. Destroy
+			// this network's svc db entry
+			delete(c.svcRecords, n.ID())
+
+			delete(nmap, n.ID())
+		}
+	}
+	c.Unlock()
+}
+
+func (c *controller) watchLoop() {
+	for {
+		select {
+		case ep := <-c.watchCh:
+			c.processEndpointCreate(c.nmap, ep)
+		case ep := <-c.unWatchCh:
+			c.processEndpointDelete(c.nmap, ep)
+		}
+	}
+}
+
+func (c *controller) startWatch() {
+	if c.watchCh != nil {
+		return
+	}
+	c.watchCh = make(chan *endpoint)
+	c.unWatchCh = make(chan *endpoint)
+	c.nmap = make(map[string]*netWatch)
+
+	go c.watchLoop()
+}
+
+func (c *controller) networkCleanup() {
+	networks, err := c.getNetworksFromStore()
+	if err != nil {
+		logrus.Warnf("Could not retrieve networks from store(s) during network cleanup: %v", err)
+		return
+	}
+
+	for _, n := range networks {
+		if n.inDelete {
+			logrus.Infof("Removing stale network %s (%s)", n.Name(), n.ID())
+			if err := n.delete(true); err != nil {
+				logrus.Debugf("Error while removing stale network: %v", err)
+			}
+		}
+	}
+}
+
+var populateSpecial NetworkWalker = func(nw Network) bool {
+	if n := nw.(*network); n.hasSpecialDriver() && !n.ConfigOnly() {
+		if err := n.getController().addNetwork(n); err != nil {
+			logrus.Warnf("Failed to populate network %q with driver %q", nw.Name(), nw.Type())
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/libnetwork/types/types.go b/vendor/github.com/docker/libnetwork/types/types.go
new file mode 100644
index 0000000000..cb18f054c5
--- /dev/null
+++ b/vendor/github.com/docker/libnetwork/types/types.go
@@ -0,0 +1,648 @@
+// Package types contains types that are common across libnetwork project
+package types
+
+import (
+	"bytes"
+	"fmt"
+	"net"
+	"strconv"
+	"strings"
+
+	"github.com/ishidawataru/sctp"
+)
+
+// constants for the IP address type
+const (
+	IP = iota // IPv4 and IPv6
+	IPv4
+	IPv6
+)
+
+// EncryptionKey is the libnetwork representation of the key distributed by the lead
+// manager.
+type EncryptionKey struct {
+	Subsystem   string
+	Algorithm   int32
+	Key         []byte
+	LamportTime uint64
+}
+
+// UUID represents a globally unique ID of various resources like network and endpoint
+type UUID string
+
+// QosPolicy represents a quality of service policy on an endpoint
+type QosPolicy struct {
+	MaxEgressBandwidth uint64
+}
+
+// TransportPort represents a local Layer 4 endpoint
+type TransportPort struct {
+	Proto Protocol
+	Port  uint16
+}
+
+// Equal checks if this instance of Transportport is equal to the passed one
+func (t *TransportPort) Equal(o *TransportPort) bool {
+	if t == o {
+		return true
+	}
+
+	if o == nil {
+		return false
+	}
+
+	if t.Proto != o.Proto || t.Port != o.Port {
+		return false
+	}
+
+	return true
+}
+
+// GetCopy returns a copy of this TransportPort structure instance
+func (t *TransportPort) GetCopy() TransportPort {
+	return TransportPort{Proto: t.Proto, Port: t.Port}
+}
+
+// String returns the TransportPort structure in string form
+func (t *TransportPort) String() string {
+	return fmt.Sprintf("%s/%d", t.Proto.String(), t.Port)
+}
+
+// FromString reads the TransportPort structure from string
+func (t *TransportPort) FromString(s string) error {
+	ps := strings.Split(s, "/")
+	if len(ps) == 2 {
+		t.Proto = ParseProtocol(ps[0])
+		if p, err := strconv.ParseUint(ps[1], 10, 16); err == nil {
+			t.Port = uint16(p)
+			return nil
+		}
+	}
+	return BadRequestErrorf("invalid format for transport port: %s", s)
+}
+
+// PortBinding represents a port binding between the container and the host
+type PortBinding struct {
+	Proto       Protocol
+	IP          net.IP
+	Port        uint16
+	HostIP      net.IP
+	HostPort    uint16
+	HostPortEnd uint16
+}
+
+// HostAddr returns the host side transport address
+func (p PortBinding) HostAddr() (net.Addr, error) {
+	switch p.Proto {
+	case UDP:
+		return &net.UDPAddr{IP: p.HostIP, Port: int(p.HostPort)}, nil
+	case TCP:
+		return &net.TCPAddr{IP: p.HostIP, Port: int(p.HostPort)}, nil
+	case SCTP:
+		return &sctp.SCTPAddr{IP: []net.IP{p.HostIP}, Port: int(p.HostPort)}, nil
+	default:
+		return nil, ErrInvalidProtocolBinding(p.Proto.String())
+	}
+}
+
+// ContainerAddr returns the container side transport address
+func (p PortBinding) ContainerAddr() (net.Addr, error) {
+	switch p.Proto {
+	case UDP:
+		return &net.UDPAddr{IP: p.IP, Port: int(p.Port)}, nil
+	case TCP:
+		return &net.TCPAddr{IP: p.IP, Port: int(p.Port)}, nil
+	case SCTP:
+		return &sctp.SCTPAddr{IP: []net.IP{p.IP}, Port: int(p.Port)}, nil
+	default:
+		return nil, ErrInvalidProtocolBinding(p.Proto.String())
+	}
+}
+
+// GetCopy returns a copy of this PortBinding structure instance
+func (p *PortBinding) GetCopy() PortBinding {
+	return PortBinding{
+		Proto:       p.Proto,
+		IP:          GetIPCopy(p.IP),
+		Port:        p.Port,
+		HostIP:      GetIPCopy(p.HostIP),
+		HostPort:    p.HostPort,
+		HostPortEnd: p.HostPortEnd,
+	}
+}
+
+// String returns the PortBinding structure in string form
+func (p *PortBinding) String() string {
+	ret := fmt.Sprintf("%s/", p.Proto)
+	if p.IP != nil {
+		ret += p.IP.String()
+	}
+	ret = fmt.Sprintf("%s:%d/", ret, p.Port)
+	if p.HostIP != nil {
+		ret += p.HostIP.String()
+	}
+	ret = fmt.Sprintf("%s:%d", ret, p.HostPort)
+	return ret
+}
+
+// FromString reads the TransportPort structure from string
+func (p *PortBinding) FromString(s string) error {
+	ps := strings.Split(s, "/")
+	if len(ps) != 3 {
+		return BadRequestErrorf("invalid format for port binding: %s", s)
+	}
+
+	p.Proto = ParseProtocol(ps[0])
+
+	var err error
+	if p.IP, p.Port, err = parseIPPort(ps[1]); err != nil {
+		return BadRequestErrorf("failed to parse Container IP/Port in port binding: %s", err.Error())
+	}
+
+	if p.HostIP, p.HostPort, err = parseIPPort(ps[2]); err != nil {
+		return BadRequestErrorf("failed to parse Host IP/Port in port binding: %s", err.Error())
+	}
+
+	return nil
+}
+
+func parseIPPort(s string) (net.IP, uint16, error) {
+	pp := strings.Split(s, ":")
+	if len(pp) != 2 {
+		return nil, 0, BadRequestErrorf("invalid format: %s", s)
+	}
+
+	var ip net.IP
+	if pp[0] != "" {
+		if ip = net.ParseIP(pp[0]); ip == nil {
+			return nil, 0, BadRequestErrorf("invalid ip: %s", pp[0])
+		}
+	}
+
+	port, err := strconv.ParseUint(pp[1], 10, 16)
+	if err != nil {
+		return nil, 0, BadRequestErrorf("invalid port: %s", pp[1])
+	}
+
+	return ip, uint16(port), nil
+}
+
+// Equal checks if this instance of PortBinding is equal to the passed one
+func (p *PortBinding) Equal(o *PortBinding) bool {
+	if p == o {
+		return true
+	}
+
+	if o == nil {
+		return false
+	}
+
+	if p.Proto != o.Proto || p.Port != o.Port ||
+		p.HostPort != o.HostPort || p.HostPortEnd != o.HostPortEnd {
+		return false
+	}
+
+	if p.IP != nil {
+		if !p.IP.Equal(o.IP) {
+			return false
+		}
+	} else {
+		if o.IP != nil {
+			return false
+		}
+	}
+
+	if p.HostIP != nil {
+		if !p.HostIP.Equal(o.HostIP) {
+			return false
+		}
+	} else {
+		if o.HostIP != nil {
+			return false
+		}
+	}
+
+	return true
+}
+
+// ErrInvalidProtocolBinding is returned when the port binding protocol is not valid.
+type ErrInvalidProtocolBinding string
+
+func (ipb ErrInvalidProtocolBinding) Error() string {
+	return fmt.Sprintf("invalid transport protocol: %s", string(ipb))
+}
+
+const (
+	// ICMP is for the ICMP ip protocol
+	ICMP = 1
+	// TCP is for the TCP ip protocol
+	TCP = 6
+	// UDP is for the UDP ip protocol
+	UDP = 17
+	// SCTP is for the SCTP ip protocol
+	SCTP = 132
+)
+
+// Protocol represents an IP protocol number
+type Protocol uint8
+
+func (p Protocol) String() string {
+	switch p {
+	case ICMP:
+		return "icmp"
+	case TCP:
+		return "tcp"
+	case UDP:
+		return "udp"
+	case SCTP:
+		return "sctp"
+	default:
+		return fmt.Sprintf("%d", p)
+	}
+}
+
+// ParseProtocol returns the respective Protocol type for the passed string
+func ParseProtocol(s string) Protocol {
+	switch strings.ToLower(s) {
+	case "icmp":
+		return ICMP
+	case "udp":
+		return UDP
+	case "tcp":
+		return TCP
+	case "sctp":
+		return SCTP
+	default:
+		return 0
+	}
+}
+
+// GetMacCopy returns a copy of the passed MAC address
+func GetMacCopy(from net.HardwareAddr) net.HardwareAddr {
+	if from == nil {
+		return nil
+	}
+	to := make(net.HardwareAddr, len(from))
+	copy(to, from)
+	return to
+}
+
+// GetIPCopy returns a copy of the passed IP address
+func GetIPCopy(from net.IP) net.IP {
+	if from == nil {
+		return nil
+	}
+	to := make(net.IP, len(from))
+	copy(to, from)
+	return to
+}
+
+// GetIPNetCopy returns a copy of the passed IP Network
+func GetIPNetCopy(from *net.IPNet) *net.IPNet {
+	if from == nil {
+		return nil
+	}
+	bm := make(net.IPMask, len(from.Mask))
+	copy(bm, from.Mask)
+	return &net.IPNet{IP: GetIPCopy(from.IP), Mask: bm}
+}
+
+// GetIPNetCanonical returns the canonical form for the passed network
+func GetIPNetCanonical(nw *net.IPNet) *net.IPNet {
+	if nw == nil {
+		return nil
+	}
+	c := GetIPNetCopy(nw)
+	c.IP = c.IP.Mask(nw.Mask)
+	return c
+}
+
+// CompareIPNet returns equal if the two IP Networks are equal
+func CompareIPNet(a, b *net.IPNet) bool {
+	if a == b {
+		return true
+	}
+	if a == nil || b == nil {
+		return false
+	}
+	return a.IP.Equal(b.IP) && bytes.Equal(a.Mask, b.Mask)
+}
+
+// GetMinimalIP returns the address in its shortest form
+func GetMinimalIP(ip net.IP) net.IP {
+	if ip != nil && ip.To4() != nil {
+		return ip.To4()
+	}
+	return ip
+}
+
+// GetMinimalIPNet returns a copy of the passed IP Network with congruent ip and mask notation
+func GetMinimalIPNet(nw *net.IPNet) *net.IPNet {
+	if nw == nil {
+		return nil
+	}
+	if len(nw.IP) == 16 && nw.IP.To4() != nil {
+		m := nw.Mask
+		if len(m) == 16 {
+			m = m[12:16]
+		}
+		return &net.IPNet{IP: nw.IP.To4(), Mask: m}
+	}
+	return nw
+}
+
+// IsIPNetValid returns true if the ipnet is a valid network/mask
+// combination. Otherwise returns false.
+func IsIPNetValid(nw *net.IPNet) bool {
+	return nw.String() != "0.0.0.0/0"
+}
+
+var v4inV6MaskPrefix = []byte{0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff}
+
+// compareIPMask checks if the passed ip and mask are semantically compatible.
+// It returns the byte indexes for the address and mask so that caller can
+// do bitwise operations without modifying address representation.
+func compareIPMask(ip net.IP, mask net.IPMask) (is int, ms int, err error) {
+	// Find the effective starting of address and mask
+	if len(ip) == net.IPv6len && ip.To4() != nil {
+		is = 12
+	}
+	if len(ip[is:]) == net.IPv4len && len(mask) == net.IPv6len && bytes.Equal(mask[:12], v4inV6MaskPrefix) {
+		ms = 12
+	}
+	// Check if address and mask are semantically compatible
+	if len(ip[is:]) != len(mask[ms:]) {
+		err = fmt.Errorf("ip and mask are not compatible: (%#v, %#v)", ip, mask)
+	}
+	return
+}
+
+// GetHostPartIP returns the host portion of the ip address identified by the mask.
+// IP address representation is not modified. If address and mask are not compatible
+// an error is returned.
+func GetHostPartIP(ip net.IP, mask net.IPMask) (net.IP, error) {
+	// Find the effective starting of address and mask
+	is, ms, err := compareIPMask(ip, mask)
+	if err != nil {
+		return nil, fmt.Errorf("cannot compute host portion ip address because %s", err)
+	}
+
+	// Compute host portion
+	out := GetIPCopy(ip)
+	for i := 0; i < len(mask[ms:]); i++ {
+		out[is+i] &= ^mask[ms+i]
+	}
+
+	return out, nil
+}
+
+// GetBroadcastIP returns the broadcast ip address for the passed network (ip and mask).
+// IP address representation is not modified. If address and mask are not compatible
+// an error is returned.
+func GetBroadcastIP(ip net.IP, mask net.IPMask) (net.IP, error) {
+	// Find the effective starting of address and mask
+	is, ms, err := compareIPMask(ip, mask)
+	if err != nil {
+		return nil, fmt.Errorf("cannot compute broadcast ip address because %s", err)
+	}
+
+	// Compute broadcast address
+	out := GetIPCopy(ip)
+	for i := 0; i < len(mask[ms:]); i++ {
+		out[is+i] |= ^mask[ms+i]
+	}
+
+	return out, nil
+}
+
+// ParseCIDR returns the *net.IPNet represented by the passed CIDR notation
+func ParseCIDR(cidr string) (n *net.IPNet, e error) {
+	var i net.IP
+	if i, n, e = net.ParseCIDR(cidr); e == nil {
+		n.IP = i
+	}
+	return
+}
+
+const (
+	// NEXTHOP indicates a StaticRoute with an IP next hop.
+	NEXTHOP = iota
+
+	// CONNECTED indicates a StaticRoute with an interface for directly connected peers.
+	CONNECTED
+)
+
+// StaticRoute is a statically-provisioned IP route.
+type StaticRoute struct {
+	Destination *net.IPNet
+
+	RouteType int // NEXT_HOP or CONNECTED
+
+	// NextHop will be resolved by the kernel (i.e. as a loose hop).
+	NextHop net.IP
+}
+
+// GetCopy returns a copy of this StaticRoute structure
+func (r *StaticRoute) GetCopy() *StaticRoute {
+	d := GetIPNetCopy(r.Destination)
+	nh := GetIPCopy(r.NextHop)
+	return &StaticRoute{Destination: d,
+		RouteType: r.RouteType,
+		NextHop:   nh,
+	}
+}
+
+// InterfaceStatistics represents the interface's statistics
+type InterfaceStatistics struct {
+	RxBytes   uint64
+	RxPackets uint64
+	RxErrors  uint64
+	RxDropped uint64
+	TxBytes   uint64
+	TxPackets uint64
+	TxErrors  uint64
+	TxDropped uint64
+}
+
+func (is *InterfaceStatistics) String() string {
+	return fmt.Sprintf("\nRxBytes: %d, RxPackets: %d, RxErrors: %d, RxDropped: %d, TxBytes: %d, TxPackets: %d, TxErrors: %d, TxDropped: %d",
+		is.RxBytes, is.RxPackets, is.RxErrors, is.RxDropped, is.TxBytes, is.TxPackets, is.TxErrors, is.TxDropped)
+}
+
+/******************************
+ * Well-known Error Interfaces
+ ******************************/
+
+// MaskableError is an interface for errors which can be ignored by caller
+type MaskableError interface {
+	// Maskable makes implementer into MaskableError type
+	Maskable()
+}
+
+// RetryError is an interface for errors which might get resolved through retry
+type RetryError interface {
+	// Retry makes implementer into RetryError type
+	Retry()
+}
+
+// BadRequestError is an interface for errors originated by a bad request
+type BadRequestError interface {
+	// BadRequest makes implementer into BadRequestError type
+	BadRequest()
+}
+
+// NotFoundError is an interface for errors raised because a needed resource is not available
+type NotFoundError interface {
+	// NotFound makes implementer into NotFoundError type
+	NotFound()
+}
+
+// ForbiddenError is an interface for errors which denote a valid request that cannot be honored
+type ForbiddenError interface {
+	// Forbidden makes implementer into ForbiddenError type
+	Forbidden()
+}
+
+// NoServiceError is an interface for errors returned when the required service is not available
+type NoServiceError interface {
+	// NoService makes implementer into NoServiceError type
+	NoService()
+}
+
+// TimeoutError is an interface for errors raised because of timeout
+type TimeoutError interface {
+	// Timeout makes implementer into TimeoutError type
+	Timeout()
+}
+
+// NotImplementedError is an interface for errors raised because of requested functionality is not yet implemented
+type NotImplementedError interface {
+	// NotImplemented makes implementer into NotImplementedError type
+	NotImplemented()
+}
+
+// InternalError is an interface for errors raised because of an internal error
+type InternalError interface {
+	// Internal makes implementer into InternalError type
+	Internal()
+}
+
+/******************************
+ * Well-known Error Formatters
+ ******************************/
+
+// BadRequestErrorf creates an instance of BadRequestError
+func BadRequestErrorf(format string, params ...interface{}) error {
+	return badRequest(fmt.Sprintf(format, params...))
+}
+
+// NotFoundErrorf creates an instance of NotFoundError
+func NotFoundErrorf(format string, params ...interface{}) error {
+	return notFound(fmt.Sprintf(format, params...))
+}
+
+// ForbiddenErrorf creates an instance of ForbiddenError
+func ForbiddenErrorf(format string, params ...interface{}) error {
+	return forbidden(fmt.Sprintf(format, params...))
+}
+
+// NoServiceErrorf creates an instance of NoServiceError
+func NoServiceErrorf(format string, params ...interface{}) error {
+	return noService(fmt.Sprintf(format, params...))
+}
+
+// NotImplementedErrorf creates an instance of NotImplementedError
+func NotImplementedErrorf(format string, params ...interface{}) error {
+	return notImpl(fmt.Sprintf(format, params...))
+}
+
+// TimeoutErrorf creates an instance of TimeoutError
+func TimeoutErrorf(format string, params ...interface{}) error {
+	return timeout(fmt.Sprintf(format, params...))
+}
+
+// InternalErrorf creates an instance of InternalError
+func InternalErrorf(format string, params ...interface{}) error {
+	return internal(fmt.Sprintf(format, params...))
+}
+
+// InternalMaskableErrorf creates an instance of InternalError and MaskableError
+func InternalMaskableErrorf(format string, params ...interface{}) error {
+	return maskInternal(fmt.Sprintf(format, params...))
+}
+
+// RetryErrorf creates an instance of RetryError
+func RetryErrorf(format string, params ...interface{}) error {
+	return retry(fmt.Sprintf(format, params...))
+}
+
+/***********************
+ * Internal Error Types
+ ***********************/
+type badRequest string
+
+func (br badRequest) Error() string {
+	return string(br)
+}
+func (br badRequest) BadRequest() {}
+
+type maskBadRequest string
+
+type notFound string
+
+func (nf notFound) Error() string {
+	return string(nf)
+}
+func (nf notFound) NotFound() {}
+
+type forbidden string
+
+func (frb forbidden) Error() string {
+	return string(frb)
+}
+func (frb forbidden) Forbidden() {}
+
+type noService string
+
+func (ns noService) Error() string {
+	return string(ns)
+}
+func (ns noService) NoService() {}
+
+type maskNoService string
+
+type timeout string
+
+func (to timeout) Error() string {
+	return string(to)
+}
+func (to timeout) Timeout() {}
+
+type notImpl string
+
+func (ni notImpl) Error() string {
+	return string(ni)
+}
+func (ni notImpl) NotImplemented() {}
+
+type internal string
+
+func (nt internal) Error() string {
+	return string(nt)
+}
+func (nt internal) Internal() {}
+
+type maskInternal string
+
+func (mnt maskInternal) Error() string {
+	return string(mnt)
+}
+func (mnt maskInternal) Internal() {}
+func (mnt maskInternal) Maskable() {}
+
+type retry string
+
+func (r retry) Error() string {
+	return string(r)
+}
+func (r retry) Retry() {}
diff --git a/vendor/github.com/docker/swarmkit/LICENSE b/vendor/github.com/docker/swarmkit/LICENSE
new file mode 100644
index 0000000000..e2db6ed114
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright 2016-2018 Docker Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/docker/swarmkit/agent/exec/controller.go b/vendor/github.com/docker/swarmkit/agent/exec/controller.go
new file mode 100644
index 0000000000..c9e9343fd7
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/agent/exec/controller.go
@@ -0,0 +1,362 @@
+package exec
+
+import (
+	"fmt"
+	"time"
+
+	"github.com/docker/swarmkit/api"
+	"github.com/docker/swarmkit/api/equality"
+	"github.com/docker/swarmkit/log"
+	"github.com/docker/swarmkit/protobuf/ptypes"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"golang.org/x/net/context"
+)
+
+// Controller controls execution of a task.
+type Controller interface {
+	// Update the task definition seen by the controller. Will return
+	// ErrTaskUpdateFailed if the provided task definition changes fields that
+	// cannot be changed.
+	//
+	// Will be ignored if the task has exited.
+	Update(ctx context.Context, t *api.Task) error
+
+	// Prepare the task for execution. This should ensure that all resources
+	// are created such that a call to start should execute immediately.
+	Prepare(ctx context.Context) error
+
+	// Start the target and return when it has started successfully.
+	Start(ctx context.Context) error
+
+	// Wait blocks until the target has exited.
+	Wait(ctx context.Context) error
+
+	// Shutdown requests to exit the target gracefully.
+	Shutdown(ctx context.Context) error
+
+	// Terminate the target.
+	Terminate(ctx context.Context) error
+
+	// Remove all resources allocated by the controller.
+	Remove(ctx context.Context) error
+
+	// Close closes any ephemeral resources associated with controller instance.
+	Close() error
+}
+
+// ControllerLogs defines a component that makes logs accessible.
+//
+// Can usually be accessed on a controller instance via type assertion.
+type ControllerLogs interface {
+	// Logs will write publisher until the context is cancelled or an error
+	// occurs.
+	Logs(ctx context.Context, publisher LogPublisher, options api.LogSubscriptionOptions) error
+}
+
+// LogPublisher defines the protocol for receiving a log message.
+type LogPublisher interface {
+	Publish(ctx context.Context, message api.LogMessage) error
+}
+
+// LogPublisherFunc implements publisher with just a function.
+type LogPublisherFunc func(ctx context.Context, message api.LogMessage) error
+
+// Publish calls the wrapped function.
+func (fn LogPublisherFunc) Publish(ctx context.Context, message api.LogMessage) error {
+	return fn(ctx, message)
+}
+
+// LogPublisherProvider defines the protocol for receiving a log publisher
+type LogPublisherProvider interface {
+	Publisher(ctx context.Context, subscriptionID string) (LogPublisher, func(), error)
+}
+
+// ContainerStatuser reports status of a container.
+//
+// This can be implemented by controllers or error types.
+type ContainerStatuser interface {
+	// ContainerStatus returns the status of the target container, if
+	// available. When the container is not available, the status will be nil.
+	ContainerStatus(ctx context.Context) (*api.ContainerStatus, error)
+}
+
+// PortStatuser reports status of ports which are allocated by the executor
+type PortStatuser interface {
+	// PortStatus returns the status on a list of PortConfigs
+	// which are managed at the host level by the controller.
+	PortStatus(ctx context.Context) (*api.PortStatus, error)
+}
+
+// Resolve attempts to get a controller from the executor and reports the
+// correct status depending on the tasks current state according to the result.
+//
+// Unlike Do, if an error is returned, the status should still be reported. The
+// error merely reports the failure at getting the controller.
+func Resolve(ctx context.Context, task *api.Task, executor Executor) (Controller, *api.TaskStatus, error) {
+	status := task.Status.Copy()
+
+	defer func() {
+		logStateChange(ctx, task.DesiredState, task.Status.State, status.State)
+	}()
+
+	ctlr, err := executor.Controller(task)
+
+	// depending on the tasks state, a failed controller resolution has varying
+	// impact. The following expresses that impact.
+	if err != nil {
+		status.Message = "resolving controller failed"
+		status.Err = err.Error()
+		// before the task has been started, we consider it a rejection.
+		// if task is running, consider the task has failed
+		// otherwise keep the existing state
+		if task.Status.State < api.TaskStateStarting {
+			status.State = api.TaskStateRejected
+		} else if task.Status.State <= api.TaskStateRunning {
+			status.State = api.TaskStateFailed
+		}
+	} else if task.Status.State < api.TaskStateAccepted {
+		// we always want to proceed to accepted when we resolve the controller
+		status.Message = "accepted"
+		status.State = api.TaskStateAccepted
+		status.Err = ""
+	}
+
+	return ctlr, status, err
+}
+
+// Do progresses the task state using the controller performing a single
+// operation on the controller. The return TaskStatus should be marked as the
+// new state of the task.
+//
+// The returned status should be reported and placed back on to task
+// before the next call. The operation can be cancelled by creating a
+// cancelling context.
+//
+// Errors from the task controller will reported on the returned status. Any
+// errors coming from this function should not be reported as related to the
+// individual task.
+//
+// If ErrTaskNoop is returned, it means a second call to Do will result in no
+// change. If ErrTaskDead is returned, calls to Do will no longer result in any
+// action.
+func Do(ctx context.Context, task *api.Task, ctlr Controller) (*api.TaskStatus, error) {
+	status := task.Status.Copy()
+
+	// stay in the current state.
+	noop := func(errs ...error) (*api.TaskStatus, error) {
+		return status, ErrTaskNoop
+	}
+
+	retry := func() (*api.TaskStatus, error) {
+		// while we retry on all errors, this allows us to explicitly declare
+		// retry cases.
+		return status, ErrTaskRetry
+	}
+
+	// transition moves the task to the next state.
+	transition := func(state api.TaskState, msg string) (*api.TaskStatus, error) {
+		current := status.State
+		status.State = state
+		status.Message = msg
+		status.Err = ""
+
+		if current > state {
+			panic("invalid state transition")
+		}
+		return status, nil
+	}
+
+	// containerStatus exitCode keeps track of whether or not we've set it in
+	// this particular method. Eventually, we assemble this as part of a defer.
+	var (
+		containerStatus *api.ContainerStatus
+		portStatus      *api.PortStatus
+		exitCode        int
+	)
+
+	// returned when a fatal execution of the task is fatal. In this case, we
+	// proceed to a terminal error state and set the appropriate fields.
+	//
+	// Common checks for the nature of an error should be included here. If the
+	// error is determined not to be fatal for the task,
+	fatal := func(err error) (*api.TaskStatus, error) {
+		if err == nil {
+			panic("err must not be nil when fatal")
+		}
+
+		if cs, ok := err.(ContainerStatuser); ok {
+			var err error
+			containerStatus, err = cs.ContainerStatus(ctx)
+			if err != nil && !contextDoneError(err) {
+				log.G(ctx).WithError(err).Error("error resolving container status on fatal")
+			}
+		}
+
+		// make sure we've set the *correct* exit code
+		if ec, ok := err.(ExitCoder); ok {
+			exitCode = ec.ExitCode()
+		}
+
+		if cause := errors.Cause(err); cause == context.DeadlineExceeded || cause == context.Canceled {
+			return retry()
+		}
+
+		status.Err = err.Error() // still reported on temporary
+		if IsTemporary(err) {
+			return retry()
+		}
+
+		// only at this point do we consider the error fatal to the task.
+		log.G(ctx).WithError(err).Error("fatal task error")
+
+		// NOTE(stevvooe): The following switch dictates the terminal failure
+		// state based on the state in which the failure was encountered.
+		switch {
+		case status.State < api.TaskStateStarting:
+			status.State = api.TaskStateRejected
+		case status.State >= api.TaskStateStarting:
+			status.State = api.TaskStateFailed
+		}
+
+		return status, nil
+	}
+
+	// below, we have several callbacks that are run after the state transition
+	// is completed.
+	defer func() {
+		logStateChange(ctx, task.DesiredState, task.Status.State, status.State)
+
+		if !equality.TaskStatusesEqualStable(status, &task.Status) {
+			status.Timestamp = ptypes.MustTimestampProto(time.Now())
+		}
+	}()
+
+	// extract the container status from the container, if supported.
+	defer func() {
+		// only do this if in an active state
+		if status.State < api.TaskStateStarting {
+			return
+		}
+
+		if containerStatus == nil {
+			// collect this, if we haven't
+			cctlr, ok := ctlr.(ContainerStatuser)
+			if !ok {
+				return
+			}
+
+			var err error
+			containerStatus, err = cctlr.ContainerStatus(ctx)
+			if err != nil && !contextDoneError(err) {
+				log.G(ctx).WithError(err).Error("container status unavailable")
+			}
+
+			// at this point, things have gone fairly wrong. Remain positive
+			// and let's get something out the door.
+			if containerStatus == nil {
+				containerStatus = new(api.ContainerStatus)
+				containerStatusTask := task.Status.GetContainer()
+				if containerStatusTask != nil {
+					*containerStatus = *containerStatusTask // copy it over.
+				}
+			}
+		}
+
+		// at this point, we *must* have a containerStatus.
+		if exitCode != 0 {
+			containerStatus.ExitCode = int32(exitCode)
+		}
+
+		status.RuntimeStatus = &api.TaskStatus_Container{
+			Container: containerStatus,
+		}
+
+		if portStatus == nil {
+			pctlr, ok := ctlr.(PortStatuser)
+			if !ok {
+				return
+			}
+
+			var err error
+			portStatus, err = pctlr.PortStatus(ctx)
+			if err != nil && !contextDoneError(err) {
+				log.G(ctx).WithError(err).Error("container port status unavailable")
+			}
+		}
+
+		status.PortStatus = portStatus
+	}()
+
+	// this branch bounds the largest state achievable in the agent as SHUTDOWN, which
+	// is exactly the correct behavior for the agent.
+	if task.DesiredState >= api.TaskStateShutdown {
+		if status.State >= api.TaskStateCompleted {
+			return noop()
+		}
+
+		if err := ctlr.Shutdown(ctx); err != nil {
+			return fatal(err)
+		}
+
+		return transition(api.TaskStateShutdown, "shutdown")
+	}
+
+	if status.State > task.DesiredState {
+		return noop() // way beyond desired state, pause
+	}
+
+	// the following states may proceed past desired state.
+	switch status.State {
+	case api.TaskStatePreparing:
+		if err := ctlr.Prepare(ctx); err != nil && err != ErrTaskPrepared {
+			return fatal(err)
+		}
+
+		return transition(api.TaskStateReady, "prepared")
+	case api.TaskStateStarting:
+		if err := ctlr.Start(ctx); err != nil && err != ErrTaskStarted {
+			return fatal(err)
+		}
+
+		return transition(api.TaskStateRunning, "started")
+	case api.TaskStateRunning:
+		if err := ctlr.Wait(ctx); err != nil {
+			return fatal(err)
+		}
+
+		return transition(api.TaskStateCompleted, "finished")
+	}
+
+	// The following represent "pause" states. We can only proceed when the
+	// desired state is beyond our current state.
+	if status.State >= task.DesiredState {
+		return noop()
+	}
+
+	switch status.State {
+	case api.TaskStateNew, api.TaskStatePending, api.TaskStateAssigned:
+		return transition(api.TaskStateAccepted, "accepted")
+	case api.TaskStateAccepted:
+		return transition(api.TaskStatePreparing, "preparing")
+	case api.TaskStateReady:
+		return transition(api.TaskStateStarting, "starting")
+	default: // terminal states
+		return noop()
+	}
+}
+
+func logStateChange(ctx context.Context, desired, previous, next api.TaskState) {
+	if previous != next {
+		fields := logrus.Fields{
+			"state.transition": fmt.Sprintf("%v->%v", previous, next),
+			"state.desired":    desired,
+		}
+		log.G(ctx).WithFields(fields).Debug("state changed")
+	}
+}
+
+func contextDoneError(err error) bool {
+	cause := errors.Cause(err)
+	return cause == context.Canceled || cause == context.DeadlineExceeded
+}
diff --git a/vendor/github.com/docker/swarmkit/agent/exec/controller_stub.go b/vendor/github.com/docker/swarmkit/agent/exec/controller_stub.go
new file mode 100644
index 0000000000..076955ff80
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/agent/exec/controller_stub.go
@@ -0,0 +1,75 @@
+package exec
+
+import (
+	"github.com/docker/swarmkit/api"
+	"golang.org/x/net/context"
+	"runtime"
+	"strings"
+)
+
+// StubController implements the Controller interface,
+// but allows you to specify behaviors for each of its methods.
+type StubController struct {
+	Controller
+	UpdateFn    func(ctx context.Context, t *api.Task) error
+	PrepareFn   func(ctx context.Context) error
+	StartFn     func(ctx context.Context) error
+	WaitFn      func(ctx context.Context) error
+	ShutdownFn  func(ctx context.Context) error
+	TerminateFn func(ctx context.Context) error
+	RemoveFn    func(ctx context.Context) error
+	CloseFn     func() error
+	calls       map[string]int
+	cstatus     *api.ContainerStatus
+}
+
+// NewStubController returns an initialized StubController
+func NewStubController() *StubController {
+	return &StubController{
+		calls: make(map[string]int),
+	}
+}
+
+// If function A calls updateCountsForSelf,
+// The callCount[A] value will be incremented
+func (sc *StubController) called() {
+	pc, _, _, ok := runtime.Caller(1)
+	if !ok {
+		panic("Failed to find caller of function")
+	}
+	// longName looks like 'github.com/docker/swarmkit/agent/exec.(*StubController).Prepare:1'
+	longName := runtime.FuncForPC(pc).Name()
+	parts := strings.Split(longName, ".")
+	tail := strings.Split(parts[len(parts)-1], ":")
+	sc.calls[tail[0]]++
+}
+
+// Update is part of the Controller interface
+func (sc *StubController) Update(ctx context.Context, t *api.Task) error {
+	sc.called()
+	return sc.UpdateFn(ctx, t)
+}
+
+// Prepare is part of the Controller interface
+func (sc *StubController) Prepare(ctx context.Context) error { sc.called(); return sc.PrepareFn(ctx) }
+
+// Start is part of the Controller interface
+func (sc *StubController) Start(ctx context.Context) error { sc.called(); return sc.StartFn(ctx) }
+
+// Wait is part of the Controller interface
+func (sc *StubController) Wait(ctx context.Context) error { sc.called(); return sc.WaitFn(ctx) }
+
+// Shutdown is part of the Controller interface
+func (sc *StubController) Shutdown(ctx context.Context) error { sc.called(); return sc.ShutdownFn(ctx) }
+
+// Terminate is part of the Controller interface
+func (sc *StubController) Terminate(ctx context.Context) error {
+	sc.called()
+	return sc.TerminateFn(ctx)
+}
+
+// Remove is part of the Controller interface
+func (sc *StubController) Remove(ctx context.Context) error { sc.called(); return sc.RemoveFn(ctx) }
+
+// Close is part of the Controller interface
+func (sc *StubController) Close() error { sc.called(); return sc.CloseFn() }
diff --git a/vendor/github.com/docker/swarmkit/agent/exec/errors.go b/vendor/github.com/docker/swarmkit/agent/exec/errors.go
new file mode 100644
index 0000000000..af57e6b322
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/agent/exec/errors.go
@@ -0,0 +1,82 @@
+package exec
+
+import "github.com/pkg/errors"
+
+var (
+	// ErrRuntimeUnsupported encountered when a task requires a runtime
+	// unsupported by the executor.
+	ErrRuntimeUnsupported = errors.New("exec: unsupported runtime")
+
+	// ErrTaskPrepared is called if the task is already prepared.
+	ErrTaskPrepared = errors.New("exec: task already prepared")
+
+	// ErrTaskStarted can be returned from any operation that cannot be
+	// performed because the task has already been started. This does not imply
+	// that the task is running but rather that it is no longer valid to call
+	// Start.
+	ErrTaskStarted = errors.New("exec: task already started")
+
+	// ErrTaskUpdateRejected is returned if a task update is rejected by a controller.
+	ErrTaskUpdateRejected = errors.New("exec: task update rejected")
+
+	// ErrControllerClosed returned when a task controller has been closed.
+	ErrControllerClosed = errors.New("exec: controller closed")
+
+	// ErrTaskRetry is returned by Do when an operation failed by should be
+	// retried. The status should still be reported in this case.
+	ErrTaskRetry = errors.New("exec: task retry")
+
+	// ErrTaskNoop returns when the a subsequent call to Do will not result in
+	// advancing the task. Callers should avoid calling Do until the task has been updated.
+	ErrTaskNoop = errors.New("exec: task noop")
+)
+
+// ExitCoder is implemented by errors that have an exit code.
+type ExitCoder interface {
+	// ExitCode returns the exit code.
+	ExitCode() int
+}
+
+// Temporary indicates whether or not the error condition is temporary.
+//
+// If this is encountered in the controller, the failing operation will be
+// retried when this returns true. Otherwise, the operation is considered
+// fatal.
+type Temporary interface {
+	Temporary() bool
+}
+
+// MakeTemporary makes the error temporary.
+func MakeTemporary(err error) error {
+	if IsTemporary(err) {
+		return err
+	}
+
+	return temporary{err}
+}
+
+type temporary struct {
+	error
+}
+
+func (t temporary) Cause() error    { return t.error }
+func (t temporary) Temporary() bool { return true }
+
+// IsTemporary returns true if the error or a recursive cause returns true for
+// temporary.
+func IsTemporary(err error) bool {
+	for err != nil {
+		if tmp, ok := err.(Temporary); ok && tmp.Temporary() {
+			return true
+		}
+
+		cause := errors.Cause(err)
+		if cause == err {
+			break
+		}
+
+		err = cause
+	}
+
+	return false
+}
diff --git a/vendor/github.com/docker/swarmkit/agent/exec/executor.go b/vendor/github.com/docker/swarmkit/agent/exec/executor.go
new file mode 100644
index 0000000000..8c3fd03506
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/agent/exec/executor.go
@@ -0,0 +1,81 @@
+package exec
+
+import (
+	"github.com/docker/swarmkit/api"
+	"golang.org/x/net/context"
+)
+
+// Executor provides controllers for tasks.
+type Executor interface {
+	// Describe returns the underlying node description.
+	Describe(ctx context.Context) (*api.NodeDescription, error)
+
+	// Configure uses the node object state to propagate node
+	// state to the underlying executor.
+	Configure(ctx context.Context, node *api.Node) error
+
+	// Controller provides a controller for the given task.
+	Controller(t *api.Task) (Controller, error)
+
+	// SetNetworkBootstrapKeys passes the symmetric keys from the
+	// manager to the executor.
+	SetNetworkBootstrapKeys([]*api.EncryptionKey) error
+}
+
+// SecretsProvider is implemented by objects that can store secrets, typically
+// an executor.
+type SecretsProvider interface {
+	Secrets() SecretsManager
+}
+
+// ConfigsProvider is implemented by objects that can store configs,
+// typically an executor.
+type ConfigsProvider interface {
+	Configs() ConfigsManager
+}
+
+// DependencyManager is a meta-object that can keep track of typed objects
+// such as secrets and configs.
+type DependencyManager interface {
+	SecretsProvider
+	ConfigsProvider
+}
+
+// DependencyGetter is a meta-object that can provide access to typed objects
+// such as secrets and configs.
+type DependencyGetter interface {
+	Secrets() SecretGetter
+	Configs() ConfigGetter
+}
+
+// SecretGetter contains secret data necessary for the Controller.
+type SecretGetter interface {
+	// Get returns the the secret with a specific secret ID, if available.
+	// When the secret is not available, the return will be nil.
+	Get(secretID string) (*api.Secret, error)
+}
+
+// SecretsManager is the interface for secret storage and updates.
+type SecretsManager interface {
+	SecretGetter
+
+	Add(secrets ...api.Secret) // add one or more secrets
+	Remove(secrets []string)   // remove the secrets by ID
+	Reset()                    // remove all secrets
+}
+
+// ConfigGetter contains config data necessary for the Controller.
+type ConfigGetter interface {
+	// Get returns the the config with a specific config ID, if available.
+	// When the config is not available, the return will be nil.
+	Get(configID string) (*api.Config, error)
+}
+
+// ConfigsManager is the interface for config storage and updates.
+type ConfigsManager interface {
+	ConfigGetter
+
+	Add(configs ...api.Config) // add one or more configs
+	Remove(configs []string)   // remove the configs by ID
+	Reset()                    // remove all configs
+}
diff --git a/vendor/github.com/docker/swarmkit/api/ca.pb.go b/vendor/github.com/docker/swarmkit/api/ca.pb.go
new file mode 100644
index 0000000000..2704fc376b
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/ca.pb.go
@@ -0,0 +1,2342 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/ca.proto
+// DO NOT EDIT!
+
+/*
+	Package api is a generated protocol buffer package.
+
+	It is generated from these files:
+		github.com/docker/swarmkit/api/ca.proto
+		github.com/docker/swarmkit/api/control.proto
+		github.com/docker/swarmkit/api/dispatcher.proto
+		github.com/docker/swarmkit/api/health.proto
+		github.com/docker/swarmkit/api/logbroker.proto
+		github.com/docker/swarmkit/api/objects.proto
+		github.com/docker/swarmkit/api/raft.proto
+		github.com/docker/swarmkit/api/resource.proto
+		github.com/docker/swarmkit/api/snapshot.proto
+		github.com/docker/swarmkit/api/specs.proto
+		github.com/docker/swarmkit/api/types.proto
+		github.com/docker/swarmkit/api/watch.proto
+
+	It has these top-level messages:
+		NodeCertificateStatusRequest
+		NodeCertificateStatusResponse
+		IssueNodeCertificateRequest
+		IssueNodeCertificateResponse
+		GetRootCACertificateRequest
+		GetRootCACertificateResponse
+		GetUnlockKeyRequest
+		GetUnlockKeyResponse
+		GetNodeRequest
+		GetNodeResponse
+		ListNodesRequest
+		ListNodesResponse
+		UpdateNodeRequest
+		UpdateNodeResponse
+		RemoveNodeRequest
+		RemoveNodeResponse
+		GetTaskRequest
+		GetTaskResponse
+		RemoveTaskRequest
+		RemoveTaskResponse
+		ListTasksRequest
+		ListTasksResponse
+		CreateServiceRequest
+		CreateServiceResponse
+		GetServiceRequest
+		GetServiceResponse
+		UpdateServiceRequest
+		UpdateServiceResponse
+		RemoveServiceRequest
+		RemoveServiceResponse
+		ListServicesRequest
+		ListServicesResponse
+		CreateNetworkRequest
+		CreateNetworkResponse
+		GetNetworkRequest
+		GetNetworkResponse
+		RemoveNetworkRequest
+		RemoveNetworkResponse
+		ListNetworksRequest
+		ListNetworksResponse
+		GetClusterRequest
+		GetClusterResponse
+		ListClustersRequest
+		ListClustersResponse
+		KeyRotation
+		UpdateClusterRequest
+		UpdateClusterResponse
+		GetSecretRequest
+		GetSecretResponse
+		UpdateSecretRequest
+		UpdateSecretResponse
+		ListSecretsRequest
+		ListSecretsResponse
+		CreateSecretRequest
+		CreateSecretResponse
+		RemoveSecretRequest
+		RemoveSecretResponse
+		GetConfigRequest
+		GetConfigResponse
+		UpdateConfigRequest
+		UpdateConfigResponse
+		ListConfigsRequest
+		ListConfigsResponse
+		CreateConfigRequest
+		CreateConfigResponse
+		RemoveConfigRequest
+		RemoveConfigResponse
+		SessionRequest
+		SessionMessage
+		HeartbeatRequest
+		HeartbeatResponse
+		UpdateTaskStatusRequest
+		UpdateTaskStatusResponse
+		TasksRequest
+		TasksMessage
+		AssignmentsRequest
+		Assignment
+		AssignmentChange
+		AssignmentsMessage
+		HealthCheckRequest
+		HealthCheckResponse
+		LogSubscriptionOptions
+		LogSelector
+		LogContext
+		LogAttr
+		LogMessage
+		SubscribeLogsRequest
+		SubscribeLogsMessage
+		ListenSubscriptionsRequest
+		SubscriptionMessage
+		PublishLogsMessage
+		PublishLogsResponse
+		Meta
+		Node
+		Service
+		Endpoint
+		Task
+		NetworkAttachment
+		Network
+		Cluster
+		Secret
+		Config
+		Resource
+		Extension
+		RaftMember
+		JoinRequest
+		JoinResponse
+		LeaveRequest
+		LeaveResponse
+		ProcessRaftMessageRequest
+		ProcessRaftMessageResponse
+		StreamRaftMessageRequest
+		StreamRaftMessageResponse
+		ResolveAddressRequest
+		ResolveAddressResponse
+		InternalRaftRequest
+		StoreAction
+		AttachNetworkRequest
+		AttachNetworkResponse
+		DetachNetworkRequest
+		DetachNetworkResponse
+		StoreSnapshot
+		ClusterSnapshot
+		Snapshot
+		NodeSpec
+		ServiceSpec
+		ReplicatedService
+		GlobalService
+		TaskSpec
+		ResourceReference
+		GenericRuntimeSpec
+		NetworkAttachmentSpec
+		ContainerSpec
+		EndpointSpec
+		NetworkSpec
+		ClusterSpec
+		SecretSpec
+		ConfigSpec
+		Version
+		IndexEntry
+		Annotations
+		NamedGenericResource
+		DiscreteGenericResource
+		GenericResource
+		Resources
+		ResourceRequirements
+		Platform
+		PluginDescription
+		EngineDescription
+		NodeDescription
+		NodeTLSInfo
+		RaftMemberStatus
+		NodeStatus
+		Image
+		Mount
+		RestartPolicy
+		UpdateConfig
+		UpdateStatus
+		ContainerStatus
+		PortStatus
+		TaskStatus
+		NetworkAttachmentConfig
+		IPAMConfig
+		PortConfig
+		Driver
+		IPAMOptions
+		Peer
+		WeightedPeer
+		IssuanceStatus
+		AcceptancePolicy
+		ExternalCA
+		CAConfig
+		OrchestrationConfig
+		TaskDefaults
+		DispatcherConfig
+		RaftConfig
+		EncryptionConfig
+		SpreadOver
+		PlacementPreference
+		Placement
+		JoinTokens
+		RootCA
+		Certificate
+		EncryptionKey
+		ManagerStatus
+		FileTarget
+		SecretReference
+		ConfigReference
+		BlacklistedCertificate
+		HealthConfig
+		MaybeEncryptedRecord
+		RootRotation
+		Privileges
+		Object
+		SelectBySlot
+		SelectByCustom
+		SelectBy
+		WatchRequest
+		WatchMessage
+*/
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type NodeCertificateStatusRequest struct {
+	NodeID string `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+}
+
+func (m *NodeCertificateStatusRequest) Reset()                    { *m = NodeCertificateStatusRequest{} }
+func (*NodeCertificateStatusRequest) ProtoMessage()               {}
+func (*NodeCertificateStatusRequest) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{0} }
+
+type NodeCertificateStatusResponse struct {
+	Status      *IssuanceStatus `protobuf:"bytes,1,opt,name=status" json:"status,omitempty"`
+	Certificate *Certificate    `protobuf:"bytes,2,opt,name=certificate" json:"certificate,omitempty"`
+}
+
+func (m *NodeCertificateStatusResponse) Reset()                    { *m = NodeCertificateStatusResponse{} }
+func (*NodeCertificateStatusResponse) ProtoMessage()               {}
+func (*NodeCertificateStatusResponse) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{1} }
+
+type IssueNodeCertificateRequest struct {
+	// DEPRECATED: Role is now selected based on which secret is matched.
+	Role NodeRole `protobuf:"varint,1,opt,name=role,proto3,enum=docker.swarmkit.v1.NodeRole" json:"role,omitempty"`
+	// CSR is the certificate signing request.
+	CSR []byte `protobuf:"bytes,2,opt,name=csr,proto3" json:"csr,omitempty"`
+	// Token represents a user-provided string that is necessary for new
+	// nodes to join the cluster
+	Token string `protobuf:"bytes,3,opt,name=token,proto3" json:"token,omitempty"`
+	// Availability allows a user to control the current scheduling status of a node
+	Availability NodeSpec_Availability `protobuf:"varint,4,opt,name=availability,proto3,enum=docker.swarmkit.v1.NodeSpec_Availability" json:"availability,omitempty"`
+}
+
+func (m *IssueNodeCertificateRequest) Reset()                    { *m = IssueNodeCertificateRequest{} }
+func (*IssueNodeCertificateRequest) ProtoMessage()               {}
+func (*IssueNodeCertificateRequest) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{2} }
+
+type IssueNodeCertificateResponse struct {
+	NodeID         string              `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	NodeMembership NodeSpec_Membership `protobuf:"varint,2,opt,name=node_membership,json=nodeMembership,proto3,enum=docker.swarmkit.v1.NodeSpec_Membership" json:"node_membership,omitempty"`
+}
+
+func (m *IssueNodeCertificateResponse) Reset()                    { *m = IssueNodeCertificateResponse{} }
+func (*IssueNodeCertificateResponse) ProtoMessage()               {}
+func (*IssueNodeCertificateResponse) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{3} }
+
+type GetRootCACertificateRequest struct {
+}
+
+func (m *GetRootCACertificateRequest) Reset()                    { *m = GetRootCACertificateRequest{} }
+func (*GetRootCACertificateRequest) ProtoMessage()               {}
+func (*GetRootCACertificateRequest) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{4} }
+
+type GetRootCACertificateResponse struct {
+	Certificate []byte `protobuf:"bytes,1,opt,name=certificate,proto3" json:"certificate,omitempty"`
+}
+
+func (m *GetRootCACertificateResponse) Reset()                    { *m = GetRootCACertificateResponse{} }
+func (*GetRootCACertificateResponse) ProtoMessage()               {}
+func (*GetRootCACertificateResponse) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{5} }
+
+type GetUnlockKeyRequest struct {
+}
+
+func (m *GetUnlockKeyRequest) Reset()                    { *m = GetUnlockKeyRequest{} }
+func (*GetUnlockKeyRequest) ProtoMessage()               {}
+func (*GetUnlockKeyRequest) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{6} }
+
+type GetUnlockKeyResponse struct {
+	UnlockKey []byte  `protobuf:"bytes,1,opt,name=unlock_key,json=unlockKey,proto3" json:"unlock_key,omitempty"`
+	Version   Version `protobuf:"bytes,2,opt,name=version" json:"version"`
+}
+
+func (m *GetUnlockKeyResponse) Reset()                    { *m = GetUnlockKeyResponse{} }
+func (*GetUnlockKeyResponse) ProtoMessage()               {}
+func (*GetUnlockKeyResponse) Descriptor() ([]byte, []int) { return fileDescriptorCa, []int{7} }
+
+func init() {
+	proto.RegisterType((*NodeCertificateStatusRequest)(nil), "docker.swarmkit.v1.NodeCertificateStatusRequest")
+	proto.RegisterType((*NodeCertificateStatusResponse)(nil), "docker.swarmkit.v1.NodeCertificateStatusResponse")
+	proto.RegisterType((*IssueNodeCertificateRequest)(nil), "docker.swarmkit.v1.IssueNodeCertificateRequest")
+	proto.RegisterType((*IssueNodeCertificateResponse)(nil), "docker.swarmkit.v1.IssueNodeCertificateResponse")
+	proto.RegisterType((*GetRootCACertificateRequest)(nil), "docker.swarmkit.v1.GetRootCACertificateRequest")
+	proto.RegisterType((*GetRootCACertificateResponse)(nil), "docker.swarmkit.v1.GetRootCACertificateResponse")
+	proto.RegisterType((*GetUnlockKeyRequest)(nil), "docker.swarmkit.v1.GetUnlockKeyRequest")
+	proto.RegisterType((*GetUnlockKeyResponse)(nil), "docker.swarmkit.v1.GetUnlockKeyResponse")
+}
+
+type authenticatedWrapperCAServer struct {
+	local     CAServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperCAServer(local CAServer, authorize func(context.Context, []string) error) CAServer {
+	return &authenticatedWrapperCAServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperCAServer) GetRootCACertificate(ctx context.Context, r *GetRootCACertificateRequest) (*GetRootCACertificateResponse, error) {
+
+	return p.local.GetRootCACertificate(ctx, r)
+}
+
+func (p *authenticatedWrapperCAServer) GetUnlockKey(ctx context.Context, r *GetUnlockKeyRequest) (*GetUnlockKeyResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetUnlockKey(ctx, r)
+}
+
+type authenticatedWrapperNodeCAServer struct {
+	local     NodeCAServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperNodeCAServer(local NodeCAServer, authorize func(context.Context, []string) error) NodeCAServer {
+	return &authenticatedWrapperNodeCAServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperNodeCAServer) IssueNodeCertificate(ctx context.Context, r *IssueNodeCertificateRequest) (*IssueNodeCertificateResponse, error) {
+
+	return p.local.IssueNodeCertificate(ctx, r)
+}
+
+func (p *authenticatedWrapperNodeCAServer) NodeCertificateStatus(ctx context.Context, r *NodeCertificateStatusRequest) (*NodeCertificateStatusResponse, error) {
+
+	return p.local.NodeCertificateStatus(ctx, r)
+}
+
+func (m *NodeCertificateStatusRequest) Copy() *NodeCertificateStatusRequest {
+	if m == nil {
+		return nil
+	}
+	o := &NodeCertificateStatusRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeCertificateStatusRequest) CopyFrom(src interface{}) {
+
+	o := src.(*NodeCertificateStatusRequest)
+	*m = *o
+}
+
+func (m *NodeCertificateStatusResponse) Copy() *NodeCertificateStatusResponse {
+	if m == nil {
+		return nil
+	}
+	o := &NodeCertificateStatusResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeCertificateStatusResponse) CopyFrom(src interface{}) {
+
+	o := src.(*NodeCertificateStatusResponse)
+	*m = *o
+	if o.Status != nil {
+		m.Status = &IssuanceStatus{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Status, o.Status)
+	}
+	if o.Certificate != nil {
+		m.Certificate = &Certificate{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Certificate, o.Certificate)
+	}
+}
+
+func (m *IssueNodeCertificateRequest) Copy() *IssueNodeCertificateRequest {
+	if m == nil {
+		return nil
+	}
+	o := &IssueNodeCertificateRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IssueNodeCertificateRequest) CopyFrom(src interface{}) {
+
+	o := src.(*IssueNodeCertificateRequest)
+	*m = *o
+	if o.CSR != nil {
+		m.CSR = make([]byte, len(o.CSR))
+		copy(m.CSR, o.CSR)
+	}
+}
+
+func (m *IssueNodeCertificateResponse) Copy() *IssueNodeCertificateResponse {
+	if m == nil {
+		return nil
+	}
+	o := &IssueNodeCertificateResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IssueNodeCertificateResponse) CopyFrom(src interface{}) {
+
+	o := src.(*IssueNodeCertificateResponse)
+	*m = *o
+}
+
+func (m *GetRootCACertificateRequest) Copy() *GetRootCACertificateRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetRootCACertificateRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetRootCACertificateRequest) CopyFrom(src interface{}) {}
+func (m *GetRootCACertificateResponse) Copy() *GetRootCACertificateResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetRootCACertificateResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetRootCACertificateResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetRootCACertificateResponse)
+	*m = *o
+	if o.Certificate != nil {
+		m.Certificate = make([]byte, len(o.Certificate))
+		copy(m.Certificate, o.Certificate)
+	}
+}
+
+func (m *GetUnlockKeyRequest) Copy() *GetUnlockKeyRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetUnlockKeyRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetUnlockKeyRequest) CopyFrom(src interface{}) {}
+func (m *GetUnlockKeyResponse) Copy() *GetUnlockKeyResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetUnlockKeyResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetUnlockKeyResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetUnlockKeyResponse)
+	*m = *o
+	if o.UnlockKey != nil {
+		m.UnlockKey = make([]byte, len(o.UnlockKey))
+		copy(m.UnlockKey, o.UnlockKey)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Version, &o.Version)
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for CA service
+
+type CAClient interface {
+	GetRootCACertificate(ctx context.Context, in *GetRootCACertificateRequest, opts ...grpc.CallOption) (*GetRootCACertificateResponse, error)
+	// GetUnlockKey returns the current unlock key for the cluster for the role of the client
+	// asking.
+	GetUnlockKey(ctx context.Context, in *GetUnlockKeyRequest, opts ...grpc.CallOption) (*GetUnlockKeyResponse, error)
+}
+
+type cAClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewCAClient(cc *grpc.ClientConn) CAClient {
+	return &cAClient{cc}
+}
+
+func (c *cAClient) GetRootCACertificate(ctx context.Context, in *GetRootCACertificateRequest, opts ...grpc.CallOption) (*GetRootCACertificateResponse, error) {
+	out := new(GetRootCACertificateResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.CA/GetRootCACertificate", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *cAClient) GetUnlockKey(ctx context.Context, in *GetUnlockKeyRequest, opts ...grpc.CallOption) (*GetUnlockKeyResponse, error) {
+	out := new(GetUnlockKeyResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.CA/GetUnlockKey", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for CA service
+
+type CAServer interface {
+	GetRootCACertificate(context.Context, *GetRootCACertificateRequest) (*GetRootCACertificateResponse, error)
+	// GetUnlockKey returns the current unlock key for the cluster for the role of the client
+	// asking.
+	GetUnlockKey(context.Context, *GetUnlockKeyRequest) (*GetUnlockKeyResponse, error)
+}
+
+func RegisterCAServer(s *grpc.Server, srv CAServer) {
+	s.RegisterService(&_CA_serviceDesc, srv)
+}
+
+func _CA_GetRootCACertificate_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetRootCACertificateRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(CAServer).GetRootCACertificate(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.CA/GetRootCACertificate",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(CAServer).GetRootCACertificate(ctx, req.(*GetRootCACertificateRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _CA_GetUnlockKey_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetUnlockKeyRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(CAServer).GetUnlockKey(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.CA/GetUnlockKey",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(CAServer).GetUnlockKey(ctx, req.(*GetUnlockKeyRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _CA_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.CA",
+	HandlerType: (*CAServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "GetRootCACertificate",
+			Handler:    _CA_GetRootCACertificate_Handler,
+		},
+		{
+			MethodName: "GetUnlockKey",
+			Handler:    _CA_GetUnlockKey_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/ca.proto",
+}
+
+// Client API for NodeCA service
+
+type NodeCAClient interface {
+	IssueNodeCertificate(ctx context.Context, in *IssueNodeCertificateRequest, opts ...grpc.CallOption) (*IssueNodeCertificateResponse, error)
+	NodeCertificateStatus(ctx context.Context, in *NodeCertificateStatusRequest, opts ...grpc.CallOption) (*NodeCertificateStatusResponse, error)
+}
+
+type nodeCAClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewNodeCAClient(cc *grpc.ClientConn) NodeCAClient {
+	return &nodeCAClient{cc}
+}
+
+func (c *nodeCAClient) IssueNodeCertificate(ctx context.Context, in *IssueNodeCertificateRequest, opts ...grpc.CallOption) (*IssueNodeCertificateResponse, error) {
+	out := new(IssueNodeCertificateResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.NodeCA/IssueNodeCertificate", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *nodeCAClient) NodeCertificateStatus(ctx context.Context, in *NodeCertificateStatusRequest, opts ...grpc.CallOption) (*NodeCertificateStatusResponse, error) {
+	out := new(NodeCertificateStatusResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.NodeCA/NodeCertificateStatus", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for NodeCA service
+
+type NodeCAServer interface {
+	IssueNodeCertificate(context.Context, *IssueNodeCertificateRequest) (*IssueNodeCertificateResponse, error)
+	NodeCertificateStatus(context.Context, *NodeCertificateStatusRequest) (*NodeCertificateStatusResponse, error)
+}
+
+func RegisterNodeCAServer(s *grpc.Server, srv NodeCAServer) {
+	s.RegisterService(&_NodeCA_serviceDesc, srv)
+}
+
+func _NodeCA_IssueNodeCertificate_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(IssueNodeCertificateRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(NodeCAServer).IssueNodeCertificate(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.NodeCA/IssueNodeCertificate",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(NodeCAServer).IssueNodeCertificate(ctx, req.(*IssueNodeCertificateRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _NodeCA_NodeCertificateStatus_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(NodeCertificateStatusRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(NodeCAServer).NodeCertificateStatus(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.NodeCA/NodeCertificateStatus",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(NodeCAServer).NodeCertificateStatus(ctx, req.(*NodeCertificateStatusRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _NodeCA_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.NodeCA",
+	HandlerType: (*NodeCAServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "IssueNodeCertificate",
+			Handler:    _NodeCA_IssueNodeCertificate_Handler,
+		},
+		{
+			MethodName: "NodeCertificateStatus",
+			Handler:    _NodeCA_NodeCertificateStatus_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/ca.proto",
+}
+
+func (m *NodeCertificateStatusRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeCertificateStatusRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	return i, nil
+}
+
+func (m *NodeCertificateStatusResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeCertificateStatusResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Status != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(m.Status.Size()))
+		n1, err := m.Status.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	if m.Certificate != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(m.Certificate.Size()))
+		n2, err := m.Certificate.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	return i, nil
+}
+
+func (m *IssueNodeCertificateRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IssueNodeCertificateRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Role != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(m.Role))
+	}
+	if len(m.CSR) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.CSR)))
+		i += copy(dAtA[i:], m.CSR)
+	}
+	if len(m.Token) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.Token)))
+		i += copy(dAtA[i:], m.Token)
+	}
+	if m.Availability != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(m.Availability))
+	}
+	return i, nil
+}
+
+func (m *IssueNodeCertificateResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IssueNodeCertificateResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if m.NodeMembership != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(m.NodeMembership))
+	}
+	return i, nil
+}
+
+func (m *GetRootCACertificateRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetRootCACertificateRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *GetRootCACertificateResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetRootCACertificateResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Certificate) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.Certificate)))
+		i += copy(dAtA[i:], m.Certificate)
+	}
+	return i, nil
+}
+
+func (m *GetUnlockKeyRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetUnlockKeyRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *GetUnlockKeyResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetUnlockKeyResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.UnlockKey) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintCa(dAtA, i, uint64(len(m.UnlockKey)))
+		i += copy(dAtA[i:], m.UnlockKey)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintCa(dAtA, i, uint64(m.Version.Size()))
+	n3, err := m.Version.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n3
+	return i, nil
+}
+
+func encodeFixed64Ca(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Ca(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintCa(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyCAServer struct {
+	local                       CAServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyCAServer(local CAServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) CAServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyCAServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyCAServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyCAServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyCAServer) GetRootCACertificate(ctx context.Context, r *GetRootCACertificateRequest) (*GetRootCACertificateResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetRootCACertificate(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewCAClient(conn).GetRootCACertificate(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetRootCACertificate(ctx, r)
+			}
+			return nil, err
+		}
+		return NewCAClient(conn).GetRootCACertificate(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyCAServer) GetUnlockKey(ctx context.Context, r *GetUnlockKeyRequest) (*GetUnlockKeyResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetUnlockKey(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewCAClient(conn).GetUnlockKey(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetUnlockKey(ctx, r)
+			}
+			return nil, err
+		}
+		return NewCAClient(conn).GetUnlockKey(modCtx, r)
+	}
+	return resp, err
+}
+
+type raftProxyNodeCAServer struct {
+	local                       NodeCAServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyNodeCAServer(local NodeCAServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) NodeCAServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyNodeCAServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyNodeCAServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyNodeCAServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyNodeCAServer) IssueNodeCertificate(ctx context.Context, r *IssueNodeCertificateRequest) (*IssueNodeCertificateResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.IssueNodeCertificate(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewNodeCAClient(conn).IssueNodeCertificate(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.IssueNodeCertificate(ctx, r)
+			}
+			return nil, err
+		}
+		return NewNodeCAClient(conn).IssueNodeCertificate(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyNodeCAServer) NodeCertificateStatus(ctx context.Context, r *NodeCertificateStatusRequest) (*NodeCertificateStatusResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.NodeCertificateStatus(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewNodeCAClient(conn).NodeCertificateStatus(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.NodeCertificateStatus(ctx, r)
+			}
+			return nil, err
+		}
+		return NewNodeCAClient(conn).NodeCertificateStatus(modCtx, r)
+	}
+	return resp, err
+}
+
+func (m *NodeCertificateStatusRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	return n
+}
+
+func (m *NodeCertificateStatusResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Status != nil {
+		l = m.Status.Size()
+		n += 1 + l + sovCa(uint64(l))
+	}
+	if m.Certificate != nil {
+		l = m.Certificate.Size()
+		n += 1 + l + sovCa(uint64(l))
+	}
+	return n
+}
+
+func (m *IssueNodeCertificateRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Role != 0 {
+		n += 1 + sovCa(uint64(m.Role))
+	}
+	l = len(m.CSR)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	l = len(m.Token)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	if m.Availability != 0 {
+		n += 1 + sovCa(uint64(m.Availability))
+	}
+	return n
+}
+
+func (m *IssueNodeCertificateResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	if m.NodeMembership != 0 {
+		n += 1 + sovCa(uint64(m.NodeMembership))
+	}
+	return n
+}
+
+func (m *GetRootCACertificateRequest) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *GetRootCACertificateResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Certificate)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	return n
+}
+
+func (m *GetUnlockKeyRequest) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *GetUnlockKeyResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.UnlockKey)
+	if l > 0 {
+		n += 1 + l + sovCa(uint64(l))
+	}
+	l = m.Version.Size()
+	n += 1 + l + sovCa(uint64(l))
+	return n
+}
+
+func sovCa(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozCa(x uint64) (n int) {
+	return sovCa(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *NodeCertificateStatusRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeCertificateStatusRequest{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NodeCertificateStatusResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeCertificateStatusResponse{`,
+		`Status:` + strings.Replace(fmt.Sprintf("%v", this.Status), "IssuanceStatus", "IssuanceStatus", 1) + `,`,
+		`Certificate:` + strings.Replace(fmt.Sprintf("%v", this.Certificate), "Certificate", "Certificate", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IssueNodeCertificateRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&IssueNodeCertificateRequest{`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`CSR:` + fmt.Sprintf("%v", this.CSR) + `,`,
+		`Token:` + fmt.Sprintf("%v", this.Token) + `,`,
+		`Availability:` + fmt.Sprintf("%v", this.Availability) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IssueNodeCertificateResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&IssueNodeCertificateResponse{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`NodeMembership:` + fmt.Sprintf("%v", this.NodeMembership) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetRootCACertificateRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetRootCACertificateRequest{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetRootCACertificateResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetRootCACertificateResponse{`,
+		`Certificate:` + fmt.Sprintf("%v", this.Certificate) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetUnlockKeyRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetUnlockKeyRequest{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetUnlockKeyResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetUnlockKeyResponse{`,
+		`UnlockKey:` + fmt.Sprintf("%v", this.UnlockKey) + `,`,
+		`Version:` + strings.Replace(strings.Replace(this.Version.String(), "Version", "Version", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringCa(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *NodeCertificateStatusRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeCertificateStatusRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeCertificateStatusRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NodeCertificateStatusResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeCertificateStatusResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeCertificateStatusResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Status == nil {
+				m.Status = &IssuanceStatus{}
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Certificate", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Certificate == nil {
+				m.Certificate = &Certificate{}
+			}
+			if err := m.Certificate.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IssueNodeCertificateRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IssueNodeCertificateRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IssueNodeCertificateRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			m.Role = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Role |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CSR", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CSR = append(m.CSR[:0], dAtA[iNdEx:postIndex]...)
+			if m.CSR == nil {
+				m.CSR = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Token", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Token = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Availability", wireType)
+			}
+			m.Availability = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Availability |= (NodeSpec_Availability(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IssueNodeCertificateResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IssueNodeCertificateResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IssueNodeCertificateResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeMembership", wireType)
+			}
+			m.NodeMembership = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.NodeMembership |= (NodeSpec_Membership(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetRootCACertificateRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetRootCACertificateRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetRootCACertificateRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetRootCACertificateResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetRootCACertificateResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetRootCACertificateResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Certificate", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Certificate = append(m.Certificate[:0], dAtA[iNdEx:postIndex]...)
+			if m.Certificate == nil {
+				m.Certificate = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetUnlockKeyRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetUnlockKeyRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetUnlockKeyRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetUnlockKeyResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetUnlockKeyResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetUnlockKeyResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UnlockKey", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.UnlockKey = append(m.UnlockKey[:0], dAtA[iNdEx:postIndex]...)
+			if m.UnlockKey == nil {
+				m.UnlockKey = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Version", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthCa
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Version.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipCa(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthCa
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipCa(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowCa
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowCa
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthCa
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowCa
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipCa(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthCa = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowCa   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/ca.proto", fileDescriptorCa) }
+
+var fileDescriptorCa = []byte{
+	// 638 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x94, 0x54, 0xc1, 0x6e, 0xd3, 0x4c,
+	0x10, 0xee, 0xba, 0xfd, 0xd3, 0xbf, 0xd3, 0xd0, 0xa2, 0xa5, 0x95, 0x4c, 0x9a, 0x3a, 0x95, 0x39,
+	0xb4, 0x20, 0x61, 0xb7, 0x01, 0x09, 0x09, 0x2e, 0x24, 0x41, 0xaa, 0x2a, 0x54, 0x84, 0xb6, 0x82,
+	0x6b, 0xe5, 0x38, 0xdb, 0x74, 0x15, 0xc7, 0x6b, 0xbc, 0xeb, 0x42, 0x6e, 0x48, 0x20, 0xde, 0x00,
+	0xc1, 0x89, 0x47, 0xe0, 0x39, 0x2a, 0x4e, 0x48, 0x5c, 0x38, 0x55, 0xd4, 0x0f, 0xc0, 0x33, 0x20,
+	0xaf, 0x6d, 0x9a, 0xb4, 0x4e, 0x5a, 0x4e, 0xf1, 0xce, 0x7c, 0xdf, 0x37, 0x33, 0xdf, 0x4e, 0x16,
+	0xd6, 0xbb, 0x4c, 0x1e, 0x46, 0x6d, 0xcb, 0xe5, 0x7d, 0xbb, 0xc3, 0xdd, 0x1e, 0x0d, 0x6d, 0xf1,
+	0xda, 0x09, 0xfb, 0x3d, 0x26, 0x6d, 0x27, 0x60, 0xb6, 0xeb, 0x58, 0x41, 0xc8, 0x25, 0xc7, 0x38,
+	0xcd, 0x5a, 0x79, 0xd6, 0x3a, 0xda, 0xaa, 0xdc, 0xb9, 0x84, 0x2c, 0x07, 0x01, 0x15, 0x29, 0xff,
+	0x52, 0xac, 0x08, 0xa8, 0x9b, 0x63, 0x97, 0xba, 0xbc, 0xcb, 0xd5, 0xa7, 0x9d, 0x7c, 0x65, 0xd1,
+	0x07, 0x13, 0x14, 0x14, 0xa2, 0x1d, 0x1d, 0xd8, 0x81, 0x17, 0x75, 0x99, 0x9f, 0xfd, 0xa4, 0x44,
+	0xb3, 0x05, 0xd5, 0x67, 0xbc, 0x43, 0x5b, 0x34, 0x94, 0xec, 0x80, 0xb9, 0x8e, 0xa4, 0x7b, 0xd2,
+	0x91, 0x91, 0x20, 0xf4, 0x55, 0x44, 0x85, 0xc4, 0xb7, 0x60, 0xd6, 0xe7, 0x1d, 0xba, 0xcf, 0x3a,
+	0x3a, 0x5a, 0x43, 0x1b, 0x73, 0x4d, 0x88, 0x4f, 0x6a, 0xa5, 0x84, 0xb2, 0xf3, 0x84, 0x94, 0x92,
+	0xd4, 0x4e, 0xc7, 0xfc, 0x82, 0x60, 0x75, 0x8c, 0x8a, 0x08, 0xb8, 0x2f, 0x28, 0x7e, 0x08, 0x25,
+	0xa1, 0x22, 0x4a, 0x65, 0xbe, 0x6e, 0x5a, 0x17, 0x2d, 0xb3, 0x76, 0x84, 0x88, 0x1c, 0xdf, 0xcd,
+	0xb9, 0x19, 0x03, 0x37, 0x60, 0xde, 0x3d, 0x13, 0xd6, 0x35, 0x25, 0x50, 0x2b, 0x12, 0x18, 0xaa,
+	0x4f, 0x86, 0x39, 0xe6, 0x0f, 0x04, 0x2b, 0x89, 0x3a, 0x3d, 0xd7, 0x65, 0x3e, 0xe5, 0x7d, 0x98,
+	0x09, 0xb9, 0x47, 0x55, 0x73, 0x0b, 0xf5, 0x6a, 0x91, 0x76, 0xc2, 0x24, 0xdc, 0xa3, 0x4d, 0x4d,
+	0x47, 0x44, 0xa1, 0xf1, 0x4d, 0x98, 0x76, 0x45, 0xa8, 0x1a, 0x2a, 0x37, 0x67, 0xe3, 0x93, 0xda,
+	0x74, 0x6b, 0x8f, 0x90, 0x24, 0x86, 0x97, 0xe0, 0x3f, 0xc9, 0x7b, 0xd4, 0xd7, 0xa7, 0x13, 0xd3,
+	0x48, 0x7a, 0xc0, 0xbb, 0x50, 0x76, 0x8e, 0x1c, 0xe6, 0x39, 0x6d, 0xe6, 0x31, 0x39, 0xd0, 0x67,
+	0x54, 0xb9, 0xdb, 0xe3, 0xca, 0xed, 0x05, 0xd4, 0xb5, 0x1a, 0x43, 0x04, 0x32, 0x42, 0x37, 0x3f,
+	0x22, 0xa8, 0x16, 0x4f, 0x95, 0xb9, 0x7e, 0x95, 0xcb, 0xc3, 0xcf, 0x61, 0x51, 0x81, 0xfa, 0xb4,
+	0xdf, 0xa6, 0xa1, 0x38, 0x64, 0x81, 0x9a, 0x68, 0xa1, 0xbe, 0x3e, 0xb1, 0xaf, 0xdd, 0xbf, 0x70,
+	0xb2, 0x90, 0xf0, 0xcf, 0xce, 0xe6, 0x2a, 0xac, 0x6c, 0x53, 0x49, 0x38, 0x97, 0xad, 0xc6, 0x45,
+	0xb3, 0xcd, 0xc7, 0x50, 0x2d, 0x4e, 0x67, 0x5d, 0xaf, 0x8d, 0xde, 0x77, 0xd2, 0x79, 0x79, 0xf4,
+	0x3a, 0x97, 0xe1, 0xc6, 0x36, 0x95, 0x2f, 0x7c, 0x8f, 0xbb, 0xbd, 0xa7, 0x74, 0x90, 0x0b, 0x87,
+	0xb0, 0x34, 0x1a, 0xce, 0x04, 0x57, 0x01, 0x22, 0x15, 0xdc, 0xef, 0xd1, 0x41, 0xa6, 0x37, 0x17,
+	0xe5, 0x30, 0xfc, 0x08, 0x66, 0x8f, 0x68, 0x28, 0x18, 0xf7, 0xb3, 0xdd, 0x5a, 0x29, 0x1a, 0xfc,
+	0x65, 0x0a, 0x69, 0xce, 0x1c, 0x9f, 0xd4, 0xa6, 0x48, 0xce, 0xa8, 0xbf, 0xd7, 0x40, 0x6b, 0x35,
+	0xf0, 0x3b, 0xa4, 0x6a, 0x5f, 0x18, 0x0a, 0xdb, 0x45, 0x5a, 0x13, 0xdc, 0xa9, 0x6c, 0x5e, 0x9d,
+	0x90, 0x8e, 0x67, 0xfe, 0xff, 0xed, 0xeb, 0xef, 0xcf, 0x9a, 0x76, 0x1d, 0xe1, 0x37, 0x50, 0x1e,
+	0x36, 0x00, 0xaf, 0x8f, 0xd1, 0x3a, 0xef, 0x5c, 0x65, 0xe3, 0x72, 0x60, 0x56, 0x6c, 0x59, 0x15,
+	0x5b, 0x84, 0x6b, 0x0a, 0x79, 0xb7, 0xef, 0xf8, 0x4e, 0x97, 0x86, 0xf5, 0x4f, 0x1a, 0xa8, 0xbd,
+	0xca, 0xac, 0x28, 0xda, 0xca, 0x62, 0x2b, 0x26, 0xfc, 0x2b, 0x8b, 0xad, 0x98, 0xb4, 0xf0, 0x43,
+	0x56, 0x7c, 0x40, 0xb0, 0x5c, 0xf8, 0x24, 0xe1, 0xcd, 0x71, 0x6b, 0x3d, 0xee, 0x0d, 0xac, 0x6c,
+	0xfd, 0x03, 0xe3, 0x7c, 0x23, 0x4d, 0xfd, 0xf8, 0xd4, 0x98, 0xfa, 0x79, 0x6a, 0x4c, 0xbd, 0x8d,
+	0x0d, 0x74, 0x1c, 0x1b, 0xe8, 0x7b, 0x6c, 0xa0, 0x5f, 0xb1, 0x81, 0xda, 0x25, 0xf5, 0x02, 0xdf,
+	0xfb, 0x13, 0x00, 0x00, 0xff, 0xff, 0xe1, 0xda, 0xca, 0xba, 0x67, 0x06, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/control.pb.go b/vendor/github.com/docker/swarmkit/api/control.pb.go
new file mode 100644
index 0000000000..6fcb0b6442
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/control.pb.go
@@ -0,0 +1,16095 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/control.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type UpdateServiceRequest_Rollback int32
+
+const (
+	// This is not a rollback. The spec field of the request will
+	// be honored.
+	UpdateServiceRequest_NONE UpdateServiceRequest_Rollback = 0
+	// Roll back the service - get spec from the service's
+	// previous_spec.
+	UpdateServiceRequest_PREVIOUS UpdateServiceRequest_Rollback = 1
+)
+
+var UpdateServiceRequest_Rollback_name = map[int32]string{
+	0: "NONE",
+	1: "PREVIOUS",
+}
+var UpdateServiceRequest_Rollback_value = map[string]int32{
+	"NONE":     0,
+	"PREVIOUS": 1,
+}
+
+func (x UpdateServiceRequest_Rollback) String() string {
+	return proto.EnumName(UpdateServiceRequest_Rollback_name, int32(x))
+}
+func (UpdateServiceRequest_Rollback) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{18, 0}
+}
+
+type GetNodeRequest struct {
+	NodeID string `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+}
+
+func (m *GetNodeRequest) Reset()                    { *m = GetNodeRequest{} }
+func (*GetNodeRequest) ProtoMessage()               {}
+func (*GetNodeRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{0} }
+
+type GetNodeResponse struct {
+	Node *Node `protobuf:"bytes,1,opt,name=node" json:"node,omitempty"`
+}
+
+func (m *GetNodeResponse) Reset()                    { *m = GetNodeResponse{} }
+func (*GetNodeResponse) ProtoMessage()               {}
+func (*GetNodeResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{1} }
+
+type ListNodesRequest struct {
+	Filters *ListNodesRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListNodesRequest) Reset()                    { *m = ListNodesRequest{} }
+func (*ListNodesRequest) ProtoMessage()               {}
+func (*ListNodesRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{2} }
+
+type ListNodesRequest_Filters struct {
+	Names       []string              `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes  []string              `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels      map[string]string     `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	Memberships []NodeSpec_Membership `protobuf:"varint,4,rep,name=memberships,enum=docker.swarmkit.v1.NodeSpec_Membership" json:"memberships,omitempty"`
+	Roles       []NodeRole            `protobuf:"varint,5,rep,name=roles,enum=docker.swarmkit.v1.NodeRole" json:"roles,omitempty"`
+	// NamePrefixes matches all objects with the given prefixes
+	NamePrefixes []string `protobuf:"bytes,6,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+}
+
+func (m *ListNodesRequest_Filters) Reset()      { *m = ListNodesRequest_Filters{} }
+func (*ListNodesRequest_Filters) ProtoMessage() {}
+func (*ListNodesRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{2, 0}
+}
+
+type ListNodesResponse struct {
+	Nodes []*Node `protobuf:"bytes,1,rep,name=nodes" json:"nodes,omitempty"`
+}
+
+func (m *ListNodesResponse) Reset()                    { *m = ListNodesResponse{} }
+func (*ListNodesResponse) ProtoMessage()               {}
+func (*ListNodesResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{3} }
+
+// UpdateNodeRequest requests an update to the specified node. This may be used
+// to request a new availability for a node, such as PAUSE. Invalid updates
+// will be denied and cause an error.
+type UpdateNodeRequest struct {
+	NodeID      string    `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	NodeVersion *Version  `protobuf:"bytes,2,opt,name=node_version,json=nodeVersion" json:"node_version,omitempty"`
+	Spec        *NodeSpec `protobuf:"bytes,3,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *UpdateNodeRequest) Reset()                    { *m = UpdateNodeRequest{} }
+func (*UpdateNodeRequest) ProtoMessage()               {}
+func (*UpdateNodeRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{4} }
+
+type UpdateNodeResponse struct {
+	Node *Node `protobuf:"bytes,1,opt,name=node" json:"node,omitempty"`
+}
+
+func (m *UpdateNodeResponse) Reset()                    { *m = UpdateNodeResponse{} }
+func (*UpdateNodeResponse) ProtoMessage()               {}
+func (*UpdateNodeResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{5} }
+
+// RemoveNodeRequest requests to delete the specified node from store.
+type RemoveNodeRequest struct {
+	NodeID string `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	Force  bool   `protobuf:"varint,2,opt,name=force,proto3" json:"force,omitempty"`
+}
+
+func (m *RemoveNodeRequest) Reset()                    { *m = RemoveNodeRequest{} }
+func (*RemoveNodeRequest) ProtoMessage()               {}
+func (*RemoveNodeRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{6} }
+
+type RemoveNodeResponse struct {
+}
+
+func (m *RemoveNodeResponse) Reset()                    { *m = RemoveNodeResponse{} }
+func (*RemoveNodeResponse) ProtoMessage()               {}
+func (*RemoveNodeResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{7} }
+
+type GetTaskRequest struct {
+	TaskID string `protobuf:"bytes,1,opt,name=task_id,json=taskId,proto3" json:"task_id,omitempty"`
+}
+
+func (m *GetTaskRequest) Reset()                    { *m = GetTaskRequest{} }
+func (*GetTaskRequest) ProtoMessage()               {}
+func (*GetTaskRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{8} }
+
+type GetTaskResponse struct {
+	Task *Task `protobuf:"bytes,1,opt,name=task" json:"task,omitempty"`
+}
+
+func (m *GetTaskResponse) Reset()                    { *m = GetTaskResponse{} }
+func (*GetTaskResponse) ProtoMessage()               {}
+func (*GetTaskResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{9} }
+
+type RemoveTaskRequest struct {
+	TaskID string `protobuf:"bytes,1,opt,name=task_id,json=taskId,proto3" json:"task_id,omitempty"`
+}
+
+func (m *RemoveTaskRequest) Reset()                    { *m = RemoveTaskRequest{} }
+func (*RemoveTaskRequest) ProtoMessage()               {}
+func (*RemoveTaskRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{10} }
+
+type RemoveTaskResponse struct {
+}
+
+func (m *RemoveTaskResponse) Reset()                    { *m = RemoveTaskResponse{} }
+func (*RemoveTaskResponse) ProtoMessage()               {}
+func (*RemoveTaskResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{11} }
+
+type ListTasksRequest struct {
+	Filters *ListTasksRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListTasksRequest) Reset()                    { *m = ListTasksRequest{} }
+func (*ListTasksRequest) ProtoMessage()               {}
+func (*ListTasksRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{12} }
+
+type ListTasksRequest_Filters struct {
+	Names         []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes    []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels        map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	ServiceIDs    []string          `protobuf:"bytes,4,rep,name=service_ids,json=serviceIds" json:"service_ids,omitempty"`
+	NodeIDs       []string          `protobuf:"bytes,5,rep,name=node_ids,json=nodeIds" json:"node_ids,omitempty"`
+	DesiredStates []TaskState       `protobuf:"varint,6,rep,name=desired_states,json=desiredStates,enum=docker.swarmkit.v1.TaskState" json:"desired_states,omitempty"`
+	// NamePrefixes matches all objects with the given prefixes
+	NamePrefixes []string `protobuf:"bytes,7,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+	Runtimes     []string `protobuf:"bytes,9,rep,name=runtimes" json:"runtimes,omitempty"`
+	// UpToDate matches tasks that are consistent with the current
+	// service definition.
+	// Note: this is intended for internal status reporting rather
+	// than being exposed to users. It may be removed in the future.
+	UpToDate bool `protobuf:"varint,8,opt,name=up_to_date,json=upToDate,proto3" json:"up_to_date,omitempty"`
+}
+
+func (m *ListTasksRequest_Filters) Reset()      { *m = ListTasksRequest_Filters{} }
+func (*ListTasksRequest_Filters) ProtoMessage() {}
+func (*ListTasksRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{12, 0}
+}
+
+type ListTasksResponse struct {
+	Tasks []*Task `protobuf:"bytes,1,rep,name=tasks" json:"tasks,omitempty"`
+}
+
+func (m *ListTasksResponse) Reset()                    { *m = ListTasksResponse{} }
+func (*ListTasksResponse) ProtoMessage()               {}
+func (*ListTasksResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{13} }
+
+type CreateServiceRequest struct {
+	Spec *ServiceSpec `protobuf:"bytes,1,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *CreateServiceRequest) Reset()                    { *m = CreateServiceRequest{} }
+func (*CreateServiceRequest) ProtoMessage()               {}
+func (*CreateServiceRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{14} }
+
+type CreateServiceResponse struct {
+	Service *Service `protobuf:"bytes,1,opt,name=service" json:"service,omitempty"`
+}
+
+func (m *CreateServiceResponse) Reset()                    { *m = CreateServiceResponse{} }
+func (*CreateServiceResponse) ProtoMessage()               {}
+func (*CreateServiceResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{15} }
+
+type GetServiceRequest struct {
+	ServiceID      string `protobuf:"bytes,1,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	InsertDefaults bool   `protobuf:"varint,2,opt,name=insert_defaults,json=insertDefaults,proto3" json:"insert_defaults,omitempty"`
+}
+
+func (m *GetServiceRequest) Reset()                    { *m = GetServiceRequest{} }
+func (*GetServiceRequest) ProtoMessage()               {}
+func (*GetServiceRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{16} }
+
+type GetServiceResponse struct {
+	Service *Service `protobuf:"bytes,1,opt,name=service" json:"service,omitempty"`
+}
+
+func (m *GetServiceResponse) Reset()                    { *m = GetServiceResponse{} }
+func (*GetServiceResponse) ProtoMessage()               {}
+func (*GetServiceResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{17} }
+
+type UpdateServiceRequest struct {
+	ServiceID      string       `protobuf:"bytes,1,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	ServiceVersion *Version     `protobuf:"bytes,2,opt,name=service_version,json=serviceVersion" json:"service_version,omitempty"`
+	Spec           *ServiceSpec `protobuf:"bytes,3,opt,name=spec" json:"spec,omitempty"`
+	// Rollback may be set to PREVIOUS to request a rollback (the service's
+	// spec will be set to the value of its previous_spec field). In this
+	// case, the spec field of this request is ignored.
+	Rollback UpdateServiceRequest_Rollback `protobuf:"varint,4,opt,name=rollback,proto3,enum=docker.swarmkit.v1.UpdateServiceRequest_Rollback" json:"rollback,omitempty"`
+}
+
+func (m *UpdateServiceRequest) Reset()                    { *m = UpdateServiceRequest{} }
+func (*UpdateServiceRequest) ProtoMessage()               {}
+func (*UpdateServiceRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{18} }
+
+type UpdateServiceResponse struct {
+	Service *Service `protobuf:"bytes,1,opt,name=service" json:"service,omitempty"`
+}
+
+func (m *UpdateServiceResponse) Reset()                    { *m = UpdateServiceResponse{} }
+func (*UpdateServiceResponse) ProtoMessage()               {}
+func (*UpdateServiceResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{19} }
+
+type RemoveServiceRequest struct {
+	ServiceID string `protobuf:"bytes,1,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+}
+
+func (m *RemoveServiceRequest) Reset()                    { *m = RemoveServiceRequest{} }
+func (*RemoveServiceRequest) ProtoMessage()               {}
+func (*RemoveServiceRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{20} }
+
+type RemoveServiceResponse struct {
+}
+
+func (m *RemoveServiceResponse) Reset()                    { *m = RemoveServiceResponse{} }
+func (*RemoveServiceResponse) ProtoMessage()               {}
+func (*RemoveServiceResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{21} }
+
+type ListServicesRequest struct {
+	Filters *ListServicesRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListServicesRequest) Reset()                    { *m = ListServicesRequest{} }
+func (*ListServicesRequest) ProtoMessage()               {}
+func (*ListServicesRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{22} }
+
+type ListServicesRequest_Filters struct {
+	Names      []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels     map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// NamePrefixes matches all objects with the given prefixes
+	NamePrefixes []string `protobuf:"bytes,4,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+	Runtimes     []string `protobuf:"bytes,5,rep,name=runtimes" json:"runtimes,omitempty"`
+}
+
+func (m *ListServicesRequest_Filters) Reset()      { *m = ListServicesRequest_Filters{} }
+func (*ListServicesRequest_Filters) ProtoMessage() {}
+func (*ListServicesRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{22, 0}
+}
+
+type ListServicesResponse struct {
+	Services []*Service `protobuf:"bytes,1,rep,name=services" json:"services,omitempty"`
+}
+
+func (m *ListServicesResponse) Reset()                    { *m = ListServicesResponse{} }
+func (*ListServicesResponse) ProtoMessage()               {}
+func (*ListServicesResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{23} }
+
+type CreateNetworkRequest struct {
+	Spec *NetworkSpec `protobuf:"bytes,1,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *CreateNetworkRequest) Reset()                    { *m = CreateNetworkRequest{} }
+func (*CreateNetworkRequest) ProtoMessage()               {}
+func (*CreateNetworkRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{24} }
+
+type CreateNetworkResponse struct {
+	Network *Network `protobuf:"bytes,1,opt,name=network" json:"network,omitempty"`
+}
+
+func (m *CreateNetworkResponse) Reset()                    { *m = CreateNetworkResponse{} }
+func (*CreateNetworkResponse) ProtoMessage()               {}
+func (*CreateNetworkResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{25} }
+
+type GetNetworkRequest struct {
+	Name      string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	NetworkID string `protobuf:"bytes,2,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+}
+
+func (m *GetNetworkRequest) Reset()                    { *m = GetNetworkRequest{} }
+func (*GetNetworkRequest) ProtoMessage()               {}
+func (*GetNetworkRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{26} }
+
+type GetNetworkResponse struct {
+	Network *Network `protobuf:"bytes,1,opt,name=network" json:"network,omitempty"`
+}
+
+func (m *GetNetworkResponse) Reset()                    { *m = GetNetworkResponse{} }
+func (*GetNetworkResponse) ProtoMessage()               {}
+func (*GetNetworkResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{27} }
+
+type RemoveNetworkRequest struct {
+	Name      string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	NetworkID string `protobuf:"bytes,2,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+}
+
+func (m *RemoveNetworkRequest) Reset()                    { *m = RemoveNetworkRequest{} }
+func (*RemoveNetworkRequest) ProtoMessage()               {}
+func (*RemoveNetworkRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{28} }
+
+type RemoveNetworkResponse struct {
+}
+
+func (m *RemoveNetworkResponse) Reset()                    { *m = RemoveNetworkResponse{} }
+func (*RemoveNetworkResponse) ProtoMessage()               {}
+func (*RemoveNetworkResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{29} }
+
+type ListNetworksRequest struct {
+	Filters *ListNetworksRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListNetworksRequest) Reset()                    { *m = ListNetworksRequest{} }
+func (*ListNetworksRequest) ProtoMessage()               {}
+func (*ListNetworksRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{30} }
+
+type ListNetworksRequest_Filters struct {
+	Names      []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels     map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// NamePrefixes matches all objects with the given prefixes
+	NamePrefixes []string `protobuf:"bytes,4,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+}
+
+func (m *ListNetworksRequest_Filters) Reset()      { *m = ListNetworksRequest_Filters{} }
+func (*ListNetworksRequest_Filters) ProtoMessage() {}
+func (*ListNetworksRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{30, 0}
+}
+
+type ListNetworksResponse struct {
+	Networks []*Network `protobuf:"bytes,1,rep,name=networks" json:"networks,omitempty"`
+}
+
+func (m *ListNetworksResponse) Reset()                    { *m = ListNetworksResponse{} }
+func (*ListNetworksResponse) ProtoMessage()               {}
+func (*ListNetworksResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{31} }
+
+type GetClusterRequest struct {
+	ClusterID string `protobuf:"bytes,1,opt,name=cluster_id,json=clusterId,proto3" json:"cluster_id,omitempty"`
+}
+
+func (m *GetClusterRequest) Reset()                    { *m = GetClusterRequest{} }
+func (*GetClusterRequest) ProtoMessage()               {}
+func (*GetClusterRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{32} }
+
+type GetClusterResponse struct {
+	Cluster *Cluster `protobuf:"bytes,1,opt,name=cluster" json:"cluster,omitempty"`
+}
+
+func (m *GetClusterResponse) Reset()                    { *m = GetClusterResponse{} }
+func (*GetClusterResponse) ProtoMessage()               {}
+func (*GetClusterResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{33} }
+
+type ListClustersRequest struct {
+	Filters *ListClustersRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListClustersRequest) Reset()                    { *m = ListClustersRequest{} }
+func (*ListClustersRequest) ProtoMessage()               {}
+func (*ListClustersRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{34} }
+
+type ListClustersRequest_Filters struct {
+	Names      []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels     map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// NamePrefixes matches all objects with the given prefixes
+	NamePrefixes []string `protobuf:"bytes,4,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+}
+
+func (m *ListClustersRequest_Filters) Reset()      { *m = ListClustersRequest_Filters{} }
+func (*ListClustersRequest_Filters) ProtoMessage() {}
+func (*ListClustersRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{34, 0}
+}
+
+type ListClustersResponse struct {
+	Clusters []*Cluster `protobuf:"bytes,1,rep,name=clusters" json:"clusters,omitempty"`
+}
+
+func (m *ListClustersResponse) Reset()                    { *m = ListClustersResponse{} }
+func (*ListClustersResponse) ProtoMessage()               {}
+func (*ListClustersResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{35} }
+
+// KeyRotation tells UpdateCluster what items to rotate
+type KeyRotation struct {
+	// WorkerJoinToken tells UpdateCluster to rotate the worker secret token.
+	WorkerJoinToken bool `protobuf:"varint,1,opt,name=worker_join_token,json=workerJoinToken,proto3" json:"worker_join_token,omitempty"`
+	// ManagerJoinToken tells UpdateCluster to rotate the manager secret token.
+	ManagerJoinToken bool `protobuf:"varint,2,opt,name=manager_join_token,json=managerJoinToken,proto3" json:"manager_join_token,omitempty"`
+	// ManagerUnlockKey tells UpdateCluster to rotate the manager unlock key
+	ManagerUnlockKey bool `protobuf:"varint,3,opt,name=manager_unlock_key,json=managerUnlockKey,proto3" json:"manager_unlock_key,omitempty"`
+}
+
+func (m *KeyRotation) Reset()                    { *m = KeyRotation{} }
+func (*KeyRotation) ProtoMessage()               {}
+func (*KeyRotation) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{36} }
+
+type UpdateClusterRequest struct {
+	// ClusterID is the cluster ID to update.
+	ClusterID string `protobuf:"bytes,1,opt,name=cluster_id,json=clusterId,proto3" json:"cluster_id,omitempty"`
+	// ClusterVersion is the version of the cluster being updated.
+	ClusterVersion *Version `protobuf:"bytes,2,opt,name=cluster_version,json=clusterVersion" json:"cluster_version,omitempty"`
+	// Spec is the new spec to apply to the cluster.
+	Spec *ClusterSpec `protobuf:"bytes,3,opt,name=spec" json:"spec,omitempty"`
+	// Rotation contains flags for join token and unlock key rotation
+	Rotation KeyRotation `protobuf:"bytes,4,opt,name=rotation" json:"rotation"`
+}
+
+func (m *UpdateClusterRequest) Reset()                    { *m = UpdateClusterRequest{} }
+func (*UpdateClusterRequest) ProtoMessage()               {}
+func (*UpdateClusterRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{37} }
+
+type UpdateClusterResponse struct {
+	Cluster *Cluster `protobuf:"bytes,1,opt,name=cluster" json:"cluster,omitempty"`
+}
+
+func (m *UpdateClusterResponse) Reset()                    { *m = UpdateClusterResponse{} }
+func (*UpdateClusterResponse) ProtoMessage()               {}
+func (*UpdateClusterResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{38} }
+
+// GetSecretRequest is the request to get a `Secret` object given a secret id.
+type GetSecretRequest struct {
+	SecretID string `protobuf:"bytes,1,opt,name=secret_id,json=secretId,proto3" json:"secret_id,omitempty"`
+}
+
+func (m *GetSecretRequest) Reset()                    { *m = GetSecretRequest{} }
+func (*GetSecretRequest) ProtoMessage()               {}
+func (*GetSecretRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{39} }
+
+// GetSecretResponse contains the Secret corresponding to the id in
+// `GetSecretRequest`, but the `Secret.Spec.Data` field in each `Secret`
+// object should be nil instead of actually containing the secret bytes.
+type GetSecretResponse struct {
+	Secret *Secret `protobuf:"bytes,1,opt,name=secret" json:"secret,omitempty"`
+}
+
+func (m *GetSecretResponse) Reset()                    { *m = GetSecretResponse{} }
+func (*GetSecretResponse) ProtoMessage()               {}
+func (*GetSecretResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{40} }
+
+type UpdateSecretRequest struct {
+	// SecretID is the secret ID to update.
+	SecretID string `protobuf:"bytes,1,opt,name=secret_id,json=secretId,proto3" json:"secret_id,omitempty"`
+	// SecretVersion is the version of the secret being updated.
+	SecretVersion *Version `protobuf:"bytes,2,opt,name=secret_version,json=secretVersion" json:"secret_version,omitempty"`
+	// Spec is the new spec to apply to the Secret
+	// Only some fields are allowed to be updated.
+	Spec *SecretSpec `protobuf:"bytes,3,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *UpdateSecretRequest) Reset()                    { *m = UpdateSecretRequest{} }
+func (*UpdateSecretRequest) ProtoMessage()               {}
+func (*UpdateSecretRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{41} }
+
+type UpdateSecretResponse struct {
+	Secret *Secret `protobuf:"bytes,1,opt,name=secret" json:"secret,omitempty"`
+}
+
+func (m *UpdateSecretResponse) Reset()                    { *m = UpdateSecretResponse{} }
+func (*UpdateSecretResponse) ProtoMessage()               {}
+func (*UpdateSecretResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{42} }
+
+// ListSecretRequest is the request to list all non-internal secrets in the secret store,
+// or all secrets filtered by (name or name prefix or id prefix) and labels.
+type ListSecretsRequest struct {
+	Filters *ListSecretsRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListSecretsRequest) Reset()                    { *m = ListSecretsRequest{} }
+func (*ListSecretsRequest) ProtoMessage()               {}
+func (*ListSecretsRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{43} }
+
+type ListSecretsRequest_Filters struct {
+	Names        []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes   []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels       map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	NamePrefixes []string          `protobuf:"bytes,4,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+}
+
+func (m *ListSecretsRequest_Filters) Reset()      { *m = ListSecretsRequest_Filters{} }
+func (*ListSecretsRequest_Filters) ProtoMessage() {}
+func (*ListSecretsRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{43, 0}
+}
+
+// ListSecretResponse contains a list of all the secrets that match the name or
+// name prefix filters provided in `ListSecretRequest`.  The `Secret.Spec.Data`
+// field in each `Secret` object should be nil instead of actually containing
+// the secret bytes.
+type ListSecretsResponse struct {
+	Secrets []*Secret `protobuf:"bytes,1,rep,name=secrets" json:"secrets,omitempty"`
+}
+
+func (m *ListSecretsResponse) Reset()                    { *m = ListSecretsResponse{} }
+func (*ListSecretsResponse) ProtoMessage()               {}
+func (*ListSecretsResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{44} }
+
+// CreateSecretRequest specifies a new secret (it will not update an existing
+// secret) to create.
+type CreateSecretRequest struct {
+	Spec *SecretSpec `protobuf:"bytes,1,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *CreateSecretRequest) Reset()                    { *m = CreateSecretRequest{} }
+func (*CreateSecretRequest) ProtoMessage()               {}
+func (*CreateSecretRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{45} }
+
+// CreateSecretResponse contains the newly created `Secret` corresponding to the
+// name in `CreateSecretRequest`.  The `Secret.Spec.Data` field should be nil instead
+// of actually containing the secret bytes.
+type CreateSecretResponse struct {
+	Secret *Secret `protobuf:"bytes,1,opt,name=secret" json:"secret,omitempty"`
+}
+
+func (m *CreateSecretResponse) Reset()                    { *m = CreateSecretResponse{} }
+func (*CreateSecretResponse) ProtoMessage()               {}
+func (*CreateSecretResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{46} }
+
+// RemoveSecretRequest contains the ID of the secret that should be removed.  This
+// removes all versions of the secret.
+type RemoveSecretRequest struct {
+	SecretID string `protobuf:"bytes,1,opt,name=secret_id,json=secretId,proto3" json:"secret_id,omitempty"`
+}
+
+func (m *RemoveSecretRequest) Reset()                    { *m = RemoveSecretRequest{} }
+func (*RemoveSecretRequest) ProtoMessage()               {}
+func (*RemoveSecretRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{47} }
+
+// RemoveSecretResponse is an empty object indicating the successful removal of
+// a secret.
+type RemoveSecretResponse struct {
+}
+
+func (m *RemoveSecretResponse) Reset()                    { *m = RemoveSecretResponse{} }
+func (*RemoveSecretResponse) ProtoMessage()               {}
+func (*RemoveSecretResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{48} }
+
+// GetConfigRequest is the request to get a `Config` object given a config id.
+type GetConfigRequest struct {
+	ConfigID string `protobuf:"bytes,1,opt,name=config_id,json=configId,proto3" json:"config_id,omitempty"`
+}
+
+func (m *GetConfigRequest) Reset()                    { *m = GetConfigRequest{} }
+func (*GetConfigRequest) ProtoMessage()               {}
+func (*GetConfigRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{49} }
+
+// GetConfigResponse contains the Config corresponding to the id in
+// `GetConfigRequest`.
+type GetConfigResponse struct {
+	Config *Config `protobuf:"bytes,1,opt,name=config" json:"config,omitempty"`
+}
+
+func (m *GetConfigResponse) Reset()                    { *m = GetConfigResponse{} }
+func (*GetConfigResponse) ProtoMessage()               {}
+func (*GetConfigResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{50} }
+
+type UpdateConfigRequest struct {
+	// ConfigID is the config ID to update.
+	ConfigID string `protobuf:"bytes,1,opt,name=config_id,json=configId,proto3" json:"config_id,omitempty"`
+	// ConfigVersion is the version of the config being updated.
+	ConfigVersion *Version `protobuf:"bytes,2,opt,name=config_version,json=configVersion" json:"config_version,omitempty"`
+	// Spec is the new spec to apply to the Config
+	// Only some fields are allowed to be updated.
+	Spec *ConfigSpec `protobuf:"bytes,3,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *UpdateConfigRequest) Reset()                    { *m = UpdateConfigRequest{} }
+func (*UpdateConfigRequest) ProtoMessage()               {}
+func (*UpdateConfigRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{51} }
+
+type UpdateConfigResponse struct {
+	Config *Config `protobuf:"bytes,1,opt,name=config" json:"config,omitempty"`
+}
+
+func (m *UpdateConfigResponse) Reset()                    { *m = UpdateConfigResponse{} }
+func (*UpdateConfigResponse) ProtoMessage()               {}
+func (*UpdateConfigResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{52} }
+
+// ListConfigRequest is the request to list all configs in the config store,
+// or all configs filtered by (name or name prefix or id prefix) and labels.
+type ListConfigsRequest struct {
+	Filters *ListConfigsRequest_Filters `protobuf:"bytes,1,opt,name=filters" json:"filters,omitempty"`
+}
+
+func (m *ListConfigsRequest) Reset()                    { *m = ListConfigsRequest{} }
+func (*ListConfigsRequest) ProtoMessage()               {}
+func (*ListConfigsRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{53} }
+
+type ListConfigsRequest_Filters struct {
+	Names        []string          `protobuf:"bytes,1,rep,name=names" json:"names,omitempty"`
+	IDPrefixes   []string          `protobuf:"bytes,2,rep,name=id_prefixes,json=idPrefixes" json:"id_prefixes,omitempty"`
+	Labels       map[string]string `protobuf:"bytes,3,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	NamePrefixes []string          `protobuf:"bytes,4,rep,name=name_prefixes,json=namePrefixes" json:"name_prefixes,omitempty"`
+}
+
+func (m *ListConfigsRequest_Filters) Reset()      { *m = ListConfigsRequest_Filters{} }
+func (*ListConfigsRequest_Filters) ProtoMessage() {}
+func (*ListConfigsRequest_Filters) Descriptor() ([]byte, []int) {
+	return fileDescriptorControl, []int{53, 0}
+}
+
+// ListConfigResponse contains a list of all the configs that match the name or
+// name prefix filters provided in `ListConfigRequest`.
+type ListConfigsResponse struct {
+	Configs []*Config `protobuf:"bytes,1,rep,name=configs" json:"configs,omitempty"`
+}
+
+func (m *ListConfigsResponse) Reset()                    { *m = ListConfigsResponse{} }
+func (*ListConfigsResponse) ProtoMessage()               {}
+func (*ListConfigsResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{54} }
+
+// CreateConfigRequest specifies a new config (it will not update an existing
+// config) to create.
+type CreateConfigRequest struct {
+	Spec *ConfigSpec `protobuf:"bytes,1,opt,name=spec" json:"spec,omitempty"`
+}
+
+func (m *CreateConfigRequest) Reset()                    { *m = CreateConfigRequest{} }
+func (*CreateConfigRequest) ProtoMessage()               {}
+func (*CreateConfigRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{55} }
+
+// CreateConfigResponse contains the newly created `Config` corresponding to the
+// name in `CreateConfigRequest`.
+type CreateConfigResponse struct {
+	Config *Config `protobuf:"bytes,1,opt,name=config" json:"config,omitempty"`
+}
+
+func (m *CreateConfigResponse) Reset()                    { *m = CreateConfigResponse{} }
+func (*CreateConfigResponse) ProtoMessage()               {}
+func (*CreateConfigResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{56} }
+
+// RemoveConfigRequest contains the ID of the config that should be removed.  This
+// removes all versions of the config.
+type RemoveConfigRequest struct {
+	ConfigID string `protobuf:"bytes,1,opt,name=config_id,json=configId,proto3" json:"config_id,omitempty"`
+}
+
+func (m *RemoveConfigRequest) Reset()                    { *m = RemoveConfigRequest{} }
+func (*RemoveConfigRequest) ProtoMessage()               {}
+func (*RemoveConfigRequest) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{57} }
+
+// RemoveConfigResponse is an empty object indicating the successful removal of
+// a config.
+type RemoveConfigResponse struct {
+}
+
+func (m *RemoveConfigResponse) Reset()                    { *m = RemoveConfigResponse{} }
+func (*RemoveConfigResponse) ProtoMessage()               {}
+func (*RemoveConfigResponse) Descriptor() ([]byte, []int) { return fileDescriptorControl, []int{58} }
+
+func init() {
+	proto.RegisterType((*GetNodeRequest)(nil), "docker.swarmkit.v1.GetNodeRequest")
+	proto.RegisterType((*GetNodeResponse)(nil), "docker.swarmkit.v1.GetNodeResponse")
+	proto.RegisterType((*ListNodesRequest)(nil), "docker.swarmkit.v1.ListNodesRequest")
+	proto.RegisterType((*ListNodesRequest_Filters)(nil), "docker.swarmkit.v1.ListNodesRequest.Filters")
+	proto.RegisterType((*ListNodesResponse)(nil), "docker.swarmkit.v1.ListNodesResponse")
+	proto.RegisterType((*UpdateNodeRequest)(nil), "docker.swarmkit.v1.UpdateNodeRequest")
+	proto.RegisterType((*UpdateNodeResponse)(nil), "docker.swarmkit.v1.UpdateNodeResponse")
+	proto.RegisterType((*RemoveNodeRequest)(nil), "docker.swarmkit.v1.RemoveNodeRequest")
+	proto.RegisterType((*RemoveNodeResponse)(nil), "docker.swarmkit.v1.RemoveNodeResponse")
+	proto.RegisterType((*GetTaskRequest)(nil), "docker.swarmkit.v1.GetTaskRequest")
+	proto.RegisterType((*GetTaskResponse)(nil), "docker.swarmkit.v1.GetTaskResponse")
+	proto.RegisterType((*RemoveTaskRequest)(nil), "docker.swarmkit.v1.RemoveTaskRequest")
+	proto.RegisterType((*RemoveTaskResponse)(nil), "docker.swarmkit.v1.RemoveTaskResponse")
+	proto.RegisterType((*ListTasksRequest)(nil), "docker.swarmkit.v1.ListTasksRequest")
+	proto.RegisterType((*ListTasksRequest_Filters)(nil), "docker.swarmkit.v1.ListTasksRequest.Filters")
+	proto.RegisterType((*ListTasksResponse)(nil), "docker.swarmkit.v1.ListTasksResponse")
+	proto.RegisterType((*CreateServiceRequest)(nil), "docker.swarmkit.v1.CreateServiceRequest")
+	proto.RegisterType((*CreateServiceResponse)(nil), "docker.swarmkit.v1.CreateServiceResponse")
+	proto.RegisterType((*GetServiceRequest)(nil), "docker.swarmkit.v1.GetServiceRequest")
+	proto.RegisterType((*GetServiceResponse)(nil), "docker.swarmkit.v1.GetServiceResponse")
+	proto.RegisterType((*UpdateServiceRequest)(nil), "docker.swarmkit.v1.UpdateServiceRequest")
+	proto.RegisterType((*UpdateServiceResponse)(nil), "docker.swarmkit.v1.UpdateServiceResponse")
+	proto.RegisterType((*RemoveServiceRequest)(nil), "docker.swarmkit.v1.RemoveServiceRequest")
+	proto.RegisterType((*RemoveServiceResponse)(nil), "docker.swarmkit.v1.RemoveServiceResponse")
+	proto.RegisterType((*ListServicesRequest)(nil), "docker.swarmkit.v1.ListServicesRequest")
+	proto.RegisterType((*ListServicesRequest_Filters)(nil), "docker.swarmkit.v1.ListServicesRequest.Filters")
+	proto.RegisterType((*ListServicesResponse)(nil), "docker.swarmkit.v1.ListServicesResponse")
+	proto.RegisterType((*CreateNetworkRequest)(nil), "docker.swarmkit.v1.CreateNetworkRequest")
+	proto.RegisterType((*CreateNetworkResponse)(nil), "docker.swarmkit.v1.CreateNetworkResponse")
+	proto.RegisterType((*GetNetworkRequest)(nil), "docker.swarmkit.v1.GetNetworkRequest")
+	proto.RegisterType((*GetNetworkResponse)(nil), "docker.swarmkit.v1.GetNetworkResponse")
+	proto.RegisterType((*RemoveNetworkRequest)(nil), "docker.swarmkit.v1.RemoveNetworkRequest")
+	proto.RegisterType((*RemoveNetworkResponse)(nil), "docker.swarmkit.v1.RemoveNetworkResponse")
+	proto.RegisterType((*ListNetworksRequest)(nil), "docker.swarmkit.v1.ListNetworksRequest")
+	proto.RegisterType((*ListNetworksRequest_Filters)(nil), "docker.swarmkit.v1.ListNetworksRequest.Filters")
+	proto.RegisterType((*ListNetworksResponse)(nil), "docker.swarmkit.v1.ListNetworksResponse")
+	proto.RegisterType((*GetClusterRequest)(nil), "docker.swarmkit.v1.GetClusterRequest")
+	proto.RegisterType((*GetClusterResponse)(nil), "docker.swarmkit.v1.GetClusterResponse")
+	proto.RegisterType((*ListClustersRequest)(nil), "docker.swarmkit.v1.ListClustersRequest")
+	proto.RegisterType((*ListClustersRequest_Filters)(nil), "docker.swarmkit.v1.ListClustersRequest.Filters")
+	proto.RegisterType((*ListClustersResponse)(nil), "docker.swarmkit.v1.ListClustersResponse")
+	proto.RegisterType((*KeyRotation)(nil), "docker.swarmkit.v1.KeyRotation")
+	proto.RegisterType((*UpdateClusterRequest)(nil), "docker.swarmkit.v1.UpdateClusterRequest")
+	proto.RegisterType((*UpdateClusterResponse)(nil), "docker.swarmkit.v1.UpdateClusterResponse")
+	proto.RegisterType((*GetSecretRequest)(nil), "docker.swarmkit.v1.GetSecretRequest")
+	proto.RegisterType((*GetSecretResponse)(nil), "docker.swarmkit.v1.GetSecretResponse")
+	proto.RegisterType((*UpdateSecretRequest)(nil), "docker.swarmkit.v1.UpdateSecretRequest")
+	proto.RegisterType((*UpdateSecretResponse)(nil), "docker.swarmkit.v1.UpdateSecretResponse")
+	proto.RegisterType((*ListSecretsRequest)(nil), "docker.swarmkit.v1.ListSecretsRequest")
+	proto.RegisterType((*ListSecretsRequest_Filters)(nil), "docker.swarmkit.v1.ListSecretsRequest.Filters")
+	proto.RegisterType((*ListSecretsResponse)(nil), "docker.swarmkit.v1.ListSecretsResponse")
+	proto.RegisterType((*CreateSecretRequest)(nil), "docker.swarmkit.v1.CreateSecretRequest")
+	proto.RegisterType((*CreateSecretResponse)(nil), "docker.swarmkit.v1.CreateSecretResponse")
+	proto.RegisterType((*RemoveSecretRequest)(nil), "docker.swarmkit.v1.RemoveSecretRequest")
+	proto.RegisterType((*RemoveSecretResponse)(nil), "docker.swarmkit.v1.RemoveSecretResponse")
+	proto.RegisterType((*GetConfigRequest)(nil), "docker.swarmkit.v1.GetConfigRequest")
+	proto.RegisterType((*GetConfigResponse)(nil), "docker.swarmkit.v1.GetConfigResponse")
+	proto.RegisterType((*UpdateConfigRequest)(nil), "docker.swarmkit.v1.UpdateConfigRequest")
+	proto.RegisterType((*UpdateConfigResponse)(nil), "docker.swarmkit.v1.UpdateConfigResponse")
+	proto.RegisterType((*ListConfigsRequest)(nil), "docker.swarmkit.v1.ListConfigsRequest")
+	proto.RegisterType((*ListConfigsRequest_Filters)(nil), "docker.swarmkit.v1.ListConfigsRequest.Filters")
+	proto.RegisterType((*ListConfigsResponse)(nil), "docker.swarmkit.v1.ListConfigsResponse")
+	proto.RegisterType((*CreateConfigRequest)(nil), "docker.swarmkit.v1.CreateConfigRequest")
+	proto.RegisterType((*CreateConfigResponse)(nil), "docker.swarmkit.v1.CreateConfigResponse")
+	proto.RegisterType((*RemoveConfigRequest)(nil), "docker.swarmkit.v1.RemoveConfigRequest")
+	proto.RegisterType((*RemoveConfigResponse)(nil), "docker.swarmkit.v1.RemoveConfigResponse")
+	proto.RegisterEnum("docker.swarmkit.v1.UpdateServiceRequest_Rollback", UpdateServiceRequest_Rollback_name, UpdateServiceRequest_Rollback_value)
+}
+
+type authenticatedWrapperControlServer struct {
+	local     ControlServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperControlServer(local ControlServer, authorize func(context.Context, []string) error) ControlServer {
+	return &authenticatedWrapperControlServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperControlServer) GetNode(ctx context.Context, r *GetNodeRequest) (*GetNodeResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetNode(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListNodes(ctx context.Context, r *ListNodesRequest) (*ListNodesResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListNodes(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) UpdateNode(ctx context.Context, r *UpdateNodeRequest) (*UpdateNodeResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateNode(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveNode(ctx context.Context, r *RemoveNodeRequest) (*RemoveNodeResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveNode(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetTask(ctx context.Context, r *GetTaskRequest) (*GetTaskResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetTask(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListTasks(ctx context.Context, r *ListTasksRequest) (*ListTasksResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListTasks(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveTask(ctx context.Context, r *RemoveTaskRequest) (*RemoveTaskResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveTask(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetService(ctx context.Context, r *GetServiceRequest) (*GetServiceResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetService(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListServices(ctx context.Context, r *ListServicesRequest) (*ListServicesResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListServices(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) CreateService(ctx context.Context, r *CreateServiceRequest) (*CreateServiceResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.CreateService(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) UpdateService(ctx context.Context, r *UpdateServiceRequest) (*UpdateServiceResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateService(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveService(ctx context.Context, r *RemoveServiceRequest) (*RemoveServiceResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveService(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetNetwork(ctx context.Context, r *GetNetworkRequest) (*GetNetworkResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetNetwork(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListNetworks(ctx context.Context, r *ListNetworksRequest) (*ListNetworksResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListNetworks(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) CreateNetwork(ctx context.Context, r *CreateNetworkRequest) (*CreateNetworkResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.CreateNetwork(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveNetwork(ctx context.Context, r *RemoveNetworkRequest) (*RemoveNetworkResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveNetwork(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetCluster(ctx context.Context, r *GetClusterRequest) (*GetClusterResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetCluster(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListClusters(ctx context.Context, r *ListClustersRequest) (*ListClustersResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListClusters(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) UpdateCluster(ctx context.Context, r *UpdateClusterRequest) (*UpdateClusterResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateCluster(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetSecret(ctx context.Context, r *GetSecretRequest) (*GetSecretResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetSecret(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) UpdateSecret(ctx context.Context, r *UpdateSecretRequest) (*UpdateSecretResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateSecret(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListSecrets(ctx context.Context, r *ListSecretsRequest) (*ListSecretsResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListSecrets(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) CreateSecret(ctx context.Context, r *CreateSecretRequest) (*CreateSecretResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.CreateSecret(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveSecret(ctx context.Context, r *RemoveSecretRequest) (*RemoveSecretResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveSecret(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) GetConfig(ctx context.Context, r *GetConfigRequest) (*GetConfigResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.GetConfig(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) UpdateConfig(ctx context.Context, r *UpdateConfigRequest) (*UpdateConfigResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateConfig(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) ListConfigs(ctx context.Context, r *ListConfigsRequest) (*ListConfigsResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ListConfigs(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) CreateConfig(ctx context.Context, r *CreateConfigRequest) (*CreateConfigResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.CreateConfig(ctx, r)
+}
+
+func (p *authenticatedWrapperControlServer) RemoveConfig(ctx context.Context, r *RemoveConfigRequest) (*RemoveConfigResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.RemoveConfig(ctx, r)
+}
+
+func (m *GetNodeRequest) Copy() *GetNodeRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetNodeRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetNodeRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetNodeRequest)
+	*m = *o
+}
+
+func (m *GetNodeResponse) Copy() *GetNodeResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetNodeResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetNodeResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetNodeResponse)
+	*m = *o
+	if o.Node != nil {
+		m.Node = &Node{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Node, o.Node)
+	}
+}
+
+func (m *ListNodesRequest) Copy() *ListNodesRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListNodesRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNodesRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListNodesRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListNodesRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListNodesRequest_Filters) Copy() *ListNodesRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListNodesRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNodesRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListNodesRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.Memberships != nil {
+		m.Memberships = make([]NodeSpec_Membership, len(o.Memberships))
+		copy(m.Memberships, o.Memberships)
+	}
+
+	if o.Roles != nil {
+		m.Roles = make([]NodeRole, len(o.Roles))
+		copy(m.Roles, o.Roles)
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+}
+
+func (m *ListNodesResponse) Copy() *ListNodesResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListNodesResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNodesResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListNodesResponse)
+	*m = *o
+	if o.Nodes != nil {
+		m.Nodes = make([]*Node, len(o.Nodes))
+		for i := range m.Nodes {
+			m.Nodes[i] = &Node{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Nodes[i], o.Nodes[i])
+		}
+	}
+
+}
+
+func (m *UpdateNodeRequest) Copy() *UpdateNodeRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateNodeRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateNodeRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateNodeRequest)
+	*m = *o
+	if o.NodeVersion != nil {
+		m.NodeVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.NodeVersion, o.NodeVersion)
+	}
+	if o.Spec != nil {
+		m.Spec = &NodeSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *UpdateNodeResponse) Copy() *UpdateNodeResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateNodeResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateNodeResponse) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateNodeResponse)
+	*m = *o
+	if o.Node != nil {
+		m.Node = &Node{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Node, o.Node)
+	}
+}
+
+func (m *RemoveNodeRequest) Copy() *RemoveNodeRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveNodeRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveNodeRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveNodeRequest)
+	*m = *o
+}
+
+func (m *RemoveNodeResponse) Copy() *RemoveNodeResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveNodeResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveNodeResponse) CopyFrom(src interface{}) {}
+func (m *GetTaskRequest) Copy() *GetTaskRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetTaskRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetTaskRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetTaskRequest)
+	*m = *o
+}
+
+func (m *GetTaskResponse) Copy() *GetTaskResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetTaskResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetTaskResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetTaskResponse)
+	*m = *o
+	if o.Task != nil {
+		m.Task = &Task{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Task, o.Task)
+	}
+}
+
+func (m *RemoveTaskRequest) Copy() *RemoveTaskRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveTaskRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveTaskRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveTaskRequest)
+	*m = *o
+}
+
+func (m *RemoveTaskResponse) Copy() *RemoveTaskResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveTaskResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveTaskResponse) CopyFrom(src interface{}) {}
+func (m *ListTasksRequest) Copy() *ListTasksRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListTasksRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListTasksRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListTasksRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListTasksRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListTasksRequest_Filters) Copy() *ListTasksRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListTasksRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListTasksRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListTasksRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.ServiceIDs != nil {
+		m.ServiceIDs = make([]string, len(o.ServiceIDs))
+		copy(m.ServiceIDs, o.ServiceIDs)
+	}
+
+	if o.NodeIDs != nil {
+		m.NodeIDs = make([]string, len(o.NodeIDs))
+		copy(m.NodeIDs, o.NodeIDs)
+	}
+
+	if o.DesiredStates != nil {
+		m.DesiredStates = make([]TaskState, len(o.DesiredStates))
+		copy(m.DesiredStates, o.DesiredStates)
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+	if o.Runtimes != nil {
+		m.Runtimes = make([]string, len(o.Runtimes))
+		copy(m.Runtimes, o.Runtimes)
+	}
+
+}
+
+func (m *ListTasksResponse) Copy() *ListTasksResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListTasksResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListTasksResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListTasksResponse)
+	*m = *o
+	if o.Tasks != nil {
+		m.Tasks = make([]*Task, len(o.Tasks))
+		for i := range m.Tasks {
+			m.Tasks[i] = &Task{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Tasks[i], o.Tasks[i])
+		}
+	}
+
+}
+
+func (m *CreateServiceRequest) Copy() *CreateServiceRequest {
+	if m == nil {
+		return nil
+	}
+	o := &CreateServiceRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateServiceRequest) CopyFrom(src interface{}) {
+
+	o := src.(*CreateServiceRequest)
+	*m = *o
+	if o.Spec != nil {
+		m.Spec = &ServiceSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *CreateServiceResponse) Copy() *CreateServiceResponse {
+	if m == nil {
+		return nil
+	}
+	o := &CreateServiceResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateServiceResponse) CopyFrom(src interface{}) {
+
+	o := src.(*CreateServiceResponse)
+	*m = *o
+	if o.Service != nil {
+		m.Service = &Service{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Service, o.Service)
+	}
+}
+
+func (m *GetServiceRequest) Copy() *GetServiceRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetServiceRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetServiceRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetServiceRequest)
+	*m = *o
+}
+
+func (m *GetServiceResponse) Copy() *GetServiceResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetServiceResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetServiceResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetServiceResponse)
+	*m = *o
+	if o.Service != nil {
+		m.Service = &Service{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Service, o.Service)
+	}
+}
+
+func (m *UpdateServiceRequest) Copy() *UpdateServiceRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateServiceRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateServiceRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateServiceRequest)
+	*m = *o
+	if o.ServiceVersion != nil {
+		m.ServiceVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.ServiceVersion, o.ServiceVersion)
+	}
+	if o.Spec != nil {
+		m.Spec = &ServiceSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *UpdateServiceResponse) Copy() *UpdateServiceResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateServiceResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateServiceResponse) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateServiceResponse)
+	*m = *o
+	if o.Service != nil {
+		m.Service = &Service{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Service, o.Service)
+	}
+}
+
+func (m *RemoveServiceRequest) Copy() *RemoveServiceRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveServiceRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveServiceRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveServiceRequest)
+	*m = *o
+}
+
+func (m *RemoveServiceResponse) Copy() *RemoveServiceResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveServiceResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveServiceResponse) CopyFrom(src interface{}) {}
+func (m *ListServicesRequest) Copy() *ListServicesRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListServicesRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListServicesRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListServicesRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListServicesRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListServicesRequest_Filters) Copy() *ListServicesRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListServicesRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListServicesRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListServicesRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+	if o.Runtimes != nil {
+		m.Runtimes = make([]string, len(o.Runtimes))
+		copy(m.Runtimes, o.Runtimes)
+	}
+
+}
+
+func (m *ListServicesResponse) Copy() *ListServicesResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListServicesResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListServicesResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListServicesResponse)
+	*m = *o
+	if o.Services != nil {
+		m.Services = make([]*Service, len(o.Services))
+		for i := range m.Services {
+			m.Services[i] = &Service{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Services[i], o.Services[i])
+		}
+	}
+
+}
+
+func (m *CreateNetworkRequest) Copy() *CreateNetworkRequest {
+	if m == nil {
+		return nil
+	}
+	o := &CreateNetworkRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateNetworkRequest) CopyFrom(src interface{}) {
+
+	o := src.(*CreateNetworkRequest)
+	*m = *o
+	if o.Spec != nil {
+		m.Spec = &NetworkSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *CreateNetworkResponse) Copy() *CreateNetworkResponse {
+	if m == nil {
+		return nil
+	}
+	o := &CreateNetworkResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateNetworkResponse) CopyFrom(src interface{}) {
+
+	o := src.(*CreateNetworkResponse)
+	*m = *o
+	if o.Network != nil {
+		m.Network = &Network{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Network, o.Network)
+	}
+}
+
+func (m *GetNetworkRequest) Copy() *GetNetworkRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetNetworkRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetNetworkRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetNetworkRequest)
+	*m = *o
+}
+
+func (m *GetNetworkResponse) Copy() *GetNetworkResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetNetworkResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetNetworkResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetNetworkResponse)
+	*m = *o
+	if o.Network != nil {
+		m.Network = &Network{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Network, o.Network)
+	}
+}
+
+func (m *RemoveNetworkRequest) Copy() *RemoveNetworkRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveNetworkRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveNetworkRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveNetworkRequest)
+	*m = *o
+}
+
+func (m *RemoveNetworkResponse) Copy() *RemoveNetworkResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveNetworkResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveNetworkResponse) CopyFrom(src interface{}) {}
+func (m *ListNetworksRequest) Copy() *ListNetworksRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListNetworksRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNetworksRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListNetworksRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListNetworksRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListNetworksRequest_Filters) Copy() *ListNetworksRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListNetworksRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNetworksRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListNetworksRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+}
+
+func (m *ListNetworksResponse) Copy() *ListNetworksResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListNetworksResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListNetworksResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListNetworksResponse)
+	*m = *o
+	if o.Networks != nil {
+		m.Networks = make([]*Network, len(o.Networks))
+		for i := range m.Networks {
+			m.Networks[i] = &Network{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Networks[i], o.Networks[i])
+		}
+	}
+
+}
+
+func (m *GetClusterRequest) Copy() *GetClusterRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetClusterRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetClusterRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetClusterRequest)
+	*m = *o
+}
+
+func (m *GetClusterResponse) Copy() *GetClusterResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetClusterResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetClusterResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetClusterResponse)
+	*m = *o
+	if o.Cluster != nil {
+		m.Cluster = &Cluster{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Cluster, o.Cluster)
+	}
+}
+
+func (m *ListClustersRequest) Copy() *ListClustersRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListClustersRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListClustersRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListClustersRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListClustersRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListClustersRequest_Filters) Copy() *ListClustersRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListClustersRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListClustersRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListClustersRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+}
+
+func (m *ListClustersResponse) Copy() *ListClustersResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListClustersResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListClustersResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListClustersResponse)
+	*m = *o
+	if o.Clusters != nil {
+		m.Clusters = make([]*Cluster, len(o.Clusters))
+		for i := range m.Clusters {
+			m.Clusters[i] = &Cluster{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Clusters[i], o.Clusters[i])
+		}
+	}
+
+}
+
+func (m *KeyRotation) Copy() *KeyRotation {
+	if m == nil {
+		return nil
+	}
+	o := &KeyRotation{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *KeyRotation) CopyFrom(src interface{}) {
+
+	o := src.(*KeyRotation)
+	*m = *o
+}
+
+func (m *UpdateClusterRequest) Copy() *UpdateClusterRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateClusterRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateClusterRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateClusterRequest)
+	*m = *o
+	if o.ClusterVersion != nil {
+		m.ClusterVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.ClusterVersion, o.ClusterVersion)
+	}
+	if o.Spec != nil {
+		m.Spec = &ClusterSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Rotation, &o.Rotation)
+}
+
+func (m *UpdateClusterResponse) Copy() *UpdateClusterResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateClusterResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateClusterResponse) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateClusterResponse)
+	*m = *o
+	if o.Cluster != nil {
+		m.Cluster = &Cluster{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Cluster, o.Cluster)
+	}
+}
+
+func (m *GetSecretRequest) Copy() *GetSecretRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetSecretRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetSecretRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetSecretRequest)
+	*m = *o
+}
+
+func (m *GetSecretResponse) Copy() *GetSecretResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetSecretResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetSecretResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetSecretResponse)
+	*m = *o
+	if o.Secret != nil {
+		m.Secret = &Secret{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Secret, o.Secret)
+	}
+}
+
+func (m *UpdateSecretRequest) Copy() *UpdateSecretRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateSecretRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateSecretRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateSecretRequest)
+	*m = *o
+	if o.SecretVersion != nil {
+		m.SecretVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.SecretVersion, o.SecretVersion)
+	}
+	if o.Spec != nil {
+		m.Spec = &SecretSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *UpdateSecretResponse) Copy() *UpdateSecretResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateSecretResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateSecretResponse) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateSecretResponse)
+	*m = *o
+	if o.Secret != nil {
+		m.Secret = &Secret{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Secret, o.Secret)
+	}
+}
+
+func (m *ListSecretsRequest) Copy() *ListSecretsRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListSecretsRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListSecretsRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListSecretsRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListSecretsRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListSecretsRequest_Filters) Copy() *ListSecretsRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListSecretsRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListSecretsRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListSecretsRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+}
+
+func (m *ListSecretsResponse) Copy() *ListSecretsResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListSecretsResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListSecretsResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListSecretsResponse)
+	*m = *o
+	if o.Secrets != nil {
+		m.Secrets = make([]*Secret, len(o.Secrets))
+		for i := range m.Secrets {
+			m.Secrets[i] = &Secret{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Secrets[i], o.Secrets[i])
+		}
+	}
+
+}
+
+func (m *CreateSecretRequest) Copy() *CreateSecretRequest {
+	if m == nil {
+		return nil
+	}
+	o := &CreateSecretRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateSecretRequest) CopyFrom(src interface{}) {
+
+	o := src.(*CreateSecretRequest)
+	*m = *o
+	if o.Spec != nil {
+		m.Spec = &SecretSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *CreateSecretResponse) Copy() *CreateSecretResponse {
+	if m == nil {
+		return nil
+	}
+	o := &CreateSecretResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateSecretResponse) CopyFrom(src interface{}) {
+
+	o := src.(*CreateSecretResponse)
+	*m = *o
+	if o.Secret != nil {
+		m.Secret = &Secret{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Secret, o.Secret)
+	}
+}
+
+func (m *RemoveSecretRequest) Copy() *RemoveSecretRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveSecretRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveSecretRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveSecretRequest)
+	*m = *o
+}
+
+func (m *RemoveSecretResponse) Copy() *RemoveSecretResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveSecretResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveSecretResponse) CopyFrom(src interface{}) {}
+func (m *GetConfigRequest) Copy() *GetConfigRequest {
+	if m == nil {
+		return nil
+	}
+	o := &GetConfigRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetConfigRequest) CopyFrom(src interface{}) {
+
+	o := src.(*GetConfigRequest)
+	*m = *o
+}
+
+func (m *GetConfigResponse) Copy() *GetConfigResponse {
+	if m == nil {
+		return nil
+	}
+	o := &GetConfigResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GetConfigResponse) CopyFrom(src interface{}) {
+
+	o := src.(*GetConfigResponse)
+	*m = *o
+	if o.Config != nil {
+		m.Config = &Config{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Config, o.Config)
+	}
+}
+
+func (m *UpdateConfigRequest) Copy() *UpdateConfigRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateConfigRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateConfigRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateConfigRequest)
+	*m = *o
+	if o.ConfigVersion != nil {
+		m.ConfigVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.ConfigVersion, o.ConfigVersion)
+	}
+	if o.Spec != nil {
+		m.Spec = &ConfigSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *UpdateConfigResponse) Copy() *UpdateConfigResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateConfigResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateConfigResponse) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateConfigResponse)
+	*m = *o
+	if o.Config != nil {
+		m.Config = &Config{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Config, o.Config)
+	}
+}
+
+func (m *ListConfigsRequest) Copy() *ListConfigsRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListConfigsRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListConfigsRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ListConfigsRequest)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = &ListConfigsRequest_Filters{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters, o.Filters)
+	}
+}
+
+func (m *ListConfigsRequest_Filters) Copy() *ListConfigsRequest_Filters {
+	if m == nil {
+		return nil
+	}
+	o := &ListConfigsRequest_Filters{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListConfigsRequest_Filters) CopyFrom(src interface{}) {
+
+	o := src.(*ListConfigsRequest_Filters)
+	*m = *o
+	if o.Names != nil {
+		m.Names = make([]string, len(o.Names))
+		copy(m.Names, o.Names)
+	}
+
+	if o.IDPrefixes != nil {
+		m.IDPrefixes = make([]string, len(o.IDPrefixes))
+		copy(m.IDPrefixes, o.IDPrefixes)
+	}
+
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.NamePrefixes != nil {
+		m.NamePrefixes = make([]string, len(o.NamePrefixes))
+		copy(m.NamePrefixes, o.NamePrefixes)
+	}
+
+}
+
+func (m *ListConfigsResponse) Copy() *ListConfigsResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ListConfigsResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListConfigsResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ListConfigsResponse)
+	*m = *o
+	if o.Configs != nil {
+		m.Configs = make([]*Config, len(o.Configs))
+		for i := range m.Configs {
+			m.Configs[i] = &Config{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Configs[i], o.Configs[i])
+		}
+	}
+
+}
+
+func (m *CreateConfigRequest) Copy() *CreateConfigRequest {
+	if m == nil {
+		return nil
+	}
+	o := &CreateConfigRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateConfigRequest) CopyFrom(src interface{}) {
+
+	o := src.(*CreateConfigRequest)
+	*m = *o
+	if o.Spec != nil {
+		m.Spec = &ConfigSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+}
+
+func (m *CreateConfigResponse) Copy() *CreateConfigResponse {
+	if m == nil {
+		return nil
+	}
+	o := &CreateConfigResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CreateConfigResponse) CopyFrom(src interface{}) {
+
+	o := src.(*CreateConfigResponse)
+	*m = *o
+	if o.Config != nil {
+		m.Config = &Config{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Config, o.Config)
+	}
+}
+
+func (m *RemoveConfigRequest) Copy() *RemoveConfigRequest {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveConfigRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveConfigRequest) CopyFrom(src interface{}) {
+
+	o := src.(*RemoveConfigRequest)
+	*m = *o
+}
+
+func (m *RemoveConfigResponse) Copy() *RemoveConfigResponse {
+	if m == nil {
+		return nil
+	}
+	o := &RemoveConfigResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RemoveConfigResponse) CopyFrom(src interface{}) {}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Control service
+
+type ControlClient interface {
+	GetNode(ctx context.Context, in *GetNodeRequest, opts ...grpc.CallOption) (*GetNodeResponse, error)
+	ListNodes(ctx context.Context, in *ListNodesRequest, opts ...grpc.CallOption) (*ListNodesResponse, error)
+	UpdateNode(ctx context.Context, in *UpdateNodeRequest, opts ...grpc.CallOption) (*UpdateNodeResponse, error)
+	RemoveNode(ctx context.Context, in *RemoveNodeRequest, opts ...grpc.CallOption) (*RemoveNodeResponse, error)
+	GetTask(ctx context.Context, in *GetTaskRequest, opts ...grpc.CallOption) (*GetTaskResponse, error)
+	ListTasks(ctx context.Context, in *ListTasksRequest, opts ...grpc.CallOption) (*ListTasksResponse, error)
+	RemoveTask(ctx context.Context, in *RemoveTaskRequest, opts ...grpc.CallOption) (*RemoveTaskResponse, error)
+	GetService(ctx context.Context, in *GetServiceRequest, opts ...grpc.CallOption) (*GetServiceResponse, error)
+	ListServices(ctx context.Context, in *ListServicesRequest, opts ...grpc.CallOption) (*ListServicesResponse, error)
+	CreateService(ctx context.Context, in *CreateServiceRequest, opts ...grpc.CallOption) (*CreateServiceResponse, error)
+	UpdateService(ctx context.Context, in *UpdateServiceRequest, opts ...grpc.CallOption) (*UpdateServiceResponse, error)
+	RemoveService(ctx context.Context, in *RemoveServiceRequest, opts ...grpc.CallOption) (*RemoveServiceResponse, error)
+	GetNetwork(ctx context.Context, in *GetNetworkRequest, opts ...grpc.CallOption) (*GetNetworkResponse, error)
+	ListNetworks(ctx context.Context, in *ListNetworksRequest, opts ...grpc.CallOption) (*ListNetworksResponse, error)
+	CreateNetwork(ctx context.Context, in *CreateNetworkRequest, opts ...grpc.CallOption) (*CreateNetworkResponse, error)
+	RemoveNetwork(ctx context.Context, in *RemoveNetworkRequest, opts ...grpc.CallOption) (*RemoveNetworkResponse, error)
+	GetCluster(ctx context.Context, in *GetClusterRequest, opts ...grpc.CallOption) (*GetClusterResponse, error)
+	ListClusters(ctx context.Context, in *ListClustersRequest, opts ...grpc.CallOption) (*ListClustersResponse, error)
+	UpdateCluster(ctx context.Context, in *UpdateClusterRequest, opts ...grpc.CallOption) (*UpdateClusterResponse, error)
+	// GetSecret returns a `GetSecretResponse` with a `Secret` with the same
+	// id as `GetSecretRequest.SecretID`
+	// - Returns `NotFound` if the Secret with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetSecretRequest.SecretID` is empty.
+	// - Returns an error if getting fails.
+	GetSecret(ctx context.Context, in *GetSecretRequest, opts ...grpc.CallOption) (*GetSecretResponse, error)
+	// UpdateSecret returns a `UpdateSecretResponse` with a `Secret` with the same
+	// id as `GetSecretRequest.SecretID`
+	// - Returns `NotFound` if the Secret with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetSecretRequest.SecretID` is empty.
+	// - Returns an error if updating fails.
+	UpdateSecret(ctx context.Context, in *UpdateSecretRequest, opts ...grpc.CallOption) (*UpdateSecretResponse, error)
+	// ListSecrets returns a `ListSecretResponse` with a list of all non-internal `Secret`s being
+	// managed, or all secrets matching any name in `ListSecretsRequest.Names`, any
+	// name prefix in `ListSecretsRequest.NamePrefixes`, any id in
+	// `ListSecretsRequest.SecretIDs`, or any id prefix in `ListSecretsRequest.IDPrefixes`.
+	// - Returns an error if listing fails.
+	ListSecrets(ctx context.Context, in *ListSecretsRequest, opts ...grpc.CallOption) (*ListSecretsResponse, error)
+	// CreateSecret creates and return a `CreateSecretResponse` with a `Secret` based
+	// on the provided `CreateSecretRequest.SecretSpec`.
+	// - Returns `InvalidArgument` if the `CreateSecretRequest.SecretSpec` is malformed,
+	//   or if the secret data is too long or contains invalid characters.
+	// - Returns an error if the creation fails.
+	CreateSecret(ctx context.Context, in *CreateSecretRequest, opts ...grpc.CallOption) (*CreateSecretResponse, error)
+	// RemoveSecret removes the secret referenced by `RemoveSecretRequest.ID`.
+	// - Returns `InvalidArgument` if `RemoveSecretRequest.ID` is empty.
+	// - Returns `NotFound` if the a secret named `RemoveSecretRequest.ID` is not found.
+	// - Returns an error if the deletion fails.
+	RemoveSecret(ctx context.Context, in *RemoveSecretRequest, opts ...grpc.CallOption) (*RemoveSecretResponse, error)
+	// GetConfig returns a `GetConfigResponse` with a `Config` with the same
+	// id as `GetConfigRequest.ConfigID`
+	// - Returns `NotFound` if the Config with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetConfigRequest.ConfigID` is empty.
+	// - Returns an error if getting fails.
+	GetConfig(ctx context.Context, in *GetConfigRequest, opts ...grpc.CallOption) (*GetConfigResponse, error)
+	// UpdateConfig returns a `UpdateConfigResponse` with a `Config` with the same
+	// id as `GetConfigRequest.ConfigID`
+	// - Returns `NotFound` if the Config with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetConfigRequest.ConfigID` is empty.
+	// - Returns an error if updating fails.
+	UpdateConfig(ctx context.Context, in *UpdateConfigRequest, opts ...grpc.CallOption) (*UpdateConfigResponse, error)
+	// ListConfigs returns a `ListConfigResponse` with a list of `Config`s being
+	// managed, or all configs matching any name in `ListConfigsRequest.Names`, any
+	// name prefix in `ListConfigsRequest.NamePrefixes`, any id in
+	// `ListConfigsRequest.ConfigIDs`, or any id prefix in `ListConfigsRequest.IDPrefixes`.
+	// - Returns an error if listing fails.
+	ListConfigs(ctx context.Context, in *ListConfigsRequest, opts ...grpc.CallOption) (*ListConfigsResponse, error)
+	// CreateConfig creates and return a `CreateConfigResponse` with a `Config` based
+	// on the provided `CreateConfigRequest.ConfigSpec`.
+	// - Returns `InvalidArgument` if the `CreateConfigRequest.ConfigSpec` is malformed,
+	//   or if the config data is too long or contains invalid characters.
+	// - Returns an error if the creation fails.
+	CreateConfig(ctx context.Context, in *CreateConfigRequest, opts ...grpc.CallOption) (*CreateConfigResponse, error)
+	// RemoveConfig removes the config referenced by `RemoveConfigRequest.ID`.
+	// - Returns `InvalidArgument` if `RemoveConfigRequest.ID` is empty.
+	// - Returns `NotFound` if the a config named `RemoveConfigRequest.ID` is not found.
+	// - Returns an error if the deletion fails.
+	RemoveConfig(ctx context.Context, in *RemoveConfigRequest, opts ...grpc.CallOption) (*RemoveConfigResponse, error)
+}
+
+type controlClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewControlClient(cc *grpc.ClientConn) ControlClient {
+	return &controlClient{cc}
+}
+
+func (c *controlClient) GetNode(ctx context.Context, in *GetNodeRequest, opts ...grpc.CallOption) (*GetNodeResponse, error) {
+	out := new(GetNodeResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetNode", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListNodes(ctx context.Context, in *ListNodesRequest, opts ...grpc.CallOption) (*ListNodesResponse, error) {
+	out := new(ListNodesResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListNodes", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) UpdateNode(ctx context.Context, in *UpdateNodeRequest, opts ...grpc.CallOption) (*UpdateNodeResponse, error) {
+	out := new(UpdateNodeResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/UpdateNode", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveNode(ctx context.Context, in *RemoveNodeRequest, opts ...grpc.CallOption) (*RemoveNodeResponse, error) {
+	out := new(RemoveNodeResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveNode", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetTask(ctx context.Context, in *GetTaskRequest, opts ...grpc.CallOption) (*GetTaskResponse, error) {
+	out := new(GetTaskResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetTask", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListTasks(ctx context.Context, in *ListTasksRequest, opts ...grpc.CallOption) (*ListTasksResponse, error) {
+	out := new(ListTasksResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListTasks", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveTask(ctx context.Context, in *RemoveTaskRequest, opts ...grpc.CallOption) (*RemoveTaskResponse, error) {
+	out := new(RemoveTaskResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveTask", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetService(ctx context.Context, in *GetServiceRequest, opts ...grpc.CallOption) (*GetServiceResponse, error) {
+	out := new(GetServiceResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetService", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListServices(ctx context.Context, in *ListServicesRequest, opts ...grpc.CallOption) (*ListServicesResponse, error) {
+	out := new(ListServicesResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListServices", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) CreateService(ctx context.Context, in *CreateServiceRequest, opts ...grpc.CallOption) (*CreateServiceResponse, error) {
+	out := new(CreateServiceResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/CreateService", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) UpdateService(ctx context.Context, in *UpdateServiceRequest, opts ...grpc.CallOption) (*UpdateServiceResponse, error) {
+	out := new(UpdateServiceResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/UpdateService", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveService(ctx context.Context, in *RemoveServiceRequest, opts ...grpc.CallOption) (*RemoveServiceResponse, error) {
+	out := new(RemoveServiceResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveService", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetNetwork(ctx context.Context, in *GetNetworkRequest, opts ...grpc.CallOption) (*GetNetworkResponse, error) {
+	out := new(GetNetworkResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetNetwork", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListNetworks(ctx context.Context, in *ListNetworksRequest, opts ...grpc.CallOption) (*ListNetworksResponse, error) {
+	out := new(ListNetworksResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListNetworks", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) CreateNetwork(ctx context.Context, in *CreateNetworkRequest, opts ...grpc.CallOption) (*CreateNetworkResponse, error) {
+	out := new(CreateNetworkResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/CreateNetwork", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveNetwork(ctx context.Context, in *RemoveNetworkRequest, opts ...grpc.CallOption) (*RemoveNetworkResponse, error) {
+	out := new(RemoveNetworkResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveNetwork", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetCluster(ctx context.Context, in *GetClusterRequest, opts ...grpc.CallOption) (*GetClusterResponse, error) {
+	out := new(GetClusterResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetCluster", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListClusters(ctx context.Context, in *ListClustersRequest, opts ...grpc.CallOption) (*ListClustersResponse, error) {
+	out := new(ListClustersResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListClusters", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) UpdateCluster(ctx context.Context, in *UpdateClusterRequest, opts ...grpc.CallOption) (*UpdateClusterResponse, error) {
+	out := new(UpdateClusterResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/UpdateCluster", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetSecret(ctx context.Context, in *GetSecretRequest, opts ...grpc.CallOption) (*GetSecretResponse, error) {
+	out := new(GetSecretResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetSecret", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) UpdateSecret(ctx context.Context, in *UpdateSecretRequest, opts ...grpc.CallOption) (*UpdateSecretResponse, error) {
+	out := new(UpdateSecretResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/UpdateSecret", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListSecrets(ctx context.Context, in *ListSecretsRequest, opts ...grpc.CallOption) (*ListSecretsResponse, error) {
+	out := new(ListSecretsResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListSecrets", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) CreateSecret(ctx context.Context, in *CreateSecretRequest, opts ...grpc.CallOption) (*CreateSecretResponse, error) {
+	out := new(CreateSecretResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/CreateSecret", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveSecret(ctx context.Context, in *RemoveSecretRequest, opts ...grpc.CallOption) (*RemoveSecretResponse, error) {
+	out := new(RemoveSecretResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveSecret", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) GetConfig(ctx context.Context, in *GetConfigRequest, opts ...grpc.CallOption) (*GetConfigResponse, error) {
+	out := new(GetConfigResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/GetConfig", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) UpdateConfig(ctx context.Context, in *UpdateConfigRequest, opts ...grpc.CallOption) (*UpdateConfigResponse, error) {
+	out := new(UpdateConfigResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/UpdateConfig", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) ListConfigs(ctx context.Context, in *ListConfigsRequest, opts ...grpc.CallOption) (*ListConfigsResponse, error) {
+	out := new(ListConfigsResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/ListConfigs", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) CreateConfig(ctx context.Context, in *CreateConfigRequest, opts ...grpc.CallOption) (*CreateConfigResponse, error) {
+	out := new(CreateConfigResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/CreateConfig", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *controlClient) RemoveConfig(ctx context.Context, in *RemoveConfigRequest, opts ...grpc.CallOption) (*RemoveConfigResponse, error) {
+	out := new(RemoveConfigResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Control/RemoveConfig", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for Control service
+
+type ControlServer interface {
+	GetNode(context.Context, *GetNodeRequest) (*GetNodeResponse, error)
+	ListNodes(context.Context, *ListNodesRequest) (*ListNodesResponse, error)
+	UpdateNode(context.Context, *UpdateNodeRequest) (*UpdateNodeResponse, error)
+	RemoveNode(context.Context, *RemoveNodeRequest) (*RemoveNodeResponse, error)
+	GetTask(context.Context, *GetTaskRequest) (*GetTaskResponse, error)
+	ListTasks(context.Context, *ListTasksRequest) (*ListTasksResponse, error)
+	RemoveTask(context.Context, *RemoveTaskRequest) (*RemoveTaskResponse, error)
+	GetService(context.Context, *GetServiceRequest) (*GetServiceResponse, error)
+	ListServices(context.Context, *ListServicesRequest) (*ListServicesResponse, error)
+	CreateService(context.Context, *CreateServiceRequest) (*CreateServiceResponse, error)
+	UpdateService(context.Context, *UpdateServiceRequest) (*UpdateServiceResponse, error)
+	RemoveService(context.Context, *RemoveServiceRequest) (*RemoveServiceResponse, error)
+	GetNetwork(context.Context, *GetNetworkRequest) (*GetNetworkResponse, error)
+	ListNetworks(context.Context, *ListNetworksRequest) (*ListNetworksResponse, error)
+	CreateNetwork(context.Context, *CreateNetworkRequest) (*CreateNetworkResponse, error)
+	RemoveNetwork(context.Context, *RemoveNetworkRequest) (*RemoveNetworkResponse, error)
+	GetCluster(context.Context, *GetClusterRequest) (*GetClusterResponse, error)
+	ListClusters(context.Context, *ListClustersRequest) (*ListClustersResponse, error)
+	UpdateCluster(context.Context, *UpdateClusterRequest) (*UpdateClusterResponse, error)
+	// GetSecret returns a `GetSecretResponse` with a `Secret` with the same
+	// id as `GetSecretRequest.SecretID`
+	// - Returns `NotFound` if the Secret with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetSecretRequest.SecretID` is empty.
+	// - Returns an error if getting fails.
+	GetSecret(context.Context, *GetSecretRequest) (*GetSecretResponse, error)
+	// UpdateSecret returns a `UpdateSecretResponse` with a `Secret` with the same
+	// id as `GetSecretRequest.SecretID`
+	// - Returns `NotFound` if the Secret with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetSecretRequest.SecretID` is empty.
+	// - Returns an error if updating fails.
+	UpdateSecret(context.Context, *UpdateSecretRequest) (*UpdateSecretResponse, error)
+	// ListSecrets returns a `ListSecretResponse` with a list of all non-internal `Secret`s being
+	// managed, or all secrets matching any name in `ListSecretsRequest.Names`, any
+	// name prefix in `ListSecretsRequest.NamePrefixes`, any id in
+	// `ListSecretsRequest.SecretIDs`, or any id prefix in `ListSecretsRequest.IDPrefixes`.
+	// - Returns an error if listing fails.
+	ListSecrets(context.Context, *ListSecretsRequest) (*ListSecretsResponse, error)
+	// CreateSecret creates and return a `CreateSecretResponse` with a `Secret` based
+	// on the provided `CreateSecretRequest.SecretSpec`.
+	// - Returns `InvalidArgument` if the `CreateSecretRequest.SecretSpec` is malformed,
+	//   or if the secret data is too long or contains invalid characters.
+	// - Returns an error if the creation fails.
+	CreateSecret(context.Context, *CreateSecretRequest) (*CreateSecretResponse, error)
+	// RemoveSecret removes the secret referenced by `RemoveSecretRequest.ID`.
+	// - Returns `InvalidArgument` if `RemoveSecretRequest.ID` is empty.
+	// - Returns `NotFound` if the a secret named `RemoveSecretRequest.ID` is not found.
+	// - Returns an error if the deletion fails.
+	RemoveSecret(context.Context, *RemoveSecretRequest) (*RemoveSecretResponse, error)
+	// GetConfig returns a `GetConfigResponse` with a `Config` with the same
+	// id as `GetConfigRequest.ConfigID`
+	// - Returns `NotFound` if the Config with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetConfigRequest.ConfigID` is empty.
+	// - Returns an error if getting fails.
+	GetConfig(context.Context, *GetConfigRequest) (*GetConfigResponse, error)
+	// UpdateConfig returns a `UpdateConfigResponse` with a `Config` with the same
+	// id as `GetConfigRequest.ConfigID`
+	// - Returns `NotFound` if the Config with the given id is not found.
+	// - Returns `InvalidArgument` if the `GetConfigRequest.ConfigID` is empty.
+	// - Returns an error if updating fails.
+	UpdateConfig(context.Context, *UpdateConfigRequest) (*UpdateConfigResponse, error)
+	// ListConfigs returns a `ListConfigResponse` with a list of `Config`s being
+	// managed, or all configs matching any name in `ListConfigsRequest.Names`, any
+	// name prefix in `ListConfigsRequest.NamePrefixes`, any id in
+	// `ListConfigsRequest.ConfigIDs`, or any id prefix in `ListConfigsRequest.IDPrefixes`.
+	// - Returns an error if listing fails.
+	ListConfigs(context.Context, *ListConfigsRequest) (*ListConfigsResponse, error)
+	// CreateConfig creates and return a `CreateConfigResponse` with a `Config` based
+	// on the provided `CreateConfigRequest.ConfigSpec`.
+	// - Returns `InvalidArgument` if the `CreateConfigRequest.ConfigSpec` is malformed,
+	//   or if the config data is too long or contains invalid characters.
+	// - Returns an error if the creation fails.
+	CreateConfig(context.Context, *CreateConfigRequest) (*CreateConfigResponse, error)
+	// RemoveConfig removes the config referenced by `RemoveConfigRequest.ID`.
+	// - Returns `InvalidArgument` if `RemoveConfigRequest.ID` is empty.
+	// - Returns `NotFound` if the a config named `RemoveConfigRequest.ID` is not found.
+	// - Returns an error if the deletion fails.
+	RemoveConfig(context.Context, *RemoveConfigRequest) (*RemoveConfigResponse, error)
+}
+
+func RegisterControlServer(s *grpc.Server, srv ControlServer) {
+	s.RegisterService(&_Control_serviceDesc, srv)
+}
+
+func _Control_GetNode_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetNodeRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetNode(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetNode",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetNode(ctx, req.(*GetNodeRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListNodes_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListNodesRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListNodes(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListNodes",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListNodes(ctx, req.(*ListNodesRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_UpdateNode_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateNodeRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).UpdateNode(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/UpdateNode",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).UpdateNode(ctx, req.(*UpdateNodeRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveNode_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveNodeRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveNode(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveNode",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveNode(ctx, req.(*RemoveNodeRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetTask_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetTaskRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetTask(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetTask",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetTask(ctx, req.(*GetTaskRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListTasks_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListTasksRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListTasks(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListTasks",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListTasks(ctx, req.(*ListTasksRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveTask_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveTaskRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveTask(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveTask",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveTask(ctx, req.(*RemoveTaskRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetService_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetServiceRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetService(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetService",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetService(ctx, req.(*GetServiceRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListServices_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListServicesRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListServices(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListServices",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListServices(ctx, req.(*ListServicesRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_CreateService_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(CreateServiceRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).CreateService(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/CreateService",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).CreateService(ctx, req.(*CreateServiceRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_UpdateService_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateServiceRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).UpdateService(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/UpdateService",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).UpdateService(ctx, req.(*UpdateServiceRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveService_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveServiceRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveService(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveService",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveService(ctx, req.(*RemoveServiceRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetNetwork_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetNetworkRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetNetwork(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetNetwork",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetNetwork(ctx, req.(*GetNetworkRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListNetworks_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListNetworksRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListNetworks(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListNetworks",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListNetworks(ctx, req.(*ListNetworksRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_CreateNetwork_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(CreateNetworkRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).CreateNetwork(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/CreateNetwork",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).CreateNetwork(ctx, req.(*CreateNetworkRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveNetwork_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveNetworkRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveNetwork(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveNetwork",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveNetwork(ctx, req.(*RemoveNetworkRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetCluster_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetClusterRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetCluster(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetCluster",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetCluster(ctx, req.(*GetClusterRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListClusters_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListClustersRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListClusters(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListClusters",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListClusters(ctx, req.(*ListClustersRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_UpdateCluster_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateClusterRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).UpdateCluster(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/UpdateCluster",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).UpdateCluster(ctx, req.(*UpdateClusterRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetSecret_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetSecretRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetSecret(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetSecret",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetSecret(ctx, req.(*GetSecretRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_UpdateSecret_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateSecretRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).UpdateSecret(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/UpdateSecret",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).UpdateSecret(ctx, req.(*UpdateSecretRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListSecrets_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListSecretsRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListSecrets(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListSecrets",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListSecrets(ctx, req.(*ListSecretsRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_CreateSecret_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(CreateSecretRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).CreateSecret(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/CreateSecret",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).CreateSecret(ctx, req.(*CreateSecretRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveSecret_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveSecretRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveSecret(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveSecret",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveSecret(ctx, req.(*RemoveSecretRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_GetConfig_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(GetConfigRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).GetConfig(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/GetConfig",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).GetConfig(ctx, req.(*GetConfigRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_UpdateConfig_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateConfigRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).UpdateConfig(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/UpdateConfig",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).UpdateConfig(ctx, req.(*UpdateConfigRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_ListConfigs_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ListConfigsRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).ListConfigs(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/ListConfigs",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).ListConfigs(ctx, req.(*ListConfigsRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_CreateConfig_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(CreateConfigRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).CreateConfig(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/CreateConfig",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).CreateConfig(ctx, req.(*CreateConfigRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Control_RemoveConfig_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(RemoveConfigRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ControlServer).RemoveConfig(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Control/RemoveConfig",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ControlServer).RemoveConfig(ctx, req.(*RemoveConfigRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _Control_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Control",
+	HandlerType: (*ControlServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "GetNode",
+			Handler:    _Control_GetNode_Handler,
+		},
+		{
+			MethodName: "ListNodes",
+			Handler:    _Control_ListNodes_Handler,
+		},
+		{
+			MethodName: "UpdateNode",
+			Handler:    _Control_UpdateNode_Handler,
+		},
+		{
+			MethodName: "RemoveNode",
+			Handler:    _Control_RemoveNode_Handler,
+		},
+		{
+			MethodName: "GetTask",
+			Handler:    _Control_GetTask_Handler,
+		},
+		{
+			MethodName: "ListTasks",
+			Handler:    _Control_ListTasks_Handler,
+		},
+		{
+			MethodName: "RemoveTask",
+			Handler:    _Control_RemoveTask_Handler,
+		},
+		{
+			MethodName: "GetService",
+			Handler:    _Control_GetService_Handler,
+		},
+		{
+			MethodName: "ListServices",
+			Handler:    _Control_ListServices_Handler,
+		},
+		{
+			MethodName: "CreateService",
+			Handler:    _Control_CreateService_Handler,
+		},
+		{
+			MethodName: "UpdateService",
+			Handler:    _Control_UpdateService_Handler,
+		},
+		{
+			MethodName: "RemoveService",
+			Handler:    _Control_RemoveService_Handler,
+		},
+		{
+			MethodName: "GetNetwork",
+			Handler:    _Control_GetNetwork_Handler,
+		},
+		{
+			MethodName: "ListNetworks",
+			Handler:    _Control_ListNetworks_Handler,
+		},
+		{
+			MethodName: "CreateNetwork",
+			Handler:    _Control_CreateNetwork_Handler,
+		},
+		{
+			MethodName: "RemoveNetwork",
+			Handler:    _Control_RemoveNetwork_Handler,
+		},
+		{
+			MethodName: "GetCluster",
+			Handler:    _Control_GetCluster_Handler,
+		},
+		{
+			MethodName: "ListClusters",
+			Handler:    _Control_ListClusters_Handler,
+		},
+		{
+			MethodName: "UpdateCluster",
+			Handler:    _Control_UpdateCluster_Handler,
+		},
+		{
+			MethodName: "GetSecret",
+			Handler:    _Control_GetSecret_Handler,
+		},
+		{
+			MethodName: "UpdateSecret",
+			Handler:    _Control_UpdateSecret_Handler,
+		},
+		{
+			MethodName: "ListSecrets",
+			Handler:    _Control_ListSecrets_Handler,
+		},
+		{
+			MethodName: "CreateSecret",
+			Handler:    _Control_CreateSecret_Handler,
+		},
+		{
+			MethodName: "RemoveSecret",
+			Handler:    _Control_RemoveSecret_Handler,
+		},
+		{
+			MethodName: "GetConfig",
+			Handler:    _Control_GetConfig_Handler,
+		},
+		{
+			MethodName: "UpdateConfig",
+			Handler:    _Control_UpdateConfig_Handler,
+		},
+		{
+			MethodName: "ListConfigs",
+			Handler:    _Control_ListConfigs_Handler,
+		},
+		{
+			MethodName: "CreateConfig",
+			Handler:    _Control_CreateConfig_Handler,
+		},
+		{
+			MethodName: "RemoveConfig",
+			Handler:    _Control_RemoveConfig_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/control.proto",
+}
+
+func (m *GetNodeRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetNodeRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	return i, nil
+}
+
+func (m *GetNodeResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetNodeResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Node != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Node.Size()))
+		n1, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	return i, nil
+}
+
+func (m *ListNodesRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNodesRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n2, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	return i, nil
+}
+
+func (m *ListNodesRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNodesRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.Memberships) > 0 {
+		for _, num := range m.Memberships {
+			dAtA[i] = 0x20
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(num))
+		}
+	}
+	if len(m.Roles) > 0 {
+		for _, num := range m.Roles {
+			dAtA[i] = 0x28
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(num))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x32
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListNodesResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNodesResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, msg := range m.Nodes {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *UpdateNodeRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateNodeRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if m.NodeVersion != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.NodeVersion.Size()))
+		n3, err := m.NodeVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	if m.Spec != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n4, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	return i, nil
+}
+
+func (m *UpdateNodeResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateNodeResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Node != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Node.Size()))
+		n5, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n5
+	}
+	return i, nil
+}
+
+func (m *RemoveNodeRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveNodeRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if m.Force {
+		dAtA[i] = 0x10
+		i++
+		if m.Force {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *RemoveNodeResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveNodeResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *GetTaskRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetTaskRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.TaskID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.TaskID)))
+		i += copy(dAtA[i:], m.TaskID)
+	}
+	return i, nil
+}
+
+func (m *GetTaskResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetTaskResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Task != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Task.Size()))
+		n6, err := m.Task.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	return i, nil
+}
+
+func (m *RemoveTaskRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveTaskRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.TaskID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.TaskID)))
+		i += copy(dAtA[i:], m.TaskID)
+	}
+	return i, nil
+}
+
+func (m *RemoveTaskResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveTaskResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *ListTasksRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListTasksRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n7, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	return i, nil
+}
+
+func (m *ListTasksRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListTasksRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.ServiceIDs) > 0 {
+		for _, s := range m.ServiceIDs {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.NodeIDs) > 0 {
+		for _, s := range m.NodeIDs {
+			dAtA[i] = 0x2a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.DesiredStates) > 0 {
+		for _, num := range m.DesiredStates {
+			dAtA[i] = 0x30
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(num))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x3a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if m.UpToDate {
+		dAtA[i] = 0x40
+		i++
+		if m.UpToDate {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.Runtimes) > 0 {
+		for _, s := range m.Runtimes {
+			dAtA[i] = 0x4a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListTasksResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListTasksResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Tasks) > 0 {
+		for _, msg := range m.Tasks {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *CreateServiceRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateServiceRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Spec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n8, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	return i, nil
+}
+
+func (m *CreateServiceResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateServiceResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Service != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Service.Size()))
+		n9, err := m.Service.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	return i, nil
+}
+
+func (m *GetServiceRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetServiceRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if m.InsertDefaults {
+		dAtA[i] = 0x10
+		i++
+		if m.InsertDefaults {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *GetServiceResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetServiceResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Service != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Service.Size()))
+		n10, err := m.Service.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n10
+	}
+	return i, nil
+}
+
+func (m *UpdateServiceRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateServiceRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if m.ServiceVersion != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.ServiceVersion.Size()))
+		n11, err := m.ServiceVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n11
+	}
+	if m.Spec != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n12, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n12
+	}
+	if m.Rollback != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Rollback))
+	}
+	return i, nil
+}
+
+func (m *UpdateServiceResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateServiceResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Service != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Service.Size()))
+		n13, err := m.Service.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	return i, nil
+}
+
+func (m *RemoveServiceRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveServiceRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	return i, nil
+}
+
+func (m *RemoveServiceResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveServiceResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *ListServicesRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListServicesRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n14, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	return i, nil
+}
+
+func (m *ListServicesRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListServicesRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Runtimes) > 0 {
+		for _, s := range m.Runtimes {
+			dAtA[i] = 0x2a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListServicesResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListServicesResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Services) > 0 {
+		for _, msg := range m.Services {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *CreateNetworkRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateNetworkRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Spec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n15, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n15
+	}
+	return i, nil
+}
+
+func (m *CreateNetworkResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateNetworkResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Network != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Network.Size()))
+		n16, err := m.Network.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n16
+	}
+	return i, nil
+}
+
+func (m *GetNetworkRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetNetworkRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	return i, nil
+}
+
+func (m *GetNetworkResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetNetworkResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Network != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Network.Size()))
+		n17, err := m.Network.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n17
+	}
+	return i, nil
+}
+
+func (m *RemoveNetworkRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveNetworkRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	return i, nil
+}
+
+func (m *RemoveNetworkResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveNetworkResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *ListNetworksRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNetworksRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n18, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n18
+	}
+	return i, nil
+}
+
+func (m *ListNetworksRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNetworksRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListNetworksResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListNetworksResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *GetClusterRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetClusterRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ClusterID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ClusterID)))
+		i += copy(dAtA[i:], m.ClusterID)
+	}
+	return i, nil
+}
+
+func (m *GetClusterResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetClusterResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Cluster.Size()))
+		n19, err := m.Cluster.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n19
+	}
+	return i, nil
+}
+
+func (m *ListClustersRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListClustersRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n20, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n20
+	}
+	return i, nil
+}
+
+func (m *ListClustersRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListClustersRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListClustersResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListClustersResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Clusters) > 0 {
+		for _, msg := range m.Clusters {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *KeyRotation) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *KeyRotation) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.WorkerJoinToken {
+		dAtA[i] = 0x8
+		i++
+		if m.WorkerJoinToken {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.ManagerJoinToken {
+		dAtA[i] = 0x10
+		i++
+		if m.ManagerJoinToken {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.ManagerUnlockKey {
+		dAtA[i] = 0x18
+		i++
+		if m.ManagerUnlockKey {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *UpdateClusterRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateClusterRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ClusterID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ClusterID)))
+		i += copy(dAtA[i:], m.ClusterID)
+	}
+	if m.ClusterVersion != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.ClusterVersion.Size()))
+		n21, err := m.ClusterVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n21
+	}
+	if m.Spec != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n22, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n22
+	}
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintControl(dAtA, i, uint64(m.Rotation.Size()))
+	n23, err := m.Rotation.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n23
+	return i, nil
+}
+
+func (m *UpdateClusterResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateClusterResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Cluster.Size()))
+		n24, err := m.Cluster.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n24
+	}
+	return i, nil
+}
+
+func (m *GetSecretRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetSecretRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SecretID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.SecretID)))
+		i += copy(dAtA[i:], m.SecretID)
+	}
+	return i, nil
+}
+
+func (m *GetSecretResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetSecretResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Secret != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Secret.Size()))
+		n25, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n25
+	}
+	return i, nil
+}
+
+func (m *UpdateSecretRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateSecretRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SecretID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.SecretID)))
+		i += copy(dAtA[i:], m.SecretID)
+	}
+	if m.SecretVersion != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.SecretVersion.Size()))
+		n26, err := m.SecretVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n26
+	}
+	if m.Spec != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n27, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n27
+	}
+	return i, nil
+}
+
+func (m *UpdateSecretResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateSecretResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Secret != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Secret.Size()))
+		n28, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n28
+	}
+	return i, nil
+}
+
+func (m *ListSecretsRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListSecretsRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n29, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n29
+	}
+	return i, nil
+}
+
+func (m *ListSecretsRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListSecretsRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListSecretsResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListSecretsResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Secrets) > 0 {
+		for _, msg := range m.Secrets {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *CreateSecretRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateSecretRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Spec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n30, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n30
+	}
+	return i, nil
+}
+
+func (m *CreateSecretResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateSecretResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Secret != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Secret.Size()))
+		n31, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n31
+	}
+	return i, nil
+}
+
+func (m *RemoveSecretRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveSecretRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SecretID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.SecretID)))
+		i += copy(dAtA[i:], m.SecretID)
+	}
+	return i, nil
+}
+
+func (m *RemoveSecretResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveSecretResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *GetConfigRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetConfigRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ConfigID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ConfigID)))
+		i += copy(dAtA[i:], m.ConfigID)
+	}
+	return i, nil
+}
+
+func (m *GetConfigResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GetConfigResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Config != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Config.Size()))
+		n32, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n32
+	}
+	return i, nil
+}
+
+func (m *UpdateConfigRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateConfigRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ConfigID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ConfigID)))
+		i += copy(dAtA[i:], m.ConfigID)
+	}
+	if m.ConfigVersion != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.ConfigVersion.Size()))
+		n33, err := m.ConfigVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n33
+	}
+	if m.Spec != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n34, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n34
+	}
+	return i, nil
+}
+
+func (m *UpdateConfigResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateConfigResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Config != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Config.Size()))
+		n35, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n35
+	}
+	return i, nil
+}
+
+func (m *ListConfigsRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListConfigsRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Filters != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Filters.Size()))
+		n36, err := m.Filters.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n36
+	}
+	return i, nil
+}
+
+func (m *ListConfigsRequest_Filters) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListConfigsRequest_Filters) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			i = encodeVarintControl(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *ListConfigsResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListConfigsResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Configs) > 0 {
+		for _, msg := range m.Configs {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintControl(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *CreateConfigRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateConfigRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Spec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Spec.Size()))
+		n37, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n37
+	}
+	return i, nil
+}
+
+func (m *CreateConfigResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CreateConfigResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Config != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(m.Config.Size()))
+		n38, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n38
+	}
+	return i, nil
+}
+
+func (m *RemoveConfigRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveConfigRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ConfigID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintControl(dAtA, i, uint64(len(m.ConfigID)))
+		i += copy(dAtA[i:], m.ConfigID)
+	}
+	return i, nil
+}
+
+func (m *RemoveConfigResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RemoveConfigResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func encodeFixed64Control(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Control(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintControl(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyControlServer struct {
+	local                       ControlServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyControlServer(local ControlServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) ControlServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyControlServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyControlServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyControlServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyControlServer) GetNode(ctx context.Context, r *GetNodeRequest) (*GetNodeResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetNode(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetNode(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetNode(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetNode(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListNodes(ctx context.Context, r *ListNodesRequest) (*ListNodesResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListNodes(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListNodes(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListNodes(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListNodes(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) UpdateNode(ctx context.Context, r *UpdateNodeRequest) (*UpdateNodeResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateNode(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).UpdateNode(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateNode(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).UpdateNode(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveNode(ctx context.Context, r *RemoveNodeRequest) (*RemoveNodeResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveNode(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveNode(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveNode(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveNode(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetTask(ctx context.Context, r *GetTaskRequest) (*GetTaskResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetTask(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetTask(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetTask(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetTask(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListTasks(ctx context.Context, r *ListTasksRequest) (*ListTasksResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListTasks(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListTasks(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListTasks(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListTasks(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveTask(ctx context.Context, r *RemoveTaskRequest) (*RemoveTaskResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveTask(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveTask(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveTask(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveTask(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetService(ctx context.Context, r *GetServiceRequest) (*GetServiceResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetService(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetService(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetService(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetService(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListServices(ctx context.Context, r *ListServicesRequest) (*ListServicesResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListServices(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListServices(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListServices(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListServices(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) CreateService(ctx context.Context, r *CreateServiceRequest) (*CreateServiceResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.CreateService(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).CreateService(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.CreateService(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).CreateService(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) UpdateService(ctx context.Context, r *UpdateServiceRequest) (*UpdateServiceResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateService(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).UpdateService(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateService(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).UpdateService(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveService(ctx context.Context, r *RemoveServiceRequest) (*RemoveServiceResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveService(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveService(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveService(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveService(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetNetwork(ctx context.Context, r *GetNetworkRequest) (*GetNetworkResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetNetwork(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetNetwork(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetNetwork(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetNetwork(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListNetworks(ctx context.Context, r *ListNetworksRequest) (*ListNetworksResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListNetworks(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListNetworks(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListNetworks(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListNetworks(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) CreateNetwork(ctx context.Context, r *CreateNetworkRequest) (*CreateNetworkResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.CreateNetwork(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).CreateNetwork(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.CreateNetwork(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).CreateNetwork(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveNetwork(ctx context.Context, r *RemoveNetworkRequest) (*RemoveNetworkResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveNetwork(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveNetwork(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveNetwork(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveNetwork(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetCluster(ctx context.Context, r *GetClusterRequest) (*GetClusterResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetCluster(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetCluster(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetCluster(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetCluster(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListClusters(ctx context.Context, r *ListClustersRequest) (*ListClustersResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListClusters(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListClusters(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListClusters(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListClusters(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) UpdateCluster(ctx context.Context, r *UpdateClusterRequest) (*UpdateClusterResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateCluster(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).UpdateCluster(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateCluster(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).UpdateCluster(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetSecret(ctx context.Context, r *GetSecretRequest) (*GetSecretResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetSecret(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetSecret(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetSecret(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetSecret(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) UpdateSecret(ctx context.Context, r *UpdateSecretRequest) (*UpdateSecretResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateSecret(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).UpdateSecret(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateSecret(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).UpdateSecret(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListSecrets(ctx context.Context, r *ListSecretsRequest) (*ListSecretsResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListSecrets(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListSecrets(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListSecrets(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListSecrets(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) CreateSecret(ctx context.Context, r *CreateSecretRequest) (*CreateSecretResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.CreateSecret(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).CreateSecret(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.CreateSecret(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).CreateSecret(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveSecret(ctx context.Context, r *RemoveSecretRequest) (*RemoveSecretResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveSecret(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveSecret(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveSecret(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveSecret(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) GetConfig(ctx context.Context, r *GetConfigRequest) (*GetConfigResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.GetConfig(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).GetConfig(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.GetConfig(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).GetConfig(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) UpdateConfig(ctx context.Context, r *UpdateConfigRequest) (*UpdateConfigResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateConfig(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).UpdateConfig(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateConfig(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).UpdateConfig(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) ListConfigs(ctx context.Context, r *ListConfigsRequest) (*ListConfigsResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ListConfigs(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).ListConfigs(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ListConfigs(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).ListConfigs(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) CreateConfig(ctx context.Context, r *CreateConfigRequest) (*CreateConfigResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.CreateConfig(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).CreateConfig(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.CreateConfig(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).CreateConfig(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyControlServer) RemoveConfig(ctx context.Context, r *RemoveConfigRequest) (*RemoveConfigResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.RemoveConfig(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewControlClient(conn).RemoveConfig(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.RemoveConfig(ctx, r)
+			}
+			return nil, err
+		}
+		return NewControlClient(conn).RemoveConfig(modCtx, r)
+	}
+	return resp, err
+}
+
+func (m *GetNodeRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetNodeResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListNodesRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListNodesRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.Memberships) > 0 {
+		for _, e := range m.Memberships {
+			n += 1 + sovControl(uint64(e))
+		}
+	}
+	if len(m.Roles) > 0 {
+		for _, e := range m.Roles {
+			n += 1 + sovControl(uint64(e))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListNodesResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, e := range m.Nodes {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *UpdateNodeRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.NodeVersion != nil {
+		l = m.NodeVersion.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateNodeResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveNodeRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Force {
+		n += 2
+	}
+	return n
+}
+
+func (m *RemoveNodeResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *GetTaskRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.TaskID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetTaskResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Task != nil {
+		l = m.Task.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveTaskRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.TaskID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveTaskResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *ListTasksRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListTasksRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.ServiceIDs) > 0 {
+		for _, s := range m.ServiceIDs {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.NodeIDs) > 0 {
+		for _, s := range m.NodeIDs {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.DesiredStates) > 0 {
+		for _, e := range m.DesiredStates {
+			n += 1 + sovControl(uint64(e))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if m.UpToDate {
+		n += 2
+	}
+	if len(m.Runtimes) > 0 {
+		for _, s := range m.Runtimes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListTasksResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Tasks) > 0 {
+		for _, e := range m.Tasks {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *CreateServiceRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *CreateServiceResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Service != nil {
+		l = m.Service.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetServiceRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.InsertDefaults {
+		n += 2
+	}
+	return n
+}
+
+func (m *GetServiceResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Service != nil {
+		l = m.Service.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateServiceRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.ServiceVersion != nil {
+		l = m.ServiceVersion.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Rollback != 0 {
+		n += 1 + sovControl(uint64(m.Rollback))
+	}
+	return n
+}
+
+func (m *UpdateServiceResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Service != nil {
+		l = m.Service.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveServiceRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveServiceResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *ListServicesRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListServicesRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Runtimes) > 0 {
+		for _, s := range m.Runtimes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListServicesResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Services) > 0 {
+		for _, e := range m.Services {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *CreateNetworkRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *CreateNetworkResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Network != nil {
+		l = m.Network.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetNetworkRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetNetworkResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Network != nil {
+		l = m.Network.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveNetworkRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveNetworkResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *ListNetworksRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListNetworksRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListNetworksResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *GetClusterRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ClusterID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetClusterResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		l = m.Cluster.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListClustersRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListClustersRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListClustersResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Clusters) > 0 {
+		for _, e := range m.Clusters {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *KeyRotation) Size() (n int) {
+	var l int
+	_ = l
+	if m.WorkerJoinToken {
+		n += 2
+	}
+	if m.ManagerJoinToken {
+		n += 2
+	}
+	if m.ManagerUnlockKey {
+		n += 2
+	}
+	return n
+}
+
+func (m *UpdateClusterRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ClusterID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.ClusterVersion != nil {
+		l = m.ClusterVersion.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	l = m.Rotation.Size()
+	n += 1 + l + sovControl(uint64(l))
+	return n
+}
+
+func (m *UpdateClusterResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		l = m.Cluster.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetSecretRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SecretID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetSecretResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateSecretRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SecretID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.SecretVersion != nil {
+		l = m.SecretVersion.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateSecretResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListSecretsRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListSecretsRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListSecretsResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Secrets) > 0 {
+		for _, e := range m.Secrets {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *CreateSecretRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *CreateSecretResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveSecretRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SecretID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveSecretResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *GetConfigRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ConfigID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *GetConfigResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateConfigRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ConfigID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.ConfigVersion != nil {
+		l = m.ConfigVersion.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateConfigResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListConfigsRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Filters != nil {
+		l = m.Filters.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *ListConfigsRequest_Filters) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Names) > 0 {
+		for _, s := range m.Names {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.IDPrefixes) > 0 {
+		for _, s := range m.IDPrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovControl(uint64(len(k))) + 1 + len(v) + sovControl(uint64(len(v)))
+			n += mapEntrySize + 1 + sovControl(uint64(mapEntrySize))
+		}
+	}
+	if len(m.NamePrefixes) > 0 {
+		for _, s := range m.NamePrefixes {
+			l = len(s)
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListConfigsResponse) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Configs) > 0 {
+		for _, e := range m.Configs {
+			l = e.Size()
+			n += 1 + l + sovControl(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *CreateConfigRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *CreateConfigResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveConfigRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ConfigID)
+	if l > 0 {
+		n += 1 + l + sovControl(uint64(l))
+	}
+	return n
+}
+
+func (m *RemoveConfigResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func sovControl(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozControl(x uint64) (n int) {
+	return sovControl(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *GetNodeRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetNodeRequest{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetNodeResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetNodeResponse{`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "Node", "Node", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNodesRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListNodesRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListNodesRequest_Filters", "ListNodesRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNodesRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListNodesRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`Memberships:` + fmt.Sprintf("%v", this.Memberships) + `,`,
+		`Roles:` + fmt.Sprintf("%v", this.Roles) + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNodesResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListNodesResponse{`,
+		`Nodes:` + strings.Replace(fmt.Sprintf("%v", this.Nodes), "Node", "Node", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateNodeRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateNodeRequest{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`NodeVersion:` + strings.Replace(fmt.Sprintf("%v", this.NodeVersion), "Version", "Version", 1) + `,`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "NodeSpec", "NodeSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateNodeResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateNodeResponse{`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "Node", "Node", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveNodeRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveNodeRequest{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`Force:` + fmt.Sprintf("%v", this.Force) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveNodeResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveNodeResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetTaskRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetTaskRequest{`,
+		`TaskID:` + fmt.Sprintf("%v", this.TaskID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetTaskResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetTaskResponse{`,
+		`Task:` + strings.Replace(fmt.Sprintf("%v", this.Task), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveTaskRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveTaskRequest{`,
+		`TaskID:` + fmt.Sprintf("%v", this.TaskID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveTaskResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveTaskResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListTasksRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListTasksRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListTasksRequest_Filters", "ListTasksRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListTasksRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListTasksRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`ServiceIDs:` + fmt.Sprintf("%v", this.ServiceIDs) + `,`,
+		`NodeIDs:` + fmt.Sprintf("%v", this.NodeIDs) + `,`,
+		`DesiredStates:` + fmt.Sprintf("%v", this.DesiredStates) + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`UpToDate:` + fmt.Sprintf("%v", this.UpToDate) + `,`,
+		`Runtimes:` + fmt.Sprintf("%v", this.Runtimes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListTasksResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListTasksResponse{`,
+		`Tasks:` + strings.Replace(fmt.Sprintf("%v", this.Tasks), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateServiceRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateServiceRequest{`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "ServiceSpec", "ServiceSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateServiceResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateServiceResponse{`,
+		`Service:` + strings.Replace(fmt.Sprintf("%v", this.Service), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetServiceRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetServiceRequest{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`InsertDefaults:` + fmt.Sprintf("%v", this.InsertDefaults) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetServiceResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetServiceResponse{`,
+		`Service:` + strings.Replace(fmt.Sprintf("%v", this.Service), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateServiceRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateServiceRequest{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`ServiceVersion:` + strings.Replace(fmt.Sprintf("%v", this.ServiceVersion), "Version", "Version", 1) + `,`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "ServiceSpec", "ServiceSpec", 1) + `,`,
+		`Rollback:` + fmt.Sprintf("%v", this.Rollback) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateServiceResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateServiceResponse{`,
+		`Service:` + strings.Replace(fmt.Sprintf("%v", this.Service), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveServiceRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveServiceRequest{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveServiceResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveServiceResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListServicesRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListServicesRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListServicesRequest_Filters", "ListServicesRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListServicesRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListServicesRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`Runtimes:` + fmt.Sprintf("%v", this.Runtimes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListServicesResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListServicesResponse{`,
+		`Services:` + strings.Replace(fmt.Sprintf("%v", this.Services), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateNetworkRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateNetworkRequest{`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "NetworkSpec", "NetworkSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateNetworkResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateNetworkResponse{`,
+		`Network:` + strings.Replace(fmt.Sprintf("%v", this.Network), "Network", "Network", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetNetworkRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetNetworkRequest{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetNetworkResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetNetworkResponse{`,
+		`Network:` + strings.Replace(fmt.Sprintf("%v", this.Network), "Network", "Network", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveNetworkRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveNetworkRequest{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveNetworkResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveNetworkResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNetworksRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListNetworksRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListNetworksRequest_Filters", "ListNetworksRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNetworksRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListNetworksRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListNetworksResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListNetworksResponse{`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "Network", "Network", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetClusterRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetClusterRequest{`,
+		`ClusterID:` + fmt.Sprintf("%v", this.ClusterID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetClusterResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetClusterResponse{`,
+		`Cluster:` + strings.Replace(fmt.Sprintf("%v", this.Cluster), "Cluster", "Cluster", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListClustersRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListClustersRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListClustersRequest_Filters", "ListClustersRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListClustersRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListClustersRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListClustersResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListClustersResponse{`,
+		`Clusters:` + strings.Replace(fmt.Sprintf("%v", this.Clusters), "Cluster", "Cluster", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *KeyRotation) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&KeyRotation{`,
+		`WorkerJoinToken:` + fmt.Sprintf("%v", this.WorkerJoinToken) + `,`,
+		`ManagerJoinToken:` + fmt.Sprintf("%v", this.ManagerJoinToken) + `,`,
+		`ManagerUnlockKey:` + fmt.Sprintf("%v", this.ManagerUnlockKey) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateClusterRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateClusterRequest{`,
+		`ClusterID:` + fmt.Sprintf("%v", this.ClusterID) + `,`,
+		`ClusterVersion:` + strings.Replace(fmt.Sprintf("%v", this.ClusterVersion), "Version", "Version", 1) + `,`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "ClusterSpec", "ClusterSpec", 1) + `,`,
+		`Rotation:` + strings.Replace(strings.Replace(this.Rotation.String(), "KeyRotation", "KeyRotation", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateClusterResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateClusterResponse{`,
+		`Cluster:` + strings.Replace(fmt.Sprintf("%v", this.Cluster), "Cluster", "Cluster", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetSecretRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetSecretRequest{`,
+		`SecretID:` + fmt.Sprintf("%v", this.SecretID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetSecretResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetSecretResponse{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateSecretRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateSecretRequest{`,
+		`SecretID:` + fmt.Sprintf("%v", this.SecretID) + `,`,
+		`SecretVersion:` + strings.Replace(fmt.Sprintf("%v", this.SecretVersion), "Version", "Version", 1) + `,`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "SecretSpec", "SecretSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateSecretResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateSecretResponse{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListSecretsRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListSecretsRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListSecretsRequest_Filters", "ListSecretsRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListSecretsRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListSecretsRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListSecretsResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListSecretsResponse{`,
+		`Secrets:` + strings.Replace(fmt.Sprintf("%v", this.Secrets), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateSecretRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateSecretRequest{`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "SecretSpec", "SecretSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateSecretResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateSecretResponse{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveSecretRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveSecretRequest{`,
+		`SecretID:` + fmt.Sprintf("%v", this.SecretID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveSecretResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveSecretResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetConfigRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetConfigRequest{`,
+		`ConfigID:` + fmt.Sprintf("%v", this.ConfigID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GetConfigResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GetConfigResponse{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateConfigRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateConfigRequest{`,
+		`ConfigID:` + fmt.Sprintf("%v", this.ConfigID) + `,`,
+		`ConfigVersion:` + strings.Replace(fmt.Sprintf("%v", this.ConfigVersion), "Version", "Version", 1) + `,`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "ConfigSpec", "ConfigSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateConfigResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateConfigResponse{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListConfigsRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListConfigsRequest{`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "ListConfigsRequest_Filters", "ListConfigsRequest_Filters", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListConfigsRequest_Filters) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ListConfigsRequest_Filters{`,
+		`Names:` + fmt.Sprintf("%v", this.Names) + `,`,
+		`IDPrefixes:` + fmt.Sprintf("%v", this.IDPrefixes) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`NamePrefixes:` + fmt.Sprintf("%v", this.NamePrefixes) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListConfigsResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListConfigsResponse{`,
+		`Configs:` + strings.Replace(fmt.Sprintf("%v", this.Configs), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateConfigRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateConfigRequest{`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "ConfigSpec", "ConfigSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CreateConfigResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CreateConfigResponse{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveConfigRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveConfigRequest{`,
+		`ConfigID:` + fmt.Sprintf("%v", this.ConfigID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RemoveConfigResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RemoveConfigResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringControl(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *GetNodeRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetNodeRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetNodeRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetNodeResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetNodeResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetNodeResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Node == nil {
+				m.Node = &Node{}
+			}
+			if err := m.Node.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNodesRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListNodesRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListNodesRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListNodesRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNodesRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType == 0 {
+				var v NodeSpec_Membership
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (NodeSpec_Membership(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Memberships = append(m.Memberships, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthControl
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v NodeSpec_Membership
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowControl
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (NodeSpec_Membership(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Memberships = append(m.Memberships, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Memberships", wireType)
+			}
+		case 5:
+			if wireType == 0 {
+				var v NodeRole
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (NodeRole(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Roles = append(m.Roles, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthControl
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v NodeRole
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowControl
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (NodeRole(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Roles = append(m.Roles, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Roles", wireType)
+			}
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNodesResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListNodesResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListNodesResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nodes", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Nodes = append(m.Nodes, &Node{})
+			if err := m.Nodes[len(m.Nodes)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateNodeRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateNodeRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateNodeRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.NodeVersion == nil {
+				m.NodeVersion = &Version{}
+			}
+			if err := m.NodeVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &NodeSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateNodeResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateNodeResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateNodeResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Node == nil {
+				m.Node = &Node{}
+			}
+			if err := m.Node.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveNodeRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveNodeRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveNodeRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Force", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Force = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveNodeResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveNodeResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveNodeResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetTaskRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetTaskRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetTaskRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetTaskResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetTaskResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetTaskResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Task", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Task == nil {
+				m.Task = &Task{}
+			}
+			if err := m.Task.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveTaskRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveTaskRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveTaskRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveTaskResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveTaskResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveTaskResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListTasksRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListTasksRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListTasksRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListTasksRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListTasksRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceIDs", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceIDs = append(m.ServiceIDs, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeIDs", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeIDs = append(m.NodeIDs, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 6:
+			if wireType == 0 {
+				var v TaskState
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (TaskState(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.DesiredStates = append(m.DesiredStates, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthControl
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v TaskState
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowControl
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (TaskState(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.DesiredStates = append(m.DesiredStates, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field DesiredStates", wireType)
+			}
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UpToDate", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.UpToDate = bool(v != 0)
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Runtimes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Runtimes = append(m.Runtimes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListTasksResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListTasksResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListTasksResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Tasks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Tasks = append(m.Tasks, &Task{})
+			if err := m.Tasks[len(m.Tasks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateServiceRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateServiceRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateServiceRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &ServiceSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateServiceResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateServiceResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateServiceResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Service == nil {
+				m.Service = &Service{}
+			}
+			if err := m.Service.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetServiceRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetServiceRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetServiceRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field InsertDefaults", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.InsertDefaults = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetServiceResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetServiceResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetServiceResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Service == nil {
+				m.Service = &Service{}
+			}
+			if err := m.Service.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateServiceRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateServiceRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateServiceRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.ServiceVersion == nil {
+				m.ServiceVersion = &Version{}
+			}
+			if err := m.ServiceVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &ServiceSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Rollback", wireType)
+			}
+			m.Rollback = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Rollback |= (UpdateServiceRequest_Rollback(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateServiceResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateServiceResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateServiceResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Service == nil {
+				m.Service = &Service{}
+			}
+			if err := m.Service.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveServiceRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveServiceRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveServiceRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveServiceResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveServiceResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveServiceResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListServicesRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListServicesRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListServicesRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListServicesRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListServicesRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Runtimes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Runtimes = append(m.Runtimes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListServicesResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListServicesResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListServicesResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Services", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Services = append(m.Services, &Service{})
+			if err := m.Services[len(m.Services)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateNetworkRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateNetworkRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateNetworkRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &NetworkSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateNetworkResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateNetworkResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateNetworkResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Network == nil {
+				m.Network = &Network{}
+			}
+			if err := m.Network.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetNetworkRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetNetworkRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetNetworkRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetNetworkResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetNetworkResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetNetworkResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Network == nil {
+				m.Network = &Network{}
+			}
+			if err := m.Network.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveNetworkRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveNetworkRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveNetworkRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveNetworkResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveNetworkResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveNetworkResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNetworksRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListNetworksRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListNetworksRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListNetworksRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNetworksRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListNetworksResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListNetworksResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListNetworksResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &Network{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetClusterRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetClusterRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetClusterRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ClusterID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ClusterID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetClusterResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetClusterResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetClusterResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Cluster", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Cluster == nil {
+				m.Cluster = &Cluster{}
+			}
+			if err := m.Cluster.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListClustersRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListClustersRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListClustersRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListClustersRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListClustersRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListClustersResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListClustersResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListClustersResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Clusters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Clusters = append(m.Clusters, &Cluster{})
+			if err := m.Clusters[len(m.Clusters)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *KeyRotation) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: KeyRotation: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: KeyRotation: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field WorkerJoinToken", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.WorkerJoinToken = bool(v != 0)
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ManagerJoinToken", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.ManagerJoinToken = bool(v != 0)
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ManagerUnlockKey", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.ManagerUnlockKey = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateClusterRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateClusterRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateClusterRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ClusterID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ClusterID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ClusterVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.ClusterVersion == nil {
+				m.ClusterVersion = &Version{}
+			}
+			if err := m.ClusterVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &ClusterSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Rotation", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Rotation.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateClusterResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateClusterResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateClusterResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Cluster", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Cluster == nil {
+				m.Cluster = &Cluster{}
+			}
+			if err := m.Cluster.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetSecretRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetSecretRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetSecretRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SecretID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetSecretResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetSecretResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetSecretResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Secret == nil {
+				m.Secret = &Secret{}
+			}
+			if err := m.Secret.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateSecretRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateSecretRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateSecretRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SecretID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.SecretVersion == nil {
+				m.SecretVersion = &Version{}
+			}
+			if err := m.SecretVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &SecretSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateSecretResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateSecretResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateSecretResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Secret == nil {
+				m.Secret = &Secret{}
+			}
+			if err := m.Secret.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListSecretsRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListSecretsRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListSecretsRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListSecretsRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListSecretsRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListSecretsResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListSecretsResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListSecretsResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secrets", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Secrets = append(m.Secrets, &Secret{})
+			if err := m.Secrets[len(m.Secrets)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateSecretRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateSecretRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateSecretRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &SecretSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateSecretResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateSecretResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateSecretResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Secret == nil {
+				m.Secret = &Secret{}
+			}
+			if err := m.Secret.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveSecretRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveSecretRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveSecretRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SecretID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveSecretResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveSecretResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveSecretResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetConfigRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetConfigRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetConfigRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GetConfigResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GetConfigResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GetConfigResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Config == nil {
+				m.Config = &Config{}
+			}
+			if err := m.Config.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateConfigRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateConfigRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateConfigRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.ConfigVersion == nil {
+				m.ConfigVersion = &Version{}
+			}
+			if err := m.ConfigVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &ConfigSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateConfigResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateConfigResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateConfigResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Config == nil {
+				m.Config = &Config{}
+			}
+			if err := m.Config.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListConfigsRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListConfigsRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListConfigsRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Filters == nil {
+				m.Filters = &ListConfigsRequest_Filters{}
+			}
+			if err := m.Filters.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListConfigsRequest_Filters) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Filters: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Filters: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Names", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Names = append(m.Names, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.IDPrefixes = append(m.IDPrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthControl
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthControl
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefixes", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NamePrefixes = append(m.NamePrefixes, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListConfigsResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListConfigsResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListConfigsResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Configs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Configs = append(m.Configs, &Config{})
+			if err := m.Configs[len(m.Configs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateConfigRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateConfigRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateConfigRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &ConfigSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CreateConfigResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CreateConfigResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CreateConfigResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Config == nil {
+				m.Config = &Config{}
+			}
+			if err := m.Config.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveConfigRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveConfigRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveConfigRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthControl
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RemoveConfigResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RemoveConfigResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RemoveConfigResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipControl(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthControl
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipControl(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowControl
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowControl
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthControl
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowControl
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipControl(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthControl = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowControl   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/control.proto", fileDescriptorControl) }
+
+var fileDescriptorControl = []byte{
+	// 2137 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x5a, 0x4f, 0x73, 0x1b, 0x49,
+	0x15, 0xb7, 0xfe, 0xd8, 0x92, 0x9f, 0x6c, 0xd9, 0xee, 0x38, 0xa0, 0x52, 0x82, 0x9d, 0x9a, 0x90,
+	0x44, 0xd9, 0x32, 0x12, 0xab, 0xb0, 0x6c, 0x58, 0x8a, 0x3f, 0x6b, 0x3b, 0x9b, 0xd5, 0x7a, 0xe3,
+	0xa4, 0xc6, 0xc9, 0x16, 0x37, 0x95, 0x2c, 0xb5, 0xbd, 0x13, 0xc9, 0x1a, 0x31, 0x33, 0xf2, 0xae,
+	0x8b, 0x0b, 0x50, 0xcb, 0x81, 0x0f, 0x40, 0x15, 0x57, 0xae, 0x1c, 0x38, 0x70, 0xe2, 0xc0, 0x07,
+	0x48, 0x71, 0xe2, 0xc8, 0xc9, 0xb0, 0xaa, 0x82, 0xe2, 0xc4, 0x67, 0xa0, 0xba, 0xfb, 0xf5, 0xfc,
+	0x53, 0xcf, 0x8c, 0x24, 0xab, 0xca, 0x39, 0x59, 0xd3, 0xf3, 0x7b, 0xfd, 0x5e, 0xf7, 0xfb, 0xf5,
+	0x6f, 0xba, 0x5f, 0x1b, 0x76, 0x4e, 0x0d, 0xe7, 0xf3, 0xe1, 0x71, 0xb5, 0x6d, 0x9e, 0xd5, 0x3a,
+	0x66, 0xbb, 0x4b, 0xad, 0x9a, 0xfd, 0x45, 0xcb, 0x3a, 0xeb, 0x1a, 0x4e, 0xad, 0x35, 0x30, 0x6a,
+	0x6d, 0xb3, 0xef, 0x58, 0x66, 0xaf, 0x3a, 0xb0, 0x4c, 0xc7, 0x24, 0x44, 0x40, 0xaa, 0x12, 0x52,
+	0x3d, 0x7f, 0xb7, 0xfc, 0x4e, 0x42, 0x0f, 0xf6, 0x80, 0xb6, 0x6d, 0x61, 0x5f, 0x4e, 0xf2, 0x66,
+	0x1e, 0xbf, 0xa6, 0x6d, 0x47, 0xa2, 0x93, 0x7a, 0x76, 0x2e, 0x06, 0x54, 0x62, 0x37, 0x4f, 0xcd,
+	0x53, 0x93, 0xff, 0xac, 0xb1, 0x5f, 0xd8, 0xfa, 0x7e, 0x4c, 0x0f, 0x1c, 0x71, 0x3c, 0x3c, 0xa9,
+	0x0d, 0x7a, 0xc3, 0x53, 0xa3, 0x8f, 0x7f, 0x84, 0xa1, 0xf6, 0x1e, 0x14, 0x9f, 0x52, 0xe7, 0xd0,
+	0xec, 0x50, 0x9d, 0xfe, 0x7c, 0x48, 0x6d, 0x87, 0xdc, 0x85, 0x5c, 0xdf, 0xec, 0xd0, 0xa6, 0xd1,
+	0x29, 0xa5, 0xee, 0xa4, 0x2a, 0xcb, 0xbb, 0x30, 0xba, 0xdc, 0x5e, 0x62, 0x88, 0xc6, 0xbe, 0xbe,
+	0xc4, 0x5e, 0x35, 0x3a, 0xda, 0x4f, 0x60, 0xcd, 0x35, 0xb3, 0x07, 0x66, 0xdf, 0xa6, 0x64, 0x07,
+	0xb2, 0xec, 0x25, 0x37, 0x2a, 0xd4, 0x4b, 0xd5, 0xf1, 0x19, 0xac, 0x72, 0x3c, 0x47, 0x69, 0xff,
+	0xc9, 0xc0, 0xfa, 0xa7, 0x86, 0xcd, 0xbb, 0xb0, 0xa5, 0xeb, 0x8f, 0x20, 0x77, 0x62, 0xf4, 0x1c,
+	0x6a, 0xd9, 0xd8, 0xcb, 0x8e, 0xaa, 0x97, 0xb0, 0x59, 0xf5, 0x23, 0x61, 0xa3, 0x4b, 0xe3, 0xf2,
+	0x6f, 0x33, 0x90, 0xc3, 0x46, 0xb2, 0x09, 0x8b, 0xfd, 0xd6, 0x19, 0x65, 0x3d, 0x66, 0x2a, 0xcb,
+	0xba, 0x78, 0x20, 0x35, 0x28, 0x18, 0x9d, 0xe6, 0xc0, 0xa2, 0x27, 0xc6, 0x97, 0xd4, 0x2e, 0xa5,
+	0xd9, 0xbb, 0xdd, 0xe2, 0xe8, 0x72, 0x1b, 0x1a, 0xfb, 0x2f, 0xb0, 0x55, 0x07, 0xa3, 0x23, 0x7f,
+	0x93, 0x17, 0xb0, 0xd4, 0x6b, 0x1d, 0xd3, 0x9e, 0x5d, 0xca, 0xdc, 0xc9, 0x54, 0x0a, 0xf5, 0xc7,
+	0xd3, 0x44, 0x56, 0xfd, 0x94, 0x9b, 0x3e, 0xe9, 0x3b, 0xd6, 0x85, 0x8e, 0xfd, 0x90, 0x67, 0x50,
+	0x38, 0xa3, 0x67, 0xc7, 0xd4, 0xb2, 0x3f, 0x37, 0x06, 0x76, 0x29, 0x7b, 0x27, 0x53, 0x29, 0xd6,
+	0x1f, 0x44, 0x4d, 0xdb, 0xd1, 0x80, 0xb6, 0xab, 0xcf, 0x5c, 0xfc, 0x6e, 0x7a, 0x7d, 0x41, 0xf7,
+	0xdb, 0x93, 0xef, 0xc3, 0xa2, 0x65, 0xf6, 0xa8, 0x5d, 0x5a, 0xe4, 0x1d, 0xdd, 0x8e, 0x9c, 0x7f,
+	0xb3, 0x47, 0xb9, 0xb5, 0x80, 0x93, 0xbb, 0xb0, 0xca, 0xa6, 0xc4, 0x9b, 0x8b, 0x25, 0x3e, 0x4f,
+	0x2b, 0xac, 0x51, 0x8e, 0xbe, 0xfc, 0x03, 0x28, 0xf8, 0x86, 0x40, 0xd6, 0x21, 0xd3, 0xa5, 0x17,
+	0x82, 0x1e, 0x3a, 0xfb, 0xc9, 0x66, 0xf9, 0xbc, 0xd5, 0x1b, 0xd2, 0x52, 0x9a, 0xb7, 0x89, 0x87,
+	0x0f, 0xd2, 0x8f, 0x53, 0xda, 0x1e, 0x6c, 0xf8, 0xa6, 0x05, 0xb9, 0x52, 0x85, 0x45, 0xc6, 0x02,
+	0x91, 0x94, 0x38, 0xb2, 0x08, 0x98, 0xf6, 0xc7, 0x14, 0x6c, 0xbc, 0x1a, 0x74, 0x5a, 0x0e, 0x9d,
+	0x96, 0xa9, 0xe4, 0xc7, 0xb0, 0xc2, 0x41, 0xe7, 0xd4, 0xb2, 0x0d, 0xb3, 0xcf, 0x03, 0x2c, 0xd4,
+	0x6f, 0xa9, 0x3c, 0x7e, 0x26, 0x20, 0x7a, 0x81, 0x19, 0xe0, 0x03, 0xf9, 0x2e, 0x64, 0xd9, 0xc2,
+	0x2e, 0x65, 0xb8, 0xdd, 0xed, 0xb8, 0xfc, 0xe8, 0x1c, 0xa9, 0xed, 0x02, 0xf1, 0xc7, 0x3a, 0xd3,
+	0xf2, 0x38, 0x84, 0x0d, 0x9d, 0x9e, 0x99, 0xe7, 0xd3, 0x8f, 0x77, 0x13, 0x16, 0x4f, 0x4c, 0xab,
+	0x2d, 0x32, 0x91, 0xd7, 0xc5, 0x83, 0xb6, 0x09, 0xc4, 0xdf, 0x9f, 0x88, 0x09, 0x17, 0xff, 0xcb,
+	0x96, 0xdd, 0xf5, 0xb9, 0x70, 0x5a, 0x76, 0x37, 0xe4, 0x82, 0x21, 0x98, 0x0b, 0xf6, 0xca, 0x5d,
+	0xfc, 0xc2, 0xcc, 0x1b, 0x1d, 0x7b, 0x19, 0x37, 0x3a, 0x8e, 0xe7, 0x28, 0xed, 0xb1, 0x1c, 0xdd,
+	0xd4, 0xae, 0xdd, 0x71, 0xf8, 0xbd, 0x6b, 0x7f, 0xcd, 0x0a, 0x31, 0x61, 0x8d, 0x33, 0x88, 0x89,
+	0xdf, 0x6c, 0x5c, 0x4c, 0xfe, 0x79, 0x8d, 0x62, 0xa2, 0x8a, 0x4c, 0x29, 0x26, 0x35, 0x28, 0xd8,
+	0xd4, 0x3a, 0x37, 0xda, 0x8c, 0x1d, 0x42, 0x4c, 0x30, 0x84, 0x23, 0xd1, 0xdc, 0xd8, 0xb7, 0x75,
+	0x40, 0x48, 0xa3, 0x63, 0x93, 0xfb, 0x90, 0x47, 0x2e, 0x09, 0xc5, 0x58, 0xde, 0x2d, 0x8c, 0x2e,
+	0xb7, 0x73, 0x82, 0x4c, 0xb6, 0x9e, 0x13, 0x6c, 0xb2, 0xc9, 0xc7, 0x50, 0xec, 0x50, 0xdb, 0xb0,
+	0x68, 0xa7, 0x69, 0x3b, 0x2d, 0x07, 0xf5, 0xa1, 0x58, 0xff, 0x56, 0x54, 0x8a, 0x8f, 0x18, 0x8a,
+	0x0b, 0xcc, 0x2a, 0x1a, 0xf2, 0x16, 0x85, 0xd0, 0xe4, 0xc6, 0x85, 0x86, 0xdc, 0x06, 0x18, 0x0e,
+	0x9a, 0x8e, 0xd9, 0x64, 0xeb, 0xa7, 0x94, 0xe7, 0x14, 0xce, 0x0f, 0x07, 0x2f, 0xcd, 0xfd, 0x96,
+	0x43, 0x49, 0x19, 0xf2, 0xd6, 0xb0, 0xef, 0x18, 0x2c, 0x03, 0xcb, 0xdc, 0xda, 0x7d, 0x9e, 0x83,
+	0x44, 0xe1, 0x64, 0x7b, 0x12, 0xc5, 0x38, 0x17, 0x2b, 0x51, 0x9c, 0x84, 0x02, 0xa6, 0x1d, 0xc0,
+	0xe6, 0x9e, 0x45, 0x5b, 0x0e, 0xc5, 0x09, 0x97, 0x34, 0x7c, 0x84, 0xfa, 0x21, 0x38, 0xb8, 0xad,
+	0xea, 0x06, 0x2d, 0x7c, 0x12, 0x72, 0x08, 0x37, 0x43, 0x9d, 0x61, 0x54, 0xef, 0x41, 0x0e, 0x93,
+	0x88, 0x1d, 0xde, 0x8a, 0xe9, 0x50, 0x97, 0x58, 0xed, 0x35, 0x6c, 0x3c, 0xa5, 0x4e, 0x28, 0xb2,
+	0x1d, 0x00, 0x8f, 0x33, 0xb8, 0xe6, 0x56, 0x47, 0x97, 0xdb, 0xcb, 0x2e, 0x65, 0xf4, 0x65, 0x97,
+	0x31, 0xe4, 0x01, 0xac, 0x19, 0x7d, 0x9b, 0x5a, 0x4e, 0xb3, 0x43, 0x4f, 0x5a, 0xc3, 0x9e, 0x63,
+	0xa3, 0xc2, 0x14, 0x45, 0xf3, 0x3e, 0xb6, 0x6a, 0x07, 0x40, 0xfc, 0xbe, 0xae, 0x16, 0xf8, 0x9f,
+	0xd3, 0xb0, 0x29, 0xc4, 0xf4, 0x4a, 0xc1, 0xef, 0xc3, 0x9a, 0x44, 0x4f, 0xf1, 0x1d, 0x28, 0xa2,
+	0x8d, 0xfc, 0x14, 0x3c, 0x0a, 0x7c, 0x0a, 0x26, 0x4b, 0x25, 0x79, 0x06, 0x79, 0xcb, 0xec, 0xf5,
+	0x8e, 0x5b, 0xed, 0x6e, 0x29, 0x7b, 0x27, 0x55, 0x29, 0xd6, 0xdf, 0x55, 0x19, 0xaa, 0x06, 0x59,
+	0xd5, 0xd1, 0x50, 0x77, 0xbb, 0xd0, 0x34, 0xc8, 0xcb, 0x56, 0x92, 0x87, 0xec, 0xe1, 0xf3, 0xc3,
+	0x27, 0xeb, 0x0b, 0x64, 0x05, 0xf2, 0x2f, 0xf4, 0x27, 0x9f, 0x35, 0x9e, 0xbf, 0x3a, 0x5a, 0x4f,
+	0x31, 0xf6, 0x84, 0xba, 0xbb, 0x5a, 0x12, 0xf6, 0x61, 0x53, 0x88, 0xee, 0x55, 0x72, 0xa0, 0x7d,
+	0x13, 0x6e, 0x86, 0x7a, 0x41, 0xf5, 0xfe, 0x2a, 0x03, 0x37, 0xd8, 0xfa, 0xc3, 0x76, 0x57, 0xc0,
+	0x1b, 0x61, 0x01, 0xaf, 0x45, 0xc9, 0x64, 0xc8, 0x72, 0x5c, 0xc3, 0xff, 0x90, 0x9e, 0xbb, 0x86,
+	0x1f, 0x85, 0x34, 0xfc, 0x87, 0x53, 0x06, 0xa7, 0x94, 0xf1, 0x31, 0x8d, 0xcc, 0x2a, 0x34, 0xd2,
+	0xaf, 0x82, 0x8b, 0xf3, 0x53, 0xc1, 0xe7, 0xb0, 0x19, 0x0c, 0x17, 0x49, 0xf3, 0x3e, 0xe4, 0x31,
+	0x89, 0x52, 0x0b, 0x63, 0x59, 0xe3, 0x82, 0x3d, 0x45, 0x3c, 0xa4, 0xce, 0x17, 0xa6, 0xd5, 0x9d,
+	0x42, 0x11, 0xd1, 0x42, 0xa5, 0x88, 0x6e, 0x67, 0x1e, 0xa7, 0xfb, 0xa2, 0x29, 0x8e, 0xd3, 0xd2,
+	0x4a, 0x62, 0xb5, 0x57, 0x5c, 0x11, 0x43, 0x91, 0x11, 0xc8, 0xb2, 0x99, 0xc6, 0xf9, 0xe2, 0xbf,
+	0x19, 0xc9, 0xd1, 0x86, 0x91, 0x3c, 0xed, 0x91, 0x1c, 0x6d, 0x19, 0xc9, 0x11, 0xd0, 0xe8, 0xa0,
+	0xf8, 0xcd, 0x29, 0xc6, 0x9f, 0xc9, 0x75, 0x37, 0xf7, 0x30, 0xdd, 0xb5, 0x18, 0x8a, 0x54, 0xfb,
+	0x6f, 0x5a, 0xac, 0x45, 0x6c, 0x9f, 0x61, 0x2d, 0x86, 0x2c, 0xc7, 0xd7, 0xe2, 0x6f, 0xae, 0x71,
+	0x2d, 0x46, 0x04, 0x37, 0xf3, 0x5a, 0x9c, 0xc3, 0x7a, 0xf3, 0x42, 0xf2, 0xd6, 0x1b, 0x26, 0x2a,
+	0x76, 0xbd, 0xc9, 0xcc, 0xb9, 0x60, 0xed, 0x43, 0x4e, 0xe9, 0xbd, 0xde, 0xd0, 0x76, 0xa8, 0xe5,
+	0xd3, 0xe8, 0xb6, 0x68, 0x09, 0x69, 0x34, 0xe2, 0x18, 0x2f, 0x10, 0xe0, 0xd2, 0xd7, 0xed, 0xc2,
+	0xa3, 0x2f, 0x42, 0xe2, 0xe8, 0x2b, 0xad, 0x24, 0xd6, 0xe5, 0x12, 0xbe, 0x98, 0x81, 0x4b, 0x21,
+	0xcb, 0xb7, 0x8b, 0x4b, 0x11, 0xc1, 0x5d, 0x27, 0x97, 0xbc, 0x90, 0x3c, 0x2e, 0x61, 0x36, 0x62,
+	0xb9, 0x24, 0x53, 0xe7, 0x82, 0xb5, 0xdf, 0xa5, 0xa0, 0x70, 0x40, 0x2f, 0x74, 0xd3, 0x69, 0x39,
+	0x6c, 0xeb, 0xf3, 0x0e, 0x6c, 0x30, 0x92, 0x51, 0xab, 0xf9, 0xda, 0x34, 0xfa, 0x4d, 0xc7, 0xec,
+	0xd2, 0x3e, 0x0f, 0x2d, 0xaf, 0xaf, 0x89, 0x17, 0x9f, 0x98, 0x46, 0xff, 0x25, 0x6b, 0x26, 0x3b,
+	0x40, 0xce, 0x5a, 0xfd, 0xd6, 0x69, 0x10, 0x2c, 0x36, 0x8b, 0xeb, 0xf8, 0x46, 0x89, 0x1e, 0xf6,
+	0x7b, 0x66, 0xbb, 0xdb, 0x64, 0xa3, 0xce, 0x04, 0xd0, 0xaf, 0xf8, 0x8b, 0x03, 0x7a, 0xa1, 0xfd,
+	0xda, 0xdd, 0x0f, 0x5e, 0x85, 0xe7, 0x6c, 0x3f, 0x28, 0xd1, 0xd3, 0xec, 0x07, 0xd1, 0x66, 0x8a,
+	0xfd, 0x20, 0x7a, 0xf7, 0xed, 0x07, 0x3f, 0x64, 0xfb, 0x41, 0x31, 0xab, 0x7c, 0x3f, 0x18, 0x61,
+	0xe8, 0x9b, 0xfc, 0xdd, 0xec, 0x9b, 0xcb, 0xed, 0x05, 0xdd, 0x35, 0xf3, 0xf6, 0x77, 0x73, 0x5a,
+	0xa8, 0x3f, 0x82, 0x75, 0xbe, 0x63, 0x6f, 0x5b, 0xd4, 0x91, 0xf3, 0xf9, 0x10, 0x96, 0x6d, 0xde,
+	0xe0, 0x4d, 0xe7, 0xca, 0xe8, 0x72, 0x3b, 0x2f, 0x50, 0x8d, 0x7d, 0xf6, 0x9d, 0xe7, 0xbf, 0x3a,
+	0xda, 0x53, 0x3c, 0x5c, 0x08, 0x73, 0x0c, 0xa5, 0x0e, 0x4b, 0x02, 0x80, 0x91, 0x94, 0xd5, 0x7b,
+	0x06, 0x6e, 0x83, 0x48, 0xed, 0x2f, 0x29, 0xb8, 0x21, 0x37, 0xae, 0xb3, 0xc5, 0x42, 0x76, 0xa1,
+	0x88, 0xd0, 0x29, 0xf2, 0xba, 0x2a, 0x4c, 0x64, 0x5a, 0xeb, 0x81, 0xb4, 0x6e, 0x45, 0x07, 0xee,
+	0xdb, 0x9e, 0x7c, 0xe2, 0x1d, 0x53, 0xae, 0x3c, 0x0d, 0xff, 0x4e, 0x03, 0x11, 0x3b, 0x31, 0xf6,
+	0xe8, 0xca, 0xe6, 0xc7, 0x61, 0xd9, 0xac, 0x46, 0xef, 0x38, 0xfd, 0x86, 0xe3, 0xaa, 0xf9, 0xd5,
+	0xfc, 0x55, 0x53, 0x0f, 0xa9, 0xe6, 0x07, 0xd3, 0xc5, 0x76, 0x2d, 0xa2, 0x79, 0x20, 0x8f, 0x1d,
+	0x18, 0x11, 0xa6, 0xec, 0x7b, 0xec, 0x90, 0xc4, 0x9b, 0x50, 0x32, 0xe3, 0x72, 0x26, 0xa1, 0x5a,
+	0x03, 0x6e, 0xc8, 0x13, 0xbb, 0x9f, 0xba, 0xf5, 0xc0, 0x5e, 0x77, 0x62, 0x2e, 0x05, 0xbb, 0xba,
+	0x02, 0x97, 0x7e, 0x0a, 0x37, 0xe4, 0xa1, 0x6b, 0xc6, 0xd5, 0xfd, 0x0d, 0xef, 0xf0, 0xe7, 0x8f,
+	0x06, 0x45, 0x63, 0xcf, 0xec, 0x9f, 0x18, 0xa7, 0xbe, 0x6e, 0xdb, 0xbc, 0x21, 0xd4, 0xad, 0x40,
+	0xb1, 0x6e, 0xc5, 0x6b, 0x57, 0x34, 0xa4, 0xb9, 0x37, 0x42, 0x01, 0x88, 0x1b, 0x21, 0xda, 0x20,
+	0xd2, 0x27, 0x1a, 0xb3, 0xc6, 0xc2, 0x44, 0x03, 0xa1, 0xd3, 0x88, 0x86, 0x30, 0x99, 0x42, 0x34,
+	0x84, 0x67, 0x95, 0x68, 0xcc, 0x61, 0x1a, 0xa4, 0x68, 0x88, 0xe6, 0x19, 0x44, 0x23, 0x68, 0xf8,
+	0x76, 0x89, 0x86, 0x3a, 0xb6, 0xeb, 0x14, 0x0d, 0x37, 0x22, 0x4f, 0x34, 0x44, 0x22, 0x62, 0x45,
+	0x03, 0x73, 0x26, 0xa1, 0x9e, 0x68, 0x04, 0xa9, 0x3b, 0x81, 0x68, 0xa8, 0xb8, 0x14, 0xec, 0xea,
+	0x0a, 0x5c, 0x72, 0x45, 0x63, 0xe6, 0xd5, 0xed, 0x8a, 0x46, 0x30, 0x9a, 0xfa, 0xaf, 0x6e, 0x41,
+	0x6e, 0x4f, 0x5c, 0xb4, 0x12, 0x03, 0x72, 0x78, 0x85, 0x48, 0x34, 0x55, 0x50, 0xc1, 0x6b, 0xc9,
+	0xf2, 0xdd, 0x58, 0x0c, 0x8a, 0xd2, 0xcd, 0xbf, 0xfd, 0xe9, 0x7f, 0xbf, 0x4f, 0xaf, 0xc1, 0x2a,
+	0x07, 0x7d, 0x07, 0xb7, 0x8f, 0xc4, 0x84, 0x65, 0xf7, 0x0e, 0x8a, 0x7c, 0x7b, 0x92, 0x9b, 0xbb,
+	0xf2, 0xbd, 0x04, 0x54, 0xbc, 0x43, 0x0b, 0xc0, 0xbb, 0x02, 0x22, 0xf7, 0xa2, 0x0b, 0x7e, 0xfe,
+	0x11, 0xde, 0x4f, 0x82, 0x25, 0xfa, 0xf4, 0xae, 0x78, 0xd4, 0x3e, 0xc7, 0xae, 0x94, 0xd4, 0x3e,
+	0x15, 0x37, 0x45, 0x11, 0x3e, 0x45, 0x0e, 0x5f, 0xb6, 0xec, 0x6e, 0x64, 0x0e, 0x7d, 0x57, 0x3c,
+	0x91, 0x39, 0x0c, 0x5c, 0xe6, 0xc4, 0xe7, 0x90, 0x17, 0xe9, 0xa3, 0x73, 0xe8, 0xbf, 0x30, 0x89,
+	0xce, 0x61, 0xa0, 0xd2, 0x9f, 0x38, 0x9f, 0x7c, 0x78, 0x31, 0xf3, 0xe9, 0x1f, 0xe1, 0xfd, 0x24,
+	0x58, 0xa2, 0x4f, 0xaf, 0x76, 0xae, 0xf6, 0x39, 0x56, 0xc7, 0x57, 0xfb, 0x1c, 0x2f, 0xc1, 0x47,
+	0xf9, 0xfc, 0x12, 0x56, 0xfc, 0x75, 0x3f, 0xf2, 0x60, 0xc2, 0x42, 0x66, 0xb9, 0x92, 0x0c, 0x8c,
+	0xf7, 0xfc, 0x0b, 0x58, 0x0d, 0xdc, 0x72, 0x10, 0x65, 0x8f, 0xaa, 0x5b, 0x95, 0xf2, 0xc3, 0x09,
+	0x90, 0x89, 0xce, 0x03, 0x45, 0x72, 0xb5, 0x73, 0x55, 0x59, 0x5e, 0xed, 0x5c, 0x59, 0x71, 0x8f,
+	0x71, 0x1e, 0xa8, 0x85, 0xab, 0x9d, 0xab, 0x8a, 0xee, 0x6a, 0xe7, 0xea, 0xc2, 0x7a, 0x2c, 0xc9,
+	0xb0, 0x7e, 0x14, 0x49, 0xb2, 0x60, 0xcd, 0x31, 0x92, 0x64, 0xe1, 0x02, 0x62, 0x3c, 0xc9, 0x64,
+	0xb1, 0x2b, 0x9a, 0x64, 0xa1, 0x0a, 0x5d, 0x34, 0xc9, 0xc2, 0x75, 0xb3, 0x44, 0x92, 0xc9, 0x01,
+	0xc7, 0x90, 0x2c, 0x34, 0xe6, 0x87, 0x13, 0x20, 0x27, 0xcc, 0x73, 0xac, 0x73, 0x55, 0x91, 0x37,
+	0x2e, 0xcf, 0x13, 0x3a, 0x17, 0x79, 0xc6, 0xd3, 0x7e, 0x64, 0x9e, 0x83, 0x75, 0x94, 0xc8, 0x3c,
+	0x87, 0x4a, 0x0d, 0x09, 0x79, 0x96, 0x85, 0xa8, 0xe8, 0x3c, 0x87, 0xaa, 0x67, 0xd1, 0x79, 0x0e,
+	0xd7, 0xb4, 0x12, 0xd7, 0xb3, 0x1c, 0x70, 0xcc, 0x7a, 0x0e, 0x8d, 0xf9, 0xe1, 0x04, 0xc8, 0xc4,
+	0x8f, 0x93, 0x5b, 0x02, 0x51, 0x7f, 0x9c, 0xc2, 0x05, 0x96, 0xf2, 0xbd, 0x04, 0x54, 0xe2, 0x3c,
+	0xfb, 0xeb, 0x0d, 0xea, 0x79, 0x56, 0xd4, 0x52, 0xca, 0x95, 0x64, 0x60, 0xbc, 0xe7, 0x21, 0x14,
+	0x7c, 0xa7, 0x66, 0x72, 0x7f, 0xb2, 0x83, 0x7e, 0xf9, 0x41, 0x22, 0x2e, 0x71, 0xc0, 0xfe, 0x43,
+	0xb1, 0x7a, 0xc0, 0x8a, 0x13, 0x78, 0xb9, 0x92, 0x0c, 0x4c, 0xf4, 0xec, 0x3f, 0x00, 0xab, 0x3d,
+	0x2b, 0x0e, 0xd9, 0xe5, 0x4a, 0x32, 0x70, 0x12, 0x56, 0x89, 0x2d, 0x74, 0x24, 0xab, 0x02, 0x7b,
+	0xf4, 0x48, 0x56, 0x05, 0xf7, 0xe1, 0x89, 0xac, 0x42, 0x9f, 0x31, 0xac, 0x0a, 0xba, 0xad, 0x24,
+	0x03, 0x27, 0x62, 0x15, 0x1e, 0xab, 0xa2, 0x59, 0x15, 0x3c, 0x09, 0x46, 0xb3, 0x2a, 0x74, 0x3e,
+	0x4b, 0x64, 0x55, 0xdc, 0x80, 0x15, 0x47, 0xb4, 0x38, 0x56, 0x4d, 0x3c, 0xd5, 0xfe, 0x13, 0x52,
+	0x1c, 0xab, 0x26, 0xf0, 0xac, 0x3a, 0x6c, 0x45, 0x78, 0xde, 0x2d, 0xbd, 0xf9, 0x7a, 0x6b, 0xe1,
+	0x1f, 0x5f, 0x6f, 0x2d, 0xfc, 0x72, 0xb4, 0x95, 0x7a, 0x33, 0xda, 0x4a, 0xfd, 0x7d, 0xb4, 0x95,
+	0xfa, 0xd7, 0x68, 0x2b, 0x75, 0xbc, 0xc4, 0xff, 0x25, 0xf4, 0xd1, 0xff, 0x03, 0x00, 0x00, 0xff,
+	0xff, 0x47, 0x18, 0x50, 0x6c, 0x2b, 0x2b, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/deepcopy/copy.go b/vendor/github.com/docker/swarmkit/api/deepcopy/copy.go
new file mode 100644
index 0000000000..64e370ca85
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/deepcopy/copy.go
@@ -0,0 +1,53 @@
+package deepcopy
+
+import (
+	"fmt"
+	"time"
+
+	"github.com/gogo/protobuf/types"
+)
+
+// CopierFrom can be implemented if an object knows how to copy another into itself.
+type CopierFrom interface {
+	// Copy takes the fields from src and copies them into the target object.
+	//
+	// Calling this method with a nil receiver or a nil src may panic.
+	CopyFrom(src interface{})
+}
+
+// Copy copies src into dst. dst and src must have the same type.
+//
+// If the type has a copy function defined, it will be used.
+//
+// Default implementations for builtin types and well known protobuf types may
+// be provided.
+//
+// If the copy cannot be performed, this function will panic. Make sure to test
+// types that use this function.
+func Copy(dst, src interface{}) {
+	switch dst := dst.(type) {
+	case *types.Any:
+		src := src.(*types.Any)
+		dst.TypeUrl = src.TypeUrl
+		if src.Value != nil {
+			dst.Value = make([]byte, len(src.Value))
+			copy(dst.Value, src.Value)
+		} else {
+			dst.Value = nil
+		}
+	case *types.Duration:
+		src := src.(*types.Duration)
+		*dst = *src
+	case *time.Duration:
+		src := src.(*time.Duration)
+		*dst = *src
+	case *types.Timestamp:
+		src := src.(*types.Timestamp)
+		*dst = *src
+	case CopierFrom:
+		dst.CopyFrom(src)
+	default:
+		panic(fmt.Sprintf("Copy for %T not implemented", dst))
+	}
+
+}
diff --git a/vendor/github.com/docker/swarmkit/api/dispatcher.pb.go b/vendor/github.com/docker/swarmkit/api/dispatcher.pb.go
new file mode 100644
index 0000000000..b22f69ef68
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/dispatcher.pb.go
@@ -0,0 +1,3851 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/dispatcher.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+import _ "github.com/gogo/protobuf/types"
+
+import time "time"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import github_com_gogo_protobuf_types "github.com/gogo/protobuf/types"
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+var _ = time.Kitchen
+
+type AssignmentChange_AssignmentAction int32
+
+const (
+	AssignmentChange_AssignmentActionUpdate AssignmentChange_AssignmentAction = 0
+	AssignmentChange_AssignmentActionRemove AssignmentChange_AssignmentAction = 1
+)
+
+var AssignmentChange_AssignmentAction_name = map[int32]string{
+	0: "UPDATE",
+	1: "REMOVE",
+}
+var AssignmentChange_AssignmentAction_value = map[string]int32{
+	"UPDATE": 0,
+	"REMOVE": 1,
+}
+
+func (x AssignmentChange_AssignmentAction) String() string {
+	return proto.EnumName(AssignmentChange_AssignmentAction_name, int32(x))
+}
+func (AssignmentChange_AssignmentAction) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDispatcher, []int{10, 0}
+}
+
+// AssignmentType specifies whether this assignment message carries
+// the full state, or is an update to an existing state.
+type AssignmentsMessage_Type int32
+
+const (
+	AssignmentsMessage_COMPLETE    AssignmentsMessage_Type = 0
+	AssignmentsMessage_INCREMENTAL AssignmentsMessage_Type = 1
+)
+
+var AssignmentsMessage_Type_name = map[int32]string{
+	0: "COMPLETE",
+	1: "INCREMENTAL",
+}
+var AssignmentsMessage_Type_value = map[string]int32{
+	"COMPLETE":    0,
+	"INCREMENTAL": 1,
+}
+
+func (x AssignmentsMessage_Type) String() string {
+	return proto.EnumName(AssignmentsMessage_Type_name, int32(x))
+}
+func (AssignmentsMessage_Type) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDispatcher, []int{11, 0}
+}
+
+// SessionRequest starts a session.
+type SessionRequest struct {
+	Description *NodeDescription `protobuf:"bytes,1,opt,name=description" json:"description,omitempty"`
+	// SessionID can be provided to attempt resuming an existing session. If the
+	// SessionID is empty or invalid, a new SessionID will be assigned.
+	//
+	// See SessionMessage.SessionID for details.
+	SessionID string `protobuf:"bytes,2,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+}
+
+func (m *SessionRequest) Reset()                    { *m = SessionRequest{} }
+func (*SessionRequest) ProtoMessage()               {}
+func (*SessionRequest) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{0} }
+
+// SessionMessage instructs an agent on various actions as part of the current
+// session. An agent should act immediately on the contents.
+type SessionMessage struct {
+	// SessionID is allocated after a successful registration. It should be
+	// used on all RPC calls after registration. A dispatcher may choose to
+	// change the SessionID, at which time an agent must re-register and obtain
+	// a new one.
+	//
+	// All Dispatcher calls after register should include the SessionID. If the
+	// Dispatcher so chooses, it may reject the call with an InvalidArgument
+	// error code, at which time the agent should call Register to start a new
+	// session.
+	//
+	// As a rule, once an agent has a SessionID, it should never save it to
+	// disk or try to otherwise reuse. If the agent loses its SessionID, it
+	// must start a new session through a call to Register. A Dispatcher may
+	// choose to reuse the SessionID, if it sees fit, but it is not advised.
+	//
+	// The actual implementation of the SessionID is Dispatcher specific and
+	// should be treated as opaque by agents.
+	//
+	// From a Dispatcher perspective, there are many ways to use the SessionID
+	// to ensure uniqueness of a set of client RPC calls. One method is to keep
+	// the SessionID unique to every call to Register in a single Dispatcher
+	// instance. This ensures that the SessionID represents the unique
+	// session from a single Agent to Manager. If the Agent restarts, we
+	// allocate a new session, since the restarted Agent is not aware of the
+	// new SessionID.
+	//
+	// The most compelling use case is to support duplicate node detection. If
+	// one clones a virtual machine, including certificate material, two nodes
+	// may end up with the same identity. This can also happen if two identical
+	// agent processes are coming from the same node. If the SessionID is
+	// replicated through the cluster, we can immediately detect the condition
+	// and address it.
+	//
+	// Extending from the case above, we can actually detect a compromised
+	// identity. Coupled with provisions to rebuild node identity, we can ban
+	// the compromised node identity and have the nodes re-authenticate and
+	// build a new identity. At this time, an administrator can then
+	// re-authorize the compromised nodes, if it was a mistake or ensure that a
+	// misbehaved node can no longer connect to the cluster.
+	//
+	// We considered placing this field in a GRPC header. Because this is a
+	// critical feature of the protocol, we thought it should be represented
+	// directly in the RPC message set.
+	SessionID string `protobuf:"bytes,1,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+	// Node identifies the registering node.
+	Node *Node `protobuf:"bytes,2,opt,name=node" json:"node,omitempty"`
+	// Managers provides a weight list of alternative dispatchers
+	Managers []*WeightedPeer `protobuf:"bytes,3,rep,name=managers" json:"managers,omitempty"`
+	// Symmetric encryption key distributed by the lead manager. Used by agents
+	// for securing network bootstrapping and communication.
+	NetworkBootstrapKeys []*EncryptionKey `protobuf:"bytes,4,rep,name=network_bootstrap_keys,json=networkBootstrapKeys" json:"network_bootstrap_keys,omitempty"`
+	// Which root certificates to trust
+	RootCA []byte `protobuf:"bytes,5,opt,name=RootCA,proto3" json:"RootCA,omitempty"`
+}
+
+func (m *SessionMessage) Reset()                    { *m = SessionMessage{} }
+func (*SessionMessage) ProtoMessage()               {}
+func (*SessionMessage) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{1} }
+
+// HeartbeatRequest provides identifying properties for a single heartbeat.
+type HeartbeatRequest struct {
+	SessionID string `protobuf:"bytes,1,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+}
+
+func (m *HeartbeatRequest) Reset()                    { *m = HeartbeatRequest{} }
+func (*HeartbeatRequest) ProtoMessage()               {}
+func (*HeartbeatRequest) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{2} }
+
+type HeartbeatResponse struct {
+	// Period is the duration to wait before sending the next heartbeat.
+	// Well-behaved agents should update this on every heartbeat round trip.
+	Period time.Duration `protobuf:"bytes,1,opt,name=period,stdduration" json:"period"`
+}
+
+func (m *HeartbeatResponse) Reset()                    { *m = HeartbeatResponse{} }
+func (*HeartbeatResponse) ProtoMessage()               {}
+func (*HeartbeatResponse) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{3} }
+
+type UpdateTaskStatusRequest struct {
+	// Tasks should contain all statuses for running tasks. Only the status
+	// field must be set. The spec is not required.
+	SessionID string                                      `protobuf:"bytes,1,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+	Updates   []*UpdateTaskStatusRequest_TaskStatusUpdate `protobuf:"bytes,3,rep,name=updates" json:"updates,omitempty"`
+}
+
+func (m *UpdateTaskStatusRequest) Reset()      { *m = UpdateTaskStatusRequest{} }
+func (*UpdateTaskStatusRequest) ProtoMessage() {}
+func (*UpdateTaskStatusRequest) Descriptor() ([]byte, []int) {
+	return fileDescriptorDispatcher, []int{4}
+}
+
+type UpdateTaskStatusRequest_TaskStatusUpdate struct {
+	TaskID string      `protobuf:"bytes,1,opt,name=task_id,json=taskId,proto3" json:"task_id,omitempty"`
+	Status *TaskStatus `protobuf:"bytes,2,opt,name=status" json:"status,omitempty"`
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) Reset() {
+	*m = UpdateTaskStatusRequest_TaskStatusUpdate{}
+}
+func (*UpdateTaskStatusRequest_TaskStatusUpdate) ProtoMessage() {}
+func (*UpdateTaskStatusRequest_TaskStatusUpdate) Descriptor() ([]byte, []int) {
+	return fileDescriptorDispatcher, []int{4, 0}
+}
+
+type UpdateTaskStatusResponse struct {
+}
+
+func (m *UpdateTaskStatusResponse) Reset()      { *m = UpdateTaskStatusResponse{} }
+func (*UpdateTaskStatusResponse) ProtoMessage() {}
+func (*UpdateTaskStatusResponse) Descriptor() ([]byte, []int) {
+	return fileDescriptorDispatcher, []int{5}
+}
+
+type TasksRequest struct {
+	SessionID string `protobuf:"bytes,1,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+}
+
+func (m *TasksRequest) Reset()                    { *m = TasksRequest{} }
+func (*TasksRequest) ProtoMessage()               {}
+func (*TasksRequest) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{6} }
+
+type TasksMessage struct {
+	// Tasks is the set of tasks that should be running on the node.
+	// Tasks outside of this set running on the node should be terminated.
+	Tasks []*Task `protobuf:"bytes,1,rep,name=tasks" json:"tasks,omitempty"`
+}
+
+func (m *TasksMessage) Reset()                    { *m = TasksMessage{} }
+func (*TasksMessage) ProtoMessage()               {}
+func (*TasksMessage) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{7} }
+
+type AssignmentsRequest struct {
+	SessionID string `protobuf:"bytes,1,opt,name=session_id,json=sessionId,proto3" json:"session_id,omitempty"`
+}
+
+func (m *AssignmentsRequest) Reset()                    { *m = AssignmentsRequest{} }
+func (*AssignmentsRequest) ProtoMessage()               {}
+func (*AssignmentsRequest) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{8} }
+
+type Assignment struct {
+	// Types that are valid to be assigned to Item:
+	//	*Assignment_Task
+	//	*Assignment_Secret
+	//	*Assignment_Config
+	Item isAssignment_Item `protobuf_oneof:"item"`
+}
+
+func (m *Assignment) Reset()                    { *m = Assignment{} }
+func (*Assignment) ProtoMessage()               {}
+func (*Assignment) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{9} }
+
+type isAssignment_Item interface {
+	isAssignment_Item()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type Assignment_Task struct {
+	Task *Task `protobuf:"bytes,1,opt,name=task,oneof"`
+}
+type Assignment_Secret struct {
+	Secret *Secret `protobuf:"bytes,2,opt,name=secret,oneof"`
+}
+type Assignment_Config struct {
+	Config *Config `protobuf:"bytes,3,opt,name=config,oneof"`
+}
+
+func (*Assignment_Task) isAssignment_Item()   {}
+func (*Assignment_Secret) isAssignment_Item() {}
+func (*Assignment_Config) isAssignment_Item() {}
+
+func (m *Assignment) GetItem() isAssignment_Item {
+	if m != nil {
+		return m.Item
+	}
+	return nil
+}
+
+func (m *Assignment) GetTask() *Task {
+	if x, ok := m.GetItem().(*Assignment_Task); ok {
+		return x.Task
+	}
+	return nil
+}
+
+func (m *Assignment) GetSecret() *Secret {
+	if x, ok := m.GetItem().(*Assignment_Secret); ok {
+		return x.Secret
+	}
+	return nil
+}
+
+func (m *Assignment) GetConfig() *Config {
+	if x, ok := m.GetItem().(*Assignment_Config); ok {
+		return x.Config
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*Assignment) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _Assignment_OneofMarshaler, _Assignment_OneofUnmarshaler, _Assignment_OneofSizer, []interface{}{
+		(*Assignment_Task)(nil),
+		(*Assignment_Secret)(nil),
+		(*Assignment_Config)(nil),
+	}
+}
+
+func _Assignment_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*Assignment)
+	// item
+	switch x := m.Item.(type) {
+	case *Assignment_Task:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Task); err != nil {
+			return err
+		}
+	case *Assignment_Secret:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Secret); err != nil {
+			return err
+		}
+	case *Assignment_Config:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Config); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("Assignment.Item has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _Assignment_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*Assignment)
+	switch tag {
+	case 1: // item.task
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Task)
+		err := b.DecodeMessage(msg)
+		m.Item = &Assignment_Task{msg}
+		return true, err
+	case 2: // item.secret
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Secret)
+		err := b.DecodeMessage(msg)
+		m.Item = &Assignment_Secret{msg}
+		return true, err
+	case 3: // item.config
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Config)
+		err := b.DecodeMessage(msg)
+		m.Item = &Assignment_Config{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _Assignment_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*Assignment)
+	// item
+	switch x := m.Item.(type) {
+	case *Assignment_Task:
+		s := proto.Size(x.Task)
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Assignment_Secret:
+		s := proto.Size(x.Secret)
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Assignment_Config:
+		s := proto.Size(x.Config)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+type AssignmentChange struct {
+	Assignment *Assignment                       `protobuf:"bytes,1,opt,name=assignment" json:"assignment,omitempty"`
+	Action     AssignmentChange_AssignmentAction `protobuf:"varint,2,opt,name=action,proto3,enum=docker.swarmkit.v1.AssignmentChange_AssignmentAction" json:"action,omitempty"`
+}
+
+func (m *AssignmentChange) Reset()                    { *m = AssignmentChange{} }
+func (*AssignmentChange) ProtoMessage()               {}
+func (*AssignmentChange) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{10} }
+
+type AssignmentsMessage struct {
+	Type AssignmentsMessage_Type `protobuf:"varint,1,opt,name=type,proto3,enum=docker.swarmkit.v1.AssignmentsMessage_Type" json:"type,omitempty"`
+	// AppliesTo references the previous ResultsIn value, to chain
+	// incremental updates together. For the first update in a stream,
+	// AppliesTo is empty.  If AppliesTo does not match the previously
+	// received ResultsIn, the consumer of the stream should start a new
+	// Assignments stream to re-sync.
+	AppliesTo string `protobuf:"bytes,2,opt,name=applies_to,json=appliesTo,proto3" json:"applies_to,omitempty"`
+	// ResultsIn identifies the result of this assignments message, to
+	// match against the next message's AppliesTo value and protect
+	// against missed messages.
+	ResultsIn string `protobuf:"bytes,3,opt,name=results_in,json=resultsIn,proto3" json:"results_in,omitempty"`
+	// AssignmentChange is a set of changes to apply on this node.
+	Changes []*AssignmentChange `protobuf:"bytes,4,rep,name=changes" json:"changes,omitempty"`
+}
+
+func (m *AssignmentsMessage) Reset()                    { *m = AssignmentsMessage{} }
+func (*AssignmentsMessage) ProtoMessage()               {}
+func (*AssignmentsMessage) Descriptor() ([]byte, []int) { return fileDescriptorDispatcher, []int{11} }
+
+func init() {
+	proto.RegisterType((*SessionRequest)(nil), "docker.swarmkit.v1.SessionRequest")
+	proto.RegisterType((*SessionMessage)(nil), "docker.swarmkit.v1.SessionMessage")
+	proto.RegisterType((*HeartbeatRequest)(nil), "docker.swarmkit.v1.HeartbeatRequest")
+	proto.RegisterType((*HeartbeatResponse)(nil), "docker.swarmkit.v1.HeartbeatResponse")
+	proto.RegisterType((*UpdateTaskStatusRequest)(nil), "docker.swarmkit.v1.UpdateTaskStatusRequest")
+	proto.RegisterType((*UpdateTaskStatusRequest_TaskStatusUpdate)(nil), "docker.swarmkit.v1.UpdateTaskStatusRequest.TaskStatusUpdate")
+	proto.RegisterType((*UpdateTaskStatusResponse)(nil), "docker.swarmkit.v1.UpdateTaskStatusResponse")
+	proto.RegisterType((*TasksRequest)(nil), "docker.swarmkit.v1.TasksRequest")
+	proto.RegisterType((*TasksMessage)(nil), "docker.swarmkit.v1.TasksMessage")
+	proto.RegisterType((*AssignmentsRequest)(nil), "docker.swarmkit.v1.AssignmentsRequest")
+	proto.RegisterType((*Assignment)(nil), "docker.swarmkit.v1.Assignment")
+	proto.RegisterType((*AssignmentChange)(nil), "docker.swarmkit.v1.AssignmentChange")
+	proto.RegisterType((*AssignmentsMessage)(nil), "docker.swarmkit.v1.AssignmentsMessage")
+	proto.RegisterEnum("docker.swarmkit.v1.AssignmentChange_AssignmentAction", AssignmentChange_AssignmentAction_name, AssignmentChange_AssignmentAction_value)
+	proto.RegisterEnum("docker.swarmkit.v1.AssignmentsMessage_Type", AssignmentsMessage_Type_name, AssignmentsMessage_Type_value)
+}
+
+type authenticatedWrapperDispatcherServer struct {
+	local     DispatcherServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperDispatcherServer(local DispatcherServer, authorize func(context.Context, []string) error) DispatcherServer {
+	return &authenticatedWrapperDispatcherServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperDispatcherServer) Session(r *SessionRequest, stream Dispatcher_SessionServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.Session(r, stream)
+}
+
+func (p *authenticatedWrapperDispatcherServer) Heartbeat(ctx context.Context, r *HeartbeatRequest) (*HeartbeatResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.Heartbeat(ctx, r)
+}
+
+func (p *authenticatedWrapperDispatcherServer) UpdateTaskStatus(ctx context.Context, r *UpdateTaskStatusRequest) (*UpdateTaskStatusResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.UpdateTaskStatus(ctx, r)
+}
+
+func (p *authenticatedWrapperDispatcherServer) Tasks(r *TasksRequest, stream Dispatcher_TasksServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.Tasks(r, stream)
+}
+
+func (p *authenticatedWrapperDispatcherServer) Assignments(r *AssignmentsRequest, stream Dispatcher_AssignmentsServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.Assignments(r, stream)
+}
+
+func (m *SessionRequest) Copy() *SessionRequest {
+	if m == nil {
+		return nil
+	}
+	o := &SessionRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SessionRequest) CopyFrom(src interface{}) {
+
+	o := src.(*SessionRequest)
+	*m = *o
+	if o.Description != nil {
+		m.Description = &NodeDescription{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Description, o.Description)
+	}
+}
+
+func (m *SessionMessage) Copy() *SessionMessage {
+	if m == nil {
+		return nil
+	}
+	o := &SessionMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SessionMessage) CopyFrom(src interface{}) {
+
+	o := src.(*SessionMessage)
+	*m = *o
+	if o.Node != nil {
+		m.Node = &Node{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Node, o.Node)
+	}
+	if o.Managers != nil {
+		m.Managers = make([]*WeightedPeer, len(o.Managers))
+		for i := range m.Managers {
+			m.Managers[i] = &WeightedPeer{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Managers[i], o.Managers[i])
+		}
+	}
+
+	if o.NetworkBootstrapKeys != nil {
+		m.NetworkBootstrapKeys = make([]*EncryptionKey, len(o.NetworkBootstrapKeys))
+		for i := range m.NetworkBootstrapKeys {
+			m.NetworkBootstrapKeys[i] = &EncryptionKey{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.NetworkBootstrapKeys[i], o.NetworkBootstrapKeys[i])
+		}
+	}
+
+	if o.RootCA != nil {
+		m.RootCA = make([]byte, len(o.RootCA))
+		copy(m.RootCA, o.RootCA)
+	}
+}
+
+func (m *HeartbeatRequest) Copy() *HeartbeatRequest {
+	if m == nil {
+		return nil
+	}
+	o := &HeartbeatRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *HeartbeatRequest) CopyFrom(src interface{}) {
+
+	o := src.(*HeartbeatRequest)
+	*m = *o
+}
+
+func (m *HeartbeatResponse) Copy() *HeartbeatResponse {
+	if m == nil {
+		return nil
+	}
+	o := &HeartbeatResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *HeartbeatResponse) CopyFrom(src interface{}) {
+
+	o := src.(*HeartbeatResponse)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Period, &o.Period)
+}
+
+func (m *UpdateTaskStatusRequest) Copy() *UpdateTaskStatusRequest {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateTaskStatusRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateTaskStatusRequest) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateTaskStatusRequest)
+	*m = *o
+	if o.Updates != nil {
+		m.Updates = make([]*UpdateTaskStatusRequest_TaskStatusUpdate, len(o.Updates))
+		for i := range m.Updates {
+			m.Updates[i] = &UpdateTaskStatusRequest_TaskStatusUpdate{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Updates[i], o.Updates[i])
+		}
+	}
+
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) Copy() *UpdateTaskStatusRequest_TaskStatusUpdate {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateTaskStatusRequest_TaskStatusUpdate{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateTaskStatusRequest_TaskStatusUpdate)
+	*m = *o
+	if o.Status != nil {
+		m.Status = &TaskStatus{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Status, o.Status)
+	}
+}
+
+func (m *UpdateTaskStatusResponse) Copy() *UpdateTaskStatusResponse {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateTaskStatusResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateTaskStatusResponse) CopyFrom(src interface{}) {}
+func (m *TasksRequest) Copy() *TasksRequest {
+	if m == nil {
+		return nil
+	}
+	o := &TasksRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TasksRequest) CopyFrom(src interface{}) {
+
+	o := src.(*TasksRequest)
+	*m = *o
+}
+
+func (m *TasksMessage) Copy() *TasksMessage {
+	if m == nil {
+		return nil
+	}
+	o := &TasksMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TasksMessage) CopyFrom(src interface{}) {
+
+	o := src.(*TasksMessage)
+	*m = *o
+	if o.Tasks != nil {
+		m.Tasks = make([]*Task, len(o.Tasks))
+		for i := range m.Tasks {
+			m.Tasks[i] = &Task{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Tasks[i], o.Tasks[i])
+		}
+	}
+
+}
+
+func (m *AssignmentsRequest) Copy() *AssignmentsRequest {
+	if m == nil {
+		return nil
+	}
+	o := &AssignmentsRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AssignmentsRequest) CopyFrom(src interface{}) {
+
+	o := src.(*AssignmentsRequest)
+	*m = *o
+}
+
+func (m *Assignment) Copy() *Assignment {
+	if m == nil {
+		return nil
+	}
+	o := &Assignment{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Assignment) CopyFrom(src interface{}) {
+
+	o := src.(*Assignment)
+	*m = *o
+	if o.Item != nil {
+		switch o.Item.(type) {
+		case *Assignment_Task:
+			v := Assignment_Task{
+				Task: &Task{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Task, o.GetTask())
+			m.Item = &v
+		case *Assignment_Secret:
+			v := Assignment_Secret{
+				Secret: &Secret{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Secret, o.GetSecret())
+			m.Item = &v
+		case *Assignment_Config:
+			v := Assignment_Config{
+				Config: &Config{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Config, o.GetConfig())
+			m.Item = &v
+		}
+	}
+
+}
+
+func (m *AssignmentChange) Copy() *AssignmentChange {
+	if m == nil {
+		return nil
+	}
+	o := &AssignmentChange{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AssignmentChange) CopyFrom(src interface{}) {
+
+	o := src.(*AssignmentChange)
+	*m = *o
+	if o.Assignment != nil {
+		m.Assignment = &Assignment{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Assignment, o.Assignment)
+	}
+}
+
+func (m *AssignmentsMessage) Copy() *AssignmentsMessage {
+	if m == nil {
+		return nil
+	}
+	o := &AssignmentsMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AssignmentsMessage) CopyFrom(src interface{}) {
+
+	o := src.(*AssignmentsMessage)
+	*m = *o
+	if o.Changes != nil {
+		m.Changes = make([]*AssignmentChange, len(o.Changes))
+		for i := range m.Changes {
+			m.Changes[i] = &AssignmentChange{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Changes[i], o.Changes[i])
+		}
+	}
+
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Dispatcher service
+
+type DispatcherClient interface {
+	// Session starts an agent session with the dispatcher. The session is
+	// started after the first SessionMessage is received.
+	//
+	// Once started, the agent is controlled with a stream of SessionMessage.
+	// Agents should list on the stream at all times for instructions.
+	Session(ctx context.Context, in *SessionRequest, opts ...grpc.CallOption) (Dispatcher_SessionClient, error)
+	// Heartbeat is heartbeat method for nodes. It returns new TTL in response.
+	// Node should send new heartbeat earlier than now + TTL, otherwise it will
+	// be deregistered from dispatcher and its status will be updated to NodeStatus_DOWN
+	Heartbeat(ctx context.Context, in *HeartbeatRequest, opts ...grpc.CallOption) (*HeartbeatResponse, error)
+	// UpdateTaskStatus updates status of task. Node should send such updates
+	// on every status change of its tasks.
+	//
+	// Whether receiving batch updates or single status updates, this method
+	// should be accepting. Errors should only be returned if the entire update
+	// should be retried, due to data loss or other problems.
+	//
+	// If a task is unknown the dispatcher, the status update should be
+	// accepted regardless.
+	UpdateTaskStatus(ctx context.Context, in *UpdateTaskStatusRequest, opts ...grpc.CallOption) (*UpdateTaskStatusResponse, error)
+	// Tasks is a stream of tasks state for node. Each message contains full list
+	// of tasks which should be run on node, if task is not present in that list,
+	// it should be terminated.
+	Tasks(ctx context.Context, in *TasksRequest, opts ...grpc.CallOption) (Dispatcher_TasksClient, error)
+	// Assignments is a stream of assignments such as tasks and secrets for node.
+	// The first message in the stream contains all of the tasks and secrets
+	// that are relevant to the node. Future messages in the stream are updates to
+	// the set of assignments.
+	Assignments(ctx context.Context, in *AssignmentsRequest, opts ...grpc.CallOption) (Dispatcher_AssignmentsClient, error)
+}
+
+type dispatcherClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewDispatcherClient(cc *grpc.ClientConn) DispatcherClient {
+	return &dispatcherClient{cc}
+}
+
+func (c *dispatcherClient) Session(ctx context.Context, in *SessionRequest, opts ...grpc.CallOption) (Dispatcher_SessionClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Dispatcher_serviceDesc.Streams[0], c.cc, "/docker.swarmkit.v1.Dispatcher/Session", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &dispatcherSessionClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type Dispatcher_SessionClient interface {
+	Recv() (*SessionMessage, error)
+	grpc.ClientStream
+}
+
+type dispatcherSessionClient struct {
+	grpc.ClientStream
+}
+
+func (x *dispatcherSessionClient) Recv() (*SessionMessage, error) {
+	m := new(SessionMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func (c *dispatcherClient) Heartbeat(ctx context.Context, in *HeartbeatRequest, opts ...grpc.CallOption) (*HeartbeatResponse, error) {
+	out := new(HeartbeatResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Dispatcher/Heartbeat", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *dispatcherClient) UpdateTaskStatus(ctx context.Context, in *UpdateTaskStatusRequest, opts ...grpc.CallOption) (*UpdateTaskStatusResponse, error) {
+	out := new(UpdateTaskStatusResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Dispatcher/UpdateTaskStatus", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *dispatcherClient) Tasks(ctx context.Context, in *TasksRequest, opts ...grpc.CallOption) (Dispatcher_TasksClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Dispatcher_serviceDesc.Streams[1], c.cc, "/docker.swarmkit.v1.Dispatcher/Tasks", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &dispatcherTasksClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type Dispatcher_TasksClient interface {
+	Recv() (*TasksMessage, error)
+	grpc.ClientStream
+}
+
+type dispatcherTasksClient struct {
+	grpc.ClientStream
+}
+
+func (x *dispatcherTasksClient) Recv() (*TasksMessage, error) {
+	m := new(TasksMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func (c *dispatcherClient) Assignments(ctx context.Context, in *AssignmentsRequest, opts ...grpc.CallOption) (Dispatcher_AssignmentsClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Dispatcher_serviceDesc.Streams[2], c.cc, "/docker.swarmkit.v1.Dispatcher/Assignments", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &dispatcherAssignmentsClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type Dispatcher_AssignmentsClient interface {
+	Recv() (*AssignmentsMessage, error)
+	grpc.ClientStream
+}
+
+type dispatcherAssignmentsClient struct {
+	grpc.ClientStream
+}
+
+func (x *dispatcherAssignmentsClient) Recv() (*AssignmentsMessage, error) {
+	m := new(AssignmentsMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for Dispatcher service
+
+type DispatcherServer interface {
+	// Session starts an agent session with the dispatcher. The session is
+	// started after the first SessionMessage is received.
+	//
+	// Once started, the agent is controlled with a stream of SessionMessage.
+	// Agents should list on the stream at all times for instructions.
+	Session(*SessionRequest, Dispatcher_SessionServer) error
+	// Heartbeat is heartbeat method for nodes. It returns new TTL in response.
+	// Node should send new heartbeat earlier than now + TTL, otherwise it will
+	// be deregistered from dispatcher and its status will be updated to NodeStatus_DOWN
+	Heartbeat(context.Context, *HeartbeatRequest) (*HeartbeatResponse, error)
+	// UpdateTaskStatus updates status of task. Node should send such updates
+	// on every status change of its tasks.
+	//
+	// Whether receiving batch updates or single status updates, this method
+	// should be accepting. Errors should only be returned if the entire update
+	// should be retried, due to data loss or other problems.
+	//
+	// If a task is unknown the dispatcher, the status update should be
+	// accepted regardless.
+	UpdateTaskStatus(context.Context, *UpdateTaskStatusRequest) (*UpdateTaskStatusResponse, error)
+	// Tasks is a stream of tasks state for node. Each message contains full list
+	// of tasks which should be run on node, if task is not present in that list,
+	// it should be terminated.
+	Tasks(*TasksRequest, Dispatcher_TasksServer) error
+	// Assignments is a stream of assignments such as tasks and secrets for node.
+	// The first message in the stream contains all of the tasks and secrets
+	// that are relevant to the node. Future messages in the stream are updates to
+	// the set of assignments.
+	Assignments(*AssignmentsRequest, Dispatcher_AssignmentsServer) error
+}
+
+func RegisterDispatcherServer(s *grpc.Server, srv DispatcherServer) {
+	s.RegisterService(&_Dispatcher_serviceDesc, srv)
+}
+
+func _Dispatcher_Session_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(SessionRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(DispatcherServer).Session(m, &dispatcherSessionServer{stream})
+}
+
+type Dispatcher_SessionServer interface {
+	Send(*SessionMessage) error
+	grpc.ServerStream
+}
+
+type dispatcherSessionServer struct {
+	grpc.ServerStream
+}
+
+func (x *dispatcherSessionServer) Send(m *SessionMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func _Dispatcher_Heartbeat_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(HeartbeatRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(DispatcherServer).Heartbeat(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Dispatcher/Heartbeat",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(DispatcherServer).Heartbeat(ctx, req.(*HeartbeatRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Dispatcher_UpdateTaskStatus_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(UpdateTaskStatusRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(DispatcherServer).UpdateTaskStatus(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Dispatcher/UpdateTaskStatus",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(DispatcherServer).UpdateTaskStatus(ctx, req.(*UpdateTaskStatusRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Dispatcher_Tasks_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(TasksRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(DispatcherServer).Tasks(m, &dispatcherTasksServer{stream})
+}
+
+type Dispatcher_TasksServer interface {
+	Send(*TasksMessage) error
+	grpc.ServerStream
+}
+
+type dispatcherTasksServer struct {
+	grpc.ServerStream
+}
+
+func (x *dispatcherTasksServer) Send(m *TasksMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func _Dispatcher_Assignments_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(AssignmentsRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(DispatcherServer).Assignments(m, &dispatcherAssignmentsServer{stream})
+}
+
+type Dispatcher_AssignmentsServer interface {
+	Send(*AssignmentsMessage) error
+	grpc.ServerStream
+}
+
+type dispatcherAssignmentsServer struct {
+	grpc.ServerStream
+}
+
+func (x *dispatcherAssignmentsServer) Send(m *AssignmentsMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+var _Dispatcher_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Dispatcher",
+	HandlerType: (*DispatcherServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "Heartbeat",
+			Handler:    _Dispatcher_Heartbeat_Handler,
+		},
+		{
+			MethodName: "UpdateTaskStatus",
+			Handler:    _Dispatcher_UpdateTaskStatus_Handler,
+		},
+	},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "Session",
+			Handler:       _Dispatcher_Session_Handler,
+			ServerStreams: true,
+		},
+		{
+			StreamName:    "Tasks",
+			Handler:       _Dispatcher_Tasks_Handler,
+			ServerStreams: true,
+		},
+		{
+			StreamName:    "Assignments",
+			Handler:       _Dispatcher_Assignments_Handler,
+			ServerStreams: true,
+		},
+	},
+	Metadata: "github.com/docker/swarmkit/api/dispatcher.proto",
+}
+
+func (m *SessionRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SessionRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Description != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Description.Size()))
+		n1, err := m.Description.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	return i, nil
+}
+
+func (m *SessionMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SessionMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	if m.Node != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Node.Size()))
+		n2, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	if len(m.Managers) > 0 {
+		for _, msg := range m.Managers {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintDispatcher(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.NetworkBootstrapKeys) > 0 {
+		for _, msg := range m.NetworkBootstrapKeys {
+			dAtA[i] = 0x22
+			i++
+			i = encodeVarintDispatcher(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.RootCA) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.RootCA)))
+		i += copy(dAtA[i:], m.RootCA)
+	}
+	return i, nil
+}
+
+func (m *HeartbeatRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HeartbeatRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	return i, nil
+}
+
+func (m *HeartbeatResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HeartbeatResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintDispatcher(dAtA, i, uint64(github_com_gogo_protobuf_types.SizeOfStdDuration(m.Period)))
+	n3, err := github_com_gogo_protobuf_types.StdDurationMarshalTo(m.Period, dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n3
+	return i, nil
+}
+
+func (m *UpdateTaskStatusRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateTaskStatusRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	if len(m.Updates) > 0 {
+		for _, msg := range m.Updates {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintDispatcher(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.TaskID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.TaskID)))
+		i += copy(dAtA[i:], m.TaskID)
+	}
+	if m.Status != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Status.Size()))
+		n4, err := m.Status.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	return i, nil
+}
+
+func (m *UpdateTaskStatusResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateTaskStatusResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *TasksRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TasksRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	return i, nil
+}
+
+func (m *TasksMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TasksMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Tasks) > 0 {
+		for _, msg := range m.Tasks {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintDispatcher(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *AssignmentsRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AssignmentsRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SessionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.SessionID)))
+		i += copy(dAtA[i:], m.SessionID)
+	}
+	return i, nil
+}
+
+func (m *Assignment) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Assignment) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Item != nil {
+		nn5, err := m.Item.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn5
+	}
+	return i, nil
+}
+
+func (m *Assignment_Task) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Task != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Task.Size()))
+		n6, err := m.Task.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	return i, nil
+}
+func (m *Assignment_Secret) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Secret != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Secret.Size()))
+		n7, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	return i, nil
+}
+func (m *Assignment_Config) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Config != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Config.Size()))
+		n8, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	return i, nil
+}
+func (m *AssignmentChange) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AssignmentChange) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Assignment != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Assignment.Size()))
+		n9, err := m.Assignment.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	if m.Action != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Action))
+	}
+	return i, nil
+}
+
+func (m *AssignmentsMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AssignmentsMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(m.Type))
+	}
+	if len(m.AppliesTo) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.AppliesTo)))
+		i += copy(dAtA[i:], m.AppliesTo)
+	}
+	if len(m.ResultsIn) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintDispatcher(dAtA, i, uint64(len(m.ResultsIn)))
+		i += copy(dAtA[i:], m.ResultsIn)
+	}
+	if len(m.Changes) > 0 {
+		for _, msg := range m.Changes {
+			dAtA[i] = 0x22
+			i++
+			i = encodeVarintDispatcher(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func encodeFixed64Dispatcher(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Dispatcher(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintDispatcher(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyDispatcherServer struct {
+	local                       DispatcherServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyDispatcherServer(local DispatcherServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) DispatcherServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyDispatcherServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyDispatcherServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyDispatcherServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+type Dispatcher_SessionServerWrapper struct {
+	Dispatcher_SessionServer
+	ctx context.Context
+}
+
+func (s Dispatcher_SessionServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyDispatcherServer) Session(r *SessionRequest, stream Dispatcher_SessionServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Dispatcher_SessionServerWrapper{
+				Dispatcher_SessionServer: stream,
+				ctx: ctx,
+			}
+			return p.local.Session(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewDispatcherClient(conn).Session(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (p *raftProxyDispatcherServer) Heartbeat(ctx context.Context, r *HeartbeatRequest) (*HeartbeatResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.Heartbeat(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewDispatcherClient(conn).Heartbeat(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.Heartbeat(ctx, r)
+			}
+			return nil, err
+		}
+		return NewDispatcherClient(conn).Heartbeat(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyDispatcherServer) UpdateTaskStatus(ctx context.Context, r *UpdateTaskStatusRequest) (*UpdateTaskStatusResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.UpdateTaskStatus(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewDispatcherClient(conn).UpdateTaskStatus(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.UpdateTaskStatus(ctx, r)
+			}
+			return nil, err
+		}
+		return NewDispatcherClient(conn).UpdateTaskStatus(modCtx, r)
+	}
+	return resp, err
+}
+
+type Dispatcher_TasksServerWrapper struct {
+	Dispatcher_TasksServer
+	ctx context.Context
+}
+
+func (s Dispatcher_TasksServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyDispatcherServer) Tasks(r *TasksRequest, stream Dispatcher_TasksServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Dispatcher_TasksServerWrapper{
+				Dispatcher_TasksServer: stream,
+				ctx: ctx,
+			}
+			return p.local.Tasks(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewDispatcherClient(conn).Tasks(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+type Dispatcher_AssignmentsServerWrapper struct {
+	Dispatcher_AssignmentsServer
+	ctx context.Context
+}
+
+func (s Dispatcher_AssignmentsServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyDispatcherServer) Assignments(r *AssignmentsRequest, stream Dispatcher_AssignmentsServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Dispatcher_AssignmentsServerWrapper{
+				Dispatcher_AssignmentsServer: stream,
+				ctx: ctx,
+			}
+			return p.local.Assignments(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewDispatcherClient(conn).Assignments(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (m *SessionRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Description != nil {
+		l = m.Description.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *SessionMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if len(m.Managers) > 0 {
+		for _, e := range m.Managers {
+			l = e.Size()
+			n += 1 + l + sovDispatcher(uint64(l))
+		}
+	}
+	if len(m.NetworkBootstrapKeys) > 0 {
+		for _, e := range m.NetworkBootstrapKeys {
+			l = e.Size()
+			n += 1 + l + sovDispatcher(uint64(l))
+		}
+	}
+	l = len(m.RootCA)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *HeartbeatRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *HeartbeatResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = github_com_gogo_protobuf_types.SizeOfStdDuration(m.Period)
+	n += 1 + l + sovDispatcher(uint64(l))
+	return n
+}
+
+func (m *UpdateTaskStatusRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if len(m.Updates) > 0 {
+		for _, e := range m.Updates {
+			l = e.Size()
+			n += 1 + l + sovDispatcher(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.TaskID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if m.Status != nil {
+		l = m.Status.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateTaskStatusResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *TasksRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *TasksMessage) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Tasks) > 0 {
+		for _, e := range m.Tasks {
+			l = e.Size()
+			n += 1 + l + sovDispatcher(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *AssignmentsRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SessionID)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+
+func (m *Assignment) Size() (n int) {
+	var l int
+	_ = l
+	if m.Item != nil {
+		n += m.Item.Size()
+	}
+	return n
+}
+
+func (m *Assignment_Task) Size() (n int) {
+	var l int
+	_ = l
+	if m.Task != nil {
+		l = m.Task.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+func (m *Assignment_Secret) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+func (m *Assignment_Config) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	return n
+}
+func (m *AssignmentChange) Size() (n int) {
+	var l int
+	_ = l
+	if m.Assignment != nil {
+		l = m.Assignment.Size()
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if m.Action != 0 {
+		n += 1 + sovDispatcher(uint64(m.Action))
+	}
+	return n
+}
+
+func (m *AssignmentsMessage) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovDispatcher(uint64(m.Type))
+	}
+	l = len(m.AppliesTo)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	l = len(m.ResultsIn)
+	if l > 0 {
+		n += 1 + l + sovDispatcher(uint64(l))
+	}
+	if len(m.Changes) > 0 {
+		for _, e := range m.Changes {
+			l = e.Size()
+			n += 1 + l + sovDispatcher(uint64(l))
+		}
+	}
+	return n
+}
+
+func sovDispatcher(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozDispatcher(x uint64) (n int) {
+	return sovDispatcher(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *SessionRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SessionRequest{`,
+		`Description:` + strings.Replace(fmt.Sprintf("%v", this.Description), "NodeDescription", "NodeDescription", 1) + `,`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SessionMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SessionMessage{`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "Node", "Node", 1) + `,`,
+		`Managers:` + strings.Replace(fmt.Sprintf("%v", this.Managers), "WeightedPeer", "WeightedPeer", 1) + `,`,
+		`NetworkBootstrapKeys:` + strings.Replace(fmt.Sprintf("%v", this.NetworkBootstrapKeys), "EncryptionKey", "EncryptionKey", 1) + `,`,
+		`RootCA:` + fmt.Sprintf("%v", this.RootCA) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *HeartbeatRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&HeartbeatRequest{`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *HeartbeatResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&HeartbeatResponse{`,
+		`Period:` + strings.Replace(strings.Replace(this.Period.String(), "Duration", "google_protobuf1.Duration", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateTaskStatusRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateTaskStatusRequest{`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`Updates:` + strings.Replace(fmt.Sprintf("%v", this.Updates), "UpdateTaskStatusRequest_TaskStatusUpdate", "UpdateTaskStatusRequest_TaskStatusUpdate", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateTaskStatusRequest_TaskStatusUpdate) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateTaskStatusRequest_TaskStatusUpdate{`,
+		`TaskID:` + fmt.Sprintf("%v", this.TaskID) + `,`,
+		`Status:` + strings.Replace(fmt.Sprintf("%v", this.Status), "TaskStatus", "TaskStatus", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateTaskStatusResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateTaskStatusResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TasksRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TasksRequest{`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TasksMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TasksMessage{`,
+		`Tasks:` + strings.Replace(fmt.Sprintf("%v", this.Tasks), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AssignmentsRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AssignmentsRequest{`,
+		`SessionID:` + fmt.Sprintf("%v", this.SessionID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Assignment) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Assignment{`,
+		`Item:` + fmt.Sprintf("%v", this.Item) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Assignment_Task) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Assignment_Task{`,
+		`Task:` + strings.Replace(fmt.Sprintf("%v", this.Task), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Assignment_Secret) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Assignment_Secret{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Assignment_Config) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Assignment_Config{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AssignmentChange) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AssignmentChange{`,
+		`Assignment:` + strings.Replace(fmt.Sprintf("%v", this.Assignment), "Assignment", "Assignment", 1) + `,`,
+		`Action:` + fmt.Sprintf("%v", this.Action) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AssignmentsMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AssignmentsMessage{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`AppliesTo:` + fmt.Sprintf("%v", this.AppliesTo) + `,`,
+		`ResultsIn:` + fmt.Sprintf("%v", this.ResultsIn) + `,`,
+		`Changes:` + strings.Replace(fmt.Sprintf("%v", this.Changes), "AssignmentChange", "AssignmentChange", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringDispatcher(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *SessionRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SessionRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SessionRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Description", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Description == nil {
+				m.Description = &NodeDescription{}
+			}
+			if err := m.Description.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SessionMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SessionMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SessionMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Node == nil {
+				m.Node = &Node{}
+			}
+			if err := m.Node.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Managers", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Managers = append(m.Managers, &WeightedPeer{})
+			if err := m.Managers[len(m.Managers)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkBootstrapKeys", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkBootstrapKeys = append(m.NetworkBootstrapKeys, &EncryptionKey{})
+			if err := m.NetworkBootstrapKeys[len(m.NetworkBootstrapKeys)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RootCA", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.RootCA = append(m.RootCA[:0], dAtA[iNdEx:postIndex]...)
+			if m.RootCA == nil {
+				m.RootCA = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *HeartbeatRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HeartbeatRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HeartbeatRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *HeartbeatResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HeartbeatResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HeartbeatResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Period", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := github_com_gogo_protobuf_types.StdDurationUnmarshal(&m.Period, dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateTaskStatusRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateTaskStatusRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateTaskStatusRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Updates", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Updates = append(m.Updates, &UpdateTaskStatusRequest_TaskStatusUpdate{})
+			if err := m.Updates[len(m.Updates)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateTaskStatusRequest_TaskStatusUpdate) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TaskStatusUpdate: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TaskStatusUpdate: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Status == nil {
+				m.Status = &TaskStatus{}
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateTaskStatusResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateTaskStatusResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateTaskStatusResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TasksRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TasksRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TasksRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TasksMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TasksMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TasksMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Tasks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Tasks = append(m.Tasks, &Task{})
+			if err := m.Tasks[len(m.Tasks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AssignmentsRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AssignmentsRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AssignmentsRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SessionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SessionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Assignment) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Assignment: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Assignment: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Task", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Task{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Item = &Assignment_Task{v}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Secret{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Item = &Assignment_Secret{v}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Config{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Item = &Assignment_Config{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AssignmentChange) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AssignmentChange: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AssignmentChange: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Assignment", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Assignment == nil {
+				m.Assignment = &Assignment{}
+			}
+			if err := m.Assignment.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Action", wireType)
+			}
+			m.Action = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Action |= (AssignmentChange_AssignmentAction(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AssignmentsMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AssignmentsMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AssignmentsMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (AssignmentsMessage_Type(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AppliesTo", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.AppliesTo = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResultsIn", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ResultsIn = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Changes", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Changes = append(m.Changes, &AssignmentChange{})
+			if err := m.Changes[len(m.Changes)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDispatcher(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDispatcher
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipDispatcher(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowDispatcher
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowDispatcher
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthDispatcher
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowDispatcher
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipDispatcher(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthDispatcher = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowDispatcher   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() {
+	proto.RegisterFile("github.com/docker/swarmkit/api/dispatcher.proto", fileDescriptorDispatcher)
+}
+
+var fileDescriptorDispatcher = []byte{
+	// 1007 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x9c, 0x55, 0x4f, 0x6f, 0xe3, 0x44,
+	0x1c, 0xcd, 0xa4, 0xa9, 0xdb, 0xfc, 0xd2, 0x2d, 0x61, 0xb4, 0x2a, 0xc6, 0xd2, 0xa6, 0xc1, 0x65,
+	0xab, 0x8a, 0x2d, 0xce, 0x12, 0xfe, 0x1d, 0xa8, 0x0a, 0x4d, 0x13, 0xa9, 0xd1, 0x6e, 0xbb, 0xd5,
+	0xb4, 0xbb, 0x7b, 0xac, 0x1c, 0x7b, 0xd6, 0x35, 0x69, 0x3c, 0xc6, 0x33, 0xd9, 0x25, 0x07, 0x24,
+	0x0e, 0xac, 0x84, 0x38, 0x21, 0x4e, 0x95, 0x10, 0x5f, 0x01, 0xf1, 0x31, 0x2a, 0x4e, 0x1c, 0x39,
+	0x15, 0x36, 0x1f, 0x80, 0x0f, 0xc0, 0x09, 0x79, 0x3c, 0x4e, 0x42, 0x37, 0x69, 0xd3, 0x9e, 0x12,
+	0xcf, 0xbc, 0xf7, 0xe6, 0xf9, 0xfd, 0x7e, 0xfe, 0x0d, 0x54, 0x3c, 0x5f, 0x1c, 0x77, 0x5b, 0x96,
+	0xc3, 0x3a, 0x15, 0x97, 0x39, 0x6d, 0x1a, 0x55, 0xf8, 0x0b, 0x3b, 0xea, 0xb4, 0x7d, 0x51, 0xb1,
+	0x43, 0xbf, 0xe2, 0xfa, 0x3c, 0xb4, 0x85, 0x73, 0x4c, 0x23, 0x2b, 0x8c, 0x98, 0x60, 0x18, 0x27,
+	0x28, 0x2b, 0x45, 0x59, 0xcf, 0x3f, 0x30, 0xde, 0xbb, 0x42, 0x44, 0xf4, 0x42, 0xca, 0x13, 0xbe,
+	0xb1, 0x7e, 0x05, 0x96, 0xb5, 0xbe, 0xa4, 0x8e, 0x48, 0xd1, 0xb7, 0x3d, 0xe6, 0x31, 0xf9, 0xb7,
+	0x12, 0xff, 0x53, 0xab, 0x9f, 0x5e, 0xa2, 0x21, 0x11, 0xad, 0xee, 0xb3, 0x4a, 0x78, 0xd2, 0xf5,
+	0xfc, 0x40, 0xfd, 0x28, 0x62, 0xc9, 0x63, 0xcc, 0x3b, 0xa1, 0x43, 0x90, 0xdb, 0x8d, 0x6c, 0xe1,
+	0x33, 0xb5, 0x6f, 0xbe, 0x44, 0xb0, 0x78, 0x40, 0x39, 0xf7, 0x59, 0x40, 0xe8, 0x57, 0x5d, 0xca,
+	0x05, 0x6e, 0x40, 0xc1, 0xa5, 0xdc, 0x89, 0xfc, 0x30, 0xc6, 0xe9, 0xa8, 0x8c, 0xd6, 0x0a, 0xd5,
+	0x15, 0xeb, 0xf5, 0x14, 0xac, 0x3d, 0xe6, 0xd2, 0xfa, 0x10, 0x4a, 0x46, 0x79, 0x78, 0x1d, 0x80,
+	0x27, 0xc2, 0x47, 0xbe, 0xab, 0x67, 0xcb, 0x68, 0x2d, 0x5f, 0xbb, 0xd5, 0x3f, 0x5f, 0xce, 0xab,
+	0xe3, 0x9a, 0x75, 0x92, 0x57, 0x80, 0xa6, 0x6b, 0xfe, 0x9c, 0x1d, 0xf8, 0xd8, 0xa5, 0x9c, 0xdb,
+	0x1e, 0xbd, 0x20, 0x80, 0x2e, 0x17, 0xc0, 0xeb, 0x90, 0x0b, 0x98, 0x4b, 0xe5, 0x41, 0x85, 0xaa,
+	0x3e, 0xc9, 0x2e, 0x91, 0x28, 0xbc, 0x01, 0xf3, 0x1d, 0x3b, 0xb0, 0x3d, 0x1a, 0x71, 0x7d, 0xa6,
+	0x3c, 0xb3, 0x56, 0xa8, 0x96, 0xc7, 0x31, 0x9e, 0x52, 0xdf, 0x3b, 0x16, 0xd4, 0xdd, 0xa7, 0x34,
+	0x22, 0x03, 0x06, 0x7e, 0x0a, 0x4b, 0x01, 0x15, 0x2f, 0x58, 0xd4, 0x3e, 0x6a, 0x31, 0x26, 0xb8,
+	0x88, 0xec, 0xf0, 0xa8, 0x4d, 0x7b, 0x5c, 0xcf, 0x49, 0xad, 0x77, 0xc6, 0x69, 0x35, 0x02, 0x27,
+	0xea, 0xc9, 0x68, 0x1e, 0xd0, 0x1e, 0xb9, 0xad, 0x04, 0x6a, 0x29, 0xff, 0x01, 0xed, 0x71, 0xbc,
+	0x04, 0x1a, 0x61, 0x4c, 0x6c, 0x6f, 0xe9, 0xb3, 0x65, 0xb4, 0xb6, 0x40, 0xd4, 0x93, 0xf9, 0x05,
+	0x14, 0x77, 0xa8, 0x1d, 0x89, 0x16, 0xb5, 0x45, 0x5a, 0xa6, 0x6b, 0xc5, 0x63, 0xee, 0xc3, 0x9b,
+	0x23, 0x0a, 0x3c, 0x64, 0x01, 0xa7, 0xf8, 0x33, 0xd0, 0x42, 0x1a, 0xf9, 0xcc, 0x55, 0x45, 0x7e,
+	0xdb, 0x4a, 0xba, 0xc5, 0x4a, 0xbb, 0xc5, 0xaa, 0xab, 0x6e, 0xa9, 0xcd, 0x9f, 0x9d, 0x2f, 0x67,
+	0x4e, 0xff, 0x5a, 0x46, 0x44, 0x51, 0xcc, 0x1f, 0xb3, 0xf0, 0xd6, 0xe3, 0xd0, 0xb5, 0x05, 0x3d,
+	0xb4, 0x79, 0xfb, 0x40, 0xd8, 0xa2, 0xcb, 0x6f, 0xe4, 0x0d, 0x3f, 0x81, 0xb9, 0xae, 0x14, 0x4a,
+	0x6b, 0xb1, 0x31, 0x2e, 0xbf, 0x09, 0x67, 0x59, 0xc3, 0x95, 0x04, 0x41, 0x52, 0x31, 0x83, 0x41,
+	0xf1, 0xe2, 0x26, 0x5e, 0x81, 0x39, 0x61, 0xf3, 0xf6, 0xd0, 0x16, 0xf4, 0xcf, 0x97, 0xb5, 0x18,
+	0xd6, 0xac, 0x13, 0x2d, 0xde, 0x6a, 0xba, 0xf8, 0x13, 0xd0, 0xb8, 0x24, 0xa9, 0x6e, 0x2a, 0x8d,
+	0xf3, 0x33, 0xe2, 0x44, 0xa1, 0x4d, 0x03, 0xf4, 0xd7, 0x5d, 0x26, 0x59, 0x9b, 0x1b, 0xb0, 0x10,
+	0xaf, 0xde, 0x2c, 0x22, 0x73, 0x53, 0xb1, 0xd3, 0x6f, 0xc3, 0x82, 0xd9, 0xd8, 0x2b, 0xd7, 0x91,
+	0x0c, 0x4c, 0x9f, 0x64, 0x90, 0x24, 0x30, 0xb3, 0x06, 0x78, 0x8b, 0x73, 0xdf, 0x0b, 0x3a, 0x34,
+	0x10, 0x37, 0xf4, 0xf0, 0x1b, 0x02, 0x18, 0x8a, 0x60, 0x0b, 0x72, 0xb1, 0xb6, 0x6a, 0x9d, 0x89,
+	0x0e, 0x76, 0x32, 0x44, 0xe2, 0xf0, 0x47, 0xa0, 0x71, 0xea, 0x44, 0x54, 0xa8, 0x50, 0x8d, 0x71,
+	0x8c, 0x03, 0x89, 0xd8, 0xc9, 0x10, 0x85, 0x8d, 0x59, 0x0e, 0x0b, 0x9e, 0xf9, 0x9e, 0x3e, 0x33,
+	0x99, 0xb5, 0x2d, 0x11, 0x31, 0x2b, 0xc1, 0xd6, 0x34, 0xc8, 0xf9, 0x82, 0x76, 0xcc, 0x97, 0x59,
+	0x28, 0x0e, 0x2d, 0x6f, 0x1f, 0xdb, 0x81, 0x47, 0xf1, 0x26, 0x80, 0x3d, 0x58, 0x53, 0xf6, 0xc7,
+	0x56, 0x78, 0xc8, 0x24, 0x23, 0x0c, 0xbc, 0x0b, 0x9a, 0xed, 0xc8, 0xd1, 0x18, 0xbf, 0xc8, 0x62,
+	0xf5, 0xe3, 0xcb, 0xb9, 0xc9, 0xa9, 0x23, 0x0b, 0x5b, 0x92, 0x4c, 0x94, 0x88, 0xd9, 0x1a, 0xb5,
+	0x98, 0xec, 0xe1, 0x55, 0xd0, 0x1e, 0xef, 0xd7, 0xb7, 0x0e, 0x1b, 0xc5, 0x8c, 0x61, 0xfc, 0xf0,
+	0x4b, 0x79, 0xe9, 0x22, 0x42, 0x75, 0xf3, 0x2a, 0x68, 0xa4, 0xb1, 0xfb, 0xe8, 0x49, 0xa3, 0x88,
+	0xc6, 0xe3, 0x08, 0xed, 0xb0, 0xe7, 0xd4, 0xfc, 0x17, 0xfd, 0xaf, 0xfe, 0x69, 0x17, 0x7d, 0x0e,
+	0xb9, 0xf8, 0xa2, 0x92, 0x19, 0x2c, 0x56, 0xef, 0x5d, 0xfe, 0x1e, 0x29, 0xcb, 0x3a, 0xec, 0x85,
+	0x94, 0x48, 0x22, 0xbe, 0x03, 0x60, 0x87, 0xe1, 0x89, 0x4f, 0xf9, 0x91, 0x60, 0xc9, 0x8c, 0x27,
+	0x79, 0xb5, 0x72, 0xc8, 0xe2, 0xed, 0x88, 0xf2, 0xee, 0x89, 0xe0, 0x47, 0x7e, 0x20, 0x0b, 0x98,
+	0x27, 0x79, 0xb5, 0xd2, 0x0c, 0xf0, 0x26, 0xcc, 0x39, 0x32, 0x9c, 0x74, 0x6e, 0xbe, 0x3b, 0x4d,
+	0x92, 0x24, 0x25, 0x99, 0x77, 0x21, 0x17, 0x7b, 0xc1, 0x0b, 0x30, 0xbf, 0xfd, 0x68, 0x77, 0xff,
+	0x61, 0x23, 0xce, 0x0b, 0xbf, 0x01, 0x85, 0xe6, 0xde, 0x36, 0x69, 0xec, 0x36, 0xf6, 0x0e, 0xb7,
+	0x1e, 0x16, 0x51, 0xf5, 0x74, 0x16, 0xa0, 0x3e, 0xb8, 0xd4, 0xf1, 0xd7, 0x30, 0xa7, 0xda, 0x1b,
+	0x9b, 0xe3, 0x5b, 0x70, 0xf4, 0x36, 0x34, 0x2e, 0xc3, 0xa8, 0x44, 0xcc, 0x95, 0xdf, 0x7f, 0xfd,
+	0xe7, 0x34, 0x7b, 0x07, 0x16, 0x24, 0xe6, 0xfd, 0x78, 0xae, 0xd3, 0x08, 0x6e, 0x25, 0x4f, 0xea,
+	0xd6, 0xb8, 0x8f, 0xf0, 0x37, 0x90, 0x1f, 0xcc, 0x60, 0x3c, 0xf6, 0x5d, 0x2f, 0x0e, 0x79, 0xe3,
+	0xee, 0x15, 0x28, 0x35, 0x5c, 0xa6, 0x31, 0x80, 0x7f, 0x42, 0x50, 0xbc, 0x38, 0x9e, 0xf0, 0xbd,
+	0x6b, 0x8c, 0x5a, 0x63, 0x7d, 0x3a, 0xf0, 0x75, 0x4c, 0x75, 0x61, 0x56, 0x0e, 0x36, 0x5c, 0x9e,
+	0x34, 0x40, 0x06, 0xa7, 0x4f, 0x46, 0xa4, 0x75, 0x58, 0x9d, 0xe2, 0xc4, 0xef, 0xb3, 0xe8, 0x3e,
+	0xc2, 0xdf, 0x21, 0x28, 0x8c, 0xb4, 0x36, 0x5e, 0xbd, 0xa2, 0xf7, 0x53, 0x0f, 0xab, 0xd3, 0x7d,
+	0x23, 0x53, 0x76, 0x44, 0x4d, 0x3f, 0x7b, 0x55, 0xca, 0xfc, 0xf9, 0xaa, 0x94, 0xf9, 0xb6, 0x5f,
+	0x42, 0x67, 0xfd, 0x12, 0xfa, 0xa3, 0x5f, 0x42, 0x7f, 0xf7, 0x4b, 0xa8, 0xa5, 0xc9, 0x2b, 0xf8,
+	0xc3, 0xff, 0x02, 0x00, 0x00, 0xff, 0xff, 0xe0, 0xf0, 0x6a, 0xcb, 0xae, 0x0a, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/equality/equality.go b/vendor/github.com/docker/swarmkit/api/equality/equality.go
new file mode 100644
index 0000000000..522c719810
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/equality/equality.go
@@ -0,0 +1,67 @@
+package equality
+
+import (
+	"crypto/subtle"
+	"reflect"
+
+	"github.com/docker/swarmkit/api"
+)
+
+// TasksEqualStable returns true if the tasks are functionally equal, ignoring status,
+// version and other superfluous fields.
+//
+// This used to decide whether or not to propagate a task update to a controller.
+func TasksEqualStable(a, b *api.Task) bool {
+	// shallow copy
+	copyA, copyB := *a, *b
+
+	copyA.Status, copyB.Status = api.TaskStatus{}, api.TaskStatus{}
+	copyA.Meta, copyB.Meta = api.Meta{}, api.Meta{}
+
+	return reflect.DeepEqual(&copyA, &copyB)
+}
+
+// TaskStatusesEqualStable compares the task status excluding timestamp fields.
+func TaskStatusesEqualStable(a, b *api.TaskStatus) bool {
+	copyA, copyB := *a, *b
+
+	copyA.Timestamp, copyB.Timestamp = nil, nil
+	return reflect.DeepEqual(&copyA, &copyB)
+}
+
+// RootCAEqualStable compares RootCAs, excluding join tokens, which are randomly generated
+func RootCAEqualStable(a, b *api.RootCA) bool {
+	if a == nil && b == nil {
+		return true
+	}
+	if a == nil || b == nil {
+		return false
+	}
+
+	var aRotationKey, bRotationKey []byte
+	if a.RootRotation != nil {
+		aRotationKey = a.RootRotation.CAKey
+	}
+	if b.RootRotation != nil {
+		bRotationKey = b.RootRotation.CAKey
+	}
+	if subtle.ConstantTimeCompare(a.CAKey, b.CAKey) != 1 || subtle.ConstantTimeCompare(aRotationKey, bRotationKey) != 1 {
+		return false
+	}
+
+	copyA, copyB := *a, *b
+	copyA.JoinTokens, copyB.JoinTokens = api.JoinTokens{}, api.JoinTokens{}
+	return reflect.DeepEqual(copyA, copyB)
+}
+
+// ExternalCAsEqualStable compares lists of external CAs and determines whether they are equal.
+func ExternalCAsEqualStable(a, b []*api.ExternalCA) bool {
+	// because DeepEqual will treat an empty list and a nil list differently, we want to manually check this first
+	if len(a) == 0 && len(b) == 0 {
+		return true
+	}
+	// The assumption is that each individual api.ExternalCA within both lists are created from deserializing from a
+	// protobuf, so no special affordances are made to treat a nil map and empty map in the Options field of an
+	// api.ExternalCA as equivalent.
+	return reflect.DeepEqual(a, b)
+}
diff --git a/vendor/github.com/docker/swarmkit/api/health.pb.go b/vendor/github.com/docker/swarmkit/api/health.pb.go
new file mode 100644
index 0000000000..37296e0e84
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/health.pb.go
@@ -0,0 +1,724 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/health.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type HealthCheckResponse_ServingStatus int32
+
+const (
+	HealthCheckResponse_UNKNOWN     HealthCheckResponse_ServingStatus = 0
+	HealthCheckResponse_SERVING     HealthCheckResponse_ServingStatus = 1
+	HealthCheckResponse_NOT_SERVING HealthCheckResponse_ServingStatus = 2
+)
+
+var HealthCheckResponse_ServingStatus_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "SERVING",
+	2: "NOT_SERVING",
+}
+var HealthCheckResponse_ServingStatus_value = map[string]int32{
+	"UNKNOWN":     0,
+	"SERVING":     1,
+	"NOT_SERVING": 2,
+}
+
+func (x HealthCheckResponse_ServingStatus) String() string {
+	return proto.EnumName(HealthCheckResponse_ServingStatus_name, int32(x))
+}
+func (HealthCheckResponse_ServingStatus) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorHealth, []int{1, 0}
+}
+
+type HealthCheckRequest struct {
+	Service string `protobuf:"bytes,1,opt,name=service,proto3" json:"service,omitempty"`
+}
+
+func (m *HealthCheckRequest) Reset()                    { *m = HealthCheckRequest{} }
+func (*HealthCheckRequest) ProtoMessage()               {}
+func (*HealthCheckRequest) Descriptor() ([]byte, []int) { return fileDescriptorHealth, []int{0} }
+
+type HealthCheckResponse struct {
+	Status HealthCheckResponse_ServingStatus `protobuf:"varint,1,opt,name=status,proto3,enum=docker.swarmkit.v1.HealthCheckResponse_ServingStatus" json:"status,omitempty"`
+}
+
+func (m *HealthCheckResponse) Reset()                    { *m = HealthCheckResponse{} }
+func (*HealthCheckResponse) ProtoMessage()               {}
+func (*HealthCheckResponse) Descriptor() ([]byte, []int) { return fileDescriptorHealth, []int{1} }
+
+func init() {
+	proto.RegisterType((*HealthCheckRequest)(nil), "docker.swarmkit.v1.HealthCheckRequest")
+	proto.RegisterType((*HealthCheckResponse)(nil), "docker.swarmkit.v1.HealthCheckResponse")
+	proto.RegisterEnum("docker.swarmkit.v1.HealthCheckResponse_ServingStatus", HealthCheckResponse_ServingStatus_name, HealthCheckResponse_ServingStatus_value)
+}
+
+type authenticatedWrapperHealthServer struct {
+	local     HealthServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperHealthServer(local HealthServer, authorize func(context.Context, []string) error) HealthServer {
+	return &authenticatedWrapperHealthServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperHealthServer) Check(ctx context.Context, r *HealthCheckRequest) (*HealthCheckResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.Check(ctx, r)
+}
+
+func (m *HealthCheckRequest) Copy() *HealthCheckRequest {
+	if m == nil {
+		return nil
+	}
+	o := &HealthCheckRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *HealthCheckRequest) CopyFrom(src interface{}) {
+
+	o := src.(*HealthCheckRequest)
+	*m = *o
+}
+
+func (m *HealthCheckResponse) Copy() *HealthCheckResponse {
+	if m == nil {
+		return nil
+	}
+	o := &HealthCheckResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *HealthCheckResponse) CopyFrom(src interface{}) {
+
+	o := src.(*HealthCheckResponse)
+	*m = *o
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Health service
+
+type HealthClient interface {
+	Check(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (*HealthCheckResponse, error)
+}
+
+type healthClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewHealthClient(cc *grpc.ClientConn) HealthClient {
+	return &healthClient{cc}
+}
+
+func (c *healthClient) Check(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (*HealthCheckResponse, error) {
+	out := new(HealthCheckResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Health/Check", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for Health service
+
+type HealthServer interface {
+	Check(context.Context, *HealthCheckRequest) (*HealthCheckResponse, error)
+}
+
+func RegisterHealthServer(s *grpc.Server, srv HealthServer) {
+	s.RegisterService(&_Health_serviceDesc, srv)
+}
+
+func _Health_Check_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(HealthCheckRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(HealthServer).Check(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Health/Check",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(HealthServer).Check(ctx, req.(*HealthCheckRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _Health_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Health",
+	HandlerType: (*HealthServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "Check",
+			Handler:    _Health_Check_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/health.proto",
+}
+
+func (m *HealthCheckRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HealthCheckRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Service) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintHealth(dAtA, i, uint64(len(m.Service)))
+		i += copy(dAtA[i:], m.Service)
+	}
+	return i, nil
+}
+
+func (m *HealthCheckResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HealthCheckResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Status != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintHealth(dAtA, i, uint64(m.Status))
+	}
+	return i, nil
+}
+
+func encodeFixed64Health(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Health(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintHealth(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyHealthServer struct {
+	local                       HealthServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyHealthServer(local HealthServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) HealthServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyHealthServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyHealthServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyHealthServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyHealthServer) Check(ctx context.Context, r *HealthCheckRequest) (*HealthCheckResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.Check(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewHealthClient(conn).Check(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.Check(ctx, r)
+			}
+			return nil, err
+		}
+		return NewHealthClient(conn).Check(modCtx, r)
+	}
+	return resp, err
+}
+
+func (m *HealthCheckRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Service)
+	if l > 0 {
+		n += 1 + l + sovHealth(uint64(l))
+	}
+	return n
+}
+
+func (m *HealthCheckResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.Status != 0 {
+		n += 1 + sovHealth(uint64(m.Status))
+	}
+	return n
+}
+
+func sovHealth(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozHealth(x uint64) (n int) {
+	return sovHealth(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *HealthCheckRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&HealthCheckRequest{`,
+		`Service:` + fmt.Sprintf("%v", this.Service) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *HealthCheckResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&HealthCheckResponse{`,
+		`Status:` + fmt.Sprintf("%v", this.Status) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringHealth(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *HealthCheckRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowHealth
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HealthCheckRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HealthCheckRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowHealth
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthHealth
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Service = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipHealth(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthHealth
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *HealthCheckResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowHealth
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HealthCheckResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HealthCheckResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			m.Status = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowHealth
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Status |= (HealthCheckResponse_ServingStatus(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipHealth(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthHealth
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipHealth(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowHealth
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowHealth
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowHealth
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthHealth
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowHealth
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipHealth(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthHealth = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowHealth   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/health.proto", fileDescriptorHealth) }
+
+var fileDescriptorHealth = []byte{
+	// 315 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xd2, 0x4e, 0xcf, 0x2c, 0xc9,
+	0x28, 0x4d, 0xd2, 0x4b, 0xce, 0xcf, 0xd5, 0x4f, 0xc9, 0x4f, 0xce, 0x4e, 0x2d, 0xd2, 0x2f, 0x2e,
+	0x4f, 0x2c, 0xca, 0xcd, 0xce, 0x2c, 0xd1, 0x4f, 0x2c, 0xc8, 0xd4, 0xcf, 0x48, 0x4d, 0xcc, 0x29,
+	0xc9, 0xd0, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0x12, 0x82, 0xa8, 0xd0, 0x83, 0xa9, 0xd0, 0x2b,
+	0x33, 0x94, 0x12, 0x49, 0xcf, 0x4f, 0xcf, 0x07, 0x4b, 0xeb, 0x83, 0x58, 0x10, 0x95, 0x52, 0xe6,
+	0x78, 0x8c, 0x05, 0xab, 0x48, 0x2a, 0x4d, 0xd3, 0x2f, 0xc8, 0x29, 0x4d, 0xcf, 0xcc, 0x83, 0x52,
+	0x10, 0x8d, 0x4a, 0x7a, 0x5c, 0x42, 0x1e, 0x60, 0x2b, 0x9d, 0x33, 0x52, 0x93, 0xb3, 0x83, 0x52,
+	0x0b, 0x4b, 0x53, 0x8b, 0x4b, 0x84, 0x24, 0xb8, 0xd8, 0x8b, 0x53, 0x8b, 0xca, 0x32, 0x93, 0x53,
+	0x25, 0x18, 0x15, 0x18, 0x35, 0x38, 0x83, 0x60, 0x5c, 0xa5, 0x05, 0x8c, 0x5c, 0xc2, 0x28, 0x1a,
+	0x8a, 0x0b, 0xf2, 0xf3, 0x8a, 0x53, 0x85, 0x7c, 0xb9, 0xd8, 0x8a, 0x4b, 0x12, 0x4b, 0x4a, 0x8b,
+	0xc1, 0x1a, 0xf8, 0x8c, 0x4c, 0xf5, 0x30, 0xdd, 0xae, 0x87, 0x45, 0xa3, 0x5e, 0x30, 0xc8, 0xe0,
+	0xbc, 0xf4, 0x60, 0xb0, 0xe6, 0x20, 0xa8, 0x21, 0x4a, 0x56, 0x5c, 0xbc, 0x28, 0x12, 0x42, 0xdc,
+	0x5c, 0xec, 0xa1, 0x7e, 0xde, 0x7e, 0xfe, 0xe1, 0x7e, 0x02, 0x0c, 0x20, 0x4e, 0xb0, 0x6b, 0x50,
+	0x98, 0xa7, 0x9f, 0xbb, 0x00, 0xa3, 0x10, 0x3f, 0x17, 0xb7, 0x9f, 0x7f, 0x48, 0x3c, 0x4c, 0x80,
+	0xc9, 0xa8, 0x92, 0x8b, 0x0d, 0x62, 0x91, 0x50, 0x3e, 0x17, 0x2b, 0xd8, 0x32, 0x21, 0x35, 0x82,
+	0xae, 0x01, 0xfb, 0x5b, 0x4a, 0x9d, 0x48, 0x57, 0x2b, 0x89, 0x9e, 0x5a, 0xf7, 0x6e, 0x06, 0x13,
+	0x3f, 0x17, 0x2f, 0x58, 0xa1, 0x6e, 0x6e, 0x62, 0x5e, 0x62, 0x7a, 0x6a, 0x91, 0x93, 0xc4, 0x89,
+	0x87, 0x72, 0x0c, 0x37, 0x1e, 0xca, 0x31, 0x34, 0x3c, 0x92, 0x63, 0x3c, 0xf1, 0x48, 0x8e, 0xf1,
+	0xc2, 0x23, 0x39, 0xc6, 0x07, 0x8f, 0xe4, 0x18, 0x93, 0xd8, 0xc0, 0xc1, 0x6d, 0x0c, 0x08, 0x00,
+	0x00, 0xff, 0xff, 0x7b, 0xf2, 0xdd, 0x23, 0x00, 0x02, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/logbroker.pb.go b/vendor/github.com/docker/swarmkit/api/logbroker.pb.go
new file mode 100644
index 0000000000..2244b3b3c3
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/logbroker.pb.go
@@ -0,0 +1,3421 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/logbroker.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import google_protobuf "github.com/gogo/protobuf/types"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// LogStream defines the stream from which the log message came.
+type LogStream int32
+
+const (
+	LogStreamUnknown LogStream = 0
+	LogStreamStdout  LogStream = 1
+	LogStreamStderr  LogStream = 2
+)
+
+var LogStream_name = map[int32]string{
+	0: "LOG_STREAM_UNKNOWN",
+	1: "LOG_STREAM_STDOUT",
+	2: "LOG_STREAM_STDERR",
+}
+var LogStream_value = map[string]int32{
+	"LOG_STREAM_UNKNOWN": 0,
+	"LOG_STREAM_STDOUT":  1,
+	"LOG_STREAM_STDERR":  2,
+}
+
+func (x LogStream) String() string {
+	return proto.EnumName(LogStream_name, int32(x))
+}
+func (LogStream) EnumDescriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{0} }
+
+type LogSubscriptionOptions struct {
+	// Streams defines which log streams should be sent from the task source.
+	// Empty means send all the messages.
+	Streams []LogStream `protobuf:"varint,1,rep,name=streams,enum=docker.swarmkit.v1.LogStream" json:"streams,omitempty"`
+	// Follow instructs the publisher to continue sending log messages as they
+	// are produced, after satisfying the initial query.
+	Follow bool `protobuf:"varint,2,opt,name=follow,proto3" json:"follow,omitempty"`
+	// Tail defines how many messages relative to the log stream to send when
+	// starting the stream.
+	//
+	// Positive values will skip that number of messages from the start of the
+	// stream before publishing.
+	//
+	// Negative values will specify messages relative to the end of the stream,
+	// offset by one. We can say that the last (-n-1) lines are returned when n
+	// < 0. As reference, -1 would mean send no log lines (typically used with
+	// follow), -2 would return the last log line, -11 would return the last 10
+	// and so on.
+	//
+	// The default value of zero will return all logs.
+	//
+	// Note that this is very different from the Docker API.
+	Tail int64 `protobuf:"varint,3,opt,name=tail,proto3" json:"tail,omitempty"`
+	// Since indicates that only log messages produced after this timestamp
+	// should be sent.
+	// Note: can't use stdtime because this field is nullable.
+	Since *google_protobuf.Timestamp `protobuf:"bytes,4,opt,name=since" json:"since,omitempty"`
+}
+
+func (m *LogSubscriptionOptions) Reset()                    { *m = LogSubscriptionOptions{} }
+func (*LogSubscriptionOptions) ProtoMessage()               {}
+func (*LogSubscriptionOptions) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{0} }
+
+// LogSelector will match logs from ANY of the defined parameters.
+//
+// For the best effect, the client should use the least specific parameter
+// possible. For example, if they want to listen to all the tasks of a service,
+// they should use the service id, rather than specifying the individual tasks.
+type LogSelector struct {
+	ServiceIDs []string `protobuf:"bytes,1,rep,name=service_ids,json=serviceIds" json:"service_ids,omitempty"`
+	NodeIDs    []string `protobuf:"bytes,2,rep,name=node_ids,json=nodeIds" json:"node_ids,omitempty"`
+	TaskIDs    []string `protobuf:"bytes,3,rep,name=task_ids,json=taskIds" json:"task_ids,omitempty"`
+}
+
+func (m *LogSelector) Reset()                    { *m = LogSelector{} }
+func (*LogSelector) ProtoMessage()               {}
+func (*LogSelector) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{1} }
+
+// LogContext marks the context from which a log message was generated.
+type LogContext struct {
+	ServiceID string `protobuf:"bytes,1,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	NodeID    string `protobuf:"bytes,2,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	TaskID    string `protobuf:"bytes,3,opt,name=task_id,json=taskId,proto3" json:"task_id,omitempty"`
+}
+
+func (m *LogContext) Reset()                    { *m = LogContext{} }
+func (*LogContext) ProtoMessage()               {}
+func (*LogContext) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{2} }
+
+// LogAttr is an extra key/value pair that may be have been set by users
+type LogAttr struct {
+	Key   string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
+	Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *LogAttr) Reset()                    { *m = LogAttr{} }
+func (*LogAttr) ProtoMessage()               {}
+func (*LogAttr) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{3} }
+
+// LogMessage
+type LogMessage struct {
+	// Context identifies the source of the log message.
+	Context LogContext `protobuf:"bytes,1,opt,name=context" json:"context"`
+	// Timestamp is the time at which the message was generated.
+	// Note: can't use stdtime because this field is nullable.
+	Timestamp *google_protobuf.Timestamp `protobuf:"bytes,2,opt,name=timestamp" json:"timestamp,omitempty"`
+	// Stream identifies the stream of the log message, stdout or stderr.
+	Stream LogStream `protobuf:"varint,3,opt,name=stream,proto3,enum=docker.swarmkit.v1.LogStream" json:"stream,omitempty"`
+	// Data is the raw log message, as generated by the application.
+	Data []byte `protobuf:"bytes,4,opt,name=data,proto3" json:"data,omitempty"`
+	// Attrs is a list of key value pairs representing additional log details
+	// that may have been returned from the logger
+	Attrs []LogAttr `protobuf:"bytes,5,rep,name=attrs" json:"attrs"`
+}
+
+func (m *LogMessage) Reset()                    { *m = LogMessage{} }
+func (*LogMessage) ProtoMessage()               {}
+func (*LogMessage) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{4} }
+
+type SubscribeLogsRequest struct {
+	// LogSelector describes the logs to which the subscriber is
+	Selector *LogSelector            `protobuf:"bytes,1,opt,name=selector" json:"selector,omitempty"`
+	Options  *LogSubscriptionOptions `protobuf:"bytes,2,opt,name=options" json:"options,omitempty"`
+}
+
+func (m *SubscribeLogsRequest) Reset()                    { *m = SubscribeLogsRequest{} }
+func (*SubscribeLogsRequest) ProtoMessage()               {}
+func (*SubscribeLogsRequest) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{5} }
+
+type SubscribeLogsMessage struct {
+	Messages []LogMessage `protobuf:"bytes,1,rep,name=messages" json:"messages"`
+}
+
+func (m *SubscribeLogsMessage) Reset()                    { *m = SubscribeLogsMessage{} }
+func (*SubscribeLogsMessage) ProtoMessage()               {}
+func (*SubscribeLogsMessage) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{6} }
+
+// ListenSubscriptionsRequest is a placeholder to begin listening for
+// subscriptions.
+type ListenSubscriptionsRequest struct {
+}
+
+func (m *ListenSubscriptionsRequest) Reset()      { *m = ListenSubscriptionsRequest{} }
+func (*ListenSubscriptionsRequest) ProtoMessage() {}
+func (*ListenSubscriptionsRequest) Descriptor() ([]byte, []int) {
+	return fileDescriptorLogbroker, []int{7}
+}
+
+// SubscriptionMessage instructs the listener to start publishing messages for
+// the stream or end a subscription.
+//
+// If Options.Follow == false, the worker should end the subscription on its own.
+type SubscriptionMessage struct {
+	// ID identifies the subscription.
+	ID string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	// Selector defines which sources should be sent for the subscription.
+	Selector *LogSelector `protobuf:"bytes,2,opt,name=selector" json:"selector,omitempty"`
+	// Options specify how the subscription should be satisfied.
+	Options *LogSubscriptionOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	// Close will be true if the node should shutdown the subscription with the
+	// provided identifier.
+	Close bool `protobuf:"varint,4,opt,name=close,proto3" json:"close,omitempty"`
+}
+
+func (m *SubscriptionMessage) Reset()                    { *m = SubscriptionMessage{} }
+func (*SubscriptionMessage) ProtoMessage()               {}
+func (*SubscriptionMessage) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{8} }
+
+type PublishLogsMessage struct {
+	// SubscriptionID identifies which subscription the set of messages should
+	// be sent to. We can think of this as a "mail box" for the subscription.
+	SubscriptionID string `protobuf:"bytes,1,opt,name=subscription_id,json=subscriptionId,proto3" json:"subscription_id,omitempty"`
+	// Messages is the log message for publishing.
+	Messages []LogMessage `protobuf:"bytes,2,rep,name=messages" json:"messages"`
+	// Close is a boolean for whether or not the client has completed its log
+	// stream. When close is called, the manager can hang up the subscription.
+	// Any further logs from this subscription are an error condition. Any
+	// messages included when close is set can be discarded
+	Close bool `protobuf:"varint,3,opt,name=close,proto3" json:"close,omitempty"`
+}
+
+func (m *PublishLogsMessage) Reset()                    { *m = PublishLogsMessage{} }
+func (*PublishLogsMessage) ProtoMessage()               {}
+func (*PublishLogsMessage) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{9} }
+
+type PublishLogsResponse struct {
+}
+
+func (m *PublishLogsResponse) Reset()                    { *m = PublishLogsResponse{} }
+func (*PublishLogsResponse) ProtoMessage()               {}
+func (*PublishLogsResponse) Descriptor() ([]byte, []int) { return fileDescriptorLogbroker, []int{10} }
+
+func init() {
+	proto.RegisterType((*LogSubscriptionOptions)(nil), "docker.swarmkit.v1.LogSubscriptionOptions")
+	proto.RegisterType((*LogSelector)(nil), "docker.swarmkit.v1.LogSelector")
+	proto.RegisterType((*LogContext)(nil), "docker.swarmkit.v1.LogContext")
+	proto.RegisterType((*LogAttr)(nil), "docker.swarmkit.v1.LogAttr")
+	proto.RegisterType((*LogMessage)(nil), "docker.swarmkit.v1.LogMessage")
+	proto.RegisterType((*SubscribeLogsRequest)(nil), "docker.swarmkit.v1.SubscribeLogsRequest")
+	proto.RegisterType((*SubscribeLogsMessage)(nil), "docker.swarmkit.v1.SubscribeLogsMessage")
+	proto.RegisterType((*ListenSubscriptionsRequest)(nil), "docker.swarmkit.v1.ListenSubscriptionsRequest")
+	proto.RegisterType((*SubscriptionMessage)(nil), "docker.swarmkit.v1.SubscriptionMessage")
+	proto.RegisterType((*PublishLogsMessage)(nil), "docker.swarmkit.v1.PublishLogsMessage")
+	proto.RegisterType((*PublishLogsResponse)(nil), "docker.swarmkit.v1.PublishLogsResponse")
+	proto.RegisterEnum("docker.swarmkit.v1.LogStream", LogStream_name, LogStream_value)
+}
+
+type authenticatedWrapperLogsServer struct {
+	local     LogsServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperLogsServer(local LogsServer, authorize func(context.Context, []string) error) LogsServer {
+	return &authenticatedWrapperLogsServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperLogsServer) SubscribeLogs(r *SubscribeLogsRequest, stream Logs_SubscribeLogsServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.SubscribeLogs(r, stream)
+}
+
+type authenticatedWrapperLogBrokerServer struct {
+	local     LogBrokerServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperLogBrokerServer(local LogBrokerServer, authorize func(context.Context, []string) error) LogBrokerServer {
+	return &authenticatedWrapperLogBrokerServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperLogBrokerServer) ListenSubscriptions(r *ListenSubscriptionsRequest, stream LogBroker_ListenSubscriptionsServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.ListenSubscriptions(r, stream)
+}
+
+func (p *authenticatedWrapperLogBrokerServer) PublishLogs(stream LogBroker_PublishLogsServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.PublishLogs(stream)
+}
+
+func (m *LogSubscriptionOptions) Copy() *LogSubscriptionOptions {
+	if m == nil {
+		return nil
+	}
+	o := &LogSubscriptionOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LogSubscriptionOptions) CopyFrom(src interface{}) {
+
+	o := src.(*LogSubscriptionOptions)
+	*m = *o
+	if o.Streams != nil {
+		m.Streams = make([]LogStream, len(o.Streams))
+		copy(m.Streams, o.Streams)
+	}
+
+	if o.Since != nil {
+		m.Since = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Since, o.Since)
+	}
+}
+
+func (m *LogSelector) Copy() *LogSelector {
+	if m == nil {
+		return nil
+	}
+	o := &LogSelector{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LogSelector) CopyFrom(src interface{}) {
+
+	o := src.(*LogSelector)
+	*m = *o
+	if o.ServiceIDs != nil {
+		m.ServiceIDs = make([]string, len(o.ServiceIDs))
+		copy(m.ServiceIDs, o.ServiceIDs)
+	}
+
+	if o.NodeIDs != nil {
+		m.NodeIDs = make([]string, len(o.NodeIDs))
+		copy(m.NodeIDs, o.NodeIDs)
+	}
+
+	if o.TaskIDs != nil {
+		m.TaskIDs = make([]string, len(o.TaskIDs))
+		copy(m.TaskIDs, o.TaskIDs)
+	}
+
+}
+
+func (m *LogContext) Copy() *LogContext {
+	if m == nil {
+		return nil
+	}
+	o := &LogContext{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LogContext) CopyFrom(src interface{}) {
+
+	o := src.(*LogContext)
+	*m = *o
+}
+
+func (m *LogAttr) Copy() *LogAttr {
+	if m == nil {
+		return nil
+	}
+	o := &LogAttr{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LogAttr) CopyFrom(src interface{}) {
+
+	o := src.(*LogAttr)
+	*m = *o
+}
+
+func (m *LogMessage) Copy() *LogMessage {
+	if m == nil {
+		return nil
+	}
+	o := &LogMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LogMessage) CopyFrom(src interface{}) {
+
+	o := src.(*LogMessage)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Context, &o.Context)
+	if o.Timestamp != nil {
+		m.Timestamp = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Timestamp, o.Timestamp)
+	}
+	if o.Data != nil {
+		m.Data = make([]byte, len(o.Data))
+		copy(m.Data, o.Data)
+	}
+	if o.Attrs != nil {
+		m.Attrs = make([]LogAttr, len(o.Attrs))
+		for i := range m.Attrs {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Attrs[i], &o.Attrs[i])
+		}
+	}
+
+}
+
+func (m *SubscribeLogsRequest) Copy() *SubscribeLogsRequest {
+	if m == nil {
+		return nil
+	}
+	o := &SubscribeLogsRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SubscribeLogsRequest) CopyFrom(src interface{}) {
+
+	o := src.(*SubscribeLogsRequest)
+	*m = *o
+	if o.Selector != nil {
+		m.Selector = &LogSelector{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Selector, o.Selector)
+	}
+	if o.Options != nil {
+		m.Options = &LogSubscriptionOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Options, o.Options)
+	}
+}
+
+func (m *SubscribeLogsMessage) Copy() *SubscribeLogsMessage {
+	if m == nil {
+		return nil
+	}
+	o := &SubscribeLogsMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SubscribeLogsMessage) CopyFrom(src interface{}) {
+
+	o := src.(*SubscribeLogsMessage)
+	*m = *o
+	if o.Messages != nil {
+		m.Messages = make([]LogMessage, len(o.Messages))
+		for i := range m.Messages {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Messages[i], &o.Messages[i])
+		}
+	}
+
+}
+
+func (m *ListenSubscriptionsRequest) Copy() *ListenSubscriptionsRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ListenSubscriptionsRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ListenSubscriptionsRequest) CopyFrom(src interface{}) {}
+func (m *SubscriptionMessage) Copy() *SubscriptionMessage {
+	if m == nil {
+		return nil
+	}
+	o := &SubscriptionMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SubscriptionMessage) CopyFrom(src interface{}) {
+
+	o := src.(*SubscriptionMessage)
+	*m = *o
+	if o.Selector != nil {
+		m.Selector = &LogSelector{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Selector, o.Selector)
+	}
+	if o.Options != nil {
+		m.Options = &LogSubscriptionOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Options, o.Options)
+	}
+}
+
+func (m *PublishLogsMessage) Copy() *PublishLogsMessage {
+	if m == nil {
+		return nil
+	}
+	o := &PublishLogsMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PublishLogsMessage) CopyFrom(src interface{}) {
+
+	o := src.(*PublishLogsMessage)
+	*m = *o
+	if o.Messages != nil {
+		m.Messages = make([]LogMessage, len(o.Messages))
+		for i := range m.Messages {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Messages[i], &o.Messages[i])
+		}
+	}
+
+}
+
+func (m *PublishLogsResponse) Copy() *PublishLogsResponse {
+	if m == nil {
+		return nil
+	}
+	o := &PublishLogsResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PublishLogsResponse) CopyFrom(src interface{}) {}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Logs service
+
+type LogsClient interface {
+	// SubscribeLogs starts a subscription with the specified selector and options.
+	//
+	// The subscription will be distributed to relevant nodes and messages will
+	// be collected and sent via the returned stream.
+	//
+	// The subscription will end with an EOF.
+	SubscribeLogs(ctx context.Context, in *SubscribeLogsRequest, opts ...grpc.CallOption) (Logs_SubscribeLogsClient, error)
+}
+
+type logsClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewLogsClient(cc *grpc.ClientConn) LogsClient {
+	return &logsClient{cc}
+}
+
+func (c *logsClient) SubscribeLogs(ctx context.Context, in *SubscribeLogsRequest, opts ...grpc.CallOption) (Logs_SubscribeLogsClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Logs_serviceDesc.Streams[0], c.cc, "/docker.swarmkit.v1.Logs/SubscribeLogs", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &logsSubscribeLogsClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type Logs_SubscribeLogsClient interface {
+	Recv() (*SubscribeLogsMessage, error)
+	grpc.ClientStream
+}
+
+type logsSubscribeLogsClient struct {
+	grpc.ClientStream
+}
+
+func (x *logsSubscribeLogsClient) Recv() (*SubscribeLogsMessage, error) {
+	m := new(SubscribeLogsMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for Logs service
+
+type LogsServer interface {
+	// SubscribeLogs starts a subscription with the specified selector and options.
+	//
+	// The subscription will be distributed to relevant nodes and messages will
+	// be collected and sent via the returned stream.
+	//
+	// The subscription will end with an EOF.
+	SubscribeLogs(*SubscribeLogsRequest, Logs_SubscribeLogsServer) error
+}
+
+func RegisterLogsServer(s *grpc.Server, srv LogsServer) {
+	s.RegisterService(&_Logs_serviceDesc, srv)
+}
+
+func _Logs_SubscribeLogs_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(SubscribeLogsRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(LogsServer).SubscribeLogs(m, &logsSubscribeLogsServer{stream})
+}
+
+type Logs_SubscribeLogsServer interface {
+	Send(*SubscribeLogsMessage) error
+	grpc.ServerStream
+}
+
+type logsSubscribeLogsServer struct {
+	grpc.ServerStream
+}
+
+func (x *logsSubscribeLogsServer) Send(m *SubscribeLogsMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+var _Logs_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Logs",
+	HandlerType: (*LogsServer)(nil),
+	Methods:     []grpc.MethodDesc{},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "SubscribeLogs",
+			Handler:       _Logs_SubscribeLogs_Handler,
+			ServerStreams: true,
+		},
+	},
+	Metadata: "github.com/docker/swarmkit/api/logbroker.proto",
+}
+
+// Client API for LogBroker service
+
+type LogBrokerClient interface {
+	// ListenSubscriptions starts a subscription stream for the node. For each
+	// message received, the node should attempt to satisfy the subscription.
+	//
+	// Log messages that match the provided subscription should be sent via
+	// PublishLogs.
+	ListenSubscriptions(ctx context.Context, in *ListenSubscriptionsRequest, opts ...grpc.CallOption) (LogBroker_ListenSubscriptionsClient, error)
+	// PublishLogs receives sets of log messages destined for a single
+	// subscription identifier.
+	PublishLogs(ctx context.Context, opts ...grpc.CallOption) (LogBroker_PublishLogsClient, error)
+}
+
+type logBrokerClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewLogBrokerClient(cc *grpc.ClientConn) LogBrokerClient {
+	return &logBrokerClient{cc}
+}
+
+func (c *logBrokerClient) ListenSubscriptions(ctx context.Context, in *ListenSubscriptionsRequest, opts ...grpc.CallOption) (LogBroker_ListenSubscriptionsClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_LogBroker_serviceDesc.Streams[0], c.cc, "/docker.swarmkit.v1.LogBroker/ListenSubscriptions", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &logBrokerListenSubscriptionsClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type LogBroker_ListenSubscriptionsClient interface {
+	Recv() (*SubscriptionMessage, error)
+	grpc.ClientStream
+}
+
+type logBrokerListenSubscriptionsClient struct {
+	grpc.ClientStream
+}
+
+func (x *logBrokerListenSubscriptionsClient) Recv() (*SubscriptionMessage, error) {
+	m := new(SubscriptionMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func (c *logBrokerClient) PublishLogs(ctx context.Context, opts ...grpc.CallOption) (LogBroker_PublishLogsClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_LogBroker_serviceDesc.Streams[1], c.cc, "/docker.swarmkit.v1.LogBroker/PublishLogs", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &logBrokerPublishLogsClient{stream}
+	return x, nil
+}
+
+type LogBroker_PublishLogsClient interface {
+	Send(*PublishLogsMessage) error
+	CloseAndRecv() (*PublishLogsResponse, error)
+	grpc.ClientStream
+}
+
+type logBrokerPublishLogsClient struct {
+	grpc.ClientStream
+}
+
+func (x *logBrokerPublishLogsClient) Send(m *PublishLogsMessage) error {
+	return x.ClientStream.SendMsg(m)
+}
+
+func (x *logBrokerPublishLogsClient) CloseAndRecv() (*PublishLogsResponse, error) {
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	m := new(PublishLogsResponse)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for LogBroker service
+
+type LogBrokerServer interface {
+	// ListenSubscriptions starts a subscription stream for the node. For each
+	// message received, the node should attempt to satisfy the subscription.
+	//
+	// Log messages that match the provided subscription should be sent via
+	// PublishLogs.
+	ListenSubscriptions(*ListenSubscriptionsRequest, LogBroker_ListenSubscriptionsServer) error
+	// PublishLogs receives sets of log messages destined for a single
+	// subscription identifier.
+	PublishLogs(LogBroker_PublishLogsServer) error
+}
+
+func RegisterLogBrokerServer(s *grpc.Server, srv LogBrokerServer) {
+	s.RegisterService(&_LogBroker_serviceDesc, srv)
+}
+
+func _LogBroker_ListenSubscriptions_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(ListenSubscriptionsRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(LogBrokerServer).ListenSubscriptions(m, &logBrokerListenSubscriptionsServer{stream})
+}
+
+type LogBroker_ListenSubscriptionsServer interface {
+	Send(*SubscriptionMessage) error
+	grpc.ServerStream
+}
+
+type logBrokerListenSubscriptionsServer struct {
+	grpc.ServerStream
+}
+
+func (x *logBrokerListenSubscriptionsServer) Send(m *SubscriptionMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func _LogBroker_PublishLogs_Handler(srv interface{}, stream grpc.ServerStream) error {
+	return srv.(LogBrokerServer).PublishLogs(&logBrokerPublishLogsServer{stream})
+}
+
+type LogBroker_PublishLogsServer interface {
+	SendAndClose(*PublishLogsResponse) error
+	Recv() (*PublishLogsMessage, error)
+	grpc.ServerStream
+}
+
+type logBrokerPublishLogsServer struct {
+	grpc.ServerStream
+}
+
+func (x *logBrokerPublishLogsServer) SendAndClose(m *PublishLogsResponse) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func (x *logBrokerPublishLogsServer) Recv() (*PublishLogsMessage, error) {
+	m := new(PublishLogsMessage)
+	if err := x.ServerStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+var _LogBroker_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.LogBroker",
+	HandlerType: (*LogBrokerServer)(nil),
+	Methods:     []grpc.MethodDesc{},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "ListenSubscriptions",
+			Handler:       _LogBroker_ListenSubscriptions_Handler,
+			ServerStreams: true,
+		},
+		{
+			StreamName:    "PublishLogs",
+			Handler:       _LogBroker_PublishLogs_Handler,
+			ClientStreams: true,
+		},
+	},
+	Metadata: "github.com/docker/swarmkit/api/logbroker.proto",
+}
+
+func (m *LogSubscriptionOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogSubscriptionOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Streams) > 0 {
+		for _, num := range m.Streams {
+			dAtA[i] = 0x8
+			i++
+			i = encodeVarintLogbroker(dAtA, i, uint64(num))
+		}
+	}
+	if m.Follow {
+		dAtA[i] = 0x10
+		i++
+		if m.Follow {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Tail != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Tail))
+	}
+	if m.Since != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Since.Size()))
+		n1, err := m.Since.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	return i, nil
+}
+
+func (m *LogSelector) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogSelector) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceIDs) > 0 {
+		for _, s := range m.ServiceIDs {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.NodeIDs) > 0 {
+		for _, s := range m.NodeIDs {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.TaskIDs) > 0 {
+		for _, s := range m.TaskIDs {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *LogContext) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogContext) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if len(m.TaskID) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.TaskID)))
+		i += copy(dAtA[i:], m.TaskID)
+	}
+	return i, nil
+}
+
+func (m *LogAttr) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogAttr) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Key) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.Key)))
+		i += copy(dAtA[i:], m.Key)
+	}
+	if len(m.Value) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func (m *LogMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LogMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintLogbroker(dAtA, i, uint64(m.Context.Size()))
+	n2, err := m.Context.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n2
+	if m.Timestamp != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Timestamp.Size()))
+		n3, err := m.Timestamp.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	if m.Stream != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Stream))
+	}
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if len(m.Attrs) > 0 {
+		for _, msg := range m.Attrs {
+			dAtA[i] = 0x2a
+			i++
+			i = encodeVarintLogbroker(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *SubscribeLogsRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SubscribeLogsRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Selector != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Selector.Size()))
+		n4, err := m.Selector.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	if m.Options != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Options.Size()))
+		n5, err := m.Options.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n5
+	}
+	return i, nil
+}
+
+func (m *SubscribeLogsMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SubscribeLogsMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Messages) > 0 {
+		for _, msg := range m.Messages {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintLogbroker(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *ListenSubscriptionsRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListenSubscriptionsRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *SubscriptionMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SubscriptionMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	if m.Selector != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Selector.Size()))
+		n6, err := m.Selector.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	if m.Options != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(m.Options.Size()))
+		n7, err := m.Options.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	if m.Close {
+		dAtA[i] = 0x20
+		i++
+		if m.Close {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *PublishLogsMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PublishLogsMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SubscriptionID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintLogbroker(dAtA, i, uint64(len(m.SubscriptionID)))
+		i += copy(dAtA[i:], m.SubscriptionID)
+	}
+	if len(m.Messages) > 0 {
+		for _, msg := range m.Messages {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintLogbroker(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Close {
+		dAtA[i] = 0x18
+		i++
+		if m.Close {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *PublishLogsResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PublishLogsResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func encodeFixed64Logbroker(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Logbroker(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintLogbroker(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyLogsServer struct {
+	local                       LogsServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyLogsServer(local LogsServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) LogsServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyLogsServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyLogsServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyLogsServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+type Logs_SubscribeLogsServerWrapper struct {
+	Logs_SubscribeLogsServer
+	ctx context.Context
+}
+
+func (s Logs_SubscribeLogsServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyLogsServer) SubscribeLogs(r *SubscribeLogsRequest, stream Logs_SubscribeLogsServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Logs_SubscribeLogsServerWrapper{
+				Logs_SubscribeLogsServer: stream,
+				ctx: ctx,
+			}
+			return p.local.SubscribeLogs(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewLogsClient(conn).SubscribeLogs(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+type raftProxyLogBrokerServer struct {
+	local                       LogBrokerServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyLogBrokerServer(local LogBrokerServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) LogBrokerServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyLogBrokerServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyLogBrokerServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyLogBrokerServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+type LogBroker_ListenSubscriptionsServerWrapper struct {
+	LogBroker_ListenSubscriptionsServer
+	ctx context.Context
+}
+
+func (s LogBroker_ListenSubscriptionsServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyLogBrokerServer) ListenSubscriptions(r *ListenSubscriptionsRequest, stream LogBroker_ListenSubscriptionsServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := LogBroker_ListenSubscriptionsServerWrapper{
+				LogBroker_ListenSubscriptionsServer: stream,
+				ctx: ctx,
+			}
+			return p.local.ListenSubscriptions(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewLogBrokerClient(conn).ListenSubscriptions(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+type LogBroker_PublishLogsServerWrapper struct {
+	LogBroker_PublishLogsServer
+	ctx context.Context
+}
+
+func (s LogBroker_PublishLogsServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyLogBrokerServer) PublishLogs(stream LogBroker_PublishLogsServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := LogBroker_PublishLogsServerWrapper{
+				LogBroker_PublishLogsServer: stream,
+				ctx: ctx,
+			}
+			return p.local.PublishLogs(streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewLogBrokerClient(conn).PublishLogs(ctx)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := stream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := clientStream.Send(msg); err != nil {
+			return err
+		}
+	}
+
+	reply, err := clientStream.CloseAndRecv()
+	if err != nil {
+		return err
+	}
+
+	return stream.SendAndClose(reply)
+}
+
+func (m *LogSubscriptionOptions) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Streams) > 0 {
+		for _, e := range m.Streams {
+			n += 1 + sovLogbroker(uint64(e))
+		}
+	}
+	if m.Follow {
+		n += 2
+	}
+	if m.Tail != 0 {
+		n += 1 + sovLogbroker(uint64(m.Tail))
+	}
+	if m.Since != nil {
+		l = m.Since.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	return n
+}
+
+func (m *LogSelector) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.ServiceIDs) > 0 {
+		for _, s := range m.ServiceIDs {
+			l = len(s)
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	if len(m.NodeIDs) > 0 {
+		for _, s := range m.NodeIDs {
+			l = len(s)
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	if len(m.TaskIDs) > 0 {
+		for _, s := range m.TaskIDs {
+			l = len(s)
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *LogContext) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	l = len(m.TaskID)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	return n
+}
+
+func (m *LogAttr) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Key)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	return n
+}
+
+func (m *LogMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Context.Size()
+	n += 1 + l + sovLogbroker(uint64(l))
+	if m.Timestamp != nil {
+		l = m.Timestamp.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if m.Stream != 0 {
+		n += 1 + sovLogbroker(uint64(m.Stream))
+	}
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if len(m.Attrs) > 0 {
+		for _, e := range m.Attrs {
+			l = e.Size()
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *SubscribeLogsRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Selector != nil {
+		l = m.Selector.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if m.Options != nil {
+		l = m.Options.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	return n
+}
+
+func (m *SubscribeLogsMessage) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Messages) > 0 {
+		for _, e := range m.Messages {
+			l = e.Size()
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ListenSubscriptionsRequest) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *SubscriptionMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if m.Selector != nil {
+		l = m.Selector.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if m.Options != nil {
+		l = m.Options.Size()
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if m.Close {
+		n += 2
+	}
+	return n
+}
+
+func (m *PublishLogsMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SubscriptionID)
+	if l > 0 {
+		n += 1 + l + sovLogbroker(uint64(l))
+	}
+	if len(m.Messages) > 0 {
+		for _, e := range m.Messages {
+			l = e.Size()
+			n += 1 + l + sovLogbroker(uint64(l))
+		}
+	}
+	if m.Close {
+		n += 2
+	}
+	return n
+}
+
+func (m *PublishLogsResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func sovLogbroker(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozLogbroker(x uint64) (n int) {
+	return sovLogbroker(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *LogSubscriptionOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LogSubscriptionOptions{`,
+		`Streams:` + fmt.Sprintf("%v", this.Streams) + `,`,
+		`Follow:` + fmt.Sprintf("%v", this.Follow) + `,`,
+		`Tail:` + fmt.Sprintf("%v", this.Tail) + `,`,
+		`Since:` + strings.Replace(fmt.Sprintf("%v", this.Since), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LogSelector) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LogSelector{`,
+		`ServiceIDs:` + fmt.Sprintf("%v", this.ServiceIDs) + `,`,
+		`NodeIDs:` + fmt.Sprintf("%v", this.NodeIDs) + `,`,
+		`TaskIDs:` + fmt.Sprintf("%v", this.TaskIDs) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LogContext) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LogContext{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`TaskID:` + fmt.Sprintf("%v", this.TaskID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LogAttr) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LogAttr{`,
+		`Key:` + fmt.Sprintf("%v", this.Key) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LogMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LogMessage{`,
+		`Context:` + strings.Replace(strings.Replace(this.Context.String(), "LogContext", "LogContext", 1), `&`, ``, 1) + `,`,
+		`Timestamp:` + strings.Replace(fmt.Sprintf("%v", this.Timestamp), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`Stream:` + fmt.Sprintf("%v", this.Stream) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`Attrs:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Attrs), "LogAttr", "LogAttr", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SubscribeLogsRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SubscribeLogsRequest{`,
+		`Selector:` + strings.Replace(fmt.Sprintf("%v", this.Selector), "LogSelector", "LogSelector", 1) + `,`,
+		`Options:` + strings.Replace(fmt.Sprintf("%v", this.Options), "LogSubscriptionOptions", "LogSubscriptionOptions", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SubscribeLogsMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SubscribeLogsMessage{`,
+		`Messages:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Messages), "LogMessage", "LogMessage", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListenSubscriptionsRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListenSubscriptionsRequest{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SubscriptionMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SubscriptionMessage{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Selector:` + strings.Replace(fmt.Sprintf("%v", this.Selector), "LogSelector", "LogSelector", 1) + `,`,
+		`Options:` + strings.Replace(fmt.Sprintf("%v", this.Options), "LogSubscriptionOptions", "LogSubscriptionOptions", 1) + `,`,
+		`Close:` + fmt.Sprintf("%v", this.Close) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PublishLogsMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PublishLogsMessage{`,
+		`SubscriptionID:` + fmt.Sprintf("%v", this.SubscriptionID) + `,`,
+		`Messages:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Messages), "LogMessage", "LogMessage", 1), `&`, ``, 1) + `,`,
+		`Close:` + fmt.Sprintf("%v", this.Close) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PublishLogsResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PublishLogsResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringLogbroker(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *LogSubscriptionOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogSubscriptionOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogSubscriptionOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType == 0 {
+				var v LogStream
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowLogbroker
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (LogStream(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Streams = append(m.Streams, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowLogbroker
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthLogbroker
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v LogStream
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowLogbroker
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (LogStream(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Streams = append(m.Streams, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Streams", wireType)
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Follow", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Follow = bool(v != 0)
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Tail", wireType)
+			}
+			m.Tail = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Tail |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Since", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Since == nil {
+				m.Since = &google_protobuf.Timestamp{}
+			}
+			if err := m.Since.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LogSelector) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogSelector: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogSelector: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceIDs", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceIDs = append(m.ServiceIDs, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeIDs", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeIDs = append(m.NodeIDs, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskIDs", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskIDs = append(m.TaskIDs, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LogContext) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogContext: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogContext: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TaskID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LogAttr) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogAttr: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogAttr: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Key", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Key = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LogMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LogMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LogMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Context", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Context.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Timestamp", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Timestamp == nil {
+				m.Timestamp = &google_protobuf.Timestamp{}
+			}
+			if err := m.Timestamp.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Stream", wireType)
+			}
+			m.Stream = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Stream |= (LogStream(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Attrs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Attrs = append(m.Attrs, LogAttr{})
+			if err := m.Attrs[len(m.Attrs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SubscribeLogsRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SubscribeLogsRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SubscribeLogsRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Selector", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Selector == nil {
+				m.Selector = &LogSelector{}
+			}
+			if err := m.Selector.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Options", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Options == nil {
+				m.Options = &LogSubscriptionOptions{}
+			}
+			if err := m.Options.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SubscribeLogsMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SubscribeLogsMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SubscribeLogsMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Messages", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Messages = append(m.Messages, LogMessage{})
+			if err := m.Messages[len(m.Messages)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListenSubscriptionsRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListenSubscriptionsRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListenSubscriptionsRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SubscriptionMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SubscriptionMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SubscriptionMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Selector", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Selector == nil {
+				m.Selector = &LogSelector{}
+			}
+			if err := m.Selector.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Options", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Options == nil {
+				m.Options = &LogSubscriptionOptions{}
+			}
+			if err := m.Options.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Close", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Close = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PublishLogsMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PublishLogsMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PublishLogsMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SubscriptionID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SubscriptionID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Messages", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Messages = append(m.Messages, LogMessage{})
+			if err := m.Messages[len(m.Messages)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Close", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Close = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PublishLogsResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PublishLogsResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PublishLogsResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipLogbroker(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthLogbroker
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipLogbroker(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowLogbroker
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowLogbroker
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthLogbroker
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowLogbroker
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipLogbroker(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthLogbroker = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowLogbroker   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() {
+	proto.RegisterFile("github.com/docker/swarmkit/api/logbroker.proto", fileDescriptorLogbroker)
+}
+
+var fileDescriptorLogbroker = []byte{
+	// 966 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xa4, 0x95, 0x41, 0x6f, 0x1b, 0x45,
+	0x14, 0xc7, 0x3d, 0xeb, 0xc4, 0x8e, 0x9f, 0x9b, 0xc4, 0x9d, 0xa4, 0x91, 0x65, 0xa8, 0x6d, 0x6d,
+	0xa5, 0x62, 0x45, 0x65, 0xdd, 0x1a, 0xa1, 0x22, 0x45, 0x42, 0xd4, 0xb8, 0x42, 0x16, 0x6e, 0x82,
+	0xc6, 0x8e, 0xe0, 0x16, 0xad, 0xbd, 0xd3, 0xed, 0xca, 0xeb, 0x1d, 0xb3, 0x33, 0x4e, 0x40, 0xe2,
+	0xc0, 0xa1, 0x48, 0x28, 0x07, 0x6e, 0x48, 0x70, 0xe8, 0x89, 0x5e, 0x10, 0x12, 0x17, 0x6e, 0x7c,
+	0x00, 0x14, 0x71, 0xe2, 0xc8, 0xc9, 0xa2, 0xfb, 0x01, 0xf8, 0x0c, 0x68, 0x67, 0xd6, 0xeb, 0x0d,
+	0xb6, 0x53, 0x54, 0x2e, 0xf6, 0x8c, 0xe7, 0xf7, 0xf6, 0xfd, 0xdf, 0x7f, 0xde, 0x5b, 0x83, 0x61,
+	0x3b, 0xe2, 0xc9, 0xa4, 0x6f, 0x0c, 0xd8, 0xa8, 0x6e, 0xb1, 0xc1, 0x90, 0xfa, 0x75, 0x7e, 0x66,
+	0xfa, 0xa3, 0xa1, 0x23, 0xea, 0xe6, 0xd8, 0xa9, 0xbb, 0xcc, 0xee, 0xfb, 0x6c, 0x48, 0x7d, 0x63,
+	0xec, 0x33, 0xc1, 0x30, 0x56, 0x90, 0x31, 0x83, 0x8c, 0xd3, 0x7b, 0xa5, 0x5d, 0x9b, 0xd9, 0x4c,
+	0x1e, 0xd7, 0xc3, 0x95, 0x22, 0x4b, 0x15, 0x9b, 0x31, 0xdb, 0xa5, 0x75, 0xb9, 0xeb, 0x4f, 0x1e,
+	0xd7, 0x85, 0x33, 0xa2, 0x5c, 0x98, 0xa3, 0x71, 0x04, 0xdc, 0xbf, 0x22, 0x75, 0x1c, 0x34, 0x76,
+	0x27, 0xb6, 0xe3, 0x45, 0x5f, 0x2a, 0x50, 0xff, 0x05, 0xc1, 0x5e, 0x87, 0xd9, 0xdd, 0x49, 0x9f,
+	0x0f, 0x7c, 0x67, 0x2c, 0x1c, 0xe6, 0x1d, 0xc9, 0x4f, 0x8e, 0x0f, 0x20, 0xcb, 0x85, 0x4f, 0xcd,
+	0x11, 0x2f, 0xa2, 0x6a, 0xba, 0xb6, 0xd5, 0xb8, 0x69, 0x2c, 0x0a, 0x36, 0xc2, 0x60, 0x49, 0x35,
+	0xb5, 0x42, 0x8a, 0xcc, 0x22, 0xf0, 0x1e, 0x64, 0x1e, 0x33, 0xd7, 0x65, 0x67, 0x45, 0xad, 0x8a,
+	0x6a, 0x1b, 0x24, 0xda, 0x61, 0x0c, 0x6b, 0xc2, 0x74, 0xdc, 0x62, 0xba, 0x8a, 0x6a, 0x69, 0x22,
+	0xd7, 0xf8, 0x2e, 0xac, 0x73, 0xc7, 0x1b, 0xd0, 0xe2, 0x5a, 0x15, 0xd5, 0xf2, 0x8d, 0x92, 0xa1,
+	0xaa, 0x35, 0x66, 0xc2, 0x8d, 0xde, 0xac, 0x5a, 0xa2, 0x40, 0xfd, 0x1b, 0x04, 0xf9, 0x30, 0x31,
+	0x75, 0xe9, 0x40, 0x30, 0x1f, 0xd7, 0x21, 0xcf, 0xa9, 0x7f, 0xea, 0x0c, 0xe8, 0x89, 0x63, 0x29,
+	0xb9, 0xb9, 0xe6, 0x56, 0x30, 0xad, 0x40, 0x57, 0xfd, 0xdc, 0x6e, 0x71, 0x02, 0x11, 0xd2, 0xb6,
+	0x38, 0xbe, 0x0d, 0x1b, 0x1e, 0xb3, 0x14, 0xad, 0x49, 0x3a, 0x1f, 0x4c, 0x2b, 0xd9, 0x43, 0x66,
+	0x49, 0x34, 0x1b, 0x1e, 0x46, 0x9c, 0x30, 0xf9, 0x50, 0x72, 0xe9, 0x39, 0xd7, 0x33, 0xf9, 0x50,
+	0x72, 0xe1, 0x61, 0xdb, 0xe2, 0xfa, 0x53, 0x04, 0xd0, 0x61, 0xf6, 0xfb, 0xcc, 0x13, 0xf4, 0x33,
+	0x81, 0xef, 0x00, 0xcc, 0xf5, 0x14, 0x51, 0x15, 0xd5, 0x72, 0xcd, 0xcd, 0x60, 0x5a, 0xc9, 0xc5,
+	0x72, 0x48, 0x2e, 0x56, 0x83, 0x6f, 0x41, 0x36, 0x12, 0x23, 0xcd, 0xca, 0x35, 0x21, 0x98, 0x56,
+	0x32, 0x4a, 0x0b, 0xc9, 0x28, 0x29, 0x21, 0x14, 0x29, 0x91, 0xde, 0x45, 0x90, 0x12, 0x42, 0x32,
+	0x4a, 0x87, 0x7e, 0x0f, 0xb2, 0x1d, 0x66, 0x3f, 0x10, 0xc2, 0xc7, 0x05, 0x48, 0x0f, 0xe9, 0xe7,
+	0x2a, 0x37, 0x09, 0x97, 0x78, 0x17, 0xd6, 0x4f, 0x4d, 0x77, 0x42, 0x55, 0x12, 0xa2, 0x36, 0xfa,
+	0xb9, 0x26, 0x95, 0x3f, 0xa2, 0x9c, 0x9b, 0x36, 0xc5, 0xef, 0x42, 0x76, 0xa0, 0x8a, 0x90, 0xa1,
+	0xf9, 0x46, 0x79, 0xc5, 0xa5, 0x47, 0xa5, 0x36, 0xd7, 0x2e, 0xa6, 0x95, 0x14, 0x99, 0x05, 0xe1,
+	0x77, 0x20, 0x17, 0xf7, 0xa6, 0x4c, 0x74, 0xf5, 0x7d, 0xce, 0x61, 0xfc, 0x36, 0x64, 0x54, 0xf3,
+	0xc8, 0xfa, 0x5e, 0xd6, 0x6d, 0x24, 0x82, 0xc3, 0x86, 0xb2, 0x4c, 0x61, 0xca, 0xde, 0xb9, 0x46,
+	0xe4, 0x1a, 0xdf, 0x87, 0x75, 0x53, 0x08, 0x9f, 0x17, 0xd7, 0xab, 0xe9, 0x5a, 0xbe, 0xf1, 0xda,
+	0x8a, 0x27, 0x85, 0x3e, 0x45, 0xfa, 0x15, 0xaf, 0x7f, 0x8f, 0x60, 0x37, 0x1a, 0x85, 0x3e, 0xed,
+	0x30, 0x9b, 0x13, 0xfa, 0xe9, 0x84, 0x72, 0x81, 0x0f, 0x60, 0x83, 0x47, 0xcd, 0x16, 0xf9, 0x52,
+	0x59, 0x25, 0x2f, 0xc2, 0x48, 0x1c, 0x80, 0x5b, 0x90, 0x65, 0x6a, 0xa6, 0x22, 0x47, 0xf6, 0x57,
+	0xc5, 0x2e, 0x4e, 0x21, 0x99, 0x85, 0xea, 0x9f, 0xfc, 0x4b, 0xda, 0xec, 0xc6, 0xde, 0x83, 0x8d,
+	0x91, 0x5a, 0xaa, 0xc6, 0x5f, 0x7d, 0x65, 0x51, 0x44, 0x54, 0x72, 0x1c, 0xa5, 0xbf, 0x0e, 0xa5,
+	0x8e, 0xc3, 0x05, 0xf5, 0x92, 0xf9, 0x67, 0xa5, 0xeb, 0xbf, 0x21, 0xd8, 0x49, 0x1e, 0xcc, 0xf2,
+	0xee, 0x81, 0x16, 0xf7, 0x76, 0x26, 0x98, 0x56, 0xb4, 0x76, 0x8b, 0x68, 0x8e, 0x75, 0xc9, 0x2a,
+	0xed, 0x7f, 0x58, 0x95, 0x7e, 0x65, 0xab, 0xc2, 0x4e, 0x1f, 0xb8, 0x8c, 0xab, 0x17, 0xca, 0x06,
+	0x51, 0x1b, 0xfd, 0x47, 0x04, 0xf8, 0xa3, 0x49, 0xdf, 0x75, 0xf8, 0x93, 0xa4, 0x7f, 0x07, 0xb0,
+	0xcd, 0x13, 0x0f, 0x9b, 0x0f, 0x2c, 0x0e, 0xa6, 0x95, 0xad, 0x64, 0x9e, 0x76, 0x8b, 0x6c, 0x25,
+	0xd1, 0xb6, 0x75, 0xc9, 0x7c, 0xed, 0x55, 0xcc, 0x9f, 0x6b, 0x4d, 0x27, 0xb5, 0xde, 0x80, 0x9d,
+	0x84, 0x54, 0x42, 0xf9, 0x98, 0x79, 0x9c, 0xee, 0x3f, 0x47, 0x90, 0x8b, 0x47, 0x00, 0xdf, 0x01,
+	0xdc, 0x39, 0xfa, 0xe0, 0xa4, 0xdb, 0x23, 0x0f, 0x1f, 0x3c, 0x3a, 0x39, 0x3e, 0xfc, 0xf0, 0xf0,
+	0xe8, 0xe3, 0xc3, 0x42, 0xaa, 0xb4, 0x7b, 0xfe, 0xac, 0x5a, 0x88, 0xb1, 0x63, 0x6f, 0xe8, 0xb1,
+	0x33, 0x0f, 0xef, 0xc3, 0xf5, 0x04, 0xdd, 0xed, 0xb5, 0x8e, 0x8e, 0x7b, 0x05, 0x54, 0xda, 0x39,
+	0x7f, 0x56, 0xdd, 0x8e, 0xe1, 0xae, 0xb0, 0xd8, 0x44, 0x2c, 0xb2, 0x0f, 0x09, 0x29, 0x68, 0x8b,
+	0x2c, 0xf5, 0xfd, 0xd2, 0xf5, 0xaf, 0x7f, 0x28, 0xa7, 0x7e, 0x7d, 0x5e, 0x9e, 0x0b, 0x6b, 0x3c,
+	0x45, 0xb0, 0x16, 0xea, 0xc6, 0x5f, 0xc0, 0xe6, 0xa5, 0x9e, 0xc5, 0xb5, 0x65, 0xee, 0x2c, 0x9b,
+	0xb8, 0xd2, 0xcb, 0xc9, 0xc8, 0x51, 0xfd, 0xc6, 0xef, 0x3f, 0xff, 0xfd, 0x9d, 0xb6, 0x0d, 0x9b,
+	0x92, 0x7c, 0x73, 0x64, 0x7a, 0xa6, 0x4d, 0xfd, 0xbb, 0xa8, 0xf1, 0x93, 0x26, 0xdd, 0x6a, 0xca,
+	0xff, 0x5c, 0xfc, 0x2d, 0x82, 0x9d, 0x25, 0x6d, 0x8e, 0x8d, 0xa5, 0x17, 0xb6, 0x72, 0x1e, 0x4a,
+	0x6f, 0x5c, 0x21, 0x2c, 0x39, 0x20, 0xfa, 0x2d, 0xa9, 0xeb, 0x26, 0x5c, 0x53, 0xba, 0xce, 0x98,
+	0x3f, 0xa4, 0xfe, 0x82, 0x4a, 0xfc, 0x15, 0x82, 0x7c, 0xe2, 0xae, 0xf1, 0xed, 0x65, 0xcf, 0x5f,
+	0xec, 0xdb, 0xe5, 0x3a, 0x96, 0x34, 0xcd, 0x7f, 0xd2, 0x51, 0x43, 0xcd, 0xe2, 0xc5, 0x8b, 0x72,
+	0xea, 0xcf, 0x17, 0xe5, 0xd4, 0x97, 0x41, 0x19, 0x5d, 0x04, 0x65, 0xf4, 0x47, 0x50, 0x46, 0x7f,
+	0x05, 0x65, 0xd4, 0xcf, 0xc8, 0x17, 0xf7, 0x5b, 0xff, 0x04, 0x00, 0x00, 0xff, 0xff, 0x95, 0x7b,
+	0x3c, 0x04, 0xe0, 0x08, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/objects.pb.go b/vendor/github.com/docker/swarmkit/api/objects.pb.go
new file mode 100644
index 0000000000..dc24902c93
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/objects.pb.go
@@ -0,0 +1,7892 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/objects.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import google_protobuf "github.com/gogo/protobuf/types"
+import _ "github.com/gogo/protobuf/gogoproto"
+import google_protobuf3 "github.com/gogo/protobuf/types"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import github_com_docker_go_events "github.com/docker/go-events"
+import strings "strings"
+
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// Meta contains metadata about objects. Every object contains a meta field.
+type Meta struct {
+	// Version tracks the current version of the object.
+	Version Version `protobuf:"bytes,1,opt,name=version" json:"version"`
+	// Object timestamps.
+	// Note: can't use stdtime because these fields are nullable.
+	CreatedAt *google_protobuf.Timestamp `protobuf:"bytes,2,opt,name=created_at,json=createdAt" json:"created_at,omitempty"`
+	UpdatedAt *google_protobuf.Timestamp `protobuf:"bytes,3,opt,name=updated_at,json=updatedAt" json:"updated_at,omitempty"`
+}
+
+func (m *Meta) Reset()                    { *m = Meta{} }
+func (*Meta) ProtoMessage()               {}
+func (*Meta) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{0} }
+
+// Node provides the internal node state as seen by the cluster.
+type Node struct {
+	// ID specifies the identity of the node.
+	ID   string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta   `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	// Spec defines the desired state of the node as specified by the user.
+	// The system will honor this and will *never* modify it.
+	Spec NodeSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// Description encapsulated the properties of the Node as reported by the
+	// agent.
+	Description *NodeDescription `protobuf:"bytes,4,opt,name=description" json:"description,omitempty"`
+	// Status provides the current status of the node, as seen by the manager.
+	Status NodeStatus `protobuf:"bytes,5,opt,name=status" json:"status"`
+	// ManagerStatus provides the current status of the node's manager
+	// component, if the node is a manager.
+	ManagerStatus *ManagerStatus `protobuf:"bytes,6,opt,name=manager_status,json=managerStatus" json:"manager_status,omitempty"`
+	// DEPRECATED: Use Attachments to find the ingress network
+	// The node attachment to the ingress network.
+	Attachment *NetworkAttachment `protobuf:"bytes,7,opt,name=attachment" json:"attachment,omitempty"`
+	// Certificate is the TLS certificate issued for the node, if any.
+	Certificate Certificate `protobuf:"bytes,8,opt,name=certificate" json:"certificate"`
+	// Role is the *observed* role for this node. It differs from the
+	// desired role set in Node.Spec.Role because the role here is only
+	// updated after the Raft member list has been reconciled with the
+	// desired role from the spec.
+	//
+	// This field represents the current reconciled state. If an action is
+	// to be performed, first verify the role in the cert. This field only
+	// shows the privilege level that the CA would currently grant when
+	// issuing or renewing the node's certificate.
+	Role NodeRole `protobuf:"varint,9,opt,name=role,proto3,enum=docker.swarmkit.v1.NodeRole" json:"role,omitempty"`
+	// Attachments enumerates the network attachments for the node to set up an
+	// endpoint on the node to be used for load balancing. Each overlay
+	// network, including ingress network, will have an NetworkAttachment.
+	Attachments []*NetworkAttachment `protobuf:"bytes,10,rep,name=attachments" json:"attachments,omitempty"`
+}
+
+func (m *Node) Reset()                    { *m = Node{} }
+func (*Node) ProtoMessage()               {}
+func (*Node) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{1} }
+
+type Service struct {
+	ID   string      `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta        `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	Spec ServiceSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// SpecVersion versions Spec, to identify changes in the spec. Note that
+	// this is not directly comparable to the service's Version.
+	SpecVersion *Version `protobuf:"bytes,10,opt,name=spec_version,json=specVersion" json:"spec_version,omitempty"`
+	// PreviousSpec is the previous service spec that was in place before
+	// "Spec".
+	PreviousSpec *ServiceSpec `protobuf:"bytes,6,opt,name=previous_spec,json=previousSpec" json:"previous_spec,omitempty"`
+	// PreviousSpecVersion versions PreviousSpec. Note that this is not
+	// directly comparable to the service's Version.
+	PreviousSpecVersion *Version `protobuf:"bytes,11,opt,name=previous_spec_version,json=previousSpecVersion" json:"previous_spec_version,omitempty"`
+	// Runtime state of service endpoint. This may be different
+	// from the spec version because the user may not have entered
+	// the optional fields like node_port or virtual_ip and it
+	// could be auto allocated by the system.
+	Endpoint *Endpoint `protobuf:"bytes,4,opt,name=endpoint" json:"endpoint,omitempty"`
+	// UpdateStatus contains the status of an update, if one is in
+	// progress.
+	UpdateStatus *UpdateStatus `protobuf:"bytes,5,opt,name=update_status,json=updateStatus" json:"update_status,omitempty"`
+}
+
+func (m *Service) Reset()                    { *m = Service{} }
+func (*Service) ProtoMessage()               {}
+func (*Service) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{2} }
+
+// Endpoint specified all the network parameters required to
+// correctly discover and load balance a service
+type Endpoint struct {
+	Spec *EndpointSpec `protobuf:"bytes,1,opt,name=spec" json:"spec,omitempty"`
+	// Runtime state of the exposed ports which may carry
+	// auto-allocated swarm ports in addition to the user
+	// configured information.
+	Ports []*PortConfig `protobuf:"bytes,2,rep,name=ports" json:"ports,omitempty"`
+	// VirtualIPs specifies the IP addresses under which this endpoint will be
+	// made available.
+	VirtualIPs []*Endpoint_VirtualIP `protobuf:"bytes,3,rep,name=virtual_ips,json=virtualIps" json:"virtual_ips,omitempty"`
+}
+
+func (m *Endpoint) Reset()                    { *m = Endpoint{} }
+func (*Endpoint) ProtoMessage()               {}
+func (*Endpoint) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{3} }
+
+// VirtualIP specifies a set of networks this endpoint will be attached to
+// and the IP addresses the target service will be made available under.
+type Endpoint_VirtualIP struct {
+	// NetworkID for which this endpoint attachment was created.
+	NetworkID string `protobuf:"bytes,1,opt,name=network_id,json=networkId,proto3" json:"network_id,omitempty"`
+	// A virtual IP is used to address this service in IP
+	// layer that the client can use to send requests to
+	// this service. A DNS A/AAAA query on the service
+	// name might return this IP to the client. This is
+	// strictly a logical IP and there may not be any
+	// interfaces assigned this IP address or any route
+	// created for this address.  More than one to
+	// accommodate for both IPv4 and IPv6
+	Addr string `protobuf:"bytes,2,opt,name=addr,proto3" json:"addr,omitempty"`
+}
+
+func (m *Endpoint_VirtualIP) Reset()                    { *m = Endpoint_VirtualIP{} }
+func (*Endpoint_VirtualIP) ProtoMessage()               {}
+func (*Endpoint_VirtualIP) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{3, 0} }
+
+// Task specifies the parameters for implementing a Spec. A task is effectively
+// immutable and idempotent. Once it is dispatched to a node, it will not be
+// dispatched to another node.
+type Task struct {
+	ID   string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta   `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	// Spec defines the desired state of the task as specified by the user.
+	// The system will honor this and will *never* modify it.
+	Spec TaskSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// SpecVersion is copied from Service, to identify which version of the
+	// spec this task has. Note that this is not directly comparable to the
+	// service's Version.
+	SpecVersion *Version `protobuf:"bytes,14,opt,name=spec_version,json=specVersion" json:"spec_version,omitempty"`
+	// ServiceID indicates the service under which this task is orchestrated. This
+	// should almost always be set.
+	ServiceID string `protobuf:"bytes,4,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	// Slot is the service slot number for a task.
+	// For example, if a replicated service has replicas = 2, there will be a
+	// task with slot = 1, and another with slot = 2.
+	Slot uint64 `protobuf:"varint,5,opt,name=slot,proto3" json:"slot,omitempty"`
+	// NodeID indicates the node to which the task is assigned. If this field
+	// is empty or not set, the task is unassigned.
+	NodeID string `protobuf:"bytes,6,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	// Annotations defines the names and labels for the runtime, as set by
+	// the cluster manager.
+	//
+	// As backup, if this field has an empty name, the runtime will
+	// allocate a unique name for the actual container.
+	//
+	// NOTE(stevvooe): The preserves the ability for us to making naming
+	// decisions for tasks in orchestrator, albeit, this is left empty for now.
+	Annotations Annotations `protobuf:"bytes,7,opt,name=annotations" json:"annotations"`
+	// ServiceAnnotations is a direct copy of the service name and labels when
+	// this task is created.
+	//
+	// Labels set here will *not* be propagated to the runtime target, such as a
+	// container. Use labels on the runtime target for that purpose.
+	ServiceAnnotations Annotations `protobuf:"bytes,8,opt,name=service_annotations,json=serviceAnnotations" json:"service_annotations"`
+	Status             TaskStatus  `protobuf:"bytes,9,opt,name=status" json:"status"`
+	// DesiredState is the target state for the task. It is set to
+	// TaskStateRunning when a task is first created, and changed to
+	// TaskStateShutdown if the manager wants to terminate the task. This field
+	// is only written by the manager.
+	DesiredState TaskState `protobuf:"varint,10,opt,name=desired_state,json=desiredState,proto3,enum=docker.swarmkit.v1.TaskState" json:"desired_state,omitempty"`
+	// List of network attachments by the task.
+	Networks []*NetworkAttachment `protobuf:"bytes,11,rep,name=networks" json:"networks,omitempty"`
+	// A copy of runtime state of service endpoint from Service
+	// object to be distributed to agents as part of the task.
+	Endpoint *Endpoint `protobuf:"bytes,12,opt,name=endpoint" json:"endpoint,omitempty"`
+	// LogDriver specifies the selected log driver to use for the task. Agent
+	// processes should always favor the value in this field.
+	//
+	// If present in the TaskSpec, this will be a copy of that value. The
+	// orchestrator may choose to insert a value here, which should be honored,
+	// such a cluster default or policy-based value.
+	//
+	// If not present, the daemon's default will be used.
+	LogDriver                *Driver            `protobuf:"bytes,13,opt,name=log_driver,json=logDriver" json:"log_driver,omitempty"`
+	AssignedGenericResources []*GenericResource `protobuf:"bytes,15,rep,name=assigned_generic_resources,json=assignedGenericResources" json:"assigned_generic_resources,omitempty"`
+}
+
+func (m *Task) Reset()                    { *m = Task{} }
+func (*Task) ProtoMessage()               {}
+func (*Task) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{4} }
+
+// NetworkAttachment specifies the network parameters of attachment to
+// a single network by an object such as task or node.
+type NetworkAttachment struct {
+	// Network state as a whole becomes part of the object so that
+	// it always is available for use in agents so that agents
+	// don't have any other dependency during execution.
+	Network *Network `protobuf:"bytes,1,opt,name=network" json:"network,omitempty"`
+	// List of IPv4/IPv6 addresses that are assigned to the object
+	// as part of getting attached to this network.
+	Addresses []string `protobuf:"bytes,2,rep,name=addresses" json:"addresses,omitempty"`
+	// List of aliases by which a task is resolved in a network
+	Aliases []string `protobuf:"bytes,3,rep,name=aliases" json:"aliases,omitempty"`
+	// Map of all the driver attachment options for this network
+	DriverAttachmentOpts map[string]string `protobuf:"bytes,4,rep,name=driver_attachment_opts,json=driverAttachmentOpts" json:"driver_attachment_opts,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *NetworkAttachment) Reset()                    { *m = NetworkAttachment{} }
+func (*NetworkAttachment) ProtoMessage()               {}
+func (*NetworkAttachment) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{5} }
+
+type Network struct {
+	ID   string      `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta        `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	Spec NetworkSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// Driver specific operational state provided by the network driver.
+	DriverState *Driver `protobuf:"bytes,4,opt,name=driver_state,json=driverState" json:"driver_state,omitempty"`
+	// Runtime state of IPAM options. This may not reflect the
+	// ipam options from NetworkSpec.
+	IPAM *IPAMOptions `protobuf:"bytes,5,opt,name=ipam" json:"ipam,omitempty"`
+}
+
+func (m *Network) Reset()                    { *m = Network{} }
+func (*Network) ProtoMessage()               {}
+func (*Network) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{6} }
+
+// Cluster provides global cluster settings.
+type Cluster struct {
+	ID   string      `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta        `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	Spec ClusterSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// RootCA contains key material for the root CA.
+	RootCA RootCA `protobuf:"bytes,4,opt,name=root_ca,json=rootCa" json:"root_ca"`
+	// Symmetric encryption key distributed by the lead manager. Used by agents
+	// for securing network bootstrapping and communication.
+	NetworkBootstrapKeys []*EncryptionKey `protobuf:"bytes,5,rep,name=network_bootstrap_keys,json=networkBootstrapKeys" json:"network_bootstrap_keys,omitempty"`
+	// Logical clock used to timestamp every key.  It allows other managers
+	// and agents to unambiguously identify the older key to be deleted when
+	// a new key is allocated on key rotation.
+	EncryptionKeyLamportClock uint64 `protobuf:"varint,6,opt,name=encryption_key_lamport_clock,json=encryptionKeyLamportClock,proto3" json:"encryption_key_lamport_clock,omitempty"`
+	// BlacklistedCertificates tracks certificates that should no longer
+	// be honored. It's a mapping from CN -> BlacklistedCertificate.
+	// swarm. Their certificates should effectively be blacklisted.
+	BlacklistedCertificates map[string]*BlacklistedCertificate `protobuf:"bytes,8,rep,name=blacklisted_certificates,json=blacklistedCertificates" json:"blacklisted_certificates,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value"`
+	// UnlockKeys defines the keys that lock node data at rest.  For example,
+	// this would contain the key encrypting key (KEK) that will encrypt the
+	// manager TLS keys at rest and the raft encryption keys at rest.
+	// If the key is empty, the node will be unlocked (will not require a key
+	// to start up from a shut down state).
+	UnlockKeys []*EncryptionKey `protobuf:"bytes,9,rep,name=unlock_keys,json=unlockKeys" json:"unlock_keys,omitempty"`
+	// FIPS specifies whether this cluster should be in FIPS mode.  This changes
+	// the format of the join tokens, and nodes that are not FIPS-enabled should
+	// reject joining the cluster.  Nodes that report themselves to be non-FIPS
+	// should be rejected from the cluster.
+	FIPS bool `protobuf:"varint,10,opt,name=fips,proto3" json:"fips,omitempty"`
+}
+
+func (m *Cluster) Reset()                    { *m = Cluster{} }
+func (*Cluster) ProtoMessage()               {}
+func (*Cluster) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{7} }
+
+// Secret represents a secret that should be passed to a container or a node,
+// and is immutable.
+type Secret struct {
+	ID   string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta   `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	// Spec contains the actual secret data, as well as any context around the
+	// secret data that the user provides.
+	Spec SecretSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+	// Whether the secret is an internal secret (not set by a user) or not.
+	Internal bool `protobuf:"varint,4,opt,name=internal,proto3" json:"internal,omitempty"`
+}
+
+func (m *Secret) Reset()                    { *m = Secret{} }
+func (*Secret) ProtoMessage()               {}
+func (*Secret) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{8} }
+
+// Config represents a set of configuration files that should be passed to a
+// container.
+type Config struct {
+	ID   string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta Meta   `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	// Spec contains the actual config data, as well as any context around the
+	// config data that the user provides.
+	Spec ConfigSpec `protobuf:"bytes,3,opt,name=spec" json:"spec"`
+}
+
+func (m *Config) Reset()                    { *m = Config{} }
+func (*Config) ProtoMessage()               {}
+func (*Config) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{9} }
+
+// Resource is a top-level object with externally defined content and indexing.
+// SwarmKit can serve as a store for these objects without understanding their
+// meanings.
+type Resource struct {
+	ID          string      `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta        Meta        `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	Annotations Annotations `protobuf:"bytes,3,opt,name=annotations" json:"annotations"`
+	// Kind identifies this class of object. It is essentially a namespace
+	// to keep IDs or indices from colliding between unrelated Resource
+	// objects. This must correspond to the name of an Extension.
+	Kind string `protobuf:"bytes,4,opt,name=kind,proto3" json:"kind,omitempty"`
+	// Payload bytes. This data is not interpreted in any way by SwarmKit.
+	// By convention, it should be a marshalled protocol buffers message.
+	Payload *google_protobuf3.Any `protobuf:"bytes,5,opt,name=payload" json:"payload,omitempty"`
+}
+
+func (m *Resource) Reset()                    { *m = Resource{} }
+func (*Resource) ProtoMessage()               {}
+func (*Resource) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{10} }
+
+// Extension declares a type of "resource" object. This message provides some
+// metadata about the objects.
+type Extension struct {
+	ID          string      `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
+	Meta        Meta        `protobuf:"bytes,2,opt,name=meta" json:"meta"`
+	Annotations Annotations `protobuf:"bytes,3,opt,name=annotations" json:"annotations"`
+	Description string      `protobuf:"bytes,4,opt,name=description,proto3" json:"description,omitempty"`
+}
+
+func (m *Extension) Reset()                    { *m = Extension{} }
+func (*Extension) ProtoMessage()               {}
+func (*Extension) Descriptor() ([]byte, []int) { return fileDescriptorObjects, []int{11} }
+
+func init() {
+	proto.RegisterType((*Meta)(nil), "docker.swarmkit.v1.Meta")
+	proto.RegisterType((*Node)(nil), "docker.swarmkit.v1.Node")
+	proto.RegisterType((*Service)(nil), "docker.swarmkit.v1.Service")
+	proto.RegisterType((*Endpoint)(nil), "docker.swarmkit.v1.Endpoint")
+	proto.RegisterType((*Endpoint_VirtualIP)(nil), "docker.swarmkit.v1.Endpoint.VirtualIP")
+	proto.RegisterType((*Task)(nil), "docker.swarmkit.v1.Task")
+	proto.RegisterType((*NetworkAttachment)(nil), "docker.swarmkit.v1.NetworkAttachment")
+	proto.RegisterType((*Network)(nil), "docker.swarmkit.v1.Network")
+	proto.RegisterType((*Cluster)(nil), "docker.swarmkit.v1.Cluster")
+	proto.RegisterType((*Secret)(nil), "docker.swarmkit.v1.Secret")
+	proto.RegisterType((*Config)(nil), "docker.swarmkit.v1.Config")
+	proto.RegisterType((*Resource)(nil), "docker.swarmkit.v1.Resource")
+	proto.RegisterType((*Extension)(nil), "docker.swarmkit.v1.Extension")
+}
+
+func (m *Meta) Copy() *Meta {
+	if m == nil {
+		return nil
+	}
+	o := &Meta{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Meta) CopyFrom(src interface{}) {
+
+	o := src.(*Meta)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Version, &o.Version)
+	if o.CreatedAt != nil {
+		m.CreatedAt = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.CreatedAt, o.CreatedAt)
+	}
+	if o.UpdatedAt != nil {
+		m.UpdatedAt = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.UpdatedAt, o.UpdatedAt)
+	}
+}
+
+func (m *Node) Copy() *Node {
+	if m == nil {
+		return nil
+	}
+	o := &Node{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Node) CopyFrom(src interface{}) {
+
+	o := src.(*Node)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+	if o.Description != nil {
+		m.Description = &NodeDescription{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Description, o.Description)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Status, &o.Status)
+	if o.ManagerStatus != nil {
+		m.ManagerStatus = &ManagerStatus{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.ManagerStatus, o.ManagerStatus)
+	}
+	if o.Attachment != nil {
+		m.Attachment = &NetworkAttachment{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Attachment, o.Attachment)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Certificate, &o.Certificate)
+	if o.Attachments != nil {
+		m.Attachments = make([]*NetworkAttachment, len(o.Attachments))
+		for i := range m.Attachments {
+			m.Attachments[i] = &NetworkAttachment{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Attachments[i], o.Attachments[i])
+		}
+	}
+
+}
+
+func (m *Service) Copy() *Service {
+	if m == nil {
+		return nil
+	}
+	o := &Service{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Service) CopyFrom(src interface{}) {
+
+	o := src.(*Service)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+	if o.SpecVersion != nil {
+		m.SpecVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.SpecVersion, o.SpecVersion)
+	}
+	if o.PreviousSpec != nil {
+		m.PreviousSpec = &ServiceSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.PreviousSpec, o.PreviousSpec)
+	}
+	if o.PreviousSpecVersion != nil {
+		m.PreviousSpecVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.PreviousSpecVersion, o.PreviousSpecVersion)
+	}
+	if o.Endpoint != nil {
+		m.Endpoint = &Endpoint{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Endpoint, o.Endpoint)
+	}
+	if o.UpdateStatus != nil {
+		m.UpdateStatus = &UpdateStatus{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.UpdateStatus, o.UpdateStatus)
+	}
+}
+
+func (m *Endpoint) Copy() *Endpoint {
+	if m == nil {
+		return nil
+	}
+	o := &Endpoint{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Endpoint) CopyFrom(src interface{}) {
+
+	o := src.(*Endpoint)
+	*m = *o
+	if o.Spec != nil {
+		m.Spec = &EndpointSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Spec, o.Spec)
+	}
+	if o.Ports != nil {
+		m.Ports = make([]*PortConfig, len(o.Ports))
+		for i := range m.Ports {
+			m.Ports[i] = &PortConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Ports[i], o.Ports[i])
+		}
+	}
+
+	if o.VirtualIPs != nil {
+		m.VirtualIPs = make([]*Endpoint_VirtualIP, len(o.VirtualIPs))
+		for i := range m.VirtualIPs {
+			m.VirtualIPs[i] = &Endpoint_VirtualIP{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.VirtualIPs[i], o.VirtualIPs[i])
+		}
+	}
+
+}
+
+func (m *Endpoint_VirtualIP) Copy() *Endpoint_VirtualIP {
+	if m == nil {
+		return nil
+	}
+	o := &Endpoint_VirtualIP{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Endpoint_VirtualIP) CopyFrom(src interface{}) {
+
+	o := src.(*Endpoint_VirtualIP)
+	*m = *o
+}
+
+func (m *Task) Copy() *Task {
+	if m == nil {
+		return nil
+	}
+	o := &Task{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Task) CopyFrom(src interface{}) {
+
+	o := src.(*Task)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+	if o.SpecVersion != nil {
+		m.SpecVersion = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.SpecVersion, o.SpecVersion)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.ServiceAnnotations, &o.ServiceAnnotations)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Status, &o.Status)
+	if o.Networks != nil {
+		m.Networks = make([]*NetworkAttachment, len(o.Networks))
+		for i := range m.Networks {
+			m.Networks[i] = &NetworkAttachment{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Networks[i], o.Networks[i])
+		}
+	}
+
+	if o.Endpoint != nil {
+		m.Endpoint = &Endpoint{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Endpoint, o.Endpoint)
+	}
+	if o.LogDriver != nil {
+		m.LogDriver = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.LogDriver, o.LogDriver)
+	}
+	if o.AssignedGenericResources != nil {
+		m.AssignedGenericResources = make([]*GenericResource, len(o.AssignedGenericResources))
+		for i := range m.AssignedGenericResources {
+			m.AssignedGenericResources[i] = &GenericResource{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.AssignedGenericResources[i], o.AssignedGenericResources[i])
+		}
+	}
+
+}
+
+func (m *NetworkAttachment) Copy() *NetworkAttachment {
+	if m == nil {
+		return nil
+	}
+	o := &NetworkAttachment{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NetworkAttachment) CopyFrom(src interface{}) {
+
+	o := src.(*NetworkAttachment)
+	*m = *o
+	if o.Network != nil {
+		m.Network = &Network{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Network, o.Network)
+	}
+	if o.Addresses != nil {
+		m.Addresses = make([]string, len(o.Addresses))
+		copy(m.Addresses, o.Addresses)
+	}
+
+	if o.Aliases != nil {
+		m.Aliases = make([]string, len(o.Aliases))
+		copy(m.Aliases, o.Aliases)
+	}
+
+	if o.DriverAttachmentOpts != nil {
+		m.DriverAttachmentOpts = make(map[string]string, len(o.DriverAttachmentOpts))
+		for k, v := range o.DriverAttachmentOpts {
+			m.DriverAttachmentOpts[k] = v
+		}
+	}
+
+}
+
+func (m *Network) Copy() *Network {
+	if m == nil {
+		return nil
+	}
+	o := &Network{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Network) CopyFrom(src interface{}) {
+
+	o := src.(*Network)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+	if o.DriverState != nil {
+		m.DriverState = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.DriverState, o.DriverState)
+	}
+	if o.IPAM != nil {
+		m.IPAM = &IPAMOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.IPAM, o.IPAM)
+	}
+}
+
+func (m *Cluster) Copy() *Cluster {
+	if m == nil {
+		return nil
+	}
+	o := &Cluster{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Cluster) CopyFrom(src interface{}) {
+
+	o := src.(*Cluster)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.RootCA, &o.RootCA)
+	if o.NetworkBootstrapKeys != nil {
+		m.NetworkBootstrapKeys = make([]*EncryptionKey, len(o.NetworkBootstrapKeys))
+		for i := range m.NetworkBootstrapKeys {
+			m.NetworkBootstrapKeys[i] = &EncryptionKey{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.NetworkBootstrapKeys[i], o.NetworkBootstrapKeys[i])
+		}
+	}
+
+	if o.BlacklistedCertificates != nil {
+		m.BlacklistedCertificates = make(map[string]*BlacklistedCertificate, len(o.BlacklistedCertificates))
+		for k, v := range o.BlacklistedCertificates {
+			m.BlacklistedCertificates[k] = &BlacklistedCertificate{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.BlacklistedCertificates[k], v)
+		}
+	}
+
+	if o.UnlockKeys != nil {
+		m.UnlockKeys = make([]*EncryptionKey, len(o.UnlockKeys))
+		for i := range m.UnlockKeys {
+			m.UnlockKeys[i] = &EncryptionKey{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.UnlockKeys[i], o.UnlockKeys[i])
+		}
+	}
+
+}
+
+func (m *Secret) Copy() *Secret {
+	if m == nil {
+		return nil
+	}
+	o := &Secret{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Secret) CopyFrom(src interface{}) {
+
+	o := src.(*Secret)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+}
+
+func (m *Config) Copy() *Config {
+	if m == nil {
+		return nil
+	}
+	o := &Config{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Config) CopyFrom(src interface{}) {
+
+	o := src.(*Config)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Spec, &o.Spec)
+}
+
+func (m *Resource) Copy() *Resource {
+	if m == nil {
+		return nil
+	}
+	o := &Resource{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Resource) CopyFrom(src interface{}) {
+
+	o := src.(*Resource)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	if o.Payload != nil {
+		m.Payload = &google_protobuf3.Any{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Payload, o.Payload)
+	}
+}
+
+func (m *Extension) Copy() *Extension {
+	if m == nil {
+		return nil
+	}
+	o := &Extension{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Extension) CopyFrom(src interface{}) {
+
+	o := src.(*Extension)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Meta, &o.Meta)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+}
+
+func (m *Meta) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Meta) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Version.Size()))
+	n1, err := m.Version.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n1
+	if m.CreatedAt != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.CreatedAt.Size()))
+		n2, err := m.CreatedAt.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	if m.UpdatedAt != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.UpdatedAt.Size()))
+		n3, err := m.UpdatedAt.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	return i, nil
+}
+
+func (m *Node) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Node) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n4, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n4
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n5, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n5
+	if m.Description != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Description.Size()))
+		n6, err := m.Description.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	dAtA[i] = 0x2a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Status.Size()))
+	n7, err := m.Status.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n7
+	if m.ManagerStatus != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.ManagerStatus.Size()))
+		n8, err := m.ManagerStatus.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	if m.Attachment != nil {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Attachment.Size()))
+		n9, err := m.Attachment.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	dAtA[i] = 0x42
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Certificate.Size()))
+	n10, err := m.Certificate.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n10
+	if m.Role != 0 {
+		dAtA[i] = 0x48
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Role))
+	}
+	if len(m.Attachments) > 0 {
+		for _, msg := range m.Attachments {
+			dAtA[i] = 0x52
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *Service) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Service) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n11, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n11
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n12, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n12
+	if m.Endpoint != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Endpoint.Size()))
+		n13, err := m.Endpoint.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	if m.UpdateStatus != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.UpdateStatus.Size()))
+		n14, err := m.UpdateStatus.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	if m.PreviousSpec != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.PreviousSpec.Size()))
+		n15, err := m.PreviousSpec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n15
+	}
+	if m.SpecVersion != nil {
+		dAtA[i] = 0x52
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.SpecVersion.Size()))
+		n16, err := m.SpecVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n16
+	}
+	if m.PreviousSpecVersion != nil {
+		dAtA[i] = 0x5a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.PreviousSpecVersion.Size()))
+		n17, err := m.PreviousSpecVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n17
+	}
+	return i, nil
+}
+
+func (m *Endpoint) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Endpoint) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Spec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+		n18, err := m.Spec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n18
+	}
+	if len(m.Ports) > 0 {
+		for _, msg := range m.Ports {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.VirtualIPs) > 0 {
+		for _, msg := range m.VirtualIPs {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *Endpoint_VirtualIP) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Endpoint_VirtualIP) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NetworkID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.NetworkID)))
+		i += copy(dAtA[i:], m.NetworkID)
+	}
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	return i, nil
+}
+
+func (m *Task) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Task) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n19, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n19
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n20, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n20
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if m.Slot != 0 {
+		dAtA[i] = 0x28
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Slot))
+	}
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	dAtA[i] = 0x3a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Annotations.Size()))
+	n21, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n21
+	dAtA[i] = 0x42
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.ServiceAnnotations.Size()))
+	n22, err := m.ServiceAnnotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n22
+	dAtA[i] = 0x4a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Status.Size()))
+	n23, err := m.Status.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n23
+	if m.DesiredState != 0 {
+		dAtA[i] = 0x50
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.DesiredState))
+	}
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0x5a
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Endpoint != nil {
+		dAtA[i] = 0x62
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Endpoint.Size()))
+		n24, err := m.Endpoint.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n24
+	}
+	if m.LogDriver != nil {
+		dAtA[i] = 0x6a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.LogDriver.Size()))
+		n25, err := m.LogDriver.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n25
+	}
+	if m.SpecVersion != nil {
+		dAtA[i] = 0x72
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.SpecVersion.Size()))
+		n26, err := m.SpecVersion.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n26
+	}
+	if len(m.AssignedGenericResources) > 0 {
+		for _, msg := range m.AssignedGenericResources {
+			dAtA[i] = 0x7a
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *NetworkAttachment) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkAttachment) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Network != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Network.Size()))
+		n27, err := m.Network.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n27
+	}
+	if len(m.Addresses) > 0 {
+		for _, s := range m.Addresses {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.DriverAttachmentOpts) > 0 {
+		for k, _ := range m.DriverAttachmentOpts {
+			dAtA[i] = 0x22
+			i++
+			v := m.DriverAttachmentOpts[k]
+			mapSize := 1 + len(k) + sovObjects(uint64(len(k))) + 1 + len(v) + sovObjects(uint64(len(v)))
+			i = encodeVarintObjects(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	return i, nil
+}
+
+func (m *Network) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Network) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n28, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n28
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n29, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n29
+	if m.DriverState != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.DriverState.Size()))
+		n30, err := m.DriverState.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n30
+	}
+	if m.IPAM != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.IPAM.Size()))
+		n31, err := m.IPAM.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n31
+	}
+	return i, nil
+}
+
+func (m *Cluster) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Cluster) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n32, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n32
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n33, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n33
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.RootCA.Size()))
+	n34, err := m.RootCA.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n34
+	if len(m.NetworkBootstrapKeys) > 0 {
+		for _, msg := range m.NetworkBootstrapKeys {
+			dAtA[i] = 0x2a
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.EncryptionKeyLamportClock != 0 {
+		dAtA[i] = 0x30
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.EncryptionKeyLamportClock))
+	}
+	if len(m.BlacklistedCertificates) > 0 {
+		for k, _ := range m.BlacklistedCertificates {
+			dAtA[i] = 0x42
+			i++
+			v := m.BlacklistedCertificates[k]
+			msgSize := 0
+			if v != nil {
+				msgSize = v.Size()
+				msgSize += 1 + sovObjects(uint64(msgSize))
+			}
+			mapSize := 1 + len(k) + sovObjects(uint64(len(k))) + msgSize
+			i = encodeVarintObjects(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			if v != nil {
+				dAtA[i] = 0x12
+				i++
+				i = encodeVarintObjects(dAtA, i, uint64(v.Size()))
+				n35, err := v.MarshalTo(dAtA[i:])
+				if err != nil {
+					return 0, err
+				}
+				i += n35
+			}
+		}
+	}
+	if len(m.UnlockKeys) > 0 {
+		for _, msg := range m.UnlockKeys {
+			dAtA[i] = 0x4a
+			i++
+			i = encodeVarintObjects(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.FIPS {
+		dAtA[i] = 0x50
+		i++
+		if m.FIPS {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *Secret) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Secret) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n36, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n36
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n37, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n37
+	if m.Internal {
+		dAtA[i] = 0x20
+		i++
+		if m.Internal {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *Config) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Config) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n38, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n38
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Spec.Size()))
+	n39, err := m.Spec.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n39
+	return i, nil
+}
+
+func (m *Resource) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Resource) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n40, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n40
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Annotations.Size()))
+	n41, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n41
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if m.Payload != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(m.Payload.Size()))
+		n42, err := m.Payload.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n42
+	}
+	return i, nil
+}
+
+func (m *Extension) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Extension) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.ID)))
+		i += copy(dAtA[i:], m.ID)
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Meta.Size()))
+	n43, err := m.Meta.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n43
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintObjects(dAtA, i, uint64(m.Annotations.Size()))
+	n44, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n44
+	if len(m.Description) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintObjects(dAtA, i, uint64(len(m.Description)))
+		i += copy(dAtA[i:], m.Description)
+	}
+	return i, nil
+}
+
+func encodeFixed64Objects(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Objects(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintObjects(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+func (m *Meta) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Version.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.CreatedAt != nil {
+		l = m.CreatedAt.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.UpdatedAt != nil {
+		l = m.UpdatedAt.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func (m *Node) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.Description != nil {
+		l = m.Description.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Status.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.ManagerStatus != nil {
+		l = m.ManagerStatus.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.Attachment != nil {
+		l = m.Attachment.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Certificate.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.Role != 0 {
+		n += 1 + sovObjects(uint64(m.Role))
+	}
+	if len(m.Attachments) > 0 {
+		for _, e := range m.Attachments {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *Service) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.Endpoint != nil {
+		l = m.Endpoint.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.UpdateStatus != nil {
+		l = m.UpdateStatus.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.PreviousSpec != nil {
+		l = m.PreviousSpec.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.SpecVersion != nil {
+		l = m.SpecVersion.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.PreviousSpecVersion != nil {
+		l = m.PreviousSpecVersion.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func (m *Endpoint) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spec != nil {
+		l = m.Spec.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if len(m.Ports) > 0 {
+		for _, e := range m.Ports {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if len(m.VirtualIPs) > 0 {
+		for _, e := range m.VirtualIPs {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *Endpoint_VirtualIP) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NetworkID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func (m *Task) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.Slot != 0 {
+		n += 1 + sovObjects(uint64(m.Slot))
+	}
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Annotations.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.ServiceAnnotations.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Status.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.DesiredState != 0 {
+		n += 1 + sovObjects(uint64(m.DesiredState))
+	}
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if m.Endpoint != nil {
+		l = m.Endpoint.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.LogDriver != nil {
+		l = m.LogDriver.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.SpecVersion != nil {
+		l = m.SpecVersion.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if len(m.AssignedGenericResources) > 0 {
+		for _, e := range m.AssignedGenericResources {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *NetworkAttachment) Size() (n int) {
+	var l int
+	_ = l
+	if m.Network != nil {
+		l = m.Network.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if len(m.Addresses) > 0 {
+		for _, s := range m.Addresses {
+			l = len(s)
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			l = len(s)
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if len(m.DriverAttachmentOpts) > 0 {
+		for k, v := range m.DriverAttachmentOpts {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovObjects(uint64(len(k))) + 1 + len(v) + sovObjects(uint64(len(v)))
+			n += mapEntrySize + 1 + sovObjects(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func (m *Network) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.DriverState != nil {
+		l = m.DriverState.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.IPAM != nil {
+		l = m.IPAM.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func (m *Cluster) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.RootCA.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if len(m.NetworkBootstrapKeys) > 0 {
+		for _, e := range m.NetworkBootstrapKeys {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if m.EncryptionKeyLamportClock != 0 {
+		n += 1 + sovObjects(uint64(m.EncryptionKeyLamportClock))
+	}
+	if len(m.BlacklistedCertificates) > 0 {
+		for k, v := range m.BlacklistedCertificates {
+			_ = k
+			_ = v
+			l = 0
+			if v != nil {
+				l = v.Size()
+				l += 1 + sovObjects(uint64(l))
+			}
+			mapEntrySize := 1 + len(k) + sovObjects(uint64(len(k))) + l
+			n += mapEntrySize + 1 + sovObjects(uint64(mapEntrySize))
+		}
+	}
+	if len(m.UnlockKeys) > 0 {
+		for _, e := range m.UnlockKeys {
+			l = e.Size()
+			n += 1 + l + sovObjects(uint64(l))
+		}
+	}
+	if m.FIPS {
+		n += 2
+	}
+	return n
+}
+
+func (m *Secret) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	if m.Internal {
+		n += 2
+	}
+	return n
+}
+
+func (m *Config) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Spec.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	return n
+}
+
+func (m *Resource) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Annotations.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	if m.Payload != nil {
+		l = m.Payload.Size()
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func (m *Extension) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	l = m.Meta.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = m.Annotations.Size()
+	n += 1 + l + sovObjects(uint64(l))
+	l = len(m.Description)
+	if l > 0 {
+		n += 1 + l + sovObjects(uint64(l))
+	}
+	return n
+}
+
+func sovObjects(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozObjects(x uint64) (n int) {
+	return sovObjects(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+
+type NodeCheckFunc func(t1, t2 *Node) bool
+
+type EventCreateNode struct {
+	Node   *Node
+	Checks []NodeCheckFunc
+}
+
+func (e EventCreateNode) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateNode)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Node, typedEvent.Node) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateNode struct {
+	Node    *Node
+	OldNode *Node
+	Checks  []NodeCheckFunc
+}
+
+func (e EventUpdateNode) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateNode)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Node, typedEvent.Node) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteNode struct {
+	Node   *Node
+	Checks []NodeCheckFunc
+}
+
+func (e EventDeleteNode) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteNode)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Node, typedEvent.Node) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Node) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Node) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Node) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Node) GetID() string {
+	return m.ID
+}
+
+func (m *Node) EventCreate() Event {
+	return EventCreateNode{Node: m}
+}
+
+func (m *Node) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateNode{Node: m, OldNode: oldObject.(*Node)}
+	} else {
+		return EventUpdateNode{Node: m}
+	}
+}
+
+func (m *Node) EventDelete() Event {
+	return EventDeleteNode{Node: m}
+}
+
+func NodeCheckID(v1, v2 *Node) bool {
+	return v1.ID == v2.ID
+}
+
+func NodeCheckIDPrefix(v1, v2 *Node) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func NodeCheckName(v1, v2 *Node) bool {
+	if v1.Description == nil || v2.Description == nil {
+		return false
+	}
+	return v1.Description.Hostname == v2.Description.Hostname
+}
+
+func NodeCheckNamePrefix(v1, v2 *Node) bool {
+	if v1.Description == nil || v2.Description == nil {
+		return false
+	}
+	return strings.HasPrefix(v2.Description.Hostname, v1.Description.Hostname)
+}
+
+func NodeCheckCustom(v1, v2 *Node) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func NodeCheckCustomPrefix(v1, v2 *Node) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func NodeCheckRole(v1, v2 *Node) bool {
+	return v1.Role == v2.Role
+}
+
+func NodeCheckMembership(v1, v2 *Node) bool {
+	return v1.Spec.Membership == v2.Spec.Membership
+}
+
+func ConvertNodeWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m             Node
+		checkFuncs    []NodeCheckFunc
+		hasRole       bool
+		hasMembership bool
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, NodeCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, NodeCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Description != nil {
+				return nil, errConflictingFilters
+			}
+			m.Description = &NodeDescription{Hostname: v.Name}
+			checkFuncs = append(checkFuncs, NodeCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Description != nil {
+				return nil, errConflictingFilters
+			}
+			m.Description = &NodeDescription{Hostname: v.NamePrefix}
+			checkFuncs = append(checkFuncs, NodeCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, NodeCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, NodeCheckCustomPrefix)
+		case *SelectBy_Role:
+			if hasRole {
+				return nil, errConflictingFilters
+			}
+			hasRole = true
+			m.Role = v.Role
+			checkFuncs = append(checkFuncs, NodeCheckRole)
+		case *SelectBy_Membership:
+			if hasMembership {
+				return nil, errConflictingFilters
+			}
+			hasMembership = true
+			m.Spec.Membership = v.Membership
+			checkFuncs = append(checkFuncs, NodeCheckMembership)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateNode{Node: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateNode{Node: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteNode{Node: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type NodeIndexerByID struct{}
+
+func (indexer NodeIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NodeIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NodeIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Node)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type NodeIndexerByName struct{}
+
+func (indexer NodeIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NodeIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NodeIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Node)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type NodeCustomIndexer struct{}
+
+func (indexer NodeCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NodeCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NodeCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Node)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type ServiceCheckFunc func(t1, t2 *Service) bool
+
+type EventCreateService struct {
+	Service *Service
+	Checks  []ServiceCheckFunc
+}
+
+func (e EventCreateService) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateService)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Service, typedEvent.Service) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateService struct {
+	Service    *Service
+	OldService *Service
+	Checks     []ServiceCheckFunc
+}
+
+func (e EventUpdateService) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateService)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Service, typedEvent.Service) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteService struct {
+	Service *Service
+	Checks  []ServiceCheckFunc
+}
+
+func (e EventDeleteService) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteService)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Service, typedEvent.Service) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Service) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Service) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Service) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Service) GetID() string {
+	return m.ID
+}
+
+func (m *Service) EventCreate() Event {
+	return EventCreateService{Service: m}
+}
+
+func (m *Service) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateService{Service: m, OldService: oldObject.(*Service)}
+	} else {
+		return EventUpdateService{Service: m}
+	}
+}
+
+func (m *Service) EventDelete() Event {
+	return EventDeleteService{Service: m}
+}
+
+func ServiceCheckID(v1, v2 *Service) bool {
+	return v1.ID == v2.ID
+}
+
+func ServiceCheckIDPrefix(v1, v2 *Service) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func ServiceCheckName(v1, v2 *Service) bool {
+	return v1.Spec.Annotations.Name == v2.Spec.Annotations.Name
+}
+
+func ServiceCheckNamePrefix(v1, v2 *Service) bool {
+	return strings.HasPrefix(v2.Spec.Annotations.Name, v1.Spec.Annotations.Name)
+}
+
+func ServiceCheckCustom(v1, v2 *Service) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ServiceCheckCustomPrefix(v1, v2 *Service) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConvertServiceWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Service
+		checkFuncs []ServiceCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, ServiceCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, ServiceCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, ServiceCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, ServiceCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, ServiceCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, ServiceCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateService{Service: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateService{Service: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteService{Service: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type ServiceIndexerByID struct{}
+
+func (indexer ServiceIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ServiceIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ServiceIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Service)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type ServiceIndexerByName struct{}
+
+func (indexer ServiceIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ServiceIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ServiceIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Service)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type ServiceCustomIndexer struct{}
+
+func (indexer ServiceCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ServiceCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ServiceCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Service)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type TaskCheckFunc func(t1, t2 *Task) bool
+
+type EventCreateTask struct {
+	Task   *Task
+	Checks []TaskCheckFunc
+}
+
+func (e EventCreateTask) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateTask)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Task, typedEvent.Task) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateTask struct {
+	Task    *Task
+	OldTask *Task
+	Checks  []TaskCheckFunc
+}
+
+func (e EventUpdateTask) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateTask)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Task, typedEvent.Task) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteTask struct {
+	Task   *Task
+	Checks []TaskCheckFunc
+}
+
+func (e EventDeleteTask) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteTask)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Task, typedEvent.Task) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Task) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Task) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Task) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Task) GetID() string {
+	return m.ID
+}
+
+func (m *Task) EventCreate() Event {
+	return EventCreateTask{Task: m}
+}
+
+func (m *Task) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateTask{Task: m, OldTask: oldObject.(*Task)}
+	} else {
+		return EventUpdateTask{Task: m}
+	}
+}
+
+func (m *Task) EventDelete() Event {
+	return EventDeleteTask{Task: m}
+}
+
+func TaskCheckID(v1, v2 *Task) bool {
+	return v1.ID == v2.ID
+}
+
+func TaskCheckIDPrefix(v1, v2 *Task) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func TaskCheckName(v1, v2 *Task) bool {
+	return v1.Annotations.Name == v2.Annotations.Name
+}
+
+func TaskCheckNamePrefix(v1, v2 *Task) bool {
+	return strings.HasPrefix(v2.Annotations.Name, v1.Annotations.Name)
+}
+
+func TaskCheckCustom(v1, v2 *Task) bool {
+	return checkCustom(v1.Annotations, v2.Annotations)
+}
+
+func TaskCheckCustomPrefix(v1, v2 *Task) bool {
+	return checkCustomPrefix(v1.Annotations, v2.Annotations)
+}
+
+func TaskCheckNodeID(v1, v2 *Task) bool {
+	return v1.NodeID == v2.NodeID
+}
+
+func TaskCheckServiceID(v1, v2 *Task) bool {
+	return v1.ServiceID == v2.ServiceID
+}
+
+func TaskCheckSlot(v1, v2 *Task) bool {
+	return v1.Slot == v2.Slot
+}
+
+func TaskCheckDesiredState(v1, v2 *Task) bool {
+	return v1.DesiredState == v2.DesiredState
+}
+
+func ConvertTaskWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m               Task
+		checkFuncs      []TaskCheckFunc
+		hasDesiredState bool
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, TaskCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, TaskCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, TaskCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, TaskCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, TaskCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, TaskCheckCustomPrefix)
+		case *SelectBy_ServiceID:
+			if m.ServiceID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ServiceID = v.ServiceID
+			checkFuncs = append(checkFuncs, TaskCheckServiceID)
+		case *SelectBy_NodeID:
+			if m.NodeID != "" {
+				return nil, errConflictingFilters
+			}
+			m.NodeID = v.NodeID
+			checkFuncs = append(checkFuncs, TaskCheckNodeID)
+		case *SelectBy_Slot:
+			if m.Slot != 0 || m.ServiceID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ServiceID = v.Slot.ServiceID
+			m.Slot = v.Slot.Slot
+			checkFuncs = append(checkFuncs, TaskCheckNodeID, TaskCheckSlot)
+		case *SelectBy_DesiredState:
+			if hasDesiredState {
+				return nil, errConflictingFilters
+			}
+			hasDesiredState = true
+			m.DesiredState = v.DesiredState
+			checkFuncs = append(checkFuncs, TaskCheckDesiredState)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateTask{Task: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateTask{Task: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteTask{Task: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type TaskIndexerByID struct{}
+
+func (indexer TaskIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer TaskIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer TaskIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Task)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type TaskIndexerByName struct{}
+
+func (indexer TaskIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer TaskIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer TaskIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Task)
+	val := m.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type TaskCustomIndexer struct{}
+
+func (indexer TaskCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer TaskCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer TaskCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Task)
+	return customIndexer("", &m.Annotations)
+}
+
+type NetworkCheckFunc func(t1, t2 *Network) bool
+
+type EventCreateNetwork struct {
+	Network *Network
+	Checks  []NetworkCheckFunc
+}
+
+func (e EventCreateNetwork) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateNetwork)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Network, typedEvent.Network) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateNetwork struct {
+	Network    *Network
+	OldNetwork *Network
+	Checks     []NetworkCheckFunc
+}
+
+func (e EventUpdateNetwork) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateNetwork)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Network, typedEvent.Network) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteNetwork struct {
+	Network *Network
+	Checks  []NetworkCheckFunc
+}
+
+func (e EventDeleteNetwork) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteNetwork)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Network, typedEvent.Network) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Network) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Network) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Network) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Network) GetID() string {
+	return m.ID
+}
+
+func (m *Network) EventCreate() Event {
+	return EventCreateNetwork{Network: m}
+}
+
+func (m *Network) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateNetwork{Network: m, OldNetwork: oldObject.(*Network)}
+	} else {
+		return EventUpdateNetwork{Network: m}
+	}
+}
+
+func (m *Network) EventDelete() Event {
+	return EventDeleteNetwork{Network: m}
+}
+
+func NetworkCheckID(v1, v2 *Network) bool {
+	return v1.ID == v2.ID
+}
+
+func NetworkCheckIDPrefix(v1, v2 *Network) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func NetworkCheckName(v1, v2 *Network) bool {
+	return v1.Spec.Annotations.Name == v2.Spec.Annotations.Name
+}
+
+func NetworkCheckNamePrefix(v1, v2 *Network) bool {
+	return strings.HasPrefix(v2.Spec.Annotations.Name, v1.Spec.Annotations.Name)
+}
+
+func NetworkCheckCustom(v1, v2 *Network) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func NetworkCheckCustomPrefix(v1, v2 *Network) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConvertNetworkWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Network
+		checkFuncs []NetworkCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, NetworkCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, NetworkCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, NetworkCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, NetworkCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, NetworkCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, NetworkCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateNetwork{Network: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateNetwork{Network: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteNetwork{Network: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type NetworkIndexerByID struct{}
+
+func (indexer NetworkIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NetworkIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NetworkIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Network)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type NetworkIndexerByName struct{}
+
+func (indexer NetworkIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NetworkIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NetworkIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Network)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type NetworkCustomIndexer struct{}
+
+func (indexer NetworkCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer NetworkCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer NetworkCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Network)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type ClusterCheckFunc func(t1, t2 *Cluster) bool
+
+type EventCreateCluster struct {
+	Cluster *Cluster
+	Checks  []ClusterCheckFunc
+}
+
+func (e EventCreateCluster) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateCluster)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Cluster, typedEvent.Cluster) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateCluster struct {
+	Cluster    *Cluster
+	OldCluster *Cluster
+	Checks     []ClusterCheckFunc
+}
+
+func (e EventUpdateCluster) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateCluster)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Cluster, typedEvent.Cluster) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteCluster struct {
+	Cluster *Cluster
+	Checks  []ClusterCheckFunc
+}
+
+func (e EventDeleteCluster) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteCluster)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Cluster, typedEvent.Cluster) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Cluster) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Cluster) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Cluster) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Cluster) GetID() string {
+	return m.ID
+}
+
+func (m *Cluster) EventCreate() Event {
+	return EventCreateCluster{Cluster: m}
+}
+
+func (m *Cluster) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateCluster{Cluster: m, OldCluster: oldObject.(*Cluster)}
+	} else {
+		return EventUpdateCluster{Cluster: m}
+	}
+}
+
+func (m *Cluster) EventDelete() Event {
+	return EventDeleteCluster{Cluster: m}
+}
+
+func ClusterCheckID(v1, v2 *Cluster) bool {
+	return v1.ID == v2.ID
+}
+
+func ClusterCheckIDPrefix(v1, v2 *Cluster) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func ClusterCheckName(v1, v2 *Cluster) bool {
+	return v1.Spec.Annotations.Name == v2.Spec.Annotations.Name
+}
+
+func ClusterCheckNamePrefix(v1, v2 *Cluster) bool {
+	return strings.HasPrefix(v2.Spec.Annotations.Name, v1.Spec.Annotations.Name)
+}
+
+func ClusterCheckCustom(v1, v2 *Cluster) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ClusterCheckCustomPrefix(v1, v2 *Cluster) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConvertClusterWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Cluster
+		checkFuncs []ClusterCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, ClusterCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, ClusterCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, ClusterCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, ClusterCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, ClusterCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, ClusterCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateCluster{Cluster: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateCluster{Cluster: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteCluster{Cluster: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type ClusterIndexerByID struct{}
+
+func (indexer ClusterIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ClusterIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ClusterIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Cluster)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type ClusterIndexerByName struct{}
+
+func (indexer ClusterIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ClusterIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ClusterIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Cluster)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type ClusterCustomIndexer struct{}
+
+func (indexer ClusterCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ClusterCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ClusterCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Cluster)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type SecretCheckFunc func(t1, t2 *Secret) bool
+
+type EventCreateSecret struct {
+	Secret *Secret
+	Checks []SecretCheckFunc
+}
+
+func (e EventCreateSecret) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateSecret)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Secret, typedEvent.Secret) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateSecret struct {
+	Secret    *Secret
+	OldSecret *Secret
+	Checks    []SecretCheckFunc
+}
+
+func (e EventUpdateSecret) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateSecret)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Secret, typedEvent.Secret) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteSecret struct {
+	Secret *Secret
+	Checks []SecretCheckFunc
+}
+
+func (e EventDeleteSecret) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteSecret)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Secret, typedEvent.Secret) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Secret) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Secret) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Secret) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Secret) GetID() string {
+	return m.ID
+}
+
+func (m *Secret) EventCreate() Event {
+	return EventCreateSecret{Secret: m}
+}
+
+func (m *Secret) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateSecret{Secret: m, OldSecret: oldObject.(*Secret)}
+	} else {
+		return EventUpdateSecret{Secret: m}
+	}
+}
+
+func (m *Secret) EventDelete() Event {
+	return EventDeleteSecret{Secret: m}
+}
+
+func SecretCheckID(v1, v2 *Secret) bool {
+	return v1.ID == v2.ID
+}
+
+func SecretCheckIDPrefix(v1, v2 *Secret) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func SecretCheckName(v1, v2 *Secret) bool {
+	return v1.Spec.Annotations.Name == v2.Spec.Annotations.Name
+}
+
+func SecretCheckNamePrefix(v1, v2 *Secret) bool {
+	return strings.HasPrefix(v2.Spec.Annotations.Name, v1.Spec.Annotations.Name)
+}
+
+func SecretCheckCustom(v1, v2 *Secret) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func SecretCheckCustomPrefix(v1, v2 *Secret) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConvertSecretWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Secret
+		checkFuncs []SecretCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, SecretCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, SecretCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, SecretCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, SecretCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, SecretCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, SecretCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateSecret{Secret: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateSecret{Secret: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteSecret{Secret: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type SecretIndexerByID struct{}
+
+func (indexer SecretIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer SecretIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer SecretIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Secret)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type SecretIndexerByName struct{}
+
+func (indexer SecretIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer SecretIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer SecretIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Secret)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type SecretCustomIndexer struct{}
+
+func (indexer SecretCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer SecretCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer SecretCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Secret)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type ConfigCheckFunc func(t1, t2 *Config) bool
+
+type EventCreateConfig struct {
+	Config *Config
+	Checks []ConfigCheckFunc
+}
+
+func (e EventCreateConfig) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateConfig)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Config, typedEvent.Config) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateConfig struct {
+	Config    *Config
+	OldConfig *Config
+	Checks    []ConfigCheckFunc
+}
+
+func (e EventUpdateConfig) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateConfig)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Config, typedEvent.Config) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteConfig struct {
+	Config *Config
+	Checks []ConfigCheckFunc
+}
+
+func (e EventDeleteConfig) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteConfig)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Config, typedEvent.Config) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Config) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Config) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Config) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Config) GetID() string {
+	return m.ID
+}
+
+func (m *Config) EventCreate() Event {
+	return EventCreateConfig{Config: m}
+}
+
+func (m *Config) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateConfig{Config: m, OldConfig: oldObject.(*Config)}
+	} else {
+		return EventUpdateConfig{Config: m}
+	}
+}
+
+func (m *Config) EventDelete() Event {
+	return EventDeleteConfig{Config: m}
+}
+
+func ConfigCheckID(v1, v2 *Config) bool {
+	return v1.ID == v2.ID
+}
+
+func ConfigCheckIDPrefix(v1, v2 *Config) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func ConfigCheckName(v1, v2 *Config) bool {
+	return v1.Spec.Annotations.Name == v2.Spec.Annotations.Name
+}
+
+func ConfigCheckNamePrefix(v1, v2 *Config) bool {
+	return strings.HasPrefix(v2.Spec.Annotations.Name, v1.Spec.Annotations.Name)
+}
+
+func ConfigCheckCustom(v1, v2 *Config) bool {
+	return checkCustom(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConfigCheckCustomPrefix(v1, v2 *Config) bool {
+	return checkCustomPrefix(v1.Spec.Annotations, v2.Spec.Annotations)
+}
+
+func ConvertConfigWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Config
+		checkFuncs []ConfigCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, ConfigCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, ConfigCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, ConfigCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Spec.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, ConfigCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, ConfigCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Spec.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Spec.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, ConfigCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateConfig{Config: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateConfig{Config: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteConfig{Config: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type ConfigIndexerByID struct{}
+
+func (indexer ConfigIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ConfigIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ConfigIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Config)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type ConfigIndexerByName struct{}
+
+func (indexer ConfigIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ConfigIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ConfigIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Config)
+	val := m.Spec.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type ConfigCustomIndexer struct{}
+
+func (indexer ConfigCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ConfigCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ConfigCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Config)
+	return customIndexer("", &m.Spec.Annotations)
+}
+
+type ResourceCheckFunc func(t1, t2 *Resource) bool
+
+type EventCreateResource struct {
+	Resource *Resource
+	Checks   []ResourceCheckFunc
+}
+
+func (e EventCreateResource) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateResource)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Resource, typedEvent.Resource) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateResource struct {
+	Resource    *Resource
+	OldResource *Resource
+	Checks      []ResourceCheckFunc
+}
+
+func (e EventUpdateResource) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateResource)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Resource, typedEvent.Resource) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteResource struct {
+	Resource *Resource
+	Checks   []ResourceCheckFunc
+}
+
+func (e EventDeleteResource) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteResource)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Resource, typedEvent.Resource) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Resource) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Resource) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Resource) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Resource) GetID() string {
+	return m.ID
+}
+
+func (m *Resource) EventCreate() Event {
+	return EventCreateResource{Resource: m}
+}
+
+func (m *Resource) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateResource{Resource: m, OldResource: oldObject.(*Resource)}
+	} else {
+		return EventUpdateResource{Resource: m}
+	}
+}
+
+func (m *Resource) EventDelete() Event {
+	return EventDeleteResource{Resource: m}
+}
+
+func ResourceCheckID(v1, v2 *Resource) bool {
+	return v1.ID == v2.ID
+}
+
+func ResourceCheckIDPrefix(v1, v2 *Resource) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func ResourceCheckName(v1, v2 *Resource) bool {
+	return v1.Annotations.Name == v2.Annotations.Name
+}
+
+func ResourceCheckNamePrefix(v1, v2 *Resource) bool {
+	return strings.HasPrefix(v2.Annotations.Name, v1.Annotations.Name)
+}
+
+func ResourceCheckCustom(v1, v2 *Resource) bool {
+	return checkCustom(v1.Annotations, v2.Annotations)
+}
+
+func ResourceCheckCustomPrefix(v1, v2 *Resource) bool {
+	return checkCustomPrefix(v1.Annotations, v2.Annotations)
+}
+
+func ResourceCheckKind(v1, v2 *Resource) bool {
+	return v1.Kind == v2.Kind
+}
+
+func ConvertResourceWatch(action WatchActionKind, filters []*SelectBy, kind string) ([]Event, error) {
+	var (
+		m          Resource
+		checkFuncs []ResourceCheckFunc
+	)
+	m.Kind = kind
+	checkFuncs = append(checkFuncs, ResourceCheckKind)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, ResourceCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, ResourceCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, ResourceCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, ResourceCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, ResourceCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, ResourceCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateResource{Resource: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateResource{Resource: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteResource{Resource: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type ResourceIndexerByID struct{}
+
+func (indexer ResourceIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ResourceIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ResourceIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Resource)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type ResourceIndexerByName struct{}
+
+func (indexer ResourceIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ResourceIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ResourceIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Resource)
+	val := m.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type ResourceCustomIndexer struct{}
+
+func (indexer ResourceCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ResourceCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ResourceCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Resource)
+	return customIndexer("", &m.Annotations)
+}
+
+type ExtensionCheckFunc func(t1, t2 *Extension) bool
+
+type EventCreateExtension struct {
+	Extension *Extension
+	Checks    []ExtensionCheckFunc
+}
+
+func (e EventCreateExtension) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventCreateExtension)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Extension, typedEvent.Extension) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventUpdateExtension struct {
+	Extension    *Extension
+	OldExtension *Extension
+	Checks       []ExtensionCheckFunc
+}
+
+func (e EventUpdateExtension) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventUpdateExtension)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Extension, typedEvent.Extension) {
+			return false
+		}
+	}
+	return true
+}
+
+type EventDeleteExtension struct {
+	Extension *Extension
+	Checks    []ExtensionCheckFunc
+}
+
+func (e EventDeleteExtension) Matches(apiEvent github_com_docker_go_events.Event) bool {
+	typedEvent, ok := apiEvent.(EventDeleteExtension)
+	if !ok {
+		return false
+	}
+
+	for _, check := range e.Checks {
+		if !check(e.Extension, typedEvent.Extension) {
+			return false
+		}
+	}
+	return true
+}
+func (m *Extension) CopyStoreObject() StoreObject {
+	return m.Copy()
+}
+
+func (m *Extension) GetMeta() Meta {
+	return m.Meta
+}
+
+func (m *Extension) SetMeta(meta Meta) {
+	m.Meta = meta
+}
+
+func (m *Extension) GetID() string {
+	return m.ID
+}
+
+func (m *Extension) EventCreate() Event {
+	return EventCreateExtension{Extension: m}
+}
+
+func (m *Extension) EventUpdate(oldObject StoreObject) Event {
+	if oldObject != nil {
+		return EventUpdateExtension{Extension: m, OldExtension: oldObject.(*Extension)}
+	} else {
+		return EventUpdateExtension{Extension: m}
+	}
+}
+
+func (m *Extension) EventDelete() Event {
+	return EventDeleteExtension{Extension: m}
+}
+
+func ExtensionCheckID(v1, v2 *Extension) bool {
+	return v1.ID == v2.ID
+}
+
+func ExtensionCheckIDPrefix(v1, v2 *Extension) bool {
+	return strings.HasPrefix(v2.ID, v1.ID)
+}
+
+func ExtensionCheckName(v1, v2 *Extension) bool {
+	return v1.Annotations.Name == v2.Annotations.Name
+}
+
+func ExtensionCheckNamePrefix(v1, v2 *Extension) bool {
+	return strings.HasPrefix(v2.Annotations.Name, v1.Annotations.Name)
+}
+
+func ExtensionCheckCustom(v1, v2 *Extension) bool {
+	return checkCustom(v1.Annotations, v2.Annotations)
+}
+
+func ExtensionCheckCustomPrefix(v1, v2 *Extension) bool {
+	return checkCustomPrefix(v1.Annotations, v2.Annotations)
+}
+
+func ConvertExtensionWatch(action WatchActionKind, filters []*SelectBy) ([]Event, error) {
+	var (
+		m          Extension
+		checkFuncs []ExtensionCheckFunc
+	)
+
+	for _, filter := range filters {
+		switch v := filter.By.(type) {
+		case *SelectBy_ID:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.ID
+			checkFuncs = append(checkFuncs, ExtensionCheckID)
+		case *SelectBy_IDPrefix:
+			if m.ID != "" {
+				return nil, errConflictingFilters
+			}
+			m.ID = v.IDPrefix
+			checkFuncs = append(checkFuncs, ExtensionCheckIDPrefix)
+		case *SelectBy_Name:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.Name
+			checkFuncs = append(checkFuncs, ExtensionCheckName)
+		case *SelectBy_NamePrefix:
+			if m.Annotations.Name != "" {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Name = v.NamePrefix
+			checkFuncs = append(checkFuncs, ExtensionCheckNamePrefix)
+		case *SelectBy_Custom:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.Custom.Index, Val: v.Custom.Value}}
+			checkFuncs = append(checkFuncs, ExtensionCheckCustom)
+		case *SelectBy_CustomPrefix:
+			if len(m.Annotations.Indices) != 0 {
+				return nil, errConflictingFilters
+			}
+			m.Annotations.Indices = []IndexEntry{{Key: v.CustomPrefix.Index, Val: v.CustomPrefix.Value}}
+			checkFuncs = append(checkFuncs, ExtensionCheckCustomPrefix)
+		}
+	}
+	var events []Event
+	if (action & WatchActionKindCreate) != 0 {
+		events = append(events, EventCreateExtension{Extension: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindUpdate) != 0 {
+		events = append(events, EventUpdateExtension{Extension: &m, Checks: checkFuncs})
+	}
+	if (action & WatchActionKindRemove) != 0 {
+		events = append(events, EventDeleteExtension{Extension: &m, Checks: checkFuncs})
+	}
+	if len(events) == 0 {
+		return nil, errUnrecognizedAction
+	}
+	return events, nil
+}
+
+type ExtensionIndexerByID struct{}
+
+func (indexer ExtensionIndexerByID) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ExtensionIndexerByID) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ExtensionIndexerByID) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Extension)
+	return true, []byte(m.ID + "\x00"), nil
+}
+
+type ExtensionIndexerByName struct{}
+
+func (indexer ExtensionIndexerByName) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ExtensionIndexerByName) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ExtensionIndexerByName) FromObject(obj interface{}) (bool, []byte, error) {
+	m := obj.(*Extension)
+	val := m.Annotations.Name
+	return true, []byte(strings.ToLower(val) + "\x00"), nil
+}
+
+type ExtensionCustomIndexer struct{}
+
+func (indexer ExtensionCustomIndexer) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromArgs(args...)
+}
+func (indexer ExtensionCustomIndexer) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	return prefixFromArgs(args...)
+}
+func (indexer ExtensionCustomIndexer) FromObject(obj interface{}) (bool, [][]byte, error) {
+	m := obj.(*Extension)
+	return customIndexer("", &m.Annotations)
+}
+func NewStoreAction(c Event) (StoreAction, error) {
+	var sa StoreAction
+	switch v := c.(type) {
+	case EventCreateNode:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Node{Node: v.Node}
+	case EventUpdateNode:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Node{Node: v.Node}
+	case EventDeleteNode:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Node{Node: v.Node}
+	case EventCreateService:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Service{Service: v.Service}
+	case EventUpdateService:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Service{Service: v.Service}
+	case EventDeleteService:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Service{Service: v.Service}
+	case EventCreateTask:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Task{Task: v.Task}
+	case EventUpdateTask:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Task{Task: v.Task}
+	case EventDeleteTask:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Task{Task: v.Task}
+	case EventCreateNetwork:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Network{Network: v.Network}
+	case EventUpdateNetwork:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Network{Network: v.Network}
+	case EventDeleteNetwork:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Network{Network: v.Network}
+	case EventCreateCluster:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Cluster{Cluster: v.Cluster}
+	case EventUpdateCluster:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Cluster{Cluster: v.Cluster}
+	case EventDeleteCluster:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Cluster{Cluster: v.Cluster}
+	case EventCreateSecret:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Secret{Secret: v.Secret}
+	case EventUpdateSecret:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Secret{Secret: v.Secret}
+	case EventDeleteSecret:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Secret{Secret: v.Secret}
+	case EventCreateConfig:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Config{Config: v.Config}
+	case EventUpdateConfig:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Config{Config: v.Config}
+	case EventDeleteConfig:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Config{Config: v.Config}
+	case EventCreateResource:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Resource{Resource: v.Resource}
+	case EventUpdateResource:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Resource{Resource: v.Resource}
+	case EventDeleteResource:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Resource{Resource: v.Resource}
+	case EventCreateExtension:
+		sa.Action = StoreActionKindCreate
+		sa.Target = &StoreAction_Extension{Extension: v.Extension}
+	case EventUpdateExtension:
+		sa.Action = StoreActionKindUpdate
+		sa.Target = &StoreAction_Extension{Extension: v.Extension}
+	case EventDeleteExtension:
+		sa.Action = StoreActionKindRemove
+		sa.Target = &StoreAction_Extension{Extension: v.Extension}
+	default:
+		return StoreAction{}, errUnknownStoreAction
+	}
+	return sa, nil
+}
+
+func EventFromStoreAction(sa StoreAction, oldObject StoreObject) (Event, error) {
+	switch v := sa.Target.(type) {
+	case *StoreAction_Node:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateNode{Node: v.Node}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateNode{Node: v.Node, OldNode: oldObject.(*Node)}, nil
+			} else {
+				return EventUpdateNode{Node: v.Node}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteNode{Node: v.Node}, nil
+		}
+	case *StoreAction_Service:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateService{Service: v.Service}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateService{Service: v.Service, OldService: oldObject.(*Service)}, nil
+			} else {
+				return EventUpdateService{Service: v.Service}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteService{Service: v.Service}, nil
+		}
+	case *StoreAction_Task:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateTask{Task: v.Task}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateTask{Task: v.Task, OldTask: oldObject.(*Task)}, nil
+			} else {
+				return EventUpdateTask{Task: v.Task}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteTask{Task: v.Task}, nil
+		}
+	case *StoreAction_Network:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateNetwork{Network: v.Network}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateNetwork{Network: v.Network, OldNetwork: oldObject.(*Network)}, nil
+			} else {
+				return EventUpdateNetwork{Network: v.Network}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteNetwork{Network: v.Network}, nil
+		}
+	case *StoreAction_Cluster:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateCluster{Cluster: v.Cluster}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateCluster{Cluster: v.Cluster, OldCluster: oldObject.(*Cluster)}, nil
+			} else {
+				return EventUpdateCluster{Cluster: v.Cluster}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteCluster{Cluster: v.Cluster}, nil
+		}
+	case *StoreAction_Secret:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateSecret{Secret: v.Secret}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateSecret{Secret: v.Secret, OldSecret: oldObject.(*Secret)}, nil
+			} else {
+				return EventUpdateSecret{Secret: v.Secret}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteSecret{Secret: v.Secret}, nil
+		}
+	case *StoreAction_Config:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateConfig{Config: v.Config}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateConfig{Config: v.Config, OldConfig: oldObject.(*Config)}, nil
+			} else {
+				return EventUpdateConfig{Config: v.Config}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteConfig{Config: v.Config}, nil
+		}
+	case *StoreAction_Resource:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateResource{Resource: v.Resource}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateResource{Resource: v.Resource, OldResource: oldObject.(*Resource)}, nil
+			} else {
+				return EventUpdateResource{Resource: v.Resource}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteResource{Resource: v.Resource}, nil
+		}
+	case *StoreAction_Extension:
+		switch sa.Action {
+		case StoreActionKindCreate:
+			return EventCreateExtension{Extension: v.Extension}, nil
+		case StoreActionKindUpdate:
+			if oldObject != nil {
+				return EventUpdateExtension{Extension: v.Extension, OldExtension: oldObject.(*Extension)}, nil
+			} else {
+				return EventUpdateExtension{Extension: v.Extension}, nil
+			}
+		case StoreActionKindRemove:
+			return EventDeleteExtension{Extension: v.Extension}, nil
+		}
+	}
+	return nil, errUnknownStoreAction
+}
+
+func WatchMessageEvent(c Event) *WatchMessage_Event {
+	switch v := c.(type) {
+	case EventCreateNode:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Node{Node: v.Node}}}
+	case EventUpdateNode:
+		if v.OldNode != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Node{Node: v.Node}}, OldObject: &Object{Object: &Object_Node{Node: v.OldNode}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Node{Node: v.Node}}}
+		}
+	case EventDeleteNode:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Node{Node: v.Node}}}
+	case EventCreateService:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Service{Service: v.Service}}}
+	case EventUpdateService:
+		if v.OldService != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Service{Service: v.Service}}, OldObject: &Object{Object: &Object_Service{Service: v.OldService}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Service{Service: v.Service}}}
+		}
+	case EventDeleteService:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Service{Service: v.Service}}}
+	case EventCreateTask:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Task{Task: v.Task}}}
+	case EventUpdateTask:
+		if v.OldTask != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Task{Task: v.Task}}, OldObject: &Object{Object: &Object_Task{Task: v.OldTask}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Task{Task: v.Task}}}
+		}
+	case EventDeleteTask:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Task{Task: v.Task}}}
+	case EventCreateNetwork:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Network{Network: v.Network}}}
+	case EventUpdateNetwork:
+		if v.OldNetwork != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Network{Network: v.Network}}, OldObject: &Object{Object: &Object_Network{Network: v.OldNetwork}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Network{Network: v.Network}}}
+		}
+	case EventDeleteNetwork:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Network{Network: v.Network}}}
+	case EventCreateCluster:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Cluster{Cluster: v.Cluster}}}
+	case EventUpdateCluster:
+		if v.OldCluster != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Cluster{Cluster: v.Cluster}}, OldObject: &Object{Object: &Object_Cluster{Cluster: v.OldCluster}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Cluster{Cluster: v.Cluster}}}
+		}
+	case EventDeleteCluster:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Cluster{Cluster: v.Cluster}}}
+	case EventCreateSecret:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Secret{Secret: v.Secret}}}
+	case EventUpdateSecret:
+		if v.OldSecret != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Secret{Secret: v.Secret}}, OldObject: &Object{Object: &Object_Secret{Secret: v.OldSecret}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Secret{Secret: v.Secret}}}
+		}
+	case EventDeleteSecret:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Secret{Secret: v.Secret}}}
+	case EventCreateConfig:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Config{Config: v.Config}}}
+	case EventUpdateConfig:
+		if v.OldConfig != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Config{Config: v.Config}}, OldObject: &Object{Object: &Object_Config{Config: v.OldConfig}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Config{Config: v.Config}}}
+		}
+	case EventDeleteConfig:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Config{Config: v.Config}}}
+	case EventCreateResource:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Resource{Resource: v.Resource}}}
+	case EventUpdateResource:
+		if v.OldResource != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Resource{Resource: v.Resource}}, OldObject: &Object{Object: &Object_Resource{Resource: v.OldResource}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Resource{Resource: v.Resource}}}
+		}
+	case EventDeleteResource:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Resource{Resource: v.Resource}}}
+	case EventCreateExtension:
+		return &WatchMessage_Event{Action: WatchActionKindCreate, Object: &Object{Object: &Object_Extension{Extension: v.Extension}}}
+	case EventUpdateExtension:
+		if v.OldExtension != nil {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Extension{Extension: v.Extension}}, OldObject: &Object{Object: &Object_Extension{Extension: v.OldExtension}}}
+		} else {
+			return &WatchMessage_Event{Action: WatchActionKindUpdate, Object: &Object{Object: &Object_Extension{Extension: v.Extension}}}
+		}
+	case EventDeleteExtension:
+		return &WatchMessage_Event{Action: WatchActionKindRemove, Object: &Object{Object: &Object_Extension{Extension: v.Extension}}}
+	}
+	return nil
+}
+
+func ConvertWatchArgs(entries []*WatchRequest_WatchEntry) ([]Event, error) {
+	var events []Event
+	for _, entry := range entries {
+		var newEvents []Event
+		var err error
+		switch entry.Kind {
+		case "":
+			return nil, errNoKindSpecified
+		case "node":
+			newEvents, err = ConvertNodeWatch(entry.Action, entry.Filters)
+		case "service":
+			newEvents, err = ConvertServiceWatch(entry.Action, entry.Filters)
+		case "task":
+			newEvents, err = ConvertTaskWatch(entry.Action, entry.Filters)
+		case "network":
+			newEvents, err = ConvertNetworkWatch(entry.Action, entry.Filters)
+		case "cluster":
+			newEvents, err = ConvertClusterWatch(entry.Action, entry.Filters)
+		case "secret":
+			newEvents, err = ConvertSecretWatch(entry.Action, entry.Filters)
+		case "config":
+			newEvents, err = ConvertConfigWatch(entry.Action, entry.Filters)
+		default:
+			newEvents, err = ConvertResourceWatch(entry.Action, entry.Filters, entry.Kind)
+		case "extension":
+			newEvents, err = ConvertExtensionWatch(entry.Action, entry.Filters)
+		}
+		if err != nil {
+			return nil, err
+		}
+		events = append(events, newEvents...)
+	}
+	return events, nil
+}
+
+func (this *Meta) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Meta{`,
+		`Version:` + strings.Replace(strings.Replace(this.Version.String(), "Version", "Version", 1), `&`, ``, 1) + `,`,
+		`CreatedAt:` + strings.Replace(fmt.Sprintf("%v", this.CreatedAt), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`UpdatedAt:` + strings.Replace(fmt.Sprintf("%v", this.UpdatedAt), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Node) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Node{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "NodeSpec", "NodeSpec", 1), `&`, ``, 1) + `,`,
+		`Description:` + strings.Replace(fmt.Sprintf("%v", this.Description), "NodeDescription", "NodeDescription", 1) + `,`,
+		`Status:` + strings.Replace(strings.Replace(this.Status.String(), "NodeStatus", "NodeStatus", 1), `&`, ``, 1) + `,`,
+		`ManagerStatus:` + strings.Replace(fmt.Sprintf("%v", this.ManagerStatus), "ManagerStatus", "ManagerStatus", 1) + `,`,
+		`Attachment:` + strings.Replace(fmt.Sprintf("%v", this.Attachment), "NetworkAttachment", "NetworkAttachment", 1) + `,`,
+		`Certificate:` + strings.Replace(strings.Replace(this.Certificate.String(), "Certificate", "Certificate", 1), `&`, ``, 1) + `,`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`Attachments:` + strings.Replace(fmt.Sprintf("%v", this.Attachments), "NetworkAttachment", "NetworkAttachment", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Service) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Service{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "ServiceSpec", "ServiceSpec", 1), `&`, ``, 1) + `,`,
+		`Endpoint:` + strings.Replace(fmt.Sprintf("%v", this.Endpoint), "Endpoint", "Endpoint", 1) + `,`,
+		`UpdateStatus:` + strings.Replace(fmt.Sprintf("%v", this.UpdateStatus), "UpdateStatus", "UpdateStatus", 1) + `,`,
+		`PreviousSpec:` + strings.Replace(fmt.Sprintf("%v", this.PreviousSpec), "ServiceSpec", "ServiceSpec", 1) + `,`,
+		`SpecVersion:` + strings.Replace(fmt.Sprintf("%v", this.SpecVersion), "Version", "Version", 1) + `,`,
+		`PreviousSpecVersion:` + strings.Replace(fmt.Sprintf("%v", this.PreviousSpecVersion), "Version", "Version", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Endpoint) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Endpoint{`,
+		`Spec:` + strings.Replace(fmt.Sprintf("%v", this.Spec), "EndpointSpec", "EndpointSpec", 1) + `,`,
+		`Ports:` + strings.Replace(fmt.Sprintf("%v", this.Ports), "PortConfig", "PortConfig", 1) + `,`,
+		`VirtualIPs:` + strings.Replace(fmt.Sprintf("%v", this.VirtualIPs), "Endpoint_VirtualIP", "Endpoint_VirtualIP", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Endpoint_VirtualIP) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Endpoint_VirtualIP{`,
+		`NetworkID:` + fmt.Sprintf("%v", this.NetworkID) + `,`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Task) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Task{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "TaskSpec", "TaskSpec", 1), `&`, ``, 1) + `,`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`Slot:` + fmt.Sprintf("%v", this.Slot) + `,`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`ServiceAnnotations:` + strings.Replace(strings.Replace(this.ServiceAnnotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Status:` + strings.Replace(strings.Replace(this.Status.String(), "TaskStatus", "TaskStatus", 1), `&`, ``, 1) + `,`,
+		`DesiredState:` + fmt.Sprintf("%v", this.DesiredState) + `,`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "NetworkAttachment", "NetworkAttachment", 1) + `,`,
+		`Endpoint:` + strings.Replace(fmt.Sprintf("%v", this.Endpoint), "Endpoint", "Endpoint", 1) + `,`,
+		`LogDriver:` + strings.Replace(fmt.Sprintf("%v", this.LogDriver), "Driver", "Driver", 1) + `,`,
+		`SpecVersion:` + strings.Replace(fmt.Sprintf("%v", this.SpecVersion), "Version", "Version", 1) + `,`,
+		`AssignedGenericResources:` + strings.Replace(fmt.Sprintf("%v", this.AssignedGenericResources), "GenericResource", "GenericResource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkAttachment) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForDriverAttachmentOpts := make([]string, 0, len(this.DriverAttachmentOpts))
+	for k, _ := range this.DriverAttachmentOpts {
+		keysForDriverAttachmentOpts = append(keysForDriverAttachmentOpts, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForDriverAttachmentOpts)
+	mapStringForDriverAttachmentOpts := "map[string]string{"
+	for _, k := range keysForDriverAttachmentOpts {
+		mapStringForDriverAttachmentOpts += fmt.Sprintf("%v: %v,", k, this.DriverAttachmentOpts[k])
+	}
+	mapStringForDriverAttachmentOpts += "}"
+	s := strings.Join([]string{`&NetworkAttachment{`,
+		`Network:` + strings.Replace(fmt.Sprintf("%v", this.Network), "Network", "Network", 1) + `,`,
+		`Addresses:` + fmt.Sprintf("%v", this.Addresses) + `,`,
+		`Aliases:` + fmt.Sprintf("%v", this.Aliases) + `,`,
+		`DriverAttachmentOpts:` + mapStringForDriverAttachmentOpts + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Network) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Network{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "NetworkSpec", "NetworkSpec", 1), `&`, ``, 1) + `,`,
+		`DriverState:` + strings.Replace(fmt.Sprintf("%v", this.DriverState), "Driver", "Driver", 1) + `,`,
+		`IPAM:` + strings.Replace(fmt.Sprintf("%v", this.IPAM), "IPAMOptions", "IPAMOptions", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Cluster) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForBlacklistedCertificates := make([]string, 0, len(this.BlacklistedCertificates))
+	for k, _ := range this.BlacklistedCertificates {
+		keysForBlacklistedCertificates = append(keysForBlacklistedCertificates, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForBlacklistedCertificates)
+	mapStringForBlacklistedCertificates := "map[string]*BlacklistedCertificate{"
+	for _, k := range keysForBlacklistedCertificates {
+		mapStringForBlacklistedCertificates += fmt.Sprintf("%v: %v,", k, this.BlacklistedCertificates[k])
+	}
+	mapStringForBlacklistedCertificates += "}"
+	s := strings.Join([]string{`&Cluster{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "ClusterSpec", "ClusterSpec", 1), `&`, ``, 1) + `,`,
+		`RootCA:` + strings.Replace(strings.Replace(this.RootCA.String(), "RootCA", "RootCA", 1), `&`, ``, 1) + `,`,
+		`NetworkBootstrapKeys:` + strings.Replace(fmt.Sprintf("%v", this.NetworkBootstrapKeys), "EncryptionKey", "EncryptionKey", 1) + `,`,
+		`EncryptionKeyLamportClock:` + fmt.Sprintf("%v", this.EncryptionKeyLamportClock) + `,`,
+		`BlacklistedCertificates:` + mapStringForBlacklistedCertificates + `,`,
+		`UnlockKeys:` + strings.Replace(fmt.Sprintf("%v", this.UnlockKeys), "EncryptionKey", "EncryptionKey", 1) + `,`,
+		`FIPS:` + fmt.Sprintf("%v", this.FIPS) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Secret) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Secret{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "SecretSpec", "SecretSpec", 1), `&`, ``, 1) + `,`,
+		`Internal:` + fmt.Sprintf("%v", this.Internal) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Config) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Config{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Spec:` + strings.Replace(strings.Replace(this.Spec.String(), "ConfigSpec", "ConfigSpec", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Resource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Resource{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Payload:` + strings.Replace(fmt.Sprintf("%v", this.Payload), "Any", "google_protobuf3.Any", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Extension) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Extension{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Meta:` + strings.Replace(strings.Replace(this.Meta.String(), "Meta", "Meta", 1), `&`, ``, 1) + `,`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Description:` + fmt.Sprintf("%v", this.Description) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringObjects(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Meta) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Meta: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Meta: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Version", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Version.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CreatedAt", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.CreatedAt == nil {
+				m.CreatedAt = &google_protobuf.Timestamp{}
+			}
+			if err := m.CreatedAt.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UpdatedAt", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.UpdatedAt == nil {
+				m.UpdatedAt = &google_protobuf.Timestamp{}
+			}
+			if err := m.UpdatedAt.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Node) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Node: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Node: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Description", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Description == nil {
+				m.Description = &NodeDescription{}
+			}
+			if err := m.Description.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ManagerStatus", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.ManagerStatus == nil {
+				m.ManagerStatus = &ManagerStatus{}
+			}
+			if err := m.ManagerStatus.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Attachment", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Attachment == nil {
+				m.Attachment = &NetworkAttachment{}
+			}
+			if err := m.Attachment.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Certificate", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Certificate.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			m.Role = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Role |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Attachments", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Attachments = append(m.Attachments, &NetworkAttachment{})
+			if err := m.Attachments[len(m.Attachments)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Service) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Service: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Service: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Endpoint", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Endpoint == nil {
+				m.Endpoint = &Endpoint{}
+			}
+			if err := m.Endpoint.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UpdateStatus", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.UpdateStatus == nil {
+				m.UpdateStatus = &UpdateStatus{}
+			}
+			if err := m.UpdateStatus.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PreviousSpec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.PreviousSpec == nil {
+				m.PreviousSpec = &ServiceSpec{}
+			}
+			if err := m.PreviousSpec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SpecVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.SpecVersion == nil {
+				m.SpecVersion = &Version{}
+			}
+			if err := m.SpecVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 11:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PreviousSpecVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.PreviousSpecVersion == nil {
+				m.PreviousSpecVersion = &Version{}
+			}
+			if err := m.PreviousSpecVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Endpoint) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Endpoint: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Endpoint: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Spec == nil {
+				m.Spec = &EndpointSpec{}
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Ports", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Ports = append(m.Ports, &PortConfig{})
+			if err := m.Ports[len(m.Ports)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field VirtualIPs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.VirtualIPs = append(m.VirtualIPs, &Endpoint_VirtualIP{})
+			if err := m.VirtualIPs[len(m.VirtualIPs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Endpoint_VirtualIP) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: VirtualIP: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: VirtualIP: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Task) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Task: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Task: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Slot", wireType)
+			}
+			m.Slot = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Slot |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceAnnotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.ServiceAnnotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DesiredState", wireType)
+			}
+			m.DesiredState = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.DesiredState |= (TaskState(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 11:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &NetworkAttachment{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 12:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Endpoint", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Endpoint == nil {
+				m.Endpoint = &Endpoint{}
+			}
+			if err := m.Endpoint.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 13:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LogDriver", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.LogDriver == nil {
+				m.LogDriver = &Driver{}
+			}
+			if err := m.LogDriver.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 14:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SpecVersion", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.SpecVersion == nil {
+				m.SpecVersion = &Version{}
+			}
+			if err := m.SpecVersion.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 15:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AssignedGenericResources", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.AssignedGenericResources = append(m.AssignedGenericResources, &GenericResource{})
+			if err := m.AssignedGenericResources[len(m.AssignedGenericResources)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkAttachment) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkAttachment: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkAttachment: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Network == nil {
+				m.Network = &Network{}
+			}
+			if err := m.Network.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addresses", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addresses = append(m.Addresses, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Aliases", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Aliases = append(m.Aliases, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DriverAttachmentOpts", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.DriverAttachmentOpts == nil {
+				m.DriverAttachmentOpts = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowObjects
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowObjects
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthObjects
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.DriverAttachmentOpts[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.DriverAttachmentOpts[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Network) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Network: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Network: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DriverState", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.DriverState == nil {
+				m.DriverState = &Driver{}
+			}
+			if err := m.DriverState.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IPAM", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.IPAM == nil {
+				m.IPAM = &IPAMOptions{}
+			}
+			if err := m.IPAM.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Cluster) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Cluster: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Cluster: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RootCA", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.RootCA.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NetworkBootstrapKeys", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NetworkBootstrapKeys = append(m.NetworkBootstrapKeys, &EncryptionKey{})
+			if err := m.NetworkBootstrapKeys[len(m.NetworkBootstrapKeys)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EncryptionKeyLamportClock", wireType)
+			}
+			m.EncryptionKeyLamportClock = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.EncryptionKeyLamportClock |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field BlacklistedCertificates", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.BlacklistedCertificates == nil {
+				m.BlacklistedCertificates = make(map[string]*BlacklistedCertificate)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowObjects
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var mapmsglen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowObjects
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					mapmsglen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if mapmsglen < 0 {
+					return ErrInvalidLengthObjects
+				}
+				postmsgIndex := iNdEx + mapmsglen
+				if mapmsglen < 0 {
+					return ErrInvalidLengthObjects
+				}
+				if postmsgIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := &BlacklistedCertificate{}
+				if err := mapvalue.Unmarshal(dAtA[iNdEx:postmsgIndex]); err != nil {
+					return err
+				}
+				iNdEx = postmsgIndex
+				m.BlacklistedCertificates[mapkey] = mapvalue
+			} else {
+				var mapvalue *BlacklistedCertificate
+				m.BlacklistedCertificates[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UnlockKeys", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.UnlockKeys = append(m.UnlockKeys, &EncryptionKey{})
+			if err := m.UnlockKeys[len(m.UnlockKeys)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field FIPS", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.FIPS = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Secret) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Secret: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Secret: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Internal", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Internal = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Config) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Config: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Config: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Spec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Resource) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Resource: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Resource: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Payload", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Payload == nil {
+				m.Payload = &google_protobuf3.Any{}
+			}
+			if err := m.Payload.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Extension) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Extension: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Extension: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Meta", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Meta.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Description", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthObjects
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Description = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipObjects(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthObjects
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipObjects(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowObjects
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowObjects
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthObjects
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowObjects
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipObjects(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthObjects = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowObjects   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/objects.proto", fileDescriptorObjects) }
+
+var fileDescriptorObjects = []byte{
+	// 1544 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x58, 0x4d, 0x73, 0xdb, 0x4c,
+	0x1d, 0xaf, 0x6c, 0xc5, 0x2f, 0x7f, 0x27, 0x26, 0xec, 0x13, 0x82, 0x6a, 0x82, 0x1d, 0xfc, 0x0c,
+	0xcc, 0x33, 0xcf, 0x74, 0x9c, 0x12, 0x0a, 0xa4, 0x81, 0xd2, 0xda, 0x49, 0x68, 0x3d, 0xa5, 0x34,
+	0xb3, 0x29, 0x2d, 0x37, 0xb1, 0x91, 0x36, 0xae, 0xb0, 0xac, 0xd5, 0x68, 0xd7, 0x2e, 0xbe, 0xf5,
+	0x1c, 0x3e, 0x40, 0x6e, 0x1c, 0xfa, 0x2d, 0xb8, 0x70, 0xe0, 0xd4, 0x23, 0xc3, 0x81, 0xe1, 0x94,
+	0xa1, 0xfe, 0x16, 0xcc, 0x70, 0x60, 0x76, 0xb5, 0xb2, 0x95, 0x58, 0x79, 0x63, 0x3a, 0x19, 0x4e,
+	0xd1, 0x6a, 0x7f, 0xbf, 0xff, 0x9b, 0xfe, 0x6f, 0x31, 0xdc, 0xeb, 0x79, 0xe2, 0xed, 0xf0, 0xb0,
+	0xe5, 0xb0, 0xc1, 0x86, 0xcb, 0x9c, 0x3e, 0x8d, 0x36, 0xf8, 0x3b, 0x12, 0x0d, 0xfa, 0x9e, 0xd8,
+	0x20, 0xa1, 0xb7, 0xc1, 0x0e, 0x7f, 0x4f, 0x1d, 0xc1, 0x5b, 0x61, 0xc4, 0x04, 0x43, 0x28, 0x86,
+	0xb4, 0x12, 0x48, 0x6b, 0xf4, 0xc3, 0xda, 0xd7, 0x57, 0x48, 0x10, 0xe3, 0x90, 0x6a, 0xfe, 0x95,
+	0x58, 0x1e, 0x52, 0x27, 0xc1, 0x36, 0x7a, 0x8c, 0xf5, 0x7c, 0xba, 0xa1, 0x4e, 0x87, 0xc3, 0xa3,
+	0x0d, 0xe1, 0x0d, 0x28, 0x17, 0x64, 0x10, 0x6a, 0xc0, 0x4a, 0x8f, 0xf5, 0x98, 0x7a, 0xdc, 0x90,
+	0x4f, 0xfa, 0xed, 0xdd, 0xf3, 0x34, 0x12, 0x8c, 0xf5, 0xd5, 0x4f, 0x2f, 0xd1, 0x3e, 0x85, 0x87,
+	0xfe, 0xb0, 0xe7, 0x05, 0xfa, 0x4f, 0x4c, 0x6c, 0xfe, 0xd9, 0x00, 0xf3, 0x05, 0x15, 0x04, 0xfd,
+	0x0c, 0x8a, 0x23, 0x1a, 0x71, 0x8f, 0x05, 0x96, 0xb1, 0x6e, 0x7c, 0x55, 0xd9, 0xfc, 0x4e, 0x6b,
+	0x3e, 0x22, 0xad, 0xd7, 0x31, 0xa4, 0x63, 0x7e, 0x3c, 0x6d, 0xdc, 0xc1, 0x09, 0x03, 0x3d, 0x04,
+	0x70, 0x22, 0x4a, 0x04, 0x75, 0x6d, 0x22, 0xac, 0x9c, 0xe2, 0xd7, 0x5a, 0xb1, 0xb9, 0xad, 0x44,
+	0x7f, 0xeb, 0x55, 0xe2, 0x25, 0x2e, 0x6b, 0x74, 0x5b, 0x48, 0xea, 0x30, 0x74, 0x13, 0x6a, 0xfe,
+	0x6a, 0xaa, 0x46, 0xb7, 0x45, 0xf3, 0xfd, 0x02, 0x98, 0xbf, 0x66, 0x2e, 0x45, 0xab, 0x90, 0xf3,
+	0x5c, 0x65, 0x76, 0xb9, 0x53, 0x98, 0x9c, 0x36, 0x72, 0xdd, 0x5d, 0x9c, 0xf3, 0x5c, 0xb4, 0x09,
+	0xe6, 0x80, 0x0a, 0xa2, 0x0d, 0xb2, 0xb2, 0x1c, 0x92, 0xbe, 0x6b, 0x6f, 0x14, 0x16, 0xfd, 0x04,
+	0x4c, 0xf9, 0xa9, 0xb4, 0x25, 0x6b, 0x59, 0x1c, 0xa9, 0xf3, 0x20, 0xa4, 0x4e, 0xc2, 0x93, 0x78,
+	0xb4, 0x07, 0x15, 0x97, 0x72, 0x27, 0xf2, 0x42, 0x21, 0x63, 0x68, 0x2a, 0xfa, 0x97, 0x17, 0xd1,
+	0x77, 0x67, 0x50, 0x9c, 0xe6, 0xa1, 0x9f, 0x43, 0x81, 0x0b, 0x22, 0x86, 0xdc, 0x5a, 0x50, 0x12,
+	0xea, 0x17, 0x1a, 0xa0, 0x50, 0xda, 0x04, 0xcd, 0x41, 0xcf, 0xa0, 0x3a, 0x20, 0x01, 0xe9, 0xd1,
+	0xc8, 0xd6, 0x52, 0x0a, 0x4a, 0xca, 0xf7, 0x32, 0x5d, 0x8f, 0x91, 0xb1, 0x20, 0xbc, 0x34, 0x48,
+	0x1f, 0x51, 0x17, 0x80, 0x08, 0x41, 0x9c, 0xb7, 0x03, 0x1a, 0x08, 0xab, 0xa8, 0xa4, 0x7c, 0x3f,
+	0xd3, 0x16, 0x2a, 0xde, 0xb1, 0xa8, 0xdf, 0x9e, 0x82, 0x3b, 0x39, 0xcb, 0xc0, 0x29, 0x32, 0x7a,
+	0x0a, 0x15, 0x87, 0x46, 0xc2, 0x3b, 0xf2, 0x1c, 0x22, 0xa8, 0x55, 0x52, 0xb2, 0x1a, 0x59, 0xb2,
+	0x76, 0x66, 0x30, 0xed, 0x58, 0x9a, 0x89, 0xee, 0x83, 0x19, 0x31, 0x9f, 0x5a, 0xe5, 0x75, 0xe3,
+	0xab, 0xea, 0xc5, 0x9f, 0x06, 0x33, 0x9f, 0x62, 0x85, 0x94, 0xaa, 0x67, 0x86, 0x70, 0x0b, 0xd6,
+	0xf3, 0xd7, 0x76, 0x03, 0xa7, 0x99, 0xdb, 0xab, 0xc7, 0x27, 0x4d, 0x04, 0xcb, 0x25, 0x63, 0xd9,
+	0x50, 0x79, 0x66, 0xdc, 0x37, 0x7e, 0x6b, 0xfc, 0xce, 0x68, 0xfe, 0x27, 0x0f, 0xc5, 0x03, 0x1a,
+	0x8d, 0x3c, 0xe7, 0xf3, 0x66, 0xe1, 0xc3, 0x33, 0x59, 0x98, 0x19, 0x2c, 0xad, 0x76, 0x2e, 0x11,
+	0xb7, 0xa0, 0x44, 0x03, 0x37, 0x64, 0x5e, 0x20, 0x74, 0x16, 0x66, 0x46, 0x6a, 0x4f, 0x63, 0xf0,
+	0x14, 0x8d, 0xf6, 0x60, 0x29, 0x2e, 0x2e, 0xfb, 0x4c, 0x0a, 0xae, 0x67, 0xd1, 0x7f, 0xa3, 0x80,
+	0x3a, 0x77, 0x16, 0x87, 0xa9, 0x13, 0xda, 0x85, 0xa5, 0x30, 0xa2, 0x23, 0x8f, 0x0d, 0xb9, 0xad,
+	0x9c, 0x28, 0x5c, 0xcb, 0x09, 0xbc, 0x98, 0xb0, 0xe4, 0x09, 0xfd, 0x02, 0x16, 0x25, 0xd9, 0x4e,
+	0x9a, 0x12, 0x5c, 0xd9, 0x94, 0x70, 0x45, 0x12, 0xf4, 0x01, 0xbd, 0x84, 0x6f, 0x9d, 0xb1, 0x62,
+	0x2a, 0xa8, 0x72, 0xb5, 0xa0, 0x2f, 0xd2, 0x96, 0xe8, 0x97, 0xdb, 0xe8, 0xf8, 0xa4, 0x59, 0x85,
+	0xc5, 0x74, 0x0a, 0x34, 0xff, 0x94, 0x83, 0x52, 0x12, 0x48, 0xf4, 0x40, 0x7f, 0x33, 0xe3, 0xe2,
+	0xa8, 0x25, 0x58, 0xe5, 0x6f, 0xfc, 0xb9, 0x1e, 0xc0, 0x42, 0xc8, 0x22, 0xc1, 0xad, 0x9c, 0x4a,
+	0xce, 0xcc, 0x7a, 0xdf, 0x67, 0x91, 0xd8, 0x61, 0xc1, 0x91, 0xd7, 0xc3, 0x31, 0x18, 0xbd, 0x81,
+	0xca, 0xc8, 0x8b, 0xc4, 0x90, 0xf8, 0xb6, 0x17, 0x72, 0x2b, 0xaf, 0xb8, 0x3f, 0xb8, 0x4c, 0x65,
+	0xeb, 0x75, 0x8c, 0xef, 0xee, 0x77, 0xaa, 0x93, 0xd3, 0x06, 0x4c, 0x8f, 0x1c, 0x83, 0x16, 0xd5,
+	0x0d, 0x79, 0xed, 0x05, 0x94, 0xa7, 0x37, 0xe8, 0x1e, 0x40, 0x10, 0xd7, 0x85, 0x3d, 0xcd, 0xec,
+	0xa5, 0xc9, 0x69, 0xa3, 0xac, 0xab, 0xa5, 0xbb, 0x8b, 0xcb, 0x1a, 0xd0, 0x75, 0x11, 0x02, 0x93,
+	0xb8, 0x6e, 0xa4, 0xf2, 0xbc, 0x8c, 0xd5, 0x73, 0xf3, 0x8f, 0x45, 0x30, 0x5f, 0x11, 0xde, 0xbf,
+	0xed, 0x16, 0x2d, 0x75, 0xce, 0x55, 0xc6, 0x3d, 0x00, 0x1e, 0xe7, 0x9b, 0x74, 0xc7, 0x9c, 0xb9,
+	0xa3, 0xb3, 0x50, 0xba, 0xa3, 0x01, 0xb1, 0x3b, 0xdc, 0x67, 0x42, 0x15, 0x81, 0x89, 0xd5, 0x33,
+	0xfa, 0x12, 0x8a, 0x01, 0x73, 0x15, 0xbd, 0xa0, 0xe8, 0x30, 0x39, 0x6d, 0x14, 0x64, 0xd3, 0xe9,
+	0xee, 0xe2, 0x82, 0xbc, 0xea, 0xba, 0xaa, 0xe9, 0x04, 0x01, 0x13, 0x44, 0x36, 0x74, 0xae, 0x7b,
+	0x67, 0x66, 0xf6, 0xb7, 0x67, 0xb0, 0xa4, 0xdf, 0xa5, 0x98, 0xe8, 0x35, 0x7c, 0x91, 0xd8, 0x9b,
+	0x16, 0x58, 0xba, 0x89, 0x40, 0xa4, 0x25, 0xa4, 0x6e, 0x52, 0x33, 0xa6, 0x7c, 0xf1, 0x8c, 0x51,
+	0x11, 0xcc, 0x9a, 0x31, 0x1d, 0x58, 0x72, 0x29, 0xf7, 0x22, 0xea, 0xaa, 0x36, 0x41, 0x55, 0x65,
+	0x56, 0x37, 0xbf, 0x7b, 0x99, 0x10, 0x8a, 0x17, 0x35, 0x47, 0x9d, 0x50, 0x1b, 0x4a, 0x3a, 0x6f,
+	0xb8, 0x55, 0xb9, 0x49, 0x53, 0x9e, 0xd2, 0xce, 0xb4, 0xb9, 0xc5, 0x1b, 0xb5, 0xb9, 0x87, 0x00,
+	0x3e, 0xeb, 0xd9, 0x6e, 0xe4, 0x8d, 0x68, 0x64, 0x2d, 0xe9, 0x8d, 0x23, 0x83, 0xbb, 0xab, 0x10,
+	0xb8, 0xec, 0xb3, 0x5e, 0xfc, 0x38, 0xd7, 0x94, 0xaa, 0x37, 0x6c, 0x4a, 0x04, 0x6a, 0x84, 0x73,
+	0xaf, 0x17, 0x50, 0xd7, 0xee, 0xd1, 0x80, 0x46, 0x9e, 0x63, 0x47, 0x94, 0xb3, 0x61, 0xe4, 0x50,
+	0x6e, 0x7d, 0x43, 0x45, 0x22, 0x73, 0x67, 0x78, 0x1a, 0x83, 0xb1, 0xc6, 0x62, 0x2b, 0x11, 0x73,
+	0xee, 0x82, 0x6f, 0xd7, 0x8e, 0x4f, 0x9a, 0xab, 0xb0, 0x92, 0x6e, 0x53, 0x5b, 0xc6, 0x13, 0xe3,
+	0x99, 0xb1, 0x6f, 0x34, 0xff, 0x9a, 0x83, 0x6f, 0xce, 0xc5, 0x14, 0xfd, 0x18, 0x8a, 0x3a, 0xaa,
+	0x97, 0x6d, 0x7e, 0x9a, 0x87, 0x13, 0x2c, 0x5a, 0x83, 0xb2, 0x2c, 0x71, 0xca, 0x39, 0x8d, 0x9b,
+	0x57, 0x19, 0xcf, 0x5e, 0x20, 0x0b, 0x8a, 0xc4, 0xf7, 0x88, 0xbc, 0xcb, 0xab, 0xbb, 0xe4, 0x88,
+	0x86, 0xb0, 0x1a, 0x87, 0xde, 0x9e, 0x0d, 0x58, 0x9b, 0x85, 0x82, 0x5b, 0xa6, 0xf2, 0xff, 0xf1,
+	0xb5, 0x32, 0x41, 0x7f, 0x9c, 0xd9, 0x8b, 0x97, 0xa1, 0xe0, 0x7b, 0x81, 0x88, 0xc6, 0x78, 0xc5,
+	0xcd, 0xb8, 0xaa, 0x3d, 0x85, 0xbb, 0x17, 0x52, 0xd0, 0x32, 0xe4, 0xfb, 0x74, 0x1c, 0xb7, 0x27,
+	0x2c, 0x1f, 0xd1, 0x0a, 0x2c, 0x8c, 0x88, 0x3f, 0xa4, 0xba, 0x9b, 0xc5, 0x87, 0xed, 0xdc, 0x96,
+	0xd1, 0xfc, 0x90, 0x83, 0xa2, 0x36, 0xe7, 0xb6, 0x47, 0xbe, 0x56, 0x3b, 0xd7, 0xd8, 0x1e, 0xc1,
+	0xa2, 0x0e, 0x69, 0x5c, 0x91, 0xe6, 0x95, 0x39, 0x5d, 0x89, 0xf1, 0x71, 0x35, 0x3e, 0x02, 0xd3,
+	0x0b, 0xc9, 0x40, 0x8f, 0xfb, 0x4c, 0xcd, 0xdd, 0xfd, 0xf6, 0x8b, 0x97, 0x61, 0xdc, 0x58, 0x4a,
+	0x93, 0xd3, 0x86, 0x29, 0x5f, 0x60, 0x45, 0xcb, 0x1c, 0x8c, 0x7f, 0x5f, 0x80, 0xe2, 0x8e, 0x3f,
+	0xe4, 0x82, 0x46, 0xb7, 0x1d, 0x24, 0xad, 0x76, 0x2e, 0x48, 0x3b, 0x50, 0x8c, 0x18, 0x13, 0xb6,
+	0x43, 0x2e, 0x8b, 0x0f, 0x66, 0x4c, 0xec, 0xb4, 0x3b, 0x55, 0x49, 0x94, 0xbd, 0x3d, 0x3e, 0xe3,
+	0x82, 0xa4, 0xee, 0x10, 0xf4, 0x06, 0x56, 0x93, 0x89, 0x78, 0xc8, 0x98, 0xe0, 0x22, 0x22, 0xa1,
+	0xdd, 0xa7, 0x63, 0xb9, 0x2b, 0xe5, 0x2f, 0x5a, 0xb4, 0xf7, 0x02, 0x27, 0x1a, 0xab, 0xe0, 0x3d,
+	0xa7, 0x63, 0xbc, 0xa2, 0x05, 0x74, 0x12, 0xfe, 0x73, 0x3a, 0xe6, 0xe8, 0x31, 0xac, 0xd1, 0x29,
+	0x4c, 0x4a, 0xb4, 0x7d, 0x32, 0x90, 0xb3, 0xde, 0x76, 0x7c, 0xe6, 0xf4, 0xd5, 0xb8, 0x31, 0xf1,
+	0x5d, 0x9a, 0x16, 0xf5, 0xab, 0x18, 0xb1, 0x23, 0x01, 0x88, 0x83, 0x75, 0xe8, 0x13, 0xa7, 0xef,
+	0x7b, 0x5c, 0xfe, 0x2f, 0x95, 0xda, 0x9b, 0xe5, 0xc4, 0x90, 0xb6, 0x6d, 0x5d, 0x12, 0xad, 0x56,
+	0x67, 0xc6, 0x4d, 0x6d, 0xe1, 0xba, 0xa2, 0xbe, 0x7d, 0x98, 0x7d, 0x8b, 0x3a, 0x50, 0x19, 0x06,
+	0x52, 0x7d, 0x1c, 0x83, 0xf2, 0x75, 0x63, 0x00, 0x31, 0x4b, 0x79, 0xbe, 0x06, 0xe6, 0x91, 0xdc,
+	0x61, 0xe4, 0x18, 0x29, 0xc5, 0xc9, 0xf5, 0xcb, 0xee, 0xfe, 0x01, 0x56, 0x6f, 0x6b, 0x23, 0x58,
+	0xbb, 0xcc, 0xb4, 0x8c, 0xca, 0x7d, 0x92, 0xae, 0xdc, 0xca, 0xe6, 0xd7, 0x59, 0xd6, 0x64, 0x8b,
+	0x4c, 0x55, 0x79, 0x66, 0x52, 0xff, 0xc5, 0x80, 0xc2, 0x01, 0x75, 0x22, 0x2a, 0x3e, 0x6b, 0x4e,
+	0x6f, 0x9d, 0xc9, 0xe9, 0x7a, 0xf6, 0x9a, 0x2c, 0xb5, 0xce, 0xa5, 0x74, 0x0d, 0x4a, 0x5e, 0x20,
+	0x68, 0x14, 0x10, 0x5f, 0xe5, 0x74, 0x09, 0x4f, 0xcf, 0x99, 0x0e, 0x7c, 0x30, 0xa0, 0x10, 0xef,
+	0x91, 0xb7, 0xed, 0x40, 0xac, 0xf5, 0xbc, 0x03, 0x99, 0x46, 0xfe, 0xdb, 0x80, 0x52, 0x32, 0xce,
+	0x3e, 0xab, 0x99, 0xe7, 0xf6, 0xb2, 0xfc, 0xff, 0xbc, 0x97, 0x21, 0x30, 0xfb, 0x5e, 0xa0, 0x37,
+	0x48, 0xac, 0x9e, 0x51, 0x0b, 0x8a, 0x21, 0x19, 0xfb, 0x8c, 0xb8, 0xba, 0x8d, 0xae, 0xcc, 0xfd,
+	0x86, 0xd1, 0x0e, 0xc6, 0x38, 0x01, 0x6d, 0xaf, 0x1c, 0x9f, 0x34, 0x97, 0xa1, 0x9a, 0xf6, 0xfc,
+	0xad, 0xd1, 0xfc, 0x87, 0x01, 0xe5, 0xbd, 0x3f, 0x08, 0x1a, 0xa8, 0x6d, 0xe1, 0xff, 0xd2, 0xf9,
+	0xf5, 0xf9, 0xdf, 0x39, 0xca, 0x67, 0x7e, 0xc2, 0xc8, 0xfa, 0xa8, 0x1d, 0xeb, 0xe3, 0xa7, 0xfa,
+	0x9d, 0x7f, 0x7e, 0xaa, 0xdf, 0x79, 0x3f, 0xa9, 0x1b, 0x1f, 0x27, 0x75, 0xe3, 0x6f, 0x93, 0xba,
+	0xf1, 0xaf, 0x49, 0xdd, 0x38, 0x2c, 0xa8, 0xf8, 0xfc, 0xe8, 0xbf, 0x01, 0x00, 0x00, 0xff, 0xff,
+	0x07, 0xc5, 0x5a, 0x5b, 0xae, 0x13, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/raft.pb.go b/vendor/github.com/docker/swarmkit/api/raft.pb.go
new file mode 100644
index 0000000000..495bc0e379
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/raft.pb.go
@@ -0,0 +1,4029 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/raft.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import raftpb "github.com/coreos/etcd/raft/raftpb"
+
+// skipping weak import gogoproto "github.com/gogo/protobuf/gogoproto"
+// skipping weak import docker_protobuf_plugin "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// StoreActionKind defines the operation to take on the store for the target of
+// a storage action.
+type StoreActionKind int32
+
+const (
+	StoreActionKindUnknown StoreActionKind = 0
+	StoreActionKindCreate  StoreActionKind = 1
+	StoreActionKindUpdate  StoreActionKind = 2
+	StoreActionKindRemove  StoreActionKind = 3
+)
+
+var StoreActionKind_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "STORE_ACTION_CREATE",
+	2: "STORE_ACTION_UPDATE",
+	3: "STORE_ACTION_REMOVE",
+}
+var StoreActionKind_value = map[string]int32{
+	"UNKNOWN":             0,
+	"STORE_ACTION_CREATE": 1,
+	"STORE_ACTION_UPDATE": 2,
+	"STORE_ACTION_REMOVE": 3,
+}
+
+func (x StoreActionKind) String() string {
+	return proto.EnumName(StoreActionKind_name, int32(x))
+}
+func (StoreActionKind) EnumDescriptor() ([]byte, []int) { return fileDescriptorRaft, []int{0} }
+
+type RaftMember struct {
+	// RaftID specifies the internal ID used by the manager in a raft context, it can never be modified
+	// and is used only for information purposes
+	RaftID uint64 `protobuf:"varint,1,opt,name=raft_id,json=raftId,proto3" json:"raft_id,omitempty"`
+	// NodeID is the node's ID.
+	NodeID string `protobuf:"bytes,2,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	// Addr specifies the address of the member
+	Addr string `protobuf:"bytes,3,opt,name=addr,proto3" json:"addr,omitempty"`
+	// Status provides the current status of the manager from the perspective of another manager.
+	Status RaftMemberStatus `protobuf:"bytes,4,opt,name=status" json:"status"`
+}
+
+func (m *RaftMember) Reset()                    { *m = RaftMember{} }
+func (*RaftMember) ProtoMessage()               {}
+func (*RaftMember) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{0} }
+
+type JoinRequest struct {
+	// Addr specifies the address of the member
+	Addr string `protobuf:"bytes,1,opt,name=addr,proto3" json:"addr,omitempty"`
+}
+
+func (m *JoinRequest) Reset()                    { *m = JoinRequest{} }
+func (*JoinRequest) ProtoMessage()               {}
+func (*JoinRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{1} }
+
+type JoinResponse struct {
+	// RaftID is the ID assigned to the new member.
+	RaftID uint64 `protobuf:"varint,1,opt,name=raft_id,json=raftId,proto3" json:"raft_id,omitempty"`
+	// Members is the membership set of the cluster.
+	Members []*RaftMember `protobuf:"bytes,2,rep,name=members" json:"members,omitempty"`
+	// RemovedMembers is a list of members that have been removed from
+	// the cluster, so the new node can avoid communicating with them.
+	RemovedMembers []uint64 `protobuf:"varint,3,rep,name=removed_members,json=removedMembers" json:"removed_members,omitempty"`
+}
+
+func (m *JoinResponse) Reset()                    { *m = JoinResponse{} }
+func (*JoinResponse) ProtoMessage()               {}
+func (*JoinResponse) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{2} }
+
+type LeaveRequest struct {
+	Node *RaftMember `protobuf:"bytes,1,opt,name=node" json:"node,omitempty"`
+}
+
+func (m *LeaveRequest) Reset()                    { *m = LeaveRequest{} }
+func (*LeaveRequest) ProtoMessage()               {}
+func (*LeaveRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{3} }
+
+type LeaveResponse struct {
+}
+
+func (m *LeaveResponse) Reset()                    { *m = LeaveResponse{} }
+func (*LeaveResponse) ProtoMessage()               {}
+func (*LeaveResponse) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{4} }
+
+type ProcessRaftMessageRequest struct {
+	Message *raftpb.Message `protobuf:"bytes,1,opt,name=message" json:"message,omitempty"`
+}
+
+func (m *ProcessRaftMessageRequest) Reset()                    { *m = ProcessRaftMessageRequest{} }
+func (*ProcessRaftMessageRequest) ProtoMessage()               {}
+func (*ProcessRaftMessageRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{5} }
+
+type ProcessRaftMessageResponse struct {
+}
+
+func (m *ProcessRaftMessageResponse) Reset()                    { *m = ProcessRaftMessageResponse{} }
+func (*ProcessRaftMessageResponse) ProtoMessage()               {}
+func (*ProcessRaftMessageResponse) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{6} }
+
+// Raft message streaming request.
+type StreamRaftMessageRequest struct {
+	Message *raftpb.Message `protobuf:"bytes,1,opt,name=message" json:"message,omitempty"`
+}
+
+func (m *StreamRaftMessageRequest) Reset()                    { *m = StreamRaftMessageRequest{} }
+func (*StreamRaftMessageRequest) ProtoMessage()               {}
+func (*StreamRaftMessageRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{7} }
+
+// Raft message streaming response.
+type StreamRaftMessageResponse struct {
+}
+
+func (m *StreamRaftMessageResponse) Reset()                    { *m = StreamRaftMessageResponse{} }
+func (*StreamRaftMessageResponse) ProtoMessage()               {}
+func (*StreamRaftMessageResponse) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{8} }
+
+type ResolveAddressRequest struct {
+	// raft_id is the ID to resolve to an address.
+	RaftID uint64 `protobuf:"varint,1,opt,name=raft_id,json=raftId,proto3" json:"raft_id,omitempty"`
+}
+
+func (m *ResolveAddressRequest) Reset()                    { *m = ResolveAddressRequest{} }
+func (*ResolveAddressRequest) ProtoMessage()               {}
+func (*ResolveAddressRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{9} }
+
+type ResolveAddressResponse struct {
+	// Addr specifies the address of the member
+	Addr string `protobuf:"bytes,1,opt,name=addr,proto3" json:"addr,omitempty"`
+}
+
+func (m *ResolveAddressResponse) Reset()                    { *m = ResolveAddressResponse{} }
+func (*ResolveAddressResponse) ProtoMessage()               {}
+func (*ResolveAddressResponse) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{10} }
+
+// Contains one of many protobuf encoded objects to replicate
+// over the raft backend with a request ID to track when the
+// action is effectively applied
+type InternalRaftRequest struct {
+	ID     uint64        `protobuf:"varint,1,opt,name=id,proto3" json:"id,omitempty"`
+	Action []StoreAction `protobuf:"bytes,2,rep,name=action" json:"action"`
+}
+
+func (m *InternalRaftRequest) Reset()                    { *m = InternalRaftRequest{} }
+func (*InternalRaftRequest) ProtoMessage()               {}
+func (*InternalRaftRequest) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{11} }
+
+// StoreAction defines a target and operation to apply on the storage system.
+type StoreAction struct {
+	Action StoreActionKind `protobuf:"varint,1,opt,name=action,proto3,enum=docker.swarmkit.v1.StoreActionKind" json:"action,omitempty"`
+	// Types that are valid to be assigned to Target:
+	//	*StoreAction_Node
+	//	*StoreAction_Service
+	//	*StoreAction_Task
+	//	*StoreAction_Network
+	//	*StoreAction_Cluster
+	//	*StoreAction_Secret
+	//	*StoreAction_Resource
+	//	*StoreAction_Extension
+	//	*StoreAction_Config
+	Target isStoreAction_Target `protobuf_oneof:"target"`
+}
+
+func (m *StoreAction) Reset()                    { *m = StoreAction{} }
+func (*StoreAction) ProtoMessage()               {}
+func (*StoreAction) Descriptor() ([]byte, []int) { return fileDescriptorRaft, []int{12} }
+
+type isStoreAction_Target interface {
+	isStoreAction_Target()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type StoreAction_Node struct {
+	Node *Node `protobuf:"bytes,2,opt,name=node,oneof"`
+}
+type StoreAction_Service struct {
+	Service *Service `protobuf:"bytes,3,opt,name=service,oneof"`
+}
+type StoreAction_Task struct {
+	Task *Task `protobuf:"bytes,4,opt,name=task,oneof"`
+}
+type StoreAction_Network struct {
+	Network *Network `protobuf:"bytes,5,opt,name=network,oneof"`
+}
+type StoreAction_Cluster struct {
+	Cluster *Cluster `protobuf:"bytes,6,opt,name=cluster,oneof"`
+}
+type StoreAction_Secret struct {
+	Secret *Secret `protobuf:"bytes,7,opt,name=secret,oneof"`
+}
+type StoreAction_Resource struct {
+	Resource *Resource `protobuf:"bytes,8,opt,name=resource,oneof"`
+}
+type StoreAction_Extension struct {
+	Extension *Extension `protobuf:"bytes,9,opt,name=extension,oneof"`
+}
+type StoreAction_Config struct {
+	Config *Config `protobuf:"bytes,10,opt,name=config,oneof"`
+}
+
+func (*StoreAction_Node) isStoreAction_Target()      {}
+func (*StoreAction_Service) isStoreAction_Target()   {}
+func (*StoreAction_Task) isStoreAction_Target()      {}
+func (*StoreAction_Network) isStoreAction_Target()   {}
+func (*StoreAction_Cluster) isStoreAction_Target()   {}
+func (*StoreAction_Secret) isStoreAction_Target()    {}
+func (*StoreAction_Resource) isStoreAction_Target()  {}
+func (*StoreAction_Extension) isStoreAction_Target() {}
+func (*StoreAction_Config) isStoreAction_Target()    {}
+
+func (m *StoreAction) GetTarget() isStoreAction_Target {
+	if m != nil {
+		return m.Target
+	}
+	return nil
+}
+
+func (m *StoreAction) GetNode() *Node {
+	if x, ok := m.GetTarget().(*StoreAction_Node); ok {
+		return x.Node
+	}
+	return nil
+}
+
+func (m *StoreAction) GetService() *Service {
+	if x, ok := m.GetTarget().(*StoreAction_Service); ok {
+		return x.Service
+	}
+	return nil
+}
+
+func (m *StoreAction) GetTask() *Task {
+	if x, ok := m.GetTarget().(*StoreAction_Task); ok {
+		return x.Task
+	}
+	return nil
+}
+
+func (m *StoreAction) GetNetwork() *Network {
+	if x, ok := m.GetTarget().(*StoreAction_Network); ok {
+		return x.Network
+	}
+	return nil
+}
+
+func (m *StoreAction) GetCluster() *Cluster {
+	if x, ok := m.GetTarget().(*StoreAction_Cluster); ok {
+		return x.Cluster
+	}
+	return nil
+}
+
+func (m *StoreAction) GetSecret() *Secret {
+	if x, ok := m.GetTarget().(*StoreAction_Secret); ok {
+		return x.Secret
+	}
+	return nil
+}
+
+func (m *StoreAction) GetResource() *Resource {
+	if x, ok := m.GetTarget().(*StoreAction_Resource); ok {
+		return x.Resource
+	}
+	return nil
+}
+
+func (m *StoreAction) GetExtension() *Extension {
+	if x, ok := m.GetTarget().(*StoreAction_Extension); ok {
+		return x.Extension
+	}
+	return nil
+}
+
+func (m *StoreAction) GetConfig() *Config {
+	if x, ok := m.GetTarget().(*StoreAction_Config); ok {
+		return x.Config
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*StoreAction) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _StoreAction_OneofMarshaler, _StoreAction_OneofUnmarshaler, _StoreAction_OneofSizer, []interface{}{
+		(*StoreAction_Node)(nil),
+		(*StoreAction_Service)(nil),
+		(*StoreAction_Task)(nil),
+		(*StoreAction_Network)(nil),
+		(*StoreAction_Cluster)(nil),
+		(*StoreAction_Secret)(nil),
+		(*StoreAction_Resource)(nil),
+		(*StoreAction_Extension)(nil),
+		(*StoreAction_Config)(nil),
+	}
+}
+
+func _StoreAction_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*StoreAction)
+	// target
+	switch x := m.Target.(type) {
+	case *StoreAction_Node:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Node); err != nil {
+			return err
+		}
+	case *StoreAction_Service:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Service); err != nil {
+			return err
+		}
+	case *StoreAction_Task:
+		_ = b.EncodeVarint(4<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Task); err != nil {
+			return err
+		}
+	case *StoreAction_Network:
+		_ = b.EncodeVarint(5<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Network); err != nil {
+			return err
+		}
+	case *StoreAction_Cluster:
+		_ = b.EncodeVarint(6<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Cluster); err != nil {
+			return err
+		}
+	case *StoreAction_Secret:
+		_ = b.EncodeVarint(7<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Secret); err != nil {
+			return err
+		}
+	case *StoreAction_Resource:
+		_ = b.EncodeVarint(8<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Resource); err != nil {
+			return err
+		}
+	case *StoreAction_Extension:
+		_ = b.EncodeVarint(9<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Extension); err != nil {
+			return err
+		}
+	case *StoreAction_Config:
+		_ = b.EncodeVarint(10<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Config); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("StoreAction.Target has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _StoreAction_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*StoreAction)
+	switch tag {
+	case 2: // target.node
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Node)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Node{msg}
+		return true, err
+	case 3: // target.service
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Service)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Service{msg}
+		return true, err
+	case 4: // target.task
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Task)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Task{msg}
+		return true, err
+	case 5: // target.network
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Network)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Network{msg}
+		return true, err
+	case 6: // target.cluster
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Cluster)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Cluster{msg}
+		return true, err
+	case 7: // target.secret
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Secret)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Secret{msg}
+		return true, err
+	case 8: // target.resource
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Resource)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Resource{msg}
+		return true, err
+	case 9: // target.extension
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Extension)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Extension{msg}
+		return true, err
+	case 10: // target.config
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Config)
+		err := b.DecodeMessage(msg)
+		m.Target = &StoreAction_Config{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _StoreAction_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*StoreAction)
+	// target
+	switch x := m.Target.(type) {
+	case *StoreAction_Node:
+		s := proto.Size(x.Node)
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Service:
+		s := proto.Size(x.Service)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Task:
+		s := proto.Size(x.Task)
+		n += proto.SizeVarint(4<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Network:
+		s := proto.Size(x.Network)
+		n += proto.SizeVarint(5<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Cluster:
+		s := proto.Size(x.Cluster)
+		n += proto.SizeVarint(6<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Secret:
+		s := proto.Size(x.Secret)
+		n += proto.SizeVarint(7<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Resource:
+		s := proto.Size(x.Resource)
+		n += proto.SizeVarint(8<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Extension:
+		s := proto.Size(x.Extension)
+		n += proto.SizeVarint(9<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *StoreAction_Config:
+		s := proto.Size(x.Config)
+		n += proto.SizeVarint(10<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+func init() {
+	proto.RegisterType((*RaftMember)(nil), "docker.swarmkit.v1.RaftMember")
+	proto.RegisterType((*JoinRequest)(nil), "docker.swarmkit.v1.JoinRequest")
+	proto.RegisterType((*JoinResponse)(nil), "docker.swarmkit.v1.JoinResponse")
+	proto.RegisterType((*LeaveRequest)(nil), "docker.swarmkit.v1.LeaveRequest")
+	proto.RegisterType((*LeaveResponse)(nil), "docker.swarmkit.v1.LeaveResponse")
+	proto.RegisterType((*ProcessRaftMessageRequest)(nil), "docker.swarmkit.v1.ProcessRaftMessageRequest")
+	proto.RegisterType((*ProcessRaftMessageResponse)(nil), "docker.swarmkit.v1.ProcessRaftMessageResponse")
+	proto.RegisterType((*StreamRaftMessageRequest)(nil), "docker.swarmkit.v1.StreamRaftMessageRequest")
+	proto.RegisterType((*StreamRaftMessageResponse)(nil), "docker.swarmkit.v1.StreamRaftMessageResponse")
+	proto.RegisterType((*ResolveAddressRequest)(nil), "docker.swarmkit.v1.ResolveAddressRequest")
+	proto.RegisterType((*ResolveAddressResponse)(nil), "docker.swarmkit.v1.ResolveAddressResponse")
+	proto.RegisterType((*InternalRaftRequest)(nil), "docker.swarmkit.v1.InternalRaftRequest")
+	proto.RegisterType((*StoreAction)(nil), "docker.swarmkit.v1.StoreAction")
+	proto.RegisterEnum("docker.swarmkit.v1.StoreActionKind", StoreActionKind_name, StoreActionKind_value)
+}
+
+type authenticatedWrapperRaftServer struct {
+	local     RaftServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperRaftServer(local RaftServer, authorize func(context.Context, []string) error) RaftServer {
+	return &authenticatedWrapperRaftServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperRaftServer) ProcessRaftMessage(ctx context.Context, r *ProcessRaftMessageRequest) (*ProcessRaftMessageResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ProcessRaftMessage(ctx, r)
+}
+
+func (p *authenticatedWrapperRaftServer) StreamRaftMessage(stream Raft_StreamRaftMessageServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.StreamRaftMessage(stream)
+}
+
+func (p *authenticatedWrapperRaftServer) ResolveAddress(ctx context.Context, r *ResolveAddressRequest) (*ResolveAddressResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.ResolveAddress(ctx, r)
+}
+
+type authenticatedWrapperRaftMembershipServer struct {
+	local     RaftMembershipServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperRaftMembershipServer(local RaftMembershipServer, authorize func(context.Context, []string) error) RaftMembershipServer {
+	return &authenticatedWrapperRaftMembershipServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperRaftMembershipServer) Join(ctx context.Context, r *JoinRequest) (*JoinResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.Join(ctx, r)
+}
+
+func (p *authenticatedWrapperRaftMembershipServer) Leave(ctx context.Context, r *LeaveRequest) (*LeaveResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.Leave(ctx, r)
+}
+
+func (m *RaftMember) Copy() *RaftMember {
+	if m == nil {
+		return nil
+	}
+	o := &RaftMember{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RaftMember) CopyFrom(src interface{}) {
+
+	o := src.(*RaftMember)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Status, &o.Status)
+}
+
+func (m *JoinRequest) Copy() *JoinRequest {
+	if m == nil {
+		return nil
+	}
+	o := &JoinRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *JoinRequest) CopyFrom(src interface{}) {
+
+	o := src.(*JoinRequest)
+	*m = *o
+}
+
+func (m *JoinResponse) Copy() *JoinResponse {
+	if m == nil {
+		return nil
+	}
+	o := &JoinResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *JoinResponse) CopyFrom(src interface{}) {
+
+	o := src.(*JoinResponse)
+	*m = *o
+	if o.Members != nil {
+		m.Members = make([]*RaftMember, len(o.Members))
+		for i := range m.Members {
+			m.Members[i] = &RaftMember{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Members[i], o.Members[i])
+		}
+	}
+
+	if o.RemovedMembers != nil {
+		m.RemovedMembers = make([]uint64, len(o.RemovedMembers))
+		copy(m.RemovedMembers, o.RemovedMembers)
+	}
+
+}
+
+func (m *LeaveRequest) Copy() *LeaveRequest {
+	if m == nil {
+		return nil
+	}
+	o := &LeaveRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LeaveRequest) CopyFrom(src interface{}) {
+
+	o := src.(*LeaveRequest)
+	*m = *o
+	if o.Node != nil {
+		m.Node = &RaftMember{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Node, o.Node)
+	}
+}
+
+func (m *LeaveResponse) Copy() *LeaveResponse {
+	if m == nil {
+		return nil
+	}
+	o := &LeaveResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *LeaveResponse) CopyFrom(src interface{}) {}
+func (m *ProcessRaftMessageResponse) Copy() *ProcessRaftMessageResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ProcessRaftMessageResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ProcessRaftMessageResponse) CopyFrom(src interface{}) {}
+func (m *StreamRaftMessageResponse) Copy() *StreamRaftMessageResponse {
+	if m == nil {
+		return nil
+	}
+	o := &StreamRaftMessageResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *StreamRaftMessageResponse) CopyFrom(src interface{}) {}
+func (m *ResolveAddressRequest) Copy() *ResolveAddressRequest {
+	if m == nil {
+		return nil
+	}
+	o := &ResolveAddressRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ResolveAddressRequest) CopyFrom(src interface{}) {
+
+	o := src.(*ResolveAddressRequest)
+	*m = *o
+}
+
+func (m *ResolveAddressResponse) Copy() *ResolveAddressResponse {
+	if m == nil {
+		return nil
+	}
+	o := &ResolveAddressResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ResolveAddressResponse) CopyFrom(src interface{}) {
+
+	o := src.(*ResolveAddressResponse)
+	*m = *o
+}
+
+func (m *InternalRaftRequest) Copy() *InternalRaftRequest {
+	if m == nil {
+		return nil
+	}
+	o := &InternalRaftRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *InternalRaftRequest) CopyFrom(src interface{}) {
+
+	o := src.(*InternalRaftRequest)
+	*m = *o
+	if o.Action != nil {
+		m.Action = make([]StoreAction, len(o.Action))
+		for i := range m.Action {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Action[i], &o.Action[i])
+		}
+	}
+
+}
+
+func (m *StoreAction) Copy() *StoreAction {
+	if m == nil {
+		return nil
+	}
+	o := &StoreAction{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *StoreAction) CopyFrom(src interface{}) {
+
+	o := src.(*StoreAction)
+	*m = *o
+	if o.Target != nil {
+		switch o.Target.(type) {
+		case *StoreAction_Node:
+			v := StoreAction_Node{
+				Node: &Node{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Node, o.GetNode())
+			m.Target = &v
+		case *StoreAction_Service:
+			v := StoreAction_Service{
+				Service: &Service{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Service, o.GetService())
+			m.Target = &v
+		case *StoreAction_Task:
+			v := StoreAction_Task{
+				Task: &Task{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Task, o.GetTask())
+			m.Target = &v
+		case *StoreAction_Network:
+			v := StoreAction_Network{
+				Network: &Network{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Network, o.GetNetwork())
+			m.Target = &v
+		case *StoreAction_Cluster:
+			v := StoreAction_Cluster{
+				Cluster: &Cluster{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Cluster, o.GetCluster())
+			m.Target = &v
+		case *StoreAction_Secret:
+			v := StoreAction_Secret{
+				Secret: &Secret{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Secret, o.GetSecret())
+			m.Target = &v
+		case *StoreAction_Resource:
+			v := StoreAction_Resource{
+				Resource: &Resource{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Resource, o.GetResource())
+			m.Target = &v
+		case *StoreAction_Extension:
+			v := StoreAction_Extension{
+				Extension: &Extension{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Extension, o.GetExtension())
+			m.Target = &v
+		case *StoreAction_Config:
+			v := StoreAction_Config{
+				Config: &Config{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Config, o.GetConfig())
+			m.Target = &v
+		}
+	}
+
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Raft service
+
+type RaftClient interface {
+	// ProcessRaftMessage sends a raft message to be processed on a raft member, it is
+	// called from the RaftMember willing to send a message to its destination ('To' field)
+	ProcessRaftMessage(ctx context.Context, in *ProcessRaftMessageRequest, opts ...grpc.CallOption) (*ProcessRaftMessageResponse, error)
+	// StreamRaftMessage accepts a stream of raft messages of type StreamRaftMessageRequest
+	// to be processed on a raft member, returning a StreamRaftMessageResponse
+	// when processing of the streamed messages is complete. A single stream corresponds
+	// to a single raft message, which may be disassembled and streamed as individual messages.
+	// It is called from the Raft leader, which uses it to stream messages to a raft member.
+	StreamRaftMessage(ctx context.Context, opts ...grpc.CallOption) (Raft_StreamRaftMessageClient, error)
+	// ResolveAddress returns the address where the node with the given ID can be reached.
+	ResolveAddress(ctx context.Context, in *ResolveAddressRequest, opts ...grpc.CallOption) (*ResolveAddressResponse, error)
+}
+
+type raftClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewRaftClient(cc *grpc.ClientConn) RaftClient {
+	return &raftClient{cc}
+}
+
+func (c *raftClient) ProcessRaftMessage(ctx context.Context, in *ProcessRaftMessageRequest, opts ...grpc.CallOption) (*ProcessRaftMessageResponse, error) {
+	out := new(ProcessRaftMessageResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Raft/ProcessRaftMessage", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *raftClient) StreamRaftMessage(ctx context.Context, opts ...grpc.CallOption) (Raft_StreamRaftMessageClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Raft_serviceDesc.Streams[0], c.cc, "/docker.swarmkit.v1.Raft/StreamRaftMessage", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &raftStreamRaftMessageClient{stream}
+	return x, nil
+}
+
+type Raft_StreamRaftMessageClient interface {
+	Send(*StreamRaftMessageRequest) error
+	CloseAndRecv() (*StreamRaftMessageResponse, error)
+	grpc.ClientStream
+}
+
+type raftStreamRaftMessageClient struct {
+	grpc.ClientStream
+}
+
+func (x *raftStreamRaftMessageClient) Send(m *StreamRaftMessageRequest) error {
+	return x.ClientStream.SendMsg(m)
+}
+
+func (x *raftStreamRaftMessageClient) CloseAndRecv() (*StreamRaftMessageResponse, error) {
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	m := new(StreamRaftMessageResponse)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func (c *raftClient) ResolveAddress(ctx context.Context, in *ResolveAddressRequest, opts ...grpc.CallOption) (*ResolveAddressResponse, error) {
+	out := new(ResolveAddressResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.Raft/ResolveAddress", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for Raft service
+
+type RaftServer interface {
+	// ProcessRaftMessage sends a raft message to be processed on a raft member, it is
+	// called from the RaftMember willing to send a message to its destination ('To' field)
+	ProcessRaftMessage(context.Context, *ProcessRaftMessageRequest) (*ProcessRaftMessageResponse, error)
+	// StreamRaftMessage accepts a stream of raft messages of type StreamRaftMessageRequest
+	// to be processed on a raft member, returning a StreamRaftMessageResponse
+	// when processing of the streamed messages is complete. A single stream corresponds
+	// to a single raft message, which may be disassembled and streamed as individual messages.
+	// It is called from the Raft leader, which uses it to stream messages to a raft member.
+	StreamRaftMessage(Raft_StreamRaftMessageServer) error
+	// ResolveAddress returns the address where the node with the given ID can be reached.
+	ResolveAddress(context.Context, *ResolveAddressRequest) (*ResolveAddressResponse, error)
+}
+
+func RegisterRaftServer(s *grpc.Server, srv RaftServer) {
+	s.RegisterService(&_Raft_serviceDesc, srv)
+}
+
+func _Raft_ProcessRaftMessage_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ProcessRaftMessageRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(RaftServer).ProcessRaftMessage(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Raft/ProcessRaftMessage",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(RaftServer).ProcessRaftMessage(ctx, req.(*ProcessRaftMessageRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _Raft_StreamRaftMessage_Handler(srv interface{}, stream grpc.ServerStream) error {
+	return srv.(RaftServer).StreamRaftMessage(&raftStreamRaftMessageServer{stream})
+}
+
+type Raft_StreamRaftMessageServer interface {
+	SendAndClose(*StreamRaftMessageResponse) error
+	Recv() (*StreamRaftMessageRequest, error)
+	grpc.ServerStream
+}
+
+type raftStreamRaftMessageServer struct {
+	grpc.ServerStream
+}
+
+func (x *raftStreamRaftMessageServer) SendAndClose(m *StreamRaftMessageResponse) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func (x *raftStreamRaftMessageServer) Recv() (*StreamRaftMessageRequest, error) {
+	m := new(StreamRaftMessageRequest)
+	if err := x.ServerStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func _Raft_ResolveAddress_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(ResolveAddressRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(RaftServer).ResolveAddress(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.Raft/ResolveAddress",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(RaftServer).ResolveAddress(ctx, req.(*ResolveAddressRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _Raft_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Raft",
+	HandlerType: (*RaftServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "ProcessRaftMessage",
+			Handler:    _Raft_ProcessRaftMessage_Handler,
+		},
+		{
+			MethodName: "ResolveAddress",
+			Handler:    _Raft_ResolveAddress_Handler,
+		},
+	},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "StreamRaftMessage",
+			Handler:       _Raft_StreamRaftMessage_Handler,
+			ClientStreams: true,
+		},
+	},
+	Metadata: "github.com/docker/swarmkit/api/raft.proto",
+}
+
+// Client API for RaftMembership service
+
+type RaftMembershipClient interface {
+	// Join adds a RaftMember to the raft cluster.
+	Join(ctx context.Context, in *JoinRequest, opts ...grpc.CallOption) (*JoinResponse, error)
+	// Leave removes a RaftMember from the raft cluster.
+	Leave(ctx context.Context, in *LeaveRequest, opts ...grpc.CallOption) (*LeaveResponse, error)
+}
+
+type raftMembershipClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewRaftMembershipClient(cc *grpc.ClientConn) RaftMembershipClient {
+	return &raftMembershipClient{cc}
+}
+
+func (c *raftMembershipClient) Join(ctx context.Context, in *JoinRequest, opts ...grpc.CallOption) (*JoinResponse, error) {
+	out := new(JoinResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.RaftMembership/Join", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *raftMembershipClient) Leave(ctx context.Context, in *LeaveRequest, opts ...grpc.CallOption) (*LeaveResponse, error) {
+	out := new(LeaveResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.RaftMembership/Leave", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for RaftMembership service
+
+type RaftMembershipServer interface {
+	// Join adds a RaftMember to the raft cluster.
+	Join(context.Context, *JoinRequest) (*JoinResponse, error)
+	// Leave removes a RaftMember from the raft cluster.
+	Leave(context.Context, *LeaveRequest) (*LeaveResponse, error)
+}
+
+func RegisterRaftMembershipServer(s *grpc.Server, srv RaftMembershipServer) {
+	s.RegisterService(&_RaftMembership_serviceDesc, srv)
+}
+
+func _RaftMembership_Join_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(JoinRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(RaftMembershipServer).Join(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.RaftMembership/Join",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(RaftMembershipServer).Join(ctx, req.(*JoinRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _RaftMembership_Leave_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(LeaveRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(RaftMembershipServer).Leave(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.RaftMembership/Leave",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(RaftMembershipServer).Leave(ctx, req.(*LeaveRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _RaftMembership_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.RaftMembership",
+	HandlerType: (*RaftMembershipServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "Join",
+			Handler:    _RaftMembership_Join_Handler,
+		},
+		{
+			MethodName: "Leave",
+			Handler:    _RaftMembership_Leave_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/raft.proto",
+}
+
+func (m *RaftMember) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RaftMember) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.RaftID))
+	}
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintRaft(dAtA, i, uint64(m.Status.Size()))
+	n1, err := m.Status.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n1
+	return i, nil
+}
+
+func (m *JoinRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *JoinRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	return i, nil
+}
+
+func (m *JoinResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *JoinResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.RaftID))
+	}
+	if len(m.Members) > 0 {
+		for _, msg := range m.Members {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.RemovedMembers) > 0 {
+		for _, num := range m.RemovedMembers {
+			dAtA[i] = 0x18
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(num))
+		}
+	}
+	return i, nil
+}
+
+func (m *LeaveRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LeaveRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Node != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Node.Size()))
+		n2, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	return i, nil
+}
+
+func (m *LeaveResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *LeaveResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *ProcessRaftMessageRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ProcessRaftMessageRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Message != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Message.Size()))
+		n3, err := m.Message.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	return i, nil
+}
+
+func (m *ProcessRaftMessageResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ProcessRaftMessageResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *StreamRaftMessageRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StreamRaftMessageRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Message != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Message.Size()))
+		n4, err := m.Message.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	return i, nil
+}
+
+func (m *StreamRaftMessageResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StreamRaftMessageResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *ResolveAddressRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ResolveAddressRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.RaftID))
+	}
+	return i, nil
+}
+
+func (m *ResolveAddressResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ResolveAddressResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	return i, nil
+}
+
+func (m *InternalRaftRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *InternalRaftRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.ID != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.ID))
+	}
+	if len(m.Action) > 0 {
+		for _, msg := range m.Action {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintRaft(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *StoreAction) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StoreAction) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Action != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Action))
+	}
+	if m.Target != nil {
+		nn5, err := m.Target.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn5
+	}
+	return i, nil
+}
+
+func (m *StoreAction_Node) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Node != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Node.Size()))
+		n6, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	return i, nil
+}
+func (m *StoreAction_Service) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Service != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Service.Size()))
+		n7, err := m.Service.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	return i, nil
+}
+func (m *StoreAction_Task) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Task != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Task.Size()))
+		n8, err := m.Task.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	return i, nil
+}
+func (m *StoreAction_Network) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Network != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Network.Size()))
+		n9, err := m.Network.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	return i, nil
+}
+func (m *StoreAction_Cluster) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Cluster != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Cluster.Size()))
+		n10, err := m.Cluster.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n10
+	}
+	return i, nil
+}
+func (m *StoreAction_Secret) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Secret != nil {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Secret.Size()))
+		n11, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n11
+	}
+	return i, nil
+}
+func (m *StoreAction_Resource) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Resource != nil {
+		dAtA[i] = 0x42
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Resource.Size()))
+		n12, err := m.Resource.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n12
+	}
+	return i, nil
+}
+func (m *StoreAction_Extension) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Extension != nil {
+		dAtA[i] = 0x4a
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Extension.Size()))
+		n13, err := m.Extension.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	return i, nil
+}
+func (m *StoreAction_Config) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Config != nil {
+		dAtA[i] = 0x52
+		i++
+		i = encodeVarintRaft(dAtA, i, uint64(m.Config.Size()))
+		n14, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	return i, nil
+}
+func encodeFixed64Raft(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Raft(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintRaft(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyRaftServer struct {
+	local                       RaftServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyRaftServer(local RaftServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) RaftServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyRaftServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyRaftServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyRaftServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyRaftServer) ProcessRaftMessage(ctx context.Context, r *ProcessRaftMessageRequest) (*ProcessRaftMessageResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ProcessRaftMessage(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewRaftClient(conn).ProcessRaftMessage(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ProcessRaftMessage(ctx, r)
+			}
+			return nil, err
+		}
+		return NewRaftClient(conn).ProcessRaftMessage(modCtx, r)
+	}
+	return resp, err
+}
+
+type Raft_StreamRaftMessageServerWrapper struct {
+	Raft_StreamRaftMessageServer
+	ctx context.Context
+}
+
+func (s Raft_StreamRaftMessageServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyRaftServer) StreamRaftMessage(stream Raft_StreamRaftMessageServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Raft_StreamRaftMessageServerWrapper{
+				Raft_StreamRaftMessageServer: stream,
+				ctx: ctx,
+			}
+			return p.local.StreamRaftMessage(streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewRaftClient(conn).StreamRaftMessage(ctx)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := stream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := clientStream.Send(msg); err != nil {
+			return err
+		}
+	}
+
+	reply, err := clientStream.CloseAndRecv()
+	if err != nil {
+		return err
+	}
+
+	return stream.SendAndClose(reply)
+}
+
+func (p *raftProxyRaftServer) ResolveAddress(ctx context.Context, r *ResolveAddressRequest) (*ResolveAddressResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.ResolveAddress(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewRaftClient(conn).ResolveAddress(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.ResolveAddress(ctx, r)
+			}
+			return nil, err
+		}
+		return NewRaftClient(conn).ResolveAddress(modCtx, r)
+	}
+	return resp, err
+}
+
+type raftProxyRaftMembershipServer struct {
+	local                       RaftMembershipServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyRaftMembershipServer(local RaftMembershipServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) RaftMembershipServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyRaftMembershipServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyRaftMembershipServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyRaftMembershipServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyRaftMembershipServer) Join(ctx context.Context, r *JoinRequest) (*JoinResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.Join(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewRaftMembershipClient(conn).Join(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.Join(ctx, r)
+			}
+			return nil, err
+		}
+		return NewRaftMembershipClient(conn).Join(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyRaftMembershipServer) Leave(ctx context.Context, r *LeaveRequest) (*LeaveResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.Leave(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewRaftMembershipClient(conn).Leave(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.Leave(ctx, r)
+			}
+			return nil, err
+		}
+		return NewRaftMembershipClient(conn).Leave(modCtx, r)
+	}
+	return resp, err
+}
+
+func (m *RaftMember) Size() (n int) {
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		n += 1 + sovRaft(uint64(m.RaftID))
+	}
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	l = m.Status.Size()
+	n += 1 + l + sovRaft(uint64(l))
+	return n
+}
+
+func (m *JoinRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func (m *JoinResponse) Size() (n int) {
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		n += 1 + sovRaft(uint64(m.RaftID))
+	}
+	if len(m.Members) > 0 {
+		for _, e := range m.Members {
+			l = e.Size()
+			n += 1 + l + sovRaft(uint64(l))
+		}
+	}
+	if len(m.RemovedMembers) > 0 {
+		for _, e := range m.RemovedMembers {
+			n += 1 + sovRaft(uint64(e))
+		}
+	}
+	return n
+}
+
+func (m *LeaveRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func (m *LeaveResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *ProcessRaftMessageRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Message != nil {
+		l = m.Message.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func (m *ProcessRaftMessageResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *StreamRaftMessageRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Message != nil {
+		l = m.Message.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func (m *StreamRaftMessageResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *ResolveAddressRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		n += 1 + sovRaft(uint64(m.RaftID))
+	}
+	return n
+}
+
+func (m *ResolveAddressResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func (m *InternalRaftRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.ID != 0 {
+		n += 1 + sovRaft(uint64(m.ID))
+	}
+	if len(m.Action) > 0 {
+		for _, e := range m.Action {
+			l = e.Size()
+			n += 1 + l + sovRaft(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *StoreAction) Size() (n int) {
+	var l int
+	_ = l
+	if m.Action != 0 {
+		n += 1 + sovRaft(uint64(m.Action))
+	}
+	if m.Target != nil {
+		n += m.Target.Size()
+	}
+	return n
+}
+
+func (m *StoreAction_Node) Size() (n int) {
+	var l int
+	_ = l
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Service) Size() (n int) {
+	var l int
+	_ = l
+	if m.Service != nil {
+		l = m.Service.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Task) Size() (n int) {
+	var l int
+	_ = l
+	if m.Task != nil {
+		l = m.Task.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Network) Size() (n int) {
+	var l int
+	_ = l
+	if m.Network != nil {
+		l = m.Network.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Cluster) Size() (n int) {
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		l = m.Cluster.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Secret) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Resource) Size() (n int) {
+	var l int
+	_ = l
+	if m.Resource != nil {
+		l = m.Resource.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Extension) Size() (n int) {
+	var l int
+	_ = l
+	if m.Extension != nil {
+		l = m.Extension.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+func (m *StoreAction_Config) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovRaft(uint64(l))
+	}
+	return n
+}
+
+func sovRaft(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozRaft(x uint64) (n int) {
+	return sovRaft(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *RaftMember) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RaftMember{`,
+		`RaftID:` + fmt.Sprintf("%v", this.RaftID) + `,`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`Status:` + strings.Replace(strings.Replace(this.Status.String(), "RaftMemberStatus", "RaftMemberStatus", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *JoinRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&JoinRequest{`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *JoinResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&JoinResponse{`,
+		`RaftID:` + fmt.Sprintf("%v", this.RaftID) + `,`,
+		`Members:` + strings.Replace(fmt.Sprintf("%v", this.Members), "RaftMember", "RaftMember", 1) + `,`,
+		`RemovedMembers:` + fmt.Sprintf("%v", this.RemovedMembers) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LeaveRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LeaveRequest{`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "RaftMember", "RaftMember", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *LeaveResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&LeaveResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ProcessRaftMessageRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ProcessRaftMessageRequest{`,
+		`Message:` + strings.Replace(fmt.Sprintf("%v", this.Message), "Message", "raftpb.Message", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ProcessRaftMessageResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ProcessRaftMessageResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StreamRaftMessageRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StreamRaftMessageRequest{`,
+		`Message:` + strings.Replace(fmt.Sprintf("%v", this.Message), "Message", "raftpb.Message", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StreamRaftMessageResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StreamRaftMessageResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ResolveAddressRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ResolveAddressRequest{`,
+		`RaftID:` + fmt.Sprintf("%v", this.RaftID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ResolveAddressResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ResolveAddressResponse{`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *InternalRaftRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&InternalRaftRequest{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Action:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Action), "StoreAction", "StoreAction", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction{`,
+		`Action:` + fmt.Sprintf("%v", this.Action) + `,`,
+		`Target:` + fmt.Sprintf("%v", this.Target) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Node) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Node{`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "Node", "Node", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Service) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Service{`,
+		`Service:` + strings.Replace(fmt.Sprintf("%v", this.Service), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Task) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Task{`,
+		`Task:` + strings.Replace(fmt.Sprintf("%v", this.Task), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Network) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Network{`,
+		`Network:` + strings.Replace(fmt.Sprintf("%v", this.Network), "Network", "Network", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Cluster) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Cluster{`,
+		`Cluster:` + strings.Replace(fmt.Sprintf("%v", this.Cluster), "Cluster", "Cluster", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Secret) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Secret{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Resource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Resource{`,
+		`Resource:` + strings.Replace(fmt.Sprintf("%v", this.Resource), "Resource", "Resource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Extension) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Extension{`,
+		`Extension:` + strings.Replace(fmt.Sprintf("%v", this.Extension), "Extension", "Extension", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreAction_Config) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreAction_Config{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringRaft(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *RaftMember) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RaftMember: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RaftMember: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RaftID", wireType)
+			}
+			m.RaftID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.RaftID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *JoinRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: JoinRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: JoinRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *JoinResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: JoinResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: JoinResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RaftID", wireType)
+			}
+			m.RaftID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.RaftID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Members", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Members = append(m.Members, &RaftMember{})
+			if err := m.Members[len(m.Members)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType == 0 {
+				var v uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.RemovedMembers = append(m.RemovedMembers, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthRaft
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v uint64
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowRaft
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (uint64(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.RemovedMembers = append(m.RemovedMembers, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field RemovedMembers", wireType)
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LeaveRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LeaveRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LeaveRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Node == nil {
+				m.Node = &RaftMember{}
+			}
+			if err := m.Node.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *LeaveResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: LeaveResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: LeaveResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ProcessRaftMessageRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ProcessRaftMessageRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ProcessRaftMessageRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Message == nil {
+				m.Message = &raftpb.Message{}
+			}
+			if err := m.Message.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ProcessRaftMessageResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ProcessRaftMessageResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ProcessRaftMessageResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *StreamRaftMessageRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StreamRaftMessageRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StreamRaftMessageRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Message == nil {
+				m.Message = &raftpb.Message{}
+			}
+			if err := m.Message.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *StreamRaftMessageResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StreamRaftMessageResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StreamRaftMessageResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ResolveAddressRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ResolveAddressRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ResolveAddressRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RaftID", wireType)
+			}
+			m.RaftID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.RaftID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ResolveAddressResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ResolveAddressResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ResolveAddressResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *InternalRaftRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: InternalRaftRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: InternalRaftRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			m.ID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Action", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Action = append(m.Action, StoreAction{})
+			if err := m.Action[len(m.Action)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *StoreAction) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StoreAction: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StoreAction: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Action", wireType)
+			}
+			m.Action = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Action |= (StoreActionKind(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Node{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Node{v}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Service{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Service{v}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Task", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Task{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Task{v}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Network{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Network{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Cluster", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Cluster{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Cluster{v}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Secret{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Secret{v}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Resource", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Resource{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Resource{v}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Extension", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Extension{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Extension{v}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthRaft
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Config{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &StoreAction_Config{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipRaft(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthRaft
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipRaft(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowRaft
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowRaft
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthRaft
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowRaft
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipRaft(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthRaft = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowRaft   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/raft.proto", fileDescriptorRaft) }
+
+var fileDescriptorRaft = []byte{
+	// 1015 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xac, 0x96, 0xc1, 0x6e, 0x1b, 0x45,
+	0x18, 0xc7, 0x77, 0xed, 0xad, 0xd3, 0x7c, 0x69, 0x93, 0x30, 0x25, 0x61, 0xb3, 0x2d, 0x8e, 0xbb,
+	0x45, 0xc2, 0x09, 0xc9, 0x5a, 0x18, 0xa4, 0xa2, 0x42, 0x0f, 0x71, 0x62, 0x29, 0x26, 0xad, 0x53,
+	0x6d, 0x12, 0xe8, 0x2d, 0xac, 0x77, 0x27, 0xee, 0x62, 0x7b, 0xc7, 0xcc, 0x8c, 0x1d, 0xb8, 0xa0,
+	0x1e, 0x21, 0x2f, 0x00, 0x42, 0xaa, 0x38, 0xc0, 0xb9, 0x0f, 0xc0, 0x03, 0xa0, 0x88, 0x13, 0x37,
+	0x38, 0x45, 0xd4, 0x0f, 0x00, 0xaf, 0x80, 0x66, 0x76, 0xd7, 0x31, 0xf6, 0xda, 0xf1, 0x81, 0x4b,
+	0x32, 0xda, 0xf9, 0xfd, 0xbf, 0xff, 0x37, 0x33, 0xdf, 0x7c, 0x63, 0x58, 0xab, 0xfb, 0xfc, 0x59,
+	0xa7, 0x66, 0xb9, 0xa4, 0x55, 0xf0, 0x88, 0xdb, 0xc0, 0xb4, 0xc0, 0x4e, 0x1d, 0xda, 0x6a, 0xf8,
+	0xbc, 0xe0, 0xb4, 0xfd, 0x02, 0x75, 0x4e, 0xb8, 0xd5, 0xa6, 0x84, 0x13, 0x84, 0xc2, 0x79, 0x2b,
+	0x9e, 0xb7, 0xba, 0xef, 0x1a, 0x1b, 0x57, 0xc8, 0x49, 0xed, 0x73, 0xec, 0x72, 0x16, 0x46, 0x30,
+	0xd6, 0xaf, 0xa0, 0xf9, 0x57, 0x6d, 0x1c, 0xb3, 0x9b, 0x03, 0xac, 0x4b, 0x28, 0x26, 0xac, 0x80,
+	0xb9, 0xeb, 0xc9, 0x84, 0xe4, 0x9f, 0x76, 0x6d, 0x20, 0x39, 0xe3, 0xf5, 0x3a, 0xa9, 0x13, 0x39,
+	0x2c, 0x88, 0x51, 0xf4, 0xf5, 0xfe, 0x04, 0x43, 0x49, 0xd4, 0x3a, 0x27, 0x85, 0x76, 0xb3, 0x53,
+	0xf7, 0x83, 0xe8, 0x5f, 0x28, 0x34, 0x5f, 0xaa, 0x00, 0xb6, 0x73, 0xc2, 0x1f, 0xe3, 0x56, 0x0d,
+	0x53, 0x74, 0x0f, 0x66, 0x84, 0xd7, 0xb1, 0xef, 0xe9, 0x6a, 0x4e, 0xcd, 0x6b, 0x25, 0xe8, 0x5d,
+	0xac, 0x66, 0x04, 0x50, 0xd9, 0xb1, 0x33, 0x62, 0xaa, 0xe2, 0x09, 0x28, 0x20, 0x1e, 0x16, 0x50,
+	0x2a, 0xa7, 0xe6, 0x67, 0x43, 0xa8, 0x4a, 0x3c, 0x2c, 0x20, 0x31, 0x55, 0xf1, 0x10, 0x02, 0xcd,
+	0xf1, 0x3c, 0xaa, 0xa7, 0x05, 0x61, 0xcb, 0x31, 0x2a, 0x41, 0x86, 0x71, 0x87, 0x77, 0x98, 0xae,
+	0xe5, 0xd4, 0xfc, 0x5c, 0xf1, 0x2d, 0x6b, 0x74, 0xa7, 0xad, 0xcb, 0x6c, 0x0e, 0x24, 0x5b, 0xd2,
+	0xce, 0x2f, 0x56, 0x15, 0x3b, 0x52, 0x9a, 0x77, 0x61, 0xee, 0x63, 0xe2, 0x07, 0x36, 0xfe, 0xa2,
+	0x83, 0x19, 0xef, 0xdb, 0xa8, 0x97, 0x36, 0xe6, 0x0f, 0x2a, 0xdc, 0x08, 0x19, 0xd6, 0x26, 0x01,
+	0xc3, 0xd3, 0xad, 0xea, 0x03, 0x98, 0x69, 0x49, 0x5b, 0xa6, 0xa7, 0x72, 0xe9, 0xfc, 0x5c, 0x31,
+	0x3b, 0x39, 0x3b, 0x3b, 0xc6, 0xd1, 0x3b, 0xb0, 0x40, 0x71, 0x8b, 0x74, 0xb1, 0x77, 0x1c, 0x47,
+	0x48, 0xe7, 0xd2, 0x79, 0xad, 0x94, 0x5a, 0x54, 0xec, 0xf9, 0x68, 0x2a, 0x14, 0x31, 0xb3, 0x04,
+	0x37, 0x1e, 0x61, 0xa7, 0x8b, 0xe3, 0x05, 0x14, 0x41, 0x13, 0x3b, 0x26, 0x13, 0xbb, 0xda, 0x53,
+	0xb2, 0xe6, 0x02, 0xdc, 0x8c, 0x62, 0x84, 0x0b, 0x34, 0x1f, 0xc1, 0xca, 0x13, 0x4a, 0x5c, 0xcc,
+	0x58, 0xc8, 0x32, 0xe6, 0xd4, 0xfb, 0x0e, 0x6b, 0x62, 0x61, 0xf2, 0x4b, 0x64, 0xb2, 0x60, 0x85,
+	0x65, 0x65, 0xc5, 0x60, 0x3c, 0xff, 0x40, 0x7b, 0xfe, 0x9d, 0xa9, 0x98, 0x77, 0xc0, 0x48, 0x8a,
+	0x16, 0x79, 0xed, 0x81, 0x7e, 0xc0, 0x29, 0x76, 0x5a, 0xff, 0x87, 0xd5, 0x6d, 0x58, 0x49, 0x08,
+	0x16, 0x39, 0x7d, 0x04, 0x4b, 0x36, 0x66, 0xa4, 0xd9, 0xc5, 0x5b, 0x9e, 0x47, 0x45, 0x3a, 0x91,
+	0xcd, 0x34, 0xe7, 0x69, 0x6e, 0xc0, 0xf2, 0xb0, 0x3a, 0x2a, 0x87, 0xa4, 0x9a, 0x69, 0xc2, 0xad,
+	0x4a, 0xc0, 0x31, 0x0d, 0x9c, 0xa6, 0x88, 0x13, 0x3b, 0x2d, 0x43, 0xaa, 0x6f, 0x92, 0xe9, 0x5d,
+	0xac, 0xa6, 0x2a, 0x3b, 0x76, 0xca, 0xf7, 0xd0, 0x43, 0xc8, 0x38, 0x2e, 0xf7, 0x49, 0x10, 0xd5,
+	0xca, 0x6a, 0xd2, 0xb9, 0x1d, 0x70, 0x42, 0xf1, 0x96, 0xc4, 0xe2, 0x22, 0x0e, 0x45, 0xe6, 0xaf,
+	0x1a, 0xcc, 0x0d, 0xcc, 0xa2, 0x0f, 0xfb, 0xe1, 0x84, 0xd5, 0x7c, 0xf1, 0xde, 0x15, 0xe1, 0xf6,
+	0xfc, 0xc0, 0x8b, 0x83, 0x21, 0x2b, 0xaa, 0xa0, 0x94, 0xdc, 0x71, 0x3d, 0x49, 0x2a, 0xee, 0xe6,
+	0xae, 0x12, 0x56, 0x0f, 0xba, 0x0f, 0x33, 0x0c, 0xd3, 0xae, 0xef, 0x62, 0x79, 0x39, 0xe7, 0x8a,
+	0xb7, 0x13, 0xdd, 0x42, 0x64, 0x57, 0xb1, 0x63, 0x5a, 0x18, 0x71, 0x87, 0x35, 0xa2, 0xcb, 0x9b,
+	0x68, 0x74, 0xe8, 0xb0, 0x86, 0x30, 0x12, 0x9c, 0x30, 0x0a, 0x30, 0x3f, 0x25, 0xb4, 0xa1, 0x5f,
+	0x1b, 0x6f, 0x54, 0x0d, 0x11, 0x61, 0x14, 0xd1, 0x42, 0xe8, 0x36, 0x3b, 0x8c, 0x63, 0xaa, 0x67,
+	0xc6, 0x0b, 0xb7, 0x43, 0x44, 0x08, 0x23, 0x1a, 0xbd, 0x0f, 0x19, 0x86, 0x5d, 0x8a, 0xb9, 0x3e,
+	0x23, 0x75, 0x46, 0xf2, 0xca, 0x04, 0xb1, 0x2b, 0x5a, 0x8a, 0x1c, 0xa1, 0x07, 0x70, 0x9d, 0x62,
+	0x46, 0x3a, 0xd4, 0xc5, 0xfa, 0x75, 0xa9, 0xbb, 0x93, 0x78, 0x0d, 0x23, 0x66, 0x57, 0xb1, 0xfb,
+	0x3c, 0x7a, 0x08, 0xb3, 0xf8, 0x4b, 0x8e, 0x03, 0x26, 0x0e, 0x6f, 0x56, 0x8a, 0xdf, 0x4c, 0x12,
+	0x97, 0x63, 0x68, 0x57, 0xb1, 0x2f, 0x15, 0x22, 0x61, 0x97, 0x04, 0x27, 0x7e, 0x5d, 0x87, 0xf1,
+	0x09, 0x6f, 0x4b, 0x42, 0x24, 0x1c, 0xb2, 0xa5, 0xeb, 0x90, 0xe1, 0x0e, 0xad, 0x63, 0xbe, 0xfe,
+	0x8f, 0x0a, 0x0b, 0x43, 0x75, 0x81, 0xde, 0x86, 0x99, 0xa3, 0xea, 0x5e, 0x75, 0xff, 0xd3, 0xea,
+	0xa2, 0x62, 0x18, 0x67, 0x2f, 0x72, 0xcb, 0x43, 0xc4, 0x51, 0xd0, 0x08, 0xc8, 0x69, 0x80, 0x8a,
+	0x70, 0xeb, 0xe0, 0x70, 0xdf, 0x2e, 0x1f, 0x6f, 0x6d, 0x1f, 0x56, 0xf6, 0xab, 0xc7, 0xdb, 0x76,
+	0x79, 0xeb, 0xb0, 0xbc, 0xa8, 0x1a, 0x2b, 0x67, 0x2f, 0x72, 0x4b, 0x43, 0xa2, 0x6d, 0x8a, 0x1d,
+	0x8e, 0x47, 0x34, 0x47, 0x4f, 0x76, 0x84, 0x26, 0x95, 0xa8, 0x39, 0x6a, 0x7b, 0x49, 0x1a, 0xbb,
+	0xfc, 0x78, 0xff, 0x93, 0xf2, 0x62, 0x3a, 0x51, 0x63, 0xcb, 0x76, 0x69, 0xbc, 0xf1, 0xcd, 0x4f,
+	0x59, 0xe5, 0x97, 0x9f, 0xb3, 0xc3, 0xab, 0x2b, 0xfe, 0x98, 0x06, 0x4d, 0xdc, 0x50, 0x74, 0xa6,
+	0x02, 0x1a, 0x6d, 0x53, 0x68, 0x33, 0x69, 0x07, 0xc7, 0x36, 0x47, 0xc3, 0x9a, 0x16, 0x8f, 0x7a,
+	0xd2, 0xd2, 0x6f, 0x2f, 0xff, 0xfe, 0x3e, 0xb5, 0x00, 0x37, 0x25, 0xbf, 0xd9, 0x72, 0x02, 0xa7,
+	0x8e, 0x29, 0xfa, 0x56, 0x85, 0xd7, 0x46, 0x1a, 0x19, 0xda, 0x48, 0xbe, 0xc6, 0xc9, 0xcd, 0xd3,
+	0xd8, 0x9c, 0x92, 0x9e, 0x98, 0x49, 0x5e, 0x45, 0x5f, 0xc3, 0xfc, 0x7f, 0x1b, 0x1f, 0x5a, 0x1b,
+	0x57, 0xce, 0x23, 0xad, 0xd5, 0x58, 0x9f, 0x06, 0x9d, 0x98, 0x41, 0xf1, 0x0f, 0x15, 0xe6, 0x2f,
+	0x9f, 0x2c, 0xf6, 0xcc, 0x6f, 0xa3, 0xcf, 0x40, 0x13, 0x0f, 0x32, 0x4a, 0x6c, 0x93, 0x03, 0xcf,
+	0xb9, 0x91, 0x1b, 0x0f, 0x4c, 0x3e, 0x00, 0x17, 0xae, 0xc9, 0x27, 0x11, 0x25, 0x46, 0x18, 0x7c,
+	0x71, 0x8d, 0xbb, 0x13, 0x88, 0x89, 0x26, 0x25, 0xfd, 0xfc, 0x55, 0x56, 0xf9, 0xf3, 0x55, 0x56,
+	0x79, 0xde, 0xcb, 0xaa, 0xe7, 0xbd, 0xac, 0xfa, 0x7b, 0x2f, 0xab, 0xfe, 0xd5, 0xcb, 0xaa, 0x4f,
+	0xd3, 0x4f, 0xb5, 0x5a, 0x46, 0xfe, 0xa2, 0x7a, 0xef, 0xdf, 0x00, 0x00, 0x00, 0xff, 0xff, 0x3e,
+	0x7a, 0x8b, 0xe7, 0x6a, 0x0a, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/resource.pb.go b/vendor/github.com/docker/swarmkit/api/resource.pb.go
new file mode 100644
index 0000000000..5a51ecc96e
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/resource.pb.go
@@ -0,0 +1,1096 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/resource.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type AttachNetworkRequest struct {
+	Config      *NetworkAttachmentConfig `protobuf:"bytes,1,opt,name=config" json:"config,omitempty"`
+	ContainerID string                   `protobuf:"bytes,2,opt,name=container_id,json=containerId,proto3" json:"container_id,omitempty"`
+}
+
+func (m *AttachNetworkRequest) Reset()                    { *m = AttachNetworkRequest{} }
+func (*AttachNetworkRequest) ProtoMessage()               {}
+func (*AttachNetworkRequest) Descriptor() ([]byte, []int) { return fileDescriptorResource, []int{0} }
+
+type AttachNetworkResponse struct {
+	AttachmentID string `protobuf:"bytes,1,opt,name=attachment_id,json=attachmentId,proto3" json:"attachment_id,omitempty"`
+}
+
+func (m *AttachNetworkResponse) Reset()                    { *m = AttachNetworkResponse{} }
+func (*AttachNetworkResponse) ProtoMessage()               {}
+func (*AttachNetworkResponse) Descriptor() ([]byte, []int) { return fileDescriptorResource, []int{1} }
+
+type DetachNetworkRequest struct {
+	AttachmentID string `protobuf:"bytes,1,opt,name=attachment_id,json=attachmentId,proto3" json:"attachment_id,omitempty"`
+}
+
+func (m *DetachNetworkRequest) Reset()                    { *m = DetachNetworkRequest{} }
+func (*DetachNetworkRequest) ProtoMessage()               {}
+func (*DetachNetworkRequest) Descriptor() ([]byte, []int) { return fileDescriptorResource, []int{2} }
+
+type DetachNetworkResponse struct {
+}
+
+func (m *DetachNetworkResponse) Reset()                    { *m = DetachNetworkResponse{} }
+func (*DetachNetworkResponse) ProtoMessage()               {}
+func (*DetachNetworkResponse) Descriptor() ([]byte, []int) { return fileDescriptorResource, []int{3} }
+
+func init() {
+	proto.RegisterType((*AttachNetworkRequest)(nil), "docker.swarmkit.v1.AttachNetworkRequest")
+	proto.RegisterType((*AttachNetworkResponse)(nil), "docker.swarmkit.v1.AttachNetworkResponse")
+	proto.RegisterType((*DetachNetworkRequest)(nil), "docker.swarmkit.v1.DetachNetworkRequest")
+	proto.RegisterType((*DetachNetworkResponse)(nil), "docker.swarmkit.v1.DetachNetworkResponse")
+}
+
+type authenticatedWrapperResourceAllocatorServer struct {
+	local     ResourceAllocatorServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperResourceAllocatorServer(local ResourceAllocatorServer, authorize func(context.Context, []string) error) ResourceAllocatorServer {
+	return &authenticatedWrapperResourceAllocatorServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperResourceAllocatorServer) AttachNetwork(ctx context.Context, r *AttachNetworkRequest) (*AttachNetworkResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.AttachNetwork(ctx, r)
+}
+
+func (p *authenticatedWrapperResourceAllocatorServer) DetachNetwork(ctx context.Context, r *DetachNetworkRequest) (*DetachNetworkResponse, error) {
+
+	if err := p.authorize(ctx, []string{"swarm-worker", "swarm-manager"}); err != nil {
+		return nil, err
+	}
+	return p.local.DetachNetwork(ctx, r)
+}
+
+func (m *AttachNetworkRequest) Copy() *AttachNetworkRequest {
+	if m == nil {
+		return nil
+	}
+	o := &AttachNetworkRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AttachNetworkRequest) CopyFrom(src interface{}) {
+
+	o := src.(*AttachNetworkRequest)
+	*m = *o
+	if o.Config != nil {
+		m.Config = &NetworkAttachmentConfig{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Config, o.Config)
+	}
+}
+
+func (m *AttachNetworkResponse) Copy() *AttachNetworkResponse {
+	if m == nil {
+		return nil
+	}
+	o := &AttachNetworkResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AttachNetworkResponse) CopyFrom(src interface{}) {
+
+	o := src.(*AttachNetworkResponse)
+	*m = *o
+}
+
+func (m *DetachNetworkRequest) Copy() *DetachNetworkRequest {
+	if m == nil {
+		return nil
+	}
+	o := &DetachNetworkRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *DetachNetworkRequest) CopyFrom(src interface{}) {
+
+	o := src.(*DetachNetworkRequest)
+	*m = *o
+}
+
+func (m *DetachNetworkResponse) Copy() *DetachNetworkResponse {
+	if m == nil {
+		return nil
+	}
+	o := &DetachNetworkResponse{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *DetachNetworkResponse) CopyFrom(src interface{}) {}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for ResourceAllocator service
+
+type ResourceAllocatorClient interface {
+	AttachNetwork(ctx context.Context, in *AttachNetworkRequest, opts ...grpc.CallOption) (*AttachNetworkResponse, error)
+	DetachNetwork(ctx context.Context, in *DetachNetworkRequest, opts ...grpc.CallOption) (*DetachNetworkResponse, error)
+}
+
+type resourceAllocatorClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewResourceAllocatorClient(cc *grpc.ClientConn) ResourceAllocatorClient {
+	return &resourceAllocatorClient{cc}
+}
+
+func (c *resourceAllocatorClient) AttachNetwork(ctx context.Context, in *AttachNetworkRequest, opts ...grpc.CallOption) (*AttachNetworkResponse, error) {
+	out := new(AttachNetworkResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.ResourceAllocator/AttachNetwork", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+func (c *resourceAllocatorClient) DetachNetwork(ctx context.Context, in *DetachNetworkRequest, opts ...grpc.CallOption) (*DetachNetworkResponse, error) {
+	out := new(DetachNetworkResponse)
+	err := grpc.Invoke(ctx, "/docker.swarmkit.v1.ResourceAllocator/DetachNetwork", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for ResourceAllocator service
+
+type ResourceAllocatorServer interface {
+	AttachNetwork(context.Context, *AttachNetworkRequest) (*AttachNetworkResponse, error)
+	DetachNetwork(context.Context, *DetachNetworkRequest) (*DetachNetworkResponse, error)
+}
+
+func RegisterResourceAllocatorServer(s *grpc.Server, srv ResourceAllocatorServer) {
+	s.RegisterService(&_ResourceAllocator_serviceDesc, srv)
+}
+
+func _ResourceAllocator_AttachNetwork_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(AttachNetworkRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ResourceAllocatorServer).AttachNetwork(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.ResourceAllocator/AttachNetwork",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ResourceAllocatorServer).AttachNetwork(ctx, req.(*AttachNetworkRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+func _ResourceAllocator_DetachNetwork_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(DetachNetworkRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(ResourceAllocatorServer).DetachNetwork(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/docker.swarmkit.v1.ResourceAllocator/DetachNetwork",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(ResourceAllocatorServer).DetachNetwork(ctx, req.(*DetachNetworkRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _ResourceAllocator_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.ResourceAllocator",
+	HandlerType: (*ResourceAllocatorServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "AttachNetwork",
+			Handler:    _ResourceAllocator_AttachNetwork_Handler,
+		},
+		{
+			MethodName: "DetachNetwork",
+			Handler:    _ResourceAllocator_DetachNetwork_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "github.com/docker/swarmkit/api/resource.proto",
+}
+
+func (m *AttachNetworkRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AttachNetworkRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Config != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintResource(dAtA, i, uint64(m.Config.Size()))
+		n1, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	if len(m.ContainerID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintResource(dAtA, i, uint64(len(m.ContainerID)))
+		i += copy(dAtA[i:], m.ContainerID)
+	}
+	return i, nil
+}
+
+func (m *AttachNetworkResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AttachNetworkResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.AttachmentID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintResource(dAtA, i, uint64(len(m.AttachmentID)))
+		i += copy(dAtA[i:], m.AttachmentID)
+	}
+	return i, nil
+}
+
+func (m *DetachNetworkRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *DetachNetworkRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.AttachmentID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintResource(dAtA, i, uint64(len(m.AttachmentID)))
+		i += copy(dAtA[i:], m.AttachmentID)
+	}
+	return i, nil
+}
+
+func (m *DetachNetworkResponse) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *DetachNetworkResponse) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func encodeFixed64Resource(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Resource(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintResource(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyResourceAllocatorServer struct {
+	local                       ResourceAllocatorServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyResourceAllocatorServer(local ResourceAllocatorServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) ResourceAllocatorServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyResourceAllocatorServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyResourceAllocatorServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyResourceAllocatorServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+func (p *raftProxyResourceAllocatorServer) AttachNetwork(ctx context.Context, r *AttachNetworkRequest) (*AttachNetworkResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.AttachNetwork(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewResourceAllocatorClient(conn).AttachNetwork(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.AttachNetwork(ctx, r)
+			}
+			return nil, err
+		}
+		return NewResourceAllocatorClient(conn).AttachNetwork(modCtx, r)
+	}
+	return resp, err
+}
+
+func (p *raftProxyResourceAllocatorServer) DetachNetwork(ctx context.Context, r *DetachNetworkRequest) (*DetachNetworkResponse, error) {
+
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return nil, err
+			}
+			return p.local.DetachNetwork(ctx, r)
+		}
+		return nil, err
+	}
+	modCtx, err := p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return nil, err
+	}
+
+	resp, err := NewResourceAllocatorClient(conn).DetachNetwork(modCtx, r)
+	if err != nil {
+		if !strings.Contains(err.Error(), "is closing") && !strings.Contains(err.Error(), "the connection is unavailable") && !strings.Contains(err.Error(), "connection error") {
+			return resp, err
+		}
+		conn, err := p.pollNewLeaderConn(ctx)
+		if err != nil {
+			if err == raftselector.ErrIsLeader {
+				return p.local.DetachNetwork(ctx, r)
+			}
+			return nil, err
+		}
+		return NewResourceAllocatorClient(conn).DetachNetwork(modCtx, r)
+	}
+	return resp, err
+}
+
+func (m *AttachNetworkRequest) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovResource(uint64(l))
+	}
+	l = len(m.ContainerID)
+	if l > 0 {
+		n += 1 + l + sovResource(uint64(l))
+	}
+	return n
+}
+
+func (m *AttachNetworkResponse) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.AttachmentID)
+	if l > 0 {
+		n += 1 + l + sovResource(uint64(l))
+	}
+	return n
+}
+
+func (m *DetachNetworkRequest) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.AttachmentID)
+	if l > 0 {
+		n += 1 + l + sovResource(uint64(l))
+	}
+	return n
+}
+
+func (m *DetachNetworkResponse) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func sovResource(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozResource(x uint64) (n int) {
+	return sovResource(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *AttachNetworkRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AttachNetworkRequest{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "NetworkAttachmentConfig", "NetworkAttachmentConfig", 1) + `,`,
+		`ContainerID:` + fmt.Sprintf("%v", this.ContainerID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AttachNetworkResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AttachNetworkResponse{`,
+		`AttachmentID:` + fmt.Sprintf("%v", this.AttachmentID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *DetachNetworkRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&DetachNetworkRequest{`,
+		`AttachmentID:` + fmt.Sprintf("%v", this.AttachmentID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *DetachNetworkResponse) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&DetachNetworkResponse{`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringResource(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *AttachNetworkRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowResource
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AttachNetworkRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AttachNetworkRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthResource
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Config == nil {
+				m.Config = &NetworkAttachmentConfig{}
+			}
+			if err := m.Config.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ContainerID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthResource
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ContainerID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipResource(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthResource
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AttachNetworkResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowResource
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AttachNetworkResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AttachNetworkResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AttachmentID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthResource
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.AttachmentID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipResource(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthResource
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *DetachNetworkRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowResource
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DetachNetworkRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DetachNetworkRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AttachmentID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthResource
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.AttachmentID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipResource(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthResource
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *DetachNetworkResponse) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowResource
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DetachNetworkResponse: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DetachNetworkResponse: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipResource(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthResource
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipResource(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowResource
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowResource
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthResource
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowResource
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipResource(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthResource = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowResource   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() {
+	proto.RegisterFile("github.com/docker/swarmkit/api/resource.proto", fileDescriptorResource)
+}
+
+var fileDescriptorResource = []byte{
+	// 397 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x9c, 0x92, 0xcf, 0x4e, 0xf2, 0x40,
+	0x14, 0xc5, 0x19, 0x16, 0x24, 0xdf, 0x50, 0xf2, 0x69, 0x03, 0x91, 0x90, 0x58, 0x48, 0xdd, 0xa0,
+	0x86, 0x36, 0x62, 0x8c, 0x6b, 0xfe, 0x6c, 0xba, 0x90, 0x45, 0x5f, 0xc0, 0x0c, 0xed, 0x50, 0x1a,
+	0x68, 0xa7, 0x4e, 0xa7, 0x12, 0x77, 0x6e, 0x5d, 0xb9, 0xf5, 0x1d, 0x4c, 0x7c, 0x0e, 0xe2, 0xca,
+	0xa5, 0x2b, 0x22, 0x7d, 0x00, 0x9f, 0xc1, 0xd0, 0x29, 0x10, 0x70, 0xa2, 0xc4, 0x55, 0xa7, 0xd3,
+	0x73, 0xce, 0xfd, 0xdd, 0x7b, 0x0b, 0x1b, 0x8e, 0xcb, 0x86, 0x51, 0x5f, 0xb3, 0x88, 0xa7, 0xdb,
+	0xc4, 0x1a, 0x61, 0xaa, 0x87, 0x13, 0x44, 0xbd, 0x91, 0xcb, 0x74, 0x14, 0xb8, 0x3a, 0xc5, 0x21,
+	0x89, 0xa8, 0x85, 0xb5, 0x80, 0x12, 0x46, 0x64, 0x99, 0x6b, 0xb4, 0xa5, 0x46, 0xbb, 0x3d, 0xab,
+	0x9c, 0xfc, 0x12, 0xc1, 0xee, 0x02, 0x1c, 0x72, 0x7f, 0xa5, 0xe8, 0x10, 0x87, 0x24, 0x47, 0x7d,
+	0x71, 0x4a, 0x6f, 0x2f, 0x7f, 0x48, 0x48, 0x14, 0xfd, 0x68, 0xa0, 0x07, 0xe3, 0xc8, 0x71, 0xfd,
+	0xf4, 0xc1, 0x8d, 0xea, 0x23, 0x80, 0xc5, 0x16, 0x63, 0xc8, 0x1a, 0xf6, 0x30, 0x9b, 0x10, 0x3a,
+	0x32, 0xf1, 0x4d, 0x84, 0x43, 0x26, 0x77, 0x60, 0xce, 0x22, 0xfe, 0xc0, 0x75, 0xca, 0xa0, 0x06,
+	0xea, 0xf9, 0xe6, 0xa9, 0xf6, 0x1d, 0x5c, 0x4b, 0x3d, 0x3c, 0xc0, 0xc3, 0x3e, 0xeb, 0x24, 0x16,
+	0x33, 0xb5, 0xca, 0x4d, 0x28, 0x59, 0xc4, 0x67, 0xc8, 0xf5, 0x31, 0xbd, 0x76, 0xed, 0x72, 0xb6,
+	0x06, 0xea, 0xff, 0xda, 0xff, 0xe3, 0x59, 0x35, 0xdf, 0x59, 0xde, 0x1b, 0x5d, 0x33, 0xbf, 0x12,
+	0x19, 0xb6, 0xda, 0x83, 0xa5, 0x2d, 0xa0, 0x30, 0x20, 0x7e, 0x88, 0xe5, 0x0b, 0x58, 0x40, 0xab,
+	0x42, 0x8b, 0x34, 0x90, 0xa4, 0xed, 0xc5, 0xb3, 0xaa, 0xb4, 0x26, 0x30, 0xba, 0xa6, 0xb4, 0x96,
+	0x19, 0xb6, 0x7a, 0x05, 0x8b, 0x5d, 0x2c, 0x68, 0xf0, 0x8f, 0x71, 0x07, 0xb0, 0xb4, 0x15, 0xc7,
+	0xf1, 0x9a, 0xcf, 0x59, 0xb8, 0x6f, 0xa6, 0xbb, 0x6e, 0x8d, 0xc7, 0xc4, 0x42, 0x8c, 0x50, 0xf9,
+	0x01, 0xc0, 0xc2, 0x46, 0x3b, 0x72, 0x5d, 0x34, 0x48, 0xd1, 0x0a, 0x2a, 0xc7, 0x3b, 0x28, 0x79,
+	0x71, 0xf5, 0xe8, 0xf5, 0xe5, 0xf3, 0x29, 0x7b, 0x08, 0xa5, 0x44, 0xda, 0x58, 0x7c, 0xc3, 0x14,
+	0x16, 0xf8, 0x9b, 0x87, 0x7c, 0xe4, 0x60, 0xce, 0xb2, 0xc1, 0x2e, 0x66, 0x11, 0x4d, 0x4b, 0xcc,
+	0x22, 0x1c, 0xc4, 0x4e, 0x2c, 0xed, 0xf2, 0x74, 0xae, 0x64, 0xde, 0xe7, 0x4a, 0xe6, 0x3e, 0x56,
+	0xc0, 0x34, 0x56, 0xc0, 0x5b, 0xac, 0x80, 0x8f, 0x58, 0x01, 0xfd, 0x5c, 0xf2, 0x63, 0x9e, 0x7f,
+	0x05, 0x00, 0x00, 0xff, 0xff, 0xc1, 0x7a, 0x29, 0xfc, 0x58, 0x03, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/snapshot.pb.go b/vendor/github.com/docker/swarmkit/api/snapshot.pb.go
new file mode 100644
index 0000000000..f8c32b7726
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/snapshot.pb.go
@@ -0,0 +1,1345 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/snapshot.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+// skipping weak import gogoproto "github.com/gogo/protobuf/gogoproto"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type Snapshot_Version int32
+
+const (
+	// V0 is the initial version of the StoreSnapshot message.
+	Snapshot_V0 Snapshot_Version = 0
+)
+
+var Snapshot_Version_name = map[int32]string{
+	0: "V0",
+}
+var Snapshot_Version_value = map[string]int32{
+	"V0": 0,
+}
+
+func (x Snapshot_Version) String() string {
+	return proto.EnumName(Snapshot_Version_name, int32(x))
+}
+func (Snapshot_Version) EnumDescriptor() ([]byte, []int) { return fileDescriptorSnapshot, []int{2, 0} }
+
+// StoreSnapshot is used to store snapshots of the store.
+type StoreSnapshot struct {
+	Nodes      []*Node      `protobuf:"bytes,1,rep,name=nodes" json:"nodes,omitempty"`
+	Services   []*Service   `protobuf:"bytes,2,rep,name=services" json:"services,omitempty"`
+	Networks   []*Network   `protobuf:"bytes,3,rep,name=networks" json:"networks,omitempty"`
+	Tasks      []*Task      `protobuf:"bytes,4,rep,name=tasks" json:"tasks,omitempty"`
+	Clusters   []*Cluster   `protobuf:"bytes,5,rep,name=clusters" json:"clusters,omitempty"`
+	Secrets    []*Secret    `protobuf:"bytes,6,rep,name=secrets" json:"secrets,omitempty"`
+	Resources  []*Resource  `protobuf:"bytes,7,rep,name=resources" json:"resources,omitempty"`
+	Extensions []*Extension `protobuf:"bytes,8,rep,name=extensions" json:"extensions,omitempty"`
+	Configs    []*Config    `protobuf:"bytes,9,rep,name=configs" json:"configs,omitempty"`
+}
+
+func (m *StoreSnapshot) Reset()                    { *m = StoreSnapshot{} }
+func (*StoreSnapshot) ProtoMessage()               {}
+func (*StoreSnapshot) Descriptor() ([]byte, []int) { return fileDescriptorSnapshot, []int{0} }
+
+// ClusterSnapshot stores cluster membership information in snapshots.
+type ClusterSnapshot struct {
+	Members []*RaftMember `protobuf:"bytes,1,rep,name=members" json:"members,omitempty"`
+	Removed []uint64      `protobuf:"varint,2,rep,name=removed" json:"removed,omitempty"`
+}
+
+func (m *ClusterSnapshot) Reset()                    { *m = ClusterSnapshot{} }
+func (*ClusterSnapshot) ProtoMessage()               {}
+func (*ClusterSnapshot) Descriptor() ([]byte, []int) { return fileDescriptorSnapshot, []int{1} }
+
+type Snapshot struct {
+	Version    Snapshot_Version `protobuf:"varint,1,opt,name=version,proto3,enum=docker.swarmkit.v1.Snapshot_Version" json:"version,omitempty"`
+	Membership ClusterSnapshot  `protobuf:"bytes,2,opt,name=membership" json:"membership"`
+	Store      StoreSnapshot    `protobuf:"bytes,3,opt,name=store" json:"store"`
+}
+
+func (m *Snapshot) Reset()                    { *m = Snapshot{} }
+func (*Snapshot) ProtoMessage()               {}
+func (*Snapshot) Descriptor() ([]byte, []int) { return fileDescriptorSnapshot, []int{2} }
+
+func init() {
+	proto.RegisterType((*StoreSnapshot)(nil), "docker.swarmkit.v1.StoreSnapshot")
+	proto.RegisterType((*ClusterSnapshot)(nil), "docker.swarmkit.v1.ClusterSnapshot")
+	proto.RegisterType((*Snapshot)(nil), "docker.swarmkit.v1.Snapshot")
+	proto.RegisterEnum("docker.swarmkit.v1.Snapshot_Version", Snapshot_Version_name, Snapshot_Version_value)
+}
+
+func (m *StoreSnapshot) Copy() *StoreSnapshot {
+	if m == nil {
+		return nil
+	}
+	o := &StoreSnapshot{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *StoreSnapshot) CopyFrom(src interface{}) {
+
+	o := src.(*StoreSnapshot)
+	*m = *o
+	if o.Nodes != nil {
+		m.Nodes = make([]*Node, len(o.Nodes))
+		for i := range m.Nodes {
+			m.Nodes[i] = &Node{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Nodes[i], o.Nodes[i])
+		}
+	}
+
+	if o.Services != nil {
+		m.Services = make([]*Service, len(o.Services))
+		for i := range m.Services {
+			m.Services[i] = &Service{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Services[i], o.Services[i])
+		}
+	}
+
+	if o.Networks != nil {
+		m.Networks = make([]*Network, len(o.Networks))
+		for i := range m.Networks {
+			m.Networks[i] = &Network{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Networks[i], o.Networks[i])
+		}
+	}
+
+	if o.Tasks != nil {
+		m.Tasks = make([]*Task, len(o.Tasks))
+		for i := range m.Tasks {
+			m.Tasks[i] = &Task{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Tasks[i], o.Tasks[i])
+		}
+	}
+
+	if o.Clusters != nil {
+		m.Clusters = make([]*Cluster, len(o.Clusters))
+		for i := range m.Clusters {
+			m.Clusters[i] = &Cluster{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Clusters[i], o.Clusters[i])
+		}
+	}
+
+	if o.Secrets != nil {
+		m.Secrets = make([]*Secret, len(o.Secrets))
+		for i := range m.Secrets {
+			m.Secrets[i] = &Secret{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Secrets[i], o.Secrets[i])
+		}
+	}
+
+	if o.Resources != nil {
+		m.Resources = make([]*Resource, len(o.Resources))
+		for i := range m.Resources {
+			m.Resources[i] = &Resource{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Resources[i], o.Resources[i])
+		}
+	}
+
+	if o.Extensions != nil {
+		m.Extensions = make([]*Extension, len(o.Extensions))
+		for i := range m.Extensions {
+			m.Extensions[i] = &Extension{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Extensions[i], o.Extensions[i])
+		}
+	}
+
+	if o.Configs != nil {
+		m.Configs = make([]*Config, len(o.Configs))
+		for i := range m.Configs {
+			m.Configs[i] = &Config{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Configs[i], o.Configs[i])
+		}
+	}
+
+}
+
+func (m *ClusterSnapshot) Copy() *ClusterSnapshot {
+	if m == nil {
+		return nil
+	}
+	o := &ClusterSnapshot{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ClusterSnapshot) CopyFrom(src interface{}) {
+
+	o := src.(*ClusterSnapshot)
+	*m = *o
+	if o.Members != nil {
+		m.Members = make([]*RaftMember, len(o.Members))
+		for i := range m.Members {
+			m.Members[i] = &RaftMember{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Members[i], o.Members[i])
+		}
+	}
+
+	if o.Removed != nil {
+		m.Removed = make([]uint64, len(o.Removed))
+		copy(m.Removed, o.Removed)
+	}
+
+}
+
+func (m *Snapshot) Copy() *Snapshot {
+	if m == nil {
+		return nil
+	}
+	o := &Snapshot{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Snapshot) CopyFrom(src interface{}) {
+
+	o := src.(*Snapshot)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Membership, &o.Membership)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Store, &o.Store)
+}
+
+func (m *StoreSnapshot) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StoreSnapshot) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, msg := range m.Nodes {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Services) > 0 {
+		for _, msg := range m.Services {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Tasks) > 0 {
+		for _, msg := range m.Tasks {
+			dAtA[i] = 0x22
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Clusters) > 0 {
+		for _, msg := range m.Clusters {
+			dAtA[i] = 0x2a
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Secrets) > 0 {
+		for _, msg := range m.Secrets {
+			dAtA[i] = 0x32
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Resources) > 0 {
+		for _, msg := range m.Resources {
+			dAtA[i] = 0x3a
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Extensions) > 0 {
+		for _, msg := range m.Extensions {
+			dAtA[i] = 0x42
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Configs) > 0 {
+		for _, msg := range m.Configs {
+			dAtA[i] = 0x4a
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *ClusterSnapshot) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ClusterSnapshot) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Members) > 0 {
+		for _, msg := range m.Members {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Removed) > 0 {
+		for _, num := range m.Removed {
+			dAtA[i] = 0x10
+			i++
+			i = encodeVarintSnapshot(dAtA, i, uint64(num))
+		}
+	}
+	return i, nil
+}
+
+func (m *Snapshot) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Snapshot) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Version != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintSnapshot(dAtA, i, uint64(m.Version))
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintSnapshot(dAtA, i, uint64(m.Membership.Size()))
+	n1, err := m.Membership.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n1
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintSnapshot(dAtA, i, uint64(m.Store.Size()))
+	n2, err := m.Store.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n2
+	return i, nil
+}
+
+func encodeFixed64Snapshot(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Snapshot(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintSnapshot(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+func (m *StoreSnapshot) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Nodes) > 0 {
+		for _, e := range m.Nodes {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Services) > 0 {
+		for _, e := range m.Services {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Tasks) > 0 {
+		for _, e := range m.Tasks {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Clusters) > 0 {
+		for _, e := range m.Clusters {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Secrets) > 0 {
+		for _, e := range m.Secrets {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Resources) > 0 {
+		for _, e := range m.Resources {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Extensions) > 0 {
+		for _, e := range m.Extensions {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Configs) > 0 {
+		for _, e := range m.Configs {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ClusterSnapshot) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Members) > 0 {
+		for _, e := range m.Members {
+			l = e.Size()
+			n += 1 + l + sovSnapshot(uint64(l))
+		}
+	}
+	if len(m.Removed) > 0 {
+		for _, e := range m.Removed {
+			n += 1 + sovSnapshot(uint64(e))
+		}
+	}
+	return n
+}
+
+func (m *Snapshot) Size() (n int) {
+	var l int
+	_ = l
+	if m.Version != 0 {
+		n += 1 + sovSnapshot(uint64(m.Version))
+	}
+	l = m.Membership.Size()
+	n += 1 + l + sovSnapshot(uint64(l))
+	l = m.Store.Size()
+	n += 1 + l + sovSnapshot(uint64(l))
+	return n
+}
+
+func sovSnapshot(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozSnapshot(x uint64) (n int) {
+	return sovSnapshot(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *StoreSnapshot) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreSnapshot{`,
+		`Nodes:` + strings.Replace(fmt.Sprintf("%v", this.Nodes), "Node", "Node", 1) + `,`,
+		`Services:` + strings.Replace(fmt.Sprintf("%v", this.Services), "Service", "Service", 1) + `,`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "Network", "Network", 1) + `,`,
+		`Tasks:` + strings.Replace(fmt.Sprintf("%v", this.Tasks), "Task", "Task", 1) + `,`,
+		`Clusters:` + strings.Replace(fmt.Sprintf("%v", this.Clusters), "Cluster", "Cluster", 1) + `,`,
+		`Secrets:` + strings.Replace(fmt.Sprintf("%v", this.Secrets), "Secret", "Secret", 1) + `,`,
+		`Resources:` + strings.Replace(fmt.Sprintf("%v", this.Resources), "Resource", "Resource", 1) + `,`,
+		`Extensions:` + strings.Replace(fmt.Sprintf("%v", this.Extensions), "Extension", "Extension", 1) + `,`,
+		`Configs:` + strings.Replace(fmt.Sprintf("%v", this.Configs), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ClusterSnapshot) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ClusterSnapshot{`,
+		`Members:` + strings.Replace(fmt.Sprintf("%v", this.Members), "RaftMember", "RaftMember", 1) + `,`,
+		`Removed:` + fmt.Sprintf("%v", this.Removed) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Snapshot) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Snapshot{`,
+		`Version:` + fmt.Sprintf("%v", this.Version) + `,`,
+		`Membership:` + strings.Replace(strings.Replace(this.Membership.String(), "ClusterSnapshot", "ClusterSnapshot", 1), `&`, ``, 1) + `,`,
+		`Store:` + strings.Replace(strings.Replace(this.Store.String(), "StoreSnapshot", "StoreSnapshot", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringSnapshot(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *StoreSnapshot) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSnapshot
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StoreSnapshot: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StoreSnapshot: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nodes", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Nodes = append(m.Nodes, &Node{})
+			if err := m.Nodes[len(m.Nodes)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Services", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Services = append(m.Services, &Service{})
+			if err := m.Services[len(m.Services)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &Network{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Tasks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Tasks = append(m.Tasks, &Task{})
+			if err := m.Tasks[len(m.Tasks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Clusters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Clusters = append(m.Clusters, &Cluster{})
+			if err := m.Clusters[len(m.Clusters)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secrets", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Secrets = append(m.Secrets, &Secret{})
+			if err := m.Secrets[len(m.Secrets)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Resources", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Resources = append(m.Resources, &Resource{})
+			if err := m.Resources[len(m.Resources)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Extensions", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Extensions = append(m.Extensions, &Extension{})
+			if err := m.Extensions[len(m.Extensions)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Configs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Configs = append(m.Configs, &Config{})
+			if err := m.Configs[len(m.Configs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSnapshot(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ClusterSnapshot) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSnapshot
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ClusterSnapshot: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ClusterSnapshot: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Members", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Members = append(m.Members, &RaftMember{})
+			if err := m.Members[len(m.Members)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType == 0 {
+				var v uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowSnapshot
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					v |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				m.Removed = append(m.Removed, v)
+			} else if wireType == 2 {
+				var packedLen int
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowSnapshot
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					packedLen |= (int(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				if packedLen < 0 {
+					return ErrInvalidLengthSnapshot
+				}
+				postIndex := iNdEx + packedLen
+				if postIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				for iNdEx < postIndex {
+					var v uint64
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowSnapshot
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						v |= (uint64(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					m.Removed = append(m.Removed, v)
+				}
+			} else {
+				return fmt.Errorf("proto: wrong wireType = %d for field Removed", wireType)
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSnapshot(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Snapshot) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSnapshot
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Snapshot: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Snapshot: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Version", wireType)
+			}
+			m.Version = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Version |= (Snapshot_Version(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Membership", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Membership.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Store", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Store.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSnapshot(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSnapshot
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipSnapshot(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowSnapshot
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowSnapshot
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthSnapshot
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowSnapshot
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipSnapshot(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthSnapshot = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowSnapshot   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() {
+	proto.RegisterFile("github.com/docker/swarmkit/api/snapshot.proto", fileDescriptorSnapshot)
+}
+
+var fileDescriptorSnapshot = []byte{
+	// 493 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x84, 0x93, 0xbf, 0x8f, 0xd3, 0x30,
+	0x14, 0xc7, 0x93, 0xf4, 0x47, 0x7a, 0x3e, 0x01, 0x87, 0xc5, 0x60, 0x95, 0x23, 0x94, 0xc2, 0x50,
+	0x24, 0x48, 0xa0, 0x20, 0x81, 0x90, 0x8e, 0xa1, 0x27, 0x06, 0x06, 0x6e, 0x70, 0xd1, 0x89, 0x35,
+	0x4d, 0xdd, 0x36, 0x84, 0xc4, 0x95, 0x9f, 0xdb, 0x63, 0x84, 0xff, 0xae, 0x23, 0x23, 0x13, 0xe2,
+	0xba, 0xf0, 0x6f, 0x20, 0xdb, 0x71, 0xa8, 0x44, 0x7a, 0xb7, 0x45, 0xd6, 0xe7, 0xf3, 0xde, 0xd7,
+	0xce, 0x7b, 0xe8, 0xe9, 0x3c, 0x95, 0x8b, 0xd5, 0x24, 0x4c, 0x78, 0x1e, 0x4d, 0x79, 0x92, 0x31,
+	0x11, 0xc1, 0x45, 0x2c, 0xf2, 0x2c, 0x95, 0x51, 0xbc, 0x4c, 0x23, 0x28, 0xe2, 0x25, 0x2c, 0xb8,
+	0x0c, 0x97, 0x82, 0x4b, 0x8e, 0xb1, 0x61, 0x42, 0xcb, 0x84, 0xeb, 0xe7, 0xdd, 0x27, 0xd7, 0x94,
+	0xe0, 0x93, 0xcf, 0x2c, 0x91, 0x60, 0x2a, 0x74, 0x1f, 0x5f, 0x43, 0x8b, 0x78, 0x56, 0x36, 0xeb,
+	0xde, 0x99, 0xf3, 0x39, 0xd7, 0x9f, 0x91, 0xfa, 0x32, 0xa7, 0xfd, 0xef, 0x4d, 0x74, 0x63, 0x2c,
+	0xb9, 0x60, 0xe3, 0x32, 0x1a, 0x0e, 0x51, 0xab, 0xe0, 0x53, 0x06, 0xc4, 0xed, 0x35, 0x06, 0x87,
+	0x43, 0x12, 0xfe, 0x1f, 0x32, 0x3c, 0xe3, 0x53, 0x46, 0x0d, 0x86, 0x5f, 0xa1, 0x0e, 0x30, 0xb1,
+	0x4e, 0x13, 0x06, 0xc4, 0xd3, 0xca, 0xdd, 0x3a, 0x65, 0x6c, 0x18, 0x5a, 0xc1, 0x4a, 0x2c, 0x98,
+	0xbc, 0xe0, 0x22, 0x03, 0xd2, 0xd8, 0x2f, 0x9e, 0x19, 0x86, 0x56, 0xb0, 0x4a, 0x28, 0x63, 0xc8,
+	0x80, 0x34, 0xf7, 0x27, 0xfc, 0x18, 0x43, 0x46, 0x0d, 0xa6, 0x1a, 0x25, 0x5f, 0x56, 0x20, 0x99,
+	0x00, 0xd2, 0xda, 0xdf, 0xe8, 0xd4, 0x30, 0xb4, 0x82, 0xf1, 0x4b, 0xe4, 0x03, 0x4b, 0x04, 0x93,
+	0x40, 0xda, 0xda, 0xeb, 0xd6, 0xdf, 0x4c, 0x21, 0xd4, 0xa2, 0xf8, 0x0d, 0x3a, 0x10, 0x0c, 0xf8,
+	0x4a, 0xa8, 0x17, 0xf1, 0xb5, 0x77, 0x5c, 0xe7, 0xd1, 0x12, 0xa2, 0xff, 0x70, 0x7c, 0x82, 0x10,
+	0xfb, 0x2a, 0x59, 0x01, 0x29, 0x2f, 0x80, 0x74, 0xb4, 0x7c, 0xaf, 0x4e, 0x7e, 0x67, 0x29, 0xba,
+	0x23, 0xa8, 0xc0, 0x09, 0x2f, 0x66, 0xe9, 0x1c, 0xc8, 0xc1, 0xfe, 0xc0, 0xa7, 0x1a, 0xa1, 0x16,
+	0xed, 0xa7, 0xe8, 0x56, 0x79, 0xf7, 0x6a, 0x08, 0x5e, 0x23, 0x3f, 0x67, 0xf9, 0x44, 0xbd, 0x98,
+	0x19, 0x83, 0xa0, 0xf6, 0x06, 0xf1, 0x4c, 0x7e, 0xd0, 0x18, 0xb5, 0x38, 0x3e, 0x46, 0xbe, 0x60,
+	0x39, 0x5f, 0xb3, 0xa9, 0x9e, 0x86, 0xe6, 0xc8, 0x3b, 0x72, 0xa8, 0x3d, 0xea, 0xff, 0x71, 0x51,
+	0xa7, 0x6a, 0xf2, 0x16, 0xf9, 0x6b, 0x26, 0x54, 0x72, 0xe2, 0xf6, 0xdc, 0xc1, 0xcd, 0xe1, 0xa3,
+	0xda, 0xe7, 0xb5, 0x3b, 0x73, 0x6e, 0x58, 0x6a, 0x25, 0xfc, 0x1e, 0xa1, 0xb2, 0xeb, 0x22, 0x5d,
+	0x12, 0xaf, 0xe7, 0x0e, 0x0e, 0x87, 0x0f, 0xaf, 0xf8, 0xb3, 0xb6, 0xd2, 0xa8, 0xb9, 0xf9, 0x75,
+	0xdf, 0xa1, 0x3b, 0x32, 0x3e, 0x41, 0x2d, 0x50, 0x5b, 0x40, 0x1a, 0xba, 0xca, 0x83, 0xda, 0x20,
+	0xbb, 0x6b, 0x52, 0xd6, 0x30, 0x56, 0xff, 0x36, 0xf2, 0xcb, 0x74, 0xb8, 0x8d, 0xbc, 0xf3, 0x67,
+	0x47, 0xce, 0x88, 0x6c, 0x2e, 0x03, 0xe7, 0xe7, 0x65, 0xe0, 0x7c, 0xdb, 0x06, 0xee, 0x66, 0x1b,
+	0xb8, 0x3f, 0xb6, 0x81, 0xfb, 0x7b, 0x1b, 0xb8, 0x9f, 0xbc, 0x49, 0x5b, 0xef, 0xde, 0x8b, 0xbf,
+	0x01, 0x00, 0x00, 0xff, 0xff, 0xfd, 0xbe, 0x47, 0xec, 0x2f, 0x04, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/specs.pb.go b/vendor/github.com/docker/swarmkit/api/specs.pb.go
new file mode 100644
index 0000000000..dfd18a6d78
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/specs.pb.go
@@ -0,0 +1,6743 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/specs.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import google_protobuf1 "github.com/gogo/protobuf/types"
+import google_protobuf3 "github.com/gogo/protobuf/types"
+import google_protobuf4 "github.com/gogo/protobuf/types"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import strings "strings"
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type NodeSpec_Membership int32
+
+const (
+	NodeMembershipPending  NodeSpec_Membership = 0
+	NodeMembershipAccepted NodeSpec_Membership = 1
+)
+
+var NodeSpec_Membership_name = map[int32]string{
+	0: "PENDING",
+	1: "ACCEPTED",
+}
+var NodeSpec_Membership_value = map[string]int32{
+	"PENDING":  0,
+	"ACCEPTED": 1,
+}
+
+func (x NodeSpec_Membership) String() string {
+	return proto.EnumName(NodeSpec_Membership_name, int32(x))
+}
+func (NodeSpec_Membership) EnumDescriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{0, 0} }
+
+type NodeSpec_Availability int32
+
+const (
+	// Active nodes.
+	NodeAvailabilityActive NodeSpec_Availability = 0
+	// Paused nodes won't be considered by the scheduler, preventing any
+	// further task to run on them.
+	NodeAvailabilityPause NodeSpec_Availability = 1
+	// Drained nodes are paused and any task already running on them will
+	// be evicted.
+	NodeAvailabilityDrain NodeSpec_Availability = 2
+)
+
+var NodeSpec_Availability_name = map[int32]string{
+	0: "ACTIVE",
+	1: "PAUSE",
+	2: "DRAIN",
+}
+var NodeSpec_Availability_value = map[string]int32{
+	"ACTIVE": 0,
+	"PAUSE":  1,
+	"DRAIN":  2,
+}
+
+func (x NodeSpec_Availability) String() string {
+	return proto.EnumName(NodeSpec_Availability_name, int32(x))
+}
+func (NodeSpec_Availability) EnumDescriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{0, 1} }
+
+type ContainerSpec_Isolation int32
+
+const (
+	// ISOLATION_DEFAULT uses whatever default value from the container runtime
+	ContainerIsolationDefault ContainerSpec_Isolation = 0
+	// ISOLATION_PROCESS forces windows container isolation
+	ContainerIsolationProcess ContainerSpec_Isolation = 1
+	// ISOLATION_HYPERV forces Hyper-V isolation
+	ContainerIsolationHyperV ContainerSpec_Isolation = 2
+)
+
+var ContainerSpec_Isolation_name = map[int32]string{
+	0: "ISOLATION_DEFAULT",
+	1: "ISOLATION_PROCESS",
+	2: "ISOLATION_HYPERV",
+}
+var ContainerSpec_Isolation_value = map[string]int32{
+	"ISOLATION_DEFAULT": 0,
+	"ISOLATION_PROCESS": 1,
+	"ISOLATION_HYPERV":  2,
+}
+
+func (x ContainerSpec_Isolation) String() string {
+	return proto.EnumName(ContainerSpec_Isolation_name, int32(x))
+}
+func (ContainerSpec_Isolation) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorSpecs, []int{8, 0}
+}
+
+// ResolutionMode specifies the mode of resolution to use for
+// internal loadbalancing between tasks which are all within
+// the cluster. This is sometimes calls east-west data path.
+type EndpointSpec_ResolutionMode int32
+
+const (
+	// VIP resolution mode specifies that the
+	// service resolves to a logical IP and the requests
+	// are sent to that logical IP. Packets hitting that
+	// logical IP are load balanced to a chosen backend.
+	ResolutionModeVirtualIP EndpointSpec_ResolutionMode = 0
+	// DNSRR resolution mode specifies that the
+	// service directly gets resolved to one of the
+	// backend IP and the client directly initiates a
+	// request towards the actual backend. This requires
+	// that the client does not cache the DNS responses
+	// when the DNS response TTL is 0.
+	ResolutionModeDNSRoundRobin EndpointSpec_ResolutionMode = 1
+)
+
+var EndpointSpec_ResolutionMode_name = map[int32]string{
+	0: "VIP",
+	1: "DNSRR",
+}
+var EndpointSpec_ResolutionMode_value = map[string]int32{
+	"VIP":   0,
+	"DNSRR": 1,
+}
+
+func (x EndpointSpec_ResolutionMode) String() string {
+	return proto.EnumName(EndpointSpec_ResolutionMode_name, int32(x))
+}
+func (EndpointSpec_ResolutionMode) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorSpecs, []int{9, 0}
+}
+
+type NodeSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// DesiredRole defines the role the node should have.
+	DesiredRole NodeRole `protobuf:"varint,2,opt,name=desired_role,json=desiredRole,proto3,enum=docker.swarmkit.v1.NodeRole" json:"desired_role,omitempty"`
+	// Membership controls the admission of the node into the cluster.
+	Membership NodeSpec_Membership `protobuf:"varint,3,opt,name=membership,proto3,enum=docker.swarmkit.v1.NodeSpec_Membership" json:"membership,omitempty"`
+	// Availability allows a user to control the current scheduling status of a
+	// node.
+	Availability NodeSpec_Availability `protobuf:"varint,4,opt,name=availability,proto3,enum=docker.swarmkit.v1.NodeSpec_Availability" json:"availability,omitempty"`
+}
+
+func (m *NodeSpec) Reset()                    { *m = NodeSpec{} }
+func (*NodeSpec) ProtoMessage()               {}
+func (*NodeSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{0} }
+
+// ServiceSpec defines the properties of a service.
+//
+// A service instructs the cluster in orchestrating repeated instances of a
+// template, implemented as tasks. Based on the number of instances, scheduling
+// strategy and restart policy, a number of application-level behaviors can be
+// defined.
+type ServiceSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// Task defines the task template this service will spawn.
+	Task TaskSpec `protobuf:"bytes,2,opt,name=task" json:"task"`
+	// Types that are valid to be assigned to Mode:
+	//	*ServiceSpec_Replicated
+	//	*ServiceSpec_Global
+	Mode isServiceSpec_Mode `protobuf_oneof:"mode"`
+	// Update contains settings which affect updates.
+	Update *UpdateConfig `protobuf:"bytes,6,opt,name=update" json:"update,omitempty"`
+	// Rollback contains settings which affect rollbacks of updates.
+	Rollback *UpdateConfig `protobuf:"bytes,9,opt,name=rollback" json:"rollback,omitempty"`
+	// ServiceSpec.Networks has been deprecated and is replaced by
+	// Networks field in Task (TaskSpec.Networks).
+	// This field (ServiceSpec.Networks) is kept for compatibility.
+	// In case TaskSpec.Networks does not exist, ServiceSpec.Networks
+	// is still honored if it exists.
+	Networks []*NetworkAttachmentConfig `protobuf:"bytes,7,rep,name=networks" json:"networks,omitempty"`
+	// Service endpoint specifies the user provided configuration
+	// to properly discover and load balance a service.
+	Endpoint *EndpointSpec `protobuf:"bytes,8,opt,name=endpoint" json:"endpoint,omitempty"`
+}
+
+func (m *ServiceSpec) Reset()                    { *m = ServiceSpec{} }
+func (*ServiceSpec) ProtoMessage()               {}
+func (*ServiceSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{1} }
+
+type isServiceSpec_Mode interface {
+	isServiceSpec_Mode()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type ServiceSpec_Replicated struct {
+	Replicated *ReplicatedService `protobuf:"bytes,3,opt,name=replicated,oneof"`
+}
+type ServiceSpec_Global struct {
+	Global *GlobalService `protobuf:"bytes,4,opt,name=global,oneof"`
+}
+
+func (*ServiceSpec_Replicated) isServiceSpec_Mode() {}
+func (*ServiceSpec_Global) isServiceSpec_Mode()     {}
+
+func (m *ServiceSpec) GetMode() isServiceSpec_Mode {
+	if m != nil {
+		return m.Mode
+	}
+	return nil
+}
+
+func (m *ServiceSpec) GetReplicated() *ReplicatedService {
+	if x, ok := m.GetMode().(*ServiceSpec_Replicated); ok {
+		return x.Replicated
+	}
+	return nil
+}
+
+func (m *ServiceSpec) GetGlobal() *GlobalService {
+	if x, ok := m.GetMode().(*ServiceSpec_Global); ok {
+		return x.Global
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*ServiceSpec) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _ServiceSpec_OneofMarshaler, _ServiceSpec_OneofUnmarshaler, _ServiceSpec_OneofSizer, []interface{}{
+		(*ServiceSpec_Replicated)(nil),
+		(*ServiceSpec_Global)(nil),
+	}
+}
+
+func _ServiceSpec_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*ServiceSpec)
+	// mode
+	switch x := m.Mode.(type) {
+	case *ServiceSpec_Replicated:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Replicated); err != nil {
+			return err
+		}
+	case *ServiceSpec_Global:
+		_ = b.EncodeVarint(4<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Global); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("ServiceSpec.Mode has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _ServiceSpec_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*ServiceSpec)
+	switch tag {
+	case 3: // mode.replicated
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(ReplicatedService)
+		err := b.DecodeMessage(msg)
+		m.Mode = &ServiceSpec_Replicated{msg}
+		return true, err
+	case 4: // mode.global
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(GlobalService)
+		err := b.DecodeMessage(msg)
+		m.Mode = &ServiceSpec_Global{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _ServiceSpec_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*ServiceSpec)
+	// mode
+	switch x := m.Mode.(type) {
+	case *ServiceSpec_Replicated:
+		s := proto.Size(x.Replicated)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *ServiceSpec_Global:
+		s := proto.Size(x.Global)
+		n += proto.SizeVarint(4<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// ReplicatedService sets the reconciliation target to certain number of replicas.
+type ReplicatedService struct {
+	Replicas uint64 `protobuf:"varint,1,opt,name=replicas,proto3" json:"replicas,omitempty"`
+}
+
+func (m *ReplicatedService) Reset()                    { *m = ReplicatedService{} }
+func (*ReplicatedService) ProtoMessage()               {}
+func (*ReplicatedService) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{2} }
+
+// GlobalService represents global service.
+type GlobalService struct {
+}
+
+func (m *GlobalService) Reset()                    { *m = GlobalService{} }
+func (*GlobalService) ProtoMessage()               {}
+func (*GlobalService) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{3} }
+
+type TaskSpec struct {
+	// Types that are valid to be assigned to Runtime:
+	//	*TaskSpec_Attachment
+	//	*TaskSpec_Container
+	//	*TaskSpec_Generic
+	Runtime isTaskSpec_Runtime `protobuf_oneof:"runtime"`
+	// Resource requirements for the container.
+	Resources *ResourceRequirements `protobuf:"bytes,2,opt,name=resources" json:"resources,omitempty"`
+	// RestartPolicy specifies what to do when a task fails or finishes.
+	Restart *RestartPolicy `protobuf:"bytes,4,opt,name=restart" json:"restart,omitempty"`
+	// Placement specifies node selection constraints
+	Placement *Placement `protobuf:"bytes,5,opt,name=placement" json:"placement,omitempty"`
+	// LogDriver specifies the log driver to use for the task. Any runtime will
+	// direct logs into the specified driver for the duration of the task.
+	LogDriver *Driver `protobuf:"bytes,6,opt,name=log_driver,json=logDriver" json:"log_driver,omitempty"`
+	// Networks specifies the list of network attachment
+	// configurations (which specify the network and per-network
+	// aliases) that this task spec is bound to.
+	Networks []*NetworkAttachmentConfig `protobuf:"bytes,7,rep,name=networks" json:"networks,omitempty"`
+	// ForceUpdate is a counter that triggers an update even if no relevant
+	// parameters have been changed. We do this to allow forced restarts
+	// using the same reconciliation-based mechanism that performs rolling
+	// updates.
+	ForceUpdate uint64 `protobuf:"varint,9,opt,name=force_update,json=forceUpdate,proto3" json:"force_update,omitempty"`
+	// ResourceReferences provides a generic way to specify resources that
+	// are used by this task, and should be sent down to agents along with
+	// the task. Inside the runtime field there may be more specific
+	// information about how to use the resource, but ResourceReferences
+	// establishes the relationship at the store level, and instructs the
+	// dispatcher to send the related objects.
+	//
+	// ResourceReferences is a list of ResourceReferences used by the task.
+	ResourceReferences []ResourceReference `protobuf:"bytes,11,rep,name=resource_references,json=resourceReferences" json:"resource_references"`
+}
+
+func (m *TaskSpec) Reset()                    { *m = TaskSpec{} }
+func (*TaskSpec) ProtoMessage()               {}
+func (*TaskSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{4} }
+
+type isTaskSpec_Runtime interface {
+	isTaskSpec_Runtime()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type TaskSpec_Attachment struct {
+	Attachment *NetworkAttachmentSpec `protobuf:"bytes,8,opt,name=attachment,oneof"`
+}
+type TaskSpec_Container struct {
+	Container *ContainerSpec `protobuf:"bytes,1,opt,name=container,oneof"`
+}
+type TaskSpec_Generic struct {
+	Generic *GenericRuntimeSpec `protobuf:"bytes,10,opt,name=generic,oneof"`
+}
+
+func (*TaskSpec_Attachment) isTaskSpec_Runtime() {}
+func (*TaskSpec_Container) isTaskSpec_Runtime()  {}
+func (*TaskSpec_Generic) isTaskSpec_Runtime()    {}
+
+func (m *TaskSpec) GetRuntime() isTaskSpec_Runtime {
+	if m != nil {
+		return m.Runtime
+	}
+	return nil
+}
+
+func (m *TaskSpec) GetAttachment() *NetworkAttachmentSpec {
+	if x, ok := m.GetRuntime().(*TaskSpec_Attachment); ok {
+		return x.Attachment
+	}
+	return nil
+}
+
+func (m *TaskSpec) GetContainer() *ContainerSpec {
+	if x, ok := m.GetRuntime().(*TaskSpec_Container); ok {
+		return x.Container
+	}
+	return nil
+}
+
+func (m *TaskSpec) GetGeneric() *GenericRuntimeSpec {
+	if x, ok := m.GetRuntime().(*TaskSpec_Generic); ok {
+		return x.Generic
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*TaskSpec) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _TaskSpec_OneofMarshaler, _TaskSpec_OneofUnmarshaler, _TaskSpec_OneofSizer, []interface{}{
+		(*TaskSpec_Attachment)(nil),
+		(*TaskSpec_Container)(nil),
+		(*TaskSpec_Generic)(nil),
+	}
+}
+
+func _TaskSpec_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*TaskSpec)
+	// runtime
+	switch x := m.Runtime.(type) {
+	case *TaskSpec_Attachment:
+		_ = b.EncodeVarint(8<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Attachment); err != nil {
+			return err
+		}
+	case *TaskSpec_Container:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Container); err != nil {
+			return err
+		}
+	case *TaskSpec_Generic:
+		_ = b.EncodeVarint(10<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Generic); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("TaskSpec.Runtime has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _TaskSpec_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*TaskSpec)
+	switch tag {
+	case 8: // runtime.attachment
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(NetworkAttachmentSpec)
+		err := b.DecodeMessage(msg)
+		m.Runtime = &TaskSpec_Attachment{msg}
+		return true, err
+	case 1: // runtime.container
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(ContainerSpec)
+		err := b.DecodeMessage(msg)
+		m.Runtime = &TaskSpec_Container{msg}
+		return true, err
+	case 10: // runtime.generic
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(GenericRuntimeSpec)
+		err := b.DecodeMessage(msg)
+		m.Runtime = &TaskSpec_Generic{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _TaskSpec_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*TaskSpec)
+	// runtime
+	switch x := m.Runtime.(type) {
+	case *TaskSpec_Attachment:
+		s := proto.Size(x.Attachment)
+		n += proto.SizeVarint(8<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *TaskSpec_Container:
+		s := proto.Size(x.Container)
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *TaskSpec_Generic:
+		s := proto.Size(x.Generic)
+		n += proto.SizeVarint(10<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+type ResourceReference struct {
+	ResourceID   string       `protobuf:"bytes,1,opt,name=resource_id,json=resourceId,proto3" json:"resource_id,omitempty"`
+	ResourceType ResourceType `protobuf:"varint,2,opt,name=resource_type,json=resourceType,proto3,enum=docker.swarmkit.v1.ResourceType" json:"resource_type,omitempty"`
+}
+
+func (m *ResourceReference) Reset()                    { *m = ResourceReference{} }
+func (*ResourceReference) ProtoMessage()               {}
+func (*ResourceReference) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{5} }
+
+type GenericRuntimeSpec struct {
+	Kind    string                `protobuf:"bytes,1,opt,name=kind,proto3" json:"kind,omitempty"`
+	Payload *google_protobuf3.Any `protobuf:"bytes,2,opt,name=payload" json:"payload,omitempty"`
+}
+
+func (m *GenericRuntimeSpec) Reset()                    { *m = GenericRuntimeSpec{} }
+func (*GenericRuntimeSpec) ProtoMessage()               {}
+func (*GenericRuntimeSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{6} }
+
+// NetworkAttachmentSpec specifies runtime parameters required to attach
+// a container to a network.
+type NetworkAttachmentSpec struct {
+	// ContainerID specifies a unique ID of the container for which
+	// this attachment is for.
+	ContainerID string `protobuf:"bytes,1,opt,name=container_id,json=containerId,proto3" json:"container_id,omitempty"`
+}
+
+func (m *NetworkAttachmentSpec) Reset()                    { *m = NetworkAttachmentSpec{} }
+func (*NetworkAttachmentSpec) ProtoMessage()               {}
+func (*NetworkAttachmentSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{7} }
+
+// Container specifies runtime parameters for a container.
+type ContainerSpec struct {
+	// image defines the image reference, as specified in the
+	// distribution/reference package. This may include a registry host, name,
+	// tag or digest.
+	//
+	// The field will be directly passed to the engine pulling. Well-behaved
+	// service definitions will used immutable references, either through tags
+	// that don't change or verifiable digests.
+	Image string `protobuf:"bytes,1,opt,name=image,proto3" json:"image,omitempty"`
+	// Labels defines labels to be added to the container at creation time. If
+	// collisions with system labels occur, these labels will be overridden.
+	//
+	// This field *must* remain compatible with the Labels field of
+	// Annotations.
+	Labels map[string]string `protobuf:"bytes,2,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// Command to run the the container. The first element is a path to the
+	// executable and the following elements are treated as arguments.
+	//
+	// If command is empty, execution will fall back to the image's entrypoint.
+	//
+	// Command should only be used when overriding entrypoint.
+	Command []string `protobuf:"bytes,3,rep,name=command" json:"command,omitempty"`
+	// Args specifies arguments provided to the image's entrypoint.
+	//
+	// If Command and Args are provided, Args will be appended to Command.
+	Args []string `protobuf:"bytes,4,rep,name=args" json:"args,omitempty"`
+	// Hostname specifies the hostname that will be set on containers created by docker swarm.
+	// All containers for a given service will have the same hostname
+	Hostname string `protobuf:"bytes,14,opt,name=hostname,proto3" json:"hostname,omitempty"`
+	// Env specifies the environment variables for the container in NAME=VALUE
+	// format. These must be compliant with  [IEEE Std
+	// 1003.1-2001](http://pubs.opengroup.org/onlinepubs/009695399/basedefs/xbd_chap08.html).
+	Env []string `protobuf:"bytes,5,rep,name=env" json:"env,omitempty"`
+	// Dir defines the working directory to set for the container process.
+	Dir string `protobuf:"bytes,6,opt,name=dir,proto3" json:"dir,omitempty"`
+	// User specifies the user that should be employed to run the container.
+	//
+	// Note that the primary group may be specified by appending the group name
+	// or id to the user name, separated by a `:`. This syntax is
+	// `<user>:<group>`.
+	User string `protobuf:"bytes,7,opt,name=user,proto3" json:"user,omitempty"`
+	// Groups specifies supplementary groups available to the user.
+	Groups []string `protobuf:"bytes,11,rep,name=groups" json:"groups,omitempty"`
+	// Privileges specifies security configuration/permissions.
+	Privileges *Privileges `protobuf:"bytes,22,opt,name=privileges" json:"privileges,omitempty"`
+	// Init declares that a custom init will be running inside the container, if null, use the daemon's configured settings
+	Init *google_protobuf4.BoolValue `protobuf:"bytes,23,opt,name=init" json:"init,omitempty"`
+	// TTY declares that a TTY should be attached to the standard streams,
+	// including stdin if it is still open.
+	TTY bool `protobuf:"varint,13,opt,name=tty,proto3" json:"tty,omitempty"`
+	// OpenStdin declares that the standard input (stdin) should be open.
+	OpenStdin bool `protobuf:"varint,18,opt,name=open_stdin,json=openStdin,proto3" json:"open_stdin,omitempty"`
+	// ReadOnly declares that the container root filesystem is read-only.
+	// This only impacts the root filesystem, not additional mounts (including
+	// tmpfs). For additional mounts that are not part of the initial rootfs,
+	// they will be decided by the modes passed in the mount definition.
+	ReadOnly bool `protobuf:"varint,19,opt,name=read_only,json=readOnly,proto3" json:"read_only,omitempty"`
+	// StopSignal defines the signal to stop the container.
+	StopSignal string  `protobuf:"bytes,20,opt,name=stop_signal,json=stopSignal,proto3" json:"stop_signal,omitempty"`
+	Mounts     []Mount `protobuf:"bytes,8,rep,name=mounts" json:"mounts"`
+	// StopGracePeriod the grace period for stopping the container before
+	// forcefully killing the container.
+	// Note: Can't use stdduration here because this needs to be nullable.
+	StopGracePeriod *google_protobuf1.Duration `protobuf:"bytes,9,opt,name=stop_grace_period,json=stopGracePeriod" json:"stop_grace_period,omitempty"`
+	// PullOptions parameterize the behavior of image pulls.
+	PullOptions *ContainerSpec_PullOptions `protobuf:"bytes,10,opt,name=pull_options,json=pullOptions" json:"pull_options,omitempty"`
+	// SecretReference contains references to zero or more secrets that
+	// will be exposed to the container.
+	Secrets []*SecretReference `protobuf:"bytes,12,rep,name=secrets" json:"secrets,omitempty"`
+	// ConfigReference contains references to zero or more configs that
+	// will be exposed to the container.
+	Configs []*ConfigReference `protobuf:"bytes,21,rep,name=configs" json:"configs,omitempty"`
+	// Hosts allow additional entries to be specified in /etc/hosts
+	// that associates IP addresses with hostnames.
+	// Detailed documentation is available in:
+	// http://man7.org/linux/man-pages/man5/hosts.5.html
+	//   IP_address canonical_hostname [aliases...]
+	//
+	// The format of the Hosts in swarmkit follows the same as
+	// above.
+	// This is different from `docker run --add-host <hostname>:<ip>`
+	// where format is `<hostname>:<ip>`
+	Hosts []string `protobuf:"bytes,17,rep,name=hosts" json:"hosts,omitempty"`
+	// DNSConfig allows one to specify DNS related configuration in resolv.conf
+	DNSConfig *ContainerSpec_DNSConfig `protobuf:"bytes,15,opt,name=dns_config,json=dnsConfig" json:"dns_config,omitempty"`
+	// Healthcheck describes how to check the container is healthy. If the
+	// container is considered unhealthy, it will be destroyed, its creating
+	// task will exit and a new task will be rescheduled elsewhere. A container
+	// is considered unhealthy after `Retries` number of consecutive failures.
+	Healthcheck *HealthConfig `protobuf:"bytes,16,opt,name=healthcheck" json:"healthcheck,omitempty"`
+	// Isolation defines the isolation level for windows containers (default, process, hyperv).
+	// Runtimes that don't support it ignore that field
+	Isolation ContainerSpec_Isolation `protobuf:"varint,24,opt,name=isolation,proto3,enum=docker.swarmkit.v1.ContainerSpec_Isolation" json:"isolation,omitempty"`
+	// PidsLimit prevents from OS resource damage by applications inside the container
+	// using fork bomb attack.
+	PidsLimit int64 `protobuf:"varint,25,opt,name=pidsLimit,proto3" json:"pidsLimit,omitempty"`
+}
+
+func (m *ContainerSpec) Reset()                    { *m = ContainerSpec{} }
+func (*ContainerSpec) ProtoMessage()               {}
+func (*ContainerSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{8} }
+
+// PullOptions allows one to parameterize an image pull.
+type ContainerSpec_PullOptions struct {
+	// RegistryAuth is the registry auth token obtained from the client, required
+	// to pull private images. This is the unmodified JSON used as part of
+	// the `X-Registry-Auth` header.
+	// TODO(nishanttotla): This field will later be deprecated
+	RegistryAuth string `protobuf:"bytes,64,opt,name=registry_auth,json=registryAuth,proto3" json:"registry_auth,omitempty"`
+}
+
+func (m *ContainerSpec_PullOptions) Reset()      { *m = ContainerSpec_PullOptions{} }
+func (*ContainerSpec_PullOptions) ProtoMessage() {}
+func (*ContainerSpec_PullOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptorSpecs, []int{8, 1}
+}
+
+// DNSConfig specifies DNS related configurations in resolver configuration file (resolv.conf)
+// Detailed documentation is available in:
+// http://man7.org/linux/man-pages/man5/resolv.conf.5.html
+// TODO: domain is not supported yet
+type ContainerSpec_DNSConfig struct {
+	// Nameservers specifies the IP addresses of the name servers
+	Nameservers []string `protobuf:"bytes,1,rep,name=nameservers" json:"nameservers,omitempty"`
+	// Search specifies the search list for host-name lookup
+	Search []string `protobuf:"bytes,2,rep,name=search" json:"search,omitempty"`
+	// Options allows certain internal resolver variables to be modified
+	Options []string `protobuf:"bytes,3,rep,name=options" json:"options,omitempty"`
+}
+
+func (m *ContainerSpec_DNSConfig) Reset()                    { *m = ContainerSpec_DNSConfig{} }
+func (*ContainerSpec_DNSConfig) ProtoMessage()               {}
+func (*ContainerSpec_DNSConfig) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{8, 2} }
+
+// EndpointSpec defines the properties that can be configured to
+// access and loadbalance the service.
+type EndpointSpec struct {
+	Mode EndpointSpec_ResolutionMode `protobuf:"varint,1,opt,name=mode,proto3,enum=docker.swarmkit.v1.EndpointSpec_ResolutionMode" json:"mode,omitempty"`
+	// List of exposed ports that this service is accessible from
+	// external to the cluster.
+	Ports []*PortConfig `protobuf:"bytes,2,rep,name=ports" json:"ports,omitempty"`
+}
+
+func (m *EndpointSpec) Reset()                    { *m = EndpointSpec{} }
+func (*EndpointSpec) ProtoMessage()               {}
+func (*EndpointSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{9} }
+
+// NetworkSpec specifies user defined network parameters.
+type NetworkSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// DriverConfig specific configuration consumed by the network driver.
+	DriverConfig *Driver `protobuf:"bytes,2,opt,name=driver_config,json=driverConfig" json:"driver_config,omitempty"`
+	// IPv6Enabled enables support for IPv6 on the network.
+	Ipv6Enabled bool `protobuf:"varint,3,opt,name=ipv6_enabled,json=ipv6Enabled,proto3" json:"ipv6_enabled,omitempty"`
+	// internal restricts external access to the network. This may be
+	// accomplished by disabling the default gateway or through other means.
+	Internal bool         `protobuf:"varint,4,opt,name=internal,proto3" json:"internal,omitempty"`
+	IPAM     *IPAMOptions `protobuf:"bytes,5,opt,name=ipam" json:"ipam,omitempty"`
+	// Attachable allows external(to swarm) entities to manually
+	// attach to this network. With this flag enabled, external
+	// entities such as containers running in an worker node in
+	// the cluster can manually attach to this network and access
+	// the services attached to this network. If this flag is not
+	// enabled(default case) no manual attachment to this network
+	// can happen.
+	Attachable bool `protobuf:"varint,6,opt,name=attachable,proto3" json:"attachable,omitempty"`
+	// Ingress indicates this network will provide the routing-mesh.
+	// In older versions, the network providing the routing mesh was
+	// swarm internally created only and it was identified by the name
+	// "ingress" and the label "com.docker.swarm.internal": "true".
+	Ingress bool `protobuf:"varint,7,opt,name=ingress,proto3" json:"ingress,omitempty"`
+	// ConfigFrom is the source of the configuration for this network.
+	//
+	// Types that are valid to be assigned to ConfigFrom:
+	//	*NetworkSpec_Network
+	ConfigFrom isNetworkSpec_ConfigFrom `protobuf_oneof:"config_from"`
+}
+
+func (m *NetworkSpec) Reset()                    { *m = NetworkSpec{} }
+func (*NetworkSpec) ProtoMessage()               {}
+func (*NetworkSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{10} }
+
+type isNetworkSpec_ConfigFrom interface {
+	isNetworkSpec_ConfigFrom()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type NetworkSpec_Network struct {
+	Network string `protobuf:"bytes,8,opt,name=network,proto3,oneof"`
+}
+
+func (*NetworkSpec_Network) isNetworkSpec_ConfigFrom() {}
+
+func (m *NetworkSpec) GetConfigFrom() isNetworkSpec_ConfigFrom {
+	if m != nil {
+		return m.ConfigFrom
+	}
+	return nil
+}
+
+func (m *NetworkSpec) GetNetwork() string {
+	if x, ok := m.GetConfigFrom().(*NetworkSpec_Network); ok {
+		return x.Network
+	}
+	return ""
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*NetworkSpec) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _NetworkSpec_OneofMarshaler, _NetworkSpec_OneofUnmarshaler, _NetworkSpec_OneofSizer, []interface{}{
+		(*NetworkSpec_Network)(nil),
+	}
+}
+
+func _NetworkSpec_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*NetworkSpec)
+	// config_from
+	switch x := m.ConfigFrom.(type) {
+	case *NetworkSpec_Network:
+		_ = b.EncodeVarint(8<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.Network)
+	case nil:
+	default:
+		return fmt.Errorf("NetworkSpec.ConfigFrom has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _NetworkSpec_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*NetworkSpec)
+	switch tag {
+	case 8: // config_from.network
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.ConfigFrom = &NetworkSpec_Network{x}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _NetworkSpec_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*NetworkSpec)
+	// config_from
+	switch x := m.ConfigFrom.(type) {
+	case *NetworkSpec_Network:
+		n += proto.SizeVarint(8<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.Network)))
+		n += len(x.Network)
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// ClusterSpec specifies global cluster settings.
+type ClusterSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// DEPRECATED: AcceptancePolicy defines the certificate issuance policy.
+	// Acceptance policy is no longer customizable, and secrets have been
+	// replaced with join tokens.
+	AcceptancePolicy AcceptancePolicy `protobuf:"bytes,2,opt,name=acceptance_policy,json=acceptancePolicy" json:"acceptance_policy"`
+	// Orchestration defines cluster-level orchestration settings.
+	Orchestration OrchestrationConfig `protobuf:"bytes,3,opt,name=orchestration" json:"orchestration"`
+	// Raft defines the cluster's raft settings.
+	Raft RaftConfig `protobuf:"bytes,4,opt,name=raft" json:"raft"`
+	// Dispatcher defines cluster-level dispatcher settings.
+	Dispatcher DispatcherConfig `protobuf:"bytes,5,opt,name=dispatcher" json:"dispatcher"`
+	// CAConfig defines cluster-level certificate authority settings.
+	CAConfig CAConfig `protobuf:"bytes,6,opt,name=ca_config,json=caConfig" json:"ca_config"`
+	// TaskDefaults specifies the default values to use for task creation.
+	TaskDefaults TaskDefaults `protobuf:"bytes,7,opt,name=task_defaults,json=taskDefaults" json:"task_defaults"`
+	// EncryptionConfig defines the cluster's encryption settings.
+	EncryptionConfig EncryptionConfig `protobuf:"bytes,8,opt,name=encryption_config,json=encryptionConfig" json:"encryption_config"`
+}
+
+func (m *ClusterSpec) Reset()                    { *m = ClusterSpec{} }
+func (*ClusterSpec) ProtoMessage()               {}
+func (*ClusterSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{11} }
+
+// SecretSpec specifies a user-provided secret.
+type SecretSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// Data is the secret payload - the maximum size is 500KB (that is, 500*1024 bytes)
+	Data []byte `protobuf:"bytes,2,opt,name=data,proto3" json:"data,omitempty"`
+	// Templating controls whether and how to evaluate the secret payload as
+	// a template. If it is not set, no templating is used.
+	//
+	// The currently recognized values are:
+	// - golang: Go templating
+	Templating *Driver `protobuf:"bytes,3,opt,name=templating" json:"templating,omitempty"`
+	// Driver is the the secret driver that is used to store the specified secret
+	Driver *Driver `protobuf:"bytes,4,opt,name=driver" json:"driver,omitempty"`
+}
+
+func (m *SecretSpec) Reset()                    { *m = SecretSpec{} }
+func (*SecretSpec) ProtoMessage()               {}
+func (*SecretSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{12} }
+
+// ConfigSpec specifies user-provided configuration files.
+type ConfigSpec struct {
+	Annotations Annotations `protobuf:"bytes,1,opt,name=annotations" json:"annotations"`
+	// Data is the config payload - the maximum size is 500KB (that is, 500*1024 bytes)
+	// TODO(aaronl): Do we want to revise this to include multiple payloads in a single
+	// ConfigSpec? Define this to be a tar? etc...
+	Data []byte `protobuf:"bytes,2,opt,name=data,proto3" json:"data,omitempty"`
+	// Templating controls whether and how to evaluate the secret payload as
+	// a template. If it is not set, no templating is used.
+	//
+	// The currently recognized values are:
+	// - golang: Go templating
+	Templating *Driver `protobuf:"bytes,3,opt,name=templating" json:"templating,omitempty"`
+}
+
+func (m *ConfigSpec) Reset()                    { *m = ConfigSpec{} }
+func (*ConfigSpec) ProtoMessage()               {}
+func (*ConfigSpec) Descriptor() ([]byte, []int) { return fileDescriptorSpecs, []int{13} }
+
+func init() {
+	proto.RegisterType((*NodeSpec)(nil), "docker.swarmkit.v1.NodeSpec")
+	proto.RegisterType((*ServiceSpec)(nil), "docker.swarmkit.v1.ServiceSpec")
+	proto.RegisterType((*ReplicatedService)(nil), "docker.swarmkit.v1.ReplicatedService")
+	proto.RegisterType((*GlobalService)(nil), "docker.swarmkit.v1.GlobalService")
+	proto.RegisterType((*TaskSpec)(nil), "docker.swarmkit.v1.TaskSpec")
+	proto.RegisterType((*ResourceReference)(nil), "docker.swarmkit.v1.ResourceReference")
+	proto.RegisterType((*GenericRuntimeSpec)(nil), "docker.swarmkit.v1.GenericRuntimeSpec")
+	proto.RegisterType((*NetworkAttachmentSpec)(nil), "docker.swarmkit.v1.NetworkAttachmentSpec")
+	proto.RegisterType((*ContainerSpec)(nil), "docker.swarmkit.v1.ContainerSpec")
+	proto.RegisterType((*ContainerSpec_PullOptions)(nil), "docker.swarmkit.v1.ContainerSpec.PullOptions")
+	proto.RegisterType((*ContainerSpec_DNSConfig)(nil), "docker.swarmkit.v1.ContainerSpec.DNSConfig")
+	proto.RegisterType((*EndpointSpec)(nil), "docker.swarmkit.v1.EndpointSpec")
+	proto.RegisterType((*NetworkSpec)(nil), "docker.swarmkit.v1.NetworkSpec")
+	proto.RegisterType((*ClusterSpec)(nil), "docker.swarmkit.v1.ClusterSpec")
+	proto.RegisterType((*SecretSpec)(nil), "docker.swarmkit.v1.SecretSpec")
+	proto.RegisterType((*ConfigSpec)(nil), "docker.swarmkit.v1.ConfigSpec")
+	proto.RegisterEnum("docker.swarmkit.v1.NodeSpec_Membership", NodeSpec_Membership_name, NodeSpec_Membership_value)
+	proto.RegisterEnum("docker.swarmkit.v1.NodeSpec_Availability", NodeSpec_Availability_name, NodeSpec_Availability_value)
+	proto.RegisterEnum("docker.swarmkit.v1.ContainerSpec_Isolation", ContainerSpec_Isolation_name, ContainerSpec_Isolation_value)
+	proto.RegisterEnum("docker.swarmkit.v1.EndpointSpec_ResolutionMode", EndpointSpec_ResolutionMode_name, EndpointSpec_ResolutionMode_value)
+}
+
+func (m *NodeSpec) Copy() *NodeSpec {
+	if m == nil {
+		return nil
+	}
+	o := &NodeSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeSpec) CopyFrom(src interface{}) {
+
+	o := src.(*NodeSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+}
+
+func (m *ServiceSpec) Copy() *ServiceSpec {
+	if m == nil {
+		return nil
+	}
+	o := &ServiceSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ServiceSpec) CopyFrom(src interface{}) {
+
+	o := src.(*ServiceSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Task, &o.Task)
+	if o.Update != nil {
+		m.Update = &UpdateConfig{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Update, o.Update)
+	}
+	if o.Rollback != nil {
+		m.Rollback = &UpdateConfig{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Rollback, o.Rollback)
+	}
+	if o.Networks != nil {
+		m.Networks = make([]*NetworkAttachmentConfig, len(o.Networks))
+		for i := range m.Networks {
+			m.Networks[i] = &NetworkAttachmentConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Networks[i], o.Networks[i])
+		}
+	}
+
+	if o.Endpoint != nil {
+		m.Endpoint = &EndpointSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Endpoint, o.Endpoint)
+	}
+	if o.Mode != nil {
+		switch o.Mode.(type) {
+		case *ServiceSpec_Replicated:
+			v := ServiceSpec_Replicated{
+				Replicated: &ReplicatedService{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Replicated, o.GetReplicated())
+			m.Mode = &v
+		case *ServiceSpec_Global:
+			v := ServiceSpec_Global{
+				Global: &GlobalService{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Global, o.GetGlobal())
+			m.Mode = &v
+		}
+	}
+
+}
+
+func (m *ReplicatedService) Copy() *ReplicatedService {
+	if m == nil {
+		return nil
+	}
+	o := &ReplicatedService{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ReplicatedService) CopyFrom(src interface{}) {
+
+	o := src.(*ReplicatedService)
+	*m = *o
+}
+
+func (m *GlobalService) Copy() *GlobalService {
+	if m == nil {
+		return nil
+	}
+	o := &GlobalService{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GlobalService) CopyFrom(src interface{}) {}
+func (m *TaskSpec) Copy() *TaskSpec {
+	if m == nil {
+		return nil
+	}
+	o := &TaskSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TaskSpec) CopyFrom(src interface{}) {
+
+	o := src.(*TaskSpec)
+	*m = *o
+	if o.Resources != nil {
+		m.Resources = &ResourceRequirements{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Resources, o.Resources)
+	}
+	if o.Restart != nil {
+		m.Restart = &RestartPolicy{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Restart, o.Restart)
+	}
+	if o.Placement != nil {
+		m.Placement = &Placement{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Placement, o.Placement)
+	}
+	if o.LogDriver != nil {
+		m.LogDriver = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.LogDriver, o.LogDriver)
+	}
+	if o.Networks != nil {
+		m.Networks = make([]*NetworkAttachmentConfig, len(o.Networks))
+		for i := range m.Networks {
+			m.Networks[i] = &NetworkAttachmentConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Networks[i], o.Networks[i])
+		}
+	}
+
+	if o.ResourceReferences != nil {
+		m.ResourceReferences = make([]ResourceReference, len(o.ResourceReferences))
+		for i := range m.ResourceReferences {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.ResourceReferences[i], &o.ResourceReferences[i])
+		}
+	}
+
+	if o.Runtime != nil {
+		switch o.Runtime.(type) {
+		case *TaskSpec_Attachment:
+			v := TaskSpec_Attachment{
+				Attachment: &NetworkAttachmentSpec{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Attachment, o.GetAttachment())
+			m.Runtime = &v
+		case *TaskSpec_Container:
+			v := TaskSpec_Container{
+				Container: &ContainerSpec{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Container, o.GetContainer())
+			m.Runtime = &v
+		case *TaskSpec_Generic:
+			v := TaskSpec_Generic{
+				Generic: &GenericRuntimeSpec{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Generic, o.GetGeneric())
+			m.Runtime = &v
+		}
+	}
+
+}
+
+func (m *ResourceReference) Copy() *ResourceReference {
+	if m == nil {
+		return nil
+	}
+	o := &ResourceReference{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ResourceReference) CopyFrom(src interface{}) {
+
+	o := src.(*ResourceReference)
+	*m = *o
+}
+
+func (m *GenericRuntimeSpec) Copy() *GenericRuntimeSpec {
+	if m == nil {
+		return nil
+	}
+	o := &GenericRuntimeSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GenericRuntimeSpec) CopyFrom(src interface{}) {
+
+	o := src.(*GenericRuntimeSpec)
+	*m = *o
+	if o.Payload != nil {
+		m.Payload = &google_protobuf3.Any{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Payload, o.Payload)
+	}
+}
+
+func (m *NetworkAttachmentSpec) Copy() *NetworkAttachmentSpec {
+	if m == nil {
+		return nil
+	}
+	o := &NetworkAttachmentSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NetworkAttachmentSpec) CopyFrom(src interface{}) {
+
+	o := src.(*NetworkAttachmentSpec)
+	*m = *o
+}
+
+func (m *ContainerSpec) Copy() *ContainerSpec {
+	if m == nil {
+		return nil
+	}
+	o := &ContainerSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ContainerSpec) CopyFrom(src interface{}) {
+
+	o := src.(*ContainerSpec)
+	*m = *o
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.Command != nil {
+		m.Command = make([]string, len(o.Command))
+		copy(m.Command, o.Command)
+	}
+
+	if o.Args != nil {
+		m.Args = make([]string, len(o.Args))
+		copy(m.Args, o.Args)
+	}
+
+	if o.Env != nil {
+		m.Env = make([]string, len(o.Env))
+		copy(m.Env, o.Env)
+	}
+
+	if o.Groups != nil {
+		m.Groups = make([]string, len(o.Groups))
+		copy(m.Groups, o.Groups)
+	}
+
+	if o.Privileges != nil {
+		m.Privileges = &Privileges{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Privileges, o.Privileges)
+	}
+	if o.Init != nil {
+		m.Init = &google_protobuf4.BoolValue{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Init, o.Init)
+	}
+	if o.Mounts != nil {
+		m.Mounts = make([]Mount, len(o.Mounts))
+		for i := range m.Mounts {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Mounts[i], &o.Mounts[i])
+		}
+	}
+
+	if o.StopGracePeriod != nil {
+		m.StopGracePeriod = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.StopGracePeriod, o.StopGracePeriod)
+	}
+	if o.PullOptions != nil {
+		m.PullOptions = &ContainerSpec_PullOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.PullOptions, o.PullOptions)
+	}
+	if o.Secrets != nil {
+		m.Secrets = make([]*SecretReference, len(o.Secrets))
+		for i := range m.Secrets {
+			m.Secrets[i] = &SecretReference{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Secrets[i], o.Secrets[i])
+		}
+	}
+
+	if o.Configs != nil {
+		m.Configs = make([]*ConfigReference, len(o.Configs))
+		for i := range m.Configs {
+			m.Configs[i] = &ConfigReference{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Configs[i], o.Configs[i])
+		}
+	}
+
+	if o.Hosts != nil {
+		m.Hosts = make([]string, len(o.Hosts))
+		copy(m.Hosts, o.Hosts)
+	}
+
+	if o.DNSConfig != nil {
+		m.DNSConfig = &ContainerSpec_DNSConfig{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.DNSConfig, o.DNSConfig)
+	}
+	if o.Healthcheck != nil {
+		m.Healthcheck = &HealthConfig{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Healthcheck, o.Healthcheck)
+	}
+}
+
+func (m *ContainerSpec_PullOptions) Copy() *ContainerSpec_PullOptions {
+	if m == nil {
+		return nil
+	}
+	o := &ContainerSpec_PullOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ContainerSpec_PullOptions) CopyFrom(src interface{}) {
+
+	o := src.(*ContainerSpec_PullOptions)
+	*m = *o
+}
+
+func (m *ContainerSpec_DNSConfig) Copy() *ContainerSpec_DNSConfig {
+	if m == nil {
+		return nil
+	}
+	o := &ContainerSpec_DNSConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ContainerSpec_DNSConfig) CopyFrom(src interface{}) {
+
+	o := src.(*ContainerSpec_DNSConfig)
+	*m = *o
+	if o.Nameservers != nil {
+		m.Nameservers = make([]string, len(o.Nameservers))
+		copy(m.Nameservers, o.Nameservers)
+	}
+
+	if o.Search != nil {
+		m.Search = make([]string, len(o.Search))
+		copy(m.Search, o.Search)
+	}
+
+	if o.Options != nil {
+		m.Options = make([]string, len(o.Options))
+		copy(m.Options, o.Options)
+	}
+
+}
+
+func (m *EndpointSpec) Copy() *EndpointSpec {
+	if m == nil {
+		return nil
+	}
+	o := &EndpointSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *EndpointSpec) CopyFrom(src interface{}) {
+
+	o := src.(*EndpointSpec)
+	*m = *o
+	if o.Ports != nil {
+		m.Ports = make([]*PortConfig, len(o.Ports))
+		for i := range m.Ports {
+			m.Ports[i] = &PortConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Ports[i], o.Ports[i])
+		}
+	}
+
+}
+
+func (m *NetworkSpec) Copy() *NetworkSpec {
+	if m == nil {
+		return nil
+	}
+	o := &NetworkSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NetworkSpec) CopyFrom(src interface{}) {
+
+	o := src.(*NetworkSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	if o.DriverConfig != nil {
+		m.DriverConfig = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.DriverConfig, o.DriverConfig)
+	}
+	if o.IPAM != nil {
+		m.IPAM = &IPAMOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.IPAM, o.IPAM)
+	}
+	if o.ConfigFrom != nil {
+		switch o.ConfigFrom.(type) {
+		case *NetworkSpec_Network:
+			v := NetworkSpec_Network{
+				Network: o.GetNetwork(),
+			}
+			m.ConfigFrom = &v
+		}
+	}
+
+}
+
+func (m *ClusterSpec) Copy() *ClusterSpec {
+	if m == nil {
+		return nil
+	}
+	o := &ClusterSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ClusterSpec) CopyFrom(src interface{}) {
+
+	o := src.(*ClusterSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.AcceptancePolicy, &o.AcceptancePolicy)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Orchestration, &o.Orchestration)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Raft, &o.Raft)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Dispatcher, &o.Dispatcher)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.CAConfig, &o.CAConfig)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.TaskDefaults, &o.TaskDefaults)
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.EncryptionConfig, &o.EncryptionConfig)
+}
+
+func (m *SecretSpec) Copy() *SecretSpec {
+	if m == nil {
+		return nil
+	}
+	o := &SecretSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SecretSpec) CopyFrom(src interface{}) {
+
+	o := src.(*SecretSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	if o.Data != nil {
+		m.Data = make([]byte, len(o.Data))
+		copy(m.Data, o.Data)
+	}
+	if o.Templating != nil {
+		m.Templating = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Templating, o.Templating)
+	}
+	if o.Driver != nil {
+		m.Driver = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Driver, o.Driver)
+	}
+}
+
+func (m *ConfigSpec) Copy() *ConfigSpec {
+	if m == nil {
+		return nil
+	}
+	o := &ConfigSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ConfigSpec) CopyFrom(src interface{}) {
+
+	o := src.(*ConfigSpec)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Annotations, &o.Annotations)
+	if o.Data != nil {
+		m.Data = make([]byte, len(o.Data))
+		copy(m.Data, o.Data)
+	}
+	if o.Templating != nil {
+		m.Templating = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Templating, o.Templating)
+	}
+}
+
+func (m *NodeSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n1, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n1
+	if m.DesiredRole != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.DesiredRole))
+	}
+	if m.Membership != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Membership))
+	}
+	if m.Availability != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Availability))
+	}
+	return i, nil
+}
+
+func (m *ServiceSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ServiceSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n2, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n2
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Task.Size()))
+	n3, err := m.Task.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n3
+	if m.Mode != nil {
+		nn4, err := m.Mode.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn4
+	}
+	if m.Update != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Update.Size()))
+		n5, err := m.Update.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n5
+	}
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0x3a
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Endpoint != nil {
+		dAtA[i] = 0x42
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Endpoint.Size()))
+		n6, err := m.Endpoint.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	if m.Rollback != nil {
+		dAtA[i] = 0x4a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Rollback.Size()))
+		n7, err := m.Rollback.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	return i, nil
+}
+
+func (m *ServiceSpec_Replicated) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Replicated != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Replicated.Size()))
+		n8, err := m.Replicated.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	return i, nil
+}
+func (m *ServiceSpec_Global) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Global != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Global.Size()))
+		n9, err := m.Global.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	return i, nil
+}
+func (m *ReplicatedService) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ReplicatedService) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Replicas != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Replicas))
+	}
+	return i, nil
+}
+
+func (m *GlobalService) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GlobalService) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func (m *TaskSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TaskSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Runtime != nil {
+		nn10, err := m.Runtime.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn10
+	}
+	if m.Resources != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Resources.Size()))
+		n11, err := m.Resources.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n11
+	}
+	if m.Restart != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Restart.Size()))
+		n12, err := m.Restart.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n12
+	}
+	if m.Placement != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Placement.Size()))
+		n13, err := m.Placement.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	if m.LogDriver != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.LogDriver.Size()))
+		n14, err := m.LogDriver.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	if len(m.Networks) > 0 {
+		for _, msg := range m.Networks {
+			dAtA[i] = 0x3a
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.ForceUpdate != 0 {
+		dAtA[i] = 0x48
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.ForceUpdate))
+	}
+	if len(m.ResourceReferences) > 0 {
+		for _, msg := range m.ResourceReferences {
+			dAtA[i] = 0x5a
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *TaskSpec_Container) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Container != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Container.Size()))
+		n15, err := m.Container.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n15
+	}
+	return i, nil
+}
+func (m *TaskSpec_Attachment) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Attachment != nil {
+		dAtA[i] = 0x42
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Attachment.Size()))
+		n16, err := m.Attachment.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n16
+	}
+	return i, nil
+}
+func (m *TaskSpec_Generic) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Generic != nil {
+		dAtA[i] = 0x52
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Generic.Size()))
+		n17, err := m.Generic.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n17
+	}
+	return i, nil
+}
+func (m *ResourceReference) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ResourceReference) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ResourceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.ResourceID)))
+		i += copy(dAtA[i:], m.ResourceID)
+	}
+	if m.ResourceType != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.ResourceType))
+	}
+	return i, nil
+}
+
+func (m *GenericRuntimeSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GenericRuntimeSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if m.Payload != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Payload.Size()))
+		n18, err := m.Payload.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n18
+	}
+	return i, nil
+}
+
+func (m *NetworkAttachmentSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkAttachmentSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ContainerID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.ContainerID)))
+		i += copy(dAtA[i:], m.ContainerID)
+	}
+	return i, nil
+}
+
+func (m *ContainerSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ContainerSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Image) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Image)))
+		i += copy(dAtA[i:], m.Image)
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x12
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovSpecs(uint64(len(k))) + 1 + len(v) + sovSpecs(uint64(len(v)))
+			i = encodeVarintSpecs(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.Command) > 0 {
+		for _, s := range m.Command {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Args) > 0 {
+		for _, s := range m.Args {
+			dAtA[i] = 0x22
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Env) > 0 {
+		for _, s := range m.Env {
+			dAtA[i] = 0x2a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Dir) > 0 {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Dir)))
+		i += copy(dAtA[i:], m.Dir)
+	}
+	if len(m.User) > 0 {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.User)))
+		i += copy(dAtA[i:], m.User)
+	}
+	if len(m.Mounts) > 0 {
+		for _, msg := range m.Mounts {
+			dAtA[i] = 0x42
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.StopGracePeriod != nil {
+		dAtA[i] = 0x4a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.StopGracePeriod.Size()))
+		n19, err := m.StopGracePeriod.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n19
+	}
+	if m.PullOptions != nil {
+		dAtA[i] = 0x52
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.PullOptions.Size()))
+		n20, err := m.PullOptions.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n20
+	}
+	if len(m.Groups) > 0 {
+		for _, s := range m.Groups {
+			dAtA[i] = 0x5a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Secrets) > 0 {
+		for _, msg := range m.Secrets {
+			dAtA[i] = 0x62
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.TTY {
+		dAtA[i] = 0x68
+		i++
+		if m.TTY {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.Hostname) > 0 {
+		dAtA[i] = 0x72
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Hostname)))
+		i += copy(dAtA[i:], m.Hostname)
+	}
+	if m.DNSConfig != nil {
+		dAtA[i] = 0x7a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.DNSConfig.Size()))
+		n21, err := m.DNSConfig.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n21
+	}
+	if m.Healthcheck != nil {
+		dAtA[i] = 0x82
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Healthcheck.Size()))
+		n22, err := m.Healthcheck.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n22
+	}
+	if len(m.Hosts) > 0 {
+		for _, s := range m.Hosts {
+			dAtA[i] = 0x8a
+			i++
+			dAtA[i] = 0x1
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if m.OpenStdin {
+		dAtA[i] = 0x90
+		i++
+		dAtA[i] = 0x1
+		i++
+		if m.OpenStdin {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.ReadOnly {
+		dAtA[i] = 0x98
+		i++
+		dAtA[i] = 0x1
+		i++
+		if m.ReadOnly {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.StopSignal) > 0 {
+		dAtA[i] = 0xa2
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.StopSignal)))
+		i += copy(dAtA[i:], m.StopSignal)
+	}
+	if len(m.Configs) > 0 {
+		for _, msg := range m.Configs {
+			dAtA[i] = 0xaa
+			i++
+			dAtA[i] = 0x1
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Privileges != nil {
+		dAtA[i] = 0xb2
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Privileges.Size()))
+		n23, err := m.Privileges.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n23
+	}
+	if m.Init != nil {
+		dAtA[i] = 0xba
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Init.Size()))
+		n24, err := m.Init.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n24
+	}
+	if m.Isolation != 0 {
+		dAtA[i] = 0xc0
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Isolation))
+	}
+	if m.PidsLimit != 0 {
+		dAtA[i] = 0xc8
+		i++
+		dAtA[i] = 0x1
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.PidsLimit))
+	}
+	return i, nil
+}
+
+func (m *ContainerSpec_PullOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ContainerSpec_PullOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.RegistryAuth) > 0 {
+		dAtA[i] = 0x82
+		i++
+		dAtA[i] = 0x4
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.RegistryAuth)))
+		i += copy(dAtA[i:], m.RegistryAuth)
+	}
+	return i, nil
+}
+
+func (m *ContainerSpec_DNSConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ContainerSpec_DNSConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Nameservers) > 0 {
+		for _, s := range m.Nameservers {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Search) > 0 {
+		for _, s := range m.Search {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Options) > 0 {
+		for _, s := range m.Options {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func (m *EndpointSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *EndpointSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Mode != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Mode))
+	}
+	if len(m.Ports) > 0 {
+		for _, msg := range m.Ports {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintSpecs(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *NetworkSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n25, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n25
+	if m.DriverConfig != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.DriverConfig.Size()))
+		n26, err := m.DriverConfig.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n26
+	}
+	if m.Ipv6Enabled {
+		dAtA[i] = 0x18
+		i++
+		if m.Ipv6Enabled {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Internal {
+		dAtA[i] = 0x20
+		i++
+		if m.Internal {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.IPAM != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.IPAM.Size()))
+		n27, err := m.IPAM.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n27
+	}
+	if m.Attachable {
+		dAtA[i] = 0x30
+		i++
+		if m.Attachable {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Ingress {
+		dAtA[i] = 0x38
+		i++
+		if m.Ingress {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.ConfigFrom != nil {
+		nn28, err := m.ConfigFrom.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn28
+	}
+	return i, nil
+}
+
+func (m *NetworkSpec_Network) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x42
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(len(m.Network)))
+	i += copy(dAtA[i:], m.Network)
+	return i, nil
+}
+func (m *ClusterSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ClusterSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n29, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n29
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.AcceptancePolicy.Size()))
+	n30, err := m.AcceptancePolicy.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n30
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Orchestration.Size()))
+	n31, err := m.Orchestration.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n31
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Raft.Size()))
+	n32, err := m.Raft.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n32
+	dAtA[i] = 0x2a
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Dispatcher.Size()))
+	n33, err := m.Dispatcher.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n33
+	dAtA[i] = 0x32
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.CAConfig.Size()))
+	n34, err := m.CAConfig.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n34
+	dAtA[i] = 0x3a
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.TaskDefaults.Size()))
+	n35, err := m.TaskDefaults.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n35
+	dAtA[i] = 0x42
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.EncryptionConfig.Size()))
+	n36, err := m.EncryptionConfig.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n36
+	return i, nil
+}
+
+func (m *SecretSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SecretSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n37, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n37
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if m.Templating != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Templating.Size()))
+		n38, err := m.Templating.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n38
+	}
+	if m.Driver != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Driver.Size()))
+		n39, err := m.Driver.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n39
+	}
+	return i, nil
+}
+
+func (m *ConfigSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ConfigSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintSpecs(dAtA, i, uint64(m.Annotations.Size()))
+	n40, err := m.Annotations.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n40
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if m.Templating != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintSpecs(dAtA, i, uint64(m.Templating.Size()))
+		n41, err := m.Templating.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n41
+	}
+	return i, nil
+}
+
+func encodeFixed64Specs(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Specs(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintSpecs(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+func (m *NodeSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	if m.DesiredRole != 0 {
+		n += 1 + sovSpecs(uint64(m.DesiredRole))
+	}
+	if m.Membership != 0 {
+		n += 1 + sovSpecs(uint64(m.Membership))
+	}
+	if m.Availability != 0 {
+		n += 1 + sovSpecs(uint64(m.Availability))
+	}
+	return n
+}
+
+func (m *ServiceSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.Task.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	if m.Mode != nil {
+		n += m.Mode.Size()
+	}
+	if m.Update != nil {
+		l = m.Update.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.Endpoint != nil {
+		l = m.Endpoint.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Rollback != nil {
+		l = m.Rollback.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func (m *ServiceSpec_Replicated) Size() (n int) {
+	var l int
+	_ = l
+	if m.Replicated != nil {
+		l = m.Replicated.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+func (m *ServiceSpec_Global) Size() (n int) {
+	var l int
+	_ = l
+	if m.Global != nil {
+		l = m.Global.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+func (m *ReplicatedService) Size() (n int) {
+	var l int
+	_ = l
+	if m.Replicas != 0 {
+		n += 1 + sovSpecs(uint64(m.Replicas))
+	}
+	return n
+}
+
+func (m *GlobalService) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func (m *TaskSpec) Size() (n int) {
+	var l int
+	_ = l
+	if m.Runtime != nil {
+		n += m.Runtime.Size()
+	}
+	if m.Resources != nil {
+		l = m.Resources.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Restart != nil {
+		l = m.Restart.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Placement != nil {
+		l = m.Placement.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.LogDriver != nil {
+		l = m.LogDriver.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Networks) > 0 {
+		for _, e := range m.Networks {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.ForceUpdate != 0 {
+		n += 1 + sovSpecs(uint64(m.ForceUpdate))
+	}
+	if len(m.ResourceReferences) > 0 {
+		for _, e := range m.ResourceReferences {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *TaskSpec_Container) Size() (n int) {
+	var l int
+	_ = l
+	if m.Container != nil {
+		l = m.Container.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+func (m *TaskSpec_Attachment) Size() (n int) {
+	var l int
+	_ = l
+	if m.Attachment != nil {
+		l = m.Attachment.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+func (m *TaskSpec_Generic) Size() (n int) {
+	var l int
+	_ = l
+	if m.Generic != nil {
+		l = m.Generic.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+func (m *ResourceReference) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ResourceID)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.ResourceType != 0 {
+		n += 1 + sovSpecs(uint64(m.ResourceType))
+	}
+	return n
+}
+
+func (m *GenericRuntimeSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Payload != nil {
+		l = m.Payload.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func (m *NetworkAttachmentSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ContainerID)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func (m *ContainerSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Image)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovSpecs(uint64(len(k))) + 1 + len(v) + sovSpecs(uint64(len(v)))
+			n += mapEntrySize + 1 + sovSpecs(uint64(mapEntrySize))
+		}
+	}
+	if len(m.Command) > 0 {
+		for _, s := range m.Command {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if len(m.Args) > 0 {
+		for _, s := range m.Args {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if len(m.Env) > 0 {
+		for _, s := range m.Env {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	l = len(m.Dir)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	l = len(m.User)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Mounts) > 0 {
+		for _, e := range m.Mounts {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.StopGracePeriod != nil {
+		l = m.StopGracePeriod.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.PullOptions != nil {
+		l = m.PullOptions.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Groups) > 0 {
+		for _, s := range m.Groups {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if len(m.Secrets) > 0 {
+		for _, e := range m.Secrets {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.TTY {
+		n += 2
+	}
+	l = len(m.Hostname)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.DNSConfig != nil {
+		l = m.DNSConfig.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Healthcheck != nil {
+		l = m.Healthcheck.Size()
+		n += 2 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Hosts) > 0 {
+		for _, s := range m.Hosts {
+			l = len(s)
+			n += 2 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.OpenStdin {
+		n += 3
+	}
+	if m.ReadOnly {
+		n += 3
+	}
+	l = len(m.StopSignal)
+	if l > 0 {
+		n += 2 + l + sovSpecs(uint64(l))
+	}
+	if len(m.Configs) > 0 {
+		for _, e := range m.Configs {
+			l = e.Size()
+			n += 2 + l + sovSpecs(uint64(l))
+		}
+	}
+	if m.Privileges != nil {
+		l = m.Privileges.Size()
+		n += 2 + l + sovSpecs(uint64(l))
+	}
+	if m.Init != nil {
+		l = m.Init.Size()
+		n += 2 + l + sovSpecs(uint64(l))
+	}
+	if m.Isolation != 0 {
+		n += 2 + sovSpecs(uint64(m.Isolation))
+	}
+	if m.PidsLimit != 0 {
+		n += 2 + sovSpecs(uint64(m.PidsLimit))
+	}
+	return n
+}
+
+func (m *ContainerSpec_PullOptions) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.RegistryAuth)
+	if l > 0 {
+		n += 2 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func (m *ContainerSpec_DNSConfig) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Nameservers) > 0 {
+		for _, s := range m.Nameservers {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if len(m.Search) > 0 {
+		for _, s := range m.Search {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	if len(m.Options) > 0 {
+		for _, s := range m.Options {
+			l = len(s)
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *EndpointSpec) Size() (n int) {
+	var l int
+	_ = l
+	if m.Mode != 0 {
+		n += 1 + sovSpecs(uint64(m.Mode))
+	}
+	if len(m.Ports) > 0 {
+		for _, e := range m.Ports {
+			l = e.Size()
+			n += 1 + l + sovSpecs(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *NetworkSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	if m.DriverConfig != nil {
+		l = m.DriverConfig.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Ipv6Enabled {
+		n += 2
+	}
+	if m.Internal {
+		n += 2
+	}
+	if m.IPAM != nil {
+		l = m.IPAM.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Attachable {
+		n += 2
+	}
+	if m.Ingress {
+		n += 2
+	}
+	if m.ConfigFrom != nil {
+		n += m.ConfigFrom.Size()
+	}
+	return n
+}
+
+func (m *NetworkSpec_Network) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Network)
+	n += 1 + l + sovSpecs(uint64(l))
+	return n
+}
+func (m *ClusterSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.AcceptancePolicy.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.Orchestration.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.Raft.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.Dispatcher.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.CAConfig.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.TaskDefaults.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = m.EncryptionConfig.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	return n
+}
+
+func (m *SecretSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Templating != nil {
+		l = m.Templating.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Driver != nil {
+		l = m.Driver.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func (m *ConfigSpec) Size() (n int) {
+	var l int
+	_ = l
+	l = m.Annotations.Size()
+	n += 1 + l + sovSpecs(uint64(l))
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	if m.Templating != nil {
+		l = m.Templating.Size()
+		n += 1 + l + sovSpecs(uint64(l))
+	}
+	return n
+}
+
+func sovSpecs(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozSpecs(x uint64) (n int) {
+	return sovSpecs(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *NodeSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`DesiredRole:` + fmt.Sprintf("%v", this.DesiredRole) + `,`,
+		`Membership:` + fmt.Sprintf("%v", this.Membership) + `,`,
+		`Availability:` + fmt.Sprintf("%v", this.Availability) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ServiceSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ServiceSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Task:` + strings.Replace(strings.Replace(this.Task.String(), "TaskSpec", "TaskSpec", 1), `&`, ``, 1) + `,`,
+		`Mode:` + fmt.Sprintf("%v", this.Mode) + `,`,
+		`Update:` + strings.Replace(fmt.Sprintf("%v", this.Update), "UpdateConfig", "UpdateConfig", 1) + `,`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "NetworkAttachmentConfig", "NetworkAttachmentConfig", 1) + `,`,
+		`Endpoint:` + strings.Replace(fmt.Sprintf("%v", this.Endpoint), "EndpointSpec", "EndpointSpec", 1) + `,`,
+		`Rollback:` + strings.Replace(fmt.Sprintf("%v", this.Rollback), "UpdateConfig", "UpdateConfig", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ServiceSpec_Replicated) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ServiceSpec_Replicated{`,
+		`Replicated:` + strings.Replace(fmt.Sprintf("%v", this.Replicated), "ReplicatedService", "ReplicatedService", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ServiceSpec_Global) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ServiceSpec_Global{`,
+		`Global:` + strings.Replace(fmt.Sprintf("%v", this.Global), "GlobalService", "GlobalService", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ReplicatedService) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ReplicatedService{`,
+		`Replicas:` + fmt.Sprintf("%v", this.Replicas) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GlobalService) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GlobalService{`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskSpec{`,
+		`Runtime:` + fmt.Sprintf("%v", this.Runtime) + `,`,
+		`Resources:` + strings.Replace(fmt.Sprintf("%v", this.Resources), "ResourceRequirements", "ResourceRequirements", 1) + `,`,
+		`Restart:` + strings.Replace(fmt.Sprintf("%v", this.Restart), "RestartPolicy", "RestartPolicy", 1) + `,`,
+		`Placement:` + strings.Replace(fmt.Sprintf("%v", this.Placement), "Placement", "Placement", 1) + `,`,
+		`LogDriver:` + strings.Replace(fmt.Sprintf("%v", this.LogDriver), "Driver", "Driver", 1) + `,`,
+		`Networks:` + strings.Replace(fmt.Sprintf("%v", this.Networks), "NetworkAttachmentConfig", "NetworkAttachmentConfig", 1) + `,`,
+		`ForceUpdate:` + fmt.Sprintf("%v", this.ForceUpdate) + `,`,
+		`ResourceReferences:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.ResourceReferences), "ResourceReference", "ResourceReference", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskSpec_Container) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskSpec_Container{`,
+		`Container:` + strings.Replace(fmt.Sprintf("%v", this.Container), "ContainerSpec", "ContainerSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskSpec_Attachment) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskSpec_Attachment{`,
+		`Attachment:` + strings.Replace(fmt.Sprintf("%v", this.Attachment), "NetworkAttachmentSpec", "NetworkAttachmentSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskSpec_Generic) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskSpec_Generic{`,
+		`Generic:` + strings.Replace(fmt.Sprintf("%v", this.Generic), "GenericRuntimeSpec", "GenericRuntimeSpec", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ResourceReference) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ResourceReference{`,
+		`ResourceID:` + fmt.Sprintf("%v", this.ResourceID) + `,`,
+		`ResourceType:` + fmt.Sprintf("%v", this.ResourceType) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GenericRuntimeSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GenericRuntimeSpec{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Payload:` + strings.Replace(fmt.Sprintf("%v", this.Payload), "Any", "google_protobuf3.Any", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkAttachmentSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkAttachmentSpec{`,
+		`ContainerID:` + fmt.Sprintf("%v", this.ContainerID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ContainerSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&ContainerSpec{`,
+		`Image:` + fmt.Sprintf("%v", this.Image) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`Command:` + fmt.Sprintf("%v", this.Command) + `,`,
+		`Args:` + fmt.Sprintf("%v", this.Args) + `,`,
+		`Env:` + fmt.Sprintf("%v", this.Env) + `,`,
+		`Dir:` + fmt.Sprintf("%v", this.Dir) + `,`,
+		`User:` + fmt.Sprintf("%v", this.User) + `,`,
+		`Mounts:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Mounts), "Mount", "Mount", 1), `&`, ``, 1) + `,`,
+		`StopGracePeriod:` + strings.Replace(fmt.Sprintf("%v", this.StopGracePeriod), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`PullOptions:` + strings.Replace(fmt.Sprintf("%v", this.PullOptions), "ContainerSpec_PullOptions", "ContainerSpec_PullOptions", 1) + `,`,
+		`Groups:` + fmt.Sprintf("%v", this.Groups) + `,`,
+		`Secrets:` + strings.Replace(fmt.Sprintf("%v", this.Secrets), "SecretReference", "SecretReference", 1) + `,`,
+		`TTY:` + fmt.Sprintf("%v", this.TTY) + `,`,
+		`Hostname:` + fmt.Sprintf("%v", this.Hostname) + `,`,
+		`DNSConfig:` + strings.Replace(fmt.Sprintf("%v", this.DNSConfig), "ContainerSpec_DNSConfig", "ContainerSpec_DNSConfig", 1) + `,`,
+		`Healthcheck:` + strings.Replace(fmt.Sprintf("%v", this.Healthcheck), "HealthConfig", "HealthConfig", 1) + `,`,
+		`Hosts:` + fmt.Sprintf("%v", this.Hosts) + `,`,
+		`OpenStdin:` + fmt.Sprintf("%v", this.OpenStdin) + `,`,
+		`ReadOnly:` + fmt.Sprintf("%v", this.ReadOnly) + `,`,
+		`StopSignal:` + fmt.Sprintf("%v", this.StopSignal) + `,`,
+		`Configs:` + strings.Replace(fmt.Sprintf("%v", this.Configs), "ConfigReference", "ConfigReference", 1) + `,`,
+		`Privileges:` + strings.Replace(fmt.Sprintf("%v", this.Privileges), "Privileges", "Privileges", 1) + `,`,
+		`Init:` + strings.Replace(fmt.Sprintf("%v", this.Init), "BoolValue", "google_protobuf4.BoolValue", 1) + `,`,
+		`Isolation:` + fmt.Sprintf("%v", this.Isolation) + `,`,
+		`PidsLimit:` + fmt.Sprintf("%v", this.PidsLimit) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ContainerSpec_PullOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ContainerSpec_PullOptions{`,
+		`RegistryAuth:` + fmt.Sprintf("%v", this.RegistryAuth) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ContainerSpec_DNSConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ContainerSpec_DNSConfig{`,
+		`Nameservers:` + fmt.Sprintf("%v", this.Nameservers) + `,`,
+		`Search:` + fmt.Sprintf("%v", this.Search) + `,`,
+		`Options:` + fmt.Sprintf("%v", this.Options) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *EndpointSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&EndpointSpec{`,
+		`Mode:` + fmt.Sprintf("%v", this.Mode) + `,`,
+		`Ports:` + strings.Replace(fmt.Sprintf("%v", this.Ports), "PortConfig", "PortConfig", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`DriverConfig:` + strings.Replace(fmt.Sprintf("%v", this.DriverConfig), "Driver", "Driver", 1) + `,`,
+		`Ipv6Enabled:` + fmt.Sprintf("%v", this.Ipv6Enabled) + `,`,
+		`Internal:` + fmt.Sprintf("%v", this.Internal) + `,`,
+		`IPAM:` + strings.Replace(fmt.Sprintf("%v", this.IPAM), "IPAMOptions", "IPAMOptions", 1) + `,`,
+		`Attachable:` + fmt.Sprintf("%v", this.Attachable) + `,`,
+		`Ingress:` + fmt.Sprintf("%v", this.Ingress) + `,`,
+		`ConfigFrom:` + fmt.Sprintf("%v", this.ConfigFrom) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkSpec_Network) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NetworkSpec_Network{`,
+		`Network:` + fmt.Sprintf("%v", this.Network) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ClusterSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ClusterSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`AcceptancePolicy:` + strings.Replace(strings.Replace(this.AcceptancePolicy.String(), "AcceptancePolicy", "AcceptancePolicy", 1), `&`, ``, 1) + `,`,
+		`Orchestration:` + strings.Replace(strings.Replace(this.Orchestration.String(), "OrchestrationConfig", "OrchestrationConfig", 1), `&`, ``, 1) + `,`,
+		`Raft:` + strings.Replace(strings.Replace(this.Raft.String(), "RaftConfig", "RaftConfig", 1), `&`, ``, 1) + `,`,
+		`Dispatcher:` + strings.Replace(strings.Replace(this.Dispatcher.String(), "DispatcherConfig", "DispatcherConfig", 1), `&`, ``, 1) + `,`,
+		`CAConfig:` + strings.Replace(strings.Replace(this.CAConfig.String(), "CAConfig", "CAConfig", 1), `&`, ``, 1) + `,`,
+		`TaskDefaults:` + strings.Replace(strings.Replace(this.TaskDefaults.String(), "TaskDefaults", "TaskDefaults", 1), `&`, ``, 1) + `,`,
+		`EncryptionConfig:` + strings.Replace(strings.Replace(this.EncryptionConfig.String(), "EncryptionConfig", "EncryptionConfig", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SecretSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SecretSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`Templating:` + strings.Replace(fmt.Sprintf("%v", this.Templating), "Driver", "Driver", 1) + `,`,
+		`Driver:` + strings.Replace(fmt.Sprintf("%v", this.Driver), "Driver", "Driver", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ConfigSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ConfigSpec{`,
+		`Annotations:` + strings.Replace(strings.Replace(this.Annotations.String(), "Annotations", "Annotations", 1), `&`, ``, 1) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`Templating:` + strings.Replace(fmt.Sprintf("%v", this.Templating), "Driver", "Driver", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringSpecs(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *NodeSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DesiredRole", wireType)
+			}
+			m.DesiredRole = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.DesiredRole |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Membership", wireType)
+			}
+			m.Membership = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Membership |= (NodeSpec_Membership(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Availability", wireType)
+			}
+			m.Availability = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Availability |= (NodeSpec_Availability(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ServiceSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ServiceSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ServiceSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Task", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Task.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Replicated", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &ReplicatedService{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Mode = &ServiceSpec_Replicated{v}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Global", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &GlobalService{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Mode = &ServiceSpec_Global{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Update", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Update == nil {
+				m.Update = &UpdateConfig{}
+			}
+			if err := m.Update.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &NetworkAttachmentConfig{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Endpoint", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Endpoint == nil {
+				m.Endpoint = &EndpointSpec{}
+			}
+			if err := m.Endpoint.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Rollback", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Rollback == nil {
+				m.Rollback = &UpdateConfig{}
+			}
+			if err := m.Rollback.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ReplicatedService) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ReplicatedService: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ReplicatedService: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Replicas", wireType)
+			}
+			m.Replicas = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Replicas |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GlobalService) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GlobalService: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GlobalService: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TaskSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TaskSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TaskSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Container", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &ContainerSpec{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Runtime = &TaskSpec_Container{v}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Resources", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Resources == nil {
+				m.Resources = &ResourceRequirements{}
+			}
+			if err := m.Resources.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Restart", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Restart == nil {
+				m.Restart = &RestartPolicy{}
+			}
+			if err := m.Restart.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Placement", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Placement == nil {
+				m.Placement = &Placement{}
+			}
+			if err := m.Placement.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LogDriver", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.LogDriver == nil {
+				m.LogDriver = &Driver{}
+			}
+			if err := m.LogDriver.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Networks", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Networks = append(m.Networks, &NetworkAttachmentConfig{})
+			if err := m.Networks[len(m.Networks)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Attachment", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &NetworkAttachmentSpec{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Runtime = &TaskSpec_Attachment{v}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ForceUpdate", wireType)
+			}
+			m.ForceUpdate = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ForceUpdate |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Generic", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &GenericRuntimeSpec{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Runtime = &TaskSpec_Generic{v}
+			iNdEx = postIndex
+		case 11:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResourceReferences", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ResourceReferences = append(m.ResourceReferences, ResourceReference{})
+			if err := m.ResourceReferences[len(m.ResourceReferences)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ResourceReference) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ResourceReference: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ResourceReference: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResourceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ResourceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResourceType", wireType)
+			}
+			m.ResourceType = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ResourceType |= (ResourceType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GenericRuntimeSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GenericRuntimeSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GenericRuntimeSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Payload", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Payload == nil {
+				m.Payload = &google_protobuf3.Any{}
+			}
+			if err := m.Payload.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkAttachmentSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkAttachmentSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkAttachmentSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ContainerID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ContainerID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ContainerSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ContainerSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ContainerSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Image", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Image = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowSpecs
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowSpecs
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthSpecs
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Command", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Command = append(m.Command, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Args", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Args = append(m.Args, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Env", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Env = append(m.Env, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Dir", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Dir = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field User", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.User = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Mounts", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Mounts = append(m.Mounts, Mount{})
+			if err := m.Mounts[len(m.Mounts)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StopGracePeriod", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.StopGracePeriod == nil {
+				m.StopGracePeriod = &google_protobuf1.Duration{}
+			}
+			if err := m.StopGracePeriod.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PullOptions", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.PullOptions == nil {
+				m.PullOptions = &ContainerSpec_PullOptions{}
+			}
+			if err := m.PullOptions.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 11:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Groups", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Groups = append(m.Groups, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 12:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secrets", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Secrets = append(m.Secrets, &SecretReference{})
+			if err := m.Secrets[len(m.Secrets)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 13:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TTY", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.TTY = bool(v != 0)
+		case 14:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Hostname", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Hostname = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 15:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DNSConfig", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.DNSConfig == nil {
+				m.DNSConfig = &ContainerSpec_DNSConfig{}
+			}
+			if err := m.DNSConfig.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 16:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Healthcheck", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Healthcheck == nil {
+				m.Healthcheck = &HealthConfig{}
+			}
+			if err := m.Healthcheck.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 17:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Hosts", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Hosts = append(m.Hosts, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 18:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field OpenStdin", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.OpenStdin = bool(v != 0)
+		case 19:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ReadOnly", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.ReadOnly = bool(v != 0)
+		case 20:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StopSignal", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.StopSignal = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 21:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Configs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Configs = append(m.Configs, &ConfigReference{})
+			if err := m.Configs[len(m.Configs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 22:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Privileges", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Privileges == nil {
+				m.Privileges = &Privileges{}
+			}
+			if err := m.Privileges.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 23:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Init", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Init == nil {
+				m.Init = &google_protobuf4.BoolValue{}
+			}
+			if err := m.Init.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 24:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Isolation", wireType)
+			}
+			m.Isolation = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Isolation |= (ContainerSpec_Isolation(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 25:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PidsLimit", wireType)
+			}
+			m.PidsLimit = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.PidsLimit |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ContainerSpec_PullOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PullOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PullOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 64:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RegistryAuth", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.RegistryAuth = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ContainerSpec_DNSConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DNSConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DNSConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nameservers", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Nameservers = append(m.Nameservers, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Search", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Search = append(m.Search, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Options", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Options = append(m.Options, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *EndpointSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: EndpointSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: EndpointSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Mode", wireType)
+			}
+			m.Mode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Mode |= (EndpointSpec_ResolutionMode(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Ports", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Ports = append(m.Ports, &PortConfig{})
+			if err := m.Ports[len(m.Ports)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DriverConfig", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.DriverConfig == nil {
+				m.DriverConfig = &Driver{}
+			}
+			if err := m.DriverConfig.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Ipv6Enabled", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Ipv6Enabled = bool(v != 0)
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Internal", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Internal = bool(v != 0)
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IPAM", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.IPAM == nil {
+				m.IPAM = &IPAMOptions{}
+			}
+			if err := m.IPAM.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Attachable", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Attachable = bool(v != 0)
+		case 7:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Ingress", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Ingress = bool(v != 0)
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigFrom = &NetworkSpec_Network{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ClusterSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ClusterSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ClusterSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AcceptancePolicy", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.AcceptancePolicy.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Orchestration", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Orchestration.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Raft", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Raft.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Dispatcher", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Dispatcher.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CAConfig", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.CAConfig.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskDefaults", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.TaskDefaults.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EncryptionConfig", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.EncryptionConfig.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SecretSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SecretSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SecretSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Templating", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Templating == nil {
+				m.Templating = &Driver{}
+			}
+			if err := m.Templating.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Driver", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Driver == nil {
+				m.Driver = &Driver{}
+			}
+			if err := m.Driver.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ConfigSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ConfigSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ConfigSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Annotations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Annotations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Templating", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Templating == nil {
+				m.Templating = &Driver{}
+			}
+			if err := m.Templating.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipSpecs(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthSpecs
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipSpecs(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowSpecs
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowSpecs
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthSpecs
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowSpecs
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipSpecs(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthSpecs = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowSpecs   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/specs.proto", fileDescriptorSpecs) }
+
+var fileDescriptorSpecs = []byte{
+	// 2131 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x58, 0x4f, 0x6f, 0x1b, 0xc7,
+	0x15, 0x17, 0x25, 0x8a, 0x22, 0xdf, 0x52, 0x36, 0x35, 0x71, 0x9c, 0x15, 0x6d, 0x4b, 0x34, 0xe3,
+	0xb8, 0x4a, 0x82, 0x52, 0xa8, 0x1a, 0xa4, 0x4e, 0xdc, 0xb4, 0x25, 0x45, 0x46, 0x66, 0x6d, 0x4b,
+	0xc4, 0x50, 0x56, 0x6b, 0xa0, 0x00, 0x31, 0xda, 0x1d, 0x91, 0x03, 0x2d, 0x77, 0xb6, 0xb3, 0x43,
+	0x19, 0xbc, 0xf5, 0x18, 0xa8, 0x9f, 0x41, 0xe8, 0xa1, 0xe8, 0xbd, 0xfd, 0x16, 0x3e, 0xf6, 0xd8,
+	0x5e, 0x84, 0x44, 0x5f, 0xa1, 0xb7, 0x5e, 0x5a, 0xcc, 0xec, 0xec, 0x92, 0x94, 0x57, 0x96, 0x81,
+	0xfa, 0xd0, 0xdb, 0xcc, 0xdb, 0xdf, 0xef, 0xcd, 0xbf, 0xdf, 0xbc, 0xf7, 0x66, 0xe1, 0xb3, 0x3e,
+	0x93, 0x83, 0xd1, 0x61, 0xcd, 0xe1, 0xc3, 0x4d, 0x97, 0x3b, 0xc7, 0x54, 0x6c, 0x86, 0xaf, 0x88,
+	0x18, 0x1e, 0x33, 0xb9, 0x49, 0x02, 0xb6, 0x19, 0x06, 0xd4, 0x09, 0x6b, 0x81, 0xe0, 0x92, 0x23,
+	0x14, 0x01, 0x6a, 0x31, 0xa0, 0x76, 0xf2, 0x93, 0xf2, 0x75, 0x7c, 0x39, 0x0e, 0xa8, 0xe1, 0x97,
+	0x6f, 0xf5, 0x79, 0x9f, 0xeb, 0xe6, 0xa6, 0x6a, 0x19, 0xeb, 0x5a, 0x9f, 0xf3, 0xbe, 0x47, 0x37,
+	0x75, 0xef, 0x70, 0x74, 0xb4, 0xe9, 0x8e, 0x04, 0x91, 0x8c, 0xfb, 0xe6, 0xfb, 0xea, 0xe5, 0xef,
+	0xc4, 0x1f, 0x5f, 0x45, 0x7d, 0x25, 0x48, 0x10, 0x50, 0x61, 0x06, 0xac, 0x9e, 0x65, 0x21, 0xbf,
+	0xcb, 0x5d, 0xda, 0x0d, 0xa8, 0x83, 0x76, 0xc0, 0x22, 0xbe, 0xcf, 0xa5, 0xf6, 0x1d, 0xda, 0x99,
+	0x4a, 0x66, 0xc3, 0xda, 0x5a, 0xaf, 0xbd, 0xb9, 0xa6, 0x5a, 0x7d, 0x02, 0x6b, 0x64, 0x5f, 0x9f,
+	0xaf, 0xcf, 0xe1, 0x69, 0x26, 0xfa, 0x25, 0x14, 0x5d, 0x1a, 0x32, 0x41, 0xdd, 0x9e, 0xe0, 0x1e,
+	0xb5, 0xe7, 0x2b, 0x99, 0x8d, 0x1b, 0x5b, 0x77, 0xd3, 0x3c, 0xa9, 0xc1, 0x31, 0xf7, 0x28, 0xb6,
+	0x0c, 0x43, 0x75, 0xd0, 0x0e, 0xc0, 0x90, 0x0e, 0x0f, 0xa9, 0x08, 0x07, 0x2c, 0xb0, 0x17, 0x34,
+	0xfd, 0x47, 0x57, 0xd1, 0xd5, 0xdc, 0x6b, 0xcf, 0x13, 0x38, 0x9e, 0xa2, 0xa2, 0xe7, 0x50, 0x24,
+	0x27, 0x84, 0x79, 0xe4, 0x90, 0x79, 0x4c, 0x8e, 0xed, 0xac, 0x76, 0xf5, 0xe9, 0x5b, 0x5d, 0xd5,
+	0xa7, 0x08, 0x78, 0x86, 0x5e, 0x75, 0x01, 0x26, 0x03, 0xa1, 0x87, 0xb0, 0xd4, 0x69, 0xed, 0x36,
+	0xdb, 0xbb, 0x3b, 0xa5, 0xb9, 0xf2, 0xea, 0xe9, 0x59, 0xe5, 0x43, 0xe5, 0x63, 0x02, 0xe8, 0x50,
+	0xdf, 0x65, 0x7e, 0x1f, 0x6d, 0x40, 0xbe, 0xbe, 0xbd, 0xdd, 0xea, 0xec, 0xb7, 0x9a, 0xa5, 0x4c,
+	0xb9, 0x7c, 0x7a, 0x56, 0xb9, 0x3d, 0x0b, 0xac, 0x3b, 0x0e, 0x0d, 0x24, 0x75, 0xcb, 0xd9, 0xef,
+	0xfe, 0xbc, 0x36, 0x57, 0xfd, 0x2e, 0x03, 0xc5, 0xe9, 0x49, 0xa0, 0x87, 0x90, 0xab, 0x6f, 0xef,
+	0xb7, 0x0f, 0x5a, 0xa5, 0xb9, 0x09, 0x7d, 0x1a, 0x51, 0x77, 0x24, 0x3b, 0xa1, 0xe8, 0x01, 0x2c,
+	0x76, 0xea, 0x2f, 0xba, 0xad, 0x52, 0x66, 0x32, 0x9d, 0x69, 0x58, 0x87, 0x8c, 0x42, 0x8d, 0x6a,
+	0xe2, 0x7a, 0x7b, 0xb7, 0x34, 0x9f, 0x8e, 0x6a, 0x0a, 0xc2, 0x7c, 0x33, 0x95, 0x3f, 0x65, 0xc1,
+	0xea, 0x52, 0x71, 0xc2, 0x9c, 0xf7, 0x2c, 0x91, 0x2f, 0x21, 0x2b, 0x49, 0x78, 0xac, 0xa5, 0x61,
+	0xa5, 0x4b, 0x63, 0x9f, 0x84, 0xc7, 0x6a, 0x50, 0x43, 0xd7, 0x78, 0xa5, 0x0c, 0x41, 0x03, 0x8f,
+	0x39, 0x44, 0x52, 0x57, 0x2b, 0xc3, 0xda, 0xfa, 0x24, 0x8d, 0x8d, 0x13, 0x94, 0x99, 0xff, 0x93,
+	0x39, 0x3c, 0x45, 0x45, 0x8f, 0x21, 0xd7, 0xf7, 0xf8, 0x21, 0xf1, 0xb4, 0x26, 0xac, 0xad, 0xfb,
+	0x69, 0x4e, 0x76, 0x34, 0x62, 0xe2, 0xc0, 0x50, 0xd0, 0x23, 0xc8, 0x8d, 0x02, 0x97, 0x48, 0x6a,
+	0xe7, 0x34, 0xb9, 0x92, 0x46, 0x7e, 0xa1, 0x11, 0xdb, 0xdc, 0x3f, 0x62, 0x7d, 0x6c, 0xf0, 0xe8,
+	0x29, 0xe4, 0x7d, 0x2a, 0x5f, 0x71, 0x71, 0x1c, 0xda, 0x4b, 0x95, 0x85, 0x0d, 0x6b, 0xeb, 0xf3,
+	0x54, 0x31, 0x46, 0x98, 0xba, 0x94, 0xc4, 0x19, 0x0c, 0xa9, 0x2f, 0x23, 0x37, 0x8d, 0x79, 0x3b,
+	0x83, 0x13, 0x07, 0xe8, 0xe7, 0x90, 0xa7, 0xbe, 0x1b, 0x70, 0xe6, 0x4b, 0x3b, 0x7f, 0xf5, 0x44,
+	0x5a, 0x06, 0xa3, 0x36, 0x13, 0x27, 0x0c, 0xc5, 0x16, 0xdc, 0xf3, 0x0e, 0x89, 0x73, 0x6c, 0x17,
+	0xde, 0x71, 0x19, 0x09, 0xa3, 0x91, 0x83, 0xec, 0x90, 0xbb, 0xb4, 0xba, 0x09, 0x2b, 0x6f, 0x6c,
+	0x35, 0x2a, 0x43, 0xde, 0x6c, 0x75, 0xa4, 0x91, 0x2c, 0x4e, 0xfa, 0xd5, 0x9b, 0xb0, 0x3c, 0xb3,
+	0xad, 0xd5, 0xbf, 0x2e, 0x42, 0x3e, 0x3e, 0x6b, 0x54, 0x87, 0x82, 0xc3, 0x7d, 0x49, 0x98, 0x4f,
+	0x85, 0x91, 0x57, 0xea, 0xc9, 0x6c, 0xc7, 0x20, 0xc5, 0x7a, 0x32, 0x87, 0x27, 0x2c, 0xf4, 0x2d,
+	0x14, 0x04, 0x0d, 0xf9, 0x48, 0x38, 0x34, 0x34, 0xfa, 0xda, 0x48, 0x57, 0x48, 0x04, 0xc2, 0xf4,
+	0xf7, 0x23, 0x26, 0xa8, 0xda, 0xe5, 0x10, 0x4f, 0xa8, 0xe8, 0x31, 0x2c, 0x09, 0x1a, 0x4a, 0x22,
+	0xe4, 0xdb, 0x24, 0x82, 0x23, 0x48, 0x87, 0x7b, 0xcc, 0x19, 0xe3, 0x98, 0x81, 0x1e, 0x43, 0x21,
+	0xf0, 0x88, 0xa3, 0xbd, 0xda, 0x8b, 0x9a, 0x7e, 0x2f, 0x8d, 0xde, 0x89, 0x41, 0x78, 0x82, 0x47,
+	0x5f, 0x01, 0x78, 0xbc, 0xdf, 0x73, 0x05, 0x3b, 0xa1, 0xc2, 0x48, 0xac, 0x9c, 0xc6, 0x6e, 0x6a,
+	0x04, 0x2e, 0x78, 0xbc, 0x1f, 0x35, 0xd1, 0xce, 0xff, 0xa4, 0xaf, 0x29, 0x6d, 0x3d, 0x05, 0x20,
+	0xc9, 0x57, 0xa3, 0xae, 0x4f, 0xdf, 0xc9, 0x95, 0x39, 0x91, 0x29, 0x3a, 0xba, 0x0f, 0xc5, 0x23,
+	0x2e, 0x1c, 0xda, 0x33, 0xb7, 0xa6, 0xa0, 0x35, 0x61, 0x69, 0x5b, 0xa4, 0x2f, 0xd4, 0x80, 0xa5,
+	0x3e, 0xf5, 0xa9, 0x60, 0x8e, 0x0d, 0x7a, 0xb0, 0x87, 0xa9, 0x17, 0x32, 0x82, 0xe0, 0x91, 0x2f,
+	0xd9, 0x90, 0x9a, 0x91, 0x62, 0x22, 0xfa, 0x1d, 0x7c, 0x10, 0x1f, 0x5f, 0x4f, 0xd0, 0x23, 0x2a,
+	0xa8, 0xaf, 0x34, 0x60, 0xe9, 0x7d, 0xf8, 0xe4, 0xed, 0x1a, 0x30, 0x68, 0x13, 0x6c, 0x90, 0xb8,
+	0xfc, 0x21, 0x6c, 0x14, 0x60, 0x49, 0x44, 0xe3, 0x56, 0xff, 0x98, 0x51, 0xaa, 0xbf, 0x84, 0x40,
+	0x9b, 0x60, 0x25, 0xc3, 0x33, 0x57, 0xab, 0xb7, 0xd0, 0xb8, 0x71, 0x71, 0xbe, 0x0e, 0x31, 0xb6,
+	0xdd, 0x54, 0x31, 0xc8, 0xb4, 0x5d, 0xd4, 0x82, 0xe5, 0x84, 0xa0, 0xca, 0x00, 0x93, 0x28, 0x2b,
+	0x6f, 0x9b, 0xe9, 0xfe, 0x38, 0xa0, 0xb8, 0x28, 0xa6, 0x7a, 0xd5, 0xdf, 0x02, 0x7a, 0x73, 0x5f,
+	0x10, 0x82, 0xec, 0x31, 0xf3, 0xcd, 0x34, 0xb0, 0x6e, 0xa3, 0x1a, 0x2c, 0x05, 0x64, 0xec, 0x71,
+	0xe2, 0x9a, 0x8b, 0x71, 0xab, 0x16, 0x15, 0x08, 0xb5, 0xb8, 0x40, 0xa8, 0xd5, 0xfd, 0x31, 0x8e,
+	0x41, 0xd5, 0xa7, 0xf0, 0x61, 0xea, 0xf1, 0xa2, 0x2d, 0x28, 0x26, 0x17, 0x6e, 0xb2, 0xd6, 0x9b,
+	0x17, 0xe7, 0xeb, 0x56, 0x72, 0x33, 0xdb, 0x4d, 0x6c, 0x25, 0xa0, 0xb6, 0x5b, 0xfd, 0xde, 0x82,
+	0xe5, 0x99, 0x6b, 0x8b, 0x6e, 0xc1, 0x22, 0x1b, 0x92, 0x3e, 0x35, 0x73, 0x8c, 0x3a, 0xa8, 0x05,
+	0x39, 0x8f, 0x1c, 0x52, 0x4f, 0x5d, 0x5e, 0x75, 0x70, 0x3f, 0xbe, 0xf6, 0xfe, 0xd7, 0x9e, 0x69,
+	0x7c, 0xcb, 0x97, 0x62, 0x8c, 0x0d, 0x19, 0xd9, 0xb0, 0xe4, 0xf0, 0xe1, 0x90, 0xf8, 0x2a, 0x4d,
+	0x2c, 0x6c, 0x14, 0x70, 0xdc, 0x55, 0x3b, 0x43, 0x44, 0x3f, 0xb4, 0xb3, 0xda, 0xac, 0xdb, 0xa8,
+	0x04, 0x0b, 0xd4, 0x3f, 0xb1, 0x17, 0xb5, 0x49, 0x35, 0x95, 0xc5, 0x65, 0xd1, 0xed, 0x2b, 0x60,
+	0xd5, 0x54, 0xbc, 0x51, 0x48, 0x85, 0xbd, 0x14, 0xed, 0xa8, 0x6a, 0xa3, 0x9f, 0x41, 0x6e, 0xc8,
+	0x47, 0xbe, 0x0c, 0xed, 0xbc, 0x9e, 0xec, 0x6a, 0xda, 0x64, 0x9f, 0x2b, 0x84, 0x51, 0x96, 0x81,
+	0xa3, 0x16, 0xac, 0x84, 0x92, 0x07, 0xbd, 0xbe, 0x20, 0x0e, 0xed, 0x05, 0x54, 0x30, 0xee, 0x9a,
+	0x30, 0xbc, 0xfa, 0xc6, 0xa1, 0x34, 0x4d, 0xc1, 0x87, 0x6f, 0x2a, 0xce, 0x8e, 0xa2, 0x74, 0x34,
+	0x03, 0x75, 0xa0, 0x18, 0x8c, 0x3c, 0xaf, 0xc7, 0x83, 0x28, 0x23, 0x47, 0x77, 0xe7, 0x1d, 0xb6,
+	0xac, 0x33, 0xf2, 0xbc, 0xbd, 0x88, 0x84, 0xad, 0x60, 0xd2, 0x41, 0xb7, 0x21, 0xd7, 0x17, 0x7c,
+	0x14, 0x44, 0xf7, 0xa6, 0x80, 0x4d, 0x0f, 0x7d, 0x03, 0x4b, 0x21, 0x75, 0x04, 0x95, 0xa1, 0x5d,
+	0xd4, 0x4b, 0xfd, 0x38, 0x6d, 0x90, 0xae, 0x86, 0x24, 0x77, 0x02, 0xc7, 0x1c, 0xb4, 0x0a, 0x0b,
+	0x52, 0x8e, 0xed, 0xe5, 0x4a, 0x66, 0x23, 0xdf, 0x58, 0xba, 0x38, 0x5f, 0x5f, 0xd8, 0xdf, 0x7f,
+	0x89, 0x95, 0x4d, 0x65, 0x8b, 0x01, 0x0f, 0xa5, 0x4f, 0x86, 0xd4, 0xbe, 0xa1, 0xf7, 0x36, 0xe9,
+	0xa3, 0x97, 0x00, 0xae, 0x1f, 0xf6, 0x1c, 0x1d, 0x9e, 0xec, 0x9b, 0x7a, 0x75, 0x9f, 0x5f, 0xbf,
+	0xba, 0xe6, 0x6e, 0xd7, 0x64, 0xcc, 0xe5, 0x8b, 0xf3, 0xf5, 0x42, 0xd2, 0xc5, 0x05, 0xd7, 0x0f,
+	0xa3, 0x26, 0x6a, 0x80, 0x35, 0xa0, 0xc4, 0x93, 0x03, 0x67, 0x40, 0x9d, 0x63, 0xbb, 0x74, 0x75,
+	0x0a, 0x7c, 0xa2, 0x61, 0xc6, 0xc3, 0x34, 0x49, 0x29, 0x58, 0x4d, 0x35, 0xb4, 0x57, 0xf4, 0x5e,
+	0x45, 0x1d, 0x74, 0x0f, 0x80, 0x07, 0xd4, 0xef, 0x85, 0xd2, 0x65, 0xbe, 0x8d, 0xd4, 0x92, 0x71,
+	0x41, 0x59, 0xba, 0xca, 0x80, 0xee, 0xa8, 0x04, 0x45, 0xdc, 0x1e, 0xf7, 0xbd, 0xb1, 0xfd, 0x81,
+	0xfe, 0x9a, 0x57, 0x86, 0x3d, 0xdf, 0x1b, 0xa3, 0x75, 0xb0, 0xb4, 0x2e, 0x42, 0xd6, 0xf7, 0x89,
+	0x67, 0xdf, 0xd2, 0xfb, 0x01, 0xca, 0xd4, 0xd5, 0x16, 0x75, 0x0e, 0xd1, 0x6e, 0x84, 0xf6, 0x87,
+	0x57, 0x9f, 0x83, 0x99, 0xec, 0xe4, 0x1c, 0x0c, 0x07, 0xfd, 0x02, 0x20, 0x10, 0xec, 0x84, 0x79,
+	0xb4, 0x4f, 0x43, 0xfb, 0xb6, 0x5e, 0xf4, 0x5a, 0x6a, 0x66, 0x4a, 0x50, 0x78, 0x8a, 0x81, 0x6a,
+	0x90, 0x65, 0x3e, 0x93, 0xf6, 0x47, 0x26, 0x2b, 0x5d, 0x96, 0x6a, 0x83, 0x73, 0xef, 0x80, 0x78,
+	0x23, 0x8a, 0x35, 0x0e, 0xb5, 0xa1, 0xc0, 0x42, 0xee, 0x69, 0xf9, 0xda, 0xb6, 0x8e, 0x6f, 0xef,
+	0x70, 0x7e, 0xed, 0x98, 0x82, 0x27, 0x6c, 0x74, 0x17, 0x0a, 0x01, 0x73, 0xc3, 0x67, 0x6c, 0xc8,
+	0xa4, 0xbd, 0x5a, 0xc9, 0x6c, 0x2c, 0xe0, 0x89, 0xa1, 0xfc, 0x15, 0x58, 0x53, 0x61, 0x40, 0x5d,
+	0xdf, 0x63, 0x3a, 0x36, 0x91, 0x45, 0x35, 0xd5, 0x59, 0x9d, 0xa8, 0x89, 0xe9, 0xd0, 0x57, 0xc0,
+	0x51, 0xe7, 0xeb, 0xf9, 0x47, 0x99, 0xf2, 0x16, 0x58, 0x53, 0xd7, 0x01, 0x7d, 0xac, 0xc2, 0x72,
+	0x9f, 0x85, 0x52, 0x8c, 0x7b, 0x64, 0x24, 0x07, 0xf6, 0xaf, 0x34, 0xa1, 0x18, 0x1b, 0xeb, 0x23,
+	0x39, 0x28, 0xf7, 0x60, 0xa2, 0x2a, 0x54, 0x01, 0x4b, 0xa9, 0x35, 0xa4, 0xe2, 0x84, 0x0a, 0x55,
+	0xf2, 0x28, 0x31, 0x4c, 0x9b, 0xd4, 0xad, 0x0a, 0x29, 0x11, 0xce, 0x40, 0x07, 0xb5, 0x02, 0x36,
+	0x3d, 0x15, 0xa5, 0xe2, 0xab, 0x6b, 0xa2, 0x94, 0xe9, 0x56, 0xff, 0x96, 0x81, 0x42, 0xb2, 0x0d,
+	0xe8, 0x0b, 0x58, 0x69, 0x77, 0xf7, 0x9e, 0xd5, 0xf7, 0xdb, 0x7b, 0xbb, 0xbd, 0x66, 0xeb, 0xdb,
+	0xfa, 0x8b, 0x67, 0xfb, 0xa5, 0xb9, 0xf2, 0xbd, 0xd3, 0xb3, 0xca, 0xea, 0x24, 0xe2, 0xc6, 0xf0,
+	0x26, 0x3d, 0x22, 0x23, 0x4f, 0xce, 0xb2, 0x3a, 0x78, 0x6f, 0xbb, 0xd5, 0xed, 0x96, 0x32, 0x57,
+	0xb1, 0x3a, 0x82, 0x3b, 0x34, 0x0c, 0xd1, 0x16, 0x94, 0x26, 0xac, 0x27, 0x2f, 0x3b, 0x2d, 0x7c,
+	0x50, 0x9a, 0x2f, 0xdf, 0x3d, 0x3d, 0xab, 0xd8, 0x6f, 0x92, 0x9e, 0x8c, 0x03, 0x2a, 0x0e, 0xcc,
+	0x73, 0xe1, 0x5f, 0x19, 0x28, 0x4e, 0x57, 0x9b, 0x68, 0x3b, 0xaa, 0x12, 0xf5, 0x31, 0xdc, 0xd8,
+	0xda, 0xbc, 0xae, 0x3a, 0xd5, 0x59, 0xce, 0x1b, 0x29, 0xbf, 0xcf, 0xd5, 0xc3, 0x50, 0x93, 0xd1,
+	0x17, 0xb0, 0x18, 0x70, 0x21, 0xe3, 0x7c, 0x90, 0xae, 0x56, 0x2e, 0xe2, 0x1a, 0x26, 0x02, 0x57,
+	0x07, 0x70, 0x63, 0xd6, 0x1b, 0x7a, 0x00, 0x0b, 0x07, 0xed, 0x4e, 0x69, 0xae, 0x7c, 0xe7, 0xf4,
+	0xac, 0xf2, 0xd1, 0xec, 0xc7, 0x03, 0x26, 0xe4, 0x88, 0x78, 0xed, 0x0e, 0xfa, 0x0c, 0x16, 0x9b,
+	0xbb, 0x5d, 0x8c, 0x4b, 0x99, 0xf2, 0xfa, 0xe9, 0x59, 0xe5, 0xce, 0x2c, 0x4e, 0x7d, 0xe2, 0x23,
+	0xdf, 0xc5, 0xfc, 0x30, 0x79, 0x24, 0xfd, 0x7b, 0x1e, 0x2c, 0x93, 0x26, 0xdf, 0xf7, 0x3b, 0x7a,
+	0x39, 0xaa, 0x01, 0xe3, 0xf8, 0x37, 0x7f, 0x6d, 0x29, 0x58, 0x8c, 0x08, 0x46, 0x97, 0xf7, 0xa1,
+	0xc8, 0x82, 0x93, 0x2f, 0x7b, 0xd4, 0x27, 0x87, 0x9e, 0x79, 0x2f, 0xe5, 0xb1, 0xa5, 0x6c, 0xad,
+	0xc8, 0xa4, 0x82, 0x2f, 0xf3, 0x25, 0x15, 0xbe, 0x79, 0x09, 0xe5, 0x71, 0xd2, 0x47, 0xdf, 0x40,
+	0x96, 0x05, 0x64, 0x68, 0xea, 0xd7, 0xd4, 0x15, 0xb4, 0x3b, 0xf5, 0xe7, 0xe6, 0xde, 0x34, 0xf2,
+	0x17, 0xe7, 0xeb, 0x59, 0x65, 0xc0, 0x9a, 0x86, 0xd6, 0xe2, 0x12, 0x52, 0x8d, 0xa4, 0x13, 0x69,
+	0x1e, 0x4f, 0x59, 0x94, 0xf6, 0x99, 0xdf, 0x17, 0x34, 0x0c, 0x75, 0x4a, 0xcd, 0xe3, 0xb8, 0x8b,
+	0xca, 0xb0, 0x64, 0x0a, 0x51, 0x5d, 0x79, 0x16, 0x54, 0x91, 0x67, 0x0c, 0x8d, 0x65, 0xb0, 0xa2,
+	0xdd, 0xe8, 0x1d, 0x09, 0x3e, 0xac, 0xfe, 0x27, 0x0b, 0xd6, 0xb6, 0x37, 0x0a, 0xa5, 0xa9, 0x29,
+	0xde, 0xdb, 0xe6, 0xbf, 0x84, 0x15, 0xa2, 0xdf, 0xe5, 0xc4, 0x57, 0x09, 0x5a, 0xd7, 0xf7, 0xe6,
+	0x00, 0x1e, 0xa4, 0xba, 0x4b, 0xc0, 0xd1, 0x5b, 0xa0, 0x91, 0x53, 0x3e, 0xed, 0x0c, 0x2e, 0x91,
+	0x4b, 0x5f, 0x50, 0x17, 0x96, 0xb9, 0x70, 0x06, 0x34, 0x94, 0x51, 0x5a, 0x37, 0xef, 0xd8, 0xd4,
+	0x3f, 0x1c, 0x7b, 0xd3, 0x40, 0x93, 0xd3, 0xa2, 0xd9, 0xce, 0xfa, 0x40, 0x8f, 0x20, 0x2b, 0xc8,
+	0x51, 0xfc, 0x56, 0x49, 0xbd, 0x24, 0x98, 0x1c, 0xc9, 0x19, 0x17, 0x9a, 0x81, 0x7e, 0x0d, 0xe0,
+	0xb2, 0x30, 0x20, 0xd2, 0x19, 0x50, 0x61, 0x0e, 0x3b, 0x75, 0x89, 0xcd, 0x04, 0x35, 0xe3, 0x65,
+	0x8a, 0x8d, 0x9e, 0x42, 0xc1, 0x21, 0xb1, 0x5c, 0x73, 0x57, 0x3f, 0xee, 0xb7, 0xeb, 0xc6, 0x45,
+	0x49, 0xb9, 0xb8, 0x38, 0x5f, 0xcf, 0xc7, 0x16, 0x9c, 0x77, 0x88, 0x91, 0xef, 0x53, 0x58, 0x56,
+	0x8f, 0xfe, 0x9e, 0x1b, 0x85, 0xb3, 0x48, 0x26, 0x57, 0xe4, 0x68, 0xf5, 0x82, 0x34, 0x61, 0x2f,
+	0x3e, 0xce, 0xa2, 0x9c, 0xb2, 0xa1, 0xdf, 0xc0, 0x0a, 0xf5, 0x1d, 0x31, 0xd6, 0x62, 0x8d, 0x67,
+	0x98, 0xbf, 0x7a, 0xb1, 0xad, 0x04, 0x3c, 0xb3, 0xd8, 0x12, 0xbd, 0x64, 0xaf, 0xfe, 0x33, 0x03,
+	0x10, 0x95, 0x3d, 0xef, 0x57, 0x80, 0x08, 0xb2, 0x2e, 0x91, 0x44, 0x6b, 0xae, 0x88, 0x75, 0x1b,
+	0x7d, 0x0d, 0x20, 0xe9, 0x30, 0x50, 0xa1, 0xd7, 0xef, 0x1b, 0xd9, 0xbc, 0x2d, 0x1c, 0x4c, 0xa1,
+	0xd1, 0x16, 0xe4, 0xcc, 0x8b, 0x32, 0x7b, 0x2d, 0xcf, 0x20, 0xab, 0x7f, 0xc9, 0x00, 0x44, 0xcb,
+	0xfc, 0xbf, 0x5e, 0x5b, 0xc3, 0x7e, 0xfd, 0xc3, 0xda, 0xdc, 0x3f, 0x7e, 0x58, 0x9b, 0xfb, 0xc3,
+	0xc5, 0x5a, 0xe6, 0xf5, 0xc5, 0x5a, 0xe6, 0xef, 0x17, 0x6b, 0x99, 0xef, 0x2f, 0xd6, 0x32, 0x87,
+	0x39, 0x5d, 0x99, 0xfc, 0xf4, 0xbf, 0x01, 0x00, 0x00, 0xff, 0xff, 0xb8, 0xa3, 0x85, 0xdc, 0xc7,
+	0x15, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/storeobject.go b/vendor/github.com/docker/swarmkit/api/storeobject.go
new file mode 100644
index 0000000000..48b50b72dd
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/storeobject.go
@@ -0,0 +1,108 @@
+package api
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+
+	"github.com/docker/go-events"
+)
+
+var (
+	errUnknownStoreAction = errors.New("unrecognized action type")
+	errConflictingFilters = errors.New("conflicting filters specified")
+	errNoKindSpecified    = errors.New("no kind of object specified")
+	errUnrecognizedAction = errors.New("unrecognized action")
+)
+
+// StoreObject is an abstract object that can be handled by the store.
+type StoreObject interface {
+	GetID() string                           // Get ID
+	GetMeta() Meta                           // Retrieve metadata
+	SetMeta(Meta)                            // Set metadata
+	CopyStoreObject() StoreObject            // Return a copy of this object
+	EventCreate() Event                      // Return a creation event
+	EventUpdate(oldObject StoreObject) Event // Return an update event
+	EventDelete() Event                      // Return a deletion event
+}
+
+// Event is the type used for events passed over watcher channels, and also
+// the type used to specify filtering in calls to Watch.
+type Event interface {
+	// TODO(stevvooe): Consider whether it makes sense to squish both the
+	// matcher type and the primary type into the same type. It might be better
+	// to build a matcher from an event prototype.
+
+	// Matches checks if this item in a watch queue Matches the event
+	// description.
+	Matches(events.Event) bool
+}
+
+func customIndexer(kind string, annotations *Annotations) (bool, [][]byte, error) {
+	var converted [][]byte
+
+	for _, entry := range annotations.Indices {
+		index := make([]byte, 0, len(kind)+1+len(entry.Key)+1+len(entry.Val)+1)
+		if kind != "" {
+			index = append(index, []byte(kind)...)
+			index = append(index, '|')
+		}
+		index = append(index, []byte(entry.Key)...)
+		index = append(index, '|')
+		index = append(index, []byte(entry.Val)...)
+		index = append(index, '\x00')
+		converted = append(converted, index)
+	}
+
+	// Add the null character as a terminator
+	return len(converted) != 0, converted, nil
+}
+
+func fromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
+
+func prefixFromArgs(args ...interface{}) ([]byte, error) {
+	val, err := fromArgs(args...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Strip the null terminator, the rest is a prefix
+	n := len(val)
+	if n > 0 {
+		return val[:n-1], nil
+	}
+	return val, nil
+}
+
+func checkCustom(a1, a2 Annotations) bool {
+	if len(a1.Indices) == 1 {
+		for _, ind := range a2.Indices {
+			if ind.Key == a1.Indices[0].Key && ind.Val == a1.Indices[0].Val {
+				return true
+			}
+		}
+	}
+	return false
+}
+
+func checkCustomPrefix(a1, a2 Annotations) bool {
+	if len(a1.Indices) == 1 {
+		for _, ind := range a2.Indices {
+			if ind.Key == a1.Indices[0].Key && strings.HasPrefix(ind.Val, a1.Indices[0].Val) {
+				return true
+			}
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/docker/swarmkit/api/types.pb.go b/vendor/github.com/docker/swarmkit/api/types.pb.go
new file mode 100644
index 0000000000..98159a9fdd
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/types.pb.go
@@ -0,0 +1,17410 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/types.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import google_protobuf "github.com/gogo/protobuf/types"
+import google_protobuf1 "github.com/gogo/protobuf/types"
+import _ "github.com/gogo/protobuf/gogoproto"
+
+import os "os"
+import time "time"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import github_com_gogo_protobuf_types "github.com/gogo/protobuf/types"
+
+import strings "strings"
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+var _ = time.Kitchen
+
+type ResourceType int32
+
+const (
+	ResourceType_TASK   ResourceType = 0
+	ResourceType_SECRET ResourceType = 1
+	ResourceType_CONFIG ResourceType = 2
+)
+
+var ResourceType_name = map[int32]string{
+	0: "TASK",
+	1: "SECRET",
+	2: "CONFIG",
+}
+var ResourceType_value = map[string]int32{
+	"TASK":   0,
+	"SECRET": 1,
+	"CONFIG": 2,
+}
+
+func (x ResourceType) String() string {
+	return proto.EnumName(ResourceType_name, int32(x))
+}
+func (ResourceType) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{0} }
+
+// Only the manager create a NEW task, and move the task to PENDING and ASSIGNED.
+// Afterward, the manager must rely on the agent to update the task status
+// (pre-run: preparing, ready, starting;
+//  running;
+//  end-state: complete, shutdown, failed, rejected)
+type TaskState int32
+
+const (
+	TaskStateNew       TaskState = 0
+	TaskStatePending   TaskState = 64
+	TaskStateAssigned  TaskState = 192
+	TaskStateAccepted  TaskState = 256
+	TaskStatePreparing TaskState = 320
+	TaskStateReady     TaskState = 384
+	TaskStateStarting  TaskState = 448
+	TaskStateRunning   TaskState = 512
+	TaskStateCompleted TaskState = 576
+	TaskStateShutdown  TaskState = 640
+	TaskStateFailed    TaskState = 704
+	// TaskStateRejected means a task never ran, for instance if something about
+	// the environment failed (e.g. setting up a port on that node failed).
+	TaskStateRejected TaskState = 768
+	// TaskStateRemove is used to correctly handle service deletions and scale
+	// downs. This allows us to keep track of tasks that have been marked for
+	// deletion, but can't yet be removed because the agent is in the process of
+	// shutting them down. Once the agent has shut down tasks with desired state
+	// REMOVE, the task reaper is responsible for removing them.
+	TaskStateRemove TaskState = 800
+	// TaskStateOrphaned is used to free up resources associated with service
+	// tasks on unresponsive nodes without having to delete those tasks. This
+	// state is directly assigned to the task by the orchestrator.
+	TaskStateOrphaned TaskState = 832
+)
+
+var TaskState_name = map[int32]string{
+	0:   "NEW",
+	64:  "PENDING",
+	192: "ASSIGNED",
+	256: "ACCEPTED",
+	320: "PREPARING",
+	384: "READY",
+	448: "STARTING",
+	512: "RUNNING",
+	576: "COMPLETE",
+	640: "SHUTDOWN",
+	704: "FAILED",
+	768: "REJECTED",
+	800: "REMOVE",
+	832: "ORPHANED",
+}
+var TaskState_value = map[string]int32{
+	"NEW":       0,
+	"PENDING":   64,
+	"ASSIGNED":  192,
+	"ACCEPTED":  256,
+	"PREPARING": 320,
+	"READY":     384,
+	"STARTING":  448,
+	"RUNNING":   512,
+	"COMPLETE":  576,
+	"SHUTDOWN":  640,
+	"FAILED":    704,
+	"REJECTED":  768,
+	"REMOVE":    800,
+	"ORPHANED":  832,
+}
+
+func (x TaskState) String() string {
+	return proto.EnumName(TaskState_name, int32(x))
+}
+func (TaskState) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{1} }
+
+type NodeRole int32
+
+const (
+	NodeRoleWorker  NodeRole = 0
+	NodeRoleManager NodeRole = 1
+)
+
+var NodeRole_name = map[int32]string{
+	0: "WORKER",
+	1: "MANAGER",
+}
+var NodeRole_value = map[string]int32{
+	"WORKER":  0,
+	"MANAGER": 1,
+}
+
+func (x NodeRole) String() string {
+	return proto.EnumName(NodeRole_name, int32(x))
+}
+func (NodeRole) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{2} }
+
+type RaftMemberStatus_Reachability int32
+
+const (
+	// Unknown indicates that the manager state cannot be resolved
+	RaftMemberStatus_UNKNOWN RaftMemberStatus_Reachability = 0
+	// Unreachable indicates that the node cannot be contacted by other
+	// raft cluster members.
+	RaftMemberStatus_UNREACHABLE RaftMemberStatus_Reachability = 1
+	// Reachable indicates that the node is healthy and reachable
+	// by other members.
+	RaftMemberStatus_REACHABLE RaftMemberStatus_Reachability = 2
+)
+
+var RaftMemberStatus_Reachability_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "UNREACHABLE",
+	2: "REACHABLE",
+}
+var RaftMemberStatus_Reachability_value = map[string]int32{
+	"UNKNOWN":     0,
+	"UNREACHABLE": 1,
+	"REACHABLE":   2,
+}
+
+func (x RaftMemberStatus_Reachability) String() string {
+	return proto.EnumName(RaftMemberStatus_Reachability_name, int32(x))
+}
+func (RaftMemberStatus_Reachability) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{13, 0}
+}
+
+// TODO(aluzzardi) These should be using `gogoproto.enumvalue_customname`.
+type NodeStatus_State int32
+
+const (
+	// Unknown indicates the node state cannot be resolved.
+	NodeStatus_UNKNOWN NodeStatus_State = 0
+	// Down indicates the node is down.
+	NodeStatus_DOWN NodeStatus_State = 1
+	// Ready indicates the node is ready to accept tasks.
+	NodeStatus_READY NodeStatus_State = 2
+	// Disconnected indicates the node is currently trying to find new manager.
+	NodeStatus_DISCONNECTED NodeStatus_State = 3
+)
+
+var NodeStatus_State_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "DOWN",
+	2: "READY",
+	3: "DISCONNECTED",
+}
+var NodeStatus_State_value = map[string]int32{
+	"UNKNOWN":      0,
+	"DOWN":         1,
+	"READY":        2,
+	"DISCONNECTED": 3,
+}
+
+func (x NodeStatus_State) String() string {
+	return proto.EnumName(NodeStatus_State_name, int32(x))
+}
+func (NodeStatus_State) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{14, 0} }
+
+type Mount_MountType int32
+
+const (
+	MountTypeBind   Mount_MountType = 0
+	MountTypeVolume Mount_MountType = 1
+	MountTypeTmpfs  Mount_MountType = 2
+)
+
+var Mount_MountType_name = map[int32]string{
+	0: "BIND",
+	1: "VOLUME",
+	2: "TMPFS",
+}
+var Mount_MountType_value = map[string]int32{
+	"BIND":   0,
+	"VOLUME": 1,
+	"TMPFS":  2,
+}
+
+func (x Mount_MountType) String() string {
+	return proto.EnumName(Mount_MountType_name, int32(x))
+}
+func (Mount_MountType) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{16, 0} }
+
+// Consistency indicates the tolerable level of file system consistency
+type Mount_MountConsistency int32
+
+const (
+	MountConsistencyDefault   Mount_MountConsistency = 0
+	MountConsistencyFull      Mount_MountConsistency = 1
+	MountConsistencyCached    Mount_MountConsistency = 2
+	MountConsistencyDelegated Mount_MountConsistency = 3
+)
+
+var Mount_MountConsistency_name = map[int32]string{
+	0: "DEFAULT",
+	1: "CONSISTENT",
+	2: "CACHED",
+	3: "DELEGATED",
+}
+var Mount_MountConsistency_value = map[string]int32{
+	"DEFAULT":    0,
+	"CONSISTENT": 1,
+	"CACHED":     2,
+	"DELEGATED":  3,
+}
+
+func (x Mount_MountConsistency) String() string {
+	return proto.EnumName(Mount_MountConsistency_name, int32(x))
+}
+func (Mount_MountConsistency) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{16, 1}
+}
+
+type Mount_BindOptions_MountPropagation int32
+
+const (
+	MountPropagationRPrivate Mount_BindOptions_MountPropagation = 0
+	MountPropagationPrivate  Mount_BindOptions_MountPropagation = 1
+	MountPropagationRShared  Mount_BindOptions_MountPropagation = 2
+	MountPropagationShared   Mount_BindOptions_MountPropagation = 3
+	MountPropagationRSlave   Mount_BindOptions_MountPropagation = 4
+	MountPropagationSlave    Mount_BindOptions_MountPropagation = 5
+)
+
+var Mount_BindOptions_MountPropagation_name = map[int32]string{
+	0: "RPRIVATE",
+	1: "PRIVATE",
+	2: "RSHARED",
+	3: "SHARED",
+	4: "RSLAVE",
+	5: "SLAVE",
+}
+var Mount_BindOptions_MountPropagation_value = map[string]int32{
+	"RPRIVATE": 0,
+	"PRIVATE":  1,
+	"RSHARED":  2,
+	"SHARED":   3,
+	"RSLAVE":   4,
+	"SLAVE":    5,
+}
+
+func (x Mount_BindOptions_MountPropagation) String() string {
+	return proto.EnumName(Mount_BindOptions_MountPropagation_name, int32(x))
+}
+func (Mount_BindOptions_MountPropagation) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{16, 0, 0}
+}
+
+type RestartPolicy_RestartCondition int32
+
+const (
+	RestartOnNone    RestartPolicy_RestartCondition = 0
+	RestartOnFailure RestartPolicy_RestartCondition = 1
+	RestartOnAny     RestartPolicy_RestartCondition = 2
+)
+
+var RestartPolicy_RestartCondition_name = map[int32]string{
+	0: "NONE",
+	1: "ON_FAILURE",
+	2: "ANY",
+}
+var RestartPolicy_RestartCondition_value = map[string]int32{
+	"NONE":       0,
+	"ON_FAILURE": 1,
+	"ANY":        2,
+}
+
+func (x RestartPolicy_RestartCondition) String() string {
+	return proto.EnumName(RestartPolicy_RestartCondition_name, int32(x))
+}
+func (RestartPolicy_RestartCondition) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{17, 0}
+}
+
+type UpdateConfig_FailureAction int32
+
+const (
+	UpdateConfig_PAUSE    UpdateConfig_FailureAction = 0
+	UpdateConfig_CONTINUE UpdateConfig_FailureAction = 1
+	UpdateConfig_ROLLBACK UpdateConfig_FailureAction = 2
+)
+
+var UpdateConfig_FailureAction_name = map[int32]string{
+	0: "PAUSE",
+	1: "CONTINUE",
+	2: "ROLLBACK",
+}
+var UpdateConfig_FailureAction_value = map[string]int32{
+	"PAUSE":    0,
+	"CONTINUE": 1,
+	"ROLLBACK": 2,
+}
+
+func (x UpdateConfig_FailureAction) String() string {
+	return proto.EnumName(UpdateConfig_FailureAction_name, int32(x))
+}
+func (UpdateConfig_FailureAction) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{18, 0}
+}
+
+// UpdateOrder controls the order of operations when rolling out an
+// updated task. Either the old task is shut down before the new task
+// is started, or the new task is started before the old task is shut
+// down.
+type UpdateConfig_UpdateOrder int32
+
+const (
+	UpdateConfig_STOP_FIRST  UpdateConfig_UpdateOrder = 0
+	UpdateConfig_START_FIRST UpdateConfig_UpdateOrder = 1
+)
+
+var UpdateConfig_UpdateOrder_name = map[int32]string{
+	0: "STOP_FIRST",
+	1: "START_FIRST",
+}
+var UpdateConfig_UpdateOrder_value = map[string]int32{
+	"STOP_FIRST":  0,
+	"START_FIRST": 1,
+}
+
+func (x UpdateConfig_UpdateOrder) String() string {
+	return proto.EnumName(UpdateConfig_UpdateOrder_name, int32(x))
+}
+func (UpdateConfig_UpdateOrder) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{18, 1}
+}
+
+type UpdateStatus_UpdateState int32
+
+const (
+	UpdateStatus_UNKNOWN            UpdateStatus_UpdateState = 0
+	UpdateStatus_UPDATING           UpdateStatus_UpdateState = 1
+	UpdateStatus_PAUSED             UpdateStatus_UpdateState = 2
+	UpdateStatus_COMPLETED          UpdateStatus_UpdateState = 3
+	UpdateStatus_ROLLBACK_STARTED   UpdateStatus_UpdateState = 4
+	UpdateStatus_ROLLBACK_PAUSED    UpdateStatus_UpdateState = 5
+	UpdateStatus_ROLLBACK_COMPLETED UpdateStatus_UpdateState = 6
+)
+
+var UpdateStatus_UpdateState_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "UPDATING",
+	2: "PAUSED",
+	3: "COMPLETED",
+	4: "ROLLBACK_STARTED",
+	5: "ROLLBACK_PAUSED",
+	6: "ROLLBACK_COMPLETED",
+}
+var UpdateStatus_UpdateState_value = map[string]int32{
+	"UNKNOWN":            0,
+	"UPDATING":           1,
+	"PAUSED":             2,
+	"COMPLETED":          3,
+	"ROLLBACK_STARTED":   4,
+	"ROLLBACK_PAUSED":    5,
+	"ROLLBACK_COMPLETED": 6,
+}
+
+func (x UpdateStatus_UpdateState) String() string {
+	return proto.EnumName(UpdateStatus_UpdateState_name, int32(x))
+}
+func (UpdateStatus_UpdateState) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{19, 0}
+}
+
+// AddressFamily specifies the network address family that
+// this IPAMConfig belongs to.
+type IPAMConfig_AddressFamily int32
+
+const (
+	IPAMConfig_UNKNOWN IPAMConfig_AddressFamily = 0
+	IPAMConfig_IPV4    IPAMConfig_AddressFamily = 4
+	IPAMConfig_IPV6    IPAMConfig_AddressFamily = 6
+)
+
+var IPAMConfig_AddressFamily_name = map[int32]string{
+	0: "UNKNOWN",
+	4: "IPV4",
+	6: "IPV6",
+}
+var IPAMConfig_AddressFamily_value = map[string]int32{
+	"UNKNOWN": 0,
+	"IPV4":    4,
+	"IPV6":    6,
+}
+
+func (x IPAMConfig_AddressFamily) String() string {
+	return proto.EnumName(IPAMConfig_AddressFamily_name, int32(x))
+}
+func (IPAMConfig_AddressFamily) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{24, 0}
+}
+
+type PortConfig_Protocol int32
+
+const (
+	ProtocolTCP  PortConfig_Protocol = 0
+	ProtocolUDP  PortConfig_Protocol = 1
+	ProtocolSCTP PortConfig_Protocol = 2
+)
+
+var PortConfig_Protocol_name = map[int32]string{
+	0: "TCP",
+	1: "UDP",
+	2: "SCTP",
+}
+var PortConfig_Protocol_value = map[string]int32{
+	"TCP":  0,
+	"UDP":  1,
+	"SCTP": 2,
+}
+
+func (x PortConfig_Protocol) String() string {
+	return proto.EnumName(PortConfig_Protocol_name, int32(x))
+}
+func (PortConfig_Protocol) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{25, 0} }
+
+// PublishMode controls how ports are published on the swarm.
+type PortConfig_PublishMode int32
+
+const (
+	// PublishModeIngress exposes the port across the cluster on all nodes.
+	PublishModeIngress PortConfig_PublishMode = 0
+	// PublishModeHost exposes the port on just the target host.  If the
+	// published port is undefined, an ephemeral port will be allocated. If
+	// the published port is defined, the node will attempt to allocate it,
+	// erroring the task if it fails.
+	PublishModeHost PortConfig_PublishMode = 1
+)
+
+var PortConfig_PublishMode_name = map[int32]string{
+	0: "INGRESS",
+	1: "HOST",
+}
+var PortConfig_PublishMode_value = map[string]int32{
+	"INGRESS": 0,
+	"HOST":    1,
+}
+
+func (x PortConfig_PublishMode) String() string {
+	return proto.EnumName(PortConfig_PublishMode_name, int32(x))
+}
+func (PortConfig_PublishMode) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{25, 1}
+}
+
+type IssuanceStatus_State int32
+
+const (
+	IssuanceStateUnknown IssuanceStatus_State = 0
+	// A new certificate should be issued
+	IssuanceStateRenew IssuanceStatus_State = 1
+	// Certificate is pending acceptance
+	IssuanceStatePending IssuanceStatus_State = 2
+	// successful completion certificate issuance
+	IssuanceStateIssued IssuanceStatus_State = 3
+	// Certificate issuance failed
+	IssuanceStateFailed IssuanceStatus_State = 4
+	// Signals workers to renew their certificate. From the CA's perspective
+	// this is equivalent to IssuanceStateIssued: a noop.
+	IssuanceStateRotate IssuanceStatus_State = 5
+)
+
+var IssuanceStatus_State_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "RENEW",
+	2: "PENDING",
+	3: "ISSUED",
+	4: "FAILED",
+	5: "ROTATE",
+}
+var IssuanceStatus_State_value = map[string]int32{
+	"UNKNOWN": 0,
+	"RENEW":   1,
+	"PENDING": 2,
+	"ISSUED":  3,
+	"FAILED":  4,
+	"ROTATE":  5,
+}
+
+func (x IssuanceStatus_State) String() string {
+	return proto.EnumName(IssuanceStatus_State_name, int32(x))
+}
+func (IssuanceStatus_State) EnumDescriptor() ([]byte, []int) { return fileDescriptorTypes, []int{30, 0} }
+
+type ExternalCA_CAProtocol int32
+
+const (
+	ExternalCA_CAProtocolCFSSL ExternalCA_CAProtocol = 0
+)
+
+var ExternalCA_CAProtocol_name = map[int32]string{
+	0: "CFSSL",
+}
+var ExternalCA_CAProtocol_value = map[string]int32{
+	"CFSSL": 0,
+}
+
+func (x ExternalCA_CAProtocol) String() string {
+	return proto.EnumName(ExternalCA_CAProtocol_name, int32(x))
+}
+func (ExternalCA_CAProtocol) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{32, 0}
+}
+
+// Encryption algorithm that can implemented using this key
+type EncryptionKey_Algorithm int32
+
+const (
+	AES_128_GCM EncryptionKey_Algorithm = 0
+)
+
+var EncryptionKey_Algorithm_name = map[int32]string{
+	0: "AES_128_GCM",
+}
+var EncryptionKey_Algorithm_value = map[string]int32{
+	"AES_128_GCM": 0,
+}
+
+func (x EncryptionKey_Algorithm) String() string {
+	return proto.EnumName(EncryptionKey_Algorithm_name, int32(x))
+}
+func (EncryptionKey_Algorithm) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{45, 0}
+}
+
+type MaybeEncryptedRecord_Algorithm int32
+
+const (
+	MaybeEncryptedRecord_NotEncrypted                 MaybeEncryptedRecord_Algorithm = 0
+	MaybeEncryptedRecord_NACLSecretboxSalsa20Poly1305 MaybeEncryptedRecord_Algorithm = 1
+	MaybeEncryptedRecord_FernetAES128CBC              MaybeEncryptedRecord_Algorithm = 2
+)
+
+var MaybeEncryptedRecord_Algorithm_name = map[int32]string{
+	0: "NONE",
+	1: "SECRETBOX_SALSA20_POLY1305",
+	2: "FERNET_AES_128_CBC",
+}
+var MaybeEncryptedRecord_Algorithm_value = map[string]int32{
+	"NONE": 0,
+	"SECRETBOX_SALSA20_POLY1305": 1,
+	"FERNET_AES_128_CBC":         2,
+}
+
+func (x MaybeEncryptedRecord_Algorithm) String() string {
+	return proto.EnumName(MaybeEncryptedRecord_Algorithm_name, int32(x))
+}
+func (MaybeEncryptedRecord_Algorithm) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{52, 0}
+}
+
+// Version tracks the last time an object in the store was updated.
+type Version struct {
+	Index uint64 `protobuf:"varint,1,opt,name=index,proto3" json:"index,omitempty"`
+}
+
+func (m *Version) Reset()                    { *m = Version{} }
+func (*Version) ProtoMessage()               {}
+func (*Version) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{0} }
+
+type IndexEntry struct {
+	Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
+	Val string `protobuf:"bytes,2,opt,name=val,proto3" json:"val,omitempty"`
+}
+
+func (m *IndexEntry) Reset()                    { *m = IndexEntry{} }
+func (*IndexEntry) ProtoMessage()               {}
+func (*IndexEntry) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{1} }
+
+// Annotations provide useful information to identify API objects. They are
+// common to all API specs.
+type Annotations struct {
+	Name   string            `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	Labels map[string]string `protobuf:"bytes,2,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// Indices provides keys and values for indexing this object.
+	// A single key may have multiple values.
+	Indices []IndexEntry `protobuf:"bytes,4,rep,name=indices" json:"indices"`
+}
+
+func (m *Annotations) Reset()                    { *m = Annotations{} }
+func (*Annotations) ProtoMessage()               {}
+func (*Annotations) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{2} }
+
+// NamedGenericResource represents a "user defined" resource which is defined
+// as a string.
+// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
+// Value is used to identify the resource (GPU="UUID-1", FPGA="/dev/sdb5", ...)
+type NamedGenericResource struct {
+	Kind  string `protobuf:"bytes,1,opt,name=kind,proto3" json:"kind,omitempty"`
+	Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *NamedGenericResource) Reset()                    { *m = NamedGenericResource{} }
+func (*NamedGenericResource) ProtoMessage()               {}
+func (*NamedGenericResource) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{3} }
+
+// DiscreteGenericResource represents a "user defined" resource which is defined
+// as an integer
+// "Kind" is used to describe the Kind of a resource (e.g: "GPU", "FPGA", "SSD", ...)
+// Value is used to count the resource (SSD=5, HDD=3, ...)
+type DiscreteGenericResource struct {
+	Kind  string `protobuf:"bytes,1,opt,name=kind,proto3" json:"kind,omitempty"`
+	Value int64  `protobuf:"varint,2,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *DiscreteGenericResource) Reset()                    { *m = DiscreteGenericResource{} }
+func (*DiscreteGenericResource) ProtoMessage()               {}
+func (*DiscreteGenericResource) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{4} }
+
+// GenericResource represents a "user defined" resource which can
+// be either an integer (e.g: SSD=3) or a string (e.g: SSD=sda1)
+type GenericResource struct {
+	// Types that are valid to be assigned to Resource:
+	//	*GenericResource_NamedResourceSpec
+	//	*GenericResource_DiscreteResourceSpec
+	Resource isGenericResource_Resource `protobuf_oneof:"resource"`
+}
+
+func (m *GenericResource) Reset()                    { *m = GenericResource{} }
+func (*GenericResource) ProtoMessage()               {}
+func (*GenericResource) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{5} }
+
+type isGenericResource_Resource interface {
+	isGenericResource_Resource()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type GenericResource_NamedResourceSpec struct {
+	NamedResourceSpec *NamedGenericResource `protobuf:"bytes,1,opt,name=named_resource_spec,json=namedResourceSpec,oneof"`
+}
+type GenericResource_DiscreteResourceSpec struct {
+	DiscreteResourceSpec *DiscreteGenericResource `protobuf:"bytes,2,opt,name=discrete_resource_spec,json=discreteResourceSpec,oneof"`
+}
+
+func (*GenericResource_NamedResourceSpec) isGenericResource_Resource()    {}
+func (*GenericResource_DiscreteResourceSpec) isGenericResource_Resource() {}
+
+func (m *GenericResource) GetResource() isGenericResource_Resource {
+	if m != nil {
+		return m.Resource
+	}
+	return nil
+}
+
+func (m *GenericResource) GetNamedResourceSpec() *NamedGenericResource {
+	if x, ok := m.GetResource().(*GenericResource_NamedResourceSpec); ok {
+		return x.NamedResourceSpec
+	}
+	return nil
+}
+
+func (m *GenericResource) GetDiscreteResourceSpec() *DiscreteGenericResource {
+	if x, ok := m.GetResource().(*GenericResource_DiscreteResourceSpec); ok {
+		return x.DiscreteResourceSpec
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*GenericResource) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _GenericResource_OneofMarshaler, _GenericResource_OneofUnmarshaler, _GenericResource_OneofSizer, []interface{}{
+		(*GenericResource_NamedResourceSpec)(nil),
+		(*GenericResource_DiscreteResourceSpec)(nil),
+	}
+}
+
+func _GenericResource_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*GenericResource)
+	// resource
+	switch x := m.Resource.(type) {
+	case *GenericResource_NamedResourceSpec:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.NamedResourceSpec); err != nil {
+			return err
+		}
+	case *GenericResource_DiscreteResourceSpec:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.DiscreteResourceSpec); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("GenericResource.Resource has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _GenericResource_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*GenericResource)
+	switch tag {
+	case 1: // resource.named_resource_spec
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(NamedGenericResource)
+		err := b.DecodeMessage(msg)
+		m.Resource = &GenericResource_NamedResourceSpec{msg}
+		return true, err
+	case 2: // resource.discrete_resource_spec
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(DiscreteGenericResource)
+		err := b.DecodeMessage(msg)
+		m.Resource = &GenericResource_DiscreteResourceSpec{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _GenericResource_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*GenericResource)
+	// resource
+	switch x := m.Resource.(type) {
+	case *GenericResource_NamedResourceSpec:
+		s := proto.Size(x.NamedResourceSpec)
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *GenericResource_DiscreteResourceSpec:
+		s := proto.Size(x.DiscreteResourceSpec)
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+type Resources struct {
+	// Amount of CPUs (e.g. 2000000000 = 2 CPU cores)
+	NanoCPUs int64 `protobuf:"varint,1,opt,name=nano_cpus,json=nanoCpus,proto3" json:"nano_cpus,omitempty"`
+	// Amount of memory in bytes.
+	MemoryBytes int64 `protobuf:"varint,2,opt,name=memory_bytes,json=memoryBytes,proto3" json:"memory_bytes,omitempty"`
+	// User specified resource (e.g: bananas=2;apple={red,yellow,green})
+	Generic []*GenericResource `protobuf:"bytes,3,rep,name=generic" json:"generic,omitempty"`
+}
+
+func (m *Resources) Reset()                    { *m = Resources{} }
+func (*Resources) ProtoMessage()               {}
+func (*Resources) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{6} }
+
+type ResourceRequirements struct {
+	Limits       *Resources `protobuf:"bytes,1,opt,name=limits" json:"limits,omitempty"`
+	Reservations *Resources `protobuf:"bytes,2,opt,name=reservations" json:"reservations,omitempty"`
+}
+
+func (m *ResourceRequirements) Reset()                    { *m = ResourceRequirements{} }
+func (*ResourceRequirements) ProtoMessage()               {}
+func (*ResourceRequirements) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{7} }
+
+type Platform struct {
+	// Architecture (e.g. x86_64)
+	Architecture string `protobuf:"bytes,1,opt,name=architecture,proto3" json:"architecture,omitempty"`
+	// Operating System (e.g. linux)
+	OS string `protobuf:"bytes,2,opt,name=os,proto3" json:"os,omitempty"`
+}
+
+func (m *Platform) Reset()                    { *m = Platform{} }
+func (*Platform) ProtoMessage()               {}
+func (*Platform) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{8} }
+
+// PluginDescription describes an engine plugin.
+type PluginDescription struct {
+	// Type of plugin. Canonical values for existing types are
+	// Volume, Network, and Authorization. More types could be
+	// supported in the future.
+	Type string `protobuf:"bytes,1,opt,name=type,proto3" json:"type,omitempty"`
+	// Name of the plugin
+	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
+}
+
+func (m *PluginDescription) Reset()                    { *m = PluginDescription{} }
+func (*PluginDescription) ProtoMessage()               {}
+func (*PluginDescription) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{9} }
+
+type EngineDescription struct {
+	// Docker daemon version running on the node.
+	EngineVersion string `protobuf:"bytes,1,opt,name=engine_version,json=engineVersion,proto3" json:"engine_version,omitempty"`
+	// Labels attached to the engine.
+	Labels map[string]string `protobuf:"bytes,2,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// Volume, Network, and Auth plugins
+	Plugins []PluginDescription `protobuf:"bytes,3,rep,name=plugins" json:"plugins"`
+}
+
+func (m *EngineDescription) Reset()                    { *m = EngineDescription{} }
+func (*EngineDescription) ProtoMessage()               {}
+func (*EngineDescription) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{10} }
+
+type NodeDescription struct {
+	// Hostname of the node as reported by the agent.
+	// This is different from spec.meta.name which is user-defined.
+	Hostname string `protobuf:"bytes,1,opt,name=hostname,proto3" json:"hostname,omitempty"`
+	// Platform of the node.
+	Platform *Platform `protobuf:"bytes,2,opt,name=platform" json:"platform,omitempty"`
+	// Total resources on the node.
+	Resources *Resources `protobuf:"bytes,3,opt,name=resources" json:"resources,omitempty"`
+	// Information about the Docker Engine on the node.
+	Engine *EngineDescription `protobuf:"bytes,4,opt,name=engine" json:"engine,omitempty"`
+	// Information on the node's TLS setup
+	TLSInfo *NodeTLSInfo `protobuf:"bytes,5,opt,name=tls_info,json=tlsInfo" json:"tls_info,omitempty"`
+	// FIPS indicates whether the node has FIPS-enabled
+	FIPS bool `protobuf:"varint,6,opt,name=fips,proto3" json:"fips,omitempty"`
+}
+
+func (m *NodeDescription) Reset()                    { *m = NodeDescription{} }
+func (*NodeDescription) ProtoMessage()               {}
+func (*NodeDescription) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{11} }
+
+type NodeTLSInfo struct {
+	// Information about which root certs the node trusts
+	TrustRoot []byte `protobuf:"bytes,1,opt,name=trust_root,json=trustRoot,proto3" json:"trust_root,omitempty"`
+	// Information about the node's current TLS certificate
+	CertIssuerSubject   []byte `protobuf:"bytes,2,opt,name=cert_issuer_subject,json=certIssuerSubject,proto3" json:"cert_issuer_subject,omitempty"`
+	CertIssuerPublicKey []byte `protobuf:"bytes,3,opt,name=cert_issuer_public_key,json=certIssuerPublicKey,proto3" json:"cert_issuer_public_key,omitempty"`
+}
+
+func (m *NodeTLSInfo) Reset()                    { *m = NodeTLSInfo{} }
+func (*NodeTLSInfo) ProtoMessage()               {}
+func (*NodeTLSInfo) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{12} }
+
+type RaftMemberStatus struct {
+	Leader       bool                          `protobuf:"varint,1,opt,name=leader,proto3" json:"leader,omitempty"`
+	Reachability RaftMemberStatus_Reachability `protobuf:"varint,2,opt,name=reachability,proto3,enum=docker.swarmkit.v1.RaftMemberStatus_Reachability" json:"reachability,omitempty"`
+	Message      string                        `protobuf:"bytes,3,opt,name=message,proto3" json:"message,omitempty"`
+}
+
+func (m *RaftMemberStatus) Reset()                    { *m = RaftMemberStatus{} }
+func (*RaftMemberStatus) ProtoMessage()               {}
+func (*RaftMemberStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{13} }
+
+type NodeStatus struct {
+	State   NodeStatus_State `protobuf:"varint,1,opt,name=state,proto3,enum=docker.swarmkit.v1.NodeStatus_State" json:"state,omitempty"`
+	Message string           `protobuf:"bytes,2,opt,name=message,proto3" json:"message,omitempty"`
+	// Addr is the node's IP address as observed by the manager
+	Addr string `protobuf:"bytes,3,opt,name=addr,proto3" json:"addr,omitempty"`
+}
+
+func (m *NodeStatus) Reset()                    { *m = NodeStatus{} }
+func (*NodeStatus) ProtoMessage()               {}
+func (*NodeStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{14} }
+
+type Image struct {
+	// reference is a docker image reference. This can include a rpository, tag
+	// or be fully qualified witha digest. The format is specified in the
+	// distribution/reference package.
+	Reference string `protobuf:"bytes,1,opt,name=reference,proto3" json:"reference,omitempty"`
+}
+
+func (m *Image) Reset()                    { *m = Image{} }
+func (*Image) ProtoMessage()               {}
+func (*Image) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{15} }
+
+// Mount describes volume mounts for a container.
+//
+// The Mount type follows the structure of the mount syscall, including a type,
+// source, target. Top-level flags, such as writable, are common to all kinds
+// of mounts, where we also provide options that are specific to a type of
+// mount. This corresponds to flags and data, respectively, in the syscall.
+type Mount struct {
+	// Type defines the nature of the mount.
+	Type Mount_MountType `protobuf:"varint,1,opt,name=type,proto3,enum=docker.swarmkit.v1.Mount_MountType" json:"type,omitempty"`
+	// Source specifies the name of the mount. Depending on mount type, this
+	// may be a volume name or a host path, or even ignored.
+	Source string `protobuf:"bytes,2,opt,name=source,proto3" json:"source,omitempty"`
+	// Target path in container
+	Target string `protobuf:"bytes,3,opt,name=target,proto3" json:"target,omitempty"`
+	// ReadOnly should be set to true if the mount should not be writable.
+	ReadOnly    bool                   `protobuf:"varint,4,opt,name=readonly,proto3" json:"readonly,omitempty"`
+	Consistency Mount_MountConsistency `protobuf:"varint,8,opt,name=consistency,proto3,enum=docker.swarmkit.v1.Mount_MountConsistency" json:"consistency,omitempty"`
+	// BindOptions configures properties of a bind mount type.
+	//
+	// For mounts of type bind, the source must be an absolute host path.
+	BindOptions *Mount_BindOptions `protobuf:"bytes,5,opt,name=bind_options,json=bindOptions" json:"bind_options,omitempty"`
+	// VolumeOptions configures the properties specific to a volume mount type.
+	//
+	// For mounts of type volume, the source will be used as the volume name.
+	VolumeOptions *Mount_VolumeOptions `protobuf:"bytes,6,opt,name=volume_options,json=volumeOptions" json:"volume_options,omitempty"`
+	// TmpfsOptions allows one to set options for mounting a temporary
+	// filesystem.
+	//
+	// The source field will be ignored when using mounts of type tmpfs.
+	TmpfsOptions *Mount_TmpfsOptions `protobuf:"bytes,7,opt,name=tmpfs_options,json=tmpfsOptions" json:"tmpfs_options,omitempty"`
+}
+
+func (m *Mount) Reset()                    { *m = Mount{} }
+func (*Mount) ProtoMessage()               {}
+func (*Mount) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{16} }
+
+// BindOptions specifies options that are specific to a bind mount.
+type Mount_BindOptions struct {
+	// Propagation mode of mount.
+	Propagation Mount_BindOptions_MountPropagation `protobuf:"varint,1,opt,name=propagation,proto3,enum=docker.swarmkit.v1.Mount_BindOptions_MountPropagation" json:"propagation,omitempty"`
+}
+
+func (m *Mount_BindOptions) Reset()                    { *m = Mount_BindOptions{} }
+func (*Mount_BindOptions) ProtoMessage()               {}
+func (*Mount_BindOptions) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{16, 0} }
+
+// VolumeOptions contains parameters for mounting the volume.
+type Mount_VolumeOptions struct {
+	// nocopy prevents automatic copying of data to the volume with data from target
+	NoCopy bool `protobuf:"varint,1,opt,name=nocopy,proto3" json:"nocopy,omitempty"`
+	// labels to apply to the volume if creating
+	Labels map[string]string `protobuf:"bytes,2,rep,name=labels" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// DriverConfig specifies the options that may be passed to the driver
+	// if the volume is created.
+	//
+	// If this is empty, no volume will be created if the volume is missing.
+	DriverConfig *Driver `protobuf:"bytes,3,opt,name=driver_config,json=driverConfig" json:"driver_config,omitempty"`
+}
+
+func (m *Mount_VolumeOptions) Reset()                    { *m = Mount_VolumeOptions{} }
+func (*Mount_VolumeOptions) ProtoMessage()               {}
+func (*Mount_VolumeOptions) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{16, 1} }
+
+type Mount_TmpfsOptions struct {
+	// Size sets the size of the tmpfs, in bytes.
+	//
+	// This will be converted to an operating system specific value
+	// depending on the host. For example, on linux, it will be convered to
+	// use a 'k', 'm' or 'g' syntax. BSD, though not widely supported with
+	// docker, uses a straight byte value.
+	//
+	// Percentages are not supported.
+	SizeBytes int64 `protobuf:"varint,1,opt,name=size_bytes,json=sizeBytes,proto3" json:"size_bytes,omitempty"`
+	// Mode of the tmpfs upon creation
+	Mode os.FileMode `protobuf:"varint,2,opt,name=mode,proto3,customtype=os.FileMode" json:"mode"`
+}
+
+func (m *Mount_TmpfsOptions) Reset()                    { *m = Mount_TmpfsOptions{} }
+func (*Mount_TmpfsOptions) ProtoMessage()               {}
+func (*Mount_TmpfsOptions) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{16, 2} }
+
+type RestartPolicy struct {
+	Condition RestartPolicy_RestartCondition `protobuf:"varint,1,opt,name=condition,proto3,enum=docker.swarmkit.v1.RestartPolicy_RestartCondition" json:"condition,omitempty"`
+	// Delay between restart attempts
+	// Note: can't use stdduration because this field needs to be nullable.
+	Delay *google_protobuf1.Duration `protobuf:"bytes,2,opt,name=delay" json:"delay,omitempty"`
+	// MaxAttempts is the maximum number of restarts to attempt on an
+	// instance before giving up. Ignored if 0.
+	MaxAttempts uint64 `protobuf:"varint,3,opt,name=max_attempts,json=maxAttempts,proto3" json:"max_attempts,omitempty"`
+	// Window is the time window used to evaluate the restart policy.
+	// The time window is unbounded if this is 0.
+	// Note: can't use stdduration because this field needs to be nullable.
+	Window *google_protobuf1.Duration `protobuf:"bytes,4,opt,name=window" json:"window,omitempty"`
+}
+
+func (m *RestartPolicy) Reset()                    { *m = RestartPolicy{} }
+func (*RestartPolicy) ProtoMessage()               {}
+func (*RestartPolicy) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{17} }
+
+// UpdateConfig specifies the rate and policy of updates.
+// TODO(aluzzardi): Consider making this a oneof with RollingStrategy and LockstepStrategy.
+type UpdateConfig struct {
+	// Maximum number of tasks to be updated in one iteration.
+	// 0 means unlimited parallelism.
+	Parallelism uint64 `protobuf:"varint,1,opt,name=parallelism,proto3" json:"parallelism,omitempty"`
+	// Amount of time between updates.
+	Delay time.Duration `protobuf:"bytes,2,opt,name=delay,stdduration" json:"delay"`
+	// FailureAction is the action to take when an update failures.
+	FailureAction UpdateConfig_FailureAction `protobuf:"varint,3,opt,name=failure_action,json=failureAction,proto3,enum=docker.swarmkit.v1.UpdateConfig_FailureAction" json:"failure_action,omitempty"`
+	// Monitor indicates how long to monitor a task for failure after it is
+	// created. If the task fails by ending up in one of the states
+	// REJECTED, COMPLETED, or FAILED, within Monitor from its creation,
+	// this counts as a failure. If it fails after Monitor, it does not
+	// count as a failure. If Monitor is unspecified, a default value will
+	// be used.
+	// Note: can't use stdduration because this field needs to be nullable.
+	Monitor *google_protobuf1.Duration `protobuf:"bytes,4,opt,name=monitor" json:"monitor,omitempty"`
+	// MaxFailureRatio is the fraction of tasks that may fail during
+	// an update before the failure action is invoked. Any task created by
+	// the current update which ends up in one of the states REJECTED,
+	// COMPLETED or FAILED within Monitor from its creation counts as a
+	// failure. The number of failures is divided by the number of tasks
+	// being updated, and if this fraction is greater than
+	// MaxFailureRatio, the failure action is invoked.
+	//
+	// If the failure action is CONTINUE, there is no effect.
+	// If the failure action is PAUSE, no more tasks will be updated until
+	// another update is started.
+	// If the failure action is ROLLBACK, the orchestrator will attempt to
+	// roll back to the previous service spec. If the MaxFailureRatio
+	// threshold is hit during the rollback, the rollback will pause.
+	MaxFailureRatio float32                  `protobuf:"fixed32,5,opt,name=max_failure_ratio,json=maxFailureRatio,proto3" json:"max_failure_ratio,omitempty"`
+	Order           UpdateConfig_UpdateOrder `protobuf:"varint,6,opt,name=order,proto3,enum=docker.swarmkit.v1.UpdateConfig_UpdateOrder" json:"order,omitempty"`
+}
+
+func (m *UpdateConfig) Reset()                    { *m = UpdateConfig{} }
+func (*UpdateConfig) ProtoMessage()               {}
+func (*UpdateConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{18} }
+
+// UpdateStatus is the status of an update in progress.
+type UpdateStatus struct {
+	// State is the state of this update. It indicates whether the
+	// update is in progress, completed, paused, rolling back, or
+	// finished rolling back.
+	State UpdateStatus_UpdateState `protobuf:"varint,1,opt,name=state,proto3,enum=docker.swarmkit.v1.UpdateStatus_UpdateState" json:"state,omitempty"`
+	// StartedAt is the time at which the update was started.
+	// Note: can't use stdtime because this field is nullable.
+	StartedAt *google_protobuf.Timestamp `protobuf:"bytes,2,opt,name=started_at,json=startedAt" json:"started_at,omitempty"`
+	// CompletedAt is the time at which the update completed successfully,
+	// paused, or finished rolling back.
+	// Note: can't use stdtime because this field is nullable.
+	CompletedAt *google_protobuf.Timestamp `protobuf:"bytes,3,opt,name=completed_at,json=completedAt" json:"completed_at,omitempty"`
+	// Message explains how the update got into its current state. For
+	// example, if the update is paused, it will explain what is preventing
+	// the update from proceeding (typically the failure of a task to start up
+	// when OnFailure is PAUSE).
+	Message string `protobuf:"bytes,4,opt,name=message,proto3" json:"message,omitempty"`
+}
+
+func (m *UpdateStatus) Reset()                    { *m = UpdateStatus{} }
+func (*UpdateStatus) ProtoMessage()               {}
+func (*UpdateStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{19} }
+
+// Container specific status.
+type ContainerStatus struct {
+	ContainerID string `protobuf:"bytes,1,opt,name=container_id,json=containerId,proto3" json:"container_id,omitempty"`
+	PID         int32  `protobuf:"varint,2,opt,name=pid,proto3" json:"pid,omitempty"`
+	ExitCode    int32  `protobuf:"varint,3,opt,name=exit_code,json=exitCode,proto3" json:"exit_code,omitempty"`
+}
+
+func (m *ContainerStatus) Reset()                    { *m = ContainerStatus{} }
+func (*ContainerStatus) ProtoMessage()               {}
+func (*ContainerStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{20} }
+
+// PortStatus specifies the actual allocated runtime state of a list
+// of port configs.
+type PortStatus struct {
+	Ports []*PortConfig `protobuf:"bytes,1,rep,name=ports" json:"ports,omitempty"`
+}
+
+func (m *PortStatus) Reset()                    { *m = PortStatus{} }
+func (*PortStatus) ProtoMessage()               {}
+func (*PortStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{21} }
+
+type TaskStatus struct {
+	// Note: can't use stdtime because this field is nullable.
+	Timestamp *google_protobuf.Timestamp `protobuf:"bytes,1,opt,name=timestamp" json:"timestamp,omitempty"`
+	// State expresses the current state of the task.
+	State TaskState `protobuf:"varint,2,opt,name=state,proto3,enum=docker.swarmkit.v1.TaskState" json:"state,omitempty"`
+	// Message reports a message for the task status. This should provide a
+	// human readable message that can point to how the task actually arrived
+	// at a current state.
+	//
+	// As a convention, we place the a small message here that led to the
+	// current state. For example, if the task is in ready, because it was
+	// prepared, we'd place "prepared" in this field. If we skipped preparation
+	// because the task is prepared, we would put "already prepared" in this
+	// field.
+	Message string `protobuf:"bytes,3,opt,name=message,proto3" json:"message,omitempty"`
+	// Err is set if the task is in an error state, or is unable to
+	// progress from an earlier state because a precondition is
+	// unsatisfied.
+	//
+	// The following states should report a companion error:
+	//
+	// 	FAILED, REJECTED
+	//
+	// In general, messages that should be surfaced to users belong in the
+	// Err field, and notes on routine state transitions belong in Message.
+	//
+	// TODO(stevvooe) Integrate this field with the error interface.
+	Err string `protobuf:"bytes,4,opt,name=err,proto3" json:"err,omitempty"`
+	// Container status contains container specific status information.
+	//
+	// Types that are valid to be assigned to RuntimeStatus:
+	//	*TaskStatus_Container
+	RuntimeStatus isTaskStatus_RuntimeStatus `protobuf_oneof:"runtime_status"`
+	// HostPorts provides a list of ports allocated at the host
+	// level.
+	PortStatus *PortStatus `protobuf:"bytes,6,opt,name=port_status,json=portStatus" json:"port_status,omitempty"`
+	// AppliedBy gives the node ID of the manager that applied this task
+	// status update to the Task object.
+	AppliedBy string `protobuf:"bytes,7,opt,name=applied_by,json=appliedBy,proto3" json:"applied_by,omitempty"`
+	// AppliedAt gives a timestamp of when this status update was applied to
+	// the Task object.
+	// Note: can't use stdtime because this field is nullable.
+	AppliedAt *google_protobuf.Timestamp `protobuf:"bytes,8,opt,name=applied_at,json=appliedAt" json:"applied_at,omitempty"`
+}
+
+func (m *TaskStatus) Reset()                    { *m = TaskStatus{} }
+func (*TaskStatus) ProtoMessage()               {}
+func (*TaskStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{22} }
+
+type isTaskStatus_RuntimeStatus interface {
+	isTaskStatus_RuntimeStatus()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type TaskStatus_Container struct {
+	Container *ContainerStatus `protobuf:"bytes,5,opt,name=container,oneof"`
+}
+
+func (*TaskStatus_Container) isTaskStatus_RuntimeStatus() {}
+
+func (m *TaskStatus) GetRuntimeStatus() isTaskStatus_RuntimeStatus {
+	if m != nil {
+		return m.RuntimeStatus
+	}
+	return nil
+}
+
+func (m *TaskStatus) GetContainer() *ContainerStatus {
+	if x, ok := m.GetRuntimeStatus().(*TaskStatus_Container); ok {
+		return x.Container
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*TaskStatus) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _TaskStatus_OneofMarshaler, _TaskStatus_OneofUnmarshaler, _TaskStatus_OneofSizer, []interface{}{
+		(*TaskStatus_Container)(nil),
+	}
+}
+
+func _TaskStatus_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*TaskStatus)
+	// runtime_status
+	switch x := m.RuntimeStatus.(type) {
+	case *TaskStatus_Container:
+		_ = b.EncodeVarint(5<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Container); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("TaskStatus.RuntimeStatus has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _TaskStatus_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*TaskStatus)
+	switch tag {
+	case 5: // runtime_status.container
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(ContainerStatus)
+		err := b.DecodeMessage(msg)
+		m.RuntimeStatus = &TaskStatus_Container{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _TaskStatus_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*TaskStatus)
+	// runtime_status
+	switch x := m.RuntimeStatus.(type) {
+	case *TaskStatus_Container:
+		s := proto.Size(x.Container)
+		n += proto.SizeVarint(5<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// NetworkAttachmentConfig specifies how a service should be attached to a particular network.
+//
+// For now, this is a simple struct, but this can include future information
+// instructing Swarm on how this service should work on the particular
+// network.
+type NetworkAttachmentConfig struct {
+	// Target specifies the target network for attachment. This value must be a
+	// network ID.
+	Target string `protobuf:"bytes,1,opt,name=target,proto3" json:"target,omitempty"`
+	// Aliases specifies a list of discoverable alternate names for the service on this Target.
+	Aliases []string `protobuf:"bytes,2,rep,name=aliases" json:"aliases,omitempty"`
+	// Addresses specifies a list of ipv4 and ipv6 addresses
+	// preferred. If these addresses are not available then the
+	// attachment might fail.
+	Addresses []string `protobuf:"bytes,3,rep,name=addresses" json:"addresses,omitempty"`
+	// DriverAttachmentOpts is a map of driver attachment options for the network target
+	DriverAttachmentOpts map[string]string `protobuf:"bytes,4,rep,name=driver_attachment_opts,json=driverAttachmentOpts" json:"driver_attachment_opts,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *NetworkAttachmentConfig) Reset()                    { *m = NetworkAttachmentConfig{} }
+func (*NetworkAttachmentConfig) ProtoMessage()               {}
+func (*NetworkAttachmentConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{23} }
+
+// IPAMConfig specifies parameters for IP Address Management.
+type IPAMConfig struct {
+	Family IPAMConfig_AddressFamily `protobuf:"varint,1,opt,name=family,proto3,enum=docker.swarmkit.v1.IPAMConfig_AddressFamily" json:"family,omitempty"`
+	// Subnet defines a network as a CIDR address (ie network and mask
+	// 192.168.0.1/24).
+	Subnet string `protobuf:"bytes,2,opt,name=subnet,proto3" json:"subnet,omitempty"`
+	// Range defines the portion of the subnet to allocate to tasks. This is
+	// defined as a subnet within the primary subnet.
+	Range string `protobuf:"bytes,3,opt,name=range,proto3" json:"range,omitempty"`
+	// Gateway address within the subnet.
+	Gateway string `protobuf:"bytes,4,opt,name=gateway,proto3" json:"gateway,omitempty"`
+	// Reserved is a list of address from the master pool that should *not* be
+	// allocated. These addresses may have already been allocated or may be
+	// reserved for another allocation manager.
+	Reserved map[string]string `protobuf:"bytes,5,rep,name=reserved" json:"reserved,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *IPAMConfig) Reset()                    { *m = IPAMConfig{} }
+func (*IPAMConfig) ProtoMessage()               {}
+func (*IPAMConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{24} }
+
+// PortConfig specifies an exposed port which can be
+// addressed using the given name. This can be later queried
+// using a service discovery api or a DNS SRV query. The node
+// port specifies a port that can be used to address this
+// service external to the cluster by sending a connection
+// request to this port to any node on the cluster.
+type PortConfig struct {
+	// Name for the port. If provided the port information can
+	// be queried using the name as in a DNS SRV query.
+	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	// Protocol for the port which is exposed.
+	Protocol PortConfig_Protocol `protobuf:"varint,2,opt,name=protocol,proto3,enum=docker.swarmkit.v1.PortConfig_Protocol" json:"protocol,omitempty"`
+	// The port which the application is exposing and is bound to.
+	TargetPort uint32 `protobuf:"varint,3,opt,name=target_port,json=targetPort,proto3" json:"target_port,omitempty"`
+	// PublishedPort specifies the port on which the service is exposed. If
+	// specified, the port must be within the available range. If not specified
+	// (value is zero), an available port is automatically assigned.
+	PublishedPort uint32 `protobuf:"varint,4,opt,name=published_port,json=publishedPort,proto3" json:"published_port,omitempty"`
+	// PublishMode controls how the port is published.
+	PublishMode PortConfig_PublishMode `protobuf:"varint,5,opt,name=publish_mode,json=publishMode,proto3,enum=docker.swarmkit.v1.PortConfig_PublishMode" json:"publish_mode,omitempty"`
+}
+
+func (m *PortConfig) Reset()                    { *m = PortConfig{} }
+func (*PortConfig) ProtoMessage()               {}
+func (*PortConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{25} }
+
+// Driver is a generic driver type to be used throughout the API. For now, a
+// driver is simply a name and set of options. The field contents depend on the
+// target use case and driver application. For example, a network driver may
+// have different rules than a volume driver.
+type Driver struct {
+	Name    string            `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	Options map[string]string `protobuf:"bytes,2,rep,name=options" json:"options,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *Driver) Reset()                    { *m = Driver{} }
+func (*Driver) ProtoMessage()               {}
+func (*Driver) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{26} }
+
+type IPAMOptions struct {
+	Driver  *Driver       `protobuf:"bytes,1,opt,name=driver" json:"driver,omitempty"`
+	Configs []*IPAMConfig `protobuf:"bytes,3,rep,name=configs" json:"configs,omitempty"`
+}
+
+func (m *IPAMOptions) Reset()                    { *m = IPAMOptions{} }
+func (*IPAMOptions) ProtoMessage()               {}
+func (*IPAMOptions) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{27} }
+
+// Peer should be used anywhere where we are describing a remote peer.
+type Peer struct {
+	NodeID string `protobuf:"bytes,1,opt,name=node_id,json=nodeId,proto3" json:"node_id,omitempty"`
+	Addr   string `protobuf:"bytes,2,opt,name=addr,proto3" json:"addr,omitempty"`
+}
+
+func (m *Peer) Reset()                    { *m = Peer{} }
+func (*Peer) ProtoMessage()               {}
+func (*Peer) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{28} }
+
+// WeightedPeer should be used anywhere where we are describing a remote peer
+// with a weight.
+type WeightedPeer struct {
+	Peer   *Peer `protobuf:"bytes,1,opt,name=peer" json:"peer,omitempty"`
+	Weight int64 `protobuf:"varint,2,opt,name=weight,proto3" json:"weight,omitempty"`
+}
+
+func (m *WeightedPeer) Reset()                    { *m = WeightedPeer{} }
+func (*WeightedPeer) ProtoMessage()               {}
+func (*WeightedPeer) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{29} }
+
+type IssuanceStatus struct {
+	State IssuanceStatus_State `protobuf:"varint,1,opt,name=state,proto3,enum=docker.swarmkit.v1.IssuanceStatus_State" json:"state,omitempty"`
+	// Err is set if the Certificate Issuance is in an error state.
+	// The following states should report a companion error:
+	// 	FAILED
+	Err string `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
+}
+
+func (m *IssuanceStatus) Reset()                    { *m = IssuanceStatus{} }
+func (*IssuanceStatus) ProtoMessage()               {}
+func (*IssuanceStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{30} }
+
+type AcceptancePolicy struct {
+	Policies []*AcceptancePolicy_RoleAdmissionPolicy `protobuf:"bytes,1,rep,name=policies" json:"policies,omitempty"`
+}
+
+func (m *AcceptancePolicy) Reset()                    { *m = AcceptancePolicy{} }
+func (*AcceptancePolicy) ProtoMessage()               {}
+func (*AcceptancePolicy) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{31} }
+
+type AcceptancePolicy_RoleAdmissionPolicy struct {
+	Role NodeRole `protobuf:"varint,1,opt,name=role,proto3,enum=docker.swarmkit.v1.NodeRole" json:"role,omitempty"`
+	// Autoaccept controls which roles' certificates are automatically
+	// issued without administrator intervention.
+	Autoaccept bool `protobuf:"varint,2,opt,name=autoaccept,proto3" json:"autoaccept,omitempty"`
+	// Secret represents a user-provided string that is necessary for new
+	// nodes to join the cluster
+	Secret *AcceptancePolicy_RoleAdmissionPolicy_Secret `protobuf:"bytes,3,opt,name=secret" json:"secret,omitempty"`
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) Reset()      { *m = AcceptancePolicy_RoleAdmissionPolicy{} }
+func (*AcceptancePolicy_RoleAdmissionPolicy) ProtoMessage() {}
+func (*AcceptancePolicy_RoleAdmissionPolicy) Descriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{31, 0}
+}
+
+type AcceptancePolicy_RoleAdmissionPolicy_Secret struct {
+	// The actual content (possibly hashed)
+	Data []byte `protobuf:"bytes,1,opt,name=data,proto3" json:"data,omitempty"`
+	// The type of hash we are using, or "plaintext"
+	Alg string `protobuf:"bytes,2,opt,name=alg,proto3" json:"alg,omitempty"`
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) Reset() {
+	*m = AcceptancePolicy_RoleAdmissionPolicy_Secret{}
+}
+func (*AcceptancePolicy_RoleAdmissionPolicy_Secret) ProtoMessage() {}
+func (*AcceptancePolicy_RoleAdmissionPolicy_Secret) Descriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{31, 0, 0}
+}
+
+type ExternalCA struct {
+	// Protocol is the protocol used by this external CA.
+	Protocol ExternalCA_CAProtocol `protobuf:"varint,1,opt,name=protocol,proto3,enum=docker.swarmkit.v1.ExternalCA_CAProtocol" json:"protocol,omitempty"`
+	// URL is the URL where the external CA can be reached.
+	URL string `protobuf:"bytes,2,opt,name=url,proto3" json:"url,omitempty"`
+	// Options is a set of additional key/value pairs whose interpretation
+	// depends on the specified CA type.
+	Options map[string]string `protobuf:"bytes,3,rep,name=options" json:"options,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+	// CACert specifies which root CA is used by this external CA
+	CACert []byte `protobuf:"bytes,4,opt,name=ca_cert,json=caCert,proto3" json:"ca_cert,omitempty"`
+}
+
+func (m *ExternalCA) Reset()                    { *m = ExternalCA{} }
+func (*ExternalCA) ProtoMessage()               {}
+func (*ExternalCA) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{32} }
+
+type CAConfig struct {
+	// NodeCertExpiry is the duration certificates should be issued for
+	// Note: can't use stdduration because this field needs to be nullable.
+	NodeCertExpiry *google_protobuf1.Duration `protobuf:"bytes,1,opt,name=node_cert_expiry,json=nodeCertExpiry" json:"node_cert_expiry,omitempty"`
+	// ExternalCAs is a list of CAs to which a manager node will make
+	// certificate signing requests for node certificates.
+	ExternalCAs []*ExternalCA `protobuf:"bytes,2,rep,name=external_cas,json=externalCas" json:"external_cas,omitempty"`
+	// SigningCACert is the desired CA certificate to be used as the root and
+	// signing CA for the swarm.  If not provided, indicates that we are either happy
+	// with the current configuration, or (together with a bump in the ForceRotate value)
+	// that we want a certificate and key generated for us.
+	SigningCACert []byte `protobuf:"bytes,3,opt,name=signing_ca_cert,json=signingCaCert,proto3" json:"signing_ca_cert,omitempty"`
+	// SigningCAKey is the desired private key, matching the signing CA cert, to be used
+	// to sign certificates for the swarm
+	SigningCAKey []byte `protobuf:"bytes,4,opt,name=signing_ca_key,json=signingCaKey,proto3" json:"signing_ca_key,omitempty"`
+	// ForceRotate is a counter that triggers a root CA rotation even if no relevant
+	// parameters have been in the spec. This will force the manager to generate a new
+	// certificate and key, if none have been provided.
+	ForceRotate uint64 `protobuf:"varint,5,opt,name=force_rotate,json=forceRotate,proto3" json:"force_rotate,omitempty"`
+}
+
+func (m *CAConfig) Reset()                    { *m = CAConfig{} }
+func (*CAConfig) ProtoMessage()               {}
+func (*CAConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{33} }
+
+// OrchestrationConfig defines cluster-level orchestration settings.
+type OrchestrationConfig struct {
+	// TaskHistoryRetentionLimit is the number of historic tasks to keep per instance or
+	// node. If negative, never remove completed or failed tasks.
+	TaskHistoryRetentionLimit int64 `protobuf:"varint,1,opt,name=task_history_retention_limit,json=taskHistoryRetentionLimit,proto3" json:"task_history_retention_limit,omitempty"`
+}
+
+func (m *OrchestrationConfig) Reset()                    { *m = OrchestrationConfig{} }
+func (*OrchestrationConfig) ProtoMessage()               {}
+func (*OrchestrationConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{34} }
+
+// TaskDefaults specifies default values for task creation.
+type TaskDefaults struct {
+	// LogDriver specifies the log driver to use for the cluster if not
+	// specified for each task.
+	//
+	// If this is changed, only new tasks will pick up the new log driver.
+	// Existing tasks will continue to use the previous default until rescheduled.
+	LogDriver *Driver `protobuf:"bytes,1,opt,name=log_driver,json=logDriver" json:"log_driver,omitempty"`
+}
+
+func (m *TaskDefaults) Reset()                    { *m = TaskDefaults{} }
+func (*TaskDefaults) ProtoMessage()               {}
+func (*TaskDefaults) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{35} }
+
+// DispatcherConfig defines cluster-level dispatcher settings.
+type DispatcherConfig struct {
+	// HeartbeatPeriod defines how often agent should send heartbeats to
+	// dispatcher.
+	// Note: can't use stdduration because this field needs to be nullable.
+	HeartbeatPeriod *google_protobuf1.Duration `protobuf:"bytes,1,opt,name=heartbeat_period,json=heartbeatPeriod" json:"heartbeat_period,omitempty"`
+}
+
+func (m *DispatcherConfig) Reset()                    { *m = DispatcherConfig{} }
+func (*DispatcherConfig) ProtoMessage()               {}
+func (*DispatcherConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{36} }
+
+// RaftConfig defines raft settings for the cluster.
+type RaftConfig struct {
+	// SnapshotInterval is the number of log entries between snapshots.
+	SnapshotInterval uint64 `protobuf:"varint,1,opt,name=snapshot_interval,json=snapshotInterval,proto3" json:"snapshot_interval,omitempty"`
+	// KeepOldSnapshots is the number of snapshots to keep beyond the
+	// current snapshot.
+	KeepOldSnapshots uint64 `protobuf:"varint,2,opt,name=keep_old_snapshots,json=keepOldSnapshots,proto3" json:"keep_old_snapshots,omitempty"`
+	// LogEntriesForSlowFollowers is the number of log entries to keep
+	// around to sync up slow followers after a snapshot is created.
+	LogEntriesForSlowFollowers uint64 `protobuf:"varint,3,opt,name=log_entries_for_slow_followers,json=logEntriesForSlowFollowers,proto3" json:"log_entries_for_slow_followers,omitempty"`
+	// HeartbeatTick defines the amount of ticks (in seconds) between
+	// each heartbeat message sent to other members for health-check.
+	HeartbeatTick uint32 `protobuf:"varint,4,opt,name=heartbeat_tick,json=heartbeatTick,proto3" json:"heartbeat_tick,omitempty"`
+	// ElectionTick defines the amount of ticks (in seconds) needed
+	// without a leader to trigger a new election.
+	ElectionTick uint32 `protobuf:"varint,5,opt,name=election_tick,json=electionTick,proto3" json:"election_tick,omitempty"`
+}
+
+func (m *RaftConfig) Reset()                    { *m = RaftConfig{} }
+func (*RaftConfig) ProtoMessage()               {}
+func (*RaftConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{37} }
+
+type EncryptionConfig struct {
+	// AutoLockManagers specifies whether or not managers TLS keys and raft data
+	// should be encrypted at rest in such a way that they must be unlocked
+	// before the manager node starts up again.
+	AutoLockManagers bool `protobuf:"varint,1,opt,name=auto_lock_managers,json=autoLockManagers,proto3" json:"auto_lock_managers,omitempty"`
+}
+
+func (m *EncryptionConfig) Reset()                    { *m = EncryptionConfig{} }
+func (*EncryptionConfig) ProtoMessage()               {}
+func (*EncryptionConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{38} }
+
+type SpreadOver struct {
+	SpreadDescriptor string `protobuf:"bytes,1,opt,name=spread_descriptor,json=spreadDescriptor,proto3" json:"spread_descriptor,omitempty"`
+}
+
+func (m *SpreadOver) Reset()                    { *m = SpreadOver{} }
+func (*SpreadOver) ProtoMessage()               {}
+func (*SpreadOver) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{39} }
+
+type PlacementPreference struct {
+	// Types that are valid to be assigned to Preference:
+	//	*PlacementPreference_Spread
+	Preference isPlacementPreference_Preference `protobuf_oneof:"Preference"`
+}
+
+func (m *PlacementPreference) Reset()                    { *m = PlacementPreference{} }
+func (*PlacementPreference) ProtoMessage()               {}
+func (*PlacementPreference) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{40} }
+
+type isPlacementPreference_Preference interface {
+	isPlacementPreference_Preference()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type PlacementPreference_Spread struct {
+	Spread *SpreadOver `protobuf:"bytes,1,opt,name=spread,oneof"`
+}
+
+func (*PlacementPreference_Spread) isPlacementPreference_Preference() {}
+
+func (m *PlacementPreference) GetPreference() isPlacementPreference_Preference {
+	if m != nil {
+		return m.Preference
+	}
+	return nil
+}
+
+func (m *PlacementPreference) GetSpread() *SpreadOver {
+	if x, ok := m.GetPreference().(*PlacementPreference_Spread); ok {
+		return x.Spread
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*PlacementPreference) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _PlacementPreference_OneofMarshaler, _PlacementPreference_OneofUnmarshaler, _PlacementPreference_OneofSizer, []interface{}{
+		(*PlacementPreference_Spread)(nil),
+	}
+}
+
+func _PlacementPreference_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*PlacementPreference)
+	// Preference
+	switch x := m.Preference.(type) {
+	case *PlacementPreference_Spread:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Spread); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("PlacementPreference.Preference has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _PlacementPreference_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*PlacementPreference)
+	switch tag {
+	case 1: // Preference.spread
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(SpreadOver)
+		err := b.DecodeMessage(msg)
+		m.Preference = &PlacementPreference_Spread{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _PlacementPreference_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*PlacementPreference)
+	// Preference
+	switch x := m.Preference.(type) {
+	case *PlacementPreference_Spread:
+		s := proto.Size(x.Spread)
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// Placement specifies task distribution constraints.
+type Placement struct {
+	// Constraints specifies a set of requirements a node should meet for a task.
+	Constraints []string `protobuf:"bytes,1,rep,name=constraints" json:"constraints,omitempty"`
+	// Preferences provide a way to make the scheduler aware of factors
+	// such as topology. They are provided in order from highest to lowest
+	// precedence.
+	Preferences []*PlacementPreference `protobuf:"bytes,2,rep,name=preferences" json:"preferences,omitempty"`
+	// Platforms stores all the platforms that the image can run on.
+	// This field is used in the platform filter for scheduling. If empty,
+	// then the platform filter is off, meaning there are no scheduling restrictions.
+	Platforms []*Platform `protobuf:"bytes,3,rep,name=platforms" json:"platforms,omitempty"`
+}
+
+func (m *Placement) Reset()                    { *m = Placement{} }
+func (*Placement) ProtoMessage()               {}
+func (*Placement) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{41} }
+
+// JoinToken contains the join tokens for workers and managers.
+type JoinTokens struct {
+	// Worker is the join token workers may use to join the swarm.
+	Worker string `protobuf:"bytes,1,opt,name=worker,proto3" json:"worker,omitempty"`
+	// Manager is the join token workers may use to join the swarm.
+	Manager string `protobuf:"bytes,2,opt,name=manager,proto3" json:"manager,omitempty"`
+}
+
+func (m *JoinTokens) Reset()                    { *m = JoinTokens{} }
+func (*JoinTokens) ProtoMessage()               {}
+func (*JoinTokens) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{42} }
+
+type RootCA struct {
+	// CAKey is the root CA private key.
+	CAKey []byte `protobuf:"bytes,1,opt,name=ca_key,json=caKey,proto3" json:"ca_key,omitempty"`
+	// CACert is the root CA certificate.
+	CACert []byte `protobuf:"bytes,2,opt,name=ca_cert,json=caCert,proto3" json:"ca_cert,omitempty"`
+	// CACertHash is the digest of the CA Certificate.
+	CACertHash string `protobuf:"bytes,3,opt,name=ca_cert_hash,json=caCertHash,proto3" json:"ca_cert_hash,omitempty"`
+	// JoinTokens contains the join tokens for workers and managers.
+	JoinTokens JoinTokens `protobuf:"bytes,4,opt,name=join_tokens,json=joinTokens" json:"join_tokens"`
+	// RootRotation contains the new root cert and key we want to rotate to - if this is nil, we are not in the
+	// middle of a root rotation
+	RootRotation *RootRotation `protobuf:"bytes,5,opt,name=root_rotation,json=rootRotation" json:"root_rotation,omitempty"`
+	// LastForcedRotation matches the Cluster Spec's CAConfig's ForceRotation counter.
+	// It indicates when the current CA cert and key were generated (or updated).
+	LastForcedRotation uint64 `protobuf:"varint,6,opt,name=last_forced_rotation,json=lastForcedRotation,proto3" json:"last_forced_rotation,omitempty"`
+}
+
+func (m *RootCA) Reset()                    { *m = RootCA{} }
+func (*RootCA) ProtoMessage()               {}
+func (*RootCA) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{43} }
+
+type Certificate struct {
+	Role        NodeRole       `protobuf:"varint,1,opt,name=role,proto3,enum=docker.swarmkit.v1.NodeRole" json:"role,omitempty"`
+	CSR         []byte         `protobuf:"bytes,2,opt,name=csr,proto3" json:"csr,omitempty"`
+	Status      IssuanceStatus `protobuf:"bytes,3,opt,name=status" json:"status"`
+	Certificate []byte         `protobuf:"bytes,4,opt,name=certificate,proto3" json:"certificate,omitempty"`
+	// CN represents the node ID.
+	CN string `protobuf:"bytes,5,opt,name=cn,proto3" json:"cn,omitempty"`
+}
+
+func (m *Certificate) Reset()                    { *m = Certificate{} }
+func (*Certificate) ProtoMessage()               {}
+func (*Certificate) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{44} }
+
+// Symmetric keys to encrypt inter-agent communication.
+type EncryptionKey struct {
+	// Agent subsystem the key is intended for. Example:
+	// networking:gossip
+	Subsystem string                  `protobuf:"bytes,1,opt,name=subsystem,proto3" json:"subsystem,omitempty"`
+	Algorithm EncryptionKey_Algorithm `protobuf:"varint,2,opt,name=algorithm,proto3,enum=docker.swarmkit.v1.EncryptionKey_Algorithm" json:"algorithm,omitempty"`
+	Key       []byte                  `protobuf:"bytes,3,opt,name=key,proto3" json:"key,omitempty"`
+	// Time stamp from the lamport clock of the key allocator to
+	// identify the relative age of the key.
+	LamportTime uint64 `protobuf:"varint,4,opt,name=lamport_time,json=lamportTime,proto3" json:"lamport_time,omitempty"`
+}
+
+func (m *EncryptionKey) Reset()                    { *m = EncryptionKey{} }
+func (*EncryptionKey) ProtoMessage()               {}
+func (*EncryptionKey) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{45} }
+
+// ManagerStatus provides informations about the state of a manager in the cluster.
+type ManagerStatus struct {
+	// RaftID specifies the internal ID used by the manager in a raft context, it can never be modified
+	// and is used only for information purposes
+	RaftID uint64 `protobuf:"varint,1,opt,name=raft_id,json=raftId,proto3" json:"raft_id,omitempty"`
+	// Addr is the address advertised to raft.
+	Addr string `protobuf:"bytes,2,opt,name=addr,proto3" json:"addr,omitempty"`
+	// Leader is set to true if this node is the raft leader.
+	Leader bool `protobuf:"varint,3,opt,name=leader,proto3" json:"leader,omitempty"`
+	// Reachability specifies whether this node is reachable.
+	Reachability RaftMemberStatus_Reachability `protobuf:"varint,4,opt,name=reachability,proto3,enum=docker.swarmkit.v1.RaftMemberStatus_Reachability" json:"reachability,omitempty"`
+}
+
+func (m *ManagerStatus) Reset()                    { *m = ManagerStatus{} }
+func (*ManagerStatus) ProtoMessage()               {}
+func (*ManagerStatus) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{46} }
+
+// FileTarget represents a specific target that is backed by a file
+type FileTarget struct {
+	// Name represents the final filename in the filesystem
+	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
+	// UID represents the file UID
+	UID string `protobuf:"bytes,2,opt,name=uid,proto3" json:"uid,omitempty"`
+	// GID represents the file GID
+	GID string `protobuf:"bytes,3,opt,name=gid,proto3" json:"gid,omitempty"`
+	// Mode represents the FileMode of the file
+	Mode os.FileMode `protobuf:"varint,4,opt,name=mode,proto3,customtype=os.FileMode" json:"mode"`
+}
+
+func (m *FileTarget) Reset()                    { *m = FileTarget{} }
+func (*FileTarget) ProtoMessage()               {}
+func (*FileTarget) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{47} }
+
+// SecretReference is the linkage between a service and a secret that it uses.
+type SecretReference struct {
+	// SecretID represents the ID of the specific Secret that we're
+	// referencing. This identifier exists so that SecretReferences don't leak
+	// any information about the secret contents.
+	SecretID string `protobuf:"bytes,1,opt,name=secret_id,json=secretId,proto3" json:"secret_id,omitempty"`
+	// SecretName is the name of the secret that this references, but this is just provided for
+	// lookup/display purposes.  The secret in the reference will be identified by its ID.
+	SecretName string `protobuf:"bytes,2,opt,name=secret_name,json=secretName,proto3" json:"secret_name,omitempty"`
+	// Target specifies how this secret should be exposed to the task.
+	//
+	// Types that are valid to be assigned to Target:
+	//	*SecretReference_File
+	Target isSecretReference_Target `protobuf_oneof:"target"`
+}
+
+func (m *SecretReference) Reset()                    { *m = SecretReference{} }
+func (*SecretReference) ProtoMessage()               {}
+func (*SecretReference) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{48} }
+
+type isSecretReference_Target interface {
+	isSecretReference_Target()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type SecretReference_File struct {
+	File *FileTarget `protobuf:"bytes,3,opt,name=file,oneof"`
+}
+
+func (*SecretReference_File) isSecretReference_Target() {}
+
+func (m *SecretReference) GetTarget() isSecretReference_Target {
+	if m != nil {
+		return m.Target
+	}
+	return nil
+}
+
+func (m *SecretReference) GetFile() *FileTarget {
+	if x, ok := m.GetTarget().(*SecretReference_File); ok {
+		return x.File
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*SecretReference) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _SecretReference_OneofMarshaler, _SecretReference_OneofUnmarshaler, _SecretReference_OneofSizer, []interface{}{
+		(*SecretReference_File)(nil),
+	}
+}
+
+func _SecretReference_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*SecretReference)
+	// target
+	switch x := m.Target.(type) {
+	case *SecretReference_File:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.File); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("SecretReference.Target has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _SecretReference_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*SecretReference)
+	switch tag {
+	case 3: // target.file
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(FileTarget)
+		err := b.DecodeMessage(msg)
+		m.Target = &SecretReference_File{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _SecretReference_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*SecretReference)
+	// target
+	switch x := m.Target.(type) {
+	case *SecretReference_File:
+		s := proto.Size(x.File)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// ConfigReference is the linkage between a service and a config that it uses.
+type ConfigReference struct {
+	// ConfigID represents the ID of the specific Config that we're
+	// referencing.
+	ConfigID string `protobuf:"bytes,1,opt,name=config_id,json=configId,proto3" json:"config_id,omitempty"`
+	// ConfigName is the name of the config that this references, but this is just provided for
+	// lookup/display purposes. The config in the reference will be identified by its ID.
+	ConfigName string `protobuf:"bytes,2,opt,name=config_name,json=configName,proto3" json:"config_name,omitempty"`
+	// Target specifies how this secret should be exposed to the task.
+	//
+	// Types that are valid to be assigned to Target:
+	//	*ConfigReference_File
+	Target isConfigReference_Target `protobuf_oneof:"target"`
+}
+
+func (m *ConfigReference) Reset()                    { *m = ConfigReference{} }
+func (*ConfigReference) ProtoMessage()               {}
+func (*ConfigReference) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{49} }
+
+type isConfigReference_Target interface {
+	isConfigReference_Target()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type ConfigReference_File struct {
+	File *FileTarget `protobuf:"bytes,3,opt,name=file,oneof"`
+}
+
+func (*ConfigReference_File) isConfigReference_Target() {}
+
+func (m *ConfigReference) GetTarget() isConfigReference_Target {
+	if m != nil {
+		return m.Target
+	}
+	return nil
+}
+
+func (m *ConfigReference) GetFile() *FileTarget {
+	if x, ok := m.GetTarget().(*ConfigReference_File); ok {
+		return x.File
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*ConfigReference) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _ConfigReference_OneofMarshaler, _ConfigReference_OneofUnmarshaler, _ConfigReference_OneofSizer, []interface{}{
+		(*ConfigReference_File)(nil),
+	}
+}
+
+func _ConfigReference_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*ConfigReference)
+	// target
+	switch x := m.Target.(type) {
+	case *ConfigReference_File:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.File); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("ConfigReference.Target has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _ConfigReference_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*ConfigReference)
+	switch tag {
+	case 3: // target.file
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(FileTarget)
+		err := b.DecodeMessage(msg)
+		m.Target = &ConfigReference_File{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _ConfigReference_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*ConfigReference)
+	// target
+	switch x := m.Target.(type) {
+	case *ConfigReference_File:
+		s := proto.Size(x.File)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// BlacklistedCertificate is a record for a blacklisted certificate. It does not
+// contain the certificate's CN, because these records are indexed by CN.
+type BlacklistedCertificate struct {
+	// Expiry is the latest known expiration time of a certificate that
+	// was issued for the given CN.
+	// Note: can't use stdtime because this field is nullable.
+	Expiry *google_protobuf.Timestamp `protobuf:"bytes,1,opt,name=expiry" json:"expiry,omitempty"`
+}
+
+func (m *BlacklistedCertificate) Reset()                    { *m = BlacklistedCertificate{} }
+func (*BlacklistedCertificate) ProtoMessage()               {}
+func (*BlacklistedCertificate) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{50} }
+
+// HealthConfig holds configuration settings for the HEALTHCHECK feature.
+type HealthConfig struct {
+	// Test is the test to perform to check that the container is healthy.
+	// An empty slice means to inherit the default.
+	// The options are:
+	// {} : inherit healthcheck
+	// {"NONE"} : disable healthcheck
+	// {"CMD", args...} : exec arguments directly
+	// {"CMD-SHELL", command} : run command with system's default shell
+	Test []string `protobuf:"bytes,1,rep,name=test" json:"test,omitempty"`
+	// Interval is the time to wait between checks. Zero means inherit.
+	// Note: can't use stdduration because this field needs to be nullable.
+	Interval *google_protobuf1.Duration `protobuf:"bytes,2,opt,name=interval" json:"interval,omitempty"`
+	// Timeout is the time to wait before considering the check to have hung.
+	// Zero means inherit.
+	// Note: can't use stdduration because this field needs to be nullable.
+	Timeout *google_protobuf1.Duration `protobuf:"bytes,3,opt,name=timeout" json:"timeout,omitempty"`
+	// Retries is the number of consecutive failures needed to consider a
+	// container as unhealthy. Zero means inherit.
+	Retries int32 `protobuf:"varint,4,opt,name=retries,proto3" json:"retries,omitempty"`
+	// Start period is the period for container initialization during
+	// which health check failures will note count towards the maximum
+	// number of retries.
+	StartPeriod *google_protobuf1.Duration `protobuf:"bytes,5,opt,name=start_period,json=startPeriod" json:"start_period,omitempty"`
+}
+
+func (m *HealthConfig) Reset()                    { *m = HealthConfig{} }
+func (*HealthConfig) ProtoMessage()               {}
+func (*HealthConfig) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{51} }
+
+type MaybeEncryptedRecord struct {
+	Algorithm MaybeEncryptedRecord_Algorithm `protobuf:"varint,1,opt,name=algorithm,proto3,enum=docker.swarmkit.v1.MaybeEncryptedRecord_Algorithm" json:"algorithm,omitempty"`
+	Data      []byte                         `protobuf:"bytes,2,opt,name=data,proto3" json:"data,omitempty"`
+	Nonce     []byte                         `protobuf:"bytes,3,opt,name=nonce,proto3" json:"nonce,omitempty"`
+}
+
+func (m *MaybeEncryptedRecord) Reset()                    { *m = MaybeEncryptedRecord{} }
+func (*MaybeEncryptedRecord) ProtoMessage()               {}
+func (*MaybeEncryptedRecord) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{52} }
+
+type RootRotation struct {
+	CACert []byte `protobuf:"bytes,1,opt,name=ca_cert,json=caCert,proto3" json:"ca_cert,omitempty"`
+	CAKey  []byte `protobuf:"bytes,2,opt,name=ca_key,json=caKey,proto3" json:"ca_key,omitempty"`
+	// cross-signed CA cert is the CACert that has been cross-signed by the previous root
+	CrossSignedCACert []byte `protobuf:"bytes,3,opt,name=cross_signed_ca_cert,json=crossSignedCaCert,proto3" json:"cross_signed_ca_cert,omitempty"`
+}
+
+func (m *RootRotation) Reset()                    { *m = RootRotation{} }
+func (*RootRotation) ProtoMessage()               {}
+func (*RootRotation) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{53} }
+
+// Privileges specifies security configuration/permissions.
+type Privileges struct {
+	CredentialSpec *Privileges_CredentialSpec `protobuf:"bytes,1,opt,name=credential_spec,json=credentialSpec" json:"credential_spec,omitempty"`
+	SELinuxContext *Privileges_SELinuxContext `protobuf:"bytes,2,opt,name=selinux_context,json=selinuxContext" json:"selinux_context,omitempty"`
+}
+
+func (m *Privileges) Reset()                    { *m = Privileges{} }
+func (*Privileges) ProtoMessage()               {}
+func (*Privileges) Descriptor() ([]byte, []int) { return fileDescriptorTypes, []int{54} }
+
+// CredentialSpec for managed service account (Windows only).
+type Privileges_CredentialSpec struct {
+	// Types that are valid to be assigned to Source:
+	//	*Privileges_CredentialSpec_File
+	//	*Privileges_CredentialSpec_Registry
+	Source isPrivileges_CredentialSpec_Source `protobuf_oneof:"source"`
+}
+
+func (m *Privileges_CredentialSpec) Reset()      { *m = Privileges_CredentialSpec{} }
+func (*Privileges_CredentialSpec) ProtoMessage() {}
+func (*Privileges_CredentialSpec) Descriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{54, 0}
+}
+
+type isPrivileges_CredentialSpec_Source interface {
+	isPrivileges_CredentialSpec_Source()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type Privileges_CredentialSpec_File struct {
+	File string `protobuf:"bytes,1,opt,name=file,proto3,oneof"`
+}
+type Privileges_CredentialSpec_Registry struct {
+	Registry string `protobuf:"bytes,2,opt,name=registry,proto3,oneof"`
+}
+
+func (*Privileges_CredentialSpec_File) isPrivileges_CredentialSpec_Source()     {}
+func (*Privileges_CredentialSpec_Registry) isPrivileges_CredentialSpec_Source() {}
+
+func (m *Privileges_CredentialSpec) GetSource() isPrivileges_CredentialSpec_Source {
+	if m != nil {
+		return m.Source
+	}
+	return nil
+}
+
+func (m *Privileges_CredentialSpec) GetFile() string {
+	if x, ok := m.GetSource().(*Privileges_CredentialSpec_File); ok {
+		return x.File
+	}
+	return ""
+}
+
+func (m *Privileges_CredentialSpec) GetRegistry() string {
+	if x, ok := m.GetSource().(*Privileges_CredentialSpec_Registry); ok {
+		return x.Registry
+	}
+	return ""
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*Privileges_CredentialSpec) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _Privileges_CredentialSpec_OneofMarshaler, _Privileges_CredentialSpec_OneofUnmarshaler, _Privileges_CredentialSpec_OneofSizer, []interface{}{
+		(*Privileges_CredentialSpec_File)(nil),
+		(*Privileges_CredentialSpec_Registry)(nil),
+	}
+}
+
+func _Privileges_CredentialSpec_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*Privileges_CredentialSpec)
+	// source
+	switch x := m.Source.(type) {
+	case *Privileges_CredentialSpec_File:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.File)
+	case *Privileges_CredentialSpec_Registry:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.Registry)
+	case nil:
+	default:
+		return fmt.Errorf("Privileges_CredentialSpec.Source has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _Privileges_CredentialSpec_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*Privileges_CredentialSpec)
+	switch tag {
+	case 1: // source.file
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.Source = &Privileges_CredentialSpec_File{x}
+		return true, err
+	case 2: // source.registry
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.Source = &Privileges_CredentialSpec_Registry{x}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _Privileges_CredentialSpec_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*Privileges_CredentialSpec)
+	// source
+	switch x := m.Source.(type) {
+	case *Privileges_CredentialSpec_File:
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.File)))
+		n += len(x.File)
+	case *Privileges_CredentialSpec_Registry:
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.Registry)))
+		n += len(x.Registry)
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// SELinuxContext contains the SELinux labels for the container.
+type Privileges_SELinuxContext struct {
+	Disable bool   `protobuf:"varint,1,opt,name=disable,proto3" json:"disable,omitempty"`
+	User    string `protobuf:"bytes,2,opt,name=user,proto3" json:"user,omitempty"`
+	Role    string `protobuf:"bytes,3,opt,name=role,proto3" json:"role,omitempty"`
+	Type    string `protobuf:"bytes,4,opt,name=type,proto3" json:"type,omitempty"`
+	Level   string `protobuf:"bytes,5,opt,name=level,proto3" json:"level,omitempty"`
+}
+
+func (m *Privileges_SELinuxContext) Reset()      { *m = Privileges_SELinuxContext{} }
+func (*Privileges_SELinuxContext) ProtoMessage() {}
+func (*Privileges_SELinuxContext) Descriptor() ([]byte, []int) {
+	return fileDescriptorTypes, []int{54, 1}
+}
+
+func init() {
+	proto.RegisterType((*Version)(nil), "docker.swarmkit.v1.Version")
+	proto.RegisterType((*IndexEntry)(nil), "docker.swarmkit.v1.IndexEntry")
+	proto.RegisterType((*Annotations)(nil), "docker.swarmkit.v1.Annotations")
+	proto.RegisterType((*NamedGenericResource)(nil), "docker.swarmkit.v1.NamedGenericResource")
+	proto.RegisterType((*DiscreteGenericResource)(nil), "docker.swarmkit.v1.DiscreteGenericResource")
+	proto.RegisterType((*GenericResource)(nil), "docker.swarmkit.v1.GenericResource")
+	proto.RegisterType((*Resources)(nil), "docker.swarmkit.v1.Resources")
+	proto.RegisterType((*ResourceRequirements)(nil), "docker.swarmkit.v1.ResourceRequirements")
+	proto.RegisterType((*Platform)(nil), "docker.swarmkit.v1.Platform")
+	proto.RegisterType((*PluginDescription)(nil), "docker.swarmkit.v1.PluginDescription")
+	proto.RegisterType((*EngineDescription)(nil), "docker.swarmkit.v1.EngineDescription")
+	proto.RegisterType((*NodeDescription)(nil), "docker.swarmkit.v1.NodeDescription")
+	proto.RegisterType((*NodeTLSInfo)(nil), "docker.swarmkit.v1.NodeTLSInfo")
+	proto.RegisterType((*RaftMemberStatus)(nil), "docker.swarmkit.v1.RaftMemberStatus")
+	proto.RegisterType((*NodeStatus)(nil), "docker.swarmkit.v1.NodeStatus")
+	proto.RegisterType((*Image)(nil), "docker.swarmkit.v1.Image")
+	proto.RegisterType((*Mount)(nil), "docker.swarmkit.v1.Mount")
+	proto.RegisterType((*Mount_BindOptions)(nil), "docker.swarmkit.v1.Mount.BindOptions")
+	proto.RegisterType((*Mount_VolumeOptions)(nil), "docker.swarmkit.v1.Mount.VolumeOptions")
+	proto.RegisterType((*Mount_TmpfsOptions)(nil), "docker.swarmkit.v1.Mount.TmpfsOptions")
+	proto.RegisterType((*RestartPolicy)(nil), "docker.swarmkit.v1.RestartPolicy")
+	proto.RegisterType((*UpdateConfig)(nil), "docker.swarmkit.v1.UpdateConfig")
+	proto.RegisterType((*UpdateStatus)(nil), "docker.swarmkit.v1.UpdateStatus")
+	proto.RegisterType((*ContainerStatus)(nil), "docker.swarmkit.v1.ContainerStatus")
+	proto.RegisterType((*PortStatus)(nil), "docker.swarmkit.v1.PortStatus")
+	proto.RegisterType((*TaskStatus)(nil), "docker.swarmkit.v1.TaskStatus")
+	proto.RegisterType((*NetworkAttachmentConfig)(nil), "docker.swarmkit.v1.NetworkAttachmentConfig")
+	proto.RegisterType((*IPAMConfig)(nil), "docker.swarmkit.v1.IPAMConfig")
+	proto.RegisterType((*PortConfig)(nil), "docker.swarmkit.v1.PortConfig")
+	proto.RegisterType((*Driver)(nil), "docker.swarmkit.v1.Driver")
+	proto.RegisterType((*IPAMOptions)(nil), "docker.swarmkit.v1.IPAMOptions")
+	proto.RegisterType((*Peer)(nil), "docker.swarmkit.v1.Peer")
+	proto.RegisterType((*WeightedPeer)(nil), "docker.swarmkit.v1.WeightedPeer")
+	proto.RegisterType((*IssuanceStatus)(nil), "docker.swarmkit.v1.IssuanceStatus")
+	proto.RegisterType((*AcceptancePolicy)(nil), "docker.swarmkit.v1.AcceptancePolicy")
+	proto.RegisterType((*AcceptancePolicy_RoleAdmissionPolicy)(nil), "docker.swarmkit.v1.AcceptancePolicy.RoleAdmissionPolicy")
+	proto.RegisterType((*AcceptancePolicy_RoleAdmissionPolicy_Secret)(nil), "docker.swarmkit.v1.AcceptancePolicy.RoleAdmissionPolicy.Secret")
+	proto.RegisterType((*ExternalCA)(nil), "docker.swarmkit.v1.ExternalCA")
+	proto.RegisterType((*CAConfig)(nil), "docker.swarmkit.v1.CAConfig")
+	proto.RegisterType((*OrchestrationConfig)(nil), "docker.swarmkit.v1.OrchestrationConfig")
+	proto.RegisterType((*TaskDefaults)(nil), "docker.swarmkit.v1.TaskDefaults")
+	proto.RegisterType((*DispatcherConfig)(nil), "docker.swarmkit.v1.DispatcherConfig")
+	proto.RegisterType((*RaftConfig)(nil), "docker.swarmkit.v1.RaftConfig")
+	proto.RegisterType((*EncryptionConfig)(nil), "docker.swarmkit.v1.EncryptionConfig")
+	proto.RegisterType((*SpreadOver)(nil), "docker.swarmkit.v1.SpreadOver")
+	proto.RegisterType((*PlacementPreference)(nil), "docker.swarmkit.v1.PlacementPreference")
+	proto.RegisterType((*Placement)(nil), "docker.swarmkit.v1.Placement")
+	proto.RegisterType((*JoinTokens)(nil), "docker.swarmkit.v1.JoinTokens")
+	proto.RegisterType((*RootCA)(nil), "docker.swarmkit.v1.RootCA")
+	proto.RegisterType((*Certificate)(nil), "docker.swarmkit.v1.Certificate")
+	proto.RegisterType((*EncryptionKey)(nil), "docker.swarmkit.v1.EncryptionKey")
+	proto.RegisterType((*ManagerStatus)(nil), "docker.swarmkit.v1.ManagerStatus")
+	proto.RegisterType((*FileTarget)(nil), "docker.swarmkit.v1.FileTarget")
+	proto.RegisterType((*SecretReference)(nil), "docker.swarmkit.v1.SecretReference")
+	proto.RegisterType((*ConfigReference)(nil), "docker.swarmkit.v1.ConfigReference")
+	proto.RegisterType((*BlacklistedCertificate)(nil), "docker.swarmkit.v1.BlacklistedCertificate")
+	proto.RegisterType((*HealthConfig)(nil), "docker.swarmkit.v1.HealthConfig")
+	proto.RegisterType((*MaybeEncryptedRecord)(nil), "docker.swarmkit.v1.MaybeEncryptedRecord")
+	proto.RegisterType((*RootRotation)(nil), "docker.swarmkit.v1.RootRotation")
+	proto.RegisterType((*Privileges)(nil), "docker.swarmkit.v1.Privileges")
+	proto.RegisterType((*Privileges_CredentialSpec)(nil), "docker.swarmkit.v1.Privileges.CredentialSpec")
+	proto.RegisterType((*Privileges_SELinuxContext)(nil), "docker.swarmkit.v1.Privileges.SELinuxContext")
+	proto.RegisterEnum("docker.swarmkit.v1.ResourceType", ResourceType_name, ResourceType_value)
+	proto.RegisterEnum("docker.swarmkit.v1.TaskState", TaskState_name, TaskState_value)
+	proto.RegisterEnum("docker.swarmkit.v1.NodeRole", NodeRole_name, NodeRole_value)
+	proto.RegisterEnum("docker.swarmkit.v1.RaftMemberStatus_Reachability", RaftMemberStatus_Reachability_name, RaftMemberStatus_Reachability_value)
+	proto.RegisterEnum("docker.swarmkit.v1.NodeStatus_State", NodeStatus_State_name, NodeStatus_State_value)
+	proto.RegisterEnum("docker.swarmkit.v1.Mount_MountType", Mount_MountType_name, Mount_MountType_value)
+	proto.RegisterEnum("docker.swarmkit.v1.Mount_MountConsistency", Mount_MountConsistency_name, Mount_MountConsistency_value)
+	proto.RegisterEnum("docker.swarmkit.v1.Mount_BindOptions_MountPropagation", Mount_BindOptions_MountPropagation_name, Mount_BindOptions_MountPropagation_value)
+	proto.RegisterEnum("docker.swarmkit.v1.RestartPolicy_RestartCondition", RestartPolicy_RestartCondition_name, RestartPolicy_RestartCondition_value)
+	proto.RegisterEnum("docker.swarmkit.v1.UpdateConfig_FailureAction", UpdateConfig_FailureAction_name, UpdateConfig_FailureAction_value)
+	proto.RegisterEnum("docker.swarmkit.v1.UpdateConfig_UpdateOrder", UpdateConfig_UpdateOrder_name, UpdateConfig_UpdateOrder_value)
+	proto.RegisterEnum("docker.swarmkit.v1.UpdateStatus_UpdateState", UpdateStatus_UpdateState_name, UpdateStatus_UpdateState_value)
+	proto.RegisterEnum("docker.swarmkit.v1.IPAMConfig_AddressFamily", IPAMConfig_AddressFamily_name, IPAMConfig_AddressFamily_value)
+	proto.RegisterEnum("docker.swarmkit.v1.PortConfig_Protocol", PortConfig_Protocol_name, PortConfig_Protocol_value)
+	proto.RegisterEnum("docker.swarmkit.v1.PortConfig_PublishMode", PortConfig_PublishMode_name, PortConfig_PublishMode_value)
+	proto.RegisterEnum("docker.swarmkit.v1.IssuanceStatus_State", IssuanceStatus_State_name, IssuanceStatus_State_value)
+	proto.RegisterEnum("docker.swarmkit.v1.ExternalCA_CAProtocol", ExternalCA_CAProtocol_name, ExternalCA_CAProtocol_value)
+	proto.RegisterEnum("docker.swarmkit.v1.EncryptionKey_Algorithm", EncryptionKey_Algorithm_name, EncryptionKey_Algorithm_value)
+	proto.RegisterEnum("docker.swarmkit.v1.MaybeEncryptedRecord_Algorithm", MaybeEncryptedRecord_Algorithm_name, MaybeEncryptedRecord_Algorithm_value)
+}
+
+func (m *Version) Copy() *Version {
+	if m == nil {
+		return nil
+	}
+	o := &Version{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Version) CopyFrom(src interface{}) {
+
+	o := src.(*Version)
+	*m = *o
+}
+
+func (m *IndexEntry) Copy() *IndexEntry {
+	if m == nil {
+		return nil
+	}
+	o := &IndexEntry{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IndexEntry) CopyFrom(src interface{}) {
+
+	o := src.(*IndexEntry)
+	*m = *o
+}
+
+func (m *Annotations) Copy() *Annotations {
+	if m == nil {
+		return nil
+	}
+	o := &Annotations{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Annotations) CopyFrom(src interface{}) {
+
+	o := src.(*Annotations)
+	*m = *o
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.Indices != nil {
+		m.Indices = make([]IndexEntry, len(o.Indices))
+		for i := range m.Indices {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Indices[i], &o.Indices[i])
+		}
+	}
+
+}
+
+func (m *NamedGenericResource) Copy() *NamedGenericResource {
+	if m == nil {
+		return nil
+	}
+	o := &NamedGenericResource{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NamedGenericResource) CopyFrom(src interface{}) {
+
+	o := src.(*NamedGenericResource)
+	*m = *o
+}
+
+func (m *DiscreteGenericResource) Copy() *DiscreteGenericResource {
+	if m == nil {
+		return nil
+	}
+	o := &DiscreteGenericResource{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *DiscreteGenericResource) CopyFrom(src interface{}) {
+
+	o := src.(*DiscreteGenericResource)
+	*m = *o
+}
+
+func (m *GenericResource) Copy() *GenericResource {
+	if m == nil {
+		return nil
+	}
+	o := &GenericResource{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *GenericResource) CopyFrom(src interface{}) {
+
+	o := src.(*GenericResource)
+	*m = *o
+	if o.Resource != nil {
+		switch o.Resource.(type) {
+		case *GenericResource_NamedResourceSpec:
+			v := GenericResource_NamedResourceSpec{
+				NamedResourceSpec: &NamedGenericResource{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.NamedResourceSpec, o.GetNamedResourceSpec())
+			m.Resource = &v
+		case *GenericResource_DiscreteResourceSpec:
+			v := GenericResource_DiscreteResourceSpec{
+				DiscreteResourceSpec: &DiscreteGenericResource{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.DiscreteResourceSpec, o.GetDiscreteResourceSpec())
+			m.Resource = &v
+		}
+	}
+
+}
+
+func (m *Resources) Copy() *Resources {
+	if m == nil {
+		return nil
+	}
+	o := &Resources{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Resources) CopyFrom(src interface{}) {
+
+	o := src.(*Resources)
+	*m = *o
+	if o.Generic != nil {
+		m.Generic = make([]*GenericResource, len(o.Generic))
+		for i := range m.Generic {
+			m.Generic[i] = &GenericResource{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Generic[i], o.Generic[i])
+		}
+	}
+
+}
+
+func (m *ResourceRequirements) Copy() *ResourceRequirements {
+	if m == nil {
+		return nil
+	}
+	o := &ResourceRequirements{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ResourceRequirements) CopyFrom(src interface{}) {
+
+	o := src.(*ResourceRequirements)
+	*m = *o
+	if o.Limits != nil {
+		m.Limits = &Resources{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Limits, o.Limits)
+	}
+	if o.Reservations != nil {
+		m.Reservations = &Resources{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Reservations, o.Reservations)
+	}
+}
+
+func (m *Platform) Copy() *Platform {
+	if m == nil {
+		return nil
+	}
+	o := &Platform{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Platform) CopyFrom(src interface{}) {
+
+	o := src.(*Platform)
+	*m = *o
+}
+
+func (m *PluginDescription) Copy() *PluginDescription {
+	if m == nil {
+		return nil
+	}
+	o := &PluginDescription{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PluginDescription) CopyFrom(src interface{}) {
+
+	o := src.(*PluginDescription)
+	*m = *o
+}
+
+func (m *EngineDescription) Copy() *EngineDescription {
+	if m == nil {
+		return nil
+	}
+	o := &EngineDescription{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *EngineDescription) CopyFrom(src interface{}) {
+
+	o := src.(*EngineDescription)
+	*m = *o
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.Plugins != nil {
+		m.Plugins = make([]PluginDescription, len(o.Plugins))
+		for i := range m.Plugins {
+			github_com_docker_swarmkit_api_deepcopy.Copy(&m.Plugins[i], &o.Plugins[i])
+		}
+	}
+
+}
+
+func (m *NodeDescription) Copy() *NodeDescription {
+	if m == nil {
+		return nil
+	}
+	o := &NodeDescription{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeDescription) CopyFrom(src interface{}) {
+
+	o := src.(*NodeDescription)
+	*m = *o
+	if o.Platform != nil {
+		m.Platform = &Platform{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Platform, o.Platform)
+	}
+	if o.Resources != nil {
+		m.Resources = &Resources{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Resources, o.Resources)
+	}
+	if o.Engine != nil {
+		m.Engine = &EngineDescription{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Engine, o.Engine)
+	}
+	if o.TLSInfo != nil {
+		m.TLSInfo = &NodeTLSInfo{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.TLSInfo, o.TLSInfo)
+	}
+}
+
+func (m *NodeTLSInfo) Copy() *NodeTLSInfo {
+	if m == nil {
+		return nil
+	}
+	o := &NodeTLSInfo{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeTLSInfo) CopyFrom(src interface{}) {
+
+	o := src.(*NodeTLSInfo)
+	*m = *o
+	if o.TrustRoot != nil {
+		m.TrustRoot = make([]byte, len(o.TrustRoot))
+		copy(m.TrustRoot, o.TrustRoot)
+	}
+	if o.CertIssuerSubject != nil {
+		m.CertIssuerSubject = make([]byte, len(o.CertIssuerSubject))
+		copy(m.CertIssuerSubject, o.CertIssuerSubject)
+	}
+	if o.CertIssuerPublicKey != nil {
+		m.CertIssuerPublicKey = make([]byte, len(o.CertIssuerPublicKey))
+		copy(m.CertIssuerPublicKey, o.CertIssuerPublicKey)
+	}
+}
+
+func (m *RaftMemberStatus) Copy() *RaftMemberStatus {
+	if m == nil {
+		return nil
+	}
+	o := &RaftMemberStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RaftMemberStatus) CopyFrom(src interface{}) {
+
+	o := src.(*RaftMemberStatus)
+	*m = *o
+}
+
+func (m *NodeStatus) Copy() *NodeStatus {
+	if m == nil {
+		return nil
+	}
+	o := &NodeStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NodeStatus) CopyFrom(src interface{}) {
+
+	o := src.(*NodeStatus)
+	*m = *o
+}
+
+func (m *Image) Copy() *Image {
+	if m == nil {
+		return nil
+	}
+	o := &Image{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Image) CopyFrom(src interface{}) {
+
+	o := src.(*Image)
+	*m = *o
+}
+
+func (m *Mount) Copy() *Mount {
+	if m == nil {
+		return nil
+	}
+	o := &Mount{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Mount) CopyFrom(src interface{}) {
+
+	o := src.(*Mount)
+	*m = *o
+	if o.BindOptions != nil {
+		m.BindOptions = &Mount_BindOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.BindOptions, o.BindOptions)
+	}
+	if o.VolumeOptions != nil {
+		m.VolumeOptions = &Mount_VolumeOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.VolumeOptions, o.VolumeOptions)
+	}
+	if o.TmpfsOptions != nil {
+		m.TmpfsOptions = &Mount_TmpfsOptions{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.TmpfsOptions, o.TmpfsOptions)
+	}
+}
+
+func (m *Mount_BindOptions) Copy() *Mount_BindOptions {
+	if m == nil {
+		return nil
+	}
+	o := &Mount_BindOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Mount_BindOptions) CopyFrom(src interface{}) {
+
+	o := src.(*Mount_BindOptions)
+	*m = *o
+}
+
+func (m *Mount_VolumeOptions) Copy() *Mount_VolumeOptions {
+	if m == nil {
+		return nil
+	}
+	o := &Mount_VolumeOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Mount_VolumeOptions) CopyFrom(src interface{}) {
+
+	o := src.(*Mount_VolumeOptions)
+	*m = *o
+	if o.Labels != nil {
+		m.Labels = make(map[string]string, len(o.Labels))
+		for k, v := range o.Labels {
+			m.Labels[k] = v
+		}
+	}
+
+	if o.DriverConfig != nil {
+		m.DriverConfig = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.DriverConfig, o.DriverConfig)
+	}
+}
+
+func (m *Mount_TmpfsOptions) Copy() *Mount_TmpfsOptions {
+	if m == nil {
+		return nil
+	}
+	o := &Mount_TmpfsOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Mount_TmpfsOptions) CopyFrom(src interface{}) {
+
+	o := src.(*Mount_TmpfsOptions)
+	*m = *o
+}
+
+func (m *RestartPolicy) Copy() *RestartPolicy {
+	if m == nil {
+		return nil
+	}
+	o := &RestartPolicy{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RestartPolicy) CopyFrom(src interface{}) {
+
+	o := src.(*RestartPolicy)
+	*m = *o
+	if o.Delay != nil {
+		m.Delay = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Delay, o.Delay)
+	}
+	if o.Window != nil {
+		m.Window = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Window, o.Window)
+	}
+}
+
+func (m *UpdateConfig) Copy() *UpdateConfig {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateConfig) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateConfig)
+	*m = *o
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Delay, &o.Delay)
+	if o.Monitor != nil {
+		m.Monitor = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Monitor, o.Monitor)
+	}
+}
+
+func (m *UpdateStatus) Copy() *UpdateStatus {
+	if m == nil {
+		return nil
+	}
+	o := &UpdateStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *UpdateStatus) CopyFrom(src interface{}) {
+
+	o := src.(*UpdateStatus)
+	*m = *o
+	if o.StartedAt != nil {
+		m.StartedAt = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.StartedAt, o.StartedAt)
+	}
+	if o.CompletedAt != nil {
+		m.CompletedAt = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.CompletedAt, o.CompletedAt)
+	}
+}
+
+func (m *ContainerStatus) Copy() *ContainerStatus {
+	if m == nil {
+		return nil
+	}
+	o := &ContainerStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ContainerStatus) CopyFrom(src interface{}) {
+
+	o := src.(*ContainerStatus)
+	*m = *o
+}
+
+func (m *PortStatus) Copy() *PortStatus {
+	if m == nil {
+		return nil
+	}
+	o := &PortStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PortStatus) CopyFrom(src interface{}) {
+
+	o := src.(*PortStatus)
+	*m = *o
+	if o.Ports != nil {
+		m.Ports = make([]*PortConfig, len(o.Ports))
+		for i := range m.Ports {
+			m.Ports[i] = &PortConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Ports[i], o.Ports[i])
+		}
+	}
+
+}
+
+func (m *TaskStatus) Copy() *TaskStatus {
+	if m == nil {
+		return nil
+	}
+	o := &TaskStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TaskStatus) CopyFrom(src interface{}) {
+
+	o := src.(*TaskStatus)
+	*m = *o
+	if o.Timestamp != nil {
+		m.Timestamp = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Timestamp, o.Timestamp)
+	}
+	if o.PortStatus != nil {
+		m.PortStatus = &PortStatus{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.PortStatus, o.PortStatus)
+	}
+	if o.AppliedAt != nil {
+		m.AppliedAt = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.AppliedAt, o.AppliedAt)
+	}
+	if o.RuntimeStatus != nil {
+		switch o.RuntimeStatus.(type) {
+		case *TaskStatus_Container:
+			v := TaskStatus_Container{
+				Container: &ContainerStatus{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Container, o.GetContainer())
+			m.RuntimeStatus = &v
+		}
+	}
+
+}
+
+func (m *NetworkAttachmentConfig) Copy() *NetworkAttachmentConfig {
+	if m == nil {
+		return nil
+	}
+	o := &NetworkAttachmentConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *NetworkAttachmentConfig) CopyFrom(src interface{}) {
+
+	o := src.(*NetworkAttachmentConfig)
+	*m = *o
+	if o.Aliases != nil {
+		m.Aliases = make([]string, len(o.Aliases))
+		copy(m.Aliases, o.Aliases)
+	}
+
+	if o.Addresses != nil {
+		m.Addresses = make([]string, len(o.Addresses))
+		copy(m.Addresses, o.Addresses)
+	}
+
+	if o.DriverAttachmentOpts != nil {
+		m.DriverAttachmentOpts = make(map[string]string, len(o.DriverAttachmentOpts))
+		for k, v := range o.DriverAttachmentOpts {
+			m.DriverAttachmentOpts[k] = v
+		}
+	}
+
+}
+
+func (m *IPAMConfig) Copy() *IPAMConfig {
+	if m == nil {
+		return nil
+	}
+	o := &IPAMConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IPAMConfig) CopyFrom(src interface{}) {
+
+	o := src.(*IPAMConfig)
+	*m = *o
+	if o.Reserved != nil {
+		m.Reserved = make(map[string]string, len(o.Reserved))
+		for k, v := range o.Reserved {
+			m.Reserved[k] = v
+		}
+	}
+
+}
+
+func (m *PortConfig) Copy() *PortConfig {
+	if m == nil {
+		return nil
+	}
+	o := &PortConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PortConfig) CopyFrom(src interface{}) {
+
+	o := src.(*PortConfig)
+	*m = *o
+}
+
+func (m *Driver) Copy() *Driver {
+	if m == nil {
+		return nil
+	}
+	o := &Driver{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Driver) CopyFrom(src interface{}) {
+
+	o := src.(*Driver)
+	*m = *o
+	if o.Options != nil {
+		m.Options = make(map[string]string, len(o.Options))
+		for k, v := range o.Options {
+			m.Options[k] = v
+		}
+	}
+
+}
+
+func (m *IPAMOptions) Copy() *IPAMOptions {
+	if m == nil {
+		return nil
+	}
+	o := &IPAMOptions{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IPAMOptions) CopyFrom(src interface{}) {
+
+	o := src.(*IPAMOptions)
+	*m = *o
+	if o.Driver != nil {
+		m.Driver = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Driver, o.Driver)
+	}
+	if o.Configs != nil {
+		m.Configs = make([]*IPAMConfig, len(o.Configs))
+		for i := range m.Configs {
+			m.Configs[i] = &IPAMConfig{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Configs[i], o.Configs[i])
+		}
+	}
+
+}
+
+func (m *Peer) Copy() *Peer {
+	if m == nil {
+		return nil
+	}
+	o := &Peer{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Peer) CopyFrom(src interface{}) {
+
+	o := src.(*Peer)
+	*m = *o
+}
+
+func (m *WeightedPeer) Copy() *WeightedPeer {
+	if m == nil {
+		return nil
+	}
+	o := &WeightedPeer{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WeightedPeer) CopyFrom(src interface{}) {
+
+	o := src.(*WeightedPeer)
+	*m = *o
+	if o.Peer != nil {
+		m.Peer = &Peer{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Peer, o.Peer)
+	}
+}
+
+func (m *IssuanceStatus) Copy() *IssuanceStatus {
+	if m == nil {
+		return nil
+	}
+	o := &IssuanceStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *IssuanceStatus) CopyFrom(src interface{}) {
+
+	o := src.(*IssuanceStatus)
+	*m = *o
+}
+
+func (m *AcceptancePolicy) Copy() *AcceptancePolicy {
+	if m == nil {
+		return nil
+	}
+	o := &AcceptancePolicy{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AcceptancePolicy) CopyFrom(src interface{}) {
+
+	o := src.(*AcceptancePolicy)
+	*m = *o
+	if o.Policies != nil {
+		m.Policies = make([]*AcceptancePolicy_RoleAdmissionPolicy, len(o.Policies))
+		for i := range m.Policies {
+			m.Policies[i] = &AcceptancePolicy_RoleAdmissionPolicy{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Policies[i], o.Policies[i])
+		}
+	}
+
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) Copy() *AcceptancePolicy_RoleAdmissionPolicy {
+	if m == nil {
+		return nil
+	}
+	o := &AcceptancePolicy_RoleAdmissionPolicy{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) CopyFrom(src interface{}) {
+
+	o := src.(*AcceptancePolicy_RoleAdmissionPolicy)
+	*m = *o
+	if o.Secret != nil {
+		m.Secret = &AcceptancePolicy_RoleAdmissionPolicy_Secret{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Secret, o.Secret)
+	}
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) Copy() *AcceptancePolicy_RoleAdmissionPolicy_Secret {
+	if m == nil {
+		return nil
+	}
+	o := &AcceptancePolicy_RoleAdmissionPolicy_Secret{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) CopyFrom(src interface{}) {
+
+	o := src.(*AcceptancePolicy_RoleAdmissionPolicy_Secret)
+	*m = *o
+	if o.Data != nil {
+		m.Data = make([]byte, len(o.Data))
+		copy(m.Data, o.Data)
+	}
+}
+
+func (m *ExternalCA) Copy() *ExternalCA {
+	if m == nil {
+		return nil
+	}
+	o := &ExternalCA{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ExternalCA) CopyFrom(src interface{}) {
+
+	o := src.(*ExternalCA)
+	*m = *o
+	if o.Options != nil {
+		m.Options = make(map[string]string, len(o.Options))
+		for k, v := range o.Options {
+			m.Options[k] = v
+		}
+	}
+
+	if o.CACert != nil {
+		m.CACert = make([]byte, len(o.CACert))
+		copy(m.CACert, o.CACert)
+	}
+}
+
+func (m *CAConfig) Copy() *CAConfig {
+	if m == nil {
+		return nil
+	}
+	o := &CAConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *CAConfig) CopyFrom(src interface{}) {
+
+	o := src.(*CAConfig)
+	*m = *o
+	if o.NodeCertExpiry != nil {
+		m.NodeCertExpiry = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.NodeCertExpiry, o.NodeCertExpiry)
+	}
+	if o.ExternalCAs != nil {
+		m.ExternalCAs = make([]*ExternalCA, len(o.ExternalCAs))
+		for i := range m.ExternalCAs {
+			m.ExternalCAs[i] = &ExternalCA{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.ExternalCAs[i], o.ExternalCAs[i])
+		}
+	}
+
+	if o.SigningCACert != nil {
+		m.SigningCACert = make([]byte, len(o.SigningCACert))
+		copy(m.SigningCACert, o.SigningCACert)
+	}
+	if o.SigningCAKey != nil {
+		m.SigningCAKey = make([]byte, len(o.SigningCAKey))
+		copy(m.SigningCAKey, o.SigningCAKey)
+	}
+}
+
+func (m *OrchestrationConfig) Copy() *OrchestrationConfig {
+	if m == nil {
+		return nil
+	}
+	o := &OrchestrationConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *OrchestrationConfig) CopyFrom(src interface{}) {
+
+	o := src.(*OrchestrationConfig)
+	*m = *o
+}
+
+func (m *TaskDefaults) Copy() *TaskDefaults {
+	if m == nil {
+		return nil
+	}
+	o := &TaskDefaults{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TaskDefaults) CopyFrom(src interface{}) {
+
+	o := src.(*TaskDefaults)
+	*m = *o
+	if o.LogDriver != nil {
+		m.LogDriver = &Driver{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.LogDriver, o.LogDriver)
+	}
+}
+
+func (m *DispatcherConfig) Copy() *DispatcherConfig {
+	if m == nil {
+		return nil
+	}
+	o := &DispatcherConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *DispatcherConfig) CopyFrom(src interface{}) {
+
+	o := src.(*DispatcherConfig)
+	*m = *o
+	if o.HeartbeatPeriod != nil {
+		m.HeartbeatPeriod = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.HeartbeatPeriod, o.HeartbeatPeriod)
+	}
+}
+
+func (m *RaftConfig) Copy() *RaftConfig {
+	if m == nil {
+		return nil
+	}
+	o := &RaftConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RaftConfig) CopyFrom(src interface{}) {
+
+	o := src.(*RaftConfig)
+	*m = *o
+}
+
+func (m *EncryptionConfig) Copy() *EncryptionConfig {
+	if m == nil {
+		return nil
+	}
+	o := &EncryptionConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *EncryptionConfig) CopyFrom(src interface{}) {
+
+	o := src.(*EncryptionConfig)
+	*m = *o
+}
+
+func (m *SpreadOver) Copy() *SpreadOver {
+	if m == nil {
+		return nil
+	}
+	o := &SpreadOver{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SpreadOver) CopyFrom(src interface{}) {
+
+	o := src.(*SpreadOver)
+	*m = *o
+}
+
+func (m *PlacementPreference) Copy() *PlacementPreference {
+	if m == nil {
+		return nil
+	}
+	o := &PlacementPreference{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *PlacementPreference) CopyFrom(src interface{}) {
+
+	o := src.(*PlacementPreference)
+	*m = *o
+	if o.Preference != nil {
+		switch o.Preference.(type) {
+		case *PlacementPreference_Spread:
+			v := PlacementPreference_Spread{
+				Spread: &SpreadOver{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Spread, o.GetSpread())
+			m.Preference = &v
+		}
+	}
+
+}
+
+func (m *Placement) Copy() *Placement {
+	if m == nil {
+		return nil
+	}
+	o := &Placement{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Placement) CopyFrom(src interface{}) {
+
+	o := src.(*Placement)
+	*m = *o
+	if o.Constraints != nil {
+		m.Constraints = make([]string, len(o.Constraints))
+		copy(m.Constraints, o.Constraints)
+	}
+
+	if o.Preferences != nil {
+		m.Preferences = make([]*PlacementPreference, len(o.Preferences))
+		for i := range m.Preferences {
+			m.Preferences[i] = &PlacementPreference{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Preferences[i], o.Preferences[i])
+		}
+	}
+
+	if o.Platforms != nil {
+		m.Platforms = make([]*Platform, len(o.Platforms))
+		for i := range m.Platforms {
+			m.Platforms[i] = &Platform{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Platforms[i], o.Platforms[i])
+		}
+	}
+
+}
+
+func (m *JoinTokens) Copy() *JoinTokens {
+	if m == nil {
+		return nil
+	}
+	o := &JoinTokens{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *JoinTokens) CopyFrom(src interface{}) {
+
+	o := src.(*JoinTokens)
+	*m = *o
+}
+
+func (m *RootCA) Copy() *RootCA {
+	if m == nil {
+		return nil
+	}
+	o := &RootCA{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RootCA) CopyFrom(src interface{}) {
+
+	o := src.(*RootCA)
+	*m = *o
+	if o.CAKey != nil {
+		m.CAKey = make([]byte, len(o.CAKey))
+		copy(m.CAKey, o.CAKey)
+	}
+	if o.CACert != nil {
+		m.CACert = make([]byte, len(o.CACert))
+		copy(m.CACert, o.CACert)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.JoinTokens, &o.JoinTokens)
+	if o.RootRotation != nil {
+		m.RootRotation = &RootRotation{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.RootRotation, o.RootRotation)
+	}
+}
+
+func (m *Certificate) Copy() *Certificate {
+	if m == nil {
+		return nil
+	}
+	o := &Certificate{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Certificate) CopyFrom(src interface{}) {
+
+	o := src.(*Certificate)
+	*m = *o
+	if o.CSR != nil {
+		m.CSR = make([]byte, len(o.CSR))
+		copy(m.CSR, o.CSR)
+	}
+	github_com_docker_swarmkit_api_deepcopy.Copy(&m.Status, &o.Status)
+	if o.Certificate != nil {
+		m.Certificate = make([]byte, len(o.Certificate))
+		copy(m.Certificate, o.Certificate)
+	}
+}
+
+func (m *EncryptionKey) Copy() *EncryptionKey {
+	if m == nil {
+		return nil
+	}
+	o := &EncryptionKey{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *EncryptionKey) CopyFrom(src interface{}) {
+
+	o := src.(*EncryptionKey)
+	*m = *o
+	if o.Key != nil {
+		m.Key = make([]byte, len(o.Key))
+		copy(m.Key, o.Key)
+	}
+}
+
+func (m *ManagerStatus) Copy() *ManagerStatus {
+	if m == nil {
+		return nil
+	}
+	o := &ManagerStatus{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ManagerStatus) CopyFrom(src interface{}) {
+
+	o := src.(*ManagerStatus)
+	*m = *o
+}
+
+func (m *FileTarget) Copy() *FileTarget {
+	if m == nil {
+		return nil
+	}
+	o := &FileTarget{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *FileTarget) CopyFrom(src interface{}) {
+
+	o := src.(*FileTarget)
+	*m = *o
+}
+
+func (m *SecretReference) Copy() *SecretReference {
+	if m == nil {
+		return nil
+	}
+	o := &SecretReference{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SecretReference) CopyFrom(src interface{}) {
+
+	o := src.(*SecretReference)
+	*m = *o
+	if o.Target != nil {
+		switch o.Target.(type) {
+		case *SecretReference_File:
+			v := SecretReference_File{
+				File: &FileTarget{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.File, o.GetFile())
+			m.Target = &v
+		}
+	}
+
+}
+
+func (m *ConfigReference) Copy() *ConfigReference {
+	if m == nil {
+		return nil
+	}
+	o := &ConfigReference{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *ConfigReference) CopyFrom(src interface{}) {
+
+	o := src.(*ConfigReference)
+	*m = *o
+	if o.Target != nil {
+		switch o.Target.(type) {
+		case *ConfigReference_File:
+			v := ConfigReference_File{
+				File: &FileTarget{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.File, o.GetFile())
+			m.Target = &v
+		}
+	}
+
+}
+
+func (m *BlacklistedCertificate) Copy() *BlacklistedCertificate {
+	if m == nil {
+		return nil
+	}
+	o := &BlacklistedCertificate{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *BlacklistedCertificate) CopyFrom(src interface{}) {
+
+	o := src.(*BlacklistedCertificate)
+	*m = *o
+	if o.Expiry != nil {
+		m.Expiry = &google_protobuf.Timestamp{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Expiry, o.Expiry)
+	}
+}
+
+func (m *HealthConfig) Copy() *HealthConfig {
+	if m == nil {
+		return nil
+	}
+	o := &HealthConfig{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *HealthConfig) CopyFrom(src interface{}) {
+
+	o := src.(*HealthConfig)
+	*m = *o
+	if o.Test != nil {
+		m.Test = make([]string, len(o.Test))
+		copy(m.Test, o.Test)
+	}
+
+	if o.Interval != nil {
+		m.Interval = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Interval, o.Interval)
+	}
+	if o.Timeout != nil {
+		m.Timeout = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Timeout, o.Timeout)
+	}
+	if o.StartPeriod != nil {
+		m.StartPeriod = &google_protobuf1.Duration{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.StartPeriod, o.StartPeriod)
+	}
+}
+
+func (m *MaybeEncryptedRecord) Copy() *MaybeEncryptedRecord {
+	if m == nil {
+		return nil
+	}
+	o := &MaybeEncryptedRecord{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *MaybeEncryptedRecord) CopyFrom(src interface{}) {
+
+	o := src.(*MaybeEncryptedRecord)
+	*m = *o
+	if o.Data != nil {
+		m.Data = make([]byte, len(o.Data))
+		copy(m.Data, o.Data)
+	}
+	if o.Nonce != nil {
+		m.Nonce = make([]byte, len(o.Nonce))
+		copy(m.Nonce, o.Nonce)
+	}
+}
+
+func (m *RootRotation) Copy() *RootRotation {
+	if m == nil {
+		return nil
+	}
+	o := &RootRotation{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *RootRotation) CopyFrom(src interface{}) {
+
+	o := src.(*RootRotation)
+	*m = *o
+	if o.CACert != nil {
+		m.CACert = make([]byte, len(o.CACert))
+		copy(m.CACert, o.CACert)
+	}
+	if o.CAKey != nil {
+		m.CAKey = make([]byte, len(o.CAKey))
+		copy(m.CAKey, o.CAKey)
+	}
+	if o.CrossSignedCACert != nil {
+		m.CrossSignedCACert = make([]byte, len(o.CrossSignedCACert))
+		copy(m.CrossSignedCACert, o.CrossSignedCACert)
+	}
+}
+
+func (m *Privileges) Copy() *Privileges {
+	if m == nil {
+		return nil
+	}
+	o := &Privileges{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Privileges) CopyFrom(src interface{}) {
+
+	o := src.(*Privileges)
+	*m = *o
+	if o.CredentialSpec != nil {
+		m.CredentialSpec = &Privileges_CredentialSpec{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.CredentialSpec, o.CredentialSpec)
+	}
+	if o.SELinuxContext != nil {
+		m.SELinuxContext = &Privileges_SELinuxContext{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.SELinuxContext, o.SELinuxContext)
+	}
+}
+
+func (m *Privileges_CredentialSpec) Copy() *Privileges_CredentialSpec {
+	if m == nil {
+		return nil
+	}
+	o := &Privileges_CredentialSpec{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Privileges_CredentialSpec) CopyFrom(src interface{}) {
+
+	o := src.(*Privileges_CredentialSpec)
+	*m = *o
+	if o.Source != nil {
+		switch o.Source.(type) {
+		case *Privileges_CredentialSpec_File:
+			v := Privileges_CredentialSpec_File{
+				File: o.GetFile(),
+			}
+			m.Source = &v
+		case *Privileges_CredentialSpec_Registry:
+			v := Privileges_CredentialSpec_Registry{
+				Registry: o.GetRegistry(),
+			}
+			m.Source = &v
+		}
+	}
+
+}
+
+func (m *Privileges_SELinuxContext) Copy() *Privileges_SELinuxContext {
+	if m == nil {
+		return nil
+	}
+	o := &Privileges_SELinuxContext{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Privileges_SELinuxContext) CopyFrom(src interface{}) {
+
+	o := src.(*Privileges_SELinuxContext)
+	*m = *o
+}
+
+func (m *Version) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Version) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Index != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Index))
+	}
+	return i, nil
+}
+
+func (m *IndexEntry) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IndexEntry) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Key) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Key)))
+		i += copy(dAtA[i:], m.Key)
+	}
+	if len(m.Val) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Val)))
+		i += copy(dAtA[i:], m.Val)
+	}
+	return i, nil
+}
+
+func (m *Annotations) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Annotations) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x12
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.Indices) > 0 {
+		for _, msg := range m.Indices {
+			dAtA[i] = 0x22
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *NamedGenericResource) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NamedGenericResource) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if len(m.Value) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func (m *DiscreteGenericResource) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *DiscreteGenericResource) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if m.Value != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Value))
+	}
+	return i, nil
+}
+
+func (m *GenericResource) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *GenericResource) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Resource != nil {
+		nn1, err := m.Resource.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn1
+	}
+	return i, nil
+}
+
+func (m *GenericResource_NamedResourceSpec) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.NamedResourceSpec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.NamedResourceSpec.Size()))
+		n2, err := m.NamedResourceSpec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	return i, nil
+}
+func (m *GenericResource_DiscreteResourceSpec) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.DiscreteResourceSpec != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.DiscreteResourceSpec.Size()))
+		n3, err := m.DiscreteResourceSpec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	return i, nil
+}
+func (m *Resources) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Resources) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.NanoCPUs != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.NanoCPUs))
+	}
+	if m.MemoryBytes != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.MemoryBytes))
+	}
+	if len(m.Generic) > 0 {
+		for _, msg := range m.Generic {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *ResourceRequirements) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ResourceRequirements) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Limits != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Limits.Size()))
+		n4, err := m.Limits.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	if m.Reservations != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Reservations.Size()))
+		n5, err := m.Reservations.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n5
+	}
+	return i, nil
+}
+
+func (m *Platform) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Platform) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Architecture) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Architecture)))
+		i += copy(dAtA[i:], m.Architecture)
+	}
+	if len(m.OS) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.OS)))
+		i += copy(dAtA[i:], m.OS)
+	}
+	return i, nil
+}
+
+func (m *PluginDescription) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PluginDescription) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Type) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Type)))
+		i += copy(dAtA[i:], m.Type)
+	}
+	if len(m.Name) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	return i, nil
+}
+
+func (m *EngineDescription) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *EngineDescription) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.EngineVersion) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.EngineVersion)))
+		i += copy(dAtA[i:], m.EngineVersion)
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x12
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.Plugins) > 0 {
+		for _, msg := range m.Plugins {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *NodeDescription) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeDescription) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Hostname) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Hostname)))
+		i += copy(dAtA[i:], m.Hostname)
+	}
+	if m.Platform != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Platform.Size()))
+		n6, err := m.Platform.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	if m.Resources != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Resources.Size()))
+		n7, err := m.Resources.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	if m.Engine != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Engine.Size()))
+		n8, err := m.Engine.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	if m.TLSInfo != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.TLSInfo.Size()))
+		n9, err := m.TLSInfo.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	if m.FIPS {
+		dAtA[i] = 0x30
+		i++
+		if m.FIPS {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *NodeTLSInfo) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeTLSInfo) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.TrustRoot) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.TrustRoot)))
+		i += copy(dAtA[i:], m.TrustRoot)
+	}
+	if len(m.CertIssuerSubject) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CertIssuerSubject)))
+		i += copy(dAtA[i:], m.CertIssuerSubject)
+	}
+	if len(m.CertIssuerPublicKey) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CertIssuerPublicKey)))
+		i += copy(dAtA[i:], m.CertIssuerPublicKey)
+	}
+	return i, nil
+}
+
+func (m *RaftMemberStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RaftMemberStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Leader {
+		dAtA[i] = 0x8
+		i++
+		if m.Leader {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Reachability != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Reachability))
+	}
+	if len(m.Message) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Message)))
+		i += copy(dAtA[i:], m.Message)
+	}
+	return i, nil
+}
+
+func (m *NodeStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NodeStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.State != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.State))
+	}
+	if len(m.Message) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Message)))
+		i += copy(dAtA[i:], m.Message)
+	}
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	return i, nil
+}
+
+func (m *Image) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Image) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Reference) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Reference)))
+		i += copy(dAtA[i:], m.Reference)
+	}
+	return i, nil
+}
+
+func (m *Mount) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Mount) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Type))
+	}
+	if len(m.Source) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Source)))
+		i += copy(dAtA[i:], m.Source)
+	}
+	if len(m.Target) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Target)))
+		i += copy(dAtA[i:], m.Target)
+	}
+	if m.ReadOnly {
+		dAtA[i] = 0x20
+		i++
+		if m.ReadOnly {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.BindOptions != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.BindOptions.Size()))
+		n10, err := m.BindOptions.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n10
+	}
+	if m.VolumeOptions != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.VolumeOptions.Size()))
+		n11, err := m.VolumeOptions.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n11
+	}
+	if m.TmpfsOptions != nil {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.TmpfsOptions.Size()))
+		n12, err := m.TmpfsOptions.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n12
+	}
+	if m.Consistency != 0 {
+		dAtA[i] = 0x40
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Consistency))
+	}
+	return i, nil
+}
+
+func (m *Mount_BindOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Mount_BindOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Propagation != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Propagation))
+	}
+	return i, nil
+}
+
+func (m *Mount_VolumeOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Mount_VolumeOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.NoCopy {
+		dAtA[i] = 0x8
+		i++
+		if m.NoCopy {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.Labels) > 0 {
+		for k, _ := range m.Labels {
+			dAtA[i] = 0x12
+			i++
+			v := m.Labels[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if m.DriverConfig != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.DriverConfig.Size()))
+		n13, err := m.DriverConfig.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	return i, nil
+}
+
+func (m *Mount_TmpfsOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Mount_TmpfsOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.SizeBytes != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.SizeBytes))
+	}
+	if m.Mode != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Mode))
+	}
+	return i, nil
+}
+
+func (m *RestartPolicy) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RestartPolicy) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Condition != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Condition))
+	}
+	if m.Delay != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Delay.Size()))
+		n14, err := m.Delay.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	if m.MaxAttempts != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.MaxAttempts))
+	}
+	if m.Window != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Window.Size()))
+		n15, err := m.Window.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n15
+	}
+	return i, nil
+}
+
+func (m *UpdateConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Parallelism != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Parallelism))
+	}
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintTypes(dAtA, i, uint64(github_com_gogo_protobuf_types.SizeOfStdDuration(m.Delay)))
+	n16, err := github_com_gogo_protobuf_types.StdDurationMarshalTo(m.Delay, dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n16
+	if m.FailureAction != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.FailureAction))
+	}
+	if m.Monitor != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Monitor.Size()))
+		n17, err := m.Monitor.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n17
+	}
+	if m.MaxFailureRatio != 0 {
+		dAtA[i] = 0x2d
+		i++
+		i = encodeFixed32Types(dAtA, i, uint32(math.Float32bits(float32(m.MaxFailureRatio))))
+	}
+	if m.Order != 0 {
+		dAtA[i] = 0x30
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Order))
+	}
+	return i, nil
+}
+
+func (m *UpdateStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UpdateStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.State != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.State))
+	}
+	if m.StartedAt != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.StartedAt.Size()))
+		n18, err := m.StartedAt.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n18
+	}
+	if m.CompletedAt != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.CompletedAt.Size()))
+		n19, err := m.CompletedAt.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n19
+	}
+	if len(m.Message) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Message)))
+		i += copy(dAtA[i:], m.Message)
+	}
+	return i, nil
+}
+
+func (m *ContainerStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ContainerStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ContainerID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.ContainerID)))
+		i += copy(dAtA[i:], m.ContainerID)
+	}
+	if m.PID != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.PID))
+	}
+	if m.ExitCode != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.ExitCode))
+	}
+	return i, nil
+}
+
+func (m *PortStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PortStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Ports) > 0 {
+		for _, msg := range m.Ports {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *TaskStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TaskStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Timestamp != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Timestamp.Size()))
+		n20, err := m.Timestamp.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n20
+	}
+	if m.State != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.State))
+	}
+	if len(m.Message) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Message)))
+		i += copy(dAtA[i:], m.Message)
+	}
+	if len(m.Err) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Err)))
+		i += copy(dAtA[i:], m.Err)
+	}
+	if m.RuntimeStatus != nil {
+		nn21, err := m.RuntimeStatus.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn21
+	}
+	if m.PortStatus != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.PortStatus.Size()))
+		n22, err := m.PortStatus.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n22
+	}
+	if len(m.AppliedBy) > 0 {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.AppliedBy)))
+		i += copy(dAtA[i:], m.AppliedBy)
+	}
+	if m.AppliedAt != nil {
+		dAtA[i] = 0x42
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.AppliedAt.Size()))
+		n23, err := m.AppliedAt.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n23
+	}
+	return i, nil
+}
+
+func (m *TaskStatus_Container) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Container != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Container.Size()))
+		n24, err := m.Container.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n24
+	}
+	return i, nil
+}
+func (m *NetworkAttachmentConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *NetworkAttachmentConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Target) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Target)))
+		i += copy(dAtA[i:], m.Target)
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			dAtA[i] = 0x12
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Addresses) > 0 {
+		for _, s := range m.Addresses {
+			dAtA[i] = 0x1a
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.DriverAttachmentOpts) > 0 {
+		for k, _ := range m.DriverAttachmentOpts {
+			dAtA[i] = 0x22
+			i++
+			v := m.DriverAttachmentOpts[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	return i, nil
+}
+
+func (m *IPAMConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IPAMConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Family != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Family))
+	}
+	if len(m.Subnet) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Subnet)))
+		i += copy(dAtA[i:], m.Subnet)
+	}
+	if len(m.Range) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Range)))
+		i += copy(dAtA[i:], m.Range)
+	}
+	if len(m.Gateway) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Gateway)))
+		i += copy(dAtA[i:], m.Gateway)
+	}
+	if len(m.Reserved) > 0 {
+		for k, _ := range m.Reserved {
+			dAtA[i] = 0x2a
+			i++
+			v := m.Reserved[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	return i, nil
+}
+
+func (m *PortConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PortConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if m.Protocol != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Protocol))
+	}
+	if m.TargetPort != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.TargetPort))
+	}
+	if m.PublishedPort != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.PublishedPort))
+	}
+	if m.PublishMode != 0 {
+		dAtA[i] = 0x28
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.PublishMode))
+	}
+	return i, nil
+}
+
+func (m *Driver) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Driver) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.Options) > 0 {
+		for k, _ := range m.Options {
+			dAtA[i] = 0x12
+			i++
+			v := m.Options[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	return i, nil
+}
+
+func (m *IPAMOptions) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IPAMOptions) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Driver != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Driver.Size()))
+		n25, err := m.Driver.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n25
+	}
+	if len(m.Configs) > 0 {
+		for _, msg := range m.Configs {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *Peer) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Peer) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.NodeID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.NodeID)))
+		i += copy(dAtA[i:], m.NodeID)
+	}
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	return i, nil
+}
+
+func (m *WeightedPeer) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WeightedPeer) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Peer != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Peer.Size()))
+		n26, err := m.Peer.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n26
+	}
+	if m.Weight != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Weight))
+	}
+	return i, nil
+}
+
+func (m *IssuanceStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *IssuanceStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.State != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.State))
+	}
+	if len(m.Err) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Err)))
+		i += copy(dAtA[i:], m.Err)
+	}
+	return i, nil
+}
+
+func (m *AcceptancePolicy) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AcceptancePolicy) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Policies) > 0 {
+		for _, msg := range m.Policies {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Role != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Role))
+	}
+	if m.Autoaccept {
+		dAtA[i] = 0x10
+		i++
+		if m.Autoaccept {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Secret != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Secret.Size()))
+		n27, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n27
+	}
+	return i, nil
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Data) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if len(m.Alg) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Alg)))
+		i += copy(dAtA[i:], m.Alg)
+	}
+	return i, nil
+}
+
+func (m *ExternalCA) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ExternalCA) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Protocol != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Protocol))
+	}
+	if len(m.URL) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.URL)))
+		i += copy(dAtA[i:], m.URL)
+	}
+	if len(m.Options) > 0 {
+		for k, _ := range m.Options {
+			dAtA[i] = 0x1a
+			i++
+			v := m.Options[k]
+			mapSize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			i = encodeVarintTypes(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(len(v)))
+			i += copy(dAtA[i:], v)
+		}
+	}
+	if len(m.CACert) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CACert)))
+		i += copy(dAtA[i:], m.CACert)
+	}
+	return i, nil
+}
+
+func (m *CAConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *CAConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.NodeCertExpiry != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.NodeCertExpiry.Size()))
+		n28, err := m.NodeCertExpiry.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n28
+	}
+	if len(m.ExternalCAs) > 0 {
+		for _, msg := range m.ExternalCAs {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.SigningCACert) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.SigningCACert)))
+		i += copy(dAtA[i:], m.SigningCACert)
+	}
+	if len(m.SigningCAKey) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.SigningCAKey)))
+		i += copy(dAtA[i:], m.SigningCAKey)
+	}
+	if m.ForceRotate != 0 {
+		dAtA[i] = 0x28
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.ForceRotate))
+	}
+	return i, nil
+}
+
+func (m *OrchestrationConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *OrchestrationConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.TaskHistoryRetentionLimit != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.TaskHistoryRetentionLimit))
+	}
+	return i, nil
+}
+
+func (m *TaskDefaults) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TaskDefaults) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.LogDriver != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.LogDriver.Size()))
+		n29, err := m.LogDriver.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n29
+	}
+	return i, nil
+}
+
+func (m *DispatcherConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *DispatcherConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.HeartbeatPeriod != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.HeartbeatPeriod.Size()))
+		n30, err := m.HeartbeatPeriod.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n30
+	}
+	return i, nil
+}
+
+func (m *RaftConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RaftConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.SnapshotInterval != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.SnapshotInterval))
+	}
+	if m.KeepOldSnapshots != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.KeepOldSnapshots))
+	}
+	if m.LogEntriesForSlowFollowers != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.LogEntriesForSlowFollowers))
+	}
+	if m.HeartbeatTick != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.HeartbeatTick))
+	}
+	if m.ElectionTick != 0 {
+		dAtA[i] = 0x28
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.ElectionTick))
+	}
+	return i, nil
+}
+
+func (m *EncryptionConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *EncryptionConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.AutoLockManagers {
+		dAtA[i] = 0x8
+		i++
+		if m.AutoLockManagers {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *SpreadOver) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SpreadOver) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SpreadDescriptor) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.SpreadDescriptor)))
+		i += copy(dAtA[i:], m.SpreadDescriptor)
+	}
+	return i, nil
+}
+
+func (m *PlacementPreference) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *PlacementPreference) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Preference != nil {
+		nn31, err := m.Preference.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn31
+	}
+	return i, nil
+}
+
+func (m *PlacementPreference_Spread) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Spread != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Spread.Size()))
+		n32, err := m.Spread.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n32
+	}
+	return i, nil
+}
+func (m *Placement) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Placement) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Constraints) > 0 {
+		for _, s := range m.Constraints {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if len(m.Preferences) > 0 {
+		for _, msg := range m.Preferences {
+			dAtA[i] = 0x12
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if len(m.Platforms) > 0 {
+		for _, msg := range m.Platforms {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintTypes(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *JoinTokens) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *JoinTokens) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Worker) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Worker)))
+		i += copy(dAtA[i:], m.Worker)
+	}
+	if len(m.Manager) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Manager)))
+		i += copy(dAtA[i:], m.Manager)
+	}
+	return i, nil
+}
+
+func (m *RootCA) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RootCA) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.CAKey) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CAKey)))
+		i += copy(dAtA[i:], m.CAKey)
+	}
+	if len(m.CACert) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CACert)))
+		i += copy(dAtA[i:], m.CACert)
+	}
+	if len(m.CACertHash) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CACertHash)))
+		i += copy(dAtA[i:], m.CACertHash)
+	}
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintTypes(dAtA, i, uint64(m.JoinTokens.Size()))
+	n33, err := m.JoinTokens.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n33
+	if m.RootRotation != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.RootRotation.Size()))
+		n34, err := m.RootRotation.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n34
+	}
+	if m.LastForcedRotation != 0 {
+		dAtA[i] = 0x30
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.LastForcedRotation))
+	}
+	return i, nil
+}
+
+func (m *Certificate) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Certificate) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Role != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Role))
+	}
+	if len(m.CSR) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CSR)))
+		i += copy(dAtA[i:], m.CSR)
+	}
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintTypes(dAtA, i, uint64(m.Status.Size()))
+	n35, err := m.Status.MarshalTo(dAtA[i:])
+	if err != nil {
+		return 0, err
+	}
+	i += n35
+	if len(m.Certificate) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Certificate)))
+		i += copy(dAtA[i:], m.Certificate)
+	}
+	if len(m.CN) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CN)))
+		i += copy(dAtA[i:], m.CN)
+	}
+	return i, nil
+}
+
+func (m *EncryptionKey) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *EncryptionKey) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Subsystem) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Subsystem)))
+		i += copy(dAtA[i:], m.Subsystem)
+	}
+	if m.Algorithm != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Algorithm))
+	}
+	if len(m.Key) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Key)))
+		i += copy(dAtA[i:], m.Key)
+	}
+	if m.LamportTime != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.LamportTime))
+	}
+	return i, nil
+}
+
+func (m *ManagerStatus) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ManagerStatus) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.RaftID))
+	}
+	if len(m.Addr) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Addr)))
+		i += copy(dAtA[i:], m.Addr)
+	}
+	if m.Leader {
+		dAtA[i] = 0x18
+		i++
+		if m.Leader {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Reachability != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Reachability))
+	}
+	return i, nil
+}
+
+func (m *FileTarget) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *FileTarget) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Name) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Name)))
+		i += copy(dAtA[i:], m.Name)
+	}
+	if len(m.UID) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.UID)))
+		i += copy(dAtA[i:], m.UID)
+	}
+	if len(m.GID) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.GID)))
+		i += copy(dAtA[i:], m.GID)
+	}
+	if m.Mode != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Mode))
+	}
+	return i, nil
+}
+
+func (m *SecretReference) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SecretReference) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.SecretID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.SecretID)))
+		i += copy(dAtA[i:], m.SecretID)
+	}
+	if len(m.SecretName) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.SecretName)))
+		i += copy(dAtA[i:], m.SecretName)
+	}
+	if m.Target != nil {
+		nn36, err := m.Target.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn36
+	}
+	return i, nil
+}
+
+func (m *SecretReference_File) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.File != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.File.Size()))
+		n37, err := m.File.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n37
+	}
+	return i, nil
+}
+func (m *ConfigReference) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ConfigReference) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ConfigID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.ConfigID)))
+		i += copy(dAtA[i:], m.ConfigID)
+	}
+	if len(m.ConfigName) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.ConfigName)))
+		i += copy(dAtA[i:], m.ConfigName)
+	}
+	if m.Target != nil {
+		nn38, err := m.Target.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn38
+	}
+	return i, nil
+}
+
+func (m *ConfigReference_File) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.File != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.File.Size()))
+		n39, err := m.File.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n39
+	}
+	return i, nil
+}
+func (m *BlacklistedCertificate) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *BlacklistedCertificate) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Expiry != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Expiry.Size()))
+		n40, err := m.Expiry.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n40
+	}
+	return i, nil
+}
+
+func (m *HealthConfig) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *HealthConfig) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Test) > 0 {
+		for _, s := range m.Test {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if m.Interval != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Interval.Size()))
+		n41, err := m.Interval.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n41
+	}
+	if m.Timeout != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Timeout.Size()))
+		n42, err := m.Timeout.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n42
+	}
+	if m.Retries != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Retries))
+	}
+	if m.StartPeriod != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.StartPeriod.Size()))
+		n43, err := m.StartPeriod.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n43
+	}
+	return i, nil
+}
+
+func (m *MaybeEncryptedRecord) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *MaybeEncryptedRecord) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Algorithm != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.Algorithm))
+	}
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	if len(m.Nonce) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Nonce)))
+		i += copy(dAtA[i:], m.Nonce)
+	}
+	return i, nil
+}
+
+func (m *RootRotation) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *RootRotation) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.CACert) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CACert)))
+		i += copy(dAtA[i:], m.CACert)
+	}
+	if len(m.CAKey) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CAKey)))
+		i += copy(dAtA[i:], m.CAKey)
+	}
+	if len(m.CrossSignedCACert) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.CrossSignedCACert)))
+		i += copy(dAtA[i:], m.CrossSignedCACert)
+	}
+	return i, nil
+}
+
+func (m *Privileges) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Privileges) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.CredentialSpec != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.CredentialSpec.Size()))
+		n44, err := m.CredentialSpec.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n44
+	}
+	if m.SELinuxContext != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(m.SELinuxContext.Size()))
+		n45, err := m.SELinuxContext.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n45
+	}
+	return i, nil
+}
+
+func (m *Privileges_CredentialSpec) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Privileges_CredentialSpec) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Source != nil {
+		nn46, err := m.Source.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn46
+	}
+	return i, nil
+}
+
+func (m *Privileges_CredentialSpec_File) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintTypes(dAtA, i, uint64(len(m.File)))
+	i += copy(dAtA[i:], m.File)
+	return i, nil
+}
+func (m *Privileges_CredentialSpec_Registry) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintTypes(dAtA, i, uint64(len(m.Registry)))
+	i += copy(dAtA[i:], m.Registry)
+	return i, nil
+}
+func (m *Privileges_SELinuxContext) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Privileges_SELinuxContext) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Disable {
+		dAtA[i] = 0x8
+		i++
+		if m.Disable {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if len(m.User) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.User)))
+		i += copy(dAtA[i:], m.User)
+	}
+	if len(m.Role) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Role)))
+		i += copy(dAtA[i:], m.Role)
+	}
+	if len(m.Type) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Type)))
+		i += copy(dAtA[i:], m.Type)
+	}
+	if len(m.Level) > 0 {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintTypes(dAtA, i, uint64(len(m.Level)))
+		i += copy(dAtA[i:], m.Level)
+	}
+	return i, nil
+}
+
+func encodeFixed64Types(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Types(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintTypes(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+func (m *Version) Size() (n int) {
+	var l int
+	_ = l
+	if m.Index != 0 {
+		n += 1 + sovTypes(uint64(m.Index))
+	}
+	return n
+}
+
+func (m *IndexEntry) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Key)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Val)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Annotations) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	if len(m.Indices) > 0 {
+		for _, e := range m.Indices {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *NamedGenericResource) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *DiscreteGenericResource) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Value != 0 {
+		n += 1 + sovTypes(uint64(m.Value))
+	}
+	return n
+}
+
+func (m *GenericResource) Size() (n int) {
+	var l int
+	_ = l
+	if m.Resource != nil {
+		n += m.Resource.Size()
+	}
+	return n
+}
+
+func (m *GenericResource_NamedResourceSpec) Size() (n int) {
+	var l int
+	_ = l
+	if m.NamedResourceSpec != nil {
+		l = m.NamedResourceSpec.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *GenericResource_DiscreteResourceSpec) Size() (n int) {
+	var l int
+	_ = l
+	if m.DiscreteResourceSpec != nil {
+		l = m.DiscreteResourceSpec.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *Resources) Size() (n int) {
+	var l int
+	_ = l
+	if m.NanoCPUs != 0 {
+		n += 1 + sovTypes(uint64(m.NanoCPUs))
+	}
+	if m.MemoryBytes != 0 {
+		n += 1 + sovTypes(uint64(m.MemoryBytes))
+	}
+	if len(m.Generic) > 0 {
+		for _, e := range m.Generic {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *ResourceRequirements) Size() (n int) {
+	var l int
+	_ = l
+	if m.Limits != nil {
+		l = m.Limits.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Reservations != nil {
+		l = m.Reservations.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Platform) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Architecture)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.OS)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *PluginDescription) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Type)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *EngineDescription) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.EngineVersion)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	if len(m.Plugins) > 0 {
+		for _, e := range m.Plugins {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *NodeDescription) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Hostname)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Platform != nil {
+		l = m.Platform.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Resources != nil {
+		l = m.Resources.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Engine != nil {
+		l = m.Engine.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.TLSInfo != nil {
+		l = m.TLSInfo.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.FIPS {
+		n += 2
+	}
+	return n
+}
+
+func (m *NodeTLSInfo) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.TrustRoot)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CertIssuerSubject)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CertIssuerPublicKey)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *RaftMemberStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.Leader {
+		n += 2
+	}
+	if m.Reachability != 0 {
+		n += 1 + sovTypes(uint64(m.Reachability))
+	}
+	l = len(m.Message)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *NodeStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.State != 0 {
+		n += 1 + sovTypes(uint64(m.State))
+	}
+	l = len(m.Message)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Image) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Reference)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Mount) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovTypes(uint64(m.Type))
+	}
+	l = len(m.Source)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Target)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.ReadOnly {
+		n += 2
+	}
+	if m.BindOptions != nil {
+		l = m.BindOptions.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.VolumeOptions != nil {
+		l = m.VolumeOptions.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.TmpfsOptions != nil {
+		l = m.TmpfsOptions.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Consistency != 0 {
+		n += 1 + sovTypes(uint64(m.Consistency))
+	}
+	return n
+}
+
+func (m *Mount_BindOptions) Size() (n int) {
+	var l int
+	_ = l
+	if m.Propagation != 0 {
+		n += 1 + sovTypes(uint64(m.Propagation))
+	}
+	return n
+}
+
+func (m *Mount_VolumeOptions) Size() (n int) {
+	var l int
+	_ = l
+	if m.NoCopy {
+		n += 2
+	}
+	if len(m.Labels) > 0 {
+		for k, v := range m.Labels {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	if m.DriverConfig != nil {
+		l = m.DriverConfig.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Mount_TmpfsOptions) Size() (n int) {
+	var l int
+	_ = l
+	if m.SizeBytes != 0 {
+		n += 1 + sovTypes(uint64(m.SizeBytes))
+	}
+	if m.Mode != 0 {
+		n += 1 + sovTypes(uint64(m.Mode))
+	}
+	return n
+}
+
+func (m *RestartPolicy) Size() (n int) {
+	var l int
+	_ = l
+	if m.Condition != 0 {
+		n += 1 + sovTypes(uint64(m.Condition))
+	}
+	if m.Delay != nil {
+		l = m.Delay.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.MaxAttempts != 0 {
+		n += 1 + sovTypes(uint64(m.MaxAttempts))
+	}
+	if m.Window != nil {
+		l = m.Window.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *UpdateConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.Parallelism != 0 {
+		n += 1 + sovTypes(uint64(m.Parallelism))
+	}
+	l = github_com_gogo_protobuf_types.SizeOfStdDuration(m.Delay)
+	n += 1 + l + sovTypes(uint64(l))
+	if m.FailureAction != 0 {
+		n += 1 + sovTypes(uint64(m.FailureAction))
+	}
+	if m.Monitor != nil {
+		l = m.Monitor.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.MaxFailureRatio != 0 {
+		n += 5
+	}
+	if m.Order != 0 {
+		n += 1 + sovTypes(uint64(m.Order))
+	}
+	return n
+}
+
+func (m *UpdateStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.State != 0 {
+		n += 1 + sovTypes(uint64(m.State))
+	}
+	if m.StartedAt != nil {
+		l = m.StartedAt.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.CompletedAt != nil {
+		l = m.CompletedAt.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Message)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *ContainerStatus) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ContainerID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.PID != 0 {
+		n += 1 + sovTypes(uint64(m.PID))
+	}
+	if m.ExitCode != 0 {
+		n += 1 + sovTypes(uint64(m.ExitCode))
+	}
+	return n
+}
+
+func (m *PortStatus) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Ports) > 0 {
+		for _, e := range m.Ports {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *TaskStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.Timestamp != nil {
+		l = m.Timestamp.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.State != 0 {
+		n += 1 + sovTypes(uint64(m.State))
+	}
+	l = len(m.Message)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Err)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.RuntimeStatus != nil {
+		n += m.RuntimeStatus.Size()
+	}
+	if m.PortStatus != nil {
+		l = m.PortStatus.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.AppliedBy)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.AppliedAt != nil {
+		l = m.AppliedAt.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *TaskStatus_Container) Size() (n int) {
+	var l int
+	_ = l
+	if m.Container != nil {
+		l = m.Container.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *NetworkAttachmentConfig) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Target)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Aliases) > 0 {
+		for _, s := range m.Aliases {
+			l = len(s)
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	if len(m.Addresses) > 0 {
+		for _, s := range m.Addresses {
+			l = len(s)
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	if len(m.DriverAttachmentOpts) > 0 {
+		for k, v := range m.DriverAttachmentOpts {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func (m *IPAMConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.Family != 0 {
+		n += 1 + sovTypes(uint64(m.Family))
+	}
+	l = len(m.Subnet)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Range)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Gateway)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Reserved) > 0 {
+		for k, v := range m.Reserved {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func (m *PortConfig) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Protocol != 0 {
+		n += 1 + sovTypes(uint64(m.Protocol))
+	}
+	if m.TargetPort != 0 {
+		n += 1 + sovTypes(uint64(m.TargetPort))
+	}
+	if m.PublishedPort != 0 {
+		n += 1 + sovTypes(uint64(m.PublishedPort))
+	}
+	if m.PublishMode != 0 {
+		n += 1 + sovTypes(uint64(m.PublishMode))
+	}
+	return n
+}
+
+func (m *Driver) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Options) > 0 {
+		for k, v := range m.Options {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func (m *IPAMOptions) Size() (n int) {
+	var l int
+	_ = l
+	if m.Driver != nil {
+		l = m.Driver.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Configs) > 0 {
+		for _, e := range m.Configs {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *Peer) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *WeightedPeer) Size() (n int) {
+	var l int
+	_ = l
+	if m.Peer != nil {
+		l = m.Peer.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Weight != 0 {
+		n += 1 + sovTypes(uint64(m.Weight))
+	}
+	return n
+}
+
+func (m *IssuanceStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.State != 0 {
+		n += 1 + sovTypes(uint64(m.State))
+	}
+	l = len(m.Err)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *AcceptancePolicy) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Policies) > 0 {
+		for _, e := range m.Policies {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy) Size() (n int) {
+	var l int
+	_ = l
+	if m.Role != 0 {
+		n += 1 + sovTypes(uint64(m.Role))
+	}
+	if m.Autoaccept {
+		n += 2
+	}
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Alg)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *ExternalCA) Size() (n int) {
+	var l int
+	_ = l
+	if m.Protocol != 0 {
+		n += 1 + sovTypes(uint64(m.Protocol))
+	}
+	l = len(m.URL)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.Options) > 0 {
+		for k, v := range m.Options {
+			_ = k
+			_ = v
+			mapEntrySize := 1 + len(k) + sovTypes(uint64(len(k))) + 1 + len(v) + sovTypes(uint64(len(v)))
+			n += mapEntrySize + 1 + sovTypes(uint64(mapEntrySize))
+		}
+	}
+	l = len(m.CACert)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *CAConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.NodeCertExpiry != nil {
+		l = m.NodeCertExpiry.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if len(m.ExternalCAs) > 0 {
+		for _, e := range m.ExternalCAs {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	l = len(m.SigningCACert)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.SigningCAKey)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.ForceRotate != 0 {
+		n += 1 + sovTypes(uint64(m.ForceRotate))
+	}
+	return n
+}
+
+func (m *OrchestrationConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.TaskHistoryRetentionLimit != 0 {
+		n += 1 + sovTypes(uint64(m.TaskHistoryRetentionLimit))
+	}
+	return n
+}
+
+func (m *TaskDefaults) Size() (n int) {
+	var l int
+	_ = l
+	if m.LogDriver != nil {
+		l = m.LogDriver.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *DispatcherConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.HeartbeatPeriod != nil {
+		l = m.HeartbeatPeriod.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *RaftConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.SnapshotInterval != 0 {
+		n += 1 + sovTypes(uint64(m.SnapshotInterval))
+	}
+	if m.KeepOldSnapshots != 0 {
+		n += 1 + sovTypes(uint64(m.KeepOldSnapshots))
+	}
+	if m.LogEntriesForSlowFollowers != 0 {
+		n += 1 + sovTypes(uint64(m.LogEntriesForSlowFollowers))
+	}
+	if m.HeartbeatTick != 0 {
+		n += 1 + sovTypes(uint64(m.HeartbeatTick))
+	}
+	if m.ElectionTick != 0 {
+		n += 1 + sovTypes(uint64(m.ElectionTick))
+	}
+	return n
+}
+
+func (m *EncryptionConfig) Size() (n int) {
+	var l int
+	_ = l
+	if m.AutoLockManagers {
+		n += 2
+	}
+	return n
+}
+
+func (m *SpreadOver) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SpreadDescriptor)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *PlacementPreference) Size() (n int) {
+	var l int
+	_ = l
+	if m.Preference != nil {
+		n += m.Preference.Size()
+	}
+	return n
+}
+
+func (m *PlacementPreference_Spread) Size() (n int) {
+	var l int
+	_ = l
+	if m.Spread != nil {
+		l = m.Spread.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *Placement) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Constraints) > 0 {
+		for _, s := range m.Constraints {
+			l = len(s)
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	if len(m.Preferences) > 0 {
+		for _, e := range m.Preferences {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	if len(m.Platforms) > 0 {
+		for _, e := range m.Platforms {
+			l = e.Size()
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *JoinTokens) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Worker)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Manager)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *RootCA) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.CAKey)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CACert)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CACertHash)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = m.JoinTokens.Size()
+	n += 1 + l + sovTypes(uint64(l))
+	if m.RootRotation != nil {
+		l = m.RootRotation.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.LastForcedRotation != 0 {
+		n += 1 + sovTypes(uint64(m.LastForcedRotation))
+	}
+	return n
+}
+
+func (m *Certificate) Size() (n int) {
+	var l int
+	_ = l
+	if m.Role != 0 {
+		n += 1 + sovTypes(uint64(m.Role))
+	}
+	l = len(m.CSR)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = m.Status.Size()
+	n += 1 + l + sovTypes(uint64(l))
+	l = len(m.Certificate)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CN)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *EncryptionKey) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Subsystem)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Algorithm != 0 {
+		n += 1 + sovTypes(uint64(m.Algorithm))
+	}
+	l = len(m.Key)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.LamportTime != 0 {
+		n += 1 + sovTypes(uint64(m.LamportTime))
+	}
+	return n
+}
+
+func (m *ManagerStatus) Size() (n int) {
+	var l int
+	_ = l
+	if m.RaftID != 0 {
+		n += 1 + sovTypes(uint64(m.RaftID))
+	}
+	l = len(m.Addr)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Leader {
+		n += 2
+	}
+	if m.Reachability != 0 {
+		n += 1 + sovTypes(uint64(m.Reachability))
+	}
+	return n
+}
+
+func (m *FileTarget) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.UID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.GID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Mode != 0 {
+		n += 1 + sovTypes(uint64(m.Mode))
+	}
+	return n
+}
+
+func (m *SecretReference) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.SecretID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.SecretName)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Target != nil {
+		n += m.Target.Size()
+	}
+	return n
+}
+
+func (m *SecretReference_File) Size() (n int) {
+	var l int
+	_ = l
+	if m.File != nil {
+		l = m.File.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *ConfigReference) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ConfigID)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.ConfigName)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Target != nil {
+		n += m.Target.Size()
+	}
+	return n
+}
+
+func (m *ConfigReference_File) Size() (n int) {
+	var l int
+	_ = l
+	if m.File != nil {
+		l = m.File.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+func (m *BlacklistedCertificate) Size() (n int) {
+	var l int
+	_ = l
+	if m.Expiry != nil {
+		l = m.Expiry.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *HealthConfig) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Test) > 0 {
+		for _, s := range m.Test {
+			l = len(s)
+			n += 1 + l + sovTypes(uint64(l))
+		}
+	}
+	if m.Interval != nil {
+		l = m.Interval.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Timeout != nil {
+		l = m.Timeout.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.Retries != 0 {
+		n += 1 + sovTypes(uint64(m.Retries))
+	}
+	if m.StartPeriod != nil {
+		l = m.StartPeriod.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *MaybeEncryptedRecord) Size() (n int) {
+	var l int
+	_ = l
+	if m.Algorithm != 0 {
+		n += 1 + sovTypes(uint64(m.Algorithm))
+	}
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Nonce)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *RootRotation) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.CACert)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CAKey)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.CrossSignedCACert)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Privileges) Size() (n int) {
+	var l int
+	_ = l
+	if m.CredentialSpec != nil {
+		l = m.CredentialSpec.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	if m.SELinuxContext != nil {
+		l = m.SELinuxContext.Size()
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func (m *Privileges_CredentialSpec) Size() (n int) {
+	var l int
+	_ = l
+	if m.Source != nil {
+		n += m.Source.Size()
+	}
+	return n
+}
+
+func (m *Privileges_CredentialSpec_File) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.File)
+	n += 1 + l + sovTypes(uint64(l))
+	return n
+}
+func (m *Privileges_CredentialSpec_Registry) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Registry)
+	n += 1 + l + sovTypes(uint64(l))
+	return n
+}
+func (m *Privileges_SELinuxContext) Size() (n int) {
+	var l int
+	_ = l
+	if m.Disable {
+		n += 2
+	}
+	l = len(m.User)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Role)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Type)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	l = len(m.Level)
+	if l > 0 {
+		n += 1 + l + sovTypes(uint64(l))
+	}
+	return n
+}
+
+func sovTypes(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozTypes(x uint64) (n int) {
+	return sovTypes(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Version) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Version{`,
+		`Index:` + fmt.Sprintf("%v", this.Index) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IndexEntry) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&IndexEntry{`,
+		`Key:` + fmt.Sprintf("%v", this.Key) + `,`,
+		`Val:` + fmt.Sprintf("%v", this.Val) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Annotations) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&Annotations{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`Indices:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Indices), "IndexEntry", "IndexEntry", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NamedGenericResource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NamedGenericResource{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *DiscreteGenericResource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&DiscreteGenericResource{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GenericResource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GenericResource{`,
+		`Resource:` + fmt.Sprintf("%v", this.Resource) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GenericResource_NamedResourceSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GenericResource_NamedResourceSpec{`,
+		`NamedResourceSpec:` + strings.Replace(fmt.Sprintf("%v", this.NamedResourceSpec), "NamedGenericResource", "NamedGenericResource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *GenericResource_DiscreteResourceSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&GenericResource_DiscreteResourceSpec{`,
+		`DiscreteResourceSpec:` + strings.Replace(fmt.Sprintf("%v", this.DiscreteResourceSpec), "DiscreteGenericResource", "DiscreteGenericResource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Resources) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Resources{`,
+		`NanoCPUs:` + fmt.Sprintf("%v", this.NanoCPUs) + `,`,
+		`MemoryBytes:` + fmt.Sprintf("%v", this.MemoryBytes) + `,`,
+		`Generic:` + strings.Replace(fmt.Sprintf("%v", this.Generic), "GenericResource", "GenericResource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ResourceRequirements) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ResourceRequirements{`,
+		`Limits:` + strings.Replace(fmt.Sprintf("%v", this.Limits), "Resources", "Resources", 1) + `,`,
+		`Reservations:` + strings.Replace(fmt.Sprintf("%v", this.Reservations), "Resources", "Resources", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Platform) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Platform{`,
+		`Architecture:` + fmt.Sprintf("%v", this.Architecture) + `,`,
+		`OS:` + fmt.Sprintf("%v", this.OS) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PluginDescription) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PluginDescription{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *EngineDescription) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&EngineDescription{`,
+		`EngineVersion:` + fmt.Sprintf("%v", this.EngineVersion) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`Plugins:` + strings.Replace(strings.Replace(fmt.Sprintf("%v", this.Plugins), "PluginDescription", "PluginDescription", 1), `&`, ``, 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NodeDescription) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeDescription{`,
+		`Hostname:` + fmt.Sprintf("%v", this.Hostname) + `,`,
+		`Platform:` + strings.Replace(fmt.Sprintf("%v", this.Platform), "Platform", "Platform", 1) + `,`,
+		`Resources:` + strings.Replace(fmt.Sprintf("%v", this.Resources), "Resources", "Resources", 1) + `,`,
+		`Engine:` + strings.Replace(fmt.Sprintf("%v", this.Engine), "EngineDescription", "EngineDescription", 1) + `,`,
+		`TLSInfo:` + strings.Replace(fmt.Sprintf("%v", this.TLSInfo), "NodeTLSInfo", "NodeTLSInfo", 1) + `,`,
+		`FIPS:` + fmt.Sprintf("%v", this.FIPS) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NodeTLSInfo) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeTLSInfo{`,
+		`TrustRoot:` + fmt.Sprintf("%v", this.TrustRoot) + `,`,
+		`CertIssuerSubject:` + fmt.Sprintf("%v", this.CertIssuerSubject) + `,`,
+		`CertIssuerPublicKey:` + fmt.Sprintf("%v", this.CertIssuerPublicKey) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RaftMemberStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RaftMemberStatus{`,
+		`Leader:` + fmt.Sprintf("%v", this.Leader) + `,`,
+		`Reachability:` + fmt.Sprintf("%v", this.Reachability) + `,`,
+		`Message:` + fmt.Sprintf("%v", this.Message) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NodeStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&NodeStatus{`,
+		`State:` + fmt.Sprintf("%v", this.State) + `,`,
+		`Message:` + fmt.Sprintf("%v", this.Message) + `,`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Image) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Image{`,
+		`Reference:` + fmt.Sprintf("%v", this.Reference) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Mount) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Mount{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`Source:` + fmt.Sprintf("%v", this.Source) + `,`,
+		`Target:` + fmt.Sprintf("%v", this.Target) + `,`,
+		`ReadOnly:` + fmt.Sprintf("%v", this.ReadOnly) + `,`,
+		`BindOptions:` + strings.Replace(fmt.Sprintf("%v", this.BindOptions), "Mount_BindOptions", "Mount_BindOptions", 1) + `,`,
+		`VolumeOptions:` + strings.Replace(fmt.Sprintf("%v", this.VolumeOptions), "Mount_VolumeOptions", "Mount_VolumeOptions", 1) + `,`,
+		`TmpfsOptions:` + strings.Replace(fmt.Sprintf("%v", this.TmpfsOptions), "Mount_TmpfsOptions", "Mount_TmpfsOptions", 1) + `,`,
+		`Consistency:` + fmt.Sprintf("%v", this.Consistency) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Mount_BindOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Mount_BindOptions{`,
+		`Propagation:` + fmt.Sprintf("%v", this.Propagation) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Mount_VolumeOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForLabels := make([]string, 0, len(this.Labels))
+	for k, _ := range this.Labels {
+		keysForLabels = append(keysForLabels, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForLabels)
+	mapStringForLabels := "map[string]string{"
+	for _, k := range keysForLabels {
+		mapStringForLabels += fmt.Sprintf("%v: %v,", k, this.Labels[k])
+	}
+	mapStringForLabels += "}"
+	s := strings.Join([]string{`&Mount_VolumeOptions{`,
+		`NoCopy:` + fmt.Sprintf("%v", this.NoCopy) + `,`,
+		`Labels:` + mapStringForLabels + `,`,
+		`DriverConfig:` + strings.Replace(fmt.Sprintf("%v", this.DriverConfig), "Driver", "Driver", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Mount_TmpfsOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Mount_TmpfsOptions{`,
+		`SizeBytes:` + fmt.Sprintf("%v", this.SizeBytes) + `,`,
+		`Mode:` + fmt.Sprintf("%v", this.Mode) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RestartPolicy) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RestartPolicy{`,
+		`Condition:` + fmt.Sprintf("%v", this.Condition) + `,`,
+		`Delay:` + strings.Replace(fmt.Sprintf("%v", this.Delay), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`MaxAttempts:` + fmt.Sprintf("%v", this.MaxAttempts) + `,`,
+		`Window:` + strings.Replace(fmt.Sprintf("%v", this.Window), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateConfig{`,
+		`Parallelism:` + fmt.Sprintf("%v", this.Parallelism) + `,`,
+		`Delay:` + strings.Replace(strings.Replace(this.Delay.String(), "Duration", "google_protobuf1.Duration", 1), `&`, ``, 1) + `,`,
+		`FailureAction:` + fmt.Sprintf("%v", this.FailureAction) + `,`,
+		`Monitor:` + strings.Replace(fmt.Sprintf("%v", this.Monitor), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`MaxFailureRatio:` + fmt.Sprintf("%v", this.MaxFailureRatio) + `,`,
+		`Order:` + fmt.Sprintf("%v", this.Order) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UpdateStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UpdateStatus{`,
+		`State:` + fmt.Sprintf("%v", this.State) + `,`,
+		`StartedAt:` + strings.Replace(fmt.Sprintf("%v", this.StartedAt), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`CompletedAt:` + strings.Replace(fmt.Sprintf("%v", this.CompletedAt), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`Message:` + fmt.Sprintf("%v", this.Message) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ContainerStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ContainerStatus{`,
+		`ContainerID:` + fmt.Sprintf("%v", this.ContainerID) + `,`,
+		`PID:` + fmt.Sprintf("%v", this.PID) + `,`,
+		`ExitCode:` + fmt.Sprintf("%v", this.ExitCode) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PortStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PortStatus{`,
+		`Ports:` + strings.Replace(fmt.Sprintf("%v", this.Ports), "PortConfig", "PortConfig", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskStatus{`,
+		`Timestamp:` + strings.Replace(fmt.Sprintf("%v", this.Timestamp), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`State:` + fmt.Sprintf("%v", this.State) + `,`,
+		`Message:` + fmt.Sprintf("%v", this.Message) + `,`,
+		`Err:` + fmt.Sprintf("%v", this.Err) + `,`,
+		`RuntimeStatus:` + fmt.Sprintf("%v", this.RuntimeStatus) + `,`,
+		`PortStatus:` + strings.Replace(fmt.Sprintf("%v", this.PortStatus), "PortStatus", "PortStatus", 1) + `,`,
+		`AppliedBy:` + fmt.Sprintf("%v", this.AppliedBy) + `,`,
+		`AppliedAt:` + strings.Replace(fmt.Sprintf("%v", this.AppliedAt), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskStatus_Container) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskStatus_Container{`,
+		`Container:` + strings.Replace(fmt.Sprintf("%v", this.Container), "ContainerStatus", "ContainerStatus", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *NetworkAttachmentConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForDriverAttachmentOpts := make([]string, 0, len(this.DriverAttachmentOpts))
+	for k, _ := range this.DriverAttachmentOpts {
+		keysForDriverAttachmentOpts = append(keysForDriverAttachmentOpts, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForDriverAttachmentOpts)
+	mapStringForDriverAttachmentOpts := "map[string]string{"
+	for _, k := range keysForDriverAttachmentOpts {
+		mapStringForDriverAttachmentOpts += fmt.Sprintf("%v: %v,", k, this.DriverAttachmentOpts[k])
+	}
+	mapStringForDriverAttachmentOpts += "}"
+	s := strings.Join([]string{`&NetworkAttachmentConfig{`,
+		`Target:` + fmt.Sprintf("%v", this.Target) + `,`,
+		`Aliases:` + fmt.Sprintf("%v", this.Aliases) + `,`,
+		`Addresses:` + fmt.Sprintf("%v", this.Addresses) + `,`,
+		`DriverAttachmentOpts:` + mapStringForDriverAttachmentOpts + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IPAMConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForReserved := make([]string, 0, len(this.Reserved))
+	for k, _ := range this.Reserved {
+		keysForReserved = append(keysForReserved, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForReserved)
+	mapStringForReserved := "map[string]string{"
+	for _, k := range keysForReserved {
+		mapStringForReserved += fmt.Sprintf("%v: %v,", k, this.Reserved[k])
+	}
+	mapStringForReserved += "}"
+	s := strings.Join([]string{`&IPAMConfig{`,
+		`Family:` + fmt.Sprintf("%v", this.Family) + `,`,
+		`Subnet:` + fmt.Sprintf("%v", this.Subnet) + `,`,
+		`Range:` + fmt.Sprintf("%v", this.Range) + `,`,
+		`Gateway:` + fmt.Sprintf("%v", this.Gateway) + `,`,
+		`Reserved:` + mapStringForReserved + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PortConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PortConfig{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`Protocol:` + fmt.Sprintf("%v", this.Protocol) + `,`,
+		`TargetPort:` + fmt.Sprintf("%v", this.TargetPort) + `,`,
+		`PublishedPort:` + fmt.Sprintf("%v", this.PublishedPort) + `,`,
+		`PublishMode:` + fmt.Sprintf("%v", this.PublishMode) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Driver) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForOptions := make([]string, 0, len(this.Options))
+	for k, _ := range this.Options {
+		keysForOptions = append(keysForOptions, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForOptions)
+	mapStringForOptions := "map[string]string{"
+	for _, k := range keysForOptions {
+		mapStringForOptions += fmt.Sprintf("%v: %v,", k, this.Options[k])
+	}
+	mapStringForOptions += "}"
+	s := strings.Join([]string{`&Driver{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`Options:` + mapStringForOptions + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IPAMOptions) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&IPAMOptions{`,
+		`Driver:` + strings.Replace(fmt.Sprintf("%v", this.Driver), "Driver", "Driver", 1) + `,`,
+		`Configs:` + strings.Replace(fmt.Sprintf("%v", this.Configs), "IPAMConfig", "IPAMConfig", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Peer) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Peer{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *WeightedPeer) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WeightedPeer{`,
+		`Peer:` + strings.Replace(fmt.Sprintf("%v", this.Peer), "Peer", "Peer", 1) + `,`,
+		`Weight:` + fmt.Sprintf("%v", this.Weight) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *IssuanceStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&IssuanceStatus{`,
+		`State:` + fmt.Sprintf("%v", this.State) + `,`,
+		`Err:` + fmt.Sprintf("%v", this.Err) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AcceptancePolicy) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AcceptancePolicy{`,
+		`Policies:` + strings.Replace(fmt.Sprintf("%v", this.Policies), "AcceptancePolicy_RoleAdmissionPolicy", "AcceptancePolicy_RoleAdmissionPolicy", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AcceptancePolicy_RoleAdmissionPolicy) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AcceptancePolicy_RoleAdmissionPolicy{`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`Autoaccept:` + fmt.Sprintf("%v", this.Autoaccept) + `,`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "AcceptancePolicy_RoleAdmissionPolicy_Secret", "AcceptancePolicy_RoleAdmissionPolicy_Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *AcceptancePolicy_RoleAdmissionPolicy_Secret) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&AcceptancePolicy_RoleAdmissionPolicy_Secret{`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`Alg:` + fmt.Sprintf("%v", this.Alg) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ExternalCA) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForOptions := make([]string, 0, len(this.Options))
+	for k, _ := range this.Options {
+		keysForOptions = append(keysForOptions, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForOptions)
+	mapStringForOptions := "map[string]string{"
+	for _, k := range keysForOptions {
+		mapStringForOptions += fmt.Sprintf("%v: %v,", k, this.Options[k])
+	}
+	mapStringForOptions += "}"
+	s := strings.Join([]string{`&ExternalCA{`,
+		`Protocol:` + fmt.Sprintf("%v", this.Protocol) + `,`,
+		`URL:` + fmt.Sprintf("%v", this.URL) + `,`,
+		`Options:` + mapStringForOptions + `,`,
+		`CACert:` + fmt.Sprintf("%v", this.CACert) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *CAConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&CAConfig{`,
+		`NodeCertExpiry:` + strings.Replace(fmt.Sprintf("%v", this.NodeCertExpiry), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`ExternalCAs:` + strings.Replace(fmt.Sprintf("%v", this.ExternalCAs), "ExternalCA", "ExternalCA", 1) + `,`,
+		`SigningCACert:` + fmt.Sprintf("%v", this.SigningCACert) + `,`,
+		`SigningCAKey:` + fmt.Sprintf("%v", this.SigningCAKey) + `,`,
+		`ForceRotate:` + fmt.Sprintf("%v", this.ForceRotate) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *OrchestrationConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&OrchestrationConfig{`,
+		`TaskHistoryRetentionLimit:` + fmt.Sprintf("%v", this.TaskHistoryRetentionLimit) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TaskDefaults) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TaskDefaults{`,
+		`LogDriver:` + strings.Replace(fmt.Sprintf("%v", this.LogDriver), "Driver", "Driver", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *DispatcherConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&DispatcherConfig{`,
+		`HeartbeatPeriod:` + strings.Replace(fmt.Sprintf("%v", this.HeartbeatPeriod), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RaftConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RaftConfig{`,
+		`SnapshotInterval:` + fmt.Sprintf("%v", this.SnapshotInterval) + `,`,
+		`KeepOldSnapshots:` + fmt.Sprintf("%v", this.KeepOldSnapshots) + `,`,
+		`LogEntriesForSlowFollowers:` + fmt.Sprintf("%v", this.LogEntriesForSlowFollowers) + `,`,
+		`HeartbeatTick:` + fmt.Sprintf("%v", this.HeartbeatTick) + `,`,
+		`ElectionTick:` + fmt.Sprintf("%v", this.ElectionTick) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *EncryptionConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&EncryptionConfig{`,
+		`AutoLockManagers:` + fmt.Sprintf("%v", this.AutoLockManagers) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SpreadOver) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SpreadOver{`,
+		`SpreadDescriptor:` + fmt.Sprintf("%v", this.SpreadDescriptor) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PlacementPreference) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PlacementPreference{`,
+		`Preference:` + fmt.Sprintf("%v", this.Preference) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *PlacementPreference_Spread) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&PlacementPreference_Spread{`,
+		`Spread:` + strings.Replace(fmt.Sprintf("%v", this.Spread), "SpreadOver", "SpreadOver", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Placement) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Placement{`,
+		`Constraints:` + fmt.Sprintf("%v", this.Constraints) + `,`,
+		`Preferences:` + strings.Replace(fmt.Sprintf("%v", this.Preferences), "PlacementPreference", "PlacementPreference", 1) + `,`,
+		`Platforms:` + strings.Replace(fmt.Sprintf("%v", this.Platforms), "Platform", "Platform", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *JoinTokens) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&JoinTokens{`,
+		`Worker:` + fmt.Sprintf("%v", this.Worker) + `,`,
+		`Manager:` + fmt.Sprintf("%v", this.Manager) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RootCA) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RootCA{`,
+		`CAKey:` + fmt.Sprintf("%v", this.CAKey) + `,`,
+		`CACert:` + fmt.Sprintf("%v", this.CACert) + `,`,
+		`CACertHash:` + fmt.Sprintf("%v", this.CACertHash) + `,`,
+		`JoinTokens:` + strings.Replace(strings.Replace(this.JoinTokens.String(), "JoinTokens", "JoinTokens", 1), `&`, ``, 1) + `,`,
+		`RootRotation:` + strings.Replace(fmt.Sprintf("%v", this.RootRotation), "RootRotation", "RootRotation", 1) + `,`,
+		`LastForcedRotation:` + fmt.Sprintf("%v", this.LastForcedRotation) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Certificate) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Certificate{`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`CSR:` + fmt.Sprintf("%v", this.CSR) + `,`,
+		`Status:` + strings.Replace(strings.Replace(this.Status.String(), "IssuanceStatus", "IssuanceStatus", 1), `&`, ``, 1) + `,`,
+		`Certificate:` + fmt.Sprintf("%v", this.Certificate) + `,`,
+		`CN:` + fmt.Sprintf("%v", this.CN) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *EncryptionKey) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&EncryptionKey{`,
+		`Subsystem:` + fmt.Sprintf("%v", this.Subsystem) + `,`,
+		`Algorithm:` + fmt.Sprintf("%v", this.Algorithm) + `,`,
+		`Key:` + fmt.Sprintf("%v", this.Key) + `,`,
+		`LamportTime:` + fmt.Sprintf("%v", this.LamportTime) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ManagerStatus) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ManagerStatus{`,
+		`RaftID:` + fmt.Sprintf("%v", this.RaftID) + `,`,
+		`Addr:` + fmt.Sprintf("%v", this.Addr) + `,`,
+		`Leader:` + fmt.Sprintf("%v", this.Leader) + `,`,
+		`Reachability:` + fmt.Sprintf("%v", this.Reachability) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *FileTarget) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&FileTarget{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`UID:` + fmt.Sprintf("%v", this.UID) + `,`,
+		`GID:` + fmt.Sprintf("%v", this.GID) + `,`,
+		`Mode:` + fmt.Sprintf("%v", this.Mode) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SecretReference) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SecretReference{`,
+		`SecretID:` + fmt.Sprintf("%v", this.SecretID) + `,`,
+		`SecretName:` + fmt.Sprintf("%v", this.SecretName) + `,`,
+		`Target:` + fmt.Sprintf("%v", this.Target) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SecretReference_File) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SecretReference_File{`,
+		`File:` + strings.Replace(fmt.Sprintf("%v", this.File), "FileTarget", "FileTarget", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ConfigReference) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ConfigReference{`,
+		`ConfigID:` + fmt.Sprintf("%v", this.ConfigID) + `,`,
+		`ConfigName:` + fmt.Sprintf("%v", this.ConfigName) + `,`,
+		`Target:` + fmt.Sprintf("%v", this.Target) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ConfigReference_File) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ConfigReference_File{`,
+		`File:` + strings.Replace(fmt.Sprintf("%v", this.File), "FileTarget", "FileTarget", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *BlacklistedCertificate) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&BlacklistedCertificate{`,
+		`Expiry:` + strings.Replace(fmt.Sprintf("%v", this.Expiry), "Timestamp", "google_protobuf.Timestamp", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *HealthConfig) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&HealthConfig{`,
+		`Test:` + fmt.Sprintf("%v", this.Test) + `,`,
+		`Interval:` + strings.Replace(fmt.Sprintf("%v", this.Interval), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`Timeout:` + strings.Replace(fmt.Sprintf("%v", this.Timeout), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`Retries:` + fmt.Sprintf("%v", this.Retries) + `,`,
+		`StartPeriod:` + strings.Replace(fmt.Sprintf("%v", this.StartPeriod), "Duration", "google_protobuf1.Duration", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *MaybeEncryptedRecord) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&MaybeEncryptedRecord{`,
+		`Algorithm:` + fmt.Sprintf("%v", this.Algorithm) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`Nonce:` + fmt.Sprintf("%v", this.Nonce) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *RootRotation) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&RootRotation{`,
+		`CACert:` + fmt.Sprintf("%v", this.CACert) + `,`,
+		`CAKey:` + fmt.Sprintf("%v", this.CAKey) + `,`,
+		`CrossSignedCACert:` + fmt.Sprintf("%v", this.CrossSignedCACert) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Privileges) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Privileges{`,
+		`CredentialSpec:` + strings.Replace(fmt.Sprintf("%v", this.CredentialSpec), "Privileges_CredentialSpec", "Privileges_CredentialSpec", 1) + `,`,
+		`SELinuxContext:` + strings.Replace(fmt.Sprintf("%v", this.SELinuxContext), "Privileges_SELinuxContext", "Privileges_SELinuxContext", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Privileges_CredentialSpec) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Privileges_CredentialSpec{`,
+		`Source:` + fmt.Sprintf("%v", this.Source) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Privileges_CredentialSpec_File) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Privileges_CredentialSpec_File{`,
+		`File:` + fmt.Sprintf("%v", this.File) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Privileges_CredentialSpec_Registry) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Privileges_CredentialSpec_Registry{`,
+		`Registry:` + fmt.Sprintf("%v", this.Registry) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Privileges_SELinuxContext) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Privileges_SELinuxContext{`,
+		`Disable:` + fmt.Sprintf("%v", this.Disable) + `,`,
+		`User:` + fmt.Sprintf("%v", this.User) + `,`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`Level:` + fmt.Sprintf("%v", this.Level) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringTypes(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Version) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Version: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Version: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Index", wireType)
+			}
+			m.Index = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Index |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IndexEntry) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IndexEntry: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IndexEntry: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Key", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Key = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Val", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Val = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Annotations) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Annotations: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Annotations: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Indices", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Indices = append(m.Indices, IndexEntry{})
+			if err := m.Indices[len(m.Indices)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NamedGenericResource) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NamedGenericResource: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NamedGenericResource: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *DiscreteGenericResource) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DiscreteGenericResource: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DiscreteGenericResource: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			m.Value = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Value |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *GenericResource) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: GenericResource: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: GenericResource: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamedResourceSpec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &NamedGenericResource{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Resource = &GenericResource_NamedResourceSpec{v}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DiscreteResourceSpec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &DiscreteGenericResource{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Resource = &GenericResource_DiscreteResourceSpec{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Resources) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Resources: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Resources: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NanoCPUs", wireType)
+			}
+			m.NanoCPUs = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.NanoCPUs |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field MemoryBytes", wireType)
+			}
+			m.MemoryBytes = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.MemoryBytes |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Generic", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Generic = append(m.Generic, &GenericResource{})
+			if err := m.Generic[len(m.Generic)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ResourceRequirements) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ResourceRequirements: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ResourceRequirements: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Limits", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Limits == nil {
+				m.Limits = &Resources{}
+			}
+			if err := m.Limits.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reservations", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Reservations == nil {
+				m.Reservations = &Resources{}
+			}
+			if err := m.Reservations.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Platform) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Platform: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Platform: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Architecture", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Architecture = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field OS", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.OS = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PluginDescription) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PluginDescription: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PluginDescription: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Type = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *EngineDescription) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: EngineDescription: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: EngineDescription: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field EngineVersion", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.EngineVersion = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Plugins", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Plugins = append(m.Plugins, PluginDescription{})
+			if err := m.Plugins[len(m.Plugins)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NodeDescription) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeDescription: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeDescription: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Hostname", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Hostname = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Platform", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Platform == nil {
+				m.Platform = &Platform{}
+			}
+			if err := m.Platform.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Resources", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Resources == nil {
+				m.Resources = &Resources{}
+			}
+			if err := m.Resources.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Engine", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Engine == nil {
+				m.Engine = &EngineDescription{}
+			}
+			if err := m.Engine.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TLSInfo", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.TLSInfo == nil {
+				m.TLSInfo = &NodeTLSInfo{}
+			}
+			if err := m.TLSInfo.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field FIPS", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.FIPS = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NodeTLSInfo) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeTLSInfo: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeTLSInfo: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TrustRoot", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TrustRoot = append(m.TrustRoot[:0], dAtA[iNdEx:postIndex]...)
+			if m.TrustRoot == nil {
+				m.TrustRoot = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CertIssuerSubject", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CertIssuerSubject = append(m.CertIssuerSubject[:0], dAtA[iNdEx:postIndex]...)
+			if m.CertIssuerSubject == nil {
+				m.CertIssuerSubject = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CertIssuerPublicKey", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CertIssuerPublicKey = append(m.CertIssuerPublicKey[:0], dAtA[iNdEx:postIndex]...)
+			if m.CertIssuerPublicKey == nil {
+				m.CertIssuerPublicKey = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RaftMemberStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RaftMemberStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RaftMemberStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Leader", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Leader = bool(v != 0)
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reachability", wireType)
+			}
+			m.Reachability = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Reachability |= (RaftMemberStatus_Reachability(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Message = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NodeStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NodeStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NodeStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field State", wireType)
+			}
+			m.State = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.State |= (NodeStatus_State(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Message = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Image) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Image: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Image: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reference", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Reference = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Mount) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Mount: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Mount: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (Mount_MountType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Source", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Source = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Target", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Target = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ReadOnly", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.ReadOnly = bool(v != 0)
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field BindOptions", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.BindOptions == nil {
+				m.BindOptions = &Mount_BindOptions{}
+			}
+			if err := m.BindOptions.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field VolumeOptions", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.VolumeOptions == nil {
+				m.VolumeOptions = &Mount_VolumeOptions{}
+			}
+			if err := m.VolumeOptions.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TmpfsOptions", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.TmpfsOptions == nil {
+				m.TmpfsOptions = &Mount_TmpfsOptions{}
+			}
+			if err := m.TmpfsOptions.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Consistency", wireType)
+			}
+			m.Consistency = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Consistency |= (Mount_MountConsistency(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Mount_BindOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BindOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BindOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Propagation", wireType)
+			}
+			m.Propagation = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Propagation |= (Mount_BindOptions_MountPropagation(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Mount_VolumeOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: VolumeOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: VolumeOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NoCopy", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.NoCopy = bool(v != 0)
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Labels", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Labels == nil {
+				m.Labels = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Labels[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Labels[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DriverConfig", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.DriverConfig == nil {
+				m.DriverConfig = &Driver{}
+			}
+			if err := m.DriverConfig.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Mount_TmpfsOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TmpfsOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TmpfsOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SizeBytes", wireType)
+			}
+			m.SizeBytes = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.SizeBytes |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Mode", wireType)
+			}
+			m.Mode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Mode |= (os.FileMode(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RestartPolicy) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RestartPolicy: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RestartPolicy: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Condition", wireType)
+			}
+			m.Condition = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Condition |= (RestartPolicy_RestartCondition(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Delay", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Delay == nil {
+				m.Delay = &google_protobuf1.Duration{}
+			}
+			if err := m.Delay.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field MaxAttempts", wireType)
+			}
+			m.MaxAttempts = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.MaxAttempts |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Window", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Window == nil {
+				m.Window = &google_protobuf1.Duration{}
+			}
+			if err := m.Window.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Parallelism", wireType)
+			}
+			m.Parallelism = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Parallelism |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Delay", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := github_com_gogo_protobuf_types.StdDurationUnmarshal(&m.Delay, dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field FailureAction", wireType)
+			}
+			m.FailureAction = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.FailureAction |= (UpdateConfig_FailureAction(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Monitor", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Monitor == nil {
+				m.Monitor = &google_protobuf1.Duration{}
+			}
+			if err := m.Monitor.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 5 {
+				return fmt.Errorf("proto: wrong wireType = %d for field MaxFailureRatio", wireType)
+			}
+			var v uint32
+			if (iNdEx + 4) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += 4
+			v = uint32(dAtA[iNdEx-4])
+			v |= uint32(dAtA[iNdEx-3]) << 8
+			v |= uint32(dAtA[iNdEx-2]) << 16
+			v |= uint32(dAtA[iNdEx-1]) << 24
+			m.MaxFailureRatio = float32(math.Float32frombits(v))
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Order", wireType)
+			}
+			m.Order = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Order |= (UpdateConfig_UpdateOrder(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UpdateStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UpdateStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UpdateStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field State", wireType)
+			}
+			m.State = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.State |= (UpdateStatus_UpdateState(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StartedAt", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.StartedAt == nil {
+				m.StartedAt = &google_protobuf.Timestamp{}
+			}
+			if err := m.StartedAt.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CompletedAt", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.CompletedAt == nil {
+				m.CompletedAt = &google_protobuf.Timestamp{}
+			}
+			if err := m.CompletedAt.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Message = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ContainerStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ContainerStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ContainerStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ContainerID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ContainerID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PID", wireType)
+			}
+			m.PID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.PID |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ExitCode", wireType)
+			}
+			m.ExitCode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ExitCode |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PortStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PortStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PortStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Ports", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Ports = append(m.Ports, &PortConfig{})
+			if err := m.Ports[len(m.Ports)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TaskStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TaskStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TaskStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Timestamp", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Timestamp == nil {
+				m.Timestamp = &google_protobuf.Timestamp{}
+			}
+			if err := m.Timestamp.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field State", wireType)
+			}
+			m.State = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.State |= (TaskState(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Message", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Message = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Err", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Err = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Container", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &ContainerStatus{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.RuntimeStatus = &TaskStatus_Container{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PortStatus", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.PortStatus == nil {
+				m.PortStatus = &PortStatus{}
+			}
+			if err := m.PortStatus.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AppliedBy", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.AppliedBy = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AppliedAt", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.AppliedAt == nil {
+				m.AppliedAt = &google_protobuf.Timestamp{}
+			}
+			if err := m.AppliedAt.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *NetworkAttachmentConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: NetworkAttachmentConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: NetworkAttachmentConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Target", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Target = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Aliases", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Aliases = append(m.Aliases, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addresses", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addresses = append(m.Addresses, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DriverAttachmentOpts", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.DriverAttachmentOpts == nil {
+				m.DriverAttachmentOpts = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.DriverAttachmentOpts[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.DriverAttachmentOpts[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IPAMConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IPAMConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IPAMConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Family", wireType)
+			}
+			m.Family = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Family |= (IPAMConfig_AddressFamily(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Subnet", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Subnet = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Range", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Range = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Gateway", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Gateway = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reserved", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Reserved == nil {
+				m.Reserved = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Reserved[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Reserved[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PortConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PortConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PortConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Protocol", wireType)
+			}
+			m.Protocol = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Protocol |= (PortConfig_Protocol(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TargetPort", wireType)
+			}
+			m.TargetPort = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.TargetPort |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PublishedPort", wireType)
+			}
+			m.PublishedPort = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.PublishedPort |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field PublishMode", wireType)
+			}
+			m.PublishMode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.PublishMode |= (PortConfig_PublishMode(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Driver) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Driver: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Driver: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Options", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Options == nil {
+				m.Options = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Options[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Options[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IPAMOptions) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IPAMOptions: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IPAMOptions: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Driver", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Driver == nil {
+				m.Driver = &Driver{}
+			}
+			if err := m.Driver.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Configs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Configs = append(m.Configs, &IPAMConfig{})
+			if err := m.Configs[len(m.Configs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Peer) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Peer: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Peer: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.NodeID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *WeightedPeer) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: WeightedPeer: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: WeightedPeer: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Peer", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Peer == nil {
+				m.Peer = &Peer{}
+			}
+			if err := m.Peer.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Weight", wireType)
+			}
+			m.Weight = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Weight |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *IssuanceStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: IssuanceStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: IssuanceStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field State", wireType)
+			}
+			m.State = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.State |= (IssuanceStatus_State(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Err", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Err = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AcceptancePolicy) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: AcceptancePolicy: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: AcceptancePolicy: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Policies", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Policies = append(m.Policies, &AcceptancePolicy_RoleAdmissionPolicy{})
+			if err := m.Policies[len(m.Policies)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AcceptancePolicy_RoleAdmissionPolicy) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RoleAdmissionPolicy: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RoleAdmissionPolicy: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			m.Role = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Role |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Autoaccept", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Autoaccept = bool(v != 0)
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Secret == nil {
+				m.Secret = &AcceptancePolicy_RoleAdmissionPolicy_Secret{}
+			}
+			if err := m.Secret.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *AcceptancePolicy_RoleAdmissionPolicy_Secret) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Secret: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Secret: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Alg", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Alg = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ExternalCA) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ExternalCA: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ExternalCA: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Protocol", wireType)
+			}
+			m.Protocol = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Protocol |= (ExternalCA_CAProtocol(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field URL", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.URL = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Options", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Options == nil {
+				m.Options = make(map[string]string)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var stringLenmapvalue uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					stringLenmapvalue |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intStringLenmapvalue := int(stringLenmapvalue)
+				if intStringLenmapvalue < 0 {
+					return ErrInvalidLengthTypes
+				}
+				postStringIndexmapvalue := iNdEx + intStringLenmapvalue
+				if postStringIndexmapvalue > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := string(dAtA[iNdEx:postStringIndexmapvalue])
+				iNdEx = postStringIndexmapvalue
+				m.Options[mapkey] = mapvalue
+			} else {
+				var mapvalue string
+				m.Options[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CACert", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CACert = append(m.CACert[:0], dAtA[iNdEx:postIndex]...)
+			if m.CACert == nil {
+				m.CACert = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *CAConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CAConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CAConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeCertExpiry", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.NodeCertExpiry == nil {
+				m.NodeCertExpiry = &google_protobuf1.Duration{}
+			}
+			if err := m.NodeCertExpiry.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ExternalCAs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ExternalCAs = append(m.ExternalCAs, &ExternalCA{})
+			if err := m.ExternalCAs[len(m.ExternalCAs)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SigningCACert", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SigningCACert = append(m.SigningCACert[:0], dAtA[iNdEx:postIndex]...)
+			if m.SigningCACert == nil {
+				m.SigningCACert = []byte{}
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SigningCAKey", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SigningCAKey = append(m.SigningCAKey[:0], dAtA[iNdEx:postIndex]...)
+			if m.SigningCAKey == nil {
+				m.SigningCAKey = []byte{}
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ForceRotate", wireType)
+			}
+			m.ForceRotate = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ForceRotate |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *OrchestrationConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: OrchestrationConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: OrchestrationConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TaskHistoryRetentionLimit", wireType)
+			}
+			m.TaskHistoryRetentionLimit = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.TaskHistoryRetentionLimit |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TaskDefaults) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TaskDefaults: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TaskDefaults: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LogDriver", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.LogDriver == nil {
+				m.LogDriver = &Driver{}
+			}
+			if err := m.LogDriver.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *DispatcherConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DispatcherConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DispatcherConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field HeartbeatPeriod", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.HeartbeatPeriod == nil {
+				m.HeartbeatPeriod = &google_protobuf1.Duration{}
+			}
+			if err := m.HeartbeatPeriod.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RaftConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RaftConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RaftConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SnapshotInterval", wireType)
+			}
+			m.SnapshotInterval = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.SnapshotInterval |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field KeepOldSnapshots", wireType)
+			}
+			m.KeepOldSnapshots = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.KeepOldSnapshots |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LogEntriesForSlowFollowers", wireType)
+			}
+			m.LogEntriesForSlowFollowers = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LogEntriesForSlowFollowers |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field HeartbeatTick", wireType)
+			}
+			m.HeartbeatTick = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.HeartbeatTick |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ElectionTick", wireType)
+			}
+			m.ElectionTick = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ElectionTick |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *EncryptionConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: EncryptionConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: EncryptionConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field AutoLockManagers", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.AutoLockManagers = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SpreadOver) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SpreadOver: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SpreadOver: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SpreadDescriptor", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SpreadDescriptor = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *PlacementPreference) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: PlacementPreference: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: PlacementPreference: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Spread", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &SpreadOver{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Preference = &PlacementPreference_Spread{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Placement) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Placement: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Placement: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Constraints", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Constraints = append(m.Constraints, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Preferences", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Preferences = append(m.Preferences, &PlacementPreference{})
+			if err := m.Preferences[len(m.Preferences)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Platforms", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Platforms = append(m.Platforms, &Platform{})
+			if err := m.Platforms[len(m.Platforms)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *JoinTokens) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: JoinTokens: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: JoinTokens: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Worker", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Worker = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Manager", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Manager = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RootCA) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RootCA: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RootCA: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CAKey", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CAKey = append(m.CAKey[:0], dAtA[iNdEx:postIndex]...)
+			if m.CAKey == nil {
+				m.CAKey = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CACert", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CACert = append(m.CACert[:0], dAtA[iNdEx:postIndex]...)
+			if m.CACert == nil {
+				m.CACert = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CACertHash", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CACertHash = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field JoinTokens", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.JoinTokens.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RootRotation", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.RootRotation == nil {
+				m.RootRotation = &RootRotation{}
+			}
+			if err := m.RootRotation.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LastForcedRotation", wireType)
+			}
+			m.LastForcedRotation = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LastForcedRotation |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Certificate) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Certificate: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Certificate: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			m.Role = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Role |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CSR", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CSR = append(m.CSR[:0], dAtA[iNdEx:postIndex]...)
+			if m.CSR == nil {
+				m.CSR = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Status", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if err := m.Status.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Certificate", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Certificate = append(m.Certificate[:0], dAtA[iNdEx:postIndex]...)
+			if m.Certificate == nil {
+				m.Certificate = []byte{}
+			}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CN", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CN = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *EncryptionKey) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: EncryptionKey: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: EncryptionKey: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Subsystem", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Subsystem = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Algorithm", wireType)
+			}
+			m.Algorithm = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Algorithm |= (EncryptionKey_Algorithm(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Key", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Key = append(m.Key[:0], dAtA[iNdEx:postIndex]...)
+			if m.Key == nil {
+				m.Key = []byte{}
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field LamportTime", wireType)
+			}
+			m.LamportTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.LamportTime |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ManagerStatus) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ManagerStatus: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ManagerStatus: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field RaftID", wireType)
+			}
+			m.RaftID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.RaftID |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Addr", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Addr = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Leader", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Leader = bool(v != 0)
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Reachability", wireType)
+			}
+			m.Reachability = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Reachability |= (RaftMemberStatus_Reachability(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *FileTarget) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: FileTarget: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: FileTarget: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Name = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field UID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.UID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field GID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.GID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Mode", wireType)
+			}
+			m.Mode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Mode |= (os.FileMode(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SecretReference) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SecretReference: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SecretReference: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SecretID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SecretName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.SecretName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field File", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &FileTarget{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &SecretReference_File{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ConfigReference) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ConfigReference: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ConfigReference: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ConfigName", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ConfigName = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field File", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &FileTarget{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Target = &ConfigReference_File{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *BlacklistedCertificate) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BlacklistedCertificate: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BlacklistedCertificate: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Expiry", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Expiry == nil {
+				m.Expiry = &google_protobuf.Timestamp{}
+			}
+			if err := m.Expiry.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *HealthConfig) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: HealthConfig: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: HealthConfig: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Test", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Test = append(m.Test, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Interval", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Interval == nil {
+				m.Interval = &google_protobuf1.Duration{}
+			}
+			if err := m.Interval.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Timeout", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Timeout == nil {
+				m.Timeout = &google_protobuf1.Duration{}
+			}
+			if err := m.Timeout.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Retries", wireType)
+			}
+			m.Retries = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Retries |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StartPeriod", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.StartPeriod == nil {
+				m.StartPeriod = &google_protobuf1.Duration{}
+			}
+			if err := m.StartPeriod.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *MaybeEncryptedRecord) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: MaybeEncryptedRecord: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: MaybeEncryptedRecord: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Algorithm", wireType)
+			}
+			m.Algorithm = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Algorithm |= (MaybeEncryptedRecord_Algorithm(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nonce", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Nonce = append(m.Nonce[:0], dAtA[iNdEx:postIndex]...)
+			if m.Nonce == nil {
+				m.Nonce = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *RootRotation) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: RootRotation: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: RootRotation: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CACert", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CACert = append(m.CACert[:0], dAtA[iNdEx:postIndex]...)
+			if m.CACert == nil {
+				m.CACert = []byte{}
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CAKey", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CAKey = append(m.CAKey[:0], dAtA[iNdEx:postIndex]...)
+			if m.CAKey == nil {
+				m.CAKey = []byte{}
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CrossSignedCACert", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.CrossSignedCACert = append(m.CrossSignedCACert[:0], dAtA[iNdEx:postIndex]...)
+			if m.CrossSignedCACert == nil {
+				m.CrossSignedCACert = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Privileges) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Privileges: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Privileges: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CredentialSpec", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.CredentialSpec == nil {
+				m.CredentialSpec = &Privileges_CredentialSpec{}
+			}
+			if err := m.CredentialSpec.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field SELinuxContext", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.SELinuxContext == nil {
+				m.SELinuxContext = &Privileges_SELinuxContext{}
+			}
+			if err := m.SELinuxContext.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Privileges_CredentialSpec) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: CredentialSpec: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: CredentialSpec: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field File", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Source = &Privileges_CredentialSpec_File{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Registry", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Source = &Privileges_CredentialSpec_Registry{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Privileges_SELinuxContext) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SELinuxContext: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SELinuxContext: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Disable", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Disable = bool(v != 0)
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field User", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.User = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Role = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Type = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Level", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthTypes
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Level = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTypes(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTypes
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipTypes(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowTypes
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTypes
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthTypes
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowTypes
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipTypes(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthTypes = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowTypes   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/types.proto", fileDescriptorTypes) }
+
+var fileDescriptorTypes = []byte{
+	// 5116 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xac, 0x7a, 0x5d, 0x6c, 0x23, 0x59,
+	0x56, 0x7f, 0xec, 0xd8, 0x8e, 0x7d, 0xec, 0x24, 0xd5, 0xb7, 0xb3, 0x3d, 0x69, 0x6f, 0x4f, 0xe2,
+	0xa9, 0x99, 0xde, 0x99, 0xed, 0x9d, 0xbf, 0xfb, 0x6b, 0x77, 0xd5, 0x33, 0xf3, 0xdf, 0x9d, 0xb1,
+	0xcb, 0x95, 0x8e, 0xb7, 0xd3, 0xb6, 0x75, 0xed, 0x74, 0xef, 0x22, 0x41, 0x51, 0xa9, 0xba, 0x71,
+	0x6a, 0x52, 0xae, 0x6b, 0xaa, 0xca, 0xe9, 0x36, 0x0b, 0x62, 0xc4, 0x03, 0xa0, 0x3c, 0xc1, 0x0b,
+	0x2c, 0x42, 0x41, 0x48, 0xf0, 0xc6, 0x03, 0x0f, 0x20, 0x21, 0x78, 0x1a, 0x24, 0x84, 0x56, 0xbc,
+	0xc0, 0x82, 0x84, 0x56, 0x20, 0x05, 0x36, 0x0f, 0xbc, 0xad, 0xe0, 0x05, 0xf1, 0xc2, 0x03, 0xba,
+	0x1f, 0x55, 0xae, 0xb8, 0x2b, 0xc9, 0x0c, 0xbb, 0x2f, 0x89, 0xef, 0x39, 0xbf, 0x73, 0xee, 0xbd,
+	0xe7, 0xde, 0x7b, 0xee, 0x39, 0xe7, 0x16, 0xdc, 0x19, 0x3a, 0xe1, 0xc1, 0x64, 0xaf, 0x6e, 0xd1,
+	0xd1, 0x5d, 0x9b, 0x5a, 0x87, 0xc4, 0xbf, 0x1b, 0xbc, 0x30, 0xfd, 0xd1, 0xa1, 0x13, 0xde, 0x35,
+	0xc7, 0xce, 0xdd, 0x70, 0x3a, 0x26, 0x41, 0x7d, 0xec, 0xd3, 0x90, 0x22, 0x24, 0x00, 0xf5, 0x08,
+	0x50, 0x3f, 0xba, 0x5f, 0xdd, 0x1c, 0x52, 0x3a, 0x74, 0xc9, 0x5d, 0x8e, 0xd8, 0x9b, 0xec, 0xdf,
+	0x0d, 0x9d, 0x11, 0x09, 0x42, 0x73, 0x34, 0x16, 0x42, 0xd5, 0x8d, 0x79, 0x80, 0x3d, 0xf1, 0xcd,
+	0xd0, 0xa1, 0x9e, 0xe4, 0xaf, 0x0d, 0xe9, 0x90, 0xf2, 0x9f, 0x77, 0xd9, 0x2f, 0x41, 0x55, 0x37,
+	0x61, 0xe9, 0x19, 0xf1, 0x03, 0x87, 0x7a, 0x68, 0x0d, 0xf2, 0x8e, 0x67, 0x93, 0x97, 0xeb, 0x99,
+	0x5a, 0xe6, 0x9d, 0x1c, 0x16, 0x0d, 0xf5, 0x1e, 0x40, 0x9b, 0xfd, 0xd0, 0xbd, 0xd0, 0x9f, 0x22,
+	0x05, 0x16, 0x0f, 0xc9, 0x94, 0x23, 0x4a, 0x98, 0xfd, 0x64, 0x94, 0x23, 0xd3, 0x5d, 0xcf, 0x0a,
+	0xca, 0x91, 0xe9, 0xaa, 0x3f, 0xca, 0x40, 0xb9, 0xe1, 0x79, 0x34, 0xe4, 0xbd, 0x07, 0x08, 0x41,
+	0xce, 0x33, 0x47, 0x44, 0x0a, 0xf1, 0xdf, 0x48, 0x83, 0x82, 0x6b, 0xee, 0x11, 0x37, 0x58, 0xcf,
+	0xd6, 0x16, 0xdf, 0x29, 0x3f, 0xf8, 0x4a, 0xfd, 0xd5, 0x29, 0xd7, 0x13, 0x4a, 0xea, 0x3b, 0x1c,
+	0xcd, 0x07, 0x81, 0xa5, 0x28, 0xfa, 0x26, 0x2c, 0x39, 0x9e, 0xed, 0x58, 0x24, 0x58, 0xcf, 0x71,
+	0x2d, 0x1b, 0x69, 0x5a, 0x66, 0xa3, 0x6f, 0xe6, 0xbe, 0x7f, 0xba, 0xb9, 0x80, 0x23, 0xa1, 0xea,
+	0x7b, 0x50, 0x4e, 0xa8, 0x4d, 0x99, 0xdb, 0x1a, 0xe4, 0x8f, 0x4c, 0x77, 0x42, 0xe4, 0xec, 0x44,
+	0xe3, 0xfd, 0xec, 0xa3, 0x8c, 0xfa, 0x11, 0xac, 0x75, 0xcc, 0x11, 0xb1, 0x1f, 0x13, 0x8f, 0xf8,
+	0x8e, 0x85, 0x49, 0x40, 0x27, 0xbe, 0x45, 0xd8, 0x5c, 0x0f, 0x1d, 0xcf, 0x8e, 0xe6, 0xca, 0x7e,
+	0xa7, 0x6b, 0x51, 0x35, 0x78, 0xad, 0xe5, 0x04, 0x96, 0x4f, 0x42, 0xf2, 0xb9, 0x95, 0x2c, 0x46,
+	0x4a, 0x4e, 0x33, 0xb0, 0x3a, 0x2f, 0xfd, 0x33, 0x70, 0x9d, 0x99, 0xd8, 0x36, 0x7c, 0x49, 0x31,
+	0x82, 0x31, 0xb1, 0xb8, 0xb2, 0xf2, 0x83, 0x77, 0xd2, 0x2c, 0x94, 0x36, 0x93, 0xed, 0x05, 0x7c,
+	0x8d, 0xab, 0x89, 0x08, 0xfd, 0x31, 0xb1, 0x90, 0x05, 0x37, 0x6c, 0x39, 0xe8, 0x39, 0xf5, 0x59,
+	0xae, 0x3e, 0x75, 0x19, 0x2f, 0x98, 0xe6, 0xf6, 0x02, 0x5e, 0x8b, 0x94, 0x25, 0x3b, 0x69, 0x02,
+	0x14, 0x23, 0xdd, 0xea, 0xf7, 0x32, 0x50, 0x8a, 0x98, 0x01, 0xfa, 0x32, 0x94, 0x3c, 0xd3, 0xa3,
+	0x86, 0x35, 0x9e, 0x04, 0x7c, 0x42, 0x8b, 0xcd, 0xca, 0xd9, 0xe9, 0x66, 0xb1, 0x63, 0x7a, 0x54,
+	0xeb, 0xed, 0x06, 0xb8, 0xc8, 0xd8, 0xda, 0x78, 0x12, 0xa0, 0x37, 0xa0, 0x32, 0x22, 0x23, 0xea,
+	0x4f, 0x8d, 0xbd, 0x69, 0x48, 0x02, 0x69, 0xb6, 0xb2, 0xa0, 0x35, 0x19, 0x09, 0x7d, 0x03, 0x96,
+	0x86, 0x62, 0x48, 0xeb, 0x8b, 0x7c, 0xfb, 0xbc, 0x99, 0x36, 0xfa, 0xb9, 0x51, 0xe3, 0x48, 0x46,
+	0xfd, 0xcd, 0x0c, 0xac, 0xc5, 0x54, 0xf2, 0x0b, 0x13, 0xc7, 0x27, 0x23, 0xe2, 0x85, 0x01, 0xfa,
+	0x1a, 0x14, 0x5c, 0x67, 0xe4, 0x84, 0x81, 0xb4, 0xf9, 0xeb, 0x69, 0x6a, 0xe3, 0x49, 0x61, 0x09,
+	0x46, 0x0d, 0xa8, 0xf8, 0x24, 0x20, 0xfe, 0x91, 0xd8, 0xf1, 0xd2, 0xa2, 0x57, 0x08, 0x9f, 0x13,
+	0x51, 0xb7, 0xa0, 0xd8, 0x73, 0xcd, 0x70, 0x9f, 0xfa, 0x23, 0xa4, 0x42, 0xc5, 0xf4, 0xad, 0x03,
+	0x27, 0x24, 0x56, 0x38, 0xf1, 0xa3, 0xd3, 0x77, 0x8e, 0x86, 0x6e, 0x40, 0x96, 0x8a, 0x8e, 0x4a,
+	0xcd, 0xc2, 0xd9, 0xe9, 0x66, 0xb6, 0xdb, 0xc7, 0x59, 0x1a, 0xa8, 0x1f, 0xc0, 0xb5, 0x9e, 0x3b,
+	0x19, 0x3a, 0x5e, 0x8b, 0x04, 0x96, 0xef, 0x8c, 0x99, 0x76, 0xb6, 0x2b, 0x99, 0x8f, 0x8a, 0x76,
+	0x25, 0xfb, 0x1d, 0x1f, 0xed, 0xec, 0xec, 0x68, 0xab, 0xbf, 0x9e, 0x85, 0x6b, 0xba, 0x37, 0x74,
+	0x3c, 0x92, 0x94, 0xbe, 0x0d, 0x2b, 0x84, 0x13, 0x8d, 0x23, 0xe1, 0x6e, 0xa4, 0x9e, 0x65, 0x41,
+	0x8d, 0x7c, 0x50, 0x7b, 0xce, 0x2f, 0xdc, 0x4f, 0x9b, 0xfe, 0x2b, 0xda, 0x53, 0xbd, 0x83, 0x0e,
+	0x4b, 0x63, 0x3e, 0x89, 0x40, 0x2e, 0xef, 0xed, 0x34, 0x5d, 0xaf, 0xcc, 0x33, 0x72, 0x12, 0x52,
+	0xf6, 0x27, 0x71, 0x12, 0x7f, 0x9b, 0x85, 0xd5, 0x0e, 0xb5, 0xcf, 0xd9, 0xa1, 0x0a, 0xc5, 0x03,
+	0x1a, 0x84, 0x09, 0x87, 0x18, 0xb7, 0xd1, 0x23, 0x28, 0x8e, 0xe5, 0xf2, 0xc9, 0xd5, 0xbf, 0x95,
+	0x3e, 0x64, 0x81, 0xc1, 0x31, 0x1a, 0x7d, 0x00, 0xa5, 0xe8, 0xc8, 0xb0, 0xd9, 0x7e, 0x86, 0x8d,
+	0x33, 0xc3, 0xa3, 0x6f, 0x40, 0x41, 0x2c, 0xc2, 0x7a, 0x8e, 0x4b, 0xde, 0xfe, 0x4c, 0x36, 0xc7,
+	0x52, 0x08, 0x3d, 0x86, 0x62, 0xe8, 0x06, 0x86, 0xe3, 0xed, 0xd3, 0xf5, 0x3c, 0x57, 0xb0, 0x99,
+	0xea, 0x64, 0xa8, 0x4d, 0x06, 0x3b, 0xfd, 0xb6, 0xb7, 0x4f, 0x9b, 0xe5, 0xb3, 0xd3, 0xcd, 0x25,
+	0xd9, 0xc0, 0x4b, 0xa1, 0x1b, 0xb0, 0x1f, 0xe8, 0x16, 0xe4, 0xf6, 0x9d, 0x71, 0xb0, 0x5e, 0xa8,
+	0x65, 0xde, 0x29, 0x36, 0x8b, 0x67, 0xa7, 0x9b, 0xb9, 0xad, 0x76, 0xaf, 0x8f, 0x39, 0x55, 0xfd,
+	0xad, 0x0c, 0x94, 0x13, 0x3a, 0xd0, 0xeb, 0x00, 0xa1, 0x3f, 0x09, 0x42, 0xc3, 0xa7, 0x34, 0xe4,
+	0xa6, 0xac, 0xe0, 0x12, 0xa7, 0x60, 0x4a, 0x43, 0x54, 0x87, 0xeb, 0x16, 0xf1, 0x43, 0xc3, 0x09,
+	0x82, 0x09, 0xf1, 0x8d, 0x60, 0xb2, 0xf7, 0x31, 0xb1, 0x42, 0x6e, 0xd6, 0x0a, 0xbe, 0xc6, 0x58,
+	0x6d, 0xce, 0xe9, 0x0b, 0x06, 0x7a, 0x08, 0x37, 0x92, 0xf8, 0xf1, 0x64, 0xcf, 0x75, 0x2c, 0x83,
+	0x2d, 0xf5, 0x22, 0x17, 0xb9, 0x3e, 0x13, 0xe9, 0x71, 0xde, 0x13, 0x32, 0x55, 0x7f, 0x98, 0x01,
+	0x05, 0x9b, 0xfb, 0xe1, 0x53, 0x32, 0xda, 0x23, 0x7e, 0x3f, 0x34, 0xc3, 0x49, 0x80, 0x6e, 0x40,
+	0xc1, 0x25, 0xa6, 0x4d, 0x7c, 0x3e, 0xa8, 0x22, 0x96, 0x2d, 0xb4, 0xcb, 0xce, 0xb7, 0x69, 0x1d,
+	0x98, 0x7b, 0x8e, 0xeb, 0x84, 0x53, 0x3e, 0x94, 0x95, 0xf4, 0x0d, 0x3e, 0xaf, 0xb3, 0x8e, 0x13,
+	0x82, 0xf8, 0x9c, 0x1a, 0xb4, 0x0e, 0x4b, 0x23, 0x12, 0x04, 0xe6, 0x90, 0xf0, 0x91, 0x96, 0x70,
+	0xd4, 0x54, 0x3f, 0x80, 0x4a, 0x52, 0x0e, 0x95, 0x61, 0x69, 0xb7, 0xf3, 0xa4, 0xd3, 0x7d, 0xde,
+	0x51, 0x16, 0xd0, 0x2a, 0x94, 0x77, 0x3b, 0x58, 0x6f, 0x68, 0xdb, 0x8d, 0xe6, 0x8e, 0xae, 0x64,
+	0xd0, 0x32, 0x94, 0x66, 0xcd, 0xac, 0xfa, 0xa7, 0x19, 0x00, 0x66, 0x6e, 0x39, 0xa9, 0xf7, 0x21,
+	0x1f, 0x84, 0x66, 0x28, 0xf6, 0xec, 0xca, 0x83, 0xb7, 0x2e, 0x5a, 0x61, 0x39, 0x5e, 0xf6, 0x8f,
+	0x60, 0x21, 0x92, 0x1c, 0x61, 0xf6, 0xdc, 0x08, 0x99, 0xfb, 0x30, 0x6d, 0xdb, 0x97, 0x03, 0xe7,
+	0xbf, 0xd5, 0x0f, 0x20, 0xcf, 0xa5, 0xcf, 0x0f, 0xb7, 0x08, 0xb9, 0x16, 0xfb, 0x95, 0x41, 0x25,
+	0xc8, 0x63, 0xbd, 0xd1, 0xfa, 0x8e, 0x92, 0x45, 0x0a, 0x54, 0x5a, 0xed, 0xbe, 0xd6, 0xed, 0x74,
+	0x74, 0x6d, 0xa0, 0xb7, 0x94, 0x45, 0xf5, 0x36, 0xe4, 0xdb, 0x23, 0xa6, 0xf9, 0x16, 0x3b, 0x10,
+	0xfb, 0xc4, 0x27, 0x9e, 0x15, 0x9d, 0xb3, 0x19, 0x41, 0xfd, 0x71, 0x19, 0xf2, 0x4f, 0xe9, 0xc4,
+	0x0b, 0xd1, 0x83, 0x84, 0x53, 0x5b, 0x49, 0x8f, 0x1f, 0x38, 0xb0, 0x3e, 0x98, 0x8e, 0x89, 0x74,
+	0x7a, 0x37, 0xa0, 0x20, 0x8e, 0x8e, 0x9c, 0x8e, 0x6c, 0x31, 0x7a, 0x68, 0xfa, 0x43, 0x12, 0xca,
+	0xf9, 0xc8, 0x16, 0x7a, 0x87, 0xdd, 0x67, 0xa6, 0x4d, 0x3d, 0x77, 0xca, 0x4f, 0x58, 0x51, 0x5c,
+	0x5a, 0x98, 0x98, 0x76, 0xd7, 0x73, 0xa7, 0x38, 0xe6, 0xa2, 0x6d, 0xa8, 0xec, 0x39, 0x9e, 0x6d,
+	0xd0, 0xb1, 0xb8, 0x02, 0xf2, 0x17, 0x9f, 0x47, 0x31, 0xaa, 0xa6, 0xe3, 0xd9, 0x5d, 0x01, 0xc6,
+	0xe5, 0xbd, 0x59, 0x03, 0x75, 0x60, 0xe5, 0x88, 0xba, 0x93, 0x11, 0x89, 0x75, 0x15, 0xb8, 0xae,
+	0xb7, 0x2f, 0xd6, 0xf5, 0x8c, 0xe3, 0x23, 0x6d, 0xcb, 0x47, 0xc9, 0x26, 0x7a, 0x02, 0xcb, 0xe1,
+	0x68, 0xbc, 0x1f, 0xc4, 0xea, 0x96, 0xb8, 0xba, 0x2f, 0x5d, 0x62, 0x30, 0x06, 0x8f, 0xb4, 0x55,
+	0xc2, 0x44, 0x0b, 0x3d, 0x86, 0xb2, 0x45, 0xbd, 0xc0, 0x09, 0x42, 0xe2, 0x59, 0xd3, 0xf5, 0x22,
+	0xb7, 0xfd, 0x25, 0xb3, 0xd4, 0x66, 0x60, 0x9c, 0x94, 0xac, 0xfe, 0xea, 0x22, 0x94, 0x13, 0x26,
+	0x40, 0x7d, 0x28, 0x8f, 0x7d, 0x3a, 0x36, 0x87, 0xfc, 0x3e, 0x94, 0x8b, 0x7a, 0xff, 0x33, 0x99,
+	0xaf, 0xde, 0x9b, 0x09, 0xe2, 0xa4, 0x16, 0xf5, 0x24, 0x0b, 0xe5, 0x04, 0x13, 0xdd, 0x81, 0x22,
+	0xee, 0xe1, 0xf6, 0xb3, 0xc6, 0x40, 0x57, 0x16, 0xaa, 0xb7, 0x8e, 0x4f, 0x6a, 0xeb, 0x5c, 0x5b,
+	0x52, 0x41, 0xcf, 0x77, 0x8e, 0xd8, 0x1e, 0x7e, 0x07, 0x96, 0x22, 0x68, 0xa6, 0xfa, 0xc5, 0xe3,
+	0x93, 0xda, 0x6b, 0xf3, 0xd0, 0x04, 0x12, 0xf7, 0xb7, 0x1b, 0x58, 0x6f, 0x29, 0xd9, 0x74, 0x24,
+	0xee, 0x1f, 0x98, 0x3e, 0xb1, 0xd1, 0x97, 0xa0, 0x20, 0x81, 0x8b, 0xd5, 0xea, 0xf1, 0x49, 0xed,
+	0xc6, 0x3c, 0x70, 0x86, 0xc3, 0xfd, 0x9d, 0xc6, 0x33, 0x5d, 0xc9, 0xa5, 0xe3, 0x70, 0xdf, 0x35,
+	0x8f, 0x08, 0x7a, 0x0b, 0xf2, 0x02, 0x96, 0xaf, 0xde, 0x3c, 0x3e, 0xa9, 0x7d, 0xe1, 0x15, 0x75,
+	0x0c, 0x55, 0x5d, 0xff, 0x8d, 0x3f, 0xdc, 0x58, 0xf8, 0xcb, 0x3f, 0xda, 0x50, 0xe6, 0xd9, 0xd5,
+	0xff, 0xc9, 0xc0, 0xf2, 0xb9, 0xbd, 0x83, 0x54, 0x28, 0x78, 0xd4, 0xa2, 0x63, 0x71, 0x4d, 0x16,
+	0x9b, 0x70, 0x76, 0xba, 0x59, 0xe8, 0x50, 0x8d, 0x8e, 0xa7, 0x58, 0x72, 0xd0, 0x93, 0xb9, 0x8b,
+	0xfe, 0xe1, 0x67, 0xdc, 0x98, 0xa9, 0x57, 0xfd, 0x87, 0xb0, 0x6c, 0xfb, 0xce, 0x11, 0xf1, 0x0d,
+	0x8b, 0x7a, 0xfb, 0xce, 0x50, 0x5e, 0x81, 0xd5, 0xd4, 0x68, 0x94, 0x03, 0x71, 0x45, 0x08, 0x68,
+	0x1c, 0xff, 0x13, 0x5c, 0xf2, 0xd5, 0x67, 0x50, 0x49, 0x6e, 0x75, 0x76, 0x2f, 0x05, 0xce, 0x2f,
+	0x12, 0x19, 0x76, 0xf2, 0x20, 0x15, 0x97, 0x18, 0x45, 0x04, 0x9d, 0x6f, 0x43, 0x6e, 0x44, 0x6d,
+	0xa1, 0x67, 0xb9, 0x79, 0x9d, 0xc5, 0x1a, 0xff, 0x7c, 0xba, 0x59, 0xa6, 0x41, 0x7d, 0xcb, 0x71,
+	0xc9, 0x53, 0x6a, 0x13, 0xcc, 0x01, 0xea, 0x11, 0xe4, 0x98, 0xcf, 0x41, 0x5f, 0x84, 0x5c, 0xb3,
+	0xdd, 0x69, 0x29, 0x0b, 0xd5, 0x6b, 0xc7, 0x27, 0xb5, 0x65, 0x6e, 0x12, 0xc6, 0x60, 0x7b, 0x17,
+	0x6d, 0x42, 0xe1, 0x59, 0x77, 0x67, 0xf7, 0x29, 0xdb, 0x5e, 0xd7, 0x8f, 0x4f, 0x6a, 0xab, 0x31,
+	0x5b, 0x18, 0x0d, 0xbd, 0x0e, 0xf9, 0xc1, 0xd3, 0xde, 0x56, 0x5f, 0xc9, 0x56, 0xd1, 0xf1, 0x49,
+	0x6d, 0x25, 0xe6, 0xf3, 0x31, 0x57, 0xaf, 0xc9, 0x55, 0x2d, 0xc5, 0x74, 0xf5, 0x07, 0x19, 0x28,
+	0x27, 0x0e, 0x1c, 0xdb, 0x98, 0x2d, 0x7d, 0xab, 0xb1, 0xbb, 0x33, 0x50, 0x16, 0x12, 0x1b, 0x33,
+	0x01, 0x69, 0x91, 0x7d, 0x73, 0xe2, 0x32, 0x3f, 0x07, 0x5a, 0xb7, 0xd3, 0x6f, 0xf7, 0x07, 0x7a,
+	0x67, 0xa0, 0x64, 0xaa, 0xeb, 0xc7, 0x27, 0xb5, 0xb5, 0x79, 0xf0, 0xd6, 0xc4, 0x75, 0xd9, 0xd6,
+	0xd4, 0x1a, 0xda, 0x36, 0xdf, 0xeb, 0xb3, 0xad, 0x99, 0x40, 0x69, 0xa6, 0x75, 0x40, 0x6c, 0xf4,
+	0x2e, 0x94, 0x5a, 0xfa, 0x8e, 0xfe, 0xb8, 0xc1, 0xbd, 0x7b, 0xf5, 0xf5, 0xe3, 0x93, 0xda, 0xcd,
+	0x57, 0x7b, 0x77, 0xc9, 0xd0, 0x0c, 0x89, 0x3d, 0xb7, 0x45, 0x13, 0x10, 0xf5, 0xbf, 0xb2, 0xb0,
+	0x8c, 0x59, 0xb2, 0xec, 0x87, 0x3d, 0xea, 0x3a, 0xd6, 0x14, 0xf5, 0xa0, 0x64, 0x51, 0xcf, 0x76,
+	0x12, 0x7e, 0xe2, 0xc1, 0x05, 0x01, 0xd3, 0x4c, 0x2a, 0x6a, 0x69, 0x91, 0x24, 0x9e, 0x29, 0x41,
+	0x77, 0x21, 0x6f, 0x13, 0xd7, 0x9c, 0xca, 0xc8, 0xed, 0x66, 0x5d, 0xa4, 0xe3, 0xf5, 0x28, 0x1d,
+	0xaf, 0xb7, 0x64, 0x3a, 0x8e, 0x05, 0x8e, 0x67, 0x28, 0xe6, 0x4b, 0xc3, 0x0c, 0x43, 0x32, 0x1a,
+	0x87, 0x22, 0x6c, 0xcb, 0xe1, 0xf2, 0xc8, 0x7c, 0xd9, 0x90, 0x24, 0x74, 0x1f, 0x0a, 0x2f, 0x1c,
+	0xcf, 0xa6, 0x2f, 0x64, 0x64, 0x76, 0x89, 0x52, 0x09, 0x54, 0x8f, 0x59, 0x48, 0x32, 0x37, 0x4c,
+	0xb6, 0x87, 0x3a, 0xdd, 0x8e, 0x1e, 0xed, 0x21, 0xc9, 0xef, 0x7a, 0x1d, 0xea, 0xb1, 0xf3, 0x0f,
+	0xdd, 0x8e, 0xb1, 0xd5, 0x68, 0xef, 0xec, 0x62, 0xb6, 0x8f, 0xd6, 0x8e, 0x4f, 0x6a, 0x4a, 0x0c,
+	0xd9, 0x32, 0x1d, 0x97, 0xa5, 0x0a, 0x37, 0x61, 0xb1, 0xd1, 0xf9, 0x8e, 0x92, 0xad, 0x2a, 0xc7,
+	0x27, 0xb5, 0x4a, 0xcc, 0x6e, 0x78, 0xd3, 0x99, 0xdd, 0xe7, 0xfb, 0x55, 0xff, 0x6e, 0x11, 0x2a,
+	0xbb, 0x63, 0xdb, 0x0c, 0x89, 0x38, 0x67, 0xa8, 0x06, 0xe5, 0xb1, 0xe9, 0x9b, 0xae, 0x4b, 0x5c,
+	0x27, 0x18, 0xc9, 0x42, 0x43, 0x92, 0x84, 0xde, 0xfb, 0xac, 0x66, 0x6c, 0x16, 0xd9, 0xd9, 0xf9,
+	0xde, 0xbf, 0x6e, 0x66, 0x22, 0x83, 0xee, 0xc2, 0xca, 0xbe, 0x18, 0xad, 0x61, 0x5a, 0x7c, 0x61,
+	0x17, 0xf9, 0xc2, 0xd6, 0xd3, 0x16, 0x36, 0x39, 0xac, 0xba, 0x9c, 0x64, 0x83, 0x4b, 0xe1, 0xe5,
+	0xfd, 0x64, 0x13, 0x3d, 0x84, 0xa5, 0x11, 0xf5, 0x9c, 0x90, 0xfa, 0x57, 0xaf, 0x42, 0x84, 0x44,
+	0x77, 0xe0, 0x1a, 0x5b, 0xdc, 0x68, 0x3c, 0x9c, 0xcd, 0xaf, 0xf3, 0x2c, 0x5e, 0x1d, 0x99, 0x2f,
+	0x65, 0x87, 0x98, 0x91, 0x51, 0x13, 0xf2, 0xd4, 0x67, 0xf1, 0x62, 0x81, 0x0f, 0xf7, 0xdd, 0x2b,
+	0x87, 0x2b, 0x1a, 0x5d, 0x26, 0x83, 0x85, 0xa8, 0xfa, 0x75, 0x58, 0x3e, 0x37, 0x09, 0x16, 0x26,
+	0xf5, 0x1a, 0xbb, 0x7d, 0x5d, 0x59, 0x40, 0x15, 0x28, 0x6a, 0xdd, 0xce, 0xa0, 0xdd, 0xd9, 0x65,
+	0x71, 0x5e, 0x05, 0x8a, 0xb8, 0xbb, 0xb3, 0xd3, 0x6c, 0x68, 0x4f, 0x94, 0xac, 0x5a, 0x87, 0x72,
+	0x42, 0x1b, 0x5a, 0x01, 0xe8, 0x0f, 0xba, 0x3d, 0x63, 0xab, 0x8d, 0xfb, 0x03, 0x11, 0x25, 0xf6,
+	0x07, 0x0d, 0x3c, 0x90, 0x84, 0x8c, 0xfa, 0x1f, 0xd9, 0x68, 0x45, 0x65, 0x60, 0xd8, 0x3c, 0x1f,
+	0x18, 0x5e, 0x32, 0x78, 0x19, 0x1a, 0xce, 0x1a, 0x71, 0x80, 0xf8, 0x1e, 0x00, 0xdf, 0x38, 0xc4,
+	0x36, 0xcc, 0x50, 0x2e, 0x7c, 0xf5, 0x15, 0x23, 0x0f, 0xa2, 0x7a, 0x17, 0x2e, 0x49, 0x74, 0x23,
+	0x44, 0xdf, 0x80, 0x8a, 0x45, 0x47, 0x63, 0x97, 0x48, 0xe1, 0xc5, 0x2b, 0x85, 0xcb, 0x31, 0xbe,
+	0x11, 0x26, 0x43, 0xd3, 0xdc, 0xf9, 0xe0, 0xf9, 0xd7, 0x32, 0x91, 0x65, 0x52, 0xa2, 0xd1, 0x0a,
+	0x14, 0x77, 0x7b, 0xad, 0xc6, 0xa0, 0xdd, 0x79, 0xac, 0x64, 0x10, 0x40, 0x81, 0x9b, 0xba, 0xa5,
+	0x64, 0x59, 0x14, 0xad, 0x75, 0x9f, 0xf6, 0x76, 0x74, 0xee, 0xb1, 0xd0, 0x1a, 0x28, 0x91, 0xb1,
+	0x0d, 0x6e, 0x48, 0xbd, 0xa5, 0xe4, 0xd0, 0x75, 0x58, 0x8d, 0xa9, 0x52, 0x32, 0x8f, 0x6e, 0x00,
+	0x8a, 0x89, 0x33, 0x15, 0x05, 0xf5, 0x97, 0x61, 0x55, 0xa3, 0x5e, 0x68, 0x3a, 0x5e, 0x9c, 0x61,
+	0x3c, 0x60, 0x93, 0x96, 0x24, 0xc3, 0x91, 0x75, 0xa2, 0xe6, 0xea, 0xd9, 0xe9, 0x66, 0x39, 0x86,
+	0xb6, 0x5b, 0x3c, 0x54, 0x92, 0x0d, 0x9b, 0x9d, 0xdf, 0xb1, 0x63, 0x73, 0xe3, 0xe6, 0x9b, 0x4b,
+	0x67, 0xa7, 0x9b, 0x8b, 0xbd, 0x76, 0x0b, 0x33, 0x1a, 0xfa, 0x22, 0x94, 0xc8, 0x4b, 0x27, 0x34,
+	0x2c, 0x76, 0x2f, 0x31, 0x03, 0xe6, 0x71, 0x91, 0x11, 0x34, 0x76, 0x0d, 0x35, 0x01, 0x7a, 0xd4,
+	0x0f, 0x65, 0xcf, 0x5f, 0x85, 0xfc, 0x98, 0xfa, 0xbc, 0xb2, 0x71, 0x61, 0xbd, 0x8d, 0xc1, 0xc5,
+	0x46, 0xc5, 0x02, 0xac, 0xfe, 0xee, 0x22, 0xc0, 0xc0, 0x0c, 0x0e, 0xa5, 0x92, 0x47, 0x50, 0x8a,
+	0x6b, 0x97, 0xb2, 0x44, 0x72, 0xe9, 0x6a, 0xc7, 0x60, 0xf4, 0x30, 0xda, 0x6c, 0x22, 0x77, 0x4a,
+	0x4d, 0x71, 0xa3, 0x8e, 0xd2, 0xd2, 0x8f, 0xf3, 0x09, 0x12, 0xbb, 0xe6, 0x89, 0xef, 0xcb, 0x95,
+	0x67, 0x3f, 0x91, 0xc6, 0xaf, 0x05, 0x61, 0x34, 0x19, 0x7d, 0xa7, 0x16, 0x85, 0xe6, 0x56, 0x64,
+	0x7b, 0x01, 0xcf, 0xe4, 0xd0, 0x87, 0x50, 0x66, 0xf3, 0x36, 0x02, 0xce, 0x93, 0x81, 0xf7, 0x85,
+	0xa6, 0x12, 0x1a, 0x30, 0x8c, 0x67, 0x56, 0x7e, 0x1d, 0xc0, 0x1c, 0x8f, 0x5d, 0x87, 0xd8, 0xc6,
+	0xde, 0x94, 0x47, 0xda, 0x25, 0x5c, 0x92, 0x94, 0xe6, 0x94, 0x1d, 0x97, 0x88, 0x6d, 0x86, 0x3c,
+	0x7a, 0xbe, 0xc2, 0x80, 0x12, 0xdd, 0x08, 0x9b, 0x0a, 0xac, 0xf8, 0x13, 0x8f, 0x19, 0x54, 0x8e,
+	0x4e, 0xfd, 0x93, 0x2c, 0xbc, 0xd6, 0x21, 0xe1, 0x0b, 0xea, 0x1f, 0x36, 0xc2, 0xd0, 0xb4, 0x0e,
+	0x46, 0xc4, 0x93, 0xcb, 0x97, 0x48, 0x68, 0x32, 0xe7, 0x12, 0x9a, 0x75, 0x58, 0x32, 0x5d, 0xc7,
+	0x0c, 0x88, 0x08, 0xde, 0x4a, 0x38, 0x6a, 0xb2, 0xb4, 0x8b, 0x25, 0x71, 0x24, 0x08, 0x88, 0xa8,
+	0xba, 0xb0, 0x81, 0x47, 0x04, 0xf4, 0x5d, 0xb8, 0x21, 0xc3, 0x34, 0x33, 0xee, 0x8a, 0x25, 0x14,
+	0x51, 0xf9, 0x56, 0x4f, 0xcd, 0x2a, 0xd3, 0x07, 0x27, 0xe3, 0xb8, 0x19, 0xb9, 0x3b, 0x0e, 0x65,
+	0x54, 0xb8, 0x66, 0xa7, 0xb0, 0xaa, 0x8f, 0xe1, 0xe6, 0x85, 0x22, 0x9f, 0xab, 0xaa, 0xf3, 0x8f,
+	0x59, 0x80, 0x76, 0xaf, 0xf1, 0x54, 0x1a, 0xa9, 0x05, 0x85, 0x7d, 0x73, 0xe4, 0xb8, 0xd3, 0xcb,
+	0x3c, 0xe0, 0x0c, 0x5f, 0x6f, 0x08, 0x73, 0x6c, 0x71, 0x19, 0x2c, 0x65, 0x79, 0x4e, 0x39, 0xd9,
+	0xf3, 0x48, 0x18, 0xe7, 0x94, 0xbc, 0xc5, 0x86, 0xe1, 0x9b, 0x5e, 0xbc, 0x75, 0x45, 0x83, 0x2d,
+	0x00, 0x0b, 0x79, 0x5e, 0x98, 0xd3, 0xc8, 0x6d, 0xc9, 0x26, 0xda, 0xe6, 0xb5, 0x53, 0xe2, 0x1f,
+	0x11, 0x7b, 0x3d, 0xcf, 0x8d, 0x7a, 0xd5, 0x78, 0xb0, 0x84, 0x0b, 0xdb, 0xc5, 0xd2, 0xd5, 0x0f,
+	0x78, 0xc8, 0x34, 0x63, 0x7d, 0x2e, 0x1b, 0xdd, 0x83, 0xe5, 0x73, 0xf3, 0x7c, 0x25, 0x99, 0x6f,
+	0xf7, 0x9e, 0x7d, 0x55, 0xc9, 0xc9, 0x5f, 0x5f, 0x57, 0x0a, 0xea, 0xdf, 0x2c, 0x0a, 0x47, 0x23,
+	0xad, 0x9a, 0xfe, 0x66, 0x50, 0xe4, 0xbb, 0xdb, 0xa2, 0xae, 0x74, 0x00, 0x6f, 0x5f, 0xee, 0x7f,
+	0x58, 0x4e, 0xc7, 0xe1, 0x38, 0x16, 0x44, 0x9b, 0x50, 0x16, 0xbb, 0xd8, 0x60, 0x07, 0x8e, 0x9b,
+	0x75, 0x19, 0x83, 0x20, 0x31, 0x49, 0x74, 0x1b, 0x56, 0x78, 0xf1, 0x27, 0x38, 0x20, 0xb6, 0xc0,
+	0xe4, 0x38, 0x66, 0x39, 0xa6, 0x72, 0xd8, 0x53, 0xa8, 0x48, 0x82, 0xc1, 0xe3, 0xf9, 0x3c, 0x1f,
+	0xd0, 0x9d, 0xab, 0x06, 0x24, 0x44, 0x78, 0x98, 0x5f, 0x1e, 0xcf, 0x1a, 0xea, 0xcf, 0x43, 0x31,
+	0x1a, 0x2c, 0x5a, 0x87, 0xc5, 0x81, 0xd6, 0x53, 0x16, 0xaa, 0xab, 0xc7, 0x27, 0xb5, 0x72, 0x44,
+	0x1e, 0x68, 0x3d, 0xc6, 0xd9, 0x6d, 0xf5, 0x94, 0xcc, 0x79, 0xce, 0x6e, 0xab, 0x87, 0xaa, 0x90,
+	0xeb, 0x6b, 0x83, 0x5e, 0x14, 0x9f, 0x45, 0x2c, 0x46, 0xab, 0xe6, 0x58, 0x7c, 0xa6, 0xee, 0x43,
+	0x39, 0xd1, 0x3b, 0x7a, 0x13, 0x96, 0xda, 0x9d, 0xc7, 0x58, 0xef, 0xf7, 0x95, 0x85, 0xea, 0x8d,
+	0xe3, 0x93, 0x1a, 0x4a, 0x70, 0xdb, 0xde, 0x90, 0xad, 0x1d, 0x7a, 0x1d, 0x72, 0xdb, 0x5d, 0x76,
+	0xef, 0x8b, 0xe4, 0x22, 0x81, 0xd8, 0xa6, 0x41, 0x58, 0xbd, 0x2e, 0x03, 0xbf, 0xa4, 0x62, 0xf5,
+	0xf7, 0x32, 0x50, 0x10, 0x07, 0x2d, 0x75, 0x11, 0x1b, 0xb0, 0x14, 0x95, 0x10, 0x44, 0xe2, 0xf7,
+	0xf6, 0xc5, 0x49, 0x5a, 0x5d, 0xe6, 0x54, 0x62, 0x6b, 0x46, 0x72, 0xd5, 0xf7, 0xa1, 0x92, 0x64,
+	0x7c, 0xae, 0x8d, 0xf9, 0x5d, 0x28, 0xb3, 0xbd, 0x1f, 0x25, 0x6b, 0x0f, 0xa0, 0x20, 0x9c, 0x45,
+	0x7c, 0x0f, 0x5d, 0x9c, 0x31, 0x4a, 0x24, 0x7a, 0x04, 0x4b, 0x22, 0xcb, 0x8c, 0xea, 0xca, 0x1b,
+	0x97, 0x9f, 0x30, 0x1c, 0xc1, 0xd5, 0x0f, 0x21, 0xd7, 0x23, 0xc4, 0x67, 0xb6, 0xf7, 0xa8, 0x4d,
+	0x66, 0x57, 0xb7, 0x4c, 0x90, 0x6d, 0xd2, 0x6e, 0xb1, 0x04, 0xd9, 0x26, 0x6d, 0x3b, 0xae, 0x8d,
+	0x65, 0x13, 0xb5, 0xb1, 0x01, 0x54, 0x9e, 0x13, 0x67, 0x78, 0x10, 0x12, 0x9b, 0x2b, 0x7a, 0x17,
+	0x72, 0x63, 0x12, 0x0f, 0x7e, 0x3d, 0x75, 0xf3, 0x11, 0xe2, 0x63, 0x8e, 0x62, 0x3e, 0xe6, 0x05,
+	0x97, 0x96, 0x8f, 0x21, 0xb2, 0xa5, 0xfe, 0x43, 0x16, 0x56, 0xda, 0x41, 0x30, 0x31, 0x3d, 0x2b,
+	0x8a, 0xea, 0xbe, 0x79, 0x3e, 0xaa, 0x4b, 0x7d, 0x35, 0x3a, 0x2f, 0x72, 0xbe, 0xe4, 0x27, 0x6f,
+	0xd6, 0x6c, 0x7c, 0xb3, 0xaa, 0x3f, 0xce, 0x44, 0x75, 0xbd, 0xdb, 0x09, 0x57, 0x20, 0x72, 0xc4,
+	0xa4, 0x26, 0xb2, 0xeb, 0x1d, 0x7a, 0xf4, 0x85, 0x87, 0xde, 0x80, 0x3c, 0xd6, 0x3b, 0xfa, 0x73,
+	0x25, 0x23, 0xb6, 0xe7, 0x39, 0x10, 0x26, 0x1e, 0x79, 0xc1, 0x34, 0xf5, 0xf4, 0x4e, 0x8b, 0x45,
+	0x61, 0xd9, 0x14, 0x4d, 0x3d, 0xe2, 0xd9, 0x8e, 0x37, 0x44, 0x6f, 0x42, 0xa1, 0xdd, 0xef, 0xef,
+	0xf2, 0x14, 0xf2, 0xb5, 0xe3, 0x93, 0xda, 0xf5, 0x73, 0x28, 0x5e, 0xd3, 0xb5, 0x19, 0x88, 0xa5,
+	0x40, 0x2c, 0x3e, 0x4b, 0x01, 0xb1, 0xd8, 0x5a, 0x80, 0x70, 0x77, 0xd0, 0x18, 0xe8, 0x4a, 0x3e,
+	0x05, 0x84, 0x29, 0xfb, 0x2b, 0x8f, 0xdb, 0xbf, 0x64, 0x41, 0x69, 0x58, 0x16, 0x19, 0x87, 0x8c,
+	0x2f, 0xb3, 0xce, 0x01, 0x14, 0xc7, 0xec, 0x97, 0x43, 0xa2, 0x08, 0xea, 0x51, 0xea, 0xbb, 0xe7,
+	0x9c, 0x5c, 0x1d, 0x53, 0x97, 0x34, 0xec, 0x91, 0x13, 0x04, 0x0e, 0xf5, 0x04, 0x0d, 0xc7, 0x9a,
+	0xaa, 0xff, 0x99, 0x81, 0xeb, 0x29, 0x08, 0x74, 0x0f, 0x72, 0x3e, 0x75, 0xa3, 0x35, 0xbc, 0x75,
+	0x51, 0xc9, 0x96, 0x89, 0x62, 0x8e, 0x44, 0x1b, 0x00, 0xe6, 0x24, 0xa4, 0x26, 0xef, 0x9f, 0xaf,
+	0x5e, 0x11, 0x27, 0x28, 0xe8, 0x39, 0x14, 0x02, 0x62, 0xf9, 0x24, 0x8a, 0xb3, 0x3f, 0xfc, 0xbf,
+	0x8e, 0xbe, 0xde, 0xe7, 0x6a, 0xb0, 0x54, 0x57, 0xad, 0x43, 0x41, 0x50, 0xd8, 0xb6, 0xb7, 0xcd,
+	0xd0, 0x94, 0x05, 0x7d, 0xfe, 0x9b, 0xed, 0x26, 0xd3, 0x1d, 0x46, 0xbb, 0xc9, 0x74, 0x87, 0xea,
+	0x5f, 0x67, 0x01, 0xf4, 0x97, 0x21, 0xf1, 0x3d, 0xd3, 0xd5, 0x1a, 0x48, 0x4f, 0xdc, 0x0c, 0x62,
+	0xb6, 0x5f, 0x4e, 0x7d, 0xc3, 0x88, 0x25, 0xea, 0x5a, 0x23, 0xe5, 0x6e, 0xb8, 0x09, 0x8b, 0x13,
+	0x5f, 0x3e, 0x65, 0x8b, 0x18, 0x79, 0x17, 0xef, 0x60, 0x46, 0x43, 0xfa, 0xcc, 0x6d, 0x2d, 0x5e,
+	0xfc, 0x60, 0x9d, 0xe8, 0x20, 0xd5, 0x75, 0xb1, 0x93, 0x6f, 0x99, 0x86, 0x45, 0xe4, 0xad, 0x52,
+	0x11, 0x27, 0x5f, 0x6b, 0x68, 0xc4, 0x0f, 0x71, 0xc1, 0x32, 0xd9, 0xff, 0x9f, 0xc8, 0xbf, 0xbd,
+	0x0b, 0x30, 0x9b, 0x1a, 0xda, 0x80, 0xbc, 0xb6, 0xd5, 0xef, 0xef, 0x28, 0x0b, 0xc2, 0x81, 0xcf,
+	0x58, 0x9c, 0xac, 0xfe, 0x45, 0x16, 0x8a, 0x5a, 0x43, 0x5e, 0xb9, 0x1a, 0x28, 0xdc, 0x2b, 0xf1,
+	0x67, 0x10, 0xf2, 0x72, 0xec, 0xf8, 0x53, 0xe9, 0x58, 0x2e, 0x49, 0x78, 0x57, 0x98, 0x08, 0x1b,
+	0xb5, 0xce, 0x05, 0x10, 0x86, 0x0a, 0x91, 0x46, 0x30, 0x2c, 0x33, 0xf2, 0xf1, 0x1b, 0x97, 0x1b,
+	0x4b, 0xa4, 0x2e, 0xb3, 0x76, 0x80, 0xcb, 0x91, 0x12, 0xcd, 0x0c, 0xd0, 0x7b, 0xb0, 0x1a, 0x38,
+	0x43, 0xcf, 0xf1, 0x86, 0x46, 0x64, 0x3c, 0xfe, 0x26, 0xd3, 0xbc, 0x76, 0x76, 0xba, 0xb9, 0xdc,
+	0x17, 0x2c, 0x69, 0xc3, 0x65, 0x89, 0xd4, 0xb8, 0x29, 0xd1, 0xd7, 0x61, 0x25, 0x21, 0xca, 0xac,
+	0x28, 0xcc, 0xae, 0x9c, 0x9d, 0x6e, 0x56, 0x62, 0xc9, 0x27, 0x64, 0x8a, 0x2b, 0xb1, 0xe0, 0x13,
+	0xc2, 0x6b, 0x33, 0xfb, 0xd4, 0xb7, 0x88, 0xe1, 0xf3, 0x33, 0xcd, 0x6f, 0xf7, 0x1c, 0x2e, 0x73,
+	0x9a, 0x38, 0xe6, 0xea, 0x33, 0xb8, 0xde, 0xf5, 0xad, 0x03, 0x12, 0x84, 0xc2, 0x14, 0xd2, 0x8a,
+	0x1f, 0xc2, 0xad, 0xd0, 0x0c, 0x0e, 0x8d, 0x03, 0x27, 0x08, 0xa9, 0x3f, 0x35, 0x7c, 0x12, 0x12,
+	0x8f, 0xf1, 0x0d, 0xfe, 0xcc, 0x2b, 0x0b, 0x82, 0x37, 0x19, 0x66, 0x5b, 0x40, 0x70, 0x84, 0xd8,
+	0x61, 0x00, 0xb5, 0x0d, 0x15, 0x96, 0xc2, 0xc8, 0xa2, 0x1a, 0x9b, 0x3d, 0xb8, 0x74, 0x68, 0x7c,
+	0xe6, 0x6b, 0xaa, 0xe4, 0xd2, 0xa1, 0xf8, 0xa9, 0x7e, 0x1b, 0x94, 0x96, 0x13, 0x8c, 0xcd, 0xd0,
+	0x3a, 0x88, 0x2a, 0x9d, 0xa8, 0x05, 0xca, 0x01, 0x31, 0xfd, 0x70, 0x8f, 0x98, 0xa1, 0x31, 0x26,
+	0xbe, 0x43, 0xed, 0xab, 0x57, 0x79, 0x35, 0x16, 0xe9, 0x71, 0x09, 0xf5, 0xbf, 0x33, 0x00, 0xd8,
+	0xdc, 0x8f, 0xa2, 0xb5, 0xaf, 0xc0, 0xb5, 0xc0, 0x33, 0xc7, 0xc1, 0x01, 0x0d, 0x0d, 0xc7, 0x0b,
+	0x89, 0x7f, 0x64, 0xba, 0xb2, 0xb8, 0xa3, 0x44, 0x8c, 0xb6, 0xa4, 0xa3, 0x77, 0x01, 0x1d, 0x12,
+	0x32, 0x36, 0xa8, 0x6b, 0x1b, 0x11, 0x53, 0x3c, 0x42, 0xe7, 0xb0, 0xc2, 0x38, 0x5d, 0xd7, 0xee,
+	0x47, 0x74, 0xd4, 0x84, 0x0d, 0x36, 0x7d, 0xe2, 0x85, 0xbe, 0x43, 0x02, 0x63, 0x9f, 0xfa, 0x46,
+	0xe0, 0xd2, 0x17, 0xc6, 0x3e, 0x75, 0x5d, 0xfa, 0x82, 0xf8, 0x51, 0xdd, 0xac, 0xea, 0xd2, 0xa1,
+	0x2e, 0x40, 0x5b, 0xd4, 0xef, 0xbb, 0xf4, 0xc5, 0x56, 0x84, 0x60, 0x21, 0xdd, 0x6c, 0xce, 0xa1,
+	0x63, 0x1d, 0x46, 0x21, 0x5d, 0x4c, 0x1d, 0x38, 0xd6, 0x21, 0x7a, 0x13, 0x96, 0x89, 0x4b, 0x78,
+	0xf9, 0x44, 0xa0, 0xf2, 0x1c, 0x55, 0x89, 0x88, 0x0c, 0xa4, 0x7e, 0x04, 0x8a, 0xee, 0x59, 0xfe,
+	0x74, 0x9c, 0x58, 0xf3, 0x77, 0x01, 0x31, 0x27, 0x69, 0xb8, 0xd4, 0x3a, 0x34, 0x46, 0xa6, 0x67,
+	0x0e, 0xd9, 0xb8, 0xc4, 0xeb, 0x9f, 0xc2, 0x38, 0x3b, 0xd4, 0x3a, 0x7c, 0x2a, 0xe9, 0xea, 0x7b,
+	0x00, 0xfd, 0xb1, 0x4f, 0x4c, 0xbb, 0xcb, 0xa2, 0x09, 0x66, 0x3a, 0xde, 0x32, 0x6c, 0xf9, 0xb6,
+	0x4a, 0x7d, 0x79, 0xd4, 0x15, 0xc1, 0x68, 0xc5, 0x74, 0xf5, 0x67, 0xe1, 0x7a, 0xcf, 0x35, 0x2d,
+	0xfe, 0x9d, 0x41, 0x2f, 0x7e, 0xce, 0x42, 0x8f, 0xa0, 0x20, 0xa0, 0x72, 0x25, 0x53, 0x8f, 0xdb,
+	0xac, 0xcf, 0xed, 0x05, 0x2c, 0xf1, 0xcd, 0x0a, 0xc0, 0x4c, 0x8f, 0xfa, 0x67, 0x19, 0x28, 0xc5,
+	0xfa, 0x51, 0x4d, 0xbc, 0xd2, 0x84, 0xbe, 0xe9, 0x78, 0x32, 0xe3, 0x2f, 0xe1, 0x24, 0x09, 0xb5,
+	0xa1, 0x3c, 0x8e, 0xa5, 0x2f, 0x8d, 0xe7, 0x52, 0x46, 0x8d, 0x93, 0xb2, 0xe8, 0x7d, 0x28, 0x45,
+	0x8f, 0xd9, 0x91, 0x87, 0xbd, 0xfc, 0xed, 0x7b, 0x06, 0x57, 0xbf, 0x09, 0xf0, 0x2d, 0xea, 0x78,
+	0x03, 0x7a, 0x48, 0x3c, 0xfe, 0xfc, 0xca, 0xf2, 0x45, 0x12, 0x59, 0x51, 0xb6, 0x78, 0x19, 0x40,
+	0x2c, 0x41, 0xfc, 0x0a, 0x29, 0x9a, 0xea, 0x5f, 0x65, 0xa1, 0x80, 0x29, 0x0d, 0xb5, 0x06, 0xaa,
+	0x41, 0x41, 0xfa, 0x09, 0x7e, 0xff, 0x34, 0x4b, 0x67, 0xa7, 0x9b, 0x79, 0xe1, 0x20, 0xf2, 0x16,
+	0xf7, 0x0c, 0x09, 0x0f, 0x9e, 0xbd, 0xc8, 0x83, 0xa3, 0x7b, 0x50, 0x91, 0x20, 0xe3, 0xc0, 0x0c,
+	0x0e, 0x44, 0xf2, 0xd6, 0x5c, 0x39, 0x3b, 0xdd, 0x04, 0x81, 0xdc, 0x36, 0x83, 0x03, 0x0c, 0x02,
+	0xcd, 0x7e, 0x23, 0x1d, 0xca, 0x1f, 0x53, 0xc7, 0x33, 0x42, 0x3e, 0x09, 0x59, 0x68, 0x4c, 0x5d,
+	0xc7, 0xd9, 0x54, 0xe5, 0x97, 0x0a, 0xf0, 0xf1, 0x6c, 0xf2, 0x3a, 0x2c, 0xfb, 0x94, 0x86, 0xc2,
+	0x6d, 0x39, 0xd4, 0x93, 0x35, 0x8c, 0x5a, 0x6a, 0x69, 0x9b, 0xd2, 0x10, 0x4b, 0x1c, 0xae, 0xf8,
+	0x89, 0x16, 0xba, 0x07, 0x6b, 0xae, 0x19, 0x84, 0x06, 0xf7, 0x77, 0xf6, 0x4c, 0x5b, 0x81, 0x1f,
+	0x35, 0xc4, 0x78, 0x5b, 0x9c, 0x15, 0x49, 0xa8, 0xff, 0x94, 0x81, 0x32, 0x9b, 0x8c, 0xb3, 0xef,
+	0x58, 0x2c, 0xc8, 0xfb, 0xfc, 0xb1, 0xc7, 0x4d, 0x58, 0xb4, 0x02, 0x5f, 0x1a, 0x95, 0x5f, 0xbe,
+	0x5a, 0x1f, 0x63, 0x46, 0x43, 0x1f, 0x41, 0x41, 0xd6, 0x52, 0x44, 0xd8, 0xa1, 0x5e, 0x1d, 0x8e,
+	0x4a, 0xdb, 0x48, 0x39, 0xbe, 0x97, 0x67, 0xa3, 0x13, 0x97, 0x00, 0x4e, 0x92, 0xd0, 0x0d, 0xc8,
+	0x5a, 0xc2, 0x5c, 0xf2, 0x53, 0x18, 0xad, 0x83, 0xb3, 0x96, 0xa7, 0xfe, 0x20, 0x03, 0xcb, 0xb3,
+	0x03, 0xcf, 0x76, 0xc0, 0x2d, 0x28, 0x05, 0x93, 0xbd, 0x60, 0x1a, 0x84, 0x64, 0x14, 0x3d, 0x2d,
+	0xc7, 0x04, 0xd4, 0x86, 0x92, 0xe9, 0x0e, 0xa9, 0xef, 0x84, 0x07, 0x23, 0x99, 0xa5, 0xa6, 0x87,
+	0x0a, 0x49, 0x9d, 0xf5, 0x46, 0x24, 0x82, 0x67, 0xd2, 0xd1, 0xbd, 0x2f, 0xbe, 0x3f, 0xe0, 0xf7,
+	0xfe, 0x1b, 0x50, 0x71, 0xcd, 0x11, 0x2f, 0x2e, 0x85, 0xce, 0x48, 0xcc, 0x23, 0x87, 0xcb, 0x92,
+	0x36, 0x70, 0x46, 0x44, 0x55, 0xa1, 0x14, 0x2b, 0x43, 0xab, 0x50, 0x6e, 0xe8, 0x7d, 0xe3, 0xfe,
+	0x83, 0x47, 0xc6, 0x63, 0xed, 0xa9, 0xb2, 0x20, 0x63, 0xd3, 0x3f, 0xcf, 0xc0, 0xb2, 0x74, 0x47,
+	0x32, 0xde, 0x7f, 0x13, 0x96, 0x7c, 0x73, 0x3f, 0x8c, 0x32, 0x92, 0x9c, 0xd8, 0xd5, 0xcc, 0xc3,
+	0xb3, 0x8c, 0x84, 0xb1, 0xd2, 0x33, 0x92, 0xc4, 0xc7, 0x0e, 0x8b, 0x97, 0x7e, 0xec, 0x90, 0xfb,
+	0xa9, 0x7c, 0xec, 0xa0, 0xfe, 0x0a, 0xc0, 0x96, 0xe3, 0x92, 0x81, 0xa8, 0x43, 0xa5, 0xe5, 0x97,
+	0x2c, 0x86, 0x93, 0x75, 0xce, 0x28, 0x86, 0x6b, 0xb7, 0x30, 0xa3, 0x31, 0xd6, 0xd0, 0xb1, 0xe5,
+	0x61, 0xe4, 0xac, 0xc7, 0x8c, 0x35, 0x74, 0xec, 0xf8, 0x55, 0x2e, 0x77, 0xd5, 0xab, 0xdc, 0x49,
+	0x06, 0x56, 0x65, 0xec, 0x1a, 0xbb, 0xdf, 0x2f, 0x43, 0x49, 0x84, 0xb1, 0xb3, 0x84, 0x8e, 0x3f,
+	0xf0, 0x0b, 0x5c, 0xbb, 0x85, 0x8b, 0x82, 0xdd, 0xb6, 0xd1, 0x26, 0x94, 0x25, 0x34, 0xf1, 0xd9,
+	0x14, 0x08, 0x52, 0x87, 0x0d, 0xff, 0xab, 0x90, 0xdb, 0x77, 0x5c, 0x22, 0x37, 0x7a, 0xaa, 0x03,
+	0x98, 0x19, 0x60, 0x7b, 0x01, 0x73, 0x74, 0xb3, 0x18, 0x15, 0xea, 0xf8, 0xf8, 0x64, 0xda, 0x99,
+	0x1c, 0x9f, 0xc8, 0x40, 0xe7, 0xc6, 0x27, 0x70, 0x6c, 0x7c, 0x82, 0x2d, 0xc6, 0x27, 0xa1, 0xc9,
+	0xf1, 0x09, 0xd2, 0x4f, 0x65, 0x7c, 0x3b, 0x70, 0xa3, 0xe9, 0x9a, 0xd6, 0xa1, 0xeb, 0x04, 0x21,
+	0xb1, 0x93, 0x1e, 0xe3, 0x01, 0x14, 0xce, 0x05, 0x9d, 0x97, 0x55, 0x34, 0x25, 0x52, 0xfd, 0xf7,
+	0x0c, 0x54, 0xb6, 0x89, 0xe9, 0x86, 0x07, 0xb3, 0xb2, 0x51, 0x48, 0x82, 0x50, 0x5e, 0x56, 0xfc,
+	0x37, 0xfa, 0x1a, 0x14, 0xe3, 0x98, 0xe4, 0xca, 0xb7, 0xb9, 0x18, 0x8a, 0x1e, 0xc2, 0x12, 0x3b,
+	0x63, 0x74, 0x12, 0x25, 0x3b, 0x97, 0x3d, 0xfb, 0x48, 0x24, 0xbb, 0x64, 0x7c, 0xc2, 0x83, 0x10,
+	0xbe, 0x95, 0xf2, 0x38, 0x6a, 0xa2, 0xff, 0x0f, 0x15, 0xfe, 0x6a, 0x11, 0xc5, 0x5c, 0xf9, 0xab,
+	0x74, 0x96, 0xc5, 0xc3, 0xa3, 0x88, 0xb7, 0xfe, 0x38, 0x0b, 0x6b, 0x4f, 0xcd, 0xe9, 0x1e, 0x91,
+	0x6e, 0x83, 0xd8, 0x98, 0x58, 0xd4, 0xb7, 0x51, 0x2f, 0xe9, 0x6e, 0x2e, 0x79, 0xc7, 0x4c, 0x13,
+	0x4e, 0xf7, 0x3a, 0x51, 0x02, 0x96, 0x4d, 0x24, 0x60, 0x6b, 0x90, 0xf7, 0xa8, 0x67, 0x11, 0xe9,
+	0x8b, 0x44, 0x43, 0xfd, 0xed, 0x4c, 0xd2, 0xd7, 0x54, 0xe3, 0x37, 0x46, 0x5e, 0x81, 0xea, 0xd0,
+	0x30, 0xee, 0x0e, 0x7d, 0x04, 0xd5, 0xbe, 0xae, 0x61, 0x7d, 0xd0, 0xec, 0x7e, 0xdb, 0xe8, 0x37,
+	0x76, 0xfa, 0x8d, 0x07, 0xf7, 0x8c, 0x5e, 0x77, 0xe7, 0x3b, 0xf7, 0x1f, 0xde, 0xfb, 0x9a, 0x92,
+	0xa9, 0xd6, 0x8e, 0x4f, 0x6a, 0xb7, 0x3a, 0x0d, 0x6d, 0x47, 0x1c, 0x99, 0x3d, 0xfa, 0xb2, 0x6f,
+	0xba, 0x81, 0xf9, 0xe0, 0x5e, 0x8f, 0xba, 0x53, 0x86, 0x41, 0x5f, 0x01, 0xb4, 0xa5, 0xe3, 0x8e,
+	0x3e, 0x30, 0x22, 0x87, 0xa6, 0x35, 0x35, 0x25, 0x2b, 0xd2, 0x9a, 0x2d, 0xe2, 0x7b, 0x24, 0x6c,
+	0xe8, 0xfd, 0xfb, 0x0f, 0x1e, 0x69, 0x4d, 0x8d, 0x1d, 0x82, 0x4a, 0xf2, 0x76, 0x4b, 0x5e, 0xda,
+	0x99, 0x0b, 0x2f, 0xed, 0xd9, 0xdd, 0x9f, 0xbd, 0xe0, 0xee, 0xdf, 0x82, 0x35, 0xcb, 0xa7, 0x41,
+	0x60, 0xb0, 0x5c, 0x81, 0xd8, 0x73, 0xd9, 0xc8, 0x17, 0xce, 0x4e, 0x37, 0xaf, 0x69, 0x8c, 0xdf,
+	0xe7, 0x6c, 0xa9, 0xfe, 0x9a, 0x95, 0x20, 0xf1, 0x9e, 0xd4, 0xdf, 0x5f, 0x64, 0x61, 0x97, 0x73,
+	0xe4, 0xb8, 0x64, 0x48, 0x02, 0xf4, 0x0c, 0x56, 0x2d, 0x9f, 0xd8, 0x2c, 0x09, 0x30, 0xdd, 0xe4,
+	0xc7, 0xba, 0xff, 0x2f, 0x35, 0x02, 0x8a, 0x05, 0xeb, 0x5a, 0x2c, 0xd5, 0x1f, 0x13, 0x0b, 0xaf,
+	0x58, 0xe7, 0xda, 0xe8, 0x63, 0x58, 0x0d, 0x88, 0xeb, 0x78, 0x93, 0x97, 0x86, 0x45, 0xbd, 0x90,
+	0xbc, 0x8c, 0xde, 0xd6, 0xae, 0xd2, 0xdb, 0xd7, 0x77, 0x98, 0x94, 0x26, 0x84, 0x9a, 0xe8, 0xec,
+	0x74, 0x73, 0xe5, 0x3c, 0x0d, 0xaf, 0x48, 0xcd, 0xb2, 0x5d, 0xed, 0xc0, 0xca, 0xf9, 0xd1, 0xa0,
+	0x35, 0xe9, 0x29, 0xb8, 0xc3, 0x89, 0x3c, 0x01, 0xba, 0x05, 0x45, 0x9f, 0x0c, 0x9d, 0x20, 0xf4,
+	0x85, 0x99, 0x19, 0x27, 0xa6, 0x30, 0x3f, 0x21, 0xbe, 0xa5, 0xaa, 0xfe, 0x12, 0xcc, 0xf5, 0xc8,
+	0x8e, 0x96, 0xed, 0x04, 0xe6, 0x9e, 0x54, 0x59, 0xc4, 0x51, 0x93, 0xed, 0xd8, 0x49, 0x10, 0x87,
+	0x75, 0xfc, 0x37, 0xa3, 0xf1, 0xf8, 0x43, 0x7e, 0x59, 0xc6, 0x23, 0x8c, 0xe8, 0x03, 0xd6, 0x5c,
+	0xe2, 0x03, 0xd6, 0x35, 0xc8, 0xbb, 0xe4, 0x88, 0xb8, 0xe2, 0xe6, 0xc7, 0xa2, 0x71, 0xe7, 0x1e,
+	0x54, 0xa2, 0x2f, 0x25, 0xf9, 0x37, 0x18, 0x45, 0xc8, 0x0d, 0x1a, 0xfd, 0x27, 0xca, 0x02, 0x02,
+	0x28, 0x88, 0x9d, 0x2c, 0xde, 0xfd, 0xb4, 0x6e, 0x67, 0xab, 0xfd, 0x58, 0xc9, 0xde, 0xf9, 0x9d,
+	0x1c, 0x94, 0xe2, 0x97, 0x27, 0x76, 0xd3, 0x74, 0xf4, 0xe7, 0xd1, 0x51, 0x88, 0xe9, 0x1d, 0xf2,
+	0x02, 0xbd, 0x31, 0xab, 0x59, 0x7d, 0x24, 0x9e, 0xda, 0x63, 0x76, 0x54, 0xaf, 0x7a, 0x0b, 0x8a,
+	0x8d, 0x7e, 0xbf, 0xfd, 0xb8, 0xa3, 0xb7, 0x94, 0x4f, 0x33, 0xd5, 0x2f, 0x1c, 0x9f, 0xd4, 0xae,
+	0xc5, 0xa0, 0x46, 0x20, 0x36, 0x1f, 0x47, 0x69, 0x9a, 0xde, 0x1b, 0xe8, 0x2d, 0xe5, 0x93, 0xec,
+	0x3c, 0x8a, 0xd7, 0x60, 0xf8, 0x47, 0x40, 0xa5, 0x1e, 0xd6, 0x7b, 0x0d, 0xcc, 0x3a, 0xfc, 0x34,
+	0x2b, 0x4a, 0x69, 0xb3, 0x1e, 0x7d, 0x32, 0x36, 0x7d, 0xd6, 0xe7, 0x46, 0xf4, 0x55, 0xdd, 0x27,
+	0x8b, 0xe2, 0x43, 0x91, 0xd9, 0x33, 0x1a, 0x31, 0xed, 0x29, 0xeb, 0x8d, 0xbf, 0x5f, 0x72, 0x35,
+	0x8b, 0x73, 0xbd, 0xf5, 0x99, 0xa7, 0x62, 0x5a, 0x54, 0x58, 0xc2, 0xbb, 0x9d, 0x0e, 0x03, 0x7d,
+	0x92, 0x9b, 0x9b, 0x1d, 0x9e, 0x78, 0x2c, 0xbf, 0x46, 0xb7, 0xa1, 0x18, 0x3d, 0x6f, 0x2a, 0x9f,
+	0xe6, 0xe6, 0x06, 0xa4, 0x45, 0x6f, 0xb3, 0xbc, 0xc3, 0xed, 0xdd, 0x01, 0xff, 0xe8, 0xef, 0x93,
+	0xfc, 0x7c, 0x87, 0x07, 0x93, 0xd0, 0xa6, 0x2f, 0x3c, 0x76, 0x66, 0x65, 0xd5, 0xee, 0xd3, 0xbc,
+	0xf0, 0x05, 0x31, 0x46, 0x96, 0xec, 0xde, 0x82, 0x22, 0xd6, 0xbf, 0x25, 0xbe, 0x0f, 0xfc, 0xa4,
+	0x30, 0xa7, 0x07, 0x93, 0x8f, 0x89, 0xc5, 0x7a, 0xab, 0x41, 0x01, 0xeb, 0x4f, 0xbb, 0xcf, 0x74,
+	0xe5, 0x0f, 0x0a, 0x73, 0x7a, 0x30, 0x19, 0x51, 0xfe, 0x95, 0x54, 0xb1, 0x8b, 0x7b, 0xdb, 0x0d,
+	0xbe, 0x28, 0xf3, 0x7a, 0xba, 0xfe, 0xf8, 0xc0, 0xf4, 0x88, 0x3d, 0xfb, 0x9e, 0x26, 0x66, 0xdd,
+	0xf9, 0x39, 0x28, 0x46, 0x91, 0x2e, 0xda, 0x80, 0xc2, 0xf3, 0x2e, 0x7e, 0xa2, 0x63, 0x65, 0x41,
+	0x58, 0x39, 0xe2, 0x3c, 0x17, 0x39, 0x4a, 0x0d, 0x96, 0x9e, 0x36, 0x3a, 0x8d, 0xc7, 0x3a, 0x8e,
+	0x4a, 0xee, 0x11, 0x40, 0x86, 0x6b, 0x55, 0x45, 0x76, 0x10, 0xeb, 0x6c, 0xae, 0x7f, 0xff, 0x47,
+	0x1b, 0x0b, 0x3f, 0xfc, 0xd1, 0xc6, 0xc2, 0x27, 0x67, 0x1b, 0x99, 0xef, 0x9f, 0x6d, 0x64, 0xfe,
+	0xfe, 0x6c, 0x23, 0xf3, 0x6f, 0x67, 0x1b, 0x99, 0xbd, 0x02, 0xbf, 0x54, 0x1e, 0xfe, 0x6f, 0x00,
+	0x00, 0x00, 0xff, 0xff, 0x80, 0x94, 0x1b, 0x9c, 0x7a, 0x32, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/api/watch.pb.go b/vendor/github.com/docker/swarmkit/api/watch.pb.go
new file mode 100644
index 0000000000..509793df80
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/api/watch.pb.go
@@ -0,0 +1,4602 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/api/watch.proto
+// DO NOT EDIT!
+
+package api
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import _ "github.com/gogo/protobuf/gogoproto"
+import _ "github.com/docker/swarmkit/protobuf/plugin"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import raftselector "github.com/docker/swarmkit/manager/raftselector"
+import codes "google.golang.org/grpc/codes"
+import status "google.golang.org/grpc/status"
+import metadata "google.golang.org/grpc/metadata"
+import transport "google.golang.org/grpc/transport"
+import rafttime "time"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// WatchActionKind distinguishes between creations, updates, and removals. It
+// is structured as a bitmap so multiple kinds of events can be requested with
+// a mask.
+type WatchActionKind int32
+
+const (
+	WatchActionKindUnknown WatchActionKind = 0
+	WatchActionKindCreate  WatchActionKind = 1
+	WatchActionKindUpdate  WatchActionKind = 2
+	WatchActionKindRemove  WatchActionKind = 4
+)
+
+var WatchActionKind_name = map[int32]string{
+	0: "WATCH_ACTION_UNKNOWN",
+	1: "WATCH_ACTION_CREATE",
+	2: "WATCH_ACTION_UPDATE",
+	4: "WATCH_ACTION_REMOVE",
+}
+var WatchActionKind_value = map[string]int32{
+	"WATCH_ACTION_UNKNOWN": 0,
+	"WATCH_ACTION_CREATE":  1,
+	"WATCH_ACTION_UPDATE":  2,
+	"WATCH_ACTION_REMOVE":  4,
+}
+
+func (x WatchActionKind) String() string {
+	return proto.EnumName(WatchActionKind_name, int32(x))
+}
+func (WatchActionKind) EnumDescriptor() ([]byte, []int) { return fileDescriptorWatch, []int{0} }
+
+type Object struct {
+	// Types that are valid to be assigned to Object:
+	//	*Object_Node
+	//	*Object_Service
+	//	*Object_Network
+	//	*Object_Task
+	//	*Object_Cluster
+	//	*Object_Secret
+	//	*Object_Resource
+	//	*Object_Extension
+	//	*Object_Config
+	Object isObject_Object `protobuf_oneof:"Object"`
+}
+
+func (m *Object) Reset()                    { *m = Object{} }
+func (*Object) ProtoMessage()               {}
+func (*Object) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{0} }
+
+type isObject_Object interface {
+	isObject_Object()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type Object_Node struct {
+	Node *Node `protobuf:"bytes,1,opt,name=node,oneof"`
+}
+type Object_Service struct {
+	Service *Service `protobuf:"bytes,2,opt,name=service,oneof"`
+}
+type Object_Network struct {
+	Network *Network `protobuf:"bytes,3,opt,name=network,oneof"`
+}
+type Object_Task struct {
+	Task *Task `protobuf:"bytes,4,opt,name=task,oneof"`
+}
+type Object_Cluster struct {
+	Cluster *Cluster `protobuf:"bytes,5,opt,name=cluster,oneof"`
+}
+type Object_Secret struct {
+	Secret *Secret `protobuf:"bytes,6,opt,name=secret,oneof"`
+}
+type Object_Resource struct {
+	Resource *Resource `protobuf:"bytes,7,opt,name=resource,oneof"`
+}
+type Object_Extension struct {
+	Extension *Extension `protobuf:"bytes,8,opt,name=extension,oneof"`
+}
+type Object_Config struct {
+	Config *Config `protobuf:"bytes,9,opt,name=config,oneof"`
+}
+
+func (*Object_Node) isObject_Object()      {}
+func (*Object_Service) isObject_Object()   {}
+func (*Object_Network) isObject_Object()   {}
+func (*Object_Task) isObject_Object()      {}
+func (*Object_Cluster) isObject_Object()   {}
+func (*Object_Secret) isObject_Object()    {}
+func (*Object_Resource) isObject_Object()  {}
+func (*Object_Extension) isObject_Object() {}
+func (*Object_Config) isObject_Object()    {}
+
+func (m *Object) GetObject() isObject_Object {
+	if m != nil {
+		return m.Object
+	}
+	return nil
+}
+
+func (m *Object) GetNode() *Node {
+	if x, ok := m.GetObject().(*Object_Node); ok {
+		return x.Node
+	}
+	return nil
+}
+
+func (m *Object) GetService() *Service {
+	if x, ok := m.GetObject().(*Object_Service); ok {
+		return x.Service
+	}
+	return nil
+}
+
+func (m *Object) GetNetwork() *Network {
+	if x, ok := m.GetObject().(*Object_Network); ok {
+		return x.Network
+	}
+	return nil
+}
+
+func (m *Object) GetTask() *Task {
+	if x, ok := m.GetObject().(*Object_Task); ok {
+		return x.Task
+	}
+	return nil
+}
+
+func (m *Object) GetCluster() *Cluster {
+	if x, ok := m.GetObject().(*Object_Cluster); ok {
+		return x.Cluster
+	}
+	return nil
+}
+
+func (m *Object) GetSecret() *Secret {
+	if x, ok := m.GetObject().(*Object_Secret); ok {
+		return x.Secret
+	}
+	return nil
+}
+
+func (m *Object) GetResource() *Resource {
+	if x, ok := m.GetObject().(*Object_Resource); ok {
+		return x.Resource
+	}
+	return nil
+}
+
+func (m *Object) GetExtension() *Extension {
+	if x, ok := m.GetObject().(*Object_Extension); ok {
+		return x.Extension
+	}
+	return nil
+}
+
+func (m *Object) GetConfig() *Config {
+	if x, ok := m.GetObject().(*Object_Config); ok {
+		return x.Config
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*Object) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _Object_OneofMarshaler, _Object_OneofUnmarshaler, _Object_OneofSizer, []interface{}{
+		(*Object_Node)(nil),
+		(*Object_Service)(nil),
+		(*Object_Network)(nil),
+		(*Object_Task)(nil),
+		(*Object_Cluster)(nil),
+		(*Object_Secret)(nil),
+		(*Object_Resource)(nil),
+		(*Object_Extension)(nil),
+		(*Object_Config)(nil),
+	}
+}
+
+func _Object_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*Object)
+	// Object
+	switch x := m.Object.(type) {
+	case *Object_Node:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Node); err != nil {
+			return err
+		}
+	case *Object_Service:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Service); err != nil {
+			return err
+		}
+	case *Object_Network:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Network); err != nil {
+			return err
+		}
+	case *Object_Task:
+		_ = b.EncodeVarint(4<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Task); err != nil {
+			return err
+		}
+	case *Object_Cluster:
+		_ = b.EncodeVarint(5<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Cluster); err != nil {
+			return err
+		}
+	case *Object_Secret:
+		_ = b.EncodeVarint(6<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Secret); err != nil {
+			return err
+		}
+	case *Object_Resource:
+		_ = b.EncodeVarint(7<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Resource); err != nil {
+			return err
+		}
+	case *Object_Extension:
+		_ = b.EncodeVarint(8<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Extension); err != nil {
+			return err
+		}
+	case *Object_Config:
+		_ = b.EncodeVarint(9<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Config); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("Object.Object has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _Object_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*Object)
+	switch tag {
+	case 1: // Object.node
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Node)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Node{msg}
+		return true, err
+	case 2: // Object.service
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Service)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Service{msg}
+		return true, err
+	case 3: // Object.network
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Network)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Network{msg}
+		return true, err
+	case 4: // Object.task
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Task)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Task{msg}
+		return true, err
+	case 5: // Object.cluster
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Cluster)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Cluster{msg}
+		return true, err
+	case 6: // Object.secret
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Secret)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Secret{msg}
+		return true, err
+	case 7: // Object.resource
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Resource)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Resource{msg}
+		return true, err
+	case 8: // Object.extension
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Extension)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Extension{msg}
+		return true, err
+	case 9: // Object.config
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Config)
+		err := b.DecodeMessage(msg)
+		m.Object = &Object_Config{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _Object_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*Object)
+	// Object
+	switch x := m.Object.(type) {
+	case *Object_Node:
+		s := proto.Size(x.Node)
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Service:
+		s := proto.Size(x.Service)
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Network:
+		s := proto.Size(x.Network)
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Task:
+		s := proto.Size(x.Task)
+		n += proto.SizeVarint(4<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Cluster:
+		s := proto.Size(x.Cluster)
+		n += proto.SizeVarint(5<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Secret:
+		s := proto.Size(x.Secret)
+		n += proto.SizeVarint(6<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Resource:
+		s := proto.Size(x.Resource)
+		n += proto.SizeVarint(7<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Extension:
+		s := proto.Size(x.Extension)
+		n += proto.SizeVarint(8<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Object_Config:
+		s := proto.Size(x.Config)
+		n += proto.SizeVarint(9<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// FIXME(aaronl): These messages should ideally be embedded in SelectBy, but
+// protoc generates bad code for that.
+type SelectBySlot struct {
+	ServiceID string `protobuf:"bytes,1,opt,name=service_id,json=serviceId,proto3" json:"service_id,omitempty"`
+	Slot      uint64 `protobuf:"varint,2,opt,name=slot,proto3" json:"slot,omitempty"`
+}
+
+func (m *SelectBySlot) Reset()                    { *m = SelectBySlot{} }
+func (*SelectBySlot) ProtoMessage()               {}
+func (*SelectBySlot) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{1} }
+
+type SelectByCustom struct {
+	Kind  string `protobuf:"bytes,1,opt,name=kind,proto3" json:"kind,omitempty"`
+	Index string `protobuf:"bytes,2,opt,name=index,proto3" json:"index,omitempty"`
+	Value string `protobuf:"bytes,3,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *SelectByCustom) Reset()                    { *m = SelectByCustom{} }
+func (*SelectByCustom) ProtoMessage()               {}
+func (*SelectByCustom) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{2} }
+
+type SelectBy struct {
+	// TODO(aaronl): Are all of these things we want to expose in
+	// the API? Exposing them may commit us to maintaining those
+	// internal indices going forward.
+	//
+	// Types that are valid to be assigned to By:
+	//	*SelectBy_ID
+	//	*SelectBy_IDPrefix
+	//	*SelectBy_Name
+	//	*SelectBy_NamePrefix
+	//	*SelectBy_Custom
+	//	*SelectBy_CustomPrefix
+	//	*SelectBy_ServiceID
+	//	*SelectBy_NodeID
+	//	*SelectBy_Slot
+	//	*SelectBy_DesiredState
+	//	*SelectBy_Role
+	//	*SelectBy_Membership
+	//	*SelectBy_ReferencedNetworkID
+	//	*SelectBy_ReferencedSecretID
+	//	*SelectBy_ReferencedConfigID
+	//	*SelectBy_Kind
+	By isSelectBy_By `protobuf_oneof:"By"`
+}
+
+func (m *SelectBy) Reset()                    { *m = SelectBy{} }
+func (*SelectBy) ProtoMessage()               {}
+func (*SelectBy) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{3} }
+
+type isSelectBy_By interface {
+	isSelectBy_By()
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type SelectBy_ID struct {
+	ID string `protobuf:"bytes,1,opt,name=id,proto3,oneof"`
+}
+type SelectBy_IDPrefix struct {
+	IDPrefix string `protobuf:"bytes,2,opt,name=id_prefix,json=idPrefix,proto3,oneof"`
+}
+type SelectBy_Name struct {
+	Name string `protobuf:"bytes,3,opt,name=name,proto3,oneof"`
+}
+type SelectBy_NamePrefix struct {
+	NamePrefix string `protobuf:"bytes,4,opt,name=name_prefix,json=namePrefix,proto3,oneof"`
+}
+type SelectBy_Custom struct {
+	Custom *SelectByCustom `protobuf:"bytes,5,opt,name=custom,oneof"`
+}
+type SelectBy_CustomPrefix struct {
+	CustomPrefix *SelectByCustom `protobuf:"bytes,6,opt,name=custom_prefix,json=customPrefix,oneof"`
+}
+type SelectBy_ServiceID struct {
+	ServiceID string `protobuf:"bytes,7,opt,name=service_id,json=serviceId,proto3,oneof"`
+}
+type SelectBy_NodeID struct {
+	NodeID string `protobuf:"bytes,8,opt,name=node_id,json=nodeId,proto3,oneof"`
+}
+type SelectBy_Slot struct {
+	Slot *SelectBySlot `protobuf:"bytes,9,opt,name=slot,oneof"`
+}
+type SelectBy_DesiredState struct {
+	DesiredState TaskState `protobuf:"varint,10,opt,name=desired_state,json=desiredState,proto3,enum=docker.swarmkit.v1.TaskState,oneof"`
+}
+type SelectBy_Role struct {
+	Role NodeRole `protobuf:"varint,11,opt,name=role,proto3,enum=docker.swarmkit.v1.NodeRole,oneof"`
+}
+type SelectBy_Membership struct {
+	Membership NodeSpec_Membership `protobuf:"varint,12,opt,name=membership,proto3,enum=docker.swarmkit.v1.NodeSpec_Membership,oneof"`
+}
+type SelectBy_ReferencedNetworkID struct {
+	ReferencedNetworkID string `protobuf:"bytes,13,opt,name=referenced_network_id,json=referencedNetworkId,proto3,oneof"`
+}
+type SelectBy_ReferencedSecretID struct {
+	ReferencedSecretID string `protobuf:"bytes,14,opt,name=referenced_secret_id,json=referencedSecretId,proto3,oneof"`
+}
+type SelectBy_ReferencedConfigID struct {
+	ReferencedConfigID string `protobuf:"bytes,16,opt,name=referenced_config_id,json=referencedConfigId,proto3,oneof"`
+}
+type SelectBy_Kind struct {
+	Kind string `protobuf:"bytes,15,opt,name=kind,proto3,oneof"`
+}
+
+func (*SelectBy_ID) isSelectBy_By()                  {}
+func (*SelectBy_IDPrefix) isSelectBy_By()            {}
+func (*SelectBy_Name) isSelectBy_By()                {}
+func (*SelectBy_NamePrefix) isSelectBy_By()          {}
+func (*SelectBy_Custom) isSelectBy_By()              {}
+func (*SelectBy_CustomPrefix) isSelectBy_By()        {}
+func (*SelectBy_ServiceID) isSelectBy_By()           {}
+func (*SelectBy_NodeID) isSelectBy_By()              {}
+func (*SelectBy_Slot) isSelectBy_By()                {}
+func (*SelectBy_DesiredState) isSelectBy_By()        {}
+func (*SelectBy_Role) isSelectBy_By()                {}
+func (*SelectBy_Membership) isSelectBy_By()          {}
+func (*SelectBy_ReferencedNetworkID) isSelectBy_By() {}
+func (*SelectBy_ReferencedSecretID) isSelectBy_By()  {}
+func (*SelectBy_ReferencedConfigID) isSelectBy_By()  {}
+func (*SelectBy_Kind) isSelectBy_By()                {}
+
+func (m *SelectBy) GetBy() isSelectBy_By {
+	if m != nil {
+		return m.By
+	}
+	return nil
+}
+
+func (m *SelectBy) GetID() string {
+	if x, ok := m.GetBy().(*SelectBy_ID); ok {
+		return x.ID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetIDPrefix() string {
+	if x, ok := m.GetBy().(*SelectBy_IDPrefix); ok {
+		return x.IDPrefix
+	}
+	return ""
+}
+
+func (m *SelectBy) GetName() string {
+	if x, ok := m.GetBy().(*SelectBy_Name); ok {
+		return x.Name
+	}
+	return ""
+}
+
+func (m *SelectBy) GetNamePrefix() string {
+	if x, ok := m.GetBy().(*SelectBy_NamePrefix); ok {
+		return x.NamePrefix
+	}
+	return ""
+}
+
+func (m *SelectBy) GetCustom() *SelectByCustom {
+	if x, ok := m.GetBy().(*SelectBy_Custom); ok {
+		return x.Custom
+	}
+	return nil
+}
+
+func (m *SelectBy) GetCustomPrefix() *SelectByCustom {
+	if x, ok := m.GetBy().(*SelectBy_CustomPrefix); ok {
+		return x.CustomPrefix
+	}
+	return nil
+}
+
+func (m *SelectBy) GetServiceID() string {
+	if x, ok := m.GetBy().(*SelectBy_ServiceID); ok {
+		return x.ServiceID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetNodeID() string {
+	if x, ok := m.GetBy().(*SelectBy_NodeID); ok {
+		return x.NodeID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetSlot() *SelectBySlot {
+	if x, ok := m.GetBy().(*SelectBy_Slot); ok {
+		return x.Slot
+	}
+	return nil
+}
+
+func (m *SelectBy) GetDesiredState() TaskState {
+	if x, ok := m.GetBy().(*SelectBy_DesiredState); ok {
+		return x.DesiredState
+	}
+	return TaskStateNew
+}
+
+func (m *SelectBy) GetRole() NodeRole {
+	if x, ok := m.GetBy().(*SelectBy_Role); ok {
+		return x.Role
+	}
+	return NodeRoleWorker
+}
+
+func (m *SelectBy) GetMembership() NodeSpec_Membership {
+	if x, ok := m.GetBy().(*SelectBy_Membership); ok {
+		return x.Membership
+	}
+	return NodeMembershipPending
+}
+
+func (m *SelectBy) GetReferencedNetworkID() string {
+	if x, ok := m.GetBy().(*SelectBy_ReferencedNetworkID); ok {
+		return x.ReferencedNetworkID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetReferencedSecretID() string {
+	if x, ok := m.GetBy().(*SelectBy_ReferencedSecretID); ok {
+		return x.ReferencedSecretID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetReferencedConfigID() string {
+	if x, ok := m.GetBy().(*SelectBy_ReferencedConfigID); ok {
+		return x.ReferencedConfigID
+	}
+	return ""
+}
+
+func (m *SelectBy) GetKind() string {
+	if x, ok := m.GetBy().(*SelectBy_Kind); ok {
+		return x.Kind
+	}
+	return ""
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*SelectBy) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _SelectBy_OneofMarshaler, _SelectBy_OneofUnmarshaler, _SelectBy_OneofSizer, []interface{}{
+		(*SelectBy_ID)(nil),
+		(*SelectBy_IDPrefix)(nil),
+		(*SelectBy_Name)(nil),
+		(*SelectBy_NamePrefix)(nil),
+		(*SelectBy_Custom)(nil),
+		(*SelectBy_CustomPrefix)(nil),
+		(*SelectBy_ServiceID)(nil),
+		(*SelectBy_NodeID)(nil),
+		(*SelectBy_Slot)(nil),
+		(*SelectBy_DesiredState)(nil),
+		(*SelectBy_Role)(nil),
+		(*SelectBy_Membership)(nil),
+		(*SelectBy_ReferencedNetworkID)(nil),
+		(*SelectBy_ReferencedSecretID)(nil),
+		(*SelectBy_ReferencedConfigID)(nil),
+		(*SelectBy_Kind)(nil),
+	}
+}
+
+func _SelectBy_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*SelectBy)
+	// By
+	switch x := m.By.(type) {
+	case *SelectBy_ID:
+		_ = b.EncodeVarint(1<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.ID)
+	case *SelectBy_IDPrefix:
+		_ = b.EncodeVarint(2<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.IDPrefix)
+	case *SelectBy_Name:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.Name)
+	case *SelectBy_NamePrefix:
+		_ = b.EncodeVarint(4<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.NamePrefix)
+	case *SelectBy_Custom:
+		_ = b.EncodeVarint(5<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Custom); err != nil {
+			return err
+		}
+	case *SelectBy_CustomPrefix:
+		_ = b.EncodeVarint(6<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.CustomPrefix); err != nil {
+			return err
+		}
+	case *SelectBy_ServiceID:
+		_ = b.EncodeVarint(7<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.ServiceID)
+	case *SelectBy_NodeID:
+		_ = b.EncodeVarint(8<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.NodeID)
+	case *SelectBy_Slot:
+		_ = b.EncodeVarint(9<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.Slot); err != nil {
+			return err
+		}
+	case *SelectBy_DesiredState:
+		_ = b.EncodeVarint(10<<3 | proto.WireVarint)
+		_ = b.EncodeVarint(uint64(x.DesiredState))
+	case *SelectBy_Role:
+		_ = b.EncodeVarint(11<<3 | proto.WireVarint)
+		_ = b.EncodeVarint(uint64(x.Role))
+	case *SelectBy_Membership:
+		_ = b.EncodeVarint(12<<3 | proto.WireVarint)
+		_ = b.EncodeVarint(uint64(x.Membership))
+	case *SelectBy_ReferencedNetworkID:
+		_ = b.EncodeVarint(13<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.ReferencedNetworkID)
+	case *SelectBy_ReferencedSecretID:
+		_ = b.EncodeVarint(14<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.ReferencedSecretID)
+	case *SelectBy_ReferencedConfigID:
+		_ = b.EncodeVarint(16<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.ReferencedConfigID)
+	case *SelectBy_Kind:
+		_ = b.EncodeVarint(15<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.Kind)
+	case nil:
+	default:
+		return fmt.Errorf("SelectBy.By has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _SelectBy_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*SelectBy)
+	switch tag {
+	case 1: // By.id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_ID{x}
+		return true, err
+	case 2: // By.id_prefix
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_IDPrefix{x}
+		return true, err
+	case 3: // By.name
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_Name{x}
+		return true, err
+	case 4: // By.name_prefix
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_NamePrefix{x}
+		return true, err
+	case 5: // By.custom
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(SelectByCustom)
+		err := b.DecodeMessage(msg)
+		m.By = &SelectBy_Custom{msg}
+		return true, err
+	case 6: // By.custom_prefix
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(SelectByCustom)
+		err := b.DecodeMessage(msg)
+		m.By = &SelectBy_CustomPrefix{msg}
+		return true, err
+	case 7: // By.service_id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_ServiceID{x}
+		return true, err
+	case 8: // By.node_id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_NodeID{x}
+		return true, err
+	case 9: // By.slot
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(SelectBySlot)
+		err := b.DecodeMessage(msg)
+		m.By = &SelectBy_Slot{msg}
+		return true, err
+	case 10: // By.desired_state
+		if wire != proto.WireVarint {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeVarint()
+		m.By = &SelectBy_DesiredState{TaskState(x)}
+		return true, err
+	case 11: // By.role
+		if wire != proto.WireVarint {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeVarint()
+		m.By = &SelectBy_Role{NodeRole(x)}
+		return true, err
+	case 12: // By.membership
+		if wire != proto.WireVarint {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeVarint()
+		m.By = &SelectBy_Membership{NodeSpec_Membership(x)}
+		return true, err
+	case 13: // By.referenced_network_id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_ReferencedNetworkID{x}
+		return true, err
+	case 14: // By.referenced_secret_id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_ReferencedSecretID{x}
+		return true, err
+	case 16: // By.referenced_config_id
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_ReferencedConfigID{x}
+		return true, err
+	case 15: // By.kind
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.By = &SelectBy_Kind{x}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _SelectBy_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*SelectBy)
+	// By
+	switch x := m.By.(type) {
+	case *SelectBy_ID:
+		n += proto.SizeVarint(1<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.ID)))
+		n += len(x.ID)
+	case *SelectBy_IDPrefix:
+		n += proto.SizeVarint(2<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.IDPrefix)))
+		n += len(x.IDPrefix)
+	case *SelectBy_Name:
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.Name)))
+		n += len(x.Name)
+	case *SelectBy_NamePrefix:
+		n += proto.SizeVarint(4<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.NamePrefix)))
+		n += len(x.NamePrefix)
+	case *SelectBy_Custom:
+		s := proto.Size(x.Custom)
+		n += proto.SizeVarint(5<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *SelectBy_CustomPrefix:
+		s := proto.Size(x.CustomPrefix)
+		n += proto.SizeVarint(6<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *SelectBy_ServiceID:
+		n += proto.SizeVarint(7<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.ServiceID)))
+		n += len(x.ServiceID)
+	case *SelectBy_NodeID:
+		n += proto.SizeVarint(8<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.NodeID)))
+		n += len(x.NodeID)
+	case *SelectBy_Slot:
+		s := proto.Size(x.Slot)
+		n += proto.SizeVarint(9<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *SelectBy_DesiredState:
+		n += proto.SizeVarint(10<<3 | proto.WireVarint)
+		n += proto.SizeVarint(uint64(x.DesiredState))
+	case *SelectBy_Role:
+		n += proto.SizeVarint(11<<3 | proto.WireVarint)
+		n += proto.SizeVarint(uint64(x.Role))
+	case *SelectBy_Membership:
+		n += proto.SizeVarint(12<<3 | proto.WireVarint)
+		n += proto.SizeVarint(uint64(x.Membership))
+	case *SelectBy_ReferencedNetworkID:
+		n += proto.SizeVarint(13<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.ReferencedNetworkID)))
+		n += len(x.ReferencedNetworkID)
+	case *SelectBy_ReferencedSecretID:
+		n += proto.SizeVarint(14<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.ReferencedSecretID)))
+		n += len(x.ReferencedSecretID)
+	case *SelectBy_ReferencedConfigID:
+		n += proto.SizeVarint(16<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.ReferencedConfigID)))
+		n += len(x.ReferencedConfigID)
+	case *SelectBy_Kind:
+		n += proto.SizeVarint(15<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.Kind)))
+		n += len(x.Kind)
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+type WatchRequest struct {
+	// Multiple entries are combined using OR logic - i.e. if an event
+	// matches all of the selectors specified in any single watch entry,
+	// the event will be sent to the client.
+	Entries []*WatchRequest_WatchEntry `protobuf:"bytes,1,rep,name=entries" json:"entries,omitempty"`
+	// ResumeFrom provides an version to resume the watch from, if non-nil.
+	// The watch will return changes since this version, and continue to
+	// return new changes afterwards. Watch will return an error if the
+	// server has compacted its log and no longer has complete history to
+	// this point.
+	ResumeFrom *Version `protobuf:"bytes,2,opt,name=resume_from,json=resumeFrom" json:"resume_from,omitempty"`
+	// IncludeOldObject causes WatchMessages to include a copy of the
+	// previous version of the object on updates. Note that only live
+	// changes will include the old object (not historical changes
+	// retrieved using ResumeFrom).
+	IncludeOldObject bool `protobuf:"varint,3,opt,name=include_old_object,json=includeOldObject,proto3" json:"include_old_object,omitempty"`
+}
+
+func (m *WatchRequest) Reset()                    { *m = WatchRequest{} }
+func (*WatchRequest) ProtoMessage()               {}
+func (*WatchRequest) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{4} }
+
+type WatchRequest_WatchEntry struct {
+	// Kind can contain a builtin type such as "node", "secret", etc. or
+	// the kind specified by a custom-defined object.
+	Kind string `protobuf:"bytes,1,opt,name=kind,proto3" json:"kind,omitempty"`
+	// Action (create/update/delete)
+	// This is a bitmask, so multiple actions may be OR'd together
+	Action WatchActionKind `protobuf:"varint,2,opt,name=action,proto3,enum=docker.swarmkit.v1.WatchActionKind" json:"action,omitempty"`
+	// Filters are combined using AND logic - an event must match
+	// all of them to pass the filter.
+	Filters []*SelectBy `protobuf:"bytes,3,rep,name=filters" json:"filters,omitempty"`
+}
+
+func (m *WatchRequest_WatchEntry) Reset()                    { *m = WatchRequest_WatchEntry{} }
+func (*WatchRequest_WatchEntry) ProtoMessage()               {}
+func (*WatchRequest_WatchEntry) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{4, 0} }
+
+// WatchMessage is the type of the stream that's returned to the client by
+// Watch. Note that the first item of this stream will always be a WatchMessage
+// with a nil Object, to signal that the stream has started.
+type WatchMessage struct {
+	Events []*WatchMessage_Event `protobuf:"bytes,1,rep,name=events" json:"events,omitempty"`
+	// Index versions this change to the data store. It can be used to
+	// resume the watch from this point.
+	Version *Version `protobuf:"bytes,2,opt,name=version" json:"version,omitempty"`
+}
+
+func (m *WatchMessage) Reset()                    { *m = WatchMessage{} }
+func (*WatchMessage) ProtoMessage()               {}
+func (*WatchMessage) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{5} }
+
+type WatchMessage_Event struct {
+	// Action (create/update/delete)
+	// Note that WatchMessage does not expose "commit" events that
+	// mark transaction boundaries.
+	Action WatchActionKind `protobuf:"varint,1,opt,name=action,proto3,enum=docker.swarmkit.v1.WatchActionKind" json:"action,omitempty"`
+	// Matched object
+	Object *Object `protobuf:"bytes,2,opt,name=object" json:"object,omitempty"`
+	// For updates, OldObject will optionally be included in the
+	// watch message, containing the previous version of the
+	// object, if IncludeOldObject was set in WatchRequest.
+	OldObject *Object `protobuf:"bytes,3,opt,name=old_object,json=oldObject" json:"old_object,omitempty"`
+}
+
+func (m *WatchMessage_Event) Reset()                    { *m = WatchMessage_Event{} }
+func (*WatchMessage_Event) ProtoMessage()               {}
+func (*WatchMessage_Event) Descriptor() ([]byte, []int) { return fileDescriptorWatch, []int{5, 0} }
+
+func init() {
+	proto.RegisterType((*Object)(nil), "docker.swarmkit.v1.Object")
+	proto.RegisterType((*SelectBySlot)(nil), "docker.swarmkit.v1.SelectBySlot")
+	proto.RegisterType((*SelectByCustom)(nil), "docker.swarmkit.v1.SelectByCustom")
+	proto.RegisterType((*SelectBy)(nil), "docker.swarmkit.v1.SelectBy")
+	proto.RegisterType((*WatchRequest)(nil), "docker.swarmkit.v1.WatchRequest")
+	proto.RegisterType((*WatchRequest_WatchEntry)(nil), "docker.swarmkit.v1.WatchRequest.WatchEntry")
+	proto.RegisterType((*WatchMessage)(nil), "docker.swarmkit.v1.WatchMessage")
+	proto.RegisterType((*WatchMessage_Event)(nil), "docker.swarmkit.v1.WatchMessage.Event")
+	proto.RegisterEnum("docker.swarmkit.v1.WatchActionKind", WatchActionKind_name, WatchActionKind_value)
+}
+
+type authenticatedWrapperWatchServer struct {
+	local     WatchServer
+	authorize func(context.Context, []string) error
+}
+
+func NewAuthenticatedWrapperWatchServer(local WatchServer, authorize func(context.Context, []string) error) WatchServer {
+	return &authenticatedWrapperWatchServer{
+		local:     local,
+		authorize: authorize,
+	}
+}
+
+func (p *authenticatedWrapperWatchServer) Watch(r *WatchRequest, stream Watch_WatchServer) error {
+
+	if err := p.authorize(stream.Context(), []string{"swarm-manager"}); err != nil {
+		return err
+	}
+	return p.local.Watch(r, stream)
+}
+
+func (m *Object) Copy() *Object {
+	if m == nil {
+		return nil
+	}
+	o := &Object{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *Object) CopyFrom(src interface{}) {
+
+	o := src.(*Object)
+	*m = *o
+	if o.Object != nil {
+		switch o.Object.(type) {
+		case *Object_Node:
+			v := Object_Node{
+				Node: &Node{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Node, o.GetNode())
+			m.Object = &v
+		case *Object_Service:
+			v := Object_Service{
+				Service: &Service{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Service, o.GetService())
+			m.Object = &v
+		case *Object_Network:
+			v := Object_Network{
+				Network: &Network{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Network, o.GetNetwork())
+			m.Object = &v
+		case *Object_Task:
+			v := Object_Task{
+				Task: &Task{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Task, o.GetTask())
+			m.Object = &v
+		case *Object_Cluster:
+			v := Object_Cluster{
+				Cluster: &Cluster{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Cluster, o.GetCluster())
+			m.Object = &v
+		case *Object_Secret:
+			v := Object_Secret{
+				Secret: &Secret{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Secret, o.GetSecret())
+			m.Object = &v
+		case *Object_Resource:
+			v := Object_Resource{
+				Resource: &Resource{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Resource, o.GetResource())
+			m.Object = &v
+		case *Object_Extension:
+			v := Object_Extension{
+				Extension: &Extension{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Extension, o.GetExtension())
+			m.Object = &v
+		case *Object_Config:
+			v := Object_Config{
+				Config: &Config{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Config, o.GetConfig())
+			m.Object = &v
+		}
+	}
+
+}
+
+func (m *SelectBySlot) Copy() *SelectBySlot {
+	if m == nil {
+		return nil
+	}
+	o := &SelectBySlot{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SelectBySlot) CopyFrom(src interface{}) {
+
+	o := src.(*SelectBySlot)
+	*m = *o
+}
+
+func (m *SelectByCustom) Copy() *SelectByCustom {
+	if m == nil {
+		return nil
+	}
+	o := &SelectByCustom{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SelectByCustom) CopyFrom(src interface{}) {
+
+	o := src.(*SelectByCustom)
+	*m = *o
+}
+
+func (m *SelectBy) Copy() *SelectBy {
+	if m == nil {
+		return nil
+	}
+	o := &SelectBy{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *SelectBy) CopyFrom(src interface{}) {
+
+	o := src.(*SelectBy)
+	*m = *o
+	if o.By != nil {
+		switch o.By.(type) {
+		case *SelectBy_ID:
+			v := SelectBy_ID{
+				ID: o.GetID(),
+			}
+			m.By = &v
+		case *SelectBy_IDPrefix:
+			v := SelectBy_IDPrefix{
+				IDPrefix: o.GetIDPrefix(),
+			}
+			m.By = &v
+		case *SelectBy_Name:
+			v := SelectBy_Name{
+				Name: o.GetName(),
+			}
+			m.By = &v
+		case *SelectBy_NamePrefix:
+			v := SelectBy_NamePrefix{
+				NamePrefix: o.GetNamePrefix(),
+			}
+			m.By = &v
+		case *SelectBy_Custom:
+			v := SelectBy_Custom{
+				Custom: &SelectByCustom{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Custom, o.GetCustom())
+			m.By = &v
+		case *SelectBy_CustomPrefix:
+			v := SelectBy_CustomPrefix{
+				CustomPrefix: &SelectByCustom{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.CustomPrefix, o.GetCustomPrefix())
+			m.By = &v
+		case *SelectBy_ServiceID:
+			v := SelectBy_ServiceID{
+				ServiceID: o.GetServiceID(),
+			}
+			m.By = &v
+		case *SelectBy_NodeID:
+			v := SelectBy_NodeID{
+				NodeID: o.GetNodeID(),
+			}
+			m.By = &v
+		case *SelectBy_Slot:
+			v := SelectBy_Slot{
+				Slot: &SelectBySlot{},
+			}
+			github_com_docker_swarmkit_api_deepcopy.Copy(v.Slot, o.GetSlot())
+			m.By = &v
+		case *SelectBy_DesiredState:
+			v := SelectBy_DesiredState{
+				DesiredState: o.GetDesiredState(),
+			}
+			m.By = &v
+		case *SelectBy_Role:
+			v := SelectBy_Role{
+				Role: o.GetRole(),
+			}
+			m.By = &v
+		case *SelectBy_Membership:
+			v := SelectBy_Membership{
+				Membership: o.GetMembership(),
+			}
+			m.By = &v
+		case *SelectBy_ReferencedNetworkID:
+			v := SelectBy_ReferencedNetworkID{
+				ReferencedNetworkID: o.GetReferencedNetworkID(),
+			}
+			m.By = &v
+		case *SelectBy_ReferencedSecretID:
+			v := SelectBy_ReferencedSecretID{
+				ReferencedSecretID: o.GetReferencedSecretID(),
+			}
+			m.By = &v
+		case *SelectBy_ReferencedConfigID:
+			v := SelectBy_ReferencedConfigID{
+				ReferencedConfigID: o.GetReferencedConfigID(),
+			}
+			m.By = &v
+		case *SelectBy_Kind:
+			v := SelectBy_Kind{
+				Kind: o.GetKind(),
+			}
+			m.By = &v
+		}
+	}
+
+}
+
+func (m *WatchRequest) Copy() *WatchRequest {
+	if m == nil {
+		return nil
+	}
+	o := &WatchRequest{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WatchRequest) CopyFrom(src interface{}) {
+
+	o := src.(*WatchRequest)
+	*m = *o
+	if o.Entries != nil {
+		m.Entries = make([]*WatchRequest_WatchEntry, len(o.Entries))
+		for i := range m.Entries {
+			m.Entries[i] = &WatchRequest_WatchEntry{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Entries[i], o.Entries[i])
+		}
+	}
+
+	if o.ResumeFrom != nil {
+		m.ResumeFrom = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.ResumeFrom, o.ResumeFrom)
+	}
+}
+
+func (m *WatchRequest_WatchEntry) Copy() *WatchRequest_WatchEntry {
+	if m == nil {
+		return nil
+	}
+	o := &WatchRequest_WatchEntry{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WatchRequest_WatchEntry) CopyFrom(src interface{}) {
+
+	o := src.(*WatchRequest_WatchEntry)
+	*m = *o
+	if o.Filters != nil {
+		m.Filters = make([]*SelectBy, len(o.Filters))
+		for i := range m.Filters {
+			m.Filters[i] = &SelectBy{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Filters[i], o.Filters[i])
+		}
+	}
+
+}
+
+func (m *WatchMessage) Copy() *WatchMessage {
+	if m == nil {
+		return nil
+	}
+	o := &WatchMessage{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WatchMessage) CopyFrom(src interface{}) {
+
+	o := src.(*WatchMessage)
+	*m = *o
+	if o.Events != nil {
+		m.Events = make([]*WatchMessage_Event, len(o.Events))
+		for i := range m.Events {
+			m.Events[i] = &WatchMessage_Event{}
+			github_com_docker_swarmkit_api_deepcopy.Copy(m.Events[i], o.Events[i])
+		}
+	}
+
+	if o.Version != nil {
+		m.Version = &Version{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Version, o.Version)
+	}
+}
+
+func (m *WatchMessage_Event) Copy() *WatchMessage_Event {
+	if m == nil {
+		return nil
+	}
+	o := &WatchMessage_Event{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WatchMessage_Event) CopyFrom(src interface{}) {
+
+	o := src.(*WatchMessage_Event)
+	*m = *o
+	if o.Object != nil {
+		m.Object = &Object{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.Object, o.Object)
+	}
+	if o.OldObject != nil {
+		m.OldObject = &Object{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.OldObject, o.OldObject)
+	}
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Watch service
+
+type WatchClient interface {
+	// Watch starts a stream that returns any changes to objects that match
+	// the specified selectors. When the stream begins, it immediately sends
+	// an empty message back to the client. It is important to wait for
+	// this message before taking any actions that depend on an established
+	// stream of changes for consistency.
+	Watch(ctx context.Context, in *WatchRequest, opts ...grpc.CallOption) (Watch_WatchClient, error)
+}
+
+type watchClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewWatchClient(cc *grpc.ClientConn) WatchClient {
+	return &watchClient{cc}
+}
+
+func (c *watchClient) Watch(ctx context.Context, in *WatchRequest, opts ...grpc.CallOption) (Watch_WatchClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_Watch_serviceDesc.Streams[0], c.cc, "/docker.swarmkit.v1.Watch/Watch", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &watchWatchClient{stream}
+	if err := x.ClientStream.SendMsg(in); err != nil {
+		return nil, err
+	}
+	if err := x.ClientStream.CloseSend(); err != nil {
+		return nil, err
+	}
+	return x, nil
+}
+
+type Watch_WatchClient interface {
+	Recv() (*WatchMessage, error)
+	grpc.ClientStream
+}
+
+type watchWatchClient struct {
+	grpc.ClientStream
+}
+
+func (x *watchWatchClient) Recv() (*WatchMessage, error) {
+	m := new(WatchMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for Watch service
+
+type WatchServer interface {
+	// Watch starts a stream that returns any changes to objects that match
+	// the specified selectors. When the stream begins, it immediately sends
+	// an empty message back to the client. It is important to wait for
+	// this message before taking any actions that depend on an established
+	// stream of changes for consistency.
+	Watch(*WatchRequest, Watch_WatchServer) error
+}
+
+func RegisterWatchServer(s *grpc.Server, srv WatchServer) {
+	s.RegisterService(&_Watch_serviceDesc, srv)
+}
+
+func _Watch_Watch_Handler(srv interface{}, stream grpc.ServerStream) error {
+	m := new(WatchRequest)
+	if err := stream.RecvMsg(m); err != nil {
+		return err
+	}
+	return srv.(WatchServer).Watch(m, &watchWatchServer{stream})
+}
+
+type Watch_WatchServer interface {
+	Send(*WatchMessage) error
+	grpc.ServerStream
+}
+
+type watchWatchServer struct {
+	grpc.ServerStream
+}
+
+func (x *watchWatchServer) Send(m *WatchMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+var _Watch_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "docker.swarmkit.v1.Watch",
+	HandlerType: (*WatchServer)(nil),
+	Methods:     []grpc.MethodDesc{},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "Watch",
+			Handler:       _Watch_Watch_Handler,
+			ServerStreams: true,
+		},
+	},
+	Metadata: "github.com/docker/swarmkit/api/watch.proto",
+}
+
+func (m *Object) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Object) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Object != nil {
+		nn1, err := m.Object.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn1
+	}
+	return i, nil
+}
+
+func (m *Object_Node) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Node != nil {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Node.Size()))
+		n2, err := m.Node.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n2
+	}
+	return i, nil
+}
+func (m *Object_Service) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Service != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Service.Size()))
+		n3, err := m.Service.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	return i, nil
+}
+func (m *Object_Network) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Network != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Network.Size()))
+		n4, err := m.Network.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	return i, nil
+}
+func (m *Object_Task) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Task != nil {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Task.Size()))
+		n5, err := m.Task.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n5
+	}
+	return i, nil
+}
+func (m *Object_Cluster) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Cluster != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Cluster.Size()))
+		n6, err := m.Cluster.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n6
+	}
+	return i, nil
+}
+func (m *Object_Secret) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Secret != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Secret.Size()))
+		n7, err := m.Secret.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n7
+	}
+	return i, nil
+}
+func (m *Object_Resource) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Resource != nil {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Resource.Size()))
+		n8, err := m.Resource.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n8
+	}
+	return i, nil
+}
+func (m *Object_Extension) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Extension != nil {
+		dAtA[i] = 0x42
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Extension.Size()))
+		n9, err := m.Extension.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n9
+	}
+	return i, nil
+}
+func (m *Object_Config) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Config != nil {
+		dAtA[i] = 0x4a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Config.Size()))
+		n10, err := m.Config.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n10
+	}
+	return i, nil
+}
+func (m *SelectBySlot) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SelectBySlot) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.ServiceID) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(len(m.ServiceID)))
+		i += copy(dAtA[i:], m.ServiceID)
+	}
+	if m.Slot != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Slot))
+	}
+	return i, nil
+}
+
+func (m *SelectByCustom) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SelectByCustom) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if len(m.Index) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(len(m.Index)))
+		i += copy(dAtA[i:], m.Index)
+	}
+	if len(m.Value) > 0 {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func (m *SelectBy) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *SelectBy) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.By != nil {
+		nn11, err := m.By.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn11
+	}
+	return i, nil
+}
+
+func (m *SelectBy_ID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0xa
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.ID)))
+	i += copy(dAtA[i:], m.ID)
+	return i, nil
+}
+func (m *SelectBy_IDPrefix) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x12
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.IDPrefix)))
+	i += copy(dAtA[i:], m.IDPrefix)
+	return i, nil
+}
+func (m *SelectBy_Name) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.Name)))
+	i += copy(dAtA[i:], m.Name)
+	return i, nil
+}
+func (m *SelectBy_NamePrefix) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x22
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.NamePrefix)))
+	i += copy(dAtA[i:], m.NamePrefix)
+	return i, nil
+}
+func (m *SelectBy_Custom) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Custom != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Custom.Size()))
+		n12, err := m.Custom.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n12
+	}
+	return i, nil
+}
+func (m *SelectBy_CustomPrefix) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.CustomPrefix != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.CustomPrefix.Size()))
+		n13, err := m.CustomPrefix.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n13
+	}
+	return i, nil
+}
+func (m *SelectBy_ServiceID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x3a
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.ServiceID)))
+	i += copy(dAtA[i:], m.ServiceID)
+	return i, nil
+}
+func (m *SelectBy_NodeID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x42
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.NodeID)))
+	i += copy(dAtA[i:], m.NodeID)
+	return i, nil
+}
+func (m *SelectBy_Slot) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.Slot != nil {
+		dAtA[i] = 0x4a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Slot.Size()))
+		n14, err := m.Slot.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n14
+	}
+	return i, nil
+}
+func (m *SelectBy_DesiredState) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x50
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(m.DesiredState))
+	return i, nil
+}
+func (m *SelectBy_Role) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x58
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(m.Role))
+	return i, nil
+}
+func (m *SelectBy_Membership) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x60
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(m.Membership))
+	return i, nil
+}
+func (m *SelectBy_ReferencedNetworkID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x6a
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.ReferencedNetworkID)))
+	i += copy(dAtA[i:], m.ReferencedNetworkID)
+	return i, nil
+}
+func (m *SelectBy_ReferencedSecretID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x72
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.ReferencedSecretID)))
+	i += copy(dAtA[i:], m.ReferencedSecretID)
+	return i, nil
+}
+func (m *SelectBy_Kind) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x7a
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.Kind)))
+	i += copy(dAtA[i:], m.Kind)
+	return i, nil
+}
+func (m *SelectBy_ReferencedConfigID) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x82
+	i++
+	dAtA[i] = 0x1
+	i++
+	i = encodeVarintWatch(dAtA, i, uint64(len(m.ReferencedConfigID)))
+	i += copy(dAtA[i:], m.ReferencedConfigID)
+	return i, nil
+}
+func (m *WatchRequest) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WatchRequest) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Entries) > 0 {
+		for _, msg := range m.Entries {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintWatch(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.ResumeFrom != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.ResumeFrom.Size()))
+		n15, err := m.ResumeFrom.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n15
+	}
+	if m.IncludeOldObject {
+		dAtA[i] = 0x18
+		i++
+		if m.IncludeOldObject {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *WatchRequest_WatchEntry) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WatchRequest_WatchEntry) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Kind) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(len(m.Kind)))
+		i += copy(dAtA[i:], m.Kind)
+	}
+	if m.Action != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Action))
+	}
+	if len(m.Filters) > 0 {
+		for _, msg := range m.Filters {
+			dAtA[i] = 0x1a
+			i++
+			i = encodeVarintWatch(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func (m *WatchMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WatchMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Events) > 0 {
+		for _, msg := range m.Events {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintWatch(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	if m.Version != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Version.Size()))
+		n16, err := m.Version.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n16
+	}
+	return i, nil
+}
+
+func (m *WatchMessage_Event) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WatchMessage_Event) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Action != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Action))
+	}
+	if m.Object != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.Object.Size()))
+		n17, err := m.Object.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n17
+	}
+	if m.OldObject != nil {
+		dAtA[i] = 0x1a
+		i++
+		i = encodeVarintWatch(dAtA, i, uint64(m.OldObject.Size()))
+		n18, err := m.OldObject.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n18
+	}
+	return i, nil
+}
+
+func encodeFixed64Watch(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Watch(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintWatch(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+type raftProxyWatchServer struct {
+	local                       WatchServer
+	connSelector                raftselector.ConnProvider
+	localCtxMods, remoteCtxMods []func(context.Context) (context.Context, error)
+}
+
+func NewRaftProxyWatchServer(local WatchServer, connSelector raftselector.ConnProvider, localCtxMod, remoteCtxMod func(context.Context) (context.Context, error)) WatchServer {
+	redirectChecker := func(ctx context.Context) (context.Context, error) {
+		s, ok := transport.StreamFromContext(ctx)
+		if !ok {
+			return ctx, status.Errorf(codes.InvalidArgument, "remote addr is not found in context")
+		}
+		addr := s.ServerTransport().RemoteAddr().String()
+		md, ok := metadata.FromIncomingContext(ctx)
+		if ok && len(md["redirect"]) != 0 {
+			return ctx, status.Errorf(codes.ResourceExhausted, "more than one redirect to leader from: %s", md["redirect"])
+		}
+		if !ok {
+			md = metadata.New(map[string]string{})
+		}
+		md["redirect"] = append(md["redirect"], addr)
+		return metadata.NewOutgoingContext(ctx, md), nil
+	}
+	remoteMods := []func(context.Context) (context.Context, error){redirectChecker}
+	remoteMods = append(remoteMods, remoteCtxMod)
+
+	var localMods []func(context.Context) (context.Context, error)
+	if localCtxMod != nil {
+		localMods = []func(context.Context) (context.Context, error){localCtxMod}
+	}
+
+	return &raftProxyWatchServer{
+		local:         local,
+		connSelector:  connSelector,
+		localCtxMods:  localMods,
+		remoteCtxMods: remoteMods,
+	}
+}
+func (p *raftProxyWatchServer) runCtxMods(ctx context.Context, ctxMods []func(context.Context) (context.Context, error)) (context.Context, error) {
+	var err error
+	for _, mod := range ctxMods {
+		ctx, err = mod(ctx)
+		if err != nil {
+			return ctx, err
+		}
+	}
+	return ctx, nil
+}
+func (p *raftProxyWatchServer) pollNewLeaderConn(ctx context.Context) (*grpc.ClientConn, error) {
+	ticker := rafttime.NewTicker(500 * rafttime.Millisecond)
+	defer ticker.Stop()
+	for {
+		select {
+		case <-ticker.C:
+			conn, err := p.connSelector.LeaderConn(ctx)
+			if err != nil {
+				return nil, err
+			}
+
+			client := NewHealthClient(conn)
+
+			resp, err := client.Check(ctx, &HealthCheckRequest{Service: "Raft"})
+			if err != nil || resp.Status != HealthCheckResponse_SERVING {
+				continue
+			}
+			return conn, nil
+		case <-ctx.Done():
+			return nil, ctx.Err()
+		}
+	}
+}
+
+type Watch_WatchServerWrapper struct {
+	Watch_WatchServer
+	ctx context.Context
+}
+
+func (s Watch_WatchServerWrapper) Context() context.Context {
+	return s.ctx
+}
+
+func (p *raftProxyWatchServer) Watch(r *WatchRequest, stream Watch_WatchServer) error {
+	ctx := stream.Context()
+	conn, err := p.connSelector.LeaderConn(ctx)
+	if err != nil {
+		if err == raftselector.ErrIsLeader {
+			ctx, err = p.runCtxMods(ctx, p.localCtxMods)
+			if err != nil {
+				return err
+			}
+			streamWrapper := Watch_WatchServerWrapper{
+				Watch_WatchServer: stream,
+				ctx:               ctx,
+			}
+			return p.local.Watch(r, streamWrapper)
+		}
+		return err
+	}
+	ctx, err = p.runCtxMods(ctx, p.remoteCtxMods)
+	if err != nil {
+		return err
+	}
+	clientStream, err := NewWatchClient(conn).Watch(ctx, r)
+
+	if err != nil {
+		return err
+	}
+
+	for {
+		msg, err := clientStream.Recv()
+		if err == io.EOF {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		if err := stream.Send(msg); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (m *Object) Size() (n int) {
+	var l int
+	_ = l
+	if m.Object != nil {
+		n += m.Object.Size()
+	}
+	return n
+}
+
+func (m *Object_Node) Size() (n int) {
+	var l int
+	_ = l
+	if m.Node != nil {
+		l = m.Node.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Service) Size() (n int) {
+	var l int
+	_ = l
+	if m.Service != nil {
+		l = m.Service.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Network) Size() (n int) {
+	var l int
+	_ = l
+	if m.Network != nil {
+		l = m.Network.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Task) Size() (n int) {
+	var l int
+	_ = l
+	if m.Task != nil {
+		l = m.Task.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Cluster) Size() (n int) {
+	var l int
+	_ = l
+	if m.Cluster != nil {
+		l = m.Cluster.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Secret) Size() (n int) {
+	var l int
+	_ = l
+	if m.Secret != nil {
+		l = m.Secret.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Resource) Size() (n int) {
+	var l int
+	_ = l
+	if m.Resource != nil {
+		l = m.Resource.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Extension) Size() (n int) {
+	var l int
+	_ = l
+	if m.Extension != nil {
+		l = m.Extension.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *Object_Config) Size() (n int) {
+	var l int
+	_ = l
+	if m.Config != nil {
+		l = m.Config.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *SelectBySlot) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	if l > 0 {
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	if m.Slot != 0 {
+		n += 1 + sovWatch(uint64(m.Slot))
+	}
+	return n
+}
+
+func (m *SelectByCustom) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	l = len(m.Index)
+	if l > 0 {
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+
+func (m *SelectBy) Size() (n int) {
+	var l int
+	_ = l
+	if m.By != nil {
+		n += m.By.Size()
+	}
+	return n
+}
+
+func (m *SelectBy_ID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ID)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_IDPrefix) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.IDPrefix)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_Name) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Name)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_NamePrefix) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NamePrefix)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_Custom) Size() (n int) {
+	var l int
+	_ = l
+	if m.Custom != nil {
+		l = m.Custom.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *SelectBy_CustomPrefix) Size() (n int) {
+	var l int
+	_ = l
+	if m.CustomPrefix != nil {
+		l = m.CustomPrefix.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *SelectBy_ServiceID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ServiceID)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_NodeID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.NodeID)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_Slot) Size() (n int) {
+	var l int
+	_ = l
+	if m.Slot != nil {
+		l = m.Slot.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+func (m *SelectBy_DesiredState) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovWatch(uint64(m.DesiredState))
+	return n
+}
+func (m *SelectBy_Role) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovWatch(uint64(m.Role))
+	return n
+}
+func (m *SelectBy_Membership) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovWatch(uint64(m.Membership))
+	return n
+}
+func (m *SelectBy_ReferencedNetworkID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ReferencedNetworkID)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_ReferencedSecretID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ReferencedSecretID)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_Kind) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	n += 1 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *SelectBy_ReferencedConfigID) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.ReferencedConfigID)
+	n += 2 + l + sovWatch(uint64(l))
+	return n
+}
+func (m *WatchRequest) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Entries) > 0 {
+		for _, e := range m.Entries {
+			l = e.Size()
+			n += 1 + l + sovWatch(uint64(l))
+		}
+	}
+	if m.ResumeFrom != nil {
+		l = m.ResumeFrom.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	if m.IncludeOldObject {
+		n += 2
+	}
+	return n
+}
+
+func (m *WatchRequest_WatchEntry) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Kind)
+	if l > 0 {
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	if m.Action != 0 {
+		n += 1 + sovWatch(uint64(m.Action))
+	}
+	if len(m.Filters) > 0 {
+		for _, e := range m.Filters {
+			l = e.Size()
+			n += 1 + l + sovWatch(uint64(l))
+		}
+	}
+	return n
+}
+
+func (m *WatchMessage) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Events) > 0 {
+		for _, e := range m.Events {
+			l = e.Size()
+			n += 1 + l + sovWatch(uint64(l))
+		}
+	}
+	if m.Version != nil {
+		l = m.Version.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+
+func (m *WatchMessage_Event) Size() (n int) {
+	var l int
+	_ = l
+	if m.Action != 0 {
+		n += 1 + sovWatch(uint64(m.Action))
+	}
+	if m.Object != nil {
+		l = m.Object.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	if m.OldObject != nil {
+		l = m.OldObject.Size()
+		n += 1 + l + sovWatch(uint64(l))
+	}
+	return n
+}
+
+func sovWatch(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozWatch(x uint64) (n int) {
+	return sovWatch(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Object) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object{`,
+		`Object:` + fmt.Sprintf("%v", this.Object) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Node) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Node{`,
+		`Node:` + strings.Replace(fmt.Sprintf("%v", this.Node), "Node", "Node", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Service) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Service{`,
+		`Service:` + strings.Replace(fmt.Sprintf("%v", this.Service), "Service", "Service", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Network) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Network{`,
+		`Network:` + strings.Replace(fmt.Sprintf("%v", this.Network), "Network", "Network", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Task) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Task{`,
+		`Task:` + strings.Replace(fmt.Sprintf("%v", this.Task), "Task", "Task", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Cluster) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Cluster{`,
+		`Cluster:` + strings.Replace(fmt.Sprintf("%v", this.Cluster), "Cluster", "Cluster", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Secret) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Secret{`,
+		`Secret:` + strings.Replace(fmt.Sprintf("%v", this.Secret), "Secret", "Secret", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Resource) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Resource{`,
+		`Resource:` + strings.Replace(fmt.Sprintf("%v", this.Resource), "Resource", "Resource", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Extension) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Extension{`,
+		`Extension:` + strings.Replace(fmt.Sprintf("%v", this.Extension), "Extension", "Extension", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Object_Config) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Object_Config{`,
+		`Config:` + strings.Replace(fmt.Sprintf("%v", this.Config), "Config", "Config", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBySlot) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBySlot{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`Slot:` + fmt.Sprintf("%v", this.Slot) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectByCustom) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectByCustom{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Index:` + fmt.Sprintf("%v", this.Index) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy{`,
+		`By:` + fmt.Sprintf("%v", this.By) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_ID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_ID{`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_IDPrefix) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_IDPrefix{`,
+		`IDPrefix:` + fmt.Sprintf("%v", this.IDPrefix) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Name) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Name{`,
+		`Name:` + fmt.Sprintf("%v", this.Name) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_NamePrefix) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_NamePrefix{`,
+		`NamePrefix:` + fmt.Sprintf("%v", this.NamePrefix) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Custom) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Custom{`,
+		`Custom:` + strings.Replace(fmt.Sprintf("%v", this.Custom), "SelectByCustom", "SelectByCustom", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_CustomPrefix) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_CustomPrefix{`,
+		`CustomPrefix:` + strings.Replace(fmt.Sprintf("%v", this.CustomPrefix), "SelectByCustom", "SelectByCustom", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_ServiceID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_ServiceID{`,
+		`ServiceID:` + fmt.Sprintf("%v", this.ServiceID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_NodeID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_NodeID{`,
+		`NodeID:` + fmt.Sprintf("%v", this.NodeID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Slot) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Slot{`,
+		`Slot:` + strings.Replace(fmt.Sprintf("%v", this.Slot), "SelectBySlot", "SelectBySlot", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_DesiredState) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_DesiredState{`,
+		`DesiredState:` + fmt.Sprintf("%v", this.DesiredState) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Role) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Role{`,
+		`Role:` + fmt.Sprintf("%v", this.Role) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Membership) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Membership{`,
+		`Membership:` + fmt.Sprintf("%v", this.Membership) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_ReferencedNetworkID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_ReferencedNetworkID{`,
+		`ReferencedNetworkID:` + fmt.Sprintf("%v", this.ReferencedNetworkID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_ReferencedSecretID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_ReferencedSecretID{`,
+		`ReferencedSecretID:` + fmt.Sprintf("%v", this.ReferencedSecretID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_Kind) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_Kind{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *SelectBy_ReferencedConfigID) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&SelectBy_ReferencedConfigID{`,
+		`ReferencedConfigID:` + fmt.Sprintf("%v", this.ReferencedConfigID) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *WatchRequest) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WatchRequest{`,
+		`Entries:` + strings.Replace(fmt.Sprintf("%v", this.Entries), "WatchRequest_WatchEntry", "WatchRequest_WatchEntry", 1) + `,`,
+		`ResumeFrom:` + strings.Replace(fmt.Sprintf("%v", this.ResumeFrom), "Version", "Version", 1) + `,`,
+		`IncludeOldObject:` + fmt.Sprintf("%v", this.IncludeOldObject) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *WatchRequest_WatchEntry) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WatchRequest_WatchEntry{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`Action:` + fmt.Sprintf("%v", this.Action) + `,`,
+		`Filters:` + strings.Replace(fmt.Sprintf("%v", this.Filters), "SelectBy", "SelectBy", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *WatchMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WatchMessage{`,
+		`Events:` + strings.Replace(fmt.Sprintf("%v", this.Events), "WatchMessage_Event", "WatchMessage_Event", 1) + `,`,
+		`Version:` + strings.Replace(fmt.Sprintf("%v", this.Version), "Version", "Version", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *WatchMessage_Event) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WatchMessage_Event{`,
+		`Action:` + fmt.Sprintf("%v", this.Action) + `,`,
+		`Object:` + strings.Replace(fmt.Sprintf("%v", this.Object), "Object", "Object", 1) + `,`,
+		`OldObject:` + strings.Replace(fmt.Sprintf("%v", this.OldObject), "Object", "Object", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringWatch(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Object) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Object: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Object: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Node", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Node{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Node{v}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Service", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Service{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Service{v}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Network", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Network{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Network{v}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Task", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Task{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Task{v}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Cluster", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Cluster{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Cluster{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Secret", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Secret{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Secret{v}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Resource", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Resource{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Resource{v}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Extension", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Extension{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Extension{v}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Config", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Config{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Object = &Object_Config{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SelectBySlot) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SelectBySlot: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SelectBySlot: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.ServiceID = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Slot", wireType)
+			}
+			m.Slot = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Slot |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SelectByCustom) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SelectByCustom: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SelectByCustom: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Index", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Index = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *SelectBy) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: SelectBy: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: SelectBy: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_ID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefix", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_IDPrefix{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_Name{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefix", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_NamePrefix{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Custom", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &SelectByCustom{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.By = &SelectBy_Custom{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CustomPrefix", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &SelectByCustom{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.By = &SelectBy_CustomPrefix{v}
+			iNdEx = postIndex
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_ServiceID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 8:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_NodeID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 9:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Slot", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &SelectBySlot{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.By = &SelectBy_Slot{v}
+			iNdEx = postIndex
+		case 10:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DesiredState", wireType)
+			}
+			var v TaskState
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (TaskState(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.By = &SelectBy_DesiredState{v}
+		case 11:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			var v NodeRole
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (NodeRole(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.By = &SelectBy_Role{v}
+		case 12:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Membership", wireType)
+			}
+			var v NodeSpec_Membership
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (NodeSpec_Membership(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.By = &SelectBy_Membership{v}
+		case 13:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ReferencedNetworkID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_ReferencedNetworkID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 14:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ReferencedSecretID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_ReferencedSecretID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 15:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_Kind{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 16:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ReferencedConfigID", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.By = &SelectBy_ReferencedConfigID{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *WatchRequest) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: WatchRequest: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: WatchRequest: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Entries", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Entries = append(m.Entries, &WatchRequest_WatchEntry{})
+			if err := m.Entries[len(m.Entries)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ResumeFrom", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.ResumeFrom == nil {
+				m.ResumeFrom = &Version{}
+			}
+			if err := m.ResumeFrom.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IncludeOldObject", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.IncludeOldObject = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *WatchRequest_WatchEntry) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: WatchEntry: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: WatchEntry: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Action", wireType)
+			}
+			m.Action = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Action |= (WatchActionKind(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Filters", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Filters = append(m.Filters, &SelectBy{})
+			if err := m.Filters[len(m.Filters)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *WatchMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: WatchMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: WatchMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Events", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Events = append(m.Events, &WatchMessage_Event{})
+			if err := m.Events[len(m.Events)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Version", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Version == nil {
+				m.Version = &Version{}
+			}
+			if err := m.Version.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *WatchMessage_Event) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Event: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Event: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Action", wireType)
+			}
+			m.Action = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Action |= (WatchActionKind(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Object", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Object == nil {
+				m.Object = &Object{}
+			}
+			if err := m.Object.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field OldObject", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWatch
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.OldObject == nil {
+				m.OldObject = &Object{}
+			}
+			if err := m.OldObject.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWatch(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWatch
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipWatch(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowWatch
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWatch
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthWatch
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowWatch
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipWatch(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthWatch = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowWatch   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("github.com/docker/swarmkit/api/watch.proto", fileDescriptorWatch) }
+
+var fileDescriptorWatch = []byte{
+	// 1186 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x94, 0x96, 0xbd, 0x73, 0x1b, 0xc5,
+	0x1b, 0xc7, 0x75, 0x8a, 0x7c, 0x92, 0x1e, 0xdb, 0x89, 0x67, 0xe3, 0x24, 0xf7, 0xd3, 0x2f, 0xc8,
+	0x42, 0x0c, 0x90, 0x49, 0x82, 0x0c, 0x26, 0x24, 0x03, 0x04, 0x66, 0x2c, 0x59, 0x8c, 0x44, 0xc6,
+	0x2f, 0xb3, 0xb6, 0x93, 0x52, 0x73, 0xbe, 0x7b, 0xac, 0x1c, 0xba, 0xbb, 0x15, 0x7b, 0x27, 0x39,
+	0xee, 0x28, 0x28, 0x98, 0xf4, 0xcc, 0xd0, 0xa4, 0x82, 0x9a, 0x86, 0x0e, 0xfe, 0x81, 0x0c, 0x15,
+	0x25, 0x34, 0x1a, 0xa2, 0x92, 0x82, 0xbf, 0x80, 0x82, 0xd9, 0x97, 0xf3, 0x8b, 0x72, 0xb2, 0x49,
+	0xa5, 0xbd, 0xbd, 0xcf, 0xf7, 0xd9, 0x67, 0x9f, 0xb7, 0x13, 0xdc, 0xec, 0x7a, 0xf1, 0xe3, 0xc1,
+	0x5e, 0xcd, 0x61, 0xc1, 0xb2, 0xcb, 0x9c, 0x1e, 0xf2, 0xe5, 0xe8, 0xc0, 0xe6, 0x41, 0xcf, 0x8b,
+	0x97, 0xed, 0xbe, 0xb7, 0x7c, 0x60, 0xc7, 0xce, 0xe3, 0x5a, 0x9f, 0xb3, 0x98, 0x11, 0xa2, 0x80,
+	0x5a, 0x02, 0xd4, 0x86, 0xef, 0x95, 0xce, 0xd3, 0x47, 0x7d, 0x74, 0x22, 0xa5, 0x2f, 0xdd, 0x3e,
+	0x87, 0x65, 0x7b, 0x5f, 0xa0, 0x13, 0x27, 0xf4, 0x79, 0x96, 0xe3, 0xc3, 0x3e, 0x26, 0xec, 0x62,
+	0x97, 0x75, 0x99, 0x5c, 0x2e, 0x8b, 0x95, 0xde, 0xbd, 0x77, 0x86, 0x05, 0x49, 0xec, 0x0d, 0xf6,
+	0x97, 0xfb, 0xfe, 0xa0, 0xeb, 0x85, 0xfa, 0x47, 0x09, 0xab, 0x5f, 0xe7, 0xc0, 0xdc, 0x94, 0xce,
+	0x90, 0x1a, 0xe4, 0x42, 0xe6, 0xa2, 0x65, 0x54, 0x8c, 0x1b, 0xb3, 0x2b, 0x56, 0xed, 0xe5, 0x10,
+	0xd4, 0x36, 0x98, 0x8b, 0xad, 0x0c, 0x95, 0x1c, 0xb9, 0x07, 0xf9, 0x08, 0xf9, 0xd0, 0x73, 0xd0,
+	0xca, 0x4a, 0xc9, 0xff, 0xd3, 0x24, 0xdb, 0x0a, 0x69, 0x65, 0x68, 0x42, 0x0b, 0x61, 0x88, 0xf1,
+	0x01, 0xe3, 0x3d, 0xeb, 0xc2, 0x74, 0xe1, 0x86, 0x42, 0x84, 0x50, 0xd3, 0xc2, 0xc3, 0xd8, 0x8e,
+	0x7a, 0x56, 0x6e, 0xba, 0x87, 0x3b, 0x76, 0x24, 0x24, 0x92, 0x13, 0x07, 0x39, 0xfe, 0x20, 0x8a,
+	0x91, 0x5b, 0x33, 0xd3, 0x0f, 0x6a, 0x28, 0x44, 0x1c, 0xa4, 0x69, 0x72, 0x07, 0xcc, 0x08, 0x1d,
+	0x8e, 0xb1, 0x65, 0x4a, 0x5d, 0x29, 0xfd, 0x66, 0x82, 0x68, 0x65, 0xa8, 0x66, 0xc9, 0x47, 0x50,
+	0xe0, 0x18, 0xb1, 0x01, 0x77, 0xd0, 0xca, 0x4b, 0xdd, 0xf5, 0x34, 0x1d, 0xd5, 0x4c, 0x2b, 0x43,
+	0x8f, 0x78, 0xf2, 0x09, 0x14, 0xf1, 0x49, 0x8c, 0x61, 0xe4, 0xb1, 0xd0, 0x2a, 0x48, 0xf1, 0x6b,
+	0x69, 0xe2, 0x66, 0x02, 0xb5, 0x32, 0xf4, 0x58, 0x21, 0x1c, 0x76, 0x58, 0xb8, 0xef, 0x75, 0xad,
+	0xe2, 0x74, 0x87, 0x1b, 0x92, 0x10, 0x0e, 0x2b, 0xb6, 0x5e, 0x48, 0x72, 0x5f, 0xdd, 0x82, 0xb9,
+	0x6d, 0xf4, 0xd1, 0x89, 0xeb, 0x87, 0xdb, 0x3e, 0x8b, 0xc9, 0x6d, 0x00, 0x9d, 0xad, 0x8e, 0xe7,
+	0xca, 0x8a, 0x28, 0xd6, 0xe7, 0xc7, 0xa3, 0xa5, 0xa2, 0x4e, 0x67, 0x7b, 0x8d, 0x16, 0x35, 0xd0,
+	0x76, 0x09, 0x81, 0x5c, 0xe4, 0xb3, 0x58, 0x96, 0x41, 0x8e, 0xca, 0x75, 0x75, 0x0b, 0x2e, 0x26,
+	0x16, 0x1b, 0x83, 0x28, 0x66, 0x81, 0xa0, 0x7a, 0x5e, 0xa8, 0xad, 0x51, 0xb9, 0x26, 0x8b, 0x30,
+	0xe3, 0x85, 0x2e, 0x3e, 0x91, 0xd2, 0x22, 0x55, 0x0f, 0x62, 0x77, 0x68, 0xfb, 0x03, 0x94, 0xe5,
+	0x51, 0xa4, 0xea, 0xa1, 0xfa, 0x97, 0x09, 0x85, 0xc4, 0x24, 0xb1, 0x20, 0x7b, 0xe4, 0x98, 0x39,
+	0x1e, 0x2d, 0x65, 0xdb, 0x6b, 0xad, 0x0c, 0xcd, 0x7a, 0x2e, 0xb9, 0x05, 0x45, 0xcf, 0xed, 0xf4,
+	0x39, 0xee, 0x7b, 0xda, 0x6c, 0x7d, 0x6e, 0x3c, 0x5a, 0x2a, 0xb4, 0xd7, 0xb6, 0xe4, 0x9e, 0x08,
+	0xbb, 0xe7, 0xaa, 0x35, 0x59, 0x84, 0x5c, 0x68, 0x07, 0xfa, 0x20, 0x59, 0xd9, 0x76, 0x80, 0xe4,
+	0x75, 0x98, 0x15, 0xbf, 0x89, 0x91, 0x9c, 0x7e, 0x09, 0x62, 0x53, 0x0b, 0xef, 0x83, 0xe9, 0xc8,
+	0x6b, 0xe9, 0xca, 0xaa, 0xa6, 0x57, 0xc8, 0xc9, 0x00, 0xc8, 0xc0, 0xab, 0x50, 0xb4, 0x61, 0x5e,
+	0xad, 0x92, 0x23, 0xcc, 0x57, 0x30, 0x32, 0xa7, 0xa4, 0xda, 0x91, 0xda, 0xa9, 0x4c, 0xe5, 0x53,
+	0x32, 0x25, 0x2a, 0xe5, 0x38, 0x57, 0x6f, 0x42, 0x5e, 0x74, 0xaf, 0x80, 0x0b, 0x12, 0x86, 0xf1,
+	0x68, 0xc9, 0x14, 0x8d, 0x2d, 0x49, 0x53, 0xbc, 0x6c, 0xbb, 0xe4, 0xae, 0x4e, 0xa9, 0x2a, 0xa7,
+	0xca, 0x59, 0x8e, 0x89, 0x82, 0x11, 0xa1, 0x13, 0x3c, 0x59, 0x83, 0x79, 0x17, 0x23, 0x8f, 0xa3,
+	0xdb, 0x89, 0x62, 0x3b, 0x46, 0x0b, 0x2a, 0xc6, 0x8d, 0x8b, 0xe9, 0xb5, 0x2c, 0x7a, 0x75, 0x5b,
+	0x40, 0xe2, 0x52, 0x5a, 0x25, 0x9f, 0xc9, 0x0a, 0xe4, 0x38, 0xf3, 0xd1, 0x9a, 0x95, 0xe2, 0xeb,
+	0xd3, 0x46, 0x11, 0x65, 0xbe, 0x1c, 0x47, 0x82, 0x25, 0x6d, 0x80, 0x00, 0x83, 0x3d, 0xe4, 0xd1,
+	0x63, 0xaf, 0x6f, 0xcd, 0x49, 0xe5, 0xdb, 0xd3, 0x94, 0xdb, 0x7d, 0x74, 0x6a, 0xeb, 0x47, 0xb8,
+	0x48, 0xee, 0xb1, 0x98, 0xac, 0xc3, 0x15, 0x8e, 0xfb, 0xc8, 0x31, 0x74, 0xd0, 0xed, 0xe8, 0xe9,
+	0x23, 0x22, 0x36, 0x2f, 0x23, 0x76, 0x6d, 0x3c, 0x5a, 0xba, 0x4c, 0x8f, 0x00, 0x3d, 0xa8, 0x64,
+	0xf8, 0x2e, 0xf3, 0x97, 0xb6, 0x5d, 0xf2, 0x39, 0x2c, 0x9e, 0x30, 0xa7, 0x86, 0x85, 0xb0, 0x76,
+	0x51, 0x5a, 0xbb, 0x3a, 0x1e, 0x2d, 0x91, 0x63, 0x6b, 0x6a, 0xaa, 0x48, 0x63, 0x84, 0x4f, 0xee,
+	0x8a, 0x86, 0x51, 0x4d, 0x74, 0x29, 0x29, 0x58, 0xd9, 0x46, 0xa7, 0x4f, 0x50, 0xdd, 0x2d, 0x4e,
+	0x58, 0x48, 0x3b, 0x41, 0x8d, 0x81, 0xc9, 0x13, 0xf4, 0xae, 0x5b, 0xcf, 0x41, 0xb6, 0x7e, 0x58,
+	0xfd, 0x23, 0x0b, 0x73, 0x8f, 0xc4, 0x07, 0x91, 0xe2, 0x97, 0x03, 0x8c, 0x62, 0xd2, 0x84, 0x3c,
+	0x86, 0x31, 0xf7, 0x30, 0xb2, 0x8c, 0xca, 0x85, 0x1b, 0xb3, 0x2b, 0xb7, 0xd2, 0x62, 0x7b, 0x52,
+	0xa2, 0x1e, 0x9a, 0x61, 0xcc, 0x0f, 0x69, 0xa2, 0x25, 0xf7, 0x61, 0x96, 0x63, 0x34, 0x08, 0xb0,
+	0xb3, 0xcf, 0x59, 0x70, 0xd6, 0x87, 0xe3, 0x21, 0x72, 0x31, 0xda, 0x28, 0x28, 0xfe, 0x33, 0xce,
+	0x02, 0x72, 0x1b, 0x88, 0x17, 0x3a, 0xfe, 0xc0, 0xc5, 0x0e, 0xf3, 0xdd, 0x8e, 0xfa, 0x8a, 0xca,
+	0xe6, 0x2d, 0xd0, 0x05, 0xfd, 0x66, 0xd3, 0x77, 0xd5, 0x50, 0x2b, 0x7d, 0x6b, 0x00, 0x1c, 0xfb,
+	0x90, 0x3a, 0x7f, 0x3e, 0x06, 0xd3, 0x76, 0x62, 0x31, 0x73, 0xb3, 0xb2, 0x60, 0xde, 0x98, 0x7a,
+	0xa9, 0x55, 0x89, 0x3d, 0xf0, 0x42, 0x97, 0x6a, 0x09, 0xb9, 0x0b, 0xf9, 0x7d, 0xcf, 0x8f, 0x91,
+	0x47, 0xd6, 0x05, 0x19, 0x92, 0xeb, 0x67, 0xb5, 0x09, 0x4d, 0xe0, 0xea, 0x2f, 0x49, 0x6c, 0xd7,
+	0x31, 0x8a, 0xec, 0x2e, 0x92, 0x4f, 0xc1, 0xc4, 0x21, 0x86, 0x71, 0x12, 0xda, 0xb7, 0xa6, 0x7a,
+	0xa1, 0x15, 0xb5, 0xa6, 0xc0, 0xa9, 0x56, 0x91, 0x0f, 0x20, 0x3f, 0x54, 0xd1, 0xfa, 0x2f, 0x01,
+	0x4d, 0xd8, 0xd2, 0x4f, 0x06, 0xcc, 0x48, 0x43, 0x27, 0xc2, 0x60, 0xbc, 0x7a, 0x18, 0x56, 0xc0,
+	0xd4, 0x89, 0xc8, 0x4e, 0xff, 0xf6, 0xa8, 0x94, 0x50, 0x4d, 0x92, 0x0f, 0x01, 0x26, 0x12, 0x78,
+	0xb6, 0xae, 0xc8, 0x92, 0xac, 0xde, 0xfc, 0xc7, 0x80, 0x4b, 0x13, 0xae, 0x90, 0x3b, 0xb0, 0xf8,
+	0x68, 0x75, 0xa7, 0xd1, 0xea, 0xac, 0x36, 0x76, 0xda, 0x9b, 0x1b, 0x9d, 0xdd, 0x8d, 0x07, 0x1b,
+	0x9b, 0x8f, 0x36, 0x16, 0x32, 0xa5, 0xd2, 0xd3, 0x67, 0x95, 0xab, 0x13, 0xf8, 0x6e, 0xd8, 0x0b,
+	0xd9, 0x81, 0x70, 0xfc, 0xf2, 0x29, 0x55, 0x83, 0x36, 0x57, 0x77, 0x9a, 0x0b, 0x46, 0xe9, 0x7f,
+	0x4f, 0x9f, 0x55, 0xae, 0x4c, 0x88, 0x1a, 0x1c, 0xd5, 0x64, 0x3a, 0xad, 0xd9, 0xdd, 0x5a, 0x13,
+	0x9a, 0x6c, 0xaa, 0x66, 0xb7, 0xef, 0xa6, 0x69, 0x68, 0x73, 0x7d, 0xf3, 0x61, 0x73, 0x21, 0x97,
+	0xaa, 0xa1, 0x18, 0xb0, 0x21, 0x96, 0xae, 0x7d, 0xf3, 0x7d, 0x39, 0xf3, 0xf3, 0x0f, 0xe5, 0xc9,
+	0xab, 0xae, 0x04, 0x30, 0x23, 0xb7, 0x88, 0x9b, 0x2c, 0x2a, 0xe7, 0x35, 0x62, 0xa9, 0x72, 0x5e,
+	0x3d, 0x55, 0xaf, 0xfc, 0xfa, 0xe3, 0xdf, 0xdf, 0x65, 0x2f, 0xc1, 0xbc, 0x24, 0xde, 0x09, 0xec,
+	0xd0, 0xee, 0x22, 0x7f, 0xd7, 0xa8, 0x5b, 0xcf, 0x5f, 0x94, 0x33, 0xbf, 0xbf, 0x28, 0x67, 0xbe,
+	0x1a, 0x97, 0x8d, 0xe7, 0xe3, 0xb2, 0xf1, 0xdb, 0xb8, 0x6c, 0xfc, 0x39, 0x2e, 0x1b, 0x7b, 0xa6,
+	0xfc, 0x03, 0xf9, 0xfe, 0xbf, 0x01, 0x00, 0x00, 0xff, 0xff, 0xe6, 0x76, 0x89, 0xef, 0x57, 0x0b,
+	0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/log/context.go b/vendor/github.com/docker/swarmkit/log/context.go
new file mode 100644
index 0000000000..ac4f848806
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/log/context.go
@@ -0,0 +1,96 @@
+package log
+
+import (
+	"path"
+
+	"github.com/sirupsen/logrus"
+	"golang.org/x/net/context"
+)
+
+var (
+	// G is an alias for GetLogger.
+	//
+	// We may want to define this locally to a package to get package tagged log
+	// messages.
+	G = GetLogger
+
+	// L is an alias for the the standard logger.
+	L = logrus.NewEntry(logrus.StandardLogger())
+)
+
+type (
+	loggerKey struct{}
+	moduleKey struct{}
+)
+
+// WithLogger returns a new context with the provided logger. Use in
+// combination with logger.WithField(s) for great effect.
+func WithLogger(ctx context.Context, logger *logrus.Entry) context.Context {
+	return context.WithValue(ctx, loggerKey{}, logger)
+}
+
+// WithFields returns a new context with added fields to logger.
+func WithFields(ctx context.Context, fields logrus.Fields) context.Context {
+	logger := ctx.Value(loggerKey{})
+
+	if logger == nil {
+		logger = L
+	}
+	return WithLogger(ctx, logger.(*logrus.Entry).WithFields(fields))
+}
+
+// WithField is convenience wrapper around WithFields.
+func WithField(ctx context.Context, key, value string) context.Context {
+	return WithFields(ctx, logrus.Fields{key: value})
+}
+
+// GetLogger retrieves the current logger from the context. If no logger is
+// available, the default logger is returned.
+func GetLogger(ctx context.Context) *logrus.Entry {
+	logger := ctx.Value(loggerKey{})
+
+	if logger == nil {
+		return L
+	}
+
+	return logger.(*logrus.Entry)
+}
+
+// WithModule adds the module to the context, appending it with a slash if a
+// module already exists. A module is just a roughly correlated defined by the
+// call tree for a given context.
+//
+// As an example, we might have a "node" module already part of a context. If
+// this function is called with "tls", the new value of module will be
+// "node/tls".
+//
+// Modules represent the call path. If the new module and last module are the
+// same, a new module entry will not be created. If the new module and old
+// older module are the same but separated by other modules, the cycle will be
+// represented by the module path.
+func WithModule(ctx context.Context, module string) context.Context {
+	parent := GetModulePath(ctx)
+
+	if parent != "" {
+		// don't re-append module when module is the same.
+		if path.Base(parent) == module {
+			return ctx
+		}
+
+		module = path.Join(parent, module)
+	}
+
+	ctx = WithLogger(ctx, GetLogger(ctx).WithField("module", module))
+	return context.WithValue(ctx, moduleKey{}, module)
+}
+
+// GetModulePath returns the module path for the provided context. If no module
+// is set, an empty string is returned.
+func GetModulePath(ctx context.Context) string {
+	module := ctx.Value(moduleKey{})
+	if module == nil {
+		return ""
+	}
+
+	return module.(string)
+}
diff --git a/vendor/github.com/docker/swarmkit/log/grpc.go b/vendor/github.com/docker/swarmkit/log/grpc.go
new file mode 100644
index 0000000000..4978d49730
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/log/grpc.go
@@ -0,0 +1,13 @@
+package log
+
+import (
+	"golang.org/x/net/context"
+	"google.golang.org/grpc/grpclog"
+)
+
+func init() {
+	ctx := WithModule(context.Background(), "grpc")
+
+	// completely replace the grpc logger with the logrus logger.
+	grpclog.SetLogger(G(ctx))
+}
diff --git a/vendor/github.com/docker/swarmkit/manager/raftselector/raftselector.go b/vendor/github.com/docker/swarmkit/manager/raftselector/raftselector.go
new file mode 100644
index 0000000000..89e7918a3d
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/manager/raftselector/raftselector.go
@@ -0,0 +1,20 @@
+package raftselector
+
+import (
+	"errors"
+
+	"golang.org/x/net/context"
+
+	"google.golang.org/grpc"
+)
+
+// ConnProvider is basic interface for connecting API package(raft proxy in particular)
+// to manager/state/raft package without import cycles. It provides only one
+// method for obtaining connection to leader.
+type ConnProvider interface {
+	LeaderConn(ctx context.Context) (*grpc.ClientConn, error)
+}
+
+// ErrIsLeader is returned from LeaderConn method when current machine is leader.
+// It's just shim between packages to avoid import cycles.
+var ErrIsLeader = errors.New("current node is leader")
diff --git a/vendor/github.com/docker/swarmkit/protobuf/plugin/helpers.go b/vendor/github.com/docker/swarmkit/protobuf/plugin/helpers.go
new file mode 100644
index 0000000000..daea795b36
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/protobuf/plugin/helpers.go
@@ -0,0 +1,11 @@
+package plugin
+
+import (
+	"github.com/gogo/protobuf/proto"
+	google_protobuf "github.com/gogo/protobuf/protoc-gen-gogo/descriptor"
+)
+
+// DeepcopyEnabled returns true if deepcopy is enabled for the descriptor.
+func DeepcopyEnabled(options *google_protobuf.MessageOptions) bool {
+	return proto.GetBoolExtension(options, E_Deepcopy, true)
+}
diff --git a/vendor/github.com/docker/swarmkit/protobuf/plugin/plugin.pb.go b/vendor/github.com/docker/swarmkit/protobuf/plugin/plugin.pb.go
new file mode 100644
index 0000000000..549cebaeaa
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/protobuf/plugin/plugin.pb.go
@@ -0,0 +1,1246 @@
+// Code generated by protoc-gen-gogo.
+// source: github.com/docker/swarmkit/protobuf/plugin/plugin.proto
+// DO NOT EDIT!
+
+/*
+	Package plugin is a generated protocol buffer package.
+
+	It is generated from these files:
+		github.com/docker/swarmkit/protobuf/plugin/plugin.proto
+
+	It has these top-level messages:
+		WatchSelectors
+		StoreObject
+		TLSAuthorization
+*/
+package plugin
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import google_protobuf "github.com/gogo/protobuf/protoc-gen-gogo/descriptor"
+
+import github_com_docker_swarmkit_api_deepcopy "github.com/docker/swarmkit/api/deepcopy"
+
+import github_com_gogo_protobuf_proto "github.com/gogo/protobuf/proto"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type WatchSelectors struct {
+	// supported by all object types
+	ID           *bool `protobuf:"varint,1,opt,name=id" json:"id,omitempty"`
+	IDPrefix     *bool `protobuf:"varint,2,opt,name=id_prefix,json=idPrefix" json:"id_prefix,omitempty"`
+	Name         *bool `protobuf:"varint,3,opt,name=name" json:"name,omitempty"`
+	NamePrefix   *bool `protobuf:"varint,4,opt,name=name_prefix,json=namePrefix" json:"name_prefix,omitempty"`
+	Custom       *bool `protobuf:"varint,5,opt,name=custom" json:"custom,omitempty"`
+	CustomPrefix *bool `protobuf:"varint,6,opt,name=custom_prefix,json=customPrefix" json:"custom_prefix,omitempty"`
+	// supported by tasks only
+	ServiceID    *bool `protobuf:"varint,7,opt,name=service_id,json=serviceId" json:"service_id,omitempty"`
+	NodeID       *bool `protobuf:"varint,8,opt,name=node_id,json=nodeId" json:"node_id,omitempty"`
+	Slot         *bool `protobuf:"varint,9,opt,name=slot" json:"slot,omitempty"`
+	DesiredState *bool `protobuf:"varint,10,opt,name=desired_state,json=desiredState" json:"desired_state,omitempty"`
+	// supported by nodes only
+	Role       *bool `protobuf:"varint,11,opt,name=role" json:"role,omitempty"`
+	Membership *bool `protobuf:"varint,12,opt,name=membership" json:"membership,omitempty"`
+	// supported by: resource
+	Kind             *bool  `protobuf:"varint,13,opt,name=kind" json:"kind,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *WatchSelectors) Reset()                    { *m = WatchSelectors{} }
+func (*WatchSelectors) ProtoMessage()               {}
+func (*WatchSelectors) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{0} }
+
+type StoreObject struct {
+	WatchSelectors   *WatchSelectors `protobuf:"bytes,1,req,name=watch_selectors,json=watchSelectors" json:"watch_selectors,omitempty"`
+	XXX_unrecognized []byte          `json:"-"`
+}
+
+func (m *StoreObject) Reset()                    { *m = StoreObject{} }
+func (*StoreObject) ProtoMessage()               {}
+func (*StoreObject) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{1} }
+
+type TLSAuthorization struct {
+	// Roles contains the acceptable TLS OU roles for the handler.
+	Roles []string `protobuf:"bytes,1,rep,name=roles" json:"roles,omitempty"`
+	// Insecure is set to true if this method does not require
+	// authorization. NOTE: Specifying both "insecure" and a nonempty
+	// list of roles is invalid. This would fail at codegen time.
+	Insecure         *bool  `protobuf:"varint,2,opt,name=insecure" json:"insecure,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *TLSAuthorization) Reset()                    { *m = TLSAuthorization{} }
+func (*TLSAuthorization) ProtoMessage()               {}
+func (*TLSAuthorization) Descriptor() ([]byte, []int) { return fileDescriptorPlugin, []int{2} }
+
+var E_Deepcopy = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         70000,
+	Name:          "docker.protobuf.plugin.deepcopy",
+	Tag:           "varint,70000,opt,name=deepcopy,def=1",
+	Filename:      "github.com/docker/swarmkit/protobuf/plugin/plugin.proto",
+}
+
+var E_StoreObject = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*StoreObject)(nil),
+	Field:         70001,
+	Name:          "docker.protobuf.plugin.store_object",
+	Tag:           "bytes,70001,opt,name=store_object,json=storeObject",
+	Filename:      "github.com/docker/swarmkit/protobuf/plugin/plugin.proto",
+}
+
+var E_TlsAuthorization = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MethodOptions)(nil),
+	ExtensionType: (*TLSAuthorization)(nil),
+	Field:         73626345,
+	Name:          "docker.protobuf.plugin.tls_authorization",
+	Tag:           "bytes,73626345,opt,name=tls_authorization,json=tlsAuthorization",
+	Filename:      "github.com/docker/swarmkit/protobuf/plugin/plugin.proto",
+}
+
+func init() {
+	proto.RegisterType((*WatchSelectors)(nil), "docker.protobuf.plugin.WatchSelectors")
+	proto.RegisterType((*StoreObject)(nil), "docker.protobuf.plugin.StoreObject")
+	proto.RegisterType((*TLSAuthorization)(nil), "docker.protobuf.plugin.TLSAuthorization")
+	proto.RegisterExtension(E_Deepcopy)
+	proto.RegisterExtension(E_StoreObject)
+	proto.RegisterExtension(E_TlsAuthorization)
+}
+
+func (m *WatchSelectors) Copy() *WatchSelectors {
+	if m == nil {
+		return nil
+	}
+	o := &WatchSelectors{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *WatchSelectors) CopyFrom(src interface{}) {
+
+	o := src.(*WatchSelectors)
+	*m = *o
+}
+
+func (m *StoreObject) Copy() *StoreObject {
+	if m == nil {
+		return nil
+	}
+	o := &StoreObject{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *StoreObject) CopyFrom(src interface{}) {
+
+	o := src.(*StoreObject)
+	*m = *o
+	if o.WatchSelectors != nil {
+		m.WatchSelectors = &WatchSelectors{}
+		github_com_docker_swarmkit_api_deepcopy.Copy(m.WatchSelectors, o.WatchSelectors)
+	}
+}
+
+func (m *TLSAuthorization) Copy() *TLSAuthorization {
+	if m == nil {
+		return nil
+	}
+	o := &TLSAuthorization{}
+	o.CopyFrom(m)
+	return o
+}
+
+func (m *TLSAuthorization) CopyFrom(src interface{}) {
+
+	o := src.(*TLSAuthorization)
+	*m = *o
+	if o.Roles != nil {
+		m.Roles = make([]string, len(o.Roles))
+		copy(m.Roles, o.Roles)
+	}
+
+}
+
+func (m *WatchSelectors) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *WatchSelectors) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.ID != nil {
+		dAtA[i] = 0x8
+		i++
+		if *m.ID {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.IDPrefix != nil {
+		dAtA[i] = 0x10
+		i++
+		if *m.IDPrefix {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Name != nil {
+		dAtA[i] = 0x18
+		i++
+		if *m.Name {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.NamePrefix != nil {
+		dAtA[i] = 0x20
+		i++
+		if *m.NamePrefix {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Custom != nil {
+		dAtA[i] = 0x28
+		i++
+		if *m.Custom {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.CustomPrefix != nil {
+		dAtA[i] = 0x30
+		i++
+		if *m.CustomPrefix {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.ServiceID != nil {
+		dAtA[i] = 0x38
+		i++
+		if *m.ServiceID {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.NodeID != nil {
+		dAtA[i] = 0x40
+		i++
+		if *m.NodeID {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Slot != nil {
+		dAtA[i] = 0x48
+		i++
+		if *m.Slot {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.DesiredState != nil {
+		dAtA[i] = 0x50
+		i++
+		if *m.DesiredState {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Role != nil {
+		dAtA[i] = 0x58
+		i++
+		if *m.Role {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Membership != nil {
+		dAtA[i] = 0x60
+		i++
+		if *m.Membership {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.Kind != nil {
+		dAtA[i] = 0x68
+		i++
+		if *m.Kind {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *StoreObject) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StoreObject) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.WatchSelectors == nil {
+		return 0, github_com_gogo_protobuf_proto.NewRequiredNotSetError("watch_selectors")
+	} else {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintPlugin(dAtA, i, uint64(m.WatchSelectors.Size()))
+		n1, err := m.WatchSelectors.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func (m *TLSAuthorization) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *TLSAuthorization) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Roles) > 0 {
+		for _, s := range m.Roles {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	if m.Insecure != nil {
+		dAtA[i] = 0x10
+		i++
+		if *m.Insecure {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	if m.XXX_unrecognized != nil {
+		i += copy(dAtA[i:], m.XXX_unrecognized)
+	}
+	return i, nil
+}
+
+func encodeFixed64Plugin(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Plugin(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintPlugin(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+
+func (m *WatchSelectors) Size() (n int) {
+	var l int
+	_ = l
+	if m.ID != nil {
+		n += 2
+	}
+	if m.IDPrefix != nil {
+		n += 2
+	}
+	if m.Name != nil {
+		n += 2
+	}
+	if m.NamePrefix != nil {
+		n += 2
+	}
+	if m.Custom != nil {
+		n += 2
+	}
+	if m.CustomPrefix != nil {
+		n += 2
+	}
+	if m.ServiceID != nil {
+		n += 2
+	}
+	if m.NodeID != nil {
+		n += 2
+	}
+	if m.Slot != nil {
+		n += 2
+	}
+	if m.DesiredState != nil {
+		n += 2
+	}
+	if m.Role != nil {
+		n += 2
+	}
+	if m.Membership != nil {
+		n += 2
+	}
+	if m.Kind != nil {
+		n += 2
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *StoreObject) Size() (n int) {
+	var l int
+	_ = l
+	if m.WatchSelectors != nil {
+		l = m.WatchSelectors.Size()
+		n += 1 + l + sovPlugin(uint64(l))
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func (m *TLSAuthorization) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Roles) > 0 {
+		for _, s := range m.Roles {
+			l = len(s)
+			n += 1 + l + sovPlugin(uint64(l))
+		}
+	}
+	if m.Insecure != nil {
+		n += 2
+	}
+	if m.XXX_unrecognized != nil {
+		n += len(m.XXX_unrecognized)
+	}
+	return n
+}
+
+func sovPlugin(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozPlugin(x uint64) (n int) {
+	return sovPlugin(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *WatchSelectors) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&WatchSelectors{`,
+		`ID:` + valueToStringPlugin(this.ID) + `,`,
+		`IDPrefix:` + valueToStringPlugin(this.IDPrefix) + `,`,
+		`Name:` + valueToStringPlugin(this.Name) + `,`,
+		`NamePrefix:` + valueToStringPlugin(this.NamePrefix) + `,`,
+		`Custom:` + valueToStringPlugin(this.Custom) + `,`,
+		`CustomPrefix:` + valueToStringPlugin(this.CustomPrefix) + `,`,
+		`ServiceID:` + valueToStringPlugin(this.ServiceID) + `,`,
+		`NodeID:` + valueToStringPlugin(this.NodeID) + `,`,
+		`Slot:` + valueToStringPlugin(this.Slot) + `,`,
+		`DesiredState:` + valueToStringPlugin(this.DesiredState) + `,`,
+		`Role:` + valueToStringPlugin(this.Role) + `,`,
+		`Membership:` + valueToStringPlugin(this.Membership) + `,`,
+		`Kind:` + valueToStringPlugin(this.Kind) + `,`,
+		`XXX_unrecognized:` + fmt.Sprintf("%v", this.XXX_unrecognized) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StoreObject) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StoreObject{`,
+		`WatchSelectors:` + strings.Replace(fmt.Sprintf("%v", this.WatchSelectors), "WatchSelectors", "WatchSelectors", 1) + `,`,
+		`XXX_unrecognized:` + fmt.Sprintf("%v", this.XXX_unrecognized) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *TLSAuthorization) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&TLSAuthorization{`,
+		`Roles:` + fmt.Sprintf("%v", this.Roles) + `,`,
+		`Insecure:` + valueToStringPlugin(this.Insecure) + `,`,
+		`XXX_unrecognized:` + fmt.Sprintf("%v", this.XXX_unrecognized) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringPlugin(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *WatchSelectors) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: WatchSelectors: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: WatchSelectors: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.ID = &b
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field IDPrefix", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.IDPrefix = &b
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Name = &b
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NamePrefix", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.NamePrefix = &b
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Custom", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Custom = &b
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field CustomPrefix", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.CustomPrefix = &b
+		case 7:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ServiceID", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.ServiceID = &b
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NodeID", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.NodeID = &b
+		case 9:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Slot", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Slot = &b
+		case 10:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field DesiredState", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.DesiredState = &b
+		case 11:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Role", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Role = &b
+		case 12:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Membership", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Membership = &b
+		case 13:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Kind", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Kind = &b
+		default:
+			iNdEx = preIndex
+			skippy, err := skipPlugin(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *StoreObject) Unmarshal(dAtA []byte) error {
+	var hasFields [1]uint64
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StoreObject: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StoreObject: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field WatchSelectors", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.WatchSelectors == nil {
+				m.WatchSelectors = &WatchSelectors{}
+			}
+			if err := m.WatchSelectors.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+			hasFields[0] |= uint64(0x00000001)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipPlugin(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+	if hasFields[0]&uint64(0x00000001) == 0 {
+		return github_com_gogo_protobuf_proto.NewRequiredNotSetError("watch_selectors")
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *TLSAuthorization) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: TLSAuthorization: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: TLSAuthorization: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Roles", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Roles = append(m.Roles, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Insecure", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Insecure = &b
+		default:
+			iNdEx = preIndex
+			skippy, err := skipPlugin(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthPlugin
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...)
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipPlugin(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowPlugin
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowPlugin
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthPlugin
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowPlugin
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipPlugin(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthPlugin = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowPlugin   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() {
+	proto.RegisterFile("github.com/docker/swarmkit/protobuf/plugin/plugin.proto", fileDescriptorPlugin)
+}
+
+var fileDescriptorPlugin = []byte{
+	// 575 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x84, 0x52, 0xc1, 0x6e, 0xd3, 0x4c,
+	0x10, 0xae, 0xd3, 0x36, 0x4d, 0x26, 0x69, 0xff, 0xfe, 0x2b, 0x54, 0xad, 0x7a, 0x70, 0xaa, 0x46,
+	0x42, 0x41, 0x42, 0x8e, 0xd4, 0x0b, 0x52, 0x6e, 0x94, 0x5c, 0x22, 0x01, 0x45, 0x0e, 0x12, 0x37,
+	0x22, 0xc7, 0x3b, 0x4d, 0x96, 0x3a, 0x5e, 0x6b, 0x77, 0x4d, 0x0a, 0x27, 0x5e, 0x80, 0x07, 0xe0,
+	0xca, 0xd3, 0xf4, 0xc8, 0x91, 0x53, 0x44, 0x2d, 0x71, 0xe0, 0x06, 0x6f, 0x80, 0x76, 0xd7, 0x69,
+	0x08, 0x6a, 0xc5, 0xc9, 0x33, 0xdf, 0x7c, 0xdf, 0xcc, 0x7c, 0x3b, 0x86, 0x47, 0x13, 0xae, 0xa7,
+	0xf9, 0x38, 0x88, 0xc5, 0xac, 0xcb, 0x44, 0x7c, 0x81, 0xb2, 0xab, 0xe6, 0x91, 0x9c, 0x5d, 0x70,
+	0xdd, 0xcd, 0xa4, 0xd0, 0x62, 0x9c, 0x9f, 0x77, 0xb3, 0x24, 0x9f, 0xf0, 0xb4, 0xfc, 0x04, 0x16,
+	0x26, 0x07, 0x8e, 0x1d, 0x2c, 0x49, 0x81, 0xab, 0x1e, 0x1e, 0x4d, 0x84, 0x98, 0x24, 0xb8, 0x12,
+	0x33, 0x54, 0xb1, 0xe4, 0x99, 0x16, 0x25, 0xf7, 0xf8, 0xd3, 0x26, 0xec, 0xbd, 0x8a, 0x74, 0x3c,
+	0x1d, 0x62, 0x82, 0xb1, 0x16, 0x52, 0x91, 0x03, 0xa8, 0x70, 0x46, 0xbd, 0x23, 0xaf, 0x53, 0x3b,
+	0xad, 0x16, 0x8b, 0x56, 0x65, 0xd0, 0x0f, 0x2b, 0x9c, 0x91, 0x07, 0x50, 0xe7, 0x6c, 0x94, 0x49,
+	0x3c, 0xe7, 0x97, 0xb4, 0x62, 0xcb, 0xcd, 0x62, 0xd1, 0xaa, 0x0d, 0xfa, 0x2f, 0x2c, 0x16, 0xd6,
+	0x38, 0x73, 0x11, 0x21, 0xb0, 0x95, 0x46, 0x33, 0xa4, 0x9b, 0x86, 0x15, 0xda, 0x98, 0xb4, 0xa0,
+	0x61, 0xbe, 0xcb, 0x06, 0x5b, 0xb6, 0x04, 0x06, 0x2a, 0x45, 0x07, 0x50, 0x8d, 0x73, 0xa5, 0xc5,
+	0x8c, 0x6e, 0xdb, 0x5a, 0x99, 0x91, 0x36, 0xec, 0xba, 0x68, 0x29, 0xad, 0xda, 0x72, 0xd3, 0x81,
+	0xa5, 0xf8, 0x21, 0x80, 0x42, 0xf9, 0x96, 0xc7, 0x38, 0xe2, 0x8c, 0xee, 0xd8, 0xed, 0x76, 0x8b,
+	0x45, 0xab, 0x3e, 0x74, 0xe8, 0xa0, 0x1f, 0xd6, 0x4b, 0xc2, 0x80, 0x91, 0x36, 0xec, 0xa4, 0x82,
+	0x59, 0x6a, 0xcd, 0x52, 0xa1, 0x58, 0xb4, 0xaa, 0xcf, 0x05, 0x33, 0xbc, 0xaa, 0x29, 0x0d, 0x98,
+	0x31, 0xa1, 0x12, 0xa1, 0x69, 0xdd, 0x99, 0x30, 0xb1, 0xd9, 0x85, 0xa1, 0xe2, 0x12, 0xd9, 0x48,
+	0xe9, 0x48, 0x23, 0x05, 0xb7, 0x4b, 0x09, 0x0e, 0x0d, 0x66, 0x84, 0x52, 0x24, 0x48, 0x1b, 0x4e,
+	0x68, 0x62, 0xe2, 0x03, 0xcc, 0x70, 0x36, 0x46, 0xa9, 0xa6, 0x3c, 0xa3, 0x4d, 0x67, 0x7e, 0x85,
+	0x18, 0xcd, 0x05, 0x4f, 0x19, 0xdd, 0x75, 0x1a, 0x13, 0x1f, 0xbf, 0x86, 0xc6, 0x50, 0x0b, 0x89,
+	0x67, 0xe3, 0x37, 0x18, 0x6b, 0x72, 0x06, 0xff, 0xcd, 0xcd, 0xa5, 0x46, 0x6a, 0x79, 0x2a, 0xea,
+	0x1d, 0x55, 0x3a, 0x8d, 0x93, 0xfb, 0xc1, 0xed, 0xe7, 0x0f, 0xd6, 0x0f, 0x1b, 0xee, 0xcd, 0xd7,
+	0xf2, 0xe3, 0x3e, 0xec, 0xbf, 0x7c, 0x3a, 0x7c, 0x9c, 0xeb, 0xa9, 0x90, 0xfc, 0x7d, 0xa4, 0xb9,
+	0x48, 0xc9, 0x3d, 0xd8, 0x36, 0xfb, 0x9a, 0xd6, 0x9b, 0x9d, 0x7a, 0xe8, 0x12, 0x72, 0x08, 0x35,
+	0x9e, 0x2a, 0x8c, 0x73, 0x89, 0xee, 0xf2, 0xe1, 0x4d, 0xde, 0x7b, 0x02, 0x35, 0x86, 0x98, 0xc5,
+	0x22, 0x7b, 0x47, 0x5a, 0x81, 0xfb, 0xe1, 0x56, 0x9b, 0x3c, 0x43, 0xa5, 0xa2, 0x09, 0x9e, 0x65,
+	0xa6, 0xbb, 0xa2, 0x3f, 0x3f, 0xdb, 0xbb, 0xf7, 0xb6, 0xb4, 0xcc, 0x31, 0xbc, 0x11, 0xf6, 0x38,
+	0x34, 0x95, 0xb1, 0x3a, 0x12, 0xce, 0xeb, 0x3f, 0x1b, 0xfd, 0xb2, 0x8d, 0x1a, 0x27, 0xed, 0xbb,
+	0xbc, 0xff, 0xf1, 0x72, 0x61, 0x43, 0xad, 0x92, 0xde, 0x25, 0xfc, 0xaf, 0x13, 0x35, 0x8a, 0xd6,
+	0x6c, 0xfb, 0xb7, 0xcc, 0xd3, 0x53, 0xc1, 0x96, 0xe3, 0x7e, 0x7c, 0xff, 0xd8, 0xb6, 0xf3, 0x3a,
+	0x77, 0xcd, 0xfb, 0xfb, 0x25, 0xc3, 0x7d, 0x9d, 0xa8, 0x35, 0xe4, 0x94, 0x5e, 0x5d, 0xfb, 0x1b,
+	0x5f, 0xaf, 0xfd, 0x8d, 0x0f, 0x85, 0xef, 0x5d, 0x15, 0xbe, 0xf7, 0xa5, 0xf0, 0xbd, 0x6f, 0x85,
+	0xef, 0xfd, 0x0e, 0x00, 0x00, 0xff, 0xff, 0xb3, 0x99, 0x7d, 0xfb, 0xf9, 0x03, 0x00, 0x00,
+}
diff --git a/vendor/github.com/docker/swarmkit/protobuf/ptypes/doc.go b/vendor/github.com/docker/swarmkit/protobuf/ptypes/doc.go
new file mode 100644
index 0000000000..b997ca1712
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/protobuf/ptypes/doc.go
@@ -0,0 +1,3 @@
+// Package ptypes provides utility functions for use with
+// gogo/protobuf/ptypes.
+package ptypes
diff --git a/vendor/github.com/docker/swarmkit/protobuf/ptypes/timestamp.go b/vendor/github.com/docker/swarmkit/protobuf/ptypes/timestamp.go
new file mode 100644
index 0000000000..3890384cfc
--- /dev/null
+++ b/vendor/github.com/docker/swarmkit/protobuf/ptypes/timestamp.go
@@ -0,0 +1,17 @@
+package ptypes
+
+import (
+	"time"
+
+	gogotypes "github.com/gogo/protobuf/types"
+)
+
+// MustTimestampProto converts time.Time to a google.protobuf.Timestamp proto.
+// It panics if input timestamp is invalid.
+func MustTimestampProto(t time.Time) *gogotypes.Timestamp {
+	ts, err := gogotypes.TimestampProto(t)
+	if err != nil {
+		panic(err.Error())
+	}
+	return ts
+}
diff --git a/vendor/github.com/fsnotify/fsnotify/AUTHORS b/vendor/github.com/fsnotify/fsnotify/AUTHORS
new file mode 100644
index 0000000000..5ab5d41c54
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/AUTHORS
@@ -0,0 +1,52 @@
+# Names should be added to this file as
+#	Name or Organization <email address>
+# The email address is not required for organizations.
+
+# You can update this list using the following command:
+#
+#   $ git shortlog -se | awk '{print $2 " " $3 " " $4}'
+
+# Please keep the list sorted.
+
+Aaron L <aaron@bettercoder.net>
+Adrien Bustany <adrien@bustany.org>
+Amit Krishnan <amit.krishnan@oracle.com>
+Anmol Sethi <me@anmol.io>
+Bjørn Erik Pedersen <bjorn.erik.pedersen@gmail.com>
+Bruno Bigras <bigras.bruno@gmail.com>
+Caleb Spare <cespare@gmail.com>
+Case Nelson <case@teammating.com>
+Chris Howey <chris@howey.me> <howeyc@gmail.com>
+Christoffer Buchholz <christoffer.buchholz@gmail.com>
+Daniel Wagner-Hall <dawagner@gmail.com>
+Dave Cheney <dave@cheney.net>
+Evan Phoenix <evan@fallingsnow.net>
+Francisco Souza <f@souza.cc>
+Hari haran <hariharan.uno@gmail.com>
+John C Barstow
+Kelvin Fo <vmirage@gmail.com>
+Ken-ichirou MATSUZAWA <chamas@h4.dion.ne.jp>
+Matt Layher <mdlayher@gmail.com>
+Nathan Youngman <git@nathany.com>
+Nickolai Zeldovich <nickolai@csail.mit.edu>
+Patrick <patrick@dropbox.com>
+Paul Hammond <paul@paulhammond.org>
+Pawel Knap <pawelknap88@gmail.com>
+Pieter Droogendijk <pieter@binky.org.uk>
+Pursuit92 <JoshChase@techpursuit.net>
+Riku Voipio <riku.voipio@linaro.org>
+Rob Figueiredo <robfig@gmail.com>
+Rodrigo Chiossi <rodrigochiossi@gmail.com>
+Slawek Ligus <root@ooz.ie>
+Soge Zhang <zhssoge@gmail.com>
+Tiffany Jernigan <tiffany.jernigan@intel.com>
+Tilak Sharma <tilaks@google.com>
+Tom Payne <twpayne@gmail.com>
+Travis Cline <travis.cline@gmail.com>
+Tudor Golubenco <tudor.g@gmail.com>
+Vahe Khachikyan <vahe@live.ca>
+Yukang <moorekang@gmail.com>
+bronze1man <bronze1man@gmail.com>
+debrando <denis.brandolini@gmail.com>
+henrikedwards <henrik.edwards@gmail.com>
+铁哥 <guotie.9@gmail.com>
diff --git a/vendor/github.com/fsnotify/fsnotify/LICENSE b/vendor/github.com/fsnotify/fsnotify/LICENSE
new file mode 100644
index 0000000000..f21e540800
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/LICENSE
@@ -0,0 +1,28 @@
+Copyright (c) 2012 The Go Authors. All rights reserved.
+Copyright (c) 2012 fsnotify Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/fsnotify/fsnotify/fen.go b/vendor/github.com/fsnotify/fsnotify/fen.go
new file mode 100644
index 0000000000..ced39cb881
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/fen.go
@@ -0,0 +1,37 @@
+// Copyright 2010 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build solaris
+
+package fsnotify
+
+import (
+	"errors"
+)
+
+// Watcher watches a set of files, delivering events to a channel.
+type Watcher struct {
+	Events chan Event
+	Errors chan error
+}
+
+// NewWatcher establishes a new watcher with the underlying OS and begins waiting for events.
+func NewWatcher() (*Watcher, error) {
+	return nil, errors.New("FEN based watcher not yet supported for fsnotify\n")
+}
+
+// Close removes all watches and closes the events channel.
+func (w *Watcher) Close() error {
+	return nil
+}
+
+// Add starts watching the named file or directory (non-recursively).
+func (w *Watcher) Add(name string) error {
+	return nil
+}
+
+// Remove stops watching the the named file or directory (non-recursively).
+func (w *Watcher) Remove(name string) error {
+	return nil
+}
diff --git a/vendor/github.com/fsnotify/fsnotify/fsnotify.go b/vendor/github.com/fsnotify/fsnotify/fsnotify.go
new file mode 100644
index 0000000000..190bf0de57
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/fsnotify.go
@@ -0,0 +1,66 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !plan9
+
+// Package fsnotify provides a platform-independent interface for file system notifications.
+package fsnotify
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+)
+
+// Event represents a single file system notification.
+type Event struct {
+	Name string // Relative path to the file or directory.
+	Op   Op     // File operation that triggered the event.
+}
+
+// Op describes a set of file operations.
+type Op uint32
+
+// These are the generalized file operations that can trigger a notification.
+const (
+	Create Op = 1 << iota
+	Write
+	Remove
+	Rename
+	Chmod
+)
+
+func (op Op) String() string {
+	// Use a buffer for efficient string concatenation
+	var buffer bytes.Buffer
+
+	if op&Create == Create {
+		buffer.WriteString("|CREATE")
+	}
+	if op&Remove == Remove {
+		buffer.WriteString("|REMOVE")
+	}
+	if op&Write == Write {
+		buffer.WriteString("|WRITE")
+	}
+	if op&Rename == Rename {
+		buffer.WriteString("|RENAME")
+	}
+	if op&Chmod == Chmod {
+		buffer.WriteString("|CHMOD")
+	}
+	if buffer.Len() == 0 {
+		return ""
+	}
+	return buffer.String()[1:] // Strip leading pipe
+}
+
+// String returns a string representation of the event in the form
+// "file: REMOVE|WRITE|..."
+func (e Event) String() string {
+	return fmt.Sprintf("%q: %s", e.Name, e.Op.String())
+}
+
+// Common errors that can be reported by a watcher
+var ErrEventOverflow = errors.New("fsnotify queue overflow")
diff --git a/vendor/github.com/fsnotify/fsnotify/inotify.go b/vendor/github.com/fsnotify/fsnotify/inotify.go
new file mode 100644
index 0000000000..d9fd1b88a0
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/inotify.go
@@ -0,0 +1,337 @@
+// Copyright 2010 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux
+
+package fsnotify
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"strings"
+	"sync"
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+// Watcher watches a set of files, delivering events to a channel.
+type Watcher struct {
+	Events   chan Event
+	Errors   chan error
+	mu       sync.Mutex // Map access
+	fd       int
+	poller   *fdPoller
+	watches  map[string]*watch // Map of inotify watches (key: path)
+	paths    map[int]string    // Map of watched paths (key: watch descriptor)
+	done     chan struct{}     // Channel for sending a "quit message" to the reader goroutine
+	doneResp chan struct{}     // Channel to respond to Close
+}
+
+// NewWatcher establishes a new watcher with the underlying OS and begins waiting for events.
+func NewWatcher() (*Watcher, error) {
+	// Create inotify fd
+	fd, errno := unix.InotifyInit1(unix.IN_CLOEXEC)
+	if fd == -1 {
+		return nil, errno
+	}
+	// Create epoll
+	poller, err := newFdPoller(fd)
+	if err != nil {
+		unix.Close(fd)
+		return nil, err
+	}
+	w := &Watcher{
+		fd:       fd,
+		poller:   poller,
+		watches:  make(map[string]*watch),
+		paths:    make(map[int]string),
+		Events:   make(chan Event),
+		Errors:   make(chan error),
+		done:     make(chan struct{}),
+		doneResp: make(chan struct{}),
+	}
+
+	go w.readEvents()
+	return w, nil
+}
+
+func (w *Watcher) isClosed() bool {
+	select {
+	case <-w.done:
+		return true
+	default:
+		return false
+	}
+}
+
+// Close removes all watches and closes the events channel.
+func (w *Watcher) Close() error {
+	if w.isClosed() {
+		return nil
+	}
+
+	// Send 'close' signal to goroutine, and set the Watcher to closed.
+	close(w.done)
+
+	// Wake up goroutine
+	w.poller.wake()
+
+	// Wait for goroutine to close
+	<-w.doneResp
+
+	return nil
+}
+
+// Add starts watching the named file or directory (non-recursively).
+func (w *Watcher) Add(name string) error {
+	name = filepath.Clean(name)
+	if w.isClosed() {
+		return errors.New("inotify instance already closed")
+	}
+
+	const agnosticEvents = unix.IN_MOVED_TO | unix.IN_MOVED_FROM |
+		unix.IN_CREATE | unix.IN_ATTRIB | unix.IN_MODIFY |
+		unix.IN_MOVE_SELF | unix.IN_DELETE | unix.IN_DELETE_SELF
+
+	var flags uint32 = agnosticEvents
+
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	watchEntry := w.watches[name]
+	if watchEntry != nil {
+		flags |= watchEntry.flags | unix.IN_MASK_ADD
+	}
+	wd, errno := unix.InotifyAddWatch(w.fd, name, flags)
+	if wd == -1 {
+		return errno
+	}
+
+	if watchEntry == nil {
+		w.watches[name] = &watch{wd: uint32(wd), flags: flags}
+		w.paths[wd] = name
+	} else {
+		watchEntry.wd = uint32(wd)
+		watchEntry.flags = flags
+	}
+
+	return nil
+}
+
+// Remove stops watching the named file or directory (non-recursively).
+func (w *Watcher) Remove(name string) error {
+	name = filepath.Clean(name)
+
+	// Fetch the watch.
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	watch, ok := w.watches[name]
+
+	// Remove it from inotify.
+	if !ok {
+		return fmt.Errorf("can't remove non-existent inotify watch for: %s", name)
+	}
+
+	// We successfully removed the watch if InotifyRmWatch doesn't return an
+	// error, we need to clean up our internal state to ensure it matches
+	// inotify's kernel state.
+	delete(w.paths, int(watch.wd))
+	delete(w.watches, name)
+
+	// inotify_rm_watch will return EINVAL if the file has been deleted;
+	// the inotify will already have been removed.
+	// watches and pathes are deleted in ignoreLinux() implicitly and asynchronously
+	// by calling inotify_rm_watch() below. e.g. readEvents() goroutine receives IN_IGNORE
+	// so that EINVAL means that the wd is being rm_watch()ed or its file removed
+	// by another thread and we have not received IN_IGNORE event.
+	success, errno := unix.InotifyRmWatch(w.fd, watch.wd)
+	if success == -1 {
+		// TODO: Perhaps it's not helpful to return an error here in every case.
+		// the only two possible errors are:
+		// EBADF, which happens when w.fd is not a valid file descriptor of any kind.
+		// EINVAL, which is when fd is not an inotify descriptor or wd is not a valid watch descriptor.
+		// Watch descriptors are invalidated when they are removed explicitly or implicitly;
+		// explicitly by inotify_rm_watch, implicitly when the file they are watching is deleted.
+		return errno
+	}
+
+	return nil
+}
+
+type watch struct {
+	wd    uint32 // Watch descriptor (as returned by the inotify_add_watch() syscall)
+	flags uint32 // inotify flags of this watch (see inotify(7) for the list of valid flags)
+}
+
+// readEvents reads from the inotify file descriptor, converts the
+// received events into Event objects and sends them via the Events channel
+func (w *Watcher) readEvents() {
+	var (
+		buf   [unix.SizeofInotifyEvent * 4096]byte // Buffer for a maximum of 4096 raw events
+		n     int                                  // Number of bytes read with read()
+		errno error                                // Syscall errno
+		ok    bool                                 // For poller.wait
+	)
+
+	defer close(w.doneResp)
+	defer close(w.Errors)
+	defer close(w.Events)
+	defer unix.Close(w.fd)
+	defer w.poller.close()
+
+	for {
+		// See if we have been closed.
+		if w.isClosed() {
+			return
+		}
+
+		ok, errno = w.poller.wait()
+		if errno != nil {
+			select {
+			case w.Errors <- errno:
+			case <-w.done:
+				return
+			}
+			continue
+		}
+
+		if !ok {
+			continue
+		}
+
+		n, errno = unix.Read(w.fd, buf[:])
+		// If a signal interrupted execution, see if we've been asked to close, and try again.
+		// http://man7.org/linux/man-pages/man7/signal.7.html :
+		// "Before Linux 3.8, reads from an inotify(7) file descriptor were not restartable"
+		if errno == unix.EINTR {
+			continue
+		}
+
+		// unix.Read might have been woken up by Close. If so, we're done.
+		if w.isClosed() {
+			return
+		}
+
+		if n < unix.SizeofInotifyEvent {
+			var err error
+			if n == 0 {
+				// If EOF is received. This should really never happen.
+				err = io.EOF
+			} else if n < 0 {
+				// If an error occurred while reading.
+				err = errno
+			} else {
+				// Read was too short.
+				err = errors.New("notify: short read in readEvents()")
+			}
+			select {
+			case w.Errors <- err:
+			case <-w.done:
+				return
+			}
+			continue
+		}
+
+		var offset uint32
+		// We don't know how many events we just read into the buffer
+		// While the offset points to at least one whole event...
+		for offset <= uint32(n-unix.SizeofInotifyEvent) {
+			// Point "raw" to the event in the buffer
+			raw := (*unix.InotifyEvent)(unsafe.Pointer(&buf[offset]))
+
+			mask := uint32(raw.Mask)
+			nameLen := uint32(raw.Len)
+
+			if mask&unix.IN_Q_OVERFLOW != 0 {
+				select {
+				case w.Errors <- ErrEventOverflow:
+				case <-w.done:
+					return
+				}
+			}
+
+			// If the event happened to the watched directory or the watched file, the kernel
+			// doesn't append the filename to the event, but we would like to always fill the
+			// the "Name" field with a valid filename. We retrieve the path of the watch from
+			// the "paths" map.
+			w.mu.Lock()
+			name, ok := w.paths[int(raw.Wd)]
+			// IN_DELETE_SELF occurs when the file/directory being watched is removed.
+			// This is a sign to clean up the maps, otherwise we are no longer in sync
+			// with the inotify kernel state which has already deleted the watch
+			// automatically.
+			if ok && mask&unix.IN_DELETE_SELF == unix.IN_DELETE_SELF {
+				delete(w.paths, int(raw.Wd))
+				delete(w.watches, name)
+			}
+			w.mu.Unlock()
+
+			if nameLen > 0 {
+				// Point "bytes" at the first byte of the filename
+				bytes := (*[unix.PathMax]byte)(unsafe.Pointer(&buf[offset+unix.SizeofInotifyEvent]))
+				// The filename is padded with NULL bytes. TrimRight() gets rid of those.
+				name += "/" + strings.TrimRight(string(bytes[0:nameLen]), "\000")
+			}
+
+			event := newEvent(name, mask)
+
+			// Send the events that are not ignored on the events channel
+			if !event.ignoreLinux(mask) {
+				select {
+				case w.Events <- event:
+				case <-w.done:
+					return
+				}
+			}
+
+			// Move to the next event in the buffer
+			offset += unix.SizeofInotifyEvent + nameLen
+		}
+	}
+}
+
+// Certain types of events can be "ignored" and not sent over the Events
+// channel. Such as events marked ignore by the kernel, or MODIFY events
+// against files that do not exist.
+func (e *Event) ignoreLinux(mask uint32) bool {
+	// Ignore anything the inotify API says to ignore
+	if mask&unix.IN_IGNORED == unix.IN_IGNORED {
+		return true
+	}
+
+	// If the event is not a DELETE or RENAME, the file must exist.
+	// Otherwise the event is ignored.
+	// *Note*: this was put in place because it was seen that a MODIFY
+	// event was sent after the DELETE. This ignores that MODIFY and
+	// assumes a DELETE will come or has come if the file doesn't exist.
+	if !(e.Op&Remove == Remove || e.Op&Rename == Rename) {
+		_, statErr := os.Lstat(e.Name)
+		return os.IsNotExist(statErr)
+	}
+	return false
+}
+
+// newEvent returns an platform-independent Event based on an inotify mask.
+func newEvent(name string, mask uint32) Event {
+	e := Event{Name: name}
+	if mask&unix.IN_CREATE == unix.IN_CREATE || mask&unix.IN_MOVED_TO == unix.IN_MOVED_TO {
+		e.Op |= Create
+	}
+	if mask&unix.IN_DELETE_SELF == unix.IN_DELETE_SELF || mask&unix.IN_DELETE == unix.IN_DELETE {
+		e.Op |= Remove
+	}
+	if mask&unix.IN_MODIFY == unix.IN_MODIFY {
+		e.Op |= Write
+	}
+	if mask&unix.IN_MOVE_SELF == unix.IN_MOVE_SELF || mask&unix.IN_MOVED_FROM == unix.IN_MOVED_FROM {
+		e.Op |= Rename
+	}
+	if mask&unix.IN_ATTRIB == unix.IN_ATTRIB {
+		e.Op |= Chmod
+	}
+	return e
+}
diff --git a/vendor/github.com/fsnotify/fsnotify/inotify_poller.go b/vendor/github.com/fsnotify/fsnotify/inotify_poller.go
new file mode 100644
index 0000000000..cc7db4b22e
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/inotify_poller.go
@@ -0,0 +1,187 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux
+
+package fsnotify
+
+import (
+	"errors"
+
+	"golang.org/x/sys/unix"
+)
+
+type fdPoller struct {
+	fd   int    // File descriptor (as returned by the inotify_init() syscall)
+	epfd int    // Epoll file descriptor
+	pipe [2]int // Pipe for waking up
+}
+
+func emptyPoller(fd int) *fdPoller {
+	poller := new(fdPoller)
+	poller.fd = fd
+	poller.epfd = -1
+	poller.pipe[0] = -1
+	poller.pipe[1] = -1
+	return poller
+}
+
+// Create a new inotify poller.
+// This creates an inotify handler, and an epoll handler.
+func newFdPoller(fd int) (*fdPoller, error) {
+	var errno error
+	poller := emptyPoller(fd)
+	defer func() {
+		if errno != nil {
+			poller.close()
+		}
+	}()
+	poller.fd = fd
+
+	// Create epoll fd
+	poller.epfd, errno = unix.EpollCreate1(0)
+	if poller.epfd == -1 {
+		return nil, errno
+	}
+	// Create pipe; pipe[0] is the read end, pipe[1] the write end.
+	errno = unix.Pipe2(poller.pipe[:], unix.O_NONBLOCK)
+	if errno != nil {
+		return nil, errno
+	}
+
+	// Register inotify fd with epoll
+	event := unix.EpollEvent{
+		Fd:     int32(poller.fd),
+		Events: unix.EPOLLIN,
+	}
+	errno = unix.EpollCtl(poller.epfd, unix.EPOLL_CTL_ADD, poller.fd, &event)
+	if errno != nil {
+		return nil, errno
+	}
+
+	// Register pipe fd with epoll
+	event = unix.EpollEvent{
+		Fd:     int32(poller.pipe[0]),
+		Events: unix.EPOLLIN,
+	}
+	errno = unix.EpollCtl(poller.epfd, unix.EPOLL_CTL_ADD, poller.pipe[0], &event)
+	if errno != nil {
+		return nil, errno
+	}
+
+	return poller, nil
+}
+
+// Wait using epoll.
+// Returns true if something is ready to be read,
+// false if there is not.
+func (poller *fdPoller) wait() (bool, error) {
+	// 3 possible events per fd, and 2 fds, makes a maximum of 6 events.
+	// I don't know whether epoll_wait returns the number of events returned,
+	// or the total number of events ready.
+	// I decided to catch both by making the buffer one larger than the maximum.
+	events := make([]unix.EpollEvent, 7)
+	for {
+		n, errno := unix.EpollWait(poller.epfd, events, -1)
+		if n == -1 {
+			if errno == unix.EINTR {
+				continue
+			}
+			return false, errno
+		}
+		if n == 0 {
+			// If there are no events, try again.
+			continue
+		}
+		if n > 6 {
+			// This should never happen. More events were returned than should be possible.
+			return false, errors.New("epoll_wait returned more events than I know what to do with")
+		}
+		ready := events[:n]
+		epollhup := false
+		epollerr := false
+		epollin := false
+		for _, event := range ready {
+			if event.Fd == int32(poller.fd) {
+				if event.Events&unix.EPOLLHUP != 0 {
+					// This should not happen, but if it does, treat it as a wakeup.
+					epollhup = true
+				}
+				if event.Events&unix.EPOLLERR != 0 {
+					// If an error is waiting on the file descriptor, we should pretend
+					// something is ready to read, and let unix.Read pick up the error.
+					epollerr = true
+				}
+				if event.Events&unix.EPOLLIN != 0 {
+					// There is data to read.
+					epollin = true
+				}
+			}
+			if event.Fd == int32(poller.pipe[0]) {
+				if event.Events&unix.EPOLLHUP != 0 {
+					// Write pipe descriptor was closed, by us. This means we're closing down the
+					// watcher, and we should wake up.
+				}
+				if event.Events&unix.EPOLLERR != 0 {
+					// If an error is waiting on the pipe file descriptor.
+					// This is an absolute mystery, and should never ever happen.
+					return false, errors.New("Error on the pipe descriptor.")
+				}
+				if event.Events&unix.EPOLLIN != 0 {
+					// This is a regular wakeup, so we have to clear the buffer.
+					err := poller.clearWake()
+					if err != nil {
+						return false, err
+					}
+				}
+			}
+		}
+
+		if epollhup || epollerr || epollin {
+			return true, nil
+		}
+		return false, nil
+	}
+}
+
+// Close the write end of the poller.
+func (poller *fdPoller) wake() error {
+	buf := make([]byte, 1)
+	n, errno := unix.Write(poller.pipe[1], buf)
+	if n == -1 {
+		if errno == unix.EAGAIN {
+			// Buffer is full, poller will wake.
+			return nil
+		}
+		return errno
+	}
+	return nil
+}
+
+func (poller *fdPoller) clearWake() error {
+	// You have to be woken up a LOT in order to get to 100!
+	buf := make([]byte, 100)
+	n, errno := unix.Read(poller.pipe[0], buf)
+	if n == -1 {
+		if errno == unix.EAGAIN {
+			// Buffer is empty, someone else cleared our wake.
+			return nil
+		}
+		return errno
+	}
+	return nil
+}
+
+// Close all poller file descriptors, but not the one passed to it.
+func (poller *fdPoller) close() {
+	if poller.pipe[1] != -1 {
+		unix.Close(poller.pipe[1])
+	}
+	if poller.pipe[0] != -1 {
+		unix.Close(poller.pipe[0])
+	}
+	if poller.epfd != -1 {
+		unix.Close(poller.epfd)
+	}
+}
diff --git a/vendor/github.com/fsnotify/fsnotify/kqueue.go b/vendor/github.com/fsnotify/fsnotify/kqueue.go
new file mode 100644
index 0000000000..86e76a3d67
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/kqueue.go
@@ -0,0 +1,521 @@
+// Copyright 2010 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build freebsd openbsd netbsd dragonfly darwin
+
+package fsnotify
+
+import (
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"sync"
+	"time"
+
+	"golang.org/x/sys/unix"
+)
+
+// Watcher watches a set of files, delivering events to a channel.
+type Watcher struct {
+	Events chan Event
+	Errors chan error
+	done   chan struct{} // Channel for sending a "quit message" to the reader goroutine
+
+	kq int // File descriptor (as returned by the kqueue() syscall).
+
+	mu              sync.Mutex        // Protects access to watcher data
+	watches         map[string]int    // Map of watched file descriptors (key: path).
+	externalWatches map[string]bool   // Map of watches added by user of the library.
+	dirFlags        map[string]uint32 // Map of watched directories to fflags used in kqueue.
+	paths           map[int]pathInfo  // Map file descriptors to path names for processing kqueue events.
+	fileExists      map[string]bool   // Keep track of if we know this file exists (to stop duplicate create events).
+	isClosed        bool              // Set to true when Close() is first called
+}
+
+type pathInfo struct {
+	name  string
+	isDir bool
+}
+
+// NewWatcher establishes a new watcher with the underlying OS and begins waiting for events.
+func NewWatcher() (*Watcher, error) {
+	kq, err := kqueue()
+	if err != nil {
+		return nil, err
+	}
+
+	w := &Watcher{
+		kq:              kq,
+		watches:         make(map[string]int),
+		dirFlags:        make(map[string]uint32),
+		paths:           make(map[int]pathInfo),
+		fileExists:      make(map[string]bool),
+		externalWatches: make(map[string]bool),
+		Events:          make(chan Event),
+		Errors:          make(chan error),
+		done:            make(chan struct{}),
+	}
+
+	go w.readEvents()
+	return w, nil
+}
+
+// Close removes all watches and closes the events channel.
+func (w *Watcher) Close() error {
+	w.mu.Lock()
+	if w.isClosed {
+		w.mu.Unlock()
+		return nil
+	}
+	w.isClosed = true
+
+	// copy paths to remove while locked
+	var pathsToRemove = make([]string, 0, len(w.watches))
+	for name := range w.watches {
+		pathsToRemove = append(pathsToRemove, name)
+	}
+	w.mu.Unlock()
+	// unlock before calling Remove, which also locks
+
+	for _, name := range pathsToRemove {
+		w.Remove(name)
+	}
+
+	// send a "quit" message to the reader goroutine
+	close(w.done)
+
+	return nil
+}
+
+// Add starts watching the named file or directory (non-recursively).
+func (w *Watcher) Add(name string) error {
+	w.mu.Lock()
+	w.externalWatches[name] = true
+	w.mu.Unlock()
+	_, err := w.addWatch(name, noteAllEvents)
+	return err
+}
+
+// Remove stops watching the the named file or directory (non-recursively).
+func (w *Watcher) Remove(name string) error {
+	name = filepath.Clean(name)
+	w.mu.Lock()
+	watchfd, ok := w.watches[name]
+	w.mu.Unlock()
+	if !ok {
+		return fmt.Errorf("can't remove non-existent kevent watch for: %s", name)
+	}
+
+	const registerRemove = unix.EV_DELETE
+	if err := register(w.kq, []int{watchfd}, registerRemove, 0); err != nil {
+		return err
+	}
+
+	unix.Close(watchfd)
+
+	w.mu.Lock()
+	isDir := w.paths[watchfd].isDir
+	delete(w.watches, name)
+	delete(w.paths, watchfd)
+	delete(w.dirFlags, name)
+	w.mu.Unlock()
+
+	// Find all watched paths that are in this directory that are not external.
+	if isDir {
+		var pathsToRemove []string
+		w.mu.Lock()
+		for _, path := range w.paths {
+			wdir, _ := filepath.Split(path.name)
+			if filepath.Clean(wdir) == name {
+				if !w.externalWatches[path.name] {
+					pathsToRemove = append(pathsToRemove, path.name)
+				}
+			}
+		}
+		w.mu.Unlock()
+		for _, name := range pathsToRemove {
+			// Since these are internal, not much sense in propagating error
+			// to the user, as that will just confuse them with an error about
+			// a path they did not explicitly watch themselves.
+			w.Remove(name)
+		}
+	}
+
+	return nil
+}
+
+// Watch all events (except NOTE_EXTEND, NOTE_LINK, NOTE_REVOKE)
+const noteAllEvents = unix.NOTE_DELETE | unix.NOTE_WRITE | unix.NOTE_ATTRIB | unix.NOTE_RENAME
+
+// keventWaitTime to block on each read from kevent
+var keventWaitTime = durationToTimespec(100 * time.Millisecond)
+
+// addWatch adds name to the watched file set.
+// The flags are interpreted as described in kevent(2).
+// Returns the real path to the file which was added, if any, which may be different from the one passed in the case of symlinks.
+func (w *Watcher) addWatch(name string, flags uint32) (string, error) {
+	var isDir bool
+	// Make ./name and name equivalent
+	name = filepath.Clean(name)
+
+	w.mu.Lock()
+	if w.isClosed {
+		w.mu.Unlock()
+		return "", errors.New("kevent instance already closed")
+	}
+	watchfd, alreadyWatching := w.watches[name]
+	// We already have a watch, but we can still override flags.
+	if alreadyWatching {
+		isDir = w.paths[watchfd].isDir
+	}
+	w.mu.Unlock()
+
+	if !alreadyWatching {
+		fi, err := os.Lstat(name)
+		if err != nil {
+			return "", err
+		}
+
+		// Don't watch sockets.
+		if fi.Mode()&os.ModeSocket == os.ModeSocket {
+			return "", nil
+		}
+
+		// Don't watch named pipes.
+		if fi.Mode()&os.ModeNamedPipe == os.ModeNamedPipe {
+			return "", nil
+		}
+
+		// Follow Symlinks
+		// Unfortunately, Linux can add bogus symlinks to watch list without
+		// issue, and Windows can't do symlinks period (AFAIK). To  maintain
+		// consistency, we will act like everything is fine. There will simply
+		// be no file events for broken symlinks.
+		// Hence the returns of nil on errors.
+		if fi.Mode()&os.ModeSymlink == os.ModeSymlink {
+			name, err = filepath.EvalSymlinks(name)
+			if err != nil {
+				return "", nil
+			}
+
+			w.mu.Lock()
+			_, alreadyWatching = w.watches[name]
+			w.mu.Unlock()
+
+			if alreadyWatching {
+				return name, nil
+			}
+
+			fi, err = os.Lstat(name)
+			if err != nil {
+				return "", nil
+			}
+		}
+
+		watchfd, err = unix.Open(name, openMode, 0700)
+		if watchfd == -1 {
+			return "", err
+		}
+
+		isDir = fi.IsDir()
+	}
+
+	const registerAdd = unix.EV_ADD | unix.EV_CLEAR | unix.EV_ENABLE
+	if err := register(w.kq, []int{watchfd}, registerAdd, flags); err != nil {
+		unix.Close(watchfd)
+		return "", err
+	}
+
+	if !alreadyWatching {
+		w.mu.Lock()
+		w.watches[name] = watchfd
+		w.paths[watchfd] = pathInfo{name: name, isDir: isDir}
+		w.mu.Unlock()
+	}
+
+	if isDir {
+		// Watch the directory if it has not been watched before,
+		// or if it was watched before, but perhaps only a NOTE_DELETE (watchDirectoryFiles)
+		w.mu.Lock()
+
+		watchDir := (flags&unix.NOTE_WRITE) == unix.NOTE_WRITE &&
+			(!alreadyWatching || (w.dirFlags[name]&unix.NOTE_WRITE) != unix.NOTE_WRITE)
+		// Store flags so this watch can be updated later
+		w.dirFlags[name] = flags
+		w.mu.Unlock()
+
+		if watchDir {
+			if err := w.watchDirectoryFiles(name); err != nil {
+				return "", err
+			}
+		}
+	}
+	return name, nil
+}
+
+// readEvents reads from kqueue and converts the received kevents into
+// Event values that it sends down the Events channel.
+func (w *Watcher) readEvents() {
+	eventBuffer := make([]unix.Kevent_t, 10)
+
+loop:
+	for {
+		// See if there is a message on the "done" channel
+		select {
+		case <-w.done:
+			break loop
+		default:
+		}
+
+		// Get new events
+		kevents, err := read(w.kq, eventBuffer, &keventWaitTime)
+		// EINTR is okay, the syscall was interrupted before timeout expired.
+		if err != nil && err != unix.EINTR {
+			select {
+			case w.Errors <- err:
+			case <-w.done:
+				break loop
+			}
+			continue
+		}
+
+		// Flush the events we received to the Events channel
+		for len(kevents) > 0 {
+			kevent := &kevents[0]
+			watchfd := int(kevent.Ident)
+			mask := uint32(kevent.Fflags)
+			w.mu.Lock()
+			path := w.paths[watchfd]
+			w.mu.Unlock()
+			event := newEvent(path.name, mask)
+
+			if path.isDir && !(event.Op&Remove == Remove) {
+				// Double check to make sure the directory exists. This can happen when
+				// we do a rm -fr on a recursively watched folders and we receive a
+				// modification event first but the folder has been deleted and later
+				// receive the delete event
+				if _, err := os.Lstat(event.Name); os.IsNotExist(err) {
+					// mark is as delete event
+					event.Op |= Remove
+				}
+			}
+
+			if event.Op&Rename == Rename || event.Op&Remove == Remove {
+				w.Remove(event.Name)
+				w.mu.Lock()
+				delete(w.fileExists, event.Name)
+				w.mu.Unlock()
+			}
+
+			if path.isDir && event.Op&Write == Write && !(event.Op&Remove == Remove) {
+				w.sendDirectoryChangeEvents(event.Name)
+			} else {
+				// Send the event on the Events channel.
+				select {
+				case w.Events <- event:
+				case <-w.done:
+					break loop
+				}
+			}
+
+			if event.Op&Remove == Remove {
+				// Look for a file that may have overwritten this.
+				// For example, mv f1 f2 will delete f2, then create f2.
+				if path.isDir {
+					fileDir := filepath.Clean(event.Name)
+					w.mu.Lock()
+					_, found := w.watches[fileDir]
+					w.mu.Unlock()
+					if found {
+						// make sure the directory exists before we watch for changes. When we
+						// do a recursive watch and perform rm -fr, the parent directory might
+						// have gone missing, ignore the missing directory and let the
+						// upcoming delete event remove the watch from the parent directory.
+						if _, err := os.Lstat(fileDir); err == nil {
+							w.sendDirectoryChangeEvents(fileDir)
+						}
+					}
+				} else {
+					filePath := filepath.Clean(event.Name)
+					if fileInfo, err := os.Lstat(filePath); err == nil {
+						w.sendFileCreatedEventIfNew(filePath, fileInfo)
+					}
+				}
+			}
+
+			// Move to next event
+			kevents = kevents[1:]
+		}
+	}
+
+	// cleanup
+	err := unix.Close(w.kq)
+	if err != nil {
+		// only way the previous loop breaks is if w.done was closed so we need to async send to w.Errors.
+		select {
+		case w.Errors <- err:
+		default:
+		}
+	}
+	close(w.Events)
+	close(w.Errors)
+}
+
+// newEvent returns an platform-independent Event based on kqueue Fflags.
+func newEvent(name string, mask uint32) Event {
+	e := Event{Name: name}
+	if mask&unix.NOTE_DELETE == unix.NOTE_DELETE {
+		e.Op |= Remove
+	}
+	if mask&unix.NOTE_WRITE == unix.NOTE_WRITE {
+		e.Op |= Write
+	}
+	if mask&unix.NOTE_RENAME == unix.NOTE_RENAME {
+		e.Op |= Rename
+	}
+	if mask&unix.NOTE_ATTRIB == unix.NOTE_ATTRIB {
+		e.Op |= Chmod
+	}
+	return e
+}
+
+func newCreateEvent(name string) Event {
+	return Event{Name: name, Op: Create}
+}
+
+// watchDirectoryFiles to mimic inotify when adding a watch on a directory
+func (w *Watcher) watchDirectoryFiles(dirPath string) error {
+	// Get all files
+	files, err := ioutil.ReadDir(dirPath)
+	if err != nil {
+		return err
+	}
+
+	for _, fileInfo := range files {
+		filePath := filepath.Join(dirPath, fileInfo.Name())
+		filePath, err = w.internalWatch(filePath, fileInfo)
+		if err != nil {
+			return err
+		}
+
+		w.mu.Lock()
+		w.fileExists[filePath] = true
+		w.mu.Unlock()
+	}
+
+	return nil
+}
+
+// sendDirectoryEvents searches the directory for newly created files
+// and sends them over the event channel. This functionality is to have
+// the BSD version of fsnotify match Linux inotify which provides a
+// create event for files created in a watched directory.
+func (w *Watcher) sendDirectoryChangeEvents(dirPath string) {
+	// Get all files
+	files, err := ioutil.ReadDir(dirPath)
+	if err != nil {
+		select {
+		case w.Errors <- err:
+		case <-w.done:
+			return
+		}
+	}
+
+	// Search for new files
+	for _, fileInfo := range files {
+		filePath := filepath.Join(dirPath, fileInfo.Name())
+		err := w.sendFileCreatedEventIfNew(filePath, fileInfo)
+
+		if err != nil {
+			return
+		}
+	}
+}
+
+// sendFileCreatedEvent sends a create event if the file isn't already being tracked.
+func (w *Watcher) sendFileCreatedEventIfNew(filePath string, fileInfo os.FileInfo) (err error) {
+	w.mu.Lock()
+	_, doesExist := w.fileExists[filePath]
+	w.mu.Unlock()
+	if !doesExist {
+		// Send create event
+		select {
+		case w.Events <- newCreateEvent(filePath):
+		case <-w.done:
+			return
+		}
+	}
+
+	// like watchDirectoryFiles (but without doing another ReadDir)
+	filePath, err = w.internalWatch(filePath, fileInfo)
+	if err != nil {
+		return err
+	}
+
+	w.mu.Lock()
+	w.fileExists[filePath] = true
+	w.mu.Unlock()
+
+	return nil
+}
+
+func (w *Watcher) internalWatch(name string, fileInfo os.FileInfo) (string, error) {
+	if fileInfo.IsDir() {
+		// mimic Linux providing delete events for subdirectories
+		// but preserve the flags used if currently watching subdirectory
+		w.mu.Lock()
+		flags := w.dirFlags[name]
+		w.mu.Unlock()
+
+		flags |= unix.NOTE_DELETE | unix.NOTE_RENAME
+		return w.addWatch(name, flags)
+	}
+
+	// watch file to mimic Linux inotify
+	return w.addWatch(name, noteAllEvents)
+}
+
+// kqueue creates a new kernel event queue and returns a descriptor.
+func kqueue() (kq int, err error) {
+	kq, err = unix.Kqueue()
+	if kq == -1 {
+		return kq, err
+	}
+	return kq, nil
+}
+
+// register events with the queue
+func register(kq int, fds []int, flags int, fflags uint32) error {
+	changes := make([]unix.Kevent_t, len(fds))
+
+	for i, fd := range fds {
+		// SetKevent converts int to the platform-specific types:
+		unix.SetKevent(&changes[i], fd, unix.EVFILT_VNODE, flags)
+		changes[i].Fflags = fflags
+	}
+
+	// register the events
+	success, err := unix.Kevent(kq, changes, nil, nil)
+	if success == -1 {
+		return err
+	}
+	return nil
+}
+
+// read retrieves pending events, or waits until an event occurs.
+// A timeout of nil blocks indefinitely, while 0 polls the queue.
+func read(kq int, events []unix.Kevent_t, timeout *unix.Timespec) ([]unix.Kevent_t, error) {
+	n, err := unix.Kevent(kq, nil, events, timeout)
+	if err != nil {
+		return nil, err
+	}
+	return events[0:n], nil
+}
+
+// durationToTimespec prepares a timeout value
+func durationToTimespec(d time.Duration) unix.Timespec {
+	return unix.NsecToTimespec(d.Nanoseconds())
+}
diff --git a/vendor/github.com/fsnotify/fsnotify/open_mode_bsd.go b/vendor/github.com/fsnotify/fsnotify/open_mode_bsd.go
new file mode 100644
index 0000000000..7d8de14513
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/open_mode_bsd.go
@@ -0,0 +1,11 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build freebsd openbsd netbsd dragonfly
+
+package fsnotify
+
+import "golang.org/x/sys/unix"
+
+const openMode = unix.O_NONBLOCK | unix.O_RDONLY
diff --git a/vendor/github.com/fsnotify/fsnotify/open_mode_darwin.go b/vendor/github.com/fsnotify/fsnotify/open_mode_darwin.go
new file mode 100644
index 0000000000..9139e17161
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/open_mode_darwin.go
@@ -0,0 +1,12 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin
+
+package fsnotify
+
+import "golang.org/x/sys/unix"
+
+// note: this constant is not defined on BSD
+const openMode = unix.O_EVTONLY
diff --git a/vendor/github.com/fsnotify/fsnotify/windows.go b/vendor/github.com/fsnotify/fsnotify/windows.go
new file mode 100644
index 0000000000..09436f31d8
--- /dev/null
+++ b/vendor/github.com/fsnotify/fsnotify/windows.go
@@ -0,0 +1,561 @@
+// Copyright 2011 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build windows
+
+package fsnotify
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"path/filepath"
+	"runtime"
+	"sync"
+	"syscall"
+	"unsafe"
+)
+
+// Watcher watches a set of files, delivering events to a channel.
+type Watcher struct {
+	Events   chan Event
+	Errors   chan error
+	isClosed bool           // Set to true when Close() is first called
+	mu       sync.Mutex     // Map access
+	port     syscall.Handle // Handle to completion port
+	watches  watchMap       // Map of watches (key: i-number)
+	input    chan *input    // Inputs to the reader are sent on this channel
+	quit     chan chan<- error
+}
+
+// NewWatcher establishes a new watcher with the underlying OS and begins waiting for events.
+func NewWatcher() (*Watcher, error) {
+	port, e := syscall.CreateIoCompletionPort(syscall.InvalidHandle, 0, 0, 0)
+	if e != nil {
+		return nil, os.NewSyscallError("CreateIoCompletionPort", e)
+	}
+	w := &Watcher{
+		port:    port,
+		watches: make(watchMap),
+		input:   make(chan *input, 1),
+		Events:  make(chan Event, 50),
+		Errors:  make(chan error),
+		quit:    make(chan chan<- error, 1),
+	}
+	go w.readEvents()
+	return w, nil
+}
+
+// Close removes all watches and closes the events channel.
+func (w *Watcher) Close() error {
+	if w.isClosed {
+		return nil
+	}
+	w.isClosed = true
+
+	// Send "quit" message to the reader goroutine
+	ch := make(chan error)
+	w.quit <- ch
+	if err := w.wakeupReader(); err != nil {
+		return err
+	}
+	return <-ch
+}
+
+// Add starts watching the named file or directory (non-recursively).
+func (w *Watcher) Add(name string) error {
+	if w.isClosed {
+		return errors.New("watcher already closed")
+	}
+	in := &input{
+		op:    opAddWatch,
+		path:  filepath.Clean(name),
+		flags: sysFSALLEVENTS,
+		reply: make(chan error),
+	}
+	w.input <- in
+	if err := w.wakeupReader(); err != nil {
+		return err
+	}
+	return <-in.reply
+}
+
+// Remove stops watching the the named file or directory (non-recursively).
+func (w *Watcher) Remove(name string) error {
+	in := &input{
+		op:    opRemoveWatch,
+		path:  filepath.Clean(name),
+		reply: make(chan error),
+	}
+	w.input <- in
+	if err := w.wakeupReader(); err != nil {
+		return err
+	}
+	return <-in.reply
+}
+
+const (
+	// Options for AddWatch
+	sysFSONESHOT = 0x80000000
+	sysFSONLYDIR = 0x1000000
+
+	// Events
+	sysFSACCESS     = 0x1
+	sysFSALLEVENTS  = 0xfff
+	sysFSATTRIB     = 0x4
+	sysFSCLOSE      = 0x18
+	sysFSCREATE     = 0x100
+	sysFSDELETE     = 0x200
+	sysFSDELETESELF = 0x400
+	sysFSMODIFY     = 0x2
+	sysFSMOVE       = 0xc0
+	sysFSMOVEDFROM  = 0x40
+	sysFSMOVEDTO    = 0x80
+	sysFSMOVESELF   = 0x800
+
+	// Special events
+	sysFSIGNORED   = 0x8000
+	sysFSQOVERFLOW = 0x4000
+)
+
+func newEvent(name string, mask uint32) Event {
+	e := Event{Name: name}
+	if mask&sysFSCREATE == sysFSCREATE || mask&sysFSMOVEDTO == sysFSMOVEDTO {
+		e.Op |= Create
+	}
+	if mask&sysFSDELETE == sysFSDELETE || mask&sysFSDELETESELF == sysFSDELETESELF {
+		e.Op |= Remove
+	}
+	if mask&sysFSMODIFY == sysFSMODIFY {
+		e.Op |= Write
+	}
+	if mask&sysFSMOVE == sysFSMOVE || mask&sysFSMOVESELF == sysFSMOVESELF || mask&sysFSMOVEDFROM == sysFSMOVEDFROM {
+		e.Op |= Rename
+	}
+	if mask&sysFSATTRIB == sysFSATTRIB {
+		e.Op |= Chmod
+	}
+	return e
+}
+
+const (
+	opAddWatch = iota
+	opRemoveWatch
+)
+
+const (
+	provisional uint64 = 1 << (32 + iota)
+)
+
+type input struct {
+	op    int
+	path  string
+	flags uint32
+	reply chan error
+}
+
+type inode struct {
+	handle syscall.Handle
+	volume uint32
+	index  uint64
+}
+
+type watch struct {
+	ov     syscall.Overlapped
+	ino    *inode            // i-number
+	path   string            // Directory path
+	mask   uint64            // Directory itself is being watched with these notify flags
+	names  map[string]uint64 // Map of names being watched and their notify flags
+	rename string            // Remembers the old name while renaming a file
+	buf    [4096]byte
+}
+
+type indexMap map[uint64]*watch
+type watchMap map[uint32]indexMap
+
+func (w *Watcher) wakeupReader() error {
+	e := syscall.PostQueuedCompletionStatus(w.port, 0, 0, nil)
+	if e != nil {
+		return os.NewSyscallError("PostQueuedCompletionStatus", e)
+	}
+	return nil
+}
+
+func getDir(pathname string) (dir string, err error) {
+	attr, e := syscall.GetFileAttributes(syscall.StringToUTF16Ptr(pathname))
+	if e != nil {
+		return "", os.NewSyscallError("GetFileAttributes", e)
+	}
+	if attr&syscall.FILE_ATTRIBUTE_DIRECTORY != 0 {
+		dir = pathname
+	} else {
+		dir, _ = filepath.Split(pathname)
+		dir = filepath.Clean(dir)
+	}
+	return
+}
+
+func getIno(path string) (ino *inode, err error) {
+	h, e := syscall.CreateFile(syscall.StringToUTF16Ptr(path),
+		syscall.FILE_LIST_DIRECTORY,
+		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE|syscall.FILE_SHARE_DELETE,
+		nil, syscall.OPEN_EXISTING,
+		syscall.FILE_FLAG_BACKUP_SEMANTICS|syscall.FILE_FLAG_OVERLAPPED, 0)
+	if e != nil {
+		return nil, os.NewSyscallError("CreateFile", e)
+	}
+	var fi syscall.ByHandleFileInformation
+	if e = syscall.GetFileInformationByHandle(h, &fi); e != nil {
+		syscall.CloseHandle(h)
+		return nil, os.NewSyscallError("GetFileInformationByHandle", e)
+	}
+	ino = &inode{
+		handle: h,
+		volume: fi.VolumeSerialNumber,
+		index:  uint64(fi.FileIndexHigh)<<32 | uint64(fi.FileIndexLow),
+	}
+	return ino, nil
+}
+
+// Must run within the I/O thread.
+func (m watchMap) get(ino *inode) *watch {
+	if i := m[ino.volume]; i != nil {
+		return i[ino.index]
+	}
+	return nil
+}
+
+// Must run within the I/O thread.
+func (m watchMap) set(ino *inode, watch *watch) {
+	i := m[ino.volume]
+	if i == nil {
+		i = make(indexMap)
+		m[ino.volume] = i
+	}
+	i[ino.index] = watch
+}
+
+// Must run within the I/O thread.
+func (w *Watcher) addWatch(pathname string, flags uint64) error {
+	dir, err := getDir(pathname)
+	if err != nil {
+		return err
+	}
+	if flags&sysFSONLYDIR != 0 && pathname != dir {
+		return nil
+	}
+	ino, err := getIno(dir)
+	if err != nil {
+		return err
+	}
+	w.mu.Lock()
+	watchEntry := w.watches.get(ino)
+	w.mu.Unlock()
+	if watchEntry == nil {
+		if _, e := syscall.CreateIoCompletionPort(ino.handle, w.port, 0, 0); e != nil {
+			syscall.CloseHandle(ino.handle)
+			return os.NewSyscallError("CreateIoCompletionPort", e)
+		}
+		watchEntry = &watch{
+			ino:   ino,
+			path:  dir,
+			names: make(map[string]uint64),
+		}
+		w.mu.Lock()
+		w.watches.set(ino, watchEntry)
+		w.mu.Unlock()
+		flags |= provisional
+	} else {
+		syscall.CloseHandle(ino.handle)
+	}
+	if pathname == dir {
+		watchEntry.mask |= flags
+	} else {
+		watchEntry.names[filepath.Base(pathname)] |= flags
+	}
+	if err = w.startRead(watchEntry); err != nil {
+		return err
+	}
+	if pathname == dir {
+		watchEntry.mask &= ^provisional
+	} else {
+		watchEntry.names[filepath.Base(pathname)] &= ^provisional
+	}
+	return nil
+}
+
+// Must run within the I/O thread.
+func (w *Watcher) remWatch(pathname string) error {
+	dir, err := getDir(pathname)
+	if err != nil {
+		return err
+	}
+	ino, err := getIno(dir)
+	if err != nil {
+		return err
+	}
+	w.mu.Lock()
+	watch := w.watches.get(ino)
+	w.mu.Unlock()
+	if watch == nil {
+		return fmt.Errorf("can't remove non-existent watch for: %s", pathname)
+	}
+	if pathname == dir {
+		w.sendEvent(watch.path, watch.mask&sysFSIGNORED)
+		watch.mask = 0
+	} else {
+		name := filepath.Base(pathname)
+		w.sendEvent(filepath.Join(watch.path, name), watch.names[name]&sysFSIGNORED)
+		delete(watch.names, name)
+	}
+	return w.startRead(watch)
+}
+
+// Must run within the I/O thread.
+func (w *Watcher) deleteWatch(watch *watch) {
+	for name, mask := range watch.names {
+		if mask&provisional == 0 {
+			w.sendEvent(filepath.Join(watch.path, name), mask&sysFSIGNORED)
+		}
+		delete(watch.names, name)
+	}
+	if watch.mask != 0 {
+		if watch.mask&provisional == 0 {
+			w.sendEvent(watch.path, watch.mask&sysFSIGNORED)
+		}
+		watch.mask = 0
+	}
+}
+
+// Must run within the I/O thread.
+func (w *Watcher) startRead(watch *watch) error {
+	if e := syscall.CancelIo(watch.ino.handle); e != nil {
+		w.Errors <- os.NewSyscallError("CancelIo", e)
+		w.deleteWatch(watch)
+	}
+	mask := toWindowsFlags(watch.mask)
+	for _, m := range watch.names {
+		mask |= toWindowsFlags(m)
+	}
+	if mask == 0 {
+		if e := syscall.CloseHandle(watch.ino.handle); e != nil {
+			w.Errors <- os.NewSyscallError("CloseHandle", e)
+		}
+		w.mu.Lock()
+		delete(w.watches[watch.ino.volume], watch.ino.index)
+		w.mu.Unlock()
+		return nil
+	}
+	e := syscall.ReadDirectoryChanges(watch.ino.handle, &watch.buf[0],
+		uint32(unsafe.Sizeof(watch.buf)), false, mask, nil, &watch.ov, 0)
+	if e != nil {
+		err := os.NewSyscallError("ReadDirectoryChanges", e)
+		if e == syscall.ERROR_ACCESS_DENIED && watch.mask&provisional == 0 {
+			// Watched directory was probably removed
+			if w.sendEvent(watch.path, watch.mask&sysFSDELETESELF) {
+				if watch.mask&sysFSONESHOT != 0 {
+					watch.mask = 0
+				}
+			}
+			err = nil
+		}
+		w.deleteWatch(watch)
+		w.startRead(watch)
+		return err
+	}
+	return nil
+}
+
+// readEvents reads from the I/O completion port, converts the
+// received events into Event objects and sends them via the Events channel.
+// Entry point to the I/O thread.
+func (w *Watcher) readEvents() {
+	var (
+		n, key uint32
+		ov     *syscall.Overlapped
+	)
+	runtime.LockOSThread()
+
+	for {
+		e := syscall.GetQueuedCompletionStatus(w.port, &n, &key, &ov, syscall.INFINITE)
+		watch := (*watch)(unsafe.Pointer(ov))
+
+		if watch == nil {
+			select {
+			case ch := <-w.quit:
+				w.mu.Lock()
+				var indexes []indexMap
+				for _, index := range w.watches {
+					indexes = append(indexes, index)
+				}
+				w.mu.Unlock()
+				for _, index := range indexes {
+					for _, watch := range index {
+						w.deleteWatch(watch)
+						w.startRead(watch)
+					}
+				}
+				var err error
+				if e := syscall.CloseHandle(w.port); e != nil {
+					err = os.NewSyscallError("CloseHandle", e)
+				}
+				close(w.Events)
+				close(w.Errors)
+				ch <- err
+				return
+			case in := <-w.input:
+				switch in.op {
+				case opAddWatch:
+					in.reply <- w.addWatch(in.path, uint64(in.flags))
+				case opRemoveWatch:
+					in.reply <- w.remWatch(in.path)
+				}
+			default:
+			}
+			continue
+		}
+
+		switch e {
+		case syscall.ERROR_MORE_DATA:
+			if watch == nil {
+				w.Errors <- errors.New("ERROR_MORE_DATA has unexpectedly null lpOverlapped buffer")
+			} else {
+				// The i/o succeeded but the buffer is full.
+				// In theory we should be building up a full packet.
+				// In practice we can get away with just carrying on.
+				n = uint32(unsafe.Sizeof(watch.buf))
+			}
+		case syscall.ERROR_ACCESS_DENIED:
+			// Watched directory was probably removed
+			w.sendEvent(watch.path, watch.mask&sysFSDELETESELF)
+			w.deleteWatch(watch)
+			w.startRead(watch)
+			continue
+		case syscall.ERROR_OPERATION_ABORTED:
+			// CancelIo was called on this handle
+			continue
+		default:
+			w.Errors <- os.NewSyscallError("GetQueuedCompletionPort", e)
+			continue
+		case nil:
+		}
+
+		var offset uint32
+		for {
+			if n == 0 {
+				w.Events <- newEvent("", sysFSQOVERFLOW)
+				w.Errors <- errors.New("short read in readEvents()")
+				break
+			}
+
+			// Point "raw" to the event in the buffer
+			raw := (*syscall.FileNotifyInformation)(unsafe.Pointer(&watch.buf[offset]))
+			buf := (*[syscall.MAX_PATH]uint16)(unsafe.Pointer(&raw.FileName))
+			name := syscall.UTF16ToString(buf[:raw.FileNameLength/2])
+			fullname := filepath.Join(watch.path, name)
+
+			var mask uint64
+			switch raw.Action {
+			case syscall.FILE_ACTION_REMOVED:
+				mask = sysFSDELETESELF
+			case syscall.FILE_ACTION_MODIFIED:
+				mask = sysFSMODIFY
+			case syscall.FILE_ACTION_RENAMED_OLD_NAME:
+				watch.rename = name
+			case syscall.FILE_ACTION_RENAMED_NEW_NAME:
+				if watch.names[watch.rename] != 0 {
+					watch.names[name] |= watch.names[watch.rename]
+					delete(watch.names, watch.rename)
+					mask = sysFSMOVESELF
+				}
+			}
+
+			sendNameEvent := func() {
+				if w.sendEvent(fullname, watch.names[name]&mask) {
+					if watch.names[name]&sysFSONESHOT != 0 {
+						delete(watch.names, name)
+					}
+				}
+			}
+			if raw.Action != syscall.FILE_ACTION_RENAMED_NEW_NAME {
+				sendNameEvent()
+			}
+			if raw.Action == syscall.FILE_ACTION_REMOVED {
+				w.sendEvent(fullname, watch.names[name]&sysFSIGNORED)
+				delete(watch.names, name)
+			}
+			if w.sendEvent(fullname, watch.mask&toFSnotifyFlags(raw.Action)) {
+				if watch.mask&sysFSONESHOT != 0 {
+					watch.mask = 0
+				}
+			}
+			if raw.Action == syscall.FILE_ACTION_RENAMED_NEW_NAME {
+				fullname = filepath.Join(watch.path, watch.rename)
+				sendNameEvent()
+			}
+
+			// Move to the next event in the buffer
+			if raw.NextEntryOffset == 0 {
+				break
+			}
+			offset += raw.NextEntryOffset
+
+			// Error!
+			if offset >= n {
+				w.Errors <- errors.New("Windows system assumed buffer larger than it is, events have likely been missed.")
+				break
+			}
+		}
+
+		if err := w.startRead(watch); err != nil {
+			w.Errors <- err
+		}
+	}
+}
+
+func (w *Watcher) sendEvent(name string, mask uint64) bool {
+	if mask == 0 {
+		return false
+	}
+	event := newEvent(name, uint32(mask))
+	select {
+	case ch := <-w.quit:
+		w.quit <- ch
+	case w.Events <- event:
+	}
+	return true
+}
+
+func toWindowsFlags(mask uint64) uint32 {
+	var m uint32
+	if mask&sysFSACCESS != 0 {
+		m |= syscall.FILE_NOTIFY_CHANGE_LAST_ACCESS
+	}
+	if mask&sysFSMODIFY != 0 {
+		m |= syscall.FILE_NOTIFY_CHANGE_LAST_WRITE
+	}
+	if mask&sysFSATTRIB != 0 {
+		m |= syscall.FILE_NOTIFY_CHANGE_ATTRIBUTES
+	}
+	if mask&(sysFSMOVE|sysFSCREATE|sysFSDELETE) != 0 {
+		m |= syscall.FILE_NOTIFY_CHANGE_FILE_NAME | syscall.FILE_NOTIFY_CHANGE_DIR_NAME
+	}
+	return m
+}
+
+func toFSnotifyFlags(action uint32) uint64 {
+	switch action {
+	case syscall.FILE_ACTION_ADDED:
+		return sysFSCREATE
+	case syscall.FILE_ACTION_REMOVED:
+		return sysFSDELETE
+	case syscall.FILE_ACTION_MODIFIED:
+		return sysFSMODIFY
+	case syscall.FILE_ACTION_RENAMED_OLD_NAME:
+		return sysFSMOVEDFROM
+	case syscall.FILE_ACTION_RENAMED_NEW_NAME:
+		return sysFSMOVEDTO
+	}
+	return 0
+}
diff --git a/vendor/github.com/godbus/dbus/LICENSE b/vendor/github.com/godbus/dbus/LICENSE
new file mode 100644
index 0000000000..670d88fcaa
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/LICENSE
@@ -0,0 +1,25 @@
+Copyright (c) 2013, Georg Reinke (<guelfey at gmail dot com>), Google
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions
+are met:
+
+1. Redistributions of source code must retain the above copyright notice,
+this list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright
+notice, this list of conditions and the following disclaimer in the
+documentation and/or other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/godbus/dbus/auth.go b/vendor/github.com/godbus/dbus/auth.go
new file mode 100644
index 0000000000..98017b693e
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/auth.go
@@ -0,0 +1,253 @@
+package dbus
+
+import (
+	"bufio"
+	"bytes"
+	"errors"
+	"io"
+	"os"
+	"strconv"
+)
+
+// AuthStatus represents the Status of an authentication mechanism.
+type AuthStatus byte
+
+const (
+	// AuthOk signals that authentication is finished; the next command
+	// from the server should be an OK.
+	AuthOk AuthStatus = iota
+
+	// AuthContinue signals that additional data is needed; the next command
+	// from the server should be a DATA.
+	AuthContinue
+
+	// AuthError signals an error; the server sent invalid data or some
+	// other unexpected thing happened and the current authentication
+	// process should be aborted.
+	AuthError
+)
+
+type authState byte
+
+const (
+	waitingForData authState = iota
+	waitingForOk
+	waitingForReject
+)
+
+// Auth defines the behaviour of an authentication mechanism.
+type Auth interface {
+	// Return the name of the mechnism, the argument to the first AUTH command
+	// and the next status.
+	FirstData() (name, resp []byte, status AuthStatus)
+
+	// Process the given DATA command, and return the argument to the DATA
+	// command and the next status. If len(resp) == 0, no DATA command is sent.
+	HandleData(data []byte) (resp []byte, status AuthStatus)
+}
+
+// Auth authenticates the connection, trying the given list of authentication
+// mechanisms (in that order). If nil is passed, the EXTERNAL and
+// DBUS_COOKIE_SHA1 mechanisms are tried for the current user. For private
+// connections, this method must be called before sending any messages to the
+// bus. Auth must not be called on shared connections.
+func (conn *Conn) Auth(methods []Auth) error {
+	if methods == nil {
+		uid := strconv.Itoa(os.Getuid())
+		methods = []Auth{AuthExternal(uid), AuthCookieSha1(uid, getHomeDir())}
+	}
+	in := bufio.NewReader(conn.transport)
+	err := conn.transport.SendNullByte()
+	if err != nil {
+		return err
+	}
+	err = authWriteLine(conn.transport, []byte("AUTH"))
+	if err != nil {
+		return err
+	}
+	s, err := authReadLine(in)
+	if err != nil {
+		return err
+	}
+	if len(s) < 2 || !bytes.Equal(s[0], []byte("REJECTED")) {
+		return errors.New("dbus: authentication protocol error")
+	}
+	s = s[1:]
+	for _, v := range s {
+		for _, m := range methods {
+			if name, data, status := m.FirstData(); bytes.Equal(v, name) {
+				var ok bool
+				err = authWriteLine(conn.transport, []byte("AUTH"), []byte(v), data)
+				if err != nil {
+					return err
+				}
+				switch status {
+				case AuthOk:
+					err, ok = conn.tryAuth(m, waitingForOk, in)
+				case AuthContinue:
+					err, ok = conn.tryAuth(m, waitingForData, in)
+				default:
+					panic("dbus: invalid authentication status")
+				}
+				if err != nil {
+					return err
+				}
+				if ok {
+					if conn.transport.SupportsUnixFDs() {
+						err = authWriteLine(conn, []byte("NEGOTIATE_UNIX_FD"))
+						if err != nil {
+							return err
+						}
+						line, err := authReadLine(in)
+						if err != nil {
+							return err
+						}
+						switch {
+						case bytes.Equal(line[0], []byte("AGREE_UNIX_FD")):
+							conn.EnableUnixFDs()
+							conn.unixFD = true
+						case bytes.Equal(line[0], []byte("ERROR")):
+						default:
+							return errors.New("dbus: authentication protocol error")
+						}
+					}
+					err = authWriteLine(conn.transport, []byte("BEGIN"))
+					if err != nil {
+						return err
+					}
+					go conn.inWorker()
+					go conn.outWorker()
+					return nil
+				}
+			}
+		}
+	}
+	return errors.New("dbus: authentication failed")
+}
+
+// tryAuth tries to authenticate with m as the mechanism, using state as the
+// initial authState and in for reading input. It returns (nil, true) on
+// success, (nil, false) on a REJECTED and (someErr, false) if some other
+// error occured.
+func (conn *Conn) tryAuth(m Auth, state authState, in *bufio.Reader) (error, bool) {
+	for {
+		s, err := authReadLine(in)
+		if err != nil {
+			return err, false
+		}
+		switch {
+		case state == waitingForData && string(s[0]) == "DATA":
+			if len(s) != 2 {
+				err = authWriteLine(conn.transport, []byte("ERROR"))
+				if err != nil {
+					return err, false
+				}
+				continue
+			}
+			data, status := m.HandleData(s[1])
+			switch status {
+			case AuthOk, AuthContinue:
+				if len(data) != 0 {
+					err = authWriteLine(conn.transport, []byte("DATA"), data)
+					if err != nil {
+						return err, false
+					}
+				}
+				if status == AuthOk {
+					state = waitingForOk
+				}
+			case AuthError:
+				err = authWriteLine(conn.transport, []byte("ERROR"))
+				if err != nil {
+					return err, false
+				}
+			}
+		case state == waitingForData && string(s[0]) == "REJECTED":
+			return nil, false
+		case state == waitingForData && string(s[0]) == "ERROR":
+			err = authWriteLine(conn.transport, []byte("CANCEL"))
+			if err != nil {
+				return err, false
+			}
+			state = waitingForReject
+		case state == waitingForData && string(s[0]) == "OK":
+			if len(s) != 2 {
+				err = authWriteLine(conn.transport, []byte("CANCEL"))
+				if err != nil {
+					return err, false
+				}
+				state = waitingForReject
+			}
+			conn.uuid = string(s[1])
+			return nil, true
+		case state == waitingForData:
+			err = authWriteLine(conn.transport, []byte("ERROR"))
+			if err != nil {
+				return err, false
+			}
+		case state == waitingForOk && string(s[0]) == "OK":
+			if len(s) != 2 {
+				err = authWriteLine(conn.transport, []byte("CANCEL"))
+				if err != nil {
+					return err, false
+				}
+				state = waitingForReject
+			}
+			conn.uuid = string(s[1])
+			return nil, true
+		case state == waitingForOk && string(s[0]) == "REJECTED":
+			return nil, false
+		case state == waitingForOk && (string(s[0]) == "DATA" ||
+			string(s[0]) == "ERROR"):
+
+			err = authWriteLine(conn.transport, []byte("CANCEL"))
+			if err != nil {
+				return err, false
+			}
+			state = waitingForReject
+		case state == waitingForOk:
+			err = authWriteLine(conn.transport, []byte("ERROR"))
+			if err != nil {
+				return err, false
+			}
+		case state == waitingForReject && string(s[0]) == "REJECTED":
+			return nil, false
+		case state == waitingForReject:
+			return errors.New("dbus: authentication protocol error"), false
+		default:
+			panic("dbus: invalid auth state")
+		}
+	}
+}
+
+// authReadLine reads a line and separates it into its fields.
+func authReadLine(in *bufio.Reader) ([][]byte, error) {
+	data, err := in.ReadBytes('\n')
+	if err != nil {
+		return nil, err
+	}
+	data = bytes.TrimSuffix(data, []byte("\r\n"))
+	return bytes.Split(data, []byte{' '}), nil
+}
+
+// authWriteLine writes the given line in the authentication protocol format
+// (elements of data separated by a " " and terminated by "\r\n").
+func authWriteLine(out io.Writer, data ...[]byte) error {
+	buf := make([]byte, 0)
+	for i, v := range data {
+		buf = append(buf, v...)
+		if i != len(data)-1 {
+			buf = append(buf, ' ')
+		}
+	}
+	buf = append(buf, '\r')
+	buf = append(buf, '\n')
+	n, err := out.Write(buf)
+	if err != nil {
+		return err
+	}
+	if n != len(buf) {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
diff --git a/vendor/github.com/godbus/dbus/auth_external.go b/vendor/github.com/godbus/dbus/auth_external.go
new file mode 100644
index 0000000000..7e376d3ef6
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/auth_external.go
@@ -0,0 +1,26 @@
+package dbus
+
+import (
+	"encoding/hex"
+)
+
+// AuthExternal returns an Auth that authenticates as the given user with the
+// EXTERNAL mechanism.
+func AuthExternal(user string) Auth {
+	return authExternal{user}
+}
+
+// AuthExternal implements the EXTERNAL authentication mechanism.
+type authExternal struct {
+	user string
+}
+
+func (a authExternal) FirstData() ([]byte, []byte, AuthStatus) {
+	b := make([]byte, 2*len(a.user))
+	hex.Encode(b, []byte(a.user))
+	return []byte("EXTERNAL"), b, AuthOk
+}
+
+func (a authExternal) HandleData(b []byte) ([]byte, AuthStatus) {
+	return nil, AuthError
+}
diff --git a/vendor/github.com/godbus/dbus/auth_sha1.go b/vendor/github.com/godbus/dbus/auth_sha1.go
new file mode 100644
index 0000000000..df15b46119
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/auth_sha1.go
@@ -0,0 +1,102 @@
+package dbus
+
+import (
+	"bufio"
+	"bytes"
+	"crypto/rand"
+	"crypto/sha1"
+	"encoding/hex"
+	"os"
+)
+
+// AuthCookieSha1 returns an Auth that authenticates as the given user with the
+// DBUS_COOKIE_SHA1 mechanism. The home parameter should specify the home
+// directory of the user.
+func AuthCookieSha1(user, home string) Auth {
+	return authCookieSha1{user, home}
+}
+
+type authCookieSha1 struct {
+	user, home string
+}
+
+func (a authCookieSha1) FirstData() ([]byte, []byte, AuthStatus) {
+	b := make([]byte, 2*len(a.user))
+	hex.Encode(b, []byte(a.user))
+	return []byte("DBUS_COOKIE_SHA1"), b, AuthContinue
+}
+
+func (a authCookieSha1) HandleData(data []byte) ([]byte, AuthStatus) {
+	challenge := make([]byte, len(data)/2)
+	_, err := hex.Decode(challenge, data)
+	if err != nil {
+		return nil, AuthError
+	}
+	b := bytes.Split(challenge, []byte{' '})
+	if len(b) != 3 {
+		return nil, AuthError
+	}
+	context := b[0]
+	id := b[1]
+	svchallenge := b[2]
+	cookie := a.getCookie(context, id)
+	if cookie == nil {
+		return nil, AuthError
+	}
+	clchallenge := a.generateChallenge()
+	if clchallenge == nil {
+		return nil, AuthError
+	}
+	hash := sha1.New()
+	hash.Write(bytes.Join([][]byte{svchallenge, clchallenge, cookie}, []byte{':'}))
+	hexhash := make([]byte, 2*hash.Size())
+	hex.Encode(hexhash, hash.Sum(nil))
+	data = append(clchallenge, ' ')
+	data = append(data, hexhash...)
+	resp := make([]byte, 2*len(data))
+	hex.Encode(resp, data)
+	return resp, AuthOk
+}
+
+// getCookie searches for the cookie identified by id in context and returns
+// the cookie content or nil. (Since HandleData can't return a specific error,
+// but only whether an error occured, this function also doesn't bother to
+// return an error.)
+func (a authCookieSha1) getCookie(context, id []byte) []byte {
+	file, err := os.Open(a.home + "/.dbus-keyrings/" + string(context))
+	if err != nil {
+		return nil
+	}
+	defer file.Close()
+	rd := bufio.NewReader(file)
+	for {
+		line, err := rd.ReadBytes('\n')
+		if err != nil {
+			return nil
+		}
+		line = line[:len(line)-1]
+		b := bytes.Split(line, []byte{' '})
+		if len(b) != 3 {
+			return nil
+		}
+		if bytes.Equal(b[0], id) {
+			return b[2]
+		}
+	}
+}
+
+// generateChallenge returns a random, hex-encoded challenge, or nil on error
+// (see above).
+func (a authCookieSha1) generateChallenge() []byte {
+	b := make([]byte, 16)
+	n, err := rand.Read(b)
+	if err != nil {
+		return nil
+	}
+	if n != 16 {
+		return nil
+	}
+	enc := make([]byte, 32)
+	hex.Encode(enc, b)
+	return enc
+}
diff --git a/vendor/github.com/godbus/dbus/call.go b/vendor/github.com/godbus/dbus/call.go
new file mode 100644
index 0000000000..ba6e73f607
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/call.go
@@ -0,0 +1,36 @@
+package dbus
+
+import (
+	"errors"
+)
+
+// Call represents a pending or completed method call.
+type Call struct {
+	Destination string
+	Path        ObjectPath
+	Method      string
+	Args        []interface{}
+
+	// Strobes when the call is complete.
+	Done chan *Call
+
+	// After completion, the error status. If this is non-nil, it may be an
+	// error message from the peer (with Error as its type) or some other error.
+	Err error
+
+	// Holds the response once the call is done.
+	Body []interface{}
+}
+
+var errSignature = errors.New("dbus: mismatched signature")
+
+// Store stores the body of the reply into the provided pointers. It returns
+// an error if the signatures of the body and retvalues don't match, or if
+// the error status is not nil.
+func (c *Call) Store(retvalues ...interface{}) error {
+	if c.Err != nil {
+		return c.Err
+	}
+
+	return Store(c.Body, retvalues...)
+}
diff --git a/vendor/github.com/godbus/dbus/conn.go b/vendor/github.com/godbus/dbus/conn.go
new file mode 100644
index 0000000000..5720e2ebbf
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/conn.go
@@ -0,0 +1,683 @@
+package dbus
+
+import (
+	"errors"
+	"io"
+	"os"
+	"reflect"
+	"strings"
+	"sync"
+)
+
+var (
+	systemBus     *Conn
+	systemBusLck  sync.Mutex
+	sessionBus    *Conn
+	sessionBusLck sync.Mutex
+	sessionEnvLck sync.Mutex
+)
+
+// ErrClosed is the error returned by calls on a closed connection.
+var ErrClosed = errors.New("dbus: connection closed by user")
+
+// Conn represents a connection to a message bus (usually, the system or
+// session bus).
+//
+// Connections are either shared or private. Shared connections
+// are shared between calls to the functions that return them. As a result,
+// the methods Close, Auth and Hello must not be called on them.
+//
+// Multiple goroutines may invoke methods on a connection simultaneously.
+type Conn struct {
+	transport
+
+	busObj BusObject
+	unixFD bool
+	uuid   string
+
+	names    []string
+	namesLck sync.RWMutex
+
+	serialLck  sync.Mutex
+	nextSerial uint32
+	serialUsed map[uint32]bool
+
+	calls    map[uint32]*Call
+	callsLck sync.RWMutex
+
+	handler Handler
+
+	out    chan *Message
+	closed bool
+	outLck sync.RWMutex
+
+	signalHandler SignalHandler
+
+	eavesdropped    chan<- *Message
+	eavesdroppedLck sync.Mutex
+}
+
+// SessionBus returns a shared connection to the session bus, connecting to it
+// if not already done.
+func SessionBus() (conn *Conn, err error) {
+	sessionBusLck.Lock()
+	defer sessionBusLck.Unlock()
+	if sessionBus != nil {
+		return sessionBus, nil
+	}
+	defer func() {
+		if conn != nil {
+			sessionBus = conn
+		}
+	}()
+	conn, err = SessionBusPrivate()
+	if err != nil {
+		return
+	}
+	if err = conn.Auth(nil); err != nil {
+		conn.Close()
+		conn = nil
+		return
+	}
+	if err = conn.Hello(); err != nil {
+		conn.Close()
+		conn = nil
+	}
+	return
+}
+
+func getSessionBusAddress() (string, error) {
+	sessionEnvLck.Lock()
+	defer sessionEnvLck.Unlock()
+	address := os.Getenv("DBUS_SESSION_BUS_ADDRESS")
+	if address != "" && address != "autolaunch:" {
+		return address, nil
+	}
+	return getSessionBusPlatformAddress()
+}
+
+// SessionBusPrivate returns a new private connection to the session bus.
+func SessionBusPrivate() (*Conn, error) {
+	address, err := getSessionBusAddress()
+	if err != nil {
+		return nil, err
+	}
+
+	return Dial(address)
+}
+
+// SessionBusPrivate returns a new private connection to the session bus.
+func SessionBusPrivateHandler(handler Handler, signalHandler SignalHandler) (*Conn, error) {
+	address, err := getSessionBusAddress()
+	if err != nil {
+		return nil, err
+	}
+	return DialHandler(address, handler, signalHandler)
+}
+
+// SystemBus returns a shared connection to the system bus, connecting to it if
+// not already done.
+func SystemBus() (conn *Conn, err error) {
+	systemBusLck.Lock()
+	defer systemBusLck.Unlock()
+	if systemBus != nil {
+		return systemBus, nil
+	}
+	defer func() {
+		if conn != nil {
+			systemBus = conn
+		}
+	}()
+	conn, err = SystemBusPrivate()
+	if err != nil {
+		return
+	}
+	if err = conn.Auth(nil); err != nil {
+		conn.Close()
+		conn = nil
+		return
+	}
+	if err = conn.Hello(); err != nil {
+		conn.Close()
+		conn = nil
+	}
+	return
+}
+
+// SystemBusPrivate returns a new private connection to the system bus.
+func SystemBusPrivate() (*Conn, error) {
+	return Dial(getSystemBusPlatformAddress())
+}
+
+// SystemBusPrivateHandler returns a new private connection to the system bus, using the provided handlers.
+func SystemBusPrivateHandler(handler Handler, signalHandler SignalHandler) (*Conn, error) {
+	return DialHandler(getSystemBusPlatformAddress(), handler, signalHandler)
+}
+
+// Dial establishes a new private connection to the message bus specified by address.
+func Dial(address string) (*Conn, error) {
+	tr, err := getTransport(address)
+	if err != nil {
+		return nil, err
+	}
+	return newConn(tr, NewDefaultHandler(), NewDefaultSignalHandler())
+}
+
+// DialHandler establishes a new private connection to the message bus specified by address, using the supplied handlers.
+func DialHandler(address string, handler Handler, signalHandler SignalHandler) (*Conn, error) {
+	tr, err := getTransport(address)
+	if err != nil {
+		return nil, err
+	}
+	return newConn(tr, handler, signalHandler)
+}
+
+// NewConn creates a new private *Conn from an already established connection.
+func NewConn(conn io.ReadWriteCloser) (*Conn, error) {
+	return NewConnHandler(conn, NewDefaultHandler(), NewDefaultSignalHandler())
+}
+
+// NewConnHandler creates a new private *Conn from an already established connection, using the supplied handlers.
+func NewConnHandler(conn io.ReadWriteCloser, handler Handler, signalHandler SignalHandler) (*Conn, error) {
+	return newConn(genericTransport{conn}, handler, signalHandler)
+}
+
+// newConn creates a new *Conn from a transport.
+func newConn(tr transport, handler Handler, signalHandler SignalHandler) (*Conn, error) {
+	conn := new(Conn)
+	conn.transport = tr
+	conn.calls = make(map[uint32]*Call)
+	conn.out = make(chan *Message, 10)
+	conn.handler = handler
+	conn.signalHandler = signalHandler
+	conn.nextSerial = 1
+	conn.serialUsed = map[uint32]bool{0: true}
+	conn.busObj = conn.Object("org.freedesktop.DBus", "/org/freedesktop/DBus")
+	return conn, nil
+}
+
+// BusObject returns the object owned by the bus daemon which handles
+// administrative requests.
+func (conn *Conn) BusObject() BusObject {
+	return conn.busObj
+}
+
+// Close closes the connection. Any blocked operations will return with errors
+// and the channels passed to Eavesdrop and Signal are closed. This method must
+// not be called on shared connections.
+func (conn *Conn) Close() error {
+	conn.outLck.Lock()
+	if conn.closed {
+		// inWorker calls Close on read error, the read error may
+		// be caused by another caller calling Close to shutdown the
+		// dbus connection, a double-close scenario we prevent here.
+		conn.outLck.Unlock()
+		return nil
+	}
+	close(conn.out)
+	conn.closed = true
+	conn.outLck.Unlock()
+
+	if term, ok := conn.signalHandler.(Terminator); ok {
+		term.Terminate()
+	}
+
+	if term, ok := conn.handler.(Terminator); ok {
+		term.Terminate()
+	}
+
+	conn.eavesdroppedLck.Lock()
+	if conn.eavesdropped != nil {
+		close(conn.eavesdropped)
+	}
+	conn.eavesdroppedLck.Unlock()
+
+	return conn.transport.Close()
+}
+
+// Eavesdrop causes conn to send all incoming messages to the given channel
+// without further processing. Method replies, errors and signals will not be
+// sent to the appropiate channels and method calls will not be handled. If nil
+// is passed, the normal behaviour is restored.
+//
+// The caller has to make sure that ch is sufficiently buffered;
+// if a message arrives when a write to ch is not possible, the message is
+// discarded.
+func (conn *Conn) Eavesdrop(ch chan<- *Message) {
+	conn.eavesdroppedLck.Lock()
+	conn.eavesdropped = ch
+	conn.eavesdroppedLck.Unlock()
+}
+
+// getSerial returns an unused serial.
+func (conn *Conn) getSerial() uint32 {
+	conn.serialLck.Lock()
+	defer conn.serialLck.Unlock()
+	n := conn.nextSerial
+	for conn.serialUsed[n] {
+		n++
+	}
+	conn.serialUsed[n] = true
+	conn.nextSerial = n + 1
+	return n
+}
+
+// Hello sends the initial org.freedesktop.DBus.Hello call. This method must be
+// called after authentication, but before sending any other messages to the
+// bus. Hello must not be called for shared connections.
+func (conn *Conn) Hello() error {
+	var s string
+	err := conn.busObj.Call("org.freedesktop.DBus.Hello", 0).Store(&s)
+	if err != nil {
+		return err
+	}
+	conn.namesLck.Lock()
+	conn.names = make([]string, 1)
+	conn.names[0] = s
+	conn.namesLck.Unlock()
+	return nil
+}
+
+// inWorker runs in an own goroutine, reading incoming messages from the
+// transport and dispatching them appropiately.
+func (conn *Conn) inWorker() {
+	for {
+		msg, err := conn.ReadMessage()
+		if err == nil {
+			conn.eavesdroppedLck.Lock()
+			if conn.eavesdropped != nil {
+				select {
+				case conn.eavesdropped <- msg:
+				default:
+				}
+				conn.eavesdroppedLck.Unlock()
+				continue
+			}
+			conn.eavesdroppedLck.Unlock()
+			dest, _ := msg.Headers[FieldDestination].value.(string)
+			found := false
+			if dest == "" {
+				found = true
+			} else {
+				conn.namesLck.RLock()
+				if len(conn.names) == 0 {
+					found = true
+				}
+				for _, v := range conn.names {
+					if dest == v {
+						found = true
+						break
+					}
+				}
+				conn.namesLck.RUnlock()
+			}
+			if !found {
+				// Eavesdropped a message, but no channel for it is registered.
+				// Ignore it.
+				continue
+			}
+			switch msg.Type {
+			case TypeMethodReply, TypeError:
+				serial := msg.Headers[FieldReplySerial].value.(uint32)
+				conn.callsLck.Lock()
+				if c, ok := conn.calls[serial]; ok {
+					if msg.Type == TypeError {
+						name, _ := msg.Headers[FieldErrorName].value.(string)
+						c.Err = Error{name, msg.Body}
+					} else {
+						c.Body = msg.Body
+					}
+					c.Done <- c
+					conn.serialLck.Lock()
+					delete(conn.serialUsed, serial)
+					conn.serialLck.Unlock()
+					delete(conn.calls, serial)
+				}
+				conn.callsLck.Unlock()
+			case TypeSignal:
+				iface := msg.Headers[FieldInterface].value.(string)
+				member := msg.Headers[FieldMember].value.(string)
+				// as per http://dbus.freedesktop.org/doc/dbus-specification.html ,
+				// sender is optional for signals.
+				sender, _ := msg.Headers[FieldSender].value.(string)
+				if iface == "org.freedesktop.DBus" && sender == "org.freedesktop.DBus" {
+					if member == "NameLost" {
+						// If we lost the name on the bus, remove it from our
+						// tracking list.
+						name, ok := msg.Body[0].(string)
+						if !ok {
+							panic("Unable to read the lost name")
+						}
+						conn.namesLck.Lock()
+						for i, v := range conn.names {
+							if v == name {
+								conn.names = append(conn.names[:i],
+									conn.names[i+1:]...)
+							}
+						}
+						conn.namesLck.Unlock()
+					} else if member == "NameAcquired" {
+						// If we acquired the name on the bus, add it to our
+						// tracking list.
+						name, ok := msg.Body[0].(string)
+						if !ok {
+							panic("Unable to read the acquired name")
+						}
+						conn.namesLck.Lock()
+						conn.names = append(conn.names, name)
+						conn.namesLck.Unlock()
+					}
+				}
+				conn.handleSignal(msg)
+			case TypeMethodCall:
+				go conn.handleCall(msg)
+			}
+		} else if _, ok := err.(InvalidMessageError); !ok {
+			// Some read error occured (usually EOF); we can't really do
+			// anything but to shut down all stuff and returns errors to all
+			// pending replies.
+			conn.Close()
+			conn.callsLck.RLock()
+			for _, v := range conn.calls {
+				v.Err = err
+				v.Done <- v
+			}
+			conn.callsLck.RUnlock()
+			return
+		}
+		// invalid messages are ignored
+	}
+}
+
+func (conn *Conn) handleSignal(msg *Message) {
+	iface := msg.Headers[FieldInterface].value.(string)
+	member := msg.Headers[FieldMember].value.(string)
+	// as per http://dbus.freedesktop.org/doc/dbus-specification.html ,
+	// sender is optional for signals.
+	sender, _ := msg.Headers[FieldSender].value.(string)
+	signal := &Signal{
+		Sender: sender,
+		Path:   msg.Headers[FieldPath].value.(ObjectPath),
+		Name:   iface + "." + member,
+		Body:   msg.Body,
+	}
+	conn.signalHandler.DeliverSignal(iface, member, signal)
+}
+
+// Names returns the list of all names that are currently owned by this
+// connection. The slice is always at least one element long, the first element
+// being the unique name of the connection.
+func (conn *Conn) Names() []string {
+	conn.namesLck.RLock()
+	// copy the slice so it can't be modified
+	s := make([]string, len(conn.names))
+	copy(s, conn.names)
+	conn.namesLck.RUnlock()
+	return s
+}
+
+// Object returns the object identified by the given destination name and path.
+func (conn *Conn) Object(dest string, path ObjectPath) BusObject {
+	return &Object{conn, dest, path}
+}
+
+// outWorker runs in an own goroutine, encoding and sending messages that are
+// sent to conn.out.
+func (conn *Conn) outWorker() {
+	for msg := range conn.out {
+		err := conn.SendMessage(msg)
+		conn.callsLck.RLock()
+		if err != nil {
+			if c := conn.calls[msg.serial]; c != nil {
+				c.Err = err
+				c.Done <- c
+			}
+			conn.serialLck.Lock()
+			delete(conn.serialUsed, msg.serial)
+			conn.serialLck.Unlock()
+		} else if msg.Type != TypeMethodCall {
+			conn.serialLck.Lock()
+			delete(conn.serialUsed, msg.serial)
+			conn.serialLck.Unlock()
+		}
+		conn.callsLck.RUnlock()
+	}
+}
+
+// Send sends the given message to the message bus. You usually don't need to
+// use this; use the higher-level equivalents (Call / Go, Emit and Export)
+// instead. If msg is a method call and NoReplyExpected is not set, a non-nil
+// call is returned and the same value is sent to ch (which must be buffered)
+// once the call is complete. Otherwise, ch is ignored and a Call structure is
+// returned of which only the Err member is valid.
+func (conn *Conn) Send(msg *Message, ch chan *Call) *Call {
+	var call *Call
+
+	msg.serial = conn.getSerial()
+	if msg.Type == TypeMethodCall && msg.Flags&FlagNoReplyExpected == 0 {
+		if ch == nil {
+			ch = make(chan *Call, 5)
+		} else if cap(ch) == 0 {
+			panic("dbus: unbuffered channel passed to (*Conn).Send")
+		}
+		call = new(Call)
+		call.Destination, _ = msg.Headers[FieldDestination].value.(string)
+		call.Path, _ = msg.Headers[FieldPath].value.(ObjectPath)
+		iface, _ := msg.Headers[FieldInterface].value.(string)
+		member, _ := msg.Headers[FieldMember].value.(string)
+		call.Method = iface + "." + member
+		call.Args = msg.Body
+		call.Done = ch
+		conn.callsLck.Lock()
+		conn.calls[msg.serial] = call
+		conn.callsLck.Unlock()
+		conn.outLck.RLock()
+		if conn.closed {
+			call.Err = ErrClosed
+			call.Done <- call
+		} else {
+			conn.out <- msg
+		}
+		conn.outLck.RUnlock()
+	} else {
+		conn.outLck.RLock()
+		if conn.closed {
+			call = &Call{Err: ErrClosed}
+		} else {
+			conn.out <- msg
+			call = &Call{Err: nil}
+		}
+		conn.outLck.RUnlock()
+	}
+	return call
+}
+
+// sendError creates an error message corresponding to the parameters and sends
+// it to conn.out.
+func (conn *Conn) sendError(err error, dest string, serial uint32) {
+	var e *Error
+	switch em := err.(type) {
+	case Error:
+		e = &em
+	case *Error:
+		e = em
+	case DBusError:
+		name, body := em.DBusError()
+		e = NewError(name, body)
+	default:
+		e = MakeFailedError(err)
+	}
+	msg := new(Message)
+	msg.Type = TypeError
+	msg.serial = conn.getSerial()
+	msg.Headers = make(map[HeaderField]Variant)
+	if dest != "" {
+		msg.Headers[FieldDestination] = MakeVariant(dest)
+	}
+	msg.Headers[FieldErrorName] = MakeVariant(e.Name)
+	msg.Headers[FieldReplySerial] = MakeVariant(serial)
+	msg.Body = e.Body
+	if len(e.Body) > 0 {
+		msg.Headers[FieldSignature] = MakeVariant(SignatureOf(e.Body...))
+	}
+	conn.outLck.RLock()
+	if !conn.closed {
+		conn.out <- msg
+	}
+	conn.outLck.RUnlock()
+}
+
+// sendReply creates a method reply message corresponding to the parameters and
+// sends it to conn.out.
+func (conn *Conn) sendReply(dest string, serial uint32, values ...interface{}) {
+	msg := new(Message)
+	msg.Type = TypeMethodReply
+	msg.serial = conn.getSerial()
+	msg.Headers = make(map[HeaderField]Variant)
+	if dest != "" {
+		msg.Headers[FieldDestination] = MakeVariant(dest)
+	}
+	msg.Headers[FieldReplySerial] = MakeVariant(serial)
+	msg.Body = values
+	if len(values) > 0 {
+		msg.Headers[FieldSignature] = MakeVariant(SignatureOf(values...))
+	}
+	conn.outLck.RLock()
+	if !conn.closed {
+		conn.out <- msg
+	}
+	conn.outLck.RUnlock()
+}
+
+func (conn *Conn) defaultSignalAction(fn func(h *defaultSignalHandler, ch chan<- *Signal), ch chan<- *Signal) {
+	if !isDefaultSignalHandler(conn.signalHandler) {
+		return
+	}
+	handler := conn.signalHandler.(*defaultSignalHandler)
+	fn(handler, ch)
+}
+
+// Signal registers the given channel to be passed all received signal messages.
+// The caller has to make sure that ch is sufficiently buffered; if a message
+// arrives when a write to c is not possible, it is discarded.
+//
+// Multiple of these channels can be registered at the same time.
+//
+// These channels are "overwritten" by Eavesdrop; i.e., if there currently is a
+// channel for eavesdropped messages, this channel receives all signals, and
+// none of the channels passed to Signal will receive any signals.
+func (conn *Conn) Signal(ch chan<- *Signal) {
+	conn.defaultSignalAction((*defaultSignalHandler).addSignal, ch)
+}
+
+// RemoveSignal removes the given channel from the list of the registered channels.
+func (conn *Conn) RemoveSignal(ch chan<- *Signal) {
+	conn.defaultSignalAction((*defaultSignalHandler).removeSignal, ch)
+}
+
+// SupportsUnixFDs returns whether the underlying transport supports passing of
+// unix file descriptors. If this is false, method calls containing unix file
+// descriptors will return an error and emitted signals containing them will
+// not be sent.
+func (conn *Conn) SupportsUnixFDs() bool {
+	return conn.unixFD
+}
+
+// Error represents a D-Bus message of type Error.
+type Error struct {
+	Name string
+	Body []interface{}
+}
+
+func NewError(name string, body []interface{}) *Error {
+	return &Error{name, body}
+}
+
+func (e Error) Error() string {
+	if len(e.Body) >= 1 {
+		s, ok := e.Body[0].(string)
+		if ok {
+			return s
+		}
+	}
+	return e.Name
+}
+
+// Signal represents a D-Bus message of type Signal. The name member is given in
+// "interface.member" notation, e.g. org.freedesktop.D-Bus.NameLost.
+type Signal struct {
+	Sender string
+	Path   ObjectPath
+	Name   string
+	Body   []interface{}
+}
+
+// transport is a D-Bus transport.
+type transport interface {
+	// Read and Write raw data (for example, for the authentication protocol).
+	io.ReadWriteCloser
+
+	// Send the initial null byte used for the EXTERNAL mechanism.
+	SendNullByte() error
+
+	// Returns whether this transport supports passing Unix FDs.
+	SupportsUnixFDs() bool
+
+	// Signal the transport that Unix FD passing is enabled for this connection.
+	EnableUnixFDs()
+
+	// Read / send a message, handling things like Unix FDs.
+	ReadMessage() (*Message, error)
+	SendMessage(*Message) error
+}
+
+var (
+	transports = make(map[string]func(string) (transport, error))
+)
+
+func getTransport(address string) (transport, error) {
+	var err error
+	var t transport
+
+	addresses := strings.Split(address, ";")
+	for _, v := range addresses {
+		i := strings.IndexRune(v, ':')
+		if i == -1 {
+			err = errors.New("dbus: invalid bus address (no transport)")
+			continue
+		}
+		f := transports[v[:i]]
+		if f == nil {
+			err = errors.New("dbus: invalid bus address (invalid or unsupported transport)")
+			continue
+		}
+		t, err = f(v[i+1:])
+		if err == nil {
+			return t, nil
+		}
+	}
+	return nil, err
+}
+
+// dereferenceAll returns a slice that, assuming that vs is a slice of pointers
+// of arbitrary types, containes the values that are obtained from dereferencing
+// all elements in vs.
+func dereferenceAll(vs []interface{}) []interface{} {
+	for i := range vs {
+		v := reflect.ValueOf(vs[i])
+		v = v.Elem()
+		vs[i] = v.Interface()
+	}
+	return vs
+}
+
+// getKey gets a key from a the list of keys. Returns "" on error / not found...
+func getKey(s, key string) string {
+	for _, keyEqualsValue := range strings.Split(s, ",") {
+		keyValue := strings.SplitN(keyEqualsValue, "=", 2)
+		if len(keyValue) == 2 && keyValue[0] == key {
+			return keyValue[1]
+		}
+	}
+	return ""
+}
diff --git a/vendor/github.com/godbus/dbus/conn_darwin.go b/vendor/github.com/godbus/dbus/conn_darwin.go
new file mode 100644
index 0000000000..c015f80ce7
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/conn_darwin.go
@@ -0,0 +1,33 @@
+package dbus
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"os/exec"
+)
+
+const defaultSystemBusAddress = "unix:path=/opt/local/var/run/dbus/system_bus_socket"
+
+func getSessionBusPlatformAddress() (string, error) {
+	cmd := exec.Command("launchctl", "getenv", "DBUS_LAUNCHD_SESSION_BUS_SOCKET")
+	b, err := cmd.CombinedOutput()
+
+	if err != nil {
+		return "", err
+	}
+
+	if len(b) == 0 {
+		return "", errors.New("dbus: couldn't determine address of session bus")
+	}
+
+	return "unix:path=" + string(b[:len(b)-1]), nil
+}
+
+func getSystemBusPlatformAddress() string {
+	address := os.Getenv("DBUS_LAUNCHD_SESSION_BUS_SOCKET")
+	if address != "" {
+		return fmt.Sprintf("unix:path=%s", address)
+	}
+	return defaultSystemBusAddress
+}
diff --git a/vendor/github.com/godbus/dbus/conn_other.go b/vendor/github.com/godbus/dbus/conn_other.go
new file mode 100644
index 0000000000..254c9f2ef6
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/conn_other.go
@@ -0,0 +1,42 @@
+// +build !darwin
+
+package dbus
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"os"
+	"os/exec"
+)
+
+const defaultSystemBusAddress = "unix:path=/var/run/dbus/system_bus_socket"
+
+func getSessionBusPlatformAddress() (string, error) {
+	cmd := exec.Command("dbus-launch")
+	b, err := cmd.CombinedOutput()
+
+	if err != nil {
+		return "", err
+	}
+
+	i := bytes.IndexByte(b, '=')
+	j := bytes.IndexByte(b, '\n')
+
+	if i == -1 || j == -1 {
+		return "", errors.New("dbus: couldn't determine address of session bus")
+	}
+
+	env, addr := string(b[0:i]), string(b[i+1:j])
+	os.Setenv(env, addr)
+
+	return addr, nil
+}
+
+func getSystemBusPlatformAddress() string {
+	address := os.Getenv("DBUS_SYSTEM_BUS_ADDRESS")
+	if address != "" {
+		return fmt.Sprintf("unix:path=%s", address)
+	}
+	return defaultSystemBusAddress
+}
diff --git a/vendor/github.com/godbus/dbus/dbus.go b/vendor/github.com/godbus/dbus/dbus.go
new file mode 100644
index 0000000000..c6d0d3ce0e
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/dbus.go
@@ -0,0 +1,427 @@
+package dbus
+
+import (
+	"errors"
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+var (
+	byteType        = reflect.TypeOf(byte(0))
+	boolType        = reflect.TypeOf(false)
+	uint8Type       = reflect.TypeOf(uint8(0))
+	int16Type       = reflect.TypeOf(int16(0))
+	uint16Type      = reflect.TypeOf(uint16(0))
+	intType         = reflect.TypeOf(int(0))
+	uintType        = reflect.TypeOf(uint(0))
+	int32Type       = reflect.TypeOf(int32(0))
+	uint32Type      = reflect.TypeOf(uint32(0))
+	int64Type       = reflect.TypeOf(int64(0))
+	uint64Type      = reflect.TypeOf(uint64(0))
+	float64Type     = reflect.TypeOf(float64(0))
+	stringType      = reflect.TypeOf("")
+	signatureType   = reflect.TypeOf(Signature{""})
+	objectPathType  = reflect.TypeOf(ObjectPath(""))
+	variantType     = reflect.TypeOf(Variant{Signature{""}, nil})
+	interfacesType  = reflect.TypeOf([]interface{}{})
+	interfaceType   = reflect.TypeOf((*interface{})(nil)).Elem()
+	unixFDType      = reflect.TypeOf(UnixFD(0))
+	unixFDIndexType = reflect.TypeOf(UnixFDIndex(0))
+)
+
+// An InvalidTypeError signals that a value which cannot be represented in the
+// D-Bus wire format was passed to a function.
+type InvalidTypeError struct {
+	Type reflect.Type
+}
+
+func (e InvalidTypeError) Error() string {
+	return "dbus: invalid type " + e.Type.String()
+}
+
+// Store copies the values contained in src to dest, which must be a slice of
+// pointers. It converts slices of interfaces from src to corresponding structs
+// in dest. An error is returned if the lengths of src and dest or the types of
+// their elements don't match.
+func Store(src []interface{}, dest ...interface{}) error {
+	if len(src) != len(dest) {
+		return errors.New("dbus.Store: length mismatch")
+	}
+
+	for i := range src {
+		if err := storeInterfaces(src[i], dest[i]); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func storeInterfaces(src, dest interface{}) error {
+	return store(reflect.ValueOf(dest), reflect.ValueOf(src))
+}
+
+func store(dest, src reflect.Value) error {
+	if dest.Kind() == reflect.Ptr {
+		return store(dest.Elem(), src)
+	}
+	switch src.Kind() {
+	case reflect.Slice:
+		return storeSlice(dest, src)
+	case reflect.Map:
+		return storeMap(dest, src)
+	default:
+		return storeBase(dest, src)
+	}
+}
+
+func storeBase(dest, src reflect.Value) error {
+	return setDest(dest, src)
+}
+
+func setDest(dest, src reflect.Value) error {
+	if !isVariant(src.Type()) && isVariant(dest.Type()) {
+		//special conversion for dbus.Variant
+		dest.Set(reflect.ValueOf(MakeVariant(src.Interface())))
+		return nil
+	}
+	if isVariant(src.Type()) && !isVariant(dest.Type()) {
+		src = getVariantValue(src)
+	}
+	if !src.Type().ConvertibleTo(dest.Type()) {
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: cannot convert %s to %s",
+			src.Type(), dest.Type())
+	}
+	dest.Set(src.Convert(dest.Type()))
+	return nil
+}
+
+func kindsAreCompatible(dest, src reflect.Type) bool {
+	switch {
+	case isVariant(dest):
+		return true
+	case dest.Kind() == reflect.Interface:
+		return true
+	default:
+		return dest.Kind() == src.Kind()
+	}
+}
+
+func isConvertibleTo(dest, src reflect.Type) bool {
+	switch {
+	case isVariant(dest):
+		return true
+	case dest.Kind() == reflect.Interface:
+		return true
+	case dest.Kind() == reflect.Slice:
+		return src.Kind() == reflect.Slice &&
+			isConvertibleTo(dest.Elem(), src.Elem())
+	case dest.Kind() == reflect.Struct:
+		return src == interfacesType
+	default:
+		return src.ConvertibleTo(dest)
+	}
+}
+
+func storeMap(dest, src reflect.Value) error {
+	switch {
+	case !kindsAreCompatible(dest.Type(), src.Type()):
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"map: cannot store a value of %s into %s",
+			src.Type(), dest.Type())
+	case isVariant(dest.Type()):
+		return storeMapIntoVariant(dest, src)
+	case dest.Kind() == reflect.Interface:
+		return storeMapIntoInterface(dest, src)
+	case isConvertibleTo(dest.Type().Key(), src.Type().Key()) &&
+		isConvertibleTo(dest.Type().Elem(), src.Type().Elem()):
+		return storeMapIntoMap(dest, src)
+	default:
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"map: cannot convert a value of %s into %s",
+			src.Type(), dest.Type())
+	}
+}
+
+func storeMapIntoVariant(dest, src reflect.Value) error {
+	dv := reflect.MakeMap(src.Type())
+	err := store(dv, src)
+	if err != nil {
+		return err
+	}
+	return storeBase(dest, dv)
+}
+
+func storeMapIntoInterface(dest, src reflect.Value) error {
+	var dv reflect.Value
+	if isVariant(src.Type().Elem()) {
+		//Convert variants to interface{} recursively when converting
+		//to interface{}
+		dv = reflect.MakeMap(
+			reflect.MapOf(src.Type().Key(), interfaceType))
+	} else {
+		dv = reflect.MakeMap(src.Type())
+	}
+	err := store(dv, src)
+	if err != nil {
+		return err
+	}
+	return storeBase(dest, dv)
+}
+
+func storeMapIntoMap(dest, src reflect.Value) error {
+	if dest.IsNil() {
+		dest.Set(reflect.MakeMap(dest.Type()))
+	}
+	keys := src.MapKeys()
+	for _, key := range keys {
+		dkey := key.Convert(dest.Type().Key())
+		dval := reflect.New(dest.Type().Elem()).Elem()
+		err := store(dval, getVariantValue(src.MapIndex(key)))
+		if err != nil {
+			return err
+		}
+		dest.SetMapIndex(dkey, dval)
+	}
+	return nil
+}
+
+func storeSlice(dest, src reflect.Value) error {
+	switch {
+	case src.Type() == interfacesType && dest.Kind() == reflect.Struct:
+		//The decoder always decodes structs as slices of interface{}
+		return storeStruct(dest, src)
+	case !kindsAreCompatible(dest.Type(), src.Type()):
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"slice: cannot store a value of %s into %s",
+			src.Type(), dest.Type())
+	case isVariant(dest.Type()):
+		return storeSliceIntoVariant(dest, src)
+	case dest.Kind() == reflect.Interface:
+		return storeSliceIntoInterface(dest, src)
+	case isConvertibleTo(dest.Type().Elem(), src.Type().Elem()):
+		return storeSliceIntoSlice(dest, src)
+	default:
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"slice: cannot convert a value of %s into %s",
+			src.Type(), dest.Type())
+	}
+}
+
+func storeStruct(dest, src reflect.Value) error {
+	if isVariant(dest.Type()) {
+		return storeBase(dest, src)
+	}
+	dval := make([]interface{}, 0, dest.NumField())
+	dtype := dest.Type()
+	for i := 0; i < dest.NumField(); i++ {
+		field := dest.Field(i)
+		ftype := dtype.Field(i)
+		if ftype.PkgPath != "" {
+			continue
+		}
+		if ftype.Tag.Get("dbus") == "-" {
+			continue
+		}
+		dval = append(dval, field.Addr().Interface())
+	}
+	if src.Len() != len(dval) {
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"destination struct does not have "+
+				"enough fields need: %d have: %d",
+			src.Len(), len(dval))
+	}
+	return Store(src.Interface().([]interface{}), dval...)
+}
+
+func storeSliceIntoVariant(dest, src reflect.Value) error {
+	dv := reflect.MakeSlice(src.Type(), src.Len(), src.Cap())
+	err := store(dv, src)
+	if err != nil {
+		return err
+	}
+	return storeBase(dest, dv)
+}
+
+func storeSliceIntoInterface(dest, src reflect.Value) error {
+	var dv reflect.Value
+	if isVariant(src.Type().Elem()) {
+		//Convert variants to interface{} recursively when converting
+		//to interface{}
+		dv = reflect.MakeSlice(reflect.SliceOf(interfaceType),
+			src.Len(), src.Cap())
+	} else {
+		dv = reflect.MakeSlice(src.Type(), src.Len(), src.Cap())
+	}
+	err := store(dv, src)
+	if err != nil {
+		return err
+	}
+	return storeBase(dest, dv)
+}
+
+func storeSliceIntoSlice(dest, src reflect.Value) error {
+	if dest.IsNil() || dest.Len() < src.Len() {
+		dest.Set(reflect.MakeSlice(dest.Type(), src.Len(), src.Cap()))
+	}
+	if dest.Len() != src.Len() {
+		return fmt.Errorf(
+			"dbus.Store: type mismatch: "+
+				"slices are different lengths "+
+				"need: %d have: %d",
+			src.Len(), dest.Len())
+	}
+	for i := 0; i < src.Len(); i++ {
+		err := store(dest.Index(i), getVariantValue(src.Index(i)))
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func getVariantValue(in reflect.Value) reflect.Value {
+	if isVariant(in.Type()) {
+		return reflect.ValueOf(in.Interface().(Variant).Value())
+	}
+	return in
+}
+
+func isVariant(t reflect.Type) bool {
+	return t == variantType
+}
+
+// An ObjectPath is an object path as defined by the D-Bus spec.
+type ObjectPath string
+
+// IsValid returns whether the object path is valid.
+func (o ObjectPath) IsValid() bool {
+	s := string(o)
+	if len(s) == 0 {
+		return false
+	}
+	if s[0] != '/' {
+		return false
+	}
+	if s[len(s)-1] == '/' && len(s) != 1 {
+		return false
+	}
+	// probably not used, but technically possible
+	if s == "/" {
+		return true
+	}
+	split := strings.Split(s[1:], "/")
+	for _, v := range split {
+		if len(v) == 0 {
+			return false
+		}
+		for _, c := range v {
+			if !isMemberChar(c) {
+				return false
+			}
+		}
+	}
+	return true
+}
+
+// A UnixFD is a Unix file descriptor sent over the wire. See the package-level
+// documentation for more information about Unix file descriptor passsing.
+type UnixFD int32
+
+// A UnixFDIndex is the representation of a Unix file descriptor in a message.
+type UnixFDIndex uint32
+
+// alignment returns the alignment of values of type t.
+func alignment(t reflect.Type) int {
+	switch t {
+	case variantType:
+		return 1
+	case objectPathType:
+		return 4
+	case signatureType:
+		return 1
+	case interfacesType:
+		return 4
+	}
+	switch t.Kind() {
+	case reflect.Uint8:
+		return 1
+	case reflect.Uint16, reflect.Int16:
+		return 2
+	case reflect.Uint, reflect.Int, reflect.Uint32, reflect.Int32, reflect.String, reflect.Array, reflect.Slice, reflect.Map:
+		return 4
+	case reflect.Uint64, reflect.Int64, reflect.Float64, reflect.Struct:
+		return 8
+	case reflect.Ptr:
+		return alignment(t.Elem())
+	}
+	return 1
+}
+
+// isKeyType returns whether t is a valid type for a D-Bus dict.
+func isKeyType(t reflect.Type) bool {
+	switch t.Kind() {
+	case reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64,
+		reflect.Int16, reflect.Int32, reflect.Int64, reflect.Float64,
+		reflect.String, reflect.Uint, reflect.Int:
+
+		return true
+	}
+	return false
+}
+
+// isValidInterface returns whether s is a valid name for an interface.
+func isValidInterface(s string) bool {
+	if len(s) == 0 || len(s) > 255 || s[0] == '.' {
+		return false
+	}
+	elem := strings.Split(s, ".")
+	if len(elem) < 2 {
+		return false
+	}
+	for _, v := range elem {
+		if len(v) == 0 {
+			return false
+		}
+		if v[0] >= '0' && v[0] <= '9' {
+			return false
+		}
+		for _, c := range v {
+			if !isMemberChar(c) {
+				return false
+			}
+		}
+	}
+	return true
+}
+
+// isValidMember returns whether s is a valid name for a member.
+func isValidMember(s string) bool {
+	if len(s) == 0 || len(s) > 255 {
+		return false
+	}
+	i := strings.Index(s, ".")
+	if i != -1 {
+		return false
+	}
+	if s[0] >= '0' && s[0] <= '9' {
+		return false
+	}
+	for _, c := range s {
+		if !isMemberChar(c) {
+			return false
+		}
+	}
+	return true
+}
+
+func isMemberChar(c rune) bool {
+	return (c >= '0' && c <= '9') || (c >= 'A' && c <= 'Z') ||
+		(c >= 'a' && c <= 'z') || c == '_'
+}
diff --git a/vendor/github.com/godbus/dbus/decoder.go b/vendor/github.com/godbus/dbus/decoder.go
new file mode 100644
index 0000000000..ef50dcab98
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/decoder.go
@@ -0,0 +1,228 @@
+package dbus
+
+import (
+	"encoding/binary"
+	"io"
+	"reflect"
+)
+
+type decoder struct {
+	in    io.Reader
+	order binary.ByteOrder
+	pos   int
+}
+
+// newDecoder returns a new decoder that reads values from in. The input is
+// expected to be in the given byte order.
+func newDecoder(in io.Reader, order binary.ByteOrder) *decoder {
+	dec := new(decoder)
+	dec.in = in
+	dec.order = order
+	return dec
+}
+
+// align aligns the input to the given boundary and panics on error.
+func (dec *decoder) align(n int) {
+	if dec.pos%n != 0 {
+		newpos := (dec.pos + n - 1) & ^(n - 1)
+		empty := make([]byte, newpos-dec.pos)
+		if _, err := io.ReadFull(dec.in, empty); err != nil {
+			panic(err)
+		}
+		dec.pos = newpos
+	}
+}
+
+// Calls binary.Read(dec.in, dec.order, v) and panics on read errors.
+func (dec *decoder) binread(v interface{}) {
+	if err := binary.Read(dec.in, dec.order, v); err != nil {
+		panic(err)
+	}
+}
+
+func (dec *decoder) Decode(sig Signature) (vs []interface{}, err error) {
+	defer func() {
+		var ok bool
+		v := recover()
+		if err, ok = v.(error); ok {
+			if err == io.EOF || err == io.ErrUnexpectedEOF {
+				err = FormatError("unexpected EOF")
+			}
+		}
+	}()
+	vs = make([]interface{}, 0)
+	s := sig.str
+	for s != "" {
+		err, rem := validSingle(s, 0)
+		if err != nil {
+			return nil, err
+		}
+		v := dec.decode(s[:len(s)-len(rem)], 0)
+		vs = append(vs, v)
+		s = rem
+	}
+	return vs, nil
+}
+
+func (dec *decoder) decode(s string, depth int) interface{} {
+	dec.align(alignment(typeFor(s)))
+	switch s[0] {
+	case 'y':
+		var b [1]byte
+		if _, err := dec.in.Read(b[:]); err != nil {
+			panic(err)
+		}
+		dec.pos++
+		return b[0]
+	case 'b':
+		i := dec.decode("u", depth).(uint32)
+		switch {
+		case i == 0:
+			return false
+		case i == 1:
+			return true
+		default:
+			panic(FormatError("invalid value for boolean"))
+		}
+	case 'n':
+		var i int16
+		dec.binread(&i)
+		dec.pos += 2
+		return i
+	case 'i':
+		var i int32
+		dec.binread(&i)
+		dec.pos += 4
+		return i
+	case 'x':
+		var i int64
+		dec.binread(&i)
+		dec.pos += 8
+		return i
+	case 'q':
+		var i uint16
+		dec.binread(&i)
+		dec.pos += 2
+		return i
+	case 'u':
+		var i uint32
+		dec.binread(&i)
+		dec.pos += 4
+		return i
+	case 't':
+		var i uint64
+		dec.binread(&i)
+		dec.pos += 8
+		return i
+	case 'd':
+		var f float64
+		dec.binread(&f)
+		dec.pos += 8
+		return f
+	case 's':
+		length := dec.decode("u", depth).(uint32)
+		b := make([]byte, int(length)+1)
+		if _, err := io.ReadFull(dec.in, b); err != nil {
+			panic(err)
+		}
+		dec.pos += int(length) + 1
+		return string(b[:len(b)-1])
+	case 'o':
+		return ObjectPath(dec.decode("s", depth).(string))
+	case 'g':
+		length := dec.decode("y", depth).(byte)
+		b := make([]byte, int(length)+1)
+		if _, err := io.ReadFull(dec.in, b); err != nil {
+			panic(err)
+		}
+		dec.pos += int(length) + 1
+		sig, err := ParseSignature(string(b[:len(b)-1]))
+		if err != nil {
+			panic(err)
+		}
+		return sig
+	case 'v':
+		if depth >= 64 {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		var variant Variant
+		sig := dec.decode("g", depth).(Signature)
+		if len(sig.str) == 0 {
+			panic(FormatError("variant signature is empty"))
+		}
+		err, rem := validSingle(sig.str, 0)
+		if err != nil {
+			panic(err)
+		}
+		if rem != "" {
+			panic(FormatError("variant signature has multiple types"))
+		}
+		variant.sig = sig
+		variant.value = dec.decode(sig.str, depth+1)
+		return variant
+	case 'h':
+		return UnixFDIndex(dec.decode("u", depth).(uint32))
+	case 'a':
+		if len(s) > 1 && s[1] == '{' {
+			ksig := s[2:3]
+			vsig := s[3 : len(s)-1]
+			v := reflect.MakeMap(reflect.MapOf(typeFor(ksig), typeFor(vsig)))
+			if depth >= 63 {
+				panic(FormatError("input exceeds container depth limit"))
+			}
+			length := dec.decode("u", depth).(uint32)
+			// Even for empty maps, the correct padding must be included
+			dec.align(8)
+			spos := dec.pos
+			for dec.pos < spos+int(length) {
+				dec.align(8)
+				if !isKeyType(v.Type().Key()) {
+					panic(InvalidTypeError{v.Type()})
+				}
+				kv := dec.decode(ksig, depth+2)
+				vv := dec.decode(vsig, depth+2)
+				v.SetMapIndex(reflect.ValueOf(kv), reflect.ValueOf(vv))
+			}
+			return v.Interface()
+		}
+		if depth >= 64 {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		length := dec.decode("u", depth).(uint32)
+		v := reflect.MakeSlice(reflect.SliceOf(typeFor(s[1:])), 0, int(length))
+		// Even for empty arrays, the correct padding must be included
+		dec.align(alignment(typeFor(s[1:])))
+		spos := dec.pos
+		for dec.pos < spos+int(length) {
+			ev := dec.decode(s[1:], depth+1)
+			v = reflect.Append(v, reflect.ValueOf(ev))
+		}
+		return v.Interface()
+	case '(':
+		if depth >= 64 {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		dec.align(8)
+		v := make([]interface{}, 0)
+		s = s[1 : len(s)-1]
+		for s != "" {
+			err, rem := validSingle(s, 0)
+			if err != nil {
+				panic(err)
+			}
+			ev := dec.decode(s[:len(s)-len(rem)], depth+1)
+			v = append(v, ev)
+			s = rem
+		}
+		return v
+	default:
+		panic(SignatureError{Sig: s})
+	}
+}
+
+// A FormatError is an error in the wire format.
+type FormatError string
+
+func (e FormatError) Error() string {
+	return "dbus: wire format error: " + string(e)
+}
diff --git a/vendor/github.com/godbus/dbus/default_handler.go b/vendor/github.com/godbus/dbus/default_handler.go
new file mode 100644
index 0000000000..e81f73ac52
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/default_handler.go
@@ -0,0 +1,291 @@
+package dbus
+
+import (
+	"bytes"
+	"reflect"
+	"strings"
+	"sync"
+)
+
+func newIntrospectIntf(h *defaultHandler) *exportedIntf {
+	methods := make(map[string]Method)
+	methods["Introspect"] = exportedMethod{
+		reflect.ValueOf(func(msg Message) (string, *Error) {
+			path := msg.Headers[FieldPath].value.(ObjectPath)
+			return h.introspectPath(path), nil
+		}),
+	}
+	return newExportedIntf(methods, true)
+}
+
+//NewDefaultHandler returns an instance of the default
+//call handler. This is useful if you want to implement only
+//one of the two handlers but not both.
+func NewDefaultHandler() *defaultHandler {
+	h := &defaultHandler{
+		objects:     make(map[ObjectPath]*exportedObj),
+		defaultIntf: make(map[string]*exportedIntf),
+	}
+	h.defaultIntf["org.freedesktop.DBus.Introspectable"] = newIntrospectIntf(h)
+	return h
+}
+
+type defaultHandler struct {
+	sync.RWMutex
+	objects     map[ObjectPath]*exportedObj
+	defaultIntf map[string]*exportedIntf
+}
+
+func (h *defaultHandler) PathExists(path ObjectPath) bool {
+	_, ok := h.objects[path]
+	return ok
+}
+
+func (h *defaultHandler) introspectPath(path ObjectPath) string {
+	subpath := make(map[string]struct{})
+	var xml bytes.Buffer
+	xml.WriteString("<node>")
+	for obj, _ := range h.objects {
+		p := string(path)
+		if p != "/" {
+			p += "/"
+		}
+		if strings.HasPrefix(string(obj), p) {
+			node_name := strings.Split(string(obj[len(p):]), "/")[0]
+			subpath[node_name] = struct{}{}
+		}
+	}
+	for s, _ := range subpath {
+		xml.WriteString("\n\t<node name=\"" + s + "\"/>")
+	}
+	xml.WriteString("\n</node>")
+	return xml.String()
+}
+
+func (h *defaultHandler) LookupObject(path ObjectPath) (ServerObject, bool) {
+	h.RLock()
+	defer h.RUnlock()
+	object, ok := h.objects[path]
+	if ok {
+		return object, ok
+	}
+
+	// If an object wasn't found for this exact path,
+	// look for a matching subtree registration
+	subtreeObject := newExportedObject()
+	path = path[:strings.LastIndex(string(path), "/")]
+	for len(path) > 0 {
+		object, ok = h.objects[path]
+		if ok {
+			for name, iface := range object.interfaces {
+				// Only include this handler if it registered for the subtree
+				if iface.isFallbackInterface() {
+					subtreeObject.interfaces[name] = iface
+				}
+			}
+			break
+		}
+
+		path = path[:strings.LastIndex(string(path), "/")]
+	}
+
+	for name, intf := range h.defaultIntf {
+		if _, exists := subtreeObject.interfaces[name]; exists {
+			continue
+		}
+		subtreeObject.interfaces[name] = intf
+	}
+
+	return subtreeObject, true
+}
+
+func (h *defaultHandler) AddObject(path ObjectPath, object *exportedObj) {
+	h.Lock()
+	h.objects[path] = object
+	h.Unlock()
+}
+
+func (h *defaultHandler) DeleteObject(path ObjectPath) {
+	h.Lock()
+	delete(h.objects, path)
+	h.Unlock()
+}
+
+type exportedMethod struct {
+	reflect.Value
+}
+
+func (m exportedMethod) Call(args ...interface{}) ([]interface{}, error) {
+	t := m.Type()
+
+	params := make([]reflect.Value, len(args))
+	for i := 0; i < len(args); i++ {
+		params[i] = reflect.ValueOf(args[i]).Elem()
+	}
+
+	ret := m.Value.Call(params)
+
+	err := ret[t.NumOut()-1].Interface().(*Error)
+	ret = ret[:t.NumOut()-1]
+	out := make([]interface{}, len(ret))
+	for i, val := range ret {
+		out[i] = val.Interface()
+	}
+	if err == nil {
+		//concrete type to interface nil is a special case
+		return out, nil
+	}
+	return out, err
+}
+
+func (m exportedMethod) NumArguments() int {
+	return m.Value.Type().NumIn()
+}
+
+func (m exportedMethod) ArgumentValue(i int) interface{} {
+	return reflect.Zero(m.Type().In(i)).Interface()
+}
+
+func (m exportedMethod) NumReturns() int {
+	return m.Value.Type().NumOut()
+}
+
+func (m exportedMethod) ReturnValue(i int) interface{} {
+	return reflect.Zero(m.Type().Out(i)).Interface()
+}
+
+func newExportedObject() *exportedObj {
+	return &exportedObj{
+		interfaces: make(map[string]*exportedIntf),
+	}
+}
+
+type exportedObj struct {
+	interfaces map[string]*exportedIntf
+}
+
+func (obj *exportedObj) LookupInterface(name string) (Interface, bool) {
+	if name == "" {
+		return obj, true
+	}
+	intf, exists := obj.interfaces[name]
+	return intf, exists
+}
+
+func (obj *exportedObj) AddInterface(name string, iface *exportedIntf) {
+	obj.interfaces[name] = iface
+}
+
+func (obj *exportedObj) DeleteInterface(name string) {
+	delete(obj.interfaces, name)
+}
+
+func (obj *exportedObj) LookupMethod(name string) (Method, bool) {
+	for _, intf := range obj.interfaces {
+		method, exists := intf.LookupMethod(name)
+		if exists {
+			return method, exists
+		}
+	}
+	return nil, false
+}
+
+func (obj *exportedObj) isFallbackInterface() bool {
+	return false
+}
+
+func newExportedIntf(methods map[string]Method, includeSubtree bool) *exportedIntf {
+	return &exportedIntf{
+		methods:        methods,
+		includeSubtree: includeSubtree,
+	}
+}
+
+type exportedIntf struct {
+	methods map[string]Method
+
+	// Whether or not this export is for the entire subtree
+	includeSubtree bool
+}
+
+func (obj *exportedIntf) LookupMethod(name string) (Method, bool) {
+	out, exists := obj.methods[name]
+	return out, exists
+}
+
+func (obj *exportedIntf) isFallbackInterface() bool {
+	return obj.includeSubtree
+}
+
+//NewDefaultSignalHandler returns an instance of the default
+//signal handler. This is useful if you want to implement only
+//one of the two handlers but not both.
+func NewDefaultSignalHandler() *defaultSignalHandler {
+	return &defaultSignalHandler{}
+}
+
+func isDefaultSignalHandler(handler SignalHandler) bool {
+	_, ok := handler.(*defaultSignalHandler)
+	return ok
+}
+
+type defaultSignalHandler struct {
+	sync.RWMutex
+	closed  bool
+	signals []chan<- *Signal
+}
+
+func (sh *defaultSignalHandler) DeliverSignal(intf, name string, signal *Signal) {
+	go func() {
+		sh.RLock()
+		defer sh.RUnlock()
+		if sh.closed {
+			return
+		}
+		for _, ch := range sh.signals {
+			ch <- signal
+		}
+	}()
+}
+
+func (sh *defaultSignalHandler) Init() error {
+	sh.Lock()
+	sh.signals = make([]chan<- *Signal, 0)
+	sh.Unlock()
+	return nil
+}
+
+func (sh *defaultSignalHandler) Terminate() {
+	sh.Lock()
+	sh.closed = true
+	for _, ch := range sh.signals {
+		close(ch)
+	}
+	sh.signals = nil
+	sh.Unlock()
+}
+
+func (sh *defaultSignalHandler) addSignal(ch chan<- *Signal) {
+	sh.Lock()
+	defer sh.Unlock()
+	if sh.closed {
+		return
+	}
+	sh.signals = append(sh.signals, ch)
+
+}
+
+func (sh *defaultSignalHandler) removeSignal(ch chan<- *Signal) {
+	sh.Lock()
+	defer sh.Unlock()
+	if sh.closed {
+		return
+	}
+	for i := len(sh.signals) - 1; i >= 0; i-- {
+		if ch == sh.signals[i] {
+			copy(sh.signals[i:], sh.signals[i+1:])
+			sh.signals[len(sh.signals)-1] = nil
+			sh.signals = sh.signals[:len(sh.signals)-1]
+		}
+	}
+}
diff --git a/vendor/github.com/godbus/dbus/doc.go b/vendor/github.com/godbus/dbus/doc.go
new file mode 100644
index 0000000000..895036a8c1
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/doc.go
@@ -0,0 +1,69 @@
+/*
+Package dbus implements bindings to the D-Bus message bus system.
+
+To use the message bus API, you first need to connect to a bus (usually the
+session or system bus). The acquired connection then can be used to call methods
+on remote objects and emit or receive signals. Using the Export method, you can
+arrange D-Bus methods calls to be directly translated to method calls on a Go
+value.
+
+Conversion Rules
+
+For outgoing messages, Go types are automatically converted to the
+corresponding D-Bus types. The following types are directly encoded as their
+respective D-Bus equivalents:
+
+     Go type     | D-Bus type
+     ------------+-----------
+     byte        | BYTE
+     bool        | BOOLEAN
+     int16       | INT16
+     uint16      | UINT16
+     int         | INT32
+     uint        | UINT32
+     int32       | INT32
+     uint32      | UINT32
+     int64       | INT64
+     uint64      | UINT64
+     float64     | DOUBLE
+     string      | STRING
+     ObjectPath  | OBJECT_PATH
+     Signature   | SIGNATURE
+     Variant     | VARIANT
+     interface{} | VARIANT
+     UnixFDIndex | UNIX_FD
+
+Slices and arrays encode as ARRAYs of their element type.
+
+Maps encode as DICTs, provided that their key type can be used as a key for
+a DICT.
+
+Structs other than Variant and Signature encode as a STRUCT containing their
+exported fields. Fields whose tags contain `dbus:"-"` and unexported fields will
+be skipped.
+
+Pointers encode as the value they're pointed to.
+
+Types convertible to one of the base types above will be mapped as the
+base type.
+
+Trying to encode any other type or a slice, map or struct containing an
+unsupported type will result in an InvalidTypeError.
+
+For incoming messages, the inverse of these rules are used, with the exception
+of STRUCTs. Incoming STRUCTS are represented as a slice of empty interfaces
+containing the struct fields in the correct order. The Store function can be
+used to convert such values to Go structs.
+
+Unix FD passing
+
+Handling Unix file descriptors deserves special mention. To use them, you should
+first check that they are supported on a connection by calling SupportsUnixFDs.
+If it returns true, all method of Connection will translate messages containing
+UnixFD's to messages that are accompanied by the given file descriptors with the
+UnixFD values being substituted by the correct indices. Similarily, the indices
+of incoming messages are automatically resolved. It shouldn't be necessary to use
+UnixFDIndex.
+
+*/
+package dbus
diff --git a/vendor/github.com/godbus/dbus/encoder.go b/vendor/github.com/godbus/dbus/encoder.go
new file mode 100644
index 0000000000..8bb717761c
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/encoder.go
@@ -0,0 +1,210 @@
+package dbus
+
+import (
+	"bytes"
+	"encoding/binary"
+	"io"
+	"reflect"
+)
+
+// An encoder encodes values to the D-Bus wire format.
+type encoder struct {
+	out   io.Writer
+	order binary.ByteOrder
+	pos   int
+}
+
+// NewEncoder returns a new encoder that writes to out in the given byte order.
+func newEncoder(out io.Writer, order binary.ByteOrder) *encoder {
+	return newEncoderAtOffset(out, 0, order)
+}
+
+// newEncoderAtOffset returns a new encoder that writes to out in the given
+// byte order. Specify the offset to initialize pos for proper alignment
+// computation.
+func newEncoderAtOffset(out io.Writer, offset int, order binary.ByteOrder) *encoder {
+	enc := new(encoder)
+	enc.out = out
+	enc.order = order
+	enc.pos = offset
+	return enc
+}
+
+// Aligns the next output to be on a multiple of n. Panics on write errors.
+func (enc *encoder) align(n int) {
+	pad := enc.padding(0, n)
+	if pad > 0 {
+		empty := make([]byte, pad)
+		if _, err := enc.out.Write(empty); err != nil {
+			panic(err)
+		}
+		enc.pos += pad
+	}
+}
+
+// pad returns the number of bytes of padding, based on current position and additional offset.
+// and alignment.
+func (enc *encoder) padding(offset, algn int) int {
+	abs := enc.pos + offset
+	if abs%algn != 0 {
+		newabs := (abs + algn - 1) & ^(algn - 1)
+		return newabs - abs
+	}
+	return 0
+}
+
+// Calls binary.Write(enc.out, enc.order, v) and panics on write errors.
+func (enc *encoder) binwrite(v interface{}) {
+	if err := binary.Write(enc.out, enc.order, v); err != nil {
+		panic(err)
+	}
+}
+
+// Encode encodes the given values to the underyling reader. All written values
+// are aligned properly as required by the D-Bus spec.
+func (enc *encoder) Encode(vs ...interface{}) (err error) {
+	defer func() {
+		err, _ = recover().(error)
+	}()
+	for _, v := range vs {
+		enc.encode(reflect.ValueOf(v), 0)
+	}
+	return nil
+}
+
+// encode encodes the given value to the writer and panics on error. depth holds
+// the depth of the container nesting.
+func (enc *encoder) encode(v reflect.Value, depth int) {
+	enc.align(alignment(v.Type()))
+	switch v.Kind() {
+	case reflect.Uint8:
+		var b [1]byte
+		b[0] = byte(v.Uint())
+		if _, err := enc.out.Write(b[:]); err != nil {
+			panic(err)
+		}
+		enc.pos++
+	case reflect.Bool:
+		if v.Bool() {
+			enc.encode(reflect.ValueOf(uint32(1)), depth)
+		} else {
+			enc.encode(reflect.ValueOf(uint32(0)), depth)
+		}
+	case reflect.Int16:
+		enc.binwrite(int16(v.Int()))
+		enc.pos += 2
+	case reflect.Uint16:
+		enc.binwrite(uint16(v.Uint()))
+		enc.pos += 2
+	case reflect.Int, reflect.Int32:
+		enc.binwrite(int32(v.Int()))
+		enc.pos += 4
+	case reflect.Uint, reflect.Uint32:
+		enc.binwrite(uint32(v.Uint()))
+		enc.pos += 4
+	case reflect.Int64:
+		enc.binwrite(v.Int())
+		enc.pos += 8
+	case reflect.Uint64:
+		enc.binwrite(v.Uint())
+		enc.pos += 8
+	case reflect.Float64:
+		enc.binwrite(v.Float())
+		enc.pos += 8
+	case reflect.String:
+		enc.encode(reflect.ValueOf(uint32(len(v.String()))), depth)
+		b := make([]byte, v.Len()+1)
+		copy(b, v.String())
+		b[len(b)-1] = 0
+		n, err := enc.out.Write(b)
+		if err != nil {
+			panic(err)
+		}
+		enc.pos += n
+	case reflect.Ptr:
+		enc.encode(v.Elem(), depth)
+	case reflect.Slice, reflect.Array:
+		if depth >= 64 {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		// Lookahead offset: 4 bytes for uint32 length (with alignment),
+		// plus alignment for elements.
+		n := enc.padding(0, 4) + 4
+		offset := enc.pos + n + enc.padding(n, alignment(v.Type().Elem()))
+
+		var buf bytes.Buffer
+		bufenc := newEncoderAtOffset(&buf, offset, enc.order)
+
+		for i := 0; i < v.Len(); i++ {
+			bufenc.encode(v.Index(i), depth+1)
+		}
+		enc.encode(reflect.ValueOf(uint32(buf.Len())), depth)
+		length := buf.Len()
+		enc.align(alignment(v.Type().Elem()))
+		if _, err := buf.WriteTo(enc.out); err != nil {
+			panic(err)
+		}
+		enc.pos += length
+	case reflect.Struct:
+		if depth >= 64 && v.Type() != signatureType {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		switch t := v.Type(); t {
+		case signatureType:
+			str := v.Field(0)
+			enc.encode(reflect.ValueOf(byte(str.Len())), depth+1)
+			b := make([]byte, str.Len()+1)
+			copy(b, str.String())
+			b[len(b)-1] = 0
+			n, err := enc.out.Write(b)
+			if err != nil {
+				panic(err)
+			}
+			enc.pos += n
+		case variantType:
+			variant := v.Interface().(Variant)
+			enc.encode(reflect.ValueOf(variant.sig), depth+1)
+			enc.encode(reflect.ValueOf(variant.value), depth+1)
+		default:
+			for i := 0; i < v.Type().NumField(); i++ {
+				field := t.Field(i)
+				if field.PkgPath == "" && field.Tag.Get("dbus") != "-" {
+					enc.encode(v.Field(i), depth+1)
+				}
+			}
+		}
+	case reflect.Map:
+		// Maps are arrays of structures, so they actually increase the depth by
+		// 2.
+		if depth >= 63 {
+			panic(FormatError("input exceeds container depth limit"))
+		}
+		if !isKeyType(v.Type().Key()) {
+			panic(InvalidTypeError{v.Type()})
+		}
+		keys := v.MapKeys()
+		// Lookahead offset: 4 bytes for uint32 length (with alignment),
+		// plus 8-byte alignment
+		n := enc.padding(0, 4) + 4
+		offset := enc.pos + n + enc.padding(n, 8)
+
+		var buf bytes.Buffer
+		bufenc := newEncoderAtOffset(&buf, offset, enc.order)
+		for _, k := range keys {
+			bufenc.align(8)
+			bufenc.encode(k, depth+2)
+			bufenc.encode(v.MapIndex(k), depth+2)
+		}
+		enc.encode(reflect.ValueOf(uint32(buf.Len())), depth)
+		length := buf.Len()
+		enc.align(8)
+		if _, err := buf.WriteTo(enc.out); err != nil {
+			panic(err)
+		}
+		enc.pos += length
+	case reflect.Interface:
+		enc.encode(reflect.ValueOf(MakeVariant(v.Interface())), depth)
+	default:
+		panic(InvalidTypeError{v.Type()})
+	}
+}
diff --git a/vendor/github.com/godbus/dbus/export.go b/vendor/github.com/godbus/dbus/export.go
new file mode 100644
index 0000000000..aae9708815
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/export.go
@@ -0,0 +1,413 @@
+package dbus
+
+import (
+	"errors"
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+var (
+	ErrMsgInvalidArg = Error{
+		"org.freedesktop.DBus.Error.InvalidArgs",
+		[]interface{}{"Invalid type / number of args"},
+	}
+	ErrMsgNoObject = Error{
+		"org.freedesktop.DBus.Error.NoSuchObject",
+		[]interface{}{"No such object"},
+	}
+	ErrMsgUnknownMethod = Error{
+		"org.freedesktop.DBus.Error.UnknownMethod",
+		[]interface{}{"Unknown / invalid method"},
+	}
+	ErrMsgUnknownInterface = Error{
+		"org.freedesktop.DBus.Error.UnknownInterface",
+		[]interface{}{"Object does not implement the interface"},
+	}
+)
+
+func MakeFailedError(err error) *Error {
+	return &Error{
+		"org.freedesktop.DBus.Error.Failed",
+		[]interface{}{err.Error()},
+	}
+}
+
+// Sender is a type which can be used in exported methods to receive the message
+// sender.
+type Sender string
+
+func computeMethodName(name string, mapping map[string]string) string {
+	newname, ok := mapping[name]
+	if ok {
+		name = newname
+	}
+	return name
+}
+
+func getMethods(in interface{}, mapping map[string]string) map[string]reflect.Value {
+	if in == nil {
+		return nil
+	}
+	methods := make(map[string]reflect.Value)
+	val := reflect.ValueOf(in)
+	typ := val.Type()
+	for i := 0; i < typ.NumMethod(); i++ {
+		methtype := typ.Method(i)
+		method := val.Method(i)
+		t := method.Type()
+		// only track valid methods must return *Error as last arg
+		// and must be exported
+		if t.NumOut() == 0 ||
+			t.Out(t.NumOut()-1) != reflect.TypeOf(&ErrMsgInvalidArg) ||
+			methtype.PkgPath != "" {
+			continue
+		}
+		// map names while building table
+		methods[computeMethodName(methtype.Name, mapping)] = method
+	}
+	return methods
+}
+
+func standardMethodArgumentDecode(m Method, sender string, msg *Message, body []interface{}) ([]interface{}, error) {
+	pointers := make([]interface{}, m.NumArguments())
+	decode := make([]interface{}, 0, len(body))
+
+	for i := 0; i < m.NumArguments(); i++ {
+		tp := reflect.TypeOf(m.ArgumentValue(i))
+		val := reflect.New(tp)
+		pointers[i] = val.Interface()
+		if tp == reflect.TypeOf((*Sender)(nil)).Elem() {
+			val.Elem().SetString(sender)
+		} else if tp == reflect.TypeOf((*Message)(nil)).Elem() {
+			val.Elem().Set(reflect.ValueOf(*msg))
+		} else {
+			decode = append(decode, pointers[i])
+		}
+	}
+
+	if len(decode) != len(body) {
+		return nil, ErrMsgInvalidArg
+	}
+
+	if err := Store(body, decode...); err != nil {
+		return nil, ErrMsgInvalidArg
+	}
+
+	return pointers, nil
+}
+
+func (conn *Conn) decodeArguments(m Method, sender string, msg *Message) ([]interface{}, error) {
+	if decoder, ok := m.(ArgumentDecoder); ok {
+		return decoder.DecodeArguments(conn, sender, msg, msg.Body)
+	}
+	return standardMethodArgumentDecode(m, sender, msg, msg.Body)
+}
+
+// handleCall handles the given method call (i.e. looks if it's one of the
+// pre-implemented ones and searches for a corresponding handler if not).
+func (conn *Conn) handleCall(msg *Message) {
+	name := msg.Headers[FieldMember].value.(string)
+	path := msg.Headers[FieldPath].value.(ObjectPath)
+	ifaceName, _ := msg.Headers[FieldInterface].value.(string)
+	sender, hasSender := msg.Headers[FieldSender].value.(string)
+	serial := msg.serial
+	if ifaceName == "org.freedesktop.DBus.Peer" {
+		switch name {
+		case "Ping":
+			conn.sendReply(sender, serial)
+		case "GetMachineId":
+			conn.sendReply(sender, serial, conn.uuid)
+		default:
+			conn.sendError(ErrMsgUnknownMethod, sender, serial)
+		}
+		return
+	}
+	if len(name) == 0 {
+		conn.sendError(ErrMsgUnknownMethod, sender, serial)
+	}
+
+	object, ok := conn.handler.LookupObject(path)
+	if !ok {
+		conn.sendError(ErrMsgNoObject, sender, serial)
+		return
+	}
+
+	iface, exists := object.LookupInterface(ifaceName)
+	if !exists {
+		conn.sendError(ErrMsgUnknownInterface, sender, serial)
+		return
+	}
+
+	m, exists := iface.LookupMethod(name)
+	if !exists {
+		conn.sendError(ErrMsgUnknownMethod, sender, serial)
+		return
+	}
+	args, err := conn.decodeArguments(m, sender, msg)
+	if err != nil {
+		conn.sendError(err, sender, serial)
+		return
+	}
+
+	ret, err := m.Call(args...)
+	if err != nil {
+		conn.sendError(err, sender, serial)
+		return
+	}
+
+	if msg.Flags&FlagNoReplyExpected == 0 {
+		reply := new(Message)
+		reply.Type = TypeMethodReply
+		reply.serial = conn.getSerial()
+		reply.Headers = make(map[HeaderField]Variant)
+		if hasSender {
+			reply.Headers[FieldDestination] = msg.Headers[FieldSender]
+		}
+		reply.Headers[FieldReplySerial] = MakeVariant(msg.serial)
+		reply.Body = make([]interface{}, len(ret))
+		for i := 0; i < len(ret); i++ {
+			reply.Body[i] = ret[i]
+		}
+		reply.Headers[FieldSignature] = MakeVariant(SignatureOf(reply.Body...))
+		conn.outLck.RLock()
+		if !conn.closed {
+			conn.out <- reply
+		}
+		conn.outLck.RUnlock()
+	}
+}
+
+// Emit emits the given signal on the message bus. The name parameter must be
+// formatted as "interface.member", e.g., "org.freedesktop.DBus.NameLost".
+func (conn *Conn) Emit(path ObjectPath, name string, values ...interface{}) error {
+	if !path.IsValid() {
+		return errors.New("dbus: invalid object path")
+	}
+	i := strings.LastIndex(name, ".")
+	if i == -1 {
+		return errors.New("dbus: invalid method name")
+	}
+	iface := name[:i]
+	member := name[i+1:]
+	if !isValidMember(member) {
+		return errors.New("dbus: invalid method name")
+	}
+	if !isValidInterface(iface) {
+		return errors.New("dbus: invalid interface name")
+	}
+	msg := new(Message)
+	msg.Type = TypeSignal
+	msg.serial = conn.getSerial()
+	msg.Headers = make(map[HeaderField]Variant)
+	msg.Headers[FieldInterface] = MakeVariant(iface)
+	msg.Headers[FieldMember] = MakeVariant(member)
+	msg.Headers[FieldPath] = MakeVariant(path)
+	msg.Body = values
+	if len(values) > 0 {
+		msg.Headers[FieldSignature] = MakeVariant(SignatureOf(values...))
+	}
+	conn.outLck.RLock()
+	defer conn.outLck.RUnlock()
+	if conn.closed {
+		return ErrClosed
+	}
+	conn.out <- msg
+	return nil
+}
+
+// Export registers the given value to be exported as an object on the
+// message bus.
+//
+// If a method call on the given path and interface is received, an exported
+// method with the same name is called with v as the receiver if the
+// parameters match and the last return value is of type *Error. If this
+// *Error is not nil, it is sent back to the caller as an error.
+// Otherwise, a method reply is sent with the other return values as its body.
+//
+// Any parameters with the special type Sender are set to the sender of the
+// dbus message when the method is called. Parameters of this type do not
+// contribute to the dbus signature of the method (i.e. the method is exposed
+// as if the parameters of type Sender were not there).
+//
+// Similarly, any parameters with the type Message are set to the raw message
+// received on the bus. Again, parameters of this type do not contribute to the
+// dbus signature of the method.
+//
+// Every method call is executed in a new goroutine, so the method may be called
+// in multiple goroutines at once.
+//
+// Method calls on the interface org.freedesktop.DBus.Peer will be automatically
+// handled for every object.
+//
+// Passing nil as the first parameter will cause conn to cease handling calls on
+// the given combination of path and interface.
+//
+// Export returns an error if path is not a valid path name.
+func (conn *Conn) Export(v interface{}, path ObjectPath, iface string) error {
+	return conn.ExportWithMap(v, nil, path, iface)
+}
+
+// ExportWithMap works exactly like Export but provides the ability to remap
+// method names (e.g. export a lower-case method).
+//
+// The keys in the map are the real method names (exported on the struct), and
+// the values are the method names to be exported on DBus.
+func (conn *Conn) ExportWithMap(v interface{}, mapping map[string]string, path ObjectPath, iface string) error {
+	return conn.export(getMethods(v, mapping), path, iface, false)
+}
+
+// ExportSubtree works exactly like Export but registers the given value for
+// an entire subtree rather under the root path provided.
+//
+// In order to make this useful, one parameter in each of the value's exported
+// methods should be a Message, in which case it will contain the raw message
+// (allowing one to get access to the path that caused the method to be called).
+//
+// Note that more specific export paths take precedence over less specific. For
+// example, a method call using the ObjectPath /foo/bar/baz will call a method
+// exported on /foo/bar before a method exported on /foo.
+func (conn *Conn) ExportSubtree(v interface{}, path ObjectPath, iface string) error {
+	return conn.ExportSubtreeWithMap(v, nil, path, iface)
+}
+
+// ExportSubtreeWithMap works exactly like ExportSubtree but provides the
+// ability to remap method names (e.g. export a lower-case method).
+//
+// The keys in the map are the real method names (exported on the struct), and
+// the values are the method names to be exported on DBus.
+func (conn *Conn) ExportSubtreeWithMap(v interface{}, mapping map[string]string, path ObjectPath, iface string) error {
+	return conn.export(getMethods(v, mapping), path, iface, true)
+}
+
+// ExportMethodTable like Export registers the given methods as an object
+// on the message bus. Unlike Export the it uses a method table to define
+// the object instead of a native go object.
+//
+// The method table is a map from method name to function closure
+// representing the method. This allows an object exported on the bus to not
+// necessarily be a native go object. It can be useful for generating exposed
+// methods on the fly.
+//
+// Any non-function objects in the method table are ignored.
+func (conn *Conn) ExportMethodTable(methods map[string]interface{}, path ObjectPath, iface string) error {
+	return conn.exportMethodTable(methods, path, iface, false)
+}
+
+// Like ExportSubtree, but with the same caveats as ExportMethodTable.
+func (conn *Conn) ExportSubtreeMethodTable(methods map[string]interface{}, path ObjectPath, iface string) error {
+	return conn.exportMethodTable(methods, path, iface, true)
+}
+
+func (conn *Conn) exportMethodTable(methods map[string]interface{}, path ObjectPath, iface string, includeSubtree bool) error {
+	out := make(map[string]reflect.Value)
+	for name, method := range methods {
+		rval := reflect.ValueOf(method)
+		if rval.Kind() != reflect.Func {
+			continue
+		}
+		t := rval.Type()
+		// only track valid methods must return *Error as last arg
+		if t.NumOut() == 0 ||
+			t.Out(t.NumOut()-1) != reflect.TypeOf(&ErrMsgInvalidArg) {
+			continue
+		}
+		out[name] = rval
+	}
+	return conn.export(out, path, iface, includeSubtree)
+}
+
+func (conn *Conn) unexport(h *defaultHandler, path ObjectPath, iface string) error {
+	if h.PathExists(path) {
+		obj := h.objects[path]
+		obj.DeleteInterface(iface)
+		if len(obj.interfaces) == 0 {
+			h.DeleteObject(path)
+		}
+	}
+	return nil
+}
+
+// exportWithMap is the worker function for all exports/registrations.
+func (conn *Conn) export(methods map[string]reflect.Value, path ObjectPath, iface string, includeSubtree bool) error {
+	h, ok := conn.handler.(*defaultHandler)
+	if !ok {
+		return fmt.Errorf(
+			`dbus: export only allowed on the default hander handler have %T"`,
+			conn.handler)
+	}
+
+	if !path.IsValid() {
+		return fmt.Errorf(`dbus: Invalid path name: "%s"`, path)
+	}
+
+	// Remove a previous export if the interface is nil
+	if methods == nil {
+		return conn.unexport(h, path, iface)
+	}
+
+	// If this is the first handler for this path, make a new map to hold all
+	// handlers for this path.
+	if !h.PathExists(path) {
+		h.AddObject(path, newExportedObject())
+	}
+
+	exportedMethods := make(map[string]Method)
+	for name, method := range methods {
+		exportedMethods[name] = exportedMethod{method}
+	}
+
+	// Finally, save this handler
+	obj := h.objects[path]
+	obj.AddInterface(iface, newExportedIntf(exportedMethods, includeSubtree))
+
+	return nil
+}
+
+// ReleaseName calls org.freedesktop.DBus.ReleaseName and awaits a response.
+func (conn *Conn) ReleaseName(name string) (ReleaseNameReply, error) {
+	var r uint32
+	err := conn.busObj.Call("org.freedesktop.DBus.ReleaseName", 0, name).Store(&r)
+	if err != nil {
+		return 0, err
+	}
+	return ReleaseNameReply(r), nil
+}
+
+// RequestName calls org.freedesktop.DBus.RequestName and awaits a response.
+func (conn *Conn) RequestName(name string, flags RequestNameFlags) (RequestNameReply, error) {
+	var r uint32
+	err := conn.busObj.Call("org.freedesktop.DBus.RequestName", 0, name, flags).Store(&r)
+	if err != nil {
+		return 0, err
+	}
+	return RequestNameReply(r), nil
+}
+
+// ReleaseNameReply is the reply to a ReleaseName call.
+type ReleaseNameReply uint32
+
+const (
+	ReleaseNameReplyReleased ReleaseNameReply = 1 + iota
+	ReleaseNameReplyNonExistent
+	ReleaseNameReplyNotOwner
+)
+
+// RequestNameFlags represents the possible flags for a RequestName call.
+type RequestNameFlags uint32
+
+const (
+	NameFlagAllowReplacement RequestNameFlags = 1 << iota
+	NameFlagReplaceExisting
+	NameFlagDoNotQueue
+)
+
+// RequestNameReply is the reply to a RequestName call.
+type RequestNameReply uint32
+
+const (
+	RequestNameReplyPrimaryOwner RequestNameReply = 1 + iota
+	RequestNameReplyInQueue
+	RequestNameReplyExists
+	RequestNameReplyAlreadyOwner
+)
diff --git a/vendor/github.com/godbus/dbus/homedir.go b/vendor/github.com/godbus/dbus/homedir.go
new file mode 100644
index 0000000000..0b745f9313
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/homedir.go
@@ -0,0 +1,28 @@
+package dbus
+
+import (
+	"os"
+	"sync"
+)
+
+var (
+	homeDir     string
+	homeDirLock sync.Mutex
+)
+
+func getHomeDir() string {
+	homeDirLock.Lock()
+	defer homeDirLock.Unlock()
+
+	if homeDir != "" {
+		return homeDir
+	}
+
+	homeDir = os.Getenv("HOME")
+	if homeDir != "" {
+		return homeDir
+	}
+
+	homeDir = lookupHomeDir()
+	return homeDir
+}
diff --git a/vendor/github.com/godbus/dbus/homedir_dynamic.go b/vendor/github.com/godbus/dbus/homedir_dynamic.go
new file mode 100644
index 0000000000..2732081e73
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/homedir_dynamic.go
@@ -0,0 +1,15 @@
+// +build !static_build
+
+package dbus
+
+import (
+	"os/user"
+)
+
+func lookupHomeDir() string {
+	u, err := user.Current()
+	if err != nil {
+		return "/"
+	}
+	return u.HomeDir
+}
diff --git a/vendor/github.com/godbus/dbus/homedir_static.go b/vendor/github.com/godbus/dbus/homedir_static.go
new file mode 100644
index 0000000000..b9d9cb5525
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/homedir_static.go
@@ -0,0 +1,45 @@
+// +build static_build
+
+package dbus
+
+import (
+	"bufio"
+	"os"
+	"strconv"
+	"strings"
+)
+
+func lookupHomeDir() string {
+	myUid := os.Getuid()
+
+	f, err := os.Open("/etc/passwd")
+	if err != nil {
+		return "/"
+	}
+	defer f.Close()
+
+	s := bufio.NewScanner(f)
+
+	for s.Scan() {
+		if err := s.Err(); err != nil {
+			break
+		}
+
+		line := strings.TrimSpace(s.Text())
+		if line == "" {
+			continue
+		}
+
+		parts := strings.Split(line, ":")
+
+		if len(parts) >= 6 {
+			uid, err := strconv.Atoi(parts[2])
+			if err == nil && uid == myUid {
+				return parts[5]
+			}
+		}
+	}
+
+	// Default to / if we can't get a better value
+	return "/"
+}
diff --git a/vendor/github.com/godbus/dbus/message.go b/vendor/github.com/godbus/dbus/message.go
new file mode 100644
index 0000000000..6a925367eb
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/message.go
@@ -0,0 +1,353 @@
+package dbus
+
+import (
+	"bytes"
+	"encoding/binary"
+	"errors"
+	"io"
+	"reflect"
+	"strconv"
+)
+
+const protoVersion byte = 1
+
+// Flags represents the possible flags of a D-Bus message.
+type Flags byte
+
+const (
+	// FlagNoReplyExpected signals that the message is not expected to generate
+	// a reply. If this flag is set on outgoing messages, any possible reply
+	// will be discarded.
+	FlagNoReplyExpected Flags = 1 << iota
+	// FlagNoAutoStart signals that the message bus should not automatically
+	// start an application when handling this message.
+	FlagNoAutoStart
+	// FlagAllowInteractiveAuthorization may be set on a method call
+	// message to inform the receiving side that the caller is prepared
+	// to wait for interactive authorization, which might take a
+	// considerable time to complete. For instance, if this flag is set,
+	// it would be appropriate to query the user for passwords or
+	// confirmation via Polkit or a similar framework.
+	FlagAllowInteractiveAuthorization
+)
+
+// Type represents the possible types of a D-Bus message.
+type Type byte
+
+const (
+	TypeMethodCall Type = 1 + iota
+	TypeMethodReply
+	TypeError
+	TypeSignal
+	typeMax
+)
+
+func (t Type) String() string {
+	switch t {
+	case TypeMethodCall:
+		return "method call"
+	case TypeMethodReply:
+		return "reply"
+	case TypeError:
+		return "error"
+	case TypeSignal:
+		return "signal"
+	}
+	return "invalid"
+}
+
+// HeaderField represents the possible byte codes for the headers
+// of a D-Bus message.
+type HeaderField byte
+
+const (
+	FieldPath HeaderField = 1 + iota
+	FieldInterface
+	FieldMember
+	FieldErrorName
+	FieldReplySerial
+	FieldDestination
+	FieldSender
+	FieldSignature
+	FieldUnixFDs
+	fieldMax
+)
+
+// An InvalidMessageError describes the reason why a D-Bus message is regarded as
+// invalid.
+type InvalidMessageError string
+
+func (e InvalidMessageError) Error() string {
+	return "dbus: invalid message: " + string(e)
+}
+
+// fieldType are the types of the various header fields.
+var fieldTypes = [fieldMax]reflect.Type{
+	FieldPath:        objectPathType,
+	FieldInterface:   stringType,
+	FieldMember:      stringType,
+	FieldErrorName:   stringType,
+	FieldReplySerial: uint32Type,
+	FieldDestination: stringType,
+	FieldSender:      stringType,
+	FieldSignature:   signatureType,
+	FieldUnixFDs:     uint32Type,
+}
+
+// requiredFields lists the header fields that are required by the different
+// message types.
+var requiredFields = [typeMax][]HeaderField{
+	TypeMethodCall:  {FieldPath, FieldMember},
+	TypeMethodReply: {FieldReplySerial},
+	TypeError:       {FieldErrorName, FieldReplySerial},
+	TypeSignal:      {FieldPath, FieldInterface, FieldMember},
+}
+
+// Message represents a single D-Bus message.
+type Message struct {
+	Type
+	Flags
+	Headers map[HeaderField]Variant
+	Body    []interface{}
+
+	serial uint32
+}
+
+type header struct {
+	Field byte
+	Variant
+}
+
+// DecodeMessage tries to decode a single message in the D-Bus wire format
+// from the given reader. The byte order is figured out from the first byte.
+// The possibly returned error can be an error of the underlying reader, an
+// InvalidMessageError or a FormatError.
+func DecodeMessage(rd io.Reader) (msg *Message, err error) {
+	var order binary.ByteOrder
+	var hlength, length uint32
+	var typ, flags, proto byte
+	var headers []header
+
+	b := make([]byte, 1)
+	_, err = rd.Read(b)
+	if err != nil {
+		return
+	}
+	switch b[0] {
+	case 'l':
+		order = binary.LittleEndian
+	case 'B':
+		order = binary.BigEndian
+	default:
+		return nil, InvalidMessageError("invalid byte order")
+	}
+
+	dec := newDecoder(rd, order)
+	dec.pos = 1
+
+	msg = new(Message)
+	vs, err := dec.Decode(Signature{"yyyuu"})
+	if err != nil {
+		return nil, err
+	}
+	if err = Store(vs, &typ, &flags, &proto, &length, &msg.serial); err != nil {
+		return nil, err
+	}
+	msg.Type = Type(typ)
+	msg.Flags = Flags(flags)
+
+	// get the header length separately because we need it later
+	b = make([]byte, 4)
+	_, err = io.ReadFull(rd, b)
+	if err != nil {
+		return nil, err
+	}
+	binary.Read(bytes.NewBuffer(b), order, &hlength)
+	if hlength+length+16 > 1<<27 {
+		return nil, InvalidMessageError("message is too long")
+	}
+	dec = newDecoder(io.MultiReader(bytes.NewBuffer(b), rd), order)
+	dec.pos = 12
+	vs, err = dec.Decode(Signature{"a(yv)"})
+	if err != nil {
+		return nil, err
+	}
+	if err = Store(vs, &headers); err != nil {
+		return nil, err
+	}
+
+	msg.Headers = make(map[HeaderField]Variant)
+	for _, v := range headers {
+		msg.Headers[HeaderField(v.Field)] = v.Variant
+	}
+
+	dec.align(8)
+	body := make([]byte, int(length))
+	if length != 0 {
+		_, err := io.ReadFull(rd, body)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	if err = msg.IsValid(); err != nil {
+		return nil, err
+	}
+	sig, _ := msg.Headers[FieldSignature].value.(Signature)
+	if sig.str != "" {
+		buf := bytes.NewBuffer(body)
+		dec = newDecoder(buf, order)
+		vs, err := dec.Decode(sig)
+		if err != nil {
+			return nil, err
+		}
+		msg.Body = vs
+	}
+
+	return
+}
+
+// EncodeTo encodes and sends a message to the given writer. The byte order must
+// be either binary.LittleEndian or binary.BigEndian. If the message is not
+// valid or an error occurs when writing, an error is returned.
+func (msg *Message) EncodeTo(out io.Writer, order binary.ByteOrder) error {
+	if err := msg.IsValid(); err != nil {
+		return err
+	}
+	var vs [7]interface{}
+	switch order {
+	case binary.LittleEndian:
+		vs[0] = byte('l')
+	case binary.BigEndian:
+		vs[0] = byte('B')
+	default:
+		return errors.New("dbus: invalid byte order")
+	}
+	body := new(bytes.Buffer)
+	enc := newEncoder(body, order)
+	if len(msg.Body) != 0 {
+		enc.Encode(msg.Body...)
+	}
+	vs[1] = msg.Type
+	vs[2] = msg.Flags
+	vs[3] = protoVersion
+	vs[4] = uint32(len(body.Bytes()))
+	vs[5] = msg.serial
+	headers := make([]header, 0, len(msg.Headers))
+	for k, v := range msg.Headers {
+		headers = append(headers, header{byte(k), v})
+	}
+	vs[6] = headers
+	var buf bytes.Buffer
+	enc = newEncoder(&buf, order)
+	enc.Encode(vs[:]...)
+	enc.align(8)
+	body.WriteTo(&buf)
+	if buf.Len() > 1<<27 {
+		return InvalidMessageError("message is too long")
+	}
+	if _, err := buf.WriteTo(out); err != nil {
+		return err
+	}
+	return nil
+}
+
+// IsValid checks whether msg is a valid message and returns an
+// InvalidMessageError if it is not.
+func (msg *Message) IsValid() error {
+	if msg.Flags & ^(FlagNoAutoStart|FlagNoReplyExpected|FlagAllowInteractiveAuthorization) != 0 {
+		return InvalidMessageError("invalid flags")
+	}
+	if msg.Type == 0 || msg.Type >= typeMax {
+		return InvalidMessageError("invalid message type")
+	}
+	for k, v := range msg.Headers {
+		if k == 0 || k >= fieldMax {
+			return InvalidMessageError("invalid header")
+		}
+		if reflect.TypeOf(v.value) != fieldTypes[k] {
+			return InvalidMessageError("invalid type of header field")
+		}
+	}
+	for _, v := range requiredFields[msg.Type] {
+		if _, ok := msg.Headers[v]; !ok {
+			return InvalidMessageError("missing required header")
+		}
+	}
+	if path, ok := msg.Headers[FieldPath]; ok {
+		if !path.value.(ObjectPath).IsValid() {
+			return InvalidMessageError("invalid path name")
+		}
+	}
+	if iface, ok := msg.Headers[FieldInterface]; ok {
+		if !isValidInterface(iface.value.(string)) {
+			return InvalidMessageError("invalid interface name")
+		}
+	}
+	if member, ok := msg.Headers[FieldMember]; ok {
+		if !isValidMember(member.value.(string)) {
+			return InvalidMessageError("invalid member name")
+		}
+	}
+	if errname, ok := msg.Headers[FieldErrorName]; ok {
+		if !isValidInterface(errname.value.(string)) {
+			return InvalidMessageError("invalid error name")
+		}
+	}
+	if len(msg.Body) != 0 {
+		if _, ok := msg.Headers[FieldSignature]; !ok {
+			return InvalidMessageError("missing signature")
+		}
+	}
+	return nil
+}
+
+// Serial returns the message's serial number. The returned value is only valid
+// for messages received by eavesdropping.
+func (msg *Message) Serial() uint32 {
+	return msg.serial
+}
+
+// String returns a string representation of a message similar to the format of
+// dbus-monitor.
+func (msg *Message) String() string {
+	if err := msg.IsValid(); err != nil {
+		return "<invalid>"
+	}
+	s := msg.Type.String()
+	if v, ok := msg.Headers[FieldSender]; ok {
+		s += " from " + v.value.(string)
+	}
+	if v, ok := msg.Headers[FieldDestination]; ok {
+		s += " to " + v.value.(string)
+	}
+	s += " serial " + strconv.FormatUint(uint64(msg.serial), 10)
+	if v, ok := msg.Headers[FieldReplySerial]; ok {
+		s += " reply_serial " + strconv.FormatUint(uint64(v.value.(uint32)), 10)
+	}
+	if v, ok := msg.Headers[FieldUnixFDs]; ok {
+		s += " unixfds " + strconv.FormatUint(uint64(v.value.(uint32)), 10)
+	}
+	if v, ok := msg.Headers[FieldPath]; ok {
+		s += " path " + string(v.value.(ObjectPath))
+	}
+	if v, ok := msg.Headers[FieldInterface]; ok {
+		s += " interface " + v.value.(string)
+	}
+	if v, ok := msg.Headers[FieldErrorName]; ok {
+		s += " error " + v.value.(string)
+	}
+	if v, ok := msg.Headers[FieldMember]; ok {
+		s += " member " + v.value.(string)
+	}
+	if len(msg.Body) != 0 {
+		s += "\n"
+	}
+	for i, v := range msg.Body {
+		s += "  " + MakeVariant(v).String()
+		if i != len(msg.Body)-1 {
+			s += "\n"
+		}
+	}
+	return s
+}
diff --git a/vendor/github.com/godbus/dbus/object.go b/vendor/github.com/godbus/dbus/object.go
new file mode 100644
index 0000000000..6d95583d76
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/object.go
@@ -0,0 +1,147 @@
+package dbus
+
+import (
+	"errors"
+	"strings"
+)
+
+// BusObject is the interface of a remote object on which methods can be
+// invoked.
+type BusObject interface {
+	Call(method string, flags Flags, args ...interface{}) *Call
+	Go(method string, flags Flags, ch chan *Call, args ...interface{}) *Call
+	GetProperty(p string) (Variant, error)
+	Destination() string
+	Path() ObjectPath
+}
+
+// Object represents a remote object on which methods can be invoked.
+type Object struct {
+	conn *Conn
+	dest string
+	path ObjectPath
+}
+
+// Call calls a method with (*Object).Go and waits for its reply.
+func (o *Object) Call(method string, flags Flags, args ...interface{}) *Call {
+	return <-o.Go(method, flags, make(chan *Call, 1), args...).Done
+}
+
+// AddMatchSignal subscribes BusObject to signals from specified interface and
+// method (member).
+func (o *Object) AddMatchSignal(iface, member string) *Call {
+	return o.Call(
+		"org.freedesktop.DBus.AddMatch",
+		0,
+		"type='signal',interface='"+iface+"',member='"+member+"'",
+	)
+}
+
+// Go calls a method with the given arguments asynchronously. It returns a
+// Call structure representing this method call. The passed channel will
+// return the same value once the call is done. If ch is nil, a new channel
+// will be allocated. Otherwise, ch has to be buffered or Go will panic.
+//
+// If the flags include FlagNoReplyExpected, ch is ignored and a Call structure
+// is returned with any error in Err and a closed channel in Done containing
+// the returned Call as it's one entry.
+//
+// If the method parameter contains a dot ('.'), the part before the last dot
+// specifies the interface on which the method is called.
+func (o *Object) Go(method string, flags Flags, ch chan *Call, args ...interface{}) *Call {
+	iface := ""
+	i := strings.LastIndex(method, ".")
+	if i != -1 {
+		iface = method[:i]
+	}
+	method = method[i+1:]
+	msg := new(Message)
+	msg.Type = TypeMethodCall
+	msg.serial = o.conn.getSerial()
+	msg.Flags = flags & (FlagNoAutoStart | FlagNoReplyExpected)
+	msg.Headers = make(map[HeaderField]Variant)
+	msg.Headers[FieldPath] = MakeVariant(o.path)
+	msg.Headers[FieldDestination] = MakeVariant(o.dest)
+	msg.Headers[FieldMember] = MakeVariant(method)
+	if iface != "" {
+		msg.Headers[FieldInterface] = MakeVariant(iface)
+	}
+	msg.Body = args
+	if len(args) > 0 {
+		msg.Headers[FieldSignature] = MakeVariant(SignatureOf(args...))
+	}
+	if msg.Flags&FlagNoReplyExpected == 0 {
+		if ch == nil {
+			ch = make(chan *Call, 10)
+		} else if cap(ch) == 0 {
+			panic("dbus: unbuffered channel passed to (*Object).Go")
+		}
+		call := &Call{
+			Destination: o.dest,
+			Path:        o.path,
+			Method:      method,
+			Args:        args,
+			Done:        ch,
+		}
+		o.conn.callsLck.Lock()
+		o.conn.calls[msg.serial] = call
+		o.conn.callsLck.Unlock()
+		o.conn.outLck.RLock()
+		if o.conn.closed {
+			call.Err = ErrClosed
+			call.Done <- call
+		} else {
+			o.conn.out <- msg
+		}
+		o.conn.outLck.RUnlock()
+		return call
+	}
+	o.conn.outLck.RLock()
+	defer o.conn.outLck.RUnlock()
+	done := make(chan *Call, 1)
+	call := &Call{
+		Err:  nil,
+		Done: done,
+	}
+	defer func() {
+		call.Done <- call
+		close(done)
+	}()
+	if o.conn.closed {
+		call.Err = ErrClosed
+		return call
+	}
+	o.conn.out <- msg
+	return call
+}
+
+// GetProperty calls org.freedesktop.DBus.Properties.GetProperty on the given
+// object. The property name must be given in interface.member notation.
+func (o *Object) GetProperty(p string) (Variant, error) {
+	idx := strings.LastIndex(p, ".")
+	if idx == -1 || idx+1 == len(p) {
+		return Variant{}, errors.New("dbus: invalid property " + p)
+	}
+
+	iface := p[:idx]
+	prop := p[idx+1:]
+
+	result := Variant{}
+	err := o.Call("org.freedesktop.DBus.Properties.Get", 0, iface, prop).Store(&result)
+
+	if err != nil {
+		return Variant{}, err
+	}
+
+	return result, nil
+}
+
+// Destination returns the destination that calls on (o *Object) are sent to.
+func (o *Object) Destination() string {
+	return o.dest
+}
+
+// Path returns the path that calls on (o *Object") are sent to.
+func (o *Object) Path() ObjectPath {
+	return o.path
+}
diff --git a/vendor/github.com/godbus/dbus/server_interfaces.go b/vendor/github.com/godbus/dbus/server_interfaces.go
new file mode 100644
index 0000000000..091948aef7
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/server_interfaces.go
@@ -0,0 +1,89 @@
+package dbus
+
+// Terminator allows a handler to implement a shutdown mechanism that
+// is called when the connection terminates.
+type Terminator interface {
+	Terminate()
+}
+
+// Handler is the representation of a D-Bus Application.
+//
+// The Handler must have a way to lookup objects given
+// an ObjectPath. The returned object must implement the
+// ServerObject interface.
+type Handler interface {
+	LookupObject(path ObjectPath) (ServerObject, bool)
+}
+
+// ServerObject is the representation of an D-Bus Object.
+//
+// Objects are registered at a path for a given Handler.
+// The Objects implement D-Bus interfaces. The semantics
+// of Interface lookup is up to the implementation of
+// the ServerObject. The ServerObject implementation may
+// choose to implement empty string as a valid interface
+// represeting all methods or not per the D-Bus specification.
+type ServerObject interface {
+	LookupInterface(name string) (Interface, bool)
+}
+
+// An Interface is the representation of a D-Bus Interface.
+//
+// Interfaces are a grouping of methods implemented by the Objects.
+// Interfaces are responsible for routing method calls.
+type Interface interface {
+	LookupMethod(name string) (Method, bool)
+}
+
+// A Method represents the exposed methods on D-Bus.
+type Method interface {
+	// Call requires that all arguments are decoded before being passed to it.
+	Call(args ...interface{}) ([]interface{}, error)
+	NumArguments() int
+	NumReturns() int
+	// ArgumentValue returns a representative value for the argument at position
+	// it should be of the proper type. reflect.Zero would be a good mechanism
+	// to use for this Value.
+	ArgumentValue(position int) interface{}
+	// ReturnValue returns a representative value for the return at position
+	// it should be of the proper type. reflect.Zero would be a good mechanism
+	// to use for this Value.
+	ReturnValue(position int) interface{}
+}
+
+// An Argument Decoder can decode arguments using the non-standard mechanism
+//
+// If a method implements this interface then the non-standard
+// decoder will be used.
+//
+// Method arguments must be decoded from the message.
+// The mechanism for doing this will vary based on the
+// implementation of the method. A normal approach is provided
+// as part of this library, but may be replaced with
+// any other decoding scheme.
+type ArgumentDecoder interface {
+	// To decode the arguments of a method the sender and message are
+	// provided incase the semantics of the implementer provides access
+	// to these as part of the method invocation.
+	DecodeArguments(conn *Conn, sender string, msg *Message, args []interface{}) ([]interface{}, error)
+}
+
+// A SignalHandler is responsible for delivering a signal.
+//
+// Signal delivery may be changed from the default channel
+// based approach by Handlers implementing the SignalHandler
+// interface.
+type SignalHandler interface {
+	DeliverSignal(iface, name string, signal *Signal)
+}
+
+// A DBusError is used to convert a generic object to a D-Bus error.
+//
+// Any custom error mechanism may implement this interface to provide
+// a custom encoding of the error on D-Bus. By default if a normal
+// error is returned, it will be encoded as the generic
+// "org.freedesktop.DBus.Error.Failed" error. By implementing this
+// interface as well a custom encoding may be provided.
+type DBusError interface {
+	DBusError() (string, []interface{})
+}
diff --git a/vendor/github.com/godbus/dbus/sig.go b/vendor/github.com/godbus/dbus/sig.go
new file mode 100644
index 0000000000..c1b809202c
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/sig.go
@@ -0,0 +1,259 @@
+package dbus
+
+import (
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+var sigToType = map[byte]reflect.Type{
+	'y': byteType,
+	'b': boolType,
+	'n': int16Type,
+	'q': uint16Type,
+	'i': int32Type,
+	'u': uint32Type,
+	'x': int64Type,
+	't': uint64Type,
+	'd': float64Type,
+	's': stringType,
+	'g': signatureType,
+	'o': objectPathType,
+	'v': variantType,
+	'h': unixFDIndexType,
+}
+
+// Signature represents a correct type signature as specified by the D-Bus
+// specification. The zero value represents the empty signature, "".
+type Signature struct {
+	str string
+}
+
+// SignatureOf returns the concatenation of all the signatures of the given
+// values. It panics if one of them is not representable in D-Bus.
+func SignatureOf(vs ...interface{}) Signature {
+	var s string
+	for _, v := range vs {
+		s += getSignature(reflect.TypeOf(v))
+	}
+	return Signature{s}
+}
+
+// SignatureOfType returns the signature of the given type. It panics if the
+// type is not representable in D-Bus.
+func SignatureOfType(t reflect.Type) Signature {
+	return Signature{getSignature(t)}
+}
+
+// getSignature returns the signature of the given type and panics on unknown types.
+func getSignature(t reflect.Type) string {
+	// handle simple types first
+	switch t.Kind() {
+	case reflect.Uint8:
+		return "y"
+	case reflect.Bool:
+		return "b"
+	case reflect.Int16:
+		return "n"
+	case reflect.Uint16:
+		return "q"
+	case reflect.Int, reflect.Int32:
+		if t == unixFDType {
+			return "h"
+		}
+		return "i"
+	case reflect.Uint, reflect.Uint32:
+		if t == unixFDIndexType {
+			return "h"
+		}
+		return "u"
+	case reflect.Int64:
+		return "x"
+	case reflect.Uint64:
+		return "t"
+	case reflect.Float64:
+		return "d"
+	case reflect.Ptr:
+		return getSignature(t.Elem())
+	case reflect.String:
+		if t == objectPathType {
+			return "o"
+		}
+		return "s"
+	case reflect.Struct:
+		if t == variantType {
+			return "v"
+		} else if t == signatureType {
+			return "g"
+		}
+		var s string
+		for i := 0; i < t.NumField(); i++ {
+			field := t.Field(i)
+			if field.PkgPath == "" && field.Tag.Get("dbus") != "-" {
+				s += getSignature(t.Field(i).Type)
+			}
+		}
+		return "(" + s + ")"
+	case reflect.Array, reflect.Slice:
+		return "a" + getSignature(t.Elem())
+	case reflect.Map:
+		if !isKeyType(t.Key()) {
+			panic(InvalidTypeError{t})
+		}
+		return "a{" + getSignature(t.Key()) + getSignature(t.Elem()) + "}"
+	case reflect.Interface:
+		return "v"
+	}
+	panic(InvalidTypeError{t})
+}
+
+// ParseSignature returns the signature represented by this string, or a
+// SignatureError if the string is not a valid signature.
+func ParseSignature(s string) (sig Signature, err error) {
+	if len(s) == 0 {
+		return
+	}
+	if len(s) > 255 {
+		return Signature{""}, SignatureError{s, "too long"}
+	}
+	sig.str = s
+	for err == nil && len(s) != 0 {
+		err, s = validSingle(s, 0)
+	}
+	if err != nil {
+		sig = Signature{""}
+	}
+
+	return
+}
+
+// ParseSignatureMust behaves like ParseSignature, except that it panics if s
+// is not valid.
+func ParseSignatureMust(s string) Signature {
+	sig, err := ParseSignature(s)
+	if err != nil {
+		panic(err)
+	}
+	return sig
+}
+
+// Empty retruns whether the signature is the empty signature.
+func (s Signature) Empty() bool {
+	return s.str == ""
+}
+
+// Single returns whether the signature represents a single, complete type.
+func (s Signature) Single() bool {
+	err, r := validSingle(s.str, 0)
+	return err != nil && r == ""
+}
+
+// String returns the signature's string representation.
+func (s Signature) String() string {
+	return s.str
+}
+
+// A SignatureError indicates that a signature passed to a function or received
+// on a connection is not a valid signature.
+type SignatureError struct {
+	Sig    string
+	Reason string
+}
+
+func (e SignatureError) Error() string {
+	return fmt.Sprintf("dbus: invalid signature: %q (%s)", e.Sig, e.Reason)
+}
+
+// Try to read a single type from this string. If it was successful, err is nil
+// and rem is the remaining unparsed part. Otherwise, err is a non-nil
+// SignatureError and rem is "". depth is the current recursion depth which may
+// not be greater than 64 and should be given as 0 on the first call.
+func validSingle(s string, depth int) (err error, rem string) {
+	if s == "" {
+		return SignatureError{Sig: s, Reason: "empty signature"}, ""
+	}
+	if depth > 64 {
+		return SignatureError{Sig: s, Reason: "container nesting too deep"}, ""
+	}
+	switch s[0] {
+	case 'y', 'b', 'n', 'q', 'i', 'u', 'x', 't', 'd', 's', 'g', 'o', 'v', 'h':
+		return nil, s[1:]
+	case 'a':
+		if len(s) > 1 && s[1] == '{' {
+			i := findMatching(s[1:], '{', '}')
+			if i == -1 {
+				return SignatureError{Sig: s, Reason: "unmatched '{'"}, ""
+			}
+			i++
+			rem = s[i+1:]
+			s = s[2:i]
+			if err, _ = validSingle(s[:1], depth+1); err != nil {
+				return err, ""
+			}
+			err, nr := validSingle(s[1:], depth+1)
+			if err != nil {
+				return err, ""
+			}
+			if nr != "" {
+				return SignatureError{Sig: s, Reason: "too many types in dict"}, ""
+			}
+			return nil, rem
+		}
+		return validSingle(s[1:], depth+1)
+	case '(':
+		i := findMatching(s, '(', ')')
+		if i == -1 {
+			return SignatureError{Sig: s, Reason: "unmatched ')'"}, ""
+		}
+		rem = s[i+1:]
+		s = s[1:i]
+		for err == nil && s != "" {
+			err, s = validSingle(s, depth+1)
+		}
+		if err != nil {
+			rem = ""
+		}
+		return
+	}
+	return SignatureError{Sig: s, Reason: "invalid type character"}, ""
+}
+
+func findMatching(s string, left, right rune) int {
+	n := 0
+	for i, v := range s {
+		if v == left {
+			n++
+		} else if v == right {
+			n--
+		}
+		if n == 0 {
+			return i
+		}
+	}
+	return -1
+}
+
+// typeFor returns the type of the given signature. It ignores any left over
+// characters and panics if s doesn't start with a valid type signature.
+func typeFor(s string) (t reflect.Type) {
+	err, _ := validSingle(s, 0)
+	if err != nil {
+		panic(err)
+	}
+
+	if t, ok := sigToType[s[0]]; ok {
+		return t
+	}
+	switch s[0] {
+	case 'a':
+		if s[1] == '{' {
+			i := strings.LastIndex(s, "}")
+			t = reflect.MapOf(sigToType[s[2]], typeFor(s[3:i]))
+		} else {
+			t = reflect.SliceOf(typeFor(s[1:]))
+		}
+	case '(':
+		t = interfacesType
+	}
+	return
+}
diff --git a/vendor/github.com/godbus/dbus/transport_darwin.go b/vendor/github.com/godbus/dbus/transport_darwin.go
new file mode 100644
index 0000000000..1bba0d6bf7
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_darwin.go
@@ -0,0 +1,6 @@
+package dbus
+
+func (t *unixTransport) SendNullByte() error {
+	_, err := t.Write([]byte{0})
+	return err
+}
diff --git a/vendor/github.com/godbus/dbus/transport_generic.go b/vendor/github.com/godbus/dbus/transport_generic.go
new file mode 100644
index 0000000000..3fad859a6b
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_generic.go
@@ -0,0 +1,50 @@
+package dbus
+
+import (
+	"encoding/binary"
+	"errors"
+	"io"
+	"unsafe"
+)
+
+var nativeEndian binary.ByteOrder
+
+func detectEndianness() binary.ByteOrder {
+	var x uint32 = 0x01020304
+		if *(*byte)(unsafe.Pointer(&x)) == 0x01 {
+		return binary.BigEndian
+	}
+	return binary.LittleEndian
+}
+
+func init() {
+	nativeEndian = detectEndianness()
+}
+
+type genericTransport struct {
+	io.ReadWriteCloser
+}
+
+func (t genericTransport) SendNullByte() error {
+	_, err := t.Write([]byte{0})
+	return err
+}
+
+func (t genericTransport) SupportsUnixFDs() bool {
+	return false
+}
+
+func (t genericTransport) EnableUnixFDs() {}
+
+func (t genericTransport) ReadMessage() (*Message, error) {
+	return DecodeMessage(t)
+}
+
+func (t genericTransport) SendMessage(msg *Message) error {
+	for _, v := range msg.Body {
+		if _, ok := v.(UnixFD); ok {
+			return errors.New("dbus: unix fd passing not enabled")
+		}
+	}
+	return msg.EncodeTo(t, nativeEndian)
+}
diff --git a/vendor/github.com/godbus/dbus/transport_tcp.go b/vendor/github.com/godbus/dbus/transport_tcp.go
new file mode 100644
index 0000000000..dd1c8e59c5
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_tcp.go
@@ -0,0 +1,43 @@
+//+build !windows
+
+package dbus
+
+import (
+	"errors"
+	"net"
+)
+
+func init() {
+	transports["tcp"] = newTcpTransport
+}
+
+func tcpFamily(keys string) (string, error) {
+	switch getKey(keys, "family") {
+	case "":
+		return "tcp", nil
+	case "ipv4":
+		return "tcp4", nil
+	case "ipv6":
+		return "tcp6", nil
+	default:
+		return "", errors.New("dbus: invalid tcp family (must be ipv4 or ipv6)")
+	}
+}
+
+func newTcpTransport(keys string) (transport, error) {
+	host := getKey(keys, "host")
+	port := getKey(keys, "port")
+	if host == "" || port == "" {
+		return nil, errors.New("dbus: unsupported address (must set host and port)")
+	}
+
+	protocol, err := tcpFamily(keys)
+	if err != nil {
+		return nil, err
+	}
+	socket, err := net.Dial(protocol, net.JoinHostPort(host, port))
+	if err != nil {
+		return nil, err
+	}
+	return NewConn(socket)
+}
diff --git a/vendor/github.com/godbus/dbus/transport_unix.go b/vendor/github.com/godbus/dbus/transport_unix.go
new file mode 100644
index 0000000000..e56d5ca90a
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_unix.go
@@ -0,0 +1,196 @@
+//+build !windows,!solaris
+
+package dbus
+
+import (
+	"bytes"
+	"encoding/binary"
+	"errors"
+	"io"
+	"net"
+	"syscall"
+)
+
+type oobReader struct {
+	conn *net.UnixConn
+	oob  []byte
+	buf  [4096]byte
+}
+
+func (o *oobReader) Read(b []byte) (n int, err error) {
+	n, oobn, flags, _, err := o.conn.ReadMsgUnix(b, o.buf[:])
+	if err != nil {
+		return n, err
+	}
+	if flags&syscall.MSG_CTRUNC != 0 {
+		return n, errors.New("dbus: control data truncated (too many fds received)")
+	}
+	o.oob = append(o.oob, o.buf[:oobn]...)
+	return n, nil
+}
+
+type unixTransport struct {
+	*net.UnixConn
+	hasUnixFDs bool
+}
+
+func newUnixTransport(keys string) (transport, error) {
+	var err error
+
+	t := new(unixTransport)
+	abstract := getKey(keys, "abstract")
+	path := getKey(keys, "path")
+	switch {
+	case abstract == "" && path == "":
+		return nil, errors.New("dbus: invalid address (neither path nor abstract set)")
+	case abstract != "" && path == "":
+		t.UnixConn, err = net.DialUnix("unix", nil, &net.UnixAddr{Name: "@" + abstract, Net: "unix"})
+		if err != nil {
+			return nil, err
+		}
+		return t, nil
+	case abstract == "" && path != "":
+		t.UnixConn, err = net.DialUnix("unix", nil, &net.UnixAddr{Name: path, Net: "unix"})
+		if err != nil {
+			return nil, err
+		}
+		return t, nil
+	default:
+		return nil, errors.New("dbus: invalid address (both path and abstract set)")
+	}
+}
+
+func init() {
+	transports["unix"] = newUnixTransport
+}
+
+func (t *unixTransport) EnableUnixFDs() {
+	t.hasUnixFDs = true
+}
+
+func (t *unixTransport) ReadMessage() (*Message, error) {
+	var (
+		blen, hlen uint32
+		csheader   [16]byte
+		headers    []header
+		order      binary.ByteOrder
+		unixfds    uint32
+	)
+	// To be sure that all bytes of out-of-band data are read, we use a special
+	// reader that uses ReadUnix on the underlying connection instead of Read
+	// and gathers the out-of-band data in a buffer.
+	rd := &oobReader{conn: t.UnixConn}
+	// read the first 16 bytes (the part of the header that has a constant size),
+	// from which we can figure out the length of the rest of the message
+	if _, err := io.ReadFull(rd, csheader[:]); err != nil {
+		return nil, err
+	}
+	switch csheader[0] {
+	case 'l':
+		order = binary.LittleEndian
+	case 'B':
+		order = binary.BigEndian
+	default:
+		return nil, InvalidMessageError("invalid byte order")
+	}
+	// csheader[4:8] -> length of message body, csheader[12:16] -> length of
+	// header fields (without alignment)
+	binary.Read(bytes.NewBuffer(csheader[4:8]), order, &blen)
+	binary.Read(bytes.NewBuffer(csheader[12:]), order, &hlen)
+	if hlen%8 != 0 {
+		hlen += 8 - (hlen % 8)
+	}
+
+	// decode headers and look for unix fds
+	headerdata := make([]byte, hlen+4)
+	copy(headerdata, csheader[12:])
+	if _, err := io.ReadFull(t, headerdata[4:]); err != nil {
+		return nil, err
+	}
+	dec := newDecoder(bytes.NewBuffer(headerdata), order)
+	dec.pos = 12
+	vs, err := dec.Decode(Signature{"a(yv)"})
+	if err != nil {
+		return nil, err
+	}
+	Store(vs, &headers)
+	for _, v := range headers {
+		if v.Field == byte(FieldUnixFDs) {
+			unixfds, _ = v.Variant.value.(uint32)
+		}
+	}
+	all := make([]byte, 16+hlen+blen)
+	copy(all, csheader[:])
+	copy(all[16:], headerdata[4:])
+	if _, err := io.ReadFull(rd, all[16+hlen:]); err != nil {
+		return nil, err
+	}
+	if unixfds != 0 {
+		if !t.hasUnixFDs {
+			return nil, errors.New("dbus: got unix fds on unsupported transport")
+		}
+		// read the fds from the OOB data
+		scms, err := syscall.ParseSocketControlMessage(rd.oob)
+		if err != nil {
+			return nil, err
+		}
+		if len(scms) != 1 {
+			return nil, errors.New("dbus: received more than one socket control message")
+		}
+		fds, err := syscall.ParseUnixRights(&scms[0])
+		if err != nil {
+			return nil, err
+		}
+		msg, err := DecodeMessage(bytes.NewBuffer(all))
+		if err != nil {
+			return nil, err
+		}
+		// substitute the values in the message body (which are indices for the
+		// array receiver via OOB) with the actual values
+		for i, v := range msg.Body {
+			if j, ok := v.(UnixFDIndex); ok {
+				if uint32(j) >= unixfds {
+					return nil, InvalidMessageError("invalid index for unix fd")
+				}
+				msg.Body[i] = UnixFD(fds[j])
+			}
+		}
+		return msg, nil
+	}
+	return DecodeMessage(bytes.NewBuffer(all))
+}
+
+func (t *unixTransport) SendMessage(msg *Message) error {
+	fds := make([]int, 0)
+	for i, v := range msg.Body {
+		if fd, ok := v.(UnixFD); ok {
+			msg.Body[i] = UnixFDIndex(len(fds))
+			fds = append(fds, int(fd))
+		}
+	}
+	if len(fds) != 0 {
+		if !t.hasUnixFDs {
+			return errors.New("dbus: unix fd passing not enabled")
+		}
+		msg.Headers[FieldUnixFDs] = MakeVariant(uint32(len(fds)))
+		oob := syscall.UnixRights(fds...)
+		buf := new(bytes.Buffer)
+		msg.EncodeTo(buf, nativeEndian)
+		n, oobn, err := t.UnixConn.WriteMsgUnix(buf.Bytes(), oob, nil)
+		if err != nil {
+			return err
+		}
+		if n != buf.Len() || oobn != len(oob) {
+			return io.ErrShortWrite
+		}
+	} else {
+		if err := msg.EncodeTo(t, nativeEndian); err != nil {
+			return nil
+		}
+	}
+	return nil
+}
+
+func (t *unixTransport) SupportsUnixFDs() bool {
+	return true
+}
diff --git a/vendor/github.com/godbus/dbus/transport_unixcred_dragonfly.go b/vendor/github.com/godbus/dbus/transport_unixcred_dragonfly.go
new file mode 100644
index 0000000000..a8cd39395f
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_unixcred_dragonfly.go
@@ -0,0 +1,95 @@
+// The UnixCredentials system call is currently only implemented on Linux
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// https://golang.org/s/go1.4-syscall
+// http://code.google.com/p/go/source/browse/unix/sockcmsg_linux.go?repo=sys
+
+// Local implementation of the UnixCredentials system call for DragonFly BSD
+
+package dbus
+
+/*
+#include <sys/ucred.h>
+*/
+import "C"
+
+import (
+	"io"
+	"os"
+	"syscall"
+	"unsafe"
+)
+
+// http://golang.org/src/pkg/syscall/ztypes_linux_amd64.go
+// http://golang.org/src/pkg/syscall/ztypes_dragonfly_amd64.go
+type Ucred struct {
+	Pid int32
+	Uid uint32
+	Gid uint32
+}
+
+// http://golang.org/src/pkg/syscall/types_linux.go
+// http://golang.org/src/pkg/syscall/types_dragonfly.go
+// https://github.com/DragonFlyBSD/DragonFlyBSD/blob/master/sys/sys/ucred.h
+const (
+	SizeofUcred = C.sizeof_struct_ucred
+)
+
+// http://golang.org/src/pkg/syscall/sockcmsg_unix.go
+func cmsgAlignOf(salen int) int {
+	// From http://golang.org/src/pkg/syscall/sockcmsg_unix.go
+	//salign := sizeofPtr
+	// NOTE: It seems like 64-bit Darwin and DragonFly BSD kernels
+	// still require 32-bit aligned access to network subsystem.
+	//if darwin64Bit || dragonfly64Bit {
+	//	salign = 4
+	//}
+	salign := 4
+	return (salen + salign - 1) & ^(salign - 1)
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_unix.go
+func cmsgData(h *syscall.Cmsghdr) unsafe.Pointer {
+	return unsafe.Pointer(uintptr(unsafe.Pointer(h)) + uintptr(cmsgAlignOf(syscall.SizeofCmsghdr)))
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// UnixCredentials encodes credentials into a socket control message
+// for sending to another process. This can be used for
+// authentication.
+func UnixCredentials(ucred *Ucred) []byte {
+	b := make([]byte, syscall.CmsgSpace(SizeofUcred))
+	h := (*syscall.Cmsghdr)(unsafe.Pointer(&b[0]))
+	h.Level = syscall.SOL_SOCKET
+	h.Type = syscall.SCM_CREDS
+	h.SetLen(syscall.CmsgLen(SizeofUcred))
+	*((*Ucred)(cmsgData(h))) = *ucred
+	return b
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// ParseUnixCredentials decodes a socket control message that contains
+// credentials in a Ucred structure. To receive such a message, the
+// SO_PASSCRED option must be enabled on the socket.
+func ParseUnixCredentials(m *syscall.SocketControlMessage) (*Ucred, error) {
+	if m.Header.Level != syscall.SOL_SOCKET {
+		return nil, syscall.EINVAL
+	}
+	if m.Header.Type != syscall.SCM_CREDS {
+		return nil, syscall.EINVAL
+	}
+	ucred := *(*Ucred)(unsafe.Pointer(&m.Data[0]))
+	return &ucred, nil
+}
+
+func (t *unixTransport) SendNullByte() error {
+	ucred := &Ucred{Pid: int32(os.Getpid()), Uid: uint32(os.Getuid()), Gid: uint32(os.Getgid())}
+	b := UnixCredentials(ucred)
+	_, oobn, err := t.UnixConn.WriteMsgUnix([]byte{0}, b, nil)
+	if err != nil {
+		return err
+	}
+	if oobn != len(b) {
+		return io.ErrShortWrite
+	}
+	return nil
+}
diff --git a/vendor/github.com/godbus/dbus/transport_unixcred_freebsd.go b/vendor/github.com/godbus/dbus/transport_unixcred_freebsd.go
new file mode 100644
index 0000000000..0fc5b92739
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_unixcred_freebsd.go
@@ -0,0 +1,91 @@
+// The UnixCredentials system call is currently only implemented on Linux
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// https://golang.org/s/go1.4-syscall
+// http://code.google.com/p/go/source/browse/unix/sockcmsg_linux.go?repo=sys
+
+// Local implementation of the UnixCredentials system call for FreeBSD
+
+package dbus
+
+/*
+const int sizeofPtr = sizeof(void*);
+#define _WANT_UCRED
+#include <sys/ucred.h>
+*/
+import "C"
+
+import (
+	"io"
+	"os"
+	"syscall"
+	"unsafe"
+)
+
+// http://golang.org/src/pkg/syscall/ztypes_linux_amd64.go
+// https://golang.org/src/syscall/ztypes_freebsd_amd64.go
+type Ucred struct {
+	Pid int32
+	Uid uint32
+	Gid uint32
+}
+
+// http://golang.org/src/pkg/syscall/types_linux.go
+// https://golang.org/src/syscall/types_freebsd.go
+// https://github.com/freebsd/freebsd/blob/master/sys/sys/ucred.h
+const (
+	SizeofUcred = C.sizeof_struct_ucred
+)
+
+// http://golang.org/src/pkg/syscall/sockcmsg_unix.go
+func cmsgAlignOf(salen int) int {
+	salign := C.sizeofPtr
+
+	return (salen + salign - 1) & ^(salign - 1)
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_unix.go
+func cmsgData(h *syscall.Cmsghdr) unsafe.Pointer {
+	return unsafe.Pointer(uintptr(unsafe.Pointer(h)) + uintptr(cmsgAlignOf(syscall.SizeofCmsghdr)))
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// UnixCredentials encodes credentials into a socket control message
+// for sending to another process. This can be used for
+// authentication.
+func UnixCredentials(ucred *Ucred) []byte {
+	b := make([]byte, syscall.CmsgSpace(SizeofUcred))
+	h := (*syscall.Cmsghdr)(unsafe.Pointer(&b[0]))
+	h.Level = syscall.SOL_SOCKET
+	h.Type = syscall.SCM_CREDS
+	h.SetLen(syscall.CmsgLen(SizeofUcred))
+	*((*Ucred)(cmsgData(h))) = *ucred
+	return b
+}
+
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// ParseUnixCredentials decodes a socket control message that contains
+// credentials in a Ucred structure. To receive such a message, the
+// SO_PASSCRED option must be enabled on the socket.
+func ParseUnixCredentials(m *syscall.SocketControlMessage) (*Ucred, error) {
+	if m.Header.Level != syscall.SOL_SOCKET {
+		return nil, syscall.EINVAL
+	}
+	if m.Header.Type != syscall.SCM_CREDS {
+		return nil, syscall.EINVAL
+	}
+	ucred := *(*Ucred)(unsafe.Pointer(&m.Data[0]))
+	return &ucred, nil
+}
+
+func (t *unixTransport) SendNullByte() error {
+	ucred := &Ucred{Pid: int32(os.Getpid()), Uid: uint32(os.Getuid()), Gid: uint32(os.Getgid())}
+	b := UnixCredentials(ucred)
+	_, oobn, err := t.UnixConn.WriteMsgUnix([]byte{0}, b, nil)
+	if err != nil {
+		return err
+	}
+	if oobn != len(b) {
+		return io.ErrShortWrite
+	}
+	return nil
+}
diff --git a/vendor/github.com/godbus/dbus/transport_unixcred_linux.go b/vendor/github.com/godbus/dbus/transport_unixcred_linux.go
new file mode 100644
index 0000000000..d9dfdf6982
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_unixcred_linux.go
@@ -0,0 +1,25 @@
+// The UnixCredentials system call is currently only implemented on Linux
+// http://golang.org/src/pkg/syscall/sockcmsg_linux.go
+// https://golang.org/s/go1.4-syscall
+// http://code.google.com/p/go/source/browse/unix/sockcmsg_linux.go?repo=sys
+
+package dbus
+
+import (
+	"io"
+	"os"
+	"syscall"
+)
+
+func (t *unixTransport) SendNullByte() error {
+	ucred := &syscall.Ucred{Pid: int32(os.Getpid()), Uid: uint32(os.Getuid()), Gid: uint32(os.Getgid())}
+	b := syscall.UnixCredentials(ucred)
+	_, oobn, err := t.UnixConn.WriteMsgUnix([]byte{0}, b, nil)
+	if err != nil {
+		return err
+	}
+	if oobn != len(b) {
+		return io.ErrShortWrite
+	}
+	return nil
+}
diff --git a/vendor/github.com/godbus/dbus/transport_unixcred_openbsd.go b/vendor/github.com/godbus/dbus/transport_unixcred_openbsd.go
new file mode 100644
index 0000000000..af7bafdf95
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/transport_unixcred_openbsd.go
@@ -0,0 +1,14 @@
+package dbus
+
+import "io"
+
+func (t *unixTransport) SendNullByte() error {
+	n, _, err := t.UnixConn.WriteMsgUnix([]byte{0}, nil, nil)
+	if err != nil {
+		return err
+	}
+	if n != 1 {
+		return io.ErrShortWrite
+	}
+	return nil
+}
diff --git a/vendor/github.com/godbus/dbus/variant.go b/vendor/github.com/godbus/dbus/variant.go
new file mode 100644
index 0000000000..0ca123b012
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/variant.go
@@ -0,0 +1,144 @@
+package dbus
+
+import (
+	"bytes"
+	"fmt"
+	"reflect"
+	"sort"
+	"strconv"
+)
+
+// Variant represents the D-Bus variant type.
+type Variant struct {
+	sig   Signature
+	value interface{}
+}
+
+// MakeVariant converts the given value to a Variant. It panics if v cannot be
+// represented as a D-Bus type.
+func MakeVariant(v interface{}) Variant {
+	return MakeVariantWithSignature(v, SignatureOf(v))
+}
+
+// MakeVariantWithSignature converts the given value to a Variant.
+func MakeVariantWithSignature(v interface{}, s Signature) Variant {
+	return Variant{s, v}
+}
+
+// ParseVariant parses the given string as a variant as described at
+// https://developer.gnome.org/glib/unstable/gvariant-text.html. If sig is not
+// empty, it is taken to be the expected signature for the variant.
+func ParseVariant(s string, sig Signature) (Variant, error) {
+	tokens := varLex(s)
+	p := &varParser{tokens: tokens}
+	n, err := varMakeNode(p)
+	if err != nil {
+		return Variant{}, err
+	}
+	if sig.str == "" {
+		sig, err = varInfer(n)
+		if err != nil {
+			return Variant{}, err
+		}
+	}
+	v, err := n.Value(sig)
+	if err != nil {
+		return Variant{}, err
+	}
+	return MakeVariant(v), nil
+}
+
+// format returns a formatted version of v and whether this string can be parsed
+// unambigously.
+func (v Variant) format() (string, bool) {
+	switch v.sig.str[0] {
+	case 'b', 'i':
+		return fmt.Sprint(v.value), true
+	case 'n', 'q', 'u', 'x', 't', 'd', 'h':
+		return fmt.Sprint(v.value), false
+	case 's':
+		return strconv.Quote(v.value.(string)), true
+	case 'o':
+		return strconv.Quote(string(v.value.(ObjectPath))), false
+	case 'g':
+		return strconv.Quote(v.value.(Signature).str), false
+	case 'v':
+		s, unamb := v.value.(Variant).format()
+		if !unamb {
+			return "<@" + v.value.(Variant).sig.str + " " + s + ">", true
+		}
+		return "<" + s + ">", true
+	case 'y':
+		return fmt.Sprintf("%#x", v.value.(byte)), false
+	}
+	rv := reflect.ValueOf(v.value)
+	switch rv.Kind() {
+	case reflect.Slice:
+		if rv.Len() == 0 {
+			return "[]", false
+		}
+		unamb := true
+		buf := bytes.NewBuffer([]byte("["))
+		for i := 0; i < rv.Len(); i++ {
+			// TODO: slooow
+			s, b := MakeVariant(rv.Index(i).Interface()).format()
+			unamb = unamb && b
+			buf.WriteString(s)
+			if i != rv.Len()-1 {
+				buf.WriteString(", ")
+			}
+		}
+		buf.WriteByte(']')
+		return buf.String(), unamb
+	case reflect.Map:
+		if rv.Len() == 0 {
+			return "{}", false
+		}
+		unamb := true
+		var buf bytes.Buffer
+		kvs := make([]string, rv.Len())
+		for i, k := range rv.MapKeys() {
+			s, b := MakeVariant(k.Interface()).format()
+			unamb = unamb && b
+			buf.Reset()
+			buf.WriteString(s)
+			buf.WriteString(": ")
+			s, b = MakeVariant(rv.MapIndex(k).Interface()).format()
+			unamb = unamb && b
+			buf.WriteString(s)
+			kvs[i] = buf.String()
+		}
+		buf.Reset()
+		buf.WriteByte('{')
+		sort.Strings(kvs)
+		for i, kv := range kvs {
+			if i > 0 {
+				buf.WriteString(", ")
+			}
+			buf.WriteString(kv)
+		}
+		buf.WriteByte('}')
+		return buf.String(), unamb
+	}
+	return `"INVALID"`, true
+}
+
+// Signature returns the D-Bus signature of the underlying value of v.
+func (v Variant) Signature() Signature {
+	return v.sig
+}
+
+// String returns the string representation of the underlying value of v as
+// described at https://developer.gnome.org/glib/unstable/gvariant-text.html.
+func (v Variant) String() string {
+	s, unamb := v.format()
+	if !unamb {
+		return "@" + v.sig.str + " " + s
+	}
+	return s
+}
+
+// Value returns the underlying value of v.
+func (v Variant) Value() interface{} {
+	return v.value
+}
diff --git a/vendor/github.com/godbus/dbus/variant_lexer.go b/vendor/github.com/godbus/dbus/variant_lexer.go
new file mode 100644
index 0000000000..332007d6f1
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/variant_lexer.go
@@ -0,0 +1,284 @@
+package dbus
+
+import (
+	"fmt"
+	"strings"
+	"unicode"
+	"unicode/utf8"
+)
+
+// Heavily inspired by the lexer from text/template.
+
+type varToken struct {
+	typ varTokenType
+	val string
+}
+
+type varTokenType byte
+
+const (
+	tokEOF varTokenType = iota
+	tokError
+	tokNumber
+	tokString
+	tokBool
+	tokArrayStart
+	tokArrayEnd
+	tokDictStart
+	tokDictEnd
+	tokVariantStart
+	tokVariantEnd
+	tokComma
+	tokColon
+	tokType
+	tokByteString
+)
+
+type varLexer struct {
+	input  string
+	start  int
+	pos    int
+	width  int
+	tokens []varToken
+}
+
+type lexState func(*varLexer) lexState
+
+func varLex(s string) []varToken {
+	l := &varLexer{input: s}
+	l.run()
+	return l.tokens
+}
+
+func (l *varLexer) accept(valid string) bool {
+	if strings.IndexRune(valid, l.next()) >= 0 {
+		return true
+	}
+	l.backup()
+	return false
+}
+
+func (l *varLexer) backup() {
+	l.pos -= l.width
+}
+
+func (l *varLexer) emit(t varTokenType) {
+	l.tokens = append(l.tokens, varToken{t, l.input[l.start:l.pos]})
+	l.start = l.pos
+}
+
+func (l *varLexer) errorf(format string, v ...interface{}) lexState {
+	l.tokens = append(l.tokens, varToken{
+		tokError,
+		fmt.Sprintf(format, v...),
+	})
+	return nil
+}
+
+func (l *varLexer) ignore() {
+	l.start = l.pos
+}
+
+func (l *varLexer) next() rune {
+	var r rune
+
+	if l.pos >= len(l.input) {
+		l.width = 0
+		return -1
+	}
+	r, l.width = utf8.DecodeRuneInString(l.input[l.pos:])
+	l.pos += l.width
+	return r
+}
+
+func (l *varLexer) run() {
+	for state := varLexNormal; state != nil; {
+		state = state(l)
+	}
+}
+
+func (l *varLexer) peek() rune {
+	r := l.next()
+	l.backup()
+	return r
+}
+
+func varLexNormal(l *varLexer) lexState {
+	for {
+		r := l.next()
+		switch {
+		case r == -1:
+			l.emit(tokEOF)
+			return nil
+		case r == '[':
+			l.emit(tokArrayStart)
+		case r == ']':
+			l.emit(tokArrayEnd)
+		case r == '{':
+			l.emit(tokDictStart)
+		case r == '}':
+			l.emit(tokDictEnd)
+		case r == '<':
+			l.emit(tokVariantStart)
+		case r == '>':
+			l.emit(tokVariantEnd)
+		case r == ':':
+			l.emit(tokColon)
+		case r == ',':
+			l.emit(tokComma)
+		case r == '\'' || r == '"':
+			l.backup()
+			return varLexString
+		case r == '@':
+			l.backup()
+			return varLexType
+		case unicode.IsSpace(r):
+			l.ignore()
+		case unicode.IsNumber(r) || r == '+' || r == '-':
+			l.backup()
+			return varLexNumber
+		case r == 'b':
+			pos := l.start
+			if n := l.peek(); n == '"' || n == '\'' {
+				return varLexByteString
+			}
+			// not a byte string; try to parse it as a type or bool below
+			l.pos = pos + 1
+			l.width = 1
+			fallthrough
+		default:
+			// either a bool or a type. Try bools first.
+			l.backup()
+			if l.pos+4 <= len(l.input) {
+				if l.input[l.pos:l.pos+4] == "true" {
+					l.pos += 4
+					l.emit(tokBool)
+					continue
+				}
+			}
+			if l.pos+5 <= len(l.input) {
+				if l.input[l.pos:l.pos+5] == "false" {
+					l.pos += 5
+					l.emit(tokBool)
+					continue
+				}
+			}
+			// must be a type.
+			return varLexType
+		}
+	}
+}
+
+var varTypeMap = map[string]string{
+	"boolean":    "b",
+	"byte":       "y",
+	"int16":      "n",
+	"uint16":     "q",
+	"int32":      "i",
+	"uint32":     "u",
+	"int64":      "x",
+	"uint64":     "t",
+	"double":     "f",
+	"string":     "s",
+	"objectpath": "o",
+	"signature":  "g",
+}
+
+func varLexByteString(l *varLexer) lexState {
+	q := l.next()
+Loop:
+	for {
+		switch l.next() {
+		case '\\':
+			if r := l.next(); r != -1 {
+				break
+			}
+			fallthrough
+		case -1:
+			return l.errorf("unterminated bytestring")
+		case q:
+			break Loop
+		}
+	}
+	l.emit(tokByteString)
+	return varLexNormal
+}
+
+func varLexNumber(l *varLexer) lexState {
+	l.accept("+-")
+	digits := "0123456789"
+	if l.accept("0") {
+		if l.accept("x") {
+			digits = "0123456789abcdefABCDEF"
+		} else {
+			digits = "01234567"
+		}
+	}
+	for strings.IndexRune(digits, l.next()) >= 0 {
+	}
+	l.backup()
+	if l.accept(".") {
+		for strings.IndexRune(digits, l.next()) >= 0 {
+		}
+		l.backup()
+	}
+	if l.accept("eE") {
+		l.accept("+-")
+		for strings.IndexRune("0123456789", l.next()) >= 0 {
+		}
+		l.backup()
+	}
+	if r := l.peek(); unicode.IsLetter(r) {
+		l.next()
+		return l.errorf("bad number syntax: %q", l.input[l.start:l.pos])
+	}
+	l.emit(tokNumber)
+	return varLexNormal
+}
+
+func varLexString(l *varLexer) lexState {
+	q := l.next()
+Loop:
+	for {
+		switch l.next() {
+		case '\\':
+			if r := l.next(); r != -1 {
+				break
+			}
+			fallthrough
+		case -1:
+			return l.errorf("unterminated string")
+		case q:
+			break Loop
+		}
+	}
+	l.emit(tokString)
+	return varLexNormal
+}
+
+func varLexType(l *varLexer) lexState {
+	at := l.accept("@")
+	for {
+		r := l.next()
+		if r == -1 {
+			break
+		}
+		if unicode.IsSpace(r) {
+			l.backup()
+			break
+		}
+	}
+	if at {
+		if _, err := ParseSignature(l.input[l.start+1 : l.pos]); err != nil {
+			return l.errorf("%s", err)
+		}
+	} else {
+		if _, ok := varTypeMap[l.input[l.start:l.pos]]; ok {
+			l.emit(tokType)
+			return varLexNormal
+		}
+		return l.errorf("unrecognized type %q", l.input[l.start:l.pos])
+	}
+	l.emit(tokType)
+	return varLexNormal
+}
diff --git a/vendor/github.com/godbus/dbus/variant_parser.go b/vendor/github.com/godbus/dbus/variant_parser.go
new file mode 100644
index 0000000000..d20f5da6dd
--- /dev/null
+++ b/vendor/github.com/godbus/dbus/variant_parser.go
@@ -0,0 +1,817 @@
+package dbus
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"io"
+	"reflect"
+	"strconv"
+	"strings"
+	"unicode/utf8"
+)
+
+type varParser struct {
+	tokens []varToken
+	i      int
+}
+
+func (p *varParser) backup() {
+	p.i--
+}
+
+func (p *varParser) next() varToken {
+	if p.i < len(p.tokens) {
+		t := p.tokens[p.i]
+		p.i++
+		return t
+	}
+	return varToken{typ: tokEOF}
+}
+
+type varNode interface {
+	Infer() (Signature, error)
+	String() string
+	Sigs() sigSet
+	Value(Signature) (interface{}, error)
+}
+
+func varMakeNode(p *varParser) (varNode, error) {
+	var sig Signature
+
+	for {
+		t := p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		case tokNumber:
+			return varMakeNumNode(t, sig)
+		case tokString:
+			return varMakeStringNode(t, sig)
+		case tokBool:
+			if sig.str != "" && sig.str != "b" {
+				return nil, varTypeError{t.val, sig}
+			}
+			b, err := strconv.ParseBool(t.val)
+			if err != nil {
+				return nil, err
+			}
+			return boolNode(b), nil
+		case tokArrayStart:
+			return varMakeArrayNode(p, sig)
+		case tokVariantStart:
+			return varMakeVariantNode(p, sig)
+		case tokDictStart:
+			return varMakeDictNode(p, sig)
+		case tokType:
+			if sig.str != "" {
+				return nil, errors.New("unexpected type annotation")
+			}
+			if t.val[0] == '@' {
+				sig.str = t.val[1:]
+			} else {
+				sig.str = varTypeMap[t.val]
+			}
+		case tokByteString:
+			if sig.str != "" && sig.str != "ay" {
+				return nil, varTypeError{t.val, sig}
+			}
+			b, err := varParseByteString(t.val)
+			if err != nil {
+				return nil, err
+			}
+			return byteStringNode(b), nil
+		default:
+			return nil, fmt.Errorf("unexpected %q", t.val)
+		}
+	}
+}
+
+type varTypeError struct {
+	val string
+	sig Signature
+}
+
+func (e varTypeError) Error() string {
+	return fmt.Sprintf("dbus: can't parse %q as type %q", e.val, e.sig.str)
+}
+
+type sigSet map[Signature]bool
+
+func (s sigSet) Empty() bool {
+	return len(s) == 0
+}
+
+func (s sigSet) Intersect(s2 sigSet) sigSet {
+	r := make(sigSet)
+	for k := range s {
+		if s2[k] {
+			r[k] = true
+		}
+	}
+	return r
+}
+
+func (s sigSet) Single() (Signature, bool) {
+	if len(s) == 1 {
+		for k := range s {
+			return k, true
+		}
+	}
+	return Signature{}, false
+}
+
+func (s sigSet) ToArray() sigSet {
+	r := make(sigSet, len(s))
+	for k := range s {
+		r[Signature{"a" + k.str}] = true
+	}
+	return r
+}
+
+type numNode struct {
+	sig Signature
+	str string
+	val interface{}
+}
+
+var numSigSet = sigSet{
+	Signature{"y"}: true,
+	Signature{"n"}: true,
+	Signature{"q"}: true,
+	Signature{"i"}: true,
+	Signature{"u"}: true,
+	Signature{"x"}: true,
+	Signature{"t"}: true,
+	Signature{"d"}: true,
+}
+
+func (n numNode) Infer() (Signature, error) {
+	if strings.ContainsAny(n.str, ".e") {
+		return Signature{"d"}, nil
+	}
+	return Signature{"i"}, nil
+}
+
+func (n numNode) String() string {
+	return n.str
+}
+
+func (n numNode) Sigs() sigSet {
+	if n.sig.str != "" {
+		return sigSet{n.sig: true}
+	}
+	if strings.ContainsAny(n.str, ".e") {
+		return sigSet{Signature{"d"}: true}
+	}
+	return numSigSet
+}
+
+func (n numNode) Value(sig Signature) (interface{}, error) {
+	if n.sig.str != "" && n.sig != sig {
+		return nil, varTypeError{n.str, sig}
+	}
+	if n.val != nil {
+		return n.val, nil
+	}
+	return varNumAs(n.str, sig)
+}
+
+func varMakeNumNode(tok varToken, sig Signature) (varNode, error) {
+	if sig.str == "" {
+		return numNode{str: tok.val}, nil
+	}
+	num, err := varNumAs(tok.val, sig)
+	if err != nil {
+		return nil, err
+	}
+	return numNode{sig: sig, val: num}, nil
+}
+
+func varNumAs(s string, sig Signature) (interface{}, error) {
+	isUnsigned := false
+	size := 32
+	switch sig.str {
+	case "n":
+		size = 16
+	case "i":
+	case "x":
+		size = 64
+	case "y":
+		size = 8
+		isUnsigned = true
+	case "q":
+		size = 16
+		isUnsigned = true
+	case "u":
+		isUnsigned = true
+	case "t":
+		size = 64
+		isUnsigned = true
+	case "d":
+		d, err := strconv.ParseFloat(s, 64)
+		if err != nil {
+			return nil, err
+		}
+		return d, nil
+	default:
+		return nil, varTypeError{s, sig}
+	}
+	base := 10
+	if strings.HasPrefix(s, "0x") {
+		base = 16
+		s = s[2:]
+	}
+	if strings.HasPrefix(s, "0") && len(s) != 1 {
+		base = 8
+		s = s[1:]
+	}
+	if isUnsigned {
+		i, err := strconv.ParseUint(s, base, size)
+		if err != nil {
+			return nil, err
+		}
+		var v interface{} = i
+		switch sig.str {
+		case "y":
+			v = byte(i)
+		case "q":
+			v = uint16(i)
+		case "u":
+			v = uint32(i)
+		}
+		return v, nil
+	}
+	i, err := strconv.ParseInt(s, base, size)
+	if err != nil {
+		return nil, err
+	}
+	var v interface{} = i
+	switch sig.str {
+	case "n":
+		v = int16(i)
+	case "i":
+		v = int32(i)
+	}
+	return v, nil
+}
+
+type stringNode struct {
+	sig Signature
+	str string      // parsed
+	val interface{} // has correct type
+}
+
+var stringSigSet = sigSet{
+	Signature{"s"}: true,
+	Signature{"g"}: true,
+	Signature{"o"}: true,
+}
+
+func (n stringNode) Infer() (Signature, error) {
+	return Signature{"s"}, nil
+}
+
+func (n stringNode) String() string {
+	return n.str
+}
+
+func (n stringNode) Sigs() sigSet {
+	if n.sig.str != "" {
+		return sigSet{n.sig: true}
+	}
+	return stringSigSet
+}
+
+func (n stringNode) Value(sig Signature) (interface{}, error) {
+	if n.sig.str != "" && n.sig != sig {
+		return nil, varTypeError{n.str, sig}
+	}
+	if n.val != nil {
+		return n.val, nil
+	}
+	switch {
+	case sig.str == "g":
+		return Signature{n.str}, nil
+	case sig.str == "o":
+		return ObjectPath(n.str), nil
+	case sig.str == "s":
+		return n.str, nil
+	default:
+		return nil, varTypeError{n.str, sig}
+	}
+}
+
+func varMakeStringNode(tok varToken, sig Signature) (varNode, error) {
+	if sig.str != "" && sig.str != "s" && sig.str != "g" && sig.str != "o" {
+		return nil, fmt.Errorf("invalid type %q for string", sig.str)
+	}
+	s, err := varParseString(tok.val)
+	if err != nil {
+		return nil, err
+	}
+	n := stringNode{str: s}
+	if sig.str == "" {
+		return stringNode{str: s}, nil
+	}
+	n.sig = sig
+	switch sig.str {
+	case "o":
+		n.val = ObjectPath(s)
+	case "g":
+		n.val = Signature{s}
+	case "s":
+		n.val = s
+	}
+	return n, nil
+}
+
+func varParseString(s string) (string, error) {
+	// quotes are guaranteed to be there
+	s = s[1 : len(s)-1]
+	buf := new(bytes.Buffer)
+	for len(s) != 0 {
+		r, size := utf8.DecodeRuneInString(s)
+		if r == utf8.RuneError && size == 1 {
+			return "", errors.New("invalid UTF-8")
+		}
+		s = s[size:]
+		if r != '\\' {
+			buf.WriteRune(r)
+			continue
+		}
+		r, size = utf8.DecodeRuneInString(s)
+		if r == utf8.RuneError && size == 1 {
+			return "", errors.New("invalid UTF-8")
+		}
+		s = s[size:]
+		switch r {
+		case 'a':
+			buf.WriteRune(0x7)
+		case 'b':
+			buf.WriteRune(0x8)
+		case 'f':
+			buf.WriteRune(0xc)
+		case 'n':
+			buf.WriteRune('\n')
+		case 'r':
+			buf.WriteRune('\r')
+		case 't':
+			buf.WriteRune('\t')
+		case '\n':
+		case 'u':
+			if len(s) < 4 {
+				return "", errors.New("short unicode escape")
+			}
+			r, err := strconv.ParseUint(s[:4], 16, 32)
+			if err != nil {
+				return "", err
+			}
+			buf.WriteRune(rune(r))
+			s = s[4:]
+		case 'U':
+			if len(s) < 8 {
+				return "", errors.New("short unicode escape")
+			}
+			r, err := strconv.ParseUint(s[:8], 16, 32)
+			if err != nil {
+				return "", err
+			}
+			buf.WriteRune(rune(r))
+			s = s[8:]
+		default:
+			buf.WriteRune(r)
+		}
+	}
+	return buf.String(), nil
+}
+
+var boolSigSet = sigSet{Signature{"b"}: true}
+
+type boolNode bool
+
+func (boolNode) Infer() (Signature, error) {
+	return Signature{"b"}, nil
+}
+
+func (b boolNode) String() string {
+	if b {
+		return "true"
+	}
+	return "false"
+}
+
+func (boolNode) Sigs() sigSet {
+	return boolSigSet
+}
+
+func (b boolNode) Value(sig Signature) (interface{}, error) {
+	if sig.str != "b" {
+		return nil, varTypeError{b.String(), sig}
+	}
+	return bool(b), nil
+}
+
+type arrayNode struct {
+	set      sigSet
+	children []varNode
+	val      interface{}
+}
+
+func (n arrayNode) Infer() (Signature, error) {
+	for _, v := range n.children {
+		csig, err := varInfer(v)
+		if err != nil {
+			continue
+		}
+		return Signature{"a" + csig.str}, nil
+	}
+	return Signature{}, fmt.Errorf("can't infer type for %q", n.String())
+}
+
+func (n arrayNode) String() string {
+	s := "["
+	for i, v := range n.children {
+		s += v.String()
+		if i != len(n.children)-1 {
+			s += ", "
+		}
+	}
+	return s + "]"
+}
+
+func (n arrayNode) Sigs() sigSet {
+	return n.set
+}
+
+func (n arrayNode) Value(sig Signature) (interface{}, error) {
+	if n.set.Empty() {
+		// no type information whatsoever, so this must be an empty slice
+		return reflect.MakeSlice(typeFor(sig.str), 0, 0).Interface(), nil
+	}
+	if !n.set[sig] {
+		return nil, varTypeError{n.String(), sig}
+	}
+	s := reflect.MakeSlice(typeFor(sig.str), len(n.children), len(n.children))
+	for i, v := range n.children {
+		rv, err := v.Value(Signature{sig.str[1:]})
+		if err != nil {
+			return nil, err
+		}
+		s.Index(i).Set(reflect.ValueOf(rv))
+	}
+	return s.Interface(), nil
+}
+
+func varMakeArrayNode(p *varParser, sig Signature) (varNode, error) {
+	var n arrayNode
+	if sig.str != "" {
+		n.set = sigSet{sig: true}
+	}
+	if t := p.next(); t.typ == tokArrayEnd {
+		return n, nil
+	} else {
+		p.backup()
+	}
+Loop:
+	for {
+		t := p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		}
+		p.backup()
+		cn, err := varMakeNode(p)
+		if err != nil {
+			return nil, err
+		}
+		if cset := cn.Sigs(); !cset.Empty() {
+			if n.set.Empty() {
+				n.set = cset.ToArray()
+			} else {
+				nset := cset.ToArray().Intersect(n.set)
+				if nset.Empty() {
+					return nil, fmt.Errorf("can't parse %q with given type information", cn.String())
+				}
+				n.set = nset
+			}
+		}
+		n.children = append(n.children, cn)
+		switch t := p.next(); t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		case tokArrayEnd:
+			break Loop
+		case tokComma:
+			continue
+		default:
+			return nil, fmt.Errorf("unexpected %q", t.val)
+		}
+	}
+	return n, nil
+}
+
+type variantNode struct {
+	n varNode
+}
+
+var variantSet = sigSet{
+	Signature{"v"}: true,
+}
+
+func (variantNode) Infer() (Signature, error) {
+	return Signature{"v"}, nil
+}
+
+func (n variantNode) String() string {
+	return "<" + n.n.String() + ">"
+}
+
+func (variantNode) Sigs() sigSet {
+	return variantSet
+}
+
+func (n variantNode) Value(sig Signature) (interface{}, error) {
+	if sig.str != "v" {
+		return nil, varTypeError{n.String(), sig}
+	}
+	sig, err := varInfer(n.n)
+	if err != nil {
+		return nil, err
+	}
+	v, err := n.n.Value(sig)
+	if err != nil {
+		return nil, err
+	}
+	return MakeVariant(v), nil
+}
+
+func varMakeVariantNode(p *varParser, sig Signature) (varNode, error) {
+	n, err := varMakeNode(p)
+	if err != nil {
+		return nil, err
+	}
+	if t := p.next(); t.typ != tokVariantEnd {
+		return nil, fmt.Errorf("unexpected %q", t.val)
+	}
+	vn := variantNode{n}
+	if sig.str != "" && sig.str != "v" {
+		return nil, varTypeError{vn.String(), sig}
+	}
+	return variantNode{n}, nil
+}
+
+type dictEntry struct {
+	key, val varNode
+}
+
+type dictNode struct {
+	kset, vset sigSet
+	children   []dictEntry
+	val        interface{}
+}
+
+func (n dictNode) Infer() (Signature, error) {
+	for _, v := range n.children {
+		ksig, err := varInfer(v.key)
+		if err != nil {
+			continue
+		}
+		vsig, err := varInfer(v.val)
+		if err != nil {
+			continue
+		}
+		return Signature{"a{" + ksig.str + vsig.str + "}"}, nil
+	}
+	return Signature{}, fmt.Errorf("can't infer type for %q", n.String())
+}
+
+func (n dictNode) String() string {
+	s := "{"
+	for i, v := range n.children {
+		s += v.key.String() + ": " + v.val.String()
+		if i != len(n.children)-1 {
+			s += ", "
+		}
+	}
+	return s + "}"
+}
+
+func (n dictNode) Sigs() sigSet {
+	r := sigSet{}
+	for k := range n.kset {
+		for v := range n.vset {
+			sig := "a{" + k.str + v.str + "}"
+			r[Signature{sig}] = true
+		}
+	}
+	return r
+}
+
+func (n dictNode) Value(sig Signature) (interface{}, error) {
+	set := n.Sigs()
+	if set.Empty() {
+		// no type information -> empty dict
+		return reflect.MakeMap(typeFor(sig.str)).Interface(), nil
+	}
+	if !set[sig] {
+		return nil, varTypeError{n.String(), sig}
+	}
+	m := reflect.MakeMap(typeFor(sig.str))
+	ksig := Signature{sig.str[2:3]}
+	vsig := Signature{sig.str[3 : len(sig.str)-1]}
+	for _, v := range n.children {
+		kv, err := v.key.Value(ksig)
+		if err != nil {
+			return nil, err
+		}
+		vv, err := v.val.Value(vsig)
+		if err != nil {
+			return nil, err
+		}
+		m.SetMapIndex(reflect.ValueOf(kv), reflect.ValueOf(vv))
+	}
+	return m.Interface(), nil
+}
+
+func varMakeDictNode(p *varParser, sig Signature) (varNode, error) {
+	var n dictNode
+
+	if sig.str != "" {
+		if len(sig.str) < 5 {
+			return nil, fmt.Errorf("invalid signature %q for dict type", sig)
+		}
+		ksig := Signature{string(sig.str[2])}
+		vsig := Signature{sig.str[3 : len(sig.str)-1]}
+		n.kset = sigSet{ksig: true}
+		n.vset = sigSet{vsig: true}
+	}
+	if t := p.next(); t.typ == tokDictEnd {
+		return n, nil
+	} else {
+		p.backup()
+	}
+Loop:
+	for {
+		t := p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		}
+		p.backup()
+		kn, err := varMakeNode(p)
+		if err != nil {
+			return nil, err
+		}
+		if kset := kn.Sigs(); !kset.Empty() {
+			if n.kset.Empty() {
+				n.kset = kset
+			} else {
+				n.kset = kset.Intersect(n.kset)
+				if n.kset.Empty() {
+					return nil, fmt.Errorf("can't parse %q with given type information", kn.String())
+				}
+			}
+		}
+		t = p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		case tokColon:
+		default:
+			return nil, fmt.Errorf("unexpected %q", t.val)
+		}
+		t = p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		}
+		p.backup()
+		vn, err := varMakeNode(p)
+		if err != nil {
+			return nil, err
+		}
+		if vset := vn.Sigs(); !vset.Empty() {
+			if n.vset.Empty() {
+				n.vset = vset
+			} else {
+				n.vset = n.vset.Intersect(vset)
+				if n.vset.Empty() {
+					return nil, fmt.Errorf("can't parse %q with given type information", vn.String())
+				}
+			}
+		}
+		n.children = append(n.children, dictEntry{kn, vn})
+		t = p.next()
+		switch t.typ {
+		case tokEOF:
+			return nil, io.ErrUnexpectedEOF
+		case tokError:
+			return nil, errors.New(t.val)
+		case tokDictEnd:
+			break Loop
+		case tokComma:
+			continue
+		default:
+			return nil, fmt.Errorf("unexpected %q", t.val)
+		}
+	}
+	return n, nil
+}
+
+type byteStringNode []byte
+
+var byteStringSet = sigSet{
+	Signature{"ay"}: true,
+}
+
+func (byteStringNode) Infer() (Signature, error) {
+	return Signature{"ay"}, nil
+}
+
+func (b byteStringNode) String() string {
+	return string(b)
+}
+
+func (b byteStringNode) Sigs() sigSet {
+	return byteStringSet
+}
+
+func (b byteStringNode) Value(sig Signature) (interface{}, error) {
+	if sig.str != "ay" {
+		return nil, varTypeError{b.String(), sig}
+	}
+	return []byte(b), nil
+}
+
+func varParseByteString(s string) ([]byte, error) {
+	// quotes and b at start are guaranteed to be there
+	b := make([]byte, 0, 1)
+	s = s[2 : len(s)-1]
+	for len(s) != 0 {
+		c := s[0]
+		s = s[1:]
+		if c != '\\' {
+			b = append(b, c)
+			continue
+		}
+		c = s[0]
+		s = s[1:]
+		switch c {
+		case 'a':
+			b = append(b, 0x7)
+		case 'b':
+			b = append(b, 0x8)
+		case 'f':
+			b = append(b, 0xc)
+		case 'n':
+			b = append(b, '\n')
+		case 'r':
+			b = append(b, '\r')
+		case 't':
+			b = append(b, '\t')
+		case 'x':
+			if len(s) < 2 {
+				return nil, errors.New("short escape")
+			}
+			n, err := strconv.ParseUint(s[:2], 16, 8)
+			if err != nil {
+				return nil, err
+			}
+			b = append(b, byte(n))
+			s = s[2:]
+		case '0':
+			if len(s) < 3 {
+				return nil, errors.New("short escape")
+			}
+			n, err := strconv.ParseUint(s[:3], 8, 8)
+			if err != nil {
+				return nil, err
+			}
+			b = append(b, byte(n))
+			s = s[3:]
+		default:
+			b = append(b, c)
+		}
+	}
+	return append(b, 0), nil
+}
+
+func varInfer(n varNode) (Signature, error) {
+	if sig, ok := n.Sigs().Single(); ok {
+		return sig, nil
+	}
+	return n.Infer()
+}
diff --git a/vendor/github.com/gogo/protobuf/AUTHORS b/vendor/github.com/gogo/protobuf/AUTHORS
new file mode 100644
index 0000000000..3d97fc7a29
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/AUTHORS
@@ -0,0 +1,15 @@
+# This is the official list of GoGo authors for copyright purposes.
+# This file is distinct from the CONTRIBUTORS file, which
+# lists people.  For example, employees are listed in CONTRIBUTORS,
+# but not in AUTHORS, because the employer holds the copyright.
+
+# Names should be added to this file as one of
+#     Organization's name
+#     Individual's name <submission email address>
+#     Individual's name <submission email address> <email2> <emailN>
+
+# Please keep the list sorted.
+
+Sendgrid, Inc
+Vastech SA (PTY) LTD
+Walter Schulze <awalterschulze@gmail.com>
diff --git a/vendor/github.com/gogo/protobuf/CONTRIBUTORS b/vendor/github.com/gogo/protobuf/CONTRIBUTORS
new file mode 100644
index 0000000000..1b4f6c208a
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/CONTRIBUTORS
@@ -0,0 +1,23 @@
+Anton Povarov <anton.povarov@gmail.com>
+Brian Goff <cpuguy83@gmail.com>
+Clayton Coleman <ccoleman@redhat.com>
+Denis Smirnov <denis.smirnov.91@gmail.com>
+DongYun Kang <ceram1000@gmail.com>
+Dwayne Schultz <dschultz@pivotal.io>
+Georg Apitz <gapitz@pivotal.io>
+Gustav Paul <gustav.paul@gmail.com>
+Johan Brandhorst <johan.brandhorst@gmail.com>
+John Shahid <jvshahid@gmail.com>
+John Tuley <john@tuley.org>
+Laurent <laurent@adyoulike.com>
+Patrick Lee <patrick@dropbox.com>
+Peter Edge <peter.edge@gmail.com>
+Roger Johansson <rogeralsing@gmail.com>
+Sam Nguyen <sam.nguyen@sendgrid.com>
+Sergio Arbeo <serabe@gmail.com>
+Stephen J Day <stephen.day@docker.com>
+Tamir Duberstein <tamird@gmail.com>
+Todd Eisenberger <teisenberger@dropbox.com>
+Tormod Erevik Lea <tormodlea@gmail.com>
+Vyacheslav Kim <kane@sendgrid.com>
+Walter Schulze <awalterschulze@gmail.com>
diff --git a/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS b/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
new file mode 100644
index 0000000000..b368efb7f2
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/GOLANG_CONTRIBUTORS
@@ -0,0 +1,5 @@
+The contributors to the Go protobuf repository:
+
+# This source code was written by the Go contributors.
+# The master list of contributors is in the main Go distribution,
+# visible at http://tip.golang.org/CONTRIBUTORS.
\ No newline at end of file
diff --git a/vendor/github.com/gogo/protobuf/LICENSE b/vendor/github.com/gogo/protobuf/LICENSE
new file mode 100644
index 0000000000..7be0cc7b62
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/LICENSE
@@ -0,0 +1,36 @@
+Protocol Buffers for Go with Gadgets
+
+Copyright (c) 2013, The GoGo Authors. All rights reserved.
+http://github.com/gogo/protobuf
+
+Go support for Protocol Buffers - Google's data interchange format
+
+Copyright 2010 The Go Authors.  All rights reserved.
+https://github.com/golang/protobuf
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+    * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+    * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
diff --git a/vendor/github.com/gogo/protobuf/gogoproto/doc.go b/vendor/github.com/gogo/protobuf/gogoproto/doc.go
new file mode 100644
index 0000000000..147b5ecc62
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/gogoproto/doc.go
@@ -0,0 +1,169 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+/*
+Package gogoproto provides extensions for protocol buffers to achieve:
+
+  - fast marshalling and unmarshalling.
+  - peace of mind by optionally generating test and benchmark code.
+  - more canonical Go structures.
+  - less typing by optionally generating extra helper code.
+  - goprotobuf compatibility
+
+More Canonical Go Structures
+
+A lot of time working with a goprotobuf struct will lead you to a place where you create another struct that is easier to work with and then have a function to copy the values between the two structs.
+You might also find that basic structs that started their life as part of an API need to be sent over the wire. With gob, you could just send it. With goprotobuf, you need to make a parallel struct.
+Gogoprotobuf tries to fix these problems with the nullable, embed, customtype and customname field extensions.
+
+  - nullable, if false, a field is generated without a pointer (see warning below).
+  - embed, if true, the field is generated as an embedded field.
+  - customtype, It works with the Marshal and Unmarshal methods, to allow you to have your own types in your struct, but marshal to bytes. For example, custom.Uuid or custom.Fixed128
+  - customname (beta), Changes the generated fieldname. This is especially useful when generated methods conflict with fieldnames.
+  - casttype (beta), Changes the generated fieldtype.  All generated code assumes that this type is castable to the protocol buffer field type.  It does not work for structs or enums.
+  - castkey (beta), Changes the generated fieldtype for a map key.  All generated code assumes that this type is castable to the protocol buffer field type.  Only supported on maps.
+  - castvalue (beta), Changes the generated fieldtype for a map value.  All generated code assumes that this type is castable to the protocol buffer field type.  Only supported on maps.
+
+Warning about nullable: According to the Protocol Buffer specification, you should be able to tell whether a field is set or unset. With the option nullable=false this feature is lost, since your non-nullable fields will always be set. It can be seen as a layer on top of Protocol Buffers, where before and after marshalling all non-nullable fields are set and they cannot be unset.
+
+Let us look at:
+
+	github.com/gogo/protobuf/test/example/example.proto
+
+for a quicker overview.
+
+The following message:
+
+  package test;
+
+  import "github.com/gogo/protobuf/gogoproto/gogo.proto";
+
+	message A {
+		optional string Description = 1 [(gogoproto.nullable) = false];
+		optional int64 Number = 2 [(gogoproto.nullable) = false];
+		optional bytes Id = 3 [(gogoproto.customtype) = "github.com/gogo/protobuf/test/custom.Uuid", (gogoproto.nullable) = false];
+	}
+
+Will generate a go struct which looks a lot like this:
+
+	type A struct {
+		Description string
+		Number      int64
+		Id          github_com_gogo_protobuf_test_custom.Uuid
+	}
+
+You will see there are no pointers, since all fields are non-nullable.
+You will also see a custom type which marshals to a string.
+Be warned it is your responsibility to test your custom types thoroughly.
+You should think of every possible empty and nil case for your marshaling, unmarshaling and size methods.
+
+Next we will embed the message A in message B.
+
+	message B {
+		optional A A = 1 [(gogoproto.nullable) = false, (gogoproto.embed) = true];
+		repeated bytes G = 2 [(gogoproto.customtype) = "github.com/gogo/protobuf/test/custom.Uint128", (gogoproto.nullable) = false];
+	}
+
+See below that A is embedded in B.
+
+	type B struct {
+		A
+		G []github_com_gogo_protobuf_test_custom.Uint128
+	}
+
+Also see the repeated custom type.
+
+	type Uint128 [2]uint64
+
+Next we will create a custom name for one of our fields.
+
+	message C {
+		optional int64 size = 1 [(gogoproto.customname) = "MySize"];
+	}
+
+See below that the field's name is MySize and not Size.
+
+	type C struct {
+		MySize		*int64
+	}
+
+The is useful when having a protocol buffer message with a field name which conflicts with a generated method.
+As an example, having a field name size and using the sizer plugin to generate a Size method will cause a go compiler error.
+Using customname you can fix this error without changing the field name.
+This is typically useful when working with a protocol buffer that was designed before these methods and/or the go language were avialable.
+
+Gogoprotobuf also has some more subtle changes, these could be changed back:
+
+  - the generated package name for imports do not have the extra /filename.pb,
+  but are actually the imports specified in the .proto file.
+
+Gogoprotobuf also has lost some features which should be brought back with time:
+
+  - Marshalling and unmarshalling with reflect and without the unsafe package,
+  this requires work in pointer_reflect.go
+
+Why does nullable break protocol buffer specifications:
+
+The protocol buffer specification states, somewhere, that you should be able to tell whether a
+field is set or unset.  With the option nullable=false this feature is lost,
+since your non-nullable fields will always be set.  It can be seen as a layer on top of
+protocol buffers, where before and after marshalling all non-nullable fields are set
+and they cannot be unset.
+
+Goprotobuf Compatibility:
+
+Gogoprotobuf is compatible with Goprotobuf, because it is compatible with protocol buffers.
+Gogoprotobuf generates the same code as goprotobuf if no extensions are used.
+The enumprefix, getters and stringer extensions can be used to remove some of the unnecessary code generated by goprotobuf:
+
+  - gogoproto_import, if false, the generated code imports github.com/golang/protobuf/proto instead of github.com/gogo/protobuf/proto.
+  - goproto_enum_prefix, if false, generates the enum constant names without the messagetype prefix
+  - goproto_enum_stringer (experimental), if false, the enum is generated without the default string method, this is useful for rather using enum_stringer, or allowing you to write your own string method.
+  - goproto_getters, if false, the message is generated without get methods, this is useful when you would rather want to use face
+  - goproto_stringer, if false, the message is generated without the default string method, this is useful for rather using stringer, or allowing you to write your own string method.
+  - goproto_extensions_map (beta), if false, the extensions field is generated as type []byte instead of type map[int32]proto.Extension
+  - goproto_unrecognized (beta), if false, XXX_unrecognized field is not generated. This is useful in conjunction with gogoproto.nullable=false, to generate structures completely devoid of pointers and reduce GC pressure at the cost of losing information about unrecognized fields.
+  - goproto_registration (beta), if true, the generated files will register all messages and types against both gogo/protobuf and golang/protobuf. This is necessary when using third-party packages which read registrations from golang/protobuf (such as the grpc-gateway).
+
+Less Typing and Peace of Mind is explained in their specific plugin folders godoc:
+
+	- github.com/gogo/protobuf/plugin/<extension_name>
+
+If you do not use any of these extension the code that is generated
+will be the same as if goprotobuf has generated it.
+
+The most complete way to see examples is to look at
+
+	github.com/gogo/protobuf/test/thetest.proto
+
+Gogoprototest is a seperate project,
+because we want to keep gogoprotobuf independant of goprotobuf,
+but we still want to test it thoroughly.
+
+*/
+package gogoproto
diff --git a/vendor/github.com/gogo/protobuf/gogoproto/gogo.pb.go b/vendor/github.com/gogo/protobuf/gogoproto/gogo.pb.go
new file mode 100644
index 0000000000..5765acb153
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/gogoproto/gogo.pb.go
@@ -0,0 +1,804 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: gogo.proto
+
+/*
+Package gogoproto is a generated protocol buffer package.
+
+It is generated from these files:
+	gogo.proto
+
+It has these top-level messages:
+*/
+package gogoproto
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+import google_protobuf "github.com/gogo/protobuf/protoc-gen-gogo/descriptor"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+var E_GoprotoEnumPrefix = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         62001,
+	Name:          "gogoproto.goproto_enum_prefix",
+	Tag:           "varint,62001,opt,name=goproto_enum_prefix,json=goprotoEnumPrefix",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoEnumStringer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         62021,
+	Name:          "gogoproto.goproto_enum_stringer",
+	Tag:           "varint,62021,opt,name=goproto_enum_stringer,json=goprotoEnumStringer",
+	Filename:      "gogo.proto",
+}
+
+var E_EnumStringer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         62022,
+	Name:          "gogoproto.enum_stringer",
+	Tag:           "varint,62022,opt,name=enum_stringer,json=enumStringer",
+	Filename:      "gogo.proto",
+}
+
+var E_EnumCustomname = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         62023,
+	Name:          "gogoproto.enum_customname",
+	Tag:           "bytes,62023,opt,name=enum_customname,json=enumCustomname",
+	Filename:      "gogo.proto",
+}
+
+var E_Enumdecl = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         62024,
+	Name:          "gogoproto.enumdecl",
+	Tag:           "varint,62024,opt,name=enumdecl",
+	Filename:      "gogo.proto",
+}
+
+var E_EnumvalueCustomname = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.EnumValueOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         66001,
+	Name:          "gogoproto.enumvalue_customname",
+	Tag:           "bytes,66001,opt,name=enumvalue_customname,json=enumvalueCustomname",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoGettersAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63001,
+	Name:          "gogoproto.goproto_getters_all",
+	Tag:           "varint,63001,opt,name=goproto_getters_all,json=goprotoGettersAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoEnumPrefixAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63002,
+	Name:          "gogoproto.goproto_enum_prefix_all",
+	Tag:           "varint,63002,opt,name=goproto_enum_prefix_all,json=goprotoEnumPrefixAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoStringerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63003,
+	Name:          "gogoproto.goproto_stringer_all",
+	Tag:           "varint,63003,opt,name=goproto_stringer_all,json=goprotoStringerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_VerboseEqualAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63004,
+	Name:          "gogoproto.verbose_equal_all",
+	Tag:           "varint,63004,opt,name=verbose_equal_all,json=verboseEqualAll",
+	Filename:      "gogo.proto",
+}
+
+var E_FaceAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63005,
+	Name:          "gogoproto.face_all",
+	Tag:           "varint,63005,opt,name=face_all,json=faceAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GostringAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63006,
+	Name:          "gogoproto.gostring_all",
+	Tag:           "varint,63006,opt,name=gostring_all,json=gostringAll",
+	Filename:      "gogo.proto",
+}
+
+var E_PopulateAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63007,
+	Name:          "gogoproto.populate_all",
+	Tag:           "varint,63007,opt,name=populate_all,json=populateAll",
+	Filename:      "gogo.proto",
+}
+
+var E_StringerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63008,
+	Name:          "gogoproto.stringer_all",
+	Tag:           "varint,63008,opt,name=stringer_all,json=stringerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_OnlyoneAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63009,
+	Name:          "gogoproto.onlyone_all",
+	Tag:           "varint,63009,opt,name=onlyone_all,json=onlyoneAll",
+	Filename:      "gogo.proto",
+}
+
+var E_EqualAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63013,
+	Name:          "gogoproto.equal_all",
+	Tag:           "varint,63013,opt,name=equal_all,json=equalAll",
+	Filename:      "gogo.proto",
+}
+
+var E_DescriptionAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63014,
+	Name:          "gogoproto.description_all",
+	Tag:           "varint,63014,opt,name=description_all,json=descriptionAll",
+	Filename:      "gogo.proto",
+}
+
+var E_TestgenAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63015,
+	Name:          "gogoproto.testgen_all",
+	Tag:           "varint,63015,opt,name=testgen_all,json=testgenAll",
+	Filename:      "gogo.proto",
+}
+
+var E_BenchgenAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63016,
+	Name:          "gogoproto.benchgen_all",
+	Tag:           "varint,63016,opt,name=benchgen_all,json=benchgenAll",
+	Filename:      "gogo.proto",
+}
+
+var E_MarshalerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63017,
+	Name:          "gogoproto.marshaler_all",
+	Tag:           "varint,63017,opt,name=marshaler_all,json=marshalerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_UnmarshalerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63018,
+	Name:          "gogoproto.unmarshaler_all",
+	Tag:           "varint,63018,opt,name=unmarshaler_all,json=unmarshalerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_StableMarshalerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63019,
+	Name:          "gogoproto.stable_marshaler_all",
+	Tag:           "varint,63019,opt,name=stable_marshaler_all,json=stableMarshalerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_SizerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63020,
+	Name:          "gogoproto.sizer_all",
+	Tag:           "varint,63020,opt,name=sizer_all,json=sizerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoEnumStringerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63021,
+	Name:          "gogoproto.goproto_enum_stringer_all",
+	Tag:           "varint,63021,opt,name=goproto_enum_stringer_all,json=goprotoEnumStringerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_EnumStringerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63022,
+	Name:          "gogoproto.enum_stringer_all",
+	Tag:           "varint,63022,opt,name=enum_stringer_all,json=enumStringerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_UnsafeMarshalerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63023,
+	Name:          "gogoproto.unsafe_marshaler_all",
+	Tag:           "varint,63023,opt,name=unsafe_marshaler_all,json=unsafeMarshalerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_UnsafeUnmarshalerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63024,
+	Name:          "gogoproto.unsafe_unmarshaler_all",
+	Tag:           "varint,63024,opt,name=unsafe_unmarshaler_all,json=unsafeUnmarshalerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoExtensionsMapAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63025,
+	Name:          "gogoproto.goproto_extensions_map_all",
+	Tag:           "varint,63025,opt,name=goproto_extensions_map_all,json=goprotoExtensionsMapAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoUnrecognizedAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63026,
+	Name:          "gogoproto.goproto_unrecognized_all",
+	Tag:           "varint,63026,opt,name=goproto_unrecognized_all,json=goprotoUnrecognizedAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GogoprotoImport = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63027,
+	Name:          "gogoproto.gogoproto_import",
+	Tag:           "varint,63027,opt,name=gogoproto_import,json=gogoprotoImport",
+	Filename:      "gogo.proto",
+}
+
+var E_ProtosizerAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63028,
+	Name:          "gogoproto.protosizer_all",
+	Tag:           "varint,63028,opt,name=protosizer_all,json=protosizerAll",
+	Filename:      "gogo.proto",
+}
+
+var E_CompareAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63029,
+	Name:          "gogoproto.compare_all",
+	Tag:           "varint,63029,opt,name=compare_all,json=compareAll",
+	Filename:      "gogo.proto",
+}
+
+var E_TypedeclAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63030,
+	Name:          "gogoproto.typedecl_all",
+	Tag:           "varint,63030,opt,name=typedecl_all,json=typedeclAll",
+	Filename:      "gogo.proto",
+}
+
+var E_EnumdeclAll = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63031,
+	Name:          "gogoproto.enumdecl_all",
+	Tag:           "varint,63031,opt,name=enumdecl_all,json=enumdeclAll",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoRegistration = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FileOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         63032,
+	Name:          "gogoproto.goproto_registration",
+	Tag:           "varint,63032,opt,name=goproto_registration,json=goprotoRegistration",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoGetters = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64001,
+	Name:          "gogoproto.goproto_getters",
+	Tag:           "varint,64001,opt,name=goproto_getters,json=goprotoGetters",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoStringer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64003,
+	Name:          "gogoproto.goproto_stringer",
+	Tag:           "varint,64003,opt,name=goproto_stringer,json=goprotoStringer",
+	Filename:      "gogo.proto",
+}
+
+var E_VerboseEqual = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64004,
+	Name:          "gogoproto.verbose_equal",
+	Tag:           "varint,64004,opt,name=verbose_equal,json=verboseEqual",
+	Filename:      "gogo.proto",
+}
+
+var E_Face = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64005,
+	Name:          "gogoproto.face",
+	Tag:           "varint,64005,opt,name=face",
+	Filename:      "gogo.proto",
+}
+
+var E_Gostring = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64006,
+	Name:          "gogoproto.gostring",
+	Tag:           "varint,64006,opt,name=gostring",
+	Filename:      "gogo.proto",
+}
+
+var E_Populate = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64007,
+	Name:          "gogoproto.populate",
+	Tag:           "varint,64007,opt,name=populate",
+	Filename:      "gogo.proto",
+}
+
+var E_Stringer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         67008,
+	Name:          "gogoproto.stringer",
+	Tag:           "varint,67008,opt,name=stringer",
+	Filename:      "gogo.proto",
+}
+
+var E_Onlyone = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64009,
+	Name:          "gogoproto.onlyone",
+	Tag:           "varint,64009,opt,name=onlyone",
+	Filename:      "gogo.proto",
+}
+
+var E_Equal = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64013,
+	Name:          "gogoproto.equal",
+	Tag:           "varint,64013,opt,name=equal",
+	Filename:      "gogo.proto",
+}
+
+var E_Description = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64014,
+	Name:          "gogoproto.description",
+	Tag:           "varint,64014,opt,name=description",
+	Filename:      "gogo.proto",
+}
+
+var E_Testgen = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64015,
+	Name:          "gogoproto.testgen",
+	Tag:           "varint,64015,opt,name=testgen",
+	Filename:      "gogo.proto",
+}
+
+var E_Benchgen = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64016,
+	Name:          "gogoproto.benchgen",
+	Tag:           "varint,64016,opt,name=benchgen",
+	Filename:      "gogo.proto",
+}
+
+var E_Marshaler = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64017,
+	Name:          "gogoproto.marshaler",
+	Tag:           "varint,64017,opt,name=marshaler",
+	Filename:      "gogo.proto",
+}
+
+var E_Unmarshaler = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64018,
+	Name:          "gogoproto.unmarshaler",
+	Tag:           "varint,64018,opt,name=unmarshaler",
+	Filename:      "gogo.proto",
+}
+
+var E_StableMarshaler = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64019,
+	Name:          "gogoproto.stable_marshaler",
+	Tag:           "varint,64019,opt,name=stable_marshaler,json=stableMarshaler",
+	Filename:      "gogo.proto",
+}
+
+var E_Sizer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64020,
+	Name:          "gogoproto.sizer",
+	Tag:           "varint,64020,opt,name=sizer",
+	Filename:      "gogo.proto",
+}
+
+var E_UnsafeMarshaler = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64023,
+	Name:          "gogoproto.unsafe_marshaler",
+	Tag:           "varint,64023,opt,name=unsafe_marshaler,json=unsafeMarshaler",
+	Filename:      "gogo.proto",
+}
+
+var E_UnsafeUnmarshaler = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64024,
+	Name:          "gogoproto.unsafe_unmarshaler",
+	Tag:           "varint,64024,opt,name=unsafe_unmarshaler,json=unsafeUnmarshaler",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoExtensionsMap = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64025,
+	Name:          "gogoproto.goproto_extensions_map",
+	Tag:           "varint,64025,opt,name=goproto_extensions_map,json=goprotoExtensionsMap",
+	Filename:      "gogo.proto",
+}
+
+var E_GoprotoUnrecognized = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64026,
+	Name:          "gogoproto.goproto_unrecognized",
+	Tag:           "varint,64026,opt,name=goproto_unrecognized,json=goprotoUnrecognized",
+	Filename:      "gogo.proto",
+}
+
+var E_Protosizer = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64028,
+	Name:          "gogoproto.protosizer",
+	Tag:           "varint,64028,opt,name=protosizer",
+	Filename:      "gogo.proto",
+}
+
+var E_Compare = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64029,
+	Name:          "gogoproto.compare",
+	Tag:           "varint,64029,opt,name=compare",
+	Filename:      "gogo.proto",
+}
+
+var E_Typedecl = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.MessageOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         64030,
+	Name:          "gogoproto.typedecl",
+	Tag:           "varint,64030,opt,name=typedecl",
+	Filename:      "gogo.proto",
+}
+
+var E_Nullable = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         65001,
+	Name:          "gogoproto.nullable",
+	Tag:           "varint,65001,opt,name=nullable",
+	Filename:      "gogo.proto",
+}
+
+var E_Embed = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         65002,
+	Name:          "gogoproto.embed",
+	Tag:           "varint,65002,opt,name=embed",
+	Filename:      "gogo.proto",
+}
+
+var E_Customtype = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65003,
+	Name:          "gogoproto.customtype",
+	Tag:           "bytes,65003,opt,name=customtype",
+	Filename:      "gogo.proto",
+}
+
+var E_Customname = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65004,
+	Name:          "gogoproto.customname",
+	Tag:           "bytes,65004,opt,name=customname",
+	Filename:      "gogo.proto",
+}
+
+var E_Jsontag = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65005,
+	Name:          "gogoproto.jsontag",
+	Tag:           "bytes,65005,opt,name=jsontag",
+	Filename:      "gogo.proto",
+}
+
+var E_Moretags = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65006,
+	Name:          "gogoproto.moretags",
+	Tag:           "bytes,65006,opt,name=moretags",
+	Filename:      "gogo.proto",
+}
+
+var E_Casttype = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65007,
+	Name:          "gogoproto.casttype",
+	Tag:           "bytes,65007,opt,name=casttype",
+	Filename:      "gogo.proto",
+}
+
+var E_Castkey = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65008,
+	Name:          "gogoproto.castkey",
+	Tag:           "bytes,65008,opt,name=castkey",
+	Filename:      "gogo.proto",
+}
+
+var E_Castvalue = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*string)(nil),
+	Field:         65009,
+	Name:          "gogoproto.castvalue",
+	Tag:           "bytes,65009,opt,name=castvalue",
+	Filename:      "gogo.proto",
+}
+
+var E_Stdtime = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         65010,
+	Name:          "gogoproto.stdtime",
+	Tag:           "varint,65010,opt,name=stdtime",
+	Filename:      "gogo.proto",
+}
+
+var E_Stdduration = &proto.ExtensionDesc{
+	ExtendedType:  (*google_protobuf.FieldOptions)(nil),
+	ExtensionType: (*bool)(nil),
+	Field:         65011,
+	Name:          "gogoproto.stdduration",
+	Tag:           "varint,65011,opt,name=stdduration",
+	Filename:      "gogo.proto",
+}
+
+func init() {
+	proto.RegisterExtension(E_GoprotoEnumPrefix)
+	proto.RegisterExtension(E_GoprotoEnumStringer)
+	proto.RegisterExtension(E_EnumStringer)
+	proto.RegisterExtension(E_EnumCustomname)
+	proto.RegisterExtension(E_Enumdecl)
+	proto.RegisterExtension(E_EnumvalueCustomname)
+	proto.RegisterExtension(E_GoprotoGettersAll)
+	proto.RegisterExtension(E_GoprotoEnumPrefixAll)
+	proto.RegisterExtension(E_GoprotoStringerAll)
+	proto.RegisterExtension(E_VerboseEqualAll)
+	proto.RegisterExtension(E_FaceAll)
+	proto.RegisterExtension(E_GostringAll)
+	proto.RegisterExtension(E_PopulateAll)
+	proto.RegisterExtension(E_StringerAll)
+	proto.RegisterExtension(E_OnlyoneAll)
+	proto.RegisterExtension(E_EqualAll)
+	proto.RegisterExtension(E_DescriptionAll)
+	proto.RegisterExtension(E_TestgenAll)
+	proto.RegisterExtension(E_BenchgenAll)
+	proto.RegisterExtension(E_MarshalerAll)
+	proto.RegisterExtension(E_UnmarshalerAll)
+	proto.RegisterExtension(E_StableMarshalerAll)
+	proto.RegisterExtension(E_SizerAll)
+	proto.RegisterExtension(E_GoprotoEnumStringerAll)
+	proto.RegisterExtension(E_EnumStringerAll)
+	proto.RegisterExtension(E_UnsafeMarshalerAll)
+	proto.RegisterExtension(E_UnsafeUnmarshalerAll)
+	proto.RegisterExtension(E_GoprotoExtensionsMapAll)
+	proto.RegisterExtension(E_GoprotoUnrecognizedAll)
+	proto.RegisterExtension(E_GogoprotoImport)
+	proto.RegisterExtension(E_ProtosizerAll)
+	proto.RegisterExtension(E_CompareAll)
+	proto.RegisterExtension(E_TypedeclAll)
+	proto.RegisterExtension(E_EnumdeclAll)
+	proto.RegisterExtension(E_GoprotoRegistration)
+	proto.RegisterExtension(E_GoprotoGetters)
+	proto.RegisterExtension(E_GoprotoStringer)
+	proto.RegisterExtension(E_VerboseEqual)
+	proto.RegisterExtension(E_Face)
+	proto.RegisterExtension(E_Gostring)
+	proto.RegisterExtension(E_Populate)
+	proto.RegisterExtension(E_Stringer)
+	proto.RegisterExtension(E_Onlyone)
+	proto.RegisterExtension(E_Equal)
+	proto.RegisterExtension(E_Description)
+	proto.RegisterExtension(E_Testgen)
+	proto.RegisterExtension(E_Benchgen)
+	proto.RegisterExtension(E_Marshaler)
+	proto.RegisterExtension(E_Unmarshaler)
+	proto.RegisterExtension(E_StableMarshaler)
+	proto.RegisterExtension(E_Sizer)
+	proto.RegisterExtension(E_UnsafeMarshaler)
+	proto.RegisterExtension(E_UnsafeUnmarshaler)
+	proto.RegisterExtension(E_GoprotoExtensionsMap)
+	proto.RegisterExtension(E_GoprotoUnrecognized)
+	proto.RegisterExtension(E_Protosizer)
+	proto.RegisterExtension(E_Compare)
+	proto.RegisterExtension(E_Typedecl)
+	proto.RegisterExtension(E_Nullable)
+	proto.RegisterExtension(E_Embed)
+	proto.RegisterExtension(E_Customtype)
+	proto.RegisterExtension(E_Customname)
+	proto.RegisterExtension(E_Jsontag)
+	proto.RegisterExtension(E_Moretags)
+	proto.RegisterExtension(E_Casttype)
+	proto.RegisterExtension(E_Castkey)
+	proto.RegisterExtension(E_Castvalue)
+	proto.RegisterExtension(E_Stdtime)
+	proto.RegisterExtension(E_Stdduration)
+}
+
+func init() { proto.RegisterFile("gogo.proto", fileDescriptorGogo) }
+
+var fileDescriptorGogo = []byte{
+	// 1220 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x94, 0x98, 0x4b, 0x6f, 0x1c, 0x45,
+	0x10, 0x80, 0x85, 0x48, 0x14, 0x6f, 0xd9, 0x8e, 0xf1, 0xda, 0x98, 0x10, 0x81, 0x08, 0x9c, 0x38,
+	0xd9, 0xa7, 0x08, 0xa5, 0xad, 0xc8, 0x72, 0x2c, 0xc7, 0x4a, 0x84, 0xc1, 0x98, 0x38, 0xbc, 0x0e,
+	0xab, 0xd9, 0xdd, 0xf6, 0x78, 0x60, 0x66, 0x7a, 0x98, 0xe9, 0x89, 0xe2, 0xdc, 0x50, 0x78, 0x08,
+	0x21, 0xde, 0x48, 0x90, 0x90, 0x04, 0x38, 0xf0, 0x7e, 0x86, 0xf7, 0x91, 0x0b, 0x8f, 0x2b, 0xff,
+	0x81, 0x0b, 0x60, 0xde, 0xbe, 0xf9, 0x82, 0x6a, 0xb6, 0x6a, 0xb6, 0x67, 0xbd, 0x52, 0xf7, 0xde,
+	0xc6, 0xeb, 0xfe, 0xbe, 0xad, 0xa9, 0x9a, 0xae, 0xea, 0x59, 0x00, 0x5f, 0xf9, 0x6a, 0x3a, 0x49,
+	0x95, 0x56, 0xf5, 0x1a, 0x5e, 0x17, 0x97, 0x07, 0x0f, 0xf9, 0x4a, 0xf9, 0xa1, 0x9c, 0x29, 0xfe,
+	0x6a, 0xe6, 0xeb, 0x33, 0x6d, 0x99, 0xb5, 0xd2, 0x20, 0xd1, 0x2a, 0xed, 0x2c, 0x16, 0x77, 0xc1,
+	0x04, 0x2d, 0x6e, 0xc8, 0x38, 0x8f, 0x1a, 0x49, 0x2a, 0xd7, 0x83, 0xb3, 0xf5, 0x9b, 0xa6, 0x3b,
+	0xe4, 0x34, 0x93, 0xd3, 0x8b, 0x71, 0x1e, 0xdd, 0x9d, 0xe8, 0x40, 0xc5, 0xd9, 0x81, 0xab, 0xbf,
+	0x5c, 0x7b, 0xe8, 0x9a, 0xdb, 0x87, 0x56, 0xc7, 0x09, 0xc5, 0xff, 0xad, 0x14, 0xa0, 0x58, 0x85,
+	0xeb, 0x2b, 0xbe, 0x4c, 0xa7, 0x41, 0xec, 0xcb, 0xd4, 0x62, 0xfc, 0x9e, 0x8c, 0x13, 0x86, 0xf1,
+	0x5e, 0x42, 0xc5, 0x02, 0x8c, 0x0e, 0xe2, 0xfa, 0x81, 0x5c, 0x23, 0xd2, 0x94, 0x2c, 0xc1, 0x58,
+	0x21, 0x69, 0xe5, 0x99, 0x56, 0x51, 0xec, 0x45, 0xd2, 0xa2, 0xf9, 0xb1, 0xd0, 0xd4, 0x56, 0xf7,
+	0x23, 0xb6, 0x50, 0x52, 0x42, 0xc0, 0x10, 0x7e, 0xd2, 0x96, 0xad, 0xd0, 0x62, 0xf8, 0x89, 0x02,
+	0x29, 0xd7, 0x8b, 0xd3, 0x30, 0x89, 0xd7, 0x67, 0xbc, 0x30, 0x97, 0x66, 0x24, 0xb7, 0xf6, 0xf5,
+	0x9c, 0xc6, 0x65, 0x2c, 0xfb, 0xf9, 0xfc, 0x9e, 0x22, 0x9c, 0x89, 0x52, 0x60, 0xc4, 0x64, 0x54,
+	0xd1, 0x97, 0x5a, 0xcb, 0x34, 0x6b, 0x78, 0x61, 0xbf, 0xf0, 0x8e, 0x07, 0x61, 0x69, 0xbc, 0xb0,
+	0x55, 0xad, 0xe2, 0x52, 0x87, 0x9c, 0x0f, 0x43, 0xb1, 0x06, 0x37, 0xf4, 0x79, 0x2a, 0x1c, 0x9c,
+	0x17, 0xc9, 0x39, 0xb9, 0xeb, 0xc9, 0x40, 0xed, 0x0a, 0xf0, 0xe7, 0x65, 0x2d, 0x1d, 0x9c, 0xaf,
+	0x93, 0xb3, 0x4e, 0x2c, 0x97, 0x14, 0x8d, 0x27, 0x61, 0xfc, 0x8c, 0x4c, 0x9b, 0x2a, 0x93, 0x0d,
+	0xf9, 0x68, 0xee, 0x85, 0x0e, 0xba, 0x4b, 0xa4, 0x1b, 0x23, 0x70, 0x11, 0x39, 0x74, 0x1d, 0x81,
+	0xa1, 0x75, 0xaf, 0x25, 0x1d, 0x14, 0x97, 0x49, 0xb1, 0x0f, 0xd7, 0x23, 0x3a, 0x0f, 0x23, 0xbe,
+	0xea, 0xdc, 0x92, 0x03, 0x7e, 0x85, 0xf0, 0x61, 0x66, 0x48, 0x91, 0xa8, 0x24, 0x0f, 0x3d, 0xed,
+	0x12, 0xc1, 0x1b, 0xac, 0x60, 0x86, 0x14, 0x03, 0xa4, 0xf5, 0x4d, 0x56, 0x64, 0x46, 0x3e, 0xe7,
+	0x60, 0x58, 0xc5, 0xe1, 0xa6, 0x8a, 0x5d, 0x82, 0x78, 0x8b, 0x0c, 0x40, 0x08, 0x0a, 0x66, 0xa1,
+	0xe6, 0x5a, 0x88, 0xb7, 0xb7, 0x78, 0x7b, 0x70, 0x05, 0x96, 0x60, 0x8c, 0x1b, 0x54, 0xa0, 0x62,
+	0x07, 0xc5, 0x3b, 0xa4, 0xd8, 0x6f, 0x60, 0x74, 0x1b, 0x5a, 0x66, 0xda, 0x97, 0x2e, 0x92, 0x77,
+	0xf9, 0x36, 0x08, 0xa1, 0x54, 0x36, 0x65, 0xdc, 0xda, 0x70, 0x33, 0xbc, 0xc7, 0xa9, 0x64, 0x06,
+	0x15, 0x0b, 0x30, 0x1a, 0x79, 0x69, 0xb6, 0xe1, 0x85, 0x4e, 0xe5, 0x78, 0x9f, 0x1c, 0x23, 0x25,
+	0x44, 0x19, 0xc9, 0xe3, 0x41, 0x34, 0x1f, 0x70, 0x46, 0x0c, 0x8c, 0xb6, 0x5e, 0xa6, 0xbd, 0x66,
+	0x28, 0x1b, 0x83, 0xd8, 0x3e, 0xe4, 0xad, 0xd7, 0x61, 0x97, 0x4d, 0xe3, 0x2c, 0xd4, 0xb2, 0xe0,
+	0x9c, 0x93, 0xe6, 0x23, 0xae, 0x74, 0x01, 0x20, 0xfc, 0x00, 0xdc, 0xd8, 0x77, 0x4c, 0x38, 0xc8,
+	0x3e, 0x26, 0xd9, 0x54, 0x9f, 0x51, 0x41, 0x2d, 0x61, 0x50, 0xe5, 0x27, 0xdc, 0x12, 0x64, 0x8f,
+	0x6b, 0x05, 0x26, 0xf3, 0x38, 0xf3, 0xd6, 0x07, 0xcb, 0xda, 0xa7, 0x9c, 0xb5, 0x0e, 0x5b, 0xc9,
+	0xda, 0x29, 0x98, 0x22, 0xe3, 0x60, 0x75, 0xfd, 0x8c, 0x1b, 0x6b, 0x87, 0x5e, 0xab, 0x56, 0xf7,
+	0x21, 0x38, 0x58, 0xa6, 0xf3, 0xac, 0x96, 0x71, 0x86, 0x4c, 0x23, 0xf2, 0x12, 0x07, 0xf3, 0x55,
+	0x32, 0x73, 0xc7, 0x5f, 0x2c, 0x05, 0xcb, 0x5e, 0x82, 0xf2, 0xfb, 0xe1, 0x00, 0xcb, 0xf3, 0x38,
+	0x95, 0x2d, 0xe5, 0xc7, 0xc1, 0x39, 0xd9, 0x76, 0x50, 0x7f, 0xde, 0x53, 0xaa, 0x35, 0x03, 0x47,
+	0xf3, 0x09, 0xb8, 0xae, 0x3c, 0xab, 0x34, 0x82, 0x28, 0x51, 0xa9, 0xb6, 0x18, 0xbf, 0xe0, 0x4a,
+	0x95, 0xdc, 0x89, 0x02, 0x13, 0x8b, 0xb0, 0xbf, 0xf8, 0xd3, 0xf5, 0x91, 0xfc, 0x92, 0x44, 0xa3,
+	0x5d, 0x8a, 0x1a, 0x47, 0x4b, 0x45, 0x89, 0x97, 0xba, 0xf4, 0xbf, 0xaf, 0xb8, 0x71, 0x10, 0x42,
+	0x8d, 0x43, 0x6f, 0x26, 0x12, 0xa7, 0xbd, 0x83, 0xe1, 0x6b, 0x6e, 0x1c, 0xcc, 0x90, 0x82, 0x0f,
+	0x0c, 0x0e, 0x8a, 0x6f, 0x58, 0xc1, 0x0c, 0x2a, 0xee, 0xe9, 0x0e, 0xda, 0x54, 0xfa, 0x41, 0xa6,
+	0x53, 0x0f, 0x57, 0x5b, 0x54, 0xdf, 0x6e, 0x55, 0x0f, 0x61, 0xab, 0x06, 0x2a, 0x4e, 0xc2, 0x58,
+	0xcf, 0x11, 0xa3, 0x7e, 0xcb, 0x2e, 0xdb, 0xb2, 0xcc, 0x32, 0xcf, 0x2f, 0x85, 0x8f, 0x6d, 0x53,
+	0x33, 0xaa, 0x9e, 0x30, 0xc4, 0x9d, 0x58, 0xf7, 0xea, 0x39, 0xc0, 0x2e, 0x3b, 0xbf, 0x5d, 0x96,
+	0xbe, 0x72, 0x0c, 0x10, 0xc7, 0x61, 0xb4, 0x72, 0x06, 0xb0, 0xab, 0x1e, 0x27, 0xd5, 0x88, 0x79,
+	0x04, 0x10, 0x87, 0x61, 0x0f, 0xce, 0x73, 0x3b, 0xfe, 0x04, 0xe1, 0xc5, 0x72, 0x71, 0x14, 0x86,
+	0x78, 0x8e, 0xdb, 0xd1, 0x27, 0x09, 0x2d, 0x11, 0xc4, 0x79, 0x86, 0xdb, 0xf1, 0xa7, 0x18, 0x67,
+	0x04, 0x71, 0xf7, 0x14, 0x7e, 0xf7, 0xcc, 0x1e, 0xea, 0xc3, 0x9c, 0xbb, 0x59, 0xd8, 0x47, 0xc3,
+	0xdb, 0x4e, 0x3f, 0x4d, 0x5f, 0xce, 0x84, 0xb8, 0x03, 0xf6, 0x3a, 0x26, 0xfc, 0x59, 0x42, 0x3b,
+	0xeb, 0xc5, 0x02, 0x0c, 0x1b, 0x03, 0xdb, 0x8e, 0x3f, 0x47, 0xb8, 0x49, 0x61, 0xe8, 0x34, 0xb0,
+	0xed, 0x82, 0xe7, 0x39, 0x74, 0x22, 0x30, 0x6d, 0x3c, 0xab, 0xed, 0xf4, 0x0b, 0x9c, 0x75, 0x46,
+	0xc4, 0x1c, 0xd4, 0xca, 0xfe, 0x6b, 0xe7, 0x5f, 0x24, 0xbe, 0xcb, 0x60, 0x06, 0x8c, 0xfe, 0x6f,
+	0x57, 0xbc, 0xc4, 0x19, 0x30, 0x28, 0xdc, 0x46, 0xbd, 0x33, 0xdd, 0x6e, 0x7a, 0x99, 0xb7, 0x51,
+	0xcf, 0x48, 0xc7, 0x6a, 0x16, 0x6d, 0xd0, 0xae, 0x78, 0x85, 0xab, 0x59, 0xac, 0xc7, 0x30, 0x7a,
+	0x87, 0xa4, 0xdd, 0xf1, 0x2a, 0x87, 0xd1, 0x33, 0x23, 0xc5, 0x0a, 0xd4, 0x77, 0x0f, 0x48, 0xbb,
+	0xef, 0x35, 0xf2, 0x8d, 0xef, 0x9a, 0x8f, 0xe2, 0x3e, 0x98, 0xea, 0x3f, 0x1c, 0xed, 0xd6, 0x0b,
+	0xdb, 0x3d, 0xaf, 0x33, 0xe6, 0x6c, 0x14, 0xa7, 0xba, 0x5d, 0xd6, 0x1c, 0x8c, 0x76, 0xed, 0xc5,
+	0xed, 0x6a, 0xa3, 0x35, 0xe7, 0xa2, 0x98, 0x07, 0xe8, 0xce, 0x24, 0xbb, 0xeb, 0x12, 0xb9, 0x0c,
+	0x08, 0xb7, 0x06, 0x8d, 0x24, 0x3b, 0x7f, 0x99, 0xb7, 0x06, 0x11, 0xb8, 0x35, 0x78, 0x1a, 0xd9,
+	0xe9, 0x2b, 0xbc, 0x35, 0x18, 0x11, 0xb3, 0x30, 0x14, 0xe7, 0x61, 0x88, 0xcf, 0x56, 0xfd, 0xe6,
+	0x3e, 0xe3, 0x46, 0x86, 0x6d, 0x86, 0x7f, 0xdd, 0x21, 0x98, 0x01, 0x71, 0x18, 0xf6, 0xca, 0xa8,
+	0x29, 0xdb, 0x36, 0xf2, 0xb7, 0x1d, 0xee, 0x27, 0xb8, 0x5a, 0xcc, 0x01, 0x74, 0x5e, 0xa6, 0x31,
+	0x0a, 0x1b, 0xfb, 0xfb, 0x4e, 0xe7, 0xbd, 0xde, 0x40, 0xba, 0x82, 0xe2, 0x6d, 0xdc, 0x22, 0xd8,
+	0xaa, 0x0a, 0x8a, 0x17, 0xf0, 0x23, 0xb0, 0xef, 0xe1, 0x4c, 0xc5, 0xda, 0xf3, 0x6d, 0xf4, 0x1f,
+	0x44, 0xf3, 0x7a, 0x4c, 0x58, 0xa4, 0x52, 0xa9, 0x3d, 0x3f, 0xb3, 0xb1, 0x7f, 0x12, 0x5b, 0x02,
+	0x08, 0xb7, 0xbc, 0x4c, 0xbb, 0xdc, 0xf7, 0x5f, 0x0c, 0x33, 0x80, 0x41, 0xe3, 0xf5, 0x23, 0x72,
+	0xd3, 0xc6, 0xfe, 0xcd, 0x41, 0xd3, 0x7a, 0x71, 0x14, 0x6a, 0x78, 0x59, 0xfc, 0x0e, 0x61, 0x83,
+	0xff, 0x21, 0xb8, 0x4b, 0xe0, 0x37, 0x67, 0xba, 0xad, 0x03, 0x7b, 0xb2, 0xff, 0xa5, 0x4a, 0xf3,
+	0x7a, 0x31, 0x0f, 0xc3, 0x99, 0x6e, 0xb7, 0x73, 0x3a, 0xd1, 0x58, 0xf0, 0xff, 0x76, 0xca, 0x97,
+	0xdc, 0x92, 0x39, 0xb6, 0x08, 0x13, 0x2d, 0x15, 0xf5, 0x82, 0xc7, 0x60, 0x49, 0x2d, 0xa9, 0x95,
+	0x62, 0x17, 0x3d, 0x78, 0x9b, 0x1f, 0xe8, 0x8d, 0xbc, 0x39, 0xdd, 0x52, 0xd1, 0x0c, 0x1e, 0x35,
+	0xbb, 0xbf, 0xa0, 0x95, 0x07, 0xcf, 0xff, 0x03, 0x00, 0x00, 0xff, 0xff, 0xed, 0x5f, 0x6c, 0x20,
+	0x74, 0x13, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/gogoproto/helper.go b/vendor/github.com/gogo/protobuf/gogoproto/helper.go
new file mode 100644
index 0000000000..6b851c5623
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/gogoproto/helper.go
@@ -0,0 +1,357 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package gogoproto
+
+import google_protobuf "github.com/gogo/protobuf/protoc-gen-gogo/descriptor"
+import proto "github.com/gogo/protobuf/proto"
+
+func IsEmbed(field *google_protobuf.FieldDescriptorProto) bool {
+	return proto.GetBoolExtension(field.Options, E_Embed, false)
+}
+
+func IsNullable(field *google_protobuf.FieldDescriptorProto) bool {
+	return proto.GetBoolExtension(field.Options, E_Nullable, true)
+}
+
+func IsStdTime(field *google_protobuf.FieldDescriptorProto) bool {
+	return proto.GetBoolExtension(field.Options, E_Stdtime, false)
+}
+
+func IsStdDuration(field *google_protobuf.FieldDescriptorProto) bool {
+	return proto.GetBoolExtension(field.Options, E_Stdduration, false)
+}
+
+func NeedsNilCheck(proto3 bool, field *google_protobuf.FieldDescriptorProto) bool {
+	nullable := IsNullable(field)
+	if field.IsMessage() || IsCustomType(field) {
+		return nullable
+	}
+	if proto3 {
+		return false
+	}
+	return nullable || *field.Type == google_protobuf.FieldDescriptorProto_TYPE_BYTES
+}
+
+func IsCustomType(field *google_protobuf.FieldDescriptorProto) bool {
+	typ := GetCustomType(field)
+	if len(typ) > 0 {
+		return true
+	}
+	return false
+}
+
+func IsCastType(field *google_protobuf.FieldDescriptorProto) bool {
+	typ := GetCastType(field)
+	if len(typ) > 0 {
+		return true
+	}
+	return false
+}
+
+func IsCastKey(field *google_protobuf.FieldDescriptorProto) bool {
+	typ := GetCastKey(field)
+	if len(typ) > 0 {
+		return true
+	}
+	return false
+}
+
+func IsCastValue(field *google_protobuf.FieldDescriptorProto) bool {
+	typ := GetCastValue(field)
+	if len(typ) > 0 {
+		return true
+	}
+	return false
+}
+
+func HasEnumDecl(file *google_protobuf.FileDescriptorProto, enum *google_protobuf.EnumDescriptorProto) bool {
+	return proto.GetBoolExtension(enum.Options, E_Enumdecl, proto.GetBoolExtension(file.Options, E_EnumdeclAll, true))
+}
+
+func HasTypeDecl(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Typedecl, proto.GetBoolExtension(file.Options, E_TypedeclAll, true))
+}
+
+func GetCustomType(field *google_protobuf.FieldDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Customtype)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetCastType(field *google_protobuf.FieldDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Casttype)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetCastKey(field *google_protobuf.FieldDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Castkey)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetCastValue(field *google_protobuf.FieldDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Castvalue)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func IsCustomName(field *google_protobuf.FieldDescriptorProto) bool {
+	name := GetCustomName(field)
+	if len(name) > 0 {
+		return true
+	}
+	return false
+}
+
+func IsEnumCustomName(field *google_protobuf.EnumDescriptorProto) bool {
+	name := GetEnumCustomName(field)
+	if len(name) > 0 {
+		return true
+	}
+	return false
+}
+
+func IsEnumValueCustomName(field *google_protobuf.EnumValueDescriptorProto) bool {
+	name := GetEnumValueCustomName(field)
+	if len(name) > 0 {
+		return true
+	}
+	return false
+}
+
+func GetCustomName(field *google_protobuf.FieldDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Customname)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetEnumCustomName(field *google_protobuf.EnumDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_EnumCustomname)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetEnumValueCustomName(field *google_protobuf.EnumValueDescriptorProto) string {
+	if field == nil {
+		return ""
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_EnumvalueCustomname)
+		if err == nil && v.(*string) != nil {
+			return *(v.(*string))
+		}
+	}
+	return ""
+}
+
+func GetJsonTag(field *google_protobuf.FieldDescriptorProto) *string {
+	if field == nil {
+		return nil
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Jsontag)
+		if err == nil && v.(*string) != nil {
+			return (v.(*string))
+		}
+	}
+	return nil
+}
+
+func GetMoreTags(field *google_protobuf.FieldDescriptorProto) *string {
+	if field == nil {
+		return nil
+	}
+	if field.Options != nil {
+		v, err := proto.GetExtension(field.Options, E_Moretags)
+		if err == nil && v.(*string) != nil {
+			return (v.(*string))
+		}
+	}
+	return nil
+}
+
+type EnableFunc func(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool
+
+func EnabledGoEnumPrefix(file *google_protobuf.FileDescriptorProto, enum *google_protobuf.EnumDescriptorProto) bool {
+	return proto.GetBoolExtension(enum.Options, E_GoprotoEnumPrefix, proto.GetBoolExtension(file.Options, E_GoprotoEnumPrefixAll, true))
+}
+
+func EnabledGoStringer(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_GoprotoStringer, proto.GetBoolExtension(file.Options, E_GoprotoStringerAll, true))
+}
+
+func HasGoGetters(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_GoprotoGetters, proto.GetBoolExtension(file.Options, E_GoprotoGettersAll, true))
+}
+
+func IsUnion(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Onlyone, proto.GetBoolExtension(file.Options, E_OnlyoneAll, false))
+}
+
+func HasGoString(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Gostring, proto.GetBoolExtension(file.Options, E_GostringAll, false))
+}
+
+func HasEqual(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Equal, proto.GetBoolExtension(file.Options, E_EqualAll, false))
+}
+
+func HasVerboseEqual(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_VerboseEqual, proto.GetBoolExtension(file.Options, E_VerboseEqualAll, false))
+}
+
+func IsStringer(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Stringer, proto.GetBoolExtension(file.Options, E_StringerAll, false))
+}
+
+func IsFace(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Face, proto.GetBoolExtension(file.Options, E_FaceAll, false))
+}
+
+func HasDescription(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Description, proto.GetBoolExtension(file.Options, E_DescriptionAll, false))
+}
+
+func HasPopulate(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Populate, proto.GetBoolExtension(file.Options, E_PopulateAll, false))
+}
+
+func HasTestGen(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Testgen, proto.GetBoolExtension(file.Options, E_TestgenAll, false))
+}
+
+func HasBenchGen(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Benchgen, proto.GetBoolExtension(file.Options, E_BenchgenAll, false))
+}
+
+func IsMarshaler(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Marshaler, proto.GetBoolExtension(file.Options, E_MarshalerAll, false))
+}
+
+func IsUnmarshaler(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Unmarshaler, proto.GetBoolExtension(file.Options, E_UnmarshalerAll, false))
+}
+
+func IsStableMarshaler(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_StableMarshaler, proto.GetBoolExtension(file.Options, E_StableMarshalerAll, false))
+}
+
+func IsSizer(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Sizer, proto.GetBoolExtension(file.Options, E_SizerAll, false))
+}
+
+func IsProtoSizer(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Protosizer, proto.GetBoolExtension(file.Options, E_ProtosizerAll, false))
+}
+
+func IsGoEnumStringer(file *google_protobuf.FileDescriptorProto, enum *google_protobuf.EnumDescriptorProto) bool {
+	return proto.GetBoolExtension(enum.Options, E_GoprotoEnumStringer, proto.GetBoolExtension(file.Options, E_GoprotoEnumStringerAll, true))
+}
+
+func IsEnumStringer(file *google_protobuf.FileDescriptorProto, enum *google_protobuf.EnumDescriptorProto) bool {
+	return proto.GetBoolExtension(enum.Options, E_EnumStringer, proto.GetBoolExtension(file.Options, E_EnumStringerAll, false))
+}
+
+func IsUnsafeMarshaler(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_UnsafeMarshaler, proto.GetBoolExtension(file.Options, E_UnsafeMarshalerAll, false))
+}
+
+func IsUnsafeUnmarshaler(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_UnsafeUnmarshaler, proto.GetBoolExtension(file.Options, E_UnsafeUnmarshalerAll, false))
+}
+
+func HasExtensionsMap(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_GoprotoExtensionsMap, proto.GetBoolExtension(file.Options, E_GoprotoExtensionsMapAll, true))
+}
+
+func HasUnrecognized(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	if IsProto3(file) {
+		return false
+	}
+	return proto.GetBoolExtension(message.Options, E_GoprotoUnrecognized, proto.GetBoolExtension(file.Options, E_GoprotoUnrecognizedAll, true))
+}
+
+func IsProto3(file *google_protobuf.FileDescriptorProto) bool {
+	return file.GetSyntax() == "proto3"
+}
+
+func ImportsGoGoProto(file *google_protobuf.FileDescriptorProto) bool {
+	return proto.GetBoolExtension(file.Options, E_GogoprotoImport, true)
+}
+
+func HasCompare(file *google_protobuf.FileDescriptorProto, message *google_protobuf.DescriptorProto) bool {
+	return proto.GetBoolExtension(message.Options, E_Compare, proto.GetBoolExtension(file.Options, E_CompareAll, false))
+}
+
+func RegistersGolangProto(file *google_protobuf.FileDescriptorProto) bool {
+	return proto.GetBoolExtension(file.Options, E_GoprotoRegistration, false)
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/clone.go b/vendor/github.com/gogo/protobuf/proto/clone.go
new file mode 100644
index 0000000000..5d4cba4b51
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/clone.go
@@ -0,0 +1,234 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2011 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// Protocol buffer deep copy and merge.
+// TODO: RawMessage.
+
+package proto
+
+import (
+	"log"
+	"reflect"
+	"strings"
+)
+
+// Clone returns a deep copy of a protocol buffer.
+func Clone(pb Message) Message {
+	in := reflect.ValueOf(pb)
+	if in.IsNil() {
+		return pb
+	}
+
+	out := reflect.New(in.Type().Elem())
+	// out is empty so a merge is a deep copy.
+	mergeStruct(out.Elem(), in.Elem())
+	return out.Interface().(Message)
+}
+
+// Merge merges src into dst.
+// Required and optional fields that are set in src will be set to that value in dst.
+// Elements of repeated fields will be appended.
+// Merge panics if src and dst are not the same type, or if dst is nil.
+func Merge(dst, src Message) {
+	in := reflect.ValueOf(src)
+	out := reflect.ValueOf(dst)
+	if out.IsNil() {
+		panic("proto: nil destination")
+	}
+	if in.Type() != out.Type() {
+		// Explicit test prior to mergeStruct so that mistyped nils will fail
+		panic("proto: type mismatch")
+	}
+	if in.IsNil() {
+		// Merging nil into non-nil is a quiet no-op
+		return
+	}
+	mergeStruct(out.Elem(), in.Elem())
+}
+
+func mergeStruct(out, in reflect.Value) {
+	sprop := GetProperties(in.Type())
+	for i := 0; i < in.NumField(); i++ {
+		f := in.Type().Field(i)
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+		mergeAny(out.Field(i), in.Field(i), false, sprop.Prop[i])
+	}
+
+	if emIn, ok := in.Addr().Interface().(extensionsBytes); ok {
+		emOut := out.Addr().Interface().(extensionsBytes)
+		bIn := emIn.GetExtensions()
+		bOut := emOut.GetExtensions()
+		*bOut = append(*bOut, *bIn...)
+	} else if emIn, ok := extendable(in.Addr().Interface()); ok {
+		emOut, _ := extendable(out.Addr().Interface())
+		mIn, muIn := emIn.extensionsRead()
+		if mIn != nil {
+			mOut := emOut.extensionsWrite()
+			muIn.Lock()
+			mergeExtension(mOut, mIn)
+			muIn.Unlock()
+		}
+	}
+
+	uf := in.FieldByName("XXX_unrecognized")
+	if !uf.IsValid() {
+		return
+	}
+	uin := uf.Bytes()
+	if len(uin) > 0 {
+		out.FieldByName("XXX_unrecognized").SetBytes(append([]byte(nil), uin...))
+	}
+}
+
+// mergeAny performs a merge between two values of the same type.
+// viaPtr indicates whether the values were indirected through a pointer (implying proto2).
+// prop is set if this is a struct field (it may be nil).
+func mergeAny(out, in reflect.Value, viaPtr bool, prop *Properties) {
+	if in.Type() == protoMessageType {
+		if !in.IsNil() {
+			if out.IsNil() {
+				out.Set(reflect.ValueOf(Clone(in.Interface().(Message))))
+			} else {
+				Merge(out.Interface().(Message), in.Interface().(Message))
+			}
+		}
+		return
+	}
+	switch in.Kind() {
+	case reflect.Bool, reflect.Float32, reflect.Float64, reflect.Int32, reflect.Int64,
+		reflect.String, reflect.Uint32, reflect.Uint64:
+		if !viaPtr && isProto3Zero(in) {
+			return
+		}
+		out.Set(in)
+	case reflect.Interface:
+		// Probably a oneof field; copy non-nil values.
+		if in.IsNil() {
+			return
+		}
+		// Allocate destination if it is not set, or set to a different type.
+		// Otherwise we will merge as normal.
+		if out.IsNil() || out.Elem().Type() != in.Elem().Type() {
+			out.Set(reflect.New(in.Elem().Elem().Type())) // interface -> *T -> T -> new(T)
+		}
+		mergeAny(out.Elem(), in.Elem(), false, nil)
+	case reflect.Map:
+		if in.Len() == 0 {
+			return
+		}
+		if out.IsNil() {
+			out.Set(reflect.MakeMap(in.Type()))
+		}
+		// For maps with value types of *T or []byte we need to deep copy each value.
+		elemKind := in.Type().Elem().Kind()
+		for _, key := range in.MapKeys() {
+			var val reflect.Value
+			switch elemKind {
+			case reflect.Ptr:
+				val = reflect.New(in.Type().Elem().Elem())
+				mergeAny(val, in.MapIndex(key), false, nil)
+			case reflect.Slice:
+				val = in.MapIndex(key)
+				val = reflect.ValueOf(append([]byte{}, val.Bytes()...))
+			default:
+				val = in.MapIndex(key)
+			}
+			out.SetMapIndex(key, val)
+		}
+	case reflect.Ptr:
+		if in.IsNil() {
+			return
+		}
+		if out.IsNil() {
+			out.Set(reflect.New(in.Elem().Type()))
+		}
+		mergeAny(out.Elem(), in.Elem(), true, nil)
+	case reflect.Slice:
+		if in.IsNil() {
+			return
+		}
+		if in.Type().Elem().Kind() == reflect.Uint8 {
+			// []byte is a scalar bytes field, not a repeated field.
+
+			// Edge case: if this is in a proto3 message, a zero length
+			// bytes field is considered the zero value, and should not
+			// be merged.
+			if prop != nil && prop.proto3 && in.Len() == 0 {
+				return
+			}
+
+			// Make a deep copy.
+			// Append to []byte{} instead of []byte(nil) so that we never end up
+			// with a nil result.
+			out.SetBytes(append([]byte{}, in.Bytes()...))
+			return
+		}
+		n := in.Len()
+		if out.IsNil() {
+			out.Set(reflect.MakeSlice(in.Type(), 0, n))
+		}
+		switch in.Type().Elem().Kind() {
+		case reflect.Bool, reflect.Float32, reflect.Float64, reflect.Int32, reflect.Int64,
+			reflect.String, reflect.Uint32, reflect.Uint64:
+			out.Set(reflect.AppendSlice(out, in))
+		default:
+			for i := 0; i < n; i++ {
+				x := reflect.Indirect(reflect.New(in.Type().Elem()))
+				mergeAny(x, in.Index(i), false, nil)
+				out.Set(reflect.Append(out, x))
+			}
+		}
+	case reflect.Struct:
+		mergeStruct(out, in)
+	default:
+		// unknown type, so not a protocol buffer
+		log.Printf("proto: don't know how to copy %v", in)
+	}
+}
+
+func mergeExtension(out, in map[int32]Extension) {
+	for extNum, eIn := range in {
+		eOut := Extension{desc: eIn.desc}
+		if eIn.value != nil {
+			v := reflect.New(reflect.TypeOf(eIn.value)).Elem()
+			mergeAny(v, reflect.ValueOf(eIn.value), false, nil)
+			eOut.value = v.Interface()
+		}
+		if eIn.enc != nil {
+			eOut.enc = make([]byte, len(eIn.enc))
+			copy(eOut.enc, eIn.enc)
+		}
+
+		out[extNum] = eOut
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/decode.go b/vendor/github.com/gogo/protobuf/proto/decode.go
new file mode 100644
index 0000000000..737f2731d4
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/decode.go
@@ -0,0 +1,978 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+/*
+ * Routines for decoding protocol buffer data to construct in-memory representations.
+ */
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"os"
+	"reflect"
+)
+
+// errOverflow is returned when an integer is too large to be represented.
+var errOverflow = errors.New("proto: integer overflow")
+
+// ErrInternalBadWireType is returned by generated code when an incorrect
+// wire type is encountered. It does not get returned to user code.
+var ErrInternalBadWireType = errors.New("proto: internal error: bad wiretype for oneof")
+
+// The fundamental decoders that interpret bytes on the wire.
+// Those that take integer types all return uint64 and are
+// therefore of type valueDecoder.
+
+// DecodeVarint reads a varint-encoded integer from the slice.
+// It returns the integer and the number of bytes consumed, or
+// zero if there is not enough.
+// This is the format for the
+// int32, int64, uint32, uint64, bool, and enum
+// protocol buffer types.
+func DecodeVarint(buf []byte) (x uint64, n int) {
+	for shift := uint(0); shift < 64; shift += 7 {
+		if n >= len(buf) {
+			return 0, 0
+		}
+		b := uint64(buf[n])
+		n++
+		x |= (b & 0x7F) << shift
+		if (b & 0x80) == 0 {
+			return x, n
+		}
+	}
+
+	// The number is too large to represent in a 64-bit value.
+	return 0, 0
+}
+
+func (p *Buffer) decodeVarintSlow() (x uint64, err error) {
+	i := p.index
+	l := len(p.buf)
+
+	for shift := uint(0); shift < 64; shift += 7 {
+		if i >= l {
+			err = io.ErrUnexpectedEOF
+			return
+		}
+		b := p.buf[i]
+		i++
+		x |= (uint64(b) & 0x7F) << shift
+		if b < 0x80 {
+			p.index = i
+			return
+		}
+	}
+
+	// The number is too large to represent in a 64-bit value.
+	err = errOverflow
+	return
+}
+
+// DecodeVarint reads a varint-encoded integer from the Buffer.
+// This is the format for the
+// int32, int64, uint32, uint64, bool, and enum
+// protocol buffer types.
+func (p *Buffer) DecodeVarint() (x uint64, err error) {
+	i := p.index
+	buf := p.buf
+
+	if i >= len(buf) {
+		return 0, io.ErrUnexpectedEOF
+	} else if buf[i] < 0x80 {
+		p.index++
+		return uint64(buf[i]), nil
+	} else if len(buf)-i < 10 {
+		return p.decodeVarintSlow()
+	}
+
+	var b uint64
+	// we already checked the first byte
+	x = uint64(buf[i]) - 0x80
+	i++
+
+	b = uint64(buf[i])
+	i++
+	x += b << 7
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 7
+
+	b = uint64(buf[i])
+	i++
+	x += b << 14
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 14
+
+	b = uint64(buf[i])
+	i++
+	x += b << 21
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 21
+
+	b = uint64(buf[i])
+	i++
+	x += b << 28
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 28
+
+	b = uint64(buf[i])
+	i++
+	x += b << 35
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 35
+
+	b = uint64(buf[i])
+	i++
+	x += b << 42
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 42
+
+	b = uint64(buf[i])
+	i++
+	x += b << 49
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 49
+
+	b = uint64(buf[i])
+	i++
+	x += b << 56
+	if b&0x80 == 0 {
+		goto done
+	}
+	x -= 0x80 << 56
+
+	b = uint64(buf[i])
+	i++
+	x += b << 63
+	if b&0x80 == 0 {
+		goto done
+	}
+	// x -= 0x80 << 63 // Always zero.
+
+	return 0, errOverflow
+
+done:
+	p.index = i
+	return x, nil
+}
+
+// DecodeFixed64 reads a 64-bit integer from the Buffer.
+// This is the format for the
+// fixed64, sfixed64, and double protocol buffer types.
+func (p *Buffer) DecodeFixed64() (x uint64, err error) {
+	// x, err already 0
+	i := p.index + 8
+	if i < 0 || i > len(p.buf) {
+		err = io.ErrUnexpectedEOF
+		return
+	}
+	p.index = i
+
+	x = uint64(p.buf[i-8])
+	x |= uint64(p.buf[i-7]) << 8
+	x |= uint64(p.buf[i-6]) << 16
+	x |= uint64(p.buf[i-5]) << 24
+	x |= uint64(p.buf[i-4]) << 32
+	x |= uint64(p.buf[i-3]) << 40
+	x |= uint64(p.buf[i-2]) << 48
+	x |= uint64(p.buf[i-1]) << 56
+	return
+}
+
+// DecodeFixed32 reads a 32-bit integer from the Buffer.
+// This is the format for the
+// fixed32, sfixed32, and float protocol buffer types.
+func (p *Buffer) DecodeFixed32() (x uint64, err error) {
+	// x, err already 0
+	i := p.index + 4
+	if i < 0 || i > len(p.buf) {
+		err = io.ErrUnexpectedEOF
+		return
+	}
+	p.index = i
+
+	x = uint64(p.buf[i-4])
+	x |= uint64(p.buf[i-3]) << 8
+	x |= uint64(p.buf[i-2]) << 16
+	x |= uint64(p.buf[i-1]) << 24
+	return
+}
+
+// DecodeZigzag64 reads a zigzag-encoded 64-bit integer
+// from the Buffer.
+// This is the format used for the sint64 protocol buffer type.
+func (p *Buffer) DecodeZigzag64() (x uint64, err error) {
+	x, err = p.DecodeVarint()
+	if err != nil {
+		return
+	}
+	x = (x >> 1) ^ uint64((int64(x&1)<<63)>>63)
+	return
+}
+
+// DecodeZigzag32 reads a zigzag-encoded 32-bit integer
+// from  the Buffer.
+// This is the format used for the sint32 protocol buffer type.
+func (p *Buffer) DecodeZigzag32() (x uint64, err error) {
+	x, err = p.DecodeVarint()
+	if err != nil {
+		return
+	}
+	x = uint64((uint32(x) >> 1) ^ uint32((int32(x&1)<<31)>>31))
+	return
+}
+
+// These are not ValueDecoders: they produce an array of bytes or a string.
+// bytes, embedded messages
+
+// DecodeRawBytes reads a count-delimited byte buffer from the Buffer.
+// This is the format used for the bytes protocol buffer
+// type and for embedded messages.
+func (p *Buffer) DecodeRawBytes(alloc bool) (buf []byte, err error) {
+	n, err := p.DecodeVarint()
+	if err != nil {
+		return nil, err
+	}
+
+	nb := int(n)
+	if nb < 0 {
+		return nil, fmt.Errorf("proto: bad byte length %d", nb)
+	}
+	end := p.index + nb
+	if end < p.index || end > len(p.buf) {
+		return nil, io.ErrUnexpectedEOF
+	}
+
+	if !alloc {
+		// todo: check if can get more uses of alloc=false
+		buf = p.buf[p.index:end]
+		p.index += nb
+		return
+	}
+
+	buf = make([]byte, nb)
+	copy(buf, p.buf[p.index:])
+	p.index += nb
+	return
+}
+
+// DecodeStringBytes reads an encoded string from the Buffer.
+// This is the format used for the proto2 string type.
+func (p *Buffer) DecodeStringBytes() (s string, err error) {
+	buf, err := p.DecodeRawBytes(false)
+	if err != nil {
+		return
+	}
+	return string(buf), nil
+}
+
+// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
+// If the protocol buffer has extensions, and the field matches, add it as an extension.
+// Otherwise, if the XXX_unrecognized field exists, append the skipped data there.
+func (o *Buffer) skipAndSave(t reflect.Type, tag, wire int, base structPointer, unrecField field) error {
+	oi := o.index
+
+	err := o.skip(t, tag, wire)
+	if err != nil {
+		return err
+	}
+
+	if !unrecField.IsValid() {
+		return nil
+	}
+
+	ptr := structPointer_Bytes(base, unrecField)
+
+	// Add the skipped field to struct field
+	obuf := o.buf
+
+	o.buf = *ptr
+	o.EncodeVarint(uint64(tag<<3 | wire))
+	*ptr = append(o.buf, obuf[oi:o.index]...)
+
+	o.buf = obuf
+
+	return nil
+}
+
+// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
+func (o *Buffer) skip(t reflect.Type, tag, wire int) error {
+
+	var u uint64
+	var err error
+
+	switch wire {
+	case WireVarint:
+		_, err = o.DecodeVarint()
+	case WireFixed64:
+		_, err = o.DecodeFixed64()
+	case WireBytes:
+		_, err = o.DecodeRawBytes(false)
+	case WireFixed32:
+		_, err = o.DecodeFixed32()
+	case WireStartGroup:
+		for {
+			u, err = o.DecodeVarint()
+			if err != nil {
+				break
+			}
+			fwire := int(u & 0x7)
+			if fwire == WireEndGroup {
+				break
+			}
+			ftag := int(u >> 3)
+			err = o.skip(t, ftag, fwire)
+			if err != nil {
+				break
+			}
+		}
+	default:
+		err = fmt.Errorf("proto: can't skip unknown wire type %d for %s", wire, t)
+	}
+	return err
+}
+
+// Unmarshaler is the interface representing objects that can
+// unmarshal themselves.  The method should reset the receiver before
+// decoding starts.  The argument points to data that may be
+// overwritten, so implementations should not keep references to the
+// buffer.
+type Unmarshaler interface {
+	Unmarshal([]byte) error
+}
+
+// Unmarshal parses the protocol buffer representation in buf and places the
+// decoded result in pb.  If the struct underlying pb does not match
+// the data in buf, the results can be unpredictable.
+//
+// Unmarshal resets pb before starting to unmarshal, so any
+// existing data in pb is always removed. Use UnmarshalMerge
+// to preserve and append to existing data.
+func Unmarshal(buf []byte, pb Message) error {
+	pb.Reset()
+	return UnmarshalMerge(buf, pb)
+}
+
+// UnmarshalMerge parses the protocol buffer representation in buf and
+// writes the decoded result to pb.  If the struct underlying pb does not match
+// the data in buf, the results can be unpredictable.
+//
+// UnmarshalMerge merges into existing data in pb.
+// Most code should use Unmarshal instead.
+func UnmarshalMerge(buf []byte, pb Message) error {
+	// If the object can unmarshal itself, let it.
+	if u, ok := pb.(Unmarshaler); ok {
+		return u.Unmarshal(buf)
+	}
+	return NewBuffer(buf).Unmarshal(pb)
+}
+
+// DecodeMessage reads a count-delimited message from the Buffer.
+func (p *Buffer) DecodeMessage(pb Message) error {
+	enc, err := p.DecodeRawBytes(false)
+	if err != nil {
+		return err
+	}
+	return NewBuffer(enc).Unmarshal(pb)
+}
+
+// DecodeGroup reads a tag-delimited group from the Buffer.
+func (p *Buffer) DecodeGroup(pb Message) error {
+	typ, base, err := getbase(pb)
+	if err != nil {
+		return err
+	}
+	return p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), true, base)
+}
+
+// Unmarshal parses the protocol buffer representation in the
+// Buffer and places the decoded result in pb.  If the struct
+// underlying pb does not match the data in the buffer, the results can be
+// unpredictable.
+//
+// Unlike proto.Unmarshal, this does not reset pb before starting to unmarshal.
+func (p *Buffer) Unmarshal(pb Message) error {
+	// If the object can unmarshal itself, let it.
+	if u, ok := pb.(Unmarshaler); ok {
+		err := u.Unmarshal(p.buf[p.index:])
+		p.index = len(p.buf)
+		return err
+	}
+
+	typ, base, err := getbase(pb)
+	if err != nil {
+		return err
+	}
+
+	err = p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), false, base)
+
+	if collectStats {
+		stats.Decode++
+	}
+
+	return err
+}
+
+// unmarshalType does the work of unmarshaling a structure.
+func (o *Buffer) unmarshalType(st reflect.Type, prop *StructProperties, is_group bool, base structPointer) error {
+	var state errorState
+	required, reqFields := prop.reqCount, uint64(0)
+
+	var err error
+	for err == nil && o.index < len(o.buf) {
+		oi := o.index
+		var u uint64
+		u, err = o.DecodeVarint()
+		if err != nil {
+			break
+		}
+		wire := int(u & 0x7)
+		if wire == WireEndGroup {
+			if is_group {
+				if required > 0 {
+					// Not enough information to determine the exact field.
+					// (See below.)
+					return &RequiredNotSetError{"{Unknown}"}
+				}
+				return nil // input is satisfied
+			}
+			return fmt.Errorf("proto: %s: wiretype end group for non-group", st)
+		}
+		tag := int(u >> 3)
+		if tag <= 0 {
+			return fmt.Errorf("proto: %s: illegal tag %d (wire type %d)", st, tag, wire)
+		}
+		fieldnum, ok := prop.decoderTags.get(tag)
+		if !ok {
+			// Maybe it's an extension?
+			if prop.extendable {
+				if e, eok := structPointer_Interface(base, st).(extensionsBytes); eok {
+					if isExtensionField(e, int32(tag)) {
+						if err = o.skip(st, tag, wire); err == nil {
+							ext := e.GetExtensions()
+							*ext = append(*ext, o.buf[oi:o.index]...)
+						}
+						continue
+					}
+				} else if e, _ := extendable(structPointer_Interface(base, st)); isExtensionField(e, int32(tag)) {
+					if err = o.skip(st, tag, wire); err == nil {
+						extmap := e.extensionsWrite()
+						ext := extmap[int32(tag)] // may be missing
+						ext.enc = append(ext.enc, o.buf[oi:o.index]...)
+						extmap[int32(tag)] = ext
+					}
+					continue
+				}
+			}
+			// Maybe it's a oneof?
+			if prop.oneofUnmarshaler != nil {
+				m := structPointer_Interface(base, st).(Message)
+				// First return value indicates whether tag is a oneof field.
+				ok, err = prop.oneofUnmarshaler(m, tag, wire, o)
+				if err == ErrInternalBadWireType {
+					// Map the error to something more descriptive.
+					// Do the formatting here to save generated code space.
+					err = fmt.Errorf("bad wiretype for oneof field in %T", m)
+				}
+				if ok {
+					continue
+				}
+			}
+			err = o.skipAndSave(st, tag, wire, base, prop.unrecField)
+			continue
+		}
+		p := prop.Prop[fieldnum]
+
+		if p.dec == nil {
+			fmt.Fprintf(os.Stderr, "proto: no protobuf decoder for %s.%s\n", st, st.Field(fieldnum).Name)
+			continue
+		}
+		dec := p.dec
+		if wire != WireStartGroup && wire != p.WireType {
+			if wire == WireBytes && p.packedDec != nil {
+				// a packable field
+				dec = p.packedDec
+			} else {
+				err = fmt.Errorf("proto: bad wiretype for field %s.%s: got wiretype %d, want %d", st, st.Field(fieldnum).Name, wire, p.WireType)
+				continue
+			}
+		}
+		decErr := dec(o, p, base)
+		if decErr != nil && !state.shouldContinue(decErr, p) {
+			err = decErr
+		}
+		if err == nil && p.Required {
+			// Successfully decoded a required field.
+			if tag <= 64 {
+				// use bitmap for fields 1-64 to catch field reuse.
+				var mask uint64 = 1 << uint64(tag-1)
+				if reqFields&mask == 0 {
+					// new required field
+					reqFields |= mask
+					required--
+				}
+			} else {
+				// This is imprecise. It can be fooled by a required field
+				// with a tag > 64 that is encoded twice; that's very rare.
+				// A fully correct implementation would require allocating
+				// a data structure, which we would like to avoid.
+				required--
+			}
+		}
+	}
+	if err == nil {
+		if is_group {
+			return io.ErrUnexpectedEOF
+		}
+		if state.err != nil {
+			return state.err
+		}
+		if required > 0 {
+			// Not enough information to determine the exact field. If we use extra
+			// CPU, we could determine the field only if the missing required field
+			// has a tag <= 64 and we check reqFields.
+			return &RequiredNotSetError{"{Unknown}"}
+		}
+	}
+	return err
+}
+
+// Individual type decoders
+// For each,
+//	u is the decoded value,
+//	v is a pointer to the field (pointer) in the struct
+
+// Sizes of the pools to allocate inside the Buffer.
+// The goal is modest amortization and allocation
+// on at least 16-byte boundaries.
+const (
+	boolPoolSize   = 16
+	uint32PoolSize = 8
+	uint64PoolSize = 4
+)
+
+// Decode a bool.
+func (o *Buffer) dec_bool(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	if len(o.bools) == 0 {
+		o.bools = make([]bool, boolPoolSize)
+	}
+	o.bools[0] = u != 0
+	*structPointer_Bool(base, p.field) = &o.bools[0]
+	o.bools = o.bools[1:]
+	return nil
+}
+
+func (o *Buffer) dec_proto3_bool(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	*structPointer_BoolVal(base, p.field) = u != 0
+	return nil
+}
+
+// Decode an int32.
+func (o *Buffer) dec_int32(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	word32_Set(structPointer_Word32(base, p.field), o, uint32(u))
+	return nil
+}
+
+func (o *Buffer) dec_proto3_int32(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	word32Val_Set(structPointer_Word32Val(base, p.field), uint32(u))
+	return nil
+}
+
+// Decode an int64.
+func (o *Buffer) dec_int64(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	word64_Set(structPointer_Word64(base, p.field), o, u)
+	return nil
+}
+
+func (o *Buffer) dec_proto3_int64(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	word64Val_Set(structPointer_Word64Val(base, p.field), o, u)
+	return nil
+}
+
+// Decode a string.
+func (o *Buffer) dec_string(p *Properties, base structPointer) error {
+	s, err := o.DecodeStringBytes()
+	if err != nil {
+		return err
+	}
+	*structPointer_String(base, p.field) = &s
+	return nil
+}
+
+func (o *Buffer) dec_proto3_string(p *Properties, base structPointer) error {
+	s, err := o.DecodeStringBytes()
+	if err != nil {
+		return err
+	}
+	*structPointer_StringVal(base, p.field) = s
+	return nil
+}
+
+// Decode a slice of bytes ([]byte).
+func (o *Buffer) dec_slice_byte(p *Properties, base structPointer) error {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return err
+	}
+	*structPointer_Bytes(base, p.field) = b
+	return nil
+}
+
+// Decode a slice of bools ([]bool).
+func (o *Buffer) dec_slice_bool(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	v := structPointer_BoolSlice(base, p.field)
+	*v = append(*v, u != 0)
+	return nil
+}
+
+// Decode a slice of bools ([]bool) in packed format.
+func (o *Buffer) dec_slice_packed_bool(p *Properties, base structPointer) error {
+	v := structPointer_BoolSlice(base, p.field)
+
+	nn, err := o.DecodeVarint()
+	if err != nil {
+		return err
+	}
+	nb := int(nn) // number of bytes of encoded bools
+	fin := o.index + nb
+	if fin < o.index {
+		return errOverflow
+	}
+
+	y := *v
+	for o.index < fin {
+		u, err := p.valDec(o)
+		if err != nil {
+			return err
+		}
+		y = append(y, u != 0)
+	}
+
+	*v = y
+	return nil
+}
+
+// Decode a slice of int32s ([]int32).
+func (o *Buffer) dec_slice_int32(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+	structPointer_Word32Slice(base, p.field).Append(uint32(u))
+	return nil
+}
+
+// Decode a slice of int32s ([]int32) in packed format.
+func (o *Buffer) dec_slice_packed_int32(p *Properties, base structPointer) error {
+	v := structPointer_Word32Slice(base, p.field)
+
+	nn, err := o.DecodeVarint()
+	if err != nil {
+		return err
+	}
+	nb := int(nn) // number of bytes of encoded int32s
+
+	fin := o.index + nb
+	if fin < o.index {
+		return errOverflow
+	}
+	for o.index < fin {
+		u, err := p.valDec(o)
+		if err != nil {
+			return err
+		}
+		v.Append(uint32(u))
+	}
+	return nil
+}
+
+// Decode a slice of int64s ([]int64).
+func (o *Buffer) dec_slice_int64(p *Properties, base structPointer) error {
+	u, err := p.valDec(o)
+	if err != nil {
+		return err
+	}
+
+	structPointer_Word64Slice(base, p.field).Append(u)
+	return nil
+}
+
+// Decode a slice of int64s ([]int64) in packed format.
+func (o *Buffer) dec_slice_packed_int64(p *Properties, base structPointer) error {
+	v := structPointer_Word64Slice(base, p.field)
+
+	nn, err := o.DecodeVarint()
+	if err != nil {
+		return err
+	}
+	nb := int(nn) // number of bytes of encoded int64s
+
+	fin := o.index + nb
+	if fin < o.index {
+		return errOverflow
+	}
+	for o.index < fin {
+		u, err := p.valDec(o)
+		if err != nil {
+			return err
+		}
+		v.Append(u)
+	}
+	return nil
+}
+
+// Decode a slice of strings ([]string).
+func (o *Buffer) dec_slice_string(p *Properties, base structPointer) error {
+	s, err := o.DecodeStringBytes()
+	if err != nil {
+		return err
+	}
+	v := structPointer_StringSlice(base, p.field)
+	*v = append(*v, s)
+	return nil
+}
+
+// Decode a slice of slice of bytes ([][]byte).
+func (o *Buffer) dec_slice_slice_byte(p *Properties, base structPointer) error {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return err
+	}
+	v := structPointer_BytesSlice(base, p.field)
+	*v = append(*v, b)
+	return nil
+}
+
+// Decode a map field.
+func (o *Buffer) dec_new_map(p *Properties, base structPointer) error {
+	raw, err := o.DecodeRawBytes(false)
+	if err != nil {
+		return err
+	}
+	oi := o.index       // index at the end of this map entry
+	o.index -= len(raw) // move buffer back to start of map entry
+
+	mptr := structPointer_NewAt(base, p.field, p.mtype) // *map[K]V
+	if mptr.Elem().IsNil() {
+		mptr.Elem().Set(reflect.MakeMap(mptr.Type().Elem()))
+	}
+	v := mptr.Elem() // map[K]V
+
+	// Prepare addressable doubly-indirect placeholders for the key and value types.
+	// See enc_new_map for why.
+	keyptr := reflect.New(reflect.PtrTo(p.mtype.Key())).Elem() // addressable *K
+	keybase := toStructPointer(keyptr.Addr())                  // **K
+
+	var valbase structPointer
+	var valptr reflect.Value
+	switch p.mtype.Elem().Kind() {
+	case reflect.Slice:
+		// []byte
+		var dummy []byte
+		valptr = reflect.ValueOf(&dummy)  // *[]byte
+		valbase = toStructPointer(valptr) // *[]byte
+	case reflect.Ptr:
+		// message; valptr is **Msg; need to allocate the intermediate pointer
+		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
+		valptr.Set(reflect.New(valptr.Type().Elem()))
+		valbase = toStructPointer(valptr)
+	default:
+		// everything else
+		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
+		valbase = toStructPointer(valptr.Addr())                   // **V
+	}
+
+	// Decode.
+	// This parses a restricted wire format, namely the encoding of a message
+	// with two fields. See enc_new_map for the format.
+	for o.index < oi {
+		// tagcode for key and value properties are always a single byte
+		// because they have tags 1 and 2.
+		tagcode := o.buf[o.index]
+		o.index++
+		switch tagcode {
+		case p.mkeyprop.tagcode[0]:
+			if err := p.mkeyprop.dec(o, p.mkeyprop, keybase); err != nil {
+				return err
+			}
+		case p.mvalprop.tagcode[0]:
+			if err := p.mvalprop.dec(o, p.mvalprop, valbase); err != nil {
+				return err
+			}
+		default:
+			// TODO: Should we silently skip this instead?
+			return fmt.Errorf("proto: bad map data tag %d", raw[0])
+		}
+	}
+	keyelem, valelem := keyptr.Elem(), valptr.Elem()
+	if !keyelem.IsValid() {
+		keyelem = reflect.Zero(p.mtype.Key())
+	}
+	if !valelem.IsValid() {
+		valelem = reflect.Zero(p.mtype.Elem())
+	}
+
+	v.SetMapIndex(keyelem, valelem)
+	return nil
+}
+
+// Decode a group.
+func (o *Buffer) dec_struct_group(p *Properties, base structPointer) error {
+	bas := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(bas) {
+		// allocate new nested message
+		bas = toStructPointer(reflect.New(p.stype))
+		structPointer_SetStructPointer(base, p.field, bas)
+	}
+	return o.unmarshalType(p.stype, p.sprop, true, bas)
+}
+
+// Decode an embedded message.
+func (o *Buffer) dec_struct_message(p *Properties, base structPointer) (err error) {
+	raw, e := o.DecodeRawBytes(false)
+	if e != nil {
+		return e
+	}
+
+	bas := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(bas) {
+		// allocate new nested message
+		bas = toStructPointer(reflect.New(p.stype))
+		structPointer_SetStructPointer(base, p.field, bas)
+	}
+
+	// If the object can unmarshal itself, let it.
+	if p.isUnmarshaler {
+		iv := structPointer_Interface(bas, p.stype)
+		return iv.(Unmarshaler).Unmarshal(raw)
+	}
+
+	obuf := o.buf
+	oi := o.index
+	o.buf = raw
+	o.index = 0
+
+	err = o.unmarshalType(p.stype, p.sprop, false, bas)
+	o.buf = obuf
+	o.index = oi
+
+	return err
+}
+
+// Decode a slice of embedded messages.
+func (o *Buffer) dec_slice_struct_message(p *Properties, base structPointer) error {
+	return o.dec_slice_struct(p, false, base)
+}
+
+// Decode a slice of embedded groups.
+func (o *Buffer) dec_slice_struct_group(p *Properties, base structPointer) error {
+	return o.dec_slice_struct(p, true, base)
+}
+
+// Decode a slice of structs ([]*struct).
+func (o *Buffer) dec_slice_struct(p *Properties, is_group bool, base structPointer) error {
+	v := reflect.New(p.stype)
+	bas := toStructPointer(v)
+	structPointer_StructPointerSlice(base, p.field).Append(bas)
+
+	if is_group {
+		err := o.unmarshalType(p.stype, p.sprop, is_group, bas)
+		return err
+	}
+
+	raw, err := o.DecodeRawBytes(false)
+	if err != nil {
+		return err
+	}
+
+	// If the object can unmarshal itself, let it.
+	if p.isUnmarshaler {
+		iv := v.Interface()
+		return iv.(Unmarshaler).Unmarshal(raw)
+	}
+
+	obuf := o.buf
+	oi := o.index
+	o.buf = raw
+	o.index = 0
+
+	err = o.unmarshalType(p.stype, p.sprop, is_group, bas)
+
+	o.buf = obuf
+	o.index = oi
+
+	return err
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/decode_gogo.go b/vendor/github.com/gogo/protobuf/proto/decode_gogo.go
new file mode 100644
index 0000000000..6fb74de4cc
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/decode_gogo.go
@@ -0,0 +1,172 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"reflect"
+)
+
+// Decode a reference to a struct pointer.
+func (o *Buffer) dec_ref_struct_message(p *Properties, base structPointer) (err error) {
+	raw, e := o.DecodeRawBytes(false)
+	if e != nil {
+		return e
+	}
+
+	// If the object can unmarshal itself, let it.
+	if p.isUnmarshaler {
+		panic("not supported, since this is a pointer receiver")
+	}
+
+	obuf := o.buf
+	oi := o.index
+	o.buf = raw
+	o.index = 0
+
+	bas := structPointer_FieldPointer(base, p.field)
+
+	err = o.unmarshalType(p.stype, p.sprop, false, bas)
+	o.buf = obuf
+	o.index = oi
+
+	return err
+}
+
+// Decode a slice of references to struct pointers ([]struct).
+func (o *Buffer) dec_slice_ref_struct(p *Properties, is_group bool, base structPointer) error {
+	newBas := appendStructPointer(base, p.field, p.sstype)
+
+	if is_group {
+		panic("not supported, maybe in future, if requested.")
+	}
+
+	raw, err := o.DecodeRawBytes(false)
+	if err != nil {
+		return err
+	}
+
+	// If the object can unmarshal itself, let it.
+	if p.isUnmarshaler {
+		panic("not supported, since this is not a pointer receiver.")
+	}
+
+	obuf := o.buf
+	oi := o.index
+	o.buf = raw
+	o.index = 0
+
+	err = o.unmarshalType(p.stype, p.sprop, is_group, newBas)
+
+	o.buf = obuf
+	o.index = oi
+
+	return err
+}
+
+// Decode a slice of references to struct pointers.
+func (o *Buffer) dec_slice_ref_struct_message(p *Properties, base structPointer) error {
+	return o.dec_slice_ref_struct(p, false, base)
+}
+
+func setPtrCustomType(base structPointer, f field, v interface{}) {
+	if v == nil {
+		return
+	}
+	structPointer_SetStructPointer(base, f, toStructPointer(reflect.ValueOf(v)))
+}
+
+func setCustomType(base structPointer, f field, value interface{}) {
+	if value == nil {
+		return
+	}
+	v := reflect.ValueOf(value).Elem()
+	t := reflect.TypeOf(value).Elem()
+	kind := t.Kind()
+	switch kind {
+	case reflect.Slice:
+		slice := reflect.MakeSlice(t, v.Len(), v.Cap())
+		reflect.Copy(slice, v)
+		oldHeader := structPointer_GetSliceHeader(base, f)
+		oldHeader.Data = slice.Pointer()
+		oldHeader.Len = v.Len()
+		oldHeader.Cap = v.Cap()
+	default:
+		size := reflect.TypeOf(value).Elem().Size()
+		structPointer_Copy(toStructPointer(reflect.ValueOf(value)), structPointer_Add(base, f), int(size))
+	}
+}
+
+func (o *Buffer) dec_custom_bytes(p *Properties, base structPointer) error {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return err
+	}
+	i := reflect.New(p.ctype.Elem()).Interface()
+	custom := (i).(Unmarshaler)
+	if err := custom.Unmarshal(b); err != nil {
+		return err
+	}
+	setPtrCustomType(base, p.field, custom)
+	return nil
+}
+
+func (o *Buffer) dec_custom_ref_bytes(p *Properties, base structPointer) error {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return err
+	}
+	i := reflect.New(p.ctype).Interface()
+	custom := (i).(Unmarshaler)
+	if err := custom.Unmarshal(b); err != nil {
+		return err
+	}
+	if custom != nil {
+		setCustomType(base, p.field, custom)
+	}
+	return nil
+}
+
+// Decode a slice of bytes ([]byte) into a slice of custom types.
+func (o *Buffer) dec_custom_slice_bytes(p *Properties, base structPointer) error {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return err
+	}
+	i := reflect.New(p.ctype.Elem()).Interface()
+	custom := (i).(Unmarshaler)
+	if err := custom.Unmarshal(b); err != nil {
+		return err
+	}
+	newBas := appendStructPointer(base, p.field, p.ctype)
+
+	var zero field
+	setCustomType(newBas, zero, custom)
+
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/discard.go b/vendor/github.com/gogo/protobuf/proto/discard.go
new file mode 100644
index 0000000000..bd0e3bb4c8
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/discard.go
@@ -0,0 +1,151 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2017 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+// DiscardUnknown recursively discards all unknown fields from this message
+// and all embedded messages.
+//
+// When unmarshaling a message with unrecognized fields, the tags and values
+// of such fields are preserved in the Message. This allows a later call to
+// marshal to be able to produce a message that continues to have those
+// unrecognized fields. To avoid this, DiscardUnknown is used to
+// explicitly clear the unknown fields after unmarshaling.
+//
+// For proto2 messages, the unknown fields of message extensions are only
+// discarded from messages that have been accessed via GetExtension.
+func DiscardUnknown(m Message) {
+	discardLegacy(m)
+}
+
+func discardLegacy(m Message) {
+	v := reflect.ValueOf(m)
+	if v.Kind() != reflect.Ptr || v.IsNil() {
+		return
+	}
+	v = v.Elem()
+	if v.Kind() != reflect.Struct {
+		return
+	}
+	t := v.Type()
+
+	for i := 0; i < v.NumField(); i++ {
+		f := t.Field(i)
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+		vf := v.Field(i)
+		tf := f.Type
+
+		// Unwrap tf to get its most basic type.
+		var isPointer, isSlice bool
+		if tf.Kind() == reflect.Slice && tf.Elem().Kind() != reflect.Uint8 {
+			isSlice = true
+			tf = tf.Elem()
+		}
+		if tf.Kind() == reflect.Ptr {
+			isPointer = true
+			tf = tf.Elem()
+		}
+		if isPointer && isSlice && tf.Kind() != reflect.Struct {
+			panic(fmt.Sprintf("%T.%s cannot be a slice of pointers to primitive types", m, f.Name))
+		}
+
+		switch tf.Kind() {
+		case reflect.Struct:
+			switch {
+			case !isPointer:
+				panic(fmt.Sprintf("%T.%s cannot be a direct struct value", m, f.Name))
+			case isSlice: // E.g., []*pb.T
+				for j := 0; j < vf.Len(); j++ {
+					discardLegacy(vf.Index(j).Interface().(Message))
+				}
+			default: // E.g., *pb.T
+				discardLegacy(vf.Interface().(Message))
+			}
+		case reflect.Map:
+			switch {
+			case isPointer || isSlice:
+				panic(fmt.Sprintf("%T.%s cannot be a pointer to a map or a slice of map values", m, f.Name))
+			default: // E.g., map[K]V
+				tv := vf.Type().Elem()
+				if tv.Kind() == reflect.Ptr && tv.Implements(protoMessageType) { // Proto struct (e.g., *T)
+					for _, key := range vf.MapKeys() {
+						val := vf.MapIndex(key)
+						discardLegacy(val.Interface().(Message))
+					}
+				}
+			}
+		case reflect.Interface:
+			// Must be oneof field.
+			switch {
+			case isPointer || isSlice:
+				panic(fmt.Sprintf("%T.%s cannot be a pointer to a interface or a slice of interface values", m, f.Name))
+			default: // E.g., test_proto.isCommunique_Union interface
+				if !vf.IsNil() && f.Tag.Get("protobuf_oneof") != "" {
+					vf = vf.Elem() // E.g., *test_proto.Communique_Msg
+					if !vf.IsNil() {
+						vf = vf.Elem()   // E.g., test_proto.Communique_Msg
+						vf = vf.Field(0) // E.g., Proto struct (e.g., *T) or primitive value
+						if vf.Kind() == reflect.Ptr {
+							discardLegacy(vf.Interface().(Message))
+						}
+					}
+				}
+			}
+		}
+	}
+
+	if vf := v.FieldByName("XXX_unrecognized"); vf.IsValid() {
+		if vf.Type() != reflect.TypeOf([]byte{}) {
+			panic("expected XXX_unrecognized to be of type []byte")
+		}
+		vf.Set(reflect.ValueOf([]byte(nil)))
+	}
+
+	// For proto2 messages, only discard unknown fields in message extensions
+	// that have been accessed via GetExtension.
+	if em, ok := extendable(m); ok {
+		// Ignore lock since discardLegacy is not concurrency safe.
+		emm, _ := em.extensionsRead()
+		for _, mx := range emm {
+			if m, ok := mx.value.(Message); ok {
+				discardLegacy(m)
+			}
+		}
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/duration.go b/vendor/github.com/gogo/protobuf/proto/duration.go
new file mode 100644
index 0000000000..93464c91cf
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/duration.go
@@ -0,0 +1,100 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+// This file implements conversions between google.protobuf.Duration
+// and time.Duration.
+
+import (
+	"errors"
+	"fmt"
+	"time"
+)
+
+const (
+	// Range of a Duration in seconds, as specified in
+	// google/protobuf/duration.proto. This is about 10,000 years in seconds.
+	maxSeconds = int64(10000 * 365.25 * 24 * 60 * 60)
+	minSeconds = -maxSeconds
+)
+
+// validateDuration determines whether the Duration is valid according to the
+// definition in google/protobuf/duration.proto. A valid Duration
+// may still be too large to fit into a time.Duration (the range of Duration
+// is about 10,000 years, and the range of time.Duration is about 290).
+func validateDuration(d *duration) error {
+	if d == nil {
+		return errors.New("duration: nil Duration")
+	}
+	if d.Seconds < minSeconds || d.Seconds > maxSeconds {
+		return fmt.Errorf("duration: %#v: seconds out of range", d)
+	}
+	if d.Nanos <= -1e9 || d.Nanos >= 1e9 {
+		return fmt.Errorf("duration: %#v: nanos out of range", d)
+	}
+	// Seconds and Nanos must have the same sign, unless d.Nanos is zero.
+	if (d.Seconds < 0 && d.Nanos > 0) || (d.Seconds > 0 && d.Nanos < 0) {
+		return fmt.Errorf("duration: %#v: seconds and nanos have different signs", d)
+	}
+	return nil
+}
+
+// DurationFromProto converts a Duration to a time.Duration. DurationFromProto
+// returns an error if the Duration is invalid or is too large to be
+// represented in a time.Duration.
+func durationFromProto(p *duration) (time.Duration, error) {
+	if err := validateDuration(p); err != nil {
+		return 0, err
+	}
+	d := time.Duration(p.Seconds) * time.Second
+	if int64(d/time.Second) != p.Seconds {
+		return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
+	}
+	if p.Nanos != 0 {
+		d += time.Duration(p.Nanos)
+		if (d < 0) != (p.Nanos < 0) {
+			return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
+		}
+	}
+	return d, nil
+}
+
+// DurationProto converts a time.Duration to a Duration.
+func durationProto(d time.Duration) *duration {
+	nanos := d.Nanoseconds()
+	secs := nanos / 1e9
+	nanos -= secs * 1e9
+	return &duration{
+		Seconds: secs,
+		Nanos:   int32(nanos),
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/duration_gogo.go b/vendor/github.com/gogo/protobuf/proto/duration_gogo.go
new file mode 100644
index 0000000000..18e2a5f776
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/duration_gogo.go
@@ -0,0 +1,203 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2016, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"reflect"
+	"time"
+)
+
+var durationType = reflect.TypeOf((*time.Duration)(nil)).Elem()
+
+type duration struct {
+	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
+	Nanos   int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
+}
+
+func (m *duration) Reset()       { *m = duration{} }
+func (*duration) ProtoMessage()  {}
+func (*duration) String() string { return "duration<string>" }
+
+func init() {
+	RegisterType((*duration)(nil), "gogo.protobuf.proto.duration")
+}
+
+func (o *Buffer) decDuration() (time.Duration, error) {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return 0, err
+	}
+	dproto := &duration{}
+	if err := Unmarshal(b, dproto); err != nil {
+		return 0, err
+	}
+	return durationFromProto(dproto)
+}
+
+func (o *Buffer) dec_duration(p *Properties, base structPointer) error {
+	d, err := o.decDuration()
+	if err != nil {
+		return err
+	}
+	word64_Set(structPointer_Word64(base, p.field), o, uint64(d))
+	return nil
+}
+
+func (o *Buffer) dec_ref_duration(p *Properties, base structPointer) error {
+	d, err := o.decDuration()
+	if err != nil {
+		return err
+	}
+	word64Val_Set(structPointer_Word64Val(base, p.field), o, uint64(d))
+	return nil
+}
+
+func (o *Buffer) dec_slice_duration(p *Properties, base structPointer) error {
+	d, err := o.decDuration()
+	if err != nil {
+		return err
+	}
+	newBas := appendStructPointer(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType)))
+	var zero field
+	setPtrCustomType(newBas, zero, &d)
+	return nil
+}
+
+func (o *Buffer) dec_slice_ref_duration(p *Properties, base structPointer) error {
+	d, err := o.decDuration()
+	if err != nil {
+		return err
+	}
+	structPointer_Word64Slice(base, p.field).Append(uint64(d))
+	return nil
+}
+
+func size_duration(p *Properties, base structPointer) (n int) {
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return 0
+	}
+	dur := structPointer_Interface(structp, durationType).(*time.Duration)
+	d := durationProto(*dur)
+	size := Size(d)
+	return size + sizeVarint(uint64(size)) + len(p.tagcode)
+}
+
+func (o *Buffer) enc_duration(p *Properties, base structPointer) error {
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return ErrNil
+	}
+	dur := structPointer_Interface(structp, durationType).(*time.Duration)
+	d := durationProto(*dur)
+	data, err := Marshal(d)
+	if err != nil {
+		return err
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_ref_duration(p *Properties, base structPointer) (n int) {
+	dur := structPointer_InterfaceAt(base, p.field, durationType).(*time.Duration)
+	d := durationProto(*dur)
+	size := Size(d)
+	return size + sizeVarint(uint64(size)) + len(p.tagcode)
+}
+
+func (o *Buffer) enc_ref_duration(p *Properties, base structPointer) error {
+	dur := structPointer_InterfaceAt(base, p.field, durationType).(*time.Duration)
+	d := durationProto(*dur)
+	data, err := Marshal(d)
+	if err != nil {
+		return err
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_slice_duration(p *Properties, base structPointer) (n int) {
+	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType))).(*[]*time.Duration)
+	durs := *pdurs
+	for i := 0; i < len(durs); i++ {
+		if durs[i] == nil {
+			return 0
+		}
+		dproto := durationProto(*durs[i])
+		size := Size(dproto)
+		n += len(p.tagcode) + size + sizeVarint(uint64(size))
+	}
+	return n
+}
+
+func (o *Buffer) enc_slice_duration(p *Properties, base structPointer) error {
+	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(durationType))).(*[]*time.Duration)
+	durs := *pdurs
+	for i := 0; i < len(durs); i++ {
+		if durs[i] == nil {
+			return errRepeatedHasNil
+		}
+		dproto := durationProto(*durs[i])
+		data, err := Marshal(dproto)
+		if err != nil {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+	}
+	return nil
+}
+
+func size_slice_ref_duration(p *Properties, base structPointer) (n int) {
+	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(durationType)).(*[]time.Duration)
+	durs := *pdurs
+	for i := 0; i < len(durs); i++ {
+		dproto := durationProto(durs[i])
+		size := Size(dproto)
+		n += len(p.tagcode) + size + sizeVarint(uint64(size))
+	}
+	return n
+}
+
+func (o *Buffer) enc_slice_ref_duration(p *Properties, base structPointer) error {
+	pdurs := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(durationType)).(*[]time.Duration)
+	durs := *pdurs
+	for i := 0; i < len(durs); i++ {
+		dproto := durationProto(durs[i])
+		data, err := Marshal(dproto)
+		if err != nil {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+	}
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/encode.go b/vendor/github.com/gogo/protobuf/proto/encode.go
new file mode 100644
index 0000000000..8b84d1b22d
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/encode.go
@@ -0,0 +1,1362 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+/*
+ * Routines for encoding data into the wire format for protocol buffers.
+ */
+
+import (
+	"errors"
+	"fmt"
+	"reflect"
+	"sort"
+)
+
+// RequiredNotSetError is the error returned if Marshal is called with
+// a protocol buffer struct whose required fields have not
+// all been initialized. It is also the error returned if Unmarshal is
+// called with an encoded protocol buffer that does not include all the
+// required fields.
+//
+// When printed, RequiredNotSetError reports the first unset required field in a
+// message. If the field cannot be precisely determined, it is reported as
+// "{Unknown}".
+type RequiredNotSetError struct {
+	field string
+}
+
+func (e *RequiredNotSetError) Error() string {
+	return fmt.Sprintf("proto: required field %q not set", e.field)
+}
+
+var (
+	// errRepeatedHasNil is the error returned if Marshal is called with
+	// a struct with a repeated field containing a nil element.
+	errRepeatedHasNil = errors.New("proto: repeated field has nil element")
+
+	// errOneofHasNil is the error returned if Marshal is called with
+	// a struct with a oneof field containing a nil element.
+	errOneofHasNil = errors.New("proto: oneof field has nil value")
+
+	// ErrNil is the error returned if Marshal is called with nil.
+	ErrNil = errors.New("proto: Marshal called with nil")
+
+	// ErrTooLarge is the error returned if Marshal is called with a
+	// message that encodes to >2GB.
+	ErrTooLarge = errors.New("proto: message encodes to over 2 GB")
+)
+
+// The fundamental encoders that put bytes on the wire.
+// Those that take integer types all accept uint64 and are
+// therefore of type valueEncoder.
+
+const maxVarintBytes = 10 // maximum length of a varint
+
+// maxMarshalSize is the largest allowed size of an encoded protobuf,
+// since C++ and Java use signed int32s for the size.
+const maxMarshalSize = 1<<31 - 1
+
+// EncodeVarint returns the varint encoding of x.
+// This is the format for the
+// int32, int64, uint32, uint64, bool, and enum
+// protocol buffer types.
+// Not used by the package itself, but helpful to clients
+// wishing to use the same encoding.
+func EncodeVarint(x uint64) []byte {
+	var buf [maxVarintBytes]byte
+	var n int
+	for n = 0; x > 127; n++ {
+		buf[n] = 0x80 | uint8(x&0x7F)
+		x >>= 7
+	}
+	buf[n] = uint8(x)
+	n++
+	return buf[0:n]
+}
+
+// EncodeVarint writes a varint-encoded integer to the Buffer.
+// This is the format for the
+// int32, int64, uint32, uint64, bool, and enum
+// protocol buffer types.
+func (p *Buffer) EncodeVarint(x uint64) error {
+	for x >= 1<<7 {
+		p.buf = append(p.buf, uint8(x&0x7f|0x80))
+		x >>= 7
+	}
+	p.buf = append(p.buf, uint8(x))
+	return nil
+}
+
+// SizeVarint returns the varint encoding size of an integer.
+func SizeVarint(x uint64) int {
+	return sizeVarint(x)
+}
+
+func sizeVarint(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+
+// EncodeFixed64 writes a 64-bit integer to the Buffer.
+// This is the format for the
+// fixed64, sfixed64, and double protocol buffer types.
+func (p *Buffer) EncodeFixed64(x uint64) error {
+	p.buf = append(p.buf,
+		uint8(x),
+		uint8(x>>8),
+		uint8(x>>16),
+		uint8(x>>24),
+		uint8(x>>32),
+		uint8(x>>40),
+		uint8(x>>48),
+		uint8(x>>56))
+	return nil
+}
+
+func sizeFixed64(x uint64) int {
+	return 8
+}
+
+// EncodeFixed32 writes a 32-bit integer to the Buffer.
+// This is the format for the
+// fixed32, sfixed32, and float protocol buffer types.
+func (p *Buffer) EncodeFixed32(x uint64) error {
+	p.buf = append(p.buf,
+		uint8(x),
+		uint8(x>>8),
+		uint8(x>>16),
+		uint8(x>>24))
+	return nil
+}
+
+func sizeFixed32(x uint64) int {
+	return 4
+}
+
+// EncodeZigzag64 writes a zigzag-encoded 64-bit integer
+// to the Buffer.
+// This is the format used for the sint64 protocol buffer type.
+func (p *Buffer) EncodeZigzag64(x uint64) error {
+	// use signed number to get arithmetic right shift.
+	return p.EncodeVarint((x << 1) ^ uint64((int64(x) >> 63)))
+}
+
+func sizeZigzag64(x uint64) int {
+	return sizeVarint((x << 1) ^ uint64((int64(x) >> 63)))
+}
+
+// EncodeZigzag32 writes a zigzag-encoded 32-bit integer
+// to the Buffer.
+// This is the format used for the sint32 protocol buffer type.
+func (p *Buffer) EncodeZigzag32(x uint64) error {
+	// use signed number to get arithmetic right shift.
+	return p.EncodeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
+}
+
+func sizeZigzag32(x uint64) int {
+	return sizeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
+}
+
+// EncodeRawBytes writes a count-delimited byte buffer to the Buffer.
+// This is the format used for the bytes protocol buffer
+// type and for embedded messages.
+func (p *Buffer) EncodeRawBytes(b []byte) error {
+	p.EncodeVarint(uint64(len(b)))
+	p.buf = append(p.buf, b...)
+	return nil
+}
+
+func sizeRawBytes(b []byte) int {
+	return sizeVarint(uint64(len(b))) +
+		len(b)
+}
+
+// EncodeStringBytes writes an encoded string to the Buffer.
+// This is the format used for the proto2 string type.
+func (p *Buffer) EncodeStringBytes(s string) error {
+	p.EncodeVarint(uint64(len(s)))
+	p.buf = append(p.buf, s...)
+	return nil
+}
+
+func sizeStringBytes(s string) int {
+	return sizeVarint(uint64(len(s))) +
+		len(s)
+}
+
+// Marshaler is the interface representing objects that can marshal themselves.
+type Marshaler interface {
+	Marshal() ([]byte, error)
+}
+
+// Marshal takes the protocol buffer
+// and encodes it into the wire format, returning the data.
+func Marshal(pb Message) ([]byte, error) {
+	// Can the object marshal itself?
+	if m, ok := pb.(Marshaler); ok {
+		return m.Marshal()
+	}
+	p := NewBuffer(nil)
+	err := p.Marshal(pb)
+	if p.buf == nil && err == nil {
+		// Return a non-nil slice on success.
+		return []byte{}, nil
+	}
+	return p.buf, err
+}
+
+// EncodeMessage writes the protocol buffer to the Buffer,
+// prefixed by a varint-encoded length.
+func (p *Buffer) EncodeMessage(pb Message) error {
+	t, base, err := getbase(pb)
+	if structPointer_IsNil(base) {
+		return ErrNil
+	}
+	if err == nil {
+		var state errorState
+		err = p.enc_len_struct(GetProperties(t.Elem()), base, &state)
+	}
+	return err
+}
+
+// Marshal takes the protocol buffer
+// and encodes it into the wire format, writing the result to the
+// Buffer.
+func (p *Buffer) Marshal(pb Message) error {
+	// Can the object marshal itself?
+	if m, ok := pb.(Marshaler); ok {
+		data, err := m.Marshal()
+		p.buf = append(p.buf, data...)
+		return err
+	}
+
+	t, base, err := getbase(pb)
+	if structPointer_IsNil(base) {
+		return ErrNil
+	}
+	if err == nil {
+		err = p.enc_struct(GetProperties(t.Elem()), base)
+	}
+
+	if collectStats {
+		(stats).Encode++ // Parens are to work around a goimports bug.
+	}
+
+	if len(p.buf) > maxMarshalSize {
+		return ErrTooLarge
+	}
+	return err
+}
+
+// Size returns the encoded size of a protocol buffer.
+func Size(pb Message) (n int) {
+	// Can the object marshal itself?  If so, Size is slow.
+	// TODO: add Size to Marshaler, or add a Sizer interface.
+	if m, ok := pb.(Marshaler); ok {
+		b, _ := m.Marshal()
+		return len(b)
+	}
+
+	t, base, err := getbase(pb)
+	if structPointer_IsNil(base) {
+		return 0
+	}
+	if err == nil {
+		n = size_struct(GetProperties(t.Elem()), base)
+	}
+
+	if collectStats {
+		(stats).Size++ // Parens are to work around a goimports bug.
+	}
+
+	return
+}
+
+// Individual type encoders.
+
+// Encode a bool.
+func (o *Buffer) enc_bool(p *Properties, base structPointer) error {
+	v := *structPointer_Bool(base, p.field)
+	if v == nil {
+		return ErrNil
+	}
+	x := 0
+	if *v {
+		x = 1
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func (o *Buffer) enc_proto3_bool(p *Properties, base structPointer) error {
+	v := *structPointer_BoolVal(base, p.field)
+	if !v {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, 1)
+	return nil
+}
+
+func size_bool(p *Properties, base structPointer) int {
+	v := *structPointer_Bool(base, p.field)
+	if v == nil {
+		return 0
+	}
+	return len(p.tagcode) + 1 // each bool takes exactly one byte
+}
+
+func size_proto3_bool(p *Properties, base structPointer) int {
+	v := *structPointer_BoolVal(base, p.field)
+	if !v && !p.oneof {
+		return 0
+	}
+	return len(p.tagcode) + 1 // each bool takes exactly one byte
+}
+
+// Encode an int32.
+func (o *Buffer) enc_int32(p *Properties, base structPointer) error {
+	v := structPointer_Word32(base, p.field)
+	if word32_IsNil(v) {
+		return ErrNil
+	}
+	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func (o *Buffer) enc_proto3_int32(p *Properties, base structPointer) error {
+	v := structPointer_Word32Val(base, p.field)
+	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
+	if x == 0 {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func size_int32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32(base, p.field)
+	if word32_IsNil(v) {
+		return 0
+	}
+	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+func size_proto3_int32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32Val(base, p.field)
+	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
+	if x == 0 && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+// Encode a uint32.
+// Exactly the same as int32, except for no sign extension.
+func (o *Buffer) enc_uint32(p *Properties, base structPointer) error {
+	v := structPointer_Word32(base, p.field)
+	if word32_IsNil(v) {
+		return ErrNil
+	}
+	x := word32_Get(v)
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func (o *Buffer) enc_proto3_uint32(p *Properties, base structPointer) error {
+	v := structPointer_Word32Val(base, p.field)
+	x := word32Val_Get(v)
+	if x == 0 {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func size_uint32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32(base, p.field)
+	if word32_IsNil(v) {
+		return 0
+	}
+	x := word32_Get(v)
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+func size_proto3_uint32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32Val(base, p.field)
+	x := word32Val_Get(v)
+	if x == 0 && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+// Encode an int64.
+func (o *Buffer) enc_int64(p *Properties, base structPointer) error {
+	v := structPointer_Word64(base, p.field)
+	if word64_IsNil(v) {
+		return ErrNil
+	}
+	x := word64_Get(v)
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, x)
+	return nil
+}
+
+func (o *Buffer) enc_proto3_int64(p *Properties, base structPointer) error {
+	v := structPointer_Word64Val(base, p.field)
+	x := word64Val_Get(v)
+	if x == 0 {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, x)
+	return nil
+}
+
+func size_int64(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word64(base, p.field)
+	if word64_IsNil(v) {
+		return 0
+	}
+	x := word64_Get(v)
+	n += len(p.tagcode)
+	n += p.valSize(x)
+	return
+}
+
+func size_proto3_int64(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word64Val(base, p.field)
+	x := word64Val_Get(v)
+	if x == 0 && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += p.valSize(x)
+	return
+}
+
+// Encode a string.
+func (o *Buffer) enc_string(p *Properties, base structPointer) error {
+	v := *structPointer_String(base, p.field)
+	if v == nil {
+		return ErrNil
+	}
+	x := *v
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeStringBytes(x)
+	return nil
+}
+
+func (o *Buffer) enc_proto3_string(p *Properties, base structPointer) error {
+	v := *structPointer_StringVal(base, p.field)
+	if v == "" {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeStringBytes(v)
+	return nil
+}
+
+func size_string(p *Properties, base structPointer) (n int) {
+	v := *structPointer_String(base, p.field)
+	if v == nil {
+		return 0
+	}
+	x := *v
+	n += len(p.tagcode)
+	n += sizeStringBytes(x)
+	return
+}
+
+func size_proto3_string(p *Properties, base structPointer) (n int) {
+	v := *structPointer_StringVal(base, p.field)
+	if v == "" && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += sizeStringBytes(v)
+	return
+}
+
+// All protocol buffer fields are nillable, but be careful.
+func isNil(v reflect.Value) bool {
+	switch v.Kind() {
+	case reflect.Interface, reflect.Map, reflect.Ptr, reflect.Slice:
+		return v.IsNil()
+	}
+	return false
+}
+
+// Encode a message struct.
+func (o *Buffer) enc_struct_message(p *Properties, base structPointer) error {
+	var state errorState
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return ErrNil
+	}
+
+	// Can the object marshal itself?
+	if p.isMarshaler {
+		m := structPointer_Interface(structp, p.stype).(Marshaler)
+		data, err := m.Marshal()
+		if err != nil && !state.shouldContinue(err, nil) {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+		return state.err
+	}
+
+	o.buf = append(o.buf, p.tagcode...)
+	return o.enc_len_struct(p.sprop, structp, &state)
+}
+
+func size_struct_message(p *Properties, base structPointer) int {
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return 0
+	}
+
+	// Can the object marshal itself?
+	if p.isMarshaler {
+		m := structPointer_Interface(structp, p.stype).(Marshaler)
+		data, _ := m.Marshal()
+		n0 := len(p.tagcode)
+		n1 := sizeRawBytes(data)
+		return n0 + n1
+	}
+
+	n0 := len(p.tagcode)
+	n1 := size_struct(p.sprop, structp)
+	n2 := sizeVarint(uint64(n1)) // size of encoded length
+	return n0 + n1 + n2
+}
+
+// Encode a group struct.
+func (o *Buffer) enc_struct_group(p *Properties, base structPointer) error {
+	var state errorState
+	b := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(b) {
+		return ErrNil
+	}
+
+	o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
+	err := o.enc_struct(p.sprop, b)
+	if err != nil && !state.shouldContinue(err, nil) {
+		return err
+	}
+	o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
+	return state.err
+}
+
+func size_struct_group(p *Properties, base structPointer) (n int) {
+	b := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(b) {
+		return 0
+	}
+
+	n += sizeVarint(uint64((p.Tag << 3) | WireStartGroup))
+	n += size_struct(p.sprop, b)
+	n += sizeVarint(uint64((p.Tag << 3) | WireEndGroup))
+	return
+}
+
+// Encode a slice of bools ([]bool).
+func (o *Buffer) enc_slice_bool(p *Properties, base structPointer) error {
+	s := *structPointer_BoolSlice(base, p.field)
+	l := len(s)
+	if l == 0 {
+		return ErrNil
+	}
+	for _, x := range s {
+		o.buf = append(o.buf, p.tagcode...)
+		v := uint64(0)
+		if x {
+			v = 1
+		}
+		p.valEnc(o, v)
+	}
+	return nil
+}
+
+func size_slice_bool(p *Properties, base structPointer) int {
+	s := *structPointer_BoolSlice(base, p.field)
+	l := len(s)
+	if l == 0 {
+		return 0
+	}
+	return l * (len(p.tagcode) + 1) // each bool takes exactly one byte
+}
+
+// Encode a slice of bools ([]bool) in packed format.
+func (o *Buffer) enc_slice_packed_bool(p *Properties, base structPointer) error {
+	s := *structPointer_BoolSlice(base, p.field)
+	l := len(s)
+	if l == 0 {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeVarint(uint64(l)) // each bool takes exactly one byte
+	for _, x := range s {
+		v := uint64(0)
+		if x {
+			v = 1
+		}
+		p.valEnc(o, v)
+	}
+	return nil
+}
+
+func size_slice_packed_bool(p *Properties, base structPointer) (n int) {
+	s := *structPointer_BoolSlice(base, p.field)
+	l := len(s)
+	if l == 0 {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += sizeVarint(uint64(l))
+	n += l // each bool takes exactly one byte
+	return
+}
+
+// Encode a slice of bytes ([]byte).
+func (o *Buffer) enc_slice_byte(p *Properties, base structPointer) error {
+	s := *structPointer_Bytes(base, p.field)
+	if s == nil {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(s)
+	return nil
+}
+
+func (o *Buffer) enc_proto3_slice_byte(p *Properties, base structPointer) error {
+	s := *structPointer_Bytes(base, p.field)
+	if len(s) == 0 {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(s)
+	return nil
+}
+
+func size_slice_byte(p *Properties, base structPointer) (n int) {
+	s := *structPointer_Bytes(base, p.field)
+	if s == nil && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += sizeRawBytes(s)
+	return
+}
+
+func size_proto3_slice_byte(p *Properties, base structPointer) (n int) {
+	s := *structPointer_Bytes(base, p.field)
+	if len(s) == 0 && !p.oneof {
+		return 0
+	}
+	n += len(p.tagcode)
+	n += sizeRawBytes(s)
+	return
+}
+
+// Encode a slice of int32s ([]int32).
+func (o *Buffer) enc_slice_int32(p *Properties, base structPointer) error {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	for i := 0; i < l; i++ {
+		o.buf = append(o.buf, p.tagcode...)
+		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
+		p.valEnc(o, uint64(x))
+	}
+	return nil
+}
+
+func size_slice_int32(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	for i := 0; i < l; i++ {
+		n += len(p.tagcode)
+		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
+		n += p.valSize(uint64(x))
+	}
+	return
+}
+
+// Encode a slice of int32s ([]int32) in packed format.
+func (o *Buffer) enc_slice_packed_int32(p *Properties, base structPointer) error {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	// TODO: Reuse a Buffer.
+	buf := NewBuffer(nil)
+	for i := 0; i < l; i++ {
+		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
+		p.valEnc(buf, uint64(x))
+	}
+
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeVarint(uint64(len(buf.buf)))
+	o.buf = append(o.buf, buf.buf...)
+	return nil
+}
+
+func size_slice_packed_int32(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	var bufSize int
+	for i := 0; i < l; i++ {
+		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
+		bufSize += p.valSize(uint64(x))
+	}
+
+	n += len(p.tagcode)
+	n += sizeVarint(uint64(bufSize))
+	n += bufSize
+	return
+}
+
+// Encode a slice of uint32s ([]uint32).
+// Exactly the same as int32, except for no sign extension.
+func (o *Buffer) enc_slice_uint32(p *Properties, base structPointer) error {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	for i := 0; i < l; i++ {
+		o.buf = append(o.buf, p.tagcode...)
+		x := s.Index(i)
+		p.valEnc(o, uint64(x))
+	}
+	return nil
+}
+
+func size_slice_uint32(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	for i := 0; i < l; i++ {
+		n += len(p.tagcode)
+		x := s.Index(i)
+		n += p.valSize(uint64(x))
+	}
+	return
+}
+
+// Encode a slice of uint32s ([]uint32) in packed format.
+// Exactly the same as int32, except for no sign extension.
+func (o *Buffer) enc_slice_packed_uint32(p *Properties, base structPointer) error {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	// TODO: Reuse a Buffer.
+	buf := NewBuffer(nil)
+	for i := 0; i < l; i++ {
+		p.valEnc(buf, uint64(s.Index(i)))
+	}
+
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeVarint(uint64(len(buf.buf)))
+	o.buf = append(o.buf, buf.buf...)
+	return nil
+}
+
+func size_slice_packed_uint32(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word32Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	var bufSize int
+	for i := 0; i < l; i++ {
+		bufSize += p.valSize(uint64(s.Index(i)))
+	}
+
+	n += len(p.tagcode)
+	n += sizeVarint(uint64(bufSize))
+	n += bufSize
+	return
+}
+
+// Encode a slice of int64s ([]int64).
+func (o *Buffer) enc_slice_int64(p *Properties, base structPointer) error {
+	s := structPointer_Word64Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	for i := 0; i < l; i++ {
+		o.buf = append(o.buf, p.tagcode...)
+		p.valEnc(o, s.Index(i))
+	}
+	return nil
+}
+
+func size_slice_int64(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word64Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	for i := 0; i < l; i++ {
+		n += len(p.tagcode)
+		n += p.valSize(s.Index(i))
+	}
+	return
+}
+
+// Encode a slice of int64s ([]int64) in packed format.
+func (o *Buffer) enc_slice_packed_int64(p *Properties, base structPointer) error {
+	s := structPointer_Word64Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return ErrNil
+	}
+	// TODO: Reuse a Buffer.
+	buf := NewBuffer(nil)
+	for i := 0; i < l; i++ {
+		p.valEnc(buf, s.Index(i))
+	}
+
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeVarint(uint64(len(buf.buf)))
+	o.buf = append(o.buf, buf.buf...)
+	return nil
+}
+
+func size_slice_packed_int64(p *Properties, base structPointer) (n int) {
+	s := structPointer_Word64Slice(base, p.field)
+	l := s.Len()
+	if l == 0 {
+		return 0
+	}
+	var bufSize int
+	for i := 0; i < l; i++ {
+		bufSize += p.valSize(s.Index(i))
+	}
+
+	n += len(p.tagcode)
+	n += sizeVarint(uint64(bufSize))
+	n += bufSize
+	return
+}
+
+// Encode a slice of slice of bytes ([][]byte).
+func (o *Buffer) enc_slice_slice_byte(p *Properties, base structPointer) error {
+	ss := *structPointer_BytesSlice(base, p.field)
+	l := len(ss)
+	if l == 0 {
+		return ErrNil
+	}
+	for i := 0; i < l; i++ {
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(ss[i])
+	}
+	return nil
+}
+
+func size_slice_slice_byte(p *Properties, base structPointer) (n int) {
+	ss := *structPointer_BytesSlice(base, p.field)
+	l := len(ss)
+	if l == 0 {
+		return 0
+	}
+	n += l * len(p.tagcode)
+	for i := 0; i < l; i++ {
+		n += sizeRawBytes(ss[i])
+	}
+	return
+}
+
+// Encode a slice of strings ([]string).
+func (o *Buffer) enc_slice_string(p *Properties, base structPointer) error {
+	ss := *structPointer_StringSlice(base, p.field)
+	l := len(ss)
+	for i := 0; i < l; i++ {
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeStringBytes(ss[i])
+	}
+	return nil
+}
+
+func size_slice_string(p *Properties, base structPointer) (n int) {
+	ss := *structPointer_StringSlice(base, p.field)
+	l := len(ss)
+	n += l * len(p.tagcode)
+	for i := 0; i < l; i++ {
+		n += sizeStringBytes(ss[i])
+	}
+	return
+}
+
+// Encode a slice of message structs ([]*struct).
+func (o *Buffer) enc_slice_struct_message(p *Properties, base structPointer) error {
+	var state errorState
+	s := structPointer_StructPointerSlice(base, p.field)
+	l := s.Len()
+
+	for i := 0; i < l; i++ {
+		structp := s.Index(i)
+		if structPointer_IsNil(structp) {
+			return errRepeatedHasNil
+		}
+
+		// Can the object marshal itself?
+		if p.isMarshaler {
+			m := structPointer_Interface(structp, p.stype).(Marshaler)
+			data, err := m.Marshal()
+			if err != nil && !state.shouldContinue(err, nil) {
+				return err
+			}
+			o.buf = append(o.buf, p.tagcode...)
+			o.EncodeRawBytes(data)
+			continue
+		}
+
+		o.buf = append(o.buf, p.tagcode...)
+		err := o.enc_len_struct(p.sprop, structp, &state)
+		if err != nil && !state.shouldContinue(err, nil) {
+			if err == ErrNil {
+				return errRepeatedHasNil
+			}
+			return err
+		}
+	}
+	return state.err
+}
+
+func size_slice_struct_message(p *Properties, base structPointer) (n int) {
+	s := structPointer_StructPointerSlice(base, p.field)
+	l := s.Len()
+	n += l * len(p.tagcode)
+	for i := 0; i < l; i++ {
+		structp := s.Index(i)
+		if structPointer_IsNil(structp) {
+			return // return the size up to this point
+		}
+
+		// Can the object marshal itself?
+		if p.isMarshaler {
+			m := structPointer_Interface(structp, p.stype).(Marshaler)
+			data, _ := m.Marshal()
+			n += sizeRawBytes(data)
+			continue
+		}
+
+		n0 := size_struct(p.sprop, structp)
+		n1 := sizeVarint(uint64(n0)) // size of encoded length
+		n += n0 + n1
+	}
+	return
+}
+
+// Encode a slice of group structs ([]*struct).
+func (o *Buffer) enc_slice_struct_group(p *Properties, base structPointer) error {
+	var state errorState
+	s := structPointer_StructPointerSlice(base, p.field)
+	l := s.Len()
+
+	for i := 0; i < l; i++ {
+		b := s.Index(i)
+		if structPointer_IsNil(b) {
+			return errRepeatedHasNil
+		}
+
+		o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
+
+		err := o.enc_struct(p.sprop, b)
+
+		if err != nil && !state.shouldContinue(err, nil) {
+			if err == ErrNil {
+				return errRepeatedHasNil
+			}
+			return err
+		}
+
+		o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
+	}
+	return state.err
+}
+
+func size_slice_struct_group(p *Properties, base structPointer) (n int) {
+	s := structPointer_StructPointerSlice(base, p.field)
+	l := s.Len()
+
+	n += l * sizeVarint(uint64((p.Tag<<3)|WireStartGroup))
+	n += l * sizeVarint(uint64((p.Tag<<3)|WireEndGroup))
+	for i := 0; i < l; i++ {
+		b := s.Index(i)
+		if structPointer_IsNil(b) {
+			return // return size up to this point
+		}
+
+		n += size_struct(p.sprop, b)
+	}
+	return
+}
+
+// Encode an extension map.
+func (o *Buffer) enc_map(p *Properties, base structPointer) error {
+	exts := structPointer_ExtMap(base, p.field)
+	if err := encodeExtensionsMap(*exts); err != nil {
+		return err
+	}
+
+	return o.enc_map_body(*exts)
+}
+
+func (o *Buffer) enc_exts(p *Properties, base structPointer) error {
+	exts := structPointer_Extensions(base, p.field)
+
+	v, mu := exts.extensionsRead()
+	if v == nil {
+		return nil
+	}
+
+	mu.Lock()
+	defer mu.Unlock()
+	if err := encodeExtensionsMap(v); err != nil {
+		return err
+	}
+
+	return o.enc_map_body(v)
+}
+
+func (o *Buffer) enc_map_body(v map[int32]Extension) error {
+	// Fast-path for common cases: zero or one extensions.
+	if len(v) <= 1 {
+		for _, e := range v {
+			o.buf = append(o.buf, e.enc...)
+		}
+		return nil
+	}
+
+	// Sort keys to provide a deterministic encoding.
+	keys := make([]int, 0, len(v))
+	for k := range v {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+
+	for _, k := range keys {
+		o.buf = append(o.buf, v[int32(k)].enc...)
+	}
+	return nil
+}
+
+func size_map(p *Properties, base structPointer) int {
+	v := structPointer_ExtMap(base, p.field)
+	return extensionsMapSize(*v)
+}
+
+func size_exts(p *Properties, base structPointer) int {
+	v := structPointer_Extensions(base, p.field)
+	return extensionsSize(v)
+}
+
+// Encode a map field.
+func (o *Buffer) enc_new_map(p *Properties, base structPointer) error {
+	var state errorState // XXX: or do we need to plumb this through?
+
+	/*
+		A map defined as
+			map<key_type, value_type> map_field = N;
+		is encoded in the same way as
+			message MapFieldEntry {
+				key_type key = 1;
+				value_type value = 2;
+			}
+			repeated MapFieldEntry map_field = N;
+	*/
+
+	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
+	if v.Len() == 0 {
+		return nil
+	}
+
+	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
+
+	enc := func() error {
+		if err := p.mkeyprop.enc(o, p.mkeyprop, keybase); err != nil {
+			return err
+		}
+		if err := p.mvalprop.enc(o, p.mvalprop, valbase); err != nil && err != ErrNil {
+			return err
+		}
+		return nil
+	}
+
+	// Don't sort map keys. It is not required by the spec, and C++ doesn't do it.
+	for _, key := range v.MapKeys() {
+		val := v.MapIndex(key)
+
+		keycopy.Set(key)
+		valcopy.Set(val)
+
+		o.buf = append(o.buf, p.tagcode...)
+		if err := o.enc_len_thing(enc, &state); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func size_new_map(p *Properties, base structPointer) int {
+	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
+
+	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
+
+	n := 0
+	for _, key := range v.MapKeys() {
+		val := v.MapIndex(key)
+		keycopy.Set(key)
+		valcopy.Set(val)
+
+		// Tag codes for key and val are the responsibility of the sub-sizer.
+		keysize := p.mkeyprop.size(p.mkeyprop, keybase)
+		valsize := p.mvalprop.size(p.mvalprop, valbase)
+		entry := keysize + valsize
+		// Add on tag code and length of map entry itself.
+		n += len(p.tagcode) + sizeVarint(uint64(entry)) + entry
+	}
+	return n
+}
+
+// mapEncodeScratch returns a new reflect.Value matching the map's value type,
+// and a structPointer suitable for passing to an encoder or sizer.
+func mapEncodeScratch(mapType reflect.Type) (keycopy, valcopy reflect.Value, keybase, valbase structPointer) {
+	// Prepare addressable doubly-indirect placeholders for the key and value types.
+	// This is needed because the element-type encoders expect **T, but the map iteration produces T.
+
+	keycopy = reflect.New(mapType.Key()).Elem()                 // addressable K
+	keyptr := reflect.New(reflect.PtrTo(keycopy.Type())).Elem() // addressable *K
+	keyptr.Set(keycopy.Addr())                                  //
+	keybase = toStructPointer(keyptr.Addr())                    // **K
+
+	// Value types are more varied and require special handling.
+	switch mapType.Elem().Kind() {
+	case reflect.Slice:
+		// []byte
+		var dummy []byte
+		valcopy = reflect.ValueOf(&dummy).Elem() // addressable []byte
+		valbase = toStructPointer(valcopy.Addr())
+	case reflect.Ptr:
+		// message; the generated field type is map[K]*Msg (so V is *Msg),
+		// so we only need one level of indirection.
+		valcopy = reflect.New(mapType.Elem()).Elem() // addressable V
+		valbase = toStructPointer(valcopy.Addr())
+	default:
+		// everything else
+		valcopy = reflect.New(mapType.Elem()).Elem()                // addressable V
+		valptr := reflect.New(reflect.PtrTo(valcopy.Type())).Elem() // addressable *V
+		valptr.Set(valcopy.Addr())                                  //
+		valbase = toStructPointer(valptr.Addr())                    // **V
+	}
+	return
+}
+
+// Encode a struct.
+func (o *Buffer) enc_struct(prop *StructProperties, base structPointer) error {
+	var state errorState
+	// Encode fields in tag order so that decoders may use optimizations
+	// that depend on the ordering.
+	// https://developers.google.com/protocol-buffers/docs/encoding#order
+	for _, i := range prop.order {
+		p := prop.Prop[i]
+		if p.enc != nil {
+			err := p.enc(o, p, base)
+			if err != nil {
+				if err == ErrNil {
+					if p.Required && state.err == nil {
+						state.err = &RequiredNotSetError{p.Name}
+					}
+				} else if err == errRepeatedHasNil {
+					// Give more context to nil values in repeated fields.
+					return errors.New("repeated field " + p.OrigName + " has nil element")
+				} else if !state.shouldContinue(err, p) {
+					return err
+				}
+			}
+			if len(o.buf) > maxMarshalSize {
+				return ErrTooLarge
+			}
+		}
+	}
+
+	// Do oneof fields.
+	if prop.oneofMarshaler != nil {
+		m := structPointer_Interface(base, prop.stype).(Message)
+		if err := prop.oneofMarshaler(m, o); err == ErrNil {
+			return errOneofHasNil
+		} else if err != nil {
+			return err
+		}
+	}
+
+	// Add unrecognized fields at the end.
+	if prop.unrecField.IsValid() {
+		v := *structPointer_Bytes(base, prop.unrecField)
+		if len(o.buf)+len(v) > maxMarshalSize {
+			return ErrTooLarge
+		}
+		if len(v) > 0 {
+			o.buf = append(o.buf, v...)
+		}
+	}
+
+	return state.err
+}
+
+func size_struct(prop *StructProperties, base structPointer) (n int) {
+	for _, i := range prop.order {
+		p := prop.Prop[i]
+		if p.size != nil {
+			n += p.size(p, base)
+		}
+	}
+
+	// Add unrecognized fields at the end.
+	if prop.unrecField.IsValid() {
+		v := *structPointer_Bytes(base, prop.unrecField)
+		n += len(v)
+	}
+
+	// Factor in any oneof fields.
+	if prop.oneofSizer != nil {
+		m := structPointer_Interface(base, prop.stype).(Message)
+		n += prop.oneofSizer(m)
+	}
+
+	return
+}
+
+var zeroes [20]byte // longer than any conceivable sizeVarint
+
+// Encode a struct, preceded by its encoded length (as a varint).
+func (o *Buffer) enc_len_struct(prop *StructProperties, base structPointer, state *errorState) error {
+	return o.enc_len_thing(func() error { return o.enc_struct(prop, base) }, state)
+}
+
+// Encode something, preceded by its encoded length (as a varint).
+func (o *Buffer) enc_len_thing(enc func() error, state *errorState) error {
+	iLen := len(o.buf)
+	o.buf = append(o.buf, 0, 0, 0, 0) // reserve four bytes for length
+	iMsg := len(o.buf)
+	err := enc()
+	if err != nil && !state.shouldContinue(err, nil) {
+		return err
+	}
+	lMsg := len(o.buf) - iMsg
+	lLen := sizeVarint(uint64(lMsg))
+	switch x := lLen - (iMsg - iLen); {
+	case x > 0: // actual length is x bytes larger than the space we reserved
+		// Move msg x bytes right.
+		o.buf = append(o.buf, zeroes[:x]...)
+		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
+	case x < 0: // actual length is x bytes smaller than the space we reserved
+		// Move msg x bytes left.
+		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
+		o.buf = o.buf[:len(o.buf)+x] // x is negative
+	}
+	// Encode the length in the reserved space.
+	o.buf = o.buf[:iLen]
+	o.EncodeVarint(uint64(lMsg))
+	o.buf = o.buf[:len(o.buf)+lMsg]
+	return state.err
+}
+
+// errorState maintains the first error that occurs and updates that error
+// with additional context.
+type errorState struct {
+	err error
+}
+
+// shouldContinue reports whether encoding should continue upon encountering the
+// given error. If the error is RequiredNotSetError, shouldContinue returns true
+// and, if this is the first appearance of that error, remembers it for future
+// reporting.
+//
+// If prop is not nil, it may update any error with additional context about the
+// field with the error.
+func (s *errorState) shouldContinue(err error, prop *Properties) bool {
+	// Ignore unset required fields.
+	reqNotSet, ok := err.(*RequiredNotSetError)
+	if !ok {
+		return false
+	}
+	if s.err == nil {
+		if prop != nil {
+			err = &RequiredNotSetError{prop.Name + "." + reqNotSet.field}
+		}
+		s.err = err
+	}
+	return true
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/encode_gogo.go b/vendor/github.com/gogo/protobuf/proto/encode_gogo.go
new file mode 100644
index 0000000000..32111b7f41
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/encode_gogo.go
@@ -0,0 +1,350 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// http://github.com/golang/protobuf/
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"reflect"
+)
+
+func NewRequiredNotSetError(field string) *RequiredNotSetError {
+	return &RequiredNotSetError{field}
+}
+
+type Sizer interface {
+	Size() int
+}
+
+func (o *Buffer) enc_ext_slice_byte(p *Properties, base structPointer) error {
+	s := *structPointer_Bytes(base, p.field)
+	if s == nil {
+		return ErrNil
+	}
+	o.buf = append(o.buf, s...)
+	return nil
+}
+
+func size_ext_slice_byte(p *Properties, base structPointer) (n int) {
+	s := *structPointer_Bytes(base, p.field)
+	if s == nil {
+		return 0
+	}
+	n += len(s)
+	return
+}
+
+// Encode a reference to bool pointer.
+func (o *Buffer) enc_ref_bool(p *Properties, base structPointer) error {
+	v := *structPointer_BoolVal(base, p.field)
+	x := 0
+	if v {
+		x = 1
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func size_ref_bool(p *Properties, base structPointer) int {
+	return len(p.tagcode) + 1 // each bool takes exactly one byte
+}
+
+// Encode a reference to int32 pointer.
+func (o *Buffer) enc_ref_int32(p *Properties, base structPointer) error {
+	v := structPointer_Word32Val(base, p.field)
+	x := int32(word32Val_Get(v))
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func size_ref_int32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32Val(base, p.field)
+	x := int32(word32Val_Get(v))
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+func (o *Buffer) enc_ref_uint32(p *Properties, base structPointer) error {
+	v := structPointer_Word32Val(base, p.field)
+	x := word32Val_Get(v)
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, uint64(x))
+	return nil
+}
+
+func size_ref_uint32(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word32Val(base, p.field)
+	x := word32Val_Get(v)
+	n += len(p.tagcode)
+	n += p.valSize(uint64(x))
+	return
+}
+
+// Encode a reference to an int64 pointer.
+func (o *Buffer) enc_ref_int64(p *Properties, base structPointer) error {
+	v := structPointer_Word64Val(base, p.field)
+	x := word64Val_Get(v)
+	o.buf = append(o.buf, p.tagcode...)
+	p.valEnc(o, x)
+	return nil
+}
+
+func size_ref_int64(p *Properties, base structPointer) (n int) {
+	v := structPointer_Word64Val(base, p.field)
+	x := word64Val_Get(v)
+	n += len(p.tagcode)
+	n += p.valSize(x)
+	return
+}
+
+// Encode a reference to a string pointer.
+func (o *Buffer) enc_ref_string(p *Properties, base structPointer) error {
+	v := *structPointer_StringVal(base, p.field)
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeStringBytes(v)
+	return nil
+}
+
+func size_ref_string(p *Properties, base structPointer) (n int) {
+	v := *structPointer_StringVal(base, p.field)
+	n += len(p.tagcode)
+	n += sizeStringBytes(v)
+	return
+}
+
+// Encode a reference to a message struct.
+func (o *Buffer) enc_ref_struct_message(p *Properties, base structPointer) error {
+	var state errorState
+	structp := structPointer_GetRefStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return ErrNil
+	}
+
+	// Can the object marshal itself?
+	if p.isMarshaler {
+		m := structPointer_Interface(structp, p.stype).(Marshaler)
+		data, err := m.Marshal()
+		if err != nil && !state.shouldContinue(err, nil) {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+		return nil
+	}
+
+	o.buf = append(o.buf, p.tagcode...)
+	return o.enc_len_struct(p.sprop, structp, &state)
+}
+
+//TODO this is only copied, please fix this
+func size_ref_struct_message(p *Properties, base structPointer) int {
+	structp := structPointer_GetRefStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return 0
+	}
+
+	// Can the object marshal itself?
+	if p.isMarshaler {
+		m := structPointer_Interface(structp, p.stype).(Marshaler)
+		data, _ := m.Marshal()
+		n0 := len(p.tagcode)
+		n1 := sizeRawBytes(data)
+		return n0 + n1
+	}
+
+	n0 := len(p.tagcode)
+	n1 := size_struct(p.sprop, structp)
+	n2 := sizeVarint(uint64(n1)) // size of encoded length
+	return n0 + n1 + n2
+}
+
+// Encode a slice of references to message struct pointers ([]struct).
+func (o *Buffer) enc_slice_ref_struct_message(p *Properties, base structPointer) error {
+	var state errorState
+	ss := structPointer_StructRefSlice(base, p.field, p.stype.Size())
+	l := ss.Len()
+	for i := 0; i < l; i++ {
+		structp := ss.Index(i)
+		if structPointer_IsNil(structp) {
+			return errRepeatedHasNil
+		}
+
+		// Can the object marshal itself?
+		if p.isMarshaler {
+			m := structPointer_Interface(structp, p.stype).(Marshaler)
+			data, err := m.Marshal()
+			if err != nil && !state.shouldContinue(err, nil) {
+				return err
+			}
+			o.buf = append(o.buf, p.tagcode...)
+			o.EncodeRawBytes(data)
+			continue
+		}
+
+		o.buf = append(o.buf, p.tagcode...)
+		err := o.enc_len_struct(p.sprop, structp, &state)
+		if err != nil && !state.shouldContinue(err, nil) {
+			if err == ErrNil {
+				return errRepeatedHasNil
+			}
+			return err
+		}
+
+	}
+	return state.err
+}
+
+//TODO this is only copied, please fix this
+func size_slice_ref_struct_message(p *Properties, base structPointer) (n int) {
+	ss := structPointer_StructRefSlice(base, p.field, p.stype.Size())
+	l := ss.Len()
+	n += l * len(p.tagcode)
+	for i := 0; i < l; i++ {
+		structp := ss.Index(i)
+		if structPointer_IsNil(structp) {
+			return // return the size up to this point
+		}
+
+		// Can the object marshal itself?
+		if p.isMarshaler {
+			m := structPointer_Interface(structp, p.stype).(Marshaler)
+			data, _ := m.Marshal()
+			n += len(p.tagcode)
+			n += sizeRawBytes(data)
+			continue
+		}
+
+		n0 := size_struct(p.sprop, structp)
+		n1 := sizeVarint(uint64(n0)) // size of encoded length
+		n += n0 + n1
+	}
+	return
+}
+
+func (o *Buffer) enc_custom_bytes(p *Properties, base structPointer) error {
+	i := structPointer_InterfaceRef(base, p.field, p.ctype)
+	if i == nil {
+		return ErrNil
+	}
+	custom := i.(Marshaler)
+	data, err := custom.Marshal()
+	if err != nil {
+		return err
+	}
+	if data == nil {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_custom_bytes(p *Properties, base structPointer) (n int) {
+	n += len(p.tagcode)
+	i := structPointer_InterfaceRef(base, p.field, p.ctype)
+	if i == nil {
+		return 0
+	}
+	custom := i.(Marshaler)
+	data, _ := custom.Marshal()
+	n += sizeRawBytes(data)
+	return
+}
+
+func (o *Buffer) enc_custom_ref_bytes(p *Properties, base structPointer) error {
+	custom := structPointer_InterfaceAt(base, p.field, p.ctype).(Marshaler)
+	data, err := custom.Marshal()
+	if err != nil {
+		return err
+	}
+	if data == nil {
+		return ErrNil
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_custom_ref_bytes(p *Properties, base structPointer) (n int) {
+	n += len(p.tagcode)
+	i := structPointer_InterfaceAt(base, p.field, p.ctype)
+	if i == nil {
+		return 0
+	}
+	custom := i.(Marshaler)
+	data, _ := custom.Marshal()
+	n += sizeRawBytes(data)
+	return
+}
+
+func (o *Buffer) enc_custom_slice_bytes(p *Properties, base structPointer) error {
+	inter := structPointer_InterfaceRef(base, p.field, p.ctype)
+	if inter == nil {
+		return ErrNil
+	}
+	slice := reflect.ValueOf(inter)
+	l := slice.Len()
+	for i := 0; i < l; i++ {
+		v := slice.Index(i)
+		custom := v.Interface().(Marshaler)
+		data, err := custom.Marshal()
+		if err != nil {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+	}
+	return nil
+}
+
+func size_custom_slice_bytes(p *Properties, base structPointer) (n int) {
+	inter := structPointer_InterfaceRef(base, p.field, p.ctype)
+	if inter == nil {
+		return 0
+	}
+	slice := reflect.ValueOf(inter)
+	l := slice.Len()
+	n += l * len(p.tagcode)
+	for i := 0; i < l; i++ {
+		v := slice.Index(i)
+		custom := v.Interface().(Marshaler)
+		data, _ := custom.Marshal()
+		n += sizeRawBytes(data)
+	}
+	return
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/equal.go b/vendor/github.com/gogo/protobuf/proto/equal.go
new file mode 100644
index 0000000000..2ed1cf5966
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/equal.go
@@ -0,0 +1,300 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2011 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// Protocol buffer comparison.
+
+package proto
+
+import (
+	"bytes"
+	"log"
+	"reflect"
+	"strings"
+)
+
+/*
+Equal returns true iff protocol buffers a and b are equal.
+The arguments must both be pointers to protocol buffer structs.
+
+Equality is defined in this way:
+  - Two messages are equal iff they are the same type,
+    corresponding fields are equal, unknown field sets
+    are equal, and extensions sets are equal.
+  - Two set scalar fields are equal iff their values are equal.
+    If the fields are of a floating-point type, remember that
+    NaN != x for all x, including NaN. If the message is defined
+    in a proto3 .proto file, fields are not "set"; specifically,
+    zero length proto3 "bytes" fields are equal (nil == {}).
+  - Two repeated fields are equal iff their lengths are the same,
+    and their corresponding elements are equal. Note a "bytes" field,
+    although represented by []byte, is not a repeated field and the
+    rule for the scalar fields described above applies.
+  - Two unset fields are equal.
+  - Two unknown field sets are equal if their current
+    encoded state is equal.
+  - Two extension sets are equal iff they have corresponding
+    elements that are pairwise equal.
+  - Two map fields are equal iff their lengths are the same,
+    and they contain the same set of elements. Zero-length map
+    fields are equal.
+  - Every other combination of things are not equal.
+
+The return value is undefined if a and b are not protocol buffers.
+*/
+func Equal(a, b Message) bool {
+	if a == nil || b == nil {
+		return a == b
+	}
+	v1, v2 := reflect.ValueOf(a), reflect.ValueOf(b)
+	if v1.Type() != v2.Type() {
+		return false
+	}
+	if v1.Kind() == reflect.Ptr {
+		if v1.IsNil() {
+			return v2.IsNil()
+		}
+		if v2.IsNil() {
+			return false
+		}
+		v1, v2 = v1.Elem(), v2.Elem()
+	}
+	if v1.Kind() != reflect.Struct {
+		return false
+	}
+	return equalStruct(v1, v2)
+}
+
+// v1 and v2 are known to have the same type.
+func equalStruct(v1, v2 reflect.Value) bool {
+	sprop := GetProperties(v1.Type())
+	for i := 0; i < v1.NumField(); i++ {
+		f := v1.Type().Field(i)
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+		f1, f2 := v1.Field(i), v2.Field(i)
+		if f.Type.Kind() == reflect.Ptr {
+			if n1, n2 := f1.IsNil(), f2.IsNil(); n1 && n2 {
+				// both unset
+				continue
+			} else if n1 != n2 {
+				// set/unset mismatch
+				return false
+			}
+			b1, ok := f1.Interface().(raw)
+			if ok {
+				b2 := f2.Interface().(raw)
+				// RawMessage
+				if !bytes.Equal(b1.Bytes(), b2.Bytes()) {
+					return false
+				}
+				continue
+			}
+			f1, f2 = f1.Elem(), f2.Elem()
+		}
+		if !equalAny(f1, f2, sprop.Prop[i]) {
+			return false
+		}
+	}
+
+	if em1 := v1.FieldByName("XXX_InternalExtensions"); em1.IsValid() {
+		em2 := v2.FieldByName("XXX_InternalExtensions")
+		if !equalExtensions(v1.Type(), em1.Interface().(XXX_InternalExtensions), em2.Interface().(XXX_InternalExtensions)) {
+			return false
+		}
+	}
+
+	if em1 := v1.FieldByName("XXX_extensions"); em1.IsValid() {
+		em2 := v2.FieldByName("XXX_extensions")
+		if !equalExtMap(v1.Type(), em1.Interface().(map[int32]Extension), em2.Interface().(map[int32]Extension)) {
+			return false
+		}
+	}
+
+	uf := v1.FieldByName("XXX_unrecognized")
+	if !uf.IsValid() {
+		return true
+	}
+
+	u1 := uf.Bytes()
+	u2 := v2.FieldByName("XXX_unrecognized").Bytes()
+	if !bytes.Equal(u1, u2) {
+		return false
+	}
+
+	return true
+}
+
+// v1 and v2 are known to have the same type.
+// prop may be nil.
+func equalAny(v1, v2 reflect.Value, prop *Properties) bool {
+	if v1.Type() == protoMessageType {
+		m1, _ := v1.Interface().(Message)
+		m2, _ := v2.Interface().(Message)
+		return Equal(m1, m2)
+	}
+	switch v1.Kind() {
+	case reflect.Bool:
+		return v1.Bool() == v2.Bool()
+	case reflect.Float32, reflect.Float64:
+		return v1.Float() == v2.Float()
+	case reflect.Int32, reflect.Int64:
+		return v1.Int() == v2.Int()
+	case reflect.Interface:
+		// Probably a oneof field; compare the inner values.
+		n1, n2 := v1.IsNil(), v2.IsNil()
+		if n1 || n2 {
+			return n1 == n2
+		}
+		e1, e2 := v1.Elem(), v2.Elem()
+		if e1.Type() != e2.Type() {
+			return false
+		}
+		return equalAny(e1, e2, nil)
+	case reflect.Map:
+		if v1.Len() != v2.Len() {
+			return false
+		}
+		for _, key := range v1.MapKeys() {
+			val2 := v2.MapIndex(key)
+			if !val2.IsValid() {
+				// This key was not found in the second map.
+				return false
+			}
+			if !equalAny(v1.MapIndex(key), val2, nil) {
+				return false
+			}
+		}
+		return true
+	case reflect.Ptr:
+		// Maps may have nil values in them, so check for nil.
+		if v1.IsNil() && v2.IsNil() {
+			return true
+		}
+		if v1.IsNil() != v2.IsNil() {
+			return false
+		}
+		return equalAny(v1.Elem(), v2.Elem(), prop)
+	case reflect.Slice:
+		if v1.Type().Elem().Kind() == reflect.Uint8 {
+			// short circuit: []byte
+
+			// Edge case: if this is in a proto3 message, a zero length
+			// bytes field is considered the zero value.
+			if prop != nil && prop.proto3 && v1.Len() == 0 && v2.Len() == 0 {
+				return true
+			}
+			if v1.IsNil() != v2.IsNil() {
+				return false
+			}
+			return bytes.Equal(v1.Interface().([]byte), v2.Interface().([]byte))
+		}
+
+		if v1.Len() != v2.Len() {
+			return false
+		}
+		for i := 0; i < v1.Len(); i++ {
+			if !equalAny(v1.Index(i), v2.Index(i), prop) {
+				return false
+			}
+		}
+		return true
+	case reflect.String:
+		return v1.Interface().(string) == v2.Interface().(string)
+	case reflect.Struct:
+		return equalStruct(v1, v2)
+	case reflect.Uint32, reflect.Uint64:
+		return v1.Uint() == v2.Uint()
+	}
+
+	// unknown type, so not a protocol buffer
+	log.Printf("proto: don't know how to compare %v", v1)
+	return false
+}
+
+// base is the struct type that the extensions are based on.
+// x1 and x2 are InternalExtensions.
+func equalExtensions(base reflect.Type, x1, x2 XXX_InternalExtensions) bool {
+	em1, _ := x1.extensionsRead()
+	em2, _ := x2.extensionsRead()
+	return equalExtMap(base, em1, em2)
+}
+
+func equalExtMap(base reflect.Type, em1, em2 map[int32]Extension) bool {
+	if len(em1) != len(em2) {
+		return false
+	}
+
+	for extNum, e1 := range em1 {
+		e2, ok := em2[extNum]
+		if !ok {
+			return false
+		}
+
+		m1, m2 := e1.value, e2.value
+
+		if m1 != nil && m2 != nil {
+			// Both are unencoded.
+			if !equalAny(reflect.ValueOf(m1), reflect.ValueOf(m2), nil) {
+				return false
+			}
+			continue
+		}
+
+		// At least one is encoded. To do a semantically correct comparison
+		// we need to unmarshal them first.
+		var desc *ExtensionDesc
+		if m := extensionMaps[base]; m != nil {
+			desc = m[extNum]
+		}
+		if desc == nil {
+			log.Printf("proto: don't know how to compare extension %d of %v", extNum, base)
+			continue
+		}
+		var err error
+		if m1 == nil {
+			m1, err = decodeExtension(e1.enc, desc)
+		}
+		if m2 == nil && err == nil {
+			m2, err = decodeExtension(e2.enc, desc)
+		}
+		if err != nil {
+			// The encoded form is invalid.
+			log.Printf("proto: badly encoded extension %d of %v: %v", extNum, base, err)
+			return false
+		}
+		if !equalAny(reflect.ValueOf(m1), reflect.ValueOf(m2), nil) {
+			return false
+		}
+	}
+
+	return true
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/extensions.go b/vendor/github.com/gogo/protobuf/proto/extensions.go
new file mode 100644
index 0000000000..0dfcb538e8
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/extensions.go
@@ -0,0 +1,693 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+/*
+ * Types and routines for supporting protocol buffer extensions.
+ */
+
+import (
+	"errors"
+	"fmt"
+	"reflect"
+	"strconv"
+	"sync"
+)
+
+// ErrMissingExtension is the error returned by GetExtension if the named extension is not in the message.
+var ErrMissingExtension = errors.New("proto: missing extension")
+
+// ExtensionRange represents a range of message extensions for a protocol buffer.
+// Used in code generated by the protocol compiler.
+type ExtensionRange struct {
+	Start, End int32 // both inclusive
+}
+
+// extendableProto is an interface implemented by any protocol buffer generated by the current
+// proto compiler that may be extended.
+type extendableProto interface {
+	Message
+	ExtensionRangeArray() []ExtensionRange
+	extensionsWrite() map[int32]Extension
+	extensionsRead() (map[int32]Extension, sync.Locker)
+}
+
+// extendableProtoV1 is an interface implemented by a protocol buffer generated by the previous
+// version of the proto compiler that may be extended.
+type extendableProtoV1 interface {
+	Message
+	ExtensionRangeArray() []ExtensionRange
+	ExtensionMap() map[int32]Extension
+}
+
+type extensionsBytes interface {
+	Message
+	ExtensionRangeArray() []ExtensionRange
+	GetExtensions() *[]byte
+}
+
+// extensionAdapter is a wrapper around extendableProtoV1 that implements extendableProto.
+type extensionAdapter struct {
+	extendableProtoV1
+}
+
+func (e extensionAdapter) extensionsWrite() map[int32]Extension {
+	return e.ExtensionMap()
+}
+
+func (e extensionAdapter) extensionsRead() (map[int32]Extension, sync.Locker) {
+	return e.ExtensionMap(), notLocker{}
+}
+
+// notLocker is a sync.Locker whose Lock and Unlock methods are nops.
+type notLocker struct{}
+
+func (n notLocker) Lock()   {}
+func (n notLocker) Unlock() {}
+
+// extendable returns the extendableProto interface for the given generated proto message.
+// If the proto message has the old extension format, it returns a wrapper that implements
+// the extendableProto interface.
+func extendable(p interface{}) (extendableProto, bool) {
+	if ep, ok := p.(extendableProto); ok {
+		return ep, ok
+	}
+	if ep, ok := p.(extendableProtoV1); ok {
+		return extensionAdapter{ep}, ok
+	}
+	return nil, false
+}
+
+// XXX_InternalExtensions is an internal representation of proto extensions.
+//
+// Each generated message struct type embeds an anonymous XXX_InternalExtensions field,
+// thus gaining the unexported 'extensions' method, which can be called only from the proto package.
+//
+// The methods of XXX_InternalExtensions are not concurrency safe in general,
+// but calls to logically read-only methods such as has and get may be executed concurrently.
+type XXX_InternalExtensions struct {
+	// The struct must be indirect so that if a user inadvertently copies a
+	// generated message and its embedded XXX_InternalExtensions, they
+	// avoid the mayhem of a copied mutex.
+	//
+	// The mutex serializes all logically read-only operations to p.extensionMap.
+	// It is up to the client to ensure that write operations to p.extensionMap are
+	// mutually exclusive with other accesses.
+	p *struct {
+		mu           sync.Mutex
+		extensionMap map[int32]Extension
+	}
+}
+
+// extensionsWrite returns the extension map, creating it on first use.
+func (e *XXX_InternalExtensions) extensionsWrite() map[int32]Extension {
+	if e.p == nil {
+		e.p = new(struct {
+			mu           sync.Mutex
+			extensionMap map[int32]Extension
+		})
+		e.p.extensionMap = make(map[int32]Extension)
+	}
+	return e.p.extensionMap
+}
+
+// extensionsRead returns the extensions map for read-only use.  It may be nil.
+// The caller must hold the returned mutex's lock when accessing Elements within the map.
+func (e *XXX_InternalExtensions) extensionsRead() (map[int32]Extension, sync.Locker) {
+	if e.p == nil {
+		return nil, nil
+	}
+	return e.p.extensionMap, &e.p.mu
+}
+
+type extensionRange interface {
+	Message
+	ExtensionRangeArray() []ExtensionRange
+}
+
+var extendableProtoType = reflect.TypeOf((*extendableProto)(nil)).Elem()
+var extendableProtoV1Type = reflect.TypeOf((*extendableProtoV1)(nil)).Elem()
+var extendableBytesType = reflect.TypeOf((*extensionsBytes)(nil)).Elem()
+var extensionRangeType = reflect.TypeOf((*extensionRange)(nil)).Elem()
+
+// ExtensionDesc represents an extension specification.
+// Used in generated code from the protocol compiler.
+type ExtensionDesc struct {
+	ExtendedType  Message     // nil pointer to the type that is being extended
+	ExtensionType interface{} // nil pointer to the extension type
+	Field         int32       // field number
+	Name          string      // fully-qualified name of extension, for text formatting
+	Tag           string      // protobuf tag style
+	Filename      string      // name of the file in which the extension is defined
+}
+
+func (ed *ExtensionDesc) repeated() bool {
+	t := reflect.TypeOf(ed.ExtensionType)
+	return t.Kind() == reflect.Slice && t.Elem().Kind() != reflect.Uint8
+}
+
+// Extension represents an extension in a message.
+type Extension struct {
+	// When an extension is stored in a message using SetExtension
+	// only desc and value are set. When the message is marshaled
+	// enc will be set to the encoded form of the message.
+	//
+	// When a message is unmarshaled and contains extensions, each
+	// extension will have only enc set. When such an extension is
+	// accessed using GetExtension (or GetExtensions) desc and value
+	// will be set.
+	desc  *ExtensionDesc
+	value interface{}
+	enc   []byte
+}
+
+// SetRawExtension is for testing only.
+func SetRawExtension(base Message, id int32, b []byte) {
+	if ebase, ok := base.(extensionsBytes); ok {
+		clearExtension(base, id)
+		ext := ebase.GetExtensions()
+		*ext = append(*ext, b...)
+		return
+	}
+	epb, ok := extendable(base)
+	if !ok {
+		return
+	}
+	extmap := epb.extensionsWrite()
+	extmap[id] = Extension{enc: b}
+}
+
+// isExtensionField returns true iff the given field number is in an extension range.
+func isExtensionField(pb extensionRange, field int32) bool {
+	for _, er := range pb.ExtensionRangeArray() {
+		if er.Start <= field && field <= er.End {
+			return true
+		}
+	}
+	return false
+}
+
+// checkExtensionTypes checks that the given extension is valid for pb.
+func checkExtensionTypes(pb extendableProto, extension *ExtensionDesc) error {
+	var pbi interface{} = pb
+	// Check the extended type.
+	if ea, ok := pbi.(extensionAdapter); ok {
+		pbi = ea.extendableProtoV1
+	}
+	if a, b := reflect.TypeOf(pbi), reflect.TypeOf(extension.ExtendedType); a != b {
+		return errors.New("proto: bad extended type; " + b.String() + " does not extend " + a.String())
+	}
+	// Check the range.
+	if !isExtensionField(pb, extension.Field) {
+		return errors.New("proto: bad extension number; not in declared ranges")
+	}
+	return nil
+}
+
+// extPropKey is sufficient to uniquely identify an extension.
+type extPropKey struct {
+	base  reflect.Type
+	field int32
+}
+
+var extProp = struct {
+	sync.RWMutex
+	m map[extPropKey]*Properties
+}{
+	m: make(map[extPropKey]*Properties),
+}
+
+func extensionProperties(ed *ExtensionDesc) *Properties {
+	key := extPropKey{base: reflect.TypeOf(ed.ExtendedType), field: ed.Field}
+
+	extProp.RLock()
+	if prop, ok := extProp.m[key]; ok {
+		extProp.RUnlock()
+		return prop
+	}
+	extProp.RUnlock()
+
+	extProp.Lock()
+	defer extProp.Unlock()
+	// Check again.
+	if prop, ok := extProp.m[key]; ok {
+		return prop
+	}
+
+	prop := new(Properties)
+	prop.Init(reflect.TypeOf(ed.ExtensionType), "unknown_name", ed.Tag, nil)
+	extProp.m[key] = prop
+	return prop
+}
+
+// encode encodes any unmarshaled (unencoded) extensions in e.
+func encodeExtensions(e *XXX_InternalExtensions) error {
+	m, mu := e.extensionsRead()
+	if m == nil {
+		return nil // fast path
+	}
+	mu.Lock()
+	defer mu.Unlock()
+	return encodeExtensionsMap(m)
+}
+
+// encode encodes any unmarshaled (unencoded) extensions in e.
+func encodeExtensionsMap(m map[int32]Extension) error {
+	for k, e := range m {
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		et := reflect.TypeOf(e.desc.ExtensionType)
+		props := extensionProperties(e.desc)
+
+		p := NewBuffer(nil)
+		// If e.value has type T, the encoder expects a *struct{ X T }.
+		// Pass a *T with a zero field and hope it all works out.
+		x := reflect.New(et)
+		x.Elem().Set(reflect.ValueOf(e.value))
+		if err := props.enc(p, props, toStructPointer(x)); err != nil {
+			return err
+		}
+		e.enc = p.buf
+		m[k] = e
+	}
+	return nil
+}
+
+func extensionsSize(e *XXX_InternalExtensions) (n int) {
+	m, mu := e.extensionsRead()
+	if m == nil {
+		return 0
+	}
+	mu.Lock()
+	defer mu.Unlock()
+	return extensionsMapSize(m)
+}
+
+func extensionsMapSize(m map[int32]Extension) (n int) {
+	for _, e := range m {
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			n += len(e.enc)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		et := reflect.TypeOf(e.desc.ExtensionType)
+		props := extensionProperties(e.desc)
+
+		// If e.value has type T, the encoder expects a *struct{ X T }.
+		// Pass a *T with a zero field and hope it all works out.
+		x := reflect.New(et)
+		x.Elem().Set(reflect.ValueOf(e.value))
+		n += props.size(props, toStructPointer(x))
+	}
+	return
+}
+
+// HasExtension returns whether the given extension is present in pb.
+func HasExtension(pb Message, extension *ExtensionDesc) bool {
+	if epb, doki := pb.(extensionsBytes); doki {
+		ext := epb.GetExtensions()
+		buf := *ext
+		o := 0
+		for o < len(buf) {
+			tag, n := DecodeVarint(buf[o:])
+			fieldNum := int32(tag >> 3)
+			if int32(fieldNum) == extension.Field {
+				return true
+			}
+			wireType := int(tag & 0x7)
+			o += n
+			l, err := size(buf[o:], wireType)
+			if err != nil {
+				return false
+			}
+			o += l
+		}
+		return false
+	}
+	// TODO: Check types, field numbers, etc.?
+	epb, ok := extendable(pb)
+	if !ok {
+		return false
+	}
+	extmap, mu := epb.extensionsRead()
+	if extmap == nil {
+		return false
+	}
+	mu.Lock()
+	_, ok = extmap[extension.Field]
+	mu.Unlock()
+	return ok
+}
+
+func deleteExtension(pb extensionsBytes, theFieldNum int32, offset int) int {
+	ext := pb.GetExtensions()
+	for offset < len(*ext) {
+		tag, n1 := DecodeVarint((*ext)[offset:])
+		fieldNum := int32(tag >> 3)
+		wireType := int(tag & 0x7)
+		n2, err := size((*ext)[offset+n1:], wireType)
+		if err != nil {
+			panic(err)
+		}
+		newOffset := offset + n1 + n2
+		if fieldNum == theFieldNum {
+			*ext = append((*ext)[:offset], (*ext)[newOffset:]...)
+			return offset
+		}
+		offset = newOffset
+	}
+	return -1
+}
+
+// ClearExtension removes the given extension from pb.
+func ClearExtension(pb Message, extension *ExtensionDesc) {
+	clearExtension(pb, extension.Field)
+}
+
+func clearExtension(pb Message, fieldNum int32) {
+	if epb, doki := pb.(extensionsBytes); doki {
+		offset := 0
+		for offset != -1 {
+			offset = deleteExtension(epb, fieldNum, offset)
+		}
+		return
+	}
+	epb, ok := extendable(pb)
+	if !ok {
+		return
+	}
+	// TODO: Check types, field numbers, etc.?
+	extmap := epb.extensionsWrite()
+	delete(extmap, fieldNum)
+}
+
+// GetExtension parses and returns the given extension of pb.
+// If the extension is not present and has no default value it returns ErrMissingExtension.
+func GetExtension(pb Message, extension *ExtensionDesc) (interface{}, error) {
+	if epb, doki := pb.(extensionsBytes); doki {
+		ext := epb.GetExtensions()
+		o := 0
+		for o < len(*ext) {
+			tag, n := DecodeVarint((*ext)[o:])
+			fieldNum := int32(tag >> 3)
+			wireType := int(tag & 0x7)
+			l, err := size((*ext)[o+n:], wireType)
+			if err != nil {
+				return nil, err
+			}
+			if int32(fieldNum) == extension.Field {
+				v, err := decodeExtension((*ext)[o:o+n+l], extension)
+				if err != nil {
+					return nil, err
+				}
+				return v, nil
+			}
+			o += n + l
+		}
+		return defaultExtensionValue(extension)
+	}
+	epb, ok := extendable(pb)
+	if !ok {
+		return nil, errors.New("proto: not an extendable proto")
+	}
+	if err := checkExtensionTypes(epb, extension); err != nil {
+		return nil, err
+	}
+
+	emap, mu := epb.extensionsRead()
+	if emap == nil {
+		return defaultExtensionValue(extension)
+	}
+	mu.Lock()
+	defer mu.Unlock()
+	e, ok := emap[extension.Field]
+	if !ok {
+		// defaultExtensionValue returns the default value or
+		// ErrMissingExtension if there is no default.
+		return defaultExtensionValue(extension)
+	}
+
+	if e.value != nil {
+		// Already decoded. Check the descriptor, though.
+		if e.desc != extension {
+			// This shouldn't happen. If it does, it means that
+			// GetExtension was called twice with two different
+			// descriptors with the same field number.
+			return nil, errors.New("proto: descriptor conflict")
+		}
+		return e.value, nil
+	}
+
+	v, err := decodeExtension(e.enc, extension)
+	if err != nil {
+		return nil, err
+	}
+
+	// Remember the decoded version and drop the encoded version.
+	// That way it is safe to mutate what we return.
+	e.value = v
+	e.desc = extension
+	e.enc = nil
+	emap[extension.Field] = e
+	return e.value, nil
+}
+
+// defaultExtensionValue returns the default value for extension.
+// If no default for an extension is defined ErrMissingExtension is returned.
+func defaultExtensionValue(extension *ExtensionDesc) (interface{}, error) {
+	t := reflect.TypeOf(extension.ExtensionType)
+	props := extensionProperties(extension)
+
+	sf, _, err := fieldDefault(t, props)
+	if err != nil {
+		return nil, err
+	}
+
+	if sf == nil || sf.value == nil {
+		// There is no default value.
+		return nil, ErrMissingExtension
+	}
+
+	if t.Kind() != reflect.Ptr {
+		// We do not need to return a Ptr, we can directly return sf.value.
+		return sf.value, nil
+	}
+
+	// We need to return an interface{} that is a pointer to sf.value.
+	value := reflect.New(t).Elem()
+	value.Set(reflect.New(value.Type().Elem()))
+	if sf.kind == reflect.Int32 {
+		// We may have an int32 or an enum, but the underlying data is int32.
+		// Since we can't set an int32 into a non int32 reflect.value directly
+		// set it as a int32.
+		value.Elem().SetInt(int64(sf.value.(int32)))
+	} else {
+		value.Elem().Set(reflect.ValueOf(sf.value))
+	}
+	return value.Interface(), nil
+}
+
+// decodeExtension decodes an extension encoded in b.
+func decodeExtension(b []byte, extension *ExtensionDesc) (interface{}, error) {
+	o := NewBuffer(b)
+
+	t := reflect.TypeOf(extension.ExtensionType)
+
+	props := extensionProperties(extension)
+
+	// t is a pointer to a struct, pointer to basic type or a slice.
+	// Allocate a "field" to store the pointer/slice itself; the
+	// pointer/slice will be stored here. We pass
+	// the address of this field to props.dec.
+	// This passes a zero field and a *t and lets props.dec
+	// interpret it as a *struct{ x t }.
+	value := reflect.New(t).Elem()
+
+	for {
+		// Discard wire type and field number varint. It isn't needed.
+		if _, err := o.DecodeVarint(); err != nil {
+			return nil, err
+		}
+
+		if err := props.dec(o, props, toStructPointer(value.Addr())); err != nil {
+			return nil, err
+		}
+
+		if o.index >= len(o.buf) {
+			break
+		}
+	}
+	return value.Interface(), nil
+}
+
+// GetExtensions returns a slice of the extensions present in pb that are also listed in es.
+// The returned slice has the same length as es; missing extensions will appear as nil elements.
+func GetExtensions(pb Message, es []*ExtensionDesc) (extensions []interface{}, err error) {
+	extensions = make([]interface{}, len(es))
+	for i, e := range es {
+		extensions[i], err = GetExtension(pb, e)
+		if err == ErrMissingExtension {
+			err = nil
+		}
+		if err != nil {
+			return
+		}
+	}
+	return
+}
+
+// ExtensionDescs returns a new slice containing pb's extension descriptors, in undefined order.
+// For non-registered extensions, ExtensionDescs returns an incomplete descriptor containing
+// just the Field field, which defines the extension's field number.
+func ExtensionDescs(pb Message) ([]*ExtensionDesc, error) {
+	epb, ok := extendable(pb)
+	if !ok {
+		return nil, fmt.Errorf("proto: %T is not an extendable proto.Message", pb)
+	}
+	registeredExtensions := RegisteredExtensions(pb)
+
+	emap, mu := epb.extensionsRead()
+	if emap == nil {
+		return nil, nil
+	}
+	mu.Lock()
+	defer mu.Unlock()
+	extensions := make([]*ExtensionDesc, 0, len(emap))
+	for extid, e := range emap {
+		desc := e.desc
+		if desc == nil {
+			desc = registeredExtensions[extid]
+			if desc == nil {
+				desc = &ExtensionDesc{Field: extid}
+			}
+		}
+
+		extensions = append(extensions, desc)
+	}
+	return extensions, nil
+}
+
+// SetExtension sets the specified extension of pb to the specified value.
+func SetExtension(pb Message, extension *ExtensionDesc, value interface{}) error {
+	if epb, doki := pb.(extensionsBytes); doki {
+		ClearExtension(pb, extension)
+		ext := epb.GetExtensions()
+		et := reflect.TypeOf(extension.ExtensionType)
+		props := extensionProperties(extension)
+		p := NewBuffer(nil)
+		x := reflect.New(et)
+		x.Elem().Set(reflect.ValueOf(value))
+		if err := props.enc(p, props, toStructPointer(x)); err != nil {
+			return err
+		}
+		*ext = append(*ext, p.buf...)
+		return nil
+	}
+	epb, ok := extendable(pb)
+	if !ok {
+		return errors.New("proto: not an extendable proto")
+	}
+	if err := checkExtensionTypes(epb, extension); err != nil {
+		return err
+	}
+	typ := reflect.TypeOf(extension.ExtensionType)
+	if typ != reflect.TypeOf(value) {
+		return errors.New("proto: bad extension value type")
+	}
+	// nil extension values need to be caught early, because the
+	// encoder can't distinguish an ErrNil due to a nil extension
+	// from an ErrNil due to a missing field. Extensions are
+	// always optional, so the encoder would just swallow the error
+	// and drop all the extensions from the encoded message.
+	if reflect.ValueOf(value).IsNil() {
+		return fmt.Errorf("proto: SetExtension called with nil value of type %T", value)
+	}
+
+	extmap := epb.extensionsWrite()
+	extmap[extension.Field] = Extension{desc: extension, value: value}
+	return nil
+}
+
+// ClearAllExtensions clears all extensions from pb.
+func ClearAllExtensions(pb Message) {
+	if epb, doki := pb.(extensionsBytes); doki {
+		ext := epb.GetExtensions()
+		*ext = []byte{}
+		return
+	}
+	epb, ok := extendable(pb)
+	if !ok {
+		return
+	}
+	m := epb.extensionsWrite()
+	for k := range m {
+		delete(m, k)
+	}
+}
+
+// A global registry of extensions.
+// The generated code will register the generated descriptors by calling RegisterExtension.
+
+var extensionMaps = make(map[reflect.Type]map[int32]*ExtensionDesc)
+
+// RegisterExtension is called from the generated code.
+func RegisterExtension(desc *ExtensionDesc) {
+	st := reflect.TypeOf(desc.ExtendedType).Elem()
+	m := extensionMaps[st]
+	if m == nil {
+		m = make(map[int32]*ExtensionDesc)
+		extensionMaps[st] = m
+	}
+	if _, ok := m[desc.Field]; ok {
+		panic("proto: duplicate extension registered: " + st.String() + " " + strconv.Itoa(int(desc.Field)))
+	}
+	m[desc.Field] = desc
+}
+
+// RegisteredExtensions returns a map of the registered extensions of a
+// protocol buffer struct, indexed by the extension number.
+// The argument pb should be a nil pointer to the struct type.
+func RegisteredExtensions(pb Message) map[int32]*ExtensionDesc {
+	return extensionMaps[reflect.TypeOf(pb).Elem()]
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go b/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
new file mode 100644
index 0000000000..ea6478f009
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/extensions_gogo.go
@@ -0,0 +1,294 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"reflect"
+	"sort"
+	"strings"
+	"sync"
+)
+
+func GetBoolExtension(pb Message, extension *ExtensionDesc, ifnotset bool) bool {
+	if reflect.ValueOf(pb).IsNil() {
+		return ifnotset
+	}
+	value, err := GetExtension(pb, extension)
+	if err != nil {
+		return ifnotset
+	}
+	if value == nil {
+		return ifnotset
+	}
+	if value.(*bool) == nil {
+		return ifnotset
+	}
+	return *(value.(*bool))
+}
+
+func (this *Extension) Equal(that *Extension) bool {
+	return bytes.Equal(this.enc, that.enc)
+}
+
+func (this *Extension) Compare(that *Extension) int {
+	return bytes.Compare(this.enc, that.enc)
+}
+
+func SizeOfInternalExtension(m extendableProto) (n int) {
+	return SizeOfExtensionMap(m.extensionsWrite())
+}
+
+func SizeOfExtensionMap(m map[int32]Extension) (n int) {
+	return extensionsMapSize(m)
+}
+
+type sortableMapElem struct {
+	field int32
+	ext   Extension
+}
+
+func newSortableExtensionsFromMap(m map[int32]Extension) sortableExtensions {
+	s := make(sortableExtensions, 0, len(m))
+	for k, v := range m {
+		s = append(s, &sortableMapElem{field: k, ext: v})
+	}
+	return s
+}
+
+type sortableExtensions []*sortableMapElem
+
+func (this sortableExtensions) Len() int { return len(this) }
+
+func (this sortableExtensions) Swap(i, j int) { this[i], this[j] = this[j], this[i] }
+
+func (this sortableExtensions) Less(i, j int) bool { return this[i].field < this[j].field }
+
+func (this sortableExtensions) String() string {
+	sort.Sort(this)
+	ss := make([]string, len(this))
+	for i := range this {
+		ss[i] = fmt.Sprintf("%d: %v", this[i].field, this[i].ext)
+	}
+	return "map[" + strings.Join(ss, ",") + "]"
+}
+
+func StringFromInternalExtension(m extendableProto) string {
+	return StringFromExtensionsMap(m.extensionsWrite())
+}
+
+func StringFromExtensionsMap(m map[int32]Extension) string {
+	return newSortableExtensionsFromMap(m).String()
+}
+
+func StringFromExtensionsBytes(ext []byte) string {
+	m, err := BytesToExtensionsMap(ext)
+	if err != nil {
+		panic(err)
+	}
+	return StringFromExtensionsMap(m)
+}
+
+func EncodeInternalExtension(m extendableProto, data []byte) (n int, err error) {
+	return EncodeExtensionMap(m.extensionsWrite(), data)
+}
+
+func EncodeExtensionMap(m map[int32]Extension, data []byte) (n int, err error) {
+	if err := encodeExtensionsMap(m); err != nil {
+		return 0, err
+	}
+	keys := make([]int, 0, len(m))
+	for k := range m {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+	for _, k := range keys {
+		n += copy(data[n:], m[int32(k)].enc)
+	}
+	return n, nil
+}
+
+func GetRawExtension(m map[int32]Extension, id int32) ([]byte, error) {
+	if m[id].value == nil || m[id].desc == nil {
+		return m[id].enc, nil
+	}
+	if err := encodeExtensionsMap(m); err != nil {
+		return nil, err
+	}
+	return m[id].enc, nil
+}
+
+func size(buf []byte, wire int) (int, error) {
+	switch wire {
+	case WireVarint:
+		_, n := DecodeVarint(buf)
+		return n, nil
+	case WireFixed64:
+		return 8, nil
+	case WireBytes:
+		v, n := DecodeVarint(buf)
+		return int(v) + n, nil
+	case WireFixed32:
+		return 4, nil
+	case WireStartGroup:
+		offset := 0
+		for {
+			u, n := DecodeVarint(buf[offset:])
+			fwire := int(u & 0x7)
+			offset += n
+			if fwire == WireEndGroup {
+				return offset, nil
+			}
+			s, err := size(buf[offset:], wire)
+			if err != nil {
+				return 0, err
+			}
+			offset += s
+		}
+	}
+	return 0, fmt.Errorf("proto: can't get size for unknown wire type %d", wire)
+}
+
+func BytesToExtensionsMap(buf []byte) (map[int32]Extension, error) {
+	m := make(map[int32]Extension)
+	i := 0
+	for i < len(buf) {
+		tag, n := DecodeVarint(buf[i:])
+		if n <= 0 {
+			return nil, fmt.Errorf("unable to decode varint")
+		}
+		fieldNum := int32(tag >> 3)
+		wireType := int(tag & 0x7)
+		l, err := size(buf[i+n:], wireType)
+		if err != nil {
+			return nil, err
+		}
+		end := i + int(l) + n
+		m[int32(fieldNum)] = Extension{enc: buf[i:end]}
+		i = end
+	}
+	return m, nil
+}
+
+func NewExtension(e []byte) Extension {
+	ee := Extension{enc: make([]byte, len(e))}
+	copy(ee.enc, e)
+	return ee
+}
+
+func AppendExtension(e Message, tag int32, buf []byte) {
+	if ee, eok := e.(extensionsBytes); eok {
+		ext := ee.GetExtensions()
+		*ext = append(*ext, buf...)
+		return
+	}
+	if ee, eok := e.(extendableProto); eok {
+		m := ee.extensionsWrite()
+		ext := m[int32(tag)] // may be missing
+		ext.enc = append(ext.enc, buf...)
+		m[int32(tag)] = ext
+	}
+}
+
+func encodeExtension(e *Extension) error {
+	if e.value == nil || e.desc == nil {
+		// Extension is only in its encoded form.
+		return nil
+	}
+	// We don't skip extensions that have an encoded form set,
+	// because the extension value may have been mutated after
+	// the last time this function was called.
+
+	et := reflect.TypeOf(e.desc.ExtensionType)
+	props := extensionProperties(e.desc)
+
+	p := NewBuffer(nil)
+	// If e.value has type T, the encoder expects a *struct{ X T }.
+	// Pass a *T with a zero field and hope it all works out.
+	x := reflect.New(et)
+	x.Elem().Set(reflect.ValueOf(e.value))
+	if err := props.enc(p, props, toStructPointer(x)); err != nil {
+		return err
+	}
+	e.enc = p.buf
+	return nil
+}
+
+func (this Extension) GoString() string {
+	if this.enc == nil {
+		if err := encodeExtension(&this); err != nil {
+			panic(err)
+		}
+	}
+	return fmt.Sprintf("proto.NewExtension(%#v)", this.enc)
+}
+
+func SetUnsafeExtension(pb Message, fieldNum int32, value interface{}) error {
+	typ := reflect.TypeOf(pb).Elem()
+	ext, ok := extensionMaps[typ]
+	if !ok {
+		return fmt.Errorf("proto: bad extended type; %s is not extendable", typ.String())
+	}
+	desc, ok := ext[fieldNum]
+	if !ok {
+		return errors.New("proto: bad extension number; not in declared ranges")
+	}
+	return SetExtension(pb, desc, value)
+}
+
+func GetUnsafeExtension(pb Message, fieldNum int32) (interface{}, error) {
+	typ := reflect.TypeOf(pb).Elem()
+	ext, ok := extensionMaps[typ]
+	if !ok {
+		return nil, fmt.Errorf("proto: bad extended type; %s is not extendable", typ.String())
+	}
+	desc, ok := ext[fieldNum]
+	if !ok {
+		return nil, fmt.Errorf("unregistered field number %d", fieldNum)
+	}
+	return GetExtension(pb, desc)
+}
+
+func NewUnsafeXXX_InternalExtensions(m map[int32]Extension) XXX_InternalExtensions {
+	x := &XXX_InternalExtensions{
+		p: new(struct {
+			mu           sync.Mutex
+			extensionMap map[int32]Extension
+		}),
+	}
+	x.p.extensionMap = m
+	return *x
+}
+
+func GetUnsafeExtensionsMap(extendable Message) map[int32]Extension {
+	pb := extendable.(extendableProto)
+	return pb.extensionsWrite()
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/lib.go b/vendor/github.com/gogo/protobuf/proto/lib.go
new file mode 100644
index 0000000000..c98d73da49
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/lib.go
@@ -0,0 +1,897 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+/*
+Package proto converts data structures to and from the wire format of
+protocol buffers.  It works in concert with the Go source code generated
+for .proto files by the protocol compiler.
+
+A summary of the properties of the protocol buffer interface
+for a protocol buffer variable v:
+
+  - Names are turned from camel_case to CamelCase for export.
+  - There are no methods on v to set fields; just treat
+	them as structure fields.
+  - There are getters that return a field's value if set,
+	and return the field's default value if unset.
+	The getters work even if the receiver is a nil message.
+  - The zero value for a struct is its correct initialization state.
+	All desired fields must be set before marshaling.
+  - A Reset() method will restore a protobuf struct to its zero state.
+  - Non-repeated fields are pointers to the values; nil means unset.
+	That is, optional or required field int32 f becomes F *int32.
+  - Repeated fields are slices.
+  - Helper functions are available to aid the setting of fields.
+	msg.Foo = proto.String("hello") // set field
+  - Constants are defined to hold the default values of all fields that
+	have them.  They have the form Default_StructName_FieldName.
+	Because the getter methods handle defaulted values,
+	direct use of these constants should be rare.
+  - Enums are given type names and maps from names to values.
+	Enum values are prefixed by the enclosing message's name, or by the
+	enum's type name if it is a top-level enum. Enum types have a String
+	method, and a Enum method to assist in message construction.
+  - Nested messages, groups and enums have type names prefixed with the name of
+	the surrounding message type.
+  - Extensions are given descriptor names that start with E_,
+	followed by an underscore-delimited list of the nested messages
+	that contain it (if any) followed by the CamelCased name of the
+	extension field itself.  HasExtension, ClearExtension, GetExtension
+	and SetExtension are functions for manipulating extensions.
+  - Oneof field sets are given a single field in their message,
+	with distinguished wrapper types for each possible field value.
+  - Marshal and Unmarshal are functions to encode and decode the wire format.
+
+When the .proto file specifies `syntax="proto3"`, there are some differences:
+
+  - Non-repeated fields of non-message type are values instead of pointers.
+  - Enum types do not get an Enum method.
+
+The simplest way to describe this is to see an example.
+Given file test.proto, containing
+
+	package example;
+
+	enum FOO { X = 17; }
+
+	message Test {
+	  required string label = 1;
+	  optional int32 type = 2 [default=77];
+	  repeated int64 reps = 3;
+	  optional group OptionalGroup = 4 {
+	    required string RequiredField = 5;
+	  }
+	  oneof union {
+	    int32 number = 6;
+	    string name = 7;
+	  }
+	}
+
+The resulting file, test.pb.go, is:
+
+	package example
+
+	import proto "github.com/gogo/protobuf/proto"
+	import math "math"
+
+	type FOO int32
+	const (
+		FOO_X FOO = 17
+	)
+	var FOO_name = map[int32]string{
+		17: "X",
+	}
+	var FOO_value = map[string]int32{
+		"X": 17,
+	}
+
+	func (x FOO) Enum() *FOO {
+		p := new(FOO)
+		*p = x
+		return p
+	}
+	func (x FOO) String() string {
+		return proto.EnumName(FOO_name, int32(x))
+	}
+	func (x *FOO) UnmarshalJSON(data []byte) error {
+		value, err := proto.UnmarshalJSONEnum(FOO_value, data)
+		if err != nil {
+			return err
+		}
+		*x = FOO(value)
+		return nil
+	}
+
+	type Test struct {
+		Label         *string             `protobuf:"bytes,1,req,name=label" json:"label,omitempty"`
+		Type          *int32              `protobuf:"varint,2,opt,name=type,def=77" json:"type,omitempty"`
+		Reps          []int64             `protobuf:"varint,3,rep,name=reps" json:"reps,omitempty"`
+		Optionalgroup *Test_OptionalGroup `protobuf:"group,4,opt,name=OptionalGroup" json:"optionalgroup,omitempty"`
+		// Types that are valid to be assigned to Union:
+		//	*Test_Number
+		//	*Test_Name
+		Union            isTest_Union `protobuf_oneof:"union"`
+		XXX_unrecognized []byte       `json:"-"`
+	}
+	func (m *Test) Reset()         { *m = Test{} }
+	func (m *Test) String() string { return proto.CompactTextString(m) }
+	func (*Test) ProtoMessage() {}
+
+	type isTest_Union interface {
+		isTest_Union()
+	}
+
+	type Test_Number struct {
+		Number int32 `protobuf:"varint,6,opt,name=number"`
+	}
+	type Test_Name struct {
+		Name string `protobuf:"bytes,7,opt,name=name"`
+	}
+
+	func (*Test_Number) isTest_Union() {}
+	func (*Test_Name) isTest_Union()   {}
+
+	func (m *Test) GetUnion() isTest_Union {
+		if m != nil {
+			return m.Union
+		}
+		return nil
+	}
+	const Default_Test_Type int32 = 77
+
+	func (m *Test) GetLabel() string {
+		if m != nil && m.Label != nil {
+			return *m.Label
+		}
+		return ""
+	}
+
+	func (m *Test) GetType() int32 {
+		if m != nil && m.Type != nil {
+			return *m.Type
+		}
+		return Default_Test_Type
+	}
+
+	func (m *Test) GetOptionalgroup() *Test_OptionalGroup {
+		if m != nil {
+			return m.Optionalgroup
+		}
+		return nil
+	}
+
+	type Test_OptionalGroup struct {
+		RequiredField *string `protobuf:"bytes,5,req" json:"RequiredField,omitempty"`
+	}
+	func (m *Test_OptionalGroup) Reset()         { *m = Test_OptionalGroup{} }
+	func (m *Test_OptionalGroup) String() string { return proto.CompactTextString(m) }
+
+	func (m *Test_OptionalGroup) GetRequiredField() string {
+		if m != nil && m.RequiredField != nil {
+			return *m.RequiredField
+		}
+		return ""
+	}
+
+	func (m *Test) GetNumber() int32 {
+		if x, ok := m.GetUnion().(*Test_Number); ok {
+			return x.Number
+		}
+		return 0
+	}
+
+	func (m *Test) GetName() string {
+		if x, ok := m.GetUnion().(*Test_Name); ok {
+			return x.Name
+		}
+		return ""
+	}
+
+	func init() {
+		proto.RegisterEnum("example.FOO", FOO_name, FOO_value)
+	}
+
+To create and play with a Test object:
+
+	package main
+
+	import (
+		"log"
+
+		"github.com/gogo/protobuf/proto"
+		pb "./example.pb"
+	)
+
+	func main() {
+		test := &pb.Test{
+			Label: proto.String("hello"),
+			Type:  proto.Int32(17),
+			Reps:  []int64{1, 2, 3},
+			Optionalgroup: &pb.Test_OptionalGroup{
+				RequiredField: proto.String("good bye"),
+			},
+			Union: &pb.Test_Name{"fred"},
+		}
+		data, err := proto.Marshal(test)
+		if err != nil {
+			log.Fatal("marshaling error: ", err)
+		}
+		newTest := &pb.Test{}
+		err = proto.Unmarshal(data, newTest)
+		if err != nil {
+			log.Fatal("unmarshaling error: ", err)
+		}
+		// Now test and newTest contain the same data.
+		if test.GetLabel() != newTest.GetLabel() {
+			log.Fatalf("data mismatch %q != %q", test.GetLabel(), newTest.GetLabel())
+		}
+		// Use a type switch to determine which oneof was set.
+		switch u := test.Union.(type) {
+		case *pb.Test_Number: // u.Number contains the number.
+		case *pb.Test_Name: // u.Name contains the string.
+		}
+		// etc.
+	}
+*/
+package proto
+
+import (
+	"encoding/json"
+	"fmt"
+	"log"
+	"reflect"
+	"sort"
+	"strconv"
+	"sync"
+)
+
+// Message is implemented by generated protocol buffer messages.
+type Message interface {
+	Reset()
+	String() string
+	ProtoMessage()
+}
+
+// Stats records allocation details about the protocol buffer encoders
+// and decoders.  Useful for tuning the library itself.
+type Stats struct {
+	Emalloc uint64 // mallocs in encode
+	Dmalloc uint64 // mallocs in decode
+	Encode  uint64 // number of encodes
+	Decode  uint64 // number of decodes
+	Chit    uint64 // number of cache hits
+	Cmiss   uint64 // number of cache misses
+	Size    uint64 // number of sizes
+}
+
+// Set to true to enable stats collection.
+const collectStats = false
+
+var stats Stats
+
+// GetStats returns a copy of the global Stats structure.
+func GetStats() Stats { return stats }
+
+// A Buffer is a buffer manager for marshaling and unmarshaling
+// protocol buffers.  It may be reused between invocations to
+// reduce memory usage.  It is not necessary to use a Buffer;
+// the global functions Marshal and Unmarshal create a
+// temporary Buffer and are fine for most applications.
+type Buffer struct {
+	buf   []byte // encode/decode byte stream
+	index int    // read point
+
+	// pools of basic types to amortize allocation.
+	bools   []bool
+	uint32s []uint32
+	uint64s []uint64
+
+	// extra pools, only used with pointer_reflect.go
+	int32s   []int32
+	int64s   []int64
+	float32s []float32
+	float64s []float64
+}
+
+// NewBuffer allocates a new Buffer and initializes its internal data to
+// the contents of the argument slice.
+func NewBuffer(e []byte) *Buffer {
+	return &Buffer{buf: e}
+}
+
+// Reset resets the Buffer, ready for marshaling a new protocol buffer.
+func (p *Buffer) Reset() {
+	p.buf = p.buf[0:0] // for reading/writing
+	p.index = 0        // for reading
+}
+
+// SetBuf replaces the internal buffer with the slice,
+// ready for unmarshaling the contents of the slice.
+func (p *Buffer) SetBuf(s []byte) {
+	p.buf = s
+	p.index = 0
+}
+
+// Bytes returns the contents of the Buffer.
+func (p *Buffer) Bytes() []byte { return p.buf }
+
+/*
+ * Helper routines for simplifying the creation of optional fields of basic type.
+ */
+
+// Bool is a helper routine that allocates a new bool value
+// to store v and returns a pointer to it.
+func Bool(v bool) *bool {
+	return &v
+}
+
+// Int32 is a helper routine that allocates a new int32 value
+// to store v and returns a pointer to it.
+func Int32(v int32) *int32 {
+	return &v
+}
+
+// Int is a helper routine that allocates a new int32 value
+// to store v and returns a pointer to it, but unlike Int32
+// its argument value is an int.
+func Int(v int) *int32 {
+	p := new(int32)
+	*p = int32(v)
+	return p
+}
+
+// Int64 is a helper routine that allocates a new int64 value
+// to store v and returns a pointer to it.
+func Int64(v int64) *int64 {
+	return &v
+}
+
+// Float32 is a helper routine that allocates a new float32 value
+// to store v and returns a pointer to it.
+func Float32(v float32) *float32 {
+	return &v
+}
+
+// Float64 is a helper routine that allocates a new float64 value
+// to store v and returns a pointer to it.
+func Float64(v float64) *float64 {
+	return &v
+}
+
+// Uint32 is a helper routine that allocates a new uint32 value
+// to store v and returns a pointer to it.
+func Uint32(v uint32) *uint32 {
+	return &v
+}
+
+// Uint64 is a helper routine that allocates a new uint64 value
+// to store v and returns a pointer to it.
+func Uint64(v uint64) *uint64 {
+	return &v
+}
+
+// String is a helper routine that allocates a new string value
+// to store v and returns a pointer to it.
+func String(v string) *string {
+	return &v
+}
+
+// EnumName is a helper function to simplify printing protocol buffer enums
+// by name.  Given an enum map and a value, it returns a useful string.
+func EnumName(m map[int32]string, v int32) string {
+	s, ok := m[v]
+	if ok {
+		return s
+	}
+	return strconv.Itoa(int(v))
+}
+
+// UnmarshalJSONEnum is a helper function to simplify recovering enum int values
+// from their JSON-encoded representation. Given a map from the enum's symbolic
+// names to its int values, and a byte buffer containing the JSON-encoded
+// value, it returns an int32 that can be cast to the enum type by the caller.
+//
+// The function can deal with both JSON representations, numeric and symbolic.
+func UnmarshalJSONEnum(m map[string]int32, data []byte, enumName string) (int32, error) {
+	if data[0] == '"' {
+		// New style: enums are strings.
+		var repr string
+		if err := json.Unmarshal(data, &repr); err != nil {
+			return -1, err
+		}
+		val, ok := m[repr]
+		if !ok {
+			return 0, fmt.Errorf("unrecognized enum %s value %q", enumName, repr)
+		}
+		return val, nil
+	}
+	// Old style: enums are ints.
+	var val int32
+	if err := json.Unmarshal(data, &val); err != nil {
+		return 0, fmt.Errorf("cannot unmarshal %#q into enum %s", data, enumName)
+	}
+	return val, nil
+}
+
+// DebugPrint dumps the encoded data in b in a debugging format with a header
+// including the string s. Used in testing but made available for general debugging.
+func (p *Buffer) DebugPrint(s string, b []byte) {
+	var u uint64
+
+	obuf := p.buf
+	sindex := p.index
+	p.buf = b
+	p.index = 0
+	depth := 0
+
+	fmt.Printf("\n--- %s ---\n", s)
+
+out:
+	for {
+		for i := 0; i < depth; i++ {
+			fmt.Print("  ")
+		}
+
+		index := p.index
+		if index == len(p.buf) {
+			break
+		}
+
+		op, err := p.DecodeVarint()
+		if err != nil {
+			fmt.Printf("%3d: fetching op err %v\n", index, err)
+			break out
+		}
+		tag := op >> 3
+		wire := op & 7
+
+		switch wire {
+		default:
+			fmt.Printf("%3d: t=%3d unknown wire=%d\n",
+				index, tag, wire)
+			break out
+
+		case WireBytes:
+			var r []byte
+
+			r, err = p.DecodeRawBytes(false)
+			if err != nil {
+				break out
+			}
+			fmt.Printf("%3d: t=%3d bytes [%d]", index, tag, len(r))
+			if len(r) <= 6 {
+				for i := 0; i < len(r); i++ {
+					fmt.Printf(" %.2x", r[i])
+				}
+			} else {
+				for i := 0; i < 3; i++ {
+					fmt.Printf(" %.2x", r[i])
+				}
+				fmt.Printf(" ..")
+				for i := len(r) - 3; i < len(r); i++ {
+					fmt.Printf(" %.2x", r[i])
+				}
+			}
+			fmt.Printf("\n")
+
+		case WireFixed32:
+			u, err = p.DecodeFixed32()
+			if err != nil {
+				fmt.Printf("%3d: t=%3d fix32 err %v\n", index, tag, err)
+				break out
+			}
+			fmt.Printf("%3d: t=%3d fix32 %d\n", index, tag, u)
+
+		case WireFixed64:
+			u, err = p.DecodeFixed64()
+			if err != nil {
+				fmt.Printf("%3d: t=%3d fix64 err %v\n", index, tag, err)
+				break out
+			}
+			fmt.Printf("%3d: t=%3d fix64 %d\n", index, tag, u)
+
+		case WireVarint:
+			u, err = p.DecodeVarint()
+			if err != nil {
+				fmt.Printf("%3d: t=%3d varint err %v\n", index, tag, err)
+				break out
+			}
+			fmt.Printf("%3d: t=%3d varint %d\n", index, tag, u)
+
+		case WireStartGroup:
+			fmt.Printf("%3d: t=%3d start\n", index, tag)
+			depth++
+
+		case WireEndGroup:
+			depth--
+			fmt.Printf("%3d: t=%3d end\n", index, tag)
+		}
+	}
+
+	if depth != 0 {
+		fmt.Printf("%3d: start-end not balanced %d\n", p.index, depth)
+	}
+	fmt.Printf("\n")
+
+	p.buf = obuf
+	p.index = sindex
+}
+
+// SetDefaults sets unset protocol buffer fields to their default values.
+// It only modifies fields that are both unset and have defined defaults.
+// It recursively sets default values in any non-nil sub-messages.
+func SetDefaults(pb Message) {
+	setDefaults(reflect.ValueOf(pb), true, false)
+}
+
+// v is a pointer to a struct.
+func setDefaults(v reflect.Value, recur, zeros bool) {
+	v = v.Elem()
+
+	defaultMu.RLock()
+	dm, ok := defaults[v.Type()]
+	defaultMu.RUnlock()
+	if !ok {
+		dm = buildDefaultMessage(v.Type())
+		defaultMu.Lock()
+		defaults[v.Type()] = dm
+		defaultMu.Unlock()
+	}
+
+	for _, sf := range dm.scalars {
+		f := v.Field(sf.index)
+		if !f.IsNil() {
+			// field already set
+			continue
+		}
+		dv := sf.value
+		if dv == nil && !zeros {
+			// no explicit default, and don't want to set zeros
+			continue
+		}
+		fptr := f.Addr().Interface() // **T
+		// TODO: Consider batching the allocations we do here.
+		switch sf.kind {
+		case reflect.Bool:
+			b := new(bool)
+			if dv != nil {
+				*b = dv.(bool)
+			}
+			*(fptr.(**bool)) = b
+		case reflect.Float32:
+			f := new(float32)
+			if dv != nil {
+				*f = dv.(float32)
+			}
+			*(fptr.(**float32)) = f
+		case reflect.Float64:
+			f := new(float64)
+			if dv != nil {
+				*f = dv.(float64)
+			}
+			*(fptr.(**float64)) = f
+		case reflect.Int32:
+			// might be an enum
+			if ft := f.Type(); ft != int32PtrType {
+				// enum
+				f.Set(reflect.New(ft.Elem()))
+				if dv != nil {
+					f.Elem().SetInt(int64(dv.(int32)))
+				}
+			} else {
+				// int32 field
+				i := new(int32)
+				if dv != nil {
+					*i = dv.(int32)
+				}
+				*(fptr.(**int32)) = i
+			}
+		case reflect.Int64:
+			i := new(int64)
+			if dv != nil {
+				*i = dv.(int64)
+			}
+			*(fptr.(**int64)) = i
+		case reflect.String:
+			s := new(string)
+			if dv != nil {
+				*s = dv.(string)
+			}
+			*(fptr.(**string)) = s
+		case reflect.Uint8:
+			// exceptional case: []byte
+			var b []byte
+			if dv != nil {
+				db := dv.([]byte)
+				b = make([]byte, len(db))
+				copy(b, db)
+			} else {
+				b = []byte{}
+			}
+			*(fptr.(*[]byte)) = b
+		case reflect.Uint32:
+			u := new(uint32)
+			if dv != nil {
+				*u = dv.(uint32)
+			}
+			*(fptr.(**uint32)) = u
+		case reflect.Uint64:
+			u := new(uint64)
+			if dv != nil {
+				*u = dv.(uint64)
+			}
+			*(fptr.(**uint64)) = u
+		default:
+			log.Printf("proto: can't set default for field %v (sf.kind=%v)", f, sf.kind)
+		}
+	}
+
+	for _, ni := range dm.nested {
+		f := v.Field(ni)
+		// f is *T or []*T or map[T]*T
+		switch f.Kind() {
+		case reflect.Ptr:
+			if f.IsNil() {
+				continue
+			}
+			setDefaults(f, recur, zeros)
+
+		case reflect.Slice:
+			for i := 0; i < f.Len(); i++ {
+				e := f.Index(i)
+				if e.IsNil() {
+					continue
+				}
+				setDefaults(e, recur, zeros)
+			}
+
+		case reflect.Map:
+			for _, k := range f.MapKeys() {
+				e := f.MapIndex(k)
+				if e.IsNil() {
+					continue
+				}
+				setDefaults(e, recur, zeros)
+			}
+		}
+	}
+}
+
+var (
+	// defaults maps a protocol buffer struct type to a slice of the fields,
+	// with its scalar fields set to their proto-declared non-zero default values.
+	defaultMu sync.RWMutex
+	defaults  = make(map[reflect.Type]defaultMessage)
+
+	int32PtrType = reflect.TypeOf((*int32)(nil))
+)
+
+// defaultMessage represents information about the default values of a message.
+type defaultMessage struct {
+	scalars []scalarField
+	nested  []int // struct field index of nested messages
+}
+
+type scalarField struct {
+	index int          // struct field index
+	kind  reflect.Kind // element type (the T in *T or []T)
+	value interface{}  // the proto-declared default value, or nil
+}
+
+// t is a struct type.
+func buildDefaultMessage(t reflect.Type) (dm defaultMessage) {
+	sprop := GetProperties(t)
+	for _, prop := range sprop.Prop {
+		fi, ok := sprop.decoderTags.get(prop.Tag)
+		if !ok {
+			// XXX_unrecognized
+			continue
+		}
+		ft := t.Field(fi).Type
+
+		sf, nested, err := fieldDefault(ft, prop)
+		switch {
+		case err != nil:
+			log.Print(err)
+		case nested:
+			dm.nested = append(dm.nested, fi)
+		case sf != nil:
+			sf.index = fi
+			dm.scalars = append(dm.scalars, *sf)
+		}
+	}
+
+	return dm
+}
+
+// fieldDefault returns the scalarField for field type ft.
+// sf will be nil if the field can not have a default.
+// nestedMessage will be true if this is a nested message.
+// Note that sf.index is not set on return.
+func fieldDefault(ft reflect.Type, prop *Properties) (sf *scalarField, nestedMessage bool, err error) {
+	var canHaveDefault bool
+	switch ft.Kind() {
+	case reflect.Ptr:
+		if ft.Elem().Kind() == reflect.Struct {
+			nestedMessage = true
+		} else {
+			canHaveDefault = true // proto2 scalar field
+		}
+
+	case reflect.Slice:
+		switch ft.Elem().Kind() {
+		case reflect.Ptr:
+			nestedMessage = true // repeated message
+		case reflect.Uint8:
+			canHaveDefault = true // bytes field
+		}
+
+	case reflect.Map:
+		if ft.Elem().Kind() == reflect.Ptr {
+			nestedMessage = true // map with message values
+		}
+	}
+
+	if !canHaveDefault {
+		if nestedMessage {
+			return nil, true, nil
+		}
+		return nil, false, nil
+	}
+
+	// We now know that ft is a pointer or slice.
+	sf = &scalarField{kind: ft.Elem().Kind()}
+
+	// scalar fields without defaults
+	if !prop.HasDefault {
+		return sf, false, nil
+	}
+
+	// a scalar field: either *T or []byte
+	switch ft.Elem().Kind() {
+	case reflect.Bool:
+		x, err := strconv.ParseBool(prop.Default)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default bool %q: %v", prop.Default, err)
+		}
+		sf.value = x
+	case reflect.Float32:
+		x, err := strconv.ParseFloat(prop.Default, 32)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default float32 %q: %v", prop.Default, err)
+		}
+		sf.value = float32(x)
+	case reflect.Float64:
+		x, err := strconv.ParseFloat(prop.Default, 64)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default float64 %q: %v", prop.Default, err)
+		}
+		sf.value = x
+	case reflect.Int32:
+		x, err := strconv.ParseInt(prop.Default, 10, 32)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default int32 %q: %v", prop.Default, err)
+		}
+		sf.value = int32(x)
+	case reflect.Int64:
+		x, err := strconv.ParseInt(prop.Default, 10, 64)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default int64 %q: %v", prop.Default, err)
+		}
+		sf.value = x
+	case reflect.String:
+		sf.value = prop.Default
+	case reflect.Uint8:
+		// []byte (not *uint8)
+		sf.value = []byte(prop.Default)
+	case reflect.Uint32:
+		x, err := strconv.ParseUint(prop.Default, 10, 32)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default uint32 %q: %v", prop.Default, err)
+		}
+		sf.value = uint32(x)
+	case reflect.Uint64:
+		x, err := strconv.ParseUint(prop.Default, 10, 64)
+		if err != nil {
+			return nil, false, fmt.Errorf("proto: bad default uint64 %q: %v", prop.Default, err)
+		}
+		sf.value = x
+	default:
+		return nil, false, fmt.Errorf("proto: unhandled def kind %v", ft.Elem().Kind())
+	}
+
+	return sf, false, nil
+}
+
+// Map fields may have key types of non-float scalars, strings and enums.
+// The easiest way to sort them in some deterministic order is to use fmt.
+// If this turns out to be inefficient we can always consider other options,
+// such as doing a Schwartzian transform.
+
+func mapKeys(vs []reflect.Value) sort.Interface {
+	s := mapKeySorter{
+		vs: vs,
+		// default Less function: textual comparison
+		less: func(a, b reflect.Value) bool {
+			return fmt.Sprint(a.Interface()) < fmt.Sprint(b.Interface())
+		},
+	}
+
+	// Type specialization per https://developers.google.com/protocol-buffers/docs/proto#maps;
+	// numeric keys are sorted numerically.
+	if len(vs) == 0 {
+		return s
+	}
+	switch vs[0].Kind() {
+	case reflect.Int32, reflect.Int64:
+		s.less = func(a, b reflect.Value) bool { return a.Int() < b.Int() }
+	case reflect.Uint32, reflect.Uint64:
+		s.less = func(a, b reflect.Value) bool { return a.Uint() < b.Uint() }
+	}
+
+	return s
+}
+
+type mapKeySorter struct {
+	vs   []reflect.Value
+	less func(a, b reflect.Value) bool
+}
+
+func (s mapKeySorter) Len() int      { return len(s.vs) }
+func (s mapKeySorter) Swap(i, j int) { s.vs[i], s.vs[j] = s.vs[j], s.vs[i] }
+func (s mapKeySorter) Less(i, j int) bool {
+	return s.less(s.vs[i], s.vs[j])
+}
+
+// isProto3Zero reports whether v is a zero proto3 value.
+func isProto3Zero(v reflect.Value) bool {
+	switch v.Kind() {
+	case reflect.Bool:
+		return !v.Bool()
+	case reflect.Int32, reflect.Int64:
+		return v.Int() == 0
+	case reflect.Uint32, reflect.Uint64:
+		return v.Uint() == 0
+	case reflect.Float32, reflect.Float64:
+		return v.Float() == 0
+	case reflect.String:
+		return v.String() == ""
+	}
+	return false
+}
+
+// ProtoPackageIsVersion2 is referenced from generated protocol buffer files
+// to assert that that code is compatible with this version of the proto package.
+const GoGoProtoPackageIsVersion2 = true
+
+// ProtoPackageIsVersion1 is referenced from generated protocol buffer files
+// to assert that that code is compatible with this version of the proto package.
+const GoGoProtoPackageIsVersion1 = true
diff --git a/vendor/github.com/gogo/protobuf/proto/lib_gogo.go b/vendor/github.com/gogo/protobuf/proto/lib_gogo.go
new file mode 100644
index 0000000000..4b4f7c909e
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/lib_gogo.go
@@ -0,0 +1,42 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"encoding/json"
+	"strconv"
+)
+
+func MarshalJSONEnum(m map[int32]string, value int32) ([]byte, error) {
+	s, ok := m[value]
+	if !ok {
+		s = strconv.Itoa(int(value))
+	}
+	return json.Marshal(s)
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/message_set.go b/vendor/github.com/gogo/protobuf/proto/message_set.go
new file mode 100644
index 0000000000..fd982decd6
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/message_set.go
@@ -0,0 +1,311 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+/*
+ * Support for message sets.
+ */
+
+import (
+	"bytes"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"reflect"
+	"sort"
+)
+
+// errNoMessageTypeID occurs when a protocol buffer does not have a message type ID.
+// A message type ID is required for storing a protocol buffer in a message set.
+var errNoMessageTypeID = errors.New("proto does not have a message type ID")
+
+// The first two types (_MessageSet_Item and messageSet)
+// model what the protocol compiler produces for the following protocol message:
+//   message MessageSet {
+//     repeated group Item = 1 {
+//       required int32 type_id = 2;
+//       required string message = 3;
+//     };
+//   }
+// That is the MessageSet wire format. We can't use a proto to generate these
+// because that would introduce a circular dependency between it and this package.
+
+type _MessageSet_Item struct {
+	TypeId  *int32 `protobuf:"varint,2,req,name=type_id"`
+	Message []byte `protobuf:"bytes,3,req,name=message"`
+}
+
+type messageSet struct {
+	Item             []*_MessageSet_Item `protobuf:"group,1,rep"`
+	XXX_unrecognized []byte
+	// TODO: caching?
+}
+
+// Make sure messageSet is a Message.
+var _ Message = (*messageSet)(nil)
+
+// messageTypeIder is an interface satisfied by a protocol buffer type
+// that may be stored in a MessageSet.
+type messageTypeIder interface {
+	MessageTypeId() int32
+}
+
+func (ms *messageSet) find(pb Message) *_MessageSet_Item {
+	mti, ok := pb.(messageTypeIder)
+	if !ok {
+		return nil
+	}
+	id := mti.MessageTypeId()
+	for _, item := range ms.Item {
+		if *item.TypeId == id {
+			return item
+		}
+	}
+	return nil
+}
+
+func (ms *messageSet) Has(pb Message) bool {
+	if ms.find(pb) != nil {
+		return true
+	}
+	return false
+}
+
+func (ms *messageSet) Unmarshal(pb Message) error {
+	if item := ms.find(pb); item != nil {
+		return Unmarshal(item.Message, pb)
+	}
+	if _, ok := pb.(messageTypeIder); !ok {
+		return errNoMessageTypeID
+	}
+	return nil // TODO: return error instead?
+}
+
+func (ms *messageSet) Marshal(pb Message) error {
+	msg, err := Marshal(pb)
+	if err != nil {
+		return err
+	}
+	if item := ms.find(pb); item != nil {
+		// reuse existing item
+		item.Message = msg
+		return nil
+	}
+
+	mti, ok := pb.(messageTypeIder)
+	if !ok {
+		return errNoMessageTypeID
+	}
+
+	mtid := mti.MessageTypeId()
+	ms.Item = append(ms.Item, &_MessageSet_Item{
+		TypeId:  &mtid,
+		Message: msg,
+	})
+	return nil
+}
+
+func (ms *messageSet) Reset()         { *ms = messageSet{} }
+func (ms *messageSet) String() string { return CompactTextString(ms) }
+func (*messageSet) ProtoMessage()     {}
+
+// Support for the message_set_wire_format message option.
+
+func skipVarint(buf []byte) []byte {
+	i := 0
+	for ; buf[i]&0x80 != 0; i++ {
+	}
+	return buf[i+1:]
+}
+
+// MarshalMessageSet encodes the extension map represented by m in the message set wire format.
+// It is called by generated Marshal methods on protocol buffer messages with the message_set_wire_format option.
+func MarshalMessageSet(exts interface{}) ([]byte, error) {
+	var m map[int32]Extension
+	switch exts := exts.(type) {
+	case *XXX_InternalExtensions:
+		if err := encodeExtensions(exts); err != nil {
+			return nil, err
+		}
+		m, _ = exts.extensionsRead()
+	case map[int32]Extension:
+		if err := encodeExtensionsMap(exts); err != nil {
+			return nil, err
+		}
+		m = exts
+	default:
+		return nil, errors.New("proto: not an extension map")
+	}
+
+	// Sort extension IDs to provide a deterministic encoding.
+	// See also enc_map in encode.go.
+	ids := make([]int, 0, len(m))
+	for id := range m {
+		ids = append(ids, int(id))
+	}
+	sort.Ints(ids)
+
+	ms := &messageSet{Item: make([]*_MessageSet_Item, 0, len(m))}
+	for _, id := range ids {
+		e := m[int32(id)]
+		// Remove the wire type and field number varint, as well as the length varint.
+		msg := skipVarint(skipVarint(e.enc))
+
+		ms.Item = append(ms.Item, &_MessageSet_Item{
+			TypeId:  Int32(int32(id)),
+			Message: msg,
+		})
+	}
+	return Marshal(ms)
+}
+
+// UnmarshalMessageSet decodes the extension map encoded in buf in the message set wire format.
+// It is called by generated Unmarshal methods on protocol buffer messages with the message_set_wire_format option.
+func UnmarshalMessageSet(buf []byte, exts interface{}) error {
+	var m map[int32]Extension
+	switch exts := exts.(type) {
+	case *XXX_InternalExtensions:
+		m = exts.extensionsWrite()
+	case map[int32]Extension:
+		m = exts
+	default:
+		return errors.New("proto: not an extension map")
+	}
+
+	ms := new(messageSet)
+	if err := Unmarshal(buf, ms); err != nil {
+		return err
+	}
+	for _, item := range ms.Item {
+		id := *item.TypeId
+		msg := item.Message
+
+		// Restore wire type and field number varint, plus length varint.
+		// Be careful to preserve duplicate items.
+		b := EncodeVarint(uint64(id)<<3 | WireBytes)
+		if ext, ok := m[id]; ok {
+			// Existing data; rip off the tag and length varint
+			// so we join the new data correctly.
+			// We can assume that ext.enc is set because we are unmarshaling.
+			o := ext.enc[len(b):]   // skip wire type and field number
+			_, n := DecodeVarint(o) // calculate length of length varint
+			o = o[n:]               // skip length varint
+			msg = append(o, msg...) // join old data and new data
+		}
+		b = append(b, EncodeVarint(uint64(len(msg)))...)
+		b = append(b, msg...)
+
+		m[id] = Extension{enc: b}
+	}
+	return nil
+}
+
+// MarshalMessageSetJSON encodes the extension map represented by m in JSON format.
+// It is called by generated MarshalJSON methods on protocol buffer messages with the message_set_wire_format option.
+func MarshalMessageSetJSON(exts interface{}) ([]byte, error) {
+	var m map[int32]Extension
+	switch exts := exts.(type) {
+	case *XXX_InternalExtensions:
+		m, _ = exts.extensionsRead()
+	case map[int32]Extension:
+		m = exts
+	default:
+		return nil, errors.New("proto: not an extension map")
+	}
+	var b bytes.Buffer
+	b.WriteByte('{')
+
+	// Process the map in key order for deterministic output.
+	ids := make([]int32, 0, len(m))
+	for id := range m {
+		ids = append(ids, id)
+	}
+	sort.Sort(int32Slice(ids)) // int32Slice defined in text.go
+
+	for i, id := range ids {
+		ext := m[id]
+		if i > 0 {
+			b.WriteByte(',')
+		}
+
+		msd, ok := messageSetMap[id]
+		if !ok {
+			// Unknown type; we can't render it, so skip it.
+			continue
+		}
+		fmt.Fprintf(&b, `"[%s]":`, msd.name)
+
+		x := ext.value
+		if x == nil {
+			x = reflect.New(msd.t.Elem()).Interface()
+			if err := Unmarshal(ext.enc, x.(Message)); err != nil {
+				return nil, err
+			}
+		}
+		d, err := json.Marshal(x)
+		if err != nil {
+			return nil, err
+		}
+		b.Write(d)
+	}
+	b.WriteByte('}')
+	return b.Bytes(), nil
+}
+
+// UnmarshalMessageSetJSON decodes the extension map encoded in buf in JSON format.
+// It is called by generated UnmarshalJSON methods on protocol buffer messages with the message_set_wire_format option.
+func UnmarshalMessageSetJSON(buf []byte, exts interface{}) error {
+	// Common-case fast path.
+	if len(buf) == 0 || bytes.Equal(buf, []byte("{}")) {
+		return nil
+	}
+
+	// This is fairly tricky, and it's not clear that it is needed.
+	return errors.New("TODO: UnmarshalMessageSetJSON not yet implemented")
+}
+
+// A global registry of types that can be used in a MessageSet.
+
+var messageSetMap = make(map[int32]messageSetDesc)
+
+type messageSetDesc struct {
+	t    reflect.Type // pointer to struct
+	name string
+}
+
+// RegisterMessageSetType is called from the generated code.
+func RegisterMessageSetType(m Message, fieldNum int32, name string) {
+	messageSetMap[fieldNum] = messageSetDesc{
+		t:    reflect.TypeOf(m),
+		name: name,
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go b/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
new file mode 100644
index 0000000000..fb512e2e16
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/pointer_reflect.go
@@ -0,0 +1,484 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2012 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// +build appengine js
+
+// This file contains an implementation of proto field accesses using package reflect.
+// It is slower than the code in pointer_unsafe.go but it avoids package unsafe and can
+// be used on App Engine.
+
+package proto
+
+import (
+	"math"
+	"reflect"
+)
+
+// A structPointer is a pointer to a struct.
+type structPointer struct {
+	v reflect.Value
+}
+
+// toStructPointer returns a structPointer equivalent to the given reflect value.
+// The reflect value must itself be a pointer to a struct.
+func toStructPointer(v reflect.Value) structPointer {
+	return structPointer{v}
+}
+
+// IsNil reports whether p is nil.
+func structPointer_IsNil(p structPointer) bool {
+	return p.v.IsNil()
+}
+
+// Interface returns the struct pointer as an interface value.
+func structPointer_Interface(p structPointer, _ reflect.Type) interface{} {
+	return p.v.Interface()
+}
+
+// A field identifies a field in a struct, accessible from a structPointer.
+// In this implementation, a field is identified by the sequence of field indices
+// passed to reflect's FieldByIndex.
+type field []int
+
+// toField returns a field equivalent to the given reflect field.
+func toField(f *reflect.StructField) field {
+	return f.Index
+}
+
+// invalidField is an invalid field identifier.
+var invalidField = field(nil)
+
+// IsValid reports whether the field identifier is valid.
+func (f field) IsValid() bool { return f != nil }
+
+// field returns the given field in the struct as a reflect value.
+func structPointer_field(p structPointer, f field) reflect.Value {
+	// Special case: an extension map entry with a value of type T
+	// passes a *T to the struct-handling code with a zero field,
+	// expecting that it will be treated as equivalent to *struct{ X T },
+	// which has the same memory layout. We have to handle that case
+	// specially, because reflect will panic if we call FieldByIndex on a
+	// non-struct.
+	if f == nil {
+		return p.v.Elem()
+	}
+
+	return p.v.Elem().FieldByIndex(f)
+}
+
+// ifield returns the given field in the struct as an interface value.
+func structPointer_ifield(p structPointer, f field) interface{} {
+	return structPointer_field(p, f).Addr().Interface()
+}
+
+// Bytes returns the address of a []byte field in the struct.
+func structPointer_Bytes(p structPointer, f field) *[]byte {
+	return structPointer_ifield(p, f).(*[]byte)
+}
+
+// BytesSlice returns the address of a [][]byte field in the struct.
+func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
+	return structPointer_ifield(p, f).(*[][]byte)
+}
+
+// Bool returns the address of a *bool field in the struct.
+func structPointer_Bool(p structPointer, f field) **bool {
+	return structPointer_ifield(p, f).(**bool)
+}
+
+// BoolVal returns the address of a bool field in the struct.
+func structPointer_BoolVal(p structPointer, f field) *bool {
+	return structPointer_ifield(p, f).(*bool)
+}
+
+// BoolSlice returns the address of a []bool field in the struct.
+func structPointer_BoolSlice(p structPointer, f field) *[]bool {
+	return structPointer_ifield(p, f).(*[]bool)
+}
+
+// String returns the address of a *string field in the struct.
+func structPointer_String(p structPointer, f field) **string {
+	return structPointer_ifield(p, f).(**string)
+}
+
+// StringVal returns the address of a string field in the struct.
+func structPointer_StringVal(p structPointer, f field) *string {
+	return structPointer_ifield(p, f).(*string)
+}
+
+// StringSlice returns the address of a []string field in the struct.
+func structPointer_StringSlice(p structPointer, f field) *[]string {
+	return structPointer_ifield(p, f).(*[]string)
+}
+
+// Extensions returns the address of an extension map field in the struct.
+func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
+	return structPointer_ifield(p, f).(*XXX_InternalExtensions)
+}
+
+// ExtMap returns the address of an extension map field in the struct.
+func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
+	return structPointer_ifield(p, f).(*map[int32]Extension)
+}
+
+// NewAt returns the reflect.Value for a pointer to a field in the struct.
+func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
+	return structPointer_field(p, f).Addr()
+}
+
+// SetStructPointer writes a *struct field in the struct.
+func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
+	structPointer_field(p, f).Set(q.v)
+}
+
+// GetStructPointer reads a *struct field in the struct.
+func structPointer_GetStructPointer(p structPointer, f field) structPointer {
+	return structPointer{structPointer_field(p, f)}
+}
+
+// StructPointerSlice the address of a []*struct field in the struct.
+func structPointer_StructPointerSlice(p structPointer, f field) structPointerSlice {
+	return structPointerSlice{structPointer_field(p, f)}
+}
+
+// A structPointerSlice represents the address of a slice of pointers to structs
+// (themselves messages or groups). That is, v.Type() is *[]*struct{...}.
+type structPointerSlice struct {
+	v reflect.Value
+}
+
+func (p structPointerSlice) Len() int                  { return p.v.Len() }
+func (p structPointerSlice) Index(i int) structPointer { return structPointer{p.v.Index(i)} }
+func (p structPointerSlice) Append(q structPointer) {
+	p.v.Set(reflect.Append(p.v, q.v))
+}
+
+var (
+	int32Type   = reflect.TypeOf(int32(0))
+	uint32Type  = reflect.TypeOf(uint32(0))
+	float32Type = reflect.TypeOf(float32(0))
+	int64Type   = reflect.TypeOf(int64(0))
+	uint64Type  = reflect.TypeOf(uint64(0))
+	float64Type = reflect.TypeOf(float64(0))
+)
+
+// A word32 represents a field of type *int32, *uint32, *float32, or *enum.
+// That is, v.Type() is *int32, *uint32, *float32, or *enum and v is assignable.
+type word32 struct {
+	v reflect.Value
+}
+
+// IsNil reports whether p is nil.
+func word32_IsNil(p word32) bool {
+	return p.v.IsNil()
+}
+
+// Set sets p to point at a newly allocated word with bits set to x.
+func word32_Set(p word32, o *Buffer, x uint32) {
+	t := p.v.Type().Elem()
+	switch t {
+	case int32Type:
+		if len(o.int32s) == 0 {
+			o.int32s = make([]int32, uint32PoolSize)
+		}
+		o.int32s[0] = int32(x)
+		p.v.Set(reflect.ValueOf(&o.int32s[0]))
+		o.int32s = o.int32s[1:]
+		return
+	case uint32Type:
+		if len(o.uint32s) == 0 {
+			o.uint32s = make([]uint32, uint32PoolSize)
+		}
+		o.uint32s[0] = x
+		p.v.Set(reflect.ValueOf(&o.uint32s[0]))
+		o.uint32s = o.uint32s[1:]
+		return
+	case float32Type:
+		if len(o.float32s) == 0 {
+			o.float32s = make([]float32, uint32PoolSize)
+		}
+		o.float32s[0] = math.Float32frombits(x)
+		p.v.Set(reflect.ValueOf(&o.float32s[0]))
+		o.float32s = o.float32s[1:]
+		return
+	}
+
+	// must be enum
+	p.v.Set(reflect.New(t))
+	p.v.Elem().SetInt(int64(int32(x)))
+}
+
+// Get gets the bits pointed at by p, as a uint32.
+func word32_Get(p word32) uint32 {
+	elem := p.v.Elem()
+	switch elem.Kind() {
+	case reflect.Int32:
+		return uint32(elem.Int())
+	case reflect.Uint32:
+		return uint32(elem.Uint())
+	case reflect.Float32:
+		return math.Float32bits(float32(elem.Float()))
+	}
+	panic("unreachable")
+}
+
+// Word32 returns a reference to a *int32, *uint32, *float32, or *enum field in the struct.
+func structPointer_Word32(p structPointer, f field) word32 {
+	return word32{structPointer_field(p, f)}
+}
+
+// A word32Val represents a field of type int32, uint32, float32, or enum.
+// That is, v.Type() is int32, uint32, float32, or enum and v is assignable.
+type word32Val struct {
+	v reflect.Value
+}
+
+// Set sets *p to x.
+func word32Val_Set(p word32Val, x uint32) {
+	switch p.v.Type() {
+	case int32Type:
+		p.v.SetInt(int64(x))
+		return
+	case uint32Type:
+		p.v.SetUint(uint64(x))
+		return
+	case float32Type:
+		p.v.SetFloat(float64(math.Float32frombits(x)))
+		return
+	}
+
+	// must be enum
+	p.v.SetInt(int64(int32(x)))
+}
+
+// Get gets the bits pointed at by p, as a uint32.
+func word32Val_Get(p word32Val) uint32 {
+	elem := p.v
+	switch elem.Kind() {
+	case reflect.Int32:
+		return uint32(elem.Int())
+	case reflect.Uint32:
+		return uint32(elem.Uint())
+	case reflect.Float32:
+		return math.Float32bits(float32(elem.Float()))
+	}
+	panic("unreachable")
+}
+
+// Word32Val returns a reference to a int32, uint32, float32, or enum field in the struct.
+func structPointer_Word32Val(p structPointer, f field) word32Val {
+	return word32Val{structPointer_field(p, f)}
+}
+
+// A word32Slice is a slice of 32-bit values.
+// That is, v.Type() is []int32, []uint32, []float32, or []enum.
+type word32Slice struct {
+	v reflect.Value
+}
+
+func (p word32Slice) Append(x uint32) {
+	n, m := p.v.Len(), p.v.Cap()
+	if n < m {
+		p.v.SetLen(n + 1)
+	} else {
+		t := p.v.Type().Elem()
+		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
+	}
+	elem := p.v.Index(n)
+	switch elem.Kind() {
+	case reflect.Int32:
+		elem.SetInt(int64(int32(x)))
+	case reflect.Uint32:
+		elem.SetUint(uint64(x))
+	case reflect.Float32:
+		elem.SetFloat(float64(math.Float32frombits(x)))
+	}
+}
+
+func (p word32Slice) Len() int {
+	return p.v.Len()
+}
+
+func (p word32Slice) Index(i int) uint32 {
+	elem := p.v.Index(i)
+	switch elem.Kind() {
+	case reflect.Int32:
+		return uint32(elem.Int())
+	case reflect.Uint32:
+		return uint32(elem.Uint())
+	case reflect.Float32:
+		return math.Float32bits(float32(elem.Float()))
+	}
+	panic("unreachable")
+}
+
+// Word32Slice returns a reference to a []int32, []uint32, []float32, or []enum field in the struct.
+func structPointer_Word32Slice(p structPointer, f field) word32Slice {
+	return word32Slice{structPointer_field(p, f)}
+}
+
+// word64 is like word32 but for 64-bit values.
+type word64 struct {
+	v reflect.Value
+}
+
+func word64_Set(p word64, o *Buffer, x uint64) {
+	t := p.v.Type().Elem()
+	switch t {
+	case int64Type:
+		if len(o.int64s) == 0 {
+			o.int64s = make([]int64, uint64PoolSize)
+		}
+		o.int64s[0] = int64(x)
+		p.v.Set(reflect.ValueOf(&o.int64s[0]))
+		o.int64s = o.int64s[1:]
+		return
+	case uint64Type:
+		if len(o.uint64s) == 0 {
+			o.uint64s = make([]uint64, uint64PoolSize)
+		}
+		o.uint64s[0] = x
+		p.v.Set(reflect.ValueOf(&o.uint64s[0]))
+		o.uint64s = o.uint64s[1:]
+		return
+	case float64Type:
+		if len(o.float64s) == 0 {
+			o.float64s = make([]float64, uint64PoolSize)
+		}
+		o.float64s[0] = math.Float64frombits(x)
+		p.v.Set(reflect.ValueOf(&o.float64s[0]))
+		o.float64s = o.float64s[1:]
+		return
+	}
+	panic("unreachable")
+}
+
+func word64_IsNil(p word64) bool {
+	return p.v.IsNil()
+}
+
+func word64_Get(p word64) uint64 {
+	elem := p.v.Elem()
+	switch elem.Kind() {
+	case reflect.Int64:
+		return uint64(elem.Int())
+	case reflect.Uint64:
+		return elem.Uint()
+	case reflect.Float64:
+		return math.Float64bits(elem.Float())
+	}
+	panic("unreachable")
+}
+
+func structPointer_Word64(p structPointer, f field) word64 {
+	return word64{structPointer_field(p, f)}
+}
+
+// word64Val is like word32Val but for 64-bit values.
+type word64Val struct {
+	v reflect.Value
+}
+
+func word64Val_Set(p word64Val, o *Buffer, x uint64) {
+	switch p.v.Type() {
+	case int64Type:
+		p.v.SetInt(int64(x))
+		return
+	case uint64Type:
+		p.v.SetUint(x)
+		return
+	case float64Type:
+		p.v.SetFloat(math.Float64frombits(x))
+		return
+	}
+	panic("unreachable")
+}
+
+func word64Val_Get(p word64Val) uint64 {
+	elem := p.v
+	switch elem.Kind() {
+	case reflect.Int64:
+		return uint64(elem.Int())
+	case reflect.Uint64:
+		return elem.Uint()
+	case reflect.Float64:
+		return math.Float64bits(elem.Float())
+	}
+	panic("unreachable")
+}
+
+func structPointer_Word64Val(p structPointer, f field) word64Val {
+	return word64Val{structPointer_field(p, f)}
+}
+
+type word64Slice struct {
+	v reflect.Value
+}
+
+func (p word64Slice) Append(x uint64) {
+	n, m := p.v.Len(), p.v.Cap()
+	if n < m {
+		p.v.SetLen(n + 1)
+	} else {
+		t := p.v.Type().Elem()
+		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
+	}
+	elem := p.v.Index(n)
+	switch elem.Kind() {
+	case reflect.Int64:
+		elem.SetInt(int64(int64(x)))
+	case reflect.Uint64:
+		elem.SetUint(uint64(x))
+	case reflect.Float64:
+		elem.SetFloat(float64(math.Float64frombits(x)))
+	}
+}
+
+func (p word64Slice) Len() int {
+	return p.v.Len()
+}
+
+func (p word64Slice) Index(i int) uint64 {
+	elem := p.v.Index(i)
+	switch elem.Kind() {
+	case reflect.Int64:
+		return uint64(elem.Int())
+	case reflect.Uint64:
+		return uint64(elem.Uint())
+	case reflect.Float64:
+		return math.Float64bits(float64(elem.Float()))
+	}
+	panic("unreachable")
+}
+
+func structPointer_Word64Slice(p structPointer, f field) word64Slice {
+	return word64Slice{structPointer_field(p, f)}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go b/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
new file mode 100644
index 0000000000..1763a5f227
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/pointer_reflect_gogo.go
@@ -0,0 +1,85 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2016, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// +build appengine js
+
+package proto
+
+import (
+	"reflect"
+)
+
+func structPointer_FieldPointer(p structPointer, f field) structPointer {
+	panic("not implemented")
+}
+
+func appendStructPointer(base structPointer, f field, typ reflect.Type) structPointer {
+	panic("not implemented")
+}
+
+func structPointer_InterfaceAt(p structPointer, f field, t reflect.Type) interface{} {
+	panic("not implemented")
+}
+
+func structPointer_InterfaceRef(p structPointer, f field, t reflect.Type) interface{} {
+	panic("not implemented")
+}
+
+func structPointer_GetRefStructPointer(p structPointer, f field) structPointer {
+	panic("not implemented")
+}
+
+func structPointer_Add(p structPointer, size field) structPointer {
+	panic("not implemented")
+}
+
+func structPointer_Len(p structPointer, f field) int {
+	panic("not implemented")
+}
+
+func structPointer_GetSliceHeader(p structPointer, f field) *reflect.SliceHeader {
+	panic("not implemented")
+}
+
+func structPointer_Copy(oldptr structPointer, newptr structPointer, size int) {
+	panic("not implemented")
+}
+
+func structPointer_StructRefSlice(p structPointer, f field, size uintptr) *structRefSlice {
+	panic("not implemented")
+}
+
+type structRefSlice struct{}
+
+func (v *structRefSlice) Len() int {
+	panic("not implemented")
+}
+
+func (v *structRefSlice) Index(i int) structPointer {
+	panic("not implemented")
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
new file mode 100644
index 0000000000..6b5567d47c
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe.go
@@ -0,0 +1,270 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2012 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// +build !appengine,!js
+
+// This file contains the implementation of the proto field accesses using package unsafe.
+
+package proto
+
+import (
+	"reflect"
+	"unsafe"
+)
+
+// NOTE: These type_Foo functions would more idiomatically be methods,
+// but Go does not allow methods on pointer types, and we must preserve
+// some pointer type for the garbage collector. We use these
+// funcs with clunky names as our poor approximation to methods.
+//
+// An alternative would be
+//	type structPointer struct { p unsafe.Pointer }
+// but that does not registerize as well.
+
+// A structPointer is a pointer to a struct.
+type structPointer unsafe.Pointer
+
+// toStructPointer returns a structPointer equivalent to the given reflect value.
+func toStructPointer(v reflect.Value) structPointer {
+	return structPointer(unsafe.Pointer(v.Pointer()))
+}
+
+// IsNil reports whether p is nil.
+func structPointer_IsNil(p structPointer) bool {
+	return p == nil
+}
+
+// Interface returns the struct pointer, assumed to have element type t,
+// as an interface value.
+func structPointer_Interface(p structPointer, t reflect.Type) interface{} {
+	return reflect.NewAt(t, unsafe.Pointer(p)).Interface()
+}
+
+// A field identifies a field in a struct, accessible from a structPointer.
+// In this implementation, a field is identified by its byte offset from the start of the struct.
+type field uintptr
+
+// toField returns a field equivalent to the given reflect field.
+func toField(f *reflect.StructField) field {
+	return field(f.Offset)
+}
+
+// invalidField is an invalid field identifier.
+const invalidField = ^field(0)
+
+// IsValid reports whether the field identifier is valid.
+func (f field) IsValid() bool {
+	return f != ^field(0)
+}
+
+// Bytes returns the address of a []byte field in the struct.
+func structPointer_Bytes(p structPointer, f field) *[]byte {
+	return (*[]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// BytesSlice returns the address of a [][]byte field in the struct.
+func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
+	return (*[][]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// Bool returns the address of a *bool field in the struct.
+func structPointer_Bool(p structPointer, f field) **bool {
+	return (**bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// BoolVal returns the address of a bool field in the struct.
+func structPointer_BoolVal(p structPointer, f field) *bool {
+	return (*bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// BoolSlice returns the address of a []bool field in the struct.
+func structPointer_BoolSlice(p structPointer, f field) *[]bool {
+	return (*[]bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// String returns the address of a *string field in the struct.
+func structPointer_String(p structPointer, f field) **string {
+	return (**string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// StringVal returns the address of a string field in the struct.
+func structPointer_StringVal(p structPointer, f field) *string {
+	return (*string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// StringSlice returns the address of a []string field in the struct.
+func structPointer_StringSlice(p structPointer, f field) *[]string {
+	return (*[]string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// ExtMap returns the address of an extension map field in the struct.
+func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
+	return (*XXX_InternalExtensions)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
+	return (*map[int32]Extension)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// NewAt returns the reflect.Value for a pointer to a field in the struct.
+func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
+	return reflect.NewAt(typ, unsafe.Pointer(uintptr(p)+uintptr(f)))
+}
+
+// SetStructPointer writes a *struct field in the struct.
+func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
+	*(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f))) = q
+}
+
+// GetStructPointer reads a *struct field in the struct.
+func structPointer_GetStructPointer(p structPointer, f field) structPointer {
+	return *(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// StructPointerSlice the address of a []*struct field in the struct.
+func structPointer_StructPointerSlice(p structPointer, f field) *structPointerSlice {
+	return (*structPointerSlice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// A structPointerSlice represents a slice of pointers to structs (themselves submessages or groups).
+type structPointerSlice []structPointer
+
+func (v *structPointerSlice) Len() int                  { return len(*v) }
+func (v *structPointerSlice) Index(i int) structPointer { return (*v)[i] }
+func (v *structPointerSlice) Append(p structPointer)    { *v = append(*v, p) }
+
+// A word32 is the address of a "pointer to 32-bit value" field.
+type word32 **uint32
+
+// IsNil reports whether *v is nil.
+func word32_IsNil(p word32) bool {
+	return *p == nil
+}
+
+// Set sets *v to point at a newly allocated word set to x.
+func word32_Set(p word32, o *Buffer, x uint32) {
+	if len(o.uint32s) == 0 {
+		o.uint32s = make([]uint32, uint32PoolSize)
+	}
+	o.uint32s[0] = x
+	*p = &o.uint32s[0]
+	o.uint32s = o.uint32s[1:]
+}
+
+// Get gets the value pointed at by *v.
+func word32_Get(p word32) uint32 {
+	return **p
+}
+
+// Word32 returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
+func structPointer_Word32(p structPointer, f field) word32 {
+	return word32((**uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+}
+
+// A word32Val is the address of a 32-bit value field.
+type word32Val *uint32
+
+// Set sets *p to x.
+func word32Val_Set(p word32Val, x uint32) {
+	*p = x
+}
+
+// Get gets the value pointed at by p.
+func word32Val_Get(p word32Val) uint32 {
+	return *p
+}
+
+// Word32Val returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
+func structPointer_Word32Val(p structPointer, f field) word32Val {
+	return word32Val((*uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+}
+
+// A word32Slice is a slice of 32-bit values.
+type word32Slice []uint32
+
+func (v *word32Slice) Append(x uint32)    { *v = append(*v, x) }
+func (v *word32Slice) Len() int           { return len(*v) }
+func (v *word32Slice) Index(i int) uint32 { return (*v)[i] }
+
+// Word32Slice returns the address of a []int32, []uint32, []float32, or []enum field in the struct.
+func structPointer_Word32Slice(p structPointer, f field) *word32Slice {
+	return (*word32Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+// word64 is like word32 but for 64-bit values.
+type word64 **uint64
+
+func word64_Set(p word64, o *Buffer, x uint64) {
+	if len(o.uint64s) == 0 {
+		o.uint64s = make([]uint64, uint64PoolSize)
+	}
+	o.uint64s[0] = x
+	*p = &o.uint64s[0]
+	o.uint64s = o.uint64s[1:]
+}
+
+func word64_IsNil(p word64) bool {
+	return *p == nil
+}
+
+func word64_Get(p word64) uint64 {
+	return **p
+}
+
+func structPointer_Word64(p structPointer, f field) word64 {
+	return word64((**uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+}
+
+// word64Val is like word32Val but for 64-bit values.
+type word64Val *uint64
+
+func word64Val_Set(p word64Val, o *Buffer, x uint64) {
+	*p = x
+}
+
+func word64Val_Get(p word64Val) uint64 {
+	return *p
+}
+
+func structPointer_Word64Val(p structPointer, f field) word64Val {
+	return word64Val((*uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+}
+
+// word64Slice is like word32Slice but for 64-bit values.
+type word64Slice []uint64
+
+func (v *word64Slice) Append(x uint64)    { *v = append(*v, x) }
+func (v *word64Slice) Len() int           { return len(*v) }
+func (v *word64Slice) Index(i int) uint64 { return (*v)[i] }
+
+func structPointer_Word64Slice(p structPointer, f field) *word64Slice {
+	return (*word64Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
new file mode 100644
index 0000000000..f156a29f0e
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/pointer_unsafe_gogo.go
@@ -0,0 +1,128 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// +build !appengine,!js
+
+// This file contains the implementation of the proto field accesses using package unsafe.
+
+package proto
+
+import (
+	"reflect"
+	"unsafe"
+)
+
+func structPointer_InterfaceAt(p structPointer, f field, t reflect.Type) interface{} {
+	point := unsafe.Pointer(uintptr(p) + uintptr(f))
+	r := reflect.NewAt(t, point)
+	return r.Interface()
+}
+
+func structPointer_InterfaceRef(p structPointer, f field, t reflect.Type) interface{} {
+	point := unsafe.Pointer(uintptr(p) + uintptr(f))
+	r := reflect.NewAt(t, point)
+	if r.Elem().IsNil() {
+		return nil
+	}
+	return r.Elem().Interface()
+}
+
+func copyUintPtr(oldptr, newptr uintptr, size int) {
+	oldbytes := make([]byte, 0)
+	oldslice := (*reflect.SliceHeader)(unsafe.Pointer(&oldbytes))
+	oldslice.Data = oldptr
+	oldslice.Len = size
+	oldslice.Cap = size
+	newbytes := make([]byte, 0)
+	newslice := (*reflect.SliceHeader)(unsafe.Pointer(&newbytes))
+	newslice.Data = newptr
+	newslice.Len = size
+	newslice.Cap = size
+	copy(newbytes, oldbytes)
+}
+
+func structPointer_Copy(oldptr structPointer, newptr structPointer, size int) {
+	copyUintPtr(uintptr(oldptr), uintptr(newptr), size)
+}
+
+func appendStructPointer(base structPointer, f field, typ reflect.Type) structPointer {
+	size := typ.Elem().Size()
+
+	oldHeader := structPointer_GetSliceHeader(base, f)
+	oldSlice := reflect.NewAt(typ, unsafe.Pointer(oldHeader)).Elem()
+	newLen := oldHeader.Len + 1
+	newSlice := reflect.MakeSlice(typ, newLen, newLen)
+	reflect.Copy(newSlice, oldSlice)
+	bas := toStructPointer(newSlice)
+	oldHeader.Data = uintptr(bas)
+	oldHeader.Len = newLen
+	oldHeader.Cap = newLen
+
+	return structPointer(unsafe.Pointer(uintptr(unsafe.Pointer(bas)) + uintptr(uintptr(newLen-1)*size)))
+}
+
+func structPointer_FieldPointer(p structPointer, f field) structPointer {
+	return structPointer(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+func structPointer_GetRefStructPointer(p structPointer, f field) structPointer {
+	return structPointer((*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+}
+
+func structPointer_GetSliceHeader(p structPointer, f field) *reflect.SliceHeader {
+	return (*reflect.SliceHeader)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+}
+
+func structPointer_Add(p structPointer, size field) structPointer {
+	return structPointer(unsafe.Pointer(uintptr(p) + uintptr(size)))
+}
+
+func structPointer_Len(p structPointer, f field) int {
+	return len(*(*[]interface{})(unsafe.Pointer(structPointer_GetRefStructPointer(p, f))))
+}
+
+func structPointer_StructRefSlice(p structPointer, f field, size uintptr) *structRefSlice {
+	return &structRefSlice{p: p, f: f, size: size}
+}
+
+// A structRefSlice represents a slice of structs (themselves submessages or groups).
+type structRefSlice struct {
+	p    structPointer
+	f    field
+	size uintptr
+}
+
+func (v *structRefSlice) Len() int {
+	return structPointer_Len(v.p, v.f)
+}
+
+func (v *structRefSlice) Index(i int) structPointer {
+	ss := structPointer_GetStructPointer(v.p, v.f)
+	ss1 := structPointer_GetRefStructPointer(ss, 0)
+	return structPointer_Add(ss1, field(uintptr(i)*v.size))
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/properties.go b/vendor/github.com/gogo/protobuf/proto/properties.go
new file mode 100644
index 0000000000..2a69e8862d
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/properties.go
@@ -0,0 +1,971 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+/*
+ * Routines for encoding data into the wire format for protocol buffers.
+ */
+
+import (
+	"fmt"
+	"log"
+	"os"
+	"reflect"
+	"sort"
+	"strconv"
+	"strings"
+	"sync"
+)
+
+const debug bool = false
+
+// Constants that identify the encoding of a value on the wire.
+const (
+	WireVarint     = 0
+	WireFixed64    = 1
+	WireBytes      = 2
+	WireStartGroup = 3
+	WireEndGroup   = 4
+	WireFixed32    = 5
+)
+
+const startSize = 10 // initial slice/string sizes
+
+// Encoders are defined in encode.go
+// An encoder outputs the full representation of a field, including its
+// tag and encoder type.
+type encoder func(p *Buffer, prop *Properties, base structPointer) error
+
+// A valueEncoder encodes a single integer in a particular encoding.
+type valueEncoder func(o *Buffer, x uint64) error
+
+// Sizers are defined in encode.go
+// A sizer returns the encoded size of a field, including its tag and encoder
+// type.
+type sizer func(prop *Properties, base structPointer) int
+
+// A valueSizer returns the encoded size of a single integer in a particular
+// encoding.
+type valueSizer func(x uint64) int
+
+// Decoders are defined in decode.go
+// A decoder creates a value from its wire representation.
+// Unrecognized subelements are saved in unrec.
+type decoder func(p *Buffer, prop *Properties, base structPointer) error
+
+// A valueDecoder decodes a single integer in a particular encoding.
+type valueDecoder func(o *Buffer) (x uint64, err error)
+
+// A oneofMarshaler does the marshaling for all oneof fields in a message.
+type oneofMarshaler func(Message, *Buffer) error
+
+// A oneofUnmarshaler does the unmarshaling for a oneof field in a message.
+type oneofUnmarshaler func(Message, int, int, *Buffer) (bool, error)
+
+// A oneofSizer does the sizing for all oneof fields in a message.
+type oneofSizer func(Message) int
+
+// tagMap is an optimization over map[int]int for typical protocol buffer
+// use-cases. Encoded protocol buffers are often in tag order with small tag
+// numbers.
+type tagMap struct {
+	fastTags []int
+	slowTags map[int]int
+}
+
+// tagMapFastLimit is the upper bound on the tag number that will be stored in
+// the tagMap slice rather than its map.
+const tagMapFastLimit = 1024
+
+func (p *tagMap) get(t int) (int, bool) {
+	if t > 0 && t < tagMapFastLimit {
+		if t >= len(p.fastTags) {
+			return 0, false
+		}
+		fi := p.fastTags[t]
+		return fi, fi >= 0
+	}
+	fi, ok := p.slowTags[t]
+	return fi, ok
+}
+
+func (p *tagMap) put(t int, fi int) {
+	if t > 0 && t < tagMapFastLimit {
+		for len(p.fastTags) < t+1 {
+			p.fastTags = append(p.fastTags, -1)
+		}
+		p.fastTags[t] = fi
+		return
+	}
+	if p.slowTags == nil {
+		p.slowTags = make(map[int]int)
+	}
+	p.slowTags[t] = fi
+}
+
+// StructProperties represents properties for all the fields of a struct.
+// decoderTags and decoderOrigNames should only be used by the decoder.
+type StructProperties struct {
+	Prop             []*Properties  // properties for each field
+	reqCount         int            // required count
+	decoderTags      tagMap         // map from proto tag to struct field number
+	decoderOrigNames map[string]int // map from original name to struct field number
+	order            []int          // list of struct field numbers in tag order
+	unrecField       field          // field id of the XXX_unrecognized []byte field
+	extendable       bool           // is this an extendable proto
+
+	oneofMarshaler   oneofMarshaler
+	oneofUnmarshaler oneofUnmarshaler
+	oneofSizer       oneofSizer
+	stype            reflect.Type
+
+	// OneofTypes contains information about the oneof fields in this message.
+	// It is keyed by the original name of a field.
+	OneofTypes map[string]*OneofProperties
+}
+
+// OneofProperties represents information about a specific field in a oneof.
+type OneofProperties struct {
+	Type  reflect.Type // pointer to generated struct type for this oneof field
+	Field int          // struct field number of the containing oneof in the message
+	Prop  *Properties
+}
+
+// Implement the sorting interface so we can sort the fields in tag order, as recommended by the spec.
+// See encode.go, (*Buffer).enc_struct.
+
+func (sp *StructProperties) Len() int { return len(sp.order) }
+func (sp *StructProperties) Less(i, j int) bool {
+	return sp.Prop[sp.order[i]].Tag < sp.Prop[sp.order[j]].Tag
+}
+func (sp *StructProperties) Swap(i, j int) { sp.order[i], sp.order[j] = sp.order[j], sp.order[i] }
+
+// Properties represents the protocol-specific behavior of a single struct field.
+type Properties struct {
+	Name     string // name of the field, for error messages
+	OrigName string // original name before protocol compiler (always set)
+	JSONName string // name to use for JSON; determined by protoc
+	Wire     string
+	WireType int
+	Tag      int
+	Required bool
+	Optional bool
+	Repeated bool
+	Packed   bool   // relevant for repeated primitives only
+	Enum     string // set for enum types only
+	proto3   bool   // whether this is known to be a proto3 field; set for []byte only
+	oneof    bool   // whether this is a oneof field
+
+	Default     string // default value
+	HasDefault  bool   // whether an explicit default was provided
+	CustomType  string
+	CastType    string
+	StdTime     bool
+	StdDuration bool
+
+	enc           encoder
+	valEnc        valueEncoder // set for bool and numeric types only
+	field         field
+	tagcode       []byte // encoding of EncodeVarint((Tag<<3)|WireType)
+	tagbuf        [8]byte
+	stype         reflect.Type      // set for struct types only
+	sstype        reflect.Type      // set for slices of structs types only
+	ctype         reflect.Type      // set for custom types only
+	sprop         *StructProperties // set for struct types only
+	isMarshaler   bool
+	isUnmarshaler bool
+
+	mtype    reflect.Type // set for map types only
+	mkeyprop *Properties  // set for map types only
+	mvalprop *Properties  // set for map types only
+
+	size    sizer
+	valSize valueSizer // set for bool and numeric types only
+
+	dec    decoder
+	valDec valueDecoder // set for bool and numeric types only
+
+	// If this is a packable field, this will be the decoder for the packed version of the field.
+	packedDec decoder
+}
+
+// String formats the properties in the protobuf struct field tag style.
+func (p *Properties) String() string {
+	s := p.Wire
+	s = ","
+	s += strconv.Itoa(p.Tag)
+	if p.Required {
+		s += ",req"
+	}
+	if p.Optional {
+		s += ",opt"
+	}
+	if p.Repeated {
+		s += ",rep"
+	}
+	if p.Packed {
+		s += ",packed"
+	}
+	s += ",name=" + p.OrigName
+	if p.JSONName != p.OrigName {
+		s += ",json=" + p.JSONName
+	}
+	if p.proto3 {
+		s += ",proto3"
+	}
+	if p.oneof {
+		s += ",oneof"
+	}
+	if len(p.Enum) > 0 {
+		s += ",enum=" + p.Enum
+	}
+	if p.HasDefault {
+		s += ",def=" + p.Default
+	}
+	return s
+}
+
+// Parse populates p by parsing a string in the protobuf struct field tag style.
+func (p *Properties) Parse(s string) {
+	// "bytes,49,opt,name=foo,def=hello!"
+	fields := strings.Split(s, ",") // breaks def=, but handled below.
+	if len(fields) < 2 {
+		fmt.Fprintf(os.Stderr, "proto: tag has too few fields: %q\n", s)
+		return
+	}
+
+	p.Wire = fields[0]
+	switch p.Wire {
+	case "varint":
+		p.WireType = WireVarint
+		p.valEnc = (*Buffer).EncodeVarint
+		p.valDec = (*Buffer).DecodeVarint
+		p.valSize = sizeVarint
+	case "fixed32":
+		p.WireType = WireFixed32
+		p.valEnc = (*Buffer).EncodeFixed32
+		p.valDec = (*Buffer).DecodeFixed32
+		p.valSize = sizeFixed32
+	case "fixed64":
+		p.WireType = WireFixed64
+		p.valEnc = (*Buffer).EncodeFixed64
+		p.valDec = (*Buffer).DecodeFixed64
+		p.valSize = sizeFixed64
+	case "zigzag32":
+		p.WireType = WireVarint
+		p.valEnc = (*Buffer).EncodeZigzag32
+		p.valDec = (*Buffer).DecodeZigzag32
+		p.valSize = sizeZigzag32
+	case "zigzag64":
+		p.WireType = WireVarint
+		p.valEnc = (*Buffer).EncodeZigzag64
+		p.valDec = (*Buffer).DecodeZigzag64
+		p.valSize = sizeZigzag64
+	case "bytes", "group":
+		p.WireType = WireBytes
+		// no numeric converter for non-numeric types
+	default:
+		fmt.Fprintf(os.Stderr, "proto: tag has unknown wire type: %q\n", s)
+		return
+	}
+
+	var err error
+	p.Tag, err = strconv.Atoi(fields[1])
+	if err != nil {
+		return
+	}
+
+	for i := 2; i < len(fields); i++ {
+		f := fields[i]
+		switch {
+		case f == "req":
+			p.Required = true
+		case f == "opt":
+			p.Optional = true
+		case f == "rep":
+			p.Repeated = true
+		case f == "packed":
+			p.Packed = true
+		case strings.HasPrefix(f, "name="):
+			p.OrigName = f[5:]
+		case strings.HasPrefix(f, "json="):
+			p.JSONName = f[5:]
+		case strings.HasPrefix(f, "enum="):
+			p.Enum = f[5:]
+		case f == "proto3":
+			p.proto3 = true
+		case f == "oneof":
+			p.oneof = true
+		case strings.HasPrefix(f, "def="):
+			p.HasDefault = true
+			p.Default = f[4:] // rest of string
+			if i+1 < len(fields) {
+				// Commas aren't escaped, and def is always last.
+				p.Default += "," + strings.Join(fields[i+1:], ",")
+				break
+			}
+		case strings.HasPrefix(f, "embedded="):
+			p.OrigName = strings.Split(f, "=")[1]
+		case strings.HasPrefix(f, "customtype="):
+			p.CustomType = strings.Split(f, "=")[1]
+		case strings.HasPrefix(f, "casttype="):
+			p.CastType = strings.Split(f, "=")[1]
+		case f == "stdtime":
+			p.StdTime = true
+		case f == "stdduration":
+			p.StdDuration = true
+		}
+	}
+}
+
+func logNoSliceEnc(t1, t2 reflect.Type) {
+	fmt.Fprintf(os.Stderr, "proto: no slice oenc for %T = []%T\n", t1, t2)
+}
+
+var protoMessageType = reflect.TypeOf((*Message)(nil)).Elem()
+
+// Initialize the fields for encoding and decoding.
+func (p *Properties) setEncAndDec(typ reflect.Type, f *reflect.StructField, lockGetProp bool) {
+	p.enc = nil
+	p.dec = nil
+	p.size = nil
+	isMap := typ.Kind() == reflect.Map
+	if len(p.CustomType) > 0 && !isMap {
+		p.setCustomEncAndDec(typ)
+		p.setTag(lockGetProp)
+		return
+	}
+	if p.StdTime && !isMap {
+		p.setTimeEncAndDec(typ)
+		p.setTag(lockGetProp)
+		return
+	}
+	if p.StdDuration && !isMap {
+		p.setDurationEncAndDec(typ)
+		p.setTag(lockGetProp)
+		return
+	}
+	switch t1 := typ; t1.Kind() {
+	default:
+		fmt.Fprintf(os.Stderr, "proto: no coders for %v\n", t1)
+
+	// proto3 scalar types
+
+	case reflect.Bool:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_bool
+			p.dec = (*Buffer).dec_proto3_bool
+			p.size = size_proto3_bool
+		} else {
+			p.enc = (*Buffer).enc_ref_bool
+			p.dec = (*Buffer).dec_proto3_bool
+			p.size = size_ref_bool
+		}
+	case reflect.Int32:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_int32
+			p.dec = (*Buffer).dec_proto3_int32
+			p.size = size_proto3_int32
+		} else {
+			p.enc = (*Buffer).enc_ref_int32
+			p.dec = (*Buffer).dec_proto3_int32
+			p.size = size_ref_int32
+		}
+	case reflect.Uint32:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_uint32
+			p.dec = (*Buffer).dec_proto3_int32 // can reuse
+			p.size = size_proto3_uint32
+		} else {
+			p.enc = (*Buffer).enc_ref_uint32
+			p.dec = (*Buffer).dec_proto3_int32 // can reuse
+			p.size = size_ref_uint32
+		}
+	case reflect.Int64, reflect.Uint64:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_int64
+			p.dec = (*Buffer).dec_proto3_int64
+			p.size = size_proto3_int64
+		} else {
+			p.enc = (*Buffer).enc_ref_int64
+			p.dec = (*Buffer).dec_proto3_int64
+			p.size = size_ref_int64
+		}
+	case reflect.Float32:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_uint32 // can just treat them as bits
+			p.dec = (*Buffer).dec_proto3_int32
+			p.size = size_proto3_uint32
+		} else {
+			p.enc = (*Buffer).enc_ref_uint32 // can just treat them as bits
+			p.dec = (*Buffer).dec_proto3_int32
+			p.size = size_ref_uint32
+		}
+	case reflect.Float64:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_int64 // can just treat them as bits
+			p.dec = (*Buffer).dec_proto3_int64
+			p.size = size_proto3_int64
+		} else {
+			p.enc = (*Buffer).enc_ref_int64 // can just treat them as bits
+			p.dec = (*Buffer).dec_proto3_int64
+			p.size = size_ref_int64
+		}
+	case reflect.String:
+		if p.proto3 {
+			p.enc = (*Buffer).enc_proto3_string
+			p.dec = (*Buffer).dec_proto3_string
+			p.size = size_proto3_string
+		} else {
+			p.enc = (*Buffer).enc_ref_string
+			p.dec = (*Buffer).dec_proto3_string
+			p.size = size_ref_string
+		}
+	case reflect.Struct:
+		p.stype = typ
+		p.isMarshaler = isMarshaler(typ)
+		p.isUnmarshaler = isUnmarshaler(typ)
+		if p.Wire == "bytes" {
+			p.enc = (*Buffer).enc_ref_struct_message
+			p.dec = (*Buffer).dec_ref_struct_message
+			p.size = size_ref_struct_message
+		} else {
+			fmt.Fprintf(os.Stderr, "proto: no coders for struct %T\n", typ)
+		}
+
+	case reflect.Ptr:
+		switch t2 := t1.Elem(); t2.Kind() {
+		default:
+			fmt.Fprintf(os.Stderr, "proto: no encoder function for %v -> %v\n", t1, t2)
+			break
+		case reflect.Bool:
+			p.enc = (*Buffer).enc_bool
+			p.dec = (*Buffer).dec_bool
+			p.size = size_bool
+		case reflect.Int32:
+			p.enc = (*Buffer).enc_int32
+			p.dec = (*Buffer).dec_int32
+			p.size = size_int32
+		case reflect.Uint32:
+			p.enc = (*Buffer).enc_uint32
+			p.dec = (*Buffer).dec_int32 // can reuse
+			p.size = size_uint32
+		case reflect.Int64, reflect.Uint64:
+			p.enc = (*Buffer).enc_int64
+			p.dec = (*Buffer).dec_int64
+			p.size = size_int64
+		case reflect.Float32:
+			p.enc = (*Buffer).enc_uint32 // can just treat them as bits
+			p.dec = (*Buffer).dec_int32
+			p.size = size_uint32
+		case reflect.Float64:
+			p.enc = (*Buffer).enc_int64 // can just treat them as bits
+			p.dec = (*Buffer).dec_int64
+			p.size = size_int64
+		case reflect.String:
+			p.enc = (*Buffer).enc_string
+			p.dec = (*Buffer).dec_string
+			p.size = size_string
+		case reflect.Struct:
+			p.stype = t1.Elem()
+			p.isMarshaler = isMarshaler(t1)
+			p.isUnmarshaler = isUnmarshaler(t1)
+			if p.Wire == "bytes" {
+				p.enc = (*Buffer).enc_struct_message
+				p.dec = (*Buffer).dec_struct_message
+				p.size = size_struct_message
+			} else {
+				p.enc = (*Buffer).enc_struct_group
+				p.dec = (*Buffer).dec_struct_group
+				p.size = size_struct_group
+			}
+		}
+
+	case reflect.Slice:
+		switch t2 := t1.Elem(); t2.Kind() {
+		default:
+			logNoSliceEnc(t1, t2)
+			break
+		case reflect.Bool:
+			if p.Packed {
+				p.enc = (*Buffer).enc_slice_packed_bool
+				p.size = size_slice_packed_bool
+			} else {
+				p.enc = (*Buffer).enc_slice_bool
+				p.size = size_slice_bool
+			}
+			p.dec = (*Buffer).dec_slice_bool
+			p.packedDec = (*Buffer).dec_slice_packed_bool
+		case reflect.Int32:
+			if p.Packed {
+				p.enc = (*Buffer).enc_slice_packed_int32
+				p.size = size_slice_packed_int32
+			} else {
+				p.enc = (*Buffer).enc_slice_int32
+				p.size = size_slice_int32
+			}
+			p.dec = (*Buffer).dec_slice_int32
+			p.packedDec = (*Buffer).dec_slice_packed_int32
+		case reflect.Uint32:
+			if p.Packed {
+				p.enc = (*Buffer).enc_slice_packed_uint32
+				p.size = size_slice_packed_uint32
+			} else {
+				p.enc = (*Buffer).enc_slice_uint32
+				p.size = size_slice_uint32
+			}
+			p.dec = (*Buffer).dec_slice_int32
+			p.packedDec = (*Buffer).dec_slice_packed_int32
+		case reflect.Int64, reflect.Uint64:
+			if p.Packed {
+				p.enc = (*Buffer).enc_slice_packed_int64
+				p.size = size_slice_packed_int64
+			} else {
+				p.enc = (*Buffer).enc_slice_int64
+				p.size = size_slice_int64
+			}
+			p.dec = (*Buffer).dec_slice_int64
+			p.packedDec = (*Buffer).dec_slice_packed_int64
+		case reflect.Uint8:
+			p.dec = (*Buffer).dec_slice_byte
+			if p.proto3 {
+				p.enc = (*Buffer).enc_proto3_slice_byte
+				p.size = size_proto3_slice_byte
+			} else {
+				p.enc = (*Buffer).enc_slice_byte
+				p.size = size_slice_byte
+			}
+		case reflect.Float32, reflect.Float64:
+			switch t2.Bits() {
+			case 32:
+				// can just treat them as bits
+				if p.Packed {
+					p.enc = (*Buffer).enc_slice_packed_uint32
+					p.size = size_slice_packed_uint32
+				} else {
+					p.enc = (*Buffer).enc_slice_uint32
+					p.size = size_slice_uint32
+				}
+				p.dec = (*Buffer).dec_slice_int32
+				p.packedDec = (*Buffer).dec_slice_packed_int32
+			case 64:
+				// can just treat them as bits
+				if p.Packed {
+					p.enc = (*Buffer).enc_slice_packed_int64
+					p.size = size_slice_packed_int64
+				} else {
+					p.enc = (*Buffer).enc_slice_int64
+					p.size = size_slice_int64
+				}
+				p.dec = (*Buffer).dec_slice_int64
+				p.packedDec = (*Buffer).dec_slice_packed_int64
+			default:
+				logNoSliceEnc(t1, t2)
+				break
+			}
+		case reflect.String:
+			p.enc = (*Buffer).enc_slice_string
+			p.dec = (*Buffer).dec_slice_string
+			p.size = size_slice_string
+		case reflect.Ptr:
+			switch t3 := t2.Elem(); t3.Kind() {
+			default:
+				fmt.Fprintf(os.Stderr, "proto: no ptr oenc for %T -> %T -> %T\n", t1, t2, t3)
+				break
+			case reflect.Struct:
+				p.stype = t2.Elem()
+				p.isMarshaler = isMarshaler(t2)
+				p.isUnmarshaler = isUnmarshaler(t2)
+				if p.Wire == "bytes" {
+					p.enc = (*Buffer).enc_slice_struct_message
+					p.dec = (*Buffer).dec_slice_struct_message
+					p.size = size_slice_struct_message
+				} else {
+					p.enc = (*Buffer).enc_slice_struct_group
+					p.dec = (*Buffer).dec_slice_struct_group
+					p.size = size_slice_struct_group
+				}
+			}
+		case reflect.Slice:
+			switch t2.Elem().Kind() {
+			default:
+				fmt.Fprintf(os.Stderr, "proto: no slice elem oenc for %T -> %T -> %T\n", t1, t2, t2.Elem())
+				break
+			case reflect.Uint8:
+				p.enc = (*Buffer).enc_slice_slice_byte
+				p.dec = (*Buffer).dec_slice_slice_byte
+				p.size = size_slice_slice_byte
+			}
+		case reflect.Struct:
+			p.setSliceOfNonPointerStructs(t1)
+		}
+
+	case reflect.Map:
+		p.enc = (*Buffer).enc_new_map
+		p.dec = (*Buffer).dec_new_map
+		p.size = size_new_map
+
+		p.mtype = t1
+		p.mkeyprop = &Properties{}
+		p.mkeyprop.init(reflect.PtrTo(p.mtype.Key()), "Key", f.Tag.Get("protobuf_key"), nil, lockGetProp)
+		p.mvalprop = &Properties{}
+		vtype := p.mtype.Elem()
+		if vtype.Kind() != reflect.Ptr && vtype.Kind() != reflect.Slice {
+			// The value type is not a message (*T) or bytes ([]byte),
+			// so we need encoders for the pointer to this type.
+			vtype = reflect.PtrTo(vtype)
+		}
+
+		p.mvalprop.CustomType = p.CustomType
+		p.mvalprop.StdDuration = p.StdDuration
+		p.mvalprop.StdTime = p.StdTime
+		p.mvalprop.init(vtype, "Value", f.Tag.Get("protobuf_val"), nil, lockGetProp)
+	}
+	p.setTag(lockGetProp)
+}
+
+func (p *Properties) setTag(lockGetProp bool) {
+	// precalculate tag code
+	wire := p.WireType
+	if p.Packed {
+		wire = WireBytes
+	}
+	x := uint32(p.Tag)<<3 | uint32(wire)
+	i := 0
+	for i = 0; x > 127; i++ {
+		p.tagbuf[i] = 0x80 | uint8(x&0x7F)
+		x >>= 7
+	}
+	p.tagbuf[i] = uint8(x)
+	p.tagcode = p.tagbuf[0 : i+1]
+
+	if p.stype != nil {
+		if lockGetProp {
+			p.sprop = GetProperties(p.stype)
+		} else {
+			p.sprop = getPropertiesLocked(p.stype)
+		}
+	}
+}
+
+var (
+	marshalerType   = reflect.TypeOf((*Marshaler)(nil)).Elem()
+	unmarshalerType = reflect.TypeOf((*Unmarshaler)(nil)).Elem()
+)
+
+// isMarshaler reports whether type t implements Marshaler.
+func isMarshaler(t reflect.Type) bool {
+	return t.Implements(marshalerType)
+}
+
+// isUnmarshaler reports whether type t implements Unmarshaler.
+func isUnmarshaler(t reflect.Type) bool {
+	return t.Implements(unmarshalerType)
+}
+
+// Init populates the properties from a protocol buffer struct tag.
+func (p *Properties) Init(typ reflect.Type, name, tag string, f *reflect.StructField) {
+	p.init(typ, name, tag, f, true)
+}
+
+func (p *Properties) init(typ reflect.Type, name, tag string, f *reflect.StructField, lockGetProp bool) {
+	// "bytes,49,opt,def=hello!"
+	p.Name = name
+	p.OrigName = name
+	if f != nil {
+		p.field = toField(f)
+	}
+	if tag == "" {
+		return
+	}
+	p.Parse(tag)
+	p.setEncAndDec(typ, f, lockGetProp)
+}
+
+var (
+	propertiesMu  sync.RWMutex
+	propertiesMap = make(map[reflect.Type]*StructProperties)
+)
+
+// GetProperties returns the list of properties for the type represented by t.
+// t must represent a generated struct type of a protocol message.
+func GetProperties(t reflect.Type) *StructProperties {
+	if t.Kind() != reflect.Struct {
+		panic("proto: type must have kind struct")
+	}
+
+	// Most calls to GetProperties in a long-running program will be
+	// retrieving details for types we have seen before.
+	propertiesMu.RLock()
+	sprop, ok := propertiesMap[t]
+	propertiesMu.RUnlock()
+	if ok {
+		if collectStats {
+			stats.Chit++
+		}
+		return sprop
+	}
+
+	propertiesMu.Lock()
+	sprop = getPropertiesLocked(t)
+	propertiesMu.Unlock()
+	return sprop
+}
+
+// getPropertiesLocked requires that propertiesMu is held.
+func getPropertiesLocked(t reflect.Type) *StructProperties {
+	if prop, ok := propertiesMap[t]; ok {
+		if collectStats {
+			stats.Chit++
+		}
+		return prop
+	}
+	if collectStats {
+		stats.Cmiss++
+	}
+
+	prop := new(StructProperties)
+	// in case of recursive protos, fill this in now.
+	propertiesMap[t] = prop
+
+	// build properties
+	prop.extendable = reflect.PtrTo(t).Implements(extendableProtoType) ||
+		reflect.PtrTo(t).Implements(extendableProtoV1Type) ||
+		reflect.PtrTo(t).Implements(extendableBytesType)
+	prop.unrecField = invalidField
+	prop.Prop = make([]*Properties, t.NumField())
+	prop.order = make([]int, t.NumField())
+
+	isOneofMessage := false
+	for i := 0; i < t.NumField(); i++ {
+		f := t.Field(i)
+		p := new(Properties)
+		name := f.Name
+		p.init(f.Type, name, f.Tag.Get("protobuf"), &f, false)
+
+		if f.Name == "XXX_InternalExtensions" { // special case
+			p.enc = (*Buffer).enc_exts
+			p.dec = nil // not needed
+			p.size = size_exts
+		} else if f.Name == "XXX_extensions" { // special case
+			if len(f.Tag.Get("protobuf")) > 0 {
+				p.enc = (*Buffer).enc_ext_slice_byte
+				p.dec = nil // not needed
+				p.size = size_ext_slice_byte
+			} else {
+				p.enc = (*Buffer).enc_map
+				p.dec = nil // not needed
+				p.size = size_map
+			}
+		} else if f.Name == "XXX_unrecognized" { // special case
+			prop.unrecField = toField(&f)
+		}
+		oneof := f.Tag.Get("protobuf_oneof") // special case
+		if oneof != "" {
+			isOneofMessage = true
+			// Oneof fields don't use the traditional protobuf tag.
+			p.OrigName = oneof
+		}
+		prop.Prop[i] = p
+		prop.order[i] = i
+		if debug {
+			print(i, " ", f.Name, " ", t.String(), " ")
+			if p.Tag > 0 {
+				print(p.String())
+			}
+			print("\n")
+		}
+		if p.enc == nil && !strings.HasPrefix(f.Name, "XXX_") && oneof == "" {
+			fmt.Fprintln(os.Stderr, "proto: no encoder for", f.Name, f.Type.String(), "[GetProperties]")
+		}
+	}
+
+	// Re-order prop.order.
+	sort.Sort(prop)
+
+	type oneofMessage interface {
+		XXX_OneofFuncs() (func(Message, *Buffer) error, func(Message, int, int, *Buffer) (bool, error), func(Message) int, []interface{})
+	}
+	if om, ok := reflect.Zero(reflect.PtrTo(t)).Interface().(oneofMessage); isOneofMessage && ok {
+		var oots []interface{}
+		prop.oneofMarshaler, prop.oneofUnmarshaler, prop.oneofSizer, oots = om.XXX_OneofFuncs()
+		prop.stype = t
+
+		// Interpret oneof metadata.
+		prop.OneofTypes = make(map[string]*OneofProperties)
+		for _, oot := range oots {
+			oop := &OneofProperties{
+				Type: reflect.ValueOf(oot).Type(), // *T
+				Prop: new(Properties),
+			}
+			sft := oop.Type.Elem().Field(0)
+			oop.Prop.Name = sft.Name
+			oop.Prop.Parse(sft.Tag.Get("protobuf"))
+			// There will be exactly one interface field that
+			// this new value is assignable to.
+			for i := 0; i < t.NumField(); i++ {
+				f := t.Field(i)
+				if f.Type.Kind() != reflect.Interface {
+					continue
+				}
+				if !oop.Type.AssignableTo(f.Type) {
+					continue
+				}
+				oop.Field = i
+				break
+			}
+			prop.OneofTypes[oop.Prop.OrigName] = oop
+		}
+	}
+
+	// build required counts
+	// build tags
+	reqCount := 0
+	prop.decoderOrigNames = make(map[string]int)
+	for i, p := range prop.Prop {
+		if strings.HasPrefix(p.Name, "XXX_") {
+			// Internal fields should not appear in tags/origNames maps.
+			// They are handled specially when encoding and decoding.
+			continue
+		}
+		if p.Required {
+			reqCount++
+		}
+		prop.decoderTags.put(p.Tag, i)
+		prop.decoderOrigNames[p.OrigName] = i
+	}
+	prop.reqCount = reqCount
+
+	return prop
+}
+
+// Return the Properties object for the x[0]'th field of the structure.
+func propByIndex(t reflect.Type, x []int) *Properties {
+	if len(x) != 1 {
+		fmt.Fprintf(os.Stderr, "proto: field index dimension %d (not 1) for type %s\n", len(x), t)
+		return nil
+	}
+	prop := GetProperties(t)
+	return prop.Prop[x[0]]
+}
+
+// Get the address and type of a pointer to a struct from an interface.
+func getbase(pb Message) (t reflect.Type, b structPointer, err error) {
+	if pb == nil {
+		err = ErrNil
+		return
+	}
+	// get the reflect type of the pointer to the struct.
+	t = reflect.TypeOf(pb)
+	// get the address of the struct.
+	value := reflect.ValueOf(pb)
+	b = toStructPointer(value)
+	return
+}
+
+// A global registry of enum types.
+// The generated code will register the generated maps by calling RegisterEnum.
+
+var enumValueMaps = make(map[string]map[string]int32)
+var enumStringMaps = make(map[string]map[int32]string)
+
+// RegisterEnum is called from the generated code to install the enum descriptor
+// maps into the global table to aid parsing text format protocol buffers.
+func RegisterEnum(typeName string, unusedNameMap map[int32]string, valueMap map[string]int32) {
+	if _, ok := enumValueMaps[typeName]; ok {
+		panic("proto: duplicate enum registered: " + typeName)
+	}
+	enumValueMaps[typeName] = valueMap
+	if _, ok := enumStringMaps[typeName]; ok {
+		panic("proto: duplicate enum registered: " + typeName)
+	}
+	enumStringMaps[typeName] = unusedNameMap
+}
+
+// EnumValueMap returns the mapping from names to integers of the
+// enum type enumType, or a nil if not found.
+func EnumValueMap(enumType string) map[string]int32 {
+	return enumValueMaps[enumType]
+}
+
+// A registry of all linked message types.
+// The string is a fully-qualified proto name ("pkg.Message").
+var (
+	protoTypes    = make(map[string]reflect.Type)
+	revProtoTypes = make(map[reflect.Type]string)
+)
+
+// RegisterType is called from generated code and maps from the fully qualified
+// proto name to the type (pointer to struct) of the protocol buffer.
+func RegisterType(x Message, name string) {
+	if _, ok := protoTypes[name]; ok {
+		// TODO: Some day, make this a panic.
+		log.Printf("proto: duplicate proto type registered: %s", name)
+		return
+	}
+	t := reflect.TypeOf(x)
+	protoTypes[name] = t
+	revProtoTypes[t] = name
+}
+
+// MessageName returns the fully-qualified proto name for the given message type.
+func MessageName(x Message) string {
+	type xname interface {
+		XXX_MessageName() string
+	}
+	if m, ok := x.(xname); ok {
+		return m.XXX_MessageName()
+	}
+	return revProtoTypes[reflect.TypeOf(x)]
+}
+
+// MessageType returns the message type (pointer to struct) for a named message.
+func MessageType(name string) reflect.Type { return protoTypes[name] }
+
+// A registry of all linked proto files.
+var (
+	protoFiles = make(map[string][]byte) // file name => fileDescriptor
+)
+
+// RegisterFile is called from generated code and maps from the
+// full file name of a .proto file to its compressed FileDescriptorProto.
+func RegisterFile(filename string, fileDescriptor []byte) {
+	protoFiles[filename] = fileDescriptor
+}
+
+// FileDescriptor returns the compressed FileDescriptorProto for a .proto file.
+func FileDescriptor(filename string) []byte { return protoFiles[filename] }
diff --git a/vendor/github.com/gogo/protobuf/proto/properties_gogo.go b/vendor/github.com/gogo/protobuf/proto/properties_gogo.go
new file mode 100644
index 0000000000..b6b7176c56
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/properties_gogo.go
@@ -0,0 +1,111 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"fmt"
+	"os"
+	"reflect"
+)
+
+func (p *Properties) setCustomEncAndDec(typ reflect.Type) {
+	p.ctype = typ
+	if p.Repeated {
+		p.enc = (*Buffer).enc_custom_slice_bytes
+		p.dec = (*Buffer).dec_custom_slice_bytes
+		p.size = size_custom_slice_bytes
+	} else if typ.Kind() == reflect.Ptr {
+		p.enc = (*Buffer).enc_custom_bytes
+		p.dec = (*Buffer).dec_custom_bytes
+		p.size = size_custom_bytes
+	} else {
+		p.enc = (*Buffer).enc_custom_ref_bytes
+		p.dec = (*Buffer).dec_custom_ref_bytes
+		p.size = size_custom_ref_bytes
+	}
+}
+
+func (p *Properties) setDurationEncAndDec(typ reflect.Type) {
+	if p.Repeated {
+		if typ.Elem().Kind() == reflect.Ptr {
+			p.enc = (*Buffer).enc_slice_duration
+			p.dec = (*Buffer).dec_slice_duration
+			p.size = size_slice_duration
+		} else {
+			p.enc = (*Buffer).enc_slice_ref_duration
+			p.dec = (*Buffer).dec_slice_ref_duration
+			p.size = size_slice_ref_duration
+		}
+	} else if typ.Kind() == reflect.Ptr {
+		p.enc = (*Buffer).enc_duration
+		p.dec = (*Buffer).dec_duration
+		p.size = size_duration
+	} else {
+		p.enc = (*Buffer).enc_ref_duration
+		p.dec = (*Buffer).dec_ref_duration
+		p.size = size_ref_duration
+	}
+}
+
+func (p *Properties) setTimeEncAndDec(typ reflect.Type) {
+	if p.Repeated {
+		if typ.Elem().Kind() == reflect.Ptr {
+			p.enc = (*Buffer).enc_slice_time
+			p.dec = (*Buffer).dec_slice_time
+			p.size = size_slice_time
+		} else {
+			p.enc = (*Buffer).enc_slice_ref_time
+			p.dec = (*Buffer).dec_slice_ref_time
+			p.size = size_slice_ref_time
+		}
+	} else if typ.Kind() == reflect.Ptr {
+		p.enc = (*Buffer).enc_time
+		p.dec = (*Buffer).dec_time
+		p.size = size_time
+	} else {
+		p.enc = (*Buffer).enc_ref_time
+		p.dec = (*Buffer).dec_ref_time
+		p.size = size_ref_time
+	}
+
+}
+
+func (p *Properties) setSliceOfNonPointerStructs(typ reflect.Type) {
+	t2 := typ.Elem()
+	p.sstype = typ
+	p.stype = t2
+	p.isMarshaler = isMarshaler(t2)
+	p.isUnmarshaler = isUnmarshaler(t2)
+	p.enc = (*Buffer).enc_slice_ref_struct_message
+	p.dec = (*Buffer).dec_slice_ref_struct_message
+	p.size = size_slice_ref_struct_message
+	if p.Wire != "bytes" {
+		fmt.Fprintf(os.Stderr, "proto: no ptr oenc for %T -> %T \n", typ, t2)
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/skip_gogo.go b/vendor/github.com/gogo/protobuf/proto/skip_gogo.go
new file mode 100644
index 0000000000..5a5fd93f7c
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/skip_gogo.go
@@ -0,0 +1,119 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"fmt"
+	"io"
+)
+
+func Skip(data []byte) (n int, err error) {
+	l := len(data)
+	index := 0
+	for index < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if index >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := data[index]
+			index++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for {
+				if index >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				index++
+				if data[index-1] < 0x80 {
+					break
+				}
+			}
+			return index, nil
+		case 1:
+			index += 8
+			return index, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if index >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := data[index]
+				index++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			index += length
+			return index, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = index
+				for shift := uint(0); ; shift += 7 {
+					if index >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := data[index]
+					index++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := Skip(data[start:])
+				if err != nil {
+					return 0, err
+				}
+				index = start + next
+			}
+			return index, nil
+		case 4:
+			return index, nil
+		case 5:
+			index += 4
+			return index, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/text.go b/vendor/github.com/gogo/protobuf/proto/text.go
new file mode 100644
index 0000000000..f609d1d453
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/text.go
@@ -0,0 +1,939 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+// Functions for writing the text protocol buffer format.
+
+import (
+	"bufio"
+	"bytes"
+	"encoding"
+	"errors"
+	"fmt"
+	"io"
+	"log"
+	"math"
+	"reflect"
+	"sort"
+	"strings"
+	"sync"
+	"time"
+)
+
+var (
+	newline         = []byte("\n")
+	spaces          = []byte("                                        ")
+	gtNewline       = []byte(">\n")
+	endBraceNewline = []byte("}\n")
+	backslashN      = []byte{'\\', 'n'}
+	backslashR      = []byte{'\\', 'r'}
+	backslashT      = []byte{'\\', 't'}
+	backslashDQ     = []byte{'\\', '"'}
+	backslashBS     = []byte{'\\', '\\'}
+	posInf          = []byte("inf")
+	negInf          = []byte("-inf")
+	nan             = []byte("nan")
+)
+
+type writer interface {
+	io.Writer
+	WriteByte(byte) error
+}
+
+// textWriter is an io.Writer that tracks its indentation level.
+type textWriter struct {
+	ind      int
+	complete bool // if the current position is a complete line
+	compact  bool // whether to write out as a one-liner
+	w        writer
+}
+
+func (w *textWriter) WriteString(s string) (n int, err error) {
+	if !strings.Contains(s, "\n") {
+		if !w.compact && w.complete {
+			w.writeIndent()
+		}
+		w.complete = false
+		return io.WriteString(w.w, s)
+	}
+	// WriteString is typically called without newlines, so this
+	// codepath and its copy are rare.  We copy to avoid
+	// duplicating all of Write's logic here.
+	return w.Write([]byte(s))
+}
+
+func (w *textWriter) Write(p []byte) (n int, err error) {
+	newlines := bytes.Count(p, newline)
+	if newlines == 0 {
+		if !w.compact && w.complete {
+			w.writeIndent()
+		}
+		n, err = w.w.Write(p)
+		w.complete = false
+		return n, err
+	}
+
+	frags := bytes.SplitN(p, newline, newlines+1)
+	if w.compact {
+		for i, frag := range frags {
+			if i > 0 {
+				if err := w.w.WriteByte(' '); err != nil {
+					return n, err
+				}
+				n++
+			}
+			nn, err := w.w.Write(frag)
+			n += nn
+			if err != nil {
+				return n, err
+			}
+		}
+		return n, nil
+	}
+
+	for i, frag := range frags {
+		if w.complete {
+			w.writeIndent()
+		}
+		nn, err := w.w.Write(frag)
+		n += nn
+		if err != nil {
+			return n, err
+		}
+		if i+1 < len(frags) {
+			if err := w.w.WriteByte('\n'); err != nil {
+				return n, err
+			}
+			n++
+		}
+	}
+	w.complete = len(frags[len(frags)-1]) == 0
+	return n, nil
+}
+
+func (w *textWriter) WriteByte(c byte) error {
+	if w.compact && c == '\n' {
+		c = ' '
+	}
+	if !w.compact && w.complete {
+		w.writeIndent()
+	}
+	err := w.w.WriteByte(c)
+	w.complete = c == '\n'
+	return err
+}
+
+func (w *textWriter) indent() { w.ind++ }
+
+func (w *textWriter) unindent() {
+	if w.ind == 0 {
+		log.Print("proto: textWriter unindented too far")
+		return
+	}
+	w.ind--
+}
+
+func writeName(w *textWriter, props *Properties) error {
+	if _, err := w.WriteString(props.OrigName); err != nil {
+		return err
+	}
+	if props.Wire != "group" {
+		return w.WriteByte(':')
+	}
+	return nil
+}
+
+// raw is the interface satisfied by RawMessage.
+type raw interface {
+	Bytes() []byte
+}
+
+func requiresQuotes(u string) bool {
+	// When type URL contains any characters except [0-9A-Za-z./\-]*, it must be quoted.
+	for _, ch := range u {
+		switch {
+		case ch == '.' || ch == '/' || ch == '_':
+			continue
+		case '0' <= ch && ch <= '9':
+			continue
+		case 'A' <= ch && ch <= 'Z':
+			continue
+		case 'a' <= ch && ch <= 'z':
+			continue
+		default:
+			return true
+		}
+	}
+	return false
+}
+
+// isAny reports whether sv is a google.protobuf.Any message
+func isAny(sv reflect.Value) bool {
+	type wkt interface {
+		XXX_WellKnownType() string
+	}
+	t, ok := sv.Addr().Interface().(wkt)
+	return ok && t.XXX_WellKnownType() == "Any"
+}
+
+// writeProto3Any writes an expanded google.protobuf.Any message.
+//
+// It returns (false, nil) if sv value can't be unmarshaled (e.g. because
+// required messages are not linked in).
+//
+// It returns (true, error) when sv was written in expanded format or an error
+// was encountered.
+func (tm *TextMarshaler) writeProto3Any(w *textWriter, sv reflect.Value) (bool, error) {
+	turl := sv.FieldByName("TypeUrl")
+	val := sv.FieldByName("Value")
+	if !turl.IsValid() || !val.IsValid() {
+		return true, errors.New("proto: invalid google.protobuf.Any message")
+	}
+
+	b, ok := val.Interface().([]byte)
+	if !ok {
+		return true, errors.New("proto: invalid google.protobuf.Any message")
+	}
+
+	parts := strings.Split(turl.String(), "/")
+	mt := MessageType(parts[len(parts)-1])
+	if mt == nil {
+		return false, nil
+	}
+	m := reflect.New(mt.Elem())
+	if err := Unmarshal(b, m.Interface().(Message)); err != nil {
+		return false, nil
+	}
+	w.Write([]byte("["))
+	u := turl.String()
+	if requiresQuotes(u) {
+		writeString(w, u)
+	} else {
+		w.Write([]byte(u))
+	}
+	if w.compact {
+		w.Write([]byte("]:<"))
+	} else {
+		w.Write([]byte("]: <\n"))
+		w.ind++
+	}
+	if err := tm.writeStruct(w, m.Elem()); err != nil {
+		return true, err
+	}
+	if w.compact {
+		w.Write([]byte("> "))
+	} else {
+		w.ind--
+		w.Write([]byte(">\n"))
+	}
+	return true, nil
+}
+
+func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
+	if tm.ExpandAny && isAny(sv) {
+		if canExpand, err := tm.writeProto3Any(w, sv); canExpand {
+			return err
+		}
+	}
+	st := sv.Type()
+	sprops := GetProperties(st)
+	for i := 0; i < sv.NumField(); i++ {
+		fv := sv.Field(i)
+		props := sprops.Prop[i]
+		name := st.Field(i).Name
+
+		if strings.HasPrefix(name, "XXX_") {
+			// There are two XXX_ fields:
+			//   XXX_unrecognized []byte
+			//   XXX_extensions   map[int32]proto.Extension
+			// The first is handled here;
+			// the second is handled at the bottom of this function.
+			if name == "XXX_unrecognized" && !fv.IsNil() {
+				if err := writeUnknownStruct(w, fv.Interface().([]byte)); err != nil {
+					return err
+				}
+			}
+			continue
+		}
+		if fv.Kind() == reflect.Ptr && fv.IsNil() {
+			// Field not filled in. This could be an optional field or
+			// a required field that wasn't filled in. Either way, there
+			// isn't anything we can show for it.
+			continue
+		}
+		if fv.Kind() == reflect.Slice && fv.IsNil() {
+			// Repeated field that is empty, or a bytes field that is unused.
+			continue
+		}
+
+		if props.Repeated && fv.Kind() == reflect.Slice {
+			// Repeated field.
+			for j := 0; j < fv.Len(); j++ {
+				if err := writeName(w, props); err != nil {
+					return err
+				}
+				if !w.compact {
+					if err := w.WriteByte(' '); err != nil {
+						return err
+					}
+				}
+				v := fv.Index(j)
+				if v.Kind() == reflect.Ptr && v.IsNil() {
+					// A nil message in a repeated field is not valid,
+					// but we can handle that more gracefully than panicking.
+					if _, err := w.Write([]byte("<nil>\n")); err != nil {
+						return err
+					}
+					continue
+				}
+				if len(props.Enum) > 0 {
+					if err := tm.writeEnum(w, v, props); err != nil {
+						return err
+					}
+				} else if err := tm.writeAny(w, v, props); err != nil {
+					return err
+				}
+				if err := w.WriteByte('\n'); err != nil {
+					return err
+				}
+			}
+			continue
+		}
+		if fv.Kind() == reflect.Map {
+			// Map fields are rendered as a repeated struct with key/value fields.
+			keys := fv.MapKeys()
+			sort.Sort(mapKeys(keys))
+			for _, key := range keys {
+				val := fv.MapIndex(key)
+				if err := writeName(w, props); err != nil {
+					return err
+				}
+				if !w.compact {
+					if err := w.WriteByte(' '); err != nil {
+						return err
+					}
+				}
+				// open struct
+				if err := w.WriteByte('<'); err != nil {
+					return err
+				}
+				if !w.compact {
+					if err := w.WriteByte('\n'); err != nil {
+						return err
+					}
+				}
+				w.indent()
+				// key
+				if _, err := w.WriteString("key:"); err != nil {
+					return err
+				}
+				if !w.compact {
+					if err := w.WriteByte(' '); err != nil {
+						return err
+					}
+				}
+				if err := tm.writeAny(w, key, props.mkeyprop); err != nil {
+					return err
+				}
+				if err := w.WriteByte('\n'); err != nil {
+					return err
+				}
+				// nil values aren't legal, but we can avoid panicking because of them.
+				if val.Kind() != reflect.Ptr || !val.IsNil() {
+					// value
+					if _, err := w.WriteString("value:"); err != nil {
+						return err
+					}
+					if !w.compact {
+						if err := w.WriteByte(' '); err != nil {
+							return err
+						}
+					}
+					if err := tm.writeAny(w, val, props.mvalprop); err != nil {
+						return err
+					}
+					if err := w.WriteByte('\n'); err != nil {
+						return err
+					}
+				}
+				// close struct
+				w.unindent()
+				if err := w.WriteByte('>'); err != nil {
+					return err
+				}
+				if err := w.WriteByte('\n'); err != nil {
+					return err
+				}
+			}
+			continue
+		}
+		if props.proto3 && fv.Kind() == reflect.Slice && fv.Len() == 0 {
+			// empty bytes field
+			continue
+		}
+		if props.proto3 && fv.Kind() != reflect.Ptr && fv.Kind() != reflect.Slice {
+			// proto3 non-repeated scalar field; skip if zero value
+			if isProto3Zero(fv) {
+				continue
+			}
+		}
+
+		if fv.Kind() == reflect.Interface {
+			// Check if it is a oneof.
+			if st.Field(i).Tag.Get("protobuf_oneof") != "" {
+				// fv is nil, or holds a pointer to generated struct.
+				// That generated struct has exactly one field,
+				// which has a protobuf struct tag.
+				if fv.IsNil() {
+					continue
+				}
+				inner := fv.Elem().Elem() // interface -> *T -> T
+				tag := inner.Type().Field(0).Tag.Get("protobuf")
+				props = new(Properties) // Overwrite the outer props var, but not its pointee.
+				props.Parse(tag)
+				// Write the value in the oneof, not the oneof itself.
+				fv = inner.Field(0)
+
+				// Special case to cope with malformed messages gracefully:
+				// If the value in the oneof is a nil pointer, don't panic
+				// in writeAny.
+				if fv.Kind() == reflect.Ptr && fv.IsNil() {
+					// Use errors.New so writeAny won't render quotes.
+					msg := errors.New("/* nil */")
+					fv = reflect.ValueOf(&msg).Elem()
+				}
+			}
+		}
+
+		if err := writeName(w, props); err != nil {
+			return err
+		}
+		if !w.compact {
+			if err := w.WriteByte(' '); err != nil {
+				return err
+			}
+		}
+		if b, ok := fv.Interface().(raw); ok {
+			if err := writeRaw(w, b.Bytes()); err != nil {
+				return err
+			}
+			continue
+		}
+
+		if len(props.Enum) > 0 {
+			if err := tm.writeEnum(w, fv, props); err != nil {
+				return err
+			}
+		} else if err := tm.writeAny(w, fv, props); err != nil {
+			return err
+		}
+
+		if err := w.WriteByte('\n'); err != nil {
+			return err
+		}
+	}
+
+	// Extensions (the XXX_extensions field).
+	pv := sv
+	if pv.CanAddr() {
+		pv = sv.Addr()
+	} else {
+		pv = reflect.New(sv.Type())
+		pv.Elem().Set(sv)
+	}
+	if pv.Type().Implements(extensionRangeType) {
+		if err := tm.writeExtensions(w, pv); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+// writeRaw writes an uninterpreted raw message.
+func writeRaw(w *textWriter, b []byte) error {
+	if err := w.WriteByte('<'); err != nil {
+		return err
+	}
+	if !w.compact {
+		if err := w.WriteByte('\n'); err != nil {
+			return err
+		}
+	}
+	w.indent()
+	if err := writeUnknownStruct(w, b); err != nil {
+		return err
+	}
+	w.unindent()
+	if err := w.WriteByte('>'); err != nil {
+		return err
+	}
+	return nil
+}
+
+// writeAny writes an arbitrary field.
+func (tm *TextMarshaler) writeAny(w *textWriter, v reflect.Value, props *Properties) error {
+	v = reflect.Indirect(v)
+
+	if props != nil {
+		if len(props.CustomType) > 0 {
+			custom, ok := v.Interface().(Marshaler)
+			if ok {
+				data, err := custom.Marshal()
+				if err != nil {
+					return err
+				}
+				if err := writeString(w, string(data)); err != nil {
+					return err
+				}
+				return nil
+			}
+		} else if len(props.CastType) > 0 {
+			if _, ok := v.Interface().(interface {
+				String() string
+			}); ok {
+				switch v.Kind() {
+				case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64,
+					reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
+					_, err := fmt.Fprintf(w, "%d", v.Interface())
+					return err
+				}
+			}
+		} else if props.StdTime {
+			t, ok := v.Interface().(time.Time)
+			if !ok {
+				return fmt.Errorf("stdtime is not time.Time, but %T", v.Interface())
+			}
+			tproto, err := timestampProto(t)
+			if err != nil {
+				return err
+			}
+			propsCopy := *props // Make a copy so that this is goroutine-safe
+			propsCopy.StdTime = false
+			err = tm.writeAny(w, reflect.ValueOf(tproto), &propsCopy)
+			return err
+		} else if props.StdDuration {
+			d, ok := v.Interface().(time.Duration)
+			if !ok {
+				return fmt.Errorf("stdtime is not time.Duration, but %T", v.Interface())
+			}
+			dproto := durationProto(d)
+			propsCopy := *props // Make a copy so that this is goroutine-safe
+			propsCopy.StdDuration = false
+			err := tm.writeAny(w, reflect.ValueOf(dproto), &propsCopy)
+			return err
+		}
+	}
+
+	// Floats have special cases.
+	if v.Kind() == reflect.Float32 || v.Kind() == reflect.Float64 {
+		x := v.Float()
+		var b []byte
+		switch {
+		case math.IsInf(x, 1):
+			b = posInf
+		case math.IsInf(x, -1):
+			b = negInf
+		case math.IsNaN(x):
+			b = nan
+		}
+		if b != nil {
+			_, err := w.Write(b)
+			return err
+		}
+		// Other values are handled below.
+	}
+
+	// We don't attempt to serialise every possible value type; only those
+	// that can occur in protocol buffers.
+	switch v.Kind() {
+	case reflect.Slice:
+		// Should only be a []byte; repeated fields are handled in writeStruct.
+		if err := writeString(w, string(v.Bytes())); err != nil {
+			return err
+		}
+	case reflect.String:
+		if err := writeString(w, v.String()); err != nil {
+			return err
+		}
+	case reflect.Struct:
+		// Required/optional group/message.
+		var bra, ket byte = '<', '>'
+		if props != nil && props.Wire == "group" {
+			bra, ket = '{', '}'
+		}
+		if err := w.WriteByte(bra); err != nil {
+			return err
+		}
+		if !w.compact {
+			if err := w.WriteByte('\n'); err != nil {
+				return err
+			}
+		}
+		w.indent()
+		if etm, ok := v.Interface().(encoding.TextMarshaler); ok {
+			text, err := etm.MarshalText()
+			if err != nil {
+				return err
+			}
+			if _, err = w.Write(text); err != nil {
+				return err
+			}
+		} else if err := tm.writeStruct(w, v); err != nil {
+			return err
+		}
+		w.unindent()
+		if err := w.WriteByte(ket); err != nil {
+			return err
+		}
+	default:
+		_, err := fmt.Fprint(w, v.Interface())
+		return err
+	}
+	return nil
+}
+
+// equivalent to C's isprint.
+func isprint(c byte) bool {
+	return c >= 0x20 && c < 0x7f
+}
+
+// writeString writes a string in the protocol buffer text format.
+// It is similar to strconv.Quote except we don't use Go escape sequences,
+// we treat the string as a byte sequence, and we use octal escapes.
+// These differences are to maintain interoperability with the other
+// languages' implementations of the text format.
+func writeString(w *textWriter, s string) error {
+	// use WriteByte here to get any needed indent
+	if err := w.WriteByte('"'); err != nil {
+		return err
+	}
+	// Loop over the bytes, not the runes.
+	for i := 0; i < len(s); i++ {
+		var err error
+		// Divergence from C++: we don't escape apostrophes.
+		// There's no need to escape them, and the C++ parser
+		// copes with a naked apostrophe.
+		switch c := s[i]; c {
+		case '\n':
+			_, err = w.w.Write(backslashN)
+		case '\r':
+			_, err = w.w.Write(backslashR)
+		case '\t':
+			_, err = w.w.Write(backslashT)
+		case '"':
+			_, err = w.w.Write(backslashDQ)
+		case '\\':
+			_, err = w.w.Write(backslashBS)
+		default:
+			if isprint(c) {
+				err = w.w.WriteByte(c)
+			} else {
+				_, err = fmt.Fprintf(w.w, "\\%03o", c)
+			}
+		}
+		if err != nil {
+			return err
+		}
+	}
+	return w.WriteByte('"')
+}
+
+func writeUnknownStruct(w *textWriter, data []byte) (err error) {
+	if !w.compact {
+		if _, err := fmt.Fprintf(w, "/* %d unknown bytes */\n", len(data)); err != nil {
+			return err
+		}
+	}
+	b := NewBuffer(data)
+	for b.index < len(b.buf) {
+		x, err := b.DecodeVarint()
+		if err != nil {
+			_, ferr := fmt.Fprintf(w, "/* %v */\n", err)
+			return ferr
+		}
+		wire, tag := x&7, x>>3
+		if wire == WireEndGroup {
+			w.unindent()
+			if _, werr := w.Write(endBraceNewline); werr != nil {
+				return werr
+			}
+			continue
+		}
+		if _, ferr := fmt.Fprint(w, tag); ferr != nil {
+			return ferr
+		}
+		if wire != WireStartGroup {
+			if err = w.WriteByte(':'); err != nil {
+				return err
+			}
+		}
+		if !w.compact || wire == WireStartGroup {
+			if err = w.WriteByte(' '); err != nil {
+				return err
+			}
+		}
+		switch wire {
+		case WireBytes:
+			buf, e := b.DecodeRawBytes(false)
+			if e == nil {
+				_, err = fmt.Fprintf(w, "%q", buf)
+			} else {
+				_, err = fmt.Fprintf(w, "/* %v */", e)
+			}
+		case WireFixed32:
+			x, err = b.DecodeFixed32()
+			err = writeUnknownInt(w, x, err)
+		case WireFixed64:
+			x, err = b.DecodeFixed64()
+			err = writeUnknownInt(w, x, err)
+		case WireStartGroup:
+			err = w.WriteByte('{')
+			w.indent()
+		case WireVarint:
+			x, err = b.DecodeVarint()
+			err = writeUnknownInt(w, x, err)
+		default:
+			_, err = fmt.Fprintf(w, "/* unknown wire type %d */", wire)
+		}
+		if err != nil {
+			return err
+		}
+		if err := w.WriteByte('\n'); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func writeUnknownInt(w *textWriter, x uint64, err error) error {
+	if err == nil {
+		_, err = fmt.Fprint(w, x)
+	} else {
+		_, err = fmt.Fprintf(w, "/* %v */", err)
+	}
+	return err
+}
+
+type int32Slice []int32
+
+func (s int32Slice) Len() int           { return len(s) }
+func (s int32Slice) Less(i, j int) bool { return s[i] < s[j] }
+func (s int32Slice) Swap(i, j int)      { s[i], s[j] = s[j], s[i] }
+
+// writeExtensions writes all the extensions in pv.
+// pv is assumed to be a pointer to a protocol message struct that is extendable.
+func (tm *TextMarshaler) writeExtensions(w *textWriter, pv reflect.Value) error {
+	emap := extensionMaps[pv.Type().Elem()]
+	e := pv.Interface().(Message)
+
+	var m map[int32]Extension
+	var mu sync.Locker
+	if em, ok := e.(extensionsBytes); ok {
+		eb := em.GetExtensions()
+		var err error
+		m, err = BytesToExtensionsMap(*eb)
+		if err != nil {
+			return err
+		}
+		mu = notLocker{}
+	} else if _, ok := e.(extendableProto); ok {
+		ep, _ := extendable(e)
+		m, mu = ep.extensionsRead()
+		if m == nil {
+			return nil
+		}
+	}
+
+	// Order the extensions by ID.
+	// This isn't strictly necessary, but it will give us
+	// canonical output, which will also make testing easier.
+
+	mu.Lock()
+	ids := make([]int32, 0, len(m))
+	for id := range m {
+		ids = append(ids, id)
+	}
+	sort.Sort(int32Slice(ids))
+	mu.Unlock()
+
+	for _, extNum := range ids {
+		ext := m[extNum]
+		var desc *ExtensionDesc
+		if emap != nil {
+			desc = emap[extNum]
+		}
+		if desc == nil {
+			// Unknown extension.
+			if err := writeUnknownStruct(w, ext.enc); err != nil {
+				return err
+			}
+			continue
+		}
+
+		pb, err := GetExtension(e, desc)
+		if err != nil {
+			return fmt.Errorf("failed getting extension: %v", err)
+		}
+
+		// Repeated extensions will appear as a slice.
+		if !desc.repeated() {
+			if err := tm.writeExtension(w, desc.Name, pb); err != nil {
+				return err
+			}
+		} else {
+			v := reflect.ValueOf(pb)
+			for i := 0; i < v.Len(); i++ {
+				if err := tm.writeExtension(w, desc.Name, v.Index(i).Interface()); err != nil {
+					return err
+				}
+			}
+		}
+	}
+	return nil
+}
+
+func (tm *TextMarshaler) writeExtension(w *textWriter, name string, pb interface{}) error {
+	if _, err := fmt.Fprintf(w, "[%s]:", name); err != nil {
+		return err
+	}
+	if !w.compact {
+		if err := w.WriteByte(' '); err != nil {
+			return err
+		}
+	}
+	if err := tm.writeAny(w, reflect.ValueOf(pb), nil); err != nil {
+		return err
+	}
+	if err := w.WriteByte('\n'); err != nil {
+		return err
+	}
+	return nil
+}
+
+func (w *textWriter) writeIndent() {
+	if !w.complete {
+		return
+	}
+	remain := w.ind * 2
+	for remain > 0 {
+		n := remain
+		if n > len(spaces) {
+			n = len(spaces)
+		}
+		w.w.Write(spaces[:n])
+		remain -= n
+	}
+	w.complete = false
+}
+
+// TextMarshaler is a configurable text format marshaler.
+type TextMarshaler struct {
+	Compact   bool // use compact text format (one line).
+	ExpandAny bool // expand google.protobuf.Any messages of known types
+}
+
+// Marshal writes a given protocol buffer in text format.
+// The only errors returned are from w.
+func (tm *TextMarshaler) Marshal(w io.Writer, pb Message) error {
+	val := reflect.ValueOf(pb)
+	if pb == nil || val.IsNil() {
+		w.Write([]byte("<nil>"))
+		return nil
+	}
+	var bw *bufio.Writer
+	ww, ok := w.(writer)
+	if !ok {
+		bw = bufio.NewWriter(w)
+		ww = bw
+	}
+	aw := &textWriter{
+		w:        ww,
+		complete: true,
+		compact:  tm.Compact,
+	}
+
+	if etm, ok := pb.(encoding.TextMarshaler); ok {
+		text, err := etm.MarshalText()
+		if err != nil {
+			return err
+		}
+		if _, err = aw.Write(text); err != nil {
+			return err
+		}
+		if bw != nil {
+			return bw.Flush()
+		}
+		return nil
+	}
+	// Dereference the received pointer so we don't have outer < and >.
+	v := reflect.Indirect(val)
+	if err := tm.writeStruct(aw, v); err != nil {
+		return err
+	}
+	if bw != nil {
+		return bw.Flush()
+	}
+	return nil
+}
+
+// Text is the same as Marshal, but returns the string directly.
+func (tm *TextMarshaler) Text(pb Message) string {
+	var buf bytes.Buffer
+	tm.Marshal(&buf, pb)
+	return buf.String()
+}
+
+var (
+	defaultTextMarshaler = TextMarshaler{}
+	compactTextMarshaler = TextMarshaler{Compact: true}
+)
+
+// TODO: consider removing some of the Marshal functions below.
+
+// MarshalText writes a given protocol buffer in text format.
+// The only errors returned are from w.
+func MarshalText(w io.Writer, pb Message) error { return defaultTextMarshaler.Marshal(w, pb) }
+
+// MarshalTextString is the same as MarshalText, but returns the string directly.
+func MarshalTextString(pb Message) string { return defaultTextMarshaler.Text(pb) }
+
+// CompactText writes a given protocol buffer in compact text format (one line).
+func CompactText(w io.Writer, pb Message) error { return compactTextMarshaler.Marshal(w, pb) }
+
+// CompactTextString is the same as CompactText, but returns the string directly.
+func CompactTextString(pb Message) string { return compactTextMarshaler.Text(pb) }
diff --git a/vendor/github.com/gogo/protobuf/proto/text_gogo.go b/vendor/github.com/gogo/protobuf/proto/text_gogo.go
new file mode 100644
index 0000000000..1d6c6aa0e4
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/text_gogo.go
@@ -0,0 +1,57 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"fmt"
+	"reflect"
+)
+
+func (tm *TextMarshaler) writeEnum(w *textWriter, v reflect.Value, props *Properties) error {
+	m, ok := enumStringMaps[props.Enum]
+	if !ok {
+		if err := tm.writeAny(w, v, props); err != nil {
+			return err
+		}
+	}
+	key := int32(0)
+	if v.Kind() == reflect.Ptr {
+		key = int32(v.Elem().Int())
+	} else {
+		key = int32(v.Int())
+	}
+	s, ok := m[key]
+	if !ok {
+		if err := tm.writeAny(w, v, props); err != nil {
+			return err
+		}
+	}
+	_, err := fmt.Fprint(w, s)
+	return err
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/text_parser.go b/vendor/github.com/gogo/protobuf/proto/text_parser.go
new file mode 100644
index 0000000000..f1276729a3
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/text_parser.go
@@ -0,0 +1,1013 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2010 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+// Functions for parsing the Text protocol buffer format.
+// TODO: message sets.
+
+import (
+	"encoding"
+	"errors"
+	"fmt"
+	"reflect"
+	"strconv"
+	"strings"
+	"time"
+	"unicode/utf8"
+)
+
+// Error string emitted when deserializing Any and fields are already set
+const anyRepeatedlyUnpacked = "Any message unpacked multiple times, or %q already set"
+
+type ParseError struct {
+	Message string
+	Line    int // 1-based line number
+	Offset  int // 0-based byte offset from start of input
+}
+
+func (p *ParseError) Error() string {
+	if p.Line == 1 {
+		// show offset only for first line
+		return fmt.Sprintf("line 1.%d: %v", p.Offset, p.Message)
+	}
+	return fmt.Sprintf("line %d: %v", p.Line, p.Message)
+}
+
+type token struct {
+	value    string
+	err      *ParseError
+	line     int    // line number
+	offset   int    // byte number from start of input, not start of line
+	unquoted string // the unquoted version of value, if it was a quoted string
+}
+
+func (t *token) String() string {
+	if t.err == nil {
+		return fmt.Sprintf("%q (line=%d, offset=%d)", t.value, t.line, t.offset)
+	}
+	return fmt.Sprintf("parse error: %v", t.err)
+}
+
+type textParser struct {
+	s            string // remaining input
+	done         bool   // whether the parsing is finished (success or error)
+	backed       bool   // whether back() was called
+	offset, line int
+	cur          token
+}
+
+func newTextParser(s string) *textParser {
+	p := new(textParser)
+	p.s = s
+	p.line = 1
+	p.cur.line = 1
+	return p
+}
+
+func (p *textParser) errorf(format string, a ...interface{}) *ParseError {
+	pe := &ParseError{fmt.Sprintf(format, a...), p.cur.line, p.cur.offset}
+	p.cur.err = pe
+	p.done = true
+	return pe
+}
+
+// Numbers and identifiers are matched by [-+._A-Za-z0-9]
+func isIdentOrNumberChar(c byte) bool {
+	switch {
+	case 'A' <= c && c <= 'Z', 'a' <= c && c <= 'z':
+		return true
+	case '0' <= c && c <= '9':
+		return true
+	}
+	switch c {
+	case '-', '+', '.', '_':
+		return true
+	}
+	return false
+}
+
+func isWhitespace(c byte) bool {
+	switch c {
+	case ' ', '\t', '\n', '\r':
+		return true
+	}
+	return false
+}
+
+func isQuote(c byte) bool {
+	switch c {
+	case '"', '\'':
+		return true
+	}
+	return false
+}
+
+func (p *textParser) skipWhitespace() {
+	i := 0
+	for i < len(p.s) && (isWhitespace(p.s[i]) || p.s[i] == '#') {
+		if p.s[i] == '#' {
+			// comment; skip to end of line or input
+			for i < len(p.s) && p.s[i] != '\n' {
+				i++
+			}
+			if i == len(p.s) {
+				break
+			}
+		}
+		if p.s[i] == '\n' {
+			p.line++
+		}
+		i++
+	}
+	p.offset += i
+	p.s = p.s[i:len(p.s)]
+	if len(p.s) == 0 {
+		p.done = true
+	}
+}
+
+func (p *textParser) advance() {
+	// Skip whitespace
+	p.skipWhitespace()
+	if p.done {
+		return
+	}
+
+	// Start of non-whitespace
+	p.cur.err = nil
+	p.cur.offset, p.cur.line = p.offset, p.line
+	p.cur.unquoted = ""
+	switch p.s[0] {
+	case '<', '>', '{', '}', ':', '[', ']', ';', ',', '/':
+		// Single symbol
+		p.cur.value, p.s = p.s[0:1], p.s[1:len(p.s)]
+	case '"', '\'':
+		// Quoted string
+		i := 1
+		for i < len(p.s) && p.s[i] != p.s[0] && p.s[i] != '\n' {
+			if p.s[i] == '\\' && i+1 < len(p.s) {
+				// skip escaped char
+				i++
+			}
+			i++
+		}
+		if i >= len(p.s) || p.s[i] != p.s[0] {
+			p.errorf("unmatched quote")
+			return
+		}
+		unq, err := unquoteC(p.s[1:i], rune(p.s[0]))
+		if err != nil {
+			p.errorf("invalid quoted string %s: %v", p.s[0:i+1], err)
+			return
+		}
+		p.cur.value, p.s = p.s[0:i+1], p.s[i+1:len(p.s)]
+		p.cur.unquoted = unq
+	default:
+		i := 0
+		for i < len(p.s) && isIdentOrNumberChar(p.s[i]) {
+			i++
+		}
+		if i == 0 {
+			p.errorf("unexpected byte %#x", p.s[0])
+			return
+		}
+		p.cur.value, p.s = p.s[0:i], p.s[i:len(p.s)]
+	}
+	p.offset += len(p.cur.value)
+}
+
+var (
+	errBadUTF8 = errors.New("proto: bad UTF-8")
+	errBadHex  = errors.New("proto: bad hexadecimal")
+)
+
+func unquoteC(s string, quote rune) (string, error) {
+	// This is based on C++'s tokenizer.cc.
+	// Despite its name, this is *not* parsing C syntax.
+	// For instance, "\0" is an invalid quoted string.
+
+	// Avoid allocation in trivial cases.
+	simple := true
+	for _, r := range s {
+		if r == '\\' || r == quote {
+			simple = false
+			break
+		}
+	}
+	if simple {
+		return s, nil
+	}
+
+	buf := make([]byte, 0, 3*len(s)/2)
+	for len(s) > 0 {
+		r, n := utf8.DecodeRuneInString(s)
+		if r == utf8.RuneError && n == 1 {
+			return "", errBadUTF8
+		}
+		s = s[n:]
+		if r != '\\' {
+			if r < utf8.RuneSelf {
+				buf = append(buf, byte(r))
+			} else {
+				buf = append(buf, string(r)...)
+			}
+			continue
+		}
+
+		ch, tail, err := unescape(s)
+		if err != nil {
+			return "", err
+		}
+		buf = append(buf, ch...)
+		s = tail
+	}
+	return string(buf), nil
+}
+
+func unescape(s string) (ch string, tail string, err error) {
+	r, n := utf8.DecodeRuneInString(s)
+	if r == utf8.RuneError && n == 1 {
+		return "", "", errBadUTF8
+	}
+	s = s[n:]
+	switch r {
+	case 'a':
+		return "\a", s, nil
+	case 'b':
+		return "\b", s, nil
+	case 'f':
+		return "\f", s, nil
+	case 'n':
+		return "\n", s, nil
+	case 'r':
+		return "\r", s, nil
+	case 't':
+		return "\t", s, nil
+	case 'v':
+		return "\v", s, nil
+	case '?':
+		return "?", s, nil // trigraph workaround
+	case '\'', '"', '\\':
+		return string(r), s, nil
+	case '0', '1', '2', '3', '4', '5', '6', '7', 'x', 'X':
+		if len(s) < 2 {
+			return "", "", fmt.Errorf(`\%c requires 2 following digits`, r)
+		}
+		base := 8
+		ss := s[:2]
+		s = s[2:]
+		if r == 'x' || r == 'X' {
+			base = 16
+		} else {
+			ss = string(r) + ss
+		}
+		i, err := strconv.ParseUint(ss, base, 8)
+		if err != nil {
+			return "", "", err
+		}
+		return string([]byte{byte(i)}), s, nil
+	case 'u', 'U':
+		n := 4
+		if r == 'U' {
+			n = 8
+		}
+		if len(s) < n {
+			return "", "", fmt.Errorf(`\%c requires %d digits`, r, n)
+		}
+
+		bs := make([]byte, n/2)
+		for i := 0; i < n; i += 2 {
+			a, ok1 := unhex(s[i])
+			b, ok2 := unhex(s[i+1])
+			if !ok1 || !ok2 {
+				return "", "", errBadHex
+			}
+			bs[i/2] = a<<4 | b
+		}
+		s = s[n:]
+		return string(bs), s, nil
+	}
+	return "", "", fmt.Errorf(`unknown escape \%c`, r)
+}
+
+// Adapted from src/pkg/strconv/quote.go.
+func unhex(b byte) (v byte, ok bool) {
+	switch {
+	case '0' <= b && b <= '9':
+		return b - '0', true
+	case 'a' <= b && b <= 'f':
+		return b - 'a' + 10, true
+	case 'A' <= b && b <= 'F':
+		return b - 'A' + 10, true
+	}
+	return 0, false
+}
+
+// Back off the parser by one token. Can only be done between calls to next().
+// It makes the next advance() a no-op.
+func (p *textParser) back() { p.backed = true }
+
+// Advances the parser and returns the new current token.
+func (p *textParser) next() *token {
+	if p.backed || p.done {
+		p.backed = false
+		return &p.cur
+	}
+	p.advance()
+	if p.done {
+		p.cur.value = ""
+	} else if len(p.cur.value) > 0 && isQuote(p.cur.value[0]) {
+		// Look for multiple quoted strings separated by whitespace,
+		// and concatenate them.
+		cat := p.cur
+		for {
+			p.skipWhitespace()
+			if p.done || !isQuote(p.s[0]) {
+				break
+			}
+			p.advance()
+			if p.cur.err != nil {
+				return &p.cur
+			}
+			cat.value += " " + p.cur.value
+			cat.unquoted += p.cur.unquoted
+		}
+		p.done = false // parser may have seen EOF, but we want to return cat
+		p.cur = cat
+	}
+	return &p.cur
+}
+
+func (p *textParser) consumeToken(s string) error {
+	tok := p.next()
+	if tok.err != nil {
+		return tok.err
+	}
+	if tok.value != s {
+		p.back()
+		return p.errorf("expected %q, found %q", s, tok.value)
+	}
+	return nil
+}
+
+// Return a RequiredNotSetError indicating which required field was not set.
+func (p *textParser) missingRequiredFieldError(sv reflect.Value) *RequiredNotSetError {
+	st := sv.Type()
+	sprops := GetProperties(st)
+	for i := 0; i < st.NumField(); i++ {
+		if !isNil(sv.Field(i)) {
+			continue
+		}
+
+		props := sprops.Prop[i]
+		if props.Required {
+			return &RequiredNotSetError{fmt.Sprintf("%v.%v", st, props.OrigName)}
+		}
+	}
+	return &RequiredNotSetError{fmt.Sprintf("%v.<unknown field name>", st)} // should not happen
+}
+
+// Returns the index in the struct for the named field, as well as the parsed tag properties.
+func structFieldByName(sprops *StructProperties, name string) (int, *Properties, bool) {
+	i, ok := sprops.decoderOrigNames[name]
+	if ok {
+		return i, sprops.Prop[i], true
+	}
+	return -1, nil, false
+}
+
+// Consume a ':' from the input stream (if the next token is a colon),
+// returning an error if a colon is needed but not present.
+func (p *textParser) checkForColon(props *Properties, typ reflect.Type) *ParseError {
+	tok := p.next()
+	if tok.err != nil {
+		return tok.err
+	}
+	if tok.value != ":" {
+		// Colon is optional when the field is a group or message.
+		needColon := true
+		switch props.Wire {
+		case "group":
+			needColon = false
+		case "bytes":
+			// A "bytes" field is either a message, a string, or a repeated field;
+			// those three become *T, *string and []T respectively, so we can check for
+			// this field being a pointer to a non-string.
+			if typ.Kind() == reflect.Ptr {
+				// *T or *string
+				if typ.Elem().Kind() == reflect.String {
+					break
+				}
+			} else if typ.Kind() == reflect.Slice {
+				// []T or []*T
+				if typ.Elem().Kind() != reflect.Ptr {
+					break
+				}
+			} else if typ.Kind() == reflect.String {
+				// The proto3 exception is for a string field,
+				// which requires a colon.
+				break
+			}
+			needColon = false
+		}
+		if needColon {
+			return p.errorf("expected ':', found %q", tok.value)
+		}
+		p.back()
+	}
+	return nil
+}
+
+func (p *textParser) readStruct(sv reflect.Value, terminator string) error {
+	st := sv.Type()
+	sprops := GetProperties(st)
+	reqCount := sprops.reqCount
+	var reqFieldErr error
+	fieldSet := make(map[string]bool)
+	// A struct is a sequence of "name: value", terminated by one of
+	// '>' or '}', or the end of the input.  A name may also be
+	// "[extension]" or "[type/url]".
+	//
+	// The whole struct can also be an expanded Any message, like:
+	// [type/url] < ... struct contents ... >
+	for {
+		tok := p.next()
+		if tok.err != nil {
+			return tok.err
+		}
+		if tok.value == terminator {
+			break
+		}
+		if tok.value == "[" {
+			// Looks like an extension or an Any.
+			//
+			// TODO: Check whether we need to handle
+			// namespace rooted names (e.g. ".something.Foo").
+			extName, err := p.consumeExtName()
+			if err != nil {
+				return err
+			}
+
+			if s := strings.LastIndex(extName, "/"); s >= 0 {
+				// If it contains a slash, it's an Any type URL.
+				messageName := extName[s+1:]
+				mt := MessageType(messageName)
+				if mt == nil {
+					return p.errorf("unrecognized message %q in google.protobuf.Any", messageName)
+				}
+				tok = p.next()
+				if tok.err != nil {
+					return tok.err
+				}
+				// consume an optional colon
+				if tok.value == ":" {
+					tok = p.next()
+					if tok.err != nil {
+						return tok.err
+					}
+				}
+				var terminator string
+				switch tok.value {
+				case "<":
+					terminator = ">"
+				case "{":
+					terminator = "}"
+				default:
+					return p.errorf("expected '{' or '<', found %q", tok.value)
+				}
+				v := reflect.New(mt.Elem())
+				if pe := p.readStruct(v.Elem(), terminator); pe != nil {
+					return pe
+				}
+				b, err := Marshal(v.Interface().(Message))
+				if err != nil {
+					return p.errorf("failed to marshal message of type %q: %v", messageName, err)
+				}
+				if fieldSet["type_url"] {
+					return p.errorf(anyRepeatedlyUnpacked, "type_url")
+				}
+				if fieldSet["value"] {
+					return p.errorf(anyRepeatedlyUnpacked, "value")
+				}
+				sv.FieldByName("TypeUrl").SetString(extName)
+				sv.FieldByName("Value").SetBytes(b)
+				fieldSet["type_url"] = true
+				fieldSet["value"] = true
+				continue
+			}
+
+			var desc *ExtensionDesc
+			// This could be faster, but it's functional.
+			// TODO: Do something smarter than a linear scan.
+			for _, d := range RegisteredExtensions(reflect.New(st).Interface().(Message)) {
+				if d.Name == extName {
+					desc = d
+					break
+				}
+			}
+			if desc == nil {
+				return p.errorf("unrecognized extension %q", extName)
+			}
+
+			props := &Properties{}
+			props.Parse(desc.Tag)
+
+			typ := reflect.TypeOf(desc.ExtensionType)
+			if err := p.checkForColon(props, typ); err != nil {
+				return err
+			}
+
+			rep := desc.repeated()
+
+			// Read the extension structure, and set it in
+			// the value we're constructing.
+			var ext reflect.Value
+			if !rep {
+				ext = reflect.New(typ).Elem()
+			} else {
+				ext = reflect.New(typ.Elem()).Elem()
+			}
+			if err := p.readAny(ext, props); err != nil {
+				if _, ok := err.(*RequiredNotSetError); !ok {
+					return err
+				}
+				reqFieldErr = err
+			}
+			ep := sv.Addr().Interface().(Message)
+			if !rep {
+				SetExtension(ep, desc, ext.Interface())
+			} else {
+				old, err := GetExtension(ep, desc)
+				var sl reflect.Value
+				if err == nil {
+					sl = reflect.ValueOf(old) // existing slice
+				} else {
+					sl = reflect.MakeSlice(typ, 0, 1)
+				}
+				sl = reflect.Append(sl, ext)
+				SetExtension(ep, desc, sl.Interface())
+			}
+			if err := p.consumeOptionalSeparator(); err != nil {
+				return err
+			}
+			continue
+		}
+
+		// This is a normal, non-extension field.
+		name := tok.value
+		var dst reflect.Value
+		fi, props, ok := structFieldByName(sprops, name)
+		if ok {
+			dst = sv.Field(fi)
+		} else if oop, ok := sprops.OneofTypes[name]; ok {
+			// It is a oneof.
+			props = oop.Prop
+			nv := reflect.New(oop.Type.Elem())
+			dst = nv.Elem().Field(0)
+			field := sv.Field(oop.Field)
+			if !field.IsNil() {
+				return p.errorf("field '%s' would overwrite already parsed oneof '%s'", name, sv.Type().Field(oop.Field).Name)
+			}
+			field.Set(nv)
+		}
+		if !dst.IsValid() {
+			return p.errorf("unknown field name %q in %v", name, st)
+		}
+
+		if dst.Kind() == reflect.Map {
+			// Consume any colon.
+			if err := p.checkForColon(props, dst.Type()); err != nil {
+				return err
+			}
+
+			// Construct the map if it doesn't already exist.
+			if dst.IsNil() {
+				dst.Set(reflect.MakeMap(dst.Type()))
+			}
+			key := reflect.New(dst.Type().Key()).Elem()
+			val := reflect.New(dst.Type().Elem()).Elem()
+
+			// The map entry should be this sequence of tokens:
+			//	< key : KEY value : VALUE >
+			// However, implementations may omit key or value, and technically
+			// we should support them in any order.  See b/28924776 for a time
+			// this went wrong.
+
+			tok := p.next()
+			var terminator string
+			switch tok.value {
+			case "<":
+				terminator = ">"
+			case "{":
+				terminator = "}"
+			default:
+				return p.errorf("expected '{' or '<', found %q", tok.value)
+			}
+			for {
+				tok := p.next()
+				if tok.err != nil {
+					return tok.err
+				}
+				if tok.value == terminator {
+					break
+				}
+				switch tok.value {
+				case "key":
+					if err := p.consumeToken(":"); err != nil {
+						return err
+					}
+					if err := p.readAny(key, props.mkeyprop); err != nil {
+						return err
+					}
+					if err := p.consumeOptionalSeparator(); err != nil {
+						return err
+					}
+				case "value":
+					if err := p.checkForColon(props.mvalprop, dst.Type().Elem()); err != nil {
+						return err
+					}
+					if err := p.readAny(val, props.mvalprop); err != nil {
+						return err
+					}
+					if err := p.consumeOptionalSeparator(); err != nil {
+						return err
+					}
+				default:
+					p.back()
+					return p.errorf(`expected "key", "value", or %q, found %q`, terminator, tok.value)
+				}
+			}
+
+			dst.SetMapIndex(key, val)
+			continue
+		}
+
+		// Check that it's not already set if it's not a repeated field.
+		if !props.Repeated && fieldSet[name] {
+			return p.errorf("non-repeated field %q was repeated", name)
+		}
+
+		if err := p.checkForColon(props, dst.Type()); err != nil {
+			return err
+		}
+
+		// Parse into the field.
+		fieldSet[name] = true
+		if err := p.readAny(dst, props); err != nil {
+			if _, ok := err.(*RequiredNotSetError); !ok {
+				return err
+			}
+			reqFieldErr = err
+		}
+		if props.Required {
+			reqCount--
+		}
+
+		if err := p.consumeOptionalSeparator(); err != nil {
+			return err
+		}
+
+	}
+
+	if reqCount > 0 {
+		return p.missingRequiredFieldError(sv)
+	}
+	return reqFieldErr
+}
+
+// consumeExtName consumes extension name or expanded Any type URL and the
+// following ']'. It returns the name or URL consumed.
+func (p *textParser) consumeExtName() (string, error) {
+	tok := p.next()
+	if tok.err != nil {
+		return "", tok.err
+	}
+
+	// If extension name or type url is quoted, it's a single token.
+	if len(tok.value) > 2 && isQuote(tok.value[0]) && tok.value[len(tok.value)-1] == tok.value[0] {
+		name, err := unquoteC(tok.value[1:len(tok.value)-1], rune(tok.value[0]))
+		if err != nil {
+			return "", err
+		}
+		return name, p.consumeToken("]")
+	}
+
+	// Consume everything up to "]"
+	var parts []string
+	for tok.value != "]" {
+		parts = append(parts, tok.value)
+		tok = p.next()
+		if tok.err != nil {
+			return "", p.errorf("unrecognized type_url or extension name: %s", tok.err)
+		}
+	}
+	return strings.Join(parts, ""), nil
+}
+
+// consumeOptionalSeparator consumes an optional semicolon or comma.
+// It is used in readStruct to provide backward compatibility.
+func (p *textParser) consumeOptionalSeparator() error {
+	tok := p.next()
+	if tok.err != nil {
+		return tok.err
+	}
+	if tok.value != ";" && tok.value != "," {
+		p.back()
+	}
+	return nil
+}
+
+func (p *textParser) readAny(v reflect.Value, props *Properties) error {
+	tok := p.next()
+	if tok.err != nil {
+		return tok.err
+	}
+	if tok.value == "" {
+		return p.errorf("unexpected EOF")
+	}
+	if len(props.CustomType) > 0 {
+		if props.Repeated {
+			t := reflect.TypeOf(v.Interface())
+			if t.Kind() == reflect.Slice {
+				tc := reflect.TypeOf(new(Marshaler))
+				ok := t.Elem().Implements(tc.Elem())
+				if ok {
+					fv := v
+					flen := fv.Len()
+					if flen == fv.Cap() {
+						nav := reflect.MakeSlice(v.Type(), flen, 2*flen+1)
+						reflect.Copy(nav, fv)
+						fv.Set(nav)
+					}
+					fv.SetLen(flen + 1)
+
+					// Read one.
+					p.back()
+					return p.readAny(fv.Index(flen), props)
+				}
+			}
+		}
+		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
+			custom := reflect.New(props.ctype.Elem()).Interface().(Unmarshaler)
+			err := custom.Unmarshal([]byte(tok.unquoted))
+			if err != nil {
+				return p.errorf("%v %v: %v", err, v.Type(), tok.value)
+			}
+			v.Set(reflect.ValueOf(custom))
+		} else {
+			custom := reflect.New(reflect.TypeOf(v.Interface())).Interface().(Unmarshaler)
+			err := custom.Unmarshal([]byte(tok.unquoted))
+			if err != nil {
+				return p.errorf("%v %v: %v", err, v.Type(), tok.value)
+			}
+			v.Set(reflect.Indirect(reflect.ValueOf(custom)))
+		}
+		return nil
+	}
+	if props.StdTime {
+		fv := v
+		p.back()
+		props.StdTime = false
+		tproto := &timestamp{}
+		err := p.readAny(reflect.ValueOf(tproto).Elem(), props)
+		props.StdTime = true
+		if err != nil {
+			return err
+		}
+		tim, err := timestampFromProto(tproto)
+		if err != nil {
+			return err
+		}
+		if props.Repeated {
+			t := reflect.TypeOf(v.Interface())
+			if t.Kind() == reflect.Slice {
+				if t.Elem().Kind() == reflect.Ptr {
+					ts := fv.Interface().([]*time.Time)
+					ts = append(ts, &tim)
+					fv.Set(reflect.ValueOf(ts))
+					return nil
+				} else {
+					ts := fv.Interface().([]time.Time)
+					ts = append(ts, tim)
+					fv.Set(reflect.ValueOf(ts))
+					return nil
+				}
+			}
+		}
+		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
+			v.Set(reflect.ValueOf(&tim))
+		} else {
+			v.Set(reflect.Indirect(reflect.ValueOf(&tim)))
+		}
+		return nil
+	}
+	if props.StdDuration {
+		fv := v
+		p.back()
+		props.StdDuration = false
+		dproto := &duration{}
+		err := p.readAny(reflect.ValueOf(dproto).Elem(), props)
+		props.StdDuration = true
+		if err != nil {
+			return err
+		}
+		dur, err := durationFromProto(dproto)
+		if err != nil {
+			return err
+		}
+		if props.Repeated {
+			t := reflect.TypeOf(v.Interface())
+			if t.Kind() == reflect.Slice {
+				if t.Elem().Kind() == reflect.Ptr {
+					ds := fv.Interface().([]*time.Duration)
+					ds = append(ds, &dur)
+					fv.Set(reflect.ValueOf(ds))
+					return nil
+				} else {
+					ds := fv.Interface().([]time.Duration)
+					ds = append(ds, dur)
+					fv.Set(reflect.ValueOf(ds))
+					return nil
+				}
+			}
+		}
+		if reflect.TypeOf(v.Interface()).Kind() == reflect.Ptr {
+			v.Set(reflect.ValueOf(&dur))
+		} else {
+			v.Set(reflect.Indirect(reflect.ValueOf(&dur)))
+		}
+		return nil
+	}
+	switch fv := v; fv.Kind() {
+	case reflect.Slice:
+		at := v.Type()
+		if at.Elem().Kind() == reflect.Uint8 {
+			// Special case for []byte
+			if tok.value[0] != '"' && tok.value[0] != '\'' {
+				// Deliberately written out here, as the error after
+				// this switch statement would write "invalid []byte: ...",
+				// which is not as user-friendly.
+				return p.errorf("invalid string: %v", tok.value)
+			}
+			bytes := []byte(tok.unquoted)
+			fv.Set(reflect.ValueOf(bytes))
+			return nil
+		}
+		// Repeated field.
+		if tok.value == "[" {
+			// Repeated field with list notation, like [1,2,3].
+			for {
+				fv.Set(reflect.Append(fv, reflect.New(at.Elem()).Elem()))
+				err := p.readAny(fv.Index(fv.Len()-1), props)
+				if err != nil {
+					return err
+				}
+				ntok := p.next()
+				if ntok.err != nil {
+					return ntok.err
+				}
+				if ntok.value == "]" {
+					break
+				}
+				if ntok.value != "," {
+					return p.errorf("Expected ']' or ',' found %q", ntok.value)
+				}
+			}
+			return nil
+		}
+		// One value of the repeated field.
+		p.back()
+		fv.Set(reflect.Append(fv, reflect.New(at.Elem()).Elem()))
+		return p.readAny(fv.Index(fv.Len()-1), props)
+	case reflect.Bool:
+		// true/1/t/True or false/f/0/False.
+		switch tok.value {
+		case "true", "1", "t", "True":
+			fv.SetBool(true)
+			return nil
+		case "false", "0", "f", "False":
+			fv.SetBool(false)
+			return nil
+		}
+	case reflect.Float32, reflect.Float64:
+		v := tok.value
+		// Ignore 'f' for compatibility with output generated by C++, but don't
+		// remove 'f' when the value is "-inf" or "inf".
+		if strings.HasSuffix(v, "f") && tok.value != "-inf" && tok.value != "inf" {
+			v = v[:len(v)-1]
+		}
+		if f, err := strconv.ParseFloat(v, fv.Type().Bits()); err == nil {
+			fv.SetFloat(f)
+			return nil
+		}
+	case reflect.Int32:
+		if x, err := strconv.ParseInt(tok.value, 0, 32); err == nil {
+			fv.SetInt(x)
+			return nil
+		}
+
+		if len(props.Enum) == 0 {
+			break
+		}
+		m, ok := enumValueMaps[props.Enum]
+		if !ok {
+			break
+		}
+		x, ok := m[tok.value]
+		if !ok {
+			break
+		}
+		fv.SetInt(int64(x))
+		return nil
+	case reflect.Int64:
+		if x, err := strconv.ParseInt(tok.value, 0, 64); err == nil {
+			fv.SetInt(x)
+			return nil
+		}
+
+	case reflect.Ptr:
+		// A basic field (indirected through pointer), or a repeated message/group
+		p.back()
+		fv.Set(reflect.New(fv.Type().Elem()))
+		return p.readAny(fv.Elem(), props)
+	case reflect.String:
+		if tok.value[0] == '"' || tok.value[0] == '\'' {
+			fv.SetString(tok.unquoted)
+			return nil
+		}
+	case reflect.Struct:
+		var terminator string
+		switch tok.value {
+		case "{":
+			terminator = "}"
+		case "<":
+			terminator = ">"
+		default:
+			return p.errorf("expected '{' or '<', found %q", tok.value)
+		}
+		// TODO: Handle nested messages which implement encoding.TextUnmarshaler.
+		return p.readStruct(fv, terminator)
+	case reflect.Uint32:
+		if x, err := strconv.ParseUint(tok.value, 0, 32); err == nil {
+			fv.SetUint(x)
+			return nil
+		}
+	case reflect.Uint64:
+		if x, err := strconv.ParseUint(tok.value, 0, 64); err == nil {
+			fv.SetUint(x)
+			return nil
+		}
+	}
+	return p.errorf("invalid %v: %v", v.Type(), tok.value)
+}
+
+// UnmarshalText reads a protocol buffer in Text format. UnmarshalText resets pb
+// before starting to unmarshal, so any existing data in pb is always removed.
+// If a required field is not set and no other error occurs,
+// UnmarshalText returns *RequiredNotSetError.
+func UnmarshalText(s string, pb Message) error {
+	if um, ok := pb.(encoding.TextUnmarshaler); ok {
+		err := um.UnmarshalText([]byte(s))
+		return err
+	}
+	pb.Reset()
+	v := reflect.ValueOf(pb)
+	if pe := newTextParser(s).readStruct(v.Elem(), ""); pe != nil {
+		return pe
+	}
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/timestamp.go b/vendor/github.com/gogo/protobuf/proto/timestamp.go
new file mode 100644
index 0000000000..9324f6542b
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/timestamp.go
@@ -0,0 +1,113 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+// This file implements operations on google.protobuf.Timestamp.
+
+import (
+	"errors"
+	"fmt"
+	"time"
+)
+
+const (
+	// Seconds field of the earliest valid Timestamp.
+	// This is time.Date(1, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
+	minValidSeconds = -62135596800
+	// Seconds field just after the latest valid Timestamp.
+	// This is time.Date(10000, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
+	maxValidSeconds = 253402300800
+)
+
+// validateTimestamp determines whether a Timestamp is valid.
+// A valid timestamp represents a time in the range
+// [0001-01-01, 10000-01-01) and has a Nanos field
+// in the range [0, 1e9).
+//
+// If the Timestamp is valid, validateTimestamp returns nil.
+// Otherwise, it returns an error that describes
+// the problem.
+//
+// Every valid Timestamp can be represented by a time.Time, but the converse is not true.
+func validateTimestamp(ts *timestamp) error {
+	if ts == nil {
+		return errors.New("timestamp: nil Timestamp")
+	}
+	if ts.Seconds < minValidSeconds {
+		return fmt.Errorf("timestamp: %#v before 0001-01-01", ts)
+	}
+	if ts.Seconds >= maxValidSeconds {
+		return fmt.Errorf("timestamp: %#v after 10000-01-01", ts)
+	}
+	if ts.Nanos < 0 || ts.Nanos >= 1e9 {
+		return fmt.Errorf("timestamp: %#v: nanos not in range [0, 1e9)", ts)
+	}
+	return nil
+}
+
+// TimestampFromProto converts a google.protobuf.Timestamp proto to a time.Time.
+// It returns an error if the argument is invalid.
+//
+// Unlike most Go functions, if Timestamp returns an error, the first return value
+// is not the zero time.Time. Instead, it is the value obtained from the
+// time.Unix function when passed the contents of the Timestamp, in the UTC
+// locale. This may or may not be a meaningful time; many invalid Timestamps
+// do map to valid time.Times.
+//
+// A nil Timestamp returns an error. The first return value in that case is
+// undefined.
+func timestampFromProto(ts *timestamp) (time.Time, error) {
+	// Don't return the zero value on error, because corresponds to a valid
+	// timestamp. Instead return whatever time.Unix gives us.
+	var t time.Time
+	if ts == nil {
+		t = time.Unix(0, 0).UTC() // treat nil like the empty Timestamp
+	} else {
+		t = time.Unix(ts.Seconds, int64(ts.Nanos)).UTC()
+	}
+	return t, validateTimestamp(ts)
+}
+
+// TimestampProto converts the time.Time to a google.protobuf.Timestamp proto.
+// It returns an error if the resulting Timestamp is invalid.
+func timestampProto(t time.Time) (*timestamp, error) {
+	seconds := t.Unix()
+	nanos := int32(t.Sub(time.Unix(seconds, 0)))
+	ts := &timestamp{
+		Seconds: seconds,
+		Nanos:   nanos,
+	}
+	if err := validateTimestamp(ts); err != nil {
+		return nil, err
+	}
+	return ts, nil
+}
diff --git a/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go b/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
new file mode 100644
index 0000000000..d427647436
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/proto/timestamp_gogo.go
@@ -0,0 +1,229 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2016, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"reflect"
+	"time"
+)
+
+var timeType = reflect.TypeOf((*time.Time)(nil)).Elem()
+
+type timestamp struct {
+	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
+	Nanos   int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
+}
+
+func (m *timestamp) Reset()       { *m = timestamp{} }
+func (*timestamp) ProtoMessage()  {}
+func (*timestamp) String() string { return "timestamp<string>" }
+
+func init() {
+	RegisterType((*timestamp)(nil), "gogo.protobuf.proto.timestamp")
+}
+
+func (o *Buffer) decTimestamp() (time.Time, error) {
+	b, err := o.DecodeRawBytes(true)
+	if err != nil {
+		return time.Time{}, err
+	}
+	tproto := &timestamp{}
+	if err := Unmarshal(b, tproto); err != nil {
+		return time.Time{}, err
+	}
+	return timestampFromProto(tproto)
+}
+
+func (o *Buffer) dec_time(p *Properties, base structPointer) error {
+	t, err := o.decTimestamp()
+	if err != nil {
+		return err
+	}
+	setPtrCustomType(base, p.field, &t)
+	return nil
+}
+
+func (o *Buffer) dec_ref_time(p *Properties, base structPointer) error {
+	t, err := o.decTimestamp()
+	if err != nil {
+		return err
+	}
+	setCustomType(base, p.field, &t)
+	return nil
+}
+
+func (o *Buffer) dec_slice_time(p *Properties, base structPointer) error {
+	t, err := o.decTimestamp()
+	if err != nil {
+		return err
+	}
+	newBas := appendStructPointer(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType)))
+	var zero field
+	setPtrCustomType(newBas, zero, &t)
+	return nil
+}
+
+func (o *Buffer) dec_slice_ref_time(p *Properties, base structPointer) error {
+	t, err := o.decTimestamp()
+	if err != nil {
+		return err
+	}
+	newBas := appendStructPointer(base, p.field, reflect.SliceOf(timeType))
+	var zero field
+	setCustomType(newBas, zero, &t)
+	return nil
+}
+
+func size_time(p *Properties, base structPointer) (n int) {
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return 0
+	}
+	tim := structPointer_Interface(structp, timeType).(*time.Time)
+	t, err := timestampProto(*tim)
+	if err != nil {
+		return 0
+	}
+	size := Size(t)
+	return size + sizeVarint(uint64(size)) + len(p.tagcode)
+}
+
+func (o *Buffer) enc_time(p *Properties, base structPointer) error {
+	structp := structPointer_GetStructPointer(base, p.field)
+	if structPointer_IsNil(structp) {
+		return ErrNil
+	}
+	tim := structPointer_Interface(structp, timeType).(*time.Time)
+	t, err := timestampProto(*tim)
+	if err != nil {
+		return err
+	}
+	data, err := Marshal(t)
+	if err != nil {
+		return err
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_ref_time(p *Properties, base structPointer) (n int) {
+	tim := structPointer_InterfaceAt(base, p.field, timeType).(*time.Time)
+	t, err := timestampProto(*tim)
+	if err != nil {
+		return 0
+	}
+	size := Size(t)
+	return size + sizeVarint(uint64(size)) + len(p.tagcode)
+}
+
+func (o *Buffer) enc_ref_time(p *Properties, base structPointer) error {
+	tim := structPointer_InterfaceAt(base, p.field, timeType).(*time.Time)
+	t, err := timestampProto(*tim)
+	if err != nil {
+		return err
+	}
+	data, err := Marshal(t)
+	if err != nil {
+		return err
+	}
+	o.buf = append(o.buf, p.tagcode...)
+	o.EncodeRawBytes(data)
+	return nil
+}
+
+func size_slice_time(p *Properties, base structPointer) (n int) {
+	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType))).(*[]*time.Time)
+	tims := *ptims
+	for i := 0; i < len(tims); i++ {
+		if tims[i] == nil {
+			return 0
+		}
+		tproto, err := timestampProto(*tims[i])
+		if err != nil {
+			return 0
+		}
+		size := Size(tproto)
+		n += len(p.tagcode) + size + sizeVarint(uint64(size))
+	}
+	return n
+}
+
+func (o *Buffer) enc_slice_time(p *Properties, base structPointer) error {
+	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(reflect.PtrTo(timeType))).(*[]*time.Time)
+	tims := *ptims
+	for i := 0; i < len(tims); i++ {
+		if tims[i] == nil {
+			return errRepeatedHasNil
+		}
+		tproto, err := timestampProto(*tims[i])
+		if err != nil {
+			return err
+		}
+		data, err := Marshal(tproto)
+		if err != nil {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+	}
+	return nil
+}
+
+func size_slice_ref_time(p *Properties, base structPointer) (n int) {
+	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(timeType)).(*[]time.Time)
+	tims := *ptims
+	for i := 0; i < len(tims); i++ {
+		tproto, err := timestampProto(tims[i])
+		if err != nil {
+			return 0
+		}
+		size := Size(tproto)
+		n += len(p.tagcode) + size + sizeVarint(uint64(size))
+	}
+	return n
+}
+
+func (o *Buffer) enc_slice_ref_time(p *Properties, base structPointer) error {
+	ptims := structPointer_InterfaceAt(base, p.field, reflect.SliceOf(timeType)).(*[]time.Time)
+	tims := *ptims
+	for i := 0; i < len(tims); i++ {
+		tproto, err := timestampProto(tims[i])
+		if err != nil {
+			return err
+		}
+		data, err := Marshal(tproto)
+		if err != nil {
+			return err
+		}
+		o.buf = append(o.buf, p.tagcode...)
+		o.EncodeRawBytes(data)
+	}
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.go b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.go
new file mode 100644
index 0000000000..a85bf1984c
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.go
@@ -0,0 +1,118 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+// Package descriptor provides functions for obtaining protocol buffer
+// descriptors for generated Go types.
+//
+// These functions cannot go in package proto because they depend on the
+// generated protobuf descriptor messages, which themselves depend on proto.
+package descriptor
+
+import (
+	"bytes"
+	"compress/gzip"
+	"fmt"
+	"io/ioutil"
+
+	"github.com/gogo/protobuf/proto"
+)
+
+// extractFile extracts a FileDescriptorProto from a gzip'd buffer.
+func extractFile(gz []byte) (*FileDescriptorProto, error) {
+	r, err := gzip.NewReader(bytes.NewReader(gz))
+	if err != nil {
+		return nil, fmt.Errorf("failed to open gzip reader: %v", err)
+	}
+	defer r.Close()
+
+	b, err := ioutil.ReadAll(r)
+	if err != nil {
+		return nil, fmt.Errorf("failed to uncompress descriptor: %v", err)
+	}
+
+	fd := new(FileDescriptorProto)
+	if err := proto.Unmarshal(b, fd); err != nil {
+		return nil, fmt.Errorf("malformed FileDescriptorProto: %v", err)
+	}
+
+	return fd, nil
+}
+
+// Message is a proto.Message with a method to return its descriptor.
+//
+// Message types generated by the protocol compiler always satisfy
+// the Message interface.
+type Message interface {
+	proto.Message
+	Descriptor() ([]byte, []int)
+}
+
+// ForMessage returns a FileDescriptorProto and a DescriptorProto from within it
+// describing the given message.
+func ForMessage(msg Message) (fd *FileDescriptorProto, md *DescriptorProto) {
+	gz, path := msg.Descriptor()
+	fd, err := extractFile(gz)
+	if err != nil {
+		panic(fmt.Sprintf("invalid FileDescriptorProto for %T: %v", msg, err))
+	}
+
+	md = fd.MessageType[path[0]]
+	for _, i := range path[1:] {
+		md = md.NestedType[i]
+	}
+	return fd, md
+}
+
+// Is this field a scalar numeric type?
+func (field *FieldDescriptorProto) IsScalar() bool {
+	if field.Type == nil {
+		return false
+	}
+	switch *field.Type {
+	case FieldDescriptorProto_TYPE_DOUBLE,
+		FieldDescriptorProto_TYPE_FLOAT,
+		FieldDescriptorProto_TYPE_INT64,
+		FieldDescriptorProto_TYPE_UINT64,
+		FieldDescriptorProto_TYPE_INT32,
+		FieldDescriptorProto_TYPE_FIXED64,
+		FieldDescriptorProto_TYPE_FIXED32,
+		FieldDescriptorProto_TYPE_BOOL,
+		FieldDescriptorProto_TYPE_UINT32,
+		FieldDescriptorProto_TYPE_ENUM,
+		FieldDescriptorProto_TYPE_SFIXED32,
+		FieldDescriptorProto_TYPE_SFIXED64,
+		FieldDescriptorProto_TYPE_SINT32,
+		FieldDescriptorProto_TYPE_SINT64:
+		return true
+	default:
+		return false
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.pb.go b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.pb.go
new file mode 100644
index 0000000000..4174cbd9f3
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor.pb.go
@@ -0,0 +1,2280 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: descriptor.proto
+
+/*
+Package descriptor is a generated protocol buffer package.
+
+It is generated from these files:
+	descriptor.proto
+
+It has these top-level messages:
+	FileDescriptorSet
+	FileDescriptorProto
+	DescriptorProto
+	ExtensionRangeOptions
+	FieldDescriptorProto
+	OneofDescriptorProto
+	EnumDescriptorProto
+	EnumValueDescriptorProto
+	ServiceDescriptorProto
+	MethodDescriptorProto
+	FileOptions
+	MessageOptions
+	FieldOptions
+	OneofOptions
+	EnumOptions
+	EnumValueOptions
+	ServiceOptions
+	MethodOptions
+	UninterpretedOption
+	SourceCodeInfo
+	GeneratedCodeInfo
+*/
+package descriptor
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type FieldDescriptorProto_Type int32
+
+const (
+	// 0 is reserved for errors.
+	// Order is weird for historical reasons.
+	FieldDescriptorProto_TYPE_DOUBLE FieldDescriptorProto_Type = 1
+	FieldDescriptorProto_TYPE_FLOAT  FieldDescriptorProto_Type = 2
+	// Not ZigZag encoded.  Negative numbers take 10 bytes.  Use TYPE_SINT64 if
+	// negative values are likely.
+	FieldDescriptorProto_TYPE_INT64  FieldDescriptorProto_Type = 3
+	FieldDescriptorProto_TYPE_UINT64 FieldDescriptorProto_Type = 4
+	// Not ZigZag encoded.  Negative numbers take 10 bytes.  Use TYPE_SINT32 if
+	// negative values are likely.
+	FieldDescriptorProto_TYPE_INT32   FieldDescriptorProto_Type = 5
+	FieldDescriptorProto_TYPE_FIXED64 FieldDescriptorProto_Type = 6
+	FieldDescriptorProto_TYPE_FIXED32 FieldDescriptorProto_Type = 7
+	FieldDescriptorProto_TYPE_BOOL    FieldDescriptorProto_Type = 8
+	FieldDescriptorProto_TYPE_STRING  FieldDescriptorProto_Type = 9
+	// Tag-delimited aggregate.
+	// Group type is deprecated and not supported in proto3. However, Proto3
+	// implementations should still be able to parse the group wire format and
+	// treat group fields as unknown fields.
+	FieldDescriptorProto_TYPE_GROUP   FieldDescriptorProto_Type = 10
+	FieldDescriptorProto_TYPE_MESSAGE FieldDescriptorProto_Type = 11
+	// New in version 2.
+	FieldDescriptorProto_TYPE_BYTES    FieldDescriptorProto_Type = 12
+	FieldDescriptorProto_TYPE_UINT32   FieldDescriptorProto_Type = 13
+	FieldDescriptorProto_TYPE_ENUM     FieldDescriptorProto_Type = 14
+	FieldDescriptorProto_TYPE_SFIXED32 FieldDescriptorProto_Type = 15
+	FieldDescriptorProto_TYPE_SFIXED64 FieldDescriptorProto_Type = 16
+	FieldDescriptorProto_TYPE_SINT32   FieldDescriptorProto_Type = 17
+	FieldDescriptorProto_TYPE_SINT64   FieldDescriptorProto_Type = 18
+)
+
+var FieldDescriptorProto_Type_name = map[int32]string{
+	1:  "TYPE_DOUBLE",
+	2:  "TYPE_FLOAT",
+	3:  "TYPE_INT64",
+	4:  "TYPE_UINT64",
+	5:  "TYPE_INT32",
+	6:  "TYPE_FIXED64",
+	7:  "TYPE_FIXED32",
+	8:  "TYPE_BOOL",
+	9:  "TYPE_STRING",
+	10: "TYPE_GROUP",
+	11: "TYPE_MESSAGE",
+	12: "TYPE_BYTES",
+	13: "TYPE_UINT32",
+	14: "TYPE_ENUM",
+	15: "TYPE_SFIXED32",
+	16: "TYPE_SFIXED64",
+	17: "TYPE_SINT32",
+	18: "TYPE_SINT64",
+}
+var FieldDescriptorProto_Type_value = map[string]int32{
+	"TYPE_DOUBLE":   1,
+	"TYPE_FLOAT":    2,
+	"TYPE_INT64":    3,
+	"TYPE_UINT64":   4,
+	"TYPE_INT32":    5,
+	"TYPE_FIXED64":  6,
+	"TYPE_FIXED32":  7,
+	"TYPE_BOOL":     8,
+	"TYPE_STRING":   9,
+	"TYPE_GROUP":    10,
+	"TYPE_MESSAGE":  11,
+	"TYPE_BYTES":    12,
+	"TYPE_UINT32":   13,
+	"TYPE_ENUM":     14,
+	"TYPE_SFIXED32": 15,
+	"TYPE_SFIXED64": 16,
+	"TYPE_SINT32":   17,
+	"TYPE_SINT64":   18,
+}
+
+func (x FieldDescriptorProto_Type) Enum() *FieldDescriptorProto_Type {
+	p := new(FieldDescriptorProto_Type)
+	*p = x
+	return p
+}
+func (x FieldDescriptorProto_Type) String() string {
+	return proto.EnumName(FieldDescriptorProto_Type_name, int32(x))
+}
+func (x *FieldDescriptorProto_Type) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(FieldDescriptorProto_Type_value, data, "FieldDescriptorProto_Type")
+	if err != nil {
+		return err
+	}
+	*x = FieldDescriptorProto_Type(value)
+	return nil
+}
+func (FieldDescriptorProto_Type) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{4, 0}
+}
+
+type FieldDescriptorProto_Label int32
+
+const (
+	// 0 is reserved for errors
+	FieldDescriptorProto_LABEL_OPTIONAL FieldDescriptorProto_Label = 1
+	FieldDescriptorProto_LABEL_REQUIRED FieldDescriptorProto_Label = 2
+	FieldDescriptorProto_LABEL_REPEATED FieldDescriptorProto_Label = 3
+)
+
+var FieldDescriptorProto_Label_name = map[int32]string{
+	1: "LABEL_OPTIONAL",
+	2: "LABEL_REQUIRED",
+	3: "LABEL_REPEATED",
+}
+var FieldDescriptorProto_Label_value = map[string]int32{
+	"LABEL_OPTIONAL": 1,
+	"LABEL_REQUIRED": 2,
+	"LABEL_REPEATED": 3,
+}
+
+func (x FieldDescriptorProto_Label) Enum() *FieldDescriptorProto_Label {
+	p := new(FieldDescriptorProto_Label)
+	*p = x
+	return p
+}
+func (x FieldDescriptorProto_Label) String() string {
+	return proto.EnumName(FieldDescriptorProto_Label_name, int32(x))
+}
+func (x *FieldDescriptorProto_Label) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(FieldDescriptorProto_Label_value, data, "FieldDescriptorProto_Label")
+	if err != nil {
+		return err
+	}
+	*x = FieldDescriptorProto_Label(value)
+	return nil
+}
+func (FieldDescriptorProto_Label) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{4, 1}
+}
+
+// Generated classes can be optimized for speed or code size.
+type FileOptions_OptimizeMode int32
+
+const (
+	FileOptions_SPEED FileOptions_OptimizeMode = 1
+	// etc.
+	FileOptions_CODE_SIZE    FileOptions_OptimizeMode = 2
+	FileOptions_LITE_RUNTIME FileOptions_OptimizeMode = 3
+)
+
+var FileOptions_OptimizeMode_name = map[int32]string{
+	1: "SPEED",
+	2: "CODE_SIZE",
+	3: "LITE_RUNTIME",
+}
+var FileOptions_OptimizeMode_value = map[string]int32{
+	"SPEED":        1,
+	"CODE_SIZE":    2,
+	"LITE_RUNTIME": 3,
+}
+
+func (x FileOptions_OptimizeMode) Enum() *FileOptions_OptimizeMode {
+	p := new(FileOptions_OptimizeMode)
+	*p = x
+	return p
+}
+func (x FileOptions_OptimizeMode) String() string {
+	return proto.EnumName(FileOptions_OptimizeMode_name, int32(x))
+}
+func (x *FileOptions_OptimizeMode) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(FileOptions_OptimizeMode_value, data, "FileOptions_OptimizeMode")
+	if err != nil {
+		return err
+	}
+	*x = FileOptions_OptimizeMode(value)
+	return nil
+}
+func (FileOptions_OptimizeMode) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{10, 0}
+}
+
+type FieldOptions_CType int32
+
+const (
+	// Default mode.
+	FieldOptions_STRING       FieldOptions_CType = 0
+	FieldOptions_CORD         FieldOptions_CType = 1
+	FieldOptions_STRING_PIECE FieldOptions_CType = 2
+)
+
+var FieldOptions_CType_name = map[int32]string{
+	0: "STRING",
+	1: "CORD",
+	2: "STRING_PIECE",
+}
+var FieldOptions_CType_value = map[string]int32{
+	"STRING":       0,
+	"CORD":         1,
+	"STRING_PIECE": 2,
+}
+
+func (x FieldOptions_CType) Enum() *FieldOptions_CType {
+	p := new(FieldOptions_CType)
+	*p = x
+	return p
+}
+func (x FieldOptions_CType) String() string {
+	return proto.EnumName(FieldOptions_CType_name, int32(x))
+}
+func (x *FieldOptions_CType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(FieldOptions_CType_value, data, "FieldOptions_CType")
+	if err != nil {
+		return err
+	}
+	*x = FieldOptions_CType(value)
+	return nil
+}
+func (FieldOptions_CType) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{12, 0}
+}
+
+type FieldOptions_JSType int32
+
+const (
+	// Use the default type.
+	FieldOptions_JS_NORMAL FieldOptions_JSType = 0
+	// Use JavaScript strings.
+	FieldOptions_JS_STRING FieldOptions_JSType = 1
+	// Use JavaScript numbers.
+	FieldOptions_JS_NUMBER FieldOptions_JSType = 2
+)
+
+var FieldOptions_JSType_name = map[int32]string{
+	0: "JS_NORMAL",
+	1: "JS_STRING",
+	2: "JS_NUMBER",
+}
+var FieldOptions_JSType_value = map[string]int32{
+	"JS_NORMAL": 0,
+	"JS_STRING": 1,
+	"JS_NUMBER": 2,
+}
+
+func (x FieldOptions_JSType) Enum() *FieldOptions_JSType {
+	p := new(FieldOptions_JSType)
+	*p = x
+	return p
+}
+func (x FieldOptions_JSType) String() string {
+	return proto.EnumName(FieldOptions_JSType_name, int32(x))
+}
+func (x *FieldOptions_JSType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(FieldOptions_JSType_value, data, "FieldOptions_JSType")
+	if err != nil {
+		return err
+	}
+	*x = FieldOptions_JSType(value)
+	return nil
+}
+func (FieldOptions_JSType) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{12, 1}
+}
+
+// Is this method side-effect-free (or safe in HTTP parlance), or idempotent,
+// or neither? HTTP based RPC implementation may choose GET verb for safe
+// methods, and PUT verb for idempotent methods instead of the default POST.
+type MethodOptions_IdempotencyLevel int32
+
+const (
+	MethodOptions_IDEMPOTENCY_UNKNOWN MethodOptions_IdempotencyLevel = 0
+	MethodOptions_NO_SIDE_EFFECTS     MethodOptions_IdempotencyLevel = 1
+	MethodOptions_IDEMPOTENT          MethodOptions_IdempotencyLevel = 2
+)
+
+var MethodOptions_IdempotencyLevel_name = map[int32]string{
+	0: "IDEMPOTENCY_UNKNOWN",
+	1: "NO_SIDE_EFFECTS",
+	2: "IDEMPOTENT",
+}
+var MethodOptions_IdempotencyLevel_value = map[string]int32{
+	"IDEMPOTENCY_UNKNOWN": 0,
+	"NO_SIDE_EFFECTS":     1,
+	"IDEMPOTENT":          2,
+}
+
+func (x MethodOptions_IdempotencyLevel) Enum() *MethodOptions_IdempotencyLevel {
+	p := new(MethodOptions_IdempotencyLevel)
+	*p = x
+	return p
+}
+func (x MethodOptions_IdempotencyLevel) String() string {
+	return proto.EnumName(MethodOptions_IdempotencyLevel_name, int32(x))
+}
+func (x *MethodOptions_IdempotencyLevel) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(MethodOptions_IdempotencyLevel_value, data, "MethodOptions_IdempotencyLevel")
+	if err != nil {
+		return err
+	}
+	*x = MethodOptions_IdempotencyLevel(value)
+	return nil
+}
+func (MethodOptions_IdempotencyLevel) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{17, 0}
+}
+
+// The protocol compiler can output a FileDescriptorSet containing the .proto
+// files it parses.
+type FileDescriptorSet struct {
+	File             []*FileDescriptorProto `protobuf:"bytes,1,rep,name=file" json:"file,omitempty"`
+	XXX_unrecognized []byte                 `json:"-"`
+}
+
+func (m *FileDescriptorSet) Reset()                    { *m = FileDescriptorSet{} }
+func (m *FileDescriptorSet) String() string            { return proto.CompactTextString(m) }
+func (*FileDescriptorSet) ProtoMessage()               {}
+func (*FileDescriptorSet) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{0} }
+
+func (m *FileDescriptorSet) GetFile() []*FileDescriptorProto {
+	if m != nil {
+		return m.File
+	}
+	return nil
+}
+
+// Describes a complete .proto file.
+type FileDescriptorProto struct {
+	Name    *string `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Package *string `protobuf:"bytes,2,opt,name=package" json:"package,omitempty"`
+	// Names of files imported by this file.
+	Dependency []string `protobuf:"bytes,3,rep,name=dependency" json:"dependency,omitempty"`
+	// Indexes of the public imported files in the dependency list above.
+	PublicDependency []int32 `protobuf:"varint,10,rep,name=public_dependency,json=publicDependency" json:"public_dependency,omitempty"`
+	// Indexes of the weak imported files in the dependency list.
+	// For Google-internal migration only. Do not use.
+	WeakDependency []int32 `protobuf:"varint,11,rep,name=weak_dependency,json=weakDependency" json:"weak_dependency,omitempty"`
+	// All top-level definitions in this file.
+	MessageType []*DescriptorProto        `protobuf:"bytes,4,rep,name=message_type,json=messageType" json:"message_type,omitempty"`
+	EnumType    []*EnumDescriptorProto    `protobuf:"bytes,5,rep,name=enum_type,json=enumType" json:"enum_type,omitempty"`
+	Service     []*ServiceDescriptorProto `protobuf:"bytes,6,rep,name=service" json:"service,omitempty"`
+	Extension   []*FieldDescriptorProto   `protobuf:"bytes,7,rep,name=extension" json:"extension,omitempty"`
+	Options     *FileOptions              `protobuf:"bytes,8,opt,name=options" json:"options,omitempty"`
+	// This field contains optional information about the original source code.
+	// You may safely remove this entire field without harming runtime
+	// functionality of the descriptors -- the information is needed only by
+	// development tools.
+	SourceCodeInfo *SourceCodeInfo `protobuf:"bytes,9,opt,name=source_code_info,json=sourceCodeInfo" json:"source_code_info,omitempty"`
+	// The syntax of the proto file.
+	// The supported values are "proto2" and "proto3".
+	Syntax           *string `protobuf:"bytes,12,opt,name=syntax" json:"syntax,omitempty"`
+	XXX_unrecognized []byte  `json:"-"`
+}
+
+func (m *FileDescriptorProto) Reset()                    { *m = FileDescriptorProto{} }
+func (m *FileDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*FileDescriptorProto) ProtoMessage()               {}
+func (*FileDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{1} }
+
+func (m *FileDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *FileDescriptorProto) GetPackage() string {
+	if m != nil && m.Package != nil {
+		return *m.Package
+	}
+	return ""
+}
+
+func (m *FileDescriptorProto) GetDependency() []string {
+	if m != nil {
+		return m.Dependency
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetPublicDependency() []int32 {
+	if m != nil {
+		return m.PublicDependency
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetWeakDependency() []int32 {
+	if m != nil {
+		return m.WeakDependency
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetMessageType() []*DescriptorProto {
+	if m != nil {
+		return m.MessageType
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetEnumType() []*EnumDescriptorProto {
+	if m != nil {
+		return m.EnumType
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetService() []*ServiceDescriptorProto {
+	if m != nil {
+		return m.Service
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetExtension() []*FieldDescriptorProto {
+	if m != nil {
+		return m.Extension
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetOptions() *FileOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetSourceCodeInfo() *SourceCodeInfo {
+	if m != nil {
+		return m.SourceCodeInfo
+	}
+	return nil
+}
+
+func (m *FileDescriptorProto) GetSyntax() string {
+	if m != nil && m.Syntax != nil {
+		return *m.Syntax
+	}
+	return ""
+}
+
+// Describes a message type.
+type DescriptorProto struct {
+	Name           *string                           `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Field          []*FieldDescriptorProto           `protobuf:"bytes,2,rep,name=field" json:"field,omitempty"`
+	Extension      []*FieldDescriptorProto           `protobuf:"bytes,6,rep,name=extension" json:"extension,omitempty"`
+	NestedType     []*DescriptorProto                `protobuf:"bytes,3,rep,name=nested_type,json=nestedType" json:"nested_type,omitempty"`
+	EnumType       []*EnumDescriptorProto            `protobuf:"bytes,4,rep,name=enum_type,json=enumType" json:"enum_type,omitempty"`
+	ExtensionRange []*DescriptorProto_ExtensionRange `protobuf:"bytes,5,rep,name=extension_range,json=extensionRange" json:"extension_range,omitempty"`
+	OneofDecl      []*OneofDescriptorProto           `protobuf:"bytes,8,rep,name=oneof_decl,json=oneofDecl" json:"oneof_decl,omitempty"`
+	Options        *MessageOptions                   `protobuf:"bytes,7,opt,name=options" json:"options,omitempty"`
+	ReservedRange  []*DescriptorProto_ReservedRange  `protobuf:"bytes,9,rep,name=reserved_range,json=reservedRange" json:"reserved_range,omitempty"`
+	// Reserved field names, which may not be used by fields in the same message.
+	// A given name may only be reserved once.
+	ReservedName     []string `protobuf:"bytes,10,rep,name=reserved_name,json=reservedName" json:"reserved_name,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *DescriptorProto) Reset()                    { *m = DescriptorProto{} }
+func (m *DescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*DescriptorProto) ProtoMessage()               {}
+func (*DescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{2} }
+
+func (m *DescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *DescriptorProto) GetField() []*FieldDescriptorProto {
+	if m != nil {
+		return m.Field
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetExtension() []*FieldDescriptorProto {
+	if m != nil {
+		return m.Extension
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetNestedType() []*DescriptorProto {
+	if m != nil {
+		return m.NestedType
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetEnumType() []*EnumDescriptorProto {
+	if m != nil {
+		return m.EnumType
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetExtensionRange() []*DescriptorProto_ExtensionRange {
+	if m != nil {
+		return m.ExtensionRange
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetOneofDecl() []*OneofDescriptorProto {
+	if m != nil {
+		return m.OneofDecl
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetOptions() *MessageOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetReservedRange() []*DescriptorProto_ReservedRange {
+	if m != nil {
+		return m.ReservedRange
+	}
+	return nil
+}
+
+func (m *DescriptorProto) GetReservedName() []string {
+	if m != nil {
+		return m.ReservedName
+	}
+	return nil
+}
+
+type DescriptorProto_ExtensionRange struct {
+	Start            *int32                 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End              *int32                 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	Options          *ExtensionRangeOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_unrecognized []byte                 `json:"-"`
+}
+
+func (m *DescriptorProto_ExtensionRange) Reset()         { *m = DescriptorProto_ExtensionRange{} }
+func (m *DescriptorProto_ExtensionRange) String() string { return proto.CompactTextString(m) }
+func (*DescriptorProto_ExtensionRange) ProtoMessage()    {}
+func (*DescriptorProto_ExtensionRange) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{2, 0}
+}
+
+func (m *DescriptorProto_ExtensionRange) GetStart() int32 {
+	if m != nil && m.Start != nil {
+		return *m.Start
+	}
+	return 0
+}
+
+func (m *DescriptorProto_ExtensionRange) GetEnd() int32 {
+	if m != nil && m.End != nil {
+		return *m.End
+	}
+	return 0
+}
+
+func (m *DescriptorProto_ExtensionRange) GetOptions() *ExtensionRangeOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+// Range of reserved tag numbers. Reserved tag numbers may not be used by
+// fields or extension ranges in the same message. Reserved ranges may
+// not overlap.
+type DescriptorProto_ReservedRange struct {
+	Start            *int32 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End              *int32 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *DescriptorProto_ReservedRange) Reset()         { *m = DescriptorProto_ReservedRange{} }
+func (m *DescriptorProto_ReservedRange) String() string { return proto.CompactTextString(m) }
+func (*DescriptorProto_ReservedRange) ProtoMessage()    {}
+func (*DescriptorProto_ReservedRange) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{2, 1}
+}
+
+func (m *DescriptorProto_ReservedRange) GetStart() int32 {
+	if m != nil && m.Start != nil {
+		return *m.Start
+	}
+	return 0
+}
+
+func (m *DescriptorProto_ReservedRange) GetEnd() int32 {
+	if m != nil && m.End != nil {
+		return *m.End
+	}
+	return 0
+}
+
+type ExtensionRangeOptions struct {
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *ExtensionRangeOptions) Reset()                    { *m = ExtensionRangeOptions{} }
+func (m *ExtensionRangeOptions) String() string            { return proto.CompactTextString(m) }
+func (*ExtensionRangeOptions) ProtoMessage()               {}
+func (*ExtensionRangeOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{3} }
+
+var extRange_ExtensionRangeOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*ExtensionRangeOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_ExtensionRangeOptions
+}
+
+func (m *ExtensionRangeOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+// Describes a field within a message.
+type FieldDescriptorProto struct {
+	Name   *string                     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Number *int32                      `protobuf:"varint,3,opt,name=number" json:"number,omitempty"`
+	Label  *FieldDescriptorProto_Label `protobuf:"varint,4,opt,name=label,enum=google.protobuf.FieldDescriptorProto_Label" json:"label,omitempty"`
+	// If type_name is set, this need not be set.  If both this and type_name
+	// are set, this must be one of TYPE_ENUM, TYPE_MESSAGE or TYPE_GROUP.
+	Type *FieldDescriptorProto_Type `protobuf:"varint,5,opt,name=type,enum=google.protobuf.FieldDescriptorProto_Type" json:"type,omitempty"`
+	// For message and enum types, this is the name of the type.  If the name
+	// starts with a '.', it is fully-qualified.  Otherwise, C++-like scoping
+	// rules are used to find the type (i.e. first the nested types within this
+	// message are searched, then within the parent, on up to the root
+	// namespace).
+	TypeName *string `protobuf:"bytes,6,opt,name=type_name,json=typeName" json:"type_name,omitempty"`
+	// For extensions, this is the name of the type being extended.  It is
+	// resolved in the same manner as type_name.
+	Extendee *string `protobuf:"bytes,2,opt,name=extendee" json:"extendee,omitempty"`
+	// For numeric types, contains the original text representation of the value.
+	// For booleans, "true" or "false".
+	// For strings, contains the default text contents (not escaped in any way).
+	// For bytes, contains the C escaped value.  All bytes >= 128 are escaped.
+	// TODO(kenton):  Base-64 encode?
+	DefaultValue *string `protobuf:"bytes,7,opt,name=default_value,json=defaultValue" json:"default_value,omitempty"`
+	// If set, gives the index of a oneof in the containing type's oneof_decl
+	// list.  This field is a member of that oneof.
+	OneofIndex *int32 `protobuf:"varint,9,opt,name=oneof_index,json=oneofIndex" json:"oneof_index,omitempty"`
+	// JSON name of this field. The value is set by protocol compiler. If the
+	// user has set a "json_name" option on this field, that option's value
+	// will be used. Otherwise, it's deduced from the field's name by converting
+	// it to camelCase.
+	JsonName         *string       `protobuf:"bytes,10,opt,name=json_name,json=jsonName" json:"json_name,omitempty"`
+	Options          *FieldOptions `protobuf:"bytes,8,opt,name=options" json:"options,omitempty"`
+	XXX_unrecognized []byte        `json:"-"`
+}
+
+func (m *FieldDescriptorProto) Reset()                    { *m = FieldDescriptorProto{} }
+func (m *FieldDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*FieldDescriptorProto) ProtoMessage()               {}
+func (*FieldDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{4} }
+
+func (m *FieldDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *FieldDescriptorProto) GetNumber() int32 {
+	if m != nil && m.Number != nil {
+		return *m.Number
+	}
+	return 0
+}
+
+func (m *FieldDescriptorProto) GetLabel() FieldDescriptorProto_Label {
+	if m != nil && m.Label != nil {
+		return *m.Label
+	}
+	return FieldDescriptorProto_LABEL_OPTIONAL
+}
+
+func (m *FieldDescriptorProto) GetType() FieldDescriptorProto_Type {
+	if m != nil && m.Type != nil {
+		return *m.Type
+	}
+	return FieldDescriptorProto_TYPE_DOUBLE
+}
+
+func (m *FieldDescriptorProto) GetTypeName() string {
+	if m != nil && m.TypeName != nil {
+		return *m.TypeName
+	}
+	return ""
+}
+
+func (m *FieldDescriptorProto) GetExtendee() string {
+	if m != nil && m.Extendee != nil {
+		return *m.Extendee
+	}
+	return ""
+}
+
+func (m *FieldDescriptorProto) GetDefaultValue() string {
+	if m != nil && m.DefaultValue != nil {
+		return *m.DefaultValue
+	}
+	return ""
+}
+
+func (m *FieldDescriptorProto) GetOneofIndex() int32 {
+	if m != nil && m.OneofIndex != nil {
+		return *m.OneofIndex
+	}
+	return 0
+}
+
+func (m *FieldDescriptorProto) GetJsonName() string {
+	if m != nil && m.JsonName != nil {
+		return *m.JsonName
+	}
+	return ""
+}
+
+func (m *FieldDescriptorProto) GetOptions() *FieldOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+// Describes a oneof.
+type OneofDescriptorProto struct {
+	Name             *string       `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Options          *OneofOptions `protobuf:"bytes,2,opt,name=options" json:"options,omitempty"`
+	XXX_unrecognized []byte        `json:"-"`
+}
+
+func (m *OneofDescriptorProto) Reset()                    { *m = OneofDescriptorProto{} }
+func (m *OneofDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*OneofDescriptorProto) ProtoMessage()               {}
+func (*OneofDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{5} }
+
+func (m *OneofDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *OneofDescriptorProto) GetOptions() *OneofOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+// Describes an enum type.
+type EnumDescriptorProto struct {
+	Name    *string                     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Value   []*EnumValueDescriptorProto `protobuf:"bytes,2,rep,name=value" json:"value,omitempty"`
+	Options *EnumOptions                `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	// Range of reserved numeric values. Reserved numeric values may not be used
+	// by enum values in the same enum declaration. Reserved ranges may not
+	// overlap.
+	ReservedRange []*EnumDescriptorProto_EnumReservedRange `protobuf:"bytes,4,rep,name=reserved_range,json=reservedRange" json:"reserved_range,omitempty"`
+	// Reserved enum value names, which may not be reused. A given name may only
+	// be reserved once.
+	ReservedName     []string `protobuf:"bytes,5,rep,name=reserved_name,json=reservedName" json:"reserved_name,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *EnumDescriptorProto) Reset()                    { *m = EnumDescriptorProto{} }
+func (m *EnumDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*EnumDescriptorProto) ProtoMessage()               {}
+func (*EnumDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{6} }
+
+func (m *EnumDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *EnumDescriptorProto) GetValue() []*EnumValueDescriptorProto {
+	if m != nil {
+		return m.Value
+	}
+	return nil
+}
+
+func (m *EnumDescriptorProto) GetOptions() *EnumOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+func (m *EnumDescriptorProto) GetReservedRange() []*EnumDescriptorProto_EnumReservedRange {
+	if m != nil {
+		return m.ReservedRange
+	}
+	return nil
+}
+
+func (m *EnumDescriptorProto) GetReservedName() []string {
+	if m != nil {
+		return m.ReservedName
+	}
+	return nil
+}
+
+// Range of reserved numeric values. Reserved values may not be used by
+// entries in the same enum. Reserved ranges may not overlap.
+//
+// Note that this is distinct from DescriptorProto.ReservedRange in that it
+// is inclusive such that it can appropriately represent the entire int32
+// domain.
+type EnumDescriptorProto_EnumReservedRange struct {
+	Start            *int32 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End              *int32 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *EnumDescriptorProto_EnumReservedRange) Reset()         { *m = EnumDescriptorProto_EnumReservedRange{} }
+func (m *EnumDescriptorProto_EnumReservedRange) String() string { return proto.CompactTextString(m) }
+func (*EnumDescriptorProto_EnumReservedRange) ProtoMessage()    {}
+func (*EnumDescriptorProto_EnumReservedRange) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{6, 0}
+}
+
+func (m *EnumDescriptorProto_EnumReservedRange) GetStart() int32 {
+	if m != nil && m.Start != nil {
+		return *m.Start
+	}
+	return 0
+}
+
+func (m *EnumDescriptorProto_EnumReservedRange) GetEnd() int32 {
+	if m != nil && m.End != nil {
+		return *m.End
+	}
+	return 0
+}
+
+// Describes a value within an enum.
+type EnumValueDescriptorProto struct {
+	Name             *string           `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Number           *int32            `protobuf:"varint,2,opt,name=number" json:"number,omitempty"`
+	Options          *EnumValueOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_unrecognized []byte            `json:"-"`
+}
+
+func (m *EnumValueDescriptorProto) Reset()         { *m = EnumValueDescriptorProto{} }
+func (m *EnumValueDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*EnumValueDescriptorProto) ProtoMessage()    {}
+func (*EnumValueDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{7}
+}
+
+func (m *EnumValueDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *EnumValueDescriptorProto) GetNumber() int32 {
+	if m != nil && m.Number != nil {
+		return *m.Number
+	}
+	return 0
+}
+
+func (m *EnumValueDescriptorProto) GetOptions() *EnumValueOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+// Describes a service.
+type ServiceDescriptorProto struct {
+	Name             *string                  `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Method           []*MethodDescriptorProto `protobuf:"bytes,2,rep,name=method" json:"method,omitempty"`
+	Options          *ServiceOptions          `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_unrecognized []byte                   `json:"-"`
+}
+
+func (m *ServiceDescriptorProto) Reset()                    { *m = ServiceDescriptorProto{} }
+func (m *ServiceDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*ServiceDescriptorProto) ProtoMessage()               {}
+func (*ServiceDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{8} }
+
+func (m *ServiceDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *ServiceDescriptorProto) GetMethod() []*MethodDescriptorProto {
+	if m != nil {
+		return m.Method
+	}
+	return nil
+}
+
+func (m *ServiceDescriptorProto) GetOptions() *ServiceOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+// Describes a method of a service.
+type MethodDescriptorProto struct {
+	Name *string `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	// Input and output type names.  These are resolved in the same way as
+	// FieldDescriptorProto.type_name, but must refer to a message type.
+	InputType  *string        `protobuf:"bytes,2,opt,name=input_type,json=inputType" json:"input_type,omitempty"`
+	OutputType *string        `protobuf:"bytes,3,opt,name=output_type,json=outputType" json:"output_type,omitempty"`
+	Options    *MethodOptions `protobuf:"bytes,4,opt,name=options" json:"options,omitempty"`
+	// Identifies if client streams multiple client messages
+	ClientStreaming *bool `protobuf:"varint,5,opt,name=client_streaming,json=clientStreaming,def=0" json:"client_streaming,omitempty"`
+	// Identifies if server streams multiple server messages
+	ServerStreaming  *bool  `protobuf:"varint,6,opt,name=server_streaming,json=serverStreaming,def=0" json:"server_streaming,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *MethodDescriptorProto) Reset()                    { *m = MethodDescriptorProto{} }
+func (m *MethodDescriptorProto) String() string            { return proto.CompactTextString(m) }
+func (*MethodDescriptorProto) ProtoMessage()               {}
+func (*MethodDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{9} }
+
+const Default_MethodDescriptorProto_ClientStreaming bool = false
+const Default_MethodDescriptorProto_ServerStreaming bool = false
+
+func (m *MethodDescriptorProto) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *MethodDescriptorProto) GetInputType() string {
+	if m != nil && m.InputType != nil {
+		return *m.InputType
+	}
+	return ""
+}
+
+func (m *MethodDescriptorProto) GetOutputType() string {
+	if m != nil && m.OutputType != nil {
+		return *m.OutputType
+	}
+	return ""
+}
+
+func (m *MethodDescriptorProto) GetOptions() *MethodOptions {
+	if m != nil {
+		return m.Options
+	}
+	return nil
+}
+
+func (m *MethodDescriptorProto) GetClientStreaming() bool {
+	if m != nil && m.ClientStreaming != nil {
+		return *m.ClientStreaming
+	}
+	return Default_MethodDescriptorProto_ClientStreaming
+}
+
+func (m *MethodDescriptorProto) GetServerStreaming() bool {
+	if m != nil && m.ServerStreaming != nil {
+		return *m.ServerStreaming
+	}
+	return Default_MethodDescriptorProto_ServerStreaming
+}
+
+type FileOptions struct {
+	// Sets the Java package where classes generated from this .proto will be
+	// placed.  By default, the proto package is used, but this is often
+	// inappropriate because proto packages do not normally start with backwards
+	// domain names.
+	JavaPackage *string `protobuf:"bytes,1,opt,name=java_package,json=javaPackage" json:"java_package,omitempty"`
+	// If set, all the classes from the .proto file are wrapped in a single
+	// outer class with the given name.  This applies to both Proto1
+	// (equivalent to the old "--one_java_file" option) and Proto2 (where
+	// a .proto always translates to a single class, but you may want to
+	// explicitly choose the class name).
+	JavaOuterClassname *string `protobuf:"bytes,8,opt,name=java_outer_classname,json=javaOuterClassname" json:"java_outer_classname,omitempty"`
+	// If set true, then the Java code generator will generate a separate .java
+	// file for each top-level message, enum, and service defined in the .proto
+	// file.  Thus, these types will *not* be nested inside the outer class
+	// named by java_outer_classname.  However, the outer class will still be
+	// generated to contain the file's getDescriptor() method as well as any
+	// top-level extensions defined in the file.
+	JavaMultipleFiles *bool `protobuf:"varint,10,opt,name=java_multiple_files,json=javaMultipleFiles,def=0" json:"java_multiple_files,omitempty"`
+	// This option does nothing.
+	JavaGenerateEqualsAndHash *bool `protobuf:"varint,20,opt,name=java_generate_equals_and_hash,json=javaGenerateEqualsAndHash" json:"java_generate_equals_and_hash,omitempty"`
+	// If set true, then the Java2 code generator will generate code that
+	// throws an exception whenever an attempt is made to assign a non-UTF-8
+	// byte sequence to a string field.
+	// Message reflection will do the same.
+	// However, an extension field still accepts non-UTF-8 byte sequences.
+	// This option has no effect on when used with the lite runtime.
+	JavaStringCheckUtf8 *bool                     `protobuf:"varint,27,opt,name=java_string_check_utf8,json=javaStringCheckUtf8,def=0" json:"java_string_check_utf8,omitempty"`
+	OptimizeFor         *FileOptions_OptimizeMode `protobuf:"varint,9,opt,name=optimize_for,json=optimizeFor,enum=google.protobuf.FileOptions_OptimizeMode,def=1" json:"optimize_for,omitempty"`
+	// Sets the Go package where structs generated from this .proto will be
+	// placed. If omitted, the Go package will be derived from the following:
+	//   - The basename of the package import path, if provided.
+	//   - Otherwise, the package statement in the .proto file, if present.
+	//   - Otherwise, the basename of the .proto file, without extension.
+	GoPackage *string `protobuf:"bytes,11,opt,name=go_package,json=goPackage" json:"go_package,omitempty"`
+	// Should generic services be generated in each language?  "Generic" services
+	// are not specific to any particular RPC system.  They are generated by the
+	// main code generators in each language (without additional plugins).
+	// Generic services were the only kind of service generation supported by
+	// early versions of google.protobuf.
+	//
+	// Generic services are now considered deprecated in favor of using plugins
+	// that generate code specific to your particular RPC system.  Therefore,
+	// these default to false.  Old code which depends on generic services should
+	// explicitly set them to true.
+	CcGenericServices   *bool `protobuf:"varint,16,opt,name=cc_generic_services,json=ccGenericServices,def=0" json:"cc_generic_services,omitempty"`
+	JavaGenericServices *bool `protobuf:"varint,17,opt,name=java_generic_services,json=javaGenericServices,def=0" json:"java_generic_services,omitempty"`
+	PyGenericServices   *bool `protobuf:"varint,18,opt,name=py_generic_services,json=pyGenericServices,def=0" json:"py_generic_services,omitempty"`
+	PhpGenericServices  *bool `protobuf:"varint,42,opt,name=php_generic_services,json=phpGenericServices,def=0" json:"php_generic_services,omitempty"`
+	// Is this file deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for everything in the file, or it will be completely ignored; in the very
+	// least, this is a formalization for deprecating files.
+	Deprecated *bool `protobuf:"varint,23,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// Enables the use of arenas for the proto messages in this file. This applies
+	// only to generated classes for C++.
+	CcEnableArenas *bool `protobuf:"varint,31,opt,name=cc_enable_arenas,json=ccEnableArenas,def=0" json:"cc_enable_arenas,omitempty"`
+	// Sets the objective c class prefix which is prepended to all objective c
+	// generated classes from this .proto. There is no default.
+	ObjcClassPrefix *string `protobuf:"bytes,36,opt,name=objc_class_prefix,json=objcClassPrefix" json:"objc_class_prefix,omitempty"`
+	// Namespace for generated classes; defaults to the package.
+	CsharpNamespace *string `protobuf:"bytes,37,opt,name=csharp_namespace,json=csharpNamespace" json:"csharp_namespace,omitempty"`
+	// By default Swift generators will take the proto package and CamelCase it
+	// replacing '.' with underscore and use that to prefix the types/symbols
+	// defined. When this options is provided, they will use this value instead
+	// to prefix the types/symbols defined.
+	SwiftPrefix *string `protobuf:"bytes,39,opt,name=swift_prefix,json=swiftPrefix" json:"swift_prefix,omitempty"`
+	// Sets the php class prefix which is prepended to all php generated classes
+	// from this .proto. Default is empty.
+	PhpClassPrefix *string `protobuf:"bytes,40,opt,name=php_class_prefix,json=phpClassPrefix" json:"php_class_prefix,omitempty"`
+	// Use this option to change the namespace of php generated classes. Default
+	// is empty. When this option is empty, the package name will be used for
+	// determining the namespace.
+	PhpNamespace *string `protobuf:"bytes,41,opt,name=php_namespace,json=phpNamespace" json:"php_namespace,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *FileOptions) Reset()                    { *m = FileOptions{} }
+func (m *FileOptions) String() string            { return proto.CompactTextString(m) }
+func (*FileOptions) ProtoMessage()               {}
+func (*FileOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{10} }
+
+var extRange_FileOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*FileOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_FileOptions
+}
+
+const Default_FileOptions_JavaMultipleFiles bool = false
+const Default_FileOptions_JavaStringCheckUtf8 bool = false
+const Default_FileOptions_OptimizeFor FileOptions_OptimizeMode = FileOptions_SPEED
+const Default_FileOptions_CcGenericServices bool = false
+const Default_FileOptions_JavaGenericServices bool = false
+const Default_FileOptions_PyGenericServices bool = false
+const Default_FileOptions_PhpGenericServices bool = false
+const Default_FileOptions_Deprecated bool = false
+const Default_FileOptions_CcEnableArenas bool = false
+
+func (m *FileOptions) GetJavaPackage() string {
+	if m != nil && m.JavaPackage != nil {
+		return *m.JavaPackage
+	}
+	return ""
+}
+
+func (m *FileOptions) GetJavaOuterClassname() string {
+	if m != nil && m.JavaOuterClassname != nil {
+		return *m.JavaOuterClassname
+	}
+	return ""
+}
+
+func (m *FileOptions) GetJavaMultipleFiles() bool {
+	if m != nil && m.JavaMultipleFiles != nil {
+		return *m.JavaMultipleFiles
+	}
+	return Default_FileOptions_JavaMultipleFiles
+}
+
+func (m *FileOptions) GetJavaGenerateEqualsAndHash() bool {
+	if m != nil && m.JavaGenerateEqualsAndHash != nil {
+		return *m.JavaGenerateEqualsAndHash
+	}
+	return false
+}
+
+func (m *FileOptions) GetJavaStringCheckUtf8() bool {
+	if m != nil && m.JavaStringCheckUtf8 != nil {
+		return *m.JavaStringCheckUtf8
+	}
+	return Default_FileOptions_JavaStringCheckUtf8
+}
+
+func (m *FileOptions) GetOptimizeFor() FileOptions_OptimizeMode {
+	if m != nil && m.OptimizeFor != nil {
+		return *m.OptimizeFor
+	}
+	return Default_FileOptions_OptimizeFor
+}
+
+func (m *FileOptions) GetGoPackage() string {
+	if m != nil && m.GoPackage != nil {
+		return *m.GoPackage
+	}
+	return ""
+}
+
+func (m *FileOptions) GetCcGenericServices() bool {
+	if m != nil && m.CcGenericServices != nil {
+		return *m.CcGenericServices
+	}
+	return Default_FileOptions_CcGenericServices
+}
+
+func (m *FileOptions) GetJavaGenericServices() bool {
+	if m != nil && m.JavaGenericServices != nil {
+		return *m.JavaGenericServices
+	}
+	return Default_FileOptions_JavaGenericServices
+}
+
+func (m *FileOptions) GetPyGenericServices() bool {
+	if m != nil && m.PyGenericServices != nil {
+		return *m.PyGenericServices
+	}
+	return Default_FileOptions_PyGenericServices
+}
+
+func (m *FileOptions) GetPhpGenericServices() bool {
+	if m != nil && m.PhpGenericServices != nil {
+		return *m.PhpGenericServices
+	}
+	return Default_FileOptions_PhpGenericServices
+}
+
+func (m *FileOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_FileOptions_Deprecated
+}
+
+func (m *FileOptions) GetCcEnableArenas() bool {
+	if m != nil && m.CcEnableArenas != nil {
+		return *m.CcEnableArenas
+	}
+	return Default_FileOptions_CcEnableArenas
+}
+
+func (m *FileOptions) GetObjcClassPrefix() string {
+	if m != nil && m.ObjcClassPrefix != nil {
+		return *m.ObjcClassPrefix
+	}
+	return ""
+}
+
+func (m *FileOptions) GetCsharpNamespace() string {
+	if m != nil && m.CsharpNamespace != nil {
+		return *m.CsharpNamespace
+	}
+	return ""
+}
+
+func (m *FileOptions) GetSwiftPrefix() string {
+	if m != nil && m.SwiftPrefix != nil {
+		return *m.SwiftPrefix
+	}
+	return ""
+}
+
+func (m *FileOptions) GetPhpClassPrefix() string {
+	if m != nil && m.PhpClassPrefix != nil {
+		return *m.PhpClassPrefix
+	}
+	return ""
+}
+
+func (m *FileOptions) GetPhpNamespace() string {
+	if m != nil && m.PhpNamespace != nil {
+		return *m.PhpNamespace
+	}
+	return ""
+}
+
+func (m *FileOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type MessageOptions struct {
+	// Set true to use the old proto1 MessageSet wire format for extensions.
+	// This is provided for backwards-compatibility with the MessageSet wire
+	// format.  You should not use this for any other reason:  It's less
+	// efficient, has fewer features, and is more complicated.
+	//
+	// The message must be defined exactly as follows:
+	//   message Foo {
+	//     option message_set_wire_format = true;
+	//     extensions 4 to max;
+	//   }
+	// Note that the message cannot have any defined fields; MessageSets only
+	// have extensions.
+	//
+	// All extensions of your type must be singular messages; e.g. they cannot
+	// be int32s, enums, or repeated messages.
+	//
+	// Because this is an option, the above two restrictions are not enforced by
+	// the protocol compiler.
+	MessageSetWireFormat *bool `protobuf:"varint,1,opt,name=message_set_wire_format,json=messageSetWireFormat,def=0" json:"message_set_wire_format,omitempty"`
+	// Disables the generation of the standard "descriptor()" accessor, which can
+	// conflict with a field of the same name.  This is meant to make migration
+	// from proto1 easier; new code should avoid fields named "descriptor".
+	NoStandardDescriptorAccessor *bool `protobuf:"varint,2,opt,name=no_standard_descriptor_accessor,json=noStandardDescriptorAccessor,def=0" json:"no_standard_descriptor_accessor,omitempty"`
+	// Is this message deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for the message, or it will be completely ignored; in the very least,
+	// this is a formalization for deprecating messages.
+	Deprecated *bool `protobuf:"varint,3,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// Whether the message is an automatically generated map entry type for the
+	// maps field.
+	//
+	// For maps fields:
+	//     map<KeyType, ValueType> map_field = 1;
+	// The parsed descriptor looks like:
+	//     message MapFieldEntry {
+	//         option map_entry = true;
+	//         optional KeyType key = 1;
+	//         optional ValueType value = 2;
+	//     }
+	//     repeated MapFieldEntry map_field = 1;
+	//
+	// Implementations may choose not to generate the map_entry=true message, but
+	// use a native map in the target language to hold the keys and values.
+	// The reflection APIs in such implementions still need to work as
+	// if the field is a repeated message field.
+	//
+	// NOTE: Do not set the option in .proto files. Always use the maps syntax
+	// instead. The option should only be implicitly set by the proto compiler
+	// parser.
+	MapEntry *bool `protobuf:"varint,7,opt,name=map_entry,json=mapEntry" json:"map_entry,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *MessageOptions) Reset()                    { *m = MessageOptions{} }
+func (m *MessageOptions) String() string            { return proto.CompactTextString(m) }
+func (*MessageOptions) ProtoMessage()               {}
+func (*MessageOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{11} }
+
+var extRange_MessageOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*MessageOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_MessageOptions
+}
+
+const Default_MessageOptions_MessageSetWireFormat bool = false
+const Default_MessageOptions_NoStandardDescriptorAccessor bool = false
+const Default_MessageOptions_Deprecated bool = false
+
+func (m *MessageOptions) GetMessageSetWireFormat() bool {
+	if m != nil && m.MessageSetWireFormat != nil {
+		return *m.MessageSetWireFormat
+	}
+	return Default_MessageOptions_MessageSetWireFormat
+}
+
+func (m *MessageOptions) GetNoStandardDescriptorAccessor() bool {
+	if m != nil && m.NoStandardDescriptorAccessor != nil {
+		return *m.NoStandardDescriptorAccessor
+	}
+	return Default_MessageOptions_NoStandardDescriptorAccessor
+}
+
+func (m *MessageOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_MessageOptions_Deprecated
+}
+
+func (m *MessageOptions) GetMapEntry() bool {
+	if m != nil && m.MapEntry != nil {
+		return *m.MapEntry
+	}
+	return false
+}
+
+func (m *MessageOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type FieldOptions struct {
+	// The ctype option instructs the C++ code generator to use a different
+	// representation of the field than it normally would.  See the specific
+	// options below.  This option is not yet implemented in the open source
+	// release -- sorry, we'll try to include it in a future version!
+	Ctype *FieldOptions_CType `protobuf:"varint,1,opt,name=ctype,enum=google.protobuf.FieldOptions_CType,def=0" json:"ctype,omitempty"`
+	// The packed option can be enabled for repeated primitive fields to enable
+	// a more efficient representation on the wire. Rather than repeatedly
+	// writing the tag and type for each element, the entire array is encoded as
+	// a single length-delimited blob. In proto3, only explicit setting it to
+	// false will avoid using packed encoding.
+	Packed *bool `protobuf:"varint,2,opt,name=packed" json:"packed,omitempty"`
+	// The jstype option determines the JavaScript type used for values of the
+	// field.  The option is permitted only for 64 bit integral and fixed types
+	// (int64, uint64, sint64, fixed64, sfixed64).  A field with jstype JS_STRING
+	// is represented as JavaScript string, which avoids loss of precision that
+	// can happen when a large value is converted to a floating point JavaScript.
+	// Specifying JS_NUMBER for the jstype causes the generated JavaScript code to
+	// use the JavaScript "number" type.  The behavior of the default option
+	// JS_NORMAL is implementation dependent.
+	//
+	// This option is an enum to permit additional types to be added, e.g.
+	// goog.math.Integer.
+	Jstype *FieldOptions_JSType `protobuf:"varint,6,opt,name=jstype,enum=google.protobuf.FieldOptions_JSType,def=0" json:"jstype,omitempty"`
+	// Should this field be parsed lazily?  Lazy applies only to message-type
+	// fields.  It means that when the outer message is initially parsed, the
+	// inner message's contents will not be parsed but instead stored in encoded
+	// form.  The inner message will actually be parsed when it is first accessed.
+	//
+	// This is only a hint.  Implementations are free to choose whether to use
+	// eager or lazy parsing regardless of the value of this option.  However,
+	// setting this option true suggests that the protocol author believes that
+	// using lazy parsing on this field is worth the additional bookkeeping
+	// overhead typically needed to implement it.
+	//
+	// This option does not affect the public interface of any generated code;
+	// all method signatures remain the same.  Furthermore, thread-safety of the
+	// interface is not affected by this option; const methods remain safe to
+	// call from multiple threads concurrently, while non-const methods continue
+	// to require exclusive access.
+	//
+	//
+	// Note that implementations may choose not to check required fields within
+	// a lazy sub-message.  That is, calling IsInitialized() on the outer message
+	// may return true even if the inner message has missing required fields.
+	// This is necessary because otherwise the inner message would have to be
+	// parsed in order to perform the check, defeating the purpose of lazy
+	// parsing.  An implementation which chooses not to check required fields
+	// must be consistent about it.  That is, for any particular sub-message, the
+	// implementation must either *always* check its required fields, or *never*
+	// check its required fields, regardless of whether or not the message has
+	// been parsed.
+	Lazy *bool `protobuf:"varint,5,opt,name=lazy,def=0" json:"lazy,omitempty"`
+	// Is this field deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for accessors, or it will be completely ignored; in the very least, this
+	// is a formalization for deprecating fields.
+	Deprecated *bool `protobuf:"varint,3,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// For Google-internal migration only. Do not use.
+	Weak *bool `protobuf:"varint,10,opt,name=weak,def=0" json:"weak,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *FieldOptions) Reset()                    { *m = FieldOptions{} }
+func (m *FieldOptions) String() string            { return proto.CompactTextString(m) }
+func (*FieldOptions) ProtoMessage()               {}
+func (*FieldOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{12} }
+
+var extRange_FieldOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*FieldOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_FieldOptions
+}
+
+const Default_FieldOptions_Ctype FieldOptions_CType = FieldOptions_STRING
+const Default_FieldOptions_Jstype FieldOptions_JSType = FieldOptions_JS_NORMAL
+const Default_FieldOptions_Lazy bool = false
+const Default_FieldOptions_Deprecated bool = false
+const Default_FieldOptions_Weak bool = false
+
+func (m *FieldOptions) GetCtype() FieldOptions_CType {
+	if m != nil && m.Ctype != nil {
+		return *m.Ctype
+	}
+	return Default_FieldOptions_Ctype
+}
+
+func (m *FieldOptions) GetPacked() bool {
+	if m != nil && m.Packed != nil {
+		return *m.Packed
+	}
+	return false
+}
+
+func (m *FieldOptions) GetJstype() FieldOptions_JSType {
+	if m != nil && m.Jstype != nil {
+		return *m.Jstype
+	}
+	return Default_FieldOptions_Jstype
+}
+
+func (m *FieldOptions) GetLazy() bool {
+	if m != nil && m.Lazy != nil {
+		return *m.Lazy
+	}
+	return Default_FieldOptions_Lazy
+}
+
+func (m *FieldOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_FieldOptions_Deprecated
+}
+
+func (m *FieldOptions) GetWeak() bool {
+	if m != nil && m.Weak != nil {
+		return *m.Weak
+	}
+	return Default_FieldOptions_Weak
+}
+
+func (m *FieldOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type OneofOptions struct {
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *OneofOptions) Reset()                    { *m = OneofOptions{} }
+func (m *OneofOptions) String() string            { return proto.CompactTextString(m) }
+func (*OneofOptions) ProtoMessage()               {}
+func (*OneofOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{13} }
+
+var extRange_OneofOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*OneofOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_OneofOptions
+}
+
+func (m *OneofOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type EnumOptions struct {
+	// Set this option to true to allow mapping different tag names to the same
+	// value.
+	AllowAlias *bool `protobuf:"varint,2,opt,name=allow_alias,json=allowAlias" json:"allow_alias,omitempty"`
+	// Is this enum deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for the enum, or it will be completely ignored; in the very least, this
+	// is a formalization for deprecating enums.
+	Deprecated *bool `protobuf:"varint,3,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *EnumOptions) Reset()                    { *m = EnumOptions{} }
+func (m *EnumOptions) String() string            { return proto.CompactTextString(m) }
+func (*EnumOptions) ProtoMessage()               {}
+func (*EnumOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{14} }
+
+var extRange_EnumOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*EnumOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_EnumOptions
+}
+
+const Default_EnumOptions_Deprecated bool = false
+
+func (m *EnumOptions) GetAllowAlias() bool {
+	if m != nil && m.AllowAlias != nil {
+		return *m.AllowAlias
+	}
+	return false
+}
+
+func (m *EnumOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_EnumOptions_Deprecated
+}
+
+func (m *EnumOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type EnumValueOptions struct {
+	// Is this enum value deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for the enum value, or it will be completely ignored; in the very least,
+	// this is a formalization for deprecating enum values.
+	Deprecated *bool `protobuf:"varint,1,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *EnumValueOptions) Reset()                    { *m = EnumValueOptions{} }
+func (m *EnumValueOptions) String() string            { return proto.CompactTextString(m) }
+func (*EnumValueOptions) ProtoMessage()               {}
+func (*EnumValueOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{15} }
+
+var extRange_EnumValueOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*EnumValueOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_EnumValueOptions
+}
+
+const Default_EnumValueOptions_Deprecated bool = false
+
+func (m *EnumValueOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_EnumValueOptions_Deprecated
+}
+
+func (m *EnumValueOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type ServiceOptions struct {
+	// Is this service deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for the service, or it will be completely ignored; in the very least,
+	// this is a formalization for deprecating services.
+	Deprecated *bool `protobuf:"varint,33,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *ServiceOptions) Reset()                    { *m = ServiceOptions{} }
+func (m *ServiceOptions) String() string            { return proto.CompactTextString(m) }
+func (*ServiceOptions) ProtoMessage()               {}
+func (*ServiceOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{16} }
+
+var extRange_ServiceOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*ServiceOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_ServiceOptions
+}
+
+const Default_ServiceOptions_Deprecated bool = false
+
+func (m *ServiceOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_ServiceOptions_Deprecated
+}
+
+func (m *ServiceOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+type MethodOptions struct {
+	// Is this method deprecated?
+	// Depending on the target platform, this can emit Deprecated annotations
+	// for the method, or it will be completely ignored; in the very least,
+	// this is a formalization for deprecating methods.
+	Deprecated       *bool                           `protobuf:"varint,33,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
+	IdempotencyLevel *MethodOptions_IdempotencyLevel `protobuf:"varint,34,opt,name=idempotency_level,json=idempotencyLevel,enum=google.protobuf.MethodOptions_IdempotencyLevel,def=0" json:"idempotency_level,omitempty"`
+	// The parser stores options it doesn't recognize here. See above.
+	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	proto.XXX_InternalExtensions `json:"-"`
+	XXX_unrecognized             []byte `json:"-"`
+}
+
+func (m *MethodOptions) Reset()                    { *m = MethodOptions{} }
+func (m *MethodOptions) String() string            { return proto.CompactTextString(m) }
+func (*MethodOptions) ProtoMessage()               {}
+func (*MethodOptions) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{17} }
+
+var extRange_MethodOptions = []proto.ExtensionRange{
+	{Start: 1000, End: 536870911},
+}
+
+func (*MethodOptions) ExtensionRangeArray() []proto.ExtensionRange {
+	return extRange_MethodOptions
+}
+
+const Default_MethodOptions_Deprecated bool = false
+const Default_MethodOptions_IdempotencyLevel MethodOptions_IdempotencyLevel = MethodOptions_IDEMPOTENCY_UNKNOWN
+
+func (m *MethodOptions) GetDeprecated() bool {
+	if m != nil && m.Deprecated != nil {
+		return *m.Deprecated
+	}
+	return Default_MethodOptions_Deprecated
+}
+
+func (m *MethodOptions) GetIdempotencyLevel() MethodOptions_IdempotencyLevel {
+	if m != nil && m.IdempotencyLevel != nil {
+		return *m.IdempotencyLevel
+	}
+	return Default_MethodOptions_IdempotencyLevel
+}
+
+func (m *MethodOptions) GetUninterpretedOption() []*UninterpretedOption {
+	if m != nil {
+		return m.UninterpretedOption
+	}
+	return nil
+}
+
+// A message representing a option the parser does not recognize. This only
+// appears in options protos created by the compiler::Parser class.
+// DescriptorPool resolves these when building Descriptor objects. Therefore,
+// options protos in descriptor objects (e.g. returned by Descriptor::options(),
+// or produced by Descriptor::CopyTo()) will never have UninterpretedOptions
+// in them.
+type UninterpretedOption struct {
+	Name []*UninterpretedOption_NamePart `protobuf:"bytes,2,rep,name=name" json:"name,omitempty"`
+	// The value of the uninterpreted option, in whatever type the tokenizer
+	// identified it as during parsing. Exactly one of these should be set.
+	IdentifierValue  *string  `protobuf:"bytes,3,opt,name=identifier_value,json=identifierValue" json:"identifier_value,omitempty"`
+	PositiveIntValue *uint64  `protobuf:"varint,4,opt,name=positive_int_value,json=positiveIntValue" json:"positive_int_value,omitempty"`
+	NegativeIntValue *int64   `protobuf:"varint,5,opt,name=negative_int_value,json=negativeIntValue" json:"negative_int_value,omitempty"`
+	DoubleValue      *float64 `protobuf:"fixed64,6,opt,name=double_value,json=doubleValue" json:"double_value,omitempty"`
+	StringValue      []byte   `protobuf:"bytes,7,opt,name=string_value,json=stringValue" json:"string_value,omitempty"`
+	AggregateValue   *string  `protobuf:"bytes,8,opt,name=aggregate_value,json=aggregateValue" json:"aggregate_value,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *UninterpretedOption) Reset()                    { *m = UninterpretedOption{} }
+func (m *UninterpretedOption) String() string            { return proto.CompactTextString(m) }
+func (*UninterpretedOption) ProtoMessage()               {}
+func (*UninterpretedOption) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{18} }
+
+func (m *UninterpretedOption) GetName() []*UninterpretedOption_NamePart {
+	if m != nil {
+		return m.Name
+	}
+	return nil
+}
+
+func (m *UninterpretedOption) GetIdentifierValue() string {
+	if m != nil && m.IdentifierValue != nil {
+		return *m.IdentifierValue
+	}
+	return ""
+}
+
+func (m *UninterpretedOption) GetPositiveIntValue() uint64 {
+	if m != nil && m.PositiveIntValue != nil {
+		return *m.PositiveIntValue
+	}
+	return 0
+}
+
+func (m *UninterpretedOption) GetNegativeIntValue() int64 {
+	if m != nil && m.NegativeIntValue != nil {
+		return *m.NegativeIntValue
+	}
+	return 0
+}
+
+func (m *UninterpretedOption) GetDoubleValue() float64 {
+	if m != nil && m.DoubleValue != nil {
+		return *m.DoubleValue
+	}
+	return 0
+}
+
+func (m *UninterpretedOption) GetStringValue() []byte {
+	if m != nil {
+		return m.StringValue
+	}
+	return nil
+}
+
+func (m *UninterpretedOption) GetAggregateValue() string {
+	if m != nil && m.AggregateValue != nil {
+		return *m.AggregateValue
+	}
+	return ""
+}
+
+// The name of the uninterpreted option.  Each string represents a segment in
+// a dot-separated name.  is_extension is true iff a segment represents an
+// extension (denoted with parentheses in options specs in .proto files).
+// E.g.,{ ["foo", false], ["bar.baz", true], ["qux", false] } represents
+// "foo.(bar.baz).qux".
+type UninterpretedOption_NamePart struct {
+	NamePart         *string `protobuf:"bytes,1,req,name=name_part,json=namePart" json:"name_part,omitempty"`
+	IsExtension      *bool   `protobuf:"varint,2,req,name=is_extension,json=isExtension" json:"is_extension,omitempty"`
+	XXX_unrecognized []byte  `json:"-"`
+}
+
+func (m *UninterpretedOption_NamePart) Reset()         { *m = UninterpretedOption_NamePart{} }
+func (m *UninterpretedOption_NamePart) String() string { return proto.CompactTextString(m) }
+func (*UninterpretedOption_NamePart) ProtoMessage()    {}
+func (*UninterpretedOption_NamePart) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{18, 0}
+}
+
+func (m *UninterpretedOption_NamePart) GetNamePart() string {
+	if m != nil && m.NamePart != nil {
+		return *m.NamePart
+	}
+	return ""
+}
+
+func (m *UninterpretedOption_NamePart) GetIsExtension() bool {
+	if m != nil && m.IsExtension != nil {
+		return *m.IsExtension
+	}
+	return false
+}
+
+// Encapsulates information about the original source file from which a
+// FileDescriptorProto was generated.
+type SourceCodeInfo struct {
+	// A Location identifies a piece of source code in a .proto file which
+	// corresponds to a particular definition.  This information is intended
+	// to be useful to IDEs, code indexers, documentation generators, and similar
+	// tools.
+	//
+	// For example, say we have a file like:
+	//   message Foo {
+	//     optional string foo = 1;
+	//   }
+	// Let's look at just the field definition:
+	//   optional string foo = 1;
+	//   ^       ^^     ^^  ^  ^^^
+	//   a       bc     de  f  ghi
+	// We have the following locations:
+	//   span   path               represents
+	//   [a,i)  [ 4, 0, 2, 0 ]     The whole field definition.
+	//   [a,b)  [ 4, 0, 2, 0, 4 ]  The label (optional).
+	//   [c,d)  [ 4, 0, 2, 0, 5 ]  The type (string).
+	//   [e,f)  [ 4, 0, 2, 0, 1 ]  The name (foo).
+	//   [g,h)  [ 4, 0, 2, 0, 3 ]  The number (1).
+	//
+	// Notes:
+	// - A location may refer to a repeated field itself (i.e. not to any
+	//   particular index within it).  This is used whenever a set of elements are
+	//   logically enclosed in a single code segment.  For example, an entire
+	//   extend block (possibly containing multiple extension definitions) will
+	//   have an outer location whose path refers to the "extensions" repeated
+	//   field without an index.
+	// - Multiple locations may have the same path.  This happens when a single
+	//   logical declaration is spread out across multiple places.  The most
+	//   obvious example is the "extend" block again -- there may be multiple
+	//   extend blocks in the same scope, each of which will have the same path.
+	// - A location's span is not always a subset of its parent's span.  For
+	//   example, the "extendee" of an extension declaration appears at the
+	//   beginning of the "extend" block and is shared by all extensions within
+	//   the block.
+	// - Just because a location's span is a subset of some other location's span
+	//   does not mean that it is a descendent.  For example, a "group" defines
+	//   both a type and a field in a single declaration.  Thus, the locations
+	//   corresponding to the type and field and their components will overlap.
+	// - Code which tries to interpret locations should probably be designed to
+	//   ignore those that it doesn't understand, as more types of locations could
+	//   be recorded in the future.
+	Location         []*SourceCodeInfo_Location `protobuf:"bytes,1,rep,name=location" json:"location,omitempty"`
+	XXX_unrecognized []byte                     `json:"-"`
+}
+
+func (m *SourceCodeInfo) Reset()                    { *m = SourceCodeInfo{} }
+func (m *SourceCodeInfo) String() string            { return proto.CompactTextString(m) }
+func (*SourceCodeInfo) ProtoMessage()               {}
+func (*SourceCodeInfo) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{19} }
+
+func (m *SourceCodeInfo) GetLocation() []*SourceCodeInfo_Location {
+	if m != nil {
+		return m.Location
+	}
+	return nil
+}
+
+type SourceCodeInfo_Location struct {
+	// Identifies which part of the FileDescriptorProto was defined at this
+	// location.
+	//
+	// Each element is a field number or an index.  They form a path from
+	// the root FileDescriptorProto to the place where the definition.  For
+	// example, this path:
+	//   [ 4, 3, 2, 7, 1 ]
+	// refers to:
+	//   file.message_type(3)  // 4, 3
+	//       .field(7)         // 2, 7
+	//       .name()           // 1
+	// This is because FileDescriptorProto.message_type has field number 4:
+	//   repeated DescriptorProto message_type = 4;
+	// and DescriptorProto.field has field number 2:
+	//   repeated FieldDescriptorProto field = 2;
+	// and FieldDescriptorProto.name has field number 1:
+	//   optional string name = 1;
+	//
+	// Thus, the above path gives the location of a field name.  If we removed
+	// the last element:
+	//   [ 4, 3, 2, 7 ]
+	// this path refers to the whole field declaration (from the beginning
+	// of the label to the terminating semicolon).
+	Path []int32 `protobuf:"varint,1,rep,packed,name=path" json:"path,omitempty"`
+	// Always has exactly three or four elements: start line, start column,
+	// end line (optional, otherwise assumed same as start line), end column.
+	// These are packed into a single field for efficiency.  Note that line
+	// and column numbers are zero-based -- typically you will want to add
+	// 1 to each before displaying to a user.
+	Span []int32 `protobuf:"varint,2,rep,packed,name=span" json:"span,omitempty"`
+	// If this SourceCodeInfo represents a complete declaration, these are any
+	// comments appearing before and after the declaration which appear to be
+	// attached to the declaration.
+	//
+	// A series of line comments appearing on consecutive lines, with no other
+	// tokens appearing on those lines, will be treated as a single comment.
+	//
+	// leading_detached_comments will keep paragraphs of comments that appear
+	// before (but not connected to) the current element. Each paragraph,
+	// separated by empty lines, will be one comment element in the repeated
+	// field.
+	//
+	// Only the comment content is provided; comment markers (e.g. //) are
+	// stripped out.  For block comments, leading whitespace and an asterisk
+	// will be stripped from the beginning of each line other than the first.
+	// Newlines are included in the output.
+	//
+	// Examples:
+	//
+	//   optional int32 foo = 1;  // Comment attached to foo.
+	//   // Comment attached to bar.
+	//   optional int32 bar = 2;
+	//
+	//   optional string baz = 3;
+	//   // Comment attached to baz.
+	//   // Another line attached to baz.
+	//
+	//   // Comment attached to qux.
+	//   //
+	//   // Another line attached to qux.
+	//   optional double qux = 4;
+	//
+	//   // Detached comment for corge. This is not leading or trailing comments
+	//   // to qux or corge because there are blank lines separating it from
+	//   // both.
+	//
+	//   // Detached comment for corge paragraph 2.
+	//
+	//   optional string corge = 5;
+	//   /* Block comment attached
+	//    * to corge.  Leading asterisks
+	//    * will be removed. */
+	//   /* Block comment attached to
+	//    * grault. */
+	//   optional int32 grault = 6;
+	//
+	//   // ignored detached comments.
+	LeadingComments         *string  `protobuf:"bytes,3,opt,name=leading_comments,json=leadingComments" json:"leading_comments,omitempty"`
+	TrailingComments        *string  `protobuf:"bytes,4,opt,name=trailing_comments,json=trailingComments" json:"trailing_comments,omitempty"`
+	LeadingDetachedComments []string `protobuf:"bytes,6,rep,name=leading_detached_comments,json=leadingDetachedComments" json:"leading_detached_comments,omitempty"`
+	XXX_unrecognized        []byte   `json:"-"`
+}
+
+func (m *SourceCodeInfo_Location) Reset()         { *m = SourceCodeInfo_Location{} }
+func (m *SourceCodeInfo_Location) String() string { return proto.CompactTextString(m) }
+func (*SourceCodeInfo_Location) ProtoMessage()    {}
+func (*SourceCodeInfo_Location) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{19, 0}
+}
+
+func (m *SourceCodeInfo_Location) GetPath() []int32 {
+	if m != nil {
+		return m.Path
+	}
+	return nil
+}
+
+func (m *SourceCodeInfo_Location) GetSpan() []int32 {
+	if m != nil {
+		return m.Span
+	}
+	return nil
+}
+
+func (m *SourceCodeInfo_Location) GetLeadingComments() string {
+	if m != nil && m.LeadingComments != nil {
+		return *m.LeadingComments
+	}
+	return ""
+}
+
+func (m *SourceCodeInfo_Location) GetTrailingComments() string {
+	if m != nil && m.TrailingComments != nil {
+		return *m.TrailingComments
+	}
+	return ""
+}
+
+func (m *SourceCodeInfo_Location) GetLeadingDetachedComments() []string {
+	if m != nil {
+		return m.LeadingDetachedComments
+	}
+	return nil
+}
+
+// Describes the relationship between generated code and its original source
+// file. A GeneratedCodeInfo message is associated with only one generated
+// source file, but may contain references to different source .proto files.
+type GeneratedCodeInfo struct {
+	// An Annotation connects some span of text in generated code to an element
+	// of its generating .proto file.
+	Annotation       []*GeneratedCodeInfo_Annotation `protobuf:"bytes,1,rep,name=annotation" json:"annotation,omitempty"`
+	XXX_unrecognized []byte                          `json:"-"`
+}
+
+func (m *GeneratedCodeInfo) Reset()                    { *m = GeneratedCodeInfo{} }
+func (m *GeneratedCodeInfo) String() string            { return proto.CompactTextString(m) }
+func (*GeneratedCodeInfo) ProtoMessage()               {}
+func (*GeneratedCodeInfo) Descriptor() ([]byte, []int) { return fileDescriptorDescriptor, []int{20} }
+
+func (m *GeneratedCodeInfo) GetAnnotation() []*GeneratedCodeInfo_Annotation {
+	if m != nil {
+		return m.Annotation
+	}
+	return nil
+}
+
+type GeneratedCodeInfo_Annotation struct {
+	// Identifies the element in the original source .proto file. This field
+	// is formatted the same as SourceCodeInfo.Location.path.
+	Path []int32 `protobuf:"varint,1,rep,packed,name=path" json:"path,omitempty"`
+	// Identifies the filesystem path to the original source .proto.
+	SourceFile *string `protobuf:"bytes,2,opt,name=source_file,json=sourceFile" json:"source_file,omitempty"`
+	// Identifies the starting offset in bytes in the generated code
+	// that relates to the identified object.
+	Begin *int32 `protobuf:"varint,3,opt,name=begin" json:"begin,omitempty"`
+	// Identifies the ending offset in bytes in the generated code that
+	// relates to the identified offset. The end offset should be one past
+	// the last relevant byte (so the length of the text = end - begin).
+	End              *int32 `protobuf:"varint,4,opt,name=end" json:"end,omitempty"`
+	XXX_unrecognized []byte `json:"-"`
+}
+
+func (m *GeneratedCodeInfo_Annotation) Reset()         { *m = GeneratedCodeInfo_Annotation{} }
+func (m *GeneratedCodeInfo_Annotation) String() string { return proto.CompactTextString(m) }
+func (*GeneratedCodeInfo_Annotation) ProtoMessage()    {}
+func (*GeneratedCodeInfo_Annotation) Descriptor() ([]byte, []int) {
+	return fileDescriptorDescriptor, []int{20, 0}
+}
+
+func (m *GeneratedCodeInfo_Annotation) GetPath() []int32 {
+	if m != nil {
+		return m.Path
+	}
+	return nil
+}
+
+func (m *GeneratedCodeInfo_Annotation) GetSourceFile() string {
+	if m != nil && m.SourceFile != nil {
+		return *m.SourceFile
+	}
+	return ""
+}
+
+func (m *GeneratedCodeInfo_Annotation) GetBegin() int32 {
+	if m != nil && m.Begin != nil {
+		return *m.Begin
+	}
+	return 0
+}
+
+func (m *GeneratedCodeInfo_Annotation) GetEnd() int32 {
+	if m != nil && m.End != nil {
+		return *m.End
+	}
+	return 0
+}
+
+func init() {
+	proto.RegisterType((*FileDescriptorSet)(nil), "google.protobuf.FileDescriptorSet")
+	proto.RegisterType((*FileDescriptorProto)(nil), "google.protobuf.FileDescriptorProto")
+	proto.RegisterType((*DescriptorProto)(nil), "google.protobuf.DescriptorProto")
+	proto.RegisterType((*DescriptorProto_ExtensionRange)(nil), "google.protobuf.DescriptorProto.ExtensionRange")
+	proto.RegisterType((*DescriptorProto_ReservedRange)(nil), "google.protobuf.DescriptorProto.ReservedRange")
+	proto.RegisterType((*ExtensionRangeOptions)(nil), "google.protobuf.ExtensionRangeOptions")
+	proto.RegisterType((*FieldDescriptorProto)(nil), "google.protobuf.FieldDescriptorProto")
+	proto.RegisterType((*OneofDescriptorProto)(nil), "google.protobuf.OneofDescriptorProto")
+	proto.RegisterType((*EnumDescriptorProto)(nil), "google.protobuf.EnumDescriptorProto")
+	proto.RegisterType((*EnumDescriptorProto_EnumReservedRange)(nil), "google.protobuf.EnumDescriptorProto.EnumReservedRange")
+	proto.RegisterType((*EnumValueDescriptorProto)(nil), "google.protobuf.EnumValueDescriptorProto")
+	proto.RegisterType((*ServiceDescriptorProto)(nil), "google.protobuf.ServiceDescriptorProto")
+	proto.RegisterType((*MethodDescriptorProto)(nil), "google.protobuf.MethodDescriptorProto")
+	proto.RegisterType((*FileOptions)(nil), "google.protobuf.FileOptions")
+	proto.RegisterType((*MessageOptions)(nil), "google.protobuf.MessageOptions")
+	proto.RegisterType((*FieldOptions)(nil), "google.protobuf.FieldOptions")
+	proto.RegisterType((*OneofOptions)(nil), "google.protobuf.OneofOptions")
+	proto.RegisterType((*EnumOptions)(nil), "google.protobuf.EnumOptions")
+	proto.RegisterType((*EnumValueOptions)(nil), "google.protobuf.EnumValueOptions")
+	proto.RegisterType((*ServiceOptions)(nil), "google.protobuf.ServiceOptions")
+	proto.RegisterType((*MethodOptions)(nil), "google.protobuf.MethodOptions")
+	proto.RegisterType((*UninterpretedOption)(nil), "google.protobuf.UninterpretedOption")
+	proto.RegisterType((*UninterpretedOption_NamePart)(nil), "google.protobuf.UninterpretedOption.NamePart")
+	proto.RegisterType((*SourceCodeInfo)(nil), "google.protobuf.SourceCodeInfo")
+	proto.RegisterType((*SourceCodeInfo_Location)(nil), "google.protobuf.SourceCodeInfo.Location")
+	proto.RegisterType((*GeneratedCodeInfo)(nil), "google.protobuf.GeneratedCodeInfo")
+	proto.RegisterType((*GeneratedCodeInfo_Annotation)(nil), "google.protobuf.GeneratedCodeInfo.Annotation")
+	proto.RegisterEnum("google.protobuf.FieldDescriptorProto_Type", FieldDescriptorProto_Type_name, FieldDescriptorProto_Type_value)
+	proto.RegisterEnum("google.protobuf.FieldDescriptorProto_Label", FieldDescriptorProto_Label_name, FieldDescriptorProto_Label_value)
+	proto.RegisterEnum("google.protobuf.FileOptions_OptimizeMode", FileOptions_OptimizeMode_name, FileOptions_OptimizeMode_value)
+	proto.RegisterEnum("google.protobuf.FieldOptions_CType", FieldOptions_CType_name, FieldOptions_CType_value)
+	proto.RegisterEnum("google.protobuf.FieldOptions_JSType", FieldOptions_JSType_name, FieldOptions_JSType_value)
+	proto.RegisterEnum("google.protobuf.MethodOptions_IdempotencyLevel", MethodOptions_IdempotencyLevel_name, MethodOptions_IdempotencyLevel_value)
+}
+
+func init() { proto.RegisterFile("descriptor.proto", fileDescriptorDescriptor) }
+
+var fileDescriptorDescriptor = []byte{
+	// 2487 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xc4, 0x59, 0xcd, 0x6f, 0xdb, 0xc8,
+	0x15, 0x5f, 0x7d, 0x5a, 0x7a, 0x92, 0xe5, 0xf1, 0xd8, 0x9b, 0x30, 0xde, 0x8f, 0x38, 0xda, 0x8f,
+	0x38, 0x49, 0xab, 0x2c, 0x9c, 0xc4, 0xc9, 0x3a, 0xc5, 0xb6, 0xb2, 0xc4, 0x78, 0x95, 0xca, 0x92,
+	0x4a, 0xc9, 0xdd, 0x64, 0x8b, 0x82, 0x18, 0x93, 0x23, 0x89, 0x09, 0x45, 0x72, 0x49, 0x2a, 0x89,
+	0x83, 0x1e, 0x02, 0xf4, 0xd4, 0xff, 0xa0, 0x28, 0x8a, 0x1e, 0x7a, 0x59, 0xa0, 0xd7, 0x02, 0x05,
+	0xda, 0x7b, 0xaf, 0x05, 0x7a, 0xef, 0xa1, 0x40, 0x0b, 0xb4, 0x7f, 0x42, 0x8f, 0xc5, 0xcc, 0x90,
+	0x14, 0xf5, 0x95, 0x78, 0x17, 0x48, 0xf6, 0x64, 0xcf, 0xef, 0xfd, 0xde, 0xe3, 0x9b, 0x37, 0x6f,
+	0xde, 0xbc, 0x19, 0x01, 0xd2, 0xa9, 0xa7, 0xb9, 0x86, 0xe3, 0xdb, 0x6e, 0xc5, 0x71, 0x6d, 0xdf,
+	0xc6, 0x6b, 0x03, 0xdb, 0x1e, 0x98, 0x54, 0x8c, 0x4e, 0xc6, 0xfd, 0xf2, 0x11, 0xac, 0xdf, 0x33,
+	0x4c, 0x5a, 0x8f, 0x88, 0x5d, 0xea, 0xe3, 0x3b, 0x90, 0xee, 0x1b, 0x26, 0x95, 0x12, 0xdb, 0xa9,
+	0x9d, 0xc2, 0xee, 0x87, 0x95, 0x19, 0xa5, 0xca, 0xb4, 0x46, 0x87, 0xc1, 0x0a, 0xd7, 0x28, 0xff,
+	0x3b, 0x0d, 0x1b, 0x0b, 0xa4, 0x18, 0x43, 0xda, 0x22, 0x23, 0x66, 0x31, 0xb1, 0x93, 0x57, 0xf8,
+	0xff, 0x58, 0x82, 0x15, 0x87, 0x68, 0x8f, 0xc9, 0x80, 0x4a, 0x49, 0x0e, 0x87, 0x43, 0xfc, 0x3e,
+	0x80, 0x4e, 0x1d, 0x6a, 0xe9, 0xd4, 0xd2, 0x4e, 0xa5, 0xd4, 0x76, 0x6a, 0x27, 0xaf, 0xc4, 0x10,
+	0x7c, 0x0d, 0xd6, 0x9d, 0xf1, 0x89, 0x69, 0x68, 0x6a, 0x8c, 0x06, 0xdb, 0xa9, 0x9d, 0x8c, 0x82,
+	0x84, 0xa0, 0x3e, 0x21, 0x5f, 0x86, 0xb5, 0xa7, 0x94, 0x3c, 0x8e, 0x53, 0x0b, 0x9c, 0x5a, 0x62,
+	0x70, 0x8c, 0x58, 0x83, 0xe2, 0x88, 0x7a, 0x1e, 0x19, 0x50, 0xd5, 0x3f, 0x75, 0xa8, 0x94, 0xe6,
+	0xb3, 0xdf, 0x9e, 0x9b, 0xfd, 0xec, 0xcc, 0x0b, 0x81, 0x56, 0xef, 0xd4, 0xa1, 0xb8, 0x0a, 0x79,
+	0x6a, 0x8d, 0x47, 0xc2, 0x42, 0x66, 0x49, 0xfc, 0x64, 0x6b, 0x3c, 0x9a, 0xb5, 0x92, 0x63, 0x6a,
+	0x81, 0x89, 0x15, 0x8f, 0xba, 0x4f, 0x0c, 0x8d, 0x4a, 0x59, 0x6e, 0xe0, 0xf2, 0x9c, 0x81, 0xae,
+	0x90, 0xcf, 0xda, 0x08, 0xf5, 0x70, 0x0d, 0xf2, 0xf4, 0x99, 0x4f, 0x2d, 0xcf, 0xb0, 0x2d, 0x69,
+	0x85, 0x1b, 0xf9, 0x68, 0xc1, 0x2a, 0x52, 0x53, 0x9f, 0x35, 0x31, 0xd1, 0xc3, 0x7b, 0xb0, 0x62,
+	0x3b, 0xbe, 0x61, 0x5b, 0x9e, 0x94, 0xdb, 0x4e, 0xec, 0x14, 0x76, 0xdf, 0x5d, 0x98, 0x08, 0x6d,
+	0xc1, 0x51, 0x42, 0x32, 0x6e, 0x00, 0xf2, 0xec, 0xb1, 0xab, 0x51, 0x55, 0xb3, 0x75, 0xaa, 0x1a,
+	0x56, 0xdf, 0x96, 0xf2, 0xdc, 0xc0, 0xc5, 0xf9, 0x89, 0x70, 0x62, 0xcd, 0xd6, 0x69, 0xc3, 0xea,
+	0xdb, 0x4a, 0xc9, 0x9b, 0x1a, 0xe3, 0x73, 0x90, 0xf5, 0x4e, 0x2d, 0x9f, 0x3c, 0x93, 0x8a, 0x3c,
+	0x43, 0x82, 0x51, 0xf9, 0xcf, 0x59, 0x58, 0x3b, 0x4b, 0x8a, 0xdd, 0x85, 0x4c, 0x9f, 0xcd, 0x52,
+	0x4a, 0x7e, 0x93, 0x18, 0x08, 0x9d, 0xe9, 0x20, 0x66, 0xbf, 0x65, 0x10, 0xab, 0x50, 0xb0, 0xa8,
+	0xe7, 0x53, 0x5d, 0x64, 0x44, 0xea, 0x8c, 0x39, 0x05, 0x42, 0x69, 0x3e, 0xa5, 0xd2, 0xdf, 0x2a,
+	0xa5, 0x1e, 0xc0, 0x5a, 0xe4, 0x92, 0xea, 0x12, 0x6b, 0x10, 0xe6, 0xe6, 0xf5, 0x57, 0x79, 0x52,
+	0x91, 0x43, 0x3d, 0x85, 0xa9, 0x29, 0x25, 0x3a, 0x35, 0xc6, 0x75, 0x00, 0xdb, 0xa2, 0x76, 0x5f,
+	0xd5, 0xa9, 0x66, 0x4a, 0xb9, 0x25, 0x51, 0x6a, 0x33, 0xca, 0x5c, 0x94, 0x6c, 0x81, 0x6a, 0x26,
+	0xfe, 0x74, 0x92, 0x6a, 0x2b, 0x4b, 0x32, 0xe5, 0x48, 0x6c, 0xb2, 0xb9, 0x6c, 0x3b, 0x86, 0x92,
+	0x4b, 0x59, 0xde, 0x53, 0x3d, 0x98, 0x59, 0x9e, 0x3b, 0x51, 0x79, 0xe5, 0xcc, 0x94, 0x40, 0x4d,
+	0x4c, 0x6c, 0xd5, 0x8d, 0x0f, 0xf1, 0x07, 0x10, 0x01, 0x2a, 0x4f, 0x2b, 0xe0, 0x55, 0xa8, 0x18,
+	0x82, 0x2d, 0x32, 0xa2, 0x5b, 0xcf, 0xa1, 0x34, 0x1d, 0x1e, 0xbc, 0x09, 0x19, 0xcf, 0x27, 0xae,
+	0xcf, 0xb3, 0x30, 0xa3, 0x88, 0x01, 0x46, 0x90, 0xa2, 0x96, 0xce, 0xab, 0x5c, 0x46, 0x61, 0xff,
+	0xe2, 0x1f, 0x4d, 0x26, 0x9c, 0xe2, 0x13, 0xfe, 0x78, 0x7e, 0x45, 0xa7, 0x2c, 0xcf, 0xce, 0x7b,
+	0xeb, 0x36, 0xac, 0x4e, 0x4d, 0xe0, 0xac, 0x9f, 0x2e, 0xff, 0x02, 0xde, 0x5e, 0x68, 0x1a, 0x3f,
+	0x80, 0xcd, 0xb1, 0x65, 0x58, 0x3e, 0x75, 0x1d, 0x97, 0xb2, 0x8c, 0x15, 0x9f, 0x92, 0xfe, 0xb3,
+	0xb2, 0x24, 0xe7, 0x8e, 0xe3, 0x6c, 0x61, 0x45, 0xd9, 0x18, 0xcf, 0x83, 0x57, 0xf3, 0xb9, 0xff,
+	0xae, 0xa0, 0x17, 0x2f, 0x5e, 0xbc, 0x48, 0x96, 0x7f, 0x9d, 0x85, 0xcd, 0x45, 0x7b, 0x66, 0xe1,
+	0xf6, 0x3d, 0x07, 0x59, 0x6b, 0x3c, 0x3a, 0xa1, 0x2e, 0x0f, 0x52, 0x46, 0x09, 0x46, 0xb8, 0x0a,
+	0x19, 0x93, 0x9c, 0x50, 0x53, 0x4a, 0x6f, 0x27, 0x76, 0x4a, 0xbb, 0xd7, 0xce, 0xb4, 0x2b, 0x2b,
+	0x4d, 0xa6, 0xa2, 0x08, 0x4d, 0xfc, 0x19, 0xa4, 0x83, 0x12, 0xcd, 0x2c, 0x5c, 0x3d, 0x9b, 0x05,
+	0xb6, 0x97, 0x14, 0xae, 0x87, 0xdf, 0x81, 0x3c, 0xfb, 0x2b, 0x72, 0x23, 0xcb, 0x7d, 0xce, 0x31,
+	0x80, 0xe5, 0x05, 0xde, 0x82, 0x1c, 0xdf, 0x26, 0x3a, 0x0d, 0x8f, 0xb6, 0x68, 0xcc, 0x12, 0x4b,
+	0xa7, 0x7d, 0x32, 0x36, 0x7d, 0xf5, 0x09, 0x31, 0xc7, 0x94, 0x27, 0x7c, 0x5e, 0x29, 0x06, 0xe0,
+	0x4f, 0x19, 0x86, 0x2f, 0x42, 0x41, 0xec, 0x2a, 0xc3, 0xd2, 0xe9, 0x33, 0x5e, 0x3d, 0x33, 0x8a,
+	0xd8, 0x68, 0x0d, 0x86, 0xb0, 0xcf, 0x3f, 0xf2, 0x6c, 0x2b, 0x4c, 0x4d, 0xfe, 0x09, 0x06, 0xf0,
+	0xcf, 0xdf, 0x9e, 0x2d, 0xdc, 0xef, 0x2d, 0x9e, 0xde, 0x6c, 0x4e, 0x95, 0xff, 0x94, 0x84, 0x34,
+	0xaf, 0x17, 0x6b, 0x50, 0xe8, 0x3d, 0xec, 0xc8, 0x6a, 0xbd, 0x7d, 0x7c, 0xd0, 0x94, 0x51, 0x02,
+	0x97, 0x00, 0x38, 0x70, 0xaf, 0xd9, 0xae, 0xf6, 0x50, 0x32, 0x1a, 0x37, 0x5a, 0xbd, 0xbd, 0x9b,
+	0x28, 0x15, 0x29, 0x1c, 0x0b, 0x20, 0x1d, 0x27, 0xdc, 0xd8, 0x45, 0x19, 0x8c, 0xa0, 0x28, 0x0c,
+	0x34, 0x1e, 0xc8, 0xf5, 0xbd, 0x9b, 0x28, 0x3b, 0x8d, 0xdc, 0xd8, 0x45, 0x2b, 0x78, 0x15, 0xf2,
+	0x1c, 0x39, 0x68, 0xb7, 0x9b, 0x28, 0x17, 0xd9, 0xec, 0xf6, 0x94, 0x46, 0xeb, 0x10, 0xe5, 0x23,
+	0x9b, 0x87, 0x4a, 0xfb, 0xb8, 0x83, 0x20, 0xb2, 0x70, 0x24, 0x77, 0xbb, 0xd5, 0x43, 0x19, 0x15,
+	0x22, 0xc6, 0xc1, 0xc3, 0x9e, 0xdc, 0x45, 0xc5, 0x29, 0xb7, 0x6e, 0xec, 0xa2, 0xd5, 0xe8, 0x13,
+	0x72, 0xeb, 0xf8, 0x08, 0x95, 0xf0, 0x3a, 0xac, 0x8a, 0x4f, 0x84, 0x4e, 0xac, 0xcd, 0x40, 0x7b,
+	0x37, 0x11, 0x9a, 0x38, 0x22, 0xac, 0xac, 0x4f, 0x01, 0x7b, 0x37, 0x11, 0x2e, 0xd7, 0x20, 0xc3,
+	0xb3, 0x0b, 0x63, 0x28, 0x35, 0xab, 0x07, 0x72, 0x53, 0x6d, 0x77, 0x7a, 0x8d, 0x76, 0xab, 0xda,
+	0x44, 0x89, 0x09, 0xa6, 0xc8, 0x3f, 0x39, 0x6e, 0x28, 0x72, 0x1d, 0x25, 0xe3, 0x58, 0x47, 0xae,
+	0xf6, 0xe4, 0x3a, 0x4a, 0x95, 0x35, 0xd8, 0x5c, 0x54, 0x27, 0x17, 0xee, 0x8c, 0xd8, 0x12, 0x27,
+	0x97, 0x2c, 0x31, 0xb7, 0x35, 0xb7, 0xc4, 0xff, 0x4a, 0xc2, 0xc6, 0x82, 0xb3, 0x62, 0xe1, 0x47,
+	0x7e, 0x08, 0x19, 0x91, 0xa2, 0xe2, 0xf4, 0xbc, 0xb2, 0xf0, 0xd0, 0xe1, 0x09, 0x3b, 0x77, 0x82,
+	0x72, 0xbd, 0x78, 0x07, 0x91, 0x5a, 0xd2, 0x41, 0x30, 0x13, 0x73, 0x35, 0xfd, 0xe7, 0x73, 0x35,
+	0x5d, 0x1c, 0x7b, 0x7b, 0x67, 0x39, 0xf6, 0x38, 0xf6, 0xcd, 0x6a, 0x7b, 0x66, 0x41, 0x6d, 0xbf,
+	0x0b, 0xeb, 0x73, 0x86, 0xce, 0x5c, 0x63, 0x7f, 0x99, 0x00, 0x69, 0x59, 0x70, 0x5e, 0x51, 0xe9,
+	0x92, 0x53, 0x95, 0xee, 0xee, 0x6c, 0x04, 0x2f, 0x2d, 0x5f, 0x84, 0xb9, 0xb5, 0xfe, 0x3a, 0x01,
+	0xe7, 0x16, 0x77, 0x8a, 0x0b, 0x7d, 0xf8, 0x0c, 0xb2, 0x23, 0xea, 0x0f, 0xed, 0xb0, 0x5b, 0xfa,
+	0x78, 0xc1, 0x19, 0xcc, 0xc4, 0xb3, 0x8b, 0x1d, 0x68, 0xc5, 0x0f, 0xf1, 0xd4, 0xb2, 0x76, 0x4f,
+	0x78, 0x33, 0xe7, 0xe9, 0xaf, 0x92, 0xf0, 0xf6, 0x42, 0xe3, 0x0b, 0x1d, 0x7d, 0x0f, 0xc0, 0xb0,
+	0x9c, 0xb1, 0x2f, 0x3a, 0x22, 0x51, 0x60, 0xf3, 0x1c, 0xe1, 0xc5, 0x8b, 0x15, 0xcf, 0xb1, 0x1f,
+	0xc9, 0x53, 0x5c, 0x0e, 0x02, 0xe2, 0x84, 0x3b, 0x13, 0x47, 0xd3, 0xdc, 0xd1, 0xf7, 0x97, 0xcc,
+	0x74, 0x2e, 0x31, 0x3f, 0x01, 0xa4, 0x99, 0x06, 0xb5, 0x7c, 0xd5, 0xf3, 0x5d, 0x4a, 0x46, 0x86,
+	0x35, 0xe0, 0x27, 0x48, 0x6e, 0x3f, 0xd3, 0x27, 0xa6, 0x47, 0x95, 0x35, 0x21, 0xee, 0x86, 0x52,
+	0xa6, 0xc1, 0x13, 0xc8, 0x8d, 0x69, 0x64, 0xa7, 0x34, 0x84, 0x38, 0xd2, 0x28, 0xff, 0x31, 0x07,
+	0x85, 0x58, 0x5f, 0x8d, 0x2f, 0x41, 0xf1, 0x11, 0x79, 0x42, 0xd4, 0xf0, 0xae, 0x24, 0x22, 0x51,
+	0x60, 0x58, 0x27, 0xb8, 0x2f, 0x7d, 0x02, 0x9b, 0x9c, 0x62, 0x8f, 0x7d, 0xea, 0xaa, 0x9a, 0x49,
+	0x3c, 0x8f, 0x07, 0x2d, 0xc7, 0xa9, 0x98, 0xc9, 0xda, 0x4c, 0x54, 0x0b, 0x25, 0xf8, 0x16, 0x6c,
+	0x70, 0x8d, 0xd1, 0xd8, 0xf4, 0x0d, 0xc7, 0xa4, 0x2a, 0xbb, 0xbd, 0x79, 0xfc, 0x24, 0x89, 0x3c,
+	0x5b, 0x67, 0x8c, 0xa3, 0x80, 0xc0, 0x3c, 0xf2, 0x70, 0x1d, 0xde, 0xe3, 0x6a, 0x03, 0x6a, 0x51,
+	0x97, 0xf8, 0x54, 0xa5, 0x5f, 0x8d, 0x89, 0xe9, 0xa9, 0xc4, 0xd2, 0xd5, 0x21, 0xf1, 0x86, 0xd2,
+	0x26, 0x33, 0x70, 0x90, 0x94, 0x12, 0xca, 0x05, 0x46, 0x3c, 0x0c, 0x78, 0x32, 0xa7, 0x55, 0x2d,
+	0xfd, 0x73, 0xe2, 0x0d, 0xf1, 0x3e, 0x9c, 0xe3, 0x56, 0x3c, 0xdf, 0x35, 0xac, 0x81, 0xaa, 0x0d,
+	0xa9, 0xf6, 0x58, 0x1d, 0xfb, 0xfd, 0x3b, 0xd2, 0x3b, 0xf1, 0xef, 0x73, 0x0f, 0xbb, 0x9c, 0x53,
+	0x63, 0x94, 0x63, 0xbf, 0x7f, 0x07, 0x77, 0xa1, 0xc8, 0x16, 0x63, 0x64, 0x3c, 0xa7, 0x6a, 0xdf,
+	0x76, 0xf9, 0xd1, 0x58, 0x5a, 0x50, 0x9a, 0x62, 0x11, 0xac, 0xb4, 0x03, 0x85, 0x23, 0x5b, 0xa7,
+	0xfb, 0x99, 0x6e, 0x47, 0x96, 0xeb, 0x4a, 0x21, 0xb4, 0x72, 0xcf, 0x76, 0x59, 0x42, 0x0d, 0xec,
+	0x28, 0xc0, 0x05, 0x91, 0x50, 0x03, 0x3b, 0x0c, 0xef, 0x2d, 0xd8, 0xd0, 0x34, 0x31, 0x67, 0x43,
+	0x53, 0x83, 0x3b, 0x96, 0x27, 0xa1, 0xa9, 0x60, 0x69, 0xda, 0xa1, 0x20, 0x04, 0x39, 0xee, 0xe1,
+	0x4f, 0xe1, 0xed, 0x49, 0xb0, 0xe2, 0x8a, 0xeb, 0x73, 0xb3, 0x9c, 0x55, 0xbd, 0x05, 0x1b, 0xce,
+	0xe9, 0xbc, 0x22, 0x9e, 0xfa, 0xa2, 0x73, 0x3a, 0xab, 0x76, 0x1b, 0x36, 0x9d, 0xa1, 0x33, 0xaf,
+	0x77, 0x35, 0xae, 0x87, 0x9d, 0xa1, 0x33, 0xab, 0xf8, 0x11, 0xbf, 0x70, 0xbb, 0x54, 0x23, 0x3e,
+	0xd5, 0xa5, 0xf3, 0x71, 0x7a, 0x4c, 0x80, 0xaf, 0x03, 0xd2, 0x34, 0x95, 0x5a, 0xe4, 0xc4, 0xa4,
+	0x2a, 0x71, 0xa9, 0x45, 0x3c, 0xe9, 0x62, 0x9c, 0x5c, 0xd2, 0x34, 0x99, 0x4b, 0xab, 0x5c, 0x88,
+	0xaf, 0xc2, 0xba, 0x7d, 0xf2, 0x48, 0x13, 0x29, 0xa9, 0x3a, 0x2e, 0xed, 0x1b, 0xcf, 0xa4, 0x0f,
+	0x79, 0x7c, 0xd7, 0x98, 0x80, 0x27, 0x64, 0x87, 0xc3, 0xf8, 0x0a, 0x20, 0xcd, 0x1b, 0x12, 0xd7,
+	0xe1, 0x35, 0xd9, 0x73, 0x88, 0x46, 0xa5, 0x8f, 0x04, 0x55, 0xe0, 0xad, 0x10, 0x66, 0x5b, 0xc2,
+	0x7b, 0x6a, 0xf4, 0xfd, 0xd0, 0xe2, 0x65, 0xb1, 0x25, 0x38, 0x16, 0x58, 0xdb, 0x01, 0xc4, 0x42,
+	0x31, 0xf5, 0xe1, 0x1d, 0x4e, 0x2b, 0x39, 0x43, 0x27, 0xfe, 0xdd, 0x0f, 0x60, 0x95, 0x31, 0x27,
+	0x1f, 0xbd, 0x22, 0x1a, 0x32, 0x67, 0x18, 0xfb, 0xe2, 0x6b, 0xeb, 0x8d, 0xcb, 0xfb, 0x50, 0x8c,
+	0xe7, 0x27, 0xce, 0x83, 0xc8, 0x50, 0x94, 0x60, 0xcd, 0x4a, 0xad, 0x5d, 0x67, 0x6d, 0xc6, 0x97,
+	0x32, 0x4a, 0xb2, 0x76, 0xa7, 0xd9, 0xe8, 0xc9, 0xaa, 0x72, 0xdc, 0xea, 0x35, 0x8e, 0x64, 0x94,
+	0x8a, 0xf7, 0xd5, 0x7f, 0x4d, 0x42, 0x69, 0xfa, 0x8a, 0x84, 0x7f, 0x00, 0xe7, 0xc3, 0xf7, 0x0c,
+	0x8f, 0xfa, 0xea, 0x53, 0xc3, 0xe5, 0x5b, 0x66, 0x44, 0xc4, 0xf1, 0x15, 0x2d, 0xda, 0x66, 0xc0,
+	0xea, 0x52, 0xff, 0x0b, 0xc3, 0x65, 0x1b, 0x62, 0x44, 0x7c, 0xdc, 0x84, 0x8b, 0x96, 0xad, 0x7a,
+	0x3e, 0xb1, 0x74, 0xe2, 0xea, 0xea, 0xe4, 0x25, 0x49, 0x25, 0x9a, 0x46, 0x3d, 0xcf, 0x16, 0x47,
+	0x55, 0x64, 0xe5, 0x5d, 0xcb, 0xee, 0x06, 0xe4, 0x49, 0x0d, 0xaf, 0x06, 0xd4, 0x99, 0x04, 0x4b,
+	0x2d, 0x4b, 0xb0, 0x77, 0x20, 0x3f, 0x22, 0x8e, 0x4a, 0x2d, 0xdf, 0x3d, 0xe5, 0x8d, 0x71, 0x4e,
+	0xc9, 0x8d, 0x88, 0x23, 0xb3, 0xf1, 0x9b, 0xb9, 0x9f, 0xfc, 0x23, 0x05, 0xc5, 0x78, 0x73, 0xcc,
+	0xee, 0x1a, 0x1a, 0x3f, 0x47, 0x12, 0xbc, 0xd2, 0x7c, 0xf0, 0xd2, 0x56, 0xba, 0x52, 0x63, 0x07,
+	0xcc, 0x7e, 0x56, 0xb4, 0xac, 0x8a, 0xd0, 0x64, 0x87, 0x3b, 0xab, 0x2d, 0x54, 0xb4, 0x08, 0x39,
+	0x25, 0x18, 0xe1, 0x43, 0xc8, 0x3e, 0xf2, 0xb8, 0xed, 0x2c, 0xb7, 0xfd, 0xe1, 0xcb, 0x6d, 0xdf,
+	0xef, 0x72, 0xe3, 0xf9, 0xfb, 0x5d, 0xb5, 0xd5, 0x56, 0x8e, 0xaa, 0x4d, 0x25, 0x50, 0xc7, 0x17,
+	0x20, 0x6d, 0x92, 0xe7, 0xa7, 0xd3, 0x47, 0x11, 0x87, 0xce, 0x1a, 0xf8, 0x0b, 0x90, 0x7e, 0x4a,
+	0xc9, 0xe3, 0xe9, 0x03, 0x80, 0x43, 0xaf, 0x31, 0xf5, 0xaf, 0x43, 0x86, 0xc7, 0x0b, 0x03, 0x04,
+	0x11, 0x43, 0x6f, 0xe1, 0x1c, 0xa4, 0x6b, 0x6d, 0x85, 0xa5, 0x3f, 0x82, 0xa2, 0x40, 0xd5, 0x4e,
+	0x43, 0xae, 0xc9, 0x28, 0x59, 0xbe, 0x05, 0x59, 0x11, 0x04, 0xb6, 0x35, 0xa2, 0x30, 0xa0, 0xb7,
+	0x82, 0x61, 0x60, 0x23, 0x11, 0x4a, 0x8f, 0x8f, 0x0e, 0x64, 0x05, 0x25, 0xe3, 0xcb, 0xeb, 0x41,
+	0x31, 0xde, 0x17, 0xbf, 0x99, 0x9c, 0xfa, 0x4b, 0x02, 0x0a, 0xb1, 0x3e, 0x97, 0x35, 0x28, 0xc4,
+	0x34, 0xed, 0xa7, 0x2a, 0x31, 0x0d, 0xe2, 0x05, 0x49, 0x01, 0x1c, 0xaa, 0x32, 0xe4, 0xac, 0x8b,
+	0xf6, 0x46, 0x9c, 0xff, 0x5d, 0x02, 0xd0, 0x6c, 0x8b, 0x39, 0xe3, 0x60, 0xe2, 0x3b, 0x75, 0xf0,
+	0xb7, 0x09, 0x28, 0x4d, 0xf7, 0x95, 0x33, 0xee, 0x5d, 0xfa, 0x4e, 0xdd, 0xfb, 0x67, 0x12, 0x56,
+	0xa7, 0xba, 0xc9, 0xb3, 0x7a, 0xf7, 0x15, 0xac, 0x1b, 0x3a, 0x1d, 0x39, 0xb6, 0x4f, 0x2d, 0xed,
+	0x54, 0x35, 0xe9, 0x13, 0x6a, 0x4a, 0x65, 0x5e, 0x28, 0xae, 0xbf, 0xbc, 0x5f, 0xad, 0x34, 0x26,
+	0x7a, 0x4d, 0xa6, 0xb6, 0xbf, 0xd1, 0xa8, 0xcb, 0x47, 0x9d, 0x76, 0x4f, 0x6e, 0xd5, 0x1e, 0xaa,
+	0xc7, 0xad, 0x1f, 0xb7, 0xda, 0x5f, 0xb4, 0x14, 0x64, 0xcc, 0xd0, 0x5e, 0xe3, 0x56, 0xef, 0x00,
+	0x9a, 0x75, 0x0a, 0x9f, 0x87, 0x45, 0x6e, 0xa1, 0xb7, 0xf0, 0x06, 0xac, 0xb5, 0xda, 0x6a, 0xb7,
+	0x51, 0x97, 0x55, 0xf9, 0xde, 0x3d, 0xb9, 0xd6, 0xeb, 0x8a, 0x17, 0x88, 0x88, 0xdd, 0x9b, 0xde,
+	0xd4, 0xbf, 0x49, 0xc1, 0xc6, 0x02, 0x4f, 0x70, 0x35, 0xb8, 0x3b, 0x88, 0xeb, 0xcc, 0xf7, 0xcf,
+	0xe2, 0x7d, 0x85, 0x1d, 0xf9, 0x1d, 0xe2, 0xfa, 0xc1, 0x55, 0xe3, 0x0a, 0xb0, 0x28, 0x59, 0xbe,
+	0xd1, 0x37, 0xa8, 0x1b, 0x3c, 0xd8, 0x88, 0x0b, 0xc5, 0xda, 0x04, 0x17, 0x6f, 0x36, 0xdf, 0x03,
+	0xec, 0xd8, 0x9e, 0xe1, 0x1b, 0x4f, 0xa8, 0x6a, 0x58, 0xe1, 0xeb, 0x0e, 0xbb, 0x60, 0xa4, 0x15,
+	0x14, 0x4a, 0x1a, 0x96, 0x1f, 0xb1, 0x2d, 0x3a, 0x20, 0x33, 0x6c, 0x56, 0xc0, 0x53, 0x0a, 0x0a,
+	0x25, 0x11, 0xfb, 0x12, 0x14, 0x75, 0x7b, 0xcc, 0xba, 0x2e, 0xc1, 0x63, 0xe7, 0x45, 0x42, 0x29,
+	0x08, 0x2c, 0xa2, 0x04, 0xfd, 0xf4, 0xe4, 0x59, 0xa9, 0xa8, 0x14, 0x04, 0x26, 0x28, 0x97, 0x61,
+	0x8d, 0x0c, 0x06, 0x2e, 0x33, 0x1e, 0x1a, 0x12, 0x37, 0x84, 0x52, 0x04, 0x73, 0xe2, 0xd6, 0x7d,
+	0xc8, 0x85, 0x71, 0x60, 0x47, 0x32, 0x8b, 0x84, 0xea, 0x88, 0x6b, 0x6f, 0x72, 0x27, 0xaf, 0xe4,
+	0xac, 0x50, 0x78, 0x09, 0x8a, 0x86, 0xa7, 0x4e, 0x5e, 0xc9, 0x93, 0xdb, 0xc9, 0x9d, 0x9c, 0x52,
+	0x30, 0xbc, 0xe8, 0x85, 0xb1, 0xfc, 0x75, 0x12, 0x4a, 0xd3, 0xaf, 0xfc, 0xb8, 0x0e, 0x39, 0xd3,
+	0xd6, 0x08, 0x4f, 0x2d, 0xf1, 0x13, 0xd3, 0xce, 0x2b, 0x7e, 0x18, 0xa8, 0x34, 0x03, 0xbe, 0x12,
+	0x69, 0x6e, 0xfd, 0x2d, 0x01, 0xb9, 0x10, 0xc6, 0xe7, 0x20, 0xed, 0x10, 0x7f, 0xc8, 0xcd, 0x65,
+	0x0e, 0x92, 0x28, 0xa1, 0xf0, 0x31, 0xc3, 0x3d, 0x87, 0x58, 0x3c, 0x05, 0x02, 0x9c, 0x8d, 0xd9,
+	0xba, 0x9a, 0x94, 0xe8, 0xfc, 0xfa, 0x61, 0x8f, 0x46, 0xd4, 0xf2, 0xbd, 0x70, 0x5d, 0x03, 0xbc,
+	0x16, 0xc0, 0xf8, 0x1a, 0xac, 0xfb, 0x2e, 0x31, 0xcc, 0x29, 0x6e, 0x9a, 0x73, 0x51, 0x28, 0x88,
+	0xc8, 0xfb, 0x70, 0x21, 0xb4, 0xab, 0x53, 0x9f, 0x68, 0x43, 0xaa, 0x4f, 0x94, 0xb2, 0xfc, 0x99,
+	0xe1, 0x7c, 0x40, 0xa8, 0x07, 0xf2, 0x50, 0xb7, 0xfc, 0xf7, 0x04, 0xac, 0x87, 0x17, 0x26, 0x3d,
+	0x0a, 0xd6, 0x11, 0x00, 0xb1, 0x2c, 0xdb, 0x8f, 0x87, 0x6b, 0x3e, 0x95, 0xe7, 0xf4, 0x2a, 0xd5,
+	0x48, 0x49, 0x89, 0x19, 0xd8, 0x1a, 0x01, 0x4c, 0x24, 0x4b, 0xc3, 0x76, 0x11, 0x0a, 0xc1, 0x4f,
+	0x38, 0xfc, 0x77, 0x40, 0x71, 0xc5, 0x06, 0x01, 0xb1, 0x9b, 0x15, 0xde, 0x84, 0xcc, 0x09, 0x1d,
+	0x18, 0x56, 0xf0, 0x30, 0x2b, 0x06, 0xe1, 0x43, 0x48, 0x3a, 0x7a, 0x08, 0x39, 0xf8, 0x19, 0x6c,
+	0x68, 0xf6, 0x68, 0xd6, 0xdd, 0x03, 0x34, 0x73, 0xcd, 0xf7, 0x3e, 0x4f, 0x7c, 0x09, 0x93, 0x16,
+	0xf3, 0x7f, 0x89, 0xc4, 0xef, 0x93, 0xa9, 0xc3, 0xce, 0xc1, 0x1f, 0x92, 0x5b, 0x87, 0x42, 0xb5,
+	0x13, 0xce, 0x54, 0xa1, 0x7d, 0x93, 0x6a, 0xcc, 0xfb, 0xff, 0x07, 0x00, 0x00, 0xff, 0xff, 0xa3,
+	0x58, 0x22, 0x30, 0xdf, 0x1c, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor_gostring.gen.go b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor_gostring.gen.go
new file mode 100644
index 0000000000..3b95a77575
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/descriptor_gostring.gen.go
@@ -0,0 +1,772 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: descriptor.proto
+
+/*
+Package descriptor is a generated protocol buffer package.
+
+It is generated from these files:
+	descriptor.proto
+
+It has these top-level messages:
+	FileDescriptorSet
+	FileDescriptorProto
+	DescriptorProto
+	ExtensionRangeOptions
+	FieldDescriptorProto
+	OneofDescriptorProto
+	EnumDescriptorProto
+	EnumValueDescriptorProto
+	ServiceDescriptorProto
+	MethodDescriptorProto
+	FileOptions
+	MessageOptions
+	FieldOptions
+	OneofOptions
+	EnumOptions
+	EnumValueOptions
+	ServiceOptions
+	MethodOptions
+	UninterpretedOption
+	SourceCodeInfo
+	GeneratedCodeInfo
+*/
+package descriptor
+
+import fmt "fmt"
+import strings "strings"
+import proto "github.com/gogo/protobuf/proto"
+import sort "sort"
+import strconv "strconv"
+import reflect "reflect"
+import math "math"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+func (this *FileDescriptorSet) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&descriptor.FileDescriptorSet{")
+	if this.File != nil {
+		s = append(s, "File: "+fmt.Sprintf("%#v", this.File)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *FileDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 16)
+	s = append(s, "&descriptor.FileDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Package != nil {
+		s = append(s, "Package: "+valueToGoStringDescriptor(this.Package, "string")+",\n")
+	}
+	if this.Dependency != nil {
+		s = append(s, "Dependency: "+fmt.Sprintf("%#v", this.Dependency)+",\n")
+	}
+	if this.PublicDependency != nil {
+		s = append(s, "PublicDependency: "+fmt.Sprintf("%#v", this.PublicDependency)+",\n")
+	}
+	if this.WeakDependency != nil {
+		s = append(s, "WeakDependency: "+fmt.Sprintf("%#v", this.WeakDependency)+",\n")
+	}
+	if this.MessageType != nil {
+		s = append(s, "MessageType: "+fmt.Sprintf("%#v", this.MessageType)+",\n")
+	}
+	if this.EnumType != nil {
+		s = append(s, "EnumType: "+fmt.Sprintf("%#v", this.EnumType)+",\n")
+	}
+	if this.Service != nil {
+		s = append(s, "Service: "+fmt.Sprintf("%#v", this.Service)+",\n")
+	}
+	if this.Extension != nil {
+		s = append(s, "Extension: "+fmt.Sprintf("%#v", this.Extension)+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.SourceCodeInfo != nil {
+		s = append(s, "SourceCodeInfo: "+fmt.Sprintf("%#v", this.SourceCodeInfo)+",\n")
+	}
+	if this.Syntax != nil {
+		s = append(s, "Syntax: "+valueToGoStringDescriptor(this.Syntax, "string")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *DescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 14)
+	s = append(s, "&descriptor.DescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Field != nil {
+		s = append(s, "Field: "+fmt.Sprintf("%#v", this.Field)+",\n")
+	}
+	if this.Extension != nil {
+		s = append(s, "Extension: "+fmt.Sprintf("%#v", this.Extension)+",\n")
+	}
+	if this.NestedType != nil {
+		s = append(s, "NestedType: "+fmt.Sprintf("%#v", this.NestedType)+",\n")
+	}
+	if this.EnumType != nil {
+		s = append(s, "EnumType: "+fmt.Sprintf("%#v", this.EnumType)+",\n")
+	}
+	if this.ExtensionRange != nil {
+		s = append(s, "ExtensionRange: "+fmt.Sprintf("%#v", this.ExtensionRange)+",\n")
+	}
+	if this.OneofDecl != nil {
+		s = append(s, "OneofDecl: "+fmt.Sprintf("%#v", this.OneofDecl)+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.ReservedRange != nil {
+		s = append(s, "ReservedRange: "+fmt.Sprintf("%#v", this.ReservedRange)+",\n")
+	}
+	if this.ReservedName != nil {
+		s = append(s, "ReservedName: "+fmt.Sprintf("%#v", this.ReservedName)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *DescriptorProto_ExtensionRange) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&descriptor.DescriptorProto_ExtensionRange{")
+	if this.Start != nil {
+		s = append(s, "Start: "+valueToGoStringDescriptor(this.Start, "int32")+",\n")
+	}
+	if this.End != nil {
+		s = append(s, "End: "+valueToGoStringDescriptor(this.End, "int32")+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *DescriptorProto_ReservedRange) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.DescriptorProto_ReservedRange{")
+	if this.Start != nil {
+		s = append(s, "Start: "+valueToGoStringDescriptor(this.Start, "int32")+",\n")
+	}
+	if this.End != nil {
+		s = append(s, "End: "+valueToGoStringDescriptor(this.End, "int32")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *ExtensionRangeOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&descriptor.ExtensionRangeOptions{")
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *FieldDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 14)
+	s = append(s, "&descriptor.FieldDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Number != nil {
+		s = append(s, "Number: "+valueToGoStringDescriptor(this.Number, "int32")+",\n")
+	}
+	if this.Label != nil {
+		s = append(s, "Label: "+valueToGoStringDescriptor(this.Label, "FieldDescriptorProto_Label")+",\n")
+	}
+	if this.Type != nil {
+		s = append(s, "Type: "+valueToGoStringDescriptor(this.Type, "FieldDescriptorProto_Type")+",\n")
+	}
+	if this.TypeName != nil {
+		s = append(s, "TypeName: "+valueToGoStringDescriptor(this.TypeName, "string")+",\n")
+	}
+	if this.Extendee != nil {
+		s = append(s, "Extendee: "+valueToGoStringDescriptor(this.Extendee, "string")+",\n")
+	}
+	if this.DefaultValue != nil {
+		s = append(s, "DefaultValue: "+valueToGoStringDescriptor(this.DefaultValue, "string")+",\n")
+	}
+	if this.OneofIndex != nil {
+		s = append(s, "OneofIndex: "+valueToGoStringDescriptor(this.OneofIndex, "int32")+",\n")
+	}
+	if this.JsonName != nil {
+		s = append(s, "JsonName: "+valueToGoStringDescriptor(this.JsonName, "string")+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *OneofDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.OneofDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *EnumDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 9)
+	s = append(s, "&descriptor.EnumDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Value != nil {
+		s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.ReservedRange != nil {
+		s = append(s, "ReservedRange: "+fmt.Sprintf("%#v", this.ReservedRange)+",\n")
+	}
+	if this.ReservedName != nil {
+		s = append(s, "ReservedName: "+fmt.Sprintf("%#v", this.ReservedName)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *EnumDescriptorProto_EnumReservedRange) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.EnumDescriptorProto_EnumReservedRange{")
+	if this.Start != nil {
+		s = append(s, "Start: "+valueToGoStringDescriptor(this.Start, "int32")+",\n")
+	}
+	if this.End != nil {
+		s = append(s, "End: "+valueToGoStringDescriptor(this.End, "int32")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *EnumValueDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&descriptor.EnumValueDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Number != nil {
+		s = append(s, "Number: "+valueToGoStringDescriptor(this.Number, "int32")+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *ServiceDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&descriptor.ServiceDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.Method != nil {
+		s = append(s, "Method: "+fmt.Sprintf("%#v", this.Method)+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *MethodDescriptorProto) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 10)
+	s = append(s, "&descriptor.MethodDescriptorProto{")
+	if this.Name != nil {
+		s = append(s, "Name: "+valueToGoStringDescriptor(this.Name, "string")+",\n")
+	}
+	if this.InputType != nil {
+		s = append(s, "InputType: "+valueToGoStringDescriptor(this.InputType, "string")+",\n")
+	}
+	if this.OutputType != nil {
+		s = append(s, "OutputType: "+valueToGoStringDescriptor(this.OutputType, "string")+",\n")
+	}
+	if this.Options != nil {
+		s = append(s, "Options: "+fmt.Sprintf("%#v", this.Options)+",\n")
+	}
+	if this.ClientStreaming != nil {
+		s = append(s, "ClientStreaming: "+valueToGoStringDescriptor(this.ClientStreaming, "bool")+",\n")
+	}
+	if this.ServerStreaming != nil {
+		s = append(s, "ServerStreaming: "+valueToGoStringDescriptor(this.ServerStreaming, "bool")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *FileOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 23)
+	s = append(s, "&descriptor.FileOptions{")
+	if this.JavaPackage != nil {
+		s = append(s, "JavaPackage: "+valueToGoStringDescriptor(this.JavaPackage, "string")+",\n")
+	}
+	if this.JavaOuterClassname != nil {
+		s = append(s, "JavaOuterClassname: "+valueToGoStringDescriptor(this.JavaOuterClassname, "string")+",\n")
+	}
+	if this.JavaMultipleFiles != nil {
+		s = append(s, "JavaMultipleFiles: "+valueToGoStringDescriptor(this.JavaMultipleFiles, "bool")+",\n")
+	}
+	if this.JavaGenerateEqualsAndHash != nil {
+		s = append(s, "JavaGenerateEqualsAndHash: "+valueToGoStringDescriptor(this.JavaGenerateEqualsAndHash, "bool")+",\n")
+	}
+	if this.JavaStringCheckUtf8 != nil {
+		s = append(s, "JavaStringCheckUtf8: "+valueToGoStringDescriptor(this.JavaStringCheckUtf8, "bool")+",\n")
+	}
+	if this.OptimizeFor != nil {
+		s = append(s, "OptimizeFor: "+valueToGoStringDescriptor(this.OptimizeFor, "FileOptions_OptimizeMode")+",\n")
+	}
+	if this.GoPackage != nil {
+		s = append(s, "GoPackage: "+valueToGoStringDescriptor(this.GoPackage, "string")+",\n")
+	}
+	if this.CcGenericServices != nil {
+		s = append(s, "CcGenericServices: "+valueToGoStringDescriptor(this.CcGenericServices, "bool")+",\n")
+	}
+	if this.JavaGenericServices != nil {
+		s = append(s, "JavaGenericServices: "+valueToGoStringDescriptor(this.JavaGenericServices, "bool")+",\n")
+	}
+	if this.PyGenericServices != nil {
+		s = append(s, "PyGenericServices: "+valueToGoStringDescriptor(this.PyGenericServices, "bool")+",\n")
+	}
+	if this.PhpGenericServices != nil {
+		s = append(s, "PhpGenericServices: "+valueToGoStringDescriptor(this.PhpGenericServices, "bool")+",\n")
+	}
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.CcEnableArenas != nil {
+		s = append(s, "CcEnableArenas: "+valueToGoStringDescriptor(this.CcEnableArenas, "bool")+",\n")
+	}
+	if this.ObjcClassPrefix != nil {
+		s = append(s, "ObjcClassPrefix: "+valueToGoStringDescriptor(this.ObjcClassPrefix, "string")+",\n")
+	}
+	if this.CsharpNamespace != nil {
+		s = append(s, "CsharpNamespace: "+valueToGoStringDescriptor(this.CsharpNamespace, "string")+",\n")
+	}
+	if this.SwiftPrefix != nil {
+		s = append(s, "SwiftPrefix: "+valueToGoStringDescriptor(this.SwiftPrefix, "string")+",\n")
+	}
+	if this.PhpClassPrefix != nil {
+		s = append(s, "PhpClassPrefix: "+valueToGoStringDescriptor(this.PhpClassPrefix, "string")+",\n")
+	}
+	if this.PhpNamespace != nil {
+		s = append(s, "PhpNamespace: "+valueToGoStringDescriptor(this.PhpNamespace, "string")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *MessageOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 9)
+	s = append(s, "&descriptor.MessageOptions{")
+	if this.MessageSetWireFormat != nil {
+		s = append(s, "MessageSetWireFormat: "+valueToGoStringDescriptor(this.MessageSetWireFormat, "bool")+",\n")
+	}
+	if this.NoStandardDescriptorAccessor != nil {
+		s = append(s, "NoStandardDescriptorAccessor: "+valueToGoStringDescriptor(this.NoStandardDescriptorAccessor, "bool")+",\n")
+	}
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.MapEntry != nil {
+		s = append(s, "MapEntry: "+valueToGoStringDescriptor(this.MapEntry, "bool")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *FieldOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 11)
+	s = append(s, "&descriptor.FieldOptions{")
+	if this.Ctype != nil {
+		s = append(s, "Ctype: "+valueToGoStringDescriptor(this.Ctype, "FieldOptions_CType")+",\n")
+	}
+	if this.Packed != nil {
+		s = append(s, "Packed: "+valueToGoStringDescriptor(this.Packed, "bool")+",\n")
+	}
+	if this.Jstype != nil {
+		s = append(s, "Jstype: "+valueToGoStringDescriptor(this.Jstype, "FieldOptions_JSType")+",\n")
+	}
+	if this.Lazy != nil {
+		s = append(s, "Lazy: "+valueToGoStringDescriptor(this.Lazy, "bool")+",\n")
+	}
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.Weak != nil {
+		s = append(s, "Weak: "+valueToGoStringDescriptor(this.Weak, "bool")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *OneofOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&descriptor.OneofOptions{")
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *EnumOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&descriptor.EnumOptions{")
+	if this.AllowAlias != nil {
+		s = append(s, "AllowAlias: "+valueToGoStringDescriptor(this.AllowAlias, "bool")+",\n")
+	}
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *EnumValueOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.EnumValueOptions{")
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *ServiceOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.ServiceOptions{")
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *MethodOptions) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 7)
+	s = append(s, "&descriptor.MethodOptions{")
+	if this.Deprecated != nil {
+		s = append(s, "Deprecated: "+valueToGoStringDescriptor(this.Deprecated, "bool")+",\n")
+	}
+	if this.IdempotencyLevel != nil {
+		s = append(s, "IdempotencyLevel: "+valueToGoStringDescriptor(this.IdempotencyLevel, "MethodOptions_IdempotencyLevel")+",\n")
+	}
+	if this.UninterpretedOption != nil {
+		s = append(s, "UninterpretedOption: "+fmt.Sprintf("%#v", this.UninterpretedOption)+",\n")
+	}
+	s = append(s, "XXX_InternalExtensions: "+extensionToGoStringDescriptor(this)+",\n")
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *UninterpretedOption) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 11)
+	s = append(s, "&descriptor.UninterpretedOption{")
+	if this.Name != nil {
+		s = append(s, "Name: "+fmt.Sprintf("%#v", this.Name)+",\n")
+	}
+	if this.IdentifierValue != nil {
+		s = append(s, "IdentifierValue: "+valueToGoStringDescriptor(this.IdentifierValue, "string")+",\n")
+	}
+	if this.PositiveIntValue != nil {
+		s = append(s, "PositiveIntValue: "+valueToGoStringDescriptor(this.PositiveIntValue, "uint64")+",\n")
+	}
+	if this.NegativeIntValue != nil {
+		s = append(s, "NegativeIntValue: "+valueToGoStringDescriptor(this.NegativeIntValue, "int64")+",\n")
+	}
+	if this.DoubleValue != nil {
+		s = append(s, "DoubleValue: "+valueToGoStringDescriptor(this.DoubleValue, "float64")+",\n")
+	}
+	if this.StringValue != nil {
+		s = append(s, "StringValue: "+valueToGoStringDescriptor(this.StringValue, "byte")+",\n")
+	}
+	if this.AggregateValue != nil {
+		s = append(s, "AggregateValue: "+valueToGoStringDescriptor(this.AggregateValue, "string")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *UninterpretedOption_NamePart) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&descriptor.UninterpretedOption_NamePart{")
+	if this.NamePart != nil {
+		s = append(s, "NamePart: "+valueToGoStringDescriptor(this.NamePart, "string")+",\n")
+	}
+	if this.IsExtension != nil {
+		s = append(s, "IsExtension: "+valueToGoStringDescriptor(this.IsExtension, "bool")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *SourceCodeInfo) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&descriptor.SourceCodeInfo{")
+	if this.Location != nil {
+		s = append(s, "Location: "+fmt.Sprintf("%#v", this.Location)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *SourceCodeInfo_Location) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 9)
+	s = append(s, "&descriptor.SourceCodeInfo_Location{")
+	if this.Path != nil {
+		s = append(s, "Path: "+fmt.Sprintf("%#v", this.Path)+",\n")
+	}
+	if this.Span != nil {
+		s = append(s, "Span: "+fmt.Sprintf("%#v", this.Span)+",\n")
+	}
+	if this.LeadingComments != nil {
+		s = append(s, "LeadingComments: "+valueToGoStringDescriptor(this.LeadingComments, "string")+",\n")
+	}
+	if this.TrailingComments != nil {
+		s = append(s, "TrailingComments: "+valueToGoStringDescriptor(this.TrailingComments, "string")+",\n")
+	}
+	if this.LeadingDetachedComments != nil {
+		s = append(s, "LeadingDetachedComments: "+fmt.Sprintf("%#v", this.LeadingDetachedComments)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *GeneratedCodeInfo) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&descriptor.GeneratedCodeInfo{")
+	if this.Annotation != nil {
+		s = append(s, "Annotation: "+fmt.Sprintf("%#v", this.Annotation)+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *GeneratedCodeInfo_Annotation) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 8)
+	s = append(s, "&descriptor.GeneratedCodeInfo_Annotation{")
+	if this.Path != nil {
+		s = append(s, "Path: "+fmt.Sprintf("%#v", this.Path)+",\n")
+	}
+	if this.SourceFile != nil {
+		s = append(s, "SourceFile: "+valueToGoStringDescriptor(this.SourceFile, "string")+",\n")
+	}
+	if this.Begin != nil {
+		s = append(s, "Begin: "+valueToGoStringDescriptor(this.Begin, "int32")+",\n")
+	}
+	if this.End != nil {
+		s = append(s, "End: "+valueToGoStringDescriptor(this.End, "int32")+",\n")
+	}
+	if this.XXX_unrecognized != nil {
+		s = append(s, "XXX_unrecognized:"+fmt.Sprintf("%#v", this.XXX_unrecognized)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringDescriptor(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func extensionToGoStringDescriptor(m proto.Message) string {
+	e := proto.GetUnsafeExtensionsMap(m)
+	if e == nil {
+		return "nil"
+	}
+	s := "proto.NewUnsafeXXX_InternalExtensions(map[int32]proto.Extension{"
+	keys := make([]int, 0, len(e))
+	for k := range e {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+	ss := []string{}
+	for _, k := range keys {
+		ss = append(ss, strconv.Itoa(k)+": "+e[int32(k)].GoString())
+	}
+	s += strings.Join(ss, ",") + "})"
+	return s
+}
diff --git a/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/helper.go b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/helper.go
new file mode 100644
index 0000000000..e0846a357d
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/protoc-gen-gogo/descriptor/helper.go
@@ -0,0 +1,390 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package descriptor
+
+import (
+	"strings"
+)
+
+func (msg *DescriptorProto) GetMapFields() (*FieldDescriptorProto, *FieldDescriptorProto) {
+	if !msg.GetOptions().GetMapEntry() {
+		return nil, nil
+	}
+	return msg.GetField()[0], msg.GetField()[1]
+}
+
+func dotToUnderscore(r rune) rune {
+	if r == '.' {
+		return '_'
+	}
+	return r
+}
+
+func (field *FieldDescriptorProto) WireType() (wire int) {
+	switch *field.Type {
+	case FieldDescriptorProto_TYPE_DOUBLE:
+		return 1
+	case FieldDescriptorProto_TYPE_FLOAT:
+		return 5
+	case FieldDescriptorProto_TYPE_INT64:
+		return 0
+	case FieldDescriptorProto_TYPE_UINT64:
+		return 0
+	case FieldDescriptorProto_TYPE_INT32:
+		return 0
+	case FieldDescriptorProto_TYPE_UINT32:
+		return 0
+	case FieldDescriptorProto_TYPE_FIXED64:
+		return 1
+	case FieldDescriptorProto_TYPE_FIXED32:
+		return 5
+	case FieldDescriptorProto_TYPE_BOOL:
+		return 0
+	case FieldDescriptorProto_TYPE_STRING:
+		return 2
+	case FieldDescriptorProto_TYPE_GROUP:
+		return 2
+	case FieldDescriptorProto_TYPE_MESSAGE:
+		return 2
+	case FieldDescriptorProto_TYPE_BYTES:
+		return 2
+	case FieldDescriptorProto_TYPE_ENUM:
+		return 0
+	case FieldDescriptorProto_TYPE_SFIXED32:
+		return 5
+	case FieldDescriptorProto_TYPE_SFIXED64:
+		return 1
+	case FieldDescriptorProto_TYPE_SINT32:
+		return 0
+	case FieldDescriptorProto_TYPE_SINT64:
+		return 0
+	}
+	panic("unreachable")
+}
+
+func (field *FieldDescriptorProto) GetKeyUint64() (x uint64) {
+	packed := field.IsPacked()
+	wireType := field.WireType()
+	fieldNumber := field.GetNumber()
+	if packed {
+		wireType = 2
+	}
+	x = uint64(uint32(fieldNumber)<<3 | uint32(wireType))
+	return x
+}
+
+func (field *FieldDescriptorProto) GetKey3Uint64() (x uint64) {
+	packed := field.IsPacked3()
+	wireType := field.WireType()
+	fieldNumber := field.GetNumber()
+	if packed {
+		wireType = 2
+	}
+	x = uint64(uint32(fieldNumber)<<3 | uint32(wireType))
+	return x
+}
+
+func (field *FieldDescriptorProto) GetKey() []byte {
+	x := field.GetKeyUint64()
+	i := 0
+	keybuf := make([]byte, 0)
+	for i = 0; x > 127; i++ {
+		keybuf = append(keybuf, 0x80|uint8(x&0x7F))
+		x >>= 7
+	}
+	keybuf = append(keybuf, uint8(x))
+	return keybuf
+}
+
+func (field *FieldDescriptorProto) GetKey3() []byte {
+	x := field.GetKey3Uint64()
+	i := 0
+	keybuf := make([]byte, 0)
+	for i = 0; x > 127; i++ {
+		keybuf = append(keybuf, 0x80|uint8(x&0x7F))
+		x >>= 7
+	}
+	keybuf = append(keybuf, uint8(x))
+	return keybuf
+}
+
+func (desc *FileDescriptorSet) GetField(packageName, messageName, fieldName string) *FieldDescriptorProto {
+	msg := desc.GetMessage(packageName, messageName)
+	if msg == nil {
+		return nil
+	}
+	for _, field := range msg.GetField() {
+		if field.GetName() == fieldName {
+			return field
+		}
+	}
+	return nil
+}
+
+func (file *FileDescriptorProto) GetMessage(typeName string) *DescriptorProto {
+	for _, msg := range file.GetMessageType() {
+		if msg.GetName() == typeName {
+			return msg
+		}
+		nes := file.GetNestedMessage(msg, strings.TrimPrefix(typeName, msg.GetName()+"."))
+		if nes != nil {
+			return nes
+		}
+	}
+	return nil
+}
+
+func (file *FileDescriptorProto) GetNestedMessage(msg *DescriptorProto, typeName string) *DescriptorProto {
+	for _, nes := range msg.GetNestedType() {
+		if nes.GetName() == typeName {
+			return nes
+		}
+		res := file.GetNestedMessage(nes, strings.TrimPrefix(typeName, nes.GetName()+"."))
+		if res != nil {
+			return res
+		}
+	}
+	return nil
+}
+
+func (desc *FileDescriptorSet) GetMessage(packageName string, typeName string) *DescriptorProto {
+	for _, file := range desc.GetFile() {
+		if strings.Map(dotToUnderscore, file.GetPackage()) != strings.Map(dotToUnderscore, packageName) {
+			continue
+		}
+		for _, msg := range file.GetMessageType() {
+			if msg.GetName() == typeName {
+				return msg
+			}
+		}
+		for _, msg := range file.GetMessageType() {
+			for _, nes := range msg.GetNestedType() {
+				if nes.GetName() == typeName {
+					return nes
+				}
+				if msg.GetName()+"."+nes.GetName() == typeName {
+					return nes
+				}
+			}
+		}
+	}
+	return nil
+}
+
+func (desc *FileDescriptorSet) IsProto3(packageName string, typeName string) bool {
+	for _, file := range desc.GetFile() {
+		if strings.Map(dotToUnderscore, file.GetPackage()) != strings.Map(dotToUnderscore, packageName) {
+			continue
+		}
+		for _, msg := range file.GetMessageType() {
+			if msg.GetName() == typeName {
+				return file.GetSyntax() == "proto3"
+			}
+		}
+		for _, msg := range file.GetMessageType() {
+			for _, nes := range msg.GetNestedType() {
+				if nes.GetName() == typeName {
+					return file.GetSyntax() == "proto3"
+				}
+				if msg.GetName()+"."+nes.GetName() == typeName {
+					return file.GetSyntax() == "proto3"
+				}
+			}
+		}
+	}
+	return false
+}
+
+func (msg *DescriptorProto) IsExtendable() bool {
+	return len(msg.GetExtensionRange()) > 0
+}
+
+func (desc *FileDescriptorSet) FindExtension(packageName string, typeName string, fieldName string) (extPackageName string, field *FieldDescriptorProto) {
+	parent := desc.GetMessage(packageName, typeName)
+	if parent == nil {
+		return "", nil
+	}
+	if !parent.IsExtendable() {
+		return "", nil
+	}
+	extendee := "." + packageName + "." + typeName
+	for _, file := range desc.GetFile() {
+		for _, ext := range file.GetExtension() {
+			if strings.Map(dotToUnderscore, file.GetPackage()) == strings.Map(dotToUnderscore, packageName) {
+				if !(ext.GetExtendee() == typeName || ext.GetExtendee() == extendee) {
+					continue
+				}
+			} else {
+				if ext.GetExtendee() != extendee {
+					continue
+				}
+			}
+			if ext.GetName() == fieldName {
+				return file.GetPackage(), ext
+			}
+		}
+	}
+	return "", nil
+}
+
+func (desc *FileDescriptorSet) FindExtensionByFieldNumber(packageName string, typeName string, fieldNum int32) (extPackageName string, field *FieldDescriptorProto) {
+	parent := desc.GetMessage(packageName, typeName)
+	if parent == nil {
+		return "", nil
+	}
+	if !parent.IsExtendable() {
+		return "", nil
+	}
+	extendee := "." + packageName + "." + typeName
+	for _, file := range desc.GetFile() {
+		for _, ext := range file.GetExtension() {
+			if strings.Map(dotToUnderscore, file.GetPackage()) == strings.Map(dotToUnderscore, packageName) {
+				if !(ext.GetExtendee() == typeName || ext.GetExtendee() == extendee) {
+					continue
+				}
+			} else {
+				if ext.GetExtendee() != extendee {
+					continue
+				}
+			}
+			if ext.GetNumber() == fieldNum {
+				return file.GetPackage(), ext
+			}
+		}
+	}
+	return "", nil
+}
+
+func (desc *FileDescriptorSet) FindMessage(packageName string, typeName string, fieldName string) (msgPackageName string, msgName string) {
+	parent := desc.GetMessage(packageName, typeName)
+	if parent == nil {
+		return "", ""
+	}
+	field := parent.GetFieldDescriptor(fieldName)
+	if field == nil {
+		var extPackageName string
+		extPackageName, field = desc.FindExtension(packageName, typeName, fieldName)
+		if field == nil {
+			return "", ""
+		}
+		packageName = extPackageName
+	}
+	typeNames := strings.Split(field.GetTypeName(), ".")
+	if len(typeNames) == 1 {
+		msg := desc.GetMessage(packageName, typeName)
+		if msg == nil {
+			return "", ""
+		}
+		return packageName, msg.GetName()
+	}
+	if len(typeNames) > 2 {
+		for i := 1; i < len(typeNames)-1; i++ {
+			packageName = strings.Join(typeNames[1:len(typeNames)-i], ".")
+			typeName = strings.Join(typeNames[len(typeNames)-i:], ".")
+			msg := desc.GetMessage(packageName, typeName)
+			if msg != nil {
+				typeNames := strings.Split(msg.GetName(), ".")
+				if len(typeNames) == 1 {
+					return packageName, msg.GetName()
+				}
+				return strings.Join(typeNames[1:len(typeNames)-1], "."), typeNames[len(typeNames)-1]
+			}
+		}
+	}
+	return "", ""
+}
+
+func (msg *DescriptorProto) GetFieldDescriptor(fieldName string) *FieldDescriptorProto {
+	for _, field := range msg.GetField() {
+		if field.GetName() == fieldName {
+			return field
+		}
+	}
+	return nil
+}
+
+func (desc *FileDescriptorSet) GetEnum(packageName string, typeName string) *EnumDescriptorProto {
+	for _, file := range desc.GetFile() {
+		if strings.Map(dotToUnderscore, file.GetPackage()) != strings.Map(dotToUnderscore, packageName) {
+			continue
+		}
+		for _, enum := range file.GetEnumType() {
+			if enum.GetName() == typeName {
+				return enum
+			}
+		}
+	}
+	return nil
+}
+
+func (f *FieldDescriptorProto) IsEnum() bool {
+	return *f.Type == FieldDescriptorProto_TYPE_ENUM
+}
+
+func (f *FieldDescriptorProto) IsMessage() bool {
+	return *f.Type == FieldDescriptorProto_TYPE_MESSAGE
+}
+
+func (f *FieldDescriptorProto) IsBytes() bool {
+	return *f.Type == FieldDescriptorProto_TYPE_BYTES
+}
+
+func (f *FieldDescriptorProto) IsRepeated() bool {
+	return f.Label != nil && *f.Label == FieldDescriptorProto_LABEL_REPEATED
+}
+
+func (f *FieldDescriptorProto) IsString() bool {
+	return *f.Type == FieldDescriptorProto_TYPE_STRING
+}
+
+func (f *FieldDescriptorProto) IsBool() bool {
+	return *f.Type == FieldDescriptorProto_TYPE_BOOL
+}
+
+func (f *FieldDescriptorProto) IsRequired() bool {
+	return f.Label != nil && *f.Label == FieldDescriptorProto_LABEL_REQUIRED
+}
+
+func (f *FieldDescriptorProto) IsPacked() bool {
+	return f.Options != nil && f.GetOptions().GetPacked()
+}
+
+func (f *FieldDescriptorProto) IsPacked3() bool {
+	if f.IsRepeated() && f.IsScalar() {
+		if f.Options == nil || f.GetOptions().Packed == nil {
+			return true
+		}
+		return f.Options != nil && f.GetOptions().GetPacked()
+	}
+	return false
+}
+
+func (m *DescriptorProto) HasExtension() bool {
+	return len(m.ExtensionRange) > 0
+}
diff --git a/vendor/github.com/gogo/protobuf/sortkeys/sortkeys.go b/vendor/github.com/gogo/protobuf/sortkeys/sortkeys.go
new file mode 100644
index 0000000000..ceadde6a5e
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/sortkeys/sortkeys.go
@@ -0,0 +1,101 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2013, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package sortkeys
+
+import (
+	"sort"
+)
+
+func Strings(l []string) {
+	sort.Strings(l)
+}
+
+func Float64s(l []float64) {
+	sort.Float64s(l)
+}
+
+func Float32s(l []float32) {
+	sort.Sort(Float32Slice(l))
+}
+
+func Int64s(l []int64) {
+	sort.Sort(Int64Slice(l))
+}
+
+func Int32s(l []int32) {
+	sort.Sort(Int32Slice(l))
+}
+
+func Uint64s(l []uint64) {
+	sort.Sort(Uint64Slice(l))
+}
+
+func Uint32s(l []uint32) {
+	sort.Sort(Uint32Slice(l))
+}
+
+func Bools(l []bool) {
+	sort.Sort(BoolSlice(l))
+}
+
+type BoolSlice []bool
+
+func (p BoolSlice) Len() int           { return len(p) }
+func (p BoolSlice) Less(i, j int) bool { return p[j] }
+func (p BoolSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+type Int64Slice []int64
+
+func (p Int64Slice) Len() int           { return len(p) }
+func (p Int64Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Int64Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+type Int32Slice []int32
+
+func (p Int32Slice) Len() int           { return len(p) }
+func (p Int32Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Int32Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+type Uint64Slice []uint64
+
+func (p Uint64Slice) Len() int           { return len(p) }
+func (p Uint64Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Uint64Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+type Uint32Slice []uint32
+
+func (p Uint32Slice) Len() int           { return len(p) }
+func (p Uint32Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Uint32Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+type Float32Slice []float32
+
+func (p Float32Slice) Len() int           { return len(p) }
+func (p Float32Slice) Less(i, j int) bool { return p[i] < p[j] }
+func (p Float32Slice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
diff --git a/vendor/github.com/gogo/protobuf/types/any.go b/vendor/github.com/gogo/protobuf/types/any.go
new file mode 100644
index 0000000000..d83c3ad007
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/any.go
@@ -0,0 +1,138 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package types
+
+// This file implements functions to marshal proto.Message to/from
+// google.protobuf.Any message.
+
+import (
+	"fmt"
+	"reflect"
+	"strings"
+
+	"github.com/gogo/protobuf/proto"
+)
+
+const googleApis = "type.googleapis.com/"
+
+// AnyMessageName returns the name of the message contained in a google.protobuf.Any message.
+//
+// Note that regular type assertions should be done using the Is
+// function. AnyMessageName is provided for less common use cases like filtering a
+// sequence of Any messages based on a set of allowed message type names.
+func AnyMessageName(any *Any) (string, error) {
+	if any == nil {
+		return "", fmt.Errorf("message is nil")
+	}
+	slash := strings.LastIndex(any.TypeUrl, "/")
+	if slash < 0 {
+		return "", fmt.Errorf("message type url %q is invalid", any.TypeUrl)
+	}
+	return any.TypeUrl[slash+1:], nil
+}
+
+// MarshalAny takes the protocol buffer and encodes it into google.protobuf.Any.
+func MarshalAny(pb proto.Message) (*Any, error) {
+	value, err := proto.Marshal(pb)
+	if err != nil {
+		return nil, err
+	}
+	return &Any{TypeUrl: googleApis + proto.MessageName(pb), Value: value}, nil
+}
+
+// DynamicAny is a value that can be passed to UnmarshalAny to automatically
+// allocate a proto.Message for the type specified in a google.protobuf.Any
+// message. The allocated message is stored in the embedded proto.Message.
+//
+// Example:
+//
+//   var x ptypes.DynamicAny
+//   if err := ptypes.UnmarshalAny(a, &x); err != nil { ... }
+//   fmt.Printf("unmarshaled message: %v", x.Message)
+type DynamicAny struct {
+	proto.Message
+}
+
+// Empty returns a new proto.Message of the type specified in a
+// google.protobuf.Any message. It returns an error if corresponding message
+// type isn't linked in.
+func EmptyAny(any *Any) (proto.Message, error) {
+	aname, err := AnyMessageName(any)
+	if err != nil {
+		return nil, err
+	}
+
+	t := proto.MessageType(aname)
+	if t == nil {
+		return nil, fmt.Errorf("any: message type %q isn't linked in", aname)
+	}
+	return reflect.New(t.Elem()).Interface().(proto.Message), nil
+}
+
+// UnmarshalAny parses the protocol buffer representation in a google.protobuf.Any
+// message and places the decoded result in pb. It returns an error if type of
+// contents of Any message does not match type of pb message.
+//
+// pb can be a proto.Message, or a *DynamicAny.
+func UnmarshalAny(any *Any, pb proto.Message) error {
+	if d, ok := pb.(*DynamicAny); ok {
+		if d.Message == nil {
+			var err error
+			d.Message, err = EmptyAny(any)
+			if err != nil {
+				return err
+			}
+		}
+		return UnmarshalAny(any, d.Message)
+	}
+
+	aname, err := AnyMessageName(any)
+	if err != nil {
+		return err
+	}
+
+	mname := proto.MessageName(pb)
+	if aname != mname {
+		return fmt.Errorf("mismatched message type: got %q want %q", aname, mname)
+	}
+	return proto.Unmarshal(any.Value, pb)
+}
+
+// Is returns true if any value contains a given message type.
+func Is(any *Any, pb proto.Message) bool {
+	aname, err := AnyMessageName(any)
+	if err != nil {
+		return false
+	}
+
+	return aname == proto.MessageName(pb)
+}
diff --git a/vendor/github.com/gogo/protobuf/types/any.pb.go b/vendor/github.com/gogo/protobuf/types/any.pb.go
new file mode 100644
index 0000000000..4b5f5705a9
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/any.pb.go
@@ -0,0 +1,651 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: any.proto
+
+/*
+	Package types is a generated protocol buffer package.
+
+	It is generated from these files:
+		any.proto
+
+	It has these top-level messages:
+		Any
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import bytes "bytes"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// `Any` contains an arbitrary serialized protocol buffer message along with a
+// URL that describes the type of the serialized message.
+//
+// Protobuf library provides support to pack/unpack Any values in the form
+// of utility functions or additional generated methods of the Any type.
+//
+// Example 1: Pack and unpack a message in C++.
+//
+//     Foo foo = ...;
+//     Any any;
+//     any.PackFrom(foo);
+//     ...
+//     if (any.UnpackTo(&foo)) {
+//       ...
+//     }
+//
+// Example 2: Pack and unpack a message in Java.
+//
+//     Foo foo = ...;
+//     Any any = Any.pack(foo);
+//     ...
+//     if (any.is(Foo.class)) {
+//       foo = any.unpack(Foo.class);
+//     }
+//
+//  Example 3: Pack and unpack a message in Python.
+//
+//     foo = Foo(...)
+//     any = Any()
+//     any.Pack(foo)
+//     ...
+//     if any.Is(Foo.DESCRIPTOR):
+//       any.Unpack(foo)
+//       ...
+//
+//  Example 4: Pack and unpack a message in Go
+//
+//      foo := &pb.Foo{...}
+//      any, err := ptypes.MarshalAny(foo)
+//      ...
+//      foo := &pb.Foo{}
+//      if err := ptypes.UnmarshalAny(any, foo); err != nil {
+//        ...
+//      }
+//
+// The pack methods provided by protobuf library will by default use
+// 'type.googleapis.com/full.type.name' as the type URL and the unpack
+// methods only use the fully qualified type name after the last '/'
+// in the type URL, for example "foo.bar.com/x/y.z" will yield type
+// name "y.z".
+//
+//
+// JSON
+// ====
+// The JSON representation of an `Any` value uses the regular
+// representation of the deserialized, embedded message, with an
+// additional field `@type` which contains the type URL. Example:
+//
+//     package google.profile;
+//     message Person {
+//       string first_name = 1;
+//       string last_name = 2;
+//     }
+//
+//     {
+//       "@type": "type.googleapis.com/google.profile.Person",
+//       "firstName": <string>,
+//       "lastName": <string>
+//     }
+//
+// If the embedded message type is well-known and has a custom JSON
+// representation, that representation will be embedded adding a field
+// `value` which holds the custom JSON in addition to the `@type`
+// field. Example (for message [google.protobuf.Duration][]):
+//
+//     {
+//       "@type": "type.googleapis.com/google.protobuf.Duration",
+//       "value": "1.212s"
+//     }
+//
+type Any struct {
+	// A URL/resource name whose content describes the type of the
+	// serialized protocol buffer message.
+	//
+	// For URLs which use the scheme `http`, `https`, or no scheme, the
+	// following restrictions and interpretations apply:
+	//
+	// * If no scheme is provided, `https` is assumed.
+	// * The last segment of the URL's path must represent the fully
+	//   qualified name of the type (as in `path/google.protobuf.Duration`).
+	//   The name should be in a canonical form (e.g., leading "." is
+	//   not accepted).
+	// * An HTTP GET on the URL must yield a [google.protobuf.Type][]
+	//   value in binary format, or produce an error.
+	// * Applications are allowed to cache lookup results based on the
+	//   URL, or have them precompiled into a binary to avoid any
+	//   lookup. Therefore, binary compatibility needs to be preserved
+	//   on changes to types. (Use versioned type names to manage
+	//   breaking changes.)
+	//
+	// Schemes other than `http`, `https` (or the empty scheme) might be
+	// used with implementation specific semantics.
+	//
+	TypeUrl string `protobuf:"bytes,1,opt,name=type_url,json=typeUrl,proto3" json:"type_url,omitempty"`
+	// Must be a valid serialized protocol buffer of the above specified type.
+	Value []byte `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *Any) Reset()                    { *m = Any{} }
+func (*Any) ProtoMessage()               {}
+func (*Any) Descriptor() ([]byte, []int) { return fileDescriptorAny, []int{0} }
+func (*Any) XXX_WellKnownType() string   { return "Any" }
+
+func (m *Any) GetTypeUrl() string {
+	if m != nil {
+		return m.TypeUrl
+	}
+	return ""
+}
+
+func (m *Any) GetValue() []byte {
+	if m != nil {
+		return m.Value
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*Any)(nil), "google.protobuf.Any")
+}
+func (this *Any) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Any)
+	if !ok {
+		that2, ok := that.(Any)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.TypeUrl != that1.TypeUrl {
+		if this.TypeUrl < that1.TypeUrl {
+			return -1
+		}
+		return 1
+	}
+	if c := bytes.Compare(this.Value, that1.Value); c != 0 {
+		return c
+	}
+	return 0
+}
+func (this *Any) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Any)
+	if !ok {
+		that2, ok := that.(Any)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.TypeUrl != that1.TypeUrl {
+		return false
+	}
+	if !bytes.Equal(this.Value, that1.Value) {
+		return false
+	}
+	return true
+}
+func (this *Any) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&types.Any{")
+	s = append(s, "TypeUrl: "+fmt.Sprintf("%#v", this.TypeUrl)+",\n")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringAny(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Any) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Any) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.TypeUrl) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintAny(dAtA, i, uint64(len(m.TypeUrl)))
+		i += copy(dAtA[i:], m.TypeUrl)
+	}
+	if len(m.Value) > 0 {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintAny(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func encodeVarintAny(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func NewPopulatedAny(r randyAny, easy bool) *Any {
+	this := &Any{}
+	this.TypeUrl = string(randStringAny(r))
+	v1 := r.Intn(100)
+	this.Value = make([]byte, v1)
+	for i := 0; i < v1; i++ {
+		this.Value[i] = byte(r.Intn(256))
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+type randyAny interface {
+	Float32() float32
+	Float64() float64
+	Int63() int64
+	Int31() int32
+	Uint32() uint32
+	Intn(n int) int
+}
+
+func randUTF8RuneAny(r randyAny) rune {
+	ru := r.Intn(62)
+	if ru < 10 {
+		return rune(ru + 48)
+	} else if ru < 36 {
+		return rune(ru + 55)
+	}
+	return rune(ru + 61)
+}
+func randStringAny(r randyAny) string {
+	v2 := r.Intn(100)
+	tmps := make([]rune, v2)
+	for i := 0; i < v2; i++ {
+		tmps[i] = randUTF8RuneAny(r)
+	}
+	return string(tmps)
+}
+func randUnrecognizedAny(r randyAny, maxFieldNumber int) (dAtA []byte) {
+	l := r.Intn(5)
+	for i := 0; i < l; i++ {
+		wire := r.Intn(4)
+		if wire == 3 {
+			wire = 5
+		}
+		fieldNumber := maxFieldNumber + r.Intn(100)
+		dAtA = randFieldAny(dAtA, r, fieldNumber, wire)
+	}
+	return dAtA
+}
+func randFieldAny(dAtA []byte, r randyAny, fieldNumber int, wire int) []byte {
+	key := uint32(fieldNumber)<<3 | uint32(wire)
+	switch wire {
+	case 0:
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(key))
+		v3 := r.Int63()
+		if r.Intn(2) == 0 {
+			v3 *= -1
+		}
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(v3))
+	case 1:
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	case 2:
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(key))
+		ll := r.Intn(100)
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(ll))
+		for j := 0; j < ll; j++ {
+			dAtA = append(dAtA, byte(r.Intn(256)))
+		}
+	default:
+		dAtA = encodeVarintPopulateAny(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	}
+	return dAtA
+}
+func encodeVarintPopulateAny(dAtA []byte, v uint64) []byte {
+	for v >= 1<<7 {
+		dAtA = append(dAtA, uint8(uint64(v)&0x7f|0x80))
+		v >>= 7
+	}
+	dAtA = append(dAtA, uint8(v))
+	return dAtA
+}
+func (m *Any) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.TypeUrl)
+	if l > 0 {
+		n += 1 + l + sovAny(uint64(l))
+	}
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovAny(uint64(l))
+	}
+	return n
+}
+
+func sovAny(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozAny(x uint64) (n int) {
+	return sovAny(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Any) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Any{`,
+		`TypeUrl:` + fmt.Sprintf("%v", this.TypeUrl) + `,`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringAny(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Any) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowAny
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Any: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Any: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field TypeUrl", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAny
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthAny
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.TypeUrl = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowAny
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthAny
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = append(m.Value[:0], dAtA[iNdEx:postIndex]...)
+			if m.Value == nil {
+				m.Value = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipAny(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthAny
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipAny(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowAny
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowAny
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowAny
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthAny
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowAny
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipAny(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthAny = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowAny   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("any.proto", fileDescriptorAny) }
+
+var fileDescriptorAny = []byte{
+	// 204 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x4c, 0xcc, 0xab, 0xd4,
+	0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf, 0xcf, 0x4f, 0xcf, 0x49, 0x85, 0xf0, 0x92,
+	0x4a, 0xd3, 0x94, 0xcc, 0xb8, 0x98, 0x1d, 0xf3, 0x2a, 0x85, 0x24, 0xb9, 0x38, 0x4a, 0x2a, 0x0b,
+	0x52, 0xe3, 0x4b, 0x8b, 0x72, 0x24, 0x18, 0x15, 0x18, 0x35, 0x38, 0x83, 0xd8, 0x41, 0xfc, 0xd0,
+	0xa2, 0x1c, 0x21, 0x11, 0x2e, 0xd6, 0xb2, 0xc4, 0x9c, 0xd2, 0x54, 0x09, 0x26, 0x05, 0x46, 0x0d,
+	0x9e, 0x20, 0x08, 0xc7, 0xa9, 0xfe, 0xc2, 0x43, 0x39, 0x86, 0x1b, 0x0f, 0xe5, 0x18, 0x3e, 0x3c,
+	0x94, 0x63, 0xfc, 0xf1, 0x50, 0x8e, 0xb1, 0xe1, 0x91, 0x1c, 0xe3, 0x8a, 0x47, 0x72, 0x8c, 0x27,
+	0x1e, 0xc9, 0x31, 0x5e, 0x78, 0x24, 0xc7, 0xf8, 0xe0, 0x91, 0x1c, 0xe3, 0x8b, 0x47, 0x72, 0x0c,
+	0x1f, 0x40, 0xe2, 0x8f, 0xe5, 0x18, 0xb9, 0x84, 0x93, 0xf3, 0x73, 0xf5, 0xd0, 0xac, 0x77, 0xe2,
+	0x70, 0xcc, 0xab, 0x0c, 0x00, 0x71, 0x02, 0x18, 0xa3, 0x58, 0x41, 0x36, 0x16, 0x2f, 0x62, 0x62,
+	0x76, 0x0f, 0x70, 0x5a, 0xc5, 0x24, 0xe7, 0x0e, 0x51, 0x1a, 0x00, 0x55, 0xaa, 0x17, 0x9e, 0x9a,
+	0x93, 0xe3, 0x9d, 0x97, 0x5f, 0x9e, 0x17, 0x02, 0x52, 0x96, 0xc4, 0x06, 0x36, 0xc3, 0x18, 0x10,
+	0x00, 0x00, 0xff, 0xff, 0xb7, 0x39, 0x2f, 0x89, 0xdd, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/doc.go b/vendor/github.com/gogo/protobuf/types/doc.go
new file mode 100644
index 0000000000..ff2810af1e
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/doc.go
@@ -0,0 +1,35 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+/*
+Package types contains code for interacting with well-known types.
+*/
+package types
diff --git a/vendor/github.com/gogo/protobuf/types/duration.go b/vendor/github.com/gogo/protobuf/types/duration.go
new file mode 100644
index 0000000000..475d61f1db
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/duration.go
@@ -0,0 +1,100 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package types
+
+// This file implements conversions between google.protobuf.Duration
+// and time.Duration.
+
+import (
+	"errors"
+	"fmt"
+	"time"
+)
+
+const (
+	// Range of a Duration in seconds, as specified in
+	// google/protobuf/duration.proto. This is about 10,000 years in seconds.
+	maxSeconds = int64(10000 * 365.25 * 24 * 60 * 60)
+	minSeconds = -maxSeconds
+)
+
+// validateDuration determines whether the Duration is valid according to the
+// definition in google/protobuf/duration.proto. A valid Duration
+// may still be too large to fit into a time.Duration (the range of Duration
+// is about 10,000 years, and the range of time.Duration is about 290).
+func validateDuration(d *Duration) error {
+	if d == nil {
+		return errors.New("duration: nil Duration")
+	}
+	if d.Seconds < minSeconds || d.Seconds > maxSeconds {
+		return fmt.Errorf("duration: %#v: seconds out of range", d)
+	}
+	if d.Nanos <= -1e9 || d.Nanos >= 1e9 {
+		return fmt.Errorf("duration: %#v: nanos out of range", d)
+	}
+	// Seconds and Nanos must have the same sign, unless d.Nanos is zero.
+	if (d.Seconds < 0 && d.Nanos > 0) || (d.Seconds > 0 && d.Nanos < 0) {
+		return fmt.Errorf("duration: %#v: seconds and nanos have different signs", d)
+	}
+	return nil
+}
+
+// DurationFromProto converts a Duration to a time.Duration. DurationFromProto
+// returns an error if the Duration is invalid or is too large to be
+// represented in a time.Duration.
+func DurationFromProto(p *Duration) (time.Duration, error) {
+	if err := validateDuration(p); err != nil {
+		return 0, err
+	}
+	d := time.Duration(p.Seconds) * time.Second
+	if int64(d/time.Second) != p.Seconds {
+		return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
+	}
+	if p.Nanos != 0 {
+		d += time.Duration(p.Nanos)
+		if (d < 0) != (p.Nanos < 0) {
+			return 0, fmt.Errorf("duration: %#v is out of range for time.Duration", p)
+		}
+	}
+	return d, nil
+}
+
+// DurationProto converts a time.Duration to a Duration.
+func DurationProto(d time.Duration) *Duration {
+	nanos := d.Nanoseconds()
+	secs := nanos / 1e9
+	nanos -= secs * 1e9
+	return &Duration{
+		Seconds: secs,
+		Nanos:   int32(nanos),
+	}
+}
diff --git a/vendor/github.com/gogo/protobuf/types/duration.pb.go b/vendor/github.com/gogo/protobuf/types/duration.pb.go
new file mode 100644
index 0000000000..ee9deacfd3
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/duration.pb.go
@@ -0,0 +1,488 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: duration.proto
+
+/*
+	Package types is a generated protocol buffer package.
+
+	It is generated from these files:
+		duration.proto
+
+	It has these top-level messages:
+		Duration
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// A Duration represents a signed, fixed-length span of time represented
+// as a count of seconds and fractions of seconds at nanosecond
+// resolution. It is independent of any calendar and concepts like "day"
+// or "month". It is related to Timestamp in that the difference between
+// two Timestamp values is a Duration and it can be added or subtracted
+// from a Timestamp. Range is approximately +-10,000 years.
+//
+// # Examples
+//
+// Example 1: Compute Duration from two Timestamps in pseudo code.
+//
+//     Timestamp start = ...;
+//     Timestamp end = ...;
+//     Duration duration = ...;
+//
+//     duration.seconds = end.seconds - start.seconds;
+//     duration.nanos = end.nanos - start.nanos;
+//
+//     if (duration.seconds < 0 && duration.nanos > 0) {
+//       duration.seconds += 1;
+//       duration.nanos -= 1000000000;
+//     } else if (durations.seconds > 0 && duration.nanos < 0) {
+//       duration.seconds -= 1;
+//       duration.nanos += 1000000000;
+//     }
+//
+// Example 2: Compute Timestamp from Timestamp + Duration in pseudo code.
+//
+//     Timestamp start = ...;
+//     Duration duration = ...;
+//     Timestamp end = ...;
+//
+//     end.seconds = start.seconds + duration.seconds;
+//     end.nanos = start.nanos + duration.nanos;
+//
+//     if (end.nanos < 0) {
+//       end.seconds -= 1;
+//       end.nanos += 1000000000;
+//     } else if (end.nanos >= 1000000000) {
+//       end.seconds += 1;
+//       end.nanos -= 1000000000;
+//     }
+//
+// Example 3: Compute Duration from datetime.timedelta in Python.
+//
+//     td = datetime.timedelta(days=3, minutes=10)
+//     duration = Duration()
+//     duration.FromTimedelta(td)
+//
+// # JSON Mapping
+//
+// In JSON format, the Duration type is encoded as a string rather than an
+// object, where the string ends in the suffix "s" (indicating seconds) and
+// is preceded by the number of seconds, with nanoseconds expressed as
+// fractional seconds. For example, 3 seconds with 0 nanoseconds should be
+// encoded in JSON format as "3s", while 3 seconds and 1 nanosecond should
+// be expressed in JSON format as "3.000000001s", and 3 seconds and 1
+// microsecond should be expressed in JSON format as "3.000001s".
+//
+//
+type Duration struct {
+	// Signed seconds of the span of time. Must be from -315,576,000,000
+	// to +315,576,000,000 inclusive. Note: these bounds are computed from:
+	// 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years
+	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
+	// Signed fractions of a second at nanosecond resolution of the span
+	// of time. Durations less than one second are represented with a 0
+	// `seconds` field and a positive or negative `nanos` field. For durations
+	// of one second or more, a non-zero value for the `nanos` field must be
+	// of the same sign as the `seconds` field. Must be from -999,999,999
+	// to +999,999,999 inclusive.
+	Nanos int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
+}
+
+func (m *Duration) Reset()                    { *m = Duration{} }
+func (*Duration) ProtoMessage()               {}
+func (*Duration) Descriptor() ([]byte, []int) { return fileDescriptorDuration, []int{0} }
+func (*Duration) XXX_WellKnownType() string   { return "Duration" }
+
+func (m *Duration) GetSeconds() int64 {
+	if m != nil {
+		return m.Seconds
+	}
+	return 0
+}
+
+func (m *Duration) GetNanos() int32 {
+	if m != nil {
+		return m.Nanos
+	}
+	return 0
+}
+
+func init() {
+	proto.RegisterType((*Duration)(nil), "google.protobuf.Duration")
+}
+func (this *Duration) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Duration)
+	if !ok {
+		that2, ok := that.(Duration)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Seconds != that1.Seconds {
+		if this.Seconds < that1.Seconds {
+			return -1
+		}
+		return 1
+	}
+	if this.Nanos != that1.Nanos {
+		if this.Nanos < that1.Nanos {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *Duration) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Duration)
+	if !ok {
+		that2, ok := that.(Duration)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Seconds != that1.Seconds {
+		return false
+	}
+	if this.Nanos != that1.Nanos {
+		return false
+	}
+	return true
+}
+func (this *Duration) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&types.Duration{")
+	s = append(s, "Seconds: "+fmt.Sprintf("%#v", this.Seconds)+",\n")
+	s = append(s, "Nanos: "+fmt.Sprintf("%#v", this.Nanos)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringDuration(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Duration) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Duration) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Seconds != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintDuration(dAtA, i, uint64(m.Seconds))
+	}
+	if m.Nanos != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintDuration(dAtA, i, uint64(m.Nanos))
+	}
+	return i, nil
+}
+
+func encodeVarintDuration(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *Duration) Size() (n int) {
+	var l int
+	_ = l
+	if m.Seconds != 0 {
+		n += 1 + sovDuration(uint64(m.Seconds))
+	}
+	if m.Nanos != 0 {
+		n += 1 + sovDuration(uint64(m.Nanos))
+	}
+	return n
+}
+
+func sovDuration(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozDuration(x uint64) (n int) {
+	return sovDuration(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (m *Duration) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowDuration
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Duration: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Duration: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Seconds", wireType)
+			}
+			m.Seconds = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDuration
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Seconds |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nanos", wireType)
+			}
+			m.Nanos = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowDuration
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Nanos |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipDuration(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthDuration
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipDuration(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowDuration
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowDuration
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowDuration
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthDuration
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowDuration
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipDuration(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthDuration = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowDuration   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("duration.proto", fileDescriptorDuration) }
+
+var fileDescriptorDuration = []byte{
+	// 203 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x4b, 0x29, 0x2d, 0x4a,
+	0x2c, 0xc9, 0xcc, 0xcf, 0xd3, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf, 0xcf, 0x4f,
+	0xcf, 0x49, 0x85, 0xf0, 0x92, 0x4a, 0xd3, 0x94, 0xac, 0xb8, 0x38, 0x5c, 0xa0, 0x4a, 0x84, 0x24,
+	0xb8, 0xd8, 0x8b, 0x53, 0x93, 0xf3, 0xf3, 0x52, 0x8a, 0x25, 0x18, 0x15, 0x18, 0x35, 0x98, 0x83,
+	0x60, 0x5c, 0x21, 0x11, 0x2e, 0xd6, 0xbc, 0xc4, 0xbc, 0xfc, 0x62, 0x09, 0x26, 0x05, 0x46, 0x0d,
+	0xd6, 0x20, 0x08, 0xc7, 0xa9, 0xfe, 0xc2, 0x43, 0x39, 0x86, 0x1b, 0x0f, 0xe5, 0x18, 0x3e, 0x3c,
+	0x94, 0x63, 0x5c, 0xf1, 0x48, 0x8e, 0xf1, 0xc4, 0x23, 0x39, 0xc6, 0x0b, 0x8f, 0xe4, 0x18, 0x1f,
+	0x3c, 0x92, 0x63, 0x7c, 0xf1, 0x48, 0x8e, 0xe1, 0xc3, 0x23, 0x39, 0xc6, 0x15, 0x8f, 0xe5, 0x18,
+	0xb9, 0x84, 0x93, 0xf3, 0x73, 0xf5, 0xd0, 0xac, 0x76, 0xe2, 0x85, 0x59, 0x1c, 0x00, 0x12, 0x09,
+	0x60, 0x8c, 0x62, 0x2d, 0xa9, 0x2c, 0x48, 0x2d, 0xfe, 0xc1, 0xc8, 0xb8, 0x88, 0x89, 0xd9, 0x3d,
+	0xc0, 0x69, 0x15, 0x93, 0x9c, 0x3b, 0x44, 0x4b, 0x00, 0x54, 0x8b, 0x5e, 0x78, 0x6a, 0x4e, 0x8e,
+	0x77, 0x5e, 0x7e, 0x79, 0x5e, 0x08, 0x48, 0x65, 0x12, 0x1b, 0xd8, 0x2c, 0x63, 0x40, 0x00, 0x00,
+	0x00, 0xff, 0xff, 0x9d, 0x5a, 0x25, 0xa5, 0xe6, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/duration_gogo.go b/vendor/github.com/gogo/protobuf/types/duration_gogo.go
new file mode 100644
index 0000000000..90e7670e21
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/duration_gogo.go
@@ -0,0 +1,100 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2016, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package types
+
+import (
+	"fmt"
+	"time"
+)
+
+func NewPopulatedDuration(r interface {
+	Int63() int64
+}, easy bool) *Duration {
+	this := &Duration{}
+	maxSecs := time.Hour.Nanoseconds() / 1e9
+	max := 2 * maxSecs
+	s := int64(r.Int63()) % max
+	s -= maxSecs
+	neg := int64(1)
+	if s < 0 {
+		neg = -1
+	}
+	this.Seconds = s
+	this.Nanos = int32(neg * (r.Int63() % 1e9))
+	return this
+}
+
+func (d *Duration) String() string {
+	td, err := DurationFromProto(d)
+	if err != nil {
+		return fmt.Sprintf("(%v)", err)
+	}
+	return td.String()
+}
+
+func NewPopulatedStdDuration(r interface {
+	Int63() int64
+}, easy bool) *time.Duration {
+	dur := NewPopulatedDuration(r, easy)
+	d, err := DurationFromProto(dur)
+	if err != nil {
+		return nil
+	}
+	return &d
+}
+
+func SizeOfStdDuration(d time.Duration) int {
+	dur := DurationProto(d)
+	return dur.Size()
+}
+
+func StdDurationMarshal(d time.Duration) ([]byte, error) {
+	size := SizeOfStdDuration(d)
+	buf := make([]byte, size)
+	_, err := StdDurationMarshalTo(d, buf)
+	return buf, err
+}
+
+func StdDurationMarshalTo(d time.Duration, data []byte) (int, error) {
+	dur := DurationProto(d)
+	return dur.MarshalTo(data)
+}
+
+func StdDurationUnmarshal(d *time.Duration, data []byte) error {
+	dur := &Duration{}
+	if err := dur.Unmarshal(data); err != nil {
+		return err
+	}
+	dd, err := DurationFromProto(dur)
+	if err != nil {
+		return err
+	}
+	*d = dd
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/types/empty.pb.go b/vendor/github.com/gogo/protobuf/types/empty.pb.go
new file mode 100644
index 0000000000..e7018b905d
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/empty.pb.go
@@ -0,0 +1,432 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: empty.proto
+
+/*
+Package types is a generated protocol buffer package.
+
+It is generated from these files:
+	empty.proto
+
+It has these top-level messages:
+	Empty
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// A generic empty message that you can re-use to avoid defining duplicated
+// empty messages in your APIs. A typical example is to use it as the request
+// or the response type of an API method. For instance:
+//
+//     service Foo {
+//       rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);
+//     }
+//
+// The JSON representation for `Empty` is empty JSON object `{}`.
+type Empty struct {
+}
+
+func (m *Empty) Reset()                    { *m = Empty{} }
+func (*Empty) ProtoMessage()               {}
+func (*Empty) Descriptor() ([]byte, []int) { return fileDescriptorEmpty, []int{0} }
+func (*Empty) XXX_WellKnownType() string   { return "Empty" }
+
+func init() {
+	proto.RegisterType((*Empty)(nil), "google.protobuf.Empty")
+}
+func (this *Empty) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Empty)
+	if !ok {
+		that2, ok := that.(Empty)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	return 0
+}
+func (this *Empty) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Empty)
+	if !ok {
+		that2, ok := that.(Empty)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	return true
+}
+func (this *Empty) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 4)
+	s = append(s, "&types.Empty{")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringEmpty(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Empty) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Empty) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	return i, nil
+}
+
+func encodeVarintEmpty(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func NewPopulatedEmpty(r randyEmpty, easy bool) *Empty {
+	this := &Empty{}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+type randyEmpty interface {
+	Float32() float32
+	Float64() float64
+	Int63() int64
+	Int31() int32
+	Uint32() uint32
+	Intn(n int) int
+}
+
+func randUTF8RuneEmpty(r randyEmpty) rune {
+	ru := r.Intn(62)
+	if ru < 10 {
+		return rune(ru + 48)
+	} else if ru < 36 {
+		return rune(ru + 55)
+	}
+	return rune(ru + 61)
+}
+func randStringEmpty(r randyEmpty) string {
+	v1 := r.Intn(100)
+	tmps := make([]rune, v1)
+	for i := 0; i < v1; i++ {
+		tmps[i] = randUTF8RuneEmpty(r)
+	}
+	return string(tmps)
+}
+func randUnrecognizedEmpty(r randyEmpty, maxFieldNumber int) (dAtA []byte) {
+	l := r.Intn(5)
+	for i := 0; i < l; i++ {
+		wire := r.Intn(4)
+		if wire == 3 {
+			wire = 5
+		}
+		fieldNumber := maxFieldNumber + r.Intn(100)
+		dAtA = randFieldEmpty(dAtA, r, fieldNumber, wire)
+	}
+	return dAtA
+}
+func randFieldEmpty(dAtA []byte, r randyEmpty, fieldNumber int, wire int) []byte {
+	key := uint32(fieldNumber)<<3 | uint32(wire)
+	switch wire {
+	case 0:
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(key))
+		v2 := r.Int63()
+		if r.Intn(2) == 0 {
+			v2 *= -1
+		}
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(v2))
+	case 1:
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	case 2:
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(key))
+		ll := r.Intn(100)
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(ll))
+		for j := 0; j < ll; j++ {
+			dAtA = append(dAtA, byte(r.Intn(256)))
+		}
+	default:
+		dAtA = encodeVarintPopulateEmpty(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	}
+	return dAtA
+}
+func encodeVarintPopulateEmpty(dAtA []byte, v uint64) []byte {
+	for v >= 1<<7 {
+		dAtA = append(dAtA, uint8(uint64(v)&0x7f|0x80))
+		v >>= 7
+	}
+	dAtA = append(dAtA, uint8(v))
+	return dAtA
+}
+func (m *Empty) Size() (n int) {
+	var l int
+	_ = l
+	return n
+}
+
+func sovEmpty(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozEmpty(x uint64) (n int) {
+	return sovEmpty(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Empty) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Empty{`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringEmpty(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Empty) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowEmpty
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Empty: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Empty: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		default:
+			iNdEx = preIndex
+			skippy, err := skipEmpty(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthEmpty
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipEmpty(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowEmpty
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowEmpty
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowEmpty
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthEmpty
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowEmpty
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipEmpty(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthEmpty = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowEmpty   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("empty.proto", fileDescriptorEmpty) }
+
+var fileDescriptorEmpty = []byte{
+	// 169 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x4e, 0xcd, 0x2d, 0x28,
+	0xa9, 0xd4, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf, 0xcf, 0x4f, 0xcf, 0x49, 0x85,
+	0xf0, 0x92, 0x4a, 0xd3, 0x94, 0xd8, 0xb9, 0x58, 0x5d, 0x41, 0xf2, 0x4e, 0x2d, 0x8c, 0x17, 0x1e,
+	0xca, 0x31, 0xdc, 0x78, 0x28, 0xc7, 0xf0, 0xe1, 0xa1, 0x1c, 0xe3, 0x8f, 0x87, 0x72, 0x8c, 0x0d,
+	0x8f, 0xe4, 0x18, 0x57, 0x3c, 0x92, 0x63, 0x3c, 0xf1, 0x48, 0x8e, 0xf1, 0xc2, 0x23, 0x39, 0xc6,
+	0x07, 0x8f, 0xe4, 0x18, 0x5f, 0x3c, 0x92, 0x63, 0xf8, 0x00, 0x12, 0x7f, 0x2c, 0xc7, 0xc8, 0x25,
+	0x9c, 0x9c, 0x9f, 0xab, 0x87, 0x66, 0xa0, 0x13, 0x17, 0xd8, 0xb8, 0x00, 0x10, 0x37, 0x80, 0x31,
+	0x8a, 0xb5, 0xa4, 0xb2, 0x20, 0xb5, 0xf8, 0x07, 0x23, 0xe3, 0x22, 0x26, 0x66, 0xf7, 0x00, 0xa7,
+	0x55, 0x4c, 0x72, 0xee, 0x10, 0xf5, 0x01, 0x50, 0xf5, 0x7a, 0xe1, 0xa9, 0x39, 0x39, 0xde, 0x79,
+	0xf9, 0xe5, 0x79, 0x21, 0x20, 0x95, 0x49, 0x6c, 0x60, 0x83, 0x8c, 0x01, 0x01, 0x00, 0x00, 0xff,
+	0xff, 0x7c, 0xa8, 0xf0, 0xc4, 0xb6, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/field_mask.pb.go b/vendor/github.com/gogo/protobuf/types/field_mask.pb.go
new file mode 100644
index 0000000000..22e8b4f0db
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/field_mask.pb.go
@@ -0,0 +1,713 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: field_mask.proto
+
+/*
+Package types is a generated protocol buffer package.
+
+It is generated from these files:
+	field_mask.proto
+
+It has these top-level messages:
+	FieldMask
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// `FieldMask` represents a set of symbolic field paths, for example:
+//
+//     paths: "f.a"
+//     paths: "f.b.d"
+//
+// Here `f` represents a field in some root message, `a` and `b`
+// fields in the message found in `f`, and `d` a field found in the
+// message in `f.b`.
+//
+// Field masks are used to specify a subset of fields that should be
+// returned by a get operation or modified by an update operation.
+// Field masks also have a custom JSON encoding (see below).
+//
+// # Field Masks in Projections
+//
+// When used in the context of a projection, a response message or
+// sub-message is filtered by the API to only contain those fields as
+// specified in the mask. For example, if the mask in the previous
+// example is applied to a response message as follows:
+//
+//     f {
+//       a : 22
+//       b {
+//         d : 1
+//         x : 2
+//       }
+//       y : 13
+//     }
+//     z: 8
+//
+// The result will not contain specific values for fields x,y and z
+// (their value will be set to the default, and omitted in proto text
+// output):
+//
+//
+//     f {
+//       a : 22
+//       b {
+//         d : 1
+//       }
+//     }
+//
+// A repeated field is not allowed except at the last position of a
+// paths string.
+//
+// If a FieldMask object is not present in a get operation, the
+// operation applies to all fields (as if a FieldMask of all fields
+// had been specified).
+//
+// Note that a field mask does not necessarily apply to the
+// top-level response message. In case of a REST get operation, the
+// field mask applies directly to the response, but in case of a REST
+// list operation, the mask instead applies to each individual message
+// in the returned resource list. In case of a REST custom method,
+// other definitions may be used. Where the mask applies will be
+// clearly documented together with its declaration in the API.  In
+// any case, the effect on the returned resource/resources is required
+// behavior for APIs.
+//
+// # Field Masks in Update Operations
+//
+// A field mask in update operations specifies which fields of the
+// targeted resource are going to be updated. The API is required
+// to only change the values of the fields as specified in the mask
+// and leave the others untouched. If a resource is passed in to
+// describe the updated values, the API ignores the values of all
+// fields not covered by the mask.
+//
+// If a repeated field is specified for an update operation, the existing
+// repeated values in the target resource will be overwritten by the new values.
+// Note that a repeated field is only allowed in the last position of a `paths`
+// string.
+//
+// If a sub-message is specified in the last position of the field mask for an
+// update operation, then the existing sub-message in the target resource is
+// overwritten. Given the target message:
+//
+//     f {
+//       b {
+//         d : 1
+//         x : 2
+//       }
+//       c : 1
+//     }
+//
+// And an update message:
+//
+//     f {
+//       b {
+//         d : 10
+//       }
+//     }
+//
+// then if the field mask is:
+//
+//  paths: "f.b"
+//
+// then the result will be:
+//
+//     f {
+//       b {
+//         d : 10
+//       }
+//       c : 1
+//     }
+//
+// However, if the update mask was:
+//
+//  paths: "f.b.d"
+//
+// then the result would be:
+//
+//     f {
+//       b {
+//         d : 10
+//         x : 2
+//       }
+//       c : 1
+//     }
+//
+// In order to reset a field's value to the default, the field must
+// be in the mask and set to the default value in the provided resource.
+// Hence, in order to reset all fields of a resource, provide a default
+// instance of the resource and set all fields in the mask, or do
+// not provide a mask as described below.
+//
+// If a field mask is not present on update, the operation applies to
+// all fields (as if a field mask of all fields has been specified).
+// Note that in the presence of schema evolution, this may mean that
+// fields the client does not know and has therefore not filled into
+// the request will be reset to their default. If this is unwanted
+// behavior, a specific service may require a client to always specify
+// a field mask, producing an error if not.
+//
+// As with get operations, the location of the resource which
+// describes the updated values in the request message depends on the
+// operation kind. In any case, the effect of the field mask is
+// required to be honored by the API.
+//
+// ## Considerations for HTTP REST
+//
+// The HTTP kind of an update operation which uses a field mask must
+// be set to PATCH instead of PUT in order to satisfy HTTP semantics
+// (PUT must only be used for full updates).
+//
+// # JSON Encoding of Field Masks
+//
+// In JSON, a field mask is encoded as a single string where paths are
+// separated by a comma. Fields name in each path are converted
+// to/from lower-camel naming conventions.
+//
+// As an example, consider the following message declarations:
+//
+//     message Profile {
+//       User user = 1;
+//       Photo photo = 2;
+//     }
+//     message User {
+//       string display_name = 1;
+//       string address = 2;
+//     }
+//
+// In proto a field mask for `Profile` may look as such:
+//
+//     mask {
+//       paths: "user.display_name"
+//       paths: "photo"
+//     }
+//
+// In JSON, the same mask is represented as below:
+//
+//     {
+//       mask: "user.displayName,photo"
+//     }
+//
+// # Field Masks and Oneof Fields
+//
+// Field masks treat fields in oneofs just as regular fields. Consider the
+// following message:
+//
+//     message SampleMessage {
+//       oneof test_oneof {
+//         string name = 4;
+//         SubMessage sub_message = 9;
+//       }
+//     }
+//
+// The field mask can be:
+//
+//     mask {
+//       paths: "name"
+//     }
+//
+// Or:
+//
+//     mask {
+//       paths: "sub_message"
+//     }
+//
+// Note that oneof type names ("test_oneof" in this case) cannot be used in
+// paths.
+type FieldMask struct {
+	// The set of field mask paths.
+	Paths []string `protobuf:"bytes,1,rep,name=paths" json:"paths,omitempty"`
+}
+
+func (m *FieldMask) Reset()                    { *m = FieldMask{} }
+func (*FieldMask) ProtoMessage()               {}
+func (*FieldMask) Descriptor() ([]byte, []int) { return fileDescriptorFieldMask, []int{0} }
+
+func (m *FieldMask) GetPaths() []string {
+	if m != nil {
+		return m.Paths
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*FieldMask)(nil), "google.protobuf.FieldMask")
+}
+func (this *FieldMask) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*FieldMask)
+	if !ok {
+		that2, ok := that.(FieldMask)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if len(this.Paths) != len(that1.Paths) {
+		if len(this.Paths) < len(that1.Paths) {
+			return -1
+		}
+		return 1
+	}
+	for i := range this.Paths {
+		if this.Paths[i] != that1.Paths[i] {
+			if this.Paths[i] < that1.Paths[i] {
+				return -1
+			}
+			return 1
+		}
+	}
+	return 0
+}
+func (this *FieldMask) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*FieldMask)
+	if !ok {
+		that2, ok := that.(FieldMask)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if len(this.Paths) != len(that1.Paths) {
+		return false
+	}
+	for i := range this.Paths {
+		if this.Paths[i] != that1.Paths[i] {
+			return false
+		}
+	}
+	return true
+}
+func (this *FieldMask) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.FieldMask{")
+	s = append(s, "Paths: "+fmt.Sprintf("%#v", this.Paths)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringFieldMask(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *FieldMask) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *FieldMask) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Paths) > 0 {
+		for _, s := range m.Paths {
+			dAtA[i] = 0xa
+			i++
+			l = len(s)
+			for l >= 1<<7 {
+				dAtA[i] = uint8(uint64(l)&0x7f | 0x80)
+				l >>= 7
+				i++
+			}
+			dAtA[i] = uint8(l)
+			i++
+			i += copy(dAtA[i:], s)
+		}
+	}
+	return i, nil
+}
+
+func encodeVarintFieldMask(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func NewPopulatedFieldMask(r randyFieldMask, easy bool) *FieldMask {
+	this := &FieldMask{}
+	v1 := r.Intn(10)
+	this.Paths = make([]string, v1)
+	for i := 0; i < v1; i++ {
+		this.Paths[i] = string(randStringFieldMask(r))
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+type randyFieldMask interface {
+	Float32() float32
+	Float64() float64
+	Int63() int64
+	Int31() int32
+	Uint32() uint32
+	Intn(n int) int
+}
+
+func randUTF8RuneFieldMask(r randyFieldMask) rune {
+	ru := r.Intn(62)
+	if ru < 10 {
+		return rune(ru + 48)
+	} else if ru < 36 {
+		return rune(ru + 55)
+	}
+	return rune(ru + 61)
+}
+func randStringFieldMask(r randyFieldMask) string {
+	v2 := r.Intn(100)
+	tmps := make([]rune, v2)
+	for i := 0; i < v2; i++ {
+		tmps[i] = randUTF8RuneFieldMask(r)
+	}
+	return string(tmps)
+}
+func randUnrecognizedFieldMask(r randyFieldMask, maxFieldNumber int) (dAtA []byte) {
+	l := r.Intn(5)
+	for i := 0; i < l; i++ {
+		wire := r.Intn(4)
+		if wire == 3 {
+			wire = 5
+		}
+		fieldNumber := maxFieldNumber + r.Intn(100)
+		dAtA = randFieldFieldMask(dAtA, r, fieldNumber, wire)
+	}
+	return dAtA
+}
+func randFieldFieldMask(dAtA []byte, r randyFieldMask, fieldNumber int, wire int) []byte {
+	key := uint32(fieldNumber)<<3 | uint32(wire)
+	switch wire {
+	case 0:
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(key))
+		v3 := r.Int63()
+		if r.Intn(2) == 0 {
+			v3 *= -1
+		}
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(v3))
+	case 1:
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	case 2:
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(key))
+		ll := r.Intn(100)
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(ll))
+		for j := 0; j < ll; j++ {
+			dAtA = append(dAtA, byte(r.Intn(256)))
+		}
+	default:
+		dAtA = encodeVarintPopulateFieldMask(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	}
+	return dAtA
+}
+func encodeVarintPopulateFieldMask(dAtA []byte, v uint64) []byte {
+	for v >= 1<<7 {
+		dAtA = append(dAtA, uint8(uint64(v)&0x7f|0x80))
+		v >>= 7
+	}
+	dAtA = append(dAtA, uint8(v))
+	return dAtA
+}
+func (m *FieldMask) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Paths) > 0 {
+		for _, s := range m.Paths {
+			l = len(s)
+			n += 1 + l + sovFieldMask(uint64(l))
+		}
+	}
+	return n
+}
+
+func sovFieldMask(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozFieldMask(x uint64) (n int) {
+	return sovFieldMask(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *FieldMask) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&FieldMask{`,
+		`Paths:` + fmt.Sprintf("%v", this.Paths) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringFieldMask(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *FieldMask) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowFieldMask
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: FieldMask: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: FieldMask: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Paths", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowFieldMask
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthFieldMask
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Paths = append(m.Paths, string(dAtA[iNdEx:postIndex]))
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipFieldMask(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthFieldMask
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipFieldMask(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowFieldMask
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowFieldMask
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowFieldMask
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthFieldMask
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowFieldMask
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipFieldMask(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthFieldMask = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowFieldMask   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("field_mask.proto", fileDescriptorFieldMask) }
+
+var fileDescriptorFieldMask = []byte{
+	// 193 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0x12, 0x48, 0xcb, 0x4c, 0xcd,
+	0x49, 0x89, 0xcf, 0x4d, 0x2c, 0xce, 0xd6, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf,
+	0xcf, 0x4f, 0xcf, 0x49, 0x85, 0xf0, 0x92, 0x4a, 0xd3, 0x94, 0x14, 0xb9, 0x38, 0xdd, 0x40, 0x8a,
+	0x7c, 0x13, 0x8b, 0xb3, 0x85, 0x44, 0xb8, 0x58, 0x0b, 0x12, 0x4b, 0x32, 0x8a, 0x25, 0x18, 0x15,
+	0x98, 0x35, 0x38, 0x83, 0x20, 0x1c, 0xa7, 0x56, 0xc6, 0x0b, 0x0f, 0xe5, 0x18, 0x6e, 0x3c, 0x94,
+	0x63, 0xf8, 0xf0, 0x50, 0x8e, 0xf1, 0xc7, 0x43, 0x39, 0xc6, 0x86, 0x47, 0x72, 0x8c, 0x2b, 0x1e,
+	0xc9, 0x31, 0x9e, 0x78, 0x24, 0xc7, 0x78, 0xe1, 0x91, 0x1c, 0xe3, 0x83, 0x47, 0x72, 0x8c, 0x2f,
+	0x1e, 0xc9, 0x31, 0x7c, 0x00, 0x89, 0x3f, 0x96, 0x63, 0xe4, 0x12, 0x4e, 0xce, 0xcf, 0xd5, 0x43,
+	0xb3, 0xca, 0x89, 0x0f, 0x6e, 0x51, 0x00, 0x48, 0x28, 0x80, 0x31, 0x8a, 0xb5, 0xa4, 0xb2, 0x20,
+	0xb5, 0x78, 0x11, 0x13, 0xb3, 0x7b, 0x80, 0xd3, 0x2a, 0x26, 0x39, 0x77, 0x88, 0x86, 0x00, 0xa8,
+	0x06, 0xbd, 0xf0, 0xd4, 0x9c, 0x1c, 0xef, 0xbc, 0xfc, 0xf2, 0xbc, 0x10, 0x90, 0xb2, 0x24, 0x36,
+	0xb0, 0x49, 0xc6, 0x80, 0x00, 0x00, 0x00, 0xff, 0xff, 0x51, 0x31, 0x89, 0xb5, 0xd6, 0x00, 0x00,
+	0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/struct.pb.go b/vendor/github.com/gogo/protobuf/types/struct.pb.go
new file mode 100644
index 0000000000..7d5372b031
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/struct.pb.go
@@ -0,0 +1,1813 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: struct.proto
+
+/*
+	Package types is a generated protocol buffer package.
+
+	It is generated from these files:
+		struct.proto
+
+	It has these top-level messages:
+		Struct
+		Value
+		ListValue
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strconv "strconv"
+
+import strings "strings"
+import reflect "reflect"
+import sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import binary "encoding/binary"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// `NullValue` is a singleton enumeration to represent the null value for the
+// `Value` type union.
+//
+//  The JSON representation for `NullValue` is JSON `null`.
+type NullValue int32
+
+const (
+	// Null value.
+	NULL_VALUE NullValue = 0
+)
+
+var NullValue_name = map[int32]string{
+	0: "NULL_VALUE",
+}
+var NullValue_value = map[string]int32{
+	"NULL_VALUE": 0,
+}
+
+func (NullValue) EnumDescriptor() ([]byte, []int) { return fileDescriptorStruct, []int{0} }
+func (NullValue) XXX_WellKnownType() string       { return "NullValue" }
+
+// `Struct` represents a structured data value, consisting of fields
+// which map to dynamically typed values. In some languages, `Struct`
+// might be supported by a native representation. For example, in
+// scripting languages like JS a struct is represented as an
+// object. The details of that representation are described together
+// with the proto support for the language.
+//
+// The JSON representation for `Struct` is JSON object.
+type Struct struct {
+	// Unordered map of dynamically typed values.
+	Fields map[string]*Value `protobuf:"bytes,1,rep,name=fields" json:"fields,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value"`
+}
+
+func (m *Struct) Reset()                    { *m = Struct{} }
+func (*Struct) ProtoMessage()               {}
+func (*Struct) Descriptor() ([]byte, []int) { return fileDescriptorStruct, []int{0} }
+func (*Struct) XXX_WellKnownType() string   { return "Struct" }
+
+func (m *Struct) GetFields() map[string]*Value {
+	if m != nil {
+		return m.Fields
+	}
+	return nil
+}
+
+// `Value` represents a dynamically typed value which can be either
+// null, a number, a string, a boolean, a recursive struct value, or a
+// list of values. A producer of value is expected to set one of that
+// variants, absence of any variant indicates an error.
+//
+// The JSON representation for `Value` is JSON value.
+type Value struct {
+	// The kind of value.
+	//
+	// Types that are valid to be assigned to Kind:
+	//	*Value_NullValue
+	//	*Value_NumberValue
+	//	*Value_StringValue
+	//	*Value_BoolValue
+	//	*Value_StructValue
+	//	*Value_ListValue
+	Kind isValue_Kind `protobuf_oneof:"kind"`
+}
+
+func (m *Value) Reset()                    { *m = Value{} }
+func (*Value) ProtoMessage()               {}
+func (*Value) Descriptor() ([]byte, []int) { return fileDescriptorStruct, []int{1} }
+func (*Value) XXX_WellKnownType() string   { return "Value" }
+
+type isValue_Kind interface {
+	isValue_Kind()
+	Equal(interface{}) bool
+	MarshalTo([]byte) (int, error)
+	Size() int
+}
+
+type Value_NullValue struct {
+	NullValue NullValue `protobuf:"varint,1,opt,name=null_value,json=nullValue,proto3,enum=google.protobuf.NullValue,oneof"`
+}
+type Value_NumberValue struct {
+	NumberValue float64 `protobuf:"fixed64,2,opt,name=number_value,json=numberValue,proto3,oneof"`
+}
+type Value_StringValue struct {
+	StringValue string `protobuf:"bytes,3,opt,name=string_value,json=stringValue,proto3,oneof"`
+}
+type Value_BoolValue struct {
+	BoolValue bool `protobuf:"varint,4,opt,name=bool_value,json=boolValue,proto3,oneof"`
+}
+type Value_StructValue struct {
+	StructValue *Struct `protobuf:"bytes,5,opt,name=struct_value,json=structValue,oneof"`
+}
+type Value_ListValue struct {
+	ListValue *ListValue `protobuf:"bytes,6,opt,name=list_value,json=listValue,oneof"`
+}
+
+func (*Value_NullValue) isValue_Kind()   {}
+func (*Value_NumberValue) isValue_Kind() {}
+func (*Value_StringValue) isValue_Kind() {}
+func (*Value_BoolValue) isValue_Kind()   {}
+func (*Value_StructValue) isValue_Kind() {}
+func (*Value_ListValue) isValue_Kind()   {}
+
+func (m *Value) GetKind() isValue_Kind {
+	if m != nil {
+		return m.Kind
+	}
+	return nil
+}
+
+func (m *Value) GetNullValue() NullValue {
+	if x, ok := m.GetKind().(*Value_NullValue); ok {
+		return x.NullValue
+	}
+	return NULL_VALUE
+}
+
+func (m *Value) GetNumberValue() float64 {
+	if x, ok := m.GetKind().(*Value_NumberValue); ok {
+		return x.NumberValue
+	}
+	return 0
+}
+
+func (m *Value) GetStringValue() string {
+	if x, ok := m.GetKind().(*Value_StringValue); ok {
+		return x.StringValue
+	}
+	return ""
+}
+
+func (m *Value) GetBoolValue() bool {
+	if x, ok := m.GetKind().(*Value_BoolValue); ok {
+		return x.BoolValue
+	}
+	return false
+}
+
+func (m *Value) GetStructValue() *Struct {
+	if x, ok := m.GetKind().(*Value_StructValue); ok {
+		return x.StructValue
+	}
+	return nil
+}
+
+func (m *Value) GetListValue() *ListValue {
+	if x, ok := m.GetKind().(*Value_ListValue); ok {
+		return x.ListValue
+	}
+	return nil
+}
+
+// XXX_OneofFuncs is for the internal use of the proto package.
+func (*Value) XXX_OneofFuncs() (func(msg proto.Message, b *proto.Buffer) error, func(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error), func(msg proto.Message) (n int), []interface{}) {
+	return _Value_OneofMarshaler, _Value_OneofUnmarshaler, _Value_OneofSizer, []interface{}{
+		(*Value_NullValue)(nil),
+		(*Value_NumberValue)(nil),
+		(*Value_StringValue)(nil),
+		(*Value_BoolValue)(nil),
+		(*Value_StructValue)(nil),
+		(*Value_ListValue)(nil),
+	}
+}
+
+func _Value_OneofMarshaler(msg proto.Message, b *proto.Buffer) error {
+	m := msg.(*Value)
+	// kind
+	switch x := m.Kind.(type) {
+	case *Value_NullValue:
+		_ = b.EncodeVarint(1<<3 | proto.WireVarint)
+		_ = b.EncodeVarint(uint64(x.NullValue))
+	case *Value_NumberValue:
+		_ = b.EncodeVarint(2<<3 | proto.WireFixed64)
+		_ = b.EncodeFixed64(math.Float64bits(x.NumberValue))
+	case *Value_StringValue:
+		_ = b.EncodeVarint(3<<3 | proto.WireBytes)
+		_ = b.EncodeStringBytes(x.StringValue)
+	case *Value_BoolValue:
+		t := uint64(0)
+		if x.BoolValue {
+			t = 1
+		}
+		_ = b.EncodeVarint(4<<3 | proto.WireVarint)
+		_ = b.EncodeVarint(t)
+	case *Value_StructValue:
+		_ = b.EncodeVarint(5<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.StructValue); err != nil {
+			return err
+		}
+	case *Value_ListValue:
+		_ = b.EncodeVarint(6<<3 | proto.WireBytes)
+		if err := b.EncodeMessage(x.ListValue); err != nil {
+			return err
+		}
+	case nil:
+	default:
+		return fmt.Errorf("Value.Kind has unexpected type %T", x)
+	}
+	return nil
+}
+
+func _Value_OneofUnmarshaler(msg proto.Message, tag, wire int, b *proto.Buffer) (bool, error) {
+	m := msg.(*Value)
+	switch tag {
+	case 1: // kind.null_value
+		if wire != proto.WireVarint {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeVarint()
+		m.Kind = &Value_NullValue{NullValue(x)}
+		return true, err
+	case 2: // kind.number_value
+		if wire != proto.WireFixed64 {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeFixed64()
+		m.Kind = &Value_NumberValue{math.Float64frombits(x)}
+		return true, err
+	case 3: // kind.string_value
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeStringBytes()
+		m.Kind = &Value_StringValue{x}
+		return true, err
+	case 4: // kind.bool_value
+		if wire != proto.WireVarint {
+			return true, proto.ErrInternalBadWireType
+		}
+		x, err := b.DecodeVarint()
+		m.Kind = &Value_BoolValue{x != 0}
+		return true, err
+	case 5: // kind.struct_value
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(Struct)
+		err := b.DecodeMessage(msg)
+		m.Kind = &Value_StructValue{msg}
+		return true, err
+	case 6: // kind.list_value
+		if wire != proto.WireBytes {
+			return true, proto.ErrInternalBadWireType
+		}
+		msg := new(ListValue)
+		err := b.DecodeMessage(msg)
+		m.Kind = &Value_ListValue{msg}
+		return true, err
+	default:
+		return false, nil
+	}
+}
+
+func _Value_OneofSizer(msg proto.Message) (n int) {
+	m := msg.(*Value)
+	// kind
+	switch x := m.Kind.(type) {
+	case *Value_NullValue:
+		n += proto.SizeVarint(1<<3 | proto.WireVarint)
+		n += proto.SizeVarint(uint64(x.NullValue))
+	case *Value_NumberValue:
+		n += proto.SizeVarint(2<<3 | proto.WireFixed64)
+		n += 8
+	case *Value_StringValue:
+		n += proto.SizeVarint(3<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(len(x.StringValue)))
+		n += len(x.StringValue)
+	case *Value_BoolValue:
+		n += proto.SizeVarint(4<<3 | proto.WireVarint)
+		n += 1
+	case *Value_StructValue:
+		s := proto.Size(x.StructValue)
+		n += proto.SizeVarint(5<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case *Value_ListValue:
+		s := proto.Size(x.ListValue)
+		n += proto.SizeVarint(6<<3 | proto.WireBytes)
+		n += proto.SizeVarint(uint64(s))
+		n += s
+	case nil:
+	default:
+		panic(fmt.Sprintf("proto: unexpected type %T in oneof", x))
+	}
+	return n
+}
+
+// `ListValue` is a wrapper around a repeated field of values.
+//
+// The JSON representation for `ListValue` is JSON array.
+type ListValue struct {
+	// Repeated field of dynamically typed values.
+	Values []*Value `protobuf:"bytes,1,rep,name=values" json:"values,omitempty"`
+}
+
+func (m *ListValue) Reset()                    { *m = ListValue{} }
+func (*ListValue) ProtoMessage()               {}
+func (*ListValue) Descriptor() ([]byte, []int) { return fileDescriptorStruct, []int{2} }
+func (*ListValue) XXX_WellKnownType() string   { return "ListValue" }
+
+func (m *ListValue) GetValues() []*Value {
+	if m != nil {
+		return m.Values
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*Struct)(nil), "google.protobuf.Struct")
+	proto.RegisterType((*Value)(nil), "google.protobuf.Value")
+	proto.RegisterType((*ListValue)(nil), "google.protobuf.ListValue")
+	proto.RegisterEnum("google.protobuf.NullValue", NullValue_name, NullValue_value)
+}
+func (x NullValue) String() string {
+	s, ok := NullValue_name[int32(x)]
+	if ok {
+		return s
+	}
+	return strconv.Itoa(int(x))
+}
+func (this *Struct) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Struct)
+	if !ok {
+		that2, ok := that.(Struct)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if len(this.Fields) != len(that1.Fields) {
+		return false
+	}
+	for i := range this.Fields {
+		if !this.Fields[i].Equal(that1.Fields[i]) {
+			return false
+		}
+	}
+	return true
+}
+func (this *Value) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value)
+	if !ok {
+		that2, ok := that.(Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if that1.Kind == nil {
+		if this.Kind != nil {
+			return false
+		}
+	} else if this.Kind == nil {
+		return false
+	} else if !this.Kind.Equal(that1.Kind) {
+		return false
+	}
+	return true
+}
+func (this *Value_NullValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_NullValue)
+	if !ok {
+		that2, ok := that.(Value_NullValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.NullValue != that1.NullValue {
+		return false
+	}
+	return true
+}
+func (this *Value_NumberValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_NumberValue)
+	if !ok {
+		that2, ok := that.(Value_NumberValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.NumberValue != that1.NumberValue {
+		return false
+	}
+	return true
+}
+func (this *Value_StringValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_StringValue)
+	if !ok {
+		that2, ok := that.(Value_StringValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.StringValue != that1.StringValue {
+		return false
+	}
+	return true
+}
+func (this *Value_BoolValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_BoolValue)
+	if !ok {
+		that2, ok := that.(Value_BoolValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.BoolValue != that1.BoolValue {
+		return false
+	}
+	return true
+}
+func (this *Value_StructValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_StructValue)
+	if !ok {
+		that2, ok := that.(Value_StructValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if !this.StructValue.Equal(that1.StructValue) {
+		return false
+	}
+	return true
+}
+func (this *Value_ListValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Value_ListValue)
+	if !ok {
+		that2, ok := that.(Value_ListValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if !this.ListValue.Equal(that1.ListValue) {
+		return false
+	}
+	return true
+}
+func (this *ListValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*ListValue)
+	if !ok {
+		that2, ok := that.(ListValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if len(this.Values) != len(that1.Values) {
+		return false
+	}
+	for i := range this.Values {
+		if !this.Values[i].Equal(that1.Values[i]) {
+			return false
+		}
+	}
+	return true
+}
+func (this *Struct) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.Struct{")
+	keysForFields := make([]string, 0, len(this.Fields))
+	for k := range this.Fields {
+		keysForFields = append(keysForFields, k)
+	}
+	sortkeys.Strings(keysForFields)
+	mapStringForFields := "map[string]*Value{"
+	for _, k := range keysForFields {
+		mapStringForFields += fmt.Sprintf("%#v: %#v,", k, this.Fields[k])
+	}
+	mapStringForFields += "}"
+	if this.Fields != nil {
+		s = append(s, "Fields: "+mapStringForFields+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *Value) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 10)
+	s = append(s, "&types.Value{")
+	if this.Kind != nil {
+		s = append(s, "Kind: "+fmt.Sprintf("%#v", this.Kind)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *Value_NullValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_NullValue{` +
+		`NullValue:` + fmt.Sprintf("%#v", this.NullValue) + `}`}, ", ")
+	return s
+}
+func (this *Value_NumberValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_NumberValue{` +
+		`NumberValue:` + fmt.Sprintf("%#v", this.NumberValue) + `}`}, ", ")
+	return s
+}
+func (this *Value_StringValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_StringValue{` +
+		`StringValue:` + fmt.Sprintf("%#v", this.StringValue) + `}`}, ", ")
+	return s
+}
+func (this *Value_BoolValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_BoolValue{` +
+		`BoolValue:` + fmt.Sprintf("%#v", this.BoolValue) + `}`}, ", ")
+	return s
+}
+func (this *Value_StructValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_StructValue{` +
+		`StructValue:` + fmt.Sprintf("%#v", this.StructValue) + `}`}, ", ")
+	return s
+}
+func (this *Value_ListValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&types.Value_ListValue{` +
+		`ListValue:` + fmt.Sprintf("%#v", this.ListValue) + `}`}, ", ")
+	return s
+}
+func (this *ListValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.ListValue{")
+	if this.Values != nil {
+		s = append(s, "Values: "+fmt.Sprintf("%#v", this.Values)+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringStruct(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Struct) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Struct) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Fields) > 0 {
+		for k := range m.Fields {
+			dAtA[i] = 0xa
+			i++
+			v := m.Fields[k]
+			msgSize := 0
+			if v != nil {
+				msgSize = v.Size()
+				msgSize += 1 + sovStruct(uint64(msgSize))
+			}
+			mapSize := 1 + len(k) + sovStruct(uint64(len(k))) + msgSize
+			i = encodeVarintStruct(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintStruct(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			if v != nil {
+				dAtA[i] = 0x12
+				i++
+				i = encodeVarintStruct(dAtA, i, uint64(v.Size()))
+				n1, err := v.MarshalTo(dAtA[i:])
+				if err != nil {
+					return 0, err
+				}
+				i += n1
+			}
+		}
+	}
+	return i, nil
+}
+
+func (m *Value) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Value) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Kind != nil {
+		nn2, err := m.Kind.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += nn2
+	}
+	return i, nil
+}
+
+func (m *Value_NullValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x8
+	i++
+	i = encodeVarintStruct(dAtA, i, uint64(m.NullValue))
+	return i, nil
+}
+func (m *Value_NumberValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x11
+	i++
+	binary.LittleEndian.PutUint64(dAtA[i:], uint64(math.Float64bits(float64(m.NumberValue))))
+	i += 8
+	return i, nil
+}
+func (m *Value_StringValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x1a
+	i++
+	i = encodeVarintStruct(dAtA, i, uint64(len(m.StringValue)))
+	i += copy(dAtA[i:], m.StringValue)
+	return i, nil
+}
+func (m *Value_BoolValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	dAtA[i] = 0x20
+	i++
+	if m.BoolValue {
+		dAtA[i] = 1
+	} else {
+		dAtA[i] = 0
+	}
+	i++
+	return i, nil
+}
+func (m *Value_StructValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.StructValue != nil {
+		dAtA[i] = 0x2a
+		i++
+		i = encodeVarintStruct(dAtA, i, uint64(m.StructValue.Size()))
+		n3, err := m.StructValue.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n3
+	}
+	return i, nil
+}
+func (m *Value_ListValue) MarshalTo(dAtA []byte) (int, error) {
+	i := 0
+	if m.ListValue != nil {
+		dAtA[i] = 0x32
+		i++
+		i = encodeVarintStruct(dAtA, i, uint64(m.ListValue.Size()))
+		n4, err := m.ListValue.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n4
+	}
+	return i, nil
+}
+func (m *ListValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *ListValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Values) > 0 {
+		for _, msg := range m.Values {
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintStruct(dAtA, i, uint64(msg.Size()))
+			n, err := msg.MarshalTo(dAtA[i:])
+			if err != nil {
+				return 0, err
+			}
+			i += n
+		}
+	}
+	return i, nil
+}
+
+func encodeVarintStruct(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func NewPopulatedStruct(r randyStruct, easy bool) *Struct {
+	this := &Struct{}
+	if r.Intn(10) == 0 {
+		v1 := r.Intn(10)
+		this.Fields = make(map[string]*Value)
+		for i := 0; i < v1; i++ {
+			this.Fields[randStringStruct(r)] = NewPopulatedValue(r, easy)
+		}
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedValue(r randyStruct, easy bool) *Value {
+	this := &Value{}
+	oneofNumber_Kind := []int32{1, 2, 3, 4, 5, 6}[r.Intn(6)]
+	switch oneofNumber_Kind {
+	case 1:
+		this.Kind = NewPopulatedValue_NullValue(r, easy)
+	case 2:
+		this.Kind = NewPopulatedValue_NumberValue(r, easy)
+	case 3:
+		this.Kind = NewPopulatedValue_StringValue(r, easy)
+	case 4:
+		this.Kind = NewPopulatedValue_BoolValue(r, easy)
+	case 5:
+		this.Kind = NewPopulatedValue_StructValue(r, easy)
+	case 6:
+		this.Kind = NewPopulatedValue_ListValue(r, easy)
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedValue_NullValue(r randyStruct, easy bool) *Value_NullValue {
+	this := &Value_NullValue{}
+	this.NullValue = NullValue([]int32{0}[r.Intn(1)])
+	return this
+}
+func NewPopulatedValue_NumberValue(r randyStruct, easy bool) *Value_NumberValue {
+	this := &Value_NumberValue{}
+	this.NumberValue = float64(r.Float64())
+	if r.Intn(2) == 0 {
+		this.NumberValue *= -1
+	}
+	return this
+}
+func NewPopulatedValue_StringValue(r randyStruct, easy bool) *Value_StringValue {
+	this := &Value_StringValue{}
+	this.StringValue = string(randStringStruct(r))
+	return this
+}
+func NewPopulatedValue_BoolValue(r randyStruct, easy bool) *Value_BoolValue {
+	this := &Value_BoolValue{}
+	this.BoolValue = bool(bool(r.Intn(2) == 0))
+	return this
+}
+func NewPopulatedValue_StructValue(r randyStruct, easy bool) *Value_StructValue {
+	this := &Value_StructValue{}
+	this.StructValue = NewPopulatedStruct(r, easy)
+	return this
+}
+func NewPopulatedValue_ListValue(r randyStruct, easy bool) *Value_ListValue {
+	this := &Value_ListValue{}
+	this.ListValue = NewPopulatedListValue(r, easy)
+	return this
+}
+func NewPopulatedListValue(r randyStruct, easy bool) *ListValue {
+	this := &ListValue{}
+	if r.Intn(10) == 0 {
+		v2 := r.Intn(5)
+		this.Values = make([]*Value, v2)
+		for i := 0; i < v2; i++ {
+			this.Values[i] = NewPopulatedValue(r, easy)
+		}
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+type randyStruct interface {
+	Float32() float32
+	Float64() float64
+	Int63() int64
+	Int31() int32
+	Uint32() uint32
+	Intn(n int) int
+}
+
+func randUTF8RuneStruct(r randyStruct) rune {
+	ru := r.Intn(62)
+	if ru < 10 {
+		return rune(ru + 48)
+	} else if ru < 36 {
+		return rune(ru + 55)
+	}
+	return rune(ru + 61)
+}
+func randStringStruct(r randyStruct) string {
+	v3 := r.Intn(100)
+	tmps := make([]rune, v3)
+	for i := 0; i < v3; i++ {
+		tmps[i] = randUTF8RuneStruct(r)
+	}
+	return string(tmps)
+}
+func randUnrecognizedStruct(r randyStruct, maxFieldNumber int) (dAtA []byte) {
+	l := r.Intn(5)
+	for i := 0; i < l; i++ {
+		wire := r.Intn(4)
+		if wire == 3 {
+			wire = 5
+		}
+		fieldNumber := maxFieldNumber + r.Intn(100)
+		dAtA = randFieldStruct(dAtA, r, fieldNumber, wire)
+	}
+	return dAtA
+}
+func randFieldStruct(dAtA []byte, r randyStruct, fieldNumber int, wire int) []byte {
+	key := uint32(fieldNumber)<<3 | uint32(wire)
+	switch wire {
+	case 0:
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(key))
+		v4 := r.Int63()
+		if r.Intn(2) == 0 {
+			v4 *= -1
+		}
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(v4))
+	case 1:
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	case 2:
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(key))
+		ll := r.Intn(100)
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(ll))
+		for j := 0; j < ll; j++ {
+			dAtA = append(dAtA, byte(r.Intn(256)))
+		}
+	default:
+		dAtA = encodeVarintPopulateStruct(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	}
+	return dAtA
+}
+func encodeVarintPopulateStruct(dAtA []byte, v uint64) []byte {
+	for v >= 1<<7 {
+		dAtA = append(dAtA, uint8(uint64(v)&0x7f|0x80))
+		v >>= 7
+	}
+	dAtA = append(dAtA, uint8(v))
+	return dAtA
+}
+func (m *Struct) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Fields) > 0 {
+		for k, v := range m.Fields {
+			_ = k
+			_ = v
+			l = 0
+			if v != nil {
+				l = v.Size()
+				l += 1 + sovStruct(uint64(l))
+			}
+			mapEntrySize := 1 + len(k) + sovStruct(uint64(len(k))) + l
+			n += mapEntrySize + 1 + sovStruct(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func (m *Value) Size() (n int) {
+	var l int
+	_ = l
+	if m.Kind != nil {
+		n += m.Kind.Size()
+	}
+	return n
+}
+
+func (m *Value_NullValue) Size() (n int) {
+	var l int
+	_ = l
+	n += 1 + sovStruct(uint64(m.NullValue))
+	return n
+}
+func (m *Value_NumberValue) Size() (n int) {
+	var l int
+	_ = l
+	n += 9
+	return n
+}
+func (m *Value_StringValue) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.StringValue)
+	n += 1 + l + sovStruct(uint64(l))
+	return n
+}
+func (m *Value_BoolValue) Size() (n int) {
+	var l int
+	_ = l
+	n += 2
+	return n
+}
+func (m *Value_StructValue) Size() (n int) {
+	var l int
+	_ = l
+	if m.StructValue != nil {
+		l = m.StructValue.Size()
+		n += 1 + l + sovStruct(uint64(l))
+	}
+	return n
+}
+func (m *Value_ListValue) Size() (n int) {
+	var l int
+	_ = l
+	if m.ListValue != nil {
+		l = m.ListValue.Size()
+		n += 1 + l + sovStruct(uint64(l))
+	}
+	return n
+}
+func (m *ListValue) Size() (n int) {
+	var l int
+	_ = l
+	if len(m.Values) > 0 {
+		for _, e := range m.Values {
+			l = e.Size()
+			n += 1 + l + sovStruct(uint64(l))
+		}
+	}
+	return n
+}
+
+func sovStruct(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozStruct(x uint64) (n int) {
+	return sovStruct(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Struct) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForFields := make([]string, 0, len(this.Fields))
+	for k := range this.Fields {
+		keysForFields = append(keysForFields, k)
+	}
+	sortkeys.Strings(keysForFields)
+	mapStringForFields := "map[string]*Value{"
+	for _, k := range keysForFields {
+		mapStringForFields += fmt.Sprintf("%v: %v,", k, this.Fields[k])
+	}
+	mapStringForFields += "}"
+	s := strings.Join([]string{`&Struct{`,
+		`Fields:` + mapStringForFields + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value{`,
+		`Kind:` + fmt.Sprintf("%v", this.Kind) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_NullValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_NullValue{`,
+		`NullValue:` + fmt.Sprintf("%v", this.NullValue) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_NumberValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_NumberValue{`,
+		`NumberValue:` + fmt.Sprintf("%v", this.NumberValue) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_StringValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_StringValue{`,
+		`StringValue:` + fmt.Sprintf("%v", this.StringValue) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_BoolValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_BoolValue{`,
+		`BoolValue:` + fmt.Sprintf("%v", this.BoolValue) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_StructValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_StructValue{`,
+		`StructValue:` + strings.Replace(fmt.Sprintf("%v", this.StructValue), "Struct", "Struct", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Value_ListValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Value_ListValue{`,
+		`ListValue:` + strings.Replace(fmt.Sprintf("%v", this.ListValue), "ListValue", "ListValue", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *ListValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&ListValue{`,
+		`Values:` + strings.Replace(fmt.Sprintf("%v", this.Values), "Value", "Value", 1) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringStruct(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Struct) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowStruct
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Struct: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Struct: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Fields", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthStruct
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Fields == nil {
+				m.Fields = make(map[string]*Value)
+			}
+			var mapkey string
+			var mapvalue *Value
+			for iNdEx < postIndex {
+				entryPreIndex := iNdEx
+				var wire uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowStruct
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					wire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				fieldNum := int32(wire >> 3)
+				if fieldNum == 1 {
+					var stringLenmapkey uint64
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowStruct
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						stringLenmapkey |= (uint64(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					intStringLenmapkey := int(stringLenmapkey)
+					if intStringLenmapkey < 0 {
+						return ErrInvalidLengthStruct
+					}
+					postStringIndexmapkey := iNdEx + intStringLenmapkey
+					if postStringIndexmapkey > l {
+						return io.ErrUnexpectedEOF
+					}
+					mapkey = string(dAtA[iNdEx:postStringIndexmapkey])
+					iNdEx = postStringIndexmapkey
+				} else if fieldNum == 2 {
+					var mapmsglen int
+					for shift := uint(0); ; shift += 7 {
+						if shift >= 64 {
+							return ErrIntOverflowStruct
+						}
+						if iNdEx >= l {
+							return io.ErrUnexpectedEOF
+						}
+						b := dAtA[iNdEx]
+						iNdEx++
+						mapmsglen |= (int(b) & 0x7F) << shift
+						if b < 0x80 {
+							break
+						}
+					}
+					if mapmsglen < 0 {
+						return ErrInvalidLengthStruct
+					}
+					postmsgIndex := iNdEx + mapmsglen
+					if mapmsglen < 0 {
+						return ErrInvalidLengthStruct
+					}
+					if postmsgIndex > l {
+						return io.ErrUnexpectedEOF
+					}
+					mapvalue = &Value{}
+					if err := mapvalue.Unmarshal(dAtA[iNdEx:postmsgIndex]); err != nil {
+						return err
+					}
+					iNdEx = postmsgIndex
+				} else {
+					iNdEx = entryPreIndex
+					skippy, err := skipStruct(dAtA[iNdEx:])
+					if err != nil {
+						return err
+					}
+					if skippy < 0 {
+						return ErrInvalidLengthStruct
+					}
+					if (iNdEx + skippy) > postIndex {
+						return io.ErrUnexpectedEOF
+					}
+					iNdEx += skippy
+				}
+			}
+			m.Fields[mapkey] = mapvalue
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipStruct(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthStruct
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Value) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowStruct
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Value: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Value: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NullValue", wireType)
+			}
+			var v NullValue
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (NullValue(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Kind = &Value_NullValue{v}
+		case 2:
+			if wireType != 1 {
+				return fmt.Errorf("proto: wrong wireType = %d for field NumberValue", wireType)
+			}
+			var v uint64
+			if (iNdEx + 8) > l {
+				return io.ErrUnexpectedEOF
+			}
+			v = uint64(binary.LittleEndian.Uint64(dAtA[iNdEx:]))
+			iNdEx += 8
+			m.Kind = &Value_NumberValue{float64(math.Float64frombits(v))}
+		case 3:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StringValue", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthStruct
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Kind = &Value_StringValue{string(dAtA[iNdEx:postIndex])}
+			iNdEx = postIndex
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field BoolValue", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			b := bool(v != 0)
+			m.Kind = &Value_BoolValue{b}
+		case 5:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field StructValue", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthStruct
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &Struct{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Kind = &Value_StructValue{v}
+			iNdEx = postIndex
+		case 6:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ListValue", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthStruct
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			v := &ListValue{}
+			if err := v.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			m.Kind = &Value_ListValue{v}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipStruct(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthStruct
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *ListValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowStruct
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: ListValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: ListValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Values", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthStruct
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Values = append(m.Values, &Value{})
+			if err := m.Values[len(m.Values)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipStruct(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthStruct
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipStruct(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowStruct
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowStruct
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthStruct
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowStruct
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipStruct(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthStruct = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowStruct   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("struct.proto", fileDescriptorStruct) }
+
+var fileDescriptorStruct = []byte{
+	// 432 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0x74, 0x91, 0xb1, 0x6f, 0xd3, 0x40,
+	0x14, 0xc6, 0xfd, 0x9c, 0xc6, 0x22, 0xcf, 0x55, 0xa9, 0x0e, 0x09, 0xa2, 0x22, 0x1d, 0x51, 0xba,
+	0x58, 0x08, 0x79, 0x08, 0x0b, 0x22, 0x2c, 0x58, 0x2a, 0xad, 0x84, 0x55, 0x19, 0x43, 0x8b, 0xc4,
+	0x12, 0xe1, 0xd4, 0x8d, 0xac, 0x5e, 0xef, 0x2a, 0xfb, 0x0c, 0xca, 0x06, 0xff, 0x05, 0x33, 0x13,
+	0x62, 0xe4, 0xaf, 0x60, 0xec, 0xc8, 0x88, 0x3d, 0x31, 0x76, 0xec, 0x88, 0xee, 0xce, 0x36, 0xa8,
+	0x51, 0x36, 0xbf, 0xcf, 0xbf, 0xf7, 0xbd, 0xf7, 0xbd, 0xc3, 0xcd, 0x42, 0xe6, 0xe5, 0x5c, 0xfa,
+	0x17, 0xb9, 0x90, 0x82, 0xdc, 0x5e, 0x08, 0xb1, 0x60, 0xa9, 0xa9, 0x92, 0xf2, 0x74, 0xfc, 0x05,
+	0xd0, 0x79, 0xad, 0x09, 0x32, 0x45, 0xe7, 0x34, 0x4b, 0xd9, 0x49, 0x31, 0x84, 0x51, 0xcf, 0x73,
+	0x27, 0xbb, 0xfe, 0x0d, 0xd8, 0x37, 0xa0, 0xff, 0x42, 0x53, 0x7b, 0x5c, 0xe6, 0xcb, 0xb8, 0x69,
+	0xd9, 0x79, 0x85, 0xee, 0x7f, 0x32, 0xd9, 0xc6, 0xde, 0x59, 0xba, 0x1c, 0xc2, 0x08, 0xbc, 0x41,
+	0xac, 0x3e, 0xc9, 0x23, 0xec, 0x7f, 0x78, 0xcf, 0xca, 0x74, 0x68, 0x8f, 0xc0, 0x73, 0x27, 0x77,
+	0x57, 0xcc, 0x8f, 0xd5, 0xdf, 0xd8, 0x40, 0x4f, 0xed, 0x27, 0x30, 0xfe, 0x61, 0x63, 0x5f, 0x8b,
+	0x64, 0x8a, 0xc8, 0x4b, 0xc6, 0x66, 0xc6, 0x40, 0x99, 0x6e, 0x4d, 0x76, 0x56, 0x0c, 0x0e, 0x4b,
+	0xc6, 0x34, 0x7f, 0x60, 0xc5, 0x03, 0xde, 0x16, 0x64, 0x17, 0x37, 0x79, 0x79, 0x9e, 0xa4, 0xf9,
+	0xec, 0xdf, 0x7c, 0x38, 0xb0, 0x62, 0xd7, 0xa8, 0x1d, 0x54, 0xc8, 0x3c, 0xe3, 0x8b, 0x06, 0xea,
+	0xa9, 0xc5, 0x15, 0x64, 0x54, 0x03, 0x3d, 0x40, 0x4c, 0x84, 0x68, 0xd7, 0xd8, 0x18, 0x81, 0x77,
+	0x4b, 0x8d, 0x52, 0x9a, 0x01, 0x9e, 0xb5, 0xd7, 0x6e, 0x90, 0xbe, 0x8e, 0x7a, 0x6f, 0xcd, 0x1d,
+	0x1b, 0xfb, 0x72, 0x2e, 0xbb, 0x94, 0x2c, 0x2b, 0xda, 0x5e, 0x47, 0xf7, 0xae, 0xa6, 0x0c, 0xb3,
+	0x42, 0x76, 0x29, 0x59, 0x5b, 0x04, 0x0e, 0x6e, 0x9c, 0x65, 0xfc, 0x64, 0x3c, 0xc5, 0x41, 0x47,
+	0x10, 0x1f, 0x1d, 0x6d, 0xd6, 0xbe, 0xe8, 0xba, 0xa3, 0x37, 0xd4, 0xc3, 0xfb, 0x38, 0xe8, 0x8e,
+	0x48, 0xb6, 0x10, 0x0f, 0x8f, 0xc2, 0x70, 0x76, 0xfc, 0x3c, 0x3c, 0xda, 0xdb, 0xb6, 0x82, 0xcf,
+	0x70, 0x59, 0x51, 0xeb, 0x57, 0x45, 0xad, 0xab, 0x8a, 0xc2, 0x75, 0x45, 0xe1, 0x53, 0x4d, 0xe1,
+	0x5b, 0x4d, 0xe1, 0x67, 0x4d, 0xe1, 0xb2, 0xa6, 0xf0, 0xbb, 0xa6, 0xf0, 0xa7, 0xa6, 0xd6, 0x55,
+	0x4d, 0x01, 0xef, 0xcc, 0xc5, 0xf9, 0xcd, 0x71, 0x81, 0x6b, 0x92, 0x47, 0xaa, 0x8e, 0xe0, 0x5d,
+	0x5f, 0x2e, 0x2f, 0xd2, 0xe2, 0x1a, 0xe0, 0xab, 0xdd, 0xdb, 0x8f, 0x82, 0xef, 0x36, 0xdd, 0x37,
+	0x0d, 0x51, 0xbb, 0xdf, 0xdb, 0x94, 0xb1, 0x97, 0x5c, 0x7c, 0xe4, 0x6f, 0x14, 0x99, 0x38, 0xda,
+	0xe9, 0xf1, 0xdf, 0x00, 0x00, 0x00, 0xff, 0xff, 0x75, 0xc5, 0x1c, 0x3b, 0xd5, 0x02, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/timestamp.go b/vendor/github.com/gogo/protobuf/types/timestamp.go
new file mode 100644
index 0000000000..7ae54d8b3f
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/timestamp.go
@@ -0,0 +1,132 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package types
+
+// This file implements operations on google.protobuf.Timestamp.
+
+import (
+	"errors"
+	"fmt"
+	"time"
+)
+
+const (
+	// Seconds field of the earliest valid Timestamp.
+	// This is time.Date(1, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
+	minValidSeconds = -62135596800
+	// Seconds field just after the latest valid Timestamp.
+	// This is time.Date(10000, 1, 1, 0, 0, 0, 0, time.UTC).Unix().
+	maxValidSeconds = 253402300800
+)
+
+// validateTimestamp determines whether a Timestamp is valid.
+// A valid timestamp represents a time in the range
+// [0001-01-01, 10000-01-01) and has a Nanos field
+// in the range [0, 1e9).
+//
+// If the Timestamp is valid, validateTimestamp returns nil.
+// Otherwise, it returns an error that describes
+// the problem.
+//
+// Every valid Timestamp can be represented by a time.Time, but the converse is not true.
+func validateTimestamp(ts *Timestamp) error {
+	if ts == nil {
+		return errors.New("timestamp: nil Timestamp")
+	}
+	if ts.Seconds < minValidSeconds {
+		return fmt.Errorf("timestamp: %#v before 0001-01-01", ts)
+	}
+	if ts.Seconds >= maxValidSeconds {
+		return fmt.Errorf("timestamp: %#v after 10000-01-01", ts)
+	}
+	if ts.Nanos < 0 || ts.Nanos >= 1e9 {
+		return fmt.Errorf("timestamp: %#v: nanos not in range [0, 1e9)", ts)
+	}
+	return nil
+}
+
+// TimestampFromProto converts a google.protobuf.Timestamp proto to a time.Time.
+// It returns an error if the argument is invalid.
+//
+// Unlike most Go functions, if Timestamp returns an error, the first return value
+// is not the zero time.Time. Instead, it is the value obtained from the
+// time.Unix function when passed the contents of the Timestamp, in the UTC
+// locale. This may or may not be a meaningful time; many invalid Timestamps
+// do map to valid time.Times.
+//
+// A nil Timestamp returns an error. The first return value in that case is
+// undefined.
+func TimestampFromProto(ts *Timestamp) (time.Time, error) {
+	// Don't return the zero value on error, because corresponds to a valid
+	// timestamp. Instead return whatever time.Unix gives us.
+	var t time.Time
+	if ts == nil {
+		t = time.Unix(0, 0).UTC() // treat nil like the empty Timestamp
+	} else {
+		t = time.Unix(ts.Seconds, int64(ts.Nanos)).UTC()
+	}
+	return t, validateTimestamp(ts)
+}
+
+// TimestampNow returns a google.protobuf.Timestamp for the current time.
+func TimestampNow() *Timestamp {
+	ts, err := TimestampProto(time.Now())
+	if err != nil {
+		panic("ptypes: time.Now() out of Timestamp range")
+	}
+	return ts
+}
+
+// TimestampProto converts the time.Time to a google.protobuf.Timestamp proto.
+// It returns an error if the resulting Timestamp is invalid.
+func TimestampProto(t time.Time) (*Timestamp, error) {
+	seconds := t.Unix()
+	nanos := int32(t.Sub(time.Unix(seconds, 0)))
+	ts := &Timestamp{
+		Seconds: seconds,
+		Nanos:   nanos,
+	}
+	if err := validateTimestamp(ts); err != nil {
+		return nil, err
+	}
+	return ts, nil
+}
+
+// TimestampString returns the RFC 3339 string for valid Timestamps. For invalid
+// Timestamps, it returns an error message in parentheses.
+func TimestampString(ts *Timestamp) string {
+	t, err := TimestampFromProto(ts)
+	if err != nil {
+		return fmt.Sprintf("(%v)", err)
+	}
+	return t.Format(time.RFC3339Nano)
+}
diff --git a/vendor/github.com/gogo/protobuf/types/timestamp.pb.go b/vendor/github.com/gogo/protobuf/types/timestamp.pb.go
new file mode 100644
index 0000000000..41b18f941f
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/timestamp.pb.go
@@ -0,0 +1,504 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: timestamp.proto
+
+/*
+	Package types is a generated protocol buffer package.
+
+	It is generated from these files:
+		timestamp.proto
+
+	It has these top-level messages:
+		Timestamp
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// A Timestamp represents a point in time independent of any time zone
+// or calendar, represented as seconds and fractions of seconds at
+// nanosecond resolution in UTC Epoch time. It is encoded using the
+// Proleptic Gregorian Calendar which extends the Gregorian calendar
+// backwards to year one. It is encoded assuming all minutes are 60
+// seconds long, i.e. leap seconds are "smeared" so that no leap second
+// table is needed for interpretation. Range is from
+// 0001-01-01T00:00:00Z to 9999-12-31T23:59:59.999999999Z.
+// By restricting to that range, we ensure that we can convert to
+// and from  RFC 3339 date strings.
+// See [https://www.ietf.org/rfc/rfc3339.txt](https://www.ietf.org/rfc/rfc3339.txt).
+//
+// # Examples
+//
+// Example 1: Compute Timestamp from POSIX `time()`.
+//
+//     Timestamp timestamp;
+//     timestamp.set_seconds(time(NULL));
+//     timestamp.set_nanos(0);
+//
+// Example 2: Compute Timestamp from POSIX `gettimeofday()`.
+//
+//     struct timeval tv;
+//     gettimeofday(&tv, NULL);
+//
+//     Timestamp timestamp;
+//     timestamp.set_seconds(tv.tv_sec);
+//     timestamp.set_nanos(tv.tv_usec * 1000);
+//
+// Example 3: Compute Timestamp from Win32 `GetSystemTimeAsFileTime()`.
+//
+//     FILETIME ft;
+//     GetSystemTimeAsFileTime(&ft);
+//     UINT64 ticks = (((UINT64)ft.dwHighDateTime) << 32) | ft.dwLowDateTime;
+//
+//     // A Windows tick is 100 nanoseconds. Windows epoch 1601-01-01T00:00:00Z
+//     // is 11644473600 seconds before Unix epoch 1970-01-01T00:00:00Z.
+//     Timestamp timestamp;
+//     timestamp.set_seconds((INT64) ((ticks / 10000000) - 11644473600LL));
+//     timestamp.set_nanos((INT32) ((ticks % 10000000) * 100));
+//
+// Example 4: Compute Timestamp from Java `System.currentTimeMillis()`.
+//
+//     long millis = System.currentTimeMillis();
+//
+//     Timestamp timestamp = Timestamp.newBuilder().setSeconds(millis / 1000)
+//         .setNanos((int) ((millis % 1000) * 1000000)).build();
+//
+//
+// Example 5: Compute Timestamp from current time in Python.
+//
+//     timestamp = Timestamp()
+//     timestamp.GetCurrentTime()
+//
+// # JSON Mapping
+//
+// In JSON format, the Timestamp type is encoded as a string in the
+// [RFC 3339](https://www.ietf.org/rfc/rfc3339.txt) format. That is, the
+// format is "{year}-{month}-{day}T{hour}:{min}:{sec}[.{frac_sec}]Z"
+// where {year} is always expressed using four digits while {month}, {day},
+// {hour}, {min}, and {sec} are zero-padded to two digits each. The fractional
+// seconds, which can go up to 9 digits (i.e. up to 1 nanosecond resolution),
+// are optional. The "Z" suffix indicates the timezone ("UTC"); the timezone
+// is required, though only UTC (as indicated by "Z") is presently supported.
+//
+// For example, "2017-01-15T01:30:15.01Z" encodes 15.01 seconds past
+// 01:30 UTC on January 15, 2017.
+//
+// In JavaScript, one can convert a Date object to this format using the
+// standard [toISOString()](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Date/toISOString]
+// method. In Python, a standard `datetime.datetime` object can be converted
+// to this format using [`strftime`](https://docs.python.org/2/library/time.html#time.strftime)
+// with the time format spec '%Y-%m-%dT%H:%M:%S.%fZ'. Likewise, in Java, one
+// can use the Joda Time's [`ISODateTimeFormat.dateTime()`](
+// http://joda-time.sourceforge.net/apidocs/org/joda/time/format/ISODateTimeFormat.html#dateTime())
+// to obtain a formatter capable of generating timestamps in this format.
+//
+//
+type Timestamp struct {
+	// Represents seconds of UTC time since Unix epoch
+	// 1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to
+	// 9999-12-31T23:59:59Z inclusive.
+	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
+	// Non-negative fractions of a second at nanosecond resolution. Negative
+	// second values with fractions must still have non-negative nanos values
+	// that count forward in time. Must be from 0 to 999,999,999
+	// inclusive.
+	Nanos int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
+}
+
+func (m *Timestamp) Reset()                    { *m = Timestamp{} }
+func (*Timestamp) ProtoMessage()               {}
+func (*Timestamp) Descriptor() ([]byte, []int) { return fileDescriptorTimestamp, []int{0} }
+func (*Timestamp) XXX_WellKnownType() string   { return "Timestamp" }
+
+func (m *Timestamp) GetSeconds() int64 {
+	if m != nil {
+		return m.Seconds
+	}
+	return 0
+}
+
+func (m *Timestamp) GetNanos() int32 {
+	if m != nil {
+		return m.Nanos
+	}
+	return 0
+}
+
+func init() {
+	proto.RegisterType((*Timestamp)(nil), "google.protobuf.Timestamp")
+}
+func (this *Timestamp) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Timestamp)
+	if !ok {
+		that2, ok := that.(Timestamp)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Seconds != that1.Seconds {
+		if this.Seconds < that1.Seconds {
+			return -1
+		}
+		return 1
+	}
+	if this.Nanos != that1.Nanos {
+		if this.Nanos < that1.Nanos {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *Timestamp) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Timestamp)
+	if !ok {
+		that2, ok := that.(Timestamp)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Seconds != that1.Seconds {
+		return false
+	}
+	if this.Nanos != that1.Nanos {
+		return false
+	}
+	return true
+}
+func (this *Timestamp) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 6)
+	s = append(s, "&types.Timestamp{")
+	s = append(s, "Seconds: "+fmt.Sprintf("%#v", this.Seconds)+",\n")
+	s = append(s, "Nanos: "+fmt.Sprintf("%#v", this.Nanos)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringTimestamp(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Timestamp) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Timestamp) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Seconds != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintTimestamp(dAtA, i, uint64(m.Seconds))
+	}
+	if m.Nanos != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintTimestamp(dAtA, i, uint64(m.Nanos))
+	}
+	return i, nil
+}
+
+func encodeVarintTimestamp(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *Timestamp) Size() (n int) {
+	var l int
+	_ = l
+	if m.Seconds != 0 {
+		n += 1 + sovTimestamp(uint64(m.Seconds))
+	}
+	if m.Nanos != 0 {
+		n += 1 + sovTimestamp(uint64(m.Nanos))
+	}
+	return n
+}
+
+func sovTimestamp(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozTimestamp(x uint64) (n int) {
+	return sovTimestamp(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (m *Timestamp) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowTimestamp
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Timestamp: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Timestamp: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Seconds", wireType)
+			}
+			m.Seconds = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTimestamp
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Seconds |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Nanos", wireType)
+			}
+			m.Nanos = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowTimestamp
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Nanos |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipTimestamp(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthTimestamp
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipTimestamp(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowTimestamp
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTimestamp
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowTimestamp
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthTimestamp
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowTimestamp
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipTimestamp(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthTimestamp = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowTimestamp   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("timestamp.proto", fileDescriptorTimestamp) }
+
+var fileDescriptorTimestamp = []byte{
+	// 205 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x2f, 0xc9, 0xcc, 0x4d,
+	0x2d, 0x2e, 0x49, 0xcc, 0x2d, 0xd0, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf, 0xcf,
+	0x4f, 0xcf, 0x49, 0x85, 0xf0, 0x92, 0x4a, 0xd3, 0x94, 0xac, 0xb9, 0x38, 0x43, 0x60, 0x6a, 0x84,
+	0x24, 0xb8, 0xd8, 0x8b, 0x53, 0x93, 0xf3, 0xf3, 0x52, 0x8a, 0x25, 0x18, 0x15, 0x18, 0x35, 0x98,
+	0x83, 0x60, 0x5c, 0x21, 0x11, 0x2e, 0xd6, 0xbc, 0xc4, 0xbc, 0xfc, 0x62, 0x09, 0x26, 0x05, 0x46,
+	0x0d, 0xd6, 0x20, 0x08, 0xc7, 0xa9, 0x81, 0xf1, 0xc2, 0x43, 0x39, 0x86, 0x1b, 0x0f, 0xe5, 0x18,
+	0x3e, 0x3c, 0x94, 0x63, 0x5c, 0xf1, 0x48, 0x8e, 0xf1, 0xc4, 0x23, 0x39, 0xc6, 0x0b, 0x8f, 0xe4,
+	0x18, 0x1f, 0x3c, 0x92, 0x63, 0x7c, 0xf1, 0x48, 0x8e, 0xe1, 0xc3, 0x23, 0x39, 0xc6, 0x15, 0x8f,
+	0xe5, 0x18, 0xb9, 0x84, 0x93, 0xf3, 0x73, 0xf5, 0xd0, 0x2c, 0x77, 0xe2, 0x83, 0x5b, 0x1d, 0x00,
+	0x12, 0x0a, 0x60, 0x8c, 0x62, 0x2d, 0xa9, 0x2c, 0x48, 0x2d, 0xfe, 0xc1, 0xc8, 0xb8, 0x88, 0x89,
+	0xd9, 0x3d, 0xc0, 0x69, 0x15, 0x93, 0x9c, 0x3b, 0x44, 0x4f, 0x00, 0x54, 0x8f, 0x5e, 0x78, 0x6a,
+	0x4e, 0x8e, 0x77, 0x5e, 0x7e, 0x79, 0x5e, 0x08, 0x48, 0x65, 0x12, 0x1b, 0xd8, 0x30, 0x63, 0x40,
+	0x00, 0x00, 0x00, 0xff, 0xff, 0x9b, 0xa2, 0x42, 0xda, 0xea, 0x00, 0x00, 0x00,
+}
diff --git a/vendor/github.com/gogo/protobuf/types/timestamp_gogo.go b/vendor/github.com/gogo/protobuf/types/timestamp_gogo.go
new file mode 100644
index 0000000000..e03fa13158
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/timestamp_gogo.go
@@ -0,0 +1,94 @@
+// Protocol Buffers for Go with Gadgets
+//
+// Copyright (c) 2016, The GoGo Authors. All rights reserved.
+// http://github.com/gogo/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package types
+
+import (
+	"time"
+)
+
+func NewPopulatedTimestamp(r interface {
+	Int63() int64
+}, easy bool) *Timestamp {
+	this := &Timestamp{}
+	ns := int64(r.Int63())
+	this.Seconds = ns / 1e9
+	this.Nanos = int32(ns % 1e9)
+	return this
+}
+
+func (ts *Timestamp) String() string {
+	return TimestampString(ts)
+}
+
+func NewPopulatedStdTime(r interface {
+	Int63() int64
+}, easy bool) *time.Time {
+	timestamp := NewPopulatedTimestamp(r, easy)
+	t, err := TimestampFromProto(timestamp)
+	if err != nil {
+		return nil
+	}
+	return &t
+}
+
+func SizeOfStdTime(t time.Time) int {
+	ts, err := TimestampProto(t)
+	if err != nil {
+		return 0
+	}
+	return ts.Size()
+}
+
+func StdTimeMarshal(t time.Time) ([]byte, error) {
+	size := SizeOfStdTime(t)
+	buf := make([]byte, size)
+	_, err := StdTimeMarshalTo(t, buf)
+	return buf, err
+}
+
+func StdTimeMarshalTo(t time.Time, data []byte) (int, error) {
+	ts, err := TimestampProto(t)
+	if err != nil {
+		return 0, err
+	}
+	return ts.MarshalTo(data)
+}
+
+func StdTimeUnmarshal(t *time.Time, data []byte) error {
+	ts := &Timestamp{}
+	if err := ts.Unmarshal(data); err != nil {
+		return err
+	}
+	tt, err := TimestampFromProto(ts)
+	if err != nil {
+		return err
+	}
+	*t = tt
+	return nil
+}
diff --git a/vendor/github.com/gogo/protobuf/types/wrappers.pb.go b/vendor/github.com/gogo/protobuf/types/wrappers.pb.go
new file mode 100644
index 0000000000..18b384ea35
--- /dev/null
+++ b/vendor/github.com/gogo/protobuf/types/wrappers.pb.go
@@ -0,0 +1,2180 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: wrappers.proto
+
+/*
+Package types is a generated protocol buffer package.
+
+It is generated from these files:
+	wrappers.proto
+
+It has these top-level messages:
+	DoubleValue
+	FloatValue
+	Int64Value
+	UInt64Value
+	Int32Value
+	UInt32Value
+	BoolValue
+	StringValue
+	BytesValue
+*/
+package types
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import bytes "bytes"
+
+import strings "strings"
+import reflect "reflect"
+
+import binary "encoding/binary"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// Wrapper message for `double`.
+//
+// The JSON representation for `DoubleValue` is JSON number.
+type DoubleValue struct {
+	// The double value.
+	Value float64 `protobuf:"fixed64,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *DoubleValue) Reset()                    { *m = DoubleValue{} }
+func (*DoubleValue) ProtoMessage()               {}
+func (*DoubleValue) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{0} }
+func (*DoubleValue) XXX_WellKnownType() string   { return "DoubleValue" }
+
+func (m *DoubleValue) GetValue() float64 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `float`.
+//
+// The JSON representation for `FloatValue` is JSON number.
+type FloatValue struct {
+	// The float value.
+	Value float32 `protobuf:"fixed32,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *FloatValue) Reset()                    { *m = FloatValue{} }
+func (*FloatValue) ProtoMessage()               {}
+func (*FloatValue) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{1} }
+func (*FloatValue) XXX_WellKnownType() string   { return "FloatValue" }
+
+func (m *FloatValue) GetValue() float32 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `int64`.
+//
+// The JSON representation for `Int64Value` is JSON string.
+type Int64Value struct {
+	// The int64 value.
+	Value int64 `protobuf:"varint,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *Int64Value) Reset()                    { *m = Int64Value{} }
+func (*Int64Value) ProtoMessage()               {}
+func (*Int64Value) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{2} }
+func (*Int64Value) XXX_WellKnownType() string   { return "Int64Value" }
+
+func (m *Int64Value) GetValue() int64 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `uint64`.
+//
+// The JSON representation for `UInt64Value` is JSON string.
+type UInt64Value struct {
+	// The uint64 value.
+	Value uint64 `protobuf:"varint,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *UInt64Value) Reset()                    { *m = UInt64Value{} }
+func (*UInt64Value) ProtoMessage()               {}
+func (*UInt64Value) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{3} }
+func (*UInt64Value) XXX_WellKnownType() string   { return "UInt64Value" }
+
+func (m *UInt64Value) GetValue() uint64 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `int32`.
+//
+// The JSON representation for `Int32Value` is JSON number.
+type Int32Value struct {
+	// The int32 value.
+	Value int32 `protobuf:"varint,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *Int32Value) Reset()                    { *m = Int32Value{} }
+func (*Int32Value) ProtoMessage()               {}
+func (*Int32Value) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{4} }
+func (*Int32Value) XXX_WellKnownType() string   { return "Int32Value" }
+
+func (m *Int32Value) GetValue() int32 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `uint32`.
+//
+// The JSON representation for `UInt32Value` is JSON number.
+type UInt32Value struct {
+	// The uint32 value.
+	Value uint32 `protobuf:"varint,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *UInt32Value) Reset()                    { *m = UInt32Value{} }
+func (*UInt32Value) ProtoMessage()               {}
+func (*UInt32Value) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{5} }
+func (*UInt32Value) XXX_WellKnownType() string   { return "UInt32Value" }
+
+func (m *UInt32Value) GetValue() uint32 {
+	if m != nil {
+		return m.Value
+	}
+	return 0
+}
+
+// Wrapper message for `bool`.
+//
+// The JSON representation for `BoolValue` is JSON `true` and `false`.
+type BoolValue struct {
+	// The bool value.
+	Value bool `protobuf:"varint,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *BoolValue) Reset()                    { *m = BoolValue{} }
+func (*BoolValue) ProtoMessage()               {}
+func (*BoolValue) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{6} }
+func (*BoolValue) XXX_WellKnownType() string   { return "BoolValue" }
+
+func (m *BoolValue) GetValue() bool {
+	if m != nil {
+		return m.Value
+	}
+	return false
+}
+
+// Wrapper message for `string`.
+//
+// The JSON representation for `StringValue` is JSON string.
+type StringValue struct {
+	// The string value.
+	Value string `protobuf:"bytes,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *StringValue) Reset()                    { *m = StringValue{} }
+func (*StringValue) ProtoMessage()               {}
+func (*StringValue) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{7} }
+func (*StringValue) XXX_WellKnownType() string   { return "StringValue" }
+
+func (m *StringValue) GetValue() string {
+	if m != nil {
+		return m.Value
+	}
+	return ""
+}
+
+// Wrapper message for `bytes`.
+//
+// The JSON representation for `BytesValue` is JSON string.
+type BytesValue struct {
+	// The bytes value.
+	Value []byte `protobuf:"bytes,1,opt,name=value,proto3" json:"value,omitempty"`
+}
+
+func (m *BytesValue) Reset()                    { *m = BytesValue{} }
+func (*BytesValue) ProtoMessage()               {}
+func (*BytesValue) Descriptor() ([]byte, []int) { return fileDescriptorWrappers, []int{8} }
+func (*BytesValue) XXX_WellKnownType() string   { return "BytesValue" }
+
+func (m *BytesValue) GetValue() []byte {
+	if m != nil {
+		return m.Value
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*DoubleValue)(nil), "google.protobuf.DoubleValue")
+	proto.RegisterType((*FloatValue)(nil), "google.protobuf.FloatValue")
+	proto.RegisterType((*Int64Value)(nil), "google.protobuf.Int64Value")
+	proto.RegisterType((*UInt64Value)(nil), "google.protobuf.UInt64Value")
+	proto.RegisterType((*Int32Value)(nil), "google.protobuf.Int32Value")
+	proto.RegisterType((*UInt32Value)(nil), "google.protobuf.UInt32Value")
+	proto.RegisterType((*BoolValue)(nil), "google.protobuf.BoolValue")
+	proto.RegisterType((*StringValue)(nil), "google.protobuf.StringValue")
+	proto.RegisterType((*BytesValue)(nil), "google.protobuf.BytesValue")
+}
+func (this *DoubleValue) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*DoubleValue)
+	if !ok {
+		that2, ok := that.(DoubleValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *FloatValue) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*FloatValue)
+	if !ok {
+		that2, ok := that.(FloatValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *Int64Value) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Int64Value)
+	if !ok {
+		that2, ok := that.(Int64Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *UInt64Value) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*UInt64Value)
+	if !ok {
+		that2, ok := that.(UInt64Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *Int32Value) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*Int32Value)
+	if !ok {
+		that2, ok := that.(Int32Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *UInt32Value) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*UInt32Value)
+	if !ok {
+		that2, ok := that.(UInt32Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *BoolValue) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*BoolValue)
+	if !ok {
+		that2, ok := that.(BoolValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if !this.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *StringValue) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*StringValue)
+	if !ok {
+		that2, ok := that.(StringValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if this.Value != that1.Value {
+		if this.Value < that1.Value {
+			return -1
+		}
+		return 1
+	}
+	return 0
+}
+func (this *BytesValue) Compare(that interface{}) int {
+	if that == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	}
+
+	that1, ok := that.(*BytesValue)
+	if !ok {
+		that2, ok := that.(BytesValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return 1
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return 0
+		}
+		return 1
+	} else if this == nil {
+		return -1
+	}
+	if c := bytes.Compare(this.Value, that1.Value); c != 0 {
+		return c
+	}
+	return 0
+}
+func (this *DoubleValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*DoubleValue)
+	if !ok {
+		that2, ok := that.(DoubleValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *FloatValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*FloatValue)
+	if !ok {
+		that2, ok := that.(FloatValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *Int64Value) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Int64Value)
+	if !ok {
+		that2, ok := that.(Int64Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *UInt64Value) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*UInt64Value)
+	if !ok {
+		that2, ok := that.(UInt64Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *Int32Value) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*Int32Value)
+	if !ok {
+		that2, ok := that.(Int32Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *UInt32Value) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*UInt32Value)
+	if !ok {
+		that2, ok := that.(UInt32Value)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *BoolValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*BoolValue)
+	if !ok {
+		that2, ok := that.(BoolValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *StringValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*StringValue)
+	if !ok {
+		that2, ok := that.(StringValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if this.Value != that1.Value {
+		return false
+	}
+	return true
+}
+func (this *BytesValue) Equal(that interface{}) bool {
+	if that == nil {
+		return this == nil
+	}
+
+	that1, ok := that.(*BytesValue)
+	if !ok {
+		that2, ok := that.(BytesValue)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		return this == nil
+	} else if this == nil {
+		return false
+	}
+	if !bytes.Equal(this.Value, that1.Value) {
+		return false
+	}
+	return true
+}
+func (this *DoubleValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.DoubleValue{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *FloatValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.FloatValue{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *Int64Value) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.Int64Value{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *UInt64Value) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.UInt64Value{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *Int32Value) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.Int32Value{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *UInt32Value) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.UInt32Value{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *BoolValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.BoolValue{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *StringValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.StringValue{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func (this *BytesValue) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&types.BytesValue{")
+	s = append(s, "Value: "+fmt.Sprintf("%#v", this.Value)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringWrappers(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *DoubleValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *DoubleValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0x9
+		i++
+		binary.LittleEndian.PutUint64(dAtA[i:], uint64(math.Float64bits(float64(m.Value))))
+		i += 8
+	}
+	return i, nil
+}
+
+func (m *FloatValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *FloatValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0xd
+		i++
+		binary.LittleEndian.PutUint32(dAtA[i:], uint32(math.Float32bits(float32(m.Value))))
+		i += 4
+	}
+	return i, nil
+}
+
+func (m *Int64Value) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Int64Value) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(m.Value))
+	}
+	return i, nil
+}
+
+func (m *UInt64Value) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UInt64Value) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(m.Value))
+	}
+	return i, nil
+}
+
+func (m *Int32Value) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Int32Value) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(m.Value))
+	}
+	return i, nil
+}
+
+func (m *UInt32Value) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *UInt32Value) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(m.Value))
+	}
+	return i, nil
+}
+
+func (m *BoolValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *BoolValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Value {
+		dAtA[i] = 0x8
+		i++
+		if m.Value {
+			dAtA[i] = 1
+		} else {
+			dAtA[i] = 0
+		}
+		i++
+	}
+	return i, nil
+}
+
+func (m *StringValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *StringValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Value) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func (m *BytesValue) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *BytesValue) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Value) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintWrappers(dAtA, i, uint64(len(m.Value)))
+		i += copy(dAtA[i:], m.Value)
+	}
+	return i, nil
+}
+
+func encodeVarintWrappers(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func NewPopulatedDoubleValue(r randyWrappers, easy bool) *DoubleValue {
+	this := &DoubleValue{}
+	this.Value = float64(r.Float64())
+	if r.Intn(2) == 0 {
+		this.Value *= -1
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedFloatValue(r randyWrappers, easy bool) *FloatValue {
+	this := &FloatValue{}
+	this.Value = float32(r.Float32())
+	if r.Intn(2) == 0 {
+		this.Value *= -1
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedInt64Value(r randyWrappers, easy bool) *Int64Value {
+	this := &Int64Value{}
+	this.Value = int64(r.Int63())
+	if r.Intn(2) == 0 {
+		this.Value *= -1
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedUInt64Value(r randyWrappers, easy bool) *UInt64Value {
+	this := &UInt64Value{}
+	this.Value = uint64(uint64(r.Uint32()))
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedInt32Value(r randyWrappers, easy bool) *Int32Value {
+	this := &Int32Value{}
+	this.Value = int32(r.Int31())
+	if r.Intn(2) == 0 {
+		this.Value *= -1
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedUInt32Value(r randyWrappers, easy bool) *UInt32Value {
+	this := &UInt32Value{}
+	this.Value = uint32(r.Uint32())
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedBoolValue(r randyWrappers, easy bool) *BoolValue {
+	this := &BoolValue{}
+	this.Value = bool(bool(r.Intn(2) == 0))
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedStringValue(r randyWrappers, easy bool) *StringValue {
+	this := &StringValue{}
+	this.Value = string(randStringWrappers(r))
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+func NewPopulatedBytesValue(r randyWrappers, easy bool) *BytesValue {
+	this := &BytesValue{}
+	v1 := r.Intn(100)
+	this.Value = make([]byte, v1)
+	for i := 0; i < v1; i++ {
+		this.Value[i] = byte(r.Intn(256))
+	}
+	if !easy && r.Intn(10) != 0 {
+	}
+	return this
+}
+
+type randyWrappers interface {
+	Float32() float32
+	Float64() float64
+	Int63() int64
+	Int31() int32
+	Uint32() uint32
+	Intn(n int) int
+}
+
+func randUTF8RuneWrappers(r randyWrappers) rune {
+	ru := r.Intn(62)
+	if ru < 10 {
+		return rune(ru + 48)
+	} else if ru < 36 {
+		return rune(ru + 55)
+	}
+	return rune(ru + 61)
+}
+func randStringWrappers(r randyWrappers) string {
+	v2 := r.Intn(100)
+	tmps := make([]rune, v2)
+	for i := 0; i < v2; i++ {
+		tmps[i] = randUTF8RuneWrappers(r)
+	}
+	return string(tmps)
+}
+func randUnrecognizedWrappers(r randyWrappers, maxFieldNumber int) (dAtA []byte) {
+	l := r.Intn(5)
+	for i := 0; i < l; i++ {
+		wire := r.Intn(4)
+		if wire == 3 {
+			wire = 5
+		}
+		fieldNumber := maxFieldNumber + r.Intn(100)
+		dAtA = randFieldWrappers(dAtA, r, fieldNumber, wire)
+	}
+	return dAtA
+}
+func randFieldWrappers(dAtA []byte, r randyWrappers, fieldNumber int, wire int) []byte {
+	key := uint32(fieldNumber)<<3 | uint32(wire)
+	switch wire {
+	case 0:
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(key))
+		v3 := r.Int63()
+		if r.Intn(2) == 0 {
+			v3 *= -1
+		}
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(v3))
+	case 1:
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	case 2:
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(key))
+		ll := r.Intn(100)
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(ll))
+		for j := 0; j < ll; j++ {
+			dAtA = append(dAtA, byte(r.Intn(256)))
+		}
+	default:
+		dAtA = encodeVarintPopulateWrappers(dAtA, uint64(key))
+		dAtA = append(dAtA, byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)), byte(r.Intn(256)))
+	}
+	return dAtA
+}
+func encodeVarintPopulateWrappers(dAtA []byte, v uint64) []byte {
+	for v >= 1<<7 {
+		dAtA = append(dAtA, uint8(uint64(v)&0x7f|0x80))
+		v >>= 7
+	}
+	dAtA = append(dAtA, uint8(v))
+	return dAtA
+}
+func (m *DoubleValue) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 9
+	}
+	return n
+}
+
+func (m *FloatValue) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 5
+	}
+	return n
+}
+
+func (m *Int64Value) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 1 + sovWrappers(uint64(m.Value))
+	}
+	return n
+}
+
+func (m *UInt64Value) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 1 + sovWrappers(uint64(m.Value))
+	}
+	return n
+}
+
+func (m *Int32Value) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 1 + sovWrappers(uint64(m.Value))
+	}
+	return n
+}
+
+func (m *UInt32Value) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value != 0 {
+		n += 1 + sovWrappers(uint64(m.Value))
+	}
+	return n
+}
+
+func (m *BoolValue) Size() (n int) {
+	var l int
+	_ = l
+	if m.Value {
+		n += 2
+	}
+	return n
+}
+
+func (m *StringValue) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovWrappers(uint64(l))
+	}
+	return n
+}
+
+func (m *BytesValue) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Value)
+	if l > 0 {
+		n += 1 + l + sovWrappers(uint64(l))
+	}
+	return n
+}
+
+func sovWrappers(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozWrappers(x uint64) (n int) {
+	return sovWrappers(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *DoubleValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&DoubleValue{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *FloatValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&FloatValue{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Int64Value) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Int64Value{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UInt64Value) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UInt64Value{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *Int32Value) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Int32Value{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *UInt32Value) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&UInt32Value{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *BoolValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&BoolValue{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *StringValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&StringValue{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func (this *BytesValue) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&BytesValue{`,
+		`Value:` + fmt.Sprintf("%v", this.Value) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringWrappers(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *DoubleValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: DoubleValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: DoubleValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 1 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var v uint64
+			if (iNdEx + 8) > l {
+				return io.ErrUnexpectedEOF
+			}
+			v = uint64(binary.LittleEndian.Uint64(dAtA[iNdEx:]))
+			iNdEx += 8
+			m.Value = float64(math.Float64frombits(v))
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *FloatValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: FloatValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: FloatValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 5 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var v uint32
+			if (iNdEx + 4) > l {
+				return io.ErrUnexpectedEOF
+			}
+			v = uint32(binary.LittleEndian.Uint32(dAtA[iNdEx:]))
+			iNdEx += 4
+			m.Value = float32(math.Float32frombits(v))
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Int64Value) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Int64Value: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Int64Value: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			m.Value = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Value |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UInt64Value) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UInt64Value: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UInt64Value: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			m.Value = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Value |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *Int32Value) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Int32Value: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Int32Value: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			m.Value = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Value |= (int32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *UInt32Value) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: UInt32Value: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: UInt32Value: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			m.Value = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Value |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *BoolValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BoolValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BoolValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var v int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				v |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			m.Value = bool(v != 0)
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *StringValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: StringValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: StringValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func (m *BytesValue) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BytesValue: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BytesValue: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Value", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Value = append(m.Value[:0], dAtA[iNdEx:postIndex]...)
+			if m.Value == nil {
+				m.Value = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWrappers(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWrappers
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipWrappers(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowWrappers
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWrappers
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthWrappers
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowWrappers
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipWrappers(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthWrappers = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowWrappers   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("wrappers.proto", fileDescriptorWrappers) }
+
+var fileDescriptorWrappers = []byte{
+	// 278 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x2b, 0x2f, 0x4a, 0x2c,
+	0x28, 0x48, 0x2d, 0x2a, 0xd6, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0xe2, 0x4f, 0xcf, 0xcf, 0x4f,
+	0xcf, 0x49, 0x85, 0xf0, 0x92, 0x4a, 0xd3, 0x94, 0x94, 0xb9, 0xb8, 0x5d, 0xf2, 0x4b, 0x93, 0x72,
+	0x52, 0xc3, 0x12, 0x73, 0x4a, 0x53, 0x85, 0x44, 0xb8, 0x58, 0xcb, 0x40, 0x0c, 0x09, 0x46, 0x05,
+	0x46, 0x0d, 0xc6, 0x20, 0x08, 0x47, 0x49, 0x89, 0x8b, 0xcb, 0x2d, 0x27, 0x3f, 0xb1, 0x04, 0x8b,
+	0x1a, 0x26, 0x24, 0x35, 0x9e, 0x79, 0x25, 0x66, 0x26, 0x58, 0xd4, 0x30, 0xc3, 0xd4, 0x28, 0x73,
+	0x71, 0x87, 0xe2, 0x52, 0xc4, 0x82, 0x6a, 0x90, 0xb1, 0x11, 0x16, 0x35, 0xac, 0x68, 0x06, 0x61,
+	0x55, 0xc4, 0x0b, 0x53, 0xa4, 0xc8, 0xc5, 0xe9, 0x94, 0x9f, 0x9f, 0x83, 0x45, 0x09, 0x07, 0x92,
+	0x39, 0xc1, 0x25, 0x45, 0x99, 0x79, 0xe9, 0x58, 0x14, 0x71, 0x22, 0x39, 0xc8, 0xa9, 0xb2, 0x24,
+	0xb5, 0x18, 0x8b, 0x1a, 0x1e, 0xa8, 0x1a, 0xa7, 0x76, 0xc6, 0x0b, 0x0f, 0xe5, 0x18, 0x6e, 0x3c,
+	0x94, 0x63, 0xf8, 0xf0, 0x50, 0x8e, 0xf1, 0xc7, 0x43, 0x39, 0xc6, 0x86, 0x47, 0x72, 0x8c, 0x2b,
+	0x1e, 0xc9, 0x31, 0x9e, 0x78, 0x24, 0xc7, 0x78, 0xe1, 0x91, 0x1c, 0xe3, 0x83, 0x47, 0x72, 0x8c,
+	0x2f, 0x1e, 0xc9, 0x31, 0x7c, 0x00, 0x89, 0x3f, 0x96, 0x63, 0xe4, 0x12, 0x4e, 0xce, 0xcf, 0xd5,
+	0x43, 0x8b, 0x0e, 0x27, 0xde, 0x70, 0x68, 0x7c, 0x05, 0x80, 0x44, 0x02, 0x18, 0xa3, 0x58, 0x4b,
+	0x2a, 0x0b, 0x52, 0x8b, 0x7f, 0x30, 0x32, 0x2e, 0x62, 0x62, 0x76, 0x0f, 0x70, 0x5a, 0xc5, 0x24,
+	0xe7, 0x0e, 0xd1, 0x12, 0x00, 0xd5, 0xa2, 0x17, 0x9e, 0x9a, 0x93, 0xe3, 0x9d, 0x97, 0x5f, 0x9e,
+	0x17, 0x02, 0x52, 0x99, 0xc4, 0x06, 0x36, 0xcb, 0x18, 0x10, 0x00, 0x00, 0xff, 0xff, 0x23, 0x27,
+	0x6c, 0x5f, 0xfa, 0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/golang/protobuf/proto/clone.go b/vendor/github.com/golang/protobuf/proto/clone.go
index e392575b35..3cd3249f70 100644
--- a/vendor/github.com/golang/protobuf/proto/clone.go
+++ b/vendor/github.com/golang/protobuf/proto/clone.go
@@ -35,22 +35,39 @@
 package proto
 
 import (
+	"fmt"
 	"log"
 	"reflect"
 	"strings"
 )
 
 // Clone returns a deep copy of a protocol buffer.
-func Clone(pb Message) Message {
-	in := reflect.ValueOf(pb)
+func Clone(src Message) Message {
+	in := reflect.ValueOf(src)
 	if in.IsNil() {
-		return pb
+		return src
 	}
-
 	out := reflect.New(in.Type().Elem())
-	// out is empty so a merge is a deep copy.
-	mergeStruct(out.Elem(), in.Elem())
-	return out.Interface().(Message)
+	dst := out.Interface().(Message)
+	Merge(dst, src)
+	return dst
+}
+
+// Merger is the interface representing objects that can merge messages of the same type.
+type Merger interface {
+	// Merge merges src into this message.
+	// Required and optional fields that are set in src will be set to that value in dst.
+	// Elements of repeated fields will be appended.
+	//
+	// Merge may panic if called with a different argument type than the receiver.
+	Merge(src Message)
+}
+
+// generatedMerger is the custom merge method that generated protos will have.
+// We must add this method since a generate Merge method will conflict with
+// many existing protos that have a Merge data field already defined.
+type generatedMerger interface {
+	XXX_Merge(src Message)
 }
 
 // Merge merges src into dst.
@@ -58,17 +75,24 @@ func Clone(pb Message) Message {
 // Elements of repeated fields will be appended.
 // Merge panics if src and dst are not the same type, or if dst is nil.
 func Merge(dst, src Message) {
+	if m, ok := dst.(Merger); ok {
+		m.Merge(src)
+		return
+	}
+
 	in := reflect.ValueOf(src)
 	out := reflect.ValueOf(dst)
 	if out.IsNil() {
 		panic("proto: nil destination")
 	}
 	if in.Type() != out.Type() {
-		// Explicit test prior to mergeStruct so that mistyped nils will fail
-		panic("proto: type mismatch")
+		panic(fmt.Sprintf("proto.Merge(%T, %T) type mismatch", dst, src))
 	}
 	if in.IsNil() {
-		// Merging nil into non-nil is a quiet no-op
+		return // Merge from nil src is a noop
+	}
+	if m, ok := dst.(generatedMerger); ok {
+		m.XXX_Merge(src)
 		return
 	}
 	mergeStruct(out.Elem(), in.Elem())
@@ -84,7 +108,7 @@ func mergeStruct(out, in reflect.Value) {
 		mergeAny(out.Field(i), in.Field(i), false, sprop.Prop[i])
 	}
 
-	if emIn, ok := extendable(in.Addr().Interface()); ok {
+	if emIn, err := extendable(in.Addr().Interface()); err == nil {
 		emOut, _ := extendable(out.Addr().Interface())
 		mIn, muIn := emIn.extensionsRead()
 		if mIn != nil {
diff --git a/vendor/github.com/golang/protobuf/proto/decode.go b/vendor/github.com/golang/protobuf/proto/decode.go
index aa207298f9..d9aa3c42d6 100644
--- a/vendor/github.com/golang/protobuf/proto/decode.go
+++ b/vendor/github.com/golang/protobuf/proto/decode.go
@@ -39,8 +39,6 @@ import (
 	"errors"
 	"fmt"
 	"io"
-	"os"
-	"reflect"
 )
 
 // errOverflow is returned when an integer is too large to be represented.
@@ -50,10 +48,6 @@ var errOverflow = errors.New("proto: integer overflow")
 // wire type is encountered. It does not get returned to user code.
 var ErrInternalBadWireType = errors.New("proto: internal error: bad wiretype for oneof")
 
-// The fundamental decoders that interpret bytes on the wire.
-// Those that take integer types all return uint64 and are
-// therefore of type valueDecoder.
-
 // DecodeVarint reads a varint-encoded integer from the slice.
 // It returns the integer and the number of bytes consumed, or
 // zero if there is not enough.
@@ -267,9 +261,6 @@ func (p *Buffer) DecodeZigzag32() (x uint64, err error) {
 	return
 }
 
-// These are not ValueDecoders: they produce an array of bytes or a string.
-// bytes, embedded messages
-
 // DecodeRawBytes reads a count-delimited byte buffer from the Buffer.
 // This is the format used for the bytes protocol buffer
 // type and for embedded messages.
@@ -311,81 +302,29 @@ func (p *Buffer) DecodeStringBytes() (s string, err error) {
 	return string(buf), nil
 }
 
-// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
-// If the protocol buffer has extensions, and the field matches, add it as an extension.
-// Otherwise, if the XXX_unrecognized field exists, append the skipped data there.
-func (o *Buffer) skipAndSave(t reflect.Type, tag, wire int, base structPointer, unrecField field) error {
-	oi := o.index
-
-	err := o.skip(t, tag, wire)
-	if err != nil {
-		return err
-	}
-
-	if !unrecField.IsValid() {
-		return nil
-	}
-
-	ptr := structPointer_Bytes(base, unrecField)
-
-	// Add the skipped field to struct field
-	obuf := o.buf
-
-	o.buf = *ptr
-	o.EncodeVarint(uint64(tag<<3 | wire))
-	*ptr = append(o.buf, obuf[oi:o.index]...)
-
-	o.buf = obuf
-
-	return nil
-}
-
-// Skip the next item in the buffer. Its wire type is decoded and presented as an argument.
-func (o *Buffer) skip(t reflect.Type, tag, wire int) error {
-
-	var u uint64
-	var err error
-
-	switch wire {
-	case WireVarint:
-		_, err = o.DecodeVarint()
-	case WireFixed64:
-		_, err = o.DecodeFixed64()
-	case WireBytes:
-		_, err = o.DecodeRawBytes(false)
-	case WireFixed32:
-		_, err = o.DecodeFixed32()
-	case WireStartGroup:
-		for {
-			u, err = o.DecodeVarint()
-			if err != nil {
-				break
-			}
-			fwire := int(u & 0x7)
-			if fwire == WireEndGroup {
-				break
-			}
-			ftag := int(u >> 3)
-			err = o.skip(t, ftag, fwire)
-			if err != nil {
-				break
-			}
-		}
-	default:
-		err = fmt.Errorf("proto: can't skip unknown wire type %d for %s", wire, t)
-	}
-	return err
-}
-
 // Unmarshaler is the interface representing objects that can
-// unmarshal themselves.  The method should reset the receiver before
-// decoding starts.  The argument points to data that may be
+// unmarshal themselves.  The argument points to data that may be
 // overwritten, so implementations should not keep references to the
 // buffer.
+// Unmarshal implementations should not clear the receiver.
+// Any unmarshaled data should be merged into the receiver.
+// Callers of Unmarshal that do not want to retain existing data
+// should Reset the receiver before calling Unmarshal.
 type Unmarshaler interface {
 	Unmarshal([]byte) error
 }
 
+// newUnmarshaler is the interface representing objects that can
+// unmarshal themselves. The semantics are identical to Unmarshaler.
+//
+// This exists to support protoc-gen-go generated messages.
+// The proto package will stop type-asserting to this interface in the future.
+//
+// DO NOT DEPEND ON THIS.
+type newUnmarshaler interface {
+	XXX_Unmarshal([]byte) error
+}
+
 // Unmarshal parses the protocol buffer representation in buf and places the
 // decoded result in pb.  If the struct underlying pb does not match
 // the data in buf, the results can be unpredictable.
@@ -395,7 +334,13 @@ type Unmarshaler interface {
 // to preserve and append to existing data.
 func Unmarshal(buf []byte, pb Message) error {
 	pb.Reset()
-	return UnmarshalMerge(buf, pb)
+	if u, ok := pb.(newUnmarshaler); ok {
+		return u.XXX_Unmarshal(buf)
+	}
+	if u, ok := pb.(Unmarshaler); ok {
+		return u.Unmarshal(buf)
+	}
+	return NewBuffer(buf).Unmarshal(pb)
 }
 
 // UnmarshalMerge parses the protocol buffer representation in buf and
@@ -405,8 +350,16 @@ func Unmarshal(buf []byte, pb Message) error {
 // UnmarshalMerge merges into existing data in pb.
 // Most code should use Unmarshal instead.
 func UnmarshalMerge(buf []byte, pb Message) error {
-	// If the object can unmarshal itself, let it.
+	if u, ok := pb.(newUnmarshaler); ok {
+		return u.XXX_Unmarshal(buf)
+	}
 	if u, ok := pb.(Unmarshaler); ok {
+		// NOTE: The history of proto have unfortunately been inconsistent
+		// whether Unmarshaler should or should not implicitly clear itself.
+		// Some implementations do, most do not.
+		// Thus, calling this here may or may not do what people want.
+		//
+		// See https://github.com/golang/protobuf/issues/424
 		return u.Unmarshal(buf)
 	}
 	return NewBuffer(buf).Unmarshal(pb)
@@ -422,12 +375,17 @@ func (p *Buffer) DecodeMessage(pb Message) error {
 }
 
 // DecodeGroup reads a tag-delimited group from the Buffer.
+// StartGroup tag is already consumed. This function consumes
+// EndGroup tag.
 func (p *Buffer) DecodeGroup(pb Message) error {
-	typ, base, err := getbase(pb)
-	if err != nil {
-		return err
+	b := p.buf[p.index:]
+	x, y := findEndGroup(b)
+	if x < 0 {
+		return io.ErrUnexpectedEOF
 	}
-	return p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), true, base)
+	err := Unmarshal(b[:x], pb)
+	p.index += y
+	return err
 }
 
 // Unmarshal parses the protocol buffer representation in the
@@ -438,533 +396,33 @@ func (p *Buffer) DecodeGroup(pb Message) error {
 // Unlike proto.Unmarshal, this does not reset pb before starting to unmarshal.
 func (p *Buffer) Unmarshal(pb Message) error {
 	// If the object can unmarshal itself, let it.
-	if u, ok := pb.(Unmarshaler); ok {
-		err := u.Unmarshal(p.buf[p.index:])
+	if u, ok := pb.(newUnmarshaler); ok {
+		err := u.XXX_Unmarshal(p.buf[p.index:])
 		p.index = len(p.buf)
 		return err
 	}
-
-	typ, base, err := getbase(pb)
-	if err != nil {
-		return err
-	}
-
-	err = p.unmarshalType(typ.Elem(), GetProperties(typ.Elem()), false, base)
-
-	if collectStats {
-		stats.Decode++
-	}
-
-	return err
-}
-
-// unmarshalType does the work of unmarshaling a structure.
-func (o *Buffer) unmarshalType(st reflect.Type, prop *StructProperties, is_group bool, base structPointer) error {
-	var state errorState
-	required, reqFields := prop.reqCount, uint64(0)
-
-	var err error
-	for err == nil && o.index < len(o.buf) {
-		oi := o.index
-		var u uint64
-		u, err = o.DecodeVarint()
-		if err != nil {
-			break
-		}
-		wire := int(u & 0x7)
-		if wire == WireEndGroup {
-			if is_group {
-				if required > 0 {
-					// Not enough information to determine the exact field.
-					// (See below.)
-					return &RequiredNotSetError{"{Unknown}"}
-				}
-				return nil // input is satisfied
-			}
-			return fmt.Errorf("proto: %s: wiretype end group for non-group", st)
-		}
-		tag := int(u >> 3)
-		if tag <= 0 {
-			return fmt.Errorf("proto: %s: illegal tag %d (wire type %d)", st, tag, wire)
-		}
-		fieldnum, ok := prop.decoderTags.get(tag)
-		if !ok {
-			// Maybe it's an extension?
-			if prop.extendable {
-				if e, _ := extendable(structPointer_Interface(base, st)); isExtensionField(e, int32(tag)) {
-					if err = o.skip(st, tag, wire); err == nil {
-						extmap := e.extensionsWrite()
-						ext := extmap[int32(tag)] // may be missing
-						ext.enc = append(ext.enc, o.buf[oi:o.index]...)
-						extmap[int32(tag)] = ext
-					}
-					continue
-				}
-			}
-			// Maybe it's a oneof?
-			if prop.oneofUnmarshaler != nil {
-				m := structPointer_Interface(base, st).(Message)
-				// First return value indicates whether tag is a oneof field.
-				ok, err = prop.oneofUnmarshaler(m, tag, wire, o)
-				if err == ErrInternalBadWireType {
-					// Map the error to something more descriptive.
-					// Do the formatting here to save generated code space.
-					err = fmt.Errorf("bad wiretype for oneof field in %T", m)
-				}
-				if ok {
-					continue
-				}
-			}
-			err = o.skipAndSave(st, tag, wire, base, prop.unrecField)
-			continue
-		}
-		p := prop.Prop[fieldnum]
-
-		if p.dec == nil {
-			fmt.Fprintf(os.Stderr, "proto: no protobuf decoder for %s.%s\n", st, st.Field(fieldnum).Name)
-			continue
-		}
-		dec := p.dec
-		if wire != WireStartGroup && wire != p.WireType {
-			if wire == WireBytes && p.packedDec != nil {
-				// a packable field
-				dec = p.packedDec
-			} else {
-				err = fmt.Errorf("proto: bad wiretype for field %s.%s: got wiretype %d, want %d", st, st.Field(fieldnum).Name, wire, p.WireType)
-				continue
-			}
-		}
-		decErr := dec(o, p, base)
-		if decErr != nil && !state.shouldContinue(decErr, p) {
-			err = decErr
-		}
-		if err == nil && p.Required {
-			// Successfully decoded a required field.
-			if tag <= 64 {
-				// use bitmap for fields 1-64 to catch field reuse.
-				var mask uint64 = 1 << uint64(tag-1)
-				if reqFields&mask == 0 {
-					// new required field
-					reqFields |= mask
-					required--
-				}
-			} else {
-				// This is imprecise. It can be fooled by a required field
-				// with a tag > 64 that is encoded twice; that's very rare.
-				// A fully correct implementation would require allocating
-				// a data structure, which we would like to avoid.
-				required--
-			}
-		}
-	}
-	if err == nil {
-		if is_group {
-			return io.ErrUnexpectedEOF
-		}
-		if state.err != nil {
-			return state.err
-		}
-		if required > 0 {
-			// Not enough information to determine the exact field. If we use extra
-			// CPU, we could determine the field only if the missing required field
-			// has a tag <= 64 and we check reqFields.
-			return &RequiredNotSetError{"{Unknown}"}
-		}
-	}
-	return err
-}
-
-// Individual type decoders
-// For each,
-//	u is the decoded value,
-//	v is a pointer to the field (pointer) in the struct
-
-// Sizes of the pools to allocate inside the Buffer.
-// The goal is modest amortization and allocation
-// on at least 16-byte boundaries.
-const (
-	boolPoolSize   = 16
-	uint32PoolSize = 8
-	uint64PoolSize = 4
-)
-
-// Decode a bool.
-func (o *Buffer) dec_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	if len(o.bools) == 0 {
-		o.bools = make([]bool, boolPoolSize)
-	}
-	o.bools[0] = u != 0
-	*structPointer_Bool(base, p.field) = &o.bools[0]
-	o.bools = o.bools[1:]
-	return nil
-}
-
-func (o *Buffer) dec_proto3_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	*structPointer_BoolVal(base, p.field) = u != 0
-	return nil
-}
-
-// Decode an int32.
-func (o *Buffer) dec_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word32_Set(structPointer_Word32(base, p.field), o, uint32(u))
-	return nil
-}
-
-func (o *Buffer) dec_proto3_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word32Val_Set(structPointer_Word32Val(base, p.field), uint32(u))
-	return nil
-}
-
-// Decode an int64.
-func (o *Buffer) dec_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word64_Set(structPointer_Word64(base, p.field), o, u)
-	return nil
-}
-
-func (o *Buffer) dec_proto3_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	word64Val_Set(structPointer_Word64Val(base, p.field), o, u)
-	return nil
-}
-
-// Decode a string.
-func (o *Buffer) dec_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	*structPointer_String(base, p.field) = &s
-	return nil
-}
-
-func (o *Buffer) dec_proto3_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	*structPointer_StringVal(base, p.field) = s
-	return nil
-}
-
-// Decode a slice of bytes ([]byte).
-func (o *Buffer) dec_slice_byte(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	*structPointer_Bytes(base, p.field) = b
-	return nil
-}
-
-// Decode a slice of bools ([]bool).
-func (o *Buffer) dec_slice_bool(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	v := structPointer_BoolSlice(base, p.field)
-	*v = append(*v, u != 0)
-	return nil
-}
-
-// Decode a slice of bools ([]bool) in packed format.
-func (o *Buffer) dec_slice_packed_bool(p *Properties, base structPointer) error {
-	v := structPointer_BoolSlice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded bools
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-
-	y := *v
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		y = append(y, u != 0)
-	}
-
-	*v = y
-	return nil
-}
-
-// Decode a slice of int32s ([]int32).
-func (o *Buffer) dec_slice_int32(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-	structPointer_Word32Slice(base, p.field).Append(uint32(u))
-	return nil
-}
-
-// Decode a slice of int32s ([]int32) in packed format.
-func (o *Buffer) dec_slice_packed_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Slice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded int32s
-
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		v.Append(uint32(u))
-	}
-	return nil
-}
-
-// Decode a slice of int64s ([]int64).
-func (o *Buffer) dec_slice_int64(p *Properties, base structPointer) error {
-	u, err := p.valDec(o)
-	if err != nil {
-		return err
-	}
-
-	structPointer_Word64Slice(base, p.field).Append(u)
-	return nil
-}
-
-// Decode a slice of int64s ([]int64) in packed format.
-func (o *Buffer) dec_slice_packed_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64Slice(base, p.field)
-
-	nn, err := o.DecodeVarint()
-	if err != nil {
-		return err
-	}
-	nb := int(nn) // number of bytes of encoded int64s
-
-	fin := o.index + nb
-	if fin < o.index {
-		return errOverflow
-	}
-	for o.index < fin {
-		u, err := p.valDec(o)
-		if err != nil {
-			return err
-		}
-		v.Append(u)
-	}
-	return nil
-}
-
-// Decode a slice of strings ([]string).
-func (o *Buffer) dec_slice_string(p *Properties, base structPointer) error {
-	s, err := o.DecodeStringBytes()
-	if err != nil {
-		return err
-	}
-	v := structPointer_StringSlice(base, p.field)
-	*v = append(*v, s)
-	return nil
-}
-
-// Decode a slice of slice of bytes ([][]byte).
-func (o *Buffer) dec_slice_slice_byte(p *Properties, base structPointer) error {
-	b, err := o.DecodeRawBytes(true)
-	if err != nil {
-		return err
-	}
-	v := structPointer_BytesSlice(base, p.field)
-	*v = append(*v, b)
-	return nil
-}
-
-// Decode a map field.
-func (o *Buffer) dec_new_map(p *Properties, base structPointer) error {
-	raw, err := o.DecodeRawBytes(false)
-	if err != nil {
-		return err
-	}
-	oi := o.index       // index at the end of this map entry
-	o.index -= len(raw) // move buffer back to start of map entry
-
-	mptr := structPointer_NewAt(base, p.field, p.mtype) // *map[K]V
-	if mptr.Elem().IsNil() {
-		mptr.Elem().Set(reflect.MakeMap(mptr.Type().Elem()))
-	}
-	v := mptr.Elem() // map[K]V
-
-	// Prepare addressable doubly-indirect placeholders for the key and value types.
-	// See enc_new_map for why.
-	keyptr := reflect.New(reflect.PtrTo(p.mtype.Key())).Elem() // addressable *K
-	keybase := toStructPointer(keyptr.Addr())                  // **K
-
-	var valbase structPointer
-	var valptr reflect.Value
-	switch p.mtype.Elem().Kind() {
-	case reflect.Slice:
-		// []byte
-		var dummy []byte
-		valptr = reflect.ValueOf(&dummy)  // *[]byte
-		valbase = toStructPointer(valptr) // *[]byte
-	case reflect.Ptr:
-		// message; valptr is **Msg; need to allocate the intermediate pointer
-		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
-		valptr.Set(reflect.New(valptr.Type().Elem()))
-		valbase = toStructPointer(valptr)
-	default:
-		// everything else
-		valptr = reflect.New(reflect.PtrTo(p.mtype.Elem())).Elem() // addressable *V
-		valbase = toStructPointer(valptr.Addr())                   // **V
-	}
-
-	// Decode.
-	// This parses a restricted wire format, namely the encoding of a message
-	// with two fields. See enc_new_map for the format.
-	for o.index < oi {
-		// tagcode for key and value properties are always a single byte
-		// because they have tags 1 and 2.
-		tagcode := o.buf[o.index]
-		o.index++
-		switch tagcode {
-		case p.mkeyprop.tagcode[0]:
-			if err := p.mkeyprop.dec(o, p.mkeyprop, keybase); err != nil {
-				return err
-			}
-		case p.mvalprop.tagcode[0]:
-			if err := p.mvalprop.dec(o, p.mvalprop, valbase); err != nil {
-				return err
-			}
-		default:
-			// TODO: Should we silently skip this instead?
-			return fmt.Errorf("proto: bad map data tag %d", raw[0])
-		}
-	}
-	keyelem, valelem := keyptr.Elem(), valptr.Elem()
-	if !keyelem.IsValid() {
-		keyelem = reflect.Zero(p.mtype.Key())
-	}
-	if !valelem.IsValid() {
-		valelem = reflect.Zero(p.mtype.Elem())
-	}
-
-	v.SetMapIndex(keyelem, valelem)
-	return nil
-}
-
-// Decode a group.
-func (o *Buffer) dec_struct_group(p *Properties, base structPointer) error {
-	bas := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(bas) {
-		// allocate new nested message
-		bas = toStructPointer(reflect.New(p.stype))
-		structPointer_SetStructPointer(base, p.field, bas)
-	}
-	return o.unmarshalType(p.stype, p.sprop, true, bas)
-}
-
-// Decode an embedded message.
-func (o *Buffer) dec_struct_message(p *Properties, base structPointer) (err error) {
-	raw, e := o.DecodeRawBytes(false)
-	if e != nil {
-		return e
-	}
-
-	bas := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(bas) {
-		// allocate new nested message
-		bas = toStructPointer(reflect.New(p.stype))
-		structPointer_SetStructPointer(base, p.field, bas)
-	}
-
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		iv := structPointer_Interface(bas, p.stype)
-		return iv.(Unmarshaler).Unmarshal(raw)
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	err = o.unmarshalType(p.stype, p.sprop, false, bas)
-	o.buf = obuf
-	o.index = oi
-
-	return err
-}
-
-// Decode a slice of embedded messages.
-func (o *Buffer) dec_slice_struct_message(p *Properties, base structPointer) error {
-	return o.dec_slice_struct(p, false, base)
-}
-
-// Decode a slice of embedded groups.
-func (o *Buffer) dec_slice_struct_group(p *Properties, base structPointer) error {
-	return o.dec_slice_struct(p, true, base)
-}
-
-// Decode a slice of structs ([]*struct).
-func (o *Buffer) dec_slice_struct(p *Properties, is_group bool, base structPointer) error {
-	v := reflect.New(p.stype)
-	bas := toStructPointer(v)
-	structPointer_StructPointerSlice(base, p.field).Append(bas)
-
-	if is_group {
-		err := o.unmarshalType(p.stype, p.sprop, is_group, bas)
-		return err
-	}
-
-	raw, err := o.DecodeRawBytes(false)
-	if err != nil {
+	if u, ok := pb.(Unmarshaler); ok {
+		// NOTE: The history of proto have unfortunately been inconsistent
+		// whether Unmarshaler should or should not implicitly clear itself.
+		// Some implementations do, most do not.
+		// Thus, calling this here may or may not do what people want.
+		//
+		// See https://github.com/golang/protobuf/issues/424
+		err := u.Unmarshal(p.buf[p.index:])
+		p.index = len(p.buf)
 		return err
 	}
 
-	// If the object can unmarshal itself, let it.
-	if p.isUnmarshaler {
-		iv := v.Interface()
-		return iv.(Unmarshaler).Unmarshal(raw)
-	}
-
-	obuf := o.buf
-	oi := o.index
-	o.buf = raw
-	o.index = 0
-
-	err = o.unmarshalType(p.stype, p.sprop, is_group, bas)
-
-	o.buf = obuf
-	o.index = oi
-
+	// Slow workaround for messages that aren't Unmarshalers.
+	// This includes some hand-coded .pb.go files and
+	// bootstrap protos.
+	// TODO: fix all of those and then add Unmarshal to
+	// the Message interface. Then:
+	// The cast above and code below can be deleted.
+	// The old unmarshaler can be deleted.
+	// Clients can call Unmarshal directly (can already do that, actually).
+	var info InternalMessageInfo
+	err := info.Unmarshal(pb, p.buf[p.index:])
+	p.index = len(p.buf)
 	return err
 }
diff --git a/vendor/github.com/golang/protobuf/proto/discard.go b/vendor/github.com/golang/protobuf/proto/discard.go
index bd0e3bb4c8..dea2617ced 100644
--- a/vendor/github.com/golang/protobuf/proto/discard.go
+++ b/vendor/github.com/golang/protobuf/proto/discard.go
@@ -35,8 +35,14 @@ import (
 	"fmt"
 	"reflect"
 	"strings"
+	"sync"
+	"sync/atomic"
 )
 
+type generatedDiscarder interface {
+	XXX_DiscardUnknown()
+}
+
 // DiscardUnknown recursively discards all unknown fields from this message
 // and all embedded messages.
 //
@@ -49,9 +55,202 @@ import (
 // For proto2 messages, the unknown fields of message extensions are only
 // discarded from messages that have been accessed via GetExtension.
 func DiscardUnknown(m Message) {
+	if m, ok := m.(generatedDiscarder); ok {
+		m.XXX_DiscardUnknown()
+		return
+	}
+	// TODO: Dynamically populate a InternalMessageInfo for legacy messages,
+	// but the master branch has no implementation for InternalMessageInfo,
+	// so it would be more work to replicate that approach.
 	discardLegacy(m)
 }
 
+// DiscardUnknown recursively discards all unknown fields.
+func (a *InternalMessageInfo) DiscardUnknown(m Message) {
+	di := atomicLoadDiscardInfo(&a.discard)
+	if di == nil {
+		di = getDiscardInfo(reflect.TypeOf(m).Elem())
+		atomicStoreDiscardInfo(&a.discard, di)
+	}
+	di.discard(toPointer(&m))
+}
+
+type discardInfo struct {
+	typ reflect.Type
+
+	initialized int32 // 0: only typ is valid, 1: everything is valid
+	lock        sync.Mutex
+
+	fields       []discardFieldInfo
+	unrecognized field
+}
+
+type discardFieldInfo struct {
+	field   field // Offset of field, guaranteed to be valid
+	discard func(src pointer)
+}
+
+var (
+	discardInfoMap  = map[reflect.Type]*discardInfo{}
+	discardInfoLock sync.Mutex
+)
+
+func getDiscardInfo(t reflect.Type) *discardInfo {
+	discardInfoLock.Lock()
+	defer discardInfoLock.Unlock()
+	di := discardInfoMap[t]
+	if di == nil {
+		di = &discardInfo{typ: t}
+		discardInfoMap[t] = di
+	}
+	return di
+}
+
+func (di *discardInfo) discard(src pointer) {
+	if src.isNil() {
+		return // Nothing to do.
+	}
+
+	if atomic.LoadInt32(&di.initialized) == 0 {
+		di.computeDiscardInfo()
+	}
+
+	for _, fi := range di.fields {
+		sfp := src.offset(fi.field)
+		fi.discard(sfp)
+	}
+
+	// For proto2 messages, only discard unknown fields in message extensions
+	// that have been accessed via GetExtension.
+	if em, err := extendable(src.asPointerTo(di.typ).Interface()); err == nil {
+		// Ignore lock since DiscardUnknown is not concurrency safe.
+		emm, _ := em.extensionsRead()
+		for _, mx := range emm {
+			if m, ok := mx.value.(Message); ok {
+				DiscardUnknown(m)
+			}
+		}
+	}
+
+	if di.unrecognized.IsValid() {
+		*src.offset(di.unrecognized).toBytes() = nil
+	}
+}
+
+func (di *discardInfo) computeDiscardInfo() {
+	di.lock.Lock()
+	defer di.lock.Unlock()
+	if di.initialized != 0 {
+		return
+	}
+	t := di.typ
+	n := t.NumField()
+
+	for i := 0; i < n; i++ {
+		f := t.Field(i)
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+
+		dfi := discardFieldInfo{field: toField(&f)}
+		tf := f.Type
+
+		// Unwrap tf to get its most basic type.
+		var isPointer, isSlice bool
+		if tf.Kind() == reflect.Slice && tf.Elem().Kind() != reflect.Uint8 {
+			isSlice = true
+			tf = tf.Elem()
+		}
+		if tf.Kind() == reflect.Ptr {
+			isPointer = true
+			tf = tf.Elem()
+		}
+		if isPointer && isSlice && tf.Kind() != reflect.Struct {
+			panic(fmt.Sprintf("%v.%s cannot be a slice of pointers to primitive types", t, f.Name))
+		}
+
+		switch tf.Kind() {
+		case reflect.Struct:
+			switch {
+			case !isPointer:
+				panic(fmt.Sprintf("%v.%s cannot be a direct struct value", t, f.Name))
+			case isSlice: // E.g., []*pb.T
+				di := getDiscardInfo(tf)
+				dfi.discard = func(src pointer) {
+					sps := src.getPointerSlice()
+					for _, sp := range sps {
+						if !sp.isNil() {
+							di.discard(sp)
+						}
+					}
+				}
+			default: // E.g., *pb.T
+				di := getDiscardInfo(tf)
+				dfi.discard = func(src pointer) {
+					sp := src.getPointer()
+					if !sp.isNil() {
+						di.discard(sp)
+					}
+				}
+			}
+		case reflect.Map:
+			switch {
+			case isPointer || isSlice:
+				panic(fmt.Sprintf("%v.%s cannot be a pointer to a map or a slice of map values", t, f.Name))
+			default: // E.g., map[K]V
+				if tf.Elem().Kind() == reflect.Ptr { // Proto struct (e.g., *T)
+					dfi.discard = func(src pointer) {
+						sm := src.asPointerTo(tf).Elem()
+						if sm.Len() == 0 {
+							return
+						}
+						for _, key := range sm.MapKeys() {
+							val := sm.MapIndex(key)
+							DiscardUnknown(val.Interface().(Message))
+						}
+					}
+				} else {
+					dfi.discard = func(pointer) {} // Noop
+				}
+			}
+		case reflect.Interface:
+			// Must be oneof field.
+			switch {
+			case isPointer || isSlice:
+				panic(fmt.Sprintf("%v.%s cannot be a pointer to a interface or a slice of interface values", t, f.Name))
+			default: // E.g., interface{}
+				// TODO: Make this faster?
+				dfi.discard = func(src pointer) {
+					su := src.asPointerTo(tf).Elem()
+					if !su.IsNil() {
+						sv := su.Elem().Elem().Field(0)
+						if sv.Kind() == reflect.Ptr && sv.IsNil() {
+							return
+						}
+						switch sv.Type().Kind() {
+						case reflect.Ptr: // Proto struct (e.g., *T)
+							DiscardUnknown(sv.Interface().(Message))
+						}
+					}
+				}
+			}
+		default:
+			continue
+		}
+		di.fields = append(di.fields, dfi)
+	}
+
+	di.unrecognized = invalidField
+	if f, ok := t.FieldByName("XXX_unrecognized"); ok {
+		if f.Type != reflect.TypeOf([]byte{}) {
+			panic("expected XXX_unrecognized to be of type []byte")
+		}
+		di.unrecognized = toField(&f)
+	}
+
+	atomic.StoreInt32(&di.initialized, 1)
+}
+
 func discardLegacy(m Message) {
 	v := reflect.ValueOf(m)
 	if v.Kind() != reflect.Ptr || v.IsNil() {
@@ -139,7 +338,7 @@ func discardLegacy(m Message) {
 
 	// For proto2 messages, only discard unknown fields in message extensions
 	// that have been accessed via GetExtension.
-	if em, ok := extendable(m); ok {
+	if em, err := extendable(m); err == nil {
 		// Ignore lock since discardLegacy is not concurrency safe.
 		emm, _ := em.extensionsRead()
 		for _, mx := range emm {
diff --git a/vendor/github.com/golang/protobuf/proto/encode.go b/vendor/github.com/golang/protobuf/proto/encode.go
index 8b84d1b22d..c27d35f866 100644
--- a/vendor/github.com/golang/protobuf/proto/encode.go
+++ b/vendor/github.com/golang/protobuf/proto/encode.go
@@ -39,7 +39,6 @@ import (
 	"errors"
 	"fmt"
 	"reflect"
-	"sort"
 )
 
 // RequiredNotSetError is the error returned if Marshal is called with
@@ -82,10 +81,6 @@ var (
 
 const maxVarintBytes = 10 // maximum length of a varint
 
-// maxMarshalSize is the largest allowed size of an encoded protobuf,
-// since C++ and Java use signed int32s for the size.
-const maxMarshalSize = 1<<31 - 1
-
 // EncodeVarint returns the varint encoding of x.
 // This is the format for the
 // int32, int64, uint32, uint64, bool, and enum
@@ -119,18 +114,27 @@ func (p *Buffer) EncodeVarint(x uint64) error {
 
 // SizeVarint returns the varint encoding size of an integer.
 func SizeVarint(x uint64) int {
-	return sizeVarint(x)
-}
-
-func sizeVarint(x uint64) (n int) {
-	for {
-		n++
-		x >>= 7
-		if x == 0 {
-			break
-		}
-	}
-	return n
+	switch {
+	case x < 1<<7:
+		return 1
+	case x < 1<<14:
+		return 2
+	case x < 1<<21:
+		return 3
+	case x < 1<<28:
+		return 4
+	case x < 1<<35:
+		return 5
+	case x < 1<<42:
+		return 6
+	case x < 1<<49:
+		return 7
+	case x < 1<<56:
+		return 8
+	case x < 1<<63:
+		return 9
+	}
+	return 10
 }
 
 // EncodeFixed64 writes a 64-bit integer to the Buffer.
@@ -149,10 +153,6 @@ func (p *Buffer) EncodeFixed64(x uint64) error {
 	return nil
 }
 
-func sizeFixed64(x uint64) int {
-	return 8
-}
-
 // EncodeFixed32 writes a 32-bit integer to the Buffer.
 // This is the format for the
 // fixed32, sfixed32, and float protocol buffer types.
@@ -165,20 +165,12 @@ func (p *Buffer) EncodeFixed32(x uint64) error {
 	return nil
 }
 
-func sizeFixed32(x uint64) int {
-	return 4
-}
-
 // EncodeZigzag64 writes a zigzag-encoded 64-bit integer
 // to the Buffer.
 // This is the format used for the sint64 protocol buffer type.
 func (p *Buffer) EncodeZigzag64(x uint64) error {
 	// use signed number to get arithmetic right shift.
-	return p.EncodeVarint((x << 1) ^ uint64((int64(x) >> 63)))
-}
-
-func sizeZigzag64(x uint64) int {
-	return sizeVarint((x << 1) ^ uint64((int64(x) >> 63)))
+	return p.EncodeVarint(uint64((x << 1) ^ uint64((int64(x) >> 63))))
 }
 
 // EncodeZigzag32 writes a zigzag-encoded 32-bit integer
@@ -189,10 +181,6 @@ func (p *Buffer) EncodeZigzag32(x uint64) error {
 	return p.EncodeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
 }
 
-func sizeZigzag32(x uint64) int {
-	return sizeVarint(uint64((uint32(x) << 1) ^ uint32((int32(x) >> 31))))
-}
-
 // EncodeRawBytes writes a count-delimited byte buffer to the Buffer.
 // This is the format used for the bytes protocol buffer
 // type and for embedded messages.
@@ -202,11 +190,6 @@ func (p *Buffer) EncodeRawBytes(b []byte) error {
 	return nil
 }
 
-func sizeRawBytes(b []byte) int {
-	return sizeVarint(uint64(len(b))) +
-		len(b)
-}
-
 // EncodeStringBytes writes an encoded string to the Buffer.
 // This is the format used for the proto2 string type.
 func (p *Buffer) EncodeStringBytes(s string) error {
@@ -215,319 +198,17 @@ func (p *Buffer) EncodeStringBytes(s string) error {
 	return nil
 }
 
-func sizeStringBytes(s string) int {
-	return sizeVarint(uint64(len(s))) +
-		len(s)
-}
-
 // Marshaler is the interface representing objects that can marshal themselves.
 type Marshaler interface {
 	Marshal() ([]byte, error)
 }
 
-// Marshal takes the protocol buffer
-// and encodes it into the wire format, returning the data.
-func Marshal(pb Message) ([]byte, error) {
-	// Can the object marshal itself?
-	if m, ok := pb.(Marshaler); ok {
-		return m.Marshal()
-	}
-	p := NewBuffer(nil)
-	err := p.Marshal(pb)
-	if p.buf == nil && err == nil {
-		// Return a non-nil slice on success.
-		return []byte{}, nil
-	}
-	return p.buf, err
-}
-
 // EncodeMessage writes the protocol buffer to the Buffer,
 // prefixed by a varint-encoded length.
 func (p *Buffer) EncodeMessage(pb Message) error {
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return ErrNil
-	}
-	if err == nil {
-		var state errorState
-		err = p.enc_len_struct(GetProperties(t.Elem()), base, &state)
-	}
-	return err
-}
-
-// Marshal takes the protocol buffer
-// and encodes it into the wire format, writing the result to the
-// Buffer.
-func (p *Buffer) Marshal(pb Message) error {
-	// Can the object marshal itself?
-	if m, ok := pb.(Marshaler); ok {
-		data, err := m.Marshal()
-		p.buf = append(p.buf, data...)
-		return err
-	}
-
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return ErrNil
-	}
-	if err == nil {
-		err = p.enc_struct(GetProperties(t.Elem()), base)
-	}
-
-	if collectStats {
-		(stats).Encode++ // Parens are to work around a goimports bug.
-	}
-
-	if len(p.buf) > maxMarshalSize {
-		return ErrTooLarge
-	}
-	return err
-}
-
-// Size returns the encoded size of a protocol buffer.
-func Size(pb Message) (n int) {
-	// Can the object marshal itself?  If so, Size is slow.
-	// TODO: add Size to Marshaler, or add a Sizer interface.
-	if m, ok := pb.(Marshaler); ok {
-		b, _ := m.Marshal()
-		return len(b)
-	}
-
-	t, base, err := getbase(pb)
-	if structPointer_IsNil(base) {
-		return 0
-	}
-	if err == nil {
-		n = size_struct(GetProperties(t.Elem()), base)
-	}
-
-	if collectStats {
-		(stats).Size++ // Parens are to work around a goimports bug.
-	}
-
-	return
-}
-
-// Individual type encoders.
-
-// Encode a bool.
-func (o *Buffer) enc_bool(p *Properties, base structPointer) error {
-	v := *structPointer_Bool(base, p.field)
-	if v == nil {
-		return ErrNil
-	}
-	x := 0
-	if *v {
-		x = 1
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_bool(p *Properties, base structPointer) error {
-	v := *structPointer_BoolVal(base, p.field)
-	if !v {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, 1)
-	return nil
-}
-
-func size_bool(p *Properties, base structPointer) int {
-	v := *structPointer_Bool(base, p.field)
-	if v == nil {
-		return 0
-	}
-	return len(p.tagcode) + 1 // each bool takes exactly one byte
-}
-
-func size_proto3_bool(p *Properties, base structPointer) int {
-	v := *structPointer_BoolVal(base, p.field)
-	if !v && !p.oneof {
-		return 0
-	}
-	return len(p.tagcode) + 1 // each bool takes exactly one byte
-}
-
-// Encode an int32.
-func (o *Buffer) enc_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return ErrNil
-	}
-	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_int32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_int32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return 0
-	}
-	x := int32(word32_Get(v)) // permit sign extension to use full 64-bit range
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-func size_proto3_int32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := int32(word32Val_Get(v)) // permit sign extension to use full 64-bit range
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-// Encode a uint32.
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_uint32(p *Properties, base structPointer) error {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return ErrNil
-	}
-	x := word32_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func (o *Buffer) enc_proto3_uint32(p *Properties, base structPointer) error {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, uint64(x))
-	return nil
-}
-
-func size_uint32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32(base, p.field)
-	if word32_IsNil(v) {
-		return 0
-	}
-	x := word32_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-func size_proto3_uint32(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word32Val(base, p.field)
-	x := word32Val_Get(v)
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(uint64(x))
-	return
-}
-
-// Encode an int64.
-func (o *Buffer) enc_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64(base, p.field)
-	if word64_IsNil(v) {
-		return ErrNil
-	}
-	x := word64_Get(v)
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, x)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_int64(p *Properties, base structPointer) error {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	if x == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	p.valEnc(o, x)
-	return nil
-}
-
-func size_int64(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word64(base, p.field)
-	if word64_IsNil(v) {
-		return 0
-	}
-	x := word64_Get(v)
-	n += len(p.tagcode)
-	n += p.valSize(x)
-	return
-}
-
-func size_proto3_int64(p *Properties, base structPointer) (n int) {
-	v := structPointer_Word64Val(base, p.field)
-	x := word64Val_Get(v)
-	if x == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += p.valSize(x)
-	return
-}
-
-// Encode a string.
-func (o *Buffer) enc_string(p *Properties, base structPointer) error {
-	v := *structPointer_String(base, p.field)
-	if v == nil {
-		return ErrNil
-	}
-	x := *v
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeStringBytes(x)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_string(p *Properties, base structPointer) error {
-	v := *structPointer_StringVal(base, p.field)
-	if v == "" {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeStringBytes(v)
-	return nil
-}
-
-func size_string(p *Properties, base structPointer) (n int) {
-	v := *structPointer_String(base, p.field)
-	if v == nil {
-		return 0
-	}
-	x := *v
-	n += len(p.tagcode)
-	n += sizeStringBytes(x)
-	return
-}
-
-func size_proto3_string(p *Properties, base structPointer) (n int) {
-	v := *structPointer_StringVal(base, p.field)
-	if v == "" && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeStringBytes(v)
-	return
+	siz := Size(pb)
+	p.EncodeVarint(uint64(siz))
+	return p.Marshal(pb)
 }
 
 // All protocol buffer fields are nillable, but be careful.
@@ -538,825 +219,3 @@ func isNil(v reflect.Value) bool {
 	}
 	return false
 }
-
-// Encode a message struct.
-func (o *Buffer) enc_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return ErrNil
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, err := m.Marshal()
-		if err != nil && !state.shouldContinue(err, nil) {
-			return err
-		}
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(data)
-		return state.err
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	return o.enc_len_struct(p.sprop, structp, &state)
-}
-
-func size_struct_message(p *Properties, base structPointer) int {
-	structp := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(structp) {
-		return 0
-	}
-
-	// Can the object marshal itself?
-	if p.isMarshaler {
-		m := structPointer_Interface(structp, p.stype).(Marshaler)
-		data, _ := m.Marshal()
-		n0 := len(p.tagcode)
-		n1 := sizeRawBytes(data)
-		return n0 + n1
-	}
-
-	n0 := len(p.tagcode)
-	n1 := size_struct(p.sprop, structp)
-	n2 := sizeVarint(uint64(n1)) // size of encoded length
-	return n0 + n1 + n2
-}
-
-// Encode a group struct.
-func (o *Buffer) enc_struct_group(p *Properties, base structPointer) error {
-	var state errorState
-	b := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(b) {
-		return ErrNil
-	}
-
-	o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
-	err := o.enc_struct(p.sprop, b)
-	if err != nil && !state.shouldContinue(err, nil) {
-		return err
-	}
-	o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	return state.err
-}
-
-func size_struct_group(p *Properties, base structPointer) (n int) {
-	b := structPointer_GetStructPointer(base, p.field)
-	if structPointer_IsNil(b) {
-		return 0
-	}
-
-	n += sizeVarint(uint64((p.Tag << 3) | WireStartGroup))
-	n += size_struct(p.sprop, b)
-	n += sizeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	return
-}
-
-// Encode a slice of bools ([]bool).
-func (o *Buffer) enc_slice_bool(p *Properties, base structPointer) error {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return ErrNil
-	}
-	for _, x := range s {
-		o.buf = append(o.buf, p.tagcode...)
-		v := uint64(0)
-		if x {
-			v = 1
-		}
-		p.valEnc(o, v)
-	}
-	return nil
-}
-
-func size_slice_bool(p *Properties, base structPointer) int {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return 0
-	}
-	return l * (len(p.tagcode) + 1) // each bool takes exactly one byte
-}
-
-// Encode a slice of bools ([]bool) in packed format.
-func (o *Buffer) enc_slice_packed_bool(p *Properties, base structPointer) error {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(l)) // each bool takes exactly one byte
-	for _, x := range s {
-		v := uint64(0)
-		if x {
-			v = 1
-		}
-		p.valEnc(o, v)
-	}
-	return nil
-}
-
-func size_slice_packed_bool(p *Properties, base structPointer) (n int) {
-	s := *structPointer_BoolSlice(base, p.field)
-	l := len(s)
-	if l == 0 {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(l))
-	n += l // each bool takes exactly one byte
-	return
-}
-
-// Encode a slice of bytes ([]byte).
-func (o *Buffer) enc_slice_byte(p *Properties, base structPointer) error {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(s)
-	return nil
-}
-
-func (o *Buffer) enc_proto3_slice_byte(p *Properties, base structPointer) error {
-	s := *structPointer_Bytes(base, p.field)
-	if len(s) == 0 {
-		return ErrNil
-	}
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeRawBytes(s)
-	return nil
-}
-
-func size_slice_byte(p *Properties, base structPointer) (n int) {
-	s := *structPointer_Bytes(base, p.field)
-	if s == nil && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeRawBytes(s)
-	return
-}
-
-func size_proto3_slice_byte(p *Properties, base structPointer) (n int) {
-	s := *structPointer_Bytes(base, p.field)
-	if len(s) == 0 && !p.oneof {
-		return 0
-	}
-	n += len(p.tagcode)
-	n += sizeRawBytes(s)
-	return
-}
-
-// Encode a slice of int32s ([]int32).
-func (o *Buffer) enc_slice_int32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		p.valEnc(o, uint64(x))
-	}
-	return nil
-}
-
-func size_slice_int32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		n += p.valSize(uint64(x))
-	}
-	return
-}
-
-// Encode a slice of int32s ([]int32) in packed format.
-func (o *Buffer) enc_slice_packed_int32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		p.valEnc(buf, uint64(x))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_int32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		x := int32(s.Index(i)) // permit sign extension to use full 64-bit range
-		bufSize += p.valSize(uint64(x))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of uint32s ([]uint32).
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_slice_uint32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		x := s.Index(i)
-		p.valEnc(o, uint64(x))
-	}
-	return nil
-}
-
-func size_slice_uint32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		x := s.Index(i)
-		n += p.valSize(uint64(x))
-	}
-	return
-}
-
-// Encode a slice of uint32s ([]uint32) in packed format.
-// Exactly the same as int32, except for no sign extension.
-func (o *Buffer) enc_slice_packed_uint32(p *Properties, base structPointer) error {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		p.valEnc(buf, uint64(s.Index(i)))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_uint32(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word32Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		bufSize += p.valSize(uint64(s.Index(i)))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of int64s ([]int64).
-func (o *Buffer) enc_slice_int64(p *Properties, base structPointer) error {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		p.valEnc(o, s.Index(i))
-	}
-	return nil
-}
-
-func size_slice_int64(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	for i := 0; i < l; i++ {
-		n += len(p.tagcode)
-		n += p.valSize(s.Index(i))
-	}
-	return
-}
-
-// Encode a slice of int64s ([]int64) in packed format.
-func (o *Buffer) enc_slice_packed_int64(p *Properties, base structPointer) error {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return ErrNil
-	}
-	// TODO: Reuse a Buffer.
-	buf := NewBuffer(nil)
-	for i := 0; i < l; i++ {
-		p.valEnc(buf, s.Index(i))
-	}
-
-	o.buf = append(o.buf, p.tagcode...)
-	o.EncodeVarint(uint64(len(buf.buf)))
-	o.buf = append(o.buf, buf.buf...)
-	return nil
-}
-
-func size_slice_packed_int64(p *Properties, base structPointer) (n int) {
-	s := structPointer_Word64Slice(base, p.field)
-	l := s.Len()
-	if l == 0 {
-		return 0
-	}
-	var bufSize int
-	for i := 0; i < l; i++ {
-		bufSize += p.valSize(s.Index(i))
-	}
-
-	n += len(p.tagcode)
-	n += sizeVarint(uint64(bufSize))
-	n += bufSize
-	return
-}
-
-// Encode a slice of slice of bytes ([][]byte).
-func (o *Buffer) enc_slice_slice_byte(p *Properties, base structPointer) error {
-	ss := *structPointer_BytesSlice(base, p.field)
-	l := len(ss)
-	if l == 0 {
-		return ErrNil
-	}
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeRawBytes(ss[i])
-	}
-	return nil
-}
-
-func size_slice_slice_byte(p *Properties, base structPointer) (n int) {
-	ss := *structPointer_BytesSlice(base, p.field)
-	l := len(ss)
-	if l == 0 {
-		return 0
-	}
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		n += sizeRawBytes(ss[i])
-	}
-	return
-}
-
-// Encode a slice of strings ([]string).
-func (o *Buffer) enc_slice_string(p *Properties, base structPointer) error {
-	ss := *structPointer_StringSlice(base, p.field)
-	l := len(ss)
-	for i := 0; i < l; i++ {
-		o.buf = append(o.buf, p.tagcode...)
-		o.EncodeStringBytes(ss[i])
-	}
-	return nil
-}
-
-func size_slice_string(p *Properties, base structPointer) (n int) {
-	ss := *structPointer_StringSlice(base, p.field)
-	l := len(ss)
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		n += sizeStringBytes(ss[i])
-	}
-	return
-}
-
-// Encode a slice of message structs ([]*struct).
-func (o *Buffer) enc_slice_struct_message(p *Properties, base structPointer) error {
-	var state errorState
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	for i := 0; i < l; i++ {
-		structp := s.Index(i)
-		if structPointer_IsNil(structp) {
-			return errRepeatedHasNil
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, err := m.Marshal()
-			if err != nil && !state.shouldContinue(err, nil) {
-				return err
-			}
-			o.buf = append(o.buf, p.tagcode...)
-			o.EncodeRawBytes(data)
-			continue
-		}
-
-		o.buf = append(o.buf, p.tagcode...)
-		err := o.enc_len_struct(p.sprop, structp, &state)
-		if err != nil && !state.shouldContinue(err, nil) {
-			if err == ErrNil {
-				return errRepeatedHasNil
-			}
-			return err
-		}
-	}
-	return state.err
-}
-
-func size_slice_struct_message(p *Properties, base structPointer) (n int) {
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-	n += l * len(p.tagcode)
-	for i := 0; i < l; i++ {
-		structp := s.Index(i)
-		if structPointer_IsNil(structp) {
-			return // return the size up to this point
-		}
-
-		// Can the object marshal itself?
-		if p.isMarshaler {
-			m := structPointer_Interface(structp, p.stype).(Marshaler)
-			data, _ := m.Marshal()
-			n += sizeRawBytes(data)
-			continue
-		}
-
-		n0 := size_struct(p.sprop, structp)
-		n1 := sizeVarint(uint64(n0)) // size of encoded length
-		n += n0 + n1
-	}
-	return
-}
-
-// Encode a slice of group structs ([]*struct).
-func (o *Buffer) enc_slice_struct_group(p *Properties, base structPointer) error {
-	var state errorState
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	for i := 0; i < l; i++ {
-		b := s.Index(i)
-		if structPointer_IsNil(b) {
-			return errRepeatedHasNil
-		}
-
-		o.EncodeVarint(uint64((p.Tag << 3) | WireStartGroup))
-
-		err := o.enc_struct(p.sprop, b)
-
-		if err != nil && !state.shouldContinue(err, nil) {
-			if err == ErrNil {
-				return errRepeatedHasNil
-			}
-			return err
-		}
-
-		o.EncodeVarint(uint64((p.Tag << 3) | WireEndGroup))
-	}
-	return state.err
-}
-
-func size_slice_struct_group(p *Properties, base structPointer) (n int) {
-	s := structPointer_StructPointerSlice(base, p.field)
-	l := s.Len()
-
-	n += l * sizeVarint(uint64((p.Tag<<3)|WireStartGroup))
-	n += l * sizeVarint(uint64((p.Tag<<3)|WireEndGroup))
-	for i := 0; i < l; i++ {
-		b := s.Index(i)
-		if structPointer_IsNil(b) {
-			return // return size up to this point
-		}
-
-		n += size_struct(p.sprop, b)
-	}
-	return
-}
-
-// Encode an extension map.
-func (o *Buffer) enc_map(p *Properties, base structPointer) error {
-	exts := structPointer_ExtMap(base, p.field)
-	if err := encodeExtensionsMap(*exts); err != nil {
-		return err
-	}
-
-	return o.enc_map_body(*exts)
-}
-
-func (o *Buffer) enc_exts(p *Properties, base structPointer) error {
-	exts := structPointer_Extensions(base, p.field)
-
-	v, mu := exts.extensionsRead()
-	if v == nil {
-		return nil
-	}
-
-	mu.Lock()
-	defer mu.Unlock()
-	if err := encodeExtensionsMap(v); err != nil {
-		return err
-	}
-
-	return o.enc_map_body(v)
-}
-
-func (o *Buffer) enc_map_body(v map[int32]Extension) error {
-	// Fast-path for common cases: zero or one extensions.
-	if len(v) <= 1 {
-		for _, e := range v {
-			o.buf = append(o.buf, e.enc...)
-		}
-		return nil
-	}
-
-	// Sort keys to provide a deterministic encoding.
-	keys := make([]int, 0, len(v))
-	for k := range v {
-		keys = append(keys, int(k))
-	}
-	sort.Ints(keys)
-
-	for _, k := range keys {
-		o.buf = append(o.buf, v[int32(k)].enc...)
-	}
-	return nil
-}
-
-func size_map(p *Properties, base structPointer) int {
-	v := structPointer_ExtMap(base, p.field)
-	return extensionsMapSize(*v)
-}
-
-func size_exts(p *Properties, base structPointer) int {
-	v := structPointer_Extensions(base, p.field)
-	return extensionsSize(v)
-}
-
-// Encode a map field.
-func (o *Buffer) enc_new_map(p *Properties, base structPointer) error {
-	var state errorState // XXX: or do we need to plumb this through?
-
-	/*
-		A map defined as
-			map<key_type, value_type> map_field = N;
-		is encoded in the same way as
-			message MapFieldEntry {
-				key_type key = 1;
-				value_type value = 2;
-			}
-			repeated MapFieldEntry map_field = N;
-	*/
-
-	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
-	if v.Len() == 0 {
-		return nil
-	}
-
-	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
-
-	enc := func() error {
-		if err := p.mkeyprop.enc(o, p.mkeyprop, keybase); err != nil {
-			return err
-		}
-		if err := p.mvalprop.enc(o, p.mvalprop, valbase); err != nil && err != ErrNil {
-			return err
-		}
-		return nil
-	}
-
-	// Don't sort map keys. It is not required by the spec, and C++ doesn't do it.
-	for _, key := range v.MapKeys() {
-		val := v.MapIndex(key)
-
-		keycopy.Set(key)
-		valcopy.Set(val)
-
-		o.buf = append(o.buf, p.tagcode...)
-		if err := o.enc_len_thing(enc, &state); err != nil {
-			return err
-		}
-	}
-	return nil
-}
-
-func size_new_map(p *Properties, base structPointer) int {
-	v := structPointer_NewAt(base, p.field, p.mtype).Elem() // map[K]V
-
-	keycopy, valcopy, keybase, valbase := mapEncodeScratch(p.mtype)
-
-	n := 0
-	for _, key := range v.MapKeys() {
-		val := v.MapIndex(key)
-		keycopy.Set(key)
-		valcopy.Set(val)
-
-		// Tag codes for key and val are the responsibility of the sub-sizer.
-		keysize := p.mkeyprop.size(p.mkeyprop, keybase)
-		valsize := p.mvalprop.size(p.mvalprop, valbase)
-		entry := keysize + valsize
-		// Add on tag code and length of map entry itself.
-		n += len(p.tagcode) + sizeVarint(uint64(entry)) + entry
-	}
-	return n
-}
-
-// mapEncodeScratch returns a new reflect.Value matching the map's value type,
-// and a structPointer suitable for passing to an encoder or sizer.
-func mapEncodeScratch(mapType reflect.Type) (keycopy, valcopy reflect.Value, keybase, valbase structPointer) {
-	// Prepare addressable doubly-indirect placeholders for the key and value types.
-	// This is needed because the element-type encoders expect **T, but the map iteration produces T.
-
-	keycopy = reflect.New(mapType.Key()).Elem()                 // addressable K
-	keyptr := reflect.New(reflect.PtrTo(keycopy.Type())).Elem() // addressable *K
-	keyptr.Set(keycopy.Addr())                                  //
-	keybase = toStructPointer(keyptr.Addr())                    // **K
-
-	// Value types are more varied and require special handling.
-	switch mapType.Elem().Kind() {
-	case reflect.Slice:
-		// []byte
-		var dummy []byte
-		valcopy = reflect.ValueOf(&dummy).Elem() // addressable []byte
-		valbase = toStructPointer(valcopy.Addr())
-	case reflect.Ptr:
-		// message; the generated field type is map[K]*Msg (so V is *Msg),
-		// so we only need one level of indirection.
-		valcopy = reflect.New(mapType.Elem()).Elem() // addressable V
-		valbase = toStructPointer(valcopy.Addr())
-	default:
-		// everything else
-		valcopy = reflect.New(mapType.Elem()).Elem()                // addressable V
-		valptr := reflect.New(reflect.PtrTo(valcopy.Type())).Elem() // addressable *V
-		valptr.Set(valcopy.Addr())                                  //
-		valbase = toStructPointer(valptr.Addr())                    // **V
-	}
-	return
-}
-
-// Encode a struct.
-func (o *Buffer) enc_struct(prop *StructProperties, base structPointer) error {
-	var state errorState
-	// Encode fields in tag order so that decoders may use optimizations
-	// that depend on the ordering.
-	// https://developers.google.com/protocol-buffers/docs/encoding#order
-	for _, i := range prop.order {
-		p := prop.Prop[i]
-		if p.enc != nil {
-			err := p.enc(o, p, base)
-			if err != nil {
-				if err == ErrNil {
-					if p.Required && state.err == nil {
-						state.err = &RequiredNotSetError{p.Name}
-					}
-				} else if err == errRepeatedHasNil {
-					// Give more context to nil values in repeated fields.
-					return errors.New("repeated field " + p.OrigName + " has nil element")
-				} else if !state.shouldContinue(err, p) {
-					return err
-				}
-			}
-			if len(o.buf) > maxMarshalSize {
-				return ErrTooLarge
-			}
-		}
-	}
-
-	// Do oneof fields.
-	if prop.oneofMarshaler != nil {
-		m := structPointer_Interface(base, prop.stype).(Message)
-		if err := prop.oneofMarshaler(m, o); err == ErrNil {
-			return errOneofHasNil
-		} else if err != nil {
-			return err
-		}
-	}
-
-	// Add unrecognized fields at the end.
-	if prop.unrecField.IsValid() {
-		v := *structPointer_Bytes(base, prop.unrecField)
-		if len(o.buf)+len(v) > maxMarshalSize {
-			return ErrTooLarge
-		}
-		if len(v) > 0 {
-			o.buf = append(o.buf, v...)
-		}
-	}
-
-	return state.err
-}
-
-func size_struct(prop *StructProperties, base structPointer) (n int) {
-	for _, i := range prop.order {
-		p := prop.Prop[i]
-		if p.size != nil {
-			n += p.size(p, base)
-		}
-	}
-
-	// Add unrecognized fields at the end.
-	if prop.unrecField.IsValid() {
-		v := *structPointer_Bytes(base, prop.unrecField)
-		n += len(v)
-	}
-
-	// Factor in any oneof fields.
-	if prop.oneofSizer != nil {
-		m := structPointer_Interface(base, prop.stype).(Message)
-		n += prop.oneofSizer(m)
-	}
-
-	return
-}
-
-var zeroes [20]byte // longer than any conceivable sizeVarint
-
-// Encode a struct, preceded by its encoded length (as a varint).
-func (o *Buffer) enc_len_struct(prop *StructProperties, base structPointer, state *errorState) error {
-	return o.enc_len_thing(func() error { return o.enc_struct(prop, base) }, state)
-}
-
-// Encode something, preceded by its encoded length (as a varint).
-func (o *Buffer) enc_len_thing(enc func() error, state *errorState) error {
-	iLen := len(o.buf)
-	o.buf = append(o.buf, 0, 0, 0, 0) // reserve four bytes for length
-	iMsg := len(o.buf)
-	err := enc()
-	if err != nil && !state.shouldContinue(err, nil) {
-		return err
-	}
-	lMsg := len(o.buf) - iMsg
-	lLen := sizeVarint(uint64(lMsg))
-	switch x := lLen - (iMsg - iLen); {
-	case x > 0: // actual length is x bytes larger than the space we reserved
-		// Move msg x bytes right.
-		o.buf = append(o.buf, zeroes[:x]...)
-		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
-	case x < 0: // actual length is x bytes smaller than the space we reserved
-		// Move msg x bytes left.
-		copy(o.buf[iMsg+x:], o.buf[iMsg:iMsg+lMsg])
-		o.buf = o.buf[:len(o.buf)+x] // x is negative
-	}
-	// Encode the length in the reserved space.
-	o.buf = o.buf[:iLen]
-	o.EncodeVarint(uint64(lMsg))
-	o.buf = o.buf[:len(o.buf)+lMsg]
-	return state.err
-}
-
-// errorState maintains the first error that occurs and updates that error
-// with additional context.
-type errorState struct {
-	err error
-}
-
-// shouldContinue reports whether encoding should continue upon encountering the
-// given error. If the error is RequiredNotSetError, shouldContinue returns true
-// and, if this is the first appearance of that error, remembers it for future
-// reporting.
-//
-// If prop is not nil, it may update any error with additional context about the
-// field with the error.
-func (s *errorState) shouldContinue(err error, prop *Properties) bool {
-	// Ignore unset required fields.
-	reqNotSet, ok := err.(*RequiredNotSetError)
-	if !ok {
-		return false
-	}
-	if s.err == nil {
-		if prop != nil {
-			err = &RequiredNotSetError{prop.Name + "." + reqNotSet.field}
-		}
-		s.err = err
-	}
-	return true
-}
diff --git a/vendor/github.com/golang/protobuf/proto/equal.go b/vendor/github.com/golang/protobuf/proto/equal.go
index 2ed1cf5966..d4db5a1c14 100644
--- a/vendor/github.com/golang/protobuf/proto/equal.go
+++ b/vendor/github.com/golang/protobuf/proto/equal.go
@@ -109,15 +109,6 @@ func equalStruct(v1, v2 reflect.Value) bool {
 				// set/unset mismatch
 				return false
 			}
-			b1, ok := f1.Interface().(raw)
-			if ok {
-				b2 := f2.Interface().(raw)
-				// RawMessage
-				if !bytes.Equal(b1.Bytes(), b2.Bytes()) {
-					return false
-				}
-				continue
-			}
 			f1, f2 = f1.Elem(), f2.Elem()
 		}
 		if !equalAny(f1, f2, sprop.Prop[i]) {
@@ -146,11 +137,7 @@ func equalStruct(v1, v2 reflect.Value) bool {
 
 	u1 := uf.Bytes()
 	u2 := v2.FieldByName("XXX_unrecognized").Bytes()
-	if !bytes.Equal(u1, u2) {
-		return false
-	}
-
-	return true
+	return bytes.Equal(u1, u2)
 }
 
 // v1 and v2 are known to have the same type.
@@ -261,6 +248,15 @@ func equalExtMap(base reflect.Type, em1, em2 map[int32]Extension) bool {
 
 		m1, m2 := e1.value, e2.value
 
+		if m1 == nil && m2 == nil {
+			// Both have only encoded form.
+			if bytes.Equal(e1.enc, e2.enc) {
+				continue
+			}
+			// The bytes are different, but the extensions might still be
+			// equal. We need to decode them to compare.
+		}
+
 		if m1 != nil && m2 != nil {
 			// Both are unencoded.
 			if !equalAny(reflect.ValueOf(m1), reflect.ValueOf(m2), nil) {
@@ -276,8 +272,12 @@ func equalExtMap(base reflect.Type, em1, em2 map[int32]Extension) bool {
 			desc = m[extNum]
 		}
 		if desc == nil {
+			// If both have only encoded form and the bytes are the same,
+			// it is handled above. We get here when the bytes are different.
+			// We don't know how to decode it, so just compare them as byte
+			// slices.
 			log.Printf("proto: don't know how to compare extension %d of %v", extNum, base)
-			continue
+			return false
 		}
 		var err error
 		if m1 == nil {
diff --git a/vendor/github.com/golang/protobuf/proto/extensions.go b/vendor/github.com/golang/protobuf/proto/extensions.go
index eaad218312..816a3b9d6c 100644
--- a/vendor/github.com/golang/protobuf/proto/extensions.go
+++ b/vendor/github.com/golang/protobuf/proto/extensions.go
@@ -38,6 +38,7 @@ package proto
 import (
 	"errors"
 	"fmt"
+	"io"
 	"reflect"
 	"strconv"
 	"sync"
@@ -91,14 +92,29 @@ func (n notLocker) Unlock() {}
 // extendable returns the extendableProto interface for the given generated proto message.
 // If the proto message has the old extension format, it returns a wrapper that implements
 // the extendableProto interface.
-func extendable(p interface{}) (extendableProto, bool) {
-	if ep, ok := p.(extendableProto); ok {
-		return ep, ok
-	}
-	if ep, ok := p.(extendableProtoV1); ok {
-		return extensionAdapter{ep}, ok
+func extendable(p interface{}) (extendableProto, error) {
+	switch p := p.(type) {
+	case extendableProto:
+		if isNilPtr(p) {
+			return nil, fmt.Errorf("proto: nil %T is not extendable", p)
+		}
+		return p, nil
+	case extendableProtoV1:
+		if isNilPtr(p) {
+			return nil, fmt.Errorf("proto: nil %T is not extendable", p)
+		}
+		return extensionAdapter{p}, nil
 	}
-	return nil, false
+	// Don't allocate a specific error containing %T:
+	// this is the hot path for Clone and MarshalText.
+	return nil, errNotExtendable
+}
+
+var errNotExtendable = errors.New("proto: not an extendable proto.Message")
+
+func isNilPtr(x interface{}) bool {
+	v := reflect.ValueOf(x)
+	return v.Kind() == reflect.Ptr && v.IsNil()
 }
 
 // XXX_InternalExtensions is an internal representation of proto extensions.
@@ -143,9 +159,6 @@ func (e *XXX_InternalExtensions) extensionsRead() (map[int32]Extension, sync.Loc
 	return e.p.extensionMap, &e.p.mu
 }
 
-var extendableProtoType = reflect.TypeOf((*extendableProto)(nil)).Elem()
-var extendableProtoV1Type = reflect.TypeOf((*extendableProtoV1)(nil)).Elem()
-
 // ExtensionDesc represents an extension specification.
 // Used in generated code from the protocol compiler.
 type ExtensionDesc struct {
@@ -179,8 +192,8 @@ type Extension struct {
 
 // SetRawExtension is for testing only.
 func SetRawExtension(base Message, id int32, b []byte) {
-	epb, ok := extendable(base)
-	if !ok {
+	epb, err := extendable(base)
+	if err != nil {
 		return
 	}
 	extmap := epb.extensionsWrite()
@@ -205,7 +218,7 @@ func checkExtensionTypes(pb extendableProto, extension *ExtensionDesc) error {
 		pbi = ea.extendableProtoV1
 	}
 	if a, b := reflect.TypeOf(pbi), reflect.TypeOf(extension.ExtendedType); a != b {
-		return errors.New("proto: bad extended type; " + b.String() + " does not extend " + a.String())
+		return fmt.Errorf("proto: bad extended type; %v does not extend %v", b, a)
 	}
 	// Check the range.
 	if !isExtensionField(pb, extension.Field) {
@@ -250,85 +263,11 @@ func extensionProperties(ed *ExtensionDesc) *Properties {
 	return prop
 }
 
-// encode encodes any unmarshaled (unencoded) extensions in e.
-func encodeExtensions(e *XXX_InternalExtensions) error {
-	m, mu := e.extensionsRead()
-	if m == nil {
-		return nil // fast path
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	return encodeExtensionsMap(m)
-}
-
-// encode encodes any unmarshaled (unencoded) extensions in e.
-func encodeExtensionsMap(m map[int32]Extension) error {
-	for k, e := range m {
-		if e.value == nil || e.desc == nil {
-			// Extension is only in its encoded form.
-			continue
-		}
-
-		// We don't skip extensions that have an encoded form set,
-		// because the extension value may have been mutated after
-		// the last time this function was called.
-
-		et := reflect.TypeOf(e.desc.ExtensionType)
-		props := extensionProperties(e.desc)
-
-		p := NewBuffer(nil)
-		// If e.value has type T, the encoder expects a *struct{ X T }.
-		// Pass a *T with a zero field and hope it all works out.
-		x := reflect.New(et)
-		x.Elem().Set(reflect.ValueOf(e.value))
-		if err := props.enc(p, props, toStructPointer(x)); err != nil {
-			return err
-		}
-		e.enc = p.buf
-		m[k] = e
-	}
-	return nil
-}
-
-func extensionsSize(e *XXX_InternalExtensions) (n int) {
-	m, mu := e.extensionsRead()
-	if m == nil {
-		return 0
-	}
-	mu.Lock()
-	defer mu.Unlock()
-	return extensionsMapSize(m)
-}
-
-func extensionsMapSize(m map[int32]Extension) (n int) {
-	for _, e := range m {
-		if e.value == nil || e.desc == nil {
-			// Extension is only in its encoded form.
-			n += len(e.enc)
-			continue
-		}
-
-		// We don't skip extensions that have an encoded form set,
-		// because the extension value may have been mutated after
-		// the last time this function was called.
-
-		et := reflect.TypeOf(e.desc.ExtensionType)
-		props := extensionProperties(e.desc)
-
-		// If e.value has type T, the encoder expects a *struct{ X T }.
-		// Pass a *T with a zero field and hope it all works out.
-		x := reflect.New(et)
-		x.Elem().Set(reflect.ValueOf(e.value))
-		n += props.size(props, toStructPointer(x))
-	}
-	return
-}
-
 // HasExtension returns whether the given extension is present in pb.
 func HasExtension(pb Message, extension *ExtensionDesc) bool {
 	// TODO: Check types, field numbers, etc.?
-	epb, ok := extendable(pb)
-	if !ok {
+	epb, err := extendable(pb)
+	if err != nil {
 		return false
 	}
 	extmap, mu := epb.extensionsRead()
@@ -336,15 +275,15 @@ func HasExtension(pb Message, extension *ExtensionDesc) bool {
 		return false
 	}
 	mu.Lock()
-	_, ok = extmap[extension.Field]
+	_, ok := extmap[extension.Field]
 	mu.Unlock()
 	return ok
 }
 
 // ClearExtension removes the given extension from pb.
 func ClearExtension(pb Message, extension *ExtensionDesc) {
-	epb, ok := extendable(pb)
-	if !ok {
+	epb, err := extendable(pb)
+	if err != nil {
 		return
 	}
 	// TODO: Check types, field numbers, etc.?
@@ -352,16 +291,26 @@ func ClearExtension(pb Message, extension *ExtensionDesc) {
 	delete(extmap, extension.Field)
 }
 
-// GetExtension parses and returns the given extension of pb.
-// If the extension is not present and has no default value it returns ErrMissingExtension.
+// GetExtension retrieves a proto2 extended field from pb.
+//
+// If the descriptor is type complete (i.e., ExtensionDesc.ExtensionType is non-nil),
+// then GetExtension parses the encoded field and returns a Go value of the specified type.
+// If the field is not present, then the default value is returned (if one is specified),
+// otherwise ErrMissingExtension is reported.
+//
+// If the descriptor is not type complete (i.e., ExtensionDesc.ExtensionType is nil),
+// then GetExtension returns the raw encoded bytes of the field extension.
 func GetExtension(pb Message, extension *ExtensionDesc) (interface{}, error) {
-	epb, ok := extendable(pb)
-	if !ok {
-		return nil, errors.New("proto: not an extendable proto")
+	epb, err := extendable(pb)
+	if err != nil {
+		return nil, err
 	}
 
-	if err := checkExtensionTypes(epb, extension); err != nil {
-		return nil, err
+	if extension.ExtendedType != nil {
+		// can only check type if this is a complete descriptor
+		if err := checkExtensionTypes(epb, extension); err != nil {
+			return nil, err
+		}
 	}
 
 	emap, mu := epb.extensionsRead()
@@ -388,6 +337,11 @@ func GetExtension(pb Message, extension *ExtensionDesc) (interface{}, error) {
 		return e.value, nil
 	}
 
+	if extension.ExtensionType == nil {
+		// incomplete descriptor
+		return e.enc, nil
+	}
+
 	v, err := decodeExtension(e.enc, extension)
 	if err != nil {
 		return nil, err
@@ -405,6 +359,11 @@ func GetExtension(pb Message, extension *ExtensionDesc) (interface{}, error) {
 // defaultExtensionValue returns the default value for extension.
 // If no default for an extension is defined ErrMissingExtension is returned.
 func defaultExtensionValue(extension *ExtensionDesc) (interface{}, error) {
+	if extension.ExtensionType == nil {
+		// incomplete descriptor, so no default
+		return nil, ErrMissingExtension
+	}
+
 	t := reflect.TypeOf(extension.ExtensionType)
 	props := extensionProperties(extension)
 
@@ -439,31 +398,28 @@ func defaultExtensionValue(extension *ExtensionDesc) (interface{}, error) {
 
 // decodeExtension decodes an extension encoded in b.
 func decodeExtension(b []byte, extension *ExtensionDesc) (interface{}, error) {
-	o := NewBuffer(b)
-
 	t := reflect.TypeOf(extension.ExtensionType)
-
-	props := extensionProperties(extension)
+	unmarshal := typeUnmarshaler(t, extension.Tag)
 
 	// t is a pointer to a struct, pointer to basic type or a slice.
-	// Allocate a "field" to store the pointer/slice itself; the
-	// pointer/slice will be stored here. We pass
-	// the address of this field to props.dec.
-	// This passes a zero field and a *t and lets props.dec
-	// interpret it as a *struct{ x t }.
+	// Allocate space to store the pointer/slice.
 	value := reflect.New(t).Elem()
 
+	var err error
 	for {
-		// Discard wire type and field number varint. It isn't needed.
-		if _, err := o.DecodeVarint(); err != nil {
-			return nil, err
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
 		}
+		b = b[n:]
+		wire := int(x) & 7
 
-		if err := props.dec(o, props, toStructPointer(value.Addr())); err != nil {
+		b, err = unmarshal(b, valToPointer(value.Addr()), wire)
+		if err != nil {
 			return nil, err
 		}
 
-		if o.index >= len(o.buf) {
+		if len(b) == 0 {
 			break
 		}
 	}
@@ -473,9 +429,9 @@ func decodeExtension(b []byte, extension *ExtensionDesc) (interface{}, error) {
 // GetExtensions returns a slice of the extensions present in pb that are also listed in es.
 // The returned slice has the same length as es; missing extensions will appear as nil elements.
 func GetExtensions(pb Message, es []*ExtensionDesc) (extensions []interface{}, err error) {
-	epb, ok := extendable(pb)
-	if !ok {
-		return nil, errors.New("proto: not an extendable proto")
+	epb, err := extendable(pb)
+	if err != nil {
+		return nil, err
 	}
 	extensions = make([]interface{}, len(es))
 	for i, e := range es {
@@ -494,9 +450,9 @@ func GetExtensions(pb Message, es []*ExtensionDesc) (extensions []interface{}, e
 // For non-registered extensions, ExtensionDescs returns an incomplete descriptor containing
 // just the Field field, which defines the extension's field number.
 func ExtensionDescs(pb Message) ([]*ExtensionDesc, error) {
-	epb, ok := extendable(pb)
-	if !ok {
-		return nil, fmt.Errorf("proto: %T is not an extendable proto.Message", pb)
+	epb, err := extendable(pb)
+	if err != nil {
+		return nil, err
 	}
 	registeredExtensions := RegisteredExtensions(pb)
 
@@ -523,9 +479,9 @@ func ExtensionDescs(pb Message) ([]*ExtensionDesc, error) {
 
 // SetExtension sets the specified extension of pb to the specified value.
 func SetExtension(pb Message, extension *ExtensionDesc, value interface{}) error {
-	epb, ok := extendable(pb)
-	if !ok {
-		return errors.New("proto: not an extendable proto")
+	epb, err := extendable(pb)
+	if err != nil {
+		return err
 	}
 	if err := checkExtensionTypes(epb, extension); err != nil {
 		return err
@@ -550,8 +506,8 @@ func SetExtension(pb Message, extension *ExtensionDesc, value interface{}) error
 
 // ClearAllExtensions clears all extensions from pb.
 func ClearAllExtensions(pb Message) {
-	epb, ok := extendable(pb)
-	if !ok {
+	epb, err := extendable(pb)
+	if err != nil {
 		return
 	}
 	m := epb.extensionsWrite()
diff --git a/vendor/github.com/golang/protobuf/proto/lib.go b/vendor/github.com/golang/protobuf/proto/lib.go
index 1c225504a0..0e2191b8ad 100644
--- a/vendor/github.com/golang/protobuf/proto/lib.go
+++ b/vendor/github.com/golang/protobuf/proto/lib.go
@@ -265,6 +265,7 @@ package proto
 
 import (
 	"encoding/json"
+	"errors"
 	"fmt"
 	"log"
 	"reflect"
@@ -273,6 +274,8 @@ import (
 	"sync"
 )
 
+var errInvalidUTF8 = errors.New("proto: invalid UTF-8 string")
+
 // Message is implemented by generated protocol buffer messages.
 type Message interface {
 	Reset()
@@ -309,16 +312,7 @@ type Buffer struct {
 	buf   []byte // encode/decode byte stream
 	index int    // read point
 
-	// pools of basic types to amortize allocation.
-	bools   []bool
-	uint32s []uint32
-	uint64s []uint64
-
-	// extra pools, only used with pointer_reflect.go
-	int32s   []int32
-	int64s   []int64
-	float32s []float32
-	float64s []float64
+	deterministic bool
 }
 
 // NewBuffer allocates a new Buffer and initializes its internal data to
@@ -343,6 +337,30 @@ func (p *Buffer) SetBuf(s []byte) {
 // Bytes returns the contents of the Buffer.
 func (p *Buffer) Bytes() []byte { return p.buf }
 
+// SetDeterministic sets whether to use deterministic serialization.
+//
+// Deterministic serialization guarantees that for a given binary, equal
+// messages will always be serialized to the same bytes. This implies:
+//
+//   - Repeated serialization of a message will return the same bytes.
+//   - Different processes of the same binary (which may be executing on
+//     different machines) will serialize equal messages to the same bytes.
+//
+// Note that the deterministic serialization is NOT canonical across
+// languages. It is not guaranteed to remain stable over time. It is unstable
+// across different builds with schema changes due to unknown fields.
+// Users who need canonical serialization (e.g., persistent storage in a
+// canonical form, fingerprinting, etc.) should define their own
+// canonicalization specification and implement their own serializer rather
+// than relying on this API.
+//
+// If deterministic serialization is requested, map entries will be sorted
+// by keys in lexographical order. This is an implementation detail and
+// subject to change.
+func (p *Buffer) SetDeterministic(deterministic bool) {
+	p.deterministic = deterministic
+}
+
 /*
  * Helper routines for simplifying the creation of optional fields of basic type.
  */
@@ -831,22 +849,12 @@ func fieldDefault(ft reflect.Type, prop *Properties) (sf *scalarField, nestedMes
 	return sf, false, nil
 }
 
+// mapKeys returns a sort.Interface to be used for sorting the map keys.
 // Map fields may have key types of non-float scalars, strings and enums.
-// The easiest way to sort them in some deterministic order is to use fmt.
-// If this turns out to be inefficient we can always consider other options,
-// such as doing a Schwartzian transform.
-
 func mapKeys(vs []reflect.Value) sort.Interface {
-	s := mapKeySorter{
-		vs: vs,
-		// default Less function: textual comparison
-		less: func(a, b reflect.Value) bool {
-			return fmt.Sprint(a.Interface()) < fmt.Sprint(b.Interface())
-		},
-	}
+	s := mapKeySorter{vs: vs}
 
-	// Type specialization per https://developers.google.com/protocol-buffers/docs/proto#maps;
-	// numeric keys are sorted numerically.
+	// Type specialization per https://developers.google.com/protocol-buffers/docs/proto#maps.
 	if len(vs) == 0 {
 		return s
 	}
@@ -855,6 +863,12 @@ func mapKeys(vs []reflect.Value) sort.Interface {
 		s.less = func(a, b reflect.Value) bool { return a.Int() < b.Int() }
 	case reflect.Uint32, reflect.Uint64:
 		s.less = func(a, b reflect.Value) bool { return a.Uint() < b.Uint() }
+	case reflect.Bool:
+		s.less = func(a, b reflect.Value) bool { return !a.Bool() && b.Bool() } // false < true
+	case reflect.String:
+		s.less = func(a, b reflect.Value) bool { return a.String() < b.String() }
+	default:
+		panic(fmt.Sprintf("unsupported map key type: %v", vs[0].Kind()))
 	}
 
 	return s
@@ -895,3 +909,13 @@ const ProtoPackageIsVersion2 = true
 // ProtoPackageIsVersion1 is referenced from generated protocol buffer files
 // to assert that that code is compatible with this version of the proto package.
 const ProtoPackageIsVersion1 = true
+
+// InternalMessageInfo is a type used internally by generated .pb.go files.
+// This type is not intended to be used by non-generated code.
+// This type is not subject to any compatibility guarantee.
+type InternalMessageInfo struct {
+	marshal   *marshalInfo
+	unmarshal *unmarshalInfo
+	merge     *mergeInfo
+	discard   *discardInfo
+}
diff --git a/vendor/github.com/golang/protobuf/proto/message_set.go b/vendor/github.com/golang/protobuf/proto/message_set.go
index fd982decd6..3b6ca41d5e 100644
--- a/vendor/github.com/golang/protobuf/proto/message_set.go
+++ b/vendor/github.com/golang/protobuf/proto/message_set.go
@@ -42,6 +42,7 @@ import (
 	"fmt"
 	"reflect"
 	"sort"
+	"sync"
 )
 
 // errNoMessageTypeID occurs when a protocol buffer does not have a message type ID.
@@ -94,10 +95,7 @@ func (ms *messageSet) find(pb Message) *_MessageSet_Item {
 }
 
 func (ms *messageSet) Has(pb Message) bool {
-	if ms.find(pb) != nil {
-		return true
-	}
-	return false
+	return ms.find(pb) != nil
 }
 
 func (ms *messageSet) Unmarshal(pb Message) error {
@@ -150,46 +148,42 @@ func skipVarint(buf []byte) []byte {
 // MarshalMessageSet encodes the extension map represented by m in the message set wire format.
 // It is called by generated Marshal methods on protocol buffer messages with the message_set_wire_format option.
 func MarshalMessageSet(exts interface{}) ([]byte, error) {
-	var m map[int32]Extension
+	return marshalMessageSet(exts, false)
+}
+
+// marshaMessageSet implements above function, with the opt to turn on / off deterministic during Marshal.
+func marshalMessageSet(exts interface{}, deterministic bool) ([]byte, error) {
 	switch exts := exts.(type) {
 	case *XXX_InternalExtensions:
-		if err := encodeExtensions(exts); err != nil {
-			return nil, err
-		}
-		m, _ = exts.extensionsRead()
+		var u marshalInfo
+		siz := u.sizeMessageSet(exts)
+		b := make([]byte, 0, siz)
+		return u.appendMessageSet(b, exts, deterministic)
+
 	case map[int32]Extension:
-		if err := encodeExtensionsMap(exts); err != nil {
-			return nil, err
+		// This is an old-style extension map.
+		// Wrap it in a new-style XXX_InternalExtensions.
+		ie := XXX_InternalExtensions{
+			p: &struct {
+				mu           sync.Mutex
+				extensionMap map[int32]Extension
+			}{
+				extensionMap: exts,
+			},
 		}
-		m = exts
+
+		var u marshalInfo
+		siz := u.sizeMessageSet(&ie)
+		b := make([]byte, 0, siz)
+		return u.appendMessageSet(b, &ie, deterministic)
+
 	default:
 		return nil, errors.New("proto: not an extension map")
 	}
-
-	// Sort extension IDs to provide a deterministic encoding.
-	// See also enc_map in encode.go.
-	ids := make([]int, 0, len(m))
-	for id := range m {
-		ids = append(ids, int(id))
-	}
-	sort.Ints(ids)
-
-	ms := &messageSet{Item: make([]*_MessageSet_Item, 0, len(m))}
-	for _, id := range ids {
-		e := m[int32(id)]
-		// Remove the wire type and field number varint, as well as the length varint.
-		msg := skipVarint(skipVarint(e.enc))
-
-		ms.Item = append(ms.Item, &_MessageSet_Item{
-			TypeId:  Int32(int32(id)),
-			Message: msg,
-		})
-	}
-	return Marshal(ms)
 }
 
 // UnmarshalMessageSet decodes the extension map encoded in buf in the message set wire format.
-// It is called by generated Unmarshal methods on protocol buffer messages with the message_set_wire_format option.
+// It is called by Unmarshal methods on protocol buffer messages with the message_set_wire_format option.
 func UnmarshalMessageSet(buf []byte, exts interface{}) error {
 	var m map[int32]Extension
 	switch exts := exts.(type) {
@@ -235,7 +229,15 @@ func MarshalMessageSetJSON(exts interface{}) ([]byte, error) {
 	var m map[int32]Extension
 	switch exts := exts.(type) {
 	case *XXX_InternalExtensions:
-		m, _ = exts.extensionsRead()
+		var mu sync.Locker
+		m, mu = exts.extensionsRead()
+		if m != nil {
+			// Keep the extensions map locked until we're done marshaling to prevent
+			// races between marshaling and unmarshaling the lazily-{en,de}coded
+			// values.
+			mu.Lock()
+			defer mu.Unlock()
+		}
 	case map[int32]Extension:
 		m = exts
 	default:
@@ -253,15 +255,16 @@ func MarshalMessageSetJSON(exts interface{}) ([]byte, error) {
 
 	for i, id := range ids {
 		ext := m[id]
-		if i > 0 {
-			b.WriteByte(',')
-		}
-
 		msd, ok := messageSetMap[id]
 		if !ok {
 			// Unknown type; we can't render it, so skip it.
 			continue
 		}
+
+		if i > 0 && b.Len() > 1 {
+			b.WriteByte(',')
+		}
+
 		fmt.Fprintf(&b, `"[%s]":`, msd.name)
 
 		x := ext.value
diff --git a/vendor/github.com/golang/protobuf/proto/pointer_reflect.go b/vendor/github.com/golang/protobuf/proto/pointer_reflect.go
index fb512e2e16..b6cad90834 100644
--- a/vendor/github.com/golang/protobuf/proto/pointer_reflect.go
+++ b/vendor/github.com/golang/protobuf/proto/pointer_reflect.go
@@ -29,7 +29,7 @@
 // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-// +build appengine js
+// +build purego appengine js
 
 // This file contains an implementation of proto field accesses using package reflect.
 // It is slower than the code in pointer_unsafe.go but it avoids package unsafe and can
@@ -38,32 +38,13 @@
 package proto
 
 import (
-	"math"
 	"reflect"
+	"sync"
 )
 
-// A structPointer is a pointer to a struct.
-type structPointer struct {
-	v reflect.Value
-}
-
-// toStructPointer returns a structPointer equivalent to the given reflect value.
-// The reflect value must itself be a pointer to a struct.
-func toStructPointer(v reflect.Value) structPointer {
-	return structPointer{v}
-}
-
-// IsNil reports whether p is nil.
-func structPointer_IsNil(p structPointer) bool {
-	return p.v.IsNil()
-}
+const unsafeAllowed = false
 
-// Interface returns the struct pointer as an interface value.
-func structPointer_Interface(p structPointer, _ reflect.Type) interface{} {
-	return p.v.Interface()
-}
-
-// A field identifies a field in a struct, accessible from a structPointer.
+// A field identifies a field in a struct, accessible from a pointer.
 // In this implementation, a field is identified by the sequence of field indices
 // passed to reflect's FieldByIndex.
 type field []int
@@ -76,409 +57,301 @@ func toField(f *reflect.StructField) field {
 // invalidField is an invalid field identifier.
 var invalidField = field(nil)
 
+// zeroField is a noop when calling pointer.offset.
+var zeroField = field([]int{})
+
 // IsValid reports whether the field identifier is valid.
 func (f field) IsValid() bool { return f != nil }
 
-// field returns the given field in the struct as a reflect value.
-func structPointer_field(p structPointer, f field) reflect.Value {
-	// Special case: an extension map entry with a value of type T
-	// passes a *T to the struct-handling code with a zero field,
-	// expecting that it will be treated as equivalent to *struct{ X T },
-	// which has the same memory layout. We have to handle that case
-	// specially, because reflect will panic if we call FieldByIndex on a
-	// non-struct.
-	if f == nil {
-		return p.v.Elem()
-	}
-
-	return p.v.Elem().FieldByIndex(f)
+// The pointer type is for the table-driven decoder.
+// The implementation here uses a reflect.Value of pointer type to
+// create a generic pointer. In pointer_unsafe.go we use unsafe
+// instead of reflect to implement the same (but faster) interface.
+type pointer struct {
+	v reflect.Value
 }
 
-// ifield returns the given field in the struct as an interface value.
-func structPointer_ifield(p structPointer, f field) interface{} {
-	return structPointer_field(p, f).Addr().Interface()
+// toPointer converts an interface of pointer type to a pointer
+// that points to the same target.
+func toPointer(i *Message) pointer {
+	return pointer{v: reflect.ValueOf(*i)}
 }
 
-// Bytes returns the address of a []byte field in the struct.
-func structPointer_Bytes(p structPointer, f field) *[]byte {
-	return structPointer_ifield(p, f).(*[]byte)
+// toAddrPointer converts an interface to a pointer that points to
+// the interface data.
+func toAddrPointer(i *interface{}, isptr bool) pointer {
+	v := reflect.ValueOf(*i)
+	u := reflect.New(v.Type())
+	u.Elem().Set(v)
+	return pointer{v: u}
 }
 
-// BytesSlice returns the address of a [][]byte field in the struct.
-func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
-	return structPointer_ifield(p, f).(*[][]byte)
+// valToPointer converts v to a pointer.  v must be of pointer type.
+func valToPointer(v reflect.Value) pointer {
+	return pointer{v: v}
 }
 
-// Bool returns the address of a *bool field in the struct.
-func structPointer_Bool(p structPointer, f field) **bool {
-	return structPointer_ifield(p, f).(**bool)
+// offset converts from a pointer to a structure to a pointer to
+// one of its fields.
+func (p pointer) offset(f field) pointer {
+	return pointer{v: p.v.Elem().FieldByIndex(f).Addr()}
 }
 
-// BoolVal returns the address of a bool field in the struct.
-func structPointer_BoolVal(p structPointer, f field) *bool {
-	return structPointer_ifield(p, f).(*bool)
+func (p pointer) isNil() bool {
+	return p.v.IsNil()
 }
 
-// BoolSlice returns the address of a []bool field in the struct.
-func structPointer_BoolSlice(p structPointer, f field) *[]bool {
-	return structPointer_ifield(p, f).(*[]bool)
+// grow updates the slice s in place to make it one element longer.
+// s must be addressable.
+// Returns the (addressable) new element.
+func grow(s reflect.Value) reflect.Value {
+	n, m := s.Len(), s.Cap()
+	if n < m {
+		s.SetLen(n + 1)
+	} else {
+		s.Set(reflect.Append(s, reflect.Zero(s.Type().Elem())))
+	}
+	return s.Index(n)
 }
 
-// String returns the address of a *string field in the struct.
-func structPointer_String(p structPointer, f field) **string {
-	return structPointer_ifield(p, f).(**string)
+func (p pointer) toInt64() *int64 {
+	return p.v.Interface().(*int64)
 }
-
-// StringVal returns the address of a string field in the struct.
-func structPointer_StringVal(p structPointer, f field) *string {
-	return structPointer_ifield(p, f).(*string)
+func (p pointer) toInt64Ptr() **int64 {
+	return p.v.Interface().(**int64)
 }
-
-// StringSlice returns the address of a []string field in the struct.
-func structPointer_StringSlice(p structPointer, f field) *[]string {
-	return structPointer_ifield(p, f).(*[]string)
+func (p pointer) toInt64Slice() *[]int64 {
+	return p.v.Interface().(*[]int64)
 }
 
-// Extensions returns the address of an extension map field in the struct.
-func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
-	return structPointer_ifield(p, f).(*XXX_InternalExtensions)
-}
+var int32ptr = reflect.TypeOf((*int32)(nil))
 
-// ExtMap returns the address of an extension map field in the struct.
-func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
-	return structPointer_ifield(p, f).(*map[int32]Extension)
+func (p pointer) toInt32() *int32 {
+	return p.v.Convert(int32ptr).Interface().(*int32)
 }
 
-// NewAt returns the reflect.Value for a pointer to a field in the struct.
-func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
-	return structPointer_field(p, f).Addr()
+// The toInt32Ptr/Slice methods don't work because of enums.
+// Instead, we must use set/get methods for the int32ptr/slice case.
+/*
+	func (p pointer) toInt32Ptr() **int32 {
+		return p.v.Interface().(**int32)
 }
-
-// SetStructPointer writes a *struct field in the struct.
-func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
-	structPointer_field(p, f).Set(q.v)
+	func (p pointer) toInt32Slice() *[]int32 {
+		return p.v.Interface().(*[]int32)
 }
-
-// GetStructPointer reads a *struct field in the struct.
-func structPointer_GetStructPointer(p structPointer, f field) structPointer {
-	return structPointer{structPointer_field(p, f)}
+*/
+func (p pointer) getInt32Ptr() *int32 {
+	if p.v.Type().Elem().Elem() == reflect.TypeOf(int32(0)) {
+		// raw int32 type
+		return p.v.Elem().Interface().(*int32)
+	}
+	// an enum
+	return p.v.Elem().Convert(int32PtrType).Interface().(*int32)
+}
+func (p pointer) setInt32Ptr(v int32) {
+	// Allocate value in a *int32. Possibly convert that to a *enum.
+	// Then assign it to a **int32 or **enum.
+	// Note: we can convert *int32 to *enum, but we can't convert
+	// **int32 to **enum!
+	p.v.Elem().Set(reflect.ValueOf(&v).Convert(p.v.Type().Elem()))
+}
+
+// getInt32Slice copies []int32 from p as a new slice.
+// This behavior differs from the implementation in pointer_unsafe.go.
+func (p pointer) getInt32Slice() []int32 {
+	if p.v.Type().Elem().Elem() == reflect.TypeOf(int32(0)) {
+		// raw int32 type
+		return p.v.Elem().Interface().([]int32)
+	}
+	// an enum
+	// Allocate a []int32, then assign []enum's values into it.
+	// Note: we can't convert []enum to []int32.
+	slice := p.v.Elem()
+	s := make([]int32, slice.Len())
+	for i := 0; i < slice.Len(); i++ {
+		s[i] = int32(slice.Index(i).Int())
+	}
+	return s
 }
 
-// StructPointerSlice the address of a []*struct field in the struct.
-func structPointer_StructPointerSlice(p structPointer, f field) structPointerSlice {
-	return structPointerSlice{structPointer_field(p, f)}
+// setInt32Slice copies []int32 into p as a new slice.
+// This behavior differs from the implementation in pointer_unsafe.go.
+func (p pointer) setInt32Slice(v []int32) {
+	if p.v.Type().Elem().Elem() == reflect.TypeOf(int32(0)) {
+		// raw int32 type
+		p.v.Elem().Set(reflect.ValueOf(v))
+		return
+	}
+	// an enum
+	// Allocate a []enum, then assign []int32's values into it.
+	// Note: we can't convert []enum to []int32.
+	slice := reflect.MakeSlice(p.v.Type().Elem(), len(v), cap(v))
+	for i, x := range v {
+		slice.Index(i).SetInt(int64(x))
+	}
+	p.v.Elem().Set(slice)
 }
-
-// A structPointerSlice represents the address of a slice of pointers to structs
-// (themselves messages or groups). That is, v.Type() is *[]*struct{...}.
-type structPointerSlice struct {
-	v reflect.Value
+func (p pointer) appendInt32Slice(v int32) {
+	grow(p.v.Elem()).SetInt(int64(v))
 }
 
-func (p structPointerSlice) Len() int                  { return p.v.Len() }
-func (p structPointerSlice) Index(i int) structPointer { return structPointer{p.v.Index(i)} }
-func (p structPointerSlice) Append(q structPointer) {
-	p.v.Set(reflect.Append(p.v, q.v))
+func (p pointer) toUint64() *uint64 {
+	return p.v.Interface().(*uint64)
 }
-
-var (
-	int32Type   = reflect.TypeOf(int32(0))
-	uint32Type  = reflect.TypeOf(uint32(0))
-	float32Type = reflect.TypeOf(float32(0))
-	int64Type   = reflect.TypeOf(int64(0))
-	uint64Type  = reflect.TypeOf(uint64(0))
-	float64Type = reflect.TypeOf(float64(0))
-)
-
-// A word32 represents a field of type *int32, *uint32, *float32, or *enum.
-// That is, v.Type() is *int32, *uint32, *float32, or *enum and v is assignable.
-type word32 struct {
-	v reflect.Value
+func (p pointer) toUint64Ptr() **uint64 {
+	return p.v.Interface().(**uint64)
 }
-
-// IsNil reports whether p is nil.
-func word32_IsNil(p word32) bool {
-	return p.v.IsNil()
+func (p pointer) toUint64Slice() *[]uint64 {
+	return p.v.Interface().(*[]uint64)
 }
-
-// Set sets p to point at a newly allocated word with bits set to x.
-func word32_Set(p word32, o *Buffer, x uint32) {
-	t := p.v.Type().Elem()
-	switch t {
-	case int32Type:
-		if len(o.int32s) == 0 {
-			o.int32s = make([]int32, uint32PoolSize)
-		}
-		o.int32s[0] = int32(x)
-		p.v.Set(reflect.ValueOf(&o.int32s[0]))
-		o.int32s = o.int32s[1:]
-		return
-	case uint32Type:
-		if len(o.uint32s) == 0 {
-			o.uint32s = make([]uint32, uint32PoolSize)
-		}
-		o.uint32s[0] = x
-		p.v.Set(reflect.ValueOf(&o.uint32s[0]))
-		o.uint32s = o.uint32s[1:]
-		return
-	case float32Type:
-		if len(o.float32s) == 0 {
-			o.float32s = make([]float32, uint32PoolSize)
-		}
-		o.float32s[0] = math.Float32frombits(x)
-		p.v.Set(reflect.ValueOf(&o.float32s[0]))
-		o.float32s = o.float32s[1:]
-		return
-	}
-
-	// must be enum
-	p.v.Set(reflect.New(t))
-	p.v.Elem().SetInt(int64(int32(x)))
+func (p pointer) toUint32() *uint32 {
+	return p.v.Interface().(*uint32)
 }
-
-// Get gets the bits pointed at by p, as a uint32.
-func word32_Get(p word32) uint32 {
-	elem := p.v.Elem()
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
+func (p pointer) toUint32Ptr() **uint32 {
+	return p.v.Interface().(**uint32)
 }
-
-// Word32 returns a reference to a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32(p structPointer, f field) word32 {
-	return word32{structPointer_field(p, f)}
+func (p pointer) toUint32Slice() *[]uint32 {
+	return p.v.Interface().(*[]uint32)
 }
-
-// A word32Val represents a field of type int32, uint32, float32, or enum.
-// That is, v.Type() is int32, uint32, float32, or enum and v is assignable.
-type word32Val struct {
-	v reflect.Value
+func (p pointer) toBool() *bool {
+	return p.v.Interface().(*bool)
 }
-
-// Set sets *p to x.
-func word32Val_Set(p word32Val, x uint32) {
-	switch p.v.Type() {
-	case int32Type:
-		p.v.SetInt(int64(x))
-		return
-	case uint32Type:
-		p.v.SetUint(uint64(x))
-		return
-	case float32Type:
-		p.v.SetFloat(float64(math.Float32frombits(x)))
-		return
-	}
-
-	// must be enum
-	p.v.SetInt(int64(int32(x)))
+func (p pointer) toBoolPtr() **bool {
+	return p.v.Interface().(**bool)
 }
-
-// Get gets the bits pointed at by p, as a uint32.
-func word32Val_Get(p word32Val) uint32 {
-	elem := p.v
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
+func (p pointer) toBoolSlice() *[]bool {
+	return p.v.Interface().(*[]bool)
 }
-
-// Word32Val returns a reference to a int32, uint32, float32, or enum field in the struct.
-func structPointer_Word32Val(p structPointer, f field) word32Val {
-	return word32Val{structPointer_field(p, f)}
+func (p pointer) toFloat64() *float64 {
+	return p.v.Interface().(*float64)
 }
-
-// A word32Slice is a slice of 32-bit values.
-// That is, v.Type() is []int32, []uint32, []float32, or []enum.
-type word32Slice struct {
-	v reflect.Value
+func (p pointer) toFloat64Ptr() **float64 {
+	return p.v.Interface().(**float64)
 }
-
-func (p word32Slice) Append(x uint32) {
-	n, m := p.v.Len(), p.v.Cap()
-	if n < m {
-		p.v.SetLen(n + 1)
-	} else {
-		t := p.v.Type().Elem()
-		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
-	}
-	elem := p.v.Index(n)
-	switch elem.Kind() {
-	case reflect.Int32:
-		elem.SetInt(int64(int32(x)))
-	case reflect.Uint32:
-		elem.SetUint(uint64(x))
-	case reflect.Float32:
-		elem.SetFloat(float64(math.Float32frombits(x)))
-	}
+func (p pointer) toFloat64Slice() *[]float64 {
+	return p.v.Interface().(*[]float64)
 }
-
-func (p word32Slice) Len() int {
-	return p.v.Len()
+func (p pointer) toFloat32() *float32 {
+	return p.v.Interface().(*float32)
 }
-
-func (p word32Slice) Index(i int) uint32 {
-	elem := p.v.Index(i)
-	switch elem.Kind() {
-	case reflect.Int32:
-		return uint32(elem.Int())
-	case reflect.Uint32:
-		return uint32(elem.Uint())
-	case reflect.Float32:
-		return math.Float32bits(float32(elem.Float()))
-	}
-	panic("unreachable")
+func (p pointer) toFloat32Ptr() **float32 {
+	return p.v.Interface().(**float32)
 }
-
-// Word32Slice returns a reference to a []int32, []uint32, []float32, or []enum field in the struct.
-func structPointer_Word32Slice(p structPointer, f field) word32Slice {
-	return word32Slice{structPointer_field(p, f)}
+func (p pointer) toFloat32Slice() *[]float32 {
+	return p.v.Interface().(*[]float32)
 }
-
-// word64 is like word32 but for 64-bit values.
-type word64 struct {
-	v reflect.Value
+func (p pointer) toString() *string {
+	return p.v.Interface().(*string)
 }
-
-func word64_Set(p word64, o *Buffer, x uint64) {
-	t := p.v.Type().Elem()
-	switch t {
-	case int64Type:
-		if len(o.int64s) == 0 {
-			o.int64s = make([]int64, uint64PoolSize)
-		}
-		o.int64s[0] = int64(x)
-		p.v.Set(reflect.ValueOf(&o.int64s[0]))
-		o.int64s = o.int64s[1:]
-		return
-	case uint64Type:
-		if len(o.uint64s) == 0 {
-			o.uint64s = make([]uint64, uint64PoolSize)
-		}
-		o.uint64s[0] = x
-		p.v.Set(reflect.ValueOf(&o.uint64s[0]))
-		o.uint64s = o.uint64s[1:]
-		return
-	case float64Type:
-		if len(o.float64s) == 0 {
-			o.float64s = make([]float64, uint64PoolSize)
-		}
-		o.float64s[0] = math.Float64frombits(x)
-		p.v.Set(reflect.ValueOf(&o.float64s[0]))
-		o.float64s = o.float64s[1:]
-		return
-	}
-	panic("unreachable")
+func (p pointer) toStringPtr() **string {
+	return p.v.Interface().(**string)
 }
-
-func word64_IsNil(p word64) bool {
-	return p.v.IsNil()
+func (p pointer) toStringSlice() *[]string {
+	return p.v.Interface().(*[]string)
 }
-
-func word64_Get(p word64) uint64 {
-	elem := p.v.Elem()
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return elem.Uint()
-	case reflect.Float64:
-		return math.Float64bits(elem.Float())
-	}
-	panic("unreachable")
+func (p pointer) toBytes() *[]byte {
+	return p.v.Interface().(*[]byte)
 }
-
-func structPointer_Word64(p structPointer, f field) word64 {
-	return word64{structPointer_field(p, f)}
+func (p pointer) toBytesSlice() *[][]byte {
+	return p.v.Interface().(*[][]byte)
+}
+func (p pointer) toExtensions() *XXX_InternalExtensions {
+	return p.v.Interface().(*XXX_InternalExtensions)
+}
+func (p pointer) toOldExtensions() *map[int32]Extension {
+	return p.v.Interface().(*map[int32]Extension)
+}
+func (p pointer) getPointer() pointer {
+	return pointer{v: p.v.Elem()}
+}
+func (p pointer) setPointer(q pointer) {
+	p.v.Elem().Set(q.v)
+}
+func (p pointer) appendPointer(q pointer) {
+	grow(p.v.Elem()).Set(q.v)
 }
 
-// word64Val is like word32Val but for 64-bit values.
-type word64Val struct {
-	v reflect.Value
+// getPointerSlice copies []*T from p as a new []pointer.
+// This behavior differs from the implementation in pointer_unsafe.go.
+func (p pointer) getPointerSlice() []pointer {
+	if p.v.IsNil() {
+		return nil
+	}
+	n := p.v.Elem().Len()
+	s := make([]pointer, n)
+	for i := 0; i < n; i++ {
+		s[i] = pointer{v: p.v.Elem().Index(i)}
+	}
+	return s
 }
 
-func word64Val_Set(p word64Val, o *Buffer, x uint64) {
-	switch p.v.Type() {
-	case int64Type:
-		p.v.SetInt(int64(x))
-		return
-	case uint64Type:
-		p.v.SetUint(x)
-		return
-	case float64Type:
-		p.v.SetFloat(math.Float64frombits(x))
+// setPointerSlice copies []pointer into p as a new []*T.
+// This behavior differs from the implementation in pointer_unsafe.go.
+func (p pointer) setPointerSlice(v []pointer) {
+	if v == nil {
+		p.v.Elem().Set(reflect.New(p.v.Elem().Type()).Elem())
 		return
 	}
-	panic("unreachable")
+	s := reflect.MakeSlice(p.v.Elem().Type(), 0, len(v))
+	for _, p := range v {
+		s = reflect.Append(s, p.v)
+	}
+	p.v.Elem().Set(s)
 }
 
-func word64Val_Get(p word64Val) uint64 {
-	elem := p.v
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return elem.Uint()
-	case reflect.Float64:
-		return math.Float64bits(elem.Float())
+// getInterfacePointer returns a pointer that points to the
+// interface data of the interface pointed by p.
+func (p pointer) getInterfacePointer() pointer {
+	if p.v.Elem().IsNil() {
+		return pointer{v: p.v.Elem()}
 	}
-	panic("unreachable")
+	return pointer{v: p.v.Elem().Elem().Elem().Field(0).Addr()} // *interface -> interface -> *struct -> struct
 }
 
-func structPointer_Word64Val(p structPointer, f field) word64Val {
-	return word64Val{structPointer_field(p, f)}
+func (p pointer) asPointerTo(t reflect.Type) reflect.Value {
+	// TODO: check that p.v.Type().Elem() == t?
+	return p.v
 }
 
-type word64Slice struct {
-	v reflect.Value
+func atomicLoadUnmarshalInfo(p **unmarshalInfo) *unmarshalInfo {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	return *p
 }
-
-func (p word64Slice) Append(x uint64) {
-	n, m := p.v.Len(), p.v.Cap()
-	if n < m {
-		p.v.SetLen(n + 1)
-	} else {
-		t := p.v.Type().Elem()
-		p.v.Set(reflect.Append(p.v, reflect.Zero(t)))
-	}
-	elem := p.v.Index(n)
-	switch elem.Kind() {
-	case reflect.Int64:
-		elem.SetInt(int64(int64(x)))
-	case reflect.Uint64:
-		elem.SetUint(uint64(x))
-	case reflect.Float64:
-		elem.SetFloat(float64(math.Float64frombits(x)))
-	}
+func atomicStoreUnmarshalInfo(p **unmarshalInfo, v *unmarshalInfo) {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	*p = v
 }
-
-func (p word64Slice) Len() int {
-	return p.v.Len()
+func atomicLoadMarshalInfo(p **marshalInfo) *marshalInfo {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	return *p
 }
-
-func (p word64Slice) Index(i int) uint64 {
-	elem := p.v.Index(i)
-	switch elem.Kind() {
-	case reflect.Int64:
-		return uint64(elem.Int())
-	case reflect.Uint64:
-		return uint64(elem.Uint())
-	case reflect.Float64:
-		return math.Float64bits(float64(elem.Float()))
-	}
-	panic("unreachable")
+func atomicStoreMarshalInfo(p **marshalInfo, v *marshalInfo) {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	*p = v
 }
-
-func structPointer_Word64Slice(p structPointer, f field) word64Slice {
-	return word64Slice{structPointer_field(p, f)}
+func atomicLoadMergeInfo(p **mergeInfo) *mergeInfo {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	return *p
+}
+func atomicStoreMergeInfo(p **mergeInfo, v *mergeInfo) {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	*p = v
 }
+func atomicLoadDiscardInfo(p **discardInfo) *discardInfo {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	return *p
+}
+func atomicStoreDiscardInfo(p **discardInfo, v *discardInfo) {
+	atomicLock.Lock()
+	defer atomicLock.Unlock()
+	*p = v
+}
+
+var atomicLock sync.Mutex
diff --git a/vendor/github.com/golang/protobuf/proto/pointer_unsafe.go b/vendor/github.com/golang/protobuf/proto/pointer_unsafe.go
index 6b5567d47c..d55a335d94 100644
--- a/vendor/github.com/golang/protobuf/proto/pointer_unsafe.go
+++ b/vendor/github.com/golang/protobuf/proto/pointer_unsafe.go
@@ -29,7 +29,7 @@
 // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-// +build !appengine,!js
+// +build !purego,!appengine,!js
 
 // This file contains the implementation of the proto field accesses using package unsafe.
 
@@ -37,38 +37,13 @@ package proto
 
 import (
 	"reflect"
+	"sync/atomic"
 	"unsafe"
 )
 
-// NOTE: These type_Foo functions would more idiomatically be methods,
-// but Go does not allow methods on pointer types, and we must preserve
-// some pointer type for the garbage collector. We use these
-// funcs with clunky names as our poor approximation to methods.
-//
-// An alternative would be
-//	type structPointer struct { p unsafe.Pointer }
-// but that does not registerize as well.
-
-// A structPointer is a pointer to a struct.
-type structPointer unsafe.Pointer
-
-// toStructPointer returns a structPointer equivalent to the given reflect value.
-func toStructPointer(v reflect.Value) structPointer {
-	return structPointer(unsafe.Pointer(v.Pointer()))
-}
-
-// IsNil reports whether p is nil.
-func structPointer_IsNil(p structPointer) bool {
-	return p == nil
-}
-
-// Interface returns the struct pointer, assumed to have element type t,
-// as an interface value.
-func structPointer_Interface(p structPointer, t reflect.Type) interface{} {
-	return reflect.NewAt(t, unsafe.Pointer(p)).Interface()
-}
+const unsafeAllowed = true
 
-// A field identifies a field in a struct, accessible from a structPointer.
+// A field identifies a field in a struct, accessible from a pointer.
 // In this implementation, a field is identified by its byte offset from the start of the struct.
 type field uintptr
 
@@ -80,191 +55,254 @@ func toField(f *reflect.StructField) field {
 // invalidField is an invalid field identifier.
 const invalidField = ^field(0)
 
+// zeroField is a noop when calling pointer.offset.
+const zeroField = field(0)
+
 // IsValid reports whether the field identifier is valid.
 func (f field) IsValid() bool {
-	return f != ^field(0)
+	return f != invalidField
 }
 
-// Bytes returns the address of a []byte field in the struct.
-func structPointer_Bytes(p structPointer, f field) *[]byte {
-	return (*[]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// The pointer type below is for the new table-driven encoder/decoder.
+// The implementation here uses unsafe.Pointer to create a generic pointer.
+// In pointer_reflect.go we use reflect instead of unsafe to implement
+// the same (but slower) interface.
+type pointer struct {
+	p unsafe.Pointer
 }
 
-// BytesSlice returns the address of a [][]byte field in the struct.
-func structPointer_BytesSlice(p structPointer, f field) *[][]byte {
-	return (*[][]byte)(unsafe.Pointer(uintptr(p) + uintptr(f)))
-}
+// size of pointer
+var ptrSize = unsafe.Sizeof(uintptr(0))
 
-// Bool returns the address of a *bool field in the struct.
-func structPointer_Bool(p structPointer, f field) **bool {
-	return (**bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// toPointer converts an interface of pointer type to a pointer
+// that points to the same target.
+func toPointer(i *Message) pointer {
+	// Super-tricky - read pointer out of data word of interface value.
+	// Saves ~25ns over the equivalent:
+	// return valToPointer(reflect.ValueOf(*i))
+	return pointer{p: (*[2]unsafe.Pointer)(unsafe.Pointer(i))[1]}
 }
 
-// BoolVal returns the address of a bool field in the struct.
-func structPointer_BoolVal(p structPointer, f field) *bool {
-	return (*bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// toAddrPointer converts an interface to a pointer that points to
+// the interface data.
+func toAddrPointer(i *interface{}, isptr bool) pointer {
+	// Super-tricky - read or get the address of data word of interface value.
+	if isptr {
+		// The interface is of pointer type, thus it is a direct interface.
+		// The data word is the pointer data itself. We take its address.
+		return pointer{p: unsafe.Pointer(uintptr(unsafe.Pointer(i)) + ptrSize)}
+	}
+	// The interface is not of pointer type. The data word is the pointer
+	// to the data.
+	return pointer{p: (*[2]unsafe.Pointer)(unsafe.Pointer(i))[1]}
 }
 
-// BoolSlice returns the address of a []bool field in the struct.
-func structPointer_BoolSlice(p structPointer, f field) *[]bool {
-	return (*[]bool)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// valToPointer converts v to a pointer. v must be of pointer type.
+func valToPointer(v reflect.Value) pointer {
+	return pointer{p: unsafe.Pointer(v.Pointer())}
 }
 
-// String returns the address of a *string field in the struct.
-func structPointer_String(p structPointer, f field) **string {
-	return (**string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// offset converts from a pointer to a structure to a pointer to
+// one of its fields.
+func (p pointer) offset(f field) pointer {
+	// For safety, we should panic if !f.IsValid, however calling panic causes
+	// this to no longer be inlineable, which is a serious performance cost.
+	/*
+		if !f.IsValid() {
+			panic("invalid field")
+		}
+	*/
+	return pointer{p: unsafe.Pointer(uintptr(p.p) + uintptr(f))}
 }
 
-// StringVal returns the address of a string field in the struct.
-func structPointer_StringVal(p structPointer, f field) *string {
-	return (*string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) isNil() bool {
+	return p.p == nil
 }
 
-// StringSlice returns the address of a []string field in the struct.
-func structPointer_StringSlice(p structPointer, f field) *[]string {
-	return (*[]string)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) toInt64() *int64 {
+	return (*int64)(p.p)
 }
-
-// ExtMap returns the address of an extension map field in the struct.
-func structPointer_Extensions(p structPointer, f field) *XXX_InternalExtensions {
-	return (*XXX_InternalExtensions)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) toInt64Ptr() **int64 {
+	return (**int64)(p.p)
 }
-
-func structPointer_ExtMap(p structPointer, f field) *map[int32]Extension {
-	return (*map[int32]Extension)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) toInt64Slice() *[]int64 {
+	return (*[]int64)(p.p)
 }
-
-// NewAt returns the reflect.Value for a pointer to a field in the struct.
-func structPointer_NewAt(p structPointer, f field, typ reflect.Type) reflect.Value {
-	return reflect.NewAt(typ, unsafe.Pointer(uintptr(p)+uintptr(f)))
+func (p pointer) toInt32() *int32 {
+	return (*int32)(p.p)
 }
 
-// SetStructPointer writes a *struct field in the struct.
-func structPointer_SetStructPointer(p structPointer, f field, q structPointer) {
-	*(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f))) = q
+// See pointer_reflect.go for why toInt32Ptr/Slice doesn't exist.
+/*
+	func (p pointer) toInt32Ptr() **int32 {
+		return (**int32)(p.p)
+	}
+	func (p pointer) toInt32Slice() *[]int32 {
+		return (*[]int32)(p.p)
+	}
+*/
+func (p pointer) getInt32Ptr() *int32 {
+	return *(**int32)(p.p)
 }
-
-// GetStructPointer reads a *struct field in the struct.
-func structPointer_GetStructPointer(p structPointer, f field) structPointer {
-	return *(*structPointer)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) setInt32Ptr(v int32) {
+	*(**int32)(p.p) = &v
 }
 
-// StructPointerSlice the address of a []*struct field in the struct.
-func structPointer_StructPointerSlice(p structPointer, f field) *structPointerSlice {
-	return (*structPointerSlice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+// getInt32Slice loads a []int32 from p.
+// The value returned is aliased with the original slice.
+// This behavior differs from the implementation in pointer_reflect.go.
+func (p pointer) getInt32Slice() []int32 {
+	return *(*[]int32)(p.p)
 }
 
-// A structPointerSlice represents a slice of pointers to structs (themselves submessages or groups).
-type structPointerSlice []structPointer
-
-func (v *structPointerSlice) Len() int                  { return len(*v) }
-func (v *structPointerSlice) Index(i int) structPointer { return (*v)[i] }
-func (v *structPointerSlice) Append(p structPointer)    { *v = append(*v, p) }
-
-// A word32 is the address of a "pointer to 32-bit value" field.
-type word32 **uint32
-
-// IsNil reports whether *v is nil.
-func word32_IsNil(p word32) bool {
-	return *p == nil
+// setInt32Slice stores a []int32 to p.
+// The value set is aliased with the input slice.
+// This behavior differs from the implementation in pointer_reflect.go.
+func (p pointer) setInt32Slice(v []int32) {
+	*(*[]int32)(p.p) = v
 }
 
-// Set sets *v to point at a newly allocated word set to x.
-func word32_Set(p word32, o *Buffer, x uint32) {
-	if len(o.uint32s) == 0 {
-		o.uint32s = make([]uint32, uint32PoolSize)
-	}
-	o.uint32s[0] = x
-	*p = &o.uint32s[0]
-	o.uint32s = o.uint32s[1:]
+// TODO: Can we get rid of appendInt32Slice and use setInt32Slice instead?
+func (p pointer) appendInt32Slice(v int32) {
+	s := (*[]int32)(p.p)
+	*s = append(*s, v)
 }
 
-// Get gets the value pointed at by *v.
-func word32_Get(p word32) uint32 {
-	return **p
+func (p pointer) toUint64() *uint64 {
+	return (*uint64)(p.p)
 }
-
-// Word32 returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32(p structPointer, f field) word32 {
-	return word32((**uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+func (p pointer) toUint64Ptr() **uint64 {
+	return (**uint64)(p.p)
 }
-
-// A word32Val is the address of a 32-bit value field.
-type word32Val *uint32
-
-// Set sets *p to x.
-func word32Val_Set(p word32Val, x uint32) {
-	*p = x
+func (p pointer) toUint64Slice() *[]uint64 {
+	return (*[]uint64)(p.p)
 }
-
-// Get gets the value pointed at by p.
-func word32Val_Get(p word32Val) uint32 {
-	return *p
+func (p pointer) toUint32() *uint32 {
+	return (*uint32)(p.p)
 }
-
-// Word32Val returns the address of a *int32, *uint32, *float32, or *enum field in the struct.
-func structPointer_Word32Val(p structPointer, f field) word32Val {
-	return word32Val((*uint32)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+func (p pointer) toUint32Ptr() **uint32 {
+	return (**uint32)(p.p)
 }
-
-// A word32Slice is a slice of 32-bit values.
-type word32Slice []uint32
-
-func (v *word32Slice) Append(x uint32)    { *v = append(*v, x) }
-func (v *word32Slice) Len() int           { return len(*v) }
-func (v *word32Slice) Index(i int) uint32 { return (*v)[i] }
-
-// Word32Slice returns the address of a []int32, []uint32, []float32, or []enum field in the struct.
-func structPointer_Word32Slice(p structPointer, f field) *word32Slice {
-	return (*word32Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func (p pointer) toUint32Slice() *[]uint32 {
+	return (*[]uint32)(p.p)
 }
-
-// word64 is like word32 but for 64-bit values.
-type word64 **uint64
-
-func word64_Set(p word64, o *Buffer, x uint64) {
-	if len(o.uint64s) == 0 {
-		o.uint64s = make([]uint64, uint64PoolSize)
-	}
-	o.uint64s[0] = x
-	*p = &o.uint64s[0]
-	o.uint64s = o.uint64s[1:]
+func (p pointer) toBool() *bool {
+	return (*bool)(p.p)
 }
-
-func word64_IsNil(p word64) bool {
-	return *p == nil
+func (p pointer) toBoolPtr() **bool {
+	return (**bool)(p.p)
 }
-
-func word64_Get(p word64) uint64 {
-	return **p
+func (p pointer) toBoolSlice() *[]bool {
+	return (*[]bool)(p.p)
+}
+func (p pointer) toFloat64() *float64 {
+	return (*float64)(p.p)
+}
+func (p pointer) toFloat64Ptr() **float64 {
+	return (**float64)(p.p)
+}
+func (p pointer) toFloat64Slice() *[]float64 {
+	return (*[]float64)(p.p)
+}
+func (p pointer) toFloat32() *float32 {
+	return (*float32)(p.p)
+}
+func (p pointer) toFloat32Ptr() **float32 {
+	return (**float32)(p.p)
+}
+func (p pointer) toFloat32Slice() *[]float32 {
+	return (*[]float32)(p.p)
+}
+func (p pointer) toString() *string {
+	return (*string)(p.p)
+}
+func (p pointer) toStringPtr() **string {
+	return (**string)(p.p)
+}
+func (p pointer) toStringSlice() *[]string {
+	return (*[]string)(p.p)
+}
+func (p pointer) toBytes() *[]byte {
+	return (*[]byte)(p.p)
+}
+func (p pointer) toBytesSlice() *[][]byte {
+	return (*[][]byte)(p.p)
+}
+func (p pointer) toExtensions() *XXX_InternalExtensions {
+	return (*XXX_InternalExtensions)(p.p)
+}
+func (p pointer) toOldExtensions() *map[int32]Extension {
+	return (*map[int32]Extension)(p.p)
 }
 
-func structPointer_Word64(p structPointer, f field) word64 {
-	return word64((**uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+// getPointerSlice loads []*T from p as a []pointer.
+// The value returned is aliased with the original slice.
+// This behavior differs from the implementation in pointer_reflect.go.
+func (p pointer) getPointerSlice() []pointer {
+	// Super-tricky - p should point to a []*T where T is a
+	// message type. We load it as []pointer.
+	return *(*[]pointer)(p.p)
 }
 
-// word64Val is like word32Val but for 64-bit values.
-type word64Val *uint64
+// setPointerSlice stores []pointer into p as a []*T.
+// The value set is aliased with the input slice.
+// This behavior differs from the implementation in pointer_reflect.go.
+func (p pointer) setPointerSlice(v []pointer) {
+	// Super-tricky - p should point to a []*T where T is a
+	// message type. We store it as []pointer.
+	*(*[]pointer)(p.p) = v
+}
 
-func word64Val_Set(p word64Val, o *Buffer, x uint64) {
-	*p = x
+// getPointer loads the pointer at p and returns it.
+func (p pointer) getPointer() pointer {
+	return pointer{p: *(*unsafe.Pointer)(p.p)}
 }
 
-func word64Val_Get(p word64Val) uint64 {
-	return *p
+// setPointer stores the pointer q at p.
+func (p pointer) setPointer(q pointer) {
+	*(*unsafe.Pointer)(p.p) = q.p
 }
 
-func structPointer_Word64Val(p structPointer, f field) word64Val {
-	return word64Val((*uint64)(unsafe.Pointer(uintptr(p) + uintptr(f))))
+// append q to the slice pointed to by p.
+func (p pointer) appendPointer(q pointer) {
+	s := (*[]unsafe.Pointer)(p.p)
+	*s = append(*s, q.p)
 }
 
-// word64Slice is like word32Slice but for 64-bit values.
-type word64Slice []uint64
+// getInterfacePointer returns a pointer that points to the
+// interface data of the interface pointed by p.
+func (p pointer) getInterfacePointer() pointer {
+	// Super-tricky - read pointer out of data word of interface value.
+	return pointer{p: (*(*[2]unsafe.Pointer)(p.p))[1]}
+}
 
-func (v *word64Slice) Append(x uint64)    { *v = append(*v, x) }
-func (v *word64Slice) Len() int           { return len(*v) }
-func (v *word64Slice) Index(i int) uint64 { return (*v)[i] }
+// asPointerTo returns a reflect.Value that is a pointer to an
+// object of type t stored at p.
+func (p pointer) asPointerTo(t reflect.Type) reflect.Value {
+	return reflect.NewAt(t, p.p)
+}
 
-func structPointer_Word64Slice(p structPointer, f field) *word64Slice {
-	return (*word64Slice)(unsafe.Pointer(uintptr(p) + uintptr(f)))
+func atomicLoadUnmarshalInfo(p **unmarshalInfo) *unmarshalInfo {
+	return (*unmarshalInfo)(atomic.LoadPointer((*unsafe.Pointer)(unsafe.Pointer(p))))
+}
+func atomicStoreUnmarshalInfo(p **unmarshalInfo, v *unmarshalInfo) {
+	atomic.StorePointer((*unsafe.Pointer)(unsafe.Pointer(p)), unsafe.Pointer(v))
+}
+func atomicLoadMarshalInfo(p **marshalInfo) *marshalInfo {
+	return (*marshalInfo)(atomic.LoadPointer((*unsafe.Pointer)(unsafe.Pointer(p))))
+}
+func atomicStoreMarshalInfo(p **marshalInfo, v *marshalInfo) {
+	atomic.StorePointer((*unsafe.Pointer)(unsafe.Pointer(p)), unsafe.Pointer(v))
+}
+func atomicLoadMergeInfo(p **mergeInfo) *mergeInfo {
+	return (*mergeInfo)(atomic.LoadPointer((*unsafe.Pointer)(unsafe.Pointer(p))))
+}
+func atomicStoreMergeInfo(p **mergeInfo, v *mergeInfo) {
+	atomic.StorePointer((*unsafe.Pointer)(unsafe.Pointer(p)), unsafe.Pointer(v))
+}
+func atomicLoadDiscardInfo(p **discardInfo) *discardInfo {
+	return (*discardInfo)(atomic.LoadPointer((*unsafe.Pointer)(unsafe.Pointer(p))))
+}
+func atomicStoreDiscardInfo(p **discardInfo, v *discardInfo) {
+	atomic.StorePointer((*unsafe.Pointer)(unsafe.Pointer(p)), unsafe.Pointer(v))
 }
diff --git a/vendor/github.com/golang/protobuf/proto/properties.go b/vendor/github.com/golang/protobuf/proto/properties.go
index ec2289c005..f710adab09 100644
--- a/vendor/github.com/golang/protobuf/proto/properties.go
+++ b/vendor/github.com/golang/protobuf/proto/properties.go
@@ -58,42 +58,6 @@ const (
 	WireFixed32    = 5
 )
 
-const startSize = 10 // initial slice/string sizes
-
-// Encoders are defined in encode.go
-// An encoder outputs the full representation of a field, including its
-// tag and encoder type.
-type encoder func(p *Buffer, prop *Properties, base structPointer) error
-
-// A valueEncoder encodes a single integer in a particular encoding.
-type valueEncoder func(o *Buffer, x uint64) error
-
-// Sizers are defined in encode.go
-// A sizer returns the encoded size of a field, including its tag and encoder
-// type.
-type sizer func(prop *Properties, base structPointer) int
-
-// A valueSizer returns the encoded size of a single integer in a particular
-// encoding.
-type valueSizer func(x uint64) int
-
-// Decoders are defined in decode.go
-// A decoder creates a value from its wire representation.
-// Unrecognized subelements are saved in unrec.
-type decoder func(p *Buffer, prop *Properties, base structPointer) error
-
-// A valueDecoder decodes a single integer in a particular encoding.
-type valueDecoder func(o *Buffer) (x uint64, err error)
-
-// A oneofMarshaler does the marshaling for all oneof fields in a message.
-type oneofMarshaler func(Message, *Buffer) error
-
-// A oneofUnmarshaler does the unmarshaling for a oneof field in a message.
-type oneofUnmarshaler func(Message, int, int, *Buffer) (bool, error)
-
-// A oneofSizer does the sizing for all oneof fields in a message.
-type oneofSizer func(Message) int
-
 // tagMap is an optimization over map[int]int for typical protocol buffer
 // use-cases. Encoded protocol buffers are often in tag order with small tag
 // numbers.
@@ -140,13 +104,6 @@ type StructProperties struct {
 	decoderTags      tagMap         // map from proto tag to struct field number
 	decoderOrigNames map[string]int // map from original name to struct field number
 	order            []int          // list of struct field numbers in tag order
-	unrecField       field          // field id of the XXX_unrecognized []byte field
-	extendable       bool           // is this an extendable proto
-
-	oneofMarshaler   oneofMarshaler
-	oneofUnmarshaler oneofUnmarshaler
-	oneofSizer       oneofSizer
-	stype            reflect.Type
 
 	// OneofTypes contains information about the oneof fields in this message.
 	// It is keyed by the original name of a field.
@@ -187,36 +144,19 @@ type Properties struct {
 
 	Default    string // default value
 	HasDefault bool   // whether an explicit default was provided
-	def_uint64 uint64
-
-	enc           encoder
-	valEnc        valueEncoder // set for bool and numeric types only
-	field         field
-	tagcode       []byte // encoding of EncodeVarint((Tag<<3)|WireType)
-	tagbuf        [8]byte
-	stype         reflect.Type      // set for struct types only
-	sprop         *StructProperties // set for struct types only
-	isMarshaler   bool
-	isUnmarshaler bool
+
+	stype reflect.Type      // set for struct types only
+	sprop *StructProperties // set for struct types only
 
 	mtype    reflect.Type // set for map types only
 	mkeyprop *Properties  // set for map types only
 	mvalprop *Properties  // set for map types only
-
-	size    sizer
-	valSize valueSizer // set for bool and numeric types only
-
-	dec    decoder
-	valDec valueDecoder // set for bool and numeric types only
-
-	// If this is a packable field, this will be the decoder for the packed version of the field.
-	packedDec decoder
 }
 
 // String formats the properties in the protobuf struct field tag style.
 func (p *Properties) String() string {
 	s := p.Wire
-	s = ","
+	s += ","
 	s += strconv.Itoa(p.Tag)
 	if p.Required {
 		s += ",req"
@@ -262,29 +202,14 @@ func (p *Properties) Parse(s string) {
 	switch p.Wire {
 	case "varint":
 		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeVarint
-		p.valDec = (*Buffer).DecodeVarint
-		p.valSize = sizeVarint
 	case "fixed32":
 		p.WireType = WireFixed32
-		p.valEnc = (*Buffer).EncodeFixed32
-		p.valDec = (*Buffer).DecodeFixed32
-		p.valSize = sizeFixed32
 	case "fixed64":
 		p.WireType = WireFixed64
-		p.valEnc = (*Buffer).EncodeFixed64
-		p.valDec = (*Buffer).DecodeFixed64
-		p.valSize = sizeFixed64
 	case "zigzag32":
 		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeZigzag32
-		p.valDec = (*Buffer).DecodeZigzag32
-		p.valSize = sizeZigzag32
 	case "zigzag64":
 		p.WireType = WireVarint
-		p.valEnc = (*Buffer).EncodeZigzag64
-		p.valDec = (*Buffer).DecodeZigzag64
-		p.valSize = sizeZigzag64
 	case "bytes", "group":
 		p.WireType = WireBytes
 		// no numeric converter for non-numeric types
@@ -299,6 +224,7 @@ func (p *Properties) Parse(s string) {
 		return
 	}
 
+outer:
 	for i := 2; i < len(fields); i++ {
 		f := fields[i]
 		switch {
@@ -326,229 +252,28 @@ func (p *Properties) Parse(s string) {
 			if i+1 < len(fields) {
 				// Commas aren't escaped, and def is always last.
 				p.Default += "," + strings.Join(fields[i+1:], ",")
-				break
+				break outer
 			}
 		}
 	}
 }
 
-func logNoSliceEnc(t1, t2 reflect.Type) {
-	fmt.Fprintf(os.Stderr, "proto: no slice oenc for %T = []%T\n", t1, t2)
-}
-
 var protoMessageType = reflect.TypeOf((*Message)(nil)).Elem()
 
-// Initialize the fields for encoding and decoding.
-func (p *Properties) setEncAndDec(typ reflect.Type, f *reflect.StructField, lockGetProp bool) {
-	p.enc = nil
-	p.dec = nil
-	p.size = nil
-
+// setFieldProps initializes the field properties for submessages and maps.
+func (p *Properties) setFieldProps(typ reflect.Type, f *reflect.StructField, lockGetProp bool) {
 	switch t1 := typ; t1.Kind() {
-	default:
-		fmt.Fprintf(os.Stderr, "proto: no coders for %v\n", t1)
-
-	// proto3 scalar types
-
-	case reflect.Bool:
-		p.enc = (*Buffer).enc_proto3_bool
-		p.dec = (*Buffer).dec_proto3_bool
-		p.size = size_proto3_bool
-	case reflect.Int32:
-		p.enc = (*Buffer).enc_proto3_int32
-		p.dec = (*Buffer).dec_proto3_int32
-		p.size = size_proto3_int32
-	case reflect.Uint32:
-		p.enc = (*Buffer).enc_proto3_uint32
-		p.dec = (*Buffer).dec_proto3_int32 // can reuse
-		p.size = size_proto3_uint32
-	case reflect.Int64, reflect.Uint64:
-		p.enc = (*Buffer).enc_proto3_int64
-		p.dec = (*Buffer).dec_proto3_int64
-		p.size = size_proto3_int64
-	case reflect.Float32:
-		p.enc = (*Buffer).enc_proto3_uint32 // can just treat them as bits
-		p.dec = (*Buffer).dec_proto3_int32
-		p.size = size_proto3_uint32
-	case reflect.Float64:
-		p.enc = (*Buffer).enc_proto3_int64 // can just treat them as bits
-		p.dec = (*Buffer).dec_proto3_int64
-		p.size = size_proto3_int64
-	case reflect.String:
-		p.enc = (*Buffer).enc_proto3_string
-		p.dec = (*Buffer).dec_proto3_string
-		p.size = size_proto3_string
-
 	case reflect.Ptr:
-		switch t2 := t1.Elem(); t2.Kind() {
-		default:
-			fmt.Fprintf(os.Stderr, "proto: no encoder function for %v -> %v\n", t1, t2)
-			break
-		case reflect.Bool:
-			p.enc = (*Buffer).enc_bool
-			p.dec = (*Buffer).dec_bool
-			p.size = size_bool
-		case reflect.Int32:
-			p.enc = (*Buffer).enc_int32
-			p.dec = (*Buffer).dec_int32
-			p.size = size_int32
-		case reflect.Uint32:
-			p.enc = (*Buffer).enc_uint32
-			p.dec = (*Buffer).dec_int32 // can reuse
-			p.size = size_uint32
-		case reflect.Int64, reflect.Uint64:
-			p.enc = (*Buffer).enc_int64
-			p.dec = (*Buffer).dec_int64
-			p.size = size_int64
-		case reflect.Float32:
-			p.enc = (*Buffer).enc_uint32 // can just treat them as bits
-			p.dec = (*Buffer).dec_int32
-			p.size = size_uint32
-		case reflect.Float64:
-			p.enc = (*Buffer).enc_int64 // can just treat them as bits
-			p.dec = (*Buffer).dec_int64
-			p.size = size_int64
-		case reflect.String:
-			p.enc = (*Buffer).enc_string
-			p.dec = (*Buffer).dec_string
-			p.size = size_string
-		case reflect.Struct:
+		if t1.Elem().Kind() == reflect.Struct {
 			p.stype = t1.Elem()
-			p.isMarshaler = isMarshaler(t1)
-			p.isUnmarshaler = isUnmarshaler(t1)
-			if p.Wire == "bytes" {
-				p.enc = (*Buffer).enc_struct_message
-				p.dec = (*Buffer).dec_struct_message
-				p.size = size_struct_message
-			} else {
-				p.enc = (*Buffer).enc_struct_group
-				p.dec = (*Buffer).dec_struct_group
-				p.size = size_struct_group
-			}
 		}
 
 	case reflect.Slice:
-		switch t2 := t1.Elem(); t2.Kind() {
-		default:
-			logNoSliceEnc(t1, t2)
-			break
-		case reflect.Bool:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_bool
-				p.size = size_slice_packed_bool
-			} else {
-				p.enc = (*Buffer).enc_slice_bool
-				p.size = size_slice_bool
-			}
-			p.dec = (*Buffer).dec_slice_bool
-			p.packedDec = (*Buffer).dec_slice_packed_bool
-		case reflect.Int32:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_int32
-				p.size = size_slice_packed_int32
-			} else {
-				p.enc = (*Buffer).enc_slice_int32
-				p.size = size_slice_int32
-			}
-			p.dec = (*Buffer).dec_slice_int32
-			p.packedDec = (*Buffer).dec_slice_packed_int32
-		case reflect.Uint32:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_uint32
-				p.size = size_slice_packed_uint32
-			} else {
-				p.enc = (*Buffer).enc_slice_uint32
-				p.size = size_slice_uint32
-			}
-			p.dec = (*Buffer).dec_slice_int32
-			p.packedDec = (*Buffer).dec_slice_packed_int32
-		case reflect.Int64, reflect.Uint64:
-			if p.Packed {
-				p.enc = (*Buffer).enc_slice_packed_int64
-				p.size = size_slice_packed_int64
-			} else {
-				p.enc = (*Buffer).enc_slice_int64
-				p.size = size_slice_int64
-			}
-			p.dec = (*Buffer).dec_slice_int64
-			p.packedDec = (*Buffer).dec_slice_packed_int64
-		case reflect.Uint8:
-			p.dec = (*Buffer).dec_slice_byte
-			if p.proto3 {
-				p.enc = (*Buffer).enc_proto3_slice_byte
-				p.size = size_proto3_slice_byte
-			} else {
-				p.enc = (*Buffer).enc_slice_byte
-				p.size = size_slice_byte
-			}
-		case reflect.Float32, reflect.Float64:
-			switch t2.Bits() {
-			case 32:
-				// can just treat them as bits
-				if p.Packed {
-					p.enc = (*Buffer).enc_slice_packed_uint32
-					p.size = size_slice_packed_uint32
-				} else {
-					p.enc = (*Buffer).enc_slice_uint32
-					p.size = size_slice_uint32
-				}
-				p.dec = (*Buffer).dec_slice_int32
-				p.packedDec = (*Buffer).dec_slice_packed_int32
-			case 64:
-				// can just treat them as bits
-				if p.Packed {
-					p.enc = (*Buffer).enc_slice_packed_int64
-					p.size = size_slice_packed_int64
-				} else {
-					p.enc = (*Buffer).enc_slice_int64
-					p.size = size_slice_int64
-				}
-				p.dec = (*Buffer).dec_slice_int64
-				p.packedDec = (*Buffer).dec_slice_packed_int64
-			default:
-				logNoSliceEnc(t1, t2)
-				break
-			}
-		case reflect.String:
-			p.enc = (*Buffer).enc_slice_string
-			p.dec = (*Buffer).dec_slice_string
-			p.size = size_slice_string
-		case reflect.Ptr:
-			switch t3 := t2.Elem(); t3.Kind() {
-			default:
-				fmt.Fprintf(os.Stderr, "proto: no ptr oenc for %T -> %T -> %T\n", t1, t2, t3)
-				break
-			case reflect.Struct:
-				p.stype = t2.Elem()
-				p.isMarshaler = isMarshaler(t2)
-				p.isUnmarshaler = isUnmarshaler(t2)
-				if p.Wire == "bytes" {
-					p.enc = (*Buffer).enc_slice_struct_message
-					p.dec = (*Buffer).dec_slice_struct_message
-					p.size = size_slice_struct_message
-				} else {
-					p.enc = (*Buffer).enc_slice_struct_group
-					p.dec = (*Buffer).dec_slice_struct_group
-					p.size = size_slice_struct_group
-				}
-			}
-		case reflect.Slice:
-			switch t2.Elem().Kind() {
-			default:
-				fmt.Fprintf(os.Stderr, "proto: no slice elem oenc for %T -> %T -> %T\n", t1, t2, t2.Elem())
-				break
-			case reflect.Uint8:
-				p.enc = (*Buffer).enc_slice_slice_byte
-				p.dec = (*Buffer).dec_slice_slice_byte
-				p.size = size_slice_slice_byte
-			}
+		if t2 := t1.Elem(); t2.Kind() == reflect.Ptr && t2.Elem().Kind() == reflect.Struct {
+			p.stype = t2.Elem()
 		}
 
 	case reflect.Map:
-		p.enc = (*Buffer).enc_new_map
-		p.dec = (*Buffer).dec_new_map
-		p.size = size_new_map
-
 		p.mtype = t1
 		p.mkeyprop = &Properties{}
 		p.mkeyprop.init(reflect.PtrTo(p.mtype.Key()), "Key", f.Tag.Get("protobuf_key"), nil, lockGetProp)
@@ -562,20 +287,6 @@ func (p *Properties) setEncAndDec(typ reflect.Type, f *reflect.StructField, lock
 		p.mvalprop.init(vtype, "Value", f.Tag.Get("protobuf_val"), nil, lockGetProp)
 	}
 
-	// precalculate tag code
-	wire := p.WireType
-	if p.Packed {
-		wire = WireBytes
-	}
-	x := uint32(p.Tag)<<3 | uint32(wire)
-	i := 0
-	for i = 0; x > 127; i++ {
-		p.tagbuf[i] = 0x80 | uint8(x&0x7F)
-		x >>= 7
-	}
-	p.tagbuf[i] = uint8(x)
-	p.tagcode = p.tagbuf[0 : i+1]
-
 	if p.stype != nil {
 		if lockGetProp {
 			p.sprop = GetProperties(p.stype)
@@ -586,32 +297,9 @@ func (p *Properties) setEncAndDec(typ reflect.Type, f *reflect.StructField, lock
 }
 
 var (
-	marshalerType   = reflect.TypeOf((*Marshaler)(nil)).Elem()
-	unmarshalerType = reflect.TypeOf((*Unmarshaler)(nil)).Elem()
+	marshalerType = reflect.TypeOf((*Marshaler)(nil)).Elem()
 )
 
-// isMarshaler reports whether type t implements Marshaler.
-func isMarshaler(t reflect.Type) bool {
-	// We're checking for (likely) pointer-receiver methods
-	// so if t is not a pointer, something is very wrong.
-	// The calls above only invoke isMarshaler on pointer types.
-	if t.Kind() != reflect.Ptr {
-		panic("proto: misuse of isMarshaler")
-	}
-	return t.Implements(marshalerType)
-}
-
-// isUnmarshaler reports whether type t implements Unmarshaler.
-func isUnmarshaler(t reflect.Type) bool {
-	// We're checking for (likely) pointer-receiver methods
-	// so if t is not a pointer, something is very wrong.
-	// The calls above only invoke isUnmarshaler on pointer types.
-	if t.Kind() != reflect.Ptr {
-		panic("proto: misuse of isUnmarshaler")
-	}
-	return t.Implements(unmarshalerType)
-}
-
 // Init populates the properties from a protocol buffer struct tag.
 func (p *Properties) Init(typ reflect.Type, name, tag string, f *reflect.StructField) {
 	p.init(typ, name, tag, f, true)
@@ -621,14 +309,11 @@ func (p *Properties) init(typ reflect.Type, name, tag string, f *reflect.StructF
 	// "bytes,49,opt,def=hello!"
 	p.Name = name
 	p.OrigName = name
-	if f != nil {
-		p.field = toField(f)
-	}
 	if tag == "" {
 		return
 	}
 	p.Parse(tag)
-	p.setEncAndDec(typ, f, lockGetProp)
+	p.setFieldProps(typ, f, lockGetProp)
 }
 
 var (
@@ -678,9 +363,6 @@ func getPropertiesLocked(t reflect.Type) *StructProperties {
 	propertiesMap[t] = prop
 
 	// build properties
-	prop.extendable = reflect.PtrTo(t).Implements(extendableProtoType) ||
-		reflect.PtrTo(t).Implements(extendableProtoV1Type)
-	prop.unrecField = invalidField
 	prop.Prop = make([]*Properties, t.NumField())
 	prop.order = make([]int, t.NumField())
 
@@ -690,17 +372,6 @@ func getPropertiesLocked(t reflect.Type) *StructProperties {
 		name := f.Name
 		p.init(f.Type, name, f.Tag.Get("protobuf"), &f, false)
 
-		if f.Name == "XXX_InternalExtensions" { // special case
-			p.enc = (*Buffer).enc_exts
-			p.dec = nil // not needed
-			p.size = size_exts
-		} else if f.Name == "XXX_extensions" { // special case
-			p.enc = (*Buffer).enc_map
-			p.dec = nil // not needed
-			p.size = size_map
-		} else if f.Name == "XXX_unrecognized" { // special case
-			prop.unrecField = toField(&f)
-		}
 		oneof := f.Tag.Get("protobuf_oneof") // special case
 		if oneof != "" {
 			// Oneof fields don't use the traditional protobuf tag.
@@ -715,9 +386,6 @@ func getPropertiesLocked(t reflect.Type) *StructProperties {
 			}
 			print("\n")
 		}
-		if p.enc == nil && !strings.HasPrefix(f.Name, "XXX_") && oneof == "" {
-			fmt.Fprintln(os.Stderr, "proto: no encoder for", f.Name, f.Type.String(), "[GetProperties]")
-		}
 	}
 
 	// Re-order prop.order.
@@ -728,8 +396,7 @@ func getPropertiesLocked(t reflect.Type) *StructProperties {
 	}
 	if om, ok := reflect.Zero(reflect.PtrTo(t)).Interface().(oneofMessage); ok {
 		var oots []interface{}
-		prop.oneofMarshaler, prop.oneofUnmarshaler, prop.oneofSizer, oots = om.XXX_OneofFuncs()
-		prop.stype = t
+		_, _, _, oots = om.XXX_OneofFuncs()
 
 		// Interpret oneof metadata.
 		prop.OneofTypes = make(map[string]*OneofProperties)
@@ -779,30 +446,6 @@ func getPropertiesLocked(t reflect.Type) *StructProperties {
 	return prop
 }
 
-// Return the Properties object for the x[0]'th field of the structure.
-func propByIndex(t reflect.Type, x []int) *Properties {
-	if len(x) != 1 {
-		fmt.Fprintf(os.Stderr, "proto: field index dimension %d (not 1) for type %s\n", len(x), t)
-		return nil
-	}
-	prop := GetProperties(t)
-	return prop.Prop[x[0]]
-}
-
-// Get the address and type of a pointer to a struct from an interface.
-func getbase(pb Message) (t reflect.Type, b structPointer, err error) {
-	if pb == nil {
-		err = ErrNil
-		return
-	}
-	// get the reflect type of the pointer to the struct.
-	t = reflect.TypeOf(pb)
-	// get the address of the struct.
-	value := reflect.ValueOf(pb)
-	b = toStructPointer(value)
-	return
-}
-
 // A global registry of enum types.
 // The generated code will register the generated maps by calling RegisterEnum.
 
@@ -826,20 +469,42 @@ func EnumValueMap(enumType string) map[string]int32 {
 // A registry of all linked message types.
 // The string is a fully-qualified proto name ("pkg.Message").
 var (
-	protoTypes    = make(map[string]reflect.Type)
-	revProtoTypes = make(map[reflect.Type]string)
+	protoTypedNils = make(map[string]Message)      // a map from proto names to typed nil pointers
+	protoMapTypes  = make(map[string]reflect.Type) // a map from proto names to map types
+	revProtoTypes  = make(map[reflect.Type]string)
 )
 
 // RegisterType is called from generated code and maps from the fully qualified
 // proto name to the type (pointer to struct) of the protocol buffer.
 func RegisterType(x Message, name string) {
-	if _, ok := protoTypes[name]; ok {
+	if _, ok := protoTypedNils[name]; ok {
 		// TODO: Some day, make this a panic.
 		log.Printf("proto: duplicate proto type registered: %s", name)
 		return
 	}
 	t := reflect.TypeOf(x)
-	protoTypes[name] = t
+	if v := reflect.ValueOf(x); v.Kind() == reflect.Ptr && v.Pointer() == 0 {
+		// Generated code always calls RegisterType with nil x.
+		// This check is just for extra safety.
+		protoTypedNils[name] = x
+	} else {
+		protoTypedNils[name] = reflect.Zero(t).Interface().(Message)
+	}
+	revProtoTypes[t] = name
+}
+
+// RegisterMapType is called from generated code and maps from the fully qualified
+// proto name to the native map type of the proto map definition.
+func RegisterMapType(x interface{}, name string) {
+	if reflect.TypeOf(x).Kind() != reflect.Map {
+		panic(fmt.Sprintf("RegisterMapType(%T, %q); want map", x, name))
+	}
+	if _, ok := protoMapTypes[name]; ok {
+		log.Printf("proto: duplicate proto type registered: %s", name)
+		return
+	}
+	t := reflect.TypeOf(x)
+	protoMapTypes[name] = t
 	revProtoTypes[t] = name
 }
 
@@ -855,7 +520,14 @@ func MessageName(x Message) string {
 }
 
 // MessageType returns the message type (pointer to struct) for a named message.
-func MessageType(name string) reflect.Type { return protoTypes[name] }
+// The type is not guaranteed to implement proto.Message if the name refers to a
+// map entry.
+func MessageType(name string) reflect.Type {
+	if t, ok := protoTypedNils[name]; ok {
+		return reflect.TypeOf(t)
+	}
+	return protoMapTypes[name]
+}
 
 // A registry of all linked proto files.
 var (
diff --git a/vendor/github.com/golang/protobuf/proto/table_marshal.go b/vendor/github.com/golang/protobuf/proto/table_marshal.go
new file mode 100644
index 0000000000..0f212b3029
--- /dev/null
+++ b/vendor/github.com/golang/protobuf/proto/table_marshal.go
@@ -0,0 +1,2681 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"errors"
+	"fmt"
+	"math"
+	"reflect"
+	"sort"
+	"strconv"
+	"strings"
+	"sync"
+	"sync/atomic"
+	"unicode/utf8"
+)
+
+// a sizer takes a pointer to a field and the size of its tag, computes the size of
+// the encoded data.
+type sizer func(pointer, int) int
+
+// a marshaler takes a byte slice, a pointer to a field, and its tag (in wire format),
+// marshals the field to the end of the slice, returns the slice and error (if any).
+type marshaler func(b []byte, ptr pointer, wiretag uint64, deterministic bool) ([]byte, error)
+
+// marshalInfo is the information used for marshaling a message.
+type marshalInfo struct {
+	typ          reflect.Type
+	fields       []*marshalFieldInfo
+	unrecognized field                      // offset of XXX_unrecognized
+	extensions   field                      // offset of XXX_InternalExtensions
+	v1extensions field                      // offset of XXX_extensions
+	sizecache    field                      // offset of XXX_sizecache
+	initialized  int32                      // 0 -- only typ is set, 1 -- fully initialized
+	messageset   bool                       // uses message set wire format
+	hasmarshaler bool                       // has custom marshaler
+	sync.RWMutex                            // protect extElems map, also for initialization
+	extElems     map[int32]*marshalElemInfo // info of extension elements
+}
+
+// marshalFieldInfo is the information used for marshaling a field of a message.
+type marshalFieldInfo struct {
+	field      field
+	wiretag    uint64 // tag in wire format
+	tagsize    int    // size of tag in wire format
+	sizer      sizer
+	marshaler  marshaler
+	isPointer  bool
+	required   bool                              // field is required
+	name       string                            // name of the field, for error reporting
+	oneofElems map[reflect.Type]*marshalElemInfo // info of oneof elements
+}
+
+// marshalElemInfo is the information used for marshaling an extension or oneof element.
+type marshalElemInfo struct {
+	wiretag   uint64 // tag in wire format
+	tagsize   int    // size of tag in wire format
+	sizer     sizer
+	marshaler marshaler
+	isptr     bool // elem is pointer typed, thus interface of this type is a direct interface (extension only)
+}
+
+var (
+	marshalInfoMap  = map[reflect.Type]*marshalInfo{}
+	marshalInfoLock sync.Mutex
+)
+
+// getMarshalInfo returns the information to marshal a given type of message.
+// The info it returns may not necessarily initialized.
+// t is the type of the message (NOT the pointer to it).
+func getMarshalInfo(t reflect.Type) *marshalInfo {
+	marshalInfoLock.Lock()
+	u, ok := marshalInfoMap[t]
+	if !ok {
+		u = &marshalInfo{typ: t}
+		marshalInfoMap[t] = u
+	}
+	marshalInfoLock.Unlock()
+	return u
+}
+
+// Size is the entry point from generated code,
+// and should be ONLY called by generated code.
+// It computes the size of encoded data of msg.
+// a is a pointer to a place to store cached marshal info.
+func (a *InternalMessageInfo) Size(msg Message) int {
+	u := getMessageMarshalInfo(msg, a)
+	ptr := toPointer(&msg)
+	if ptr.isNil() {
+		// We get here if msg is a typed nil ((*SomeMessage)(nil)),
+		// so it satisfies the interface, and msg == nil wouldn't
+		// catch it. We don't want crash in this case.
+		return 0
+	}
+	return u.size(ptr)
+}
+
+// Marshal is the entry point from generated code,
+// and should be ONLY called by generated code.
+// It marshals msg to the end of b.
+// a is a pointer to a place to store cached marshal info.
+func (a *InternalMessageInfo) Marshal(b []byte, msg Message, deterministic bool) ([]byte, error) {
+	u := getMessageMarshalInfo(msg, a)
+	ptr := toPointer(&msg)
+	if ptr.isNil() {
+		// We get here if msg is a typed nil ((*SomeMessage)(nil)),
+		// so it satisfies the interface, and msg == nil wouldn't
+		// catch it. We don't want crash in this case.
+		return b, ErrNil
+	}
+	return u.marshal(b, ptr, deterministic)
+}
+
+func getMessageMarshalInfo(msg interface{}, a *InternalMessageInfo) *marshalInfo {
+	// u := a.marshal, but atomically.
+	// We use an atomic here to ensure memory consistency.
+	u := atomicLoadMarshalInfo(&a.marshal)
+	if u == nil {
+		// Get marshal information from type of message.
+		t := reflect.ValueOf(msg).Type()
+		if t.Kind() != reflect.Ptr {
+			panic(fmt.Sprintf("cannot handle non-pointer message type %v", t))
+		}
+		u = getMarshalInfo(t.Elem())
+		// Store it in the cache for later users.
+		// a.marshal = u, but atomically.
+		atomicStoreMarshalInfo(&a.marshal, u)
+	}
+	return u
+}
+
+// size is the main function to compute the size of the encoded data of a message.
+// ptr is the pointer to the message.
+func (u *marshalInfo) size(ptr pointer) int {
+	if atomic.LoadInt32(&u.initialized) == 0 {
+		u.computeMarshalInfo()
+	}
+
+	// If the message can marshal itself, let it do it, for compatibility.
+	// NOTE: This is not efficient.
+	if u.hasmarshaler {
+		m := ptr.asPointerTo(u.typ).Interface().(Marshaler)
+		b, _ := m.Marshal()
+		return len(b)
+	}
+
+	n := 0
+	for _, f := range u.fields {
+		if f.isPointer && ptr.offset(f.field).getPointer().isNil() {
+			// nil pointer always marshals to nothing
+			continue
+		}
+		n += f.sizer(ptr.offset(f.field), f.tagsize)
+	}
+	if u.extensions.IsValid() {
+		e := ptr.offset(u.extensions).toExtensions()
+		if u.messageset {
+			n += u.sizeMessageSet(e)
+		} else {
+			n += u.sizeExtensions(e)
+		}
+	}
+	if u.v1extensions.IsValid() {
+		m := *ptr.offset(u.v1extensions).toOldExtensions()
+		n += u.sizeV1Extensions(m)
+	}
+	if u.unrecognized.IsValid() {
+		s := *ptr.offset(u.unrecognized).toBytes()
+		n += len(s)
+	}
+	// cache the result for use in marshal
+	if u.sizecache.IsValid() {
+		atomic.StoreInt32(ptr.offset(u.sizecache).toInt32(), int32(n))
+	}
+	return n
+}
+
+// cachedsize gets the size from cache. If there is no cache (i.e. message is not generated),
+// fall back to compute the size.
+func (u *marshalInfo) cachedsize(ptr pointer) int {
+	if u.sizecache.IsValid() {
+		return int(atomic.LoadInt32(ptr.offset(u.sizecache).toInt32()))
+	}
+	return u.size(ptr)
+}
+
+// marshal is the main function to marshal a message. It takes a byte slice and appends
+// the encoded data to the end of the slice, returns the slice and error (if any).
+// ptr is the pointer to the message.
+// If deterministic is true, map is marshaled in deterministic order.
+func (u *marshalInfo) marshal(b []byte, ptr pointer, deterministic bool) ([]byte, error) {
+	if atomic.LoadInt32(&u.initialized) == 0 {
+		u.computeMarshalInfo()
+	}
+
+	// If the message can marshal itself, let it do it, for compatibility.
+	// NOTE: This is not efficient.
+	if u.hasmarshaler {
+		m := ptr.asPointerTo(u.typ).Interface().(Marshaler)
+		b1, err := m.Marshal()
+		b = append(b, b1...)
+		return b, err
+	}
+
+	var err, errreq error
+	// The old marshaler encodes extensions at beginning.
+	if u.extensions.IsValid() {
+		e := ptr.offset(u.extensions).toExtensions()
+		if u.messageset {
+			b, err = u.appendMessageSet(b, e, deterministic)
+		} else {
+			b, err = u.appendExtensions(b, e, deterministic)
+		}
+		if err != nil {
+			return b, err
+		}
+	}
+	if u.v1extensions.IsValid() {
+		m := *ptr.offset(u.v1extensions).toOldExtensions()
+		b, err = u.appendV1Extensions(b, m, deterministic)
+		if err != nil {
+			return b, err
+		}
+	}
+	for _, f := range u.fields {
+		if f.required && errreq == nil {
+			if ptr.offset(f.field).getPointer().isNil() {
+				// Required field is not set.
+				// We record the error but keep going, to give a complete marshaling.
+				errreq = &RequiredNotSetError{f.name}
+				continue
+			}
+		}
+		if f.isPointer && ptr.offset(f.field).getPointer().isNil() {
+			// nil pointer always marshals to nothing
+			continue
+		}
+		b, err = f.marshaler(b, ptr.offset(f.field), f.wiretag, deterministic)
+		if err != nil {
+			if err1, ok := err.(*RequiredNotSetError); ok {
+				// Required field in submessage is not set.
+				// We record the error but keep going, to give a complete marshaling.
+				if errreq == nil {
+					errreq = &RequiredNotSetError{f.name + "." + err1.field}
+				}
+				continue
+			}
+			if err == errRepeatedHasNil {
+				err = errors.New("proto: repeated field " + f.name + " has nil element")
+			}
+			return b, err
+		}
+	}
+	if u.unrecognized.IsValid() {
+		s := *ptr.offset(u.unrecognized).toBytes()
+		b = append(b, s...)
+	}
+	return b, errreq
+}
+
+// computeMarshalInfo initializes the marshal info.
+func (u *marshalInfo) computeMarshalInfo() {
+	u.Lock()
+	defer u.Unlock()
+	if u.initialized != 0 { // non-atomic read is ok as it is protected by the lock
+		return
+	}
+
+	t := u.typ
+	u.unrecognized = invalidField
+	u.extensions = invalidField
+	u.v1extensions = invalidField
+	u.sizecache = invalidField
+
+	// If the message can marshal itself, let it do it, for compatibility.
+	// NOTE: This is not efficient.
+	if reflect.PtrTo(t).Implements(marshalerType) {
+		u.hasmarshaler = true
+		atomic.StoreInt32(&u.initialized, 1)
+		return
+	}
+
+	// get oneof implementers
+	var oneofImplementers []interface{}
+	if m, ok := reflect.Zero(reflect.PtrTo(t)).Interface().(oneofMessage); ok {
+		_, _, _, oneofImplementers = m.XXX_OneofFuncs()
+	}
+
+	n := t.NumField()
+
+	// deal with XXX fields first
+	for i := 0; i < t.NumField(); i++ {
+		f := t.Field(i)
+		if !strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+		switch f.Name {
+		case "XXX_sizecache":
+			u.sizecache = toField(&f)
+		case "XXX_unrecognized":
+			u.unrecognized = toField(&f)
+		case "XXX_InternalExtensions":
+			u.extensions = toField(&f)
+			u.messageset = f.Tag.Get("protobuf_messageset") == "1"
+		case "XXX_extensions":
+			u.v1extensions = toField(&f)
+		case "XXX_NoUnkeyedLiteral":
+			// nothing to do
+		default:
+			panic("unknown XXX field: " + f.Name)
+		}
+		n--
+	}
+
+	// normal fields
+	fields := make([]marshalFieldInfo, n) // batch allocation
+	u.fields = make([]*marshalFieldInfo, 0, n)
+	for i, j := 0, 0; i < t.NumField(); i++ {
+		f := t.Field(i)
+
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+		field := &fields[j]
+		j++
+		field.name = f.Name
+		u.fields = append(u.fields, field)
+		if f.Tag.Get("protobuf_oneof") != "" {
+			field.computeOneofFieldInfo(&f, oneofImplementers)
+			continue
+		}
+		if f.Tag.Get("protobuf") == "" {
+			// field has no tag (not in generated message), ignore it
+			u.fields = u.fields[:len(u.fields)-1]
+			j--
+			continue
+		}
+		field.computeMarshalFieldInfo(&f)
+	}
+
+	// fields are marshaled in tag order on the wire.
+	sort.Sort(byTag(u.fields))
+
+	atomic.StoreInt32(&u.initialized, 1)
+}
+
+// helper for sorting fields by tag
+type byTag []*marshalFieldInfo
+
+func (a byTag) Len() int           { return len(a) }
+func (a byTag) Swap(i, j int)      { a[i], a[j] = a[j], a[i] }
+func (a byTag) Less(i, j int) bool { return a[i].wiretag < a[j].wiretag }
+
+// getExtElemInfo returns the information to marshal an extension element.
+// The info it returns is initialized.
+func (u *marshalInfo) getExtElemInfo(desc *ExtensionDesc) *marshalElemInfo {
+	// get from cache first
+	u.RLock()
+	e, ok := u.extElems[desc.Field]
+	u.RUnlock()
+	if ok {
+		return e
+	}
+
+	t := reflect.TypeOf(desc.ExtensionType) // pointer or slice to basic type or struct
+	tags := strings.Split(desc.Tag, ",")
+	tag, err := strconv.Atoi(tags[1])
+	if err != nil {
+		panic("tag is not an integer")
+	}
+	wt := wiretype(tags[0])
+	sizer, marshaler := typeMarshaler(t, tags, false, false)
+	e = &marshalElemInfo{
+		wiretag:   uint64(tag)<<3 | wt,
+		tagsize:   SizeVarint(uint64(tag) << 3),
+		sizer:     sizer,
+		marshaler: marshaler,
+		isptr:     t.Kind() == reflect.Ptr,
+	}
+
+	// update cache
+	u.Lock()
+	if u.extElems == nil {
+		u.extElems = make(map[int32]*marshalElemInfo)
+	}
+	u.extElems[desc.Field] = e
+	u.Unlock()
+	return e
+}
+
+// computeMarshalFieldInfo fills up the information to marshal a field.
+func (fi *marshalFieldInfo) computeMarshalFieldInfo(f *reflect.StructField) {
+	// parse protobuf tag of the field.
+	// tag has format of "bytes,49,opt,name=foo,def=hello!"
+	tags := strings.Split(f.Tag.Get("protobuf"), ",")
+	if tags[0] == "" {
+		return
+	}
+	tag, err := strconv.Atoi(tags[1])
+	if err != nil {
+		panic("tag is not an integer")
+	}
+	wt := wiretype(tags[0])
+	if tags[2] == "req" {
+		fi.required = true
+	}
+	fi.setTag(f, tag, wt)
+	fi.setMarshaler(f, tags)
+}
+
+func (fi *marshalFieldInfo) computeOneofFieldInfo(f *reflect.StructField, oneofImplementers []interface{}) {
+	fi.field = toField(f)
+	fi.wiretag = 1<<31 - 1 // Use a large tag number, make oneofs sorted at the end. This tag will not appear on the wire.
+	fi.isPointer = true
+	fi.sizer, fi.marshaler = makeOneOfMarshaler(fi, f)
+	fi.oneofElems = make(map[reflect.Type]*marshalElemInfo)
+
+	ityp := f.Type // interface type
+	for _, o := range oneofImplementers {
+		t := reflect.TypeOf(o)
+		if !t.Implements(ityp) {
+			continue
+		}
+		sf := t.Elem().Field(0) // oneof implementer is a struct with a single field
+		tags := strings.Split(sf.Tag.Get("protobuf"), ",")
+		tag, err := strconv.Atoi(tags[1])
+		if err != nil {
+			panic("tag is not an integer")
+		}
+		wt := wiretype(tags[0])
+		sizer, marshaler := typeMarshaler(sf.Type, tags, false, true) // oneof should not omit any zero value
+		fi.oneofElems[t.Elem()] = &marshalElemInfo{
+			wiretag:   uint64(tag)<<3 | wt,
+			tagsize:   SizeVarint(uint64(tag) << 3),
+			sizer:     sizer,
+			marshaler: marshaler,
+		}
+	}
+}
+
+type oneofMessage interface {
+	XXX_OneofFuncs() (func(Message, *Buffer) error, func(Message, int, int, *Buffer) (bool, error), func(Message) int, []interface{})
+}
+
+// wiretype returns the wire encoding of the type.
+func wiretype(encoding string) uint64 {
+	switch encoding {
+	case "fixed32":
+		return WireFixed32
+	case "fixed64":
+		return WireFixed64
+	case "varint", "zigzag32", "zigzag64":
+		return WireVarint
+	case "bytes":
+		return WireBytes
+	case "group":
+		return WireStartGroup
+	}
+	panic("unknown wire type " + encoding)
+}
+
+// setTag fills up the tag (in wire format) and its size in the info of a field.
+func (fi *marshalFieldInfo) setTag(f *reflect.StructField, tag int, wt uint64) {
+	fi.field = toField(f)
+	fi.wiretag = uint64(tag)<<3 | wt
+	fi.tagsize = SizeVarint(uint64(tag) << 3)
+}
+
+// setMarshaler fills up the sizer and marshaler in the info of a field.
+func (fi *marshalFieldInfo) setMarshaler(f *reflect.StructField, tags []string) {
+	switch f.Type.Kind() {
+	case reflect.Map:
+		// map field
+		fi.isPointer = true
+		fi.sizer, fi.marshaler = makeMapMarshaler(f)
+		return
+	case reflect.Ptr, reflect.Slice:
+		fi.isPointer = true
+	}
+	fi.sizer, fi.marshaler = typeMarshaler(f.Type, tags, true, false)
+}
+
+// typeMarshaler returns the sizer and marshaler of a given field.
+// t is the type of the field.
+// tags is the generated "protobuf" tag of the field.
+// If nozero is true, zero value is not marshaled to the wire.
+// If oneof is true, it is a oneof field.
+func typeMarshaler(t reflect.Type, tags []string, nozero, oneof bool) (sizer, marshaler) {
+	encoding := tags[0]
+
+	pointer := false
+	slice := false
+	if t.Kind() == reflect.Slice && t.Elem().Kind() != reflect.Uint8 {
+		slice = true
+		t = t.Elem()
+	}
+	if t.Kind() == reflect.Ptr {
+		pointer = true
+		t = t.Elem()
+	}
+
+	packed := false
+	proto3 := false
+	for i := 2; i < len(tags); i++ {
+		if tags[i] == "packed" {
+			packed = true
+		}
+		if tags[i] == "proto3" {
+			proto3 = true
+		}
+	}
+
+	switch t.Kind() {
+	case reflect.Bool:
+		if pointer {
+			return sizeBoolPtr, appendBoolPtr
+		}
+		if slice {
+			if packed {
+				return sizeBoolPackedSlice, appendBoolPackedSlice
+			}
+			return sizeBoolSlice, appendBoolSlice
+		}
+		if nozero {
+			return sizeBoolValueNoZero, appendBoolValueNoZero
+		}
+		return sizeBoolValue, appendBoolValue
+	case reflect.Uint32:
+		switch encoding {
+		case "fixed32":
+			if pointer {
+				return sizeFixed32Ptr, appendFixed32Ptr
+			}
+			if slice {
+				if packed {
+					return sizeFixed32PackedSlice, appendFixed32PackedSlice
+				}
+				return sizeFixed32Slice, appendFixed32Slice
+			}
+			if nozero {
+				return sizeFixed32ValueNoZero, appendFixed32ValueNoZero
+			}
+			return sizeFixed32Value, appendFixed32Value
+		case "varint":
+			if pointer {
+				return sizeVarint32Ptr, appendVarint32Ptr
+			}
+			if slice {
+				if packed {
+					return sizeVarint32PackedSlice, appendVarint32PackedSlice
+				}
+				return sizeVarint32Slice, appendVarint32Slice
+			}
+			if nozero {
+				return sizeVarint32ValueNoZero, appendVarint32ValueNoZero
+			}
+			return sizeVarint32Value, appendVarint32Value
+		}
+	case reflect.Int32:
+		switch encoding {
+		case "fixed32":
+			if pointer {
+				return sizeFixedS32Ptr, appendFixedS32Ptr
+			}
+			if slice {
+				if packed {
+					return sizeFixedS32PackedSlice, appendFixedS32PackedSlice
+				}
+				return sizeFixedS32Slice, appendFixedS32Slice
+			}
+			if nozero {
+				return sizeFixedS32ValueNoZero, appendFixedS32ValueNoZero
+			}
+			return sizeFixedS32Value, appendFixedS32Value
+		case "varint":
+			if pointer {
+				return sizeVarintS32Ptr, appendVarintS32Ptr
+			}
+			if slice {
+				if packed {
+					return sizeVarintS32PackedSlice, appendVarintS32PackedSlice
+				}
+				return sizeVarintS32Slice, appendVarintS32Slice
+			}
+			if nozero {
+				return sizeVarintS32ValueNoZero, appendVarintS32ValueNoZero
+			}
+			return sizeVarintS32Value, appendVarintS32Value
+		case "zigzag32":
+			if pointer {
+				return sizeZigzag32Ptr, appendZigzag32Ptr
+			}
+			if slice {
+				if packed {
+					return sizeZigzag32PackedSlice, appendZigzag32PackedSlice
+				}
+				return sizeZigzag32Slice, appendZigzag32Slice
+			}
+			if nozero {
+				return sizeZigzag32ValueNoZero, appendZigzag32ValueNoZero
+			}
+			return sizeZigzag32Value, appendZigzag32Value
+		}
+	case reflect.Uint64:
+		switch encoding {
+		case "fixed64":
+			if pointer {
+				return sizeFixed64Ptr, appendFixed64Ptr
+			}
+			if slice {
+				if packed {
+					return sizeFixed64PackedSlice, appendFixed64PackedSlice
+				}
+				return sizeFixed64Slice, appendFixed64Slice
+			}
+			if nozero {
+				return sizeFixed64ValueNoZero, appendFixed64ValueNoZero
+			}
+			return sizeFixed64Value, appendFixed64Value
+		case "varint":
+			if pointer {
+				return sizeVarint64Ptr, appendVarint64Ptr
+			}
+			if slice {
+				if packed {
+					return sizeVarint64PackedSlice, appendVarint64PackedSlice
+				}
+				return sizeVarint64Slice, appendVarint64Slice
+			}
+			if nozero {
+				return sizeVarint64ValueNoZero, appendVarint64ValueNoZero
+			}
+			return sizeVarint64Value, appendVarint64Value
+		}
+	case reflect.Int64:
+		switch encoding {
+		case "fixed64":
+			if pointer {
+				return sizeFixedS64Ptr, appendFixedS64Ptr
+			}
+			if slice {
+				if packed {
+					return sizeFixedS64PackedSlice, appendFixedS64PackedSlice
+				}
+				return sizeFixedS64Slice, appendFixedS64Slice
+			}
+			if nozero {
+				return sizeFixedS64ValueNoZero, appendFixedS64ValueNoZero
+			}
+			return sizeFixedS64Value, appendFixedS64Value
+		case "varint":
+			if pointer {
+				return sizeVarintS64Ptr, appendVarintS64Ptr
+			}
+			if slice {
+				if packed {
+					return sizeVarintS64PackedSlice, appendVarintS64PackedSlice
+				}
+				return sizeVarintS64Slice, appendVarintS64Slice
+			}
+			if nozero {
+				return sizeVarintS64ValueNoZero, appendVarintS64ValueNoZero
+			}
+			return sizeVarintS64Value, appendVarintS64Value
+		case "zigzag64":
+			if pointer {
+				return sizeZigzag64Ptr, appendZigzag64Ptr
+			}
+			if slice {
+				if packed {
+					return sizeZigzag64PackedSlice, appendZigzag64PackedSlice
+				}
+				return sizeZigzag64Slice, appendZigzag64Slice
+			}
+			if nozero {
+				return sizeZigzag64ValueNoZero, appendZigzag64ValueNoZero
+			}
+			return sizeZigzag64Value, appendZigzag64Value
+		}
+	case reflect.Float32:
+		if pointer {
+			return sizeFloat32Ptr, appendFloat32Ptr
+		}
+		if slice {
+			if packed {
+				return sizeFloat32PackedSlice, appendFloat32PackedSlice
+			}
+			return sizeFloat32Slice, appendFloat32Slice
+		}
+		if nozero {
+			return sizeFloat32ValueNoZero, appendFloat32ValueNoZero
+		}
+		return sizeFloat32Value, appendFloat32Value
+	case reflect.Float64:
+		if pointer {
+			return sizeFloat64Ptr, appendFloat64Ptr
+		}
+		if slice {
+			if packed {
+				return sizeFloat64PackedSlice, appendFloat64PackedSlice
+			}
+			return sizeFloat64Slice, appendFloat64Slice
+		}
+		if nozero {
+			return sizeFloat64ValueNoZero, appendFloat64ValueNoZero
+		}
+		return sizeFloat64Value, appendFloat64Value
+	case reflect.String:
+		if pointer {
+			return sizeStringPtr, appendStringPtr
+		}
+		if slice {
+			return sizeStringSlice, appendStringSlice
+		}
+		if nozero {
+			return sizeStringValueNoZero, appendStringValueNoZero
+		}
+		return sizeStringValue, appendStringValue
+	case reflect.Slice:
+		if slice {
+			return sizeBytesSlice, appendBytesSlice
+		}
+		if oneof {
+			// Oneof bytes field may also have "proto3" tag.
+			// We want to marshal it as a oneof field. Do this
+			// check before the proto3 check.
+			return sizeBytesOneof, appendBytesOneof
+		}
+		if proto3 {
+			return sizeBytes3, appendBytes3
+		}
+		return sizeBytes, appendBytes
+	case reflect.Struct:
+		switch encoding {
+		case "group":
+			if slice {
+				return makeGroupSliceMarshaler(getMarshalInfo(t))
+			}
+			return makeGroupMarshaler(getMarshalInfo(t))
+		case "bytes":
+			if slice {
+				return makeMessageSliceMarshaler(getMarshalInfo(t))
+			}
+			return makeMessageMarshaler(getMarshalInfo(t))
+		}
+	}
+	panic(fmt.Sprintf("unknown or mismatched type: type: %v, wire type: %v", t, encoding))
+}
+
+// Below are functions to size/marshal a specific type of a field.
+// They are stored in the field's info, and called by function pointers.
+// They have type sizer or marshaler.
+
+func sizeFixed32Value(_ pointer, tagsize int) int {
+	return 4 + tagsize
+}
+func sizeFixed32ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toUint32()
+	if v == 0 {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFixed32Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toUint32Ptr()
+	if p == nil {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFixed32Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint32Slice()
+	return (4 + tagsize) * len(s)
+}
+func sizeFixed32PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 4*len(s) + SizeVarint(uint64(4*len(s))) + tagsize
+}
+func sizeFixedS32Value(_ pointer, tagsize int) int {
+	return 4 + tagsize
+}
+func sizeFixedS32ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFixedS32Ptr(ptr pointer, tagsize int) int {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFixedS32Slice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	return (4 + tagsize) * len(s)
+}
+func sizeFixedS32PackedSlice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 4*len(s) + SizeVarint(uint64(4*len(s))) + tagsize
+}
+func sizeFloat32Value(_ pointer, tagsize int) int {
+	return 4 + tagsize
+}
+func sizeFloat32ValueNoZero(ptr pointer, tagsize int) int {
+	v := math.Float32bits(*ptr.toFloat32())
+	if v == 0 {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFloat32Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toFloat32Ptr()
+	if p == nil {
+		return 0
+	}
+	return 4 + tagsize
+}
+func sizeFloat32Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toFloat32Slice()
+	return (4 + tagsize) * len(s)
+}
+func sizeFloat32PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toFloat32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 4*len(s) + SizeVarint(uint64(4*len(s))) + tagsize
+}
+func sizeFixed64Value(_ pointer, tagsize int) int {
+	return 8 + tagsize
+}
+func sizeFixed64ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toUint64()
+	if v == 0 {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFixed64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toUint64Ptr()
+	if p == nil {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFixed64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint64Slice()
+	return (8 + tagsize) * len(s)
+}
+func sizeFixed64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 8*len(s) + SizeVarint(uint64(8*len(s))) + tagsize
+}
+func sizeFixedS64Value(_ pointer, tagsize int) int {
+	return 8 + tagsize
+}
+func sizeFixedS64ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFixedS64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFixedS64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	return (8 + tagsize) * len(s)
+}
+func sizeFixedS64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 8*len(s) + SizeVarint(uint64(8*len(s))) + tagsize
+}
+func sizeFloat64Value(_ pointer, tagsize int) int {
+	return 8 + tagsize
+}
+func sizeFloat64ValueNoZero(ptr pointer, tagsize int) int {
+	v := math.Float64bits(*ptr.toFloat64())
+	if v == 0 {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFloat64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toFloat64Ptr()
+	if p == nil {
+		return 0
+	}
+	return 8 + tagsize
+}
+func sizeFloat64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toFloat64Slice()
+	return (8 + tagsize) * len(s)
+}
+func sizeFloat64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toFloat64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	return 8*len(s) + SizeVarint(uint64(8*len(s))) + tagsize
+}
+func sizeVarint32Value(ptr pointer, tagsize int) int {
+	v := *ptr.toUint32()
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarint32ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toUint32()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarint32Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toUint32Ptr()
+	if p == nil {
+		return 0
+	}
+	return SizeVarint(uint64(*p)) + tagsize
+}
+func sizeVarint32Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint32Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v)) + tagsize
+	}
+	return n
+}
+func sizeVarint32PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeVarintS32Value(ptr pointer, tagsize int) int {
+	v := *ptr.toInt32()
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarintS32ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarintS32Ptr(ptr pointer, tagsize int) int {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return 0
+	}
+	return SizeVarint(uint64(*p)) + tagsize
+}
+func sizeVarintS32Slice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v)) + tagsize
+	}
+	return n
+}
+func sizeVarintS32PackedSlice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeVarint64Value(ptr pointer, tagsize int) int {
+	v := *ptr.toUint64()
+	return SizeVarint(v) + tagsize
+}
+func sizeVarint64ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toUint64()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(v) + tagsize
+}
+func sizeVarint64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toUint64Ptr()
+	if p == nil {
+		return 0
+	}
+	return SizeVarint(*p) + tagsize
+}
+func sizeVarint64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint64Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(v) + tagsize
+	}
+	return n
+}
+func sizeVarint64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toUint64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(v)
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeVarintS64Value(ptr pointer, tagsize int) int {
+	v := *ptr.toInt64()
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarintS64ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(uint64(v)) + tagsize
+}
+func sizeVarintS64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return 0
+	}
+	return SizeVarint(uint64(*p)) + tagsize
+}
+func sizeVarintS64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v)) + tagsize
+	}
+	return n
+}
+func sizeVarintS64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeZigzag32Value(ptr pointer, tagsize int) int {
+	v := *ptr.toInt32()
+	return SizeVarint(uint64((uint32(v)<<1)^uint32((int32(v)>>31)))) + tagsize
+}
+func sizeZigzag32ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(uint64((uint32(v)<<1)^uint32((int32(v)>>31)))) + tagsize
+}
+func sizeZigzag32Ptr(ptr pointer, tagsize int) int {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return 0
+	}
+	v := *p
+	return SizeVarint(uint64((uint32(v)<<1)^uint32((int32(v)>>31)))) + tagsize
+}
+func sizeZigzag32Slice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64((uint32(v)<<1)^uint32((int32(v)>>31)))) + tagsize
+	}
+	return n
+}
+func sizeZigzag32PackedSlice(ptr pointer, tagsize int) int {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64((uint32(v) << 1) ^ uint32((int32(v) >> 31))))
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeZigzag64Value(ptr pointer, tagsize int) int {
+	v := *ptr.toInt64()
+	return SizeVarint(uint64(v<<1)^uint64((int64(v)>>63))) + tagsize
+}
+func sizeZigzag64ValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return 0
+	}
+	return SizeVarint(uint64(v<<1)^uint64((int64(v)>>63))) + tagsize
+}
+func sizeZigzag64Ptr(ptr pointer, tagsize int) int {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return 0
+	}
+	v := *p
+	return SizeVarint(uint64(v<<1)^uint64((int64(v)>>63))) + tagsize
+}
+func sizeZigzag64Slice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v<<1)^uint64((int64(v)>>63))) + tagsize
+	}
+	return n
+}
+func sizeZigzag64PackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return 0
+	}
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v<<1) ^ uint64((int64(v) >> 63)))
+	}
+	return n + SizeVarint(uint64(n)) + tagsize
+}
+func sizeBoolValue(_ pointer, tagsize int) int {
+	return 1 + tagsize
+}
+func sizeBoolValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toBool()
+	if !v {
+		return 0
+	}
+	return 1 + tagsize
+}
+func sizeBoolPtr(ptr pointer, tagsize int) int {
+	p := *ptr.toBoolPtr()
+	if p == nil {
+		return 0
+	}
+	return 1 + tagsize
+}
+func sizeBoolSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toBoolSlice()
+	return (1 + tagsize) * len(s)
+}
+func sizeBoolPackedSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toBoolSlice()
+	if len(s) == 0 {
+		return 0
+	}
+	return len(s) + SizeVarint(uint64(len(s))) + tagsize
+}
+func sizeStringValue(ptr pointer, tagsize int) int {
+	v := *ptr.toString()
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeStringValueNoZero(ptr pointer, tagsize int) int {
+	v := *ptr.toString()
+	if v == "" {
+		return 0
+	}
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeStringPtr(ptr pointer, tagsize int) int {
+	p := *ptr.toStringPtr()
+	if p == nil {
+		return 0
+	}
+	v := *p
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeStringSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toStringSlice()
+	n := 0
+	for _, v := range s {
+		n += len(v) + SizeVarint(uint64(len(v))) + tagsize
+	}
+	return n
+}
+func sizeBytes(ptr pointer, tagsize int) int {
+	v := *ptr.toBytes()
+	if v == nil {
+		return 0
+	}
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeBytes3(ptr pointer, tagsize int) int {
+	v := *ptr.toBytes()
+	if len(v) == 0 {
+		return 0
+	}
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeBytesOneof(ptr pointer, tagsize int) int {
+	v := *ptr.toBytes()
+	return len(v) + SizeVarint(uint64(len(v))) + tagsize
+}
+func sizeBytesSlice(ptr pointer, tagsize int) int {
+	s := *ptr.toBytesSlice()
+	n := 0
+	for _, v := range s {
+		n += len(v) + SizeVarint(uint64(len(v))) + tagsize
+	}
+	return n
+}
+
+// appendFixed32 appends an encoded fixed32 to b.
+func appendFixed32(b []byte, v uint32) []byte {
+	b = append(b,
+		byte(v),
+		byte(v>>8),
+		byte(v>>16),
+		byte(v>>24))
+	return b
+}
+
+// appendFixed64 appends an encoded fixed64 to b.
+func appendFixed64(b []byte, v uint64) []byte {
+	b = append(b,
+		byte(v),
+		byte(v>>8),
+		byte(v>>16),
+		byte(v>>24),
+		byte(v>>32),
+		byte(v>>40),
+		byte(v>>48),
+		byte(v>>56))
+	return b
+}
+
+// appendVarint appends an encoded varint to b.
+func appendVarint(b []byte, v uint64) []byte {
+	// TODO: make 1-byte (maybe 2-byte) case inline-able, once we
+	// have non-leaf inliner.
+	switch {
+	case v < 1<<7:
+		b = append(b, byte(v))
+	case v < 1<<14:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte(v>>7))
+	case v < 1<<21:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte(v>>14))
+	case v < 1<<28:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte(v>>21))
+	case v < 1<<35:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte(v>>28))
+	case v < 1<<42:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte((v>>28)&0x7f|0x80),
+			byte(v>>35))
+	case v < 1<<49:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte((v>>28)&0x7f|0x80),
+			byte((v>>35)&0x7f|0x80),
+			byte(v>>42))
+	case v < 1<<56:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte((v>>28)&0x7f|0x80),
+			byte((v>>35)&0x7f|0x80),
+			byte((v>>42)&0x7f|0x80),
+			byte(v>>49))
+	case v < 1<<63:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte((v>>28)&0x7f|0x80),
+			byte((v>>35)&0x7f|0x80),
+			byte((v>>42)&0x7f|0x80),
+			byte((v>>49)&0x7f|0x80),
+			byte(v>>56))
+	default:
+		b = append(b,
+			byte(v&0x7f|0x80),
+			byte((v>>7)&0x7f|0x80),
+			byte((v>>14)&0x7f|0x80),
+			byte((v>>21)&0x7f|0x80),
+			byte((v>>28)&0x7f|0x80),
+			byte((v>>35)&0x7f|0x80),
+			byte((v>>42)&0x7f|0x80),
+			byte((v>>49)&0x7f|0x80),
+			byte((v>>56)&0x7f|0x80),
+			1)
+	}
+	return b
+}
+
+func appendFixed32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint32()
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, v)
+	return b, nil
+}
+func appendFixed32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint32()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, v)
+	return b, nil
+}
+func appendFixed32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toUint32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, *p)
+	return b, nil
+}
+func appendFixed32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed32(b, v)
+	}
+	return b, nil
+}
+func appendFixed32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(4*len(s)))
+	for _, v := range s {
+		b = appendFixed32(b, v)
+	}
+	return b, nil
+}
+func appendFixedS32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, uint32(v))
+	return b, nil
+}
+func appendFixedS32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, uint32(v))
+	return b, nil
+}
+func appendFixedS32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, uint32(*p))
+	return b, nil
+}
+func appendFixedS32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed32(b, uint32(v))
+	}
+	return b, nil
+}
+func appendFixedS32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(4*len(s)))
+	for _, v := range s {
+		b = appendFixed32(b, uint32(v))
+	}
+	return b, nil
+}
+func appendFloat32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := math.Float32bits(*ptr.toFloat32())
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, v)
+	return b, nil
+}
+func appendFloat32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := math.Float32bits(*ptr.toFloat32())
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, v)
+	return b, nil
+}
+func appendFloat32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toFloat32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed32(b, math.Float32bits(*p))
+	return b, nil
+}
+func appendFloat32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toFloat32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed32(b, math.Float32bits(v))
+	}
+	return b, nil
+}
+func appendFloat32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toFloat32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(4*len(s)))
+	for _, v := range s {
+		b = appendFixed32(b, math.Float32bits(v))
+	}
+	return b, nil
+}
+func appendFixed64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint64()
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, v)
+	return b, nil
+}
+func appendFixed64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint64()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, v)
+	return b, nil
+}
+func appendFixed64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toUint64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, *p)
+	return b, nil
+}
+func appendFixed64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed64(b, v)
+	}
+	return b, nil
+}
+func appendFixed64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(8*len(s)))
+	for _, v := range s {
+		b = appendFixed64(b, v)
+	}
+	return b, nil
+}
+func appendFixedS64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, uint64(v))
+	return b, nil
+}
+func appendFixedS64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, uint64(v))
+	return b, nil
+}
+func appendFixedS64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, uint64(*p))
+	return b, nil
+}
+func appendFixedS64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed64(b, uint64(v))
+	}
+	return b, nil
+}
+func appendFixedS64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(8*len(s)))
+	for _, v := range s {
+		b = appendFixed64(b, uint64(v))
+	}
+	return b, nil
+}
+func appendFloat64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := math.Float64bits(*ptr.toFloat64())
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, v)
+	return b, nil
+}
+func appendFloat64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := math.Float64bits(*ptr.toFloat64())
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, v)
+	return b, nil
+}
+func appendFloat64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toFloat64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendFixed64(b, math.Float64bits(*p))
+	return b, nil
+}
+func appendFloat64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toFloat64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendFixed64(b, math.Float64bits(v))
+	}
+	return b, nil
+}
+func appendFloat64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toFloat64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(8*len(s)))
+	for _, v := range s {
+		b = appendFixed64(b, math.Float64bits(v))
+	}
+	return b, nil
+}
+func appendVarint32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint32()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarint32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint32()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarint32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toUint32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(*p))
+	return b, nil
+}
+func appendVarint32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendVarint32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendVarintS32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarintS32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarintS32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(*p))
+	return b, nil
+}
+func appendVarintS32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendVarintS32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendVarint64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint64()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, v)
+	return b, nil
+}
+func appendVarint64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toUint64()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, v)
+	return b, nil
+}
+func appendVarint64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toUint64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, *p)
+	return b, nil
+}
+func appendVarint64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, v)
+	}
+	return b, nil
+}
+func appendVarint64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toUint64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(v)
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, v)
+	}
+	return b, nil
+}
+func appendVarintS64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarintS64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v))
+	return b, nil
+}
+func appendVarintS64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(*p))
+	return b, nil
+}
+func appendVarintS64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendVarintS64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v))
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, uint64(v))
+	}
+	return b, nil
+}
+func appendZigzag32Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64((uint32(v)<<1)^uint32((int32(v)>>31))))
+	return b, nil
+}
+func appendZigzag32ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt32()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64((uint32(v)<<1)^uint32((int32(v)>>31))))
+	return b, nil
+}
+func appendZigzag32Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := ptr.getInt32Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	v := *p
+	b = appendVarint(b, uint64((uint32(v)<<1)^uint32((int32(v)>>31))))
+	return b, nil
+}
+func appendZigzag32Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64((uint32(v)<<1)^uint32((int32(v)>>31))))
+	}
+	return b, nil
+}
+func appendZigzag32PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := ptr.getInt32Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64((uint32(v) << 1) ^ uint32((int32(v) >> 31))))
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, uint64((uint32(v)<<1)^uint32((int32(v)>>31))))
+	}
+	return b, nil
+}
+func appendZigzag64Value(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v<<1)^uint64((int64(v)>>63)))
+	return b, nil
+}
+func appendZigzag64ValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toInt64()
+	if v == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(v<<1)^uint64((int64(v)>>63)))
+	return b, nil
+}
+func appendZigzag64Ptr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toInt64Ptr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	v := *p
+	b = appendVarint(b, uint64(v<<1)^uint64((int64(v)>>63)))
+	return b, nil
+}
+func appendZigzag64Slice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(v<<1)^uint64((int64(v)>>63)))
+	}
+	return b, nil
+}
+func appendZigzag64PackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toInt64Slice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	// compute size
+	n := 0
+	for _, v := range s {
+		n += SizeVarint(uint64(v<<1) ^ uint64((int64(v) >> 63)))
+	}
+	b = appendVarint(b, uint64(n))
+	for _, v := range s {
+		b = appendVarint(b, uint64(v<<1)^uint64((int64(v)>>63)))
+	}
+	return b, nil
+}
+func appendBoolValue(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toBool()
+	b = appendVarint(b, wiretag)
+	if v {
+		b = append(b, 1)
+	} else {
+		b = append(b, 0)
+	}
+	return b, nil
+}
+func appendBoolValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toBool()
+	if !v {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = append(b, 1)
+	return b, nil
+}
+
+func appendBoolPtr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toBoolPtr()
+	if p == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	if *p {
+		b = append(b, 1)
+	} else {
+		b = append(b, 0)
+	}
+	return b, nil
+}
+func appendBoolSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toBoolSlice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		if v {
+			b = append(b, 1)
+		} else {
+			b = append(b, 0)
+		}
+	}
+	return b, nil
+}
+func appendBoolPackedSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toBoolSlice()
+	if len(s) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag&^7|WireBytes)
+	b = appendVarint(b, uint64(len(s)))
+	for _, v := range s {
+		if v {
+			b = append(b, 1)
+		} else {
+			b = append(b, 0)
+		}
+	}
+	return b, nil
+}
+func appendStringValue(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toString()
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendStringValueNoZero(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toString()
+	if v == "" {
+		return b, nil
+	}
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendStringPtr(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	p := *ptr.toStringPtr()
+	if p == nil {
+		return b, nil
+	}
+	v := *p
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendStringSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toStringSlice()
+	for _, v := range s {
+		if !utf8.ValidString(v) {
+			return nil, errInvalidUTF8
+		}
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(len(v)))
+		b = append(b, v...)
+	}
+	return b, nil
+}
+func appendBytes(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toBytes()
+	if v == nil {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendBytes3(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toBytes()
+	if len(v) == 0 {
+		return b, nil
+	}
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendBytesOneof(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	v := *ptr.toBytes()
+	b = appendVarint(b, wiretag)
+	b = appendVarint(b, uint64(len(v)))
+	b = append(b, v...)
+	return b, nil
+}
+func appendBytesSlice(b []byte, ptr pointer, wiretag uint64, _ bool) ([]byte, error) {
+	s := *ptr.toBytesSlice()
+	for _, v := range s {
+		b = appendVarint(b, wiretag)
+		b = appendVarint(b, uint64(len(v)))
+		b = append(b, v...)
+	}
+	return b, nil
+}
+
+// makeGroupMarshaler returns the sizer and marshaler for a group.
+// u is the marshal info of the underlying message.
+func makeGroupMarshaler(u *marshalInfo) (sizer, marshaler) {
+	return func(ptr pointer, tagsize int) int {
+			p := ptr.getPointer()
+			if p.isNil() {
+				return 0
+			}
+			return u.size(p) + 2*tagsize
+		},
+		func(b []byte, ptr pointer, wiretag uint64, deterministic bool) ([]byte, error) {
+			p := ptr.getPointer()
+			if p.isNil() {
+				return b, nil
+			}
+			var err error
+			b = appendVarint(b, wiretag) // start group
+			b, err = u.marshal(b, p, deterministic)
+			b = appendVarint(b, wiretag+(WireEndGroup-WireStartGroup)) // end group
+			return b, err
+		}
+}
+
+// makeGroupSliceMarshaler returns the sizer and marshaler for a group slice.
+// u is the marshal info of the underlying message.
+func makeGroupSliceMarshaler(u *marshalInfo) (sizer, marshaler) {
+	return func(ptr pointer, tagsize int) int {
+			s := ptr.getPointerSlice()
+			n := 0
+			for _, v := range s {
+				if v.isNil() {
+					continue
+				}
+				n += u.size(v) + 2*tagsize
+			}
+			return n
+		},
+		func(b []byte, ptr pointer, wiretag uint64, deterministic bool) ([]byte, error) {
+			s := ptr.getPointerSlice()
+			var err, errreq error
+			for _, v := range s {
+				if v.isNil() {
+					return b, errRepeatedHasNil
+				}
+				b = appendVarint(b, wiretag) // start group
+				b, err = u.marshal(b, v, deterministic)
+				b = appendVarint(b, wiretag+(WireEndGroup-WireStartGroup)) // end group
+				if err != nil {
+					if _, ok := err.(*RequiredNotSetError); ok {
+						// Required field in submessage is not set.
+						// We record the error but keep going, to give a complete marshaling.
+						if errreq == nil {
+							errreq = err
+						}
+						continue
+					}
+					if err == ErrNil {
+						err = errRepeatedHasNil
+					}
+					return b, err
+				}
+			}
+			return b, errreq
+		}
+}
+
+// makeMessageMarshaler returns the sizer and marshaler for a message field.
+// u is the marshal info of the message.
+func makeMessageMarshaler(u *marshalInfo) (sizer, marshaler) {
+	return func(ptr pointer, tagsize int) int {
+			p := ptr.getPointer()
+			if p.isNil() {
+				return 0
+			}
+			siz := u.size(p)
+			return siz + SizeVarint(uint64(siz)) + tagsize
+		},
+		func(b []byte, ptr pointer, wiretag uint64, deterministic bool) ([]byte, error) {
+			p := ptr.getPointer()
+			if p.isNil() {
+				return b, nil
+			}
+			b = appendVarint(b, wiretag)
+			siz := u.cachedsize(p)
+			b = appendVarint(b, uint64(siz))
+			return u.marshal(b, p, deterministic)
+		}
+}
+
+// makeMessageSliceMarshaler returns the sizer and marshaler for a message slice.
+// u is the marshal info of the message.
+func makeMessageSliceMarshaler(u *marshalInfo) (sizer, marshaler) {
+	return func(ptr pointer, tagsize int) int {
+			s := ptr.getPointerSlice()
+			n := 0
+			for _, v := range s {
+				if v.isNil() {
+					continue
+				}
+				siz := u.size(v)
+				n += siz + SizeVarint(uint64(siz)) + tagsize
+			}
+			return n
+		},
+		func(b []byte, ptr pointer, wiretag uint64, deterministic bool) ([]byte, error) {
+			s := ptr.getPointerSlice()
+			var err, errreq error
+			for _, v := range s {
+				if v.isNil() {
+					return b, errRepeatedHasNil
+				}
+				b = appendVarint(b, wiretag)
+				siz := u.cachedsize(v)
+				b = appendVarint(b, uint64(siz))
+				b, err = u.marshal(b, v, deterministic)
+
+				if err != nil {
+					if _, ok := err.(*RequiredNotSetError); ok {
+						// Required field in submessage is not set.
+						// We record the error but keep going, to give a complete marshaling.
+						if errreq == nil {
+							errreq = err
+						}
+						continue
+					}
+					if err == ErrNil {
+						err = errRepeatedHasNil
+					}
+					return b, err
+				}
+			}
+			return b, errreq
+		}
+}
+
+// makeMapMarshaler returns the sizer and marshaler for a map field.
+// f is the pointer to the reflect data structure of the field.
+func makeMapMarshaler(f *reflect.StructField) (sizer, marshaler) {
+	// figure out key and value type
+	t := f.Type
+	keyType := t.Key()
+	valType := t.Elem()
+	keyTags := strings.Split(f.Tag.Get("protobuf_key"), ",")
+	valTags := strings.Split(f.Tag.Get("protobuf_val"), ",")
+	keySizer, keyMarshaler := typeMarshaler(keyType, keyTags, false, false) // don't omit zero value in map
+	valSizer, valMarshaler := typeMarshaler(valType, valTags, false, false) // don't omit zero value in map
+	keyWireTag := 1<<3 | wiretype(keyTags[0])
+	valWireTag := 2<<3 | wiretype(valTags[0])
+
+	// We create an interface to get the addresses of the map key and value.
+	// If value is pointer-typed, the interface is a direct interface, the
+	// idata itself is the value. Otherwise, the idata is the pointer to the
+	// value.
+	// Key cannot be pointer-typed.
+	valIsPtr := valType.Kind() == reflect.Ptr
+	return func(ptr pointer, tagsize int) int {
+			m := ptr.asPointerTo(t).Elem() // the map
+			n := 0
+			for _, k := range m.MapKeys() {
+				ki := k.Interface()
+				vi := m.MapIndex(k).Interface()
+				kaddr := toAddrPointer(&ki, false)             // pointer to key
+				vaddr := toAddrPointer(&vi, valIsPtr)          // pointer to value
+				siz := keySizer(kaddr, 1) + valSizer(vaddr, 1) // tag of key = 1 (size=1), tag of val = 2 (size=1)
+				n += siz + SizeVarint(uint64(siz)) + tagsize
+			}
+			return n
+		},
+		func(b []byte, ptr pointer, tag uint64, deterministic bool) ([]byte, error) {
+			m := ptr.asPointerTo(t).Elem() // the map
+			var err error
+			keys := m.MapKeys()
+			if len(keys) > 1 && deterministic {
+				sort.Sort(mapKeys(keys))
+			}
+			for _, k := range keys {
+				ki := k.Interface()
+				vi := m.MapIndex(k).Interface()
+				kaddr := toAddrPointer(&ki, false)    // pointer to key
+				vaddr := toAddrPointer(&vi, valIsPtr) // pointer to value
+				b = appendVarint(b, tag)
+				siz := keySizer(kaddr, 1) + valSizer(vaddr, 1) // tag of key = 1 (size=1), tag of val = 2 (size=1)
+				b = appendVarint(b, uint64(siz))
+				b, err = keyMarshaler(b, kaddr, keyWireTag, deterministic)
+				if err != nil {
+					return b, err
+				}
+				b, err = valMarshaler(b, vaddr, valWireTag, deterministic)
+				if err != nil && err != ErrNil { // allow nil value in map
+					return b, err
+				}
+			}
+			return b, nil
+		}
+}
+
+// makeOneOfMarshaler returns the sizer and marshaler for a oneof field.
+// fi is the marshal info of the field.
+// f is the pointer to the reflect data structure of the field.
+func makeOneOfMarshaler(fi *marshalFieldInfo, f *reflect.StructField) (sizer, marshaler) {
+	// Oneof field is an interface. We need to get the actual data type on the fly.
+	t := f.Type
+	return func(ptr pointer, _ int) int {
+			p := ptr.getInterfacePointer()
+			if p.isNil() {
+				return 0
+			}
+			v := ptr.asPointerTo(t).Elem().Elem().Elem() // *interface -> interface -> *struct -> struct
+			telem := v.Type()
+			e := fi.oneofElems[telem]
+			return e.sizer(p, e.tagsize)
+		},
+		func(b []byte, ptr pointer, _ uint64, deterministic bool) ([]byte, error) {
+			p := ptr.getInterfacePointer()
+			if p.isNil() {
+				return b, nil
+			}
+			v := ptr.asPointerTo(t).Elem().Elem().Elem() // *interface -> interface -> *struct -> struct
+			telem := v.Type()
+			if telem.Field(0).Type.Kind() == reflect.Ptr && p.getPointer().isNil() {
+				return b, errOneofHasNil
+			}
+			e := fi.oneofElems[telem]
+			return e.marshaler(b, p, e.wiretag, deterministic)
+		}
+}
+
+// sizeExtensions computes the size of encoded data for a XXX_InternalExtensions field.
+func (u *marshalInfo) sizeExtensions(ext *XXX_InternalExtensions) int {
+	m, mu := ext.extensionsRead()
+	if m == nil {
+		return 0
+	}
+	mu.Lock()
+
+	n := 0
+	for _, e := range m {
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			n += len(e.enc)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		n += ei.sizer(p, ei.tagsize)
+	}
+	mu.Unlock()
+	return n
+}
+
+// appendExtensions marshals a XXX_InternalExtensions field to the end of byte slice b.
+func (u *marshalInfo) appendExtensions(b []byte, ext *XXX_InternalExtensions, deterministic bool) ([]byte, error) {
+	m, mu := ext.extensionsRead()
+	if m == nil {
+		return b, nil
+	}
+	mu.Lock()
+	defer mu.Unlock()
+
+	var err error
+
+	// Fast-path for common cases: zero or one extensions.
+	// Don't bother sorting the keys.
+	if len(m) <= 1 {
+		for _, e := range m {
+			if e.value == nil || e.desc == nil {
+				// Extension is only in its encoded form.
+				b = append(b, e.enc...)
+				continue
+			}
+
+			// We don't skip extensions that have an encoded form set,
+			// because the extension value may have been mutated after
+			// the last time this function was called.
+
+			ei := u.getExtElemInfo(e.desc)
+			v := e.value
+			p := toAddrPointer(&v, ei.isptr)
+			b, err = ei.marshaler(b, p, ei.wiretag, deterministic)
+			if err != nil {
+				return b, err
+			}
+		}
+		return b, nil
+	}
+
+	// Sort the keys to provide a deterministic encoding.
+	// Not sure this is required, but the old code does it.
+	keys := make([]int, 0, len(m))
+	for k := range m {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+
+	for _, k := range keys {
+		e := m[int32(k)]
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			b = append(b, e.enc...)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		b, err = ei.marshaler(b, p, ei.wiretag, deterministic)
+		if err != nil {
+			return b, err
+		}
+	}
+	return b, nil
+}
+
+// message set format is:
+//   message MessageSet {
+//     repeated group Item = 1 {
+//       required int32 type_id = 2;
+//       required string message = 3;
+//     };
+//   }
+
+// sizeMessageSet computes the size of encoded data for a XXX_InternalExtensions field
+// in message set format (above).
+func (u *marshalInfo) sizeMessageSet(ext *XXX_InternalExtensions) int {
+	m, mu := ext.extensionsRead()
+	if m == nil {
+		return 0
+	}
+	mu.Lock()
+
+	n := 0
+	for id, e := range m {
+		n += 2                          // start group, end group. tag = 1 (size=1)
+		n += SizeVarint(uint64(id)) + 1 // type_id, tag = 2 (size=1)
+
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			msgWithLen := skipVarint(e.enc) // skip old tag, but leave the length varint
+			siz := len(msgWithLen)
+			n += siz + 1 // message, tag = 3 (size=1)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		n += ei.sizer(p, 1) // message, tag = 3 (size=1)
+	}
+	mu.Unlock()
+	return n
+}
+
+// appendMessageSet marshals a XXX_InternalExtensions field in message set format (above)
+// to the end of byte slice b.
+func (u *marshalInfo) appendMessageSet(b []byte, ext *XXX_InternalExtensions, deterministic bool) ([]byte, error) {
+	m, mu := ext.extensionsRead()
+	if m == nil {
+		return b, nil
+	}
+	mu.Lock()
+	defer mu.Unlock()
+
+	var err error
+
+	// Fast-path for common cases: zero or one extensions.
+	// Don't bother sorting the keys.
+	if len(m) <= 1 {
+		for id, e := range m {
+			b = append(b, 1<<3|WireStartGroup)
+			b = append(b, 2<<3|WireVarint)
+			b = appendVarint(b, uint64(id))
+
+			if e.value == nil || e.desc == nil {
+				// Extension is only in its encoded form.
+				msgWithLen := skipVarint(e.enc) // skip old tag, but leave the length varint
+				b = append(b, 3<<3|WireBytes)
+				b = append(b, msgWithLen...)
+				b = append(b, 1<<3|WireEndGroup)
+				continue
+			}
+
+			// We don't skip extensions that have an encoded form set,
+			// because the extension value may have been mutated after
+			// the last time this function was called.
+
+			ei := u.getExtElemInfo(e.desc)
+			v := e.value
+			p := toAddrPointer(&v, ei.isptr)
+			b, err = ei.marshaler(b, p, 3<<3|WireBytes, deterministic)
+			if err != nil {
+				return b, err
+			}
+			b = append(b, 1<<3|WireEndGroup)
+		}
+		return b, nil
+	}
+
+	// Sort the keys to provide a deterministic encoding.
+	keys := make([]int, 0, len(m))
+	for k := range m {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+
+	for _, id := range keys {
+		e := m[int32(id)]
+		b = append(b, 1<<3|WireStartGroup)
+		b = append(b, 2<<3|WireVarint)
+		b = appendVarint(b, uint64(id))
+
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			msgWithLen := skipVarint(e.enc) // skip old tag, but leave the length varint
+			b = append(b, 3<<3|WireBytes)
+			b = append(b, msgWithLen...)
+			b = append(b, 1<<3|WireEndGroup)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		b, err = ei.marshaler(b, p, 3<<3|WireBytes, deterministic)
+		b = append(b, 1<<3|WireEndGroup)
+		if err != nil {
+			return b, err
+		}
+	}
+	return b, nil
+}
+
+// sizeV1Extensions computes the size of encoded data for a V1-API extension field.
+func (u *marshalInfo) sizeV1Extensions(m map[int32]Extension) int {
+	if m == nil {
+		return 0
+	}
+
+	n := 0
+	for _, e := range m {
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			n += len(e.enc)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		n += ei.sizer(p, ei.tagsize)
+	}
+	return n
+}
+
+// appendV1Extensions marshals a V1-API extension field to the end of byte slice b.
+func (u *marshalInfo) appendV1Extensions(b []byte, m map[int32]Extension, deterministic bool) ([]byte, error) {
+	if m == nil {
+		return b, nil
+	}
+
+	// Sort the keys to provide a deterministic encoding.
+	keys := make([]int, 0, len(m))
+	for k := range m {
+		keys = append(keys, int(k))
+	}
+	sort.Ints(keys)
+
+	var err error
+	for _, k := range keys {
+		e := m[int32(k)]
+		if e.value == nil || e.desc == nil {
+			// Extension is only in its encoded form.
+			b = append(b, e.enc...)
+			continue
+		}
+
+		// We don't skip extensions that have an encoded form set,
+		// because the extension value may have been mutated after
+		// the last time this function was called.
+
+		ei := u.getExtElemInfo(e.desc)
+		v := e.value
+		p := toAddrPointer(&v, ei.isptr)
+		b, err = ei.marshaler(b, p, ei.wiretag, deterministic)
+		if err != nil {
+			return b, err
+		}
+	}
+	return b, nil
+}
+
+// newMarshaler is the interface representing objects that can marshal themselves.
+//
+// This exists to support protoc-gen-go generated messages.
+// The proto package will stop type-asserting to this interface in the future.
+//
+// DO NOT DEPEND ON THIS.
+type newMarshaler interface {
+	XXX_Size() int
+	XXX_Marshal(b []byte, deterministic bool) ([]byte, error)
+}
+
+// Size returns the encoded size of a protocol buffer message.
+// This is the main entry point.
+func Size(pb Message) int {
+	if m, ok := pb.(newMarshaler); ok {
+		return m.XXX_Size()
+	}
+	if m, ok := pb.(Marshaler); ok {
+		// If the message can marshal itself, let it do it, for compatibility.
+		// NOTE: This is not efficient.
+		b, _ := m.Marshal()
+		return len(b)
+	}
+	// in case somehow we didn't generate the wrapper
+	if pb == nil {
+		return 0
+	}
+	var info InternalMessageInfo
+	return info.Size(pb)
+}
+
+// Marshal takes a protocol buffer message
+// and encodes it into the wire format, returning the data.
+// This is the main entry point.
+func Marshal(pb Message) ([]byte, error) {
+	if m, ok := pb.(newMarshaler); ok {
+		siz := m.XXX_Size()
+		b := make([]byte, 0, siz)
+		return m.XXX_Marshal(b, false)
+	}
+	if m, ok := pb.(Marshaler); ok {
+		// If the message can marshal itself, let it do it, for compatibility.
+		// NOTE: This is not efficient.
+		return m.Marshal()
+	}
+	// in case somehow we didn't generate the wrapper
+	if pb == nil {
+		return nil, ErrNil
+	}
+	var info InternalMessageInfo
+	siz := info.Size(pb)
+	b := make([]byte, 0, siz)
+	return info.Marshal(b, pb, false)
+}
+
+// Marshal takes a protocol buffer message
+// and encodes it into the wire format, writing the result to the
+// Buffer.
+// This is an alternative entry point. It is not necessary to use
+// a Buffer for most applications.
+func (p *Buffer) Marshal(pb Message) error {
+	var err error
+	if m, ok := pb.(newMarshaler); ok {
+		siz := m.XXX_Size()
+		p.grow(siz) // make sure buf has enough capacity
+		p.buf, err = m.XXX_Marshal(p.buf, p.deterministic)
+		return err
+	}
+	if m, ok := pb.(Marshaler); ok {
+		// If the message can marshal itself, let it do it, for compatibility.
+		// NOTE: This is not efficient.
+		b, err := m.Marshal()
+		p.buf = append(p.buf, b...)
+		return err
+	}
+	// in case somehow we didn't generate the wrapper
+	if pb == nil {
+		return ErrNil
+	}
+	var info InternalMessageInfo
+	siz := info.Size(pb)
+	p.grow(siz) // make sure buf has enough capacity
+	p.buf, err = info.Marshal(p.buf, pb, p.deterministic)
+	return err
+}
+
+// grow grows the buffer's capacity, if necessary, to guarantee space for
+// another n bytes. After grow(n), at least n bytes can be written to the
+// buffer without another allocation.
+func (p *Buffer) grow(n int) {
+	need := len(p.buf) + n
+	if need <= cap(p.buf) {
+		return
+	}
+	newCap := len(p.buf) * 2
+	if newCap < need {
+		newCap = need
+	}
+	p.buf = append(make([]byte, 0, newCap), p.buf...)
+}
diff --git a/vendor/github.com/golang/protobuf/proto/table_merge.go b/vendor/github.com/golang/protobuf/proto/table_merge.go
new file mode 100644
index 0000000000..5525def6a5
--- /dev/null
+++ b/vendor/github.com/golang/protobuf/proto/table_merge.go
@@ -0,0 +1,654 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"fmt"
+	"reflect"
+	"strings"
+	"sync"
+	"sync/atomic"
+)
+
+// Merge merges the src message into dst.
+// This assumes that dst and src of the same type and are non-nil.
+func (a *InternalMessageInfo) Merge(dst, src Message) {
+	mi := atomicLoadMergeInfo(&a.merge)
+	if mi == nil {
+		mi = getMergeInfo(reflect.TypeOf(dst).Elem())
+		atomicStoreMergeInfo(&a.merge, mi)
+	}
+	mi.merge(toPointer(&dst), toPointer(&src))
+}
+
+type mergeInfo struct {
+	typ reflect.Type
+
+	initialized int32 // 0: only typ is valid, 1: everything is valid
+	lock        sync.Mutex
+
+	fields       []mergeFieldInfo
+	unrecognized field // Offset of XXX_unrecognized
+}
+
+type mergeFieldInfo struct {
+	field field // Offset of field, guaranteed to be valid
+
+	// isPointer reports whether the value in the field is a pointer.
+	// This is true for the following situations:
+	//	* Pointer to struct
+	//	* Pointer to basic type (proto2 only)
+	//	* Slice (first value in slice header is a pointer)
+	//	* String (first value in string header is a pointer)
+	isPointer bool
+
+	// basicWidth reports the width of the field assuming that it is directly
+	// embedded in the struct (as is the case for basic types in proto3).
+	// The possible values are:
+	// 	0: invalid
+	//	1: bool
+	//	4: int32, uint32, float32
+	//	8: int64, uint64, float64
+	basicWidth int
+
+	// Where dst and src are pointers to the types being merged.
+	merge func(dst, src pointer)
+}
+
+var (
+	mergeInfoMap  = map[reflect.Type]*mergeInfo{}
+	mergeInfoLock sync.Mutex
+)
+
+func getMergeInfo(t reflect.Type) *mergeInfo {
+	mergeInfoLock.Lock()
+	defer mergeInfoLock.Unlock()
+	mi := mergeInfoMap[t]
+	if mi == nil {
+		mi = &mergeInfo{typ: t}
+		mergeInfoMap[t] = mi
+	}
+	return mi
+}
+
+// merge merges src into dst assuming they are both of type *mi.typ.
+func (mi *mergeInfo) merge(dst, src pointer) {
+	if dst.isNil() {
+		panic("proto: nil destination")
+	}
+	if src.isNil() {
+		return // Nothing to do.
+	}
+
+	if atomic.LoadInt32(&mi.initialized) == 0 {
+		mi.computeMergeInfo()
+	}
+
+	for _, fi := range mi.fields {
+		sfp := src.offset(fi.field)
+
+		// As an optimization, we can avoid the merge function call cost
+		// if we know for sure that the source will have no effect
+		// by checking if it is the zero value.
+		if unsafeAllowed {
+			if fi.isPointer && sfp.getPointer().isNil() { // Could be slice or string
+				continue
+			}
+			if fi.basicWidth > 0 {
+				switch {
+				case fi.basicWidth == 1 && !*sfp.toBool():
+					continue
+				case fi.basicWidth == 4 && *sfp.toUint32() == 0:
+					continue
+				case fi.basicWidth == 8 && *sfp.toUint64() == 0:
+					continue
+				}
+			}
+		}
+
+		dfp := dst.offset(fi.field)
+		fi.merge(dfp, sfp)
+	}
+
+	// TODO: Make this faster?
+	out := dst.asPointerTo(mi.typ).Elem()
+	in := src.asPointerTo(mi.typ).Elem()
+	if emIn, err := extendable(in.Addr().Interface()); err == nil {
+		emOut, _ := extendable(out.Addr().Interface())
+		mIn, muIn := emIn.extensionsRead()
+		if mIn != nil {
+			mOut := emOut.extensionsWrite()
+			muIn.Lock()
+			mergeExtension(mOut, mIn)
+			muIn.Unlock()
+		}
+	}
+
+	if mi.unrecognized.IsValid() {
+		if b := *src.offset(mi.unrecognized).toBytes(); len(b) > 0 {
+			*dst.offset(mi.unrecognized).toBytes() = append([]byte(nil), b...)
+		}
+	}
+}
+
+func (mi *mergeInfo) computeMergeInfo() {
+	mi.lock.Lock()
+	defer mi.lock.Unlock()
+	if mi.initialized != 0 {
+		return
+	}
+	t := mi.typ
+	n := t.NumField()
+
+	props := GetProperties(t)
+	for i := 0; i < n; i++ {
+		f := t.Field(i)
+		if strings.HasPrefix(f.Name, "XXX_") {
+			continue
+		}
+
+		mfi := mergeFieldInfo{field: toField(&f)}
+		tf := f.Type
+
+		// As an optimization, we can avoid the merge function call cost
+		// if we know for sure that the source will have no effect
+		// by checking if it is the zero value.
+		if unsafeAllowed {
+			switch tf.Kind() {
+			case reflect.Ptr, reflect.Slice, reflect.String:
+				// As a special case, we assume slices and strings are pointers
+				// since we know that the first field in the SliceSlice or
+				// StringHeader is a data pointer.
+				mfi.isPointer = true
+			case reflect.Bool:
+				mfi.basicWidth = 1
+			case reflect.Int32, reflect.Uint32, reflect.Float32:
+				mfi.basicWidth = 4
+			case reflect.Int64, reflect.Uint64, reflect.Float64:
+				mfi.basicWidth = 8
+			}
+		}
+
+		// Unwrap tf to get at its most basic type.
+		var isPointer, isSlice bool
+		if tf.Kind() == reflect.Slice && tf.Elem().Kind() != reflect.Uint8 {
+			isSlice = true
+			tf = tf.Elem()
+		}
+		if tf.Kind() == reflect.Ptr {
+			isPointer = true
+			tf = tf.Elem()
+		}
+		if isPointer && isSlice && tf.Kind() != reflect.Struct {
+			panic("both pointer and slice for basic type in " + tf.Name())
+		}
+
+		switch tf.Kind() {
+		case reflect.Int32:
+			switch {
+			case isSlice: // E.g., []int32
+				mfi.merge = func(dst, src pointer) {
+					// NOTE: toInt32Slice is not defined (see pointer_reflect.go).
+					/*
+						sfsp := src.toInt32Slice()
+						if *sfsp != nil {
+							dfsp := dst.toInt32Slice()
+							*dfsp = append(*dfsp, *sfsp...)
+							if *dfsp == nil {
+								*dfsp = []int64{}
+							}
+						}
+					*/
+					sfs := src.getInt32Slice()
+					if sfs != nil {
+						dfs := dst.getInt32Slice()
+						dfs = append(dfs, sfs...)
+						if dfs == nil {
+							dfs = []int32{}
+						}
+						dst.setInt32Slice(dfs)
+					}
+				}
+			case isPointer: // E.g., *int32
+				mfi.merge = func(dst, src pointer) {
+					// NOTE: toInt32Ptr is not defined (see pointer_reflect.go).
+					/*
+						sfpp := src.toInt32Ptr()
+						if *sfpp != nil {
+							dfpp := dst.toInt32Ptr()
+							if *dfpp == nil {
+								*dfpp = Int32(**sfpp)
+							} else {
+								**dfpp = **sfpp
+							}
+						}
+					*/
+					sfp := src.getInt32Ptr()
+					if sfp != nil {
+						dfp := dst.getInt32Ptr()
+						if dfp == nil {
+							dst.setInt32Ptr(*sfp)
+						} else {
+							*dfp = *sfp
+						}
+					}
+				}
+			default: // E.g., int32
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toInt32(); v != 0 {
+						*dst.toInt32() = v
+					}
+				}
+			}
+		case reflect.Int64:
+			switch {
+			case isSlice: // E.g., []int64
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toInt64Slice()
+					if *sfsp != nil {
+						dfsp := dst.toInt64Slice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []int64{}
+						}
+					}
+				}
+			case isPointer: // E.g., *int64
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toInt64Ptr()
+					if *sfpp != nil {
+						dfpp := dst.toInt64Ptr()
+						if *dfpp == nil {
+							*dfpp = Int64(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., int64
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toInt64(); v != 0 {
+						*dst.toInt64() = v
+					}
+				}
+			}
+		case reflect.Uint32:
+			switch {
+			case isSlice: // E.g., []uint32
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toUint32Slice()
+					if *sfsp != nil {
+						dfsp := dst.toUint32Slice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []uint32{}
+						}
+					}
+				}
+			case isPointer: // E.g., *uint32
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toUint32Ptr()
+					if *sfpp != nil {
+						dfpp := dst.toUint32Ptr()
+						if *dfpp == nil {
+							*dfpp = Uint32(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., uint32
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toUint32(); v != 0 {
+						*dst.toUint32() = v
+					}
+				}
+			}
+		case reflect.Uint64:
+			switch {
+			case isSlice: // E.g., []uint64
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toUint64Slice()
+					if *sfsp != nil {
+						dfsp := dst.toUint64Slice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []uint64{}
+						}
+					}
+				}
+			case isPointer: // E.g., *uint64
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toUint64Ptr()
+					if *sfpp != nil {
+						dfpp := dst.toUint64Ptr()
+						if *dfpp == nil {
+							*dfpp = Uint64(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., uint64
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toUint64(); v != 0 {
+						*dst.toUint64() = v
+					}
+				}
+			}
+		case reflect.Float32:
+			switch {
+			case isSlice: // E.g., []float32
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toFloat32Slice()
+					if *sfsp != nil {
+						dfsp := dst.toFloat32Slice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []float32{}
+						}
+					}
+				}
+			case isPointer: // E.g., *float32
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toFloat32Ptr()
+					if *sfpp != nil {
+						dfpp := dst.toFloat32Ptr()
+						if *dfpp == nil {
+							*dfpp = Float32(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., float32
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toFloat32(); v != 0 {
+						*dst.toFloat32() = v
+					}
+				}
+			}
+		case reflect.Float64:
+			switch {
+			case isSlice: // E.g., []float64
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toFloat64Slice()
+					if *sfsp != nil {
+						dfsp := dst.toFloat64Slice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []float64{}
+						}
+					}
+				}
+			case isPointer: // E.g., *float64
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toFloat64Ptr()
+					if *sfpp != nil {
+						dfpp := dst.toFloat64Ptr()
+						if *dfpp == nil {
+							*dfpp = Float64(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., float64
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toFloat64(); v != 0 {
+						*dst.toFloat64() = v
+					}
+				}
+			}
+		case reflect.Bool:
+			switch {
+			case isSlice: // E.g., []bool
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toBoolSlice()
+					if *sfsp != nil {
+						dfsp := dst.toBoolSlice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []bool{}
+						}
+					}
+				}
+			case isPointer: // E.g., *bool
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toBoolPtr()
+					if *sfpp != nil {
+						dfpp := dst.toBoolPtr()
+						if *dfpp == nil {
+							*dfpp = Bool(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., bool
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toBool(); v {
+						*dst.toBool() = v
+					}
+				}
+			}
+		case reflect.String:
+			switch {
+			case isSlice: // E.g., []string
+				mfi.merge = func(dst, src pointer) {
+					sfsp := src.toStringSlice()
+					if *sfsp != nil {
+						dfsp := dst.toStringSlice()
+						*dfsp = append(*dfsp, *sfsp...)
+						if *dfsp == nil {
+							*dfsp = []string{}
+						}
+					}
+				}
+			case isPointer: // E.g., *string
+				mfi.merge = func(dst, src pointer) {
+					sfpp := src.toStringPtr()
+					if *sfpp != nil {
+						dfpp := dst.toStringPtr()
+						if *dfpp == nil {
+							*dfpp = String(**sfpp)
+						} else {
+							**dfpp = **sfpp
+						}
+					}
+				}
+			default: // E.g., string
+				mfi.merge = func(dst, src pointer) {
+					if v := *src.toString(); v != "" {
+						*dst.toString() = v
+					}
+				}
+			}
+		case reflect.Slice:
+			isProto3 := props.Prop[i].proto3
+			switch {
+			case isPointer:
+				panic("bad pointer in byte slice case in " + tf.Name())
+			case tf.Elem().Kind() != reflect.Uint8:
+				panic("bad element kind in byte slice case in " + tf.Name())
+			case isSlice: // E.g., [][]byte
+				mfi.merge = func(dst, src pointer) {
+					sbsp := src.toBytesSlice()
+					if *sbsp != nil {
+						dbsp := dst.toBytesSlice()
+						for _, sb := range *sbsp {
+							if sb == nil {
+								*dbsp = append(*dbsp, nil)
+							} else {
+								*dbsp = append(*dbsp, append([]byte{}, sb...))
+							}
+						}
+						if *dbsp == nil {
+							*dbsp = [][]byte{}
+						}
+					}
+				}
+			default: // E.g., []byte
+				mfi.merge = func(dst, src pointer) {
+					sbp := src.toBytes()
+					if *sbp != nil {
+						dbp := dst.toBytes()
+						if !isProto3 || len(*sbp) > 0 {
+							*dbp = append([]byte{}, *sbp...)
+						}
+					}
+				}
+			}
+		case reflect.Struct:
+			switch {
+			case !isPointer:
+				panic(fmt.Sprintf("message field %s without pointer", tf))
+			case isSlice: // E.g., []*pb.T
+				mi := getMergeInfo(tf)
+				mfi.merge = func(dst, src pointer) {
+					sps := src.getPointerSlice()
+					if sps != nil {
+						dps := dst.getPointerSlice()
+						for _, sp := range sps {
+							var dp pointer
+							if !sp.isNil() {
+								dp = valToPointer(reflect.New(tf))
+								mi.merge(dp, sp)
+							}
+							dps = append(dps, dp)
+						}
+						if dps == nil {
+							dps = []pointer{}
+						}
+						dst.setPointerSlice(dps)
+					}
+				}
+			default: // E.g., *pb.T
+				mi := getMergeInfo(tf)
+				mfi.merge = func(dst, src pointer) {
+					sp := src.getPointer()
+					if !sp.isNil() {
+						dp := dst.getPointer()
+						if dp.isNil() {
+							dp = valToPointer(reflect.New(tf))
+							dst.setPointer(dp)
+						}
+						mi.merge(dp, sp)
+					}
+				}
+			}
+		case reflect.Map:
+			switch {
+			case isPointer || isSlice:
+				panic("bad pointer or slice in map case in " + tf.Name())
+			default: // E.g., map[K]V
+				mfi.merge = func(dst, src pointer) {
+					sm := src.asPointerTo(tf).Elem()
+					if sm.Len() == 0 {
+						return
+					}
+					dm := dst.asPointerTo(tf).Elem()
+					if dm.IsNil() {
+						dm.Set(reflect.MakeMap(tf))
+					}
+
+					switch tf.Elem().Kind() {
+					case reflect.Ptr: // Proto struct (e.g., *T)
+						for _, key := range sm.MapKeys() {
+							val := sm.MapIndex(key)
+							val = reflect.ValueOf(Clone(val.Interface().(Message)))
+							dm.SetMapIndex(key, val)
+						}
+					case reflect.Slice: // E.g. Bytes type (e.g., []byte)
+						for _, key := range sm.MapKeys() {
+							val := sm.MapIndex(key)
+							val = reflect.ValueOf(append([]byte{}, val.Bytes()...))
+							dm.SetMapIndex(key, val)
+						}
+					default: // Basic type (e.g., string)
+						for _, key := range sm.MapKeys() {
+							val := sm.MapIndex(key)
+							dm.SetMapIndex(key, val)
+						}
+					}
+				}
+			}
+		case reflect.Interface:
+			// Must be oneof field.
+			switch {
+			case isPointer || isSlice:
+				panic("bad pointer or slice in interface case in " + tf.Name())
+			default: // E.g., interface{}
+				// TODO: Make this faster?
+				mfi.merge = func(dst, src pointer) {
+					su := src.asPointerTo(tf).Elem()
+					if !su.IsNil() {
+						du := dst.asPointerTo(tf).Elem()
+						typ := su.Elem().Type()
+						if du.IsNil() || du.Elem().Type() != typ {
+							du.Set(reflect.New(typ.Elem())) // Initialize interface if empty
+						}
+						sv := su.Elem().Elem().Field(0)
+						if sv.Kind() == reflect.Ptr && sv.IsNil() {
+							return
+						}
+						dv := du.Elem().Elem().Field(0)
+						if dv.Kind() == reflect.Ptr && dv.IsNil() {
+							dv.Set(reflect.New(sv.Type().Elem())) // Initialize proto message if empty
+						}
+						switch sv.Type().Kind() {
+						case reflect.Ptr: // Proto struct (e.g., *T)
+							Merge(dv.Interface().(Message), sv.Interface().(Message))
+						case reflect.Slice: // E.g. Bytes type (e.g., []byte)
+							dv.Set(reflect.ValueOf(append([]byte{}, sv.Bytes()...)))
+						default: // Basic type (e.g., string)
+							dv.Set(sv)
+						}
+					}
+				}
+			}
+		default:
+			panic(fmt.Sprintf("merger not found for type:%s", tf))
+		}
+		mi.fields = append(mi.fields, mfi)
+	}
+
+	mi.unrecognized = invalidField
+	if f, ok := t.FieldByName("XXX_unrecognized"); ok {
+		if f.Type != reflect.TypeOf([]byte{}) {
+			panic("expected XXX_unrecognized to be of type []byte")
+		}
+		mi.unrecognized = toField(&f)
+	}
+
+	atomic.StoreInt32(&mi.initialized, 1)
+}
diff --git a/vendor/github.com/golang/protobuf/proto/table_unmarshal.go b/vendor/github.com/golang/protobuf/proto/table_unmarshal.go
new file mode 100644
index 0000000000..55f0340a3f
--- /dev/null
+++ b/vendor/github.com/golang/protobuf/proto/table_unmarshal.go
@@ -0,0 +1,1967 @@
+// Go support for Protocol Buffers - Google's data interchange format
+//
+// Copyright 2016 The Go Authors.  All rights reserved.
+// https://github.com/golang/protobuf
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package proto
+
+import (
+	"errors"
+	"fmt"
+	"io"
+	"math"
+	"reflect"
+	"strconv"
+	"strings"
+	"sync"
+	"sync/atomic"
+	"unicode/utf8"
+)
+
+// Unmarshal is the entry point from the generated .pb.go files.
+// This function is not intended to be used by non-generated code.
+// This function is not subject to any compatibility guarantee.
+// msg contains a pointer to a protocol buffer struct.
+// b is the data to be unmarshaled into the protocol buffer.
+// a is a pointer to a place to store cached unmarshal information.
+func (a *InternalMessageInfo) Unmarshal(msg Message, b []byte) error {
+	// Load the unmarshal information for this message type.
+	// The atomic load ensures memory consistency.
+	u := atomicLoadUnmarshalInfo(&a.unmarshal)
+	if u == nil {
+		// Slow path: find unmarshal info for msg, update a with it.
+		u = getUnmarshalInfo(reflect.TypeOf(msg).Elem())
+		atomicStoreUnmarshalInfo(&a.unmarshal, u)
+	}
+	// Then do the unmarshaling.
+	err := u.unmarshal(toPointer(&msg), b)
+	return err
+}
+
+type unmarshalInfo struct {
+	typ reflect.Type // type of the protobuf struct
+
+	// 0 = only typ field is initialized
+	// 1 = completely initialized
+	initialized     int32
+	lock            sync.Mutex                    // prevents double initialization
+	dense           []unmarshalFieldInfo          // fields indexed by tag #
+	sparse          map[uint64]unmarshalFieldInfo // fields indexed by tag #
+	reqFields       []string                      // names of required fields
+	reqMask         uint64                        // 1<<len(reqFields)-1
+	unrecognized    field                         // offset of []byte to put unrecognized data (or invalidField if we should throw it away)
+	extensions      field                         // offset of extensions field (of type proto.XXX_InternalExtensions), or invalidField if it does not exist
+	oldExtensions   field                         // offset of old-form extensions field (of type map[int]Extension)
+	extensionRanges []ExtensionRange              // if non-nil, implies extensions field is valid
+	isMessageSet    bool                          // if true, implies extensions field is valid
+}
+
+// An unmarshaler takes a stream of bytes and a pointer to a field of a message.
+// It decodes the field, stores it at f, and returns the unused bytes.
+// w is the wire encoding.
+// b is the data after the tag and wire encoding have been read.
+type unmarshaler func(b []byte, f pointer, w int) ([]byte, error)
+
+type unmarshalFieldInfo struct {
+	// location of the field in the proto message structure.
+	field field
+
+	// function to unmarshal the data for the field.
+	unmarshal unmarshaler
+
+	// if a required field, contains a single set bit at this field's index in the required field list.
+	reqMask uint64
+}
+
+var (
+	unmarshalInfoMap  = map[reflect.Type]*unmarshalInfo{}
+	unmarshalInfoLock sync.Mutex
+)
+
+// getUnmarshalInfo returns the data structure which can be
+// subsequently used to unmarshal a message of the given type.
+// t is the type of the message (note: not pointer to message).
+func getUnmarshalInfo(t reflect.Type) *unmarshalInfo {
+	// It would be correct to return a new unmarshalInfo
+	// unconditionally. We would end up allocating one
+	// per occurrence of that type as a message or submessage.
+	// We use a cache here just to reduce memory usage.
+	unmarshalInfoLock.Lock()
+	defer unmarshalInfoLock.Unlock()
+	u := unmarshalInfoMap[t]
+	if u == nil {
+		u = &unmarshalInfo{typ: t}
+		// Note: we just set the type here. The rest of the fields
+		// will be initialized on first use.
+		unmarshalInfoMap[t] = u
+	}
+	return u
+}
+
+// unmarshal does the main work of unmarshaling a message.
+// u provides type information used to unmarshal the message.
+// m is a pointer to a protocol buffer message.
+// b is a byte stream to unmarshal into m.
+// This is top routine used when recursively unmarshaling submessages.
+func (u *unmarshalInfo) unmarshal(m pointer, b []byte) error {
+	if atomic.LoadInt32(&u.initialized) == 0 {
+		u.computeUnmarshalInfo()
+	}
+	if u.isMessageSet {
+		return UnmarshalMessageSet(b, m.offset(u.extensions).toExtensions())
+	}
+	var reqMask uint64            // bitmask of required fields we've seen.
+	var rnse *RequiredNotSetError // an instance of a RequiredNotSetError returned by a submessage.
+	for len(b) > 0 {
+		// Read tag and wire type.
+		// Special case 1 and 2 byte varints.
+		var x uint64
+		if b[0] < 128 {
+			x = uint64(b[0])
+			b = b[1:]
+		} else if len(b) >= 2 && b[1] < 128 {
+			x = uint64(b[0]&0x7f) + uint64(b[1])<<7
+			b = b[2:]
+		} else {
+			var n int
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+		}
+		tag := x >> 3
+		wire := int(x) & 7
+
+		// Dispatch on the tag to one of the unmarshal* functions below.
+		var f unmarshalFieldInfo
+		if tag < uint64(len(u.dense)) {
+			f = u.dense[tag]
+		} else {
+			f = u.sparse[tag]
+		}
+		if fn := f.unmarshal; fn != nil {
+			var err error
+			b, err = fn(b, m.offset(f.field), wire)
+			if err == nil {
+				reqMask |= f.reqMask
+				continue
+			}
+			if r, ok := err.(*RequiredNotSetError); ok {
+				// Remember this error, but keep parsing. We need to produce
+				// a full parse even if a required field is missing.
+				rnse = r
+				reqMask |= f.reqMask
+				continue
+			}
+			if err != errInternalBadWireType {
+				return err
+			}
+			// Fragments with bad wire type are treated as unknown fields.
+		}
+
+		// Unknown tag.
+		if !u.unrecognized.IsValid() {
+			// Don't keep unrecognized data; just skip it.
+			var err error
+			b, err = skipField(b, wire)
+			if err != nil {
+				return err
+			}
+			continue
+		}
+		// Keep unrecognized data around.
+		// maybe in extensions, maybe in the unrecognized field.
+		z := m.offset(u.unrecognized).toBytes()
+		var emap map[int32]Extension
+		var e Extension
+		for _, r := range u.extensionRanges {
+			if uint64(r.Start) <= tag && tag <= uint64(r.End) {
+				if u.extensions.IsValid() {
+					mp := m.offset(u.extensions).toExtensions()
+					emap = mp.extensionsWrite()
+					e = emap[int32(tag)]
+					z = &e.enc
+					break
+				}
+				if u.oldExtensions.IsValid() {
+					p := m.offset(u.oldExtensions).toOldExtensions()
+					emap = *p
+					if emap == nil {
+						emap = map[int32]Extension{}
+						*p = emap
+					}
+					e = emap[int32(tag)]
+					z = &e.enc
+					break
+				}
+				panic("no extensions field available")
+			}
+		}
+
+		// Use wire type to skip data.
+		var err error
+		b0 := b
+		b, err = skipField(b, wire)
+		if err != nil {
+			return err
+		}
+		*z = encodeVarint(*z, tag<<3|uint64(wire))
+		*z = append(*z, b0[:len(b0)-len(b)]...)
+
+		if emap != nil {
+			emap[int32(tag)] = e
+		}
+	}
+	if rnse != nil {
+		// A required field of a submessage/group is missing. Return that error.
+		return rnse
+	}
+	if reqMask != u.reqMask {
+		// A required field of this message is missing.
+		for _, n := range u.reqFields {
+			if reqMask&1 == 0 {
+				return &RequiredNotSetError{n}
+			}
+			reqMask >>= 1
+		}
+	}
+	return nil
+}
+
+// computeUnmarshalInfo fills in u with information for use
+// in unmarshaling protocol buffers of type u.typ.
+func (u *unmarshalInfo) computeUnmarshalInfo() {
+	u.lock.Lock()
+	defer u.lock.Unlock()
+	if u.initialized != 0 {
+		return
+	}
+	t := u.typ
+	n := t.NumField()
+
+	// Set up the "not found" value for the unrecognized byte buffer.
+	// This is the default for proto3.
+	u.unrecognized = invalidField
+	u.extensions = invalidField
+	u.oldExtensions = invalidField
+
+	// List of the generated type and offset for each oneof field.
+	type oneofField struct {
+		ityp  reflect.Type // interface type of oneof field
+		field field        // offset in containing message
+	}
+	var oneofFields []oneofField
+
+	for i := 0; i < n; i++ {
+		f := t.Field(i)
+		if f.Name == "XXX_unrecognized" {
+			// The byte slice used to hold unrecognized input is special.
+			if f.Type != reflect.TypeOf(([]byte)(nil)) {
+				panic("bad type for XXX_unrecognized field: " + f.Type.Name())
+			}
+			u.unrecognized = toField(&f)
+			continue
+		}
+		if f.Name == "XXX_InternalExtensions" {
+			// Ditto here.
+			if f.Type != reflect.TypeOf(XXX_InternalExtensions{}) {
+				panic("bad type for XXX_InternalExtensions field: " + f.Type.Name())
+			}
+			u.extensions = toField(&f)
+			if f.Tag.Get("protobuf_messageset") == "1" {
+				u.isMessageSet = true
+			}
+			continue
+		}
+		if f.Name == "XXX_extensions" {
+			// An older form of the extensions field.
+			if f.Type != reflect.TypeOf((map[int32]Extension)(nil)) {
+				panic("bad type for XXX_extensions field: " + f.Type.Name())
+			}
+			u.oldExtensions = toField(&f)
+			continue
+		}
+		if f.Name == "XXX_NoUnkeyedLiteral" || f.Name == "XXX_sizecache" {
+			continue
+		}
+
+		oneof := f.Tag.Get("protobuf_oneof")
+		if oneof != "" {
+			oneofFields = append(oneofFields, oneofField{f.Type, toField(&f)})
+			// The rest of oneof processing happens below.
+			continue
+		}
+
+		tags := f.Tag.Get("protobuf")
+		tagArray := strings.Split(tags, ",")
+		if len(tagArray) < 2 {
+			panic("protobuf tag not enough fields in " + t.Name() + "." + f.Name + ": " + tags)
+		}
+		tag, err := strconv.Atoi(tagArray[1])
+		if err != nil {
+			panic("protobuf tag field not an integer: " + tagArray[1])
+		}
+
+		name := ""
+		for _, tag := range tagArray[3:] {
+			if strings.HasPrefix(tag, "name=") {
+				name = tag[5:]
+			}
+		}
+
+		// Extract unmarshaling function from the field (its type and tags).
+		unmarshal := fieldUnmarshaler(&f)
+
+		// Required field?
+		var reqMask uint64
+		if tagArray[2] == "req" {
+			bit := len(u.reqFields)
+			u.reqFields = append(u.reqFields, name)
+			reqMask = uint64(1) << uint(bit)
+			// TODO: if we have more than 64 required fields, we end up
+			// not verifying that all required fields are present.
+			// Fix this, perhaps using a count of required fields?
+		}
+
+		// Store the info in the correct slot in the message.
+		u.setTag(tag, toField(&f), unmarshal, reqMask)
+	}
+
+	// Find any types associated with oneof fields.
+	// TODO: XXX_OneofFuncs returns more info than we need.  Get rid of some of it?
+	fn := reflect.Zero(reflect.PtrTo(t)).MethodByName("XXX_OneofFuncs")
+	if fn.IsValid() {
+		res := fn.Call(nil)[3] // last return value from XXX_OneofFuncs: []interface{}
+		for i := res.Len() - 1; i >= 0; i-- {
+			v := res.Index(i)                             // interface{}
+			tptr := reflect.ValueOf(v.Interface()).Type() // *Msg_X
+			typ := tptr.Elem()                            // Msg_X
+
+			f := typ.Field(0) // oneof implementers have one field
+			baseUnmarshal := fieldUnmarshaler(&f)
+			tagstr := strings.Split(f.Tag.Get("protobuf"), ",")[1]
+			tag, err := strconv.Atoi(tagstr)
+			if err != nil {
+				panic("protobuf tag field not an integer: " + tagstr)
+			}
+
+			// Find the oneof field that this struct implements.
+			// Might take O(n^2) to process all of the oneofs, but who cares.
+			for _, of := range oneofFields {
+				if tptr.Implements(of.ityp) {
+					// We have found the corresponding interface for this struct.
+					// That lets us know where this struct should be stored
+					// when we encounter it during unmarshaling.
+					unmarshal := makeUnmarshalOneof(typ, of.ityp, baseUnmarshal)
+					u.setTag(tag, of.field, unmarshal, 0)
+				}
+			}
+		}
+	}
+
+	// Get extension ranges, if any.
+	fn = reflect.Zero(reflect.PtrTo(t)).MethodByName("ExtensionRangeArray")
+	if fn.IsValid() {
+		if !u.extensions.IsValid() && !u.oldExtensions.IsValid() {
+			panic("a message with extensions, but no extensions field in " + t.Name())
+		}
+		u.extensionRanges = fn.Call(nil)[0].Interface().([]ExtensionRange)
+	}
+
+	// Explicitly disallow tag 0. This will ensure we flag an error
+	// when decoding a buffer of all zeros. Without this code, we
+	// would decode and skip an all-zero buffer of even length.
+	// [0 0] is [tag=0/wiretype=varint varint-encoded-0].
+	u.setTag(0, zeroField, func(b []byte, f pointer, w int) ([]byte, error) {
+		return nil, fmt.Errorf("proto: %s: illegal tag 0 (wire type %d)", t, w)
+	}, 0)
+
+	// Set mask for required field check.
+	u.reqMask = uint64(1)<<uint(len(u.reqFields)) - 1
+
+	atomic.StoreInt32(&u.initialized, 1)
+}
+
+// setTag stores the unmarshal information for the given tag.
+// tag = tag # for field
+// field/unmarshal = unmarshal info for that field.
+// reqMask = if required, bitmask for field position in required field list. 0 otherwise.
+func (u *unmarshalInfo) setTag(tag int, field field, unmarshal unmarshaler, reqMask uint64) {
+	i := unmarshalFieldInfo{field: field, unmarshal: unmarshal, reqMask: reqMask}
+	n := u.typ.NumField()
+	if tag >= 0 && (tag < 16 || tag < 2*n) { // TODO: what are the right numbers here?
+		for len(u.dense) <= tag {
+			u.dense = append(u.dense, unmarshalFieldInfo{})
+		}
+		u.dense[tag] = i
+		return
+	}
+	if u.sparse == nil {
+		u.sparse = map[uint64]unmarshalFieldInfo{}
+	}
+	u.sparse[uint64(tag)] = i
+}
+
+// fieldUnmarshaler returns an unmarshaler for the given field.
+func fieldUnmarshaler(f *reflect.StructField) unmarshaler {
+	if f.Type.Kind() == reflect.Map {
+		return makeUnmarshalMap(f)
+	}
+	return typeUnmarshaler(f.Type, f.Tag.Get("protobuf"))
+}
+
+// typeUnmarshaler returns an unmarshaler for the given field type / field tag pair.
+func typeUnmarshaler(t reflect.Type, tags string) unmarshaler {
+	tagArray := strings.Split(tags, ",")
+	encoding := tagArray[0]
+	name := "unknown"
+	for _, tag := range tagArray[3:] {
+		if strings.HasPrefix(tag, "name=") {
+			name = tag[5:]
+		}
+	}
+
+	// Figure out packaging (pointer, slice, or both)
+	slice := false
+	pointer := false
+	if t.Kind() == reflect.Slice && t.Elem().Kind() != reflect.Uint8 {
+		slice = true
+		t = t.Elem()
+	}
+	if t.Kind() == reflect.Ptr {
+		pointer = true
+		t = t.Elem()
+	}
+
+	// We'll never have both pointer and slice for basic types.
+	if pointer && slice && t.Kind() != reflect.Struct {
+		panic("both pointer and slice for basic type in " + t.Name())
+	}
+
+	switch t.Kind() {
+	case reflect.Bool:
+		if pointer {
+			return unmarshalBoolPtr
+		}
+		if slice {
+			return unmarshalBoolSlice
+		}
+		return unmarshalBoolValue
+	case reflect.Int32:
+		switch encoding {
+		case "fixed32":
+			if pointer {
+				return unmarshalFixedS32Ptr
+			}
+			if slice {
+				return unmarshalFixedS32Slice
+			}
+			return unmarshalFixedS32Value
+		case "varint":
+			// this could be int32 or enum
+			if pointer {
+				return unmarshalInt32Ptr
+			}
+			if slice {
+				return unmarshalInt32Slice
+			}
+			return unmarshalInt32Value
+		case "zigzag32":
+			if pointer {
+				return unmarshalSint32Ptr
+			}
+			if slice {
+				return unmarshalSint32Slice
+			}
+			return unmarshalSint32Value
+		}
+	case reflect.Int64:
+		switch encoding {
+		case "fixed64":
+			if pointer {
+				return unmarshalFixedS64Ptr
+			}
+			if slice {
+				return unmarshalFixedS64Slice
+			}
+			return unmarshalFixedS64Value
+		case "varint":
+			if pointer {
+				return unmarshalInt64Ptr
+			}
+			if slice {
+				return unmarshalInt64Slice
+			}
+			return unmarshalInt64Value
+		case "zigzag64":
+			if pointer {
+				return unmarshalSint64Ptr
+			}
+			if slice {
+				return unmarshalSint64Slice
+			}
+			return unmarshalSint64Value
+		}
+	case reflect.Uint32:
+		switch encoding {
+		case "fixed32":
+			if pointer {
+				return unmarshalFixed32Ptr
+			}
+			if slice {
+				return unmarshalFixed32Slice
+			}
+			return unmarshalFixed32Value
+		case "varint":
+			if pointer {
+				return unmarshalUint32Ptr
+			}
+			if slice {
+				return unmarshalUint32Slice
+			}
+			return unmarshalUint32Value
+		}
+	case reflect.Uint64:
+		switch encoding {
+		case "fixed64":
+			if pointer {
+				return unmarshalFixed64Ptr
+			}
+			if slice {
+				return unmarshalFixed64Slice
+			}
+			return unmarshalFixed64Value
+		case "varint":
+			if pointer {
+				return unmarshalUint64Ptr
+			}
+			if slice {
+				return unmarshalUint64Slice
+			}
+			return unmarshalUint64Value
+		}
+	case reflect.Float32:
+		if pointer {
+			return unmarshalFloat32Ptr
+		}
+		if slice {
+			return unmarshalFloat32Slice
+		}
+		return unmarshalFloat32Value
+	case reflect.Float64:
+		if pointer {
+			return unmarshalFloat64Ptr
+		}
+		if slice {
+			return unmarshalFloat64Slice
+		}
+		return unmarshalFloat64Value
+	case reflect.Map:
+		panic("map type in typeUnmarshaler in " + t.Name())
+	case reflect.Slice:
+		if pointer {
+			panic("bad pointer in slice case in " + t.Name())
+		}
+		if slice {
+			return unmarshalBytesSlice
+		}
+		return unmarshalBytesValue
+	case reflect.String:
+		if pointer {
+			return unmarshalStringPtr
+		}
+		if slice {
+			return unmarshalStringSlice
+		}
+		return unmarshalStringValue
+	case reflect.Struct:
+		// message or group field
+		if !pointer {
+			panic(fmt.Sprintf("message/group field %s:%s without pointer", t, encoding))
+		}
+		switch encoding {
+		case "bytes":
+			if slice {
+				return makeUnmarshalMessageSlicePtr(getUnmarshalInfo(t), name)
+			}
+			return makeUnmarshalMessagePtr(getUnmarshalInfo(t), name)
+		case "group":
+			if slice {
+				return makeUnmarshalGroupSlicePtr(getUnmarshalInfo(t), name)
+			}
+			return makeUnmarshalGroupPtr(getUnmarshalInfo(t), name)
+		}
+	}
+	panic(fmt.Sprintf("unmarshaler not found type:%s encoding:%s", t, encoding))
+}
+
+// Below are all the unmarshalers for individual fields of various types.
+
+func unmarshalInt64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x)
+	*f.toInt64() = v
+	return b, nil
+}
+
+func unmarshalInt64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x)
+	*f.toInt64Ptr() = &v
+	return b, nil
+}
+
+func unmarshalInt64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := int64(x)
+			s := f.toInt64Slice()
+			*s = append(*s, v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x)
+	s := f.toInt64Slice()
+	*s = append(*s, v)
+	return b, nil
+}
+
+func unmarshalSint64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x>>1) ^ int64(x)<<63>>63
+	*f.toInt64() = v
+	return b, nil
+}
+
+func unmarshalSint64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x>>1) ^ int64(x)<<63>>63
+	*f.toInt64Ptr() = &v
+	return b, nil
+}
+
+func unmarshalSint64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := int64(x>>1) ^ int64(x)<<63>>63
+			s := f.toInt64Slice()
+			*s = append(*s, v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int64(x>>1) ^ int64(x)<<63>>63
+	s := f.toInt64Slice()
+	*s = append(*s, v)
+	return b, nil
+}
+
+func unmarshalUint64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint64(x)
+	*f.toUint64() = v
+	return b, nil
+}
+
+func unmarshalUint64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint64(x)
+	*f.toUint64Ptr() = &v
+	return b, nil
+}
+
+func unmarshalUint64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := uint64(x)
+			s := f.toUint64Slice()
+			*s = append(*s, v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint64(x)
+	s := f.toUint64Slice()
+	*s = append(*s, v)
+	return b, nil
+}
+
+func unmarshalInt32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x)
+	*f.toInt32() = v
+	return b, nil
+}
+
+func unmarshalInt32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x)
+	f.setInt32Ptr(v)
+	return b, nil
+}
+
+func unmarshalInt32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := int32(x)
+			f.appendInt32Slice(v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x)
+	f.appendInt32Slice(v)
+	return b, nil
+}
+
+func unmarshalSint32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x>>1) ^ int32(x)<<31>>31
+	*f.toInt32() = v
+	return b, nil
+}
+
+func unmarshalSint32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x>>1) ^ int32(x)<<31>>31
+	f.setInt32Ptr(v)
+	return b, nil
+}
+
+func unmarshalSint32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := int32(x>>1) ^ int32(x)<<31>>31
+			f.appendInt32Slice(v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := int32(x>>1) ^ int32(x)<<31>>31
+	f.appendInt32Slice(v)
+	return b, nil
+}
+
+func unmarshalUint32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint32(x)
+	*f.toUint32() = v
+	return b, nil
+}
+
+func unmarshalUint32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint32(x)
+	*f.toUint32Ptr() = &v
+	return b, nil
+}
+
+func unmarshalUint32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			b = b[n:]
+			v := uint32(x)
+			s := f.toUint32Slice()
+			*s = append(*s, v)
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	v := uint32(x)
+	s := f.toUint32Slice()
+	*s = append(*s, v)
+	return b, nil
+}
+
+func unmarshalFixed64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56
+	*f.toUint64() = v
+	return b[8:], nil
+}
+
+func unmarshalFixed64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56
+	*f.toUint64Ptr() = &v
+	return b[8:], nil
+}
+
+func unmarshalFixed64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 8 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56
+			s := f.toUint64Slice()
+			*s = append(*s, v)
+			b = b[8:]
+		}
+		return res, nil
+	}
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56
+	s := f.toUint64Slice()
+	*s = append(*s, v)
+	return b[8:], nil
+}
+
+func unmarshalFixedS64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int64(b[0]) | int64(b[1])<<8 | int64(b[2])<<16 | int64(b[3])<<24 | int64(b[4])<<32 | int64(b[5])<<40 | int64(b[6])<<48 | int64(b[7])<<56
+	*f.toInt64() = v
+	return b[8:], nil
+}
+
+func unmarshalFixedS64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int64(b[0]) | int64(b[1])<<8 | int64(b[2])<<16 | int64(b[3])<<24 | int64(b[4])<<32 | int64(b[5])<<40 | int64(b[6])<<48 | int64(b[7])<<56
+	*f.toInt64Ptr() = &v
+	return b[8:], nil
+}
+
+func unmarshalFixedS64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 8 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := int64(b[0]) | int64(b[1])<<8 | int64(b[2])<<16 | int64(b[3])<<24 | int64(b[4])<<32 | int64(b[5])<<40 | int64(b[6])<<48 | int64(b[7])<<56
+			s := f.toInt64Slice()
+			*s = append(*s, v)
+			b = b[8:]
+		}
+		return res, nil
+	}
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int64(b[0]) | int64(b[1])<<8 | int64(b[2])<<16 | int64(b[3])<<24 | int64(b[4])<<32 | int64(b[5])<<40 | int64(b[6])<<48 | int64(b[7])<<56
+	s := f.toInt64Slice()
+	*s = append(*s, v)
+	return b[8:], nil
+}
+
+func unmarshalFixed32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24
+	*f.toUint32() = v
+	return b[4:], nil
+}
+
+func unmarshalFixed32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24
+	*f.toUint32Ptr() = &v
+	return b[4:], nil
+}
+
+func unmarshalFixed32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 4 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24
+			s := f.toUint32Slice()
+			*s = append(*s, v)
+			b = b[4:]
+		}
+		return res, nil
+	}
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24
+	s := f.toUint32Slice()
+	*s = append(*s, v)
+	return b[4:], nil
+}
+
+func unmarshalFixedS32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int32(b[0]) | int32(b[1])<<8 | int32(b[2])<<16 | int32(b[3])<<24
+	*f.toInt32() = v
+	return b[4:], nil
+}
+
+func unmarshalFixedS32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int32(b[0]) | int32(b[1])<<8 | int32(b[2])<<16 | int32(b[3])<<24
+	f.setInt32Ptr(v)
+	return b[4:], nil
+}
+
+func unmarshalFixedS32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 4 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := int32(b[0]) | int32(b[1])<<8 | int32(b[2])<<16 | int32(b[3])<<24
+			f.appendInt32Slice(v)
+			b = b[4:]
+		}
+		return res, nil
+	}
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := int32(b[0]) | int32(b[1])<<8 | int32(b[2])<<16 | int32(b[3])<<24
+	f.appendInt32Slice(v)
+	return b[4:], nil
+}
+
+func unmarshalBoolValue(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	// Note: any length varint is allowed, even though any sane
+	// encoder will use one byte.
+	// See https://github.com/golang/protobuf/issues/76
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	// TODO: check if x>1? Tests seem to indicate no.
+	v := x != 0
+	*f.toBool() = v
+	return b[n:], nil
+}
+
+func unmarshalBoolPtr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := x != 0
+	*f.toBoolPtr() = &v
+	return b[n:], nil
+}
+
+func unmarshalBoolSlice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			x, n = decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := x != 0
+			s := f.toBoolSlice()
+			*s = append(*s, v)
+			b = b[n:]
+		}
+		return res, nil
+	}
+	if w != WireVarint {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := x != 0
+	s := f.toBoolSlice()
+	*s = append(*s, v)
+	return b[n:], nil
+}
+
+func unmarshalFloat64Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float64frombits(uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56)
+	*f.toFloat64() = v
+	return b[8:], nil
+}
+
+func unmarshalFloat64Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float64frombits(uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56)
+	*f.toFloat64Ptr() = &v
+	return b[8:], nil
+}
+
+func unmarshalFloat64Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 8 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := math.Float64frombits(uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56)
+			s := f.toFloat64Slice()
+			*s = append(*s, v)
+			b = b[8:]
+		}
+		return res, nil
+	}
+	if w != WireFixed64 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 8 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float64frombits(uint64(b[0]) | uint64(b[1])<<8 | uint64(b[2])<<16 | uint64(b[3])<<24 | uint64(b[4])<<32 | uint64(b[5])<<40 | uint64(b[6])<<48 | uint64(b[7])<<56)
+	s := f.toFloat64Slice()
+	*s = append(*s, v)
+	return b[8:], nil
+}
+
+func unmarshalFloat32Value(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float32frombits(uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24)
+	*f.toFloat32() = v
+	return b[4:], nil
+}
+
+func unmarshalFloat32Ptr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float32frombits(uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24)
+	*f.toFloat32Ptr() = &v
+	return b[4:], nil
+}
+
+func unmarshalFloat32Slice(b []byte, f pointer, w int) ([]byte, error) {
+	if w == WireBytes { // packed
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		res := b[x:]
+		b = b[:x]
+		for len(b) > 0 {
+			if len(b) < 4 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			v := math.Float32frombits(uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24)
+			s := f.toFloat32Slice()
+			*s = append(*s, v)
+			b = b[4:]
+		}
+		return res, nil
+	}
+	if w != WireFixed32 {
+		return b, errInternalBadWireType
+	}
+	if len(b) < 4 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := math.Float32frombits(uint32(b[0]) | uint32(b[1])<<8 | uint32(b[2])<<16 | uint32(b[3])<<24)
+	s := f.toFloat32Slice()
+	*s = append(*s, v)
+	return b[4:], nil
+}
+
+func unmarshalStringValue(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireBytes {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	if x > uint64(len(b)) {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := string(b[:x])
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	*f.toString() = v
+	return b[x:], nil
+}
+
+func unmarshalStringPtr(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireBytes {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	if x > uint64(len(b)) {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := string(b[:x])
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	*f.toStringPtr() = &v
+	return b[x:], nil
+}
+
+func unmarshalStringSlice(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireBytes {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	if x > uint64(len(b)) {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := string(b[:x])
+	if !utf8.ValidString(v) {
+		return nil, errInvalidUTF8
+	}
+	s := f.toStringSlice()
+	*s = append(*s, v)
+	return b[x:], nil
+}
+
+var emptyBuf [0]byte
+
+func unmarshalBytesValue(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireBytes {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	if x > uint64(len(b)) {
+		return nil, io.ErrUnexpectedEOF
+	}
+	// The use of append here is a trick which avoids the zeroing
+	// that would be required if we used a make/copy pair.
+	// We append to emptyBuf instead of nil because we want
+	// a non-nil result even when the length is 0.
+	v := append(emptyBuf[:], b[:x]...)
+	*f.toBytes() = v
+	return b[x:], nil
+}
+
+func unmarshalBytesSlice(b []byte, f pointer, w int) ([]byte, error) {
+	if w != WireBytes {
+		return b, errInternalBadWireType
+	}
+	x, n := decodeVarint(b)
+	if n == 0 {
+		return nil, io.ErrUnexpectedEOF
+	}
+	b = b[n:]
+	if x > uint64(len(b)) {
+		return nil, io.ErrUnexpectedEOF
+	}
+	v := append(emptyBuf[:], b[:x]...)
+	s := f.toBytesSlice()
+	*s = append(*s, v)
+	return b[x:], nil
+}
+
+func makeUnmarshalMessagePtr(sub *unmarshalInfo, name string) unmarshaler {
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		if w != WireBytes {
+			return b, errInternalBadWireType
+		}
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		// First read the message field to see if something is there.
+		// The semantics of multiple submessages are weird.  Instead of
+		// the last one winning (as it is for all other fields), multiple
+		// submessages are merged.
+		v := f.getPointer()
+		if v.isNil() {
+			v = valToPointer(reflect.New(sub.typ))
+			f.setPointer(v)
+		}
+		err := sub.unmarshal(v, b[:x])
+		if err != nil {
+			if r, ok := err.(*RequiredNotSetError); ok {
+				r.field = name + "." + r.field
+			} else {
+				return nil, err
+			}
+		}
+		return b[x:], err
+	}
+}
+
+func makeUnmarshalMessageSlicePtr(sub *unmarshalInfo, name string) unmarshaler {
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		if w != WireBytes {
+			return b, errInternalBadWireType
+		}
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		v := valToPointer(reflect.New(sub.typ))
+		err := sub.unmarshal(v, b[:x])
+		if err != nil {
+			if r, ok := err.(*RequiredNotSetError); ok {
+				r.field = name + "." + r.field
+			} else {
+				return nil, err
+			}
+		}
+		f.appendPointer(v)
+		return b[x:], err
+	}
+}
+
+func makeUnmarshalGroupPtr(sub *unmarshalInfo, name string) unmarshaler {
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		if w != WireStartGroup {
+			return b, errInternalBadWireType
+		}
+		x, y := findEndGroup(b)
+		if x < 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		v := f.getPointer()
+		if v.isNil() {
+			v = valToPointer(reflect.New(sub.typ))
+			f.setPointer(v)
+		}
+		err := sub.unmarshal(v, b[:x])
+		if err != nil {
+			if r, ok := err.(*RequiredNotSetError); ok {
+				r.field = name + "." + r.field
+			} else {
+				return nil, err
+			}
+		}
+		return b[y:], err
+	}
+}
+
+func makeUnmarshalGroupSlicePtr(sub *unmarshalInfo, name string) unmarshaler {
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		if w != WireStartGroup {
+			return b, errInternalBadWireType
+		}
+		x, y := findEndGroup(b)
+		if x < 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		v := valToPointer(reflect.New(sub.typ))
+		err := sub.unmarshal(v, b[:x])
+		if err != nil {
+			if r, ok := err.(*RequiredNotSetError); ok {
+				r.field = name + "." + r.field
+			} else {
+				return nil, err
+			}
+		}
+		f.appendPointer(v)
+		return b[y:], err
+	}
+}
+
+func makeUnmarshalMap(f *reflect.StructField) unmarshaler {
+	t := f.Type
+	kt := t.Key()
+	vt := t.Elem()
+	unmarshalKey := typeUnmarshaler(kt, f.Tag.Get("protobuf_key"))
+	unmarshalVal := typeUnmarshaler(vt, f.Tag.Get("protobuf_val"))
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		// The map entry is a submessage. Figure out how big it is.
+		if w != WireBytes {
+			return nil, fmt.Errorf("proto: bad wiretype for map field: got %d want %d", w, WireBytes)
+		}
+		x, n := decodeVarint(b)
+		if n == 0 {
+			return nil, io.ErrUnexpectedEOF
+		}
+		b = b[n:]
+		if x > uint64(len(b)) {
+			return nil, io.ErrUnexpectedEOF
+		}
+		r := b[x:] // unused data to return
+		b = b[:x]  // data for map entry
+
+		// Note: we could use #keys * #values ~= 200 functions
+		// to do map decoding without reflection. Probably not worth it.
+		// Maps will be somewhat slow. Oh well.
+
+		// Read key and value from data.
+		k := reflect.New(kt)
+		v := reflect.New(vt)
+		for len(b) > 0 {
+			x, n := decodeVarint(b)
+			if n == 0 {
+				return nil, io.ErrUnexpectedEOF
+			}
+			wire := int(x) & 7
+			b = b[n:]
+
+			var err error
+			switch x >> 3 {
+			case 1:
+				b, err = unmarshalKey(b, valToPointer(k), wire)
+			case 2:
+				b, err = unmarshalVal(b, valToPointer(v), wire)
+			default:
+				err = errInternalBadWireType // skip unknown tag
+			}
+
+			if err == nil {
+				continue
+			}
+			if err != errInternalBadWireType {
+				return nil, err
+			}
+
+			// Skip past unknown fields.
+			b, err = skipField(b, wire)
+			if err != nil {
+				return nil, err
+			}
+		}
+
+		// Get map, allocate if needed.
+		m := f.asPointerTo(t).Elem() // an addressable map[K]T
+		if m.IsNil() {
+			m.Set(reflect.MakeMap(t))
+		}
+
+		// Insert into map.
+		m.SetMapIndex(k.Elem(), v.Elem())
+
+		return r, nil
+	}
+}
+
+// makeUnmarshalOneof makes an unmarshaler for oneof fields.
+// for:
+// message Msg {
+//   oneof F {
+//     int64 X = 1;
+//     float64 Y = 2;
+//   }
+// }
+// typ is the type of the concrete entry for a oneof case (e.g. Msg_X).
+// ityp is the interface type of the oneof field (e.g. isMsg_F).
+// unmarshal is the unmarshaler for the base type of the oneof case (e.g. int64).
+// Note that this function will be called once for each case in the oneof.
+func makeUnmarshalOneof(typ, ityp reflect.Type, unmarshal unmarshaler) unmarshaler {
+	sf := typ.Field(0)
+	field0 := toField(&sf)
+	return func(b []byte, f pointer, w int) ([]byte, error) {
+		// Allocate holder for value.
+		v := reflect.New(typ)
+
+		// Unmarshal data into holder.
+		// We unmarshal into the first field of the holder object.
+		var err error
+		b, err = unmarshal(b, valToPointer(v).offset(field0), w)
+		if err != nil {
+			return nil, err
+		}
+
+		// Write pointer to holder into target field.
+		f.asPointerTo(ityp).Elem().Set(v)
+
+		return b, nil
+	}
+}
+
+// Error used by decode internally.
+var errInternalBadWireType = errors.New("proto: internal error: bad wiretype")
+
+// skipField skips past a field of type wire and returns the remaining bytes.
+func skipField(b []byte, wire int) ([]byte, error) {
+	switch wire {
+	case WireVarint:
+		_, k := decodeVarint(b)
+		if k == 0 {
+			return b, io.ErrUnexpectedEOF
+		}
+		b = b[k:]
+	case WireFixed32:
+		if len(b) < 4 {
+			return b, io.ErrUnexpectedEOF
+		}
+		b = b[4:]
+	case WireFixed64:
+		if len(b) < 8 {
+			return b, io.ErrUnexpectedEOF
+		}
+		b = b[8:]
+	case WireBytes:
+		m, k := decodeVarint(b)
+		if k == 0 || uint64(len(b)-k) < m {
+			return b, io.ErrUnexpectedEOF
+		}
+		b = b[uint64(k)+m:]
+	case WireStartGroup:
+		_, i := findEndGroup(b)
+		if i == -1 {
+			return b, io.ErrUnexpectedEOF
+		}
+		b = b[i:]
+	default:
+		return b, fmt.Errorf("proto: can't skip unknown wire type %d", wire)
+	}
+	return b, nil
+}
+
+// findEndGroup finds the index of the next EndGroup tag.
+// Groups may be nested, so the "next" EndGroup tag is the first
+// unpaired EndGroup.
+// findEndGroup returns the indexes of the start and end of the EndGroup tag.
+// Returns (-1,-1) if it can't find one.
+func findEndGroup(b []byte) (int, int) {
+	depth := 1
+	i := 0
+	for {
+		x, n := decodeVarint(b[i:])
+		if n == 0 {
+			return -1, -1
+		}
+		j := i
+		i += n
+		switch x & 7 {
+		case WireVarint:
+			_, k := decodeVarint(b[i:])
+			if k == 0 {
+				return -1, -1
+			}
+			i += k
+		case WireFixed32:
+			if len(b)-4 < i {
+				return -1, -1
+			}
+			i += 4
+		case WireFixed64:
+			if len(b)-8 < i {
+				return -1, -1
+			}
+			i += 8
+		case WireBytes:
+			m, k := decodeVarint(b[i:])
+			if k == 0 {
+				return -1, -1
+			}
+			i += k
+			if uint64(len(b)-i) < m {
+				return -1, -1
+			}
+			i += int(m)
+		case WireStartGroup:
+			depth++
+		case WireEndGroup:
+			depth--
+			if depth == 0 {
+				return j, i
+			}
+		default:
+			return -1, -1
+		}
+	}
+}
+
+// encodeVarint appends a varint-encoded integer to b and returns the result.
+func encodeVarint(b []byte, x uint64) []byte {
+	for x >= 1<<7 {
+		b = append(b, byte(x&0x7f|0x80))
+		x >>= 7
+	}
+	return append(b, byte(x))
+}
+
+// decodeVarint reads a varint-encoded integer from b.
+// Returns the decoded integer and the number of bytes read.
+// If there is an error, it returns 0,0.
+func decodeVarint(b []byte) (uint64, int) {
+	var x, y uint64
+	if len(b) <= 0 {
+		goto bad
+	}
+	x = uint64(b[0])
+	if x < 0x80 {
+		return x, 1
+	}
+	x -= 0x80
+
+	if len(b) <= 1 {
+		goto bad
+	}
+	y = uint64(b[1])
+	x += y << 7
+	if y < 0x80 {
+		return x, 2
+	}
+	x -= 0x80 << 7
+
+	if len(b) <= 2 {
+		goto bad
+	}
+	y = uint64(b[2])
+	x += y << 14
+	if y < 0x80 {
+		return x, 3
+	}
+	x -= 0x80 << 14
+
+	if len(b) <= 3 {
+		goto bad
+	}
+	y = uint64(b[3])
+	x += y << 21
+	if y < 0x80 {
+		return x, 4
+	}
+	x -= 0x80 << 21
+
+	if len(b) <= 4 {
+		goto bad
+	}
+	y = uint64(b[4])
+	x += y << 28
+	if y < 0x80 {
+		return x, 5
+	}
+	x -= 0x80 << 28
+
+	if len(b) <= 5 {
+		goto bad
+	}
+	y = uint64(b[5])
+	x += y << 35
+	if y < 0x80 {
+		return x, 6
+	}
+	x -= 0x80 << 35
+
+	if len(b) <= 6 {
+		goto bad
+	}
+	y = uint64(b[6])
+	x += y << 42
+	if y < 0x80 {
+		return x, 7
+	}
+	x -= 0x80 << 42
+
+	if len(b) <= 7 {
+		goto bad
+	}
+	y = uint64(b[7])
+	x += y << 49
+	if y < 0x80 {
+		return x, 8
+	}
+	x -= 0x80 << 49
+
+	if len(b) <= 8 {
+		goto bad
+	}
+	y = uint64(b[8])
+	x += y << 56
+	if y < 0x80 {
+		return x, 9
+	}
+	x -= 0x80 << 56
+
+	if len(b) <= 9 {
+		goto bad
+	}
+	y = uint64(b[9])
+	x += y << 63
+	if y < 2 {
+		return x, 10
+	}
+
+bad:
+	return 0, 0
+}
diff --git a/vendor/github.com/golang/protobuf/proto/text.go b/vendor/github.com/golang/protobuf/proto/text.go
index 965876bf03..2205fdaadf 100644
--- a/vendor/github.com/golang/protobuf/proto/text.go
+++ b/vendor/github.com/golang/protobuf/proto/text.go
@@ -50,7 +50,6 @@ import (
 var (
 	newline         = []byte("\n")
 	spaces          = []byte("                                        ")
-	gtNewline       = []byte(">\n")
 	endBraceNewline = []byte("}\n")
 	backslashN      = []byte{'\\', 'n'}
 	backslashR      = []byte{'\\', 'r'}
@@ -170,11 +169,6 @@ func writeName(w *textWriter, props *Properties) error {
 	return nil
 }
 
-// raw is the interface satisfied by RawMessage.
-type raw interface {
-	Bytes() []byte
-}
-
 func requiresQuotes(u string) bool {
 	// When type URL contains any characters except [0-9A-Za-z./\-]*, it must be quoted.
 	for _, ch := range u {
@@ -269,6 +263,10 @@ func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
 		props := sprops.Prop[i]
 		name := st.Field(i).Name
 
+		if name == "XXX_NoUnkeyedLiteral" {
+			continue
+		}
+
 		if strings.HasPrefix(name, "XXX_") {
 			// There are two XXX_ fields:
 			//   XXX_unrecognized []byte
@@ -436,12 +434,6 @@ func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
 				return err
 			}
 		}
-		if b, ok := fv.Interface().(raw); ok {
-			if err := writeRaw(w, b.Bytes()); err != nil {
-				return err
-			}
-			continue
-		}
 
 		// Enums have a String method, so writeAny will work fine.
 		if err := tm.writeAny(w, fv, props); err != nil {
@@ -455,7 +447,7 @@ func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
 
 	// Extensions (the XXX_extensions field).
 	pv := sv.Addr()
-	if _, ok := extendable(pv.Interface()); ok {
+	if _, err := extendable(pv.Interface()); err == nil {
 		if err := tm.writeExtensions(w, pv); err != nil {
 			return err
 		}
@@ -464,27 +456,6 @@ func (tm *TextMarshaler) writeStruct(w *textWriter, sv reflect.Value) error {
 	return nil
 }
 
-// writeRaw writes an uninterpreted raw message.
-func writeRaw(w *textWriter, b []byte) error {
-	if err := w.WriteByte('<'); err != nil {
-		return err
-	}
-	if !w.compact {
-		if err := w.WriteByte('\n'); err != nil {
-			return err
-		}
-	}
-	w.indent()
-	if err := writeUnknownStruct(w, b); err != nil {
-		return err
-	}
-	w.unindent()
-	if err := w.WriteByte('>'); err != nil {
-		return err
-	}
-	return nil
-}
-
 // writeAny writes an arbitrary field.
 func (tm *TextMarshaler) writeAny(w *textWriter, v reflect.Value, props *Properties) error {
 	v = reflect.Indirect(v)
@@ -535,6 +506,19 @@ func (tm *TextMarshaler) writeAny(w *textWriter, v reflect.Value, props *Propert
 			}
 		}
 		w.indent()
+		if v.CanAddr() {
+			// Calling v.Interface on a struct causes the reflect package to
+			// copy the entire struct. This is racy with the new Marshaler
+			// since we atomically update the XXX_sizecache.
+			//
+			// Thus, we retrieve a pointer to the struct if possible to avoid
+			// a race since v.Interface on the pointer doesn't copy the struct.
+			//
+			// If v is not addressable, then we are not worried about a race
+			// since it implies that the binary Marshaler cannot possibly be
+			// mutating this value.
+			v = v.Addr()
+		}
 		if etm, ok := v.Interface().(encoding.TextMarshaler); ok {
 			text, err := etm.MarshalText()
 			if err != nil {
@@ -543,8 +527,13 @@ func (tm *TextMarshaler) writeAny(w *textWriter, v reflect.Value, props *Propert
 			if _, err = w.Write(text); err != nil {
 				return err
 			}
-		} else if err := tm.writeStruct(w, v); err != nil {
-			return err
+		} else {
+			if v.Kind() == reflect.Ptr {
+				v = v.Elem()
+			}
+			if err := tm.writeStruct(w, v); err != nil {
+				return err
+			}
 		}
 		w.unindent()
 		if err := w.WriteByte(ket); err != nil {
diff --git a/vendor/github.com/golang/protobuf/proto/text_parser.go b/vendor/github.com/golang/protobuf/proto/text_parser.go
index 5e14513f28..0685bae36d 100644
--- a/vendor/github.com/golang/protobuf/proto/text_parser.go
+++ b/vendor/github.com/golang/protobuf/proto/text_parser.go
@@ -206,7 +206,6 @@ func (p *textParser) advance() {
 
 var (
 	errBadUTF8 = errors.New("proto: bad UTF-8")
-	errBadHex  = errors.New("proto: bad hexadecimal")
 )
 
 func unquoteC(s string, quote rune) (string, error) {
@@ -277,60 +276,47 @@ func unescape(s string) (ch string, tail string, err error) {
 		return "?", s, nil // trigraph workaround
 	case '\'', '"', '\\':
 		return string(r), s, nil
-	case '0', '1', '2', '3', '4', '5', '6', '7', 'x', 'X':
+	case '0', '1', '2', '3', '4', '5', '6', '7':
 		if len(s) < 2 {
 			return "", "", fmt.Errorf(`\%c requires 2 following digits`, r)
 		}
-		base := 8
-		ss := s[:2]
+		ss := string(r) + s[:2]
 		s = s[2:]
-		if r == 'x' || r == 'X' {
-			base = 16
-		} else {
-			ss = string(r) + ss
-		}
-		i, err := strconv.ParseUint(ss, base, 8)
+		i, err := strconv.ParseUint(ss, 8, 8)
 		if err != nil {
-			return "", "", err
+			return "", "", fmt.Errorf(`\%s contains non-octal digits`, ss)
 		}
 		return string([]byte{byte(i)}), s, nil
-	case 'u', 'U':
-		n := 4
-		if r == 'U' {
+	case 'x', 'X', 'u', 'U':
+		var n int
+		switch r {
+		case 'x', 'X':
+			n = 2
+		case 'u':
+			n = 4
+		case 'U':
 			n = 8
 		}
 		if len(s) < n {
-			return "", "", fmt.Errorf(`\%c requires %d digits`, r, n)
-		}
-
-		bs := make([]byte, n/2)
-		for i := 0; i < n; i += 2 {
-			a, ok1 := unhex(s[i])
-			b, ok2 := unhex(s[i+1])
-			if !ok1 || !ok2 {
-				return "", "", errBadHex
-			}
-			bs[i/2] = a<<4 | b
+			return "", "", fmt.Errorf(`\%c requires %d following digits`, r, n)
 		}
+		ss := s[:n]
 		s = s[n:]
-		return string(bs), s, nil
+		i, err := strconv.ParseUint(ss, 16, 64)
+		if err != nil {
+			return "", "", fmt.Errorf(`\%c%s contains non-hexadecimal digits`, r, ss)
+		}
+		if r == 'x' || r == 'X' {
+			return string([]byte{byte(i)}), s, nil
+		}
+		if i > utf8.MaxRune {
+			return "", "", fmt.Errorf(`\%c%s is not a valid Unicode code point`, r, ss)
+		}
+		return string(i), s, nil
 	}
 	return "", "", fmt.Errorf(`unknown escape \%c`, r)
 }
 
-// Adapted from src/pkg/strconv/quote.go.
-func unhex(b byte) (v byte, ok bool) {
-	switch {
-	case '0' <= b && b <= '9':
-		return b - '0', true
-	case 'a' <= b && b <= 'f':
-		return b - 'a' + 10, true
-	case 'A' <= b && b <= 'F':
-		return b - 'A' + 10, true
-	}
-	return 0, false
-}
-
 // Back off the parser by one token. Can only be done between calls to next().
 // It makes the next advance() a no-op.
 func (p *textParser) back() { p.backed = true }
@@ -728,6 +714,9 @@ func (p *textParser) consumeExtName() (string, error) {
 		if tok.err != nil {
 			return "", p.errorf("unrecognized type_url or extension name: %s", tok.err)
 		}
+		if p.done && tok.value != "]" {
+			return "", p.errorf("unclosed type_url or extension name")
+		}
 	}
 	return strings.Join(parts, ""), nil
 }
@@ -865,7 +854,7 @@ func (p *textParser) readAny(v reflect.Value, props *Properties) error {
 		return p.readStruct(fv, terminator)
 	case reflect.Uint32:
 		if x, err := strconv.ParseUint(tok.value, 0, 32); err == nil {
-			fv.SetUint(x)
+			fv.SetUint(uint64(x))
 			return nil
 		}
 	case reflect.Uint64:
@@ -883,13 +872,9 @@ func (p *textParser) readAny(v reflect.Value, props *Properties) error {
 // UnmarshalText returns *RequiredNotSetError.
 func UnmarshalText(s string, pb Message) error {
 	if um, ok := pb.(encoding.TextUnmarshaler); ok {
-		err := um.UnmarshalText([]byte(s))
-		return err
+		return um.UnmarshalText([]byte(s))
 	}
 	pb.Reset()
 	v := reflect.ValueOf(pb)
-	if pe := newTextParser(s).readStruct(v.Elem(), ""); pe != nil {
-		return pe
-	}
-	return nil
+	return newTextParser(s).readStruct(v.Elem(), "")
 }
diff --git a/vendor/github.com/golang/protobuf/protoc-gen-go/descriptor/descriptor.pb.go b/vendor/github.com/golang/protobuf/protoc-gen-go/descriptor/descriptor.pb.go
index c6a91bcab9..e855b1f5c4 100644
--- a/vendor/github.com/golang/protobuf/protoc-gen-go/descriptor/descriptor.pb.go
+++ b/vendor/github.com/golang/protobuf/protoc-gen-go/descriptor/descriptor.pb.go
@@ -1,36 +1,7 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: google/protobuf/descriptor.proto
 
-/*
-Package descriptor is a generated protocol buffer package.
-
-It is generated from these files:
-	google/protobuf/descriptor.proto
-
-It has these top-level messages:
-	FileDescriptorSet
-	FileDescriptorProto
-	DescriptorProto
-	ExtensionRangeOptions
-	FieldDescriptorProto
-	OneofDescriptorProto
-	EnumDescriptorProto
-	EnumValueDescriptorProto
-	ServiceDescriptorProto
-	MethodDescriptorProto
-	FileOptions
-	MessageOptions
-	FieldOptions
-	OneofOptions
-	EnumOptions
-	EnumValueOptions
-	ServiceOptions
-	MethodOptions
-	UninterpretedOption
-	SourceCodeInfo
-	GeneratedCodeInfo
-*/
-package descriptor
+package descriptor // import "github.com/golang/protobuf/protoc-gen-go/descriptor"
 
 import proto "github.com/golang/protobuf/proto"
 import fmt "fmt"
@@ -138,7 +109,9 @@ func (x *FieldDescriptorProto_Type) UnmarshalJSON(data []byte) error {
 	*x = FieldDescriptorProto_Type(value)
 	return nil
 }
-func (FieldDescriptorProto_Type) EnumDescriptor() ([]byte, []int) { return fileDescriptor0, []int{4, 0} }
+func (FieldDescriptorProto_Type) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{4, 0}
+}
 
 type FieldDescriptorProto_Label int32
 
@@ -177,7 +150,7 @@ func (x *FieldDescriptorProto_Label) UnmarshalJSON(data []byte) error {
 	return nil
 }
 func (FieldDescriptorProto_Label) EnumDescriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{4, 1}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{4, 1}
 }
 
 // Generated classes can be optimized for speed or code size.
@@ -217,7 +190,9 @@ func (x *FileOptions_OptimizeMode) UnmarshalJSON(data []byte) error {
 	*x = FileOptions_OptimizeMode(value)
 	return nil
 }
-func (FileOptions_OptimizeMode) EnumDescriptor() ([]byte, []int) { return fileDescriptor0, []int{10, 0} }
+func (FileOptions_OptimizeMode) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{10, 0}
+}
 
 type FieldOptions_CType int32
 
@@ -255,7 +230,9 @@ func (x *FieldOptions_CType) UnmarshalJSON(data []byte) error {
 	*x = FieldOptions_CType(value)
 	return nil
 }
-func (FieldOptions_CType) EnumDescriptor() ([]byte, []int) { return fileDescriptor0, []int{12, 0} }
+func (FieldOptions_CType) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{12, 0}
+}
 
 type FieldOptions_JSType int32
 
@@ -295,7 +272,9 @@ func (x *FieldOptions_JSType) UnmarshalJSON(data []byte) error {
 	*x = FieldOptions_JSType(value)
 	return nil
 }
-func (FieldOptions_JSType) EnumDescriptor() ([]byte, []int) { return fileDescriptor0, []int{12, 1} }
+func (FieldOptions_JSType) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{12, 1}
+}
 
 // Is this method side-effect-free (or safe in HTTP parlance), or idempotent,
 // or neither? HTTP based RPC implementation may choose GET verb for safe
@@ -336,20 +315,41 @@ func (x *MethodOptions_IdempotencyLevel) UnmarshalJSON(data []byte) error {
 	return nil
 }
 func (MethodOptions_IdempotencyLevel) EnumDescriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{17, 0}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{17, 0}
 }
 
 // The protocol compiler can output a FileDescriptorSet containing the .proto
 // files it parses.
 type FileDescriptorSet struct {
-	File             []*FileDescriptorProto `protobuf:"bytes,1,rep,name=file" json:"file,omitempty"`
-	XXX_unrecognized []byte                 `json:"-"`
+	File                 []*FileDescriptorProto `protobuf:"bytes,1,rep,name=file" json:"file,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}               `json:"-"`
+	XXX_unrecognized     []byte                 `json:"-"`
+	XXX_sizecache        int32                  `json:"-"`
+}
+
+func (m *FileDescriptorSet) Reset()         { *m = FileDescriptorSet{} }
+func (m *FileDescriptorSet) String() string { return proto.CompactTextString(m) }
+func (*FileDescriptorSet) ProtoMessage()    {}
+func (*FileDescriptorSet) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{0}
+}
+func (m *FileDescriptorSet) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_FileDescriptorSet.Unmarshal(m, b)
+}
+func (m *FileDescriptorSet) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_FileDescriptorSet.Marshal(b, m, deterministic)
+}
+func (dst *FileDescriptorSet) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_FileDescriptorSet.Merge(dst, src)
+}
+func (m *FileDescriptorSet) XXX_Size() int {
+	return xxx_messageInfo_FileDescriptorSet.Size(m)
+}
+func (m *FileDescriptorSet) XXX_DiscardUnknown() {
+	xxx_messageInfo_FileDescriptorSet.DiscardUnknown(m)
 }
 
-func (m *FileDescriptorSet) Reset()                    { *m = FileDescriptorSet{} }
-func (m *FileDescriptorSet) String() string            { return proto.CompactTextString(m) }
-func (*FileDescriptorSet) ProtoMessage()               {}
-func (*FileDescriptorSet) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{0} }
+var xxx_messageInfo_FileDescriptorSet proto.InternalMessageInfo
 
 func (m *FileDescriptorSet) GetFile() []*FileDescriptorProto {
 	if m != nil {
@@ -382,14 +382,35 @@ type FileDescriptorProto struct {
 	SourceCodeInfo *SourceCodeInfo `protobuf:"bytes,9,opt,name=source_code_info,json=sourceCodeInfo" json:"source_code_info,omitempty"`
 	// The syntax of the proto file.
 	// The supported values are "proto2" and "proto3".
-	Syntax           *string `protobuf:"bytes,12,opt,name=syntax" json:"syntax,omitempty"`
-	XXX_unrecognized []byte  `json:"-"`
+	Syntax               *string  `protobuf:"bytes,12,opt,name=syntax" json:"syntax,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *FileDescriptorProto) Reset()         { *m = FileDescriptorProto{} }
+func (m *FileDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*FileDescriptorProto) ProtoMessage()    {}
+func (*FileDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{1}
+}
+func (m *FileDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_FileDescriptorProto.Unmarshal(m, b)
+}
+func (m *FileDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_FileDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *FileDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_FileDescriptorProto.Merge(dst, src)
+}
+func (m *FileDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_FileDescriptorProto.Size(m)
+}
+func (m *FileDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_FileDescriptorProto.DiscardUnknown(m)
 }
 
-func (m *FileDescriptorProto) Reset()                    { *m = FileDescriptorProto{} }
-func (m *FileDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*FileDescriptorProto) ProtoMessage()               {}
-func (*FileDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{1} }
+var xxx_messageInfo_FileDescriptorProto proto.InternalMessageInfo
 
 func (m *FileDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -488,14 +509,35 @@ type DescriptorProto struct {
 	ReservedRange  []*DescriptorProto_ReservedRange  `protobuf:"bytes,9,rep,name=reserved_range,json=reservedRange" json:"reserved_range,omitempty"`
 	// Reserved field names, which may not be used by fields in the same message.
 	// A given name may only be reserved once.
-	ReservedName     []string `protobuf:"bytes,10,rep,name=reserved_name,json=reservedName" json:"reserved_name,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
+	ReservedName         []string `protobuf:"bytes,10,rep,name=reserved_name,json=reservedName" json:"reserved_name,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *DescriptorProto) Reset()         { *m = DescriptorProto{} }
+func (m *DescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*DescriptorProto) ProtoMessage()    {}
+func (*DescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{2}
+}
+func (m *DescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_DescriptorProto.Unmarshal(m, b)
+}
+func (m *DescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_DescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *DescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_DescriptorProto.Merge(dst, src)
+}
+func (m *DescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_DescriptorProto.Size(m)
+}
+func (m *DescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_DescriptorProto.DiscardUnknown(m)
 }
 
-func (m *DescriptorProto) Reset()                    { *m = DescriptorProto{} }
-func (m *DescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*DescriptorProto) ProtoMessage()               {}
-func (*DescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{2} }
+var xxx_messageInfo_DescriptorProto proto.InternalMessageInfo
 
 func (m *DescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -568,19 +610,38 @@ func (m *DescriptorProto) GetReservedName() []string {
 }
 
 type DescriptorProto_ExtensionRange struct {
-	Start            *int32                 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
-	End              *int32                 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
-	Options          *ExtensionRangeOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte                 `json:"-"`
+	Start                *int32                 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End                  *int32                 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	Options              *ExtensionRangeOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}               `json:"-"`
+	XXX_unrecognized     []byte                 `json:"-"`
+	XXX_sizecache        int32                  `json:"-"`
 }
 
 func (m *DescriptorProto_ExtensionRange) Reset()         { *m = DescriptorProto_ExtensionRange{} }
 func (m *DescriptorProto_ExtensionRange) String() string { return proto.CompactTextString(m) }
 func (*DescriptorProto_ExtensionRange) ProtoMessage()    {}
 func (*DescriptorProto_ExtensionRange) Descriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{2, 0}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{2, 0}
+}
+func (m *DescriptorProto_ExtensionRange) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_DescriptorProto_ExtensionRange.Unmarshal(m, b)
+}
+func (m *DescriptorProto_ExtensionRange) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_DescriptorProto_ExtensionRange.Marshal(b, m, deterministic)
+}
+func (dst *DescriptorProto_ExtensionRange) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_DescriptorProto_ExtensionRange.Merge(dst, src)
+}
+func (m *DescriptorProto_ExtensionRange) XXX_Size() int {
+	return xxx_messageInfo_DescriptorProto_ExtensionRange.Size(m)
+}
+func (m *DescriptorProto_ExtensionRange) XXX_DiscardUnknown() {
+	xxx_messageInfo_DescriptorProto_ExtensionRange.DiscardUnknown(m)
 }
 
+var xxx_messageInfo_DescriptorProto_ExtensionRange proto.InternalMessageInfo
+
 func (m *DescriptorProto_ExtensionRange) GetStart() int32 {
 	if m != nil && m.Start != nil {
 		return *m.Start
@@ -606,17 +667,36 @@ func (m *DescriptorProto_ExtensionRange) GetOptions() *ExtensionRangeOptions {
 // fields or extension ranges in the same message. Reserved ranges may
 // not overlap.
 type DescriptorProto_ReservedRange struct {
-	Start            *int32 `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
-	End              *int32 `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
-	XXX_unrecognized []byte `json:"-"`
+	Start                *int32   `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End                  *int32   `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
 func (m *DescriptorProto_ReservedRange) Reset()         { *m = DescriptorProto_ReservedRange{} }
 func (m *DescriptorProto_ReservedRange) String() string { return proto.CompactTextString(m) }
 func (*DescriptorProto_ReservedRange) ProtoMessage()    {}
 func (*DescriptorProto_ReservedRange) Descriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{2, 1}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{2, 1}
+}
+func (m *DescriptorProto_ReservedRange) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_DescriptorProto_ReservedRange.Unmarshal(m, b)
+}
+func (m *DescriptorProto_ReservedRange) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_DescriptorProto_ReservedRange.Marshal(b, m, deterministic)
+}
+func (dst *DescriptorProto_ReservedRange) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_DescriptorProto_ReservedRange.Merge(dst, src)
+}
+func (m *DescriptorProto_ReservedRange) XXX_Size() int {
+	return xxx_messageInfo_DescriptorProto_ReservedRange.Size(m)
 }
+func (m *DescriptorProto_ReservedRange) XXX_DiscardUnknown() {
+	xxx_messageInfo_DescriptorProto_ReservedRange.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_DescriptorProto_ReservedRange proto.InternalMessageInfo
 
 func (m *DescriptorProto_ReservedRange) GetStart() int32 {
 	if m != nil && m.Start != nil {
@@ -635,22 +715,43 @@ func (m *DescriptorProto_ReservedRange) GetEnd() int32 {
 type ExtensionRangeOptions struct {
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *ExtensionRangeOptions) Reset()                    { *m = ExtensionRangeOptions{} }
-func (m *ExtensionRangeOptions) String() string            { return proto.CompactTextString(m) }
-func (*ExtensionRangeOptions) ProtoMessage()               {}
-func (*ExtensionRangeOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{3} }
+func (m *ExtensionRangeOptions) Reset()         { *m = ExtensionRangeOptions{} }
+func (m *ExtensionRangeOptions) String() string { return proto.CompactTextString(m) }
+func (*ExtensionRangeOptions) ProtoMessage()    {}
+func (*ExtensionRangeOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{3}
+}
 
 var extRange_ExtensionRangeOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*ExtensionRangeOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_ExtensionRangeOptions
 }
+func (m *ExtensionRangeOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_ExtensionRangeOptions.Unmarshal(m, b)
+}
+func (m *ExtensionRangeOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_ExtensionRangeOptions.Marshal(b, m, deterministic)
+}
+func (dst *ExtensionRangeOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_ExtensionRangeOptions.Merge(dst, src)
+}
+func (m *ExtensionRangeOptions) XXX_Size() int {
+	return xxx_messageInfo_ExtensionRangeOptions.Size(m)
+}
+func (m *ExtensionRangeOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_ExtensionRangeOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_ExtensionRangeOptions proto.InternalMessageInfo
 
 func (m *ExtensionRangeOptions) GetUninterpretedOption() []*UninterpretedOption {
 	if m != nil {
@@ -689,15 +790,36 @@ type FieldDescriptorProto struct {
 	// user has set a "json_name" option on this field, that option's value
 	// will be used. Otherwise, it's deduced from the field's name by converting
 	// it to camelCase.
-	JsonName         *string       `protobuf:"bytes,10,opt,name=json_name,json=jsonName" json:"json_name,omitempty"`
-	Options          *FieldOptions `protobuf:"bytes,8,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte        `json:"-"`
+	JsonName             *string       `protobuf:"bytes,10,opt,name=json_name,json=jsonName" json:"json_name,omitempty"`
+	Options              *FieldOptions `protobuf:"bytes,8,opt,name=options" json:"options,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}      `json:"-"`
+	XXX_unrecognized     []byte        `json:"-"`
+	XXX_sizecache        int32         `json:"-"`
 }
 
-func (m *FieldDescriptorProto) Reset()                    { *m = FieldDescriptorProto{} }
-func (m *FieldDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*FieldDescriptorProto) ProtoMessage()               {}
-func (*FieldDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{4} }
+func (m *FieldDescriptorProto) Reset()         { *m = FieldDescriptorProto{} }
+func (m *FieldDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*FieldDescriptorProto) ProtoMessage()    {}
+func (*FieldDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{4}
+}
+func (m *FieldDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_FieldDescriptorProto.Unmarshal(m, b)
+}
+func (m *FieldDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_FieldDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *FieldDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_FieldDescriptorProto.Merge(dst, src)
+}
+func (m *FieldDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_FieldDescriptorProto.Size(m)
+}
+func (m *FieldDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_FieldDescriptorProto.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_FieldDescriptorProto proto.InternalMessageInfo
 
 func (m *FieldDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -771,15 +893,36 @@ func (m *FieldDescriptorProto) GetOptions() *FieldOptions {
 
 // Describes a oneof.
 type OneofDescriptorProto struct {
-	Name             *string       `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Options          *OneofOptions `protobuf:"bytes,2,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte        `json:"-"`
+	Name                 *string       `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Options              *OneofOptions `protobuf:"bytes,2,opt,name=options" json:"options,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}      `json:"-"`
+	XXX_unrecognized     []byte        `json:"-"`
+	XXX_sizecache        int32         `json:"-"`
+}
+
+func (m *OneofDescriptorProto) Reset()         { *m = OneofDescriptorProto{} }
+func (m *OneofDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*OneofDescriptorProto) ProtoMessage()    {}
+func (*OneofDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{5}
+}
+func (m *OneofDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_OneofDescriptorProto.Unmarshal(m, b)
+}
+func (m *OneofDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_OneofDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *OneofDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_OneofDescriptorProto.Merge(dst, src)
+}
+func (m *OneofDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_OneofDescriptorProto.Size(m)
+}
+func (m *OneofDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_OneofDescriptorProto.DiscardUnknown(m)
 }
 
-func (m *OneofDescriptorProto) Reset()                    { *m = OneofDescriptorProto{} }
-func (m *OneofDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*OneofDescriptorProto) ProtoMessage()               {}
-func (*OneofDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{5} }
+var xxx_messageInfo_OneofDescriptorProto proto.InternalMessageInfo
 
 func (m *OneofDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -797,16 +940,44 @@ func (m *OneofDescriptorProto) GetOptions() *OneofOptions {
 
 // Describes an enum type.
 type EnumDescriptorProto struct {
-	Name             *string                     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Value            []*EnumValueDescriptorProto `protobuf:"bytes,2,rep,name=value" json:"value,omitempty"`
-	Options          *EnumOptions                `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte                      `json:"-"`
+	Name    *string                     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Value   []*EnumValueDescriptorProto `protobuf:"bytes,2,rep,name=value" json:"value,omitempty"`
+	Options *EnumOptions                `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	// Range of reserved numeric values. Reserved numeric values may not be used
+	// by enum values in the same enum declaration. Reserved ranges may not
+	// overlap.
+	ReservedRange []*EnumDescriptorProto_EnumReservedRange `protobuf:"bytes,4,rep,name=reserved_range,json=reservedRange" json:"reserved_range,omitempty"`
+	// Reserved enum value names, which may not be reused. A given name may only
+	// be reserved once.
+	ReservedName         []string `protobuf:"bytes,5,rep,name=reserved_name,json=reservedName" json:"reserved_name,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *EnumDescriptorProto) Reset()         { *m = EnumDescriptorProto{} }
+func (m *EnumDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*EnumDescriptorProto) ProtoMessage()    {}
+func (*EnumDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{6}
+}
+func (m *EnumDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_EnumDescriptorProto.Unmarshal(m, b)
+}
+func (m *EnumDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_EnumDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *EnumDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_EnumDescriptorProto.Merge(dst, src)
+}
+func (m *EnumDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_EnumDescriptorProto.Size(m)
+}
+func (m *EnumDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_EnumDescriptorProto.DiscardUnknown(m)
 }
 
-func (m *EnumDescriptorProto) Reset()                    { *m = EnumDescriptorProto{} }
-func (m *EnumDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*EnumDescriptorProto) ProtoMessage()               {}
-func (*EnumDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{6} }
+var xxx_messageInfo_EnumDescriptorProto proto.InternalMessageInfo
 
 func (m *EnumDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -829,18 +1000,105 @@ func (m *EnumDescriptorProto) GetOptions() *EnumOptions {
 	return nil
 }
 
+func (m *EnumDescriptorProto) GetReservedRange() []*EnumDescriptorProto_EnumReservedRange {
+	if m != nil {
+		return m.ReservedRange
+	}
+	return nil
+}
+
+func (m *EnumDescriptorProto) GetReservedName() []string {
+	if m != nil {
+		return m.ReservedName
+	}
+	return nil
+}
+
+// Range of reserved numeric values. Reserved values may not be used by
+// entries in the same enum. Reserved ranges may not overlap.
+//
+// Note that this is distinct from DescriptorProto.ReservedRange in that it
+// is inclusive such that it can appropriately represent the entire int32
+// domain.
+type EnumDescriptorProto_EnumReservedRange struct {
+	Start                *int32   `protobuf:"varint,1,opt,name=start" json:"start,omitempty"`
+	End                  *int32   `protobuf:"varint,2,opt,name=end" json:"end,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *EnumDescriptorProto_EnumReservedRange) Reset()         { *m = EnumDescriptorProto_EnumReservedRange{} }
+func (m *EnumDescriptorProto_EnumReservedRange) String() string { return proto.CompactTextString(m) }
+func (*EnumDescriptorProto_EnumReservedRange) ProtoMessage()    {}
+func (*EnumDescriptorProto_EnumReservedRange) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{6, 0}
+}
+func (m *EnumDescriptorProto_EnumReservedRange) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_EnumDescriptorProto_EnumReservedRange.Unmarshal(m, b)
+}
+func (m *EnumDescriptorProto_EnumReservedRange) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_EnumDescriptorProto_EnumReservedRange.Marshal(b, m, deterministic)
+}
+func (dst *EnumDescriptorProto_EnumReservedRange) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_EnumDescriptorProto_EnumReservedRange.Merge(dst, src)
+}
+func (m *EnumDescriptorProto_EnumReservedRange) XXX_Size() int {
+	return xxx_messageInfo_EnumDescriptorProto_EnumReservedRange.Size(m)
+}
+func (m *EnumDescriptorProto_EnumReservedRange) XXX_DiscardUnknown() {
+	xxx_messageInfo_EnumDescriptorProto_EnumReservedRange.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_EnumDescriptorProto_EnumReservedRange proto.InternalMessageInfo
+
+func (m *EnumDescriptorProto_EnumReservedRange) GetStart() int32 {
+	if m != nil && m.Start != nil {
+		return *m.Start
+	}
+	return 0
+}
+
+func (m *EnumDescriptorProto_EnumReservedRange) GetEnd() int32 {
+	if m != nil && m.End != nil {
+		return *m.End
+	}
+	return 0
+}
+
 // Describes a value within an enum.
 type EnumValueDescriptorProto struct {
-	Name             *string           `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Number           *int32            `protobuf:"varint,2,opt,name=number" json:"number,omitempty"`
-	Options          *EnumValueOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte            `json:"-"`
+	Name                 *string           `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Number               *int32            `protobuf:"varint,2,opt,name=number" json:"number,omitempty"`
+	Options              *EnumValueOptions `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}          `json:"-"`
+	XXX_unrecognized     []byte            `json:"-"`
+	XXX_sizecache        int32             `json:"-"`
 }
 
-func (m *EnumValueDescriptorProto) Reset()                    { *m = EnumValueDescriptorProto{} }
-func (m *EnumValueDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*EnumValueDescriptorProto) ProtoMessage()               {}
-func (*EnumValueDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{7} }
+func (m *EnumValueDescriptorProto) Reset()         { *m = EnumValueDescriptorProto{} }
+func (m *EnumValueDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*EnumValueDescriptorProto) ProtoMessage()    {}
+func (*EnumValueDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{7}
+}
+func (m *EnumValueDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_EnumValueDescriptorProto.Unmarshal(m, b)
+}
+func (m *EnumValueDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_EnumValueDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *EnumValueDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_EnumValueDescriptorProto.Merge(dst, src)
+}
+func (m *EnumValueDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_EnumValueDescriptorProto.Size(m)
+}
+func (m *EnumValueDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_EnumValueDescriptorProto.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_EnumValueDescriptorProto proto.InternalMessageInfo
 
 func (m *EnumValueDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -865,16 +1123,37 @@ func (m *EnumValueDescriptorProto) GetOptions() *EnumValueOptions {
 
 // Describes a service.
 type ServiceDescriptorProto struct {
-	Name             *string                  `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
-	Method           []*MethodDescriptorProto `protobuf:"bytes,2,rep,name=method" json:"method,omitempty"`
-	Options          *ServiceOptions          `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
-	XXX_unrecognized []byte                   `json:"-"`
+	Name                 *string                  `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Method               []*MethodDescriptorProto `protobuf:"bytes,2,rep,name=method" json:"method,omitempty"`
+	Options              *ServiceOptions          `protobuf:"bytes,3,opt,name=options" json:"options,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}                 `json:"-"`
+	XXX_unrecognized     []byte                   `json:"-"`
+	XXX_sizecache        int32                    `json:"-"`
 }
 
-func (m *ServiceDescriptorProto) Reset()                    { *m = ServiceDescriptorProto{} }
-func (m *ServiceDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*ServiceDescriptorProto) ProtoMessage()               {}
-func (*ServiceDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{8} }
+func (m *ServiceDescriptorProto) Reset()         { *m = ServiceDescriptorProto{} }
+func (m *ServiceDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*ServiceDescriptorProto) ProtoMessage()    {}
+func (*ServiceDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{8}
+}
+func (m *ServiceDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_ServiceDescriptorProto.Unmarshal(m, b)
+}
+func (m *ServiceDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_ServiceDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *ServiceDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_ServiceDescriptorProto.Merge(dst, src)
+}
+func (m *ServiceDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_ServiceDescriptorProto.Size(m)
+}
+func (m *ServiceDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_ServiceDescriptorProto.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_ServiceDescriptorProto proto.InternalMessageInfo
 
 func (m *ServiceDescriptorProto) GetName() string {
 	if m != nil && m.Name != nil {
@@ -908,14 +1187,35 @@ type MethodDescriptorProto struct {
 	// Identifies if client streams multiple client messages
 	ClientStreaming *bool `protobuf:"varint,5,opt,name=client_streaming,json=clientStreaming,def=0" json:"client_streaming,omitempty"`
 	// Identifies if server streams multiple server messages
-	ServerStreaming  *bool  `protobuf:"varint,6,opt,name=server_streaming,json=serverStreaming,def=0" json:"server_streaming,omitempty"`
-	XXX_unrecognized []byte `json:"-"`
+	ServerStreaming      *bool    `protobuf:"varint,6,opt,name=server_streaming,json=serverStreaming,def=0" json:"server_streaming,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *MethodDescriptorProto) Reset()         { *m = MethodDescriptorProto{} }
+func (m *MethodDescriptorProto) String() string { return proto.CompactTextString(m) }
+func (*MethodDescriptorProto) ProtoMessage()    {}
+func (*MethodDescriptorProto) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{9}
+}
+func (m *MethodDescriptorProto) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_MethodDescriptorProto.Unmarshal(m, b)
+}
+func (m *MethodDescriptorProto) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_MethodDescriptorProto.Marshal(b, m, deterministic)
+}
+func (dst *MethodDescriptorProto) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_MethodDescriptorProto.Merge(dst, src)
+}
+func (m *MethodDescriptorProto) XXX_Size() int {
+	return xxx_messageInfo_MethodDescriptorProto.Size(m)
+}
+func (m *MethodDescriptorProto) XXX_DiscardUnknown() {
+	xxx_messageInfo_MethodDescriptorProto.DiscardUnknown(m)
 }
 
-func (m *MethodDescriptorProto) Reset()                    { *m = MethodDescriptorProto{} }
-func (m *MethodDescriptorProto) String() string            { return proto.CompactTextString(m) }
-func (*MethodDescriptorProto) ProtoMessage()               {}
-func (*MethodDescriptorProto) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{9} }
+var xxx_messageInfo_MethodDescriptorProto proto.InternalMessageInfo
 
 const Default_MethodDescriptorProto_ClientStreaming bool = false
 const Default_MethodDescriptorProto_ServerStreaming bool = false
@@ -982,7 +1282,7 @@ type FileOptions struct {
 	// top-level extensions defined in the file.
 	JavaMultipleFiles *bool `protobuf:"varint,10,opt,name=java_multiple_files,json=javaMultipleFiles,def=0" json:"java_multiple_files,omitempty"`
 	// This option does nothing.
-	JavaGenerateEqualsAndHash *bool `protobuf:"varint,20,opt,name=java_generate_equals_and_hash,json=javaGenerateEqualsAndHash" json:"java_generate_equals_and_hash,omitempty"`
+	JavaGenerateEqualsAndHash *bool `protobuf:"varint,20,opt,name=java_generate_equals_and_hash,json=javaGenerateEqualsAndHash" json:"java_generate_equals_and_hash,omitempty"` // Deprecated: Do not use.
 	// If set true, then the Java2 code generator will generate code that
 	// throws an exception whenever an attempt is made to assign a non-UTF-8
 	// byte sequence to a string field.
@@ -1036,24 +1336,46 @@ type FileOptions struct {
 	// is empty. When this option is empty, the package name will be used for
 	// determining the namespace.
 	PhpNamespace *string `protobuf:"bytes,41,opt,name=php_namespace,json=phpNamespace" json:"php_namespace,omitempty"`
-	// The parser stores options it doesn't recognize here. See above.
+	// The parser stores options it doesn't recognize here.
+	// See the documentation for the "Options" section above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *FileOptions) Reset()                    { *m = FileOptions{} }
-func (m *FileOptions) String() string            { return proto.CompactTextString(m) }
-func (*FileOptions) ProtoMessage()               {}
-func (*FileOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{10} }
+func (m *FileOptions) Reset()         { *m = FileOptions{} }
+func (m *FileOptions) String() string { return proto.CompactTextString(m) }
+func (*FileOptions) ProtoMessage()    {}
+func (*FileOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{10}
+}
 
 var extRange_FileOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*FileOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_FileOptions
 }
+func (m *FileOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_FileOptions.Unmarshal(m, b)
+}
+func (m *FileOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_FileOptions.Marshal(b, m, deterministic)
+}
+func (dst *FileOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_FileOptions.Merge(dst, src)
+}
+func (m *FileOptions) XXX_Size() int {
+	return xxx_messageInfo_FileOptions.Size(m)
+}
+func (m *FileOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_FileOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_FileOptions proto.InternalMessageInfo
 
 const Default_FileOptions_JavaMultipleFiles bool = false
 const Default_FileOptions_JavaStringCheckUtf8 bool = false
@@ -1086,6 +1408,7 @@ func (m *FileOptions) GetJavaMultipleFiles() bool {
 	return Default_FileOptions_JavaMultipleFiles
 }
 
+// Deprecated: Do not use.
 func (m *FileOptions) GetJavaGenerateEqualsAndHash() bool {
 	if m != nil && m.JavaGenerateEqualsAndHash != nil {
 		return *m.JavaGenerateEqualsAndHash
@@ -1251,22 +1574,43 @@ type MessageOptions struct {
 	MapEntry *bool `protobuf:"varint,7,opt,name=map_entry,json=mapEntry" json:"map_entry,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *MessageOptions) Reset()                    { *m = MessageOptions{} }
-func (m *MessageOptions) String() string            { return proto.CompactTextString(m) }
-func (*MessageOptions) ProtoMessage()               {}
-func (*MessageOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{11} }
+func (m *MessageOptions) Reset()         { *m = MessageOptions{} }
+func (m *MessageOptions) String() string { return proto.CompactTextString(m) }
+func (*MessageOptions) ProtoMessage()    {}
+func (*MessageOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{11}
+}
 
 var extRange_MessageOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*MessageOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_MessageOptions
 }
+func (m *MessageOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_MessageOptions.Unmarshal(m, b)
+}
+func (m *MessageOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_MessageOptions.Marshal(b, m, deterministic)
+}
+func (dst *MessageOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_MessageOptions.Merge(dst, src)
+}
+func (m *MessageOptions) XXX_Size() int {
+	return xxx_messageInfo_MessageOptions.Size(m)
+}
+func (m *MessageOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_MessageOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_MessageOptions proto.InternalMessageInfo
 
 const Default_MessageOptions_MessageSetWireFormat bool = false
 const Default_MessageOptions_NoStandardDescriptorAccessor bool = false
@@ -1369,22 +1713,43 @@ type FieldOptions struct {
 	Weak *bool `protobuf:"varint,10,opt,name=weak,def=0" json:"weak,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *FieldOptions) Reset()                    { *m = FieldOptions{} }
-func (m *FieldOptions) String() string            { return proto.CompactTextString(m) }
-func (*FieldOptions) ProtoMessage()               {}
-func (*FieldOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{12} }
+func (m *FieldOptions) Reset()         { *m = FieldOptions{} }
+func (m *FieldOptions) String() string { return proto.CompactTextString(m) }
+func (*FieldOptions) ProtoMessage()    {}
+func (*FieldOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{12}
+}
 
 var extRange_FieldOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*FieldOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_FieldOptions
 }
+func (m *FieldOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_FieldOptions.Unmarshal(m, b)
+}
+func (m *FieldOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_FieldOptions.Marshal(b, m, deterministic)
+}
+func (dst *FieldOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_FieldOptions.Merge(dst, src)
+}
+func (m *FieldOptions) XXX_Size() int {
+	return xxx_messageInfo_FieldOptions.Size(m)
+}
+func (m *FieldOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_FieldOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_FieldOptions proto.InternalMessageInfo
 
 const Default_FieldOptions_Ctype FieldOptions_CType = FieldOptions_STRING
 const Default_FieldOptions_Jstype FieldOptions_JSType = FieldOptions_JS_NORMAL
@@ -1444,22 +1809,43 @@ func (m *FieldOptions) GetUninterpretedOption() []*UninterpretedOption {
 type OneofOptions struct {
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *OneofOptions) Reset()                    { *m = OneofOptions{} }
-func (m *OneofOptions) String() string            { return proto.CompactTextString(m) }
-func (*OneofOptions) ProtoMessage()               {}
-func (*OneofOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{13} }
+func (m *OneofOptions) Reset()         { *m = OneofOptions{} }
+func (m *OneofOptions) String() string { return proto.CompactTextString(m) }
+func (*OneofOptions) ProtoMessage()    {}
+func (*OneofOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{13}
+}
 
 var extRange_OneofOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*OneofOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_OneofOptions
 }
+func (m *OneofOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_OneofOptions.Unmarshal(m, b)
+}
+func (m *OneofOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_OneofOptions.Marshal(b, m, deterministic)
+}
+func (dst *OneofOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_OneofOptions.Merge(dst, src)
+}
+func (m *OneofOptions) XXX_Size() int {
+	return xxx_messageInfo_OneofOptions.Size(m)
+}
+func (m *OneofOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_OneofOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_OneofOptions proto.InternalMessageInfo
 
 func (m *OneofOptions) GetUninterpretedOption() []*UninterpretedOption {
 	if m != nil {
@@ -1479,22 +1865,43 @@ type EnumOptions struct {
 	Deprecated *bool `protobuf:"varint,3,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *EnumOptions) Reset()                    { *m = EnumOptions{} }
-func (m *EnumOptions) String() string            { return proto.CompactTextString(m) }
-func (*EnumOptions) ProtoMessage()               {}
-func (*EnumOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{14} }
+func (m *EnumOptions) Reset()         { *m = EnumOptions{} }
+func (m *EnumOptions) String() string { return proto.CompactTextString(m) }
+func (*EnumOptions) ProtoMessage()    {}
+func (*EnumOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{14}
+}
 
 var extRange_EnumOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*EnumOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_EnumOptions
 }
+func (m *EnumOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_EnumOptions.Unmarshal(m, b)
+}
+func (m *EnumOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_EnumOptions.Marshal(b, m, deterministic)
+}
+func (dst *EnumOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_EnumOptions.Merge(dst, src)
+}
+func (m *EnumOptions) XXX_Size() int {
+	return xxx_messageInfo_EnumOptions.Size(m)
+}
+func (m *EnumOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_EnumOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_EnumOptions proto.InternalMessageInfo
 
 const Default_EnumOptions_Deprecated bool = false
 
@@ -1527,22 +1934,43 @@ type EnumValueOptions struct {
 	Deprecated *bool `protobuf:"varint,1,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *EnumValueOptions) Reset()                    { *m = EnumValueOptions{} }
-func (m *EnumValueOptions) String() string            { return proto.CompactTextString(m) }
-func (*EnumValueOptions) ProtoMessage()               {}
-func (*EnumValueOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{15} }
+func (m *EnumValueOptions) Reset()         { *m = EnumValueOptions{} }
+func (m *EnumValueOptions) String() string { return proto.CompactTextString(m) }
+func (*EnumValueOptions) ProtoMessage()    {}
+func (*EnumValueOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{15}
+}
 
 var extRange_EnumValueOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*EnumValueOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_EnumValueOptions
 }
+func (m *EnumValueOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_EnumValueOptions.Unmarshal(m, b)
+}
+func (m *EnumValueOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_EnumValueOptions.Marshal(b, m, deterministic)
+}
+func (dst *EnumValueOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_EnumValueOptions.Merge(dst, src)
+}
+func (m *EnumValueOptions) XXX_Size() int {
+	return xxx_messageInfo_EnumValueOptions.Size(m)
+}
+func (m *EnumValueOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_EnumValueOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_EnumValueOptions proto.InternalMessageInfo
 
 const Default_EnumValueOptions_Deprecated bool = false
 
@@ -1568,22 +1996,43 @@ type ServiceOptions struct {
 	Deprecated *bool `protobuf:"varint,33,opt,name=deprecated,def=0" json:"deprecated,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *ServiceOptions) Reset()                    { *m = ServiceOptions{} }
-func (m *ServiceOptions) String() string            { return proto.CompactTextString(m) }
-func (*ServiceOptions) ProtoMessage()               {}
-func (*ServiceOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{16} }
+func (m *ServiceOptions) Reset()         { *m = ServiceOptions{} }
+func (m *ServiceOptions) String() string { return proto.CompactTextString(m) }
+func (*ServiceOptions) ProtoMessage()    {}
+func (*ServiceOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{16}
+}
 
 var extRange_ServiceOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*ServiceOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_ServiceOptions
 }
+func (m *ServiceOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_ServiceOptions.Unmarshal(m, b)
+}
+func (m *ServiceOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_ServiceOptions.Marshal(b, m, deterministic)
+}
+func (dst *ServiceOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_ServiceOptions.Merge(dst, src)
+}
+func (m *ServiceOptions) XXX_Size() int {
+	return xxx_messageInfo_ServiceOptions.Size(m)
+}
+func (m *ServiceOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_ServiceOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_ServiceOptions proto.InternalMessageInfo
 
 const Default_ServiceOptions_Deprecated bool = false
 
@@ -1610,22 +2059,43 @@ type MethodOptions struct {
 	IdempotencyLevel *MethodOptions_IdempotencyLevel `protobuf:"varint,34,opt,name=idempotency_level,json=idempotencyLevel,enum=google.protobuf.MethodOptions_IdempotencyLevel,def=0" json:"idempotency_level,omitempty"`
 	// The parser stores options it doesn't recognize here. See above.
 	UninterpretedOption          []*UninterpretedOption `protobuf:"bytes,999,rep,name=uninterpreted_option,json=uninterpretedOption" json:"uninterpreted_option,omitempty"`
+	XXX_NoUnkeyedLiteral         struct{}               `json:"-"`
 	proto.XXX_InternalExtensions `json:"-"`
 	XXX_unrecognized             []byte `json:"-"`
+	XXX_sizecache                int32  `json:"-"`
 }
 
-func (m *MethodOptions) Reset()                    { *m = MethodOptions{} }
-func (m *MethodOptions) String() string            { return proto.CompactTextString(m) }
-func (*MethodOptions) ProtoMessage()               {}
-func (*MethodOptions) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{17} }
+func (m *MethodOptions) Reset()         { *m = MethodOptions{} }
+func (m *MethodOptions) String() string { return proto.CompactTextString(m) }
+func (*MethodOptions) ProtoMessage()    {}
+func (*MethodOptions) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{17}
+}
 
 var extRange_MethodOptions = []proto.ExtensionRange{
-	{1000, 536870911},
+	{Start: 1000, End: 536870911},
 }
 
 func (*MethodOptions) ExtensionRangeArray() []proto.ExtensionRange {
 	return extRange_MethodOptions
 }
+func (m *MethodOptions) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_MethodOptions.Unmarshal(m, b)
+}
+func (m *MethodOptions) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_MethodOptions.Marshal(b, m, deterministic)
+}
+func (dst *MethodOptions) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_MethodOptions.Merge(dst, src)
+}
+func (m *MethodOptions) XXX_Size() int {
+	return xxx_messageInfo_MethodOptions.Size(m)
+}
+func (m *MethodOptions) XXX_DiscardUnknown() {
+	xxx_messageInfo_MethodOptions.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_MethodOptions proto.InternalMessageInfo
 
 const Default_MethodOptions_Deprecated bool = false
 const Default_MethodOptions_IdempotencyLevel MethodOptions_IdempotencyLevel = MethodOptions_IDEMPOTENCY_UNKNOWN
@@ -1661,19 +2131,40 @@ type UninterpretedOption struct {
 	Name []*UninterpretedOption_NamePart `protobuf:"bytes,2,rep,name=name" json:"name,omitempty"`
 	// The value of the uninterpreted option, in whatever type the tokenizer
 	// identified it as during parsing. Exactly one of these should be set.
-	IdentifierValue  *string  `protobuf:"bytes,3,opt,name=identifier_value,json=identifierValue" json:"identifier_value,omitempty"`
-	PositiveIntValue *uint64  `protobuf:"varint,4,opt,name=positive_int_value,json=positiveIntValue" json:"positive_int_value,omitempty"`
-	NegativeIntValue *int64   `protobuf:"varint,5,opt,name=negative_int_value,json=negativeIntValue" json:"negative_int_value,omitempty"`
-	DoubleValue      *float64 `protobuf:"fixed64,6,opt,name=double_value,json=doubleValue" json:"double_value,omitempty"`
-	StringValue      []byte   `protobuf:"bytes,7,opt,name=string_value,json=stringValue" json:"string_value,omitempty"`
-	AggregateValue   *string  `protobuf:"bytes,8,opt,name=aggregate_value,json=aggregateValue" json:"aggregate_value,omitempty"`
-	XXX_unrecognized []byte   `json:"-"`
+	IdentifierValue      *string  `protobuf:"bytes,3,opt,name=identifier_value,json=identifierValue" json:"identifier_value,omitempty"`
+	PositiveIntValue     *uint64  `protobuf:"varint,4,opt,name=positive_int_value,json=positiveIntValue" json:"positive_int_value,omitempty"`
+	NegativeIntValue     *int64   `protobuf:"varint,5,opt,name=negative_int_value,json=negativeIntValue" json:"negative_int_value,omitempty"`
+	DoubleValue          *float64 `protobuf:"fixed64,6,opt,name=double_value,json=doubleValue" json:"double_value,omitempty"`
+	StringValue          []byte   `protobuf:"bytes,7,opt,name=string_value,json=stringValue" json:"string_value,omitempty"`
+	AggregateValue       *string  `protobuf:"bytes,8,opt,name=aggregate_value,json=aggregateValue" json:"aggregate_value,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
-func (m *UninterpretedOption) Reset()                    { *m = UninterpretedOption{} }
-func (m *UninterpretedOption) String() string            { return proto.CompactTextString(m) }
-func (*UninterpretedOption) ProtoMessage()               {}
-func (*UninterpretedOption) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{18} }
+func (m *UninterpretedOption) Reset()         { *m = UninterpretedOption{} }
+func (m *UninterpretedOption) String() string { return proto.CompactTextString(m) }
+func (*UninterpretedOption) ProtoMessage()    {}
+func (*UninterpretedOption) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{18}
+}
+func (m *UninterpretedOption) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_UninterpretedOption.Unmarshal(m, b)
+}
+func (m *UninterpretedOption) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_UninterpretedOption.Marshal(b, m, deterministic)
+}
+func (dst *UninterpretedOption) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_UninterpretedOption.Merge(dst, src)
+}
+func (m *UninterpretedOption) XXX_Size() int {
+	return xxx_messageInfo_UninterpretedOption.Size(m)
+}
+func (m *UninterpretedOption) XXX_DiscardUnknown() {
+	xxx_messageInfo_UninterpretedOption.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_UninterpretedOption proto.InternalMessageInfo
 
 func (m *UninterpretedOption) GetName() []*UninterpretedOption_NamePart {
 	if m != nil {
@@ -1730,18 +2221,37 @@ func (m *UninterpretedOption) GetAggregateValue() string {
 // E.g.,{ ["foo", false], ["bar.baz", true], ["qux", false] } represents
 // "foo.(bar.baz).qux".
 type UninterpretedOption_NamePart struct {
-	NamePart         *string `protobuf:"bytes,1,req,name=name_part,json=namePart" json:"name_part,omitempty"`
-	IsExtension      *bool   `protobuf:"varint,2,req,name=is_extension,json=isExtension" json:"is_extension,omitempty"`
-	XXX_unrecognized []byte  `json:"-"`
+	NamePart             *string  `protobuf:"bytes,1,req,name=name_part,json=namePart" json:"name_part,omitempty"`
+	IsExtension          *bool    `protobuf:"varint,2,req,name=is_extension,json=isExtension" json:"is_extension,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
 func (m *UninterpretedOption_NamePart) Reset()         { *m = UninterpretedOption_NamePart{} }
 func (m *UninterpretedOption_NamePart) String() string { return proto.CompactTextString(m) }
 func (*UninterpretedOption_NamePart) ProtoMessage()    {}
 func (*UninterpretedOption_NamePart) Descriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{18, 0}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{18, 0}
+}
+func (m *UninterpretedOption_NamePart) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_UninterpretedOption_NamePart.Unmarshal(m, b)
+}
+func (m *UninterpretedOption_NamePart) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_UninterpretedOption_NamePart.Marshal(b, m, deterministic)
+}
+func (dst *UninterpretedOption_NamePart) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_UninterpretedOption_NamePart.Merge(dst, src)
+}
+func (m *UninterpretedOption_NamePart) XXX_Size() int {
+	return xxx_messageInfo_UninterpretedOption_NamePart.Size(m)
+}
+func (m *UninterpretedOption_NamePart) XXX_DiscardUnknown() {
+	xxx_messageInfo_UninterpretedOption_NamePart.DiscardUnknown(m)
 }
 
+var xxx_messageInfo_UninterpretedOption_NamePart proto.InternalMessageInfo
+
 func (m *UninterpretedOption_NamePart) GetNamePart() string {
 	if m != nil && m.NamePart != nil {
 		return *m.NamePart
@@ -1802,14 +2312,35 @@ type SourceCodeInfo struct {
 	// - Code which tries to interpret locations should probably be designed to
 	//   ignore those that it doesn't understand, as more types of locations could
 	//   be recorded in the future.
-	Location         []*SourceCodeInfo_Location `protobuf:"bytes,1,rep,name=location" json:"location,omitempty"`
-	XXX_unrecognized []byte                     `json:"-"`
+	Location             []*SourceCodeInfo_Location `protobuf:"bytes,1,rep,name=location" json:"location,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}                   `json:"-"`
+	XXX_unrecognized     []byte                     `json:"-"`
+	XXX_sizecache        int32                      `json:"-"`
+}
+
+func (m *SourceCodeInfo) Reset()         { *m = SourceCodeInfo{} }
+func (m *SourceCodeInfo) String() string { return proto.CompactTextString(m) }
+func (*SourceCodeInfo) ProtoMessage()    {}
+func (*SourceCodeInfo) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{19}
+}
+func (m *SourceCodeInfo) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_SourceCodeInfo.Unmarshal(m, b)
+}
+func (m *SourceCodeInfo) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_SourceCodeInfo.Marshal(b, m, deterministic)
+}
+func (dst *SourceCodeInfo) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_SourceCodeInfo.Merge(dst, src)
+}
+func (m *SourceCodeInfo) XXX_Size() int {
+	return xxx_messageInfo_SourceCodeInfo.Size(m)
+}
+func (m *SourceCodeInfo) XXX_DiscardUnknown() {
+	xxx_messageInfo_SourceCodeInfo.DiscardUnknown(m)
 }
 
-func (m *SourceCodeInfo) Reset()                    { *m = SourceCodeInfo{} }
-func (m *SourceCodeInfo) String() string            { return proto.CompactTextString(m) }
-func (*SourceCodeInfo) ProtoMessage()               {}
-func (*SourceCodeInfo) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{19} }
+var xxx_messageInfo_SourceCodeInfo proto.InternalMessageInfo
 
 func (m *SourceCodeInfo) GetLocation() []*SourceCodeInfo_Location {
 	if m != nil {
@@ -1899,13 +2430,34 @@ type SourceCodeInfo_Location struct {
 	LeadingComments         *string  `protobuf:"bytes,3,opt,name=leading_comments,json=leadingComments" json:"leading_comments,omitempty"`
 	TrailingComments        *string  `protobuf:"bytes,4,opt,name=trailing_comments,json=trailingComments" json:"trailing_comments,omitempty"`
 	LeadingDetachedComments []string `protobuf:"bytes,6,rep,name=leading_detached_comments,json=leadingDetachedComments" json:"leading_detached_comments,omitempty"`
+	XXX_NoUnkeyedLiteral    struct{} `json:"-"`
 	XXX_unrecognized        []byte   `json:"-"`
+	XXX_sizecache           int32    `json:"-"`
+}
+
+func (m *SourceCodeInfo_Location) Reset()         { *m = SourceCodeInfo_Location{} }
+func (m *SourceCodeInfo_Location) String() string { return proto.CompactTextString(m) }
+func (*SourceCodeInfo_Location) ProtoMessage()    {}
+func (*SourceCodeInfo_Location) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{19, 0}
+}
+func (m *SourceCodeInfo_Location) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_SourceCodeInfo_Location.Unmarshal(m, b)
+}
+func (m *SourceCodeInfo_Location) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_SourceCodeInfo_Location.Marshal(b, m, deterministic)
+}
+func (dst *SourceCodeInfo_Location) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_SourceCodeInfo_Location.Merge(dst, src)
+}
+func (m *SourceCodeInfo_Location) XXX_Size() int {
+	return xxx_messageInfo_SourceCodeInfo_Location.Size(m)
+}
+func (m *SourceCodeInfo_Location) XXX_DiscardUnknown() {
+	xxx_messageInfo_SourceCodeInfo_Location.DiscardUnknown(m)
 }
 
-func (m *SourceCodeInfo_Location) Reset()                    { *m = SourceCodeInfo_Location{} }
-func (m *SourceCodeInfo_Location) String() string            { return proto.CompactTextString(m) }
-func (*SourceCodeInfo_Location) ProtoMessage()               {}
-func (*SourceCodeInfo_Location) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{19, 0} }
+var xxx_messageInfo_SourceCodeInfo_Location proto.InternalMessageInfo
 
 func (m *SourceCodeInfo_Location) GetPath() []int32 {
 	if m != nil {
@@ -1948,14 +2500,35 @@ func (m *SourceCodeInfo_Location) GetLeadingDetachedComments() []string {
 type GeneratedCodeInfo struct {
 	// An Annotation connects some span of text in generated code to an element
 	// of its generating .proto file.
-	Annotation       []*GeneratedCodeInfo_Annotation `protobuf:"bytes,1,rep,name=annotation" json:"annotation,omitempty"`
-	XXX_unrecognized []byte                          `json:"-"`
+	Annotation           []*GeneratedCodeInfo_Annotation `protobuf:"bytes,1,rep,name=annotation" json:"annotation,omitempty"`
+	XXX_NoUnkeyedLiteral struct{}                        `json:"-"`
+	XXX_unrecognized     []byte                          `json:"-"`
+	XXX_sizecache        int32                           `json:"-"`
 }
 
-func (m *GeneratedCodeInfo) Reset()                    { *m = GeneratedCodeInfo{} }
-func (m *GeneratedCodeInfo) String() string            { return proto.CompactTextString(m) }
-func (*GeneratedCodeInfo) ProtoMessage()               {}
-func (*GeneratedCodeInfo) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{20} }
+func (m *GeneratedCodeInfo) Reset()         { *m = GeneratedCodeInfo{} }
+func (m *GeneratedCodeInfo) String() string { return proto.CompactTextString(m) }
+func (*GeneratedCodeInfo) ProtoMessage()    {}
+func (*GeneratedCodeInfo) Descriptor() ([]byte, []int) {
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{20}
+}
+func (m *GeneratedCodeInfo) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_GeneratedCodeInfo.Unmarshal(m, b)
+}
+func (m *GeneratedCodeInfo) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_GeneratedCodeInfo.Marshal(b, m, deterministic)
+}
+func (dst *GeneratedCodeInfo) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_GeneratedCodeInfo.Merge(dst, src)
+}
+func (m *GeneratedCodeInfo) XXX_Size() int {
+	return xxx_messageInfo_GeneratedCodeInfo.Size(m)
+}
+func (m *GeneratedCodeInfo) XXX_DiscardUnknown() {
+	xxx_messageInfo_GeneratedCodeInfo.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_GeneratedCodeInfo proto.InternalMessageInfo
 
 func (m *GeneratedCodeInfo) GetAnnotation() []*GeneratedCodeInfo_Annotation {
 	if m != nil {
@@ -1976,17 +2549,36 @@ type GeneratedCodeInfo_Annotation struct {
 	// Identifies the ending offset in bytes in the generated code that
 	// relates to the identified offset. The end offset should be one past
 	// the last relevant byte (so the length of the text = end - begin).
-	End              *int32 `protobuf:"varint,4,opt,name=end" json:"end,omitempty"`
-	XXX_unrecognized []byte `json:"-"`
+	End                  *int32   `protobuf:"varint,4,opt,name=end" json:"end,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
 func (m *GeneratedCodeInfo_Annotation) Reset()         { *m = GeneratedCodeInfo_Annotation{} }
 func (m *GeneratedCodeInfo_Annotation) String() string { return proto.CompactTextString(m) }
 func (*GeneratedCodeInfo_Annotation) ProtoMessage()    {}
 func (*GeneratedCodeInfo_Annotation) Descriptor() ([]byte, []int) {
-	return fileDescriptor0, []int{20, 0}
+	return fileDescriptor_descriptor_4df4cb5f42392df6, []int{20, 0}
+}
+func (m *GeneratedCodeInfo_Annotation) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_GeneratedCodeInfo_Annotation.Unmarshal(m, b)
+}
+func (m *GeneratedCodeInfo_Annotation) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_GeneratedCodeInfo_Annotation.Marshal(b, m, deterministic)
+}
+func (dst *GeneratedCodeInfo_Annotation) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_GeneratedCodeInfo_Annotation.Merge(dst, src)
+}
+func (m *GeneratedCodeInfo_Annotation) XXX_Size() int {
+	return xxx_messageInfo_GeneratedCodeInfo_Annotation.Size(m)
+}
+func (m *GeneratedCodeInfo_Annotation) XXX_DiscardUnknown() {
+	xxx_messageInfo_GeneratedCodeInfo_Annotation.DiscardUnknown(m)
 }
 
+var xxx_messageInfo_GeneratedCodeInfo_Annotation proto.InternalMessageInfo
+
 func (m *GeneratedCodeInfo_Annotation) GetPath() []int32 {
 	if m != nil {
 		return m.Path
@@ -2025,6 +2617,7 @@ func init() {
 	proto.RegisterType((*FieldDescriptorProto)(nil), "google.protobuf.FieldDescriptorProto")
 	proto.RegisterType((*OneofDescriptorProto)(nil), "google.protobuf.OneofDescriptorProto")
 	proto.RegisterType((*EnumDescriptorProto)(nil), "google.protobuf.EnumDescriptorProto")
+	proto.RegisterType((*EnumDescriptorProto_EnumReservedRange)(nil), "google.protobuf.EnumDescriptorProto.EnumReservedRange")
 	proto.RegisterType((*EnumValueDescriptorProto)(nil), "google.protobuf.EnumValueDescriptorProto")
 	proto.RegisterType((*ServiceDescriptorProto)(nil), "google.protobuf.ServiceDescriptorProto")
 	proto.RegisterType((*MethodDescriptorProto)(nil), "google.protobuf.MethodDescriptorProto")
@@ -2050,166 +2643,170 @@ func init() {
 	proto.RegisterEnum("google.protobuf.MethodOptions_IdempotencyLevel", MethodOptions_IdempotencyLevel_name, MethodOptions_IdempotencyLevel_value)
 }
 
-func init() { proto.RegisterFile("google/protobuf/descriptor.proto", fileDescriptor0) }
+func init() {
+	proto.RegisterFile("google/protobuf/descriptor.proto", fileDescriptor_descriptor_4df4cb5f42392df6)
+}
 
-var fileDescriptor0 = []byte{
-	// 2519 bytes of a gzipped FileDescriptorProto
+var fileDescriptor_descriptor_4df4cb5f42392df6 = []byte{
+	// 2555 bytes of a gzipped FileDescriptorProto
 	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xc4, 0x59, 0xdd, 0x6e, 0x1b, 0xc7,
-	0x15, 0x0e, 0x7f, 0x45, 0x1e, 0x52, 0xd4, 0x68, 0xa4, 0xd8, 0x6b, 0xe5, 0xc7, 0x32, 0xf3, 0x63,
-	0xd9, 0x69, 0xa8, 0x40, 0xb1, 0x1d, 0x47, 0x29, 0xd2, 0x52, 0xe4, 0x5a, 0xa1, 0x4a, 0x91, 0xec,
-	0x92, 0x6a, 0x7e, 0x6e, 0x16, 0xa3, 0xdd, 0x21, 0xb9, 0xf6, 0x72, 0x77, 0xb3, 0xbb, 0xb4, 0xad,
-	0xa0, 0x17, 0x06, 0x7a, 0x55, 0xa0, 0x0f, 0x50, 0x14, 0x45, 0x2f, 0x72, 0x13, 0xa0, 0x0f, 0x50,
-	0x20, 0x77, 0x7d, 0x82, 0x02, 0x79, 0x83, 0xa2, 0x28, 0xd0, 0x3e, 0x46, 0x31, 0x33, 0xbb, 0xcb,
-	0x5d, 0xfe, 0xc4, 0x6a, 0x80, 0x38, 0x57, 0xe4, 0x7c, 0xe7, 0x3b, 0x67, 0xce, 0x9c, 0x39, 0x33,
-	0x73, 0x66, 0x16, 0x76, 0x47, 0xb6, 0x3d, 0x32, 0xe9, 0xbe, 0xe3, 0xda, 0xbe, 0x7d, 0x3e, 0x1d,
-	0xee, 0xeb, 0xd4, 0xd3, 0x5c, 0xc3, 0xf1, 0x6d, 0xb7, 0xc6, 0x31, 0xbc, 0x21, 0x18, 0xb5, 0x90,
-	0x51, 0x3d, 0x85, 0xcd, 0x07, 0x86, 0x49, 0x9b, 0x11, 0xb1, 0x4f, 0x7d, 0x7c, 0x1f, 0xb2, 0x43,
-	0xc3, 0xa4, 0x52, 0x6a, 0x37, 0xb3, 0x57, 0x3a, 0x78, 0xb3, 0x36, 0xa7, 0x54, 0x4b, 0x6a, 0xf4,
-	0x18, 0xac, 0x70, 0x8d, 0xea, 0xbf, 0xb3, 0xb0, 0xb5, 0x44, 0x8a, 0x31, 0x64, 0x2d, 0x32, 0x61,
-	0x16, 0x53, 0x7b, 0x45, 0x85, 0xff, 0xc7, 0x12, 0xac, 0x39, 0x44, 0x7b, 0x44, 0x46, 0x54, 0x4a,
-	0x73, 0x38, 0x6c, 0xe2, 0xd7, 0x01, 0x74, 0xea, 0x50, 0x4b, 0xa7, 0x96, 0x76, 0x21, 0x65, 0x76,
-	0x33, 0x7b, 0x45, 0x25, 0x86, 0xe0, 0x77, 0x60, 0xd3, 0x99, 0x9e, 0x9b, 0x86, 0xa6, 0xc6, 0x68,
-	0xb0, 0x9b, 0xd9, 0xcb, 0x29, 0x48, 0x08, 0x9a, 0x33, 0xf2, 0x4d, 0xd8, 0x78, 0x42, 0xc9, 0xa3,
-	0x38, 0xb5, 0xc4, 0xa9, 0x15, 0x06, 0xc7, 0x88, 0x0d, 0x28, 0x4f, 0xa8, 0xe7, 0x91, 0x11, 0x55,
-	0xfd, 0x0b, 0x87, 0x4a, 0x59, 0x3e, 0xfa, 0xdd, 0x85, 0xd1, 0xcf, 0x8f, 0xbc, 0x14, 0x68, 0x0d,
-	0x2e, 0x1c, 0x8a, 0xeb, 0x50, 0xa4, 0xd6, 0x74, 0x22, 0x2c, 0xe4, 0x56, 0xc4, 0x4f, 0xb6, 0xa6,
-	0x93, 0x79, 0x2b, 0x05, 0xa6, 0x16, 0x98, 0x58, 0xf3, 0xa8, 0xfb, 0xd8, 0xd0, 0xa8, 0x94, 0xe7,
-	0x06, 0x6e, 0x2e, 0x18, 0xe8, 0x0b, 0xf9, 0xbc, 0x8d, 0x50, 0x0f, 0x37, 0xa0, 0x48, 0x9f, 0xfa,
-	0xd4, 0xf2, 0x0c, 0xdb, 0x92, 0xd6, 0xb8, 0x91, 0xb7, 0x96, 0xcc, 0x22, 0x35, 0xf5, 0x79, 0x13,
-	0x33, 0x3d, 0x7c, 0x0f, 0xd6, 0x6c, 0xc7, 0x37, 0x6c, 0xcb, 0x93, 0x0a, 0xbb, 0xa9, 0xbd, 0xd2,
-	0xc1, 0xab, 0x4b, 0x13, 0xa1, 0x2b, 0x38, 0x4a, 0x48, 0xc6, 0x2d, 0x40, 0x9e, 0x3d, 0x75, 0x35,
-	0xaa, 0x6a, 0xb6, 0x4e, 0x55, 0xc3, 0x1a, 0xda, 0x52, 0x91, 0x1b, 0xb8, 0xbe, 0x38, 0x10, 0x4e,
-	0x6c, 0xd8, 0x3a, 0x6d, 0x59, 0x43, 0x5b, 0xa9, 0x78, 0x89, 0x36, 0xbe, 0x02, 0x79, 0xef, 0xc2,
-	0xf2, 0xc9, 0x53, 0xa9, 0xcc, 0x33, 0x24, 0x68, 0x55, 0xbf, 0xcd, 0xc3, 0xc6, 0x65, 0x52, 0xec,
-	0x23, 0xc8, 0x0d, 0xd9, 0x28, 0xa5, 0xf4, 0xff, 0x13, 0x03, 0xa1, 0x93, 0x0c, 0x62, 0xfe, 0x07,
-	0x06, 0xb1, 0x0e, 0x25, 0x8b, 0x7a, 0x3e, 0xd5, 0x45, 0x46, 0x64, 0x2e, 0x99, 0x53, 0x20, 0x94,
-	0x16, 0x53, 0x2a, 0xfb, 0x83, 0x52, 0xea, 0x33, 0xd8, 0x88, 0x5c, 0x52, 0x5d, 0x62, 0x8d, 0xc2,
-	0xdc, 0xdc, 0x7f, 0x9e, 0x27, 0x35, 0x39, 0xd4, 0x53, 0x98, 0x9a, 0x52, 0xa1, 0x89, 0x36, 0x6e,
-	0x02, 0xd8, 0x16, 0xb5, 0x87, 0xaa, 0x4e, 0x35, 0x53, 0x2a, 0xac, 0x88, 0x52, 0x97, 0x51, 0x16,
-	0xa2, 0x64, 0x0b, 0x54, 0x33, 0xf1, 0x87, 0xb3, 0x54, 0x5b, 0x5b, 0x91, 0x29, 0xa7, 0x62, 0x91,
-	0x2d, 0x64, 0xdb, 0x19, 0x54, 0x5c, 0xca, 0xf2, 0x9e, 0xea, 0xc1, 0xc8, 0x8a, 0xdc, 0x89, 0xda,
-	0x73, 0x47, 0xa6, 0x04, 0x6a, 0x62, 0x60, 0xeb, 0x6e, 0xbc, 0x89, 0xdf, 0x80, 0x08, 0x50, 0x79,
-	0x5a, 0x01, 0xdf, 0x85, 0xca, 0x21, 0xd8, 0x21, 0x13, 0xba, 0xf3, 0x15, 0x54, 0x92, 0xe1, 0xc1,
-	0xdb, 0x90, 0xf3, 0x7c, 0xe2, 0xfa, 0x3c, 0x0b, 0x73, 0x8a, 0x68, 0x60, 0x04, 0x19, 0x6a, 0xe9,
-	0x7c, 0x97, 0xcb, 0x29, 0xec, 0x2f, 0xfe, 0xe5, 0x6c, 0xc0, 0x19, 0x3e, 0xe0, 0xb7, 0x17, 0x67,
-	0x34, 0x61, 0x79, 0x7e, 0xdc, 0x3b, 0x1f, 0xc0, 0x7a, 0x62, 0x00, 0x97, 0xed, 0xba, 0xfa, 0x5b,
-	0x78, 0x79, 0xa9, 0x69, 0xfc, 0x19, 0x6c, 0x4f, 0x2d, 0xc3, 0xf2, 0xa9, 0xeb, 0xb8, 0x94, 0x65,
-	0xac, 0xe8, 0x4a, 0xfa, 0xcf, 0xda, 0x8a, 0x9c, 0x3b, 0x8b, 0xb3, 0x85, 0x15, 0x65, 0x6b, 0xba,
-	0x08, 0xde, 0x2e, 0x16, 0xfe, 0xbb, 0x86, 0x9e, 0x3d, 0x7b, 0xf6, 0x2c, 0x5d, 0xfd, 0x63, 0x1e,
-	0xb6, 0x97, 0xad, 0x99, 0xa5, 0xcb, 0xf7, 0x0a, 0xe4, 0xad, 0xe9, 0xe4, 0x9c, 0xba, 0x3c, 0x48,
-	0x39, 0x25, 0x68, 0xe1, 0x3a, 0xe4, 0x4c, 0x72, 0x4e, 0x4d, 0x29, 0xbb, 0x9b, 0xda, 0xab, 0x1c,
-	0xbc, 0x73, 0xa9, 0x55, 0x59, 0x6b, 0x33, 0x15, 0x45, 0x68, 0xe2, 0x8f, 0x21, 0x1b, 0x6c, 0xd1,
-	0xcc, 0xc2, 0xed, 0xcb, 0x59, 0x60, 0x6b, 0x49, 0xe1, 0x7a, 0xf8, 0x15, 0x28, 0xb2, 0x5f, 0x91,
-	0x1b, 0x79, 0xee, 0x73, 0x81, 0x01, 0x2c, 0x2f, 0xf0, 0x0e, 0x14, 0xf8, 0x32, 0xd1, 0x69, 0x78,
-	0xb4, 0x45, 0x6d, 0x96, 0x58, 0x3a, 0x1d, 0x92, 0xa9, 0xe9, 0xab, 0x8f, 0x89, 0x39, 0xa5, 0x3c,
-	0xe1, 0x8b, 0x4a, 0x39, 0x00, 0x7f, 0xc3, 0x30, 0x7c, 0x1d, 0x4a, 0x62, 0x55, 0x19, 0x96, 0x4e,
-	0x9f, 0xf2, 0xdd, 0x33, 0xa7, 0x88, 0x85, 0xd6, 0x62, 0x08, 0xeb, 0xfe, 0xa1, 0x67, 0x5b, 0x61,
-	0x6a, 0xf2, 0x2e, 0x18, 0xc0, 0xbb, 0xff, 0x60, 0x7e, 0xe3, 0x7e, 0x6d, 0xf9, 0xf0, 0xe6, 0x73,
-	0xaa, 0xfa, 0xb7, 0x34, 0x64, 0xf9, 0x7e, 0xb1, 0x01, 0xa5, 0xc1, 0xe7, 0x3d, 0x59, 0x6d, 0x76,
-	0xcf, 0x8e, 0xda, 0x32, 0x4a, 0xe1, 0x0a, 0x00, 0x07, 0x1e, 0xb4, 0xbb, 0xf5, 0x01, 0x4a, 0x47,
-	0xed, 0x56, 0x67, 0x70, 0xef, 0x0e, 0xca, 0x44, 0x0a, 0x67, 0x02, 0xc8, 0xc6, 0x09, 0xef, 0x1f,
-	0xa0, 0x1c, 0x46, 0x50, 0x16, 0x06, 0x5a, 0x9f, 0xc9, 0xcd, 0x7b, 0x77, 0x50, 0x3e, 0x89, 0xbc,
-	0x7f, 0x80, 0xd6, 0xf0, 0x3a, 0x14, 0x39, 0x72, 0xd4, 0xed, 0xb6, 0x51, 0x21, 0xb2, 0xd9, 0x1f,
-	0x28, 0xad, 0xce, 0x31, 0x2a, 0x46, 0x36, 0x8f, 0x95, 0xee, 0x59, 0x0f, 0x41, 0x64, 0xe1, 0x54,
-	0xee, 0xf7, 0xeb, 0xc7, 0x32, 0x2a, 0x45, 0x8c, 0xa3, 0xcf, 0x07, 0x72, 0x1f, 0x95, 0x13, 0x6e,
-	0xbd, 0x7f, 0x80, 0xd6, 0xa3, 0x2e, 0xe4, 0xce, 0xd9, 0x29, 0xaa, 0xe0, 0x4d, 0x58, 0x17, 0x5d,
-	0x84, 0x4e, 0x6c, 0xcc, 0x41, 0xf7, 0xee, 0x20, 0x34, 0x73, 0x44, 0x58, 0xd9, 0x4c, 0x00, 0xf7,
-	0xee, 0x20, 0x5c, 0x6d, 0x40, 0x8e, 0x67, 0x17, 0xc6, 0x50, 0x69, 0xd7, 0x8f, 0xe4, 0xb6, 0xda,
-	0xed, 0x0d, 0x5a, 0xdd, 0x4e, 0xbd, 0x8d, 0x52, 0x33, 0x4c, 0x91, 0x7f, 0x7d, 0xd6, 0x52, 0xe4,
-	0x26, 0x4a, 0xc7, 0xb1, 0x9e, 0x5c, 0x1f, 0xc8, 0x4d, 0x94, 0xa9, 0x6a, 0xb0, 0xbd, 0x6c, 0x9f,
-	0x5c, 0xba, 0x32, 0x62, 0x53, 0x9c, 0x5e, 0x31, 0xc5, 0xdc, 0xd6, 0xc2, 0x14, 0x7f, 0x9d, 0x82,
-	0xad, 0x25, 0x67, 0xc5, 0xd2, 0x4e, 0x7e, 0x01, 0x39, 0x91, 0xa2, 0xe2, 0xf4, 0xbc, 0xb5, 0xf4,
-	0xd0, 0xe1, 0x09, 0xbb, 0x70, 0x82, 0x72, 0xbd, 0x78, 0x05, 0x91, 0x59, 0x51, 0x41, 0x30, 0x13,
-	0x0b, 0x4e, 0xfe, 0x2e, 0x05, 0xd2, 0x2a, 0xdb, 0xcf, 0xd9, 0x28, 0xd2, 0x89, 0x8d, 0xe2, 0xa3,
-	0x79, 0x07, 0x6e, 0xac, 0x1e, 0xc3, 0x82, 0x17, 0xdf, 0xa4, 0xe0, 0xca, 0xf2, 0x42, 0x6b, 0xa9,
-	0x0f, 0x1f, 0x43, 0x7e, 0x42, 0xfd, 0xb1, 0x1d, 0x16, 0x1b, 0x6f, 0x2f, 0x39, 0xc2, 0x98, 0x78,
-	0x3e, 0x56, 0x81, 0x56, 0xfc, 0x0c, 0xcc, 0xac, 0xaa, 0x96, 0x84, 0x37, 0x0b, 0x9e, 0xfe, 0x3e,
-	0x0d, 0x2f, 0x2f, 0x35, 0xbe, 0xd4, 0xd1, 0xd7, 0x00, 0x0c, 0xcb, 0x99, 0xfa, 0xa2, 0xa0, 0x10,
-	0xfb, 0x53, 0x91, 0x23, 0x7c, 0xed, 0xb3, 0xbd, 0x67, 0xea, 0x47, 0xf2, 0x0c, 0x97, 0x83, 0x80,
-	0x38, 0xe1, 0xfe, 0xcc, 0xd1, 0x2c, 0x77, 0xf4, 0xf5, 0x15, 0x23, 0x5d, 0x38, 0xab, 0xdf, 0x03,
-	0xa4, 0x99, 0x06, 0xb5, 0x7c, 0xd5, 0xf3, 0x5d, 0x4a, 0x26, 0x86, 0x35, 0xe2, 0x1b, 0x70, 0xe1,
-	0x30, 0x37, 0x24, 0xa6, 0x47, 0x95, 0x0d, 0x21, 0xee, 0x87, 0x52, 0xa6, 0xc1, 0xcf, 0x38, 0x37,
-	0xa6, 0x91, 0x4f, 0x68, 0x08, 0x71, 0xa4, 0x51, 0xfd, 0xb6, 0x00, 0xa5, 0x58, 0x59, 0x8a, 0x6f,
-	0x40, 0xf9, 0x21, 0x79, 0x4c, 0xd4, 0xf0, 0xaa, 0x21, 0x22, 0x51, 0x62, 0x58, 0x2f, 0xb8, 0x6e,
-	0xbc, 0x07, 0xdb, 0x9c, 0x62, 0x4f, 0x7d, 0xea, 0xaa, 0x9a, 0x49, 0x3c, 0x8f, 0x07, 0xad, 0xc0,
-	0xa9, 0x98, 0xc9, 0xba, 0x4c, 0xd4, 0x08, 0x25, 0xf8, 0x2e, 0x6c, 0x71, 0x8d, 0xc9, 0xd4, 0xf4,
-	0x0d, 0xc7, 0xa4, 0x2a, 0xbb, 0xfc, 0x78, 0x7c, 0x23, 0x8e, 0x3c, 0xdb, 0x64, 0x8c, 0xd3, 0x80,
-	0xc0, 0x3c, 0xf2, 0x70, 0x13, 0x5e, 0xe3, 0x6a, 0x23, 0x6a, 0x51, 0x97, 0xf8, 0x54, 0xa5, 0x5f,
-	0x4e, 0x89, 0xe9, 0xa9, 0xc4, 0xd2, 0xd5, 0x31, 0xf1, 0xc6, 0xd2, 0x36, 0x33, 0x70, 0x94, 0x96,
-	0x52, 0xca, 0x35, 0x46, 0x3c, 0x0e, 0x78, 0x32, 0xa7, 0xd5, 0x2d, 0xfd, 0x13, 0xe2, 0x8d, 0xf1,
-	0x21, 0x5c, 0xe1, 0x56, 0x3c, 0xdf, 0x35, 0xac, 0x91, 0xaa, 0x8d, 0xa9, 0xf6, 0x48, 0x9d, 0xfa,
-	0xc3, 0xfb, 0xd2, 0x2b, 0xf1, 0xfe, 0xb9, 0x87, 0x7d, 0xce, 0x69, 0x30, 0xca, 0x99, 0x3f, 0xbc,
-	0x8f, 0xfb, 0x50, 0x66, 0x93, 0x31, 0x31, 0xbe, 0xa2, 0xea, 0xd0, 0x76, 0xf9, 0xc9, 0x52, 0x59,
-	0xb2, 0xb2, 0x63, 0x11, 0xac, 0x75, 0x03, 0x85, 0x53, 0x5b, 0xa7, 0x87, 0xb9, 0x7e, 0x4f, 0x96,
-	0x9b, 0x4a, 0x29, 0xb4, 0xf2, 0xc0, 0x76, 0x59, 0x42, 0x8d, 0xec, 0x28, 0xc0, 0x25, 0x91, 0x50,
-	0x23, 0x3b, 0x0c, 0xef, 0x5d, 0xd8, 0xd2, 0x34, 0x31, 0x66, 0x43, 0x53, 0x83, 0x2b, 0x8a, 0x27,
-	0xa1, 0x44, 0xb0, 0x34, 0xed, 0x58, 0x10, 0x82, 0x1c, 0xf7, 0xf0, 0x87, 0xf0, 0xf2, 0x2c, 0x58,
-	0x71, 0xc5, 0xcd, 0x85, 0x51, 0xce, 0xab, 0xde, 0x85, 0x2d, 0xe7, 0x62, 0x51, 0x11, 0x27, 0x7a,
-	0x74, 0x2e, 0xe6, 0xd5, 0x3e, 0x80, 0x6d, 0x67, 0xec, 0x2c, 0xea, 0xdd, 0x8e, 0xeb, 0x61, 0x67,
-	0xec, 0xcc, 0x2b, 0xbe, 0xc5, 0xef, 0xab, 0x2e, 0xd5, 0x88, 0x4f, 0x75, 0xe9, 0x6a, 0x9c, 0x1e,
-	0x13, 0xe0, 0x7d, 0x40, 0x9a, 0xa6, 0x52, 0x8b, 0x9c, 0x9b, 0x54, 0x25, 0x2e, 0xb5, 0x88, 0x27,
-	0x5d, 0x8f, 0x93, 0x2b, 0x9a, 0x26, 0x73, 0x69, 0x9d, 0x0b, 0xf1, 0x6d, 0xd8, 0xb4, 0xcf, 0x1f,
-	0x6a, 0x22, 0x25, 0x55, 0xc7, 0xa5, 0x43, 0xe3, 0xa9, 0xf4, 0x26, 0x8f, 0xef, 0x06, 0x13, 0xf0,
-	0x84, 0xec, 0x71, 0x18, 0xdf, 0x02, 0xa4, 0x79, 0x63, 0xe2, 0x3a, 0xbc, 0x26, 0xf0, 0x1c, 0xa2,
-	0x51, 0xe9, 0x2d, 0x41, 0x15, 0x78, 0x27, 0x84, 0xd9, 0x92, 0xf0, 0x9e, 0x18, 0x43, 0x3f, 0xb4,
-	0x78, 0x53, 0x2c, 0x09, 0x8e, 0x05, 0xd6, 0xf6, 0x00, 0xb1, 0x50, 0x24, 0x3a, 0xde, 0xe3, 0xb4,
-	0x8a, 0x33, 0x76, 0xe2, 0xfd, 0xbe, 0x01, 0xeb, 0x8c, 0x39, 0xeb, 0xf4, 0x96, 0xa8, 0x67, 0x9c,
-	0x71, 0xac, 0xc7, 0x1f, 0xad, 0xb4, 0xac, 0x1e, 0x42, 0x39, 0x9e, 0x9f, 0xb8, 0x08, 0x22, 0x43,
-	0x51, 0x8a, 0x9d, 0xf5, 0x8d, 0x6e, 0x93, 0x9d, 0xd2, 0x5f, 0xc8, 0x28, 0xcd, 0xaa, 0x85, 0x76,
-	0x6b, 0x20, 0xab, 0xca, 0x59, 0x67, 0xd0, 0x3a, 0x95, 0x51, 0x26, 0x56, 0x96, 0x9e, 0x64, 0x0b,
-	0x6f, 0xa3, 0x9b, 0xd5, 0xef, 0xd2, 0x50, 0x49, 0xde, 0x33, 0xf0, 0xcf, 0xe1, 0x6a, 0xf8, 0x28,
-	0xe0, 0x51, 0x5f, 0x7d, 0x62, 0xb8, 0x7c, 0xe1, 0x4c, 0x88, 0xa8, 0xb3, 0xa3, 0xa9, 0xdb, 0x0e,
-	0x58, 0x7d, 0xea, 0x7f, 0x6a, 0xb8, 0x6c, 0x59, 0x4c, 0x88, 0x8f, 0xdb, 0x70, 0xdd, 0xb2, 0x55,
-	0xcf, 0x27, 0x96, 0x4e, 0x5c, 0x5d, 0x9d, 0x3d, 0xc7, 0xa8, 0x44, 0xd3, 0xa8, 0xe7, 0xd9, 0xe2,
-	0xc0, 0x8a, 0xac, 0xbc, 0x6a, 0xd9, 0xfd, 0x80, 0x3c, 0xdb, 0xc9, 0xeb, 0x01, 0x75, 0x2e, 0xcd,
-	0x32, 0xab, 0xd2, 0xec, 0x15, 0x28, 0x4e, 0x88, 0xa3, 0x52, 0xcb, 0x77, 0x2f, 0x78, 0x75, 0x59,
-	0x50, 0x0a, 0x13, 0xe2, 0xc8, 0xac, 0xfd, 0x42, 0x8a, 0xfc, 0x93, 0x6c, 0xa1, 0x80, 0x8a, 0x27,
-	0xd9, 0x42, 0x11, 0x41, 0xf5, 0x5f, 0x19, 0x28, 0xc7, 0xab, 0x4d, 0x56, 0xbc, 0x6b, 0xfc, 0x64,
-	0x49, 0xf1, 0xbd, 0xe7, 0x8d, 0xef, 0xad, 0x4d, 0x6b, 0x0d, 0x76, 0xe4, 0x1c, 0xe6, 0x45, 0x0d,
-	0xa8, 0x08, 0x4d, 0x76, 0xdc, 0xb3, 0xdd, 0x86, 0x8a, 0x7b, 0x4d, 0x41, 0x09, 0x5a, 0xf8, 0x18,
-	0xf2, 0x0f, 0x3d, 0x6e, 0x3b, 0xcf, 0x6d, 0xbf, 0xf9, 0xfd, 0xb6, 0x4f, 0xfa, 0xdc, 0x78, 0xf1,
-	0xa4, 0xaf, 0x76, 0xba, 0xca, 0x69, 0xbd, 0xad, 0x04, 0xea, 0xf8, 0x1a, 0x64, 0x4d, 0xf2, 0xd5,
-	0x45, 0xf2, 0x70, 0xe2, 0xd0, 0x65, 0x27, 0xe1, 0x1a, 0x64, 0x9f, 0x50, 0xf2, 0x28, 0x79, 0x24,
-	0x70, 0xe8, 0x47, 0x5c, 0x0c, 0xfb, 0x90, 0xe3, 0xf1, 0xc2, 0x00, 0x41, 0xc4, 0xd0, 0x4b, 0xb8,
-	0x00, 0xd9, 0x46, 0x57, 0x61, 0x0b, 0x02, 0x41, 0x59, 0xa0, 0x6a, 0xaf, 0x25, 0x37, 0x64, 0x94,
-	0xae, 0xde, 0x85, 0xbc, 0x08, 0x02, 0x5b, 0x2c, 0x51, 0x18, 0xd0, 0x4b, 0x41, 0x33, 0xb0, 0x91,
-	0x0a, 0xa5, 0x67, 0xa7, 0x47, 0xb2, 0x82, 0xd2, 0xc9, 0xa9, 0xce, 0xa2, 0x5c, 0xd5, 0x83, 0x72,
-	0xbc, 0xdc, 0x7c, 0x31, 0x57, 0xc9, 0xbf, 0xa7, 0xa0, 0x14, 0x2b, 0x1f, 0x59, 0xe1, 0x42, 0x4c,
-	0xd3, 0x7e, 0xa2, 0x12, 0xd3, 0x20, 0x5e, 0x90, 0x1a, 0xc0, 0xa1, 0x3a, 0x43, 0x2e, 0x3b, 0x75,
-	0x2f, 0x68, 0x89, 0xe4, 0x50, 0xbe, 0xfa, 0x97, 0x14, 0xa0, 0xf9, 0x02, 0x74, 0xce, 0xcd, 0xd4,
-	0x4f, 0xe9, 0x66, 0xf5, 0xcf, 0x29, 0xa8, 0x24, 0xab, 0xce, 0x39, 0xf7, 0x6e, 0xfc, 0xa4, 0xee,
-	0xfd, 0x33, 0x0d, 0xeb, 0x89, 0x5a, 0xf3, 0xb2, 0xde, 0x7d, 0x09, 0x9b, 0x86, 0x4e, 0x27, 0x8e,
-	0xed, 0x53, 0x4b, 0xbb, 0x50, 0x4d, 0xfa, 0x98, 0x9a, 0x52, 0x95, 0x6f, 0x1a, 0xfb, 0xdf, 0x5f,
-	0xcd, 0xd6, 0x5a, 0x33, 0xbd, 0x36, 0x53, 0x3b, 0xdc, 0x6a, 0x35, 0xe5, 0xd3, 0x5e, 0x77, 0x20,
-	0x77, 0x1a, 0x9f, 0xab, 0x67, 0x9d, 0x5f, 0x75, 0xba, 0x9f, 0x76, 0x14, 0x64, 0xcc, 0xd1, 0x7e,
-	0xc4, 0x65, 0xdf, 0x03, 0x34, 0xef, 0x14, 0xbe, 0x0a, 0xcb, 0xdc, 0x42, 0x2f, 0xe1, 0x2d, 0xd8,
-	0xe8, 0x74, 0xd5, 0x7e, 0xab, 0x29, 0xab, 0xf2, 0x83, 0x07, 0x72, 0x63, 0xd0, 0x17, 0xd7, 0xfb,
-	0x88, 0x3d, 0x48, 0x2c, 0xf0, 0xea, 0x9f, 0x32, 0xb0, 0xb5, 0xc4, 0x13, 0x5c, 0x0f, 0x6e, 0x16,
-	0xe2, 0xb2, 0xf3, 0xee, 0x65, 0xbc, 0xaf, 0xb1, 0x82, 0xa0, 0x47, 0x5c, 0x3f, 0xb8, 0x88, 0xdc,
-	0x02, 0x16, 0x25, 0xcb, 0x37, 0x86, 0x06, 0x75, 0x83, 0xd7, 0x10, 0x71, 0xdd, 0xd8, 0x98, 0xe1,
-	0xe2, 0x41, 0xe4, 0x67, 0x80, 0x1d, 0xdb, 0x33, 0x7c, 0xe3, 0x31, 0x55, 0x0d, 0x2b, 0x7c, 0x3a,
-	0x61, 0xd7, 0x8f, 0xac, 0x82, 0x42, 0x49, 0xcb, 0xf2, 0x23, 0xb6, 0x45, 0x47, 0x64, 0x8e, 0xcd,
-	0x36, 0xf3, 0x8c, 0x82, 0x42, 0x49, 0xc4, 0xbe, 0x01, 0x65, 0xdd, 0x9e, 0xb2, 0x9a, 0x4c, 0xf0,
-	0xd8, 0xd9, 0x91, 0x52, 0x4a, 0x02, 0x8b, 0x28, 0x41, 0xb5, 0x3d, 0x7b, 0xb3, 0x29, 0x2b, 0x25,
-	0x81, 0x09, 0xca, 0x4d, 0xd8, 0x20, 0xa3, 0x91, 0xcb, 0x8c, 0x87, 0x86, 0xc4, 0xfd, 0xa1, 0x12,
-	0xc1, 0x9c, 0xb8, 0x73, 0x02, 0x85, 0x30, 0x0e, 0xec, 0xa8, 0x66, 0x91, 0x50, 0x1d, 0xf1, 0x6e,
-	0x97, 0xde, 0x2b, 0x2a, 0x05, 0x2b, 0x14, 0xde, 0x80, 0xb2, 0xe1, 0xa9, 0xb3, 0x27, 0xe8, 0xf4,
-	0x6e, 0x7a, 0xaf, 0xa0, 0x94, 0x0c, 0x2f, 0x7a, 0xbe, 0xab, 0x7e, 0x93, 0x86, 0x4a, 0xf2, 0x09,
-	0x1d, 0x37, 0xa1, 0x60, 0xda, 0x1a, 0xe1, 0xa9, 0x25, 0xbe, 0xdf, 0xec, 0x3d, 0xe7, 0xd5, 0xbd,
-	0xd6, 0x0e, 0xf8, 0x4a, 0xa4, 0xb9, 0xf3, 0x8f, 0x14, 0x14, 0x42, 0x18, 0x5f, 0x81, 0xac, 0x43,
-	0xfc, 0x31, 0x37, 0x97, 0x3b, 0x4a, 0xa3, 0x94, 0xc2, 0xdb, 0x0c, 0xf7, 0x1c, 0x62, 0xf1, 0x14,
-	0x08, 0x70, 0xd6, 0x66, 0xf3, 0x6a, 0x52, 0xa2, 0xf3, 0xcb, 0x89, 0x3d, 0x99, 0x50, 0xcb, 0xf7,
-	0xc2, 0x79, 0x0d, 0xf0, 0x46, 0x00, 0xe3, 0x77, 0x60, 0xd3, 0x77, 0x89, 0x61, 0x26, 0xb8, 0x59,
-	0xce, 0x45, 0xa1, 0x20, 0x22, 0x1f, 0xc2, 0xb5, 0xd0, 0xae, 0x4e, 0x7d, 0xa2, 0x8d, 0xa9, 0x3e,
-	0x53, 0xca, 0xf3, 0xf7, 0xd9, 0xab, 0x01, 0xa1, 0x19, 0xc8, 0x43, 0xdd, 0xea, 0x77, 0x29, 0xd8,
-	0x0c, 0xaf, 0x53, 0x7a, 0x14, 0xac, 0x53, 0x00, 0x62, 0x59, 0xb6, 0x1f, 0x0f, 0xd7, 0x62, 0x2a,
-	0x2f, 0xe8, 0xd5, 0xea, 0x91, 0x92, 0x12, 0x33, 0xb0, 0x33, 0x01, 0x98, 0x49, 0x56, 0x86, 0xed,
-	0x3a, 0x94, 0x82, 0xef, 0x23, 0xfc, 0x23, 0x9b, 0xb8, 0x80, 0x83, 0x80, 0xd8, 0xbd, 0x0b, 0x6f,
-	0x43, 0xee, 0x9c, 0x8e, 0x0c, 0x2b, 0x78, 0xf5, 0x14, 0x8d, 0xf0, 0x25, 0x37, 0x1b, 0xbd, 0xe4,
-	0x1e, 0xfd, 0x21, 0x05, 0x5b, 0x9a, 0x3d, 0x99, 0xf7, 0xf7, 0x08, 0xcd, 0xbd, 0x02, 0x78, 0x9f,
-	0xa4, 0xbe, 0xf8, 0x78, 0x64, 0xf8, 0xe3, 0xe9, 0x79, 0x4d, 0xb3, 0x27, 0xfb, 0x23, 0xdb, 0x24,
-	0xd6, 0x68, 0xf6, 0x95, 0x90, 0xff, 0xd1, 0xde, 0x1d, 0x51, 0xeb, 0xdd, 0x91, 0x1d, 0xfb, 0x66,
-	0xf8, 0xd1, 0xec, 0xef, 0xd7, 0xe9, 0xcc, 0x71, 0xef, 0xe8, 0xaf, 0xe9, 0x9d, 0x63, 0xd1, 0x57,
-	0x2f, 0x8c, 0x8d, 0x42, 0x87, 0x26, 0xd5, 0xd8, 0x78, 0xff, 0x17, 0x00, 0x00, 0xff, 0xff, 0x0c,
-	0xab, 0xb6, 0x37, 0x7e, 0x1c, 0x00, 0x00,
+	0xf5, 0xcf, 0xf2, 0x4b, 0xe4, 0x21, 0x45, 0x8d, 0x46, 0x8a, 0xbd, 0x56, 0x3e, 0x2c, 0x33, 0x1f,
+	0x96, 0x9d, 0x7f, 0xa8, 0xc0, 0xb1, 0x1d, 0x47, 0xfe, 0x23, 0x2d, 0x45, 0xae, 0x15, 0xaa, 0x12,
+	0xc9, 0x2e, 0xa9, 0xe6, 0x03, 0x28, 0x16, 0xa3, 0xdd, 0x21, 0xb9, 0xf6, 0x72, 0x77, 0xb3, 0xbb,
+	0xb4, 0xad, 0xa0, 0x17, 0x06, 0x7a, 0xd5, 0xab, 0xde, 0x16, 0x45, 0xd1, 0x8b, 0xde, 0x04, 0xe8,
+	0x03, 0x14, 0xc8, 0x5d, 0x9f, 0xa0, 0x40, 0xde, 0xa0, 0x68, 0x0b, 0xb4, 0x8f, 0xd0, 0xcb, 0x62,
+	0x66, 0x76, 0x97, 0xbb, 0x24, 0x15, 0x2b, 0x01, 0xe2, 0x5c, 0x91, 0xf3, 0x9b, 0xdf, 0x39, 0x73,
+	0xe6, 0xcc, 0x99, 0x33, 0x67, 0x66, 0x61, 0x7b, 0xe4, 0x38, 0x23, 0x8b, 0xee, 0xba, 0x9e, 0x13,
+	0x38, 0xa7, 0xd3, 0xe1, 0xae, 0x41, 0x7d, 0xdd, 0x33, 0xdd, 0xc0, 0xf1, 0xea, 0x1c, 0xc3, 0x6b,
+	0x82, 0x51, 0x8f, 0x18, 0xb5, 0x63, 0x58, 0x7f, 0x60, 0x5a, 0xb4, 0x15, 0x13, 0xfb, 0x34, 0xc0,
+	0xf7, 0x20, 0x37, 0x34, 0x2d, 0x2a, 0x4b, 0xdb, 0xd9, 0x9d, 0xf2, 0xad, 0x37, 0xeb, 0x73, 0x42,
+	0xf5, 0xb4, 0x44, 0x8f, 0xc1, 0x2a, 0x97, 0xa8, 0xfd, 0x2b, 0x07, 0x1b, 0x4b, 0x7a, 0x31, 0x86,
+	0x9c, 0x4d, 0x26, 0x4c, 0xa3, 0xb4, 0x53, 0x52, 0xf9, 0x7f, 0x2c, 0xc3, 0x8a, 0x4b, 0xf4, 0x47,
+	0x64, 0x44, 0xe5, 0x0c, 0x87, 0xa3, 0x26, 0x7e, 0x1d, 0xc0, 0xa0, 0x2e, 0xb5, 0x0d, 0x6a, 0xeb,
+	0x67, 0x72, 0x76, 0x3b, 0xbb, 0x53, 0x52, 0x13, 0x08, 0x7e, 0x07, 0xd6, 0xdd, 0xe9, 0xa9, 0x65,
+	0xea, 0x5a, 0x82, 0x06, 0xdb, 0xd9, 0x9d, 0xbc, 0x8a, 0x44, 0x47, 0x6b, 0x46, 0xbe, 0x0e, 0x6b,
+	0x4f, 0x28, 0x79, 0x94, 0xa4, 0x96, 0x39, 0xb5, 0xca, 0xe0, 0x04, 0xb1, 0x09, 0x95, 0x09, 0xf5,
+	0x7d, 0x32, 0xa2, 0x5a, 0x70, 0xe6, 0x52, 0x39, 0xc7, 0x67, 0xbf, 0xbd, 0x30, 0xfb, 0xf9, 0x99,
+	0x97, 0x43, 0xa9, 0xc1, 0x99, 0x4b, 0x71, 0x03, 0x4a, 0xd4, 0x9e, 0x4e, 0x84, 0x86, 0xfc, 0x39,
+	0xfe, 0x53, 0xec, 0xe9, 0x64, 0x5e, 0x4b, 0x91, 0x89, 0x85, 0x2a, 0x56, 0x7c, 0xea, 0x3d, 0x36,
+	0x75, 0x2a, 0x17, 0xb8, 0x82, 0xeb, 0x0b, 0x0a, 0xfa, 0xa2, 0x7f, 0x5e, 0x47, 0x24, 0x87, 0x9b,
+	0x50, 0xa2, 0x4f, 0x03, 0x6a, 0xfb, 0xa6, 0x63, 0xcb, 0x2b, 0x5c, 0xc9, 0x5b, 0x4b, 0x56, 0x91,
+	0x5a, 0xc6, 0xbc, 0x8a, 0x99, 0x1c, 0xbe, 0x0b, 0x2b, 0x8e, 0x1b, 0x98, 0x8e, 0xed, 0xcb, 0xc5,
+	0x6d, 0x69, 0xa7, 0x7c, 0xeb, 0xd5, 0xa5, 0x81, 0xd0, 0x15, 0x1c, 0x35, 0x22, 0xe3, 0x36, 0x20,
+	0xdf, 0x99, 0x7a, 0x3a, 0xd5, 0x74, 0xc7, 0xa0, 0x9a, 0x69, 0x0f, 0x1d, 0xb9, 0xc4, 0x15, 0x5c,
+	0x5d, 0x9c, 0x08, 0x27, 0x36, 0x1d, 0x83, 0xb6, 0xed, 0xa1, 0xa3, 0x56, 0xfd, 0x54, 0x1b, 0x5f,
+	0x82, 0x82, 0x7f, 0x66, 0x07, 0xe4, 0xa9, 0x5c, 0xe1, 0x11, 0x12, 0xb6, 0x6a, 0x5f, 0x17, 0x60,
+	0xed, 0x22, 0x21, 0x76, 0x1f, 0xf2, 0x43, 0x36, 0x4b, 0x39, 0xf3, 0x5d, 0x7c, 0x20, 0x64, 0xd2,
+	0x4e, 0x2c, 0x7c, 0x4f, 0x27, 0x36, 0xa0, 0x6c, 0x53, 0x3f, 0xa0, 0x86, 0x88, 0x88, 0xec, 0x05,
+	0x63, 0x0a, 0x84, 0xd0, 0x62, 0x48, 0xe5, 0xbe, 0x57, 0x48, 0x7d, 0x0a, 0x6b, 0xb1, 0x49, 0x9a,
+	0x47, 0xec, 0x51, 0x14, 0x9b, 0xbb, 0xcf, 0xb3, 0xa4, 0xae, 0x44, 0x72, 0x2a, 0x13, 0x53, 0xab,
+	0x34, 0xd5, 0xc6, 0x2d, 0x00, 0xc7, 0xa6, 0xce, 0x50, 0x33, 0xa8, 0x6e, 0xc9, 0xc5, 0x73, 0xbc,
+	0xd4, 0x65, 0x94, 0x05, 0x2f, 0x39, 0x02, 0xd5, 0x2d, 0xfc, 0xe1, 0x2c, 0xd4, 0x56, 0xce, 0x89,
+	0x94, 0x63, 0xb1, 0xc9, 0x16, 0xa2, 0xed, 0x04, 0xaa, 0x1e, 0x65, 0x71, 0x4f, 0x8d, 0x70, 0x66,
+	0x25, 0x6e, 0x44, 0xfd, 0xb9, 0x33, 0x53, 0x43, 0x31, 0x31, 0xb1, 0x55, 0x2f, 0xd9, 0xc4, 0x6f,
+	0x40, 0x0c, 0x68, 0x3c, 0xac, 0x80, 0x67, 0xa1, 0x4a, 0x04, 0x76, 0xc8, 0x84, 0x6e, 0x7d, 0x09,
+	0xd5, 0xb4, 0x7b, 0xf0, 0x26, 0xe4, 0xfd, 0x80, 0x78, 0x01, 0x8f, 0xc2, 0xbc, 0x2a, 0x1a, 0x18,
+	0x41, 0x96, 0xda, 0x06, 0xcf, 0x72, 0x79, 0x95, 0xfd, 0xc5, 0x3f, 0x9d, 0x4d, 0x38, 0xcb, 0x27,
+	0xfc, 0xf6, 0xe2, 0x8a, 0xa6, 0x34, 0xcf, 0xcf, 0x7b, 0xeb, 0x03, 0x58, 0x4d, 0x4d, 0xe0, 0xa2,
+	0x43, 0xd7, 0x7e, 0x05, 0x2f, 0x2f, 0x55, 0x8d, 0x3f, 0x85, 0xcd, 0xa9, 0x6d, 0xda, 0x01, 0xf5,
+	0x5c, 0x8f, 0xb2, 0x88, 0x15, 0x43, 0xc9, 0xff, 0x5e, 0x39, 0x27, 0xe6, 0x4e, 0x92, 0x6c, 0xa1,
+	0x45, 0xdd, 0x98, 0x2e, 0x82, 0x37, 0x4b, 0xc5, 0xff, 0xac, 0xa0, 0x67, 0xcf, 0x9e, 0x3d, 0xcb,
+	0xd4, 0x7e, 0x57, 0x80, 0xcd, 0x65, 0x7b, 0x66, 0xe9, 0xf6, 0xbd, 0x04, 0x05, 0x7b, 0x3a, 0x39,
+	0xa5, 0x1e, 0x77, 0x52, 0x5e, 0x0d, 0x5b, 0xb8, 0x01, 0x79, 0x8b, 0x9c, 0x52, 0x4b, 0xce, 0x6d,
+	0x4b, 0x3b, 0xd5, 0x5b, 0xef, 0x5c, 0x68, 0x57, 0xd6, 0x8f, 0x98, 0x88, 0x2a, 0x24, 0xf1, 0x47,
+	0x90, 0x0b, 0x53, 0x34, 0xd3, 0x70, 0xf3, 0x62, 0x1a, 0xd8, 0x5e, 0x52, 0xb9, 0x1c, 0x7e, 0x05,
+	0x4a, 0xec, 0x57, 0xc4, 0x46, 0x81, 0xdb, 0x5c, 0x64, 0x00, 0x8b, 0x0b, 0xbc, 0x05, 0x45, 0xbe,
+	0x4d, 0x0c, 0x1a, 0x1d, 0x6d, 0x71, 0x9b, 0x05, 0x96, 0x41, 0x87, 0x64, 0x6a, 0x05, 0xda, 0x63,
+	0x62, 0x4d, 0x29, 0x0f, 0xf8, 0x92, 0x5a, 0x09, 0xc1, 0x5f, 0x30, 0x0c, 0x5f, 0x85, 0xb2, 0xd8,
+	0x55, 0xa6, 0x6d, 0xd0, 0xa7, 0x3c, 0x7b, 0xe6, 0x55, 0xb1, 0xd1, 0xda, 0x0c, 0x61, 0xc3, 0x3f,
+	0xf4, 0x1d, 0x3b, 0x0a, 0x4d, 0x3e, 0x04, 0x03, 0xf8, 0xf0, 0x1f, 0xcc, 0x27, 0xee, 0xd7, 0x96,
+	0x4f, 0x6f, 0x3e, 0xa6, 0x6a, 0x7f, 0xc9, 0x40, 0x8e, 0xe7, 0x8b, 0x35, 0x28, 0x0f, 0x3e, 0xeb,
+	0x29, 0x5a, 0xab, 0x7b, 0xb2, 0x7f, 0xa4, 0x20, 0x09, 0x57, 0x01, 0x38, 0xf0, 0xe0, 0xa8, 0xdb,
+	0x18, 0xa0, 0x4c, 0xdc, 0x6e, 0x77, 0x06, 0x77, 0x6f, 0xa3, 0x6c, 0x2c, 0x70, 0x22, 0x80, 0x5c,
+	0x92, 0xf0, 0xfe, 0x2d, 0x94, 0xc7, 0x08, 0x2a, 0x42, 0x41, 0xfb, 0x53, 0xa5, 0x75, 0xf7, 0x36,
+	0x2a, 0xa4, 0x91, 0xf7, 0x6f, 0xa1, 0x15, 0xbc, 0x0a, 0x25, 0x8e, 0xec, 0x77, 0xbb, 0x47, 0xa8,
+	0x18, 0xeb, 0xec, 0x0f, 0xd4, 0x76, 0xe7, 0x00, 0x95, 0x62, 0x9d, 0x07, 0x6a, 0xf7, 0xa4, 0x87,
+	0x20, 0xd6, 0x70, 0xac, 0xf4, 0xfb, 0x8d, 0x03, 0x05, 0x95, 0x63, 0xc6, 0xfe, 0x67, 0x03, 0xa5,
+	0x8f, 0x2a, 0x29, 0xb3, 0xde, 0xbf, 0x85, 0x56, 0xe3, 0x21, 0x94, 0xce, 0xc9, 0x31, 0xaa, 0xe2,
+	0x75, 0x58, 0x15, 0x43, 0x44, 0x46, 0xac, 0xcd, 0x41, 0x77, 0x6f, 0x23, 0x34, 0x33, 0x44, 0x68,
+	0x59, 0x4f, 0x01, 0x77, 0x6f, 0x23, 0x5c, 0x6b, 0x42, 0x9e, 0x47, 0x17, 0xc6, 0x50, 0x3d, 0x6a,
+	0xec, 0x2b, 0x47, 0x5a, 0xb7, 0x37, 0x68, 0x77, 0x3b, 0x8d, 0x23, 0x24, 0xcd, 0x30, 0x55, 0xf9,
+	0xf9, 0x49, 0x5b, 0x55, 0x5a, 0x28, 0x93, 0xc4, 0x7a, 0x4a, 0x63, 0xa0, 0xb4, 0x50, 0xb6, 0xa6,
+	0xc3, 0xe6, 0xb2, 0x3c, 0xb9, 0x74, 0x67, 0x24, 0x96, 0x38, 0x73, 0xce, 0x12, 0x73, 0x5d, 0x0b,
+	0x4b, 0xfc, 0xcf, 0x0c, 0x6c, 0x2c, 0x39, 0x2b, 0x96, 0x0e, 0xf2, 0x13, 0xc8, 0x8b, 0x10, 0x15,
+	0xa7, 0xe7, 0x8d, 0xa5, 0x87, 0x0e, 0x0f, 0xd8, 0x85, 0x13, 0x94, 0xcb, 0x25, 0x2b, 0x88, 0xec,
+	0x39, 0x15, 0x04, 0x53, 0xb1, 0x90, 0xd3, 0x7f, 0xb9, 0x90, 0xd3, 0xc5, 0xb1, 0x77, 0xf7, 0x22,
+	0xc7, 0x1e, 0xc7, 0xbe, 0x5b, 0x6e, 0xcf, 0x2f, 0xc9, 0xed, 0xf7, 0x61, 0x7d, 0x41, 0xd1, 0x85,
+	0x73, 0xec, 0xaf, 0x25, 0x90, 0xcf, 0x73, 0xce, 0x73, 0x32, 0x5d, 0x26, 0x95, 0xe9, 0xee, 0xcf,
+	0x7b, 0xf0, 0xda, 0xf9, 0x8b, 0xb0, 0xb0, 0xd6, 0x5f, 0x49, 0x70, 0x69, 0x79, 0xa5, 0xb8, 0xd4,
+	0x86, 0x8f, 0xa0, 0x30, 0xa1, 0xc1, 0xd8, 0x89, 0xaa, 0xa5, 0xb7, 0x97, 0x9c, 0xc1, 0xac, 0x7b,
+	0x7e, 0xb1, 0x43, 0xa9, 0xe4, 0x21, 0x9e, 0x3d, 0xaf, 0xdc, 0x13, 0xd6, 0x2c, 0x58, 0xfa, 0x9b,
+	0x0c, 0xbc, 0xbc, 0x54, 0xf9, 0x52, 0x43, 0x5f, 0x03, 0x30, 0x6d, 0x77, 0x1a, 0x88, 0x8a, 0x48,
+	0x24, 0xd8, 0x12, 0x47, 0x78, 0xf2, 0x62, 0xc9, 0x73, 0x1a, 0xc4, 0xfd, 0x59, 0xde, 0x0f, 0x02,
+	0xe2, 0x84, 0x7b, 0x33, 0x43, 0x73, 0xdc, 0xd0, 0xd7, 0xcf, 0x99, 0xe9, 0x42, 0x60, 0xbe, 0x07,
+	0x48, 0xb7, 0x4c, 0x6a, 0x07, 0x9a, 0x1f, 0x78, 0x94, 0x4c, 0x4c, 0x7b, 0xc4, 0x4f, 0x90, 0xe2,
+	0x5e, 0x7e, 0x48, 0x2c, 0x9f, 0xaa, 0x6b, 0xa2, 0xbb, 0x1f, 0xf5, 0x32, 0x09, 0x1e, 0x40, 0x5e,
+	0x42, 0xa2, 0x90, 0x92, 0x10, 0xdd, 0xb1, 0x44, 0xed, 0xeb, 0x22, 0x94, 0x13, 0x75, 0x35, 0xbe,
+	0x06, 0x95, 0x87, 0xe4, 0x31, 0xd1, 0xa2, 0xbb, 0x92, 0xf0, 0x44, 0x99, 0x61, 0xbd, 0xf0, 0xbe,
+	0xf4, 0x1e, 0x6c, 0x72, 0x8a, 0x33, 0x0d, 0xa8, 0xa7, 0xe9, 0x16, 0xf1, 0x7d, 0xee, 0xb4, 0x22,
+	0xa7, 0x62, 0xd6, 0xd7, 0x65, 0x5d, 0xcd, 0xa8, 0x07, 0xdf, 0x81, 0x0d, 0x2e, 0x31, 0x99, 0x5a,
+	0x81, 0xe9, 0x5a, 0x54, 0x63, 0xb7, 0x37, 0x9f, 0x9f, 0x24, 0xb1, 0x65, 0xeb, 0x8c, 0x71, 0x1c,
+	0x12, 0x98, 0x45, 0x3e, 0x6e, 0xc1, 0x6b, 0x5c, 0x6c, 0x44, 0x6d, 0xea, 0x91, 0x80, 0x6a, 0xf4,
+	0x8b, 0x29, 0xb1, 0x7c, 0x8d, 0xd8, 0x86, 0x36, 0x26, 0xfe, 0x58, 0xde, 0x64, 0x0a, 0xf6, 0x33,
+	0xb2, 0xa4, 0x5e, 0x61, 0xc4, 0x83, 0x90, 0xa7, 0x70, 0x5a, 0xc3, 0x36, 0x3e, 0x26, 0xfe, 0x18,
+	0xef, 0xc1, 0x25, 0xae, 0xc5, 0x0f, 0x3c, 0xd3, 0x1e, 0x69, 0xfa, 0x98, 0xea, 0x8f, 0xb4, 0x69,
+	0x30, 0xbc, 0x27, 0xbf, 0x92, 0x1c, 0x9f, 0x5b, 0xd8, 0xe7, 0x9c, 0x26, 0xa3, 0x9c, 0x04, 0xc3,
+	0x7b, 0xb8, 0x0f, 0x15, 0xb6, 0x18, 0x13, 0xf3, 0x4b, 0xaa, 0x0d, 0x1d, 0x8f, 0x1f, 0x8d, 0xd5,
+	0x25, 0xa9, 0x29, 0xe1, 0xc1, 0x7a, 0x37, 0x14, 0x38, 0x76, 0x0c, 0xba, 0x97, 0xef, 0xf7, 0x14,
+	0xa5, 0xa5, 0x96, 0x23, 0x2d, 0x0f, 0x1c, 0x8f, 0x05, 0xd4, 0xc8, 0x89, 0x1d, 0x5c, 0x16, 0x01,
+	0x35, 0x72, 0x22, 0xf7, 0xde, 0x81, 0x0d, 0x5d, 0x17, 0x73, 0x36, 0x75, 0x2d, 0xbc, 0x63, 0xf9,
+	0x32, 0x4a, 0x39, 0x4b, 0xd7, 0x0f, 0x04, 0x21, 0x8c, 0x71, 0x1f, 0x7f, 0x08, 0x2f, 0xcf, 0x9c,
+	0x95, 0x14, 0x5c, 0x5f, 0x98, 0xe5, 0xbc, 0xe8, 0x1d, 0xd8, 0x70, 0xcf, 0x16, 0x05, 0x71, 0x6a,
+	0x44, 0xf7, 0x6c, 0x5e, 0xec, 0x03, 0xd8, 0x74, 0xc7, 0xee, 0xa2, 0xdc, 0xcd, 0xa4, 0x1c, 0x76,
+	0xc7, 0xee, 0xbc, 0xe0, 0x5b, 0xfc, 0xc2, 0xed, 0x51, 0x9d, 0x04, 0xd4, 0x90, 0x2f, 0x27, 0xe9,
+	0x89, 0x0e, 0xbc, 0x0b, 0x48, 0xd7, 0x35, 0x6a, 0x93, 0x53, 0x8b, 0x6a, 0xc4, 0xa3, 0x36, 0xf1,
+	0xe5, 0xab, 0x49, 0x72, 0x55, 0xd7, 0x15, 0xde, 0xdb, 0xe0, 0x9d, 0xf8, 0x26, 0xac, 0x3b, 0xa7,
+	0x0f, 0x75, 0x11, 0x92, 0x9a, 0xeb, 0xd1, 0xa1, 0xf9, 0x54, 0x7e, 0x93, 0xfb, 0x77, 0x8d, 0x75,
+	0xf0, 0x80, 0xec, 0x71, 0x18, 0xdf, 0x00, 0xa4, 0xfb, 0x63, 0xe2, 0xb9, 0x3c, 0x27, 0xfb, 0x2e,
+	0xd1, 0xa9, 0xfc, 0x96, 0xa0, 0x0a, 0xbc, 0x13, 0xc1, 0x6c, 0x4b, 0xf8, 0x4f, 0xcc, 0x61, 0x10,
+	0x69, 0xbc, 0x2e, 0xb6, 0x04, 0xc7, 0x42, 0x6d, 0x3b, 0x80, 0x98, 0x2b, 0x52, 0x03, 0xef, 0x70,
+	0x5a, 0xd5, 0x1d, 0xbb, 0xc9, 0x71, 0xdf, 0x80, 0x55, 0xc6, 0x9c, 0x0d, 0x7a, 0x43, 0x14, 0x64,
+	0xee, 0x38, 0x31, 0xe2, 0x0f, 0x56, 0x1b, 0xd7, 0xf6, 0xa0, 0x92, 0x8c, 0x4f, 0x5c, 0x02, 0x11,
+	0xa1, 0x48, 0x62, 0xc5, 0x4a, 0xb3, 0xdb, 0x62, 0x65, 0xc6, 0xe7, 0x0a, 0xca, 0xb0, 0x72, 0xe7,
+	0xa8, 0x3d, 0x50, 0x34, 0xf5, 0xa4, 0x33, 0x68, 0x1f, 0x2b, 0x28, 0x9b, 0xa8, 0xab, 0x0f, 0x73,
+	0xc5, 0xb7, 0xd1, 0xf5, 0xda, 0x37, 0x19, 0xa8, 0xa6, 0x2f, 0x4a, 0xf8, 0xff, 0xe1, 0x72, 0xf4,
+	0xaa, 0xe1, 0xd3, 0x40, 0x7b, 0x62, 0x7a, 0x7c, 0xe3, 0x4c, 0x88, 0x38, 0xc4, 0xe2, 0xa5, 0xdb,
+	0x0c, 0x59, 0x7d, 0x1a, 0x7c, 0x62, 0x7a, 0x6c, 0x5b, 0x4c, 0x48, 0x80, 0x8f, 0xe0, 0xaa, 0xed,
+	0x68, 0x7e, 0x40, 0x6c, 0x83, 0x78, 0x86, 0x36, 0x7b, 0x4f, 0xd2, 0x88, 0xae, 0x53, 0xdf, 0x77,
+	0xc4, 0x81, 0x15, 0x6b, 0x79, 0xd5, 0x76, 0xfa, 0x21, 0x79, 0x96, 0xc9, 0x1b, 0x21, 0x75, 0x2e,
+	0xcc, 0xb2, 0xe7, 0x85, 0xd9, 0x2b, 0x50, 0x9a, 0x10, 0x57, 0xa3, 0x76, 0xe0, 0x9d, 0xf1, 0xf2,
+	0xb8, 0xa8, 0x16, 0x27, 0xc4, 0x55, 0x58, 0xfb, 0x85, 0xdc, 0x52, 0x0e, 0x73, 0xc5, 0x22, 0x2a,
+	0x1d, 0xe6, 0x8a, 0x25, 0x04, 0xb5, 0x7f, 0x64, 0xa1, 0x92, 0x2c, 0x97, 0xd9, 0xed, 0x43, 0xe7,
+	0x27, 0x8b, 0xc4, 0x73, 0xcf, 0x1b, 0xdf, 0x5a, 0x5c, 0xd7, 0x9b, 0xec, 0xc8, 0xd9, 0x2b, 0x88,
+	0x22, 0x56, 0x15, 0x92, 0xec, 0xb8, 0x67, 0xd9, 0x86, 0x8a, 0xa2, 0xa1, 0xa8, 0x86, 0x2d, 0x7c,
+	0x00, 0x85, 0x87, 0x3e, 0xd7, 0x5d, 0xe0, 0xba, 0xdf, 0xfc, 0x76, 0xdd, 0x87, 0x7d, 0xae, 0xbc,
+	0x74, 0xd8, 0xd7, 0x3a, 0x5d, 0xf5, 0xb8, 0x71, 0xa4, 0x86, 0xe2, 0xf8, 0x0a, 0xe4, 0x2c, 0xf2,
+	0xe5, 0x59, 0xfa, 0x70, 0xe2, 0xd0, 0x45, 0x17, 0xe1, 0x0a, 0xe4, 0x9e, 0x50, 0xf2, 0x28, 0x7d,
+	0x24, 0x70, 0xe8, 0x07, 0xdc, 0x0c, 0xbb, 0x90, 0xe7, 0xfe, 0xc2, 0x00, 0xa1, 0xc7, 0xd0, 0x4b,
+	0xb8, 0x08, 0xb9, 0x66, 0x57, 0x65, 0x1b, 0x02, 0x41, 0x45, 0xa0, 0x5a, 0xaf, 0xad, 0x34, 0x15,
+	0x94, 0xa9, 0xdd, 0x81, 0x82, 0x70, 0x02, 0xdb, 0x2c, 0xb1, 0x1b, 0xd0, 0x4b, 0x61, 0x33, 0xd4,
+	0x21, 0x45, 0xbd, 0x27, 0xc7, 0xfb, 0x8a, 0x8a, 0x32, 0xe9, 0xa5, 0xce, 0xa1, 0x7c, 0xcd, 0x87,
+	0x4a, 0xb2, 0x5e, 0x7e, 0x31, 0x77, 0xe1, 0xbf, 0x4a, 0x50, 0x4e, 0xd4, 0xbf, 0xac, 0x70, 0x21,
+	0x96, 0xe5, 0x3c, 0xd1, 0x88, 0x65, 0x12, 0x3f, 0x0c, 0x0d, 0xe0, 0x50, 0x83, 0x21, 0x17, 0x5d,
+	0xba, 0x17, 0xb4, 0x45, 0xf2, 0xa8, 0x50, 0xfb, 0xa3, 0x04, 0x68, 0xbe, 0x00, 0x9d, 0x33, 0x53,
+	0xfa, 0x31, 0xcd, 0xac, 0xfd, 0x41, 0x82, 0x6a, 0xba, 0xea, 0x9c, 0x33, 0xef, 0xda, 0x8f, 0x6a,
+	0xde, 0xdf, 0x33, 0xb0, 0x9a, 0xaa, 0x35, 0x2f, 0x6a, 0xdd, 0x17, 0xb0, 0x6e, 0x1a, 0x74, 0xe2,
+	0x3a, 0x01, 0xb5, 0xf5, 0x33, 0xcd, 0xa2, 0x8f, 0xa9, 0x25, 0xd7, 0x78, 0xd2, 0xd8, 0xfd, 0xf6,
+	0x6a, 0xb6, 0xde, 0x9e, 0xc9, 0x1d, 0x31, 0xb1, 0xbd, 0x8d, 0x76, 0x4b, 0x39, 0xee, 0x75, 0x07,
+	0x4a, 0xa7, 0xf9, 0x99, 0x76, 0xd2, 0xf9, 0x59, 0xa7, 0xfb, 0x49, 0x47, 0x45, 0xe6, 0x1c, 0xed,
+	0x07, 0xdc, 0xf6, 0x3d, 0x40, 0xf3, 0x46, 0xe1, 0xcb, 0xb0, 0xcc, 0x2c, 0xf4, 0x12, 0xde, 0x80,
+	0xb5, 0x4e, 0x57, 0xeb, 0xb7, 0x5b, 0x8a, 0xa6, 0x3c, 0x78, 0xa0, 0x34, 0x07, 0x7d, 0xf1, 0x3e,
+	0x11, 0xb3, 0x07, 0xa9, 0x0d, 0x5e, 0xfb, 0x7d, 0x16, 0x36, 0x96, 0x58, 0x82, 0x1b, 0xe1, 0xcd,
+	0x42, 0x5c, 0x76, 0xde, 0xbd, 0x88, 0xf5, 0x75, 0x56, 0x10, 0xf4, 0x88, 0x17, 0x84, 0x17, 0x91,
+	0x1b, 0xc0, 0xbc, 0x64, 0x07, 0xe6, 0xd0, 0xa4, 0x5e, 0xf8, 0x9c, 0x23, 0xae, 0x1b, 0x6b, 0x33,
+	0x5c, 0xbc, 0xe8, 0xfc, 0x1f, 0x60, 0xd7, 0xf1, 0xcd, 0xc0, 0x7c, 0x4c, 0x35, 0xd3, 0x8e, 0xde,
+	0x7e, 0xd8, 0xf5, 0x23, 0xa7, 0xa2, 0xa8, 0xa7, 0x6d, 0x07, 0x31, 0xdb, 0xa6, 0x23, 0x32, 0xc7,
+	0x66, 0xc9, 0x3c, 0xab, 0xa2, 0xa8, 0x27, 0x66, 0x5f, 0x83, 0x8a, 0xe1, 0x4c, 0x59, 0x4d, 0x26,
+	0x78, 0xec, 0xec, 0x90, 0xd4, 0xb2, 0xc0, 0x62, 0x4a, 0x58, 0x6d, 0xcf, 0x1e, 0x9d, 0x2a, 0x6a,
+	0x59, 0x60, 0x82, 0x72, 0x1d, 0xd6, 0xc8, 0x68, 0xe4, 0x31, 0xe5, 0x91, 0x22, 0x71, 0x7f, 0xa8,
+	0xc6, 0x30, 0x27, 0x6e, 0x1d, 0x42, 0x31, 0xf2, 0x03, 0x3b, 0xaa, 0x99, 0x27, 0x34, 0x57, 0x5c,
+	0x8a, 0x33, 0x3b, 0x25, 0xb5, 0x68, 0x47, 0x9d, 0xd7, 0xa0, 0x62, 0xfa, 0xda, 0xec, 0x0d, 0x3d,
+	0xb3, 0x9d, 0xd9, 0x29, 0xaa, 0x65, 0xd3, 0x8f, 0xdf, 0x1f, 0x6b, 0x5f, 0x65, 0xa0, 0x9a, 0xfe,
+	0x06, 0x80, 0x5b, 0x50, 0xb4, 0x1c, 0x9d, 0xf0, 0xd0, 0x12, 0x1f, 0xa0, 0x76, 0x9e, 0xf3, 0xd9,
+	0xa0, 0x7e, 0x14, 0xf2, 0xd5, 0x58, 0x72, 0xeb, 0x6f, 0x12, 0x14, 0x23, 0x18, 0x5f, 0x82, 0x9c,
+	0x4b, 0x82, 0x31, 0x57, 0x97, 0xdf, 0xcf, 0x20, 0x49, 0xe5, 0x6d, 0x86, 0xfb, 0x2e, 0xb1, 0x79,
+	0x08, 0x84, 0x38, 0x6b, 0xb3, 0x75, 0xb5, 0x28, 0x31, 0xf8, 0xe5, 0xc4, 0x99, 0x4c, 0xa8, 0x1d,
+	0xf8, 0xd1, 0xba, 0x86, 0x78, 0x33, 0x84, 0xf1, 0x3b, 0xb0, 0x1e, 0x78, 0xc4, 0xb4, 0x52, 0xdc,
+	0x1c, 0xe7, 0xa2, 0xa8, 0x23, 0x26, 0xef, 0xc1, 0x95, 0x48, 0xaf, 0x41, 0x03, 0xa2, 0x8f, 0xa9,
+	0x31, 0x13, 0x2a, 0xf0, 0x47, 0x88, 0xcb, 0x21, 0xa1, 0x15, 0xf6, 0x47, 0xb2, 0xb5, 0x6f, 0x24,
+	0x58, 0x8f, 0xae, 0x53, 0x46, 0xec, 0xac, 0x63, 0x00, 0x62, 0xdb, 0x4e, 0x90, 0x74, 0xd7, 0x62,
+	0x28, 0x2f, 0xc8, 0xd5, 0x1b, 0xb1, 0x90, 0x9a, 0x50, 0xb0, 0x35, 0x01, 0x98, 0xf5, 0x9c, 0xeb,
+	0xb6, 0xab, 0x50, 0x0e, 0x3f, 0xf0, 0xf0, 0xaf, 0x84, 0xe2, 0x02, 0x0e, 0x02, 0x62, 0xf7, 0x2e,
+	0xbc, 0x09, 0xf9, 0x53, 0x3a, 0x32, 0xed, 0xf0, 0xd9, 0x56, 0x34, 0xa2, 0x67, 0x92, 0x5c, 0xfc,
+	0x4c, 0xb2, 0xff, 0x5b, 0x09, 0x36, 0x74, 0x67, 0x32, 0x6f, 0xef, 0x3e, 0x9a, 0x7b, 0x05, 0xf0,
+	0x3f, 0x96, 0x3e, 0xff, 0x68, 0x64, 0x06, 0xe3, 0xe9, 0x69, 0x5d, 0x77, 0x26, 0xbb, 0x23, 0xc7,
+	0x22, 0xf6, 0x68, 0xf6, 0x99, 0x93, 0xff, 0xd1, 0xdf, 0x1d, 0x51, 0xfb, 0xdd, 0x91, 0x93, 0xf8,
+	0xe8, 0x79, 0x7f, 0xf6, 0xf7, 0xbf, 0x92, 0xf4, 0xa7, 0x4c, 0xf6, 0xa0, 0xb7, 0xff, 0xe7, 0xcc,
+	0xd6, 0x81, 0x18, 0xae, 0x17, 0xb9, 0x47, 0xa5, 0x43, 0x8b, 0xea, 0x6c, 0xca, 0xff, 0x0b, 0x00,
+	0x00, 0xff, 0xff, 0x1a, 0x28, 0x25, 0x79, 0x42, 0x1d, 0x00, 0x00,
 }
diff --git a/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go b/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go
index f34601723d..f67edc7dc2 100644
--- a/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go
+++ b/vendor/github.com/golang/protobuf/ptypes/any/any.pb.go
@@ -1,16 +1,7 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: google/protobuf/any.proto
 
-/*
-Package any is a generated protocol buffer package.
-
-It is generated from these files:
-	google/protobuf/any.proto
-
-It has these top-level messages:
-	Any
-*/
-package any
+package any // import "github.com/golang/protobuf/ptypes/any"
 
 import proto "github.com/golang/protobuf/proto"
 import fmt "fmt"
@@ -132,14 +123,36 @@ type Any struct {
 	//
 	TypeUrl string `protobuf:"bytes,1,opt,name=type_url,json=typeUrl" json:"type_url,omitempty"`
 	// Must be a valid serialized protocol buffer of the above specified type.
-	Value []byte `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
+	Value                []byte   `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
+}
+
+func (m *Any) Reset()         { *m = Any{} }
+func (m *Any) String() string { return proto.CompactTextString(m) }
+func (*Any) ProtoMessage()    {}
+func (*Any) Descriptor() ([]byte, []int) {
+	return fileDescriptor_any_744b9ca530f228db, []int{0}
+}
+func (*Any) XXX_WellKnownType() string { return "Any" }
+func (m *Any) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_Any.Unmarshal(m, b)
+}
+func (m *Any) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_Any.Marshal(b, m, deterministic)
+}
+func (dst *Any) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_Any.Merge(dst, src)
+}
+func (m *Any) XXX_Size() int {
+	return xxx_messageInfo_Any.Size(m)
+}
+func (m *Any) XXX_DiscardUnknown() {
+	xxx_messageInfo_Any.DiscardUnknown(m)
 }
 
-func (m *Any) Reset()                    { *m = Any{} }
-func (m *Any) String() string            { return proto.CompactTextString(m) }
-func (*Any) ProtoMessage()               {}
-func (*Any) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{0} }
-func (*Any) XXX_WellKnownType() string   { return "Any" }
+var xxx_messageInfo_Any proto.InternalMessageInfo
 
 func (m *Any) GetTypeUrl() string {
 	if m != nil {
@@ -159,9 +172,9 @@ func init() {
 	proto.RegisterType((*Any)(nil), "google.protobuf.Any")
 }
 
-func init() { proto.RegisterFile("google/protobuf/any.proto", fileDescriptor0) }
+func init() { proto.RegisterFile("google/protobuf/any.proto", fileDescriptor_any_744b9ca530f228db) }
 
-var fileDescriptor0 = []byte{
+var fileDescriptor_any_744b9ca530f228db = []byte{
 	// 185 bytes of a gzipped FileDescriptorProto
 	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0x92, 0x4c, 0xcf, 0xcf, 0x4f,
 	0xcf, 0x49, 0xd5, 0x2f, 0x28, 0xca, 0x2f, 0xc9, 0x4f, 0x2a, 0x4d, 0xd3, 0x4f, 0xcc, 0xab, 0xd4,
diff --git a/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go b/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go
index b2410a098e..4d75473b8b 100644
--- a/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go
+++ b/vendor/github.com/golang/protobuf/ptypes/duration/duration.pb.go
@@ -1,16 +1,7 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: google/protobuf/duration.proto
 
-/*
-Package duration is a generated protocol buffer package.
-
-It is generated from these files:
-	google/protobuf/duration.proto
-
-It has these top-level messages:
-	Duration
-*/
-package duration
+package duration // import "github.com/golang/protobuf/ptypes/duration"
 
 import proto "github.com/golang/protobuf/proto"
 import fmt "fmt"
@@ -98,14 +89,36 @@ type Duration struct {
 	// of one second or more, a non-zero value for the `nanos` field must be
 	// of the same sign as the `seconds` field. Must be from -999,999,999
 	// to +999,999,999 inclusive.
-	Nanos int32 `protobuf:"varint,2,opt,name=nanos" json:"nanos,omitempty"`
+	Nanos                int32    `protobuf:"varint,2,opt,name=nanos" json:"nanos,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
-func (m *Duration) Reset()                    { *m = Duration{} }
-func (m *Duration) String() string            { return proto.CompactTextString(m) }
-func (*Duration) ProtoMessage()               {}
-func (*Duration) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{0} }
-func (*Duration) XXX_WellKnownType() string   { return "Duration" }
+func (m *Duration) Reset()         { *m = Duration{} }
+func (m *Duration) String() string { return proto.CompactTextString(m) }
+func (*Duration) ProtoMessage()    {}
+func (*Duration) Descriptor() ([]byte, []int) {
+	return fileDescriptor_duration_e7d612259e3f0613, []int{0}
+}
+func (*Duration) XXX_WellKnownType() string { return "Duration" }
+func (m *Duration) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_Duration.Unmarshal(m, b)
+}
+func (m *Duration) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_Duration.Marshal(b, m, deterministic)
+}
+func (dst *Duration) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_Duration.Merge(dst, src)
+}
+func (m *Duration) XXX_Size() int {
+	return xxx_messageInfo_Duration.Size(m)
+}
+func (m *Duration) XXX_DiscardUnknown() {
+	xxx_messageInfo_Duration.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_Duration proto.InternalMessageInfo
 
 func (m *Duration) GetSeconds() int64 {
 	if m != nil {
@@ -125,9 +138,11 @@ func init() {
 	proto.RegisterType((*Duration)(nil), "google.protobuf.Duration")
 }
 
-func init() { proto.RegisterFile("google/protobuf/duration.proto", fileDescriptor0) }
+func init() {
+	proto.RegisterFile("google/protobuf/duration.proto", fileDescriptor_duration_e7d612259e3f0613)
+}
 
-var fileDescriptor0 = []byte{
+var fileDescriptor_duration_e7d612259e3f0613 = []byte{
 	// 190 bytes of a gzipped FileDescriptorProto
 	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0x92, 0x4b, 0xcf, 0xcf, 0x4f,
 	0xcf, 0x49, 0xd5, 0x2f, 0x28, 0xca, 0x2f, 0xc9, 0x4f, 0x2a, 0x4d, 0xd3, 0x4f, 0x29, 0x2d, 0x4a,
diff --git a/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go b/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go
index e23e4a25da..e9c2222821 100644
--- a/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go
+++ b/vendor/github.com/golang/protobuf/ptypes/timestamp/timestamp.pb.go
@@ -1,16 +1,7 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // source: google/protobuf/timestamp.proto
 
-/*
-Package timestamp is a generated protocol buffer package.
-
-It is generated from these files:
-	google/protobuf/timestamp.proto
-
-It has these top-level messages:
-	Timestamp
-*/
-package timestamp
+package timestamp // import "github.com/golang/protobuf/ptypes/timestamp"
 
 import proto "github.com/golang/protobuf/proto"
 import fmt "fmt"
@@ -101,7 +92,7 @@ const _ = proto.ProtoPackageIsVersion2 // please upgrade the proto package
 // to this format using [`strftime`](https://docs.python.org/2/library/time.html#time.strftime)
 // with the time format spec '%Y-%m-%dT%H:%M:%S.%fZ'. Likewise, in Java, one
 // can use the Joda Time's [`ISODateTimeFormat.dateTime()`](
-// http://joda-time.sourceforge.net/apidocs/org/joda/time/format/ISODateTimeFormat.html#dateTime())
+// http://www.joda.org/joda-time/apidocs/org/joda/time/format/ISODateTimeFormat.html#dateTime--)
 // to obtain a formatter capable of generating timestamps in this format.
 //
 //
@@ -114,14 +105,36 @@ type Timestamp struct {
 	// second values with fractions must still have non-negative nanos values
 	// that count forward in time. Must be from 0 to 999,999,999
 	// inclusive.
-	Nanos int32 `protobuf:"varint,2,opt,name=nanos" json:"nanos,omitempty"`
+	Nanos                int32    `protobuf:"varint,2,opt,name=nanos" json:"nanos,omitempty"`
+	XXX_NoUnkeyedLiteral struct{} `json:"-"`
+	XXX_unrecognized     []byte   `json:"-"`
+	XXX_sizecache        int32    `json:"-"`
 }
 
-func (m *Timestamp) Reset()                    { *m = Timestamp{} }
-func (m *Timestamp) String() string            { return proto.CompactTextString(m) }
-func (*Timestamp) ProtoMessage()               {}
-func (*Timestamp) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{0} }
-func (*Timestamp) XXX_WellKnownType() string   { return "Timestamp" }
+func (m *Timestamp) Reset()         { *m = Timestamp{} }
+func (m *Timestamp) String() string { return proto.CompactTextString(m) }
+func (*Timestamp) ProtoMessage()    {}
+func (*Timestamp) Descriptor() ([]byte, []int) {
+	return fileDescriptor_timestamp_b826e8e5fba671a8, []int{0}
+}
+func (*Timestamp) XXX_WellKnownType() string { return "Timestamp" }
+func (m *Timestamp) XXX_Unmarshal(b []byte) error {
+	return xxx_messageInfo_Timestamp.Unmarshal(m, b)
+}
+func (m *Timestamp) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) {
+	return xxx_messageInfo_Timestamp.Marshal(b, m, deterministic)
+}
+func (dst *Timestamp) XXX_Merge(src proto.Message) {
+	xxx_messageInfo_Timestamp.Merge(dst, src)
+}
+func (m *Timestamp) XXX_Size() int {
+	return xxx_messageInfo_Timestamp.Size(m)
+}
+func (m *Timestamp) XXX_DiscardUnknown() {
+	xxx_messageInfo_Timestamp.DiscardUnknown(m)
+}
+
+var xxx_messageInfo_Timestamp proto.InternalMessageInfo
 
 func (m *Timestamp) GetSeconds() int64 {
 	if m != nil {
@@ -141,9 +154,11 @@ func init() {
 	proto.RegisterType((*Timestamp)(nil), "google.protobuf.Timestamp")
 }
 
-func init() { proto.RegisterFile("google/protobuf/timestamp.proto", fileDescriptor0) }
+func init() {
+	proto.RegisterFile("google/protobuf/timestamp.proto", fileDescriptor_timestamp_b826e8e5fba671a8)
+}
 
-var fileDescriptor0 = []byte{
+var fileDescriptor_timestamp_b826e8e5fba671a8 = []byte{
 	// 191 bytes of a gzipped FileDescriptorProto
 	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0x92, 0x4f, 0xcf, 0xcf, 0x4f,
 	0xcf, 0x49, 0xd5, 0x2f, 0x28, 0xca, 0x2f, 0xc9, 0x4f, 0x2a, 0x4d, 0xd3, 0x2f, 0xc9, 0xcc, 0x4d,
diff --git a/vendor/github.com/google/go-containerregistry/authn/keychain.go b/vendor/github.com/google/go-containerregistry/authn/keychain.go
index c7c6a15074..887847a270 100644
--- a/vendor/github.com/google/go-containerregistry/authn/keychain.go
+++ b/vendor/github.com/google/go-containerregistry/authn/keychain.go
@@ -16,12 +16,13 @@ package authn
 
 import (
 	"encoding/json"
+	"errors"
 	"fmt"
 	"io/ioutil"
 	"log"
 	"os"
-	"os/user"
 	"path"
+	"runtime"
 
 	"github.com/google/go-containerregistry/name"
 )
@@ -41,11 +42,22 @@ func configDir() (string, error) {
 	if dc := os.Getenv("DOCKER_CONFIG"); dc != "" {
 		return dc, nil
 	}
-	usr, err := user.Current()
-	if err != nil {
-		return "", err
+	if h := dockerUserHomeDir(); h != "" {
+		return path.Join(dockerUserHomeDir(), ".docker"), nil
+	}
+	return "", errNoHomeDir
+}
+
+var errNoHomeDir = errors.New("could not determine home directory")
+
+// dockerUserHomeDir returns the current user's home directory, as interpreted by Docker.
+func dockerUserHomeDir() string {
+	if runtime.GOOS == "windows" {
+		// Docker specifically expands "%USERPROFILE%" on Windows,
+		return os.Getenv("USERPROFILE")
 	}
-	return path.Join(usr.HomeDir, ".docker"), nil
+	// Docker defaults to "$HOME" Linux and OSX.
+	return os.Getenv("HOME")
 }
 
 // authEntry is a helper for JSON parsing an "auth" entry of config.json
@@ -135,6 +147,6 @@ func (dk *defaultKeychain) Resolve(reg name.Registry) (Authenticator, error) {
 		}
 	}
 
-	log.Printf("No matching credentials found for %v, falling back on anoynmous", reg)
+	log.Printf("No matching credentials found for %v, falling back on anonymous", reg)
 	return Anonymous, nil
 }
diff --git a/vendor/github.com/google/go-containerregistry/name/tag.go b/vendor/github.com/google/go-containerregistry/name/tag.go
index cb0e70b177..b8375e1f9b 100644
--- a/vendor/github.com/google/go-containerregistry/name/tag.go
+++ b/vendor/github.com/google/go-containerregistry/name/tag.go
@@ -76,7 +76,9 @@ func NewTag(name string, strict Strictness) (Tag, error) {
 	tag := ""
 
 	// Split on ":"
-	if parts := strings.Split(name, tagDelim); len(parts) >= 2 {
+	parts := strings.Split(name, tagDelim)
+	// Verify that we aren't confusing a tag for a hostname w/ port for the purposes of weak validation.
+	if len(parts) > 1 && !strings.Contains(parts[len(parts)-1], regRepoDelimiter) {
 		base = strings.Join(parts[:len(parts)-1], tagDelim)
 		tag = parts[len(parts)-1]
 	}
diff --git a/vendor/github.com/google/go-containerregistry/v1/mutate/doc.go b/vendor/github.com/google/go-containerregistry/v1/mutate/doc.go
new file mode 100644
index 0000000000..dfbd9951e0
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/mutate/doc.go
@@ -0,0 +1,16 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package mutate provides facilities for mutating v1.Images of any kind.
+package mutate
diff --git a/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
index bd8d4258a9..46f4f58439 100644
--- a/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
+++ b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
@@ -15,14 +15,21 @@
 package mutate
 
 import (
+	"archive/tar"
 	"encoding/json"
 	"errors"
+	"fmt"
+	"io"
+	"path/filepath"
+	"strings"
 
 	"github.com/google/go-containerregistry/v1"
 	"github.com/google/go-containerregistry/v1/partial"
 	"github.com/google/go-containerregistry/v1/types"
 )
 
+const whiteoutPrefix = ".wh."
+
 // Addendum contains layers and history to be appended
 // to a base image
 type Addendum struct {
@@ -148,7 +155,7 @@ type image struct {
 }
 
 // Layers returns the ordered collection of filesystem layers that comprise this image.
-// The order of the list is most-recent first, and oldest base layer last.
+// The order of the list is oldest/base layer first, and most-recent/top layer last.
 func (i *image) Layers() ([]v1.Layer, error) {
 	diffIDs, err := partial.DiffIDs(i)
 	if err != nil {
@@ -231,3 +238,107 @@ func validate(adds []Addendum) error {
 	}
 	return nil
 }
+
+// Extract takes an image and returns an io.ReadCloser containing the image's
+// flattened filesystem.
+//
+// Callers can read the filesystem contents by passing the reader to
+// tar.NewReader, or io.Copy it directly to some output.
+//
+// If a caller doesn't read the full contents, they should Close it to free up
+// resources used during extraction.
+//
+// Adapted from https://github.com/google/containerregistry/blob/master/client/v2_2/docker_image_.py#L731
+func Extract(img v1.Image) io.ReadCloser {
+	pr, pw := io.Pipe()
+
+	go func() {
+		// Close the writer with any errors encountered during
+		// extraction. These errors will be returned by the reader end
+		// on subsequent reads. If err == nil, the reader will return
+		// EOF.
+		pw.CloseWithError(extract(img, pw))
+	}()
+
+	return pr
+}
+
+func extract(img v1.Image, w io.Writer) error {
+	tarWriter := tar.NewWriter(w)
+	defer tarWriter.Close()
+
+	fileMap := map[string]bool{}
+
+	layers, err := img.Layers()
+	if err != nil {
+		return fmt.Errorf("retrieving image layers: %v", err)
+	}
+	// we iterate through the layers in reverse order because it makes handling
+	// whiteout layers more efficient, since we can just keep track of the removed
+	// files as we see .wh. layers and ignore those in previous layers.
+	for i := len(layers) - 1; i >= 0; i-- {
+		layer := layers[i]
+		layerReader, err := layer.Uncompressed()
+		if err != nil {
+			return fmt.Errorf("reading layer contents: %v", err)
+		}
+		tarReader := tar.NewReader(layerReader)
+		for {
+			header, err := tarReader.Next()
+			if err == io.EOF {
+				break
+			}
+			if err != nil {
+				return fmt.Errorf("reading tar: %v", err)
+			}
+
+			basename := filepath.Base(header.Name)
+			dirname := filepath.Dir(header.Name)
+			tombstone := strings.HasPrefix(basename, whiteoutPrefix)
+			if tombstone {
+				basename = basename[len(whiteoutPrefix):]
+			}
+
+			// check if we have seen value before
+			name := filepath.Join(dirname, basename)
+			if _, ok := fileMap[name]; ok {
+				continue
+			}
+
+			// check for a whited out parent directory
+			if inWhiteoutDir(fileMap, name) {
+				continue
+			}
+
+			// mark file as handled. non-directory implicitly tombstones
+			// any entries with a matching (or child) name
+			fileMap[name] = tombstone || !(header.Typeflag == tar.TypeDir)
+			if !tombstone {
+				tarWriter.WriteHeader(header)
+				if header.Size > 0 {
+					if _, err := io.Copy(tarWriter, tarReader); err != nil {
+						return err
+					}
+				}
+			}
+		}
+	}
+	return nil
+}
+
+func inWhiteoutDir(fileMap map[string]bool, file string) bool {
+	for {
+		if file == "" {
+			break
+		}
+		dirname := filepath.Dir(file)
+		if file == dirname {
+			break
+		}
+		if val, ok := fileMap[dirname]; ok && val {
+			return true
+		}
+		file = dirname
+	}
+	return false
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/mutate/rebase.go b/vendor/github.com/google/go-containerregistry/v1/mutate/rebase.go
new file mode 100644
index 0000000000..7365fa57ab
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/mutate/rebase.go
@@ -0,0 +1,100 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package mutate
+
+import (
+	"fmt"
+
+	"github.com/google/go-containerregistry/v1"
+	"github.com/google/go-containerregistry/v1/empty"
+)
+
+type RebaseOptions struct {
+	// TODO(jasonhall): Rebase seam hint.
+}
+
+func Rebase(orig, oldBase, newBase v1.Image, opts *RebaseOptions) (v1.Image, error) {
+	// Verify that oldBase's layers are present in orig, otherwise orig is
+	// not based on oldBase at all.
+	origLayers, err := orig.Layers()
+	if err != nil {
+		return nil, fmt.Errorf("failed to get layers for original: %v", err)
+	}
+	oldBaseLayers, err := oldBase.Layers()
+	if err != nil {
+		return nil, err
+	}
+	if len(oldBaseLayers) > len(origLayers) {
+		return nil, fmt.Errorf("image %q is not based on %q (too few layers)", orig, oldBase)
+	}
+	for i, l := range oldBaseLayers {
+		oldLayerDigest, err := l.Digest()
+		if err != nil {
+			return nil, fmt.Errorf("failed to get digest of layer %d of %q: %v", i, oldBase, err)
+		}
+		origLayerDigest, err := origLayers[i].Digest()
+		if err != nil {
+			return nil, fmt.Errorf("failed to get digest of layer %d of %q: %v", i, orig, err)
+		}
+		if oldLayerDigest != origLayerDigest {
+			return nil, fmt.Errorf("image %q is not based on %q (layer %d mismatch)", orig, oldBase, i)
+		}
+	}
+
+	origConfig, err := orig.ConfigFile()
+	if err != nil {
+		return nil, fmt.Errorf("failed to get config for original: %v", err)
+	}
+
+	// Stitch together an image that contains:
+	// - original image's config
+	// - new base image's layers + top of original image's layers
+	// - new base image's history + top of original image's history
+	rebasedImage, err := Config(empty.Image, *origConfig.Config.DeepCopy())
+	if err != nil {
+		return nil, fmt.Errorf("failed to create empty image with original config: %v", err)
+	}
+	// Get new base layers and config for history.
+	newBaseLayers, err := newBase.Layers()
+	if err != nil {
+		return nil, fmt.Errorf("could not get new base layers for new base: %v", err)
+	}
+	newConfig, err := newBase.ConfigFile()
+	if err != nil {
+		return nil, fmt.Errorf("could not get config for new base: %v", err)
+	}
+	// Add new base layers.
+	for i := range newBaseLayers {
+		rebasedImage, err = Append(rebasedImage, Addendum{
+			Layer:   newBaseLayers[i],
+			History: newConfig.History[i],
+		})
+		if err != nil {
+			return nil, fmt.Errorf("failed to append layer %d of new base layers", i)
+		}
+	}
+	// Add original layers above the old base.
+	start := len(oldBaseLayers)
+	for i := range origLayers[start:] {
+		rebasedImage, err = Append(rebasedImage, Addendum{
+			Layer:   origLayers[start+i],
+			History: origConfig.History[start+i],
+		})
+		if err != nil {
+			return nil, fmt.Errorf("failed to append layer %d of original layers", i)
+		}
+	}
+	return rebasedImage, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/partial/with.go b/vendor/github.com/google/go-containerregistry/v1/partial/with.go
index 0557449afd..f97dedbb59 100644
--- a/vendor/github.com/google/go-containerregistry/v1/partial/with.go
+++ b/vendor/github.com/google/go-containerregistry/v1/partial/with.go
@@ -110,11 +110,7 @@ func DiffIDs(i WithConfigFile) ([]v1.Hash, error) {
 	if err != nil {
 		return nil, err
 	}
-	dids := make([]v1.Hash, len(cfg.RootFS.DiffIDs))
-	for i, did := range cfg.RootFS.DiffIDs {
-		dids[len(dids)-i-1] = did
-	}
-	return dids, nil
+	return cfg.RootFS.DiffIDs, nil
 }
 
 // RawConfigFile is a helper for implementing v1.Image
diff --git a/vendor/github.com/google/go-containerregistry/v1/random/image.go b/vendor/github.com/google/go-containerregistry/v1/random/image.go
index 03b3c4384b..09047558be 100644
--- a/vendor/github.com/google/go-containerregistry/v1/random/image.go
+++ b/vendor/github.com/google/go-containerregistry/v1/random/image.go
@@ -19,6 +19,7 @@ import (
 	"crypto/rand"
 	"fmt"
 	"io"
+	"time"
 
 	"github.com/google/go-containerregistry/v1"
 	"github.com/google/go-containerregistry/v1/partial"
@@ -71,6 +72,15 @@ func Image(byteSize, layers int64) (v1.Image, error) {
 		cfg.RootFS.DiffIDs = append(cfg.RootFS.DiffIDs, k)
 	}
 
+	for i := int64(0); i < layers; i++ {
+		cfg.History = append(cfg.History, v1.History{
+			Author:    "random.Image",
+			Comment:   fmt.Sprintf("this is a random history %d", i),
+			CreatedBy: "random",
+			Created:   v1.Time{time.Now()},
+		})
+	}
+
 	return partial.UncompressedToImage(&image{
 		config: cfg,
 		layers: layerz,
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/delete.go b/vendor/github.com/google/go-containerregistry/v1/remote/delete.go
index 48f2c44a8f..ce7d62b9ef 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/delete.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/delete.go
@@ -34,7 +34,8 @@ type DeleteOptions struct {
 
 // Delete removes the specified image reference from the remote registry.
 func Delete(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, do DeleteOptions) error {
-	tr, err := transport.New(ref, auth, t, transport.DeleteScope)
+	scopes := []string{ref.Scope(transport.DeleteScope)}
+	tr, err := transport.New(ref.Context().Registry, auth, t, scopes)
 	if err != nil {
 		return err
 	}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/image.go b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
index 52e9a7e763..42801afe7b 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/image.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
@@ -47,7 +47,8 @@ var _ partial.CompressedImageCore = (*remoteImage)(nil)
 
 // Image accesses a given image reference over the provided transport, with the provided authentication.
 func Image(ref name.Reference, auth authn.Authenticator, t http.RoundTripper) (v1.Image, error) {
-	tr, err := transport.New(ref, auth, t, transport.PullScope)
+	scopes := []string{ref.Scope(transport.PullScope)}
+	tr, err := transport.New(ref.Context().Registry, auth, t, scopes)
 	if err != nil {
 		return nil, err
 	}
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
index 82a96c507f..f69dd9a7b3 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/bearer.go
@@ -39,7 +39,7 @@ type bearerTransport struct {
 	realm string
 	// See https://docs.docker.com/registry/spec/auth/token/
 	service string
-	scope   string
+	scopes  []string
 }
 
 var _ http.RoundTripper = (*bearerTransport)(nil)
@@ -77,7 +77,7 @@ func (bt *bearerTransport) refresh() error {
 	client := http.Client{Transport: b}
 
 	u.RawQuery = url.Values{
-		"scope":   []string{bt.scope},
+		"scope":   bt.scopes,
 		"service": []string{bt.service},
 	}.Encode()
 
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
index 7f5a8bf0a5..c3b56f7a41 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/scope.go
@@ -14,14 +14,11 @@
 
 package transport
 
-// Scope is an enumeration of the supported scopes to pass a transport.
-type Scope string
-
-// Scopes suitable to pass to New()
+// Scopes suitable to qualify each Repository
 const (
-	PullScope Scope = "pull"
-	PushScope Scope = "push,pull"
+	PullScope string = "pull"
+	PushScope string = "push,pull"
 	// For now DELETE is PUSH, which is the read/write ACL.
-	DeleteScope  Scope = PushScope
-	CatalogScope Scope = "catalog"
+	DeleteScope  string = PushScope
+	CatalogScope string = "catalog"
 )
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go b/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
index 9ef17ac1c2..fd1bc5065d 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/transport/transport.go
@@ -27,9 +27,9 @@ const (
 )
 
 // New returns a new RoundTripper based on the provided RoundTripper that has been
-// setup to authenticate with the remote registry hosting "ref", in the capacity
-// laid out by the specified Scope.
-func New(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, a Scope) (http.RoundTripper, error) {
+// setup to authenticate with the remote registry "reg", in the capacity
+// laid out by the specified scopes.
+func New(reg name.Registry, auth authn.Authenticator, t http.RoundTripper, scopes []string) (http.RoundTripper, error) {
 	// The handshake:
 	//  1. Use "t" to ping() the registry for the authentication challenge.
 	//
@@ -44,7 +44,7 @@ func New(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, a Sc
 
 	// First we ping the registry to determine the parameters of the authentication handshake
 	// (if one is even necessary).
-	pr, err := ping(ref.Context().Registry, t)
+	pr, err := ping(reg, t)
 	if err != nil {
 		return nil, err
 	}
@@ -53,7 +53,7 @@ func New(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, a Sc
 	case anonymous:
 		return t, nil
 	case basic:
-		return &basicTransport{inner: t, auth: auth, target: ref.Context().RegistryStr()}, nil
+		return &basicTransport{inner: t, auth: auth, target: reg.RegistryStr()}, nil
 	case bearer:
 		// We require the realm, which tells us where to send our Basic auth to turn it into Bearer auth.
 		realm, ok := pr.parameters["realm"]
@@ -64,15 +64,15 @@ func New(ref name.Reference, auth authn.Authenticator, t http.RoundTripper, a Sc
 		if !ok {
 			// If the service parameter is not specified, then default it to the registry
 			// with which we are talking.
-			service = ref.Context().Registry.String()
+			service = reg.String()
 		}
 		bt := &bearerTransport{
 			inner:    t,
 			basic:    auth,
 			realm:    realm,
-			registry: ref.Context().Registry,
+			registry: reg,
 			service:  service,
-			scope:    ref.Scope(string(a)),
+			scopes:   scopes,
 		}
 		if err := bt.refresh(); err != nil {
 			return nil, err
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/write.go b/vendor/github.com/google/go-containerregistry/v1/remote/write.go
index fe8eb69c6f..966271fac1 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/write.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/write.go
@@ -39,7 +39,13 @@ type WriteOptions struct {
 // Write pushes the provided img to the specified image reference.
 func Write(ref name.Reference, img v1.Image, auth authn.Authenticator, t http.RoundTripper,
 	wo WriteOptions) error {
-	tr, err := transport.New(ref, auth, t, transport.PushScope)
+
+	scopes := []string{ref.Scope(transport.PushScope)}
+	for _, mp := range wo.MountPaths {
+		scopes = append(scopes, mp.Scope(transport.PullScope))
+	}
+
+	tr, err := transport.New(ref.Context().Registry, auth, t, scopes)
 	if err != nil {
 		return err
 	}
@@ -228,7 +234,7 @@ func (w *writer) uploadOne(h v1.Hash) error {
 	if err != nil {
 		return err
 	} else if mounted {
-		log.Printf("mounted %v", h)
+		log.Printf("mounted blob: %v", h)
 		return nil
 	}
 
@@ -240,7 +246,7 @@ func (w *writer) uploadOne(h v1.Hash) error {
 	if err := w.commitBlob(h, location); err != nil {
 		return err
 	}
-	log.Printf("pushed %v", h)
+	log.Printf("pushed blob %v", h)
 	return nil
 }
 
@@ -273,8 +279,14 @@ func (w *writer) commitImage() error {
 	if err := checkError(resp, http.StatusOK, http.StatusCreated, http.StatusAccepted); err != nil {
 		return err
 	}
+
+	digest, err := w.img.Digest()
+	if err != nil {
+		return err
+	}
+
 	// The image was successfully pushed!
-	log.Printf("pushed %v", w.ref)
+	fmt.Printf("%v: digest: %v size: %d\n", w.ref, digest, len(raw))
 	return nil
 }
 
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go b/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
index ba8d8b339c..3657dd9604 100644
--- a/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/layer.go
@@ -109,7 +109,7 @@ func computeDigest(opener Opener, compressed bool) (v1.Hash, int64, error) {
 		return v1.Hash{}, 0, err
 	}
 	defer rc.Close()
-	
+
 	if compressed {
 		return v1.SHA256(rc)
 	}
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/write.go b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
index cd37ed70dd..bebf3018db 100644
--- a/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
@@ -18,6 +18,7 @@ import (
 	"archive/tar"
 	"bytes"
 	"encoding/json"
+	"fmt"
 	"io"
 	"os"
 
@@ -53,11 +54,7 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 	if err != nil {
 		return err
 	}
-	cfg, err := img.ConfigFile()
-	if err != nil {
-		return err
-	}
-	cfgBlob, err := json.Marshal(cfg)
+	cfgBlob, err := img.RawConfigFile()
 	if err != nil {
 		return err
 	}
@@ -70,14 +67,24 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 	if err != nil {
 		return err
 	}
-	digests := make([]string, len(layers))
+	layerFiles := make([]string, len(layers))
 	for i, l := range layers {
 		d, err := l.Digest()
 		if err != nil {
 			return err
 		}
 
-		digests[i] = d.String()
+		// Munge the file name to appease ancient technology.
+		//
+		// tar assumes anything with a colon is a remote tape drive:
+		// https://www.gnu.org/software/tar/manual/html_section/tar_45.html
+		// Drop the algorithm prefix, e.g. "sha256:"
+		hex := d.Hex
+
+		// gunzip expects certain file extensions:
+		// https://www.gnu.org/software/gzip/manual/html_node/Overview.html
+		layerFiles[i] = fmt.Sprintf("%s.tar.gz", hex)
+
 		r, err := l.Compressed()
 		if err != nil {
 			return err
@@ -87,9 +94,10 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 			return err
 		}
 
-		if err := writeFile(tf, d.String(), r, blobSize); err != nil {
+		if err := writeFile(tf, layerFiles[i], r, blobSize); err != nil {
 			return err
 		}
+
 	}
 
 	// Generate the tar descriptor and write it.
@@ -97,7 +105,7 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 		singleImageTarDescriptor{
 			Config:   cfgName.String(),
 			RepoTags: []string{tag.String()},
-			Layers:   digests,
+			Layers:   layerFiles,
 		},
 	}
 	tdBytes, err := json.Marshal(td)
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/LICENSE b/vendor/github.com/grpc-ecosystem/grpc-opentracing/LICENSE
new file mode 100644
index 0000000000..abe5fe170b
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/LICENSE
@@ -0,0 +1,27 @@
+Copyright (c) 2016, gRPC Ecosystem
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+* Redistributions of source code must retain the above copyright notice, this
+  list of conditions and the following disclaimer.
+
+* Redistributions in binary form must reproduce the above copyright notice,
+  this list of conditions and the following disclaimer in the documentation
+  and/or other materials provided with the distribution.
+
+* Neither the name of grpc-opentracing nor the names of its
+  contributors may be used to endorse or promote products derived from
+  this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/PATENTS b/vendor/github.com/grpc-ecosystem/grpc-opentracing/PATENTS
new file mode 100644
index 0000000000..5cfe0175ee
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/PATENTS
@@ -0,0 +1,23 @@
+Additional IP Rights Grant (Patents)
+
+"This implementation" means the copyrightable works distributed by
+Google as part of the GRPC project.
+
+Google hereby grants to You a perpetual, worldwide, non-exclusive,
+no-charge, royalty-free, irrevocable (except as stated in this section)
+patent license to make, have made, use, offer to sell, sell, import,
+transfer and otherwise run, modify and propagate the contents of this
+implementation of GRPC, where such license applies only to those patent
+claims, both currently owned or controlled by Google and acquired in
+the future, licensable by Google that are necessarily infringed by this
+implementation of GRPC.  This grant does not include claims that would be
+infringed only as a consequence of further modification of this
+implementation.  If you or your agent or exclusive licensee institute or
+order or agree to the institution of patent litigation against any
+entity (including a cross-claim or counterclaim in a lawsuit) alleging
+that this implementation of GRPC or any code incorporated within this
+implementation of GRPC constitutes direct or contributory patent
+infringement, or inducement of patent infringement, then any patent
+rights granted to you under this License for this implementation of GRPC
+shall terminate as of the date such litigation is filed.
+Status API Training Shop Blog About
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/client.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/client.go
new file mode 100644
index 0000000000..3414e55cb1
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/client.go
@@ -0,0 +1,239 @@
+package otgrpc
+
+import (
+	"github.com/opentracing/opentracing-go"
+	"github.com/opentracing/opentracing-go/ext"
+	"github.com/opentracing/opentracing-go/log"
+	"golang.org/x/net/context"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
+	"io"
+	"runtime"
+	"sync/atomic"
+)
+
+// OpenTracingClientInterceptor returns a grpc.UnaryClientInterceptor suitable
+// for use in a grpc.Dial call.
+//
+// For example:
+//
+//     conn, err := grpc.Dial(
+//         address,
+//         ...,  // (existing DialOptions)
+//         grpc.WithUnaryInterceptor(otgrpc.OpenTracingClientInterceptor(tracer)))
+//
+// All gRPC client spans will inject the OpenTracing SpanContext into the gRPC
+// metadata; they will also look in the context.Context for an active
+// in-process parent Span and establish a ChildOf reference if such a parent
+// Span could be found.
+func OpenTracingClientInterceptor(tracer opentracing.Tracer, optFuncs ...Option) grpc.UnaryClientInterceptor {
+	otgrpcOpts := newOptions()
+	otgrpcOpts.apply(optFuncs...)
+	return func(
+		ctx context.Context,
+		method string,
+		req, resp interface{},
+		cc *grpc.ClientConn,
+		invoker grpc.UnaryInvoker,
+		opts ...grpc.CallOption,
+	) error {
+		var err error
+		var parentCtx opentracing.SpanContext
+		if parent := opentracing.SpanFromContext(ctx); parent != nil {
+			parentCtx = parent.Context()
+		}
+		if otgrpcOpts.inclusionFunc != nil &&
+			!otgrpcOpts.inclusionFunc(parentCtx, method, req, resp) {
+			return invoker(ctx, method, req, resp, cc, opts...)
+		}
+		clientSpan := tracer.StartSpan(
+			method,
+			opentracing.ChildOf(parentCtx),
+			ext.SpanKindRPCClient,
+			gRPCComponentTag,
+		)
+		defer clientSpan.Finish()
+		ctx = injectSpanContext(ctx, tracer, clientSpan)
+		if otgrpcOpts.logPayloads {
+			clientSpan.LogFields(log.Object("gRPC request", req))
+		}
+		err = invoker(ctx, method, req, resp, cc, opts...)
+		if err == nil {
+			if otgrpcOpts.logPayloads {
+				clientSpan.LogFields(log.Object("gRPC response", resp))
+			}
+		} else {
+			SetSpanTags(clientSpan, err, true)
+			clientSpan.LogFields(log.String("event", "error"), log.String("message", err.Error()))
+		}
+		if otgrpcOpts.decorator != nil {
+			otgrpcOpts.decorator(clientSpan, method, req, resp, err)
+		}
+		return err
+	}
+}
+
+// OpenTracingStreamClientInterceptor returns a grpc.StreamClientInterceptor suitable
+// for use in a grpc.Dial call. The interceptor instruments streaming RPCs by creating
+// a single span to correspond to the lifetime of the RPC's stream.
+//
+// For example:
+//
+//     conn, err := grpc.Dial(
+//         address,
+//         ...,  // (existing DialOptions)
+//         grpc.WithStreamInterceptor(otgrpc.OpenTracingStreamClientInterceptor(tracer)))
+//
+// All gRPC client spans will inject the OpenTracing SpanContext into the gRPC
+// metadata; they will also look in the context.Context for an active
+// in-process parent Span and establish a ChildOf reference if such a parent
+// Span could be found.
+func OpenTracingStreamClientInterceptor(tracer opentracing.Tracer, optFuncs ...Option) grpc.StreamClientInterceptor {
+	otgrpcOpts := newOptions()
+	otgrpcOpts.apply(optFuncs...)
+	return func(
+		ctx context.Context,
+		desc *grpc.StreamDesc,
+		cc *grpc.ClientConn,
+		method string,
+		streamer grpc.Streamer,
+		opts ...grpc.CallOption,
+	) (grpc.ClientStream, error) {
+		var err error
+		var parentCtx opentracing.SpanContext
+		if parent := opentracing.SpanFromContext(ctx); parent != nil {
+			parentCtx = parent.Context()
+		}
+		if otgrpcOpts.inclusionFunc != nil &&
+			!otgrpcOpts.inclusionFunc(parentCtx, method, nil, nil) {
+			return streamer(ctx, desc, cc, method, opts...)
+		}
+
+		clientSpan := tracer.StartSpan(
+			method,
+			opentracing.ChildOf(parentCtx),
+			ext.SpanKindRPCClient,
+			gRPCComponentTag,
+		)
+		ctx = injectSpanContext(ctx, tracer, clientSpan)
+		cs, err := streamer(ctx, desc, cc, method, opts...)
+		if err != nil {
+			clientSpan.LogFields(log.String("event", "error"), log.String("message", err.Error()))
+			SetSpanTags(clientSpan, err, true)
+			clientSpan.Finish()
+			return cs, err
+		}
+		return newOpenTracingClientStream(cs, method, desc, clientSpan, otgrpcOpts), nil
+	}
+}
+
+func newOpenTracingClientStream(cs grpc.ClientStream, method string, desc *grpc.StreamDesc, clientSpan opentracing.Span, otgrpcOpts *options) grpc.ClientStream {
+	finishChan := make(chan struct{})
+
+	isFinished := new(int32)
+	*isFinished = 0
+	finishFunc := func(err error) {
+		// The current OpenTracing specification forbids finishing a span more than
+		// once. Since we have multiple code paths that could concurrently call
+		// `finishFunc`, we need to add some sort of synchronization to guard against
+		// multiple finishing.
+		if !atomic.CompareAndSwapInt32(isFinished, 0, 1) {
+			return
+		}
+		close(finishChan)
+		defer clientSpan.Finish()
+		if err != nil {
+			clientSpan.LogFields(log.String("event", "error"), log.String("message", err.Error()))
+			SetSpanTags(clientSpan, err, true)
+		}
+		if otgrpcOpts.decorator != nil {
+			otgrpcOpts.decorator(clientSpan, method, nil, nil, err)
+		}
+	}
+	go func() {
+		select {
+		case <-finishChan:
+			// The client span is being finished by another code path; hence, no
+			// action is necessary.
+		case <-cs.Context().Done():
+			finishFunc(cs.Context().Err())
+		}
+	}()
+	otcs := &openTracingClientStream{
+		ClientStream: cs,
+		desc:         desc,
+		finishFunc:   finishFunc,
+	}
+
+	// The `ClientStream` interface allows one to omit calling `Recv` if it's
+	// known that the result will be `io.EOF`. See
+	// http://stackoverflow.com/q/42915337
+	// In such cases, there's nothing that triggers the span to finish. We,
+	// therefore, set a finalizer so that the span and the context goroutine will
+	// at least be cleaned up when the garbage collector is run.
+	runtime.SetFinalizer(otcs, func(otcs *openTracingClientStream) {
+		otcs.finishFunc(nil)
+	})
+	return otcs
+}
+
+type openTracingClientStream struct {
+	grpc.ClientStream
+	desc       *grpc.StreamDesc
+	finishFunc func(error)
+}
+
+func (cs *openTracingClientStream) Header() (metadata.MD, error) {
+	md, err := cs.ClientStream.Header()
+	if err != nil {
+		cs.finishFunc(err)
+	}
+	return md, err
+}
+
+func (cs *openTracingClientStream) SendMsg(m interface{}) error {
+	err := cs.ClientStream.SendMsg(m)
+	if err != nil {
+		cs.finishFunc(err)
+	}
+	return err
+}
+
+func (cs *openTracingClientStream) RecvMsg(m interface{}) error {
+	err := cs.ClientStream.RecvMsg(m)
+	if err == io.EOF {
+		cs.finishFunc(nil)
+		return err
+	} else if err != nil {
+		cs.finishFunc(err)
+		return err
+	}
+	if !cs.desc.ServerStreams {
+		cs.finishFunc(nil)
+	}
+	return err
+}
+
+func (cs *openTracingClientStream) CloseSend() error {
+	err := cs.ClientStream.CloseSend()
+	if err != nil {
+		cs.finishFunc(err)
+	}
+	return err
+}
+
+func injectSpanContext(ctx context.Context, tracer opentracing.Tracer, clientSpan opentracing.Span) context.Context {
+	md, ok := metadata.FromOutgoingContext(ctx)
+	if !ok {
+		md = metadata.New(nil)
+	} else {
+		md = md.Copy()
+	}
+	mdWriter := metadataReaderWriter{md}
+	err := tracer.Inject(clientSpan.Context(), opentracing.HTTPHeaders, mdWriter)
+	// We have no better place to record an error than the Span itself :-/
+	if err != nil {
+		clientSpan.LogFields(log.String("event", "Tracer.Inject() failed"), log.Error(err))
+	}
+	return metadata.NewOutgoingContext(ctx, md)
+}
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/errors.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/errors.go
new file mode 100644
index 0000000000..41a6346f25
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/errors.go
@@ -0,0 +1,69 @@
+package otgrpc
+
+import (
+	"github.com/opentracing/opentracing-go"
+	"github.com/opentracing/opentracing-go/ext"
+	"google.golang.org/grpc/codes"
+	"google.golang.org/grpc/status"
+)
+
+// A Class is a set of types of outcomes (including errors) that will often
+// be handled in the same way.
+type Class string
+
+const (
+	Unknown Class = "0xx"
+	// Success represents outcomes that achieved the desired results.
+	Success Class = "2xx"
+	// ClientError represents errors that were the client's fault.
+	ClientError Class = "4xx"
+	// ServerError represents errors that were the server's fault.
+	ServerError Class = "5xx"
+)
+
+// ErrorClass returns the class of the given error
+func ErrorClass(err error) Class {
+	if s, ok := status.FromError(err); ok {
+		switch s.Code() {
+		// Success or "success"
+		case codes.OK, codes.Canceled:
+			return Success
+
+		// Client errors
+		case codes.InvalidArgument, codes.NotFound, codes.AlreadyExists,
+			codes.PermissionDenied, codes.Unauthenticated, codes.FailedPrecondition,
+			codes.OutOfRange:
+			return ClientError
+
+		// Server errors
+		case codes.DeadlineExceeded, codes.ResourceExhausted, codes.Aborted,
+			codes.Unimplemented, codes.Internal, codes.Unavailable, codes.DataLoss:
+			return ServerError
+
+		// Not sure
+		case codes.Unknown:
+			fallthrough
+		default:
+			return Unknown
+		}
+	}
+	return Unknown
+}
+
+// SetSpanTags sets one or more tags on the given span according to the
+// error.
+func SetSpanTags(span opentracing.Span, err error, client bool) {
+	c := ErrorClass(err)
+	code := codes.Unknown
+	if s, ok := status.FromError(err); ok {
+		code = s.Code()
+	}
+	span.SetTag("response_code", code)
+	span.SetTag("response_class", c)
+	if err == nil {
+		return
+	}
+	if client || c == ServerError {
+		ext.Error.Set(span, true)
+	}
+}
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/options.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/options.go
new file mode 100644
index 0000000000..903e8382e3
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/options.go
@@ -0,0 +1,76 @@
+package otgrpc
+
+import "github.com/opentracing/opentracing-go"
+
+// Option instances may be used in OpenTracing(Server|Client)Interceptor
+// initialization.
+//
+// See this post about the "functional options" pattern:
+// http://dave.cheney.net/2014/10/17/functional-options-for-friendly-apis
+type Option func(o *options)
+
+// LogPayloads returns an Option that tells the OpenTracing instrumentation to
+// try to log application payloads in both directions.
+func LogPayloads() Option {
+	return func(o *options) {
+		o.logPayloads = true
+	}
+}
+
+// SpanInclusionFunc provides an optional mechanism to decide whether or not
+// to trace a given gRPC call. Return true to create a Span and initiate
+// tracing, false to not create a Span and not trace.
+//
+// parentSpanCtx may be nil if no parent could be extraction from either the Go
+// context.Context (on the client) or the RPC (on the server).
+type SpanInclusionFunc func(
+	parentSpanCtx opentracing.SpanContext,
+	method string,
+	req, resp interface{}) bool
+
+// IncludingSpans binds a IncludeSpanFunc to the options
+func IncludingSpans(inclusionFunc SpanInclusionFunc) Option {
+	return func(o *options) {
+		o.inclusionFunc = inclusionFunc
+	}
+}
+
+// SpanDecoratorFunc provides an (optional) mechanism for otgrpc users to add
+// arbitrary tags/logs/etc to the opentracing.Span associated with client
+// and/or server RPCs.
+type SpanDecoratorFunc func(
+	span opentracing.Span,
+	method string,
+	req, resp interface{},
+	grpcError error)
+
+// SpanDecorator binds a function that decorates gRPC Spans.
+func SpanDecorator(decorator SpanDecoratorFunc) Option {
+	return func(o *options) {
+		o.decorator = decorator
+	}
+}
+
+// The internal-only options struct. Obviously overkill at the moment; but will
+// scale well as production use dictates other configuration and tuning
+// parameters.
+type options struct {
+	logPayloads bool
+	decorator   SpanDecoratorFunc
+	// May be nil.
+	inclusionFunc SpanInclusionFunc
+}
+
+// newOptions returns the default options.
+func newOptions() *options {
+	return &options{
+		logPayloads:   false,
+		inclusionFunc: nil,
+	}
+}
+
+func (o *options) apply(opts ...Option) {
+	for _, opt := range opts {
+		opt(o)
+	}
+}
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/package.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/package.go
new file mode 100644
index 0000000000..4ff3d19978
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/package.go
@@ -0,0 +1,5 @@
+// Package otgrpc provides OpenTracing support for any gRPC client or server.
+//
+// See the README for simple usage examples:
+// https://github.com/grpc-ecosystem/grpc-opentracing/blob/master/go/otgrpc/README.md
+package otgrpc
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/server.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/server.go
new file mode 100644
index 0000000000..62cf54d221
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/server.go
@@ -0,0 +1,141 @@
+package otgrpc
+
+import (
+	"github.com/opentracing/opentracing-go"
+	"github.com/opentracing/opentracing-go/ext"
+	"github.com/opentracing/opentracing-go/log"
+	"golang.org/x/net/context"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
+)
+
+// OpenTracingServerInterceptor returns a grpc.UnaryServerInterceptor suitable
+// for use in a grpc.NewServer call.
+//
+// For example:
+//
+//     s := grpc.NewServer(
+//         ...,  // (existing ServerOptions)
+//         grpc.UnaryInterceptor(otgrpc.OpenTracingServerInterceptor(tracer)))
+//
+// All gRPC server spans will look for an OpenTracing SpanContext in the gRPC
+// metadata; if found, the server span will act as the ChildOf that RPC
+// SpanContext.
+//
+// Root or not, the server Span will be embedded in the context.Context for the
+// application-specific gRPC handler(s) to access.
+func OpenTracingServerInterceptor(tracer opentracing.Tracer, optFuncs ...Option) grpc.UnaryServerInterceptor {
+	otgrpcOpts := newOptions()
+	otgrpcOpts.apply(optFuncs...)
+	return func(
+		ctx context.Context,
+		req interface{},
+		info *grpc.UnaryServerInfo,
+		handler grpc.UnaryHandler,
+	) (resp interface{}, err error) {
+		spanContext, err := extractSpanContext(ctx, tracer)
+		if err != nil && err != opentracing.ErrSpanContextNotFound {
+			// TODO: establish some sort of error reporting mechanism here. We
+			// don't know where to put such an error and must rely on Tracer
+			// implementations to do something appropriate for the time being.
+		}
+		if otgrpcOpts.inclusionFunc != nil &&
+			!otgrpcOpts.inclusionFunc(spanContext, info.FullMethod, req, nil) {
+			return handler(ctx, req)
+		}
+		serverSpan := tracer.StartSpan(
+			info.FullMethod,
+			ext.RPCServerOption(spanContext),
+			gRPCComponentTag,
+		)
+		defer serverSpan.Finish()
+
+		ctx = opentracing.ContextWithSpan(ctx, serverSpan)
+		if otgrpcOpts.logPayloads {
+			serverSpan.LogFields(log.Object("gRPC request", req))
+		}
+		resp, err = handler(ctx, req)
+		if err == nil {
+			if otgrpcOpts.logPayloads {
+				serverSpan.LogFields(log.Object("gRPC response", resp))
+			}
+		} else {
+			SetSpanTags(serverSpan, err, false)
+			serverSpan.LogFields(log.String("event", "error"), log.String("message", err.Error()))
+		}
+		if otgrpcOpts.decorator != nil {
+			otgrpcOpts.decorator(serverSpan, info.FullMethod, req, resp, err)
+		}
+		return resp, err
+	}
+}
+
+// OpenTracingStreamServerInterceptor returns a grpc.StreamServerInterceptor suitable
+// for use in a grpc.NewServer call. The interceptor instruments streaming RPCs by
+// creating a single span to correspond to the lifetime of the RPC's stream.
+//
+// For example:
+//
+//     s := grpc.NewServer(
+//         ...,  // (existing ServerOptions)
+//         grpc.StreamInterceptor(otgrpc.OpenTracingStreamServerInterceptor(tracer)))
+//
+// All gRPC server spans will look for an OpenTracing SpanContext in the gRPC
+// metadata; if found, the server span will act as the ChildOf that RPC
+// SpanContext.
+//
+// Root or not, the server Span will be embedded in the context.Context for the
+// application-specific gRPC handler(s) to access.
+func OpenTracingStreamServerInterceptor(tracer opentracing.Tracer, optFuncs ...Option) grpc.StreamServerInterceptor {
+	otgrpcOpts := newOptions()
+	otgrpcOpts.apply(optFuncs...)
+	return func(srv interface{}, ss grpc.ServerStream, info *grpc.StreamServerInfo, handler grpc.StreamHandler) error {
+		spanContext, err := extractSpanContext(ss.Context(), tracer)
+		if err != nil && err != opentracing.ErrSpanContextNotFound {
+			// TODO: establish some sort of error reporting mechanism here. We
+			// don't know where to put such an error and must rely on Tracer
+			// implementations to do something appropriate for the time being.
+		}
+		if otgrpcOpts.inclusionFunc != nil &&
+			!otgrpcOpts.inclusionFunc(spanContext, info.FullMethod, nil, nil) {
+			return handler(srv, ss)
+		}
+
+		serverSpan := tracer.StartSpan(
+			info.FullMethod,
+			ext.RPCServerOption(spanContext),
+			gRPCComponentTag,
+		)
+		defer serverSpan.Finish()
+		ss = &openTracingServerStream{
+			ServerStream: ss,
+			ctx:          opentracing.ContextWithSpan(ss.Context(), serverSpan),
+		}
+		err = handler(srv, ss)
+		if err != nil {
+			SetSpanTags(serverSpan, err, false)
+			serverSpan.LogFields(log.String("event", "error"), log.String("message", err.Error()))
+		}
+		if otgrpcOpts.decorator != nil {
+			otgrpcOpts.decorator(serverSpan, info.FullMethod, nil, nil, err)
+		}
+		return err
+	}
+}
+
+type openTracingServerStream struct {
+	grpc.ServerStream
+	ctx context.Context
+}
+
+func (ss *openTracingServerStream) Context() context.Context {
+	return ss.ctx
+}
+
+func extractSpanContext(ctx context.Context, tracer opentracing.Tracer) (opentracing.SpanContext, error) {
+	md, ok := metadata.FromIncomingContext(ctx)
+	if !ok {
+		md = metadata.New(nil)
+	}
+	return tracer.Extract(opentracing.HTTPHeaders, metadataReaderWriter{md})
+}
diff --git a/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/shared.go b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/shared.go
new file mode 100644
index 0000000000..9abd5eaa62
--- /dev/null
+++ b/vendor/github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc/shared.go
@@ -0,0 +1,42 @@
+package otgrpc
+
+import (
+	"strings"
+
+	opentracing "github.com/opentracing/opentracing-go"
+	"github.com/opentracing/opentracing-go/ext"
+	"google.golang.org/grpc/metadata"
+)
+
+var (
+	// Morally a const:
+	gRPCComponentTag = opentracing.Tag{string(ext.Component), "gRPC"}
+)
+
+// metadataReaderWriter satisfies both the opentracing.TextMapReader and
+// opentracing.TextMapWriter interfaces.
+type metadataReaderWriter struct {
+	metadata.MD
+}
+
+func (w metadataReaderWriter) Set(key, val string) {
+	// The GRPC HPACK implementation rejects any uppercase keys here.
+	//
+	// As such, since the HTTP_HEADERS format is case-insensitive anyway, we
+	// blindly lowercase the key (which is guaranteed to work in the
+	// Inject/Extract sense per the OpenTracing spec).
+	key = strings.ToLower(key)
+	w.MD[key] = append(w.MD[key], val)
+}
+
+func (w metadataReaderWriter) ForeachKey(handler func(key, val string) error) error {
+	for k, vals := range w.MD {
+		for _, v := range vals {
+			if err := handler(k, v); err != nil {
+				return err
+			}
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/consul/LICENSE b/vendor/github.com/hashicorp/consul/LICENSE
new file mode 100644
index 0000000000..c33dcc7c92
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/LICENSE
@@ -0,0 +1,354 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. “Contributor”
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. “Contributor Version”
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor’s Contribution.
+
+1.3. “Contribution”
+
+     means Covered Software of a particular Contributor.
+
+1.4. “Covered Software”
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. “Incompatible With Secondary Licenses”
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of version
+        1.1 or earlier of the License, but not also under the terms of a
+        Secondary License.
+
+1.6. “Executable Form”
+
+     means any form of the work other than Source Code Form.
+
+1.7. “Larger Work”
+
+     means a work that combines Covered Software with other material, in a separate
+     file or files, that is not Covered Software.
+
+1.8. “License”
+
+     means this document.
+
+1.9. “Licensable”
+
+     means having the right to grant, to the maximum extent possible, whether at the
+     time of the initial grant or subsequently, any and all of the rights conveyed by
+     this License.
+
+1.10. “Modifications”
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to, deletion
+        from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. “Patent Claims” of a Contributor
+
+      means any patent claim(s), including without limitation, method, process,
+      and apparatus claims, in any patent Licensable by such Contributor that
+      would be infringed, but for the grant of the License, by the making,
+      using, selling, offering for sale, having made, import, or transfer of
+      either its Contributions or its Contributor Version.
+
+1.12. “Secondary License”
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. “Source Code Form”
+
+      means the form of the work preferred for making modifications.
+
+1.14. “You” (or “Your”)
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, “You” includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, “control” means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or as
+        part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its Contributions
+        or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution become
+     effective for each Contribution on the date the Contributor first distributes
+     such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under this
+     License. No additional rights or licenses will be implied from the distribution
+     or licensing of Covered Software under this License. Notwithstanding Section
+     2.1(b) above, no patent license is granted by a Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party’s
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of its
+        Contributions.
+
+     This License does not grant any rights in the trademarks, service marks, or
+     logos of any Contributor (except as may be necessary to comply with the
+     notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this License
+     (see Section 10.2) or under the terms of a Secondary License (if permitted
+     under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its Contributions
+     are its original creation(s) or it has sufficient rights to grant the
+     rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under applicable
+     copyright doctrines of fair use, fair dealing, or other equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under the
+     terms of this License. You must inform recipients that the Source Code Form
+     of the Covered Software is governed by the terms of this License, and how
+     they can obtain a copy of this License. You may not attempt to alter or
+     restrict the recipients’ rights in the Source Code Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this License,
+        or sublicense it under different terms, provided that the license for
+        the Executable Form does not attempt to limit or alter the recipients’
+        rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for the
+     Covered Software. If the Larger Work is a combination of Covered Software
+     with a work governed by one or more Secondary Licenses, and the Covered
+     Software is not Incompatible With Secondary Licenses, this License permits
+     You to additionally distribute such Covered Software under the terms of
+     such Secondary License(s), so that the recipient of the Larger Work may, at
+     their option, further distribute the Covered Software under the terms of
+     either this License or such Secondary License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices (including
+     copyright notices, patent notices, disclaimers of warranty, or limitations
+     of liability) contained within the Source Code Form of the Covered
+     Software, except that You may alter any license notices to the extent
+     required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on behalf
+     of any Contributor. You must make it absolutely clear that any such
+     warranty, support, indemnity, or liability obligation is offered by You
+     alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute, judicial
+   order, or regulation then You must: (a) comply with the terms of this License
+   to the maximum extent possible; and (b) describe the limitations and the code
+   they affect. Such description must be placed in a text file included with all
+   distributions of the Covered Software under this License. Except to the
+   extent prohibited by statute or regulation, such description must be
+   sufficiently detailed for a recipient of ordinary skill to be able to
+   understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing basis,
+     if such Contributor fails to notify You of the non-compliance by some
+     reasonable means prior to 60 days after You have come back into compliance.
+     Moreover, Your grants from a particular Contributor are reinstated on an
+     ongoing basis if such Contributor notifies You of the non-compliance by
+     some reasonable means, this is the first time You have received notice of
+     non-compliance with this License from such Contributor, and You become
+     compliant prior to 30 days after Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions, counter-claims,
+     and cross-claims) alleging that a Contributor Version directly or
+     indirectly infringes any patent, then the rights granted to You by any and
+     all Contributors for the Covered Software under Section 2.1 of this License
+     shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an “as is” basis, without
+   warranty of any kind, either expressed, implied, or statutory, including,
+   without limitation, warranties that the Covered Software is free of defects,
+   merchantable, fit for a particular purpose or non-infringing. The entire
+   risk as to the quality and performance of the Covered Software is with You.
+   Should any Covered Software prove defective in any respect, You (not any
+   Contributor) assume the cost of any necessary servicing, repair, or
+   correction. This disclaimer of warranty constitutes an essential part of this
+   License. No use of  any Covered Software is authorized under this License
+   except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from such
+   party’s negligence to the extent applicable law prohibits such limitation.
+   Some jurisdictions do not allow the exclusion or limitation of incidental or
+   consequential damages, so this exclusion and limitation may not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts of
+   a jurisdiction where the defendant maintains its principal place of business
+   and such litigation shall be governed by laws of that jurisdiction, without
+   reference to its conflict-of-law provisions. Nothing in this Section shall
+   prevent a party’s ability to bring cross-claims or counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject matter
+   hereof. If any provision of this License is held to be unenforceable, such
+   provision shall be reformed only to the extent necessary to make it
+   enforceable. Any law or regulation which provides that the language of a
+   contract shall be construed against the drafter shall not be used to construe
+   this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version of
+      the License under which You originally received the Covered Software, or
+      under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a modified
+      version of this License if you rename the license and remove any
+      references to the name of the license steward (except to note that such
+      modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary Licenses
+      If You choose to distribute Source Code Form that is Incompatible With
+      Secondary Licenses under the terms of this version of the License, the
+      notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file, then
+You may include the notice in a location (such as a LICENSE file in a relevant
+directory) where a recipient would be likely to look for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - “Incompatible With Secondary Licenses” Notice
+
+      This Source Code Form is “Incompatible
+      With Secondary Licenses”, as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/consul/api/acl.go b/vendor/github.com/hashicorp/consul/api/acl.go
new file mode 100644
index 0000000000..8ec9aa5855
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/acl.go
@@ -0,0 +1,193 @@
+package api
+
+import (
+	"time"
+)
+
+const (
+	// ACLClientType is the client type token
+	ACLClientType = "client"
+
+	// ACLManagementType is the management type token
+	ACLManagementType = "management"
+)
+
+// ACLEntry is used to represent an ACL entry
+type ACLEntry struct {
+	CreateIndex uint64
+	ModifyIndex uint64
+	ID          string
+	Name        string
+	Type        string
+	Rules       string
+}
+
+// ACLReplicationStatus is used to represent the status of ACL replication.
+type ACLReplicationStatus struct {
+	Enabled          bool
+	Running          bool
+	SourceDatacenter string
+	ReplicatedIndex  uint64
+	LastSuccess      time.Time
+	LastError        time.Time
+}
+
+// ACL can be used to query the ACL endpoints
+type ACL struct {
+	c *Client
+}
+
+// ACL returns a handle to the ACL endpoints
+func (c *Client) ACL() *ACL {
+	return &ACL{c}
+}
+
+// Bootstrap is used to perform a one-time ACL bootstrap operation on a cluster
+// to get the first management token.
+func (a *ACL) Bootstrap() (string, *WriteMeta, error) {
+	r := a.c.newRequest("PUT", "/v1/acl/bootstrap")
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// Create is used to generate a new token with the given parameters
+func (a *ACL) Create(acl *ACLEntry, q *WriteOptions) (string, *WriteMeta, error) {
+	r := a.c.newRequest("PUT", "/v1/acl/create")
+	r.setWriteOptions(q)
+	r.obj = acl
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// Update is used to update the rules of an existing token
+func (a *ACL) Update(acl *ACLEntry, q *WriteOptions) (*WriteMeta, error) {
+	r := a.c.newRequest("PUT", "/v1/acl/update")
+	r.setWriteOptions(q)
+	r.obj = acl
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	return wm, nil
+}
+
+// Destroy is used to destroy a given ACL token ID
+func (a *ACL) Destroy(id string, q *WriteOptions) (*WriteMeta, error) {
+	r := a.c.newRequest("PUT", "/v1/acl/destroy/"+id)
+	r.setWriteOptions(q)
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	return wm, nil
+}
+
+// Clone is used to return a new token cloned from an existing one
+func (a *ACL) Clone(id string, q *WriteOptions) (string, *WriteMeta, error) {
+	r := a.c.newRequest("PUT", "/v1/acl/clone/"+id)
+	r.setWriteOptions(q)
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// Info is used to query for information about an ACL token
+func (a *ACL) Info(id string, q *QueryOptions) (*ACLEntry, *QueryMeta, error) {
+	r := a.c.newRequest("GET", "/v1/acl/info/"+id)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var entries []*ACLEntry
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	if len(entries) > 0 {
+		return entries[0], qm, nil
+	}
+	return nil, qm, nil
+}
+
+// List is used to get all the ACL tokens
+func (a *ACL) List(q *QueryOptions) ([]*ACLEntry, *QueryMeta, error) {
+	r := a.c.newRequest("GET", "/v1/acl/list")
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var entries []*ACLEntry
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
+
+// Replication returns the status of the ACL replication process in the datacenter
+func (a *ACL) Replication(q *QueryOptions) (*ACLReplicationStatus, *QueryMeta, error) {
+	r := a.c.newRequest("GET", "/v1/acl/replication")
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var entries *ACLReplicationStatus
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/agent.go b/vendor/github.com/hashicorp/consul/api/agent.go
new file mode 100644
index 0000000000..b42baed41d
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/agent.go
@@ -0,0 +1,627 @@
+package api
+
+import (
+	"bufio"
+	"fmt"
+)
+
+// AgentCheck represents a check known to the agent
+type AgentCheck struct {
+	Node        string
+	CheckID     string
+	Name        string
+	Status      string
+	Notes       string
+	Output      string
+	ServiceID   string
+	ServiceName string
+	Definition  HealthCheckDefinition
+}
+
+// AgentService represents a service known to the agent
+type AgentService struct {
+	ID                string
+	Service           string
+	Tags              []string
+	Port              int
+	Address           string
+	EnableTagOverride bool
+	CreateIndex       uint64
+	ModifyIndex       uint64
+}
+
+// AgentMember represents a cluster member known to the agent
+type AgentMember struct {
+	Name        string
+	Addr        string
+	Port        uint16
+	Tags        map[string]string
+	Status      int
+	ProtocolMin uint8
+	ProtocolMax uint8
+	ProtocolCur uint8
+	DelegateMin uint8
+	DelegateMax uint8
+	DelegateCur uint8
+}
+
+// AllSegments is used to select for all segments in MembersOpts.
+const AllSegments = "_all"
+
+// MembersOpts is used for querying member information.
+type MembersOpts struct {
+	// WAN is whether to show members from the WAN.
+	WAN bool
+
+	// Segment is the LAN segment to show members for. Setting this to the
+	// AllSegments value above will show members in all segments.
+	Segment string
+}
+
+// AgentServiceRegistration is used to register a new service
+type AgentServiceRegistration struct {
+	ID                string            `json:",omitempty"`
+	Name              string            `json:",omitempty"`
+	Tags              []string          `json:",omitempty"`
+	Port              int               `json:",omitempty"`
+	Address           string            `json:",omitempty"`
+	EnableTagOverride bool              `json:",omitempty"`
+	Meta              map[string]string `json:",omitempty"`
+	Check             *AgentServiceCheck
+	Checks            AgentServiceChecks
+}
+
+// AgentCheckRegistration is used to register a new check
+type AgentCheckRegistration struct {
+	ID        string `json:",omitempty"`
+	Name      string `json:",omitempty"`
+	Notes     string `json:",omitempty"`
+	ServiceID string `json:",omitempty"`
+	AgentServiceCheck
+}
+
+// AgentServiceCheck is used to define a node or service level check
+type AgentServiceCheck struct {
+	CheckID           string              `json:",omitempty"`
+	Name              string              `json:",omitempty"`
+	Args              []string            `json:"ScriptArgs,omitempty"`
+	Script            string              `json:",omitempty"` // Deprecated, use Args.
+	DockerContainerID string              `json:",omitempty"`
+	Shell             string              `json:",omitempty"` // Only supported for Docker.
+	Interval          string              `json:",omitempty"`
+	Timeout           string              `json:",omitempty"`
+	TTL               string              `json:",omitempty"`
+	HTTP              string              `json:",omitempty"`
+	Header            map[string][]string `json:",omitempty"`
+	Method            string              `json:",omitempty"`
+	TCP               string              `json:",omitempty"`
+	Status            string              `json:",omitempty"`
+	Notes             string              `json:",omitempty"`
+	TLSSkipVerify     bool                `json:",omitempty"`
+	GRPC              string              `json:",omitempty"`
+	GRPCUseTLS        bool                `json:",omitempty"`
+
+	// In Consul 0.7 and later, checks that are associated with a service
+	// may also contain this optional DeregisterCriticalServiceAfter field,
+	// which is a timeout in the same Go time format as Interval and TTL. If
+	// a check is in the critical state for more than this configured value,
+	// then its associated service (and all of its associated checks) will
+	// automatically be deregistered.
+	DeregisterCriticalServiceAfter string `json:",omitempty"`
+}
+type AgentServiceChecks []*AgentServiceCheck
+
+// AgentToken is used when updating ACL tokens for an agent.
+type AgentToken struct {
+	Token string
+}
+
+// Metrics info is used to store different types of metric values from the agent.
+type MetricsInfo struct {
+	Timestamp string
+	Gauges    []GaugeValue
+	Points    []PointValue
+	Counters  []SampledValue
+	Samples   []SampledValue
+}
+
+// GaugeValue stores one value that is updated as time goes on, such as
+// the amount of memory allocated.
+type GaugeValue struct {
+	Name   string
+	Value  float32
+	Labels map[string]string
+}
+
+// PointValue holds a series of points for a metric.
+type PointValue struct {
+	Name   string
+	Points []float32
+}
+
+// SampledValue stores info about a metric that is incremented over time,
+// such as the number of requests to an HTTP endpoint.
+type SampledValue struct {
+	Name   string
+	Count  int
+	Sum    float64
+	Min    float64
+	Max    float64
+	Mean   float64
+	Stddev float64
+	Labels map[string]string
+}
+
+// Agent can be used to query the Agent endpoints
+type Agent struct {
+	c *Client
+
+	// cache the node name
+	nodeName string
+}
+
+// Agent returns a handle to the agent endpoints
+func (c *Client) Agent() *Agent {
+	return &Agent{c: c}
+}
+
+// Self is used to query the agent we are speaking to for
+// information about itself
+func (a *Agent) Self() (map[string]map[string]interface{}, error) {
+	r := a.c.newRequest("GET", "/v1/agent/self")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out map[string]map[string]interface{}
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Metrics is used to query the agent we are speaking to for
+// its current internal metric data
+func (a *Agent) Metrics() (*MetricsInfo, error) {
+	r := a.c.newRequest("GET", "/v1/agent/metrics")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out *MetricsInfo
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Reload triggers a configuration reload for the agent we are connected to.
+func (a *Agent) Reload() error {
+	r := a.c.newRequest("PUT", "/v1/agent/reload")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// NodeName is used to get the node name of the agent
+func (a *Agent) NodeName() (string, error) {
+	if a.nodeName != "" {
+		return a.nodeName, nil
+	}
+	info, err := a.Self()
+	if err != nil {
+		return "", err
+	}
+	name := info["Config"]["NodeName"].(string)
+	a.nodeName = name
+	return name, nil
+}
+
+// Checks returns the locally registered checks
+func (a *Agent) Checks() (map[string]*AgentCheck, error) {
+	r := a.c.newRequest("GET", "/v1/agent/checks")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out map[string]*AgentCheck
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Services returns the locally registered services
+func (a *Agent) Services() (map[string]*AgentService, error) {
+	r := a.c.newRequest("GET", "/v1/agent/services")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out map[string]*AgentService
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Members returns the known gossip members. The WAN
+// flag can be used to query a server for WAN members.
+func (a *Agent) Members(wan bool) ([]*AgentMember, error) {
+	r := a.c.newRequest("GET", "/v1/agent/members")
+	if wan {
+		r.params.Set("wan", "1")
+	}
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out []*AgentMember
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// MembersOpts returns the known gossip members and can be passed
+// additional options for WAN/segment filtering.
+func (a *Agent) MembersOpts(opts MembersOpts) ([]*AgentMember, error) {
+	r := a.c.newRequest("GET", "/v1/agent/members")
+	r.params.Set("segment", opts.Segment)
+	if opts.WAN {
+		r.params.Set("wan", "1")
+	}
+
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out []*AgentMember
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// ServiceRegister is used to register a new service with
+// the local agent
+func (a *Agent) ServiceRegister(service *AgentServiceRegistration) error {
+	r := a.c.newRequest("PUT", "/v1/agent/service/register")
+	r.obj = service
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// ServiceDeregister is used to deregister a service with
+// the local agent
+func (a *Agent) ServiceDeregister(serviceID string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/service/deregister/"+serviceID)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// PassTTL is used to set a TTL check to the passing state.
+//
+// DEPRECATION NOTICE: This interface is deprecated in favor of UpdateTTL().
+// The client interface will be removed in 0.8 or changed to use
+// UpdateTTL()'s endpoint and the server endpoints will be removed in 0.9.
+func (a *Agent) PassTTL(checkID, note string) error {
+	return a.updateTTL(checkID, note, "pass")
+}
+
+// WarnTTL is used to set a TTL check to the warning state.
+//
+// DEPRECATION NOTICE: This interface is deprecated in favor of UpdateTTL().
+// The client interface will be removed in 0.8 or changed to use
+// UpdateTTL()'s endpoint and the server endpoints will be removed in 0.9.
+func (a *Agent) WarnTTL(checkID, note string) error {
+	return a.updateTTL(checkID, note, "warn")
+}
+
+// FailTTL is used to set a TTL check to the failing state.
+//
+// DEPRECATION NOTICE: This interface is deprecated in favor of UpdateTTL().
+// The client interface will be removed in 0.8 or changed to use
+// UpdateTTL()'s endpoint and the server endpoints will be removed in 0.9.
+func (a *Agent) FailTTL(checkID, note string) error {
+	return a.updateTTL(checkID, note, "fail")
+}
+
+// updateTTL is used to update the TTL of a check. This is the internal
+// method that uses the old API that's present in Consul versions prior to
+// 0.6.4. Since Consul didn't have an analogous "update" API before it seemed
+// ok to break this (former) UpdateTTL in favor of the new UpdateTTL below,
+// but keep the old Pass/Warn/Fail methods using the old API under the hood.
+//
+// DEPRECATION NOTICE: This interface is deprecated in favor of UpdateTTL().
+// The client interface will be removed in 0.8 and the server endpoints will
+// be removed in 0.9.
+func (a *Agent) updateTTL(checkID, note, status string) error {
+	switch status {
+	case "pass":
+	case "warn":
+	case "fail":
+	default:
+		return fmt.Errorf("Invalid status: %s", status)
+	}
+	endpoint := fmt.Sprintf("/v1/agent/check/%s/%s", status, checkID)
+	r := a.c.newRequest("PUT", endpoint)
+	r.params.Set("note", note)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// checkUpdate is the payload for a PUT for a check update.
+type checkUpdate struct {
+	// Status is one of the api.Health* states: HealthPassing
+	// ("passing"), HealthWarning ("warning"), or HealthCritical
+	// ("critical").
+	Status string
+
+	// Output is the information to post to the UI for operators as the
+	// output of the process that decided to hit the TTL check. This is
+	// different from the note field that's associated with the check
+	// itself.
+	Output string
+}
+
+// UpdateTTL is used to update the TTL of a check. This uses the newer API
+// that was introduced in Consul 0.6.4 and later. We translate the old status
+// strings for compatibility (though a newer version of Consul will still be
+// required to use this API).
+func (a *Agent) UpdateTTL(checkID, output, status string) error {
+	switch status {
+	case "pass", HealthPassing:
+		status = HealthPassing
+	case "warn", HealthWarning:
+		status = HealthWarning
+	case "fail", HealthCritical:
+		status = HealthCritical
+	default:
+		return fmt.Errorf("Invalid status: %s", status)
+	}
+
+	endpoint := fmt.Sprintf("/v1/agent/check/update/%s", checkID)
+	r := a.c.newRequest("PUT", endpoint)
+	r.obj = &checkUpdate{
+		Status: status,
+		Output: output,
+	}
+
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// CheckRegister is used to register a new check with
+// the local agent
+func (a *Agent) CheckRegister(check *AgentCheckRegistration) error {
+	r := a.c.newRequest("PUT", "/v1/agent/check/register")
+	r.obj = check
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// CheckDeregister is used to deregister a check with
+// the local agent
+func (a *Agent) CheckDeregister(checkID string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/check/deregister/"+checkID)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// Join is used to instruct the agent to attempt a join to
+// another cluster member
+func (a *Agent) Join(addr string, wan bool) error {
+	r := a.c.newRequest("PUT", "/v1/agent/join/"+addr)
+	if wan {
+		r.params.Set("wan", "1")
+	}
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// Leave is used to have the agent gracefully leave the cluster and shutdown
+func (a *Agent) Leave() error {
+	r := a.c.newRequest("PUT", "/v1/agent/leave")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// ForceLeave is used to have the agent eject a failed node
+func (a *Agent) ForceLeave(node string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/force-leave/"+node)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// EnableServiceMaintenance toggles service maintenance mode on
+// for the given service ID.
+func (a *Agent) EnableServiceMaintenance(serviceID, reason string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/service/maintenance/"+serviceID)
+	r.params.Set("enable", "true")
+	r.params.Set("reason", reason)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// DisableServiceMaintenance toggles service maintenance mode off
+// for the given service ID.
+func (a *Agent) DisableServiceMaintenance(serviceID string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/service/maintenance/"+serviceID)
+	r.params.Set("enable", "false")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// EnableNodeMaintenance toggles node maintenance mode on for the
+// agent we are connected to.
+func (a *Agent) EnableNodeMaintenance(reason string) error {
+	r := a.c.newRequest("PUT", "/v1/agent/maintenance")
+	r.params.Set("enable", "true")
+	r.params.Set("reason", reason)
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// DisableNodeMaintenance toggles node maintenance mode off for the
+// agent we are connected to.
+func (a *Agent) DisableNodeMaintenance() error {
+	r := a.c.newRequest("PUT", "/v1/agent/maintenance")
+	r.params.Set("enable", "false")
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// Monitor returns a channel which will receive streaming logs from the agent
+// Providing a non-nil stopCh can be used to close the connection and stop the
+// log stream. An empty string will be sent down the given channel when there's
+// nothing left to stream, after which the caller should close the stopCh.
+func (a *Agent) Monitor(loglevel string, stopCh <-chan struct{}, q *QueryOptions) (chan string, error) {
+	r := a.c.newRequest("GET", "/v1/agent/monitor")
+	r.setQueryOptions(q)
+	if loglevel != "" {
+		r.params.Add("loglevel", loglevel)
+	}
+	_, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+
+	logCh := make(chan string, 64)
+	go func() {
+		defer resp.Body.Close()
+
+		scanner := bufio.NewScanner(resp.Body)
+		for {
+			select {
+			case <-stopCh:
+				close(logCh)
+				return
+			default:
+			}
+			if scanner.Scan() {
+				// An empty string signals to the caller that
+				// the scan is done, so make sure we only emit
+				// that when the scanner says it's done, not if
+				// we happen to ingest an empty line.
+				if text := scanner.Text(); text != "" {
+					logCh <- text
+				} else {
+					logCh <- " "
+				}
+			} else {
+				logCh <- ""
+			}
+		}
+	}()
+
+	return logCh, nil
+}
+
+// UpdateACLToken updates the agent's "acl_token". See updateToken for more
+// details.
+func (a *Agent) UpdateACLToken(token string, q *WriteOptions) (*WriteMeta, error) {
+	return a.updateToken("acl_token", token, q)
+}
+
+// UpdateACLAgentToken updates the agent's "acl_agent_token". See updateToken
+// for more details.
+func (a *Agent) UpdateACLAgentToken(token string, q *WriteOptions) (*WriteMeta, error) {
+	return a.updateToken("acl_agent_token", token, q)
+}
+
+// UpdateACLAgentMasterToken updates the agent's "acl_agent_master_token". See
+// updateToken for more details.
+func (a *Agent) UpdateACLAgentMasterToken(token string, q *WriteOptions) (*WriteMeta, error) {
+	return a.updateToken("acl_agent_master_token", token, q)
+}
+
+// UpdateACLReplicationToken updates the agent's "acl_replication_token". See
+// updateToken for more details.
+func (a *Agent) UpdateACLReplicationToken(token string, q *WriteOptions) (*WriteMeta, error) {
+	return a.updateToken("acl_replication_token", token, q)
+}
+
+// updateToken can be used to update an agent's ACL token after the agent has
+// started. The tokens are not persisted, so will need to be updated again if
+// the agent is restarted.
+func (a *Agent) updateToken(target, token string, q *WriteOptions) (*WriteMeta, error) {
+	r := a.c.newRequest("PUT", fmt.Sprintf("/v1/agent/token/%s", target))
+	r.setWriteOptions(q)
+	r.obj = &AgentToken{Token: token}
+	rtt, resp, err := requireOK(a.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	return wm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/api.go b/vendor/github.com/hashicorp/consul/api/api.go
new file mode 100644
index 0000000000..1cdc21e331
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/api.go
@@ -0,0 +1,791 @@
+package api
+
+import (
+	"bytes"
+	"context"
+	"crypto/tls"
+	"encoding/json"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"log"
+	"net"
+	"net/http"
+	"net/url"
+	"os"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/go-cleanhttp"
+	"github.com/hashicorp/go-rootcerts"
+)
+
+const (
+	// HTTPAddrEnvName defines an environment variable name which sets
+	// the HTTP address if there is no -http-addr specified.
+	HTTPAddrEnvName = "CONSUL_HTTP_ADDR"
+
+	// HTTPTokenEnvName defines an environment variable name which sets
+	// the HTTP token.
+	HTTPTokenEnvName = "CONSUL_HTTP_TOKEN"
+
+	// HTTPAuthEnvName defines an environment variable name which sets
+	// the HTTP authentication header.
+	HTTPAuthEnvName = "CONSUL_HTTP_AUTH"
+
+	// HTTPSSLEnvName defines an environment variable name which sets
+	// whether or not to use HTTPS.
+	HTTPSSLEnvName = "CONSUL_HTTP_SSL"
+
+	// HTTPCAFile defines an environment variable name which sets the
+	// CA file to use for talking to Consul over TLS.
+	HTTPCAFile = "CONSUL_CACERT"
+
+	// HTTPCAPath defines an environment variable name which sets the
+	// path to a directory of CA certs to use for talking to Consul over TLS.
+	HTTPCAPath = "CONSUL_CAPATH"
+
+	// HTTPClientCert defines an environment variable name which sets the
+	// client cert file to use for talking to Consul over TLS.
+	HTTPClientCert = "CONSUL_CLIENT_CERT"
+
+	// HTTPClientKey defines an environment variable name which sets the
+	// client key file to use for talking to Consul over TLS.
+	HTTPClientKey = "CONSUL_CLIENT_KEY"
+
+	// HTTPTLSServerName defines an environment variable name which sets the
+	// server name to use as the SNI host when connecting via TLS
+	HTTPTLSServerName = "CONSUL_TLS_SERVER_NAME"
+
+	// HTTPSSLVerifyEnvName defines an environment variable name which sets
+	// whether or not to disable certificate checking.
+	HTTPSSLVerifyEnvName = "CONSUL_HTTP_SSL_VERIFY"
+)
+
+// QueryOptions are used to parameterize a query
+type QueryOptions struct {
+	// Providing a datacenter overwrites the DC provided
+	// by the Config
+	Datacenter string
+
+	// AllowStale allows any Consul server (non-leader) to service
+	// a read. This allows for lower latency and higher throughput
+	AllowStale bool
+
+	// RequireConsistent forces the read to be fully consistent.
+	// This is more expensive but prevents ever performing a stale
+	// read.
+	RequireConsistent bool
+
+	// WaitIndex is used to enable a blocking query. Waits
+	// until the timeout or the next index is reached
+	WaitIndex uint64
+
+	// WaitTime is used to bound the duration of a wait.
+	// Defaults to that of the Config, but can be overridden.
+	WaitTime time.Duration
+
+	// Token is used to provide a per-request ACL token
+	// which overrides the agent's default token.
+	Token string
+
+	// Near is used to provide a node name that will sort the results
+	// in ascending order based on the estimated round trip time from
+	// that node. Setting this to "_agent" will use the agent's node
+	// for the sort.
+	Near string
+
+	// NodeMeta is used to filter results by nodes with the given
+	// metadata key/value pairs. Currently, only one key/value pair can
+	// be provided for filtering.
+	NodeMeta map[string]string
+
+	// RelayFactor is used in keyring operations to cause responses to be
+	// relayed back to the sender through N other random nodes. Must be
+	// a value from 0 to 5 (inclusive).
+	RelayFactor uint8
+
+	// ctx is an optional context pass through to the underlying HTTP
+	// request layer. Use Context() and WithContext() to manage this.
+	ctx context.Context
+}
+
+func (o *QueryOptions) Context() context.Context {
+	if o != nil && o.ctx != nil {
+		return o.ctx
+	}
+	return context.Background()
+}
+
+func (o *QueryOptions) WithContext(ctx context.Context) *QueryOptions {
+	o2 := new(QueryOptions)
+	if o != nil {
+		*o2 = *o
+	}
+	o2.ctx = ctx
+	return o2
+}
+
+// WriteOptions are used to parameterize a write
+type WriteOptions struct {
+	// Providing a datacenter overwrites the DC provided
+	// by the Config
+	Datacenter string
+
+	// Token is used to provide a per-request ACL token
+	// which overrides the agent's default token.
+	Token string
+
+	// RelayFactor is used in keyring operations to cause responses to be
+	// relayed back to the sender through N other random nodes. Must be
+	// a value from 0 to 5 (inclusive).
+	RelayFactor uint8
+
+	// ctx is an optional context pass through to the underlying HTTP
+	// request layer. Use Context() and WithContext() to manage this.
+	ctx context.Context
+}
+
+func (o *WriteOptions) Context() context.Context {
+	if o != nil && o.ctx != nil {
+		return o.ctx
+	}
+	return context.Background()
+}
+
+func (o *WriteOptions) WithContext(ctx context.Context) *WriteOptions {
+	o2 := new(WriteOptions)
+	if o != nil {
+		*o2 = *o
+	}
+	o2.ctx = ctx
+	return o2
+}
+
+// QueryMeta is used to return meta data about a query
+type QueryMeta struct {
+	// LastIndex. This can be used as a WaitIndex to perform
+	// a blocking query
+	LastIndex uint64
+
+	// Time of last contact from the leader for the
+	// server servicing the request
+	LastContact time.Duration
+
+	// Is there a known leader
+	KnownLeader bool
+
+	// How long did the request take
+	RequestTime time.Duration
+
+	// Is address translation enabled for HTTP responses on this agent
+	AddressTranslationEnabled bool
+}
+
+// WriteMeta is used to return meta data about a write
+type WriteMeta struct {
+	// How long did the request take
+	RequestTime time.Duration
+}
+
+// HttpBasicAuth is used to authenticate http client with HTTP Basic Authentication
+type HttpBasicAuth struct {
+	// Username to use for HTTP Basic Authentication
+	Username string
+
+	// Password to use for HTTP Basic Authentication
+	Password string
+}
+
+// Config is used to configure the creation of a client
+type Config struct {
+	// Address is the address of the Consul server
+	Address string
+
+	// Scheme is the URI scheme for the Consul server
+	Scheme string
+
+	// Datacenter to use. If not provided, the default agent datacenter is used.
+	Datacenter string
+
+	// Transport is the Transport to use for the http client.
+	Transport *http.Transport
+
+	// HttpClient is the client to use. Default will be
+	// used if not provided.
+	HttpClient *http.Client
+
+	// HttpAuth is the auth info to use for http access.
+	HttpAuth *HttpBasicAuth
+
+	// WaitTime limits how long a Watch will block. If not provided,
+	// the agent default values will be used.
+	WaitTime time.Duration
+
+	// Token is used to provide a per-request ACL token
+	// which overrides the agent's default token.
+	Token string
+
+	TLSConfig TLSConfig
+}
+
+// TLSConfig is used to generate a TLSClientConfig that's useful for talking to
+// Consul using TLS.
+type TLSConfig struct {
+	// Address is the optional address of the Consul server. The port, if any
+	// will be removed from here and this will be set to the ServerName of the
+	// resulting config.
+	Address string
+
+	// CAFile is the optional path to the CA certificate used for Consul
+	// communication, defaults to the system bundle if not specified.
+	CAFile string
+
+	// CAPath is the optional path to a directory of CA certificates to use for
+	// Consul communication, defaults to the system bundle if not specified.
+	CAPath string
+
+	// CertFile is the optional path to the certificate for Consul
+	// communication. If this is set then you need to also set KeyFile.
+	CertFile string
+
+	// KeyFile is the optional path to the private key for Consul communication.
+	// If this is set then you need to also set CertFile.
+	KeyFile string
+
+	// InsecureSkipVerify if set to true will disable TLS host verification.
+	InsecureSkipVerify bool
+}
+
+// DefaultConfig returns a default configuration for the client. By default this
+// will pool and reuse idle connections to Consul. If you have a long-lived
+// client object, this is the desired behavior and should make the most efficient
+// use of the connections to Consul. If you don't reuse a client object , which
+// is not recommended, then you may notice idle connections building up over
+// time. To avoid this, use the DefaultNonPooledConfig() instead.
+func DefaultConfig() *Config {
+	return defaultConfig(cleanhttp.DefaultPooledTransport)
+}
+
+// DefaultNonPooledConfig returns a default configuration for the client which
+// does not pool connections. This isn't a recommended configuration because it
+// will reconnect to Consul on every request, but this is useful to avoid the
+// accumulation of idle connections if you make many client objects during the
+// lifetime of your application.
+func DefaultNonPooledConfig() *Config {
+	return defaultConfig(cleanhttp.DefaultTransport)
+}
+
+// defaultConfig returns the default configuration for the client, using the
+// given function to make the transport.
+func defaultConfig(transportFn func() *http.Transport) *Config {
+	config := &Config{
+		Address:   "127.0.0.1:8500",
+		Scheme:    "http",
+		Transport: transportFn(),
+	}
+
+	if addr := os.Getenv(HTTPAddrEnvName); addr != "" {
+		config.Address = addr
+	}
+
+	if token := os.Getenv(HTTPTokenEnvName); token != "" {
+		config.Token = token
+	}
+
+	if auth := os.Getenv(HTTPAuthEnvName); auth != "" {
+		var username, password string
+		if strings.Contains(auth, ":") {
+			split := strings.SplitN(auth, ":", 2)
+			username = split[0]
+			password = split[1]
+		} else {
+			username = auth
+		}
+
+		config.HttpAuth = &HttpBasicAuth{
+			Username: username,
+			Password: password,
+		}
+	}
+
+	if ssl := os.Getenv(HTTPSSLEnvName); ssl != "" {
+		enabled, err := strconv.ParseBool(ssl)
+		if err != nil {
+			log.Printf("[WARN] client: could not parse %s: %s", HTTPSSLEnvName, err)
+		}
+
+		if enabled {
+			config.Scheme = "https"
+		}
+	}
+
+	if v := os.Getenv(HTTPTLSServerName); v != "" {
+		config.TLSConfig.Address = v
+	}
+	if v := os.Getenv(HTTPCAFile); v != "" {
+		config.TLSConfig.CAFile = v
+	}
+	if v := os.Getenv(HTTPCAPath); v != "" {
+		config.TLSConfig.CAPath = v
+	}
+	if v := os.Getenv(HTTPClientCert); v != "" {
+		config.TLSConfig.CertFile = v
+	}
+	if v := os.Getenv(HTTPClientKey); v != "" {
+		config.TLSConfig.KeyFile = v
+	}
+	if v := os.Getenv(HTTPSSLVerifyEnvName); v != "" {
+		doVerify, err := strconv.ParseBool(v)
+		if err != nil {
+			log.Printf("[WARN] client: could not parse %s: %s", HTTPSSLVerifyEnvName, err)
+		}
+		if !doVerify {
+			config.TLSConfig.InsecureSkipVerify = true
+		}
+	}
+
+	return config
+}
+
+// TLSConfig is used to generate a TLSClientConfig that's useful for talking to
+// Consul using TLS.
+func SetupTLSConfig(tlsConfig *TLSConfig) (*tls.Config, error) {
+	tlsClientConfig := &tls.Config{
+		InsecureSkipVerify: tlsConfig.InsecureSkipVerify,
+	}
+
+	if tlsConfig.Address != "" {
+		server := tlsConfig.Address
+		hasPort := strings.LastIndex(server, ":") > strings.LastIndex(server, "]")
+		if hasPort {
+			var err error
+			server, _, err = net.SplitHostPort(server)
+			if err != nil {
+				return nil, err
+			}
+		}
+		tlsClientConfig.ServerName = server
+	}
+
+	if tlsConfig.CertFile != "" && tlsConfig.KeyFile != "" {
+		tlsCert, err := tls.LoadX509KeyPair(tlsConfig.CertFile, tlsConfig.KeyFile)
+		if err != nil {
+			return nil, err
+		}
+		tlsClientConfig.Certificates = []tls.Certificate{tlsCert}
+	}
+
+	if tlsConfig.CAFile != "" || tlsConfig.CAPath != "" {
+		rootConfig := &rootcerts.Config{
+			CAFile: tlsConfig.CAFile,
+			CAPath: tlsConfig.CAPath,
+		}
+		if err := rootcerts.ConfigureTLS(tlsClientConfig, rootConfig); err != nil {
+			return nil, err
+		}
+	}
+
+	return tlsClientConfig, nil
+}
+
+// Client provides a client to the Consul API
+type Client struct {
+	config Config
+}
+
+// NewClient returns a new client
+func NewClient(config *Config) (*Client, error) {
+	// bootstrap the config
+	defConfig := DefaultConfig()
+
+	if len(config.Address) == 0 {
+		config.Address = defConfig.Address
+	}
+
+	if len(config.Scheme) == 0 {
+		config.Scheme = defConfig.Scheme
+	}
+
+	if config.Transport == nil {
+		config.Transport = defConfig.Transport
+	}
+
+	if config.TLSConfig.Address == "" {
+		config.TLSConfig.Address = defConfig.TLSConfig.Address
+	}
+
+	if config.TLSConfig.CAFile == "" {
+		config.TLSConfig.CAFile = defConfig.TLSConfig.CAFile
+	}
+
+	if config.TLSConfig.CAPath == "" {
+		config.TLSConfig.CAPath = defConfig.TLSConfig.CAPath
+	}
+
+	if config.TLSConfig.CertFile == "" {
+		config.TLSConfig.CertFile = defConfig.TLSConfig.CertFile
+	}
+
+	if config.TLSConfig.KeyFile == "" {
+		config.TLSConfig.KeyFile = defConfig.TLSConfig.KeyFile
+	}
+
+	if !config.TLSConfig.InsecureSkipVerify {
+		config.TLSConfig.InsecureSkipVerify = defConfig.TLSConfig.InsecureSkipVerify
+	}
+
+	if config.HttpClient == nil {
+		var err error
+		config.HttpClient, err = NewHttpClient(config.Transport, config.TLSConfig)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	parts := strings.SplitN(config.Address, "://", 2)
+	if len(parts) == 2 {
+		switch parts[0] {
+		case "http":
+			config.Scheme = "http"
+		case "https":
+			config.Scheme = "https"
+		case "unix":
+			trans := cleanhttp.DefaultTransport()
+			trans.DialContext = func(_ context.Context, _, _ string) (net.Conn, error) {
+				return net.Dial("unix", parts[1])
+			}
+			config.HttpClient = &http.Client{
+				Transport: trans,
+			}
+		default:
+			return nil, fmt.Errorf("Unknown protocol scheme: %s", parts[0])
+		}
+		config.Address = parts[1]
+	}
+
+	if config.Token == "" {
+		config.Token = defConfig.Token
+	}
+
+	return &Client{config: *config}, nil
+}
+
+// NewHttpClient returns an http client configured with the given Transport and TLS
+// config.
+func NewHttpClient(transport *http.Transport, tlsConf TLSConfig) (*http.Client, error) {
+	client := &http.Client{
+		Transport: transport,
+	}
+
+	// TODO (slackpad) - Once we get some run time on the HTTP/2 support we
+	// should turn it on by default if TLS is enabled. We would basically
+	// just need to call http2.ConfigureTransport(transport) here. We also
+	// don't want to introduce another external dependency on
+	// golang.org/x/net/http2 at this time. For a complete recipe for how
+	// to enable HTTP/2 support on a transport suitable for the API client
+	// library see agent/http_test.go:TestHTTPServer_H2.
+
+	if transport.TLSClientConfig == nil {
+		tlsClientConfig, err := SetupTLSConfig(&tlsConf)
+
+		if err != nil {
+			return nil, err
+		}
+
+		transport.TLSClientConfig = tlsClientConfig
+	}
+
+	return client, nil
+}
+
+// request is used to help build up a request
+type request struct {
+	config *Config
+	method string
+	url    *url.URL
+	params url.Values
+	body   io.Reader
+	header http.Header
+	obj    interface{}
+	ctx    context.Context
+}
+
+// setQueryOptions is used to annotate the request with
+// additional query options
+func (r *request) setQueryOptions(q *QueryOptions) {
+	if q == nil {
+		return
+	}
+	if q.Datacenter != "" {
+		r.params.Set("dc", q.Datacenter)
+	}
+	if q.AllowStale {
+		r.params.Set("stale", "")
+	}
+	if q.RequireConsistent {
+		r.params.Set("consistent", "")
+	}
+	if q.WaitIndex != 0 {
+		r.params.Set("index", strconv.FormatUint(q.WaitIndex, 10))
+	}
+	if q.WaitTime != 0 {
+		r.params.Set("wait", durToMsec(q.WaitTime))
+	}
+	if q.Token != "" {
+		r.header.Set("X-Consul-Token", q.Token)
+	}
+	if q.Near != "" {
+		r.params.Set("near", q.Near)
+	}
+	if len(q.NodeMeta) > 0 {
+		for key, value := range q.NodeMeta {
+			r.params.Add("node-meta", key+":"+value)
+		}
+	}
+	if q.RelayFactor != 0 {
+		r.params.Set("relay-factor", strconv.Itoa(int(q.RelayFactor)))
+	}
+	r.ctx = q.ctx
+}
+
+// durToMsec converts a duration to a millisecond specified string. If the
+// user selected a positive value that rounds to 0 ms, then we will use 1 ms
+// so they get a short delay, otherwise Consul will translate the 0 ms into
+// a huge default delay.
+func durToMsec(dur time.Duration) string {
+	ms := dur / time.Millisecond
+	if dur > 0 && ms == 0 {
+		ms = 1
+	}
+	return fmt.Sprintf("%dms", ms)
+}
+
+// serverError is a string we look for to detect 500 errors.
+const serverError = "Unexpected response code: 500"
+
+// IsRetryableError returns true for 500 errors from the Consul servers, and
+// network connection errors. These are usually retryable at a later time.
+// This applies to reads but NOT to writes. This may return true for errors
+// on writes that may have still gone through, so do not use this to retry
+// any write operations.
+func IsRetryableError(err error) bool {
+	if err == nil {
+		return false
+	}
+
+	if _, ok := err.(net.Error); ok {
+		return true
+	}
+
+	// TODO (slackpad) - Make a real error type here instead of using
+	// a string check.
+	return strings.Contains(err.Error(), serverError)
+}
+
+// setWriteOptions is used to annotate the request with
+// additional write options
+func (r *request) setWriteOptions(q *WriteOptions) {
+	if q == nil {
+		return
+	}
+	if q.Datacenter != "" {
+		r.params.Set("dc", q.Datacenter)
+	}
+	if q.Token != "" {
+		r.header.Set("X-Consul-Token", q.Token)
+	}
+	if q.RelayFactor != 0 {
+		r.params.Set("relay-factor", strconv.Itoa(int(q.RelayFactor)))
+	}
+	r.ctx = q.ctx
+}
+
+// toHTTP converts the request to an HTTP request
+func (r *request) toHTTP() (*http.Request, error) {
+	// Encode the query parameters
+	r.url.RawQuery = r.params.Encode()
+
+	// Check if we should encode the body
+	if r.body == nil && r.obj != nil {
+		b, err := encodeBody(r.obj)
+		if err != nil {
+			return nil, err
+		}
+		r.body = b
+	}
+
+	// Create the HTTP request
+	req, err := http.NewRequest(r.method, r.url.RequestURI(), r.body)
+	if err != nil {
+		return nil, err
+	}
+
+	req.URL.Host = r.url.Host
+	req.URL.Scheme = r.url.Scheme
+	req.Host = r.url.Host
+	req.Header = r.header
+
+	// Setup auth
+	if r.config.HttpAuth != nil {
+		req.SetBasicAuth(r.config.HttpAuth.Username, r.config.HttpAuth.Password)
+	}
+	if r.ctx != nil {
+		return req.WithContext(r.ctx), nil
+	}
+
+	return req, nil
+}
+
+// newRequest is used to create a new request
+func (c *Client) newRequest(method, path string) *request {
+	r := &request{
+		config: &c.config,
+		method: method,
+		url: &url.URL{
+			Scheme: c.config.Scheme,
+			Host:   c.config.Address,
+			Path:   path,
+		},
+		params: make(map[string][]string),
+		header: make(http.Header),
+	}
+	if c.config.Datacenter != "" {
+		r.params.Set("dc", c.config.Datacenter)
+	}
+	if c.config.WaitTime != 0 {
+		r.params.Set("wait", durToMsec(r.config.WaitTime))
+	}
+	if c.config.Token != "" {
+		r.header.Set("X-Consul-Token", r.config.Token)
+	}
+	return r
+}
+
+// doRequest runs a request with our client
+func (c *Client) doRequest(r *request) (time.Duration, *http.Response, error) {
+	req, err := r.toHTTP()
+	if err != nil {
+		return 0, nil, err
+	}
+	start := time.Now()
+	resp, err := c.config.HttpClient.Do(req)
+	diff := time.Since(start)
+	return diff, resp, err
+}
+
+// Query is used to do a GET request against an endpoint
+// and deserialize the response into an interface using
+// standard Consul conventions.
+func (c *Client) query(endpoint string, out interface{}, q *QueryOptions) (*QueryMeta, error) {
+	r := c.newRequest("GET", endpoint)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	if err := decodeBody(resp, out); err != nil {
+		return nil, err
+	}
+	return qm, nil
+}
+
+// write is used to do a PUT request against an endpoint
+// and serialize/deserialized using the standard Consul conventions.
+func (c *Client) write(endpoint string, in, out interface{}, q *WriteOptions) (*WriteMeta, error) {
+	r := c.newRequest("PUT", endpoint)
+	r.setWriteOptions(q)
+	r.obj = in
+	rtt, resp, err := requireOK(c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	if out != nil {
+		if err := decodeBody(resp, &out); err != nil {
+			return nil, err
+		}
+	} else if _, err := ioutil.ReadAll(resp.Body); err != nil {
+		return nil, err
+	}
+	return wm, nil
+}
+
+// parseQueryMeta is used to help parse query meta-data
+func parseQueryMeta(resp *http.Response, q *QueryMeta) error {
+	header := resp.Header
+
+	// Parse the X-Consul-Index
+	index, err := strconv.ParseUint(header.Get("X-Consul-Index"), 10, 64)
+	if err != nil {
+		return fmt.Errorf("Failed to parse X-Consul-Index: %v", err)
+	}
+	q.LastIndex = index
+
+	// Parse the X-Consul-LastContact
+	last, err := strconv.ParseUint(header.Get("X-Consul-LastContact"), 10, 64)
+	if err != nil {
+		return fmt.Errorf("Failed to parse X-Consul-LastContact: %v", err)
+	}
+	q.LastContact = time.Duration(last) * time.Millisecond
+
+	// Parse the X-Consul-KnownLeader
+	switch header.Get("X-Consul-KnownLeader") {
+	case "true":
+		q.KnownLeader = true
+	default:
+		q.KnownLeader = false
+	}
+
+	// Parse X-Consul-Translate-Addresses
+	switch header.Get("X-Consul-Translate-Addresses") {
+	case "true":
+		q.AddressTranslationEnabled = true
+	default:
+		q.AddressTranslationEnabled = false
+	}
+
+	return nil
+}
+
+// decodeBody is used to JSON decode a body
+func decodeBody(resp *http.Response, out interface{}) error {
+	dec := json.NewDecoder(resp.Body)
+	return dec.Decode(out)
+}
+
+// encodeBody is used to encode a request body
+func encodeBody(obj interface{}) (io.Reader, error) {
+	buf := bytes.NewBuffer(nil)
+	enc := json.NewEncoder(buf)
+	if err := enc.Encode(obj); err != nil {
+		return nil, err
+	}
+	return buf, nil
+}
+
+// requireOK is used to wrap doRequest and check for a 200
+func requireOK(d time.Duration, resp *http.Response, e error) (time.Duration, *http.Response, error) {
+	if e != nil {
+		if resp != nil {
+			resp.Body.Close()
+		}
+		return d, nil, e
+	}
+	if resp.StatusCode != 200 {
+		var buf bytes.Buffer
+		io.Copy(&buf, resp.Body)
+		resp.Body.Close()
+		return d, nil, fmt.Errorf("Unexpected response code: %d (%s)", resp.StatusCode, buf.Bytes())
+	}
+	return d, resp, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/catalog.go b/vendor/github.com/hashicorp/consul/api/catalog.go
new file mode 100644
index 0000000000..80ce1bc815
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/catalog.go
@@ -0,0 +1,200 @@
+package api
+
+type Node struct {
+	ID              string
+	Node            string
+	Address         string
+	Datacenter      string
+	TaggedAddresses map[string]string
+	Meta            map[string]string
+	CreateIndex     uint64
+	ModifyIndex     uint64
+}
+
+type CatalogService struct {
+	ID                       string
+	Node                     string
+	Address                  string
+	Datacenter               string
+	TaggedAddresses          map[string]string
+	NodeMeta                 map[string]string
+	ServiceID                string
+	ServiceName              string
+	ServiceAddress           string
+	ServiceTags              []string
+	ServiceMeta              map[string]string
+	ServicePort              int
+	ServiceEnableTagOverride bool
+	CreateIndex              uint64
+	ModifyIndex              uint64
+}
+
+type CatalogNode struct {
+	Node     *Node
+	Services map[string]*AgentService
+}
+
+type CatalogRegistration struct {
+	ID              string
+	Node            string
+	Address         string
+	TaggedAddresses map[string]string
+	NodeMeta        map[string]string
+	Datacenter      string
+	Service         *AgentService
+	Check           *AgentCheck
+	SkipNodeUpdate  bool
+}
+
+type CatalogDeregistration struct {
+	Node       string
+	Address    string // Obsolete.
+	Datacenter string
+	ServiceID  string
+	CheckID    string
+}
+
+// Catalog can be used to query the Catalog endpoints
+type Catalog struct {
+	c *Client
+}
+
+// Catalog returns a handle to the catalog endpoints
+func (c *Client) Catalog() *Catalog {
+	return &Catalog{c}
+}
+
+func (c *Catalog) Register(reg *CatalogRegistration, q *WriteOptions) (*WriteMeta, error) {
+	r := c.c.newRequest("PUT", "/v1/catalog/register")
+	r.setWriteOptions(q)
+	r.obj = reg
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	return wm, nil
+}
+
+func (c *Catalog) Deregister(dereg *CatalogDeregistration, q *WriteOptions) (*WriteMeta, error) {
+	r := c.c.newRequest("PUT", "/v1/catalog/deregister")
+	r.setWriteOptions(q)
+	r.obj = dereg
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	return wm, nil
+}
+
+// Datacenters is used to query for all the known datacenters
+func (c *Catalog) Datacenters() ([]string, error) {
+	r := c.c.newRequest("GET", "/v1/catalog/datacenters")
+	_, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out []string
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Nodes is used to query all the known nodes
+func (c *Catalog) Nodes(q *QueryOptions) ([]*Node, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/catalog/nodes")
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out []*Node
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Services is used to query for all known services
+func (c *Catalog) Services(q *QueryOptions) (map[string][]string, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/catalog/services")
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out map[string][]string
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Service is used to query catalog entries for a given service
+func (c *Catalog) Service(service, tag string, q *QueryOptions) ([]*CatalogService, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/catalog/service/"+service)
+	r.setQueryOptions(q)
+	if tag != "" {
+		r.params.Set("tag", tag)
+	}
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out []*CatalogService
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Node is used to query for service information about a single node
+func (c *Catalog) Node(node string, q *QueryOptions) (*CatalogNode, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/catalog/node/"+node)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out *CatalogNode
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/coordinate.go b/vendor/github.com/hashicorp/consul/api/coordinate.go
new file mode 100644
index 0000000000..53318f11dd
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/coordinate.go
@@ -0,0 +1,106 @@
+package api
+
+import (
+	"github.com/hashicorp/serf/coordinate"
+)
+
+// CoordinateEntry represents a node and its associated network coordinate.
+type CoordinateEntry struct {
+	Node    string
+	Segment string
+	Coord   *coordinate.Coordinate
+}
+
+// CoordinateDatacenterMap has the coordinates for servers in a given datacenter
+// and area. Network coordinates are only compatible within the same area.
+type CoordinateDatacenterMap struct {
+	Datacenter  string
+	AreaID      string
+	Coordinates []CoordinateEntry
+}
+
+// Coordinate can be used to query the coordinate endpoints
+type Coordinate struct {
+	c *Client
+}
+
+// Coordinate returns a handle to the coordinate endpoints
+func (c *Client) Coordinate() *Coordinate {
+	return &Coordinate{c}
+}
+
+// Datacenters is used to return the coordinates of all the servers in the WAN
+// pool.
+func (c *Coordinate) Datacenters() ([]*CoordinateDatacenterMap, error) {
+	r := c.c.newRequest("GET", "/v1/coordinate/datacenters")
+	_, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out []*CoordinateDatacenterMap
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Nodes is used to return the coordinates of all the nodes in the LAN pool.
+func (c *Coordinate) Nodes(q *QueryOptions) ([]*CoordinateEntry, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/coordinate/nodes")
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out []*CoordinateEntry
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Update inserts or updates the LAN coordinate of a node.
+func (c *Coordinate) Update(coord *CoordinateEntry, q *WriteOptions) (*WriteMeta, error) {
+	r := c.c.newRequest("PUT", "/v1/coordinate/update")
+	r.setWriteOptions(q)
+	r.obj = coord
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	return wm, nil
+}
+
+// Node is used to return the coordinates of a single in the LAN pool.
+func (c *Coordinate) Node(node string, q *QueryOptions) ([]*CoordinateEntry, *QueryMeta, error) {
+	r := c.c.newRequest("GET", "/v1/coordinate/node/"+node)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out []*CoordinateEntry
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/event.go b/vendor/github.com/hashicorp/consul/api/event.go
new file mode 100644
index 0000000000..85b5b069b0
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/event.go
@@ -0,0 +1,104 @@
+package api
+
+import (
+	"bytes"
+	"strconv"
+)
+
+// Event can be used to query the Event endpoints
+type Event struct {
+	c *Client
+}
+
+// UserEvent represents an event that was fired by the user
+type UserEvent struct {
+	ID            string
+	Name          string
+	Payload       []byte
+	NodeFilter    string
+	ServiceFilter string
+	TagFilter     string
+	Version       int
+	LTime         uint64
+}
+
+// Event returns a handle to the event endpoints
+func (c *Client) Event() *Event {
+	return &Event{c}
+}
+
+// Fire is used to fire a new user event. Only the Name, Payload and Filters
+// are respected. This returns the ID or an associated error. Cross DC requests
+// are supported.
+func (e *Event) Fire(params *UserEvent, q *WriteOptions) (string, *WriteMeta, error) {
+	r := e.c.newRequest("PUT", "/v1/event/fire/"+params.Name)
+	r.setWriteOptions(q)
+	if params.NodeFilter != "" {
+		r.params.Set("node", params.NodeFilter)
+	}
+	if params.ServiceFilter != "" {
+		r.params.Set("service", params.ServiceFilter)
+	}
+	if params.TagFilter != "" {
+		r.params.Set("tag", params.TagFilter)
+	}
+	if params.Payload != nil {
+		r.body = bytes.NewReader(params.Payload)
+	}
+
+	rtt, resp, err := requireOK(e.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+	var out UserEvent
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// List is used to get the most recent events an agent has received.
+// This list can be optionally filtered by the name. This endpoint supports
+// quasi-blocking queries. The index is not monotonic, nor does it provide provide
+// LastContact or KnownLeader.
+func (e *Event) List(name string, q *QueryOptions) ([]*UserEvent, *QueryMeta, error) {
+	r := e.c.newRequest("GET", "/v1/event/list")
+	r.setQueryOptions(q)
+	if name != "" {
+		r.params.Set("name", name)
+	}
+	rtt, resp, err := requireOK(e.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var entries []*UserEvent
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
+
+// IDToIndex is a bit of a hack. This simulates the index generation to
+// convert an event ID into a WaitIndex.
+func (e *Event) IDToIndex(uuid string) uint64 {
+	lower := uuid[0:8] + uuid[9:13] + uuid[14:18]
+	upper := uuid[19:23] + uuid[24:36]
+	lowVal, err := strconv.ParseUint(lower, 16, 64)
+	if err != nil {
+		panic("Failed to convert " + lower)
+	}
+	highVal, err := strconv.ParseUint(upper, 16, 64)
+	if err != nil {
+		panic("Failed to convert " + upper)
+	}
+	return lowVal ^ highVal
+}
diff --git a/vendor/github.com/hashicorp/consul/api/health.go b/vendor/github.com/hashicorp/consul/api/health.go
new file mode 100644
index 0000000000..53f3de4f79
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/health.go
@@ -0,0 +1,215 @@
+package api
+
+import (
+	"fmt"
+	"strings"
+)
+
+const (
+	// HealthAny is special, and is used as a wild card,
+	// not as a specific state.
+	HealthAny      = "any"
+	HealthPassing  = "passing"
+	HealthWarning  = "warning"
+	HealthCritical = "critical"
+	HealthMaint    = "maintenance"
+)
+
+const (
+	// NodeMaint is the special key set by a node in maintenance mode.
+	NodeMaint = "_node_maintenance"
+
+	// ServiceMaintPrefix is the prefix for a service in maintenance mode.
+	ServiceMaintPrefix = "_service_maintenance:"
+)
+
+// HealthCheck is used to represent a single check
+type HealthCheck struct {
+	Node        string
+	CheckID     string
+	Name        string
+	Status      string
+	Notes       string
+	Output      string
+	ServiceID   string
+	ServiceName string
+	ServiceTags []string
+
+	Definition HealthCheckDefinition
+}
+
+// HealthCheckDefinition is used to store the details about
+// a health check's execution.
+type HealthCheckDefinition struct {
+	HTTP                           string
+	Header                         map[string][]string
+	Method                         string
+	TLSSkipVerify                  bool
+	TCP                            string
+	Interval                       ReadableDuration
+	Timeout                        ReadableDuration
+	DeregisterCriticalServiceAfter ReadableDuration
+}
+
+// HealthChecks is a collection of HealthCheck structs.
+type HealthChecks []*HealthCheck
+
+// AggregatedStatus returns the "best" status for the list of health checks.
+// Because a given entry may have many service and node-level health checks
+// attached, this function determines the best representative of the status as
+// as single string using the following heuristic:
+//
+//  maintenance > critical > warning > passing
+//
+func (c HealthChecks) AggregatedStatus() string {
+	var passing, warning, critical, maintenance bool
+	for _, check := range c {
+		id := string(check.CheckID)
+		if id == NodeMaint || strings.HasPrefix(id, ServiceMaintPrefix) {
+			maintenance = true
+			continue
+		}
+
+		switch check.Status {
+		case HealthPassing:
+			passing = true
+		case HealthWarning:
+			warning = true
+		case HealthCritical:
+			critical = true
+		default:
+			return ""
+		}
+	}
+
+	switch {
+	case maintenance:
+		return HealthMaint
+	case critical:
+		return HealthCritical
+	case warning:
+		return HealthWarning
+	case passing:
+		return HealthPassing
+	default:
+		return HealthPassing
+	}
+}
+
+// ServiceEntry is used for the health service endpoint
+type ServiceEntry struct {
+	Node    *Node
+	Service *AgentService
+	Checks  HealthChecks
+}
+
+// Health can be used to query the Health endpoints
+type Health struct {
+	c *Client
+}
+
+// Health returns a handle to the health endpoints
+func (c *Client) Health() *Health {
+	return &Health{c}
+}
+
+// Node is used to query for checks belonging to a given node
+func (h *Health) Node(node string, q *QueryOptions) (HealthChecks, *QueryMeta, error) {
+	r := h.c.newRequest("GET", "/v1/health/node/"+node)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(h.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out HealthChecks
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Checks is used to return the checks associated with a service
+func (h *Health) Checks(service string, q *QueryOptions) (HealthChecks, *QueryMeta, error) {
+	r := h.c.newRequest("GET", "/v1/health/checks/"+service)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(h.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out HealthChecks
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Service is used to query health information along with service info
+// for a given service. It can optionally do server-side filtering on a tag
+// or nodes with passing health checks only.
+func (h *Health) Service(service, tag string, passingOnly bool, q *QueryOptions) ([]*ServiceEntry, *QueryMeta, error) {
+	r := h.c.newRequest("GET", "/v1/health/service/"+service)
+	r.setQueryOptions(q)
+	if tag != "" {
+		r.params.Set("tag", tag)
+	}
+	if passingOnly {
+		r.params.Set(HealthPassing, "1")
+	}
+	rtt, resp, err := requireOK(h.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out []*ServiceEntry
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// State is used to retrieve all the checks in a given state.
+// The wildcard "any" state can also be used for all checks.
+func (h *Health) State(state string, q *QueryOptions) (HealthChecks, *QueryMeta, error) {
+	switch state {
+	case HealthAny:
+	case HealthWarning:
+	case HealthCritical:
+	case HealthPassing:
+	default:
+		return nil, nil, fmt.Errorf("Unsupported state: %v", state)
+	}
+	r := h.c.newRequest("GET", "/v1/health/state/"+state)
+	r.setQueryOptions(q)
+	rtt, resp, err := requireOK(h.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	var out HealthChecks
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/kv.go b/vendor/github.com/hashicorp/consul/api/kv.go
new file mode 100644
index 0000000000..97f5156855
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/kv.go
@@ -0,0 +1,420 @@
+package api
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"net/http"
+	"strconv"
+	"strings"
+)
+
+// KVPair is used to represent a single K/V entry
+type KVPair struct {
+	// Key is the name of the key. It is also part of the URL path when accessed
+	// via the API.
+	Key string
+
+	// CreateIndex holds the index corresponding the creation of this KVPair. This
+	// is a read-only field.
+	CreateIndex uint64
+
+	// ModifyIndex is used for the Check-And-Set operations and can also be fed
+	// back into the WaitIndex of the QueryOptions in order to perform blocking
+	// queries.
+	ModifyIndex uint64
+
+	// LockIndex holds the index corresponding to a lock on this key, if any. This
+	// is a read-only field.
+	LockIndex uint64
+
+	// Flags are any user-defined flags on the key. It is up to the implementer
+	// to check these values, since Consul does not treat them specially.
+	Flags uint64
+
+	// Value is the value for the key. This can be any value, but it will be
+	// base64 encoded upon transport.
+	Value []byte
+
+	// Session is a string representing the ID of the session. Any other
+	// interactions with this key over the same session must specify the same
+	// session ID.
+	Session string
+}
+
+// KVPairs is a list of KVPair objects
+type KVPairs []*KVPair
+
+// KVOp constants give possible operations available in a KVTxn.
+type KVOp string
+
+const (
+	KVSet            KVOp = "set"
+	KVDelete         KVOp = "delete"
+	KVDeleteCAS      KVOp = "delete-cas"
+	KVDeleteTree     KVOp = "delete-tree"
+	KVCAS            KVOp = "cas"
+	KVLock           KVOp = "lock"
+	KVUnlock         KVOp = "unlock"
+	KVGet            KVOp = "get"
+	KVGetTree        KVOp = "get-tree"
+	KVCheckSession   KVOp = "check-session"
+	KVCheckIndex     KVOp = "check-index"
+	KVCheckNotExists KVOp = "check-not-exists"
+)
+
+// KVTxnOp defines a single operation inside a transaction.
+type KVTxnOp struct {
+	Verb    KVOp
+	Key     string
+	Value   []byte
+	Flags   uint64
+	Index   uint64
+	Session string
+}
+
+// KVTxnOps defines a set of operations to be performed inside a single
+// transaction.
+type KVTxnOps []*KVTxnOp
+
+// KVTxnResponse has the outcome of a transaction.
+type KVTxnResponse struct {
+	Results []*KVPair
+	Errors  TxnErrors
+}
+
+// KV is used to manipulate the K/V API
+type KV struct {
+	c *Client
+}
+
+// KV is used to return a handle to the K/V apis
+func (c *Client) KV() *KV {
+	return &KV{c}
+}
+
+// Get is used to lookup a single key. The returned pointer
+// to the KVPair will be nil if the key does not exist.
+func (k *KV) Get(key string, q *QueryOptions) (*KVPair, *QueryMeta, error) {
+	resp, qm, err := k.getInternal(key, nil, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	if resp == nil {
+		return nil, qm, nil
+	}
+	defer resp.Body.Close()
+
+	var entries []*KVPair
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	if len(entries) > 0 {
+		return entries[0], qm, nil
+	}
+	return nil, qm, nil
+}
+
+// List is used to lookup all keys under a prefix
+func (k *KV) List(prefix string, q *QueryOptions) (KVPairs, *QueryMeta, error) {
+	resp, qm, err := k.getInternal(prefix, map[string]string{"recurse": ""}, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	if resp == nil {
+		return nil, qm, nil
+	}
+	defer resp.Body.Close()
+
+	var entries []*KVPair
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
+
+// Keys is used to list all the keys under a prefix. Optionally,
+// a separator can be used to limit the responses.
+func (k *KV) Keys(prefix, separator string, q *QueryOptions) ([]string, *QueryMeta, error) {
+	params := map[string]string{"keys": ""}
+	if separator != "" {
+		params["separator"] = separator
+	}
+	resp, qm, err := k.getInternal(prefix, params, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	if resp == nil {
+		return nil, qm, nil
+	}
+	defer resp.Body.Close()
+
+	var entries []string
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
+
+func (k *KV) getInternal(key string, params map[string]string, q *QueryOptions) (*http.Response, *QueryMeta, error) {
+	r := k.c.newRequest("GET", "/v1/kv/"+strings.TrimPrefix(key, "/"))
+	r.setQueryOptions(q)
+	for param, val := range params {
+		r.params.Set(param, val)
+	}
+	rtt, resp, err := k.c.doRequest(r)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	if resp.StatusCode == 404 {
+		resp.Body.Close()
+		return nil, qm, nil
+	} else if resp.StatusCode != 200 {
+		resp.Body.Close()
+		return nil, nil, fmt.Errorf("Unexpected response code: %d", resp.StatusCode)
+	}
+	return resp, qm, nil
+}
+
+// Put is used to write a new value. Only the
+// Key, Flags and Value is respected.
+func (k *KV) Put(p *KVPair, q *WriteOptions) (*WriteMeta, error) {
+	params := make(map[string]string, 1)
+	if p.Flags != 0 {
+		params["flags"] = strconv.FormatUint(p.Flags, 10)
+	}
+	_, wm, err := k.put(p.Key, params, p.Value, q)
+	return wm, err
+}
+
+// CAS is used for a Check-And-Set operation. The Key,
+// ModifyIndex, Flags and Value are respected. Returns true
+// on success or false on failures.
+func (k *KV) CAS(p *KVPair, q *WriteOptions) (bool, *WriteMeta, error) {
+	params := make(map[string]string, 2)
+	if p.Flags != 0 {
+		params["flags"] = strconv.FormatUint(p.Flags, 10)
+	}
+	params["cas"] = strconv.FormatUint(p.ModifyIndex, 10)
+	return k.put(p.Key, params, p.Value, q)
+}
+
+// Acquire is used for a lock acquisition operation. The Key,
+// Flags, Value and Session are respected. Returns true
+// on success or false on failures.
+func (k *KV) Acquire(p *KVPair, q *WriteOptions) (bool, *WriteMeta, error) {
+	params := make(map[string]string, 2)
+	if p.Flags != 0 {
+		params["flags"] = strconv.FormatUint(p.Flags, 10)
+	}
+	params["acquire"] = p.Session
+	return k.put(p.Key, params, p.Value, q)
+}
+
+// Release is used for a lock release operation. The Key,
+// Flags, Value and Session are respected. Returns true
+// on success or false on failures.
+func (k *KV) Release(p *KVPair, q *WriteOptions) (bool, *WriteMeta, error) {
+	params := make(map[string]string, 2)
+	if p.Flags != 0 {
+		params["flags"] = strconv.FormatUint(p.Flags, 10)
+	}
+	params["release"] = p.Session
+	return k.put(p.Key, params, p.Value, q)
+}
+
+func (k *KV) put(key string, params map[string]string, body []byte, q *WriteOptions) (bool, *WriteMeta, error) {
+	if len(key) > 0 && key[0] == '/' {
+		return false, nil, fmt.Errorf("Invalid key. Key must not begin with a '/': %s", key)
+	}
+
+	r := k.c.newRequest("PUT", "/v1/kv/"+key)
+	r.setWriteOptions(q)
+	for param, val := range params {
+		r.params.Set(param, val)
+	}
+	r.body = bytes.NewReader(body)
+	rtt, resp, err := requireOK(k.c.doRequest(r))
+	if err != nil {
+		return false, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &WriteMeta{}
+	qm.RequestTime = rtt
+
+	var buf bytes.Buffer
+	if _, err := io.Copy(&buf, resp.Body); err != nil {
+		return false, nil, fmt.Errorf("Failed to read response: %v", err)
+	}
+	res := strings.Contains(buf.String(), "true")
+	return res, qm, nil
+}
+
+// Delete is used to delete a single key
+func (k *KV) Delete(key string, w *WriteOptions) (*WriteMeta, error) {
+	_, qm, err := k.deleteInternal(key, nil, w)
+	return qm, err
+}
+
+// DeleteCAS is used for a Delete Check-And-Set operation. The Key
+// and ModifyIndex are respected. Returns true on success or false on failures.
+func (k *KV) DeleteCAS(p *KVPair, q *WriteOptions) (bool, *WriteMeta, error) {
+	params := map[string]string{
+		"cas": strconv.FormatUint(p.ModifyIndex, 10),
+	}
+	return k.deleteInternal(p.Key, params, q)
+}
+
+// DeleteTree is used to delete all keys under a prefix
+func (k *KV) DeleteTree(prefix string, w *WriteOptions) (*WriteMeta, error) {
+	_, qm, err := k.deleteInternal(prefix, map[string]string{"recurse": ""}, w)
+	return qm, err
+}
+
+func (k *KV) deleteInternal(key string, params map[string]string, q *WriteOptions) (bool, *WriteMeta, error) {
+	r := k.c.newRequest("DELETE", "/v1/kv/"+strings.TrimPrefix(key, "/"))
+	r.setWriteOptions(q)
+	for param, val := range params {
+		r.params.Set(param, val)
+	}
+	rtt, resp, err := requireOK(k.c.doRequest(r))
+	if err != nil {
+		return false, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &WriteMeta{}
+	qm.RequestTime = rtt
+
+	var buf bytes.Buffer
+	if _, err := io.Copy(&buf, resp.Body); err != nil {
+		return false, nil, fmt.Errorf("Failed to read response: %v", err)
+	}
+	res := strings.Contains(buf.String(), "true")
+	return res, qm, nil
+}
+
+// TxnOp is the internal format we send to Consul. It's not specific to KV,
+// though currently only KV operations are supported.
+type TxnOp struct {
+	KV *KVTxnOp
+}
+
+// TxnOps is a list of transaction operations.
+type TxnOps []*TxnOp
+
+// TxnResult is the internal format we receive from Consul.
+type TxnResult struct {
+	KV *KVPair
+}
+
+// TxnResults is a list of TxnResult objects.
+type TxnResults []*TxnResult
+
+// TxnError is used to return information about an operation in a transaction.
+type TxnError struct {
+	OpIndex int
+	What    string
+}
+
+// TxnErrors is a list of TxnError objects.
+type TxnErrors []*TxnError
+
+// TxnResponse is the internal format we receive from Consul.
+type TxnResponse struct {
+	Results TxnResults
+	Errors  TxnErrors
+}
+
+// Txn is used to apply multiple KV operations in a single, atomic transaction.
+//
+// Note that Go will perform the required base64 encoding on the values
+// automatically because the type is a byte slice. Transactions are defined as a
+// list of operations to perform, using the KVOp constants and KVTxnOp structure
+// to define operations. If any operation fails, none of the changes are applied
+// to the state store. Note that this hides the internal raw transaction interface
+// and munges the input and output types into KV-specific ones for ease of use.
+// If there are more non-KV operations in the future we may break out a new
+// transaction API client, but it will be easy to keep this KV-specific variant
+// supported.
+//
+// Even though this is generally a write operation, we take a QueryOptions input
+// and return a QueryMeta output. If the transaction contains only read ops, then
+// Consul will fast-path it to a different endpoint internally which supports
+// consistency controls, but not blocking. If there are write operations then
+// the request will always be routed through raft and any consistency settings
+// will be ignored.
+//
+// Here's an example:
+//
+//	   ops := KVTxnOps{
+//		   &KVTxnOp{
+//			   Verb:    KVLock,
+//			   Key:     "test/lock",
+//			   Session: "adf4238a-882b-9ddc-4a9d-5b6758e4159e",
+//			   Value:   []byte("hello"),
+//		   },
+//		   &KVTxnOp{
+//			   Verb:    KVGet,
+//			   Key:     "another/key",
+//		   },
+//	   }
+//	   ok, response, _, err := kv.Txn(&ops, nil)
+//
+// If there is a problem making the transaction request then an error will be
+// returned. Otherwise, the ok value will be true if the transaction succeeded
+// or false if it was rolled back. The response is a structured return value which
+// will have the outcome of the transaction. Its Results member will have entries
+// for each operation. Deleted keys will have a nil entry in the, and to save
+// space, the Value of each key in the Results will be nil unless the operation
+// is a KVGet. If the transaction was rolled back, the Errors member will have
+// entries referencing the index of the operation that failed along with an error
+// message.
+func (k *KV) Txn(txn KVTxnOps, q *QueryOptions) (bool, *KVTxnResponse, *QueryMeta, error) {
+	r := k.c.newRequest("PUT", "/v1/txn")
+	r.setQueryOptions(q)
+
+	// Convert into the internal format since this is an all-KV txn.
+	ops := make(TxnOps, 0, len(txn))
+	for _, kvOp := range txn {
+		ops = append(ops, &TxnOp{KV: kvOp})
+	}
+	r.obj = ops
+	rtt, resp, err := k.c.doRequest(r)
+	if err != nil {
+		return false, nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+
+	if resp.StatusCode == http.StatusOK || resp.StatusCode == http.StatusConflict {
+		var txnResp TxnResponse
+		if err := decodeBody(resp, &txnResp); err != nil {
+			return false, nil, nil, err
+		}
+
+		// Convert from the internal format.
+		kvResp := KVTxnResponse{
+			Errors: txnResp.Errors,
+		}
+		for _, result := range txnResp.Results {
+			kvResp.Results = append(kvResp.Results, result.KV)
+		}
+		return resp.StatusCode == http.StatusOK, &kvResp, qm, nil
+	}
+
+	var buf bytes.Buffer
+	if _, err := io.Copy(&buf, resp.Body); err != nil {
+		return false, nil, nil, fmt.Errorf("Failed to read response: %v", err)
+	}
+	return false, nil, nil, fmt.Errorf("Failed request: %s", buf.String())
+}
diff --git a/vendor/github.com/hashicorp/consul/api/lock.go b/vendor/github.com/hashicorp/consul/api/lock.go
new file mode 100644
index 0000000000..41f72e7d23
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/lock.go
@@ -0,0 +1,385 @@
+package api
+
+import (
+	"fmt"
+	"sync"
+	"time"
+)
+
+const (
+	// DefaultLockSessionName is the Session Name we assign if none is provided
+	DefaultLockSessionName = "Consul API Lock"
+
+	// DefaultLockSessionTTL is the default session TTL if no Session is provided
+	// when creating a new Lock. This is used because we do not have another
+	// other check to depend upon.
+	DefaultLockSessionTTL = "15s"
+
+	// DefaultLockWaitTime is how long we block for at a time to check if lock
+	// acquisition is possible. This affects the minimum time it takes to cancel
+	// a Lock acquisition.
+	DefaultLockWaitTime = 15 * time.Second
+
+	// DefaultLockRetryTime is how long we wait after a failed lock acquisition
+	// before attempting to do the lock again. This is so that once a lock-delay
+	// is in effect, we do not hot loop retrying the acquisition.
+	DefaultLockRetryTime = 5 * time.Second
+
+	// DefaultMonitorRetryTime is how long we wait after a failed monitor check
+	// of a lock (500 response code). This allows the monitor to ride out brief
+	// periods of unavailability, subject to the MonitorRetries setting in the
+	// lock options which is by default set to 0, disabling this feature. This
+	// affects locks and semaphores.
+	DefaultMonitorRetryTime = 2 * time.Second
+
+	// LockFlagValue is a magic flag we set to indicate a key
+	// is being used for a lock. It is used to detect a potential
+	// conflict with a semaphore.
+	LockFlagValue = 0x2ddccbc058a50c18
+)
+
+var (
+	// ErrLockHeld is returned if we attempt to double lock
+	ErrLockHeld = fmt.Errorf("Lock already held")
+
+	// ErrLockNotHeld is returned if we attempt to unlock a lock
+	// that we do not hold.
+	ErrLockNotHeld = fmt.Errorf("Lock not held")
+
+	// ErrLockInUse is returned if we attempt to destroy a lock
+	// that is in use.
+	ErrLockInUse = fmt.Errorf("Lock in use")
+
+	// ErrLockConflict is returned if the flags on a key
+	// used for a lock do not match expectation
+	ErrLockConflict = fmt.Errorf("Existing key does not match lock use")
+)
+
+// Lock is used to implement client-side leader election. It is follows the
+// algorithm as described here: https://www.consul.io/docs/guides/leader-election.html.
+type Lock struct {
+	c    *Client
+	opts *LockOptions
+
+	isHeld       bool
+	sessionRenew chan struct{}
+	lockSession  string
+	l            sync.Mutex
+}
+
+// LockOptions is used to parameterize the Lock behavior.
+type LockOptions struct {
+	Key              string        // Must be set and have write permissions
+	Value            []byte        // Optional, value to associate with the lock
+	Session          string        // Optional, created if not specified
+	SessionOpts      *SessionEntry // Optional, options to use when creating a session
+	SessionName      string        // Optional, defaults to DefaultLockSessionName (ignored if SessionOpts is given)
+	SessionTTL       string        // Optional, defaults to DefaultLockSessionTTL (ignored if SessionOpts is given)
+	MonitorRetries   int           // Optional, defaults to 0 which means no retries
+	MonitorRetryTime time.Duration // Optional, defaults to DefaultMonitorRetryTime
+	LockWaitTime     time.Duration // Optional, defaults to DefaultLockWaitTime
+	LockTryOnce      bool          // Optional, defaults to false which means try forever
+}
+
+// LockKey returns a handle to a lock struct which can be used
+// to acquire and release the mutex. The key used must have
+// write permissions.
+func (c *Client) LockKey(key string) (*Lock, error) {
+	opts := &LockOptions{
+		Key: key,
+	}
+	return c.LockOpts(opts)
+}
+
+// LockOpts returns a handle to a lock struct which can be used
+// to acquire and release the mutex. The key used must have
+// write permissions.
+func (c *Client) LockOpts(opts *LockOptions) (*Lock, error) {
+	if opts.Key == "" {
+		return nil, fmt.Errorf("missing key")
+	}
+	if opts.SessionName == "" {
+		opts.SessionName = DefaultLockSessionName
+	}
+	if opts.SessionTTL == "" {
+		opts.SessionTTL = DefaultLockSessionTTL
+	} else {
+		if _, err := time.ParseDuration(opts.SessionTTL); err != nil {
+			return nil, fmt.Errorf("invalid SessionTTL: %v", err)
+		}
+	}
+	if opts.MonitorRetryTime == 0 {
+		opts.MonitorRetryTime = DefaultMonitorRetryTime
+	}
+	if opts.LockWaitTime == 0 {
+		opts.LockWaitTime = DefaultLockWaitTime
+	}
+	l := &Lock{
+		c:    c,
+		opts: opts,
+	}
+	return l, nil
+}
+
+// Lock attempts to acquire the lock and blocks while doing so.
+// Providing a non-nil stopCh can be used to abort the lock attempt.
+// Returns a channel that is closed if our lock is lost or an error.
+// This channel could be closed at any time due to session invalidation,
+// communication errors, operator intervention, etc. It is NOT safe to
+// assume that the lock is held until Unlock() unless the Session is specifically
+// created without any associated health checks. By default Consul sessions
+// prefer liveness over safety and an application must be able to handle
+// the lock being lost.
+func (l *Lock) Lock(stopCh <-chan struct{}) (<-chan struct{}, error) {
+	// Hold the lock as we try to acquire
+	l.l.Lock()
+	defer l.l.Unlock()
+
+	// Check if we already hold the lock
+	if l.isHeld {
+		return nil, ErrLockHeld
+	}
+
+	// Check if we need to create a session first
+	l.lockSession = l.opts.Session
+	if l.lockSession == "" {
+		s, err := l.createSession()
+		if err != nil {
+			return nil, fmt.Errorf("failed to create session: %v", err)
+		}
+
+		l.sessionRenew = make(chan struct{})
+		l.lockSession = s
+		session := l.c.Session()
+		go session.RenewPeriodic(l.opts.SessionTTL, s, nil, l.sessionRenew)
+
+		// If we fail to acquire the lock, cleanup the session
+		defer func() {
+			if !l.isHeld {
+				close(l.sessionRenew)
+				l.sessionRenew = nil
+			}
+		}()
+	}
+
+	// Setup the query options
+	kv := l.c.KV()
+	qOpts := &QueryOptions{
+		WaitTime: l.opts.LockWaitTime,
+	}
+
+	start := time.Now()
+	attempts := 0
+WAIT:
+	// Check if we should quit
+	select {
+	case <-stopCh:
+		return nil, nil
+	default:
+	}
+
+	// Handle the one-shot mode.
+	if l.opts.LockTryOnce && attempts > 0 {
+		elapsed := time.Since(start)
+		if elapsed > qOpts.WaitTime {
+			return nil, nil
+		}
+
+		qOpts.WaitTime -= elapsed
+	}
+	attempts++
+
+	// Look for an existing lock, blocking until not taken
+	pair, meta, err := kv.Get(l.opts.Key, qOpts)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read lock: %v", err)
+	}
+	if pair != nil && pair.Flags != LockFlagValue {
+		return nil, ErrLockConflict
+	}
+	locked := false
+	if pair != nil && pair.Session == l.lockSession {
+		goto HELD
+	}
+	if pair != nil && pair.Session != "" {
+		qOpts.WaitIndex = meta.LastIndex
+		goto WAIT
+	}
+
+	// Try to acquire the lock
+	pair = l.lockEntry(l.lockSession)
+	locked, _, err = kv.Acquire(pair, nil)
+	if err != nil {
+		return nil, fmt.Errorf("failed to acquire lock: %v", err)
+	}
+
+	// Handle the case of not getting the lock
+	if !locked {
+		// Determine why the lock failed
+		qOpts.WaitIndex = 0
+		pair, meta, err = kv.Get(l.opts.Key, qOpts)
+		if pair != nil && pair.Session != "" {
+			//If the session is not null, this means that a wait can safely happen
+			//using a long poll
+			qOpts.WaitIndex = meta.LastIndex
+			goto WAIT
+		} else {
+			// If the session is empty and the lock failed to acquire, then it means
+			// a lock-delay is in effect and a timed wait must be used
+			select {
+			case <-time.After(DefaultLockRetryTime):
+				goto WAIT
+			case <-stopCh:
+				return nil, nil
+			}
+		}
+	}
+
+HELD:
+	// Watch to ensure we maintain leadership
+	leaderCh := make(chan struct{})
+	go l.monitorLock(l.lockSession, leaderCh)
+
+	// Set that we own the lock
+	l.isHeld = true
+
+	// Locked! All done
+	return leaderCh, nil
+}
+
+// Unlock released the lock. It is an error to call this
+// if the lock is not currently held.
+func (l *Lock) Unlock() error {
+	// Hold the lock as we try to release
+	l.l.Lock()
+	defer l.l.Unlock()
+
+	// Ensure the lock is actually held
+	if !l.isHeld {
+		return ErrLockNotHeld
+	}
+
+	// Set that we no longer own the lock
+	l.isHeld = false
+
+	// Stop the session renew
+	if l.sessionRenew != nil {
+		defer func() {
+			close(l.sessionRenew)
+			l.sessionRenew = nil
+		}()
+	}
+
+	// Get the lock entry, and clear the lock session
+	lockEnt := l.lockEntry(l.lockSession)
+	l.lockSession = ""
+
+	// Release the lock explicitly
+	kv := l.c.KV()
+	_, _, err := kv.Release(lockEnt, nil)
+	if err != nil {
+		return fmt.Errorf("failed to release lock: %v", err)
+	}
+	return nil
+}
+
+// Destroy is used to cleanup the lock entry. It is not necessary
+// to invoke. It will fail if the lock is in use.
+func (l *Lock) Destroy() error {
+	// Hold the lock as we try to release
+	l.l.Lock()
+	defer l.l.Unlock()
+
+	// Check if we already hold the lock
+	if l.isHeld {
+		return ErrLockHeld
+	}
+
+	// Look for an existing lock
+	kv := l.c.KV()
+	pair, _, err := kv.Get(l.opts.Key, nil)
+	if err != nil {
+		return fmt.Errorf("failed to read lock: %v", err)
+	}
+
+	// Nothing to do if the lock does not exist
+	if pair == nil {
+		return nil
+	}
+
+	// Check for possible flag conflict
+	if pair.Flags != LockFlagValue {
+		return ErrLockConflict
+	}
+
+	// Check if it is in use
+	if pair.Session != "" {
+		return ErrLockInUse
+	}
+
+	// Attempt the delete
+	didRemove, _, err := kv.DeleteCAS(pair, nil)
+	if err != nil {
+		return fmt.Errorf("failed to remove lock: %v", err)
+	}
+	if !didRemove {
+		return ErrLockInUse
+	}
+	return nil
+}
+
+// createSession is used to create a new managed session
+func (l *Lock) createSession() (string, error) {
+	session := l.c.Session()
+	se := l.opts.SessionOpts
+	if se == nil {
+		se = &SessionEntry{
+			Name: l.opts.SessionName,
+			TTL:  l.opts.SessionTTL,
+		}
+	}
+	id, _, err := session.Create(se, nil)
+	if err != nil {
+		return "", err
+	}
+	return id, nil
+}
+
+// lockEntry returns a formatted KVPair for the lock
+func (l *Lock) lockEntry(session string) *KVPair {
+	return &KVPair{
+		Key:     l.opts.Key,
+		Value:   l.opts.Value,
+		Session: session,
+		Flags:   LockFlagValue,
+	}
+}
+
+// monitorLock is a long running routine to monitor a lock ownership
+// It closes the stopCh if we lose our leadership.
+func (l *Lock) monitorLock(session string, stopCh chan struct{}) {
+	defer close(stopCh)
+	kv := l.c.KV()
+	opts := &QueryOptions{RequireConsistent: true}
+WAIT:
+	retries := l.opts.MonitorRetries
+RETRY:
+	pair, meta, err := kv.Get(l.opts.Key, opts)
+	if err != nil {
+		// If configured we can try to ride out a brief Consul unavailability
+		// by doing retries. Note that we have to attempt the retry in a non-
+		// blocking fashion so that we have a clean place to reset the retry
+		// counter if service is restored.
+		if retries > 0 && IsRetryableError(err) {
+			time.Sleep(l.opts.MonitorRetryTime)
+			retries--
+			opts.WaitIndex = 0
+			goto RETRY
+		}
+		return
+	}
+	if pair != nil && pair.Session == session {
+		opts.WaitIndex = meta.LastIndex
+		goto WAIT
+	}
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator.go b/vendor/github.com/hashicorp/consul/api/operator.go
new file mode 100644
index 0000000000..079e224866
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator.go
@@ -0,0 +1,11 @@
+package api
+
+// Operator can be used to perform low-level operator tasks for Consul.
+type Operator struct {
+	c *Client
+}
+
+// Operator returns a handle to the operator endpoints.
+func (c *Client) Operator() *Operator {
+	return &Operator{c}
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator_area.go b/vendor/github.com/hashicorp/consul/api/operator_area.go
new file mode 100644
index 0000000000..a630b694cd
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator_area.go
@@ -0,0 +1,193 @@
+// The /v1/operator/area endpoints are available only in Consul Enterprise and
+// interact with its network area subsystem. Network areas are used to link
+// together Consul servers in different Consul datacenters. With network areas,
+// Consul datacenters can be linked together in ways other than a fully-connected
+// mesh, as is required for Consul's WAN.
+package api
+
+import (
+	"net"
+	"time"
+)
+
+// Area defines a network area.
+type Area struct {
+	// ID is this identifier for an area (a UUID). This must be left empty
+	// when creating a new area.
+	ID string
+
+	// PeerDatacenter is the peer Consul datacenter that will make up the
+	// other side of this network area. Network areas always involve a pair
+	// of datacenters: the datacenter where the area was created, and the
+	// peer datacenter. This is required.
+	PeerDatacenter string
+
+	// RetryJoin specifies the address of Consul servers to join to, such as
+	// an IPs or hostnames with an optional port number. This is optional.
+	RetryJoin []string
+
+	// UseTLS specifies whether gossip over this area should be encrypted with TLS
+	// if possible.
+	UseTLS bool
+}
+
+// AreaJoinResponse is returned when a join occurs and gives the result for each
+// address.
+type AreaJoinResponse struct {
+	// The address that was joined.
+	Address string
+
+	// Whether or not the join was a success.
+	Joined bool
+
+	// If we couldn't join, this is the message with information.
+	Error string
+}
+
+// SerfMember is a generic structure for reporting information about members in
+// a Serf cluster. This is only used by the area endpoints right now, but this
+// could be expanded to other endpoints in the future.
+type SerfMember struct {
+	// ID is the node identifier (a UUID).
+	ID string
+
+	// Name is the node name.
+	Name string
+
+	// Addr has the IP address.
+	Addr net.IP
+
+	// Port is the RPC port.
+	Port uint16
+
+	// Datacenter is the DC name.
+	Datacenter string
+
+	// Role is "client", "server", or "unknown".
+	Role string
+
+	// Build has the version of the Consul agent.
+	Build string
+
+	// Protocol is the protocol of the Consul agent.
+	Protocol int
+
+	// Status is the Serf health status "none", "alive", "leaving", "left",
+	// or "failed".
+	Status string
+
+	// RTT is the estimated round trip time from the server handling the
+	// request to the this member. This will be negative if no RTT estimate
+	// is available.
+	RTT time.Duration
+}
+
+// AreaCreate will create a new network area. The ID in the given structure must
+// be empty and a generated ID will be returned on success.
+func (op *Operator) AreaCreate(area *Area, q *WriteOptions) (string, *WriteMeta, error) {
+	r := op.c.newRequest("POST", "/v1/operator/area")
+	r.setWriteOptions(q)
+	r.obj = area
+	rtt, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// AreaUpdate will update the configuration of the network area with the given ID.
+func (op *Operator) AreaUpdate(areaID string, area *Area, q *WriteOptions) (string, *WriteMeta, error) {
+	r := op.c.newRequest("PUT", "/v1/operator/area/"+areaID)
+	r.setWriteOptions(q)
+	r.obj = area
+	rtt, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// AreaGet returns a single network area.
+func (op *Operator) AreaGet(areaID string, q *QueryOptions) ([]*Area, *QueryMeta, error) {
+	var out []*Area
+	qm, err := op.c.query("/v1/operator/area/"+areaID, &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// AreaList returns all the available network areas.
+func (op *Operator) AreaList(q *QueryOptions) ([]*Area, *QueryMeta, error) {
+	var out []*Area
+	qm, err := op.c.query("/v1/operator/area", &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// AreaDelete deletes the given network area.
+func (op *Operator) AreaDelete(areaID string, q *WriteOptions) (*WriteMeta, error) {
+	r := op.c.newRequest("DELETE", "/v1/operator/area/"+areaID)
+	r.setWriteOptions(q)
+	rtt, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+	return wm, nil
+}
+
+// AreaJoin attempts to join the given set of join addresses to the given
+// network area. See the Area structure for details about join addresses.
+func (op *Operator) AreaJoin(areaID string, addresses []string, q *WriteOptions) ([]*AreaJoinResponse, *WriteMeta, error) {
+	r := op.c.newRequest("PUT", "/v1/operator/area/"+areaID+"/join")
+	r.setWriteOptions(q)
+	r.obj = addresses
+	rtt, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	var out []*AreaJoinResponse
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, nil, err
+	}
+	return out, wm, nil
+}
+
+// AreaMembers lists the Serf information about the members in the given area.
+func (op *Operator) AreaMembers(areaID string, q *QueryOptions) ([]*SerfMember, *QueryMeta, error) {
+	var out []*SerfMember
+	qm, err := op.c.query("/v1/operator/area/"+areaID+"/members", &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator_autopilot.go b/vendor/github.com/hashicorp/consul/api/operator_autopilot.go
new file mode 100644
index 0000000000..b179406dc1
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator_autopilot.go
@@ -0,0 +1,219 @@
+package api
+
+import (
+	"bytes"
+	"fmt"
+	"io"
+	"strconv"
+	"strings"
+	"time"
+)
+
+// AutopilotConfiguration is used for querying/setting the Autopilot configuration.
+// Autopilot helps manage operator tasks related to Consul servers like removing
+// failed servers from the Raft quorum.
+type AutopilotConfiguration struct {
+	// CleanupDeadServers controls whether to remove dead servers from the Raft
+	// peer list when a new server joins
+	CleanupDeadServers bool
+
+	// LastContactThreshold is the limit on the amount of time a server can go
+	// without leader contact before being considered unhealthy.
+	LastContactThreshold *ReadableDuration
+
+	// MaxTrailingLogs is the amount of entries in the Raft Log that a server can
+	// be behind before being considered unhealthy.
+	MaxTrailingLogs uint64
+
+	// ServerStabilizationTime is the minimum amount of time a server must be
+	// in a stable, healthy state before it can be added to the cluster. Only
+	// applicable with Raft protocol version 3 or higher.
+	ServerStabilizationTime *ReadableDuration
+
+	// (Enterprise-only) RedundancyZoneTag is the node tag to use for separating
+	// servers into zones for redundancy. If left blank, this feature will be disabled.
+	RedundancyZoneTag string
+
+	// (Enterprise-only) DisableUpgradeMigration will disable Autopilot's upgrade migration
+	// strategy of waiting until enough newer-versioned servers have been added to the
+	// cluster before promoting them to voters.
+	DisableUpgradeMigration bool
+
+	// (Enterprise-only) UpgradeVersionTag is the node tag to use for version info when
+	// performing upgrade migrations. If left blank, the Consul version will be used.
+	UpgradeVersionTag string
+
+	// CreateIndex holds the index corresponding the creation of this configuration.
+	// This is a read-only field.
+	CreateIndex uint64
+
+	// ModifyIndex will be set to the index of the last update when retrieving the
+	// Autopilot configuration. Resubmitting a configuration with
+	// AutopilotCASConfiguration will perform a check-and-set operation which ensures
+	// there hasn't been a subsequent update since the configuration was retrieved.
+	ModifyIndex uint64
+}
+
+// ServerHealth is the health (from the leader's point of view) of a server.
+type ServerHealth struct {
+	// ID is the raft ID of the server.
+	ID string
+
+	// Name is the node name of the server.
+	Name string
+
+	// Address is the address of the server.
+	Address string
+
+	// The status of the SerfHealth check for the server.
+	SerfStatus string
+
+	// Version is the Consul version of the server.
+	Version string
+
+	// Leader is whether this server is currently the leader.
+	Leader bool
+
+	// LastContact is the time since this node's last contact with the leader.
+	LastContact *ReadableDuration
+
+	// LastTerm is the highest leader term this server has a record of in its Raft log.
+	LastTerm uint64
+
+	// LastIndex is the last log index this server has a record of in its Raft log.
+	LastIndex uint64
+
+	// Healthy is whether or not the server is healthy according to the current
+	// Autopilot config.
+	Healthy bool
+
+	// Voter is whether this is a voting server.
+	Voter bool
+
+	// StableSince is the last time this server's Healthy value changed.
+	StableSince time.Time
+}
+
+// OperatorHealthReply is a representation of the overall health of the cluster
+type OperatorHealthReply struct {
+	// Healthy is true if all the servers in the cluster are healthy.
+	Healthy bool
+
+	// FailureTolerance is the number of healthy servers that could be lost without
+	// an outage occurring.
+	FailureTolerance int
+
+	// Servers holds the health of each server.
+	Servers []ServerHealth
+}
+
+// ReadableDuration is a duration type that is serialized to JSON in human readable format.
+type ReadableDuration time.Duration
+
+func NewReadableDuration(dur time.Duration) *ReadableDuration {
+	d := ReadableDuration(dur)
+	return &d
+}
+
+func (d *ReadableDuration) String() string {
+	return d.Duration().String()
+}
+
+func (d *ReadableDuration) Duration() time.Duration {
+	if d == nil {
+		return time.Duration(0)
+	}
+	return time.Duration(*d)
+}
+
+func (d *ReadableDuration) MarshalJSON() ([]byte, error) {
+	return []byte(fmt.Sprintf(`"%s"`, d.Duration().String())), nil
+}
+
+func (d *ReadableDuration) UnmarshalJSON(raw []byte) error {
+	if d == nil {
+		return fmt.Errorf("cannot unmarshal to nil pointer")
+	}
+
+	str := string(raw)
+	if len(str) < 2 || str[0] != '"' || str[len(str)-1] != '"' {
+		return fmt.Errorf("must be enclosed with quotes: %s", str)
+	}
+	dur, err := time.ParseDuration(str[1 : len(str)-1])
+	if err != nil {
+		return err
+	}
+	*d = ReadableDuration(dur)
+	return nil
+}
+
+// AutopilotGetConfiguration is used to query the current Autopilot configuration.
+func (op *Operator) AutopilotGetConfiguration(q *QueryOptions) (*AutopilotConfiguration, error) {
+	r := op.c.newRequest("GET", "/v1/operator/autopilot/configuration")
+	r.setQueryOptions(q)
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out AutopilotConfiguration
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+
+	return &out, nil
+}
+
+// AutopilotSetConfiguration is used to set the current Autopilot configuration.
+func (op *Operator) AutopilotSetConfiguration(conf *AutopilotConfiguration, q *WriteOptions) error {
+	r := op.c.newRequest("PUT", "/v1/operator/autopilot/configuration")
+	r.setWriteOptions(q)
+	r.obj = conf
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// AutopilotCASConfiguration is used to perform a Check-And-Set update on the
+// Autopilot configuration. The ModifyIndex value will be respected. Returns
+// true on success or false on failures.
+func (op *Operator) AutopilotCASConfiguration(conf *AutopilotConfiguration, q *WriteOptions) (bool, error) {
+	r := op.c.newRequest("PUT", "/v1/operator/autopilot/configuration")
+	r.setWriteOptions(q)
+	r.params.Set("cas", strconv.FormatUint(conf.ModifyIndex, 10))
+	r.obj = conf
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return false, err
+	}
+	defer resp.Body.Close()
+
+	var buf bytes.Buffer
+	if _, err := io.Copy(&buf, resp.Body); err != nil {
+		return false, fmt.Errorf("Failed to read response: %v", err)
+	}
+	res := strings.Contains(buf.String(), "true")
+
+	return res, nil
+}
+
+// AutopilotServerHealth
+func (op *Operator) AutopilotServerHealth(q *QueryOptions) (*OperatorHealthReply, error) {
+	r := op.c.newRequest("GET", "/v1/operator/autopilot/health")
+	r.setQueryOptions(q)
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out OperatorHealthReply
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return &out, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator_keyring.go b/vendor/github.com/hashicorp/consul/api/operator_keyring.go
new file mode 100644
index 0000000000..6b614296ce
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator_keyring.go
@@ -0,0 +1,86 @@
+package api
+
+// keyringRequest is used for performing Keyring operations
+type keyringRequest struct {
+	Key string
+}
+
+// KeyringResponse is returned when listing the gossip encryption keys
+type KeyringResponse struct {
+	// Whether this response is for a WAN ring
+	WAN bool
+
+	// The datacenter name this request corresponds to
+	Datacenter string
+
+	// Segment has the network segment this request corresponds to.
+	Segment string
+
+	// A map of the encryption keys to the number of nodes they're installed on
+	Keys map[string]int
+
+	// The total number of nodes in this ring
+	NumNodes int
+}
+
+// KeyringInstall is used to install a new gossip encryption key into the cluster
+func (op *Operator) KeyringInstall(key string, q *WriteOptions) error {
+	r := op.c.newRequest("POST", "/v1/operator/keyring")
+	r.setWriteOptions(q)
+	r.obj = keyringRequest{
+		Key: key,
+	}
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// KeyringList is used to list the gossip keys installed in the cluster
+func (op *Operator) KeyringList(q *QueryOptions) ([]*KeyringResponse, error) {
+	r := op.c.newRequest("GET", "/v1/operator/keyring")
+	r.setQueryOptions(q)
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out []*KeyringResponse
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// KeyringRemove is used to remove a gossip encryption key from the cluster
+func (op *Operator) KeyringRemove(key string, q *WriteOptions) error {
+	r := op.c.newRequest("DELETE", "/v1/operator/keyring")
+	r.setWriteOptions(q)
+	r.obj = keyringRequest{
+		Key: key,
+	}
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
+
+// KeyringUse is used to change the active gossip encryption key
+func (op *Operator) KeyringUse(key string, q *WriteOptions) error {
+	r := op.c.newRequest("PUT", "/v1/operator/keyring")
+	r.setWriteOptions(q)
+	r.obj = keyringRequest{
+		Key: key,
+	}
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	resp.Body.Close()
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator_raft.go b/vendor/github.com/hashicorp/consul/api/operator_raft.go
new file mode 100644
index 0000000000..a9844df2dd
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator_raft.go
@@ -0,0 +1,89 @@
+package api
+
+// RaftServer has information about a server in the Raft configuration.
+type RaftServer struct {
+	// ID is the unique ID for the server. These are currently the same
+	// as the address, but they will be changed to a real GUID in a future
+	// release of Consul.
+	ID string
+
+	// Node is the node name of the server, as known by Consul, or this
+	// will be set to "(unknown)" otherwise.
+	Node string
+
+	// Address is the IP:port of the server, used for Raft communications.
+	Address string
+
+	// Leader is true if this server is the current cluster leader.
+	Leader bool
+
+	// Protocol version is the raft protocol version used by the server
+	ProtocolVersion string
+
+	// Voter is true if this server has a vote in the cluster. This might
+	// be false if the server is staging and still coming online, or if
+	// it's a non-voting server, which will be added in a future release of
+	// Consul.
+	Voter bool
+}
+
+// RaftConfiguration is returned when querying for the current Raft configuration.
+type RaftConfiguration struct {
+	// Servers has the list of servers in the Raft configuration.
+	Servers []*RaftServer
+
+	// Index has the Raft index of this configuration.
+	Index uint64
+}
+
+// RaftGetConfiguration is used to query the current Raft peer set.
+func (op *Operator) RaftGetConfiguration(q *QueryOptions) (*RaftConfiguration, error) {
+	r := op.c.newRequest("GET", "/v1/operator/raft/configuration")
+	r.setQueryOptions(q)
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var out RaftConfiguration
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+	return &out, nil
+}
+
+// RaftRemovePeerByAddress is used to kick a stale peer (one that it in the Raft
+// quorum but no longer known to Serf or the catalog) by address in the form of
+// "IP:port".
+func (op *Operator) RaftRemovePeerByAddress(address string, q *WriteOptions) error {
+	r := op.c.newRequest("DELETE", "/v1/operator/raft/peer")
+	r.setWriteOptions(q)
+
+	r.params.Set("address", string(address))
+
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+
+	resp.Body.Close()
+	return nil
+}
+
+// RaftRemovePeerByID is used to kick a stale peer (one that it in the Raft
+// quorum but no longer known to Serf or the catalog) by ID.
+func (op *Operator) RaftRemovePeerByID(id string, q *WriteOptions) error {
+	r := op.c.newRequest("DELETE", "/v1/operator/raft/peer")
+	r.setWriteOptions(q)
+
+	r.params.Set("id", string(id))
+
+	_, resp, err := requireOK(op.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+
+	resp.Body.Close()
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/operator_segment.go b/vendor/github.com/hashicorp/consul/api/operator_segment.go
new file mode 100644
index 0000000000..92b05d3c03
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/operator_segment.go
@@ -0,0 +1,11 @@
+package api
+
+// SegmentList returns all the available LAN segments.
+func (op *Operator) SegmentList(q *QueryOptions) ([]string, *QueryMeta, error) {
+	var out []string
+	qm, err := op.c.query("/v1/operator/segment", &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/prepared_query.go b/vendor/github.com/hashicorp/consul/api/prepared_query.go
new file mode 100644
index 0000000000..d322dd8679
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/prepared_query.go
@@ -0,0 +1,204 @@
+package api
+
+// QueryDatacenterOptions sets options about how we fail over if there are no
+// healthy nodes in the local datacenter.
+type QueryDatacenterOptions struct {
+	// NearestN is set to the number of remote datacenters to try, based on
+	// network coordinates.
+	NearestN int
+
+	// Datacenters is a fixed list of datacenters to try after NearestN. We
+	// never try a datacenter multiple times, so those are subtracted from
+	// this list before proceeding.
+	Datacenters []string
+}
+
+// QueryDNSOptions controls settings when query results are served over DNS.
+type QueryDNSOptions struct {
+	// TTL is the time to live for the served DNS results.
+	TTL string
+}
+
+// ServiceQuery is used to query for a set of healthy nodes offering a specific
+// service.
+type ServiceQuery struct {
+	// Service is the service to query.
+	Service string
+
+	// Near allows baking in the name of a node to automatically distance-
+	// sort from. The magic "_agent" value is supported, which sorts near
+	// the agent which initiated the request by default.
+	Near string
+
+	// Failover controls what we do if there are no healthy nodes in the
+	// local datacenter.
+	Failover QueryDatacenterOptions
+
+	// IgnoreCheckIDs is an optional list of health check IDs to ignore when
+	// considering which nodes are healthy. It is useful as an emergency measure
+	// to temporarily override some health check that is producing false negatives
+	// for example.
+	IgnoreCheckIDs []string
+
+	// If OnlyPassing is true then we will only include nodes with passing
+	// health checks (critical AND warning checks will cause a node to be
+	// discarded)
+	OnlyPassing bool
+
+	// Tags are a set of required and/or disallowed tags. If a tag is in
+	// this list it must be present. If the tag is preceded with "!" then
+	// it is disallowed.
+	Tags []string
+
+	// NodeMeta is a map of required node metadata fields. If a key/value
+	// pair is in this map it must be present on the node in order for the
+	// service entry to be returned.
+	NodeMeta map[string]string
+}
+
+// QueryTemplate carries the arguments for creating a templated query.
+type QueryTemplate struct {
+	// Type specifies the type of the query template. Currently only
+	// "name_prefix_match" is supported. This field is required.
+	Type string
+
+	// Regexp allows specifying a regex pattern to match against the name
+	// of the query being executed.
+	Regexp string
+}
+
+// PreparedQueryDefinition defines a complete prepared query.
+type PreparedQueryDefinition struct {
+	// ID is this UUID-based ID for the query, always generated by Consul.
+	ID string
+
+	// Name is an optional friendly name for the query supplied by the
+	// user. NOTE - if this feature is used then it will reduce the security
+	// of any read ACL associated with this query/service since this name
+	// can be used to locate nodes with supplying any ACL.
+	Name string
+
+	// Session is an optional session to tie this query's lifetime to. If
+	// this is omitted then the query will not expire.
+	Session string
+
+	// Token is the ACL token used when the query was created, and it is
+	// used when a query is subsequently executed. This token, or a token
+	// with management privileges, must be used to change the query later.
+	Token string
+
+	// Service defines a service query (leaving things open for other types
+	// later).
+	Service ServiceQuery
+
+	// DNS has options that control how the results of this query are
+	// served over DNS.
+	DNS QueryDNSOptions
+
+	// Template is used to pass through the arguments for creating a
+	// prepared query with an attached template. If a template is given,
+	// interpolations are possible in other struct fields.
+	Template QueryTemplate
+}
+
+// PreparedQueryExecuteResponse has the results of executing a query.
+type PreparedQueryExecuteResponse struct {
+	// Service is the service that was queried.
+	Service string
+
+	// Nodes has the nodes that were output by the query.
+	Nodes []ServiceEntry
+
+	// DNS has the options for serving these results over DNS.
+	DNS QueryDNSOptions
+
+	// Datacenter is the datacenter that these results came from.
+	Datacenter string
+
+	// Failovers is a count of how many times we had to query a remote
+	// datacenter.
+	Failovers int
+}
+
+// PreparedQuery can be used to query the prepared query endpoints.
+type PreparedQuery struct {
+	c *Client
+}
+
+// PreparedQuery returns a handle to the prepared query endpoints.
+func (c *Client) PreparedQuery() *PreparedQuery {
+	return &PreparedQuery{c}
+}
+
+// Create makes a new prepared query. The ID of the new query is returned.
+func (c *PreparedQuery) Create(query *PreparedQueryDefinition, q *WriteOptions) (string, *WriteMeta, error) {
+	r := c.c.newRequest("POST", "/v1/query")
+	r.setWriteOptions(q)
+	r.obj = query
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return "", nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+
+	var out struct{ ID string }
+	if err := decodeBody(resp, &out); err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// Update makes updates to an existing prepared query.
+func (c *PreparedQuery) Update(query *PreparedQueryDefinition, q *WriteOptions) (*WriteMeta, error) {
+	return c.c.write("/v1/query/"+query.ID, query, nil, q)
+}
+
+// List is used to fetch all the prepared queries (always requires a management
+// token).
+func (c *PreparedQuery) List(q *QueryOptions) ([]*PreparedQueryDefinition, *QueryMeta, error) {
+	var out []*PreparedQueryDefinition
+	qm, err := c.c.query("/v1/query", &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Get is used to fetch a specific prepared query.
+func (c *PreparedQuery) Get(queryID string, q *QueryOptions) ([]*PreparedQueryDefinition, *QueryMeta, error) {
+	var out []*PreparedQueryDefinition
+	qm, err := c.c.query("/v1/query/"+queryID, &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
+
+// Delete is used to delete a specific prepared query.
+func (c *PreparedQuery) Delete(queryID string, q *WriteOptions) (*WriteMeta, error) {
+	r := c.c.newRequest("DELETE", "/v1/query/"+queryID)
+	r.setWriteOptions(q)
+	rtt, resp, err := requireOK(c.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{}
+	wm.RequestTime = rtt
+	return wm, nil
+}
+
+// Execute is used to execute a specific prepared query. You can execute using
+// a query ID or name.
+func (c *PreparedQuery) Execute(queryIDOrName string, q *QueryOptions) (*PreparedQueryExecuteResponse, *QueryMeta, error) {
+	var out *PreparedQueryExecuteResponse
+	qm, err := c.c.query("/v1/query/"+queryIDOrName+"/execute", &out, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return out, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/raw.go b/vendor/github.com/hashicorp/consul/api/raw.go
new file mode 100644
index 0000000000..745a208c99
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/raw.go
@@ -0,0 +1,24 @@
+package api
+
+// Raw can be used to do raw queries against custom endpoints
+type Raw struct {
+	c *Client
+}
+
+// Raw returns a handle to query endpoints
+func (c *Client) Raw() *Raw {
+	return &Raw{c}
+}
+
+// Query is used to do a GET request against an endpoint
+// and deserialize the response into an interface using
+// standard Consul conventions.
+func (raw *Raw) Query(endpoint string, out interface{}, q *QueryOptions) (*QueryMeta, error) {
+	return raw.c.query(endpoint, out, q)
+}
+
+// Write is used to do a PUT request against an endpoint
+// and serialize/deserialized using the standard Consul conventions.
+func (raw *Raw) Write(endpoint string, in, out interface{}, q *WriteOptions) (*WriteMeta, error) {
+	return raw.c.write(endpoint, in, out, q)
+}
diff --git a/vendor/github.com/hashicorp/consul/api/semaphore.go b/vendor/github.com/hashicorp/consul/api/semaphore.go
new file mode 100644
index 0000000000..d0c5741778
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/semaphore.go
@@ -0,0 +1,513 @@
+package api
+
+import (
+	"encoding/json"
+	"fmt"
+	"path"
+	"sync"
+	"time"
+)
+
+const (
+	// DefaultSemaphoreSessionName is the Session Name we assign if none is provided
+	DefaultSemaphoreSessionName = "Consul API Semaphore"
+
+	// DefaultSemaphoreSessionTTL is the default session TTL if no Session is provided
+	// when creating a new Semaphore. This is used because we do not have another
+	// other check to depend upon.
+	DefaultSemaphoreSessionTTL = "15s"
+
+	// DefaultSemaphoreWaitTime is how long we block for at a time to check if semaphore
+	// acquisition is possible. This affects the minimum time it takes to cancel
+	// a Semaphore acquisition.
+	DefaultSemaphoreWaitTime = 15 * time.Second
+
+	// DefaultSemaphoreKey is the key used within the prefix to
+	// use for coordination between all the contenders.
+	DefaultSemaphoreKey = ".lock"
+
+	// SemaphoreFlagValue is a magic flag we set to indicate a key
+	// is being used for a semaphore. It is used to detect a potential
+	// conflict with a lock.
+	SemaphoreFlagValue = 0xe0f69a2baa414de0
+)
+
+var (
+	// ErrSemaphoreHeld is returned if we attempt to double lock
+	ErrSemaphoreHeld = fmt.Errorf("Semaphore already held")
+
+	// ErrSemaphoreNotHeld is returned if we attempt to unlock a semaphore
+	// that we do not hold.
+	ErrSemaphoreNotHeld = fmt.Errorf("Semaphore not held")
+
+	// ErrSemaphoreInUse is returned if we attempt to destroy a semaphore
+	// that is in use.
+	ErrSemaphoreInUse = fmt.Errorf("Semaphore in use")
+
+	// ErrSemaphoreConflict is returned if the flags on a key
+	// used for a semaphore do not match expectation
+	ErrSemaphoreConflict = fmt.Errorf("Existing key does not match semaphore use")
+)
+
+// Semaphore is used to implement a distributed semaphore
+// using the Consul KV primitives.
+type Semaphore struct {
+	c    *Client
+	opts *SemaphoreOptions
+
+	isHeld       bool
+	sessionRenew chan struct{}
+	lockSession  string
+	l            sync.Mutex
+}
+
+// SemaphoreOptions is used to parameterize the Semaphore
+type SemaphoreOptions struct {
+	Prefix            string        // Must be set and have write permissions
+	Limit             int           // Must be set, and be positive
+	Value             []byte        // Optional, value to associate with the contender entry
+	Session           string        // Optional, created if not specified
+	SessionName       string        // Optional, defaults to DefaultLockSessionName
+	SessionTTL        string        // Optional, defaults to DefaultLockSessionTTL
+	MonitorRetries    int           // Optional, defaults to 0 which means no retries
+	MonitorRetryTime  time.Duration // Optional, defaults to DefaultMonitorRetryTime
+	SemaphoreWaitTime time.Duration // Optional, defaults to DefaultSemaphoreWaitTime
+	SemaphoreTryOnce  bool          // Optional, defaults to false which means try forever
+}
+
+// semaphoreLock is written under the DefaultSemaphoreKey and
+// is used to coordinate between all the contenders.
+type semaphoreLock struct {
+	// Limit is the integer limit of holders. This is used to
+	// verify that all the holders agree on the value.
+	Limit int
+
+	// Holders is a list of all the semaphore holders.
+	// It maps the session ID to true. It is used as a set effectively.
+	Holders map[string]bool
+}
+
+// SemaphorePrefix is used to created a Semaphore which will operate
+// at the given KV prefix and uses the given limit for the semaphore.
+// The prefix must have write privileges, and the limit must be agreed
+// upon by all contenders.
+func (c *Client) SemaphorePrefix(prefix string, limit int) (*Semaphore, error) {
+	opts := &SemaphoreOptions{
+		Prefix: prefix,
+		Limit:  limit,
+	}
+	return c.SemaphoreOpts(opts)
+}
+
+// SemaphoreOpts is used to create a Semaphore with the given options.
+// The prefix must have write privileges, and the limit must be agreed
+// upon by all contenders. If a Session is not provided, one will be created.
+func (c *Client) SemaphoreOpts(opts *SemaphoreOptions) (*Semaphore, error) {
+	if opts.Prefix == "" {
+		return nil, fmt.Errorf("missing prefix")
+	}
+	if opts.Limit <= 0 {
+		return nil, fmt.Errorf("semaphore limit must be positive")
+	}
+	if opts.SessionName == "" {
+		opts.SessionName = DefaultSemaphoreSessionName
+	}
+	if opts.SessionTTL == "" {
+		opts.SessionTTL = DefaultSemaphoreSessionTTL
+	} else {
+		if _, err := time.ParseDuration(opts.SessionTTL); err != nil {
+			return nil, fmt.Errorf("invalid SessionTTL: %v", err)
+		}
+	}
+	if opts.MonitorRetryTime == 0 {
+		opts.MonitorRetryTime = DefaultMonitorRetryTime
+	}
+	if opts.SemaphoreWaitTime == 0 {
+		opts.SemaphoreWaitTime = DefaultSemaphoreWaitTime
+	}
+	s := &Semaphore{
+		c:    c,
+		opts: opts,
+	}
+	return s, nil
+}
+
+// Acquire attempts to reserve a slot in the semaphore, blocking until
+// success, interrupted via the stopCh or an error is encountered.
+// Providing a non-nil stopCh can be used to abort the attempt.
+// On success, a channel is returned that represents our slot.
+// This channel could be closed at any time due to session invalidation,
+// communication errors, operator intervention, etc. It is NOT safe to
+// assume that the slot is held until Release() unless the Session is specifically
+// created without any associated health checks. By default Consul sessions
+// prefer liveness over safety and an application must be able to handle
+// the session being lost.
+func (s *Semaphore) Acquire(stopCh <-chan struct{}) (<-chan struct{}, error) {
+	// Hold the lock as we try to acquire
+	s.l.Lock()
+	defer s.l.Unlock()
+
+	// Check if we already hold the semaphore
+	if s.isHeld {
+		return nil, ErrSemaphoreHeld
+	}
+
+	// Check if we need to create a session first
+	s.lockSession = s.opts.Session
+	if s.lockSession == "" {
+		sess, err := s.createSession()
+		if err != nil {
+			return nil, fmt.Errorf("failed to create session: %v", err)
+		}
+
+		s.sessionRenew = make(chan struct{})
+		s.lockSession = sess
+		session := s.c.Session()
+		go session.RenewPeriodic(s.opts.SessionTTL, sess, nil, s.sessionRenew)
+
+		// If we fail to acquire the lock, cleanup the session
+		defer func() {
+			if !s.isHeld {
+				close(s.sessionRenew)
+				s.sessionRenew = nil
+			}
+		}()
+	}
+
+	// Create the contender entry
+	kv := s.c.KV()
+	made, _, err := kv.Acquire(s.contenderEntry(s.lockSession), nil)
+	if err != nil || !made {
+		return nil, fmt.Errorf("failed to make contender entry: %v", err)
+	}
+
+	// Setup the query options
+	qOpts := &QueryOptions{
+		WaitTime: s.opts.SemaphoreWaitTime,
+	}
+
+	start := time.Now()
+	attempts := 0
+WAIT:
+	// Check if we should quit
+	select {
+	case <-stopCh:
+		return nil, nil
+	default:
+	}
+
+	// Handle the one-shot mode.
+	if s.opts.SemaphoreTryOnce && attempts > 0 {
+		elapsed := time.Since(start)
+		if elapsed > qOpts.WaitTime {
+			return nil, nil
+		}
+
+		qOpts.WaitTime -= elapsed
+	}
+	attempts++
+
+	// Read the prefix
+	pairs, meta, err := kv.List(s.opts.Prefix, qOpts)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read prefix: %v", err)
+	}
+
+	// Decode the lock
+	lockPair := s.findLock(pairs)
+	if lockPair.Flags != SemaphoreFlagValue {
+		return nil, ErrSemaphoreConflict
+	}
+	lock, err := s.decodeLock(lockPair)
+	if err != nil {
+		return nil, err
+	}
+
+	// Verify we agree with the limit
+	if lock.Limit != s.opts.Limit {
+		return nil, fmt.Errorf("semaphore limit conflict (lock: %d, local: %d)",
+			lock.Limit, s.opts.Limit)
+	}
+
+	// Prune the dead holders
+	s.pruneDeadHolders(lock, pairs)
+
+	// Check if the lock is held
+	if len(lock.Holders) >= lock.Limit {
+		qOpts.WaitIndex = meta.LastIndex
+		goto WAIT
+	}
+
+	// Create a new lock with us as a holder
+	lock.Holders[s.lockSession] = true
+	newLock, err := s.encodeLock(lock, lockPair.ModifyIndex)
+	if err != nil {
+		return nil, err
+	}
+
+	// Attempt the acquisition
+	didSet, _, err := kv.CAS(newLock, nil)
+	if err != nil {
+		return nil, fmt.Errorf("failed to update lock: %v", err)
+	}
+	if !didSet {
+		// Update failed, could have been a race with another contender,
+		// retry the operation
+		goto WAIT
+	}
+
+	// Watch to ensure we maintain ownership of the slot
+	lockCh := make(chan struct{})
+	go s.monitorLock(s.lockSession, lockCh)
+
+	// Set that we own the lock
+	s.isHeld = true
+
+	// Acquired! All done
+	return lockCh, nil
+}
+
+// Release is used to voluntarily give up our semaphore slot. It is
+// an error to call this if the semaphore has not been acquired.
+func (s *Semaphore) Release() error {
+	// Hold the lock as we try to release
+	s.l.Lock()
+	defer s.l.Unlock()
+
+	// Ensure the lock is actually held
+	if !s.isHeld {
+		return ErrSemaphoreNotHeld
+	}
+
+	// Set that we no longer own the lock
+	s.isHeld = false
+
+	// Stop the session renew
+	if s.sessionRenew != nil {
+		defer func() {
+			close(s.sessionRenew)
+			s.sessionRenew = nil
+		}()
+	}
+
+	// Get and clear the lock session
+	lockSession := s.lockSession
+	s.lockSession = ""
+
+	// Remove ourselves as a lock holder
+	kv := s.c.KV()
+	key := path.Join(s.opts.Prefix, DefaultSemaphoreKey)
+READ:
+	pair, _, err := kv.Get(key, nil)
+	if err != nil {
+		return err
+	}
+	if pair == nil {
+		pair = &KVPair{}
+	}
+	lock, err := s.decodeLock(pair)
+	if err != nil {
+		return err
+	}
+
+	// Create a new lock without us as a holder
+	if _, ok := lock.Holders[lockSession]; ok {
+		delete(lock.Holders, lockSession)
+		newLock, err := s.encodeLock(lock, pair.ModifyIndex)
+		if err != nil {
+			return err
+		}
+
+		// Swap the locks
+		didSet, _, err := kv.CAS(newLock, nil)
+		if err != nil {
+			return fmt.Errorf("failed to update lock: %v", err)
+		}
+		if !didSet {
+			goto READ
+		}
+	}
+
+	// Destroy the contender entry
+	contenderKey := path.Join(s.opts.Prefix, lockSession)
+	if _, err := kv.Delete(contenderKey, nil); err != nil {
+		return err
+	}
+	return nil
+}
+
+// Destroy is used to cleanup the semaphore entry. It is not necessary
+// to invoke. It will fail if the semaphore is in use.
+func (s *Semaphore) Destroy() error {
+	// Hold the lock as we try to acquire
+	s.l.Lock()
+	defer s.l.Unlock()
+
+	// Check if we already hold the semaphore
+	if s.isHeld {
+		return ErrSemaphoreHeld
+	}
+
+	// List for the semaphore
+	kv := s.c.KV()
+	pairs, _, err := kv.List(s.opts.Prefix, nil)
+	if err != nil {
+		return fmt.Errorf("failed to read prefix: %v", err)
+	}
+
+	// Find the lock pair, bail if it doesn't exist
+	lockPair := s.findLock(pairs)
+	if lockPair.ModifyIndex == 0 {
+		return nil
+	}
+	if lockPair.Flags != SemaphoreFlagValue {
+		return ErrSemaphoreConflict
+	}
+
+	// Decode the lock
+	lock, err := s.decodeLock(lockPair)
+	if err != nil {
+		return err
+	}
+
+	// Prune the dead holders
+	s.pruneDeadHolders(lock, pairs)
+
+	// Check if there are any holders
+	if len(lock.Holders) > 0 {
+		return ErrSemaphoreInUse
+	}
+
+	// Attempt the delete
+	didRemove, _, err := kv.DeleteCAS(lockPair, nil)
+	if err != nil {
+		return fmt.Errorf("failed to remove semaphore: %v", err)
+	}
+	if !didRemove {
+		return ErrSemaphoreInUse
+	}
+	return nil
+}
+
+// createSession is used to create a new managed session
+func (s *Semaphore) createSession() (string, error) {
+	session := s.c.Session()
+	se := &SessionEntry{
+		Name:     s.opts.SessionName,
+		TTL:      s.opts.SessionTTL,
+		Behavior: SessionBehaviorDelete,
+	}
+	id, _, err := session.Create(se, nil)
+	if err != nil {
+		return "", err
+	}
+	return id, nil
+}
+
+// contenderEntry returns a formatted KVPair for the contender
+func (s *Semaphore) contenderEntry(session string) *KVPair {
+	return &KVPair{
+		Key:     path.Join(s.opts.Prefix, session),
+		Value:   s.opts.Value,
+		Session: session,
+		Flags:   SemaphoreFlagValue,
+	}
+}
+
+// findLock is used to find the KV Pair which is used for coordination
+func (s *Semaphore) findLock(pairs KVPairs) *KVPair {
+	key := path.Join(s.opts.Prefix, DefaultSemaphoreKey)
+	for _, pair := range pairs {
+		if pair.Key == key {
+			return pair
+		}
+	}
+	return &KVPair{Flags: SemaphoreFlagValue}
+}
+
+// decodeLock is used to decode a semaphoreLock from an
+// entry in Consul
+func (s *Semaphore) decodeLock(pair *KVPair) (*semaphoreLock, error) {
+	// Handle if there is no lock
+	if pair == nil || pair.Value == nil {
+		return &semaphoreLock{
+			Limit:   s.opts.Limit,
+			Holders: make(map[string]bool),
+		}, nil
+	}
+
+	l := &semaphoreLock{}
+	if err := json.Unmarshal(pair.Value, l); err != nil {
+		return nil, fmt.Errorf("lock decoding failed: %v", err)
+	}
+	return l, nil
+}
+
+// encodeLock is used to encode a semaphoreLock into a KVPair
+// that can be PUT
+func (s *Semaphore) encodeLock(l *semaphoreLock, oldIndex uint64) (*KVPair, error) {
+	enc, err := json.Marshal(l)
+	if err != nil {
+		return nil, fmt.Errorf("lock encoding failed: %v", err)
+	}
+	pair := &KVPair{
+		Key:         path.Join(s.opts.Prefix, DefaultSemaphoreKey),
+		Value:       enc,
+		Flags:       SemaphoreFlagValue,
+		ModifyIndex: oldIndex,
+	}
+	return pair, nil
+}
+
+// pruneDeadHolders is used to remove all the dead lock holders
+func (s *Semaphore) pruneDeadHolders(lock *semaphoreLock, pairs KVPairs) {
+	// Gather all the live holders
+	alive := make(map[string]struct{}, len(pairs))
+	for _, pair := range pairs {
+		if pair.Session != "" {
+			alive[pair.Session] = struct{}{}
+		}
+	}
+
+	// Remove any holders that are dead
+	for holder := range lock.Holders {
+		if _, ok := alive[holder]; !ok {
+			delete(lock.Holders, holder)
+		}
+	}
+}
+
+// monitorLock is a long running routine to monitor a semaphore ownership
+// It closes the stopCh if we lose our slot.
+func (s *Semaphore) monitorLock(session string, stopCh chan struct{}) {
+	defer close(stopCh)
+	kv := s.c.KV()
+	opts := &QueryOptions{RequireConsistent: true}
+WAIT:
+	retries := s.opts.MonitorRetries
+RETRY:
+	pairs, meta, err := kv.List(s.opts.Prefix, opts)
+	if err != nil {
+		// If configured we can try to ride out a brief Consul unavailability
+		// by doing retries. Note that we have to attempt the retry in a non-
+		// blocking fashion so that we have a clean place to reset the retry
+		// counter if service is restored.
+		if retries > 0 && IsRetryableError(err) {
+			time.Sleep(s.opts.MonitorRetryTime)
+			retries--
+			opts.WaitIndex = 0
+			goto RETRY
+		}
+		return
+	}
+	lockPair := s.findLock(pairs)
+	lock, err := s.decodeLock(lockPair)
+	if err != nil {
+		return
+	}
+	s.pruneDeadHolders(lock, pairs)
+	if _, ok := lock.Holders[session]; ok {
+		opts.WaitIndex = meta.LastIndex
+		goto WAIT
+	}
+}
diff --git a/vendor/github.com/hashicorp/consul/api/session.go b/vendor/github.com/hashicorp/consul/api/session.go
new file mode 100644
index 0000000000..1613f11a60
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/session.go
@@ -0,0 +1,224 @@
+package api
+
+import (
+	"errors"
+	"fmt"
+	"time"
+)
+
+const (
+	// SessionBehaviorRelease is the default behavior and causes
+	// all associated locks to be released on session invalidation.
+	SessionBehaviorRelease = "release"
+
+	// SessionBehaviorDelete is new in Consul 0.5 and changes the
+	// behavior to delete all associated locks on session invalidation.
+	// It can be used in a way similar to Ephemeral Nodes in ZooKeeper.
+	SessionBehaviorDelete = "delete"
+)
+
+var ErrSessionExpired = errors.New("session expired")
+
+// SessionEntry represents a session in consul
+type SessionEntry struct {
+	CreateIndex uint64
+	ID          string
+	Name        string
+	Node        string
+	Checks      []string
+	LockDelay   time.Duration
+	Behavior    string
+	TTL         string
+}
+
+// Session can be used to query the Session endpoints
+type Session struct {
+	c *Client
+}
+
+// Session returns a handle to the session endpoints
+func (c *Client) Session() *Session {
+	return &Session{c}
+}
+
+// CreateNoChecks is like Create but is used specifically to create
+// a session with no associated health checks.
+func (s *Session) CreateNoChecks(se *SessionEntry, q *WriteOptions) (string, *WriteMeta, error) {
+	body := make(map[string]interface{})
+	body["Checks"] = []string{}
+	if se != nil {
+		if se.Name != "" {
+			body["Name"] = se.Name
+		}
+		if se.Node != "" {
+			body["Node"] = se.Node
+		}
+		if se.LockDelay != 0 {
+			body["LockDelay"] = durToMsec(se.LockDelay)
+		}
+		if se.Behavior != "" {
+			body["Behavior"] = se.Behavior
+		}
+		if se.TTL != "" {
+			body["TTL"] = se.TTL
+		}
+	}
+	return s.create(body, q)
+
+}
+
+// Create makes a new session. Providing a session entry can
+// customize the session. It can also be nil to use defaults.
+func (s *Session) Create(se *SessionEntry, q *WriteOptions) (string, *WriteMeta, error) {
+	var obj interface{}
+	if se != nil {
+		body := make(map[string]interface{})
+		obj = body
+		if se.Name != "" {
+			body["Name"] = se.Name
+		}
+		if se.Node != "" {
+			body["Node"] = se.Node
+		}
+		if se.LockDelay != 0 {
+			body["LockDelay"] = durToMsec(se.LockDelay)
+		}
+		if len(se.Checks) > 0 {
+			body["Checks"] = se.Checks
+		}
+		if se.Behavior != "" {
+			body["Behavior"] = se.Behavior
+		}
+		if se.TTL != "" {
+			body["TTL"] = se.TTL
+		}
+	}
+	return s.create(obj, q)
+}
+
+func (s *Session) create(obj interface{}, q *WriteOptions) (string, *WriteMeta, error) {
+	var out struct{ ID string }
+	wm, err := s.c.write("/v1/session/create", obj, &out, q)
+	if err != nil {
+		return "", nil, err
+	}
+	return out.ID, wm, nil
+}
+
+// Destroy invalidates a given session
+func (s *Session) Destroy(id string, q *WriteOptions) (*WriteMeta, error) {
+	wm, err := s.c.write("/v1/session/destroy/"+id, nil, nil, q)
+	if err != nil {
+		return nil, err
+	}
+	return wm, nil
+}
+
+// Renew renews the TTL on a given session
+func (s *Session) Renew(id string, q *WriteOptions) (*SessionEntry, *WriteMeta, error) {
+	r := s.c.newRequest("PUT", "/v1/session/renew/"+id)
+	r.setWriteOptions(q)
+	rtt, resp, err := s.c.doRequest(r)
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	wm := &WriteMeta{RequestTime: rtt}
+
+	if resp.StatusCode == 404 {
+		return nil, wm, nil
+	} else if resp.StatusCode != 200 {
+		return nil, nil, fmt.Errorf("Unexpected response code: %d", resp.StatusCode)
+	}
+
+	var entries []*SessionEntry
+	if err := decodeBody(resp, &entries); err != nil {
+		return nil, nil, fmt.Errorf("Failed to read response: %v", err)
+	}
+	if len(entries) > 0 {
+		return entries[0], wm, nil
+	}
+	return nil, wm, nil
+}
+
+// RenewPeriodic is used to periodically invoke Session.Renew on a
+// session until a doneCh is closed. This is meant to be used in a long running
+// goroutine to ensure a session stays valid.
+func (s *Session) RenewPeriodic(initialTTL string, id string, q *WriteOptions, doneCh <-chan struct{}) error {
+	ctx := q.Context()
+
+	ttl, err := time.ParseDuration(initialTTL)
+	if err != nil {
+		return err
+	}
+
+	waitDur := ttl / 2
+	lastRenewTime := time.Now()
+	var lastErr error
+	for {
+		if time.Since(lastRenewTime) > ttl {
+			return lastErr
+		}
+		select {
+		case <-time.After(waitDur):
+			entry, _, err := s.Renew(id, q)
+			if err != nil {
+				waitDur = time.Second
+				lastErr = err
+				continue
+			}
+			if entry == nil {
+				return ErrSessionExpired
+			}
+
+			// Handle the server updating the TTL
+			ttl, _ = time.ParseDuration(entry.TTL)
+			waitDur = ttl / 2
+			lastRenewTime = time.Now()
+
+		case <-doneCh:
+			// Attempt a session destroy
+			s.Destroy(id, q)
+			return nil
+
+		case <-ctx.Done():
+			// Bail immediately since attempting the destroy would
+			// use the canceled context in q, which would just bail.
+			return ctx.Err()
+		}
+	}
+}
+
+// Info looks up a single session
+func (s *Session) Info(id string, q *QueryOptions) (*SessionEntry, *QueryMeta, error) {
+	var entries []*SessionEntry
+	qm, err := s.c.query("/v1/session/info/"+id, &entries, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	if len(entries) > 0 {
+		return entries[0], qm, nil
+	}
+	return nil, qm, nil
+}
+
+// List gets sessions for a node
+func (s *Session) Node(node string, q *QueryOptions) ([]*SessionEntry, *QueryMeta, error) {
+	var entries []*SessionEntry
+	qm, err := s.c.query("/v1/session/node/"+node, &entries, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
+
+// List gets all active sessions
+func (s *Session) List(q *QueryOptions) ([]*SessionEntry, *QueryMeta, error) {
+	var entries []*SessionEntry
+	qm, err := s.c.query("/v1/session/list", &entries, q)
+	if err != nil {
+		return nil, nil, err
+	}
+	return entries, qm, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/snapshot.go b/vendor/github.com/hashicorp/consul/api/snapshot.go
new file mode 100644
index 0000000000..e902377dd5
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/snapshot.go
@@ -0,0 +1,47 @@
+package api
+
+import (
+	"io"
+)
+
+// Snapshot can be used to query the /v1/snapshot endpoint to take snapshots of
+// Consul's internal state and restore snapshots for disaster recovery.
+type Snapshot struct {
+	c *Client
+}
+
+// Snapshot returns a handle that exposes the snapshot endpoints.
+func (c *Client) Snapshot() *Snapshot {
+	return &Snapshot{c}
+}
+
+// Save requests a new snapshot and provides an io.ReadCloser with the snapshot
+// data to save. If this doesn't return an error, then it's the responsibility
+// of the caller to close it. Only a subset of the QueryOptions are supported:
+// Datacenter, AllowStale, and Token.
+func (s *Snapshot) Save(q *QueryOptions) (io.ReadCloser, *QueryMeta, error) {
+	r := s.c.newRequest("GET", "/v1/snapshot")
+	r.setQueryOptions(q)
+
+	rtt, resp, err := requireOK(s.c.doRequest(r))
+	if err != nil {
+		return nil, nil, err
+	}
+
+	qm := &QueryMeta{}
+	parseQueryMeta(resp, qm)
+	qm.RequestTime = rtt
+	return resp.Body, qm, nil
+}
+
+// Restore streams in an existing snapshot and attempts to restore it.
+func (s *Snapshot) Restore(q *WriteOptions, in io.Reader) error {
+	r := s.c.newRequest("PUT", "/v1/snapshot")
+	r.body = in
+	r.setWriteOptions(q)
+	_, _, err := requireOK(s.c.doRequest(r))
+	if err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/consul/api/status.go b/vendor/github.com/hashicorp/consul/api/status.go
new file mode 100644
index 0000000000..74ef61a678
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/api/status.go
@@ -0,0 +1,43 @@
+package api
+
+// Status can be used to query the Status endpoints
+type Status struct {
+	c *Client
+}
+
+// Status returns a handle to the status endpoints
+func (c *Client) Status() *Status {
+	return &Status{c}
+}
+
+// Leader is used to query for a known leader
+func (s *Status) Leader() (string, error) {
+	r := s.c.newRequest("GET", "/v1/status/leader")
+	_, resp, err := requireOK(s.c.doRequest(r))
+	if err != nil {
+		return "", err
+	}
+	defer resp.Body.Close()
+
+	var leader string
+	if err := decodeBody(resp, &leader); err != nil {
+		return "", err
+	}
+	return leader, nil
+}
+
+// Peers is used to query for a known raft peers
+func (s *Status) Peers() ([]string, error) {
+	r := s.c.newRequest("GET", "/v1/status/peers")
+	_, resp, err := requireOK(s.c.doRequest(r))
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var peers []string
+	if err := decodeBody(resp, &peers); err != nil {
+		return nil, err
+	}
+	return peers, nil
+}
diff --git a/vendor/github.com/hashicorp/consul/website/LICENSE.md b/vendor/github.com/hashicorp/consul/website/LICENSE.md
new file mode 100644
index 0000000000..3189f43a65
--- /dev/null
+++ b/vendor/github.com/hashicorp/consul/website/LICENSE.md
@@ -0,0 +1,10 @@
+# Proprietary License
+
+This license is temporary while a more official one is drafted. However,
+this should make it clear:
+
+The text contents of this website are MPL 2.0 licensed.
+
+The design contents of this website are proprietary and may not be reproduced
+or reused in any way other than to run the website locally. The license for
+the design is owned solely by HashiCorp, Inc.
diff --git a/vendor/github.com/hashicorp/errwrap/LICENSE b/vendor/github.com/hashicorp/errwrap/LICENSE
new file mode 100644
index 0000000000..c33dcc7c92
--- /dev/null
+++ b/vendor/github.com/hashicorp/errwrap/LICENSE
@@ -0,0 +1,354 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. “Contributor”
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. “Contributor Version”
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor’s Contribution.
+
+1.3. “Contribution”
+
+     means Covered Software of a particular Contributor.
+
+1.4. “Covered Software”
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. “Incompatible With Secondary Licenses”
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of version
+        1.1 or earlier of the License, but not also under the terms of a
+        Secondary License.
+
+1.6. “Executable Form”
+
+     means any form of the work other than Source Code Form.
+
+1.7. “Larger Work”
+
+     means a work that combines Covered Software with other material, in a separate
+     file or files, that is not Covered Software.
+
+1.8. “License”
+
+     means this document.
+
+1.9. “Licensable”
+
+     means having the right to grant, to the maximum extent possible, whether at the
+     time of the initial grant or subsequently, any and all of the rights conveyed by
+     this License.
+
+1.10. “Modifications”
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to, deletion
+        from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. “Patent Claims” of a Contributor
+
+      means any patent claim(s), including without limitation, method, process,
+      and apparatus claims, in any patent Licensable by such Contributor that
+      would be infringed, but for the grant of the License, by the making,
+      using, selling, offering for sale, having made, import, or transfer of
+      either its Contributions or its Contributor Version.
+
+1.12. “Secondary License”
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. “Source Code Form”
+
+      means the form of the work preferred for making modifications.
+
+1.14. “You” (or “Your”)
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, “You” includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, “control” means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or as
+        part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its Contributions
+        or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution become
+     effective for each Contribution on the date the Contributor first distributes
+     such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under this
+     License. No additional rights or licenses will be implied from the distribution
+     or licensing of Covered Software under this License. Notwithstanding Section
+     2.1(b) above, no patent license is granted by a Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party’s
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of its
+        Contributions.
+
+     This License does not grant any rights in the trademarks, service marks, or
+     logos of any Contributor (except as may be necessary to comply with the
+     notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this License
+     (see Section 10.2) or under the terms of a Secondary License (if permitted
+     under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its Contributions
+     are its original creation(s) or it has sufficient rights to grant the
+     rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under applicable
+     copyright doctrines of fair use, fair dealing, or other equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under the
+     terms of this License. You must inform recipients that the Source Code Form
+     of the Covered Software is governed by the terms of this License, and how
+     they can obtain a copy of this License. You may not attempt to alter or
+     restrict the recipients’ rights in the Source Code Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this License,
+        or sublicense it under different terms, provided that the license for
+        the Executable Form does not attempt to limit or alter the recipients’
+        rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for the
+     Covered Software. If the Larger Work is a combination of Covered Software
+     with a work governed by one or more Secondary Licenses, and the Covered
+     Software is not Incompatible With Secondary Licenses, this License permits
+     You to additionally distribute such Covered Software under the terms of
+     such Secondary License(s), so that the recipient of the Larger Work may, at
+     their option, further distribute the Covered Software under the terms of
+     either this License or such Secondary License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices (including
+     copyright notices, patent notices, disclaimers of warranty, or limitations
+     of liability) contained within the Source Code Form of the Covered
+     Software, except that You may alter any license notices to the extent
+     required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on behalf
+     of any Contributor. You must make it absolutely clear that any such
+     warranty, support, indemnity, or liability obligation is offered by You
+     alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute, judicial
+   order, or regulation then You must: (a) comply with the terms of this License
+   to the maximum extent possible; and (b) describe the limitations and the code
+   they affect. Such description must be placed in a text file included with all
+   distributions of the Covered Software under this License. Except to the
+   extent prohibited by statute or regulation, such description must be
+   sufficiently detailed for a recipient of ordinary skill to be able to
+   understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing basis,
+     if such Contributor fails to notify You of the non-compliance by some
+     reasonable means prior to 60 days after You have come back into compliance.
+     Moreover, Your grants from a particular Contributor are reinstated on an
+     ongoing basis if such Contributor notifies You of the non-compliance by
+     some reasonable means, this is the first time You have received notice of
+     non-compliance with this License from such Contributor, and You become
+     compliant prior to 30 days after Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions, counter-claims,
+     and cross-claims) alleging that a Contributor Version directly or
+     indirectly infringes any patent, then the rights granted to You by any and
+     all Contributors for the Covered Software under Section 2.1 of this License
+     shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an “as is” basis, without
+   warranty of any kind, either expressed, implied, or statutory, including,
+   without limitation, warranties that the Covered Software is free of defects,
+   merchantable, fit for a particular purpose or non-infringing. The entire
+   risk as to the quality and performance of the Covered Software is with You.
+   Should any Covered Software prove defective in any respect, You (not any
+   Contributor) assume the cost of any necessary servicing, repair, or
+   correction. This disclaimer of warranty constitutes an essential part of this
+   License. No use of  any Covered Software is authorized under this License
+   except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from such
+   party’s negligence to the extent applicable law prohibits such limitation.
+   Some jurisdictions do not allow the exclusion or limitation of incidental or
+   consequential damages, so this exclusion and limitation may not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts of
+   a jurisdiction where the defendant maintains its principal place of business
+   and such litigation shall be governed by laws of that jurisdiction, without
+   reference to its conflict-of-law provisions. Nothing in this Section shall
+   prevent a party’s ability to bring cross-claims or counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject matter
+   hereof. If any provision of this License is held to be unenforceable, such
+   provision shall be reformed only to the extent necessary to make it
+   enforceable. Any law or regulation which provides that the language of a
+   contract shall be construed against the drafter shall not be used to construe
+   this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version of
+      the License under which You originally received the Covered Software, or
+      under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a modified
+      version of this License if you rename the license and remove any
+      references to the name of the license steward (except to note that such
+      modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary Licenses
+      If You choose to distribute Source Code Form that is Incompatible With
+      Secondary Licenses under the terms of this version of the License, the
+      notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file, then
+You may include the notice in a location (such as a LICENSE file in a relevant
+directory) where a recipient would be likely to look for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - “Incompatible With Secondary Licenses” Notice
+
+      This Source Code Form is “Incompatible
+      With Secondary Licenses”, as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/errwrap/errwrap.go b/vendor/github.com/hashicorp/errwrap/errwrap.go
new file mode 100644
index 0000000000..a733bef18c
--- /dev/null
+++ b/vendor/github.com/hashicorp/errwrap/errwrap.go
@@ -0,0 +1,169 @@
+// Package errwrap implements methods to formalize error wrapping in Go.
+//
+// All of the top-level functions that take an `error` are built to be able
+// to take any error, not just wrapped errors. This allows you to use errwrap
+// without having to type-check and type-cast everywhere.
+package errwrap
+
+import (
+	"errors"
+	"reflect"
+	"strings"
+)
+
+// WalkFunc is the callback called for Walk.
+type WalkFunc func(error)
+
+// Wrapper is an interface that can be implemented by custom types to
+// have all the Contains, Get, etc. functions in errwrap work.
+//
+// When Walk reaches a Wrapper, it will call the callback for every
+// wrapped error in addition to the wrapper itself. Since all the top-level
+// functions in errwrap use Walk, this means that all those functions work
+// with your custom type.
+type Wrapper interface {
+	WrappedErrors() []error
+}
+
+// Wrap defines that outer wraps inner, returning an error type that
+// can be cleanly used with the other methods in this package, such as
+// Contains, GetAll, etc.
+//
+// This function won't modify the error message at all (the outer message
+// will be used).
+func Wrap(outer, inner error) error {
+	return &wrappedError{
+		Outer: outer,
+		Inner: inner,
+	}
+}
+
+// Wrapf wraps an error with a formatting message. This is similar to using
+// `fmt.Errorf` to wrap an error. If you're using `fmt.Errorf` to wrap
+// errors, you should replace it with this.
+//
+// format is the format of the error message. The string '{{err}}' will
+// be replaced with the original error message.
+func Wrapf(format string, err error) error {
+	outerMsg := "<nil>"
+	if err != nil {
+		outerMsg = err.Error()
+	}
+
+	outer := errors.New(strings.Replace(
+		format, "{{err}}", outerMsg, -1))
+
+	return Wrap(outer, err)
+}
+
+// Contains checks if the given error contains an error with the
+// message msg. If err is not a wrapped error, this will always return
+// false unless the error itself happens to match this msg.
+func Contains(err error, msg string) bool {
+	return len(GetAll(err, msg)) > 0
+}
+
+// ContainsType checks if the given error contains an error with
+// the same concrete type as v. If err is not a wrapped error, this will
+// check the err itself.
+func ContainsType(err error, v interface{}) bool {
+	return len(GetAllType(err, v)) > 0
+}
+
+// Get is the same as GetAll but returns the deepest matching error.
+func Get(err error, msg string) error {
+	es := GetAll(err, msg)
+	if len(es) > 0 {
+		return es[len(es)-1]
+	}
+
+	return nil
+}
+
+// GetType is the same as GetAllType but returns the deepest matching error.
+func GetType(err error, v interface{}) error {
+	es := GetAllType(err, v)
+	if len(es) > 0 {
+		return es[len(es)-1]
+	}
+
+	return nil
+}
+
+// GetAll gets all the errors that might be wrapped in err with the
+// given message. The order of the errors is such that the outermost
+// matching error (the most recent wrap) is index zero, and so on.
+func GetAll(err error, msg string) []error {
+	var result []error
+
+	Walk(err, func(err error) {
+		if err.Error() == msg {
+			result = append(result, err)
+		}
+	})
+
+	return result
+}
+
+// GetAllType gets all the errors that are the same type as v.
+//
+// The order of the return value is the same as described in GetAll.
+func GetAllType(err error, v interface{}) []error {
+	var result []error
+
+	var search string
+	if v != nil {
+		search = reflect.TypeOf(v).String()
+	}
+	Walk(err, func(err error) {
+		var needle string
+		if err != nil {
+			needle = reflect.TypeOf(err).String()
+		}
+
+		if needle == search {
+			result = append(result, err)
+		}
+	})
+
+	return result
+}
+
+// Walk walks all the wrapped errors in err and calls the callback. If
+// err isn't a wrapped error, this will be called once for err. If err
+// is a wrapped error, the callback will be called for both the wrapper
+// that implements error as well as the wrapped error itself.
+func Walk(err error, cb WalkFunc) {
+	if err == nil {
+		return
+	}
+
+	switch e := err.(type) {
+	case *wrappedError:
+		cb(e.Outer)
+		Walk(e.Inner, cb)
+	case Wrapper:
+		cb(err)
+
+		for _, err := range e.WrappedErrors() {
+			Walk(err, cb)
+		}
+	default:
+		cb(err)
+	}
+}
+
+// wrappedError is an implementation of error that has both the
+// outer and inner errors.
+type wrappedError struct {
+	Outer error
+	Inner error
+}
+
+func (w *wrappedError) Error() string {
+	return w.Outer.Error()
+}
+
+func (w *wrappedError) WrappedErrors() []error {
+	return []error{w.Outer, w.Inner}
+}
diff --git a/vendor/github.com/hashicorp/go-cleanhttp/LICENSE b/vendor/github.com/hashicorp/go-cleanhttp/LICENSE
new file mode 100644
index 0000000000..e87a115e46
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-cleanhttp/LICENSE
@@ -0,0 +1,363 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. "Contributor"
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+
+     means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the terms of
+        a Secondary License.
+
+1.6. "Executable Form"
+
+     means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+
+     means a work that combines Covered Software with other material, in a
+     separate file or files, that is not Covered Software.
+
+1.8. "License"
+
+     means this document.
+
+1.9. "Licensable"
+
+     means having the right to grant, to the maximum extent possible, whether
+     at the time of the initial grant or subsequently, any and all of the
+     rights conveyed by this License.
+
+1.10. "Modifications"
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. "Patent Claims" of a Contributor
+
+      means any patent claim(s), including without limitation, method,
+      process, and apparatus claims, in any patent Licensable by such
+      Contributor that would be infringed, but for the grant of the License,
+      by the making, using, selling, offering for sale, having made, import,
+      or transfer of either its Contributions or its Contributor Version.
+
+1.12. "Secondary License"
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. "Source Code Form"
+
+      means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, "You" includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, "control" means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or
+        as part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its
+        Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution
+     become effective for each Contribution on the date the Contributor first
+     distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under
+     this License. No additional rights or licenses will be implied from the
+     distribution or licensing of Covered Software under this License.
+     Notwithstanding Section 2.1(b) above, no patent license is granted by a
+     Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party's
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of
+        its Contributions.
+
+     This License does not grant any rights in the trademarks, service marks,
+     or logos of any Contributor (except as may be necessary to comply with
+     the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this
+     License (see Section 10.2) or under the terms of a Secondary License (if
+     permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its
+     Contributions are its original creation(s) or it has sufficient rights to
+     grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under
+     applicable copyright doctrines of fair use, fair dealing, or other
+     equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under
+     the terms of this License. You must inform recipients that the Source
+     Code Form of the Covered Software is governed by the terms of this
+     License, and how they can obtain a copy of this License. You may not
+     attempt to alter or restrict the recipients' rights in the Source Code
+     Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this
+        License, or sublicense it under different terms, provided that the
+        license for the Executable Form does not attempt to limit or alter the
+        recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for
+     the Covered Software. If the Larger Work is a combination of Covered
+     Software with a work governed by one or more Secondary Licenses, and the
+     Covered Software is not Incompatible With Secondary Licenses, this
+     License permits You to additionally distribute such Covered Software
+     under the terms of such Secondary License(s), so that the recipient of
+     the Larger Work may, at their option, further distribute the Covered
+     Software under the terms of either this License or such Secondary
+     License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices
+     (including copyright notices, patent notices, disclaimers of warranty, or
+     limitations of liability) contained within the Source Code Form of the
+     Covered Software, except that You may alter any license notices to the
+     extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on
+     behalf of any Contributor. You must make it absolutely clear that any
+     such warranty, support, indemnity, or liability obligation is offered by
+     You alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute,
+   judicial order, or regulation then You must: (a) comply with the terms of
+   this License to the maximum extent possible; and (b) describe the
+   limitations and the code they affect. Such description must be placed in a
+   text file included with all distributions of the Covered Software under
+   this License. Except to the extent prohibited by statute or regulation,
+   such description must be sufficiently detailed for a recipient of ordinary
+   skill to be able to understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing
+     basis, if such Contributor fails to notify You of the non-compliance by
+     some reasonable means prior to 60 days after You have come back into
+     compliance. Moreover, Your grants from a particular Contributor are
+     reinstated on an ongoing basis if such Contributor notifies You of the
+     non-compliance by some reasonable means, this is the first time You have
+     received notice of non-compliance with this License from such
+     Contributor, and You become compliant prior to 30 days after Your receipt
+     of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions,
+     counter-claims, and cross-claims) alleging that a Contributor Version
+     directly or indirectly infringes any patent, then the rights granted to
+     You by any and all Contributors for the Covered Software under Section
+     2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an "as is" basis,
+   without warranty of any kind, either expressed, implied, or statutory,
+   including, without limitation, warranties that the Covered Software is free
+   of defects, merchantable, fit for a particular purpose or non-infringing.
+   The entire risk as to the quality and performance of the Covered Software
+   is with You. Should any Covered Software prove defective in any respect,
+   You (not any Contributor) assume the cost of any necessary servicing,
+   repair, or correction. This disclaimer of warranty constitutes an essential
+   part of this License. No use of  any Covered Software is authorized under
+   this License except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from
+   such party's negligence to the extent applicable law prohibits such
+   limitation. Some jurisdictions do not allow the exclusion or limitation of
+   incidental or consequential damages, so this exclusion and limitation may
+   not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts
+   of a jurisdiction where the defendant maintains its principal place of
+   business and such litigation shall be governed by laws of that
+   jurisdiction, without reference to its conflict-of-law provisions. Nothing
+   in this Section shall prevent a party's ability to bring cross-claims or
+   counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject
+   matter hereof. If any provision of this License is held to be
+   unenforceable, such provision shall be reformed only to the extent
+   necessary to make it enforceable. Any law or regulation which provides that
+   the language of a contract shall be construed against the drafter shall not
+   be used to construe this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version
+      of the License under which You originally received the Covered Software,
+      or under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a
+      modified version of this License if you rename the license and remove
+      any references to the name of the license steward (except to note that
+      such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+      Licenses If You choose to distribute Source Code Form that is
+      Incompatible With Secondary Licenses under the terms of this version of
+      the License, the notice described in Exhibit B of this License must be
+      attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file,
+then You may include the notice in a location (such as a LICENSE file in a
+relevant directory) where a recipient would be likely to look for such a
+notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+
+      This Source Code Form is "Incompatible
+      With Secondary Licenses", as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/go-cleanhttp/cleanhttp.go b/vendor/github.com/hashicorp/go-cleanhttp/cleanhttp.go
new file mode 100644
index 0000000000..8d306bf513
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-cleanhttp/cleanhttp.go
@@ -0,0 +1,57 @@
+package cleanhttp
+
+import (
+	"net"
+	"net/http"
+	"runtime"
+	"time"
+)
+
+// DefaultTransport returns a new http.Transport with similar default values to
+// http.DefaultTransport, but with idle connections and keepalives disabled.
+func DefaultTransport() *http.Transport {
+	transport := DefaultPooledTransport()
+	transport.DisableKeepAlives = true
+	transport.MaxIdleConnsPerHost = -1
+	return transport
+}
+
+// DefaultPooledTransport returns a new http.Transport with similar default
+// values to http.DefaultTransport. Do not use this for transient transports as
+// it can leak file descriptors over time. Only use this for transports that
+// will be re-used for the same host(s).
+func DefaultPooledTransport() *http.Transport {
+	transport := &http.Transport{
+		Proxy: http.ProxyFromEnvironment,
+		DialContext: (&net.Dialer{
+			Timeout:   30 * time.Second,
+			KeepAlive: 30 * time.Second,
+			DualStack: true,
+		}).DialContext,
+		MaxIdleConns:          100,
+		IdleConnTimeout:       90 * time.Second,
+		TLSHandshakeTimeout:   10 * time.Second,
+		ExpectContinueTimeout: 1 * time.Second,
+		MaxIdleConnsPerHost:   runtime.GOMAXPROCS(0) + 1,
+	}
+	return transport
+}
+
+// DefaultClient returns a new http.Client with similar default values to
+// http.Client, but with a non-shared Transport, idle connections disabled, and
+// keepalives disabled.
+func DefaultClient() *http.Client {
+	return &http.Client{
+		Transport: DefaultTransport(),
+	}
+}
+
+// DefaultPooledClient returns a new http.Client with similar default values to
+// http.Client, but with a shared Transport. Do not use this function for
+// transient clients as it can leak file descriptors over time. Only use this
+// for clients that will be re-used for the same host(s).
+func DefaultPooledClient() *http.Client {
+	return &http.Client{
+		Transport: DefaultPooledTransport(),
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-cleanhttp/doc.go b/vendor/github.com/hashicorp/go-cleanhttp/doc.go
new file mode 100644
index 0000000000..05841092a7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-cleanhttp/doc.go
@@ -0,0 +1,20 @@
+// Package cleanhttp offers convenience utilities for acquiring "clean"
+// http.Transport and http.Client structs.
+//
+// Values set on http.DefaultClient and http.DefaultTransport affect all
+// callers. This can have detrimental effects, esepcially in TLS contexts,
+// where client or root certificates set to talk to multiple endpoints can end
+// up displacing each other, leading to hard-to-debug issues. This package
+// provides non-shared http.Client and http.Transport structs to ensure that
+// the configuration will not be overwritten by other parts of the application
+// or dependencies.
+//
+// The DefaultClient and DefaultTransport functions disable idle connections
+// and keepalives. Without ensuring that idle connections are closed before
+// garbage collection, short-term clients/transports can leak file descriptors,
+// eventually leading to "too many open files" errors. If you will be
+// connecting to the same hosts repeatedly from the same client, you can use
+// DefaultPooledClient to receive a client that has connection pooling
+// semantics similar to http.DefaultClient.
+//
+package cleanhttp
diff --git a/vendor/github.com/hashicorp/go-cleanhttp/handlers.go b/vendor/github.com/hashicorp/go-cleanhttp/handlers.go
new file mode 100644
index 0000000000..7eda3777f3
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-cleanhttp/handlers.go
@@ -0,0 +1,43 @@
+package cleanhttp
+
+import (
+	"net/http"
+	"strings"
+	"unicode"
+)
+
+// HandlerInput provides input options to cleanhttp's handlers
+type HandlerInput struct {
+	ErrStatus int
+}
+
+// PrintablePathCheckHandler is a middleware that ensures the request path
+// contains only printable runes.
+func PrintablePathCheckHandler(next http.Handler, input *HandlerInput) http.Handler {
+	// Nil-check on input to make it optional
+	if input == nil {
+		input = &HandlerInput{
+			ErrStatus: http.StatusBadRequest,
+		}
+	}
+
+	// Default to http.StatusBadRequest on error
+	if input.ErrStatus == 0 {
+		input.ErrStatus = http.StatusBadRequest
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		// Check URL path for non-printable characters
+		idx := strings.IndexFunc(r.URL.Path, func(c rune) bool {
+			return !unicode.IsPrint(c)
+		})
+
+		if idx != -1 {
+			w.WriteHeader(input.ErrStatus)
+			return
+		}
+
+		next.ServeHTTP(w, r)
+		return
+	})
+}
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/LICENSE b/vendor/github.com/hashicorp/go-immutable-radix/LICENSE
new file mode 100644
index 0000000000..e87a115e46
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/LICENSE
@@ -0,0 +1,363 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. "Contributor"
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+
+     means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the terms of
+        a Secondary License.
+
+1.6. "Executable Form"
+
+     means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+
+     means a work that combines Covered Software with other material, in a
+     separate file or files, that is not Covered Software.
+
+1.8. "License"
+
+     means this document.
+
+1.9. "Licensable"
+
+     means having the right to grant, to the maximum extent possible, whether
+     at the time of the initial grant or subsequently, any and all of the
+     rights conveyed by this License.
+
+1.10. "Modifications"
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. "Patent Claims" of a Contributor
+
+      means any patent claim(s), including without limitation, method,
+      process, and apparatus claims, in any patent Licensable by such
+      Contributor that would be infringed, but for the grant of the License,
+      by the making, using, selling, offering for sale, having made, import,
+      or transfer of either its Contributions or its Contributor Version.
+
+1.12. "Secondary License"
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. "Source Code Form"
+
+      means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, "You" includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, "control" means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or
+        as part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its
+        Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution
+     become effective for each Contribution on the date the Contributor first
+     distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under
+     this License. No additional rights or licenses will be implied from the
+     distribution or licensing of Covered Software under this License.
+     Notwithstanding Section 2.1(b) above, no patent license is granted by a
+     Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party's
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of
+        its Contributions.
+
+     This License does not grant any rights in the trademarks, service marks,
+     or logos of any Contributor (except as may be necessary to comply with
+     the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this
+     License (see Section 10.2) or under the terms of a Secondary License (if
+     permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its
+     Contributions are its original creation(s) or it has sufficient rights to
+     grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under
+     applicable copyright doctrines of fair use, fair dealing, or other
+     equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under
+     the terms of this License. You must inform recipients that the Source
+     Code Form of the Covered Software is governed by the terms of this
+     License, and how they can obtain a copy of this License. You may not
+     attempt to alter or restrict the recipients' rights in the Source Code
+     Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this
+        License, or sublicense it under different terms, provided that the
+        license for the Executable Form does not attempt to limit or alter the
+        recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for
+     the Covered Software. If the Larger Work is a combination of Covered
+     Software with a work governed by one or more Secondary Licenses, and the
+     Covered Software is not Incompatible With Secondary Licenses, this
+     License permits You to additionally distribute such Covered Software
+     under the terms of such Secondary License(s), so that the recipient of
+     the Larger Work may, at their option, further distribute the Covered
+     Software under the terms of either this License or such Secondary
+     License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices
+     (including copyright notices, patent notices, disclaimers of warranty, or
+     limitations of liability) contained within the Source Code Form of the
+     Covered Software, except that You may alter any license notices to the
+     extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on
+     behalf of any Contributor. You must make it absolutely clear that any
+     such warranty, support, indemnity, or liability obligation is offered by
+     You alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute,
+   judicial order, or regulation then You must: (a) comply with the terms of
+   this License to the maximum extent possible; and (b) describe the
+   limitations and the code they affect. Such description must be placed in a
+   text file included with all distributions of the Covered Software under
+   this License. Except to the extent prohibited by statute or regulation,
+   such description must be sufficiently detailed for a recipient of ordinary
+   skill to be able to understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing
+     basis, if such Contributor fails to notify You of the non-compliance by
+     some reasonable means prior to 60 days after You have come back into
+     compliance. Moreover, Your grants from a particular Contributor are
+     reinstated on an ongoing basis if such Contributor notifies You of the
+     non-compliance by some reasonable means, this is the first time You have
+     received notice of non-compliance with this License from such
+     Contributor, and You become compliant prior to 30 days after Your receipt
+     of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions,
+     counter-claims, and cross-claims) alleging that a Contributor Version
+     directly or indirectly infringes any patent, then the rights granted to
+     You by any and all Contributors for the Covered Software under Section
+     2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an "as is" basis,
+   without warranty of any kind, either expressed, implied, or statutory,
+   including, without limitation, warranties that the Covered Software is free
+   of defects, merchantable, fit for a particular purpose or non-infringing.
+   The entire risk as to the quality and performance of the Covered Software
+   is with You. Should any Covered Software prove defective in any respect,
+   You (not any Contributor) assume the cost of any necessary servicing,
+   repair, or correction. This disclaimer of warranty constitutes an essential
+   part of this License. No use of  any Covered Software is authorized under
+   this License except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from
+   such party's negligence to the extent applicable law prohibits such
+   limitation. Some jurisdictions do not allow the exclusion or limitation of
+   incidental or consequential damages, so this exclusion and limitation may
+   not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts
+   of a jurisdiction where the defendant maintains its principal place of
+   business and such litigation shall be governed by laws of that
+   jurisdiction, without reference to its conflict-of-law provisions. Nothing
+   in this Section shall prevent a party's ability to bring cross-claims or
+   counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject
+   matter hereof. If any provision of this License is held to be
+   unenforceable, such provision shall be reformed only to the extent
+   necessary to make it enforceable. Any law or regulation which provides that
+   the language of a contract shall be construed against the drafter shall not
+   be used to construe this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version
+      of the License under which You originally received the Covered Software,
+      or under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a
+      modified version of this License if you rename the license and remove
+      any references to the name of the license steward (except to note that
+      such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+      Licenses If You choose to distribute Source Code Form that is
+      Incompatible With Secondary Licenses under the terms of this version of
+      the License, the notice described in Exhibit B of this License must be
+      attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file,
+then You may include the notice in a location (such as a LICENSE file in a
+relevant directory) where a recipient would be likely to look for such a
+notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+
+      This Source Code Form is "Incompatible
+      With Secondary Licenses", as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/edges.go b/vendor/github.com/hashicorp/go-immutable-radix/edges.go
new file mode 100644
index 0000000000..a63674775f
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/edges.go
@@ -0,0 +1,21 @@
+package iradix
+
+import "sort"
+
+type edges []edge
+
+func (e edges) Len() int {
+	return len(e)
+}
+
+func (e edges) Less(i, j int) bool {
+	return e[i].label < e[j].label
+}
+
+func (e edges) Swap(i, j int) {
+	e[i], e[j] = e[j], e[i]
+}
+
+func (e edges) Sort() {
+	sort.Sort(e)
+}
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/iradix.go b/vendor/github.com/hashicorp/go-immutable-radix/iradix.go
new file mode 100644
index 0000000000..e5e6e57f26
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/iradix.go
@@ -0,0 +1,662 @@
+package iradix
+
+import (
+	"bytes"
+	"strings"
+
+	"github.com/hashicorp/golang-lru/simplelru"
+)
+
+const (
+	// defaultModifiedCache is the default size of the modified node
+	// cache used per transaction. This is used to cache the updates
+	// to the nodes near the root, while the leaves do not need to be
+	// cached. This is important for very large transactions to prevent
+	// the modified cache from growing to be enormous. This is also used
+	// to set the max size of the mutation notify maps since those should
+	// also be bounded in a similar way.
+	defaultModifiedCache = 8192
+)
+
+// Tree implements an immutable radix tree. This can be treated as a
+// Dictionary abstract data type. The main advantage over a standard
+// hash map is prefix-based lookups and ordered iteration. The immutability
+// means that it is safe to concurrently read from a Tree without any
+// coordination.
+type Tree struct {
+	root *Node
+	size int
+}
+
+// New returns an empty Tree
+func New() *Tree {
+	t := &Tree{
+		root: &Node{
+			mutateCh: make(chan struct{}),
+		},
+	}
+	return t
+}
+
+// Len is used to return the number of elements in the tree
+func (t *Tree) Len() int {
+	return t.size
+}
+
+// Txn is a transaction on the tree. This transaction is applied
+// atomically and returns a new tree when committed. A transaction
+// is not thread safe, and should only be used by a single goroutine.
+type Txn struct {
+	// root is the modified root for the transaction.
+	root *Node
+
+	// snap is a snapshot of the root node for use if we have to run the
+	// slow notify algorithm.
+	snap *Node
+
+	// size tracks the size of the tree as it is modified during the
+	// transaction.
+	size int
+
+	// writable is a cache of writable nodes that have been created during
+	// the course of the transaction. This allows us to re-use the same
+	// nodes for further writes and avoid unnecessary copies of nodes that
+	// have never been exposed outside the transaction. This will only hold
+	// up to defaultModifiedCache number of entries.
+	writable *simplelru.LRU
+
+	// trackChannels is used to hold channels that need to be notified to
+	// signal mutation of the tree. This will only hold up to
+	// defaultModifiedCache number of entries, after which we will set the
+	// trackOverflow flag, which will cause us to use a more expensive
+	// algorithm to perform the notifications. Mutation tracking is only
+	// performed if trackMutate is true.
+	trackChannels map[chan struct{}]struct{}
+	trackOverflow bool
+	trackMutate   bool
+}
+
+// Txn starts a new transaction that can be used to mutate the tree
+func (t *Tree) Txn() *Txn {
+	txn := &Txn{
+		root: t.root,
+		snap: t.root,
+		size: t.size,
+	}
+	return txn
+}
+
+// TrackMutate can be used to toggle if mutations are tracked. If this is enabled
+// then notifications will be issued for affected internal nodes and leaves when
+// the transaction is committed.
+func (t *Txn) TrackMutate(track bool) {
+	t.trackMutate = track
+}
+
+// trackChannel safely attempts to track the given mutation channel, setting the
+// overflow flag if we can no longer track any more. This limits the amount of
+// state that will accumulate during a transaction and we have a slower algorithm
+// to switch to if we overflow.
+func (t *Txn) trackChannel(ch chan struct{}) {
+	// In overflow, make sure we don't store any more objects.
+	if t.trackOverflow {
+		return
+	}
+
+	// If this would overflow the state we reject it and set the flag (since
+	// we aren't tracking everything that's required any longer).
+	if len(t.trackChannels) >= defaultModifiedCache {
+		// Mark that we are in the overflow state
+		t.trackOverflow = true
+
+		// Clear the map so that the channels can be garbage collected. It is
+		// safe to do this since we have already overflowed and will be using
+		// the slow notify algorithm.
+		t.trackChannels = nil
+		return
+	}
+
+	// Create the map on the fly when we need it.
+	if t.trackChannels == nil {
+		t.trackChannels = make(map[chan struct{}]struct{})
+	}
+
+	// Otherwise we are good to track it.
+	t.trackChannels[ch] = struct{}{}
+}
+
+// writeNode returns a node to be modified, if the current node has already been
+// modified during the course of the transaction, it is used in-place. Set
+// forLeafUpdate to true if you are getting a write node to update the leaf,
+// which will set leaf mutation tracking appropriately as well.
+func (t *Txn) writeNode(n *Node, forLeafUpdate bool) *Node {
+	// Ensure the writable set exists.
+	if t.writable == nil {
+		lru, err := simplelru.NewLRU(defaultModifiedCache, nil)
+		if err != nil {
+			panic(err)
+		}
+		t.writable = lru
+	}
+
+	// If this node has already been modified, we can continue to use it
+	// during this transaction. We know that we don't need to track it for
+	// a node update since the node is writable, but if this is for a leaf
+	// update we track it, in case the initial write to this node didn't
+	// update the leaf.
+	if _, ok := t.writable.Get(n); ok {
+		if t.trackMutate && forLeafUpdate && n.leaf != nil {
+			t.trackChannel(n.leaf.mutateCh)
+		}
+		return n
+	}
+
+	// Mark this node as being mutated.
+	if t.trackMutate {
+		t.trackChannel(n.mutateCh)
+	}
+
+	// Mark its leaf as being mutated, if appropriate.
+	if t.trackMutate && forLeafUpdate && n.leaf != nil {
+		t.trackChannel(n.leaf.mutateCh)
+	}
+
+	// Copy the existing node. If you have set forLeafUpdate it will be
+	// safe to replace this leaf with another after you get your node for
+	// writing. You MUST replace it, because the channel associated with
+	// this leaf will be closed when this transaction is committed.
+	nc := &Node{
+		mutateCh: make(chan struct{}),
+		leaf:     n.leaf,
+	}
+	if n.prefix != nil {
+		nc.prefix = make([]byte, len(n.prefix))
+		copy(nc.prefix, n.prefix)
+	}
+	if len(n.edges) != 0 {
+		nc.edges = make([]edge, len(n.edges))
+		copy(nc.edges, n.edges)
+	}
+
+	// Mark this node as writable.
+	t.writable.Add(nc, nil)
+	return nc
+}
+
+// Visit all the nodes in the tree under n, and add their mutateChannels to the transaction
+// Returns the size of the subtree visited
+func (t *Txn) trackChannelsAndCount(n *Node) int {
+	// Count only leaf nodes
+	leaves := 0
+	if n.leaf != nil {
+		leaves = 1
+	}
+	// Mark this node as being mutated.
+	if t.trackMutate {
+		t.trackChannel(n.mutateCh)
+	}
+
+	// Mark its leaf as being mutated, if appropriate.
+	if t.trackMutate && n.leaf != nil {
+		t.trackChannel(n.leaf.mutateCh)
+	}
+
+	// Recurse on the children
+	for _, e := range n.edges {
+		leaves += t.trackChannelsAndCount(e.node)
+	}
+	return leaves
+}
+
+// mergeChild is called to collapse the given node with its child. This is only
+// called when the given node is not a leaf and has a single edge.
+func (t *Txn) mergeChild(n *Node) {
+	// Mark the child node as being mutated since we are about to abandon
+	// it. We don't need to mark the leaf since we are retaining it if it
+	// is there.
+	e := n.edges[0]
+	child := e.node
+	if t.trackMutate {
+		t.trackChannel(child.mutateCh)
+	}
+
+	// Merge the nodes.
+	n.prefix = concat(n.prefix, child.prefix)
+	n.leaf = child.leaf
+	if len(child.edges) != 0 {
+		n.edges = make([]edge, len(child.edges))
+		copy(n.edges, child.edges)
+	} else {
+		n.edges = nil
+	}
+}
+
+// insert does a recursive insertion
+func (t *Txn) insert(n *Node, k, search []byte, v interface{}) (*Node, interface{}, bool) {
+	// Handle key exhaustion
+	if len(search) == 0 {
+		var oldVal interface{}
+		didUpdate := false
+		if n.isLeaf() {
+			oldVal = n.leaf.val
+			didUpdate = true
+		}
+
+		nc := t.writeNode(n, true)
+		nc.leaf = &leafNode{
+			mutateCh: make(chan struct{}),
+			key:      k,
+			val:      v,
+		}
+		return nc, oldVal, didUpdate
+	}
+
+	// Look for the edge
+	idx, child := n.getEdge(search[0])
+
+	// No edge, create one
+	if child == nil {
+		e := edge{
+			label: search[0],
+			node: &Node{
+				mutateCh: make(chan struct{}),
+				leaf: &leafNode{
+					mutateCh: make(chan struct{}),
+					key:      k,
+					val:      v,
+				},
+				prefix: search,
+			},
+		}
+		nc := t.writeNode(n, false)
+		nc.addEdge(e)
+		return nc, nil, false
+	}
+
+	// Determine longest prefix of the search key on match
+	commonPrefix := longestPrefix(search, child.prefix)
+	if commonPrefix == len(child.prefix) {
+		search = search[commonPrefix:]
+		newChild, oldVal, didUpdate := t.insert(child, k, search, v)
+		if newChild != nil {
+			nc := t.writeNode(n, false)
+			nc.edges[idx].node = newChild
+			return nc, oldVal, didUpdate
+		}
+		return nil, oldVal, didUpdate
+	}
+
+	// Split the node
+	nc := t.writeNode(n, false)
+	splitNode := &Node{
+		mutateCh: make(chan struct{}),
+		prefix:   search[:commonPrefix],
+	}
+	nc.replaceEdge(edge{
+		label: search[0],
+		node:  splitNode,
+	})
+
+	// Restore the existing child node
+	modChild := t.writeNode(child, false)
+	splitNode.addEdge(edge{
+		label: modChild.prefix[commonPrefix],
+		node:  modChild,
+	})
+	modChild.prefix = modChild.prefix[commonPrefix:]
+
+	// Create a new leaf node
+	leaf := &leafNode{
+		mutateCh: make(chan struct{}),
+		key:      k,
+		val:      v,
+	}
+
+	// If the new key is a subset, add to to this node
+	search = search[commonPrefix:]
+	if len(search) == 0 {
+		splitNode.leaf = leaf
+		return nc, nil, false
+	}
+
+	// Create a new edge for the node
+	splitNode.addEdge(edge{
+		label: search[0],
+		node: &Node{
+			mutateCh: make(chan struct{}),
+			leaf:     leaf,
+			prefix:   search,
+		},
+	})
+	return nc, nil, false
+}
+
+// delete does a recursive deletion
+func (t *Txn) delete(parent, n *Node, search []byte) (*Node, *leafNode) {
+	// Check for key exhaustion
+	if len(search) == 0 {
+		if !n.isLeaf() {
+			return nil, nil
+		}
+		// Copy the pointer in case we are in a transaction that already
+		// modified this node since the node will be reused. Any changes
+		// made to the node will not affect returning the original leaf
+		// value.
+		oldLeaf := n.leaf
+
+		// Remove the leaf node
+		nc := t.writeNode(n, true)
+		nc.leaf = nil
+
+		// Check if this node should be merged
+		if n != t.root && len(nc.edges) == 1 {
+			t.mergeChild(nc)
+		}
+		return nc, oldLeaf
+	}
+
+	// Look for an edge
+	label := search[0]
+	idx, child := n.getEdge(label)
+	if child == nil || !bytes.HasPrefix(search, child.prefix) {
+		return nil, nil
+	}
+
+	// Consume the search prefix
+	search = search[len(child.prefix):]
+	newChild, leaf := t.delete(n, child, search)
+	if newChild == nil {
+		return nil, nil
+	}
+
+	// Copy this node. WATCH OUT - it's safe to pass "false" here because we
+	// will only ADD a leaf via nc.mergeChild() if there isn't one due to
+	// the !nc.isLeaf() check in the logic just below. This is pretty subtle,
+	// so be careful if you change any of the logic here.
+	nc := t.writeNode(n, false)
+
+	// Delete the edge if the node has no edges
+	if newChild.leaf == nil && len(newChild.edges) == 0 {
+		nc.delEdge(label)
+		if n != t.root && len(nc.edges) == 1 && !nc.isLeaf() {
+			t.mergeChild(nc)
+		}
+	} else {
+		nc.edges[idx].node = newChild
+	}
+	return nc, leaf
+}
+
+// delete does a recursive deletion
+func (t *Txn) deletePrefix(parent, n *Node, search []byte) (*Node, int) {
+	// Check for key exhaustion
+	if len(search) == 0 {
+		nc := t.writeNode(n, true)
+		if n.isLeaf() {
+			nc.leaf = nil
+		}
+		nc.edges = nil
+		return nc, t.trackChannelsAndCount(n)
+	}
+
+	// Look for an edge
+	label := search[0]
+	idx, child := n.getEdge(label)
+	// We make sure that either the child node's prefix starts with the search term, or the search term starts with the child node's prefix
+	// Need to do both so that we can delete prefixes that don't correspond to any node in the tree
+	if child == nil || (!bytes.HasPrefix(child.prefix, search) && !bytes.HasPrefix(search, child.prefix)) {
+		return nil, 0
+	}
+
+	// Consume the search prefix
+	if len(child.prefix) > len(search) {
+		search = []byte("")
+	} else {
+		search = search[len(child.prefix):]
+	}
+	newChild, numDeletions := t.deletePrefix(n, child, search)
+	if newChild == nil {
+		return nil, 0
+	}
+	// Copy this node. WATCH OUT - it's safe to pass "false" here because we
+	// will only ADD a leaf via nc.mergeChild() if there isn't one due to
+	// the !nc.isLeaf() check in the logic just below. This is pretty subtle,
+	// so be careful if you change any of the logic here.
+
+	nc := t.writeNode(n, false)
+
+	// Delete the edge if the node has no edges
+	if newChild.leaf == nil && len(newChild.edges) == 0 {
+		nc.delEdge(label)
+		if n != t.root && len(nc.edges) == 1 && !nc.isLeaf() {
+			t.mergeChild(nc)
+		}
+	} else {
+		nc.edges[idx].node = newChild
+	}
+	return nc, numDeletions
+}
+
+// Insert is used to add or update a given key. The return provides
+// the previous value and a bool indicating if any was set.
+func (t *Txn) Insert(k []byte, v interface{}) (interface{}, bool) {
+	newRoot, oldVal, didUpdate := t.insert(t.root, k, k, v)
+	if newRoot != nil {
+		t.root = newRoot
+	}
+	if !didUpdate {
+		t.size++
+	}
+	return oldVal, didUpdate
+}
+
+// Delete is used to delete a given key. Returns the old value if any,
+// and a bool indicating if the key was set.
+func (t *Txn) Delete(k []byte) (interface{}, bool) {
+	newRoot, leaf := t.delete(nil, t.root, k)
+	if newRoot != nil {
+		t.root = newRoot
+	}
+	if leaf != nil {
+		t.size--
+		return leaf.val, true
+	}
+	return nil, false
+}
+
+// DeletePrefix is used to delete an entire subtree that matches the prefix
+// This will delete all nodes under that prefix
+func (t *Txn) DeletePrefix(prefix []byte) bool {
+	newRoot, numDeletions := t.deletePrefix(nil, t.root, prefix)
+	if newRoot != nil {
+		t.root = newRoot
+		t.size = t.size - numDeletions
+		return true
+	}
+	return false
+
+}
+
+// Root returns the current root of the radix tree within this
+// transaction. The root is not safe across insert and delete operations,
+// but can be used to read the current state during a transaction.
+func (t *Txn) Root() *Node {
+	return t.root
+}
+
+// Get is used to lookup a specific key, returning
+// the value and if it was found
+func (t *Txn) Get(k []byte) (interface{}, bool) {
+	return t.root.Get(k)
+}
+
+// GetWatch is used to lookup a specific key, returning
+// the watch channel, value and if it was found
+func (t *Txn) GetWatch(k []byte) (<-chan struct{}, interface{}, bool) {
+	return t.root.GetWatch(k)
+}
+
+// Commit is used to finalize the transaction and return a new tree. If mutation
+// tracking is turned on then notifications will also be issued.
+func (t *Txn) Commit() *Tree {
+	nt := t.CommitOnly()
+	if t.trackMutate {
+		t.Notify()
+	}
+	return nt
+}
+
+// CommitOnly is used to finalize the transaction and return a new tree, but
+// does not issue any notifications until Notify is called.
+func (t *Txn) CommitOnly() *Tree {
+	nt := &Tree{t.root, t.size}
+	t.writable = nil
+	return nt
+}
+
+// slowNotify does a complete comparison of the before and after trees in order
+// to trigger notifications. This doesn't require any additional state but it
+// is very expensive to compute.
+func (t *Txn) slowNotify() {
+	snapIter := t.snap.rawIterator()
+	rootIter := t.root.rawIterator()
+	for snapIter.Front() != nil || rootIter.Front() != nil {
+		// If we've exhausted the nodes in the old snapshot, we know
+		// there's nothing remaining to notify.
+		if snapIter.Front() == nil {
+			return
+		}
+		snapElem := snapIter.Front()
+
+		// If we've exhausted the nodes in the new root, we know we need
+		// to invalidate everything that remains in the old snapshot. We
+		// know from the loop condition there's something in the old
+		// snapshot.
+		if rootIter.Front() == nil {
+			close(snapElem.mutateCh)
+			if snapElem.isLeaf() {
+				close(snapElem.leaf.mutateCh)
+			}
+			snapIter.Next()
+			continue
+		}
+
+		// Do one string compare so we can check the various conditions
+		// below without repeating the compare.
+		cmp := strings.Compare(snapIter.Path(), rootIter.Path())
+
+		// If the snapshot is behind the root, then we must have deleted
+		// this node during the transaction.
+		if cmp < 0 {
+			close(snapElem.mutateCh)
+			if snapElem.isLeaf() {
+				close(snapElem.leaf.mutateCh)
+			}
+			snapIter.Next()
+			continue
+		}
+
+		// If the snapshot is ahead of the root, then we must have added
+		// this node during the transaction.
+		if cmp > 0 {
+			rootIter.Next()
+			continue
+		}
+
+		// If we have the same path, then we need to see if we mutated a
+		// node and possibly the leaf.
+		rootElem := rootIter.Front()
+		if snapElem != rootElem {
+			close(snapElem.mutateCh)
+			if snapElem.leaf != nil && (snapElem.leaf != rootElem.leaf) {
+				close(snapElem.leaf.mutateCh)
+			}
+		}
+		snapIter.Next()
+		rootIter.Next()
+	}
+}
+
+// Notify is used along with TrackMutate to trigger notifications. This must
+// only be done once a transaction is committed via CommitOnly, and it is called
+// automatically by Commit.
+func (t *Txn) Notify() {
+	if !t.trackMutate {
+		return
+	}
+
+	// If we've overflowed the tracking state we can't use it in any way and
+	// need to do a full tree compare.
+	if t.trackOverflow {
+		t.slowNotify()
+	} else {
+		for ch := range t.trackChannels {
+			close(ch)
+		}
+	}
+
+	// Clean up the tracking state so that a re-notify is safe (will trigger
+	// the else clause above which will be a no-op).
+	t.trackChannels = nil
+	t.trackOverflow = false
+}
+
+// Insert is used to add or update a given key. The return provides
+// the new tree, previous value and a bool indicating if any was set.
+func (t *Tree) Insert(k []byte, v interface{}) (*Tree, interface{}, bool) {
+	txn := t.Txn()
+	old, ok := txn.Insert(k, v)
+	return txn.Commit(), old, ok
+}
+
+// Delete is used to delete a given key. Returns the new tree,
+// old value if any, and a bool indicating if the key was set.
+func (t *Tree) Delete(k []byte) (*Tree, interface{}, bool) {
+	txn := t.Txn()
+	old, ok := txn.Delete(k)
+	return txn.Commit(), old, ok
+}
+
+// DeletePrefix is used to delete all nodes starting with a given prefix. Returns the new tree,
+// and a bool indicating if the prefix matched any nodes
+func (t *Tree) DeletePrefix(k []byte) (*Tree, bool) {
+	txn := t.Txn()
+	ok := txn.DeletePrefix(k)
+	return txn.Commit(), ok
+}
+
+// Root returns the root node of the tree which can be used for richer
+// query operations.
+func (t *Tree) Root() *Node {
+	return t.root
+}
+
+// Get is used to lookup a specific key, returning
+// the value and if it was found
+func (t *Tree) Get(k []byte) (interface{}, bool) {
+	return t.root.Get(k)
+}
+
+// longestPrefix finds the length of the shared prefix
+// of two strings
+func longestPrefix(k1, k2 []byte) int {
+	max := len(k1)
+	if l := len(k2); l < max {
+		max = l
+	}
+	var i int
+	for i = 0; i < max; i++ {
+		if k1[i] != k2[i] {
+			break
+		}
+	}
+	return i
+}
+
+// concat two byte slices, returning a third new copy
+func concat(a, b []byte) []byte {
+	c := make([]byte, len(a)+len(b))
+	copy(c, a)
+	copy(c[len(a):], b)
+	return c
+}
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/iter.go b/vendor/github.com/hashicorp/go-immutable-radix/iter.go
new file mode 100644
index 0000000000..9815e02538
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/iter.go
@@ -0,0 +1,91 @@
+package iradix
+
+import "bytes"
+
+// Iterator is used to iterate over a set of nodes
+// in pre-order
+type Iterator struct {
+	node  *Node
+	stack []edges
+}
+
+// SeekPrefixWatch is used to seek the iterator to a given prefix
+// and returns the watch channel of the finest granularity
+func (i *Iterator) SeekPrefixWatch(prefix []byte) (watch <-chan struct{}) {
+	// Wipe the stack
+	i.stack = nil
+	n := i.node
+	watch = n.mutateCh
+	search := prefix
+	for {
+		// Check for key exhaution
+		if len(search) == 0 {
+			i.node = n
+			return
+		}
+
+		// Look for an edge
+		_, n = n.getEdge(search[0])
+		if n == nil {
+			i.node = nil
+			return
+		}
+
+		// Update to the finest granularity as the search makes progress
+		watch = n.mutateCh
+
+		// Consume the search prefix
+		if bytes.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+
+		} else if bytes.HasPrefix(n.prefix, search) {
+			i.node = n
+			return
+		} else {
+			i.node = nil
+			return
+		}
+	}
+}
+
+// SeekPrefix is used to seek the iterator to a given prefix
+func (i *Iterator) SeekPrefix(prefix []byte) {
+	i.SeekPrefixWatch(prefix)
+}
+
+// Next returns the next node in order
+func (i *Iterator) Next() ([]byte, interface{}, bool) {
+	// Initialize our stack if needed
+	if i.stack == nil && i.node != nil {
+		i.stack = []edges{
+			edges{
+				edge{node: i.node},
+			},
+		}
+	}
+
+	for len(i.stack) > 0 {
+		// Inspect the last element of the stack
+		n := len(i.stack)
+		last := i.stack[n-1]
+		elem := last[0].node
+
+		// Update the stack
+		if len(last) > 1 {
+			i.stack[n-1] = last[1:]
+		} else {
+			i.stack = i.stack[:n-1]
+		}
+
+		// Push the edges onto the frontier
+		if len(elem.edges) > 0 {
+			i.stack = append(i.stack, elem.edges)
+		}
+
+		// Return the leaf values if any
+		if elem.leaf != nil {
+			return elem.leaf.key, elem.leaf.val, true
+		}
+	}
+	return nil, nil, false
+}
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/node.go b/vendor/github.com/hashicorp/go-immutable-radix/node.go
new file mode 100644
index 0000000000..7a065e7a09
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/node.go
@@ -0,0 +1,292 @@
+package iradix
+
+import (
+	"bytes"
+	"sort"
+)
+
+// WalkFn is used when walking the tree. Takes a
+// key and value, returning if iteration should
+// be terminated.
+type WalkFn func(k []byte, v interface{}) bool
+
+// leafNode is used to represent a value
+type leafNode struct {
+	mutateCh chan struct{}
+	key      []byte
+	val      interface{}
+}
+
+// edge is used to represent an edge node
+type edge struct {
+	label byte
+	node  *Node
+}
+
+// Node is an immutable node in the radix tree
+type Node struct {
+	// mutateCh is closed if this node is modified
+	mutateCh chan struct{}
+
+	// leaf is used to store possible leaf
+	leaf *leafNode
+
+	// prefix is the common prefix we ignore
+	prefix []byte
+
+	// Edges should be stored in-order for iteration.
+	// We avoid a fully materialized slice to save memory,
+	// since in most cases we expect to be sparse
+	edges edges
+}
+
+func (n *Node) isLeaf() bool {
+	return n.leaf != nil
+}
+
+func (n *Node) addEdge(e edge) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= e.label
+	})
+	n.edges = append(n.edges, e)
+	if idx != num {
+		copy(n.edges[idx+1:], n.edges[idx:num])
+		n.edges[idx] = e
+	}
+}
+
+func (n *Node) replaceEdge(e edge) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= e.label
+	})
+	if idx < num && n.edges[idx].label == e.label {
+		n.edges[idx].node = e.node
+		return
+	}
+	panic("replacing missing edge")
+}
+
+func (n *Node) getEdge(label byte) (int, *Node) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= label
+	})
+	if idx < num && n.edges[idx].label == label {
+		return idx, n.edges[idx].node
+	}
+	return -1, nil
+}
+
+func (n *Node) delEdge(label byte) {
+	num := len(n.edges)
+	idx := sort.Search(num, func(i int) bool {
+		return n.edges[i].label >= label
+	})
+	if idx < num && n.edges[idx].label == label {
+		copy(n.edges[idx:], n.edges[idx+1:])
+		n.edges[len(n.edges)-1] = edge{}
+		n.edges = n.edges[:len(n.edges)-1]
+	}
+}
+
+func (n *Node) GetWatch(k []byte) (<-chan struct{}, interface{}, bool) {
+	search := k
+	watch := n.mutateCh
+	for {
+		// Check for key exhaustion
+		if len(search) == 0 {
+			if n.isLeaf() {
+				return n.leaf.mutateCh, n.leaf.val, true
+			}
+			break
+		}
+
+		// Look for an edge
+		_, n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Update to the finest granularity as the search makes progress
+		watch = n.mutateCh
+
+		// Consume the search prefix
+		if bytes.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+	return watch, nil, false
+}
+
+func (n *Node) Get(k []byte) (interface{}, bool) {
+	_, val, ok := n.GetWatch(k)
+	return val, ok
+}
+
+// LongestPrefix is like Get, but instead of an
+// exact match, it will return the longest prefix match.
+func (n *Node) LongestPrefix(k []byte) ([]byte, interface{}, bool) {
+	var last *leafNode
+	search := k
+	for {
+		// Look for a leaf node
+		if n.isLeaf() {
+			last = n.leaf
+		}
+
+		// Check for key exhaution
+		if len(search) == 0 {
+			break
+		}
+
+		// Look for an edge
+		_, n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if bytes.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+	if last != nil {
+		return last.key, last.val, true
+	}
+	return nil, nil, false
+}
+
+// Minimum is used to return the minimum value in the tree
+func (n *Node) Minimum() ([]byte, interface{}, bool) {
+	for {
+		if n.isLeaf() {
+			return n.leaf.key, n.leaf.val, true
+		}
+		if len(n.edges) > 0 {
+			n = n.edges[0].node
+		} else {
+			break
+		}
+	}
+	return nil, nil, false
+}
+
+// Maximum is used to return the maximum value in the tree
+func (n *Node) Maximum() ([]byte, interface{}, bool) {
+	for {
+		if num := len(n.edges); num > 0 {
+			n = n.edges[num-1].node
+			continue
+		}
+		if n.isLeaf() {
+			return n.leaf.key, n.leaf.val, true
+		} else {
+			break
+		}
+	}
+	return nil, nil, false
+}
+
+// Iterator is used to return an iterator at
+// the given node to walk the tree
+func (n *Node) Iterator() *Iterator {
+	return &Iterator{node: n}
+}
+
+// rawIterator is used to return a raw iterator at the given node to walk the
+// tree.
+func (n *Node) rawIterator() *rawIterator {
+	iter := &rawIterator{node: n}
+	iter.Next()
+	return iter
+}
+
+// Walk is used to walk the tree
+func (n *Node) Walk(fn WalkFn) {
+	recursiveWalk(n, fn)
+}
+
+// WalkPrefix is used to walk the tree under a prefix
+func (n *Node) WalkPrefix(prefix []byte, fn WalkFn) {
+	search := prefix
+	for {
+		// Check for key exhaution
+		if len(search) == 0 {
+			recursiveWalk(n, fn)
+			return
+		}
+
+		// Look for an edge
+		_, n = n.getEdge(search[0])
+		if n == nil {
+			break
+		}
+
+		// Consume the search prefix
+		if bytes.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+
+		} else if bytes.HasPrefix(n.prefix, search) {
+			// Child may be under our search prefix
+			recursiveWalk(n, fn)
+			return
+		} else {
+			break
+		}
+	}
+}
+
+// WalkPath is used to walk the tree, but only visiting nodes
+// from the root down to a given leaf. Where WalkPrefix walks
+// all the entries *under* the given prefix, this walks the
+// entries *above* the given prefix.
+func (n *Node) WalkPath(path []byte, fn WalkFn) {
+	search := path
+	for {
+		// Visit the leaf values if any
+		if n.leaf != nil && fn(n.leaf.key, n.leaf.val) {
+			return
+		}
+
+		// Check for key exhaution
+		if len(search) == 0 {
+			return
+		}
+
+		// Look for an edge
+		_, n = n.getEdge(search[0])
+		if n == nil {
+			return
+		}
+
+		// Consume the search prefix
+		if bytes.HasPrefix(search, n.prefix) {
+			search = search[len(n.prefix):]
+		} else {
+			break
+		}
+	}
+}
+
+// recursiveWalk is used to do a pre-order walk of a node
+// recursively. Returns true if the walk should be aborted
+func recursiveWalk(n *Node, fn WalkFn) bool {
+	// Visit the leaf values if any
+	if n.leaf != nil && fn(n.leaf.key, n.leaf.val) {
+		return true
+	}
+
+	// Recurse on the children
+	for _, e := range n.edges {
+		if recursiveWalk(e.node, fn) {
+			return true
+		}
+	}
+	return false
+}
diff --git a/vendor/github.com/hashicorp/go-immutable-radix/raw_iter.go b/vendor/github.com/hashicorp/go-immutable-radix/raw_iter.go
new file mode 100644
index 0000000000..04814c1323
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-immutable-radix/raw_iter.go
@@ -0,0 +1,78 @@
+package iradix
+
+// rawIterator visits each of the nodes in the tree, even the ones that are not
+// leaves. It keeps track of the effective path (what a leaf at a given node
+// would be called), which is useful for comparing trees.
+type rawIterator struct {
+	// node is the starting node in the tree for the iterator.
+	node *Node
+
+	// stack keeps track of edges in the frontier.
+	stack []rawStackEntry
+
+	// pos is the current position of the iterator.
+	pos *Node
+
+	// path is the effective path of the current iterator position,
+	// regardless of whether the current node is a leaf.
+	path string
+}
+
+// rawStackEntry is used to keep track of the cumulative common path as well as
+// its associated edges in the frontier.
+type rawStackEntry struct {
+	path  string
+	edges edges
+}
+
+// Front returns the current node that has been iterated to.
+func (i *rawIterator) Front() *Node {
+	return i.pos
+}
+
+// Path returns the effective path of the current node, even if it's not actually
+// a leaf.
+func (i *rawIterator) Path() string {
+	return i.path
+}
+
+// Next advances the iterator to the next node.
+func (i *rawIterator) Next() {
+	// Initialize our stack if needed.
+	if i.stack == nil && i.node != nil {
+		i.stack = []rawStackEntry{
+			rawStackEntry{
+				edges: edges{
+					edge{node: i.node},
+				},
+			},
+		}
+	}
+
+	for len(i.stack) > 0 {
+		// Inspect the last element of the stack.
+		n := len(i.stack)
+		last := i.stack[n-1]
+		elem := last.edges[0].node
+
+		// Update the stack.
+		if len(last.edges) > 1 {
+			i.stack[n-1].edges = last.edges[1:]
+		} else {
+			i.stack = i.stack[:n-1]
+		}
+
+		// Push the edges onto the frontier.
+		if len(elem.edges) > 0 {
+			path := last.path + string(elem.prefix)
+			i.stack = append(i.stack, rawStackEntry{path, elem.edges})
+		}
+
+		i.pos = elem
+		i.path = last.path + string(elem.prefix)
+		return
+	}
+
+	i.pos = nil
+	i.path = ""
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/LICENSE b/vendor/github.com/hashicorp/go-memdb/LICENSE
new file mode 100644
index 0000000000..e87a115e46
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/LICENSE
@@ -0,0 +1,363 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. "Contributor"
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+
+     means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the terms of
+        a Secondary License.
+
+1.6. "Executable Form"
+
+     means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+
+     means a work that combines Covered Software with other material, in a
+     separate file or files, that is not Covered Software.
+
+1.8. "License"
+
+     means this document.
+
+1.9. "Licensable"
+
+     means having the right to grant, to the maximum extent possible, whether
+     at the time of the initial grant or subsequently, any and all of the
+     rights conveyed by this License.
+
+1.10. "Modifications"
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. "Patent Claims" of a Contributor
+
+      means any patent claim(s), including without limitation, method,
+      process, and apparatus claims, in any patent Licensable by such
+      Contributor that would be infringed, but for the grant of the License,
+      by the making, using, selling, offering for sale, having made, import,
+      or transfer of either its Contributions or its Contributor Version.
+
+1.12. "Secondary License"
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. "Source Code Form"
+
+      means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, "You" includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, "control" means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or
+        as part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its
+        Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution
+     become effective for each Contribution on the date the Contributor first
+     distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under
+     this License. No additional rights or licenses will be implied from the
+     distribution or licensing of Covered Software under this License.
+     Notwithstanding Section 2.1(b) above, no patent license is granted by a
+     Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party's
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of
+        its Contributions.
+
+     This License does not grant any rights in the trademarks, service marks,
+     or logos of any Contributor (except as may be necessary to comply with
+     the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this
+     License (see Section 10.2) or under the terms of a Secondary License (if
+     permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its
+     Contributions are its original creation(s) or it has sufficient rights to
+     grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under
+     applicable copyright doctrines of fair use, fair dealing, or other
+     equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under
+     the terms of this License. You must inform recipients that the Source
+     Code Form of the Covered Software is governed by the terms of this
+     License, and how they can obtain a copy of this License. You may not
+     attempt to alter or restrict the recipients' rights in the Source Code
+     Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this
+        License, or sublicense it under different terms, provided that the
+        license for the Executable Form does not attempt to limit or alter the
+        recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for
+     the Covered Software. If the Larger Work is a combination of Covered
+     Software with a work governed by one or more Secondary Licenses, and the
+     Covered Software is not Incompatible With Secondary Licenses, this
+     License permits You to additionally distribute such Covered Software
+     under the terms of such Secondary License(s), so that the recipient of
+     the Larger Work may, at their option, further distribute the Covered
+     Software under the terms of either this License or such Secondary
+     License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices
+     (including copyright notices, patent notices, disclaimers of warranty, or
+     limitations of liability) contained within the Source Code Form of the
+     Covered Software, except that You may alter any license notices to the
+     extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on
+     behalf of any Contributor. You must make it absolutely clear that any
+     such warranty, support, indemnity, or liability obligation is offered by
+     You alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute,
+   judicial order, or regulation then You must: (a) comply with the terms of
+   this License to the maximum extent possible; and (b) describe the
+   limitations and the code they affect. Such description must be placed in a
+   text file included with all distributions of the Covered Software under
+   this License. Except to the extent prohibited by statute or regulation,
+   such description must be sufficiently detailed for a recipient of ordinary
+   skill to be able to understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing
+     basis, if such Contributor fails to notify You of the non-compliance by
+     some reasonable means prior to 60 days after You have come back into
+     compliance. Moreover, Your grants from a particular Contributor are
+     reinstated on an ongoing basis if such Contributor notifies You of the
+     non-compliance by some reasonable means, this is the first time You have
+     received notice of non-compliance with this License from such
+     Contributor, and You become compliant prior to 30 days after Your receipt
+     of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions,
+     counter-claims, and cross-claims) alleging that a Contributor Version
+     directly or indirectly infringes any patent, then the rights granted to
+     You by any and all Contributors for the Covered Software under Section
+     2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an "as is" basis,
+   without warranty of any kind, either expressed, implied, or statutory,
+   including, without limitation, warranties that the Covered Software is free
+   of defects, merchantable, fit for a particular purpose or non-infringing.
+   The entire risk as to the quality and performance of the Covered Software
+   is with You. Should any Covered Software prove defective in any respect,
+   You (not any Contributor) assume the cost of any necessary servicing,
+   repair, or correction. This disclaimer of warranty constitutes an essential
+   part of this License. No use of  any Covered Software is authorized under
+   this License except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from
+   such party's negligence to the extent applicable law prohibits such
+   limitation. Some jurisdictions do not allow the exclusion or limitation of
+   incidental or consequential damages, so this exclusion and limitation may
+   not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts
+   of a jurisdiction where the defendant maintains its principal place of
+   business and such litigation shall be governed by laws of that
+   jurisdiction, without reference to its conflict-of-law provisions. Nothing
+   in this Section shall prevent a party's ability to bring cross-claims or
+   counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject
+   matter hereof. If any provision of this License is held to be
+   unenforceable, such provision shall be reformed only to the extent
+   necessary to make it enforceable. Any law or regulation which provides that
+   the language of a contract shall be construed against the drafter shall not
+   be used to construe this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version
+      of the License under which You originally received the Covered Software,
+      or under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a
+      modified version of this License if you rename the license and remove
+      any references to the name of the license steward (except to note that
+      such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+      Licenses If You choose to distribute Source Code Form that is
+      Incompatible With Secondary Licenses under the terms of this version of
+      the License, the notice described in Exhibit B of this License must be
+      attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file,
+then You may include the notice in a location (such as a LICENSE file in a
+relevant directory) where a recipient would be likely to look for such a
+notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+
+      This Source Code Form is "Incompatible
+      With Secondary Licenses", as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/go-memdb/filter.go b/vendor/github.com/hashicorp/go-memdb/filter.go
new file mode 100644
index 0000000000..2e3a9b3f7b
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/filter.go
@@ -0,0 +1,33 @@
+package memdb
+
+// FilterFunc is a function that takes the results of an iterator and returns
+// whether the result should be filtered out.
+type FilterFunc func(interface{}) bool
+
+// FilterIterator is used to wrap a ResultIterator and apply a filter over it.
+type FilterIterator struct {
+	// filter is the filter function applied over the base iterator.
+	filter FilterFunc
+
+	// iter is the iterator that is being wrapped.
+	iter ResultIterator
+}
+
+func NewFilterIterator(wrap ResultIterator, filter FilterFunc) *FilterIterator {
+	return &FilterIterator{
+		filter: filter,
+		iter:   wrap,
+	}
+}
+
+// WatchCh returns the watch channel of the wrapped iterator.
+func (f *FilterIterator) WatchCh() <-chan struct{} { return f.iter.WatchCh() }
+
+// Next returns the next non-filtered result from the wrapped iterator
+func (f *FilterIterator) Next() interface{} {
+	for {
+		if value := f.iter.Next(); value == nil || !f.filter(value) {
+			return value
+		}
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/index.go b/vendor/github.com/hashicorp/go-memdb/index.go
new file mode 100644
index 0000000000..cca853c5ab
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/index.go
@@ -0,0 +1,581 @@
+package memdb
+
+import (
+	"encoding/binary"
+	"encoding/hex"
+	"fmt"
+	"reflect"
+	"strings"
+)
+
+// Indexer is an interface used for defining indexes. Indexes are used
+// for efficient lookup of objects in a MemDB table. An Indexer must also
+// implement one of SingleIndexer or MultiIndexer.
+//
+// Indexers are primarily responsible for returning the lookup key as
+// a byte slice. The byte slice is the key data in the underlying data storage.
+type Indexer interface {
+	// FromArgs is called to build the exact index key from a list of arguments.
+	FromArgs(args ...interface{}) ([]byte, error)
+}
+
+// SingleIndexer is an interface used for defining indexes that generate a
+// single value per object
+type SingleIndexer interface {
+	// FromObject extracts the index value from an object. The return values
+	// are whether the index value was found, the index value, and any error
+	// while extracting the index value, respectively.
+	FromObject(raw interface{}) (bool, []byte, error)
+}
+
+// MultiIndexer is an interface used for defining indexes that generate
+// multiple values per object. Each value is stored as a seperate index
+// pointing to the same object.
+//
+// For example, an index that extracts the first and last name of a person
+// and allows lookup based on eitherd would be a MultiIndexer. The FromObject
+// of this example would split the first and last name and return both as
+// values.
+type MultiIndexer interface {
+	// FromObject extracts index values from an object. The return values
+	// are the same as a SingleIndexer except there can be multiple index
+	// values.
+	FromObject(raw interface{}) (bool, [][]byte, error)
+}
+
+// PrefixIndexer is an optional interface on top of an Indexer that allows
+// indexes to support prefix-based iteration.
+type PrefixIndexer interface {
+	// PrefixFromArgs is the same as FromArgs for an Indexer except that
+	// the index value returned should return all prefix-matched values.
+	PrefixFromArgs(args ...interface{}) ([]byte, error)
+}
+
+// StringFieldIndex is used to extract a field from an object
+// using reflection and builds an index on that field.
+type StringFieldIndex struct {
+	Field     string
+	Lowercase bool
+}
+
+func (s *StringFieldIndex) FromObject(obj interface{}) (bool, []byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(s.Field)
+	if !fv.IsValid() {
+		return false, nil,
+			fmt.Errorf("field '%s' for %#v is invalid", s.Field, obj)
+	}
+
+	val := fv.String()
+	if val == "" {
+		return false, nil, nil
+	}
+
+	if s.Lowercase {
+		val = strings.ToLower(val)
+	}
+
+	// Add the null character as a terminator
+	val += "\x00"
+	return true, []byte(val), nil
+}
+
+func (s *StringFieldIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	if s.Lowercase {
+		arg = strings.ToLower(arg)
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
+
+func (s *StringFieldIndex) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	val, err := s.FromArgs(args...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Strip the null terminator, the rest is a prefix
+	n := len(val)
+	if n > 0 {
+		return val[:n-1], nil
+	}
+	return val, nil
+}
+
+// StringSliceFieldIndex builds an index from a field on an object that is a
+// string slice ([]string). Each value within the string slice can be used for
+// lookup.
+type StringSliceFieldIndex struct {
+	Field     string
+	Lowercase bool
+}
+
+func (s *StringSliceFieldIndex) FromObject(obj interface{}) (bool, [][]byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(s.Field)
+	if !fv.IsValid() {
+		return false, nil,
+			fmt.Errorf("field '%s' for %#v is invalid", s.Field, obj)
+	}
+
+	if fv.Kind() != reflect.Slice || fv.Type().Elem().Kind() != reflect.String {
+		return false, nil, fmt.Errorf("field '%s' is not a string slice", s.Field)
+	}
+
+	length := fv.Len()
+	vals := make([][]byte, 0, length)
+	for i := 0; i < fv.Len(); i++ {
+		val := fv.Index(i).String()
+		if val == "" {
+			continue
+		}
+
+		if s.Lowercase {
+			val = strings.ToLower(val)
+		}
+
+		// Add the null character as a terminator
+		val += "\x00"
+		vals = append(vals, []byte(val))
+	}
+	if len(vals) == 0 {
+		return false, nil, nil
+	}
+	return true, vals, nil
+}
+
+func (s *StringSliceFieldIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	arg, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	if s.Lowercase {
+		arg = strings.ToLower(arg)
+	}
+	// Add the null character as a terminator
+	arg += "\x00"
+	return []byte(arg), nil
+}
+
+func (s *StringSliceFieldIndex) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	val, err := s.FromArgs(args...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Strip the null terminator, the rest is a prefix
+	n := len(val)
+	if n > 0 {
+		return val[:n-1], nil
+	}
+	return val, nil
+}
+
+// StringMapFieldIndex is used to extract a field of type map[string]string
+// from an object using reflection and builds an index on that field.
+type StringMapFieldIndex struct {
+	Field     string
+	Lowercase bool
+}
+
+var MapType = reflect.MapOf(reflect.TypeOf(""), reflect.TypeOf("")).Kind()
+
+func (s *StringMapFieldIndex) FromObject(obj interface{}) (bool, [][]byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(s.Field)
+	if !fv.IsValid() {
+		return false, nil, fmt.Errorf("field '%s' for %#v is invalid", s.Field, obj)
+	}
+
+	if fv.Kind() != MapType {
+		return false, nil, fmt.Errorf("field '%s' is not a map[string]string", s.Field)
+	}
+
+	length := fv.Len()
+	vals := make([][]byte, 0, length)
+	for _, key := range fv.MapKeys() {
+		k := key.String()
+		if k == "" {
+			continue
+		}
+		val := fv.MapIndex(key).String()
+
+		if s.Lowercase {
+			k = strings.ToLower(k)
+			val = strings.ToLower(val)
+		}
+
+		// Add the null character as a terminator
+		k += "\x00" + val + "\x00"
+
+		vals = append(vals, []byte(k))
+	}
+	if len(vals) == 0 {
+		return false, nil, nil
+	}
+	return true, vals, nil
+}
+
+func (s *StringMapFieldIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) > 2 || len(args) == 0 {
+		return nil, fmt.Errorf("must provide one or two arguments")
+	}
+	key, ok := args[0].(string)
+	if !ok {
+		return nil, fmt.Errorf("argument must be a string: %#v", args[0])
+	}
+	if s.Lowercase {
+		key = strings.ToLower(key)
+	}
+	// Add the null character as a terminator
+	key += "\x00"
+
+	if len(args) == 2 {
+		val, ok := args[1].(string)
+		if !ok {
+			return nil, fmt.Errorf("argument must be a string: %#v", args[1])
+		}
+		if s.Lowercase {
+			val = strings.ToLower(val)
+		}
+		// Add the null character as a terminator
+		key += val + "\x00"
+	}
+
+	return []byte(key), nil
+}
+
+// UintFieldIndex is used to extract a uint field from an object using
+// reflection and builds an index on that field.
+type UintFieldIndex struct {
+	Field string
+}
+
+func (u *UintFieldIndex) FromObject(obj interface{}) (bool, []byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(u.Field)
+	if !fv.IsValid() {
+		return false, nil,
+			fmt.Errorf("field '%s' for %#v is invalid", u.Field, obj)
+	}
+
+	// Check the type
+	k := fv.Kind()
+	size, ok := IsUintType(k)
+	if !ok {
+		return false, nil, fmt.Errorf("field %q is of type %v; want a uint", u.Field, k)
+	}
+
+	// Get the value and encode it
+	val := fv.Uint()
+	buf := make([]byte, size)
+	binary.PutUvarint(buf, val)
+
+	return true, buf, nil
+}
+
+func (u *UintFieldIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+
+	v := reflect.ValueOf(args[0])
+	if !v.IsValid() {
+		return nil, fmt.Errorf("%#v is invalid", args[0])
+	}
+
+	k := v.Kind()
+	size, ok := IsUintType(k)
+	if !ok {
+		return nil, fmt.Errorf("arg is of type %v; want a uint", k)
+	}
+
+	val := v.Uint()
+	buf := make([]byte, size)
+	binary.PutUvarint(buf, val)
+
+	return buf, nil
+}
+
+// IsUintType returns whether the passed type is a type of uint and the number
+// of bytes needed to encode the type.
+func IsUintType(k reflect.Kind) (size int, okay bool) {
+	switch k {
+	case reflect.Uint:
+		return binary.MaxVarintLen64, true
+	case reflect.Uint8:
+		return 2, true
+	case reflect.Uint16:
+		return binary.MaxVarintLen16, true
+	case reflect.Uint32:
+		return binary.MaxVarintLen32, true
+	case reflect.Uint64:
+		return binary.MaxVarintLen64, true
+	default:
+		return 0, false
+	}
+}
+
+// UUIDFieldIndex is used to extract a field from an object
+// using reflection and builds an index on that field by treating
+// it as a UUID. This is an optimization to using a StringFieldIndex
+// as the UUID can be more compactly represented in byte form.
+type UUIDFieldIndex struct {
+	Field string
+}
+
+func (u *UUIDFieldIndex) FromObject(obj interface{}) (bool, []byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(u.Field)
+	if !fv.IsValid() {
+		return false, nil,
+			fmt.Errorf("field '%s' for %#v is invalid", u.Field, obj)
+	}
+
+	val := fv.String()
+	if val == "" {
+		return false, nil, nil
+	}
+
+	buf, err := u.parseString(val, true)
+	return true, buf, err
+}
+
+func (u *UUIDFieldIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	switch arg := args[0].(type) {
+	case string:
+		return u.parseString(arg, true)
+	case []byte:
+		if len(arg) != 16 {
+			return nil, fmt.Errorf("byte slice must be 16 characters")
+		}
+		return arg, nil
+	default:
+		return nil,
+			fmt.Errorf("argument must be a string or byte slice: %#v", args[0])
+	}
+}
+
+func (u *UUIDFieldIndex) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+	switch arg := args[0].(type) {
+	case string:
+		return u.parseString(arg, false)
+	case []byte:
+		return arg, nil
+	default:
+		return nil,
+			fmt.Errorf("argument must be a string or byte slice: %#v", args[0])
+	}
+}
+
+// parseString parses a UUID from the string. If enforceLength is false, it will
+// parse a partial UUID. An error is returned if the input, stripped of hyphens,
+// is not even length.
+func (u *UUIDFieldIndex) parseString(s string, enforceLength bool) ([]byte, error) {
+	// Verify the length
+	l := len(s)
+	if enforceLength && l != 36 {
+		return nil, fmt.Errorf("UUID must be 36 characters")
+	} else if l > 36 {
+		return nil, fmt.Errorf("Invalid UUID length. UUID have 36 characters; got %d", l)
+	}
+
+	hyphens := strings.Count(s, "-")
+	if hyphens > 4 {
+		return nil, fmt.Errorf(`UUID should have maximum of 4 "-"; got %d`, hyphens)
+	}
+
+	// The sanitized length is the length of the original string without the "-".
+	sanitized := strings.Replace(s, "-", "", -1)
+	sanitizedLength := len(sanitized)
+	if sanitizedLength%2 != 0 {
+		return nil, fmt.Errorf("Input (without hyphens) must be even length")
+	}
+
+	dec, err := hex.DecodeString(sanitized)
+	if err != nil {
+		return nil, fmt.Errorf("Invalid UUID: %v", err)
+	}
+
+	return dec, nil
+}
+
+// FieldSetIndex is used to extract a field from an object using reflection and
+// builds an index on whether the field is set by comparing it against its
+// type's nil value.
+type FieldSetIndex struct {
+	Field string
+}
+
+func (f *FieldSetIndex) FromObject(obj interface{}) (bool, []byte, error) {
+	v := reflect.ValueOf(obj)
+	v = reflect.Indirect(v) // Dereference the pointer if any
+
+	fv := v.FieldByName(f.Field)
+	if !fv.IsValid() {
+		return false, nil,
+			fmt.Errorf("field '%s' for %#v is invalid", f.Field, obj)
+	}
+
+	if fv.Interface() == reflect.Zero(fv.Type()).Interface() {
+		return true, []byte{0}, nil
+	}
+
+	return true, []byte{1}, nil
+}
+
+func (f *FieldSetIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromBoolArgs(args)
+}
+
+// ConditionalIndex builds an index based on a condition specified by a passed
+// user function. This function may examine the passed object and return a
+// boolean to encapsulate an arbitrarily complex conditional.
+type ConditionalIndex struct {
+	Conditional ConditionalIndexFunc
+}
+
+// ConditionalIndexFunc is the required function interface for a
+// ConditionalIndex.
+type ConditionalIndexFunc func(obj interface{}) (bool, error)
+
+func (c *ConditionalIndex) FromObject(obj interface{}) (bool, []byte, error) {
+	// Call the user's function
+	res, err := c.Conditional(obj)
+	if err != nil {
+		return false, nil, fmt.Errorf("ConditionalIndexFunc(%#v) failed: %v", obj, err)
+	}
+
+	if res {
+		return true, []byte{1}, nil
+	}
+
+	return true, []byte{0}, nil
+}
+
+func (c *ConditionalIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	return fromBoolArgs(args)
+}
+
+// fromBoolArgs is a helper that expects only a single boolean argument and
+// returns a single length byte array containing either a one or zero depending
+// on whether the passed input is true or false respectively.
+func fromBoolArgs(args []interface{}) ([]byte, error) {
+	if len(args) != 1 {
+		return nil, fmt.Errorf("must provide only a single argument")
+	}
+
+	if val, ok := args[0].(bool); !ok {
+		return nil, fmt.Errorf("argument must be a boolean type: %#v", args[0])
+	} else if val {
+		return []byte{1}, nil
+	}
+
+	return []byte{0}, nil
+}
+
+// CompoundIndex is used to build an index using multiple sub-indexes
+// Prefix based iteration is supported as long as the appropriate prefix
+// of indexers support it. All sub-indexers are only assumed to expect
+// a single argument.
+type CompoundIndex struct {
+	Indexes []Indexer
+
+	// AllowMissing results in an index based on only the indexers
+	// that return data. If true, you may end up with 2/3 columns
+	// indexed which might be useful for an index scan. Otherwise,
+	// the CompoundIndex requires all indexers to be satisfied.
+	AllowMissing bool
+}
+
+func (c *CompoundIndex) FromObject(raw interface{}) (bool, []byte, error) {
+	var out []byte
+	for i, idxRaw := range c.Indexes {
+		idx, ok := idxRaw.(SingleIndexer)
+		if !ok {
+			return false, nil, fmt.Errorf("sub-index %d error: %s", i, "sub-index must be a SingleIndexer")
+		}
+		ok, val, err := idx.FromObject(raw)
+		if err != nil {
+			return false, nil, fmt.Errorf("sub-index %d error: %v", i, err)
+		}
+		if !ok {
+			if c.AllowMissing {
+				break
+			} else {
+				return false, nil, nil
+			}
+		}
+		out = append(out, val...)
+	}
+	return true, out, nil
+}
+
+func (c *CompoundIndex) FromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) != len(c.Indexes) {
+		return nil, fmt.Errorf("less arguments than index fields")
+	}
+	var out []byte
+	for i, arg := range args {
+		val, err := c.Indexes[i].FromArgs(arg)
+		if err != nil {
+			return nil, fmt.Errorf("sub-index %d error: %v", i, err)
+		}
+		out = append(out, val...)
+	}
+	return out, nil
+}
+
+func (c *CompoundIndex) PrefixFromArgs(args ...interface{}) ([]byte, error) {
+	if len(args) > len(c.Indexes) {
+		return nil, fmt.Errorf("more arguments than index fields")
+	}
+	var out []byte
+	for i, arg := range args {
+		if i+1 < len(args) {
+			val, err := c.Indexes[i].FromArgs(arg)
+			if err != nil {
+				return nil, fmt.Errorf("sub-index %d error: %v", i, err)
+			}
+			out = append(out, val...)
+		} else {
+			prefixIndexer, ok := c.Indexes[i].(PrefixIndexer)
+			if !ok {
+				return nil, fmt.Errorf("sub-index %d does not support prefix scanning", i)
+			}
+			val, err := prefixIndexer.PrefixFromArgs(arg)
+			if err != nil {
+				return nil, fmt.Errorf("sub-index %d error: %v", i, err)
+			}
+			out = append(out, val...)
+		}
+	}
+	return out, nil
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/memdb.go b/vendor/github.com/hashicorp/go-memdb/memdb.go
new file mode 100644
index 0000000000..65c9207310
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/memdb.go
@@ -0,0 +1,97 @@
+// Package memdb provides an in-memory database that supports transactions
+// and MVCC.
+package memdb
+
+import (
+	"sync"
+	"sync/atomic"
+	"unsafe"
+
+	"github.com/hashicorp/go-immutable-radix"
+)
+
+// MemDB is an in-memory database.
+//
+// MemDB provides a table abstraction to store objects (rows) with multiple
+// indexes based on inserted values. The database makes use of immutable radix
+// trees to provide transactions and MVCC.
+type MemDB struct {
+	schema  *DBSchema
+	root    unsafe.Pointer // *iradix.Tree underneath
+	primary bool
+
+	// There can only be a single writer at once
+	writer sync.Mutex
+}
+
+// NewMemDB creates a new MemDB with the given schema
+func NewMemDB(schema *DBSchema) (*MemDB, error) {
+	// Validate the schema
+	if err := schema.Validate(); err != nil {
+		return nil, err
+	}
+
+	// Create the MemDB
+	db := &MemDB{
+		schema:  schema,
+		root:    unsafe.Pointer(iradix.New()),
+		primary: true,
+	}
+	if err := db.initialize(); err != nil {
+		return nil, err
+	}
+
+	return db, nil
+}
+
+// getRoot is used to do an atomic load of the root pointer
+func (db *MemDB) getRoot() *iradix.Tree {
+	root := (*iradix.Tree)(atomic.LoadPointer(&db.root))
+	return root
+}
+
+// Txn is used to start a new transaction, in either read or write mode.
+// There can only be a single concurrent writer, but any number of readers.
+func (db *MemDB) Txn(write bool) *Txn {
+	if write {
+		db.writer.Lock()
+	}
+	txn := &Txn{
+		db:      db,
+		write:   write,
+		rootTxn: db.getRoot().Txn(),
+	}
+	return txn
+}
+
+// Snapshot is used to capture a point-in-time snapshot
+// of the database that will not be affected by any write
+// operations to the existing DB.
+func (db *MemDB) Snapshot() *MemDB {
+	clone := &MemDB{
+		schema:  db.schema,
+		root:    unsafe.Pointer(db.getRoot()),
+		primary: false,
+	}
+	return clone
+}
+
+// initialize is used to setup the DB for use after creation. This should
+// be called only once after allocating a MemDB.
+func (db *MemDB) initialize() error {
+	root := db.getRoot()
+	for tName, tableSchema := range db.schema.Tables {
+		for iName := range tableSchema.Indexes {
+			index := iradix.New()
+			path := indexPath(tName, iName)
+			root, _, _ = root.Insert(path, index)
+		}
+	}
+	db.root = unsafe.Pointer(root)
+	return nil
+}
+
+// indexPath returns the path from the root to the given table index
+func indexPath(table, index string) []byte {
+	return []byte(table + "." + index)
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/schema.go b/vendor/github.com/hashicorp/go-memdb/schema.go
new file mode 100644
index 0000000000..e6a9b526bc
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/schema.go
@@ -0,0 +1,114 @@
+package memdb
+
+import "fmt"
+
+// DBSchema is the schema to use for the full database with a MemDB instance.
+//
+// MemDB will require a valid schema. Schema validation can be tested using
+// the Validate function. Calling this function is recommended in unit tests.
+type DBSchema struct {
+	// Tables is the set of tables within this database. The key is the
+	// table name and must match the Name in TableSchema.
+	Tables map[string]*TableSchema
+}
+
+// Validate validates the schema.
+func (s *DBSchema) Validate() error {
+	if s == nil {
+		return fmt.Errorf("schema is nil")
+	}
+
+	if len(s.Tables) == 0 {
+		return fmt.Errorf("schema has no tables defined")
+	}
+
+	for name, table := range s.Tables {
+		if name != table.Name {
+			return fmt.Errorf("table name mis-match for '%s'", name)
+		}
+
+		if err := table.Validate(); err != nil {
+			return fmt.Errorf("table %q: %s", name, err)
+		}
+	}
+
+	return nil
+}
+
+// TableSchema is the schema for a single table.
+type TableSchema struct {
+	// Name of the table. This must match the key in the Tables map in DBSchema.
+	Name string
+
+	// Indexes is the set of indexes for querying this table. The key
+	// is a unique name for the index and must match the Name in the
+	// IndexSchema.
+	Indexes map[string]*IndexSchema
+}
+
+// Validate is used to validate the table schema
+func (s *TableSchema) Validate() error {
+	if s.Name == "" {
+		return fmt.Errorf("missing table name")
+	}
+
+	if len(s.Indexes) == 0 {
+		return fmt.Errorf("missing table indexes for '%s'", s.Name)
+	}
+
+	if _, ok := s.Indexes["id"]; !ok {
+		return fmt.Errorf("must have id index")
+	}
+
+	if !s.Indexes["id"].Unique {
+		return fmt.Errorf("id index must be unique")
+	}
+
+	if _, ok := s.Indexes["id"].Indexer.(SingleIndexer); !ok {
+		return fmt.Errorf("id index must be a SingleIndexer")
+	}
+
+	for name, index := range s.Indexes {
+		if name != index.Name {
+			return fmt.Errorf("index name mis-match for '%s'", name)
+		}
+
+		if err := index.Validate(); err != nil {
+			return fmt.Errorf("index %q: %s", name, err)
+		}
+	}
+
+	return nil
+}
+
+// IndexSchema is the schema for an index. An index defines how a table is
+// queried.
+type IndexSchema struct {
+	// Name of the index. This must be unique among a tables set of indexes.
+	// This must match the key in the map of Indexes for a TableSchema.
+	Name string
+
+	// AllowMissing if true ignores this index if it doesn't produce a
+	// value. For example, an index that extracts a field that doesn't
+	// exist from a structure.
+	AllowMissing bool
+
+	Unique  bool
+	Indexer Indexer
+}
+
+func (s *IndexSchema) Validate() error {
+	if s.Name == "" {
+		return fmt.Errorf("missing index name")
+	}
+	if s.Indexer == nil {
+		return fmt.Errorf("missing index function for '%s'", s.Name)
+	}
+	switch s.Indexer.(type) {
+	case SingleIndexer:
+	case MultiIndexer:
+	default:
+		return fmt.Errorf("indexer for '%s' must be a SingleIndexer or MultiIndexer", s.Name)
+	}
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/txn.go b/vendor/github.com/hashicorp/go-memdb/txn.go
new file mode 100644
index 0000000000..2b85087ea3
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/txn.go
@@ -0,0 +1,644 @@
+package memdb
+
+import (
+	"bytes"
+	"fmt"
+	"strings"
+	"sync/atomic"
+	"unsafe"
+
+	"github.com/hashicorp/go-immutable-radix"
+)
+
+const (
+	id = "id"
+)
+
+var (
+	// ErrNotFound is returned when the requested item is not found
+	ErrNotFound = fmt.Errorf("not found")
+)
+
+// tableIndex is a tuple of (Table, Index) used for lookups
+type tableIndex struct {
+	Table string
+	Index string
+}
+
+// Txn is a transaction against a MemDB.
+// This can be a read or write transaction.
+type Txn struct {
+	db      *MemDB
+	write   bool
+	rootTxn *iradix.Txn
+	after   []func()
+
+	modified map[tableIndex]*iradix.Txn
+}
+
+// readableIndex returns a transaction usable for reading the given
+// index in a table. If a write transaction is in progress, we may need
+// to use an existing modified txn.
+func (txn *Txn) readableIndex(table, index string) *iradix.Txn {
+	// Look for existing transaction
+	if txn.write && txn.modified != nil {
+		key := tableIndex{table, index}
+		exist, ok := txn.modified[key]
+		if ok {
+			return exist
+		}
+	}
+
+	// Create a read transaction
+	path := indexPath(table, index)
+	raw, _ := txn.rootTxn.Get(path)
+	indexTxn := raw.(*iradix.Tree).Txn()
+	return indexTxn
+}
+
+// writableIndex returns a transaction usable for modifying the
+// given index in a table.
+func (txn *Txn) writableIndex(table, index string) *iradix.Txn {
+	if txn.modified == nil {
+		txn.modified = make(map[tableIndex]*iradix.Txn)
+	}
+
+	// Look for existing transaction
+	key := tableIndex{table, index}
+	exist, ok := txn.modified[key]
+	if ok {
+		return exist
+	}
+
+	// Start a new transaction
+	path := indexPath(table, index)
+	raw, _ := txn.rootTxn.Get(path)
+	indexTxn := raw.(*iradix.Tree).Txn()
+
+	// If we are the primary DB, enable mutation tracking. Snapshots should
+	// not notify, otherwise we will trigger watches on the primary DB when
+	// the writes will not be visible.
+	indexTxn.TrackMutate(txn.db.primary)
+
+	// Keep this open for the duration of the txn
+	txn.modified[key] = indexTxn
+	return indexTxn
+}
+
+// Abort is used to cancel this transaction.
+// This is a noop for read transactions.
+func (txn *Txn) Abort() {
+	// Noop for a read transaction
+	if !txn.write {
+		return
+	}
+
+	// Check if already aborted or committed
+	if txn.rootTxn == nil {
+		return
+	}
+
+	// Clear the txn
+	txn.rootTxn = nil
+	txn.modified = nil
+
+	// Release the writer lock since this is invalid
+	txn.db.writer.Unlock()
+}
+
+// Commit is used to finalize this transaction.
+// This is a noop for read transactions.
+func (txn *Txn) Commit() {
+	// Noop for a read transaction
+	if !txn.write {
+		return
+	}
+
+	// Check if already aborted or committed
+	if txn.rootTxn == nil {
+		return
+	}
+
+	// Commit each sub-transaction scoped to (table, index)
+	for key, subTxn := range txn.modified {
+		path := indexPath(key.Table, key.Index)
+		final := subTxn.CommitOnly()
+		txn.rootTxn.Insert(path, final)
+	}
+
+	// Update the root of the DB
+	newRoot := txn.rootTxn.CommitOnly()
+	atomic.StorePointer(&txn.db.root, unsafe.Pointer(newRoot))
+
+	// Now issue all of the mutation updates (this is safe to call
+	// even if mutation tracking isn't enabled); we do this after
+	// the root pointer is swapped so that waking responders will
+	// see the new state.
+	for _, subTxn := range txn.modified {
+		subTxn.Notify()
+	}
+	txn.rootTxn.Notify()
+
+	// Clear the txn
+	txn.rootTxn = nil
+	txn.modified = nil
+
+	// Release the writer lock since this is invalid
+	txn.db.writer.Unlock()
+
+	// Run the deferred functions, if any
+	for i := len(txn.after); i > 0; i-- {
+		fn := txn.after[i-1]
+		fn()
+	}
+}
+
+// Insert is used to add or update an object into the given table
+func (txn *Txn) Insert(table string, obj interface{}) error {
+	if !txn.write {
+		return fmt.Errorf("cannot insert in read-only transaction")
+	}
+
+	// Get the table schema
+	tableSchema, ok := txn.db.schema.Tables[table]
+	if !ok {
+		return fmt.Errorf("invalid table '%s'", table)
+	}
+
+	// Get the primary ID of the object
+	idSchema := tableSchema.Indexes[id]
+	idIndexer := idSchema.Indexer.(SingleIndexer)
+	ok, idVal, err := idIndexer.FromObject(obj)
+	if err != nil {
+		return fmt.Errorf("failed to build primary index: %v", err)
+	}
+	if !ok {
+		return fmt.Errorf("object missing primary index")
+	}
+
+	// Lookup the object by ID first, to see if this is an update
+	idTxn := txn.writableIndex(table, id)
+	existing, update := idTxn.Get(idVal)
+
+	// On an update, there is an existing object with the given
+	// primary ID. We do the update by deleting the current object
+	// and inserting the new object.
+	for name, indexSchema := range tableSchema.Indexes {
+		indexTxn := txn.writableIndex(table, name)
+
+		// Determine the new index value
+		var (
+			ok   bool
+			vals [][]byte
+			err  error
+		)
+		switch indexer := indexSchema.Indexer.(type) {
+		case SingleIndexer:
+			var val []byte
+			ok, val, err = indexer.FromObject(obj)
+			vals = [][]byte{val}
+		case MultiIndexer:
+			ok, vals, err = indexer.FromObject(obj)
+		}
+		if err != nil {
+			return fmt.Errorf("failed to build index '%s': %v", name, err)
+		}
+
+		// Handle non-unique index by computing a unique index.
+		// This is done by appending the primary key which must
+		// be unique anyways.
+		if ok && !indexSchema.Unique {
+			for i := range vals {
+				vals[i] = append(vals[i], idVal...)
+			}
+		}
+
+		// Handle the update by deleting from the index first
+		if update {
+			var (
+				okExist   bool
+				valsExist [][]byte
+				err       error
+			)
+			switch indexer := indexSchema.Indexer.(type) {
+			case SingleIndexer:
+				var valExist []byte
+				okExist, valExist, err = indexer.FromObject(existing)
+				valsExist = [][]byte{valExist}
+			case MultiIndexer:
+				okExist, valsExist, err = indexer.FromObject(existing)
+			}
+			if err != nil {
+				return fmt.Errorf("failed to build index '%s': %v", name, err)
+			}
+			if okExist {
+				for i, valExist := range valsExist {
+					// Handle non-unique index by computing a unique index.
+					// This is done by appending the primary key which must
+					// be unique anyways.
+					if !indexSchema.Unique {
+						valExist = append(valExist, idVal...)
+					}
+
+					// If we are writing to the same index with the same value,
+					// we can avoid the delete as the insert will overwrite the
+					// value anyways.
+					if i >= len(vals) || !bytes.Equal(valExist, vals[i]) {
+						indexTxn.Delete(valExist)
+					}
+				}
+			}
+		}
+
+		// If there is no index value, either this is an error or an expected
+		// case and we can skip updating
+		if !ok {
+			if indexSchema.AllowMissing {
+				continue
+			} else {
+				return fmt.Errorf("missing value for index '%s'", name)
+			}
+		}
+
+		// Update the value of the index
+		for _, val := range vals {
+			indexTxn.Insert(val, obj)
+		}
+	}
+	return nil
+}
+
+// Delete is used to delete a single object from the given table
+// This object must already exist in the table
+func (txn *Txn) Delete(table string, obj interface{}) error {
+	if !txn.write {
+		return fmt.Errorf("cannot delete in read-only transaction")
+	}
+
+	// Get the table schema
+	tableSchema, ok := txn.db.schema.Tables[table]
+	if !ok {
+		return fmt.Errorf("invalid table '%s'", table)
+	}
+
+	// Get the primary ID of the object
+	idSchema := tableSchema.Indexes[id]
+	idIndexer := idSchema.Indexer.(SingleIndexer)
+	ok, idVal, err := idIndexer.FromObject(obj)
+	if err != nil {
+		return fmt.Errorf("failed to build primary index: %v", err)
+	}
+	if !ok {
+		return fmt.Errorf("object missing primary index")
+	}
+
+	// Lookup the object by ID first, check fi we should continue
+	idTxn := txn.writableIndex(table, id)
+	existing, ok := idTxn.Get(idVal)
+	if !ok {
+		return ErrNotFound
+	}
+
+	// Remove the object from all the indexes
+	for name, indexSchema := range tableSchema.Indexes {
+		indexTxn := txn.writableIndex(table, name)
+
+		// Handle the update by deleting from the index first
+		var (
+			ok   bool
+			vals [][]byte
+			err  error
+		)
+		switch indexer := indexSchema.Indexer.(type) {
+		case SingleIndexer:
+			var val []byte
+			ok, val, err = indexer.FromObject(existing)
+			vals = [][]byte{val}
+		case MultiIndexer:
+			ok, vals, err = indexer.FromObject(existing)
+		}
+		if err != nil {
+			return fmt.Errorf("failed to build index '%s': %v", name, err)
+		}
+		if ok {
+			// Handle non-unique index by computing a unique index.
+			// This is done by appending the primary key which must
+			// be unique anyways.
+			for _, val := range vals {
+				if !indexSchema.Unique {
+					val = append(val, idVal...)
+				}
+				indexTxn.Delete(val)
+			}
+		}
+	}
+	return nil
+}
+
+// DeletePrefix is used to delete an entire subtree based on a prefix.
+// The given index must be a prefix index, and will be used to perform a scan and enumerate the set of objects to delete.
+// These will be removed from all other indexes, and then a special prefix operation will delete the objects from the given index in an efficient subtree delete operation.
+// This is useful when you have a very large number of objects indexed by the given index, along with a much smaller number of entries in the other indexes for those objects.
+func (txn *Txn) DeletePrefix(table string, prefix_index string, prefix string) (bool, error) {
+	if !txn.write {
+		return false, fmt.Errorf("cannot delete in read-only transaction")
+	}
+
+	if !strings.HasSuffix(prefix_index, "_prefix") {
+		return false, fmt.Errorf("Index name for DeletePrefix must be a prefix index, Got %v ", prefix_index)
+	}
+
+	deletePrefixIndex := strings.TrimSuffix(prefix_index, "_prefix")
+
+	// Get an iterator over all of the keys with the given prefix.
+	entries, err := txn.Get(table, prefix_index, prefix)
+	if err != nil {
+		return false, fmt.Errorf("failed kvs lookup: %s", err)
+	}
+	// Get the table schema
+	tableSchema, ok := txn.db.schema.Tables[table]
+	if !ok {
+		return false, fmt.Errorf("invalid table '%s'", table)
+	}
+
+	foundAny := false
+	for entry := entries.Next(); entry != nil; entry = entries.Next() {
+		if !foundAny {
+			foundAny = true
+		}
+		// Get the primary ID of the object
+		idSchema := tableSchema.Indexes[id]
+		idIndexer := idSchema.Indexer.(SingleIndexer)
+		ok, idVal, err := idIndexer.FromObject(entry)
+		if err != nil {
+			return false, fmt.Errorf("failed to build primary index: %v", err)
+		}
+		if !ok {
+			return false, fmt.Errorf("object missing primary index")
+		}
+		// Remove the object from all the indexes except the given prefix index
+		for name, indexSchema := range tableSchema.Indexes {
+			if name == deletePrefixIndex {
+				continue
+			}
+			indexTxn := txn.writableIndex(table, name)
+
+			// Handle the update by deleting from the index first
+			var (
+				ok   bool
+				vals [][]byte
+				err  error
+			)
+			switch indexer := indexSchema.Indexer.(type) {
+			case SingleIndexer:
+				var val []byte
+				ok, val, err = indexer.FromObject(entry)
+				vals = [][]byte{val}
+			case MultiIndexer:
+				ok, vals, err = indexer.FromObject(entry)
+			}
+			if err != nil {
+				return false, fmt.Errorf("failed to build index '%s': %v", name, err)
+			}
+
+			if ok {
+				// Handle non-unique index by computing a unique index.
+				// This is done by appending the primary key which must
+				// be unique anyways.
+				for _, val := range vals {
+					if !indexSchema.Unique {
+						val = append(val, idVal...)
+					}
+					indexTxn.Delete(val)
+				}
+			}
+		}
+	}
+	if foundAny {
+		indexTxn := txn.writableIndex(table, deletePrefixIndex)
+		ok = indexTxn.DeletePrefix([]byte(prefix))
+		if !ok {
+			panic(fmt.Errorf("prefix %v matched some entries but DeletePrefix did not delete any ", prefix))
+		}
+		return true, nil
+	}
+	return false, nil
+}
+
+// DeleteAll is used to delete all the objects in a given table
+// matching the constraints on the index
+func (txn *Txn) DeleteAll(table, index string, args ...interface{}) (int, error) {
+	if !txn.write {
+		return 0, fmt.Errorf("cannot delete in read-only transaction")
+	}
+
+	// Get all the objects
+	iter, err := txn.Get(table, index, args...)
+	if err != nil {
+		return 0, err
+	}
+
+	// Put them into a slice so there are no safety concerns while actually
+	// performing the deletes
+	var objs []interface{}
+	for {
+		obj := iter.Next()
+		if obj == nil {
+			break
+		}
+
+		objs = append(objs, obj)
+	}
+
+	// Do the deletes
+	num := 0
+	for _, obj := range objs {
+		if err := txn.Delete(table, obj); err != nil {
+			return num, err
+		}
+		num++
+	}
+	return num, nil
+}
+
+// FirstWatch is used to return the first matching object for
+// the given constraints on the index along with the watch channel
+func (txn *Txn) FirstWatch(table, index string, args ...interface{}) (<-chan struct{}, interface{}, error) {
+	// Get the index value
+	indexSchema, val, err := txn.getIndexValue(table, index, args...)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	// Get the index itself
+	indexTxn := txn.readableIndex(table, indexSchema.Name)
+
+	// Do an exact lookup
+	if indexSchema.Unique && val != nil && indexSchema.Name == index {
+		watch, obj, ok := indexTxn.GetWatch(val)
+		if !ok {
+			return watch, nil, nil
+		}
+		return watch, obj, nil
+	}
+
+	// Handle non-unique index by using an iterator and getting the first value
+	iter := indexTxn.Root().Iterator()
+	watch := iter.SeekPrefixWatch(val)
+	_, value, _ := iter.Next()
+	return watch, value, nil
+}
+
+// First is used to return the first matching object for
+// the given constraints on the index
+func (txn *Txn) First(table, index string, args ...interface{}) (interface{}, error) {
+	_, val, err := txn.FirstWatch(table, index, args...)
+	return val, err
+}
+
+// LongestPrefix is used to fetch the longest prefix match for the given
+// constraints on the index. Note that this will not work with the memdb
+// StringFieldIndex because it adds null terminators which prevent the
+// algorithm from correctly finding a match (it will get to right before the
+// null and fail to find a leaf node). This should only be used where the prefix
+// given is capable of matching indexed entries directly, which typically only
+// applies to a custom indexer. See the unit test for an example.
+func (txn *Txn) LongestPrefix(table, index string, args ...interface{}) (interface{}, error) {
+	// Enforce that this only works on prefix indexes.
+	if !strings.HasSuffix(index, "_prefix") {
+		return nil, fmt.Errorf("must use '%s_prefix' on index", index)
+	}
+
+	// Get the index value.
+	indexSchema, val, err := txn.getIndexValue(table, index, args...)
+	if err != nil {
+		return nil, err
+	}
+
+	// This algorithm only makes sense against a unique index, otherwise the
+	// index keys will have the IDs appended to them.
+	if !indexSchema.Unique {
+		return nil, fmt.Errorf("index '%s' is not unique", index)
+	}
+
+	// Find the longest prefix match with the given index.
+	indexTxn := txn.readableIndex(table, indexSchema.Name)
+	if _, value, ok := indexTxn.Root().LongestPrefix(val); ok {
+		return value, nil
+	}
+	return nil, nil
+}
+
+// getIndexValue is used to get the IndexSchema and the value
+// used to scan the index given the parameters. This handles prefix based
+// scans when the index has the "_prefix" suffix. The index must support
+// prefix iteration.
+func (txn *Txn) getIndexValue(table, index string, args ...interface{}) (*IndexSchema, []byte, error) {
+	// Get the table schema
+	tableSchema, ok := txn.db.schema.Tables[table]
+	if !ok {
+		return nil, nil, fmt.Errorf("invalid table '%s'", table)
+	}
+
+	// Check for a prefix scan
+	prefixScan := false
+	if strings.HasSuffix(index, "_prefix") {
+		index = strings.TrimSuffix(index, "_prefix")
+		prefixScan = true
+	}
+
+	// Get the index schema
+	indexSchema, ok := tableSchema.Indexes[index]
+	if !ok {
+		return nil, nil, fmt.Errorf("invalid index '%s'", index)
+	}
+
+	// Hot-path for when there are no arguments
+	if len(args) == 0 {
+		return indexSchema, nil, nil
+	}
+
+	// Special case the prefix scanning
+	if prefixScan {
+		prefixIndexer, ok := indexSchema.Indexer.(PrefixIndexer)
+		if !ok {
+			return indexSchema, nil,
+				fmt.Errorf("index '%s' does not support prefix scanning", index)
+		}
+
+		val, err := prefixIndexer.PrefixFromArgs(args...)
+		if err != nil {
+			return indexSchema, nil, fmt.Errorf("index error: %v", err)
+		}
+		return indexSchema, val, err
+	}
+
+	// Get the exact match index
+	val, err := indexSchema.Indexer.FromArgs(args...)
+	if err != nil {
+		return indexSchema, nil, fmt.Errorf("index error: %v", err)
+	}
+	return indexSchema, val, err
+}
+
+// ResultIterator is used to iterate over a list of results
+// from a Get query on a table.
+type ResultIterator interface {
+	WatchCh() <-chan struct{}
+	Next() interface{}
+}
+
+// Get is used to construct a ResultIterator over all the
+// rows that match the given constraints of an index.
+func (txn *Txn) Get(table, index string, args ...interface{}) (ResultIterator, error) {
+	// Get the index value to scan
+	indexSchema, val, err := txn.getIndexValue(table, index, args...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Get the index itself
+	indexTxn := txn.readableIndex(table, indexSchema.Name)
+	indexRoot := indexTxn.Root()
+
+	// Get an interator over the index
+	indexIter := indexRoot.Iterator()
+
+	// Seek the iterator to the appropriate sub-set
+	watchCh := indexIter.SeekPrefixWatch(val)
+
+	// Create an iterator
+	iter := &radixIterator{
+		iter:    indexIter,
+		watchCh: watchCh,
+	}
+	return iter, nil
+}
+
+// Defer is used to push a new arbitrary function onto a stack which
+// gets called when a transaction is committed and finished. Deferred
+// functions are called in LIFO order, and only invoked at the end of
+// write transactions.
+func (txn *Txn) Defer(fn func()) {
+	txn.after = append(txn.after, fn)
+}
+
+// radixIterator is used to wrap an underlying iradix iterator.
+// This is much more efficient than a sliceIterator as we are not
+// materializing the entire view.
+type radixIterator struct {
+	iter    *iradix.Iterator
+	watchCh <-chan struct{}
+}
+
+func (r *radixIterator) WatchCh() <-chan struct{} {
+	return r.watchCh
+}
+
+func (r *radixIterator) Next() interface{} {
+	_, value, ok := r.iter.Next()
+	if !ok {
+		return nil
+	}
+	return value
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/watch.go b/vendor/github.com/hashicorp/go-memdb/watch.go
new file mode 100644
index 0000000000..a6f01213be
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/watch.go
@@ -0,0 +1,129 @@
+package memdb
+
+import (
+	"context"
+	"time"
+)
+
+// WatchSet is a collection of watch channels.
+type WatchSet map[<-chan struct{}]struct{}
+
+// NewWatchSet constructs a new watch set.
+func NewWatchSet() WatchSet {
+	return make(map[<-chan struct{}]struct{})
+}
+
+// Add appends a watchCh to the WatchSet if non-nil.
+func (w WatchSet) Add(watchCh <-chan struct{}) {
+	if w == nil {
+		return
+	}
+
+	if _, ok := w[watchCh]; !ok {
+		w[watchCh] = struct{}{}
+	}
+}
+
+// AddWithLimit appends a watchCh to the WatchSet if non-nil, and if the given
+// softLimit hasn't been exceeded. Otherwise, it will watch the given alternate
+// channel. It's expected that the altCh will be the same on many calls to this
+// function, so you will exceed the soft limit a little bit if you hit this, but
+// not by much.
+//
+// This is useful if you want to track individual items up to some limit, after
+// which you watch a higher-level channel (usually a channel from start start of
+// an iterator higher up in the radix tree) that will watch a superset of items.
+func (w WatchSet) AddWithLimit(softLimit int, watchCh <-chan struct{}, altCh <-chan struct{}) {
+	// This is safe for a nil WatchSet so we don't need to check that here.
+	if len(w) < softLimit {
+		w.Add(watchCh)
+	} else {
+		w.Add(altCh)
+	}
+}
+
+// Watch is used to wait for either the watch set to trigger or a timeout.
+// Returns true on timeout.
+func (w WatchSet) Watch(timeoutCh <-chan time.Time) bool {
+	if w == nil {
+		return false
+	}
+
+	// Create a context that gets cancelled when the timeout is triggered
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	go func() {
+		select {
+		case <-timeoutCh:
+			cancel()
+		case <-ctx.Done():
+		}
+	}()
+
+	return w.WatchCtx(ctx) == context.Canceled
+}
+
+// WatchCtx is used to wait for either the watch set to trigger or for the
+// context to be cancelled. Watch with a timeout channel can be mimicked by
+// creating a context with a deadline. WatchCtx should be preferred over Watch.
+func (w WatchSet) WatchCtx(ctx context.Context) error {
+	if w == nil {
+		return nil
+	}
+
+	if n := len(w); n <= aFew {
+		idx := 0
+		chunk := make([]<-chan struct{}, aFew)
+		for watchCh := range w {
+			chunk[idx] = watchCh
+			idx++
+		}
+		return watchFew(ctx, chunk)
+	}
+
+	return w.watchMany(ctx)
+}
+
+// watchMany is used if there are many watchers.
+func (w WatchSet) watchMany(ctx context.Context) error {
+	// Set up a goroutine for each watcher.
+	triggerCh := make(chan struct{}, 1)
+	watcher := func(chunk []<-chan struct{}) {
+		if err := watchFew(ctx, chunk); err == nil {
+			select {
+			case triggerCh <- struct{}{}:
+			default:
+			}
+		}
+	}
+
+	// Apportion the watch channels into chunks we can feed into the
+	// watchFew helper.
+	idx := 0
+	chunk := make([]<-chan struct{}, aFew)
+	for watchCh := range w {
+		subIdx := idx % aFew
+		chunk[subIdx] = watchCh
+		idx++
+
+		// Fire off this chunk and start a fresh one.
+		if idx%aFew == 0 {
+			go watcher(chunk)
+			chunk = make([]<-chan struct{}, aFew)
+		}
+	}
+
+	// Make sure to watch any residual channels in the last chunk.
+	if idx%aFew != 0 {
+		go watcher(chunk)
+	}
+
+	// Wait for a channel to trigger or timeout.
+	select {
+	case <-triggerCh:
+		return nil
+	case <-ctx.Done():
+		return ctx.Err()
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-memdb/watch_few.go b/vendor/github.com/hashicorp/go-memdb/watch_few.go
new file mode 100644
index 0000000000..880f098b77
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-memdb/watch_few.go
@@ -0,0 +1,117 @@
+package memdb
+
+//go:generate sh -c "go run watch-gen/main.go >watch_few.go"
+
+import(
+	"context"
+)
+
+// aFew gives how many watchers this function is wired to support. You must
+// always pass a full slice of this length, but unused channels can be nil.
+const aFew = 32
+
+// watchFew is used if there are only a few watchers as a performance
+// optimization.
+func watchFew(ctx context.Context, ch []<-chan struct{}) error {
+	select {
+
+	case <-ch[0]:
+		return nil
+
+	case <-ch[1]:
+		return nil
+
+	case <-ch[2]:
+		return nil
+
+	case <-ch[3]:
+		return nil
+
+	case <-ch[4]:
+		return nil
+
+	case <-ch[5]:
+		return nil
+
+	case <-ch[6]:
+		return nil
+
+	case <-ch[7]:
+		return nil
+
+	case <-ch[8]:
+		return nil
+
+	case <-ch[9]:
+		return nil
+
+	case <-ch[10]:
+		return nil
+
+	case <-ch[11]:
+		return nil
+
+	case <-ch[12]:
+		return nil
+
+	case <-ch[13]:
+		return nil
+
+	case <-ch[14]:
+		return nil
+
+	case <-ch[15]:
+		return nil
+
+	case <-ch[16]:
+		return nil
+
+	case <-ch[17]:
+		return nil
+
+	case <-ch[18]:
+		return nil
+
+	case <-ch[19]:
+		return nil
+
+	case <-ch[20]:
+		return nil
+
+	case <-ch[21]:
+		return nil
+
+	case <-ch[22]:
+		return nil
+
+	case <-ch[23]:
+		return nil
+
+	case <-ch[24]:
+		return nil
+
+	case <-ch[25]:
+		return nil
+
+	case <-ch[26]:
+		return nil
+
+	case <-ch[27]:
+		return nil
+
+	case <-ch[28]:
+		return nil
+
+	case <-ch[29]:
+		return nil
+
+	case <-ch[30]:
+		return nil
+
+	case <-ch[31]:
+		return nil
+
+	case <-ctx.Done():
+		return ctx.Err()
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/LICENSE b/vendor/github.com/hashicorp/go-msgpack/LICENSE
new file mode 100644
index 0000000000..ccae99f6a9
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/LICENSE
@@ -0,0 +1,25 @@
+Copyright (c) 2012, 2013 Ugorji Nwoke.
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+* Redistributions of source code must retain the above copyright notice,
+  this list of conditions and the following disclaimer.
+* Redistributions in binary form must reproduce the above copyright notice,
+  this list of conditions and the following disclaimer in the documentation
+  and/or other materials provided with the distribution.
+* Neither the name of the author nor the names of its contributors may be used
+  to endorse or promote products derived from this software
+  without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR
+ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
+ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/0doc.go b/vendor/github.com/hashicorp/go-msgpack/codec/0doc.go
new file mode 100644
index 0000000000..c14d810a73
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/0doc.go
@@ -0,0 +1,143 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+/*
+High Performance, Feature-Rich Idiomatic Go encoding library for msgpack and binc .
+
+Supported Serialization formats are:
+
+  - msgpack: [https://github.com/msgpack/msgpack]
+  - binc: [http://github.com/ugorji/binc]
+
+To install:
+
+    go get github.com/ugorji/go/codec
+
+The idiomatic Go support is as seen in other encoding packages in
+the standard library (ie json, xml, gob, etc).
+
+Rich Feature Set includes:
+
+  - Simple but extremely powerful and feature-rich API
+  - Very High Performance.
+    Our extensive benchmarks show us outperforming Gob, Json and Bson by 2-4X.
+    This was achieved by taking extreme care on:
+      - managing allocation
+      - function frame size (important due to Go's use of split stacks),
+      - reflection use (and by-passing reflection for common types)
+      - recursion implications
+      - zero-copy mode (encoding/decoding to byte slice without using temp buffers)
+  - Correct.
+    Care was taken to precisely handle corner cases like:
+      overflows, nil maps and slices, nil value in stream, etc.
+  - Efficient zero-copying into temporary byte buffers
+    when encoding into or decoding from a byte slice.
+  - Standard field renaming via tags
+  - Encoding from any value
+    (struct, slice, map, primitives, pointers, interface{}, etc)
+  - Decoding into pointer to any non-nil typed value
+    (struct, slice, map, int, float32, bool, string, reflect.Value, etc)
+  - Supports extension functions to handle the encode/decode of custom types
+  - Support Go 1.2 encoding.BinaryMarshaler/BinaryUnmarshaler
+  - Schema-less decoding
+    (decode into a pointer to a nil interface{} as opposed to a typed non-nil value).
+    Includes Options to configure what specific map or slice type to use
+    when decoding an encoded list or map into a nil interface{}
+  - Provides a RPC Server and Client Codec for net/rpc communication protocol.
+  - Msgpack Specific:
+      - Provides extension functions to handle spec-defined extensions (binary, timestamp)
+      - Options to resolve ambiguities in handling raw bytes (as string or []byte)
+        during schema-less decoding (decoding into a nil interface{})
+      - RPC Server/Client Codec for msgpack-rpc protocol defined at:
+        https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md
+  - Fast Paths for some container types:
+    For some container types, we circumvent reflection and its associated overhead
+    and allocation costs, and encode/decode directly. These types are:
+	    []interface{}
+	    []int
+	    []string
+	    map[interface{}]interface{}
+	    map[int]interface{}
+	    map[string]interface{}
+
+Extension Support
+
+Users can register a function to handle the encoding or decoding of
+their custom types.
+
+There are no restrictions on what the custom type can be. Some examples:
+
+    type BisSet   []int
+    type BitSet64 uint64
+    type UUID     string
+    type MyStructWithUnexportedFields struct { a int; b bool; c []int; }
+    type GifImage struct { ... }
+
+As an illustration, MyStructWithUnexportedFields would normally be
+encoded as an empty map because it has no exported fields, while UUID
+would be encoded as a string. However, with extension support, you can
+encode any of these however you like.
+
+RPC
+
+RPC Client and Server Codecs are implemented, so the codecs can be used
+with the standard net/rpc package.
+
+Usage
+
+Typical usage model:
+
+    // create and configure Handle
+    var (
+      bh codec.BincHandle
+      mh codec.MsgpackHandle
+    )
+
+    mh.MapType = reflect.TypeOf(map[string]interface{}(nil))
+
+    // configure extensions
+    // e.g. for msgpack, define functions and enable Time support for tag 1
+    // mh.AddExt(reflect.TypeOf(time.Time{}), 1, myMsgpackTimeEncodeExtFn, myMsgpackTimeDecodeExtFn)
+
+    // create and use decoder/encoder
+    var (
+      r io.Reader
+      w io.Writer
+      b []byte
+      h = &bh // or mh to use msgpack
+    )
+
+    dec = codec.NewDecoder(r, h)
+    dec = codec.NewDecoderBytes(b, h)
+    err = dec.Decode(&v)
+
+    enc = codec.NewEncoder(w, h)
+    enc = codec.NewEncoderBytes(&b, h)
+    err = enc.Encode(v)
+
+    //RPC Server
+    go func() {
+        for {
+            conn, err := listener.Accept()
+            rpcCodec := codec.GoRpc.ServerCodec(conn, h)
+            //OR rpcCodec := codec.MsgpackSpecRpc.ServerCodec(conn, h)
+            rpc.ServeCodec(rpcCodec)
+        }
+    }()
+
+    //RPC Communication (client side)
+    conn, err = net.Dial("tcp", "localhost:5555")
+    rpcCodec := codec.GoRpc.ClientCodec(conn, h)
+    //OR rpcCodec := codec.MsgpackSpecRpc.ClientCodec(conn, h)
+    client := rpc.NewClientWithCodec(rpcCodec)
+
+Representative Benchmark Results
+
+Run the benchmark suite using:
+   go test -bi -bench=. -benchmem
+
+To run full benchmark suite (including against vmsgpack and bson),
+see notes in ext_dep_test.go
+
+*/
+package codec
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/binc.go b/vendor/github.com/hashicorp/go-msgpack/codec/binc.go
new file mode 100644
index 0000000000..2bb5e8fee8
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/binc.go
@@ -0,0 +1,786 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import (
+	"math"
+	// "reflect"
+	// "sync/atomic"
+	"time"
+	//"fmt"
+)
+
+const bincDoPrune = true // No longer needed. Needed before as C lib did not support pruning.
+
+//var _ = fmt.Printf
+
+// vd as low 4 bits (there are 16 slots)
+const (
+	bincVdSpecial byte = iota
+	bincVdPosInt
+	bincVdNegInt
+	bincVdFloat
+
+	bincVdString
+	bincVdByteArray
+	bincVdArray
+	bincVdMap
+
+	bincVdTimestamp
+	bincVdSmallInt
+	bincVdUnicodeOther
+	bincVdSymbol
+
+	bincVdDecimal
+	_               // open slot
+	_               // open slot
+	bincVdCustomExt = 0x0f
+)
+
+const (
+	bincSpNil byte = iota
+	bincSpFalse
+	bincSpTrue
+	bincSpNan
+	bincSpPosInf
+	bincSpNegInf
+	bincSpZeroFloat
+	bincSpZero
+	bincSpNegOne
+)
+
+const (
+	bincFlBin16 byte = iota
+	bincFlBin32
+	_ // bincFlBin32e
+	bincFlBin64
+	_ // bincFlBin64e
+	// others not currently supported
+)
+
+type bincEncDriver struct {
+	w encWriter
+	m map[string]uint16 // symbols
+	s uint32            // symbols sequencer
+	b [8]byte
+}
+
+func (e *bincEncDriver) isBuiltinType(rt uintptr) bool {
+	return rt == timeTypId
+}
+
+func (e *bincEncDriver) encodeBuiltin(rt uintptr, v interface{}) {
+	switch rt {
+	case timeTypId:
+		bs := encodeTime(v.(time.Time))
+		e.w.writen1(bincVdTimestamp<<4 | uint8(len(bs)))
+		e.w.writeb(bs)
+	}
+}
+
+func (e *bincEncDriver) encodeNil() {
+	e.w.writen1(bincVdSpecial<<4 | bincSpNil)
+}
+
+func (e *bincEncDriver) encodeBool(b bool) {
+	if b {
+		e.w.writen1(bincVdSpecial<<4 | bincSpTrue)
+	} else {
+		e.w.writen1(bincVdSpecial<<4 | bincSpFalse)
+	}
+}
+
+func (e *bincEncDriver) encodeFloat32(f float32) {
+	if f == 0 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpZeroFloat)
+		return
+	}
+	e.w.writen1(bincVdFloat<<4 | bincFlBin32)
+	e.w.writeUint32(math.Float32bits(f))
+}
+
+func (e *bincEncDriver) encodeFloat64(f float64) {
+	if f == 0 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpZeroFloat)
+		return
+	}
+	bigen.PutUint64(e.b[:], math.Float64bits(f))
+	if bincDoPrune {
+		i := 7
+		for ; i >= 0 && (e.b[i] == 0); i-- {
+		}
+		i++
+		if i <= 6 {
+			e.w.writen1(bincVdFloat<<4 | 0x8 | bincFlBin64)
+			e.w.writen1(byte(i))
+			e.w.writeb(e.b[:i])
+			return
+		}
+	}
+	e.w.writen1(bincVdFloat<<4 | bincFlBin64)
+	e.w.writeb(e.b[:])
+}
+
+func (e *bincEncDriver) encIntegerPrune(bd byte, pos bool, v uint64, lim uint8) {
+	if lim == 4 {
+		bigen.PutUint32(e.b[:lim], uint32(v))
+	} else {
+		bigen.PutUint64(e.b[:lim], v)
+	}
+	if bincDoPrune {
+		i := pruneSignExt(e.b[:lim], pos)
+		e.w.writen1(bd | lim - 1 - byte(i))
+		e.w.writeb(e.b[i:lim])
+	} else {
+		e.w.writen1(bd | lim - 1)
+		e.w.writeb(e.b[:lim])
+	}
+}
+
+func (e *bincEncDriver) encodeInt(v int64) {
+	const nbd byte = bincVdNegInt << 4
+	switch {
+	case v >= 0:
+		e.encUint(bincVdPosInt<<4, true, uint64(v))
+	case v == -1:
+		e.w.writen1(bincVdSpecial<<4 | bincSpNegOne)
+	default:
+		e.encUint(bincVdNegInt<<4, false, uint64(-v))
+	}
+}
+
+func (e *bincEncDriver) encodeUint(v uint64) {
+	e.encUint(bincVdPosInt<<4, true, v)
+}
+
+func (e *bincEncDriver) encUint(bd byte, pos bool, v uint64) {
+	switch {
+	case v == 0:
+		e.w.writen1(bincVdSpecial<<4 | bincSpZero)
+	case pos && v >= 1 && v <= 16:
+		e.w.writen1(bincVdSmallInt<<4 | byte(v-1))
+	case v <= math.MaxUint8:
+		e.w.writen2(bd|0x0, byte(v))
+	case v <= math.MaxUint16:
+		e.w.writen1(bd | 0x01)
+		e.w.writeUint16(uint16(v))
+	case v <= math.MaxUint32:
+		e.encIntegerPrune(bd, pos, v, 4)
+	default:
+		e.encIntegerPrune(bd, pos, v, 8)
+	}
+}
+
+func (e *bincEncDriver) encodeExtPreamble(xtag byte, length int) {
+	e.encLen(bincVdCustomExt<<4, uint64(length))
+	e.w.writen1(xtag)
+}
+
+func (e *bincEncDriver) encodeArrayPreamble(length int) {
+	e.encLen(bincVdArray<<4, uint64(length))
+}
+
+func (e *bincEncDriver) encodeMapPreamble(length int) {
+	e.encLen(bincVdMap<<4, uint64(length))
+}
+
+func (e *bincEncDriver) encodeString(c charEncoding, v string) {
+	l := uint64(len(v))
+	e.encBytesLen(c, l)
+	if l > 0 {
+		e.w.writestr(v)
+	}
+}
+
+func (e *bincEncDriver) encodeSymbol(v string) {
+	// if WriteSymbolsNoRefs {
+	// 	e.encodeString(c_UTF8, v)
+	// 	return
+	// }
+
+	//symbols only offer benefit when string length > 1.
+	//This is because strings with length 1 take only 2 bytes to store
+	//(bd with embedded length, and single byte for string val).
+
+	l := len(v)
+	switch l {
+	case 0:
+		e.encBytesLen(c_UTF8, 0)
+		return
+	case 1:
+		e.encBytesLen(c_UTF8, 1)
+		e.w.writen1(v[0])
+		return
+	}
+	if e.m == nil {
+		e.m = make(map[string]uint16, 16)
+	}
+	ui, ok := e.m[v]
+	if ok {
+		if ui <= math.MaxUint8 {
+			e.w.writen2(bincVdSymbol<<4, byte(ui))
+		} else {
+			e.w.writen1(bincVdSymbol<<4 | 0x8)
+			e.w.writeUint16(ui)
+		}
+	} else {
+		e.s++
+		ui = uint16(e.s)
+		//ui = uint16(atomic.AddUint32(&e.s, 1))
+		e.m[v] = ui
+		var lenprec uint8
+		switch {
+		case l <= math.MaxUint8:
+			// lenprec = 0
+		case l <= math.MaxUint16:
+			lenprec = 1
+		case int64(l) <= math.MaxUint32:
+			lenprec = 2
+		default:
+			lenprec = 3
+		}
+		if ui <= math.MaxUint8 {
+			e.w.writen2(bincVdSymbol<<4|0x0|0x4|lenprec, byte(ui))
+		} else {
+			e.w.writen1(bincVdSymbol<<4 | 0x8 | 0x4 | lenprec)
+			e.w.writeUint16(ui)
+		}
+		switch lenprec {
+		case 0:
+			e.w.writen1(byte(l))
+		case 1:
+			e.w.writeUint16(uint16(l))
+		case 2:
+			e.w.writeUint32(uint32(l))
+		default:
+			e.w.writeUint64(uint64(l))
+		}
+		e.w.writestr(v)
+	}
+}
+
+func (e *bincEncDriver) encodeStringBytes(c charEncoding, v []byte) {
+	l := uint64(len(v))
+	e.encBytesLen(c, l)
+	if l > 0 {
+		e.w.writeb(v)
+	}
+}
+
+func (e *bincEncDriver) encBytesLen(c charEncoding, length uint64) {
+	//TODO: support bincUnicodeOther (for now, just use string or bytearray)
+	if c == c_RAW {
+		e.encLen(bincVdByteArray<<4, length)
+	} else {
+		e.encLen(bincVdString<<4, length)
+	}
+}
+
+func (e *bincEncDriver) encLen(bd byte, l uint64) {
+	if l < 12 {
+		e.w.writen1(bd | uint8(l+4))
+	} else {
+		e.encLenNumber(bd, l)
+	}
+}
+
+func (e *bincEncDriver) encLenNumber(bd byte, v uint64) {
+	switch {
+	case v <= math.MaxUint8:
+		e.w.writen2(bd, byte(v))
+	case v <= math.MaxUint16:
+		e.w.writen1(bd | 0x01)
+		e.w.writeUint16(uint16(v))
+	case v <= math.MaxUint32:
+		e.w.writen1(bd | 0x02)
+		e.w.writeUint32(uint32(v))
+	default:
+		e.w.writen1(bd | 0x03)
+		e.w.writeUint64(uint64(v))
+	}
+}
+
+//------------------------------------
+
+type bincDecDriver struct {
+	r      decReader
+	bdRead bool
+	bdType valueType
+	bd     byte
+	vd     byte
+	vs     byte
+	b      [8]byte
+	m      map[uint32]string // symbols (use uint32 as key, as map optimizes for it)
+}
+
+func (d *bincDecDriver) initReadNext() {
+	if d.bdRead {
+		return
+	}
+	d.bd = d.r.readn1()
+	d.vd = d.bd >> 4
+	d.vs = d.bd & 0x0f
+	d.bdRead = true
+	d.bdType = valueTypeUnset
+}
+
+func (d *bincDecDriver) currentEncodedType() valueType {
+	if d.bdType == valueTypeUnset {
+		switch d.vd {
+		case bincVdSpecial:
+			switch d.vs {
+			case bincSpNil:
+				d.bdType = valueTypeNil
+			case bincSpFalse, bincSpTrue:
+				d.bdType = valueTypeBool
+			case bincSpNan, bincSpNegInf, bincSpPosInf, bincSpZeroFloat:
+				d.bdType = valueTypeFloat
+			case bincSpZero:
+				d.bdType = valueTypeUint
+			case bincSpNegOne:
+				d.bdType = valueTypeInt
+			default:
+				decErr("currentEncodedType: Unrecognized special value 0x%x", d.vs)
+			}
+		case bincVdSmallInt:
+			d.bdType = valueTypeUint
+		case bincVdPosInt:
+			d.bdType = valueTypeUint
+		case bincVdNegInt:
+			d.bdType = valueTypeInt
+		case bincVdFloat:
+			d.bdType = valueTypeFloat
+		case bincVdString:
+			d.bdType = valueTypeString
+		case bincVdSymbol:
+			d.bdType = valueTypeSymbol
+		case bincVdByteArray:
+			d.bdType = valueTypeBytes
+		case bincVdTimestamp:
+			d.bdType = valueTypeTimestamp
+		case bincVdCustomExt:
+			d.bdType = valueTypeExt
+		case bincVdArray:
+			d.bdType = valueTypeArray
+		case bincVdMap:
+			d.bdType = valueTypeMap
+		default:
+			decErr("currentEncodedType: Unrecognized d.vd: 0x%x", d.vd)
+		}
+	}
+	return d.bdType
+}
+
+func (d *bincDecDriver) tryDecodeAsNil() bool {
+	if d.bd == bincVdSpecial<<4|bincSpNil {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *bincDecDriver) isBuiltinType(rt uintptr) bool {
+	return rt == timeTypId
+}
+
+func (d *bincDecDriver) decodeBuiltin(rt uintptr, v interface{}) {
+	switch rt {
+	case timeTypId:
+		if d.vd != bincVdTimestamp {
+			decErr("Invalid d.vd. Expecting 0x%x. Received: 0x%x", bincVdTimestamp, d.vd)
+		}
+		tt, err := decodeTime(d.r.readn(int(d.vs)))
+		if err != nil {
+			panic(err)
+		}
+		var vt *time.Time = v.(*time.Time)
+		*vt = tt
+		d.bdRead = false
+	}
+}
+
+func (d *bincDecDriver) decFloatPre(vs, defaultLen byte) {
+	if vs&0x8 == 0 {
+		d.r.readb(d.b[0:defaultLen])
+	} else {
+		l := d.r.readn1()
+		if l > 8 {
+			decErr("At most 8 bytes used to represent float. Received: %v bytes", l)
+		}
+		for i := l; i < 8; i++ {
+			d.b[i] = 0
+		}
+		d.r.readb(d.b[0:l])
+	}
+}
+
+func (d *bincDecDriver) decFloat() (f float64) {
+	//if true { f = math.Float64frombits(d.r.readUint64()); break; }
+	switch vs := d.vs; vs & 0x7 {
+	case bincFlBin32:
+		d.decFloatPre(vs, 4)
+		f = float64(math.Float32frombits(bigen.Uint32(d.b[0:4])))
+	case bincFlBin64:
+		d.decFloatPre(vs, 8)
+		f = math.Float64frombits(bigen.Uint64(d.b[0:8]))
+	default:
+		decErr("only float32 and float64 are supported. d.vd: 0x%x, d.vs: 0x%x", d.vd, d.vs)
+	}
+	return
+}
+
+func (d *bincDecDriver) decUint() (v uint64) {
+	// need to inline the code (interface conversion and type assertion expensive)
+	switch d.vs {
+	case 0:
+		v = uint64(d.r.readn1())
+	case 1:
+		d.r.readb(d.b[6:])
+		v = uint64(bigen.Uint16(d.b[6:]))
+	case 2:
+		d.b[4] = 0
+		d.r.readb(d.b[5:])
+		v = uint64(bigen.Uint32(d.b[4:]))
+	case 3:
+		d.r.readb(d.b[4:])
+		v = uint64(bigen.Uint32(d.b[4:]))
+	case 4, 5, 6:
+		lim := int(7 - d.vs)
+		d.r.readb(d.b[lim:])
+		for i := 0; i < lim; i++ {
+			d.b[i] = 0
+		}
+		v = uint64(bigen.Uint64(d.b[:]))
+	case 7:
+		d.r.readb(d.b[:])
+		v = uint64(bigen.Uint64(d.b[:]))
+	default:
+		decErr("unsigned integers with greater than 64 bits of precision not supported")
+	}
+	return
+}
+
+func (d *bincDecDriver) decIntAny() (ui uint64, i int64, neg bool) {
+	switch d.vd {
+	case bincVdPosInt:
+		ui = d.decUint()
+		i = int64(ui)
+	case bincVdNegInt:
+		ui = d.decUint()
+		i = -(int64(ui))
+		neg = true
+	case bincVdSmallInt:
+		i = int64(d.vs) + 1
+		ui = uint64(d.vs) + 1
+	case bincVdSpecial:
+		switch d.vs {
+		case bincSpZero:
+			//i = 0
+		case bincSpNegOne:
+			neg = true
+			ui = 1
+			i = -1
+		default:
+			decErr("numeric decode fails for special value: d.vs: 0x%x", d.vs)
+		}
+	default:
+		decErr("number can only be decoded from uint or int values. d.bd: 0x%x, d.vd: 0x%x", d.bd, d.vd)
+	}
+	return
+}
+
+func (d *bincDecDriver) decodeInt(bitsize uint8) (i int64) {
+	_, i, _ = d.decIntAny()
+	checkOverflow(0, i, bitsize)
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decodeUint(bitsize uint8) (ui uint64) {
+	ui, i, neg := d.decIntAny()
+	if neg {
+		decErr("Assigning negative signed value: %v, to unsigned type", i)
+	}
+	checkOverflow(ui, 0, bitsize)
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decodeFloat(chkOverflow32 bool) (f float64) {
+	switch d.vd {
+	case bincVdSpecial:
+		d.bdRead = false
+		switch d.vs {
+		case bincSpNan:
+			return math.NaN()
+		case bincSpPosInf:
+			return math.Inf(1)
+		case bincSpZeroFloat, bincSpZero:
+			return
+		case bincSpNegInf:
+			return math.Inf(-1)
+		default:
+			decErr("Invalid d.vs decoding float where d.vd=bincVdSpecial: %v", d.vs)
+		}
+	case bincVdFloat:
+		f = d.decFloat()
+	default:
+		_, i, _ := d.decIntAny()
+		f = float64(i)
+	}
+	checkOverflowFloat32(f, chkOverflow32)
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool only (single byte).
+func (d *bincDecDriver) decodeBool() (b bool) {
+	switch d.bd {
+	case (bincVdSpecial | bincSpFalse):
+		// b = false
+	case (bincVdSpecial | bincSpTrue):
+		b = true
+	default:
+		decErr("Invalid single-byte value for bool: %s: %x", msgBadDesc, d.bd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) readMapLen() (length int) {
+	if d.vd != bincVdMap {
+		decErr("Invalid d.vd for map. Expecting 0x%x. Got: 0x%x", bincVdMap, d.vd)
+	}
+	length = d.decLen()
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) readArrayLen() (length int) {
+	if d.vd != bincVdArray {
+		decErr("Invalid d.vd for array. Expecting 0x%x. Got: 0x%x", bincVdArray, d.vd)
+	}
+	length = d.decLen()
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decLen() int {
+	if d.vs <= 3 {
+		return int(d.decUint())
+	}
+	return int(d.vs - 4)
+}
+
+func (d *bincDecDriver) decodeString() (s string) {
+	switch d.vd {
+	case bincVdString, bincVdByteArray:
+		if length := d.decLen(); length > 0 {
+			s = string(d.r.readn(length))
+		}
+	case bincVdSymbol:
+		//from vs: extract numSymbolBytes, containsStringVal, strLenPrecision,
+		//extract symbol
+		//if containsStringVal, read it and put in map
+		//else look in map for string value
+		var symbol uint32
+		vs := d.vs
+		//fmt.Printf(">>>> d.vs: 0b%b, & 0x8: %v, & 0x4: %v\n", d.vs, vs & 0x8, vs & 0x4)
+		if vs&0x8 == 0 {
+			symbol = uint32(d.r.readn1())
+		} else {
+			symbol = uint32(d.r.readUint16())
+		}
+		if d.m == nil {
+			d.m = make(map[uint32]string, 16)
+		}
+
+		if vs&0x4 == 0 {
+			s = d.m[symbol]
+		} else {
+			var slen int
+			switch vs & 0x3 {
+			case 0:
+				slen = int(d.r.readn1())
+			case 1:
+				slen = int(d.r.readUint16())
+			case 2:
+				slen = int(d.r.readUint32())
+			case 3:
+				slen = int(d.r.readUint64())
+			}
+			s = string(d.r.readn(slen))
+			d.m[symbol] = s
+		}
+	default:
+		decErr("Invalid d.vd for string. Expecting string:0x%x, bytearray:0x%x or symbol: 0x%x. Got: 0x%x",
+			bincVdString, bincVdByteArray, bincVdSymbol, d.vd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decodeBytes(bs []byte) (bsOut []byte, changed bool) {
+	var clen int
+	switch d.vd {
+	case bincVdString, bincVdByteArray:
+		clen = d.decLen()
+	default:
+		decErr("Invalid d.vd for bytes. Expecting string:0x%x or bytearray:0x%x. Got: 0x%x",
+			bincVdString, bincVdByteArray, d.vd)
+	}
+	if clen > 0 {
+		// if no contents in stream, don't update the passed byteslice
+		if len(bs) != clen {
+			if len(bs) > clen {
+				bs = bs[:clen]
+			} else {
+				bs = make([]byte, clen)
+			}
+			bsOut = bs
+			changed = true
+		}
+		d.r.readb(bs)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decodeExt(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	switch d.vd {
+	case bincVdCustomExt:
+		l := d.decLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			decErr("Wrong extension tag. Got %b. Expecting: %v", xtag, tag)
+		}
+		xbs = d.r.readn(l)
+	case bincVdByteArray:
+		xbs, _ = d.decodeBytes(nil)
+	default:
+		decErr("Invalid d.vd for extensions (Expecting extensions or byte array). Got: 0x%x", d.vd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decodeNaked() (v interface{}, vt valueType, decodeFurther bool) {
+	d.initReadNext()
+
+	switch d.vd {
+	case bincVdSpecial:
+		switch d.vs {
+		case bincSpNil:
+			vt = valueTypeNil
+		case bincSpFalse:
+			vt = valueTypeBool
+			v = false
+		case bincSpTrue:
+			vt = valueTypeBool
+			v = true
+		case bincSpNan:
+			vt = valueTypeFloat
+			v = math.NaN()
+		case bincSpPosInf:
+			vt = valueTypeFloat
+			v = math.Inf(1)
+		case bincSpNegInf:
+			vt = valueTypeFloat
+			v = math.Inf(-1)
+		case bincSpZeroFloat:
+			vt = valueTypeFloat
+			v = float64(0)
+		case bincSpZero:
+			vt = valueTypeUint
+			v = int64(0) // int8(0)
+		case bincSpNegOne:
+			vt = valueTypeInt
+			v = int64(-1) // int8(-1)
+		default:
+			decErr("decodeNaked: Unrecognized special value 0x%x", d.vs)
+		}
+	case bincVdSmallInt:
+		vt = valueTypeUint
+		v = uint64(int8(d.vs)) + 1 // int8(d.vs) + 1
+	case bincVdPosInt:
+		vt = valueTypeUint
+		v = d.decUint()
+	case bincVdNegInt:
+		vt = valueTypeInt
+		v = -(int64(d.decUint()))
+	case bincVdFloat:
+		vt = valueTypeFloat
+		v = d.decFloat()
+	case bincVdSymbol:
+		vt = valueTypeSymbol
+		v = d.decodeString()
+	case bincVdString:
+		vt = valueTypeString
+		v = d.decodeString()
+	case bincVdByteArray:
+		vt = valueTypeBytes
+		v, _ = d.decodeBytes(nil)
+	case bincVdTimestamp:
+		vt = valueTypeTimestamp
+		tt, err := decodeTime(d.r.readn(int(d.vs)))
+		if err != nil {
+			panic(err)
+		}
+		v = tt
+	case bincVdCustomExt:
+		vt = valueTypeExt
+		l := d.decLen()
+		var re RawExt
+		re.Tag = d.r.readn1()
+		re.Data = d.r.readn(l)
+		v = &re
+		vt = valueTypeExt
+	case bincVdArray:
+		vt = valueTypeArray
+		decodeFurther = true
+	case bincVdMap:
+		vt = valueTypeMap
+		decodeFurther = true
+	default:
+		decErr("decodeNaked: Unrecognized d.vd: 0x%x", d.vd)
+	}
+
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	return
+}
+
+//------------------------------------
+
+//BincHandle is a Handle for the Binc Schema-Free Encoding Format
+//defined at https://github.com/ugorji/binc .
+//
+//BincHandle currently supports all Binc features with the following EXCEPTIONS:
+//  - only integers up to 64 bits of precision are supported.
+//    big integers are unsupported.
+//  - Only IEEE 754 binary32 and binary64 floats are supported (ie Go float32 and float64 types).
+//    extended precision and decimal IEEE 754 floats are unsupported.
+//  - Only UTF-8 strings supported.
+//    Unicode_Other Binc types (UTF16, UTF32) are currently unsupported.
+//Note that these EXCEPTIONS are temporary and full support is possible and may happen soon.
+type BincHandle struct {
+	BasicHandle
+}
+
+func (h *BincHandle) newEncDriver(w encWriter) encDriver {
+	return &bincEncDriver{w: w}
+}
+
+func (h *BincHandle) newDecDriver(r decReader) decDriver {
+	return &bincDecDriver{r: r}
+}
+
+func (_ *BincHandle) writeExt() bool {
+	return true
+}
+
+func (h *BincHandle) getBasicHandle() *BasicHandle {
+	return &h.BasicHandle
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/decode.go b/vendor/github.com/hashicorp/go-msgpack/codec/decode.go
new file mode 100644
index 0000000000..87bef2b935
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/decode.go
@@ -0,0 +1,1048 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import (
+	"io"
+	"reflect"
+	// "runtime/debug"
+)
+
+// Some tagging information for error messages.
+const (
+	msgTagDec             = "codec.decoder"
+	msgBadDesc            = "Unrecognized descriptor byte"
+	msgDecCannotExpandArr = "cannot expand go array from %v to stream length: %v"
+)
+
+// decReader abstracts the reading source, allowing implementations that can
+// read from an io.Reader or directly off a byte slice with zero-copying.
+type decReader interface {
+	readn(n int) []byte
+	readb([]byte)
+	readn1() uint8
+	readUint16() uint16
+	readUint32() uint32
+	readUint64() uint64
+}
+
+type decDriver interface {
+	initReadNext()
+	tryDecodeAsNil() bool
+	currentEncodedType() valueType
+	isBuiltinType(rt uintptr) bool
+	decodeBuiltin(rt uintptr, v interface{})
+	//decodeNaked: Numbers are decoded as int64, uint64, float64 only (no smaller sized number types).
+	decodeNaked() (v interface{}, vt valueType, decodeFurther bool)
+	decodeInt(bitsize uint8) (i int64)
+	decodeUint(bitsize uint8) (ui uint64)
+	decodeFloat(chkOverflow32 bool) (f float64)
+	decodeBool() (b bool)
+	// decodeString can also decode symbols
+	decodeString() (s string)
+	decodeBytes(bs []byte) (bsOut []byte, changed bool)
+	decodeExt(verifyTag bool, tag byte) (xtag byte, xbs []byte)
+	readMapLen() int
+	readArrayLen() int
+}
+
+type DecodeOptions struct {
+	// An instance of MapType is used during schema-less decoding of a map in the stream.
+	// If nil, we use map[interface{}]interface{}
+	MapType reflect.Type
+	// An instance of SliceType is used during schema-less decoding of an array in the stream.
+	// If nil, we use []interface{}
+	SliceType reflect.Type
+	// ErrorIfNoField controls whether an error is returned when decoding a map
+	// from a codec stream into a struct, and no matching struct field is found.
+	ErrorIfNoField bool
+}
+
+// ------------------------------------
+
+// ioDecReader is a decReader that reads off an io.Reader
+type ioDecReader struct {
+	r  io.Reader
+	br io.ByteReader
+	x  [8]byte //temp byte array re-used internally for efficiency
+}
+
+func (z *ioDecReader) readn(n int) (bs []byte) {
+	if n <= 0 {
+		return
+	}
+	bs = make([]byte, n)
+	if _, err := io.ReadAtLeast(z.r, bs, n); err != nil {
+		panic(err)
+	}
+	return
+}
+
+func (z *ioDecReader) readb(bs []byte) {
+	if _, err := io.ReadAtLeast(z.r, bs, len(bs)); err != nil {
+		panic(err)
+	}
+}
+
+func (z *ioDecReader) readn1() uint8 {
+	if z.br != nil {
+		b, err := z.br.ReadByte()
+		if err != nil {
+			panic(err)
+		}
+		return b
+	}
+	z.readb(z.x[:1])
+	return z.x[0]
+}
+
+func (z *ioDecReader) readUint16() uint16 {
+	z.readb(z.x[:2])
+	return bigen.Uint16(z.x[:2])
+}
+
+func (z *ioDecReader) readUint32() uint32 {
+	z.readb(z.x[:4])
+	return bigen.Uint32(z.x[:4])
+}
+
+func (z *ioDecReader) readUint64() uint64 {
+	z.readb(z.x[:8])
+	return bigen.Uint64(z.x[:8])
+}
+
+// ------------------------------------
+
+// bytesDecReader is a decReader that reads off a byte slice with zero copying
+type bytesDecReader struct {
+	b []byte // data
+	c int    // cursor
+	a int    // available
+}
+
+func (z *bytesDecReader) consume(n int) (oldcursor int) {
+	if z.a == 0 {
+		panic(io.EOF)
+	}
+	if n > z.a {
+		decErr("Trying to read %v bytes. Only %v available", n, z.a)
+	}
+	// z.checkAvailable(n)
+	oldcursor = z.c
+	z.c = oldcursor + n
+	z.a = z.a - n
+	return
+}
+
+func (z *bytesDecReader) readn(n int) (bs []byte) {
+	if n <= 0 {
+		return
+	}
+	c0 := z.consume(n)
+	bs = z.b[c0:z.c]
+	return
+}
+
+func (z *bytesDecReader) readb(bs []byte) {
+	copy(bs, z.readn(len(bs)))
+}
+
+func (z *bytesDecReader) readn1() uint8 {
+	c0 := z.consume(1)
+	return z.b[c0]
+}
+
+// Use binaryEncoding helper for 4 and 8 bits, but inline it for 2 bits
+// creating temp slice variable and copying it to helper function is expensive
+// for just 2 bits.
+
+func (z *bytesDecReader) readUint16() uint16 {
+	c0 := z.consume(2)
+	return uint16(z.b[c0+1]) | uint16(z.b[c0])<<8
+}
+
+func (z *bytesDecReader) readUint32() uint32 {
+	c0 := z.consume(4)
+	return bigen.Uint32(z.b[c0:z.c])
+}
+
+func (z *bytesDecReader) readUint64() uint64 {
+	c0 := z.consume(8)
+	return bigen.Uint64(z.b[c0:z.c])
+}
+
+// ------------------------------------
+
+// decFnInfo has methods for registering handling decoding of a specific type
+// based on some characteristics (builtin, extension, reflect Kind, etc)
+type decFnInfo struct {
+	ti    *typeInfo
+	d     *Decoder
+	dd    decDriver
+	xfFn  func(reflect.Value, []byte) error
+	xfTag byte
+	array bool
+}
+
+func (f *decFnInfo) builtin(rv reflect.Value) {
+	f.dd.decodeBuiltin(f.ti.rtid, rv.Addr().Interface())
+}
+
+func (f *decFnInfo) rawExt(rv reflect.Value) {
+	xtag, xbs := f.dd.decodeExt(false, 0)
+	rv.Field(0).SetUint(uint64(xtag))
+	rv.Field(1).SetBytes(xbs)
+}
+
+func (f *decFnInfo) ext(rv reflect.Value) {
+	_, xbs := f.dd.decodeExt(true, f.xfTag)
+	if fnerr := f.xfFn(rv, xbs); fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+func (f *decFnInfo) binaryMarshal(rv reflect.Value) {
+	var bm binaryUnmarshaler
+	if f.ti.unmIndir == -1 {
+		bm = rv.Addr().Interface().(binaryUnmarshaler)
+	} else if f.ti.unmIndir == 0 {
+		bm = rv.Interface().(binaryUnmarshaler)
+	} else {
+		for j, k := int8(0), f.ti.unmIndir; j < k; j++ {
+			if rv.IsNil() {
+				rv.Set(reflect.New(rv.Type().Elem()))
+			}
+			rv = rv.Elem()
+		}
+		bm = rv.Interface().(binaryUnmarshaler)
+	}
+	xbs, _ := f.dd.decodeBytes(nil)
+	if fnerr := bm.UnmarshalBinary(xbs); fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+func (f *decFnInfo) kErr(rv reflect.Value) {
+	decErr("Unhandled value for kind: %v: %s", rv.Kind(), msgBadDesc)
+}
+
+func (f *decFnInfo) kString(rv reflect.Value) {
+	rv.SetString(f.dd.decodeString())
+}
+
+func (f *decFnInfo) kBool(rv reflect.Value) {
+	rv.SetBool(f.dd.decodeBool())
+}
+
+func (f *decFnInfo) kInt(rv reflect.Value) {
+	rv.SetInt(f.dd.decodeInt(intBitsize))
+}
+
+func (f *decFnInfo) kInt64(rv reflect.Value) {
+	rv.SetInt(f.dd.decodeInt(64))
+}
+
+func (f *decFnInfo) kInt32(rv reflect.Value) {
+	rv.SetInt(f.dd.decodeInt(32))
+}
+
+func (f *decFnInfo) kInt8(rv reflect.Value) {
+	rv.SetInt(f.dd.decodeInt(8))
+}
+
+func (f *decFnInfo) kInt16(rv reflect.Value) {
+	rv.SetInt(f.dd.decodeInt(16))
+}
+
+func (f *decFnInfo) kFloat32(rv reflect.Value) {
+	rv.SetFloat(f.dd.decodeFloat(true))
+}
+
+func (f *decFnInfo) kFloat64(rv reflect.Value) {
+	rv.SetFloat(f.dd.decodeFloat(false))
+}
+
+func (f *decFnInfo) kUint8(rv reflect.Value) {
+	rv.SetUint(f.dd.decodeUint(8))
+}
+
+func (f *decFnInfo) kUint64(rv reflect.Value) {
+	rv.SetUint(f.dd.decodeUint(64))
+}
+
+func (f *decFnInfo) kUint(rv reflect.Value) {
+	rv.SetUint(f.dd.decodeUint(uintBitsize))
+}
+
+func (f *decFnInfo) kUint32(rv reflect.Value) {
+	rv.SetUint(f.dd.decodeUint(32))
+}
+
+func (f *decFnInfo) kUint16(rv reflect.Value) {
+	rv.SetUint(f.dd.decodeUint(16))
+}
+
+// func (f *decFnInfo) kPtr(rv reflect.Value) {
+// 	debugf(">>>>>>> ??? decode kPtr called - shouldn't get called")
+// 	if rv.IsNil() {
+// 		rv.Set(reflect.New(rv.Type().Elem()))
+// 	}
+// 	f.d.decodeValue(rv.Elem())
+// }
+
+func (f *decFnInfo) kInterface(rv reflect.Value) {
+	// debugf("\t===> kInterface")
+	if !rv.IsNil() {
+		f.d.decodeValue(rv.Elem())
+		return
+	}
+	// nil interface:
+	// use some hieristics to set the nil interface to an
+	// appropriate value based on the first byte read (byte descriptor bd)
+	v, vt, decodeFurther := f.dd.decodeNaked()
+	if vt == valueTypeNil {
+		return
+	}
+	// Cannot decode into nil interface with methods (e.g. error, io.Reader, etc)
+	// if non-nil value in stream.
+	if num := f.ti.rt.NumMethod(); num > 0 {
+		decErr("decodeValue: Cannot decode non-nil codec value into nil %v (%v methods)",
+			f.ti.rt, num)
+	}
+	var rvn reflect.Value
+	var useRvn bool
+	switch vt {
+	case valueTypeMap:
+		if f.d.h.MapType == nil {
+			var m2 map[interface{}]interface{}
+			v = &m2
+		} else {
+			rvn = reflect.New(f.d.h.MapType).Elem()
+			useRvn = true
+		}
+	case valueTypeArray:
+		if f.d.h.SliceType == nil {
+			var m2 []interface{}
+			v = &m2
+		} else {
+			rvn = reflect.New(f.d.h.SliceType).Elem()
+			useRvn = true
+		}
+	case valueTypeExt:
+		re := v.(*RawExt)
+		var bfn func(reflect.Value, []byte) error
+		rvn, bfn = f.d.h.getDecodeExtForTag(re.Tag)
+		if bfn == nil {
+			rvn = reflect.ValueOf(*re)
+		} else if fnerr := bfn(rvn, re.Data); fnerr != nil {
+			panic(fnerr)
+		}
+		rv.Set(rvn)
+		return
+	}
+	if decodeFurther {
+		if useRvn {
+			f.d.decodeValue(rvn)
+		} else if v != nil {
+			// this v is a pointer, so we need to dereference it when done
+			f.d.decode(v)
+			rvn = reflect.ValueOf(v).Elem()
+			useRvn = true
+		}
+	}
+	if useRvn {
+		rv.Set(rvn)
+	} else if v != nil {
+		rv.Set(reflect.ValueOf(v))
+	}
+}
+
+func (f *decFnInfo) kStruct(rv reflect.Value) {
+	fti := f.ti
+	if currEncodedType := f.dd.currentEncodedType(); currEncodedType == valueTypeMap {
+		containerLen := f.dd.readMapLen()
+		if containerLen == 0 {
+			return
+		}
+		tisfi := fti.sfi
+		for j := 0; j < containerLen; j++ {
+			// var rvkencname string
+			// ddecode(&rvkencname)
+			f.dd.initReadNext()
+			rvkencname := f.dd.decodeString()
+			// rvksi := ti.getForEncName(rvkencname)
+			if k := fti.indexForEncName(rvkencname); k > -1 {
+				sfik := tisfi[k]
+				if sfik.i != -1 {
+					f.d.decodeValue(rv.Field(int(sfik.i)))
+				} else {
+					f.d.decEmbeddedField(rv, sfik.is)
+				}
+				// f.d.decodeValue(ti.field(k, rv))
+			} else {
+				if f.d.h.ErrorIfNoField {
+					decErr("No matching struct field found when decoding stream map with key: %v",
+						rvkencname)
+				} else {
+					var nilintf0 interface{}
+					f.d.decodeValue(reflect.ValueOf(&nilintf0).Elem())
+				}
+			}
+		}
+	} else if currEncodedType == valueTypeArray {
+		containerLen := f.dd.readArrayLen()
+		if containerLen == 0 {
+			return
+		}
+		for j, si := range fti.sfip {
+			if j == containerLen {
+				break
+			}
+			if si.i != -1 {
+				f.d.decodeValue(rv.Field(int(si.i)))
+			} else {
+				f.d.decEmbeddedField(rv, si.is)
+			}
+		}
+		if containerLen > len(fti.sfip) {
+			// read remaining values and throw away
+			for j := len(fti.sfip); j < containerLen; j++ {
+				var nilintf0 interface{}
+				f.d.decodeValue(reflect.ValueOf(&nilintf0).Elem())
+			}
+		}
+	} else {
+		decErr("Only encoded map or array can be decoded into a struct. (valueType: %x)",
+			currEncodedType)
+	}
+}
+
+func (f *decFnInfo) kSlice(rv reflect.Value) {
+	// A slice can be set from a map or array in stream.
+	currEncodedType := f.dd.currentEncodedType()
+
+	switch currEncodedType {
+	case valueTypeBytes, valueTypeString:
+		if f.ti.rtid == uint8SliceTypId || f.ti.rt.Elem().Kind() == reflect.Uint8 {
+			if bs2, changed2 := f.dd.decodeBytes(rv.Bytes()); changed2 {
+				rv.SetBytes(bs2)
+			}
+			return
+		}
+	}
+
+	if shortCircuitReflectToFastPath && rv.CanAddr() {
+		switch f.ti.rtid {
+		case intfSliceTypId:
+			f.d.decSliceIntf(rv.Addr().Interface().(*[]interface{}), currEncodedType, f.array)
+			return
+		case uint64SliceTypId:
+			f.d.decSliceUint64(rv.Addr().Interface().(*[]uint64), currEncodedType, f.array)
+			return
+		case int64SliceTypId:
+			f.d.decSliceInt64(rv.Addr().Interface().(*[]int64), currEncodedType, f.array)
+			return
+		case strSliceTypId:
+			f.d.decSliceStr(rv.Addr().Interface().(*[]string), currEncodedType, f.array)
+			return
+		}
+	}
+
+	containerLen, containerLenS := decContLens(f.dd, currEncodedType)
+
+	// an array can never return a nil slice. so no need to check f.array here.
+
+	if rv.IsNil() {
+		rv.Set(reflect.MakeSlice(f.ti.rt, containerLenS, containerLenS))
+	}
+
+	if containerLen == 0 {
+		return
+	}
+
+	if rvcap, rvlen := rv.Len(), rv.Cap(); containerLenS > rvcap {
+		if f.array { // !rv.CanSet()
+			decErr(msgDecCannotExpandArr, rvcap, containerLenS)
+		}
+		rvn := reflect.MakeSlice(f.ti.rt, containerLenS, containerLenS)
+		if rvlen > 0 {
+			reflect.Copy(rvn, rv)
+		}
+		rv.Set(rvn)
+	} else if containerLenS > rvlen {
+		rv.SetLen(containerLenS)
+	}
+
+	for j := 0; j < containerLenS; j++ {
+		f.d.decodeValue(rv.Index(j))
+	}
+}
+
+func (f *decFnInfo) kArray(rv reflect.Value) {
+	// f.d.decodeValue(rv.Slice(0, rv.Len()))
+	f.kSlice(rv.Slice(0, rv.Len()))
+}
+
+func (f *decFnInfo) kMap(rv reflect.Value) {
+	if shortCircuitReflectToFastPath && rv.CanAddr() {
+		switch f.ti.rtid {
+		case mapStrIntfTypId:
+			f.d.decMapStrIntf(rv.Addr().Interface().(*map[string]interface{}))
+			return
+		case mapIntfIntfTypId:
+			f.d.decMapIntfIntf(rv.Addr().Interface().(*map[interface{}]interface{}))
+			return
+		case mapInt64IntfTypId:
+			f.d.decMapInt64Intf(rv.Addr().Interface().(*map[int64]interface{}))
+			return
+		case mapUint64IntfTypId:
+			f.d.decMapUint64Intf(rv.Addr().Interface().(*map[uint64]interface{}))
+			return
+		}
+	}
+
+	containerLen := f.dd.readMapLen()
+
+	if rv.IsNil() {
+		rv.Set(reflect.MakeMap(f.ti.rt))
+	}
+
+	if containerLen == 0 {
+		return
+	}
+
+	ktype, vtype := f.ti.rt.Key(), f.ti.rt.Elem()
+	ktypeId := reflect.ValueOf(ktype).Pointer()
+	for j := 0; j < containerLen; j++ {
+		rvk := reflect.New(ktype).Elem()
+		f.d.decodeValue(rvk)
+
+		// special case if a byte array.
+		// if ktype == intfTyp {
+		if ktypeId == intfTypId {
+			rvk = rvk.Elem()
+			if rvk.Type() == uint8SliceTyp {
+				rvk = reflect.ValueOf(string(rvk.Bytes()))
+			}
+		}
+		rvv := rv.MapIndex(rvk)
+		if !rvv.IsValid() {
+			rvv = reflect.New(vtype).Elem()
+		}
+
+		f.d.decodeValue(rvv)
+		rv.SetMapIndex(rvk, rvv)
+	}
+}
+
+// ----------------------------------------
+
+type decFn struct {
+	i *decFnInfo
+	f func(*decFnInfo, reflect.Value)
+}
+
+// A Decoder reads and decodes an object from an input stream in the codec format.
+type Decoder struct {
+	r decReader
+	d decDriver
+	h *BasicHandle
+	f map[uintptr]decFn
+	x []uintptr
+	s []decFn
+}
+
+// NewDecoder returns a Decoder for decoding a stream of bytes from an io.Reader.
+//
+// For efficiency, Users are encouraged to pass in a memory buffered writer
+// (eg bufio.Reader, bytes.Buffer).
+func NewDecoder(r io.Reader, h Handle) *Decoder {
+	z := ioDecReader{
+		r: r,
+	}
+	z.br, _ = r.(io.ByteReader)
+	return &Decoder{r: &z, d: h.newDecDriver(&z), h: h.getBasicHandle()}
+}
+
+// NewDecoderBytes returns a Decoder which efficiently decodes directly
+// from a byte slice with zero copying.
+func NewDecoderBytes(in []byte, h Handle) *Decoder {
+	z := bytesDecReader{
+		b: in,
+		a: len(in),
+	}
+	return &Decoder{r: &z, d: h.newDecDriver(&z), h: h.getBasicHandle()}
+}
+
+// Decode decodes the stream from reader and stores the result in the
+// value pointed to by v. v cannot be a nil pointer. v can also be
+// a reflect.Value of a pointer.
+//
+// Note that a pointer to a nil interface is not a nil pointer.
+// If you do not know what type of stream it is, pass in a pointer to a nil interface.
+// We will decode and store a value in that nil interface.
+//
+// Sample usages:
+//   // Decoding into a non-nil typed value
+//   var f float32
+//   err = codec.NewDecoder(r, handle).Decode(&f)
+//
+//   // Decoding into nil interface
+//   var v interface{}
+//   dec := codec.NewDecoder(r, handle)
+//   err = dec.Decode(&v)
+//
+// When decoding into a nil interface{}, we will decode into an appropriate value based
+// on the contents of the stream:
+//   - Numbers are decoded as float64, int64 or uint64.
+//   - Other values are decoded appropriately depending on the type:
+//     bool, string, []byte, time.Time, etc
+//   - Extensions are decoded as RawExt (if no ext function registered for the tag)
+// Configurations exist on the Handle to override defaults
+// (e.g. for MapType, SliceType and how to decode raw bytes).
+//
+// When decoding into a non-nil interface{} value, the mode of encoding is based on the
+// type of the value. When a value is seen:
+//   - If an extension is registered for it, call that extension function
+//   - If it implements BinaryUnmarshaler, call its UnmarshalBinary(data []byte) error
+//   - Else decode it based on its reflect.Kind
+//
+// There are some special rules when decoding into containers (slice/array/map/struct).
+// Decode will typically use the stream contents to UPDATE the container.
+//   - A map can be decoded from a stream map, by updating matching keys.
+//   - A slice can be decoded from a stream array,
+//     by updating the first n elements, where n is length of the stream.
+//   - A slice can be decoded from a stream map, by decoding as if
+//     it contains a sequence of key-value pairs.
+//   - A struct can be decoded from a stream map, by updating matching fields.
+//   - A struct can be decoded from a stream array,
+//     by updating fields as they occur in the struct (by index).
+//
+// When decoding a stream map or array with length of 0 into a nil map or slice,
+// we reset the destination map or slice to a zero-length value.
+//
+// However, when decoding a stream nil, we reset the destination container
+// to its "zero" value (e.g. nil for slice/map, etc).
+//
+func (d *Decoder) Decode(v interface{}) (err error) {
+	defer panicToErr(&err)
+	d.decode(v)
+	return
+}
+
+func (d *Decoder) decode(iv interface{}) {
+	d.d.initReadNext()
+
+	switch v := iv.(type) {
+	case nil:
+		decErr("Cannot decode into nil.")
+
+	case reflect.Value:
+		d.chkPtrValue(v)
+		d.decodeValue(v.Elem())
+
+	case *string:
+		*v = d.d.decodeString()
+	case *bool:
+		*v = d.d.decodeBool()
+	case *int:
+		*v = int(d.d.decodeInt(intBitsize))
+	case *int8:
+		*v = int8(d.d.decodeInt(8))
+	case *int16:
+		*v = int16(d.d.decodeInt(16))
+	case *int32:
+		*v = int32(d.d.decodeInt(32))
+	case *int64:
+		*v = d.d.decodeInt(64)
+	case *uint:
+		*v = uint(d.d.decodeUint(uintBitsize))
+	case *uint8:
+		*v = uint8(d.d.decodeUint(8))
+	case *uint16:
+		*v = uint16(d.d.decodeUint(16))
+	case *uint32:
+		*v = uint32(d.d.decodeUint(32))
+	case *uint64:
+		*v = d.d.decodeUint(64)
+	case *float32:
+		*v = float32(d.d.decodeFloat(true))
+	case *float64:
+		*v = d.d.decodeFloat(false)
+	case *[]byte:
+		*v, _ = d.d.decodeBytes(*v)
+
+	case *[]interface{}:
+		d.decSliceIntf(v, valueTypeInvalid, false)
+	case *[]uint64:
+		d.decSliceUint64(v, valueTypeInvalid, false)
+	case *[]int64:
+		d.decSliceInt64(v, valueTypeInvalid, false)
+	case *[]string:
+		d.decSliceStr(v, valueTypeInvalid, false)
+	case *map[string]interface{}:
+		d.decMapStrIntf(v)
+	case *map[interface{}]interface{}:
+		d.decMapIntfIntf(v)
+	case *map[uint64]interface{}:
+		d.decMapUint64Intf(v)
+	case *map[int64]interface{}:
+		d.decMapInt64Intf(v)
+
+	case *interface{}:
+		d.decodeValue(reflect.ValueOf(iv).Elem())
+
+	default:
+		rv := reflect.ValueOf(iv)
+		d.chkPtrValue(rv)
+		d.decodeValue(rv.Elem())
+	}
+}
+
+func (d *Decoder) decodeValue(rv reflect.Value) {
+	d.d.initReadNext()
+
+	if d.d.tryDecodeAsNil() {
+		// If value in stream is nil, set the dereferenced value to its "zero" value (if settable)
+		if rv.Kind() == reflect.Ptr {
+			if !rv.IsNil() {
+				rv.Set(reflect.Zero(rv.Type()))
+			}
+			return
+		}
+		// for rv.Kind() == reflect.Ptr {
+		// 	rv = rv.Elem()
+		// }
+		if rv.IsValid() { // rv.CanSet() // always settable, except it's invalid
+			rv.Set(reflect.Zero(rv.Type()))
+		}
+		return
+	}
+
+	// If stream is not containing a nil value, then we can deref to the base
+	// non-pointer value, and decode into that.
+	for rv.Kind() == reflect.Ptr {
+		if rv.IsNil() {
+			rv.Set(reflect.New(rv.Type().Elem()))
+		}
+		rv = rv.Elem()
+	}
+
+	rt := rv.Type()
+	rtid := reflect.ValueOf(rt).Pointer()
+
+	// retrieve or register a focus'ed function for this type
+	// to eliminate need to do the retrieval multiple times
+
+	// if d.f == nil && d.s == nil { debugf("---->Creating new dec f map for type: %v\n", rt) }
+	var fn decFn
+	var ok bool
+	if useMapForCodecCache {
+		fn, ok = d.f[rtid]
+	} else {
+		for i, v := range d.x {
+			if v == rtid {
+				fn, ok = d.s[i], true
+				break
+			}
+		}
+	}
+	if !ok {
+		// debugf("\tCreating new dec fn for type: %v\n", rt)
+		fi := decFnInfo{ti: getTypeInfo(rtid, rt), d: d, dd: d.d}
+		fn.i = &fi
+		// An extension can be registered for any type, regardless of the Kind
+		// (e.g. type BitSet int64, type MyStruct { / * unexported fields * / }, type X []int, etc.
+		//
+		// We can't check if it's an extension byte here first, because the user may have
+		// registered a pointer or non-pointer type, meaning we may have to recurse first
+		// before matching a mapped type, even though the extension byte is already detected.
+		//
+		// NOTE: if decoding into a nil interface{}, we return a non-nil
+		// value except even if the container registers a length of 0.
+		if rtid == rawExtTypId {
+			fn.f = (*decFnInfo).rawExt
+		} else if d.d.isBuiltinType(rtid) {
+			fn.f = (*decFnInfo).builtin
+		} else if xfTag, xfFn := d.h.getDecodeExt(rtid); xfFn != nil {
+			fi.xfTag, fi.xfFn = xfTag, xfFn
+			fn.f = (*decFnInfo).ext
+		} else if supportBinaryMarshal && fi.ti.unm {
+			fn.f = (*decFnInfo).binaryMarshal
+		} else {
+			switch rk := rt.Kind(); rk {
+			case reflect.String:
+				fn.f = (*decFnInfo).kString
+			case reflect.Bool:
+				fn.f = (*decFnInfo).kBool
+			case reflect.Int:
+				fn.f = (*decFnInfo).kInt
+			case reflect.Int64:
+				fn.f = (*decFnInfo).kInt64
+			case reflect.Int32:
+				fn.f = (*decFnInfo).kInt32
+			case reflect.Int8:
+				fn.f = (*decFnInfo).kInt8
+			case reflect.Int16:
+				fn.f = (*decFnInfo).kInt16
+			case reflect.Float32:
+				fn.f = (*decFnInfo).kFloat32
+			case reflect.Float64:
+				fn.f = (*decFnInfo).kFloat64
+			case reflect.Uint8:
+				fn.f = (*decFnInfo).kUint8
+			case reflect.Uint64:
+				fn.f = (*decFnInfo).kUint64
+			case reflect.Uint:
+				fn.f = (*decFnInfo).kUint
+			case reflect.Uint32:
+				fn.f = (*decFnInfo).kUint32
+			case reflect.Uint16:
+				fn.f = (*decFnInfo).kUint16
+			// case reflect.Ptr:
+			// 	fn.f = (*decFnInfo).kPtr
+			case reflect.Interface:
+				fn.f = (*decFnInfo).kInterface
+			case reflect.Struct:
+				fn.f = (*decFnInfo).kStruct
+			case reflect.Slice:
+				fn.f = (*decFnInfo).kSlice
+			case reflect.Array:
+				fi.array = true
+				fn.f = (*decFnInfo).kArray
+			case reflect.Map:
+				fn.f = (*decFnInfo).kMap
+			default:
+				fn.f = (*decFnInfo).kErr
+			}
+		}
+		if useMapForCodecCache {
+			if d.f == nil {
+				d.f = make(map[uintptr]decFn, 16)
+			}
+			d.f[rtid] = fn
+		} else {
+			d.s = append(d.s, fn)
+			d.x = append(d.x, rtid)
+		}
+	}
+
+	fn.f(fn.i, rv)
+
+	return
+}
+
+func (d *Decoder) chkPtrValue(rv reflect.Value) {
+	// We can only decode into a non-nil pointer
+	if rv.Kind() == reflect.Ptr && !rv.IsNil() {
+		return
+	}
+	if !rv.IsValid() {
+		decErr("Cannot decode into a zero (ie invalid) reflect.Value")
+	}
+	if !rv.CanInterface() {
+		decErr("Cannot decode into a value without an interface: %v", rv)
+	}
+	rvi := rv.Interface()
+	decErr("Cannot decode into non-pointer or nil pointer. Got: %v, %T, %v",
+		rv.Kind(), rvi, rvi)
+}
+
+func (d *Decoder) decEmbeddedField(rv reflect.Value, index []int) {
+	// d.decodeValue(rv.FieldByIndex(index))
+	// nil pointers may be here; so reproduce FieldByIndex logic + enhancements
+	for _, j := range index {
+		if rv.Kind() == reflect.Ptr {
+			if rv.IsNil() {
+				rv.Set(reflect.New(rv.Type().Elem()))
+			}
+			// If a pointer, it must be a pointer to struct (based on typeInfo contract)
+			rv = rv.Elem()
+		}
+		rv = rv.Field(j)
+	}
+	d.decodeValue(rv)
+}
+
+// --------------------------------------------------
+
+// short circuit functions for common maps and slices
+
+func (d *Decoder) decSliceIntf(v *[]interface{}, currEncodedType valueType, doNotReset bool) {
+	_, containerLenS := decContLens(d.d, currEncodedType)
+	s := *v
+	if s == nil {
+		s = make([]interface{}, containerLenS, containerLenS)
+	} else if containerLenS > cap(s) {
+		if doNotReset {
+			decErr(msgDecCannotExpandArr, cap(s), containerLenS)
+		}
+		s = make([]interface{}, containerLenS, containerLenS)
+		copy(s, *v)
+	} else if containerLenS > len(s) {
+		s = s[:containerLenS]
+	}
+	for j := 0; j < containerLenS; j++ {
+		d.decode(&s[j])
+	}
+	*v = s
+}
+
+func (d *Decoder) decSliceInt64(v *[]int64, currEncodedType valueType, doNotReset bool) {
+	_, containerLenS := decContLens(d.d, currEncodedType)
+	s := *v
+	if s == nil {
+		s = make([]int64, containerLenS, containerLenS)
+	} else if containerLenS > cap(s) {
+		if doNotReset {
+			decErr(msgDecCannotExpandArr, cap(s), containerLenS)
+		}
+		s = make([]int64, containerLenS, containerLenS)
+		copy(s, *v)
+	} else if containerLenS > len(s) {
+		s = s[:containerLenS]
+	}
+	for j := 0; j < containerLenS; j++ {
+		// d.decode(&s[j])
+		d.d.initReadNext()
+		s[j] = d.d.decodeInt(intBitsize)
+	}
+	*v = s
+}
+
+func (d *Decoder) decSliceUint64(v *[]uint64, currEncodedType valueType, doNotReset bool) {
+	_, containerLenS := decContLens(d.d, currEncodedType)
+	s := *v
+	if s == nil {
+		s = make([]uint64, containerLenS, containerLenS)
+	} else if containerLenS > cap(s) {
+		if doNotReset {
+			decErr(msgDecCannotExpandArr, cap(s), containerLenS)
+		}
+		s = make([]uint64, containerLenS, containerLenS)
+		copy(s, *v)
+	} else if containerLenS > len(s) {
+		s = s[:containerLenS]
+	}
+	for j := 0; j < containerLenS; j++ {
+		// d.decode(&s[j])
+		d.d.initReadNext()
+		s[j] = d.d.decodeUint(intBitsize)
+	}
+	*v = s
+}
+
+func (d *Decoder) decSliceStr(v *[]string, currEncodedType valueType, doNotReset bool) {
+	_, containerLenS := decContLens(d.d, currEncodedType)
+	s := *v
+	if s == nil {
+		s = make([]string, containerLenS, containerLenS)
+	} else if containerLenS > cap(s) {
+		if doNotReset {
+			decErr(msgDecCannotExpandArr, cap(s), containerLenS)
+		}
+		s = make([]string, containerLenS, containerLenS)
+		copy(s, *v)
+	} else if containerLenS > len(s) {
+		s = s[:containerLenS]
+	}
+	for j := 0; j < containerLenS; j++ {
+		// d.decode(&s[j])
+		d.d.initReadNext()
+		s[j] = d.d.decodeString()
+	}
+	*v = s
+}
+
+func (d *Decoder) decMapIntfIntf(v *map[interface{}]interface{}) {
+	containerLen := d.d.readMapLen()
+	m := *v
+	if m == nil {
+		m = make(map[interface{}]interface{}, containerLen)
+		*v = m
+	}
+	for j := 0; j < containerLen; j++ {
+		var mk interface{}
+		d.decode(&mk)
+		// special case if a byte array.
+		if bv, bok := mk.([]byte); bok {
+			mk = string(bv)
+		}
+		mv := m[mk]
+		d.decode(&mv)
+		m[mk] = mv
+	}
+}
+
+func (d *Decoder) decMapInt64Intf(v *map[int64]interface{}) {
+	containerLen := d.d.readMapLen()
+	m := *v
+	if m == nil {
+		m = make(map[int64]interface{}, containerLen)
+		*v = m
+	}
+	for j := 0; j < containerLen; j++ {
+		d.d.initReadNext()
+		mk := d.d.decodeInt(intBitsize)
+		mv := m[mk]
+		d.decode(&mv)
+		m[mk] = mv
+	}
+}
+
+func (d *Decoder) decMapUint64Intf(v *map[uint64]interface{}) {
+	containerLen := d.d.readMapLen()
+	m := *v
+	if m == nil {
+		m = make(map[uint64]interface{}, containerLen)
+		*v = m
+	}
+	for j := 0; j < containerLen; j++ {
+		d.d.initReadNext()
+		mk := d.d.decodeUint(intBitsize)
+		mv := m[mk]
+		d.decode(&mv)
+		m[mk] = mv
+	}
+}
+
+func (d *Decoder) decMapStrIntf(v *map[string]interface{}) {
+	containerLen := d.d.readMapLen()
+	m := *v
+	if m == nil {
+		m = make(map[string]interface{}, containerLen)
+		*v = m
+	}
+	for j := 0; j < containerLen; j++ {
+		d.d.initReadNext()
+		mk := d.d.decodeString()
+		mv := m[mk]
+		d.decode(&mv)
+		m[mk] = mv
+	}
+}
+
+// ----------------------------------------
+
+func decContLens(dd decDriver, currEncodedType valueType) (containerLen, containerLenS int) {
+	if currEncodedType == valueTypeInvalid {
+		currEncodedType = dd.currentEncodedType()
+	}
+	switch currEncodedType {
+	case valueTypeArray:
+		containerLen = dd.readArrayLen()
+		containerLenS = containerLen
+	case valueTypeMap:
+		containerLen = dd.readMapLen()
+		containerLenS = containerLen * 2
+	default:
+		decErr("Only encoded map or array can be decoded into a slice. (valueType: %0x)",
+			currEncodedType)
+	}
+	return
+}
+
+func decErr(format string, params ...interface{}) {
+	doPanic(msgTagDec, format, params...)
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/encode.go b/vendor/github.com/hashicorp/go-msgpack/codec/encode.go
new file mode 100644
index 0000000000..4914be0c74
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/encode.go
@@ -0,0 +1,1001 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import (
+	"io"
+	"reflect"
+)
+
+const (
+	// Some tagging information for error messages.
+	msgTagEnc         = "codec.encoder"
+	defEncByteBufSize = 1 << 6 // 4:16, 6:64, 8:256, 10:1024
+	// maxTimeSecs32 = math.MaxInt32 / 60 / 24 / 366
+)
+
+// AsSymbolFlag defines what should be encoded as symbols.
+type AsSymbolFlag uint8
+
+const (
+	// AsSymbolDefault is default.
+	// Currently, this means only encode struct field names as symbols.
+	// The default is subject to change.
+	AsSymbolDefault AsSymbolFlag = iota
+
+	// AsSymbolAll means encode anything which could be a symbol as a symbol.
+	AsSymbolAll = 0xfe
+
+	// AsSymbolNone means do not encode anything as a symbol.
+	AsSymbolNone = 1 << iota
+
+	// AsSymbolMapStringKeys means encode keys in map[string]XXX as symbols.
+	AsSymbolMapStringKeysFlag
+
+	// AsSymbolStructFieldName means encode struct field names as symbols.
+	AsSymbolStructFieldNameFlag
+)
+
+// encWriter abstracting writing to a byte array or to an io.Writer.
+type encWriter interface {
+	writeUint16(uint16)
+	writeUint32(uint32)
+	writeUint64(uint64)
+	writeb([]byte)
+	writestr(string)
+	writen1(byte)
+	writen2(byte, byte)
+	atEndOfEncode()
+}
+
+// encDriver abstracts the actual codec (binc vs msgpack, etc)
+type encDriver interface {
+	isBuiltinType(rt uintptr) bool
+	encodeBuiltin(rt uintptr, v interface{})
+	encodeNil()
+	encodeInt(i int64)
+	encodeUint(i uint64)
+	encodeBool(b bool)
+	encodeFloat32(f float32)
+	encodeFloat64(f float64)
+	encodeExtPreamble(xtag byte, length int)
+	encodeArrayPreamble(length int)
+	encodeMapPreamble(length int)
+	encodeString(c charEncoding, v string)
+	encodeSymbol(v string)
+	encodeStringBytes(c charEncoding, v []byte)
+	//TODO
+	//encBignum(f *big.Int)
+	//encStringRunes(c charEncoding, v []rune)
+}
+
+type ioEncWriterWriter interface {
+	WriteByte(c byte) error
+	WriteString(s string) (n int, err error)
+	Write(p []byte) (n int, err error)
+}
+
+type ioEncStringWriter interface {
+	WriteString(s string) (n int, err error)
+}
+
+type EncodeOptions struct {
+	// Encode a struct as an array, and not as a map.
+	StructToArray bool
+
+	// AsSymbols defines what should be encoded as symbols.
+	//
+	// Encoding as symbols can reduce the encoded size significantly.
+	//
+	// However, during decoding, each string to be encoded as a symbol must
+	// be checked to see if it has been seen before. Consequently, encoding time
+	// will increase if using symbols, because string comparisons has a clear cost.
+	//
+	// Sample values:
+	//   AsSymbolNone
+	//   AsSymbolAll
+	//   AsSymbolMapStringKeys
+	//   AsSymbolMapStringKeysFlag | AsSymbolStructFieldNameFlag
+	AsSymbols AsSymbolFlag
+}
+
+// ---------------------------------------------
+
+type simpleIoEncWriterWriter struct {
+	w  io.Writer
+	bw io.ByteWriter
+	sw ioEncStringWriter
+}
+
+func (o *simpleIoEncWriterWriter) WriteByte(c byte) (err error) {
+	if o.bw != nil {
+		return o.bw.WriteByte(c)
+	}
+	_, err = o.w.Write([]byte{c})
+	return
+}
+
+func (o *simpleIoEncWriterWriter) WriteString(s string) (n int, err error) {
+	if o.sw != nil {
+		return o.sw.WriteString(s)
+	}
+	return o.w.Write([]byte(s))
+}
+
+func (o *simpleIoEncWriterWriter) Write(p []byte) (n int, err error) {
+	return o.w.Write(p)
+}
+
+// ----------------------------------------
+
+// ioEncWriter implements encWriter and can write to an io.Writer implementation
+type ioEncWriter struct {
+	w ioEncWriterWriter
+	x [8]byte // temp byte array re-used internally for efficiency
+}
+
+func (z *ioEncWriter) writeUint16(v uint16) {
+	bigen.PutUint16(z.x[:2], v)
+	z.writeb(z.x[:2])
+}
+
+func (z *ioEncWriter) writeUint32(v uint32) {
+	bigen.PutUint32(z.x[:4], v)
+	z.writeb(z.x[:4])
+}
+
+func (z *ioEncWriter) writeUint64(v uint64) {
+	bigen.PutUint64(z.x[:8], v)
+	z.writeb(z.x[:8])
+}
+
+func (z *ioEncWriter) writeb(bs []byte) {
+	if len(bs) == 0 {
+		return
+	}
+	n, err := z.w.Write(bs)
+	if err != nil {
+		panic(err)
+	}
+	if n != len(bs) {
+		encErr("write: Incorrect num bytes written. Expecting: %v, Wrote: %v", len(bs), n)
+	}
+}
+
+func (z *ioEncWriter) writestr(s string) {
+	n, err := z.w.WriteString(s)
+	if err != nil {
+		panic(err)
+	}
+	if n != len(s) {
+		encErr("write: Incorrect num bytes written. Expecting: %v, Wrote: %v", len(s), n)
+	}
+}
+
+func (z *ioEncWriter) writen1(b byte) {
+	if err := z.w.WriteByte(b); err != nil {
+		panic(err)
+	}
+}
+
+func (z *ioEncWriter) writen2(b1 byte, b2 byte) {
+	z.writen1(b1)
+	z.writen1(b2)
+}
+
+func (z *ioEncWriter) atEndOfEncode() {}
+
+// ----------------------------------------
+
+// bytesEncWriter implements encWriter and can write to an byte slice.
+// It is used by Marshal function.
+type bytesEncWriter struct {
+	b   []byte
+	c   int     // cursor
+	out *[]byte // write out on atEndOfEncode
+}
+
+func (z *bytesEncWriter) writeUint16(v uint16) {
+	c := z.grow(2)
+	z.b[c] = byte(v >> 8)
+	z.b[c+1] = byte(v)
+}
+
+func (z *bytesEncWriter) writeUint32(v uint32) {
+	c := z.grow(4)
+	z.b[c] = byte(v >> 24)
+	z.b[c+1] = byte(v >> 16)
+	z.b[c+2] = byte(v >> 8)
+	z.b[c+3] = byte(v)
+}
+
+func (z *bytesEncWriter) writeUint64(v uint64) {
+	c := z.grow(8)
+	z.b[c] = byte(v >> 56)
+	z.b[c+1] = byte(v >> 48)
+	z.b[c+2] = byte(v >> 40)
+	z.b[c+3] = byte(v >> 32)
+	z.b[c+4] = byte(v >> 24)
+	z.b[c+5] = byte(v >> 16)
+	z.b[c+6] = byte(v >> 8)
+	z.b[c+7] = byte(v)
+}
+
+func (z *bytesEncWriter) writeb(s []byte) {
+	if len(s) == 0 {
+		return
+	}
+	c := z.grow(len(s))
+	copy(z.b[c:], s)
+}
+
+func (z *bytesEncWriter) writestr(s string) {
+	c := z.grow(len(s))
+	copy(z.b[c:], s)
+}
+
+func (z *bytesEncWriter) writen1(b1 byte) {
+	c := z.grow(1)
+	z.b[c] = b1
+}
+
+func (z *bytesEncWriter) writen2(b1 byte, b2 byte) {
+	c := z.grow(2)
+	z.b[c] = b1
+	z.b[c+1] = b2
+}
+
+func (z *bytesEncWriter) atEndOfEncode() {
+	*(z.out) = z.b[:z.c]
+}
+
+func (z *bytesEncWriter) grow(n int) (oldcursor int) {
+	oldcursor = z.c
+	z.c = oldcursor + n
+	if z.c > cap(z.b) {
+		// Tried using appendslice logic: (if cap < 1024, *2, else *1.25).
+		// However, it was too expensive, causing too many iterations of copy.
+		// Using bytes.Buffer model was much better (2*cap + n)
+		bs := make([]byte, 2*cap(z.b)+n)
+		copy(bs, z.b[:oldcursor])
+		z.b = bs
+	} else if z.c > len(z.b) {
+		z.b = z.b[:cap(z.b)]
+	}
+	return
+}
+
+// ---------------------------------------------
+
+type encFnInfo struct {
+	ti    *typeInfo
+	e     *Encoder
+	ee    encDriver
+	xfFn  func(reflect.Value) ([]byte, error)
+	xfTag byte
+}
+
+func (f *encFnInfo) builtin(rv reflect.Value) {
+	f.ee.encodeBuiltin(f.ti.rtid, rv.Interface())
+}
+
+func (f *encFnInfo) rawExt(rv reflect.Value) {
+	f.e.encRawExt(rv.Interface().(RawExt))
+}
+
+func (f *encFnInfo) ext(rv reflect.Value) {
+	bs, fnerr := f.xfFn(rv)
+	if fnerr != nil {
+		panic(fnerr)
+	}
+	if bs == nil {
+		f.ee.encodeNil()
+		return
+	}
+	if f.e.hh.writeExt() {
+		f.ee.encodeExtPreamble(f.xfTag, len(bs))
+		f.e.w.writeb(bs)
+	} else {
+		f.ee.encodeStringBytes(c_RAW, bs)
+	}
+
+}
+
+func (f *encFnInfo) binaryMarshal(rv reflect.Value) {
+	var bm binaryMarshaler
+	if f.ti.mIndir == 0 {
+		bm = rv.Interface().(binaryMarshaler)
+	} else if f.ti.mIndir == -1 {
+		bm = rv.Addr().Interface().(binaryMarshaler)
+	} else {
+		for j, k := int8(0), f.ti.mIndir; j < k; j++ {
+			if rv.IsNil() {
+				f.ee.encodeNil()
+				return
+			}
+			rv = rv.Elem()
+		}
+		bm = rv.Interface().(binaryMarshaler)
+	}
+	// debugf(">>>> binaryMarshaler: %T", rv.Interface())
+	bs, fnerr := bm.MarshalBinary()
+	if fnerr != nil {
+		panic(fnerr)
+	}
+	if bs == nil {
+		f.ee.encodeNil()
+	} else {
+		f.ee.encodeStringBytes(c_RAW, bs)
+	}
+}
+
+func (f *encFnInfo) kBool(rv reflect.Value) {
+	f.ee.encodeBool(rv.Bool())
+}
+
+func (f *encFnInfo) kString(rv reflect.Value) {
+	f.ee.encodeString(c_UTF8, rv.String())
+}
+
+func (f *encFnInfo) kFloat64(rv reflect.Value) {
+	f.ee.encodeFloat64(rv.Float())
+}
+
+func (f *encFnInfo) kFloat32(rv reflect.Value) {
+	f.ee.encodeFloat32(float32(rv.Float()))
+}
+
+func (f *encFnInfo) kInt(rv reflect.Value) {
+	f.ee.encodeInt(rv.Int())
+}
+
+func (f *encFnInfo) kUint(rv reflect.Value) {
+	f.ee.encodeUint(rv.Uint())
+}
+
+func (f *encFnInfo) kInvalid(rv reflect.Value) {
+	f.ee.encodeNil()
+}
+
+func (f *encFnInfo) kErr(rv reflect.Value) {
+	encErr("Unsupported kind: %s, for: %#v", rv.Kind(), rv)
+}
+
+func (f *encFnInfo) kSlice(rv reflect.Value) {
+	if rv.IsNil() {
+		f.ee.encodeNil()
+		return
+	}
+
+	if shortCircuitReflectToFastPath {
+		switch f.ti.rtid {
+		case intfSliceTypId:
+			f.e.encSliceIntf(rv.Interface().([]interface{}))
+			return
+		case strSliceTypId:
+			f.e.encSliceStr(rv.Interface().([]string))
+			return
+		case uint64SliceTypId:
+			f.e.encSliceUint64(rv.Interface().([]uint64))
+			return
+		case int64SliceTypId:
+			f.e.encSliceInt64(rv.Interface().([]int64))
+			return
+		}
+	}
+
+	// If in this method, then there was no extension function defined.
+	// So it's okay to treat as []byte.
+	if f.ti.rtid == uint8SliceTypId || f.ti.rt.Elem().Kind() == reflect.Uint8 {
+		f.ee.encodeStringBytes(c_RAW, rv.Bytes())
+		return
+	}
+
+	l := rv.Len()
+	if f.ti.mbs {
+		if l%2 == 1 {
+			encErr("mapBySlice: invalid length (must be divisible by 2): %v", l)
+		}
+		f.ee.encodeMapPreamble(l / 2)
+	} else {
+		f.ee.encodeArrayPreamble(l)
+	}
+	if l == 0 {
+		return
+	}
+	for j := 0; j < l; j++ {
+		// TODO: Consider perf implication of encoding odd index values as symbols if type is string
+		f.e.encodeValue(rv.Index(j))
+	}
+}
+
+func (f *encFnInfo) kArray(rv reflect.Value) {
+	// We cannot share kSlice method, because the array may be non-addressable.
+	// E.g. type struct S{B [2]byte}; Encode(S{}) will bomb on "panic: slice of unaddressable array".
+	// So we have to duplicate the functionality here.
+	// f.e.encodeValue(rv.Slice(0, rv.Len()))
+	// f.kSlice(rv.Slice(0, rv.Len()))
+
+	l := rv.Len()
+	// Handle an array of bytes specially (in line with what is done for slices)
+	if f.ti.rt.Elem().Kind() == reflect.Uint8 {
+		if l == 0 {
+			f.ee.encodeStringBytes(c_RAW, nil)
+			return
+		}
+		var bs []byte
+		if rv.CanAddr() {
+			bs = rv.Slice(0, l).Bytes()
+		} else {
+			bs = make([]byte, l)
+			for i := 0; i < l; i++ {
+				bs[i] = byte(rv.Index(i).Uint())
+			}
+		}
+		f.ee.encodeStringBytes(c_RAW, bs)
+		return
+	}
+
+	if f.ti.mbs {
+		if l%2 == 1 {
+			encErr("mapBySlice: invalid length (must be divisible by 2): %v", l)
+		}
+		f.ee.encodeMapPreamble(l / 2)
+	} else {
+		f.ee.encodeArrayPreamble(l)
+	}
+	if l == 0 {
+		return
+	}
+	for j := 0; j < l; j++ {
+		// TODO: Consider perf implication of encoding odd index values as symbols if type is string
+		f.e.encodeValue(rv.Index(j))
+	}
+}
+
+func (f *encFnInfo) kStruct(rv reflect.Value) {
+	fti := f.ti
+	newlen := len(fti.sfi)
+	rvals := make([]reflect.Value, newlen)
+	var encnames []string
+	e := f.e
+	tisfi := fti.sfip
+	toMap := !(fti.toArray || e.h.StructToArray)
+	// if toMap, use the sorted array. If toArray, use unsorted array (to match sequence in struct)
+	if toMap {
+		tisfi = fti.sfi
+		encnames = make([]string, newlen)
+	}
+	newlen = 0
+	for _, si := range tisfi {
+		if si.i != -1 {
+			rvals[newlen] = rv.Field(int(si.i))
+		} else {
+			rvals[newlen] = rv.FieldByIndex(si.is)
+		}
+		if toMap {
+			if si.omitEmpty && isEmptyValue(rvals[newlen]) {
+				continue
+			}
+			encnames[newlen] = si.encName
+		} else {
+			if si.omitEmpty && isEmptyValue(rvals[newlen]) {
+				rvals[newlen] = reflect.Value{} //encode as nil
+			}
+		}
+		newlen++
+	}
+
+	// debugf(">>>> kStruct: newlen: %v", newlen)
+	if toMap {
+		ee := f.ee //don't dereference everytime
+		ee.encodeMapPreamble(newlen)
+		// asSymbols := e.h.AsSymbols&AsSymbolStructFieldNameFlag != 0
+		asSymbols := e.h.AsSymbols == AsSymbolDefault || e.h.AsSymbols&AsSymbolStructFieldNameFlag != 0
+		for j := 0; j < newlen; j++ {
+			if asSymbols {
+				ee.encodeSymbol(encnames[j])
+			} else {
+				ee.encodeString(c_UTF8, encnames[j])
+			}
+			e.encodeValue(rvals[j])
+		}
+	} else {
+		f.ee.encodeArrayPreamble(newlen)
+		for j := 0; j < newlen; j++ {
+			e.encodeValue(rvals[j])
+		}
+	}
+}
+
+// func (f *encFnInfo) kPtr(rv reflect.Value) {
+// 	debugf(">>>>>>> ??? encode kPtr called - shouldn't get called")
+// 	if rv.IsNil() {
+// 		f.ee.encodeNil()
+// 		return
+// 	}
+// 	f.e.encodeValue(rv.Elem())
+// }
+
+func (f *encFnInfo) kInterface(rv reflect.Value) {
+	if rv.IsNil() {
+		f.ee.encodeNil()
+		return
+	}
+	f.e.encodeValue(rv.Elem())
+}
+
+func (f *encFnInfo) kMap(rv reflect.Value) {
+	if rv.IsNil() {
+		f.ee.encodeNil()
+		return
+	}
+
+	if shortCircuitReflectToFastPath {
+		switch f.ti.rtid {
+		case mapIntfIntfTypId:
+			f.e.encMapIntfIntf(rv.Interface().(map[interface{}]interface{}))
+			return
+		case mapStrIntfTypId:
+			f.e.encMapStrIntf(rv.Interface().(map[string]interface{}))
+			return
+		case mapStrStrTypId:
+			f.e.encMapStrStr(rv.Interface().(map[string]string))
+			return
+		case mapInt64IntfTypId:
+			f.e.encMapInt64Intf(rv.Interface().(map[int64]interface{}))
+			return
+		case mapUint64IntfTypId:
+			f.e.encMapUint64Intf(rv.Interface().(map[uint64]interface{}))
+			return
+		}
+	}
+
+	l := rv.Len()
+	f.ee.encodeMapPreamble(l)
+	if l == 0 {
+		return
+	}
+	// keyTypeIsString := f.ti.rt.Key().Kind() == reflect.String
+	keyTypeIsString := f.ti.rt.Key() == stringTyp
+	var asSymbols bool
+	if keyTypeIsString {
+		asSymbols = f.e.h.AsSymbols&AsSymbolMapStringKeysFlag != 0
+	}
+	mks := rv.MapKeys()
+	// for j, lmks := 0, len(mks); j < lmks; j++ {
+	for j := range mks {
+		if keyTypeIsString {
+			if asSymbols {
+				f.ee.encodeSymbol(mks[j].String())
+			} else {
+				f.ee.encodeString(c_UTF8, mks[j].String())
+			}
+		} else {
+			f.e.encodeValue(mks[j])
+		}
+		f.e.encodeValue(rv.MapIndex(mks[j]))
+	}
+
+}
+
+// --------------------------------------------------
+
+// encFn encapsulates the captured variables and the encode function.
+// This way, we only do some calculations one times, and pass to the
+// code block that should be called (encapsulated in a function)
+// instead of executing the checks every time.
+type encFn struct {
+	i *encFnInfo
+	f func(*encFnInfo, reflect.Value)
+}
+
+// --------------------------------------------------
+
+// An Encoder writes an object to an output stream in the codec format.
+type Encoder struct {
+	w  encWriter
+	e  encDriver
+	h  *BasicHandle
+	hh Handle
+	f  map[uintptr]encFn
+	x  []uintptr
+	s  []encFn
+}
+
+// NewEncoder returns an Encoder for encoding into an io.Writer.
+//
+// For efficiency, Users are encouraged to pass in a memory buffered writer
+// (eg bufio.Writer, bytes.Buffer).
+func NewEncoder(w io.Writer, h Handle) *Encoder {
+	ww, ok := w.(ioEncWriterWriter)
+	if !ok {
+		sww := simpleIoEncWriterWriter{w: w}
+		sww.bw, _ = w.(io.ByteWriter)
+		sww.sw, _ = w.(ioEncStringWriter)
+		ww = &sww
+		//ww = bufio.NewWriterSize(w, defEncByteBufSize)
+	}
+	z := ioEncWriter{
+		w: ww,
+	}
+	return &Encoder{w: &z, hh: h, h: h.getBasicHandle(), e: h.newEncDriver(&z)}
+}
+
+// NewEncoderBytes returns an encoder for encoding directly and efficiently
+// into a byte slice, using zero-copying to temporary slices.
+//
+// It will potentially replace the output byte slice pointed to.
+// After encoding, the out parameter contains the encoded contents.
+func NewEncoderBytes(out *[]byte, h Handle) *Encoder {
+	in := *out
+	if in == nil {
+		in = make([]byte, defEncByteBufSize)
+	}
+	z := bytesEncWriter{
+		b:   in,
+		out: out,
+	}
+	return &Encoder{w: &z, hh: h, h: h.getBasicHandle(), e: h.newEncDriver(&z)}
+}
+
+// Encode writes an object into a stream in the codec format.
+//
+// Encoding can be configured via the "codec" struct tag for the fields.
+//
+// The "codec" key in struct field's tag value is the key name,
+// followed by an optional comma and options.
+//
+// To set an option on all fields (e.g. omitempty on all fields), you
+// can create a field called _struct, and set flags on it.
+//
+// Struct values "usually" encode as maps. Each exported struct field is encoded unless:
+//    - the field's codec tag is "-", OR
+//    - the field is empty and its codec tag specifies the "omitempty" option.
+//
+// When encoding as a map, the first string in the tag (before the comma)
+// is the map key string to use when encoding.
+//
+// However, struct values may encode as arrays. This happens when:
+//    - StructToArray Encode option is set, OR
+//    - the codec tag on the _struct field sets the "toarray" option
+//
+// Values with types that implement MapBySlice are encoded as stream maps.
+//
+// The empty values (for omitempty option) are false, 0, any nil pointer
+// or interface value, and any array, slice, map, or string of length zero.
+//
+// Anonymous fields are encoded inline if no struct tag is present.
+// Else they are encoded as regular fields.
+//
+// Examples:
+//
+//      type MyStruct struct {
+//          _struct bool    `codec:",omitempty"`   //set omitempty for every field
+//          Field1 string   `codec:"-"`            //skip this field
+//          Field2 int      `codec:"myName"`       //Use key "myName" in encode stream
+//          Field3 int32    `codec:",omitempty"`   //use key "Field3". Omit if empty.
+//          Field4 bool     `codec:"f4,omitempty"` //use key "f4". Omit if empty.
+//          ...
+//      }
+//
+//      type MyStruct struct {
+//          _struct bool    `codec:",omitempty,toarray"`   //set omitempty for every field
+//                                                         //and encode struct as an array
+//      }
+//
+// The mode of encoding is based on the type of the value. When a value is seen:
+//   - If an extension is registered for it, call that extension function
+//   - If it implements BinaryMarshaler, call its MarshalBinary() (data []byte, err error)
+//   - Else encode it based on its reflect.Kind
+//
+// Note that struct field names and keys in map[string]XXX will be treated as symbols.
+// Some formats support symbols (e.g. binc) and will properly encode the string
+// only once in the stream, and use a tag to refer to it thereafter.
+func (e *Encoder) Encode(v interface{}) (err error) {
+	defer panicToErr(&err)
+	e.encode(v)
+	e.w.atEndOfEncode()
+	return
+}
+
+func (e *Encoder) encode(iv interface{}) {
+	switch v := iv.(type) {
+	case nil:
+		e.e.encodeNil()
+
+	case reflect.Value:
+		e.encodeValue(v)
+
+	case string:
+		e.e.encodeString(c_UTF8, v)
+	case bool:
+		e.e.encodeBool(v)
+	case int:
+		e.e.encodeInt(int64(v))
+	case int8:
+		e.e.encodeInt(int64(v))
+	case int16:
+		e.e.encodeInt(int64(v))
+	case int32:
+		e.e.encodeInt(int64(v))
+	case int64:
+		e.e.encodeInt(v)
+	case uint:
+		e.e.encodeUint(uint64(v))
+	case uint8:
+		e.e.encodeUint(uint64(v))
+	case uint16:
+		e.e.encodeUint(uint64(v))
+	case uint32:
+		e.e.encodeUint(uint64(v))
+	case uint64:
+		e.e.encodeUint(v)
+	case float32:
+		e.e.encodeFloat32(v)
+	case float64:
+		e.e.encodeFloat64(v)
+
+	case []interface{}:
+		e.encSliceIntf(v)
+	case []string:
+		e.encSliceStr(v)
+	case []int64:
+		e.encSliceInt64(v)
+	case []uint64:
+		e.encSliceUint64(v)
+	case []uint8:
+		e.e.encodeStringBytes(c_RAW, v)
+
+	case map[interface{}]interface{}:
+		e.encMapIntfIntf(v)
+	case map[string]interface{}:
+		e.encMapStrIntf(v)
+	case map[string]string:
+		e.encMapStrStr(v)
+	case map[int64]interface{}:
+		e.encMapInt64Intf(v)
+	case map[uint64]interface{}:
+		e.encMapUint64Intf(v)
+
+	case *string:
+		e.e.encodeString(c_UTF8, *v)
+	case *bool:
+		e.e.encodeBool(*v)
+	case *int:
+		e.e.encodeInt(int64(*v))
+	case *int8:
+		e.e.encodeInt(int64(*v))
+	case *int16:
+		e.e.encodeInt(int64(*v))
+	case *int32:
+		e.e.encodeInt(int64(*v))
+	case *int64:
+		e.e.encodeInt(*v)
+	case *uint:
+		e.e.encodeUint(uint64(*v))
+	case *uint8:
+		e.e.encodeUint(uint64(*v))
+	case *uint16:
+		e.e.encodeUint(uint64(*v))
+	case *uint32:
+		e.e.encodeUint(uint64(*v))
+	case *uint64:
+		e.e.encodeUint(*v)
+	case *float32:
+		e.e.encodeFloat32(*v)
+	case *float64:
+		e.e.encodeFloat64(*v)
+
+	case *[]interface{}:
+		e.encSliceIntf(*v)
+	case *[]string:
+		e.encSliceStr(*v)
+	case *[]int64:
+		e.encSliceInt64(*v)
+	case *[]uint64:
+		e.encSliceUint64(*v)
+	case *[]uint8:
+		e.e.encodeStringBytes(c_RAW, *v)
+
+	case *map[interface{}]interface{}:
+		e.encMapIntfIntf(*v)
+	case *map[string]interface{}:
+		e.encMapStrIntf(*v)
+	case *map[string]string:
+		e.encMapStrStr(*v)
+	case *map[int64]interface{}:
+		e.encMapInt64Intf(*v)
+	case *map[uint64]interface{}:
+		e.encMapUint64Intf(*v)
+
+	default:
+		e.encodeValue(reflect.ValueOf(iv))
+	}
+}
+
+func (e *Encoder) encodeValue(rv reflect.Value) {
+	for rv.Kind() == reflect.Ptr {
+		if rv.IsNil() {
+			e.e.encodeNil()
+			return
+		}
+		rv = rv.Elem()
+	}
+
+	rt := rv.Type()
+	rtid := reflect.ValueOf(rt).Pointer()
+
+	// if e.f == nil && e.s == nil { debugf("---->Creating new enc f map for type: %v\n", rt) }
+	var fn encFn
+	var ok bool
+	if useMapForCodecCache {
+		fn, ok = e.f[rtid]
+	} else {
+		for i, v := range e.x {
+			if v == rtid {
+				fn, ok = e.s[i], true
+				break
+			}
+		}
+	}
+	if !ok {
+		// debugf("\tCreating new enc fn for type: %v\n", rt)
+		fi := encFnInfo{ti: getTypeInfo(rtid, rt), e: e, ee: e.e}
+		fn.i = &fi
+		if rtid == rawExtTypId {
+			fn.f = (*encFnInfo).rawExt
+		} else if e.e.isBuiltinType(rtid) {
+			fn.f = (*encFnInfo).builtin
+		} else if xfTag, xfFn := e.h.getEncodeExt(rtid); xfFn != nil {
+			fi.xfTag, fi.xfFn = xfTag, xfFn
+			fn.f = (*encFnInfo).ext
+		} else if supportBinaryMarshal && fi.ti.m {
+			fn.f = (*encFnInfo).binaryMarshal
+		} else {
+			switch rk := rt.Kind(); rk {
+			case reflect.Bool:
+				fn.f = (*encFnInfo).kBool
+			case reflect.String:
+				fn.f = (*encFnInfo).kString
+			case reflect.Float64:
+				fn.f = (*encFnInfo).kFloat64
+			case reflect.Float32:
+				fn.f = (*encFnInfo).kFloat32
+			case reflect.Int, reflect.Int8, reflect.Int64, reflect.Int32, reflect.Int16:
+				fn.f = (*encFnInfo).kInt
+			case reflect.Uint8, reflect.Uint64, reflect.Uint, reflect.Uint32, reflect.Uint16:
+				fn.f = (*encFnInfo).kUint
+			case reflect.Invalid:
+				fn.f = (*encFnInfo).kInvalid
+			case reflect.Slice:
+				fn.f = (*encFnInfo).kSlice
+			case reflect.Array:
+				fn.f = (*encFnInfo).kArray
+			case reflect.Struct:
+				fn.f = (*encFnInfo).kStruct
+			// case reflect.Ptr:
+			// 	fn.f = (*encFnInfo).kPtr
+			case reflect.Interface:
+				fn.f = (*encFnInfo).kInterface
+			case reflect.Map:
+				fn.f = (*encFnInfo).kMap
+			default:
+				fn.f = (*encFnInfo).kErr
+			}
+		}
+		if useMapForCodecCache {
+			if e.f == nil {
+				e.f = make(map[uintptr]encFn, 16)
+			}
+			e.f[rtid] = fn
+		} else {
+			e.s = append(e.s, fn)
+			e.x = append(e.x, rtid)
+		}
+	}
+
+	fn.f(fn.i, rv)
+
+}
+
+func (e *Encoder) encRawExt(re RawExt) {
+	if re.Data == nil {
+		e.e.encodeNil()
+		return
+	}
+	if e.hh.writeExt() {
+		e.e.encodeExtPreamble(re.Tag, len(re.Data))
+		e.w.writeb(re.Data)
+	} else {
+		e.e.encodeStringBytes(c_RAW, re.Data)
+	}
+}
+
+// ---------------------------------------------
+// short circuit functions for common maps and slices
+
+func (e *Encoder) encSliceIntf(v []interface{}) {
+	e.e.encodeArrayPreamble(len(v))
+	for _, v2 := range v {
+		e.encode(v2)
+	}
+}
+
+func (e *Encoder) encSliceStr(v []string) {
+	e.e.encodeArrayPreamble(len(v))
+	for _, v2 := range v {
+		e.e.encodeString(c_UTF8, v2)
+	}
+}
+
+func (e *Encoder) encSliceInt64(v []int64) {
+	e.e.encodeArrayPreamble(len(v))
+	for _, v2 := range v {
+		e.e.encodeInt(v2)
+	}
+}
+
+func (e *Encoder) encSliceUint64(v []uint64) {
+	e.e.encodeArrayPreamble(len(v))
+	for _, v2 := range v {
+		e.e.encodeUint(v2)
+	}
+}
+
+func (e *Encoder) encMapStrStr(v map[string]string) {
+	e.e.encodeMapPreamble(len(v))
+	asSymbols := e.h.AsSymbols&AsSymbolMapStringKeysFlag != 0
+	for k2, v2 := range v {
+		if asSymbols {
+			e.e.encodeSymbol(k2)
+		} else {
+			e.e.encodeString(c_UTF8, k2)
+		}
+		e.e.encodeString(c_UTF8, v2)
+	}
+}
+
+func (e *Encoder) encMapStrIntf(v map[string]interface{}) {
+	e.e.encodeMapPreamble(len(v))
+	asSymbols := e.h.AsSymbols&AsSymbolMapStringKeysFlag != 0
+	for k2, v2 := range v {
+		if asSymbols {
+			e.e.encodeSymbol(k2)
+		} else {
+			e.e.encodeString(c_UTF8, k2)
+		}
+		e.encode(v2)
+	}
+}
+
+func (e *Encoder) encMapInt64Intf(v map[int64]interface{}) {
+	e.e.encodeMapPreamble(len(v))
+	for k2, v2 := range v {
+		e.e.encodeInt(k2)
+		e.encode(v2)
+	}
+}
+
+func (e *Encoder) encMapUint64Intf(v map[uint64]interface{}) {
+	e.e.encodeMapPreamble(len(v))
+	for k2, v2 := range v {
+		e.e.encodeUint(uint64(k2))
+		e.encode(v2)
+	}
+}
+
+func (e *Encoder) encMapIntfIntf(v map[interface{}]interface{}) {
+	e.e.encodeMapPreamble(len(v))
+	for k2, v2 := range v {
+		e.encode(k2)
+		e.encode(v2)
+	}
+}
+
+// ----------------------------------------
+
+func encErr(format string, params ...interface{}) {
+	doPanic(msgTagEnc, format, params...)
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/helper.go b/vendor/github.com/hashicorp/go-msgpack/codec/helper.go
new file mode 100644
index 0000000000..e6dc0563f0
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/helper.go
@@ -0,0 +1,589 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+// Contains code shared by both encode and decode.
+
+import (
+	"encoding/binary"
+	"fmt"
+	"math"
+	"reflect"
+	"sort"
+	"strings"
+	"sync"
+	"time"
+	"unicode"
+	"unicode/utf8"
+)
+
+const (
+	structTagName = "codec"
+
+	// Support
+	//    encoding.BinaryMarshaler: MarshalBinary() (data []byte, err error)
+	//    encoding.BinaryUnmarshaler: UnmarshalBinary(data []byte) error
+	// This constant flag will enable or disable it.
+	supportBinaryMarshal = true
+
+	// Each Encoder or Decoder uses a cache of functions based on conditionals,
+	// so that the conditionals are not run every time.
+	//
+	// Either a map or a slice is used to keep track of the functions.
+	// The map is more natural, but has a higher cost than a slice/array.
+	// This flag (useMapForCodecCache) controls which is used.
+	useMapForCodecCache = false
+
+	// For some common container types, we can short-circuit an elaborate
+	// reflection dance and call encode/decode directly.
+	// The currently supported types are:
+	//    - slices of strings, or id's (int64,uint64) or interfaces.
+	//    - maps of str->str, str->intf, id(int64,uint64)->intf, intf->intf
+	shortCircuitReflectToFastPath = true
+
+	// for debugging, set this to false, to catch panic traces.
+	// Note that this will always cause rpc tests to fail, since they need io.EOF sent via panic.
+	recoverPanicToErr = true
+)
+
+type charEncoding uint8
+
+const (
+	c_RAW charEncoding = iota
+	c_UTF8
+	c_UTF16LE
+	c_UTF16BE
+	c_UTF32LE
+	c_UTF32BE
+)
+
+// valueType is the stream type
+type valueType uint8
+
+const (
+	valueTypeUnset valueType = iota
+	valueTypeNil
+	valueTypeInt
+	valueTypeUint
+	valueTypeFloat
+	valueTypeBool
+	valueTypeString
+	valueTypeSymbol
+	valueTypeBytes
+	valueTypeMap
+	valueTypeArray
+	valueTypeTimestamp
+	valueTypeExt
+
+	valueTypeInvalid = 0xff
+)
+
+var (
+	bigen               = binary.BigEndian
+	structInfoFieldName = "_struct"
+
+	cachedTypeInfo      = make(map[uintptr]*typeInfo, 4)
+	cachedTypeInfoMutex sync.RWMutex
+
+	intfSliceTyp = reflect.TypeOf([]interface{}(nil))
+	intfTyp      = intfSliceTyp.Elem()
+
+	strSliceTyp     = reflect.TypeOf([]string(nil))
+	boolSliceTyp    = reflect.TypeOf([]bool(nil))
+	uintSliceTyp    = reflect.TypeOf([]uint(nil))
+	uint8SliceTyp   = reflect.TypeOf([]uint8(nil))
+	uint16SliceTyp  = reflect.TypeOf([]uint16(nil))
+	uint32SliceTyp  = reflect.TypeOf([]uint32(nil))
+	uint64SliceTyp  = reflect.TypeOf([]uint64(nil))
+	intSliceTyp     = reflect.TypeOf([]int(nil))
+	int8SliceTyp    = reflect.TypeOf([]int8(nil))
+	int16SliceTyp   = reflect.TypeOf([]int16(nil))
+	int32SliceTyp   = reflect.TypeOf([]int32(nil))
+	int64SliceTyp   = reflect.TypeOf([]int64(nil))
+	float32SliceTyp = reflect.TypeOf([]float32(nil))
+	float64SliceTyp = reflect.TypeOf([]float64(nil))
+
+	mapIntfIntfTyp = reflect.TypeOf(map[interface{}]interface{}(nil))
+	mapStrIntfTyp  = reflect.TypeOf(map[string]interface{}(nil))
+	mapStrStrTyp   = reflect.TypeOf(map[string]string(nil))
+
+	mapIntIntfTyp    = reflect.TypeOf(map[int]interface{}(nil))
+	mapInt64IntfTyp  = reflect.TypeOf(map[int64]interface{}(nil))
+	mapUintIntfTyp   = reflect.TypeOf(map[uint]interface{}(nil))
+	mapUint64IntfTyp = reflect.TypeOf(map[uint64]interface{}(nil))
+
+	stringTyp = reflect.TypeOf("")
+	timeTyp   = reflect.TypeOf(time.Time{})
+	rawExtTyp = reflect.TypeOf(RawExt{})
+
+	mapBySliceTyp        = reflect.TypeOf((*MapBySlice)(nil)).Elem()
+	binaryMarshalerTyp   = reflect.TypeOf((*binaryMarshaler)(nil)).Elem()
+	binaryUnmarshalerTyp = reflect.TypeOf((*binaryUnmarshaler)(nil)).Elem()
+
+	rawExtTypId = reflect.ValueOf(rawExtTyp).Pointer()
+	intfTypId   = reflect.ValueOf(intfTyp).Pointer()
+	timeTypId   = reflect.ValueOf(timeTyp).Pointer()
+
+	intfSliceTypId = reflect.ValueOf(intfSliceTyp).Pointer()
+	strSliceTypId  = reflect.ValueOf(strSliceTyp).Pointer()
+
+	boolSliceTypId    = reflect.ValueOf(boolSliceTyp).Pointer()
+	uintSliceTypId    = reflect.ValueOf(uintSliceTyp).Pointer()
+	uint8SliceTypId   = reflect.ValueOf(uint8SliceTyp).Pointer()
+	uint16SliceTypId  = reflect.ValueOf(uint16SliceTyp).Pointer()
+	uint32SliceTypId  = reflect.ValueOf(uint32SliceTyp).Pointer()
+	uint64SliceTypId  = reflect.ValueOf(uint64SliceTyp).Pointer()
+	intSliceTypId     = reflect.ValueOf(intSliceTyp).Pointer()
+	int8SliceTypId    = reflect.ValueOf(int8SliceTyp).Pointer()
+	int16SliceTypId   = reflect.ValueOf(int16SliceTyp).Pointer()
+	int32SliceTypId   = reflect.ValueOf(int32SliceTyp).Pointer()
+	int64SliceTypId   = reflect.ValueOf(int64SliceTyp).Pointer()
+	float32SliceTypId = reflect.ValueOf(float32SliceTyp).Pointer()
+	float64SliceTypId = reflect.ValueOf(float64SliceTyp).Pointer()
+
+	mapStrStrTypId     = reflect.ValueOf(mapStrStrTyp).Pointer()
+	mapIntfIntfTypId   = reflect.ValueOf(mapIntfIntfTyp).Pointer()
+	mapStrIntfTypId    = reflect.ValueOf(mapStrIntfTyp).Pointer()
+	mapIntIntfTypId    = reflect.ValueOf(mapIntIntfTyp).Pointer()
+	mapInt64IntfTypId  = reflect.ValueOf(mapInt64IntfTyp).Pointer()
+	mapUintIntfTypId   = reflect.ValueOf(mapUintIntfTyp).Pointer()
+	mapUint64IntfTypId = reflect.ValueOf(mapUint64IntfTyp).Pointer()
+	// Id = reflect.ValueOf().Pointer()
+	// mapBySliceTypId  = reflect.ValueOf(mapBySliceTyp).Pointer()
+
+	binaryMarshalerTypId   = reflect.ValueOf(binaryMarshalerTyp).Pointer()
+	binaryUnmarshalerTypId = reflect.ValueOf(binaryUnmarshalerTyp).Pointer()
+
+	intBitsize  uint8 = uint8(reflect.TypeOf(int(0)).Bits())
+	uintBitsize uint8 = uint8(reflect.TypeOf(uint(0)).Bits())
+
+	bsAll0x00 = []byte{0, 0, 0, 0, 0, 0, 0, 0}
+	bsAll0xff = []byte{0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff}
+)
+
+type binaryUnmarshaler interface {
+	UnmarshalBinary(data []byte) error
+}
+
+type binaryMarshaler interface {
+	MarshalBinary() (data []byte, err error)
+}
+
+// MapBySlice represents a slice which should be encoded as a map in the stream.
+// The slice contains a sequence of key-value pairs.
+type MapBySlice interface {
+	MapBySlice()
+}
+
+// WARNING: DO NOT USE DIRECTLY. EXPORTED FOR GODOC BENEFIT. WILL BE REMOVED.
+//
+// BasicHandle encapsulates the common options and extension functions.
+type BasicHandle struct {
+	extHandle
+	EncodeOptions
+	DecodeOptions
+}
+
+// Handle is the interface for a specific encoding format.
+//
+// Typically, a Handle is pre-configured before first time use,
+// and not modified while in use. Such a pre-configured Handle
+// is safe for concurrent access.
+type Handle interface {
+	writeExt() bool
+	getBasicHandle() *BasicHandle
+	newEncDriver(w encWriter) encDriver
+	newDecDriver(r decReader) decDriver
+}
+
+// RawExt represents raw unprocessed extension data.
+type RawExt struct {
+	Tag  byte
+	Data []byte
+}
+
+type extTypeTagFn struct {
+	rtid  uintptr
+	rt    reflect.Type
+	tag   byte
+	encFn func(reflect.Value) ([]byte, error)
+	decFn func(reflect.Value, []byte) error
+}
+
+type extHandle []*extTypeTagFn
+
+// AddExt registers an encode and decode function for a reflect.Type.
+// Note that the type must be a named type, and specifically not
+// a pointer or Interface. An error is returned if that is not honored.
+//
+// To Deregister an ext, call AddExt with 0 tag, nil encfn and nil decfn.
+func (o *extHandle) AddExt(
+	rt reflect.Type,
+	tag byte,
+	encfn func(reflect.Value) ([]byte, error),
+	decfn func(reflect.Value, []byte) error,
+) (err error) {
+	// o is a pointer, because we may need to initialize it
+	if rt.PkgPath() == "" || rt.Kind() == reflect.Interface {
+		err = fmt.Errorf("codec.Handle.AddExt: Takes named type, especially not a pointer or interface: %T",
+			reflect.Zero(rt).Interface())
+		return
+	}
+
+	// o cannot be nil, since it is always embedded in a Handle.
+	// if nil, let it panic.
+	// if o == nil {
+	// 	err = errors.New("codec.Handle.AddExt: extHandle cannot be a nil pointer.")
+	// 	return
+	// }
+
+	rtid := reflect.ValueOf(rt).Pointer()
+	for _, v := range *o {
+		if v.rtid == rtid {
+			v.tag, v.encFn, v.decFn = tag, encfn, decfn
+			return
+		}
+	}
+
+	*o = append(*o, &extTypeTagFn{rtid, rt, tag, encfn, decfn})
+	return
+}
+
+func (o extHandle) getExt(rtid uintptr) *extTypeTagFn {
+	for _, v := range o {
+		if v.rtid == rtid {
+			return v
+		}
+	}
+	return nil
+}
+
+func (o extHandle) getExtForTag(tag byte) *extTypeTagFn {
+	for _, v := range o {
+		if v.tag == tag {
+			return v
+		}
+	}
+	return nil
+}
+
+func (o extHandle) getDecodeExtForTag(tag byte) (
+	rv reflect.Value, fn func(reflect.Value, []byte) error) {
+	if x := o.getExtForTag(tag); x != nil {
+		// ext is only registered for base
+		rv = reflect.New(x.rt).Elem()
+		fn = x.decFn
+	}
+	return
+}
+
+func (o extHandle) getDecodeExt(rtid uintptr) (tag byte, fn func(reflect.Value, []byte) error) {
+	if x := o.getExt(rtid); x != nil {
+		tag = x.tag
+		fn = x.decFn
+	}
+	return
+}
+
+func (o extHandle) getEncodeExt(rtid uintptr) (tag byte, fn func(reflect.Value) ([]byte, error)) {
+	if x := o.getExt(rtid); x != nil {
+		tag = x.tag
+		fn = x.encFn
+	}
+	return
+}
+
+type structFieldInfo struct {
+	encName string // encode name
+
+	// only one of 'i' or 'is' can be set. If 'i' is -1, then 'is' has been set.
+
+	is        []int // (recursive/embedded) field index in struct
+	i         int16 // field index in struct
+	omitEmpty bool
+	toArray   bool // if field is _struct, is the toArray set?
+
+	// tag       string   // tag
+	// name      string   // field name
+	// encNameBs []byte   // encoded name as byte stream
+	// ikind     int      // kind of the field as an int i.e. int(reflect.Kind)
+}
+
+func parseStructFieldInfo(fname string, stag string) *structFieldInfo {
+	if fname == "" {
+		panic("parseStructFieldInfo: No Field Name")
+	}
+	si := structFieldInfo{
+		// name: fname,
+		encName: fname,
+		// tag: stag,
+	}
+
+	if stag != "" {
+		for i, s := range strings.Split(stag, ",") {
+			if i == 0 {
+				if s != "" {
+					si.encName = s
+				}
+			} else {
+				switch s {
+				case "omitempty":
+					si.omitEmpty = true
+				case "toarray":
+					si.toArray = true
+				}
+			}
+		}
+	}
+	// si.encNameBs = []byte(si.encName)
+	return &si
+}
+
+type sfiSortedByEncName []*structFieldInfo
+
+func (p sfiSortedByEncName) Len() int {
+	return len(p)
+}
+
+func (p sfiSortedByEncName) Less(i, j int) bool {
+	return p[i].encName < p[j].encName
+}
+
+func (p sfiSortedByEncName) Swap(i, j int) {
+	p[i], p[j] = p[j], p[i]
+}
+
+// typeInfo keeps information about each type referenced in the encode/decode sequence.
+//
+// During an encode/decode sequence, we work as below:
+//   - If base is a built in type, en/decode base value
+//   - If base is registered as an extension, en/decode base value
+//   - If type is binary(M/Unm)arshaler, call Binary(M/Unm)arshal method
+//   - Else decode appropriately based on the reflect.Kind
+type typeInfo struct {
+	sfi  []*structFieldInfo // sorted. Used when enc/dec struct to map.
+	sfip []*structFieldInfo // unsorted. Used when enc/dec struct to array.
+
+	rt   reflect.Type
+	rtid uintptr
+
+	// baseId gives pointer to the base reflect.Type, after deferencing
+	// the pointers. E.g. base type of ***time.Time is time.Time.
+	base      reflect.Type
+	baseId    uintptr
+	baseIndir int8 // number of indirections to get to base
+
+	mbs bool // base type (T or *T) is a MapBySlice
+
+	m        bool // base type (T or *T) is a binaryMarshaler
+	unm      bool // base type (T or *T) is a binaryUnmarshaler
+	mIndir   int8 // number of indirections to get to binaryMarshaler type
+	unmIndir int8 // number of indirections to get to binaryUnmarshaler type
+	toArray  bool // whether this (struct) type should be encoded as an array
+}
+
+func (ti *typeInfo) indexForEncName(name string) int {
+	//tisfi := ti.sfi
+	const binarySearchThreshold = 16
+	if sfilen := len(ti.sfi); sfilen < binarySearchThreshold {
+		// linear search. faster than binary search in my testing up to 16-field structs.
+		for i, si := range ti.sfi {
+			if si.encName == name {
+				return i
+			}
+		}
+	} else {
+		// binary search. adapted from sort/search.go.
+		h, i, j := 0, 0, sfilen
+		for i < j {
+			h = i + (j-i)/2
+			if ti.sfi[h].encName < name {
+				i = h + 1
+			} else {
+				j = h
+			}
+		}
+		if i < sfilen && ti.sfi[i].encName == name {
+			return i
+		}
+	}
+	return -1
+}
+
+func getTypeInfo(rtid uintptr, rt reflect.Type) (pti *typeInfo) {
+	var ok bool
+	cachedTypeInfoMutex.RLock()
+	pti, ok = cachedTypeInfo[rtid]
+	cachedTypeInfoMutex.RUnlock()
+	if ok {
+		return
+	}
+
+	cachedTypeInfoMutex.Lock()
+	defer cachedTypeInfoMutex.Unlock()
+	if pti, ok = cachedTypeInfo[rtid]; ok {
+		return
+	}
+
+	ti := typeInfo{rt: rt, rtid: rtid}
+	pti = &ti
+
+	var indir int8
+	if ok, indir = implementsIntf(rt, binaryMarshalerTyp); ok {
+		ti.m, ti.mIndir = true, indir
+	}
+	if ok, indir = implementsIntf(rt, binaryUnmarshalerTyp); ok {
+		ti.unm, ti.unmIndir = true, indir
+	}
+	if ok, _ = implementsIntf(rt, mapBySliceTyp); ok {
+		ti.mbs = true
+	}
+
+	pt := rt
+	var ptIndir int8
+	// for ; pt.Kind() == reflect.Ptr; pt, ptIndir = pt.Elem(), ptIndir+1 { }
+	for pt.Kind() == reflect.Ptr {
+		pt = pt.Elem()
+		ptIndir++
+	}
+	if ptIndir == 0 {
+		ti.base = rt
+		ti.baseId = rtid
+	} else {
+		ti.base = pt
+		ti.baseId = reflect.ValueOf(pt).Pointer()
+		ti.baseIndir = ptIndir
+	}
+
+	if rt.Kind() == reflect.Struct {
+		var siInfo *structFieldInfo
+		if f, ok := rt.FieldByName(structInfoFieldName); ok {
+			siInfo = parseStructFieldInfo(structInfoFieldName, f.Tag.Get(structTagName))
+			ti.toArray = siInfo.toArray
+		}
+		sfip := make([]*structFieldInfo, 0, rt.NumField())
+		rgetTypeInfo(rt, nil, make(map[string]bool), &sfip, siInfo)
+
+		// // try to put all si close together
+		// const tryToPutAllStructFieldInfoTogether = true
+		// if tryToPutAllStructFieldInfoTogether {
+		// 	sfip2 := make([]structFieldInfo, len(sfip))
+		// 	for i, si := range sfip {
+		// 		sfip2[i] = *si
+		// 	}
+		// 	for i := range sfip {
+		// 		sfip[i] = &sfip2[i]
+		// 	}
+		// }
+
+		ti.sfip = make([]*structFieldInfo, len(sfip))
+		ti.sfi = make([]*structFieldInfo, len(sfip))
+		copy(ti.sfip, sfip)
+		sort.Sort(sfiSortedByEncName(sfip))
+		copy(ti.sfi, sfip)
+	}
+	// sfi = sfip
+	cachedTypeInfo[rtid] = pti
+	return
+}
+
+func rgetTypeInfo(rt reflect.Type, indexstack []int, fnameToHastag map[string]bool,
+	sfi *[]*structFieldInfo, siInfo *structFieldInfo,
+) {
+	// for rt.Kind() == reflect.Ptr {
+	// 	// indexstack = append(indexstack, 0)
+	// 	rt = rt.Elem()
+	// }
+	for j := 0; j < rt.NumField(); j++ {
+		f := rt.Field(j)
+		stag := f.Tag.Get(structTagName)
+		if stag == "-" {
+			continue
+		}
+		if r1, _ := utf8.DecodeRuneInString(f.Name); r1 == utf8.RuneError || !unicode.IsUpper(r1) {
+			continue
+		}
+		// if anonymous and there is no struct tag and its a struct (or pointer to struct), inline it.
+		if f.Anonymous && stag == "" {
+			ft := f.Type
+			for ft.Kind() == reflect.Ptr {
+				ft = ft.Elem()
+			}
+			if ft.Kind() == reflect.Struct {
+				indexstack2 := append(append(make([]int, 0, len(indexstack)+4), indexstack...), j)
+				rgetTypeInfo(ft, indexstack2, fnameToHastag, sfi, siInfo)
+				continue
+			}
+		}
+		// do not let fields with same name in embedded structs override field at higher level.
+		// this must be done after anonymous check, to allow anonymous field
+		// still include their child fields
+		if _, ok := fnameToHastag[f.Name]; ok {
+			continue
+		}
+		si := parseStructFieldInfo(f.Name, stag)
+		// si.ikind = int(f.Type.Kind())
+		if len(indexstack) == 0 {
+			si.i = int16(j)
+		} else {
+			si.i = -1
+			si.is = append(append(make([]int, 0, len(indexstack)+4), indexstack...), j)
+		}
+
+		if siInfo != nil {
+			if siInfo.omitEmpty {
+				si.omitEmpty = true
+			}
+		}
+		*sfi = append(*sfi, si)
+		fnameToHastag[f.Name] = stag != ""
+	}
+}
+
+func panicToErr(err *error) {
+	if recoverPanicToErr {
+		if x := recover(); x != nil {
+			//debug.PrintStack()
+			panicValToErr(x, err)
+		}
+	}
+}
+
+func doPanic(tag string, format string, params ...interface{}) {
+	params2 := make([]interface{}, len(params)+1)
+	params2[0] = tag
+	copy(params2[1:], params)
+	panic(fmt.Errorf("%s: "+format, params2...))
+}
+
+func checkOverflowFloat32(f float64, doCheck bool) {
+	if !doCheck {
+		return
+	}
+	// check overflow (logic adapted from std pkg reflect/value.go OverflowFloat()
+	f2 := f
+	if f2 < 0 {
+		f2 = -f
+	}
+	if math.MaxFloat32 < f2 && f2 <= math.MaxFloat64 {
+		decErr("Overflow float32 value: %v", f2)
+	}
+}
+
+func checkOverflow(ui uint64, i int64, bitsize uint8) {
+	// check overflow (logic adapted from std pkg reflect/value.go OverflowUint()
+	if bitsize == 0 {
+		return
+	}
+	if i != 0 {
+		if trunc := (i << (64 - bitsize)) >> (64 - bitsize); i != trunc {
+			decErr("Overflow int value: %v", i)
+		}
+	}
+	if ui != 0 {
+		if trunc := (ui << (64 - bitsize)) >> (64 - bitsize); ui != trunc {
+			decErr("Overflow uint value: %v", ui)
+		}
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/helper_internal.go b/vendor/github.com/hashicorp/go-msgpack/codec/helper_internal.go
new file mode 100644
index 0000000000..58417da958
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/helper_internal.go
@@ -0,0 +1,127 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+// All non-std package dependencies live in this file,
+// so porting to different environment is easy (just update functions).
+
+import (
+	"errors"
+	"fmt"
+	"math"
+	"reflect"
+)
+
+var (
+	raisePanicAfterRecover = false
+	debugging              = true
+)
+
+func panicValToErr(panicVal interface{}, err *error) {
+	switch xerr := panicVal.(type) {
+	case error:
+		*err = xerr
+	case string:
+		*err = errors.New(xerr)
+	default:
+		*err = fmt.Errorf("%v", panicVal)
+	}
+	if raisePanicAfterRecover {
+		panic(panicVal)
+	}
+	return
+}
+
+func isEmptyValueDeref(v reflect.Value, deref bool) bool {
+	switch v.Kind() {
+	case reflect.Array, reflect.Map, reflect.Slice, reflect.String:
+		return v.Len() == 0
+	case reflect.Bool:
+		return !v.Bool()
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		return v.Int() == 0
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
+		return v.Uint() == 0
+	case reflect.Float32, reflect.Float64:
+		return v.Float() == 0
+	case reflect.Interface, reflect.Ptr:
+		if deref {
+			if v.IsNil() {
+				return true
+			}
+			return isEmptyValueDeref(v.Elem(), deref)
+		} else {
+			return v.IsNil()
+		}
+	case reflect.Struct:
+		// return true if all fields are empty. else return false.
+
+		// we cannot use equality check, because some fields may be maps/slices/etc
+		// and consequently the structs are not comparable.
+		// return v.Interface() == reflect.Zero(v.Type()).Interface()
+		for i, n := 0, v.NumField(); i < n; i++ {
+			if !isEmptyValueDeref(v.Field(i), deref) {
+				return false
+			}
+		}
+		return true
+	}
+	return false
+}
+
+func isEmptyValue(v reflect.Value) bool {
+	return isEmptyValueDeref(v, true)
+}
+
+func debugf(format string, args ...interface{}) {
+	if debugging {
+		if len(format) == 0 || format[len(format)-1] != '\n' {
+			format = format + "\n"
+		}
+		fmt.Printf(format, args...)
+	}
+}
+
+func pruneSignExt(v []byte, pos bool) (n int) {
+	if len(v) < 2 {
+	} else if pos && v[0] == 0 {
+		for ; v[n] == 0 && n+1 < len(v) && (v[n+1]&(1<<7) == 0); n++ {
+		}
+	} else if !pos && v[0] == 0xff {
+		for ; v[n] == 0xff && n+1 < len(v) && (v[n+1]&(1<<7) != 0); n++ {
+		}
+	}
+	return
+}
+
+func implementsIntf(typ, iTyp reflect.Type) (success bool, indir int8) {
+	if typ == nil {
+		return
+	}
+	rt := typ
+	// The type might be a pointer and we need to keep
+	// dereferencing to the base type until we find an implementation.
+	for {
+		if rt.Implements(iTyp) {
+			return true, indir
+		}
+		if p := rt; p.Kind() == reflect.Ptr {
+			indir++
+			if indir >= math.MaxInt8 { // insane number of indirections
+				return false, 0
+			}
+			rt = p.Elem()
+			continue
+		}
+		break
+	}
+	// No luck yet, but if this is a base type (non-pointer), the pointer might satisfy.
+	if typ.Kind() != reflect.Ptr {
+		// Not a pointer, but does the pointer work?
+		if reflect.PtrTo(typ).Implements(iTyp) {
+			return true, -1
+		}
+	}
+	return false, 0
+}
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/msgpack.go b/vendor/github.com/hashicorp/go-msgpack/codec/msgpack.go
new file mode 100644
index 0000000000..da0500d192
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/msgpack.go
@@ -0,0 +1,816 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+/*
+MSGPACK
+
+Msgpack-c implementation powers the c, c++, python, ruby, etc libraries.
+We need to maintain compatibility with it and how it encodes integer values
+without caring about the type.
+
+For compatibility with behaviour of msgpack-c reference implementation:
+  - Go intX (>0) and uintX
+       IS ENCODED AS
+    msgpack +ve fixnum, unsigned
+  - Go intX (<0)
+       IS ENCODED AS
+    msgpack -ve fixnum, signed
+
+*/
+package codec
+
+import (
+	"fmt"
+	"io"
+	"math"
+	"net/rpc"
+)
+
+const (
+	mpPosFixNumMin byte = 0x00
+	mpPosFixNumMax      = 0x7f
+	mpFixMapMin         = 0x80
+	mpFixMapMax         = 0x8f
+	mpFixArrayMin       = 0x90
+	mpFixArrayMax       = 0x9f
+	mpFixStrMin         = 0xa0
+	mpFixStrMax         = 0xbf
+	mpNil               = 0xc0
+	_                   = 0xc1
+	mpFalse             = 0xc2
+	mpTrue              = 0xc3
+	mpFloat             = 0xca
+	mpDouble            = 0xcb
+	mpUint8             = 0xcc
+	mpUint16            = 0xcd
+	mpUint32            = 0xce
+	mpUint64            = 0xcf
+	mpInt8              = 0xd0
+	mpInt16             = 0xd1
+	mpInt32             = 0xd2
+	mpInt64             = 0xd3
+
+	// extensions below
+	mpBin8     = 0xc4
+	mpBin16    = 0xc5
+	mpBin32    = 0xc6
+	mpExt8     = 0xc7
+	mpExt16    = 0xc8
+	mpExt32    = 0xc9
+	mpFixExt1  = 0xd4
+	mpFixExt2  = 0xd5
+	mpFixExt4  = 0xd6
+	mpFixExt8  = 0xd7
+	mpFixExt16 = 0xd8
+
+	mpStr8  = 0xd9 // new
+	mpStr16 = 0xda
+	mpStr32 = 0xdb
+
+	mpArray16 = 0xdc
+	mpArray32 = 0xdd
+
+	mpMap16 = 0xde
+	mpMap32 = 0xdf
+
+	mpNegFixNumMin = 0xe0
+	mpNegFixNumMax = 0xff
+)
+
+// MsgpackSpecRpcMultiArgs is a special type which signifies to the MsgpackSpecRpcCodec
+// that the backend RPC service takes multiple arguments, which have been arranged
+// in sequence in the slice.
+//
+// The Codec then passes it AS-IS to the rpc service (without wrapping it in an
+// array of 1 element).
+type MsgpackSpecRpcMultiArgs []interface{}
+
+// A MsgpackContainer type specifies the different types of msgpackContainers.
+type msgpackContainerType struct {
+	fixCutoff                   int
+	bFixMin, b8, b16, b32       byte
+	hasFixMin, has8, has8Always bool
+}
+
+var (
+	msgpackContainerStr  = msgpackContainerType{32, mpFixStrMin, mpStr8, mpStr16, mpStr32, true, true, false}
+	msgpackContainerBin  = msgpackContainerType{0, 0, mpBin8, mpBin16, mpBin32, false, true, true}
+	msgpackContainerList = msgpackContainerType{16, mpFixArrayMin, 0, mpArray16, mpArray32, true, false, false}
+	msgpackContainerMap  = msgpackContainerType{16, mpFixMapMin, 0, mpMap16, mpMap32, true, false, false}
+)
+
+//---------------------------------------------
+
+type msgpackEncDriver struct {
+	w encWriter
+	h *MsgpackHandle
+}
+
+func (e *msgpackEncDriver) isBuiltinType(rt uintptr) bool {
+	//no builtin types. All encodings are based on kinds. Types supported as extensions.
+	return false
+}
+
+func (e *msgpackEncDriver) encodeBuiltin(rt uintptr, v interface{}) {}
+
+func (e *msgpackEncDriver) encodeNil() {
+	e.w.writen1(mpNil)
+}
+
+func (e *msgpackEncDriver) encodeInt(i int64) {
+
+	switch {
+	case i >= 0:
+		e.encodeUint(uint64(i))
+	case i >= -32:
+		e.w.writen1(byte(i))
+	case i >= math.MinInt8:
+		e.w.writen2(mpInt8, byte(i))
+	case i >= math.MinInt16:
+		e.w.writen1(mpInt16)
+		e.w.writeUint16(uint16(i))
+	case i >= math.MinInt32:
+		e.w.writen1(mpInt32)
+		e.w.writeUint32(uint32(i))
+	default:
+		e.w.writen1(mpInt64)
+		e.w.writeUint64(uint64(i))
+	}
+}
+
+func (e *msgpackEncDriver) encodeUint(i uint64) {
+	switch {
+	case i <= math.MaxInt8:
+		e.w.writen1(byte(i))
+	case i <= math.MaxUint8:
+		e.w.writen2(mpUint8, byte(i))
+	case i <= math.MaxUint16:
+		e.w.writen1(mpUint16)
+		e.w.writeUint16(uint16(i))
+	case i <= math.MaxUint32:
+		e.w.writen1(mpUint32)
+		e.w.writeUint32(uint32(i))
+	default:
+		e.w.writen1(mpUint64)
+		e.w.writeUint64(uint64(i))
+	}
+}
+
+func (e *msgpackEncDriver) encodeBool(b bool) {
+	if b {
+		e.w.writen1(mpTrue)
+	} else {
+		e.w.writen1(mpFalse)
+	}
+}
+
+func (e *msgpackEncDriver) encodeFloat32(f float32) {
+	e.w.writen1(mpFloat)
+	e.w.writeUint32(math.Float32bits(f))
+}
+
+func (e *msgpackEncDriver) encodeFloat64(f float64) {
+	e.w.writen1(mpDouble)
+	e.w.writeUint64(math.Float64bits(f))
+}
+
+func (e *msgpackEncDriver) encodeExtPreamble(xtag byte, l int) {
+	switch {
+	case l == 1:
+		e.w.writen2(mpFixExt1, xtag)
+	case l == 2:
+		e.w.writen2(mpFixExt2, xtag)
+	case l == 4:
+		e.w.writen2(mpFixExt4, xtag)
+	case l == 8:
+		e.w.writen2(mpFixExt8, xtag)
+	case l == 16:
+		e.w.writen2(mpFixExt16, xtag)
+	case l < 256:
+		e.w.writen2(mpExt8, byte(l))
+		e.w.writen1(xtag)
+	case l < 65536:
+		e.w.writen1(mpExt16)
+		e.w.writeUint16(uint16(l))
+		e.w.writen1(xtag)
+	default:
+		e.w.writen1(mpExt32)
+		e.w.writeUint32(uint32(l))
+		e.w.writen1(xtag)
+	}
+}
+
+func (e *msgpackEncDriver) encodeArrayPreamble(length int) {
+	e.writeContainerLen(msgpackContainerList, length)
+}
+
+func (e *msgpackEncDriver) encodeMapPreamble(length int) {
+	e.writeContainerLen(msgpackContainerMap, length)
+}
+
+func (e *msgpackEncDriver) encodeString(c charEncoding, s string) {
+	if c == c_RAW && e.h.WriteExt {
+		e.writeContainerLen(msgpackContainerBin, len(s))
+	} else {
+		e.writeContainerLen(msgpackContainerStr, len(s))
+	}
+	if len(s) > 0 {
+		e.w.writestr(s)
+	}
+}
+
+func (e *msgpackEncDriver) encodeSymbol(v string) {
+	e.encodeString(c_UTF8, v)
+}
+
+func (e *msgpackEncDriver) encodeStringBytes(c charEncoding, bs []byte) {
+	if c == c_RAW && e.h.WriteExt {
+		e.writeContainerLen(msgpackContainerBin, len(bs))
+	} else {
+		e.writeContainerLen(msgpackContainerStr, len(bs))
+	}
+	if len(bs) > 0 {
+		e.w.writeb(bs)
+	}
+}
+
+func (e *msgpackEncDriver) writeContainerLen(ct msgpackContainerType, l int) {
+	switch {
+	case ct.hasFixMin && l < ct.fixCutoff:
+		e.w.writen1(ct.bFixMin | byte(l))
+	case ct.has8 && l < 256 && (ct.has8Always || e.h.WriteExt):
+		e.w.writen2(ct.b8, uint8(l))
+	case l < 65536:
+		e.w.writen1(ct.b16)
+		e.w.writeUint16(uint16(l))
+	default:
+		e.w.writen1(ct.b32)
+		e.w.writeUint32(uint32(l))
+	}
+}
+
+//---------------------------------------------
+
+type msgpackDecDriver struct {
+	r      decReader
+	h      *MsgpackHandle
+	bd     byte
+	bdRead bool
+	bdType valueType
+}
+
+func (d *msgpackDecDriver) isBuiltinType(rt uintptr) bool {
+	//no builtin types. All encodings are based on kinds. Types supported as extensions.
+	return false
+}
+
+func (d *msgpackDecDriver) decodeBuiltin(rt uintptr, v interface{}) {}
+
+// Note: This returns either a primitive (int, bool, etc) for non-containers,
+// or a containerType, or a specific type denoting nil or extension.
+// It is called when a nil interface{} is passed, leaving it up to the DecDriver
+// to introspect the stream and decide how best to decode.
+// It deciphers the value by looking at the stream first.
+func (d *msgpackDecDriver) decodeNaked() (v interface{}, vt valueType, decodeFurther bool) {
+	d.initReadNext()
+	bd := d.bd
+
+	switch bd {
+	case mpNil:
+		vt = valueTypeNil
+		d.bdRead = false
+	case mpFalse:
+		vt = valueTypeBool
+		v = false
+	case mpTrue:
+		vt = valueTypeBool
+		v = true
+
+	case mpFloat:
+		vt = valueTypeFloat
+		v = float64(math.Float32frombits(d.r.readUint32()))
+	case mpDouble:
+		vt = valueTypeFloat
+		v = math.Float64frombits(d.r.readUint64())
+
+	case mpUint8:
+		vt = valueTypeUint
+		v = uint64(d.r.readn1())
+	case mpUint16:
+		vt = valueTypeUint
+		v = uint64(d.r.readUint16())
+	case mpUint32:
+		vt = valueTypeUint
+		v = uint64(d.r.readUint32())
+	case mpUint64:
+		vt = valueTypeUint
+		v = uint64(d.r.readUint64())
+
+	case mpInt8:
+		vt = valueTypeInt
+		v = int64(int8(d.r.readn1()))
+	case mpInt16:
+		vt = valueTypeInt
+		v = int64(int16(d.r.readUint16()))
+	case mpInt32:
+		vt = valueTypeInt
+		v = int64(int32(d.r.readUint32()))
+	case mpInt64:
+		vt = valueTypeInt
+		v = int64(int64(d.r.readUint64()))
+
+	default:
+		switch {
+		case bd >= mpPosFixNumMin && bd <= mpPosFixNumMax:
+			// positive fixnum (always signed)
+			vt = valueTypeInt
+			v = int64(int8(bd))
+		case bd >= mpNegFixNumMin && bd <= mpNegFixNumMax:
+			// negative fixnum
+			vt = valueTypeInt
+			v = int64(int8(bd))
+		case bd == mpStr8, bd == mpStr16, bd == mpStr32, bd >= mpFixStrMin && bd <= mpFixStrMax:
+			if d.h.RawToString {
+				var rvm string
+				vt = valueTypeString
+				v = &rvm
+			} else {
+				var rvm = []byte{}
+				vt = valueTypeBytes
+				v = &rvm
+			}
+			decodeFurther = true
+		case bd == mpBin8, bd == mpBin16, bd == mpBin32:
+			var rvm = []byte{}
+			vt = valueTypeBytes
+			v = &rvm
+			decodeFurther = true
+		case bd == mpArray16, bd == mpArray32, bd >= mpFixArrayMin && bd <= mpFixArrayMax:
+			vt = valueTypeArray
+			decodeFurther = true
+		case bd == mpMap16, bd == mpMap32, bd >= mpFixMapMin && bd <= mpFixMapMax:
+			vt = valueTypeMap
+			decodeFurther = true
+		case bd >= mpFixExt1 && bd <= mpFixExt16, bd >= mpExt8 && bd <= mpExt32:
+			clen := d.readExtLen()
+			var re RawExt
+			re.Tag = d.r.readn1()
+			re.Data = d.r.readn(clen)
+			v = &re
+			vt = valueTypeExt
+		default:
+			decErr("Nil-Deciphered DecodeValue: %s: hex: %x, dec: %d", msgBadDesc, bd, bd)
+		}
+	}
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	return
+}
+
+// int can be decoded from msgpack type: intXXX or uintXXX
+func (d *msgpackDecDriver) decodeInt(bitsize uint8) (i int64) {
+	switch d.bd {
+	case mpUint8:
+		i = int64(uint64(d.r.readn1()))
+	case mpUint16:
+		i = int64(uint64(d.r.readUint16()))
+	case mpUint32:
+		i = int64(uint64(d.r.readUint32()))
+	case mpUint64:
+		i = int64(d.r.readUint64())
+	case mpInt8:
+		i = int64(int8(d.r.readn1()))
+	case mpInt16:
+		i = int64(int16(d.r.readUint16()))
+	case mpInt32:
+		i = int64(int32(d.r.readUint32()))
+	case mpInt64:
+		i = int64(d.r.readUint64())
+	default:
+		switch {
+		case d.bd >= mpPosFixNumMin && d.bd <= mpPosFixNumMax:
+			i = int64(int8(d.bd))
+		case d.bd >= mpNegFixNumMin && d.bd <= mpNegFixNumMax:
+			i = int64(int8(d.bd))
+		default:
+			decErr("Unhandled single-byte unsigned integer value: %s: %x", msgBadDesc, d.bd)
+		}
+	}
+	// check overflow (logic adapted from std pkg reflect/value.go OverflowUint()
+	if bitsize > 0 {
+		if trunc := (i << (64 - bitsize)) >> (64 - bitsize); i != trunc {
+			decErr("Overflow int value: %v", i)
+		}
+	}
+	d.bdRead = false
+	return
+}
+
+// uint can be decoded from msgpack type: intXXX or uintXXX
+func (d *msgpackDecDriver) decodeUint(bitsize uint8) (ui uint64) {
+	switch d.bd {
+	case mpUint8:
+		ui = uint64(d.r.readn1())
+	case mpUint16:
+		ui = uint64(d.r.readUint16())
+	case mpUint32:
+		ui = uint64(d.r.readUint32())
+	case mpUint64:
+		ui = d.r.readUint64()
+	case mpInt8:
+		if i := int64(int8(d.r.readn1())); i >= 0 {
+			ui = uint64(i)
+		} else {
+			decErr("Assigning negative signed value: %v, to unsigned type", i)
+		}
+	case mpInt16:
+		if i := int64(int16(d.r.readUint16())); i >= 0 {
+			ui = uint64(i)
+		} else {
+			decErr("Assigning negative signed value: %v, to unsigned type", i)
+		}
+	case mpInt32:
+		if i := int64(int32(d.r.readUint32())); i >= 0 {
+			ui = uint64(i)
+		} else {
+			decErr("Assigning negative signed value: %v, to unsigned type", i)
+		}
+	case mpInt64:
+		if i := int64(d.r.readUint64()); i >= 0 {
+			ui = uint64(i)
+		} else {
+			decErr("Assigning negative signed value: %v, to unsigned type", i)
+		}
+	default:
+		switch {
+		case d.bd >= mpPosFixNumMin && d.bd <= mpPosFixNumMax:
+			ui = uint64(d.bd)
+		case d.bd >= mpNegFixNumMin && d.bd <= mpNegFixNumMax:
+			decErr("Assigning negative signed value: %v, to unsigned type", int(d.bd))
+		default:
+			decErr("Unhandled single-byte unsigned integer value: %s: %x", msgBadDesc, d.bd)
+		}
+	}
+	// check overflow (logic adapted from std pkg reflect/value.go OverflowUint()
+	if bitsize > 0 {
+		if trunc := (ui << (64 - bitsize)) >> (64 - bitsize); ui != trunc {
+			decErr("Overflow uint value: %v", ui)
+		}
+	}
+	d.bdRead = false
+	return
+}
+
+// float can either be decoded from msgpack type: float, double or intX
+func (d *msgpackDecDriver) decodeFloat(chkOverflow32 bool) (f float64) {
+	switch d.bd {
+	case mpFloat:
+		f = float64(math.Float32frombits(d.r.readUint32()))
+	case mpDouble:
+		f = math.Float64frombits(d.r.readUint64())
+	default:
+		f = float64(d.decodeInt(0))
+	}
+	checkOverflowFloat32(f, chkOverflow32)
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool, fixnum 0 or 1.
+func (d *msgpackDecDriver) decodeBool() (b bool) {
+	switch d.bd {
+	case mpFalse, 0:
+		// b = false
+	case mpTrue, 1:
+		b = true
+	default:
+		decErr("Invalid single-byte value for bool: %s: %x", msgBadDesc, d.bd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *msgpackDecDriver) decodeString() (s string) {
+	clen := d.readContainerLen(msgpackContainerStr)
+	if clen > 0 {
+		s = string(d.r.readn(clen))
+	}
+	d.bdRead = false
+	return
+}
+
+// Callers must check if changed=true (to decide whether to replace the one they have)
+func (d *msgpackDecDriver) decodeBytes(bs []byte) (bsOut []byte, changed bool) {
+	// bytes can be decoded from msgpackContainerStr or msgpackContainerBin
+	var clen int
+	switch d.bd {
+	case mpBin8, mpBin16, mpBin32:
+		clen = d.readContainerLen(msgpackContainerBin)
+	default:
+		clen = d.readContainerLen(msgpackContainerStr)
+	}
+	// if clen < 0 {
+	// 	changed = true
+	// 	panic("length cannot be zero. this cannot be nil.")
+	// }
+	if clen > 0 {
+		// if no contents in stream, don't update the passed byteslice
+		if len(bs) != clen {
+			// Return changed=true if length of passed slice diff from length of bytes in stream
+			if len(bs) > clen {
+				bs = bs[:clen]
+			} else {
+				bs = make([]byte, clen)
+			}
+			bsOut = bs
+			changed = true
+		}
+		d.r.readb(bs)
+	}
+	d.bdRead = false
+	return
+}
+
+// Every top-level decode funcs (i.e. decodeValue, decode) must call this first.
+func (d *msgpackDecDriver) initReadNext() {
+	if d.bdRead {
+		return
+	}
+	d.bd = d.r.readn1()
+	d.bdRead = true
+	d.bdType = valueTypeUnset
+}
+
+func (d *msgpackDecDriver) currentEncodedType() valueType {
+	if d.bdType == valueTypeUnset {
+		bd := d.bd
+		switch bd {
+		case mpNil:
+			d.bdType = valueTypeNil
+		case mpFalse, mpTrue:
+			d.bdType = valueTypeBool
+		case mpFloat, mpDouble:
+			d.bdType = valueTypeFloat
+		case mpUint8, mpUint16, mpUint32, mpUint64:
+			d.bdType = valueTypeUint
+		case mpInt8, mpInt16, mpInt32, mpInt64:
+			d.bdType = valueTypeInt
+		default:
+			switch {
+			case bd >= mpPosFixNumMin && bd <= mpPosFixNumMax:
+				d.bdType = valueTypeInt
+			case bd >= mpNegFixNumMin && bd <= mpNegFixNumMax:
+				d.bdType = valueTypeInt
+			case bd == mpStr8, bd == mpStr16, bd == mpStr32, bd >= mpFixStrMin && bd <= mpFixStrMax:
+				if d.h.RawToString {
+					d.bdType = valueTypeString
+				} else {
+					d.bdType = valueTypeBytes
+				}
+			case bd == mpBin8, bd == mpBin16, bd == mpBin32:
+				d.bdType = valueTypeBytes
+			case bd == mpArray16, bd == mpArray32, bd >= mpFixArrayMin && bd <= mpFixArrayMax:
+				d.bdType = valueTypeArray
+			case bd == mpMap16, bd == mpMap32, bd >= mpFixMapMin && bd <= mpFixMapMax:
+				d.bdType = valueTypeMap
+			case bd >= mpFixExt1 && bd <= mpFixExt16, bd >= mpExt8 && bd <= mpExt32:
+				d.bdType = valueTypeExt
+			default:
+				decErr("currentEncodedType: Undeciphered descriptor: %s: hex: %x, dec: %d", msgBadDesc, bd, bd)
+			}
+		}
+	}
+	return d.bdType
+}
+
+func (d *msgpackDecDriver) tryDecodeAsNil() bool {
+	if d.bd == mpNil {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *msgpackDecDriver) readContainerLen(ct msgpackContainerType) (clen int) {
+	bd := d.bd
+	switch {
+	case bd == mpNil:
+		clen = -1 // to represent nil
+	case bd == ct.b8:
+		clen = int(d.r.readn1())
+	case bd == ct.b16:
+		clen = int(d.r.readUint16())
+	case bd == ct.b32:
+		clen = int(d.r.readUint32())
+	case (ct.bFixMin & bd) == ct.bFixMin:
+		clen = int(ct.bFixMin ^ bd)
+	default:
+		decErr("readContainerLen: %s: hex: %x, dec: %d", msgBadDesc, bd, bd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *msgpackDecDriver) readMapLen() int {
+	return d.readContainerLen(msgpackContainerMap)
+}
+
+func (d *msgpackDecDriver) readArrayLen() int {
+	return d.readContainerLen(msgpackContainerList)
+}
+
+func (d *msgpackDecDriver) readExtLen() (clen int) {
+	switch d.bd {
+	case mpNil:
+		clen = -1 // to represent nil
+	case mpFixExt1:
+		clen = 1
+	case mpFixExt2:
+		clen = 2
+	case mpFixExt4:
+		clen = 4
+	case mpFixExt8:
+		clen = 8
+	case mpFixExt16:
+		clen = 16
+	case mpExt8:
+		clen = int(d.r.readn1())
+	case mpExt16:
+		clen = int(d.r.readUint16())
+	case mpExt32:
+		clen = int(d.r.readUint32())
+	default:
+		decErr("decoding ext bytes: found unexpected byte: %x", d.bd)
+	}
+	return
+}
+
+func (d *msgpackDecDriver) decodeExt(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	xbd := d.bd
+	switch {
+	case xbd == mpBin8, xbd == mpBin16, xbd == mpBin32:
+		xbs, _ = d.decodeBytes(nil)
+	case xbd == mpStr8, xbd == mpStr16, xbd == mpStr32,
+		xbd >= mpFixStrMin && xbd <= mpFixStrMax:
+		xbs = []byte(d.decodeString())
+	default:
+		clen := d.readExtLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			decErr("Wrong extension tag. Got %b. Expecting: %v", xtag, tag)
+		}
+		xbs = d.r.readn(clen)
+	}
+	d.bdRead = false
+	return
+}
+
+//--------------------------------------------------
+
+//MsgpackHandle is a Handle for the Msgpack Schema-Free Encoding Format.
+type MsgpackHandle struct {
+	BasicHandle
+
+	// RawToString controls how raw bytes are decoded into a nil interface{}.
+	RawToString bool
+	// WriteExt flag supports encoding configured extensions with extension tags.
+	// It also controls whether other elements of the new spec are encoded (ie Str8).
+	//
+	// With WriteExt=false, configured extensions are serialized as raw bytes
+	// and Str8 is not encoded.
+	//
+	// A stream can still be decoded into a typed value, provided an appropriate value
+	// is provided, but the type cannot be inferred from the stream. If no appropriate
+	// type is provided (e.g. decoding into a nil interface{}), you get back
+	// a []byte or string based on the setting of RawToString.
+	WriteExt bool
+}
+
+func (h *MsgpackHandle) newEncDriver(w encWriter) encDriver {
+	return &msgpackEncDriver{w: w, h: h}
+}
+
+func (h *MsgpackHandle) newDecDriver(r decReader) decDriver {
+	return &msgpackDecDriver{r: r, h: h}
+}
+
+func (h *MsgpackHandle) writeExt() bool {
+	return h.WriteExt
+}
+
+func (h *MsgpackHandle) getBasicHandle() *BasicHandle {
+	return &h.BasicHandle
+}
+
+//--------------------------------------------------
+
+type msgpackSpecRpcCodec struct {
+	rpcCodec
+}
+
+// /////////////// Spec RPC Codec ///////////////////
+func (c *msgpackSpecRpcCodec) WriteRequest(r *rpc.Request, body interface{}) error {
+	// WriteRequest can write to both a Go service, and other services that do
+	// not abide by the 1 argument rule of a Go service.
+	// We discriminate based on if the body is a MsgpackSpecRpcMultiArgs
+	var bodyArr []interface{}
+	if m, ok := body.(MsgpackSpecRpcMultiArgs); ok {
+		bodyArr = ([]interface{})(m)
+	} else {
+		bodyArr = []interface{}{body}
+	}
+	r2 := []interface{}{0, uint32(r.Seq), r.ServiceMethod, bodyArr}
+	return c.write(r2, nil, false, true)
+}
+
+func (c *msgpackSpecRpcCodec) WriteResponse(r *rpc.Response, body interface{}) error {
+	var moe interface{}
+	if r.Error != "" {
+		moe = r.Error
+	}
+	if moe != nil && body != nil {
+		body = nil
+	}
+	r2 := []interface{}{1, uint32(r.Seq), moe, body}
+	return c.write(r2, nil, false, true)
+}
+
+func (c *msgpackSpecRpcCodec) ReadResponseHeader(r *rpc.Response) error {
+	return c.parseCustomHeader(1, &r.Seq, &r.Error)
+}
+
+func (c *msgpackSpecRpcCodec) ReadRequestHeader(r *rpc.Request) error {
+	return c.parseCustomHeader(0, &r.Seq, &r.ServiceMethod)
+}
+
+func (c *msgpackSpecRpcCodec) ReadRequestBody(body interface{}) error {
+	if body == nil { // read and discard
+		return c.read(nil)
+	}
+	bodyArr := []interface{}{body}
+	return c.read(&bodyArr)
+}
+
+func (c *msgpackSpecRpcCodec) parseCustomHeader(expectTypeByte byte, msgid *uint64, methodOrError *string) (err error) {
+
+	if c.cls {
+		return io.EOF
+	}
+
+	// We read the response header by hand
+	// so that the body can be decoded on its own from the stream at a later time.
+
+	const fia byte = 0x94 //four item array descriptor value
+	// Not sure why the panic of EOF is swallowed above.
+	// if bs1 := c.dec.r.readn1(); bs1 != fia {
+	// 	err = fmt.Errorf("Unexpected value for array descriptor: Expecting %v. Received %v", fia, bs1)
+	// 	return
+	// }
+	var b byte
+	b, err = c.br.ReadByte()
+	if err != nil {
+		return
+	}
+	if b != fia {
+		err = fmt.Errorf("Unexpected value for array descriptor: Expecting %v. Received %v", fia, b)
+		return
+	}
+
+	if err = c.read(&b); err != nil {
+		return
+	}
+	if b != expectTypeByte {
+		err = fmt.Errorf("Unexpected byte descriptor in header. Expecting %v. Received %v", expectTypeByte, b)
+		return
+	}
+	if err = c.read(msgid); err != nil {
+		return
+	}
+	if err = c.read(methodOrError); err != nil {
+		return
+	}
+	return
+}
+
+//--------------------------------------------------
+
+// msgpackSpecRpc is the implementation of Rpc that uses custom communication protocol
+// as defined in the msgpack spec at https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md
+type msgpackSpecRpc struct{}
+
+// MsgpackSpecRpc implements Rpc using the communication protocol defined in
+// the msgpack spec at https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md .
+// Its methods (ServerCodec and ClientCodec) return values that implement RpcCodecBuffered.
+var MsgpackSpecRpc msgpackSpecRpc
+
+func (x msgpackSpecRpc) ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec {
+	return &msgpackSpecRpcCodec{newRPCCodec(conn, h)}
+}
+
+func (x msgpackSpecRpc) ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec {
+	return &msgpackSpecRpcCodec{newRPCCodec(conn, h)}
+}
+
+var _ decDriver = (*msgpackDecDriver)(nil)
+var _ encDriver = (*msgpackEncDriver)(nil)
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/rpc.go b/vendor/github.com/hashicorp/go-msgpack/codec/rpc.go
new file mode 100644
index 0000000000..d014dbdcc7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/rpc.go
@@ -0,0 +1,152 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import (
+	"bufio"
+	"io"
+	"net/rpc"
+	"sync"
+)
+
+// Rpc provides a rpc Server or Client Codec for rpc communication.
+type Rpc interface {
+	ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec
+	ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec
+}
+
+// RpcCodecBuffered allows access to the underlying bufio.Reader/Writer
+// used by the rpc connection. It accomodates use-cases where the connection
+// should be used by rpc and non-rpc functions, e.g. streaming a file after
+// sending an rpc response.
+type RpcCodecBuffered interface {
+	BufferedReader() *bufio.Reader
+	BufferedWriter() *bufio.Writer
+}
+
+// -------------------------------------
+
+// rpcCodec defines the struct members and common methods.
+type rpcCodec struct {
+	rwc io.ReadWriteCloser
+	dec *Decoder
+	enc *Encoder
+	bw  *bufio.Writer
+	br  *bufio.Reader
+	mu  sync.Mutex
+	cls bool
+}
+
+func newRPCCodec(conn io.ReadWriteCloser, h Handle) rpcCodec {
+	bw := bufio.NewWriter(conn)
+	br := bufio.NewReader(conn)
+	return rpcCodec{
+		rwc: conn,
+		bw:  bw,
+		br:  br,
+		enc: NewEncoder(bw, h),
+		dec: NewDecoder(br, h),
+	}
+}
+
+func (c *rpcCodec) BufferedReader() *bufio.Reader {
+	return c.br
+}
+
+func (c *rpcCodec) BufferedWriter() *bufio.Writer {
+	return c.bw
+}
+
+func (c *rpcCodec) write(obj1, obj2 interface{}, writeObj2, doFlush bool) (err error) {
+	if c.cls {
+		return io.EOF
+	}
+	if err = c.enc.Encode(obj1); err != nil {
+		return
+	}
+	if writeObj2 {
+		if err = c.enc.Encode(obj2); err != nil {
+			return
+		}
+	}
+	if doFlush && c.bw != nil {
+		return c.bw.Flush()
+	}
+	return
+}
+
+func (c *rpcCodec) read(obj interface{}) (err error) {
+	if c.cls {
+		return io.EOF
+	}
+	//If nil is passed in, we should still attempt to read content to nowhere.
+	if obj == nil {
+		var obj2 interface{}
+		return c.dec.Decode(&obj2)
+	}
+	return c.dec.Decode(obj)
+}
+
+func (c *rpcCodec) Close() error {
+	if c.cls {
+		return io.EOF
+	}
+	c.cls = true
+	return c.rwc.Close()
+}
+
+func (c *rpcCodec) ReadResponseBody(body interface{}) error {
+	return c.read(body)
+}
+
+// -------------------------------------
+
+type goRpcCodec struct {
+	rpcCodec
+}
+
+func (c *goRpcCodec) WriteRequest(r *rpc.Request, body interface{}) error {
+	// Must protect for concurrent access as per API
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	return c.write(r, body, true, true)
+}
+
+func (c *goRpcCodec) WriteResponse(r *rpc.Response, body interface{}) error {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	return c.write(r, body, true, true)
+}
+
+func (c *goRpcCodec) ReadResponseHeader(r *rpc.Response) error {
+	return c.read(r)
+}
+
+func (c *goRpcCodec) ReadRequestHeader(r *rpc.Request) error {
+	return c.read(r)
+}
+
+func (c *goRpcCodec) ReadRequestBody(body interface{}) error {
+	return c.read(body)
+}
+
+// -------------------------------------
+
+// goRpc is the implementation of Rpc that uses the communication protocol
+// as defined in net/rpc package.
+type goRpc struct{}
+
+// GoRpc implements Rpc using the communication protocol defined in net/rpc package.
+// Its methods (ServerCodec and ClientCodec) return values that implement RpcCodecBuffered.
+var GoRpc goRpc
+
+func (x goRpc) ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec {
+	return &goRpcCodec{newRPCCodec(conn, h)}
+}
+
+func (x goRpc) ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec {
+	return &goRpcCodec{newRPCCodec(conn, h)}
+}
+
+var _ RpcCodecBuffered = (*rpcCodec)(nil) // ensure *rpcCodec implements RpcCodecBuffered
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/simple.go b/vendor/github.com/hashicorp/go-msgpack/codec/simple.go
new file mode 100644
index 0000000000..9e4d148a2a
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/simple.go
@@ -0,0 +1,461 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import "math"
+
+const (
+	_               uint8 = iota
+	simpleVdNil           = 1
+	simpleVdFalse         = 2
+	simpleVdTrue          = 3
+	simpleVdFloat32       = 4
+	simpleVdFloat64       = 5
+
+	// each lasts for 4 (ie n, n+1, n+2, n+3)
+	simpleVdPosInt = 8
+	simpleVdNegInt = 12
+
+	// containers: each lasts for 4 (ie n, n+1, n+2, ... n+7)
+	simpleVdString    = 216
+	simpleVdByteArray = 224
+	simpleVdArray     = 232
+	simpleVdMap       = 240
+	simpleVdExt       = 248
+)
+
+type simpleEncDriver struct {
+	h *SimpleHandle
+	w encWriter
+	//b [8]byte
+}
+
+func (e *simpleEncDriver) isBuiltinType(rt uintptr) bool {
+	return false
+}
+
+func (e *simpleEncDriver) encodeBuiltin(rt uintptr, v interface{}) {
+}
+
+func (e *simpleEncDriver) encodeNil() {
+	e.w.writen1(simpleVdNil)
+}
+
+func (e *simpleEncDriver) encodeBool(b bool) {
+	if b {
+		e.w.writen1(simpleVdTrue)
+	} else {
+		e.w.writen1(simpleVdFalse)
+	}
+}
+
+func (e *simpleEncDriver) encodeFloat32(f float32) {
+	e.w.writen1(simpleVdFloat32)
+	e.w.writeUint32(math.Float32bits(f))
+}
+
+func (e *simpleEncDriver) encodeFloat64(f float64) {
+	e.w.writen1(simpleVdFloat64)
+	e.w.writeUint64(math.Float64bits(f))
+}
+
+func (e *simpleEncDriver) encodeInt(v int64) {
+	if v < 0 {
+		e.encUint(uint64(-v), simpleVdNegInt)
+	} else {
+		e.encUint(uint64(v), simpleVdPosInt)
+	}
+}
+
+func (e *simpleEncDriver) encodeUint(v uint64) {
+	e.encUint(v, simpleVdPosInt)
+}
+
+func (e *simpleEncDriver) encUint(v uint64, bd uint8) {
+	switch {
+	case v <= math.MaxUint8:
+		e.w.writen2(bd, uint8(v))
+	case v <= math.MaxUint16:
+		e.w.writen1(bd + 1)
+		e.w.writeUint16(uint16(v))
+	case v <= math.MaxUint32:
+		e.w.writen1(bd + 2)
+		e.w.writeUint32(uint32(v))
+	case v <= math.MaxUint64:
+		e.w.writen1(bd + 3)
+		e.w.writeUint64(v)
+	}
+}
+
+func (e *simpleEncDriver) encLen(bd byte, length int) {
+	switch {
+	case length == 0:
+		e.w.writen1(bd)
+	case length <= math.MaxUint8:
+		e.w.writen1(bd + 1)
+		e.w.writen1(uint8(length))
+	case length <= math.MaxUint16:
+		e.w.writen1(bd + 2)
+		e.w.writeUint16(uint16(length))
+	case int64(length) <= math.MaxUint32:
+		e.w.writen1(bd + 3)
+		e.w.writeUint32(uint32(length))
+	default:
+		e.w.writen1(bd + 4)
+		e.w.writeUint64(uint64(length))
+	}
+}
+
+func (e *simpleEncDriver) encodeExtPreamble(xtag byte, length int) {
+	e.encLen(simpleVdExt, length)
+	e.w.writen1(xtag)
+}
+
+func (e *simpleEncDriver) encodeArrayPreamble(length int) {
+	e.encLen(simpleVdArray, length)
+}
+
+func (e *simpleEncDriver) encodeMapPreamble(length int) {
+	e.encLen(simpleVdMap, length)
+}
+
+func (e *simpleEncDriver) encodeString(c charEncoding, v string) {
+	e.encLen(simpleVdString, len(v))
+	e.w.writestr(v)
+}
+
+func (e *simpleEncDriver) encodeSymbol(v string) {
+	e.encodeString(c_UTF8, v)
+}
+
+func (e *simpleEncDriver) encodeStringBytes(c charEncoding, v []byte) {
+	e.encLen(simpleVdByteArray, len(v))
+	e.w.writeb(v)
+}
+
+//------------------------------------
+
+type simpleDecDriver struct {
+	h      *SimpleHandle
+	r      decReader
+	bdRead bool
+	bdType valueType
+	bd     byte
+	//b      [8]byte
+}
+
+func (d *simpleDecDriver) initReadNext() {
+	if d.bdRead {
+		return
+	}
+	d.bd = d.r.readn1()
+	d.bdRead = true
+	d.bdType = valueTypeUnset
+}
+
+func (d *simpleDecDriver) currentEncodedType() valueType {
+	if d.bdType == valueTypeUnset {
+		switch d.bd {
+		case simpleVdNil:
+			d.bdType = valueTypeNil
+		case simpleVdTrue, simpleVdFalse:
+			d.bdType = valueTypeBool
+		case simpleVdPosInt, simpleVdPosInt + 1, simpleVdPosInt + 2, simpleVdPosInt + 3:
+			d.bdType = valueTypeUint
+		case simpleVdNegInt, simpleVdNegInt + 1, simpleVdNegInt + 2, simpleVdNegInt + 3:
+			d.bdType = valueTypeInt
+		case simpleVdFloat32, simpleVdFloat64:
+			d.bdType = valueTypeFloat
+		case simpleVdString, simpleVdString + 1, simpleVdString + 2, simpleVdString + 3, simpleVdString + 4:
+			d.bdType = valueTypeString
+		case simpleVdByteArray, simpleVdByteArray + 1, simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+			d.bdType = valueTypeBytes
+		case simpleVdExt, simpleVdExt + 1, simpleVdExt + 2, simpleVdExt + 3, simpleVdExt + 4:
+			d.bdType = valueTypeExt
+		case simpleVdArray, simpleVdArray + 1, simpleVdArray + 2, simpleVdArray + 3, simpleVdArray + 4:
+			d.bdType = valueTypeArray
+		case simpleVdMap, simpleVdMap + 1, simpleVdMap + 2, simpleVdMap + 3, simpleVdMap + 4:
+			d.bdType = valueTypeMap
+		default:
+			decErr("currentEncodedType: Unrecognized d.vd: 0x%x", d.bd)
+		}
+	}
+	return d.bdType
+}
+
+func (d *simpleDecDriver) tryDecodeAsNil() bool {
+	if d.bd == simpleVdNil {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *simpleDecDriver) isBuiltinType(rt uintptr) bool {
+	return false
+}
+
+func (d *simpleDecDriver) decodeBuiltin(rt uintptr, v interface{}) {
+}
+
+func (d *simpleDecDriver) decIntAny() (ui uint64, i int64, neg bool) {
+	switch d.bd {
+	case simpleVdPosInt:
+		ui = uint64(d.r.readn1())
+		i = int64(ui)
+	case simpleVdPosInt + 1:
+		ui = uint64(d.r.readUint16())
+		i = int64(ui)
+	case simpleVdPosInt + 2:
+		ui = uint64(d.r.readUint32())
+		i = int64(ui)
+	case simpleVdPosInt + 3:
+		ui = uint64(d.r.readUint64())
+		i = int64(ui)
+	case simpleVdNegInt:
+		ui = uint64(d.r.readn1())
+		i = -(int64(ui))
+		neg = true
+	case simpleVdNegInt + 1:
+		ui = uint64(d.r.readUint16())
+		i = -(int64(ui))
+		neg = true
+	case simpleVdNegInt + 2:
+		ui = uint64(d.r.readUint32())
+		i = -(int64(ui))
+		neg = true
+	case simpleVdNegInt + 3:
+		ui = uint64(d.r.readUint64())
+		i = -(int64(ui))
+		neg = true
+	default:
+		decErr("decIntAny: Integer only valid from pos/neg integer1..8. Invalid descriptor: %v", d.bd)
+	}
+	// don't do this check, because callers may only want the unsigned value.
+	// if ui > math.MaxInt64 {
+	// 	decErr("decIntAny: Integer out of range for signed int64: %v", ui)
+	// }
+	return
+}
+
+func (d *simpleDecDriver) decodeInt(bitsize uint8) (i int64) {
+	_, i, _ = d.decIntAny()
+	checkOverflow(0, i, bitsize)
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) decodeUint(bitsize uint8) (ui uint64) {
+	ui, i, neg := d.decIntAny()
+	if neg {
+		decErr("Assigning negative signed value: %v, to unsigned type", i)
+	}
+	checkOverflow(ui, 0, bitsize)
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) decodeFloat(chkOverflow32 bool) (f float64) {
+	switch d.bd {
+	case simpleVdFloat32:
+		f = float64(math.Float32frombits(d.r.readUint32()))
+	case simpleVdFloat64:
+		f = math.Float64frombits(d.r.readUint64())
+	default:
+		if d.bd >= simpleVdPosInt && d.bd <= simpleVdNegInt+3 {
+			_, i, _ := d.decIntAny()
+			f = float64(i)
+		} else {
+			decErr("Float only valid from float32/64: Invalid descriptor: %v", d.bd)
+		}
+	}
+	checkOverflowFloat32(f, chkOverflow32)
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool only (single byte).
+func (d *simpleDecDriver) decodeBool() (b bool) {
+	switch d.bd {
+	case simpleVdTrue:
+		b = true
+	case simpleVdFalse:
+	default:
+		decErr("Invalid single-byte value for bool: %s: %x", msgBadDesc, d.bd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) readMapLen() (length int) {
+	d.bdRead = false
+	return d.decLen()
+}
+
+func (d *simpleDecDriver) readArrayLen() (length int) {
+	d.bdRead = false
+	return d.decLen()
+}
+
+func (d *simpleDecDriver) decLen() int {
+	switch d.bd % 8 {
+	case 0:
+		return 0
+	case 1:
+		return int(d.r.readn1())
+	case 2:
+		return int(d.r.readUint16())
+	case 3:
+		ui := uint64(d.r.readUint32())
+		checkOverflow(ui, 0, intBitsize)
+		return int(ui)
+	case 4:
+		ui := d.r.readUint64()
+		checkOverflow(ui, 0, intBitsize)
+		return int(ui)
+	}
+	decErr("decLen: Cannot read length: bd%8 must be in range 0..4. Got: %d", d.bd%8)
+	return -1
+}
+
+func (d *simpleDecDriver) decodeString() (s string) {
+	s = string(d.r.readn(d.decLen()))
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) decodeBytes(bs []byte) (bsOut []byte, changed bool) {
+	if clen := d.decLen(); clen > 0 {
+		// if no contents in stream, don't update the passed byteslice
+		if len(bs) != clen {
+			if len(bs) > clen {
+				bs = bs[:clen]
+			} else {
+				bs = make([]byte, clen)
+			}
+			bsOut = bs
+			changed = true
+		}
+		d.r.readb(bs)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) decodeExt(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	switch d.bd {
+	case simpleVdExt, simpleVdExt + 1, simpleVdExt + 2, simpleVdExt + 3, simpleVdExt + 4:
+		l := d.decLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			decErr("Wrong extension tag. Got %b. Expecting: %v", xtag, tag)
+		}
+		xbs = d.r.readn(l)
+	case simpleVdByteArray, simpleVdByteArray + 1, simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+		xbs, _ = d.decodeBytes(nil)
+	default:
+		decErr("Invalid d.vd for extensions (Expecting extensions or byte array). Got: 0x%x", d.bd)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) decodeNaked() (v interface{}, vt valueType, decodeFurther bool) {
+	d.initReadNext()
+
+	switch d.bd {
+	case simpleVdNil:
+		vt = valueTypeNil
+	case simpleVdFalse:
+		vt = valueTypeBool
+		v = false
+	case simpleVdTrue:
+		vt = valueTypeBool
+		v = true
+	case simpleVdPosInt, simpleVdPosInt + 1, simpleVdPosInt + 2, simpleVdPosInt + 3:
+		vt = valueTypeUint
+		ui, _, _ := d.decIntAny()
+		v = ui
+	case simpleVdNegInt, simpleVdNegInt + 1, simpleVdNegInt + 2, simpleVdNegInt + 3:
+		vt = valueTypeInt
+		_, i, _ := d.decIntAny()
+		v = i
+	case simpleVdFloat32:
+		vt = valueTypeFloat
+		v = d.decodeFloat(true)
+	case simpleVdFloat64:
+		vt = valueTypeFloat
+		v = d.decodeFloat(false)
+	case simpleVdString, simpleVdString + 1, simpleVdString + 2, simpleVdString + 3, simpleVdString + 4:
+		vt = valueTypeString
+		v = d.decodeString()
+	case simpleVdByteArray, simpleVdByteArray + 1, simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+		vt = valueTypeBytes
+		v, _ = d.decodeBytes(nil)
+	case simpleVdExt, simpleVdExt + 1, simpleVdExt + 2, simpleVdExt + 3, simpleVdExt + 4:
+		vt = valueTypeExt
+		l := d.decLen()
+		var re RawExt
+		re.Tag = d.r.readn1()
+		re.Data = d.r.readn(l)
+		v = &re
+		vt = valueTypeExt
+	case simpleVdArray, simpleVdArray + 1, simpleVdArray + 2, simpleVdArray + 3, simpleVdArray + 4:
+		vt = valueTypeArray
+		decodeFurther = true
+	case simpleVdMap, simpleVdMap + 1, simpleVdMap + 2, simpleVdMap + 3, simpleVdMap + 4:
+		vt = valueTypeMap
+		decodeFurther = true
+	default:
+		decErr("decodeNaked: Unrecognized d.vd: 0x%x", d.bd)
+	}
+
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	return
+}
+
+//------------------------------------
+
+// SimpleHandle is a Handle for a very simple encoding format.
+//
+// simple is a simplistic codec similar to binc, but not as compact.
+//   - Encoding of a value is always preceeded by the descriptor byte (bd)
+//   - True, false, nil are encoded fully in 1 byte (the descriptor)
+//   - Integers (intXXX, uintXXX) are encoded in 1, 2, 4 or 8 bytes (plus a descriptor byte).
+//     There are positive (uintXXX and intXXX >= 0) and negative (intXXX < 0) integers.
+//   - Floats are encoded in 4 or 8 bytes (plus a descriptor byte)
+//   - Lenght of containers (strings, bytes, array, map, extensions)
+//     are encoded in 0, 1, 2, 4 or 8 bytes.
+//     Zero-length containers have no length encoded.
+//     For others, the number of bytes is given by pow(2, bd%3)
+//   - maps are encoded as [bd] [length] [[key][value]]...
+//   - arrays are encoded as [bd] [length] [value]...
+//   - extensions are encoded as [bd] [length] [tag] [byte]...
+//   - strings/bytearrays are encoded as [bd] [length] [byte]...
+//
+// The full spec will be published soon.
+type SimpleHandle struct {
+	BasicHandle
+}
+
+func (h *SimpleHandle) newEncDriver(w encWriter) encDriver {
+	return &simpleEncDriver{w: w, h: h}
+}
+
+func (h *SimpleHandle) newDecDriver(r decReader) decDriver {
+	return &simpleDecDriver{r: r, h: h}
+}
+
+func (_ *SimpleHandle) writeExt() bool {
+	return true
+}
+
+func (h *SimpleHandle) getBasicHandle() *BasicHandle {
+	return &h.BasicHandle
+}
+
+var _ decDriver = (*simpleDecDriver)(nil)
+var _ encDriver = (*simpleEncDriver)(nil)
diff --git a/vendor/github.com/hashicorp/go-msgpack/codec/time.go b/vendor/github.com/hashicorp/go-msgpack/codec/time.go
new file mode 100644
index 0000000000..c86d65328d
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-msgpack/codec/time.go
@@ -0,0 +1,193 @@
+// Copyright (c) 2012, 2013 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a BSD-style license found in the LICENSE file.
+
+package codec
+
+import (
+	"time"
+)
+
+var (
+	timeDigits = [...]byte{'0', '1', '2', '3', '4', '5', '6', '7', '8', '9'}
+)
+
+// EncodeTime encodes a time.Time as a []byte, including
+// information on the instant in time and UTC offset.
+//
+// Format Description
+//
+//   A timestamp is composed of 3 components:
+//
+//   - secs: signed integer representing seconds since unix epoch
+//   - nsces: unsigned integer representing fractional seconds as a
+//     nanosecond offset within secs, in the range 0 <= nsecs < 1e9
+//   - tz: signed integer representing timezone offset in minutes east of UTC,
+//     and a dst (daylight savings time) flag
+//
+//   When encoding a timestamp, the first byte is the descriptor, which
+//   defines which components are encoded and how many bytes are used to
+//   encode secs and nsecs components. *If secs/nsecs is 0 or tz is UTC, it
+//   is not encoded in the byte array explicitly*.
+//
+//       Descriptor 8 bits are of the form `A B C DDD EE`:
+//           A:   Is secs component encoded? 1 = true
+//           B:   Is nsecs component encoded? 1 = true
+//           C:   Is tz component encoded? 1 = true
+//           DDD: Number of extra bytes for secs (range 0-7).
+//                If A = 1, secs encoded in DDD+1 bytes.
+//                    If A = 0, secs is not encoded, and is assumed to be 0.
+//                    If A = 1, then we need at least 1 byte to encode secs.
+//                    DDD says the number of extra bytes beyond that 1.
+//                    E.g. if DDD=0, then secs is represented in 1 byte.
+//                         if DDD=2, then secs is represented in 3 bytes.
+//           EE:  Number of extra bytes for nsecs (range 0-3).
+//                If B = 1, nsecs encoded in EE+1 bytes (similar to secs/DDD above)
+//
+//   Following the descriptor bytes, subsequent bytes are:
+//
+//       secs component encoded in `DDD + 1` bytes (if A == 1)
+//       nsecs component encoded in `EE + 1` bytes (if B == 1)
+//       tz component encoded in 2 bytes (if C == 1)
+//
+//   secs and nsecs components are integers encoded in a BigEndian
+//   2-complement encoding format.
+//
+//   tz component is encoded as 2 bytes (16 bits). Most significant bit 15 to
+//   Least significant bit 0 are described below:
+//
+//       Timezone offset has a range of -12:00 to +14:00 (ie -720 to +840 minutes).
+//       Bit 15 = have\_dst: set to 1 if we set the dst flag.
+//       Bit 14 = dst\_on: set to 1 if dst is in effect at the time, or 0 if not.
+//       Bits 13..0 = timezone offset in minutes. It is a signed integer in Big Endian format.
+//
+func encodeTime(t time.Time) []byte {
+	//t := rv.Interface().(time.Time)
+	tsecs, tnsecs := t.Unix(), t.Nanosecond()
+	var (
+		bd   byte
+		btmp [8]byte
+		bs   [16]byte
+		i    int = 1
+	)
+	l := t.Location()
+	if l == time.UTC {
+		l = nil
+	}
+	if tsecs != 0 {
+		bd = bd | 0x80
+		bigen.PutUint64(btmp[:], uint64(tsecs))
+		f := pruneSignExt(btmp[:], tsecs >= 0)
+		bd = bd | (byte(7-f) << 2)
+		copy(bs[i:], btmp[f:])
+		i = i + (8 - f)
+	}
+	if tnsecs != 0 {
+		bd = bd | 0x40
+		bigen.PutUint32(btmp[:4], uint32(tnsecs))
+		f := pruneSignExt(btmp[:4], true)
+		bd = bd | byte(3-f)
+		copy(bs[i:], btmp[f:4])
+		i = i + (4 - f)
+	}
+	if l != nil {
+		bd = bd | 0x20
+		// Note that Go Libs do not give access to dst flag.
+		_, zoneOffset := t.Zone()
+		//zoneName, zoneOffset := t.Zone()
+		zoneOffset /= 60
+		z := uint16(zoneOffset)
+		bigen.PutUint16(btmp[:2], z)
+		// clear dst flags
+		bs[i] = btmp[0] & 0x3f
+		bs[i+1] = btmp[1]
+		i = i + 2
+	}
+	bs[0] = bd
+	return bs[0:i]
+}
+
+// DecodeTime decodes a []byte into a time.Time.
+func decodeTime(bs []byte) (tt time.Time, err error) {
+	bd := bs[0]
+	var (
+		tsec  int64
+		tnsec uint32
+		tz    uint16
+		i     byte = 1
+		i2    byte
+		n     byte
+	)
+	if bd&(1<<7) != 0 {
+		var btmp [8]byte
+		n = ((bd >> 2) & 0x7) + 1
+		i2 = i + n
+		copy(btmp[8-n:], bs[i:i2])
+		//if first bit of bs[i] is set, then fill btmp[0..8-n] with 0xff (ie sign extend it)
+		if bs[i]&(1<<7) != 0 {
+			copy(btmp[0:8-n], bsAll0xff)
+			//for j,k := byte(0), 8-n; j < k; j++ {	btmp[j] = 0xff }
+		}
+		i = i2
+		tsec = int64(bigen.Uint64(btmp[:]))
+	}
+	if bd&(1<<6) != 0 {
+		var btmp [4]byte
+		n = (bd & 0x3) + 1
+		i2 = i + n
+		copy(btmp[4-n:], bs[i:i2])
+		i = i2
+		tnsec = bigen.Uint32(btmp[:])
+	}
+	if bd&(1<<5) == 0 {
+		tt = time.Unix(tsec, int64(tnsec)).UTC()
+		return
+	}
+	// In stdlib time.Parse, when a date is parsed without a zone name, it uses "" as zone name.
+	// However, we need name here, so it can be shown when time is printed.
+	// Zone name is in form: UTC-08:00.
+	// Note that Go Libs do not give access to dst flag, so we ignore dst bits
+
+	i2 = i + 2
+	tz = bigen.Uint16(bs[i:i2])
+	i = i2
+	// sign extend sign bit into top 2 MSB (which were dst bits):
+	if tz&(1<<13) == 0 { // positive
+		tz = tz & 0x3fff //clear 2 MSBs: dst bits
+	} else { // negative
+		tz = tz | 0xc000 //set 2 MSBs: dst bits
+		//tzname[3] = '-' (TODO: verify. this works here)
+	}
+	tzint := int16(tz)
+	if tzint == 0 {
+		tt = time.Unix(tsec, int64(tnsec)).UTC()
+	} else {
+		// For Go Time, do not use a descriptive timezone.
+		// It's unnecessary, and makes it harder to do a reflect.DeepEqual.
+		// The Offset already tells what the offset should be, if not on UTC and unknown zone name.
+		// var zoneName = timeLocUTCName(tzint)
+		tt = time.Unix(tsec, int64(tnsec)).In(time.FixedZone("", int(tzint)*60))
+	}
+	return
+}
+
+func timeLocUTCName(tzint int16) string {
+	if tzint == 0 {
+		return "UTC"
+	}
+	var tzname = []byte("UTC+00:00")
+	//tzname := fmt.Sprintf("UTC%s%02d:%02d", tzsign, tz/60, tz%60) //perf issue using Sprintf. inline below.
+	//tzhr, tzmin := tz/60, tz%60 //faster if u convert to int first
+	var tzhr, tzmin int16
+	if tzint < 0 {
+		tzname[3] = '-' // (TODO: verify. this works here)
+		tzhr, tzmin = -tzint/60, (-tzint)%60
+	} else {
+		tzhr, tzmin = tzint/60, tzint%60
+	}
+	tzname[4] = timeDigits[tzhr/10]
+	tzname[5] = timeDigits[tzhr%10]
+	tzname[7] = timeDigits[tzmin/10]
+	tzname[8] = timeDigits[tzmin%10]
+	return string(tzname)
+	//return time.FixedZone(string(tzname), int(tzint)*60)
+}
diff --git a/vendor/github.com/hashicorp/go-multierror/LICENSE b/vendor/github.com/hashicorp/go-multierror/LICENSE
new file mode 100644
index 0000000000..82b4de97c7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/LICENSE
@@ -0,0 +1,353 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. “Contributor”
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. “Contributor Version”
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor’s Contribution.
+
+1.3. “Contribution”
+
+     means Covered Software of a particular Contributor.
+
+1.4. “Covered Software”
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. “Incompatible With Secondary Licenses”
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of version
+        1.1 or earlier of the License, but not also under the terms of a
+        Secondary License.
+
+1.6. “Executable Form”
+
+     means any form of the work other than Source Code Form.
+
+1.7. “Larger Work”
+
+     means a work that combines Covered Software with other material, in a separate
+     file or files, that is not Covered Software.
+
+1.8. “License”
+
+     means this document.
+
+1.9. “Licensable”
+
+     means having the right to grant, to the maximum extent possible, whether at the
+     time of the initial grant or subsequently, any and all of the rights conveyed by
+     this License.
+
+1.10. “Modifications”
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to, deletion
+        from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. “Patent Claims” of a Contributor
+
+      means any patent claim(s), including without limitation, method, process,
+      and apparatus claims, in any patent Licensable by such Contributor that
+      would be infringed, but for the grant of the License, by the making,
+      using, selling, offering for sale, having made, import, or transfer of
+      either its Contributions or its Contributor Version.
+
+1.12. “Secondary License”
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. “Source Code Form”
+
+      means the form of the work preferred for making modifications.
+
+1.14. “You” (or “Your”)
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, “You” includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, “control” means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or as
+        part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its Contributions
+        or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution become
+     effective for each Contribution on the date the Contributor first distributes
+     such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under this
+     License. No additional rights or licenses will be implied from the distribution
+     or licensing of Covered Software under this License. Notwithstanding Section
+     2.1(b) above, no patent license is granted by a Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party’s
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of its
+        Contributions.
+
+     This License does not grant any rights in the trademarks, service marks, or
+     logos of any Contributor (except as may be necessary to comply with the
+     notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this License
+     (see Section 10.2) or under the terms of a Secondary License (if permitted
+     under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its Contributions
+     are its original creation(s) or it has sufficient rights to grant the
+     rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under applicable
+     copyright doctrines of fair use, fair dealing, or other equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under the
+     terms of this License. You must inform recipients that the Source Code Form
+     of the Covered Software is governed by the terms of this License, and how
+     they can obtain a copy of this License. You may not attempt to alter or
+     restrict the recipients’ rights in the Source Code Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this License,
+        or sublicense it under different terms, provided that the license for
+        the Executable Form does not attempt to limit or alter the recipients’
+        rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for the
+     Covered Software. If the Larger Work is a combination of Covered Software
+     with a work governed by one or more Secondary Licenses, and the Covered
+     Software is not Incompatible With Secondary Licenses, this License permits
+     You to additionally distribute such Covered Software under the terms of
+     such Secondary License(s), so that the recipient of the Larger Work may, at
+     their option, further distribute the Covered Software under the terms of
+     either this License or such Secondary License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices (including
+     copyright notices, patent notices, disclaimers of warranty, or limitations
+     of liability) contained within the Source Code Form of the Covered
+     Software, except that You may alter any license notices to the extent
+     required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on behalf
+     of any Contributor. You must make it absolutely clear that any such
+     warranty, support, indemnity, or liability obligation is offered by You
+     alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute, judicial
+   order, or regulation then You must: (a) comply with the terms of this License
+   to the maximum extent possible; and (b) describe the limitations and the code
+   they affect. Such description must be placed in a text file included with all
+   distributions of the Covered Software under this License. Except to the
+   extent prohibited by statute or regulation, such description must be
+   sufficiently detailed for a recipient of ordinary skill to be able to
+   understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing basis,
+     if such Contributor fails to notify You of the non-compliance by some
+     reasonable means prior to 60 days after You have come back into compliance.
+     Moreover, Your grants from a particular Contributor are reinstated on an
+     ongoing basis if such Contributor notifies You of the non-compliance by
+     some reasonable means, this is the first time You have received notice of
+     non-compliance with this License from such Contributor, and You become
+     compliant prior to 30 days after Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions, counter-claims,
+     and cross-claims) alleging that a Contributor Version directly or
+     indirectly infringes any patent, then the rights granted to You by any and
+     all Contributors for the Covered Software under Section 2.1 of this License
+     shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an “as is” basis, without
+   warranty of any kind, either expressed, implied, or statutory, including,
+   without limitation, warranties that the Covered Software is free of defects,
+   merchantable, fit for a particular purpose or non-infringing. The entire
+   risk as to the quality and performance of the Covered Software is with You.
+   Should any Covered Software prove defective in any respect, You (not any
+   Contributor) assume the cost of any necessary servicing, repair, or
+   correction. This disclaimer of warranty constitutes an essential part of this
+   License. No use of  any Covered Software is authorized under this License
+   except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from such
+   party’s negligence to the extent applicable law prohibits such limitation.
+   Some jurisdictions do not allow the exclusion or limitation of incidental or
+   consequential damages, so this exclusion and limitation may not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts of
+   a jurisdiction where the defendant maintains its principal place of business
+   and such litigation shall be governed by laws of that jurisdiction, without
+   reference to its conflict-of-law provisions. Nothing in this Section shall
+   prevent a party’s ability to bring cross-claims or counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject matter
+   hereof. If any provision of this License is held to be unenforceable, such
+   provision shall be reformed only to the extent necessary to make it
+   enforceable. Any law or regulation which provides that the language of a
+   contract shall be construed against the drafter shall not be used to construe
+   this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version of
+      the License under which You originally received the Covered Software, or
+      under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a modified
+      version of this License if you rename the license and remove any
+      references to the name of the license steward (except to note that such
+      modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary Licenses
+      If You choose to distribute Source Code Form that is Incompatible With
+      Secondary Licenses under the terms of this version of the License, the
+      notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file, then
+You may include the notice in a location (such as a LICENSE file in a relevant
+directory) where a recipient would be likely to look for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - “Incompatible With Secondary Licenses” Notice
+
+      This Source Code Form is “Incompatible
+      With Secondary Licenses”, as defined by
+      the Mozilla Public License, v. 2.0.
diff --git a/vendor/github.com/hashicorp/go-multierror/append.go b/vendor/github.com/hashicorp/go-multierror/append.go
new file mode 100644
index 0000000000..775b6e753e
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/append.go
@@ -0,0 +1,41 @@
+package multierror
+
+// Append is a helper function that will append more errors
+// onto an Error in order to create a larger multi-error.
+//
+// If err is not a multierror.Error, then it will be turned into
+// one. If any of the errs are multierr.Error, they will be flattened
+// one level into err.
+func Append(err error, errs ...error) *Error {
+	switch err := err.(type) {
+	case *Error:
+		// Typed nils can reach here, so initialize if we are nil
+		if err == nil {
+			err = new(Error)
+		}
+
+		// Go through each error and flatten
+		for _, e := range errs {
+			switch e := e.(type) {
+			case *Error:
+				if e != nil {
+					err.Errors = append(err.Errors, e.Errors...)
+				}
+			default:
+				if e != nil {
+					err.Errors = append(err.Errors, e)
+				}
+			}
+		}
+
+		return err
+	default:
+		newErrs := make([]error, 0, len(errs)+1)
+		if err != nil {
+			newErrs = append(newErrs, err)
+		}
+		newErrs = append(newErrs, errs...)
+
+		return Append(&Error{}, newErrs...)
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-multierror/flatten.go b/vendor/github.com/hashicorp/go-multierror/flatten.go
new file mode 100644
index 0000000000..aab8e9abec
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/flatten.go
@@ -0,0 +1,26 @@
+package multierror
+
+// Flatten flattens the given error, merging any *Errors together into
+// a single *Error.
+func Flatten(err error) error {
+	// If it isn't an *Error, just return the error as-is
+	if _, ok := err.(*Error); !ok {
+		return err
+	}
+
+	// Otherwise, make the result and flatten away!
+	flatErr := new(Error)
+	flatten(err, flatErr)
+	return flatErr
+}
+
+func flatten(err error, flatErr *Error) {
+	switch err := err.(type) {
+	case *Error:
+		for _, e := range err.Errors {
+			flatten(e, flatErr)
+		}
+	default:
+		flatErr.Errors = append(flatErr.Errors, err)
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-multierror/format.go b/vendor/github.com/hashicorp/go-multierror/format.go
new file mode 100644
index 0000000000..6c7a3cc91d
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/format.go
@@ -0,0 +1,27 @@
+package multierror
+
+import (
+	"fmt"
+	"strings"
+)
+
+// ErrorFormatFunc is a function callback that is called by Error to
+// turn the list of errors into a string.
+type ErrorFormatFunc func([]error) string
+
+// ListFormatFunc is a basic formatter that outputs the number of errors
+// that occurred along with a bullet point list of the errors.
+func ListFormatFunc(es []error) string {
+	if len(es) == 1 {
+		return fmt.Sprintf("1 error occurred:\n\n* %s", es[0])
+	}
+
+	points := make([]string, len(es))
+	for i, err := range es {
+		points[i] = fmt.Sprintf("* %s", err)
+	}
+
+	return fmt.Sprintf(
+		"%d errors occurred:\n\n%s",
+		len(es), strings.Join(points, "\n"))
+}
diff --git a/vendor/github.com/hashicorp/go-multierror/multierror.go b/vendor/github.com/hashicorp/go-multierror/multierror.go
new file mode 100644
index 0000000000..89b1422d1d
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/multierror.go
@@ -0,0 +1,51 @@
+package multierror
+
+import (
+	"fmt"
+)
+
+// Error is an error type to track multiple errors. This is used to
+// accumulate errors in cases and return them as a single "error".
+type Error struct {
+	Errors      []error
+	ErrorFormat ErrorFormatFunc
+}
+
+func (e *Error) Error() string {
+	fn := e.ErrorFormat
+	if fn == nil {
+		fn = ListFormatFunc
+	}
+
+	return fn(e.Errors)
+}
+
+// ErrorOrNil returns an error interface if this Error represents
+// a list of errors, or returns nil if the list of errors is empty. This
+// function is useful at the end of accumulation to make sure that the value
+// returned represents the existence of errors.
+func (e *Error) ErrorOrNil() error {
+	if e == nil {
+		return nil
+	}
+	if len(e.Errors) == 0 {
+		return nil
+	}
+
+	return e
+}
+
+func (e *Error) GoString() string {
+	return fmt.Sprintf("*%#v", *e)
+}
+
+// WrappedErrors returns the list of errors that this Error is wrapping.
+// It is an implementation of the errwrap.Wrapper interface so that
+// multierror.Error can be used with that library.
+//
+// This method is not safe to be called concurrently and is no different
+// than accessing the Errors field directly. It is implemented only to
+// satisfy the errwrap.Wrapper interface.
+func (e *Error) WrappedErrors() []error {
+	return e.Errors
+}
diff --git a/vendor/github.com/hashicorp/go-multierror/prefix.go b/vendor/github.com/hashicorp/go-multierror/prefix.go
new file mode 100644
index 0000000000..5c477abe44
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-multierror/prefix.go
@@ -0,0 +1,37 @@
+package multierror
+
+import (
+	"fmt"
+
+	"github.com/hashicorp/errwrap"
+)
+
+// Prefix is a helper function that will prefix some text
+// to the given error. If the error is a multierror.Error, then
+// it will be prefixed to each wrapped error.
+//
+// This is useful to use when appending multiple multierrors
+// together in order to give better scoping.
+func Prefix(err error, prefix string) error {
+	if err == nil {
+		return nil
+	}
+
+	format := fmt.Sprintf("%s {{err}}", prefix)
+	switch err := err.(type) {
+	case *Error:
+		// Typed nils can reach here, so initialize if we are nil
+		if err == nil {
+			err = new(Error)
+		}
+
+		// Wrap each of the errors
+		for i, e := range err.Errors {
+			err.Errors[i] = errwrap.Wrapf(format, e)
+		}
+
+		return err
+	default:
+		return errwrap.Wrapf(format, err)
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-rootcerts/LICENSE b/vendor/github.com/hashicorp/go-rootcerts/LICENSE
new file mode 100644
index 0000000000..e87a115e46
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/LICENSE
@@ -0,0 +1,363 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. "Contributor"
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+
+     means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the terms of
+        a Secondary License.
+
+1.6. "Executable Form"
+
+     means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+
+     means a work that combines Covered Software with other material, in a
+     separate file or files, that is not Covered Software.
+
+1.8. "License"
+
+     means this document.
+
+1.9. "Licensable"
+
+     means having the right to grant, to the maximum extent possible, whether
+     at the time of the initial grant or subsequently, any and all of the
+     rights conveyed by this License.
+
+1.10. "Modifications"
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. "Patent Claims" of a Contributor
+
+      means any patent claim(s), including without limitation, method,
+      process, and apparatus claims, in any patent Licensable by such
+      Contributor that would be infringed, but for the grant of the License,
+      by the making, using, selling, offering for sale, having made, import,
+      or transfer of either its Contributions or its Contributor Version.
+
+1.12. "Secondary License"
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. "Source Code Form"
+
+      means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, "You" includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, "control" means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or
+        as part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its
+        Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution
+     become effective for each Contribution on the date the Contributor first
+     distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under
+     this License. No additional rights or licenses will be implied from the
+     distribution or licensing of Covered Software under this License.
+     Notwithstanding Section 2.1(b) above, no patent license is granted by a
+     Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party's
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of
+        its Contributions.
+
+     This License does not grant any rights in the trademarks, service marks,
+     or logos of any Contributor (except as may be necessary to comply with
+     the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this
+     License (see Section 10.2) or under the terms of a Secondary License (if
+     permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its
+     Contributions are its original creation(s) or it has sufficient rights to
+     grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under
+     applicable copyright doctrines of fair use, fair dealing, or other
+     equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under
+     the terms of this License. You must inform recipients that the Source
+     Code Form of the Covered Software is governed by the terms of this
+     License, and how they can obtain a copy of this License. You may not
+     attempt to alter or restrict the recipients' rights in the Source Code
+     Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this
+        License, or sublicense it under different terms, provided that the
+        license for the Executable Form does not attempt to limit or alter the
+        recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for
+     the Covered Software. If the Larger Work is a combination of Covered
+     Software with a work governed by one or more Secondary Licenses, and the
+     Covered Software is not Incompatible With Secondary Licenses, this
+     License permits You to additionally distribute such Covered Software
+     under the terms of such Secondary License(s), so that the recipient of
+     the Larger Work may, at their option, further distribute the Covered
+     Software under the terms of either this License or such Secondary
+     License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices
+     (including copyright notices, patent notices, disclaimers of warranty, or
+     limitations of liability) contained within the Source Code Form of the
+     Covered Software, except that You may alter any license notices to the
+     extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on
+     behalf of any Contributor. You must make it absolutely clear that any
+     such warranty, support, indemnity, or liability obligation is offered by
+     You alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute,
+   judicial order, or regulation then You must: (a) comply with the terms of
+   this License to the maximum extent possible; and (b) describe the
+   limitations and the code they affect. Such description must be placed in a
+   text file included with all distributions of the Covered Software under
+   this License. Except to the extent prohibited by statute or regulation,
+   such description must be sufficiently detailed for a recipient of ordinary
+   skill to be able to understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing
+     basis, if such Contributor fails to notify You of the non-compliance by
+     some reasonable means prior to 60 days after You have come back into
+     compliance. Moreover, Your grants from a particular Contributor are
+     reinstated on an ongoing basis if such Contributor notifies You of the
+     non-compliance by some reasonable means, this is the first time You have
+     received notice of non-compliance with this License from such
+     Contributor, and You become compliant prior to 30 days after Your receipt
+     of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions,
+     counter-claims, and cross-claims) alleging that a Contributor Version
+     directly or indirectly infringes any patent, then the rights granted to
+     You by any and all Contributors for the Covered Software under Section
+     2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an "as is" basis,
+   without warranty of any kind, either expressed, implied, or statutory,
+   including, without limitation, warranties that the Covered Software is free
+   of defects, merchantable, fit for a particular purpose or non-infringing.
+   The entire risk as to the quality and performance of the Covered Software
+   is with You. Should any Covered Software prove defective in any respect,
+   You (not any Contributor) assume the cost of any necessary servicing,
+   repair, or correction. This disclaimer of warranty constitutes an essential
+   part of this License. No use of  any Covered Software is authorized under
+   this License except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from
+   such party's negligence to the extent applicable law prohibits such
+   limitation. Some jurisdictions do not allow the exclusion or limitation of
+   incidental or consequential damages, so this exclusion and limitation may
+   not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts
+   of a jurisdiction where the defendant maintains its principal place of
+   business and such litigation shall be governed by laws of that
+   jurisdiction, without reference to its conflict-of-law provisions. Nothing
+   in this Section shall prevent a party's ability to bring cross-claims or
+   counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject
+   matter hereof. If any provision of this License is held to be
+   unenforceable, such provision shall be reformed only to the extent
+   necessary to make it enforceable. Any law or regulation which provides that
+   the language of a contract shall be construed against the drafter shall not
+   be used to construe this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version
+      of the License under which You originally received the Covered Software,
+      or under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a
+      modified version of this License if you rename the license and remove
+      any references to the name of the license steward (except to note that
+      such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+      Licenses If You choose to distribute Source Code Form that is
+      Incompatible With Secondary Licenses under the terms of this version of
+      the License, the notice described in Exhibit B of this License must be
+      attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file,
+then You may include the notice in a location (such as a LICENSE file in a
+relevant directory) where a recipient would be likely to look for such a
+notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+
+      This Source Code Form is "Incompatible
+      With Secondary Licenses", as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/go-rootcerts/doc.go b/vendor/github.com/hashicorp/go-rootcerts/doc.go
new file mode 100644
index 0000000000..b55cc62848
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/doc.go
@@ -0,0 +1,9 @@
+// Package rootcerts contains functions to aid in loading CA certificates for
+// TLS connections.
+//
+// In addition, its default behavior on Darwin works around an open issue [1]
+// in Go's crypto/x509 that prevents certicates from being loaded from the
+// System or Login keychains.
+//
+// [1] https://github.com/golang/go/issues/14514
+package rootcerts
diff --git a/vendor/github.com/hashicorp/go-rootcerts/rootcerts.go b/vendor/github.com/hashicorp/go-rootcerts/rootcerts.go
new file mode 100644
index 0000000000..aeb30ece32
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/rootcerts.go
@@ -0,0 +1,103 @@
+package rootcerts
+
+import (
+	"crypto/tls"
+	"crypto/x509"
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+)
+
+// Config determines where LoadCACerts will load certificates from. When both
+// CAFile and CAPath are blank, this library's functions will either load
+// system roots explicitly and return them, or set the CertPool to nil to allow
+// Go's standard library to load system certs.
+type Config struct {
+	// CAFile is a path to a PEM-encoded certificate file or bundle. Takes
+	// precedence over CAPath.
+	CAFile string
+
+	// CAPath is a path to a directory populated with PEM-encoded certificates.
+	CAPath string
+}
+
+// ConfigureTLS sets up the RootCAs on the provided tls.Config based on the
+// Config specified.
+func ConfigureTLS(t *tls.Config, c *Config) error {
+	if t == nil {
+		return nil
+	}
+	pool, err := LoadCACerts(c)
+	if err != nil {
+		return err
+	}
+	t.RootCAs = pool
+	return nil
+}
+
+// LoadCACerts loads a CertPool based on the Config specified.
+func LoadCACerts(c *Config) (*x509.CertPool, error) {
+	if c == nil {
+		c = &Config{}
+	}
+	if c.CAFile != "" {
+		return LoadCAFile(c.CAFile)
+	}
+	if c.CAPath != "" {
+		return LoadCAPath(c.CAPath)
+	}
+
+	return LoadSystemCAs()
+}
+
+// LoadCAFile loads a single PEM-encoded file from the path specified.
+func LoadCAFile(caFile string) (*x509.CertPool, error) {
+	pool := x509.NewCertPool()
+
+	pem, err := ioutil.ReadFile(caFile)
+	if err != nil {
+		return nil, fmt.Errorf("Error loading CA File: %s", err)
+	}
+
+	ok := pool.AppendCertsFromPEM(pem)
+	if !ok {
+		return nil, fmt.Errorf("Error loading CA File: Couldn't parse PEM in: %s", caFile)
+	}
+
+	return pool, nil
+}
+
+// LoadCAPath walks the provided path and loads all certificates encounted into
+// a pool.
+func LoadCAPath(caPath string) (*x509.CertPool, error) {
+	pool := x509.NewCertPool()
+	walkFn := func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		if info.IsDir() {
+			return nil
+		}
+
+		pem, err := ioutil.ReadFile(path)
+		if err != nil {
+			return fmt.Errorf("Error loading file from CAPath: %s", err)
+		}
+
+		ok := pool.AppendCertsFromPEM(pem)
+		if !ok {
+			return fmt.Errorf("Error loading CA Path: Couldn't parse PEM in: %s", path)
+		}
+
+		return nil
+	}
+
+	err := filepath.Walk(caPath, walkFn)
+	if err != nil {
+		return nil, err
+	}
+
+	return pool, nil
+}
diff --git a/vendor/github.com/hashicorp/go-rootcerts/rootcerts_base.go b/vendor/github.com/hashicorp/go-rootcerts/rootcerts_base.go
new file mode 100644
index 0000000000..66b1472c4a
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/rootcerts_base.go
@@ -0,0 +1,12 @@
+// +build !darwin
+
+package rootcerts
+
+import "crypto/x509"
+
+// LoadSystemCAs does nothing on non-Darwin systems. We return nil so that
+// default behavior of standard TLS config libraries is triggered, which is to
+// load system certs.
+func LoadSystemCAs() (*x509.CertPool, error) {
+	return nil, nil
+}
diff --git a/vendor/github.com/hashicorp/go-rootcerts/rootcerts_darwin.go b/vendor/github.com/hashicorp/go-rootcerts/rootcerts_darwin.go
new file mode 100644
index 0000000000..a9a040657f
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/rootcerts_darwin.go
@@ -0,0 +1,48 @@
+package rootcerts
+
+import (
+	"crypto/x509"
+	"os/exec"
+	"path"
+
+	"github.com/mitchellh/go-homedir"
+)
+
+// LoadSystemCAs has special behavior on Darwin systems to work around
+func LoadSystemCAs() (*x509.CertPool, error) {
+	pool := x509.NewCertPool()
+
+	for _, keychain := range certKeychains() {
+		err := addCertsFromKeychain(pool, keychain)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	return pool, nil
+}
+
+func addCertsFromKeychain(pool *x509.CertPool, keychain string) error {
+	cmd := exec.Command("/usr/bin/security", "find-certificate", "-a", "-p", keychain)
+	data, err := cmd.Output()
+	if err != nil {
+		return err
+	}
+
+	pool.AppendCertsFromPEM(data)
+
+	return nil
+}
+
+func certKeychains() []string {
+	keychains := []string{
+		"/System/Library/Keychains/SystemRootCertificates.keychain",
+		"/Library/Keychains/System.keychain",
+	}
+	home, err := homedir.Dir()
+	if err == nil {
+		loginKeychain := path.Join(home, "Library", "Keychains", "login.keychain")
+		keychains = append(keychains, loginKeychain)
+	}
+	return keychains
+}
diff --git a/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/securetrust.pem b/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/securetrust.pem
new file mode 120000
index 0000000000..dda0574d7f
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/securetrust.pem
@@ -0,0 +1 @@
+../capath/securetrust.pem
\ No newline at end of file
diff --git a/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/thawte.pem b/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/thawte.pem
new file mode 120000
index 0000000000..37ed4f01a4
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-rootcerts/test-fixtures/capath-with-symlinks/thawte.pem
@@ -0,0 +1 @@
+../capath/thawte.pem
\ No newline at end of file
diff --git a/vendor/github.com/hashicorp/go-sockaddr/LICENSE b/vendor/github.com/hashicorp/go-sockaddr/LICENSE
new file mode 100644
index 0000000000..a612ad9813
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/LICENSE
@@ -0,0 +1,373 @@
+Mozilla Public License Version 2.0
+==================================
+
+1. Definitions
+--------------
+
+1.1. "Contributor"
+    means each individual or legal entity that creates, contributes to
+    the creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+    means the combination of the Contributions of others (if any) used
+    by a Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+    means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+    means Source Code Form to which the initial Contributor has attached
+    the notice in Exhibit A, the Executable Form of such Source Code
+    Form, and Modifications of such Source Code Form, in each case
+    including portions thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+    means
+
+    (a) that the initial Contributor has attached the notice described
+        in Exhibit B to the Covered Software; or
+
+    (b) that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the
+        terms of a Secondary License.
+
+1.6. "Executable Form"
+    means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+    means a work that combines Covered Software with other material, in
+    a separate file or files, that is not Covered Software.
+
+1.8. "License"
+    means this document.
+
+1.9. "Licensable"
+    means having the right to grant, to the maximum extent possible,
+    whether at the time of the initial grant or subsequently, any and
+    all of the rights conveyed by this License.
+
+1.10. "Modifications"
+    means any of the following:
+
+    (a) any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered
+        Software; or
+
+    (b) any new file in Source Code Form that contains any Covered
+        Software.
+
+1.11. "Patent Claims" of a Contributor
+    means any patent claim(s), including without limitation, method,
+    process, and apparatus claims, in any patent Licensable by such
+    Contributor that would be infringed, but for the grant of the
+    License, by the making, using, selling, offering for sale, having
+    made, import, or transfer of either its Contributions or its
+    Contributor Version.
+
+1.12. "Secondary License"
+    means either the GNU General Public License, Version 2.0, the GNU
+    Lesser General Public License, Version 2.1, the GNU Affero General
+    Public License, Version 3.0, or any later versions of those
+    licenses.
+
+1.13. "Source Code Form"
+    means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+    means an individual or a legal entity exercising rights under this
+    License. For legal entities, "You" includes any entity that
+    controls, is controlled by, or is under common control with You. For
+    purposes of this definition, "control" means (a) the power, direct
+    or indirect, to cause the direction or management of such entity,
+    whether by contract or otherwise, or (b) ownership of more than
+    fifty percent (50%) of the outstanding shares or beneficial
+    ownership of such entity.
+
+2. License Grants and Conditions
+--------------------------------
+
+2.1. Grants
+
+Each Contributor hereby grants You a world-wide, royalty-free,
+non-exclusive license:
+
+(a) under intellectual property rights (other than patent or trademark)
+    Licensable by such Contributor to use, reproduce, make available,
+    modify, display, perform, distribute, and otherwise exploit its
+    Contributions, either on an unmodified basis, with Modifications, or
+    as part of a Larger Work; and
+
+(b) under Patent Claims of such Contributor to make, use, sell, offer
+    for sale, have made, import, and otherwise transfer either its
+    Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+The licenses granted in Section 2.1 with respect to any Contribution
+become effective for each Contribution on the date the Contributor first
+distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+The licenses granted in this Section 2 are the only rights granted under
+this License. No additional rights or licenses will be implied from the
+distribution or licensing of Covered Software under this License.
+Notwithstanding Section 2.1(b) above, no patent license is granted by a
+Contributor:
+
+(a) for any code that a Contributor has removed from Covered Software;
+    or
+
+(b) for infringements caused by: (i) Your and any other third party's
+    modifications of Covered Software, or (ii) the combination of its
+    Contributions with other software (except as part of its Contributor
+    Version); or
+
+(c) under Patent Claims infringed by Covered Software in the absence of
+    its Contributions.
+
+This License does not grant any rights in the trademarks, service marks,
+or logos of any Contributor (except as may be necessary to comply with
+the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+No Contributor makes additional grants as a result of Your choice to
+distribute the Covered Software under a subsequent version of this
+License (see Section 10.2) or under the terms of a Secondary License (if
+permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+Each Contributor represents that the Contributor believes its
+Contributions are its original creation(s) or it has sufficient rights
+to grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+This License is not intended to limit any rights You have under
+applicable copyright doctrines of fair use, fair dealing, or other
+equivalents.
+
+2.7. Conditions
+
+Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted
+in Section 2.1.
+
+3. Responsibilities
+-------------------
+
+3.1. Distribution of Source Form
+
+All distribution of Covered Software in Source Code Form, including any
+Modifications that You create or to which You contribute, must be under
+the terms of this License. You must inform recipients that the Source
+Code Form of the Covered Software is governed by the terms of this
+License, and how they can obtain a copy of this License. You may not
+attempt to alter or restrict the recipients' rights in the Source Code
+Form.
+
+3.2. Distribution of Executable Form
+
+If You distribute Covered Software in Executable Form then:
+
+(a) such Covered Software must also be made available in Source Code
+    Form, as described in Section 3.1, and You must inform recipients of
+    the Executable Form how they can obtain a copy of such Source Code
+    Form by reasonable means in a timely manner, at a charge no more
+    than the cost of distribution to the recipient; and
+
+(b) You may distribute such Executable Form under the terms of this
+    License, or sublicense it under different terms, provided that the
+    license for the Executable Form does not attempt to limit or alter
+    the recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+You may create and distribute a Larger Work under terms of Your choice,
+provided that You also comply with the requirements of this License for
+the Covered Software. If the Larger Work is a combination of Covered
+Software with a work governed by one or more Secondary Licenses, and the
+Covered Software is not Incompatible With Secondary Licenses, this
+License permits You to additionally distribute such Covered Software
+under the terms of such Secondary License(s), so that the recipient of
+the Larger Work may, at their option, further distribute the Covered
+Software under the terms of either this License or such Secondary
+License(s).
+
+3.4. Notices
+
+You may not remove or alter the substance of any license notices
+(including copyright notices, patent notices, disclaimers of warranty,
+or limitations of liability) contained within the Source Code Form of
+the Covered Software, except that You may alter any license notices to
+the extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+You may choose to offer, and to charge a fee for, warranty, support,
+indemnity or liability obligations to one or more recipients of Covered
+Software. However, You may do so only on Your own behalf, and not on
+behalf of any Contributor. You must make it absolutely clear that any
+such warranty, support, indemnity, or liability obligation is offered by
+You alone, and You hereby agree to indemnify every Contributor for any
+liability incurred by such Contributor as a result of warranty, support,
+indemnity or liability terms You offer. You may include additional
+disclaimers of warranty and limitations of liability specific to any
+jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+---------------------------------------------------
+
+If it is impossible for You to comply with any of the terms of this
+License with respect to some or all of the Covered Software due to
+statute, judicial order, or regulation then You must: (a) comply with
+the terms of this License to the maximum extent possible; and (b)
+describe the limitations and the code they affect. Such description must
+be placed in a text file included with all distributions of the Covered
+Software under this License. Except to the extent prohibited by statute
+or regulation, such description must be sufficiently detailed for a
+recipient of ordinary skill to be able to understand it.
+
+5. Termination
+--------------
+
+5.1. The rights granted under this License will terminate automatically
+if You fail to comply with any of its terms. However, if You become
+compliant, then the rights granted under this License from a particular
+Contributor are reinstated (a) provisionally, unless and until such
+Contributor explicitly and finally terminates Your grants, and (b) on an
+ongoing basis, if such Contributor fails to notify You of the
+non-compliance by some reasonable means prior to 60 days after You have
+come back into compliance. Moreover, Your grants from a particular
+Contributor are reinstated on an ongoing basis if such Contributor
+notifies You of the non-compliance by some reasonable means, this is the
+first time You have received notice of non-compliance with this License
+from such Contributor, and You become compliant prior to 30 days after
+Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+infringement claim (excluding declaratory judgment actions,
+counter-claims, and cross-claims) alleging that a Contributor Version
+directly or indirectly infringes any patent, then the rights granted to
+You by any and all Contributors for the Covered Software under Section
+2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all
+end user license agreements (excluding distributors and resellers) which
+have been validly granted by You or Your distributors under this License
+prior to termination shall survive termination.
+
+************************************************************************
+*                                                                      *
+*  6. Disclaimer of Warranty                                           *
+*  -------------------------                                           *
+*                                                                      *
+*  Covered Software is provided under this License on an "as is"       *
+*  basis, without warranty of any kind, either expressed, implied, or  *
+*  statutory, including, without limitation, warranties that the       *
+*  Covered Software is free of defects, merchantable, fit for a        *
+*  particular purpose or non-infringing. The entire risk as to the     *
+*  quality and performance of the Covered Software is with You.        *
+*  Should any Covered Software prove defective in any respect, You     *
+*  (not any Contributor) assume the cost of any necessary servicing,   *
+*  repair, or correction. This disclaimer of warranty constitutes an   *
+*  essential part of this License. No use of any Covered Software is   *
+*  authorized under this License except under this disclaimer.         *
+*                                                                      *
+************************************************************************
+
+************************************************************************
+*                                                                      *
+*  7. Limitation of Liability                                          *
+*  --------------------------                                          *
+*                                                                      *
+*  Under no circumstances and under no legal theory, whether tort      *
+*  (including negligence), contract, or otherwise, shall any           *
+*  Contributor, or anyone who distributes Covered Software as          *
+*  permitted above, be liable to You for any direct, indirect,         *
+*  special, incidental, or consequential damages of any character      *
+*  including, without limitation, damages for lost profits, loss of    *
+*  goodwill, work stoppage, computer failure or malfunction, or any    *
+*  and all other commercial damages or losses, even if such party      *
+*  shall have been informed of the possibility of such damages. This   *
+*  limitation of liability shall not apply to liability for death or   *
+*  personal injury resulting from such party's negligence to the       *
+*  extent applicable law prohibits such limitation. Some               *
+*  jurisdictions do not allow the exclusion or limitation of           *
+*  incidental or consequential damages, so this exclusion and          *
+*  limitation may not apply to You.                                    *
+*                                                                      *
+************************************************************************
+
+8. Litigation
+-------------
+
+Any litigation relating to this License may be brought only in the
+courts of a jurisdiction where the defendant maintains its principal
+place of business and such litigation shall be governed by laws of that
+jurisdiction, without reference to its conflict-of-law provisions.
+Nothing in this Section shall prevent a party's ability to bring
+cross-claims or counter-claims.
+
+9. Miscellaneous
+----------------
+
+This License represents the complete agreement concerning the subject
+matter hereof. If any provision of this License is held to be
+unenforceable, such provision shall be reformed only to the extent
+necessary to make it enforceable. Any law or regulation which provides
+that the language of a contract shall be construed against the drafter
+shall not be used to construe this License against a Contributor.
+
+10. Versions of the License
+---------------------------
+
+10.1. New Versions
+
+Mozilla Foundation is the license steward. Except as provided in Section
+10.3, no one other than the license steward has the right to modify or
+publish new versions of this License. Each version will be given a
+distinguishing version number.
+
+10.2. Effect of New Versions
+
+You may distribute the Covered Software under the terms of the version
+of the License under which You originally received the Covered Software,
+or under the terms of any subsequent version published by the license
+steward.
+
+10.3. Modified Versions
+
+If you create software not governed by this License, and you want to
+create a new license for such software, you may create and use a
+modified version of this License if you rename the license and remove
+any references to the name of the license steward (except to note that
+such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+Licenses
+
+If You choose to distribute Source Code Form that is Incompatible With
+Secondary Licenses under the terms of this version of the License, the
+notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+-------------------------------------------
+
+  This Source Code Form is subject to the terms of the Mozilla Public
+  License, v. 2.0. If a copy of the MPL was not distributed with this
+  file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular
+file, then You may include the notice in a location (such as a LICENSE
+file in a relevant directory) where a recipient would be likely to look
+for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+---------------------------------------------------------
+
+  This Source Code Form is "Incompatible With Secondary Licenses", as
+  defined by the Mozilla Public License, v. 2.0.
diff --git a/vendor/github.com/hashicorp/go-sockaddr/doc.go b/vendor/github.com/hashicorp/go-sockaddr/doc.go
new file mode 100644
index 0000000000..90671deb51
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/doc.go
@@ -0,0 +1,5 @@
+/*
+Package sockaddr is a Go implementation of the UNIX socket family data types and
+related helper functions.
+*/
+package sockaddr
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ifaddr.go b/vendor/github.com/hashicorp/go-sockaddr/ifaddr.go
new file mode 100644
index 0000000000..0811b27599
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ifaddr.go
@@ -0,0 +1,254 @@
+package sockaddr
+
+import "strings"
+
+// ifAddrAttrMap is a map of the IfAddr type-specific attributes.
+var ifAddrAttrMap map[AttrName]func(IfAddr) string
+var ifAddrAttrs []AttrName
+
+func init() {
+	ifAddrAttrInit()
+}
+
+// GetPrivateIP returns a string with a single IP address that is part of RFC
+// 6890 and has a default route.  If the system can't determine its IP address
+// or find an RFC 6890 IP address, an empty string will be returned instead.
+// This function is the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetPrivateInterfaces | attr "address"}}'
+/// ```
+func GetPrivateIP() (string, error) {
+	privateIfs, err := GetPrivateInterfaces()
+	if err != nil {
+		return "", err
+	}
+	if len(privateIfs) < 1 {
+		return "", nil
+	}
+
+	ifAddr := privateIfs[0]
+	ip := *ToIPAddr(ifAddr.SockAddr)
+	return ip.NetIP().String(), nil
+}
+
+// GetPrivateIPs returns a string with all IP addresses that are part of RFC
+// 6890 (regardless of whether or not there is a default route, unlike
+// GetPublicIP).  If the system can't find any RFC 6890 IP addresses, an empty
+// string will be returned instead.  This function is the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | include "RFC" "6890" | join "address" " "}}'
+/// ```
+func GetPrivateIPs() (string, error) {
+	ifAddrs, err := GetAllInterfaces()
+	if err != nil {
+		return "", err
+	} else if len(ifAddrs) < 1 {
+		return "", nil
+	}
+
+	ifAddrs, _ = FilterIfByType(ifAddrs, TypeIP)
+	if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	OrderedIfAddrBy(AscIfType, AscIfNetworkSize).Sort(ifAddrs)
+
+	ifAddrs, _, err = IfByRFC("6890", ifAddrs)
+	if err != nil {
+		return "", err
+	} else if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	_, ifAddrs, err = IfByRFC(ForwardingBlacklistRFC, ifAddrs)
+	if err != nil {
+		return "", err
+	} else if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	ips := make([]string, 0, len(ifAddrs))
+	for _, ifAddr := range ifAddrs {
+		ip := *ToIPAddr(ifAddr.SockAddr)
+		s := ip.NetIP().String()
+		ips = append(ips, s)
+	}
+
+	return strings.Join(ips, " "), nil
+}
+
+// GetPublicIP returns a string with a single IP address that is NOT part of RFC
+// 6890 and has a default route.  If the system can't determine its IP address
+// or find a non RFC 6890 IP address, an empty string will be returned instead.
+// This function is the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetPublicInterfaces | attr "address"}}'
+/// ```
+func GetPublicIP() (string, error) {
+	publicIfs, err := GetPublicInterfaces()
+	if err != nil {
+		return "", err
+	} else if len(publicIfs) < 1 {
+		return "", nil
+	}
+
+	ifAddr := publicIfs[0]
+	ip := *ToIPAddr(ifAddr.SockAddr)
+	return ip.NetIP().String(), nil
+}
+
+// GetPublicIPs returns a string with all IP addresses that are NOT part of RFC
+// 6890 (regardless of whether or not there is a default route, unlike
+// GetPublicIP).  If the system can't find any non RFC 6890 IP addresses, an
+// empty string will be returned instead.  This function is the `eval`
+// equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | exclude "RFC" "6890" | join "address" " "}}'
+/// ```
+func GetPublicIPs() (string, error) {
+	ifAddrs, err := GetAllInterfaces()
+	if err != nil {
+		return "", err
+	} else if len(ifAddrs) < 1 {
+		return "", nil
+	}
+
+	ifAddrs, _ = FilterIfByType(ifAddrs, TypeIP)
+	if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	OrderedIfAddrBy(AscIfType, AscIfNetworkSize).Sort(ifAddrs)
+
+	_, ifAddrs, err = IfByRFC("6890", ifAddrs)
+	if err != nil {
+		return "", err
+	} else if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	ips := make([]string, 0, len(ifAddrs))
+	for _, ifAddr := range ifAddrs {
+		ip := *ToIPAddr(ifAddr.SockAddr)
+		s := ip.NetIP().String()
+		ips = append(ips, s)
+	}
+
+	return strings.Join(ips, " "), nil
+}
+
+// GetInterfaceIP returns a string with a single IP address sorted by the size
+// of the network (i.e. IP addresses with a smaller netmask, larger network
+// size, are sorted first).  This function is the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | include "name" <<ARG>> | sort "type,size" | include "flag" "forwardable" | attr "address" }}'
+/// ```
+func GetInterfaceIP(namedIfRE string) (string, error) {
+	ifAddrs, err := GetAllInterfaces()
+	if err != nil {
+		return "", err
+	}
+
+	ifAddrs, _, err = IfByName(namedIfRE, ifAddrs)
+	if err != nil {
+		return "", err
+	}
+
+	ifAddrs, _, err = IfByFlag("forwardable", ifAddrs)
+	if err != nil {
+		return "", err
+	}
+
+	ifAddrs, err = SortIfBy("+type,+size", ifAddrs)
+	if err != nil {
+		return "", err
+	}
+
+	if len(ifAddrs) == 0 {
+		return "", err
+	}
+
+	ip := ToIPAddr(ifAddrs[0].SockAddr)
+	if ip == nil {
+		return "", err
+	}
+
+	return IPAddrAttr(*ip, "address"), nil
+}
+
+// GetInterfaceIPs returns a string with all IPs, sorted by the size of the
+// network (i.e. IP addresses with a smaller netmask, larger network size, are
+// sorted first), on a named interface.  This function is the `eval` equivalent
+// of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | include "name" <<ARG>> | sort "type,size" | join "address" " "}}'
+/// ```
+func GetInterfaceIPs(namedIfRE string) (string, error) {
+	ifAddrs, err := GetAllInterfaces()
+	if err != nil {
+		return "", err
+	}
+
+	ifAddrs, _, err = IfByName(namedIfRE, ifAddrs)
+	if err != nil {
+		return "", err
+	}
+
+	ifAddrs, err = SortIfBy("+type,+size", ifAddrs)
+	if err != nil {
+		return "", err
+	}
+
+	if len(ifAddrs) == 0 {
+		return "", err
+	}
+
+	ips := make([]string, 0, len(ifAddrs))
+	for _, ifAddr := range ifAddrs {
+		ip := *ToIPAddr(ifAddr.SockAddr)
+		s := ip.NetIP().String()
+		ips = append(ips, s)
+	}
+
+	return strings.Join(ips, " "), nil
+}
+
+// IfAddrAttrs returns a list of attributes supported by the IfAddr type
+func IfAddrAttrs() []AttrName {
+	return ifAddrAttrs
+}
+
+// IfAddrAttr returns a string representation of an attribute for the given
+// IfAddr.
+func IfAddrAttr(ifAddr IfAddr, attrName AttrName) string {
+	fn, found := ifAddrAttrMap[attrName]
+	if !found {
+		return ""
+	}
+
+	return fn(ifAddr)
+}
+
+// ifAddrAttrInit is called once at init()
+func ifAddrAttrInit() {
+	// Sorted for human readability
+	ifAddrAttrs = []AttrName{
+		"flags",
+		"name",
+	}
+
+	ifAddrAttrMap = map[AttrName]func(ifAddr IfAddr) string{
+		"flags": func(ifAddr IfAddr) string {
+			return ifAddr.Interface.Flags.String()
+		},
+		"name": func(ifAddr IfAddr) string {
+			return ifAddr.Interface.Name
+		},
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ifaddrs.go b/vendor/github.com/hashicorp/go-sockaddr/ifaddrs.go
new file mode 100644
index 0000000000..2a706c34e9
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ifaddrs.go
@@ -0,0 +1,1281 @@
+package sockaddr
+
+import (
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"math/big"
+	"net"
+	"regexp"
+	"sort"
+	"strconv"
+	"strings"
+)
+
+var (
+	// Centralize all regexps and regexp.Copy() where necessary.
+	signRE       *regexp.Regexp = regexp.MustCompile(`^[\s]*[+-]`)
+	whitespaceRE *regexp.Regexp = regexp.MustCompile(`[\s]+`)
+	ifNameRE     *regexp.Regexp = regexp.MustCompile(`^(?:Ethernet|Wireless LAN) adapter ([^:]+):`)
+	ipAddrRE     *regexp.Regexp = regexp.MustCompile(`^   IPv[46] Address\. \. \. \. \. \. \. \. \. \. \. : ([^\s]+)`)
+)
+
+// IfAddrs is a slice of IfAddr
+type IfAddrs []IfAddr
+
+func (ifs IfAddrs) Len() int { return len(ifs) }
+
+// CmpIfFunc is the function signature that must be met to be used in the
+// OrderedIfAddrBy multiIfAddrSorter
+type CmpIfAddrFunc func(p1, p2 *IfAddr) int
+
+// multiIfAddrSorter implements the Sort interface, sorting the IfAddrs within.
+type multiIfAddrSorter struct {
+	ifAddrs IfAddrs
+	cmp     []CmpIfAddrFunc
+}
+
+// Sort sorts the argument slice according to the Cmp functions passed to
+// OrderedIfAddrBy.
+func (ms *multiIfAddrSorter) Sort(ifAddrs IfAddrs) {
+	ms.ifAddrs = ifAddrs
+	sort.Sort(ms)
+}
+
+// OrderedIfAddrBy sorts SockAddr by the list of sort function pointers.
+func OrderedIfAddrBy(cmpFuncs ...CmpIfAddrFunc) *multiIfAddrSorter {
+	return &multiIfAddrSorter{
+		cmp: cmpFuncs,
+	}
+}
+
+// Len is part of sort.Interface.
+func (ms *multiIfAddrSorter) Len() int {
+	return len(ms.ifAddrs)
+}
+
+// Less is part of sort.Interface. It is implemented by looping along the Cmp()
+// functions until it finds a comparison that is either less than or greater
+// than.  A return value of 0 defers sorting to the next function in the
+// multisorter (which means the results of sorting may leave the resutls in a
+// non-deterministic order).
+func (ms *multiIfAddrSorter) Less(i, j int) bool {
+	p, q := &ms.ifAddrs[i], &ms.ifAddrs[j]
+	// Try all but the last comparison.
+	var k int
+	for k = 0; k < len(ms.cmp)-1; k++ {
+		cmp := ms.cmp[k]
+		x := cmp(p, q)
+		switch x {
+		case -1:
+			// p < q, so we have a decision.
+			return true
+		case 1:
+			// p > q, so we have a decision.
+			return false
+		}
+		// p == q; try the next comparison.
+	}
+	// All comparisons to here said "equal", so just return whatever the
+	// final comparison reports.
+	switch ms.cmp[k](p, q) {
+	case -1:
+		return true
+	case 1:
+		return false
+	default:
+		// Still a tie! Now what?
+		return false
+		panic("undefined sort order for remaining items in the list")
+	}
+}
+
+// Swap is part of sort.Interface.
+func (ms *multiIfAddrSorter) Swap(i, j int) {
+	ms.ifAddrs[i], ms.ifAddrs[j] = ms.ifAddrs[j], ms.ifAddrs[i]
+}
+
+// AscIfAddress is a sorting function to sort IfAddrs by their respective
+// address type.  Non-equal types are deferred in the sort.
+func AscIfAddress(p1Ptr, p2Ptr *IfAddr) int {
+	return AscAddress(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// AscIfDefault is a sorting function to sort IfAddrs by whether or not they
+// have a default route or not.  Non-equal types are deferred in the sort.
+//
+// FIXME: This is a particularly expensive sorting operation because of the
+// non-memoized calls to NewRouteInfo().  In an ideal world the routeInfo data
+// once at the start of the sort and pass it along as a context or by wrapping
+// the IfAddr type with this information (this would also solve the inability to
+// return errors and the possibility of failing silently).  Fortunately,
+// N*log(N) where N = 3 is only ~6.2 invocations.  Not ideal, but not worth
+// optimizing today.  The common case is this gets called once or twice.
+// Patches welcome.
+func AscIfDefault(p1Ptr, p2Ptr *IfAddr) int {
+	ri, err := NewRouteInfo()
+	if err != nil {
+		return sortDeferDecision
+	}
+
+	defaultIfName, err := ri.GetDefaultInterfaceName()
+	if err != nil {
+		return sortDeferDecision
+	}
+
+	switch {
+	case p1Ptr.Interface.Name == defaultIfName && p2Ptr.Interface.Name == defaultIfName:
+		return sortDeferDecision
+	case p1Ptr.Interface.Name == defaultIfName:
+		return sortReceiverBeforeArg
+	case p2Ptr.Interface.Name == defaultIfName:
+		return sortArgBeforeReceiver
+	default:
+		return sortDeferDecision
+	}
+}
+
+// AscIfName is a sorting function to sort IfAddrs by their interface names.
+func AscIfName(p1Ptr, p2Ptr *IfAddr) int {
+	return strings.Compare(p1Ptr.Name, p2Ptr.Name)
+}
+
+// AscIfNetworkSize is a sorting function to sort IfAddrs by their respective
+// network mask size.
+func AscIfNetworkSize(p1Ptr, p2Ptr *IfAddr) int {
+	return AscNetworkSize(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// AscIfPort is a sorting function to sort IfAddrs by their respective
+// port type.  Non-equal types are deferred in the sort.
+func AscIfPort(p1Ptr, p2Ptr *IfAddr) int {
+	return AscPort(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// AscIfPrivate is a sorting function to sort IfAddrs by "private" values before
+// "public" values.  Both IPv4 and IPv6 are compared against RFC6890 (RFC6890
+// includes, and is not limited to, RFC1918 and RFC6598 for IPv4, and IPv6
+// includes RFC4193).
+func AscIfPrivate(p1Ptr, p2Ptr *IfAddr) int {
+	return AscPrivate(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// AscIfType is a sorting function to sort IfAddrs by their respective address
+// type.  Non-equal types are deferred in the sort.
+func AscIfType(p1Ptr, p2Ptr *IfAddr) int {
+	return AscType(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// DescIfAddress is identical to AscIfAddress but reverse ordered.
+func DescIfAddress(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscAddress(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// DescIfDefault is identical to AscIfDefault but reverse ordered.
+func DescIfDefault(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscIfDefault(p1Ptr, p2Ptr)
+}
+
+// DescIfName is identical to AscIfName but reverse ordered.
+func DescIfName(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * strings.Compare(p1Ptr.Name, p2Ptr.Name)
+}
+
+// DescIfNetworkSize is identical to AscIfNetworkSize but reverse ordered.
+func DescIfNetworkSize(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscNetworkSize(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// DescIfPort is identical to AscIfPort but reverse ordered.
+func DescIfPort(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscPort(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// DescIfPrivate is identical to AscIfPrivate but reverse ordered.
+func DescIfPrivate(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscPrivate(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// DescIfType is identical to AscIfType but reverse ordered.
+func DescIfType(p1Ptr, p2Ptr *IfAddr) int {
+	return -1 * AscType(&p1Ptr.SockAddr, &p2Ptr.SockAddr)
+}
+
+// FilterIfByType filters IfAddrs and returns a list of the matching type
+func FilterIfByType(ifAddrs IfAddrs, type_ SockAddrType) (matchedIfs, excludedIfs IfAddrs) {
+	excludedIfs = make(IfAddrs, 0, len(ifAddrs))
+	matchedIfs = make(IfAddrs, 0, len(ifAddrs))
+
+	for _, ifAddr := range ifAddrs {
+		if ifAddr.SockAddr.Type()&type_ != 0 {
+			matchedIfs = append(matchedIfs, ifAddr)
+		} else {
+			excludedIfs = append(excludedIfs, ifAddr)
+		}
+	}
+	return matchedIfs, excludedIfs
+}
+
+// IfAttr forwards the selector to IfAttr.Attr() for resolution.  If there is
+// more than one IfAddr, only the first IfAddr is used.
+func IfAttr(selectorName string, ifAddr IfAddr) (string, error) {
+	attrName := AttrName(strings.ToLower(selectorName))
+	attrVal, err := ifAddr.Attr(attrName)
+	return attrVal, err
+}
+
+// IfAttrs forwards the selector to IfAttrs.Attr() for resolution.  If there is
+// more than one IfAddr, only the first IfAddr is used.
+func IfAttrs(selectorName string, ifAddrs IfAddrs) (string, error) {
+	if len(ifAddrs) == 0 {
+		return "", nil
+	}
+
+	attrName := AttrName(strings.ToLower(selectorName))
+	attrVal, err := ifAddrs[0].Attr(attrName)
+	return attrVal, err
+}
+
+// GetAllInterfaces iterates over all available network interfaces and finds all
+// available IP addresses on each interface and converts them to
+// sockaddr.IPAddrs, and returning the result as an array of IfAddr.
+func GetAllInterfaces() (IfAddrs, error) {
+	ifs, err := net.Interfaces()
+	if err != nil {
+		return nil, err
+	}
+
+	ifAddrs := make(IfAddrs, 0, len(ifs))
+	for _, intf := range ifs {
+		addrs, err := intf.Addrs()
+		if err != nil {
+			return nil, err
+		}
+
+		for _, addr := range addrs {
+			var ipAddr IPAddr
+			ipAddr, err = NewIPAddr(addr.String())
+			if err != nil {
+				return IfAddrs{}, fmt.Errorf("unable to create an IP address from %q", addr.String())
+			}
+
+			ifAddr := IfAddr{
+				SockAddr:  ipAddr,
+				Interface: intf,
+			}
+			ifAddrs = append(ifAddrs, ifAddr)
+		}
+	}
+
+	return ifAddrs, nil
+}
+
+// GetDefaultInterfaces returns IfAddrs of the addresses attached to the default
+// route.
+func GetDefaultInterfaces() (IfAddrs, error) {
+	ri, err := NewRouteInfo()
+	if err != nil {
+		return nil, err
+	}
+
+	defaultIfName, err := ri.GetDefaultInterfaceName()
+	if err != nil {
+		return nil, err
+	}
+
+	var defaultIfs, ifAddrs IfAddrs
+	ifAddrs, err = GetAllInterfaces()
+	for _, ifAddr := range ifAddrs {
+		if ifAddr.Name == defaultIfName {
+			defaultIfs = append(defaultIfs, ifAddr)
+		}
+	}
+
+	return defaultIfs, nil
+}
+
+// GetPrivateInterfaces returns an IfAddrs that are part of RFC 6890 and have a
+// default route.  If the system can't determine its IP address or find an RFC
+// 6890 IP address, an empty IfAddrs will be returned instead.  This function is
+// the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | include "type" "ip" | include "flags" "forwardable" | include "flags" "up" | sort "default,type,size" | include "RFC" "6890" }}'
+/// ```
+func GetPrivateInterfaces() (IfAddrs, error) {
+	privateIfs, err := GetAllInterfaces()
+	if err != nil {
+		return IfAddrs{}, err
+	}
+	if len(privateIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	privateIfs, _ = FilterIfByType(privateIfs, TypeIP)
+	if len(privateIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	privateIfs, _, err = IfByFlag("forwardable", privateIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	privateIfs, _, err = IfByFlag("up", privateIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	if len(privateIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	OrderedIfAddrBy(AscIfDefault, AscIfType, AscIfNetworkSize).Sort(privateIfs)
+
+	privateIfs, _, err = IfByRFC("6890", privateIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	} else if len(privateIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	return privateIfs, nil
+}
+
+// GetPublicInterfaces returns an IfAddrs that are NOT part of RFC 6890 and has a
+// default route.  If the system can't determine its IP address or find a non
+// RFC 6890 IP address, an empty IfAddrs will be returned instead.  This
+// function is the `eval` equivalent of:
+//
+// ```
+// $ sockaddr eval -r '{{GetAllInterfaces | include "type" "ip" | include "flags" "forwardable" | include "flags" "up" | sort "default,type,size" | exclude "RFC" "6890" }}'
+/// ```
+func GetPublicInterfaces() (IfAddrs, error) {
+	publicIfs, err := GetAllInterfaces()
+	if err != nil {
+		return IfAddrs{}, err
+	}
+	if len(publicIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	publicIfs, _ = FilterIfByType(publicIfs, TypeIP)
+	if len(publicIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	publicIfs, _, err = IfByFlag("forwardable", publicIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	publicIfs, _, err = IfByFlag("up", publicIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	if len(publicIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	OrderedIfAddrBy(AscIfDefault, AscIfType, AscIfNetworkSize).Sort(publicIfs)
+
+	_, publicIfs, err = IfByRFC("6890", publicIfs)
+	if err != nil {
+		return IfAddrs{}, err
+	} else if len(publicIfs) == 0 {
+		return IfAddrs{}, nil
+	}
+
+	return publicIfs, nil
+}
+
+// IfByAddress returns a list of matched and non-matched IfAddrs, or an error if
+// the regexp fails to compile.
+func IfByAddress(inputRe string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	re, err := regexp.Compile(inputRe)
+	if err != nil {
+		return nil, nil, fmt.Errorf("Unable to compile address regexp %+q: %v", inputRe, err)
+	}
+
+	matchedAddrs := make(IfAddrs, 0, len(ifAddrs))
+	excludedAddrs := make(IfAddrs, 0, len(ifAddrs))
+	for _, addr := range ifAddrs {
+		if re.MatchString(addr.SockAddr.String()) {
+			matchedAddrs = append(matchedAddrs, addr)
+		} else {
+			excludedAddrs = append(excludedAddrs, addr)
+		}
+	}
+
+	return matchedAddrs, excludedAddrs, nil
+}
+
+// IfByName returns a list of matched and non-matched IfAddrs, or an error if
+// the regexp fails to compile.
+func IfByName(inputRe string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	re, err := regexp.Compile(inputRe)
+	if err != nil {
+		return nil, nil, fmt.Errorf("Unable to compile name regexp %+q: %v", inputRe, err)
+	}
+
+	matchedAddrs := make(IfAddrs, 0, len(ifAddrs))
+	excludedAddrs := make(IfAddrs, 0, len(ifAddrs))
+	for _, addr := range ifAddrs {
+		if re.MatchString(addr.Name) {
+			matchedAddrs = append(matchedAddrs, addr)
+		} else {
+			excludedAddrs = append(excludedAddrs, addr)
+		}
+	}
+
+	return matchedAddrs, excludedAddrs, nil
+}
+
+// IfByPort returns a list of matched and non-matched IfAddrs, or an error if
+// the regexp fails to compile.
+func IfByPort(inputRe string, ifAddrs IfAddrs) (matchedIfs, excludedIfs IfAddrs, err error) {
+	re, err := regexp.Compile(inputRe)
+	if err != nil {
+		return nil, nil, fmt.Errorf("Unable to compile port regexp %+q: %v", inputRe, err)
+	}
+
+	ipIfs, nonIfs := FilterIfByType(ifAddrs, TypeIP)
+	matchedIfs = make(IfAddrs, 0, len(ipIfs))
+	excludedIfs = append(IfAddrs(nil), nonIfs...)
+	for _, addr := range ipIfs {
+		ipAddr := ToIPAddr(addr.SockAddr)
+		if ipAddr == nil {
+			continue
+		}
+
+		port := strconv.FormatInt(int64((*ipAddr).IPPort()), 10)
+		if re.MatchString(port) {
+			matchedIfs = append(matchedIfs, addr)
+		} else {
+			excludedIfs = append(excludedIfs, addr)
+		}
+	}
+
+	return matchedIfs, excludedIfs, nil
+}
+
+// IfByRFC returns a list of matched and non-matched IfAddrs that contain the
+// relevant RFC-specified traits.
+func IfByRFC(selectorParam string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	inputRFC, err := strconv.ParseUint(selectorParam, 10, 64)
+	if err != nil {
+		return IfAddrs{}, IfAddrs{}, fmt.Errorf("unable to parse RFC number %q: %v", selectorParam, err)
+	}
+
+	matchedIfAddrs := make(IfAddrs, 0, len(ifAddrs))
+	remainingIfAddrs := make(IfAddrs, 0, len(ifAddrs))
+
+	rfcNetMap := KnownRFCs()
+	rfcNets, ok := rfcNetMap[uint(inputRFC)]
+	if !ok {
+		return nil, nil, fmt.Errorf("unsupported RFC %d", inputRFC)
+	}
+
+	for _, ifAddr := range ifAddrs {
+		var contained bool
+		for _, rfcNet := range rfcNets {
+			if rfcNet.Contains(ifAddr.SockAddr) {
+				matchedIfAddrs = append(matchedIfAddrs, ifAddr)
+				contained = true
+				break
+			}
+		}
+		if !contained {
+			remainingIfAddrs = append(remainingIfAddrs, ifAddr)
+		}
+	}
+
+	return matchedIfAddrs, remainingIfAddrs, nil
+}
+
+// IfByRFCs returns a list of matched and non-matched IfAddrs that contain the
+// relevant RFC-specified traits.  Multiple RFCs can be specified and separated
+// by the `|` symbol.  No protection is taken to ensure an IfAddr does not end
+// up in both the included and excluded list.
+func IfByRFCs(selectorParam string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	var includedIfs, excludedIfs IfAddrs
+	for _, rfcStr := range strings.Split(selectorParam, "|") {
+		includedRFCIfs, excludedRFCIfs, err := IfByRFC(rfcStr, ifAddrs)
+		if err != nil {
+			return IfAddrs{}, IfAddrs{}, fmt.Errorf("unable to lookup RFC number %q: %v", rfcStr, err)
+		}
+		includedIfs = append(includedIfs, includedRFCIfs...)
+		excludedIfs = append(excludedIfs, excludedRFCIfs...)
+	}
+
+	return includedIfs, excludedIfs, nil
+}
+
+// IfByMaskSize returns a list of matched and non-matched IfAddrs that have the
+// matching mask size.
+func IfByMaskSize(selectorParam string, ifAddrs IfAddrs) (matchedIfs, excludedIfs IfAddrs, err error) {
+	maskSize, err := strconv.ParseUint(selectorParam, 10, 64)
+	if err != nil {
+		return IfAddrs{}, IfAddrs{}, fmt.Errorf("invalid exclude size argument (%q): %v", selectorParam, err)
+	}
+
+	ipIfs, nonIfs := FilterIfByType(ifAddrs, TypeIP)
+	matchedIfs = make(IfAddrs, 0, len(ipIfs))
+	excludedIfs = append(IfAddrs(nil), nonIfs...)
+	for _, addr := range ipIfs {
+		ipAddr := ToIPAddr(addr.SockAddr)
+		if ipAddr == nil {
+			return IfAddrs{}, IfAddrs{}, fmt.Errorf("unable to filter mask sizes on non-IP type %s: %v", addr.SockAddr.Type().String(), addr.SockAddr.String())
+		}
+
+		switch {
+		case (*ipAddr).Type()&TypeIPv4 != 0 && maskSize > 32:
+			return IfAddrs{}, IfAddrs{}, fmt.Errorf("mask size out of bounds for IPv4 address: %d", maskSize)
+		case (*ipAddr).Type()&TypeIPv6 != 0 && maskSize > 128:
+			return IfAddrs{}, IfAddrs{}, fmt.Errorf("mask size out of bounds for IPv6 address: %d", maskSize)
+		}
+
+		if (*ipAddr).Maskbits() == int(maskSize) {
+			matchedIfs = append(matchedIfs, addr)
+		} else {
+			excludedIfs = append(excludedIfs, addr)
+		}
+	}
+
+	return matchedIfs, excludedIfs, nil
+}
+
+// IfByType returns a list of matching and non-matching IfAddr that match the
+// specified type.  For instance:
+//
+// include "type" "IPv4,IPv6"
+//
+// will include any IfAddrs that is either an IPv4 or IPv6 address.  Any
+// addresses on those interfaces that don't match will be included in the
+// remainder results.
+func IfByType(inputTypes string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	matchingIfAddrs := make(IfAddrs, 0, len(ifAddrs))
+	remainingIfAddrs := make(IfAddrs, 0, len(ifAddrs))
+
+	ifTypes := strings.Split(strings.ToLower(inputTypes), "|")
+	for _, ifType := range ifTypes {
+		switch ifType {
+		case "ip", "ipv4", "ipv6", "unix":
+			// Valid types
+		default:
+			return nil, nil, fmt.Errorf("unsupported type %q %q", ifType, inputTypes)
+		}
+	}
+
+	for _, ifAddr := range ifAddrs {
+		for _, ifType := range ifTypes {
+			var matched bool
+			switch {
+			case ifType == "ip" && ifAddr.SockAddr.Type()&TypeIP != 0:
+				matched = true
+			case ifType == "ipv4" && ifAddr.SockAddr.Type()&TypeIPv4 != 0:
+				matched = true
+			case ifType == "ipv6" && ifAddr.SockAddr.Type()&TypeIPv6 != 0:
+				matched = true
+			case ifType == "unix" && ifAddr.SockAddr.Type()&TypeUnix != 0:
+				matched = true
+			}
+
+			if matched {
+				matchingIfAddrs = append(matchingIfAddrs, ifAddr)
+			} else {
+				remainingIfAddrs = append(remainingIfAddrs, ifAddr)
+			}
+		}
+	}
+
+	return matchingIfAddrs, remainingIfAddrs, nil
+}
+
+// IfByFlag returns a list of matching and non-matching IfAddrs that match the
+// specified type.  For instance:
+//
+// include "flag" "up,broadcast"
+//
+// will include any IfAddrs that have both the "up" and "broadcast" flags set.
+// Any addresses on those interfaces that don't match will be omitted from the
+// results.
+func IfByFlag(inputFlags string, ifAddrs IfAddrs) (matched, remainder IfAddrs, err error) {
+	matchedAddrs := make(IfAddrs, 0, len(ifAddrs))
+	excludedAddrs := make(IfAddrs, 0, len(ifAddrs))
+
+	var wantForwardable,
+		wantGlobalUnicast,
+		wantInterfaceLocalMulticast,
+		wantLinkLocalMulticast,
+		wantLinkLocalUnicast,
+		wantLoopback,
+		wantMulticast,
+		wantUnspecified bool
+	var ifFlags net.Flags
+	var checkFlags, checkAttrs bool
+	for _, flagName := range strings.Split(strings.ToLower(inputFlags), "|") {
+		switch flagName {
+		case "broadcast":
+			checkFlags = true
+			ifFlags = ifFlags | net.FlagBroadcast
+		case "down":
+			checkFlags = true
+			ifFlags = (ifFlags &^ net.FlagUp)
+		case "forwardable":
+			checkAttrs = true
+			wantForwardable = true
+		case "global unicast":
+			checkAttrs = true
+			wantGlobalUnicast = true
+		case "interface-local multicast":
+			checkAttrs = true
+			wantInterfaceLocalMulticast = true
+		case "link-local multicast":
+			checkAttrs = true
+			wantLinkLocalMulticast = true
+		case "link-local unicast":
+			checkAttrs = true
+			wantLinkLocalUnicast = true
+		case "loopback":
+			checkAttrs = true
+			checkFlags = true
+			ifFlags = ifFlags | net.FlagLoopback
+			wantLoopback = true
+		case "multicast":
+			checkAttrs = true
+			checkFlags = true
+			ifFlags = ifFlags | net.FlagMulticast
+			wantMulticast = true
+		case "point-to-point":
+			checkFlags = true
+			ifFlags = ifFlags | net.FlagPointToPoint
+		case "unspecified":
+			checkAttrs = true
+			wantUnspecified = true
+		case "up":
+			checkFlags = true
+			ifFlags = ifFlags | net.FlagUp
+		default:
+			return nil, nil, fmt.Errorf("Unknown interface flag: %+q", flagName)
+		}
+	}
+
+	for _, ifAddr := range ifAddrs {
+		var matched bool
+		if checkFlags && ifAddr.Interface.Flags&ifFlags == ifFlags {
+			matched = true
+		}
+		if checkAttrs {
+			if ip := ToIPAddr(ifAddr.SockAddr); ip != nil {
+				netIP := (*ip).NetIP()
+				switch {
+				case wantGlobalUnicast && netIP.IsGlobalUnicast():
+					matched = true
+				case wantInterfaceLocalMulticast && netIP.IsInterfaceLocalMulticast():
+					matched = true
+				case wantLinkLocalMulticast && netIP.IsLinkLocalMulticast():
+					matched = true
+				case wantLinkLocalUnicast && netIP.IsLinkLocalUnicast():
+					matched = true
+				case wantLoopback && netIP.IsLoopback():
+					matched = true
+				case wantMulticast && netIP.IsMulticast():
+					matched = true
+				case wantUnspecified && netIP.IsUnspecified():
+					matched = true
+				case wantForwardable && !IsRFC(ForwardingBlacklist, ifAddr.SockAddr):
+					matched = true
+				}
+			}
+		}
+		if matched {
+			matchedAddrs = append(matchedAddrs, ifAddr)
+		} else {
+			excludedAddrs = append(excludedAddrs, ifAddr)
+		}
+	}
+	return matchedAddrs, excludedAddrs, nil
+}
+
+// IfByNetwork returns an IfAddrs that are equal to or included within the
+// network passed in by selector.
+func IfByNetwork(selectorParam string, inputIfAddrs IfAddrs) (IfAddrs, IfAddrs, error) {
+	var includedIfs, excludedIfs IfAddrs
+	for _, netStr := range strings.Split(selectorParam, "|") {
+		netAddr, err := NewIPAddr(netStr)
+		if err != nil {
+			return nil, nil, fmt.Errorf("unable to create an IP address from %+q: %v", netStr, err)
+		}
+
+		for _, ifAddr := range inputIfAddrs {
+			if netAddr.Contains(ifAddr.SockAddr) {
+				includedIfs = append(includedIfs, ifAddr)
+			} else {
+				excludedIfs = append(excludedIfs, ifAddr)
+			}
+		}
+	}
+
+	return includedIfs, excludedIfs, nil
+}
+
+// IfAddrMath will return a new IfAddr struct with a mutated value.
+func IfAddrMath(operation, value string, inputIfAddr IfAddr) (IfAddr, error) {
+	// Regexp used to enforce the sign being a required part of the grammar for
+	// some values.
+	signRe := signRE.Copy()
+
+	switch strings.ToLower(operation) {
+	case "address":
+		// "address" operates on the IP address and is allowed to overflow or
+		// underflow networks, however it will wrap along the underlying address's
+		// underlying type.
+
+		if !signRe.MatchString(value) {
+			return IfAddr{}, fmt.Errorf("sign (+/-) is required for operation %q", operation)
+		}
+
+		switch sockType := inputIfAddr.SockAddr.Type(); sockType {
+		case TypeIPv4:
+			// 33 == Accept any uint32 value
+			// TODO(seanc@): Add the ability to parse hex
+			i, err := strconv.ParseInt(value, 10, 33)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			ipv4 := *ToIPv4Addr(inputIfAddr.SockAddr)
+			ipv4Uint32 := uint32(ipv4.Address)
+			ipv4Uint32 += uint32(i)
+			return IfAddr{
+				SockAddr: IPv4Addr{
+					Address: IPv4Address(ipv4Uint32),
+					Mask:    ipv4.Mask,
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		case TypeIPv6:
+			// 64 == Accept any int32 value
+			// TODO(seanc@): Add the ability to parse hex.  Also parse a bignum int.
+			i, err := strconv.ParseInt(value, 10, 64)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			ipv6 := *ToIPv6Addr(inputIfAddr.SockAddr)
+			ipv6BigIntA := new(big.Int)
+			ipv6BigIntA.Set(ipv6.Address)
+			ipv6BigIntB := big.NewInt(i)
+
+			ipv6Addr := ipv6BigIntA.Add(ipv6BigIntA, ipv6BigIntB)
+			ipv6Addr.And(ipv6Addr, ipv6HostMask)
+
+			return IfAddr{
+				SockAddr: IPv6Addr{
+					Address: IPv6Address(ipv6Addr),
+					Mask:    ipv6.Mask,
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		default:
+			return IfAddr{}, fmt.Errorf("unsupported type for operation %q: %T", operation, sockType)
+		}
+	case "network":
+		// "network" operates on the network address.  Positive values start at the
+		// network address and negative values wrap at the network address, which
+		// means a "-1" value on a network will be the broadcast address after
+		// wrapping is applied.
+
+		if !signRe.MatchString(value) {
+			return IfAddr{}, fmt.Errorf("sign (+/-) is required for operation %q", operation)
+		}
+
+		switch sockType := inputIfAddr.SockAddr.Type(); sockType {
+		case TypeIPv4:
+			// 33 == Accept any uint32 value
+			// TODO(seanc@): Add the ability to parse hex
+			i, err := strconv.ParseInt(value, 10, 33)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			ipv4 := *ToIPv4Addr(inputIfAddr.SockAddr)
+			ipv4Uint32 := uint32(ipv4.NetworkAddress())
+
+			// Wrap along network mask boundaries.  EZ-mode wrapping made possible by
+			// use of int64 vs a uint.
+			var wrappedMask int64
+			if i >= 0 {
+				wrappedMask = i
+			} else {
+				wrappedMask = 1 + i + int64(^uint32(ipv4.Mask))
+			}
+
+			ipv4Uint32 = ipv4Uint32 + (uint32(wrappedMask) &^ uint32(ipv4.Mask))
+
+			return IfAddr{
+				SockAddr: IPv4Addr{
+					Address: IPv4Address(ipv4Uint32),
+					Mask:    ipv4.Mask,
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		case TypeIPv6:
+			// 64 == Accept any int32 value
+			// TODO(seanc@): Add the ability to parse hex.  Also parse a bignum int.
+			i, err := strconv.ParseInt(value, 10, 64)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			ipv6 := *ToIPv6Addr(inputIfAddr.SockAddr)
+			ipv6BigInt := new(big.Int)
+			ipv6BigInt.Set(ipv6.NetworkAddress())
+
+			mask := new(big.Int)
+			mask.Set(ipv6.Mask)
+			if i > 0 {
+				wrappedMask := new(big.Int)
+				wrappedMask.SetInt64(i)
+
+				wrappedMask.AndNot(wrappedMask, mask)
+				ipv6BigInt.Add(ipv6BigInt, wrappedMask)
+			} else {
+				// Mask off any bits that exceed the network size.  Subtract the
+				// wrappedMask from the last usable - 1
+				wrappedMask := new(big.Int)
+				wrappedMask.SetInt64(-1 * i)
+				wrappedMask.Sub(wrappedMask, big.NewInt(1))
+
+				wrappedMask.AndNot(wrappedMask, mask)
+
+				lastUsable := new(big.Int)
+				lastUsable.Set(ipv6.LastUsable().(IPv6Addr).Address)
+
+				ipv6BigInt = lastUsable.Sub(lastUsable, wrappedMask)
+			}
+
+			return IfAddr{
+				SockAddr: IPv6Addr{
+					Address: IPv6Address(ipv6BigInt),
+					Mask:    ipv6.Mask,
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		default:
+			return IfAddr{}, fmt.Errorf("unsupported type for operation %q: %T", operation, sockType)
+		}
+	case "mask":
+		// "mask" operates on the IP address and returns the IP address on
+		// which the given integer mask has been applied. If the applied mask
+		// corresponds to a larger network than the mask of the IP address,
+		// the latter will be replaced by the former.
+		switch sockType := inputIfAddr.SockAddr.Type(); sockType {
+		case TypeIPv4:
+			i, err := strconv.ParseUint(value, 10, 32)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			if i > 32 {
+				return IfAddr{}, fmt.Errorf("parameter for operation %q on ipv4 addresses must be between 0 and 32", operation)
+			}
+
+			ipv4 := *ToIPv4Addr(inputIfAddr.SockAddr)
+
+			ipv4Mask := net.CIDRMask(int(i), 32)
+			ipv4MaskUint32 := binary.BigEndian.Uint32(ipv4Mask)
+
+			maskedIpv4 := ipv4.NetIP().Mask(ipv4Mask)
+			maskedIpv4Uint32 := binary.BigEndian.Uint32(maskedIpv4)
+
+			maskedIpv4MaskUint32 := uint32(ipv4.Mask)
+
+			if ipv4MaskUint32 < maskedIpv4MaskUint32 {
+				maskedIpv4MaskUint32 = ipv4MaskUint32
+			}
+
+			return IfAddr{
+				SockAddr: IPv4Addr{
+					Address: IPv4Address(maskedIpv4Uint32),
+					Mask:    IPv4Mask(maskedIpv4MaskUint32),
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		case TypeIPv6:
+			i, err := strconv.ParseUint(value, 10, 32)
+			if err != nil {
+				return IfAddr{}, fmt.Errorf("unable to convert %q to int for operation %q: %v", value, operation, err)
+			}
+
+			if i > 128 {
+				return IfAddr{}, fmt.Errorf("parameter for operation %q on ipv6 addresses must be between 0 and 64", operation)
+			}
+
+			ipv6 := *ToIPv6Addr(inputIfAddr.SockAddr)
+
+			ipv6Mask := net.CIDRMask(int(i), 128)
+			ipv6MaskBigInt := new(big.Int)
+			ipv6MaskBigInt.SetBytes(ipv6Mask)
+
+			maskedIpv6 := ipv6.NetIP().Mask(ipv6Mask)
+			maskedIpv6BigInt := new(big.Int)
+			maskedIpv6BigInt.SetBytes(maskedIpv6)
+
+			maskedIpv6MaskBigInt := new(big.Int)
+			maskedIpv6MaskBigInt.Set(ipv6.Mask)
+
+			if ipv6MaskBigInt.Cmp(maskedIpv6MaskBigInt) == -1 {
+				maskedIpv6MaskBigInt = ipv6MaskBigInt
+			}
+
+			return IfAddr{
+				SockAddr: IPv6Addr{
+					Address: IPv6Address(maskedIpv6BigInt),
+					Mask:    IPv6Mask(maskedIpv6MaskBigInt),
+				},
+				Interface: inputIfAddr.Interface,
+			}, nil
+		default:
+			return IfAddr{}, fmt.Errorf("unsupported type for operation %q: %T", operation, sockType)
+		}
+	default:
+		return IfAddr{}, fmt.Errorf("unsupported math operation: %q", operation)
+	}
+}
+
+// IfAddrsMath will apply an IfAddrMath operation each IfAddr struct.  Any
+// failure will result in zero results.
+func IfAddrsMath(operation, value string, inputIfAddrs IfAddrs) (IfAddrs, error) {
+	outputAddrs := make(IfAddrs, 0, len(inputIfAddrs))
+	for _, ifAddr := range inputIfAddrs {
+		result, err := IfAddrMath(operation, value, ifAddr)
+		if err != nil {
+			return IfAddrs{}, fmt.Errorf("unable to perform an IPMath operation on %s: %v", ifAddr, err)
+		}
+		outputAddrs = append(outputAddrs, result)
+	}
+	return outputAddrs, nil
+}
+
+// IncludeIfs returns an IfAddrs based on the passed in selector.
+func IncludeIfs(selectorName, selectorParam string, inputIfAddrs IfAddrs) (IfAddrs, error) {
+	var includedIfs IfAddrs
+	var err error
+
+	switch strings.ToLower(selectorName) {
+	case "address":
+		includedIfs, _, err = IfByAddress(selectorParam, inputIfAddrs)
+	case "flag", "flags":
+		includedIfs, _, err = IfByFlag(selectorParam, inputIfAddrs)
+	case "name":
+		includedIfs, _, err = IfByName(selectorParam, inputIfAddrs)
+	case "network":
+		includedIfs, _, err = IfByNetwork(selectorParam, inputIfAddrs)
+	case "port":
+		includedIfs, _, err = IfByPort(selectorParam, inputIfAddrs)
+	case "rfc", "rfcs":
+		includedIfs, _, err = IfByRFCs(selectorParam, inputIfAddrs)
+	case "size":
+		includedIfs, _, err = IfByMaskSize(selectorParam, inputIfAddrs)
+	case "type":
+		includedIfs, _, err = IfByType(selectorParam, inputIfAddrs)
+	default:
+		return IfAddrs{}, fmt.Errorf("invalid include selector %q", selectorName)
+	}
+
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	return includedIfs, nil
+}
+
+// ExcludeIfs returns an IfAddrs based on the passed in selector.
+func ExcludeIfs(selectorName, selectorParam string, inputIfAddrs IfAddrs) (IfAddrs, error) {
+	var excludedIfs IfAddrs
+	var err error
+
+	switch strings.ToLower(selectorName) {
+	case "address":
+		_, excludedIfs, err = IfByAddress(selectorParam, inputIfAddrs)
+	case "flag", "flags":
+		_, excludedIfs, err = IfByFlag(selectorParam, inputIfAddrs)
+	case "name":
+		_, excludedIfs, err = IfByName(selectorParam, inputIfAddrs)
+	case "network":
+		_, excludedIfs, err = IfByNetwork(selectorParam, inputIfAddrs)
+	case "port":
+		_, excludedIfs, err = IfByPort(selectorParam, inputIfAddrs)
+	case "rfc", "rfcs":
+		_, excludedIfs, err = IfByRFCs(selectorParam, inputIfAddrs)
+	case "size":
+		_, excludedIfs, err = IfByMaskSize(selectorParam, inputIfAddrs)
+	case "type":
+		_, excludedIfs, err = IfByType(selectorParam, inputIfAddrs)
+	default:
+		return IfAddrs{}, fmt.Errorf("invalid exclude selector %q", selectorName)
+	}
+
+	if err != nil {
+		return IfAddrs{}, err
+	}
+
+	return excludedIfs, nil
+}
+
+// SortIfBy returns an IfAddrs sorted based on the passed in selector.  Multiple
+// sort clauses can be passed in as a comma delimited list without whitespace.
+func SortIfBy(selectorParam string, inputIfAddrs IfAddrs) (IfAddrs, error) {
+	sortedIfs := append(IfAddrs(nil), inputIfAddrs...)
+
+	clauses := strings.Split(selectorParam, ",")
+	sortFuncs := make([]CmpIfAddrFunc, len(clauses))
+
+	for i, clause := range clauses {
+		switch strings.TrimSpace(strings.ToLower(clause)) {
+		case "+address", "address":
+			// The "address" selector returns an array of IfAddrs
+			// ordered by the network address.  IfAddrs that are not
+			// comparable will be at the end of the list and in a
+			// non-deterministic order.
+			sortFuncs[i] = AscIfAddress
+		case "-address":
+			sortFuncs[i] = DescIfAddress
+		case "+default", "default":
+			sortFuncs[i] = AscIfDefault
+		case "-default":
+			sortFuncs[i] = DescIfDefault
+		case "+name", "name":
+			// The "name" selector returns an array of IfAddrs
+			// ordered by the interface name.
+			sortFuncs[i] = AscIfName
+		case "-name":
+			sortFuncs[i] = DescIfName
+		case "+port", "port":
+			// The "port" selector returns an array of IfAddrs
+			// ordered by the port, if included in the IfAddr.
+			// IfAddrs that are not comparable will be at the end of
+			// the list and in a non-deterministic order.
+			sortFuncs[i] = AscIfPort
+		case "-port":
+			sortFuncs[i] = DescIfPort
+		case "+private", "private":
+			// The "private" selector returns an array of IfAddrs
+			// ordered by private addresses first.  IfAddrs that are
+			// not comparable will be at the end of the list and in
+			// a non-deterministic order.
+			sortFuncs[i] = AscIfPrivate
+		case "-private":
+			sortFuncs[i] = DescIfPrivate
+		case "+size", "size":
+			// The "size" selector returns an array of IfAddrs
+			// ordered by the size of the network mask, smaller mask
+			// (larger number of hosts per network) to largest
+			// (e.g. a /24 sorts before a /32).
+			sortFuncs[i] = AscIfNetworkSize
+		case "-size":
+			sortFuncs[i] = DescIfNetworkSize
+		case "+type", "type":
+			// The "type" selector returns an array of IfAddrs
+			// ordered by the type of the IfAddr.  The sort order is
+			// Unix, IPv4, then IPv6.
+			sortFuncs[i] = AscIfType
+		case "-type":
+			sortFuncs[i] = DescIfType
+		default:
+			// Return an empty list for invalid sort types.
+			return IfAddrs{}, fmt.Errorf("unknown sort type: %q", clause)
+		}
+	}
+
+	OrderedIfAddrBy(sortFuncs...).Sort(sortedIfs)
+
+	return sortedIfs, nil
+}
+
+// UniqueIfAddrsBy creates a unique set of IfAddrs based on the matching
+// selector.  UniqueIfAddrsBy assumes the input has already been sorted.
+func UniqueIfAddrsBy(selectorName string, inputIfAddrs IfAddrs) (IfAddrs, error) {
+	attrName := strings.ToLower(selectorName)
+
+	ifs := make(IfAddrs, 0, len(inputIfAddrs))
+	var lastMatch string
+	for _, ifAddr := range inputIfAddrs {
+		var out string
+		switch attrName {
+		case "address":
+			out = ifAddr.SockAddr.String()
+		case "name":
+			out = ifAddr.Name
+		default:
+			return nil, fmt.Errorf("unsupported unique constraint %+q", selectorName)
+		}
+
+		switch {
+		case lastMatch == "", lastMatch != out:
+			lastMatch = out
+			ifs = append(ifs, ifAddr)
+		case lastMatch == out:
+			continue
+		}
+	}
+
+	return ifs, nil
+}
+
+// JoinIfAddrs joins an IfAddrs and returns a string
+func JoinIfAddrs(selectorName string, joinStr string, inputIfAddrs IfAddrs) (string, error) {
+	outputs := make([]string, 0, len(inputIfAddrs))
+	attrName := AttrName(strings.ToLower(selectorName))
+
+	for _, ifAddr := range inputIfAddrs {
+		var attrVal string
+		var err error
+		attrVal, err = ifAddr.Attr(attrName)
+		if err != nil {
+			return "", err
+		}
+		outputs = append(outputs, attrVal)
+	}
+	return strings.Join(outputs, joinStr), nil
+}
+
+// LimitIfAddrs returns a slice of IfAddrs based on the specified limit.
+func LimitIfAddrs(lim uint, in IfAddrs) (IfAddrs, error) {
+	// Clamp the limit to the length of the array
+	if int(lim) > len(in) {
+		lim = uint(len(in))
+	}
+
+	return in[0:lim], nil
+}
+
+// OffsetIfAddrs returns a slice of IfAddrs based on the specified offset.
+func OffsetIfAddrs(off int, in IfAddrs) (IfAddrs, error) {
+	var end bool
+	if off < 0 {
+		end = true
+		off = off * -1
+	}
+
+	if off > len(in) {
+		return IfAddrs{}, fmt.Errorf("unable to seek past the end of the interface array: offset (%d) exceeds the number of interfaces (%d)", off, len(in))
+	}
+
+	if end {
+		return in[len(in)-off:], nil
+	}
+	return in[off:], nil
+}
+
+func (ifAddr IfAddr) String() string {
+	return fmt.Sprintf("%s %v", ifAddr.SockAddr, ifAddr.Interface)
+}
+
+// parseDefaultIfNameFromRoute parses standard route(8)'s output for the *BSDs
+// and Solaris.
+func parseDefaultIfNameFromRoute(routeOut string) (string, error) {
+	lines := strings.Split(routeOut, "\n")
+	for _, line := range lines {
+		kvs := strings.SplitN(line, ":", 2)
+		if len(kvs) != 2 {
+			continue
+		}
+
+		if strings.TrimSpace(kvs[0]) == "interface" {
+			ifName := strings.TrimSpace(kvs[1])
+			return ifName, nil
+		}
+	}
+
+	return "", errors.New("No default interface found")
+}
+
+// parseDefaultIfNameFromIPCmd parses the default interface from ip(8) for
+// Linux.
+func parseDefaultIfNameFromIPCmd(routeOut string) (string, error) {
+	lines := strings.Split(routeOut, "\n")
+	re := whitespaceRE.Copy()
+	for _, line := range lines {
+		kvs := re.Split(line, -1)
+		if len(kvs) < 5 {
+			continue
+		}
+
+		if kvs[0] == "default" &&
+			kvs[1] == "via" &&
+			kvs[3] == "dev" {
+			ifName := strings.TrimSpace(kvs[4])
+			return ifName, nil
+		}
+	}
+
+	return "", errors.New("No default interface found")
+}
+
+// parseDefaultIfNameWindows parses the default interface from `netstat -rn` and
+// `ipconfig` on Windows.
+func parseDefaultIfNameWindows(routeOut, ipconfigOut string) (string, error) {
+	defaultIPAddr, err := parseDefaultIPAddrWindowsRoute(routeOut)
+	if err != nil {
+		return "", err
+	}
+
+	ifName, err := parseDefaultIfNameWindowsIPConfig(defaultIPAddr, ipconfigOut)
+	if err != nil {
+		return "", err
+	}
+
+	return ifName, nil
+}
+
+// parseDefaultIPAddrWindowsRoute parses the IP address on the default interface
+// `netstat -rn`.
+//
+// NOTES(sean): Only IPv4 addresses are parsed at this time.  If you have an
+// IPv6 connected host, submit an issue on github.com/hashicorp/go-sockaddr with
+// the output from `netstat -rn`, `ipconfig`, and version of Windows to see IPv6
+// support added.
+func parseDefaultIPAddrWindowsRoute(routeOut string) (string, error) {
+	lines := strings.Split(routeOut, "\n")
+	re := whitespaceRE.Copy()
+	for _, line := range lines {
+		kvs := re.Split(strings.TrimSpace(line), -1)
+		if len(kvs) < 3 {
+			continue
+		}
+
+		if kvs[0] == "0.0.0.0" && kvs[1] == "0.0.0.0" {
+			defaultIPAddr := strings.TrimSpace(kvs[3])
+			return defaultIPAddr, nil
+		}
+	}
+
+	return "", errors.New("No IP on default interface found")
+}
+
+// parseDefaultIfNameWindowsIPConfig parses the output of `ipconfig` to find the
+// interface name forwarding traffic to the default gateway.
+func parseDefaultIfNameWindowsIPConfig(defaultIPAddr, routeOut string) (string, error) {
+	lines := strings.Split(routeOut, "\n")
+	ifNameRe := ifNameRE.Copy()
+	ipAddrRe := ipAddrRE.Copy()
+	var ifName string
+	for _, line := range lines {
+		switch ifNameMatches := ifNameRe.FindStringSubmatch(line); {
+		case len(ifNameMatches) > 1:
+			ifName = ifNameMatches[1]
+			continue
+		}
+
+		switch ipAddrMatches := ipAddrRe.FindStringSubmatch(line); {
+		case len(ipAddrMatches) > 1 && ipAddrMatches[1] == defaultIPAddr:
+			return ifName, nil
+		}
+	}
+
+	return "", errors.New("No default interface found with matching IP")
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ifattr.go b/vendor/github.com/hashicorp/go-sockaddr/ifattr.go
new file mode 100644
index 0000000000..6984cb4a35
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ifattr.go
@@ -0,0 +1,65 @@
+package sockaddr
+
+import (
+	"fmt"
+	"net"
+)
+
+// IfAddr is a union of a SockAddr and a net.Interface.
+type IfAddr struct {
+	SockAddr
+	net.Interface
+}
+
+// Attr returns the named attribute as a string
+func (ifAddr IfAddr) Attr(attrName AttrName) (string, error) {
+	val := IfAddrAttr(ifAddr, attrName)
+	if val != "" {
+		return val, nil
+	}
+
+	return Attr(ifAddr.SockAddr, attrName)
+}
+
+// Attr returns the named attribute as a string
+func Attr(sa SockAddr, attrName AttrName) (string, error) {
+	switch sockType := sa.Type(); {
+	case sockType&TypeIP != 0:
+		ip := *ToIPAddr(sa)
+		attrVal := IPAddrAttr(ip, attrName)
+		if attrVal != "" {
+			return attrVal, nil
+		}
+
+		if sockType == TypeIPv4 {
+			ipv4 := *ToIPv4Addr(sa)
+			attrVal := IPv4AddrAttr(ipv4, attrName)
+			if attrVal != "" {
+				return attrVal, nil
+			}
+		} else if sockType == TypeIPv6 {
+			ipv6 := *ToIPv6Addr(sa)
+			attrVal := IPv6AddrAttr(ipv6, attrName)
+			if attrVal != "" {
+				return attrVal, nil
+			}
+		}
+
+	case sockType == TypeUnix:
+		us := *ToUnixSock(sa)
+		attrVal := UnixSockAttr(us, attrName)
+		if attrVal != "" {
+			return attrVal, nil
+		}
+	}
+
+	// Non type-specific attributes
+	switch attrName {
+	case "string":
+		return sa.String(), nil
+	case "type":
+		return sa.Type().String(), nil
+	}
+
+	return "", fmt.Errorf("unsupported attribute name %q", attrName)
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ipaddr.go b/vendor/github.com/hashicorp/go-sockaddr/ipaddr.go
new file mode 100644
index 0000000000..b47d15c201
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ipaddr.go
@@ -0,0 +1,169 @@
+package sockaddr
+
+import (
+	"fmt"
+	"math/big"
+	"net"
+	"strings"
+)
+
+// Constants for the sizes of IPv3, IPv4, and IPv6 address types.
+const (
+	IPv3len = 6
+	IPv4len = 4
+	IPv6len = 16
+)
+
+// IPAddr is a generic IP address interface for IPv4 and IPv6 addresses,
+// networks, and socket endpoints.
+type IPAddr interface {
+	SockAddr
+	AddressBinString() string
+	AddressHexString() string
+	Cmp(SockAddr) int
+	CmpAddress(SockAddr) int
+	CmpPort(SockAddr) int
+	FirstUsable() IPAddr
+	Host() IPAddr
+	IPPort() IPPort
+	LastUsable() IPAddr
+	Maskbits() int
+	NetIP() *net.IP
+	NetIPMask() *net.IPMask
+	NetIPNet() *net.IPNet
+	Network() IPAddr
+	Octets() []int
+}
+
+// IPPort is the type for an IP port number for the TCP and UDP IP transports.
+type IPPort uint16
+
+// IPPrefixLen is a typed integer representing the prefix length for a given
+// IPAddr.
+type IPPrefixLen byte
+
+// ipAddrAttrMap is a map of the IPAddr type-specific attributes.
+var ipAddrAttrMap map[AttrName]func(IPAddr) string
+var ipAddrAttrs []AttrName
+
+func init() {
+	ipAddrInit()
+}
+
+// NewIPAddr creates a new IPAddr from a string.  Returns nil if the string is
+// not an IPv4 or an IPv6 address.
+func NewIPAddr(addr string) (IPAddr, error) {
+	ipv4Addr, err := NewIPv4Addr(addr)
+	if err == nil {
+		return ipv4Addr, nil
+	}
+
+	ipv6Addr, err := NewIPv6Addr(addr)
+	if err == nil {
+		return ipv6Addr, nil
+	}
+
+	return nil, fmt.Errorf("invalid IPAddr %v", addr)
+}
+
+// IPAddrAttr returns a string representation of an attribute for the given
+// IPAddr.
+func IPAddrAttr(ip IPAddr, selector AttrName) string {
+	fn, found := ipAddrAttrMap[selector]
+	if !found {
+		return ""
+	}
+
+	return fn(ip)
+}
+
+// IPAttrs returns a list of attributes supported by the IPAddr type
+func IPAttrs() []AttrName {
+	return ipAddrAttrs
+}
+
+// MustIPAddr is a helper method that must return an IPAddr or panic on invalid
+// input.
+func MustIPAddr(addr string) IPAddr {
+	ip, err := NewIPAddr(addr)
+	if err != nil {
+		panic(fmt.Sprintf("Unable to create an IPAddr from %+q: %v", addr, err))
+	}
+	return ip
+}
+
+// ipAddrInit is called once at init()
+func ipAddrInit() {
+	// Sorted for human readability
+	ipAddrAttrs = []AttrName{
+		"host",
+		"address",
+		"port",
+		"netmask",
+		"network",
+		"mask_bits",
+		"binary",
+		"hex",
+		"first_usable",
+		"last_usable",
+		"octets",
+	}
+
+	ipAddrAttrMap = map[AttrName]func(ip IPAddr) string{
+		"address": func(ip IPAddr) string {
+			return ip.NetIP().String()
+		},
+		"binary": func(ip IPAddr) string {
+			return ip.AddressBinString()
+		},
+		"first_usable": func(ip IPAddr) string {
+			return ip.FirstUsable().String()
+		},
+		"hex": func(ip IPAddr) string {
+			return ip.AddressHexString()
+		},
+		"host": func(ip IPAddr) string {
+			return ip.Host().String()
+		},
+		"last_usable": func(ip IPAddr) string {
+			return ip.LastUsable().String()
+		},
+		"mask_bits": func(ip IPAddr) string {
+			return fmt.Sprintf("%d", ip.Maskbits())
+		},
+		"netmask": func(ip IPAddr) string {
+			switch v := ip.(type) {
+			case IPv4Addr:
+				ipv4Mask := IPv4Addr{
+					Address: IPv4Address(v.Mask),
+					Mask:    IPv4HostMask,
+				}
+				return ipv4Mask.String()
+			case IPv6Addr:
+				ipv6Mask := new(big.Int)
+				ipv6Mask.Set(v.Mask)
+				ipv6MaskAddr := IPv6Addr{
+					Address: IPv6Address(ipv6Mask),
+					Mask:    ipv6HostMask,
+				}
+				return ipv6MaskAddr.String()
+			default:
+				return fmt.Sprintf("<unsupported type: %T>", ip)
+			}
+		},
+		"network": func(ip IPAddr) string {
+			return ip.Network().NetIP().String()
+		},
+		"octets": func(ip IPAddr) string {
+			octets := ip.Octets()
+			octetStrs := make([]string, 0, len(octets))
+			for _, octet := range octets {
+				octetStrs = append(octetStrs, fmt.Sprintf("%d", octet))
+			}
+			return strings.Join(octetStrs, " ")
+		},
+		"port": func(ip IPAddr) string {
+			return fmt.Sprintf("%d", ip.IPPort())
+		},
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ipaddrs.go b/vendor/github.com/hashicorp/go-sockaddr/ipaddrs.go
new file mode 100644
index 0000000000..6eeb7ddd2f
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ipaddrs.go
@@ -0,0 +1,98 @@
+package sockaddr
+
+import "bytes"
+
+type IPAddrs []IPAddr
+
+func (s IPAddrs) Len() int      { return len(s) }
+func (s IPAddrs) Swap(i, j int) { s[i], s[j] = s[j], s[i] }
+
+// // SortIPAddrsByCmp is a type that satisfies sort.Interface and can be used
+// // by the routines in this package.  The SortIPAddrsByCmp type is used to
+// // sort IPAddrs by Cmp()
+// type SortIPAddrsByCmp struct{ IPAddrs }
+
+// // Less reports whether the element with index i should sort before the
+// // element with index j.
+// func (s SortIPAddrsByCmp) Less(i, j int) bool {
+// 	// Sort by Type, then address, then port number.
+// 	return Less(s.IPAddrs[i], s.IPAddrs[j])
+// }
+
+// SortIPAddrsBySpecificMaskLen is a type that satisfies sort.Interface and
+// can be used by the routines in this package.  The
+// SortIPAddrsBySpecificMaskLen type is used to sort IPAddrs by smallest
+// network (most specific to largest network).
+type SortIPAddrsByNetworkSize struct{ IPAddrs }
+
+// Less reports whether the element with index i should sort before the
+// element with index j.
+func (s SortIPAddrsByNetworkSize) Less(i, j int) bool {
+	// Sort masks with a larger binary value (i.e. fewer hosts per network
+	// prefix) after masks with a smaller value (larger number of hosts per
+	// prefix).
+	switch bytes.Compare([]byte(*s.IPAddrs[i].NetIPMask()), []byte(*s.IPAddrs[j].NetIPMask())) {
+	case 0:
+		// Fall through to the second test if the net.IPMasks are the
+		// same.
+		break
+	case 1:
+		return true
+	case -1:
+		return false
+	default:
+		panic("bad, m'kay?")
+	}
+
+	// Sort IPs based on the length (i.e. prefer IPv4 over IPv6).
+	iLen := len(*s.IPAddrs[i].NetIP())
+	jLen := len(*s.IPAddrs[j].NetIP())
+	if iLen != jLen {
+		return iLen > jLen
+	}
+
+	// Sort IPs based on their network address from lowest to highest.
+	switch bytes.Compare(s.IPAddrs[i].NetIPNet().IP, s.IPAddrs[j].NetIPNet().IP) {
+	case 0:
+		break
+	case 1:
+		return false
+	case -1:
+		return true
+	default:
+		panic("lol wut?")
+	}
+
+	// If a host does not have a port set, it always sorts after hosts
+	// that have a port (e.g. a host with a /32 and port number is more
+	// specific and should sort first over a host with a /32 but no port
+	// set).
+	if s.IPAddrs[i].IPPort() == 0 || s.IPAddrs[j].IPPort() == 0 {
+		return false
+	}
+	return s.IPAddrs[i].IPPort() < s.IPAddrs[j].IPPort()
+}
+
+// SortIPAddrsBySpecificMaskLen is a type that satisfies sort.Interface and
+// can be used by the routines in this package.  The
+// SortIPAddrsBySpecificMaskLen type is used to sort IPAddrs by smallest
+// network (most specific to largest network).
+type SortIPAddrsBySpecificMaskLen struct{ IPAddrs }
+
+// Less reports whether the element with index i should sort before the
+// element with index j.
+func (s SortIPAddrsBySpecificMaskLen) Less(i, j int) bool {
+	return s.IPAddrs[i].Maskbits() > s.IPAddrs[j].Maskbits()
+}
+
+// SortIPAddrsByBroadMaskLen is a type that satisfies sort.Interface and can
+// be used by the routines in this package.  The SortIPAddrsByBroadMaskLen
+// type is used to sort IPAddrs by largest network (i.e. largest subnets
+// first).
+type SortIPAddrsByBroadMaskLen struct{ IPAddrs }
+
+// Less reports whether the element with index i should sort before the
+// element with index j.
+func (s SortIPAddrsByBroadMaskLen) Less(i, j int) bool {
+	return s.IPAddrs[i].Maskbits() < s.IPAddrs[j].Maskbits()
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ipv4addr.go b/vendor/github.com/hashicorp/go-sockaddr/ipv4addr.go
new file mode 100644
index 0000000000..4d395dc954
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ipv4addr.go
@@ -0,0 +1,516 @@
+package sockaddr
+
+import (
+	"encoding/binary"
+	"fmt"
+	"net"
+	"regexp"
+	"strconv"
+	"strings"
+)
+
+type (
+	// IPv4Address is a named type representing an IPv4 address.
+	IPv4Address uint32
+
+	// IPv4Network is a named type representing an IPv4 network.
+	IPv4Network uint32
+
+	// IPv4Mask is a named type representing an IPv4 network mask.
+	IPv4Mask uint32
+)
+
+// IPv4HostMask is a constant represents a /32 IPv4 Address
+// (i.e. 255.255.255.255).
+const IPv4HostMask = IPv4Mask(0xffffffff)
+
+// ipv4AddrAttrMap is a map of the IPv4Addr type-specific attributes.
+var ipv4AddrAttrMap map[AttrName]func(IPv4Addr) string
+var ipv4AddrAttrs []AttrName
+var trailingHexNetmaskRE *regexp.Regexp
+
+// IPv4Addr implements a convenience wrapper around the union of Go's
+// built-in net.IP and net.IPNet types.  In UNIX-speak, IPv4Addr implements
+// `sockaddr` when the the address family is set to AF_INET
+// (i.e. `sockaddr_in`).
+type IPv4Addr struct {
+	IPAddr
+	Address IPv4Address
+	Mask    IPv4Mask
+	Port    IPPort
+}
+
+func init() {
+	ipv4AddrInit()
+	trailingHexNetmaskRE = regexp.MustCompile(`/([0f]{8})$`)
+}
+
+// NewIPv4Addr creates an IPv4Addr from a string.  String can be in the form
+// of either an IPv4:port (e.g. `1.2.3.4:80`, in which case the mask is
+// assumed to be a `/32`), an IPv4 address (e.g. `1.2.3.4`, also with a `/32`
+// mask), or an IPv4 CIDR (e.g. `1.2.3.4/24`, which has its IP port
+// initialized to zero).  ipv4Str can not be a hostname.
+//
+// NOTE: Many net.*() routines will initialize and return an IPv6 address.
+// To create uint32 values from net.IP, always test to make sure the address
+// returned can be converted to a 4 byte array using To4().
+func NewIPv4Addr(ipv4Str string) (IPv4Addr, error) {
+	// Strip off any bogus hex-encoded netmasks that will be mis-parsed by Go.  In
+	// particular, clients with the Barracuda VPN client will see something like:
+	// `192.168.3.51/00ffffff` as their IP address.
+	trailingHexNetmaskRe := trailingHexNetmaskRE.Copy()
+	if match := trailingHexNetmaskRe.FindStringIndex(ipv4Str); match != nil {
+		ipv4Str = ipv4Str[:match[0]]
+	}
+
+	// Parse as an IPv4 CIDR
+	ipAddr, network, err := net.ParseCIDR(ipv4Str)
+	if err == nil {
+		ipv4 := ipAddr.To4()
+		if ipv4 == nil {
+			return IPv4Addr{}, fmt.Errorf("Unable to convert %s to an IPv4 address", ipv4Str)
+		}
+
+		// If we see an IPv6 netmask, convert it to an IPv4 mask.
+		netmaskSepPos := strings.LastIndexByte(ipv4Str, '/')
+		if netmaskSepPos != -1 && netmaskSepPos+1 < len(ipv4Str) {
+			netMask, err := strconv.ParseUint(ipv4Str[netmaskSepPos+1:], 10, 8)
+			if err != nil {
+				return IPv4Addr{}, fmt.Errorf("Unable to convert %s to an IPv4 address: unable to parse CIDR netmask: %v", ipv4Str, err)
+			} else if netMask > 128 {
+				return IPv4Addr{}, fmt.Errorf("Unable to convert %s to an IPv4 address: invalid CIDR netmask", ipv4Str)
+			}
+
+			if netMask >= 96 {
+				// Convert the IPv6 netmask to an IPv4 netmask
+				network.Mask = net.CIDRMask(int(netMask-96), IPv4len*8)
+			}
+		}
+		ipv4Addr := IPv4Addr{
+			Address: IPv4Address(binary.BigEndian.Uint32(ipv4)),
+			Mask:    IPv4Mask(binary.BigEndian.Uint32(network.Mask)),
+		}
+		return ipv4Addr, nil
+	}
+
+	// Attempt to parse ipv4Str as a /32 host with a port number.
+	tcpAddr, err := net.ResolveTCPAddr("tcp4", ipv4Str)
+	if err == nil {
+		ipv4 := tcpAddr.IP.To4()
+		if ipv4 == nil {
+			return IPv4Addr{}, fmt.Errorf("Unable to resolve %+q as an IPv4 address", ipv4Str)
+		}
+
+		ipv4Uint32 := binary.BigEndian.Uint32(ipv4)
+		ipv4Addr := IPv4Addr{
+			Address: IPv4Address(ipv4Uint32),
+			Mask:    IPv4HostMask,
+			Port:    IPPort(tcpAddr.Port),
+		}
+
+		return ipv4Addr, nil
+	}
+
+	// Parse as a naked IPv4 address
+	ip := net.ParseIP(ipv4Str)
+	if ip != nil {
+		ipv4 := ip.To4()
+		if ipv4 == nil {
+			return IPv4Addr{}, fmt.Errorf("Unable to string convert %+q to an IPv4 address", ipv4Str)
+		}
+
+		ipv4Uint32 := binary.BigEndian.Uint32(ipv4)
+		ipv4Addr := IPv4Addr{
+			Address: IPv4Address(ipv4Uint32),
+			Mask:    IPv4HostMask,
+		}
+		return ipv4Addr, nil
+	}
+
+	return IPv4Addr{}, fmt.Errorf("Unable to parse %+q to an IPv4 address: %v", ipv4Str, err)
+}
+
+// AddressBinString returns a string with the IPv4Addr's Address represented
+// as a sequence of '0' and '1' characters.  This method is useful for
+// debugging or by operators who want to inspect an address.
+func (ipv4 IPv4Addr) AddressBinString() string {
+	return fmt.Sprintf("%032s", strconv.FormatUint(uint64(ipv4.Address), 2))
+}
+
+// AddressHexString returns a string with the IPv4Addr address represented as
+// a sequence of hex characters.  This method is useful for debugging or by
+// operators who want to inspect an address.
+func (ipv4 IPv4Addr) AddressHexString() string {
+	return fmt.Sprintf("%08s", strconv.FormatUint(uint64(ipv4.Address), 16))
+}
+
+// Broadcast is an IPv4Addr-only method that returns the broadcast address of
+// the network.
+//
+// NOTE: IPv6 only supports multicast, so this method only exists for
+// IPv4Addr.
+func (ipv4 IPv4Addr) Broadcast() IPAddr {
+	// Nothing should listen on a broadcast address.
+	return IPv4Addr{
+		Address: IPv4Address(ipv4.BroadcastAddress()),
+		Mask:    IPv4HostMask,
+	}
+}
+
+// BroadcastAddress returns a IPv4Network of the IPv4Addr's broadcast
+// address.
+func (ipv4 IPv4Addr) BroadcastAddress() IPv4Network {
+	return IPv4Network(uint32(ipv4.Address)&uint32(ipv4.Mask) | ^uint32(ipv4.Mask))
+}
+
+// CmpAddress follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because its address is lower than arg
+// - 0 if the SockAddr arg is equal to the receiving IPv4Addr or the argument is
+//   of a different type.
+// - 1 If the argument should sort first.
+func (ipv4 IPv4Addr) CmpAddress(sa SockAddr) int {
+	ipv4b, ok := sa.(IPv4Addr)
+	if !ok {
+		return sortDeferDecision
+	}
+
+	switch {
+	case ipv4.Address == ipv4b.Address:
+		return sortDeferDecision
+	case ipv4.Address < ipv4b.Address:
+		return sortReceiverBeforeArg
+	default:
+		return sortArgBeforeReceiver
+	}
+}
+
+// CmpPort follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because its port is lower than arg
+// - 0 if the SockAddr arg's port number is equal to the receiving IPv4Addr,
+//   regardless of type.
+// - 1 If the argument should sort first.
+func (ipv4 IPv4Addr) CmpPort(sa SockAddr) int {
+	var saPort IPPort
+	switch v := sa.(type) {
+	case IPv4Addr:
+		saPort = v.Port
+	case IPv6Addr:
+		saPort = v.Port
+	default:
+		return sortDeferDecision
+	}
+
+	switch {
+	case ipv4.Port == saPort:
+		return sortDeferDecision
+	case ipv4.Port < saPort:
+		return sortReceiverBeforeArg
+	default:
+		return sortArgBeforeReceiver
+	}
+}
+
+// CmpRFC follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because it belongs to the RFC and its
+//   arg does not
+// - 0 if the receiver and arg both belong to the same RFC or neither do.
+// - 1 If the arg belongs to the RFC but receiver does not.
+func (ipv4 IPv4Addr) CmpRFC(rfcNum uint, sa SockAddr) int {
+	recvInRFC := IsRFC(rfcNum, ipv4)
+	ipv4b, ok := sa.(IPv4Addr)
+	if !ok {
+		// If the receiver is part of the desired RFC and the SockAddr
+		// argument is not, return -1 so that the receiver sorts before
+		// the non-IPv4 SockAddr.  Conversely, if the receiver is not
+		// part of the RFC, punt on sorting and leave it for the next
+		// sorter.
+		if recvInRFC {
+			return sortReceiverBeforeArg
+		} else {
+			return sortDeferDecision
+		}
+	}
+
+	argInRFC := IsRFC(rfcNum, ipv4b)
+	switch {
+	case (recvInRFC && argInRFC), (!recvInRFC && !argInRFC):
+		// If a and b both belong to the RFC, or neither belong to
+		// rfcNum, defer sorting to the next sorter.
+		return sortDeferDecision
+	case recvInRFC && !argInRFC:
+		return sortReceiverBeforeArg
+	default:
+		return sortArgBeforeReceiver
+	}
+}
+
+// Contains returns true if the SockAddr is contained within the receiver.
+func (ipv4 IPv4Addr) Contains(sa SockAddr) bool {
+	ipv4b, ok := sa.(IPv4Addr)
+	if !ok {
+		return false
+	}
+
+	return ipv4.ContainsNetwork(ipv4b)
+}
+
+// ContainsAddress returns true if the IPv4Address is contained within the
+// receiver.
+func (ipv4 IPv4Addr) ContainsAddress(x IPv4Address) bool {
+	return IPv4Address(ipv4.NetworkAddress()) <= x &&
+		IPv4Address(ipv4.BroadcastAddress()) >= x
+}
+
+// ContainsNetwork returns true if the network from IPv4Addr is contained
+// within the receiver.
+func (ipv4 IPv4Addr) ContainsNetwork(x IPv4Addr) bool {
+	return ipv4.NetworkAddress() <= x.NetworkAddress() &&
+		ipv4.BroadcastAddress() >= x.BroadcastAddress()
+}
+
+// DialPacketArgs returns the arguments required to be passed to
+// net.DialUDP().  If the Mask of ipv4 is not a /32 or the Port is 0,
+// DialPacketArgs() will fail.  See Host() to create an IPv4Addr with its
+// mask set to /32.
+func (ipv4 IPv4Addr) DialPacketArgs() (network, dialArgs string) {
+	if ipv4.Mask != IPv4HostMask || ipv4.Port == 0 {
+		return "udp4", ""
+	}
+	return "udp4", fmt.Sprintf("%s:%d", ipv4.NetIP().String(), ipv4.Port)
+}
+
+// DialStreamArgs returns the arguments required to be passed to
+// net.DialTCP().  If the Mask of ipv4 is not a /32 or the Port is 0,
+// DialStreamArgs() will fail.  See Host() to create an IPv4Addr with its
+// mask set to /32.
+func (ipv4 IPv4Addr) DialStreamArgs() (network, dialArgs string) {
+	if ipv4.Mask != IPv4HostMask || ipv4.Port == 0 {
+		return "tcp4", ""
+	}
+	return "tcp4", fmt.Sprintf("%s:%d", ipv4.NetIP().String(), ipv4.Port)
+}
+
+// Equal returns true if a SockAddr is equal to the receiving IPv4Addr.
+func (ipv4 IPv4Addr) Equal(sa SockAddr) bool {
+	ipv4b, ok := sa.(IPv4Addr)
+	if !ok {
+		return false
+	}
+
+	if ipv4.Port != ipv4b.Port {
+		return false
+	}
+
+	if ipv4.Address != ipv4b.Address {
+		return false
+	}
+
+	if ipv4.NetIPNet().String() != ipv4b.NetIPNet().String() {
+		return false
+	}
+
+	return true
+}
+
+// FirstUsable returns an IPv4Addr set to the first address following the
+// network prefix.  The first usable address in a network is normally the
+// gateway and should not be used except by devices forwarding packets
+// between two administratively distinct networks (i.e. a router).  This
+// function does not discriminate against first usable vs "first address that
+// should be used."  For example, FirstUsable() on "192.168.1.10/24" would
+// return the address "192.168.1.1/24".
+func (ipv4 IPv4Addr) FirstUsable() IPAddr {
+	addr := ipv4.NetworkAddress()
+
+	// If /32, return the address itself. If /31 assume a point-to-point
+	// link and return the lower address.
+	if ipv4.Maskbits() < 31 {
+		addr++
+	}
+
+	return IPv4Addr{
+		Address: IPv4Address(addr),
+		Mask:    IPv4HostMask,
+	}
+}
+
+// Host returns a copy of ipv4 with its mask set to /32 so that it can be
+// used by DialPacketArgs(), DialStreamArgs(), ListenPacketArgs(), or
+// ListenStreamArgs().
+func (ipv4 IPv4Addr) Host() IPAddr {
+	// Nothing should listen on a broadcast address.
+	return IPv4Addr{
+		Address: ipv4.Address,
+		Mask:    IPv4HostMask,
+		Port:    ipv4.Port,
+	}
+}
+
+// IPPort returns the Port number attached to the IPv4Addr
+func (ipv4 IPv4Addr) IPPort() IPPort {
+	return ipv4.Port
+}
+
+// LastUsable returns the last address before the broadcast address in a
+// given network.
+func (ipv4 IPv4Addr) LastUsable() IPAddr {
+	addr := ipv4.BroadcastAddress()
+
+	// If /32, return the address itself. If /31 assume a point-to-point
+	// link and return the upper address.
+	if ipv4.Maskbits() < 31 {
+		addr--
+	}
+
+	return IPv4Addr{
+		Address: IPv4Address(addr),
+		Mask:    IPv4HostMask,
+	}
+}
+
+// ListenPacketArgs returns the arguments required to be passed to
+// net.ListenUDP().  If the Mask of ipv4 is not a /32, ListenPacketArgs()
+// will fail.  See Host() to create an IPv4Addr with its mask set to /32.
+func (ipv4 IPv4Addr) ListenPacketArgs() (network, listenArgs string) {
+	if ipv4.Mask != IPv4HostMask {
+		return "udp4", ""
+	}
+	return "udp4", fmt.Sprintf("%s:%d", ipv4.NetIP().String(), ipv4.Port)
+}
+
+// ListenStreamArgs returns the arguments required to be passed to
+// net.ListenTCP().  If the Mask of ipv4 is not a /32, ListenStreamArgs()
+// will fail.  See Host() to create an IPv4Addr with its mask set to /32.
+func (ipv4 IPv4Addr) ListenStreamArgs() (network, listenArgs string) {
+	if ipv4.Mask != IPv4HostMask {
+		return "tcp4", ""
+	}
+	return "tcp4", fmt.Sprintf("%s:%d", ipv4.NetIP().String(), ipv4.Port)
+}
+
+// Maskbits returns the number of network mask bits in a given IPv4Addr.  For
+// example, the Maskbits() of "192.168.1.1/24" would return 24.
+func (ipv4 IPv4Addr) Maskbits() int {
+	mask := make(net.IPMask, IPv4len)
+	binary.BigEndian.PutUint32(mask, uint32(ipv4.Mask))
+	maskOnes, _ := mask.Size()
+	return maskOnes
+}
+
+// MustIPv4Addr is a helper method that must return an IPv4Addr or panic on
+// invalid input.
+func MustIPv4Addr(addr string) IPv4Addr {
+	ipv4, err := NewIPv4Addr(addr)
+	if err != nil {
+		panic(fmt.Sprintf("Unable to create an IPv4Addr from %+q: %v", addr, err))
+	}
+	return ipv4
+}
+
+// NetIP returns the address as a net.IP (address is always presized to
+// IPv4).
+func (ipv4 IPv4Addr) NetIP() *net.IP {
+	x := make(net.IP, IPv4len)
+	binary.BigEndian.PutUint32(x, uint32(ipv4.Address))
+	return &x
+}
+
+// NetIPMask create a new net.IPMask from the IPv4Addr.
+func (ipv4 IPv4Addr) NetIPMask() *net.IPMask {
+	ipv4Mask := net.IPMask{}
+	ipv4Mask = make(net.IPMask, IPv4len)
+	binary.BigEndian.PutUint32(ipv4Mask, uint32(ipv4.Mask))
+	return &ipv4Mask
+}
+
+// NetIPNet create a new net.IPNet from the IPv4Addr.
+func (ipv4 IPv4Addr) NetIPNet() *net.IPNet {
+	ipv4net := &net.IPNet{}
+	ipv4net.IP = make(net.IP, IPv4len)
+	binary.BigEndian.PutUint32(ipv4net.IP, uint32(ipv4.NetworkAddress()))
+	ipv4net.Mask = *ipv4.NetIPMask()
+	return ipv4net
+}
+
+// Network returns the network prefix or network address for a given network.
+func (ipv4 IPv4Addr) Network() IPAddr {
+	return IPv4Addr{
+		Address: IPv4Address(ipv4.NetworkAddress()),
+		Mask:    ipv4.Mask,
+	}
+}
+
+// NetworkAddress returns an IPv4Network of the IPv4Addr's network address.
+func (ipv4 IPv4Addr) NetworkAddress() IPv4Network {
+	return IPv4Network(uint32(ipv4.Address) & uint32(ipv4.Mask))
+}
+
+// Octets returns a slice of the four octets in an IPv4Addr's Address.  The
+// order of the bytes is big endian.
+func (ipv4 IPv4Addr) Octets() []int {
+	return []int{
+		int(ipv4.Address >> 24),
+		int((ipv4.Address >> 16) & 0xff),
+		int((ipv4.Address >> 8) & 0xff),
+		int(ipv4.Address & 0xff),
+	}
+}
+
+// String returns a string representation of the IPv4Addr
+func (ipv4 IPv4Addr) String() string {
+	if ipv4.Port != 0 {
+		return fmt.Sprintf("%s:%d", ipv4.NetIP().String(), ipv4.Port)
+	}
+
+	if ipv4.Maskbits() == 32 {
+		return ipv4.NetIP().String()
+	}
+
+	return fmt.Sprintf("%s/%d", ipv4.NetIP().String(), ipv4.Maskbits())
+}
+
+// Type is used as a type switch and returns TypeIPv4
+func (IPv4Addr) Type() SockAddrType {
+	return TypeIPv4
+}
+
+// IPv4AddrAttr returns a string representation of an attribute for the given
+// IPv4Addr.
+func IPv4AddrAttr(ipv4 IPv4Addr, selector AttrName) string {
+	fn, found := ipv4AddrAttrMap[selector]
+	if !found {
+		return ""
+	}
+
+	return fn(ipv4)
+}
+
+// IPv4Attrs returns a list of attributes supported by the IPv4Addr type
+func IPv4Attrs() []AttrName {
+	return ipv4AddrAttrs
+}
+
+// ipv4AddrInit is called once at init()
+func ipv4AddrInit() {
+	// Sorted for human readability
+	ipv4AddrAttrs = []AttrName{
+		"size", // Same position as in IPv6 for output consistency
+		"broadcast",
+		"uint32",
+	}
+
+	ipv4AddrAttrMap = map[AttrName]func(ipv4 IPv4Addr) string{
+		"broadcast": func(ipv4 IPv4Addr) string {
+			return ipv4.Broadcast().String()
+		},
+		"size": func(ipv4 IPv4Addr) string {
+			return fmt.Sprintf("%d", 1<<uint(IPv4len*8-ipv4.Maskbits()))
+		},
+		"uint32": func(ipv4 IPv4Addr) string {
+			return fmt.Sprintf("%d", uint32(ipv4.Address))
+		},
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/ipv6addr.go b/vendor/github.com/hashicorp/go-sockaddr/ipv6addr.go
new file mode 100644
index 0000000000..d7f4121113
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/ipv6addr.go
@@ -0,0 +1,591 @@
+package sockaddr
+
+import (
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"math/big"
+	"net"
+)
+
+type (
+	// IPv6Address is a named type representing an IPv6 address.
+	IPv6Address *big.Int
+
+	// IPv6Network is a named type representing an IPv6 network.
+	IPv6Network *big.Int
+
+	// IPv6Mask is a named type representing an IPv6 network mask.
+	IPv6Mask *big.Int
+)
+
+// IPv6HostPrefix is a constant represents a /128 IPv6 Prefix.
+const IPv6HostPrefix = IPPrefixLen(128)
+
+// ipv6HostMask is an unexported big.Int representing a /128 IPv6 address.
+// This value must be a constant and always set to all ones.
+var ipv6HostMask IPv6Mask
+
+// ipv6AddrAttrMap is a map of the IPv6Addr type-specific attributes.
+var ipv6AddrAttrMap map[AttrName]func(IPv6Addr) string
+var ipv6AddrAttrs []AttrName
+
+func init() {
+	biMask := new(big.Int)
+	biMask.SetBytes([]byte{
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+		0xff, 0xff,
+	},
+	)
+	ipv6HostMask = IPv6Mask(biMask)
+
+	ipv6AddrInit()
+}
+
+// IPv6Addr implements a convenience wrapper around the union of Go's
+// built-in net.IP and net.IPNet types.  In UNIX-speak, IPv6Addr implements
+// `sockaddr` when the the address family is set to AF_INET6
+// (i.e. `sockaddr_in6`).
+type IPv6Addr struct {
+	IPAddr
+	Address IPv6Address
+	Mask    IPv6Mask
+	Port    IPPort
+}
+
+// NewIPv6Addr creates an IPv6Addr from a string.  String can be in the form of
+// an an IPv6:port (e.g. `[2001:4860:0:2001::68]:80`, in which case the mask is
+// assumed to be a /128), an IPv6 address (e.g. `2001:4860:0:2001::68`, also
+// with a `/128` mask), an IPv6 CIDR (e.g. `2001:4860:0:2001::68/64`, which has
+// its IP port initialized to zero).  ipv6Str can not be a hostname.
+//
+// NOTE: Many net.*() routines will initialize and return an IPv4 address.
+// Always test to make sure the address returned cannot be converted to a 4 byte
+// array using To4().
+func NewIPv6Addr(ipv6Str string) (IPv6Addr, error) {
+	v6Addr := false
+LOOP:
+	for i := 0; i < len(ipv6Str); i++ {
+		switch ipv6Str[i] {
+		case '.':
+			break LOOP
+		case ':':
+			v6Addr = true
+			break LOOP
+		}
+	}
+
+	if !v6Addr {
+		return IPv6Addr{}, fmt.Errorf("Unable to resolve %+q as an IPv6 address, appears to be an IPv4 address", ipv6Str)
+	}
+
+	// Attempt to parse ipv6Str as a /128 host with a port number.
+	tcpAddr, err := net.ResolveTCPAddr("tcp6", ipv6Str)
+	if err == nil {
+		ipv6 := tcpAddr.IP.To16()
+		if ipv6 == nil {
+			return IPv6Addr{}, fmt.Errorf("Unable to resolve %+q as a 16byte IPv6 address", ipv6Str)
+		}
+
+		ipv6BigIntAddr := new(big.Int)
+		ipv6BigIntAddr.SetBytes(ipv6)
+
+		ipv6BigIntMask := new(big.Int)
+		ipv6BigIntMask.Set(ipv6HostMask)
+
+		ipv6Addr := IPv6Addr{
+			Address: IPv6Address(ipv6BigIntAddr),
+			Mask:    IPv6Mask(ipv6BigIntMask),
+			Port:    IPPort(tcpAddr.Port),
+		}
+
+		return ipv6Addr, nil
+	}
+
+	// Parse as a naked IPv6 address.  Trim square brackets if present.
+	if len(ipv6Str) > 2 && ipv6Str[0] == '[' && ipv6Str[len(ipv6Str)-1] == ']' {
+		ipv6Str = ipv6Str[1 : len(ipv6Str)-1]
+	}
+	ip := net.ParseIP(ipv6Str)
+	if ip != nil {
+		ipv6 := ip.To16()
+		if ipv6 == nil {
+			return IPv6Addr{}, fmt.Errorf("Unable to string convert %+q to a 16byte IPv6 address", ipv6Str)
+		}
+
+		ipv6BigIntAddr := new(big.Int)
+		ipv6BigIntAddr.SetBytes(ipv6)
+
+		ipv6BigIntMask := new(big.Int)
+		ipv6BigIntMask.Set(ipv6HostMask)
+
+		return IPv6Addr{
+			Address: IPv6Address(ipv6BigIntAddr),
+			Mask:    IPv6Mask(ipv6BigIntMask),
+		}, nil
+	}
+
+	// Parse as an IPv6 CIDR
+	ipAddr, network, err := net.ParseCIDR(ipv6Str)
+	if err == nil {
+		ipv6 := ipAddr.To16()
+		if ipv6 == nil {
+			return IPv6Addr{}, fmt.Errorf("Unable to convert %+q to a 16byte IPv6 address", ipv6Str)
+		}
+
+		ipv6BigIntAddr := new(big.Int)
+		ipv6BigIntAddr.SetBytes(ipv6)
+
+		ipv6BigIntMask := new(big.Int)
+		ipv6BigIntMask.SetBytes(network.Mask)
+
+		ipv6Addr := IPv6Addr{
+			Address: IPv6Address(ipv6BigIntAddr),
+			Mask:    IPv6Mask(ipv6BigIntMask),
+		}
+		return ipv6Addr, nil
+	}
+
+	return IPv6Addr{}, fmt.Errorf("Unable to parse %+q to an IPv6 address: %v", ipv6Str, err)
+}
+
+// AddressBinString returns a string with the IPv6Addr's Address represented
+// as a sequence of '0' and '1' characters.  This method is useful for
+// debugging or by operators who want to inspect an address.
+func (ipv6 IPv6Addr) AddressBinString() string {
+	bi := big.Int(*ipv6.Address)
+	return fmt.Sprintf("%0128s", bi.Text(2))
+}
+
+// AddressHexString returns a string with the IPv6Addr address represented as
+// a sequence of hex characters.  This method is useful for debugging or by
+// operators who want to inspect an address.
+func (ipv6 IPv6Addr) AddressHexString() string {
+	bi := big.Int(*ipv6.Address)
+	return fmt.Sprintf("%032s", bi.Text(16))
+}
+
+// CmpAddress follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because its address is lower than arg
+// - 0 if the SockAddr arg equal to the receiving IPv6Addr or the argument is of a
+//   different type.
+// - 1 If the argument should sort first.
+func (ipv6 IPv6Addr) CmpAddress(sa SockAddr) int {
+	ipv6b, ok := sa.(IPv6Addr)
+	if !ok {
+		return sortDeferDecision
+	}
+
+	ipv6aBigInt := new(big.Int)
+	ipv6aBigInt.Set(ipv6.Address)
+	ipv6bBigInt := new(big.Int)
+	ipv6bBigInt.Set(ipv6b.Address)
+
+	return ipv6aBigInt.Cmp(ipv6bBigInt)
+}
+
+// CmpPort follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because its port is lower than arg
+// - 0 if the SockAddr arg's port number is equal to the receiving IPv6Addr,
+//   regardless of type.
+// - 1 If the argument should sort first.
+func (ipv6 IPv6Addr) CmpPort(sa SockAddr) int {
+	var saPort IPPort
+	switch v := sa.(type) {
+	case IPv4Addr:
+		saPort = v.Port
+	case IPv6Addr:
+		saPort = v.Port
+	default:
+		return sortDeferDecision
+	}
+
+	switch {
+	case ipv6.Port == saPort:
+		return sortDeferDecision
+	case ipv6.Port < saPort:
+		return sortReceiverBeforeArg
+	default:
+		return sortArgBeforeReceiver
+	}
+}
+
+// CmpRFC follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because it belongs to the RFC and its
+//   arg does not
+// - 0 if the receiver and arg both belong to the same RFC or neither do.
+// - 1 If the arg belongs to the RFC but receiver does not.
+func (ipv6 IPv6Addr) CmpRFC(rfcNum uint, sa SockAddr) int {
+	recvInRFC := IsRFC(rfcNum, ipv6)
+	ipv6b, ok := sa.(IPv6Addr)
+	if !ok {
+		// If the receiver is part of the desired RFC and the SockAddr
+		// argument is not, sort receiver before the non-IPv6 SockAddr.
+		// Conversely, if the receiver is not part of the RFC, punt on
+		// sorting and leave it for the next sorter.
+		if recvInRFC {
+			return sortReceiverBeforeArg
+		} else {
+			return sortDeferDecision
+		}
+	}
+
+	argInRFC := IsRFC(rfcNum, ipv6b)
+	switch {
+	case (recvInRFC && argInRFC), (!recvInRFC && !argInRFC):
+		// If a and b both belong to the RFC, or neither belong to
+		// rfcNum, defer sorting to the next sorter.
+		return sortDeferDecision
+	case recvInRFC && !argInRFC:
+		return sortReceiverBeforeArg
+	default:
+		return sortArgBeforeReceiver
+	}
+}
+
+// Contains returns true if the SockAddr is contained within the receiver.
+func (ipv6 IPv6Addr) Contains(sa SockAddr) bool {
+	ipv6b, ok := sa.(IPv6Addr)
+	if !ok {
+		return false
+	}
+
+	return ipv6.ContainsNetwork(ipv6b)
+}
+
+// ContainsAddress returns true if the IPv6Address is contained within the
+// receiver.
+func (ipv6 IPv6Addr) ContainsAddress(x IPv6Address) bool {
+	xAddr := IPv6Addr{
+		Address: x,
+		Mask:    ipv6HostMask,
+	}
+
+	{
+		xIPv6 := xAddr.FirstUsable().(IPv6Addr)
+		yIPv6 := ipv6.FirstUsable().(IPv6Addr)
+		if xIPv6.CmpAddress(yIPv6) >= 1 {
+			return false
+		}
+	}
+
+	{
+		xIPv6 := xAddr.LastUsable().(IPv6Addr)
+		yIPv6 := ipv6.LastUsable().(IPv6Addr)
+		if xIPv6.CmpAddress(yIPv6) <= -1 {
+			return false
+		}
+	}
+	return true
+}
+
+// ContainsNetwork returns true if the network from IPv6Addr is contained within
+// the receiver.
+func (x IPv6Addr) ContainsNetwork(y IPv6Addr) bool {
+	{
+		xIPv6 := x.FirstUsable().(IPv6Addr)
+		yIPv6 := y.FirstUsable().(IPv6Addr)
+		if ret := xIPv6.CmpAddress(yIPv6); ret >= 1 {
+			return false
+		}
+	}
+
+	{
+		xIPv6 := x.LastUsable().(IPv6Addr)
+		yIPv6 := y.LastUsable().(IPv6Addr)
+		if ret := xIPv6.CmpAddress(yIPv6); ret <= -1 {
+			return false
+		}
+	}
+	return true
+}
+
+// DialPacketArgs returns the arguments required to be passed to
+// net.DialUDP().  If the Mask of ipv6 is not a /128 or the Port is 0,
+// DialPacketArgs() will fail.  See Host() to create an IPv6Addr with its
+// mask set to /128.
+func (ipv6 IPv6Addr) DialPacketArgs() (network, dialArgs string) {
+	ipv6Mask := big.Int(*ipv6.Mask)
+	if ipv6Mask.Cmp(ipv6HostMask) != 0 || ipv6.Port == 0 {
+		return "udp6", ""
+	}
+	return "udp6", fmt.Sprintf("[%s]:%d", ipv6.NetIP().String(), ipv6.Port)
+}
+
+// DialStreamArgs returns the arguments required to be passed to
+// net.DialTCP().  If the Mask of ipv6 is not a /128 or the Port is 0,
+// DialStreamArgs() will fail.  See Host() to create an IPv6Addr with its
+// mask set to /128.
+func (ipv6 IPv6Addr) DialStreamArgs() (network, dialArgs string) {
+	ipv6Mask := big.Int(*ipv6.Mask)
+	if ipv6Mask.Cmp(ipv6HostMask) != 0 || ipv6.Port == 0 {
+		return "tcp6", ""
+	}
+	return "tcp6", fmt.Sprintf("[%s]:%d", ipv6.NetIP().String(), ipv6.Port)
+}
+
+// Equal returns true if a SockAddr is equal to the receiving IPv4Addr.
+func (ipv6a IPv6Addr) Equal(sa SockAddr) bool {
+	ipv6b, ok := sa.(IPv6Addr)
+	if !ok {
+		return false
+	}
+
+	if ipv6a.NetIP().String() != ipv6b.NetIP().String() {
+		return false
+	}
+
+	if ipv6a.NetIPNet().String() != ipv6b.NetIPNet().String() {
+		return false
+	}
+
+	if ipv6a.Port != ipv6b.Port {
+		return false
+	}
+
+	return true
+}
+
+// FirstUsable returns an IPv6Addr set to the first address following the
+// network prefix.  The first usable address in a network is normally the
+// gateway and should not be used except by devices forwarding packets
+// between two administratively distinct networks (i.e. a router).  This
+// function does not discriminate against first usable vs "first address that
+// should be used."  For example, FirstUsable() on "2001:0db8::0003/64" would
+// return "2001:0db8::00011".
+func (ipv6 IPv6Addr) FirstUsable() IPAddr {
+	return IPv6Addr{
+		Address: IPv6Address(ipv6.NetworkAddress()),
+		Mask:    ipv6HostMask,
+	}
+}
+
+// Host returns a copy of ipv6 with its mask set to /128 so that it can be
+// used by DialPacketArgs(), DialStreamArgs(), ListenPacketArgs(), or
+// ListenStreamArgs().
+func (ipv6 IPv6Addr) Host() IPAddr {
+	// Nothing should listen on a broadcast address.
+	return IPv6Addr{
+		Address: ipv6.Address,
+		Mask:    ipv6HostMask,
+		Port:    ipv6.Port,
+	}
+}
+
+// IPPort returns the Port number attached to the IPv6Addr
+func (ipv6 IPv6Addr) IPPort() IPPort {
+	return ipv6.Port
+}
+
+// LastUsable returns the last address in a given network.
+func (ipv6 IPv6Addr) LastUsable() IPAddr {
+	addr := new(big.Int)
+	addr.Set(ipv6.Address)
+
+	mask := new(big.Int)
+	mask.Set(ipv6.Mask)
+
+	negMask := new(big.Int)
+	negMask.Xor(ipv6HostMask, mask)
+
+	lastAddr := new(big.Int)
+	lastAddr.And(addr, mask)
+	lastAddr.Or(lastAddr, negMask)
+
+	return IPv6Addr{
+		Address: IPv6Address(lastAddr),
+		Mask:    ipv6HostMask,
+	}
+}
+
+// ListenPacketArgs returns the arguments required to be passed to
+// net.ListenUDP().  If the Mask of ipv6 is not a /128, ListenPacketArgs()
+// will fail.  See Host() to create an IPv6Addr with its mask set to /128.
+func (ipv6 IPv6Addr) ListenPacketArgs() (network, listenArgs string) {
+	ipv6Mask := big.Int(*ipv6.Mask)
+	if ipv6Mask.Cmp(ipv6HostMask) != 0 {
+		return "udp6", ""
+	}
+	return "udp6", fmt.Sprintf("[%s]:%d", ipv6.NetIP().String(), ipv6.Port)
+}
+
+// ListenStreamArgs returns the arguments required to be passed to
+// net.ListenTCP().  If the Mask of ipv6 is not a /128, ListenStreamArgs()
+// will fail.  See Host() to create an IPv6Addr with its mask set to /128.
+func (ipv6 IPv6Addr) ListenStreamArgs() (network, listenArgs string) {
+	ipv6Mask := big.Int(*ipv6.Mask)
+	if ipv6Mask.Cmp(ipv6HostMask) != 0 {
+		return "tcp6", ""
+	}
+	return "tcp6", fmt.Sprintf("[%s]:%d", ipv6.NetIP().String(), ipv6.Port)
+}
+
+// Maskbits returns the number of network mask bits in a given IPv6Addr.  For
+// example, the Maskbits() of "2001:0db8::0003/64" would return 64.
+func (ipv6 IPv6Addr) Maskbits() int {
+	maskOnes, _ := ipv6.NetIPNet().Mask.Size()
+
+	return maskOnes
+}
+
+// MustIPv6Addr is a helper method that must return an IPv6Addr or panic on
+// invalid input.
+func MustIPv6Addr(addr string) IPv6Addr {
+	ipv6, err := NewIPv6Addr(addr)
+	if err != nil {
+		panic(fmt.Sprintf("Unable to create an IPv6Addr from %+q: %v", addr, err))
+	}
+	return ipv6
+}
+
+// NetIP returns the address as a net.IP.
+func (ipv6 IPv6Addr) NetIP() *net.IP {
+	return bigIntToNetIPv6(ipv6.Address)
+}
+
+// NetIPMask create a new net.IPMask from the IPv6Addr.
+func (ipv6 IPv6Addr) NetIPMask() *net.IPMask {
+	ipv6Mask := make(net.IPMask, IPv6len)
+	m := big.Int(*ipv6.Mask)
+	copy(ipv6Mask, m.Bytes())
+	return &ipv6Mask
+}
+
+// Network returns a pointer to the net.IPNet within IPv4Addr receiver.
+func (ipv6 IPv6Addr) NetIPNet() *net.IPNet {
+	ipv6net := &net.IPNet{}
+	ipv6net.IP = make(net.IP, IPv6len)
+	copy(ipv6net.IP, *ipv6.NetIP())
+	ipv6net.Mask = *ipv6.NetIPMask()
+	return ipv6net
+}
+
+// Network returns the network prefix or network address for a given network.
+func (ipv6 IPv6Addr) Network() IPAddr {
+	return IPv6Addr{
+		Address: IPv6Address(ipv6.NetworkAddress()),
+		Mask:    ipv6.Mask,
+	}
+}
+
+// NetworkAddress returns an IPv6Network of the IPv6Addr's network address.
+func (ipv6 IPv6Addr) NetworkAddress() IPv6Network {
+	addr := new(big.Int)
+	addr.SetBytes((*ipv6.Address).Bytes())
+
+	mask := new(big.Int)
+	mask.SetBytes(*ipv6.NetIPMask())
+
+	netAddr := new(big.Int)
+	netAddr.And(addr, mask)
+
+	return IPv6Network(netAddr)
+}
+
+// Octets returns a slice of the 16 octets in an IPv6Addr's Address.  The
+// order of the bytes is big endian.
+func (ipv6 IPv6Addr) Octets() []int {
+	x := make([]int, IPv6len)
+	for i, b := range *bigIntToNetIPv6(ipv6.Address) {
+		x[i] = int(b)
+	}
+
+	return x
+}
+
+// String returns a string representation of the IPv6Addr
+func (ipv6 IPv6Addr) String() string {
+	if ipv6.Port != 0 {
+		return fmt.Sprintf("[%s]:%d", ipv6.NetIP().String(), ipv6.Port)
+	}
+
+	if ipv6.Maskbits() == 128 {
+		return ipv6.NetIP().String()
+	}
+
+	return fmt.Sprintf("%s/%d", ipv6.NetIP().String(), ipv6.Maskbits())
+}
+
+// Type is used as a type switch and returns TypeIPv6
+func (IPv6Addr) Type() SockAddrType {
+	return TypeIPv6
+}
+
+// IPv6Attrs returns a list of attributes supported by the IPv6Addr type
+func IPv6Attrs() []AttrName {
+	return ipv6AddrAttrs
+}
+
+// IPv6AddrAttr returns a string representation of an attribute for the given
+// IPv6Addr.
+func IPv6AddrAttr(ipv6 IPv6Addr, selector AttrName) string {
+	fn, found := ipv6AddrAttrMap[selector]
+	if !found {
+		return ""
+	}
+
+	return fn(ipv6)
+}
+
+// ipv6AddrInit is called once at init()
+func ipv6AddrInit() {
+	// Sorted for human readability
+	ipv6AddrAttrs = []AttrName{
+		"size", // Same position as in IPv6 for output consistency
+		"uint128",
+	}
+
+	ipv6AddrAttrMap = map[AttrName]func(ipv6 IPv6Addr) string{
+		"size": func(ipv6 IPv6Addr) string {
+			netSize := big.NewInt(1)
+			netSize = netSize.Lsh(netSize, uint(IPv6len*8-ipv6.Maskbits()))
+			return netSize.Text(10)
+		},
+		"uint128": func(ipv6 IPv6Addr) string {
+			b := big.Int(*ipv6.Address)
+			return b.Text(10)
+		},
+	}
+}
+
+// bigIntToNetIPv6 is a helper function that correctly returns a net.IP with the
+// correctly padded values.
+func bigIntToNetIPv6(bi *big.Int) *net.IP {
+	x := make(net.IP, IPv6len)
+	ipv6Bytes := bi.Bytes()
+
+	// It's possibe for ipv6Bytes to be less than IPv6len bytes in size.  If
+	// they are different sizes we to pad the size of response.
+	if len(ipv6Bytes) < IPv6len {
+		buf := new(bytes.Buffer)
+		buf.Grow(IPv6len)
+
+		for i := len(ipv6Bytes); i < IPv6len; i++ {
+			if err := binary.Write(buf, binary.BigEndian, byte(0)); err != nil {
+				panic(fmt.Sprintf("Unable to pad byte %d of input %v: %v", i, bi, err))
+			}
+		}
+
+		for _, b := range ipv6Bytes {
+			if err := binary.Write(buf, binary.BigEndian, b); err != nil {
+				panic(fmt.Sprintf("Unable to preserve endianness of input %v: %v", bi, err))
+			}
+		}
+
+		ipv6Bytes = buf.Bytes()
+	}
+	i := copy(x, ipv6Bytes)
+	if i != IPv6len {
+		panic("IPv6 wrong size")
+	}
+	return &x
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/rfc.go b/vendor/github.com/hashicorp/go-sockaddr/rfc.go
new file mode 100644
index 0000000000..02e188f6fe
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/rfc.go
@@ -0,0 +1,948 @@
+package sockaddr
+
+// ForwardingBlacklist is a faux RFC that includes a list of non-forwardable IP
+// blocks.
+const ForwardingBlacklist = 4294967295
+const ForwardingBlacklistRFC = "4294967295"
+
+// IsRFC tests to see if an SockAddr matches the specified RFC
+func IsRFC(rfcNum uint, sa SockAddr) bool {
+	rfcNetMap := KnownRFCs()
+	rfcNets, ok := rfcNetMap[rfcNum]
+	if !ok {
+		return false
+	}
+
+	var contained bool
+	for _, rfcNet := range rfcNets {
+		if rfcNet.Contains(sa) {
+			contained = true
+			break
+		}
+	}
+	return contained
+}
+
+// KnownRFCs returns an initial set of known RFCs.
+//
+// NOTE (sean@): As this list evolves over time, please submit patches to keep
+// this list current.  If something isn't right, inquire, as it may just be a
+// bug on my part.  Some of the inclusions were based on my judgement as to what
+// would be a useful value (e.g. RFC3330).
+//
+// Useful resources:
+//
+// * https://www.iana.org/assignments/ipv6-address-space/ipv6-address-space.xhtml
+// * https://www.iana.org/assignments/ipv6-unicast-address-assignments/ipv6-unicast-address-assignments.xhtml
+// * https://www.iana.org/assignments/ipv6-address-space/ipv6-address-space.xhtml
+func KnownRFCs() map[uint]SockAddrs {
+	// NOTE(sean@): Multiple SockAddrs per RFC lend themselves well to a
+	// RADIX tree, but `ENOTIME`.  Patches welcome.
+	return map[uint]SockAddrs{
+		919: {
+			// [RFC919] Broadcasting Internet Datagrams
+			MustIPv4Addr("255.255.255.255/32"), // [RFC1122], §7 Broadcast IP Addressing - Proposed Standards
+		},
+		1122: {
+			// [RFC1122] Requirements for Internet Hosts -- Communication Layers
+			MustIPv4Addr("0.0.0.0/8"),   // [RFC1122], §3.2.1.3
+			MustIPv4Addr("127.0.0.0/8"), // [RFC1122], §3.2.1.3
+		},
+		1112: {
+			// [RFC1112] Host Extensions for IP Multicasting
+			MustIPv4Addr("224.0.0.0/4"), // [RFC1112], §4 Host Group Addresses
+		},
+		1918: {
+			// [RFC1918] Address Allocation for Private Internets
+			MustIPv4Addr("10.0.0.0/8"),
+			MustIPv4Addr("172.16.0.0/12"),
+			MustIPv4Addr("192.168.0.0/16"),
+		},
+		2544: {
+			// [RFC2544] Benchmarking Methodology for Network
+			// Interconnect Devices
+			MustIPv4Addr("198.18.0.0/15"),
+		},
+		2765: {
+			// [RFC2765] Stateless IP/ICMP Translation Algorithm
+			// (SIIT) (obsoleted by RFCs 6145, which itself was
+			// later obsoleted by 7915).
+
+			// [RFC2765], §2.1 Addresses
+			MustIPv6Addr("0:0:0:0:0:ffff:0:0/96"),
+		},
+		2928: {
+			// [RFC2928] Initial IPv6 Sub-TLA ID Assignments
+			MustIPv6Addr("2001::/16"), // Superblock
+			//MustIPv6Addr("2001:0000::/23"), // IANA
+			//MustIPv6Addr("2001:0200::/23"), // APNIC
+			//MustIPv6Addr("2001:0400::/23"), // ARIN
+			//MustIPv6Addr("2001:0600::/23"), // RIPE NCC
+			//MustIPv6Addr("2001:0800::/23"), // (future assignment)
+			// ...
+			//MustIPv6Addr("2001:FE00::/23"), // (future assignment)
+		},
+		3056: { // 6to4 address
+			// [RFC3056] Connection of IPv6 Domains via IPv4 Clouds
+
+			// [RFC3056], §2 IPv6 Prefix Allocation
+			MustIPv6Addr("2002::/16"),
+		},
+		3068: {
+			// [RFC3068] An Anycast Prefix for 6to4 Relay Routers
+			// (obsolete by RFC7526)
+
+			// [RFC3068], § 6to4 Relay anycast address
+			MustIPv4Addr("192.88.99.0/24"),
+
+			// [RFC3068], §2.5 6to4 IPv6 relay anycast address
+			//
+			// NOTE: /120 == 128-(32-24)
+			MustIPv6Addr("2002:c058:6301::/120"),
+		},
+		3171: {
+			// [RFC3171] IANA Guidelines for IPv4 Multicast Address Assignments
+			MustIPv4Addr("224.0.0.0/4"),
+		},
+		3330: {
+			// [RFC3330] Special-Use IPv4 Addresses
+
+			// Addresses in this block refer to source hosts on
+			// "this" network.  Address 0.0.0.0/32 may be used as a
+			// source address for this host on this network; other
+			// addresses within 0.0.0.0/8 may be used to refer to
+			// specified hosts on this network [RFC1700, page 4].
+			MustIPv4Addr("0.0.0.0/8"),
+
+			// 10.0.0.0/8 - This block is set aside for use in
+			// private networks.  Its intended use is documented in
+			// [RFC1918].  Addresses within this block should not
+			// appear on the public Internet.
+			MustIPv4Addr("10.0.0.0/8"),
+
+			// 14.0.0.0/8 - This block is set aside for assignments
+			// to the international system of Public Data Networks
+			// [RFC1700, page 181]. The registry of assignments
+			// within this block can be accessed from the "Public
+			// Data Network Numbers" link on the web page at
+			// http://www.iana.org/numbers.html.  Addresses within
+			// this block are assigned to users and should be
+			// treated as such.
+
+			// 24.0.0.0/8 - This block was allocated in early 1996
+			// for use in provisioning IP service over cable
+			// television systems.  Although the IANA initially was
+			// involved in making assignments to cable operators,
+			// this responsibility was transferred to American
+			// Registry for Internet Numbers (ARIN) in May 2001.
+			// Addresses within this block are assigned in the
+			// normal manner and should be treated as such.
+
+			// 39.0.0.0/8 - This block was used in the "Class A
+			// Subnet Experiment" that commenced in May 1995, as
+			// documented in [RFC1797].  The experiment has been
+			// completed and this block has been returned to the
+			// pool of addresses reserved for future allocation or
+			// assignment.  This block therefore no longer has a
+			// special use and is subject to allocation to a
+			// Regional Internet Registry for assignment in the
+			// normal manner.
+
+			// 127.0.0.0/8 - This block is assigned for use as the Internet host
+			// loopback address.  A datagram sent by a higher level protocol to an
+			// address anywhere within this block should loop back inside the host.
+			// This is ordinarily implemented using only 127.0.0.1/32 for loopback,
+			// but no addresses within this block should ever appear on any network
+			// anywhere [RFC1700, page 5].
+			MustIPv4Addr("127.0.0.0/8"),
+
+			// 128.0.0.0/16 - This block, corresponding to the
+			// numerically lowest of the former Class B addresses,
+			// was initially and is still reserved by the IANA.
+			// Given the present classless nature of the IP address
+			// space, the basis for the reservation no longer
+			// applies and addresses in this block are subject to
+			// future allocation to a Regional Internet Registry for
+			// assignment in the normal manner.
+
+			// 169.254.0.0/16 - This is the "link local" block.  It
+			// is allocated for communication between hosts on a
+			// single link.  Hosts obtain these addresses by
+			// auto-configuration, such as when a DHCP server may
+			// not be found.
+			MustIPv4Addr("169.254.0.0/16"),
+
+			// 172.16.0.0/12 - This block is set aside for use in
+			// private networks.  Its intended use is documented in
+			// [RFC1918].  Addresses within this block should not
+			// appear on the public Internet.
+			MustIPv4Addr("172.16.0.0/12"),
+
+			// 191.255.0.0/16 - This block, corresponding to the numerically highest
+			// to the former Class B addresses, was initially and is still reserved
+			// by the IANA.  Given the present classless nature of the IP address
+			// space, the basis for the reservation no longer applies and addresses
+			// in this block are subject to future allocation to a Regional Internet
+			// Registry for assignment in the normal manner.
+
+			// 192.0.0.0/24 - This block, corresponding to the
+			// numerically lowest of the former Class C addresses,
+			// was initially and is still reserved by the IANA.
+			// Given the present classless nature of the IP address
+			// space, the basis for the reservation no longer
+			// applies and addresses in this block are subject to
+			// future allocation to a Regional Internet Registry for
+			// assignment in the normal manner.
+
+			// 192.0.2.0/24 - This block is assigned as "TEST-NET" for use in
+			// documentation and example code.  It is often used in conjunction with
+			// domain names example.com or example.net in vendor and protocol
+			// documentation.  Addresses within this block should not appear on the
+			// public Internet.
+			MustIPv4Addr("192.0.2.0/24"),
+
+			// 192.88.99.0/24 - This block is allocated for use as 6to4 relay
+			// anycast addresses, according to [RFC3068].
+			MustIPv4Addr("192.88.99.0/24"),
+
+			// 192.168.0.0/16 - This block is set aside for use in private networks.
+			// Its intended use is documented in [RFC1918].  Addresses within this
+			// block should not appear on the public Internet.
+			MustIPv4Addr("192.168.0.0/16"),
+
+			// 198.18.0.0/15 - This block has been allocated for use
+			// in benchmark tests of network interconnect devices.
+			// Its use is documented in [RFC2544].
+			MustIPv4Addr("198.18.0.0/15"),
+
+			// 223.255.255.0/24 - This block, corresponding to the
+			// numerically highest of the former Class C addresses,
+			// was initially and is still reserved by the IANA.
+			// Given the present classless nature of the IP address
+			// space, the basis for the reservation no longer
+			// applies and addresses in this block are subject to
+			// future allocation to a Regional Internet Registry for
+			// assignment in the normal manner.
+
+			// 224.0.0.0/4 - This block, formerly known as the Class
+			// D address space, is allocated for use in IPv4
+			// multicast address assignments.  The IANA guidelines
+			// for assignments from this space are described in
+			// [RFC3171].
+			MustIPv4Addr("224.0.0.0/4"),
+
+			// 240.0.0.0/4 - This block, formerly known as the Class E address
+			// space, is reserved.  The "limited broadcast" destination address
+			// 255.255.255.255 should never be forwarded outside the (sub-)net of
+			// the source.  The remainder of this space is reserved
+			// for future use.  [RFC1700, page 4]
+			MustIPv4Addr("240.0.0.0/4"),
+		},
+		3849: {
+			// [RFC3849] IPv6 Address Prefix Reserved for Documentation
+			MustIPv6Addr("2001:db8::/32"), // [RFC3849], §4 IANA Considerations
+		},
+		3927: {
+			// [RFC3927] Dynamic Configuration of IPv4 Link-Local Addresses
+			MustIPv4Addr("169.254.0.0/16"), // [RFC3927], §2.1 Link-Local Address Selection
+		},
+		4038: {
+			// [RFC4038] Application Aspects of IPv6 Transition
+
+			// [RFC4038], §4.2. IPv6 Applications in a Dual-Stack Node
+			MustIPv6Addr("0:0:0:0:0:ffff::/96"),
+		},
+		4193: {
+			// [RFC4193] Unique Local IPv6 Unicast Addresses
+			MustIPv6Addr("fc00::/7"),
+		},
+		4291: {
+			// [RFC4291] IP Version 6 Addressing Architecture
+
+			// [RFC4291], §2.5.2 The Unspecified Address
+			MustIPv6Addr("::/128"),
+
+			// [RFC4291], §2.5.3 The Loopback Address
+			MustIPv6Addr("::1/128"),
+
+			// [RFC4291], §2.5.5.1.  IPv4-Compatible IPv6 Address
+			MustIPv6Addr("::/96"),
+
+			// [RFC4291], §2.5.5.2.  IPv4-Mapped IPv6 Address
+			MustIPv6Addr("::ffff:0:0/96"),
+
+			// [RFC4291], §2.5.6 Link-Local IPv6 Unicast Addresses
+			MustIPv6Addr("fe80::/10"),
+
+			// [RFC4291], §2.5.7 Site-Local IPv6 Unicast Addresses
+			// (depreciated)
+			MustIPv6Addr("fec0::/10"),
+
+			// [RFC4291], §2.7 Multicast Addresses
+			MustIPv6Addr("ff00::/8"),
+
+			// IPv6 Multicast Information.
+			//
+			// In the following "table" below, `ff0x` is replaced
+			// with the following values depending on the scope of
+			// the query:
+			//
+			// IPv6 Multicast Scopes:
+			// * ff00/9 // reserved
+			// * ff01/9 // interface-local
+			// * ff02/9 // link-local
+			// * ff03/9 // realm-local
+			// * ff04/9 // admin-local
+			// * ff05/9 // site-local
+			// * ff08/9 // organization-local
+			// * ff0e/9 // global
+			// * ff0f/9 // reserved
+			//
+			// IPv6 Multicast Addresses:
+			// * ff0x::2 // All routers
+			// * ff02::5 // OSPFIGP
+			// * ff02::6 // OSPFIGP Designated Routers
+			// * ff02::9 // RIP Routers
+			// * ff02::a // EIGRP Routers
+			// * ff02::d // All PIM Routers
+			// * ff02::1a // All RPL Routers
+			// * ff0x::fb // mDNSv6
+			// * ff0x::101 // All Network Time Protocol (NTP) servers
+			// * ff02::1:1 // Link Name
+			// * ff02::1:2 // All-dhcp-agents
+			// * ff02::1:3 // Link-local Multicast Name Resolution
+			// * ff05::1:3 // All-dhcp-servers
+			// * ff02::1:ff00:0/104 // Solicited-node multicast address.
+			// * ff02::2:ff00:0/104 // Node Information Queries
+		},
+		4380: {
+			// [RFC4380] Teredo: Tunneling IPv6 over UDP through
+			// Network Address Translations (NATs)
+
+			// [RFC4380], §2.6 Global Teredo IPv6 Service Prefix
+			MustIPv6Addr("2001:0000::/32"),
+		},
+		4773: {
+			// [RFC4773] Administration of the IANA Special Purpose IPv6 Address Block
+			MustIPv6Addr("2001:0000::/23"), // IANA
+		},
+		4843: {
+			// [RFC4843] An IPv6 Prefix for Overlay Routable Cryptographic Hash Identifiers (ORCHID)
+			MustIPv6Addr("2001:10::/28"), // [RFC4843], §7 IANA Considerations
+		},
+		5180: {
+			// [RFC5180] IPv6 Benchmarking Methodology for Network Interconnect Devices
+			MustIPv6Addr("2001:0200::/48"), // [RFC5180], §8 IANA Considerations
+		},
+		5735: {
+			// [RFC5735] Special Use IPv4 Addresses
+			MustIPv4Addr("192.0.2.0/24"),    // TEST-NET-1
+			MustIPv4Addr("198.51.100.0/24"), // TEST-NET-2
+			MustIPv4Addr("203.0.113.0/24"),  // TEST-NET-3
+			MustIPv4Addr("198.18.0.0/15"),   // Benchmarks
+		},
+		5737: {
+			// [RFC5737] IPv4 Address Blocks Reserved for Documentation
+			MustIPv4Addr("192.0.2.0/24"),    // TEST-NET-1
+			MustIPv4Addr("198.51.100.0/24"), // TEST-NET-2
+			MustIPv4Addr("203.0.113.0/24"),  // TEST-NET-3
+		},
+		6052: {
+			// [RFC6052] IPv6 Addressing of IPv4/IPv6 Translators
+			MustIPv6Addr("64:ff9b::/96"), // [RFC6052], §2.1. Well-Known Prefix
+		},
+		6333: {
+			// [RFC6333] Dual-Stack Lite Broadband Deployments Following IPv4 Exhaustion
+			MustIPv4Addr("192.0.0.0/29"), // [RFC6333], §5.7 Well-Known IPv4 Address
+		},
+		6598: {
+			// [RFC6598] IANA-Reserved IPv4 Prefix for Shared Address Space
+			MustIPv4Addr("100.64.0.0/10"),
+		},
+		6666: {
+			// [RFC6666] A Discard Prefix for IPv6
+			MustIPv6Addr("0100::/64"),
+		},
+		6890: {
+			// [RFC6890] Special-Purpose IP Address Registries
+
+			// From "RFC6890 §2.2.1 Information Requirements":
+			/*
+			   The IPv4 and IPv6 Special-Purpose Address Registries maintain the
+			   following information regarding each entry:
+
+			   o  Address Block - A block of IPv4 or IPv6 addresses that has been
+			      registered for a special purpose.
+
+			   o  Name - A descriptive name for the special-purpose address block.
+
+			   o  RFC - The RFC through which the special-purpose address block was
+			      requested.
+
+			   o  Allocation Date - The date upon which the special-purpose address
+			      block was allocated.
+
+			   o  Termination Date - The date upon which the allocation is to be
+			      terminated.  This field is applicable for limited-use allocations
+			      only.
+
+			   o  Source - A boolean value indicating whether an address from the
+			      allocated special-purpose address block is valid when used as the
+			      source address of an IP datagram that transits two devices.
+
+			   o  Destination - A boolean value indicating whether an address from
+			      the allocated special-purpose address block is valid when used as
+			      the destination address of an IP datagram that transits two
+			      devices.
+
+			   o  Forwardable - A boolean value indicating whether a router may
+			      forward an IP datagram whose destination address is drawn from the
+			      allocated special-purpose address block between external
+			      interfaces.
+
+			   o  Global - A boolean value indicating whether an IP datagram whose
+			      destination address is drawn from the allocated special-purpose
+			      address block is forwardable beyond a specified administrative
+			      domain.
+
+			   o  Reserved-by-Protocol - A boolean value indicating whether the
+			      special-purpose address block is reserved by IP, itself.  This
+			      value is "TRUE" if the RFC that created the special-purpose
+			      address block requires all compliant IP implementations to behave
+			      in a special way when processing packets either to or from
+			      addresses contained by the address block.
+
+			   If the value of "Destination" is FALSE, the values of "Forwardable"
+			   and "Global" must also be false.
+			*/
+
+			/*+----------------------+----------------------------+
+			* | Attribute            | Value                      |
+			* +----------------------+----------------------------+
+			* | Address Block        | 0.0.0.0/8                  |
+			* | Name                 | "This host on this network"|
+			* | RFC                  | [RFC1122], Section 3.2.1.3 |
+			* | Allocation Date      | September 1981             |
+			* | Termination Date     | N/A                        |
+			* | Source               | True                       |
+			* | Destination          | False                      |
+			* | Forwardable          | False                      |
+			* | Global               | False                      |
+			* | Reserved-by-Protocol | True                       |
+			* +----------------------+----------------------------+*/
+			MustIPv4Addr("0.0.0.0/8"),
+
+			/*+----------------------+---------------+
+			* | Attribute            | Value         |
+			* +----------------------+---------------+
+			* | Address Block        | 10.0.0.0/8    |
+			* | Name                 | Private-Use   |
+			* | RFC                  | [RFC1918]     |
+			* | Allocation Date      | February 1996 |
+			* | Termination Date     | N/A           |
+			* | Source               | True          |
+			* | Destination          | True          |
+			* | Forwardable          | True          |
+			* | Global               | False         |
+			* | Reserved-by-Protocol | False         |
+			* +----------------------+---------------+ */
+			MustIPv4Addr("10.0.0.0/8"),
+
+			/*+----------------------+----------------------+
+			  | Attribute            | Value                |
+			  +----------------------+----------------------+
+			  | Address Block        | 100.64.0.0/10        |
+			  | Name                 | Shared Address Space |
+			  | RFC                  | [RFC6598]            |
+			  | Allocation Date      | April 2012           |
+			  | Termination Date     | N/A                  |
+			  | Source               | True                 |
+			  | Destination          | True                 |
+			  | Forwardable          | True                 |
+			  | Global               | False                |
+			  | Reserved-by-Protocol | False                |
+			  +----------------------+----------------------+*/
+			MustIPv4Addr("100.64.0.0/10"),
+
+			/*+----------------------+----------------------------+
+			  | Attribute            | Value                      |
+			  +----------------------+----------------------------+
+			  | Address Block        | 127.0.0.0/8                |
+			  | Name                 | Loopback                   |
+			  | RFC                  | [RFC1122], Section 3.2.1.3 |
+			  | Allocation Date      | September 1981             |
+			  | Termination Date     | N/A                        |
+			  | Source               | False [1]                  |
+			  | Destination          | False [1]                  |
+			  | Forwardable          | False [1]                  |
+			  | Global               | False [1]                  |
+			  | Reserved-by-Protocol | True                       |
+			  +----------------------+----------------------------+*/
+			// [1] Several protocols have been granted exceptions to
+			// this rule.  For examples, see [RFC4379] and
+			// [RFC5884].
+			MustIPv4Addr("127.0.0.0/8"),
+
+			/*+----------------------+----------------+
+			  | Attribute            | Value          |
+			  +----------------------+----------------+
+			  | Address Block        | 169.254.0.0/16 |
+			  | Name                 | Link Local     |
+			  | RFC                  | [RFC3927]      |
+			  | Allocation Date      | May 2005       |
+			  | Termination Date     | N/A            |
+			  | Source               | True           |
+			  | Destination          | True           |
+			  | Forwardable          | False          |
+			  | Global               | False          |
+			  | Reserved-by-Protocol | True           |
+			  +----------------------+----------------+*/
+			MustIPv4Addr("169.254.0.0/16"),
+
+			/*+----------------------+---------------+
+			  | Attribute            | Value         |
+			  +----------------------+---------------+
+			  | Address Block        | 172.16.0.0/12 |
+			  | Name                 | Private-Use   |
+			  | RFC                  | [RFC1918]     |
+			  | Allocation Date      | February 1996 |
+			  | Termination Date     | N/A           |
+			  | Source               | True          |
+			  | Destination          | True          |
+			  | Forwardable          | True          |
+			  | Global               | False         |
+			  | Reserved-by-Protocol | False         |
+			  +----------------------+---------------+*/
+			MustIPv4Addr("172.16.0.0/12"),
+
+			/*+----------------------+---------------------------------+
+			  | Attribute            | Value                           |
+			  +----------------------+---------------------------------+
+			  | Address Block        | 192.0.0.0/24 [2]                |
+			  | Name                 | IETF Protocol Assignments       |
+			  | RFC                  | Section 2.1 of this document    |
+			  | Allocation Date      | January 2010                    |
+			  | Termination Date     | N/A                             |
+			  | Source               | False                           |
+			  | Destination          | False                           |
+			  | Forwardable          | False                           |
+			  | Global               | False                           |
+			  | Reserved-by-Protocol | False                           |
+			  +----------------------+---------------------------------+*/
+			// [2] Not usable unless by virtue of a more specific
+			// reservation.
+			MustIPv4Addr("192.0.0.0/24"),
+
+			/*+----------------------+--------------------------------+
+			  | Attribute            | Value                          |
+			  +----------------------+--------------------------------+
+			  | Address Block        | 192.0.0.0/29                   |
+			  | Name                 | IPv4 Service Continuity Prefix |
+			  | RFC                  | [RFC6333], [RFC7335]           |
+			  | Allocation Date      | June 2011                      |
+			  | Termination Date     | N/A                            |
+			  | Source               | True                           |
+			  | Destination          | True                           |
+			  | Forwardable          | True                           |
+			  | Global               | False                          |
+			  | Reserved-by-Protocol | False                          |
+			  +----------------------+--------------------------------+*/
+			MustIPv4Addr("192.0.0.0/29"),
+
+			/*+----------------------+----------------------------+
+			  | Attribute            | Value                      |
+			  +----------------------+----------------------------+
+			  | Address Block        | 192.0.2.0/24               |
+			  | Name                 | Documentation (TEST-NET-1) |
+			  | RFC                  | [RFC5737]                  |
+			  | Allocation Date      | January 2010               |
+			  | Termination Date     | N/A                        |
+			  | Source               | False                      |
+			  | Destination          | False                      |
+			  | Forwardable          | False                      |
+			  | Global               | False                      |
+			  | Reserved-by-Protocol | False                      |
+			  +----------------------+----------------------------+*/
+			MustIPv4Addr("192.0.2.0/24"),
+
+			/*+----------------------+--------------------+
+			  | Attribute            | Value              |
+			  +----------------------+--------------------+
+			  | Address Block        | 192.88.99.0/24     |
+			  | Name                 | 6to4 Relay Anycast |
+			  | RFC                  | [RFC3068]          |
+			  | Allocation Date      | June 2001          |
+			  | Termination Date     | N/A                |
+			  | Source               | True               |
+			  | Destination          | True               |
+			  | Forwardable          | True               |
+			  | Global               | True               |
+			  | Reserved-by-Protocol | False              |
+			  +----------------------+--------------------+*/
+			MustIPv4Addr("192.88.99.0/24"),
+
+			/*+----------------------+----------------+
+			  | Attribute            | Value          |
+			  +----------------------+----------------+
+			  | Address Block        | 192.168.0.0/16 |
+			  | Name                 | Private-Use    |
+			  | RFC                  | [RFC1918]      |
+			  | Allocation Date      | February 1996  |
+			  | Termination Date     | N/A            |
+			  | Source               | True           |
+			  | Destination          | True           |
+			  | Forwardable          | True           |
+			  | Global               | False          |
+			  | Reserved-by-Protocol | False          |
+			  +----------------------+----------------+*/
+			MustIPv4Addr("192.168.0.0/16"),
+
+			/*+----------------------+---------------+
+			  | Attribute            | Value         |
+			  +----------------------+---------------+
+			  | Address Block        | 198.18.0.0/15 |
+			  | Name                 | Benchmarking  |
+			  | RFC                  | [RFC2544]     |
+			  | Allocation Date      | March 1999    |
+			  | Termination Date     | N/A           |
+			  | Source               | True          |
+			  | Destination          | True          |
+			  | Forwardable          | True          |
+			  | Global               | False         |
+			  | Reserved-by-Protocol | False         |
+			  +----------------------+---------------+*/
+			MustIPv4Addr("198.18.0.0/15"),
+
+			/*+----------------------+----------------------------+
+			  | Attribute            | Value                      |
+			  +----------------------+----------------------------+
+			  | Address Block        | 198.51.100.0/24            |
+			  | Name                 | Documentation (TEST-NET-2) |
+			  | RFC                  | [RFC5737]                  |
+			  | Allocation Date      | January 2010               |
+			  | Termination Date     | N/A                        |
+			  | Source               | False                      |
+			  | Destination          | False                      |
+			  | Forwardable          | False                      |
+			  | Global               | False                      |
+			  | Reserved-by-Protocol | False                      |
+			  +----------------------+----------------------------+*/
+			MustIPv4Addr("198.51.100.0/24"),
+
+			/*+----------------------+----------------------------+
+			  | Attribute            | Value                      |
+			  +----------------------+----------------------------+
+			  | Address Block        | 203.0.113.0/24             |
+			  | Name                 | Documentation (TEST-NET-3) |
+			  | RFC                  | [RFC5737]                  |
+			  | Allocation Date      | January 2010               |
+			  | Termination Date     | N/A                        |
+			  | Source               | False                      |
+			  | Destination          | False                      |
+			  | Forwardable          | False                      |
+			  | Global               | False                      |
+			  | Reserved-by-Protocol | False                      |
+			  +----------------------+----------------------------+*/
+			MustIPv4Addr("203.0.113.0/24"),
+
+			/*+----------------------+----------------------+
+			  | Attribute            | Value                |
+			  +----------------------+----------------------+
+			  | Address Block        | 240.0.0.0/4          |
+			  | Name                 | Reserved             |
+			  | RFC                  | [RFC1112], Section 4 |
+			  | Allocation Date      | August 1989          |
+			  | Termination Date     | N/A                  |
+			  | Source               | False                |
+			  | Destination          | False                |
+			  | Forwardable          | False                |
+			  | Global               | False                |
+			  | Reserved-by-Protocol | True                 |
+			  +----------------------+----------------------+*/
+			MustIPv4Addr("240.0.0.0/4"),
+
+			/*+----------------------+----------------------+
+			  | Attribute            | Value                |
+			  +----------------------+----------------------+
+			  | Address Block        | 255.255.255.255/32   |
+			  | Name                 | Limited Broadcast    |
+			  | RFC                  | [RFC0919], Section 7 |
+			  | Allocation Date      | October 1984         |
+			  | Termination Date     | N/A                  |
+			  | Source               | False                |
+			  | Destination          | True                 |
+			  | Forwardable          | False                |
+			  | Global               | False                |
+			  | Reserved-by-Protocol | False                |
+			  +----------------------+----------------------+*/
+			MustIPv4Addr("255.255.255.255/32"),
+
+			/*+----------------------+------------------+
+			  | Attribute            | Value            |
+			  +----------------------+------------------+
+			  | Address Block        | ::1/128          |
+			  | Name                 | Loopback Address |
+			  | RFC                  | [RFC4291]        |
+			  | Allocation Date      | February 2006    |
+			  | Termination Date     | N/A              |
+			  | Source               | False            |
+			  | Destination          | False            |
+			  | Forwardable          | False            |
+			  | Global               | False            |
+			  | Reserved-by-Protocol | True             |
+			  +----------------------+------------------+*/
+			MustIPv6Addr("::1/128"),
+
+			/*+----------------------+---------------------+
+			  | Attribute            | Value               |
+			  +----------------------+---------------------+
+			  | Address Block        | ::/128              |
+			  | Name                 | Unspecified Address |
+			  | RFC                  | [RFC4291]           |
+			  | Allocation Date      | February 2006       |
+			  | Termination Date     | N/A                 |
+			  | Source               | True                |
+			  | Destination          | False               |
+			  | Forwardable          | False               |
+			  | Global               | False               |
+			  | Reserved-by-Protocol | True                |
+			  +----------------------+---------------------+*/
+			MustIPv6Addr("::/128"),
+
+			/*+----------------------+---------------------+
+			  | Attribute            | Value               |
+			  +----------------------+---------------------+
+			  | Address Block        | 64:ff9b::/96        |
+			  | Name                 | IPv4-IPv6 Translat. |
+			  | RFC                  | [RFC6052]           |
+			  | Allocation Date      | October 2010        |
+			  | Termination Date     | N/A                 |
+			  | Source               | True                |
+			  | Destination          | True                |
+			  | Forwardable          | True                |
+			  | Global               | True                |
+			  | Reserved-by-Protocol | False               |
+			  +----------------------+---------------------+*/
+			MustIPv6Addr("64:ff9b::/96"),
+
+			/*+----------------------+---------------------+
+			  | Attribute            | Value               |
+			  +----------------------+---------------------+
+			  | Address Block        | ::ffff:0:0/96       |
+			  | Name                 | IPv4-mapped Address |
+			  | RFC                  | [RFC4291]           |
+			  | Allocation Date      | February 2006       |
+			  | Termination Date     | N/A                 |
+			  | Source               | False               |
+			  | Destination          | False               |
+			  | Forwardable          | False               |
+			  | Global               | False               |
+			  | Reserved-by-Protocol | True                |
+			  +----------------------+---------------------+*/
+			MustIPv6Addr("::ffff:0:0/96"),
+
+			/*+----------------------+----------------------------+
+			  | Attribute            | Value                      |
+			  +----------------------+----------------------------+
+			  | Address Block        | 100::/64                   |
+			  | Name                 | Discard-Only Address Block |
+			  | RFC                  | [RFC6666]                  |
+			  | Allocation Date      | June 2012                  |
+			  | Termination Date     | N/A                        |
+			  | Source               | True                       |
+			  | Destination          | True                       |
+			  | Forwardable          | True                       |
+			  | Global               | False                      |
+			  | Reserved-by-Protocol | False                      |
+			  +----------------------+----------------------------+*/
+			MustIPv6Addr("100::/64"),
+
+			/*+----------------------+---------------------------+
+			  | Attribute            | Value                     |
+			  +----------------------+---------------------------+
+			  | Address Block        | 2001::/23                 |
+			  | Name                 | IETF Protocol Assignments |
+			  | RFC                  | [RFC2928]                 |
+			  | Allocation Date      | September 2000            |
+			  | Termination Date     | N/A                       |
+			  | Source               | False[1]                  |
+			  | Destination          | False[1]                  |
+			  | Forwardable          | False[1]                  |
+			  | Global               | False[1]                  |
+			  | Reserved-by-Protocol | False                     |
+			  +----------------------+---------------------------+*/
+			// [1] Unless allowed by a more specific allocation.
+			MustIPv6Addr("2001::/16"),
+
+			/*+----------------------+----------------+
+			  | Attribute            | Value          |
+			  +----------------------+----------------+
+			  | Address Block        | 2001::/32      |
+			  | Name                 | TEREDO         |
+			  | RFC                  | [RFC4380]      |
+			  | Allocation Date      | January 2006   |
+			  | Termination Date     | N/A            |
+			  | Source               | True           |
+			  | Destination          | True           |
+			  | Forwardable          | True           |
+			  | Global               | False          |
+			  | Reserved-by-Protocol | False          |
+			  +----------------------+----------------+*/
+			// Covered by previous entry, included for completeness.
+			//
+			// MustIPv6Addr("2001::/16"),
+
+			/*+----------------------+----------------+
+			  | Attribute            | Value          |
+			  +----------------------+----------------+
+			  | Address Block        | 2001:2::/48    |
+			  | Name                 | Benchmarking   |
+			  | RFC                  | [RFC5180]      |
+			  | Allocation Date      | April 2008     |
+			  | Termination Date     | N/A            |
+			  | Source               | True           |
+			  | Destination          | True           |
+			  | Forwardable          | True           |
+			  | Global               | False          |
+			  | Reserved-by-Protocol | False          |
+			  +----------------------+----------------+*/
+			// Covered by previous entry, included for completeness.
+			//
+			// MustIPv6Addr("2001:2::/48"),
+
+			/*+----------------------+---------------+
+			  | Attribute            | Value         |
+			  +----------------------+---------------+
+			  | Address Block        | 2001:db8::/32 |
+			  | Name                 | Documentation |
+			  | RFC                  | [RFC3849]     |
+			  | Allocation Date      | July 2004     |
+			  | Termination Date     | N/A           |
+			  | Source               | False         |
+			  | Destination          | False         |
+			  | Forwardable          | False         |
+			  | Global               | False         |
+			  | Reserved-by-Protocol | False         |
+			  +----------------------+---------------+*/
+			// Covered by previous entry, included for completeness.
+			//
+			// MustIPv6Addr("2001:db8::/32"),
+
+			/*+----------------------+--------------+
+			  | Attribute            | Value        |
+			  +----------------------+--------------+
+			  | Address Block        | 2001:10::/28 |
+			  | Name                 | ORCHID       |
+			  | RFC                  | [RFC4843]    |
+			  | Allocation Date      | March 2007   |
+			  | Termination Date     | March 2014   |
+			  | Source               | False        |
+			  | Destination          | False        |
+			  | Forwardable          | False        |
+			  | Global               | False        |
+			  | Reserved-by-Protocol | False        |
+			  +----------------------+--------------+*/
+			// Covered by previous entry, included for completeness.
+			//
+			// MustIPv6Addr("2001:10::/28"),
+
+			/*+----------------------+---------------+
+			  | Attribute            | Value         |
+			  +----------------------+---------------+
+			  | Address Block        | 2002::/16 [2] |
+			  | Name                 | 6to4          |
+			  | RFC                  | [RFC3056]     |
+			  | Allocation Date      | February 2001 |
+			  | Termination Date     | N/A           |
+			  | Source               | True          |
+			  | Destination          | True          |
+			  | Forwardable          | True          |
+			  | Global               | N/A [2]       |
+			  | Reserved-by-Protocol | False         |
+			  +----------------------+---------------+*/
+			// [2] See [RFC3056] for details.
+			MustIPv6Addr("2002::/16"),
+
+			/*+----------------------+--------------+
+			  | Attribute            | Value        |
+			  +----------------------+--------------+
+			  | Address Block        | fc00::/7     |
+			  | Name                 | Unique-Local |
+			  | RFC                  | [RFC4193]    |
+			  | Allocation Date      | October 2005 |
+			  | Termination Date     | N/A          |
+			  | Source               | True         |
+			  | Destination          | True         |
+			  | Forwardable          | True         |
+			  | Global               | False        |
+			  | Reserved-by-Protocol | False        |
+			  +----------------------+--------------+*/
+			MustIPv6Addr("fc00::/7"),
+
+			/*+----------------------+-----------------------+
+			  | Attribute            | Value                 |
+			  +----------------------+-----------------------+
+			  | Address Block        | fe80::/10             |
+			  | Name                 | Linked-Scoped Unicast |
+			  | RFC                  | [RFC4291]             |
+			  | Allocation Date      | February 2006         |
+			  | Termination Date     | N/A                   |
+			  | Source               | True                  |
+			  | Destination          | True                  |
+			  | Forwardable          | False                 |
+			  | Global               | False                 |
+			  | Reserved-by-Protocol | True                  |
+			  +----------------------+-----------------------+*/
+			MustIPv6Addr("fe80::/10"),
+		},
+		7335: {
+			// [RFC7335] IPv4 Service Continuity Prefix
+			MustIPv4Addr("192.0.0.0/29"), // [RFC7335], §6 IANA Considerations
+		},
+		ForwardingBlacklist: { // Pseudo-RFC
+			// Blacklist of non-forwardable IP blocks taken from RFC6890
+			//
+			// TODO: the attributes for forwardable should be
+			// searcahble and embedded in the main list of RFCs
+			// above.
+			MustIPv4Addr("0.0.0.0/8"),
+			MustIPv4Addr("127.0.0.0/8"),
+			MustIPv4Addr("169.254.0.0/16"),
+			MustIPv4Addr("192.0.0.0/24"),
+			MustIPv4Addr("192.0.2.0/24"),
+			MustIPv4Addr("198.51.100.0/24"),
+			MustIPv4Addr("203.0.113.0/24"),
+			MustIPv4Addr("240.0.0.0/4"),
+			MustIPv4Addr("255.255.255.255/32"),
+			MustIPv6Addr("::1/128"),
+			MustIPv6Addr("::/128"),
+			MustIPv6Addr("::ffff:0:0/96"),
+
+			// There is no way of expressing a whitelist per RFC2928
+			// atm without creating a negative mask, which I don't
+			// want to do atm.
+			//MustIPv6Addr("2001::/23"),
+
+			MustIPv6Addr("2001:db8::/32"),
+			MustIPv6Addr("2001:10::/28"),
+			MustIPv6Addr("fe80::/10"),
+		},
+	}
+}
+
+// VisitAllRFCs iterates over all known RFCs and calls the visitor
+func VisitAllRFCs(fn func(rfcNum uint, sockaddrs SockAddrs)) {
+	rfcNetMap := KnownRFCs()
+
+	// Blacklist of faux-RFCs.  Don't show the world that we're abusing the
+	// RFC system in this library.
+	rfcBlacklist := map[uint]struct{}{
+		ForwardingBlacklist: {},
+	}
+
+	for rfcNum, sas := range rfcNetMap {
+		if _, found := rfcBlacklist[rfcNum]; !found {
+			fn(rfcNum, sas)
+		}
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info.go b/vendor/github.com/hashicorp/go-sockaddr/route_info.go
new file mode 100644
index 0000000000..2a3ee1db9e
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info.go
@@ -0,0 +1,19 @@
+package sockaddr
+
+// RouteInterface specifies an interface for obtaining memoized route table and
+// network information from a given OS.
+type RouteInterface interface {
+	// GetDefaultInterfaceName returns the name of the interface that has a
+	// default route or an error and an empty string if a problem was
+	// encountered.
+	GetDefaultInterfaceName() (string, error)
+}
+
+// VisitCommands visits each command used by the platform-specific RouteInfo
+// implementation.
+func (ri routeInfo) VisitCommands(fn func(name string, cmd []string)) {
+	for k, v := range ri.cmds {
+		cmds := append([]string(nil), v...)
+		fn(k, cmds)
+	}
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info_bsd.go b/vendor/github.com/hashicorp/go-sockaddr/route_info_bsd.go
new file mode 100644
index 0000000000..705757abc7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info_bsd.go
@@ -0,0 +1,36 @@
+// +build darwin dragonfly freebsd netbsd openbsd
+
+package sockaddr
+
+import "os/exec"
+
+var cmds map[string][]string = map[string][]string{
+	"route": {"/sbin/route", "-n", "get", "default"},
+}
+
+type routeInfo struct {
+	cmds map[string][]string
+}
+
+// NewRouteInfo returns a BSD-specific implementation of the RouteInfo
+// interface.
+func NewRouteInfo() (routeInfo, error) {
+	return routeInfo{
+		cmds: cmds,
+	}, nil
+}
+
+// GetDefaultInterfaceName returns the interface name attached to the default
+// route on the default interface.
+func (ri routeInfo) GetDefaultInterfaceName() (string, error) {
+	out, err := exec.Command(cmds["route"][0], cmds["route"][1:]...).Output()
+	if err != nil {
+		return "", err
+	}
+
+	var ifName string
+	if ifName, err = parseDefaultIfNameFromRoute(string(out)); err != nil {
+		return "", err
+	}
+	return ifName, nil
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info_default.go b/vendor/github.com/hashicorp/go-sockaddr/route_info_default.go
new file mode 100644
index 0000000000..d1b009f653
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info_default.go
@@ -0,0 +1,10 @@
+// +build android nacl plan9
+
+package sockaddr
+
+import "errors"
+
+// getDefaultIfName is the default interface function for unsupported platforms.
+func getDefaultIfName() (string, error) {
+	return "", errors.New("No default interface found (unsupported platform)")
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info_linux.go b/vendor/github.com/hashicorp/go-sockaddr/route_info_linux.go
new file mode 100644
index 0000000000..c2ec91eaf4
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info_linux.go
@@ -0,0 +1,40 @@
+package sockaddr
+
+import (
+	"errors"
+	"os/exec"
+)
+
+type routeInfo struct {
+	cmds map[string][]string
+}
+
+// NewRouteInfo returns a Linux-specific implementation of the RouteInfo
+// interface.
+func NewRouteInfo() (routeInfo, error) {
+	// CoreOS Container Linux moved ip to /usr/bin/ip, so look it up on
+	// $PATH and fallback to /sbin/ip on error.
+	path, _ := exec.LookPath("ip")
+	if path == "" {
+		path = "/sbin/ip"
+	}
+
+	return routeInfo{
+		cmds: map[string][]string{"ip": {path, "route"}},
+	}, nil
+}
+
+// GetDefaultInterfaceName returns the interface name attached to the default
+// route on the default interface.
+func (ri routeInfo) GetDefaultInterfaceName() (string, error) {
+	out, err := exec.Command(ri.cmds["ip"][0], ri.cmds["ip"][1:]...).Output()
+	if err != nil {
+		return "", err
+	}
+
+	var ifName string
+	if ifName, err = parseDefaultIfNameFromIPCmd(string(out)); err != nil {
+		return "", errors.New("No default interface found")
+	}
+	return ifName, nil
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info_solaris.go b/vendor/github.com/hashicorp/go-sockaddr/route_info_solaris.go
new file mode 100644
index 0000000000..ee8e7984d7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info_solaris.go
@@ -0,0 +1,37 @@
+package sockaddr
+
+import (
+	"errors"
+	"os/exec"
+)
+
+var cmds map[string][]string = map[string][]string{
+	"route": {"/usr/sbin/route", "-n", "get", "default"},
+}
+
+type routeInfo struct {
+	cmds map[string][]string
+}
+
+// NewRouteInfo returns a BSD-specific implementation of the RouteInfo
+// interface.
+func NewRouteInfo() (routeInfo, error) {
+	return routeInfo{
+		cmds: cmds,
+	}, nil
+}
+
+// GetDefaultInterfaceName returns the interface name attached to the default
+// route on the default interface.
+func (ri routeInfo) GetDefaultInterfaceName() (string, error) {
+	out, err := exec.Command(cmds["route"][0], cmds["route"][1:]...).Output()
+	if err != nil {
+		return "", err
+	}
+
+	var ifName string
+	if ifName, err = parseDefaultIfNameFromRoute(string(out)); err != nil {
+		return "", errors.New("No default interface found")
+	}
+	return ifName, nil
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/route_info_windows.go b/vendor/github.com/hashicorp/go-sockaddr/route_info_windows.go
new file mode 100644
index 0000000000..3da972883e
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/route_info_windows.go
@@ -0,0 +1,41 @@
+package sockaddr
+
+import "os/exec"
+
+var cmds map[string][]string = map[string][]string{
+	"netstat":  {"netstat", "-rn"},
+	"ipconfig": {"ipconfig"},
+}
+
+type routeInfo struct {
+	cmds map[string][]string
+}
+
+// NewRouteInfo returns a BSD-specific implementation of the RouteInfo
+// interface.
+func NewRouteInfo() (routeInfo, error) {
+	return routeInfo{
+		cmds: cmds,
+	}, nil
+}
+
+// GetDefaultInterfaceName returns the interface name attached to the default
+// route on the default interface.
+func (ri routeInfo) GetDefaultInterfaceName() (string, error) {
+	ifNameOut, err := exec.Command(cmds["netstat"][0], cmds["netstat"][1:]...).Output()
+	if err != nil {
+		return "", err
+	}
+
+	ipconfigOut, err := exec.Command(cmds["ipconfig"][0], cmds["ipconfig"][1:]...).Output()
+	if err != nil {
+		return "", err
+	}
+
+	ifName, err := parseDefaultIfNameWindows(string(ifNameOut), string(ipconfigOut))
+	if err != nil {
+		return "", err
+	}
+
+	return ifName, nil
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/sockaddr.go b/vendor/github.com/hashicorp/go-sockaddr/sockaddr.go
new file mode 100644
index 0000000000..826c91c2e3
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/sockaddr.go
@@ -0,0 +1,206 @@
+package sockaddr
+
+import (
+	"encoding/json"
+	"fmt"
+	"strings"
+)
+
+type SockAddrType int
+type AttrName string
+
+const (
+	TypeUnknown SockAddrType = 0x0
+	TypeUnix                 = 0x1
+	TypeIPv4                 = 0x2
+	TypeIPv6                 = 0x4
+
+	// TypeIP is the union of TypeIPv4 and TypeIPv6
+	TypeIP = 0x6
+)
+
+type SockAddr interface {
+	// CmpRFC returns 0 if SockAddr exactly matches one of the matched RFC
+	// networks, -1 if the receiver is contained within the RFC network, or
+	// 1 if the address is not contained within the RFC.
+	CmpRFC(rfcNum uint, sa SockAddr) int
+
+	// Contains returns true if the SockAddr arg is contained within the
+	// receiver
+	Contains(SockAddr) bool
+
+	// Equal allows for the comparison of two SockAddrs
+	Equal(SockAddr) bool
+
+	DialPacketArgs() (string, string)
+	DialStreamArgs() (string, string)
+	ListenPacketArgs() (string, string)
+	ListenStreamArgs() (string, string)
+
+	// String returns the string representation of SockAddr
+	String() string
+
+	// Type returns the SockAddrType
+	Type() SockAddrType
+}
+
+// sockAddrAttrMap is a map of the SockAddr type-specific attributes.
+var sockAddrAttrMap map[AttrName]func(SockAddr) string
+var sockAddrAttrs []AttrName
+
+func init() {
+	sockAddrInit()
+}
+
+// New creates a new SockAddr from the string.  The order in which New()
+// attempts to construct a SockAddr is: IPv4Addr, IPv6Addr, SockAddrUnix.
+//
+// NOTE: New() relies on the heuristic wherein if the path begins with either a
+// '.'  or '/' character before creating a new UnixSock.  For UNIX sockets that
+// are absolute paths or are nested within a sub-directory, this works as
+// expected, however if the UNIX socket is contained in the current working
+// directory, this will fail unless the path begins with "./"
+// (e.g. "./my-local-socket").  Calls directly to NewUnixSock() do not suffer
+// this limitation.  Invalid IP addresses such as "256.0.0.0/-1" will run afoul
+// of this heuristic and be assumed to be a valid UNIX socket path (which they
+// are, but it is probably not what you want and you won't realize it until you
+// stat(2) the file system to discover it doesn't exist).
+func NewSockAddr(s string) (SockAddr, error) {
+	ipv4Addr, err := NewIPv4Addr(s)
+	if err == nil {
+		return ipv4Addr, nil
+	}
+
+	ipv6Addr, err := NewIPv6Addr(s)
+	if err == nil {
+		return ipv6Addr, nil
+	}
+
+	// Check to make sure the string begins with either a '.' or '/', or
+	// contains a '/'.
+	if len(s) > 1 && (strings.IndexAny(s[0:1], "./") != -1 || strings.IndexByte(s, '/') != -1) {
+		unixSock, err := NewUnixSock(s)
+		if err == nil {
+			return unixSock, nil
+		}
+	}
+
+	return nil, fmt.Errorf("Unable to convert %q to an IPv4 or IPv6 address, or a UNIX Socket", s)
+}
+
+// ToIPAddr returns an IPAddr type or nil if the type conversion fails.
+func ToIPAddr(sa SockAddr) *IPAddr {
+	ipa, ok := sa.(IPAddr)
+	if !ok {
+		return nil
+	}
+	return &ipa
+}
+
+// ToIPv4Addr returns an IPv4Addr type or nil if the type conversion fails.
+func ToIPv4Addr(sa SockAddr) *IPv4Addr {
+	switch v := sa.(type) {
+	case IPv4Addr:
+		return &v
+	default:
+		return nil
+	}
+}
+
+// ToIPv6Addr returns an IPv6Addr type or nil if the type conversion fails.
+func ToIPv6Addr(sa SockAddr) *IPv6Addr {
+	switch v := sa.(type) {
+	case IPv6Addr:
+		return &v
+	default:
+		return nil
+	}
+}
+
+// ToUnixSock returns a UnixSock type or nil if the type conversion fails.
+func ToUnixSock(sa SockAddr) *UnixSock {
+	switch v := sa.(type) {
+	case UnixSock:
+		return &v
+	default:
+		return nil
+	}
+}
+
+// SockAddrAttr returns a string representation of an attribute for the given
+// SockAddr.
+func SockAddrAttr(sa SockAddr, selector AttrName) string {
+	fn, found := sockAddrAttrMap[selector]
+	if !found {
+		return ""
+	}
+
+	return fn(sa)
+}
+
+// String() for SockAddrType returns a string representation of the
+// SockAddrType (e.g. "IPv4", "IPv6", "UNIX", "IP", or "unknown").
+func (sat SockAddrType) String() string {
+	switch sat {
+	case TypeIPv4:
+		return "IPv4"
+	case TypeIPv6:
+		return "IPv6"
+	// There is no concrete "IP" type.  Leaving here as a reminder.
+	// case TypeIP:
+	// 	return "IP"
+	case TypeUnix:
+		return "UNIX"
+	default:
+		panic("unsupported type")
+	}
+}
+
+// sockAddrInit is called once at init()
+func sockAddrInit() {
+	sockAddrAttrs = []AttrName{
+		"type", // type should be first
+		"string",
+	}
+
+	sockAddrAttrMap = map[AttrName]func(sa SockAddr) string{
+		"string": func(sa SockAddr) string {
+			return sa.String()
+		},
+		"type": func(sa SockAddr) string {
+			return sa.Type().String()
+		},
+	}
+}
+
+// UnixSockAttrs returns a list of attributes supported by the UnixSock type
+func SockAddrAttrs() []AttrName {
+	return sockAddrAttrs
+}
+
+// Although this is pretty trivial to do in a program, having the logic here is
+// useful all around. Note that this marshals into a *string* -- the underlying
+// string representation of the sockaddr. If you then unmarshal into this type
+// in Go, all will work as expected, but externally you can take what comes out
+// and use the string value directly.
+type SockAddrMarshaler struct {
+	SockAddr
+}
+
+func (s *SockAddrMarshaler) MarshalJSON() ([]byte, error) {
+	return json.Marshal(s.SockAddr.String())
+}
+
+func (s *SockAddrMarshaler) UnmarshalJSON(in []byte) error {
+	var str string
+	err := json.Unmarshal(in, &str)
+	if err != nil {
+		return err
+	}
+	sa, err := NewSockAddr(str)
+	if err != nil {
+		return err
+	}
+	s.SockAddr = sa
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/sockaddrs.go b/vendor/github.com/hashicorp/go-sockaddr/sockaddrs.go
new file mode 100644
index 0000000000..75fbffb1ea
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/sockaddrs.go
@@ -0,0 +1,193 @@
+package sockaddr
+
+import (
+	"bytes"
+	"sort"
+)
+
+// SockAddrs is a slice of SockAddrs
+type SockAddrs []SockAddr
+
+func (s SockAddrs) Len() int      { return len(s) }
+func (s SockAddrs) Swap(i, j int) { s[i], s[j] = s[j], s[i] }
+
+// CmpAddrFunc is the function signature that must be met to be used in the
+// OrderedAddrBy multiAddrSorter
+type CmpAddrFunc func(p1, p2 *SockAddr) int
+
+// multiAddrSorter implements the Sort interface, sorting the SockAddrs within.
+type multiAddrSorter struct {
+	addrs SockAddrs
+	cmp   []CmpAddrFunc
+}
+
+// Sort sorts the argument slice according to the Cmp functions passed to
+// OrderedAddrBy.
+func (ms *multiAddrSorter) Sort(sockAddrs SockAddrs) {
+	ms.addrs = sockAddrs
+	sort.Sort(ms)
+}
+
+// OrderedAddrBy sorts SockAddr by the list of sort function pointers.
+func OrderedAddrBy(cmpFuncs ...CmpAddrFunc) *multiAddrSorter {
+	return &multiAddrSorter{
+		cmp: cmpFuncs,
+	}
+}
+
+// Len is part of sort.Interface.
+func (ms *multiAddrSorter) Len() int {
+	return len(ms.addrs)
+}
+
+// Less is part of sort.Interface. It is implemented by looping along the
+// Cmp() functions until it finds a comparison that is either less than,
+// equal to, or greater than.
+func (ms *multiAddrSorter) Less(i, j int) bool {
+	p, q := &ms.addrs[i], &ms.addrs[j]
+	// Try all but the last comparison.
+	var k int
+	for k = 0; k < len(ms.cmp)-1; k++ {
+		cmp := ms.cmp[k]
+		x := cmp(p, q)
+		switch x {
+		case -1:
+			// p < q, so we have a decision.
+			return true
+		case 1:
+			// p > q, so we have a decision.
+			return false
+		}
+		// p == q; try the next comparison.
+	}
+	// All comparisons to here said "equal", so just return whatever the
+	// final comparison reports.
+	switch ms.cmp[k](p, q) {
+	case -1:
+		return true
+	case 1:
+		return false
+	default:
+		// Still a tie! Now what?
+		return false
+	}
+}
+
+// Swap is part of sort.Interface.
+func (ms *multiAddrSorter) Swap(i, j int) {
+	ms.addrs[i], ms.addrs[j] = ms.addrs[j], ms.addrs[i]
+}
+
+const (
+	// NOTE (sean@): These constants are here for code readability only and
+	// are sprucing up the code for readability purposes.  Some of the
+	// Cmp*() variants have confusing logic (especially when dealing with
+	// mixed-type comparisons) and this, I think, has made it easier to grok
+	// the code faster.
+	sortReceiverBeforeArg = -1
+	sortDeferDecision     = 0
+	sortArgBeforeReceiver = 1
+)
+
+// AscAddress is a sorting function to sort SockAddrs by their respective
+// address type.  Non-equal types are deferred in the sort.
+func AscAddress(p1Ptr, p2Ptr *SockAddr) int {
+	p1 := *p1Ptr
+	p2 := *p2Ptr
+
+	switch v := p1.(type) {
+	case IPv4Addr:
+		return v.CmpAddress(p2)
+	case IPv6Addr:
+		return v.CmpAddress(p2)
+	case UnixSock:
+		return v.CmpAddress(p2)
+	default:
+		return sortDeferDecision
+	}
+}
+
+// AscPort is a sorting function to sort SockAddrs by their respective address
+// type.  Non-equal types are deferred in the sort.
+func AscPort(p1Ptr, p2Ptr *SockAddr) int {
+	p1 := *p1Ptr
+	p2 := *p2Ptr
+
+	switch v := p1.(type) {
+	case IPv4Addr:
+		return v.CmpPort(p2)
+	case IPv6Addr:
+		return v.CmpPort(p2)
+	default:
+		return sortDeferDecision
+	}
+}
+
+// AscPrivate is a sorting function to sort "more secure" private values before
+// "more public" values.  Both IPv4 and IPv6 are compared against RFC6890
+// (RFC6890 includes, and is not limited to, RFC1918 and RFC6598 for IPv4, and
+// IPv6 includes RFC4193).
+func AscPrivate(p1Ptr, p2Ptr *SockAddr) int {
+	p1 := *p1Ptr
+	p2 := *p2Ptr
+
+	switch v := p1.(type) {
+	case IPv4Addr, IPv6Addr:
+		return v.CmpRFC(6890, p2)
+	default:
+		return sortDeferDecision
+	}
+}
+
+// AscNetworkSize is a sorting function to sort SockAddrs based on their network
+// size.  Non-equal types are deferred in the sort.
+func AscNetworkSize(p1Ptr, p2Ptr *SockAddr) int {
+	p1 := *p1Ptr
+	p2 := *p2Ptr
+	p1Type := p1.Type()
+	p2Type := p2.Type()
+
+	// Network size operations on non-IP types make no sense
+	if p1Type != p2Type && p1Type != TypeIP {
+		return sortDeferDecision
+	}
+
+	ipA := p1.(IPAddr)
+	ipB := p2.(IPAddr)
+
+	return bytes.Compare([]byte(*ipA.NetIPMask()), []byte(*ipB.NetIPMask()))
+}
+
+// AscType is a sorting function to sort "more secure" types before
+// "less-secure" types.
+func AscType(p1Ptr, p2Ptr *SockAddr) int {
+	p1 := *p1Ptr
+	p2 := *p2Ptr
+	p1Type := p1.Type()
+	p2Type := p2.Type()
+	switch {
+	case p1Type < p2Type:
+		return sortReceiverBeforeArg
+	case p1Type == p2Type:
+		return sortDeferDecision
+	case p1Type > p2Type:
+		return sortArgBeforeReceiver
+	default:
+		return sortDeferDecision
+	}
+}
+
+// FilterByType returns two lists: a list of matched and unmatched SockAddrs
+func (sas SockAddrs) FilterByType(type_ SockAddrType) (matched, excluded SockAddrs) {
+	matched = make(SockAddrs, 0, len(sas))
+	excluded = make(SockAddrs, 0, len(sas))
+
+	for _, sa := range sas {
+		if sa.Type()&type_ != 0 {
+			matched = append(matched, sa)
+		} else {
+			excluded = append(excluded, sa)
+		}
+	}
+	return matched, excluded
+}
diff --git a/vendor/github.com/hashicorp/go-sockaddr/unixsock.go b/vendor/github.com/hashicorp/go-sockaddr/unixsock.go
new file mode 100644
index 0000000000..f3be3f67e7
--- /dev/null
+++ b/vendor/github.com/hashicorp/go-sockaddr/unixsock.go
@@ -0,0 +1,135 @@
+package sockaddr
+
+import (
+	"fmt"
+	"strings"
+)
+
+type UnixSock struct {
+	SockAddr
+	path string
+}
+type UnixSocks []*UnixSock
+
+// unixAttrMap is a map of the UnixSockAddr type-specific attributes.
+var unixAttrMap map[AttrName]func(UnixSock) string
+var unixAttrs []AttrName
+
+func init() {
+	unixAttrInit()
+}
+
+// NewUnixSock creates an UnixSock from a string path.  String can be in the
+// form of either URI-based string (e.g. `file:///etc/passwd`), an absolute
+// path (e.g. `/etc/passwd`), or a relative path (e.g. `./foo`).
+func NewUnixSock(s string) (ret UnixSock, err error) {
+	ret.path = s
+	return ret, nil
+}
+
+// CmpAddress follows the Cmp() standard protocol and returns:
+//
+// - -1 If the receiver should sort first because its name lexically sorts before arg
+// - 0 if the SockAddr arg is not a UnixSock, or is a UnixSock with the same path.
+// - 1 If the argument should sort first.
+func (us UnixSock) CmpAddress(sa SockAddr) int {
+	usb, ok := sa.(UnixSock)
+	if !ok {
+		return sortDeferDecision
+	}
+
+	return strings.Compare(us.Path(), usb.Path())
+}
+
+// DialPacketArgs returns the arguments required to be passed to net.DialUnix()
+// with the `unixgram` network type.
+func (us UnixSock) DialPacketArgs() (network, dialArgs string) {
+	return "unixgram", us.path
+}
+
+// DialStreamArgs returns the arguments required to be passed to net.DialUnix()
+// with the `unix` network type.
+func (us UnixSock) DialStreamArgs() (network, dialArgs string) {
+	return "unix", us.path
+}
+
+// Equal returns true if a SockAddr is equal to the receiving UnixSock.
+func (us UnixSock) Equal(sa SockAddr) bool {
+	usb, ok := sa.(UnixSock)
+	if !ok {
+		return false
+	}
+
+	if us.Path() != usb.Path() {
+		return false
+	}
+
+	return true
+}
+
+// ListenPacketArgs returns the arguments required to be passed to
+// net.ListenUnixgram() with the `unixgram` network type.
+func (us UnixSock) ListenPacketArgs() (network, dialArgs string) {
+	return "unixgram", us.path
+}
+
+// ListenStreamArgs returns the arguments required to be passed to
+// net.ListenUnix() with the `unix` network type.
+func (us UnixSock) ListenStreamArgs() (network, dialArgs string) {
+	return "unix", us.path
+}
+
+// MustUnixSock is a helper method that must return an UnixSock or panic on
+// invalid input.
+func MustUnixSock(addr string) UnixSock {
+	us, err := NewUnixSock(addr)
+	if err != nil {
+		panic(fmt.Sprintf("Unable to create a UnixSock from %+q: %v", addr, err))
+	}
+	return us
+}
+
+// Path returns the given path of the UnixSock
+func (us UnixSock) Path() string {
+	return us.path
+}
+
+// String returns the path of the UnixSock
+func (us UnixSock) String() string {
+	return fmt.Sprintf("%+q", us.path)
+}
+
+// Type is used as a type switch and returns TypeUnix
+func (UnixSock) Type() SockAddrType {
+	return TypeUnix
+}
+
+// UnixSockAttrs returns a list of attributes supported by the UnixSockAddr type
+func UnixSockAttrs() []AttrName {
+	return unixAttrs
+}
+
+// UnixSockAttr returns a string representation of an attribute for the given
+// UnixSock.
+func UnixSockAttr(us UnixSock, attrName AttrName) string {
+	fn, found := unixAttrMap[attrName]
+	if !found {
+		return ""
+	}
+
+	return fn(us)
+}
+
+// unixAttrInit is called once at init()
+func unixAttrInit() {
+	// Sorted for human readability
+	unixAttrs = []AttrName{
+		"path",
+	}
+
+	unixAttrMap = map[AttrName]func(us UnixSock) string{
+		"path": func(us UnixSock) string {
+			return us.Path()
+		},
+	}
+}
diff --git a/vendor/github.com/hashicorp/golang-lru/LICENSE b/vendor/github.com/hashicorp/golang-lru/LICENSE
new file mode 100644
index 0000000000..be2cc4dfb6
--- /dev/null
+++ b/vendor/github.com/hashicorp/golang-lru/LICENSE
@@ -0,0 +1,362 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. "Contributor"
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. "Contributor Version"
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor's Contribution.
+
+1.3. "Contribution"
+
+     means Covered Software of a particular Contributor.
+
+1.4. "Covered Software"
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. "Incompatible With Secondary Licenses"
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of
+        version 1.1 or earlier of the License, but not also under the terms of
+        a Secondary License.
+
+1.6. "Executable Form"
+
+     means any form of the work other than Source Code Form.
+
+1.7. "Larger Work"
+
+     means a work that combines Covered Software with other material, in a
+     separate file or files, that is not Covered Software.
+
+1.8. "License"
+
+     means this document.
+
+1.9. "Licensable"
+
+     means having the right to grant, to the maximum extent possible, whether
+     at the time of the initial grant or subsequently, any and all of the
+     rights conveyed by this License.
+
+1.10. "Modifications"
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to,
+        deletion from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. "Patent Claims" of a Contributor
+
+      means any patent claim(s), including without limitation, method,
+      process, and apparatus claims, in any patent Licensable by such
+      Contributor that would be infringed, but for the grant of the License,
+      by the making, using, selling, offering for sale, having made, import,
+      or transfer of either its Contributions or its Contributor Version.
+
+1.12. "Secondary License"
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. "Source Code Form"
+
+      means the form of the work preferred for making modifications.
+
+1.14. "You" (or "Your")
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, "You" includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, "control" means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or
+        as part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its
+        Contributions or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution
+     become effective for each Contribution on the date the Contributor first
+     distributes such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under
+     this License. No additional rights or licenses will be implied from the
+     distribution or licensing of Covered Software under this License.
+     Notwithstanding Section 2.1(b) above, no patent license is granted by a
+     Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party's
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of
+        its Contributions.
+
+     This License does not grant any rights in the trademarks, service marks,
+     or logos of any Contributor (except as may be necessary to comply with
+     the notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this
+     License (see Section 10.2) or under the terms of a Secondary License (if
+     permitted under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its
+     Contributions are its original creation(s) or it has sufficient rights to
+     grant the rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under
+     applicable copyright doctrines of fair use, fair dealing, or other
+     equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under
+     the terms of this License. You must inform recipients that the Source
+     Code Form of the Covered Software is governed by the terms of this
+     License, and how they can obtain a copy of this License. You may not
+     attempt to alter or restrict the recipients' rights in the Source Code
+     Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this
+        License, or sublicense it under different terms, provided that the
+        license for the Executable Form does not attempt to limit or alter the
+        recipients' rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for
+     the Covered Software. If the Larger Work is a combination of Covered
+     Software with a work governed by one or more Secondary Licenses, and the
+     Covered Software is not Incompatible With Secondary Licenses, this
+     License permits You to additionally distribute such Covered Software
+     under the terms of such Secondary License(s), so that the recipient of
+     the Larger Work may, at their option, further distribute the Covered
+     Software under the terms of either this License or such Secondary
+     License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices
+     (including copyright notices, patent notices, disclaimers of warranty, or
+     limitations of liability) contained within the Source Code Form of the
+     Covered Software, except that You may alter any license notices to the
+     extent required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on
+     behalf of any Contributor. You must make it absolutely clear that any
+     such warranty, support, indemnity, or liability obligation is offered by
+     You alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute,
+   judicial order, or regulation then You must: (a) comply with the terms of
+   this License to the maximum extent possible; and (b) describe the
+   limitations and the code they affect. Such description must be placed in a
+   text file included with all distributions of the Covered Software under
+   this License. Except to the extent prohibited by statute or regulation,
+   such description must be sufficiently detailed for a recipient of ordinary
+   skill to be able to understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing
+     basis, if such Contributor fails to notify You of the non-compliance by
+     some reasonable means prior to 60 days after You have come back into
+     compliance. Moreover, Your grants from a particular Contributor are
+     reinstated on an ongoing basis if such Contributor notifies You of the
+     non-compliance by some reasonable means, this is the first time You have
+     received notice of non-compliance with this License from such
+     Contributor, and You become compliant prior to 30 days after Your receipt
+     of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions,
+     counter-claims, and cross-claims) alleging that a Contributor Version
+     directly or indirectly infringes any patent, then the rights granted to
+     You by any and all Contributors for the Covered Software under Section
+     2.1 of this License shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an "as is" basis,
+   without warranty of any kind, either expressed, implied, or statutory,
+   including, without limitation, warranties that the Covered Software is free
+   of defects, merchantable, fit for a particular purpose or non-infringing.
+   The entire risk as to the quality and performance of the Covered Software
+   is with You. Should any Covered Software prove defective in any respect,
+   You (not any Contributor) assume the cost of any necessary servicing,
+   repair, or correction. This disclaimer of warranty constitutes an essential
+   part of this License. No use of  any Covered Software is authorized under
+   this License except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from
+   such party's negligence to the extent applicable law prohibits such
+   limitation. Some jurisdictions do not allow the exclusion or limitation of
+   incidental or consequential damages, so this exclusion and limitation may
+   not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts
+   of a jurisdiction where the defendant maintains its principal place of
+   business and such litigation shall be governed by laws of that
+   jurisdiction, without reference to its conflict-of-law provisions. Nothing
+   in this Section shall prevent a party's ability to bring cross-claims or
+   counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject
+   matter hereof. If any provision of this License is held to be
+   unenforceable, such provision shall be reformed only to the extent
+   necessary to make it enforceable. Any law or regulation which provides that
+   the language of a contract shall be construed against the drafter shall not
+   be used to construe this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version
+      of the License under which You originally received the Covered Software,
+      or under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a
+      modified version of this License if you rename the license and remove
+      any references to the name of the license steward (except to note that
+      such modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary
+      Licenses If You choose to distribute Source Code Form that is
+      Incompatible With Secondary Licenses under the terms of this version of
+      the License, the notice described in Exhibit B of this License must be
+      attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file,
+then You may include the notice in a location (such as a LICENSE file in a
+relevant directory) where a recipient would be likely to look for such a
+notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - "Incompatible With Secondary Licenses" Notice
+
+      This Source Code Form is "Incompatible
+      With Secondary Licenses", as defined by
+      the Mozilla Public License, v. 2.0.
diff --git a/vendor/github.com/hashicorp/golang-lru/simplelru/lru.go b/vendor/github.com/hashicorp/golang-lru/simplelru/lru.go
new file mode 100644
index 0000000000..5673773b22
--- /dev/null
+++ b/vendor/github.com/hashicorp/golang-lru/simplelru/lru.go
@@ -0,0 +1,161 @@
+package simplelru
+
+import (
+	"container/list"
+	"errors"
+)
+
+// EvictCallback is used to get a callback when a cache entry is evicted
+type EvictCallback func(key interface{}, value interface{})
+
+// LRU implements a non-thread safe fixed size LRU cache
+type LRU struct {
+	size      int
+	evictList *list.List
+	items     map[interface{}]*list.Element
+	onEvict   EvictCallback
+}
+
+// entry is used to hold a value in the evictList
+type entry struct {
+	key   interface{}
+	value interface{}
+}
+
+// NewLRU constructs an LRU of the given size
+func NewLRU(size int, onEvict EvictCallback) (*LRU, error) {
+	if size <= 0 {
+		return nil, errors.New("Must provide a positive size")
+	}
+	c := &LRU{
+		size:      size,
+		evictList: list.New(),
+		items:     make(map[interface{}]*list.Element),
+		onEvict:   onEvict,
+	}
+	return c, nil
+}
+
+// Purge is used to completely clear the cache.
+func (c *LRU) Purge() {
+	for k, v := range c.items {
+		if c.onEvict != nil {
+			c.onEvict(k, v.Value.(*entry).value)
+		}
+		delete(c.items, k)
+	}
+	c.evictList.Init()
+}
+
+// Add adds a value to the cache.  Returns true if an eviction occurred.
+func (c *LRU) Add(key, value interface{}) (evicted bool) {
+	// Check for existing item
+	if ent, ok := c.items[key]; ok {
+		c.evictList.MoveToFront(ent)
+		ent.Value.(*entry).value = value
+		return false
+	}
+
+	// Add new item
+	ent := &entry{key, value}
+	entry := c.evictList.PushFront(ent)
+	c.items[key] = entry
+
+	evict := c.evictList.Len() > c.size
+	// Verify size not exceeded
+	if evict {
+		c.removeOldest()
+	}
+	return evict
+}
+
+// Get looks up a key's value from the cache.
+func (c *LRU) Get(key interface{}) (value interface{}, ok bool) {
+	if ent, ok := c.items[key]; ok {
+		c.evictList.MoveToFront(ent)
+		return ent.Value.(*entry).value, true
+	}
+	return
+}
+
+// Contains checks if a key is in the cache, without updating the recent-ness
+// or deleting it for being stale.
+func (c *LRU) Contains(key interface{}) (ok bool) {
+	_, ok = c.items[key]
+	return ok
+}
+
+// Peek returns the key value (or undefined if not found) without updating
+// the "recently used"-ness of the key.
+func (c *LRU) Peek(key interface{}) (value interface{}, ok bool) {
+	var ent *list.Element
+	if ent, ok = c.items[key]; ok {
+		return ent.Value.(*entry).value, true
+	}
+	return nil, ok
+}
+
+// Remove removes the provided key from the cache, returning if the
+// key was contained.
+func (c *LRU) Remove(key interface{}) (present bool) {
+	if ent, ok := c.items[key]; ok {
+		c.removeElement(ent)
+		return true
+	}
+	return false
+}
+
+// RemoveOldest removes the oldest item from the cache.
+func (c *LRU) RemoveOldest() (key interface{}, value interface{}, ok bool) {
+	ent := c.evictList.Back()
+	if ent != nil {
+		c.removeElement(ent)
+		kv := ent.Value.(*entry)
+		return kv.key, kv.value, true
+	}
+	return nil, nil, false
+}
+
+// GetOldest returns the oldest entry
+func (c *LRU) GetOldest() (key interface{}, value interface{}, ok bool) {
+	ent := c.evictList.Back()
+	if ent != nil {
+		kv := ent.Value.(*entry)
+		return kv.key, kv.value, true
+	}
+	return nil, nil, false
+}
+
+// Keys returns a slice of the keys in the cache, from oldest to newest.
+func (c *LRU) Keys() []interface{} {
+	keys := make([]interface{}, len(c.items))
+	i := 0
+	for ent := c.evictList.Back(); ent != nil; ent = ent.Prev() {
+		keys[i] = ent.Value.(*entry).key
+		i++
+	}
+	return keys
+}
+
+// Len returns the number of items in the cache.
+func (c *LRU) Len() int {
+	return c.evictList.Len()
+}
+
+// removeOldest removes the oldest item from the cache.
+func (c *LRU) removeOldest() {
+	ent := c.evictList.Back()
+	if ent != nil {
+		c.removeElement(ent)
+	}
+}
+
+// removeElement is used to remove a given list element from the cache
+func (c *LRU) removeElement(e *list.Element) {
+	c.evictList.Remove(e)
+	kv := e.Value.(*entry)
+	delete(c.items, kv.key)
+	if c.onEvict != nil {
+		c.onEvict(kv.key, kv.value)
+	}
+}
diff --git a/vendor/github.com/hashicorp/golang-lru/simplelru/lru_interface.go b/vendor/github.com/hashicorp/golang-lru/simplelru/lru_interface.go
new file mode 100644
index 0000000000..744cac01c6
--- /dev/null
+++ b/vendor/github.com/hashicorp/golang-lru/simplelru/lru_interface.go
@@ -0,0 +1,37 @@
+package simplelru
+
+
+// LRUCache is the interface for simple LRU cache.
+type LRUCache interface {
+  // Adds a value to the cache, returns true if an eviction occurred and
+  // updates the "recently used"-ness of the key.
+  Add(key, value interface{}) bool
+
+  // Returns key's value from the cache and
+  // updates the "recently used"-ness of the key. #value, isFound
+  Get(key interface{}) (value interface{}, ok bool)
+
+  // Check if a key exsists in cache without updating the recent-ness.
+  Contains(key interface{}) (ok bool)
+
+  // Returns key's value without updating the "recently used"-ness of the key.
+  Peek(key interface{}) (value interface{}, ok bool)
+
+  // Removes a key from the cache.
+  Remove(key interface{}) bool
+
+  // Removes the oldest entry from cache.
+  RemoveOldest() (interface{}, interface{}, bool)
+
+  // Returns the oldest entry from the cache. #key, value, isFound
+  GetOldest() (interface{}, interface{}, bool)
+
+  // Returns a slice of the keys in the cache, from oldest to newest.
+  Keys() []interface{}
+
+  // Returns the number of items in the cache.
+  Len() int
+
+  // Clear all cache entries
+  Purge()
+}
diff --git a/vendor/github.com/hashicorp/memberlist/LICENSE b/vendor/github.com/hashicorp/memberlist/LICENSE
new file mode 100644
index 0000000000..c33dcc7c92
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/LICENSE
@@ -0,0 +1,354 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. “Contributor”
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. “Contributor Version”
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor’s Contribution.
+
+1.3. “Contribution”
+
+     means Covered Software of a particular Contributor.
+
+1.4. “Covered Software”
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. “Incompatible With Secondary Licenses”
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of version
+        1.1 or earlier of the License, but not also under the terms of a
+        Secondary License.
+
+1.6. “Executable Form”
+
+     means any form of the work other than Source Code Form.
+
+1.7. “Larger Work”
+
+     means a work that combines Covered Software with other material, in a separate
+     file or files, that is not Covered Software.
+
+1.8. “License”
+
+     means this document.
+
+1.9. “Licensable”
+
+     means having the right to grant, to the maximum extent possible, whether at the
+     time of the initial grant or subsequently, any and all of the rights conveyed by
+     this License.
+
+1.10. “Modifications”
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to, deletion
+        from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. “Patent Claims” of a Contributor
+
+      means any patent claim(s), including without limitation, method, process,
+      and apparatus claims, in any patent Licensable by such Contributor that
+      would be infringed, but for the grant of the License, by the making,
+      using, selling, offering for sale, having made, import, or transfer of
+      either its Contributions or its Contributor Version.
+
+1.12. “Secondary License”
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. “Source Code Form”
+
+      means the form of the work preferred for making modifications.
+
+1.14. “You” (or “Your”)
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, “You” includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, “control” means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or as
+        part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its Contributions
+        or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution become
+     effective for each Contribution on the date the Contributor first distributes
+     such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under this
+     License. No additional rights or licenses will be implied from the distribution
+     or licensing of Covered Software under this License. Notwithstanding Section
+     2.1(b) above, no patent license is granted by a Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party’s
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of its
+        Contributions.
+
+     This License does not grant any rights in the trademarks, service marks, or
+     logos of any Contributor (except as may be necessary to comply with the
+     notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this License
+     (see Section 10.2) or under the terms of a Secondary License (if permitted
+     under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its Contributions
+     are its original creation(s) or it has sufficient rights to grant the
+     rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under applicable
+     copyright doctrines of fair use, fair dealing, or other equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under the
+     terms of this License. You must inform recipients that the Source Code Form
+     of the Covered Software is governed by the terms of this License, and how
+     they can obtain a copy of this License. You may not attempt to alter or
+     restrict the recipients’ rights in the Source Code Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this License,
+        or sublicense it under different terms, provided that the license for
+        the Executable Form does not attempt to limit or alter the recipients’
+        rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for the
+     Covered Software. If the Larger Work is a combination of Covered Software
+     with a work governed by one or more Secondary Licenses, and the Covered
+     Software is not Incompatible With Secondary Licenses, this License permits
+     You to additionally distribute such Covered Software under the terms of
+     such Secondary License(s), so that the recipient of the Larger Work may, at
+     their option, further distribute the Covered Software under the terms of
+     either this License or such Secondary License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices (including
+     copyright notices, patent notices, disclaimers of warranty, or limitations
+     of liability) contained within the Source Code Form of the Covered
+     Software, except that You may alter any license notices to the extent
+     required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on behalf
+     of any Contributor. You must make it absolutely clear that any such
+     warranty, support, indemnity, or liability obligation is offered by You
+     alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute, judicial
+   order, or regulation then You must: (a) comply with the terms of this License
+   to the maximum extent possible; and (b) describe the limitations and the code
+   they affect. Such description must be placed in a text file included with all
+   distributions of the Covered Software under this License. Except to the
+   extent prohibited by statute or regulation, such description must be
+   sufficiently detailed for a recipient of ordinary skill to be able to
+   understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing basis,
+     if such Contributor fails to notify You of the non-compliance by some
+     reasonable means prior to 60 days after You have come back into compliance.
+     Moreover, Your grants from a particular Contributor are reinstated on an
+     ongoing basis if such Contributor notifies You of the non-compliance by
+     some reasonable means, this is the first time You have received notice of
+     non-compliance with this License from such Contributor, and You become
+     compliant prior to 30 days after Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions, counter-claims,
+     and cross-claims) alleging that a Contributor Version directly or
+     indirectly infringes any patent, then the rights granted to You by any and
+     all Contributors for the Covered Software under Section 2.1 of this License
+     shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an “as is” basis, without
+   warranty of any kind, either expressed, implied, or statutory, including,
+   without limitation, warranties that the Covered Software is free of defects,
+   merchantable, fit for a particular purpose or non-infringing. The entire
+   risk as to the quality and performance of the Covered Software is with You.
+   Should any Covered Software prove defective in any respect, You (not any
+   Contributor) assume the cost of any necessary servicing, repair, or
+   correction. This disclaimer of warranty constitutes an essential part of this
+   License. No use of  any Covered Software is authorized under this License
+   except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from such
+   party’s negligence to the extent applicable law prohibits such limitation.
+   Some jurisdictions do not allow the exclusion or limitation of incidental or
+   consequential damages, so this exclusion and limitation may not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts of
+   a jurisdiction where the defendant maintains its principal place of business
+   and such litigation shall be governed by laws of that jurisdiction, without
+   reference to its conflict-of-law provisions. Nothing in this Section shall
+   prevent a party’s ability to bring cross-claims or counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject matter
+   hereof. If any provision of this License is held to be unenforceable, such
+   provision shall be reformed only to the extent necessary to make it
+   enforceable. Any law or regulation which provides that the language of a
+   contract shall be construed against the drafter shall not be used to construe
+   this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version of
+      the License under which You originally received the Covered Software, or
+      under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a modified
+      version of this License if you rename the license and remove any
+      references to the name of the license steward (except to note that such
+      modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary Licenses
+      If You choose to distribute Source Code Form that is Incompatible With
+      Secondary Licenses under the terms of this version of the License, the
+      notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file, then
+You may include the notice in a location (such as a LICENSE file in a relevant
+directory) where a recipient would be likely to look for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - “Incompatible With Secondary Licenses” Notice
+
+      This Source Code Form is “Incompatible
+      With Secondary Licenses”, as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/memberlist/alive_delegate.go b/vendor/github.com/hashicorp/memberlist/alive_delegate.go
new file mode 100644
index 0000000000..51a0ba9054
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/alive_delegate.go
@@ -0,0 +1,14 @@
+package memberlist
+
+// AliveDelegate is used to involve a client in processing
+// a node "alive" message. When a node joins, either through
+// a UDP gossip or TCP push/pull, we update the state of
+// that node via an alive message. This can be used to filter
+// a node out and prevent it from being considered a peer
+// using application specific logic.
+type AliveDelegate interface {
+	// NotifyMerge is invoked when a merge could take place.
+	// Provides a list of the nodes known by the peer. If
+	// the return value is non-nil, the merge is canceled.
+	NotifyAlive(peer *Node) error
+}
diff --git a/vendor/github.com/hashicorp/memberlist/awareness.go b/vendor/github.com/hashicorp/memberlist/awareness.go
new file mode 100644
index 0000000000..ea95c75388
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/awareness.go
@@ -0,0 +1,69 @@
+package memberlist
+
+import (
+	"sync"
+	"time"
+
+	"github.com/armon/go-metrics"
+)
+
+// awareness manages a simple metric for tracking the estimated health of the
+// local node. Health is primary the node's ability to respond in the soft
+// real-time manner required for correct health checking of other nodes in the
+// cluster.
+type awareness struct {
+	sync.RWMutex
+
+	// max is the upper threshold for the timeout scale (the score will be
+	// constrained to be from 0 <= score < max).
+	max int
+
+	// score is the current awareness score. Lower values are healthier and
+	// zero is the minimum value.
+	score int
+}
+
+// newAwareness returns a new awareness object.
+func newAwareness(max int) *awareness {
+	return &awareness{
+		max:   max,
+		score: 0,
+	}
+}
+
+// ApplyDelta takes the given delta and applies it to the score in a thread-safe
+// manner. It also enforces a floor of zero and a max of max, so deltas may not
+// change the overall score if it's railed at one of the extremes.
+func (a *awareness) ApplyDelta(delta int) {
+	a.Lock()
+	initial := a.score
+	a.score += delta
+	if a.score < 0 {
+		a.score = 0
+	} else if a.score > (a.max - 1) {
+		a.score = (a.max - 1)
+	}
+	final := a.score
+	a.Unlock()
+
+	if initial != final {
+		metrics.SetGauge([]string{"memberlist", "health", "score"}, float32(final))
+	}
+}
+
+// GetHealthScore returns the raw health score.
+func (a *awareness) GetHealthScore() int {
+	a.RLock()
+	score := a.score
+	a.RUnlock()
+	return score
+}
+
+// ScaleTimeout takes the given duration and scales it based on the current
+// score. Less healthyness will lead to longer timeouts.
+func (a *awareness) ScaleTimeout(timeout time.Duration) time.Duration {
+	a.RLock()
+	score := a.score
+	a.RUnlock()
+	return timeout * (time.Duration(score) + 1)
+}
diff --git a/vendor/github.com/hashicorp/memberlist/broadcast.go b/vendor/github.com/hashicorp/memberlist/broadcast.go
new file mode 100644
index 0000000000..f7e85a119c
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/broadcast.go
@@ -0,0 +1,100 @@
+package memberlist
+
+/*
+The broadcast mechanism works by maintaining a sorted list of messages to be
+sent out. When a message is to be broadcast, the retransmit count
+is set to zero and appended to the queue. The retransmit count serves
+as the "priority", ensuring that newer messages get sent first. Once
+a message hits the retransmit limit, it is removed from the queue.
+
+Additionally, older entries can be invalidated by new messages that
+are contradictory. For example, if we send "{suspect M1 inc: 1},
+then a following {alive M1 inc: 2} will invalidate that message
+*/
+
+type memberlistBroadcast struct {
+	node   string
+	msg    []byte
+	notify chan struct{}
+}
+
+func (b *memberlistBroadcast) Invalidates(other Broadcast) bool {
+	// Check if that broadcast is a memberlist type
+	mb, ok := other.(*memberlistBroadcast)
+	if !ok {
+		return false
+	}
+
+	// Invalidates any message about the same node
+	return b.node == mb.node
+}
+
+func (b *memberlistBroadcast) Message() []byte {
+	return b.msg
+}
+
+func (b *memberlistBroadcast) Finished() {
+	select {
+	case b.notify <- struct{}{}:
+	default:
+	}
+}
+
+// encodeAndBroadcast encodes a message and enqueues it for broadcast. Fails
+// silently if there is an encoding error.
+func (m *Memberlist) encodeAndBroadcast(node string, msgType messageType, msg interface{}) {
+	m.encodeBroadcastNotify(node, msgType, msg, nil)
+}
+
+// encodeBroadcastNotify encodes a message and enqueues it for broadcast
+// and notifies the given channel when transmission is finished. Fails
+// silently if there is an encoding error.
+func (m *Memberlist) encodeBroadcastNotify(node string, msgType messageType, msg interface{}, notify chan struct{}) {
+	buf, err := encode(msgType, msg)
+	if err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to encode message for broadcast: %s", err)
+	} else {
+		m.queueBroadcast(node, buf.Bytes(), notify)
+	}
+}
+
+// queueBroadcast is used to start dissemination of a message. It will be
+// sent up to a configured number of times. The message could potentially
+// be invalidated by a future message about the same node
+func (m *Memberlist) queueBroadcast(node string, msg []byte, notify chan struct{}) {
+	b := &memberlistBroadcast{node, msg, notify}
+	m.broadcasts.QueueBroadcast(b)
+}
+
+// getBroadcasts is used to return a slice of broadcasts to send up to
+// a maximum byte size, while imposing a per-broadcast overhead. This is used
+// to fill a UDP packet with piggybacked data
+func (m *Memberlist) getBroadcasts(overhead, limit int) [][]byte {
+	// Get memberlist messages first
+	toSend := m.broadcasts.GetBroadcasts(overhead, limit)
+
+	// Check if the user has anything to broadcast
+	d := m.config.Delegate
+	if d != nil {
+		// Determine the bytes used already
+		bytesUsed := 0
+		for _, msg := range toSend {
+			bytesUsed += len(msg) + overhead
+		}
+
+		// Check space remaining for user messages
+		avail := limit - bytesUsed
+		if avail > overhead+userMsgOverhead {
+			userMsgs := d.GetBroadcasts(overhead+userMsgOverhead, avail)
+
+			// Frame each user message
+			for _, msg := range userMsgs {
+				buf := make([]byte, 1, len(msg)+1)
+				buf[0] = byte(userMsg)
+				buf = append(buf, msg...)
+				toSend = append(toSend, buf)
+			}
+		}
+	}
+	return toSend
+}
diff --git a/vendor/github.com/hashicorp/memberlist/config.go b/vendor/github.com/hashicorp/memberlist/config.go
new file mode 100644
index 0000000000..2f43d14cb1
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/config.go
@@ -0,0 +1,288 @@
+package memberlist
+
+import (
+	"io"
+	"log"
+	"os"
+	"time"
+)
+
+type Config struct {
+	// The name of this node. This must be unique in the cluster.
+	Name string
+
+	// Transport is a hook for providing custom code to communicate with
+	// other nodes. If this is left nil, then memberlist will by default
+	// make a NetTransport using BindAddr and BindPort from this structure.
+	Transport Transport
+
+	// Configuration related to what address to bind to and ports to
+	// listen on. The port is used for both UDP and TCP gossip. It is
+	// assumed other nodes are running on this port, but they do not need
+	// to.
+	BindAddr string
+	BindPort int
+
+	// Configuration related to what address to advertise to other
+	// cluster members. Used for nat traversal.
+	AdvertiseAddr string
+	AdvertisePort int
+
+	// ProtocolVersion is the configured protocol version that we
+	// will _speak_. This must be between ProtocolVersionMin and
+	// ProtocolVersionMax.
+	ProtocolVersion uint8
+
+	// TCPTimeout is the timeout for establishing a stream connection with
+	// a remote node for a full state sync, and for stream read and write
+	// operations. This is a legacy name for backwards compatibility, but
+	// should really be called StreamTimeout now that we have generalized
+	// the transport.
+	TCPTimeout time.Duration
+
+	// IndirectChecks is the number of nodes that will be asked to perform
+	// an indirect probe of a node in the case a direct probe fails. Memberlist
+	// waits for an ack from any single indirect node, so increasing this
+	// number will increase the likelihood that an indirect probe will succeed
+	// at the expense of bandwidth.
+	IndirectChecks int
+
+	// RetransmitMult is the multiplier for the number of retransmissions
+	// that are attempted for messages broadcasted over gossip. The actual
+	// count of retransmissions is calculated using the formula:
+	//
+	//   Retransmits = RetransmitMult * log(N+1)
+	//
+	// This allows the retransmits to scale properly with cluster size. The
+	// higher the multiplier, the more likely a failed broadcast is to converge
+	// at the expense of increased bandwidth.
+	RetransmitMult int
+
+	// SuspicionMult is the multiplier for determining the time an
+	// inaccessible node is considered suspect before declaring it dead.
+	// The actual timeout is calculated using the formula:
+	//
+	//   SuspicionTimeout = SuspicionMult * log(N+1) * ProbeInterval
+	//
+	// This allows the timeout to scale properly with expected propagation
+	// delay with a larger cluster size. The higher the multiplier, the longer
+	// an inaccessible node is considered part of the cluster before declaring
+	// it dead, giving that suspect node more time to refute if it is indeed
+	// still alive.
+	SuspicionMult int
+
+	// SuspicionMaxTimeoutMult is the multiplier applied to the
+	// SuspicionTimeout used as an upper bound on detection time. This max
+	// timeout is calculated using the formula:
+	//
+	// SuspicionMaxTimeout = SuspicionMaxTimeoutMult * SuspicionTimeout
+	//
+	// If everything is working properly, confirmations from other nodes will
+	// accelerate suspicion timers in a manner which will cause the timeout
+	// to reach the base SuspicionTimeout before that elapses, so this value
+	// will typically only come into play if a node is experiencing issues
+	// communicating with other nodes. It should be set to a something fairly
+	// large so that a node having problems will have a lot of chances to
+	// recover before falsely declaring other nodes as failed, but short
+	// enough for a legitimately isolated node to still make progress marking
+	// nodes failed in a reasonable amount of time.
+	SuspicionMaxTimeoutMult int
+
+	// PushPullInterval is the interval between complete state syncs.
+	// Complete state syncs are done with a single node over TCP and are
+	// quite expensive relative to standard gossiped messages. Setting this
+	// to zero will disable state push/pull syncs completely.
+	//
+	// Setting this interval lower (more frequent) will increase convergence
+	// speeds across larger clusters at the expense of increased bandwidth
+	// usage.
+	PushPullInterval time.Duration
+
+	// ProbeInterval and ProbeTimeout are used to configure probing
+	// behavior for memberlist.
+	//
+	// ProbeInterval is the interval between random node probes. Setting
+	// this lower (more frequent) will cause the memberlist cluster to detect
+	// failed nodes more quickly at the expense of increased bandwidth usage.
+	//
+	// ProbeTimeout is the timeout to wait for an ack from a probed node
+	// before assuming it is unhealthy. This should be set to 99-percentile
+	// of RTT (round-trip time) on your network.
+	ProbeInterval time.Duration
+	ProbeTimeout  time.Duration
+
+	// DisableTcpPings will turn off the fallback TCP pings that are attempted
+	// if the direct UDP ping fails. These get pipelined along with the
+	// indirect UDP pings.
+	DisableTcpPings bool
+
+	// AwarenessMaxMultiplier will increase the probe interval if the node
+	// becomes aware that it might be degraded and not meeting the soft real
+	// time requirements to reliably probe other nodes.
+	AwarenessMaxMultiplier int
+
+	// GossipInterval and GossipNodes are used to configure the gossip
+	// behavior of memberlist.
+	//
+	// GossipInterval is the interval between sending messages that need
+	// to be gossiped that haven't been able to piggyback on probing messages.
+	// If this is set to zero, non-piggyback gossip is disabled. By lowering
+	// this value (more frequent) gossip messages are propagated across
+	// the cluster more quickly at the expense of increased bandwidth.
+	//
+	// GossipNodes is the number of random nodes to send gossip messages to
+	// per GossipInterval. Increasing this number causes the gossip messages
+	// to propagate across the cluster more quickly at the expense of
+	// increased bandwidth.
+	//
+	// GossipToTheDeadTime is the interval after which a node has died that
+	// we will still try to gossip to it. This gives it a chance to refute.
+	GossipInterval      time.Duration
+	GossipNodes         int
+	GossipToTheDeadTime time.Duration
+
+	// EnableCompression is used to control message compression. This can
+	// be used to reduce bandwidth usage at the cost of slightly more CPU
+	// utilization. This is only available starting at protocol version 1.
+	EnableCompression bool
+
+	// SecretKey is used to initialize the primary encryption key in a keyring.
+	// The primary encryption key is the only key used to encrypt messages and
+	// the first key used while attempting to decrypt messages. Providing a
+	// value for this primary key will enable message-level encryption and
+	// verification, and automatically install the key onto the keyring.
+	// The value should be either 16, 24, or 32 bytes to select AES-128,
+	// AES-192, or AES-256.
+	SecretKey []byte
+
+	// The keyring holds all of the encryption keys used internally. It is
+	// automatically initialized using the SecretKey and SecretKeys values.
+	Keyring *Keyring
+
+	// Delegate and Events are delegates for receiving and providing
+	// data to memberlist via callback mechanisms. For Delegate, see
+	// the Delegate interface. For Events, see the EventDelegate interface.
+	//
+	// The DelegateProtocolMin/Max are used to guarantee protocol-compatibility
+	// for any custom messages that the delegate might do (broadcasts,
+	// local/remote state, etc.). If you don't set these, then the protocol
+	// versions will just be zero, and version compliance won't be done.
+	Delegate                Delegate
+	DelegateProtocolVersion uint8
+	DelegateProtocolMin     uint8
+	DelegateProtocolMax     uint8
+	Events                  EventDelegate
+	Conflict                ConflictDelegate
+	Merge                   MergeDelegate
+	Ping                    PingDelegate
+	Alive                   AliveDelegate
+
+	// DNSConfigPath points to the system's DNS config file, usually located
+	// at /etc/resolv.conf. It can be overridden via config for easier testing.
+	DNSConfigPath string
+
+	// LogOutput is the writer where logs should be sent. If this is not
+	// set, logging will go to stderr by default. You cannot specify both LogOutput
+	// and Logger at the same time.
+	LogOutput io.Writer
+
+	// Logger is a custom logger which you provide. If Logger is set, it will use
+	// this for the internal logger. If Logger is not set, it will fall back to the
+	// behavior for using LogOutput. You cannot specify both LogOutput and Logger
+	// at the same time.
+	Logger *log.Logger
+
+	// Size of Memberlist's internal channel which handles UDP messages. The
+	// size of this determines the size of the queue which Memberlist will keep
+	// while UDP messages are handled.
+	HandoffQueueDepth int
+
+	// Maximum number of bytes that memberlist will put in a packet (this
+	// will be for UDP packets by default with a NetTransport). A safe value
+	// for this is typically 1400 bytes (which is the default). However,
+	// depending on your network's MTU (Maximum Transmission Unit) you may
+	// be able to increase this to get more content into each gossip packet.
+	// This is a legacy name for backward compatibility but should really be
+	// called PacketBufferSize now that we have generalized the transport.
+	UDPBufferSize int
+}
+
+// DefaultLANConfig returns a sane set of configurations for Memberlist.
+// It uses the hostname as the node name, and otherwise sets very conservative
+// values that are sane for most LAN environments. The default configuration
+// errs on the side of caution, choosing values that are optimized
+// for higher convergence at the cost of higher bandwidth usage. Regardless,
+// these values are a good starting point when getting started with memberlist.
+func DefaultLANConfig() *Config {
+	hostname, _ := os.Hostname()
+	return &Config{
+		Name:                    hostname,
+		BindAddr:                "0.0.0.0",
+		BindPort:                7946,
+		AdvertiseAddr:           "",
+		AdvertisePort:           7946,
+		ProtocolVersion:         ProtocolVersion2Compatible,
+		TCPTimeout:              10 * time.Second,       // Timeout after 10 seconds
+		IndirectChecks:          3,                      // Use 3 nodes for the indirect ping
+		RetransmitMult:          4,                      // Retransmit a message 4 * log(N+1) nodes
+		SuspicionMult:           5,                      // Suspect a node for 5 * log(N+1) * Interval
+		SuspicionMaxTimeoutMult: 6,                      // For 10k nodes this will give a max timeout of 120 seconds
+		PushPullInterval:        30 * time.Second,       // Low frequency
+		ProbeTimeout:            500 * time.Millisecond, // Reasonable RTT time for LAN
+		ProbeInterval:           1 * time.Second,        // Failure check every second
+		DisableTcpPings:         false,                  // TCP pings are safe, even with mixed versions
+		AwarenessMaxMultiplier:  8,                      // Probe interval backs off to 8 seconds
+
+		GossipNodes:         3,                      // Gossip to 3 nodes
+		GossipInterval:      200 * time.Millisecond, // Gossip more rapidly
+		GossipToTheDeadTime: 30 * time.Second,       // Same as push/pull
+
+		EnableCompression: true, // Enable compression by default
+
+		SecretKey: nil,
+		Keyring:   nil,
+
+		DNSConfigPath: "/etc/resolv.conf",
+
+		HandoffQueueDepth: 1024,
+		UDPBufferSize:     1400,
+	}
+}
+
+// DefaultWANConfig works like DefaultConfig, however it returns a configuration
+// that is optimized for most WAN environments. The default configuration is
+// still very conservative and errs on the side of caution.
+func DefaultWANConfig() *Config {
+	conf := DefaultLANConfig()
+	conf.TCPTimeout = 30 * time.Second
+	conf.SuspicionMult = 6
+	conf.PushPullInterval = 60 * time.Second
+	conf.ProbeTimeout = 3 * time.Second
+	conf.ProbeInterval = 5 * time.Second
+	conf.GossipNodes = 4 // Gossip less frequently, but to an additional node
+	conf.GossipInterval = 500 * time.Millisecond
+	conf.GossipToTheDeadTime = 60 * time.Second
+	return conf
+}
+
+// DefaultLocalConfig works like DefaultConfig, however it returns a configuration
+// that is optimized for a local loopback environments. The default configuration is
+// still very conservative and errs on the side of caution.
+func DefaultLocalConfig() *Config {
+	conf := DefaultLANConfig()
+	conf.TCPTimeout = time.Second
+	conf.IndirectChecks = 1
+	conf.RetransmitMult = 2
+	conf.SuspicionMult = 3
+	conf.PushPullInterval = 15 * time.Second
+	conf.ProbeTimeout = 200 * time.Millisecond
+	conf.ProbeInterval = time.Second
+	conf.GossipInterval = 100 * time.Millisecond
+	conf.GossipToTheDeadTime = 15 * time.Second
+	return conf
+}
+
+// Returns whether or not encryption is enabled
+func (c *Config) EncryptionEnabled() bool {
+	return c.Keyring != nil && len(c.Keyring.GetKeys()) > 0
+}
diff --git a/vendor/github.com/hashicorp/memberlist/conflict_delegate.go b/vendor/github.com/hashicorp/memberlist/conflict_delegate.go
new file mode 100644
index 0000000000..f52b136eba
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/conflict_delegate.go
@@ -0,0 +1,10 @@
+package memberlist
+
+// ConflictDelegate is a used to inform a client that
+// a node has attempted to join which would result in a
+// name conflict. This happens if two clients are configured
+// with the same name but different addresses.
+type ConflictDelegate interface {
+	// NotifyConflict is invoked when a name conflict is detected
+	NotifyConflict(existing, other *Node)
+}
diff --git a/vendor/github.com/hashicorp/memberlist/delegate.go b/vendor/github.com/hashicorp/memberlist/delegate.go
new file mode 100644
index 0000000000..5515488921
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/delegate.go
@@ -0,0 +1,37 @@
+package memberlist
+
+// Delegate is the interface that clients must implement if they want to hook
+// into the gossip layer of Memberlist. All the methods must be thread-safe,
+// as they can and generally will be called concurrently.
+type Delegate interface {
+	// NodeMeta is used to retrieve meta-data about the current node
+	// when broadcasting an alive message. It's length is limited to
+	// the given byte size. This metadata is available in the Node structure.
+	NodeMeta(limit int) []byte
+
+	// NotifyMsg is called when a user-data message is received.
+	// Care should be taken that this method does not block, since doing
+	// so would block the entire UDP packet receive loop. Additionally, the byte
+	// slice may be modified after the call returns, so it should be copied if needed
+	NotifyMsg([]byte)
+
+	// GetBroadcasts is called when user data messages can be broadcast.
+	// It can return a list of buffers to send. Each buffer should assume an
+	// overhead as provided with a limit on the total byte size allowed.
+	// The total byte size of the resulting data to send must not exceed
+	// the limit. Care should be taken that this method does not block,
+	// since doing so would block the entire UDP packet receive loop.
+	GetBroadcasts(overhead, limit int) [][]byte
+
+	// LocalState is used for a TCP Push/Pull. This is sent to
+	// the remote side in addition to the membership information. Any
+	// data can be sent here. See MergeRemoteState as well. The `join`
+	// boolean indicates this is for a join instead of a push/pull.
+	LocalState(join bool) []byte
+
+	// MergeRemoteState is invoked after a TCP Push/Pull. This is the
+	// state received from the remote side and is the result of the
+	// remote side's LocalState call. The 'join'
+	// boolean indicates this is for a join instead of a push/pull.
+	MergeRemoteState(buf []byte, join bool)
+}
diff --git a/vendor/github.com/hashicorp/memberlist/event_delegate.go b/vendor/github.com/hashicorp/memberlist/event_delegate.go
new file mode 100644
index 0000000000..35e2a56fdd
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/event_delegate.go
@@ -0,0 +1,61 @@
+package memberlist
+
+// EventDelegate is a simpler delegate that is used only to receive
+// notifications about members joining and leaving. The methods in this
+// delegate may be called by multiple goroutines, but never concurrently.
+// This allows you to reason about ordering.
+type EventDelegate interface {
+	// NotifyJoin is invoked when a node is detected to have joined.
+	// The Node argument must not be modified.
+	NotifyJoin(*Node)
+
+	// NotifyLeave is invoked when a node is detected to have left.
+	// The Node argument must not be modified.
+	NotifyLeave(*Node)
+
+	// NotifyUpdate is invoked when a node is detected to have
+	// updated, usually involving the meta data. The Node argument
+	// must not be modified.
+	NotifyUpdate(*Node)
+}
+
+// ChannelEventDelegate is used to enable an application to receive
+// events about joins and leaves over a channel instead of a direct
+// function call.
+//
+// Care must be taken that events are processed in a timely manner from
+// the channel, since this delegate will block until an event can be sent.
+type ChannelEventDelegate struct {
+	Ch chan<- NodeEvent
+}
+
+// NodeEventType are the types of events that can be sent from the
+// ChannelEventDelegate.
+type NodeEventType int
+
+const (
+	NodeJoin NodeEventType = iota
+	NodeLeave
+	NodeUpdate
+)
+
+// NodeEvent is a single event related to node activity in the memberlist.
+// The Node member of this struct must not be directly modified. It is passed
+// as a pointer to avoid unnecessary copies. If you wish to modify the node,
+// make a copy first.
+type NodeEvent struct {
+	Event NodeEventType
+	Node  *Node
+}
+
+func (c *ChannelEventDelegate) NotifyJoin(n *Node) {
+	c.Ch <- NodeEvent{NodeJoin, n}
+}
+
+func (c *ChannelEventDelegate) NotifyLeave(n *Node) {
+	c.Ch <- NodeEvent{NodeLeave, n}
+}
+
+func (c *ChannelEventDelegate) NotifyUpdate(n *Node) {
+	c.Ch <- NodeEvent{NodeUpdate, n}
+}
diff --git a/vendor/github.com/hashicorp/memberlist/keyring.go b/vendor/github.com/hashicorp/memberlist/keyring.go
new file mode 100644
index 0000000000..a2774a0ce0
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/keyring.go
@@ -0,0 +1,160 @@
+package memberlist
+
+import (
+	"bytes"
+	"fmt"
+	"sync"
+)
+
+type Keyring struct {
+	// Keys stores the key data used during encryption and decryption. It is
+	// ordered in such a way where the first key (index 0) is the primary key,
+	// which is used for encrypting messages, and is the first key tried during
+	// message decryption.
+	keys [][]byte
+
+	// The keyring lock is used while performing IO operations on the keyring.
+	l sync.Mutex
+}
+
+// Init allocates substructures
+func (k *Keyring) init() {
+	k.keys = make([][]byte, 0)
+}
+
+// NewKeyring constructs a new container for a set of encryption keys. The
+// keyring contains all key data used internally by memberlist.
+//
+// While creating a new keyring, you must do one of:
+//   - Omit keys and primary key, effectively disabling encryption
+//   - Pass a set of keys plus the primary key
+//   - Pass only a primary key
+//
+// If only a primary key is passed, then it will be automatically added to the
+// keyring. If creating a keyring with multiple keys, one key must be designated
+// primary by passing it as the primaryKey. If the primaryKey does not exist in
+// the list of secondary keys, it will be automatically added at position 0.
+//
+// A key should be either 16, 24, or 32 bytes to select AES-128,
+// AES-192, or AES-256.
+func NewKeyring(keys [][]byte, primaryKey []byte) (*Keyring, error) {
+	keyring := &Keyring{}
+	keyring.init()
+
+	if len(keys) > 0 || len(primaryKey) > 0 {
+		if len(primaryKey) == 0 {
+			return nil, fmt.Errorf("Empty primary key not allowed")
+		}
+		if err := keyring.AddKey(primaryKey); err != nil {
+			return nil, err
+		}
+		for _, key := range keys {
+			if err := keyring.AddKey(key); err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	return keyring, nil
+}
+
+// ValidateKey will check to see if the key is valid and returns an error if not.
+//
+// key should be either 16, 24, or 32 bytes to select AES-128,
+// AES-192, or AES-256.
+func ValidateKey(key []byte) error {
+	if l := len(key); l != 16 && l != 24 && l != 32 {
+		return fmt.Errorf("key size must be 16, 24 or 32 bytes")
+	}
+	return nil
+}
+
+// AddKey will install a new key on the ring. Adding a key to the ring will make
+// it available for use in decryption. If the key already exists on the ring,
+// this function will just return noop.
+//
+// key should be either 16, 24, or 32 bytes to select AES-128,
+// AES-192, or AES-256.
+func (k *Keyring) AddKey(key []byte) error {
+	if err := ValidateKey(key); err != nil {
+		return err
+	}
+
+	// No-op if key is already installed
+	for _, installedKey := range k.keys {
+		if bytes.Equal(installedKey, key) {
+			return nil
+		}
+	}
+
+	keys := append(k.keys, key)
+	primaryKey := k.GetPrimaryKey()
+	if primaryKey == nil {
+		primaryKey = key
+	}
+	k.installKeys(keys, primaryKey)
+	return nil
+}
+
+// UseKey changes the key used to encrypt messages. This is the only key used to
+// encrypt messages, so peers should know this key before this method is called.
+func (k *Keyring) UseKey(key []byte) error {
+	for _, installedKey := range k.keys {
+		if bytes.Equal(key, installedKey) {
+			k.installKeys(k.keys, key)
+			return nil
+		}
+	}
+	return fmt.Errorf("Requested key is not in the keyring")
+}
+
+// RemoveKey drops a key from the keyring. This will return an error if the key
+// requested for removal is currently at position 0 (primary key).
+func (k *Keyring) RemoveKey(key []byte) error {
+	if bytes.Equal(key, k.keys[0]) {
+		return fmt.Errorf("Removing the primary key is not allowed")
+	}
+	for i, installedKey := range k.keys {
+		if bytes.Equal(key, installedKey) {
+			keys := append(k.keys[:i], k.keys[i+1:]...)
+			k.installKeys(keys, k.keys[0])
+		}
+	}
+	return nil
+}
+
+// installKeys will take out a lock on the keyring, and replace the keys with a
+// new set of keys. The key indicated by primaryKey will be installed as the new
+// primary key.
+func (k *Keyring) installKeys(keys [][]byte, primaryKey []byte) {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	newKeys := [][]byte{primaryKey}
+	for _, key := range keys {
+		if !bytes.Equal(key, primaryKey) {
+			newKeys = append(newKeys, key)
+		}
+	}
+	k.keys = newKeys
+}
+
+// GetKeys returns the current set of keys on the ring.
+func (k *Keyring) GetKeys() [][]byte {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	return k.keys
+}
+
+// GetPrimaryKey returns the key on the ring at position 0. This is the key used
+// for encrypting messages, and is the first key tried for decrypting messages.
+func (k *Keyring) GetPrimaryKey() (key []byte) {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	if len(k.keys) > 0 {
+		key = k.keys[0]
+	}
+	return
+}
diff --git a/vendor/github.com/hashicorp/memberlist/logging.go b/vendor/github.com/hashicorp/memberlist/logging.go
new file mode 100644
index 0000000000..f31acfb2fa
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/logging.go
@@ -0,0 +1,22 @@
+package memberlist
+
+import (
+	"fmt"
+	"net"
+)
+
+func LogAddress(addr net.Addr) string {
+	if addr == nil {
+		return "from=<unknown address>"
+	}
+
+	return fmt.Sprintf("from=%s", addr.String())
+}
+
+func LogConn(conn net.Conn) string {
+	if conn == nil {
+		return LogAddress(nil)
+	}
+
+	return LogAddress(conn.RemoteAddr())
+}
diff --git a/vendor/github.com/hashicorp/memberlist/memberlist.go b/vendor/github.com/hashicorp/memberlist/memberlist.go
new file mode 100644
index 0000000000..e4b0d7347d
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/memberlist.go
@@ -0,0 +1,625 @@
+/*
+memberlist is a library that manages cluster
+membership and member failure detection using a gossip based protocol.
+
+The use cases for such a library are far-reaching: all distributed systems
+require membership, and memberlist is a re-usable solution to managing
+cluster membership and node failure detection.
+
+memberlist is eventually consistent but converges quickly on average.
+The speed at which it converges can be heavily tuned via various knobs
+on the protocol. Node failures are detected and network partitions are partially
+tolerated by attempting to communicate to potentially dead nodes through
+multiple routes.
+*/
+package memberlist
+
+import (
+	"fmt"
+	"log"
+	"net"
+	"os"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/hashicorp/go-multierror"
+	sockaddr "github.com/hashicorp/go-sockaddr"
+	"github.com/miekg/dns"
+)
+
+type Memberlist struct {
+	sequenceNum uint32 // Local sequence number
+	incarnation uint32 // Local incarnation number
+	numNodes    uint32 // Number of known nodes (estimate)
+
+	config         *Config
+	shutdown       bool
+	shutdownCh     chan struct{}
+	leave          bool
+	leaveBroadcast chan struct{}
+
+	transport Transport
+	handoff   chan msgHandoff
+
+	nodeLock   sync.RWMutex
+	nodes      []*nodeState          // Known nodes
+	nodeMap    map[string]*nodeState // Maps Addr.String() -> NodeState
+	nodeTimers map[string]*suspicion // Maps Addr.String() -> suspicion timer
+	awareness  *awareness
+
+	tickerLock sync.Mutex
+	tickers    []*time.Ticker
+	stopTick   chan struct{}
+	probeIndex int
+
+	ackLock     sync.Mutex
+	ackHandlers map[uint32]*ackHandler
+
+	broadcasts *TransmitLimitedQueue
+
+	logger *log.Logger
+}
+
+// newMemberlist creates the network listeners.
+// Does not schedule execution of background maintenance.
+func newMemberlist(conf *Config) (*Memberlist, error) {
+	if conf.ProtocolVersion < ProtocolVersionMin {
+		return nil, fmt.Errorf("Protocol version '%d' too low. Must be in range: [%d, %d]",
+			conf.ProtocolVersion, ProtocolVersionMin, ProtocolVersionMax)
+	} else if conf.ProtocolVersion > ProtocolVersionMax {
+		return nil, fmt.Errorf("Protocol version '%d' too high. Must be in range: [%d, %d]",
+			conf.ProtocolVersion, ProtocolVersionMin, ProtocolVersionMax)
+	}
+
+	if len(conf.SecretKey) > 0 {
+		if conf.Keyring == nil {
+			keyring, err := NewKeyring(nil, conf.SecretKey)
+			if err != nil {
+				return nil, err
+			}
+			conf.Keyring = keyring
+		} else {
+			if err := conf.Keyring.AddKey(conf.SecretKey); err != nil {
+				return nil, err
+			}
+			if err := conf.Keyring.UseKey(conf.SecretKey); err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	if conf.LogOutput != nil && conf.Logger != nil {
+		return nil, fmt.Errorf("Cannot specify both LogOutput and Logger. Please choose a single log configuration setting.")
+	}
+
+	logDest := conf.LogOutput
+	if logDest == nil {
+		logDest = os.Stderr
+	}
+
+	logger := conf.Logger
+	if logger == nil {
+		logger = log.New(logDest, "", log.LstdFlags)
+	}
+
+	// Set up a network transport by default if a custom one wasn't given
+	// by the config.
+	transport := conf.Transport
+	if transport == nil {
+		nc := &NetTransportConfig{
+			BindAddrs: []string{conf.BindAddr},
+			BindPort:  conf.BindPort,
+			Logger:    logger,
+		}
+		nt, err := NewNetTransport(nc)
+		if err != nil {
+			return nil, fmt.Errorf("Could not set up network transport: %v", err)
+		}
+
+		if conf.BindPort == 0 {
+			port := nt.GetAutoBindPort()
+			conf.BindPort = port
+			logger.Printf("[DEBUG] Using dynamic bind port %d", port)
+		}
+		transport = nt
+	}
+
+	m := &Memberlist{
+		config:         conf,
+		shutdownCh:     make(chan struct{}),
+		leaveBroadcast: make(chan struct{}, 1),
+		transport:      transport,
+		handoff:        make(chan msgHandoff, conf.HandoffQueueDepth),
+		nodeMap:        make(map[string]*nodeState),
+		nodeTimers:     make(map[string]*suspicion),
+		awareness:      newAwareness(conf.AwarenessMaxMultiplier),
+		ackHandlers:    make(map[uint32]*ackHandler),
+		broadcasts:     &TransmitLimitedQueue{RetransmitMult: conf.RetransmitMult},
+		logger:         logger,
+	}
+	m.broadcasts.NumNodes = func() int {
+		return m.estNumNodes()
+	}
+	go m.streamListen()
+	go m.packetListen()
+	go m.packetHandler()
+	return m, nil
+}
+
+// Create will create a new Memberlist using the given configuration.
+// This will not connect to any other node (see Join) yet, but will start
+// all the listeners to allow other nodes to join this memberlist.
+// After creating a Memberlist, the configuration given should not be
+// modified by the user anymore.
+func Create(conf *Config) (*Memberlist, error) {
+	m, err := newMemberlist(conf)
+	if err != nil {
+		return nil, err
+	}
+	if err := m.setAlive(); err != nil {
+		m.Shutdown()
+		return nil, err
+	}
+	m.schedule()
+	return m, nil
+}
+
+// Join is used to take an existing Memberlist and attempt to join a cluster
+// by contacting all the given hosts and performing a state sync. Initially,
+// the Memberlist only contains our own state, so doing this will cause
+// remote nodes to become aware of the existence of this node, effectively
+// joining the cluster.
+//
+// This returns the number of hosts successfully contacted and an error if
+// none could be reached. If an error is returned, the node did not successfully
+// join the cluster.
+func (m *Memberlist) Join(existing []string) (int, error) {
+	numSuccess := 0
+	var errs error
+	for _, exist := range existing {
+		addrs, err := m.resolveAddr(exist)
+		if err != nil {
+			err = fmt.Errorf("Failed to resolve %s: %v", exist, err)
+			errs = multierror.Append(errs, err)
+			m.logger.Printf("[WARN] memberlist: %v", err)
+			continue
+		}
+
+		for _, addr := range addrs {
+			hp := joinHostPort(addr.ip.String(), addr.port)
+			if err := m.pushPullNode(hp, true); err != nil {
+				err = fmt.Errorf("Failed to join %s: %v", addr.ip, err)
+				errs = multierror.Append(errs, err)
+				m.logger.Printf("[DEBUG] memberlist: %v", err)
+				continue
+			}
+			numSuccess++
+		}
+
+	}
+	if numSuccess > 0 {
+		errs = nil
+	}
+	return numSuccess, errs
+}
+
+// ipPort holds information about a node we want to try to join.
+type ipPort struct {
+	ip   net.IP
+	port uint16
+}
+
+// tcpLookupIP is a helper to initiate a TCP-based DNS lookup for the given host.
+// The built-in Go resolver will do a UDP lookup first, and will only use TCP if
+// the response has the truncate bit set, which isn't common on DNS servers like
+// Consul's. By doing the TCP lookup directly, we get the best chance for the
+// largest list of hosts to join. Since joins are relatively rare events, it's ok
+// to do this rather expensive operation.
+func (m *Memberlist) tcpLookupIP(host string, defaultPort uint16) ([]ipPort, error) {
+	// Don't attempt any TCP lookups against non-fully qualified domain
+	// names, since those will likely come from the resolv.conf file.
+	if !strings.Contains(host, ".") {
+		return nil, nil
+	}
+
+	// Make sure the domain name is terminated with a dot (we know there's
+	// at least one character at this point).
+	dn := host
+	if dn[len(dn)-1] != '.' {
+		dn = dn + "."
+	}
+
+	// See if we can find a server to try.
+	cc, err := dns.ClientConfigFromFile(m.config.DNSConfigPath)
+	if err != nil {
+		return nil, err
+	}
+	if len(cc.Servers) > 0 {
+		// We support host:port in the DNS config, but need to add the
+		// default port if one is not supplied.
+		server := cc.Servers[0]
+		if !hasPort(server) {
+			server = net.JoinHostPort(server, cc.Port)
+		}
+
+		// Do the lookup.
+		c := new(dns.Client)
+		c.Net = "tcp"
+		msg := new(dns.Msg)
+		msg.SetQuestion(dn, dns.TypeANY)
+		in, _, err := c.Exchange(msg, server)
+		if err != nil {
+			return nil, err
+		}
+
+		// Handle any IPs we get back that we can attempt to join.
+		var ips []ipPort
+		for _, r := range in.Answer {
+			switch rr := r.(type) {
+			case (*dns.A):
+				ips = append(ips, ipPort{rr.A, defaultPort})
+			case (*dns.AAAA):
+				ips = append(ips, ipPort{rr.AAAA, defaultPort})
+			case (*dns.CNAME):
+				m.logger.Printf("[DEBUG] memberlist: Ignoring CNAME RR in TCP-first answer for '%s'", host)
+			}
+		}
+		return ips, nil
+	}
+
+	return nil, nil
+}
+
+// resolveAddr is used to resolve the address into an address,
+// port, and error. If no port is given, use the default
+func (m *Memberlist) resolveAddr(hostStr string) ([]ipPort, error) {
+	// Normalize the incoming string to host:port so we can apply Go's
+	// parser to it.
+	port := uint16(0)
+	if !hasPort(hostStr) {
+		hostStr += ":" + strconv.Itoa(m.config.BindPort)
+	}
+	host, sport, err := net.SplitHostPort(hostStr)
+	if err != nil {
+		return nil, err
+	}
+
+	// This will capture the supplied port, or the default one added above.
+	lport, err := strconv.ParseUint(sport, 10, 16)
+	if err != nil {
+		return nil, err
+	}
+	port = uint16(lport)
+
+	// If it looks like an IP address we are done. The SplitHostPort() above
+	// will make sure the host part is in good shape for parsing, even for
+	// IPv6 addresses.
+	if ip := net.ParseIP(host); ip != nil {
+		return []ipPort{ipPort{ip, port}}, nil
+	}
+
+	// First try TCP so we have the best chance for the largest list of
+	// hosts to join. If this fails it's not fatal since this isn't a standard
+	// way to query DNS, and we have a fallback below.
+	ips, err := m.tcpLookupIP(host, port)
+	if err != nil {
+		m.logger.Printf("[DEBUG] memberlist: TCP-first lookup failed for '%s', falling back to UDP: %s", hostStr, err)
+	}
+	if len(ips) > 0 {
+		return ips, nil
+	}
+
+	// If TCP didn't yield anything then use the normal Go resolver which
+	// will try UDP, then might possibly try TCP again if the UDP response
+	// indicates it was truncated.
+	ans, err := net.LookupIP(host)
+	if err != nil {
+		return nil, err
+	}
+	ips = make([]ipPort, 0, len(ans))
+	for _, ip := range ans {
+		ips = append(ips, ipPort{ip, port})
+	}
+	return ips, nil
+}
+
+// setAlive is used to mark this node as being alive. This is the same
+// as if we received an alive notification our own network channel for
+// ourself.
+func (m *Memberlist) setAlive() error {
+	// Get the final advertise address from the transport, which may need
+	// to see which address we bound to.
+	addr, port, err := m.transport.FinalAdvertiseAddr(
+		m.config.AdvertiseAddr, m.config.AdvertisePort)
+	if err != nil {
+		return fmt.Errorf("Failed to get final advertise address: %v", err)
+	}
+
+	// Check if this is a public address without encryption
+	ipAddr, err := sockaddr.NewIPAddr(addr.String())
+	if err != nil {
+		return fmt.Errorf("Failed to parse interface addresses: %v", err)
+	}
+	ifAddrs := []sockaddr.IfAddr{
+		sockaddr.IfAddr{
+			SockAddr: ipAddr,
+		},
+	}
+	_, publicIfs, err := sockaddr.IfByRFC("6890", ifAddrs)
+	if len(publicIfs) > 0 && !m.config.EncryptionEnabled() {
+		m.logger.Printf("[WARN] memberlist: Binding to public address without encryption!")
+	}
+
+	// Set any metadata from the delegate.
+	var meta []byte
+	if m.config.Delegate != nil {
+		meta = m.config.Delegate.NodeMeta(MetaMaxSize)
+		if len(meta) > MetaMaxSize {
+			panic("Node meta data provided is longer than the limit")
+		}
+	}
+
+	a := alive{
+		Incarnation: m.nextIncarnation(),
+		Node:        m.config.Name,
+		Addr:        addr,
+		Port:        uint16(port),
+		Meta:        meta,
+		Vsn: []uint8{
+			ProtocolVersionMin, ProtocolVersionMax, m.config.ProtocolVersion,
+			m.config.DelegateProtocolMin, m.config.DelegateProtocolMax,
+			m.config.DelegateProtocolVersion,
+		},
+	}
+	m.aliveNode(&a, nil, true)
+	return nil
+}
+
+// LocalNode is used to return the local Node
+func (m *Memberlist) LocalNode() *Node {
+	m.nodeLock.RLock()
+	defer m.nodeLock.RUnlock()
+	state := m.nodeMap[m.config.Name]
+	return &state.Node
+}
+
+// UpdateNode is used to trigger re-advertising the local node. This is
+// primarily used with a Delegate to support dynamic updates to the local
+// meta data.  This will block until the update message is successfully
+// broadcasted to a member of the cluster, if any exist or until a specified
+// timeout is reached.
+func (m *Memberlist) UpdateNode(timeout time.Duration) error {
+	// Get the node meta data
+	var meta []byte
+	if m.config.Delegate != nil {
+		meta = m.config.Delegate.NodeMeta(MetaMaxSize)
+		if len(meta) > MetaMaxSize {
+			panic("Node meta data provided is longer than the limit")
+		}
+	}
+
+	// Get the existing node
+	m.nodeLock.RLock()
+	state := m.nodeMap[m.config.Name]
+	m.nodeLock.RUnlock()
+
+	// Format a new alive message
+	a := alive{
+		Incarnation: m.nextIncarnation(),
+		Node:        m.config.Name,
+		Addr:        state.Addr,
+		Port:        state.Port,
+		Meta:        meta,
+		Vsn: []uint8{
+			ProtocolVersionMin, ProtocolVersionMax, m.config.ProtocolVersion,
+			m.config.DelegateProtocolMin, m.config.DelegateProtocolMax,
+			m.config.DelegateProtocolVersion,
+		},
+	}
+	notifyCh := make(chan struct{})
+	m.aliveNode(&a, notifyCh, true)
+
+	// Wait for the broadcast or a timeout
+	if m.anyAlive() {
+		var timeoutCh <-chan time.Time
+		if timeout > 0 {
+			timeoutCh = time.After(timeout)
+		}
+		select {
+		case <-notifyCh:
+		case <-timeoutCh:
+			return fmt.Errorf("timeout waiting for update broadcast")
+		}
+	}
+	return nil
+}
+
+// SendTo is deprecated in favor of SendBestEffort, which requires a node to
+// target.
+func (m *Memberlist) SendTo(to net.Addr, msg []byte) error {
+	// Encode as a user message
+	buf := make([]byte, 1, len(msg)+1)
+	buf[0] = byte(userMsg)
+	buf = append(buf, msg...)
+
+	// Send the message
+	return m.rawSendMsgPacket(to.String(), nil, buf)
+}
+
+// SendToUDP is deprecated in favor of SendBestEffort.
+func (m *Memberlist) SendToUDP(to *Node, msg []byte) error {
+	return m.SendBestEffort(to, msg)
+}
+
+// SendToTCP is deprecated in favor of SendReliable.
+func (m *Memberlist) SendToTCP(to *Node, msg []byte) error {
+	return m.SendReliable(to, msg)
+}
+
+// SendBestEffort uses the unreliable packet-oriented interface of the transport
+// to target a user message at the given node (this does not use the gossip
+// mechanism). The maximum size of the message depends on the configured
+// UDPBufferSize for this memberlist instance.
+func (m *Memberlist) SendBestEffort(to *Node, msg []byte) error {
+	// Encode as a user message
+	buf := make([]byte, 1, len(msg)+1)
+	buf[0] = byte(userMsg)
+	buf = append(buf, msg...)
+
+	// Send the message
+	return m.rawSendMsgPacket(to.Address(), to, buf)
+}
+
+// SendReliable uses the reliable stream-oriented interface of the transport to
+// target a user message at the given node (this does not use the gossip
+// mechanism). Delivery is guaranteed if no error is returned, and there is no
+// limit on the size of the message.
+func (m *Memberlist) SendReliable(to *Node, msg []byte) error {
+	return m.sendUserMsg(to.Address(), msg)
+}
+
+// Members returns a list of all known live nodes. The node structures
+// returned must not be modified. If you wish to modify a Node, make a
+// copy first.
+func (m *Memberlist) Members() []*Node {
+	m.nodeLock.RLock()
+	defer m.nodeLock.RUnlock()
+
+	nodes := make([]*Node, 0, len(m.nodes))
+	for _, n := range m.nodes {
+		if n.State != stateDead {
+			nodes = append(nodes, &n.Node)
+		}
+	}
+
+	return nodes
+}
+
+// NumMembers returns the number of alive nodes currently known. Between
+// the time of calling this and calling Members, the number of alive nodes
+// may have changed, so this shouldn't be used to determine how many
+// members will be returned by Members.
+func (m *Memberlist) NumMembers() (alive int) {
+	m.nodeLock.RLock()
+	defer m.nodeLock.RUnlock()
+
+	for _, n := range m.nodes {
+		if n.State != stateDead {
+			alive++
+		}
+	}
+
+	return
+}
+
+// Leave will broadcast a leave message but will not shutdown the background
+// listeners, meaning the node will continue participating in gossip and state
+// updates.
+//
+// This will block until the leave message is successfully broadcasted to
+// a member of the cluster, if any exist or until a specified timeout
+// is reached.
+//
+// This method is safe to call multiple times, but must not be called
+// after the cluster is already shut down.
+func (m *Memberlist) Leave(timeout time.Duration) error {
+	m.nodeLock.Lock()
+	// We can't defer m.nodeLock.Unlock() because m.deadNode will also try to
+	// acquire a lock so we need to Unlock before that.
+
+	if m.shutdown {
+		m.nodeLock.Unlock()
+		panic("leave after shutdown")
+	}
+
+	if !m.leave {
+		m.leave = true
+
+		state, ok := m.nodeMap[m.config.Name]
+		m.nodeLock.Unlock()
+		if !ok {
+			m.logger.Printf("[WARN] memberlist: Leave but we're not in the node map.")
+			return nil
+		}
+
+		d := dead{
+			Incarnation: state.Incarnation,
+			Node:        state.Name,
+		}
+		m.deadNode(&d)
+
+		// Block until the broadcast goes out
+		if m.anyAlive() {
+			var timeoutCh <-chan time.Time
+			if timeout > 0 {
+				timeoutCh = time.After(timeout)
+			}
+			select {
+			case <-m.leaveBroadcast:
+			case <-timeoutCh:
+				return fmt.Errorf("timeout waiting for leave broadcast")
+			}
+		}
+	} else {
+		m.nodeLock.Unlock()
+	}
+
+	return nil
+}
+
+// Check for any other alive node.
+func (m *Memberlist) anyAlive() bool {
+	m.nodeLock.RLock()
+	defer m.nodeLock.RUnlock()
+	for _, n := range m.nodes {
+		if n.State != stateDead && n.Name != m.config.Name {
+			return true
+		}
+	}
+	return false
+}
+
+// GetHealthScore gives this instance's idea of how well it is meeting the soft
+// real-time requirements of the protocol. Lower numbers are better, and zero
+// means "totally healthy".
+func (m *Memberlist) GetHealthScore() int {
+	return m.awareness.GetHealthScore()
+}
+
+// ProtocolVersion returns the protocol version currently in use by
+// this memberlist.
+func (m *Memberlist) ProtocolVersion() uint8 {
+	// NOTE: This method exists so that in the future we can control
+	// any locking if necessary, if we change the protocol version at
+	// runtime, etc.
+	return m.config.ProtocolVersion
+}
+
+// Shutdown will stop any background maintanence of network activity
+// for this memberlist, causing it to appear "dead". A leave message
+// will not be broadcasted prior, so the cluster being left will have
+// to detect this node's shutdown using probing. If you wish to more
+// gracefully exit the cluster, call Leave prior to shutting down.
+//
+// This method is safe to call multiple times.
+func (m *Memberlist) Shutdown() error {
+	m.nodeLock.Lock()
+	defer m.nodeLock.Unlock()
+
+	if m.shutdown {
+		return nil
+	}
+
+	// Shut down the transport first, which should block until it's
+	// completely torn down. If we kill the memberlist-side handlers
+	// those I/O handlers might get stuck.
+	m.transport.Shutdown()
+
+	// Now tear down everything else.
+	m.shutdown = true
+	close(m.shutdownCh)
+	m.deschedule()
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/memberlist/merge_delegate.go b/vendor/github.com/hashicorp/memberlist/merge_delegate.go
new file mode 100644
index 0000000000..89afb59f20
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/merge_delegate.go
@@ -0,0 +1,14 @@
+package memberlist
+
+// MergeDelegate is used to involve a client in
+// a potential cluster merge operation. Namely, when
+// a node does a TCP push/pull (as part of a join),
+// the delegate is involved and allowed to cancel the join
+// based on custom logic. The merge delegate is NOT invoked
+// as part of the push-pull anti-entropy.
+type MergeDelegate interface {
+	// NotifyMerge is invoked when a merge could take place.
+	// Provides a list of the nodes known by the peer. If
+	// the return value is non-nil, the merge is canceled.
+	NotifyMerge(peers []*Node) error
+}
diff --git a/vendor/github.com/hashicorp/memberlist/mock_transport.go b/vendor/github.com/hashicorp/memberlist/mock_transport.go
new file mode 100644
index 0000000000..b8bafa8026
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/mock_transport.go
@@ -0,0 +1,121 @@
+package memberlist
+
+import (
+	"fmt"
+	"net"
+	"strconv"
+	"time"
+)
+
+// MockNetwork is used as a factory that produces MockTransport instances which
+// are uniquely addressed and wired up to talk to each other.
+type MockNetwork struct {
+	transports map[string]*MockTransport
+	port       int
+}
+
+// NewTransport returns a new MockTransport with a unique address, wired up to
+// talk to the other transports in the MockNetwork.
+func (n *MockNetwork) NewTransport() *MockTransport {
+	n.port += 1
+	addr := fmt.Sprintf("127.0.0.1:%d", n.port)
+	transport := &MockTransport{
+		net:      n,
+		addr:     &MockAddress{addr},
+		packetCh: make(chan *Packet),
+		streamCh: make(chan net.Conn),
+	}
+
+	if n.transports == nil {
+		n.transports = make(map[string]*MockTransport)
+	}
+	n.transports[addr] = transport
+	return transport
+}
+
+// MockAddress is a wrapper which adds the net.Addr interface to our mock
+// address scheme.
+type MockAddress struct {
+	addr string
+}
+
+// See net.Addr.
+func (a *MockAddress) Network() string {
+	return "mock"
+}
+
+// See net.Addr.
+func (a *MockAddress) String() string {
+	return a.addr
+}
+
+// MockTransport directly plumbs messages to other transports its MockNetwork.
+type MockTransport struct {
+	net      *MockNetwork
+	addr     *MockAddress
+	packetCh chan *Packet
+	streamCh chan net.Conn
+}
+
+// See Transport.
+func (t *MockTransport) FinalAdvertiseAddr(string, int) (net.IP, int, error) {
+	host, portStr, err := net.SplitHostPort(t.addr.String())
+	if err != nil {
+		return nil, 0, err
+	}
+
+	ip := net.ParseIP(host)
+	if ip == nil {
+		return nil, 0, fmt.Errorf("Failed to parse IP %q", host)
+	}
+
+	port, err := strconv.ParseInt(portStr, 10, 16)
+	if err != nil {
+		return nil, 0, err
+	}
+
+	return ip, int(port), nil
+}
+
+// See Transport.
+func (t *MockTransport) WriteTo(b []byte, addr string) (time.Time, error) {
+	dest, ok := t.net.transports[addr]
+	if !ok {
+		return time.Time{}, fmt.Errorf("No route to %q", addr)
+	}
+
+	now := time.Now()
+	dest.packetCh <- &Packet{
+		Buf:       b,
+		From:      t.addr,
+		Timestamp: now,
+	}
+	return now, nil
+}
+
+// See Transport.
+func (t *MockTransport) PacketCh() <-chan *Packet {
+	return t.packetCh
+}
+
+// See Transport.
+func (t *MockTransport) DialTimeout(addr string, timeout time.Duration) (net.Conn, error) {
+	dest, ok := t.net.transports[addr]
+	if !ok {
+		return nil, fmt.Errorf("No route to %q", addr)
+	}
+
+	p1, p2 := net.Pipe()
+	dest.streamCh <- p1
+	return p2, nil
+}
+
+// See Transport.
+func (t *MockTransport) StreamCh() <-chan net.Conn {
+	return t.streamCh
+}
+
+// See Transport.
+func (t *MockTransport) Shutdown() error {
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/memberlist/net.go b/vendor/github.com/hashicorp/memberlist/net.go
new file mode 100644
index 0000000000..e0036d01d6
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/net.go
@@ -0,0 +1,1069 @@
+package memberlist
+
+import (
+	"bufio"
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"hash/crc32"
+	"io"
+	"net"
+	"time"
+
+	"github.com/armon/go-metrics"
+	"github.com/hashicorp/go-msgpack/codec"
+)
+
+// This is the minimum and maximum protocol version that we can
+// _understand_. We're allowed to speak at any version within this
+// range. This range is inclusive.
+const (
+	ProtocolVersionMin uint8 = 1
+
+	// Version 3 added support for TCP pings but we kept the default
+	// protocol version at 2 to ease transition to this new feature.
+	// A memberlist speaking version 2 of the protocol will attempt
+	// to TCP ping another memberlist who understands version 3 or
+	// greater.
+	//
+	// Version 4 added support for nacks as part of indirect probes.
+	// A memberlist speaking version 2 of the protocol will expect
+	// nacks from another memberlist who understands version 4 or
+	// greater, and likewise nacks will be sent to memberlists who
+	// understand version 4 or greater.
+	ProtocolVersion2Compatible = 2
+
+	ProtocolVersionMax = 5
+)
+
+// messageType is an integer ID of a type of message that can be received
+// on network channels from other members.
+type messageType uint8
+
+// The list of available message types.
+const (
+	pingMsg messageType = iota
+	indirectPingMsg
+	ackRespMsg
+	suspectMsg
+	aliveMsg
+	deadMsg
+	pushPullMsg
+	compoundMsg
+	userMsg // User mesg, not handled by us
+	compressMsg
+	encryptMsg
+	nackRespMsg
+	hasCrcMsg
+)
+
+// compressionType is used to specify the compression algorithm
+type compressionType uint8
+
+const (
+	lzwAlgo compressionType = iota
+)
+
+const (
+	MetaMaxSize            = 512 // Maximum size for node meta data
+	compoundHeaderOverhead = 2   // Assumed header overhead
+	compoundOverhead       = 2   // Assumed overhead per entry in compoundHeader
+	userMsgOverhead        = 1
+	blockingWarning        = 10 * time.Millisecond // Warn if a UDP packet takes this long to process
+	maxPushStateBytes      = 10 * 1024 * 1024
+)
+
+// ping request sent directly to node
+type ping struct {
+	SeqNo uint32
+
+	// Node is sent so the target can verify they are
+	// the intended recipient. This is to protect again an agent
+	// restart with a new name.
+	Node string
+}
+
+// indirect ping sent to an indirect ndoe
+type indirectPingReq struct {
+	SeqNo  uint32
+	Target []byte
+	Port   uint16
+	Node   string
+	Nack   bool // true if we'd like a nack back
+}
+
+// ack response is sent for a ping
+type ackResp struct {
+	SeqNo   uint32
+	Payload []byte
+}
+
+// nack response is sent for an indirect ping when the pinger doesn't hear from
+// the ping-ee within the configured timeout. This lets the original node know
+// that the indirect ping attempt happened but didn't succeed.
+type nackResp struct {
+	SeqNo uint32
+}
+
+// suspect is broadcast when we suspect a node is dead
+type suspect struct {
+	Incarnation uint32
+	Node        string
+	From        string // Include who is suspecting
+}
+
+// alive is broadcast when we know a node is alive.
+// Overloaded for nodes joining
+type alive struct {
+	Incarnation uint32
+	Node        string
+	Addr        []byte
+	Port        uint16
+	Meta        []byte
+
+	// The versions of the protocol/delegate that are being spoken, order:
+	// pmin, pmax, pcur, dmin, dmax, dcur
+	Vsn []uint8
+}
+
+// dead is broadcast when we confirm a node is dead
+// Overloaded for nodes leaving
+type dead struct {
+	Incarnation uint32
+	Node        string
+	From        string // Include who is suspecting
+}
+
+// pushPullHeader is used to inform the
+// otherside how many states we are transferring
+type pushPullHeader struct {
+	Nodes        int
+	UserStateLen int  // Encodes the byte lengh of user state
+	Join         bool // Is this a join request or a anti-entropy run
+}
+
+// userMsgHeader is used to encapsulate a userMsg
+type userMsgHeader struct {
+	UserMsgLen int // Encodes the byte lengh of user state
+}
+
+// pushNodeState is used for pushPullReq when we are
+// transferring out node states
+type pushNodeState struct {
+	Name        string
+	Addr        []byte
+	Port        uint16
+	Meta        []byte
+	Incarnation uint32
+	State       nodeStateType
+	Vsn         []uint8 // Protocol versions
+}
+
+// compress is used to wrap an underlying payload
+// using a specified compression algorithm
+type compress struct {
+	Algo compressionType
+	Buf  []byte
+}
+
+// msgHandoff is used to transfer a message between goroutines
+type msgHandoff struct {
+	msgType messageType
+	buf     []byte
+	from    net.Addr
+}
+
+// encryptionVersion returns the encryption version to use
+func (m *Memberlist) encryptionVersion() encryptionVersion {
+	switch m.ProtocolVersion() {
+	case 1:
+		return 0
+	default:
+		return 1
+	}
+}
+
+// streamListen is a long running goroutine that pulls incoming streams from the
+// transport and hands them off for processing.
+func (m *Memberlist) streamListen() {
+	for {
+		select {
+		case conn := <-m.transport.StreamCh():
+			go m.handleConn(conn)
+
+		case <-m.shutdownCh:
+			return
+		}
+	}
+}
+
+// handleConn handles a single incoming stream connection from the transport.
+func (m *Memberlist) handleConn(conn net.Conn) {
+	m.logger.Printf("[DEBUG] memberlist: Stream connection %s", LogConn(conn))
+
+	defer conn.Close()
+	metrics.IncrCounter([]string{"memberlist", "tcp", "accept"}, 1)
+
+	conn.SetDeadline(time.Now().Add(m.config.TCPTimeout))
+	msgType, bufConn, dec, err := m.readStream(conn)
+	if err != nil {
+		if err != io.EOF {
+			m.logger.Printf("[ERR] memberlist: failed to receive: %s %s", err, LogConn(conn))
+		}
+		return
+	}
+
+	switch msgType {
+	case userMsg:
+		if err := m.readUserMsg(bufConn, dec); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to receive user message: %s %s", err, LogConn(conn))
+		}
+	case pushPullMsg:
+		join, remoteNodes, userState, err := m.readRemoteState(bufConn, dec)
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to read remote state: %s %s", err, LogConn(conn))
+			return
+		}
+
+		if err := m.sendLocalState(conn, join); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to push local state: %s %s", err, LogConn(conn))
+			return
+		}
+
+		if err := m.mergeRemoteState(join, remoteNodes, userState); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed push/pull merge: %s %s", err, LogConn(conn))
+			return
+		}
+	case pingMsg:
+		var p ping
+		if err := dec.Decode(&p); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to decode ping: %s %s", err, LogConn(conn))
+			return
+		}
+
+		if p.Node != "" && p.Node != m.config.Name {
+			m.logger.Printf("[WARN] memberlist: Got ping for unexpected node %s %s", p.Node, LogConn(conn))
+			return
+		}
+
+		ack := ackResp{p.SeqNo, nil}
+		out, err := encode(ackRespMsg, &ack)
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to encode ack: %s", err)
+			return
+		}
+
+		err = m.rawSendMsgStream(conn, out.Bytes())
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to send ack: %s %s", err, LogConn(conn))
+			return
+		}
+	default:
+		m.logger.Printf("[ERR] memberlist: Received invalid msgType (%d) %s", msgType, LogConn(conn))
+	}
+}
+
+// packetListen is a long running goroutine that pulls packets out of the
+// transport and hands them off for processing.
+func (m *Memberlist) packetListen() {
+	for {
+		select {
+		case packet := <-m.transport.PacketCh():
+			m.ingestPacket(packet.Buf, packet.From, packet.Timestamp)
+
+		case <-m.shutdownCh:
+			return
+		}
+	}
+}
+
+func (m *Memberlist) ingestPacket(buf []byte, from net.Addr, timestamp time.Time) {
+	// Check if encryption is enabled
+	if m.config.EncryptionEnabled() {
+		// Decrypt the payload
+		plain, err := decryptPayload(m.config.Keyring.GetKeys(), buf, nil)
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Decrypt packet failed: %v %s", err, LogAddress(from))
+			return
+		}
+
+		// Continue processing the plaintext buffer
+		buf = plain
+	}
+
+	// See if there's a checksum included to verify the contents of the message
+	if len(buf) >= 5 && messageType(buf[0]) == hasCrcMsg {
+		crc := crc32.ChecksumIEEE(buf[5:])
+		expected := binary.BigEndian.Uint32(buf[1:5])
+		if crc != expected {
+			m.logger.Printf("[WARN] memberlist: Got invalid checksum for UDP packet: %x, %x", crc, expected)
+			return
+		}
+		m.handleCommand(buf[5:], from, timestamp)
+	} else {
+		m.handleCommand(buf, from, timestamp)
+	}
+}
+
+func (m *Memberlist) handleCommand(buf []byte, from net.Addr, timestamp time.Time) {
+	// Decode the message type
+	msgType := messageType(buf[0])
+	buf = buf[1:]
+
+	// Switch on the msgType
+	switch msgType {
+	case compoundMsg:
+		m.handleCompound(buf, from, timestamp)
+	case compressMsg:
+		m.handleCompressed(buf, from, timestamp)
+
+	case pingMsg:
+		m.handlePing(buf, from)
+	case indirectPingMsg:
+		m.handleIndirectPing(buf, from)
+	case ackRespMsg:
+		m.handleAck(buf, from, timestamp)
+	case nackRespMsg:
+		m.handleNack(buf, from)
+
+	case suspectMsg:
+		fallthrough
+	case aliveMsg:
+		fallthrough
+	case deadMsg:
+		fallthrough
+	case userMsg:
+		select {
+		case m.handoff <- msgHandoff{msgType, buf, from}:
+		default:
+			m.logger.Printf("[WARN] memberlist: handler queue full, dropping message (%d) %s", msgType, LogAddress(from))
+		}
+
+	default:
+		m.logger.Printf("[ERR] memberlist: msg type (%d) not supported %s", msgType, LogAddress(from))
+	}
+}
+
+// packetHandler is a long running goroutine that processes messages received
+// over the packet interface, but is decoupled from the listener to avoid
+// blocking the listener which may cause ping/ack messages to be delayed.
+func (m *Memberlist) packetHandler() {
+	for {
+		select {
+		case msg := <-m.handoff:
+			msgType := msg.msgType
+			buf := msg.buf
+			from := msg.from
+
+			switch msgType {
+			case suspectMsg:
+				m.handleSuspect(buf, from)
+			case aliveMsg:
+				m.handleAlive(buf, from)
+			case deadMsg:
+				m.handleDead(buf, from)
+			case userMsg:
+				m.handleUser(buf, from)
+			default:
+				m.logger.Printf("[ERR] memberlist: Message type (%d) not supported %s (packet handler)", msgType, LogAddress(from))
+			}
+
+		case <-m.shutdownCh:
+			return
+		}
+	}
+}
+
+func (m *Memberlist) handleCompound(buf []byte, from net.Addr, timestamp time.Time) {
+	// Decode the parts
+	trunc, parts, err := decodeCompoundMessage(buf)
+	if err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode compound request: %s %s", err, LogAddress(from))
+		return
+	}
+
+	// Log any truncation
+	if trunc > 0 {
+		m.logger.Printf("[WARN] memberlist: Compound request had %d truncated messages %s", trunc, LogAddress(from))
+	}
+
+	// Handle each message
+	for _, part := range parts {
+		m.handleCommand(part, from, timestamp)
+	}
+}
+
+func (m *Memberlist) handlePing(buf []byte, from net.Addr) {
+	var p ping
+	if err := decode(buf, &p); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode ping request: %s %s", err, LogAddress(from))
+		return
+	}
+	// If node is provided, verify that it is for us
+	if p.Node != "" && p.Node != m.config.Name {
+		m.logger.Printf("[WARN] memberlist: Got ping for unexpected node '%s' %s", p.Node, LogAddress(from))
+		return
+	}
+	var ack ackResp
+	ack.SeqNo = p.SeqNo
+	if m.config.Ping != nil {
+		ack.Payload = m.config.Ping.AckPayload()
+	}
+	if err := m.encodeAndSendMsg(from.String(), ackRespMsg, &ack); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to send ack: %s %s", err, LogAddress(from))
+	}
+}
+
+func (m *Memberlist) handleIndirectPing(buf []byte, from net.Addr) {
+	var ind indirectPingReq
+	if err := decode(buf, &ind); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode indirect ping request: %s %s", err, LogAddress(from))
+		return
+	}
+
+	// For proto versions < 2, there is no port provided. Mask old
+	// behavior by using the configured port.
+	if m.ProtocolVersion() < 2 || ind.Port == 0 {
+		ind.Port = uint16(m.config.BindPort)
+	}
+
+	// Send a ping to the correct host.
+	localSeqNo := m.nextSeqNo()
+	ping := ping{SeqNo: localSeqNo, Node: ind.Node}
+
+	// Setup a response handler to relay the ack
+	cancelCh := make(chan struct{})
+	respHandler := func(payload []byte, timestamp time.Time) {
+		// Try to prevent the nack if we've caught it in time.
+		close(cancelCh)
+
+		// Forward the ack back to the requestor.
+		ack := ackResp{ind.SeqNo, nil}
+		if err := m.encodeAndSendMsg(from.String(), ackRespMsg, &ack); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to forward ack: %s %s", err, LogAddress(from))
+		}
+	}
+	m.setAckHandler(localSeqNo, respHandler, m.config.ProbeTimeout)
+
+	// Send the ping.
+	addr := joinHostPort(net.IP(ind.Target).String(), ind.Port)
+	if err := m.encodeAndSendMsg(addr, pingMsg, &ping); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to send ping: %s %s", err, LogAddress(from))
+	}
+
+	// Setup a timer to fire off a nack if no ack is seen in time.
+	if ind.Nack {
+		go func() {
+			select {
+			case <-cancelCh:
+				return
+			case <-time.After(m.config.ProbeTimeout):
+				nack := nackResp{ind.SeqNo}
+				if err := m.encodeAndSendMsg(from.String(), nackRespMsg, &nack); err != nil {
+					m.logger.Printf("[ERR] memberlist: Failed to send nack: %s %s", err, LogAddress(from))
+				}
+			}
+		}()
+	}
+}
+
+func (m *Memberlist) handleAck(buf []byte, from net.Addr, timestamp time.Time) {
+	var ack ackResp
+	if err := decode(buf, &ack); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode ack response: %s %s", err, LogAddress(from))
+		return
+	}
+	m.invokeAckHandler(ack, timestamp)
+}
+
+func (m *Memberlist) handleNack(buf []byte, from net.Addr) {
+	var nack nackResp
+	if err := decode(buf, &nack); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode nack response: %s %s", err, LogAddress(from))
+		return
+	}
+	m.invokeNackHandler(nack)
+}
+
+func (m *Memberlist) handleSuspect(buf []byte, from net.Addr) {
+	var sus suspect
+	if err := decode(buf, &sus); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode suspect message: %s %s", err, LogAddress(from))
+		return
+	}
+	m.suspectNode(&sus)
+}
+
+func (m *Memberlist) handleAlive(buf []byte, from net.Addr) {
+	var live alive
+	if err := decode(buf, &live); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode alive message: %s %s", err, LogAddress(from))
+		return
+	}
+
+	// For proto versions < 2, there is no port provided. Mask old
+	// behavior by using the configured port
+	if m.ProtocolVersion() < 2 || live.Port == 0 {
+		live.Port = uint16(m.config.BindPort)
+	}
+
+	m.aliveNode(&live, nil, false)
+}
+
+func (m *Memberlist) handleDead(buf []byte, from net.Addr) {
+	var d dead
+	if err := decode(buf, &d); err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decode dead message: %s %s", err, LogAddress(from))
+		return
+	}
+	m.deadNode(&d)
+}
+
+// handleUser is used to notify channels of incoming user data
+func (m *Memberlist) handleUser(buf []byte, from net.Addr) {
+	d := m.config.Delegate
+	if d != nil {
+		d.NotifyMsg(buf)
+	}
+}
+
+// handleCompressed is used to unpack a compressed message
+func (m *Memberlist) handleCompressed(buf []byte, from net.Addr, timestamp time.Time) {
+	// Try to decode the payload
+	payload, err := decompressPayload(buf)
+	if err != nil {
+		m.logger.Printf("[ERR] memberlist: Failed to decompress payload: %v %s", err, LogAddress(from))
+		return
+	}
+
+	// Recursively handle the payload
+	m.handleCommand(payload, from, timestamp)
+}
+
+// encodeAndSendMsg is used to combine the encoding and sending steps
+func (m *Memberlist) encodeAndSendMsg(addr string, msgType messageType, msg interface{}) error {
+	out, err := encode(msgType, msg)
+	if err != nil {
+		return err
+	}
+	if err := m.sendMsg(addr, out.Bytes()); err != nil {
+		return err
+	}
+	return nil
+}
+
+// sendMsg is used to send a message via packet to another host. It will
+// opportunistically create a compoundMsg and piggy back other broadcasts.
+func (m *Memberlist) sendMsg(addr string, msg []byte) error {
+	// Check if we can piggy back any messages
+	bytesAvail := m.config.UDPBufferSize - len(msg) - compoundHeaderOverhead
+	if m.config.EncryptionEnabled() {
+		bytesAvail -= encryptOverhead(m.encryptionVersion())
+	}
+	extra := m.getBroadcasts(compoundOverhead, bytesAvail)
+
+	// Fast path if nothing to piggypack
+	if len(extra) == 0 {
+		return m.rawSendMsgPacket(addr, nil, msg)
+	}
+
+	// Join all the messages
+	msgs := make([][]byte, 0, 1+len(extra))
+	msgs = append(msgs, msg)
+	msgs = append(msgs, extra...)
+
+	// Create a compound message
+	compound := makeCompoundMessage(msgs)
+
+	// Send the message
+	return m.rawSendMsgPacket(addr, nil, compound.Bytes())
+}
+
+// rawSendMsgPacket is used to send message via packet to another host without
+// modification, other than compression or encryption if enabled.
+func (m *Memberlist) rawSendMsgPacket(addr string, node *Node, msg []byte) error {
+	// Check if we have compression enabled
+	if m.config.EnableCompression {
+		buf, err := compressPayload(msg)
+		if err != nil {
+			m.logger.Printf("[WARN] memberlist: Failed to compress payload: %v", err)
+		} else {
+			// Only use compression if it reduced the size
+			if buf.Len() < len(msg) {
+				msg = buf.Bytes()
+			}
+		}
+	}
+
+	// Try to look up the destination node
+	if node == nil {
+		toAddr, _, err := net.SplitHostPort(addr)
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to parse address %q: %v", addr, err)
+			return err
+		}
+		m.nodeLock.RLock()
+		nodeState, ok := m.nodeMap[toAddr]
+		m.nodeLock.RUnlock()
+		if ok {
+			node = &nodeState.Node
+		}
+	}
+
+	// Add a CRC to the end of the payload if the recipient understands
+	// ProtocolVersion >= 5
+	if node != nil && node.PMax >= 5 {
+		crc := crc32.ChecksumIEEE(msg)
+		header := make([]byte, 5, 5+len(msg))
+		header[0] = byte(hasCrcMsg)
+		binary.BigEndian.PutUint32(header[1:], crc)
+		msg = append(header, msg...)
+	}
+
+	// Check if we have encryption enabled
+	if m.config.EncryptionEnabled() {
+		// Encrypt the payload
+		var buf bytes.Buffer
+		primaryKey := m.config.Keyring.GetPrimaryKey()
+		err := encryptPayload(m.encryptionVersion(), primaryKey, msg, nil, &buf)
+		if err != nil {
+			m.logger.Printf("[ERR] memberlist: Encryption of message failed: %v", err)
+			return err
+		}
+		msg = buf.Bytes()
+	}
+
+	metrics.IncrCounter([]string{"memberlist", "udp", "sent"}, float32(len(msg)))
+	_, err := m.transport.WriteTo(msg, addr)
+	return err
+}
+
+// rawSendMsgStream is used to stream a message to another host without
+// modification, other than applying compression and encryption if enabled.
+func (m *Memberlist) rawSendMsgStream(conn net.Conn, sendBuf []byte) error {
+	// Check if compresion is enabled
+	if m.config.EnableCompression {
+		compBuf, err := compressPayload(sendBuf)
+		if err != nil {
+			m.logger.Printf("[ERROR] memberlist: Failed to compress payload: %v", err)
+		} else {
+			sendBuf = compBuf.Bytes()
+		}
+	}
+
+	// Check if encryption is enabled
+	if m.config.EncryptionEnabled() {
+		crypt, err := m.encryptLocalState(sendBuf)
+		if err != nil {
+			m.logger.Printf("[ERROR] memberlist: Failed to encrypt local state: %v", err)
+			return err
+		}
+		sendBuf = crypt
+	}
+
+	// Write out the entire send buffer
+	metrics.IncrCounter([]string{"memberlist", "tcp", "sent"}, float32(len(sendBuf)))
+
+	if n, err := conn.Write(sendBuf); err != nil {
+		return err
+	} else if n != len(sendBuf) {
+		return fmt.Errorf("only %d of %d bytes written", n, len(sendBuf))
+	}
+
+	return nil
+}
+
+// sendUserMsg is used to stream a user message to another host.
+func (m *Memberlist) sendUserMsg(addr string, sendBuf []byte) error {
+	conn, err := m.transport.DialTimeout(addr, m.config.TCPTimeout)
+	if err != nil {
+		return err
+	}
+	defer conn.Close()
+
+	bufConn := bytes.NewBuffer(nil)
+	if err := bufConn.WriteByte(byte(userMsg)); err != nil {
+		return err
+	}
+
+	header := userMsgHeader{UserMsgLen: len(sendBuf)}
+	hd := codec.MsgpackHandle{}
+	enc := codec.NewEncoder(bufConn, &hd)
+	if err := enc.Encode(&header); err != nil {
+		return err
+	}
+	if _, err := bufConn.Write(sendBuf); err != nil {
+		return err
+	}
+	return m.rawSendMsgStream(conn, bufConn.Bytes())
+}
+
+// sendAndReceiveState is used to initiate a push/pull over a stream with a
+// remote host.
+func (m *Memberlist) sendAndReceiveState(addr string, join bool) ([]pushNodeState, []byte, error) {
+	// Attempt to connect
+	conn, err := m.transport.DialTimeout(addr, m.config.TCPTimeout)
+	if err != nil {
+		return nil, nil, err
+	}
+	defer conn.Close()
+	m.logger.Printf("[DEBUG] memberlist: Initiating push/pull sync with: %s", conn.RemoteAddr())
+	metrics.IncrCounter([]string{"memberlist", "tcp", "connect"}, 1)
+
+	// Send our state
+	if err := m.sendLocalState(conn, join); err != nil {
+		return nil, nil, err
+	}
+
+	conn.SetDeadline(time.Now().Add(m.config.TCPTimeout))
+	msgType, bufConn, dec, err := m.readStream(conn)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	// Quit if not push/pull
+	if msgType != pushPullMsg {
+		err := fmt.Errorf("received invalid msgType (%d), expected pushPullMsg (%d) %s", msgType, pushPullMsg, LogConn(conn))
+		return nil, nil, err
+	}
+
+	// Read remote state
+	_, remoteNodes, userState, err := m.readRemoteState(bufConn, dec)
+	return remoteNodes, userState, err
+}
+
+// sendLocalState is invoked to send our local state over a stream connection.
+func (m *Memberlist) sendLocalState(conn net.Conn, join bool) error {
+	// Setup a deadline
+	conn.SetDeadline(time.Now().Add(m.config.TCPTimeout))
+
+	// Prepare the local node state
+	m.nodeLock.RLock()
+	localNodes := make([]pushNodeState, len(m.nodes))
+	for idx, n := range m.nodes {
+		localNodes[idx].Name = n.Name
+		localNodes[idx].Addr = n.Addr
+		localNodes[idx].Port = n.Port
+		localNodes[idx].Incarnation = n.Incarnation
+		localNodes[idx].State = n.State
+		localNodes[idx].Meta = n.Meta
+		localNodes[idx].Vsn = []uint8{
+			n.PMin, n.PMax, n.PCur,
+			n.DMin, n.DMax, n.DCur,
+		}
+	}
+	m.nodeLock.RUnlock()
+
+	// Get the delegate state
+	var userData []byte
+	if m.config.Delegate != nil {
+		userData = m.config.Delegate.LocalState(join)
+	}
+
+	// Create a bytes buffer writer
+	bufConn := bytes.NewBuffer(nil)
+
+	// Send our node state
+	header := pushPullHeader{Nodes: len(localNodes), UserStateLen: len(userData), Join: join}
+	hd := codec.MsgpackHandle{}
+	enc := codec.NewEncoder(bufConn, &hd)
+
+	// Begin state push
+	if _, err := bufConn.Write([]byte{byte(pushPullMsg)}); err != nil {
+		return err
+	}
+
+	if err := enc.Encode(&header); err != nil {
+		return err
+	}
+	for i := 0; i < header.Nodes; i++ {
+		if err := enc.Encode(&localNodes[i]); err != nil {
+			return err
+		}
+	}
+
+	// Write the user state as well
+	if userData != nil {
+		if _, err := bufConn.Write(userData); err != nil {
+			return err
+		}
+	}
+
+	// Get the send buffer
+	return m.rawSendMsgStream(conn, bufConn.Bytes())
+}
+
+// encryptLocalState is used to help encrypt local state before sending
+func (m *Memberlist) encryptLocalState(sendBuf []byte) ([]byte, error) {
+	var buf bytes.Buffer
+
+	// Write the encryptMsg byte
+	buf.WriteByte(byte(encryptMsg))
+
+	// Write the size of the message
+	sizeBuf := make([]byte, 4)
+	encVsn := m.encryptionVersion()
+	encLen := encryptedLength(encVsn, len(sendBuf))
+	binary.BigEndian.PutUint32(sizeBuf, uint32(encLen))
+	buf.Write(sizeBuf)
+
+	// Write the encrypted cipher text to the buffer
+	key := m.config.Keyring.GetPrimaryKey()
+	err := encryptPayload(encVsn, key, sendBuf, buf.Bytes()[:5], &buf)
+	if err != nil {
+		return nil, err
+	}
+	return buf.Bytes(), nil
+}
+
+// decryptRemoteState is used to help decrypt the remote state
+func (m *Memberlist) decryptRemoteState(bufConn io.Reader) ([]byte, error) {
+	// Read in enough to determine message length
+	cipherText := bytes.NewBuffer(nil)
+	cipherText.WriteByte(byte(encryptMsg))
+	_, err := io.CopyN(cipherText, bufConn, 4)
+	if err != nil {
+		return nil, err
+	}
+
+	// Ensure we aren't asked to download too much. This is to guard against
+	// an attack vector where a huge amount of state is sent
+	moreBytes := binary.BigEndian.Uint32(cipherText.Bytes()[1:5])
+	if moreBytes > maxPushStateBytes {
+		return nil, fmt.Errorf("Remote node state is larger than limit (%d)", moreBytes)
+	}
+
+	// Read in the rest of the payload
+	_, err = io.CopyN(cipherText, bufConn, int64(moreBytes))
+	if err != nil {
+		return nil, err
+	}
+
+	// Decrypt the cipherText
+	dataBytes := cipherText.Bytes()[:5]
+	cipherBytes := cipherText.Bytes()[5:]
+
+	// Decrypt the payload
+	keys := m.config.Keyring.GetKeys()
+	return decryptPayload(keys, cipherBytes, dataBytes)
+}
+
+// readStream is used to read from a stream connection, decrypting and
+// decompressing the stream if necessary.
+func (m *Memberlist) readStream(conn net.Conn) (messageType, io.Reader, *codec.Decoder, error) {
+	// Created a buffered reader
+	var bufConn io.Reader = bufio.NewReader(conn)
+
+	// Read the message type
+	buf := [1]byte{0}
+	if _, err := bufConn.Read(buf[:]); err != nil {
+		return 0, nil, nil, err
+	}
+	msgType := messageType(buf[0])
+
+	// Check if the message is encrypted
+	if msgType == encryptMsg {
+		if !m.config.EncryptionEnabled() {
+			return 0, nil, nil,
+				fmt.Errorf("Remote state is encrypted and encryption is not configured")
+		}
+
+		plain, err := m.decryptRemoteState(bufConn)
+		if err != nil {
+			return 0, nil, nil, err
+		}
+
+		// Reset message type and bufConn
+		msgType = messageType(plain[0])
+		bufConn = bytes.NewReader(plain[1:])
+	} else if m.config.EncryptionEnabled() {
+		return 0, nil, nil,
+			fmt.Errorf("Encryption is configured but remote state is not encrypted")
+	}
+
+	// Get the msgPack decoders
+	hd := codec.MsgpackHandle{}
+	dec := codec.NewDecoder(bufConn, &hd)
+
+	// Check if we have a compressed message
+	if msgType == compressMsg {
+		var c compress
+		if err := dec.Decode(&c); err != nil {
+			return 0, nil, nil, err
+		}
+		decomp, err := decompressBuffer(&c)
+		if err != nil {
+			return 0, nil, nil, err
+		}
+
+		// Reset the message type
+		msgType = messageType(decomp[0])
+
+		// Create a new bufConn
+		bufConn = bytes.NewReader(decomp[1:])
+
+		// Create a new decoder
+		dec = codec.NewDecoder(bufConn, &hd)
+	}
+
+	return msgType, bufConn, dec, nil
+}
+
+// readRemoteState is used to read the remote state from a connection
+func (m *Memberlist) readRemoteState(bufConn io.Reader, dec *codec.Decoder) (bool, []pushNodeState, []byte, error) {
+	// Read the push/pull header
+	var header pushPullHeader
+	if err := dec.Decode(&header); err != nil {
+		return false, nil, nil, err
+	}
+
+	// Allocate space for the transfer
+	remoteNodes := make([]pushNodeState, header.Nodes)
+
+	// Try to decode all the states
+	for i := 0; i < header.Nodes; i++ {
+		if err := dec.Decode(&remoteNodes[i]); err != nil {
+			return false, nil, nil, err
+		}
+	}
+
+	// Read the remote user state into a buffer
+	var userBuf []byte
+	if header.UserStateLen > 0 {
+		userBuf = make([]byte, header.UserStateLen)
+		bytes, err := io.ReadAtLeast(bufConn, userBuf, header.UserStateLen)
+		if err == nil && bytes != header.UserStateLen {
+			err = fmt.Errorf(
+				"Failed to read full user state (%d / %d)",
+				bytes, header.UserStateLen)
+		}
+		if err != nil {
+			return false, nil, nil, err
+		}
+	}
+
+	// For proto versions < 2, there is no port provided. Mask old
+	// behavior by using the configured port
+	for idx := range remoteNodes {
+		if m.ProtocolVersion() < 2 || remoteNodes[idx].Port == 0 {
+			remoteNodes[idx].Port = uint16(m.config.BindPort)
+		}
+	}
+
+	return header.Join, remoteNodes, userBuf, nil
+}
+
+// mergeRemoteState is used to merge the remote state with our local state
+func (m *Memberlist) mergeRemoteState(join bool, remoteNodes []pushNodeState, userBuf []byte) error {
+	if err := m.verifyProtocol(remoteNodes); err != nil {
+		return err
+	}
+
+	// Invoke the merge delegate if any
+	if join && m.config.Merge != nil {
+		nodes := make([]*Node, len(remoteNodes))
+		for idx, n := range remoteNodes {
+			nodes[idx] = &Node{
+				Name: n.Name,
+				Addr: n.Addr,
+				Port: n.Port,
+				Meta: n.Meta,
+				PMin: n.Vsn[0],
+				PMax: n.Vsn[1],
+				PCur: n.Vsn[2],
+				DMin: n.Vsn[3],
+				DMax: n.Vsn[4],
+				DCur: n.Vsn[5],
+			}
+		}
+		if err := m.config.Merge.NotifyMerge(nodes); err != nil {
+			return err
+		}
+	}
+
+	// Merge the membership state
+	m.mergeState(remoteNodes)
+
+	// Invoke the delegate for user state
+	if userBuf != nil && m.config.Delegate != nil {
+		m.config.Delegate.MergeRemoteState(userBuf, join)
+	}
+	return nil
+}
+
+// readUserMsg is used to decode a userMsg from a stream.
+func (m *Memberlist) readUserMsg(bufConn io.Reader, dec *codec.Decoder) error {
+	// Read the user message header
+	var header userMsgHeader
+	if err := dec.Decode(&header); err != nil {
+		return err
+	}
+
+	// Read the user message into a buffer
+	var userBuf []byte
+	if header.UserMsgLen > 0 {
+		userBuf = make([]byte, header.UserMsgLen)
+		bytes, err := io.ReadAtLeast(bufConn, userBuf, header.UserMsgLen)
+		if err == nil && bytes != header.UserMsgLen {
+			err = fmt.Errorf(
+				"Failed to read full user message (%d / %d)",
+				bytes, header.UserMsgLen)
+		}
+		if err != nil {
+			return err
+		}
+
+		d := m.config.Delegate
+		if d != nil {
+			d.NotifyMsg(userBuf)
+		}
+	}
+
+	return nil
+}
+
+// sendPingAndWaitForAck makes a stream connection to the given address, sends
+// a ping, and waits for an ack. All of this is done as a series of blocking
+// operations, given the deadline. The bool return parameter is true if we
+// we able to round trip a ping to the other node.
+func (m *Memberlist) sendPingAndWaitForAck(addr string, ping ping, deadline time.Time) (bool, error) {
+	conn, err := m.transport.DialTimeout(addr, m.config.TCPTimeout)
+	if err != nil {
+		// If the node is actually dead we expect this to fail, so we
+		// shouldn't spam the logs with it. After this point, errors
+		// with the connection are real, unexpected errors and should
+		// get propagated up.
+		return false, nil
+	}
+	defer conn.Close()
+	conn.SetDeadline(deadline)
+
+	out, err := encode(pingMsg, &ping)
+	if err != nil {
+		return false, err
+	}
+
+	if err = m.rawSendMsgStream(conn, out.Bytes()); err != nil {
+		return false, err
+	}
+
+	msgType, _, dec, err := m.readStream(conn)
+	if err != nil {
+		return false, err
+	}
+
+	if msgType != ackRespMsg {
+		return false, fmt.Errorf("Unexpected msgType (%d) from ping %s", msgType, LogConn(conn))
+	}
+
+	var ack ackResp
+	if err = dec.Decode(&ack); err != nil {
+		return false, err
+	}
+
+	if ack.SeqNo != ping.SeqNo {
+		return false, fmt.Errorf("Sequence number from ack (%d) doesn't match ping (%d)", ack.SeqNo, ping.SeqNo, LogConn(conn))
+	}
+
+	return true, nil
+}
diff --git a/vendor/github.com/hashicorp/memberlist/net_transport.go b/vendor/github.com/hashicorp/memberlist/net_transport.go
new file mode 100644
index 0000000000..e7b88b01f6
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/net_transport.go
@@ -0,0 +1,289 @@
+package memberlist
+
+import (
+	"fmt"
+	"log"
+	"net"
+	"sync"
+	"sync/atomic"
+	"time"
+
+	"github.com/armon/go-metrics"
+	sockaddr "github.com/hashicorp/go-sockaddr"
+)
+
+const (
+	// udpPacketBufSize is used to buffer incoming packets during read
+	// operations.
+	udpPacketBufSize = 65536
+
+	// udpRecvBufSize is a large buffer size that we attempt to set UDP
+	// sockets to in order to handle a large volume of messages.
+	udpRecvBufSize = 2 * 1024 * 1024
+)
+
+// NetTransportConfig is used to configure a net transport.
+type NetTransportConfig struct {
+	// BindAddrs is a list of addresses to bind to for both TCP and UDP
+	// communications.
+	BindAddrs []string
+
+	// BindPort is the port to listen on, for each address above.
+	BindPort int
+
+	// Logger is a logger for operator messages.
+	Logger *log.Logger
+}
+
+// NetTransport is a Transport implementation that uses connectionless UDP for
+// packet operations, and ad-hoc TCP connections for stream operations.
+type NetTransport struct {
+	config       *NetTransportConfig
+	packetCh     chan *Packet
+	streamCh     chan net.Conn
+	logger       *log.Logger
+	wg           sync.WaitGroup
+	tcpListeners []*net.TCPListener
+	udpListeners []*net.UDPConn
+	shutdown     int32
+}
+
+// NewNetTransport returns a net transport with the given configuration. On
+// success all the network listeners will be created and listening.
+func NewNetTransport(config *NetTransportConfig) (*NetTransport, error) {
+	// If we reject the empty list outright we can assume that there's at
+	// least one listener of each type later during operation.
+	if len(config.BindAddrs) == 0 {
+		return nil, fmt.Errorf("At least one bind address is required")
+	}
+
+	// Build out the new transport.
+	var ok bool
+	t := NetTransport{
+		config:   config,
+		packetCh: make(chan *Packet),
+		streamCh: make(chan net.Conn),
+		logger:   config.Logger,
+	}
+
+	// Clean up listeners if there's an error.
+	defer func() {
+		if !ok {
+			t.Shutdown()
+		}
+	}()
+
+	// Build all the TCP and UDP listeners.
+	port := config.BindPort
+	for _, addr := range config.BindAddrs {
+		ip := net.ParseIP(addr)
+
+		tcpAddr := &net.TCPAddr{IP: ip, Port: port}
+		tcpLn, err := net.ListenTCP("tcp", tcpAddr)
+		if err != nil {
+			return nil, fmt.Errorf("Failed to start TCP listener on %q port %d: %v", addr, port, err)
+		}
+		t.tcpListeners = append(t.tcpListeners, tcpLn)
+
+		// If the config port given was zero, use the first TCP listener
+		// to pick an available port and then apply that to everything
+		// else.
+		if port == 0 {
+			port = tcpLn.Addr().(*net.TCPAddr).Port
+		}
+
+		udpAddr := &net.UDPAddr{IP: ip, Port: port}
+		udpLn, err := net.ListenUDP("udp", udpAddr)
+		if err != nil {
+			return nil, fmt.Errorf("Failed to start UDP listener on %q port %d: %v", addr, port, err)
+		}
+		if err := setUDPRecvBuf(udpLn); err != nil {
+			return nil, fmt.Errorf("Failed to resize UDP buffer: %v", err)
+		}
+		t.udpListeners = append(t.udpListeners, udpLn)
+	}
+
+	// Fire them up now that we've been able to create them all.
+	for i := 0; i < len(config.BindAddrs); i++ {
+		t.wg.Add(2)
+		go t.tcpListen(t.tcpListeners[i])
+		go t.udpListen(t.udpListeners[i])
+	}
+
+	ok = true
+	return &t, nil
+}
+
+// GetAutoBindPort returns the bind port that was automatically given by the
+// kernel, if a bind port of 0 was given.
+func (t *NetTransport) GetAutoBindPort() int {
+	// We made sure there's at least one TCP listener, and that one's
+	// port was applied to all the others for the dynamic bind case.
+	return t.tcpListeners[0].Addr().(*net.TCPAddr).Port
+}
+
+// See Transport.
+func (t *NetTransport) FinalAdvertiseAddr(ip string, port int) (net.IP, int, error) {
+	var advertiseAddr net.IP
+	var advertisePort int
+	if ip != "" {
+		// If they've supplied an address, use that.
+		advertiseAddr = net.ParseIP(ip)
+		if advertiseAddr == nil {
+			return nil, 0, fmt.Errorf("Failed to parse advertise address %q", ip)
+		}
+
+		// Ensure IPv4 conversion if necessary.
+		if ip4 := advertiseAddr.To4(); ip4 != nil {
+			advertiseAddr = ip4
+		}
+		advertisePort = port
+	} else {
+		if t.config.BindAddrs[0] == "0.0.0.0" {
+			// Otherwise, if we're not bound to a specific IP, let's
+			// use a suitable private IP address.
+			var err error
+			ip, err = sockaddr.GetPrivateIP()
+			if err != nil {
+				return nil, 0, fmt.Errorf("Failed to get interface addresses: %v", err)
+			}
+			if ip == "" {
+				return nil, 0, fmt.Errorf("No private IP address found, and explicit IP not provided")
+			}
+
+			advertiseAddr = net.ParseIP(ip)
+			if advertiseAddr == nil {
+				return nil, 0, fmt.Errorf("Failed to parse advertise address: %q", ip)
+			}
+		} else {
+			// Use the IP that we're bound to, based on the first
+			// TCP listener, which we already ensure is there.
+			advertiseAddr = t.tcpListeners[0].Addr().(*net.TCPAddr).IP
+		}
+
+		// Use the port we are bound to.
+		advertisePort = t.GetAutoBindPort()
+	}
+
+	return advertiseAddr, advertisePort, nil
+}
+
+// See Transport.
+func (t *NetTransport) WriteTo(b []byte, addr string) (time.Time, error) {
+	udpAddr, err := net.ResolveUDPAddr("udp", addr)
+	if err != nil {
+		return time.Time{}, err
+	}
+
+	// We made sure there's at least one UDP listener, so just use the
+	// packet sending interface on the first one. Take the time after the
+	// write call comes back, which will underestimate the time a little,
+	// but help account for any delays before the write occurs.
+	_, err = t.udpListeners[0].WriteTo(b, udpAddr)
+	return time.Now(), err
+}
+
+// See Transport.
+func (t *NetTransport) PacketCh() <-chan *Packet {
+	return t.packetCh
+}
+
+// See Transport.
+func (t *NetTransport) DialTimeout(addr string, timeout time.Duration) (net.Conn, error) {
+	dialer := net.Dialer{Timeout: timeout}
+	return dialer.Dial("tcp", addr)
+}
+
+// See Transport.
+func (t *NetTransport) StreamCh() <-chan net.Conn {
+	return t.streamCh
+}
+
+// See Transport.
+func (t *NetTransport) Shutdown() error {
+	// This will avoid log spam about errors when we shut down.
+	atomic.StoreInt32(&t.shutdown, 1)
+
+	// Rip through all the connections and shut them down.
+	for _, conn := range t.tcpListeners {
+		conn.Close()
+	}
+	for _, conn := range t.udpListeners {
+		conn.Close()
+	}
+
+	// Block until all the listener threads have died.
+	t.wg.Wait()
+	return nil
+}
+
+// tcpListen is a long running goroutine that accepts incoming TCP connections
+// and hands them off to the stream channel.
+func (t *NetTransport) tcpListen(tcpLn *net.TCPListener) {
+	defer t.wg.Done()
+	for {
+		conn, err := tcpLn.AcceptTCP()
+		if err != nil {
+			if s := atomic.LoadInt32(&t.shutdown); s == 1 {
+				break
+			}
+
+			t.logger.Printf("[ERR] memberlist: Error accepting TCP connection: %v", err)
+			continue
+		}
+
+		t.streamCh <- conn
+	}
+}
+
+// udpListen is a long running goroutine that accepts incoming UDP packets and
+// hands them off to the packet channel.
+func (t *NetTransport) udpListen(udpLn *net.UDPConn) {
+	defer t.wg.Done()
+	for {
+		// Do a blocking read into a fresh buffer. Grab a time stamp as
+		// close as possible to the I/O.
+		buf := make([]byte, udpPacketBufSize)
+		n, addr, err := udpLn.ReadFrom(buf)
+		ts := time.Now()
+		if err != nil {
+			if s := atomic.LoadInt32(&t.shutdown); s == 1 {
+				break
+			}
+
+			t.logger.Printf("[ERR] memberlist: Error reading UDP packet: %v", err)
+			continue
+		}
+
+		// Check the length - it needs to have at least one byte to be a
+		// proper message.
+		if n < 1 {
+			t.logger.Printf("[ERR] memberlist: UDP packet too short (%d bytes) %s",
+				len(buf), LogAddress(addr))
+			continue
+		}
+
+		// Ingest the packet.
+		metrics.IncrCounter([]string{"memberlist", "udp", "received"}, float32(n))
+		t.packetCh <- &Packet{
+			Buf:       buf[:n],
+			From:      addr,
+			Timestamp: ts,
+		}
+	}
+}
+
+// setUDPRecvBuf is used to resize the UDP receive window. The function
+// attempts to set the read buffer to `udpRecvBuf` but backs off until
+// the read buffer can be set.
+func setUDPRecvBuf(c *net.UDPConn) error {
+	size := udpRecvBufSize
+	var err error
+	for size > 0 {
+		if err = c.SetReadBuffer(size); err == nil {
+			return nil
+		}
+		size = size / 2
+	}
+	return err
+}
diff --git a/vendor/github.com/hashicorp/memberlist/ping_delegate.go b/vendor/github.com/hashicorp/memberlist/ping_delegate.go
new file mode 100644
index 0000000000..1566c8b3d5
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/ping_delegate.go
@@ -0,0 +1,14 @@
+package memberlist
+
+import "time"
+
+// PingDelegate is used to notify an observer how long it took for a ping message to
+// complete a round trip.  It can also be used for writing arbitrary byte slices
+// into ack messages. Note that in order to be meaningful for RTT estimates, this
+// delegate does not apply to indirect pings, nor fallback pings sent over TCP.
+type PingDelegate interface {
+	// AckPayload is invoked when an ack is being sent; the returned bytes will be appended to the ack
+	AckPayload() []byte
+	// NotifyPing is invoked when an ack for a ping is received
+	NotifyPingComplete(other *Node, rtt time.Duration, payload []byte)
+}
diff --git a/vendor/github.com/hashicorp/memberlist/queue.go b/vendor/github.com/hashicorp/memberlist/queue.go
new file mode 100644
index 0000000000..994b90ff10
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/queue.go
@@ -0,0 +1,167 @@
+package memberlist
+
+import (
+	"sort"
+	"sync"
+)
+
+// TransmitLimitedQueue is used to queue messages to broadcast to
+// the cluster (via gossip) but limits the number of transmits per
+// message. It also prioritizes messages with lower transmit counts
+// (hence newer messages).
+type TransmitLimitedQueue struct {
+	// NumNodes returns the number of nodes in the cluster. This is
+	// used to determine the retransmit count, which is calculated
+	// based on the log of this.
+	NumNodes func() int
+
+	// RetransmitMult is the multiplier used to determine the maximum
+	// number of retransmissions attempted.
+	RetransmitMult int
+
+	sync.Mutex
+	bcQueue limitedBroadcasts
+}
+
+type limitedBroadcast struct {
+	transmits int // Number of transmissions attempted.
+	b         Broadcast
+}
+type limitedBroadcasts []*limitedBroadcast
+
+// Broadcast is something that can be broadcasted via gossip to
+// the memberlist cluster.
+type Broadcast interface {
+	// Invalidates checks if enqueuing the current broadcast
+	// invalidates a previous broadcast
+	Invalidates(b Broadcast) bool
+
+	// Returns a byte form of the message
+	Message() []byte
+
+	// Finished is invoked when the message will no longer
+	// be broadcast, either due to invalidation or to the
+	// transmit limit being reached
+	Finished()
+}
+
+// QueueBroadcast is used to enqueue a broadcast
+func (q *TransmitLimitedQueue) QueueBroadcast(b Broadcast) {
+	q.Lock()
+	defer q.Unlock()
+
+	// Check if this message invalidates another
+	n := len(q.bcQueue)
+	for i := 0; i < n; i++ {
+		if b.Invalidates(q.bcQueue[i].b) {
+			q.bcQueue[i].b.Finished()
+			copy(q.bcQueue[i:], q.bcQueue[i+1:])
+			q.bcQueue[n-1] = nil
+			q.bcQueue = q.bcQueue[:n-1]
+			n--
+		}
+	}
+
+	// Append to the queue
+	q.bcQueue = append(q.bcQueue, &limitedBroadcast{0, b})
+}
+
+// GetBroadcasts is used to get a number of broadcasts, up to a byte limit
+// and applying a per-message overhead as provided.
+func (q *TransmitLimitedQueue) GetBroadcasts(overhead, limit int) [][]byte {
+	q.Lock()
+	defer q.Unlock()
+
+	// Fast path the default case
+	if len(q.bcQueue) == 0 {
+		return nil
+	}
+
+	transmitLimit := retransmitLimit(q.RetransmitMult, q.NumNodes())
+	bytesUsed := 0
+	var toSend [][]byte
+
+	for i := len(q.bcQueue) - 1; i >= 0; i-- {
+		// Check if this is within our limits
+		b := q.bcQueue[i]
+		msg := b.b.Message()
+		if bytesUsed+overhead+len(msg) > limit {
+			continue
+		}
+
+		// Add to slice to send
+		bytesUsed += overhead + len(msg)
+		toSend = append(toSend, msg)
+
+		// Check if we should stop transmission
+		b.transmits++
+		if b.transmits >= transmitLimit {
+			b.b.Finished()
+			n := len(q.bcQueue)
+			q.bcQueue[i], q.bcQueue[n-1] = q.bcQueue[n-1], nil
+			q.bcQueue = q.bcQueue[:n-1]
+		}
+	}
+
+	// If we are sending anything, we need to re-sort to deal
+	// with adjusted transmit counts
+	if len(toSend) > 0 {
+		q.bcQueue.Sort()
+	}
+	return toSend
+}
+
+// NumQueued returns the number of queued messages
+func (q *TransmitLimitedQueue) NumQueued() int {
+	q.Lock()
+	defer q.Unlock()
+	return len(q.bcQueue)
+}
+
+// Reset clears all the queued messages
+func (q *TransmitLimitedQueue) Reset() {
+	q.Lock()
+	defer q.Unlock()
+	for _, b := range q.bcQueue {
+		b.b.Finished()
+	}
+	q.bcQueue = nil
+}
+
+// Prune will retain the maxRetain latest messages, and the rest
+// will be discarded. This can be used to prevent unbounded queue sizes
+func (q *TransmitLimitedQueue) Prune(maxRetain int) {
+	q.Lock()
+	defer q.Unlock()
+
+	// Do nothing if queue size is less than the limit
+	n := len(q.bcQueue)
+	if n < maxRetain {
+		return
+	}
+
+	// Invalidate the messages we will be removing
+	for i := 0; i < n-maxRetain; i++ {
+		q.bcQueue[i].b.Finished()
+	}
+
+	// Move the messages, and retain only the last maxRetain
+	copy(q.bcQueue[0:], q.bcQueue[n-maxRetain:])
+	q.bcQueue = q.bcQueue[:maxRetain]
+}
+
+func (b limitedBroadcasts) Len() int {
+	return len(b)
+}
+
+func (b limitedBroadcasts) Less(i, j int) bool {
+	return b[i].transmits < b[j].transmits
+}
+
+func (b limitedBroadcasts) Swap(i, j int) {
+	b[i], b[j] = b[j], b[i]
+}
+
+func (b limitedBroadcasts) Sort() {
+	sort.Sort(sort.Reverse(b))
+}
diff --git a/vendor/github.com/hashicorp/memberlist/security.go b/vendor/github.com/hashicorp/memberlist/security.go
new file mode 100644
index 0000000000..d90114eb0c
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/security.go
@@ -0,0 +1,198 @@
+package memberlist
+
+import (
+	"bytes"
+	"crypto/aes"
+	"crypto/cipher"
+	"crypto/rand"
+	"fmt"
+	"io"
+)
+
+/*
+
+Encrypted messages are prefixed with an encryptionVersion byte
+that is used for us to be able to properly encode/decode. We
+currently support the following versions:
+
+ 0 - AES-GCM 128, using PKCS7 padding
+ 1 - AES-GCM 128, no padding. Padding not needed, caused bloat.
+
+*/
+type encryptionVersion uint8
+
+const (
+	minEncryptionVersion encryptionVersion = 0
+	maxEncryptionVersion encryptionVersion = 1
+)
+
+const (
+	versionSize    = 1
+	nonceSize      = 12
+	tagSize        = 16
+	maxPadOverhead = 16
+	blockSize      = aes.BlockSize
+)
+
+// pkcs7encode is used to pad a byte buffer to a specific block size using
+// the PKCS7 algorithm. "Ignores" some bytes to compensate for IV
+func pkcs7encode(buf *bytes.Buffer, ignore, blockSize int) {
+	n := buf.Len() - ignore
+	more := blockSize - (n % blockSize)
+	for i := 0; i < more; i++ {
+		buf.WriteByte(byte(more))
+	}
+}
+
+// pkcs7decode is used to decode a buffer that has been padded
+func pkcs7decode(buf []byte, blockSize int) []byte {
+	if len(buf) == 0 {
+		panic("Cannot decode a PKCS7 buffer of zero length")
+	}
+	n := len(buf)
+	last := buf[n-1]
+	n -= int(last)
+	return buf[:n]
+}
+
+// encryptOverhead returns the maximum possible overhead of encryption by version
+func encryptOverhead(vsn encryptionVersion) int {
+	switch vsn {
+	case 0:
+		return 45 // Version: 1, IV: 12, Padding: 16, Tag: 16
+	case 1:
+		return 29 // Version: 1, IV: 12, Tag: 16
+	default:
+		panic("unsupported version")
+	}
+}
+
+// encryptedLength is used to compute the buffer size needed
+// for a message of given length
+func encryptedLength(vsn encryptionVersion, inp int) int {
+	// If we are on version 1, there is no padding
+	if vsn >= 1 {
+		return versionSize + nonceSize + inp + tagSize
+	}
+
+	// Determine the padding size
+	padding := blockSize - (inp % blockSize)
+
+	// Sum the extra parts to get total size
+	return versionSize + nonceSize + inp + padding + tagSize
+}
+
+// encryptPayload is used to encrypt a message with a given key.
+// We make use of AES-128 in GCM mode. New byte buffer is the version,
+// nonce, ciphertext and tag
+func encryptPayload(vsn encryptionVersion, key []byte, msg []byte, data []byte, dst *bytes.Buffer) error {
+	// Get the AES block cipher
+	aesBlock, err := aes.NewCipher(key)
+	if err != nil {
+		return err
+	}
+
+	// Get the GCM cipher mode
+	gcm, err := cipher.NewGCM(aesBlock)
+	if err != nil {
+		return err
+	}
+
+	// Grow the buffer to make room for everything
+	offset := dst.Len()
+	dst.Grow(encryptedLength(vsn, len(msg)))
+
+	// Write the encryption version
+	dst.WriteByte(byte(vsn))
+
+	// Add a random nonce
+	io.CopyN(dst, rand.Reader, nonceSize)
+	afterNonce := dst.Len()
+
+	// Ensure we are correctly padded (only version 0)
+	if vsn == 0 {
+		io.Copy(dst, bytes.NewReader(msg))
+		pkcs7encode(dst, offset+versionSize+nonceSize, aes.BlockSize)
+	}
+
+	// Encrypt message using GCM
+	slice := dst.Bytes()[offset:]
+	nonce := slice[versionSize : versionSize+nonceSize]
+
+	// Message source depends on the encryption version.
+	// Version 0 uses padding, version 1 does not
+	var src []byte
+	if vsn == 0 {
+		src = slice[versionSize+nonceSize:]
+	} else {
+		src = msg
+	}
+	out := gcm.Seal(nil, nonce, src, data)
+
+	// Truncate the plaintext, and write the cipher text
+	dst.Truncate(afterNonce)
+	dst.Write(out)
+	return nil
+}
+
+// decryptMessage performs the actual decryption of ciphertext. This is in its
+// own function to allow it to be called on all keys easily.
+func decryptMessage(key, msg []byte, data []byte) ([]byte, error) {
+	// Get the AES block cipher
+	aesBlock, err := aes.NewCipher(key)
+	if err != nil {
+		return nil, err
+	}
+
+	// Get the GCM cipher mode
+	gcm, err := cipher.NewGCM(aesBlock)
+	if err != nil {
+		return nil, err
+	}
+
+	// Decrypt the message
+	nonce := msg[versionSize : versionSize+nonceSize]
+	ciphertext := msg[versionSize+nonceSize:]
+	plain, err := gcm.Open(nil, nonce, ciphertext, data)
+	if err != nil {
+		return nil, err
+	}
+
+	// Success!
+	return plain, nil
+}
+
+// decryptPayload is used to decrypt a message with a given key,
+// and verify it's contents. Any padding will be removed, and a
+// slice to the plaintext is returned. Decryption is done IN PLACE!
+func decryptPayload(keys [][]byte, msg []byte, data []byte) ([]byte, error) {
+	// Ensure we have at least one byte
+	if len(msg) == 0 {
+		return nil, fmt.Errorf("Cannot decrypt empty payload")
+	}
+
+	// Verify the version
+	vsn := encryptionVersion(msg[0])
+	if vsn > maxEncryptionVersion {
+		return nil, fmt.Errorf("Unsupported encryption version %d", msg[0])
+	}
+
+	// Ensure the length is sane
+	if len(msg) < encryptedLength(vsn, 0) {
+		return nil, fmt.Errorf("Payload is too small to decrypt: %d", len(msg))
+	}
+
+	for _, key := range keys {
+		plain, err := decryptMessage(key, msg, data)
+		if err == nil {
+			// Remove the PKCS7 padding for vsn 0
+			if vsn == 0 {
+				return pkcs7decode(plain, aes.BlockSize), nil
+			} else {
+				return plain, nil
+			}
+		}
+	}
+
+	return nil, fmt.Errorf("No installed keys could decrypt the message")
+}
diff --git a/vendor/github.com/hashicorp/memberlist/state.go b/vendor/github.com/hashicorp/memberlist/state.go
new file mode 100644
index 0000000000..71bf6f34d2
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/state.go
@@ -0,0 +1,1160 @@
+package memberlist
+
+import (
+	"bytes"
+	"fmt"
+	"math"
+	"math/rand"
+	"net"
+	"sync/atomic"
+	"time"
+
+	"github.com/armon/go-metrics"
+)
+
+type nodeStateType int
+
+const (
+	stateAlive nodeStateType = iota
+	stateSuspect
+	stateDead
+)
+
+// Node represents a node in the cluster.
+type Node struct {
+	Name string
+	Addr net.IP
+	Port uint16
+	Meta []byte // Metadata from the delegate for this node.
+	PMin uint8  // Minimum protocol version this understands
+	PMax uint8  // Maximum protocol version this understands
+	PCur uint8  // Current version node is speaking
+	DMin uint8  // Min protocol version for the delegate to understand
+	DMax uint8  // Max protocol version for the delegate to understand
+	DCur uint8  // Current version delegate is speaking
+}
+
+// Address returns the host:port form of a node's address, suitable for use
+// with a transport.
+func (n *Node) Address() string {
+	return joinHostPort(n.Addr.String(), n.Port)
+}
+
+// NodeState is used to manage our state view of another node
+type nodeState struct {
+	Node
+	Incarnation uint32        // Last known incarnation number
+	State       nodeStateType // Current state
+	StateChange time.Time     // Time last state change happened
+}
+
+// Address returns the host:port form of a node's address, suitable for use
+// with a transport.
+func (n *nodeState) Address() string {
+	return n.Node.Address()
+}
+
+// ackHandler is used to register handlers for incoming acks and nacks.
+type ackHandler struct {
+	ackFn  func([]byte, time.Time)
+	nackFn func()
+	timer  *time.Timer
+}
+
+// NoPingResponseError is used to indicate a 'ping' packet was
+// successfully issued but no response was received
+type NoPingResponseError struct {
+	node string
+}
+
+func (f NoPingResponseError) Error() string {
+	return fmt.Sprintf("No response from node %s", f.node)
+}
+
+// Schedule is used to ensure the Tick is performed periodically. This
+// function is safe to call multiple times. If the memberlist is already
+// scheduled, then it won't do anything.
+func (m *Memberlist) schedule() {
+	m.tickerLock.Lock()
+	defer m.tickerLock.Unlock()
+
+	// If we already have tickers, then don't do anything, since we're
+	// scheduled
+	if len(m.tickers) > 0 {
+		return
+	}
+
+	// Create the stop tick channel, a blocking channel. We close this
+	// when we should stop the tickers.
+	stopCh := make(chan struct{})
+
+	// Create a new probeTicker
+	if m.config.ProbeInterval > 0 {
+		t := time.NewTicker(m.config.ProbeInterval)
+		go m.triggerFunc(m.config.ProbeInterval, t.C, stopCh, m.probe)
+		m.tickers = append(m.tickers, t)
+	}
+
+	// Create a push pull ticker if needed
+	if m.config.PushPullInterval > 0 {
+		go m.pushPullTrigger(stopCh)
+	}
+
+	// Create a gossip ticker if needed
+	if m.config.GossipInterval > 0 && m.config.GossipNodes > 0 {
+		t := time.NewTicker(m.config.GossipInterval)
+		go m.triggerFunc(m.config.GossipInterval, t.C, stopCh, m.gossip)
+		m.tickers = append(m.tickers, t)
+	}
+
+	// If we made any tickers, then record the stopTick channel for
+	// later.
+	if len(m.tickers) > 0 {
+		m.stopTick = stopCh
+	}
+}
+
+// triggerFunc is used to trigger a function call each time a
+// message is received until a stop tick arrives.
+func (m *Memberlist) triggerFunc(stagger time.Duration, C <-chan time.Time, stop <-chan struct{}, f func()) {
+	// Use a random stagger to avoid syncronizing
+	randStagger := time.Duration(uint64(rand.Int63()) % uint64(stagger))
+	select {
+	case <-time.After(randStagger):
+	case <-stop:
+		return
+	}
+	for {
+		select {
+		case <-C:
+			f()
+		case <-stop:
+			return
+		}
+	}
+}
+
+// pushPullTrigger is used to periodically trigger a push/pull until
+// a stop tick arrives. We don't use triggerFunc since the push/pull
+// timer is dynamically scaled based on cluster size to avoid network
+// saturation
+func (m *Memberlist) pushPullTrigger(stop <-chan struct{}) {
+	interval := m.config.PushPullInterval
+
+	// Use a random stagger to avoid syncronizing
+	randStagger := time.Duration(uint64(rand.Int63()) % uint64(interval))
+	select {
+	case <-time.After(randStagger):
+	case <-stop:
+		return
+	}
+
+	// Tick using a dynamic timer
+	for {
+		tickTime := pushPullScale(interval, m.estNumNodes())
+		select {
+		case <-time.After(tickTime):
+			m.pushPull()
+		case <-stop:
+			return
+		}
+	}
+}
+
+// Deschedule is used to stop the background maintenance. This is safe
+// to call multiple times.
+func (m *Memberlist) deschedule() {
+	m.tickerLock.Lock()
+	defer m.tickerLock.Unlock()
+
+	// If we have no tickers, then we aren't scheduled.
+	if len(m.tickers) == 0 {
+		return
+	}
+
+	// Close the stop channel so all the ticker listeners stop.
+	close(m.stopTick)
+
+	// Explicitly stop all the tickers themselves so they don't take
+	// up any more resources, and get rid of the list.
+	for _, t := range m.tickers {
+		t.Stop()
+	}
+	m.tickers = nil
+}
+
+// Tick is used to perform a single round of failure detection and gossip
+func (m *Memberlist) probe() {
+	// Track the number of indexes we've considered probing
+	numCheck := 0
+START:
+	m.nodeLock.RLock()
+
+	// Make sure we don't wrap around infinitely
+	if numCheck >= len(m.nodes) {
+		m.nodeLock.RUnlock()
+		return
+	}
+
+	// Handle the wrap around case
+	if m.probeIndex >= len(m.nodes) {
+		m.nodeLock.RUnlock()
+		m.resetNodes()
+		m.probeIndex = 0
+		numCheck++
+		goto START
+	}
+
+	// Determine if we should probe this node
+	skip := false
+	var node nodeState
+
+	node = *m.nodes[m.probeIndex]
+	if node.Name == m.config.Name {
+		skip = true
+	} else if node.State == stateDead {
+		skip = true
+	}
+
+	// Potentially skip
+	m.nodeLock.RUnlock()
+	m.probeIndex++
+	if skip {
+		numCheck++
+		goto START
+	}
+
+	// Probe the specific node
+	m.probeNode(&node)
+}
+
+// probeNode handles a single round of failure checking on a node.
+func (m *Memberlist) probeNode(node *nodeState) {
+	defer metrics.MeasureSince([]string{"memberlist", "probeNode"}, time.Now())
+
+	// We use our health awareness to scale the overall probe interval, so we
+	// slow down if we detect problems. The ticker that calls us can handle
+	// us running over the base interval, and will skip missed ticks.
+	probeInterval := m.awareness.ScaleTimeout(m.config.ProbeInterval)
+	if probeInterval > m.config.ProbeInterval {
+		metrics.IncrCounter([]string{"memberlist", "degraded", "probe"}, 1)
+	}
+
+	// Prepare a ping message and setup an ack handler.
+	ping := ping{SeqNo: m.nextSeqNo(), Node: node.Name}
+	ackCh := make(chan ackMessage, m.config.IndirectChecks+1)
+	nackCh := make(chan struct{}, m.config.IndirectChecks+1)
+	m.setProbeChannels(ping.SeqNo, ackCh, nackCh, probeInterval)
+
+	// Send a ping to the node. If this node looks like it's suspect or dead,
+	// also tack on a suspect message so that it has a chance to refute as
+	// soon as possible.
+	deadline := time.Now().Add(probeInterval)
+	addr := node.Address()
+	if node.State == stateAlive {
+		if err := m.encodeAndSendMsg(addr, pingMsg, &ping); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to send ping: %s", err)
+			return
+		}
+	} else {
+		var msgs [][]byte
+		if buf, err := encode(pingMsg, &ping); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to encode ping message: %s", err)
+			return
+		} else {
+			msgs = append(msgs, buf.Bytes())
+		}
+		s := suspect{Incarnation: node.Incarnation, Node: node.Name, From: m.config.Name}
+		if buf, err := encode(suspectMsg, &s); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to encode suspect message: %s", err)
+			return
+		} else {
+			msgs = append(msgs, buf.Bytes())
+		}
+
+		compound := makeCompoundMessage(msgs)
+		if err := m.rawSendMsgPacket(addr, &node.Node, compound.Bytes()); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to send compound ping and suspect message to %s: %s", addr, err)
+			return
+		}
+	}
+
+	// Mark the sent time here, which should be after any pre-processing and
+	// system calls to do the actual send. This probably under-reports a bit,
+	// but it's the best we can do.
+	sent := time.Now()
+
+	// Arrange for our self-awareness to get updated. At this point we've
+	// sent the ping, so any return statement means the probe succeeded
+	// which will improve our health until we get to the failure scenarios
+	// at the end of this function, which will alter this delta variable
+	// accordingly.
+	awarenessDelta := -1
+	defer func() {
+		m.awareness.ApplyDelta(awarenessDelta)
+	}()
+
+	// Wait for response or round-trip-time.
+	select {
+	case v := <-ackCh:
+		if v.Complete == true {
+			if m.config.Ping != nil {
+				rtt := v.Timestamp.Sub(sent)
+				m.config.Ping.NotifyPingComplete(&node.Node, rtt, v.Payload)
+			}
+			return
+		}
+
+		// As an edge case, if we get a timeout, we need to re-enqueue it
+		// here to break out of the select below.
+		if v.Complete == false {
+			ackCh <- v
+		}
+	case <-time.After(m.config.ProbeTimeout):
+		// Note that we don't scale this timeout based on awareness and
+		// the health score. That's because we don't really expect waiting
+		// longer to help get UDP through. Since health does extend the
+		// probe interval it will give the TCP fallback more time, which
+		// is more active in dealing with lost packets, and it gives more
+		// time to wait for indirect acks/nacks.
+		m.logger.Printf("[DEBUG] memberlist: Failed ping: %v (timeout reached)", node.Name)
+	}
+
+	// Get some random live nodes.
+	m.nodeLock.RLock()
+	kNodes := kRandomNodes(m.config.IndirectChecks, m.nodes, func(n *nodeState) bool {
+		return n.Name == m.config.Name ||
+			n.Name == node.Name ||
+			n.State != stateAlive
+	})
+	m.nodeLock.RUnlock()
+
+	// Attempt an indirect ping.
+	expectedNacks := 0
+	ind := indirectPingReq{SeqNo: ping.SeqNo, Target: node.Addr, Port: node.Port, Node: node.Name}
+	for _, peer := range kNodes {
+		// We only expect nack to be sent from peers who understand
+		// version 4 of the protocol.
+		if ind.Nack = peer.PMax >= 4; ind.Nack {
+			expectedNacks++
+		}
+
+		if err := m.encodeAndSendMsg(peer.Address(), indirectPingMsg, &ind); err != nil {
+			m.logger.Printf("[ERR] memberlist: Failed to send indirect ping: %s", err)
+		}
+	}
+
+	// Also make an attempt to contact the node directly over TCP. This
+	// helps prevent confused clients who get isolated from UDP traffic
+	// but can still speak TCP (which also means they can possibly report
+	// misinformation to other nodes via anti-entropy), avoiding flapping in
+	// the cluster.
+	//
+	// This is a little unusual because we will attempt a TCP ping to any
+	// member who understands version 3 of the protocol, regardless of
+	// which protocol version we are speaking. That's why we've included a
+	// config option to turn this off if desired.
+	fallbackCh := make(chan bool, 1)
+	if (!m.config.DisableTcpPings) && (node.PMax >= 3) {
+		go func() {
+			defer close(fallbackCh)
+			didContact, err := m.sendPingAndWaitForAck(node.Address(), ping, deadline)
+			if err != nil {
+				m.logger.Printf("[ERR] memberlist: Failed fallback ping: %s", err)
+			} else {
+				fallbackCh <- didContact
+			}
+		}()
+	} else {
+		close(fallbackCh)
+	}
+
+	// Wait for the acks or timeout. Note that we don't check the fallback
+	// channel here because we want to issue a warning below if that's the
+	// *only* way we hear back from the peer, so we have to let this time
+	// out first to allow the normal UDP-based acks to come in.
+	select {
+	case v := <-ackCh:
+		if v.Complete == true {
+			return
+		}
+	}
+
+	// Finally, poll the fallback channel. The timeouts are set such that
+	// the channel will have something or be closed without having to wait
+	// any additional time here.
+	for didContact := range fallbackCh {
+		if didContact {
+			m.logger.Printf("[WARN] memberlist: Was able to connect to %s but other probes failed, network may be misconfigured", node.Name)
+			return
+		}
+	}
+
+	// Update our self-awareness based on the results of this failed probe.
+	// If we don't have peers who will send nacks then we penalize for any
+	// failed probe as a simple health metric. If we do have peers to nack
+	// verify, then we can use that as a more sophisticated measure of self-
+	// health because we assume them to be working, and they can help us
+	// decide if the probed node was really dead or if it was something wrong
+	// with ourselves.
+	awarenessDelta = 0
+	if expectedNacks > 0 {
+		if nackCount := len(nackCh); nackCount < expectedNacks {
+			awarenessDelta += (expectedNacks - nackCount)
+		}
+	} else {
+		awarenessDelta += 1
+	}
+
+	// No acks received from target, suspect it as failed.
+	m.logger.Printf("[INFO] memberlist: Suspect %s has failed, no acks received", node.Name)
+	s := suspect{Incarnation: node.Incarnation, Node: node.Name, From: m.config.Name}
+	m.suspectNode(&s)
+}
+
+// Ping initiates a ping to the node with the specified name.
+func (m *Memberlist) Ping(node string, addr net.Addr) (time.Duration, error) {
+	// Prepare a ping message and setup an ack handler.
+	ping := ping{SeqNo: m.nextSeqNo(), Node: node}
+	ackCh := make(chan ackMessage, m.config.IndirectChecks+1)
+	m.setProbeChannels(ping.SeqNo, ackCh, nil, m.config.ProbeInterval)
+
+	// Send a ping to the node.
+	if err := m.encodeAndSendMsg(addr.String(), pingMsg, &ping); err != nil {
+		return 0, err
+	}
+
+	// Mark the sent time here, which should be after any pre-processing and
+	// system calls to do the actual send. This probably under-reports a bit,
+	// but it's the best we can do.
+	sent := time.Now()
+
+	// Wait for response or timeout.
+	select {
+	case v := <-ackCh:
+		if v.Complete == true {
+			return v.Timestamp.Sub(sent), nil
+		}
+	case <-time.After(m.config.ProbeTimeout):
+		// Timeout, return an error below.
+	}
+
+	m.logger.Printf("[DEBUG] memberlist: Failed UDP ping: %v (timeout reached)", node)
+	return 0, NoPingResponseError{ping.Node}
+}
+
+// resetNodes is used when the tick wraps around. It will reap the
+// dead nodes and shuffle the node list.
+func (m *Memberlist) resetNodes() {
+	m.nodeLock.Lock()
+	defer m.nodeLock.Unlock()
+
+	// Move dead nodes, but respect gossip to the dead interval
+	deadIdx := moveDeadNodes(m.nodes, m.config.GossipToTheDeadTime)
+
+	// Deregister the dead nodes
+	for i := deadIdx; i < len(m.nodes); i++ {
+		delete(m.nodeMap, m.nodes[i].Name)
+		m.nodes[i] = nil
+	}
+
+	// Trim the nodes to exclude the dead nodes
+	m.nodes = m.nodes[0:deadIdx]
+
+	// Update numNodes after we've trimmed the dead nodes
+	atomic.StoreUint32(&m.numNodes, uint32(deadIdx))
+
+	// Shuffle live nodes
+	shuffleNodes(m.nodes)
+}
+
+// gossip is invoked every GossipInterval period to broadcast our gossip
+// messages to a few random nodes.
+func (m *Memberlist) gossip() {
+	defer metrics.MeasureSince([]string{"memberlist", "gossip"}, time.Now())
+
+	// Get some random live, suspect, or recently dead nodes
+	m.nodeLock.RLock()
+	kNodes := kRandomNodes(m.config.GossipNodes, m.nodes, func(n *nodeState) bool {
+		if n.Name == m.config.Name {
+			return true
+		}
+
+		switch n.State {
+		case stateAlive, stateSuspect:
+			return false
+
+		case stateDead:
+			return time.Since(n.StateChange) > m.config.GossipToTheDeadTime
+
+		default:
+			return true
+		}
+	})
+	m.nodeLock.RUnlock()
+
+	// Compute the bytes available
+	bytesAvail := m.config.UDPBufferSize - compoundHeaderOverhead
+	if m.config.EncryptionEnabled() {
+		bytesAvail -= encryptOverhead(m.encryptionVersion())
+	}
+
+	for _, node := range kNodes {
+		// Get any pending broadcasts
+		msgs := m.getBroadcasts(compoundOverhead, bytesAvail)
+		if len(msgs) == 0 {
+			return
+		}
+
+		addr := node.Address()
+		if len(msgs) == 1 {
+			// Send single message as is
+			if err := m.rawSendMsgPacket(addr, &node.Node, msgs[0]); err != nil {
+				m.logger.Printf("[ERR] memberlist: Failed to send gossip to %s: %s", addr, err)
+			}
+		} else {
+			// Otherwise create and send a compound message
+			compound := makeCompoundMessage(msgs)
+			if err := m.rawSendMsgPacket(addr, &node.Node, compound.Bytes()); err != nil {
+				m.logger.Printf("[ERR] memberlist: Failed to send gossip to %s: %s", addr, err)
+			}
+		}
+	}
+}
+
+// pushPull is invoked periodically to randomly perform a complete state
+// exchange. Used to ensure a high level of convergence, but is also
+// reasonably expensive as the entire state of this node is exchanged
+// with the other node.
+func (m *Memberlist) pushPull() {
+	// Get a random live node
+	m.nodeLock.RLock()
+	nodes := kRandomNodes(1, m.nodes, func(n *nodeState) bool {
+		return n.Name == m.config.Name ||
+			n.State != stateAlive
+	})
+	m.nodeLock.RUnlock()
+
+	// If no nodes, bail
+	if len(nodes) == 0 {
+		return
+	}
+	node := nodes[0]
+
+	// Attempt a push pull
+	if err := m.pushPullNode(node.Address(), false); err != nil {
+		m.logger.Printf("[ERR] memberlist: Push/Pull with %s failed: %s", node.Name, err)
+	}
+}
+
+// pushPullNode does a complete state exchange with a specific node.
+func (m *Memberlist) pushPullNode(addr string, join bool) error {
+	defer metrics.MeasureSince([]string{"memberlist", "pushPullNode"}, time.Now())
+
+	// Attempt to send and receive with the node
+	remote, userState, err := m.sendAndReceiveState(addr, join)
+	if err != nil {
+		return err
+	}
+
+	if err := m.mergeRemoteState(join, remote, userState); err != nil {
+		return err
+	}
+	return nil
+}
+
+// verifyProtocol verifies that all the remote nodes can speak with our
+// nodes and vice versa on both the core protocol as well as the
+// delegate protocol level.
+//
+// The verification works by finding the maximum minimum and
+// minimum maximum understood protocol and delegate versions. In other words,
+// it finds the common denominator of protocol and delegate version ranges
+// for the entire cluster.
+//
+// After this, it goes through the entire cluster (local and remote) and
+// verifies that everyone's speaking protocol versions satisfy this range.
+// If this passes, it means that every node can understand each other.
+func (m *Memberlist) verifyProtocol(remote []pushNodeState) error {
+	m.nodeLock.RLock()
+	defer m.nodeLock.RUnlock()
+
+	// Maximum minimum understood and minimum maximum understood for both
+	// the protocol and delegate versions. We use this to verify everyone
+	// can be understood.
+	var maxpmin, minpmax uint8
+	var maxdmin, mindmax uint8
+	minpmax = math.MaxUint8
+	mindmax = math.MaxUint8
+
+	for _, rn := range remote {
+		// If the node isn't alive, then skip it
+		if rn.State != stateAlive {
+			continue
+		}
+
+		// Skip nodes that don't have versions set, it just means
+		// their version is zero.
+		if len(rn.Vsn) == 0 {
+			continue
+		}
+
+		if rn.Vsn[0] > maxpmin {
+			maxpmin = rn.Vsn[0]
+		}
+
+		if rn.Vsn[1] < minpmax {
+			minpmax = rn.Vsn[1]
+		}
+
+		if rn.Vsn[3] > maxdmin {
+			maxdmin = rn.Vsn[3]
+		}
+
+		if rn.Vsn[4] < mindmax {
+			mindmax = rn.Vsn[4]
+		}
+	}
+
+	for _, n := range m.nodes {
+		// Ignore non-alive nodes
+		if n.State != stateAlive {
+			continue
+		}
+
+		if n.PMin > maxpmin {
+			maxpmin = n.PMin
+		}
+
+		if n.PMax < minpmax {
+			minpmax = n.PMax
+		}
+
+		if n.DMin > maxdmin {
+			maxdmin = n.DMin
+		}
+
+		if n.DMax < mindmax {
+			mindmax = n.DMax
+		}
+	}
+
+	// Now that we definitively know the minimum and maximum understood
+	// version that satisfies the whole cluster, we verify that every
+	// node in the cluster satisifies this.
+	for _, n := range remote {
+		var nPCur, nDCur uint8
+		if len(n.Vsn) > 0 {
+			nPCur = n.Vsn[2]
+			nDCur = n.Vsn[5]
+		}
+
+		if nPCur < maxpmin || nPCur > minpmax {
+			return fmt.Errorf(
+				"Node '%s' protocol version (%d) is incompatible: [%d, %d]",
+				n.Name, nPCur, maxpmin, minpmax)
+		}
+
+		if nDCur < maxdmin || nDCur > mindmax {
+			return fmt.Errorf(
+				"Node '%s' delegate protocol version (%d) is incompatible: [%d, %d]",
+				n.Name, nDCur, maxdmin, mindmax)
+		}
+	}
+
+	for _, n := range m.nodes {
+		nPCur := n.PCur
+		nDCur := n.DCur
+
+		if nPCur < maxpmin || nPCur > minpmax {
+			return fmt.Errorf(
+				"Node '%s' protocol version (%d) is incompatible: [%d, %d]",
+				n.Name, nPCur, maxpmin, minpmax)
+		}
+
+		if nDCur < maxdmin || nDCur > mindmax {
+			return fmt.Errorf(
+				"Node '%s' delegate protocol version (%d) is incompatible: [%d, %d]",
+				n.Name, nDCur, maxdmin, mindmax)
+		}
+	}
+
+	return nil
+}
+
+// nextSeqNo returns a usable sequence number in a thread safe way
+func (m *Memberlist) nextSeqNo() uint32 {
+	return atomic.AddUint32(&m.sequenceNum, 1)
+}
+
+// nextIncarnation returns the next incarnation number in a thread safe way
+func (m *Memberlist) nextIncarnation() uint32 {
+	return atomic.AddUint32(&m.incarnation, 1)
+}
+
+// skipIncarnation adds the positive offset to the incarnation number.
+func (m *Memberlist) skipIncarnation(offset uint32) uint32 {
+	return atomic.AddUint32(&m.incarnation, offset)
+}
+
+// estNumNodes is used to get the current estimate of the number of nodes
+func (m *Memberlist) estNumNodes() int {
+	return int(atomic.LoadUint32(&m.numNodes))
+}
+
+type ackMessage struct {
+	Complete  bool
+	Payload   []byte
+	Timestamp time.Time
+}
+
+// setProbeChannels is used to attach the ackCh to receive a message when an ack
+// with a given sequence number is received. The `complete` field of the message
+// will be false on timeout. Any nack messages will cause an empty struct to be
+// passed to the nackCh, which can be nil if not needed.
+func (m *Memberlist) setProbeChannels(seqNo uint32, ackCh chan ackMessage, nackCh chan struct{}, timeout time.Duration) {
+	// Create handler functions for acks and nacks
+	ackFn := func(payload []byte, timestamp time.Time) {
+		select {
+		case ackCh <- ackMessage{true, payload, timestamp}:
+		default:
+		}
+	}
+	nackFn := func() {
+		select {
+		case nackCh <- struct{}{}:
+		default:
+		}
+	}
+
+	// Add the handlers
+	ah := &ackHandler{ackFn, nackFn, nil}
+	m.ackLock.Lock()
+	m.ackHandlers[seqNo] = ah
+	m.ackLock.Unlock()
+
+	// Setup a reaping routing
+	ah.timer = time.AfterFunc(timeout, func() {
+		m.ackLock.Lock()
+		delete(m.ackHandlers, seqNo)
+		m.ackLock.Unlock()
+		select {
+		case ackCh <- ackMessage{false, nil, time.Now()}:
+		default:
+		}
+	})
+}
+
+// setAckHandler is used to attach a handler to be invoked when an ack with a
+// given sequence number is received. If a timeout is reached, the handler is
+// deleted. This is used for indirect pings so does not configure a function
+// for nacks.
+func (m *Memberlist) setAckHandler(seqNo uint32, ackFn func([]byte, time.Time), timeout time.Duration) {
+	// Add the handler
+	ah := &ackHandler{ackFn, nil, nil}
+	m.ackLock.Lock()
+	m.ackHandlers[seqNo] = ah
+	m.ackLock.Unlock()
+
+	// Setup a reaping routing
+	ah.timer = time.AfterFunc(timeout, func() {
+		m.ackLock.Lock()
+		delete(m.ackHandlers, seqNo)
+		m.ackLock.Unlock()
+	})
+}
+
+// Invokes an ack handler if any is associated, and reaps the handler immediately
+func (m *Memberlist) invokeAckHandler(ack ackResp, timestamp time.Time) {
+	m.ackLock.Lock()
+	ah, ok := m.ackHandlers[ack.SeqNo]
+	delete(m.ackHandlers, ack.SeqNo)
+	m.ackLock.Unlock()
+	if !ok {
+		return
+	}
+	ah.timer.Stop()
+	ah.ackFn(ack.Payload, timestamp)
+}
+
+// Invokes nack handler if any is associated.
+func (m *Memberlist) invokeNackHandler(nack nackResp) {
+	m.ackLock.Lock()
+	ah, ok := m.ackHandlers[nack.SeqNo]
+	m.ackLock.Unlock()
+	if !ok || ah.nackFn == nil {
+		return
+	}
+	ah.nackFn()
+}
+
+// refute gossips an alive message in response to incoming information that we
+// are suspect or dead. It will make sure the incarnation number beats the given
+// accusedInc value, or you can supply 0 to just get the next incarnation number.
+// This alters the node state that's passed in so this MUST be called while the
+// nodeLock is held.
+func (m *Memberlist) refute(me *nodeState, accusedInc uint32) {
+	// Make sure the incarnation number beats the accusation.
+	inc := m.nextIncarnation()
+	if accusedInc >= inc {
+		inc = m.skipIncarnation(accusedInc - inc + 1)
+	}
+	me.Incarnation = inc
+
+	// Decrease our health because we are being asked to refute a problem.
+	m.awareness.ApplyDelta(1)
+
+	// Format and broadcast an alive message.
+	a := alive{
+		Incarnation: inc,
+		Node:        me.Name,
+		Addr:        me.Addr,
+		Port:        me.Port,
+		Meta:        me.Meta,
+		Vsn: []uint8{
+			me.PMin, me.PMax, me.PCur,
+			me.DMin, me.DMax, me.DCur,
+		},
+	}
+	m.encodeAndBroadcast(me.Addr.String(), aliveMsg, a)
+}
+
+// aliveNode is invoked by the network layer when we get a message about a
+// live node.
+func (m *Memberlist) aliveNode(a *alive, notify chan struct{}, bootstrap bool) {
+	m.nodeLock.Lock()
+	defer m.nodeLock.Unlock()
+	state, ok := m.nodeMap[a.Node]
+
+	// It is possible that during a Leave(), there is already an aliveMsg
+	// in-queue to be processed but blocked by the locks above. If we let
+	// that aliveMsg process, it'll cause us to re-join the cluster. This
+	// ensures that we don't.
+	if m.leave && a.Node == m.config.Name {
+		return
+	}
+
+	// Invoke the Alive delegate if any. This can be used to filter out
+	// alive messages based on custom logic. For example, using a cluster name.
+	// Using a merge delegate is not enough, as it is possible for passive
+	// cluster merging to still occur.
+	if m.config.Alive != nil {
+		node := &Node{
+			Name: a.Node,
+			Addr: a.Addr,
+			Port: a.Port,
+			Meta: a.Meta,
+			PMin: a.Vsn[0],
+			PMax: a.Vsn[1],
+			PCur: a.Vsn[2],
+			DMin: a.Vsn[3],
+			DMax: a.Vsn[4],
+			DCur: a.Vsn[5],
+		}
+		if err := m.config.Alive.NotifyAlive(node); err != nil {
+			m.logger.Printf("[WARN] memberlist: ignoring alive message for '%s': %s",
+				a.Node, err)
+			return
+		}
+	}
+
+	// Check if we've never seen this node before, and if not, then
+	// store this node in our node map.
+	if !ok {
+		state = &nodeState{
+			Node: Node{
+				Name: a.Node,
+				Addr: a.Addr,
+				Port: a.Port,
+				Meta: a.Meta,
+			},
+			State: stateDead,
+		}
+
+		// Add to map
+		m.nodeMap[a.Node] = state
+
+		// Get a random offset. This is important to ensure
+		// the failure detection bound is low on average. If all
+		// nodes did an append, failure detection bound would be
+		// very high.
+		n := len(m.nodes)
+		offset := randomOffset(n)
+
+		// Add at the end and swap with the node at the offset
+		m.nodes = append(m.nodes, state)
+		m.nodes[offset], m.nodes[n] = m.nodes[n], m.nodes[offset]
+
+		// Update numNodes after we've added a new node
+		atomic.AddUint32(&m.numNodes, 1)
+	}
+
+	// Check if this address is different than the existing node
+	if !bytes.Equal([]byte(state.Addr), a.Addr) || state.Port != a.Port {
+		m.logger.Printf("[ERR] memberlist: Conflicting address for %s. Mine: %v:%d Theirs: %v:%d",
+			state.Name, state.Addr, state.Port, net.IP(a.Addr), a.Port)
+
+		// Inform the conflict delegate if provided
+		if m.config.Conflict != nil {
+			other := Node{
+				Name: a.Node,
+				Addr: a.Addr,
+				Port: a.Port,
+				Meta: a.Meta,
+			}
+			m.config.Conflict.NotifyConflict(&state.Node, &other)
+		}
+		return
+	}
+
+	// Bail if the incarnation number is older, and this is not about us
+	isLocalNode := state.Name == m.config.Name
+	if a.Incarnation <= state.Incarnation && !isLocalNode {
+		return
+	}
+
+	// Bail if strictly less and this is about us
+	if a.Incarnation < state.Incarnation && isLocalNode {
+		return
+	}
+
+	// Clear out any suspicion timer that may be in effect.
+	delete(m.nodeTimers, a.Node)
+
+	// Store the old state and meta data
+	oldState := state.State
+	oldMeta := state.Meta
+
+	// If this is us we need to refute, otherwise re-broadcast
+	if !bootstrap && isLocalNode {
+		// Compute the version vector
+		versions := []uint8{
+			state.PMin, state.PMax, state.PCur,
+			state.DMin, state.DMax, state.DCur,
+		}
+
+		// If the Incarnation is the same, we need special handling, since it
+		// possible for the following situation to happen:
+		// 1) Start with configuration C, join cluster
+		// 2) Hard fail / Kill / Shutdown
+		// 3) Restart with configuration C', join cluster
+		//
+		// In this case, other nodes and the local node see the same incarnation,
+		// but the values may not be the same. For this reason, we always
+		// need to do an equality check for this Incarnation. In most cases,
+		// we just ignore, but we may need to refute.
+		//
+		if a.Incarnation == state.Incarnation &&
+			bytes.Equal(a.Meta, state.Meta) &&
+			bytes.Equal(a.Vsn, versions) {
+			return
+		}
+
+		m.refute(state, a.Incarnation)
+		m.logger.Printf("[WARN] memberlist: Refuting an alive message")
+	} else {
+		m.encodeBroadcastNotify(a.Node, aliveMsg, a, notify)
+
+		// Update protocol versions if it arrived
+		if len(a.Vsn) > 0 {
+			state.PMin = a.Vsn[0]
+			state.PMax = a.Vsn[1]
+			state.PCur = a.Vsn[2]
+			state.DMin = a.Vsn[3]
+			state.DMax = a.Vsn[4]
+			state.DCur = a.Vsn[5]
+		}
+
+		// Update the state and incarnation number
+		state.Incarnation = a.Incarnation
+		state.Meta = a.Meta
+		if state.State != stateAlive {
+			state.State = stateAlive
+			state.StateChange = time.Now()
+		}
+	}
+
+	// Update metrics
+	metrics.IncrCounter([]string{"memberlist", "msg", "alive"}, 1)
+
+	// Notify the delegate of any relevant updates
+	if m.config.Events != nil {
+		if oldState == stateDead {
+			// if Dead -> Alive, notify of join
+			m.config.Events.NotifyJoin(&state.Node)
+
+		} else if !bytes.Equal(oldMeta, state.Meta) {
+			// if Meta changed, trigger an update notification
+			m.config.Events.NotifyUpdate(&state.Node)
+		}
+	}
+}
+
+// suspectNode is invoked by the network layer when we get a message
+// about a suspect node
+func (m *Memberlist) suspectNode(s *suspect) {
+	m.nodeLock.Lock()
+	defer m.nodeLock.Unlock()
+	state, ok := m.nodeMap[s.Node]
+
+	// If we've never heard about this node before, ignore it
+	if !ok {
+		return
+	}
+
+	// Ignore old incarnation numbers
+	if s.Incarnation < state.Incarnation {
+		return
+	}
+
+	// See if there's a suspicion timer we can confirm. If the info is new
+	// to us we will go ahead and re-gossip it. This allows for multiple
+	// independent confirmations to flow even when a node probes a node
+	// that's already suspect.
+	if timer, ok := m.nodeTimers[s.Node]; ok {
+		if timer.Confirm(s.From) {
+			m.encodeAndBroadcast(s.Node, suspectMsg, s)
+		}
+		return
+	}
+
+	// Ignore non-alive nodes
+	if state.State != stateAlive {
+		return
+	}
+
+	// If this is us we need to refute, otherwise re-broadcast
+	if state.Name == m.config.Name {
+		m.refute(state, s.Incarnation)
+		m.logger.Printf("[WARN] memberlist: Refuting a suspect message (from: %s)", s.From)
+		return // Do not mark ourself suspect
+	} else {
+		m.encodeAndBroadcast(s.Node, suspectMsg, s)
+	}
+
+	// Update metrics
+	metrics.IncrCounter([]string{"memberlist", "msg", "suspect"}, 1)
+
+	// Update the state
+	state.Incarnation = s.Incarnation
+	state.State = stateSuspect
+	changeTime := time.Now()
+	state.StateChange = changeTime
+
+	// Setup a suspicion timer. Given that we don't have any known phase
+	// relationship with our peers, we set up k such that we hit the nominal
+	// timeout two probe intervals short of what we expect given the suspicion
+	// multiplier.
+	k := m.config.SuspicionMult - 2
+
+	// If there aren't enough nodes to give the expected confirmations, just
+	// set k to 0 to say that we don't expect any. Note we subtract 2 from n
+	// here to take out ourselves and the node being probed.
+	n := m.estNumNodes()
+	if n-2 < k {
+		k = 0
+	}
+
+	// Compute the timeouts based on the size of the cluster.
+	min := suspicionTimeout(m.config.SuspicionMult, n, m.config.ProbeInterval)
+	max := time.Duration(m.config.SuspicionMaxTimeoutMult) * min
+	fn := func(numConfirmations int) {
+		m.nodeLock.Lock()
+		state, ok := m.nodeMap[s.Node]
+		timeout := ok && state.State == stateSuspect && state.StateChange == changeTime
+		m.nodeLock.Unlock()
+
+		if timeout {
+			if k > 0 && numConfirmations < k {
+				metrics.IncrCounter([]string{"memberlist", "degraded", "timeout"}, 1)
+			}
+
+			m.logger.Printf("[INFO] memberlist: Marking %s as failed, suspect timeout reached (%d peer confirmations)",
+				state.Name, numConfirmations)
+			d := dead{Incarnation: state.Incarnation, Node: state.Name, From: m.config.Name}
+			m.deadNode(&d)
+		}
+	}
+	m.nodeTimers[s.Node] = newSuspicion(s.From, k, min, max, fn)
+}
+
+// deadNode is invoked by the network layer when we get a message
+// about a dead node
+func (m *Memberlist) deadNode(d *dead) {
+	m.nodeLock.Lock()
+	defer m.nodeLock.Unlock()
+	state, ok := m.nodeMap[d.Node]
+
+	// If we've never heard about this node before, ignore it
+	if !ok {
+		return
+	}
+
+	// Ignore old incarnation numbers
+	if d.Incarnation < state.Incarnation {
+		return
+	}
+
+	// Clear out any suspicion timer that may be in effect.
+	delete(m.nodeTimers, d.Node)
+
+	// Ignore if node is already dead
+	if state.State == stateDead {
+		return
+	}
+
+	// Check if this is us
+	if state.Name == m.config.Name {
+		// If we are not leaving we need to refute
+		if !m.leave {
+			m.refute(state, d.Incarnation)
+			m.logger.Printf("[WARN] memberlist: Refuting a dead message (from: %s)", d.From)
+			return // Do not mark ourself dead
+		}
+
+		// If we are leaving, we broadcast and wait
+		m.encodeBroadcastNotify(d.Node, deadMsg, d, m.leaveBroadcast)
+	} else {
+		m.encodeAndBroadcast(d.Node, deadMsg, d)
+	}
+
+	// Update metrics
+	metrics.IncrCounter([]string{"memberlist", "msg", "dead"}, 1)
+
+	// Update the state
+	state.Incarnation = d.Incarnation
+	state.State = stateDead
+	state.StateChange = time.Now()
+
+	// Notify of death
+	if m.config.Events != nil {
+		m.config.Events.NotifyLeave(&state.Node)
+	}
+}
+
+// mergeState is invoked by the network layer when we get a Push/Pull
+// state transfer
+func (m *Memberlist) mergeState(remote []pushNodeState) {
+	for _, r := range remote {
+		switch r.State {
+		case stateAlive:
+			a := alive{
+				Incarnation: r.Incarnation,
+				Node:        r.Name,
+				Addr:        r.Addr,
+				Port:        r.Port,
+				Meta:        r.Meta,
+				Vsn:         r.Vsn,
+			}
+			m.aliveNode(&a, nil, false)
+
+		case stateDead:
+			// If the remote node believes a node is dead, we prefer to
+			// suspect that node instead of declaring it dead instantly
+			fallthrough
+		case stateSuspect:
+			s := suspect{Incarnation: r.Incarnation, Node: r.Name, From: m.config.Name}
+			m.suspectNode(&s)
+		}
+	}
+}
diff --git a/vendor/github.com/hashicorp/memberlist/suspicion.go b/vendor/github.com/hashicorp/memberlist/suspicion.go
new file mode 100644
index 0000000000..5f573e1fc6
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/suspicion.go
@@ -0,0 +1,130 @@
+package memberlist
+
+import (
+	"math"
+	"sync/atomic"
+	"time"
+)
+
+// suspicion manages the suspect timer for a node and provides an interface
+// to accelerate the timeout as we get more independent confirmations that
+// a node is suspect.
+type suspicion struct {
+	// n is the number of independent confirmations we've seen. This must
+	// be updated using atomic instructions to prevent contention with the
+	// timer callback.
+	n int32
+
+	// k is the number of independent confirmations we'd like to see in
+	// order to drive the timer to its minimum value.
+	k int32
+
+	// min is the minimum timer value.
+	min time.Duration
+
+	// max is the maximum timer value.
+	max time.Duration
+
+	// start captures the timestamp when we began the timer. This is used
+	// so we can calculate durations to feed the timer during updates in
+	// a way the achieves the overall time we'd like.
+	start time.Time
+
+	// timer is the underlying timer that implements the timeout.
+	timer *time.Timer
+
+	// f is the function to call when the timer expires. We hold on to this
+	// because there are cases where we call it directly.
+	timeoutFn func()
+
+	// confirmations is a map of "from" nodes that have confirmed a given
+	// node is suspect. This prevents double counting.
+	confirmations map[string]struct{}
+}
+
+// newSuspicion returns a timer started with the max time, and that will drive
+// to the min time after seeing k or more confirmations. The from node will be
+// excluded from confirmations since we might get our own suspicion message
+// gossiped back to us. The minimum time will be used if no confirmations are
+// called for (k <= 0).
+func newSuspicion(from string, k int, min time.Duration, max time.Duration, fn func(int)) *suspicion {
+	s := &suspicion{
+		k:             int32(k),
+		min:           min,
+		max:           max,
+		confirmations: make(map[string]struct{}),
+	}
+
+	// Exclude the from node from any confirmations.
+	s.confirmations[from] = struct{}{}
+
+	// Pass the number of confirmations into the timeout function for
+	// easy telemetry.
+	s.timeoutFn = func() {
+		fn(int(atomic.LoadInt32(&s.n)))
+	}
+
+	// If there aren't any confirmations to be made then take the min
+	// time from the start.
+	timeout := max
+	if k < 1 {
+		timeout = min
+	}
+	s.timer = time.AfterFunc(timeout, s.timeoutFn)
+
+	// Capture the start time right after starting the timer above so
+	// we should always err on the side of a little longer timeout if
+	// there's any preemption that separates this and the step above.
+	s.start = time.Now()
+	return s
+}
+
+// remainingSuspicionTime takes the state variables of the suspicion timer and
+// calculates the remaining time to wait before considering a node dead. The
+// return value can be negative, so be prepared to fire the timer immediately in
+// that case.
+func remainingSuspicionTime(n, k int32, elapsed time.Duration, min, max time.Duration) time.Duration {
+	frac := math.Log(float64(n)+1.0) / math.Log(float64(k)+1.0)
+	raw := max.Seconds() - frac*(max.Seconds()-min.Seconds())
+	timeout := time.Duration(math.Floor(1000.0*raw)) * time.Millisecond
+	if timeout < min {
+		timeout = min
+	}
+
+	// We have to take into account the amount of time that has passed so
+	// far, so we get the right overall timeout.
+	return timeout - elapsed
+}
+
+// Confirm registers that a possibly new peer has also determined the given
+// node is suspect. This returns true if this was new information, and false
+// if it was a duplicate confirmation, or if we've got enough confirmations to
+// hit the minimum.
+func (s *suspicion) Confirm(from string) bool {
+	// If we've got enough confirmations then stop accepting them.
+	if atomic.LoadInt32(&s.n) >= s.k {
+		return false
+	}
+
+	// Only allow one confirmation from each possible peer.
+	if _, ok := s.confirmations[from]; ok {
+		return false
+	}
+	s.confirmations[from] = struct{}{}
+
+	// Compute the new timeout given the current number of confirmations and
+	// adjust the timer. If the timeout becomes negative *and* we can cleanly
+	// stop the timer then we will call the timeout function directly from
+	// here.
+	n := atomic.AddInt32(&s.n, 1)
+	elapsed := time.Now().Sub(s.start)
+	remaining := remainingSuspicionTime(n, s.k, elapsed, s.min, s.max)
+	if s.timer.Stop() {
+		if remaining > 0 {
+			s.timer.Reset(remaining)
+		} else {
+			go s.timeoutFn()
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/hashicorp/memberlist/transport.go b/vendor/github.com/hashicorp/memberlist/transport.go
new file mode 100644
index 0000000000..ca0a660836
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/transport.go
@@ -0,0 +1,65 @@
+package memberlist
+
+import (
+	"net"
+	"time"
+)
+
+// Packet is used to provide some metadata about incoming packets from peers
+// over a packet connection, as well as the packet payload.
+type Packet struct {
+	// Buf has the raw contents of the packet.
+	Buf []byte
+
+	// From has the address of the peer. This is an actual net.Addr so we
+	// can expose some concrete details about incoming packets.
+	From net.Addr
+
+	// Timestamp is the time when the packet was received. This should be
+	// taken as close as possible to the actual receipt time to help make an
+	// accurate RTT measurements during probes.
+	Timestamp time.Time
+}
+
+// Transport is used to abstract over communicating with other peers. The packet
+// interface is assumed to be best-effort and the stream interface is assumed to
+// be reliable.
+type Transport interface {
+	// FinalAdvertiseAddr is given the user's configured values (which
+	// might be empty) and returns the desired IP and port to advertise to
+	// the rest of the cluster.
+	FinalAdvertiseAddr(ip string, port int) (net.IP, int, error)
+
+	// WriteTo is a packet-oriented interface that fires off the given
+	// payload to the given address in a connectionless fashion. This should
+	// return a time stamp that's as close as possible to when the packet
+	// was transmitted to help make accurate RTT measurements during probes.
+	//
+	// This is similar to net.PacketConn, though we didn't want to expose
+	// that full set of required methods to keep assumptions about the
+	// underlying plumbing to a minimum. We also treat the address here as a
+	// string, similar to Dial, so it's network neutral, so this usually is
+	// in the form of "host:port".
+	WriteTo(b []byte, addr string) (time.Time, error)
+
+	// PacketCh returns a channel that can be read to receive incoming
+	// packets from other peers. How this is set up for listening is left as
+	// an exercise for the concrete transport implementations.
+	PacketCh() <-chan *Packet
+
+	// DialTimeout is used to create a connection that allows us to perform
+	// two-way communication with a peer. This is generally more expensive
+	// than packet connections so is used for more infrequent operations
+	// such as anti-entropy or fallback probes if the packet-oriented probe
+	// failed.
+	DialTimeout(addr string, timeout time.Duration) (net.Conn, error)
+
+	// StreamCh returns a channel that can be read to handle incoming stream
+	// connections from other peers. How this is set up for listening is
+	// left as an exercise for the concrete transport implementations.
+	StreamCh() <-chan net.Conn
+
+	// Shutdown is called when memberlist is shutting down; this gives the
+	// transport a chance to clean up any listeners.
+	Shutdown() error
+}
diff --git a/vendor/github.com/hashicorp/memberlist/util.go b/vendor/github.com/hashicorp/memberlist/util.go
new file mode 100644
index 0000000000..a4f926e3ab
--- /dev/null
+++ b/vendor/github.com/hashicorp/memberlist/util.go
@@ -0,0 +1,296 @@
+package memberlist
+
+import (
+	"bytes"
+	"compress/lzw"
+	"encoding/binary"
+	"fmt"
+	"io"
+	"math"
+	"math/rand"
+	"net"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/go-msgpack/codec"
+	"github.com/sean-/seed"
+)
+
+// pushPullScale is the minimum number of nodes
+// before we start scaling the push/pull timing. The scale
+// effect is the log2(Nodes) - log2(pushPullScale). This means
+// that the 33rd node will cause us to double the interval,
+// while the 65th will triple it.
+const pushPullScaleThreshold = 32
+
+const (
+	// Constant litWidth 2-8
+	lzwLitWidth = 8
+)
+
+func init() {
+	seed.Init()
+}
+
+// Decode reverses the encode operation on a byte slice input
+func decode(buf []byte, out interface{}) error {
+	r := bytes.NewReader(buf)
+	hd := codec.MsgpackHandle{}
+	dec := codec.NewDecoder(r, &hd)
+	return dec.Decode(out)
+}
+
+// Encode writes an encoded object to a new bytes buffer
+func encode(msgType messageType, in interface{}) (*bytes.Buffer, error) {
+	buf := bytes.NewBuffer(nil)
+	buf.WriteByte(uint8(msgType))
+	hd := codec.MsgpackHandle{}
+	enc := codec.NewEncoder(buf, &hd)
+	err := enc.Encode(in)
+	return buf, err
+}
+
+// Returns a random offset between 0 and n
+func randomOffset(n int) int {
+	if n == 0 {
+		return 0
+	}
+	return int(rand.Uint32() % uint32(n))
+}
+
+// suspicionTimeout computes the timeout that should be used when
+// a node is suspected
+func suspicionTimeout(suspicionMult, n int, interval time.Duration) time.Duration {
+	nodeScale := math.Max(1.0, math.Log10(math.Max(1.0, float64(n))))
+	// multiply by 1000 to keep some precision because time.Duration is an int64 type
+	timeout := time.Duration(suspicionMult) * time.Duration(nodeScale*1000) * interval / 1000
+	return timeout
+}
+
+// retransmitLimit computes the limit of retransmissions
+func retransmitLimit(retransmitMult, n int) int {
+	nodeScale := math.Ceil(math.Log10(float64(n + 1)))
+	limit := retransmitMult * int(nodeScale)
+	return limit
+}
+
+// shuffleNodes randomly shuffles the input nodes using the Fisher-Yates shuffle
+func shuffleNodes(nodes []*nodeState) {
+	n := len(nodes)
+	for i := n - 1; i > 0; i-- {
+		j := rand.Intn(i + 1)
+		nodes[i], nodes[j] = nodes[j], nodes[i]
+	}
+}
+
+// pushPushScale is used to scale the time interval at which push/pull
+// syncs take place. It is used to prevent network saturation as the
+// cluster size grows
+func pushPullScale(interval time.Duration, n int) time.Duration {
+	// Don't scale until we cross the threshold
+	if n <= pushPullScaleThreshold {
+		return interval
+	}
+
+	multiplier := math.Ceil(math.Log2(float64(n))-math.Log2(pushPullScaleThreshold)) + 1.0
+	return time.Duration(multiplier) * interval
+}
+
+// moveDeadNodes moves nodes that are dead and beyond the gossip to the dead interval
+// to the end of the slice and returns the index of the first moved node.
+func moveDeadNodes(nodes []*nodeState, gossipToTheDeadTime time.Duration) int {
+	numDead := 0
+	n := len(nodes)
+	for i := 0; i < n-numDead; i++ {
+		if nodes[i].State != stateDead {
+			continue
+		}
+
+		// Respect the gossip to the dead interval
+		if time.Since(nodes[i].StateChange) <= gossipToTheDeadTime {
+			continue
+		}
+
+		// Move this node to the end
+		nodes[i], nodes[n-numDead-1] = nodes[n-numDead-1], nodes[i]
+		numDead++
+		i--
+	}
+	return n - numDead
+}
+
+// kRandomNodes is used to select up to k random nodes, excluding any nodes where
+// the filter function returns true. It is possible that less than k nodes are
+// returned.
+func kRandomNodes(k int, nodes []*nodeState, filterFn func(*nodeState) bool) []*nodeState {
+	n := len(nodes)
+	kNodes := make([]*nodeState, 0, k)
+OUTER:
+	// Probe up to 3*n times, with large n this is not necessary
+	// since k << n, but with small n we want search to be
+	// exhaustive
+	for i := 0; i < 3*n && len(kNodes) < k; i++ {
+		// Get random node
+		idx := randomOffset(n)
+		node := nodes[idx]
+
+		// Give the filter a shot at it.
+		if filterFn != nil && filterFn(node) {
+			continue OUTER
+		}
+
+		// Check if we have this node already
+		for j := 0; j < len(kNodes); j++ {
+			if node == kNodes[j] {
+				continue OUTER
+			}
+		}
+
+		// Append the node
+		kNodes = append(kNodes, node)
+	}
+	return kNodes
+}
+
+// makeCompoundMessage takes a list of messages and generates
+// a single compound message containing all of them
+func makeCompoundMessage(msgs [][]byte) *bytes.Buffer {
+	// Create a local buffer
+	buf := bytes.NewBuffer(nil)
+
+	// Write out the type
+	buf.WriteByte(uint8(compoundMsg))
+
+	// Write out the number of message
+	buf.WriteByte(uint8(len(msgs)))
+
+	// Add the message lengths
+	for _, m := range msgs {
+		binary.Write(buf, binary.BigEndian, uint16(len(m)))
+	}
+
+	// Append the messages
+	for _, m := range msgs {
+		buf.Write(m)
+	}
+
+	return buf
+}
+
+// decodeCompoundMessage splits a compound message and returns
+// the slices of individual messages. Also returns the number
+// of truncated messages and any potential error
+func decodeCompoundMessage(buf []byte) (trunc int, parts [][]byte, err error) {
+	if len(buf) < 1 {
+		err = fmt.Errorf("missing compound length byte")
+		return
+	}
+	numParts := uint8(buf[0])
+	buf = buf[1:]
+
+	// Check we have enough bytes
+	if len(buf) < int(numParts*2) {
+		err = fmt.Errorf("truncated len slice")
+		return
+	}
+
+	// Decode the lengths
+	lengths := make([]uint16, numParts)
+	for i := 0; i < int(numParts); i++ {
+		lengths[i] = binary.BigEndian.Uint16(buf[i*2 : i*2+2])
+	}
+	buf = buf[numParts*2:]
+
+	// Split each message
+	for idx, msgLen := range lengths {
+		if len(buf) < int(msgLen) {
+			trunc = int(numParts) - idx
+			return
+		}
+
+		// Extract the slice, seek past on the buffer
+		slice := buf[:msgLen]
+		buf = buf[msgLen:]
+		parts = append(parts, slice)
+	}
+	return
+}
+
+// Given a string of the form "host", "host:port",
+// "ipv6::addr" or "[ipv6::address]:port",
+// return true if the string includes a port.
+func hasPort(s string) bool {
+	last := strings.LastIndex(s, ":")
+	if last == -1 {
+		return false
+	}
+	if s[0] == '[' {
+		return s[last-1] == ']'
+	}
+	return strings.Index(s, ":") == last
+}
+
+// compressPayload takes an opaque input buffer, compresses it
+// and wraps it in a compress{} message that is encoded.
+func compressPayload(inp []byte) (*bytes.Buffer, error) {
+	var buf bytes.Buffer
+	compressor := lzw.NewWriter(&buf, lzw.LSB, lzwLitWidth)
+
+	_, err := compressor.Write(inp)
+	if err != nil {
+		return nil, err
+	}
+
+	// Ensure we flush everything out
+	if err := compressor.Close(); err != nil {
+		return nil, err
+	}
+
+	// Create a compressed message
+	c := compress{
+		Algo: lzwAlgo,
+		Buf:  buf.Bytes(),
+	}
+	return encode(compressMsg, &c)
+}
+
+// decompressPayload is used to unpack an encoded compress{}
+// message and return its payload uncompressed
+func decompressPayload(msg []byte) ([]byte, error) {
+	// Decode the message
+	var c compress
+	if err := decode(msg, &c); err != nil {
+		return nil, err
+	}
+	return decompressBuffer(&c)
+}
+
+// decompressBuffer is used to decompress the buffer of
+// a single compress message, handling multiple algorithms
+func decompressBuffer(c *compress) ([]byte, error) {
+	// Verify the algorithm
+	if c.Algo != lzwAlgo {
+		return nil, fmt.Errorf("Cannot decompress unknown algorithm %d", c.Algo)
+	}
+
+	// Create a uncompressor
+	uncomp := lzw.NewReader(bytes.NewReader(c.Buf), lzw.LSB, lzwLitWidth)
+	defer uncomp.Close()
+
+	// Read all the data
+	var b bytes.Buffer
+	_, err := io.Copy(&b, uncomp)
+	if err != nil {
+		return nil, err
+	}
+
+	// Return the uncompressed bytes
+	return b.Bytes(), nil
+}
+
+// joinHostPort returns the host:port form of an address, for use with a
+// transport.
+func joinHostPort(host string, port uint16) string {
+	return net.JoinHostPort(host, strconv.Itoa(int(port)))
+}
diff --git a/vendor/github.com/hashicorp/serf/LICENSE b/vendor/github.com/hashicorp/serf/LICENSE
new file mode 100644
index 0000000000..c33dcc7c92
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/LICENSE
@@ -0,0 +1,354 @@
+Mozilla Public License, version 2.0
+
+1. Definitions
+
+1.1. “Contributor”
+
+     means each individual or legal entity that creates, contributes to the
+     creation of, or owns Covered Software.
+
+1.2. “Contributor Version”
+
+     means the combination of the Contributions of others (if any) used by a
+     Contributor and that particular Contributor’s Contribution.
+
+1.3. “Contribution”
+
+     means Covered Software of a particular Contributor.
+
+1.4. “Covered Software”
+
+     means Source Code Form to which the initial Contributor has attached the
+     notice in Exhibit A, the Executable Form of such Source Code Form, and
+     Modifications of such Source Code Form, in each case including portions
+     thereof.
+
+1.5. “Incompatible With Secondary Licenses”
+     means
+
+     a. that the initial Contributor has attached the notice described in
+        Exhibit B to the Covered Software; or
+
+     b. that the Covered Software was made available under the terms of version
+        1.1 or earlier of the License, but not also under the terms of a
+        Secondary License.
+
+1.6. “Executable Form”
+
+     means any form of the work other than Source Code Form.
+
+1.7. “Larger Work”
+
+     means a work that combines Covered Software with other material, in a separate
+     file or files, that is not Covered Software.
+
+1.8. “License”
+
+     means this document.
+
+1.9. “Licensable”
+
+     means having the right to grant, to the maximum extent possible, whether at the
+     time of the initial grant or subsequently, any and all of the rights conveyed by
+     this License.
+
+1.10. “Modifications”
+
+     means any of the following:
+
+     a. any file in Source Code Form that results from an addition to, deletion
+        from, or modification of the contents of Covered Software; or
+
+     b. any new file in Source Code Form that contains any Covered Software.
+
+1.11. “Patent Claims” of a Contributor
+
+      means any patent claim(s), including without limitation, method, process,
+      and apparatus claims, in any patent Licensable by such Contributor that
+      would be infringed, but for the grant of the License, by the making,
+      using, selling, offering for sale, having made, import, or transfer of
+      either its Contributions or its Contributor Version.
+
+1.12. “Secondary License”
+
+      means either the GNU General Public License, Version 2.0, the GNU Lesser
+      General Public License, Version 2.1, the GNU Affero General Public
+      License, Version 3.0, or any later versions of those licenses.
+
+1.13. “Source Code Form”
+
+      means the form of the work preferred for making modifications.
+
+1.14. “You” (or “Your”)
+
+      means an individual or a legal entity exercising rights under this
+      License. For legal entities, “You” includes any entity that controls, is
+      controlled by, or is under common control with You. For purposes of this
+      definition, “control” means (a) the power, direct or indirect, to cause
+      the direction or management of such entity, whether by contract or
+      otherwise, or (b) ownership of more than fifty percent (50%) of the
+      outstanding shares or beneficial ownership of such entity.
+
+
+2. License Grants and Conditions
+
+2.1. Grants
+
+     Each Contributor hereby grants You a world-wide, royalty-free,
+     non-exclusive license:
+
+     a. under intellectual property rights (other than patent or trademark)
+        Licensable by such Contributor to use, reproduce, make available,
+        modify, display, perform, distribute, and otherwise exploit its
+        Contributions, either on an unmodified basis, with Modifications, or as
+        part of a Larger Work; and
+
+     b. under Patent Claims of such Contributor to make, use, sell, offer for
+        sale, have made, import, and otherwise transfer either its Contributions
+        or its Contributor Version.
+
+2.2. Effective Date
+
+     The licenses granted in Section 2.1 with respect to any Contribution become
+     effective for each Contribution on the date the Contributor first distributes
+     such Contribution.
+
+2.3. Limitations on Grant Scope
+
+     The licenses granted in this Section 2 are the only rights granted under this
+     License. No additional rights or licenses will be implied from the distribution
+     or licensing of Covered Software under this License. Notwithstanding Section
+     2.1(b) above, no patent license is granted by a Contributor:
+
+     a. for any code that a Contributor has removed from Covered Software; or
+
+     b. for infringements caused by: (i) Your and any other third party’s
+        modifications of Covered Software, or (ii) the combination of its
+        Contributions with other software (except as part of its Contributor
+        Version); or
+
+     c. under Patent Claims infringed by Covered Software in the absence of its
+        Contributions.
+
+     This License does not grant any rights in the trademarks, service marks, or
+     logos of any Contributor (except as may be necessary to comply with the
+     notice requirements in Section 3.4).
+
+2.4. Subsequent Licenses
+
+     No Contributor makes additional grants as a result of Your choice to
+     distribute the Covered Software under a subsequent version of this License
+     (see Section 10.2) or under the terms of a Secondary License (if permitted
+     under the terms of Section 3.3).
+
+2.5. Representation
+
+     Each Contributor represents that the Contributor believes its Contributions
+     are its original creation(s) or it has sufficient rights to grant the
+     rights to its Contributions conveyed by this License.
+
+2.6. Fair Use
+
+     This License is not intended to limit any rights You have under applicable
+     copyright doctrines of fair use, fair dealing, or other equivalents.
+
+2.7. Conditions
+
+     Sections 3.1, 3.2, 3.3, and 3.4 are conditions of the licenses granted in
+     Section 2.1.
+
+
+3. Responsibilities
+
+3.1. Distribution of Source Form
+
+     All distribution of Covered Software in Source Code Form, including any
+     Modifications that You create or to which You contribute, must be under the
+     terms of this License. You must inform recipients that the Source Code Form
+     of the Covered Software is governed by the terms of this License, and how
+     they can obtain a copy of this License. You may not attempt to alter or
+     restrict the recipients’ rights in the Source Code Form.
+
+3.2. Distribution of Executable Form
+
+     If You distribute Covered Software in Executable Form then:
+
+     a. such Covered Software must also be made available in Source Code Form,
+        as described in Section 3.1, and You must inform recipients of the
+        Executable Form how they can obtain a copy of such Source Code Form by
+        reasonable means in a timely manner, at a charge no more than the cost
+        of distribution to the recipient; and
+
+     b. You may distribute such Executable Form under the terms of this License,
+        or sublicense it under different terms, provided that the license for
+        the Executable Form does not attempt to limit or alter the recipients’
+        rights in the Source Code Form under this License.
+
+3.3. Distribution of a Larger Work
+
+     You may create and distribute a Larger Work under terms of Your choice,
+     provided that You also comply with the requirements of this License for the
+     Covered Software. If the Larger Work is a combination of Covered Software
+     with a work governed by one or more Secondary Licenses, and the Covered
+     Software is not Incompatible With Secondary Licenses, this License permits
+     You to additionally distribute such Covered Software under the terms of
+     such Secondary License(s), so that the recipient of the Larger Work may, at
+     their option, further distribute the Covered Software under the terms of
+     either this License or such Secondary License(s).
+
+3.4. Notices
+
+     You may not remove or alter the substance of any license notices (including
+     copyright notices, patent notices, disclaimers of warranty, or limitations
+     of liability) contained within the Source Code Form of the Covered
+     Software, except that You may alter any license notices to the extent
+     required to remedy known factual inaccuracies.
+
+3.5. Application of Additional Terms
+
+     You may choose to offer, and to charge a fee for, warranty, support,
+     indemnity or liability obligations to one or more recipients of Covered
+     Software. However, You may do so only on Your own behalf, and not on behalf
+     of any Contributor. You must make it absolutely clear that any such
+     warranty, support, indemnity, or liability obligation is offered by You
+     alone, and You hereby agree to indemnify every Contributor for any
+     liability incurred by such Contributor as a result of warranty, support,
+     indemnity or liability terms You offer. You may include additional
+     disclaimers of warranty and limitations of liability specific to any
+     jurisdiction.
+
+4. Inability to Comply Due to Statute or Regulation
+
+   If it is impossible for You to comply with any of the terms of this License
+   with respect to some or all of the Covered Software due to statute, judicial
+   order, or regulation then You must: (a) comply with the terms of this License
+   to the maximum extent possible; and (b) describe the limitations and the code
+   they affect. Such description must be placed in a text file included with all
+   distributions of the Covered Software under this License. Except to the
+   extent prohibited by statute or regulation, such description must be
+   sufficiently detailed for a recipient of ordinary skill to be able to
+   understand it.
+
+5. Termination
+
+5.1. The rights granted under this License will terminate automatically if You
+     fail to comply with any of its terms. However, if You become compliant,
+     then the rights granted under this License from a particular Contributor
+     are reinstated (a) provisionally, unless and until such Contributor
+     explicitly and finally terminates Your grants, and (b) on an ongoing basis,
+     if such Contributor fails to notify You of the non-compliance by some
+     reasonable means prior to 60 days after You have come back into compliance.
+     Moreover, Your grants from a particular Contributor are reinstated on an
+     ongoing basis if such Contributor notifies You of the non-compliance by
+     some reasonable means, this is the first time You have received notice of
+     non-compliance with this License from such Contributor, and You become
+     compliant prior to 30 days after Your receipt of the notice.
+
+5.2. If You initiate litigation against any entity by asserting a patent
+     infringement claim (excluding declaratory judgment actions, counter-claims,
+     and cross-claims) alleging that a Contributor Version directly or
+     indirectly infringes any patent, then the rights granted to You by any and
+     all Contributors for the Covered Software under Section 2.1 of this License
+     shall terminate.
+
+5.3. In the event of termination under Sections 5.1 or 5.2 above, all end user
+     license agreements (excluding distributors and resellers) which have been
+     validly granted by You or Your distributors under this License prior to
+     termination shall survive termination.
+
+6. Disclaimer of Warranty
+
+   Covered Software is provided under this License on an “as is” basis, without
+   warranty of any kind, either expressed, implied, or statutory, including,
+   without limitation, warranties that the Covered Software is free of defects,
+   merchantable, fit for a particular purpose or non-infringing. The entire
+   risk as to the quality and performance of the Covered Software is with You.
+   Should any Covered Software prove defective in any respect, You (not any
+   Contributor) assume the cost of any necessary servicing, repair, or
+   correction. This disclaimer of warranty constitutes an essential part of this
+   License. No use of  any Covered Software is authorized under this License
+   except under this disclaimer.
+
+7. Limitation of Liability
+
+   Under no circumstances and under no legal theory, whether tort (including
+   negligence), contract, or otherwise, shall any Contributor, or anyone who
+   distributes Covered Software as permitted above, be liable to You for any
+   direct, indirect, special, incidental, or consequential damages of any
+   character including, without limitation, damages for lost profits, loss of
+   goodwill, work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses, even if such party shall have been
+   informed of the possibility of such damages. This limitation of liability
+   shall not apply to liability for death or personal injury resulting from such
+   party’s negligence to the extent applicable law prohibits such limitation.
+   Some jurisdictions do not allow the exclusion or limitation of incidental or
+   consequential damages, so this exclusion and limitation may not apply to You.
+
+8. Litigation
+
+   Any litigation relating to this License may be brought only in the courts of
+   a jurisdiction where the defendant maintains its principal place of business
+   and such litigation shall be governed by laws of that jurisdiction, without
+   reference to its conflict-of-law provisions. Nothing in this Section shall
+   prevent a party’s ability to bring cross-claims or counter-claims.
+
+9. Miscellaneous
+
+   This License represents the complete agreement concerning the subject matter
+   hereof. If any provision of this License is held to be unenforceable, such
+   provision shall be reformed only to the extent necessary to make it
+   enforceable. Any law or regulation which provides that the language of a
+   contract shall be construed against the drafter shall not be used to construe
+   this License against a Contributor.
+
+
+10. Versions of the License
+
+10.1. New Versions
+
+      Mozilla Foundation is the license steward. Except as provided in Section
+      10.3, no one other than the license steward has the right to modify or
+      publish new versions of this License. Each version will be given a
+      distinguishing version number.
+
+10.2. Effect of New Versions
+
+      You may distribute the Covered Software under the terms of the version of
+      the License under which You originally received the Covered Software, or
+      under the terms of any subsequent version published by the license
+      steward.
+
+10.3. Modified Versions
+
+      If you create software not governed by this License, and you want to
+      create a new license for such software, you may create and use a modified
+      version of this License if you rename the license and remove any
+      references to the name of the license steward (except to note that such
+      modified license differs from this License).
+
+10.4. Distributing Source Code Form that is Incompatible With Secondary Licenses
+      If You choose to distribute Source Code Form that is Incompatible With
+      Secondary Licenses under the terms of this version of the License, the
+      notice described in Exhibit B of this License must be attached.
+
+Exhibit A - Source Code Form License Notice
+
+      This Source Code Form is subject to the
+      terms of the Mozilla Public License, v.
+      2.0. If a copy of the MPL was not
+      distributed with this file, You can
+      obtain one at
+      http://mozilla.org/MPL/2.0/.
+
+If it is not possible or desirable to put the notice in a particular file, then
+You may include the notice in a location (such as a LICENSE file in a relevant
+directory) where a recipient would be likely to look for such a notice.
+
+You may add additional accurate notices of copyright ownership.
+
+Exhibit B - “Incompatible With Secondary Licenses” Notice
+
+      This Source Code Form is “Incompatible
+      With Secondary Licenses”, as defined by
+      the Mozilla Public License, v. 2.0.
+
diff --git a/vendor/github.com/hashicorp/serf/coordinate/client.go b/vendor/github.com/hashicorp/serf/coordinate/client.go
new file mode 100644
index 0000000000..613bfff89e
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/coordinate/client.go
@@ -0,0 +1,180 @@
+package coordinate
+
+import (
+	"fmt"
+	"math"
+	"sort"
+	"sync"
+	"time"
+)
+
+// Client manages the estimated network coordinate for a given node, and adjusts
+// it as the node observes round trip times and estimated coordinates from other
+// nodes. The core algorithm is based on Vivaldi, see the documentation for Config
+// for more details.
+type Client struct {
+	// coord is the current estimate of the client's network coordinate.
+	coord *Coordinate
+
+	// origin is a coordinate sitting at the origin.
+	origin *Coordinate
+
+	// config contains the tuning parameters that govern the performance of
+	// the algorithm.
+	config *Config
+
+	// adjustmentIndex is the current index into the adjustmentSamples slice.
+	adjustmentIndex uint
+
+	// adjustment is used to store samples for the adjustment calculation.
+	adjustmentSamples []float64
+
+	// latencyFilterSamples is used to store the last several RTT samples,
+	// keyed by node name. We will use the config's LatencyFilterSamples
+	// value to determine how many samples we keep, per node.
+	latencyFilterSamples map[string][]float64
+
+	// mutex enables safe concurrent access to the client.
+	mutex sync.RWMutex
+}
+
+// NewClient creates a new Client and verifies the configuration is valid.
+func NewClient(config *Config) (*Client, error) {
+	if !(config.Dimensionality > 0) {
+		return nil, fmt.Errorf("dimensionality must be >0")
+	}
+
+	return &Client{
+		coord:                NewCoordinate(config),
+		origin:               NewCoordinate(config),
+		config:               config,
+		adjustmentIndex:      0,
+		adjustmentSamples:    make([]float64, config.AdjustmentWindowSize),
+		latencyFilterSamples: make(map[string][]float64),
+	}, nil
+}
+
+// GetCoordinate returns a copy of the coordinate for this client.
+func (c *Client) GetCoordinate() *Coordinate {
+	c.mutex.RLock()
+	defer c.mutex.RUnlock()
+
+	return c.coord.Clone()
+}
+
+// SetCoordinate forces the client's coordinate to a known state.
+func (c *Client) SetCoordinate(coord *Coordinate) {
+	c.mutex.Lock()
+	defer c.mutex.Unlock()
+
+	c.coord = coord.Clone()
+}
+
+// ForgetNode removes any client state for the given node.
+func (c *Client) ForgetNode(node string) {
+	c.mutex.Lock()
+	defer c.mutex.Unlock()
+
+	delete(c.latencyFilterSamples, node)
+}
+
+// latencyFilter applies a simple moving median filter with a new sample for
+// a node. This assumes that the mutex has been locked already.
+func (c *Client) latencyFilter(node string, rttSeconds float64) float64 {
+	samples, ok := c.latencyFilterSamples[node]
+	if !ok {
+		samples = make([]float64, 0, c.config.LatencyFilterSize)
+	}
+
+	// Add the new sample and trim the list, if needed.
+	samples = append(samples, rttSeconds)
+	if len(samples) > int(c.config.LatencyFilterSize) {
+		samples = samples[1:]
+	}
+	c.latencyFilterSamples[node] = samples
+
+	// Sort a copy of the samples and return the median.
+	sorted := make([]float64, len(samples))
+	copy(sorted, samples)
+	sort.Float64s(sorted)
+	return sorted[len(sorted)/2]
+}
+
+// updateVivialdi updates the Vivaldi portion of the client's coordinate. This
+// assumes that the mutex has been locked already.
+func (c *Client) updateVivaldi(other *Coordinate, rttSeconds float64) {
+	const zeroThreshold = 1.0e-6
+
+	dist := c.coord.DistanceTo(other).Seconds()
+	if rttSeconds < zeroThreshold {
+		rttSeconds = zeroThreshold
+	}
+	wrongness := math.Abs(dist-rttSeconds) / rttSeconds
+
+	totalError := c.coord.Error + other.Error
+	if totalError < zeroThreshold {
+		totalError = zeroThreshold
+	}
+	weight := c.coord.Error / totalError
+
+	c.coord.Error = c.config.VivaldiCE*weight*wrongness + c.coord.Error*(1.0-c.config.VivaldiCE*weight)
+	if c.coord.Error > c.config.VivaldiErrorMax {
+		c.coord.Error = c.config.VivaldiErrorMax
+	}
+
+	delta := c.config.VivaldiCC * weight
+	force := delta * (rttSeconds - dist)
+	c.coord = c.coord.ApplyForce(c.config, force, other)
+}
+
+// updateAdjustment updates the adjustment portion of the client's coordinate, if
+// the feature is enabled. This assumes that the mutex has been locked already.
+func (c *Client) updateAdjustment(other *Coordinate, rttSeconds float64) {
+	if c.config.AdjustmentWindowSize == 0 {
+		return
+	}
+
+	// Note that the existing adjustment factors don't figure in to this
+	// calculation so we use the raw distance here.
+	dist := c.coord.rawDistanceTo(other)
+	c.adjustmentSamples[c.adjustmentIndex] = rttSeconds - dist
+	c.adjustmentIndex = (c.adjustmentIndex + 1) % c.config.AdjustmentWindowSize
+
+	sum := 0.0
+	for _, sample := range c.adjustmentSamples {
+		sum += sample
+	}
+	c.coord.Adjustment = sum / (2.0 * float64(c.config.AdjustmentWindowSize))
+}
+
+// updateGravity applies a small amount of gravity to pull coordinates towards
+// the center of the coordinate system to combat drift. This assumes that the
+// mutex is locked already.
+func (c *Client) updateGravity() {
+	dist := c.origin.DistanceTo(c.coord).Seconds()
+	force := -1.0 * math.Pow(dist/c.config.GravityRho, 2.0)
+	c.coord = c.coord.ApplyForce(c.config, force, c.origin)
+}
+
+// Update takes other, a coordinate for another node, and rtt, a round trip
+// time observation for a ping to that node, and updates the estimated position of
+// the client's coordinate. Returns the updated coordinate.
+func (c *Client) Update(node string, other *Coordinate, rtt time.Duration) *Coordinate {
+	c.mutex.Lock()
+	defer c.mutex.Unlock()
+
+	rttSeconds := c.latencyFilter(node, rtt.Seconds())
+	c.updateVivaldi(other, rttSeconds)
+	c.updateAdjustment(other, rttSeconds)
+	c.updateGravity()
+	return c.coord.Clone()
+}
+
+// DistanceTo returns the estimated RTT from the client's coordinate to other, the
+// coordinate for another node.
+func (c *Client) DistanceTo(other *Coordinate) time.Duration {
+	c.mutex.RLock()
+	defer c.mutex.RUnlock()
+
+	return c.coord.DistanceTo(other)
+}
diff --git a/vendor/github.com/hashicorp/serf/coordinate/config.go b/vendor/github.com/hashicorp/serf/coordinate/config.go
new file mode 100644
index 0000000000..b85a8ab7b0
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/coordinate/config.go
@@ -0,0 +1,70 @@
+package coordinate
+
+// Config is used to set the parameters of the Vivaldi-based coordinate mapping
+// algorithm.
+//
+// The following references are called out at various points in the documentation
+// here:
+//
+// [1] Dabek, Frank, et al. "Vivaldi: A decentralized network coordinate system."
+//     ACM SIGCOMM Computer Communication Review. Vol. 34. No. 4. ACM, 2004.
+// [2] Ledlie, Jonathan, Paul Gardner, and Margo I. Seltzer. "Network Coordinates
+//     in the Wild." NSDI. Vol. 7. 2007.
+// [3] Lee, Sanghwan, et al. "On suitability of Euclidean embedding for
+//     host-based network coordinate systems." Networking, IEEE/ACM Transactions
+//     on 18.1 (2010): 27-40.
+type Config struct {
+	// The dimensionality of the coordinate system. As discussed in [2], more
+	// dimensions improves the accuracy of the estimates up to a point. Per [2]
+	// we chose 8 dimensions plus a non-Euclidean height.
+	Dimensionality uint
+
+	// VivaldiErrorMax is the default error value when a node hasn't yet made
+	// any observations. It also serves as an upper limit on the error value in
+	// case observations cause the error value to increase without bound.
+	VivaldiErrorMax float64
+
+	// VivaldiCE is a tuning factor that controls the maximum impact an
+	// observation can have on a node's confidence. See [1] for more details.
+	VivaldiCE float64
+
+	// VivaldiCC is a tuning factor that controls the maximum impact an
+	// observation can have on a node's coordinate. See [1] for more details.
+	VivaldiCC float64
+
+	// AdjustmentWindowSize is a tuning factor that determines how many samples
+	// we retain to calculate the adjustment factor as discussed in [3]. Setting
+	// this to zero disables this feature.
+	AdjustmentWindowSize uint
+
+	// HeightMin is the minimum value of the height parameter. Since this
+	// always must be positive, it will introduce a small amount error, so
+	// the chosen value should be relatively small compared to "normal"
+	// coordinates.
+	HeightMin float64
+
+	// LatencyFilterSamples is the maximum number of samples that are retained
+	// per node, in order to compute a median. The intent is to ride out blips
+	// but still keep the delay low, since our time to probe any given node is
+	// pretty infrequent. See [2] for more details.
+	LatencyFilterSize uint
+
+	// GravityRho is a tuning factor that sets how much gravity has an effect
+	// to try to re-center coordinates. See [2] for more details.
+	GravityRho float64
+}
+
+// DefaultConfig returns a Config that has some default values suitable for
+// basic testing of the algorithm, but not tuned to any particular type of cluster.
+func DefaultConfig() *Config {
+	return &Config{
+		Dimensionality:       8,
+		VivaldiErrorMax:      1.5,
+		VivaldiCE:            0.25,
+		VivaldiCC:            0.25,
+		AdjustmentWindowSize: 20,
+		HeightMin:            10.0e-6,
+		LatencyFilterSize:    3,
+		GravityRho:           150.0,
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/coordinate/coordinate.go b/vendor/github.com/hashicorp/serf/coordinate/coordinate.go
new file mode 100644
index 0000000000..c9194e048b
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/coordinate/coordinate.go
@@ -0,0 +1,183 @@
+package coordinate
+
+import (
+	"math"
+	"math/rand"
+	"time"
+)
+
+// Coordinate is a specialized structure for holding network coordinates for the
+// Vivaldi-based coordinate mapping algorithm. All of the fields should be public
+// to enable this to be serialized. All values in here are in units of seconds.
+type Coordinate struct {
+	// Vec is the Euclidean portion of the coordinate. This is used along
+	// with the other fields to provide an overall distance estimate. The
+	// units here are seconds.
+	Vec []float64
+
+	// Err reflects the confidence in the given coordinate and is updated
+	// dynamically by the Vivaldi Client. This is dimensionless.
+	Error float64
+
+	// Adjustment is a distance offset computed based on a calculation over
+	// observations from all other nodes over a fixed window and is updated
+	// dynamically by the Vivaldi Client. The units here are seconds.
+	Adjustment float64
+
+	// Height is a distance offset that accounts for non-Euclidean effects
+	// which model the access links from nodes to the core Internet. The access
+	// links are usually set by bandwidth and congestion, and the core links
+	// usually follow distance based on geography.
+	Height float64
+}
+
+const (
+	// secondsToNanoseconds is used to convert float seconds to nanoseconds.
+	secondsToNanoseconds = 1.0e9
+
+	// zeroThreshold is used to decide if two coordinates are on top of each
+	// other.
+	zeroThreshold = 1.0e-6
+)
+
+// ErrDimensionalityConflict will be panic-d if you try to perform operations
+// with incompatible dimensions.
+type DimensionalityConflictError struct{}
+
+// Adds the error interface.
+func (e DimensionalityConflictError) Error() string {
+	return "coordinate dimensionality does not match"
+}
+
+// NewCoordinate creates a new coordinate at the origin, using the given config
+// to supply key initial values.
+func NewCoordinate(config *Config) *Coordinate {
+	return &Coordinate{
+		Vec:        make([]float64, config.Dimensionality),
+		Error:      config.VivaldiErrorMax,
+		Adjustment: 0.0,
+		Height:     config.HeightMin,
+	}
+}
+
+// Clone creates an independent copy of this coordinate.
+func (c *Coordinate) Clone() *Coordinate {
+	vec := make([]float64, len(c.Vec))
+	copy(vec, c.Vec)
+	return &Coordinate{
+		Vec:        vec,
+		Error:      c.Error,
+		Adjustment: c.Adjustment,
+		Height:     c.Height,
+	}
+}
+
+// IsCompatibleWith checks to see if the two coordinates are compatible
+// dimensionally. If this returns true then you are guaranteed to not get
+// any runtime errors operating on them.
+func (c *Coordinate) IsCompatibleWith(other *Coordinate) bool {
+	return len(c.Vec) == len(other.Vec)
+}
+
+// ApplyForce returns the result of applying the force from the direction of the
+// other coordinate.
+func (c *Coordinate) ApplyForce(config *Config, force float64, other *Coordinate) *Coordinate {
+	if !c.IsCompatibleWith(other) {
+		panic(DimensionalityConflictError{})
+	}
+
+	ret := c.Clone()
+	unit, mag := unitVectorAt(c.Vec, other.Vec)
+	ret.Vec = add(ret.Vec, mul(unit, force))
+	if mag > zeroThreshold {
+		ret.Height = (ret.Height+other.Height)*force/mag + ret.Height
+		ret.Height = math.Max(ret.Height, config.HeightMin)
+	}
+	return ret
+}
+
+// DistanceTo returns the distance between this coordinate and the other
+// coordinate, including adjustments.
+func (c *Coordinate) DistanceTo(other *Coordinate) time.Duration {
+	if !c.IsCompatibleWith(other) {
+		panic(DimensionalityConflictError{})
+	}
+
+	dist := c.rawDistanceTo(other)
+	adjustedDist := dist + c.Adjustment + other.Adjustment
+	if adjustedDist > 0.0 {
+		dist = adjustedDist
+	}
+	return time.Duration(dist * secondsToNanoseconds)
+}
+
+// rawDistanceTo returns the Vivaldi distance between this coordinate and the
+// other coordinate in seconds, not including adjustments. This assumes the
+// dimensions have already been checked to be compatible.
+func (c *Coordinate) rawDistanceTo(other *Coordinate) float64 {
+	return magnitude(diff(c.Vec, other.Vec)) + c.Height + other.Height
+}
+
+// add returns the sum of vec1 and vec2. This assumes the dimensions have
+// already been checked to be compatible.
+func add(vec1 []float64, vec2 []float64) []float64 {
+	ret := make([]float64, len(vec1))
+	for i, _ := range ret {
+		ret[i] = vec1[i] + vec2[i]
+	}
+	return ret
+}
+
+// diff returns the difference between the vec1 and vec2. This assumes the
+// dimensions have already been checked to be compatible.
+func diff(vec1 []float64, vec2 []float64) []float64 {
+	ret := make([]float64, len(vec1))
+	for i, _ := range ret {
+		ret[i] = vec1[i] - vec2[i]
+	}
+	return ret
+}
+
+// mul returns vec multiplied by a scalar factor.
+func mul(vec []float64, factor float64) []float64 {
+	ret := make([]float64, len(vec))
+	for i, _ := range vec {
+		ret[i] = vec[i] * factor
+	}
+	return ret
+}
+
+// magnitude computes the magnitude of the vec.
+func magnitude(vec []float64) float64 {
+	sum := 0.0
+	for i, _ := range vec {
+		sum += vec[i] * vec[i]
+	}
+	return math.Sqrt(sum)
+}
+
+// unitVectorAt returns a unit vector pointing at vec1 from vec2. If the two
+// positions are the same then a random unit vector is returned. We also return
+// the distance between the points for use in the later height calculation.
+func unitVectorAt(vec1 []float64, vec2 []float64) ([]float64, float64) {
+	ret := diff(vec1, vec2)
+
+	// If the coordinates aren't on top of each other we can normalize.
+	if mag := magnitude(ret); mag > zeroThreshold {
+		return mul(ret, 1.0/mag), mag
+	}
+
+	// Otherwise, just return a random unit vector.
+	for i, _ := range ret {
+		ret[i] = rand.Float64() - 0.5
+	}
+	if mag := magnitude(ret); mag > zeroThreshold {
+		return mul(ret, 1.0/mag), 0.0
+	}
+
+	// And finally just give up and make a unit vector along the first
+	// dimension. This should be exceedingly rare.
+	ret = make([]float64, len(ret))
+	ret[0] = 1.0
+	return ret, 0.0
+}
diff --git a/vendor/github.com/hashicorp/serf/coordinate/phantom.go b/vendor/github.com/hashicorp/serf/coordinate/phantom.go
new file mode 100644
index 0000000000..6fb033c0cd
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/coordinate/phantom.go
@@ -0,0 +1,187 @@
+package coordinate
+
+import (
+	"fmt"
+	"math"
+	"math/rand"
+	"time"
+)
+
+// GenerateClients returns a slice with nodes number of clients, all with the
+// given config.
+func GenerateClients(nodes int, config *Config) ([]*Client, error) {
+	clients := make([]*Client, nodes)
+	for i, _ := range clients {
+		client, err := NewClient(config)
+		if err != nil {
+			return nil, err
+		}
+
+		clients[i] = client
+	}
+	return clients, nil
+}
+
+// GenerateLine returns a truth matrix as if all the nodes are in a straight linke
+// with the given spacing between them.
+func GenerateLine(nodes int, spacing time.Duration) [][]time.Duration {
+	truth := make([][]time.Duration, nodes)
+	for i := range truth {
+		truth[i] = make([]time.Duration, nodes)
+	}
+
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			rtt := time.Duration(j-i) * spacing
+			truth[i][j], truth[j][i] = rtt, rtt
+		}
+	}
+	return truth
+}
+
+// GenerateGrid returns a truth matrix as if all the nodes are in a two dimensional
+// grid with the given spacing between them.
+func GenerateGrid(nodes int, spacing time.Duration) [][]time.Duration {
+	truth := make([][]time.Duration, nodes)
+	for i := range truth {
+		truth[i] = make([]time.Duration, nodes)
+	}
+
+	n := int(math.Sqrt(float64(nodes)))
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			x1, y1 := float64(i%n), float64(i/n)
+			x2, y2 := float64(j%n), float64(j/n)
+			dx, dy := x2-x1, y2-y1
+			dist := math.Sqrt(dx*dx + dy*dy)
+			rtt := time.Duration(dist * float64(spacing))
+			truth[i][j], truth[j][i] = rtt, rtt
+		}
+	}
+	return truth
+}
+
+// GenerateSplit returns a truth matrix as if half the nodes are close together in
+// one location and half the nodes are close together in another. The lan factor
+// is used to separate the nodes locally and the wan factor represents the split
+// between the two sides.
+func GenerateSplit(nodes int, lan time.Duration, wan time.Duration) [][]time.Duration {
+	truth := make([][]time.Duration, nodes)
+	for i := range truth {
+		truth[i] = make([]time.Duration, nodes)
+	}
+
+	split := nodes / 2
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			rtt := lan
+			if (i <= split && j > split) || (i > split && j <= split) {
+				rtt += wan
+			}
+			truth[i][j], truth[j][i] = rtt, rtt
+		}
+	}
+	return truth
+}
+
+// GenerateCircle returns a truth matrix for a set of nodes, evenly distributed
+// around a circle with the given radius. The first node is at the "center" of the
+// circle because it's equidistant from all the other nodes, but we place it at
+// double the radius, so it should show up above all the other nodes in height.
+func GenerateCircle(nodes int, radius time.Duration) [][]time.Duration {
+	truth := make([][]time.Duration, nodes)
+	for i := range truth {
+		truth[i] = make([]time.Duration, nodes)
+	}
+
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			var rtt time.Duration
+			if i == 0 {
+				rtt = 2 * radius
+			} else {
+				t1 := 2.0 * math.Pi * float64(i) / float64(nodes)
+				x1, y1 := math.Cos(t1), math.Sin(t1)
+				t2 := 2.0 * math.Pi * float64(j) / float64(nodes)
+				x2, y2 := math.Cos(t2), math.Sin(t2)
+				dx, dy := x2-x1, y2-y1
+				dist := math.Sqrt(dx*dx + dy*dy)
+				rtt = time.Duration(dist * float64(radius))
+			}
+			truth[i][j], truth[j][i] = rtt, rtt
+		}
+	}
+	return truth
+}
+
+// GenerateRandom returns a truth matrix for a set of nodes with normally
+// distributed delays, with the given mean and deviation. The RNG is re-seeded
+// so you always get the same matrix for a given size.
+func GenerateRandom(nodes int, mean time.Duration, deviation time.Duration) [][]time.Duration {
+	rand.Seed(1)
+
+	truth := make([][]time.Duration, nodes)
+	for i := range truth {
+		truth[i] = make([]time.Duration, nodes)
+	}
+
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			rttSeconds := rand.NormFloat64()*deviation.Seconds() + mean.Seconds()
+			rtt := time.Duration(rttSeconds * secondsToNanoseconds)
+			truth[i][j], truth[j][i] = rtt, rtt
+		}
+	}
+	return truth
+}
+
+// Simulate runs the given number of cycles using the given list of clients and
+// truth matrix. On each cycle, each client will pick a random node and observe
+// the truth RTT, updating its coordinate estimate. The RNG is re-seeded for
+// each simulation run to get deterministic results (for this algorithm and the
+// underlying algorithm which will use random numbers for position vectors when
+// starting out with everything at the origin).
+func Simulate(clients []*Client, truth [][]time.Duration, cycles int) {
+	rand.Seed(1)
+
+	nodes := len(clients)
+	for cycle := 0; cycle < cycles; cycle++ {
+		for i, _ := range clients {
+			if j := rand.Intn(nodes); j != i {
+				c := clients[j].GetCoordinate()
+				rtt := truth[i][j]
+				node := fmt.Sprintf("node_%d", j)
+				clients[i].Update(node, c, rtt)
+			}
+		}
+	}
+}
+
+// Stats is returned from the Evaluate function with a summary of the algorithm
+// performance.
+type Stats struct {
+	ErrorMax float64
+	ErrorAvg float64
+}
+
+// Evaluate uses the coordinates of the given clients to calculate estimated
+// distances and compares them with the given truth matrix, returning summary
+// stats.
+func Evaluate(clients []*Client, truth [][]time.Duration) (stats Stats) {
+	nodes := len(clients)
+	count := 0
+	for i := 0; i < nodes; i++ {
+		for j := i + 1; j < nodes; j++ {
+			est := clients[i].DistanceTo(clients[j].GetCoordinate()).Seconds()
+			actual := truth[i][j].Seconds()
+			error := math.Abs(est-actual) / actual
+			stats.ErrorMax = math.Max(stats.ErrorMax, error)
+			stats.ErrorAvg += error
+			count += 1
+		}
+	}
+
+	stats.ErrorAvg /= float64(count)
+	fmt.Printf("Error avg=%9.6f max=%9.6f\n", stats.ErrorAvg, stats.ErrorMax)
+	return
+}
diff --git a/vendor/github.com/hashicorp/serf/ops-misc/debian/copyright b/vendor/github.com/hashicorp/serf/ops-misc/debian/copyright
new file mode 100644
index 0000000000..21a1a1b532
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/ops-misc/debian/copyright
@@ -0,0 +1,2 @@
+Name: serf
+Copyright: Hashicorp 2013
diff --git a/vendor/github.com/hashicorp/serf/serf/broadcast.go b/vendor/github.com/hashicorp/serf/serf/broadcast.go
new file mode 100644
index 0000000000..d20728f3f4
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/broadcast.go
@@ -0,0 +1,27 @@
+package serf
+
+import (
+	"github.com/hashicorp/memberlist"
+)
+
+// broadcast is an implementation of memberlist.Broadcast and is used
+// to manage broadcasts across the memberlist channel that are related
+// only to Serf.
+type broadcast struct {
+	msg    []byte
+	notify chan<- struct{}
+}
+
+func (b *broadcast) Invalidates(other memberlist.Broadcast) bool {
+	return false
+}
+
+func (b *broadcast) Message() []byte {
+	return b.msg
+}
+
+func (b *broadcast) Finished() {
+	if b.notify != nil {
+		close(b.notify)
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/coalesce.go b/vendor/github.com/hashicorp/serf/serf/coalesce.go
new file mode 100644
index 0000000000..567943be14
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/coalesce.go
@@ -0,0 +1,80 @@
+package serf
+
+import (
+	"time"
+)
+
+// coalescer is a simple interface that must be implemented to be
+// used inside of a coalesceLoop
+type coalescer interface {
+	// Can the coalescer handle this event, if not it is
+	// directly passed through to the destination channel
+	Handle(Event) bool
+
+	// Invoked to coalesce the given event
+	Coalesce(Event)
+
+	// Invoked to flush the coalesced events
+	Flush(outChan chan<- Event)
+}
+
+// coalescedEventCh returns an event channel where the events are coalesced
+// using the given coalescer.
+func coalescedEventCh(outCh chan<- Event, shutdownCh <-chan struct{},
+	cPeriod time.Duration, qPeriod time.Duration, c coalescer) chan<- Event {
+	inCh := make(chan Event, 1024)
+	go coalesceLoop(inCh, outCh, shutdownCh, cPeriod, qPeriod, c)
+	return inCh
+}
+
+// coalesceLoop is a simple long-running routine that manages the high-level
+// flow of coalescing based on quiescence and a maximum quantum period.
+func coalesceLoop(inCh <-chan Event, outCh chan<- Event, shutdownCh <-chan struct{},
+	coalescePeriod time.Duration, quiescentPeriod time.Duration, c coalescer) {
+	var quiescent <-chan time.Time
+	var quantum <-chan time.Time
+	shutdown := false
+
+INGEST:
+	// Reset the timers
+	quantum = nil
+	quiescent = nil
+
+	for {
+		select {
+		case e := <-inCh:
+			// Ignore any non handled events
+			if !c.Handle(e) {
+				outCh <- e
+				continue
+			}
+
+			// Start a new quantum if we need to
+			// and restart the quiescent timer
+			if quantum == nil {
+				quantum = time.After(coalescePeriod)
+			}
+			quiescent = time.After(quiescentPeriod)
+
+			// Coalesce the event
+			c.Coalesce(e)
+
+		case <-quantum:
+			goto FLUSH
+		case <-quiescent:
+			goto FLUSH
+		case <-shutdownCh:
+			shutdown = true
+			goto FLUSH
+		}
+	}
+
+FLUSH:
+	// Flush the coalesced events
+	c.Flush(outCh)
+
+	// Restart ingestion if we are not done
+	if !shutdown {
+		goto INGEST
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/coalesce_member.go b/vendor/github.com/hashicorp/serf/serf/coalesce_member.go
new file mode 100644
index 0000000000..82fdb8dacf
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/coalesce_member.go
@@ -0,0 +1,68 @@
+package serf
+
+type coalesceEvent struct {
+	Type   EventType
+	Member *Member
+}
+
+type memberEventCoalescer struct {
+	lastEvents   map[string]EventType
+	latestEvents map[string]coalesceEvent
+}
+
+func (c *memberEventCoalescer) Handle(e Event) bool {
+	switch e.EventType() {
+	case EventMemberJoin:
+		return true
+	case EventMemberLeave:
+		return true
+	case EventMemberFailed:
+		return true
+	case EventMemberUpdate:
+		return true
+	case EventMemberReap:
+		return true
+	default:
+		return false
+	}
+}
+
+func (c *memberEventCoalescer) Coalesce(raw Event) {
+	e := raw.(MemberEvent)
+	for _, m := range e.Members {
+		c.latestEvents[m.Name] = coalesceEvent{
+			Type:   e.Type,
+			Member: &m,
+		}
+	}
+}
+
+func (c *memberEventCoalescer) Flush(outCh chan<- Event) {
+	// Coalesce the various events we got into a single set of events.
+	events := make(map[EventType]*MemberEvent)
+	for name, cevent := range c.latestEvents {
+		previous, ok := c.lastEvents[name]
+
+		// If we sent the same event before, then ignore
+		// unless it is a MemberUpdate
+		if ok && previous == cevent.Type && cevent.Type != EventMemberUpdate {
+			continue
+		}
+
+		// Update our last event
+		c.lastEvents[name] = cevent.Type
+
+		// Add it to our event
+		newEvent, ok := events[cevent.Type]
+		if !ok {
+			newEvent = &MemberEvent{Type: cevent.Type}
+			events[cevent.Type] = newEvent
+		}
+		newEvent.Members = append(newEvent.Members, *cevent.Member)
+	}
+
+	// Send out those events
+	for _, event := range events {
+		outCh <- *event
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/coalesce_user.go b/vendor/github.com/hashicorp/serf/serf/coalesce_user.go
new file mode 100644
index 0000000000..1551b6c52c
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/coalesce_user.go
@@ -0,0 +1,52 @@
+package serf
+
+type latestUserEvents struct {
+	LTime  LamportTime
+	Events []Event
+}
+
+type userEventCoalescer struct {
+	// Maps an event name into the latest versions
+	events map[string]*latestUserEvents
+}
+
+func (c *userEventCoalescer) Handle(e Event) bool {
+	// Only handle EventUser messages
+	if e.EventType() != EventUser {
+		return false
+	}
+
+	// Check if coalescing is enabled
+	user := e.(UserEvent)
+	return user.Coalesce
+}
+
+func (c *userEventCoalescer) Coalesce(e Event) {
+	user := e.(UserEvent)
+	latest, ok := c.events[user.Name]
+
+	// Create a new entry if there are none, or
+	// if this message has the newest LTime
+	if !ok || latest.LTime < user.LTime {
+		latest = &latestUserEvents{
+			LTime:  user.LTime,
+			Events: []Event{e},
+		}
+		c.events[user.Name] = latest
+		return
+	}
+
+	// If the the same age, save it
+	if latest.LTime == user.LTime {
+		latest.Events = append(latest.Events, e)
+	}
+}
+
+func (c *userEventCoalescer) Flush(outChan chan<- Event) {
+	for _, latest := range c.events {
+		for _, e := range latest.Events {
+			outChan <- e
+		}
+	}
+	c.events = make(map[string]*latestUserEvents)
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/config.go b/vendor/github.com/hashicorp/serf/serf/config.go
new file mode 100644
index 0000000000..2403cea587
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/config.go
@@ -0,0 +1,260 @@
+package serf
+
+import (
+	"io"
+	"os"
+	"time"
+
+	"github.com/hashicorp/memberlist"
+)
+
+// ProtocolVersionMap is the mapping of Serf delegate protocol versions
+// to memberlist protocol versions. We mask the memberlist protocols using
+// our own protocol version.
+var ProtocolVersionMap map[uint8]uint8
+
+func init() {
+	ProtocolVersionMap = map[uint8]uint8{
+		5: 2,
+		4: 2,
+		3: 2,
+		2: 2,
+	}
+}
+
+// Config is the configuration for creating a Serf instance.
+type Config struct {
+	// The name of this node. This must be unique in the cluster. If this
+	// is not set, Serf will set it to the hostname of the running machine.
+	NodeName string
+
+	// The tags for this role, if any. This is used to provide arbitrary
+	// key/value metadata per-node. For example, a "role" tag may be used to
+	// differentiate "load-balancer" from a "web" role as parts of the same cluster.
+	// Tags are deprecating 'Role', and instead it acts as a special key in this
+	// map.
+	Tags map[string]string
+
+	// EventCh is a channel that receives all the Serf events. The events
+	// are sent on this channel in proper ordering. Care must be taken that
+	// this channel doesn't block, either by processing the events quick
+	// enough or buffering the channel, otherwise it can block state updates
+	// within Serf itself. If no EventCh is specified, no events will be fired,
+	// but point-in-time snapshots of members can still be retrieved by
+	// calling Members on Serf.
+	EventCh chan<- Event
+
+	// ProtocolVersion is the protocol version to speak. This must be between
+	// ProtocolVersionMin and ProtocolVersionMax.
+	ProtocolVersion uint8
+
+	// BroadcastTimeout is the amount of time to wait for a broadcast
+	// message to be sent to the cluster. Broadcast messages are used for
+	// things like leave messages and force remove messages. If this is not
+	// set, a timeout of 5 seconds will be set.
+	BroadcastTimeout time.Duration
+
+	// The settings below relate to Serf's event coalescence feature. Serf
+	// is able to coalesce multiple events into single events in order to
+	// reduce the amount of noise that is sent along the EventCh. For example
+	// if five nodes quickly join, the EventCh will be sent one EventMemberJoin
+	// containing the five nodes rather than five individual EventMemberJoin
+	// events. Coalescence can mitigate potential flapping behavior.
+	//
+	// Coalescence is disabled by default and can be enabled by setting
+	// CoalescePeriod.
+	//
+	// CoalescePeriod specifies the time duration to coalesce events.
+	// For example, if this is set to 5 seconds, then all events received
+	// within 5 seconds that can be coalesced will be.
+	//
+	// QuiescentPeriod specifies the duration of time where if no events
+	// are received, coalescence immediately happens. For example, if
+	// CoalscePeriod is set to 10 seconds but QuiscentPeriod is set to 2
+	// seconds, then the events will be coalesced and dispatched if no
+	// new events are received within 2 seconds of the last event. Otherwise,
+	// every event will always be delayed by at least 10 seconds.
+	CoalescePeriod  time.Duration
+	QuiescentPeriod time.Duration
+
+	// The settings below relate to Serf's user event coalescing feature.
+	// The settings operate like above but only affect user messages and
+	// not the Member* messages that Serf generates.
+	UserCoalescePeriod  time.Duration
+	UserQuiescentPeriod time.Duration
+
+	// The settings below relate to Serf keeping track of recently
+	// failed/left nodes and attempting reconnects.
+	//
+	// ReapInterval is the interval when the reaper runs. If this is not
+	// set (it is zero), it will be set to a reasonable default.
+	//
+	// ReconnectInterval is the interval when we attempt to reconnect
+	// to failed nodes. If this is not set (it is zero), it will be set
+	// to a reasonable default.
+	//
+	// ReconnectTimeout is the amount of time to attempt to reconnect to
+	// a failed node before giving up and considering it completely gone.
+	//
+	// TombstoneTimeout is the amount of time to keep around nodes
+	// that gracefully left as tombstones for syncing state with other
+	// Serf nodes.
+	ReapInterval      time.Duration
+	ReconnectInterval time.Duration
+	ReconnectTimeout  time.Duration
+	TombstoneTimeout  time.Duration
+
+	// FlapTimeout is the amount of time less than which we consider a node
+	// being failed and rejoining looks like a flap for telemetry purposes.
+	// This should be set less than a typical reboot time, but large enough
+	// to see actual events, given our expected detection times for a failed
+	// node.
+	FlapTimeout time.Duration
+
+	// QueueDepthWarning is used to generate warning message if the
+	// number of queued messages to broadcast exceeds this number. This
+	// is to provide the user feedback if events are being triggered
+	// faster than they can be disseminated
+	QueueDepthWarning int
+
+	// MaxQueueDepth is used to start dropping messages if the number
+	// of queued messages to broadcast exceeds this number. This is to
+	// prevent an unbounded growth of memory utilization
+	MaxQueueDepth int
+
+	// RecentIntentTimeout is used to determine how long we store recent
+	// join and leave intents. This is used to guard against the case where
+	// Serf broadcasts an intent that arrives before the Memberlist event.
+	// It is important that this not be too short to avoid continuous
+	// rebroadcasting of dead events.
+	RecentIntentTimeout time.Duration
+
+	// EventBuffer is used to control how many events are buffered.
+	// This is used to prevent re-delivery of events to a client. The buffer
+	// must be large enough to handle all "recent" events, since Serf will
+	// not deliver messages that are older than the oldest entry in the buffer.
+	// Thus if a client is generating too many events, it's possible that the
+	// buffer gets overrun and messages are not delivered.
+	EventBuffer int
+
+	// QueryBuffer is used to control how many queries are buffered.
+	// This is used to prevent re-delivery of queries to a client. The buffer
+	// must be large enough to handle all "recent" events, since Serf will not
+	// deliver queries older than the oldest entry in the buffer.
+	// Thus if a client is generating too many queries, it's possible that the
+	// buffer gets overrun and messages are not delivered.
+	QueryBuffer int
+
+	// QueryTimeoutMult configures the default timeout multipler for a query to run if no
+	// specific value is provided. Queries are real-time by nature, where the
+	// reply is time sensitive. As a result, results are collected in an async
+	// fashion, however the query must have a bounded duration. We want the timeout
+	// to be long enough that all nodes have time to receive the message, run a handler,
+	// and generate a reply. Once the timeout is exceeded, any further replies are ignored.
+	// The default value is
+	//
+	// Timeout = GossipInterval * QueryTimeoutMult * log(N+1)
+	//
+	QueryTimeoutMult int
+
+	// QueryResponseSizeLimit and QuerySizeLimit limit the inbound and
+	// outbound payload sizes for queries, respectively. These must fit
+	// in a UDP packet with some additional overhead, so tuning these
+	// past the default values of 1024 will depend on your network
+	// configuration.
+	QueryResponseSizeLimit int
+	QuerySizeLimit         int
+
+	// MemberlistConfig is the memberlist configuration that Serf will
+	// use to do the underlying membership management and gossip. Some
+	// fields in the MemberlistConfig will be overwritten by Serf no
+	// matter what:
+	//
+	//   * Name - This will always be set to the same as the NodeName
+	//     in this configuration.
+	//
+	//   * Events - Serf uses a custom event delegate.
+	//
+	//   * Delegate - Serf uses a custom delegate.
+	//
+	MemberlistConfig *memberlist.Config
+
+	// LogOutput is the location to write logs to. If this is not set,
+	// logs will go to stderr.
+	LogOutput io.Writer
+
+	// SnapshotPath if provided is used to snapshot live nodes as well
+	// as lamport clock values. When Serf is started with a snapshot,
+	// it will attempt to join all the previously known nodes until one
+	// succeeds and will also avoid replaying old user events.
+	SnapshotPath string
+
+	// RejoinAfterLeave controls our interaction with the snapshot file.
+	// When set to false (default), a leave causes a Serf to not rejoin
+	// the cluster until an explicit join is received. If this is set to
+	// true, we ignore the leave, and rejoin the cluster on start.
+	RejoinAfterLeave bool
+
+	// EnableNameConflictResolution controls if Serf will actively attempt
+	// to resolve a name conflict. Since each Serf member must have a unique
+	// name, a cluster can run into issues if multiple nodes claim the same
+	// name. Without automatic resolution, Serf merely logs some warnings, but
+	// otherwise does not take any action. Automatic resolution detects the
+	// conflict and issues a special query which asks the cluster for the
+	// Name -> IP:Port mapping. If there is a simple majority of votes, that
+	// node stays while the other node will leave the cluster and exit.
+	EnableNameConflictResolution bool
+
+	// DisableCoordinates controls if Serf will maintain an estimate of this
+	// node's network coordinate internally. A network coordinate is useful
+	// for estimating the network distance (i.e. round trip time) between
+	// two nodes. Enabling this option adds some overhead to ping messages.
+	DisableCoordinates bool
+
+	// KeyringFile provides the location of a writable file where Serf can
+	// persist changes to the encryption keyring.
+	KeyringFile string
+
+	// Merge can be optionally provided to intercept a cluster merge
+	// and conditionally abort the merge.
+	Merge MergeDelegate
+}
+
+// Init allocates the subdata structures
+func (c *Config) Init() {
+	if c.Tags == nil {
+		c.Tags = make(map[string]string)
+	}
+}
+
+// DefaultConfig returns a Config struct that contains reasonable defaults
+// for most of the configurations.
+func DefaultConfig() *Config {
+	hostname, err := os.Hostname()
+	if err != nil {
+		panic(err)
+	}
+
+	return &Config{
+		NodeName:                     hostname,
+		BroadcastTimeout:             5 * time.Second,
+		EventBuffer:                  512,
+		QueryBuffer:                  512,
+		LogOutput:                    os.Stderr,
+		ProtocolVersion:              4,
+		ReapInterval:                 15 * time.Second,
+		RecentIntentTimeout:          5 * time.Minute,
+		ReconnectInterval:            30 * time.Second,
+		ReconnectTimeout:             24 * time.Hour,
+		QueueDepthWarning:            128,
+		MaxQueueDepth:                4096,
+		TombstoneTimeout:             24 * time.Hour,
+		FlapTimeout:                  60 * time.Second,
+		MemberlistConfig:             memberlist.DefaultLANConfig(),
+		QueryTimeoutMult:             16,
+		QueryResponseSizeLimit:       1024,
+		QuerySizeLimit:               1024,
+		EnableNameConflictResolution: true,
+		DisableCoordinates:           false,
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/conflict_delegate.go b/vendor/github.com/hashicorp/serf/serf/conflict_delegate.go
new file mode 100644
index 0000000000..65a50156c0
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/conflict_delegate.go
@@ -0,0 +1,13 @@
+package serf
+
+import (
+	"github.com/hashicorp/memberlist"
+)
+
+type conflictDelegate struct {
+	serf *Serf
+}
+
+func (c *conflictDelegate) NotifyConflict(existing, other *memberlist.Node) {
+	c.serf.handleNodeConflict(existing, other)
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/delegate.go b/vendor/github.com/hashicorp/serf/serf/delegate.go
new file mode 100644
index 0000000000..8f51cb7d08
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/delegate.go
@@ -0,0 +1,275 @@
+package serf
+
+import (
+	"bytes"
+	"fmt"
+
+	"github.com/armon/go-metrics"
+	"github.com/hashicorp/go-msgpack/codec"
+)
+
+// delegate is the memberlist.Delegate implementation that Serf uses.
+type delegate struct {
+	serf *Serf
+}
+
+func (d *delegate) NodeMeta(limit int) []byte {
+	roleBytes := d.serf.encodeTags(d.serf.config.Tags)
+	if len(roleBytes) > limit {
+		panic(fmt.Errorf("Node tags '%v' exceeds length limit of %d bytes", d.serf.config.Tags, limit))
+	}
+
+	return roleBytes
+}
+
+func (d *delegate) NotifyMsg(buf []byte) {
+	// If we didn't actually receive any data, then ignore it.
+	if len(buf) == 0 {
+		return
+	}
+	metrics.AddSample([]string{"serf", "msgs", "received"}, float32(len(buf)))
+
+	rebroadcast := false
+	rebroadcastQueue := d.serf.broadcasts
+	t := messageType(buf[0])
+	switch t {
+	case messageLeaveType:
+		var leave messageLeave
+		if err := decodeMessage(buf[1:], &leave); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding leave message: %s", err)
+			break
+		}
+
+		d.serf.logger.Printf("[DEBUG] serf: messageLeaveType: %s", leave.Node)
+		rebroadcast = d.serf.handleNodeLeaveIntent(&leave)
+
+	case messageJoinType:
+		var join messageJoin
+		if err := decodeMessage(buf[1:], &join); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding join message: %s", err)
+			break
+		}
+
+		d.serf.logger.Printf("[DEBUG] serf: messageJoinType: %s", join.Node)
+		rebroadcast = d.serf.handleNodeJoinIntent(&join)
+
+	case messageUserEventType:
+		var event messageUserEvent
+		if err := decodeMessage(buf[1:], &event); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding user event message: %s", err)
+			break
+		}
+
+		d.serf.logger.Printf("[DEBUG] serf: messageUserEventType: %s", event.Name)
+		rebroadcast = d.serf.handleUserEvent(&event)
+		rebroadcastQueue = d.serf.eventBroadcasts
+
+	case messageQueryType:
+		var query messageQuery
+		if err := decodeMessage(buf[1:], &query); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding query message: %s", err)
+			break
+		}
+
+		d.serf.logger.Printf("[DEBUG] serf: messageQueryType: %s", query.Name)
+		rebroadcast = d.serf.handleQuery(&query)
+		rebroadcastQueue = d.serf.queryBroadcasts
+
+	case messageQueryResponseType:
+		var resp messageQueryResponse
+		if err := decodeMessage(buf[1:], &resp); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding query response message: %s", err)
+			break
+		}
+
+		d.serf.logger.Printf("[DEBUG] serf: messageQueryResponseType: %v", resp.From)
+		d.serf.handleQueryResponse(&resp)
+
+	case messageRelayType:
+		var header relayHeader
+		var handle codec.MsgpackHandle
+		reader := bytes.NewReader(buf[1:])
+		decoder := codec.NewDecoder(reader, &handle)
+		if err := decoder.Decode(&header); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error decoding relay header: %s", err)
+			break
+		}
+
+		// The remaining contents are the message itself, so forward that
+		raw := make([]byte, reader.Len())
+		reader.Read(raw)
+		d.serf.logger.Printf("[DEBUG] serf: Relaying response to addr: %s", header.DestAddr.String())
+		if err := d.serf.memberlist.SendTo(&header.DestAddr, raw); err != nil {
+			d.serf.logger.Printf("[ERR] serf: Error forwarding message to %s: %s", header.DestAddr.String(), err)
+			break
+		}
+
+	default:
+		d.serf.logger.Printf("[WARN] serf: Received message of unknown type: %d", t)
+	}
+
+	if rebroadcast {
+		// Copy the buffer since it we cannot rely on the slice not changing
+		newBuf := make([]byte, len(buf))
+		copy(newBuf, buf)
+
+		rebroadcastQueue.QueueBroadcast(&broadcast{
+			msg:    newBuf,
+			notify: nil,
+		})
+	}
+}
+
+func (d *delegate) GetBroadcasts(overhead, limit int) [][]byte {
+	msgs := d.serf.broadcasts.GetBroadcasts(overhead, limit)
+
+	// Determine the bytes used already
+	bytesUsed := 0
+	for _, msg := range msgs {
+		lm := len(msg)
+		bytesUsed += lm + overhead
+		metrics.AddSample([]string{"serf", "msgs", "sent"}, float32(lm))
+	}
+
+	// Get any additional query broadcasts
+	queryMsgs := d.serf.queryBroadcasts.GetBroadcasts(overhead, limit-bytesUsed)
+	if queryMsgs != nil {
+		for _, m := range queryMsgs {
+			lm := len(m)
+			bytesUsed += lm + overhead
+			metrics.AddSample([]string{"serf", "msgs", "sent"}, float32(lm))
+		}
+		msgs = append(msgs, queryMsgs...)
+	}
+
+	// Get any additional event broadcasts
+	eventMsgs := d.serf.eventBroadcasts.GetBroadcasts(overhead, limit-bytesUsed)
+	if eventMsgs != nil {
+		for _, m := range eventMsgs {
+			lm := len(m)
+			bytesUsed += lm + overhead
+			metrics.AddSample([]string{"serf", "msgs", "sent"}, float32(lm))
+		}
+		msgs = append(msgs, eventMsgs...)
+	}
+
+	return msgs
+}
+
+func (d *delegate) LocalState(join bool) []byte {
+	d.serf.memberLock.RLock()
+	defer d.serf.memberLock.RUnlock()
+	d.serf.eventLock.RLock()
+	defer d.serf.eventLock.RUnlock()
+
+	// Create the message to send
+	pp := messagePushPull{
+		LTime:        d.serf.clock.Time(),
+		StatusLTimes: make(map[string]LamportTime, len(d.serf.members)),
+		LeftMembers:  make([]string, 0, len(d.serf.leftMembers)),
+		EventLTime:   d.serf.eventClock.Time(),
+		Events:       d.serf.eventBuffer,
+		QueryLTime:   d.serf.queryClock.Time(),
+	}
+
+	// Add all the join LTimes
+	for name, member := range d.serf.members {
+		pp.StatusLTimes[name] = member.statusLTime
+	}
+
+	// Add all the left nodes
+	for _, member := range d.serf.leftMembers {
+		pp.LeftMembers = append(pp.LeftMembers, member.Name)
+	}
+
+	// Encode the push pull state
+	buf, err := encodeMessage(messagePushPullType, &pp)
+	if err != nil {
+		d.serf.logger.Printf("[ERR] serf: Failed to encode local state: %v", err)
+		return nil
+	}
+	return buf
+}
+
+func (d *delegate) MergeRemoteState(buf []byte, isJoin bool) {
+	// Ensure we have a message
+	if len(buf) == 0 {
+		d.serf.logger.Printf("[ERR] serf: Remote state is zero bytes")
+		return
+	}
+
+	// Check the message type
+	if messageType(buf[0]) != messagePushPullType {
+		d.serf.logger.Printf("[ERR] serf: Remote state has bad type prefix: %v", buf[0])
+		return
+	}
+
+	// Attempt a decode
+	pp := messagePushPull{}
+	if err := decodeMessage(buf[1:], &pp); err != nil {
+		d.serf.logger.Printf("[ERR] serf: Failed to decode remote state: %v", err)
+		return
+	}
+
+	// Witness the Lamport clocks first.
+	// We subtract 1 since no message with that clock has been sent yet
+	if pp.LTime > 0 {
+		d.serf.clock.Witness(pp.LTime - 1)
+	}
+	if pp.EventLTime > 0 {
+		d.serf.eventClock.Witness(pp.EventLTime - 1)
+	}
+	if pp.QueryLTime > 0 {
+		d.serf.queryClock.Witness(pp.QueryLTime - 1)
+	}
+
+	// Process the left nodes first to avoid the LTimes from being increment
+	// in the wrong order
+	leftMap := make(map[string]struct{}, len(pp.LeftMembers))
+	leave := messageLeave{}
+	for _, name := range pp.LeftMembers {
+		leftMap[name] = struct{}{}
+		leave.LTime = pp.StatusLTimes[name]
+		leave.Node = name
+		d.serf.handleNodeLeaveIntent(&leave)
+	}
+
+	// Update any other LTimes
+	join := messageJoin{}
+	for name, statusLTime := range pp.StatusLTimes {
+		// Skip the left nodes
+		if _, ok := leftMap[name]; ok {
+			continue
+		}
+
+		// Create an artificial join message
+		join.LTime = statusLTime
+		join.Node = name
+		d.serf.handleNodeJoinIntent(&join)
+	}
+
+	// If we are doing a join, and eventJoinIgnore is set
+	// then we set the eventMinTime to the EventLTime. This
+	// prevents any of the incoming events from being processed
+	if isJoin && d.serf.eventJoinIgnore {
+		d.serf.eventLock.Lock()
+		if pp.EventLTime > d.serf.eventMinTime {
+			d.serf.eventMinTime = pp.EventLTime
+		}
+		d.serf.eventLock.Unlock()
+	}
+
+	// Process all the events
+	userEvent := messageUserEvent{}
+	for _, events := range pp.Events {
+		if events == nil {
+			continue
+		}
+		userEvent.LTime = events.LTime
+		for _, e := range events.Events {
+			userEvent.Name = e.Name
+			userEvent.Payload = e.Payload
+			d.serf.handleUserEvent(&userEvent)
+		}
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/event.go b/vendor/github.com/hashicorp/serf/serf/event.go
new file mode 100644
index 0000000000..29211393f8
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/event.go
@@ -0,0 +1,174 @@
+package serf
+
+import (
+	"fmt"
+	"net"
+	"sync"
+	"time"
+)
+
+// EventType are all the types of events that may occur and be sent
+// along the Serf channel.
+type EventType int
+
+const (
+	EventMemberJoin EventType = iota
+	EventMemberLeave
+	EventMemberFailed
+	EventMemberUpdate
+	EventMemberReap
+	EventUser
+	EventQuery
+)
+
+func (t EventType) String() string {
+	switch t {
+	case EventMemberJoin:
+		return "member-join"
+	case EventMemberLeave:
+		return "member-leave"
+	case EventMemberFailed:
+		return "member-failed"
+	case EventMemberUpdate:
+		return "member-update"
+	case EventMemberReap:
+		return "member-reap"
+	case EventUser:
+		return "user"
+	case EventQuery:
+		return "query"
+	default:
+		panic(fmt.Sprintf("unknown event type: %d", t))
+	}
+}
+
+// Event is a generic interface for exposing Serf events
+// Clients will usually need to use a type switches to get
+// to a more useful type
+type Event interface {
+	EventType() EventType
+	String() string
+}
+
+// MemberEvent is the struct used for member related events
+// Because Serf coalesces events, an event may contain multiple members.
+type MemberEvent struct {
+	Type    EventType
+	Members []Member
+}
+
+func (m MemberEvent) EventType() EventType {
+	return m.Type
+}
+
+func (m MemberEvent) String() string {
+	switch m.Type {
+	case EventMemberJoin:
+		return "member-join"
+	case EventMemberLeave:
+		return "member-leave"
+	case EventMemberFailed:
+		return "member-failed"
+	case EventMemberUpdate:
+		return "member-update"
+	case EventMemberReap:
+		return "member-reap"
+	default:
+		panic(fmt.Sprintf("unknown event type: %d", m.Type))
+	}
+}
+
+// UserEvent is the struct used for events that are triggered
+// by the user and are not related to members
+type UserEvent struct {
+	LTime    LamportTime
+	Name     string
+	Payload  []byte
+	Coalesce bool
+}
+
+func (u UserEvent) EventType() EventType {
+	return EventUser
+}
+
+func (u UserEvent) String() string {
+	return fmt.Sprintf("user-event: %s", u.Name)
+}
+
+// Query is the struct used by EventQuery type events
+type Query struct {
+	LTime   LamportTime
+	Name    string
+	Payload []byte
+
+	serf        *Serf
+	id          uint32    // ID is not exported, since it may change
+	addr        []byte    // Address to respond to
+	port        uint16    // Port to respond to
+	deadline    time.Time // Must respond by this deadline
+	relayFactor uint8     // Number of duplicate responses to relay back to sender
+	respLock    sync.Mutex
+}
+
+func (q *Query) EventType() EventType {
+	return EventQuery
+}
+
+func (q *Query) String() string {
+	return fmt.Sprintf("query: %s", q.Name)
+}
+
+// Deadline returns the time by which a response must be sent
+func (q *Query) Deadline() time.Time {
+	return q.deadline
+}
+
+// Respond is used to send a response to the user query
+func (q *Query) Respond(buf []byte) error {
+	q.respLock.Lock()
+	defer q.respLock.Unlock()
+
+	// Check if we've already responded
+	if q.deadline.IsZero() {
+		return fmt.Errorf("response already sent")
+	}
+
+	// Ensure we aren't past our response deadline
+	if time.Now().After(q.deadline) {
+		return fmt.Errorf("response is past the deadline")
+	}
+
+	// Create response
+	resp := messageQueryResponse{
+		LTime:   q.LTime,
+		ID:      q.id,
+		From:    q.serf.config.NodeName,
+		Payload: buf,
+	}
+
+	// Send a direct response
+	raw, err := encodeMessage(messageQueryResponseType, &resp)
+	if err != nil {
+		return fmt.Errorf("failed to format response: %v", err)
+	}
+
+	// Check the size limit
+	if len(raw) > q.serf.config.QueryResponseSizeLimit {
+		return fmt.Errorf("response exceeds limit of %d bytes", q.serf.config.QueryResponseSizeLimit)
+	}
+
+	// Send the response directly to the originator
+	addr := net.UDPAddr{IP: q.addr, Port: int(q.port)}
+	if err := q.serf.memberlist.SendTo(&addr, raw); err != nil {
+		return err
+	}
+
+	// Relay the response through up to relayFactor other nodes
+	if err := q.serf.relayResponse(q.relayFactor, addr, &resp); err != nil {
+		return err
+	}
+
+	// Clear the deadline, responses sent
+	q.deadline = time.Time{}
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/event_delegate.go b/vendor/github.com/hashicorp/serf/serf/event_delegate.go
new file mode 100644
index 0000000000..e201322819
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/event_delegate.go
@@ -0,0 +1,21 @@
+package serf
+
+import (
+	"github.com/hashicorp/memberlist"
+)
+
+type eventDelegate struct {
+	serf *Serf
+}
+
+func (e *eventDelegate) NotifyJoin(n *memberlist.Node) {
+	e.serf.handleNodeJoin(n)
+}
+
+func (e *eventDelegate) NotifyLeave(n *memberlist.Node) {
+	e.serf.handleNodeLeave(n)
+}
+
+func (e *eventDelegate) NotifyUpdate(n *memberlist.Node) {
+	e.serf.handleNodeUpdate(n)
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/internal_query.go b/vendor/github.com/hashicorp/serf/serf/internal_query.go
new file mode 100644
index 0000000000..128b2cf214
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/internal_query.go
@@ -0,0 +1,312 @@
+package serf
+
+import (
+	"encoding/base64"
+	"log"
+	"strings"
+)
+
+const (
+	// This is the prefix we use for queries that are internal to Serf.
+	// They are handled internally, and not forwarded to a client.
+	InternalQueryPrefix = "_serf_"
+
+	// pingQuery is run to check for reachability
+	pingQuery = "ping"
+
+	// conflictQuery is run to resolve a name conflict
+	conflictQuery = "conflict"
+
+	// installKeyQuery is used to install a new key
+	installKeyQuery = "install-key"
+
+	// useKeyQuery is used to change the primary encryption key
+	useKeyQuery = "use-key"
+
+	// removeKeyQuery is used to remove a key from the keyring
+	removeKeyQuery = "remove-key"
+
+	// listKeysQuery is used to list all known keys in the cluster
+	listKeysQuery = "list-keys"
+)
+
+// internalQueryName is used to generate a query name for an internal query
+func internalQueryName(name string) string {
+	return InternalQueryPrefix + name
+}
+
+// serfQueries is used to listen for queries that start with
+// _serf and respond to them as appropriate.
+type serfQueries struct {
+	inCh       chan Event
+	logger     *log.Logger
+	outCh      chan<- Event
+	serf       *Serf
+	shutdownCh <-chan struct{}
+}
+
+// nodeKeyResponse is used to store the result from an individual node while
+// replying to key modification queries
+type nodeKeyResponse struct {
+	// Result indicates true/false if there were errors or not
+	Result bool
+
+	// Message contains error messages or other information
+	Message string
+
+	// Keys is used in listing queries to relay a list of installed keys
+	Keys []string
+}
+
+// newSerfQueries is used to create a new serfQueries. We return an event
+// channel that is ingested and forwarded to an outCh. Any Queries that
+// have the InternalQueryPrefix are handled instead of forwarded.
+func newSerfQueries(serf *Serf, logger *log.Logger, outCh chan<- Event, shutdownCh <-chan struct{}) (chan<- Event, error) {
+	inCh := make(chan Event, 1024)
+	q := &serfQueries{
+		inCh:       inCh,
+		logger:     logger,
+		outCh:      outCh,
+		serf:       serf,
+		shutdownCh: shutdownCh,
+	}
+	go q.stream()
+	return inCh, nil
+}
+
+// stream is a long running routine to ingest the event stream
+func (s *serfQueries) stream() {
+	for {
+		select {
+		case e := <-s.inCh:
+			// Check if this is a query we should process
+			if q, ok := e.(*Query); ok && strings.HasPrefix(q.Name, InternalQueryPrefix) {
+				go s.handleQuery(q)
+
+			} else if s.outCh != nil {
+				s.outCh <- e
+			}
+
+		case <-s.shutdownCh:
+			return
+		}
+	}
+}
+
+// handleQuery is invoked when we get an internal query
+func (s *serfQueries) handleQuery(q *Query) {
+	// Get the queryName after the initial prefix
+	queryName := q.Name[len(InternalQueryPrefix):]
+	switch queryName {
+	case pingQuery:
+		// Nothing to do, we will ack the query
+	case conflictQuery:
+		s.handleConflict(q)
+	case installKeyQuery:
+		s.handleInstallKey(q)
+	case useKeyQuery:
+		s.handleUseKey(q)
+	case removeKeyQuery:
+		s.handleRemoveKey(q)
+	case listKeysQuery:
+		s.handleListKeys(q)
+	default:
+		s.logger.Printf("[WARN] serf: Unhandled internal query '%s'", queryName)
+	}
+}
+
+// handleConflict is invoked when we get a query that is attempting to
+// disambiguate a name conflict. They payload is a node name, and the response
+// should the address we believe that node is at, if any.
+func (s *serfQueries) handleConflict(q *Query) {
+	// The target node name is the payload
+	node := string(q.Payload)
+
+	// Do not respond to the query if it is about us
+	if node == s.serf.config.NodeName {
+		return
+	}
+	s.logger.Printf("[DEBUG] serf: Got conflict resolution query for '%s'", node)
+
+	// Look for the member info
+	var out *Member
+	s.serf.memberLock.Lock()
+	if member, ok := s.serf.members[node]; ok {
+		out = &member.Member
+	}
+	s.serf.memberLock.Unlock()
+
+	// Encode the response
+	buf, err := encodeMessage(messageConflictResponseType, out)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to encode conflict query response: %v", err)
+		return
+	}
+
+	// Send our answer
+	if err := q.Respond(buf); err != nil {
+		s.logger.Printf("[ERR] serf: Failed to respond to conflict query: %v", err)
+	}
+}
+
+// sendKeyResponse handles responding to key-related queries.
+func (s *serfQueries) sendKeyResponse(q *Query, resp *nodeKeyResponse) {
+	buf, err := encodeMessage(messageKeyResponseType, resp)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to encode key response: %v", err)
+		return
+	}
+
+	if err := q.Respond(buf); err != nil {
+		s.logger.Printf("[ERR] serf: Failed to respond to key query: %v", err)
+		return
+	}
+}
+
+// handleInstallKey is invoked whenever a new encryption key is received from
+// another member in the cluster, and handles the process of installing it onto
+// the memberlist keyring. This type of query may fail if the provided key does
+// not fit the constraints that memberlist enforces. If the query fails, the
+// response will contain the error message so that it may be relayed.
+func (s *serfQueries) handleInstallKey(q *Query) {
+	response := nodeKeyResponse{Result: false}
+	keyring := s.serf.config.MemberlistConfig.Keyring
+	req := keyRequest{}
+
+	err := decodeMessage(q.Payload[1:], &req)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to decode key request: %v", err)
+		goto SEND
+	}
+
+	if !s.serf.EncryptionEnabled() {
+		response.Message = "No keyring to modify (encryption not enabled)"
+		s.logger.Printf("[ERR] serf: No keyring to modify (encryption not enabled)")
+		goto SEND
+	}
+
+	s.logger.Printf("[INFO] serf: Received install-key query")
+	if err := keyring.AddKey(req.Key); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to install key: %s", err)
+		goto SEND
+	}
+
+	if err := s.serf.writeKeyringFile(); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to write keyring file: %s", err)
+		goto SEND
+	}
+
+	response.Result = true
+
+SEND:
+	s.sendKeyResponse(q, &response)
+}
+
+// handleUseKey is invoked whenever a query is received to mark a different key
+// in the internal keyring as the primary key. This type of query may fail due
+// to operator error (requested key not in ring), and thus sends error messages
+// back in the response.
+func (s *serfQueries) handleUseKey(q *Query) {
+	response := nodeKeyResponse{Result: false}
+	keyring := s.serf.config.MemberlistConfig.Keyring
+	req := keyRequest{}
+
+	err := decodeMessage(q.Payload[1:], &req)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to decode key request: %v", err)
+		goto SEND
+	}
+
+	if !s.serf.EncryptionEnabled() {
+		response.Message = "No keyring to modify (encryption not enabled)"
+		s.logger.Printf("[ERR] serf: No keyring to modify (encryption not enabled)")
+		goto SEND
+	}
+
+	s.logger.Printf("[INFO] serf: Received use-key query")
+	if err := keyring.UseKey(req.Key); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to change primary key: %s", err)
+		goto SEND
+	}
+
+	if err := s.serf.writeKeyringFile(); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to write keyring file: %s", err)
+		goto SEND
+	}
+
+	response.Result = true
+
+SEND:
+	s.sendKeyResponse(q, &response)
+}
+
+// handleRemoveKey is invoked when a query is received to remove a particular
+// key from the keyring. This type of query can fail if the key requested for
+// deletion is currently the primary key in the keyring, so therefore it will
+// reply to the query with any relevant errors from the operation.
+func (s *serfQueries) handleRemoveKey(q *Query) {
+	response := nodeKeyResponse{Result: false}
+	keyring := s.serf.config.MemberlistConfig.Keyring
+	req := keyRequest{}
+
+	err := decodeMessage(q.Payload[1:], &req)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to decode key request: %v", err)
+		goto SEND
+	}
+
+	if !s.serf.EncryptionEnabled() {
+		response.Message = "No keyring to modify (encryption not enabled)"
+		s.logger.Printf("[ERR] serf: No keyring to modify (encryption not enabled)")
+		goto SEND
+	}
+
+	s.logger.Printf("[INFO] serf: Received remove-key query")
+	if err := keyring.RemoveKey(req.Key); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to remove key: %s", err)
+		goto SEND
+	}
+
+	if err := s.serf.writeKeyringFile(); err != nil {
+		response.Message = err.Error()
+		s.logger.Printf("[ERR] serf: Failed to write keyring file: %s", err)
+		goto SEND
+	}
+
+	response.Result = true
+
+SEND:
+	s.sendKeyResponse(q, &response)
+}
+
+// handleListKeys is invoked when a query is received to return a list of all
+// installed keys the Serf instance knows of. For performance, the keys are
+// encoded to base64 on each of the members to remove this burden from the
+// node asking for the results.
+func (s *serfQueries) handleListKeys(q *Query) {
+	response := nodeKeyResponse{Result: false}
+	keyring := s.serf.config.MemberlistConfig.Keyring
+
+	if !s.serf.EncryptionEnabled() {
+		response.Message = "Keyring is empty (encryption not enabled)"
+		s.logger.Printf("[ERR] serf: Keyring is empty (encryption not enabled)")
+		goto SEND
+	}
+
+	s.logger.Printf("[INFO] serf: Received list-keys query")
+	for _, keyBytes := range keyring.GetKeys() {
+		// Encode the keys before sending the response. This should help take
+		// some the burden of doing this off of the asking member.
+		key := base64.StdEncoding.EncodeToString(keyBytes)
+		response.Keys = append(response.Keys, key)
+	}
+	response.Result = true
+
+SEND:
+	s.sendKeyResponse(q, &response)
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/keymanager.go b/vendor/github.com/hashicorp/serf/serf/keymanager.go
new file mode 100644
index 0000000000..fd53182fc5
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/keymanager.go
@@ -0,0 +1,192 @@
+package serf
+
+import (
+	"encoding/base64"
+	"fmt"
+	"sync"
+)
+
+// KeyManager encapsulates all functionality within Serf for handling
+// encryption keyring changes across a cluster.
+type KeyManager struct {
+	serf *Serf
+
+	// Lock to protect read and write operations
+	l sync.RWMutex
+}
+
+// keyRequest is used to contain input parameters which get broadcasted to all
+// nodes as part of a key query operation.
+type keyRequest struct {
+	Key []byte
+}
+
+// KeyResponse is used to relay a query for a list of all keys in use.
+type KeyResponse struct {
+	Messages map[string]string // Map of node name to response message
+	NumNodes int               // Total nodes memberlist knows of
+	NumResp  int               // Total responses received
+	NumErr   int               // Total errors from request
+
+	// Keys is a mapping of the base64-encoded value of the key bytes to the
+	// number of nodes that have the key installed.
+	Keys map[string]int
+}
+
+// KeyRequestOptions is used to contain optional parameters for a keyring operation
+type KeyRequestOptions struct {
+	// RelayFactor is the number of duplicate query responses to send by relaying through
+	// other nodes, for redundancy
+	RelayFactor uint8
+}
+
+// streamKeyResp takes care of reading responses from a channel and composing
+// them into a KeyResponse. It will update a KeyResponse *in place* and
+// therefore has nothing to return.
+func (k *KeyManager) streamKeyResp(resp *KeyResponse, ch <-chan NodeResponse) {
+	for r := range ch {
+		var nodeResponse nodeKeyResponse
+
+		resp.NumResp++
+
+		// Decode the response
+		if len(r.Payload) < 1 || messageType(r.Payload[0]) != messageKeyResponseType {
+			resp.Messages[r.From] = fmt.Sprintf(
+				"Invalid key query response type: %v", r.Payload)
+			resp.NumErr++
+			goto NEXT
+		}
+		if err := decodeMessage(r.Payload[1:], &nodeResponse); err != nil {
+			resp.Messages[r.From] = fmt.Sprintf(
+				"Failed to decode key query response: %v", r.Payload)
+			resp.NumErr++
+			goto NEXT
+		}
+
+		if !nodeResponse.Result {
+			resp.Messages[r.From] = nodeResponse.Message
+			resp.NumErr++
+		}
+
+		// Currently only used for key list queries, this adds keys to a counter
+		// and increments them for each node response which contains them.
+		for _, key := range nodeResponse.Keys {
+			if _, ok := resp.Keys[key]; !ok {
+				resp.Keys[key] = 1
+			} else {
+				resp.Keys[key]++
+			}
+		}
+
+	NEXT:
+		// Return early if all nodes have responded. This allows us to avoid
+		// waiting for the full timeout when there is nothing left to do.
+		if resp.NumResp == resp.NumNodes {
+			return
+		}
+	}
+}
+
+// handleKeyRequest performs query broadcasting to all members for any type of
+// key operation and manages gathering responses and packing them up into a
+// KeyResponse for uniform response handling.
+func (k *KeyManager) handleKeyRequest(key, query string, opts *KeyRequestOptions) (*KeyResponse, error) {
+	resp := &KeyResponse{
+		Messages: make(map[string]string),
+		Keys:     make(map[string]int),
+	}
+	qName := internalQueryName(query)
+
+	// Decode the new key into raw bytes
+	rawKey, err := base64.StdEncoding.DecodeString(key)
+	if err != nil {
+		return resp, err
+	}
+
+	// Encode the query request
+	req, err := encodeMessage(messageKeyRequestType, keyRequest{Key: rawKey})
+	if err != nil {
+		return resp, err
+	}
+
+	qParam := k.serf.DefaultQueryParams()
+	if opts != nil {
+		qParam.RelayFactor = opts.RelayFactor
+	}
+	queryResp, err := k.serf.Query(qName, req, qParam)
+	if err != nil {
+		return resp, err
+	}
+
+	// Handle the response stream and populate the KeyResponse
+	resp.NumNodes = k.serf.memberlist.NumMembers()
+	k.streamKeyResp(resp, queryResp.respCh)
+
+	// Check the response for any reported failure conditions
+	if resp.NumErr != 0 {
+		return resp, fmt.Errorf("%d/%d nodes reported failure", resp.NumErr, resp.NumNodes)
+	}
+	if resp.NumResp != resp.NumNodes {
+		return resp, fmt.Errorf("%d/%d nodes reported success", resp.NumResp, resp.NumNodes)
+	}
+
+	return resp, nil
+}
+
+// InstallKey handles broadcasting a query to all members and gathering
+// responses from each of them, returning a list of messages from each node
+// and any applicable error conditions.
+func (k *KeyManager) InstallKey(key string) (*KeyResponse, error) {
+	return k.InstallKeyWithOptions(key, nil)
+}
+
+func (k *KeyManager) InstallKeyWithOptions(key string, opts *KeyRequestOptions) (*KeyResponse, error) {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	return k.handleKeyRequest(key, installKeyQuery, opts)
+}
+
+// UseKey handles broadcasting a primary key change to all members in the
+// cluster, and gathering any response messages. If successful, there should
+// be an empty KeyResponse returned.
+func (k *KeyManager) UseKey(key string) (*KeyResponse, error) {
+	return k.UseKeyWithOptions(key, nil)
+}
+
+func (k *KeyManager) UseKeyWithOptions(key string, opts *KeyRequestOptions) (*KeyResponse, error) {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	return k.handleKeyRequest(key, useKeyQuery, opts)
+}
+
+// RemoveKey handles broadcasting a key to the cluster for removal. Each member
+// will receive this event, and if they have the key in their keyring, remove
+// it. If any errors are encountered, RemoveKey will collect and relay them.
+func (k *KeyManager) RemoveKey(key string) (*KeyResponse, error) {
+	return k.RemoveKeyWithOptions(key, nil)
+}
+
+func (k *KeyManager) RemoveKeyWithOptions(key string, opts *KeyRequestOptions) (*KeyResponse, error) {
+	k.l.Lock()
+	defer k.l.Unlock()
+
+	return k.handleKeyRequest(key, removeKeyQuery, opts)
+}
+
+// ListKeys is used to collect installed keys from members in a Serf cluster
+// and return an aggregated list of all installed keys. This is useful to
+// operators to ensure that there are no lingering keys installed on any agents.
+// Since having multiple keys installed can cause performance penalties in some
+// cases, it's important to verify this information and remove unneeded keys.
+func (k *KeyManager) ListKeys() (*KeyResponse, error) {
+	return k.ListKeysWithOptions(nil)
+}
+
+func (k *KeyManager) ListKeysWithOptions(opts *KeyRequestOptions) (*KeyResponse, error) {
+	k.l.RLock()
+	defer k.l.RUnlock()
+
+	return k.handleKeyRequest("", listKeysQuery, opts)
+}
\ No newline at end of file
diff --git a/vendor/github.com/hashicorp/serf/serf/lamport.go b/vendor/github.com/hashicorp/serf/serf/lamport.go
new file mode 100644
index 0000000000..08f4aa7a62
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/lamport.go
@@ -0,0 +1,45 @@
+package serf
+
+import (
+	"sync/atomic"
+)
+
+// LamportClock is a thread safe implementation of a lamport clock. It
+// uses efficient atomic operations for all of its functions, falling back
+// to a heavy lock only if there are enough CAS failures.
+type LamportClock struct {
+	counter uint64
+}
+
+// LamportTime is the value of a LamportClock.
+type LamportTime uint64
+
+// Time is used to return the current value of the lamport clock
+func (l *LamportClock) Time() LamportTime {
+	return LamportTime(atomic.LoadUint64(&l.counter))
+}
+
+// Increment is used to increment and return the value of the lamport clock
+func (l *LamportClock) Increment() LamportTime {
+	return LamportTime(atomic.AddUint64(&l.counter, 1))
+}
+
+// Witness is called to update our local clock if necessary after
+// witnessing a clock value received from another process
+func (l *LamportClock) Witness(v LamportTime) {
+WITNESS:
+	// If the other value is old, we do not need to do anything
+	cur := atomic.LoadUint64(&l.counter)
+	other := uint64(v)
+	if other < cur {
+		return
+	}
+
+	// Ensure that our local clock is at least one ahead.
+	if !atomic.CompareAndSwapUint64(&l.counter, cur, other+1) {
+		// The CAS failed, so we just retry. Eventually our CAS should
+		// succeed or a future witness will pass us by and our witness
+		// will end.
+		goto WITNESS
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/merge_delegate.go b/vendor/github.com/hashicorp/serf/serf/merge_delegate.go
new file mode 100644
index 0000000000..7fdc732887
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/merge_delegate.go
@@ -0,0 +1,44 @@
+package serf
+
+import (
+	"net"
+
+	"github.com/hashicorp/memberlist"
+)
+
+type MergeDelegate interface {
+	NotifyMerge([]*Member) error
+}
+
+type mergeDelegate struct {
+	serf *Serf
+}
+
+func (m *mergeDelegate) NotifyMerge(nodes []*memberlist.Node) error {
+	members := make([]*Member, len(nodes))
+	for idx, n := range nodes {
+		members[idx] = m.nodeToMember(n)
+	}
+	return m.serf.config.Merge.NotifyMerge(members)
+}
+
+func (m *mergeDelegate) NotifyAlive(peer *memberlist.Node) error {
+	member := m.nodeToMember(peer)
+	return m.serf.config.Merge.NotifyMerge([]*Member{member})
+}
+
+func (m *mergeDelegate) nodeToMember(n *memberlist.Node) *Member {
+	return &Member{
+		Name:        n.Name,
+		Addr:        net.IP(n.Addr),
+		Port:        n.Port,
+		Tags:        m.serf.decodeTags(n.Meta),
+		Status:      StatusNone,
+		ProtocolMin: n.PMin,
+		ProtocolMax: n.PMax,
+		ProtocolCur: n.PCur,
+		DelegateMin: n.DMin,
+		DelegateMax: n.DMax,
+		DelegateCur: n.DCur,
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/messages.go b/vendor/github.com/hashicorp/serf/serf/messages.go
new file mode 100644
index 0000000000..20df5b8e83
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/messages.go
@@ -0,0 +1,173 @@
+package serf
+
+import (
+	"bytes"
+	"net"
+	"time"
+
+	"github.com/hashicorp/go-msgpack/codec"
+)
+
+// messageType are the types of gossip messages Serf will send along
+// memberlist.
+type messageType uint8
+
+const (
+	messageLeaveType messageType = iota
+	messageJoinType
+	messagePushPullType
+	messageUserEventType
+	messageQueryType
+	messageQueryResponseType
+	messageConflictResponseType
+	messageKeyRequestType
+	messageKeyResponseType
+	messageRelayType
+)
+
+const (
+	// Ack flag is used to force receiver to send an ack back
+	queryFlagAck uint32 = 1 << iota
+
+	// NoBroadcast is used to prevent re-broadcast of a query.
+	// this can be used to selectively send queries to individual members
+	queryFlagNoBroadcast
+)
+
+// filterType is used with a queryFilter to specify the type of
+// filter we are sending
+type filterType uint8
+
+const (
+	filterNodeType filterType = iota
+	filterTagType
+)
+
+// messageJoin is the message broadcasted after we join to
+// associated the node with a lamport clock
+type messageJoin struct {
+	LTime LamportTime
+	Node  string
+}
+
+// messageLeave is the message broadcasted to signal the intentional to
+// leave.
+type messageLeave struct {
+	LTime LamportTime
+	Node  string
+}
+
+// messagePushPullType is used when doing a state exchange. This
+// is a relatively large message, but is sent infrequently
+type messagePushPull struct {
+	LTime        LamportTime            // Current node lamport time
+	StatusLTimes map[string]LamportTime // Maps the node to its status time
+	LeftMembers  []string               // List of left nodes
+	EventLTime   LamportTime            // Lamport time for event clock
+	Events       []*userEvents          // Recent events
+	QueryLTime   LamportTime            // Lamport time for query clock
+}
+
+// messageUserEvent is used for user-generated events
+type messageUserEvent struct {
+	LTime   LamportTime
+	Name    string
+	Payload []byte
+	CC      bool // "Can Coalesce". Zero value is compatible with Serf 0.1
+}
+
+// messageQuery is used for query events
+type messageQuery struct {
+	LTime       LamportTime   // Event lamport time
+	ID          uint32        // Query ID, randomly generated
+	Addr        []byte        // Source address, used for a direct reply
+	Port        uint16        // Source port, used for a direct reply
+	Filters     [][]byte      // Potential query filters
+	Flags       uint32        // Used to provide various flags
+	RelayFactor uint8         // Used to set the number of duplicate relayed responses
+	Timeout     time.Duration // Maximum time between delivery and response
+	Name        string        // Query name
+	Payload     []byte        // Query payload
+}
+
+// Ack checks if the ack flag is set
+func (m *messageQuery) Ack() bool {
+	return (m.Flags & queryFlagAck) != 0
+}
+
+// NoBroadcast checks if the no broadcast flag is set
+func (m *messageQuery) NoBroadcast() bool {
+	return (m.Flags & queryFlagNoBroadcast) != 0
+}
+
+// filterNode is used with the filterNodeType, and is a list
+// of node names
+type filterNode []string
+
+// filterTag is used with the filterTagType and is a regular
+// expression to apply to a tag
+type filterTag struct {
+	Tag  string
+	Expr string
+}
+
+// messageQueryResponse is used to respond to a query
+type messageQueryResponse struct {
+	LTime   LamportTime // Event lamport time
+	ID      uint32      // Query ID
+	From    string      // Node name
+	Flags   uint32      // Used to provide various flags
+	Payload []byte      // Optional response payload
+}
+
+// Ack checks if the ack flag is set
+func (m *messageQueryResponse) Ack() bool {
+	return (m.Flags & queryFlagAck) != 0
+}
+
+func decodeMessage(buf []byte, out interface{}) error {
+	var handle codec.MsgpackHandle
+	return codec.NewDecoder(bytes.NewReader(buf), &handle).Decode(out)
+}
+
+func encodeMessage(t messageType, msg interface{}) ([]byte, error) {
+	buf := bytes.NewBuffer(nil)
+	buf.WriteByte(uint8(t))
+
+	handle := codec.MsgpackHandle{}
+	encoder := codec.NewEncoder(buf, &handle)
+	err := encoder.Encode(msg)
+	return buf.Bytes(), err
+}
+
+// relayHeader is used to store the end destination of a relayed message
+type relayHeader struct {
+	DestAddr net.UDPAddr
+}
+
+// encodeRelayMessage wraps a message in the messageRelayType, adding the length and
+// address of the end recipient to the front of the message
+func encodeRelayMessage(t messageType, addr net.UDPAddr, msg interface{}) ([]byte, error) {
+	buf := bytes.NewBuffer(nil)
+	handle := codec.MsgpackHandle{}
+	encoder := codec.NewEncoder(buf, &handle)
+
+	buf.WriteByte(uint8(messageRelayType))
+	if err := encoder.Encode(relayHeader{DestAddr: addr}); err != nil {
+		return nil, err
+	}
+
+	buf.WriteByte(uint8(t))
+	err := encoder.Encode(msg)
+	return buf.Bytes(), err
+}
+
+func encodeFilter(f filterType, filt interface{}) ([]byte, error) {
+	buf := bytes.NewBuffer(nil)
+	buf.WriteByte(uint8(f))
+
+	handle := codec.MsgpackHandle{}
+	encoder := codec.NewEncoder(buf, &handle)
+	err := encoder.Encode(filt)
+	return buf.Bytes(), err
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/ping_delegate.go b/vendor/github.com/hashicorp/serf/serf/ping_delegate.go
new file mode 100644
index 0000000000..a482685a20
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/ping_delegate.go
@@ -0,0 +1,89 @@
+package serf
+
+import (
+	"bytes"
+	"log"
+	"time"
+
+	"github.com/armon/go-metrics"
+	"github.com/hashicorp/go-msgpack/codec"
+	"github.com/hashicorp/memberlist"
+	"github.com/hashicorp/serf/coordinate"
+)
+
+// pingDelegate is notified when memberlist successfully completes a direct ping
+// of a peer node. We use this to update our estimated network coordinate, as
+// well as cache the coordinate of the peer.
+type pingDelegate struct {
+	serf *Serf
+}
+
+const (
+	// PingVersion is an internal version for the ping message, above the normal
+	// versioning we get from the protocol version. This enables small updates
+	// to the ping message without a full protocol bump.
+	PingVersion = 1
+)
+
+// AckPayload is called to produce a payload to send back in response to a ping
+// request.
+func (p *pingDelegate) AckPayload() []byte {
+	var buf bytes.Buffer
+
+	// The first byte is the version number, forming a simple header.
+	version := []byte{PingVersion}
+	buf.Write(version)
+
+	// The rest of the message is the serialized coordinate.
+	enc := codec.NewEncoder(&buf, &codec.MsgpackHandle{})
+	if err := enc.Encode(p.serf.coordClient.GetCoordinate()); err != nil {
+		log.Printf("[ERR] serf: Failed to encode coordinate: %v\n", err)
+	}
+	return buf.Bytes()
+}
+
+// NotifyPingComplete is called when this node successfully completes a direct ping
+// of a peer node.
+func (p *pingDelegate) NotifyPingComplete(other *memberlist.Node, rtt time.Duration, payload []byte) {
+	if payload == nil || len(payload) == 0 {
+		return
+	}
+
+	// Verify ping version in the header.
+	version := payload[0]
+	if version != PingVersion {
+		log.Printf("[ERR] serf: Unsupported ping version: %v", version)
+		return
+	}
+
+	// Process the remainder of the message as a coordinate.
+	r := bytes.NewReader(payload[1:])
+	dec := codec.NewDecoder(r, &codec.MsgpackHandle{})
+	var coord coordinate.Coordinate
+	if err := dec.Decode(&coord); err != nil {
+		log.Printf("[ERR] serf: Failed to decode coordinate from ping: %v", err)
+	}
+
+	// Apply the update. Since this is a coordinate coming from some place
+	// else we harden this and look for dimensionality problems proactively.
+	before := p.serf.coordClient.GetCoordinate()
+	if before.IsCompatibleWith(&coord) {
+		after := p.serf.coordClient.Update(other.Name, &coord, rtt)
+
+		// Publish some metrics to give us an idea of how much we are
+		// adjusting each time we update.
+		d := float32(before.DistanceTo(after).Seconds() * 1.0e3)
+		metrics.AddSample([]string{"serf", "coordinate", "adjustment-ms"}, d)
+
+		// Cache the coordinate for the other node, and add our own
+		// to the cache as well since it just got updated. This lets
+		// users call GetCachedCoordinate with our node name, which is
+		// more friendly.
+		p.serf.coordCacheLock.Lock()
+		p.serf.coordCache[other.Name] = &coord
+		p.serf.coordCache[p.serf.config.NodeName] = p.serf.coordClient.GetCoordinate()
+		p.serf.coordCacheLock.Unlock()
+	} else {
+		log.Printf("[ERR] serf: Rejected bad coordinate: %v\n", coord)
+	}
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/query.go b/vendor/github.com/hashicorp/serf/serf/query.go
new file mode 100644
index 0000000000..5412821e30
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/query.go
@@ -0,0 +1,294 @@
+package serf
+
+import (
+	"fmt"
+	"math"
+	"math/rand"
+	"net"
+	"regexp"
+	"sync"
+	"time"
+)
+
+// QueryParam is provided to Query() to configure the parameters of the
+// query. If not provided, sane defaults will be used.
+type QueryParam struct {
+	// If provided, we restrict the nodes that should respond to those
+	// with names in this list
+	FilterNodes []string
+
+	// FilterTags maps a tag name to a regular expression that is applied
+	// to restrict the nodes that should respond
+	FilterTags map[string]string
+
+	// If true, we are requesting an delivery acknowledgement from
+	// every node that meets the filter requirement. This means nodes
+	// the receive the message but do not pass the filters, will not
+	// send an ack.
+	RequestAck bool
+
+	// RelayFactor controls the number of duplicate responses to relay
+	// back to the sender through other nodes for redundancy.
+	RelayFactor uint8
+
+	// The timeout limits how long the query is left open. If not provided,
+	// then a default timeout is used based on the configuration of Serf
+	Timeout time.Duration
+}
+
+// DefaultQueryTimeout returns the default timeout value for a query
+// Computed as GossipInterval * QueryTimeoutMult * log(N+1)
+func (s *Serf) DefaultQueryTimeout() time.Duration {
+	n := s.memberlist.NumMembers()
+	timeout := s.config.MemberlistConfig.GossipInterval
+	timeout *= time.Duration(s.config.QueryTimeoutMult)
+	timeout *= time.Duration(math.Ceil(math.Log10(float64(n + 1))))
+	return timeout
+}
+
+// DefaultQueryParam is used to return the default query parameters
+func (s *Serf) DefaultQueryParams() *QueryParam {
+	return &QueryParam{
+		FilterNodes: nil,
+		FilterTags:  nil,
+		RequestAck:  false,
+		Timeout:     s.DefaultQueryTimeout(),
+	}
+}
+
+// encodeFilters is used to convert the filters into the wire format
+func (q *QueryParam) encodeFilters() ([][]byte, error) {
+	var filters [][]byte
+
+	// Add the node filter
+	if len(q.FilterNodes) > 0 {
+		if buf, err := encodeFilter(filterNodeType, q.FilterNodes); err != nil {
+			return nil, err
+		} else {
+			filters = append(filters, buf)
+		}
+	}
+
+	// Add the tag filters
+	for tag, expr := range q.FilterTags {
+		filt := filterTag{tag, expr}
+		if buf, err := encodeFilter(filterTagType, &filt); err != nil {
+			return nil, err
+		} else {
+			filters = append(filters, buf)
+		}
+	}
+
+	return filters, nil
+}
+
+// QueryResponse is returned for each new Query. It is used to collect
+// Ack's as well as responses and to provide those back to a client.
+type QueryResponse struct {
+	// ackCh is used to send the name of a node for which we've received an ack
+	ackCh chan string
+
+	// deadline is the query end time (start + query timeout)
+	deadline time.Time
+
+	// Query ID
+	id uint32
+
+	// Stores the LTime of the query
+	lTime LamportTime
+
+	// respCh is used to send a response from a node
+	respCh chan NodeResponse
+
+	// acks/responses are used to track the nodes that have sent an ack/response
+	acks      map[string]struct{}
+	responses map[string]struct{}
+
+	closed    bool
+	closeLock sync.Mutex
+}
+
+// newQueryResponse is used to construct a new query response
+func newQueryResponse(n int, q *messageQuery) *QueryResponse {
+	resp := &QueryResponse{
+		deadline:  time.Now().Add(q.Timeout),
+		id:        q.ID,
+		lTime:     q.LTime,
+		respCh:    make(chan NodeResponse, n),
+		responses: make(map[string]struct{}),
+	}
+	if q.Ack() {
+		resp.ackCh = make(chan string, n)
+		resp.acks = make(map[string]struct{})
+	}
+	return resp
+}
+
+// Close is used to close the query, which will close the underlying
+// channels and prevent further deliveries
+func (r *QueryResponse) Close() {
+	r.closeLock.Lock()
+	defer r.closeLock.Unlock()
+	if r.closed {
+		return
+	}
+	r.closed = true
+	if r.ackCh != nil {
+		close(r.ackCh)
+	}
+	if r.respCh != nil {
+		close(r.respCh)
+	}
+}
+
+// Deadline returns the ending deadline of the query
+func (r *QueryResponse) Deadline() time.Time {
+	return r.deadline
+}
+
+// Finished returns if the query is finished running
+func (r *QueryResponse) Finished() bool {
+	return r.closed || time.Now().After(r.deadline)
+}
+
+// AckCh returns a channel that can be used to listen for acks
+// Channel will be closed when the query is finished. This is nil,
+// if the query did not specify RequestAck.
+func (r *QueryResponse) AckCh() <-chan string {
+	return r.ackCh
+}
+
+// ResponseCh returns a channel that can be used to listen for responses.
+// Channel will be closed when the query is finished.
+func (r *QueryResponse) ResponseCh() <-chan NodeResponse {
+	return r.respCh
+}
+
+// NodeResponse is used to represent a single response from a node
+type NodeResponse struct {
+	From    string
+	Payload []byte
+}
+
+// shouldProcessQuery checks if a query should be proceeded given
+// a set of filers.
+func (s *Serf) shouldProcessQuery(filters [][]byte) bool {
+	for _, filter := range filters {
+		switch filterType(filter[0]) {
+		case filterNodeType:
+			// Decode the filter
+			var nodes filterNode
+			if err := decodeMessage(filter[1:], &nodes); err != nil {
+				s.logger.Printf("[WARN] serf: failed to decode filterNodeType: %v", err)
+				return false
+			}
+
+			// Check if we are being targeted
+			found := false
+			for _, n := range nodes {
+				if n == s.config.NodeName {
+					found = true
+					break
+				}
+			}
+			if !found {
+				return false
+			}
+
+		case filterTagType:
+			// Decode the filter
+			var filt filterTag
+			if err := decodeMessage(filter[1:], &filt); err != nil {
+				s.logger.Printf("[WARN] serf: failed to decode filterTagType: %v", err)
+				return false
+			}
+
+			// Check if we match this regex
+			tags := s.config.Tags
+			matched, err := regexp.MatchString(filt.Expr, tags[filt.Tag])
+			if err != nil {
+				s.logger.Printf("[WARN] serf: failed to compile filter regex (%s): %v", filt.Expr, err)
+				return false
+			}
+			if !matched {
+				return false
+			}
+
+		default:
+			s.logger.Printf("[WARN] serf: query has unrecognized filter type: %d", filter[0])
+			return false
+		}
+	}
+	return true
+}
+
+// relayResponse will relay a copy of the given response to up to relayFactor
+// other members.
+func (s *Serf) relayResponse(relayFactor uint8, addr net.UDPAddr, resp *messageQueryResponse) error {
+	if relayFactor == 0 {
+		return nil
+	}
+
+	// Needs to be worth it; we need to have at least relayFactor *other*
+	// nodes. If you have a tiny cluster then the relayFactor shouldn't
+	// be needed.
+	members := s.Members()
+	if len(members) < int(relayFactor)+1 {
+		return nil
+	}
+
+	// Prep the relay message, which is a wrapped version of the original.
+	raw, err := encodeRelayMessage(messageQueryResponseType, addr, &resp)
+	if err != nil {
+		return fmt.Errorf("failed to format relayed response: %v", err)
+	}
+	if len(raw) > s.config.QueryResponseSizeLimit {
+		return fmt.Errorf("relayed response exceeds limit of %d bytes", s.config.QueryResponseSizeLimit)
+	}
+
+	// Relay to a random set of peers.
+	localName := s.LocalMember().Name
+	relayMembers := kRandomMembers(int(relayFactor), members, func(m Member) bool {
+		return m.Status != StatusAlive || m.ProtocolMax < 5 || m.Name == localName
+	})
+	for _, m := range relayMembers {
+		relayAddr := net.UDPAddr{IP: m.Addr, Port: int(m.Port)}
+		if err := s.memberlist.SendTo(&relayAddr, raw); err != nil {
+			return fmt.Errorf("failed to send relay response: %v", err)
+		}
+	}
+	return nil
+}
+
+// kRandomMembers selects up to k members from a given list, optionally
+// filtering by the given filterFunc
+func kRandomMembers(k int, members []Member, filterFunc func(Member) bool) []Member {
+	n := len(members)
+	kMembers := make([]Member, 0, k)
+OUTER:
+	// Probe up to 3*n times, with large n this is not necessary
+	// since k << n, but with small n we want search to be
+	// exhaustive
+	for i := 0; i < 3*n && len(kMembers) < k; i++ {
+		// Get random member
+		idx := rand.Intn(n)
+		member := members[idx]
+
+		// Give the filter a shot at it.
+		if filterFunc != nil && filterFunc(member) {
+			continue OUTER
+		}
+
+		// Check if we have this member already
+		for j := 0; j < len(kMembers); j++ {
+			if member.Name == kMembers[j].Name {
+				continue OUTER
+			}
+		}
+
+		// Append the member
+		kMembers = append(kMembers, member)
+	}
+
+	return kMembers
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/serf.go b/vendor/github.com/hashicorp/serf/serf/serf.go
new file mode 100644
index 0000000000..62fef5bc06
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/serf.go
@@ -0,0 +1,1728 @@
+package serf
+
+import (
+	"bytes"
+	"encoding/base64"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io/ioutil"
+	"log"
+	"math/rand"
+	"net"
+	"strconv"
+	"sync"
+	"time"
+
+	"github.com/armon/go-metrics"
+	"github.com/hashicorp/go-msgpack/codec"
+	"github.com/hashicorp/memberlist"
+	"github.com/hashicorp/serf/coordinate"
+)
+
+// These are the protocol versions that Serf can _understand_. These are
+// Serf-level protocol versions that are passed down as the delegate
+// version to memberlist below.
+const (
+	ProtocolVersionMin uint8 = 2
+	ProtocolVersionMax       = 5
+)
+
+const (
+	// Used to detect if the meta data is tags
+	// or if it is a raw role
+	tagMagicByte uint8 = 255
+)
+
+var (
+	// FeatureNotSupported is returned if a feature cannot be used
+	// due to an older protocol version being used.
+	FeatureNotSupported = fmt.Errorf("Feature not supported")
+)
+
+func init() {
+	// Seed the random number generator
+	rand.Seed(time.Now().UnixNano())
+}
+
+// Serf is a single node that is part of a single cluster that gets
+// events about joins/leaves/failures/etc. It is created with the Create
+// method.
+//
+// All functions on the Serf structure are safe to call concurrently.
+type Serf struct {
+	// The clocks for different purposes. These MUST be the first things
+	// in this struct due to Golang issue #599.
+	clock      LamportClock
+	eventClock LamportClock
+	queryClock LamportClock
+
+	broadcasts    *memberlist.TransmitLimitedQueue
+	config        *Config
+	failedMembers []*memberState
+	leftMembers   []*memberState
+	memberlist    *memberlist.Memberlist
+	memberLock    sync.RWMutex
+	members       map[string]*memberState
+
+	// recentIntents the lamport time and type of intent for a given node in
+	// case we get an intent before the relevant memberlist event. This is
+	// indexed by node, and always store the latest lamport time / intent
+	// we've seen. The memberLock protects this structure.
+	recentIntents map[string]nodeIntent
+
+	eventBroadcasts *memberlist.TransmitLimitedQueue
+	eventBuffer     []*userEvents
+	eventJoinIgnore bool
+	eventMinTime    LamportTime
+	eventLock       sync.RWMutex
+
+	queryBroadcasts *memberlist.TransmitLimitedQueue
+	queryBuffer     []*queries
+	queryMinTime    LamportTime
+	queryResponse   map[LamportTime]*QueryResponse
+	queryLock       sync.RWMutex
+
+	logger     *log.Logger
+	joinLock   sync.Mutex
+	stateLock  sync.Mutex
+	state      SerfState
+	shutdownCh chan struct{}
+
+	snapshotter *Snapshotter
+	keyManager  *KeyManager
+
+	coordClient    *coordinate.Client
+	coordCache     map[string]*coordinate.Coordinate
+	coordCacheLock sync.RWMutex
+}
+
+// SerfState is the state of the Serf instance.
+type SerfState int
+
+const (
+	SerfAlive SerfState = iota
+	SerfLeaving
+	SerfLeft
+	SerfShutdown
+)
+
+func (s SerfState) String() string {
+	switch s {
+	case SerfAlive:
+		return "alive"
+	case SerfLeaving:
+		return "leaving"
+	case SerfLeft:
+		return "left"
+	case SerfShutdown:
+		return "shutdown"
+	default:
+		return "unknown"
+	}
+}
+
+// Member is a single member of the Serf cluster.
+type Member struct {
+	Name   string
+	Addr   net.IP
+	Port   uint16
+	Tags   map[string]string
+	Status MemberStatus
+
+	// The minimum, maximum, and current values of the protocol versions
+	// and delegate (Serf) protocol versions that each member can understand
+	// or is speaking.
+	ProtocolMin uint8
+	ProtocolMax uint8
+	ProtocolCur uint8
+	DelegateMin uint8
+	DelegateMax uint8
+	DelegateCur uint8
+}
+
+// MemberStatus is the state that a member is in.
+type MemberStatus int
+
+const (
+	StatusNone MemberStatus = iota
+	StatusAlive
+	StatusLeaving
+	StatusLeft
+	StatusFailed
+)
+
+func (s MemberStatus) String() string {
+	switch s {
+	case StatusNone:
+		return "none"
+	case StatusAlive:
+		return "alive"
+	case StatusLeaving:
+		return "leaving"
+	case StatusLeft:
+		return "left"
+	case StatusFailed:
+		return "failed"
+	default:
+		panic(fmt.Sprintf("unknown MemberStatus: %d", s))
+	}
+}
+
+// memberState is used to track members that are no longer active due to
+// leaving, failing, partitioning, etc. It tracks the member along with
+// when that member was marked as leaving.
+type memberState struct {
+	Member
+	statusLTime LamportTime // lamport clock time of last received message
+	leaveTime   time.Time   // wall clock time of leave
+}
+
+// nodeIntent is used to buffer intents for out-of-order deliveries.
+type nodeIntent struct {
+	// Type is the intent being tracked. Only messageJoinType and
+	// messageLeaveType are tracked.
+	Type messageType
+
+	// WallTime is the wall clock time we saw this intent in order to
+	// expire it from the buffer.
+	WallTime time.Time
+
+	// LTime is the Lamport time, used for cluster-wide ordering of events.
+	LTime LamportTime
+}
+
+// userEvent is used to buffer events to prevent re-delivery
+type userEvent struct {
+	Name    string
+	Payload []byte
+}
+
+func (ue *userEvent) Equals(other *userEvent) bool {
+	if ue.Name != other.Name {
+		return false
+	}
+	if bytes.Compare(ue.Payload, other.Payload) != 0 {
+		return false
+	}
+	return true
+}
+
+// userEvents stores all the user events at a specific time
+type userEvents struct {
+	LTime  LamportTime
+	Events []userEvent
+}
+
+// queries stores all the query ids at a specific time
+type queries struct {
+	LTime    LamportTime
+	QueryIDs []uint32
+}
+
+const (
+	UserEventSizeLimit = 512        // Maximum byte size for event name and payload
+	snapshotSizeLimit  = 128 * 1024 // Maximum 128 KB snapshot
+)
+
+// Create creates a new Serf instance, starting all the background tasks
+// to maintain cluster membership information.
+//
+// After calling this function, the configuration should no longer be used
+// or modified by the caller.
+func Create(conf *Config) (*Serf, error) {
+	conf.Init()
+	if conf.ProtocolVersion < ProtocolVersionMin {
+		return nil, fmt.Errorf("Protocol version '%d' too low. Must be in range: [%d, %d]",
+			conf.ProtocolVersion, ProtocolVersionMin, ProtocolVersionMax)
+	} else if conf.ProtocolVersion > ProtocolVersionMax {
+		return nil, fmt.Errorf("Protocol version '%d' too high. Must be in range: [%d, %d]",
+			conf.ProtocolVersion, ProtocolVersionMin, ProtocolVersionMax)
+	}
+
+	serf := &Serf{
+		config:        conf,
+		logger:        log.New(conf.LogOutput, "", log.LstdFlags),
+		members:       make(map[string]*memberState),
+		queryResponse: make(map[LamportTime]*QueryResponse),
+		shutdownCh:    make(chan struct{}),
+		state:         SerfAlive,
+	}
+
+	// Check that the meta data length is okay
+	if len(serf.encodeTags(conf.Tags)) > memberlist.MetaMaxSize {
+		return nil, fmt.Errorf("Encoded length of tags exceeds limit of %d bytes", memberlist.MetaMaxSize)
+	}
+
+	// Check if serf member event coalescing is enabled
+	if conf.CoalescePeriod > 0 && conf.QuiescentPeriod > 0 && conf.EventCh != nil {
+		c := &memberEventCoalescer{
+			lastEvents:   make(map[string]EventType),
+			latestEvents: make(map[string]coalesceEvent),
+		}
+
+		conf.EventCh = coalescedEventCh(conf.EventCh, serf.shutdownCh,
+			conf.CoalescePeriod, conf.QuiescentPeriod, c)
+	}
+
+	// Check if user event coalescing is enabled
+	if conf.UserCoalescePeriod > 0 && conf.UserQuiescentPeriod > 0 && conf.EventCh != nil {
+		c := &userEventCoalescer{
+			events: make(map[string]*latestUserEvents),
+		}
+
+		conf.EventCh = coalescedEventCh(conf.EventCh, serf.shutdownCh,
+			conf.UserCoalescePeriod, conf.UserQuiescentPeriod, c)
+	}
+
+	// Listen for internal Serf queries. This is setup before the snapshotter, since
+	// we want to capture the query-time, but the internal listener does not passthrough
+	// the queries
+	outCh, err := newSerfQueries(serf, serf.logger, conf.EventCh, serf.shutdownCh)
+	if err != nil {
+		return nil, fmt.Errorf("Failed to setup serf query handler: %v", err)
+	}
+	conf.EventCh = outCh
+
+	// Set up network coordinate client.
+	if !conf.DisableCoordinates {
+		serf.coordClient, err = coordinate.NewClient(coordinate.DefaultConfig())
+		if err != nil {
+			return nil, fmt.Errorf("Failed to create coordinate client: %v", err)
+		}
+	}
+
+	// Try access the snapshot
+	var oldClock, oldEventClock, oldQueryClock LamportTime
+	var prev []*PreviousNode
+	if conf.SnapshotPath != "" {
+		eventCh, snap, err := NewSnapshotter(
+			conf.SnapshotPath,
+			snapshotSizeLimit,
+			conf.RejoinAfterLeave,
+			serf.logger,
+			&serf.clock,
+			serf.coordClient,
+			conf.EventCh,
+			serf.shutdownCh)
+		if err != nil {
+			return nil, fmt.Errorf("Failed to setup snapshot: %v", err)
+		}
+		serf.snapshotter = snap
+		conf.EventCh = eventCh
+		prev = snap.AliveNodes()
+		oldClock = snap.LastClock()
+		oldEventClock = snap.LastEventClock()
+		oldQueryClock = snap.LastQueryClock()
+		serf.eventMinTime = oldEventClock + 1
+		serf.queryMinTime = oldQueryClock + 1
+	}
+
+	// Set up the coordinate cache. We do this after we read the snapshot to
+	// make sure we get a good initial value from there, if we got one.
+	if !conf.DisableCoordinates {
+		serf.coordCache = make(map[string]*coordinate.Coordinate)
+		serf.coordCache[conf.NodeName] = serf.coordClient.GetCoordinate()
+	}
+
+	// Setup the various broadcast queues, which we use to send our own
+	// custom broadcasts along the gossip channel.
+	serf.broadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			return len(serf.members)
+		},
+		RetransmitMult: conf.MemberlistConfig.RetransmitMult,
+	}
+	serf.eventBroadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			return len(serf.members)
+		},
+		RetransmitMult: conf.MemberlistConfig.RetransmitMult,
+	}
+	serf.queryBroadcasts = &memberlist.TransmitLimitedQueue{
+		NumNodes: func() int {
+			return len(serf.members)
+		},
+		RetransmitMult: conf.MemberlistConfig.RetransmitMult,
+	}
+
+	// Create the buffer for recent intents
+	serf.recentIntents = make(map[string]nodeIntent)
+
+	// Create a buffer for events and queries
+	serf.eventBuffer = make([]*userEvents, conf.EventBuffer)
+	serf.queryBuffer = make([]*queries, conf.QueryBuffer)
+
+	// Ensure our lamport clock is at least 1, so that the default
+	// join LTime of 0 does not cause issues
+	serf.clock.Increment()
+	serf.eventClock.Increment()
+	serf.queryClock.Increment()
+
+	// Restore the clock from snap if we have one
+	serf.clock.Witness(oldClock)
+	serf.eventClock.Witness(oldEventClock)
+	serf.queryClock.Witness(oldQueryClock)
+
+	// Modify the memberlist configuration with keys that we set
+	conf.MemberlistConfig.Events = &eventDelegate{serf: serf}
+	conf.MemberlistConfig.Conflict = &conflictDelegate{serf: serf}
+	conf.MemberlistConfig.Delegate = &delegate{serf: serf}
+	conf.MemberlistConfig.DelegateProtocolVersion = conf.ProtocolVersion
+	conf.MemberlistConfig.DelegateProtocolMin = ProtocolVersionMin
+	conf.MemberlistConfig.DelegateProtocolMax = ProtocolVersionMax
+	conf.MemberlistConfig.Name = conf.NodeName
+	conf.MemberlistConfig.ProtocolVersion = ProtocolVersionMap[conf.ProtocolVersion]
+	if !conf.DisableCoordinates {
+		conf.MemberlistConfig.Ping = &pingDelegate{serf: serf}
+	}
+
+	// Setup a merge delegate if necessary
+	if conf.Merge != nil {
+		md := &mergeDelegate{serf: serf}
+		conf.MemberlistConfig.Merge = md
+		conf.MemberlistConfig.Alive = md
+	}
+
+	// Create the underlying memberlist that will manage membership
+	// and failure detection for the Serf instance.
+	memberlist, err := memberlist.Create(conf.MemberlistConfig)
+	if err != nil {
+		return nil, fmt.Errorf("Failed to create memberlist: %v", err)
+	}
+
+	serf.memberlist = memberlist
+
+	// Create a key manager for handling all encryption key changes
+	serf.keyManager = &KeyManager{serf: serf}
+
+	// Start the background tasks. See the documentation above each method
+	// for more information on their role.
+	go serf.handleReap()
+	go serf.handleReconnect()
+	go serf.checkQueueDepth("Intent", serf.broadcasts)
+	go serf.checkQueueDepth("Event", serf.eventBroadcasts)
+	go serf.checkQueueDepth("Query", serf.queryBroadcasts)
+
+	// Attempt to re-join the cluster if we have known nodes
+	if len(prev) != 0 {
+		go serf.handleRejoin(prev)
+	}
+
+	return serf, nil
+}
+
+// ProtocolVersion returns the current protocol version in use by Serf.
+// This is the Serf protocol version, not the memberlist protocol version.
+func (s *Serf) ProtocolVersion() uint8 {
+	return s.config.ProtocolVersion
+}
+
+// EncryptionEnabled is a predicate that determines whether or not encryption
+// is enabled, which can be possible in one of 2 cases:
+//   - Single encryption key passed at agent start (no persistence)
+//   - Keyring file provided at agent start
+func (s *Serf) EncryptionEnabled() bool {
+	return s.config.MemberlistConfig.Keyring != nil
+}
+
+// KeyManager returns the key manager for the current Serf instance.
+func (s *Serf) KeyManager() *KeyManager {
+	return s.keyManager
+}
+
+// UserEvent is used to broadcast a custom user event with a given
+// name and payload. The events must be fairly small, and if the
+// size limit is exceeded and error will be returned. If coalesce is enabled,
+// nodes are allowed to coalesce this event. Coalescing is only available
+// starting in v0.2
+func (s *Serf) UserEvent(name string, payload []byte, coalesce bool) error {
+	// Check the size limit
+	if len(name)+len(payload) > UserEventSizeLimit {
+		return fmt.Errorf("user event exceeds limit of %d bytes", UserEventSizeLimit)
+	}
+
+	// Create a message
+	msg := messageUserEvent{
+		LTime:   s.eventClock.Time(),
+		Name:    name,
+		Payload: payload,
+		CC:      coalesce,
+	}
+	s.eventClock.Increment()
+
+	// Process update locally
+	s.handleUserEvent(&msg)
+
+	// Start broadcasting the event
+	raw, err := encodeMessage(messageUserEventType, &msg)
+	if err != nil {
+		return err
+	}
+	s.eventBroadcasts.QueueBroadcast(&broadcast{
+		msg: raw,
+	})
+	return nil
+}
+
+// Query is used to broadcast a new query. The query must be fairly small,
+// and an error will be returned if the size limit is exceeded. This is only
+// available with protocol version 4 and newer. Query parameters are optional,
+// and if not provided, a sane set of defaults will be used.
+func (s *Serf) Query(name string, payload []byte, params *QueryParam) (*QueryResponse, error) {
+	// Check that the latest protocol is in use
+	if s.ProtocolVersion() < 4 {
+		return nil, FeatureNotSupported
+	}
+
+	// Provide default parameters if none given
+	if params == nil {
+		params = s.DefaultQueryParams()
+	} else if params.Timeout == 0 {
+		params.Timeout = s.DefaultQueryTimeout()
+	}
+
+	// Get the local node
+	local := s.memberlist.LocalNode()
+
+	// Encode the filters
+	filters, err := params.encodeFilters()
+	if err != nil {
+		return nil, fmt.Errorf("Failed to format filters: %v", err)
+	}
+
+	// Setup the flags
+	var flags uint32
+	if params.RequestAck {
+		flags |= queryFlagAck
+	}
+
+	// Create a message
+	q := messageQuery{
+		LTime:       s.queryClock.Time(),
+		ID:          uint32(rand.Int31()),
+		Addr:        local.Addr,
+		Port:        local.Port,
+		Filters:     filters,
+		Flags:       flags,
+		RelayFactor: params.RelayFactor,
+		Timeout:     params.Timeout,
+		Name:        name,
+		Payload:     payload,
+	}
+
+	// Encode the query
+	raw, err := encodeMessage(messageQueryType, &q)
+	if err != nil {
+		return nil, err
+	}
+
+	// Check the size
+	if len(raw) > s.config.QuerySizeLimit {
+		return nil, fmt.Errorf("query exceeds limit of %d bytes", s.config.QuerySizeLimit)
+	}
+
+	// Register QueryResponse to track acks and responses
+	resp := newQueryResponse(s.memberlist.NumMembers(), &q)
+	s.registerQueryResponse(params.Timeout, resp)
+
+	// Process query locally
+	s.handleQuery(&q)
+
+	// Start broadcasting the event
+	s.queryBroadcasts.QueueBroadcast(&broadcast{
+		msg: raw,
+	})
+	return resp, nil
+}
+
+// registerQueryResponse is used to setup the listeners for the query,
+// and to schedule closing the query after the timeout.
+func (s *Serf) registerQueryResponse(timeout time.Duration, resp *QueryResponse) {
+	s.queryLock.Lock()
+	defer s.queryLock.Unlock()
+
+	// Map the LTime to the QueryResponse. This is necessarily 1-to-1,
+	// since we increment the time for each new query.
+	s.queryResponse[resp.lTime] = resp
+
+	// Setup a timer to close the response and deregister after the timeout
+	time.AfterFunc(timeout, func() {
+		s.queryLock.Lock()
+		delete(s.queryResponse, resp.lTime)
+		resp.Close()
+		s.queryLock.Unlock()
+	})
+}
+
+// SetTags is used to dynamically update the tags associated with
+// the local node. This will propagate the change to the rest of
+// the cluster. Blocks until a the message is broadcast out.
+func (s *Serf) SetTags(tags map[string]string) error {
+	// Check that the meta data length is okay
+	if len(s.encodeTags(tags)) > memberlist.MetaMaxSize {
+		return fmt.Errorf("Encoded length of tags exceeds limit of %d bytes",
+			memberlist.MetaMaxSize)
+	}
+
+	// Update the config
+	s.config.Tags = tags
+
+	// Trigger a memberlist update
+	return s.memberlist.UpdateNode(s.config.BroadcastTimeout)
+}
+
+// Join joins an existing Serf cluster. Returns the number of nodes
+// successfully contacted. The returned error will be non-nil only in the
+// case that no nodes could be contacted. If ignoreOld is true, then any
+// user messages sent prior to the join will be ignored.
+func (s *Serf) Join(existing []string, ignoreOld bool) (int, error) {
+	// Do a quick state check
+	if s.State() != SerfAlive {
+		return 0, fmt.Errorf("Serf can't Join after Leave or Shutdown")
+	}
+
+	// Hold the joinLock, this is to make eventJoinIgnore safe
+	s.joinLock.Lock()
+	defer s.joinLock.Unlock()
+
+	// Ignore any events from a potential join. This is safe since we hold
+	// the joinLock and nobody else can be doing a Join
+	if ignoreOld {
+		s.eventJoinIgnore = true
+		defer func() {
+			s.eventJoinIgnore = false
+		}()
+	}
+
+	// Have memberlist attempt to join
+	num, err := s.memberlist.Join(existing)
+
+	// If we joined any nodes, broadcast the join message
+	if num > 0 {
+		// Start broadcasting the update
+		if err := s.broadcastJoin(s.clock.Time()); err != nil {
+			return num, err
+		}
+	}
+
+	return num, err
+}
+
+// broadcastJoin broadcasts a new join intent with a
+// given clock value. It is used on either join, or if
+// we need to refute an older leave intent. Cannot be called
+// with the memberLock held.
+func (s *Serf) broadcastJoin(ltime LamportTime) error {
+	// Construct message to update our lamport clock
+	msg := messageJoin{
+		LTime: ltime,
+		Node:  s.config.NodeName,
+	}
+	s.clock.Witness(ltime)
+
+	// Process update locally
+	s.handleNodeJoinIntent(&msg)
+
+	// Start broadcasting the update
+	if err := s.broadcast(messageJoinType, &msg, nil); err != nil {
+		s.logger.Printf("[WARN] serf: Failed to broadcast join intent: %v", err)
+		return err
+	}
+	return nil
+}
+
+// Leave gracefully exits the cluster. It is safe to call this multiple
+// times.
+func (s *Serf) Leave() error {
+	// Check the current state
+	s.stateLock.Lock()
+	if s.state == SerfLeft {
+		s.stateLock.Unlock()
+		return nil
+	} else if s.state == SerfLeaving {
+		s.stateLock.Unlock()
+		return fmt.Errorf("Leave already in progress")
+	} else if s.state == SerfShutdown {
+		s.stateLock.Unlock()
+		return fmt.Errorf("Leave called after Shutdown")
+	}
+	s.state = SerfLeaving
+	s.stateLock.Unlock()
+
+	// If we have a snapshot, mark we are leaving
+	if s.snapshotter != nil {
+		s.snapshotter.Leave()
+	}
+
+	// Construct the message for the graceful leave
+	msg := messageLeave{
+		LTime: s.clock.Time(),
+		Node:  s.config.NodeName,
+	}
+	s.clock.Increment()
+
+	// Process the leave locally
+	s.handleNodeLeaveIntent(&msg)
+
+	// Only broadcast the leave message if there is at least one
+	// other node alive.
+	if s.hasAliveMembers() {
+		notifyCh := make(chan struct{})
+		if err := s.broadcast(messageLeaveType, &msg, notifyCh); err != nil {
+			return err
+		}
+
+		select {
+		case <-notifyCh:
+		case <-time.After(s.config.BroadcastTimeout):
+			return errors.New("timeout while waiting for graceful leave")
+		}
+	}
+
+	// Attempt the memberlist leave
+	err := s.memberlist.Leave(s.config.BroadcastTimeout)
+	if err != nil {
+		return err
+	}
+
+	// Transition to Left only if we not already shutdown
+	s.stateLock.Lock()
+	if s.state != SerfShutdown {
+		s.state = SerfLeft
+	}
+	s.stateLock.Unlock()
+	return nil
+}
+
+// hasAliveMembers is called to check for any alive members other than
+// ourself.
+func (s *Serf) hasAliveMembers() bool {
+	s.memberLock.RLock()
+	defer s.memberLock.RUnlock()
+
+	hasAlive := false
+	for _, m := range s.members {
+		// Skip ourself, we want to know if OTHER members are alive
+		if m.Name == s.config.NodeName {
+			continue
+		}
+
+		if m.Status == StatusAlive {
+			hasAlive = true
+			break
+		}
+	}
+	return hasAlive
+}
+
+// LocalMember returns the Member information for the local node
+func (s *Serf) LocalMember() Member {
+	s.memberLock.RLock()
+	defer s.memberLock.RUnlock()
+	return s.members[s.config.NodeName].Member
+}
+
+// Members returns a point-in-time snapshot of the members of this cluster.
+func (s *Serf) Members() []Member {
+	s.memberLock.RLock()
+	defer s.memberLock.RUnlock()
+
+	members := make([]Member, 0, len(s.members))
+	for _, m := range s.members {
+		members = append(members, m.Member)
+	}
+
+	return members
+}
+
+// RemoveFailedNode forcibly removes a failed node from the cluster
+// immediately, instead of waiting for the reaper to eventually reclaim it.
+// This also has the effect that Serf will no longer attempt to reconnect
+// to this node.
+func (s *Serf) RemoveFailedNode(node string) error {
+	// Construct the message to broadcast
+	msg := messageLeave{
+		LTime: s.clock.Time(),
+		Node:  node,
+	}
+	s.clock.Increment()
+
+	// Process our own event
+	s.handleNodeLeaveIntent(&msg)
+
+	// If we have no members, then we don't need to broadcast
+	if !s.hasAliveMembers() {
+		return nil
+	}
+
+	// Broadcast the remove
+	notifyCh := make(chan struct{})
+	if err := s.broadcast(messageLeaveType, &msg, notifyCh); err != nil {
+		return err
+	}
+
+	// Wait for the broadcast
+	select {
+	case <-notifyCh:
+	case <-time.After(s.config.BroadcastTimeout):
+		return fmt.Errorf("timed out broadcasting node removal")
+	}
+
+	return nil
+}
+
+// Shutdown forcefully shuts down the Serf instance, stopping all network
+// activity and background maintenance associated with the instance.
+//
+// This is not a graceful shutdown, and should be preceded by a call
+// to Leave. Otherwise, other nodes in the cluster will detect this node's
+// exit as a node failure.
+//
+// It is safe to call this method multiple times.
+func (s *Serf) Shutdown() error {
+	s.stateLock.Lock()
+	defer s.stateLock.Unlock()
+
+	if s.state == SerfShutdown {
+		return nil
+	}
+
+	if s.state != SerfLeft {
+		s.logger.Printf("[WARN] serf: Shutdown without a Leave")
+	}
+
+	s.state = SerfShutdown
+	close(s.shutdownCh)
+
+	err := s.memberlist.Shutdown()
+	if err != nil {
+		return err
+	}
+
+	// Wait for the snapshoter to finish if we have one
+	if s.snapshotter != nil {
+		s.snapshotter.Wait()
+	}
+
+	return nil
+}
+
+// ShutdownCh returns a channel that can be used to wait for
+// Serf to shutdown.
+func (s *Serf) ShutdownCh() <-chan struct{} {
+	return s.shutdownCh
+}
+
+// Memberlist is used to get access to the underlying Memberlist instance
+func (s *Serf) Memberlist() *memberlist.Memberlist {
+	return s.memberlist
+}
+
+// State is the current state of this Serf instance.
+func (s *Serf) State() SerfState {
+	s.stateLock.Lock()
+	defer s.stateLock.Unlock()
+	return s.state
+}
+
+// broadcast takes a Serf message type, encodes it for the wire, and queues
+// the broadcast. If a notify channel is given, this channel will be closed
+// when the broadcast is sent.
+func (s *Serf) broadcast(t messageType, msg interface{}, notify chan<- struct{}) error {
+	raw, err := encodeMessage(t, msg)
+	if err != nil {
+		return err
+	}
+
+	s.broadcasts.QueueBroadcast(&broadcast{
+		msg:    raw,
+		notify: notify,
+	})
+	return nil
+}
+
+// handleNodeJoin is called when a node join event is received
+// from memberlist.
+func (s *Serf) handleNodeJoin(n *memberlist.Node) {
+	s.memberLock.Lock()
+	defer s.memberLock.Unlock()
+
+	var oldStatus MemberStatus
+	member, ok := s.members[n.Name]
+	if !ok {
+		oldStatus = StatusNone
+		member = &memberState{
+			Member: Member{
+				Name:   n.Name,
+				Addr:   net.IP(n.Addr),
+				Port:   n.Port,
+				Tags:   s.decodeTags(n.Meta),
+				Status: StatusAlive,
+			},
+		}
+
+		// Check if we have a join or leave intent. The intent buffer
+		// will only hold one event for this node, so the more recent
+		// one will take effect.
+		if join, ok := recentIntent(s.recentIntents, n.Name, messageJoinType); ok {
+			member.statusLTime = join
+		}
+		if leave, ok := recentIntent(s.recentIntents, n.Name, messageLeaveType); ok {
+			member.Status = StatusLeaving
+			member.statusLTime = leave
+		}
+
+		s.members[n.Name] = member
+	} else {
+		oldStatus = member.Status
+		deadTime := time.Now().Sub(member.leaveTime)
+		if oldStatus == StatusFailed && deadTime < s.config.FlapTimeout {
+			metrics.IncrCounter([]string{"serf", "member", "flap"}, 1)
+		}
+
+		member.Status = StatusAlive
+		member.leaveTime = time.Time{}
+		member.Addr = net.IP(n.Addr)
+		member.Port = n.Port
+		member.Tags = s.decodeTags(n.Meta)
+	}
+
+	// Update the protocol versions every time we get an event
+	member.ProtocolMin = n.PMin
+	member.ProtocolMax = n.PMax
+	member.ProtocolCur = n.PCur
+	member.DelegateMin = n.DMin
+	member.DelegateMax = n.DMax
+	member.DelegateCur = n.DCur
+
+	// If node was previously in a failed state, then clean up some
+	// internal accounting.
+	// TODO(mitchellh): needs tests to verify not reaped
+	if oldStatus == StatusFailed || oldStatus == StatusLeft {
+		s.failedMembers = removeOldMember(s.failedMembers, member.Name)
+		s.leftMembers = removeOldMember(s.leftMembers, member.Name)
+	}
+
+	// Update some metrics
+	metrics.IncrCounter([]string{"serf", "member", "join"}, 1)
+
+	// Send an event along
+	s.logger.Printf("[INFO] serf: EventMemberJoin: %s %s",
+		member.Member.Name, member.Member.Addr)
+	if s.config.EventCh != nil {
+		s.config.EventCh <- MemberEvent{
+			Type:    EventMemberJoin,
+			Members: []Member{member.Member},
+		}
+	}
+}
+
+// handleNodeLeave is called when a node leave event is received
+// from memberlist.
+func (s *Serf) handleNodeLeave(n *memberlist.Node) {
+	s.memberLock.Lock()
+	defer s.memberLock.Unlock()
+
+	member, ok := s.members[n.Name]
+	if !ok {
+		// We've never even heard of this node that is supposedly
+		// leaving. Just ignore it completely.
+		return
+	}
+
+	switch member.Status {
+	case StatusLeaving:
+		member.Status = StatusLeft
+		member.leaveTime = time.Now()
+		s.leftMembers = append(s.leftMembers, member)
+	case StatusAlive:
+		member.Status = StatusFailed
+		member.leaveTime = time.Now()
+		s.failedMembers = append(s.failedMembers, member)
+	default:
+		// Unknown state that it was in? Just don't do anything
+		s.logger.Printf("[WARN] serf: Bad state when leave: %d", member.Status)
+		return
+	}
+
+	// Send an event along
+	event := EventMemberLeave
+	eventStr := "EventMemberLeave"
+	if member.Status != StatusLeft {
+		event = EventMemberFailed
+		eventStr = "EventMemberFailed"
+	}
+
+	// Update some metrics
+	metrics.IncrCounter([]string{"serf", "member", member.Status.String()}, 1)
+
+	s.logger.Printf("[INFO] serf: %s: %s %s",
+		eventStr, member.Member.Name, member.Member.Addr)
+	if s.config.EventCh != nil {
+		s.config.EventCh <- MemberEvent{
+			Type:    event,
+			Members: []Member{member.Member},
+		}
+	}
+}
+
+// handleNodeUpdate is called when a node meta data update
+// has taken place
+func (s *Serf) handleNodeUpdate(n *memberlist.Node) {
+	s.memberLock.Lock()
+	defer s.memberLock.Unlock()
+
+	member, ok := s.members[n.Name]
+	if !ok {
+		// We've never even heard of this node that is updating.
+		// Just ignore it completely.
+		return
+	}
+
+	// Update the member attributes
+	member.Addr = net.IP(n.Addr)
+	member.Port = n.Port
+	member.Tags = s.decodeTags(n.Meta)
+
+	// Snag the latest versions. NOTE - the current memberlist code will NOT
+	// fire an update event if the metadata (for Serf, tags) stays the same
+	// and only the protocol versions change. If we wake any Serf-level
+	// protocol changes where we want to get this event under those
+	// circumstances, we will need to update memberlist to do a check of
+	// versions as well as the metadata.
+	member.ProtocolMin = n.PMin
+	member.ProtocolMax = n.PMax
+	member.ProtocolCur = n.PCur
+	member.DelegateMin = n.DMin
+	member.DelegateMax = n.DMax
+	member.DelegateCur = n.DCur
+
+	// Update some metrics
+	metrics.IncrCounter([]string{"serf", "member", "update"}, 1)
+
+	// Send an event along
+	s.logger.Printf("[INFO] serf: EventMemberUpdate: %s", member.Member.Name)
+	if s.config.EventCh != nil {
+		s.config.EventCh <- MemberEvent{
+			Type:    EventMemberUpdate,
+			Members: []Member{member.Member},
+		}
+	}
+}
+
+// handleNodeLeaveIntent is called when an intent to leave is received.
+func (s *Serf) handleNodeLeaveIntent(leaveMsg *messageLeave) bool {
+	// Witness a potentially newer time
+	s.clock.Witness(leaveMsg.LTime)
+
+	s.memberLock.Lock()
+	defer s.memberLock.Unlock()
+
+	member, ok := s.members[leaveMsg.Node]
+	if !ok {
+		// Rebroadcast only if this was an update we hadn't seen before.
+		return upsertIntent(s.recentIntents, leaveMsg.Node, messageLeaveType, leaveMsg.LTime, time.Now)
+	}
+
+	// If the message is old, then it is irrelevant and we can skip it
+	if leaveMsg.LTime <= member.statusLTime {
+		return false
+	}
+
+	// Refute us leaving if we are in the alive state
+	// Must be done in another goroutine since we have the memberLock
+	if leaveMsg.Node == s.config.NodeName && s.state == SerfAlive {
+		s.logger.Printf("[DEBUG] serf: Refuting an older leave intent")
+		go s.broadcastJoin(s.clock.Time())
+		return false
+	}
+
+	// State transition depends on current state
+	switch member.Status {
+	case StatusAlive:
+		member.Status = StatusLeaving
+		member.statusLTime = leaveMsg.LTime
+		return true
+	case StatusFailed:
+		member.Status = StatusLeft
+		member.statusLTime = leaveMsg.LTime
+
+		// Remove from the failed list and add to the left list. We add
+		// to the left list so that when we do a sync, other nodes will
+		// remove it from their failed list.
+		s.failedMembers = removeOldMember(s.failedMembers, member.Name)
+		s.leftMembers = append(s.leftMembers, member)
+
+		// We must push a message indicating the node has now
+		// left to allow higher-level applications to handle the
+		// graceful leave.
+		s.logger.Printf("[INFO] serf: EventMemberLeave (forced): %s %s",
+			member.Member.Name, member.Member.Addr)
+		if s.config.EventCh != nil {
+			s.config.EventCh <- MemberEvent{
+				Type:    EventMemberLeave,
+				Members: []Member{member.Member},
+			}
+		}
+		return true
+	default:
+		return false
+	}
+}
+
+// handleNodeJoinIntent is called when a node broadcasts a
+// join message to set the lamport time of its join
+func (s *Serf) handleNodeJoinIntent(joinMsg *messageJoin) bool {
+	// Witness a potentially newer time
+	s.clock.Witness(joinMsg.LTime)
+
+	s.memberLock.Lock()
+	defer s.memberLock.Unlock()
+
+	member, ok := s.members[joinMsg.Node]
+	if !ok {
+		// Rebroadcast only if this was an update we hadn't seen before.
+		return upsertIntent(s.recentIntents, joinMsg.Node, messageJoinType, joinMsg.LTime, time.Now)
+	}
+
+	// Check if this time is newer than what we have
+	if joinMsg.LTime <= member.statusLTime {
+		return false
+	}
+
+	// Update the LTime
+	member.statusLTime = joinMsg.LTime
+
+	// If we are in the leaving state, we should go back to alive,
+	// since the leaving message must have been for an older time
+	if member.Status == StatusLeaving {
+		member.Status = StatusAlive
+	}
+	return true
+}
+
+// handleUserEvent is called when a user event broadcast is
+// received. Returns if the message should be rebroadcast.
+func (s *Serf) handleUserEvent(eventMsg *messageUserEvent) bool {
+	// Witness a potentially newer time
+	s.eventClock.Witness(eventMsg.LTime)
+
+	s.eventLock.Lock()
+	defer s.eventLock.Unlock()
+
+	// Ignore if it is before our minimum event time
+	if eventMsg.LTime < s.eventMinTime {
+		return false
+	}
+
+	// Check if this message is too old
+	curTime := s.eventClock.Time()
+	if curTime > LamportTime(len(s.eventBuffer)) &&
+		eventMsg.LTime < curTime-LamportTime(len(s.eventBuffer)) {
+		s.logger.Printf(
+			"[WARN] serf: received old event %s from time %d (current: %d)",
+			eventMsg.Name,
+			eventMsg.LTime,
+			s.eventClock.Time())
+		return false
+	}
+
+	// Check if we've already seen this
+	idx := eventMsg.LTime % LamportTime(len(s.eventBuffer))
+	seen := s.eventBuffer[idx]
+	userEvent := userEvent{Name: eventMsg.Name, Payload: eventMsg.Payload}
+	if seen != nil && seen.LTime == eventMsg.LTime {
+		for _, previous := range seen.Events {
+			if previous.Equals(&userEvent) {
+				return false
+			}
+		}
+	} else {
+		seen = &userEvents{LTime: eventMsg.LTime}
+		s.eventBuffer[idx] = seen
+	}
+
+	// Add to recent events
+	seen.Events = append(seen.Events, userEvent)
+
+	// Update some metrics
+	metrics.IncrCounter([]string{"serf", "events"}, 1)
+	metrics.IncrCounter([]string{"serf", "events", eventMsg.Name}, 1)
+
+	if s.config.EventCh != nil {
+		s.config.EventCh <- UserEvent{
+			LTime:    eventMsg.LTime,
+			Name:     eventMsg.Name,
+			Payload:  eventMsg.Payload,
+			Coalesce: eventMsg.CC,
+		}
+	}
+	return true
+}
+
+// handleQuery is called when a query broadcast is
+// received. Returns if the message should be rebroadcast.
+func (s *Serf) handleQuery(query *messageQuery) bool {
+	// Witness a potentially newer time
+	s.queryClock.Witness(query.LTime)
+
+	s.queryLock.Lock()
+	defer s.queryLock.Unlock()
+
+	// Ignore if it is before our minimum query time
+	if query.LTime < s.queryMinTime {
+		return false
+	}
+
+	// Check if this message is too old
+	curTime := s.queryClock.Time()
+	if curTime > LamportTime(len(s.queryBuffer)) &&
+		query.LTime < curTime-LamportTime(len(s.queryBuffer)) {
+		s.logger.Printf(
+			"[WARN] serf: received old query %s from time %d (current: %d)",
+			query.Name,
+			query.LTime,
+			s.queryClock.Time())
+		return false
+	}
+
+	// Check if we've already seen this
+	idx := query.LTime % LamportTime(len(s.queryBuffer))
+	seen := s.queryBuffer[idx]
+	if seen != nil && seen.LTime == query.LTime {
+		for _, previous := range seen.QueryIDs {
+			if previous == query.ID {
+				// Seen this ID already
+				return false
+			}
+		}
+	} else {
+		seen = &queries{LTime: query.LTime}
+		s.queryBuffer[idx] = seen
+	}
+
+	// Add to recent queries
+	seen.QueryIDs = append(seen.QueryIDs, query.ID)
+
+	// Update some metrics
+	metrics.IncrCounter([]string{"serf", "queries"}, 1)
+	metrics.IncrCounter([]string{"serf", "queries", query.Name}, 1)
+
+	// Check if we should rebroadcast, this may be disabled by a flag
+	rebroadcast := true
+	if query.NoBroadcast() {
+		rebroadcast = false
+	}
+
+	// Filter the query
+	if !s.shouldProcessQuery(query.Filters) {
+		// Even if we don't process it further, we should rebroadcast,
+		// since it is the first time we've seen this.
+		return rebroadcast
+	}
+
+	// Send ack if requested, without waiting for client to Respond()
+	if query.Ack() {
+		ack := messageQueryResponse{
+			LTime: query.LTime,
+			ID:    query.ID,
+			From:  s.config.NodeName,
+			Flags: queryFlagAck,
+		}
+		raw, err := encodeMessage(messageQueryResponseType, &ack)
+		if err != nil {
+			s.logger.Printf("[ERR] serf: failed to format ack: %v", err)
+		} else {
+			addr := net.UDPAddr{IP: query.Addr, Port: int(query.Port)}
+			if err := s.memberlist.SendTo(&addr, raw); err != nil {
+				s.logger.Printf("[ERR] serf: failed to send ack: %v", err)
+			}
+			if err := s.relayResponse(query.RelayFactor, addr, &ack); err != nil {
+				s.logger.Printf("[ERR] serf: failed to relay ack: %v", err)
+			}
+		}
+	}
+
+	if s.config.EventCh != nil {
+		s.config.EventCh <- &Query{
+			LTime:       query.LTime,
+			Name:        query.Name,
+			Payload:     query.Payload,
+			serf:        s,
+			id:          query.ID,
+			addr:        query.Addr,
+			port:        query.Port,
+			deadline:    time.Now().Add(query.Timeout),
+			relayFactor: query.RelayFactor,
+		}
+	}
+	return rebroadcast
+}
+
+// handleResponse is called when a query response is
+// received.
+func (s *Serf) handleQueryResponse(resp *messageQueryResponse) {
+	// Look for a corresponding QueryResponse
+	s.queryLock.RLock()
+	query, ok := s.queryResponse[resp.LTime]
+	s.queryLock.RUnlock()
+	if !ok {
+		s.logger.Printf("[WARN] serf: reply for non-running query (LTime: %d, ID: %d) From: %s",
+			resp.LTime, resp.ID, resp.From)
+		return
+	}
+
+	// Verify the ID matches
+	if query.id != resp.ID {
+		s.logger.Printf("[WARN] serf: query reply ID mismatch (Local: %d, Response: %d)",
+			query.id, resp.ID)
+		return
+	}
+
+	// Check if the query is closed
+	if query.Finished() {
+		return
+	}
+
+	// Process each type of response
+	if resp.Ack() {
+		// Exit early if this is a duplicate ack
+		if _, ok := query.acks[resp.From]; ok {
+			metrics.IncrCounter([]string{"serf", "query_duplicate_acks"}, 1)
+			return
+		}
+
+		metrics.IncrCounter([]string{"serf", "query_acks"}, 1)
+		select {
+		case query.ackCh <- resp.From:
+			query.acks[resp.From] = struct{}{}
+		default:
+			s.logger.Printf("[WARN] serf: Failed to deliver query ack, dropping")
+		}
+	} else {
+		// Exit early if this is a duplicate response
+		if _, ok := query.responses[resp.From]; ok {
+			metrics.IncrCounter([]string{"serf", "query_duplicate_responses"}, 1)
+			return
+		}
+
+		metrics.IncrCounter([]string{"serf", "query_responses"}, 1)
+		select {
+		case query.respCh <- NodeResponse{From: resp.From, Payload: resp.Payload}:
+			query.responses[resp.From] = struct{}{}
+		default:
+			s.logger.Printf("[WARN] serf: Failed to deliver query response, dropping")
+		}
+	}
+}
+
+// handleNodeConflict is invoked when a join detects a conflict over a name.
+// This means two different nodes (IP/Port) are claiming the same name. Memberlist
+// will reject the "new" node mapping, but we can still be notified
+func (s *Serf) handleNodeConflict(existing, other *memberlist.Node) {
+	// Log a basic warning if the node is not us...
+	if existing.Name != s.config.NodeName {
+		s.logger.Printf("[WARN] serf: Name conflict for '%s' both %s:%d and %s:%d are claiming",
+			existing.Name, existing.Addr, existing.Port, other.Addr, other.Port)
+		return
+	}
+
+	// The current node is conflicting! This is an error
+	s.logger.Printf("[ERR] serf: Node name conflicts with another node at %s:%d. Names must be unique! (Resolution enabled: %v)",
+		other.Addr, other.Port, s.config.EnableNameConflictResolution)
+
+	// If automatic resolution is enabled, kick off the resolution
+	if s.config.EnableNameConflictResolution {
+		go s.resolveNodeConflict()
+	}
+}
+
+// resolveNodeConflict is used to determine which node should remain during
+// a name conflict. This is done by running an internal query.
+func (s *Serf) resolveNodeConflict() {
+	// Get the local node
+	local := s.memberlist.LocalNode()
+
+	// Start a name resolution query
+	qName := internalQueryName(conflictQuery)
+	payload := []byte(s.config.NodeName)
+	resp, err := s.Query(qName, payload, nil)
+	if err != nil {
+		s.logger.Printf("[ERR] serf: Failed to start name resolution query: %v", err)
+		return
+	}
+
+	// Counter to determine winner
+	var responses, matching int
+
+	// Gather responses
+	respCh := resp.ResponseCh()
+	for r := range respCh {
+		// Decode the response
+		if len(r.Payload) < 1 || messageType(r.Payload[0]) != messageConflictResponseType {
+			s.logger.Printf("[ERR] serf: Invalid conflict query response type: %v", r.Payload)
+			continue
+		}
+		var member Member
+		if err := decodeMessage(r.Payload[1:], &member); err != nil {
+			s.logger.Printf("[ERR] serf: Failed to decode conflict query response: %v", err)
+			continue
+		}
+
+		// Update the counters
+		responses++
+		if bytes.Equal(member.Addr, local.Addr) && member.Port == local.Port {
+			matching++
+		}
+	}
+
+	// Query over, determine if we should live
+	majority := (responses / 2) + 1
+	if matching >= majority {
+		s.logger.Printf("[INFO] serf: majority in name conflict resolution [%d / %d]",
+			matching, responses)
+		return
+	}
+
+	// Since we lost the vote, we need to exit
+	s.logger.Printf("[WARN] serf: minority in name conflict resolution, quiting [%d / %d]",
+		matching, responses)
+	if err := s.Shutdown(); err != nil {
+		s.logger.Printf("[ERR] serf: Failed to shutdown: %v", err)
+	}
+}
+
+// handleReap periodically reaps the list of failed and left members, as well
+// as old buffered intents.
+func (s *Serf) handleReap() {
+	for {
+		select {
+		case <-time.After(s.config.ReapInterval):
+			s.memberLock.Lock()
+			now := time.Now()
+			s.failedMembers = s.reap(s.failedMembers, now, s.config.ReconnectTimeout)
+			s.leftMembers = s.reap(s.leftMembers, now, s.config.TombstoneTimeout)
+			reapIntents(s.recentIntents, now, s.config.RecentIntentTimeout)
+			s.memberLock.Unlock()
+		case <-s.shutdownCh:
+			return
+		}
+	}
+}
+
+// handleReconnect attempts to reconnect to recently failed nodes
+// on configured intervals.
+func (s *Serf) handleReconnect() {
+	for {
+		select {
+		case <-time.After(s.config.ReconnectInterval):
+			s.reconnect()
+		case <-s.shutdownCh:
+			return
+		}
+	}
+}
+
+// reap is called with a list of old members and a timeout, and removes
+// members that have exceeded the timeout. The members are removed from
+// both the old list and the members itself. Locking is left to the caller.
+func (s *Serf) reap(old []*memberState, now time.Time, timeout time.Duration) []*memberState {
+	n := len(old)
+	for i := 0; i < n; i++ {
+		m := old[i]
+
+		// Skip if the timeout is not yet reached
+		if now.Sub(m.leaveTime) <= timeout {
+			continue
+		}
+
+		// Delete from the list
+		old[i], old[n-1] = old[n-1], nil
+		old = old[:n-1]
+		n--
+		i--
+
+		// Delete from members
+		delete(s.members, m.Name)
+
+		// Tell the coordinate client the node has gone away and delete
+		// its cached coordinates.
+		if !s.config.DisableCoordinates {
+			s.coordClient.ForgetNode(m.Name)
+
+			s.coordCacheLock.Lock()
+			delete(s.coordCache, m.Name)
+			s.coordCacheLock.Unlock()
+		}
+
+		// Send an event along
+		s.logger.Printf("[INFO] serf: EventMemberReap: %s", m.Name)
+		if s.config.EventCh != nil {
+			s.config.EventCh <- MemberEvent{
+				Type:    EventMemberReap,
+				Members: []Member{m.Member},
+			}
+		}
+	}
+
+	return old
+}
+
+// reconnect attempts to reconnect to recently fail nodes.
+func (s *Serf) reconnect() {
+	s.memberLock.RLock()
+
+	// Nothing to do if there are no failed members
+	n := len(s.failedMembers)
+	if n == 0 {
+		s.memberLock.RUnlock()
+		return
+	}
+
+	// Probability we should attempt to reconect is given
+	// by num failed / (num members - num failed - num left)
+	// This means that we probabilistically expect the cluster
+	// to attempt to connect to each failed member once per
+	// reconnect interval
+	numFailed := float32(len(s.failedMembers))
+	numAlive := float32(len(s.members) - len(s.failedMembers) - len(s.leftMembers))
+	if numAlive == 0 {
+		numAlive = 1 // guard against zero divide
+	}
+	prob := numFailed / numAlive
+	if rand.Float32() > prob {
+		s.memberLock.RUnlock()
+		s.logger.Printf("[DEBUG] serf: forgoing reconnect for random throttling")
+		return
+	}
+
+	// Select a random member to try and join
+	idx := rand.Int31n(int32(n))
+	mem := s.failedMembers[idx]
+	s.memberLock.RUnlock()
+
+	// Format the addr
+	addr := net.UDPAddr{IP: mem.Addr, Port: int(mem.Port)}
+	s.logger.Printf("[INFO] serf: attempting reconnect to %v %s", mem.Name, addr.String())
+
+	// Attempt to join at the memberlist level
+	s.memberlist.Join([]string{addr.String()})
+}
+
+// checkQueueDepth periodically checks the size of a queue to see if
+// it is too large
+func (s *Serf) checkQueueDepth(name string, queue *memberlist.TransmitLimitedQueue) {
+	for {
+		select {
+		case <-time.After(time.Second):
+			numq := queue.NumQueued()
+			metrics.AddSample([]string{"serf", "queue", name}, float32(numq))
+			if numq >= s.config.QueueDepthWarning {
+				s.logger.Printf("[WARN] serf: %s queue depth: %d", name, numq)
+			}
+			if numq > s.config.MaxQueueDepth {
+				s.logger.Printf("[WARN] serf: %s queue depth (%d) exceeds limit (%d), dropping messages!",
+					name, numq, s.config.MaxQueueDepth)
+				queue.Prune(s.config.MaxQueueDepth)
+			}
+		case <-s.shutdownCh:
+			return
+		}
+	}
+}
+
+// removeOldMember is used to remove an old member from a list of old
+// members.
+func removeOldMember(old []*memberState, name string) []*memberState {
+	for i, m := range old {
+		if m.Name == name {
+			n := len(old)
+			old[i], old[n-1] = old[n-1], nil
+			return old[:n-1]
+		}
+	}
+
+	return old
+}
+
+// reapIntents clears out any intents that are older than the timeout. Make sure
+// the memberLock is held when passing in the Serf instance's recentIntents
+// member.
+func reapIntents(intents map[string]nodeIntent, now time.Time, timeout time.Duration) {
+	for node, intent := range intents {
+		if now.Sub(intent.WallTime) > timeout {
+			delete(intents, node)
+		}
+	}
+}
+
+// upsertIntent will update an existing intent with the supplied Lamport time,
+// or create a new entry. This will return true if a new entry was added. The
+// stamper is used to capture the wall clock time for expiring these buffered
+// intents. Make sure the memberLock is held when passing in the Serf instance's
+// recentIntents member.
+func upsertIntent(intents map[string]nodeIntent, node string, itype messageType,
+	ltime LamportTime, stamper func() time.Time) bool {
+	if intent, ok := intents[node]; !ok || ltime > intent.LTime {
+		intents[node] = nodeIntent{
+			Type:     itype,
+			WallTime: stamper(),
+			LTime:    ltime,
+		}
+		return true
+	}
+
+	return false
+}
+
+// recentIntent checks the recent intent buffer for a matching entry for a given
+// node, and returns the Lamport time, if an intent is present, indicated by the
+// returned boolean. Make sure the memberLock is held for read when passing in
+// the Serf instance's recentIntents member.
+func recentIntent(intents map[string]nodeIntent, node string, itype messageType) (LamportTime, bool) {
+	if intent, ok := intents[node]; ok && intent.Type == itype {
+		return intent.LTime, true
+	}
+
+	return LamportTime(0), false
+}
+
+// handleRejoin attempts to reconnect to previously known alive nodes
+func (s *Serf) handleRejoin(previous []*PreviousNode) {
+	for _, prev := range previous {
+		// Do not attempt to join ourself
+		if prev.Name == s.config.NodeName {
+			continue
+		}
+
+		s.logger.Printf("[INFO] serf: Attempting re-join to previously known node: %s", prev)
+		_, err := s.memberlist.Join([]string{prev.Addr})
+		if err == nil {
+			s.logger.Printf("[INFO] serf: Re-joined to previously known node: %s", prev)
+			return
+		}
+	}
+	s.logger.Printf("[WARN] serf: Failed to re-join any previously known node")
+}
+
+// encodeTags is used to encode a tag map
+func (s *Serf) encodeTags(tags map[string]string) []byte {
+	// Support role-only backwards compatibility
+	if s.ProtocolVersion() < 3 {
+		role := tags["role"]
+		return []byte(role)
+	}
+
+	// Use a magic byte prefix and msgpack encode the tags
+	var buf bytes.Buffer
+	buf.WriteByte(tagMagicByte)
+	enc := codec.NewEncoder(&buf, &codec.MsgpackHandle{})
+	if err := enc.Encode(tags); err != nil {
+		panic(fmt.Sprintf("Failed to encode tags: %v", err))
+	}
+	return buf.Bytes()
+}
+
+// decodeTags is used to decode a tag map
+func (s *Serf) decodeTags(buf []byte) map[string]string {
+	tags := make(map[string]string)
+
+	// Backwards compatibility mode
+	if len(buf) == 0 || buf[0] != tagMagicByte {
+		tags["role"] = string(buf)
+		return tags
+	}
+
+	// Decode the tags
+	r := bytes.NewReader(buf[1:])
+	dec := codec.NewDecoder(r, &codec.MsgpackHandle{})
+	if err := dec.Decode(&tags); err != nil {
+		s.logger.Printf("[ERR] serf: Failed to decode tags: %v", err)
+	}
+	return tags
+}
+
+// Stats is used to provide operator debugging information
+func (s *Serf) Stats() map[string]string {
+	toString := func(v uint64) string {
+		return strconv.FormatUint(v, 10)
+	}
+	stats := map[string]string{
+		"members":      toString(uint64(len(s.members))),
+		"failed":       toString(uint64(len(s.failedMembers))),
+		"left":         toString(uint64(len(s.leftMembers))),
+		"health_score": toString(uint64(s.memberlist.GetHealthScore())),
+		"member_time":  toString(uint64(s.clock.Time())),
+		"event_time":   toString(uint64(s.eventClock.Time())),
+		"query_time":   toString(uint64(s.queryClock.Time())),
+		"intent_queue": toString(uint64(s.broadcasts.NumQueued())),
+		"event_queue":  toString(uint64(s.eventBroadcasts.NumQueued())),
+		"query_queue":  toString(uint64(s.queryBroadcasts.NumQueued())),
+		"encrypted":    fmt.Sprintf("%v", s.EncryptionEnabled()),
+	}
+	return stats
+}
+
+// WriteKeyringFile will serialize the current keyring and save it to a file.
+func (s *Serf) writeKeyringFile() error {
+	if len(s.config.KeyringFile) == 0 {
+		return nil
+	}
+
+	keyring := s.config.MemberlistConfig.Keyring
+	keysRaw := keyring.GetKeys()
+	keysEncoded := make([]string, len(keysRaw))
+
+	for i, key := range keysRaw {
+		keysEncoded[i] = base64.StdEncoding.EncodeToString(key)
+	}
+
+	encodedKeys, err := json.MarshalIndent(keysEncoded, "", "  ")
+	if err != nil {
+		return fmt.Errorf("Failed to encode keys: %s", err)
+	}
+
+	// Use 0600 for permissions because key data is sensitive
+	if err = ioutil.WriteFile(s.config.KeyringFile, encodedKeys, 0600); err != nil {
+		return fmt.Errorf("Failed to write keyring file: %s", err)
+	}
+
+	// Success!
+	return nil
+}
+
+// GetCoordinate returns the network coordinate of the local node.
+func (s *Serf) GetCoordinate() (*coordinate.Coordinate, error) {
+	if !s.config.DisableCoordinates {
+		return s.coordClient.GetCoordinate(), nil
+	}
+
+	return nil, fmt.Errorf("Coordinates are disabled")
+}
+
+// GetCachedCoordinate returns the network coordinate for the node with the given
+// name. This will only be valid if DisableCoordinates is set to false.
+func (s *Serf) GetCachedCoordinate(name string) (coord *coordinate.Coordinate, ok bool) {
+	if !s.config.DisableCoordinates {
+		s.coordCacheLock.RLock()
+		defer s.coordCacheLock.RUnlock()
+		if coord, ok = s.coordCache[name]; ok {
+			return coord, true
+		}
+
+		return nil, false
+	}
+
+	return nil, false
+}
+
+// NumNodes returns the number of nodes in the serf cluster, regardless of
+// their health or status.
+func (s *Serf) NumNodes() (numNodes int) {
+	s.memberLock.RLock()
+	numNodes = len(s.members)
+	s.memberLock.RUnlock()
+
+	return numNodes
+}
diff --git a/vendor/github.com/hashicorp/serf/serf/snapshot.go b/vendor/github.com/hashicorp/serf/serf/snapshot.go
new file mode 100644
index 0000000000..44f8a5175a
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/serf/snapshot.go
@@ -0,0 +1,560 @@
+package serf
+
+import (
+	"bufio"
+	"encoding/json"
+	"fmt"
+	"log"
+	"math/rand"
+	"net"
+	"os"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/armon/go-metrics"
+	"github.com/hashicorp/serf/coordinate"
+)
+
+/*
+Serf supports using a "snapshot" file that contains various
+transactional data that is used to help Serf recover quickly
+and gracefully from a failure. We append member events, as well
+as the latest clock values to the file during normal operation,
+and periodically checkpoint and roll over the file. During a restore,
+we can replay the various member events to recall a list of known
+nodes to re-join, as well as restore our clock values to avoid replaying
+old events.
+*/
+
+const flushInterval = 500 * time.Millisecond
+const clockUpdateInterval = 500 * time.Millisecond
+const coordinateUpdateInterval = 60 * time.Second
+const tmpExt = ".compact"
+
+// Snapshotter is responsible for ingesting events and persisting
+// them to disk, and providing a recovery mechanism at start time.
+type Snapshotter struct {
+	aliveNodes       map[string]string
+	clock            *LamportClock
+	coordClient      *coordinate.Client
+	fh               *os.File
+	buffered         *bufio.Writer
+	inCh             <-chan Event
+	lastFlush        time.Time
+	lastClock        LamportTime
+	lastEventClock   LamportTime
+	lastQueryClock   LamportTime
+	leaveCh          chan struct{}
+	leaving          bool
+	logger           *log.Logger
+	maxSize          int64
+	path             string
+	offset           int64
+	outCh            chan<- Event
+	rejoinAfterLeave bool
+	shutdownCh       <-chan struct{}
+	waitCh           chan struct{}
+}
+
+// PreviousNode is used to represent the previously known alive nodes
+type PreviousNode struct {
+	Name string
+	Addr string
+}
+
+func (p PreviousNode) String() string {
+	return fmt.Sprintf("%s: %s", p.Name, p.Addr)
+}
+
+// NewSnapshotter creates a new Snapshotter that records events up to a
+// max byte size before rotating the file. It can also be used to
+// recover old state. Snapshotter works by reading an event channel it returns,
+// passing through to an output channel, and persisting relevant events to disk.
+// Setting rejoinAfterLeave makes leave not clear the state, and can be used
+// if you intend to rejoin the same cluster after a leave.
+func NewSnapshotter(path string,
+	maxSize int,
+	rejoinAfterLeave bool,
+	logger *log.Logger,
+	clock *LamportClock,
+	coordClient *coordinate.Client,
+	outCh chan<- Event,
+	shutdownCh <-chan struct{}) (chan<- Event, *Snapshotter, error) {
+	inCh := make(chan Event, 1024)
+
+	// Try to open the file
+	fh, err := os.OpenFile(path, os.O_RDWR|os.O_APPEND|os.O_CREATE, 0755)
+	if err != nil {
+		return nil, nil, fmt.Errorf("failed to open snapshot: %v", err)
+	}
+
+	// Determine the offset
+	info, err := fh.Stat()
+	if err != nil {
+		fh.Close()
+		return nil, nil, fmt.Errorf("failed to stat snapshot: %v", err)
+	}
+	offset := info.Size()
+
+	// Create the snapshotter
+	snap := &Snapshotter{
+		aliveNodes:       make(map[string]string),
+		clock:            clock,
+		coordClient:      coordClient,
+		fh:               fh,
+		buffered:         bufio.NewWriter(fh),
+		inCh:             inCh,
+		lastClock:        0,
+		lastEventClock:   0,
+		lastQueryClock:   0,
+		leaveCh:          make(chan struct{}),
+		logger:           logger,
+		maxSize:          int64(maxSize),
+		path:             path,
+		offset:           offset,
+		outCh:            outCh,
+		rejoinAfterLeave: rejoinAfterLeave,
+		shutdownCh:       shutdownCh,
+		waitCh:           make(chan struct{}),
+	}
+
+	// Recover the last known state
+	if err := snap.replay(); err != nil {
+		fh.Close()
+		return nil, nil, err
+	}
+
+	// Start handling new commands
+	go snap.stream()
+	return inCh, snap, nil
+}
+
+// LastClock returns the last known clock time
+func (s *Snapshotter) LastClock() LamportTime {
+	return s.lastClock
+}
+
+// LastEventClock returns the last known event clock time
+func (s *Snapshotter) LastEventClock() LamportTime {
+	return s.lastEventClock
+}
+
+// LastQueryClock returns the last known query clock time
+func (s *Snapshotter) LastQueryClock() LamportTime {
+	return s.lastQueryClock
+}
+
+// AliveNodes returns the last known alive nodes
+func (s *Snapshotter) AliveNodes() []*PreviousNode {
+	// Copy the previously known
+	previous := make([]*PreviousNode, 0, len(s.aliveNodes))
+	for name, addr := range s.aliveNodes {
+		previous = append(previous, &PreviousNode{name, addr})
+	}
+
+	// Randomize the order, prevents hot shards
+	for i := range previous {
+		j := rand.Intn(i + 1)
+		previous[i], previous[j] = previous[j], previous[i]
+	}
+	return previous
+}
+
+// Wait is used to wait until the snapshotter finishes shut down
+func (s *Snapshotter) Wait() {
+	<-s.waitCh
+}
+
+// Leave is used to remove known nodes to prevent a restart from
+// causing a join. Otherwise nodes will re-join after leaving!
+func (s *Snapshotter) Leave() {
+	select {
+	case s.leaveCh <- struct{}{}:
+	case <-s.shutdownCh:
+	}
+}
+
+// stream is a long running routine that is used to handle events
+func (s *Snapshotter) stream() {
+	clockTicker := time.NewTicker(clockUpdateInterval)
+	defer clockTicker.Stop()
+
+	coordinateTicker := time.NewTicker(coordinateUpdateInterval)
+	defer coordinateTicker.Stop()
+
+	for {
+		select {
+		case <-s.leaveCh:
+			s.leaving = true
+
+			// If we plan to re-join, keep our state
+			if !s.rejoinAfterLeave {
+				s.aliveNodes = make(map[string]string)
+			}
+			s.tryAppend("leave\n")
+			if err := s.buffered.Flush(); err != nil {
+				s.logger.Printf("[ERR] serf: failed to flush leave to snapshot: %v", err)
+			}
+			if err := s.fh.Sync(); err != nil {
+				s.logger.Printf("[ERR] serf: failed to sync leave to snapshot: %v", err)
+			}
+
+		case e := <-s.inCh:
+			// Forward the event immediately
+			if s.outCh != nil {
+				s.outCh <- e
+			}
+
+			// Stop recording events after a leave is issued
+			if s.leaving {
+				continue
+			}
+			switch typed := e.(type) {
+			case MemberEvent:
+				s.processMemberEvent(typed)
+			case UserEvent:
+				s.processUserEvent(typed)
+			case *Query:
+				s.processQuery(typed)
+			default:
+				s.logger.Printf("[ERR] serf: Unknown event to snapshot: %#v", e)
+			}
+
+		case <-clockTicker.C:
+			s.updateClock()
+
+		case <-coordinateTicker.C:
+			s.updateCoordinate()
+
+		case <-s.shutdownCh:
+			if err := s.buffered.Flush(); err != nil {
+				s.logger.Printf("[ERR] serf: failed to flush snapshot: %v", err)
+			}
+			if err := s.fh.Sync(); err != nil {
+				s.logger.Printf("[ERR] serf: failed to sync snapshot: %v", err)
+			}
+			s.fh.Close()
+			close(s.waitCh)
+			return
+		}
+	}
+}
+
+// processMemberEvent is used to handle a single member event
+func (s *Snapshotter) processMemberEvent(e MemberEvent) {
+	switch e.Type {
+	case EventMemberJoin:
+		for _, mem := range e.Members {
+			addr := net.TCPAddr{IP: mem.Addr, Port: int(mem.Port)}
+			s.aliveNodes[mem.Name] = addr.String()
+			s.tryAppend(fmt.Sprintf("alive: %s %s\n", mem.Name, addr.String()))
+		}
+
+	case EventMemberLeave:
+		fallthrough
+	case EventMemberFailed:
+		for _, mem := range e.Members {
+			delete(s.aliveNodes, mem.Name)
+			s.tryAppend(fmt.Sprintf("not-alive: %s\n", mem.Name))
+		}
+	}
+	s.updateClock()
+}
+
+// updateClock is called periodically to check if we should udpate our
+// clock value. This is done after member events but should also be done
+// periodically due to race conditions with join and leave intents
+func (s *Snapshotter) updateClock() {
+	lastSeen := s.clock.Time() - 1
+	if lastSeen > s.lastClock {
+		s.lastClock = lastSeen
+		s.tryAppend(fmt.Sprintf("clock: %d\n", s.lastClock))
+	}
+}
+
+// updateCoordinate is called periodically to write out the current local
+// coordinate. It's safe to call this if coordinates aren't enabled (nil
+// client) and it will be a no-op.
+func (s *Snapshotter) updateCoordinate() {
+	if s.coordClient != nil {
+		encoded, err := json.Marshal(s.coordClient.GetCoordinate())
+		if err != nil {
+			s.logger.Printf("[ERR] serf: Failed to encode coordinate: %v", err)
+		} else {
+			s.tryAppend(fmt.Sprintf("coordinate: %s\n", encoded))
+		}
+	}
+}
+
+// processUserEvent is used to handle a single user event
+func (s *Snapshotter) processUserEvent(e UserEvent) {
+	// Ignore old clocks
+	if e.LTime <= s.lastEventClock {
+		return
+	}
+	s.lastEventClock = e.LTime
+	s.tryAppend(fmt.Sprintf("event-clock: %d\n", e.LTime))
+}
+
+// processQuery is used to handle a single query event
+func (s *Snapshotter) processQuery(q *Query) {
+	// Ignore old clocks
+	if q.LTime <= s.lastQueryClock {
+		return
+	}
+	s.lastQueryClock = q.LTime
+	s.tryAppend(fmt.Sprintf("query-clock: %d\n", q.LTime))
+}
+
+// tryAppend will invoke append line but will not return an error
+func (s *Snapshotter) tryAppend(l string) {
+	if err := s.appendLine(l); err != nil {
+		s.logger.Printf("[ERR] serf: Failed to update snapshot: %v", err)
+	}
+}
+
+// appendLine is used to append a line to the existing log
+func (s *Snapshotter) appendLine(l string) error {
+	defer metrics.MeasureSince([]string{"serf", "snapshot", "appendLine"}, time.Now())
+
+	n, err := s.buffered.WriteString(l)
+	if err != nil {
+		return err
+	}
+
+	// Check if we should flush
+	now := time.Now()
+	if now.Sub(s.lastFlush) > flushInterval {
+		s.lastFlush = now
+		if err := s.buffered.Flush(); err != nil {
+			return err
+		}
+	}
+
+	// Check if a compaction is necessary
+	s.offset += int64(n)
+	if s.offset > s.maxSize {
+		return s.compact()
+	}
+	return nil
+}
+
+// Compact is used to compact the snapshot once it is too large
+func (s *Snapshotter) compact() error {
+	defer metrics.MeasureSince([]string{"serf", "snapshot", "compact"}, time.Now())
+
+	// Try to open the file to new fiel
+	newPath := s.path + tmpExt
+	fh, err := os.OpenFile(newPath, os.O_RDWR|os.O_TRUNC|os.O_CREATE, 0755)
+	if err != nil {
+		return fmt.Errorf("failed to open new snapshot: %v", err)
+	}
+
+	// Create a buffered writer
+	buf := bufio.NewWriter(fh)
+
+	// Write out the live nodes
+	var offset int64
+	for name, addr := range s.aliveNodes {
+		line := fmt.Sprintf("alive: %s %s\n", name, addr)
+		n, err := buf.WriteString(line)
+		if err != nil {
+			fh.Close()
+			return err
+		}
+		offset += int64(n)
+	}
+
+	// Write out the clocks
+	line := fmt.Sprintf("clock: %d\n", s.lastClock)
+	n, err := buf.WriteString(line)
+	if err != nil {
+		fh.Close()
+		return err
+	}
+	offset += int64(n)
+
+	line = fmt.Sprintf("event-clock: %d\n", s.lastEventClock)
+	n, err = buf.WriteString(line)
+	if err != nil {
+		fh.Close()
+		return err
+	}
+	offset += int64(n)
+
+	line = fmt.Sprintf("query-clock: %d\n", s.lastQueryClock)
+	n, err = buf.WriteString(line)
+	if err != nil {
+		fh.Close()
+		return err
+	}
+	offset += int64(n)
+
+	// Write out the coordinate.
+	if s.coordClient != nil {
+		encoded, err := json.Marshal(s.coordClient.GetCoordinate())
+		if err != nil {
+			fh.Close()
+			return err
+		}
+
+		line = fmt.Sprintf("coordinate: %s\n", encoded)
+		n, err = buf.WriteString(line)
+		if err != nil {
+			fh.Close()
+			return err
+		}
+		offset += int64(n)
+	}
+
+	// Flush the new snapshot
+	err = buf.Flush()
+	fh.Close()
+	if err != nil {
+		return fmt.Errorf("failed to flush new snapshot: %v", err)
+	}
+
+	// We now need to swap the old snapshot file with the new snapshot.
+	// Turns out, Windows won't let us rename the files if we have
+	// open handles to them or if the destination already exists. This
+	// means we are forced to close the existing handles, delete the
+	// old file, move the new one in place, and then re-open the file
+	// handles.
+
+	// Flush the existing snapshot, ignoring errors since we will
+	// delete it momentarily.
+	s.buffered.Flush()
+	s.buffered = nil
+
+	// Close the file handle to the old snapshot
+	s.fh.Close()
+	s.fh = nil
+
+	// Delete the old file
+	if err := os.Remove(s.path); err != nil {
+		return fmt.Errorf("failed to remove old snapshot: %v", err)
+	}
+
+	// Move the new file into place
+	if err := os.Rename(newPath, s.path); err != nil {
+		return fmt.Errorf("failed to install new snapshot: %v", err)
+	}
+
+	// Open the new snapshot
+	fh, err = os.OpenFile(s.path, os.O_RDWR|os.O_APPEND|os.O_CREATE, 0755)
+	if err != nil {
+		return fmt.Errorf("failed to open snapshot: %v", err)
+	}
+	buf = bufio.NewWriter(fh)
+
+	// Rotate our handles
+	s.fh = fh
+	s.buffered = buf
+	s.offset = offset
+	s.lastFlush = time.Now()
+	return nil
+}
+
+// replay is used to seek to reset our internal state by replaying
+// the snapshot file. It is used at initialization time to read old
+// state
+func (s *Snapshotter) replay() error {
+	// Seek to the beginning
+	if _, err := s.fh.Seek(0, os.SEEK_SET); err != nil {
+		return err
+	}
+
+	// Read each line
+	reader := bufio.NewReader(s.fh)
+	for {
+		line, err := reader.ReadString('\n')
+		if err != nil {
+			break
+		}
+
+		// Skip the newline
+		line = line[:len(line)-1]
+
+		// Switch on the prefix
+		if strings.HasPrefix(line, "alive: ") {
+			info := strings.TrimPrefix(line, "alive: ")
+			addrIdx := strings.LastIndex(info, " ")
+			if addrIdx == -1 {
+				s.logger.Printf("[WARN] serf: Failed to parse address: %v", line)
+				continue
+			}
+			addr := info[addrIdx+1:]
+			name := info[:addrIdx]
+			s.aliveNodes[name] = addr
+
+		} else if strings.HasPrefix(line, "not-alive: ") {
+			name := strings.TrimPrefix(line, "not-alive: ")
+			delete(s.aliveNodes, name)
+
+		} else if strings.HasPrefix(line, "clock: ") {
+			timeStr := strings.TrimPrefix(line, "clock: ")
+			timeInt, err := strconv.ParseUint(timeStr, 10, 64)
+			if err != nil {
+				s.logger.Printf("[WARN] serf: Failed to convert clock time: %v", err)
+				continue
+			}
+			s.lastClock = LamportTime(timeInt)
+
+		} else if strings.HasPrefix(line, "event-clock: ") {
+			timeStr := strings.TrimPrefix(line, "event-clock: ")
+			timeInt, err := strconv.ParseUint(timeStr, 10, 64)
+			if err != nil {
+				s.logger.Printf("[WARN] serf: Failed to convert event clock time: %v", err)
+				continue
+			}
+			s.lastEventClock = LamportTime(timeInt)
+
+		} else if strings.HasPrefix(line, "query-clock: ") {
+			timeStr := strings.TrimPrefix(line, "query-clock: ")
+			timeInt, err := strconv.ParseUint(timeStr, 10, 64)
+			if err != nil {
+				s.logger.Printf("[WARN] serf: Failed to convert query clock time: %v", err)
+				continue
+			}
+			s.lastQueryClock = LamportTime(timeInt)
+
+		} else if strings.HasPrefix(line, "coordinate: ") {
+			if s.coordClient == nil {
+				s.logger.Printf("[WARN] serf: Ignoring snapshot coordinates since they are disabled")
+				continue
+			}
+
+			coordStr := strings.TrimPrefix(line, "coordinate: ")
+			var coord coordinate.Coordinate
+			err := json.Unmarshal([]byte(coordStr), &coord)
+			if err != nil {
+				s.logger.Printf("[WARN] serf: Failed to decode coordinate: %v", err)
+				continue
+			}
+			s.coordClient.SetCoordinate(&coord)
+		} else if line == "leave" {
+			// Ignore a leave if we plan on re-joining
+			if s.rejoinAfterLeave {
+				s.logger.Printf("[INFO] serf: Ignoring previous leave in snapshot")
+				continue
+			}
+			s.aliveNodes = make(map[string]string)
+			s.lastClock = 0
+			s.lastEventClock = 0
+			s.lastQueryClock = 0
+
+		} else if strings.HasPrefix(line, "#") {
+			// Skip comment lines
+
+		} else {
+			s.logger.Printf("[WARN] serf: Unrecognized snapshot line: %v", line)
+		}
+	}
+
+	// Seek to the end
+	if _, err := s.fh.Seek(0, os.SEEK_END); err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/vendor/github.com/hashicorp/serf/website/source/LICENSE b/vendor/github.com/hashicorp/serf/website/source/LICENSE
new file mode 100644
index 0000000000..36c29d7f7b
--- /dev/null
+++ b/vendor/github.com/hashicorp/serf/website/source/LICENSE
@@ -0,0 +1,10 @@
+# Proprietary License
+
+This license is temporary while a more official one is drafted. However,
+this should make it clear:
+
+* The text contents of this website are MPL 2.0 licensed.
+
+* The design contents of this website are proprietary and may not be reproduced
+  or reused in any way other than to run the Serf website locally. The license
+  for the design is owned solely by HashiCorp, Inc.
diff --git a/vendor/github.com/ishidawataru/sctp/LICENSE b/vendor/github.com/ishidawataru/sctp/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/vendor/github.com/ishidawataru/sctp/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/ishidawataru/sctp/sctp.go b/vendor/github.com/ishidawataru/sctp/sctp.go
new file mode 100644
index 0000000000..cac1a889ca
--- /dev/null
+++ b/vendor/github.com/ishidawataru/sctp/sctp.go
@@ -0,0 +1,656 @@
+package sctp
+
+import (
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"net"
+	"strconv"
+	"strings"
+	"sync"
+	"sync/atomic"
+	"syscall"
+	"time"
+	"unsafe"
+)
+
+const (
+	SOL_SCTP = 132
+
+	SCTP_BINDX_ADD_ADDR = 0x01
+	SCTP_BINDX_REM_ADDR = 0x02
+
+	MSG_NOTIFICATION = 0x8000
+)
+
+const (
+	SCTP_RTOINFO = iota
+	SCTP_ASSOCINFO
+	SCTP_INITMSG
+	SCTP_NODELAY
+	SCTP_AUTOCLOSE
+	SCTP_SET_PEER_PRIMARY_ADDR
+	SCTP_PRIMARY_ADDR
+	SCTP_ADAPTATION_LAYER
+	SCTP_DISABLE_FRAGMENTS
+	SCTP_PEER_ADDR_PARAMS
+	SCTP_DEFAULT_SENT_PARAM
+	SCTP_EVENTS
+	SCTP_I_WANT_MAPPED_V4_ADDR
+	SCTP_MAXSEG
+	SCTP_STATUS
+	SCTP_GET_PEER_ADDR_INFO
+	SCTP_DELAYED_ACK_TIME
+	SCTP_DELAYED_ACK  = SCTP_DELAYED_ACK_TIME
+	SCTP_DELAYED_SACK = SCTP_DELAYED_ACK_TIME
+
+	SCTP_SOCKOPT_BINDX_ADD = 100
+	SCTP_SOCKOPT_BINDX_REM = 101
+	SCTP_SOCKOPT_PEELOFF   = 102
+	SCTP_GET_PEER_ADDRS    = 108
+	SCTP_GET_LOCAL_ADDRS   = 109
+	SCTP_SOCKOPT_CONNECTX  = 110
+	SCTP_SOCKOPT_CONNECTX3 = 111
+)
+
+const (
+	SCTP_EVENT_DATA_IO = 1 << iota
+	SCTP_EVENT_ASSOCIATION
+	SCTP_EVENT_ADDRESS
+	SCTP_EVENT_SEND_FAILURE
+	SCTP_EVENT_PEER_ERROR
+	SCTP_EVENT_SHUTDOWN
+	SCTP_EVENT_PARTIAL_DELIVERY
+	SCTP_EVENT_ADAPTATION_LAYER
+	SCTP_EVENT_AUTHENTICATION
+	SCTP_EVENT_SENDER_DRY
+
+	SCTP_EVENT_ALL = SCTP_EVENT_DATA_IO | SCTP_EVENT_ASSOCIATION | SCTP_EVENT_ADDRESS | SCTP_EVENT_SEND_FAILURE | SCTP_EVENT_PEER_ERROR | SCTP_EVENT_SHUTDOWN | SCTP_EVENT_PARTIAL_DELIVERY | SCTP_EVENT_ADAPTATION_LAYER | SCTP_EVENT_AUTHENTICATION | SCTP_EVENT_SENDER_DRY
+)
+
+type SCTPNotificationType int
+
+const (
+	SCTP_SN_TYPE_BASE = SCTPNotificationType(iota + (1 << 15))
+	SCTP_ASSOC_CHANGE
+	SCTP_PEER_ADDR_CHANGE
+	SCTP_SEND_FAILED
+	SCTP_REMOTE_ERROR
+	SCTP_SHUTDOWN_EVENT
+	SCTP_PARTIAL_DELIVERY_EVENT
+	SCTP_ADAPTATION_INDICATION
+	SCTP_AUTHENTICATION_INDICATION
+	SCTP_SENDER_DRY_EVENT
+)
+
+type NotificationHandler func([]byte) error
+
+type EventSubscribe struct {
+	DataIO          uint8
+	Association     uint8
+	Address         uint8
+	SendFailure     uint8
+	PeerError       uint8
+	Shutdown        uint8
+	PartialDelivery uint8
+	AdaptationLayer uint8
+	Authentication  uint8
+	SenderDry       uint8
+}
+
+const (
+	SCTP_CMSG_INIT = iota
+	SCTP_CMSG_SNDRCV
+	SCTP_CMSG_SNDINFO
+	SCTP_CMSG_RCVINFO
+	SCTP_CMSG_NXTINFO
+)
+
+const (
+	SCTP_UNORDERED = 1 << iota
+	SCTP_ADDR_OVER
+	SCTP_ABORT
+	SCTP_SACK_IMMEDIATELY
+	SCTP_EOF
+)
+
+const (
+	SCTP_MAX_STREAM = 0xffff
+)
+
+type InitMsg struct {
+	NumOstreams    uint16
+	MaxInstreams   uint16
+	MaxAttempts    uint16
+	MaxInitTimeout uint16
+}
+
+type SndRcvInfo struct {
+	Stream  uint16
+	SSN     uint16
+	Flags   uint16
+	_       uint16
+	PPID    uint32
+	Context uint32
+	TTL     uint32
+	TSN     uint32
+	CumTSN  uint32
+	AssocID int32
+}
+
+type SndInfo struct {
+	SID     uint16
+	Flags   uint16
+	PPID    uint32
+	Context uint32
+	AssocID int32
+}
+
+type GetAddrsOld struct {
+	AssocID int32
+	AddrNum int32
+	Addrs   uintptr
+}
+
+type NotificationHeader struct {
+	Type   uint16
+	Flags  uint16
+	Length uint32
+}
+
+type SCTPState uint16
+
+const (
+	SCTP_COMM_UP = SCTPState(iota)
+	SCTP_COMM_LOST
+	SCTP_RESTART
+	SCTP_SHUTDOWN_COMP
+	SCTP_CANT_STR_ASSOC
+)
+
+var nativeEndian binary.ByteOrder
+var sndRcvInfoSize uintptr
+
+func init() {
+	i := uint16(1)
+	if *(*byte)(unsafe.Pointer(&i)) == 0 {
+		nativeEndian = binary.BigEndian
+	} else {
+		nativeEndian = binary.LittleEndian
+	}
+	info := SndRcvInfo{}
+	sndRcvInfoSize = unsafe.Sizeof(info)
+}
+
+func toBuf(v interface{}) []byte {
+	var buf bytes.Buffer
+	binary.Write(&buf, nativeEndian, v)
+	return buf.Bytes()
+}
+
+func htons(h uint16) uint16 {
+	if nativeEndian == binary.LittleEndian {
+		return (h << 8 & 0xff00) | (h >> 8 & 0xff)
+	}
+	return h
+}
+
+var ntohs = htons
+
+func setNumOstreams(fd, num int) error {
+	param := InitMsg{
+		NumOstreams: uint16(num),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := setsockopt(fd, SCTP_INITMSG, uintptr(unsafe.Pointer(&param)), uintptr(optlen))
+	return err
+}
+
+type SCTPAddr struct {
+	IP   []net.IP
+	Port int
+}
+
+func (a *SCTPAddr) ToRawSockAddrBuf() []byte {
+	buf := []byte{}
+	p := htons(uint16(a.Port))
+	for _, ip := range a.IP {
+		if ip.To4() != nil {
+			s := syscall.RawSockaddrInet4{
+				Family: syscall.AF_INET,
+				Port:   p,
+			}
+			copy(s.Addr[:], ip.To4())
+			buf = append(buf, toBuf(s)...)
+		} else {
+			s := syscall.RawSockaddrInet6{
+				Family: syscall.AF_INET6,
+				Port:   p,
+			}
+			copy(s.Addr[:], ip)
+			buf = append(buf, toBuf(s)...)
+		}
+	}
+	return buf
+}
+
+func (a *SCTPAddr) String() string {
+	var b bytes.Buffer
+
+	for n, i := range a.IP {
+		if a.IP[n].To4() != nil {
+			b.WriteString(i.String())
+		} else if a.IP[n].To16() != nil {
+			b.WriteRune('[')
+			b.WriteString(i.String())
+			b.WriteRune(']')
+		}
+		if n < len(a.IP)-1 {
+			b.WriteRune('/')
+		}
+	}
+	b.WriteRune(':')
+	b.WriteString(strconv.Itoa(a.Port))
+	return b.String()
+}
+
+func (a *SCTPAddr) Network() string { return "sctp" }
+
+func ResolveSCTPAddr(network, addrs string) (*SCTPAddr, error) {
+	tcpnet := ""
+	switch network {
+	case "", "sctp":
+	case "sctp4":
+		tcpnet = "tcp4"
+	case "sctp6":
+		tcpnet = "tcp6"
+	default:
+		return nil, fmt.Errorf("invalid net: %s", network)
+	}
+	elems := strings.Split(addrs, "/")
+	if len(elems) == 0 {
+		return nil, fmt.Errorf("invalid input: %s", addrs)
+	}
+	ipaddrs := make([]net.IP, 0, len(elems))
+	for _, e := range elems[:len(elems)-1] {
+		tcpa, err := net.ResolveTCPAddr(tcpnet, e+":")
+		if err != nil {
+			return nil, err
+		}
+		ipaddrs = append(ipaddrs, tcpa.IP)
+	}
+	tcpa, err := net.ResolveTCPAddr(tcpnet, elems[len(elems)-1])
+	if err != nil {
+		return nil, err
+	}
+	if tcpa.IP != nil {
+		ipaddrs = append(ipaddrs, tcpa.IP)
+	} else {
+		ipaddrs = nil
+	}
+	return &SCTPAddr{
+		IP:   ipaddrs,
+		Port: tcpa.Port,
+	}, nil
+}
+
+func SCTPConnect(fd int, addr *SCTPAddr) (int, error) {
+	buf := addr.ToRawSockAddrBuf()
+	param := GetAddrsOld{
+		AddrNum: int32(len(buf)),
+		Addrs:   uintptr(uintptr(unsafe.Pointer(&buf[0]))),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := getsockopt(fd, SCTP_SOCKOPT_CONNECTX3, uintptr(unsafe.Pointer(&param)), uintptr(unsafe.Pointer(&optlen)))
+	if err == nil {
+		return int(param.AssocID), nil
+	} else if err != syscall.ENOPROTOOPT {
+		return 0, err
+	}
+	r0, _, err := setsockopt(fd, SCTP_SOCKOPT_CONNECTX, uintptr(unsafe.Pointer(&buf[0])), uintptr(len(buf)))
+	return int(r0), err
+}
+
+func SCTPBind(fd int, addr *SCTPAddr, flags int) error {
+	var option uintptr
+	switch flags {
+	case SCTP_BINDX_ADD_ADDR:
+		option = SCTP_SOCKOPT_BINDX_ADD
+	case SCTP_BINDX_REM_ADDR:
+		option = SCTP_SOCKOPT_BINDX_REM
+	default:
+		return syscall.EINVAL
+	}
+
+	buf := addr.ToRawSockAddrBuf()
+	_, _, err := setsockopt(fd, option, uintptr(unsafe.Pointer(&buf[0])), uintptr(len(buf)))
+	return err
+}
+
+type SCTPConn struct {
+	_fd                 int32
+	notificationHandler NotificationHandler
+}
+
+func (c *SCTPConn) fd() int {
+	return int(atomic.LoadInt32(&c._fd))
+}
+
+func NewSCTPConn(fd int, handler NotificationHandler) *SCTPConn {
+	conn := &SCTPConn{
+		_fd:                 int32(fd),
+		notificationHandler: handler,
+	}
+	return conn
+}
+
+func (c *SCTPConn) Write(b []byte) (int, error) {
+	return c.SCTPWrite(b, nil)
+}
+
+func (c *SCTPConn) Read(b []byte) (int, error) {
+	n, _, err := c.SCTPRead(b)
+	if n < 0 {
+		n = 0
+	}
+	return n, err
+}
+
+func (c *SCTPConn) SetInitMsg(numOstreams, maxInstreams, maxAttempts, maxInitTimeout int) error {
+	param := InitMsg{
+		NumOstreams:    uint16(numOstreams),
+		MaxInstreams:   uint16(maxInstreams),
+		MaxAttempts:    uint16(maxAttempts),
+		MaxInitTimeout: uint16(maxInitTimeout),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := setsockopt(c.fd(), SCTP_INITMSG, uintptr(unsafe.Pointer(&param)), uintptr(optlen))
+	return err
+}
+
+func (c *SCTPConn) SubscribeEvents(flags int) error {
+	var d, a, ad, sf, p, sh, pa, ada, au, se uint8
+	if flags&SCTP_EVENT_DATA_IO > 0 {
+		d = 1
+	}
+	if flags&SCTP_EVENT_ASSOCIATION > 0 {
+		a = 1
+	}
+	if flags&SCTP_EVENT_ADDRESS > 0 {
+		ad = 1
+	}
+	if flags&SCTP_EVENT_SEND_FAILURE > 0 {
+		sf = 1
+	}
+	if flags&SCTP_EVENT_PEER_ERROR > 0 {
+		p = 1
+	}
+	if flags&SCTP_EVENT_SHUTDOWN > 0 {
+		sh = 1
+	}
+	if flags&SCTP_EVENT_PARTIAL_DELIVERY > 0 {
+		pa = 1
+	}
+	if flags&SCTP_EVENT_ADAPTATION_LAYER > 0 {
+		ada = 1
+	}
+	if flags&SCTP_EVENT_AUTHENTICATION > 0 {
+		au = 1
+	}
+	if flags&SCTP_EVENT_SENDER_DRY > 0 {
+		se = 1
+	}
+	param := EventSubscribe{
+		DataIO:          d,
+		Association:     a,
+		Address:         ad,
+		SendFailure:     sf,
+		PeerError:       p,
+		Shutdown:        sh,
+		PartialDelivery: pa,
+		AdaptationLayer: ada,
+		Authentication:  au,
+		SenderDry:       se,
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := setsockopt(c.fd(), SCTP_EVENTS, uintptr(unsafe.Pointer(&param)), uintptr(optlen))
+	return err
+}
+
+func (c *SCTPConn) SubscribedEvents() (int, error) {
+	param := EventSubscribe{}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := getsockopt(c.fd(), SCTP_EVENTS, uintptr(unsafe.Pointer(&param)), uintptr(unsafe.Pointer(&optlen)))
+	if err != nil {
+		return 0, err
+	}
+	var flags int
+	if param.DataIO > 0 {
+		flags |= SCTP_EVENT_DATA_IO
+	}
+	if param.Association > 0 {
+		flags |= SCTP_EVENT_ASSOCIATION
+	}
+	if param.Address > 0 {
+		flags |= SCTP_EVENT_ADDRESS
+	}
+	if param.SendFailure > 0 {
+		flags |= SCTP_EVENT_SEND_FAILURE
+	}
+	if param.PeerError > 0 {
+		flags |= SCTP_EVENT_PEER_ERROR
+	}
+	if param.Shutdown > 0 {
+		flags |= SCTP_EVENT_SHUTDOWN
+	}
+	if param.PartialDelivery > 0 {
+		flags |= SCTP_EVENT_PARTIAL_DELIVERY
+	}
+	if param.AdaptationLayer > 0 {
+		flags |= SCTP_EVENT_ADAPTATION_LAYER
+	}
+	if param.Authentication > 0 {
+		flags |= SCTP_EVENT_AUTHENTICATION
+	}
+	if param.SenderDry > 0 {
+		flags |= SCTP_EVENT_SENDER_DRY
+	}
+	return flags, nil
+}
+
+func (c *SCTPConn) SetDefaultSentParam(info *SndRcvInfo) error {
+	optlen := unsafe.Sizeof(*info)
+	_, _, err := setsockopt(c.fd(), SCTP_DEFAULT_SENT_PARAM, uintptr(unsafe.Pointer(info)), uintptr(optlen))
+	return err
+}
+
+func (c *SCTPConn) GetDefaultSentParam() (*SndRcvInfo, error) {
+	info := &SndRcvInfo{}
+	optlen := unsafe.Sizeof(*info)
+	_, _, err := getsockopt(c.fd(), SCTP_DEFAULT_SENT_PARAM, uintptr(unsafe.Pointer(info)), uintptr(unsafe.Pointer(&optlen)))
+	return info, err
+}
+
+func resolveFromRawAddr(ptr unsafe.Pointer, n int) (*SCTPAddr, error) {
+	addr := &SCTPAddr{
+		IP: make([]net.IP, n),
+	}
+
+	switch family := (*(*syscall.RawSockaddrAny)(ptr)).Addr.Family; family {
+	case syscall.AF_INET:
+		addr.Port = int(ntohs(uint16((*(*syscall.RawSockaddrInet4)(ptr)).Port)))
+		tmp := syscall.RawSockaddrInet4{}
+		size := unsafe.Sizeof(tmp)
+		for i := 0; i < n; i++ {
+			a := *(*syscall.RawSockaddrInet4)(unsafe.Pointer(
+				uintptr(ptr) + size*uintptr(i)))
+			addr.IP[i] = a.Addr[:]
+		}
+	case syscall.AF_INET6:
+		addr.Port = int(ntohs(uint16((*(*syscall.RawSockaddrInet4)(ptr)).Port)))
+		tmp := syscall.RawSockaddrInet6{}
+		size := unsafe.Sizeof(tmp)
+		for i := 0; i < n; i++ {
+			a := *(*syscall.RawSockaddrInet6)(unsafe.Pointer(
+				uintptr(ptr) + size*uintptr(i)))
+			addr.IP[i] = a.Addr[:]
+		}
+	default:
+		return nil, fmt.Errorf("unknown address family: %d", family)
+	}
+	return addr, nil
+}
+
+func sctpGetAddrs(fd, id, optname int) (*SCTPAddr, error) {
+
+	type getaddrs struct {
+		assocId int32
+		addrNum uint32
+		addrs   [4096]byte
+	}
+	param := getaddrs{
+		assocId: int32(id),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := getsockopt(fd, uintptr(optname), uintptr(unsafe.Pointer(&param)), uintptr(unsafe.Pointer(&optlen)))
+	if err != nil {
+		return nil, err
+	}
+	return resolveFromRawAddr(unsafe.Pointer(&param.addrs), int(param.addrNum))
+}
+
+func (c *SCTPConn) SCTPGetPrimaryPeerAddr() (*SCTPAddr, error) {
+
+	type sctpGetSetPrim struct {
+		assocId int32
+		addrs   [128]byte
+	}
+	param := sctpGetSetPrim{
+		assocId: int32(0),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := getsockopt(c.fd(), SCTP_PRIMARY_ADDR, uintptr(unsafe.Pointer(&param)), uintptr(unsafe.Pointer(&optlen)))
+	if err != nil {
+		return nil, err
+	}
+	return resolveFromRawAddr(unsafe.Pointer(&param.addrs), 1)
+}
+
+func (c *SCTPConn) SCTPLocalAddr(id int) (*SCTPAddr, error) {
+	return sctpGetAddrs(c.fd(), id, SCTP_GET_LOCAL_ADDRS)
+}
+
+func (c *SCTPConn) SCTPRemoteAddr(id int) (*SCTPAddr, error) {
+	return sctpGetAddrs(c.fd(), id, SCTP_GET_PEER_ADDRS)
+}
+
+func (c *SCTPConn) LocalAddr() net.Addr {
+	addr, err := sctpGetAddrs(c.fd(), 0, SCTP_GET_LOCAL_ADDRS)
+	if err != nil {
+		return nil
+	}
+	return addr
+}
+
+func (c *SCTPConn) RemoteAddr() net.Addr {
+	addr, err := sctpGetAddrs(c.fd(), 0, SCTP_GET_PEER_ADDRS)
+	if err != nil {
+		return nil
+	}
+	return addr
+}
+
+func (c *SCTPConn) PeelOff(id int) (*SCTPConn, error) {
+	type peeloffArg struct {
+		assocId int32
+		sd      int
+	}
+	param := peeloffArg{
+		assocId: int32(id),
+	}
+	optlen := unsafe.Sizeof(param)
+	_, _, err := getsockopt(c.fd(), SCTP_SOCKOPT_PEELOFF, uintptr(unsafe.Pointer(&param)), uintptr(unsafe.Pointer(&optlen)))
+	if err != nil {
+		return nil, err
+	}
+	return &SCTPConn{_fd: int32(param.sd)}, nil
+}
+
+func (c *SCTPConn) SetDeadline(t time.Time) error {
+	return syscall.EOPNOTSUPP
+}
+
+func (c *SCTPConn) SetReadDeadline(t time.Time) error {
+	return syscall.EOPNOTSUPP
+}
+
+func (c *SCTPConn) SetWriteDeadline(t time.Time) error {
+	return syscall.EOPNOTSUPP
+}
+
+type SCTPListener struct {
+	fd int
+	m  sync.Mutex
+}
+
+func (ln *SCTPListener) Addr() net.Addr {
+	laddr, err := sctpGetAddrs(ln.fd, 0, SCTP_GET_LOCAL_ADDRS)
+	if err != nil {
+		return nil
+	}
+	return laddr
+}
+
+type SCTPSndRcvInfoWrappedConn struct {
+	conn *SCTPConn
+}
+
+func NewSCTPSndRcvInfoWrappedConn(conn *SCTPConn) *SCTPSndRcvInfoWrappedConn {
+	conn.SubscribeEvents(SCTP_EVENT_DATA_IO)
+	return &SCTPSndRcvInfoWrappedConn{conn}
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) Write(b []byte) (int, error) {
+	if len(b) < int(sndRcvInfoSize) {
+		return 0, syscall.EINVAL
+	}
+	info := (*SndRcvInfo)(unsafe.Pointer(&b[0]))
+	n, err := c.conn.SCTPWrite(b[sndRcvInfoSize:], info)
+	return n + int(sndRcvInfoSize), err
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) Read(b []byte) (int, error) {
+	if len(b) < int(sndRcvInfoSize) {
+		return 0, syscall.EINVAL
+	}
+	n, info, err := c.conn.SCTPRead(b[sndRcvInfoSize:])
+	if err != nil {
+		return n, err
+	}
+	copy(b, toBuf(info))
+	return n + int(sndRcvInfoSize), err
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) Close() error {
+	return c.conn.Close()
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) LocalAddr() net.Addr {
+	return c.conn.LocalAddr()
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) RemoteAddr() net.Addr {
+	return c.conn.RemoteAddr()
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) SetDeadline(t time.Time) error {
+	return c.conn.SetDeadline(t)
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) SetReadDeadline(t time.Time) error {
+	return c.conn.SetReadDeadline(t)
+}
+
+func (c *SCTPSndRcvInfoWrappedConn) SetWriteDeadline(t time.Time) error {
+	return c.conn.SetWriteDeadline(t)
+}
diff --git a/vendor/github.com/ishidawataru/sctp/sctp_linux.go b/vendor/github.com/ishidawataru/sctp/sctp_linux.go
new file mode 100644
index 0000000000..f93ab8622a
--- /dev/null
+++ b/vendor/github.com/ishidawataru/sctp/sctp_linux.go
@@ -0,0 +1,227 @@
+// +build linux,!386
+
+package sctp
+
+import (
+	"fmt"
+	"io"
+	"net"
+	"sync/atomic"
+	"syscall"
+	"unsafe"
+)
+
+func setsockopt(fd int, optname, optval, optlen uintptr) (uintptr, uintptr, error) {
+	// FIXME: syscall.SYS_SETSOCKOPT is undefined on 386
+	r0, r1, errno := syscall.Syscall6(syscall.SYS_SETSOCKOPT,
+		uintptr(fd),
+		SOL_SCTP,
+		optname,
+		optval,
+		optlen,
+		0)
+	if errno != 0 {
+		return r0, r1, errno
+	}
+	return r0, r1, nil
+}
+
+func getsockopt(fd int, optname, optval, optlen uintptr) (uintptr, uintptr, error) {
+	// FIXME: syscall.SYS_GETSOCKOPT is undefined on 386
+	r0, r1, errno := syscall.Syscall6(syscall.SYS_GETSOCKOPT,
+		uintptr(fd),
+		SOL_SCTP,
+		optname,
+		optval,
+		optlen,
+		0)
+	if errno != 0 {
+		return r0, r1, errno
+	}
+	return r0, r1, nil
+}
+
+func (c *SCTPConn) SCTPWrite(b []byte, info *SndRcvInfo) (int, error) {
+	var cbuf []byte
+	if info != nil {
+		cmsgBuf := toBuf(info)
+		hdr := &syscall.Cmsghdr{
+			Level: syscall.IPPROTO_SCTP,
+			Type:  SCTP_CMSG_SNDRCV,
+		}
+
+		// bitwidth of hdr.Len is platform-specific,
+		// so we use hdr.SetLen() rather than directly setting hdr.Len
+		hdr.SetLen(syscall.CmsgSpace(len(cmsgBuf)))
+		cbuf = append(toBuf(hdr), cmsgBuf...)
+	}
+	return syscall.SendmsgN(c.fd(), b, cbuf, nil, 0)
+}
+
+func parseSndRcvInfo(b []byte) (*SndRcvInfo, error) {
+	msgs, err := syscall.ParseSocketControlMessage(b)
+	if err != nil {
+		return nil, err
+	}
+	for _, m := range msgs {
+		if m.Header.Level == syscall.IPPROTO_SCTP {
+			switch m.Header.Type {
+			case SCTP_CMSG_SNDRCV:
+				return (*SndRcvInfo)(unsafe.Pointer(&m.Data[0])), nil
+			}
+		}
+	}
+	return nil, nil
+}
+
+func (c *SCTPConn) SCTPRead(b []byte) (int, *SndRcvInfo, error) {
+	oob := make([]byte, 254)
+	for {
+		n, oobn, recvflags, _, err := syscall.Recvmsg(c.fd(), b, oob, 0)
+		if err != nil {
+			return n, nil, err
+		}
+
+		if n == 0 && oobn == 0 {
+			return 0, nil, io.EOF
+		}
+
+		if recvflags&MSG_NOTIFICATION > 0 && c.notificationHandler != nil {
+			if err := c.notificationHandler(b[:n]); err != nil {
+				return 0, nil, err
+			}
+		} else {
+			var info *SndRcvInfo
+			if oobn > 0 {
+				info, err = parseSndRcvInfo(oob[:oobn])
+			}
+			return n, info, err
+		}
+	}
+}
+
+func (c *SCTPConn) Close() error {
+	if c != nil {
+		fd := atomic.SwapInt32(&c._fd, -1)
+		if fd > 0 {
+			info := &SndRcvInfo{
+				Flags: SCTP_EOF,
+			}
+			c.SCTPWrite(nil, info)
+			syscall.Shutdown(int(fd), syscall.SHUT_RDWR)
+			return syscall.Close(int(fd))
+		}
+	}
+	return syscall.EBADF
+}
+
+func ListenSCTP(net string, laddr *SCTPAddr) (*SCTPListener, error) {
+	af := syscall.AF_INET
+	switch net {
+	case "sctp":
+		hasv6 := func(addr *SCTPAddr) bool {
+			if addr == nil {
+				return false
+			}
+			for _, ip := range addr.IP {
+				if ip.To4() == nil {
+					return true
+				}
+			}
+			return false
+		}
+		if hasv6(laddr) {
+			af = syscall.AF_INET6
+		}
+	case "sctp4":
+	case "sctp6":
+		af = syscall.AF_INET6
+	default:
+		return nil, fmt.Errorf("invalid net: %s", net)
+	}
+
+	sock, err := syscall.Socket(
+		af,
+		syscall.SOCK_STREAM,
+		syscall.IPPROTO_SCTP,
+	)
+	if err != nil {
+		return nil, err
+	}
+	err = setNumOstreams(sock, SCTP_MAX_STREAM)
+	if err != nil {
+		return nil, err
+	}
+	if laddr != nil && len(laddr.IP) != 0 {
+		err := SCTPBind(sock, laddr, SCTP_BINDX_ADD_ADDR)
+		if err != nil {
+			return nil, err
+		}
+	}
+	err = syscall.Listen(sock, syscall.SOMAXCONN)
+	if err != nil {
+		return nil, err
+	}
+	return &SCTPListener{
+		fd: sock,
+	}, nil
+}
+
+func (ln *SCTPListener) Accept() (net.Conn, error) {
+	fd, _, err := syscall.Accept4(ln.fd, 0)
+	return NewSCTPConn(fd, nil), err
+}
+
+func (ln *SCTPListener) Close() error {
+	syscall.Shutdown(ln.fd, syscall.SHUT_RDWR)
+	return syscall.Close(ln.fd)
+}
+
+func DialSCTP(net string, laddr, raddr *SCTPAddr) (*SCTPConn, error) {
+	af := syscall.AF_INET
+	switch net {
+	case "sctp":
+		hasv6 := func(addr *SCTPAddr) bool {
+			if addr == nil {
+				return false
+			}
+			for _, ip := range addr.IP {
+				if ip.To4() == nil {
+					return true
+				}
+			}
+			return false
+		}
+		if hasv6(laddr) || hasv6(raddr) {
+			af = syscall.AF_INET6
+		}
+	case "sctp4":
+	case "sctp6":
+		af = syscall.AF_INET6
+	default:
+		return nil, fmt.Errorf("invalid net: %s", net)
+	}
+	sock, err := syscall.Socket(
+		af,
+		syscall.SOCK_STREAM,
+		syscall.IPPROTO_SCTP,
+	)
+	if err != nil {
+		return nil, err
+	}
+	err = setNumOstreams(sock, SCTP_MAX_STREAM)
+	if err != nil {
+		return nil, err
+	}
+	if laddr != nil {
+		err := SCTPBind(sock, laddr, SCTP_BINDX_ADD_ADDR)
+		if err != nil {
+			return nil, err
+		}
+	}
+	_, err = SCTPConnect(sock, raddr)
+	if err != nil {
+		return nil, err
+	}
+	return NewSCTPConn(sock, nil), nil
+}
diff --git a/vendor/github.com/ishidawataru/sctp/sctp_unsupported.go b/vendor/github.com/ishidawataru/sctp/sctp_unsupported.go
new file mode 100644
index 0000000000..adcbf78b46
--- /dev/null
+++ b/vendor/github.com/ishidawataru/sctp/sctp_unsupported.go
@@ -0,0 +1,47 @@
+// +build !linux linux,386
+
+package sctp
+
+import (
+	"errors"
+	"net"
+	"runtime"
+)
+
+var ErrUnsupported = errors.New("SCTP is unsupported on " + runtime.GOOS + "/" + runtime.GOARCH)
+
+func setsockopt(fd int, optname, optval, optlen uintptr) (uintptr, uintptr, error) {
+	return 0, 0, ErrUnsupported
+}
+
+func getsockopt(fd int, optname, optval, optlen uintptr) (uintptr, uintptr, error) {
+	return 0, 0, ErrUnsupported
+}
+
+func (c *SCTPConn) SCTPWrite(b []byte, info *SndRcvInfo) (int, error) {
+	return 0, ErrUnsupported
+}
+
+func (c *SCTPConn) SCTPRead(b []byte) (int, *SndRcvInfo, error) {
+	return 0, nil, ErrUnsupported
+}
+
+func (c *SCTPConn) Close() error {
+	return ErrUnsupported
+}
+
+func ListenSCTP(net string, laddr *SCTPAddr) (*SCTPListener, error) {
+	return nil, ErrUnsupported
+}
+
+func (ln *SCTPListener) Accept() (net.Conn, error) {
+	return nil, ErrUnsupported
+}
+
+func (ln *SCTPListener) Close() error {
+	return ErrUnsupported
+}
+
+func DialSCTP(net string, laddr, raddr *SCTPAddr) (*SCTPConn, error) {
+	return nil, ErrUnsupported
+}
diff --git a/vendor/github.com/mattn/go-shellwords/LICENSE b/vendor/github.com/mattn/go-shellwords/LICENSE
new file mode 100644
index 0000000000..740fa93132
--- /dev/null
+++ b/vendor/github.com/mattn/go-shellwords/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2017 Yasuhiro Matsumoto
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/vendor/github.com/mattn/go-shellwords/shellwords.go b/vendor/github.com/mattn/go-shellwords/shellwords.go
new file mode 100644
index 0000000000..107803927a
--- /dev/null
+++ b/vendor/github.com/mattn/go-shellwords/shellwords.go
@@ -0,0 +1,145 @@
+package shellwords
+
+import (
+	"errors"
+	"os"
+	"regexp"
+)
+
+var (
+	ParseEnv      bool = false
+	ParseBacktick bool = false
+)
+
+var envRe = regexp.MustCompile(`\$({[a-zA-Z0-9_]+}|[a-zA-Z0-9_]+)`)
+
+func isSpace(r rune) bool {
+	switch r {
+	case ' ', '\t', '\r', '\n':
+		return true
+	}
+	return false
+}
+
+func replaceEnv(s string) string {
+	return envRe.ReplaceAllStringFunc(s, func(s string) string {
+		s = s[1:]
+		if s[0] == '{' {
+			s = s[1 : len(s)-1]
+		}
+		return os.Getenv(s)
+	})
+}
+
+type Parser struct {
+	ParseEnv      bool
+	ParseBacktick bool
+	Position      int
+}
+
+func NewParser() *Parser {
+	return &Parser{ParseEnv, ParseBacktick, 0}
+}
+
+func (p *Parser) Parse(line string) ([]string, error) {
+	args := []string{}
+	buf := ""
+	var escaped, doubleQuoted, singleQuoted, backQuote bool
+	backtick := ""
+
+	pos := -1
+	got := false
+
+loop:
+	for i, r := range line {
+		if escaped {
+			buf += string(r)
+			escaped = false
+			continue
+		}
+
+		if r == '\\' {
+			if singleQuoted {
+				buf += string(r)
+			} else {
+				escaped = true
+			}
+			continue
+		}
+
+		if isSpace(r) {
+			if singleQuoted || doubleQuoted || backQuote {
+				buf += string(r)
+				backtick += string(r)
+			} else if got {
+				if p.ParseEnv {
+					buf = replaceEnv(buf)
+				}
+				args = append(args, buf)
+				buf = ""
+				got = false
+			}
+			continue
+		}
+
+		switch r {
+		case '`':
+			if !singleQuoted && !doubleQuoted {
+				if p.ParseBacktick {
+					if backQuote {
+						out, err := shellRun(backtick)
+						if err != nil {
+							return nil, err
+						}
+						buf = out
+					}
+					backtick = ""
+					backQuote = !backQuote
+					continue
+				}
+				backtick = ""
+				backQuote = !backQuote
+			}
+		case '"':
+			if !singleQuoted {
+				doubleQuoted = !doubleQuoted
+				continue
+			}
+		case '\'':
+			if !doubleQuoted {
+				singleQuoted = !singleQuoted
+				continue
+			}
+		case ';', '&', '|', '<', '>':
+			if !(escaped || singleQuoted || doubleQuoted || backQuote) {
+				pos = i
+				break loop
+			}
+		}
+
+		got = true
+		buf += string(r)
+		if backQuote {
+			backtick += string(r)
+		}
+	}
+
+	if got {
+		if p.ParseEnv {
+			buf = replaceEnv(buf)
+		}
+		args = append(args, buf)
+	}
+
+	if escaped || singleQuoted || doubleQuoted || backQuote {
+		return nil, errors.New("invalid command line string")
+	}
+
+	p.Position = pos
+
+	return args, nil
+}
+
+func Parse(line string) ([]string, error) {
+	return NewParser().Parse(line)
+}
diff --git a/vendor/github.com/mattn/go-shellwords/util_posix.go b/vendor/github.com/mattn/go-shellwords/util_posix.go
new file mode 100644
index 0000000000..4f8ac55e47
--- /dev/null
+++ b/vendor/github.com/mattn/go-shellwords/util_posix.go
@@ -0,0 +1,19 @@
+// +build !windows
+
+package shellwords
+
+import (
+	"errors"
+	"os"
+	"os/exec"
+	"strings"
+)
+
+func shellRun(line string) (string, error) {
+	shell := os.Getenv("SHELL")
+	b, err := exec.Command(shell, "-c", line).Output()
+	if err != nil {
+		return "", errors.New(err.Error() + ":" + string(b))
+	}
+	return strings.TrimSpace(string(b)), nil
+}
diff --git a/vendor/github.com/mattn/go-shellwords/util_windows.go b/vendor/github.com/mattn/go-shellwords/util_windows.go
new file mode 100644
index 0000000000..7cad4cf06f
--- /dev/null
+++ b/vendor/github.com/mattn/go-shellwords/util_windows.go
@@ -0,0 +1,17 @@
+package shellwords
+
+import (
+	"errors"
+	"os"
+	"os/exec"
+	"strings"
+)
+
+func shellRun(line string) (string, error) {
+	shell := os.Getenv("COMSPEC")
+	b, err := exec.Command(shell, "/c", line).Output()
+	if err != nil {
+		return "", errors.New(err.Error() + ":" + string(b))
+	}
+	return strings.TrimSpace(string(b)), nil
+}
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE b/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/vendor/github.com/matttproud/golang_protobuf_extensions/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE b/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
new file mode 100644
index 0000000000..5d8cb5b72e
--- /dev/null
+++ b/vendor/github.com/matttproud/golang_protobuf_extensions/NOTICE
@@ -0,0 +1 @@
+Copyright 2012 Matt T. Proud (matt.proud@gmail.com)
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
new file mode 100644
index 0000000000..258c0636aa
--- /dev/null
+++ b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/decode.go
@@ -0,0 +1,75 @@
+// Copyright 2013 Matt T. Proud
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package pbutil
+
+import (
+	"encoding/binary"
+	"errors"
+	"io"
+
+	"github.com/golang/protobuf/proto"
+)
+
+var errInvalidVarint = errors.New("invalid varint32 encountered")
+
+// ReadDelimited decodes a message from the provided length-delimited stream,
+// where the length is encoded as 32-bit varint prefix to the message body.
+// It returns the total number of bytes read and any applicable error.  This is
+// roughly equivalent to the companion Java API's
+// MessageLite#parseDelimitedFrom.  As per the reader contract, this function
+// calls r.Read repeatedly as required until exactly one message including its
+// prefix is read and decoded (or an error has occurred).  The function never
+// reads more bytes from the stream than required.  The function never returns
+// an error if a message has been read and decoded correctly, even if the end
+// of the stream has been reached in doing so.  In that case, any subsequent
+// calls return (0, io.EOF).
+func ReadDelimited(r io.Reader, m proto.Message) (n int, err error) {
+	// Per AbstractParser#parsePartialDelimitedFrom with
+	// CodedInputStream#readRawVarint32.
+	var headerBuf [binary.MaxVarintLen32]byte
+	var bytesRead, varIntBytes int
+	var messageLength uint64
+	for varIntBytes == 0 { // i.e. no varint has been decoded yet.
+		if bytesRead >= len(headerBuf) {
+			return bytesRead, errInvalidVarint
+		}
+		// We have to read byte by byte here to avoid reading more bytes
+		// than required. Each read byte is appended to what we have
+		// read before.
+		newBytesRead, err := r.Read(headerBuf[bytesRead : bytesRead+1])
+		if newBytesRead == 0 {
+			if err != nil {
+				return bytesRead, err
+			}
+			// A Reader should not return (0, nil), but if it does,
+			// it should be treated as no-op (according to the
+			// Reader contract). So let's go on...
+			continue
+		}
+		bytesRead += newBytesRead
+		// Now present everything read so far to the varint decoder and
+		// see if a varint can be decoded already.
+		messageLength, varIntBytes = proto.DecodeVarint(headerBuf[:bytesRead])
+	}
+
+	messageBuf := make([]byte, messageLength)
+	newBytesRead, err := io.ReadFull(r, messageBuf)
+	bytesRead += newBytesRead
+	if err != nil {
+		return bytesRead, err
+	}
+
+	return bytesRead, proto.Unmarshal(messageBuf, m)
+}
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go
new file mode 100644
index 0000000000..c318385cbe
--- /dev/null
+++ b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/doc.go
@@ -0,0 +1,16 @@
+// Copyright 2013 Matt T. Proud
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package pbutil provides record length-delimited Protocol Buffer streaming.
+package pbutil
diff --git a/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
new file mode 100644
index 0000000000..8fb59ad226
--- /dev/null
+++ b/vendor/github.com/matttproud/golang_protobuf_extensions/pbutil/encode.go
@@ -0,0 +1,46 @@
+// Copyright 2013 Matt T. Proud
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package pbutil
+
+import (
+	"encoding/binary"
+	"io"
+
+	"github.com/golang/protobuf/proto"
+)
+
+// WriteDelimited encodes and dumps a message to the provided writer prefixed
+// with a 32-bit varint indicating the length of the encoded message, producing
+// a length-delimited record stream, which can be used to chain together
+// encoded messages of the same type together in a file.  It returns the total
+// number of bytes written and any applicable error.  This is roughly
+// equivalent to the companion Java API's MessageLite#writeDelimitedTo.
+func WriteDelimited(w io.Writer, m proto.Message) (n int, err error) {
+	buffer, err := proto.Marshal(m)
+	if err != nil {
+		return 0, err
+	}
+
+	var buf [binary.MaxVarintLen32]byte
+	encodedLength := binary.PutUvarint(buf[:], uint64(len(buffer)))
+
+	sync, err := w.Write(buf[:encodedLength])
+	if err != nil {
+		return sync, err
+	}
+
+	n, err = w.Write(buffer)
+	return n + sync, err
+}
diff --git a/vendor/github.com/miekg/dns/AUTHORS b/vendor/github.com/miekg/dns/AUTHORS
new file mode 100644
index 0000000000..1965683525
--- /dev/null
+++ b/vendor/github.com/miekg/dns/AUTHORS
@@ -0,0 +1 @@
+Miek Gieben <miek@miek.nl>
diff --git a/vendor/github.com/miekg/dns/CONTRIBUTORS b/vendor/github.com/miekg/dns/CONTRIBUTORS
new file mode 100644
index 0000000000..5903779d81
--- /dev/null
+++ b/vendor/github.com/miekg/dns/CONTRIBUTORS
@@ -0,0 +1,10 @@
+Alex A. Skinner
+Andrew Tunnell-Jones
+Ask Bjørn Hansen
+Dave Cheney
+Dusty Wilson
+Marek Majkowski
+Peter van Dijk
+Omri Bahumi
+Alex Sergeyev
+James Hartig
diff --git a/vendor/github.com/miekg/dns/COPYRIGHT b/vendor/github.com/miekg/dns/COPYRIGHT
new file mode 100644
index 0000000000..35702b10e8
--- /dev/null
+++ b/vendor/github.com/miekg/dns/COPYRIGHT
@@ -0,0 +1,9 @@
+Copyright 2009 The Go Authors. All rights reserved. Use of this source code
+is governed by a BSD-style license that can be found in the LICENSE file.
+Extensions of the original work are copyright (c) 2011 Miek Gieben
+
+Copyright 2011 Miek Gieben. All rights reserved. Use of this source code is
+governed by a BSD-style license that can be found in the LICENSE file.
+
+Copyright 2014 CloudFlare. All rights reserved. Use of this source code is
+governed by a BSD-style license that can be found in the LICENSE file.
diff --git a/vendor/github.com/miekg/dns/LICENSE b/vendor/github.com/miekg/dns/LICENSE
new file mode 100644
index 0000000000..5763fa7fe5
--- /dev/null
+++ b/vendor/github.com/miekg/dns/LICENSE
@@ -0,0 +1,32 @@
+Extensions of the original work are copyright (c) 2011 Miek Gieben
+
+As this is fork of the official Go code the same license applies:
+
+Copyright (c) 2009 The Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
diff --git a/vendor/github.com/miekg/dns/client.go b/vendor/github.com/miekg/dns/client.go
new file mode 100644
index 0000000000..282565afdd
--- /dev/null
+++ b/vendor/github.com/miekg/dns/client.go
@@ -0,0 +1,503 @@
+package dns
+
+// A client implementation.
+
+import (
+	"bytes"
+	"context"
+	"crypto/tls"
+	"encoding/binary"
+	"io"
+	"net"
+	"strings"
+	"time"
+)
+
+const dnsTimeout time.Duration = 2 * time.Second
+const tcpIdleTimeout time.Duration = 8 * time.Second
+
+// A Conn represents a connection to a DNS server.
+type Conn struct {
+	net.Conn                         // a net.Conn holding the connection
+	UDPSize        uint16            // minimum receive buffer for UDP messages
+	TsigSecret     map[string]string // secret(s) for Tsig map[<zonename>]<base64 secret>, zonename must be in canonical form (lowercase, fqdn, see RFC 4034 Section 6.2)
+	tsigRequestMAC string
+}
+
+// A Client defines parameters for a DNS client.
+type Client struct {
+	Net       string      // if "tcp" or "tcp-tls" (DNS over TLS) a TCP query will be initiated, otherwise an UDP one (default is "" for UDP)
+	UDPSize   uint16      // minimum receive buffer for UDP messages
+	TLSConfig *tls.Config // TLS connection configuration
+	Dialer    *net.Dialer // a net.Dialer used to set local address, timeouts and more
+	// Timeout is a cumulative timeout for dial, write and read, defaults to 0 (disabled) - overrides DialTimeout, ReadTimeout,
+	// WriteTimeout when non-zero. Can be overridden with net.Dialer.Timeout (see Client.ExchangeWithDialer and
+	// Client.Dialer) or context.Context.Deadline (see the deprecated ExchangeContext)
+	Timeout        time.Duration
+	DialTimeout    time.Duration     // net.DialTimeout, defaults to 2 seconds, or net.Dialer.Timeout if expiring earlier - overridden by Timeout when that value is non-zero
+	ReadTimeout    time.Duration     // net.Conn.SetReadTimeout value for connections, defaults to 2 seconds - overridden by Timeout when that value is non-zero
+	WriteTimeout   time.Duration     // net.Conn.SetWriteTimeout value for connections, defaults to 2 seconds - overridden by Timeout when that value is non-zero
+	TsigSecret     map[string]string // secret(s) for Tsig map[<zonename>]<base64 secret>, zonename must be in canonical form (lowercase, fqdn, see RFC 4034 Section 6.2)
+	SingleInflight bool              // if true suppress multiple outstanding queries for the same Qname, Qtype and Qclass
+	group          singleflight
+}
+
+// Exchange performs a synchronous UDP query. It sends the message m to the address
+// contained in a and waits for a reply. Exchange does not retry a failed query, nor
+// will it fall back to TCP in case of truncation.
+// See client.Exchange for more information on setting larger buffer sizes.
+func Exchange(m *Msg, a string) (r *Msg, err error) {
+	client := Client{Net: "udp"}
+	r, _, err = client.Exchange(m, a)
+	return r, err
+}
+
+func (c *Client) dialTimeout() time.Duration {
+	if c.Timeout != 0 {
+		return c.Timeout
+	}
+	if c.DialTimeout != 0 {
+		return c.DialTimeout
+	}
+	return dnsTimeout
+}
+
+func (c *Client) readTimeout() time.Duration {
+	if c.ReadTimeout != 0 {
+		return c.ReadTimeout
+	}
+	return dnsTimeout
+}
+
+func (c *Client) writeTimeout() time.Duration {
+	if c.WriteTimeout != 0 {
+		return c.WriteTimeout
+	}
+	return dnsTimeout
+}
+
+// Dial connects to the address on the named network.
+func (c *Client) Dial(address string) (conn *Conn, err error) {
+	// create a new dialer with the appropriate timeout
+	var d net.Dialer
+	if c.Dialer == nil {
+		d = net.Dialer{}
+	} else {
+		d = net.Dialer(*c.Dialer)
+	}
+	d.Timeout = c.getTimeoutForRequest(c.writeTimeout())
+
+	network := "udp"
+	useTLS := false
+
+	switch c.Net {
+	case "tcp-tls":
+		network = "tcp"
+		useTLS = true
+	case "tcp4-tls":
+		network = "tcp4"
+		useTLS = true
+	case "tcp6-tls":
+		network = "tcp6"
+		useTLS = true
+	default:
+		if c.Net != "" {
+			network = c.Net
+		}
+	}
+
+	conn = new(Conn)
+	if useTLS {
+		conn.Conn, err = tls.DialWithDialer(&d, network, address, c.TLSConfig)
+	} else {
+		conn.Conn, err = d.Dial(network, address)
+	}
+	if err != nil {
+		return nil, err
+	}
+	return conn, nil
+}
+
+// Exchange performs a synchronous query. It sends the message m to the address
+// contained in a and waits for a reply. Basic use pattern with a *dns.Client:
+//
+//	c := new(dns.Client)
+//	in, rtt, err := c.Exchange(message, "127.0.0.1:53")
+//
+// Exchange does not retry a failed query, nor will it fall back to TCP in
+// case of truncation.
+// It is up to the caller to create a message that allows for larger responses to be
+// returned. Specifically this means adding an EDNS0 OPT RR that will advertise a larger
+// buffer, see SetEdns0. Messages without an OPT RR will fallback to the historic limit
+// of 512 bytes
+// To specify a local address or a timeout, the caller has to set the `Client.Dialer`
+// attribute appropriately
+func (c *Client) Exchange(m *Msg, address string) (r *Msg, rtt time.Duration, err error) {
+	if !c.SingleInflight {
+		return c.exchange(m, address)
+	}
+
+	t := "nop"
+	if t1, ok := TypeToString[m.Question[0].Qtype]; ok {
+		t = t1
+	}
+	cl := "nop"
+	if cl1, ok := ClassToString[m.Question[0].Qclass]; ok {
+		cl = cl1
+	}
+	r, rtt, err, shared := c.group.Do(m.Question[0].Name+t+cl, func() (*Msg, time.Duration, error) {
+		return c.exchange(m, address)
+	})
+	if r != nil && shared {
+		r = r.Copy()
+	}
+	return r, rtt, err
+}
+
+func (c *Client) exchange(m *Msg, a string) (r *Msg, rtt time.Duration, err error) {
+	var co *Conn
+
+	co, err = c.Dial(a)
+
+	if err != nil {
+		return nil, 0, err
+	}
+	defer co.Close()
+
+	opt := m.IsEdns0()
+	// If EDNS0 is used use that for size.
+	if opt != nil && opt.UDPSize() >= MinMsgSize {
+		co.UDPSize = opt.UDPSize()
+	}
+	// Otherwise use the client's configured UDP size.
+	if opt == nil && c.UDPSize >= MinMsgSize {
+		co.UDPSize = c.UDPSize
+	}
+
+	co.TsigSecret = c.TsigSecret
+	t := time.Now()
+	// write with the appropriate write timeout
+	co.SetWriteDeadline(t.Add(c.getTimeoutForRequest(c.writeTimeout())))
+	if err = co.WriteMsg(m); err != nil {
+		return nil, 0, err
+	}
+
+	co.SetReadDeadline(time.Now().Add(c.getTimeoutForRequest(c.readTimeout())))
+	r, err = co.ReadMsg()
+	if err == nil && r.Id != m.Id {
+		err = ErrId
+	}
+	rtt = time.Since(t)
+	return r, rtt, err
+}
+
+// ReadMsg reads a message from the connection co.
+// If the received message contains a TSIG record the transaction signature
+// is verified. This method always tries to return the message, however if an
+// error is returned there are no guarantees that the returned message is a
+// valid representation of the packet read.
+func (co *Conn) ReadMsg() (*Msg, error) {
+	p, err := co.ReadMsgHeader(nil)
+	if err != nil {
+		return nil, err
+	}
+
+	m := new(Msg)
+	if err := m.Unpack(p); err != nil {
+		// If an error was returned, we still want to allow the user to use
+		// the message, but naively they can just check err if they don't want
+		// to use an erroneous message
+		return m, err
+	}
+	if t := m.IsTsig(); t != nil {
+		if _, ok := co.TsigSecret[t.Hdr.Name]; !ok {
+			return m, ErrSecret
+		}
+		// Need to work on the original message p, as that was used to calculate the tsig.
+		err = TsigVerify(p, co.TsigSecret[t.Hdr.Name], co.tsigRequestMAC, false)
+	}
+	return m, err
+}
+
+// ReadMsgHeader reads a DNS message, parses and populates hdr (when hdr is not nil).
+// Returns message as a byte slice to be parsed with Msg.Unpack later on.
+// Note that error handling on the message body is not possible as only the header is parsed.
+func (co *Conn) ReadMsgHeader(hdr *Header) ([]byte, error) {
+	var (
+		p   []byte
+		n   int
+		err error
+	)
+
+	switch t := co.Conn.(type) {
+	case *net.TCPConn, *tls.Conn:
+		r := t.(io.Reader)
+
+		// First two bytes specify the length of the entire message.
+		l, err := tcpMsgLen(r)
+		if err != nil {
+			return nil, err
+		}
+		p = make([]byte, l)
+		n, err = tcpRead(r, p)
+	default:
+		if co.UDPSize > MinMsgSize {
+			p = make([]byte, co.UDPSize)
+		} else {
+			p = make([]byte, MinMsgSize)
+		}
+		n, err = co.Read(p)
+	}
+
+	if err != nil {
+		return nil, err
+	} else if n < headerSize {
+		return nil, ErrShortRead
+	}
+
+	p = p[:n]
+	if hdr != nil {
+		dh, _, err := unpackMsgHdr(p, 0)
+		if err != nil {
+			return nil, err
+		}
+		*hdr = dh
+	}
+	return p, err
+}
+
+// tcpMsgLen is a helper func to read first two bytes of stream as uint16 packet length.
+func tcpMsgLen(t io.Reader) (int, error) {
+	p := []byte{0, 0}
+	n, err := t.Read(p)
+	if err != nil {
+		return 0, err
+	}
+
+	// As seen with my local router/switch, returns 1 byte on the above read,
+	// resulting a a ShortRead. Just write it out (instead of loop) and read the
+	// other byte.
+	if n == 1 {
+		n1, err := t.Read(p[1:])
+		if err != nil {
+			return 0, err
+		}
+		n += n1
+	}
+
+	if n != 2 {
+		return 0, ErrShortRead
+	}
+	l := binary.BigEndian.Uint16(p)
+	if l == 0 {
+		return 0, ErrShortRead
+	}
+	return int(l), nil
+}
+
+// tcpRead calls TCPConn.Read enough times to fill allocated buffer.
+func tcpRead(t io.Reader, p []byte) (int, error) {
+	n, err := t.Read(p)
+	if err != nil {
+		return n, err
+	}
+	for n < len(p) {
+		j, err := t.Read(p[n:])
+		if err != nil {
+			return n, err
+		}
+		n += j
+	}
+	return n, err
+}
+
+// Read implements the net.Conn read method.
+func (co *Conn) Read(p []byte) (n int, err error) {
+	if co.Conn == nil {
+		return 0, ErrConnEmpty
+	}
+	if len(p) < 2 {
+		return 0, io.ErrShortBuffer
+	}
+	switch t := co.Conn.(type) {
+	case *net.TCPConn, *tls.Conn:
+		r := t.(io.Reader)
+
+		l, err := tcpMsgLen(r)
+		if err != nil {
+			return 0, err
+		}
+		if l > len(p) {
+			return int(l), io.ErrShortBuffer
+		}
+		return tcpRead(r, p[:l])
+	}
+	// UDP connection
+	n, err = co.Conn.Read(p)
+	if err != nil {
+		return n, err
+	}
+	return n, err
+}
+
+// WriteMsg sends a message through the connection co.
+// If the message m contains a TSIG record the transaction
+// signature is calculated.
+func (co *Conn) WriteMsg(m *Msg) (err error) {
+	var out []byte
+	if t := m.IsTsig(); t != nil {
+		mac := ""
+		if _, ok := co.TsigSecret[t.Hdr.Name]; !ok {
+			return ErrSecret
+		}
+		out, mac, err = TsigGenerate(m, co.TsigSecret[t.Hdr.Name], co.tsigRequestMAC, false)
+		// Set for the next read, although only used in zone transfers
+		co.tsigRequestMAC = mac
+	} else {
+		out, err = m.Pack()
+	}
+	if err != nil {
+		return err
+	}
+	if _, err = co.Write(out); err != nil {
+		return err
+	}
+	return nil
+}
+
+// Write implements the net.Conn Write method.
+func (co *Conn) Write(p []byte) (n int, err error) {
+	switch t := co.Conn.(type) {
+	case *net.TCPConn, *tls.Conn:
+		w := t.(io.Writer)
+
+		lp := len(p)
+		if lp < 2 {
+			return 0, io.ErrShortBuffer
+		}
+		if lp > MaxMsgSize {
+			return 0, &Error{err: "message too large"}
+		}
+		l := make([]byte, 2, lp+2)
+		binary.BigEndian.PutUint16(l, uint16(lp))
+		p = append(l, p...)
+		n, err := io.Copy(w, bytes.NewReader(p))
+		return int(n), err
+	}
+	n, err = co.Conn.Write(p)
+	return n, err
+}
+
+// Return the appropriate timeout for a specific request
+func (c *Client) getTimeoutForRequest(timeout time.Duration) time.Duration {
+	var requestTimeout time.Duration
+	if c.Timeout != 0 {
+		requestTimeout = c.Timeout
+	} else {
+		requestTimeout = timeout
+	}
+	// net.Dialer.Timeout has priority if smaller than the timeouts computed so
+	// far
+	if c.Dialer != nil && c.Dialer.Timeout != 0 {
+		if c.Dialer.Timeout < requestTimeout {
+			requestTimeout = c.Dialer.Timeout
+		}
+	}
+	return requestTimeout
+}
+
+// Dial connects to the address on the named network.
+func Dial(network, address string) (conn *Conn, err error) {
+	conn = new(Conn)
+	conn.Conn, err = net.Dial(network, address)
+	if err != nil {
+		return nil, err
+	}
+	return conn, nil
+}
+
+// ExchangeContext performs a synchronous UDP query, like Exchange. It
+// additionally obeys deadlines from the passed Context.
+func ExchangeContext(ctx context.Context, m *Msg, a string) (r *Msg, err error) {
+	client := Client{Net: "udp"}
+	r, _, err = client.ExchangeContext(ctx, m, a)
+	// ignorint rtt to leave the original ExchangeContext API unchanged, but
+	// this function will go away
+	return r, err
+}
+
+// ExchangeConn performs a synchronous query. It sends the message m via the connection
+// c and waits for a reply. The connection c is not closed by ExchangeConn.
+// This function is going away, but can easily be mimicked:
+//
+//	co := &dns.Conn{Conn: c} // c is your net.Conn
+//	co.WriteMsg(m)
+//	in, _  := co.ReadMsg()
+//	co.Close()
+//
+func ExchangeConn(c net.Conn, m *Msg) (r *Msg, err error) {
+	println("dns: ExchangeConn: this function is deprecated")
+	co := new(Conn)
+	co.Conn = c
+	if err = co.WriteMsg(m); err != nil {
+		return nil, err
+	}
+	r, err = co.ReadMsg()
+	if err == nil && r.Id != m.Id {
+		err = ErrId
+	}
+	return r, err
+}
+
+// DialTimeout acts like Dial but takes a timeout.
+func DialTimeout(network, address string, timeout time.Duration) (conn *Conn, err error) {
+	client := Client{Net: network, Dialer: &net.Dialer{Timeout: timeout}}
+	conn, err = client.Dial(address)
+	if err != nil {
+		return nil, err
+	}
+	return conn, nil
+}
+
+// DialWithTLS connects to the address on the named network with TLS.
+func DialWithTLS(network, address string, tlsConfig *tls.Config) (conn *Conn, err error) {
+	if !strings.HasSuffix(network, "-tls") {
+		network += "-tls"
+	}
+	client := Client{Net: network, TLSConfig: tlsConfig}
+	conn, err = client.Dial(address)
+
+	if err != nil {
+		return nil, err
+	}
+	return conn, nil
+}
+
+// DialTimeoutWithTLS acts like DialWithTLS but takes a timeout.
+func DialTimeoutWithTLS(network, address string, tlsConfig *tls.Config, timeout time.Duration) (conn *Conn, err error) {
+	if !strings.HasSuffix(network, "-tls") {
+		network += "-tls"
+	}
+	client := Client{Net: network, Dialer: &net.Dialer{Timeout: timeout}, TLSConfig: tlsConfig}
+	conn, err = client.Dial(address)
+	if err != nil {
+		return nil, err
+	}
+	return conn, nil
+}
+
+// ExchangeContext acts like Exchange, but honors the deadline on the provided
+// context, if present. If there is both a context deadline and a configured
+// timeout on the client, the earliest of the two takes effect.
+func (c *Client) ExchangeContext(ctx context.Context, m *Msg, a string) (r *Msg, rtt time.Duration, err error) {
+	var timeout time.Duration
+	if deadline, ok := ctx.Deadline(); !ok {
+		timeout = 0
+	} else {
+		timeout = deadline.Sub(time.Now())
+	}
+	// not passing the context to the underlying calls, as the API does not support
+	// context. For timeouts you should set up Client.Dialer and call Client.Exchange.
+	c.Dialer = &net.Dialer{Timeout: timeout}
+	return c.Exchange(m, a)
+}
diff --git a/vendor/github.com/miekg/dns/clientconfig.go b/vendor/github.com/miekg/dns/clientconfig.go
new file mode 100644
index 0000000000..f13cfa30cb
--- /dev/null
+++ b/vendor/github.com/miekg/dns/clientconfig.go
@@ -0,0 +1,139 @@
+package dns
+
+import (
+	"bufio"
+	"io"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// ClientConfig wraps the contents of the /etc/resolv.conf file.
+type ClientConfig struct {
+	Servers  []string // servers to use
+	Search   []string // suffixes to append to local name
+	Port     string   // what port to use
+	Ndots    int      // number of dots in name to trigger absolute lookup
+	Timeout  int      // seconds before giving up on packet
+	Attempts int      // lost packets before giving up on server, not used in the package dns
+}
+
+// ClientConfigFromFile parses a resolv.conf(5) like file and returns
+// a *ClientConfig.
+func ClientConfigFromFile(resolvconf string) (*ClientConfig, error) {
+	file, err := os.Open(resolvconf)
+	if err != nil {
+		return nil, err
+	}
+	defer file.Close()
+	return ClientConfigFromReader(file)
+}
+
+// ClientConfigFromReader works like ClientConfigFromFile but takes an io.Reader as argument
+func ClientConfigFromReader(resolvconf io.Reader) (*ClientConfig, error) {
+	c := new(ClientConfig)
+	scanner := bufio.NewScanner(resolvconf)
+	c.Servers = make([]string, 0)
+	c.Search = make([]string, 0)
+	c.Port = "53"
+	c.Ndots = 1
+	c.Timeout = 5
+	c.Attempts = 2
+
+	for scanner.Scan() {
+		if err := scanner.Err(); err != nil {
+			return nil, err
+		}
+		line := scanner.Text()
+		f := strings.Fields(line)
+		if len(f) < 1 {
+			continue
+		}
+		switch f[0] {
+		case "nameserver": // add one name server
+			if len(f) > 1 {
+				// One more check: make sure server name is
+				// just an IP address.  Otherwise we need DNS
+				// to look it up.
+				name := f[1]
+				c.Servers = append(c.Servers, name)
+			}
+
+		case "domain": // set search path to just this domain
+			if len(f) > 1 {
+				c.Search = make([]string, 1)
+				c.Search[0] = f[1]
+			} else {
+				c.Search = make([]string, 0)
+			}
+
+		case "search": // set search path to given servers
+			c.Search = make([]string, len(f)-1)
+			for i := 0; i < len(c.Search); i++ {
+				c.Search[i] = f[i+1]
+			}
+
+		case "options": // magic options
+			for i := 1; i < len(f); i++ {
+				s := f[i]
+				switch {
+				case len(s) >= 6 && s[:6] == "ndots:":
+					n, _ := strconv.Atoi(s[6:])
+					if n < 0 {
+						n = 0
+					} else if n > 15 {
+						n = 15
+					}
+					c.Ndots = n
+				case len(s) >= 8 && s[:8] == "timeout:":
+					n, _ := strconv.Atoi(s[8:])
+					if n < 1 {
+						n = 1
+					}
+					c.Timeout = n
+				case len(s) >= 9 && s[:9] == "attempts:":
+					n, _ := strconv.Atoi(s[9:])
+					if n < 1 {
+						n = 1
+					}
+					c.Attempts = n
+				case s == "rotate":
+					/* not imp */
+				}
+			}
+		}
+	}
+	return c, nil
+}
+
+// NameList returns all of the names that should be queried based on the
+// config. It is based off of go's net/dns name building, but it does not
+// check the length of the resulting names.
+func (c *ClientConfig) NameList(name string) []string {
+	// if this domain is already fully qualified, no append needed.
+	if IsFqdn(name) {
+		return []string{name}
+	}
+
+	// Check to see if the name has more labels than Ndots. Do this before making
+	// the domain fully qualified.
+	hasNdots := CountLabel(name) > c.Ndots
+	// Make the domain fully qualified.
+	name = Fqdn(name)
+
+	// Make a list of names based off search.
+	names := []string{}
+
+	// If name has enough dots, try that first.
+	if hasNdots {
+		names = append(names, name)
+	}
+	for _, s := range c.Search {
+		names = append(names, Fqdn(name+s))
+	}
+	// If we didn't have enough dots, try after suffixes.
+	if !hasNdots {
+		names = append(names, name)
+	}
+	return names
+}
diff --git a/vendor/github.com/miekg/dns/compress_generate.go b/vendor/github.com/miekg/dns/compress_generate.go
new file mode 100644
index 0000000000..87fb36f68c
--- /dev/null
+++ b/vendor/github.com/miekg/dns/compress_generate.go
@@ -0,0 +1,188 @@
+//+build ignore
+
+// compression_generate.go is meant to run with go generate. It will use
+// go/{importer,types} to track down all the RR struct types. Then for each type
+// it will look to see if there are (compressible) names, if so it will add that
+// type to compressionLenHelperType and comressionLenSearchType which "fake" the
+// compression so that Len() is fast.
+package main
+
+import (
+	"bytes"
+	"fmt"
+	"go/format"
+	"go/importer"
+	"go/types"
+	"log"
+	"os"
+)
+
+var packageHdr = `
+// Code generated by "go run compress_generate.go"; DO NOT EDIT.
+
+package dns
+
+`
+
+// getTypeStruct will take a type and the package scope, and return the
+// (innermost) struct if the type is considered a RR type (currently defined as
+// those structs beginning with a RR_Header, could be redefined as implementing
+// the RR interface). The bool return value indicates if embedded structs were
+// resolved.
+func getTypeStruct(t types.Type, scope *types.Scope) (*types.Struct, bool) {
+	st, ok := t.Underlying().(*types.Struct)
+	if !ok {
+		return nil, false
+	}
+	if st.Field(0).Type() == scope.Lookup("RR_Header").Type() {
+		return st, false
+	}
+	if st.Field(0).Anonymous() {
+		st, _ := getTypeStruct(st.Field(0).Type(), scope)
+		return st, true
+	}
+	return nil, false
+}
+
+func main() {
+	// Import and type-check the package
+	pkg, err := importer.Default().Import("github.com/miekg/dns")
+	fatalIfErr(err)
+	scope := pkg.Scope()
+
+	var domainTypes []string  // Types that have a domain name in them (either compressible or not).
+	var cdomainTypes []string // Types that have a compressible domain name in them (subset of domainType)
+Names:
+	for _, name := range scope.Names() {
+		o := scope.Lookup(name)
+		if o == nil || !o.Exported() {
+			continue
+		}
+		st, _ := getTypeStruct(o.Type(), scope)
+		if st == nil {
+			continue
+		}
+		if name == "PrivateRR" {
+			continue
+		}
+
+		if scope.Lookup("Type"+o.Name()) == nil && o.Name() != "RFC3597" {
+			log.Fatalf("Constant Type%s does not exist.", o.Name())
+		}
+
+		for i := 1; i < st.NumFields(); i++ {
+			if _, ok := st.Field(i).Type().(*types.Slice); ok {
+				if st.Tag(i) == `dns:"domain-name"` {
+					domainTypes = append(domainTypes, o.Name())
+					continue Names
+				}
+				if st.Tag(i) == `dns:"cdomain-name"` {
+					cdomainTypes = append(cdomainTypes, o.Name())
+					domainTypes = append(domainTypes, o.Name())
+					continue Names
+				}
+				continue
+			}
+
+			switch {
+			case st.Tag(i) == `dns:"domain-name"`:
+				domainTypes = append(domainTypes, o.Name())
+				continue Names
+			case st.Tag(i) == `dns:"cdomain-name"`:
+				cdomainTypes = append(cdomainTypes, o.Name())
+				domainTypes = append(domainTypes, o.Name())
+				continue Names
+			}
+		}
+	}
+
+	b := &bytes.Buffer{}
+	b.WriteString(packageHdr)
+
+	// compressionLenHelperType - all types that have domain-name/cdomain-name can be used for compressing names
+
+	fmt.Fprint(b, "func compressionLenHelperType(c map[string]int, r RR) {\n")
+	fmt.Fprint(b, "switch x := r.(type) {\n")
+	for _, name := range domainTypes {
+		o := scope.Lookup(name)
+		st, _ := getTypeStruct(o.Type(), scope)
+
+		fmt.Fprintf(b, "case *%s:\n", name)
+		for i := 1; i < st.NumFields(); i++ {
+			out := func(s string) { fmt.Fprintf(b, "compressionLenHelper(c, x.%s)\n", st.Field(i).Name()) }
+
+			if _, ok := st.Field(i).Type().(*types.Slice); ok {
+				switch st.Tag(i) {
+				case `dns:"domain-name"`:
+					fallthrough
+				case `dns:"cdomain-name"`:
+					// For HIP we need to slice over the elements in this slice.
+					fmt.Fprintf(b, `for i := range x.%s {
+						compressionLenHelper(c, x.%s[i])
+					}
+`, st.Field(i).Name(), st.Field(i).Name())
+				}
+				continue
+			}
+
+			switch {
+			case st.Tag(i) == `dns:"cdomain-name"`:
+				fallthrough
+			case st.Tag(i) == `dns:"domain-name"`:
+				out(st.Field(i).Name())
+			}
+		}
+	}
+	fmt.Fprintln(b, "}\n}\n\n")
+
+	// compressionLenSearchType - search cdomain-tags types for compressible names.
+
+	fmt.Fprint(b, "func compressionLenSearchType(c map[string]int, r RR) (int, bool) {\n")
+	fmt.Fprint(b, "switch x := r.(type) {\n")
+	for _, name := range cdomainTypes {
+		o := scope.Lookup(name)
+		st, _ := getTypeStruct(o.Type(), scope)
+
+		fmt.Fprintf(b, "case *%s:\n", name)
+		j := 1
+		for i := 1; i < st.NumFields(); i++ {
+			out := func(s string, j int) {
+				fmt.Fprintf(b, "k%d, ok%d := compressionLenSearch(c, x.%s)\n", j, j, st.Field(i).Name())
+			}
+
+			// There are no slice types with names that can be compressed.
+
+			switch {
+			case st.Tag(i) == `dns:"cdomain-name"`:
+				out(st.Field(i).Name(), j)
+				j++
+			}
+		}
+		k := "k1"
+		ok := "ok1"
+		for i := 2; i < j; i++ {
+			k += fmt.Sprintf(" + k%d", i)
+			ok += fmt.Sprintf(" && ok%d", i)
+		}
+		fmt.Fprintf(b, "return %s, %s\n", k, ok)
+	}
+	fmt.Fprintln(b, "}\nreturn 0, false\n}\n\n")
+
+	// gofmt
+	res, err := format.Source(b.Bytes())
+	if err != nil {
+		b.WriteTo(os.Stderr)
+		log.Fatal(err)
+	}
+
+	f, err := os.Create("zcompress.go")
+	fatalIfErr(err)
+	defer f.Close()
+	f.Write(res)
+}
+
+func fatalIfErr(err error) {
+	if err != nil {
+		log.Fatal(err)
+	}
+}
diff --git a/vendor/github.com/miekg/dns/dane.go b/vendor/github.com/miekg/dns/dane.go
new file mode 100644
index 0000000000..8c4a14ef19
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dane.go
@@ -0,0 +1,43 @@
+package dns
+
+import (
+	"crypto/sha256"
+	"crypto/sha512"
+	"crypto/x509"
+	"encoding/hex"
+	"errors"
+)
+
+// CertificateToDANE converts a certificate to a hex string as used in the TLSA or SMIMEA records.
+func CertificateToDANE(selector, matchingType uint8, cert *x509.Certificate) (string, error) {
+	switch matchingType {
+	case 0:
+		switch selector {
+		case 0:
+			return hex.EncodeToString(cert.Raw), nil
+		case 1:
+			return hex.EncodeToString(cert.RawSubjectPublicKeyInfo), nil
+		}
+	case 1:
+		h := sha256.New()
+		switch selector {
+		case 0:
+			h.Write(cert.Raw)
+			return hex.EncodeToString(h.Sum(nil)), nil
+		case 1:
+			h.Write(cert.RawSubjectPublicKeyInfo)
+			return hex.EncodeToString(h.Sum(nil)), nil
+		}
+	case 2:
+		h := sha512.New()
+		switch selector {
+		case 0:
+			h.Write(cert.Raw)
+			return hex.EncodeToString(h.Sum(nil)), nil
+		case 1:
+			h.Write(cert.RawSubjectPublicKeyInfo)
+			return hex.EncodeToString(h.Sum(nil)), nil
+		}
+	}
+	return "", errors.New("dns: bad MatchingType or Selector")
+}
diff --git a/vendor/github.com/miekg/dns/defaults.go b/vendor/github.com/miekg/dns/defaults.go
new file mode 100644
index 0000000000..14e18b0b38
--- /dev/null
+++ b/vendor/github.com/miekg/dns/defaults.go
@@ -0,0 +1,288 @@
+package dns
+
+import (
+	"errors"
+	"net"
+	"strconv"
+)
+
+const hexDigit = "0123456789abcdef"
+
+// Everything is assumed in ClassINET.
+
+// SetReply creates a reply message from a request message.
+func (dns *Msg) SetReply(request *Msg) *Msg {
+	dns.Id = request.Id
+	dns.Response = true
+	dns.Opcode = request.Opcode
+	if dns.Opcode == OpcodeQuery {
+		dns.RecursionDesired = request.RecursionDesired // Copy rd bit
+		dns.CheckingDisabled = request.CheckingDisabled // Copy cd bit
+	}
+	dns.Rcode = RcodeSuccess
+	if len(request.Question) > 0 {
+		dns.Question = make([]Question, 1)
+		dns.Question[0] = request.Question[0]
+	}
+	return dns
+}
+
+// SetQuestion creates a question message, it sets the Question
+// section, generates an Id and sets the RecursionDesired (RD)
+// bit to true.
+func (dns *Msg) SetQuestion(z string, t uint16) *Msg {
+	dns.Id = Id()
+	dns.RecursionDesired = true
+	dns.Question = make([]Question, 1)
+	dns.Question[0] = Question{z, t, ClassINET}
+	return dns
+}
+
+// SetNotify creates a notify message, it sets the Question
+// section, generates an Id and sets the Authoritative (AA)
+// bit to true.
+func (dns *Msg) SetNotify(z string) *Msg {
+	dns.Opcode = OpcodeNotify
+	dns.Authoritative = true
+	dns.Id = Id()
+	dns.Question = make([]Question, 1)
+	dns.Question[0] = Question{z, TypeSOA, ClassINET}
+	return dns
+}
+
+// SetRcode creates an error message suitable for the request.
+func (dns *Msg) SetRcode(request *Msg, rcode int) *Msg {
+	dns.SetReply(request)
+	dns.Rcode = rcode
+	return dns
+}
+
+// SetRcodeFormatError creates a message with FormError set.
+func (dns *Msg) SetRcodeFormatError(request *Msg) *Msg {
+	dns.Rcode = RcodeFormatError
+	dns.Opcode = OpcodeQuery
+	dns.Response = true
+	dns.Authoritative = false
+	dns.Id = request.Id
+	return dns
+}
+
+// SetUpdate makes the message a dynamic update message. It
+// sets the ZONE section to: z, TypeSOA, ClassINET.
+func (dns *Msg) SetUpdate(z string) *Msg {
+	dns.Id = Id()
+	dns.Response = false
+	dns.Opcode = OpcodeUpdate
+	dns.Compress = false // BIND9 cannot handle compression
+	dns.Question = make([]Question, 1)
+	dns.Question[0] = Question{z, TypeSOA, ClassINET}
+	return dns
+}
+
+// SetIxfr creates message for requesting an IXFR.
+func (dns *Msg) SetIxfr(z string, serial uint32, ns, mbox string) *Msg {
+	dns.Id = Id()
+	dns.Question = make([]Question, 1)
+	dns.Ns = make([]RR, 1)
+	s := new(SOA)
+	s.Hdr = RR_Header{z, TypeSOA, ClassINET, defaultTtl, 0}
+	s.Serial = serial
+	s.Ns = ns
+	s.Mbox = mbox
+	dns.Question[0] = Question{z, TypeIXFR, ClassINET}
+	dns.Ns[0] = s
+	return dns
+}
+
+// SetAxfr creates message for requesting an AXFR.
+func (dns *Msg) SetAxfr(z string) *Msg {
+	dns.Id = Id()
+	dns.Question = make([]Question, 1)
+	dns.Question[0] = Question{z, TypeAXFR, ClassINET}
+	return dns
+}
+
+// SetTsig appends a TSIG RR to the message.
+// This is only a skeleton TSIG RR that is added as the last RR in the
+// additional section. The Tsig is calculated when the message is being send.
+func (dns *Msg) SetTsig(z, algo string, fudge uint16, timesigned int64) *Msg {
+	t := new(TSIG)
+	t.Hdr = RR_Header{z, TypeTSIG, ClassANY, 0, 0}
+	t.Algorithm = algo
+	t.Fudge = fudge
+	t.TimeSigned = uint64(timesigned)
+	t.OrigId = dns.Id
+	dns.Extra = append(dns.Extra, t)
+	return dns
+}
+
+// SetEdns0 appends a EDNS0 OPT RR to the message.
+// TSIG should always the last RR in a message.
+func (dns *Msg) SetEdns0(udpsize uint16, do bool) *Msg {
+	e := new(OPT)
+	e.Hdr.Name = "."
+	e.Hdr.Rrtype = TypeOPT
+	e.SetUDPSize(udpsize)
+	if do {
+		e.SetDo()
+	}
+	dns.Extra = append(dns.Extra, e)
+	return dns
+}
+
+// IsTsig checks if the message has a TSIG record as the last record
+// in the additional section. It returns the TSIG record found or nil.
+func (dns *Msg) IsTsig() *TSIG {
+	if len(dns.Extra) > 0 {
+		if dns.Extra[len(dns.Extra)-1].Header().Rrtype == TypeTSIG {
+			return dns.Extra[len(dns.Extra)-1].(*TSIG)
+		}
+	}
+	return nil
+}
+
+// IsEdns0 checks if the message has a EDNS0 (OPT) record, any EDNS0
+// record in the additional section will do. It returns the OPT record
+// found or nil.
+func (dns *Msg) IsEdns0() *OPT {
+	// EDNS0 is at the end of the additional section, start there.
+	// We might want to change this to *only* look at the last two
+	// records. So we see TSIG and/or OPT - this a slightly bigger
+	// change though.
+	for i := len(dns.Extra) - 1; i >= 0; i-- {
+		if dns.Extra[i].Header().Rrtype == TypeOPT {
+			return dns.Extra[i].(*OPT)
+		}
+	}
+	return nil
+}
+
+// IsDomainName checks if s is a valid domain name, it returns the number of
+// labels and true, when a domain name is valid.  Note that non fully qualified
+// domain name is considered valid, in this case the last label is counted in
+// the number of labels.  When false is returned the number of labels is not
+// defined.  Also note that this function is extremely liberal; almost any
+// string is a valid domain name as the DNS is 8 bit protocol. It checks if each
+// label fits in 63 characters, but there is no length check for the entire
+// string s. I.e.  a domain name longer than 255 characters is considered valid.
+func IsDomainName(s string) (labels int, ok bool) {
+	_, labels, err := packDomainName(s, nil, 0, nil, false)
+	return labels, err == nil
+}
+
+// IsSubDomain checks if child is indeed a child of the parent. If child and parent
+// are the same domain true is returned as well.
+func IsSubDomain(parent, child string) bool {
+	// Entire child is contained in parent
+	return CompareDomainName(parent, child) == CountLabel(parent)
+}
+
+// IsMsg sanity checks buf and returns an error if it isn't a valid DNS packet.
+// The checking is performed on the binary payload.
+func IsMsg(buf []byte) error {
+	// Header
+	if len(buf) < 12 {
+		return errors.New("dns: bad message header")
+	}
+	// Header: Opcode
+	// TODO(miek): more checks here, e.g. check all header bits.
+	return nil
+}
+
+// IsFqdn checks if a domain name is fully qualified.
+func IsFqdn(s string) bool {
+	l := len(s)
+	if l == 0 {
+		return false
+	}
+	return s[l-1] == '.'
+}
+
+// IsRRset checks if a set of RRs is a valid RRset as defined by RFC 2181.
+// This means the RRs need to have the same type, name, and class. Returns true
+// if the RR set is valid, otherwise false.
+func IsRRset(rrset []RR) bool {
+	if len(rrset) == 0 {
+		return false
+	}
+	if len(rrset) == 1 {
+		return true
+	}
+	rrHeader := rrset[0].Header()
+	rrType := rrHeader.Rrtype
+	rrClass := rrHeader.Class
+	rrName := rrHeader.Name
+
+	for _, rr := range rrset[1:] {
+		curRRHeader := rr.Header()
+		if curRRHeader.Rrtype != rrType || curRRHeader.Class != rrClass || curRRHeader.Name != rrName {
+			// Mismatch between the records, so this is not a valid rrset for
+			//signing/verifying
+			return false
+		}
+	}
+
+	return true
+}
+
+// Fqdn return the fully qualified domain name from s.
+// If s is already fully qualified, it behaves as the identity function.
+func Fqdn(s string) string {
+	if IsFqdn(s) {
+		return s
+	}
+	return s + "."
+}
+
+// Copied from the official Go code.
+
+// ReverseAddr returns the in-addr.arpa. or ip6.arpa. hostname of the IP
+// address suitable for reverse DNS (PTR) record lookups or an error if it fails
+// to parse the IP address.
+func ReverseAddr(addr string) (arpa string, err error) {
+	ip := net.ParseIP(addr)
+	if ip == nil {
+		return "", &Error{err: "unrecognized address: " + addr}
+	}
+	if ip.To4() != nil {
+		return strconv.Itoa(int(ip[15])) + "." + strconv.Itoa(int(ip[14])) + "." + strconv.Itoa(int(ip[13])) + "." +
+			strconv.Itoa(int(ip[12])) + ".in-addr.arpa.", nil
+	}
+	// Must be IPv6
+	buf := make([]byte, 0, len(ip)*4+len("ip6.arpa."))
+	// Add it, in reverse, to the buffer
+	for i := len(ip) - 1; i >= 0; i-- {
+		v := ip[i]
+		buf = append(buf, hexDigit[v&0xF])
+		buf = append(buf, '.')
+		buf = append(buf, hexDigit[v>>4])
+		buf = append(buf, '.')
+	}
+	// Append "ip6.arpa." and return (buf already has the final .)
+	buf = append(buf, "ip6.arpa."...)
+	return string(buf), nil
+}
+
+// String returns the string representation for the type t.
+func (t Type) String() string {
+	if t1, ok := TypeToString[uint16(t)]; ok {
+		return t1
+	}
+	return "TYPE" + strconv.Itoa(int(t))
+}
+
+// String returns the string representation for the class c.
+func (c Class) String() string {
+	if s, ok := ClassToString[uint16(c)]; ok {
+		// Only emit mnemonics when they are unambiguous, specically ANY is in both.
+		if _, ok := StringToType[s]; !ok {
+			return s
+		}
+	}
+	return "CLASS" + strconv.Itoa(int(c))
+}
+
+// String returns the string representation for the name n.
+func (n Name) String() string {
+	return sprintName(string(n))
+}
diff --git a/vendor/github.com/miekg/dns/dns.go b/vendor/github.com/miekg/dns/dns.go
new file mode 100644
index 0000000000..5133eac727
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dns.go
@@ -0,0 +1,107 @@
+package dns
+
+import "strconv"
+
+const (
+	year68     = 1 << 31 // For RFC1982 (Serial Arithmetic) calculations in 32 bits.
+	defaultTtl = 3600    // Default internal TTL.
+
+	// DefaultMsgSize is the standard default for messages larger than 512 bytes.
+	DefaultMsgSize = 4096
+	// MinMsgSize is the minimal size of a DNS packet.
+	MinMsgSize = 512
+	// MaxMsgSize is the largest possible DNS packet.
+	MaxMsgSize = 65535
+)
+
+// Error represents a DNS error.
+type Error struct{ err string }
+
+func (e *Error) Error() string {
+	if e == nil {
+		return "dns: <nil>"
+	}
+	return "dns: " + e.err
+}
+
+// An RR represents a resource record.
+type RR interface {
+	// Header returns the header of an resource record. The header contains
+	// everything up to the rdata.
+	Header() *RR_Header
+	// String returns the text representation of the resource record.
+	String() string
+
+	// copy returns a copy of the RR
+	copy() RR
+	// len returns the length (in octets) of the uncompressed RR in wire format.
+	len() int
+	// pack packs an RR into wire format.
+	pack([]byte, int, map[string]int, bool) (int, error)
+}
+
+// RR_Header is the header all DNS resource records share.
+type RR_Header struct {
+	Name     string `dns:"cdomain-name"`
+	Rrtype   uint16
+	Class    uint16
+	Ttl      uint32
+	Rdlength uint16 // Length of data after header.
+}
+
+// Header returns itself. This is here to make RR_Header implements the RR interface.
+func (h *RR_Header) Header() *RR_Header { return h }
+
+// Just to implement the RR interface.
+func (h *RR_Header) copy() RR { return nil }
+
+func (h *RR_Header) copyHeader() *RR_Header {
+	r := new(RR_Header)
+	r.Name = h.Name
+	r.Rrtype = h.Rrtype
+	r.Class = h.Class
+	r.Ttl = h.Ttl
+	r.Rdlength = h.Rdlength
+	return r
+}
+
+func (h *RR_Header) String() string {
+	var s string
+
+	if h.Rrtype == TypeOPT {
+		s = ";"
+		// and maybe other things
+	}
+
+	s += sprintName(h.Name) + "\t"
+	s += strconv.FormatInt(int64(h.Ttl), 10) + "\t"
+	s += Class(h.Class).String() + "\t"
+	s += Type(h.Rrtype).String() + "\t"
+	return s
+}
+
+func (h *RR_Header) len() int {
+	l := len(h.Name) + 1
+	l += 10 // rrtype(2) + class(2) + ttl(4) + rdlength(2)
+	return l
+}
+
+// ToRFC3597 converts a known RR to the unknown RR representation from RFC 3597.
+func (rr *RFC3597) ToRFC3597(r RR) error {
+	buf := make([]byte, r.len()*2)
+	off, err := PackRR(r, buf, 0, nil, false)
+	if err != nil {
+		return err
+	}
+	buf = buf[:off]
+	if int(r.Header().Rdlength) > off {
+		return ErrBuf
+	}
+
+	rfc3597, _, err := unpackRFC3597(*r.Header(), buf, off-int(r.Header().Rdlength))
+	if err != nil {
+		return err
+	}
+	*rr = *rfc3597.(*RFC3597)
+	return nil
+}
diff --git a/vendor/github.com/miekg/dns/dnssec.go b/vendor/github.com/miekg/dns/dnssec.go
new file mode 100644
index 0000000000..ac9fdd45ee
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dnssec.go
@@ -0,0 +1,784 @@
+package dns
+
+import (
+	"bytes"
+	"crypto"
+	"crypto/dsa"
+	"crypto/ecdsa"
+	"crypto/elliptic"
+	_ "crypto/md5"
+	"crypto/rand"
+	"crypto/rsa"
+	_ "crypto/sha1"
+	_ "crypto/sha256"
+	_ "crypto/sha512"
+	"encoding/asn1"
+	"encoding/binary"
+	"encoding/hex"
+	"math/big"
+	"sort"
+	"strings"
+	"time"
+
+	"golang.org/x/crypto/ed25519"
+)
+
+// DNSSEC encryption algorithm codes.
+const (
+	_ uint8 = iota
+	RSAMD5
+	DH
+	DSA
+	_ // Skip 4, RFC 6725, section 2.1
+	RSASHA1
+	DSANSEC3SHA1
+	RSASHA1NSEC3SHA1
+	RSASHA256
+	_ // Skip 9, RFC 6725, section 2.1
+	RSASHA512
+	_ // Skip 11, RFC 6725, section 2.1
+	ECCGOST
+	ECDSAP256SHA256
+	ECDSAP384SHA384
+	ED25519
+	ED448
+	INDIRECT   uint8 = 252
+	PRIVATEDNS uint8 = 253 // Private (experimental keys)
+	PRIVATEOID uint8 = 254
+)
+
+// AlgorithmToString is a map of algorithm IDs to algorithm names.
+var AlgorithmToString = map[uint8]string{
+	RSAMD5:           "RSAMD5",
+	DH:               "DH",
+	DSA:              "DSA",
+	RSASHA1:          "RSASHA1",
+	DSANSEC3SHA1:     "DSA-NSEC3-SHA1",
+	RSASHA1NSEC3SHA1: "RSASHA1-NSEC3-SHA1",
+	RSASHA256:        "RSASHA256",
+	RSASHA512:        "RSASHA512",
+	ECCGOST:          "ECC-GOST",
+	ECDSAP256SHA256:  "ECDSAP256SHA256",
+	ECDSAP384SHA384:  "ECDSAP384SHA384",
+	ED25519:          "ED25519",
+	ED448:            "ED448",
+	INDIRECT:         "INDIRECT",
+	PRIVATEDNS:       "PRIVATEDNS",
+	PRIVATEOID:       "PRIVATEOID",
+}
+
+// StringToAlgorithm is the reverse of AlgorithmToString.
+var StringToAlgorithm = reverseInt8(AlgorithmToString)
+
+// AlgorithmToHash is a map of algorithm crypto hash IDs to crypto.Hash's.
+var AlgorithmToHash = map[uint8]crypto.Hash{
+	RSAMD5:           crypto.MD5, // Deprecated in RFC 6725
+	RSASHA1:          crypto.SHA1,
+	RSASHA1NSEC3SHA1: crypto.SHA1,
+	RSASHA256:        crypto.SHA256,
+	ECDSAP256SHA256:  crypto.SHA256,
+	ECDSAP384SHA384:  crypto.SHA384,
+	RSASHA512:        crypto.SHA512,
+	ED25519:          crypto.Hash(0),
+}
+
+// DNSSEC hashing algorithm codes.
+const (
+	_      uint8 = iota
+	SHA1         // RFC 4034
+	SHA256       // RFC 4509
+	GOST94       // RFC 5933
+	SHA384       // Experimental
+	SHA512       // Experimental
+)
+
+// HashToString is a map of hash IDs to names.
+var HashToString = map[uint8]string{
+	SHA1:   "SHA1",
+	SHA256: "SHA256",
+	GOST94: "GOST94",
+	SHA384: "SHA384",
+	SHA512: "SHA512",
+}
+
+// StringToHash is a map of names to hash IDs.
+var StringToHash = reverseInt8(HashToString)
+
+// DNSKEY flag values.
+const (
+	SEP    = 1
+	REVOKE = 1 << 7
+	ZONE   = 1 << 8
+)
+
+// The RRSIG needs to be converted to wireformat with some of the rdata (the signature) missing.
+type rrsigWireFmt struct {
+	TypeCovered uint16
+	Algorithm   uint8
+	Labels      uint8
+	OrigTtl     uint32
+	Expiration  uint32
+	Inception   uint32
+	KeyTag      uint16
+	SignerName  string `dns:"domain-name"`
+	/* No Signature */
+}
+
+// Used for converting DNSKEY's rdata to wirefmt.
+type dnskeyWireFmt struct {
+	Flags     uint16
+	Protocol  uint8
+	Algorithm uint8
+	PublicKey string `dns:"base64"`
+	/* Nothing is left out */
+}
+
+func divRoundUp(a, b int) int {
+	return (a + b - 1) / b
+}
+
+// KeyTag calculates the keytag (or key-id) of the DNSKEY.
+func (k *DNSKEY) KeyTag() uint16 {
+	if k == nil {
+		return 0
+	}
+	var keytag int
+	switch k.Algorithm {
+	case RSAMD5:
+		// Look at the bottom two bytes of the modules, which the last
+		// item in the pubkey. We could do this faster by looking directly
+		// at the base64 values. But I'm lazy.
+		modulus, _ := fromBase64([]byte(k.PublicKey))
+		if len(modulus) > 1 {
+			x := binary.BigEndian.Uint16(modulus[len(modulus)-2:])
+			keytag = int(x)
+		}
+	default:
+		keywire := new(dnskeyWireFmt)
+		keywire.Flags = k.Flags
+		keywire.Protocol = k.Protocol
+		keywire.Algorithm = k.Algorithm
+		keywire.PublicKey = k.PublicKey
+		wire := make([]byte, DefaultMsgSize)
+		n, err := packKeyWire(keywire, wire)
+		if err != nil {
+			return 0
+		}
+		wire = wire[:n]
+		for i, v := range wire {
+			if i&1 != 0 {
+				keytag += int(v) // must be larger than uint32
+			} else {
+				keytag += int(v) << 8
+			}
+		}
+		keytag += (keytag >> 16) & 0xFFFF
+		keytag &= 0xFFFF
+	}
+	return uint16(keytag)
+}
+
+// ToDS converts a DNSKEY record to a DS record.
+func (k *DNSKEY) ToDS(h uint8) *DS {
+	if k == nil {
+		return nil
+	}
+	ds := new(DS)
+	ds.Hdr.Name = k.Hdr.Name
+	ds.Hdr.Class = k.Hdr.Class
+	ds.Hdr.Rrtype = TypeDS
+	ds.Hdr.Ttl = k.Hdr.Ttl
+	ds.Algorithm = k.Algorithm
+	ds.DigestType = h
+	ds.KeyTag = k.KeyTag()
+
+	keywire := new(dnskeyWireFmt)
+	keywire.Flags = k.Flags
+	keywire.Protocol = k.Protocol
+	keywire.Algorithm = k.Algorithm
+	keywire.PublicKey = k.PublicKey
+	wire := make([]byte, DefaultMsgSize)
+	n, err := packKeyWire(keywire, wire)
+	if err != nil {
+		return nil
+	}
+	wire = wire[:n]
+
+	owner := make([]byte, 255)
+	off, err1 := PackDomainName(strings.ToLower(k.Hdr.Name), owner, 0, nil, false)
+	if err1 != nil {
+		return nil
+	}
+	owner = owner[:off]
+	// RFC4034:
+	// digest = digest_algorithm( DNSKEY owner name | DNSKEY RDATA);
+	// "|" denotes concatenation
+	// DNSKEY RDATA = Flags | Protocol | Algorithm | Public Key.
+
+	var hash crypto.Hash
+	switch h {
+	case SHA1:
+		hash = crypto.SHA1
+	case SHA256:
+		hash = crypto.SHA256
+	case SHA384:
+		hash = crypto.SHA384
+	case SHA512:
+		hash = crypto.SHA512
+	default:
+		return nil
+	}
+
+	s := hash.New()
+	s.Write(owner)
+	s.Write(wire)
+	ds.Digest = hex.EncodeToString(s.Sum(nil))
+	return ds
+}
+
+// ToCDNSKEY converts a DNSKEY record to a CDNSKEY record.
+func (k *DNSKEY) ToCDNSKEY() *CDNSKEY {
+	c := &CDNSKEY{DNSKEY: *k}
+	c.Hdr = *k.Hdr.copyHeader()
+	c.Hdr.Rrtype = TypeCDNSKEY
+	return c
+}
+
+// ToCDS converts a DS record to a CDS record.
+func (d *DS) ToCDS() *CDS {
+	c := &CDS{DS: *d}
+	c.Hdr = *d.Hdr.copyHeader()
+	c.Hdr.Rrtype = TypeCDS
+	return c
+}
+
+// Sign signs an RRSet. The signature needs to be filled in with the values:
+// Inception, Expiration, KeyTag, SignerName and Algorithm.  The rest is copied
+// from the RRset. Sign returns a non-nill error when the signing went OK.
+// There is no check if RRSet is a proper (RFC 2181) RRSet.  If OrigTTL is non
+// zero, it is used as-is, otherwise the TTL of the RRset is used as the
+// OrigTTL.
+func (rr *RRSIG) Sign(k crypto.Signer, rrset []RR) error {
+	if k == nil {
+		return ErrPrivKey
+	}
+	// s.Inception and s.Expiration may be 0 (rollover etc.), the rest must be set
+	if rr.KeyTag == 0 || len(rr.SignerName) == 0 || rr.Algorithm == 0 {
+		return ErrKey
+	}
+
+	rr.Hdr.Rrtype = TypeRRSIG
+	rr.Hdr.Name = rrset[0].Header().Name
+	rr.Hdr.Class = rrset[0].Header().Class
+	if rr.OrigTtl == 0 { // If set don't override
+		rr.OrigTtl = rrset[0].Header().Ttl
+	}
+	rr.TypeCovered = rrset[0].Header().Rrtype
+	rr.Labels = uint8(CountLabel(rrset[0].Header().Name))
+
+	if strings.HasPrefix(rrset[0].Header().Name, "*") {
+		rr.Labels-- // wildcard, remove from label count
+	}
+
+	sigwire := new(rrsigWireFmt)
+	sigwire.TypeCovered = rr.TypeCovered
+	sigwire.Algorithm = rr.Algorithm
+	sigwire.Labels = rr.Labels
+	sigwire.OrigTtl = rr.OrigTtl
+	sigwire.Expiration = rr.Expiration
+	sigwire.Inception = rr.Inception
+	sigwire.KeyTag = rr.KeyTag
+	// For signing, lowercase this name
+	sigwire.SignerName = strings.ToLower(rr.SignerName)
+
+	// Create the desired binary blob
+	signdata := make([]byte, DefaultMsgSize)
+	n, err := packSigWire(sigwire, signdata)
+	if err != nil {
+		return err
+	}
+	signdata = signdata[:n]
+	wire, err := rawSignatureData(rrset, rr)
+	if err != nil {
+		return err
+	}
+
+	hash, ok := AlgorithmToHash[rr.Algorithm]
+	if !ok {
+		return ErrAlg
+	}
+
+	switch rr.Algorithm {
+	case ED25519:
+		// ed25519 signs the raw message and performs hashing internally.
+		// All other supported signature schemes operate over the pre-hashed
+		// message, and thus ed25519 must be handled separately here.
+		//
+		// The raw message is passed directly into sign and crypto.Hash(0) is
+		// used to signal to the crypto.Signer that the data has not been hashed.
+		signature, err := sign(k, append(signdata, wire...), crypto.Hash(0), rr.Algorithm)
+		if err != nil {
+			return err
+		}
+
+		rr.Signature = toBase64(signature)
+	default:
+		h := hash.New()
+		h.Write(signdata)
+		h.Write(wire)
+
+		signature, err := sign(k, h.Sum(nil), hash, rr.Algorithm)
+		if err != nil {
+			return err
+		}
+
+		rr.Signature = toBase64(signature)
+	}
+
+	return nil
+}
+
+func sign(k crypto.Signer, hashed []byte, hash crypto.Hash, alg uint8) ([]byte, error) {
+	signature, err := k.Sign(rand.Reader, hashed, hash)
+	if err != nil {
+		return nil, err
+	}
+
+	switch alg {
+	case RSASHA1, RSASHA1NSEC3SHA1, RSASHA256, RSASHA512:
+		return signature, nil
+
+	case ECDSAP256SHA256, ECDSAP384SHA384:
+		ecdsaSignature := &struct {
+			R, S *big.Int
+		}{}
+		if _, err := asn1.Unmarshal(signature, ecdsaSignature); err != nil {
+			return nil, err
+		}
+
+		var intlen int
+		switch alg {
+		case ECDSAP256SHA256:
+			intlen = 32
+		case ECDSAP384SHA384:
+			intlen = 48
+		}
+
+		signature := intToBytes(ecdsaSignature.R, intlen)
+		signature = append(signature, intToBytes(ecdsaSignature.S, intlen)...)
+		return signature, nil
+
+	// There is no defined interface for what a DSA backed crypto.Signer returns
+	case DSA, DSANSEC3SHA1:
+		// 	t := divRoundUp(divRoundUp(p.PublicKey.Y.BitLen(), 8)-64, 8)
+		// 	signature := []byte{byte(t)}
+		// 	signature = append(signature, intToBytes(r1, 20)...)
+		// 	signature = append(signature, intToBytes(s1, 20)...)
+		// 	rr.Signature = signature
+
+	case ED25519:
+		return signature, nil
+	}
+
+	return nil, ErrAlg
+}
+
+// Verify validates an RRSet with the signature and key. This is only the
+// cryptographic test, the signature validity period must be checked separately.
+// This function copies the rdata of some RRs (to lowercase domain names) for the validation to work.
+func (rr *RRSIG) Verify(k *DNSKEY, rrset []RR) error {
+	// First the easy checks
+	if !IsRRset(rrset) {
+		return ErrRRset
+	}
+	if rr.KeyTag != k.KeyTag() {
+		return ErrKey
+	}
+	if rr.Hdr.Class != k.Hdr.Class {
+		return ErrKey
+	}
+	if rr.Algorithm != k.Algorithm {
+		return ErrKey
+	}
+	if strings.ToLower(rr.SignerName) != strings.ToLower(k.Hdr.Name) {
+		return ErrKey
+	}
+	if k.Protocol != 3 {
+		return ErrKey
+	}
+
+	// IsRRset checked that we have at least one RR and that the RRs in
+	// the set have consistent type, class, and name. Also check that type and
+	// class matches the RRSIG record.
+	if rrset[0].Header().Class != rr.Hdr.Class {
+		return ErrRRset
+	}
+	if rrset[0].Header().Rrtype != rr.TypeCovered {
+		return ErrRRset
+	}
+
+	// RFC 4035 5.3.2.  Reconstructing the Signed Data
+	// Copy the sig, except the rrsig data
+	sigwire := new(rrsigWireFmt)
+	sigwire.TypeCovered = rr.TypeCovered
+	sigwire.Algorithm = rr.Algorithm
+	sigwire.Labels = rr.Labels
+	sigwire.OrigTtl = rr.OrigTtl
+	sigwire.Expiration = rr.Expiration
+	sigwire.Inception = rr.Inception
+	sigwire.KeyTag = rr.KeyTag
+	sigwire.SignerName = strings.ToLower(rr.SignerName)
+	// Create the desired binary blob
+	signeddata := make([]byte, DefaultMsgSize)
+	n, err := packSigWire(sigwire, signeddata)
+	if err != nil {
+		return err
+	}
+	signeddata = signeddata[:n]
+	wire, err := rawSignatureData(rrset, rr)
+	if err != nil {
+		return err
+	}
+
+	sigbuf := rr.sigBuf()           // Get the binary signature data
+	if rr.Algorithm == PRIVATEDNS { // PRIVATEOID
+		// TODO(miek)
+		// remove the domain name and assume its ours?
+	}
+
+	hash, ok := AlgorithmToHash[rr.Algorithm]
+	if !ok {
+		return ErrAlg
+	}
+
+	switch rr.Algorithm {
+	case RSASHA1, RSASHA1NSEC3SHA1, RSASHA256, RSASHA512, RSAMD5:
+		// TODO(mg): this can be done quicker, ie. cache the pubkey data somewhere??
+		pubkey := k.publicKeyRSA() // Get the key
+		if pubkey == nil {
+			return ErrKey
+		}
+
+		h := hash.New()
+		h.Write(signeddata)
+		h.Write(wire)
+		return rsa.VerifyPKCS1v15(pubkey, hash, h.Sum(nil), sigbuf)
+
+	case ECDSAP256SHA256, ECDSAP384SHA384:
+		pubkey := k.publicKeyECDSA()
+		if pubkey == nil {
+			return ErrKey
+		}
+
+		// Split sigbuf into the r and s coordinates
+		r := new(big.Int).SetBytes(sigbuf[:len(sigbuf)/2])
+		s := new(big.Int).SetBytes(sigbuf[len(sigbuf)/2:])
+
+		h := hash.New()
+		h.Write(signeddata)
+		h.Write(wire)
+		if ecdsa.Verify(pubkey, h.Sum(nil), r, s) {
+			return nil
+		}
+		return ErrSig
+
+	case ED25519:
+		pubkey := k.publicKeyED25519()
+		if pubkey == nil {
+			return ErrKey
+		}
+
+		if ed25519.Verify(pubkey, append(signeddata, wire...), sigbuf) {
+			return nil
+		}
+		return ErrSig
+
+	default:
+		return ErrAlg
+	}
+}
+
+// ValidityPeriod uses RFC1982 serial arithmetic to calculate
+// if a signature period is valid. If t is the zero time, the
+// current time is taken other t is. Returns true if the signature
+// is valid at the given time, otherwise returns false.
+func (rr *RRSIG) ValidityPeriod(t time.Time) bool {
+	var utc int64
+	if t.IsZero() {
+		utc = time.Now().UTC().Unix()
+	} else {
+		utc = t.UTC().Unix()
+	}
+	modi := (int64(rr.Inception) - utc) / year68
+	mode := (int64(rr.Expiration) - utc) / year68
+	ti := int64(rr.Inception) + (modi * year68)
+	te := int64(rr.Expiration) + (mode * year68)
+	return ti <= utc && utc <= te
+}
+
+// Return the signatures base64 encodedig sigdata as a byte slice.
+func (rr *RRSIG) sigBuf() []byte {
+	sigbuf, err := fromBase64([]byte(rr.Signature))
+	if err != nil {
+		return nil
+	}
+	return sigbuf
+}
+
+// publicKeyRSA returns the RSA public key from a DNSKEY record.
+func (k *DNSKEY) publicKeyRSA() *rsa.PublicKey {
+	keybuf, err := fromBase64([]byte(k.PublicKey))
+	if err != nil {
+		return nil
+	}
+
+	// RFC 2537/3110, section 2. RSA Public KEY Resource Records
+	// Length is in the 0th byte, unless its zero, then it
+	// it in bytes 1 and 2 and its a 16 bit number
+	explen := uint16(keybuf[0])
+	keyoff := 1
+	if explen == 0 {
+		explen = uint16(keybuf[1])<<8 | uint16(keybuf[2])
+		keyoff = 3
+	}
+	pubkey := new(rsa.PublicKey)
+
+	pubkey.N = big.NewInt(0)
+	shift := uint64((explen - 1) * 8)
+	expo := uint64(0)
+	for i := int(explen - 1); i > 0; i-- {
+		expo += uint64(keybuf[keyoff+i]) << shift
+		shift -= 8
+	}
+	// Remainder
+	expo += uint64(keybuf[keyoff])
+	if expo > (2<<31)+1 {
+		// Larger expo than supported.
+		// println("dns: F5 primes (or larger) are not supported")
+		return nil
+	}
+	pubkey.E = int(expo)
+
+	pubkey.N.SetBytes(keybuf[keyoff+int(explen):])
+	return pubkey
+}
+
+// publicKeyECDSA returns the Curve public key from the DNSKEY record.
+func (k *DNSKEY) publicKeyECDSA() *ecdsa.PublicKey {
+	keybuf, err := fromBase64([]byte(k.PublicKey))
+	if err != nil {
+		return nil
+	}
+	pubkey := new(ecdsa.PublicKey)
+	switch k.Algorithm {
+	case ECDSAP256SHA256:
+		pubkey.Curve = elliptic.P256()
+		if len(keybuf) != 64 {
+			// wrongly encoded key
+			return nil
+		}
+	case ECDSAP384SHA384:
+		pubkey.Curve = elliptic.P384()
+		if len(keybuf) != 96 {
+			// Wrongly encoded key
+			return nil
+		}
+	}
+	pubkey.X = big.NewInt(0)
+	pubkey.X.SetBytes(keybuf[:len(keybuf)/2])
+	pubkey.Y = big.NewInt(0)
+	pubkey.Y.SetBytes(keybuf[len(keybuf)/2:])
+	return pubkey
+}
+
+func (k *DNSKEY) publicKeyDSA() *dsa.PublicKey {
+	keybuf, err := fromBase64([]byte(k.PublicKey))
+	if err != nil {
+		return nil
+	}
+	if len(keybuf) < 22 {
+		return nil
+	}
+	t, keybuf := int(keybuf[0]), keybuf[1:]
+	size := 64 + t*8
+	q, keybuf := keybuf[:20], keybuf[20:]
+	if len(keybuf) != 3*size {
+		return nil
+	}
+	p, keybuf := keybuf[:size], keybuf[size:]
+	g, y := keybuf[:size], keybuf[size:]
+	pubkey := new(dsa.PublicKey)
+	pubkey.Parameters.Q = big.NewInt(0).SetBytes(q)
+	pubkey.Parameters.P = big.NewInt(0).SetBytes(p)
+	pubkey.Parameters.G = big.NewInt(0).SetBytes(g)
+	pubkey.Y = big.NewInt(0).SetBytes(y)
+	return pubkey
+}
+
+func (k *DNSKEY) publicKeyED25519() ed25519.PublicKey {
+	keybuf, err := fromBase64([]byte(k.PublicKey))
+	if err != nil {
+		return nil
+	}
+	if len(keybuf) != ed25519.PublicKeySize {
+		return nil
+	}
+	return keybuf
+}
+
+type wireSlice [][]byte
+
+func (p wireSlice) Len() int      { return len(p) }
+func (p wireSlice) Swap(i, j int) { p[i], p[j] = p[j], p[i] }
+func (p wireSlice) Less(i, j int) bool {
+	_, ioff, _ := UnpackDomainName(p[i], 0)
+	_, joff, _ := UnpackDomainName(p[j], 0)
+	return bytes.Compare(p[i][ioff+10:], p[j][joff+10:]) < 0
+}
+
+// Return the raw signature data.
+func rawSignatureData(rrset []RR, s *RRSIG) (buf []byte, err error) {
+	wires := make(wireSlice, len(rrset))
+	for i, r := range rrset {
+		r1 := r.copy()
+		r1.Header().Ttl = s.OrigTtl
+		labels := SplitDomainName(r1.Header().Name)
+		// 6.2. Canonical RR Form. (4) - wildcards
+		if len(labels) > int(s.Labels) {
+			// Wildcard
+			r1.Header().Name = "*." + strings.Join(labels[len(labels)-int(s.Labels):], ".") + "."
+		}
+		// RFC 4034: 6.2.  Canonical RR Form. (2) - domain name to lowercase
+		r1.Header().Name = strings.ToLower(r1.Header().Name)
+		// 6.2. Canonical RR Form. (3) - domain rdata to lowercase.
+		//   NS, MD, MF, CNAME, SOA, MB, MG, MR, PTR,
+		//   HINFO, MINFO, MX, RP, AFSDB, RT, SIG, PX, NXT, NAPTR, KX,
+		//   SRV, DNAME, A6
+		//
+		// RFC 6840 - Clarifications and Implementation Notes for DNS Security (DNSSEC):
+		//	Section 6.2 of [RFC4034] also erroneously lists HINFO as a record
+		//	that needs conversion to lowercase, and twice at that.  Since HINFO
+		//	records contain no domain names, they are not subject to case
+		//	conversion.
+		switch x := r1.(type) {
+		case *NS:
+			x.Ns = strings.ToLower(x.Ns)
+		case *MD:
+			x.Md = strings.ToLower(x.Md)
+		case *MF:
+			x.Mf = strings.ToLower(x.Mf)
+		case *CNAME:
+			x.Target = strings.ToLower(x.Target)
+		case *SOA:
+			x.Ns = strings.ToLower(x.Ns)
+			x.Mbox = strings.ToLower(x.Mbox)
+		case *MB:
+			x.Mb = strings.ToLower(x.Mb)
+		case *MG:
+			x.Mg = strings.ToLower(x.Mg)
+		case *MR:
+			x.Mr = strings.ToLower(x.Mr)
+		case *PTR:
+			x.Ptr = strings.ToLower(x.Ptr)
+		case *MINFO:
+			x.Rmail = strings.ToLower(x.Rmail)
+			x.Email = strings.ToLower(x.Email)
+		case *MX:
+			x.Mx = strings.ToLower(x.Mx)
+		case *RP:
+			x.Mbox = strings.ToLower(x.Mbox)
+			x.Txt = strings.ToLower(x.Txt)
+		case *AFSDB:
+			x.Hostname = strings.ToLower(x.Hostname)
+		case *RT:
+			x.Host = strings.ToLower(x.Host)
+		case *SIG:
+			x.SignerName = strings.ToLower(x.SignerName)
+		case *PX:
+			x.Map822 = strings.ToLower(x.Map822)
+			x.Mapx400 = strings.ToLower(x.Mapx400)
+		case *NAPTR:
+			x.Replacement = strings.ToLower(x.Replacement)
+		case *KX:
+			x.Exchanger = strings.ToLower(x.Exchanger)
+		case *SRV:
+			x.Target = strings.ToLower(x.Target)
+		case *DNAME:
+			x.Target = strings.ToLower(x.Target)
+		}
+		// 6.2. Canonical RR Form. (5) - origTTL
+		wire := make([]byte, r1.len()+1) // +1 to be safe(r)
+		off, err1 := PackRR(r1, wire, 0, nil, false)
+		if err1 != nil {
+			return nil, err1
+		}
+		wire = wire[:off]
+		wires[i] = wire
+	}
+	sort.Sort(wires)
+	for i, wire := range wires {
+		if i > 0 && bytes.Equal(wire, wires[i-1]) {
+			continue
+		}
+		buf = append(buf, wire...)
+	}
+	return buf, nil
+}
+
+func packSigWire(sw *rrsigWireFmt, msg []byte) (int, error) {
+	// copied from zmsg.go RRSIG packing
+	off, err := packUint16(sw.TypeCovered, msg, 0)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(sw.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(sw.Labels, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(sw.OrigTtl, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(sw.Expiration, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(sw.Inception, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(sw.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(sw.SignerName, msg, off, nil, false)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
+
+func packKeyWire(dw *dnskeyWireFmt, msg []byte) (int, error) {
+	// copied from zmsg.go DNSKEY packing
+	off, err := packUint16(dw.Flags, msg, 0)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(dw.Protocol, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(dw.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(dw.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
diff --git a/vendor/github.com/miekg/dns/dnssec_keygen.go b/vendor/github.com/miekg/dns/dnssec_keygen.go
new file mode 100644
index 0000000000..33e913ac52
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dnssec_keygen.go
@@ -0,0 +1,178 @@
+package dns
+
+import (
+	"crypto"
+	"crypto/dsa"
+	"crypto/ecdsa"
+	"crypto/elliptic"
+	"crypto/rand"
+	"crypto/rsa"
+	"math/big"
+
+	"golang.org/x/crypto/ed25519"
+)
+
+// Generate generates a DNSKEY of the given bit size.
+// The public part is put inside the DNSKEY record.
+// The Algorithm in the key must be set as this will define
+// what kind of DNSKEY will be generated.
+// The ECDSA algorithms imply a fixed keysize, in that case
+// bits should be set to the size of the algorithm.
+func (k *DNSKEY) Generate(bits int) (crypto.PrivateKey, error) {
+	switch k.Algorithm {
+	case DSA, DSANSEC3SHA1:
+		if bits != 1024 {
+			return nil, ErrKeySize
+		}
+	case RSAMD5, RSASHA1, RSASHA256, RSASHA1NSEC3SHA1:
+		if bits < 512 || bits > 4096 {
+			return nil, ErrKeySize
+		}
+	case RSASHA512:
+		if bits < 1024 || bits > 4096 {
+			return nil, ErrKeySize
+		}
+	case ECDSAP256SHA256:
+		if bits != 256 {
+			return nil, ErrKeySize
+		}
+	case ECDSAP384SHA384:
+		if bits != 384 {
+			return nil, ErrKeySize
+		}
+	case ED25519:
+		if bits != 256 {
+			return nil, ErrKeySize
+		}
+	}
+
+	switch k.Algorithm {
+	case DSA, DSANSEC3SHA1:
+		params := new(dsa.Parameters)
+		if err := dsa.GenerateParameters(params, rand.Reader, dsa.L1024N160); err != nil {
+			return nil, err
+		}
+		priv := new(dsa.PrivateKey)
+		priv.PublicKey.Parameters = *params
+		err := dsa.GenerateKey(priv, rand.Reader)
+		if err != nil {
+			return nil, err
+		}
+		k.setPublicKeyDSA(params.Q, params.P, params.G, priv.PublicKey.Y)
+		return priv, nil
+	case RSAMD5, RSASHA1, RSASHA256, RSASHA512, RSASHA1NSEC3SHA1:
+		priv, err := rsa.GenerateKey(rand.Reader, bits)
+		if err != nil {
+			return nil, err
+		}
+		k.setPublicKeyRSA(priv.PublicKey.E, priv.PublicKey.N)
+		return priv, nil
+	case ECDSAP256SHA256, ECDSAP384SHA384:
+		var c elliptic.Curve
+		switch k.Algorithm {
+		case ECDSAP256SHA256:
+			c = elliptic.P256()
+		case ECDSAP384SHA384:
+			c = elliptic.P384()
+		}
+		priv, err := ecdsa.GenerateKey(c, rand.Reader)
+		if err != nil {
+			return nil, err
+		}
+		k.setPublicKeyECDSA(priv.PublicKey.X, priv.PublicKey.Y)
+		return priv, nil
+	case ED25519:
+		pub, priv, err := ed25519.GenerateKey(rand.Reader)
+		if err != nil {
+			return nil, err
+		}
+		k.setPublicKeyED25519(pub)
+		return priv, nil
+	default:
+		return nil, ErrAlg
+	}
+}
+
+// Set the public key (the value E and N)
+func (k *DNSKEY) setPublicKeyRSA(_E int, _N *big.Int) bool {
+	if _E == 0 || _N == nil {
+		return false
+	}
+	buf := exponentToBuf(_E)
+	buf = append(buf, _N.Bytes()...)
+	k.PublicKey = toBase64(buf)
+	return true
+}
+
+// Set the public key for Elliptic Curves
+func (k *DNSKEY) setPublicKeyECDSA(_X, _Y *big.Int) bool {
+	if _X == nil || _Y == nil {
+		return false
+	}
+	var intlen int
+	switch k.Algorithm {
+	case ECDSAP256SHA256:
+		intlen = 32
+	case ECDSAP384SHA384:
+		intlen = 48
+	}
+	k.PublicKey = toBase64(curveToBuf(_X, _Y, intlen))
+	return true
+}
+
+// Set the public key for DSA
+func (k *DNSKEY) setPublicKeyDSA(_Q, _P, _G, _Y *big.Int) bool {
+	if _Q == nil || _P == nil || _G == nil || _Y == nil {
+		return false
+	}
+	buf := dsaToBuf(_Q, _P, _G, _Y)
+	k.PublicKey = toBase64(buf)
+	return true
+}
+
+// Set the public key for Ed25519
+func (k *DNSKEY) setPublicKeyED25519(_K ed25519.PublicKey) bool {
+	if _K == nil {
+		return false
+	}
+	k.PublicKey = toBase64(_K)
+	return true
+}
+
+// Set the public key (the values E and N) for RSA
+// RFC 3110: Section 2. RSA Public KEY Resource Records
+func exponentToBuf(_E int) []byte {
+	var buf []byte
+	i := big.NewInt(int64(_E)).Bytes()
+	if len(i) < 256 {
+		buf = make([]byte, 1, 1+len(i))
+		buf[0] = uint8(len(i))
+	} else {
+		buf = make([]byte, 3, 3+len(i))
+		buf[0] = 0
+		buf[1] = uint8(len(i) >> 8)
+		buf[2] = uint8(len(i))
+	}
+	buf = append(buf, i...)
+	return buf
+}
+
+// Set the public key for X and Y for Curve. The two
+// values are just concatenated.
+func curveToBuf(_X, _Y *big.Int, intlen int) []byte {
+	buf := intToBytes(_X, intlen)
+	buf = append(buf, intToBytes(_Y, intlen)...)
+	return buf
+}
+
+// Set the public key for X and Y for Curve. The two
+// values are just concatenated.
+func dsaToBuf(_Q, _P, _G, _Y *big.Int) []byte {
+	t := divRoundUp(divRoundUp(_G.BitLen(), 8)-64, 8)
+	buf := []byte{byte(t)}
+	buf = append(buf, intToBytes(_Q, 20)...)
+	buf = append(buf, intToBytes(_P, 64+t*8)...)
+	buf = append(buf, intToBytes(_G, 64+t*8)...)
+	buf = append(buf, intToBytes(_Y, 64+t*8)...)
+	return buf
+}
diff --git a/vendor/github.com/miekg/dns/dnssec_keyscan.go b/vendor/github.com/miekg/dns/dnssec_keyscan.go
new file mode 100644
index 0000000000..e2d9d8f924
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dnssec_keyscan.go
@@ -0,0 +1,297 @@
+package dns
+
+import (
+	"bytes"
+	"crypto"
+	"crypto/dsa"
+	"crypto/ecdsa"
+	"crypto/rsa"
+	"io"
+	"math/big"
+	"strconv"
+	"strings"
+
+	"golang.org/x/crypto/ed25519"
+)
+
+// NewPrivateKey returns a PrivateKey by parsing the string s.
+// s should be in the same form of the BIND private key files.
+func (k *DNSKEY) NewPrivateKey(s string) (crypto.PrivateKey, error) {
+	if s == "" || s[len(s)-1] != '\n' { // We need a closing newline
+		return k.ReadPrivateKey(strings.NewReader(s+"\n"), "")
+	}
+	return k.ReadPrivateKey(strings.NewReader(s), "")
+}
+
+// ReadPrivateKey reads a private key from the io.Reader q. The string file is
+// only used in error reporting.
+// The public key must be known, because some cryptographic algorithms embed
+// the public inside the privatekey.
+func (k *DNSKEY) ReadPrivateKey(q io.Reader, file string) (crypto.PrivateKey, error) {
+	m, err := parseKey(q, file)
+	if m == nil {
+		return nil, err
+	}
+	if _, ok := m["private-key-format"]; !ok {
+		return nil, ErrPrivKey
+	}
+	if m["private-key-format"] != "v1.2" && m["private-key-format"] != "v1.3" {
+		return nil, ErrPrivKey
+	}
+	// TODO(mg): check if the pubkey matches the private key
+	algo, err := strconv.ParseUint(strings.SplitN(m["algorithm"], " ", 2)[0], 10, 8)
+	if err != nil {
+		return nil, ErrPrivKey
+	}
+	switch uint8(algo) {
+	case DSA:
+		priv, err := readPrivateKeyDSA(m)
+		if err != nil {
+			return nil, err
+		}
+		pub := k.publicKeyDSA()
+		if pub == nil {
+			return nil, ErrKey
+		}
+		priv.PublicKey = *pub
+		return priv, nil
+	case RSAMD5:
+		fallthrough
+	case RSASHA1:
+		fallthrough
+	case RSASHA1NSEC3SHA1:
+		fallthrough
+	case RSASHA256:
+		fallthrough
+	case RSASHA512:
+		priv, err := readPrivateKeyRSA(m)
+		if err != nil {
+			return nil, err
+		}
+		pub := k.publicKeyRSA()
+		if pub == nil {
+			return nil, ErrKey
+		}
+		priv.PublicKey = *pub
+		return priv, nil
+	case ECCGOST:
+		return nil, ErrPrivKey
+	case ECDSAP256SHA256:
+		fallthrough
+	case ECDSAP384SHA384:
+		priv, err := readPrivateKeyECDSA(m)
+		if err != nil {
+			return nil, err
+		}
+		pub := k.publicKeyECDSA()
+		if pub == nil {
+			return nil, ErrKey
+		}
+		priv.PublicKey = *pub
+		return priv, nil
+	case ED25519:
+		return readPrivateKeyED25519(m)
+	default:
+		return nil, ErrPrivKey
+	}
+}
+
+// Read a private key (file) string and create a public key. Return the private key.
+func readPrivateKeyRSA(m map[string]string) (*rsa.PrivateKey, error) {
+	p := new(rsa.PrivateKey)
+	p.Primes = []*big.Int{nil, nil}
+	for k, v := range m {
+		switch k {
+		case "modulus", "publicexponent", "privateexponent", "prime1", "prime2":
+			v1, err := fromBase64([]byte(v))
+			if err != nil {
+				return nil, err
+			}
+			switch k {
+			case "modulus":
+				p.PublicKey.N = big.NewInt(0)
+				p.PublicKey.N.SetBytes(v1)
+			case "publicexponent":
+				i := big.NewInt(0)
+				i.SetBytes(v1)
+				p.PublicKey.E = int(i.Int64()) // int64 should be large enough
+			case "privateexponent":
+				p.D = big.NewInt(0)
+				p.D.SetBytes(v1)
+			case "prime1":
+				p.Primes[0] = big.NewInt(0)
+				p.Primes[0].SetBytes(v1)
+			case "prime2":
+				p.Primes[1] = big.NewInt(0)
+				p.Primes[1].SetBytes(v1)
+			}
+		case "exponent1", "exponent2", "coefficient":
+			// not used in Go (yet)
+		case "created", "publish", "activate":
+			// not used in Go (yet)
+		}
+	}
+	return p, nil
+}
+
+func readPrivateKeyDSA(m map[string]string) (*dsa.PrivateKey, error) {
+	p := new(dsa.PrivateKey)
+	p.X = big.NewInt(0)
+	for k, v := range m {
+		switch k {
+		case "private_value(x)":
+			v1, err := fromBase64([]byte(v))
+			if err != nil {
+				return nil, err
+			}
+			p.X.SetBytes(v1)
+		case "created", "publish", "activate":
+			/* not used in Go (yet) */
+		}
+	}
+	return p, nil
+}
+
+func readPrivateKeyECDSA(m map[string]string) (*ecdsa.PrivateKey, error) {
+	p := new(ecdsa.PrivateKey)
+	p.D = big.NewInt(0)
+	// TODO: validate that the required flags are present
+	for k, v := range m {
+		switch k {
+		case "privatekey":
+			v1, err := fromBase64([]byte(v))
+			if err != nil {
+				return nil, err
+			}
+			p.D.SetBytes(v1)
+		case "created", "publish", "activate":
+			/* not used in Go (yet) */
+		}
+	}
+	return p, nil
+}
+
+func readPrivateKeyED25519(m map[string]string) (ed25519.PrivateKey, error) {
+	var p ed25519.PrivateKey
+	// TODO: validate that the required flags are present
+	for k, v := range m {
+		switch k {
+		case "privatekey":
+			p1, err := fromBase64([]byte(v))
+			if err != nil {
+				return nil, err
+			}
+			if len(p1) != 32 {
+				return nil, ErrPrivKey
+			}
+			// RFC 8080 and Golang's x/crypto/ed25519 differ as to how the
+			// private keys are represented. RFC 8080 specifies that private
+			// keys be stored solely as the seed value (p1 above) while the
+			// ed25519 package represents them as the seed value concatenated
+			// to the public key, which is derived from the seed value.
+			//
+			// ed25519.GenerateKey reads exactly 32 bytes from the passed in
+			// io.Reader and uses them as the seed. It also derives the
+			// public key and produces a compatible private key.
+			_, p, err = ed25519.GenerateKey(bytes.NewReader(p1))
+			if err != nil {
+				return nil, err
+			}
+		case "created", "publish", "activate":
+			/* not used in Go (yet) */
+		}
+	}
+	return p, nil
+}
+
+// parseKey reads a private key from r. It returns a map[string]string,
+// with the key-value pairs, or an error when the file is not correct.
+func parseKey(r io.Reader, file string) (map[string]string, error) {
+	s, cancel := scanInit(r)
+	m := make(map[string]string)
+	c := make(chan lex)
+	k := ""
+	defer func() {
+		cancel()
+		// zlexer can send up to two tokens, the next one and possibly 1 remainders.
+		// Do a non-blocking read.
+		_, ok := <-c
+		_, ok = <-c
+		if !ok {
+			// too bad
+		}
+	}()
+	// Start the lexer
+	go klexer(s, c)
+	for l := range c {
+		// It should alternate
+		switch l.value {
+		case zKey:
+			k = l.token
+		case zValue:
+			if k == "" {
+				return nil, &ParseError{file, "no private key seen", l}
+			}
+			//println("Setting", strings.ToLower(k), "to", l.token, "b")
+			m[strings.ToLower(k)] = l.token
+			k = ""
+		}
+	}
+	return m, nil
+}
+
+// klexer scans the sourcefile and returns tokens on the channel c.
+func klexer(s *scan, c chan lex) {
+	var l lex
+	str := "" // Hold the current read text
+	commt := false
+	key := true
+	x, err := s.tokenText()
+	defer close(c)
+	for err == nil {
+		l.column = s.position.Column
+		l.line = s.position.Line
+		switch x {
+		case ':':
+			if commt {
+				break
+			}
+			l.token = str
+			if key {
+				l.value = zKey
+				c <- l
+				// Next token is a space, eat it
+				s.tokenText()
+				key = false
+				str = ""
+			} else {
+				l.value = zValue
+			}
+		case ';':
+			commt = true
+		case '\n':
+			if commt {
+				// Reset a comment
+				commt = false
+			}
+			l.value = zValue
+			l.token = str
+			c <- l
+			str = ""
+			commt = false
+			key = true
+		default:
+			if commt {
+				break
+			}
+			str += string(x)
+		}
+		x, err = s.tokenText()
+	}
+	if len(str) > 0 {
+		// Send remainder
+		l.token = str
+		l.value = zValue
+		c <- l
+	}
+}
diff --git a/vendor/github.com/miekg/dns/dnssec_privkey.go b/vendor/github.com/miekg/dns/dnssec_privkey.go
new file mode 100644
index 0000000000..46f3215c8f
--- /dev/null
+++ b/vendor/github.com/miekg/dns/dnssec_privkey.go
@@ -0,0 +1,93 @@
+package dns
+
+import (
+	"crypto"
+	"crypto/dsa"
+	"crypto/ecdsa"
+	"crypto/rsa"
+	"math/big"
+	"strconv"
+
+	"golang.org/x/crypto/ed25519"
+)
+
+const format = "Private-key-format: v1.3\n"
+
+// PrivateKeyString converts a PrivateKey to a string. This string has the same
+// format as the private-key-file of BIND9 (Private-key-format: v1.3).
+// It needs some info from the key (the algorithm), so its a method of the DNSKEY
+// It supports rsa.PrivateKey, ecdsa.PrivateKey and dsa.PrivateKey
+func (r *DNSKEY) PrivateKeyString(p crypto.PrivateKey) string {
+	algorithm := strconv.Itoa(int(r.Algorithm))
+	algorithm += " (" + AlgorithmToString[r.Algorithm] + ")"
+
+	switch p := p.(type) {
+	case *rsa.PrivateKey:
+		modulus := toBase64(p.PublicKey.N.Bytes())
+		e := big.NewInt(int64(p.PublicKey.E))
+		publicExponent := toBase64(e.Bytes())
+		privateExponent := toBase64(p.D.Bytes())
+		prime1 := toBase64(p.Primes[0].Bytes())
+		prime2 := toBase64(p.Primes[1].Bytes())
+		// Calculate Exponent1/2 and Coefficient as per: http://en.wikipedia.org/wiki/RSA#Using_the_Chinese_remainder_algorithm
+		// and from: http://code.google.com/p/go/issues/detail?id=987
+		one := big.NewInt(1)
+		p1 := big.NewInt(0).Sub(p.Primes[0], one)
+		q1 := big.NewInt(0).Sub(p.Primes[1], one)
+		exp1 := big.NewInt(0).Mod(p.D, p1)
+		exp2 := big.NewInt(0).Mod(p.D, q1)
+		coeff := big.NewInt(0).ModInverse(p.Primes[1], p.Primes[0])
+
+		exponent1 := toBase64(exp1.Bytes())
+		exponent2 := toBase64(exp2.Bytes())
+		coefficient := toBase64(coeff.Bytes())
+
+		return format +
+			"Algorithm: " + algorithm + "\n" +
+			"Modulus: " + modulus + "\n" +
+			"PublicExponent: " + publicExponent + "\n" +
+			"PrivateExponent: " + privateExponent + "\n" +
+			"Prime1: " + prime1 + "\n" +
+			"Prime2: " + prime2 + "\n" +
+			"Exponent1: " + exponent1 + "\n" +
+			"Exponent2: " + exponent2 + "\n" +
+			"Coefficient: " + coefficient + "\n"
+
+	case *ecdsa.PrivateKey:
+		var intlen int
+		switch r.Algorithm {
+		case ECDSAP256SHA256:
+			intlen = 32
+		case ECDSAP384SHA384:
+			intlen = 48
+		}
+		private := toBase64(intToBytes(p.D, intlen))
+		return format +
+			"Algorithm: " + algorithm + "\n" +
+			"PrivateKey: " + private + "\n"
+
+	case *dsa.PrivateKey:
+		T := divRoundUp(divRoundUp(p.PublicKey.Parameters.G.BitLen(), 8)-64, 8)
+		prime := toBase64(intToBytes(p.PublicKey.Parameters.P, 64+T*8))
+		subprime := toBase64(intToBytes(p.PublicKey.Parameters.Q, 20))
+		base := toBase64(intToBytes(p.PublicKey.Parameters.G, 64+T*8))
+		priv := toBase64(intToBytes(p.X, 20))
+		pub := toBase64(intToBytes(p.PublicKey.Y, 64+T*8))
+		return format +
+			"Algorithm: " + algorithm + "\n" +
+			"Prime(p): " + prime + "\n" +
+			"Subprime(q): " + subprime + "\n" +
+			"Base(g): " + base + "\n" +
+			"Private_value(x): " + priv + "\n" +
+			"Public_value(y): " + pub + "\n"
+
+	case ed25519.PrivateKey:
+		private := toBase64(p[:32])
+		return format +
+			"Algorithm: " + algorithm + "\n" +
+			"PrivateKey: " + private + "\n"
+
+	default:
+		return ""
+	}
+}
diff --git a/vendor/github.com/miekg/dns/doc.go b/vendor/github.com/miekg/dns/doc.go
new file mode 100644
index 0000000000..1d8114744f
--- /dev/null
+++ b/vendor/github.com/miekg/dns/doc.go
@@ -0,0 +1,272 @@
+/*
+Package dns implements a full featured interface to the Domain Name System.
+Server- and client-side programming is supported.
+The package allows complete control over what is sent out to the DNS. The package
+API follows the less-is-more principle, by presenting a small, clean interface.
+
+The package dns supports (asynchronous) querying/replying, incoming/outgoing zone transfers,
+TSIG, EDNS0, dynamic updates, notifies and DNSSEC validation/signing.
+Note that domain names MUST be fully qualified, before sending them, unqualified
+names in a message will result in a packing failure.
+
+Resource records are native types. They are not stored in wire format.
+Basic usage pattern for creating a new resource record:
+
+     r := new(dns.MX)
+     r.Hdr = dns.RR_Header{Name: "miek.nl.", Rrtype: dns.TypeMX,
+     Class: dns.ClassINET, Ttl: 3600}
+     r.Preference = 10
+     r.Mx = "mx.miek.nl."
+
+Or directly from a string:
+
+     mx, err := dns.NewRR("miek.nl. 3600 IN MX 10 mx.miek.nl.")
+
+Or when the default origin (.) and TTL (3600) and class (IN) suit you:
+
+     mx, err := dns.NewRR("miek.nl MX 10 mx.miek.nl")
+
+Or even:
+
+     mx, err := dns.NewRR("$ORIGIN nl.\nmiek 1H IN MX 10 mx.miek")
+
+In the DNS messages are exchanged, these messages contain resource
+records (sets). Use pattern for creating a message:
+
+     m := new(dns.Msg)
+     m.SetQuestion("miek.nl.", dns.TypeMX)
+
+Or when not certain if the domain name is fully qualified:
+
+	m.SetQuestion(dns.Fqdn("miek.nl"), dns.TypeMX)
+
+The message m is now a message with the question section set to ask
+the MX records for the miek.nl. zone.
+
+The following is slightly more verbose, but more flexible:
+
+     m1 := new(dns.Msg)
+     m1.Id = dns.Id()
+     m1.RecursionDesired = true
+     m1.Question = make([]dns.Question, 1)
+     m1.Question[0] = dns.Question{"miek.nl.", dns.TypeMX, dns.ClassINET}
+
+After creating a message it can be sent.
+Basic use pattern for synchronous querying the DNS at a
+server configured on 127.0.0.1 and port 53:
+
+     c := new(dns.Client)
+     in, rtt, err := c.Exchange(m1, "127.0.0.1:53")
+
+Suppressing multiple outstanding queries (with the same question, type and
+class) is as easy as setting:
+
+	c.SingleInflight = true
+
+More advanced options are available using a net.Dialer and the corresponding API.
+For example it is possible to set a timeout, or to specify a source IP address
+and port to use for the connection:
+
+	c := new(dns.Client)
+	laddr := net.UDPAddr{
+		IP: net.ParseIP("[::1]"),
+		Port: 12345,
+		Zone: "",
+	}
+	d := net.Dialer{
+		Timeout: 200 * time.Millisecond,
+		LocalAddr: &laddr,
+	}
+	in, rtt, err := c.ExchangeWithDialer(&d, m1, "8.8.8.8:53")
+
+If these "advanced" features are not needed, a simple UDP query can be sent,
+with:
+
+	in, err := dns.Exchange(m1, "127.0.0.1:53")
+
+When this functions returns you will get dns message. A dns message consists
+out of four sections.
+The question section: in.Question, the answer section: in.Answer,
+the authority section: in.Ns and the additional section: in.Extra.
+
+Each of these sections (except the Question section) contain a []RR. Basic
+use pattern for accessing the rdata of a TXT RR as the first RR in
+the Answer section:
+
+	if t, ok := in.Answer[0].(*dns.TXT); ok {
+		// do something with t.Txt
+	}
+
+Domain Name and TXT Character String Representations
+
+Both domain names and TXT character strings are converted to presentation
+form both when unpacked and when converted to strings.
+
+For TXT character strings, tabs, carriage returns and line feeds will be
+converted to \t, \r and \n respectively. Back slashes and quotations marks
+will be escaped. Bytes below 32 and above 127 will be converted to \DDD
+form.
+
+For domain names, in addition to the above rules brackets, periods,
+spaces, semicolons and the at symbol are escaped.
+
+DNSSEC
+
+DNSSEC (DNS Security Extension) adds a layer of security to the DNS. It
+uses public key cryptography to sign resource records. The
+public keys are stored in DNSKEY records and the signatures in RRSIG records.
+
+Requesting DNSSEC information for a zone is done by adding the DO (DNSSEC OK) bit
+to a request.
+
+     m := new(dns.Msg)
+     m.SetEdns0(4096, true)
+
+Signature generation, signature verification and key generation are all supported.
+
+DYNAMIC UPDATES
+
+Dynamic updates reuses the DNS message format, but renames three of
+the sections. Question is Zone, Answer is Prerequisite, Authority is
+Update, only the Additional is not renamed. See RFC 2136 for the gory details.
+
+You can set a rather complex set of rules for the existence of absence of
+certain resource records or names in a zone to specify if resource records
+should be added or removed. The table from RFC 2136 supplemented with the Go
+DNS function shows which functions exist to specify the prerequisites.
+
+ 3.2.4 - Table Of Metavalues Used In Prerequisite Section
+
+  CLASS    TYPE     RDATA    Meaning                    Function
+  --------------------------------------------------------------
+  ANY      ANY      empty    Name is in use             dns.NameUsed
+  ANY      rrset    empty    RRset exists (value indep) dns.RRsetUsed
+  NONE     ANY      empty    Name is not in use         dns.NameNotUsed
+  NONE     rrset    empty    RRset does not exist       dns.RRsetNotUsed
+  zone     rrset    rr       RRset exists (value dep)   dns.Used
+
+The prerequisite section can also be left empty.
+If you have decided on the prerequisites you can tell what RRs should
+be added or deleted. The next table shows the options you have and
+what functions to call.
+
+ 3.4.2.6 - Table Of Metavalues Used In Update Section
+
+  CLASS    TYPE     RDATA    Meaning                     Function
+  ---------------------------------------------------------------
+  ANY      ANY      empty    Delete all RRsets from name dns.RemoveName
+  ANY      rrset    empty    Delete an RRset             dns.RemoveRRset
+  NONE     rrset    rr       Delete an RR from RRset     dns.Remove
+  zone     rrset    rr       Add to an RRset             dns.Insert
+
+TRANSACTION SIGNATURE
+
+An TSIG or transaction signature adds a HMAC TSIG record to each message sent.
+The supported algorithms include: HmacMD5, HmacSHA1, HmacSHA256 and HmacSHA512.
+
+Basic use pattern when querying with a TSIG name "axfr." (note that these key names
+must be fully qualified - as they are domain names) and the base64 secret
+"so6ZGir4GPAqINNh9U5c3A==":
+
+If an incoming message contains a TSIG record it MUST be the last record in
+the additional section (RFC2845 3.2).  This means that you should make the
+call to SetTsig last, right before executing the query.  If you make any
+changes to the RRset after calling SetTsig() the signature will be incorrect.
+
+	c := new(dns.Client)
+	c.TsigSecret = map[string]string{"axfr.": "so6ZGir4GPAqINNh9U5c3A=="}
+	m := new(dns.Msg)
+	m.SetQuestion("miek.nl.", dns.TypeMX)
+	m.SetTsig("axfr.", dns.HmacMD5, 300, time.Now().Unix())
+	...
+	// When sending the TSIG RR is calculated and filled in before sending
+
+When requesting an zone transfer (almost all TSIG usage is when requesting zone transfers), with
+TSIG, this is the basic use pattern. In this example we request an AXFR for
+miek.nl. with TSIG key named "axfr." and secret "so6ZGir4GPAqINNh9U5c3A=="
+and using the server 176.58.119.54:
+
+	t := new(dns.Transfer)
+	m := new(dns.Msg)
+	t.TsigSecret = map[string]string{"axfr.": "so6ZGir4GPAqINNh9U5c3A=="}
+	m.SetAxfr("miek.nl.")
+	m.SetTsig("axfr.", dns.HmacMD5, 300, time.Now().Unix())
+	c, err := t.In(m, "176.58.119.54:53")
+	for r := range c { ... }
+
+You can now read the records from the transfer as they come in. Each envelope is checked with TSIG.
+If something is not correct an error is returned.
+
+Basic use pattern validating and replying to a message that has TSIG set.
+
+	server := &dns.Server{Addr: ":53", Net: "udp"}
+	server.TsigSecret = map[string]string{"axfr.": "so6ZGir4GPAqINNh9U5c3A=="}
+	go server.ListenAndServe()
+	dns.HandleFunc(".", handleRequest)
+
+	func handleRequest(w dns.ResponseWriter, r *dns.Msg) {
+		m := new(dns.Msg)
+		m.SetReply(r)
+		if r.IsTsig() != nil {
+			if w.TsigStatus() == nil {
+				// *Msg r has an TSIG record and it was validated
+				m.SetTsig("axfr.", dns.HmacMD5, 300, time.Now().Unix())
+			} else {
+				// *Msg r has an TSIG records and it was not valided
+			}
+		}
+		w.WriteMsg(m)
+	}
+
+PRIVATE RRS
+
+RFC 6895 sets aside a range of type codes for private use. This range
+is 65,280 - 65,534 (0xFF00 - 0xFFFE). When experimenting with new Resource Records these
+can be used, before requesting an official type code from IANA.
+
+see http://miek.nl/2014/September/21/idn-and-private-rr-in-go-dns/ for more
+information.
+
+EDNS0
+
+EDNS0 is an extension mechanism for the DNS defined in RFC 2671 and updated
+by RFC 6891. It defines an new RR type, the OPT RR, which is then completely
+abused.
+Basic use pattern for creating an (empty) OPT RR:
+
+	o := new(dns.OPT)
+	o.Hdr.Name = "." // MUST be the root zone, per definition.
+	o.Hdr.Rrtype = dns.TypeOPT
+
+The rdata of an OPT RR consists out of a slice of EDNS0 (RFC 6891)
+interfaces. Currently only a few have been standardized: EDNS0_NSID
+(RFC 5001) and EDNS0_SUBNET (draft-vandergaast-edns-client-subnet-02). Note
+that these options may be combined in an OPT RR.
+Basic use pattern for a server to check if (and which) options are set:
+
+	// o is a dns.OPT
+	for _, s := range o.Option {
+		switch e := s.(type) {
+		case *dns.EDNS0_NSID:
+			// do stuff with e.Nsid
+		case *dns.EDNS0_SUBNET:
+			// access e.Family, e.Address, etc.
+		}
+	}
+
+SIG(0)
+
+From RFC 2931:
+
+    SIG(0) provides protection for DNS transactions and requests ....
+    ... protection for glue records, DNS requests, protection for message headers
+    on requests and responses, and protection of the overall integrity of a response.
+
+It works like TSIG, except that SIG(0) uses public key cryptography, instead of the shared
+secret approach in TSIG.
+Supported algorithms: DSA, ECDSAP256SHA256, ECDSAP384SHA384, RSASHA1, RSASHA256 and
+RSASHA512.
+
+Signing subsequent messages in multi-message sessions is not implemented.
+*/
+package dns
diff --git a/vendor/github.com/miekg/dns/edns.go b/vendor/github.com/miekg/dns/edns.go
new file mode 100644
index 0000000000..6f9d2ea393
--- /dev/null
+++ b/vendor/github.com/miekg/dns/edns.go
@@ -0,0 +1,627 @@
+package dns
+
+import (
+	"encoding/binary"
+	"encoding/hex"
+	"errors"
+	"fmt"
+	"net"
+	"strconv"
+)
+
+// EDNS0 Option codes.
+const (
+	EDNS0LLQ          = 0x1     // long lived queries: http://tools.ietf.org/html/draft-sekar-dns-llq-01
+	EDNS0UL           = 0x2     // update lease draft: http://files.dns-sd.org/draft-sekar-dns-ul.txt
+	EDNS0NSID         = 0x3     // nsid (See RFC 5001)
+	EDNS0DAU          = 0x5     // DNSSEC Algorithm Understood
+	EDNS0DHU          = 0x6     // DS Hash Understood
+	EDNS0N3U          = 0x7     // NSEC3 Hash Understood
+	EDNS0SUBNET       = 0x8     // client-subnet (See RFC 7871)
+	EDNS0EXPIRE       = 0x9     // EDNS0 expire
+	EDNS0COOKIE       = 0xa     // EDNS0 Cookie
+	EDNS0TCPKEEPALIVE = 0xb     // EDNS0 tcp keep alive (See RFC 7828)
+	EDNS0PADDING      = 0xc     // EDNS0 padding (See RFC 7830)
+	EDNS0LOCALSTART   = 0xFDE9  // Beginning of range reserved for local/experimental use (See RFC 6891)
+	EDNS0LOCALEND     = 0xFFFE  // End of range reserved for local/experimental use (See RFC 6891)
+	_DO               = 1 << 15 // DNSSEC OK
+)
+
+// OPT is the EDNS0 RR appended to messages to convey extra (meta) information.
+// See RFC 6891.
+type OPT struct {
+	Hdr    RR_Header
+	Option []EDNS0 `dns:"opt"`
+}
+
+func (rr *OPT) String() string {
+	s := "\n;; OPT PSEUDOSECTION:\n; EDNS: version " + strconv.Itoa(int(rr.Version())) + "; "
+	if rr.Do() {
+		s += "flags: do; "
+	} else {
+		s += "flags: ; "
+	}
+	s += "udp: " + strconv.Itoa(int(rr.UDPSize()))
+
+	for _, o := range rr.Option {
+		switch o.(type) {
+		case *EDNS0_NSID:
+			s += "\n; NSID: " + o.String()
+			h, e := o.pack()
+			var r string
+			if e == nil {
+				for _, c := range h {
+					r += "(" + string(c) + ")"
+				}
+				s += "  " + r
+			}
+		case *EDNS0_SUBNET:
+			s += "\n; SUBNET: " + o.String()
+		case *EDNS0_COOKIE:
+			s += "\n; COOKIE: " + o.String()
+		case *EDNS0_UL:
+			s += "\n; UPDATE LEASE: " + o.String()
+		case *EDNS0_LLQ:
+			s += "\n; LONG LIVED QUERIES: " + o.String()
+		case *EDNS0_DAU:
+			s += "\n; DNSSEC ALGORITHM UNDERSTOOD: " + o.String()
+		case *EDNS0_DHU:
+			s += "\n; DS HASH UNDERSTOOD: " + o.String()
+		case *EDNS0_N3U:
+			s += "\n; NSEC3 HASH UNDERSTOOD: " + o.String()
+		case *EDNS0_LOCAL:
+			s += "\n; LOCAL OPT: " + o.String()
+		case *EDNS0_PADDING:
+			s += "\n; PADDING: " + o.String()
+		}
+	}
+	return s
+}
+
+func (rr *OPT) len() int {
+	l := rr.Hdr.len()
+	for i := 0; i < len(rr.Option); i++ {
+		l += 4 // Account for 2-byte option code and 2-byte option length.
+		lo, _ := rr.Option[i].pack()
+		l += len(lo)
+	}
+	return l
+}
+
+// return the old value -> delete SetVersion?
+
+// Version returns the EDNS version used. Only zero is defined.
+func (rr *OPT) Version() uint8 {
+	return uint8((rr.Hdr.Ttl & 0x00FF0000) >> 16)
+}
+
+// SetVersion sets the version of EDNS. This is usually zero.
+func (rr *OPT) SetVersion(v uint8) {
+	rr.Hdr.Ttl = rr.Hdr.Ttl&0xFF00FFFF | (uint32(v) << 16)
+}
+
+// ExtendedRcode returns the EDNS extended RCODE field (the upper 8 bits of the TTL).
+func (rr *OPT) ExtendedRcode() int {
+	return int((rr.Hdr.Ttl & 0xFF000000) >> 24)
+}
+
+// SetExtendedRcode sets the EDNS extended RCODE field.
+func (rr *OPT) SetExtendedRcode(v uint8) {
+	rr.Hdr.Ttl = rr.Hdr.Ttl&0x00FFFFFF | (uint32(v) << 24)
+}
+
+// UDPSize returns the UDP buffer size.
+func (rr *OPT) UDPSize() uint16 {
+	return rr.Hdr.Class
+}
+
+// SetUDPSize sets the UDP buffer size.
+func (rr *OPT) SetUDPSize(size uint16) {
+	rr.Hdr.Class = size
+}
+
+// Do returns the value of the DO (DNSSEC OK) bit.
+func (rr *OPT) Do() bool {
+	return rr.Hdr.Ttl&_DO == _DO
+}
+
+// SetDo sets the DO (DNSSEC OK) bit.
+// If we pass an argument, set the DO bit to that value.
+// It is possible to pass 2 or more arguments. Any arguments after the 1st is silently ignored.
+func (rr *OPT) SetDo(do ...bool) {
+	if len(do) == 1 {
+		if do[0] {
+			rr.Hdr.Ttl |= _DO
+		} else {
+			rr.Hdr.Ttl &^= _DO
+		}
+	} else {
+		rr.Hdr.Ttl |= _DO
+	}
+}
+
+// EDNS0 defines an EDNS0 Option. An OPT RR can have multiple options appended to it.
+type EDNS0 interface {
+	// Option returns the option code for the option.
+	Option() uint16
+	// pack returns the bytes of the option data.
+	pack() ([]byte, error)
+	// unpack sets the data as found in the buffer. Is also sets
+	// the length of the slice as the length of the option data.
+	unpack([]byte) error
+	// String returns the string representation of the option.
+	String() string
+}
+
+// EDNS0_NSID option is used to retrieve a nameserver
+// identifier. When sending a request Nsid must be set to the empty string
+// The identifier is an opaque string encoded as hex.
+// Basic use pattern for creating an nsid option:
+//
+//	o := new(dns.OPT)
+//	o.Hdr.Name = "."
+//	o.Hdr.Rrtype = dns.TypeOPT
+//	e := new(dns.EDNS0_NSID)
+//	e.Code = dns.EDNS0NSID
+//	e.Nsid = "AA"
+//	o.Option = append(o.Option, e)
+type EDNS0_NSID struct {
+	Code uint16 // Always EDNS0NSID
+	Nsid string // This string needs to be hex encoded
+}
+
+func (e *EDNS0_NSID) pack() ([]byte, error) {
+	h, err := hex.DecodeString(e.Nsid)
+	if err != nil {
+		return nil, err
+	}
+	return h, nil
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_NSID) Option() uint16        { return EDNS0NSID } // Option returns the option code.
+func (e *EDNS0_NSID) unpack(b []byte) error { e.Nsid = hex.EncodeToString(b); return nil }
+func (e *EDNS0_NSID) String() string        { return string(e.Nsid) }
+
+// EDNS0_SUBNET is the subnet option that is used to give the remote nameserver
+// an idea of where the client lives. See RFC 7871. It can then give back a different
+// answer depending on the location or network topology.
+// Basic use pattern for creating an subnet option:
+//
+//	o := new(dns.OPT)
+//	o.Hdr.Name = "."
+//	o.Hdr.Rrtype = dns.TypeOPT
+//	e := new(dns.EDNS0_SUBNET)
+//	e.Code = dns.EDNS0SUBNET
+//	e.Family = 1	// 1 for IPv4 source address, 2 for IPv6
+//	e.SourceNetmask = 32	// 32 for IPV4, 128 for IPv6
+//	e.SourceScope = 0
+//	e.Address = net.ParseIP("127.0.0.1").To4()	// for IPv4
+//	// e.Address = net.ParseIP("2001:7b8:32a::2")	// for IPV6
+//	o.Option = append(o.Option, e)
+//
+// This code will parse all the available bits when unpacking (up to optlen).
+// When packing it will apply SourceNetmask. If you need more advanced logic,
+// patches welcome and good luck.
+type EDNS0_SUBNET struct {
+	Code          uint16 // Always EDNS0SUBNET
+	Family        uint16 // 1 for IP, 2 for IP6
+	SourceNetmask uint8
+	SourceScope   uint8
+	Address       net.IP
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_SUBNET) Option() uint16 { return EDNS0SUBNET }
+
+func (e *EDNS0_SUBNET) pack() ([]byte, error) {
+	b := make([]byte, 4)
+	binary.BigEndian.PutUint16(b[0:], e.Family)
+	b[2] = e.SourceNetmask
+	b[3] = e.SourceScope
+	switch e.Family {
+	case 0:
+		// "dig" sets AddressFamily to 0 if SourceNetmask is also 0
+		// We might don't need to complain either
+		if e.SourceNetmask != 0 {
+			return nil, errors.New("dns: bad address family")
+		}
+	case 1:
+		if e.SourceNetmask > net.IPv4len*8 {
+			return nil, errors.New("dns: bad netmask")
+		}
+		if len(e.Address.To4()) != net.IPv4len {
+			return nil, errors.New("dns: bad address")
+		}
+		ip := e.Address.To4().Mask(net.CIDRMask(int(e.SourceNetmask), net.IPv4len*8))
+		needLength := (e.SourceNetmask + 8 - 1) / 8 // division rounding up
+		b = append(b, ip[:needLength]...)
+	case 2:
+		if e.SourceNetmask > net.IPv6len*8 {
+			return nil, errors.New("dns: bad netmask")
+		}
+		if len(e.Address) != net.IPv6len {
+			return nil, errors.New("dns: bad address")
+		}
+		ip := e.Address.Mask(net.CIDRMask(int(e.SourceNetmask), net.IPv6len*8))
+		needLength := (e.SourceNetmask + 8 - 1) / 8 // division rounding up
+		b = append(b, ip[:needLength]...)
+	default:
+		return nil, errors.New("dns: bad address family")
+	}
+	return b, nil
+}
+
+func (e *EDNS0_SUBNET) unpack(b []byte) error {
+	if len(b) < 4 {
+		return ErrBuf
+	}
+	e.Family = binary.BigEndian.Uint16(b)
+	e.SourceNetmask = b[2]
+	e.SourceScope = b[3]
+	switch e.Family {
+	case 0:
+		// "dig" sets AddressFamily to 0 if SourceNetmask is also 0
+		// It's okay to accept such a packet
+		if e.SourceNetmask != 0 {
+			return errors.New("dns: bad address family")
+		}
+		e.Address = net.IPv4(0, 0, 0, 0)
+	case 1:
+		if e.SourceNetmask > net.IPv4len*8 || e.SourceScope > net.IPv4len*8 {
+			return errors.New("dns: bad netmask")
+		}
+		addr := make([]byte, net.IPv4len)
+		for i := 0; i < net.IPv4len && 4+i < len(b); i++ {
+			addr[i] = b[4+i]
+		}
+		e.Address = net.IPv4(addr[0], addr[1], addr[2], addr[3])
+	case 2:
+		if e.SourceNetmask > net.IPv6len*8 || e.SourceScope > net.IPv6len*8 {
+			return errors.New("dns: bad netmask")
+		}
+		addr := make([]byte, net.IPv6len)
+		for i := 0; i < net.IPv6len && 4+i < len(b); i++ {
+			addr[i] = b[4+i]
+		}
+		e.Address = net.IP{addr[0], addr[1], addr[2], addr[3], addr[4],
+			addr[5], addr[6], addr[7], addr[8], addr[9], addr[10],
+			addr[11], addr[12], addr[13], addr[14], addr[15]}
+	default:
+		return errors.New("dns: bad address family")
+	}
+	return nil
+}
+
+func (e *EDNS0_SUBNET) String() (s string) {
+	if e.Address == nil {
+		s = "<nil>"
+	} else if e.Address.To4() != nil {
+		s = e.Address.String()
+	} else {
+		s = "[" + e.Address.String() + "]"
+	}
+	s += "/" + strconv.Itoa(int(e.SourceNetmask)) + "/" + strconv.Itoa(int(e.SourceScope))
+	return
+}
+
+// The EDNS0_COOKIE option is used to add a DNS Cookie to a message.
+//
+//	o := new(dns.OPT)
+//	o.Hdr.Name = "."
+//	o.Hdr.Rrtype = dns.TypeOPT
+//	e := new(dns.EDNS0_COOKIE)
+//	e.Code = dns.EDNS0COOKIE
+//	e.Cookie = "24a5ac.."
+//	o.Option = append(o.Option, e)
+//
+// The Cookie field consists out of a client cookie (RFC 7873 Section 4), that is
+// always 8 bytes. It may then optionally be followed by the server cookie. The server
+// cookie is of variable length, 8 to a maximum of 32 bytes. In other words:
+//
+//	cCookie := o.Cookie[:16]
+//	sCookie := o.Cookie[16:]
+//
+// There is no guarantee that the Cookie string has a specific length.
+type EDNS0_COOKIE struct {
+	Code   uint16 // Always EDNS0COOKIE
+	Cookie string // Hex-encoded cookie data
+}
+
+func (e *EDNS0_COOKIE) pack() ([]byte, error) {
+	h, err := hex.DecodeString(e.Cookie)
+	if err != nil {
+		return nil, err
+	}
+	return h, nil
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_COOKIE) Option() uint16        { return EDNS0COOKIE }
+func (e *EDNS0_COOKIE) unpack(b []byte) error { e.Cookie = hex.EncodeToString(b); return nil }
+func (e *EDNS0_COOKIE) String() string        { return e.Cookie }
+
+// The EDNS0_UL (Update Lease) (draft RFC) option is used to tell the server to set
+// an expiration on an update RR. This is helpful for clients that cannot clean
+// up after themselves. This is a draft RFC and more information can be found at
+// http://files.dns-sd.org/draft-sekar-dns-ul.txt
+//
+//	o := new(dns.OPT)
+//	o.Hdr.Name = "."
+//	o.Hdr.Rrtype = dns.TypeOPT
+//	e := new(dns.EDNS0_UL)
+//	e.Code = dns.EDNS0UL
+//	e.Lease = 120 // in seconds
+//	o.Option = append(o.Option, e)
+type EDNS0_UL struct {
+	Code  uint16 // Always EDNS0UL
+	Lease uint32
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_UL) Option() uint16 { return EDNS0UL }
+func (e *EDNS0_UL) String() string { return strconv.FormatUint(uint64(e.Lease), 10) }
+
+// Copied: http://golang.org/src/pkg/net/dnsmsg.go
+func (e *EDNS0_UL) pack() ([]byte, error) {
+	b := make([]byte, 4)
+	binary.BigEndian.PutUint32(b, e.Lease)
+	return b, nil
+}
+
+func (e *EDNS0_UL) unpack(b []byte) error {
+	if len(b) < 4 {
+		return ErrBuf
+	}
+	e.Lease = binary.BigEndian.Uint32(b)
+	return nil
+}
+
+// EDNS0_LLQ stands for Long Lived Queries: http://tools.ietf.org/html/draft-sekar-dns-llq-01
+// Implemented for completeness, as the EDNS0 type code is assigned.
+type EDNS0_LLQ struct {
+	Code      uint16 // Always EDNS0LLQ
+	Version   uint16
+	Opcode    uint16
+	Error     uint16
+	Id        uint64
+	LeaseLife uint32
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_LLQ) Option() uint16 { return EDNS0LLQ }
+
+func (e *EDNS0_LLQ) pack() ([]byte, error) {
+	b := make([]byte, 18)
+	binary.BigEndian.PutUint16(b[0:], e.Version)
+	binary.BigEndian.PutUint16(b[2:], e.Opcode)
+	binary.BigEndian.PutUint16(b[4:], e.Error)
+	binary.BigEndian.PutUint64(b[6:], e.Id)
+	binary.BigEndian.PutUint32(b[14:], e.LeaseLife)
+	return b, nil
+}
+
+func (e *EDNS0_LLQ) unpack(b []byte) error {
+	if len(b) < 18 {
+		return ErrBuf
+	}
+	e.Version = binary.BigEndian.Uint16(b[0:])
+	e.Opcode = binary.BigEndian.Uint16(b[2:])
+	e.Error = binary.BigEndian.Uint16(b[4:])
+	e.Id = binary.BigEndian.Uint64(b[6:])
+	e.LeaseLife = binary.BigEndian.Uint32(b[14:])
+	return nil
+}
+
+func (e *EDNS0_LLQ) String() string {
+	s := strconv.FormatUint(uint64(e.Version), 10) + " " + strconv.FormatUint(uint64(e.Opcode), 10) +
+		" " + strconv.FormatUint(uint64(e.Error), 10) + " " + strconv.FormatUint(uint64(e.Id), 10) +
+		" " + strconv.FormatUint(uint64(e.LeaseLife), 10)
+	return s
+}
+
+// EDNS0_DUA implements the EDNS0 "DNSSEC Algorithm Understood" option. See RFC 6975.
+type EDNS0_DAU struct {
+	Code    uint16 // Always EDNS0DAU
+	AlgCode []uint8
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_DAU) Option() uint16        { return EDNS0DAU }
+func (e *EDNS0_DAU) pack() ([]byte, error) { return e.AlgCode, nil }
+func (e *EDNS0_DAU) unpack(b []byte) error { e.AlgCode = b; return nil }
+
+func (e *EDNS0_DAU) String() string {
+	s := ""
+	for i := 0; i < len(e.AlgCode); i++ {
+		if a, ok := AlgorithmToString[e.AlgCode[i]]; ok {
+			s += " " + a
+		} else {
+			s += " " + strconv.Itoa(int(e.AlgCode[i]))
+		}
+	}
+	return s
+}
+
+// EDNS0_DHU implements the EDNS0 "DS Hash Understood" option. See RFC 6975.
+type EDNS0_DHU struct {
+	Code    uint16 // Always EDNS0DHU
+	AlgCode []uint8
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_DHU) Option() uint16        { return EDNS0DHU }
+func (e *EDNS0_DHU) pack() ([]byte, error) { return e.AlgCode, nil }
+func (e *EDNS0_DHU) unpack(b []byte) error { e.AlgCode = b; return nil }
+
+func (e *EDNS0_DHU) String() string {
+	s := ""
+	for i := 0; i < len(e.AlgCode); i++ {
+		if a, ok := HashToString[e.AlgCode[i]]; ok {
+			s += " " + a
+		} else {
+			s += " " + strconv.Itoa(int(e.AlgCode[i]))
+		}
+	}
+	return s
+}
+
+// EDNS0_N3U implements the EDNS0 "NSEC3 Hash Understood" option. See RFC 6975.
+type EDNS0_N3U struct {
+	Code    uint16 // Always EDNS0N3U
+	AlgCode []uint8
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_N3U) Option() uint16        { return EDNS0N3U }
+func (e *EDNS0_N3U) pack() ([]byte, error) { return e.AlgCode, nil }
+func (e *EDNS0_N3U) unpack(b []byte) error { e.AlgCode = b; return nil }
+
+func (e *EDNS0_N3U) String() string {
+	// Re-use the hash map
+	s := ""
+	for i := 0; i < len(e.AlgCode); i++ {
+		if a, ok := HashToString[e.AlgCode[i]]; ok {
+			s += " " + a
+		} else {
+			s += " " + strconv.Itoa(int(e.AlgCode[i]))
+		}
+	}
+	return s
+}
+
+// EDNS0_EXPIRE implementes the EDNS0 option as described in RFC 7314.
+type EDNS0_EXPIRE struct {
+	Code   uint16 // Always EDNS0EXPIRE
+	Expire uint32
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_EXPIRE) Option() uint16 { return EDNS0EXPIRE }
+func (e *EDNS0_EXPIRE) String() string { return strconv.FormatUint(uint64(e.Expire), 10) }
+
+func (e *EDNS0_EXPIRE) pack() ([]byte, error) {
+	b := make([]byte, 4)
+	b[0] = byte(e.Expire >> 24)
+	b[1] = byte(e.Expire >> 16)
+	b[2] = byte(e.Expire >> 8)
+	b[3] = byte(e.Expire)
+	return b, nil
+}
+
+func (e *EDNS0_EXPIRE) unpack(b []byte) error {
+	if len(b) < 4 {
+		return ErrBuf
+	}
+	e.Expire = binary.BigEndian.Uint32(b)
+	return nil
+}
+
+// The EDNS0_LOCAL option is used for local/experimental purposes. The option
+// code is recommended to be within the range [EDNS0LOCALSTART, EDNS0LOCALEND]
+// (RFC6891), although any unassigned code can actually be used.  The content of
+// the option is made available in Data, unaltered.
+// Basic use pattern for creating a local option:
+//
+//	o := new(dns.OPT)
+//	o.Hdr.Name = "."
+//	o.Hdr.Rrtype = dns.TypeOPT
+//	e := new(dns.EDNS0_LOCAL)
+//	e.Code = dns.EDNS0LOCALSTART
+//	e.Data = []byte{72, 82, 74}
+//	o.Option = append(o.Option, e)
+type EDNS0_LOCAL struct {
+	Code uint16
+	Data []byte
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_LOCAL) Option() uint16 { return e.Code }
+func (e *EDNS0_LOCAL) String() string {
+	return strconv.FormatInt(int64(e.Code), 10) + ":0x" + hex.EncodeToString(e.Data)
+}
+
+func (e *EDNS0_LOCAL) pack() ([]byte, error) {
+	b := make([]byte, len(e.Data))
+	copied := copy(b, e.Data)
+	if copied != len(e.Data) {
+		return nil, ErrBuf
+	}
+	return b, nil
+}
+
+func (e *EDNS0_LOCAL) unpack(b []byte) error {
+	e.Data = make([]byte, len(b))
+	copied := copy(e.Data, b)
+	if copied != len(b) {
+		return ErrBuf
+	}
+	return nil
+}
+
+// EDNS0_TCP_KEEPALIVE is an EDNS0 option that instructs the server to keep
+// the TCP connection alive. See RFC 7828.
+type EDNS0_TCP_KEEPALIVE struct {
+	Code    uint16 // Always EDNSTCPKEEPALIVE
+	Length  uint16 // the value 0 if the TIMEOUT is omitted, the value 2 if it is present;
+	Timeout uint16 // an idle timeout value for the TCP connection, specified in units of 100 milliseconds, encoded in network byte order.
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_TCP_KEEPALIVE) Option() uint16 { return EDNS0TCPKEEPALIVE }
+
+func (e *EDNS0_TCP_KEEPALIVE) pack() ([]byte, error) {
+	if e.Timeout != 0 && e.Length != 2 {
+		return nil, errors.New("dns: timeout specified but length is not 2")
+	}
+	if e.Timeout == 0 && e.Length != 0 {
+		return nil, errors.New("dns: timeout not specified but length is not 0")
+	}
+	b := make([]byte, 4+e.Length)
+	binary.BigEndian.PutUint16(b[0:], e.Code)
+	binary.BigEndian.PutUint16(b[2:], e.Length)
+	if e.Length == 2 {
+		binary.BigEndian.PutUint16(b[4:], e.Timeout)
+	}
+	return b, nil
+}
+
+func (e *EDNS0_TCP_KEEPALIVE) unpack(b []byte) error {
+	if len(b) < 4 {
+		return ErrBuf
+	}
+	e.Length = binary.BigEndian.Uint16(b[2:4])
+	if e.Length != 0 && e.Length != 2 {
+		return errors.New("dns: length mismatch, want 0/2 but got " + strconv.FormatUint(uint64(e.Length), 10))
+	}
+	if e.Length == 2 {
+		if len(b) < 6 {
+			return ErrBuf
+		}
+		e.Timeout = binary.BigEndian.Uint16(b[4:6])
+	}
+	return nil
+}
+
+func (e *EDNS0_TCP_KEEPALIVE) String() (s string) {
+	s = "use tcp keep-alive"
+	if e.Length == 0 {
+		s += ", timeout omitted"
+	} else {
+		s += fmt.Sprintf(", timeout %dms", e.Timeout*100)
+	}
+	return
+}
+
+// EDNS0_PADDING option is used to add padding to a request/response. The default
+// value of padding SHOULD be 0x0 but other values MAY be used, for instance if
+// compression is applied before encryption which may break signatures.
+type EDNS0_PADDING struct {
+	Padding []byte
+}
+
+// Option implements the EDNS0 interface.
+func (e *EDNS0_PADDING) Option() uint16        { return EDNS0PADDING }
+func (e *EDNS0_PADDING) pack() ([]byte, error) { return e.Padding, nil }
+func (e *EDNS0_PADDING) unpack(b []byte) error { e.Padding = b; return nil }
+func (e *EDNS0_PADDING) String() string        { return fmt.Sprintf("%0X", e.Padding) }
diff --git a/vendor/github.com/miekg/dns/format.go b/vendor/github.com/miekg/dns/format.go
new file mode 100644
index 0000000000..3f5303c201
--- /dev/null
+++ b/vendor/github.com/miekg/dns/format.go
@@ -0,0 +1,87 @@
+package dns
+
+import (
+	"net"
+	"reflect"
+	"strconv"
+)
+
+// NumField returns the number of rdata fields r has.
+func NumField(r RR) int {
+	return reflect.ValueOf(r).Elem().NumField() - 1 // Remove RR_Header
+}
+
+// Field returns the rdata field i as a string. Fields are indexed starting from 1.
+// RR types that holds slice data, for instance the NSEC type bitmap will return a single
+// string where the types are concatenated using a space.
+// Accessing non existing fields will cause a panic.
+func Field(r RR, i int) string {
+	if i == 0 {
+		return ""
+	}
+	d := reflect.ValueOf(r).Elem().Field(i)
+	switch k := d.Kind(); k {
+	case reflect.String:
+		return d.String()
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		return strconv.FormatInt(d.Int(), 10)
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
+		return strconv.FormatUint(d.Uint(), 10)
+	case reflect.Slice:
+		switch reflect.ValueOf(r).Elem().Type().Field(i).Tag {
+		case `dns:"a"`:
+			// TODO(miek): Hmm store this as 16 bytes
+			if d.Len() < net.IPv6len {
+				return net.IPv4(byte(d.Index(0).Uint()),
+					byte(d.Index(1).Uint()),
+					byte(d.Index(2).Uint()),
+					byte(d.Index(3).Uint())).String()
+			}
+			return net.IPv4(byte(d.Index(12).Uint()),
+				byte(d.Index(13).Uint()),
+				byte(d.Index(14).Uint()),
+				byte(d.Index(15).Uint())).String()
+		case `dns:"aaaa"`:
+			return net.IP{
+				byte(d.Index(0).Uint()),
+				byte(d.Index(1).Uint()),
+				byte(d.Index(2).Uint()),
+				byte(d.Index(3).Uint()),
+				byte(d.Index(4).Uint()),
+				byte(d.Index(5).Uint()),
+				byte(d.Index(6).Uint()),
+				byte(d.Index(7).Uint()),
+				byte(d.Index(8).Uint()),
+				byte(d.Index(9).Uint()),
+				byte(d.Index(10).Uint()),
+				byte(d.Index(11).Uint()),
+				byte(d.Index(12).Uint()),
+				byte(d.Index(13).Uint()),
+				byte(d.Index(14).Uint()),
+				byte(d.Index(15).Uint()),
+			}.String()
+		case `dns:"nsec"`:
+			if d.Len() == 0 {
+				return ""
+			}
+			s := Type(d.Index(0).Uint()).String()
+			for i := 1; i < d.Len(); i++ {
+				s += " " + Type(d.Index(i).Uint()).String()
+			}
+			return s
+		default:
+			// if it does not have a tag its a string slice
+			fallthrough
+		case `dns:"txt"`:
+			if d.Len() == 0 {
+				return ""
+			}
+			s := d.Index(0).String()
+			for i := 1; i < d.Len(); i++ {
+				s += " " + d.Index(i).String()
+			}
+			return s
+		}
+	}
+	return ""
+}
diff --git a/vendor/github.com/miekg/dns/fuzz.go b/vendor/github.com/miekg/dns/fuzz.go
new file mode 100644
index 0000000000..a8a09184d4
--- /dev/null
+++ b/vendor/github.com/miekg/dns/fuzz.go
@@ -0,0 +1,23 @@
+// +build fuzz
+
+package dns
+
+func Fuzz(data []byte) int {
+	msg := new(Msg)
+
+	if err := msg.Unpack(data); err != nil {
+		return 0
+	}
+	if _, err := msg.Pack(); err != nil {
+		return 0
+	}
+
+	return 1
+}
+
+func FuzzNewRR(data []byte) int {
+	if _, err := NewRR(string(data)); err != nil {
+		return 0
+	}
+	return 1
+}
diff --git a/vendor/github.com/miekg/dns/generate.go b/vendor/github.com/miekg/dns/generate.go
new file mode 100644
index 0000000000..e4481a4b0d
--- /dev/null
+++ b/vendor/github.com/miekg/dns/generate.go
@@ -0,0 +1,159 @@
+package dns
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"strconv"
+	"strings"
+)
+
+// Parse the $GENERATE statement as used in BIND9 zones.
+// See http://www.zytrax.com/books/dns/ch8/generate.html for instance.
+// We are called after '$GENERATE '. After which we expect:
+// * the range (12-24/2)
+// * lhs (ownername)
+// * [[ttl][class]]
+// * type
+// * rhs (rdata)
+// But we are lazy here, only the range is parsed *all* occurrences
+// of $ after that are interpreted.
+// Any error are returned as a string value, the empty string signals
+// "no error".
+func generate(l lex, c chan lex, t chan *Token, o string) string {
+	step := 1
+	if i := strings.IndexAny(l.token, "/"); i != -1 {
+		if i+1 == len(l.token) {
+			return "bad step in $GENERATE range"
+		}
+		if s, err := strconv.Atoi(l.token[i+1:]); err == nil {
+			if s < 0 {
+				return "bad step in $GENERATE range"
+			}
+			step = s
+		} else {
+			return "bad step in $GENERATE range"
+		}
+		l.token = l.token[:i]
+	}
+	sx := strings.SplitN(l.token, "-", 2)
+	if len(sx) != 2 {
+		return "bad start-stop in $GENERATE range"
+	}
+	start, err := strconv.Atoi(sx[0])
+	if err != nil {
+		return "bad start in $GENERATE range"
+	}
+	end, err := strconv.Atoi(sx[1])
+	if err != nil {
+		return "bad stop in $GENERATE range"
+	}
+	if end < 0 || start < 0 || end < start {
+		return "bad range in $GENERATE range"
+	}
+
+	<-c // _BLANK
+	// Create a complete new string, which we then parse again.
+	s := ""
+BuildRR:
+	l = <-c
+	if l.value != zNewline && l.value != zEOF {
+		s += l.token
+		goto BuildRR
+	}
+	for i := start; i <= end; i += step {
+		var (
+			escape bool
+			dom    bytes.Buffer
+			mod    string
+			err    error
+			offset int
+		)
+
+		for j := 0; j < len(s); j++ { // No 'range' because we need to jump around
+			switch s[j] {
+			case '\\':
+				if escape {
+					dom.WriteByte('\\')
+					escape = false
+					continue
+				}
+				escape = true
+			case '$':
+				mod = "%d"
+				offset = 0
+				if escape {
+					dom.WriteByte('$')
+					escape = false
+					continue
+				}
+				escape = false
+				if j+1 >= len(s) { // End of the string
+					dom.WriteString(fmt.Sprintf(mod, i+offset))
+					continue
+				} else {
+					if s[j+1] == '$' {
+						dom.WriteByte('$')
+						j++
+						continue
+					}
+				}
+				// Search for { and }
+				if s[j+1] == '{' { // Modifier block
+					sep := strings.Index(s[j+2:], "}")
+					if sep == -1 {
+						return "bad modifier in $GENERATE"
+					}
+					mod, offset, err = modToPrintf(s[j+2 : j+2+sep])
+					if err != nil {
+						return err.Error()
+					}
+					j += 2 + sep // Jump to it
+				}
+				dom.WriteString(fmt.Sprintf(mod, i+offset))
+			default:
+				if escape { // Pretty useless here
+					escape = false
+					continue
+				}
+				dom.WriteByte(s[j])
+			}
+		}
+		// Re-parse the RR and send it on the current channel t
+		rx, err := NewRR("$ORIGIN " + o + "\n" + dom.String())
+		if err != nil {
+			return err.Error()
+		}
+		t <- &Token{RR: rx}
+		// Its more efficient to first built the rrlist and then parse it in
+		// one go! But is this a problem?
+	}
+	return ""
+}
+
+// Convert a $GENERATE modifier 0,0,d to something Printf can deal with.
+func modToPrintf(s string) (string, int, error) {
+	xs := strings.SplitN(s, ",", 3)
+	if len(xs) != 3 {
+		return "", 0, errors.New("bad modifier in $GENERATE")
+	}
+	// xs[0] is offset, xs[1] is width, xs[2] is base
+	if xs[2] != "o" && xs[2] != "d" && xs[2] != "x" && xs[2] != "X" {
+		return "", 0, errors.New("bad base in $GENERATE")
+	}
+	offset, err := strconv.Atoi(xs[0])
+	if err != nil || offset > 255 {
+		return "", 0, errors.New("bad offset in $GENERATE")
+	}
+	width, err := strconv.Atoi(xs[1])
+	if err != nil || width > 255 {
+		return "", offset, errors.New("bad width in $GENERATE")
+	}
+	switch {
+	case width < 0:
+		return "", offset, errors.New("bad width in $GENERATE")
+	case width == 0:
+		return "%" + xs[1] + xs[2], offset, nil
+	}
+	return "%0" + xs[1] + xs[2], offset, nil
+}
diff --git a/vendor/github.com/miekg/dns/labels.go b/vendor/github.com/miekg/dns/labels.go
new file mode 100644
index 0000000000..760b89e711
--- /dev/null
+++ b/vendor/github.com/miekg/dns/labels.go
@@ -0,0 +1,191 @@
+package dns
+
+// Holds a bunch of helper functions for dealing with labels.
+
+// SplitDomainName splits a name string into it's labels.
+// www.miek.nl. returns []string{"www", "miek", "nl"}
+// .www.miek.nl. returns []string{"", "www", "miek", "nl"},
+// The root label (.) returns nil. Note that using
+// strings.Split(s) will work in most cases, but does not handle
+// escaped dots (\.) for instance.
+// s must be a syntactically valid domain name, see IsDomainName.
+func SplitDomainName(s string) (labels []string) {
+	if len(s) == 0 {
+		return nil
+	}
+	fqdnEnd := 0 // offset of the final '.' or the length of the name
+	idx := Split(s)
+	begin := 0
+	if s[len(s)-1] == '.' {
+		fqdnEnd = len(s) - 1
+	} else {
+		fqdnEnd = len(s)
+	}
+
+	switch len(idx) {
+	case 0:
+		return nil
+	case 1:
+		// no-op
+	default:
+		end := 0
+		for i := 1; i < len(idx); i++ {
+			end = idx[i]
+			labels = append(labels, s[begin:end-1])
+			begin = end
+		}
+	}
+
+	labels = append(labels, s[begin:fqdnEnd])
+	return labels
+}
+
+// CompareDomainName compares the names s1 and s2 and
+// returns how many labels they have in common starting from the *right*.
+// The comparison stops at the first inequality. The names are downcased
+// before the comparison.
+//
+// www.miek.nl. and miek.nl. have two labels in common: miek and nl
+// www.miek.nl. and www.bla.nl. have one label in common: nl
+//
+// s1 and s2 must be syntactically valid domain names.
+func CompareDomainName(s1, s2 string) (n int) {
+	// the first check: root label
+	if s1 == "." || s2 == "." {
+		return 0
+	}
+
+	l1 := Split(s1)
+	l2 := Split(s2)
+
+	j1 := len(l1) - 1 // end
+	i1 := len(l1) - 2 // start
+	j2 := len(l2) - 1
+	i2 := len(l2) - 2
+	// the second check can be done here: last/only label
+	// before we fall through into the for-loop below
+	if equal(s1[l1[j1]:], s2[l2[j2]:]) {
+		n++
+	} else {
+		return
+	}
+	for {
+		if i1 < 0 || i2 < 0 {
+			break
+		}
+		if equal(s1[l1[i1]:l1[j1]], s2[l2[i2]:l2[j2]]) {
+			n++
+		} else {
+			break
+		}
+		j1--
+		i1--
+		j2--
+		i2--
+	}
+	return
+}
+
+// CountLabel counts the the number of labels in the string s.
+// s must be a syntactically valid domain name.
+func CountLabel(s string) (labels int) {
+	if s == "." {
+		return
+	}
+	off := 0
+	end := false
+	for {
+		off, end = NextLabel(s, off)
+		labels++
+		if end {
+			return
+		}
+	}
+}
+
+// Split splits a name s into its label indexes.
+// www.miek.nl. returns []int{0, 4, 9}, www.miek.nl also returns []int{0, 4, 9}.
+// The root name (.) returns nil. Also see SplitDomainName.
+// s must be a syntactically valid domain name.
+func Split(s string) []int {
+	if s == "." {
+		return nil
+	}
+	idx := make([]int, 1, 3)
+	off := 0
+	end := false
+
+	for {
+		off, end = NextLabel(s, off)
+		if end {
+			return idx
+		}
+		idx = append(idx, off)
+	}
+}
+
+// NextLabel returns the index of the start of the next label in the
+// string s starting at offset.
+// The bool end is true when the end of the string has been reached.
+// Also see PrevLabel.
+func NextLabel(s string, offset int) (i int, end bool) {
+	quote := false
+	for i = offset; i < len(s)-1; i++ {
+		switch s[i] {
+		case '\\':
+			quote = !quote
+		default:
+			quote = false
+		case '.':
+			if quote {
+				quote = !quote
+				continue
+			}
+			return i + 1, false
+		}
+	}
+	return i + 1, true
+}
+
+// PrevLabel returns the index of the label when starting from the right and
+// jumping n labels to the left.
+// The bool start is true when the start of the string has been overshot.
+// Also see NextLabel.
+func PrevLabel(s string, n int) (i int, start bool) {
+	if n == 0 {
+		return len(s), false
+	}
+	lab := Split(s)
+	if lab == nil {
+		return 0, true
+	}
+	if n > len(lab) {
+		return 0, true
+	}
+	return lab[len(lab)-n], false
+}
+
+// equal compares a and b while ignoring case. It returns true when equal otherwise false.
+func equal(a, b string) bool {
+	// might be lifted into API function.
+	la := len(a)
+	lb := len(b)
+	if la != lb {
+		return false
+	}
+
+	for i := la - 1; i >= 0; i-- {
+		ai := a[i]
+		bi := b[i]
+		if ai >= 'A' && ai <= 'Z' {
+			ai |= ('a' - 'A')
+		}
+		if bi >= 'A' && bi <= 'Z' {
+			bi |= ('a' - 'A')
+		}
+		if ai != bi {
+			return false
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/miekg/dns/msg.go b/vendor/github.com/miekg/dns/msg.go
new file mode 100644
index 0000000000..276e6b0271
--- /dev/null
+++ b/vendor/github.com/miekg/dns/msg.go
@@ -0,0 +1,1177 @@
+// DNS packet assembly, see RFC 1035. Converting from - Unpack() -
+// and to - Pack() - wire format.
+// All the packers and unpackers take a (msg []byte, off int)
+// and return (off1 int, ok bool).  If they return ok==false, they
+// also return off1==len(msg), so that the next unpacker will
+// also fail.  This lets us avoid checks of ok until the end of a
+// packing sequence.
+
+package dns
+
+//go:generate go run msg_generate.go
+//go:generate go run compress_generate.go
+
+import (
+	crand "crypto/rand"
+	"encoding/binary"
+	"fmt"
+	"math/big"
+	"math/rand"
+	"strconv"
+	"sync"
+)
+
+const (
+	maxCompressionOffset    = 2 << 13 // We have 14 bits for the compression pointer
+	maxDomainNameWireOctets = 255     // See RFC 1035 section 2.3.4
+)
+
+// Errors defined in this package.
+var (
+	ErrAlg           error = &Error{err: "bad algorithm"}                  // ErrAlg indicates an error with the (DNSSEC) algorithm.
+	ErrAuth          error = &Error{err: "bad authentication"}             // ErrAuth indicates an error in the TSIG authentication.
+	ErrBuf           error = &Error{err: "buffer size too small"}          // ErrBuf indicates that the buffer used is too small for the message.
+	ErrConnEmpty     error = &Error{err: "conn has no connection"}         // ErrConnEmpty indicates a connection is being used before it is initialized.
+	ErrExtendedRcode error = &Error{err: "bad extended rcode"}             // ErrExtendedRcode ...
+	ErrFqdn          error = &Error{err: "domain must be fully qualified"} // ErrFqdn indicates that a domain name does not have a closing dot.
+	ErrId            error = &Error{err: "id mismatch"}                    // ErrId indicates there is a mismatch with the message's ID.
+	ErrKeyAlg        error = &Error{err: "bad key algorithm"}              // ErrKeyAlg indicates that the algorithm in the key is not valid.
+	ErrKey           error = &Error{err: "bad key"}
+	ErrKeySize       error = &Error{err: "bad key size"}
+	ErrLongDomain    error = &Error{err: fmt.Sprintf("domain name exceeded %d wire-format octets", maxDomainNameWireOctets)}
+	ErrNoSig         error = &Error{err: "no signature found"}
+	ErrPrivKey       error = &Error{err: "bad private key"}
+	ErrRcode         error = &Error{err: "bad rcode"}
+	ErrRdata         error = &Error{err: "bad rdata"}
+	ErrRRset         error = &Error{err: "bad rrset"}
+	ErrSecret        error = &Error{err: "no secrets defined"}
+	ErrShortRead     error = &Error{err: "short read"}
+	ErrSig           error = &Error{err: "bad signature"}                      // ErrSig indicates that a signature can not be cryptographically validated.
+	ErrSoa           error = &Error{err: "no SOA"}                             // ErrSOA indicates that no SOA RR was seen when doing zone transfers.
+	ErrTime          error = &Error{err: "bad time"}                           // ErrTime indicates a timing error in TSIG authentication.
+	ErrTruncated     error = &Error{err: "failed to unpack truncated message"} // ErrTruncated indicates that we failed to unpack a truncated message. We unpacked as much as we had so Msg can still be used, if desired.
+)
+
+// Id by default, returns a 16 bits random number to be used as a
+// message id. The random provided should be good enough. This being a
+// variable the function can be reassigned to a custom function.
+// For instance, to make it return a static value:
+//
+//	dns.Id = func() uint16 { return 3 }
+var Id = id
+
+var (
+	idLock sync.Mutex
+	idRand *rand.Rand
+)
+
+// id returns a 16 bits random number to be used as a
+// message id. The random provided should be good enough.
+func id() uint16 {
+	idLock.Lock()
+
+	if idRand == nil {
+		// This (partially) works around
+		// https://github.com/golang/go/issues/11833 by only
+		// seeding idRand upon the first call to id.
+
+		var seed int64
+		var buf [8]byte
+
+		if _, err := crand.Read(buf[:]); err == nil {
+			seed = int64(binary.LittleEndian.Uint64(buf[:]))
+		} else {
+			seed = rand.Int63()
+		}
+
+		idRand = rand.New(rand.NewSource(seed))
+	}
+
+	// The call to idRand.Uint32 must be within the
+	// mutex lock because *rand.Rand is not safe for
+	// concurrent use.
+	//
+	// There is no added performance overhead to calling
+	// idRand.Uint32 inside a mutex lock over just
+	// calling rand.Uint32 as the global math/rand rng
+	// is internally protected by a sync.Mutex.
+	id := uint16(idRand.Uint32())
+
+	idLock.Unlock()
+	return id
+}
+
+// MsgHdr is a a manually-unpacked version of (id, bits).
+type MsgHdr struct {
+	Id                 uint16
+	Response           bool
+	Opcode             int
+	Authoritative      bool
+	Truncated          bool
+	RecursionDesired   bool
+	RecursionAvailable bool
+	Zero               bool
+	AuthenticatedData  bool
+	CheckingDisabled   bool
+	Rcode              int
+}
+
+// Msg contains the layout of a DNS message.
+type Msg struct {
+	MsgHdr
+	Compress bool       `json:"-"` // If true, the message will be compressed when converted to wire format.
+	Question []Question // Holds the RR(s) of the question section.
+	Answer   []RR       // Holds the RR(s) of the answer section.
+	Ns       []RR       // Holds the RR(s) of the authority section.
+	Extra    []RR       // Holds the RR(s) of the additional section.
+}
+
+// ClassToString is a maps Classes to strings for each CLASS wire type.
+var ClassToString = map[uint16]string{
+	ClassINET:   "IN",
+	ClassCSNET:  "CS",
+	ClassCHAOS:  "CH",
+	ClassHESIOD: "HS",
+	ClassNONE:   "NONE",
+	ClassANY:    "ANY",
+}
+
+// OpcodeToString maps Opcodes to strings.
+var OpcodeToString = map[int]string{
+	OpcodeQuery:  "QUERY",
+	OpcodeIQuery: "IQUERY",
+	OpcodeStatus: "STATUS",
+	OpcodeNotify: "NOTIFY",
+	OpcodeUpdate: "UPDATE",
+}
+
+// RcodeToString maps Rcodes to strings.
+var RcodeToString = map[int]string{
+	RcodeSuccess:        "NOERROR",
+	RcodeFormatError:    "FORMERR",
+	RcodeServerFailure:  "SERVFAIL",
+	RcodeNameError:      "NXDOMAIN",
+	RcodeNotImplemented: "NOTIMPL",
+	RcodeRefused:        "REFUSED",
+	RcodeYXDomain:       "YXDOMAIN", // See RFC 2136
+	RcodeYXRrset:        "YXRRSET",
+	RcodeNXRrset:        "NXRRSET",
+	RcodeNotAuth:        "NOTAUTH",
+	RcodeNotZone:        "NOTZONE",
+	RcodeBadSig:         "BADSIG", // Also known as RcodeBadVers, see RFC 6891
+	//	RcodeBadVers:        "BADVERS",
+	RcodeBadKey:    "BADKEY",
+	RcodeBadTime:   "BADTIME",
+	RcodeBadMode:   "BADMODE",
+	RcodeBadName:   "BADNAME",
+	RcodeBadAlg:    "BADALG",
+	RcodeBadTrunc:  "BADTRUNC",
+	RcodeBadCookie: "BADCOOKIE",
+}
+
+// Domain names are a sequence of counted strings
+// split at the dots. They end with a zero-length string.
+
+// PackDomainName packs a domain name s into msg[off:].
+// If compression is wanted compress must be true and the compression
+// map needs to hold a mapping between domain names and offsets
+// pointing into msg.
+func PackDomainName(s string, msg []byte, off int, compression map[string]int, compress bool) (off1 int, err error) {
+	off1, _, err = packDomainName(s, msg, off, compression, compress)
+	return
+}
+
+func packDomainName(s string, msg []byte, off int, compression map[string]int, compress bool) (off1 int, labels int, err error) {
+	// special case if msg == nil
+	lenmsg := 256
+	if msg != nil {
+		lenmsg = len(msg)
+	}
+	ls := len(s)
+	if ls == 0 { // Ok, for instance when dealing with update RR without any rdata.
+		return off, 0, nil
+	}
+	// If not fully qualified, error out, but only if msg == nil #ugly
+	switch {
+	case msg == nil:
+		if s[ls-1] != '.' {
+			s += "."
+			ls++
+		}
+	case msg != nil:
+		if s[ls-1] != '.' {
+			return lenmsg, 0, ErrFqdn
+		}
+	}
+	// Each dot ends a segment of the name.
+	// We trade each dot byte for a length byte.
+	// Except for escaped dots (\.), which are normal dots.
+	// There is also a trailing zero.
+
+	// Compression
+	nameoffset := -1
+	pointer := -1
+	// Emit sequence of counted strings, chopping at dots.
+	begin := 0
+	bs := []byte(s)
+	roBs, bsFresh, escapedDot := s, true, false
+	for i := 0; i < ls; i++ {
+		if bs[i] == '\\' {
+			for j := i; j < ls-1; j++ {
+				bs[j] = bs[j+1]
+			}
+			ls--
+			if off+1 > lenmsg {
+				return lenmsg, labels, ErrBuf
+			}
+			// check for \DDD
+			if i+2 < ls && isDigit(bs[i]) && isDigit(bs[i+1]) && isDigit(bs[i+2]) {
+				bs[i] = dddToByte(bs[i:])
+				for j := i + 1; j < ls-2; j++ {
+					bs[j] = bs[j+2]
+				}
+				ls -= 2
+			}
+			escapedDot = bs[i] == '.'
+			bsFresh = false
+			continue
+		}
+
+		if bs[i] == '.' {
+			if i > 0 && bs[i-1] == '.' && !escapedDot {
+				// two dots back to back is not legal
+				return lenmsg, labels, ErrRdata
+			}
+			if i-begin >= 1<<6 { // top two bits of length must be clear
+				return lenmsg, labels, ErrRdata
+			}
+			// off can already (we're in a loop) be bigger than len(msg)
+			// this happens when a name isn't fully qualified
+			if off+1 > lenmsg {
+				return lenmsg, labels, ErrBuf
+			}
+			if msg != nil {
+				msg[off] = byte(i - begin)
+			}
+			offset := off
+			off++
+			for j := begin; j < i; j++ {
+				if off+1 > lenmsg {
+					return lenmsg, labels, ErrBuf
+				}
+				if msg != nil {
+					msg[off] = bs[j]
+				}
+				off++
+			}
+			if compress && !bsFresh {
+				roBs = string(bs)
+				bsFresh = true
+			}
+			// Don't try to compress '.'
+			// We should only compress when compress it true, but we should also still pick
+			// up names that can be used for *future* compression(s).
+			if compression != nil && roBs[begin:] != "." {
+				if p, ok := compression[roBs[begin:]]; !ok {
+					// Only offsets smaller than this can be used.
+					if offset < maxCompressionOffset {
+						compression[roBs[begin:]] = offset
+					}
+				} else {
+					// The first hit is the longest matching dname
+					// keep the pointer offset we get back and store
+					// the offset of the current name, because that's
+					// where we need to insert the pointer later
+
+					// If compress is true, we're allowed to compress this dname
+					if pointer == -1 && compress {
+						pointer = p         // Where to point to
+						nameoffset = offset // Where to point from
+						break
+					}
+				}
+			}
+			labels++
+			begin = i + 1
+		}
+		escapedDot = false
+	}
+	// Root label is special
+	if len(bs) == 1 && bs[0] == '.' {
+		return off, labels, nil
+	}
+	// If we did compression and we find something add the pointer here
+	if pointer != -1 {
+		// We have two bytes (14 bits) to put the pointer in
+		// if msg == nil, we will never do compression
+		binary.BigEndian.PutUint16(msg[nameoffset:], uint16(pointer^0xC000))
+		off = nameoffset + 1
+		goto End
+	}
+	if msg != nil && off < len(msg) {
+		msg[off] = 0
+	}
+End:
+	off++
+	return off, labels, nil
+}
+
+// Unpack a domain name.
+// In addition to the simple sequences of counted strings above,
+// domain names are allowed to refer to strings elsewhere in the
+// packet, to avoid repeating common suffixes when returning
+// many entries in a single domain.  The pointers are marked
+// by a length byte with the top two bits set.  Ignoring those
+// two bits, that byte and the next give a 14 bit offset from msg[0]
+// where we should pick up the trail.
+// Note that if we jump elsewhere in the packet,
+// we return off1 == the offset after the first pointer we found,
+// which is where the next record will start.
+// In theory, the pointers are only allowed to jump backward.
+// We let them jump anywhere and stop jumping after a while.
+
+// UnpackDomainName unpacks a domain name into a string.
+func UnpackDomainName(msg []byte, off int) (string, int, error) {
+	s := make([]byte, 0, 64)
+	off1 := 0
+	lenmsg := len(msg)
+	maxLen := maxDomainNameWireOctets
+	ptr := 0 // number of pointers followed
+Loop:
+	for {
+		if off >= lenmsg {
+			return "", lenmsg, ErrBuf
+		}
+		c := int(msg[off])
+		off++
+		switch c & 0xC0 {
+		case 0x00:
+			if c == 0x00 {
+				// end of name
+				break Loop
+			}
+			// literal string
+			if off+c > lenmsg {
+				return "", lenmsg, ErrBuf
+			}
+			for j := off; j < off+c; j++ {
+				switch b := msg[j]; b {
+				case '.', '(', ')', ';', ' ', '@':
+					fallthrough
+				case '"', '\\':
+					s = append(s, '\\', b)
+					// presentation-format \X escapes add an extra byte
+					maxLen++
+				default:
+					if b < 32 || b >= 127 { // unprintable, use \DDD
+						var buf [3]byte
+						bufs := strconv.AppendInt(buf[:0], int64(b), 10)
+						s = append(s, '\\')
+						for i := 0; i < 3-len(bufs); i++ {
+							s = append(s, '0')
+						}
+						for _, r := range bufs {
+							s = append(s, r)
+						}
+						// presentation-format \DDD escapes add 3 extra bytes
+						maxLen += 3
+					} else {
+						s = append(s, b)
+					}
+				}
+			}
+			s = append(s, '.')
+			off += c
+		case 0xC0:
+			// pointer to somewhere else in msg.
+			// remember location after first ptr,
+			// since that's how many bytes we consumed.
+			// also, don't follow too many pointers --
+			// maybe there's a loop.
+			if off >= lenmsg {
+				return "", lenmsg, ErrBuf
+			}
+			c1 := msg[off]
+			off++
+			if ptr == 0 {
+				off1 = off
+			}
+			if ptr++; ptr > 10 {
+				return "", lenmsg, &Error{err: "too many compression pointers"}
+			}
+			// pointer should guarantee that it advances and points forwards at least
+			// but the condition on previous three lines guarantees that it's
+			// at least loop-free
+			off = (c^0xC0)<<8 | int(c1)
+		default:
+			// 0x80 and 0x40 are reserved
+			return "", lenmsg, ErrRdata
+		}
+	}
+	if ptr == 0 {
+		off1 = off
+	}
+	if len(s) == 0 {
+		s = []byte(".")
+	} else if len(s) >= maxLen {
+		// error if the name is too long, but don't throw it away
+		return string(s), lenmsg, ErrLongDomain
+	}
+	return string(s), off1, nil
+}
+
+func packTxt(txt []string, msg []byte, offset int, tmp []byte) (int, error) {
+	if len(txt) == 0 {
+		if offset >= len(msg) {
+			return offset, ErrBuf
+		}
+		msg[offset] = 0
+		return offset, nil
+	}
+	var err error
+	for i := range txt {
+		if len(txt[i]) > len(tmp) {
+			return offset, ErrBuf
+		}
+		offset, err = packTxtString(txt[i], msg, offset, tmp)
+		if err != nil {
+			return offset, err
+		}
+	}
+	return offset, nil
+}
+
+func packTxtString(s string, msg []byte, offset int, tmp []byte) (int, error) {
+	lenByteOffset := offset
+	if offset >= len(msg) || len(s) > len(tmp) {
+		return offset, ErrBuf
+	}
+	offset++
+	bs := tmp[:len(s)]
+	copy(bs, s)
+	for i := 0; i < len(bs); i++ {
+		if len(msg) <= offset {
+			return offset, ErrBuf
+		}
+		if bs[i] == '\\' {
+			i++
+			if i == len(bs) {
+				break
+			}
+			// check for \DDD
+			if i+2 < len(bs) && isDigit(bs[i]) && isDigit(bs[i+1]) && isDigit(bs[i+2]) {
+				msg[offset] = dddToByte(bs[i:])
+				i += 2
+			} else {
+				msg[offset] = bs[i]
+			}
+		} else {
+			msg[offset] = bs[i]
+		}
+		offset++
+	}
+	l := offset - lenByteOffset - 1
+	if l > 255 {
+		return offset, &Error{err: "string exceeded 255 bytes in txt"}
+	}
+	msg[lenByteOffset] = byte(l)
+	return offset, nil
+}
+
+func packOctetString(s string, msg []byte, offset int, tmp []byte) (int, error) {
+	if offset >= len(msg) || len(s) > len(tmp) {
+		return offset, ErrBuf
+	}
+	bs := tmp[:len(s)]
+	copy(bs, s)
+	for i := 0; i < len(bs); i++ {
+		if len(msg) <= offset {
+			return offset, ErrBuf
+		}
+		if bs[i] == '\\' {
+			i++
+			if i == len(bs) {
+				break
+			}
+			// check for \DDD
+			if i+2 < len(bs) && isDigit(bs[i]) && isDigit(bs[i+1]) && isDigit(bs[i+2]) {
+				msg[offset] = dddToByte(bs[i:])
+				i += 2
+			} else {
+				msg[offset] = bs[i]
+			}
+		} else {
+			msg[offset] = bs[i]
+		}
+		offset++
+	}
+	return offset, nil
+}
+
+func unpackTxt(msg []byte, off0 int) (ss []string, off int, err error) {
+	off = off0
+	var s string
+	for off < len(msg) && err == nil {
+		s, off, err = unpackTxtString(msg, off)
+		if err == nil {
+			ss = append(ss, s)
+		}
+	}
+	return
+}
+
+func unpackTxtString(msg []byte, offset int) (string, int, error) {
+	if offset+1 > len(msg) {
+		return "", offset, &Error{err: "overflow unpacking txt"}
+	}
+	l := int(msg[offset])
+	if offset+l+1 > len(msg) {
+		return "", offset, &Error{err: "overflow unpacking txt"}
+	}
+	s := make([]byte, 0, l)
+	for _, b := range msg[offset+1 : offset+1+l] {
+		switch b {
+		case '"', '\\':
+			s = append(s, '\\', b)
+		default:
+			if b < 32 || b > 127 { // unprintable
+				var buf [3]byte
+				bufs := strconv.AppendInt(buf[:0], int64(b), 10)
+				s = append(s, '\\')
+				for i := 0; i < 3-len(bufs); i++ {
+					s = append(s, '0')
+				}
+				for _, r := range bufs {
+					s = append(s, r)
+				}
+			} else {
+				s = append(s, b)
+			}
+		}
+	}
+	offset += 1 + l
+	return string(s), offset, nil
+}
+
+// Helpers for dealing with escaped bytes
+func isDigit(b byte) bool { return b >= '0' && b <= '9' }
+
+func dddToByte(s []byte) byte {
+	return byte((s[0]-'0')*100 + (s[1]-'0')*10 + (s[2] - '0'))
+}
+
+// Helper function for packing and unpacking
+func intToBytes(i *big.Int, length int) []byte {
+	buf := i.Bytes()
+	if len(buf) < length {
+		b := make([]byte, length)
+		copy(b[length-len(buf):], buf)
+		return b
+	}
+	return buf
+}
+
+// PackRR packs a resource record rr into msg[off:].
+// See PackDomainName for documentation about the compression.
+func PackRR(rr RR, msg []byte, off int, compression map[string]int, compress bool) (off1 int, err error) {
+	if rr == nil {
+		return len(msg), &Error{err: "nil rr"}
+	}
+
+	off1, err = rr.pack(msg, off, compression, compress)
+	if err != nil {
+		return len(msg), err
+	}
+	// TODO(miek): Not sure if this is needed? If removed we can remove rawmsg.go as well.
+	if rawSetRdlength(msg, off, off1) {
+		return off1, nil
+	}
+	return off, ErrRdata
+}
+
+// UnpackRR unpacks msg[off:] into an RR.
+func UnpackRR(msg []byte, off int) (rr RR, off1 int, err error) {
+	h, off, msg, err := unpackHeader(msg, off)
+	if err != nil {
+		return nil, len(msg), err
+	}
+
+	return UnpackRRWithHeader(h, msg, off)
+}
+
+// UnpackRRWithHeader unpacks the record type specific payload given an existing
+// RR_Header.
+func UnpackRRWithHeader(h RR_Header, msg []byte, off int) (rr RR, off1 int, err error) {
+	end := off + int(h.Rdlength)
+
+	if fn, known := typeToUnpack[h.Rrtype]; !known {
+		rr, off, err = unpackRFC3597(h, msg, off)
+	} else {
+		rr, off, err = fn(h, msg, off)
+	}
+	if off != end {
+		return &h, end, &Error{err: "bad rdlength"}
+	}
+	return rr, off, err
+}
+
+// unpackRRslice unpacks msg[off:] into an []RR.
+// If we cannot unpack the whole array, then it will return nil
+func unpackRRslice(l int, msg []byte, off int) (dst1 []RR, off1 int, err error) {
+	var r RR
+	// Don't pre-allocate, l may be under attacker control
+	var dst []RR
+	for i := 0; i < l; i++ {
+		off1 := off
+		r, off, err = UnpackRR(msg, off)
+		if err != nil {
+			off = len(msg)
+			break
+		}
+		// If offset does not increase anymore, l is a lie
+		if off1 == off {
+			l = i
+			break
+		}
+		dst = append(dst, r)
+	}
+	if err != nil && off == len(msg) {
+		dst = nil
+	}
+	return dst, off, err
+}
+
+// Convert a MsgHdr to a string, with dig-like headers:
+//
+//;; opcode: QUERY, status: NOERROR, id: 48404
+//
+//;; flags: qr aa rd ra;
+func (h *MsgHdr) String() string {
+	if h == nil {
+		return "<nil> MsgHdr"
+	}
+
+	s := ";; opcode: " + OpcodeToString[h.Opcode]
+	s += ", status: " + RcodeToString[h.Rcode]
+	s += ", id: " + strconv.Itoa(int(h.Id)) + "\n"
+
+	s += ";; flags:"
+	if h.Response {
+		s += " qr"
+	}
+	if h.Authoritative {
+		s += " aa"
+	}
+	if h.Truncated {
+		s += " tc"
+	}
+	if h.RecursionDesired {
+		s += " rd"
+	}
+	if h.RecursionAvailable {
+		s += " ra"
+	}
+	if h.Zero { // Hmm
+		s += " z"
+	}
+	if h.AuthenticatedData {
+		s += " ad"
+	}
+	if h.CheckingDisabled {
+		s += " cd"
+	}
+
+	s += ";"
+	return s
+}
+
+// Pack packs a Msg: it is converted to to wire format.
+// If the dns.Compress is true the message will be in compressed wire format.
+func (dns *Msg) Pack() (msg []byte, err error) {
+	return dns.PackBuffer(nil)
+}
+
+// PackBuffer packs a Msg, using the given buffer buf. If buf is too small
+// a new buffer is allocated.
+func (dns *Msg) PackBuffer(buf []byte) (msg []byte, err error) {
+	// We use a similar function in tsig.go's stripTsig.
+	var (
+		dh          Header
+		compression map[string]int
+	)
+
+	if dns.Compress {
+		compression = make(map[string]int) // Compression pointer mappings
+	}
+
+	if dns.Rcode < 0 || dns.Rcode > 0xFFF {
+		return nil, ErrRcode
+	}
+	if dns.Rcode > 0xF {
+		// Regular RCODE field is 4 bits
+		opt := dns.IsEdns0()
+		if opt == nil {
+			return nil, ErrExtendedRcode
+		}
+		opt.SetExtendedRcode(uint8(dns.Rcode >> 4))
+		dns.Rcode &= 0xF
+	}
+
+	// Convert convenient Msg into wire-like Header.
+	dh.Id = dns.Id
+	dh.Bits = uint16(dns.Opcode)<<11 | uint16(dns.Rcode)
+	if dns.Response {
+		dh.Bits |= _QR
+	}
+	if dns.Authoritative {
+		dh.Bits |= _AA
+	}
+	if dns.Truncated {
+		dh.Bits |= _TC
+	}
+	if dns.RecursionDesired {
+		dh.Bits |= _RD
+	}
+	if dns.RecursionAvailable {
+		dh.Bits |= _RA
+	}
+	if dns.Zero {
+		dh.Bits |= _Z
+	}
+	if dns.AuthenticatedData {
+		dh.Bits |= _AD
+	}
+	if dns.CheckingDisabled {
+		dh.Bits |= _CD
+	}
+
+	// Prepare variable sized arrays.
+	question := dns.Question
+	answer := dns.Answer
+	ns := dns.Ns
+	extra := dns.Extra
+
+	dh.Qdcount = uint16(len(question))
+	dh.Ancount = uint16(len(answer))
+	dh.Nscount = uint16(len(ns))
+	dh.Arcount = uint16(len(extra))
+
+	// We need the uncompressed length here, because we first pack it and then compress it.
+	msg = buf
+	uncompressedLen := compressedLen(dns, false)
+	if packLen := uncompressedLen + 1; len(msg) < packLen {
+		msg = make([]byte, packLen)
+	}
+
+	// Pack it in: header and then the pieces.
+	off := 0
+	off, err = dh.pack(msg, off, compression, dns.Compress)
+	if err != nil {
+		return nil, err
+	}
+	for i := 0; i < len(question); i++ {
+		off, err = question[i].pack(msg, off, compression, dns.Compress)
+		if err != nil {
+			return nil, err
+		}
+	}
+	for i := 0; i < len(answer); i++ {
+		off, err = PackRR(answer[i], msg, off, compression, dns.Compress)
+		if err != nil {
+			return nil, err
+		}
+	}
+	for i := 0; i < len(ns); i++ {
+		off, err = PackRR(ns[i], msg, off, compression, dns.Compress)
+		if err != nil {
+			return nil, err
+		}
+	}
+	for i := 0; i < len(extra); i++ {
+		off, err = PackRR(extra[i], msg, off, compression, dns.Compress)
+		if err != nil {
+			return nil, err
+		}
+	}
+	return msg[:off], nil
+}
+
+// Unpack unpacks a binary message to a Msg structure.
+func (dns *Msg) Unpack(msg []byte) (err error) {
+	var (
+		dh  Header
+		off int
+	)
+	if dh, off, err = unpackMsgHdr(msg, off); err != nil {
+		return err
+	}
+
+	dns.Id = dh.Id
+	dns.Response = (dh.Bits & _QR) != 0
+	dns.Opcode = int(dh.Bits>>11) & 0xF
+	dns.Authoritative = (dh.Bits & _AA) != 0
+	dns.Truncated = (dh.Bits & _TC) != 0
+	dns.RecursionDesired = (dh.Bits & _RD) != 0
+	dns.RecursionAvailable = (dh.Bits & _RA) != 0
+	dns.Zero = (dh.Bits & _Z) != 0
+	dns.AuthenticatedData = (dh.Bits & _AD) != 0
+	dns.CheckingDisabled = (dh.Bits & _CD) != 0
+	dns.Rcode = int(dh.Bits & 0xF)
+
+	// If we are at the end of the message we should return *just* the
+	// header. This can still be useful to the caller. 9.9.9.9 sends these
+	// when responding with REFUSED for instance.
+	if off == len(msg) {
+		// reset sections before returning
+		dns.Question, dns.Answer, dns.Ns, dns.Extra = nil, nil, nil, nil
+		return nil
+	}
+
+	// Qdcount, Ancount, Nscount, Arcount can't be trusted, as they are
+	// attacker controlled. This means we can't use them to pre-allocate
+	// slices.
+	dns.Question = nil
+	for i := 0; i < int(dh.Qdcount); i++ {
+		off1 := off
+		var q Question
+		q, off, err = unpackQuestion(msg, off)
+		if err != nil {
+			// Even if Truncated is set, we only will set ErrTruncated if we
+			// actually got the questions
+			return err
+		}
+		if off1 == off { // Offset does not increase anymore, dh.Qdcount is a lie!
+			dh.Qdcount = uint16(i)
+			break
+		}
+		dns.Question = append(dns.Question, q)
+	}
+
+	dns.Answer, off, err = unpackRRslice(int(dh.Ancount), msg, off)
+	// The header counts might have been wrong so we need to update it
+	dh.Ancount = uint16(len(dns.Answer))
+	if err == nil {
+		dns.Ns, off, err = unpackRRslice(int(dh.Nscount), msg, off)
+	}
+	// The header counts might have been wrong so we need to update it
+	dh.Nscount = uint16(len(dns.Ns))
+	if err == nil {
+		dns.Extra, off, err = unpackRRslice(int(dh.Arcount), msg, off)
+	}
+	// The header counts might have been wrong so we need to update it
+	dh.Arcount = uint16(len(dns.Extra))
+
+	if off != len(msg) {
+		// TODO(miek) make this an error?
+		// use PackOpt to let people tell how detailed the error reporting should be?
+		// println("dns: extra bytes in dns packet", off, "<", len(msg))
+	} else if dns.Truncated {
+		// Whether we ran into a an error or not, we want to return that it
+		// was truncated
+		err = ErrTruncated
+	}
+	return err
+}
+
+// Convert a complete message to a string with dig-like output.
+func (dns *Msg) String() string {
+	if dns == nil {
+		return "<nil> MsgHdr"
+	}
+	s := dns.MsgHdr.String() + " "
+	s += "QUERY: " + strconv.Itoa(len(dns.Question)) + ", "
+	s += "ANSWER: " + strconv.Itoa(len(dns.Answer)) + ", "
+	s += "AUTHORITY: " + strconv.Itoa(len(dns.Ns)) + ", "
+	s += "ADDITIONAL: " + strconv.Itoa(len(dns.Extra)) + "\n"
+	if len(dns.Question) > 0 {
+		s += "\n;; QUESTION SECTION:\n"
+		for i := 0; i < len(dns.Question); i++ {
+			s += dns.Question[i].String() + "\n"
+		}
+	}
+	if len(dns.Answer) > 0 {
+		s += "\n;; ANSWER SECTION:\n"
+		for i := 0; i < len(dns.Answer); i++ {
+			if dns.Answer[i] != nil {
+				s += dns.Answer[i].String() + "\n"
+			}
+		}
+	}
+	if len(dns.Ns) > 0 {
+		s += "\n;; AUTHORITY SECTION:\n"
+		for i := 0; i < len(dns.Ns); i++ {
+			if dns.Ns[i] != nil {
+				s += dns.Ns[i].String() + "\n"
+			}
+		}
+	}
+	if len(dns.Extra) > 0 {
+		s += "\n;; ADDITIONAL SECTION:\n"
+		for i := 0; i < len(dns.Extra); i++ {
+			if dns.Extra[i] != nil {
+				s += dns.Extra[i].String() + "\n"
+			}
+		}
+	}
+	return s
+}
+
+// Len returns the message length when in (un)compressed wire format.
+// If dns.Compress is true compression it is taken into account. Len()
+// is provided to be a faster way to get the size of the resulting packet,
+// than packing it, measuring the size and discarding the buffer.
+func (dns *Msg) Len() int { return compressedLen(dns, dns.Compress) }
+
+// compressedLen returns the message length when in compressed wire format
+// when compress is true, otherwise the uncompressed length is returned.
+func compressedLen(dns *Msg, compress bool) int {
+	// We always return one more than needed.
+	l := 12 // Message header is always 12 bytes
+	if compress {
+		compression := map[string]int{}
+		for _, r := range dns.Question {
+			l += r.len()
+			compressionLenHelper(compression, r.Name)
+		}
+		l += compressionLenSlice(l, compression, dns.Answer)
+		l += compressionLenSlice(l, compression, dns.Ns)
+		l += compressionLenSlice(l, compression, dns.Extra)
+
+		return l
+	}
+
+	for _, r := range dns.Question {
+		l += r.len()
+	}
+	for _, r := range dns.Answer {
+		if r != nil {
+			l += r.len()
+		}
+	}
+	for _, r := range dns.Ns {
+		if r != nil {
+			l += r.len()
+		}
+	}
+	for _, r := range dns.Extra {
+		if r != nil {
+			l += r.len()
+		}
+	}
+
+	return l
+}
+
+func compressionLenSlice(len int, c map[string]int, rs []RR) int {
+	var l int
+	for _, r := range rs {
+		if r == nil {
+			continue
+		}
+		// track this length, and the global length in len, while taking compression into account for both.
+		x := r.len()
+		l += x
+		len += x
+
+		k, ok := compressionLenSearch(c, r.Header().Name)
+		if ok {
+			l += 1 - k
+			len += 1 - k
+		}
+
+		if len < maxCompressionOffset {
+			compressionLenHelper(c, r.Header().Name)
+		}
+
+		k, ok = compressionLenSearchType(c, r)
+		if ok {
+			l += 1 - k
+			len += 1 - k
+		}
+
+		if len < maxCompressionOffset {
+			compressionLenHelperType(c, r)
+		}
+	}
+	return l
+}
+
+// Put the parts of the name in the compression map.
+func compressionLenHelper(c map[string]int, s string) {
+	pref := ""
+	lbs := Split(s)
+	for j := len(lbs) - 1; j >= 0; j-- {
+		pref = s[lbs[j]:]
+		if _, ok := c[pref]; !ok {
+			c[pref] = len(pref)
+		}
+	}
+}
+
+// Look for each part in the compression map and returns its length,
+// keep on searching so we get the longest match.
+func compressionLenSearch(c map[string]int, s string) (int, bool) {
+	off := 0
+	end := false
+	if s == "" { // don't bork on bogus data
+		return 0, false
+	}
+	for {
+		if _, ok := c[s[off:]]; ok {
+			return len(s[off:]), true
+		}
+		if end {
+			break
+		}
+		off, end = NextLabel(s, off)
+	}
+	return 0, false
+}
+
+// Copy returns a new RR which is a deep-copy of r.
+func Copy(r RR) RR { r1 := r.copy(); return r1 }
+
+// Len returns the length (in octets) of the uncompressed RR in wire format.
+func Len(r RR) int { return r.len() }
+
+// Copy returns a new *Msg which is a deep-copy of dns.
+func (dns *Msg) Copy() *Msg { return dns.CopyTo(new(Msg)) }
+
+// CopyTo copies the contents to the provided message using a deep-copy and returns the copy.
+func (dns *Msg) CopyTo(r1 *Msg) *Msg {
+	r1.MsgHdr = dns.MsgHdr
+	r1.Compress = dns.Compress
+
+	if len(dns.Question) > 0 {
+		r1.Question = make([]Question, len(dns.Question))
+		copy(r1.Question, dns.Question) // TODO(miek): Question is an immutable value, ok to do a shallow-copy
+	}
+
+	rrArr := make([]RR, len(dns.Answer)+len(dns.Ns)+len(dns.Extra))
+	var rri int
+
+	if len(dns.Answer) > 0 {
+		rrbegin := rri
+		for i := 0; i < len(dns.Answer); i++ {
+			rrArr[rri] = dns.Answer[i].copy()
+			rri++
+		}
+		r1.Answer = rrArr[rrbegin:rri:rri]
+	}
+
+	if len(dns.Ns) > 0 {
+		rrbegin := rri
+		for i := 0; i < len(dns.Ns); i++ {
+			rrArr[rri] = dns.Ns[i].copy()
+			rri++
+		}
+		r1.Ns = rrArr[rrbegin:rri:rri]
+	}
+
+	if len(dns.Extra) > 0 {
+		rrbegin := rri
+		for i := 0; i < len(dns.Extra); i++ {
+			rrArr[rri] = dns.Extra[i].copy()
+			rri++
+		}
+		r1.Extra = rrArr[rrbegin:rri:rri]
+	}
+
+	return r1
+}
+
+func (q *Question) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := PackDomainName(q.Name, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(q.Qtype, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(q.Qclass, msg, off)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
+
+func unpackQuestion(msg []byte, off int) (Question, int, error) {
+	var (
+		q   Question
+		err error
+	)
+	q.Name, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return q, off, err
+	}
+	if off == len(msg) {
+		return q, off, nil
+	}
+	q.Qtype, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return q, off, err
+	}
+	if off == len(msg) {
+		return q, off, nil
+	}
+	q.Qclass, off, err = unpackUint16(msg, off)
+	if off == len(msg) {
+		return q, off, nil
+	}
+	return q, off, err
+}
+
+func (dh *Header) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := packUint16(dh.Id, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(dh.Bits, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(dh.Qdcount, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(dh.Ancount, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(dh.Nscount, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(dh.Arcount, msg, off)
+	return off, err
+}
+
+func unpackMsgHdr(msg []byte, off int) (Header, int, error) {
+	var (
+		dh  Header
+		err error
+	)
+	dh.Id, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return dh, off, err
+	}
+	dh.Bits, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return dh, off, err
+	}
+	dh.Qdcount, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return dh, off, err
+	}
+	dh.Ancount, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return dh, off, err
+	}
+	dh.Nscount, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return dh, off, err
+	}
+	dh.Arcount, off, err = unpackUint16(msg, off)
+	return dh, off, err
+}
diff --git a/vendor/github.com/miekg/dns/msg_generate.go b/vendor/github.com/miekg/dns/msg_generate.go
new file mode 100644
index 0000000000..8ba609f726
--- /dev/null
+++ b/vendor/github.com/miekg/dns/msg_generate.go
@@ -0,0 +1,348 @@
+//+build ignore
+
+// msg_generate.go is meant to run with go generate. It will use
+// go/{importer,types} to track down all the RR struct types. Then for each type
+// it will generate pack/unpack methods based on the struct tags. The generated source is
+// written to zmsg.go, and is meant to be checked into git.
+package main
+
+import (
+	"bytes"
+	"fmt"
+	"go/format"
+	"go/importer"
+	"go/types"
+	"log"
+	"os"
+	"strings"
+)
+
+var packageHdr = `
+// Code generated by "go run msg_generate.go"; DO NOT EDIT.
+
+package dns
+
+`
+
+// getTypeStruct will take a type and the package scope, and return the
+// (innermost) struct if the type is considered a RR type (currently defined as
+// those structs beginning with a RR_Header, could be redefined as implementing
+// the RR interface). The bool return value indicates if embedded structs were
+// resolved.
+func getTypeStruct(t types.Type, scope *types.Scope) (*types.Struct, bool) {
+	st, ok := t.Underlying().(*types.Struct)
+	if !ok {
+		return nil, false
+	}
+	if st.Field(0).Type() == scope.Lookup("RR_Header").Type() {
+		return st, false
+	}
+	if st.Field(0).Anonymous() {
+		st, _ := getTypeStruct(st.Field(0).Type(), scope)
+		return st, true
+	}
+	return nil, false
+}
+
+func main() {
+	// Import and type-check the package
+	pkg, err := importer.Default().Import("github.com/miekg/dns")
+	fatalIfErr(err)
+	scope := pkg.Scope()
+
+	// Collect actual types (*X)
+	var namedTypes []string
+	for _, name := range scope.Names() {
+		o := scope.Lookup(name)
+		if o == nil || !o.Exported() {
+			continue
+		}
+		if st, _ := getTypeStruct(o.Type(), scope); st == nil {
+			continue
+		}
+		if name == "PrivateRR" {
+			continue
+		}
+
+		// Check if corresponding TypeX exists
+		if scope.Lookup("Type"+o.Name()) == nil && o.Name() != "RFC3597" {
+			log.Fatalf("Constant Type%s does not exist.", o.Name())
+		}
+
+		namedTypes = append(namedTypes, o.Name())
+	}
+
+	b := &bytes.Buffer{}
+	b.WriteString(packageHdr)
+
+	fmt.Fprint(b, "// pack*() functions\n\n")
+	for _, name := range namedTypes {
+		o := scope.Lookup(name)
+		st, _ := getTypeStruct(o.Type(), scope)
+
+		fmt.Fprintf(b, "func (rr *%s) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {\n", name)
+		fmt.Fprint(b, `off, err := rr.Hdr.pack(msg, off, compression, compress)
+if err != nil {
+	return off, err
+}
+headerEnd := off
+`)
+		for i := 1; i < st.NumFields(); i++ {
+			o := func(s string) {
+				fmt.Fprintf(b, s, st.Field(i).Name())
+				fmt.Fprint(b, `if err != nil {
+return off, err
+}
+`)
+			}
+
+			if _, ok := st.Field(i).Type().(*types.Slice); ok {
+				switch st.Tag(i) {
+				case `dns:"-"`: // ignored
+				case `dns:"txt"`:
+					o("off, err = packStringTxt(rr.%s, msg, off)\n")
+				case `dns:"opt"`:
+					o("off, err = packDataOpt(rr.%s, msg, off)\n")
+				case `dns:"nsec"`:
+					o("off, err = packDataNsec(rr.%s, msg, off)\n")
+				case `dns:"domain-name"`:
+					o("off, err = packDataDomainNames(rr.%s, msg, off, compression, compress)\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+				}
+				continue
+			}
+
+			switch {
+			case st.Tag(i) == `dns:"-"`: // ignored
+			case st.Tag(i) == `dns:"cdomain-name"`:
+				o("off, err = PackDomainName(rr.%s, msg, off, compression, compress)\n")
+			case st.Tag(i) == `dns:"domain-name"`:
+				o("off, err = PackDomainName(rr.%s, msg, off, compression, false)\n")
+			case st.Tag(i) == `dns:"a"`:
+				o("off, err = packDataA(rr.%s, msg, off)\n")
+			case st.Tag(i) == `dns:"aaaa"`:
+				o("off, err = packDataAAAA(rr.%s, msg, off)\n")
+			case st.Tag(i) == `dns:"uint48"`:
+				o("off, err = packUint48(rr.%s, msg, off)\n")
+			case st.Tag(i) == `dns:"txt"`:
+				o("off, err = packString(rr.%s, msg, off)\n")
+
+			case strings.HasPrefix(st.Tag(i), `dns:"size-base32`): // size-base32 can be packed just like base32
+				fallthrough
+			case st.Tag(i) == `dns:"base32"`:
+				o("off, err = packStringBase32(rr.%s, msg, off)\n")
+
+			case strings.HasPrefix(st.Tag(i), `dns:"size-base64`): // size-base64 can be packed just like base64
+				fallthrough
+			case st.Tag(i) == `dns:"base64"`:
+				o("off, err = packStringBase64(rr.%s, msg, off)\n")
+
+			case strings.HasPrefix(st.Tag(i), `dns:"size-hex:SaltLength`):
+				// directly write instead of using o() so we get the error check in the correct place
+				field := st.Field(i).Name()
+				fmt.Fprintf(b, `// Only pack salt if value is not "-", i.e. empty
+if rr.%s != "-" {
+  off, err = packStringHex(rr.%s, msg, off)
+  if err != nil {
+    return off, err
+  }
+}
+`, field, field)
+				continue
+			case strings.HasPrefix(st.Tag(i), `dns:"size-hex`): // size-hex can be packed just like hex
+				fallthrough
+			case st.Tag(i) == `dns:"hex"`:
+				o("off, err = packStringHex(rr.%s, msg, off)\n")
+
+			case st.Tag(i) == `dns:"octet"`:
+				o("off, err = packStringOctet(rr.%s, msg, off)\n")
+			case st.Tag(i) == "":
+				switch st.Field(i).Type().(*types.Basic).Kind() {
+				case types.Uint8:
+					o("off, err = packUint8(rr.%s, msg, off)\n")
+				case types.Uint16:
+					o("off, err = packUint16(rr.%s, msg, off)\n")
+				case types.Uint32:
+					o("off, err = packUint32(rr.%s, msg, off)\n")
+				case types.Uint64:
+					o("off, err = packUint64(rr.%s, msg, off)\n")
+				case types.String:
+					o("off, err = packString(rr.%s, msg, off)\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name())
+				}
+			default:
+				log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+			}
+		}
+		// We have packed everything, only now we know the rdlength of this RR
+		fmt.Fprintln(b, "rr.Header().Rdlength = uint16(off-headerEnd)")
+		fmt.Fprintln(b, "return off, nil }\n")
+	}
+
+	fmt.Fprint(b, "// unpack*() functions\n\n")
+	for _, name := range namedTypes {
+		o := scope.Lookup(name)
+		st, _ := getTypeStruct(o.Type(), scope)
+
+		fmt.Fprintf(b, "func unpack%s(h RR_Header, msg []byte, off int) (RR, int, error) {\n", name)
+		fmt.Fprintf(b, "rr := new(%s)\n", name)
+		fmt.Fprint(b, "rr.Hdr = h\n")
+		fmt.Fprint(b, `if noRdata(h) {
+return rr, off, nil
+	}
+var err error
+rdStart := off
+_ = rdStart
+
+`)
+		for i := 1; i < st.NumFields(); i++ {
+			o := func(s string) {
+				fmt.Fprintf(b, s, st.Field(i).Name())
+				fmt.Fprint(b, `if err != nil {
+return rr, off, err
+}
+`)
+			}
+
+			// size-* are special, because they reference a struct member we should use for the length.
+			if strings.HasPrefix(st.Tag(i), `dns:"size-`) {
+				structMember := structMember(st.Tag(i))
+				structTag := structTag(st.Tag(i))
+				switch structTag {
+				case "hex":
+					fmt.Fprintf(b, "rr.%s, off, err = unpackStringHex(msg, off, off + int(rr.%s))\n", st.Field(i).Name(), structMember)
+				case "base32":
+					fmt.Fprintf(b, "rr.%s, off, err = unpackStringBase32(msg, off, off + int(rr.%s))\n", st.Field(i).Name(), structMember)
+				case "base64":
+					fmt.Fprintf(b, "rr.%s, off, err = unpackStringBase64(msg, off, off + int(rr.%s))\n", st.Field(i).Name(), structMember)
+				default:
+					log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+				}
+				fmt.Fprint(b, `if err != nil {
+return rr, off, err
+}
+`)
+				continue
+			}
+
+			if _, ok := st.Field(i).Type().(*types.Slice); ok {
+				switch st.Tag(i) {
+				case `dns:"-"`: // ignored
+				case `dns:"txt"`:
+					o("rr.%s, off, err = unpackStringTxt(msg, off)\n")
+				case `dns:"opt"`:
+					o("rr.%s, off, err = unpackDataOpt(msg, off)\n")
+				case `dns:"nsec"`:
+					o("rr.%s, off, err = unpackDataNsec(msg, off)\n")
+				case `dns:"domain-name"`:
+					o("rr.%s, off, err = unpackDataDomainNames(msg, off, rdStart + int(rr.Hdr.Rdlength))\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+				}
+				continue
+			}
+
+			switch st.Tag(i) {
+			case `dns:"-"`: // ignored
+			case `dns:"cdomain-name"`:
+				fallthrough
+			case `dns:"domain-name"`:
+				o("rr.%s, off, err = UnpackDomainName(msg, off)\n")
+			case `dns:"a"`:
+				o("rr.%s, off, err = unpackDataA(msg, off)\n")
+			case `dns:"aaaa"`:
+				o("rr.%s, off, err = unpackDataAAAA(msg, off)\n")
+			case `dns:"uint48"`:
+				o("rr.%s, off, err = unpackUint48(msg, off)\n")
+			case `dns:"txt"`:
+				o("rr.%s, off, err = unpackString(msg, off)\n")
+			case `dns:"base32"`:
+				o("rr.%s, off, err = unpackStringBase32(msg, off, rdStart + int(rr.Hdr.Rdlength))\n")
+			case `dns:"base64"`:
+				o("rr.%s, off, err = unpackStringBase64(msg, off, rdStart + int(rr.Hdr.Rdlength))\n")
+			case `dns:"hex"`:
+				o("rr.%s, off, err = unpackStringHex(msg, off, rdStart + int(rr.Hdr.Rdlength))\n")
+			case `dns:"octet"`:
+				o("rr.%s, off, err = unpackStringOctet(msg, off)\n")
+			case "":
+				switch st.Field(i).Type().(*types.Basic).Kind() {
+				case types.Uint8:
+					o("rr.%s, off, err = unpackUint8(msg, off)\n")
+				case types.Uint16:
+					o("rr.%s, off, err = unpackUint16(msg, off)\n")
+				case types.Uint32:
+					o("rr.%s, off, err = unpackUint32(msg, off)\n")
+				case types.Uint64:
+					o("rr.%s, off, err = unpackUint64(msg, off)\n")
+				case types.String:
+					o("rr.%s, off, err = unpackString(msg, off)\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name())
+				}
+			default:
+				log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+			}
+			// If we've hit len(msg) we return without error.
+			if i < st.NumFields()-1 {
+				fmt.Fprintf(b, `if off == len(msg) {
+return rr, off, nil
+	}
+`)
+			}
+		}
+		fmt.Fprintf(b, "return rr, off, err }\n\n")
+	}
+	// Generate typeToUnpack map
+	fmt.Fprintln(b, "var typeToUnpack = map[uint16]func(RR_Header, []byte, int) (RR, int, error){")
+	for _, name := range namedTypes {
+		if name == "RFC3597" {
+			continue
+		}
+		fmt.Fprintf(b, "Type%s: unpack%s,\n", name, name)
+	}
+	fmt.Fprintln(b, "}\n")
+
+	// gofmt
+	res, err := format.Source(b.Bytes())
+	if err != nil {
+		b.WriteTo(os.Stderr)
+		log.Fatal(err)
+	}
+
+	// write result
+	f, err := os.Create("zmsg.go")
+	fatalIfErr(err)
+	defer f.Close()
+	f.Write(res)
+}
+
+// structMember will take a tag like dns:"size-base32:SaltLength" and return the last part of this string.
+func structMember(s string) string {
+	fields := strings.Split(s, ":")
+	if len(fields) == 0 {
+		return ""
+	}
+	f := fields[len(fields)-1]
+	// f should have a closing "
+	if len(f) > 1 {
+		return f[:len(f)-1]
+	}
+	return f
+}
+
+// structTag will take a tag like dns:"size-base32:SaltLength" and return base32.
+func structTag(s string) string {
+	fields := strings.Split(s, ":")
+	if len(fields) < 2 {
+		return ""
+	}
+	return fields[1][len("\"size-"):]
+}
+
+func fatalIfErr(err error) {
+	if err != nil {
+		log.Fatal(err)
+	}
+}
diff --git a/vendor/github.com/miekg/dns/msg_helpers.go b/vendor/github.com/miekg/dns/msg_helpers.go
new file mode 100644
index 0000000000..946d5acbf0
--- /dev/null
+++ b/vendor/github.com/miekg/dns/msg_helpers.go
@@ -0,0 +1,637 @@
+package dns
+
+import (
+	"encoding/base32"
+	"encoding/base64"
+	"encoding/binary"
+	"encoding/hex"
+	"net"
+	"strconv"
+)
+
+// helper functions called from the generated zmsg.go
+
+// These function are named after the tag to help pack/unpack, if there is no tag it is the name
+// of the type they pack/unpack (string, int, etc). We prefix all with unpackData or packData, so packDataA or
+// packDataDomainName.
+
+func unpackDataA(msg []byte, off int) (net.IP, int, error) {
+	if off+net.IPv4len > len(msg) {
+		return nil, len(msg), &Error{err: "overflow unpacking a"}
+	}
+	a := append(make(net.IP, 0, net.IPv4len), msg[off:off+net.IPv4len]...)
+	off += net.IPv4len
+	return a, off, nil
+}
+
+func packDataA(a net.IP, msg []byte, off int) (int, error) {
+	// It must be a slice of 4, even if it is 16, we encode only the first 4
+	if off+net.IPv4len > len(msg) {
+		return len(msg), &Error{err: "overflow packing a"}
+	}
+	switch len(a) {
+	case net.IPv4len, net.IPv6len:
+		copy(msg[off:], a.To4())
+		off += net.IPv4len
+	case 0:
+		// Allowed, for dynamic updates.
+	default:
+		return len(msg), &Error{err: "overflow packing a"}
+	}
+	return off, nil
+}
+
+func unpackDataAAAA(msg []byte, off int) (net.IP, int, error) {
+	if off+net.IPv6len > len(msg) {
+		return nil, len(msg), &Error{err: "overflow unpacking aaaa"}
+	}
+	aaaa := append(make(net.IP, 0, net.IPv6len), msg[off:off+net.IPv6len]...)
+	off += net.IPv6len
+	return aaaa, off, nil
+}
+
+func packDataAAAA(aaaa net.IP, msg []byte, off int) (int, error) {
+	if off+net.IPv6len > len(msg) {
+		return len(msg), &Error{err: "overflow packing aaaa"}
+	}
+
+	switch len(aaaa) {
+	case net.IPv6len:
+		copy(msg[off:], aaaa)
+		off += net.IPv6len
+	case 0:
+		// Allowed, dynamic updates.
+	default:
+		return len(msg), &Error{err: "overflow packing aaaa"}
+	}
+	return off, nil
+}
+
+// unpackHeader unpacks an RR header, returning the offset to the end of the header and a
+// re-sliced msg according to the expected length of the RR.
+func unpackHeader(msg []byte, off int) (rr RR_Header, off1 int, truncmsg []byte, err error) {
+	hdr := RR_Header{}
+	if off == len(msg) {
+		return hdr, off, msg, nil
+	}
+
+	hdr.Name, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return hdr, len(msg), msg, err
+	}
+	hdr.Rrtype, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return hdr, len(msg), msg, err
+	}
+	hdr.Class, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return hdr, len(msg), msg, err
+	}
+	hdr.Ttl, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return hdr, len(msg), msg, err
+	}
+	hdr.Rdlength, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return hdr, len(msg), msg, err
+	}
+	msg, err = truncateMsgFromRdlength(msg, off, hdr.Rdlength)
+	return hdr, off, msg, err
+}
+
+// pack packs an RR header, returning the offset to the end of the header.
+// See PackDomainName for documentation about the compression.
+func (hdr RR_Header) pack(msg []byte, off int, compression map[string]int, compress bool) (off1 int, err error) {
+	if off == len(msg) {
+		return off, nil
+	}
+
+	off, err = PackDomainName(hdr.Name, msg, off, compression, compress)
+	if err != nil {
+		return len(msg), err
+	}
+	off, err = packUint16(hdr.Rrtype, msg, off)
+	if err != nil {
+		return len(msg), err
+	}
+	off, err = packUint16(hdr.Class, msg, off)
+	if err != nil {
+		return len(msg), err
+	}
+	off, err = packUint32(hdr.Ttl, msg, off)
+	if err != nil {
+		return len(msg), err
+	}
+	off, err = packUint16(hdr.Rdlength, msg, off)
+	if err != nil {
+		return len(msg), err
+	}
+	return off, nil
+}
+
+// helper helper functions.
+
+// truncateMsgFromRdLength truncates msg to match the expected length of the RR.
+// Returns an error if msg is smaller than the expected size.
+func truncateMsgFromRdlength(msg []byte, off int, rdlength uint16) (truncmsg []byte, err error) {
+	lenrd := off + int(rdlength)
+	if lenrd > len(msg) {
+		return msg, &Error{err: "overflowing header size"}
+	}
+	return msg[:lenrd], nil
+}
+
+func fromBase32(s []byte) (buf []byte, err error) {
+	for i, b := range s {
+		if b >= 'a' && b <= 'z' {
+			s[i] = b - 32
+		}
+	}
+	buflen := base32.HexEncoding.DecodedLen(len(s))
+	buf = make([]byte, buflen)
+	n, err := base32.HexEncoding.Decode(buf, s)
+	buf = buf[:n]
+	return
+}
+
+func toBase32(b []byte) string { return base32.HexEncoding.EncodeToString(b) }
+
+func fromBase64(s []byte) (buf []byte, err error) {
+	buflen := base64.StdEncoding.DecodedLen(len(s))
+	buf = make([]byte, buflen)
+	n, err := base64.StdEncoding.Decode(buf, s)
+	buf = buf[:n]
+	return
+}
+
+func toBase64(b []byte) string { return base64.StdEncoding.EncodeToString(b) }
+
+// dynamicUpdate returns true if the Rdlength is zero.
+func noRdata(h RR_Header) bool { return h.Rdlength == 0 }
+
+func unpackUint8(msg []byte, off int) (i uint8, off1 int, err error) {
+	if off+1 > len(msg) {
+		return 0, len(msg), &Error{err: "overflow unpacking uint8"}
+	}
+	return uint8(msg[off]), off + 1, nil
+}
+
+func packUint8(i uint8, msg []byte, off int) (off1 int, err error) {
+	if off+1 > len(msg) {
+		return len(msg), &Error{err: "overflow packing uint8"}
+	}
+	msg[off] = byte(i)
+	return off + 1, nil
+}
+
+func unpackUint16(msg []byte, off int) (i uint16, off1 int, err error) {
+	if off+2 > len(msg) {
+		return 0, len(msg), &Error{err: "overflow unpacking uint16"}
+	}
+	return binary.BigEndian.Uint16(msg[off:]), off + 2, nil
+}
+
+func packUint16(i uint16, msg []byte, off int) (off1 int, err error) {
+	if off+2 > len(msg) {
+		return len(msg), &Error{err: "overflow packing uint16"}
+	}
+	binary.BigEndian.PutUint16(msg[off:], i)
+	return off + 2, nil
+}
+
+func unpackUint32(msg []byte, off int) (i uint32, off1 int, err error) {
+	if off+4 > len(msg) {
+		return 0, len(msg), &Error{err: "overflow unpacking uint32"}
+	}
+	return binary.BigEndian.Uint32(msg[off:]), off + 4, nil
+}
+
+func packUint32(i uint32, msg []byte, off int) (off1 int, err error) {
+	if off+4 > len(msg) {
+		return len(msg), &Error{err: "overflow packing uint32"}
+	}
+	binary.BigEndian.PutUint32(msg[off:], i)
+	return off + 4, nil
+}
+
+func unpackUint48(msg []byte, off int) (i uint64, off1 int, err error) {
+	if off+6 > len(msg) {
+		return 0, len(msg), &Error{err: "overflow unpacking uint64 as uint48"}
+	}
+	// Used in TSIG where the last 48 bits are occupied, so for now, assume a uint48 (6 bytes)
+	i = (uint64(uint64(msg[off])<<40 | uint64(msg[off+1])<<32 | uint64(msg[off+2])<<24 | uint64(msg[off+3])<<16 |
+		uint64(msg[off+4])<<8 | uint64(msg[off+5])))
+	off += 6
+	return i, off, nil
+}
+
+func packUint48(i uint64, msg []byte, off int) (off1 int, err error) {
+	if off+6 > len(msg) {
+		return len(msg), &Error{err: "overflow packing uint64 as uint48"}
+	}
+	msg[off] = byte(i >> 40)
+	msg[off+1] = byte(i >> 32)
+	msg[off+2] = byte(i >> 24)
+	msg[off+3] = byte(i >> 16)
+	msg[off+4] = byte(i >> 8)
+	msg[off+5] = byte(i)
+	off += 6
+	return off, nil
+}
+
+func unpackUint64(msg []byte, off int) (i uint64, off1 int, err error) {
+	if off+8 > len(msg) {
+		return 0, len(msg), &Error{err: "overflow unpacking uint64"}
+	}
+	return binary.BigEndian.Uint64(msg[off:]), off + 8, nil
+}
+
+func packUint64(i uint64, msg []byte, off int) (off1 int, err error) {
+	if off+8 > len(msg) {
+		return len(msg), &Error{err: "overflow packing uint64"}
+	}
+	binary.BigEndian.PutUint64(msg[off:], i)
+	off += 8
+	return off, nil
+}
+
+func unpackString(msg []byte, off int) (string, int, error) {
+	if off+1 > len(msg) {
+		return "", off, &Error{err: "overflow unpacking txt"}
+	}
+	l := int(msg[off])
+	if off+l+1 > len(msg) {
+		return "", off, &Error{err: "overflow unpacking txt"}
+	}
+	s := make([]byte, 0, l)
+	for _, b := range msg[off+1 : off+1+l] {
+		switch b {
+		case '"', '\\':
+			s = append(s, '\\', b)
+		default:
+			if b < 32 || b > 127 { // unprintable
+				var buf [3]byte
+				bufs := strconv.AppendInt(buf[:0], int64(b), 10)
+				s = append(s, '\\')
+				for i := 0; i < 3-len(bufs); i++ {
+					s = append(s, '0')
+				}
+				for _, r := range bufs {
+					s = append(s, r)
+				}
+			} else {
+				s = append(s, b)
+			}
+		}
+	}
+	off += 1 + l
+	return string(s), off, nil
+}
+
+func packString(s string, msg []byte, off int) (int, error) {
+	txtTmp := make([]byte, 256*4+1)
+	off, err := packTxtString(s, msg, off, txtTmp)
+	if err != nil {
+		return len(msg), err
+	}
+	return off, nil
+}
+
+func unpackStringBase32(msg []byte, off, end int) (string, int, error) {
+	if end > len(msg) {
+		return "", len(msg), &Error{err: "overflow unpacking base32"}
+	}
+	s := toBase32(msg[off:end])
+	return s, end, nil
+}
+
+func packStringBase32(s string, msg []byte, off int) (int, error) {
+	b32, err := fromBase32([]byte(s))
+	if err != nil {
+		return len(msg), err
+	}
+	if off+len(b32) > len(msg) {
+		return len(msg), &Error{err: "overflow packing base32"}
+	}
+	copy(msg[off:off+len(b32)], b32)
+	off += len(b32)
+	return off, nil
+}
+
+func unpackStringBase64(msg []byte, off, end int) (string, int, error) {
+	// Rest of the RR is base64 encoded value, so we don't need an explicit length
+	// to be set. Thus far all RR's that have base64 encoded fields have those as their
+	// last one. What we do need is the end of the RR!
+	if end > len(msg) {
+		return "", len(msg), &Error{err: "overflow unpacking base64"}
+	}
+	s := toBase64(msg[off:end])
+	return s, end, nil
+}
+
+func packStringBase64(s string, msg []byte, off int) (int, error) {
+	b64, err := fromBase64([]byte(s))
+	if err != nil {
+		return len(msg), err
+	}
+	if off+len(b64) > len(msg) {
+		return len(msg), &Error{err: "overflow packing base64"}
+	}
+	copy(msg[off:off+len(b64)], b64)
+	off += len(b64)
+	return off, nil
+}
+
+func unpackStringHex(msg []byte, off, end int) (string, int, error) {
+	// Rest of the RR is hex encoded value, so we don't need an explicit length
+	// to be set. NSEC and TSIG have hex fields with a length field.
+	// What we do need is the end of the RR!
+	if end > len(msg) {
+		return "", len(msg), &Error{err: "overflow unpacking hex"}
+	}
+
+	s := hex.EncodeToString(msg[off:end])
+	return s, end, nil
+}
+
+func packStringHex(s string, msg []byte, off int) (int, error) {
+	h, err := hex.DecodeString(s)
+	if err != nil {
+		return len(msg), err
+	}
+	if off+(len(h)) > len(msg) {
+		return len(msg), &Error{err: "overflow packing hex"}
+	}
+	copy(msg[off:off+len(h)], h)
+	off += len(h)
+	return off, nil
+}
+
+func unpackStringTxt(msg []byte, off int) ([]string, int, error) {
+	txt, off, err := unpackTxt(msg, off)
+	if err != nil {
+		return nil, len(msg), err
+	}
+	return txt, off, nil
+}
+
+func packStringTxt(s []string, msg []byte, off int) (int, error) {
+	txtTmp := make([]byte, 256*4+1) // If the whole string consists out of \DDD we need this many.
+	off, err := packTxt(s, msg, off, txtTmp)
+	if err != nil {
+		return len(msg), err
+	}
+	return off, nil
+}
+
+func unpackDataOpt(msg []byte, off int) ([]EDNS0, int, error) {
+	var edns []EDNS0
+Option:
+	code := uint16(0)
+	if off+4 > len(msg) {
+		return nil, len(msg), &Error{err: "overflow unpacking opt"}
+	}
+	code = binary.BigEndian.Uint16(msg[off:])
+	off += 2
+	optlen := binary.BigEndian.Uint16(msg[off:])
+	off += 2
+	if off+int(optlen) > len(msg) {
+		return nil, len(msg), &Error{err: "overflow unpacking opt"}
+	}
+	switch code {
+	case EDNS0NSID:
+		e := new(EDNS0_NSID)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0SUBNET:
+		e := new(EDNS0_SUBNET)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0COOKIE:
+		e := new(EDNS0_COOKIE)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0UL:
+		e := new(EDNS0_UL)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0LLQ:
+		e := new(EDNS0_LLQ)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0DAU:
+		e := new(EDNS0_DAU)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0DHU:
+		e := new(EDNS0_DHU)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0N3U:
+		e := new(EDNS0_N3U)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	case EDNS0PADDING:
+		e := new(EDNS0_PADDING)
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	default:
+		e := new(EDNS0_LOCAL)
+		e.Code = code
+		if err := e.unpack(msg[off : off+int(optlen)]); err != nil {
+			return nil, len(msg), err
+		}
+		edns = append(edns, e)
+		off += int(optlen)
+	}
+
+	if off < len(msg) {
+		goto Option
+	}
+
+	return edns, off, nil
+}
+
+func packDataOpt(options []EDNS0, msg []byte, off int) (int, error) {
+	for _, el := range options {
+		b, err := el.pack()
+		if err != nil || off+3 > len(msg) {
+			return len(msg), &Error{err: "overflow packing opt"}
+		}
+		binary.BigEndian.PutUint16(msg[off:], el.Option())      // Option code
+		binary.BigEndian.PutUint16(msg[off+2:], uint16(len(b))) // Length
+		off += 4
+		if off+len(b) > len(msg) {
+			copy(msg[off:], b)
+			off = len(msg)
+			continue
+		}
+		// Actual data
+		copy(msg[off:off+len(b)], b)
+		off += len(b)
+	}
+	return off, nil
+}
+
+func unpackStringOctet(msg []byte, off int) (string, int, error) {
+	s := string(msg[off:])
+	return s, len(msg), nil
+}
+
+func packStringOctet(s string, msg []byte, off int) (int, error) {
+	txtTmp := make([]byte, 256*4+1)
+	off, err := packOctetString(s, msg, off, txtTmp)
+	if err != nil {
+		return len(msg), err
+	}
+	return off, nil
+}
+
+func unpackDataNsec(msg []byte, off int) ([]uint16, int, error) {
+	var nsec []uint16
+	length, window, lastwindow := 0, 0, -1
+	for off < len(msg) {
+		if off+2 > len(msg) {
+			return nsec, len(msg), &Error{err: "overflow unpacking nsecx"}
+		}
+		window = int(msg[off])
+		length = int(msg[off+1])
+		off += 2
+		if window <= lastwindow {
+			// RFC 4034: Blocks are present in the NSEC RR RDATA in
+			// increasing numerical order.
+			return nsec, len(msg), &Error{err: "out of order NSEC block"}
+		}
+		if length == 0 {
+			// RFC 4034: Blocks with no types present MUST NOT be included.
+			return nsec, len(msg), &Error{err: "empty NSEC block"}
+		}
+		if length > 32 {
+			return nsec, len(msg), &Error{err: "NSEC block too long"}
+		}
+		if off+length > len(msg) {
+			return nsec, len(msg), &Error{err: "overflowing NSEC block"}
+		}
+
+		// Walk the bytes in the window and extract the type bits
+		for j := 0; j < length; j++ {
+			b := msg[off+j]
+			// Check the bits one by one, and set the type
+			if b&0x80 == 0x80 {
+				nsec = append(nsec, uint16(window*256+j*8+0))
+			}
+			if b&0x40 == 0x40 {
+				nsec = append(nsec, uint16(window*256+j*8+1))
+			}
+			if b&0x20 == 0x20 {
+				nsec = append(nsec, uint16(window*256+j*8+2))
+			}
+			if b&0x10 == 0x10 {
+				nsec = append(nsec, uint16(window*256+j*8+3))
+			}
+			if b&0x8 == 0x8 {
+				nsec = append(nsec, uint16(window*256+j*8+4))
+			}
+			if b&0x4 == 0x4 {
+				nsec = append(nsec, uint16(window*256+j*8+5))
+			}
+			if b&0x2 == 0x2 {
+				nsec = append(nsec, uint16(window*256+j*8+6))
+			}
+			if b&0x1 == 0x1 {
+				nsec = append(nsec, uint16(window*256+j*8+7))
+			}
+		}
+		off += length
+		lastwindow = window
+	}
+	return nsec, off, nil
+}
+
+func packDataNsec(bitmap []uint16, msg []byte, off int) (int, error) {
+	if len(bitmap) == 0 {
+		return off, nil
+	}
+	var lastwindow, lastlength uint16
+	for j := 0; j < len(bitmap); j++ {
+		t := bitmap[j]
+		window := t / 256
+		length := (t-window*256)/8 + 1
+		if window > lastwindow && lastlength != 0 { // New window, jump to the new offset
+			off += int(lastlength) + 2
+			lastlength = 0
+		}
+		if window < lastwindow || length < lastlength {
+			return len(msg), &Error{err: "nsec bits out of order"}
+		}
+		if off+2+int(length) > len(msg) {
+			return len(msg), &Error{err: "overflow packing nsec"}
+		}
+		// Setting the window #
+		msg[off] = byte(window)
+		// Setting the octets length
+		msg[off+1] = byte(length)
+		// Setting the bit value for the type in the right octet
+		msg[off+1+int(length)] |= byte(1 << (7 - (t % 8)))
+		lastwindow, lastlength = window, length
+	}
+	off += int(lastlength) + 2
+	return off, nil
+}
+
+func unpackDataDomainNames(msg []byte, off, end int) ([]string, int, error) {
+	var (
+		servers []string
+		s       string
+		err     error
+	)
+	if end > len(msg) {
+		return nil, len(msg), &Error{err: "overflow unpacking domain names"}
+	}
+	for off < end {
+		s, off, err = UnpackDomainName(msg, off)
+		if err != nil {
+			return servers, len(msg), err
+		}
+		servers = append(servers, s)
+	}
+	return servers, off, nil
+}
+
+func packDataDomainNames(names []string, msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	var err error
+	for j := 0; j < len(names); j++ {
+		off, err = PackDomainName(names[j], msg, off, compression, false && compress)
+		if err != nil {
+			return len(msg), err
+		}
+	}
+	return off, nil
+}
diff --git a/vendor/github.com/miekg/dns/nsecx.go b/vendor/github.com/miekg/dns/nsecx.go
new file mode 100644
index 0000000000..9b908c4478
--- /dev/null
+++ b/vendor/github.com/miekg/dns/nsecx.go
@@ -0,0 +1,106 @@
+package dns
+
+import (
+	"crypto/sha1"
+	"hash"
+	"strings"
+)
+
+type saltWireFmt struct {
+	Salt string `dns:"size-hex"`
+}
+
+// HashName hashes a string (label) according to RFC 5155. It returns the hashed string in uppercase.
+func HashName(label string, ha uint8, iter uint16, salt string) string {
+	saltwire := new(saltWireFmt)
+	saltwire.Salt = salt
+	wire := make([]byte, DefaultMsgSize)
+	n, err := packSaltWire(saltwire, wire)
+	if err != nil {
+		return ""
+	}
+	wire = wire[:n]
+	name := make([]byte, 255)
+	off, err := PackDomainName(strings.ToLower(label), name, 0, nil, false)
+	if err != nil {
+		return ""
+	}
+	name = name[:off]
+	var s hash.Hash
+	switch ha {
+	case SHA1:
+		s = sha1.New()
+	default:
+		return ""
+	}
+
+	// k = 0
+	s.Write(name)
+	s.Write(wire)
+	nsec3 := s.Sum(nil)
+	// k > 0
+	for k := uint16(0); k < iter; k++ {
+		s.Reset()
+		s.Write(nsec3)
+		s.Write(wire)
+		nsec3 = s.Sum(nsec3[:0])
+	}
+	return toBase32(nsec3)
+}
+
+// Cover returns true if a name is covered by the NSEC3 record
+func (rr *NSEC3) Cover(name string) bool {
+	nameHash := HashName(name, rr.Hash, rr.Iterations, rr.Salt)
+	owner := strings.ToUpper(rr.Hdr.Name)
+	labelIndices := Split(owner)
+	if len(labelIndices) < 2 {
+		return false
+	}
+	ownerHash := owner[:labelIndices[1]-1]
+	ownerZone := owner[labelIndices[1]:]
+	if !IsSubDomain(ownerZone, strings.ToUpper(name)) { // name is outside owner zone
+		return false
+	}
+
+	nextHash := rr.NextDomain
+	if ownerHash == nextHash { // empty interval
+		return false
+	}
+	if ownerHash > nextHash { // end of zone
+		if nameHash > ownerHash { // covered since there is nothing after ownerHash
+			return true
+		}
+		return nameHash < nextHash // if nameHash is before beginning of zone it is covered
+	}
+	if nameHash < ownerHash { // nameHash is before ownerHash, not covered
+		return false
+	}
+	return nameHash < nextHash // if nameHash is before nextHash is it covered (between ownerHash and nextHash)
+}
+
+// Match returns true if a name matches the NSEC3 record
+func (rr *NSEC3) Match(name string) bool {
+	nameHash := HashName(name, rr.Hash, rr.Iterations, rr.Salt)
+	owner := strings.ToUpper(rr.Hdr.Name)
+	labelIndices := Split(owner)
+	if len(labelIndices) < 2 {
+		return false
+	}
+	ownerHash := owner[:labelIndices[1]-1]
+	ownerZone := owner[labelIndices[1]:]
+	if !IsSubDomain(ownerZone, strings.ToUpper(name)) { // name is outside owner zone
+		return false
+	}
+	if ownerHash == nameHash {
+		return true
+	}
+	return false
+}
+
+func packSaltWire(sw *saltWireFmt, msg []byte) (int, error) {
+	off, err := packStringHex(sw.Salt, msg, 0)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
diff --git a/vendor/github.com/miekg/dns/privaterr.go b/vendor/github.com/miekg/dns/privaterr.go
new file mode 100644
index 0000000000..6b08e6e959
--- /dev/null
+++ b/vendor/github.com/miekg/dns/privaterr.go
@@ -0,0 +1,149 @@
+package dns
+
+import (
+	"fmt"
+	"strings"
+)
+
+// PrivateRdata is an interface used for implementing "Private Use" RR types, see
+// RFC 6895. This allows one to experiment with new RR types, without requesting an
+// official type code. Also see dns.PrivateHandle and dns.PrivateHandleRemove.
+type PrivateRdata interface {
+	// String returns the text presentaton of the Rdata of the Private RR.
+	String() string
+	// Parse parses the Rdata of the private RR.
+	Parse([]string) error
+	// Pack is used when packing a private RR into a buffer.
+	Pack([]byte) (int, error)
+	// Unpack is used when unpacking a private RR from a buffer.
+	// TODO(miek): diff. signature than Pack, see edns0.go for instance.
+	Unpack([]byte) (int, error)
+	// Copy copies the Rdata.
+	Copy(PrivateRdata) error
+	// Len returns the length in octets of the Rdata.
+	Len() int
+}
+
+// PrivateRR represents an RR that uses a PrivateRdata user-defined type.
+// It mocks normal RRs and implements dns.RR interface.
+type PrivateRR struct {
+	Hdr  RR_Header
+	Data PrivateRdata
+}
+
+func mkPrivateRR(rrtype uint16) *PrivateRR {
+	// Panics if RR is not an instance of PrivateRR.
+	rrfunc, ok := TypeToRR[rrtype]
+	if !ok {
+		panic(fmt.Sprintf("dns: invalid operation with Private RR type %d", rrtype))
+	}
+
+	anyrr := rrfunc()
+	switch rr := anyrr.(type) {
+	case *PrivateRR:
+		return rr
+	}
+	panic(fmt.Sprintf("dns: RR is not a PrivateRR, TypeToRR[%d] generator returned %T", rrtype, anyrr))
+}
+
+// Header return the RR header of r.
+func (r *PrivateRR) Header() *RR_Header { return &r.Hdr }
+
+func (r *PrivateRR) String() string { return r.Hdr.String() + r.Data.String() }
+
+// Private len and copy parts to satisfy RR interface.
+func (r *PrivateRR) len() int { return r.Hdr.len() + r.Data.Len() }
+func (r *PrivateRR) copy() RR {
+	// make new RR like this:
+	rr := mkPrivateRR(r.Hdr.Rrtype)
+	newh := r.Hdr.copyHeader()
+	rr.Hdr = *newh
+
+	err := r.Data.Copy(rr.Data)
+	if err != nil {
+		panic("dns: got value that could not be used to copy Private rdata")
+	}
+	return rr
+}
+func (r *PrivateRR) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := r.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	n, err := r.Data.Pack(msg[off:])
+	if err != nil {
+		return len(msg), err
+	}
+	off += n
+	r.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+// PrivateHandle registers a private resource record type. It requires
+// string and numeric representation of private RR type and generator function as argument.
+func PrivateHandle(rtypestr string, rtype uint16, generator func() PrivateRdata) {
+	rtypestr = strings.ToUpper(rtypestr)
+
+	TypeToRR[rtype] = func() RR { return &PrivateRR{RR_Header{}, generator()} }
+	TypeToString[rtype] = rtypestr
+	StringToType[rtypestr] = rtype
+
+	typeToUnpack[rtype] = func(h RR_Header, msg []byte, off int) (RR, int, error) {
+		if noRdata(h) {
+			return &h, off, nil
+		}
+		var err error
+
+		rr := mkPrivateRR(h.Rrtype)
+		rr.Hdr = h
+
+		off1, err := rr.Data.Unpack(msg[off:])
+		off += off1
+		if err != nil {
+			return rr, off, err
+		}
+		return rr, off, err
+	}
+
+	setPrivateRR := func(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+		rr := mkPrivateRR(h.Rrtype)
+		rr.Hdr = h
+
+		var l lex
+		text := make([]string, 0, 2) // could be 0..N elements, median is probably 1
+	Fetch:
+		for {
+			// TODO(miek): we could also be returning _QUOTE, this might or might not
+			// be an issue (basically parsing TXT becomes hard)
+			switch l = <-c; l.value {
+			case zNewline, zEOF:
+				break Fetch
+			case zString:
+				text = append(text, l.token)
+			}
+		}
+
+		err := rr.Data.Parse(text)
+		if err != nil {
+			return nil, &ParseError{f, err.Error(), l}, ""
+		}
+
+		return rr, nil, ""
+	}
+
+	typeToparserFunc[rtype] = parserFunc{setPrivateRR, true}
+}
+
+// PrivateHandleRemove removes defenitions required to support private RR type.
+func PrivateHandleRemove(rtype uint16) {
+	rtypestr, ok := TypeToString[rtype]
+	if ok {
+		delete(TypeToRR, rtype)
+		delete(TypeToString, rtype)
+		delete(typeToparserFunc, rtype)
+		delete(StringToType, rtypestr)
+		delete(typeToUnpack, rtype)
+	}
+	return
+}
diff --git a/vendor/github.com/miekg/dns/rawmsg.go b/vendor/github.com/miekg/dns/rawmsg.go
new file mode 100644
index 0000000000..6e21fba7e1
--- /dev/null
+++ b/vendor/github.com/miekg/dns/rawmsg.go
@@ -0,0 +1,49 @@
+package dns
+
+import "encoding/binary"
+
+// rawSetRdlength sets the rdlength in the header of
+// the RR. The offset 'off' must be positioned at the
+// start of the header of the RR, 'end' must be the
+// end of the RR.
+func rawSetRdlength(msg []byte, off, end int) bool {
+	l := len(msg)
+Loop:
+	for {
+		if off+1 > l {
+			return false
+		}
+		c := int(msg[off])
+		off++
+		switch c & 0xC0 {
+		case 0x00:
+			if c == 0x00 {
+				// End of the domainname
+				break Loop
+			}
+			if off+c > l {
+				return false
+			}
+			off += c
+
+		case 0xC0:
+			// pointer, next byte included, ends domainname
+			off++
+			break Loop
+		}
+	}
+	// The domainname has been seen, we at the start of the fixed part in the header.
+	// Type is 2 bytes, class is 2 bytes, ttl 4 and then 2 bytes for the length.
+	off += 2 + 2 + 4
+	if off+2 > l {
+		return false
+	}
+	//off+1 is the end of the header, 'end' is the end of the rr
+	//so 'end' - 'off+2' is the length of the rdata
+	rdatalen := end - (off + 2)
+	if rdatalen > 0xFFFF {
+		return false
+	}
+	binary.BigEndian.PutUint16(msg[off:], uint16(rdatalen))
+	return true
+}
diff --git a/vendor/github.com/miekg/dns/reverse.go b/vendor/github.com/miekg/dns/reverse.go
new file mode 100644
index 0000000000..f6e7a47a6e
--- /dev/null
+++ b/vendor/github.com/miekg/dns/reverse.go
@@ -0,0 +1,38 @@
+package dns
+
+// StringToType is the reverse of TypeToString, needed for string parsing.
+var StringToType = reverseInt16(TypeToString)
+
+// StringToClass is the reverse of ClassToString, needed for string parsing.
+var StringToClass = reverseInt16(ClassToString)
+
+// StringToOpcode is a map of opcodes to strings.
+var StringToOpcode = reverseInt(OpcodeToString)
+
+// StringToRcode is a map of rcodes to strings.
+var StringToRcode = reverseInt(RcodeToString)
+
+// Reverse a map
+func reverseInt8(m map[uint8]string) map[string]uint8 {
+	n := make(map[string]uint8, len(m))
+	for u, s := range m {
+		n[s] = u
+	}
+	return n
+}
+
+func reverseInt16(m map[uint16]string) map[string]uint16 {
+	n := make(map[string]uint16, len(m))
+	for u, s := range m {
+		n[s] = u
+	}
+	return n
+}
+
+func reverseInt(m map[int]string) map[string]int {
+	n := make(map[string]int, len(m))
+	for u, s := range m {
+		n[s] = u
+	}
+	return n
+}
diff --git a/vendor/github.com/miekg/dns/sanitize.go b/vendor/github.com/miekg/dns/sanitize.go
new file mode 100644
index 0000000000..c415bdd6c3
--- /dev/null
+++ b/vendor/github.com/miekg/dns/sanitize.go
@@ -0,0 +1,84 @@
+package dns
+
+// Dedup removes identical RRs from rrs. It preserves the original ordering.
+// The lowest TTL of any duplicates is used in the remaining one. Dedup modifies
+// rrs.
+// m is used to store the RRs temporary. If it is nil a new map will be allocated.
+func Dedup(rrs []RR, m map[string]RR) []RR {
+	if m == nil {
+		m = make(map[string]RR)
+	}
+	// Save the keys, so we don't have to call normalizedString twice.
+	keys := make([]*string, 0, len(rrs))
+
+	for _, r := range rrs {
+		key := normalizedString(r)
+		keys = append(keys, &key)
+		if _, ok := m[key]; ok {
+			// Shortest TTL wins.
+			if m[key].Header().Ttl > r.Header().Ttl {
+				m[key].Header().Ttl = r.Header().Ttl
+			}
+			continue
+		}
+
+		m[key] = r
+	}
+	// If the length of the result map equals the amount of RRs we got,
+	// it means they were all different. We can then just return the original rrset.
+	if len(m) == len(rrs) {
+		return rrs
+	}
+
+	j := 0
+	for i, r := range rrs {
+		// If keys[i] lives in the map, we should copy and remove it.
+		if _, ok := m[*keys[i]]; ok {
+			delete(m, *keys[i])
+			rrs[j] = r
+			j++
+		}
+
+		if len(m) == 0 {
+			break
+		}
+	}
+
+	return rrs[:j]
+}
+
+// normalizedString returns a normalized string from r. The TTL
+// is removed and the domain name is lowercased. We go from this:
+// DomainName<TAB>TTL<TAB>CLASS<TAB>TYPE<TAB>RDATA to:
+// lowercasename<TAB>CLASS<TAB>TYPE...
+func normalizedString(r RR) string {
+	// A string Go DNS makes has: domainname<TAB>TTL<TAB>...
+	b := []byte(r.String())
+
+	// find the first non-escaped tab, then another, so we capture where the TTL lives.
+	esc := false
+	ttlStart, ttlEnd := 0, 0
+	for i := 0; i < len(b) && ttlEnd == 0; i++ {
+		switch {
+		case b[i] == '\\':
+			esc = !esc
+		case b[i] == '\t' && !esc:
+			if ttlStart == 0 {
+				ttlStart = i
+				continue
+			}
+			if ttlEnd == 0 {
+				ttlEnd = i
+			}
+		case b[i] >= 'A' && b[i] <= 'Z' && !esc:
+			b[i] += 32
+		default:
+			esc = false
+		}
+	}
+
+	// remove TTL.
+	copy(b[ttlStart:], b[ttlEnd:])
+	cut := ttlEnd - ttlStart
+	return string(b[:len(b)-cut])
+}
diff --git a/vendor/github.com/miekg/dns/scan.go b/vendor/github.com/miekg/dns/scan.go
new file mode 100644
index 0000000000..f9cd47401d
--- /dev/null
+++ b/vendor/github.com/miekg/dns/scan.go
@@ -0,0 +1,1007 @@
+package dns
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"strconv"
+	"strings"
+)
+
+const maxTok = 2048 // Largest token we can return.
+const maxUint16 = 1<<16 - 1
+
+// Tokinize a RFC 1035 zone file. The tokenizer will normalize it:
+// * Add ownernames if they are left blank;
+// * Suppress sequences of spaces;
+// * Make each RR fit on one line (_NEWLINE is send as last)
+// * Handle comments: ;
+// * Handle braces - anywhere.
+const (
+	// Zonefile
+	zEOF = iota
+	zString
+	zBlank
+	zQuote
+	zNewline
+	zRrtpe
+	zOwner
+	zClass
+	zDirOrigin   // $ORIGIN
+	zDirTTL      // $TTL
+	zDirInclude  // $INCLUDE
+	zDirGenerate // $GENERATE
+
+	// Privatekey file
+	zValue
+	zKey
+
+	zExpectOwnerDir      // Ownername
+	zExpectOwnerBl       // Whitespace after the ownername
+	zExpectAny           // Expect rrtype, ttl or class
+	zExpectAnyNoClass    // Expect rrtype or ttl
+	zExpectAnyNoClassBl  // The whitespace after _EXPECT_ANY_NOCLASS
+	zExpectAnyNoTTL      // Expect rrtype or class
+	zExpectAnyNoTTLBl    // Whitespace after _EXPECT_ANY_NOTTL
+	zExpectRrtype        // Expect rrtype
+	zExpectRrtypeBl      // Whitespace BEFORE rrtype
+	zExpectRdata         // The first element of the rdata
+	zExpectDirTTLBl      // Space after directive $TTL
+	zExpectDirTTL        // Directive $TTL
+	zExpectDirOriginBl   // Space after directive $ORIGIN
+	zExpectDirOrigin     // Directive $ORIGIN
+	zExpectDirIncludeBl  // Space after directive $INCLUDE
+	zExpectDirInclude    // Directive $INCLUDE
+	zExpectDirGenerate   // Directive $GENERATE
+	zExpectDirGenerateBl // Space after directive $GENERATE
+)
+
+// ParseError is a parsing error. It contains the parse error and the location in the io.Reader
+// where the error occurred.
+type ParseError struct {
+	file string
+	err  string
+	lex  lex
+}
+
+func (e *ParseError) Error() (s string) {
+	if e.file != "" {
+		s = e.file + ": "
+	}
+	s += "dns: " + e.err + ": " + strconv.QuoteToASCII(e.lex.token) + " at line: " +
+		strconv.Itoa(e.lex.line) + ":" + strconv.Itoa(e.lex.column)
+	return
+}
+
+type lex struct {
+	token      string // text of the token
+	tokenUpper string // uppercase text of the token
+	length     int    // length of the token
+	err        bool   // when true, token text has lexer error
+	value      uint8  // value: zString, _BLANK, etc.
+	line       int    // line in the file
+	column     int    // column in the file
+	torc       uint16 // type or class as parsed in the lexer, we only need to look this up in the grammar
+	comment    string // any comment text seen
+}
+
+// Token holds the token that are returned when a zone file is parsed.
+type Token struct {
+	// The scanned resource record when error is not nil.
+	RR
+	// When an error occurred, this has the error specifics.
+	Error *ParseError
+	// A potential comment positioned after the RR and on the same line.
+	Comment string
+}
+
+// ttlState describes the state necessary to fill in an omitted RR TTL
+type ttlState struct {
+	ttl           uint32 // ttl is the current default TTL
+	isByDirective bool   // isByDirective indicates whether ttl was set by a $TTL directive
+}
+
+// NewRR reads the RR contained in the string s. Only the first RR is
+// returned. If s contains no RR, return nil with no error. The class
+// defaults to IN and TTL defaults to 3600. The full zone file syntax
+// like $TTL, $ORIGIN, etc. is supported. All fields of the returned
+// RR are set, except RR.Header().Rdlength which is set to 0.
+func NewRR(s string) (RR, error) {
+	if len(s) > 0 && s[len(s)-1] != '\n' { // We need a closing newline
+		return ReadRR(strings.NewReader(s+"\n"), "")
+	}
+	return ReadRR(strings.NewReader(s), "")
+}
+
+// ReadRR reads the RR contained in q.
+// See NewRR for more documentation.
+func ReadRR(q io.Reader, filename string) (RR, error) {
+	defttl := &ttlState{defaultTtl, false}
+	r := <-parseZoneHelper(q, ".", filename, defttl, 1)
+	if r == nil {
+		return nil, nil
+	}
+
+	if r.Error != nil {
+		return nil, r.Error
+	}
+	return r.RR, nil
+}
+
+// ParseZone reads a RFC 1035 style zonefile from r. It returns *Tokens on the
+// returned channel, each consisting of either a parsed RR and optional comment
+// or a nil RR and an error. The string file is only used
+// in error reporting. The string origin is used as the initial origin, as
+// if the file would start with an $ORIGIN directive.
+// The directives $INCLUDE, $ORIGIN, $TTL and $GENERATE are supported.
+// The channel t is closed by ParseZone when the end of r is reached.
+//
+// Basic usage pattern when reading from a string (z) containing the
+// zone data:
+//
+//	for x := range dns.ParseZone(strings.NewReader(z), "", "") {
+//		if x.Error != nil {
+//                  // log.Println(x.Error)
+//              } else {
+//                  // Do something with x.RR
+//              }
+//	}
+//
+// Comments specified after an RR (and on the same line!) are returned too:
+//
+//	foo. IN A 10.0.0.1 ; this is a comment
+//
+// The text "; this is comment" is returned in Token.Comment. Comments inside the
+// RR are discarded. Comments on a line by themselves are discarded too.
+func ParseZone(r io.Reader, origin, file string) chan *Token {
+	return parseZoneHelper(r, origin, file, nil, 10000)
+}
+
+func parseZoneHelper(r io.Reader, origin, file string, defttl *ttlState, chansize int) chan *Token {
+	t := make(chan *Token, chansize)
+	go parseZone(r, origin, file, defttl, t, 0)
+	return t
+}
+
+func parseZone(r io.Reader, origin, f string, defttl *ttlState, t chan *Token, include int) {
+	defer func() {
+		if include == 0 {
+			close(t)
+		}
+	}()
+	s, cancel := scanInit(r)
+	c := make(chan lex)
+	// Start the lexer
+	go zlexer(s, c)
+
+	defer func() {
+		cancel()
+		// zlexer can send up to three tokens, the next one and possibly 2 remainders.
+		// Do a non-blocking read.
+		_, ok := <-c
+		_, ok = <-c
+		_, ok = <-c
+		if !ok {
+			// too bad
+		}
+	}()
+	// 6 possible beginnings of a line, _ is a space
+	// 0. zRRTYPE                              -> all omitted until the rrtype
+	// 1. zOwner _ zRrtype                     -> class/ttl omitted
+	// 2. zOwner _ zString _ zRrtype           -> class omitted
+	// 3. zOwner _ zString _ zClass  _ zRrtype -> ttl/class
+	// 4. zOwner _ zClass  _ zRrtype           -> ttl omitted
+	// 5. zOwner _ zClass  _ zString _ zRrtype -> class/ttl (reversed)
+	// After detecting these, we know the zRrtype so we can jump to functions
+	// handling the rdata for each of these types.
+
+	if origin != "" {
+		origin = Fqdn(origin)
+		if _, ok := IsDomainName(origin); !ok {
+			t <- &Token{Error: &ParseError{f, "bad initial origin name", lex{}}}
+			return
+		}
+	}
+
+	st := zExpectOwnerDir // initial state
+	var h RR_Header
+	var prevName string
+	for l := range c {
+		// Lexer spotted an error already
+		if l.err == true {
+			t <- &Token{Error: &ParseError{f, l.token, l}}
+			return
+
+		}
+		switch st {
+		case zExpectOwnerDir:
+			// We can also expect a directive, like $TTL or $ORIGIN
+			if defttl != nil {
+				h.Ttl = defttl.ttl
+			}
+			h.Class = ClassINET
+			switch l.value {
+			case zNewline:
+				st = zExpectOwnerDir
+			case zOwner:
+				h.Name = l.token
+				name, ok := toAbsoluteName(l.token, origin)
+				if !ok {
+					t <- &Token{Error: &ParseError{f, "bad owner name", l}}
+					return
+				}
+				h.Name = name
+				prevName = h.Name
+				st = zExpectOwnerBl
+			case zDirTTL:
+				st = zExpectDirTTLBl
+			case zDirOrigin:
+				st = zExpectDirOriginBl
+			case zDirInclude:
+				st = zExpectDirIncludeBl
+			case zDirGenerate:
+				st = zExpectDirGenerateBl
+			case zRrtpe:
+				h.Name = prevName
+				h.Rrtype = l.torc
+				st = zExpectRdata
+			case zClass:
+				h.Name = prevName
+				h.Class = l.torc
+				st = zExpectAnyNoClassBl
+			case zBlank:
+				// Discard, can happen when there is nothing on the
+				// line except the RR type
+			case zString:
+				ttl, ok := stringToTTL(l.token)
+				if !ok {
+					t <- &Token{Error: &ParseError{f, "not a TTL", l}}
+					return
+				}
+				h.Ttl = ttl
+				if defttl == nil || !defttl.isByDirective {
+					defttl = &ttlState{ttl, false}
+				}
+				st = zExpectAnyNoTTLBl
+
+			default:
+				t <- &Token{Error: &ParseError{f, "syntax error at beginning", l}}
+				return
+			}
+		case zExpectDirIncludeBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank after $INCLUDE-directive", l}}
+				return
+			}
+			st = zExpectDirInclude
+		case zExpectDirInclude:
+			if l.value != zString {
+				t <- &Token{Error: &ParseError{f, "expecting $INCLUDE value, not this...", l}}
+				return
+			}
+			neworigin := origin // There may be optionally a new origin set after the filename, if not use current one
+			switch l := <-c; l.value {
+			case zBlank:
+				l := <-c
+				if l.value == zString {
+					name, ok := toAbsoluteName(l.token, origin)
+					if !ok {
+						t <- &Token{Error: &ParseError{f, "bad origin name", l}}
+						return
+					}
+					neworigin = name
+				}
+			case zNewline, zEOF:
+				// Ok
+			default:
+				t <- &Token{Error: &ParseError{f, "garbage after $INCLUDE", l}}
+				return
+			}
+			// Start with the new file
+			includePath := l.token
+			if !filepath.IsAbs(includePath) {
+				includePath = filepath.Join(filepath.Dir(f), includePath)
+			}
+			r1, e1 := os.Open(includePath)
+			if e1 != nil {
+				msg := fmt.Sprintf("failed to open `%s'", l.token)
+				if !filepath.IsAbs(l.token) {
+					msg += fmt.Sprintf(" as `%s'", includePath)
+				}
+				t <- &Token{Error: &ParseError{f, msg, l}}
+				return
+			}
+			if include+1 > 7 {
+				t <- &Token{Error: &ParseError{f, "too deeply nested $INCLUDE", l}}
+				return
+			}
+			parseZone(r1, neworigin, includePath, defttl, t, include+1)
+			st = zExpectOwnerDir
+		case zExpectDirTTLBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank after $TTL-directive", l}}
+				return
+			}
+			st = zExpectDirTTL
+		case zExpectDirTTL:
+			if l.value != zString {
+				t <- &Token{Error: &ParseError{f, "expecting $TTL value, not this...", l}}
+				return
+			}
+			if e, _ := slurpRemainder(c, f); e != nil {
+				t <- &Token{Error: e}
+				return
+			}
+			ttl, ok := stringToTTL(l.token)
+			if !ok {
+				t <- &Token{Error: &ParseError{f, "expecting $TTL value, not this...", l}}
+				return
+			}
+			defttl = &ttlState{ttl, true}
+			st = zExpectOwnerDir
+		case zExpectDirOriginBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank after $ORIGIN-directive", l}}
+				return
+			}
+			st = zExpectDirOrigin
+		case zExpectDirOrigin:
+			if l.value != zString {
+				t <- &Token{Error: &ParseError{f, "expecting $ORIGIN value, not this...", l}}
+				return
+			}
+			if e, _ := slurpRemainder(c, f); e != nil {
+				t <- &Token{Error: e}
+			}
+			name, ok := toAbsoluteName(l.token, origin)
+			if !ok {
+				t <- &Token{Error: &ParseError{f, "bad origin name", l}}
+				return
+			}
+			origin = name
+			st = zExpectOwnerDir
+		case zExpectDirGenerateBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank after $GENERATE-directive", l}}
+				return
+			}
+			st = zExpectDirGenerate
+		case zExpectDirGenerate:
+			if l.value != zString {
+				t <- &Token{Error: &ParseError{f, "expecting $GENERATE value, not this...", l}}
+				return
+			}
+			if errMsg := generate(l, c, t, origin); errMsg != "" {
+				t <- &Token{Error: &ParseError{f, errMsg, l}}
+				return
+			}
+			st = zExpectOwnerDir
+		case zExpectOwnerBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank after owner", l}}
+				return
+			}
+			st = zExpectAny
+		case zExpectAny:
+			switch l.value {
+			case zRrtpe:
+				if defttl == nil {
+					t <- &Token{Error: &ParseError{f, "missing TTL with no previous value", l}}
+					return
+				}
+				h.Rrtype = l.torc
+				st = zExpectRdata
+			case zClass:
+				h.Class = l.torc
+				st = zExpectAnyNoClassBl
+			case zString:
+				ttl, ok := stringToTTL(l.token)
+				if !ok {
+					t <- &Token{Error: &ParseError{f, "not a TTL", l}}
+					return
+				}
+				h.Ttl = ttl
+				if defttl == nil || !defttl.isByDirective {
+					defttl = &ttlState{ttl, false}
+				}
+				st = zExpectAnyNoTTLBl
+			default:
+				t <- &Token{Error: &ParseError{f, "expecting RR type, TTL or class, not this...", l}}
+				return
+			}
+		case zExpectAnyNoClassBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank before class", l}}
+				return
+			}
+			st = zExpectAnyNoClass
+		case zExpectAnyNoTTLBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank before TTL", l}}
+				return
+			}
+			st = zExpectAnyNoTTL
+		case zExpectAnyNoTTL:
+			switch l.value {
+			case zClass:
+				h.Class = l.torc
+				st = zExpectRrtypeBl
+			case zRrtpe:
+				h.Rrtype = l.torc
+				st = zExpectRdata
+			default:
+				t <- &Token{Error: &ParseError{f, "expecting RR type or class, not this...", l}}
+				return
+			}
+		case zExpectAnyNoClass:
+			switch l.value {
+			case zString:
+				ttl, ok := stringToTTL(l.token)
+				if !ok {
+					t <- &Token{Error: &ParseError{f, "not a TTL", l}}
+					return
+				}
+				h.Ttl = ttl
+				if defttl == nil || !defttl.isByDirective {
+					defttl = &ttlState{ttl, false}
+				}
+				st = zExpectRrtypeBl
+			case zRrtpe:
+				h.Rrtype = l.torc
+				st = zExpectRdata
+			default:
+				t <- &Token{Error: &ParseError{f, "expecting RR type or TTL, not this...", l}}
+				return
+			}
+		case zExpectRrtypeBl:
+			if l.value != zBlank {
+				t <- &Token{Error: &ParseError{f, "no blank before RR type", l}}
+				return
+			}
+			st = zExpectRrtype
+		case zExpectRrtype:
+			if l.value != zRrtpe {
+				t <- &Token{Error: &ParseError{f, "unknown RR type", l}}
+				return
+			}
+			h.Rrtype = l.torc
+			st = zExpectRdata
+		case zExpectRdata:
+			r, e, c1 := setRR(h, c, origin, f)
+			if e != nil {
+				// If e.lex is nil than we have encounter a unknown RR type
+				// in that case we substitute our current lex token
+				if e.lex.token == "" && e.lex.value == 0 {
+					e.lex = l // Uh, dirty
+				}
+				t <- &Token{Error: e}
+				return
+			}
+			t <- &Token{RR: r, Comment: c1}
+			st = zExpectOwnerDir
+		}
+	}
+	// If we get here, we and the h.Rrtype is still zero, we haven't parsed anything, this
+	// is not an error, because an empty zone file is still a zone file.
+}
+
+// zlexer scans the sourcefile and returns tokens on the channel c.
+func zlexer(s *scan, c chan lex) {
+	var l lex
+	str := make([]byte, maxTok) // Should be enough for any token
+	stri := 0                   // Offset in str (0 means empty)
+	com := make([]byte, maxTok) // Hold comment text
+	comi := 0
+	quote := false
+	escape := false
+	space := false
+	commt := false
+	rrtype := false
+	owner := true
+	brace := 0
+	x, err := s.tokenText()
+	defer close(c)
+	for err == nil {
+		l.column = s.position.Column
+		l.line = s.position.Line
+		if stri >= maxTok {
+			l.token = "token length insufficient for parsing"
+			l.err = true
+			c <- l
+			return
+		}
+		if comi >= maxTok {
+			l.token = "comment length insufficient for parsing"
+			l.err = true
+			c <- l
+			return
+		}
+
+		switch x {
+		case ' ', '\t':
+			if escape {
+				escape = false
+				str[stri] = x
+				stri++
+				break
+			}
+			if quote {
+				// Inside quotes this is legal
+				str[stri] = x
+				stri++
+				break
+			}
+			if commt {
+				com[comi] = x
+				comi++
+				break
+			}
+			if stri == 0 {
+				// Space directly in the beginning, handled in the grammar
+			} else if owner {
+				// If we have a string and its the first, make it an owner
+				l.value = zOwner
+				l.token = string(str[:stri])
+				l.tokenUpper = strings.ToUpper(l.token)
+				l.length = stri
+				// escape $... start with a \ not a $, so this will work
+				switch l.tokenUpper {
+				case "$TTL":
+					l.value = zDirTTL
+				case "$ORIGIN":
+					l.value = zDirOrigin
+				case "$INCLUDE":
+					l.value = zDirInclude
+				case "$GENERATE":
+					l.value = zDirGenerate
+				}
+				c <- l
+			} else {
+				l.value = zString
+				l.token = string(str[:stri])
+				l.tokenUpper = strings.ToUpper(l.token)
+				l.length = stri
+				if !rrtype {
+					if t, ok := StringToType[l.tokenUpper]; ok {
+						l.value = zRrtpe
+						l.torc = t
+						rrtype = true
+					} else {
+						if strings.HasPrefix(l.tokenUpper, "TYPE") {
+							t, ok := typeToInt(l.token)
+							if !ok {
+								l.token = "unknown RR type"
+								l.err = true
+								c <- l
+								return
+							}
+							l.value = zRrtpe
+							rrtype = true
+							l.torc = t
+						}
+					}
+					if t, ok := StringToClass[l.tokenUpper]; ok {
+						l.value = zClass
+						l.torc = t
+					} else {
+						if strings.HasPrefix(l.tokenUpper, "CLASS") {
+							t, ok := classToInt(l.token)
+							if !ok {
+								l.token = "unknown class"
+								l.err = true
+								c <- l
+								return
+							}
+							l.value = zClass
+							l.torc = t
+						}
+					}
+				}
+				c <- l
+			}
+			stri = 0
+
+			if !space && !commt {
+				l.value = zBlank
+				l.token = " "
+				l.length = 1
+				c <- l
+			}
+			owner = false
+			space = true
+		case ';':
+			if escape {
+				escape = false
+				str[stri] = x
+				stri++
+				break
+			}
+			if quote {
+				// Inside quotes this is legal
+				str[stri] = x
+				stri++
+				break
+			}
+			if stri > 0 {
+				l.value = zString
+				l.token = string(str[:stri])
+				l.tokenUpper = strings.ToUpper(l.token)
+				l.length = stri
+				c <- l
+				stri = 0
+			}
+			commt = true
+			com[comi] = ';'
+			comi++
+		case '\r':
+			escape = false
+			if quote {
+				str[stri] = x
+				stri++
+				break
+			}
+			// discard if outside of quotes
+		case '\n':
+			escape = false
+			// Escaped newline
+			if quote {
+				str[stri] = x
+				stri++
+				break
+			}
+			// inside quotes this is legal
+			if commt {
+				// Reset a comment
+				commt = false
+				rrtype = false
+				stri = 0
+				// If not in a brace this ends the comment AND the RR
+				if brace == 0 {
+					owner = true
+					owner = true
+					l.value = zNewline
+					l.token = "\n"
+					l.tokenUpper = l.token
+					l.length = 1
+					l.comment = string(com[:comi])
+					c <- l
+					l.comment = ""
+					comi = 0
+					break
+				}
+				com[comi] = ' ' // convert newline to space
+				comi++
+				break
+			}
+
+			if brace == 0 {
+				// If there is previous text, we should output it here
+				if stri != 0 {
+					l.value = zString
+					l.token = string(str[:stri])
+					l.tokenUpper = strings.ToUpper(l.token)
+
+					l.length = stri
+					if !rrtype {
+						if t, ok := StringToType[l.tokenUpper]; ok {
+							l.value = zRrtpe
+							l.torc = t
+							rrtype = true
+						}
+					}
+					c <- l
+				}
+				l.value = zNewline
+				l.token = "\n"
+				l.tokenUpper = l.token
+				l.length = 1
+				c <- l
+				stri = 0
+				commt = false
+				rrtype = false
+				owner = true
+				comi = 0
+			}
+		case '\\':
+			// comments do not get escaped chars, everything is copied
+			if commt {
+				com[comi] = x
+				comi++
+				break
+			}
+			// something already escaped must be in string
+			if escape {
+				str[stri] = x
+				stri++
+				escape = false
+				break
+			}
+			// something escaped outside of string gets added to string
+			str[stri] = x
+			stri++
+			escape = true
+		case '"':
+			if commt {
+				com[comi] = x
+				comi++
+				break
+			}
+			if escape {
+				str[stri] = x
+				stri++
+				escape = false
+				break
+			}
+			space = false
+			// send previous gathered text and the quote
+			if stri != 0 {
+				l.value = zString
+				l.token = string(str[:stri])
+				l.tokenUpper = strings.ToUpper(l.token)
+				l.length = stri
+
+				c <- l
+				stri = 0
+			}
+
+			// send quote itself as separate token
+			l.value = zQuote
+			l.token = "\""
+			l.tokenUpper = l.token
+			l.length = 1
+			c <- l
+			quote = !quote
+		case '(', ')':
+			if commt {
+				com[comi] = x
+				comi++
+				break
+			}
+			if escape {
+				str[stri] = x
+				stri++
+				escape = false
+				break
+			}
+			if quote {
+				str[stri] = x
+				stri++
+				break
+			}
+			switch x {
+			case ')':
+				brace--
+				if brace < 0 {
+					l.token = "extra closing brace"
+					l.tokenUpper = l.token
+					l.err = true
+					c <- l
+					return
+				}
+			case '(':
+				brace++
+			}
+		default:
+			escape = false
+			if commt {
+				com[comi] = x
+				comi++
+				break
+			}
+			str[stri] = x
+			stri++
+			space = false
+		}
+		x, err = s.tokenText()
+	}
+	if stri > 0 {
+		// Send remainder
+		l.token = string(str[:stri])
+		l.tokenUpper = strings.ToUpper(l.token)
+		l.length = stri
+		l.value = zString
+		c <- l
+	}
+	if brace != 0 {
+		l.token = "unbalanced brace"
+		l.tokenUpper = l.token
+		l.err = true
+		c <- l
+	}
+}
+
+// Extract the class number from CLASSxx
+func classToInt(token string) (uint16, bool) {
+	offset := 5
+	if len(token) < offset+1 {
+		return 0, false
+	}
+	class, err := strconv.ParseUint(token[offset:], 10, 16)
+	if err != nil {
+		return 0, false
+	}
+	return uint16(class), true
+}
+
+// Extract the rr number from TYPExxx
+func typeToInt(token string) (uint16, bool) {
+	offset := 4
+	if len(token) < offset+1 {
+		return 0, false
+	}
+	typ, err := strconv.ParseUint(token[offset:], 10, 16)
+	if err != nil {
+		return 0, false
+	}
+	return uint16(typ), true
+}
+
+// stringToTTL parses things like 2w, 2m, etc, and returns the time in seconds.
+func stringToTTL(token string) (uint32, bool) {
+	s := uint32(0)
+	i := uint32(0)
+	for _, c := range token {
+		switch c {
+		case 's', 'S':
+			s += i
+			i = 0
+		case 'm', 'M':
+			s += i * 60
+			i = 0
+		case 'h', 'H':
+			s += i * 60 * 60
+			i = 0
+		case 'd', 'D':
+			s += i * 60 * 60 * 24
+			i = 0
+		case 'w', 'W':
+			s += i * 60 * 60 * 24 * 7
+			i = 0
+		case '0', '1', '2', '3', '4', '5', '6', '7', '8', '9':
+			i *= 10
+			i += uint32(c) - '0'
+		default:
+			return 0, false
+		}
+	}
+	return s + i, true
+}
+
+// Parse LOC records' <digits>[.<digits>][mM] into a
+// mantissa exponent format. Token should contain the entire
+// string (i.e. no spaces allowed)
+func stringToCm(token string) (e, m uint8, ok bool) {
+	if token[len(token)-1] == 'M' || token[len(token)-1] == 'm' {
+		token = token[0 : len(token)-1]
+	}
+	s := strings.SplitN(token, ".", 2)
+	var meters, cmeters, val int
+	var err error
+	switch len(s) {
+	case 2:
+		if cmeters, err = strconv.Atoi(s[1]); err != nil {
+			return
+		}
+		fallthrough
+	case 1:
+		if meters, err = strconv.Atoi(s[0]); err != nil {
+			return
+		}
+	case 0:
+		// huh?
+		return 0, 0, false
+	}
+	ok = true
+	if meters > 0 {
+		e = 2
+		val = meters
+	} else {
+		e = 0
+		val = cmeters
+	}
+	for val > 10 {
+		e++
+		val /= 10
+	}
+	if e > 9 {
+		ok = false
+	}
+	m = uint8(val)
+	return
+}
+
+func toAbsoluteName(name, origin string) (absolute string, ok bool) {
+	// check for an explicit origin reference
+	if name == "@" {
+		// require a nonempty origin
+		if origin == "" {
+			return "", false
+		}
+		return origin, true
+	}
+
+	// require a valid domain name
+	_, ok = IsDomainName(name)
+	if !ok || name == "" {
+		return "", false
+	}
+
+	// check if name is already absolute
+	if name[len(name)-1] == '.' {
+		return name, true
+	}
+
+	// require a nonempty origin
+	if origin == "" {
+		return "", false
+	}
+	return appendOrigin(name, origin), true
+}
+
+func appendOrigin(name, origin string) string {
+	if origin == "." {
+		return name + origin
+	}
+	return name + "." + origin
+}
+
+// LOC record helper function
+func locCheckNorth(token string, latitude uint32) (uint32, bool) {
+	switch token {
+	case "n", "N":
+		return LOC_EQUATOR + latitude, true
+	case "s", "S":
+		return LOC_EQUATOR - latitude, true
+	}
+	return latitude, false
+}
+
+// LOC record helper function
+func locCheckEast(token string, longitude uint32) (uint32, bool) {
+	switch token {
+	case "e", "E":
+		return LOC_EQUATOR + longitude, true
+	case "w", "W":
+		return LOC_EQUATOR - longitude, true
+	}
+	return longitude, false
+}
+
+// "Eat" the rest of the "line". Return potential comments
+func slurpRemainder(c chan lex, f string) (*ParseError, string) {
+	l := <-c
+	com := ""
+	switch l.value {
+	case zBlank:
+		l = <-c
+		com = l.comment
+		if l.value != zNewline && l.value != zEOF {
+			return &ParseError{f, "garbage after rdata", l}, ""
+		}
+	case zNewline:
+		com = l.comment
+	case zEOF:
+	default:
+		return &ParseError{f, "garbage after rdata", l}, ""
+	}
+	return nil, com
+}
+
+// Parse a 64 bit-like ipv6 address: "0014:4fff:ff20:ee64"
+// Used for NID and L64 record.
+func stringToNodeID(l lex) (uint64, *ParseError) {
+	if len(l.token) < 19 {
+		return 0, &ParseError{l.token, "bad NID/L64 NodeID/Locator64", l}
+	}
+	// There must be three colons at fixes postitions, if not its a parse error
+	if l.token[4] != ':' && l.token[9] != ':' && l.token[14] != ':' {
+		return 0, &ParseError{l.token, "bad NID/L64 NodeID/Locator64", l}
+	}
+	s := l.token[0:4] + l.token[5:9] + l.token[10:14] + l.token[15:19]
+	u, err := strconv.ParseUint(s, 16, 64)
+	if err != nil {
+		return 0, &ParseError{l.token, "bad NID/L64 NodeID/Locator64", l}
+	}
+	return u, nil
+}
diff --git a/vendor/github.com/miekg/dns/scan_rr.go b/vendor/github.com/miekg/dns/scan_rr.go
new file mode 100644
index 0000000000..f4ccc84246
--- /dev/null
+++ b/vendor/github.com/miekg/dns/scan_rr.go
@@ -0,0 +1,2199 @@
+package dns
+
+import (
+	"encoding/base64"
+	"net"
+	"strconv"
+	"strings"
+)
+
+type parserFunc struct {
+	// Func defines the function that parses the tokens and returns the RR
+	// or an error. The last string contains any comments in the line as
+	// they returned by the lexer as well.
+	Func func(h RR_Header, c chan lex, origin string, file string) (RR, *ParseError, string)
+	// Signals if the RR ending is of variable length, like TXT or records
+	// that have Hexadecimal or Base64 as their last element in the Rdata. Records
+	// that have a fixed ending or for instance A, AAAA, SOA and etc.
+	Variable bool
+}
+
+// Parse the rdata of each rrtype.
+// All data from the channel c is either zString or zBlank.
+// After the rdata there may come a zBlank and then a zNewline
+// or immediately a zNewline. If this is not the case we flag
+// an *ParseError: garbage after rdata.
+func setRR(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	parserfunc, ok := typeToparserFunc[h.Rrtype]
+	if ok {
+		r, e, cm := parserfunc.Func(h, c, o, f)
+		if parserfunc.Variable {
+			return r, e, cm
+		}
+		if e != nil {
+			return nil, e, ""
+		}
+		e, cm = slurpRemainder(c, f)
+		if e != nil {
+			return nil, e, ""
+		}
+		return r, nil, cm
+	}
+	// RFC3957 RR (Unknown RR handling)
+	return setRFC3597(h, c, o, f)
+}
+
+// A remainder of the rdata with embedded spaces, return the parsed string (sans the spaces)
+// or an error
+func endingToString(c chan lex, errstr, f string) (string, *ParseError, string) {
+	s := ""
+	l := <-c // zString
+	for l.value != zNewline && l.value != zEOF {
+		if l.err {
+			return s, &ParseError{f, errstr, l}, ""
+		}
+		switch l.value {
+		case zString:
+			s += l.token
+		case zBlank: // Ok
+		default:
+			return "", &ParseError{f, errstr, l}, ""
+		}
+		l = <-c
+	}
+	return s, nil, l.comment
+}
+
+// A remainder of the rdata with embedded spaces, split on unquoted whitespace
+// and return the parsed string slice or an error
+func endingToTxtSlice(c chan lex, errstr, f string) ([]string, *ParseError, string) {
+	// Get the remaining data until we see a zNewline
+	l := <-c
+	if l.err {
+		return nil, &ParseError{f, errstr, l}, ""
+	}
+
+	// Build the slice
+	s := make([]string, 0)
+	quote := false
+	empty := false
+	for l.value != zNewline && l.value != zEOF {
+		if l.err {
+			return nil, &ParseError{f, errstr, l}, ""
+		}
+		switch l.value {
+		case zString:
+			empty = false
+			if len(l.token) > 255 {
+				// split up tokens that are larger than 255 into 255-chunks
+				sx := []string{}
+				p, i := 0, 255
+				for {
+					if i <= len(l.token) {
+						sx = append(sx, l.token[p:i])
+					} else {
+						sx = append(sx, l.token[p:])
+						break
+
+					}
+					p, i = p+255, i+255
+				}
+				s = append(s, sx...)
+				break
+			}
+
+			s = append(s, l.token)
+		case zBlank:
+			if quote {
+				// zBlank can only be seen in between txt parts.
+				return nil, &ParseError{f, errstr, l}, ""
+			}
+		case zQuote:
+			if empty && quote {
+				s = append(s, "")
+			}
+			quote = !quote
+			empty = true
+		default:
+			return nil, &ParseError{f, errstr, l}, ""
+		}
+		l = <-c
+	}
+	if quote {
+		return nil, &ParseError{f, errstr, l}, ""
+	}
+	return s, nil, l.comment
+}
+
+func setA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(A)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	rr.A = net.ParseIP(l.token)
+	if rr.A == nil || l.err {
+		return nil, &ParseError{f, "bad A A", l}, ""
+	}
+	return rr, nil, ""
+}
+
+func setAAAA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(AAAA)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	rr.AAAA = net.ParseIP(l.token)
+	if rr.AAAA == nil || l.err {
+		return nil, &ParseError{f, "bad AAAA AAAA", l}, ""
+	}
+	return rr, nil, ""
+}
+
+func setNS(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NS)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Ns = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad NS Ns", l}, ""
+	}
+	rr.Ns = name
+	return rr, nil, ""
+}
+
+func setPTR(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(PTR)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Ptr = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad PTR Ptr", l}, ""
+	}
+	rr.Ptr = name
+	return rr, nil, ""
+}
+
+func setNSAPPTR(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NSAPPTR)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Ptr = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad NSAP-PTR Ptr", l}, ""
+	}
+	rr.Ptr = name
+	return rr, nil, ""
+}
+
+func setRP(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(RP)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Mbox = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	mbox, mboxOk := toAbsoluteName(l.token, o)
+	if l.err || !mboxOk {
+		return nil, &ParseError{f, "bad RP Mbox", l}, ""
+	}
+	rr.Mbox = mbox
+
+	<-c // zBlank
+	l = <-c
+	rr.Txt = l.token
+
+	txt, txtOk := toAbsoluteName(l.token, o)
+	if l.err || !txtOk {
+		return nil, &ParseError{f, "bad RP Txt", l}, ""
+	}
+	rr.Txt = txt
+
+	return rr, nil, ""
+}
+
+func setMR(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MR)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Mr = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MR Mr", l}, ""
+	}
+	rr.Mr = name
+	return rr, nil, ""
+}
+
+func setMB(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MB)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Mb = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MB Mb", l}, ""
+	}
+	rr.Mb = name
+	return rr, nil, ""
+}
+
+func setMG(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MG)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Mg = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MG Mg", l}, ""
+	}
+	rr.Mg = name
+	return rr, nil, ""
+}
+
+func setHINFO(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(HINFO)
+	rr.Hdr = h
+
+	chunks, e, c1 := endingToTxtSlice(c, "bad HINFO Fields", f)
+	if e != nil {
+		return nil, e, c1
+	}
+
+	if ln := len(chunks); ln == 0 {
+		return rr, nil, ""
+	} else if ln == 1 {
+		// Can we split it?
+		if out := strings.Fields(chunks[0]); len(out) > 1 {
+			chunks = out
+		} else {
+			chunks = append(chunks, "")
+		}
+	}
+
+	rr.Cpu = chunks[0]
+	rr.Os = strings.Join(chunks[1:], " ")
+
+	return rr, nil, ""
+}
+
+func setMINFO(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MINFO)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Rmail = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	rmail, rmailOk := toAbsoluteName(l.token, o)
+	if l.err || !rmailOk {
+		return nil, &ParseError{f, "bad MINFO Rmail", l}, ""
+	}
+	rr.Rmail = rmail
+
+	<-c // zBlank
+	l = <-c
+	rr.Email = l.token
+
+	email, emailOk := toAbsoluteName(l.token, o)
+	if l.err || !emailOk {
+		return nil, &ParseError{f, "bad MINFO Email", l}, ""
+	}
+	rr.Email = email
+
+	return rr, nil, ""
+}
+
+func setMF(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MF)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Mf = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MF Mf", l}, ""
+	}
+	rr.Mf = name
+	return rr, nil, ""
+}
+
+func setMD(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MD)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Md = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MD Md", l}, ""
+	}
+	rr.Md = name
+	return rr, nil, ""
+}
+
+func setMX(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(MX)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad MX Pref", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Mx = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad MX Mx", l}, ""
+	}
+	rr.Mx = name
+
+	return rr, nil, ""
+}
+
+func setRT(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(RT)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil {
+		return nil, &ParseError{f, "bad RT Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Host = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad RT Host", l}, ""
+	}
+	rr.Host = name
+
+	return rr, nil, ""
+}
+
+func setAFSDB(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(AFSDB)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad AFSDB Subtype", l}, ""
+	}
+	rr.Subtype = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Hostname = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad AFSDB Hostname", l}, ""
+	}
+	rr.Hostname = name
+	return rr, nil, ""
+}
+
+func setX25(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(X25)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	if l.err {
+		return nil, &ParseError{f, "bad X25 PSDNAddress", l}, ""
+	}
+	rr.PSDNAddress = l.token
+	return rr, nil, ""
+}
+
+func setKX(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(KX)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad KX Pref", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Exchanger = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad KX Exchanger", l}, ""
+	}
+	rr.Exchanger = name
+	return rr, nil, ""
+}
+
+func setCNAME(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(CNAME)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Target = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad CNAME Target", l}, ""
+	}
+	rr.Target = name
+	return rr, nil, ""
+}
+
+func setDNAME(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(DNAME)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Target = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad DNAME Target", l}, ""
+	}
+	rr.Target = name
+	return rr, nil, ""
+}
+
+func setSOA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(SOA)
+	rr.Hdr = h
+
+	l := <-c
+	rr.Ns = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	ns, nsOk := toAbsoluteName(l.token, o)
+	if l.err || !nsOk {
+		return nil, &ParseError{f, "bad SOA Ns", l}, ""
+	}
+	rr.Ns = ns
+
+	<-c // zBlank
+	l = <-c
+	rr.Mbox = l.token
+
+	mbox, mboxOk := toAbsoluteName(l.token, o)
+	if l.err || !mboxOk {
+		return nil, &ParseError{f, "bad SOA Mbox", l}, ""
+	}
+	rr.Mbox = mbox
+
+	<-c // zBlank
+
+	var (
+		v  uint32
+		ok bool
+	)
+	for i := 0; i < 5; i++ {
+		l = <-c
+		if l.err {
+			return nil, &ParseError{f, "bad SOA zone parameter", l}, ""
+		}
+		if j, e := strconv.ParseUint(l.token, 10, 32); e != nil {
+			if i == 0 {
+				// Serial must be a number
+				return nil, &ParseError{f, "bad SOA zone parameter", l}, ""
+			}
+			// We allow other fields to be unitful duration strings
+			if v, ok = stringToTTL(l.token); !ok {
+				return nil, &ParseError{f, "bad SOA zone parameter", l}, ""
+
+			}
+		} else {
+			v = uint32(j)
+		}
+		switch i {
+		case 0:
+			rr.Serial = v
+			<-c // zBlank
+		case 1:
+			rr.Refresh = v
+			<-c // zBlank
+		case 2:
+			rr.Retry = v
+			<-c // zBlank
+		case 3:
+			rr.Expire = v
+			<-c // zBlank
+		case 4:
+			rr.Minttl = v
+		}
+	}
+	return rr, nil, ""
+}
+
+func setSRV(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(SRV)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SRV Priority", l}, ""
+	}
+	rr.Priority = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SRV Weight", l}, ""
+	}
+	rr.Weight = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SRV Port", l}, ""
+	}
+	rr.Port = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Target = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad SRV Target", l}, ""
+	}
+	rr.Target = name
+	return rr, nil, ""
+}
+
+func setNAPTR(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NAPTR)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NAPTR Order", l}, ""
+	}
+	rr.Order = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NAPTR Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	// Flags
+	<-c     // zBlank
+	l = <-c // _QUOTE
+	if l.value != zQuote {
+		return nil, &ParseError{f, "bad NAPTR Flags", l}, ""
+	}
+	l = <-c // Either String or Quote
+	if l.value == zString {
+		rr.Flags = l.token
+		l = <-c // _QUOTE
+		if l.value != zQuote {
+			return nil, &ParseError{f, "bad NAPTR Flags", l}, ""
+		}
+	} else if l.value == zQuote {
+		rr.Flags = ""
+	} else {
+		return nil, &ParseError{f, "bad NAPTR Flags", l}, ""
+	}
+
+	// Service
+	<-c     // zBlank
+	l = <-c // _QUOTE
+	if l.value != zQuote {
+		return nil, &ParseError{f, "bad NAPTR Service", l}, ""
+	}
+	l = <-c // Either String or Quote
+	if l.value == zString {
+		rr.Service = l.token
+		l = <-c // _QUOTE
+		if l.value != zQuote {
+			return nil, &ParseError{f, "bad NAPTR Service", l}, ""
+		}
+	} else if l.value == zQuote {
+		rr.Service = ""
+	} else {
+		return nil, &ParseError{f, "bad NAPTR Service", l}, ""
+	}
+
+	// Regexp
+	<-c     // zBlank
+	l = <-c // _QUOTE
+	if l.value != zQuote {
+		return nil, &ParseError{f, "bad NAPTR Regexp", l}, ""
+	}
+	l = <-c // Either String or Quote
+	if l.value == zString {
+		rr.Regexp = l.token
+		l = <-c // _QUOTE
+		if l.value != zQuote {
+			return nil, &ParseError{f, "bad NAPTR Regexp", l}, ""
+		}
+	} else if l.value == zQuote {
+		rr.Regexp = ""
+	} else {
+		return nil, &ParseError{f, "bad NAPTR Regexp", l}, ""
+	}
+
+	// After quote no space??
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Replacement = l.token
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad NAPTR Replacement", l}, ""
+	}
+	rr.Replacement = name
+	return rr, nil, ""
+}
+
+func setTALINK(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(TALINK)
+	rr.Hdr = h
+
+	l := <-c
+	rr.PreviousName = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	previousName, previousNameOk := toAbsoluteName(l.token, o)
+	if l.err || !previousNameOk {
+		return nil, &ParseError{f, "bad TALINK PreviousName", l}, ""
+	}
+	rr.PreviousName = previousName
+
+	<-c // zBlank
+	l = <-c
+	rr.NextName = l.token
+
+	nextName, nextNameOk := toAbsoluteName(l.token, o)
+	if l.err || !nextNameOk {
+		return nil, &ParseError{f, "bad TALINK NextName", l}, ""
+	}
+	rr.NextName = nextName
+
+	return rr, nil, ""
+}
+
+func setLOC(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(LOC)
+	rr.Hdr = h
+	// Non zero defaults for LOC record, see RFC 1876, Section 3.
+	rr.HorizPre = 165 // 10000
+	rr.VertPre = 162  // 10
+	rr.Size = 18      // 1
+	ok := false
+
+	// North
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+	i, e := strconv.ParseUint(l.token, 10, 32)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Latitude", l}, ""
+	}
+	rr.Latitude = 1000 * 60 * 60 * uint32(i)
+
+	<-c // zBlank
+	// Either number, 'N' or 'S'
+	l = <-c
+	if rr.Latitude, ok = locCheckNorth(l.token, rr.Latitude); ok {
+		goto East
+	}
+	i, e = strconv.ParseUint(l.token, 10, 32)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Latitude minutes", l}, ""
+	}
+	rr.Latitude += 1000 * 60 * uint32(i)
+
+	<-c // zBlank
+	l = <-c
+	if i, e := strconv.ParseFloat(l.token, 32); e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Latitude seconds", l}, ""
+	} else {
+		rr.Latitude += uint32(1000 * i)
+	}
+	<-c // zBlank
+	// Either number, 'N' or 'S'
+	l = <-c
+	if rr.Latitude, ok = locCheckNorth(l.token, rr.Latitude); ok {
+		goto East
+	}
+	// If still alive, flag an error
+	return nil, &ParseError{f, "bad LOC Latitude North/South", l}, ""
+
+East:
+	// East
+	<-c // zBlank
+	l = <-c
+	if i, e := strconv.ParseUint(l.token, 10, 32); e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Longitude", l}, ""
+	} else {
+		rr.Longitude = 1000 * 60 * 60 * uint32(i)
+	}
+	<-c // zBlank
+	// Either number, 'E' or 'W'
+	l = <-c
+	if rr.Longitude, ok = locCheckEast(l.token, rr.Longitude); ok {
+		goto Altitude
+	}
+	if i, e := strconv.ParseUint(l.token, 10, 32); e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Longitude minutes", l}, ""
+	} else {
+		rr.Longitude += 1000 * 60 * uint32(i)
+	}
+	<-c // zBlank
+	l = <-c
+	if i, e := strconv.ParseFloat(l.token, 32); e != nil || l.err {
+		return nil, &ParseError{f, "bad LOC Longitude seconds", l}, ""
+	} else {
+		rr.Longitude += uint32(1000 * i)
+	}
+	<-c // zBlank
+	// Either number, 'E' or 'W'
+	l = <-c
+	if rr.Longitude, ok = locCheckEast(l.token, rr.Longitude); ok {
+		goto Altitude
+	}
+	// If still alive, flag an error
+	return nil, &ParseError{f, "bad LOC Longitude East/West", l}, ""
+
+Altitude:
+	<-c // zBlank
+	l = <-c
+	if l.length == 0 || l.err {
+		return nil, &ParseError{f, "bad LOC Altitude", l}, ""
+	}
+	if l.token[len(l.token)-1] == 'M' || l.token[len(l.token)-1] == 'm' {
+		l.token = l.token[0 : len(l.token)-1]
+	}
+	if i, e := strconv.ParseFloat(l.token, 32); e != nil {
+		return nil, &ParseError{f, "bad LOC Altitude", l}, ""
+	} else {
+		rr.Altitude = uint32(i*100.0 + 10000000.0 + 0.5)
+	}
+
+	// And now optionally the other values
+	l = <-c
+	count := 0
+	for l.value != zNewline && l.value != zEOF {
+		switch l.value {
+		case zString:
+			switch count {
+			case 0: // Size
+				e, m, ok := stringToCm(l.token)
+				if !ok {
+					return nil, &ParseError{f, "bad LOC Size", l}, ""
+				}
+				rr.Size = (e & 0x0f) | (m << 4 & 0xf0)
+			case 1: // HorizPre
+				e, m, ok := stringToCm(l.token)
+				if !ok {
+					return nil, &ParseError{f, "bad LOC HorizPre", l}, ""
+				}
+				rr.HorizPre = (e & 0x0f) | (m << 4 & 0xf0)
+			case 2: // VertPre
+				e, m, ok := stringToCm(l.token)
+				if !ok {
+					return nil, &ParseError{f, "bad LOC VertPre", l}, ""
+				}
+				rr.VertPre = (e & 0x0f) | (m << 4 & 0xf0)
+			}
+			count++
+		case zBlank:
+			// Ok
+		default:
+			return nil, &ParseError{f, "bad LOC Size, HorizPre or VertPre", l}, ""
+		}
+		l = <-c
+	}
+	return rr, nil, ""
+}
+
+func setHIP(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(HIP)
+	rr.Hdr = h
+
+	// HitLength is not represented
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad HIP PublicKeyAlgorithm", l}, ""
+	}
+	rr.PublicKeyAlgorithm = uint8(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	if l.length == 0 || l.err {
+		return nil, &ParseError{f, "bad HIP Hit", l}, ""
+	}
+	rr.Hit = l.token // This can not contain spaces, see RFC 5205 Section 6.
+	rr.HitLength = uint8(len(rr.Hit)) / 2
+
+	<-c     // zBlank
+	l = <-c // zString
+	if l.length == 0 || l.err {
+		return nil, &ParseError{f, "bad HIP PublicKey", l}, ""
+	}
+	rr.PublicKey = l.token // This cannot contain spaces
+	rr.PublicKeyLength = uint16(base64.StdEncoding.DecodedLen(len(rr.PublicKey)))
+
+	// RendezvousServers (if any)
+	l = <-c
+	var xs []string
+	for l.value != zNewline && l.value != zEOF {
+		switch l.value {
+		case zString:
+			name, nameOk := toAbsoluteName(l.token, o)
+			if l.err || !nameOk {
+				return nil, &ParseError{f, "bad HIP RendezvousServers", l}, ""
+			}
+			xs = append(xs, name)
+		case zBlank:
+			// Ok
+		default:
+			return nil, &ParseError{f, "bad HIP RendezvousServers", l}, ""
+		}
+		l = <-c
+	}
+	rr.RendezvousServers = xs
+	return rr, nil, l.comment
+}
+
+func setCERT(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(CERT)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	if v, ok := StringToCertType[l.token]; ok {
+		rr.Type = v
+	} else if i, e := strconv.ParseUint(l.token, 10, 16); e != nil {
+		return nil, &ParseError{f, "bad CERT Type", l}, ""
+	} else {
+		rr.Type = uint16(i)
+	}
+	<-c     // zBlank
+	l = <-c // zString
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad CERT KeyTag", l}, ""
+	}
+	rr.KeyTag = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	if v, ok := StringToAlgorithm[l.token]; ok {
+		rr.Algorithm = v
+	} else if i, e := strconv.ParseUint(l.token, 10, 8); e != nil {
+		return nil, &ParseError{f, "bad CERT Algorithm", l}, ""
+	} else {
+		rr.Algorithm = uint8(i)
+	}
+	s, e1, c1 := endingToString(c, "bad CERT Certificate", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	rr.Certificate = s
+	return rr, nil, c1
+}
+
+func setOPENPGPKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(OPENPGPKEY)
+	rr.Hdr = h
+
+	s, e, c1 := endingToString(c, "bad OPENPGPKEY PublicKey", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	rr.PublicKey = s
+	return rr, nil, c1
+}
+
+func setCSYNC(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(CSYNC)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+	j, e := strconv.ParseUint(l.token, 10, 32)
+	if e != nil {
+		// Serial must be a number
+		return nil, &ParseError{f, "bad CSYNC serial", l}, ""
+	}
+	rr.Serial = uint32(j)
+
+	<-c // zBlank
+
+	l = <-c
+	j, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil {
+		// Serial must be a number
+		return nil, &ParseError{f, "bad CSYNC flags", l}, ""
+	}
+	rr.Flags = uint16(j)
+
+	rr.TypeBitMap = make([]uint16, 0)
+	var (
+		k  uint16
+		ok bool
+	)
+	l = <-c
+	for l.value != zNewline && l.value != zEOF {
+		switch l.value {
+		case zBlank:
+			// Ok
+		case zString:
+			if k, ok = StringToType[l.tokenUpper]; !ok {
+				if k, ok = typeToInt(l.tokenUpper); !ok {
+					return nil, &ParseError{f, "bad CSYNC TypeBitMap", l}, ""
+				}
+			}
+			rr.TypeBitMap = append(rr.TypeBitMap, k)
+		default:
+			return nil, &ParseError{f, "bad CSYNC TypeBitMap", l}, ""
+		}
+		l = <-c
+	}
+	return rr, nil, l.comment
+}
+
+func setSIG(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setRRSIG(h, c, o, f)
+	if r != nil {
+		return &SIG{*r.(*RRSIG)}, e, s
+	}
+	return nil, e, s
+}
+
+func setRRSIG(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(RRSIG)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	if t, ok := StringToType[l.tokenUpper]; !ok {
+		if strings.HasPrefix(l.tokenUpper, "TYPE") {
+			t, ok = typeToInt(l.tokenUpper)
+			if !ok {
+				return nil, &ParseError{f, "bad RRSIG Typecovered", l}, ""
+			}
+			rr.TypeCovered = t
+		} else {
+			return nil, &ParseError{f, "bad RRSIG Typecovered", l}, ""
+		}
+	} else {
+		rr.TypeCovered = t
+	}
+
+	<-c // zBlank
+	l = <-c
+	i, err := strconv.ParseUint(l.token, 10, 8)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad RRSIG Algorithm", l}, ""
+	}
+	rr.Algorithm = uint8(i)
+
+	<-c // zBlank
+	l = <-c
+	i, err = strconv.ParseUint(l.token, 10, 8)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad RRSIG Labels", l}, ""
+	}
+	rr.Labels = uint8(i)
+
+	<-c // zBlank
+	l = <-c
+	i, err = strconv.ParseUint(l.token, 10, 32)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad RRSIG OrigTtl", l}, ""
+	}
+	rr.OrigTtl = uint32(i)
+
+	<-c // zBlank
+	l = <-c
+	if i, err := StringToTime(l.token); err != nil {
+		// Try to see if all numeric and use it as epoch
+		if i, err := strconv.ParseInt(l.token, 10, 64); err == nil {
+			// TODO(miek): error out on > MAX_UINT32, same below
+			rr.Expiration = uint32(i)
+		} else {
+			return nil, &ParseError{f, "bad RRSIG Expiration", l}, ""
+		}
+	} else {
+		rr.Expiration = i
+	}
+
+	<-c // zBlank
+	l = <-c
+	if i, err := StringToTime(l.token); err != nil {
+		if i, err := strconv.ParseInt(l.token, 10, 64); err == nil {
+			rr.Inception = uint32(i)
+		} else {
+			return nil, &ParseError{f, "bad RRSIG Inception", l}, ""
+		}
+	} else {
+		rr.Inception = i
+	}
+
+	<-c // zBlank
+	l = <-c
+	i, err = strconv.ParseUint(l.token, 10, 16)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad RRSIG KeyTag", l}, ""
+	}
+	rr.KeyTag = uint16(i)
+
+	<-c // zBlank
+	l = <-c
+	rr.SignerName = l.token
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad RRSIG SignerName", l}, ""
+	}
+	rr.SignerName = name
+
+	s, e, c1 := endingToString(c, "bad RRSIG Signature", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	rr.Signature = s
+
+	return rr, nil, c1
+}
+
+func setNSEC(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NSEC)
+	rr.Hdr = h
+
+	l := <-c
+	rr.NextDomain = l.token
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad NSEC NextDomain", l}, ""
+	}
+	rr.NextDomain = name
+
+	rr.TypeBitMap = make([]uint16, 0)
+	var (
+		k  uint16
+		ok bool
+	)
+	l = <-c
+	for l.value != zNewline && l.value != zEOF {
+		switch l.value {
+		case zBlank:
+			// Ok
+		case zString:
+			if k, ok = StringToType[l.tokenUpper]; !ok {
+				if k, ok = typeToInt(l.tokenUpper); !ok {
+					return nil, &ParseError{f, "bad NSEC TypeBitMap", l}, ""
+				}
+			}
+			rr.TypeBitMap = append(rr.TypeBitMap, k)
+		default:
+			return nil, &ParseError{f, "bad NSEC TypeBitMap", l}, ""
+		}
+		l = <-c
+	}
+	return rr, nil, l.comment
+}
+
+func setNSEC3(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NSEC3)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3 Hash", l}, ""
+	}
+	rr.Hash = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3 Flags", l}, ""
+	}
+	rr.Flags = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3 Iterations", l}, ""
+	}
+	rr.Iterations = uint16(i)
+	<-c
+	l = <-c
+	if len(l.token) == 0 || l.err {
+		return nil, &ParseError{f, "bad NSEC3 Salt", l}, ""
+	}
+	rr.SaltLength = uint8(len(l.token)) / 2
+	rr.Salt = l.token
+
+	<-c
+	l = <-c
+	if len(l.token) == 0 || l.err {
+		return nil, &ParseError{f, "bad NSEC3 NextDomain", l}, ""
+	}
+	rr.HashLength = 20 // Fix for NSEC3 (sha1 160 bits)
+	rr.NextDomain = l.token
+
+	rr.TypeBitMap = make([]uint16, 0)
+	var (
+		k  uint16
+		ok bool
+	)
+	l = <-c
+	for l.value != zNewline && l.value != zEOF {
+		switch l.value {
+		case zBlank:
+			// Ok
+		case zString:
+			if k, ok = StringToType[l.tokenUpper]; !ok {
+				if k, ok = typeToInt(l.tokenUpper); !ok {
+					return nil, &ParseError{f, "bad NSEC3 TypeBitMap", l}, ""
+				}
+			}
+			rr.TypeBitMap = append(rr.TypeBitMap, k)
+		default:
+			return nil, &ParseError{f, "bad NSEC3 TypeBitMap", l}, ""
+		}
+		l = <-c
+	}
+	return rr, nil, l.comment
+}
+
+func setNSEC3PARAM(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NSEC3PARAM)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3PARAM Hash", l}, ""
+	}
+	rr.Hash = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3PARAM Flags", l}, ""
+	}
+	rr.Flags = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NSEC3PARAM Iterations", l}, ""
+	}
+	rr.Iterations = uint16(i)
+	<-c
+	l = <-c
+	rr.SaltLength = uint8(len(l.token))
+	rr.Salt = l.token
+	return rr, nil, ""
+}
+
+func setEUI48(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(EUI48)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	if l.length != 17 || l.err {
+		return nil, &ParseError{f, "bad EUI48 Address", l}, ""
+	}
+	addr := make([]byte, 12)
+	dash := 0
+	for i := 0; i < 10; i += 2 {
+		addr[i] = l.token[i+dash]
+		addr[i+1] = l.token[i+1+dash]
+		dash++
+		if l.token[i+1+dash] != '-' {
+			return nil, &ParseError{f, "bad EUI48 Address", l}, ""
+		}
+	}
+	addr[10] = l.token[15]
+	addr[11] = l.token[16]
+
+	i, e := strconv.ParseUint(string(addr), 16, 48)
+	if e != nil {
+		return nil, &ParseError{f, "bad EUI48 Address", l}, ""
+	}
+	rr.Address = i
+	return rr, nil, ""
+}
+
+func setEUI64(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(EUI64)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	if l.length != 23 || l.err {
+		return nil, &ParseError{f, "bad EUI64 Address", l}, ""
+	}
+	addr := make([]byte, 16)
+	dash := 0
+	for i := 0; i < 14; i += 2 {
+		addr[i] = l.token[i+dash]
+		addr[i+1] = l.token[i+1+dash]
+		dash++
+		if l.token[i+1+dash] != '-' {
+			return nil, &ParseError{f, "bad EUI64 Address", l}, ""
+		}
+	}
+	addr[14] = l.token[21]
+	addr[15] = l.token[22]
+
+	i, e := strconv.ParseUint(string(addr), 16, 64)
+	if e != nil {
+		return nil, &ParseError{f, "bad EUI68 Address", l}, ""
+	}
+	rr.Address = uint64(i)
+	return rr, nil, ""
+}
+
+func setSSHFP(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(SSHFP)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SSHFP Algorithm", l}, ""
+	}
+	rr.Algorithm = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SSHFP Type", l}, ""
+	}
+	rr.Type = uint8(i)
+	<-c // zBlank
+	s, e1, c1 := endingToString(c, "bad SSHFP Fingerprint", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	rr.FingerPrint = s
+	return rr, nil, ""
+}
+
+func setDNSKEYs(h RR_Header, c chan lex, o, f, typ string) (RR, *ParseError, string) {
+	rr := new(DNSKEY)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad " + typ + " Flags", l}, ""
+	}
+	rr.Flags = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad " + typ + " Protocol", l}, ""
+	}
+	rr.Protocol = uint8(i)
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad " + typ + " Algorithm", l}, ""
+	}
+	rr.Algorithm = uint8(i)
+	s, e1, c1 := endingToString(c, "bad "+typ+" PublicKey", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	rr.PublicKey = s
+	return rr, nil, c1
+}
+
+func setKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDNSKEYs(h, c, o, f, "KEY")
+	if r != nil {
+		return &KEY{*r.(*DNSKEY)}, e, s
+	}
+	return nil, e, s
+}
+
+func setDNSKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDNSKEYs(h, c, o, f, "DNSKEY")
+	return r, e, s
+}
+
+func setCDNSKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDNSKEYs(h, c, o, f, "CDNSKEY")
+	if r != nil {
+		return &CDNSKEY{*r.(*DNSKEY)}, e, s
+	}
+	return nil, e, s
+}
+
+func setRKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(RKEY)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad RKEY Flags", l}, ""
+	}
+	rr.Flags = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad RKEY Protocol", l}, ""
+	}
+	rr.Protocol = uint8(i)
+	<-c     // zBlank
+	l = <-c // zString
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad RKEY Algorithm", l}, ""
+	}
+	rr.Algorithm = uint8(i)
+	s, e1, c1 := endingToString(c, "bad RKEY PublicKey", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	rr.PublicKey = s
+	return rr, nil, c1
+}
+
+func setEID(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(EID)
+	rr.Hdr = h
+	s, e, c1 := endingToString(c, "bad EID Endpoint", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	rr.Endpoint = s
+	return rr, nil, c1
+}
+
+func setNIMLOC(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NIMLOC)
+	rr.Hdr = h
+	s, e, c1 := endingToString(c, "bad NIMLOC Locator", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	rr.Locator = s
+	return rr, nil, c1
+}
+
+func setGPOS(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(GPOS)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	_, e := strconv.ParseFloat(l.token, 64)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad GPOS Longitude", l}, ""
+	}
+	rr.Longitude = l.token
+	<-c // zBlank
+	l = <-c
+	_, e = strconv.ParseFloat(l.token, 64)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad GPOS Latitude", l}, ""
+	}
+	rr.Latitude = l.token
+	<-c // zBlank
+	l = <-c
+	_, e = strconv.ParseFloat(l.token, 64)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad GPOS Altitude", l}, ""
+	}
+	rr.Altitude = l.token
+	return rr, nil, ""
+}
+
+func setDSs(h RR_Header, c chan lex, o, f, typ string) (RR, *ParseError, string) {
+	rr := new(DS)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad " + typ + " KeyTag", l}, ""
+	}
+	rr.KeyTag = uint16(i)
+	<-c // zBlank
+	l = <-c
+	if i, e = strconv.ParseUint(l.token, 10, 8); e != nil {
+		i, ok := StringToAlgorithm[l.tokenUpper]
+		if !ok || l.err {
+			return nil, &ParseError{f, "bad " + typ + " Algorithm", l}, ""
+		}
+		rr.Algorithm = i
+	} else {
+		rr.Algorithm = uint8(i)
+	}
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad " + typ + " DigestType", l}, ""
+	}
+	rr.DigestType = uint8(i)
+	s, e1, c1 := endingToString(c, "bad "+typ+" Digest", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	rr.Digest = s
+	return rr, nil, c1
+}
+
+func setDS(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDSs(h, c, o, f, "DS")
+	return r, e, s
+}
+
+func setDLV(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDSs(h, c, o, f, "DLV")
+	if r != nil {
+		return &DLV{*r.(*DS)}, e, s
+	}
+	return nil, e, s
+}
+
+func setCDS(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	r, e, s := setDSs(h, c, o, f, "CDS")
+	if r != nil {
+		return &CDS{*r.(*DS)}, e, s
+	}
+	return nil, e, s
+}
+
+func setTA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(TA)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad TA KeyTag", l}, ""
+	}
+	rr.KeyTag = uint16(i)
+	<-c // zBlank
+	l = <-c
+	if i, e := strconv.ParseUint(l.token, 10, 8); e != nil {
+		i, ok := StringToAlgorithm[l.tokenUpper]
+		if !ok || l.err {
+			return nil, &ParseError{f, "bad TA Algorithm", l}, ""
+		}
+		rr.Algorithm = i
+	} else {
+		rr.Algorithm = uint8(i)
+	}
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad TA DigestType", l}, ""
+	}
+	rr.DigestType = uint8(i)
+	s, e, c1 := endingToString(c, "bad TA Digest", f)
+	if e != nil {
+		return nil, e.(*ParseError), c1
+	}
+	rr.Digest = s
+	return rr, nil, c1
+}
+
+func setTLSA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(TLSA)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad TLSA Usage", l}, ""
+	}
+	rr.Usage = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad TLSA Selector", l}, ""
+	}
+	rr.Selector = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad TLSA MatchingType", l}, ""
+	}
+	rr.MatchingType = uint8(i)
+	// So this needs be e2 (i.e. different than e), because...??t
+	s, e2, c1 := endingToString(c, "bad TLSA Certificate", f)
+	if e2 != nil {
+		return nil, e2, c1
+	}
+	rr.Certificate = s
+	return rr, nil, c1
+}
+
+func setSMIMEA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(SMIMEA)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SMIMEA Usage", l}, ""
+	}
+	rr.Usage = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SMIMEA Selector", l}, ""
+	}
+	rr.Selector = uint8(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 8)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad SMIMEA MatchingType", l}, ""
+	}
+	rr.MatchingType = uint8(i)
+	// So this needs be e2 (i.e. different than e), because...??t
+	s, e2, c1 := endingToString(c, "bad SMIMEA Certificate", f)
+	if e2 != nil {
+		return nil, e2, c1
+	}
+	rr.Certificate = s
+	return rr, nil, c1
+}
+
+func setRFC3597(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(RFC3597)
+	rr.Hdr = h
+
+	l := <-c
+	if l.token != "\\#" {
+		return nil, &ParseError{f, "bad RFC3597 Rdata", l}, ""
+	}
+
+	<-c // zBlank
+	l = <-c
+	rdlength, e := strconv.Atoi(l.token)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad RFC3597 Rdata ", l}, ""
+	}
+
+	s, e1, c1 := endingToString(c, "bad RFC3597 Rdata", f)
+	if e1 != nil {
+		return nil, e1, c1
+	}
+	if rdlength*2 != len(s) {
+		return nil, &ParseError{f, "bad RFC3597 Rdata", l}, ""
+	}
+	rr.Rdata = s
+	return rr, nil, c1
+}
+
+func setSPF(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(SPF)
+	rr.Hdr = h
+
+	s, e, c1 := endingToTxtSlice(c, "bad SPF Txt", f)
+	if e != nil {
+		return nil, e, ""
+	}
+	rr.Txt = s
+	return rr, nil, c1
+}
+
+func setAVC(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(AVC)
+	rr.Hdr = h
+
+	s, e, c1 := endingToTxtSlice(c, "bad AVC Txt", f)
+	if e != nil {
+		return nil, e, ""
+	}
+	rr.Txt = s
+	return rr, nil, c1
+}
+
+func setTXT(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(TXT)
+	rr.Hdr = h
+
+	// no zBlank reading here, because all this rdata is TXT
+	s, e, c1 := endingToTxtSlice(c, "bad TXT Txt", f)
+	if e != nil {
+		return nil, e, ""
+	}
+	rr.Txt = s
+	return rr, nil, c1
+}
+
+// identical to setTXT
+func setNINFO(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NINFO)
+	rr.Hdr = h
+
+	s, e, c1 := endingToTxtSlice(c, "bad NINFO ZSData", f)
+	if e != nil {
+		return nil, e, ""
+	}
+	rr.ZSData = s
+	return rr, nil, c1
+}
+
+func setURI(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(URI)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad URI Priority", l}, ""
+	}
+	rr.Priority = uint16(i)
+	<-c // zBlank
+	l = <-c
+	i, e = strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad URI Weight", l}, ""
+	}
+	rr.Weight = uint16(i)
+
+	<-c // zBlank
+	s, err, c1 := endingToTxtSlice(c, "bad URI Target", f)
+	if err != nil {
+		return nil, err, ""
+	}
+	if len(s) != 1 {
+		return nil, &ParseError{f, "bad URI Target", l}, ""
+	}
+	rr.Target = s[0]
+	return rr, nil, c1
+}
+
+func setDHCID(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	// awesome record to parse!
+	rr := new(DHCID)
+	rr.Hdr = h
+
+	s, e, c1 := endingToString(c, "bad DHCID Digest", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	rr.Digest = s
+	return rr, nil, c1
+}
+
+func setNID(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(NID)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad NID Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	u, err := stringToNodeID(l)
+	if err != nil || l.err {
+		return nil, err, ""
+	}
+	rr.NodeID = u
+	return rr, nil, ""
+}
+
+func setL32(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(L32)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad L32 Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Locator32 = net.ParseIP(l.token)
+	if rr.Locator32 == nil || l.err {
+		return nil, &ParseError{f, "bad L32 Locator", l}, ""
+	}
+	return rr, nil, ""
+}
+
+func setLP(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(LP)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad LP Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Fqdn = l.token
+	name, nameOk := toAbsoluteName(l.token, o)
+	if l.err || !nameOk {
+		return nil, &ParseError{f, "bad LP Fqdn", l}, ""
+	}
+	rr.Fqdn = name
+
+	return rr, nil, ""
+}
+
+func setL64(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(L64)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad L64 Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+	<-c     // zBlank
+	l = <-c // zString
+	u, err := stringToNodeID(l)
+	if err != nil || l.err {
+		return nil, err, ""
+	}
+	rr.Locator64 = u
+	return rr, nil, ""
+}
+
+func setUID(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(UID)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 32)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad UID Uid", l}, ""
+	}
+	rr.Uid = uint32(i)
+	return rr, nil, ""
+}
+
+func setGID(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(GID)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 32)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad GID Gid", l}, ""
+	}
+	rr.Gid = uint32(i)
+	return rr, nil, ""
+}
+
+func setUINFO(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(UINFO)
+	rr.Hdr = h
+
+	s, e, c1 := endingToTxtSlice(c, "bad UINFO Uinfo", f)
+	if e != nil {
+		return nil, e, c1
+	}
+	if ln := len(s); ln == 0 {
+		return rr, nil, c1
+	}
+	rr.Uinfo = s[0] // silently discard anything after the first character-string
+	return rr, nil, c1
+}
+
+func setPX(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(PX)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, ""
+	}
+
+	i, e := strconv.ParseUint(l.token, 10, 16)
+	if e != nil || l.err {
+		return nil, &ParseError{f, "bad PX Preference", l}, ""
+	}
+	rr.Preference = uint16(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Map822 = l.token
+	map822, map822Ok := toAbsoluteName(l.token, o)
+	if l.err || !map822Ok {
+		return nil, &ParseError{f, "bad PX Map822", l}, ""
+	}
+	rr.Map822 = map822
+
+	<-c     // zBlank
+	l = <-c // zString
+	rr.Mapx400 = l.token
+	mapx400, mapx400Ok := toAbsoluteName(l.token, o)
+	if l.err || !mapx400Ok {
+		return nil, &ParseError{f, "bad PX Mapx400", l}, ""
+	}
+	rr.Mapx400 = mapx400
+
+	return rr, nil, ""
+}
+
+func setCAA(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(CAA)
+	rr.Hdr = h
+
+	l := <-c
+	if l.length == 0 { // dynamic update rr.
+		return rr, nil, l.comment
+	}
+
+	i, err := strconv.ParseUint(l.token, 10, 8)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad CAA Flag", l}, ""
+	}
+	rr.Flag = uint8(i)
+
+	<-c     // zBlank
+	l = <-c // zString
+	if l.value != zString {
+		return nil, &ParseError{f, "bad CAA Tag", l}, ""
+	}
+	rr.Tag = l.token
+
+	<-c // zBlank
+	s, e, c1 := endingToTxtSlice(c, "bad CAA Value", f)
+	if e != nil {
+		return nil, e, ""
+	}
+	if len(s) != 1 {
+		return nil, &ParseError{f, "bad CAA Value", l}, ""
+	}
+	rr.Value = s[0]
+	return rr, nil, c1
+}
+
+func setTKEY(h RR_Header, c chan lex, o, f string) (RR, *ParseError, string) {
+	rr := new(TKEY)
+	rr.Hdr = h
+
+	l := <-c
+
+	// Algorithm
+	if l.value != zString {
+		return nil, &ParseError{f, "bad TKEY algorithm", l}, ""
+	}
+	rr.Algorithm = l.token
+	<-c // zBlank
+
+	// Get the key length and key values
+	l = <-c
+	i, err := strconv.ParseUint(l.token, 10, 8)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad TKEY key length", l}, ""
+	}
+	rr.KeySize = uint16(i)
+	<-c // zBlank
+	l = <-c
+	if l.value != zString {
+		return nil, &ParseError{f, "bad TKEY key", l}, ""
+	}
+	rr.Key = l.token
+	<-c // zBlank
+
+	// Get the otherdata length and string data
+	l = <-c
+	i, err = strconv.ParseUint(l.token, 10, 8)
+	if err != nil || l.err {
+		return nil, &ParseError{f, "bad TKEY otherdata length", l}, ""
+	}
+	rr.OtherLen = uint16(i)
+	<-c // zBlank
+	l = <-c
+	if l.value != zString {
+		return nil, &ParseError{f, "bad TKEY otherday", l}, ""
+	}
+	rr.OtherData = l.token
+
+	return rr, nil, ""
+}
+
+var typeToparserFunc = map[uint16]parserFunc{
+	TypeAAAA:       {setAAAA, false},
+	TypeAFSDB:      {setAFSDB, false},
+	TypeA:          {setA, false},
+	TypeCAA:        {setCAA, true},
+	TypeCDS:        {setCDS, true},
+	TypeCDNSKEY:    {setCDNSKEY, true},
+	TypeCERT:       {setCERT, true},
+	TypeCNAME:      {setCNAME, false},
+	TypeCSYNC:      {setCSYNC, true},
+	TypeDHCID:      {setDHCID, true},
+	TypeDLV:        {setDLV, true},
+	TypeDNAME:      {setDNAME, false},
+	TypeKEY:        {setKEY, true},
+	TypeDNSKEY:     {setDNSKEY, true},
+	TypeDS:         {setDS, true},
+	TypeEID:        {setEID, true},
+	TypeEUI48:      {setEUI48, false},
+	TypeEUI64:      {setEUI64, false},
+	TypeGID:        {setGID, false},
+	TypeGPOS:       {setGPOS, false},
+	TypeHINFO:      {setHINFO, true},
+	TypeHIP:        {setHIP, true},
+	TypeKX:         {setKX, false},
+	TypeL32:        {setL32, false},
+	TypeL64:        {setL64, false},
+	TypeLOC:        {setLOC, true},
+	TypeLP:         {setLP, false},
+	TypeMB:         {setMB, false},
+	TypeMD:         {setMD, false},
+	TypeMF:         {setMF, false},
+	TypeMG:         {setMG, false},
+	TypeMINFO:      {setMINFO, false},
+	TypeMR:         {setMR, false},
+	TypeMX:         {setMX, false},
+	TypeNAPTR:      {setNAPTR, false},
+	TypeNID:        {setNID, false},
+	TypeNIMLOC:     {setNIMLOC, true},
+	TypeNINFO:      {setNINFO, true},
+	TypeNSAPPTR:    {setNSAPPTR, false},
+	TypeNSEC3PARAM: {setNSEC3PARAM, false},
+	TypeNSEC3:      {setNSEC3, true},
+	TypeNSEC:       {setNSEC, true},
+	TypeNS:         {setNS, false},
+	TypeOPENPGPKEY: {setOPENPGPKEY, true},
+	TypePTR:        {setPTR, false},
+	TypePX:         {setPX, false},
+	TypeSIG:        {setSIG, true},
+	TypeRKEY:       {setRKEY, true},
+	TypeRP:         {setRP, false},
+	TypeRRSIG:      {setRRSIG, true},
+	TypeRT:         {setRT, false},
+	TypeSMIMEA:     {setSMIMEA, true},
+	TypeSOA:        {setSOA, false},
+	TypeSPF:        {setSPF, true},
+	TypeAVC:        {setAVC, true},
+	TypeSRV:        {setSRV, false},
+	TypeSSHFP:      {setSSHFP, true},
+	TypeTALINK:     {setTALINK, false},
+	TypeTA:         {setTA, true},
+	TypeTLSA:       {setTLSA, true},
+	TypeTXT:        {setTXT, true},
+	TypeUID:        {setUID, false},
+	TypeUINFO:      {setUINFO, true},
+	TypeURI:        {setURI, true},
+	TypeX25:        {setX25, false},
+	TypeTKEY:       {setTKEY, true},
+}
diff --git a/vendor/github.com/miekg/dns/scanner.go b/vendor/github.com/miekg/dns/scanner.go
new file mode 100644
index 0000000000..424e5af9f5
--- /dev/null
+++ b/vendor/github.com/miekg/dns/scanner.go
@@ -0,0 +1,56 @@
+package dns
+
+// Implement a simple scanner, return a byte stream from an io reader.
+
+import (
+	"bufio"
+	"context"
+	"io"
+	"text/scanner"
+)
+
+type scan struct {
+	src      *bufio.Reader
+	position scanner.Position
+	eof      bool // Have we just seen a eof
+	ctx      context.Context
+}
+
+func scanInit(r io.Reader) (*scan, context.CancelFunc) {
+	s := new(scan)
+	s.src = bufio.NewReader(r)
+	s.position.Line = 1
+
+	ctx, cancel := context.WithCancel(context.Background())
+	s.ctx = ctx
+
+	return s, cancel
+}
+
+// tokenText returns the next byte from the input
+func (s *scan) tokenText() (byte, error) {
+	c, err := s.src.ReadByte()
+	if err != nil {
+		return c, err
+	}
+	select {
+	case <-s.ctx.Done():
+		return c, context.Canceled
+	default:
+		break
+	}
+
+	// delay the newline handling until the next token is delivered,
+	// fixes off-by-one errors when reporting a parse error.
+	if s.eof == true {
+		s.position.Line++
+		s.position.Column = 0
+		s.eof = false
+	}
+	if c == '\n' {
+		s.eof = true
+		return c, nil
+	}
+	s.position.Column++
+	return c, nil
+}
diff --git a/vendor/github.com/miekg/dns/server.go b/vendor/github.com/miekg/dns/server.go
new file mode 100644
index 0000000000..685753f43c
--- /dev/null
+++ b/vendor/github.com/miekg/dns/server.go
@@ -0,0 +1,719 @@
+// DNS server implementation.
+
+package dns
+
+import (
+	"bytes"
+	"crypto/tls"
+	"encoding/binary"
+	"io"
+	"net"
+	"sync"
+	"time"
+)
+
+// Maximum number of TCP queries before we close the socket.
+const maxTCPQueries = 128
+
+// Handler is implemented by any value that implements ServeDNS.
+type Handler interface {
+	ServeDNS(w ResponseWriter, r *Msg)
+}
+
+// A ResponseWriter interface is used by an DNS handler to
+// construct an DNS response.
+type ResponseWriter interface {
+	// LocalAddr returns the net.Addr of the server
+	LocalAddr() net.Addr
+	// RemoteAddr returns the net.Addr of the client that sent the current request.
+	RemoteAddr() net.Addr
+	// WriteMsg writes a reply back to the client.
+	WriteMsg(*Msg) error
+	// Write writes a raw buffer back to the client.
+	Write([]byte) (int, error)
+	// Close closes the connection.
+	Close() error
+	// TsigStatus returns the status of the Tsig.
+	TsigStatus() error
+	// TsigTimersOnly sets the tsig timers only boolean.
+	TsigTimersOnly(bool)
+	// Hijack lets the caller take over the connection.
+	// After a call to Hijack(), the DNS package will not do anything with the connection.
+	Hijack()
+}
+
+type response struct {
+	hijacked       bool // connection has been hijacked by handler
+	tsigStatus     error
+	tsigTimersOnly bool
+	tsigRequestMAC string
+	tsigSecret     map[string]string // the tsig secrets
+	udp            *net.UDPConn      // i/o connection if UDP was used
+	tcp            net.Conn          // i/o connection if TCP was used
+	udpSession     *SessionUDP       // oob data to get egress interface right
+	remoteAddr     net.Addr          // address of the client
+	writer         Writer            // writer to output the raw DNS bits
+}
+
+// ServeMux is an DNS request multiplexer. It matches the
+// zone name of each incoming request against a list of
+// registered patterns add calls the handler for the pattern
+// that most closely matches the zone name. ServeMux is DNSSEC aware, meaning
+// that queries for the DS record are redirected to the parent zone (if that
+// is also registered), otherwise the child gets the query.
+// ServeMux is also safe for concurrent access from multiple goroutines.
+type ServeMux struct {
+	z map[string]Handler
+	m *sync.RWMutex
+}
+
+// NewServeMux allocates and returns a new ServeMux.
+func NewServeMux() *ServeMux { return &ServeMux{z: make(map[string]Handler), m: new(sync.RWMutex)} }
+
+// DefaultServeMux is the default ServeMux used by Serve.
+var DefaultServeMux = NewServeMux()
+
+// The HandlerFunc type is an adapter to allow the use of
+// ordinary functions as DNS handlers.  If f is a function
+// with the appropriate signature, HandlerFunc(f) is a
+// Handler object that calls f.
+type HandlerFunc func(ResponseWriter, *Msg)
+
+// ServeDNS calls f(w, r).
+func (f HandlerFunc) ServeDNS(w ResponseWriter, r *Msg) {
+	f(w, r)
+}
+
+// HandleFailed returns a HandlerFunc that returns SERVFAIL for every request it gets.
+func HandleFailed(w ResponseWriter, r *Msg) {
+	m := new(Msg)
+	m.SetRcode(r, RcodeServerFailure)
+	// does not matter if this write fails
+	w.WriteMsg(m)
+}
+
+func failedHandler() Handler { return HandlerFunc(HandleFailed) }
+
+// ListenAndServe Starts a server on address and network specified Invoke handler
+// for incoming queries.
+func ListenAndServe(addr string, network string, handler Handler) error {
+	server := &Server{Addr: addr, Net: network, Handler: handler}
+	return server.ListenAndServe()
+}
+
+// ListenAndServeTLS acts like http.ListenAndServeTLS, more information in
+// http://golang.org/pkg/net/http/#ListenAndServeTLS
+func ListenAndServeTLS(addr, certFile, keyFile string, handler Handler) error {
+	cert, err := tls.LoadX509KeyPair(certFile, keyFile)
+	if err != nil {
+		return err
+	}
+
+	config := tls.Config{
+		Certificates: []tls.Certificate{cert},
+	}
+
+	server := &Server{
+		Addr:      addr,
+		Net:       "tcp-tls",
+		TLSConfig: &config,
+		Handler:   handler,
+	}
+
+	return server.ListenAndServe()
+}
+
+// ActivateAndServe activates a server with a listener from systemd,
+// l and p should not both be non-nil.
+// If both l and p are not nil only p will be used.
+// Invoke handler for incoming queries.
+func ActivateAndServe(l net.Listener, p net.PacketConn, handler Handler) error {
+	server := &Server{Listener: l, PacketConn: p, Handler: handler}
+	return server.ActivateAndServe()
+}
+
+func (mux *ServeMux) match(q string, t uint16) Handler {
+	mux.m.RLock()
+	defer mux.m.RUnlock()
+	var handler Handler
+	b := make([]byte, len(q)) // worst case, one label of length q
+	off := 0
+	end := false
+	for {
+		l := len(q[off:])
+		for i := 0; i < l; i++ {
+			b[i] = q[off+i]
+			if b[i] >= 'A' && b[i] <= 'Z' {
+				b[i] |= ('a' - 'A')
+			}
+		}
+		if h, ok := mux.z[string(b[:l])]; ok { // causes garbage, might want to change the map key
+			if t != TypeDS {
+				return h
+			}
+			// Continue for DS to see if we have a parent too, if so delegeate to the parent
+			handler = h
+		}
+		off, end = NextLabel(q, off)
+		if end {
+			break
+		}
+	}
+	// Wildcard match, if we have found nothing try the root zone as a last resort.
+	if h, ok := mux.z["."]; ok {
+		return h
+	}
+	return handler
+}
+
+// Handle adds a handler to the ServeMux for pattern.
+func (mux *ServeMux) Handle(pattern string, handler Handler) {
+	if pattern == "" {
+		panic("dns: invalid pattern " + pattern)
+	}
+	mux.m.Lock()
+	mux.z[Fqdn(pattern)] = handler
+	mux.m.Unlock()
+}
+
+// HandleFunc adds a handler function to the ServeMux for pattern.
+func (mux *ServeMux) HandleFunc(pattern string, handler func(ResponseWriter, *Msg)) {
+	mux.Handle(pattern, HandlerFunc(handler))
+}
+
+// HandleRemove deregistrars the handler specific for pattern from the ServeMux.
+func (mux *ServeMux) HandleRemove(pattern string) {
+	if pattern == "" {
+		panic("dns: invalid pattern " + pattern)
+	}
+	mux.m.Lock()
+	delete(mux.z, Fqdn(pattern))
+	mux.m.Unlock()
+}
+
+// ServeDNS dispatches the request to the handler whose
+// pattern most closely matches the request message. If DefaultServeMux
+// is used the correct thing for DS queries is done: a possible parent
+// is sought.
+// If no handler is found a standard SERVFAIL message is returned
+// If the request message does not have exactly one question in the
+// question section a SERVFAIL is returned, unlesss Unsafe is true.
+func (mux *ServeMux) ServeDNS(w ResponseWriter, request *Msg) {
+	var h Handler
+	if len(request.Question) < 1 { // allow more than one question
+		h = failedHandler()
+	} else {
+		if h = mux.match(request.Question[0].Name, request.Question[0].Qtype); h == nil {
+			h = failedHandler()
+		}
+	}
+	h.ServeDNS(w, request)
+}
+
+// Handle registers the handler with the given pattern
+// in the DefaultServeMux. The documentation for
+// ServeMux explains how patterns are matched.
+func Handle(pattern string, handler Handler) { DefaultServeMux.Handle(pattern, handler) }
+
+// HandleRemove deregisters the handle with the given pattern
+// in the DefaultServeMux.
+func HandleRemove(pattern string) { DefaultServeMux.HandleRemove(pattern) }
+
+// HandleFunc registers the handler function with the given pattern
+// in the DefaultServeMux.
+func HandleFunc(pattern string, handler func(ResponseWriter, *Msg)) {
+	DefaultServeMux.HandleFunc(pattern, handler)
+}
+
+// Writer writes raw DNS messages; each call to Write should send an entire message.
+type Writer interface {
+	io.Writer
+}
+
+// Reader reads raw DNS messages; each call to ReadTCP or ReadUDP should return an entire message.
+type Reader interface {
+	// ReadTCP reads a raw message from a TCP connection. Implementations may alter
+	// connection properties, for example the read-deadline.
+	ReadTCP(conn net.Conn, timeout time.Duration) ([]byte, error)
+	// ReadUDP reads a raw message from a UDP connection. Implementations may alter
+	// connection properties, for example the read-deadline.
+	ReadUDP(conn *net.UDPConn, timeout time.Duration) ([]byte, *SessionUDP, error)
+}
+
+// defaultReader is an adapter for the Server struct that implements the Reader interface
+// using the readTCP and readUDP func of the embedded Server.
+type defaultReader struct {
+	*Server
+}
+
+func (dr *defaultReader) ReadTCP(conn net.Conn, timeout time.Duration) ([]byte, error) {
+	return dr.readTCP(conn, timeout)
+}
+
+func (dr *defaultReader) ReadUDP(conn *net.UDPConn, timeout time.Duration) ([]byte, *SessionUDP, error) {
+	return dr.readUDP(conn, timeout)
+}
+
+// DecorateReader is a decorator hook for extending or supplanting the functionality of a Reader.
+// Implementations should never return a nil Reader.
+type DecorateReader func(Reader) Reader
+
+// DecorateWriter is a decorator hook for extending or supplanting the functionality of a Writer.
+// Implementations should never return a nil Writer.
+type DecorateWriter func(Writer) Writer
+
+// A Server defines parameters for running an DNS server.
+type Server struct {
+	// Address to listen on, ":dns" if empty.
+	Addr string
+	// if "tcp" or "tcp-tls" (DNS over TLS) it will invoke a TCP listener, otherwise an UDP one
+	Net string
+	// TCP Listener to use, this is to aid in systemd's socket activation.
+	Listener net.Listener
+	// TLS connection configuration
+	TLSConfig *tls.Config
+	// UDP "Listener" to use, this is to aid in systemd's socket activation.
+	PacketConn net.PacketConn
+	// Handler to invoke, dns.DefaultServeMux if nil.
+	Handler Handler
+	// Default buffer size to use to read incoming UDP messages. If not set
+	// it defaults to MinMsgSize (512 B).
+	UDPSize int
+	// The net.Conn.SetReadTimeout value for new connections, defaults to 2 * time.Second.
+	ReadTimeout time.Duration
+	// The net.Conn.SetWriteTimeout value for new connections, defaults to 2 * time.Second.
+	WriteTimeout time.Duration
+	// TCP idle timeout for multiple queries, if nil, defaults to 8 * time.Second (RFC 5966).
+	IdleTimeout func() time.Duration
+	// Secret(s) for Tsig map[<zonename>]<base64 secret>. The zonename must be in canonical form (lowercase, fqdn, see RFC 4034 Section 6.2).
+	TsigSecret map[string]string
+	// Unsafe instructs the server to disregard any sanity checks and directly hand the message to
+	// the handler. It will specifically not check if the query has the QR bit not set.
+	Unsafe bool
+	// If NotifyStartedFunc is set it is called once the server has started listening.
+	NotifyStartedFunc func()
+	// DecorateReader is optional, allows customization of the process that reads raw DNS messages.
+	DecorateReader DecorateReader
+	// DecorateWriter is optional, allows customization of the process that writes raw DNS messages.
+	DecorateWriter DecorateWriter
+
+	// Shutdown handling
+	lock    sync.RWMutex
+	started bool
+}
+
+// ListenAndServe starts a nameserver on the configured address in *Server.
+func (srv *Server) ListenAndServe() error {
+	srv.lock.Lock()
+	defer srv.lock.Unlock()
+	if srv.started {
+		return &Error{err: "server already started"}
+	}
+	addr := srv.Addr
+	if addr == "" {
+		addr = ":domain"
+	}
+	if srv.UDPSize == 0 {
+		srv.UDPSize = MinMsgSize
+	}
+	switch srv.Net {
+	case "tcp", "tcp4", "tcp6":
+		a, err := net.ResolveTCPAddr(srv.Net, addr)
+		if err != nil {
+			return err
+		}
+		l, err := net.ListenTCP(srv.Net, a)
+		if err != nil {
+			return err
+		}
+		srv.Listener = l
+		srv.started = true
+		srv.lock.Unlock()
+		err = srv.serveTCP(l)
+		srv.lock.Lock() // to satisfy the defer at the top
+		return err
+	case "tcp-tls", "tcp4-tls", "tcp6-tls":
+		network := "tcp"
+		if srv.Net == "tcp4-tls" {
+			network = "tcp4"
+		} else if srv.Net == "tcp6-tls" {
+			network = "tcp6"
+		}
+
+		l, err := tls.Listen(network, addr, srv.TLSConfig)
+		if err != nil {
+			return err
+		}
+		srv.Listener = l
+		srv.started = true
+		srv.lock.Unlock()
+		err = srv.serveTCP(l)
+		srv.lock.Lock() // to satisfy the defer at the top
+		return err
+	case "udp", "udp4", "udp6":
+		a, err := net.ResolveUDPAddr(srv.Net, addr)
+		if err != nil {
+			return err
+		}
+		l, err := net.ListenUDP(srv.Net, a)
+		if err != nil {
+			return err
+		}
+		if e := setUDPSocketOptions(l); e != nil {
+			return e
+		}
+		srv.PacketConn = l
+		srv.started = true
+		srv.lock.Unlock()
+		err = srv.serveUDP(l)
+		srv.lock.Lock() // to satisfy the defer at the top
+		return err
+	}
+	return &Error{err: "bad network"}
+}
+
+// ActivateAndServe starts a nameserver with the PacketConn or Listener
+// configured in *Server. Its main use is to start a server from systemd.
+func (srv *Server) ActivateAndServe() error {
+	srv.lock.Lock()
+	defer srv.lock.Unlock()
+	if srv.started {
+		return &Error{err: "server already started"}
+	}
+	pConn := srv.PacketConn
+	l := srv.Listener
+	if pConn != nil {
+		if srv.UDPSize == 0 {
+			srv.UDPSize = MinMsgSize
+		}
+		// Check PacketConn interface's type is valid and value
+		// is not nil
+		if t, ok := pConn.(*net.UDPConn); ok && t != nil {
+			if e := setUDPSocketOptions(t); e != nil {
+				return e
+			}
+			srv.started = true
+			srv.lock.Unlock()
+			e := srv.serveUDP(t)
+			srv.lock.Lock() // to satisfy the defer at the top
+			return e
+		}
+	}
+	if l != nil {
+		srv.started = true
+		srv.lock.Unlock()
+		e := srv.serveTCP(l)
+		srv.lock.Lock() // to satisfy the defer at the top
+		return e
+	}
+	return &Error{err: "bad listeners"}
+}
+
+// Shutdown shuts down a server. After a call to Shutdown, ListenAndServe and
+// ActivateAndServe will return.
+func (srv *Server) Shutdown() error {
+	srv.lock.Lock()
+	if !srv.started {
+		srv.lock.Unlock()
+		return &Error{err: "server not started"}
+	}
+	srv.started = false
+	srv.lock.Unlock()
+
+	if srv.PacketConn != nil {
+		srv.PacketConn.Close()
+	}
+	if srv.Listener != nil {
+		srv.Listener.Close()
+	}
+	return nil
+}
+
+// getReadTimeout is a helper func to use system timeout if server did not intend to change it.
+func (srv *Server) getReadTimeout() time.Duration {
+	rtimeout := dnsTimeout
+	if srv.ReadTimeout != 0 {
+		rtimeout = srv.ReadTimeout
+	}
+	return rtimeout
+}
+
+// serveTCP starts a TCP listener for the server.
+// Each request is handled in a separate goroutine.
+func (srv *Server) serveTCP(l net.Listener) error {
+	defer l.Close()
+
+	if srv.NotifyStartedFunc != nil {
+		srv.NotifyStartedFunc()
+	}
+
+	reader := Reader(&defaultReader{srv})
+	if srv.DecorateReader != nil {
+		reader = srv.DecorateReader(reader)
+	}
+
+	handler := srv.Handler
+	if handler == nil {
+		handler = DefaultServeMux
+	}
+	rtimeout := srv.getReadTimeout()
+	// deadline is not used here
+	for {
+		rw, err := l.Accept()
+		srv.lock.RLock()
+		if !srv.started {
+			srv.lock.RUnlock()
+			return nil
+		}
+		srv.lock.RUnlock()
+		if err != nil {
+			if neterr, ok := err.(net.Error); ok && neterr.Temporary() {
+				continue
+			}
+			return err
+		}
+		go func() {
+			m, err := reader.ReadTCP(rw, rtimeout)
+			if err != nil {
+				rw.Close()
+				return
+			}
+			srv.serve(rw.RemoteAddr(), handler, m, nil, nil, rw)
+		}()
+	}
+}
+
+// serveUDP starts a UDP listener for the server.
+// Each request is handled in a separate goroutine.
+func (srv *Server) serveUDP(l *net.UDPConn) error {
+	defer l.Close()
+
+	if srv.NotifyStartedFunc != nil {
+		srv.NotifyStartedFunc()
+	}
+
+	reader := Reader(&defaultReader{srv})
+	if srv.DecorateReader != nil {
+		reader = srv.DecorateReader(reader)
+	}
+
+	handler := srv.Handler
+	if handler == nil {
+		handler = DefaultServeMux
+	}
+	rtimeout := srv.getReadTimeout()
+	// deadline is not used here
+	for {
+		m, s, err := reader.ReadUDP(l, rtimeout)
+		srv.lock.RLock()
+		if !srv.started {
+			srv.lock.RUnlock()
+			return nil
+		}
+		srv.lock.RUnlock()
+		if err != nil {
+			if netErr, ok := err.(net.Error); ok && netErr.Temporary() {
+				continue
+			}
+			return err
+		}
+		if len(m) < headerSize {
+			continue
+		}
+		go srv.serve(s.RemoteAddr(), handler, m, l, s, nil)
+	}
+}
+
+// Serve a new connection.
+func (srv *Server) serve(a net.Addr, h Handler, m []byte, u *net.UDPConn, s *SessionUDP, t net.Conn) {
+	w := &response{tsigSecret: srv.TsigSecret, udp: u, tcp: t, remoteAddr: a, udpSession: s}
+	if srv.DecorateWriter != nil {
+		w.writer = srv.DecorateWriter(w)
+	} else {
+		w.writer = w
+	}
+
+	q := 0 // counter for the amount of TCP queries we get
+
+	reader := Reader(&defaultReader{srv})
+	if srv.DecorateReader != nil {
+		reader = srv.DecorateReader(reader)
+	}
+Redo:
+	req := new(Msg)
+	err := req.Unpack(m)
+	if err != nil { // Send a FormatError back
+		x := new(Msg)
+		x.SetRcodeFormatError(req)
+		w.WriteMsg(x)
+		goto Exit
+	}
+	if !srv.Unsafe && req.Response {
+		goto Exit
+	}
+
+	w.tsigStatus = nil
+	if w.tsigSecret != nil {
+		if t := req.IsTsig(); t != nil {
+			secret := t.Hdr.Name
+			if _, ok := w.tsigSecret[secret]; !ok {
+				w.tsigStatus = ErrKeyAlg
+			}
+			w.tsigStatus = TsigVerify(m, w.tsigSecret[secret], "", false)
+			w.tsigTimersOnly = false
+			w.tsigRequestMAC = req.Extra[len(req.Extra)-1].(*TSIG).MAC
+		}
+	}
+	h.ServeDNS(w, req) // Writes back to the client
+
+Exit:
+	if w.tcp == nil {
+		return
+	}
+	// TODO(miek): make this number configurable?
+	if q > maxTCPQueries { // close socket after this many queries
+		w.Close()
+		return
+	}
+
+	if w.hijacked {
+		return // client calls Close()
+	}
+	if u != nil { // UDP, "close" and return
+		w.Close()
+		return
+	}
+	idleTimeout := tcpIdleTimeout
+	if srv.IdleTimeout != nil {
+		idleTimeout = srv.IdleTimeout()
+	}
+	m, err = reader.ReadTCP(w.tcp, idleTimeout)
+	if err == nil {
+		q++
+		goto Redo
+	}
+	w.Close()
+	return
+}
+
+func (srv *Server) readTCP(conn net.Conn, timeout time.Duration) ([]byte, error) {
+	conn.SetReadDeadline(time.Now().Add(timeout))
+	l := make([]byte, 2)
+	n, err := conn.Read(l)
+	if err != nil || n != 2 {
+		if err != nil {
+			return nil, err
+		}
+		return nil, ErrShortRead
+	}
+	length := binary.BigEndian.Uint16(l)
+	if length == 0 {
+		return nil, ErrShortRead
+	}
+	m := make([]byte, int(length))
+	n, err = conn.Read(m[:int(length)])
+	if err != nil || n == 0 {
+		if err != nil {
+			return nil, err
+		}
+		return nil, ErrShortRead
+	}
+	i := n
+	for i < int(length) {
+		j, err := conn.Read(m[i:int(length)])
+		if err != nil {
+			return nil, err
+		}
+		i += j
+	}
+	n = i
+	m = m[:n]
+	return m, nil
+}
+
+func (srv *Server) readUDP(conn *net.UDPConn, timeout time.Duration) ([]byte, *SessionUDP, error) {
+	conn.SetReadDeadline(time.Now().Add(timeout))
+	m := make([]byte, srv.UDPSize)
+	n, s, err := ReadFromSessionUDP(conn, m)
+	if err != nil {
+		return nil, nil, err
+	}
+	m = m[:n]
+	return m, s, nil
+}
+
+// WriteMsg implements the ResponseWriter.WriteMsg method.
+func (w *response) WriteMsg(m *Msg) (err error) {
+	var data []byte
+	if w.tsigSecret != nil { // if no secrets, dont check for the tsig (which is a longer check)
+		if t := m.IsTsig(); t != nil {
+			data, w.tsigRequestMAC, err = TsigGenerate(m, w.tsigSecret[t.Hdr.Name], w.tsigRequestMAC, w.tsigTimersOnly)
+			if err != nil {
+				return err
+			}
+			_, err = w.writer.Write(data)
+			return err
+		}
+	}
+	data, err = m.Pack()
+	if err != nil {
+		return err
+	}
+	_, err = w.writer.Write(data)
+	return err
+}
+
+// Write implements the ResponseWriter.Write method.
+func (w *response) Write(m []byte) (int, error) {
+	switch {
+	case w.udp != nil:
+		n, err := WriteToSessionUDP(w.udp, m, w.udpSession)
+		return n, err
+	case w.tcp != nil:
+		lm := len(m)
+		if lm < 2 {
+			return 0, io.ErrShortBuffer
+		}
+		if lm > MaxMsgSize {
+			return 0, &Error{err: "message too large"}
+		}
+		l := make([]byte, 2, 2+lm)
+		binary.BigEndian.PutUint16(l, uint16(lm))
+		m = append(l, m...)
+
+		n, err := io.Copy(w.tcp, bytes.NewReader(m))
+		return int(n), err
+	}
+	panic("not reached")
+}
+
+// LocalAddr implements the ResponseWriter.LocalAddr method.
+func (w *response) LocalAddr() net.Addr {
+	if w.tcp != nil {
+		return w.tcp.LocalAddr()
+	}
+	return w.udp.LocalAddr()
+}
+
+// RemoteAddr implements the ResponseWriter.RemoteAddr method.
+func (w *response) RemoteAddr() net.Addr { return w.remoteAddr }
+
+// TsigStatus implements the ResponseWriter.TsigStatus method.
+func (w *response) TsigStatus() error { return w.tsigStatus }
+
+// TsigTimersOnly implements the ResponseWriter.TsigTimersOnly method.
+func (w *response) TsigTimersOnly(b bool) { w.tsigTimersOnly = b }
+
+// Hijack implements the ResponseWriter.Hijack method.
+func (w *response) Hijack() { w.hijacked = true }
+
+// Close implements the ResponseWriter.Close method
+func (w *response) Close() error {
+	// Can't close the udp conn, as that is actually the listener.
+	if w.tcp != nil {
+		e := w.tcp.Close()
+		w.tcp = nil
+		return e
+	}
+	return nil
+}
diff --git a/vendor/github.com/miekg/dns/sig0.go b/vendor/github.com/miekg/dns/sig0.go
new file mode 100644
index 0000000000..f31e9e6843
--- /dev/null
+++ b/vendor/github.com/miekg/dns/sig0.go
@@ -0,0 +1,218 @@
+package dns
+
+import (
+	"crypto"
+	"crypto/dsa"
+	"crypto/ecdsa"
+	"crypto/rsa"
+	"encoding/binary"
+	"math/big"
+	"strings"
+	"time"
+)
+
+// Sign signs a dns.Msg. It fills the signature with the appropriate data.
+// The SIG record should have the SignerName, KeyTag, Algorithm, Inception
+// and Expiration set.
+func (rr *SIG) Sign(k crypto.Signer, m *Msg) ([]byte, error) {
+	if k == nil {
+		return nil, ErrPrivKey
+	}
+	if rr.KeyTag == 0 || len(rr.SignerName) == 0 || rr.Algorithm == 0 {
+		return nil, ErrKey
+	}
+	rr.Header().Rrtype = TypeSIG
+	rr.Header().Class = ClassANY
+	rr.Header().Ttl = 0
+	rr.Header().Name = "."
+	rr.OrigTtl = 0
+	rr.TypeCovered = 0
+	rr.Labels = 0
+
+	buf := make([]byte, m.Len()+rr.len())
+	mbuf, err := m.PackBuffer(buf)
+	if err != nil {
+		return nil, err
+	}
+	if &buf[0] != &mbuf[0] {
+		return nil, ErrBuf
+	}
+	off, err := PackRR(rr, buf, len(mbuf), nil, false)
+	if err != nil {
+		return nil, err
+	}
+	buf = buf[:off:cap(buf)]
+
+	hash, ok := AlgorithmToHash[rr.Algorithm]
+	if !ok {
+		return nil, ErrAlg
+	}
+
+	hasher := hash.New()
+	// Write SIG rdata
+	hasher.Write(buf[len(mbuf)+1+2+2+4+2:])
+	// Write message
+	hasher.Write(buf[:len(mbuf)])
+
+	signature, err := sign(k, hasher.Sum(nil), hash, rr.Algorithm)
+	if err != nil {
+		return nil, err
+	}
+
+	rr.Signature = toBase64(signature)
+
+	buf = append(buf, signature...)
+	if len(buf) > int(^uint16(0)) {
+		return nil, ErrBuf
+	}
+	// Adjust sig data length
+	rdoff := len(mbuf) + 1 + 2 + 2 + 4
+	rdlen := binary.BigEndian.Uint16(buf[rdoff:])
+	rdlen += uint16(len(signature))
+	binary.BigEndian.PutUint16(buf[rdoff:], rdlen)
+	// Adjust additional count
+	adc := binary.BigEndian.Uint16(buf[10:])
+	adc++
+	binary.BigEndian.PutUint16(buf[10:], adc)
+	return buf, nil
+}
+
+// Verify validates the message buf using the key k.
+// It's assumed that buf is a valid message from which rr was unpacked.
+func (rr *SIG) Verify(k *KEY, buf []byte) error {
+	if k == nil {
+		return ErrKey
+	}
+	if rr.KeyTag == 0 || len(rr.SignerName) == 0 || rr.Algorithm == 0 {
+		return ErrKey
+	}
+
+	var hash crypto.Hash
+	switch rr.Algorithm {
+	case DSA, RSASHA1:
+		hash = crypto.SHA1
+	case RSASHA256, ECDSAP256SHA256:
+		hash = crypto.SHA256
+	case ECDSAP384SHA384:
+		hash = crypto.SHA384
+	case RSASHA512:
+		hash = crypto.SHA512
+	default:
+		return ErrAlg
+	}
+	hasher := hash.New()
+
+	buflen := len(buf)
+	qdc := binary.BigEndian.Uint16(buf[4:])
+	anc := binary.BigEndian.Uint16(buf[6:])
+	auc := binary.BigEndian.Uint16(buf[8:])
+	adc := binary.BigEndian.Uint16(buf[10:])
+	offset := 12
+	var err error
+	for i := uint16(0); i < qdc && offset < buflen; i++ {
+		_, offset, err = UnpackDomainName(buf, offset)
+		if err != nil {
+			return err
+		}
+		// Skip past Type and Class
+		offset += 2 + 2
+	}
+	for i := uint16(1); i < anc+auc+adc && offset < buflen; i++ {
+		_, offset, err = UnpackDomainName(buf, offset)
+		if err != nil {
+			return err
+		}
+		// Skip past Type, Class and TTL
+		offset += 2 + 2 + 4
+		if offset+1 >= buflen {
+			continue
+		}
+		var rdlen uint16
+		rdlen = binary.BigEndian.Uint16(buf[offset:])
+		offset += 2
+		offset += int(rdlen)
+	}
+	if offset >= buflen {
+		return &Error{err: "overflowing unpacking signed message"}
+	}
+
+	// offset should be just prior to SIG
+	bodyend := offset
+	// owner name SHOULD be root
+	_, offset, err = UnpackDomainName(buf, offset)
+	if err != nil {
+		return err
+	}
+	// Skip Type, Class, TTL, RDLen
+	offset += 2 + 2 + 4 + 2
+	sigstart := offset
+	// Skip Type Covered, Algorithm, Labels, Original TTL
+	offset += 2 + 1 + 1 + 4
+	if offset+4+4 >= buflen {
+		return &Error{err: "overflow unpacking signed message"}
+	}
+	expire := binary.BigEndian.Uint32(buf[offset:])
+	offset += 4
+	incept := binary.BigEndian.Uint32(buf[offset:])
+	offset += 4
+	now := uint32(time.Now().Unix())
+	if now < incept || now > expire {
+		return ErrTime
+	}
+	// Skip key tag
+	offset += 2
+	var signername string
+	signername, offset, err = UnpackDomainName(buf, offset)
+	if err != nil {
+		return err
+	}
+	// If key has come from the DNS name compression might
+	// have mangled the case of the name
+	if strings.ToLower(signername) != strings.ToLower(k.Header().Name) {
+		return &Error{err: "signer name doesn't match key name"}
+	}
+	sigend := offset
+	hasher.Write(buf[sigstart:sigend])
+	hasher.Write(buf[:10])
+	hasher.Write([]byte{
+		byte((adc - 1) << 8),
+		byte(adc - 1),
+	})
+	hasher.Write(buf[12:bodyend])
+
+	hashed := hasher.Sum(nil)
+	sig := buf[sigend:]
+	switch k.Algorithm {
+	case DSA:
+		pk := k.publicKeyDSA()
+		sig = sig[1:]
+		r := big.NewInt(0)
+		r.SetBytes(sig[:len(sig)/2])
+		s := big.NewInt(0)
+		s.SetBytes(sig[len(sig)/2:])
+		if pk != nil {
+			if dsa.Verify(pk, hashed, r, s) {
+				return nil
+			}
+			return ErrSig
+		}
+	case RSASHA1, RSASHA256, RSASHA512:
+		pk := k.publicKeyRSA()
+		if pk != nil {
+			return rsa.VerifyPKCS1v15(pk, hash, hashed, sig)
+		}
+	case ECDSAP256SHA256, ECDSAP384SHA384:
+		pk := k.publicKeyECDSA()
+		r := big.NewInt(0)
+		r.SetBytes(sig[:len(sig)/2])
+		s := big.NewInt(0)
+		s.SetBytes(sig[len(sig)/2:])
+		if pk != nil {
+			if ecdsa.Verify(pk, hashed, r, s) {
+				return nil
+			}
+			return ErrSig
+		}
+	}
+	return ErrKeyAlg
+}
diff --git a/vendor/github.com/miekg/dns/singleinflight.go b/vendor/github.com/miekg/dns/singleinflight.go
new file mode 100644
index 0000000000..9573c7d0b8
--- /dev/null
+++ b/vendor/github.com/miekg/dns/singleinflight.go
@@ -0,0 +1,57 @@
+// Copyright 2013 The Go Authors.  All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Adapted for dns package usage by Miek Gieben.
+
+package dns
+
+import "sync"
+import "time"
+
+// call is an in-flight or completed singleflight.Do call
+type call struct {
+	wg   sync.WaitGroup
+	val  *Msg
+	rtt  time.Duration
+	err  error
+	dups int
+}
+
+// singleflight represents a class of work and forms a namespace in
+// which units of work can be executed with duplicate suppression.
+type singleflight struct {
+	sync.Mutex                  // protects m
+	m          map[string]*call // lazily initialized
+}
+
+// Do executes and returns the results of the given function, making
+// sure that only one execution is in-flight for a given key at a
+// time. If a duplicate comes in, the duplicate caller waits for the
+// original to complete and receives the same results.
+// The return value shared indicates whether v was given to multiple callers.
+func (g *singleflight) Do(key string, fn func() (*Msg, time.Duration, error)) (v *Msg, rtt time.Duration, err error, shared bool) {
+	g.Lock()
+	if g.m == nil {
+		g.m = make(map[string]*call)
+	}
+	if c, ok := g.m[key]; ok {
+		c.dups++
+		g.Unlock()
+		c.wg.Wait()
+		return c.val, c.rtt, c.err, true
+	}
+	c := new(call)
+	c.wg.Add(1)
+	g.m[key] = c
+	g.Unlock()
+
+	c.val, c.rtt, c.err = fn()
+	c.wg.Done()
+
+	g.Lock()
+	delete(g.m, key)
+	g.Unlock()
+
+	return c.val, c.rtt, c.err, c.dups > 0
+}
diff --git a/vendor/github.com/miekg/dns/smimea.go b/vendor/github.com/miekg/dns/smimea.go
new file mode 100644
index 0000000000..4e7ded4b38
--- /dev/null
+++ b/vendor/github.com/miekg/dns/smimea.go
@@ -0,0 +1,47 @@
+package dns
+
+import (
+	"crypto/sha256"
+	"crypto/x509"
+	"encoding/hex"
+)
+
+// Sign creates a SMIMEA record from an SSL certificate.
+func (r *SMIMEA) Sign(usage, selector, matchingType int, cert *x509.Certificate) (err error) {
+	r.Hdr.Rrtype = TypeSMIMEA
+	r.Usage = uint8(usage)
+	r.Selector = uint8(selector)
+	r.MatchingType = uint8(matchingType)
+
+	r.Certificate, err = CertificateToDANE(r.Selector, r.MatchingType, cert)
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+// Verify verifies a SMIMEA record against an SSL certificate. If it is OK
+// a nil error is returned.
+func (r *SMIMEA) Verify(cert *x509.Certificate) error {
+	c, err := CertificateToDANE(r.Selector, r.MatchingType, cert)
+	if err != nil {
+		return err // Not also ErrSig?
+	}
+	if r.Certificate == c {
+		return nil
+	}
+	return ErrSig // ErrSig, really?
+}
+
+// SMIMEAName returns the ownername of a SMIMEA resource record as per the
+// format specified in RFC 'draft-ietf-dane-smime-12' Section 2 and 3
+func SMIMEAName(email, domain string) (string, error) {
+	hasher := sha256.New()
+	hasher.Write([]byte(email))
+
+	// RFC Section 3: "The local-part is hashed using the SHA2-256
+	// algorithm with the hash truncated to 28 octets and
+	// represented in its hexadecimal representation to become the
+	// left-most label in the prepared domain name"
+	return hex.EncodeToString(hasher.Sum(nil)[:28]) + "." + "_smimecert." + domain, nil
+}
diff --git a/vendor/github.com/miekg/dns/tlsa.go b/vendor/github.com/miekg/dns/tlsa.go
new file mode 100644
index 0000000000..431e2fb5af
--- /dev/null
+++ b/vendor/github.com/miekg/dns/tlsa.go
@@ -0,0 +1,47 @@
+package dns
+
+import (
+	"crypto/x509"
+	"net"
+	"strconv"
+)
+
+// Sign creates a TLSA record from an SSL certificate.
+func (r *TLSA) Sign(usage, selector, matchingType int, cert *x509.Certificate) (err error) {
+	r.Hdr.Rrtype = TypeTLSA
+	r.Usage = uint8(usage)
+	r.Selector = uint8(selector)
+	r.MatchingType = uint8(matchingType)
+
+	r.Certificate, err = CertificateToDANE(r.Selector, r.MatchingType, cert)
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+// Verify verifies a TLSA record against an SSL certificate. If it is OK
+// a nil error is returned.
+func (r *TLSA) Verify(cert *x509.Certificate) error {
+	c, err := CertificateToDANE(r.Selector, r.MatchingType, cert)
+	if err != nil {
+		return err // Not also ErrSig?
+	}
+	if r.Certificate == c {
+		return nil
+	}
+	return ErrSig // ErrSig, really?
+}
+
+// TLSAName returns the ownername of a TLSA resource record as per the
+// rules specified in RFC 6698, Section 3.
+func TLSAName(name, service, network string) (string, error) {
+	if !IsFqdn(name) {
+		return "", ErrFqdn
+	}
+	p, err := net.LookupPort(network, service)
+	if err != nil {
+		return "", err
+	}
+	return "_" + strconv.Itoa(p) + "._" + network + "." + name, nil
+}
diff --git a/vendor/github.com/miekg/dns/tsig.go b/vendor/github.com/miekg/dns/tsig.go
new file mode 100644
index 0000000000..4837b4ab1f
--- /dev/null
+++ b/vendor/github.com/miekg/dns/tsig.go
@@ -0,0 +1,386 @@
+package dns
+
+import (
+	"crypto/hmac"
+	"crypto/md5"
+	"crypto/sha1"
+	"crypto/sha256"
+	"crypto/sha512"
+	"encoding/binary"
+	"encoding/hex"
+	"hash"
+	"strconv"
+	"strings"
+	"time"
+)
+
+// HMAC hashing codes. These are transmitted as domain names.
+const (
+	HmacMD5    = "hmac-md5.sig-alg.reg.int."
+	HmacSHA1   = "hmac-sha1."
+	HmacSHA256 = "hmac-sha256."
+	HmacSHA512 = "hmac-sha512."
+)
+
+// TSIG is the RR the holds the transaction signature of a message.
+// See RFC 2845 and RFC 4635.
+type TSIG struct {
+	Hdr        RR_Header
+	Algorithm  string `dns:"domain-name"`
+	TimeSigned uint64 `dns:"uint48"`
+	Fudge      uint16
+	MACSize    uint16
+	MAC        string `dns:"size-hex:MACSize"`
+	OrigId     uint16
+	Error      uint16
+	OtherLen   uint16
+	OtherData  string `dns:"size-hex:OtherLen"`
+}
+
+// TSIG has no official presentation format, but this will suffice.
+
+func (rr *TSIG) String() string {
+	s := "\n;; TSIG PSEUDOSECTION:\n"
+	s += rr.Hdr.String() +
+		" " + rr.Algorithm +
+		" " + tsigTimeToString(rr.TimeSigned) +
+		" " + strconv.Itoa(int(rr.Fudge)) +
+		" " + strconv.Itoa(int(rr.MACSize)) +
+		" " + strings.ToUpper(rr.MAC) +
+		" " + strconv.Itoa(int(rr.OrigId)) +
+		" " + strconv.Itoa(int(rr.Error)) + // BIND prints NOERROR
+		" " + strconv.Itoa(int(rr.OtherLen)) +
+		" " + rr.OtherData
+	return s
+}
+
+// The following values must be put in wireformat, so that the MAC can be calculated.
+// RFC 2845, section 3.4.2. TSIG Variables.
+type tsigWireFmt struct {
+	// From RR_Header
+	Name  string `dns:"domain-name"`
+	Class uint16
+	Ttl   uint32
+	// Rdata of the TSIG
+	Algorithm  string `dns:"domain-name"`
+	TimeSigned uint64 `dns:"uint48"`
+	Fudge      uint16
+	// MACSize, MAC and OrigId excluded
+	Error     uint16
+	OtherLen  uint16
+	OtherData string `dns:"size-hex:OtherLen"`
+}
+
+// If we have the MAC use this type to convert it to wiredata. Section 3.4.3. Request MAC
+type macWireFmt struct {
+	MACSize uint16
+	MAC     string `dns:"size-hex:MACSize"`
+}
+
+// 3.3. Time values used in TSIG calculations
+type timerWireFmt struct {
+	TimeSigned uint64 `dns:"uint48"`
+	Fudge      uint16
+}
+
+// TsigGenerate fills out the TSIG record attached to the message.
+// The message should contain
+// a "stub" TSIG RR with the algorithm, key name (owner name of the RR),
+// time fudge (defaults to 300 seconds) and the current time
+// The TSIG MAC is saved in that Tsig RR.
+// When TsigGenerate is called for the first time requestMAC is set to the empty string and
+// timersOnly is false.
+// If something goes wrong an error is returned, otherwise it is nil.
+func TsigGenerate(m *Msg, secret, requestMAC string, timersOnly bool) ([]byte, string, error) {
+	if m.IsTsig() == nil {
+		panic("dns: TSIG not last RR in additional")
+	}
+	// If we barf here, the caller is to blame
+	rawsecret, err := fromBase64([]byte(secret))
+	if err != nil {
+		return nil, "", err
+	}
+
+	rr := m.Extra[len(m.Extra)-1].(*TSIG)
+	m.Extra = m.Extra[0 : len(m.Extra)-1] // kill the TSIG from the msg
+	mbuf, err := m.Pack()
+	if err != nil {
+		return nil, "", err
+	}
+	buf := tsigBuffer(mbuf, rr, requestMAC, timersOnly)
+
+	t := new(TSIG)
+	var h hash.Hash
+	switch strings.ToLower(rr.Algorithm) {
+	case HmacMD5:
+		h = hmac.New(md5.New, []byte(rawsecret))
+	case HmacSHA1:
+		h = hmac.New(sha1.New, []byte(rawsecret))
+	case HmacSHA256:
+		h = hmac.New(sha256.New, []byte(rawsecret))
+	case HmacSHA512:
+		h = hmac.New(sha512.New, []byte(rawsecret))
+	default:
+		return nil, "", ErrKeyAlg
+	}
+	h.Write(buf)
+	t.MAC = hex.EncodeToString(h.Sum(nil))
+	t.MACSize = uint16(len(t.MAC) / 2) // Size is half!
+
+	t.Hdr = RR_Header{Name: rr.Hdr.Name, Rrtype: TypeTSIG, Class: ClassANY, Ttl: 0}
+	t.Fudge = rr.Fudge
+	t.TimeSigned = rr.TimeSigned
+	t.Algorithm = rr.Algorithm
+	t.OrigId = m.Id
+
+	tbuf := make([]byte, t.len())
+	if off, err := PackRR(t, tbuf, 0, nil, false); err == nil {
+		tbuf = tbuf[:off] // reset to actual size used
+	} else {
+		return nil, "", err
+	}
+	mbuf = append(mbuf, tbuf...)
+	// Update the ArCount directly in the buffer.
+	binary.BigEndian.PutUint16(mbuf[10:], uint16(len(m.Extra)+1))
+
+	return mbuf, t.MAC, nil
+}
+
+// TsigVerify verifies the TSIG on a message.
+// If the signature does not validate err contains the
+// error, otherwise it is nil.
+func TsigVerify(msg []byte, secret, requestMAC string, timersOnly bool) error {
+	rawsecret, err := fromBase64([]byte(secret))
+	if err != nil {
+		return err
+	}
+	// Strip the TSIG from the incoming msg
+	stripped, tsig, err := stripTsig(msg)
+	if err != nil {
+		return err
+	}
+
+	msgMAC, err := hex.DecodeString(tsig.MAC)
+	if err != nil {
+		return err
+	}
+
+	buf := tsigBuffer(stripped, tsig, requestMAC, timersOnly)
+
+	// Fudge factor works both ways. A message can arrive before it was signed because
+	// of clock skew.
+	now := uint64(time.Now().Unix())
+	ti := now - tsig.TimeSigned
+	if now < tsig.TimeSigned {
+		ti = tsig.TimeSigned - now
+	}
+	if uint64(tsig.Fudge) < ti {
+		return ErrTime
+	}
+
+	var h hash.Hash
+	switch strings.ToLower(tsig.Algorithm) {
+	case HmacMD5:
+		h = hmac.New(md5.New, rawsecret)
+	case HmacSHA1:
+		h = hmac.New(sha1.New, rawsecret)
+	case HmacSHA256:
+		h = hmac.New(sha256.New, rawsecret)
+	case HmacSHA512:
+		h = hmac.New(sha512.New, rawsecret)
+	default:
+		return ErrKeyAlg
+	}
+	h.Write(buf)
+	if !hmac.Equal(h.Sum(nil), msgMAC) {
+		return ErrSig
+	}
+	return nil
+}
+
+// Create a wiredata buffer for the MAC calculation.
+func tsigBuffer(msgbuf []byte, rr *TSIG, requestMAC string, timersOnly bool) []byte {
+	var buf []byte
+	if rr.TimeSigned == 0 {
+		rr.TimeSigned = uint64(time.Now().Unix())
+	}
+	if rr.Fudge == 0 {
+		rr.Fudge = 300 // Standard (RFC) default.
+	}
+
+	// Replace message ID in header with original ID from TSIG
+	binary.BigEndian.PutUint16(msgbuf[0:2], rr.OrigId)
+
+	if requestMAC != "" {
+		m := new(macWireFmt)
+		m.MACSize = uint16(len(requestMAC) / 2)
+		m.MAC = requestMAC
+		buf = make([]byte, len(requestMAC)) // long enough
+		n, _ := packMacWire(m, buf)
+		buf = buf[:n]
+	}
+
+	tsigvar := make([]byte, DefaultMsgSize)
+	if timersOnly {
+		tsig := new(timerWireFmt)
+		tsig.TimeSigned = rr.TimeSigned
+		tsig.Fudge = rr.Fudge
+		n, _ := packTimerWire(tsig, tsigvar)
+		tsigvar = tsigvar[:n]
+	} else {
+		tsig := new(tsigWireFmt)
+		tsig.Name = strings.ToLower(rr.Hdr.Name)
+		tsig.Class = ClassANY
+		tsig.Ttl = rr.Hdr.Ttl
+		tsig.Algorithm = strings.ToLower(rr.Algorithm)
+		tsig.TimeSigned = rr.TimeSigned
+		tsig.Fudge = rr.Fudge
+		tsig.Error = rr.Error
+		tsig.OtherLen = rr.OtherLen
+		tsig.OtherData = rr.OtherData
+		n, _ := packTsigWire(tsig, tsigvar)
+		tsigvar = tsigvar[:n]
+	}
+
+	if requestMAC != "" {
+		x := append(buf, msgbuf...)
+		buf = append(x, tsigvar...)
+	} else {
+		buf = append(msgbuf, tsigvar...)
+	}
+	return buf
+}
+
+// Strip the TSIG from the raw message.
+func stripTsig(msg []byte) ([]byte, *TSIG, error) {
+	// Copied from msg.go's Unpack() Header, but modified.
+	var (
+		dh  Header
+		err error
+	)
+	off, tsigoff := 0, 0
+
+	if dh, off, err = unpackMsgHdr(msg, off); err != nil {
+		return nil, nil, err
+	}
+	if dh.Arcount == 0 {
+		return nil, nil, ErrNoSig
+	}
+
+	// Rcode, see msg.go Unpack()
+	if int(dh.Bits&0xF) == RcodeNotAuth {
+		return nil, nil, ErrAuth
+	}
+
+	for i := 0; i < int(dh.Qdcount); i++ {
+		_, off, err = unpackQuestion(msg, off)
+		if err != nil {
+			return nil, nil, err
+		}
+	}
+
+	_, off, err = unpackRRslice(int(dh.Ancount), msg, off)
+	if err != nil {
+		return nil, nil, err
+	}
+	_, off, err = unpackRRslice(int(dh.Nscount), msg, off)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	rr := new(TSIG)
+	var extra RR
+	for i := 0; i < int(dh.Arcount); i++ {
+		tsigoff = off
+		extra, off, err = UnpackRR(msg, off)
+		if err != nil {
+			return nil, nil, err
+		}
+		if extra.Header().Rrtype == TypeTSIG {
+			rr = extra.(*TSIG)
+			// Adjust Arcount.
+			arcount := binary.BigEndian.Uint16(msg[10:])
+			binary.BigEndian.PutUint16(msg[10:], arcount-1)
+			break
+		}
+	}
+	if rr == nil {
+		return nil, nil, ErrNoSig
+	}
+	return msg[:tsigoff], rr, nil
+}
+
+// Translate the TSIG time signed into a date. There is no
+// need for RFC1982 calculations as this date is 48 bits.
+func tsigTimeToString(t uint64) string {
+	ti := time.Unix(int64(t), 0).UTC()
+	return ti.Format("20060102150405")
+}
+
+func packTsigWire(tw *tsigWireFmt, msg []byte) (int, error) {
+	// copied from zmsg.go TSIG packing
+	// RR_Header
+	off, err := PackDomainName(tw.Name, msg, 0, nil, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(tw.Class, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(tw.Ttl, msg, off)
+	if err != nil {
+		return off, err
+	}
+
+	off, err = PackDomainName(tw.Algorithm, msg, off, nil, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint48(tw.TimeSigned, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(tw.Fudge, msg, off)
+	if err != nil {
+		return off, err
+	}
+
+	off, err = packUint16(tw.Error, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(tw.OtherLen, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(tw.OtherData, msg, off)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
+
+func packMacWire(mw *macWireFmt, msg []byte) (int, error) {
+	off, err := packUint16(mw.MACSize, msg, 0)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(mw.MAC, msg, off)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
+
+func packTimerWire(tw *timerWireFmt, msg []byte) (int, error) {
+	off, err := packUint48(tw.TimeSigned, msg, 0)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(tw.Fudge, msg, off)
+	if err != nil {
+		return off, err
+	}
+	return off, nil
+}
diff --git a/vendor/github.com/miekg/dns/types.go b/vendor/github.com/miekg/dns/types.go
new file mode 100644
index 0000000000..a779ca8abc
--- /dev/null
+++ b/vendor/github.com/miekg/dns/types.go
@@ -0,0 +1,1381 @@
+package dns
+
+import (
+	"fmt"
+	"net"
+	"strconv"
+	"strings"
+	"time"
+)
+
+type (
+	// Type is a DNS type.
+	Type uint16
+	// Class is a DNS class.
+	Class uint16
+	// Name is a DNS domain name.
+	Name string
+)
+
+// Packet formats
+
+// Wire constants and supported types.
+const (
+	// valid RR_Header.Rrtype and Question.qtype
+
+	TypeNone       uint16 = 0
+	TypeA          uint16 = 1
+	TypeNS         uint16 = 2
+	TypeMD         uint16 = 3
+	TypeMF         uint16 = 4
+	TypeCNAME      uint16 = 5
+	TypeSOA        uint16 = 6
+	TypeMB         uint16 = 7
+	TypeMG         uint16 = 8
+	TypeMR         uint16 = 9
+	TypeNULL       uint16 = 10
+	TypePTR        uint16 = 12
+	TypeHINFO      uint16 = 13
+	TypeMINFO      uint16 = 14
+	TypeMX         uint16 = 15
+	TypeTXT        uint16 = 16
+	TypeRP         uint16 = 17
+	TypeAFSDB      uint16 = 18
+	TypeX25        uint16 = 19
+	TypeISDN       uint16 = 20
+	TypeRT         uint16 = 21
+	TypeNSAPPTR    uint16 = 23
+	TypeSIG        uint16 = 24
+	TypeKEY        uint16 = 25
+	TypePX         uint16 = 26
+	TypeGPOS       uint16 = 27
+	TypeAAAA       uint16 = 28
+	TypeLOC        uint16 = 29
+	TypeNXT        uint16 = 30
+	TypeEID        uint16 = 31
+	TypeNIMLOC     uint16 = 32
+	TypeSRV        uint16 = 33
+	TypeATMA       uint16 = 34
+	TypeNAPTR      uint16 = 35
+	TypeKX         uint16 = 36
+	TypeCERT       uint16 = 37
+	TypeDNAME      uint16 = 39
+	TypeOPT        uint16 = 41 // EDNS
+	TypeDS         uint16 = 43
+	TypeSSHFP      uint16 = 44
+	TypeRRSIG      uint16 = 46
+	TypeNSEC       uint16 = 47
+	TypeDNSKEY     uint16 = 48
+	TypeDHCID      uint16 = 49
+	TypeNSEC3      uint16 = 50
+	TypeNSEC3PARAM uint16 = 51
+	TypeTLSA       uint16 = 52
+	TypeSMIMEA     uint16 = 53
+	TypeHIP        uint16 = 55
+	TypeNINFO      uint16 = 56
+	TypeRKEY       uint16 = 57
+	TypeTALINK     uint16 = 58
+	TypeCDS        uint16 = 59
+	TypeCDNSKEY    uint16 = 60
+	TypeOPENPGPKEY uint16 = 61
+	TypeCSYNC      uint16 = 62
+	TypeSPF        uint16 = 99
+	TypeUINFO      uint16 = 100
+	TypeUID        uint16 = 101
+	TypeGID        uint16 = 102
+	TypeUNSPEC     uint16 = 103
+	TypeNID        uint16 = 104
+	TypeL32        uint16 = 105
+	TypeL64        uint16 = 106
+	TypeLP         uint16 = 107
+	TypeEUI48      uint16 = 108
+	TypeEUI64      uint16 = 109
+	TypeURI        uint16 = 256
+	TypeCAA        uint16 = 257
+	TypeAVC        uint16 = 258
+
+	TypeTKEY uint16 = 249
+	TypeTSIG uint16 = 250
+
+	// valid Question.Qtype only
+	TypeIXFR  uint16 = 251
+	TypeAXFR  uint16 = 252
+	TypeMAILB uint16 = 253
+	TypeMAILA uint16 = 254
+	TypeANY   uint16 = 255
+
+	TypeTA       uint16 = 32768
+	TypeDLV      uint16 = 32769
+	TypeReserved uint16 = 65535
+
+	// valid Question.Qclass
+	ClassINET   = 1
+	ClassCSNET  = 2
+	ClassCHAOS  = 3
+	ClassHESIOD = 4
+	ClassNONE   = 254
+	ClassANY    = 255
+
+	// Message Response Codes, see https://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml
+	RcodeSuccess        = 0  // NoError   - No Error                          [DNS]
+	RcodeFormatError    = 1  // FormErr   - Format Error                      [DNS]
+	RcodeServerFailure  = 2  // ServFail  - Server Failure                    [DNS]
+	RcodeNameError      = 3  // NXDomain  - Non-Existent Domain               [DNS]
+	RcodeNotImplemented = 4  // NotImp    - Not Implemented                   [DNS]
+	RcodeRefused        = 5  // Refused   - Query Refused                     [DNS]
+	RcodeYXDomain       = 6  // YXDomain  - Name Exists when it should not    [DNS Update]
+	RcodeYXRrset        = 7  // YXRRSet   - RR Set Exists when it should not  [DNS Update]
+	RcodeNXRrset        = 8  // NXRRSet   - RR Set that should exist does not [DNS Update]
+	RcodeNotAuth        = 9  // NotAuth   - Server Not Authoritative for zone [DNS Update]
+	RcodeNotZone        = 10 // NotZone   - Name not contained in zone        [DNS Update/TSIG]
+	RcodeBadSig         = 16 // BADSIG    - TSIG Signature Failure            [TSIG]
+	RcodeBadVers        = 16 // BADVERS   - Bad OPT Version                   [EDNS0]
+	RcodeBadKey         = 17 // BADKEY    - Key not recognized                [TSIG]
+	RcodeBadTime        = 18 // BADTIME   - Signature out of time window      [TSIG]
+	RcodeBadMode        = 19 // BADMODE   - Bad TKEY Mode                     [TKEY]
+	RcodeBadName        = 20 // BADNAME   - Duplicate key name                [TKEY]
+	RcodeBadAlg         = 21 // BADALG    - Algorithm not supported           [TKEY]
+	RcodeBadTrunc       = 22 // BADTRUNC  - Bad Truncation                    [TSIG]
+	RcodeBadCookie      = 23 // BADCOOKIE - Bad/missing Server Cookie         [DNS Cookies]
+
+	// Message Opcodes. There is no 3.
+	OpcodeQuery  = 0
+	OpcodeIQuery = 1
+	OpcodeStatus = 2
+	OpcodeNotify = 4
+	OpcodeUpdate = 5
+)
+
+// Header is the wire format for the DNS packet header.
+type Header struct {
+	Id                                 uint16
+	Bits                               uint16
+	Qdcount, Ancount, Nscount, Arcount uint16
+}
+
+const (
+	headerSize = 12
+
+	// Header.Bits
+	_QR = 1 << 15 // query/response (response=1)
+	_AA = 1 << 10 // authoritative
+	_TC = 1 << 9  // truncated
+	_RD = 1 << 8  // recursion desired
+	_RA = 1 << 7  // recursion available
+	_Z  = 1 << 6  // Z
+	_AD = 1 << 5  // authticated data
+	_CD = 1 << 4  // checking disabled
+)
+
+// Various constants used in the LOC RR, See RFC 1887.
+const (
+	LOC_EQUATOR       = 1 << 31 // RFC 1876, Section 2.
+	LOC_PRIMEMERIDIAN = 1 << 31 // RFC 1876, Section 2.
+	LOC_HOURS         = 60 * 1000
+	LOC_DEGREES       = 60 * LOC_HOURS
+	LOC_ALTITUDEBASE  = 100000
+)
+
+// Different Certificate Types, see RFC 4398, Section 2.1
+const (
+	CertPKIX = 1 + iota
+	CertSPKI
+	CertPGP
+	CertIPIX
+	CertISPKI
+	CertIPGP
+	CertACPKIX
+	CertIACPKIX
+	CertURI = 253
+	CertOID = 254
+)
+
+// CertTypeToString converts the Cert Type to its string representation.
+// See RFC 4398 and RFC 6944.
+var CertTypeToString = map[uint16]string{
+	CertPKIX:    "PKIX",
+	CertSPKI:    "SPKI",
+	CertPGP:     "PGP",
+	CertIPIX:    "IPIX",
+	CertISPKI:   "ISPKI",
+	CertIPGP:    "IPGP",
+	CertACPKIX:  "ACPKIX",
+	CertIACPKIX: "IACPKIX",
+	CertURI:     "URI",
+	CertOID:     "OID",
+}
+
+// StringToCertType is the reverseof CertTypeToString.
+var StringToCertType = reverseInt16(CertTypeToString)
+
+//go:generate go run types_generate.go
+
+// Question holds a DNS question. There can be multiple questions in the
+// question section of a message. Usually there is just one.
+type Question struct {
+	Name   string `dns:"cdomain-name"` // "cdomain-name" specifies encoding (and may be compressed)
+	Qtype  uint16
+	Qclass uint16
+}
+
+func (q *Question) len() int {
+	return len(q.Name) + 1 + 2 + 2
+}
+
+func (q *Question) String() (s string) {
+	// prefix with ; (as in dig)
+	s = ";" + sprintName(q.Name) + "\t"
+	s += Class(q.Qclass).String() + "\t"
+	s += " " + Type(q.Qtype).String()
+	return s
+}
+
+// ANY is a wildcard record. See RFC 1035, Section 3.2.3. ANY
+// is named "*" there.
+type ANY struct {
+	Hdr RR_Header
+	// Does not have any rdata
+}
+
+func (rr *ANY) String() string { return rr.Hdr.String() }
+
+// CNAME RR. See RFC 1034.
+type CNAME struct {
+	Hdr    RR_Header
+	Target string `dns:"cdomain-name"`
+}
+
+func (rr *CNAME) String() string { return rr.Hdr.String() + sprintName(rr.Target) }
+
+// HINFO RR. See RFC 1034.
+type HINFO struct {
+	Hdr RR_Header
+	Cpu string
+	Os  string
+}
+
+func (rr *HINFO) String() string {
+	return rr.Hdr.String() + sprintTxt([]string{rr.Cpu, rr.Os})
+}
+
+// MB RR. See RFC 1035.
+type MB struct {
+	Hdr RR_Header
+	Mb  string `dns:"cdomain-name"`
+}
+
+func (rr *MB) String() string { return rr.Hdr.String() + sprintName(rr.Mb) }
+
+// MG RR. See RFC 1035.
+type MG struct {
+	Hdr RR_Header
+	Mg  string `dns:"cdomain-name"`
+}
+
+func (rr *MG) String() string { return rr.Hdr.String() + sprintName(rr.Mg) }
+
+// MINFO RR. See RFC 1035.
+type MINFO struct {
+	Hdr   RR_Header
+	Rmail string `dns:"cdomain-name"`
+	Email string `dns:"cdomain-name"`
+}
+
+func (rr *MINFO) String() string {
+	return rr.Hdr.String() + sprintName(rr.Rmail) + " " + sprintName(rr.Email)
+}
+
+// MR RR. See RFC 1035.
+type MR struct {
+	Hdr RR_Header
+	Mr  string `dns:"cdomain-name"`
+}
+
+func (rr *MR) String() string {
+	return rr.Hdr.String() + sprintName(rr.Mr)
+}
+
+// MF RR. See RFC 1035.
+type MF struct {
+	Hdr RR_Header
+	Mf  string `dns:"cdomain-name"`
+}
+
+func (rr *MF) String() string {
+	return rr.Hdr.String() + sprintName(rr.Mf)
+}
+
+// MD RR. See RFC 1035.
+type MD struct {
+	Hdr RR_Header
+	Md  string `dns:"cdomain-name"`
+}
+
+func (rr *MD) String() string {
+	return rr.Hdr.String() + sprintName(rr.Md)
+}
+
+// MX RR. See RFC 1035.
+type MX struct {
+	Hdr        RR_Header
+	Preference uint16
+	Mx         string `dns:"cdomain-name"`
+}
+
+func (rr *MX) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) + " " + sprintName(rr.Mx)
+}
+
+// AFSDB RR. See RFC 1183.
+type AFSDB struct {
+	Hdr      RR_Header
+	Subtype  uint16
+	Hostname string `dns:"cdomain-name"`
+}
+
+func (rr *AFSDB) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Subtype)) + " " + sprintName(rr.Hostname)
+}
+
+// X25 RR. See RFC 1183, Section 3.1.
+type X25 struct {
+	Hdr         RR_Header
+	PSDNAddress string
+}
+
+func (rr *X25) String() string {
+	return rr.Hdr.String() + rr.PSDNAddress
+}
+
+// RT RR. See RFC 1183, Section 3.3.
+type RT struct {
+	Hdr        RR_Header
+	Preference uint16
+	Host       string `dns:"cdomain-name"`
+}
+
+func (rr *RT) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) + " " + sprintName(rr.Host)
+}
+
+// NS RR. See RFC 1035.
+type NS struct {
+	Hdr RR_Header
+	Ns  string `dns:"cdomain-name"`
+}
+
+func (rr *NS) String() string {
+	return rr.Hdr.String() + sprintName(rr.Ns)
+}
+
+// PTR RR. See RFC 1035.
+type PTR struct {
+	Hdr RR_Header
+	Ptr string `dns:"cdomain-name"`
+}
+
+func (rr *PTR) String() string {
+	return rr.Hdr.String() + sprintName(rr.Ptr)
+}
+
+// RP RR. See RFC 1138, Section 2.2.
+type RP struct {
+	Hdr  RR_Header
+	Mbox string `dns:"domain-name"`
+	Txt  string `dns:"domain-name"`
+}
+
+func (rr *RP) String() string {
+	return rr.Hdr.String() + rr.Mbox + " " + sprintTxt([]string{rr.Txt})
+}
+
+// SOA RR. See RFC 1035.
+type SOA struct {
+	Hdr     RR_Header
+	Ns      string `dns:"cdomain-name"`
+	Mbox    string `dns:"cdomain-name"`
+	Serial  uint32
+	Refresh uint32
+	Retry   uint32
+	Expire  uint32
+	Minttl  uint32
+}
+
+func (rr *SOA) String() string {
+	return rr.Hdr.String() + sprintName(rr.Ns) + " " + sprintName(rr.Mbox) +
+		" " + strconv.FormatInt(int64(rr.Serial), 10) +
+		" " + strconv.FormatInt(int64(rr.Refresh), 10) +
+		" " + strconv.FormatInt(int64(rr.Retry), 10) +
+		" " + strconv.FormatInt(int64(rr.Expire), 10) +
+		" " + strconv.FormatInt(int64(rr.Minttl), 10)
+}
+
+// TXT RR. See RFC 1035.
+type TXT struct {
+	Hdr RR_Header
+	Txt []string `dns:"txt"`
+}
+
+func (rr *TXT) String() string { return rr.Hdr.String() + sprintTxt(rr.Txt) }
+
+func sprintName(s string) string {
+	src := []byte(s)
+	dst := make([]byte, 0, len(src))
+	for i := 0; i < len(src); {
+		if i+1 < len(src) && src[i] == '\\' && src[i+1] == '.' {
+			dst = append(dst, src[i:i+2]...)
+			i += 2
+		} else {
+			b, n := nextByte(src, i)
+			if n == 0 {
+				i++ // dangling back slash
+			} else if b == '.' {
+				dst = append(dst, b)
+			} else {
+				dst = appendDomainNameByte(dst, b)
+			}
+			i += n
+		}
+	}
+	return string(dst)
+}
+
+func sprintTxtOctet(s string) string {
+	src := []byte(s)
+	dst := make([]byte, 0, len(src))
+	dst = append(dst, '"')
+	for i := 0; i < len(src); {
+		if i+1 < len(src) && src[i] == '\\' && src[i+1] == '.' {
+			dst = append(dst, src[i:i+2]...)
+			i += 2
+		} else {
+			b, n := nextByte(src, i)
+			if n == 0 {
+				i++ // dangling back slash
+			} else if b == '.' {
+				dst = append(dst, b)
+			} else {
+				if b < ' ' || b > '~' {
+					dst = appendByte(dst, b)
+				} else {
+					dst = append(dst, b)
+				}
+			}
+			i += n
+		}
+	}
+	dst = append(dst, '"')
+	return string(dst)
+}
+
+func sprintTxt(txt []string) string {
+	var out []byte
+	for i, s := range txt {
+		if i > 0 {
+			out = append(out, ` "`...)
+		} else {
+			out = append(out, '"')
+		}
+		bs := []byte(s)
+		for j := 0; j < len(bs); {
+			b, n := nextByte(bs, j)
+			if n == 0 {
+				break
+			}
+			out = appendTXTStringByte(out, b)
+			j += n
+		}
+		out = append(out, '"')
+	}
+	return string(out)
+}
+
+func appendDomainNameByte(s []byte, b byte) []byte {
+	switch b {
+	case '.', ' ', '\'', '@', ';', '(', ')': // additional chars to escape
+		return append(s, '\\', b)
+	}
+	return appendTXTStringByte(s, b)
+}
+
+func appendTXTStringByte(s []byte, b byte) []byte {
+	switch b {
+	case '"', '\\':
+		return append(s, '\\', b)
+	}
+	if b < ' ' || b > '~' {
+		return appendByte(s, b)
+	}
+	return append(s, b)
+}
+
+func appendByte(s []byte, b byte) []byte {
+	var buf [3]byte
+	bufs := strconv.AppendInt(buf[:0], int64(b), 10)
+	s = append(s, '\\')
+	for i := 0; i < 3-len(bufs); i++ {
+		s = append(s, '0')
+	}
+	for _, r := range bufs {
+		s = append(s, r)
+	}
+	return s
+}
+
+func nextByte(b []byte, offset int) (byte, int) {
+	if offset >= len(b) {
+		return 0, 0
+	}
+	if b[offset] != '\\' {
+		// not an escape sequence
+		return b[offset], 1
+	}
+	switch len(b) - offset {
+	case 1: // dangling escape
+		return 0, 0
+	case 2, 3: // too short to be \ddd
+	default: // maybe \ddd
+		if isDigit(b[offset+1]) && isDigit(b[offset+2]) && isDigit(b[offset+3]) {
+			return dddToByte(b[offset+1:]), 4
+		}
+	}
+	// not \ddd, just an RFC 1035 "quoted" character
+	return b[offset+1], 2
+}
+
+// SPF RR. See RFC 4408, Section 3.1.1.
+type SPF struct {
+	Hdr RR_Header
+	Txt []string `dns:"txt"`
+}
+
+func (rr *SPF) String() string { return rr.Hdr.String() + sprintTxt(rr.Txt) }
+
+// AVC RR. See https://www.iana.org/assignments/dns-parameters/AVC/avc-completed-template.
+type AVC struct {
+	Hdr RR_Header
+	Txt []string `dns:"txt"`
+}
+
+func (rr *AVC) String() string { return rr.Hdr.String() + sprintTxt(rr.Txt) }
+
+// SRV RR. See RFC 2782.
+type SRV struct {
+	Hdr      RR_Header
+	Priority uint16
+	Weight   uint16
+	Port     uint16
+	Target   string `dns:"domain-name"`
+}
+
+func (rr *SRV) String() string {
+	return rr.Hdr.String() +
+		strconv.Itoa(int(rr.Priority)) + " " +
+		strconv.Itoa(int(rr.Weight)) + " " +
+		strconv.Itoa(int(rr.Port)) + " " + sprintName(rr.Target)
+}
+
+// NAPTR RR. See RFC 2915.
+type NAPTR struct {
+	Hdr         RR_Header
+	Order       uint16
+	Preference  uint16
+	Flags       string
+	Service     string
+	Regexp      string
+	Replacement string `dns:"domain-name"`
+}
+
+func (rr *NAPTR) String() string {
+	return rr.Hdr.String() +
+		strconv.Itoa(int(rr.Order)) + " " +
+		strconv.Itoa(int(rr.Preference)) + " " +
+		"\"" + rr.Flags + "\" " +
+		"\"" + rr.Service + "\" " +
+		"\"" + rr.Regexp + "\" " +
+		rr.Replacement
+}
+
+// CERT RR. See RFC 4398.
+type CERT struct {
+	Hdr         RR_Header
+	Type        uint16
+	KeyTag      uint16
+	Algorithm   uint8
+	Certificate string `dns:"base64"`
+}
+
+func (rr *CERT) String() string {
+	var (
+		ok                  bool
+		certtype, algorithm string
+	)
+	if certtype, ok = CertTypeToString[rr.Type]; !ok {
+		certtype = strconv.Itoa(int(rr.Type))
+	}
+	if algorithm, ok = AlgorithmToString[rr.Algorithm]; !ok {
+		algorithm = strconv.Itoa(int(rr.Algorithm))
+	}
+	return rr.Hdr.String() + certtype +
+		" " + strconv.Itoa(int(rr.KeyTag)) +
+		" " + algorithm +
+		" " + rr.Certificate
+}
+
+// DNAME RR. See RFC 2672.
+type DNAME struct {
+	Hdr    RR_Header
+	Target string `dns:"domain-name"`
+}
+
+func (rr *DNAME) String() string {
+	return rr.Hdr.String() + sprintName(rr.Target)
+}
+
+// A RR. See RFC 1035.
+type A struct {
+	Hdr RR_Header
+	A   net.IP `dns:"a"`
+}
+
+func (rr *A) String() string {
+	if rr.A == nil {
+		return rr.Hdr.String()
+	}
+	return rr.Hdr.String() + rr.A.String()
+}
+
+// AAAA RR. See RFC 3596.
+type AAAA struct {
+	Hdr  RR_Header
+	AAAA net.IP `dns:"aaaa"`
+}
+
+func (rr *AAAA) String() string {
+	if rr.AAAA == nil {
+		return rr.Hdr.String()
+	}
+	return rr.Hdr.String() + rr.AAAA.String()
+}
+
+// PX RR. See RFC 2163.
+type PX struct {
+	Hdr        RR_Header
+	Preference uint16
+	Map822     string `dns:"domain-name"`
+	Mapx400    string `dns:"domain-name"`
+}
+
+func (rr *PX) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) + " " + sprintName(rr.Map822) + " " + sprintName(rr.Mapx400)
+}
+
+// GPOS RR. See RFC 1712.
+type GPOS struct {
+	Hdr       RR_Header
+	Longitude string
+	Latitude  string
+	Altitude  string
+}
+
+func (rr *GPOS) String() string {
+	return rr.Hdr.String() + rr.Longitude + " " + rr.Latitude + " " + rr.Altitude
+}
+
+// LOC RR. See RFC RFC 1876.
+type LOC struct {
+	Hdr       RR_Header
+	Version   uint8
+	Size      uint8
+	HorizPre  uint8
+	VertPre   uint8
+	Latitude  uint32
+	Longitude uint32
+	Altitude  uint32
+}
+
+// cmToM takes a cm value expressed in RFC1876 SIZE mantissa/exponent
+// format and returns a string in m (two decimals for the cm)
+func cmToM(m, e uint8) string {
+	if e < 2 {
+		if e == 1 {
+			m *= 10
+		}
+
+		return fmt.Sprintf("0.%02d", m)
+	}
+
+	s := fmt.Sprintf("%d", m)
+	for e > 2 {
+		s += "0"
+		e--
+	}
+	return s
+}
+
+func (rr *LOC) String() string {
+	s := rr.Hdr.String()
+
+	lat := rr.Latitude
+	ns := "N"
+	if lat > LOC_EQUATOR {
+		lat = lat - LOC_EQUATOR
+	} else {
+		ns = "S"
+		lat = LOC_EQUATOR - lat
+	}
+	h := lat / LOC_DEGREES
+	lat = lat % LOC_DEGREES
+	m := lat / LOC_HOURS
+	lat = lat % LOC_HOURS
+	s += fmt.Sprintf("%02d %02d %0.3f %s ", h, m, (float64(lat) / 1000), ns)
+
+	lon := rr.Longitude
+	ew := "E"
+	if lon > LOC_PRIMEMERIDIAN {
+		lon = lon - LOC_PRIMEMERIDIAN
+	} else {
+		ew = "W"
+		lon = LOC_PRIMEMERIDIAN - lon
+	}
+	h = lon / LOC_DEGREES
+	lon = lon % LOC_DEGREES
+	m = lon / LOC_HOURS
+	lon = lon % LOC_HOURS
+	s += fmt.Sprintf("%02d %02d %0.3f %s ", h, m, (float64(lon) / 1000), ew)
+
+	var alt = float64(rr.Altitude) / 100
+	alt -= LOC_ALTITUDEBASE
+	if rr.Altitude%100 != 0 {
+		s += fmt.Sprintf("%.2fm ", alt)
+	} else {
+		s += fmt.Sprintf("%.0fm ", alt)
+	}
+
+	s += cmToM((rr.Size&0xf0)>>4, rr.Size&0x0f) + "m "
+	s += cmToM((rr.HorizPre&0xf0)>>4, rr.HorizPre&0x0f) + "m "
+	s += cmToM((rr.VertPre&0xf0)>>4, rr.VertPre&0x0f) + "m"
+
+	return s
+}
+
+// SIG RR. See RFC 2535. The SIG RR is identical to RRSIG and nowadays only used for SIG(0), See RFC 2931.
+type SIG struct {
+	RRSIG
+}
+
+// RRSIG RR. See RFC 4034 and RFC 3755.
+type RRSIG struct {
+	Hdr         RR_Header
+	TypeCovered uint16
+	Algorithm   uint8
+	Labels      uint8
+	OrigTtl     uint32
+	Expiration  uint32
+	Inception   uint32
+	KeyTag      uint16
+	SignerName  string `dns:"domain-name"`
+	Signature   string `dns:"base64"`
+}
+
+func (rr *RRSIG) String() string {
+	s := rr.Hdr.String()
+	s += Type(rr.TypeCovered).String()
+	s += " " + strconv.Itoa(int(rr.Algorithm)) +
+		" " + strconv.Itoa(int(rr.Labels)) +
+		" " + strconv.FormatInt(int64(rr.OrigTtl), 10) +
+		" " + TimeToString(rr.Expiration) +
+		" " + TimeToString(rr.Inception) +
+		" " + strconv.Itoa(int(rr.KeyTag)) +
+		" " + sprintName(rr.SignerName) +
+		" " + rr.Signature
+	return s
+}
+
+// NSEC RR. See RFC 4034 and RFC 3755.
+type NSEC struct {
+	Hdr        RR_Header
+	NextDomain string   `dns:"domain-name"`
+	TypeBitMap []uint16 `dns:"nsec"`
+}
+
+func (rr *NSEC) String() string {
+	s := rr.Hdr.String() + sprintName(rr.NextDomain)
+	for i := 0; i < len(rr.TypeBitMap); i++ {
+		s += " " + Type(rr.TypeBitMap[i]).String()
+	}
+	return s
+}
+
+func (rr *NSEC) len() int {
+	l := rr.Hdr.len() + len(rr.NextDomain) + 1
+	lastwindow := uint32(2 ^ 32 + 1)
+	for _, t := range rr.TypeBitMap {
+		window := t / 256
+		if uint32(window) != lastwindow {
+			l += 1 + 32
+		}
+		lastwindow = uint32(window)
+	}
+	return l
+}
+
+// DLV RR. See RFC 4431.
+type DLV struct{ DS }
+
+// CDS RR. See RFC 7344.
+type CDS struct{ DS }
+
+// DS RR. See RFC 4034 and RFC 3658.
+type DS struct {
+	Hdr        RR_Header
+	KeyTag     uint16
+	Algorithm  uint8
+	DigestType uint8
+	Digest     string `dns:"hex"`
+}
+
+func (rr *DS) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.KeyTag)) +
+		" " + strconv.Itoa(int(rr.Algorithm)) +
+		" " + strconv.Itoa(int(rr.DigestType)) +
+		" " + strings.ToUpper(rr.Digest)
+}
+
+// KX RR. See RFC 2230.
+type KX struct {
+	Hdr        RR_Header
+	Preference uint16
+	Exchanger  string `dns:"domain-name"`
+}
+
+func (rr *KX) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) +
+		" " + sprintName(rr.Exchanger)
+}
+
+// TA RR. See http://www.watson.org/~weiler/INI1999-19.pdf.
+type TA struct {
+	Hdr        RR_Header
+	KeyTag     uint16
+	Algorithm  uint8
+	DigestType uint8
+	Digest     string `dns:"hex"`
+}
+
+func (rr *TA) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.KeyTag)) +
+		" " + strconv.Itoa(int(rr.Algorithm)) +
+		" " + strconv.Itoa(int(rr.DigestType)) +
+		" " + strings.ToUpper(rr.Digest)
+}
+
+// TALINK RR. See https://www.iana.org/assignments/dns-parameters/TALINK/talink-completed-template.
+type TALINK struct {
+	Hdr          RR_Header
+	PreviousName string `dns:"domain-name"`
+	NextName     string `dns:"domain-name"`
+}
+
+func (rr *TALINK) String() string {
+	return rr.Hdr.String() +
+		sprintName(rr.PreviousName) + " " + sprintName(rr.NextName)
+}
+
+// SSHFP RR. See RFC RFC 4255.
+type SSHFP struct {
+	Hdr         RR_Header
+	Algorithm   uint8
+	Type        uint8
+	FingerPrint string `dns:"hex"`
+}
+
+func (rr *SSHFP) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Algorithm)) +
+		" " + strconv.Itoa(int(rr.Type)) +
+		" " + strings.ToUpper(rr.FingerPrint)
+}
+
+// KEY RR. See RFC RFC 2535.
+type KEY struct {
+	DNSKEY
+}
+
+// CDNSKEY RR. See RFC 7344.
+type CDNSKEY struct {
+	DNSKEY
+}
+
+// DNSKEY RR. See RFC 4034 and RFC 3755.
+type DNSKEY struct {
+	Hdr       RR_Header
+	Flags     uint16
+	Protocol  uint8
+	Algorithm uint8
+	PublicKey string `dns:"base64"`
+}
+
+func (rr *DNSKEY) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Flags)) +
+		" " + strconv.Itoa(int(rr.Protocol)) +
+		" " + strconv.Itoa(int(rr.Algorithm)) +
+		" " + rr.PublicKey
+}
+
+// RKEY RR. See https://www.iana.org/assignments/dns-parameters/RKEY/rkey-completed-template.
+type RKEY struct {
+	Hdr       RR_Header
+	Flags     uint16
+	Protocol  uint8
+	Algorithm uint8
+	PublicKey string `dns:"base64"`
+}
+
+func (rr *RKEY) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Flags)) +
+		" " + strconv.Itoa(int(rr.Protocol)) +
+		" " + strconv.Itoa(int(rr.Algorithm)) +
+		" " + rr.PublicKey
+}
+
+// NSAPPTR RR. See RFC 1348.
+type NSAPPTR struct {
+	Hdr RR_Header
+	Ptr string `dns:"domain-name"`
+}
+
+func (rr *NSAPPTR) String() string { return rr.Hdr.String() + sprintName(rr.Ptr) }
+
+// NSEC3 RR. See RFC 5155.
+type NSEC3 struct {
+	Hdr        RR_Header
+	Hash       uint8
+	Flags      uint8
+	Iterations uint16
+	SaltLength uint8
+	Salt       string `dns:"size-hex:SaltLength"`
+	HashLength uint8
+	NextDomain string   `dns:"size-base32:HashLength"`
+	TypeBitMap []uint16 `dns:"nsec"`
+}
+
+func (rr *NSEC3) String() string {
+	s := rr.Hdr.String()
+	s += strconv.Itoa(int(rr.Hash)) +
+		" " + strconv.Itoa(int(rr.Flags)) +
+		" " + strconv.Itoa(int(rr.Iterations)) +
+		" " + saltToString(rr.Salt) +
+		" " + rr.NextDomain
+	for i := 0; i < len(rr.TypeBitMap); i++ {
+		s += " " + Type(rr.TypeBitMap[i]).String()
+	}
+	return s
+}
+
+func (rr *NSEC3) len() int {
+	l := rr.Hdr.len() + 6 + len(rr.Salt)/2 + 1 + len(rr.NextDomain) + 1
+	lastwindow := uint32(2 ^ 32 + 1)
+	for _, t := range rr.TypeBitMap {
+		window := t / 256
+		if uint32(window) != lastwindow {
+			l += 1 + 32
+		}
+		lastwindow = uint32(window)
+	}
+	return l
+}
+
+// NSEC3PARAM RR. See RFC 5155.
+type NSEC3PARAM struct {
+	Hdr        RR_Header
+	Hash       uint8
+	Flags      uint8
+	Iterations uint16
+	SaltLength uint8
+	Salt       string `dns:"size-hex:SaltLength"`
+}
+
+func (rr *NSEC3PARAM) String() string {
+	s := rr.Hdr.String()
+	s += strconv.Itoa(int(rr.Hash)) +
+		" " + strconv.Itoa(int(rr.Flags)) +
+		" " + strconv.Itoa(int(rr.Iterations)) +
+		" " + saltToString(rr.Salt)
+	return s
+}
+
+// TKEY RR. See RFC 2930.
+type TKEY struct {
+	Hdr        RR_Header
+	Algorithm  string `dns:"domain-name"`
+	Inception  uint32
+	Expiration uint32
+	Mode       uint16
+	Error      uint16
+	KeySize    uint16
+	Key        string `dns:"size-hex:KeySize"`
+	OtherLen   uint16
+	OtherData  string `dns:"size-hex:OtherLen"`
+}
+
+// TKEY has no official presentation format, but this will suffice.
+func (rr *TKEY) String() string {
+	s := "\n;; TKEY PSEUDOSECTION:\n"
+	s += rr.Hdr.String() + " " + rr.Algorithm + " " +
+		strconv.Itoa(int(rr.KeySize)) + " " + rr.Key + " " +
+		strconv.Itoa(int(rr.OtherLen)) + " " + rr.OtherData
+	return s
+}
+
+// RFC3597 represents an unknown/generic RR. See RFC 3597.
+type RFC3597 struct {
+	Hdr   RR_Header
+	Rdata string `dns:"hex"`
+}
+
+func (rr *RFC3597) String() string {
+	// Let's call it a hack
+	s := rfc3597Header(rr.Hdr)
+
+	s += "\\# " + strconv.Itoa(len(rr.Rdata)/2) + " " + rr.Rdata
+	return s
+}
+
+func rfc3597Header(h RR_Header) string {
+	var s string
+
+	s += sprintName(h.Name) + "\t"
+	s += strconv.FormatInt(int64(h.Ttl), 10) + "\t"
+	s += "CLASS" + strconv.Itoa(int(h.Class)) + "\t"
+	s += "TYPE" + strconv.Itoa(int(h.Rrtype)) + "\t"
+	return s
+}
+
+// URI RR. See RFC 7553.
+type URI struct {
+	Hdr      RR_Header
+	Priority uint16
+	Weight   uint16
+	Target   string `dns:"octet"`
+}
+
+func (rr *URI) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Priority)) +
+		" " + strconv.Itoa(int(rr.Weight)) + " " + sprintTxtOctet(rr.Target)
+}
+
+// DHCID RR. See RFC 4701.
+type DHCID struct {
+	Hdr    RR_Header
+	Digest string `dns:"base64"`
+}
+
+func (rr *DHCID) String() string { return rr.Hdr.String() + rr.Digest }
+
+// TLSA RR. See RFC 6698.
+type TLSA struct {
+	Hdr          RR_Header
+	Usage        uint8
+	Selector     uint8
+	MatchingType uint8
+	Certificate  string `dns:"hex"`
+}
+
+func (rr *TLSA) String() string {
+	return rr.Hdr.String() +
+		strconv.Itoa(int(rr.Usage)) +
+		" " + strconv.Itoa(int(rr.Selector)) +
+		" " + strconv.Itoa(int(rr.MatchingType)) +
+		" " + rr.Certificate
+}
+
+// SMIMEA RR. See RFC 8162.
+type SMIMEA struct {
+	Hdr          RR_Header
+	Usage        uint8
+	Selector     uint8
+	MatchingType uint8
+	Certificate  string `dns:"hex"`
+}
+
+func (rr *SMIMEA) String() string {
+	s := rr.Hdr.String() +
+		strconv.Itoa(int(rr.Usage)) +
+		" " + strconv.Itoa(int(rr.Selector)) +
+		" " + strconv.Itoa(int(rr.MatchingType))
+
+	// Every Nth char needs a space on this output. If we output
+	// this as one giant line, we can't read it can in because in some cases
+	// the cert length overflows scan.maxTok (2048).
+	sx := splitN(rr.Certificate, 1024) // conservative value here
+	s += " " + strings.Join(sx, " ")
+	return s
+}
+
+// HIP RR. See RFC 8005.
+type HIP struct {
+	Hdr                RR_Header
+	HitLength          uint8
+	PublicKeyAlgorithm uint8
+	PublicKeyLength    uint16
+	Hit                string   `dns:"size-hex:HitLength"`
+	PublicKey          string   `dns:"size-base64:PublicKeyLength"`
+	RendezvousServers  []string `dns:"domain-name"`
+}
+
+func (rr *HIP) String() string {
+	s := rr.Hdr.String() +
+		strconv.Itoa(int(rr.PublicKeyAlgorithm)) +
+		" " + rr.Hit +
+		" " + rr.PublicKey
+	for _, d := range rr.RendezvousServers {
+		s += " " + sprintName(d)
+	}
+	return s
+}
+
+// NINFO RR. See https://www.iana.org/assignments/dns-parameters/NINFO/ninfo-completed-template.
+type NINFO struct {
+	Hdr    RR_Header
+	ZSData []string `dns:"txt"`
+}
+
+func (rr *NINFO) String() string { return rr.Hdr.String() + sprintTxt(rr.ZSData) }
+
+// NID RR. See RFC RFC 6742.
+type NID struct {
+	Hdr        RR_Header
+	Preference uint16
+	NodeID     uint64
+}
+
+func (rr *NID) String() string {
+	s := rr.Hdr.String() + strconv.Itoa(int(rr.Preference))
+	node := fmt.Sprintf("%0.16x", rr.NodeID)
+	s += " " + node[0:4] + ":" + node[4:8] + ":" + node[8:12] + ":" + node[12:16]
+	return s
+}
+
+// L32 RR, See RFC 6742.
+type L32 struct {
+	Hdr        RR_Header
+	Preference uint16
+	Locator32  net.IP `dns:"a"`
+}
+
+func (rr *L32) String() string {
+	if rr.Locator32 == nil {
+		return rr.Hdr.String() + strconv.Itoa(int(rr.Preference))
+	}
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) +
+		" " + rr.Locator32.String()
+}
+
+// L64 RR, See RFC 6742.
+type L64 struct {
+	Hdr        RR_Header
+	Preference uint16
+	Locator64  uint64
+}
+
+func (rr *L64) String() string {
+	s := rr.Hdr.String() + strconv.Itoa(int(rr.Preference))
+	node := fmt.Sprintf("%0.16X", rr.Locator64)
+	s += " " + node[0:4] + ":" + node[4:8] + ":" + node[8:12] + ":" + node[12:16]
+	return s
+}
+
+// LP RR. See RFC 6742.
+type LP struct {
+	Hdr        RR_Header
+	Preference uint16
+	Fqdn       string `dns:"domain-name"`
+}
+
+func (rr *LP) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Preference)) + " " + sprintName(rr.Fqdn)
+}
+
+// EUI48 RR. See RFC 7043.
+type EUI48 struct {
+	Hdr     RR_Header
+	Address uint64 `dns:"uint48"`
+}
+
+func (rr *EUI48) String() string { return rr.Hdr.String() + euiToString(rr.Address, 48) }
+
+// EUI64 RR. See RFC 7043.
+type EUI64 struct {
+	Hdr     RR_Header
+	Address uint64
+}
+
+func (rr *EUI64) String() string { return rr.Hdr.String() + euiToString(rr.Address, 64) }
+
+// CAA RR. See RFC 6844.
+type CAA struct {
+	Hdr   RR_Header
+	Flag  uint8
+	Tag   string
+	Value string `dns:"octet"`
+}
+
+func (rr *CAA) String() string {
+	return rr.Hdr.String() + strconv.Itoa(int(rr.Flag)) + " " + rr.Tag + " " + sprintTxtOctet(rr.Value)
+}
+
+// UID RR. Deprecated, IANA-Reserved.
+type UID struct {
+	Hdr RR_Header
+	Uid uint32
+}
+
+func (rr *UID) String() string { return rr.Hdr.String() + strconv.FormatInt(int64(rr.Uid), 10) }
+
+// GID RR. Deprecated, IANA-Reserved.
+type GID struct {
+	Hdr RR_Header
+	Gid uint32
+}
+
+func (rr *GID) String() string { return rr.Hdr.String() + strconv.FormatInt(int64(rr.Gid), 10) }
+
+// UINFO RR. Deprecated, IANA-Reserved.
+type UINFO struct {
+	Hdr   RR_Header
+	Uinfo string
+}
+
+func (rr *UINFO) String() string { return rr.Hdr.String() + sprintTxt([]string{rr.Uinfo}) }
+
+// EID RR. See http://ana-3.lcs.mit.edu/~jnc/nimrod/dns.txt.
+type EID struct {
+	Hdr      RR_Header
+	Endpoint string `dns:"hex"`
+}
+
+func (rr *EID) String() string { return rr.Hdr.String() + strings.ToUpper(rr.Endpoint) }
+
+// NIMLOC RR. See http://ana-3.lcs.mit.edu/~jnc/nimrod/dns.txt.
+type NIMLOC struct {
+	Hdr     RR_Header
+	Locator string `dns:"hex"`
+}
+
+func (rr *NIMLOC) String() string { return rr.Hdr.String() + strings.ToUpper(rr.Locator) }
+
+// OPENPGPKEY RR. See RFC 7929.
+type OPENPGPKEY struct {
+	Hdr       RR_Header
+	PublicKey string `dns:"base64"`
+}
+
+func (rr *OPENPGPKEY) String() string { return rr.Hdr.String() + rr.PublicKey }
+
+// CSYNC RR. See RFC 7477.
+type CSYNC struct {
+	Hdr        RR_Header
+	Serial     uint32
+	Flags      uint16
+	TypeBitMap []uint16 `dns:"nsec"`
+}
+
+func (rr *CSYNC) String() string {
+	s := rr.Hdr.String() + strconv.FormatInt(int64(rr.Serial), 10) + " " + strconv.Itoa(int(rr.Flags))
+
+	for i := 0; i < len(rr.TypeBitMap); i++ {
+		s += " " + Type(rr.TypeBitMap[i]).String()
+	}
+	return s
+}
+
+func (rr *CSYNC) len() int {
+	l := rr.Hdr.len() + 4 + 2
+	lastwindow := uint32(2 ^ 32 + 1)
+	for _, t := range rr.TypeBitMap {
+		window := t / 256
+		if uint32(window) != lastwindow {
+			l += 1 + 32
+		}
+		lastwindow = uint32(window)
+	}
+	return l
+}
+
+// TimeToString translates the RRSIG's incep. and expir. times to the
+// string representation used when printing the record.
+// It takes serial arithmetic (RFC 1982) into account.
+func TimeToString(t uint32) string {
+	mod := ((int64(t) - time.Now().Unix()) / year68) - 1
+	if mod < 0 {
+		mod = 0
+	}
+	ti := time.Unix(int64(t)-(mod*year68), 0).UTC()
+	return ti.Format("20060102150405")
+}
+
+// StringToTime translates the RRSIG's incep. and expir. times from
+// string values like "20110403154150" to an 32 bit integer.
+// It takes serial arithmetic (RFC 1982) into account.
+func StringToTime(s string) (uint32, error) {
+	t, err := time.Parse("20060102150405", s)
+	if err != nil {
+		return 0, err
+	}
+	mod := (t.Unix() / year68) - 1
+	if mod < 0 {
+		mod = 0
+	}
+	return uint32(t.Unix() - (mod * year68)), nil
+}
+
+// saltToString converts a NSECX salt to uppercase and returns "-" when it is empty.
+func saltToString(s string) string {
+	if len(s) == 0 {
+		return "-"
+	}
+	return strings.ToUpper(s)
+}
+
+func euiToString(eui uint64, bits int) (hex string) {
+	switch bits {
+	case 64:
+		hex = fmt.Sprintf("%16.16x", eui)
+		hex = hex[0:2] + "-" + hex[2:4] + "-" + hex[4:6] + "-" + hex[6:8] +
+			"-" + hex[8:10] + "-" + hex[10:12] + "-" + hex[12:14] + "-" + hex[14:16]
+	case 48:
+		hex = fmt.Sprintf("%12.12x", eui)
+		hex = hex[0:2] + "-" + hex[2:4] + "-" + hex[4:6] + "-" + hex[6:8] +
+			"-" + hex[8:10] + "-" + hex[10:12]
+	}
+	return
+}
+
+// copyIP returns a copy of ip.
+func copyIP(ip net.IP) net.IP {
+	p := make(net.IP, len(ip))
+	copy(p, ip)
+	return p
+}
+
+// SplitN splits a string into N sized string chunks.
+// This might become an exported function once.
+func splitN(s string, n int) []string {
+	if len(s) < n {
+		return []string{s}
+	}
+	sx := []string{}
+	p, i := 0, n
+	for {
+		if i <= len(s) {
+			sx = append(sx, s[p:i])
+		} else {
+			sx = append(sx, s[p:])
+			break
+
+		}
+		p, i = p+n, i+n
+	}
+
+	return sx
+}
diff --git a/vendor/github.com/miekg/dns/types_generate.go b/vendor/github.com/miekg/dns/types_generate.go
new file mode 100644
index 0000000000..8703cce647
--- /dev/null
+++ b/vendor/github.com/miekg/dns/types_generate.go
@@ -0,0 +1,272 @@
+//+build ignore
+
+// types_generate.go is meant to run with go generate. It will use
+// go/{importer,types} to track down all the RR struct types. Then for each type
+// it will generate conversion tables (TypeToRR and TypeToString) and banal
+// methods (len, Header, copy) based on the struct tags. The generated source is
+// written to ztypes.go, and is meant to be checked into git.
+package main
+
+import (
+	"bytes"
+	"fmt"
+	"go/format"
+	"go/importer"
+	"go/types"
+	"log"
+	"os"
+	"strings"
+	"text/template"
+)
+
+var skipLen = map[string]struct{}{
+	"NSEC":  {},
+	"NSEC3": {},
+	"OPT":   {},
+	"CSYNC": {},
+}
+
+var packageHdr = `
+// Code generated by "go run types_generate.go"; DO NOT EDIT.
+
+package dns
+
+import (
+	"encoding/base64"
+	"net"
+)
+
+`
+
+var TypeToRR = template.Must(template.New("TypeToRR").Parse(`
+// TypeToRR is a map of constructors for each RR type.
+var TypeToRR = map[uint16]func() RR{
+{{range .}}{{if ne . "RFC3597"}}  Type{{.}}:  func() RR { return new({{.}}) },
+{{end}}{{end}}                    }
+
+`))
+
+var typeToString = template.Must(template.New("typeToString").Parse(`
+// TypeToString is a map of strings for each RR type.
+var TypeToString = map[uint16]string{
+{{range .}}{{if ne . "NSAPPTR"}}  Type{{.}}: "{{.}}",
+{{end}}{{end}}                    TypeNSAPPTR:    "NSAP-PTR",
+}
+
+`))
+
+var headerFunc = template.Must(template.New("headerFunc").Parse(`
+{{range .}}  func (rr *{{.}}) Header() *RR_Header { return &rr.Hdr }
+{{end}}
+
+`))
+
+// getTypeStruct will take a type and the package scope, and return the
+// (innermost) struct if the type is considered a RR type (currently defined as
+// those structs beginning with a RR_Header, could be redefined as implementing
+// the RR interface). The bool return value indicates if embedded structs were
+// resolved.
+func getTypeStruct(t types.Type, scope *types.Scope) (*types.Struct, bool) {
+	st, ok := t.Underlying().(*types.Struct)
+	if !ok {
+		return nil, false
+	}
+	if st.Field(0).Type() == scope.Lookup("RR_Header").Type() {
+		return st, false
+	}
+	if st.Field(0).Anonymous() {
+		st, _ := getTypeStruct(st.Field(0).Type(), scope)
+		return st, true
+	}
+	return nil, false
+}
+
+func main() {
+	// Import and type-check the package
+	pkg, err := importer.Default().Import("github.com/miekg/dns")
+	fatalIfErr(err)
+	scope := pkg.Scope()
+
+	// Collect constants like TypeX
+	var numberedTypes []string
+	for _, name := range scope.Names() {
+		o := scope.Lookup(name)
+		if o == nil || !o.Exported() {
+			continue
+		}
+		b, ok := o.Type().(*types.Basic)
+		if !ok || b.Kind() != types.Uint16 {
+			continue
+		}
+		if !strings.HasPrefix(o.Name(), "Type") {
+			continue
+		}
+		name := strings.TrimPrefix(o.Name(), "Type")
+		if name == "PrivateRR" {
+			continue
+		}
+		numberedTypes = append(numberedTypes, name)
+	}
+
+	// Collect actual types (*X)
+	var namedTypes []string
+	for _, name := range scope.Names() {
+		o := scope.Lookup(name)
+		if o == nil || !o.Exported() {
+			continue
+		}
+		if st, _ := getTypeStruct(o.Type(), scope); st == nil {
+			continue
+		}
+		if name == "PrivateRR" {
+			continue
+		}
+
+		// Check if corresponding TypeX exists
+		if scope.Lookup("Type"+o.Name()) == nil && o.Name() != "RFC3597" {
+			log.Fatalf("Constant Type%s does not exist.", o.Name())
+		}
+
+		namedTypes = append(namedTypes, o.Name())
+	}
+
+	b := &bytes.Buffer{}
+	b.WriteString(packageHdr)
+
+	// Generate TypeToRR
+	fatalIfErr(TypeToRR.Execute(b, namedTypes))
+
+	// Generate typeToString
+	fatalIfErr(typeToString.Execute(b, numberedTypes))
+
+	// Generate headerFunc
+	fatalIfErr(headerFunc.Execute(b, namedTypes))
+
+	// Generate len()
+	fmt.Fprint(b, "// len() functions\n")
+	for _, name := range namedTypes {
+		if _, ok := skipLen[name]; ok {
+			continue
+		}
+		o := scope.Lookup(name)
+		st, isEmbedded := getTypeStruct(o.Type(), scope)
+		if isEmbedded {
+			continue
+		}
+		fmt.Fprintf(b, "func (rr *%s) len() int {\n", name)
+		fmt.Fprintf(b, "l := rr.Hdr.len()\n")
+		for i := 1; i < st.NumFields(); i++ {
+			o := func(s string) { fmt.Fprintf(b, s, st.Field(i).Name()) }
+
+			if _, ok := st.Field(i).Type().(*types.Slice); ok {
+				switch st.Tag(i) {
+				case `dns:"-"`:
+					// ignored
+				case `dns:"cdomain-name"`, `dns:"domain-name"`, `dns:"txt"`:
+					o("for _, x := range rr.%s { l += len(x) + 1 }\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+				}
+				continue
+			}
+
+			switch {
+			case st.Tag(i) == `dns:"-"`:
+				// ignored
+			case st.Tag(i) == `dns:"cdomain-name"`, st.Tag(i) == `dns:"domain-name"`:
+				o("l += len(rr.%s) + 1\n")
+			case st.Tag(i) == `dns:"octet"`:
+				o("l += len(rr.%s)\n")
+			case strings.HasPrefix(st.Tag(i), `dns:"size-base64`):
+				fallthrough
+			case st.Tag(i) == `dns:"base64"`:
+				o("l += base64.StdEncoding.DecodedLen(len(rr.%s))\n")
+			case strings.HasPrefix(st.Tag(i), `dns:"size-hex:`): // this has an extra field where the length is stored
+				o("l += len(rr.%s)/2\n")
+			case strings.HasPrefix(st.Tag(i), `dns:"size-hex`):
+				fallthrough
+			case st.Tag(i) == `dns:"hex"`:
+				o("l += len(rr.%s)/2 + 1\n")
+			case st.Tag(i) == `dns:"a"`:
+				o("l += net.IPv4len // %s\n")
+			case st.Tag(i) == `dns:"aaaa"`:
+				o("l += net.IPv6len // %s\n")
+			case st.Tag(i) == `dns:"txt"`:
+				o("for _, t := range rr.%s { l += len(t) + 1 }\n")
+			case st.Tag(i) == `dns:"uint48"`:
+				o("l += 6 // %s\n")
+			case st.Tag(i) == "":
+				switch st.Field(i).Type().(*types.Basic).Kind() {
+				case types.Uint8:
+					o("l++ // %s\n")
+				case types.Uint16:
+					o("l += 2 // %s\n")
+				case types.Uint32:
+					o("l += 4 // %s\n")
+				case types.Uint64:
+					o("l += 8 // %s\n")
+				case types.String:
+					o("l += len(rr.%s) + 1\n")
+				default:
+					log.Fatalln(name, st.Field(i).Name())
+				}
+			default:
+				log.Fatalln(name, st.Field(i).Name(), st.Tag(i))
+			}
+		}
+		fmt.Fprintf(b, "return l }\n")
+	}
+
+	// Generate copy()
+	fmt.Fprint(b, "// copy() functions\n")
+	for _, name := range namedTypes {
+		o := scope.Lookup(name)
+		st, isEmbedded := getTypeStruct(o.Type(), scope)
+		if isEmbedded {
+			continue
+		}
+		fmt.Fprintf(b, "func (rr *%s) copy() RR {\n", name)
+		fields := []string{"*rr.Hdr.copyHeader()"}
+		for i := 1; i < st.NumFields(); i++ {
+			f := st.Field(i).Name()
+			if sl, ok := st.Field(i).Type().(*types.Slice); ok {
+				t := sl.Underlying().String()
+				t = strings.TrimPrefix(t, "[]")
+				if strings.Contains(t, ".") {
+					splits := strings.Split(t, ".")
+					t = splits[len(splits)-1]
+				}
+				fmt.Fprintf(b, "%s := make([]%s, len(rr.%s)); copy(%s, rr.%s)\n",
+					f, t, f, f, f)
+				fields = append(fields, f)
+				continue
+			}
+			if st.Field(i).Type().String() == "net.IP" {
+				fields = append(fields, "copyIP(rr."+f+")")
+				continue
+			}
+			fields = append(fields, "rr."+f)
+		}
+		fmt.Fprintf(b, "return &%s{%s}\n", name, strings.Join(fields, ","))
+		fmt.Fprintf(b, "}\n")
+	}
+
+	// gofmt
+	res, err := format.Source(b.Bytes())
+	if err != nil {
+		b.WriteTo(os.Stderr)
+		log.Fatal(err)
+	}
+
+	// write result
+	f, err := os.Create("ztypes.go")
+	fatalIfErr(err)
+	defer f.Close()
+	f.Write(res)
+}
+
+func fatalIfErr(err error) {
+	if err != nil {
+		log.Fatal(err)
+	}
+}
diff --git a/vendor/github.com/miekg/dns/udp.go b/vendor/github.com/miekg/dns/udp.go
new file mode 100644
index 0000000000..f3f31a7ac9
--- /dev/null
+++ b/vendor/github.com/miekg/dns/udp.go
@@ -0,0 +1,89 @@
+// +build !windows
+
+package dns
+
+import (
+	"net"
+
+	"golang.org/x/net/ipv4"
+	"golang.org/x/net/ipv6"
+)
+
+// SessionUDP holds the remote address and the associated
+// out-of-band data.
+type SessionUDP struct {
+	raddr   *net.UDPAddr
+	context []byte
+}
+
+// RemoteAddr returns the remote network address.
+func (s *SessionUDP) RemoteAddr() net.Addr { return s.raddr }
+
+// ReadFromSessionUDP acts just like net.UDPConn.ReadFrom(), but returns a session object instead of a
+// net.UDPAddr.
+func ReadFromSessionUDP(conn *net.UDPConn, b []byte) (int, *SessionUDP, error) {
+	oob := make([]byte, 40)
+	n, oobn, _, raddr, err := conn.ReadMsgUDP(b, oob)
+	if err != nil {
+		return n, nil, err
+	}
+	return n, &SessionUDP{raddr, oob[:oobn]}, err
+}
+
+// WriteToSessionUDP acts just like net.UDPConn.WriteTo(), but uses a *SessionUDP instead of a net.Addr.
+func WriteToSessionUDP(conn *net.UDPConn, b []byte, session *SessionUDP) (int, error) {
+	oob := correctSource(session.context)
+	n, _, err := conn.WriteMsgUDP(b, oob, session.raddr)
+	return n, err
+}
+
+func setUDPSocketOptions(conn *net.UDPConn) error {
+	// Try setting the flags for both families and ignore the errors unless they
+	// both error.
+	err6 := ipv6.NewPacketConn(conn).SetControlMessage(ipv6.FlagDst|ipv6.FlagInterface, true)
+	err4 := ipv4.NewPacketConn(conn).SetControlMessage(ipv4.FlagDst|ipv4.FlagInterface, true)
+	if err6 != nil && err4 != nil {
+		return err4
+	}
+	return nil
+}
+
+// parseDstFromOOB takes oob data and returns the destination IP.
+func parseDstFromOOB(oob []byte) net.IP {
+	// Start with IPv6 and then fallback to IPv4
+	// TODO(fastest963): Figure out a way to prefer one or the other. Looking at
+	// the lvl of the header for a 0 or 41 isn't cross-platform.
+	var dst net.IP
+	cm6 := new(ipv6.ControlMessage)
+	if cm6.Parse(oob) == nil {
+		dst = cm6.Dst
+	}
+	if dst == nil {
+		cm4 := new(ipv4.ControlMessage)
+		if cm4.Parse(oob) == nil {
+			dst = cm4.Dst
+		}
+	}
+	return dst
+}
+
+// correctSource takes oob data and returns new oob data with the Src equal to the Dst
+func correctSource(oob []byte) []byte {
+	dst := parseDstFromOOB(oob)
+	if dst == nil {
+		return nil
+	}
+	// If the dst is definitely an IPv6, then use ipv6's ControlMessage to
+	// respond otherwise use ipv4's because ipv6's marshal ignores ipv4
+	// addresses.
+	if dst.To4() == nil {
+		cm := new(ipv6.ControlMessage)
+		cm.Src = dst
+		oob = cm.Marshal()
+	} else {
+		cm := new(ipv4.ControlMessage)
+		cm.Src = dst
+		oob = cm.Marshal()
+	}
+	return oob
+}
diff --git a/vendor/github.com/miekg/dns/udp_windows.go b/vendor/github.com/miekg/dns/udp_windows.go
new file mode 100644
index 0000000000..6778c3c6cf
--- /dev/null
+++ b/vendor/github.com/miekg/dns/udp_windows.go
@@ -0,0 +1,37 @@
+// +build windows
+
+package dns
+
+import "net"
+
+// SessionUDP holds the remote address
+type SessionUDP struct {
+	raddr *net.UDPAddr
+}
+
+// RemoteAddr returns the remote network address.
+func (s *SessionUDP) RemoteAddr() net.Addr { return s.raddr }
+
+// ReadFromSessionUDP acts just like net.UDPConn.ReadFrom(), but returns a session object instead of a
+// net.UDPAddr.
+// TODO(fastest963): Once go1.10 is released, use ReadMsgUDP.
+func ReadFromSessionUDP(conn *net.UDPConn, b []byte) (int, *SessionUDP, error) {
+	n, raddr, err := conn.ReadFrom(b)
+	if err != nil {
+		return n, nil, err
+	}
+	session := &SessionUDP{raddr.(*net.UDPAddr)}
+	return n, session, err
+}
+
+// WriteToSessionUDP acts just like net.UDPConn.WriteTo(), but uses a *SessionUDP instead of a net.Addr.
+// TODO(fastest963): Once go1.10 is released, use WriteMsgUDP.
+func WriteToSessionUDP(conn *net.UDPConn, b []byte, session *SessionUDP) (int, error) {
+	n, err := conn.WriteTo(b, session.raddr)
+	return n, err
+}
+
+// TODO(fastest963): Once go1.10 is released and we can use *MsgUDP methods
+// use the standard method in udp.go for these.
+func setUDPSocketOptions(*net.UDPConn) error { return nil }
+func parseDstFromOOB([]byte, net.IP) net.IP  { return nil }
diff --git a/vendor/github.com/miekg/dns/update.go b/vendor/github.com/miekg/dns/update.go
new file mode 100644
index 0000000000..e90c5c968e
--- /dev/null
+++ b/vendor/github.com/miekg/dns/update.go
@@ -0,0 +1,106 @@
+package dns
+
+// NameUsed sets the RRs in the prereq section to
+// "Name is in use" RRs. RFC 2136 section 2.4.4.
+func (u *Msg) NameUsed(rr []RR) {
+	if u.Answer == nil {
+		u.Answer = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Answer = append(u.Answer, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: TypeANY, Class: ClassANY}})
+	}
+}
+
+// NameNotUsed sets the RRs in the prereq section to
+// "Name is in not use" RRs. RFC 2136 section 2.4.5.
+func (u *Msg) NameNotUsed(rr []RR) {
+	if u.Answer == nil {
+		u.Answer = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Answer = append(u.Answer, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: TypeANY, Class: ClassNONE}})
+	}
+}
+
+// Used sets the RRs in the prereq section to
+// "RRset exists (value dependent -- with rdata)" RRs. RFC 2136 section 2.4.2.
+func (u *Msg) Used(rr []RR) {
+	if len(u.Question) == 0 {
+		panic("dns: empty question section")
+	}
+	if u.Answer == nil {
+		u.Answer = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		r.Header().Class = u.Question[0].Qclass
+		u.Answer = append(u.Answer, r)
+	}
+}
+
+// RRsetUsed sets the RRs in the prereq section to
+// "RRset exists (value independent -- no rdata)" RRs. RFC 2136 section 2.4.1.
+func (u *Msg) RRsetUsed(rr []RR) {
+	if u.Answer == nil {
+		u.Answer = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Answer = append(u.Answer, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: r.Header().Rrtype, Class: ClassANY}})
+	}
+}
+
+// RRsetNotUsed sets the RRs in the prereq section to
+// "RRset does not exist" RRs. RFC 2136 section 2.4.3.
+func (u *Msg) RRsetNotUsed(rr []RR) {
+	if u.Answer == nil {
+		u.Answer = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Answer = append(u.Answer, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: r.Header().Rrtype, Class: ClassNONE}})
+	}
+}
+
+// Insert creates a dynamic update packet that adds an complete RRset, see RFC 2136 section 2.5.1.
+func (u *Msg) Insert(rr []RR) {
+	if len(u.Question) == 0 {
+		panic("dns: empty question section")
+	}
+	if u.Ns == nil {
+		u.Ns = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		r.Header().Class = u.Question[0].Qclass
+		u.Ns = append(u.Ns, r)
+	}
+}
+
+// RemoveRRset creates a dynamic update packet that deletes an RRset, see RFC 2136 section 2.5.2.
+func (u *Msg) RemoveRRset(rr []RR) {
+	if u.Ns == nil {
+		u.Ns = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Ns = append(u.Ns, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: r.Header().Rrtype, Class: ClassANY}})
+	}
+}
+
+// RemoveName creates a dynamic update packet that deletes all RRsets of a name, see RFC 2136 section 2.5.3
+func (u *Msg) RemoveName(rr []RR) {
+	if u.Ns == nil {
+		u.Ns = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		u.Ns = append(u.Ns, &ANY{Hdr: RR_Header{Name: r.Header().Name, Ttl: 0, Rrtype: TypeANY, Class: ClassANY}})
+	}
+}
+
+// Remove creates a dynamic update packet deletes RR from a RRSset, see RFC 2136 section 2.5.4
+func (u *Msg) Remove(rr []RR) {
+	if u.Ns == nil {
+		u.Ns = make([]RR, 0, len(rr))
+	}
+	for _, r := range rr {
+		r.Header().Class = ClassNONE
+		r.Header().Ttl = 0
+		u.Ns = append(u.Ns, r)
+	}
+}
diff --git a/vendor/github.com/miekg/dns/version.go b/vendor/github.com/miekg/dns/version.go
new file mode 100644
index 0000000000..e746fee5b0
--- /dev/null
+++ b/vendor/github.com/miekg/dns/version.go
@@ -0,0 +1,15 @@
+package dns
+
+import "fmt"
+
+// Version is current version of this library.
+var Version = V{1, 0, 5}
+
+// V holds the version of this library.
+type V struct {
+	Major, Minor, Patch int
+}
+
+func (v V) String() string {
+	return fmt.Sprintf("%d.%d.%d", v.Major, v.Minor, v.Patch)
+}
diff --git a/vendor/github.com/miekg/dns/xfr.go b/vendor/github.com/miekg/dns/xfr.go
new file mode 100644
index 0000000000..5d0ff5c8a2
--- /dev/null
+++ b/vendor/github.com/miekg/dns/xfr.go
@@ -0,0 +1,260 @@
+package dns
+
+import (
+	"fmt"
+	"time"
+)
+
+// Envelope is used when doing a zone transfer with a remote server.
+type Envelope struct {
+	RR    []RR  // The set of RRs in the answer section of the xfr reply message.
+	Error error // If something went wrong, this contains the error.
+}
+
+// A Transfer defines parameters that are used during a zone transfer.
+type Transfer struct {
+	*Conn
+	DialTimeout    time.Duration     // net.DialTimeout, defaults to 2 seconds
+	ReadTimeout    time.Duration     // net.Conn.SetReadTimeout value for connections, defaults to 2 seconds
+	WriteTimeout   time.Duration     // net.Conn.SetWriteTimeout value for connections, defaults to 2 seconds
+	TsigSecret     map[string]string // Secret(s) for Tsig map[<zonename>]<base64 secret>, zonename must be in canonical form (lowercase, fqdn, see RFC 4034 Section 6.2)
+	tsigTimersOnly bool
+}
+
+// Think we need to away to stop the transfer
+
+// In performs an incoming transfer with the server in a.
+// If you would like to set the source IP, or some other attribute
+// of a Dialer for a Transfer, you can do so by specifying the attributes
+// in the Transfer.Conn:
+//
+//	d := net.Dialer{LocalAddr: transfer_source}
+//	con, err := d.Dial("tcp", master)
+//	dnscon := &dns.Conn{Conn:con}
+//	transfer = &dns.Transfer{Conn: dnscon}
+//	channel, err := transfer.In(message, master)
+//
+func (t *Transfer) In(q *Msg, a string) (env chan *Envelope, err error) {
+	timeout := dnsTimeout
+	if t.DialTimeout != 0 {
+		timeout = t.DialTimeout
+	}
+	if t.Conn == nil {
+		t.Conn, err = DialTimeout("tcp", a, timeout)
+		if err != nil {
+			return nil, err
+		}
+	}
+	if err := t.WriteMsg(q); err != nil {
+		return nil, err
+	}
+	env = make(chan *Envelope)
+	go func() {
+		if q.Question[0].Qtype == TypeAXFR {
+			go t.inAxfr(q, env)
+			return
+		}
+		if q.Question[0].Qtype == TypeIXFR {
+			go t.inIxfr(q, env)
+			return
+		}
+	}()
+	return env, nil
+}
+
+func (t *Transfer) inAxfr(q *Msg, c chan *Envelope) {
+	first := true
+	defer t.Close()
+	defer close(c)
+	timeout := dnsTimeout
+	if t.ReadTimeout != 0 {
+		timeout = t.ReadTimeout
+	}
+	for {
+		t.Conn.SetReadDeadline(time.Now().Add(timeout))
+		in, err := t.ReadMsg()
+		if err != nil {
+			c <- &Envelope{nil, err}
+			return
+		}
+		if q.Id != in.Id {
+			c <- &Envelope{in.Answer, ErrId}
+			return
+		}
+		if first {
+			if in.Rcode != RcodeSuccess {
+				c <- &Envelope{in.Answer, &Error{err: fmt.Sprintf(errXFR, in.Rcode)}}
+				return
+			}
+			if !isSOAFirst(in) {
+				c <- &Envelope{in.Answer, ErrSoa}
+				return
+			}
+			first = !first
+			// only one answer that is SOA, receive more
+			if len(in.Answer) == 1 {
+				t.tsigTimersOnly = true
+				c <- &Envelope{in.Answer, nil}
+				continue
+			}
+		}
+
+		if !first {
+			t.tsigTimersOnly = true // Subsequent envelopes use this.
+			if isSOALast(in) {
+				c <- &Envelope{in.Answer, nil}
+				return
+			}
+			c <- &Envelope{in.Answer, nil}
+		}
+	}
+}
+
+func (t *Transfer) inIxfr(q *Msg, c chan *Envelope) {
+	serial := uint32(0) // The first serial seen is the current server serial
+	axfr := true
+	n := 0
+	qser := q.Ns[0].(*SOA).Serial
+	defer t.Close()
+	defer close(c)
+	timeout := dnsTimeout
+	if t.ReadTimeout != 0 {
+		timeout = t.ReadTimeout
+	}
+	for {
+		t.SetReadDeadline(time.Now().Add(timeout))
+		in, err := t.ReadMsg()
+		if err != nil {
+			c <- &Envelope{nil, err}
+			return
+		}
+		if q.Id != in.Id {
+			c <- &Envelope{in.Answer, ErrId}
+			return
+		}
+		if in.Rcode != RcodeSuccess {
+			c <- &Envelope{in.Answer, &Error{err: fmt.Sprintf(errXFR, in.Rcode)}}
+			return
+		}
+		if n == 0 {
+			// Check if the returned answer is ok
+			if !isSOAFirst(in) {
+				c <- &Envelope{in.Answer, ErrSoa}
+				return
+			}
+			// This serial is important
+			serial = in.Answer[0].(*SOA).Serial
+			// Check if there are no changes in zone
+			if qser >= serial {
+				c <- &Envelope{in.Answer, nil}
+				return
+			}
+		}
+		// Now we need to check each message for SOA records, to see what we need to do
+		t.tsigTimersOnly = true
+		for _, rr := range in.Answer {
+			if v, ok := rr.(*SOA); ok {
+				if v.Serial == serial {
+					n++
+					// quit if it's a full axfr or the the servers' SOA is repeated the third time
+					if axfr && n == 2 || n == 3 {
+						c <- &Envelope{in.Answer, nil}
+						return
+					}
+				} else if axfr {
+					// it's an ixfr
+					axfr = false
+				}
+			}
+		}
+		c <- &Envelope{in.Answer, nil}
+	}
+}
+
+// Out performs an outgoing transfer with the client connecting in w.
+// Basic use pattern:
+//
+//	ch := make(chan *dns.Envelope)
+//	tr := new(dns.Transfer)
+//	go tr.Out(w, r, ch)
+//	ch <- &dns.Envelope{RR: []dns.RR{soa, rr1, rr2, rr3, soa}}
+//	close(ch)
+//	w.Hijack()
+//	// w.Close() // Client closes connection
+//
+// The server is responsible for sending the correct sequence of RRs through the
+// channel ch.
+func (t *Transfer) Out(w ResponseWriter, q *Msg, ch chan *Envelope) error {
+	for x := range ch {
+		r := new(Msg)
+		// Compress?
+		r.SetReply(q)
+		r.Authoritative = true
+		// assume it fits TODO(miek): fix
+		r.Answer = append(r.Answer, x.RR...)
+		if err := w.WriteMsg(r); err != nil {
+			return err
+		}
+	}
+	w.TsigTimersOnly(true)
+	return nil
+}
+
+// ReadMsg reads a message from the transfer connection t.
+func (t *Transfer) ReadMsg() (*Msg, error) {
+	m := new(Msg)
+	p := make([]byte, MaxMsgSize)
+	n, err := t.Read(p)
+	if err != nil && n == 0 {
+		return nil, err
+	}
+	p = p[:n]
+	if err := m.Unpack(p); err != nil {
+		return nil, err
+	}
+	if ts := m.IsTsig(); ts != nil && t.TsigSecret != nil {
+		if _, ok := t.TsigSecret[ts.Hdr.Name]; !ok {
+			return m, ErrSecret
+		}
+		// Need to work on the original message p, as that was used to calculate the tsig.
+		err = TsigVerify(p, t.TsigSecret[ts.Hdr.Name], t.tsigRequestMAC, t.tsigTimersOnly)
+		t.tsigRequestMAC = ts.MAC
+	}
+	return m, err
+}
+
+// WriteMsg writes a message through the transfer connection t.
+func (t *Transfer) WriteMsg(m *Msg) (err error) {
+	var out []byte
+	if ts := m.IsTsig(); ts != nil && t.TsigSecret != nil {
+		if _, ok := t.TsigSecret[ts.Hdr.Name]; !ok {
+			return ErrSecret
+		}
+		out, t.tsigRequestMAC, err = TsigGenerate(m, t.TsigSecret[ts.Hdr.Name], t.tsigRequestMAC, t.tsigTimersOnly)
+	} else {
+		out, err = m.Pack()
+	}
+	if err != nil {
+		return err
+	}
+	if _, err = t.Write(out); err != nil {
+		return err
+	}
+	return nil
+}
+
+func isSOAFirst(in *Msg) bool {
+	if len(in.Answer) > 0 {
+		return in.Answer[0].Header().Rrtype == TypeSOA
+	}
+	return false
+}
+
+func isSOALast(in *Msg) bool {
+	if len(in.Answer) > 0 {
+		return in.Answer[len(in.Answer)-1].Header().Rrtype == TypeSOA
+	}
+	return false
+}
+
+const errXFR = "bad xfr rcode: %d"
diff --git a/vendor/github.com/miekg/dns/zcompress.go b/vendor/github.com/miekg/dns/zcompress.go
new file mode 100644
index 0000000000..c2503204dd
--- /dev/null
+++ b/vendor/github.com/miekg/dns/zcompress.go
@@ -0,0 +1,118 @@
+// Code generated by "go run compress_generate.go"; DO NOT EDIT.
+
+package dns
+
+func compressionLenHelperType(c map[string]int, r RR) {
+	switch x := r.(type) {
+	case *AFSDB:
+		compressionLenHelper(c, x.Hostname)
+	case *CNAME:
+		compressionLenHelper(c, x.Target)
+	case *DNAME:
+		compressionLenHelper(c, x.Target)
+	case *HIP:
+		for i := range x.RendezvousServers {
+			compressionLenHelper(c, x.RendezvousServers[i])
+		}
+	case *KX:
+		compressionLenHelper(c, x.Exchanger)
+	case *LP:
+		compressionLenHelper(c, x.Fqdn)
+	case *MB:
+		compressionLenHelper(c, x.Mb)
+	case *MD:
+		compressionLenHelper(c, x.Md)
+	case *MF:
+		compressionLenHelper(c, x.Mf)
+	case *MG:
+		compressionLenHelper(c, x.Mg)
+	case *MINFO:
+		compressionLenHelper(c, x.Rmail)
+		compressionLenHelper(c, x.Email)
+	case *MR:
+		compressionLenHelper(c, x.Mr)
+	case *MX:
+		compressionLenHelper(c, x.Mx)
+	case *NAPTR:
+		compressionLenHelper(c, x.Replacement)
+	case *NS:
+		compressionLenHelper(c, x.Ns)
+	case *NSAPPTR:
+		compressionLenHelper(c, x.Ptr)
+	case *NSEC:
+		compressionLenHelper(c, x.NextDomain)
+	case *PTR:
+		compressionLenHelper(c, x.Ptr)
+	case *PX:
+		compressionLenHelper(c, x.Map822)
+		compressionLenHelper(c, x.Mapx400)
+	case *RP:
+		compressionLenHelper(c, x.Mbox)
+		compressionLenHelper(c, x.Txt)
+	case *RRSIG:
+		compressionLenHelper(c, x.SignerName)
+	case *RT:
+		compressionLenHelper(c, x.Host)
+	case *SIG:
+		compressionLenHelper(c, x.SignerName)
+	case *SOA:
+		compressionLenHelper(c, x.Ns)
+		compressionLenHelper(c, x.Mbox)
+	case *SRV:
+		compressionLenHelper(c, x.Target)
+	case *TALINK:
+		compressionLenHelper(c, x.PreviousName)
+		compressionLenHelper(c, x.NextName)
+	case *TKEY:
+		compressionLenHelper(c, x.Algorithm)
+	case *TSIG:
+		compressionLenHelper(c, x.Algorithm)
+	}
+}
+
+func compressionLenSearchType(c map[string]int, r RR) (int, bool) {
+	switch x := r.(type) {
+	case *AFSDB:
+		k1, ok1 := compressionLenSearch(c, x.Hostname)
+		return k1, ok1
+	case *CNAME:
+		k1, ok1 := compressionLenSearch(c, x.Target)
+		return k1, ok1
+	case *MB:
+		k1, ok1 := compressionLenSearch(c, x.Mb)
+		return k1, ok1
+	case *MD:
+		k1, ok1 := compressionLenSearch(c, x.Md)
+		return k1, ok1
+	case *MF:
+		k1, ok1 := compressionLenSearch(c, x.Mf)
+		return k1, ok1
+	case *MG:
+		k1, ok1 := compressionLenSearch(c, x.Mg)
+		return k1, ok1
+	case *MINFO:
+		k1, ok1 := compressionLenSearch(c, x.Rmail)
+		k2, ok2 := compressionLenSearch(c, x.Email)
+		return k1 + k2, ok1 && ok2
+	case *MR:
+		k1, ok1 := compressionLenSearch(c, x.Mr)
+		return k1, ok1
+	case *MX:
+		k1, ok1 := compressionLenSearch(c, x.Mx)
+		return k1, ok1
+	case *NS:
+		k1, ok1 := compressionLenSearch(c, x.Ns)
+		return k1, ok1
+	case *PTR:
+		k1, ok1 := compressionLenSearch(c, x.Ptr)
+		return k1, ok1
+	case *RT:
+		k1, ok1 := compressionLenSearch(c, x.Host)
+		return k1, ok1
+	case *SOA:
+		k1, ok1 := compressionLenSearch(c, x.Ns)
+		k2, ok2 := compressionLenSearch(c, x.Mbox)
+		return k1 + k2, ok1 && ok2
+	}
+	return 0, false
+}
diff --git a/vendor/github.com/miekg/dns/zmsg.go b/vendor/github.com/miekg/dns/zmsg.go
new file mode 100644
index 0000000000..0d1f6f4daa
--- /dev/null
+++ b/vendor/github.com/miekg/dns/zmsg.go
@@ -0,0 +1,3615 @@
+// Code generated by "go run msg_generate.go"; DO NOT EDIT.
+
+package dns
+
+// pack*() functions
+
+func (rr *A) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packDataA(rr.A, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *AAAA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packDataAAAA(rr.AAAA, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *AFSDB) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Subtype, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Hostname, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *ANY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *AVC) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringTxt(rr.Txt, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CAA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Flag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Tag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringOctet(rr.Value, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CDNSKEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Protocol, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CDS) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.DigestType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Digest, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CERT) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Type, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.Certificate, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CNAME) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Target, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *CSYNC) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint32(rr.Serial, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packDataNsec(rr.TypeBitMap, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *DHCID) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringBase64(rr.Digest, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *DLV) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.DigestType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Digest, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *DNAME) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Target, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *DNSKEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Protocol, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *DS) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.DigestType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Digest, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *EID) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringHex(rr.Endpoint, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *EUI48) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint48(rr.Address, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *EUI64) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint64(rr.Address, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *GID) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint32(rr.Gid, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *GPOS) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packString(rr.Longitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Latitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Altitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *HINFO) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packString(rr.Cpu, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Os, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *HIP) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.HitLength, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.PublicKeyAlgorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.PublicKeyLength, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Hit, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packDataDomainNames(rr.RendezvousServers, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *KEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Protocol, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *KX) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Exchanger, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *L32) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packDataA(rr.Locator32, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *L64) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint64(rr.Locator64, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *LOC) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Version, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Size, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.HorizPre, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.VertPre, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Latitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Longitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Altitude, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *LP) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Fqdn, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MB) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Mb, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MD) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Md, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MF) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Mf, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MG) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Mg, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MINFO) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Rmail, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Email, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MR) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Mr, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *MX) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Mx, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NAPTR) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Order, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Service, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packString(rr.Regexp, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Replacement, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NID) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint64(rr.NodeID, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NIMLOC) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringHex(rr.Locator, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NINFO) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringTxt(rr.ZSData, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NS) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Ns, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NSAPPTR) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Ptr, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NSEC) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.NextDomain, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packDataNsec(rr.TypeBitMap, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NSEC3) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Hash, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Iterations, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.SaltLength, msg, off)
+	if err != nil {
+		return off, err
+	}
+	// Only pack salt if value is not "-", i.e. empty
+	if rr.Salt != "-" {
+		off, err = packStringHex(rr.Salt, msg, off)
+		if err != nil {
+			return off, err
+		}
+	}
+	off, err = packUint8(rr.HashLength, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase32(rr.NextDomain, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packDataNsec(rr.TypeBitMap, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *NSEC3PARAM) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Hash, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Iterations, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.SaltLength, msg, off)
+	if err != nil {
+		return off, err
+	}
+	// Only pack salt if value is not "-", i.e. empty
+	if rr.Salt != "-" {
+		off, err = packStringHex(rr.Salt, msg, off)
+		if err != nil {
+			return off, err
+		}
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *OPENPGPKEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *OPT) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packDataOpt(rr.Option, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *PTR) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Ptr, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *PX) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Map822, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Mapx400, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *RFC3597) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringHex(rr.Rdata, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *RKEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Flags, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Protocol, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.PublicKey, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *RP) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Mbox, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Txt, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *RRSIG) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.TypeCovered, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Labels, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.OrigTtl, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Expiration, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Inception, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.SignerName, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.Signature, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *RT) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Preference, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Host, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SIG) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.TypeCovered, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Labels, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.OrigTtl, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Expiration, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Inception, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.SignerName, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringBase64(rr.Signature, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SMIMEA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Usage, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Selector, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.MatchingType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Certificate, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SOA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Ns, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Mbox, msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Serial, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Refresh, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Retry, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Expire, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Minttl, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SPF) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringTxt(rr.Txt, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SRV) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Priority, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Weight, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Port, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.Target, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *SSHFP) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Type, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.FingerPrint, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.KeyTag, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Algorithm, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.DigestType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Digest, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TALINK) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.PreviousName, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = PackDomainName(rr.NextName, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TKEY) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Algorithm, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Inception, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint32(rr.Expiration, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Mode, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Error, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.KeySize, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Key, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.OtherLen, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.OtherData, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TLSA) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint8(rr.Usage, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.Selector, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint8(rr.MatchingType, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.Certificate, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TSIG) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = PackDomainName(rr.Algorithm, msg, off, compression, false)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint48(rr.TimeSigned, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Fudge, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.MACSize, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.MAC, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.OrigId, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Error, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.OtherLen, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringHex(rr.OtherData, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *TXT) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packStringTxt(rr.Txt, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *UID) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint32(rr.Uid, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *UINFO) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packString(rr.Uinfo, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *URI) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packUint16(rr.Priority, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packUint16(rr.Weight, msg, off)
+	if err != nil {
+		return off, err
+	}
+	off, err = packStringOctet(rr.Target, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+func (rr *X25) pack(msg []byte, off int, compression map[string]int, compress bool) (int, error) {
+	off, err := rr.Hdr.pack(msg, off, compression, compress)
+	if err != nil {
+		return off, err
+	}
+	headerEnd := off
+	off, err = packString(rr.PSDNAddress, msg, off)
+	if err != nil {
+		return off, err
+	}
+	rr.Header().Rdlength = uint16(off - headerEnd)
+	return off, nil
+}
+
+// unpack*() functions
+
+func unpackA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(A)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.A, off, err = unpackDataA(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackAAAA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(AAAA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.AAAA, off, err = unpackDataAAAA(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackAFSDB(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(AFSDB)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Subtype, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Hostname, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackANY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(ANY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	return rr, off, err
+}
+
+func unpackAVC(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(AVC)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Txt, off, err = unpackStringTxt(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCAA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CAA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Flag, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Tag, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Value, off, err = unpackStringOctet(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCDNSKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CDNSKEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Flags, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Protocol, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCDS(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CDS)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.DigestType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Digest, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCERT(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CERT)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Type, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Certificate, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCNAME(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CNAME)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Target, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackCSYNC(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(CSYNC)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Serial, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Flags, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.TypeBitMap, off, err = unpackDataNsec(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackDHCID(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(DHCID)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Digest, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackDLV(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(DLV)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.DigestType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Digest, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackDNAME(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(DNAME)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Target, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackDNSKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(DNSKEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Flags, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Protocol, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackDS(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(DS)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.DigestType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Digest, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackEID(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(EID)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Endpoint, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackEUI48(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(EUI48)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Address, off, err = unpackUint48(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackEUI64(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(EUI64)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Address, off, err = unpackUint64(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackGID(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(GID)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Gid, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackGPOS(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(GPOS)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Longitude, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Latitude, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Altitude, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackHINFO(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(HINFO)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Cpu, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Os, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackHIP(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(HIP)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.HitLength, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKeyAlgorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKeyLength, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Hit, off, err = unpackStringHex(msg, off, off+int(rr.HitLength))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, off+int(rr.PublicKeyLength))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.RendezvousServers, off, err = unpackDataDomainNames(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(KEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Flags, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Protocol, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackKX(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(KX)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Exchanger, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackL32(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(L32)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Locator32, off, err = unpackDataA(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackL64(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(L64)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Locator64, off, err = unpackUint64(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackLOC(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(LOC)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Version, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Size, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.HorizPre, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.VertPre, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Latitude, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Longitude, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Altitude, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackLP(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(LP)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Fqdn, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMB(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MB)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Mb, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMD(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MD)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Md, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMF(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MF)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Mf, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMG(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MG)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Mg, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMINFO(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MINFO)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Rmail, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Email, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMR(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MR)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Mr, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackMX(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(MX)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Mx, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNAPTR(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NAPTR)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Order, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Flags, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Service, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Regexp, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Replacement, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNID(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NID)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.NodeID, off, err = unpackUint64(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNIMLOC(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NIMLOC)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Locator, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNINFO(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NINFO)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.ZSData, off, err = unpackStringTxt(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNS(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NS)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Ns, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNSAPPTR(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NSAPPTR)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Ptr, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNSEC(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NSEC)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.NextDomain, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.TypeBitMap, off, err = unpackDataNsec(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNSEC3(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NSEC3)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Hash, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Flags, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Iterations, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.SaltLength, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Salt, off, err = unpackStringHex(msg, off, off+int(rr.SaltLength))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.HashLength, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.NextDomain, off, err = unpackStringBase32(msg, off, off+int(rr.HashLength))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.TypeBitMap, off, err = unpackDataNsec(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackNSEC3PARAM(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(NSEC3PARAM)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Hash, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Flags, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Iterations, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.SaltLength, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Salt, off, err = unpackStringHex(msg, off, off+int(rr.SaltLength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackOPENPGPKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(OPENPGPKEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackOPT(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(OPT)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Option, off, err = unpackDataOpt(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackPTR(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(PTR)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Ptr, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackPX(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(PX)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Map822, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Mapx400, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackRFC3597(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(RFC3597)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Rdata, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackRKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(RKEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Flags, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Protocol, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.PublicKey, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackRP(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(RP)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Mbox, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Txt, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackRRSIG(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(RRSIG)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.TypeCovered, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Labels, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.OrigTtl, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Expiration, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Inception, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.SignerName, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Signature, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackRT(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(RT)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Preference, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Host, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSIG(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SIG)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.TypeCovered, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Labels, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.OrigTtl, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Expiration, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Inception, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.SignerName, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Signature, off, err = unpackStringBase64(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSMIMEA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SMIMEA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Usage, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Selector, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.MatchingType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Certificate, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSOA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SOA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Ns, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Mbox, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Serial, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Refresh, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Retry, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Expire, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Minttl, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSPF(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SPF)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Txt, off, err = unpackStringTxt(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSRV(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SRV)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Priority, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Weight, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Port, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Target, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackSSHFP(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(SSHFP)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Type, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.FingerPrint, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.KeyTag, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Algorithm, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.DigestType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Digest, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTALINK(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TALINK)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.PreviousName, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.NextName, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTKEY(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TKEY)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Algorithm, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Inception, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Expiration, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Mode, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Error, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.KeySize, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Key, off, err = unpackStringHex(msg, off, off+int(rr.KeySize))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.OtherLen, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.OtherData, off, err = unpackStringHex(msg, off, off+int(rr.OtherLen))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTLSA(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TLSA)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Usage, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Selector, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.MatchingType, off, err = unpackUint8(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Certificate, off, err = unpackStringHex(msg, off, rdStart+int(rr.Hdr.Rdlength))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTSIG(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TSIG)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Algorithm, off, err = UnpackDomainName(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.TimeSigned, off, err = unpackUint48(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Fudge, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.MACSize, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.MAC, off, err = unpackStringHex(msg, off, off+int(rr.MACSize))
+	if err != nil {
+		return rr, off, err
+	}
+	rr.OrigId, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Error, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.OtherLen, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.OtherData, off, err = unpackStringHex(msg, off, off+int(rr.OtherLen))
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackTXT(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(TXT)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Txt, off, err = unpackStringTxt(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackUID(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(UID)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Uid, off, err = unpackUint32(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackUINFO(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(UINFO)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Uinfo, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackURI(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(URI)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.Priority, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Weight, off, err = unpackUint16(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	if off == len(msg) {
+		return rr, off, nil
+	}
+	rr.Target, off, err = unpackStringOctet(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+func unpackX25(h RR_Header, msg []byte, off int) (RR, int, error) {
+	rr := new(X25)
+	rr.Hdr = h
+	if noRdata(h) {
+		return rr, off, nil
+	}
+	var err error
+	rdStart := off
+	_ = rdStart
+
+	rr.PSDNAddress, off, err = unpackString(msg, off)
+	if err != nil {
+		return rr, off, err
+	}
+	return rr, off, err
+}
+
+var typeToUnpack = map[uint16]func(RR_Header, []byte, int) (RR, int, error){
+	TypeA:          unpackA,
+	TypeAAAA:       unpackAAAA,
+	TypeAFSDB:      unpackAFSDB,
+	TypeANY:        unpackANY,
+	TypeAVC:        unpackAVC,
+	TypeCAA:        unpackCAA,
+	TypeCDNSKEY:    unpackCDNSKEY,
+	TypeCDS:        unpackCDS,
+	TypeCERT:       unpackCERT,
+	TypeCNAME:      unpackCNAME,
+	TypeCSYNC:      unpackCSYNC,
+	TypeDHCID:      unpackDHCID,
+	TypeDLV:        unpackDLV,
+	TypeDNAME:      unpackDNAME,
+	TypeDNSKEY:     unpackDNSKEY,
+	TypeDS:         unpackDS,
+	TypeEID:        unpackEID,
+	TypeEUI48:      unpackEUI48,
+	TypeEUI64:      unpackEUI64,
+	TypeGID:        unpackGID,
+	TypeGPOS:       unpackGPOS,
+	TypeHINFO:      unpackHINFO,
+	TypeHIP:        unpackHIP,
+	TypeKEY:        unpackKEY,
+	TypeKX:         unpackKX,
+	TypeL32:        unpackL32,
+	TypeL64:        unpackL64,
+	TypeLOC:        unpackLOC,
+	TypeLP:         unpackLP,
+	TypeMB:         unpackMB,
+	TypeMD:         unpackMD,
+	TypeMF:         unpackMF,
+	TypeMG:         unpackMG,
+	TypeMINFO:      unpackMINFO,
+	TypeMR:         unpackMR,
+	TypeMX:         unpackMX,
+	TypeNAPTR:      unpackNAPTR,
+	TypeNID:        unpackNID,
+	TypeNIMLOC:     unpackNIMLOC,
+	TypeNINFO:      unpackNINFO,
+	TypeNS:         unpackNS,
+	TypeNSAPPTR:    unpackNSAPPTR,
+	TypeNSEC:       unpackNSEC,
+	TypeNSEC3:      unpackNSEC3,
+	TypeNSEC3PARAM: unpackNSEC3PARAM,
+	TypeOPENPGPKEY: unpackOPENPGPKEY,
+	TypeOPT:        unpackOPT,
+	TypePTR:        unpackPTR,
+	TypePX:         unpackPX,
+	TypeRKEY:       unpackRKEY,
+	TypeRP:         unpackRP,
+	TypeRRSIG:      unpackRRSIG,
+	TypeRT:         unpackRT,
+	TypeSIG:        unpackSIG,
+	TypeSMIMEA:     unpackSMIMEA,
+	TypeSOA:        unpackSOA,
+	TypeSPF:        unpackSPF,
+	TypeSRV:        unpackSRV,
+	TypeSSHFP:      unpackSSHFP,
+	TypeTA:         unpackTA,
+	TypeTALINK:     unpackTALINK,
+	TypeTKEY:       unpackTKEY,
+	TypeTLSA:       unpackTLSA,
+	TypeTSIG:       unpackTSIG,
+	TypeTXT:        unpackTXT,
+	TypeUID:        unpackUID,
+	TypeUINFO:      unpackUINFO,
+	TypeURI:        unpackURI,
+	TypeX25:        unpackX25,
+}
diff --git a/vendor/github.com/miekg/dns/ztypes.go b/vendor/github.com/miekg/dns/ztypes.go
new file mode 100644
index 0000000000..abd75dd918
--- /dev/null
+++ b/vendor/github.com/miekg/dns/ztypes.go
@@ -0,0 +1,863 @@
+// Code generated by "go run types_generate.go"; DO NOT EDIT.
+
+package dns
+
+import (
+	"encoding/base64"
+	"net"
+)
+
+// TypeToRR is a map of constructors for each RR type.
+var TypeToRR = map[uint16]func() RR{
+	TypeA:          func() RR { return new(A) },
+	TypeAAAA:       func() RR { return new(AAAA) },
+	TypeAFSDB:      func() RR { return new(AFSDB) },
+	TypeANY:        func() RR { return new(ANY) },
+	TypeAVC:        func() RR { return new(AVC) },
+	TypeCAA:        func() RR { return new(CAA) },
+	TypeCDNSKEY:    func() RR { return new(CDNSKEY) },
+	TypeCDS:        func() RR { return new(CDS) },
+	TypeCERT:       func() RR { return new(CERT) },
+	TypeCNAME:      func() RR { return new(CNAME) },
+	TypeCSYNC:      func() RR { return new(CSYNC) },
+	TypeDHCID:      func() RR { return new(DHCID) },
+	TypeDLV:        func() RR { return new(DLV) },
+	TypeDNAME:      func() RR { return new(DNAME) },
+	TypeDNSKEY:     func() RR { return new(DNSKEY) },
+	TypeDS:         func() RR { return new(DS) },
+	TypeEID:        func() RR { return new(EID) },
+	TypeEUI48:      func() RR { return new(EUI48) },
+	TypeEUI64:      func() RR { return new(EUI64) },
+	TypeGID:        func() RR { return new(GID) },
+	TypeGPOS:       func() RR { return new(GPOS) },
+	TypeHINFO:      func() RR { return new(HINFO) },
+	TypeHIP:        func() RR { return new(HIP) },
+	TypeKEY:        func() RR { return new(KEY) },
+	TypeKX:         func() RR { return new(KX) },
+	TypeL32:        func() RR { return new(L32) },
+	TypeL64:        func() RR { return new(L64) },
+	TypeLOC:        func() RR { return new(LOC) },
+	TypeLP:         func() RR { return new(LP) },
+	TypeMB:         func() RR { return new(MB) },
+	TypeMD:         func() RR { return new(MD) },
+	TypeMF:         func() RR { return new(MF) },
+	TypeMG:         func() RR { return new(MG) },
+	TypeMINFO:      func() RR { return new(MINFO) },
+	TypeMR:         func() RR { return new(MR) },
+	TypeMX:         func() RR { return new(MX) },
+	TypeNAPTR:      func() RR { return new(NAPTR) },
+	TypeNID:        func() RR { return new(NID) },
+	TypeNIMLOC:     func() RR { return new(NIMLOC) },
+	TypeNINFO:      func() RR { return new(NINFO) },
+	TypeNS:         func() RR { return new(NS) },
+	TypeNSAPPTR:    func() RR { return new(NSAPPTR) },
+	TypeNSEC:       func() RR { return new(NSEC) },
+	TypeNSEC3:      func() RR { return new(NSEC3) },
+	TypeNSEC3PARAM: func() RR { return new(NSEC3PARAM) },
+	TypeOPENPGPKEY: func() RR { return new(OPENPGPKEY) },
+	TypeOPT:        func() RR { return new(OPT) },
+	TypePTR:        func() RR { return new(PTR) },
+	TypePX:         func() RR { return new(PX) },
+	TypeRKEY:       func() RR { return new(RKEY) },
+	TypeRP:         func() RR { return new(RP) },
+	TypeRRSIG:      func() RR { return new(RRSIG) },
+	TypeRT:         func() RR { return new(RT) },
+	TypeSIG:        func() RR { return new(SIG) },
+	TypeSMIMEA:     func() RR { return new(SMIMEA) },
+	TypeSOA:        func() RR { return new(SOA) },
+	TypeSPF:        func() RR { return new(SPF) },
+	TypeSRV:        func() RR { return new(SRV) },
+	TypeSSHFP:      func() RR { return new(SSHFP) },
+	TypeTA:         func() RR { return new(TA) },
+	TypeTALINK:     func() RR { return new(TALINK) },
+	TypeTKEY:       func() RR { return new(TKEY) },
+	TypeTLSA:       func() RR { return new(TLSA) },
+	TypeTSIG:       func() RR { return new(TSIG) },
+	TypeTXT:        func() RR { return new(TXT) },
+	TypeUID:        func() RR { return new(UID) },
+	TypeUINFO:      func() RR { return new(UINFO) },
+	TypeURI:        func() RR { return new(URI) },
+	TypeX25:        func() RR { return new(X25) },
+}
+
+// TypeToString is a map of strings for each RR type.
+var TypeToString = map[uint16]string{
+	TypeA:          "A",
+	TypeAAAA:       "AAAA",
+	TypeAFSDB:      "AFSDB",
+	TypeANY:        "ANY",
+	TypeATMA:       "ATMA",
+	TypeAVC:        "AVC",
+	TypeAXFR:       "AXFR",
+	TypeCAA:        "CAA",
+	TypeCDNSKEY:    "CDNSKEY",
+	TypeCDS:        "CDS",
+	TypeCERT:       "CERT",
+	TypeCNAME:      "CNAME",
+	TypeCSYNC:      "CSYNC",
+	TypeDHCID:      "DHCID",
+	TypeDLV:        "DLV",
+	TypeDNAME:      "DNAME",
+	TypeDNSKEY:     "DNSKEY",
+	TypeDS:         "DS",
+	TypeEID:        "EID",
+	TypeEUI48:      "EUI48",
+	TypeEUI64:      "EUI64",
+	TypeGID:        "GID",
+	TypeGPOS:       "GPOS",
+	TypeHINFO:      "HINFO",
+	TypeHIP:        "HIP",
+	TypeISDN:       "ISDN",
+	TypeIXFR:       "IXFR",
+	TypeKEY:        "KEY",
+	TypeKX:         "KX",
+	TypeL32:        "L32",
+	TypeL64:        "L64",
+	TypeLOC:        "LOC",
+	TypeLP:         "LP",
+	TypeMAILA:      "MAILA",
+	TypeMAILB:      "MAILB",
+	TypeMB:         "MB",
+	TypeMD:         "MD",
+	TypeMF:         "MF",
+	TypeMG:         "MG",
+	TypeMINFO:      "MINFO",
+	TypeMR:         "MR",
+	TypeMX:         "MX",
+	TypeNAPTR:      "NAPTR",
+	TypeNID:        "NID",
+	TypeNIMLOC:     "NIMLOC",
+	TypeNINFO:      "NINFO",
+	TypeNS:         "NS",
+	TypeNSEC:       "NSEC",
+	TypeNSEC3:      "NSEC3",
+	TypeNSEC3PARAM: "NSEC3PARAM",
+	TypeNULL:       "NULL",
+	TypeNXT:        "NXT",
+	TypeNone:       "None",
+	TypeOPENPGPKEY: "OPENPGPKEY",
+	TypeOPT:        "OPT",
+	TypePTR:        "PTR",
+	TypePX:         "PX",
+	TypeRKEY:       "RKEY",
+	TypeRP:         "RP",
+	TypeRRSIG:      "RRSIG",
+	TypeRT:         "RT",
+	TypeReserved:   "Reserved",
+	TypeSIG:        "SIG",
+	TypeSMIMEA:     "SMIMEA",
+	TypeSOA:        "SOA",
+	TypeSPF:        "SPF",
+	TypeSRV:        "SRV",
+	TypeSSHFP:      "SSHFP",
+	TypeTA:         "TA",
+	TypeTALINK:     "TALINK",
+	TypeTKEY:       "TKEY",
+	TypeTLSA:       "TLSA",
+	TypeTSIG:       "TSIG",
+	TypeTXT:        "TXT",
+	TypeUID:        "UID",
+	TypeUINFO:      "UINFO",
+	TypeUNSPEC:     "UNSPEC",
+	TypeURI:        "URI",
+	TypeX25:        "X25",
+	TypeNSAPPTR:    "NSAP-PTR",
+}
+
+func (rr *A) Header() *RR_Header          { return &rr.Hdr }
+func (rr *AAAA) Header() *RR_Header       { return &rr.Hdr }
+func (rr *AFSDB) Header() *RR_Header      { return &rr.Hdr }
+func (rr *ANY) Header() *RR_Header        { return &rr.Hdr }
+func (rr *AVC) Header() *RR_Header        { return &rr.Hdr }
+func (rr *CAA) Header() *RR_Header        { return &rr.Hdr }
+func (rr *CDNSKEY) Header() *RR_Header    { return &rr.Hdr }
+func (rr *CDS) Header() *RR_Header        { return &rr.Hdr }
+func (rr *CERT) Header() *RR_Header       { return &rr.Hdr }
+func (rr *CNAME) Header() *RR_Header      { return &rr.Hdr }
+func (rr *CSYNC) Header() *RR_Header      { return &rr.Hdr }
+func (rr *DHCID) Header() *RR_Header      { return &rr.Hdr }
+func (rr *DLV) Header() *RR_Header        { return &rr.Hdr }
+func (rr *DNAME) Header() *RR_Header      { return &rr.Hdr }
+func (rr *DNSKEY) Header() *RR_Header     { return &rr.Hdr }
+func (rr *DS) Header() *RR_Header         { return &rr.Hdr }
+func (rr *EID) Header() *RR_Header        { return &rr.Hdr }
+func (rr *EUI48) Header() *RR_Header      { return &rr.Hdr }
+func (rr *EUI64) Header() *RR_Header      { return &rr.Hdr }
+func (rr *GID) Header() *RR_Header        { return &rr.Hdr }
+func (rr *GPOS) Header() *RR_Header       { return &rr.Hdr }
+func (rr *HINFO) Header() *RR_Header      { return &rr.Hdr }
+func (rr *HIP) Header() *RR_Header        { return &rr.Hdr }
+func (rr *KEY) Header() *RR_Header        { return &rr.Hdr }
+func (rr *KX) Header() *RR_Header         { return &rr.Hdr }
+func (rr *L32) Header() *RR_Header        { return &rr.Hdr }
+func (rr *L64) Header() *RR_Header        { return &rr.Hdr }
+func (rr *LOC) Header() *RR_Header        { return &rr.Hdr }
+func (rr *LP) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MB) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MD) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MF) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MG) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MINFO) Header() *RR_Header      { return &rr.Hdr }
+func (rr *MR) Header() *RR_Header         { return &rr.Hdr }
+func (rr *MX) Header() *RR_Header         { return &rr.Hdr }
+func (rr *NAPTR) Header() *RR_Header      { return &rr.Hdr }
+func (rr *NID) Header() *RR_Header        { return &rr.Hdr }
+func (rr *NIMLOC) Header() *RR_Header     { return &rr.Hdr }
+func (rr *NINFO) Header() *RR_Header      { return &rr.Hdr }
+func (rr *NS) Header() *RR_Header         { return &rr.Hdr }
+func (rr *NSAPPTR) Header() *RR_Header    { return &rr.Hdr }
+func (rr *NSEC) Header() *RR_Header       { return &rr.Hdr }
+func (rr *NSEC3) Header() *RR_Header      { return &rr.Hdr }
+func (rr *NSEC3PARAM) Header() *RR_Header { return &rr.Hdr }
+func (rr *OPENPGPKEY) Header() *RR_Header { return &rr.Hdr }
+func (rr *OPT) Header() *RR_Header        { return &rr.Hdr }
+func (rr *PTR) Header() *RR_Header        { return &rr.Hdr }
+func (rr *PX) Header() *RR_Header         { return &rr.Hdr }
+func (rr *RFC3597) Header() *RR_Header    { return &rr.Hdr }
+func (rr *RKEY) Header() *RR_Header       { return &rr.Hdr }
+func (rr *RP) Header() *RR_Header         { return &rr.Hdr }
+func (rr *RRSIG) Header() *RR_Header      { return &rr.Hdr }
+func (rr *RT) Header() *RR_Header         { return &rr.Hdr }
+func (rr *SIG) Header() *RR_Header        { return &rr.Hdr }
+func (rr *SMIMEA) Header() *RR_Header     { return &rr.Hdr }
+func (rr *SOA) Header() *RR_Header        { return &rr.Hdr }
+func (rr *SPF) Header() *RR_Header        { return &rr.Hdr }
+func (rr *SRV) Header() *RR_Header        { return &rr.Hdr }
+func (rr *SSHFP) Header() *RR_Header      { return &rr.Hdr }
+func (rr *TA) Header() *RR_Header         { return &rr.Hdr }
+func (rr *TALINK) Header() *RR_Header     { return &rr.Hdr }
+func (rr *TKEY) Header() *RR_Header       { return &rr.Hdr }
+func (rr *TLSA) Header() *RR_Header       { return &rr.Hdr }
+func (rr *TSIG) Header() *RR_Header       { return &rr.Hdr }
+func (rr *TXT) Header() *RR_Header        { return &rr.Hdr }
+func (rr *UID) Header() *RR_Header        { return &rr.Hdr }
+func (rr *UINFO) Header() *RR_Header      { return &rr.Hdr }
+func (rr *URI) Header() *RR_Header        { return &rr.Hdr }
+func (rr *X25) Header() *RR_Header        { return &rr.Hdr }
+
+// len() functions
+func (rr *A) len() int {
+	l := rr.Hdr.len()
+	l += net.IPv4len // A
+	return l
+}
+func (rr *AAAA) len() int {
+	l := rr.Hdr.len()
+	l += net.IPv6len // AAAA
+	return l
+}
+func (rr *AFSDB) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Subtype
+	l += len(rr.Hostname) + 1
+	return l
+}
+func (rr *ANY) len() int {
+	l := rr.Hdr.len()
+	return l
+}
+func (rr *AVC) len() int {
+	l := rr.Hdr.len()
+	for _, x := range rr.Txt {
+		l += len(x) + 1
+	}
+	return l
+}
+func (rr *CAA) len() int {
+	l := rr.Hdr.len()
+	l++ // Flag
+	l += len(rr.Tag) + 1
+	l += len(rr.Value)
+	return l
+}
+func (rr *CERT) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Type
+	l += 2 // KeyTag
+	l++    // Algorithm
+	l += base64.StdEncoding.DecodedLen(len(rr.Certificate))
+	return l
+}
+func (rr *CNAME) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Target) + 1
+	return l
+}
+func (rr *DHCID) len() int {
+	l := rr.Hdr.len()
+	l += base64.StdEncoding.DecodedLen(len(rr.Digest))
+	return l
+}
+func (rr *DNAME) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Target) + 1
+	return l
+}
+func (rr *DNSKEY) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Flags
+	l++    // Protocol
+	l++    // Algorithm
+	l += base64.StdEncoding.DecodedLen(len(rr.PublicKey))
+	return l
+}
+func (rr *DS) len() int {
+	l := rr.Hdr.len()
+	l += 2 // KeyTag
+	l++    // Algorithm
+	l++    // DigestType
+	l += len(rr.Digest)/2 + 1
+	return l
+}
+func (rr *EID) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Endpoint)/2 + 1
+	return l
+}
+func (rr *EUI48) len() int {
+	l := rr.Hdr.len()
+	l += 6 // Address
+	return l
+}
+func (rr *EUI64) len() int {
+	l := rr.Hdr.len()
+	l += 8 // Address
+	return l
+}
+func (rr *GID) len() int {
+	l := rr.Hdr.len()
+	l += 4 // Gid
+	return l
+}
+func (rr *GPOS) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Longitude) + 1
+	l += len(rr.Latitude) + 1
+	l += len(rr.Altitude) + 1
+	return l
+}
+func (rr *HINFO) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Cpu) + 1
+	l += len(rr.Os) + 1
+	return l
+}
+func (rr *HIP) len() int {
+	l := rr.Hdr.len()
+	l++    // HitLength
+	l++    // PublicKeyAlgorithm
+	l += 2 // PublicKeyLength
+	l += len(rr.Hit) / 2
+	l += base64.StdEncoding.DecodedLen(len(rr.PublicKey))
+	for _, x := range rr.RendezvousServers {
+		l += len(x) + 1
+	}
+	return l
+}
+func (rr *KX) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += len(rr.Exchanger) + 1
+	return l
+}
+func (rr *L32) len() int {
+	l := rr.Hdr.len()
+	l += 2           // Preference
+	l += net.IPv4len // Locator32
+	return l
+}
+func (rr *L64) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += 8 // Locator64
+	return l
+}
+func (rr *LOC) len() int {
+	l := rr.Hdr.len()
+	l++    // Version
+	l++    // Size
+	l++    // HorizPre
+	l++    // VertPre
+	l += 4 // Latitude
+	l += 4 // Longitude
+	l += 4 // Altitude
+	return l
+}
+func (rr *LP) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += len(rr.Fqdn) + 1
+	return l
+}
+func (rr *MB) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Mb) + 1
+	return l
+}
+func (rr *MD) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Md) + 1
+	return l
+}
+func (rr *MF) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Mf) + 1
+	return l
+}
+func (rr *MG) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Mg) + 1
+	return l
+}
+func (rr *MINFO) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Rmail) + 1
+	l += len(rr.Email) + 1
+	return l
+}
+func (rr *MR) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Mr) + 1
+	return l
+}
+func (rr *MX) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += len(rr.Mx) + 1
+	return l
+}
+func (rr *NAPTR) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Order
+	l += 2 // Preference
+	l += len(rr.Flags) + 1
+	l += len(rr.Service) + 1
+	l += len(rr.Regexp) + 1
+	l += len(rr.Replacement) + 1
+	return l
+}
+func (rr *NID) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += 8 // NodeID
+	return l
+}
+func (rr *NIMLOC) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Locator)/2 + 1
+	return l
+}
+func (rr *NINFO) len() int {
+	l := rr.Hdr.len()
+	for _, x := range rr.ZSData {
+		l += len(x) + 1
+	}
+	return l
+}
+func (rr *NS) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Ns) + 1
+	return l
+}
+func (rr *NSAPPTR) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Ptr) + 1
+	return l
+}
+func (rr *NSEC3PARAM) len() int {
+	l := rr.Hdr.len()
+	l++    // Hash
+	l++    // Flags
+	l += 2 // Iterations
+	l++    // SaltLength
+	l += len(rr.Salt) / 2
+	return l
+}
+func (rr *OPENPGPKEY) len() int {
+	l := rr.Hdr.len()
+	l += base64.StdEncoding.DecodedLen(len(rr.PublicKey))
+	return l
+}
+func (rr *PTR) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Ptr) + 1
+	return l
+}
+func (rr *PX) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += len(rr.Map822) + 1
+	l += len(rr.Mapx400) + 1
+	return l
+}
+func (rr *RFC3597) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Rdata)/2 + 1
+	return l
+}
+func (rr *RKEY) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Flags
+	l++    // Protocol
+	l++    // Algorithm
+	l += base64.StdEncoding.DecodedLen(len(rr.PublicKey))
+	return l
+}
+func (rr *RP) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Mbox) + 1
+	l += len(rr.Txt) + 1
+	return l
+}
+func (rr *RRSIG) len() int {
+	l := rr.Hdr.len()
+	l += 2 // TypeCovered
+	l++    // Algorithm
+	l++    // Labels
+	l += 4 // OrigTtl
+	l += 4 // Expiration
+	l += 4 // Inception
+	l += 2 // KeyTag
+	l += len(rr.SignerName) + 1
+	l += base64.StdEncoding.DecodedLen(len(rr.Signature))
+	return l
+}
+func (rr *RT) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Preference
+	l += len(rr.Host) + 1
+	return l
+}
+func (rr *SMIMEA) len() int {
+	l := rr.Hdr.len()
+	l++ // Usage
+	l++ // Selector
+	l++ // MatchingType
+	l += len(rr.Certificate)/2 + 1
+	return l
+}
+func (rr *SOA) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Ns) + 1
+	l += len(rr.Mbox) + 1
+	l += 4 // Serial
+	l += 4 // Refresh
+	l += 4 // Retry
+	l += 4 // Expire
+	l += 4 // Minttl
+	return l
+}
+func (rr *SPF) len() int {
+	l := rr.Hdr.len()
+	for _, x := range rr.Txt {
+		l += len(x) + 1
+	}
+	return l
+}
+func (rr *SRV) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Priority
+	l += 2 // Weight
+	l += 2 // Port
+	l += len(rr.Target) + 1
+	return l
+}
+func (rr *SSHFP) len() int {
+	l := rr.Hdr.len()
+	l++ // Algorithm
+	l++ // Type
+	l += len(rr.FingerPrint)/2 + 1
+	return l
+}
+func (rr *TA) len() int {
+	l := rr.Hdr.len()
+	l += 2 // KeyTag
+	l++    // Algorithm
+	l++    // DigestType
+	l += len(rr.Digest)/2 + 1
+	return l
+}
+func (rr *TALINK) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.PreviousName) + 1
+	l += len(rr.NextName) + 1
+	return l
+}
+func (rr *TKEY) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Algorithm) + 1
+	l += 4 // Inception
+	l += 4 // Expiration
+	l += 2 // Mode
+	l += 2 // Error
+	l += 2 // KeySize
+	l += len(rr.Key) / 2
+	l += 2 // OtherLen
+	l += len(rr.OtherData) / 2
+	return l
+}
+func (rr *TLSA) len() int {
+	l := rr.Hdr.len()
+	l++ // Usage
+	l++ // Selector
+	l++ // MatchingType
+	l += len(rr.Certificate)/2 + 1
+	return l
+}
+func (rr *TSIG) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Algorithm) + 1
+	l += 6 // TimeSigned
+	l += 2 // Fudge
+	l += 2 // MACSize
+	l += len(rr.MAC) / 2
+	l += 2 // OrigId
+	l += 2 // Error
+	l += 2 // OtherLen
+	l += len(rr.OtherData) / 2
+	return l
+}
+func (rr *TXT) len() int {
+	l := rr.Hdr.len()
+	for _, x := range rr.Txt {
+		l += len(x) + 1
+	}
+	return l
+}
+func (rr *UID) len() int {
+	l := rr.Hdr.len()
+	l += 4 // Uid
+	return l
+}
+func (rr *UINFO) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.Uinfo) + 1
+	return l
+}
+func (rr *URI) len() int {
+	l := rr.Hdr.len()
+	l += 2 // Priority
+	l += 2 // Weight
+	l += len(rr.Target)
+	return l
+}
+func (rr *X25) len() int {
+	l := rr.Hdr.len()
+	l += len(rr.PSDNAddress) + 1
+	return l
+}
+
+// copy() functions
+func (rr *A) copy() RR {
+	return &A{*rr.Hdr.copyHeader(), copyIP(rr.A)}
+}
+func (rr *AAAA) copy() RR {
+	return &AAAA{*rr.Hdr.copyHeader(), copyIP(rr.AAAA)}
+}
+func (rr *AFSDB) copy() RR {
+	return &AFSDB{*rr.Hdr.copyHeader(), rr.Subtype, rr.Hostname}
+}
+func (rr *ANY) copy() RR {
+	return &ANY{*rr.Hdr.copyHeader()}
+}
+func (rr *AVC) copy() RR {
+	Txt := make([]string, len(rr.Txt))
+	copy(Txt, rr.Txt)
+	return &AVC{*rr.Hdr.copyHeader(), Txt}
+}
+func (rr *CAA) copy() RR {
+	return &CAA{*rr.Hdr.copyHeader(), rr.Flag, rr.Tag, rr.Value}
+}
+func (rr *CERT) copy() RR {
+	return &CERT{*rr.Hdr.copyHeader(), rr.Type, rr.KeyTag, rr.Algorithm, rr.Certificate}
+}
+func (rr *CNAME) copy() RR {
+	return &CNAME{*rr.Hdr.copyHeader(), rr.Target}
+}
+func (rr *CSYNC) copy() RR {
+	TypeBitMap := make([]uint16, len(rr.TypeBitMap))
+	copy(TypeBitMap, rr.TypeBitMap)
+	return &CSYNC{*rr.Hdr.copyHeader(), rr.Serial, rr.Flags, TypeBitMap}
+}
+func (rr *DHCID) copy() RR {
+	return &DHCID{*rr.Hdr.copyHeader(), rr.Digest}
+}
+func (rr *DNAME) copy() RR {
+	return &DNAME{*rr.Hdr.copyHeader(), rr.Target}
+}
+func (rr *DNSKEY) copy() RR {
+	return &DNSKEY{*rr.Hdr.copyHeader(), rr.Flags, rr.Protocol, rr.Algorithm, rr.PublicKey}
+}
+func (rr *DS) copy() RR {
+	return &DS{*rr.Hdr.copyHeader(), rr.KeyTag, rr.Algorithm, rr.DigestType, rr.Digest}
+}
+func (rr *EID) copy() RR {
+	return &EID{*rr.Hdr.copyHeader(), rr.Endpoint}
+}
+func (rr *EUI48) copy() RR {
+	return &EUI48{*rr.Hdr.copyHeader(), rr.Address}
+}
+func (rr *EUI64) copy() RR {
+	return &EUI64{*rr.Hdr.copyHeader(), rr.Address}
+}
+func (rr *GID) copy() RR {
+	return &GID{*rr.Hdr.copyHeader(), rr.Gid}
+}
+func (rr *GPOS) copy() RR {
+	return &GPOS{*rr.Hdr.copyHeader(), rr.Longitude, rr.Latitude, rr.Altitude}
+}
+func (rr *HINFO) copy() RR {
+	return &HINFO{*rr.Hdr.copyHeader(), rr.Cpu, rr.Os}
+}
+func (rr *HIP) copy() RR {
+	RendezvousServers := make([]string, len(rr.RendezvousServers))
+	copy(RendezvousServers, rr.RendezvousServers)
+	return &HIP{*rr.Hdr.copyHeader(), rr.HitLength, rr.PublicKeyAlgorithm, rr.PublicKeyLength, rr.Hit, rr.PublicKey, RendezvousServers}
+}
+func (rr *KX) copy() RR {
+	return &KX{*rr.Hdr.copyHeader(), rr.Preference, rr.Exchanger}
+}
+func (rr *L32) copy() RR {
+	return &L32{*rr.Hdr.copyHeader(), rr.Preference, copyIP(rr.Locator32)}
+}
+func (rr *L64) copy() RR {
+	return &L64{*rr.Hdr.copyHeader(), rr.Preference, rr.Locator64}
+}
+func (rr *LOC) copy() RR {
+	return &LOC{*rr.Hdr.copyHeader(), rr.Version, rr.Size, rr.HorizPre, rr.VertPre, rr.Latitude, rr.Longitude, rr.Altitude}
+}
+func (rr *LP) copy() RR {
+	return &LP{*rr.Hdr.copyHeader(), rr.Preference, rr.Fqdn}
+}
+func (rr *MB) copy() RR {
+	return &MB{*rr.Hdr.copyHeader(), rr.Mb}
+}
+func (rr *MD) copy() RR {
+	return &MD{*rr.Hdr.copyHeader(), rr.Md}
+}
+func (rr *MF) copy() RR {
+	return &MF{*rr.Hdr.copyHeader(), rr.Mf}
+}
+func (rr *MG) copy() RR {
+	return &MG{*rr.Hdr.copyHeader(), rr.Mg}
+}
+func (rr *MINFO) copy() RR {
+	return &MINFO{*rr.Hdr.copyHeader(), rr.Rmail, rr.Email}
+}
+func (rr *MR) copy() RR {
+	return &MR{*rr.Hdr.copyHeader(), rr.Mr}
+}
+func (rr *MX) copy() RR {
+	return &MX{*rr.Hdr.copyHeader(), rr.Preference, rr.Mx}
+}
+func (rr *NAPTR) copy() RR {
+	return &NAPTR{*rr.Hdr.copyHeader(), rr.Order, rr.Preference, rr.Flags, rr.Service, rr.Regexp, rr.Replacement}
+}
+func (rr *NID) copy() RR {
+	return &NID{*rr.Hdr.copyHeader(), rr.Preference, rr.NodeID}
+}
+func (rr *NIMLOC) copy() RR {
+	return &NIMLOC{*rr.Hdr.copyHeader(), rr.Locator}
+}
+func (rr *NINFO) copy() RR {
+	ZSData := make([]string, len(rr.ZSData))
+	copy(ZSData, rr.ZSData)
+	return &NINFO{*rr.Hdr.copyHeader(), ZSData}
+}
+func (rr *NS) copy() RR {
+	return &NS{*rr.Hdr.copyHeader(), rr.Ns}
+}
+func (rr *NSAPPTR) copy() RR {
+	return &NSAPPTR{*rr.Hdr.copyHeader(), rr.Ptr}
+}
+func (rr *NSEC) copy() RR {
+	TypeBitMap := make([]uint16, len(rr.TypeBitMap))
+	copy(TypeBitMap, rr.TypeBitMap)
+	return &NSEC{*rr.Hdr.copyHeader(), rr.NextDomain, TypeBitMap}
+}
+func (rr *NSEC3) copy() RR {
+	TypeBitMap := make([]uint16, len(rr.TypeBitMap))
+	copy(TypeBitMap, rr.TypeBitMap)
+	return &NSEC3{*rr.Hdr.copyHeader(), rr.Hash, rr.Flags, rr.Iterations, rr.SaltLength, rr.Salt, rr.HashLength, rr.NextDomain, TypeBitMap}
+}
+func (rr *NSEC3PARAM) copy() RR {
+	return &NSEC3PARAM{*rr.Hdr.copyHeader(), rr.Hash, rr.Flags, rr.Iterations, rr.SaltLength, rr.Salt}
+}
+func (rr *OPENPGPKEY) copy() RR {
+	return &OPENPGPKEY{*rr.Hdr.copyHeader(), rr.PublicKey}
+}
+func (rr *OPT) copy() RR {
+	Option := make([]EDNS0, len(rr.Option))
+	copy(Option, rr.Option)
+	return &OPT{*rr.Hdr.copyHeader(), Option}
+}
+func (rr *PTR) copy() RR {
+	return &PTR{*rr.Hdr.copyHeader(), rr.Ptr}
+}
+func (rr *PX) copy() RR {
+	return &PX{*rr.Hdr.copyHeader(), rr.Preference, rr.Map822, rr.Mapx400}
+}
+func (rr *RFC3597) copy() RR {
+	return &RFC3597{*rr.Hdr.copyHeader(), rr.Rdata}
+}
+func (rr *RKEY) copy() RR {
+	return &RKEY{*rr.Hdr.copyHeader(), rr.Flags, rr.Protocol, rr.Algorithm, rr.PublicKey}
+}
+func (rr *RP) copy() RR {
+	return &RP{*rr.Hdr.copyHeader(), rr.Mbox, rr.Txt}
+}
+func (rr *RRSIG) copy() RR {
+	return &RRSIG{*rr.Hdr.copyHeader(), rr.TypeCovered, rr.Algorithm, rr.Labels, rr.OrigTtl, rr.Expiration, rr.Inception, rr.KeyTag, rr.SignerName, rr.Signature}
+}
+func (rr *RT) copy() RR {
+	return &RT{*rr.Hdr.copyHeader(), rr.Preference, rr.Host}
+}
+func (rr *SMIMEA) copy() RR {
+	return &SMIMEA{*rr.Hdr.copyHeader(), rr.Usage, rr.Selector, rr.MatchingType, rr.Certificate}
+}
+func (rr *SOA) copy() RR {
+	return &SOA{*rr.Hdr.copyHeader(), rr.Ns, rr.Mbox, rr.Serial, rr.Refresh, rr.Retry, rr.Expire, rr.Minttl}
+}
+func (rr *SPF) copy() RR {
+	Txt := make([]string, len(rr.Txt))
+	copy(Txt, rr.Txt)
+	return &SPF{*rr.Hdr.copyHeader(), Txt}
+}
+func (rr *SRV) copy() RR {
+	return &SRV{*rr.Hdr.copyHeader(), rr.Priority, rr.Weight, rr.Port, rr.Target}
+}
+func (rr *SSHFP) copy() RR {
+	return &SSHFP{*rr.Hdr.copyHeader(), rr.Algorithm, rr.Type, rr.FingerPrint}
+}
+func (rr *TA) copy() RR {
+	return &TA{*rr.Hdr.copyHeader(), rr.KeyTag, rr.Algorithm, rr.DigestType, rr.Digest}
+}
+func (rr *TALINK) copy() RR {
+	return &TALINK{*rr.Hdr.copyHeader(), rr.PreviousName, rr.NextName}
+}
+func (rr *TKEY) copy() RR {
+	return &TKEY{*rr.Hdr.copyHeader(), rr.Algorithm, rr.Inception, rr.Expiration, rr.Mode, rr.Error, rr.KeySize, rr.Key, rr.OtherLen, rr.OtherData}
+}
+func (rr *TLSA) copy() RR {
+	return &TLSA{*rr.Hdr.copyHeader(), rr.Usage, rr.Selector, rr.MatchingType, rr.Certificate}
+}
+func (rr *TSIG) copy() RR {
+	return &TSIG{*rr.Hdr.copyHeader(), rr.Algorithm, rr.TimeSigned, rr.Fudge, rr.MACSize, rr.MAC, rr.OrigId, rr.Error, rr.OtherLen, rr.OtherData}
+}
+func (rr *TXT) copy() RR {
+	Txt := make([]string, len(rr.Txt))
+	copy(Txt, rr.Txt)
+	return &TXT{*rr.Hdr.copyHeader(), Txt}
+}
+func (rr *UID) copy() RR {
+	return &UID{*rr.Hdr.copyHeader(), rr.Uid}
+}
+func (rr *UINFO) copy() RR {
+	return &UINFO{*rr.Hdr.copyHeader(), rr.Uinfo}
+}
+func (rr *URI) copy() RR {
+	return &URI{*rr.Hdr.copyHeader(), rr.Priority, rr.Weight, rr.Target}
+}
+func (rr *X25) copy() RR {
+	return &X25{*rr.Hdr.copyHeader(), rr.PSDNAddress}
+}
diff --git a/vendor/github.com/mitchellh/go-homedir/LICENSE b/vendor/github.com/mitchellh/go-homedir/LICENSE
new file mode 100644
index 0000000000..f9c841a51e
--- /dev/null
+++ b/vendor/github.com/mitchellh/go-homedir/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2013 Mitchell Hashimoto
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
diff --git a/vendor/github.com/mitchellh/go-homedir/homedir.go b/vendor/github.com/mitchellh/go-homedir/homedir.go
new file mode 100644
index 0000000000..47e1f9ef8e
--- /dev/null
+++ b/vendor/github.com/mitchellh/go-homedir/homedir.go
@@ -0,0 +1,137 @@
+package homedir
+
+import (
+	"bytes"
+	"errors"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"sync"
+)
+
+// DisableCache will disable caching of the home directory. Caching is enabled
+// by default.
+var DisableCache bool
+
+var homedirCache string
+var cacheLock sync.RWMutex
+
+// Dir returns the home directory for the executing user.
+//
+// This uses an OS-specific method for discovering the home directory.
+// An error is returned if a home directory cannot be detected.
+func Dir() (string, error) {
+	if !DisableCache {
+		cacheLock.RLock()
+		cached := homedirCache
+		cacheLock.RUnlock()
+		if cached != "" {
+			return cached, nil
+		}
+	}
+
+	cacheLock.Lock()
+	defer cacheLock.Unlock()
+
+	var result string
+	var err error
+	if runtime.GOOS == "windows" {
+		result, err = dirWindows()
+	} else {
+		// Unix-like system, so just assume Unix
+		result, err = dirUnix()
+	}
+
+	if err != nil {
+		return "", err
+	}
+	homedirCache = result
+	return result, nil
+}
+
+// Expand expands the path to include the home directory if the path
+// is prefixed with `~`. If it isn't prefixed with `~`, the path is
+// returned as-is.
+func Expand(path string) (string, error) {
+	if len(path) == 0 {
+		return path, nil
+	}
+
+	if path[0] != '~' {
+		return path, nil
+	}
+
+	if len(path) > 1 && path[1] != '/' && path[1] != '\\' {
+		return "", errors.New("cannot expand user-specific home dir")
+	}
+
+	dir, err := Dir()
+	if err != nil {
+		return "", err
+	}
+
+	return filepath.Join(dir, path[1:]), nil
+}
+
+func dirUnix() (string, error) {
+	// First prefer the HOME environmental variable
+	if home := os.Getenv("HOME"); home != "" {
+		return home, nil
+	}
+
+	// If that fails, try getent
+	var stdout bytes.Buffer
+	cmd := exec.Command("getent", "passwd", strconv.Itoa(os.Getuid()))
+	cmd.Stdout = &stdout
+	if err := cmd.Run(); err != nil {
+		// If the error is ErrNotFound, we ignore it. Otherwise, return it.
+		if err != exec.ErrNotFound {
+			return "", err
+		}
+	} else {
+		if passwd := strings.TrimSpace(stdout.String()); passwd != "" {
+			// username:password:uid:gid:gecos:home:shell
+			passwdParts := strings.SplitN(passwd, ":", 7)
+			if len(passwdParts) > 5 {
+				return passwdParts[5], nil
+			}
+		}
+	}
+
+	// If all else fails, try the shell
+	stdout.Reset()
+	cmd = exec.Command("sh", "-c", "cd && pwd")
+	cmd.Stdout = &stdout
+	if err := cmd.Run(); err != nil {
+		return "", err
+	}
+
+	result := strings.TrimSpace(stdout.String())
+	if result == "" {
+		return "", errors.New("blank output when reading home directory")
+	}
+
+	return result, nil
+}
+
+func dirWindows() (string, error) {
+	// First prefer the HOME environmental variable
+	if home := os.Getenv("HOME"); home != "" {
+		return home, nil
+	}
+
+	drive := os.Getenv("HOMEDRIVE")
+	path := os.Getenv("HOMEPATH")
+	home := drive + path
+	if drive == "" || path == "" {
+		home = os.Getenv("USERPROFILE")
+	}
+	if home == "" {
+		return "", errors.New("HOMEDRIVE, HOMEPATH, and USERPROFILE are blank")
+	}
+
+	return home, nil
+}
diff --git a/vendor/github.com/moby/buildkit/LICENSE b/vendor/github.com/moby/buildkit/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/moby/buildkit/identity/randomid.go b/vendor/github.com/moby/buildkit/identity/randomid.go
new file mode 100644
index 0000000000..0eb13527aa
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/identity/randomid.go
@@ -0,0 +1,53 @@
+package identity
+
+import (
+	cryptorand "crypto/rand"
+	"fmt"
+	"io"
+	"math/big"
+)
+
+var (
+	// idReader is used for random id generation. This declaration allows us to
+	// replace it for testing.
+	idReader = cryptorand.Reader
+)
+
+// parameters for random identifier generation. We can tweak this when there is
+// time for further analysis.
+const (
+	randomIDEntropyBytes = 17
+	randomIDBase         = 36
+
+	// To ensure that all identifiers are fixed length, we make sure they
+	// get padded out or truncated to 25 characters.
+	//
+	// For academics,  f5lxx1zz5pnorynqglhzmsp33  == 2^128 - 1. This value
+	// was calculated from floor(log(2^128-1, 36)) + 1.
+	//
+	// While 128 bits is the largest whole-byte size that fits into 25
+	// base-36 characters, we generate an extra byte of entropy to fill
+	// in the high bits, which would otherwise be 0. This gives us a more
+	// even distribution of the first character.
+	//
+	// See http://mathworld.wolfram.com/NumberLength.html for more information.
+	maxRandomIDLength = 25
+)
+
+// NewID generates a new identifier for use where random identifiers with low
+// collision probability are required.
+//
+// With the parameters in this package, the generated identifier will provide
+// ~129 bits of entropy encoded with base36. Leading padding is added if the
+// string is less 25 bytes. We do not intend to maintain this interface, so
+// identifiers should be treated opaquely.
+func NewID() string {
+	var p [randomIDEntropyBytes]byte
+
+	if _, err := io.ReadFull(idReader, p[:]); err != nil {
+		panic(fmt.Errorf("failed to read random bytes: %v", err))
+	}
+
+	p[0] |= 0x80 // set high bit to avoid the need for padding
+	return (&big.Int{}).SetBytes(p[:]).Text(randomIDBase)[1 : maxRandomIDLength+1]
+}
diff --git a/vendor/github.com/moby/buildkit/session/context.go b/vendor/github.com/moby/buildkit/session/context.go
new file mode 100644
index 0000000000..31a29f0868
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/context.go
@@ -0,0 +1,22 @@
+package session
+
+import "context"
+
+type contextKeyT string
+
+var contextKey = contextKeyT("buildkit/session-id")
+
+func NewContext(ctx context.Context, id string) context.Context {
+	if id != "" {
+		return context.WithValue(ctx, contextKey, id)
+	}
+	return ctx
+}
+
+func FromContext(ctx context.Context) string {
+	v := ctx.Value(contextKey)
+	if v == nil {
+		return ""
+	}
+	return v.(string)
+}
diff --git a/vendor/github.com/moby/buildkit/session/filesync/diffcopy.go b/vendor/github.com/moby/buildkit/session/filesync/diffcopy.go
new file mode 100644
index 0000000000..7f8bf3c0df
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/filesync/diffcopy.go
@@ -0,0 +1,113 @@
+package filesync
+
+import (
+	"bufio"
+	io "io"
+	"os"
+	"time"
+
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"github.com/tonistiigi/fsutil"
+	"google.golang.org/grpc"
+)
+
+func sendDiffCopy(stream grpc.Stream, dir string, includes, excludes []string, progress progressCb, _map func(*fsutil.Stat) bool) error {
+	return fsutil.Send(stream.Context(), stream, dir, &fsutil.WalkOpt{
+		ExcludePatterns: excludes,
+		IncludePatterns: includes,
+		Map:             _map,
+	}, progress)
+}
+
+func newStreamWriter(stream grpc.ClientStream) io.WriteCloser {
+	wc := &streamWriterCloser{ClientStream: stream}
+	return &bufferedWriteCloser{Writer: bufio.NewWriter(wc), Closer: wc}
+}
+
+type bufferedWriteCloser struct {
+	*bufio.Writer
+	io.Closer
+}
+
+func (bwc *bufferedWriteCloser) Close() error {
+	if err := bwc.Writer.Flush(); err != nil {
+		return err
+	}
+	return bwc.Closer.Close()
+}
+
+type streamWriterCloser struct {
+	grpc.ClientStream
+}
+
+func (wc *streamWriterCloser) Write(dt []byte) (int, error) {
+	if err := wc.ClientStream.SendMsg(&BytesMessage{Data: dt}); err != nil {
+		return 0, err
+	}
+	return len(dt), nil
+}
+
+func (wc *streamWriterCloser) Close() error {
+	if err := wc.ClientStream.CloseSend(); err != nil {
+		return err
+	}
+	// block until receiver is done
+	var bm BytesMessage
+	if err := wc.ClientStream.RecvMsg(&bm); err != io.EOF {
+		return err
+	}
+	return nil
+}
+
+func recvDiffCopy(ds grpc.Stream, dest string, cu CacheUpdater, progress progressCb) error {
+	st := time.Now()
+	defer func() {
+		logrus.Debugf("diffcopy took: %v", time.Since(st))
+	}()
+	var cf fsutil.ChangeFunc
+	var ch fsutil.ContentHasher
+	if cu != nil {
+		cu.MarkSupported(true)
+		cf = cu.HandleChange
+		ch = cu.ContentHasher()
+	}
+	return fsutil.Receive(ds.Context(), ds, dest, fsutil.ReceiveOpt{
+		NotifyHashed:  cf,
+		ContentHasher: ch,
+		ProgressCb:    progress,
+	})
+}
+
+func syncTargetDiffCopy(ds grpc.Stream, dest string) error {
+	if err := os.MkdirAll(dest, 0700); err != nil {
+		return err
+	}
+	return fsutil.Receive(ds.Context(), ds, dest, fsutil.ReceiveOpt{
+		Merge: true,
+		Filter: func() func(*fsutil.Stat) bool {
+			uid := os.Getuid()
+			gid := os.Getgid()
+			return func(st *fsutil.Stat) bool {
+				st.Uid = uint32(uid)
+				st.Gid = uint32(gid)
+				return true
+			}
+		}(),
+	})
+}
+
+func writeTargetFile(ds grpc.Stream, wc io.WriteCloser) error {
+	for {
+		bm := BytesMessage{}
+		if err := ds.RecvMsg(&bm); err != nil {
+			if errors.Cause(err) == io.EOF {
+				return nil
+			}
+			return err
+		}
+		if _, err := wc.Write(bm.Data); err != nil {
+			return err
+		}
+	}
+}
diff --git a/vendor/github.com/moby/buildkit/session/filesync/filesync.go b/vendor/github.com/moby/buildkit/session/filesync/filesync.go
new file mode 100644
index 0000000000..232a696d73
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/filesync/filesync.go
@@ -0,0 +1,281 @@
+package filesync
+
+import (
+	"context"
+	"fmt"
+	io "io"
+	"os"
+	"strings"
+
+	"github.com/moby/buildkit/session"
+	"github.com/pkg/errors"
+	"github.com/tonistiigi/fsutil"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
+)
+
+const (
+	keyOverrideExcludes = "override-excludes"
+	keyIncludePatterns  = "include-patterns"
+	keyExcludePatterns  = "exclude-patterns"
+	keyDirName          = "dir-name"
+)
+
+type fsSyncProvider struct {
+	dirs   map[string]SyncedDir
+	p      progressCb
+	doneCh chan error
+}
+
+type SyncedDir struct {
+	Name     string
+	Dir      string
+	Excludes []string
+	Map      func(*fsutil.Stat) bool
+}
+
+// NewFSSyncProvider creates a new provider for sending files from client
+func NewFSSyncProvider(dirs []SyncedDir) session.Attachable {
+	p := &fsSyncProvider{
+		dirs: map[string]SyncedDir{},
+	}
+	for _, d := range dirs {
+		p.dirs[d.Name] = d
+	}
+	return p
+}
+
+func (sp *fsSyncProvider) Register(server *grpc.Server) {
+	RegisterFileSyncServer(server, sp)
+}
+
+func (sp *fsSyncProvider) DiffCopy(stream FileSync_DiffCopyServer) error {
+	return sp.handle("diffcopy", stream)
+}
+func (sp *fsSyncProvider) TarStream(stream FileSync_TarStreamServer) error {
+	return sp.handle("tarstream", stream)
+}
+
+func (sp *fsSyncProvider) handle(method string, stream grpc.ServerStream) (retErr error) {
+	var pr *protocol
+	for _, p := range supportedProtocols {
+		if method == p.name && isProtoSupported(p.name) {
+			pr = &p
+			break
+		}
+	}
+	if pr == nil {
+		return errors.New("failed to negotiate protocol")
+	}
+
+	opts, _ := metadata.FromIncomingContext(stream.Context()) // if no metadata continue with empty object
+
+	dirName := ""
+	name, ok := opts[keyDirName]
+	if ok && len(name) > 0 {
+		dirName = name[0]
+	}
+
+	dir, ok := sp.dirs[dirName]
+	if !ok {
+		return errors.Errorf("no access allowed to dir %q", dirName)
+	}
+
+	excludes := opts[keyExcludePatterns]
+	if len(dir.Excludes) != 0 && (len(opts[keyOverrideExcludes]) == 0 || opts[keyOverrideExcludes][0] != "true") {
+		excludes = dir.Excludes
+	}
+	includes := opts[keyIncludePatterns]
+
+	var progress progressCb
+	if sp.p != nil {
+		progress = sp.p
+		sp.p = nil
+	}
+
+	var doneCh chan error
+	if sp.doneCh != nil {
+		doneCh = sp.doneCh
+		sp.doneCh = nil
+	}
+	err := pr.sendFn(stream, dir.Dir, includes, excludes, progress, dir.Map)
+	if doneCh != nil {
+		if err != nil {
+			doneCh <- err
+		}
+		close(doneCh)
+	}
+	return err
+}
+
+func (sp *fsSyncProvider) SetNextProgressCallback(f func(int, bool), doneCh chan error) {
+	sp.p = f
+	sp.doneCh = doneCh
+}
+
+type progressCb func(int, bool)
+
+type protocol struct {
+	name   string
+	sendFn func(stream grpc.Stream, srcDir string, includes, excludes []string, progress progressCb, _map func(*fsutil.Stat) bool) error
+	recvFn func(stream grpc.Stream, destDir string, cu CacheUpdater, progress progressCb) error
+}
+
+func isProtoSupported(p string) bool {
+	// TODO: this should be removed after testing if stability is confirmed
+	if override := os.Getenv("BUILD_STREAM_PROTOCOL"); override != "" {
+		return strings.EqualFold(p, override)
+	}
+	return true
+}
+
+var supportedProtocols = []protocol{
+	{
+		name:   "diffcopy",
+		sendFn: sendDiffCopy,
+		recvFn: recvDiffCopy,
+	},
+}
+
+// FSSendRequestOpt defines options for FSSend request
+type FSSendRequestOpt struct {
+	Name             string
+	IncludePatterns  []string
+	ExcludePatterns  []string
+	OverrideExcludes bool // deprecated: this is used by docker/cli for automatically loading .dockerignore from the directory
+	DestDir          string
+	CacheUpdater     CacheUpdater
+	ProgressCb       func(int, bool)
+}
+
+// CacheUpdater is an object capable of sending notifications for the cache hash changes
+type CacheUpdater interface {
+	MarkSupported(bool)
+	HandleChange(fsutil.ChangeKind, string, os.FileInfo, error) error
+	ContentHasher() fsutil.ContentHasher
+}
+
+// FSSync initializes a transfer of files
+func FSSync(ctx context.Context, c session.Caller, opt FSSendRequestOpt) error {
+	var pr *protocol
+	for _, p := range supportedProtocols {
+		if isProtoSupported(p.name) && c.Supports(session.MethodURL(_FileSync_serviceDesc.ServiceName, p.name)) {
+			pr = &p
+			break
+		}
+	}
+	if pr == nil {
+		return errors.New("no fssync handlers")
+	}
+
+	opts := make(map[string][]string)
+	if opt.OverrideExcludes {
+		opts[keyOverrideExcludes] = []string{"true"}
+	}
+
+	if opt.IncludePatterns != nil {
+		opts[keyIncludePatterns] = opt.IncludePatterns
+	}
+
+	if opt.ExcludePatterns != nil {
+		opts[keyExcludePatterns] = opt.ExcludePatterns
+	}
+
+	opts[keyDirName] = []string{opt.Name}
+
+	ctx, cancel := context.WithCancel(ctx)
+	defer cancel()
+
+	client := NewFileSyncClient(c.Conn())
+
+	var stream grpc.ClientStream
+
+	ctx = metadata.NewOutgoingContext(ctx, opts)
+
+	switch pr.name {
+	case "tarstream":
+		cc, err := client.TarStream(ctx)
+		if err != nil {
+			return err
+		}
+		stream = cc
+	case "diffcopy":
+		cc, err := client.DiffCopy(ctx)
+		if err != nil {
+			return err
+		}
+		stream = cc
+	default:
+		panic(fmt.Sprintf("invalid protocol: %q", pr.name))
+	}
+
+	return pr.recvFn(stream, opt.DestDir, opt.CacheUpdater, opt.ProgressCb)
+}
+
+// NewFSSyncTargetDir allows writing into a directory
+func NewFSSyncTargetDir(outdir string) session.Attachable {
+	p := &fsSyncTarget{
+		outdir: outdir,
+	}
+	return p
+}
+
+// NewFSSyncTarget allows writing into an io.WriteCloser
+func NewFSSyncTarget(w io.WriteCloser) session.Attachable {
+	p := &fsSyncTarget{
+		outfile: w,
+	}
+	return p
+}
+
+type fsSyncTarget struct {
+	outdir  string
+	outfile io.WriteCloser
+}
+
+func (sp *fsSyncTarget) Register(server *grpc.Server) {
+	RegisterFileSendServer(server, sp)
+}
+
+func (sp *fsSyncTarget) DiffCopy(stream FileSend_DiffCopyServer) error {
+	if sp.outdir != "" {
+		return syncTargetDiffCopy(stream, sp.outdir)
+	}
+	if sp.outfile == nil {
+		return errors.New("empty outfile and outdir")
+	}
+	defer sp.outfile.Close()
+	return writeTargetFile(stream, sp.outfile)
+}
+
+func CopyToCaller(ctx context.Context, srcPath string, c session.Caller, progress func(int, bool)) error {
+	method := session.MethodURL(_FileSend_serviceDesc.ServiceName, "diffcopy")
+	if !c.Supports(method) {
+		return errors.Errorf("method %s not supported by the client", method)
+	}
+
+	client := NewFileSendClient(c.Conn())
+
+	cc, err := client.DiffCopy(ctx)
+	if err != nil {
+		return err
+	}
+
+	return sendDiffCopy(cc, srcPath, nil, nil, progress, nil)
+}
+
+func CopyFileWriter(ctx context.Context, c session.Caller) (io.WriteCloser, error) {
+	method := session.MethodURL(_FileSend_serviceDesc.ServiceName, "diffcopy")
+	if !c.Supports(method) {
+		return nil, errors.Errorf("method %s not supported by the client", method)
+	}
+
+	client := NewFileSendClient(c.Conn())
+
+	cc, err := client.DiffCopy(ctx)
+	if err != nil {
+		return nil, err
+	}
+
+	return newStreamWriter(cc), nil
+}
diff --git a/vendor/github.com/moby/buildkit/session/filesync/filesync.pb.go b/vendor/github.com/moby/buildkit/session/filesync/filesync.pb.go
new file mode 100644
index 0000000000..30413db1e3
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/filesync/filesync.pb.go
@@ -0,0 +1,652 @@
+// Code generated by protoc-gen-gogo. DO NOT EDIT.
+// source: filesync.proto
+
+/*
+Package filesync is a generated protocol buffer package.
+
+It is generated from these files:
+	filesync.proto
+
+It has these top-level messages:
+	BytesMessage
+*/
+package filesync
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import bytes "bytes"
+
+import strings "strings"
+import reflect "reflect"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+// BytesMessage contains a chunk of byte data
+type BytesMessage struct {
+	Data []byte `protobuf:"bytes,1,opt,name=data,proto3" json:"data,omitempty"`
+}
+
+func (m *BytesMessage) Reset()                    { *m = BytesMessage{} }
+func (*BytesMessage) ProtoMessage()               {}
+func (*BytesMessage) Descriptor() ([]byte, []int) { return fileDescriptorFilesync, []int{0} }
+
+func (m *BytesMessage) GetData() []byte {
+	if m != nil {
+		return m.Data
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*BytesMessage)(nil), "moby.filesync.v1.BytesMessage")
+}
+func (this *BytesMessage) Equal(that interface{}) bool {
+	if that == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	}
+
+	that1, ok := that.(*BytesMessage)
+	if !ok {
+		that2, ok := that.(BytesMessage)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	} else if this == nil {
+		return false
+	}
+	if !bytes.Equal(this.Data, that1.Data) {
+		return false
+	}
+	return true
+}
+func (this *BytesMessage) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 5)
+	s = append(s, "&filesync.BytesMessage{")
+	s = append(s, "Data: "+fmt.Sprintf("%#v", this.Data)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringFilesync(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for FileSync service
+
+type FileSyncClient interface {
+	DiffCopy(ctx context.Context, opts ...grpc.CallOption) (FileSync_DiffCopyClient, error)
+	TarStream(ctx context.Context, opts ...grpc.CallOption) (FileSync_TarStreamClient, error)
+}
+
+type fileSyncClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewFileSyncClient(cc *grpc.ClientConn) FileSyncClient {
+	return &fileSyncClient{cc}
+}
+
+func (c *fileSyncClient) DiffCopy(ctx context.Context, opts ...grpc.CallOption) (FileSync_DiffCopyClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_FileSync_serviceDesc.Streams[0], c.cc, "/moby.filesync.v1.FileSync/DiffCopy", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &fileSyncDiffCopyClient{stream}
+	return x, nil
+}
+
+type FileSync_DiffCopyClient interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ClientStream
+}
+
+type fileSyncDiffCopyClient struct {
+	grpc.ClientStream
+}
+
+func (x *fileSyncDiffCopyClient) Send(m *BytesMessage) error {
+	return x.ClientStream.SendMsg(m)
+}
+
+func (x *fileSyncDiffCopyClient) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func (c *fileSyncClient) TarStream(ctx context.Context, opts ...grpc.CallOption) (FileSync_TarStreamClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_FileSync_serviceDesc.Streams[1], c.cc, "/moby.filesync.v1.FileSync/TarStream", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &fileSyncTarStreamClient{stream}
+	return x, nil
+}
+
+type FileSync_TarStreamClient interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ClientStream
+}
+
+type fileSyncTarStreamClient struct {
+	grpc.ClientStream
+}
+
+func (x *fileSyncTarStreamClient) Send(m *BytesMessage) error {
+	return x.ClientStream.SendMsg(m)
+}
+
+func (x *fileSyncTarStreamClient) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for FileSync service
+
+type FileSyncServer interface {
+	DiffCopy(FileSync_DiffCopyServer) error
+	TarStream(FileSync_TarStreamServer) error
+}
+
+func RegisterFileSyncServer(s *grpc.Server, srv FileSyncServer) {
+	s.RegisterService(&_FileSync_serviceDesc, srv)
+}
+
+func _FileSync_DiffCopy_Handler(srv interface{}, stream grpc.ServerStream) error {
+	return srv.(FileSyncServer).DiffCopy(&fileSyncDiffCopyServer{stream})
+}
+
+type FileSync_DiffCopyServer interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ServerStream
+}
+
+type fileSyncDiffCopyServer struct {
+	grpc.ServerStream
+}
+
+func (x *fileSyncDiffCopyServer) Send(m *BytesMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func (x *fileSyncDiffCopyServer) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ServerStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+func _FileSync_TarStream_Handler(srv interface{}, stream grpc.ServerStream) error {
+	return srv.(FileSyncServer).TarStream(&fileSyncTarStreamServer{stream})
+}
+
+type FileSync_TarStreamServer interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ServerStream
+}
+
+type fileSyncTarStreamServer struct {
+	grpc.ServerStream
+}
+
+func (x *fileSyncTarStreamServer) Send(m *BytesMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func (x *fileSyncTarStreamServer) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ServerStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+var _FileSync_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "moby.filesync.v1.FileSync",
+	HandlerType: (*FileSyncServer)(nil),
+	Methods:     []grpc.MethodDesc{},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "DiffCopy",
+			Handler:       _FileSync_DiffCopy_Handler,
+			ServerStreams: true,
+			ClientStreams: true,
+		},
+		{
+			StreamName:    "TarStream",
+			Handler:       _FileSync_TarStream_Handler,
+			ServerStreams: true,
+			ClientStreams: true,
+		},
+	},
+	Metadata: "filesync.proto",
+}
+
+// Client API for FileSend service
+
+type FileSendClient interface {
+	DiffCopy(ctx context.Context, opts ...grpc.CallOption) (FileSend_DiffCopyClient, error)
+}
+
+type fileSendClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewFileSendClient(cc *grpc.ClientConn) FileSendClient {
+	return &fileSendClient{cc}
+}
+
+func (c *fileSendClient) DiffCopy(ctx context.Context, opts ...grpc.CallOption) (FileSend_DiffCopyClient, error) {
+	stream, err := grpc.NewClientStream(ctx, &_FileSend_serviceDesc.Streams[0], c.cc, "/moby.filesync.v1.FileSend/DiffCopy", opts...)
+	if err != nil {
+		return nil, err
+	}
+	x := &fileSendDiffCopyClient{stream}
+	return x, nil
+}
+
+type FileSend_DiffCopyClient interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ClientStream
+}
+
+type fileSendDiffCopyClient struct {
+	grpc.ClientStream
+}
+
+func (x *fileSendDiffCopyClient) Send(m *BytesMessage) error {
+	return x.ClientStream.SendMsg(m)
+}
+
+func (x *fileSendDiffCopyClient) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ClientStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+// Server API for FileSend service
+
+type FileSendServer interface {
+	DiffCopy(FileSend_DiffCopyServer) error
+}
+
+func RegisterFileSendServer(s *grpc.Server, srv FileSendServer) {
+	s.RegisterService(&_FileSend_serviceDesc, srv)
+}
+
+func _FileSend_DiffCopy_Handler(srv interface{}, stream grpc.ServerStream) error {
+	return srv.(FileSendServer).DiffCopy(&fileSendDiffCopyServer{stream})
+}
+
+type FileSend_DiffCopyServer interface {
+	Send(*BytesMessage) error
+	Recv() (*BytesMessage, error)
+	grpc.ServerStream
+}
+
+type fileSendDiffCopyServer struct {
+	grpc.ServerStream
+}
+
+func (x *fileSendDiffCopyServer) Send(m *BytesMessage) error {
+	return x.ServerStream.SendMsg(m)
+}
+
+func (x *fileSendDiffCopyServer) Recv() (*BytesMessage, error) {
+	m := new(BytesMessage)
+	if err := x.ServerStream.RecvMsg(m); err != nil {
+		return nil, err
+	}
+	return m, nil
+}
+
+var _FileSend_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "moby.filesync.v1.FileSend",
+	HandlerType: (*FileSendServer)(nil),
+	Methods:     []grpc.MethodDesc{},
+	Streams: []grpc.StreamDesc{
+		{
+			StreamName:    "DiffCopy",
+			Handler:       _FileSend_DiffCopy_Handler,
+			ServerStreams: true,
+			ClientStreams: true,
+		},
+	},
+	Metadata: "filesync.proto",
+}
+
+func (m *BytesMessage) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *BytesMessage) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Data) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintFilesync(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	return i, nil
+}
+
+func encodeVarintFilesync(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *BytesMessage) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovFilesync(uint64(l))
+	}
+	return n
+}
+
+func sovFilesync(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozFilesync(x uint64) (n int) {
+	return sovFilesync(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *BytesMessage) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&BytesMessage{`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringFilesync(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *BytesMessage) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowFilesync
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: BytesMessage: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: BytesMessage: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowFilesync
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthFilesync
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipFilesync(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthFilesync
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipFilesync(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowFilesync
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowFilesync
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowFilesync
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthFilesync
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowFilesync
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipFilesync(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthFilesync = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowFilesync   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("filesync.proto", fileDescriptorFilesync) }
+
+var fileDescriptorFilesync = []byte{
+	// 208 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0xe2, 0x4b, 0xcb, 0xcc, 0x49,
+	0x2d, 0xae, 0xcc, 0x4b, 0xd6, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0x12, 0xc8, 0xcd, 0x4f, 0xaa,
+	0xd4, 0x83, 0x0b, 0x96, 0x19, 0x2a, 0x29, 0x71, 0xf1, 0x38, 0x55, 0x96, 0xa4, 0x16, 0xfb, 0xa6,
+	0x16, 0x17, 0x27, 0xa6, 0xa7, 0x0a, 0x09, 0x71, 0xb1, 0xa4, 0x24, 0x96, 0x24, 0x4a, 0x30, 0x2a,
+	0x30, 0x6a, 0xf0, 0x04, 0x81, 0xd9, 0x46, 0xab, 0x19, 0xb9, 0x38, 0xdc, 0x32, 0x73, 0x52, 0x83,
+	0x2b, 0xf3, 0x92, 0x85, 0xfc, 0xb8, 0x38, 0x5c, 0x32, 0xd3, 0xd2, 0x9c, 0xf3, 0x0b, 0x2a, 0x85,
+	0xe4, 0xf4, 0xd0, 0xcd, 0xd3, 0x43, 0x36, 0x4c, 0x8a, 0x80, 0xbc, 0x06, 0xa3, 0x01, 0xa3, 0x90,
+	0x3f, 0x17, 0x67, 0x48, 0x62, 0x51, 0x70, 0x49, 0x51, 0x6a, 0x62, 0x2e, 0x35, 0x0c, 0x34, 0x8a,
+	0x82, 0x3a, 0x36, 0x35, 0x2f, 0x85, 0xda, 0x8e, 0x75, 0x32, 0xbb, 0xf0, 0x50, 0x8e, 0xe1, 0xc6,
+	0x43, 0x39, 0x86, 0x0f, 0x0f, 0xe5, 0x18, 0x1b, 0x1e, 0xc9, 0x31, 0xae, 0x78, 0x24, 0xc7, 0x78,
+	0xe2, 0x91, 0x1c, 0xe3, 0x85, 0x47, 0x72, 0x8c, 0x0f, 0x1e, 0xc9, 0x31, 0xbe, 0x78, 0x24, 0xc7,
+	0xf0, 0xe1, 0x91, 0x1c, 0xe3, 0x84, 0xc7, 0x72, 0x0c, 0x51, 0x1c, 0x30, 0xb3, 0x92, 0xd8, 0xc0,
+	0xc1, 0x6f, 0x0c, 0x08, 0x00, 0x00, 0xff, 0xff, 0x72, 0x81, 0x1a, 0x91, 0x90, 0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/moby/buildkit/session/filesync/generate.go b/vendor/github.com/moby/buildkit/session/filesync/generate.go
new file mode 100644
index 0000000000..261e876272
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/filesync/generate.go
@@ -0,0 +1,3 @@
+package filesync
+
+//go:generate protoc --gogoslick_out=plugins=grpc:. filesync.proto
diff --git a/vendor/github.com/moby/buildkit/session/grpc.go b/vendor/github.com/moby/buildkit/session/grpc.go
new file mode 100644
index 0000000000..2798b6abba
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/grpc.go
@@ -0,0 +1,81 @@
+package session
+
+import (
+	"context"
+	"net"
+	"sync/atomic"
+	"time"
+
+	"github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc"
+	opentracing "github.com/opentracing/opentracing-go"
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"golang.org/x/net/http2"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/health/grpc_health_v1"
+)
+
+func serve(ctx context.Context, grpcServer *grpc.Server, conn net.Conn) {
+	go func() {
+		<-ctx.Done()
+		conn.Close()
+	}()
+	logrus.Debugf("serving grpc connection")
+	(&http2.Server{}).ServeConn(conn, &http2.ServeConnOpts{Handler: grpcServer})
+}
+
+func grpcClientConn(ctx context.Context, conn net.Conn) (context.Context, *grpc.ClientConn, error) {
+	var dialCount int64
+	dialer := grpc.WithDialer(func(addr string, d time.Duration) (net.Conn, error) {
+		if c := atomic.AddInt64(&dialCount, 1); c > 1 {
+			return nil, errors.Errorf("only one connection allowed")
+		}
+		return conn, nil
+	})
+
+	dialOpts := []grpc.DialOption{
+		dialer,
+		grpc.WithInsecure(),
+	}
+
+	if span := opentracing.SpanFromContext(ctx); span != nil {
+		tracer := span.Tracer()
+		dialOpts = append(dialOpts,
+			grpc.WithUnaryInterceptor(otgrpc.OpenTracingClientInterceptor(tracer, traceFilter())),
+			grpc.WithStreamInterceptor(otgrpc.OpenTracingStreamClientInterceptor(tracer, traceFilter())),
+		)
+	}
+
+	cc, err := grpc.DialContext(ctx, "", dialOpts...)
+	if err != nil {
+		return nil, nil, errors.Wrap(err, "failed to create grpc client")
+	}
+
+	ctx, cancel := context.WithCancel(ctx)
+	go monitorHealth(ctx, cc, cancel)
+
+	return ctx, cc, nil
+}
+
+func monitorHealth(ctx context.Context, cc *grpc.ClientConn, cancelConn func()) {
+	defer cancelConn()
+	defer cc.Close()
+
+	ticker := time.NewTicker(1 * time.Second)
+	defer ticker.Stop()
+	healthClient := grpc_health_v1.NewHealthClient(cc)
+
+	for {
+		select {
+		case <-ctx.Done():
+			return
+		case <-ticker.C:
+			ctx, cancel := context.WithTimeout(ctx, 10*time.Second)
+			_, err := healthClient.Check(ctx, &grpc_health_v1.HealthCheckRequest{})
+			cancel()
+			if err != nil {
+				return
+			}
+		}
+	}
+}
diff --git a/vendor/github.com/moby/buildkit/session/manager.go b/vendor/github.com/moby/buildkit/session/manager.go
new file mode 100644
index 0000000000..f401c7fb33
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/manager.go
@@ -0,0 +1,218 @@
+package session
+
+import (
+	"context"
+	"net"
+	"net/http"
+	"strings"
+	"sync"
+
+	"github.com/pkg/errors"
+	"google.golang.org/grpc"
+)
+
+// Caller can invoke requests on the session
+type Caller interface {
+	Context() context.Context
+	Supports(method string) bool
+	Conn() *grpc.ClientConn
+	Name() string
+	SharedKey() string
+}
+
+type client struct {
+	Session
+	cc        *grpc.ClientConn
+	supported map[string]struct{}
+}
+
+// Manager is a controller for accessing currently active sessions
+type Manager struct {
+	sessions        map[string]*client
+	mu              sync.Mutex
+	updateCondition *sync.Cond
+}
+
+// NewManager returns a new Manager
+func NewManager() (*Manager, error) {
+	sm := &Manager{
+		sessions: make(map[string]*client),
+	}
+	sm.updateCondition = sync.NewCond(&sm.mu)
+	return sm, nil
+}
+
+// HandleHTTPRequest handles an incoming HTTP request
+func (sm *Manager) HandleHTTPRequest(ctx context.Context, w http.ResponseWriter, r *http.Request) error {
+	hijacker, ok := w.(http.Hijacker)
+	if !ok {
+		return errors.New("handler does not support hijack")
+	}
+
+	id := r.Header.Get(headerSessionID)
+
+	proto := r.Header.Get("Upgrade")
+
+	sm.mu.Lock()
+	if _, ok := sm.sessions[id]; ok {
+		sm.mu.Unlock()
+		return errors.Errorf("session %s already exists", id)
+	}
+
+	if proto == "" {
+		sm.mu.Unlock()
+		return errors.New("no upgrade proto in request")
+	}
+
+	if proto != "h2c" {
+		sm.mu.Unlock()
+		return errors.Errorf("protocol %s not supported", proto)
+	}
+
+	conn, _, err := hijacker.Hijack()
+	if err != nil {
+		sm.mu.Unlock()
+		return errors.Wrap(err, "failed to hijack connection")
+	}
+
+	resp := &http.Response{
+		StatusCode: http.StatusSwitchingProtocols,
+		ProtoMajor: 1,
+		ProtoMinor: 1,
+		Header:     http.Header{},
+	}
+	resp.Header.Set("Connection", "Upgrade")
+	resp.Header.Set("Upgrade", proto)
+
+	// set raw mode
+	conn.Write([]byte{})
+	resp.Write(conn)
+
+	return sm.handleConn(ctx, conn, r.Header)
+}
+
+// HandleConn handles an incoming raw connection
+func (sm *Manager) HandleConn(ctx context.Context, conn net.Conn, opts map[string][]string) error {
+	sm.mu.Lock()
+	return sm.handleConn(ctx, conn, opts)
+}
+
+// caller needs to take lock, this function will release it
+func (sm *Manager) handleConn(ctx context.Context, conn net.Conn, opts map[string][]string) error {
+	ctx, cancel := context.WithCancel(ctx)
+	defer cancel()
+
+	opts = canonicalHeaders(opts)
+
+	h := http.Header(opts)
+	id := h.Get(headerSessionID)
+	name := h.Get(headerSessionName)
+	sharedKey := h.Get(headerSessionSharedKey)
+
+	ctx, cc, err := grpcClientConn(ctx, conn)
+	if err != nil {
+		sm.mu.Unlock()
+		return err
+	}
+
+	c := &client{
+		Session: Session{
+			id:        id,
+			name:      name,
+			sharedKey: sharedKey,
+			ctx:       ctx,
+			cancelCtx: cancel,
+			done:      make(chan struct{}),
+		},
+		cc:        cc,
+		supported: make(map[string]struct{}),
+	}
+
+	for _, m := range opts[headerSessionMethod] {
+		c.supported[strings.ToLower(m)] = struct{}{}
+	}
+	sm.sessions[id] = c
+	sm.updateCondition.Broadcast()
+	sm.mu.Unlock()
+
+	defer func() {
+		sm.mu.Lock()
+		delete(sm.sessions, id)
+		sm.mu.Unlock()
+	}()
+
+	<-c.ctx.Done()
+	conn.Close()
+	close(c.done)
+
+	return nil
+}
+
+// Get returns a session by ID
+func (sm *Manager) Get(ctx context.Context, id string) (Caller, error) {
+	// session prefix is used to identify vertexes with different contexts so
+	// they would not collide, but for lookup we don't need the prefix
+	if p := strings.SplitN(id, ":", 2); len(p) == 2 && len(p[1]) > 0 {
+		id = p[1]
+	}
+
+	ctx, cancel := context.WithCancel(ctx)
+	defer cancel()
+
+	go func() {
+		select {
+		case <-ctx.Done():
+			sm.updateCondition.Broadcast()
+		}
+	}()
+
+	var c *client
+
+	sm.mu.Lock()
+	for {
+		select {
+		case <-ctx.Done():
+			sm.mu.Unlock()
+			return nil, errors.Wrapf(ctx.Err(), "no active session for %s", id)
+		default:
+		}
+		var ok bool
+		c, ok = sm.sessions[id]
+		if !ok || c.closed() {
+			sm.updateCondition.Wait()
+			continue
+		}
+		sm.mu.Unlock()
+		break
+	}
+
+	return c, nil
+}
+
+func (c *client) Context() context.Context {
+	return c.context()
+}
+
+func (c *client) Name() string {
+	return c.name
+}
+
+func (c *client) SharedKey() string {
+	return c.sharedKey
+}
+
+func (c *client) Supports(url string) bool {
+	_, ok := c.supported[strings.ToLower(url)]
+	return ok
+}
+func (c *client) Conn() *grpc.ClientConn {
+	return c.cc
+}
+
+func canonicalHeaders(in map[string][]string) map[string][]string {
+	out := map[string][]string{}
+	for k := range in {
+		out[http.CanonicalHeaderKey(k)] = in[k]
+	}
+	return out
+}
diff --git a/vendor/github.com/moby/buildkit/session/session.go b/vendor/github.com/moby/buildkit/session/session.go
new file mode 100644
index 0000000000..47c9579633
--- /dev/null
+++ b/vendor/github.com/moby/buildkit/session/session.go
@@ -0,0 +1,143 @@
+package session
+
+import (
+	"context"
+	"net"
+	"strings"
+
+	"github.com/grpc-ecosystem/grpc-opentracing/go/otgrpc"
+	"github.com/moby/buildkit/identity"
+	opentracing "github.com/opentracing/opentracing-go"
+	"github.com/pkg/errors"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/health"
+	"google.golang.org/grpc/health/grpc_health_v1"
+)
+
+const (
+	headerSessionID        = "X-Docker-Expose-Session-Uuid"
+	headerSessionName      = "X-Docker-Expose-Session-Name"
+	headerSessionSharedKey = "X-Docker-Expose-Session-Sharedkey"
+	headerSessionMethod    = "X-Docker-Expose-Session-Grpc-Method"
+)
+
+// Dialer returns a connection that can be used by the session
+type Dialer func(ctx context.Context, proto string, meta map[string][]string) (net.Conn, error)
+
+// Attachable defines a feature that can be expsed on a session
+type Attachable interface {
+	Register(*grpc.Server)
+}
+
+// Session is a long running connection between client and a daemon
+type Session struct {
+	id         string
+	name       string
+	sharedKey  string
+	ctx        context.Context
+	cancelCtx  func()
+	done       chan struct{}
+	grpcServer *grpc.Server
+	conn       net.Conn
+}
+
+// NewSession returns a new long running session
+func NewSession(ctx context.Context, name, sharedKey string) (*Session, error) {
+	id := identity.NewID()
+
+	serverOpts := []grpc.ServerOption{}
+	if span := opentracing.SpanFromContext(ctx); span != nil {
+		tracer := span.Tracer()
+		serverOpts = []grpc.ServerOption{
+			grpc.StreamInterceptor(otgrpc.OpenTracingStreamServerInterceptor(span.Tracer(), traceFilter())),
+			grpc.UnaryInterceptor(otgrpc.OpenTracingServerInterceptor(tracer, traceFilter())),
+		}
+	}
+
+	s := &Session{
+		id:         id,
+		name:       name,
+		sharedKey:  sharedKey,
+		grpcServer: grpc.NewServer(serverOpts...),
+	}
+
+	grpc_health_v1.RegisterHealthServer(s.grpcServer, health.NewServer())
+
+	return s, nil
+}
+
+// Allow enable a given service to be reachable through the grpc session
+func (s *Session) Allow(a Attachable) {
+	a.Register(s.grpcServer)
+}
+
+// ID returns unique identifier for the session
+func (s *Session) ID() string {
+	return s.id
+}
+
+// Run activates the session
+func (s *Session) Run(ctx context.Context, dialer Dialer) error {
+	ctx, cancel := context.WithCancel(ctx)
+	s.cancelCtx = cancel
+	s.done = make(chan struct{})
+
+	defer cancel()
+	defer close(s.done)
+
+	meta := make(map[string][]string)
+	meta[headerSessionID] = []string{s.id}
+	meta[headerSessionName] = []string{s.name}
+	meta[headerSessionSharedKey] = []string{s.sharedKey}
+
+	for name, svc := range s.grpcServer.GetServiceInfo() {
+		for _, method := range svc.Methods {
+			meta[headerSessionMethod] = append(meta[headerSessionMethod], MethodURL(name, method.Name))
+		}
+	}
+	conn, err := dialer(ctx, "h2c", meta)
+	if err != nil {
+		return errors.Wrap(err, "failed to dial gRPC")
+	}
+	s.conn = conn
+	serve(ctx, s.grpcServer, conn)
+	return nil
+}
+
+// Close closes the session
+func (s *Session) Close() error {
+	if s.cancelCtx != nil && s.done != nil {
+		if s.conn != nil {
+			s.conn.Close()
+		}
+		s.grpcServer.Stop()
+		<-s.done
+	}
+	return nil
+}
+
+func (s *Session) context() context.Context {
+	return s.ctx
+}
+
+func (s *Session) closed() bool {
+	select {
+	case <-s.context().Done():
+		return true
+	default:
+		return false
+	}
+}
+
+// MethodURL returns a gRPC method URL for service and method name
+func MethodURL(s, m string) string {
+	return "/" + s + "/" + m
+}
+
+func traceFilter() otgrpc.Option {
+	return otgrpc.IncludingSpans(func(parentSpanCtx opentracing.SpanContext,
+		method string,
+		req, resp interface{}) bool {
+		return !strings.HasSuffix(method, "Health/Check")
+	})
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups.go b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups.go
new file mode 100644
index 0000000000..25ff515893
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups.go
@@ -0,0 +1,64 @@
+// +build linux
+
+package cgroups
+
+import (
+	"fmt"
+
+	"github.com/opencontainers/runc/libcontainer/configs"
+)
+
+type Manager interface {
+	// Applies cgroup configuration to the process with the specified pid
+	Apply(pid int) error
+
+	// Returns the PIDs inside the cgroup set
+	GetPids() ([]int, error)
+
+	// Returns the PIDs inside the cgroup set & all sub-cgroups
+	GetAllPids() ([]int, error)
+
+	// Returns statistics for the cgroup set
+	GetStats() (*Stats, error)
+
+	// Toggles the freezer cgroup according with specified state
+	Freeze(state configs.FreezerState) error
+
+	// Destroys the cgroup set
+	Destroy() error
+
+	// The option func SystemdCgroups() and Cgroupfs() require following attributes:
+	// 	Paths   map[string]string
+	// 	Cgroups *configs.Cgroup
+	// Paths maps cgroup subsystem to path at which it is mounted.
+	// Cgroups specifies specific cgroup settings for the various subsystems
+
+	// Returns cgroup paths to save in a state file and to be able to
+	// restore the object later.
+	GetPaths() map[string]string
+
+	// Sets the cgroup as configured.
+	Set(container *configs.Config) error
+}
+
+type NotFoundError struct {
+	Subsystem string
+}
+
+func (e *NotFoundError) Error() string {
+	return fmt.Sprintf("mountpoint for %s not found", e.Subsystem)
+}
+
+func NewNotFoundError(sub string) error {
+	return &NotFoundError{
+		Subsystem: sub,
+	}
+}
+
+func IsNotFound(err error) bool {
+	if err == nil {
+		return false
+	}
+	_, ok := err.(*NotFoundError)
+	return ok
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups_unsupported.go b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups_unsupported.go
new file mode 100644
index 0000000000..278d507e28
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/cgroups_unsupported.go
@@ -0,0 +1,3 @@
+// +build !linux
+
+package cgroups
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/cgroups/stats.go b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/stats.go
new file mode 100644
index 0000000000..8eeedc55b0
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/stats.go
@@ -0,0 +1,108 @@
+// +build linux
+
+package cgroups
+
+type ThrottlingData struct {
+	// Number of periods with throttling active
+	Periods uint64 `json:"periods,omitempty"`
+	// Number of periods when the container hit its throttling limit.
+	ThrottledPeriods uint64 `json:"throttled_periods,omitempty"`
+	// Aggregate time the container was throttled for in nanoseconds.
+	ThrottledTime uint64 `json:"throttled_time,omitempty"`
+}
+
+// CpuUsage denotes the usage of a CPU.
+// All CPU stats are aggregate since container inception.
+type CpuUsage struct {
+	// Total CPU time consumed.
+	// Units: nanoseconds.
+	TotalUsage uint64 `json:"total_usage,omitempty"`
+	// Total CPU time consumed per core.
+	// Units: nanoseconds.
+	PercpuUsage []uint64 `json:"percpu_usage,omitempty"`
+	// Time spent by tasks of the cgroup in kernel mode.
+	// Units: nanoseconds.
+	UsageInKernelmode uint64 `json:"usage_in_kernelmode"`
+	// Time spent by tasks of the cgroup in user mode.
+	// Units: nanoseconds.
+	UsageInUsermode uint64 `json:"usage_in_usermode"`
+}
+
+type CpuStats struct {
+	CpuUsage       CpuUsage       `json:"cpu_usage,omitempty"`
+	ThrottlingData ThrottlingData `json:"throttling_data,omitempty"`
+}
+
+type MemoryData struct {
+	Usage    uint64 `json:"usage,omitempty"`
+	MaxUsage uint64 `json:"max_usage,omitempty"`
+	Failcnt  uint64 `json:"failcnt"`
+	Limit    uint64 `json:"limit"`
+}
+
+type MemoryStats struct {
+	// memory used for cache
+	Cache uint64 `json:"cache,omitempty"`
+	// usage of memory
+	Usage MemoryData `json:"usage,omitempty"`
+	// usage of memory + swap
+	SwapUsage MemoryData `json:"swap_usage,omitempty"`
+	// usage of kernel memory
+	KernelUsage MemoryData `json:"kernel_usage,omitempty"`
+	// usage of kernel TCP memory
+	KernelTCPUsage MemoryData `json:"kernel_tcp_usage,omitempty"`
+	// if true, memory usage is accounted for throughout a hierarchy of cgroups.
+	UseHierarchy bool `json:"use_hierarchy"`
+
+	Stats map[string]uint64 `json:"stats,omitempty"`
+}
+
+type PidsStats struct {
+	// number of pids in the cgroup
+	Current uint64 `json:"current,omitempty"`
+	// active pids hard limit
+	Limit uint64 `json:"limit,omitempty"`
+}
+
+type BlkioStatEntry struct {
+	Major uint64 `json:"major,omitempty"`
+	Minor uint64 `json:"minor,omitempty"`
+	Op    string `json:"op,omitempty"`
+	Value uint64 `json:"value,omitempty"`
+}
+
+type BlkioStats struct {
+	// number of bytes tranferred to and from the block device
+	IoServiceBytesRecursive []BlkioStatEntry `json:"io_service_bytes_recursive,omitempty"`
+	IoServicedRecursive     []BlkioStatEntry `json:"io_serviced_recursive,omitempty"`
+	IoQueuedRecursive       []BlkioStatEntry `json:"io_queue_recursive,omitempty"`
+	IoServiceTimeRecursive  []BlkioStatEntry `json:"io_service_time_recursive,omitempty"`
+	IoWaitTimeRecursive     []BlkioStatEntry `json:"io_wait_time_recursive,omitempty"`
+	IoMergedRecursive       []BlkioStatEntry `json:"io_merged_recursive,omitempty"`
+	IoTimeRecursive         []BlkioStatEntry `json:"io_time_recursive,omitempty"`
+	SectorsRecursive        []BlkioStatEntry `json:"sectors_recursive,omitempty"`
+}
+
+type HugetlbStats struct {
+	// current res_counter usage for hugetlb
+	Usage uint64 `json:"usage,omitempty"`
+	// maximum usage ever recorded.
+	MaxUsage uint64 `json:"max_usage,omitempty"`
+	// number of times hugetlb usage allocation failure.
+	Failcnt uint64 `json:"failcnt"`
+}
+
+type Stats struct {
+	CpuStats    CpuStats    `json:"cpu_stats,omitempty"`
+	MemoryStats MemoryStats `json:"memory_stats,omitempty"`
+	PidsStats   PidsStats   `json:"pids_stats,omitempty"`
+	BlkioStats  BlkioStats  `json:"blkio_stats,omitempty"`
+	// the map is in the format "size of hugepage: stats of the hugepage"
+	HugetlbStats map[string]HugetlbStats `json:"hugetlb_stats,omitempty"`
+}
+
+func NewStats() *Stats {
+	memoryStats := MemoryStats{Stats: make(map[string]uint64)}
+	hugetlbStats := make(map[string]HugetlbStats)
+	return &Stats{MemoryStats: memoryStats, HugetlbStats: hugetlbStats}
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/cgroups/utils.go b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/utils.go
new file mode 100644
index 0000000000..7c995efee5
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/cgroups/utils.go
@@ -0,0 +1,462 @@
+// +build linux
+
+package cgroups
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"strconv"
+	"strings"
+	"time"
+
+	"github.com/docker/go-units"
+)
+
+const (
+	cgroupNamePrefix = "name="
+	CgroupProcesses  = "cgroup.procs"
+)
+
+// https://www.kernel.org/doc/Documentation/cgroup-v1/cgroups.txt
+func FindCgroupMountpoint(subsystem string) (string, error) {
+	mnt, _, err := FindCgroupMountpointAndRoot(subsystem)
+	return mnt, err
+}
+
+func FindCgroupMountpointAndRoot(subsystem string) (string, string, error) {
+	// We are not using mount.GetMounts() because it's super-inefficient,
+	// parsing it directly sped up x10 times because of not using Sscanf.
+	// It was one of two major performance drawbacks in container start.
+	if !isSubsystemAvailable(subsystem) {
+		return "", "", NewNotFoundError(subsystem)
+	}
+	f, err := os.Open("/proc/self/mountinfo")
+	if err != nil {
+		return "", "", err
+	}
+	defer f.Close()
+
+	scanner := bufio.NewScanner(f)
+	for scanner.Scan() {
+		txt := scanner.Text()
+		fields := strings.Split(txt, " ")
+		for _, opt := range strings.Split(fields[len(fields)-1], ",") {
+			if opt == subsystem {
+				return fields[4], fields[3], nil
+			}
+		}
+	}
+	if err := scanner.Err(); err != nil {
+		return "", "", err
+	}
+
+	return "", "", NewNotFoundError(subsystem)
+}
+
+func isSubsystemAvailable(subsystem string) bool {
+	cgroups, err := ParseCgroupFile("/proc/self/cgroup")
+	if err != nil {
+		return false
+	}
+	_, avail := cgroups[subsystem]
+	return avail
+}
+
+func GetClosestMountpointAncestor(dir, mountinfo string) string {
+	deepestMountPoint := ""
+	for _, mountInfoEntry := range strings.Split(mountinfo, "\n") {
+		mountInfoParts := strings.Fields(mountInfoEntry)
+		if len(mountInfoParts) < 5 {
+			continue
+		}
+		mountPoint := mountInfoParts[4]
+		if strings.HasPrefix(mountPoint, deepestMountPoint) && strings.HasPrefix(dir, mountPoint) {
+			deepestMountPoint = mountPoint
+		}
+	}
+	return deepestMountPoint
+}
+
+func FindCgroupMountpointDir() (string, error) {
+	f, err := os.Open("/proc/self/mountinfo")
+	if err != nil {
+		return "", err
+	}
+	defer f.Close()
+
+	scanner := bufio.NewScanner(f)
+	for scanner.Scan() {
+		text := scanner.Text()
+		fields := strings.Split(text, " ")
+		// Safe as mountinfo encodes mountpoints with spaces as \040.
+		index := strings.Index(text, " - ")
+		postSeparatorFields := strings.Fields(text[index+3:])
+		numPostFields := len(postSeparatorFields)
+
+		// This is an error as we can't detect if the mount is for "cgroup"
+		if numPostFields == 0 {
+			return "", fmt.Errorf("Found no fields post '-' in %q", text)
+		}
+
+		if postSeparatorFields[0] == "cgroup" {
+			// Check that the mount is properly formated.
+			if numPostFields < 3 {
+				return "", fmt.Errorf("Error found less than 3 fields post '-' in %q", text)
+			}
+
+			return filepath.Dir(fields[4]), nil
+		}
+	}
+	if err := scanner.Err(); err != nil {
+		return "", err
+	}
+
+	return "", NewNotFoundError("cgroup")
+}
+
+type Mount struct {
+	Mountpoint string
+	Root       string
+	Subsystems []string
+}
+
+func (m Mount) GetOwnCgroup(cgroups map[string]string) (string, error) {
+	if len(m.Subsystems) == 0 {
+		return "", fmt.Errorf("no subsystem for mount")
+	}
+
+	return getControllerPath(m.Subsystems[0], cgroups)
+}
+
+func getCgroupMountsHelper(ss map[string]bool, mi io.Reader, all bool) ([]Mount, error) {
+	res := make([]Mount, 0, len(ss))
+	scanner := bufio.NewScanner(mi)
+	numFound := 0
+	for scanner.Scan() && numFound < len(ss) {
+		txt := scanner.Text()
+		sepIdx := strings.Index(txt, " - ")
+		if sepIdx == -1 {
+			return nil, fmt.Errorf("invalid mountinfo format")
+		}
+		if txt[sepIdx+3:sepIdx+10] == "cgroup2" || txt[sepIdx+3:sepIdx+9] != "cgroup" {
+			continue
+		}
+		fields := strings.Split(txt, " ")
+		m := Mount{
+			Mountpoint: fields[4],
+			Root:       fields[3],
+		}
+		for _, opt := range strings.Split(fields[len(fields)-1], ",") {
+			if !ss[opt] {
+				continue
+			}
+			if strings.HasPrefix(opt, cgroupNamePrefix) {
+				m.Subsystems = append(m.Subsystems, opt[len(cgroupNamePrefix):])
+			} else {
+				m.Subsystems = append(m.Subsystems, opt)
+			}
+			if !all {
+				numFound++
+			}
+		}
+		res = append(res, m)
+	}
+	if err := scanner.Err(); err != nil {
+		return nil, err
+	}
+	return res, nil
+}
+
+// GetCgroupMounts returns the mounts for the cgroup subsystems.
+// all indicates whether to return just the first instance or all the mounts.
+func GetCgroupMounts(all bool) ([]Mount, error) {
+	f, err := os.Open("/proc/self/mountinfo")
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	allSubsystems, err := ParseCgroupFile("/proc/self/cgroup")
+	if err != nil {
+		return nil, err
+	}
+
+	allMap := make(map[string]bool)
+	for s := range allSubsystems {
+		allMap[s] = true
+	}
+	return getCgroupMountsHelper(allMap, f, all)
+}
+
+// GetAllSubsystems returns all the cgroup subsystems supported by the kernel
+func GetAllSubsystems() ([]string, error) {
+	f, err := os.Open("/proc/cgroups")
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	subsystems := []string{}
+
+	s := bufio.NewScanner(f)
+	for s.Scan() {
+		text := s.Text()
+		if text[0] != '#' {
+			parts := strings.Fields(text)
+			if len(parts) >= 4 && parts[3] != "0" {
+				subsystems = append(subsystems, parts[0])
+			}
+		}
+	}
+	if err := s.Err(); err != nil {
+		return nil, err
+	}
+	return subsystems, nil
+}
+
+// GetOwnCgroup returns the relative path to the cgroup docker is running in.
+func GetOwnCgroup(subsystem string) (string, error) {
+	cgroups, err := ParseCgroupFile("/proc/self/cgroup")
+	if err != nil {
+		return "", err
+	}
+
+	return getControllerPath(subsystem, cgroups)
+}
+
+func GetOwnCgroupPath(subsystem string) (string, error) {
+	cgroup, err := GetOwnCgroup(subsystem)
+	if err != nil {
+		return "", err
+	}
+
+	return getCgroupPathHelper(subsystem, cgroup)
+}
+
+func GetInitCgroup(subsystem string) (string, error) {
+	cgroups, err := ParseCgroupFile("/proc/1/cgroup")
+	if err != nil {
+		return "", err
+	}
+
+	return getControllerPath(subsystem, cgroups)
+}
+
+func GetInitCgroupPath(subsystem string) (string, error) {
+	cgroup, err := GetInitCgroup(subsystem)
+	if err != nil {
+		return "", err
+	}
+
+	return getCgroupPathHelper(subsystem, cgroup)
+}
+
+func getCgroupPathHelper(subsystem, cgroup string) (string, error) {
+	mnt, root, err := FindCgroupMountpointAndRoot(subsystem)
+	if err != nil {
+		return "", err
+	}
+
+	// This is needed for nested containers, because in /proc/self/cgroup we
+	// see pathes from host, which don't exist in container.
+	relCgroup, err := filepath.Rel(root, cgroup)
+	if err != nil {
+		return "", err
+	}
+
+	return filepath.Join(mnt, relCgroup), nil
+}
+
+func readProcsFile(dir string) ([]int, error) {
+	f, err := os.Open(filepath.Join(dir, CgroupProcesses))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	var (
+		s   = bufio.NewScanner(f)
+		out = []int{}
+	)
+
+	for s.Scan() {
+		if t := s.Text(); t != "" {
+			pid, err := strconv.Atoi(t)
+			if err != nil {
+				return nil, err
+			}
+			out = append(out, pid)
+		}
+	}
+	return out, nil
+}
+
+// ParseCgroupFile parses the given cgroup file, typically from
+// /proc/<pid>/cgroup, into a map of subgroups to cgroup names.
+func ParseCgroupFile(path string) (map[string]string, error) {
+	f, err := os.Open(path)
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return parseCgroupFromReader(f)
+}
+
+// helper function for ParseCgroupFile to make testing easier
+func parseCgroupFromReader(r io.Reader) (map[string]string, error) {
+	s := bufio.NewScanner(r)
+	cgroups := make(map[string]string)
+
+	for s.Scan() {
+		text := s.Text()
+		// from cgroups(7):
+		// /proc/[pid]/cgroup
+		// ...
+		// For each cgroup hierarchy ... there is one entry
+		// containing three colon-separated fields of the form:
+		//     hierarchy-ID:subsystem-list:cgroup-path
+		parts := strings.SplitN(text, ":", 3)
+		if len(parts) < 3 {
+			return nil, fmt.Errorf("invalid cgroup entry: must contain at least two colons: %v", text)
+		}
+
+		for _, subs := range strings.Split(parts[1], ",") {
+			cgroups[subs] = parts[2]
+		}
+	}
+	if err := s.Err(); err != nil {
+		return nil, err
+	}
+
+	return cgroups, nil
+}
+
+func getControllerPath(subsystem string, cgroups map[string]string) (string, error) {
+
+	if p, ok := cgroups[subsystem]; ok {
+		return p, nil
+	}
+
+	if p, ok := cgroups[cgroupNamePrefix+subsystem]; ok {
+		return p, nil
+	}
+
+	return "", NewNotFoundError(subsystem)
+}
+
+func PathExists(path string) bool {
+	if _, err := os.Stat(path); err != nil {
+		return false
+	}
+	return true
+}
+
+func EnterPid(cgroupPaths map[string]string, pid int) error {
+	for _, path := range cgroupPaths {
+		if PathExists(path) {
+			if err := WriteCgroupProc(path, pid); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
+
+// RemovePaths iterates over the provided paths removing them.
+// We trying to remove all paths five times with increasing delay between tries.
+// If after all there are not removed cgroups - appropriate error will be
+// returned.
+func RemovePaths(paths map[string]string) (err error) {
+	delay := 10 * time.Millisecond
+	for i := 0; i < 5; i++ {
+		if i != 0 {
+			time.Sleep(delay)
+			delay *= 2
+		}
+		for s, p := range paths {
+			os.RemoveAll(p)
+			// TODO: here probably should be logging
+			_, err := os.Stat(p)
+			// We need this strange way of checking cgroups existence because
+			// RemoveAll almost always returns error, even on already removed
+			// cgroups
+			if os.IsNotExist(err) {
+				delete(paths, s)
+			}
+		}
+		if len(paths) == 0 {
+			return nil
+		}
+	}
+	return fmt.Errorf("Failed to remove paths: %v", paths)
+}
+
+func GetHugePageSize() ([]string, error) {
+	var pageSizes []string
+	sizeList := []string{"B", "kB", "MB", "GB", "TB", "PB"}
+	files, err := ioutil.ReadDir("/sys/kernel/mm/hugepages")
+	if err != nil {
+		return pageSizes, err
+	}
+	for _, st := range files {
+		nameArray := strings.Split(st.Name(), "-")
+		pageSize, err := units.RAMInBytes(nameArray[1])
+		if err != nil {
+			return []string{}, err
+		}
+		sizeString := units.CustomSize("%g%s", float64(pageSize), 1024.0, sizeList)
+		pageSizes = append(pageSizes, sizeString)
+	}
+
+	return pageSizes, nil
+}
+
+// GetPids returns all pids, that were added to cgroup at path.
+func GetPids(path string) ([]int, error) {
+	return readProcsFile(path)
+}
+
+// GetAllPids returns all pids, that were added to cgroup at path and to all its
+// subcgroups.
+func GetAllPids(path string) ([]int, error) {
+	var pids []int
+	// collect pids from all sub-cgroups
+	err := filepath.Walk(path, func(p string, info os.FileInfo, iErr error) error {
+		dir, file := filepath.Split(p)
+		if file != CgroupProcesses {
+			return nil
+		}
+		if iErr != nil {
+			return iErr
+		}
+		cPids, err := readProcsFile(dir)
+		if err != nil {
+			return err
+		}
+		pids = append(pids, cPids...)
+		return nil
+	})
+	return pids, err
+}
+
+// WriteCgroupProc writes the specified pid into the cgroup's cgroup.procs file
+func WriteCgroupProc(dir string, pid int) error {
+	// Normally dir should not be empty, one case is that cgroup subsystem
+	// is not mounted, we will get empty dir, and we want it fail here.
+	if dir == "" {
+		return fmt.Errorf("no such directory for %s", CgroupProcesses)
+	}
+
+	// Dont attach any pid to the cgroup if -1 is specified as a pid
+	if pid != -1 {
+		if err := ioutil.WriteFile(filepath.Join(dir, CgroupProcesses), []byte(strconv.Itoa(pid)), 0700); err != nil {
+			return fmt.Errorf("failed to write %v to %v: %v", pid, CgroupProcesses, err)
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/blkio_device.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/blkio_device.go
new file mode 100644
index 0000000000..e0f3ca1653
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/blkio_device.go
@@ -0,0 +1,61 @@
+package configs
+
+import "fmt"
+
+// blockIODevice holds major:minor format supported in blkio cgroup
+type blockIODevice struct {
+	// Major is the device's major number
+	Major int64 `json:"major"`
+	// Minor is the device's minor number
+	Minor int64 `json:"minor"`
+}
+
+// WeightDevice struct holds a `major:minor weight`|`major:minor leaf_weight` pair
+type WeightDevice struct {
+	blockIODevice
+	// Weight is the bandwidth rate for the device, range is from 10 to 1000
+	Weight uint16 `json:"weight"`
+	// LeafWeight is the bandwidth rate for the device while competing with the cgroup's child cgroups, range is from 10 to 1000, cfq scheduler only
+	LeafWeight uint16 `json:"leafWeight"`
+}
+
+// NewWeightDevice returns a configured WeightDevice pointer
+func NewWeightDevice(major, minor int64, weight, leafWeight uint16) *WeightDevice {
+	wd := &WeightDevice{}
+	wd.Major = major
+	wd.Minor = minor
+	wd.Weight = weight
+	wd.LeafWeight = leafWeight
+	return wd
+}
+
+// WeightString formats the struct to be writable to the cgroup specific file
+func (wd *WeightDevice) WeightString() string {
+	return fmt.Sprintf("%d:%d %d", wd.Major, wd.Minor, wd.Weight)
+}
+
+// LeafWeightString formats the struct to be writable to the cgroup specific file
+func (wd *WeightDevice) LeafWeightString() string {
+	return fmt.Sprintf("%d:%d %d", wd.Major, wd.Minor, wd.LeafWeight)
+}
+
+// ThrottleDevice struct holds a `major:minor rate_per_second` pair
+type ThrottleDevice struct {
+	blockIODevice
+	// Rate is the IO rate limit per cgroup per device
+	Rate uint64 `json:"rate"`
+}
+
+// NewThrottleDevice returns a configured ThrottleDevice pointer
+func NewThrottleDevice(major, minor int64, rate uint64) *ThrottleDevice {
+	td := &ThrottleDevice{}
+	td.Major = major
+	td.Minor = minor
+	td.Rate = rate
+	return td
+}
+
+// String formats the struct to be writable to the cgroup specific file
+func (td *ThrottleDevice) String() string {
+	return fmt.Sprintf("%d:%d %d", td.Major, td.Minor, td.Rate)
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_linux.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_linux.go
new file mode 100644
index 0000000000..e15a662f52
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_linux.go
@@ -0,0 +1,122 @@
+package configs
+
+type FreezerState string
+
+const (
+	Undefined FreezerState = ""
+	Frozen    FreezerState = "FROZEN"
+	Thawed    FreezerState = "THAWED"
+)
+
+type Cgroup struct {
+	// Deprecated, use Path instead
+	Name string `json:"name,omitempty"`
+
+	// name of parent of cgroup or slice
+	// Deprecated, use Path instead
+	Parent string `json:"parent,omitempty"`
+
+	// Path specifies the path to cgroups that are created and/or joined by the container.
+	// The path is assumed to be relative to the host system cgroup mountpoint.
+	Path string `json:"path"`
+
+	// ScopePrefix describes prefix for the scope name
+	ScopePrefix string `json:"scope_prefix"`
+
+	// Paths represent the absolute cgroups paths to join.
+	// This takes precedence over Path.
+	Paths map[string]string
+
+	// Resources contains various cgroups settings to apply
+	*Resources
+}
+
+type Resources struct {
+	// If this is true allow access to any kind of device within the container.  If false, allow access only to devices explicitly listed in the allowed_devices list.
+	// Deprecated
+	AllowAllDevices *bool `json:"allow_all_devices,omitempty"`
+	// Deprecated
+	AllowedDevices []*Device `json:"allowed_devices,omitempty"`
+	// Deprecated
+	DeniedDevices []*Device `json:"denied_devices,omitempty"`
+
+	Devices []*Device `json:"devices"`
+
+	// Memory limit (in bytes)
+	Memory int64 `json:"memory"`
+
+	// Memory reservation or soft_limit (in bytes)
+	MemoryReservation int64 `json:"memory_reservation"`
+
+	// Total memory usage (memory + swap); set `-1` to enable unlimited swap
+	MemorySwap int64 `json:"memory_swap"`
+
+	// Kernel memory limit (in bytes)
+	KernelMemory int64 `json:"kernel_memory"`
+
+	// Kernel memory limit for TCP use (in bytes)
+	KernelMemoryTCP int64 `json:"kernel_memory_tcp"`
+
+	// CPU shares (relative weight vs. other containers)
+	CpuShares uint64 `json:"cpu_shares"`
+
+	// CPU hardcap limit (in usecs). Allowed cpu time in a given period.
+	CpuQuota int64 `json:"cpu_quota"`
+
+	// CPU period to be used for hardcapping (in usecs). 0 to use system default.
+	CpuPeriod uint64 `json:"cpu_period"`
+
+	// How many time CPU will use in realtime scheduling (in usecs).
+	CpuRtRuntime int64 `json:"cpu_rt_quota"`
+
+	// CPU period to be used for realtime scheduling (in usecs).
+	CpuRtPeriod uint64 `json:"cpu_rt_period"`
+
+	// CPU to use
+	CpusetCpus string `json:"cpuset_cpus"`
+
+	// MEM to use
+	CpusetMems string `json:"cpuset_mems"`
+
+	// Process limit; set <= `0' to disable limit.
+	PidsLimit int64 `json:"pids_limit"`
+
+	// Specifies per cgroup weight, range is from 10 to 1000.
+	BlkioWeight uint16 `json:"blkio_weight"`
+
+	// Specifies tasks' weight in the given cgroup while competing with the cgroup's child cgroups, range is from 10 to 1000, cfq scheduler only
+	BlkioLeafWeight uint16 `json:"blkio_leaf_weight"`
+
+	// Weight per cgroup per device, can override BlkioWeight.
+	BlkioWeightDevice []*WeightDevice `json:"blkio_weight_device"`
+
+	// IO read rate limit per cgroup per device, bytes per second.
+	BlkioThrottleReadBpsDevice []*ThrottleDevice `json:"blkio_throttle_read_bps_device"`
+
+	// IO write rate limit per cgroup per device, bytes per second.
+	BlkioThrottleWriteBpsDevice []*ThrottleDevice `json:"blkio_throttle_write_bps_device"`
+
+	// IO read rate limit per cgroup per device, IO per second.
+	BlkioThrottleReadIOPSDevice []*ThrottleDevice `json:"blkio_throttle_read_iops_device"`
+
+	// IO write rate limit per cgroup per device, IO per second.
+	BlkioThrottleWriteIOPSDevice []*ThrottleDevice `json:"blkio_throttle_write_iops_device"`
+
+	// set the freeze value for the process
+	Freezer FreezerState `json:"freezer"`
+
+	// Hugetlb limit (in bytes)
+	HugetlbLimit []*HugepageLimit `json:"hugetlb_limit"`
+
+	// Whether to disable OOM Killer
+	OomKillDisable bool `json:"oom_kill_disable"`
+
+	// Tuning swappiness behaviour per cgroup
+	MemorySwappiness *uint64 `json:"memory_swappiness"`
+
+	// Set priority of network traffic for container
+	NetPrioIfpriomap []*IfPrioMap `json:"net_prio_ifpriomap"`
+
+	// Set class identifier for container's network packets
+	NetClsClassid uint32 `json:"net_cls_classid_u"`
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_windows.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_windows.go
new file mode 100644
index 0000000000..d74847b0db
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/cgroup_windows.go
@@ -0,0 +1,6 @@
+package configs
+
+// TODO Windows: This can ultimately be entirely factored out on Windows as
+// cgroups are a Unix-specific construct.
+type Cgroup struct {
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/config.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/config.go
new file mode 100644
index 0000000000..3cae4fd8d9
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/config.go
@@ -0,0 +1,348 @@
+package configs
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"os/exec"
+	"time"
+
+	"github.com/opencontainers/runtime-spec/specs-go"
+
+	"github.com/sirupsen/logrus"
+)
+
+type Rlimit struct {
+	Type int    `json:"type"`
+	Hard uint64 `json:"hard"`
+	Soft uint64 `json:"soft"`
+}
+
+// IDMap represents UID/GID Mappings for User Namespaces.
+type IDMap struct {
+	ContainerID int `json:"container_id"`
+	HostID      int `json:"host_id"`
+	Size        int `json:"size"`
+}
+
+// Seccomp represents syscall restrictions
+// By default, only the native architecture of the kernel is allowed to be used
+// for syscalls. Additional architectures can be added by specifying them in
+// Architectures.
+type Seccomp struct {
+	DefaultAction Action     `json:"default_action"`
+	Architectures []string   `json:"architectures"`
+	Syscalls      []*Syscall `json:"syscalls"`
+}
+
+// Action is taken upon rule match in Seccomp
+type Action int
+
+const (
+	Kill Action = iota + 1
+	Errno
+	Trap
+	Allow
+	Trace
+)
+
+// Operator is a comparison operator to be used when matching syscall arguments in Seccomp
+type Operator int
+
+const (
+	EqualTo Operator = iota + 1
+	NotEqualTo
+	GreaterThan
+	GreaterThanOrEqualTo
+	LessThan
+	LessThanOrEqualTo
+	MaskEqualTo
+)
+
+// Arg is a rule to match a specific syscall argument in Seccomp
+type Arg struct {
+	Index    uint     `json:"index"`
+	Value    uint64   `json:"value"`
+	ValueTwo uint64   `json:"value_two"`
+	Op       Operator `json:"op"`
+}
+
+// Syscall is a rule to match a syscall in Seccomp
+type Syscall struct {
+	Name   string `json:"name"`
+	Action Action `json:"action"`
+	Args   []*Arg `json:"args"`
+}
+
+// TODO Windows. Many of these fields should be factored out into those parts
+// which are common across platforms, and those which are platform specific.
+
+// Config defines configuration options for executing a process inside a contained environment.
+type Config struct {
+	// NoPivotRoot will use MS_MOVE and a chroot to jail the process into the container's rootfs
+	// This is a common option when the container is running in ramdisk
+	NoPivotRoot bool `json:"no_pivot_root"`
+
+	// ParentDeathSignal specifies the signal that is sent to the container's process in the case
+	// that the parent process dies.
+	ParentDeathSignal int `json:"parent_death_signal"`
+
+	// Path to a directory containing the container's root filesystem.
+	Rootfs string `json:"rootfs"`
+
+	// Readonlyfs will remount the container's rootfs as readonly where only externally mounted
+	// bind mounts are writtable.
+	Readonlyfs bool `json:"readonlyfs"`
+
+	// Specifies the mount propagation flags to be applied to /.
+	RootPropagation int `json:"rootPropagation"`
+
+	// Mounts specify additional source and destination paths that will be mounted inside the container's
+	// rootfs and mount namespace if specified
+	Mounts []*Mount `json:"mounts"`
+
+	// The device nodes that should be automatically created within the container upon container start.  Note, make sure that the node is marked as allowed in the cgroup as well!
+	Devices []*Device `json:"devices"`
+
+	MountLabel string `json:"mount_label"`
+
+	// Hostname optionally sets the container's hostname if provided
+	Hostname string `json:"hostname"`
+
+	// Namespaces specifies the container's namespaces that it should setup when cloning the init process
+	// If a namespace is not provided that namespace is shared from the container's parent process
+	Namespaces Namespaces `json:"namespaces"`
+
+	// Capabilities specify the capabilities to keep when executing the process inside the container
+	// All capabilities not specified will be dropped from the processes capability mask
+	Capabilities *Capabilities `json:"capabilities"`
+
+	// Networks specifies the container's network setup to be created
+	Networks []*Network `json:"networks"`
+
+	// Routes can be specified to create entries in the route table as the container is started
+	Routes []*Route `json:"routes"`
+
+	// Cgroups specifies specific cgroup settings for the various subsystems that the container is
+	// placed into to limit the resources the container has available
+	Cgroups *Cgroup `json:"cgroups"`
+
+	// AppArmorProfile specifies the profile to apply to the process running in the container and is
+	// change at the time the process is execed
+	AppArmorProfile string `json:"apparmor_profile,omitempty"`
+
+	// ProcessLabel specifies the label to apply to the process running in the container.  It is
+	// commonly used by selinux
+	ProcessLabel string `json:"process_label,omitempty"`
+
+	// Rlimits specifies the resource limits, such as max open files, to set in the container
+	// If Rlimits are not set, the container will inherit rlimits from the parent process
+	Rlimits []Rlimit `json:"rlimits,omitempty"`
+
+	// OomScoreAdj specifies the adjustment to be made by the kernel when calculating oom scores
+	// for a process. Valid values are between the range [-1000, '1000'], where processes with
+	// higher scores are preferred for being killed.
+	// More information about kernel oom score calculation here: https://lwn.net/Articles/317814/
+	OomScoreAdj int `json:"oom_score_adj"`
+
+	// UidMappings is an array of User ID mappings for User Namespaces
+	UidMappings []IDMap `json:"uid_mappings"`
+
+	// GidMappings is an array of Group ID mappings for User Namespaces
+	GidMappings []IDMap `json:"gid_mappings"`
+
+	// MaskPaths specifies paths within the container's rootfs to mask over with a bind
+	// mount pointing to /dev/null as to prevent reads of the file.
+	MaskPaths []string `json:"mask_paths"`
+
+	// ReadonlyPaths specifies paths within the container's rootfs to remount as read-only
+	// so that these files prevent any writes.
+	ReadonlyPaths []string `json:"readonly_paths"`
+
+	// Sysctl is a map of properties and their values. It is the equivalent of using
+	// sysctl -w my.property.name value in Linux.
+	Sysctl map[string]string `json:"sysctl"`
+
+	// Seccomp allows actions to be taken whenever a syscall is made within the container.
+	// A number of rules are given, each having an action to be taken if a syscall matches it.
+	// A default action to be taken if no rules match is also given.
+	Seccomp *Seccomp `json:"seccomp"`
+
+	// NoNewPrivileges controls whether processes in the container can gain additional privileges.
+	NoNewPrivileges bool `json:"no_new_privileges,omitempty"`
+
+	// Hooks are a collection of actions to perform at various container lifecycle events.
+	// CommandHooks are serialized to JSON, but other hooks are not.
+	Hooks *Hooks
+
+	// Version is the version of opencontainer specification that is supported.
+	Version string `json:"version"`
+
+	// Labels are user defined metadata that is stored in the config and populated on the state
+	Labels []string `json:"labels"`
+
+	// NoNewKeyring will not allocated a new session keyring for the container.  It will use the
+	// callers keyring in this case.
+	NoNewKeyring bool `json:"no_new_keyring"`
+
+	// Rootless specifies whether the container is a rootless container.
+	Rootless bool `json:"rootless"`
+
+	// IntelRdt specifies settings for Intel RDT/CAT group that the container is placed into
+	// to limit the resources (e.g., L3 cache) the container has available
+	IntelRdt *IntelRdt `json:"intel_rdt,omitempty"`
+}
+
+type Hooks struct {
+	// Prestart commands are executed after the container namespaces are created,
+	// but before the user supplied command is executed from init.
+	Prestart []Hook
+
+	// Poststart commands are executed after the container init process starts.
+	Poststart []Hook
+
+	// Poststop commands are executed after the container init process exits.
+	Poststop []Hook
+}
+
+type Capabilities struct {
+	// Bounding is the set of capabilities checked by the kernel.
+	Bounding []string
+	// Effective is the set of capabilities checked by the kernel.
+	Effective []string
+	// Inheritable is the capabilities preserved across execve.
+	Inheritable []string
+	// Permitted is the limiting superset for effective capabilities.
+	Permitted []string
+	// Ambient is the ambient set of capabilities that are kept.
+	Ambient []string
+}
+
+func (hooks *Hooks) UnmarshalJSON(b []byte) error {
+	var state struct {
+		Prestart  []CommandHook
+		Poststart []CommandHook
+		Poststop  []CommandHook
+	}
+
+	if err := json.Unmarshal(b, &state); err != nil {
+		return err
+	}
+
+	deserialize := func(shooks []CommandHook) (hooks []Hook) {
+		for _, shook := range shooks {
+			hooks = append(hooks, shook)
+		}
+
+		return hooks
+	}
+
+	hooks.Prestart = deserialize(state.Prestart)
+	hooks.Poststart = deserialize(state.Poststart)
+	hooks.Poststop = deserialize(state.Poststop)
+	return nil
+}
+
+func (hooks Hooks) MarshalJSON() ([]byte, error) {
+	serialize := func(hooks []Hook) (serializableHooks []CommandHook) {
+		for _, hook := range hooks {
+			switch chook := hook.(type) {
+			case CommandHook:
+				serializableHooks = append(serializableHooks, chook)
+			default:
+				logrus.Warnf("cannot serialize hook of type %T, skipping", hook)
+			}
+		}
+
+		return serializableHooks
+	}
+
+	return json.Marshal(map[string]interface{}{
+		"prestart":  serialize(hooks.Prestart),
+		"poststart": serialize(hooks.Poststart),
+		"poststop":  serialize(hooks.Poststop),
+	})
+}
+
+// HookState is the payload provided to a hook on execution.
+type HookState specs.State
+
+type Hook interface {
+	// Run executes the hook with the provided state.
+	Run(HookState) error
+}
+
+// NewFunctionHook will call the provided function when the hook is run.
+func NewFunctionHook(f func(HookState) error) FuncHook {
+	return FuncHook{
+		run: f,
+	}
+}
+
+type FuncHook struct {
+	run func(HookState) error
+}
+
+func (f FuncHook) Run(s HookState) error {
+	return f.run(s)
+}
+
+type Command struct {
+	Path    string         `json:"path"`
+	Args    []string       `json:"args"`
+	Env     []string       `json:"env"`
+	Dir     string         `json:"dir"`
+	Timeout *time.Duration `json:"timeout"`
+}
+
+// NewCommandHook will execute the provided command when the hook is run.
+func NewCommandHook(cmd Command) CommandHook {
+	return CommandHook{
+		Command: cmd,
+	}
+}
+
+type CommandHook struct {
+	Command
+}
+
+func (c Command) Run(s HookState) error {
+	b, err := json.Marshal(s)
+	if err != nil {
+		return err
+	}
+	var stdout, stderr bytes.Buffer
+	cmd := exec.Cmd{
+		Path:   c.Path,
+		Args:   c.Args,
+		Env:    c.Env,
+		Stdin:  bytes.NewReader(b),
+		Stdout: &stdout,
+		Stderr: &stderr,
+	}
+	if err := cmd.Start(); err != nil {
+		return err
+	}
+	errC := make(chan error, 1)
+	go func() {
+		err := cmd.Wait()
+		if err != nil {
+			err = fmt.Errorf("error running hook: %v, stdout: %s, stderr: %s", err, stdout.String(), stderr.String())
+		}
+		errC <- err
+	}()
+	var timerCh <-chan time.Time
+	if c.Timeout != nil {
+		timer := time.NewTimer(*c.Timeout)
+		defer timer.Stop()
+		timerCh = timer.C
+	}
+	select {
+	case err := <-errC:
+		return err
+	case <-timerCh:
+		cmd.Process.Kill()
+		cmd.Wait()
+		return fmt.Errorf("hook ran past specified timeout of %.1fs", c.Timeout.Seconds())
+	}
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/config_linux.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/config_linux.go
new file mode 100644
index 0000000000..07da108045
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/config_linux.go
@@ -0,0 +1,61 @@
+package configs
+
+import "fmt"
+
+// HostUID gets the translated uid for the process on host which could be
+// different when user namespaces are enabled.
+func (c Config) HostUID(containerId int) (int, error) {
+	if c.Namespaces.Contains(NEWUSER) {
+		if c.UidMappings == nil {
+			return -1, fmt.Errorf("User namespaces enabled, but no uid mappings found.")
+		}
+		id, found := c.hostIDFromMapping(containerId, c.UidMappings)
+		if !found {
+			return -1, fmt.Errorf("User namespaces enabled, but no user mapping found.")
+		}
+		return id, nil
+	}
+	// Return unchanged id.
+	return containerId, nil
+}
+
+// HostRootUID gets the root uid for the process on host which could be non-zero
+// when user namespaces are enabled.
+func (c Config) HostRootUID() (int, error) {
+	return c.HostUID(0)
+}
+
+// HostGID gets the translated gid for the process on host which could be
+// different when user namespaces are enabled.
+func (c Config) HostGID(containerId int) (int, error) {
+	if c.Namespaces.Contains(NEWUSER) {
+		if c.GidMappings == nil {
+			return -1, fmt.Errorf("User namespaces enabled, but no gid mappings found.")
+		}
+		id, found := c.hostIDFromMapping(containerId, c.GidMappings)
+		if !found {
+			return -1, fmt.Errorf("User namespaces enabled, but no group mapping found.")
+		}
+		return id, nil
+	}
+	// Return unchanged id.
+	return containerId, nil
+}
+
+// HostRootGID gets the root gid for the process on host which could be non-zero
+// when user namespaces are enabled.
+func (c Config) HostRootGID() (int, error) {
+	return c.HostGID(0)
+}
+
+// Utility function that gets a host ID for a container ID from user namespace map
+// if that ID is present in the map.
+func (c Config) hostIDFromMapping(containerID int, uMap []IDMap) (int, bool) {
+	for _, m := range uMap {
+		if (containerID >= m.ContainerID) && (containerID <= (m.ContainerID + m.Size - 1)) {
+			hostID := m.HostID + (containerID - m.ContainerID)
+			return hostID, true
+		}
+	}
+	return -1, false
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/device.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/device.go
new file mode 100644
index 0000000000..8701bb212d
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/device.go
@@ -0,0 +1,57 @@
+package configs
+
+import (
+	"fmt"
+	"os"
+)
+
+const (
+	Wildcard = -1
+)
+
+// TODO Windows: This can be factored out in the future
+
+type Device struct {
+	// Device type, block, char, etc.
+	Type rune `json:"type"`
+
+	// Path to the device.
+	Path string `json:"path"`
+
+	// Major is the device's major number.
+	Major int64 `json:"major"`
+
+	// Minor is the device's minor number.
+	Minor int64 `json:"minor"`
+
+	// Cgroup permissions format, rwm.
+	Permissions string `json:"permissions"`
+
+	// FileMode permission bits for the device.
+	FileMode os.FileMode `json:"file_mode"`
+
+	// Uid of the device.
+	Uid uint32 `json:"uid"`
+
+	// Gid of the device.
+	Gid uint32 `json:"gid"`
+
+	// Write the file to the allowed list
+	Allow bool `json:"allow"`
+}
+
+func (d *Device) CgroupString() string {
+	return fmt.Sprintf("%c %s:%s %s", d.Type, deviceNumberString(d.Major), deviceNumberString(d.Minor), d.Permissions)
+}
+
+func (d *Device) Mkdev() int {
+	return int((d.Major << 8) | (d.Minor & 0xff) | ((d.Minor & 0xfff00) << 12))
+}
+
+// deviceNumberString converts the device number to a string return result.
+func deviceNumberString(number int64) string {
+	if number == Wildcard {
+		return "*"
+	}
+	return fmt.Sprint(number)
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/device_defaults.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/device_defaults.go
new file mode 100644
index 0000000000..e4f423c523
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/device_defaults.go
@@ -0,0 +1,111 @@
+// +build linux
+
+package configs
+
+var (
+	// DefaultSimpleDevices are devices that are to be both allowed and created.
+	DefaultSimpleDevices = []*Device{
+		// /dev/null and zero
+		{
+			Path:        "/dev/null",
+			Type:        'c',
+			Major:       1,
+			Minor:       3,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+		{
+			Path:        "/dev/zero",
+			Type:        'c',
+			Major:       1,
+			Minor:       5,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+
+		{
+			Path:        "/dev/full",
+			Type:        'c',
+			Major:       1,
+			Minor:       7,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+
+		// consoles and ttys
+		{
+			Path:        "/dev/tty",
+			Type:        'c',
+			Major:       5,
+			Minor:       0,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+
+		// /dev/urandom,/dev/random
+		{
+			Path:        "/dev/urandom",
+			Type:        'c',
+			Major:       1,
+			Minor:       9,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+		{
+			Path:        "/dev/random",
+			Type:        'c',
+			Major:       1,
+			Minor:       8,
+			Permissions: "rwm",
+			FileMode:    0666,
+		},
+	}
+	DefaultAllowedDevices = append([]*Device{
+		// allow mknod for any device
+		{
+			Type:        'c',
+			Major:       Wildcard,
+			Minor:       Wildcard,
+			Permissions: "m",
+		},
+		{
+			Type:        'b',
+			Major:       Wildcard,
+			Minor:       Wildcard,
+			Permissions: "m",
+		},
+
+		{
+			Path:        "/dev/console",
+			Type:        'c',
+			Major:       5,
+			Minor:       1,
+			Permissions: "rwm",
+		},
+		// /dev/pts/ - pts namespaces are "coming soon"
+		{
+			Path:        "",
+			Type:        'c',
+			Major:       136,
+			Minor:       Wildcard,
+			Permissions: "rwm",
+		},
+		{
+			Path:        "",
+			Type:        'c',
+			Major:       5,
+			Minor:       2,
+			Permissions: "rwm",
+		},
+
+		// tuntap
+		{
+			Path:        "",
+			Type:        'c',
+			Major:       10,
+			Minor:       200,
+			Permissions: "rwm",
+		},
+	}, DefaultSimpleDevices...)
+	DefaultAutoCreatedDevices = append([]*Device{}, DefaultSimpleDevices...)
+)
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/hugepage_limit.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/hugepage_limit.go
new file mode 100644
index 0000000000..d30216380b
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/hugepage_limit.go
@@ -0,0 +1,9 @@
+package configs
+
+type HugepageLimit struct {
+	// which type of hugepage to limit.
+	Pagesize string `json:"page_size"`
+
+	// usage limit for hugepage.
+	Limit uint64 `json:"limit"`
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/intelrdt.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/intelrdt.go
new file mode 100644
index 0000000000..36bd5f96a1
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/intelrdt.go
@@ -0,0 +1,7 @@
+package configs
+
+type IntelRdt struct {
+	// The schema for L3 cache id and capacity bitmask (CBM)
+	// Format: "L3:<cache_id0>=<cbm0>;<cache_id1>=<cbm1>;..."
+	L3CacheSchema string `json:"l3_cache_schema,omitempty"`
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/interface_priority_map.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/interface_priority_map.go
new file mode 100644
index 0000000000..9a0395eaf5
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/interface_priority_map.go
@@ -0,0 +1,14 @@
+package configs
+
+import (
+	"fmt"
+)
+
+type IfPrioMap struct {
+	Interface string `json:"interface"`
+	Priority  int64  `json:"priority"`
+}
+
+func (i *IfPrioMap) CgroupString() string {
+	return fmt.Sprintf("%s %d", i.Interface, i.Priority)
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/mount.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/mount.go
new file mode 100644
index 0000000000..670757ddb5
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/mount.go
@@ -0,0 +1,39 @@
+package configs
+
+const (
+	// EXT_COPYUP is a directive to copy up the contents of a directory when
+	// a tmpfs is mounted over it.
+	EXT_COPYUP = 1 << iota
+)
+
+type Mount struct {
+	// Source path for the mount.
+	Source string `json:"source"`
+
+	// Destination path for the mount inside the container.
+	Destination string `json:"destination"`
+
+	// Device the mount is for.
+	Device string `json:"device"`
+
+	// Mount flags.
+	Flags int `json:"flags"`
+
+	// Propagation Flags
+	PropagationFlags []int `json:"propagation_flags"`
+
+	// Mount data applied to the mount.
+	Data string `json:"data"`
+
+	// Relabel source if set, "z" indicates shared, "Z" indicates unshared.
+	Relabel string `json:"relabel"`
+
+	// Extensions are additional flags that are specific to runc.
+	Extensions int `json:"extensions"`
+
+	// Optional Command to be run before Source is mounted.
+	PremountCmds []Command `json:"premount_cmds"`
+
+	// Optional Command to be run after Source is mounted.
+	PostmountCmds []Command `json:"postmount_cmds"`
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces.go
new file mode 100644
index 0000000000..a3329a31a9
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces.go
@@ -0,0 +1,5 @@
+package configs
+
+type NamespaceType string
+
+type Namespaces []Namespace
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_linux.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_linux.go
new file mode 100644
index 0000000000..5fc171a57b
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_linux.go
@@ -0,0 +1,122 @@
+package configs
+
+import (
+	"fmt"
+	"os"
+	"sync"
+)
+
+const (
+	NEWNET  NamespaceType = "NEWNET"
+	NEWPID  NamespaceType = "NEWPID"
+	NEWNS   NamespaceType = "NEWNS"
+	NEWUTS  NamespaceType = "NEWUTS"
+	NEWIPC  NamespaceType = "NEWIPC"
+	NEWUSER NamespaceType = "NEWUSER"
+)
+
+var (
+	nsLock              sync.Mutex
+	supportedNamespaces = make(map[NamespaceType]bool)
+)
+
+// NsName converts the namespace type to its filename
+func NsName(ns NamespaceType) string {
+	switch ns {
+	case NEWNET:
+		return "net"
+	case NEWNS:
+		return "mnt"
+	case NEWPID:
+		return "pid"
+	case NEWIPC:
+		return "ipc"
+	case NEWUSER:
+		return "user"
+	case NEWUTS:
+		return "uts"
+	}
+	return ""
+}
+
+// IsNamespaceSupported returns whether a namespace is available or
+// not
+func IsNamespaceSupported(ns NamespaceType) bool {
+	nsLock.Lock()
+	defer nsLock.Unlock()
+	supported, ok := supportedNamespaces[ns]
+	if ok {
+		return supported
+	}
+	nsFile := NsName(ns)
+	// if the namespace type is unknown, just return false
+	if nsFile == "" {
+		return false
+	}
+	_, err := os.Stat(fmt.Sprintf("/proc/self/ns/%s", nsFile))
+	// a namespace is supported if it exists and we have permissions to read it
+	supported = err == nil
+	supportedNamespaces[ns] = supported
+	return supported
+}
+
+func NamespaceTypes() []NamespaceType {
+	return []NamespaceType{
+		NEWUSER, // Keep user NS always first, don't move it.
+		NEWIPC,
+		NEWUTS,
+		NEWNET,
+		NEWPID,
+		NEWNS,
+	}
+}
+
+// Namespace defines configuration for each namespace.  It specifies an
+// alternate path that is able to be joined via setns.
+type Namespace struct {
+	Type NamespaceType `json:"type"`
+	Path string        `json:"path"`
+}
+
+func (n *Namespace) GetPath(pid int) string {
+	return fmt.Sprintf("/proc/%d/ns/%s", pid, NsName(n.Type))
+}
+
+func (n *Namespaces) Remove(t NamespaceType) bool {
+	i := n.index(t)
+	if i == -1 {
+		return false
+	}
+	*n = append((*n)[:i], (*n)[i+1:]...)
+	return true
+}
+
+func (n *Namespaces) Add(t NamespaceType, path string) {
+	i := n.index(t)
+	if i == -1 {
+		*n = append(*n, Namespace{Type: t, Path: path})
+		return
+	}
+	(*n)[i].Path = path
+}
+
+func (n *Namespaces) index(t NamespaceType) int {
+	for i, ns := range *n {
+		if ns.Type == t {
+			return i
+		}
+	}
+	return -1
+}
+
+func (n *Namespaces) Contains(t NamespaceType) bool {
+	return n.index(t) != -1
+}
+
+func (n *Namespaces) PathOf(t NamespaceType) string {
+	i := n.index(t)
+	if i == -1 {
+		return ""
+	}
+	return (*n)[i].Path
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall.go
new file mode 100644
index 0000000000..4ce6813d23
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall.go
@@ -0,0 +1,31 @@
+// +build linux
+
+package configs
+
+import "golang.org/x/sys/unix"
+
+func (n *Namespace) Syscall() int {
+	return namespaceInfo[n.Type]
+}
+
+var namespaceInfo = map[NamespaceType]int{
+	NEWNET:  unix.CLONE_NEWNET,
+	NEWNS:   unix.CLONE_NEWNS,
+	NEWUSER: unix.CLONE_NEWUSER,
+	NEWIPC:  unix.CLONE_NEWIPC,
+	NEWUTS:  unix.CLONE_NEWUTS,
+	NEWPID:  unix.CLONE_NEWPID,
+}
+
+// CloneFlags parses the container's Namespaces options to set the correct
+// flags on clone, unshare. This function returns flags only for new namespaces.
+func (n *Namespaces) CloneFlags() uintptr {
+	var flag int
+	for _, v := range *n {
+		if v.Path != "" {
+			continue
+		}
+		flag |= namespaceInfo[v.Type]
+	}
+	return uintptr(flag)
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall_unsupported.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall_unsupported.go
new file mode 100644
index 0000000000..5d9a5c81f3
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_syscall_unsupported.go
@@ -0,0 +1,13 @@
+// +build !linux,!windows
+
+package configs
+
+func (n *Namespace) Syscall() int {
+	panic("No namespace syscall support")
+}
+
+// CloneFlags parses the container's Namespaces options to set the correct
+// flags on clone, unshare. This function returns flags only for new namespaces.
+func (n *Namespaces) CloneFlags() uintptr {
+	panic("No namespace syscall support")
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_unsupported.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_unsupported.go
new file mode 100644
index 0000000000..19bf713de3
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/namespaces_unsupported.go
@@ -0,0 +1,8 @@
+// +build !linux
+
+package configs
+
+// Namespace defines configuration for each namespace.  It specifies an
+// alternate path that is able to be joined via setns.
+type Namespace struct {
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/configs/network.go b/vendor/github.com/opencontainers/runc/libcontainer/configs/network.go
new file mode 100644
index 0000000000..ccdb228e14
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/configs/network.go
@@ -0,0 +1,72 @@
+package configs
+
+// Network defines configuration for a container's networking stack
+//
+// The network configuration can be omitted from a container causing the
+// container to be setup with the host's networking stack
+type Network struct {
+	// Type sets the networks type, commonly veth and loopback
+	Type string `json:"type"`
+
+	// Name of the network interface
+	Name string `json:"name"`
+
+	// The bridge to use.
+	Bridge string `json:"bridge"`
+
+	// MacAddress contains the MAC address to set on the network interface
+	MacAddress string `json:"mac_address"`
+
+	// Address contains the IPv4 and mask to set on the network interface
+	Address string `json:"address"`
+
+	// Gateway sets the gateway address that is used as the default for the interface
+	Gateway string `json:"gateway"`
+
+	// IPv6Address contains the IPv6 and mask to set on the network interface
+	IPv6Address string `json:"ipv6_address"`
+
+	// IPv6Gateway sets the ipv6 gateway address that is used as the default for the interface
+	IPv6Gateway string `json:"ipv6_gateway"`
+
+	// Mtu sets the mtu value for the interface and will be mirrored on both the host and
+	// container's interfaces if a pair is created, specifically in the case of type veth
+	// Note: This does not apply to loopback interfaces.
+	Mtu int `json:"mtu"`
+
+	// TxQueueLen sets the tx_queuelen value for the interface and will be mirrored on both the host and
+	// container's interfaces if a pair is created, specifically in the case of type veth
+	// Note: This does not apply to loopback interfaces.
+	TxQueueLen int `json:"txqueuelen"`
+
+	// HostInterfaceName is a unique name of a veth pair that resides on in the host interface of the
+	// container.
+	HostInterfaceName string `json:"host_interface_name"`
+
+	// HairpinMode specifies if hairpin NAT should be enabled on the virtual interface
+	// bridge port in the case of type veth
+	// Note: This is unsupported on some systems.
+	// Note: This does not apply to loopback interfaces.
+	HairpinMode bool `json:"hairpin_mode"`
+}
+
+// Routes can be specified to create entries in the route table as the container is started
+//
+// All of destination, source, and gateway should be either IPv4 or IPv6.
+// One of the three options must be present, and omitted entries will use their
+// IP family default for the route table.  For IPv4 for example, setting the
+// gateway to 1.2.3.4 and the interface to eth0 will set up a standard
+// destination of 0.0.0.0(or *) when viewed in the route table.
+type Route struct {
+	// Sets the destination and mask, should be a CIDR.  Accepts IPv4 and IPv6
+	Destination string `json:"destination"`
+
+	// Sets the source and mask, should be a CIDR.  Accepts IPv4 and IPv6
+	Source string `json:"source"`
+
+	// Sets the gateway.  Accepts IPv4 and IPv6
+	Gateway string `json:"gateway"`
+
+	// The device to set this route up for, for example: eth0
+	InterfaceName string `json:"interface_name"`
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/devices/devices.go b/vendor/github.com/opencontainers/runc/libcontainer/devices/devices.go
new file mode 100644
index 0000000000..3619258905
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/devices/devices.go
@@ -0,0 +1,104 @@
+package devices
+
+import (
+	"errors"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+
+	"github.com/opencontainers/runc/libcontainer/configs"
+
+	"golang.org/x/sys/unix"
+)
+
+var (
+	ErrNotADevice = errors.New("not a device node")
+)
+
+// Testing dependencies
+var (
+	unixLstat     = unix.Lstat
+	ioutilReadDir = ioutil.ReadDir
+)
+
+// Given the path to a device and its cgroup_permissions(which cannot be easily queried) look up the information about a linux device and return that information as a Device struct.
+func DeviceFromPath(path, permissions string) (*configs.Device, error) {
+	var stat unix.Stat_t
+	err := unixLstat(path, &stat)
+	if err != nil {
+		return nil, err
+	}
+
+	var (
+		devNumber = stat.Rdev
+		major     = unix.Major(devNumber)
+	)
+	if major == 0 {
+		return nil, ErrNotADevice
+	}
+
+	var (
+		devType rune
+		mode    = stat.Mode
+	)
+	switch {
+	case mode&unix.S_IFBLK == unix.S_IFBLK:
+		devType = 'b'
+	case mode&unix.S_IFCHR == unix.S_IFCHR:
+		devType = 'c'
+	}
+	return &configs.Device{
+		Type:        devType,
+		Path:        path,
+		Major:       int64(major),
+		Minor:       int64(unix.Minor(devNumber)),
+		Permissions: permissions,
+		FileMode:    os.FileMode(mode),
+		Uid:         stat.Uid,
+		Gid:         stat.Gid,
+	}, nil
+}
+
+func HostDevices() ([]*configs.Device, error) {
+	return getDevices("/dev")
+}
+
+func getDevices(path string) ([]*configs.Device, error) {
+	files, err := ioutilReadDir(path)
+	if err != nil {
+		return nil, err
+	}
+	out := []*configs.Device{}
+	for _, f := range files {
+		switch {
+		case f.IsDir():
+			switch f.Name() {
+			// ".lxc" & ".lxd-mounts" added to address https://github.com/lxc/lxd/issues/2825
+			case "pts", "shm", "fd", "mqueue", ".lxc", ".lxd-mounts":
+				continue
+			default:
+				sub, err := getDevices(filepath.Join(path, f.Name()))
+				if err != nil {
+					return nil, err
+				}
+
+				out = append(out, sub...)
+				continue
+			}
+		case f.Name() == "console":
+			continue
+		}
+		device, err := DeviceFromPath(filepath.Join(path, f.Name()), "rwm")
+		if err != nil {
+			if err == ErrNotADevice {
+				continue
+			}
+			if os.IsNotExist(err) {
+				continue
+			}
+			return nil, err
+		}
+		out = append(out, device)
+	}
+	return out, nil
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/linux.go b/vendor/github.com/opencontainers/runc/libcontainer/system/linux.go
index 8b199d92ed..5f124cd8bb 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/linux.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/linux.go
@@ -7,8 +7,10 @@ import (
 	"fmt"
 	"os"
 	"os/exec"
-	"syscall"
+	"syscall" // only for exec
 	"unsafe"
+
+	"golang.org/x/sys/unix"
 )
 
 // If arg2 is nonzero, set the "child subreaper" attribute of the
@@ -53,8 +55,8 @@ func Execv(cmd string, args []string, env []string) error {
 	return syscall.Exec(name, args, env)
 }
 
-func Prlimit(pid, resource int, limit syscall.Rlimit) error {
-	_, _, err := syscall.RawSyscall6(syscall.SYS_PRLIMIT64, uintptr(pid), uintptr(resource), uintptr(unsafe.Pointer(&limit)), uintptr(unsafe.Pointer(&limit)), 0, 0)
+func Prlimit(pid, resource int, limit unix.Rlimit) error {
+	_, _, err := unix.RawSyscall6(unix.SYS_PRLIMIT64, uintptr(pid), uintptr(resource), uintptr(unsafe.Pointer(&limit)), uintptr(unsafe.Pointer(&limit)), 0, 0)
 	if err != 0 {
 		return err
 	}
@@ -62,7 +64,7 @@ func Prlimit(pid, resource int, limit syscall.Rlimit) error {
 }
 
 func SetParentDeathSignal(sig uintptr) error {
-	if _, _, err := syscall.RawSyscall(syscall.SYS_PRCTL, syscall.PR_SET_PDEATHSIG, sig, 0); err != 0 {
+	if err := unix.Prctl(unix.PR_SET_PDEATHSIG, sig, 0, 0, 0); err != nil {
 		return err
 	}
 	return nil
@@ -70,15 +72,14 @@ func SetParentDeathSignal(sig uintptr) error {
 
 func GetParentDeathSignal() (ParentDeathSignal, error) {
 	var sig int
-	_, _, err := syscall.RawSyscall(syscall.SYS_PRCTL, syscall.PR_GET_PDEATHSIG, uintptr(unsafe.Pointer(&sig)), 0)
-	if err != 0 {
+	if err := unix.Prctl(unix.PR_GET_PDEATHSIG, uintptr(unsafe.Pointer(&sig)), 0, 0, 0); err != nil {
 		return -1, err
 	}
 	return ParentDeathSignal(sig), nil
 }
 
 func SetKeepCaps() error {
-	if _, _, err := syscall.RawSyscall(syscall.SYS_PRCTL, syscall.PR_SET_KEEPCAPS, 1, 0); err != 0 {
+	if err := unix.Prctl(unix.PR_SET_KEEPCAPS, 1, 0, 0, 0); err != nil {
 		return err
 	}
 
@@ -86,7 +87,7 @@ func SetKeepCaps() error {
 }
 
 func ClearKeepCaps() error {
-	if _, _, err := syscall.RawSyscall(syscall.SYS_PRCTL, syscall.PR_SET_KEEPCAPS, 0, 0); err != 0 {
+	if err := unix.Prctl(unix.PR_SET_KEEPCAPS, 0, 0, 0, 0); err != nil {
 		return err
 	}
 
@@ -94,23 +95,18 @@ func ClearKeepCaps() error {
 }
 
 func Setctty() error {
-	if _, _, err := syscall.RawSyscall(syscall.SYS_IOCTL, 0, uintptr(syscall.TIOCSCTTY), 0); err != 0 {
+	if err := unix.IoctlSetInt(0, unix.TIOCSCTTY, 0); err != nil {
 		return err
 	}
 	return nil
 }
 
-/*
- * Detect whether we are currently running in a user namespace.
- * Copied from github.com/lxc/lxd/shared/util.go
- */
+// RunningInUserNS detects whether we are currently running in a user namespace.
+// Copied from github.com/lxc/lxd/shared/util.go
 func RunningInUserNS() bool {
 	file, err := os.Open("/proc/self/uid_map")
 	if err != nil {
-		/*
-		 * This kernel-provided file only exists if user namespaces are
-		 * supported
-		 */
+		// This kernel-provided file only exists if user namespaces are supported
 		return false
 	}
 	defer file.Close()
@@ -136,13 +132,16 @@ func RunningInUserNS() bool {
 
 // SetSubreaper sets the value i as the subreaper setting for the calling process
 func SetSubreaper(i int) error {
-	return Prctl(PR_SET_CHILD_SUBREAPER, uintptr(i), 0, 0, 0)
+	return unix.Prctl(PR_SET_CHILD_SUBREAPER, uintptr(i), 0, 0, 0)
 }
 
-func Prctl(option int, arg2, arg3, arg4, arg5 uintptr) (err error) {
-	_, _, e1 := syscall.Syscall6(syscall.SYS_PRCTL, uintptr(option), arg2, arg3, arg4, arg5, 0)
-	if e1 != 0 {
-		err = e1
+// GetSubreaper returns the subreaper setting for the calling process
+func GetSubreaper() (int, error) {
+	var i uintptr
+
+	if err := unix.Prctl(unix.PR_GET_CHILD_SUBREAPER, uintptr(unsafe.Pointer(&i)), 0, 0, 0); err != nil {
+		return -1, err
 	}
-	return
+
+	return int(i), nil
 }
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/proc.go b/vendor/github.com/opencontainers/runc/libcontainer/system/proc.go
index 37808a29f6..79232a4371 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/proc.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/proc.go
@@ -1,27 +1,113 @@
 package system
 
 import (
+	"fmt"
 	"io/ioutil"
 	"path/filepath"
 	"strconv"
 	"strings"
 )
 
-// look in /proc to find the process start time so that we can verify
-// that this pid has started after ourself
+// State is the status of a process.
+type State rune
+
+const ( // Only values for Linux 3.14 and later are listed here
+	Dead        State = 'X'
+	DiskSleep   State = 'D'
+	Running     State = 'R'
+	Sleeping    State = 'S'
+	Stopped     State = 'T'
+	TracingStop State = 't'
+	Zombie      State = 'Z'
+)
+
+// String forms of the state from proc(5)'s documentation for
+// /proc/[pid]/status' "State" field.
+func (s State) String() string {
+	switch s {
+	case Dead:
+		return "dead"
+	case DiskSleep:
+		return "disk sleep"
+	case Running:
+		return "running"
+	case Sleeping:
+		return "sleeping"
+	case Stopped:
+		return "stopped"
+	case TracingStop:
+		return "tracing stop"
+	case Zombie:
+		return "zombie"
+	default:
+		return fmt.Sprintf("unknown (%c)", s)
+	}
+}
+
+// Stat_t represents the information from /proc/[pid]/stat, as
+// described in proc(5) with names based on the /proc/[pid]/status
+// fields.
+type Stat_t struct {
+	// PID is the process ID.
+	PID uint
+
+	// Name is the command run by the process.
+	Name string
+
+	// State is the state of the process.
+	State State
+
+	// StartTime is the number of clock ticks after system boot (since
+	// Linux 2.6).
+	StartTime uint64
+}
+
+// Stat returns a Stat_t instance for the specified process.
+func Stat(pid int) (stat Stat_t, err error) {
+	bytes, err := ioutil.ReadFile(filepath.Join("/proc", strconv.Itoa(pid), "stat"))
+	if err != nil {
+		return stat, err
+	}
+	return parseStat(string(bytes))
+}
+
+// GetProcessStartTime is deprecated.  Use Stat(pid) and
+// Stat_t.StartTime instead.
 func GetProcessStartTime(pid int) (string, error) {
-	data, err := ioutil.ReadFile(filepath.Join("/proc", strconv.Itoa(pid), "stat"))
+	stat, err := Stat(pid)
 	if err != nil {
 		return "", err
 	}
+	return fmt.Sprintf("%d", stat.StartTime), nil
+}
+
+func parseStat(data string) (stat Stat_t, err error) {
+	// From proc(5), field 2 could contain space and is inside `(` and `)`.
+	// The following is an example:
+	// 89653 (gunicorn: maste) S 89630 89653 89653 0 -1 4194560 29689 28896 0 3 146 32 76 19 20 0 1 0 2971844 52965376 3920 18446744073709551615 1 1 0 0 0 0 0 16781312 137447943 0 0 0 17 1 0 0 0 0 0 0 0 0 0 0 0 0 0
+	i := strings.LastIndex(data, ")")
+	if i <= 2 || i >= len(data)-1 {
+		return stat, fmt.Errorf("invalid stat data: %q", data)
+	}
+
+	parts := strings.SplitN(data[:i], "(", 2)
+	if len(parts) != 2 {
+		return stat, fmt.Errorf("invalid stat data: %q", data)
+	}
+
+	stat.Name = parts[1]
+	_, err = fmt.Sscanf(parts[0], "%d", &stat.PID)
+	if err != nil {
+		return stat, err
+	}
 
-	parts := strings.Split(string(data), " ")
-	// the starttime is located at pos 22
-	// from the man page
-	//
-	// starttime %llu (was %lu before Linux 2.6)
-	// (22)  The  time the process started after system boot.  In kernels before Linux 2.6, this
-	// value was expressed in jiffies.  Since Linux 2.6, the value is expressed in  clock  ticks
-	// (divide by sysconf(_SC_CLK_TCK)).
-	return parts[22-1], nil // starts at 1
+	// parts indexes should be offset by 3 from the field number given
+	// proc(5), because parts is zero-indexed and we've removed fields
+	// one (PID) and two (Name) in the paren-split.
+	parts = strings.Split(data[i+2:], " ")
+	var state int
+	fmt.Sscanf(parts[3-3], "%c", &state)
+	stat.State = State(state)
+	fmt.Sscanf(parts[22-3], "%d", &stat.StartTime)
+	return stat, nil
 }
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_32.go b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_32.go
new file mode 100644
index 0000000000..c5ca5d8623
--- /dev/null
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_32.go
@@ -0,0 +1,26 @@
+// +build linux
+// +build 386 arm
+
+package system
+
+import (
+	"golang.org/x/sys/unix"
+)
+
+// Setuid sets the uid of the calling thread to the specified uid.
+func Setuid(uid int) (err error) {
+	_, _, e1 := unix.RawSyscall(unix.SYS_SETUID32, uintptr(uid), 0, 0)
+	if e1 != 0 {
+		err = e1
+	}
+	return
+}
+
+// Setgid sets the gid of the calling thread to the specified gid.
+func Setgid(gid int) (err error) {
+	_, _, e1 := unix.RawSyscall(unix.SYS_SETGID32, uintptr(gid), 0, 0)
+	if e1 != 0 {
+		err = e1
+	}
+	return
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_64.go b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_64.go
index 0816bf8281..11c3faafbf 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_64.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_64.go
@@ -1,14 +1,15 @@
-// +build linux,arm64 linux,amd64 linux,ppc linux,ppc64 linux,ppc64le linux,s390x
+// +build linux
+// +build arm64 amd64 mips mipsle mips64 mips64le ppc ppc64 ppc64le s390x
 
 package system
 
 import (
-	"syscall"
+	"golang.org/x/sys/unix"
 )
 
 // Setuid sets the uid of the calling thread to the specified uid.
 func Setuid(uid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETUID, uintptr(uid), 0, 0)
+	_, _, e1 := unix.RawSyscall(unix.SYS_SETUID, uintptr(uid), 0, 0)
 	if e1 != 0 {
 		err = e1
 	}
@@ -17,7 +18,7 @@ func Setuid(uid int) (err error) {
 
 // Setgid sets the gid of the calling thread to the specified gid.
 func Setgid(gid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETGID, uintptr(gid), 0, 0)
+	_, _, e1 := unix.RawSyscall(unix.SYS_SETGID, uintptr(gid), 0, 0)
 	if e1 != 0 {
 		err = e1
 	}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/sysconfig.go b/vendor/github.com/opencontainers/runc/libcontainer/system/sysconfig.go
index b3a07cba3e..b8434f1050 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/sysconfig.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/sysconfig.go
@@ -1,4 +1,4 @@
-// +build cgo,linux cgo,freebsd
+// +build cgo,linux
 
 package system
 
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/xattrs_linux.go b/vendor/github.com/opencontainers/runc/libcontainer/system/xattrs_linux.go
index 30f74dfb1b..a6823fc99b 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/xattrs_linux.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/system/xattrs_linux.go
@@ -1,99 +1,35 @@
 package system
 
-import (
-	"syscall"
-	"unsafe"
-)
-
-var _zero uintptr
-
-// Returns the size of xattrs and nil error
-// Requires path, takes allocated []byte or nil as last argument
-func Llistxattr(path string, dest []byte) (size int, err error) {
-	pathBytes, err := syscall.BytePtrFromString(path)
-	if err != nil {
-		return -1, err
-	}
-	var newpathBytes unsafe.Pointer
-	if len(dest) > 0 {
-		newpathBytes = unsafe.Pointer(&dest[0])
-	} else {
-		newpathBytes = unsafe.Pointer(&_zero)
-	}
-
-	_size, _, errno := syscall.Syscall6(syscall.SYS_LLISTXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(newpathBytes), uintptr(len(dest)), 0, 0, 0)
-	size = int(_size)
-	if errno != 0 {
-		return -1, errno
-	}
-
-	return size, nil
-}
+import "golang.org/x/sys/unix"
 
 // Returns a []byte slice if the xattr is set and nil otherwise
 // Requires path and its attribute as arguments
 func Lgetxattr(path string, attr string) ([]byte, error) {
 	var sz int
-	pathBytes, err := syscall.BytePtrFromString(path)
-	if err != nil {
-		return nil, err
-	}
-	attrBytes, err := syscall.BytePtrFromString(attr)
-	if err != nil {
-		return nil, err
-	}
-
 	// Start with a 128 length byte array
-	sz = 128
-	dest := make([]byte, sz)
-	destBytes := unsafe.Pointer(&dest[0])
-	_sz, _, errno := syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
+	dest := make([]byte, 128)
+	sz, errno := unix.Lgetxattr(path, attr, dest)
 
 	switch {
-	case errno == syscall.ENODATA:
+	case errno == unix.ENODATA:
 		return nil, errno
-	case errno == syscall.ENOTSUP:
+	case errno == unix.ENOTSUP:
 		return nil, errno
-	case errno == syscall.ERANGE:
+	case errno == unix.ERANGE:
 		// 128 byte array might just not be good enough,
-		// A dummy buffer is used ``uintptr(0)`` to get real size
+		// A dummy buffer is used to get the real size
 		// of the xattrs on disk
-		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(unsafe.Pointer(nil)), uintptr(0), 0, 0)
-		sz = int(_sz)
-		if sz < 0 {
+		sz, errno = unix.Lgetxattr(path, attr, []byte{})
+		if errno != nil {
 			return nil, errno
 		}
 		dest = make([]byte, sz)
-		destBytes := unsafe.Pointer(&dest[0])
-		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
-		if errno != 0 {
+		sz, errno = unix.Lgetxattr(path, attr, dest)
+		if errno != nil {
 			return nil, errno
 		}
-	case errno != 0:
+	case errno != nil:
 		return nil, errno
 	}
-	sz = int(_sz)
 	return dest[:sz], nil
 }
-
-func Lsetxattr(path string, attr string, data []byte, flags int) error {
-	pathBytes, err := syscall.BytePtrFromString(path)
-	if err != nil {
-		return err
-	}
-	attrBytes, err := syscall.BytePtrFromString(attr)
-	if err != nil {
-		return err
-	}
-	var dataBytes unsafe.Pointer
-	if len(data) > 0 {
-		dataBytes = unsafe.Pointer(&data[0])
-	} else {
-		dataBytes = unsafe.Pointer(&_zero)
-	}
-	_, _, errno := syscall.Syscall6(syscall.SYS_LSETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(dataBytes), uintptr(len(data)), uintptr(flags), 0)
-	if errno != 0 {
-		return errno
-	}
-	return nil
-}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup.go b/vendor/github.com/opencontainers/runc/libcontainer/user/lookup.go
index ab1439f361..95e9eebc0b 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/user/lookup.go
@@ -2,7 +2,6 @@ package user
 
 import (
 	"errors"
-	"syscall"
 )
 
 var (
@@ -36,13 +35,6 @@ func lookupUser(filter func(u User) bool) (User, error) {
 	return users[0], nil
 }
 
-// CurrentUser looks up the current user by their user id in /etc/passwd. If the
-// user cannot be found (or there is no /etc/passwd file on the filesystem),
-// then CurrentUser returns an error.
-func CurrentUser() (User, error) {
-	return LookupUid(syscall.Getuid())
-}
-
 // LookupUser looks up a user by their username in /etc/passwd. If the user
 // cannot be found (or there is no /etc/passwd file on the filesystem), then
 // LookupUser returns an error.
@@ -84,13 +76,6 @@ func lookupGroup(filter func(g Group) bool) (Group, error) {
 	return groups[0], nil
 }
 
-// CurrentGroup looks up the current user's group by their primary group id's
-// entry in /etc/passwd. If the group cannot be found (or there is no
-// /etc/group file on the filesystem), then CurrentGroup returns an error.
-func CurrentGroup() (Group, error) {
-	return LookupGid(syscall.Getgid())
-}
-
 // LookupGroup looks up a group by its name in /etc/group. If the group cannot
 // be found (or there is no /etc/group file on the filesystem), then LookupGroup
 // returns an error.
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unix.go b/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unix.go
index 758b734c22..c2bb9ec90d 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unix.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unix.go
@@ -5,6 +5,8 @@ package user
 import (
 	"io"
 	"os"
+
+	"golang.org/x/sys/unix"
 )
 
 // Unix-specific path to the passwd and group formatted files.
@@ -28,3 +30,17 @@ func GetGroupPath() (string, error) {
 func GetGroup() (io.ReadCloser, error) {
 	return os.Open(unixGroupPath)
 }
+
+// CurrentUser looks up the current user by their user id in /etc/passwd. If the
+// user cannot be found (or there is no /etc/passwd file on the filesystem),
+// then CurrentUser returns an error.
+func CurrentUser() (User, error) {
+	return LookupUid(unix.Getuid())
+}
+
+// CurrentGroup looks up the current user's group by their primary group id's
+// entry in /etc/passwd. If the group cannot be found (or there is no
+// /etc/group file on the filesystem), then CurrentGroup returns an error.
+func CurrentGroup() (Group, error) {
+	return LookupGid(unix.Getgid())
+}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/user/user.go b/vendor/github.com/opencontainers/runc/libcontainer/user/user.go
index 43fd39ef54..8962cab331 100644
--- a/vendor/github.com/opencontainers/runc/libcontainer/user/user.go
+++ b/vendor/github.com/opencontainers/runc/libcontainer/user/user.go
@@ -199,18 +199,16 @@ type ExecUser struct {
 // files cannot be opened for any reason, the error is ignored and a nil
 // io.Reader is passed instead.
 func GetExecUserPath(userSpec string, defaults *ExecUser, passwdPath, groupPath string) (*ExecUser, error) {
-	passwd, err := os.Open(passwdPath)
-	if err != nil {
-		passwd = nil
-	} else {
-		defer passwd.Close()
+	var passwd, group io.Reader
+
+	if passwdFile, err := os.Open(passwdPath); err == nil {
+		passwd = passwdFile
+		defer passwdFile.Close()
 	}
 
-	group, err := os.Open(groupPath)
-	if err != nil {
-		group = nil
-	} else {
-		defer group.Close()
+	if groupFile, err := os.Open(groupPath); err == nil {
+		group = groupFile
+		defer groupFile.Close()
 	}
 
 	return GetExecUser(userSpec, defaults, passwd, group)
@@ -343,7 +341,7 @@ func GetExecUser(userSpec string, defaults *ExecUser, passwd, group io.Reader) (
 			if len(groups) > 0 {
 				// First match wins, even if there's more than one matching entry.
 				user.Gid = groups[0].Gid
-			} else if groupArg != "" {
+			} else {
 				// If we can't find a group with the given name, the only other valid
 				// option is if it's a numeric group name with no associated entry in group.
 
@@ -433,9 +431,11 @@ func GetAdditionalGroups(additionalGroups []string, group io.Reader) ([]int, err
 // that opens the groupPath given and gives it as an argument to
 // GetAdditionalGroups.
 func GetAdditionalGroupsPath(additionalGroups []string, groupPath string) ([]int, error) {
-	group, err := os.Open(groupPath)
-	if err == nil {
-		defer group.Close()
+	var group io.Reader
+
+	if groupFile, err := os.Open(groupPath); err == nil {
+		group = groupFile
+		defer groupFile.Close()
 	}
 	return GetAdditionalGroups(additionalGroups, group)
 }
diff --git a/vendor/github.com/opencontainers/runtime-spec/LICENSE b/vendor/github.com/opencontainers/runtime-spec/LICENSE
new file mode 100644
index 0000000000..bdc403653e
--- /dev/null
+++ b/vendor/github.com/opencontainers/runtime-spec/LICENSE
@@ -0,0 +1,191 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2015 The Linux Foundation.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runtime-spec/specs-go/config.go b/vendor/github.com/opencontainers/runtime-spec/specs-go/config.go
new file mode 100644
index 0000000000..71c9fa7731
--- /dev/null
+++ b/vendor/github.com/opencontainers/runtime-spec/specs-go/config.go
@@ -0,0 +1,570 @@
+package specs
+
+import "os"
+
+// Spec is the base configuration for the container.
+type Spec struct {
+	// Version of the Open Container Initiative Runtime Specification with which the bundle complies.
+	Version string `json:"ociVersion"`
+	// Process configures the container process.
+	Process *Process `json:"process,omitempty"`
+	// Root configures the container's root filesystem.
+	Root *Root `json:"root,omitempty"`
+	// Hostname configures the container's hostname.
+	Hostname string `json:"hostname,omitempty"`
+	// Mounts configures additional mounts (on top of Root).
+	Mounts []Mount `json:"mounts,omitempty"`
+	// Hooks configures callbacks for container lifecycle events.
+	Hooks *Hooks `json:"hooks,omitempty" platform:"linux,solaris"`
+	// Annotations contains arbitrary metadata for the container.
+	Annotations map[string]string `json:"annotations,omitempty"`
+
+	// Linux is platform-specific configuration for Linux based containers.
+	Linux *Linux `json:"linux,omitempty" platform:"linux"`
+	// Solaris is platform-specific configuration for Solaris based containers.
+	Solaris *Solaris `json:"solaris,omitempty" platform:"solaris"`
+	// Windows is platform-specific configuration for Windows based containers.
+	Windows *Windows `json:"windows,omitempty" platform:"windows"`
+}
+
+// Process contains information to start a specific application inside the container.
+type Process struct {
+	// Terminal creates an interactive terminal for the container.
+	Terminal bool `json:"terminal,omitempty"`
+	// ConsoleSize specifies the size of the console.
+	ConsoleSize *Box `json:"consoleSize,omitempty"`
+	// User specifies user information for the process.
+	User User `json:"user"`
+	// Args specifies the binary and arguments for the application to execute.
+	Args []string `json:"args"`
+	// Env populates the process environment for the process.
+	Env []string `json:"env,omitempty"`
+	// Cwd is the current working directory for the process and must be
+	// relative to the container's root.
+	Cwd string `json:"cwd"`
+	// Capabilities are Linux capabilities that are kept for the process.
+	Capabilities *LinuxCapabilities `json:"capabilities,omitempty" platform:"linux"`
+	// Rlimits specifies rlimit options to apply to the process.
+	Rlimits []POSIXRlimit `json:"rlimits,omitempty" platform:"linux,solaris"`
+	// NoNewPrivileges controls whether additional privileges could be gained by processes in the container.
+	NoNewPrivileges bool `json:"noNewPrivileges,omitempty" platform:"linux"`
+	// ApparmorProfile specifies the apparmor profile for the container.
+	ApparmorProfile string `json:"apparmorProfile,omitempty" platform:"linux"`
+	// Specify an oom_score_adj for the container.
+	OOMScoreAdj *int `json:"oomScoreAdj,omitempty" platform:"linux"`
+	// SelinuxLabel specifies the selinux context that the container process is run as.
+	SelinuxLabel string `json:"selinuxLabel,omitempty" platform:"linux"`
+}
+
+// LinuxCapabilities specifies the whitelist of capabilities that are kept for a process.
+// http://man7.org/linux/man-pages/man7/capabilities.7.html
+type LinuxCapabilities struct {
+	// Bounding is the set of capabilities checked by the kernel.
+	Bounding []string `json:"bounding,omitempty" platform:"linux"`
+	// Effective is the set of capabilities checked by the kernel.
+	Effective []string `json:"effective,omitempty" platform:"linux"`
+	// Inheritable is the capabilities preserved across execve.
+	Inheritable []string `json:"inheritable,omitempty" platform:"linux"`
+	// Permitted is the limiting superset for effective capabilities.
+	Permitted []string `json:"permitted,omitempty" platform:"linux"`
+	// Ambient is the ambient set of capabilities that are kept.
+	Ambient []string `json:"ambient,omitempty" platform:"linux"`
+}
+
+// Box specifies dimensions of a rectangle. Used for specifying the size of a console.
+type Box struct {
+	// Height is the vertical dimension of a box.
+	Height uint `json:"height"`
+	// Width is the horizontal dimension of a box.
+	Width uint `json:"width"`
+}
+
+// User specifies specific user (and group) information for the container process.
+type User struct {
+	// UID is the user id.
+	UID uint32 `json:"uid" platform:"linux,solaris"`
+	// GID is the group id.
+	GID uint32 `json:"gid" platform:"linux,solaris"`
+	// AdditionalGids are additional group ids set for the container's process.
+	AdditionalGids []uint32 `json:"additionalGids,omitempty" platform:"linux,solaris"`
+	// Username is the user name.
+	Username string `json:"username,omitempty" platform:"windows"`
+}
+
+// Root contains information about the container's root filesystem on the host.
+type Root struct {
+	// Path is the absolute path to the container's root filesystem.
+	Path string `json:"path"`
+	// Readonly makes the root filesystem for the container readonly before the process is executed.
+	Readonly bool `json:"readonly,omitempty"`
+}
+
+// Mount specifies a mount for a container.
+type Mount struct {
+	// Destination is the absolute path where the mount will be placed in the container.
+	Destination string `json:"destination"`
+	// Type specifies the mount kind.
+	Type string `json:"type,omitempty" platform:"linux,solaris"`
+	// Source specifies the source path of the mount.
+	Source string `json:"source,omitempty"`
+	// Options are fstab style mount options.
+	Options []string `json:"options,omitempty"`
+}
+
+// Hook specifies a command that is run at a particular event in the lifecycle of a container
+type Hook struct {
+	Path    string   `json:"path"`
+	Args    []string `json:"args,omitempty"`
+	Env     []string `json:"env,omitempty"`
+	Timeout *int     `json:"timeout,omitempty"`
+}
+
+// Hooks for container setup and teardown
+type Hooks struct {
+	// Prestart is a list of hooks to be run before the container process is executed.
+	Prestart []Hook `json:"prestart,omitempty"`
+	// Poststart is a list of hooks to be run after the container process is started.
+	Poststart []Hook `json:"poststart,omitempty"`
+	// Poststop is a list of hooks to be run after the container process exits.
+	Poststop []Hook `json:"poststop,omitempty"`
+}
+
+// Linux contains platform-specific configuration for Linux based containers.
+type Linux struct {
+	// UIDMapping specifies user mappings for supporting user namespaces.
+	UIDMappings []LinuxIDMapping `json:"uidMappings,omitempty"`
+	// GIDMapping specifies group mappings for supporting user namespaces.
+	GIDMappings []LinuxIDMapping `json:"gidMappings,omitempty"`
+	// Sysctl are a set of key value pairs that are set for the container on start
+	Sysctl map[string]string `json:"sysctl,omitempty"`
+	// Resources contain cgroup information for handling resource constraints
+	// for the container
+	Resources *LinuxResources `json:"resources,omitempty"`
+	// CgroupsPath specifies the path to cgroups that are created and/or joined by the container.
+	// The path is expected to be relative to the cgroups mountpoint.
+	// If resources are specified, the cgroups at CgroupsPath will be updated based on resources.
+	CgroupsPath string `json:"cgroupsPath,omitempty"`
+	// Namespaces contains the namespaces that are created and/or joined by the container
+	Namespaces []LinuxNamespace `json:"namespaces,omitempty"`
+	// Devices are a list of device nodes that are created for the container
+	Devices []LinuxDevice `json:"devices,omitempty"`
+	// Seccomp specifies the seccomp security settings for the container.
+	Seccomp *LinuxSeccomp `json:"seccomp,omitempty"`
+	// RootfsPropagation is the rootfs mount propagation mode for the container.
+	RootfsPropagation string `json:"rootfsPropagation,omitempty"`
+	// MaskedPaths masks over the provided paths inside the container.
+	MaskedPaths []string `json:"maskedPaths,omitempty"`
+	// ReadonlyPaths sets the provided paths as RO inside the container.
+	ReadonlyPaths []string `json:"readonlyPaths,omitempty"`
+	// MountLabel specifies the selinux context for the mounts in the container.
+	MountLabel string `json:"mountLabel,omitempty"`
+	// IntelRdt contains Intel Resource Director Technology (RDT) information
+	// for handling resource constraints (e.g., L3 cache) for the container
+	IntelRdt *LinuxIntelRdt `json:"intelRdt,omitempty"`
+}
+
+// LinuxNamespace is the configuration for a Linux namespace
+type LinuxNamespace struct {
+	// Type is the type of namespace
+	Type LinuxNamespaceType `json:"type"`
+	// Path is a path to an existing namespace persisted on disk that can be joined
+	// and is of the same type
+	Path string `json:"path,omitempty"`
+}
+
+// LinuxNamespaceType is one of the Linux namespaces
+type LinuxNamespaceType string
+
+const (
+	// PIDNamespace for isolating process IDs
+	PIDNamespace LinuxNamespaceType = "pid"
+	// NetworkNamespace for isolating network devices, stacks, ports, etc
+	NetworkNamespace = "network"
+	// MountNamespace for isolating mount points
+	MountNamespace = "mount"
+	// IPCNamespace for isolating System V IPC, POSIX message queues
+	IPCNamespace = "ipc"
+	// UTSNamespace for isolating hostname and NIS domain name
+	UTSNamespace = "uts"
+	// UserNamespace for isolating user and group IDs
+	UserNamespace = "user"
+	// CgroupNamespace for isolating cgroup hierarchies
+	CgroupNamespace = "cgroup"
+)
+
+// LinuxIDMapping specifies UID/GID mappings
+type LinuxIDMapping struct {
+	// HostID is the starting UID/GID on the host to be mapped to 'ContainerID'
+	HostID uint32 `json:"hostID"`
+	// ContainerID is the starting UID/GID in the container
+	ContainerID uint32 `json:"containerID"`
+	// Size is the number of IDs to be mapped
+	Size uint32 `json:"size"`
+}
+
+// POSIXRlimit type and restrictions
+type POSIXRlimit struct {
+	// Type of the rlimit to set
+	Type string `json:"type"`
+	// Hard is the hard limit for the specified type
+	Hard uint64 `json:"hard"`
+	// Soft is the soft limit for the specified type
+	Soft uint64 `json:"soft"`
+}
+
+// LinuxHugepageLimit structure corresponds to limiting kernel hugepages
+type LinuxHugepageLimit struct {
+	// Pagesize is the hugepage size
+	Pagesize string `json:"pageSize"`
+	// Limit is the limit of "hugepagesize" hugetlb usage
+	Limit uint64 `json:"limit"`
+}
+
+// LinuxInterfacePriority for network interfaces
+type LinuxInterfacePriority struct {
+	// Name is the name of the network interface
+	Name string `json:"name"`
+	// Priority for the interface
+	Priority uint32 `json:"priority"`
+}
+
+// linuxBlockIODevice holds major:minor format supported in blkio cgroup
+type linuxBlockIODevice struct {
+	// Major is the device's major number.
+	Major int64 `json:"major"`
+	// Minor is the device's minor number.
+	Minor int64 `json:"minor"`
+}
+
+// LinuxWeightDevice struct holds a `major:minor weight` pair for weightDevice
+type LinuxWeightDevice struct {
+	linuxBlockIODevice
+	// Weight is the bandwidth rate for the device.
+	Weight *uint16 `json:"weight,omitempty"`
+	// LeafWeight is the bandwidth rate for the device while competing with the cgroup's child cgroups, CFQ scheduler only
+	LeafWeight *uint16 `json:"leafWeight,omitempty"`
+}
+
+// LinuxThrottleDevice struct holds a `major:minor rate_per_second` pair
+type LinuxThrottleDevice struct {
+	linuxBlockIODevice
+	// Rate is the IO rate limit per cgroup per device
+	Rate uint64 `json:"rate"`
+}
+
+// LinuxBlockIO for Linux cgroup 'blkio' resource management
+type LinuxBlockIO struct {
+	// Specifies per cgroup weight
+	Weight *uint16 `json:"weight,omitempty"`
+	// Specifies tasks' weight in the given cgroup while competing with the cgroup's child cgroups, CFQ scheduler only
+	LeafWeight *uint16 `json:"leafWeight,omitempty"`
+	// Weight per cgroup per device, can override BlkioWeight
+	WeightDevice []LinuxWeightDevice `json:"weightDevice,omitempty"`
+	// IO read rate limit per cgroup per device, bytes per second
+	ThrottleReadBpsDevice []LinuxThrottleDevice `json:"throttleReadBpsDevice,omitempty"`
+	// IO write rate limit per cgroup per device, bytes per second
+	ThrottleWriteBpsDevice []LinuxThrottleDevice `json:"throttleWriteBpsDevice,omitempty"`
+	// IO read rate limit per cgroup per device, IO per second
+	ThrottleReadIOPSDevice []LinuxThrottleDevice `json:"throttleReadIOPSDevice,omitempty"`
+	// IO write rate limit per cgroup per device, IO per second
+	ThrottleWriteIOPSDevice []LinuxThrottleDevice `json:"throttleWriteIOPSDevice,omitempty"`
+}
+
+// LinuxMemory for Linux cgroup 'memory' resource management
+type LinuxMemory struct {
+	// Memory limit (in bytes).
+	Limit *int64 `json:"limit,omitempty"`
+	// Memory reservation or soft_limit (in bytes).
+	Reservation *int64 `json:"reservation,omitempty"`
+	// Total memory limit (memory + swap).
+	Swap *int64 `json:"swap,omitempty"`
+	// Kernel memory limit (in bytes).
+	Kernel *int64 `json:"kernel,omitempty"`
+	// Kernel memory limit for tcp (in bytes)
+	KernelTCP *int64 `json:"kernelTCP,omitempty"`
+	// How aggressive the kernel will swap memory pages.
+	Swappiness *uint64 `json:"swappiness,omitempty"`
+	// DisableOOMKiller disables the OOM killer for out of memory conditions
+	DisableOOMKiller *bool `json:"disableOOMKiller,omitempty"`
+}
+
+// LinuxCPU for Linux cgroup 'cpu' resource management
+type LinuxCPU struct {
+	// CPU shares (relative weight (ratio) vs. other cgroups with cpu shares).
+	Shares *uint64 `json:"shares,omitempty"`
+	// CPU hardcap limit (in usecs). Allowed cpu time in a given period.
+	Quota *int64 `json:"quota,omitempty"`
+	// CPU period to be used for hardcapping (in usecs).
+	Period *uint64 `json:"period,omitempty"`
+	// How much time realtime scheduling may use (in usecs).
+	RealtimeRuntime *int64 `json:"realtimeRuntime,omitempty"`
+	// CPU period to be used for realtime scheduling (in usecs).
+	RealtimePeriod *uint64 `json:"realtimePeriod,omitempty"`
+	// CPUs to use within the cpuset. Default is to use any CPU available.
+	Cpus string `json:"cpus,omitempty"`
+	// List of memory nodes in the cpuset. Default is to use any available memory node.
+	Mems string `json:"mems,omitempty"`
+}
+
+// LinuxPids for Linux cgroup 'pids' resource management (Linux 4.3)
+type LinuxPids struct {
+	// Maximum number of PIDs. Default is "no limit".
+	Limit int64 `json:"limit"`
+}
+
+// LinuxNetwork identification and priority configuration
+type LinuxNetwork struct {
+	// Set class identifier for container's network packets
+	ClassID *uint32 `json:"classID,omitempty"`
+	// Set priority of network traffic for container
+	Priorities []LinuxInterfacePriority `json:"priorities,omitempty"`
+}
+
+// LinuxResources has container runtime resource constraints
+type LinuxResources struct {
+	// Devices configures the device whitelist.
+	Devices []LinuxDeviceCgroup `json:"devices,omitempty"`
+	// Memory restriction configuration
+	Memory *LinuxMemory `json:"memory,omitempty"`
+	// CPU resource restriction configuration
+	CPU *LinuxCPU `json:"cpu,omitempty"`
+	// Task resource restriction configuration.
+	Pids *LinuxPids `json:"pids,omitempty"`
+	// BlockIO restriction configuration
+	BlockIO *LinuxBlockIO `json:"blockIO,omitempty"`
+	// Hugetlb limit (in bytes)
+	HugepageLimits []LinuxHugepageLimit `json:"hugepageLimits,omitempty"`
+	// Network restriction configuration
+	Network *LinuxNetwork `json:"network,omitempty"`
+}
+
+// LinuxDevice represents the mknod information for a Linux special device file
+type LinuxDevice struct {
+	// Path to the device.
+	Path string `json:"path"`
+	// Device type, block, char, etc.
+	Type string `json:"type"`
+	// Major is the device's major number.
+	Major int64 `json:"major"`
+	// Minor is the device's minor number.
+	Minor int64 `json:"minor"`
+	// FileMode permission bits for the device.
+	FileMode *os.FileMode `json:"fileMode,omitempty"`
+	// UID of the device.
+	UID *uint32 `json:"uid,omitempty"`
+	// Gid of the device.
+	GID *uint32 `json:"gid,omitempty"`
+}
+
+// LinuxDeviceCgroup represents a device rule for the whitelist controller
+type LinuxDeviceCgroup struct {
+	// Allow or deny
+	Allow bool `json:"allow"`
+	// Device type, block, char, etc.
+	Type string `json:"type,omitempty"`
+	// Major is the device's major number.
+	Major *int64 `json:"major,omitempty"`
+	// Minor is the device's minor number.
+	Minor *int64 `json:"minor,omitempty"`
+	// Cgroup access permissions format, rwm.
+	Access string `json:"access,omitempty"`
+}
+
+// Solaris contains platform-specific configuration for Solaris application containers.
+type Solaris struct {
+	// SMF FMRI which should go "online" before we start the container process.
+	Milestone string `json:"milestone,omitempty"`
+	// Maximum set of privileges any process in this container can obtain.
+	LimitPriv string `json:"limitpriv,omitempty"`
+	// The maximum amount of shared memory allowed for this container.
+	MaxShmMemory string `json:"maxShmMemory,omitempty"`
+	// Specification for automatic creation of network resources for this container.
+	Anet []SolarisAnet `json:"anet,omitempty"`
+	// Set limit on the amount of CPU time that can be used by container.
+	CappedCPU *SolarisCappedCPU `json:"cappedCPU,omitempty"`
+	// The physical and swap caps on the memory that can be used by this container.
+	CappedMemory *SolarisCappedMemory `json:"cappedMemory,omitempty"`
+}
+
+// SolarisCappedCPU allows users to set limit on the amount of CPU time that can be used by container.
+type SolarisCappedCPU struct {
+	Ncpus string `json:"ncpus,omitempty"`
+}
+
+// SolarisCappedMemory allows users to set the physical and swap caps on the memory that can be used by this container.
+type SolarisCappedMemory struct {
+	Physical string `json:"physical,omitempty"`
+	Swap     string `json:"swap,omitempty"`
+}
+
+// SolarisAnet provides the specification for automatic creation of network resources for this container.
+type SolarisAnet struct {
+	// Specify a name for the automatically created VNIC datalink.
+	Linkname string `json:"linkname,omitempty"`
+	// Specify the link over which the VNIC will be created.
+	Lowerlink string `json:"lowerLink,omitempty"`
+	// The set of IP addresses that the container can use.
+	Allowedaddr string `json:"allowedAddress,omitempty"`
+	// Specifies whether allowedAddress limitation is to be applied to the VNIC.
+	Configallowedaddr string `json:"configureAllowedAddress,omitempty"`
+	// The value of the optional default router.
+	Defrouter string `json:"defrouter,omitempty"`
+	// Enable one or more types of link protection.
+	Linkprotection string `json:"linkProtection,omitempty"`
+	// Set the VNIC's macAddress
+	Macaddress string `json:"macAddress,omitempty"`
+}
+
+// Windows defines the runtime configuration for Windows based containers, including Hyper-V containers.
+type Windows struct {
+	// LayerFolders contains a list of absolute paths to directories containing image layers.
+	LayerFolders []string `json:"layerFolders"`
+	// Resources contains information for handling resource constraints for the container.
+	Resources *WindowsResources `json:"resources,omitempty"`
+	// CredentialSpec contains a JSON object describing a group Managed Service Account (gMSA) specification.
+	CredentialSpec interface{} `json:"credentialSpec,omitempty"`
+	// Servicing indicates if the container is being started in a mode to apply a Windows Update servicing operation.
+	Servicing bool `json:"servicing,omitempty"`
+	// IgnoreFlushesDuringBoot indicates if the container is being started in a mode where disk writes are not flushed during its boot process.
+	IgnoreFlushesDuringBoot bool `json:"ignoreFlushesDuringBoot,omitempty"`
+	// HyperV contains information for running a container with Hyper-V isolation.
+	HyperV *WindowsHyperV `json:"hyperv,omitempty"`
+	// Network restriction configuration.
+	Network *WindowsNetwork `json:"network,omitempty"`
+}
+
+// WindowsResources has container runtime resource constraints for containers running on Windows.
+type WindowsResources struct {
+	// Memory restriction configuration.
+	Memory *WindowsMemoryResources `json:"memory,omitempty"`
+	// CPU resource restriction configuration.
+	CPU *WindowsCPUResources `json:"cpu,omitempty"`
+	// Storage restriction configuration.
+	Storage *WindowsStorageResources `json:"storage,omitempty"`
+}
+
+// WindowsMemoryResources contains memory resource management settings.
+type WindowsMemoryResources struct {
+	// Memory limit in bytes.
+	Limit *uint64 `json:"limit,omitempty"`
+}
+
+// WindowsCPUResources contains CPU resource management settings.
+type WindowsCPUResources struct {
+	// Number of CPUs available to the container.
+	Count *uint64 `json:"count,omitempty"`
+	// CPU shares (relative weight to other containers with cpu shares).
+	Shares *uint16 `json:"shares,omitempty"`
+	// Specifies the portion of processor cycles that this container can use as a percentage times 100.
+	Maximum *uint16 `json:"maximum,omitempty"`
+}
+
+// WindowsStorageResources contains storage resource management settings.
+type WindowsStorageResources struct {
+	// Specifies maximum Iops for the system drive.
+	Iops *uint64 `json:"iops,omitempty"`
+	// Specifies maximum bytes per second for the system drive.
+	Bps *uint64 `json:"bps,omitempty"`
+	// Sandbox size specifies the minimum size of the system drive in bytes.
+	SandboxSize *uint64 `json:"sandboxSize,omitempty"`
+}
+
+// WindowsNetwork contains network settings for Windows containers.
+type WindowsNetwork struct {
+	// List of HNS endpoints that the container should connect to.
+	EndpointList []string `json:"endpointList,omitempty"`
+	// Specifies if unqualified DNS name resolution is allowed.
+	AllowUnqualifiedDNSQuery bool `json:"allowUnqualifiedDNSQuery,omitempty"`
+	// Comma separated list of DNS suffixes to use for name resolution.
+	DNSSearchList []string `json:"DNSSearchList,omitempty"`
+	// Name (ID) of the container that we will share with the network stack.
+	NetworkSharedContainerName string `json:"networkSharedContainerName,omitempty"`
+}
+
+// WindowsHyperV contains information for configuring a container to run with Hyper-V isolation.
+type WindowsHyperV struct {
+	// UtilityVMPath is an optional path to the image used for the Utility VM.
+	UtilityVMPath string `json:"utilityVMPath,omitempty"`
+}
+
+// LinuxSeccomp represents syscall restrictions
+type LinuxSeccomp struct {
+	DefaultAction LinuxSeccompAction `json:"defaultAction"`
+	Architectures []Arch             `json:"architectures,omitempty"`
+	Syscalls      []LinuxSyscall     `json:"syscalls,omitempty"`
+}
+
+// Arch used for additional architectures
+type Arch string
+
+// Additional architectures permitted to be used for system calls
+// By default only the native architecture of the kernel is permitted
+const (
+	ArchX86         Arch = "SCMP_ARCH_X86"
+	ArchX86_64      Arch = "SCMP_ARCH_X86_64"
+	ArchX32         Arch = "SCMP_ARCH_X32"
+	ArchARM         Arch = "SCMP_ARCH_ARM"
+	ArchAARCH64     Arch = "SCMP_ARCH_AARCH64"
+	ArchMIPS        Arch = "SCMP_ARCH_MIPS"
+	ArchMIPS64      Arch = "SCMP_ARCH_MIPS64"
+	ArchMIPS64N32   Arch = "SCMP_ARCH_MIPS64N32"
+	ArchMIPSEL      Arch = "SCMP_ARCH_MIPSEL"
+	ArchMIPSEL64    Arch = "SCMP_ARCH_MIPSEL64"
+	ArchMIPSEL64N32 Arch = "SCMP_ARCH_MIPSEL64N32"
+	ArchPPC         Arch = "SCMP_ARCH_PPC"
+	ArchPPC64       Arch = "SCMP_ARCH_PPC64"
+	ArchPPC64LE     Arch = "SCMP_ARCH_PPC64LE"
+	ArchS390        Arch = "SCMP_ARCH_S390"
+	ArchS390X       Arch = "SCMP_ARCH_S390X"
+	ArchPARISC      Arch = "SCMP_ARCH_PARISC"
+	ArchPARISC64    Arch = "SCMP_ARCH_PARISC64"
+)
+
+// LinuxSeccompAction taken upon Seccomp rule match
+type LinuxSeccompAction string
+
+// Define actions for Seccomp rules
+const (
+	ActKill  LinuxSeccompAction = "SCMP_ACT_KILL"
+	ActTrap  LinuxSeccompAction = "SCMP_ACT_TRAP"
+	ActErrno LinuxSeccompAction = "SCMP_ACT_ERRNO"
+	ActTrace LinuxSeccompAction = "SCMP_ACT_TRACE"
+	ActAllow LinuxSeccompAction = "SCMP_ACT_ALLOW"
+)
+
+// LinuxSeccompOperator used to match syscall arguments in Seccomp
+type LinuxSeccompOperator string
+
+// Define operators for syscall arguments in Seccomp
+const (
+	OpNotEqual     LinuxSeccompOperator = "SCMP_CMP_NE"
+	OpLessThan     LinuxSeccompOperator = "SCMP_CMP_LT"
+	OpLessEqual    LinuxSeccompOperator = "SCMP_CMP_LE"
+	OpEqualTo      LinuxSeccompOperator = "SCMP_CMP_EQ"
+	OpGreaterEqual LinuxSeccompOperator = "SCMP_CMP_GE"
+	OpGreaterThan  LinuxSeccompOperator = "SCMP_CMP_GT"
+	OpMaskedEqual  LinuxSeccompOperator = "SCMP_CMP_MASKED_EQ"
+)
+
+// LinuxSeccompArg used for matching specific syscall arguments in Seccomp
+type LinuxSeccompArg struct {
+	Index    uint                 `json:"index"`
+	Value    uint64               `json:"value"`
+	ValueTwo uint64               `json:"valueTwo,omitempty"`
+	Op       LinuxSeccompOperator `json:"op"`
+}
+
+// LinuxSyscall is used to match a syscall in Seccomp
+type LinuxSyscall struct {
+	Names  []string           `json:"names"`
+	Action LinuxSeccompAction `json:"action"`
+	Args   []LinuxSeccompArg  `json:"args,omitempty"`
+}
+
+// LinuxIntelRdt has container runtime resource constraints
+// for Intel RDT/CAT which introduced in Linux 4.10 kernel
+type LinuxIntelRdt struct {
+	// The schema for L3 cache id and capacity bitmask (CBM)
+	// Format: "L3:<cache_id0>=<cbm0>;<cache_id1>=<cbm1>;..."
+	L3CacheSchema string `json:"l3CacheSchema,omitempty"`
+}
diff --git a/vendor/github.com/opencontainers/runtime-spec/specs-go/state.go b/vendor/github.com/opencontainers/runtime-spec/specs-go/state.go
new file mode 100644
index 0000000000..89dce34be2
--- /dev/null
+++ b/vendor/github.com/opencontainers/runtime-spec/specs-go/state.go
@@ -0,0 +1,17 @@
+package specs
+
+// State holds information about the runtime state of the container.
+type State struct {
+	// Version is the version of the specification that is supported.
+	Version string `json:"ociVersion"`
+	// ID is the container ID
+	ID string `json:"id"`
+	// Status is the runtime status of the container.
+	Status string `json:"status"`
+	// Pid is the process ID for the container process.
+	Pid int `json:"pid,omitempty"`
+	// Bundle is the path to the container's bundle directory.
+	Bundle string `json:"bundle"`
+	// Annotations are key values associated with the container.
+	Annotations map[string]string `json:"annotations,omitempty"`
+}
diff --git a/vendor/github.com/opencontainers/runtime-spec/specs-go/version.go b/vendor/github.com/opencontainers/runtime-spec/specs-go/version.go
new file mode 100644
index 0000000000..ff0cb6a80e
--- /dev/null
+++ b/vendor/github.com/opencontainers/runtime-spec/specs-go/version.go
@@ -0,0 +1,18 @@
+package specs
+
+import "fmt"
+
+const (
+	// VersionMajor is for an API incompatible changes
+	VersionMajor = 1
+	// VersionMinor is for functionality in a backwards-compatible manner
+	VersionMinor = 0
+	// VersionPatch is for backwards-compatible bug fixes
+	VersionPatch = 1
+
+	// VersionDev indicates development branch. Releases will be empty string.
+	VersionDev = ""
+)
+
+// Version is the specification version that the package types support.
+var Version = fmt.Sprintf("%d.%d.%d%s", VersionMajor, VersionMinor, VersionPatch, VersionDev)
diff --git a/vendor/github.com/opencontainers/selinux/LICENSE b/vendor/github.com/opencontainers/selinux/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/vendor/github.com/opencontainers/selinux/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go b/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
new file mode 100644
index 0000000000..6cfc5fded8
--- /dev/null
+++ b/vendor/github.com/opencontainers/selinux/go-selinux/label/label.go
@@ -0,0 +1,84 @@
+// +build !selinux !linux
+
+package label
+
+// InitLabels returns the process label and file labels to be used within
+// the container.  A list of options can be passed into this function to alter
+// the labels.
+func InitLabels(options []string) (string, string, error) {
+	return "", "", nil
+}
+
+func GetROMountLabel() string {
+	return ""
+}
+
+func GenLabels(options string) (string, string, error) {
+	return "", "", nil
+}
+
+func FormatMountLabel(src string, mountLabel string) string {
+	return src
+}
+
+func SetProcessLabel(processLabel string) error {
+	return nil
+}
+
+func GetFileLabel(path string) (string, error) {
+	return "", nil
+}
+
+func SetFileLabel(path string, fileLabel string) error {
+	return nil
+}
+
+func SetFileCreateLabel(fileLabel string) error {
+	return nil
+}
+
+func Relabel(path string, fileLabel string, shared bool) error {
+	return nil
+}
+
+func GetPidLabel(pid int) (string, error) {
+	return "", nil
+}
+
+func Init() {
+}
+
+func ReserveLabel(label string) error {
+	return nil
+}
+
+func ReleaseLabel(label string) error {
+	return nil
+}
+
+// DupSecOpt takes a process label and returns security options that
+// can be used to set duplicate labels on future container processes
+func DupSecOpt(src string) []string {
+	return nil
+}
+
+// DisableSecOpt returns a security opt that can disable labeling
+// support for future container processes
+func DisableSecOpt() []string {
+	return nil
+}
+
+// Validate checks that the label does not include unexpected options
+func Validate(label string) error {
+	return nil
+}
+
+// RelabelNeeded checks whether the user requested a relabel
+func RelabelNeeded(label string) bool {
+	return false
+}
+
+// IsShared checks that the label includes a "shared" mark
+func IsShared(label string) bool {
+	return false
+}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go b/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
new file mode 100644
index 0000000000..569dcf0841
--- /dev/null
+++ b/vendor/github.com/opencontainers/selinux/go-selinux/label/label_selinux.go
@@ -0,0 +1,204 @@
+// +build selinux,linux
+
+package label
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/opencontainers/selinux/go-selinux"
+)
+
+// Valid Label Options
+var validOptions = map[string]bool{
+	"disable": true,
+	"type":    true,
+	"user":    true,
+	"role":    true,
+	"level":   true,
+}
+
+var ErrIncompatibleLabel = fmt.Errorf("Bad SELinux option z and Z can not be used together")
+
+// InitLabels returns the process label and file labels to be used within
+// the container.  A list of options can be passed into this function to alter
+// the labels.  The labels returned will include a random MCS String, that is
+// guaranteed to be unique.
+func InitLabels(options []string) (string, string, error) {
+	if !selinux.GetEnabled() {
+		return "", "", nil
+	}
+	processLabel, mountLabel := selinux.ContainerLabels()
+	if processLabel != "" {
+		pcon := selinux.NewContext(processLabel)
+		mcon := selinux.NewContext(mountLabel)
+		for _, opt := range options {
+			if opt == "disable" {
+				return "", "", nil
+			}
+			if i := strings.Index(opt, ":"); i == -1 {
+				return "", "", fmt.Errorf("Bad label option %q, valid options 'disable' or \n'user, role, level, type' followed by ':' and a value", opt)
+			}
+			con := strings.SplitN(opt, ":", 2)
+			if !validOptions[con[0]] {
+				return "", "", fmt.Errorf("Bad label option %q, valid options 'disable, user, role, level, type'", con[0])
+
+			}
+			pcon[con[0]] = con[1]
+			if con[0] == "level" || con[0] == "user" {
+				mcon[con[0]] = con[1]
+			}
+		}
+		processLabel = pcon.Get()
+		mountLabel = mcon.Get()
+	}
+	return processLabel, mountLabel, nil
+}
+
+func ROMountLabel() string {
+	return selinux.ROFileLabel()
+}
+
+// DEPRECATED: The GenLabels function is only to be used during the transition to the official API.
+func GenLabels(options string) (string, string, error) {
+	return InitLabels(strings.Fields(options))
+}
+
+// FormatMountLabel returns a string to be used by the mount command.
+// The format of this string will be used to alter the labeling of the mountpoint.
+// The string returned is suitable to be used as the options field of the mount command.
+// If you need to have additional mount point options, you can pass them in as
+// the first parameter.  Second parameter is the label that you wish to apply
+// to all content in the mount point.
+func FormatMountLabel(src, mountLabel string) string {
+	if mountLabel != "" {
+		switch src {
+		case "":
+			src = fmt.Sprintf("context=%q", mountLabel)
+		default:
+			src = fmt.Sprintf("%s,context=%q", src, mountLabel)
+		}
+	}
+	return src
+}
+
+// SetProcessLabel takes a process label and tells the kernel to assign the
+// label to the next program executed by the current process.
+func SetProcessLabel(processLabel string) error {
+	if processLabel == "" {
+		return nil
+	}
+	return selinux.SetExecLabel(processLabel)
+}
+
+// ProcessLabel returns the process label that the kernel will assign
+// to the next program executed by the current process.  If "" is returned
+// this indicates that the default labeling will happen for the process.
+func ProcessLabel() (string, error) {
+	return selinux.ExecLabel()
+}
+
+// GetFileLabel returns the label for specified path
+func FileLabel(path string) (string, error) {
+	return selinux.FileLabel(path)
+}
+
+// SetFileLabel modifies the "path" label to the specified file label
+func SetFileLabel(path string, fileLabel string) error {
+	if selinux.GetEnabled() && fileLabel != "" {
+		return selinux.SetFileLabel(path, fileLabel)
+	}
+	return nil
+}
+
+// SetFileCreateLabel tells the kernel the label for all files to be created
+func SetFileCreateLabel(fileLabel string) error {
+	if selinux.GetEnabled() {
+		return selinux.SetFSCreateLabel(fileLabel)
+	}
+	return nil
+}
+
+// Relabel changes the label of path to the filelabel string.
+// It changes the MCS label to s0 if shared is true.
+// This will allow all containers to share the content.
+func Relabel(path string, fileLabel string, shared bool) error {
+	if !selinux.GetEnabled() {
+		return nil
+	}
+
+	if fileLabel == "" {
+		return nil
+	}
+
+	exclude_paths := map[string]bool{"/": true, "/usr": true, "/etc": true}
+	if exclude_paths[path] {
+		return fmt.Errorf("SELinux relabeling of %s is not allowed", path)
+	}
+
+	if shared {
+		c := selinux.NewContext(fileLabel)
+		c["level"] = "s0"
+		fileLabel = c.Get()
+	}
+	if err := selinux.Chcon(path, fileLabel, true); err != nil {
+		return err
+	}
+	return nil
+}
+
+// PidLabel will return the label of the process running with the specified pid
+func PidLabel(pid int) (string, error) {
+	return selinux.PidLabel(pid)
+}
+
+// Init initialises the labeling system
+func Init() {
+	selinux.GetEnabled()
+}
+
+// ReserveLabel will record the fact that the MCS label has already been used.
+// This will prevent InitLabels from using the MCS label in a newly created
+// container
+func ReserveLabel(label string) error {
+	selinux.ReserveLabel(label)
+	return nil
+}
+
+// ReleaseLabel will remove the reservation of the MCS label.
+// This will allow InitLabels to use the MCS label in a newly created
+// containers
+func ReleaseLabel(label string) error {
+	selinux.ReleaseLabel(label)
+	return nil
+}
+
+// DupSecOpt takes a process label and returns security options that
+// can be used to set duplicate labels on future container processes
+func DupSecOpt(src string) []string {
+	return selinux.DupSecOpt(src)
+}
+
+// DisableSecOpt returns a security opt that can disable labeling
+// support for future container processes
+func DisableSecOpt() []string {
+	return selinux.DisableSecOpt()
+}
+
+// Validate checks that the label does not include unexpected options
+func Validate(label string) error {
+	if strings.Contains(label, "z") && strings.Contains(label, "Z") {
+		return ErrIncompatibleLabel
+	}
+	return nil
+}
+
+// RelabelNeeded checks whether the user requested a relabel
+func RelabelNeeded(label string) bool {
+	return strings.Contains(label, "z") || strings.Contains(label, "Z")
+}
+
+// IsShared checks that the label includes a "shared" mark
+func IsShared(label string) bool {
+	return strings.Contains(label, "z")
+}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go b/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
new file mode 100644
index 0000000000..4cf2c45de7
--- /dev/null
+++ b/vendor/github.com/opencontainers/selinux/go-selinux/selinux.go
@@ -0,0 +1,593 @@
+// +build linux
+
+package selinux
+
+import (
+	"bufio"
+	"crypto/rand"
+	"encoding/binary"
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+	"regexp"
+	"strconv"
+	"strings"
+	"sync"
+	"syscall"
+)
+
+const (
+	// Enforcing constant indicate SELinux is in enforcing mode
+	Enforcing = 1
+	// Permissive constant to indicate SELinux is in permissive mode
+	Permissive = 0
+	// Disabled constant to indicate SELinux is disabled
+	Disabled         = -1
+	selinuxDir       = "/etc/selinux/"
+	selinuxConfig    = selinuxDir + "config"
+	selinuxTypeTag   = "SELINUXTYPE"
+	selinuxTag       = "SELINUX"
+	selinuxPath      = "/sys/fs/selinux"
+	xattrNameSelinux = "security.selinux"
+	stRdOnly         = 0x01
+)
+
+type selinuxState struct {
+	enabledSet   bool
+	enabled      bool
+	selinuxfsSet bool
+	selinuxfs    string
+	mcsList      map[string]bool
+	sync.Mutex
+}
+
+var (
+	assignRegex = regexp.MustCompile(`^([^=]+)=(.*)$`)
+	state       = selinuxState{
+		mcsList: make(map[string]bool),
+	}
+)
+
+// Context is a representation of the SELinux label broken into 4 parts
+type Context map[string]string
+
+func (s *selinuxState) setEnable(enabled bool) bool {
+	s.Lock()
+	defer s.Unlock()
+	s.enabledSet = true
+	s.enabled = enabled
+	return s.enabled
+}
+
+func (s *selinuxState) getEnabled() bool {
+	s.Lock()
+	enabled := s.enabled
+	enabledSet := s.enabledSet
+	s.Unlock()
+	if enabledSet {
+		return enabled
+	}
+
+	enabled = false
+	if fs := getSelinuxMountPoint(); fs != "" {
+		if con, _ := CurrentLabel(); con != "kernel" {
+			enabled = true
+		}
+	}
+	return s.setEnable(enabled)
+}
+
+// SetDisabled disables selinux support for the package
+func SetDisabled() {
+	state.setEnable(false)
+}
+
+func (s *selinuxState) setSELinuxfs(selinuxfs string) string {
+	s.Lock()
+	defer s.Unlock()
+	s.selinuxfsSet = true
+	s.selinuxfs = selinuxfs
+	return s.selinuxfs
+}
+
+func (s *selinuxState) getSELinuxfs() string {
+	s.Lock()
+	selinuxfs := s.selinuxfs
+	selinuxfsSet := s.selinuxfsSet
+	s.Unlock()
+	if selinuxfsSet {
+		return selinuxfs
+	}
+
+	selinuxfs = ""
+	f, err := os.Open("/proc/self/mountinfo")
+	if err != nil {
+		return selinuxfs
+	}
+	defer f.Close()
+
+	scanner := bufio.NewScanner(f)
+	for scanner.Scan() {
+		txt := scanner.Text()
+		// Safe as mountinfo encodes mountpoints with spaces as \040.
+		sepIdx := strings.Index(txt, " - ")
+		if sepIdx == -1 {
+			continue
+		}
+		if !strings.Contains(txt[sepIdx:], "selinuxfs") {
+			continue
+		}
+		fields := strings.Split(txt, " ")
+		if len(fields) < 5 {
+			continue
+		}
+		selinuxfs = fields[4]
+		break
+	}
+
+	if selinuxfs != "" {
+		var buf syscall.Statfs_t
+		syscall.Statfs(selinuxfs, &buf)
+		if (buf.Flags & stRdOnly) == 1 {
+			selinuxfs = ""
+		}
+	}
+	return s.setSELinuxfs(selinuxfs)
+}
+
+// getSelinuxMountPoint returns the path to the mountpoint of an selinuxfs
+// filesystem or an empty string if no mountpoint is found.  Selinuxfs is
+// a proc-like pseudo-filesystem that exposes the selinux policy API to
+// processes.  The existence of an selinuxfs mount is used to determine
+// whether selinux is currently enabled or not.
+func getSelinuxMountPoint() string {
+	return state.getSELinuxfs()
+}
+
+// GetEnabled returns whether selinux is currently enabled.
+func GetEnabled() bool {
+	return state.getEnabled()
+}
+
+func readConfig(target string) (value string) {
+	var (
+		val, key string
+		bufin    *bufio.Reader
+	)
+
+	in, err := os.Open(selinuxConfig)
+	if err != nil {
+		return ""
+	}
+	defer in.Close()
+
+	bufin = bufio.NewReader(in)
+
+	for done := false; !done; {
+		var line string
+		if line, err = bufin.ReadString('\n'); err != nil {
+			if err != io.EOF {
+				return ""
+			}
+			done = true
+		}
+		line = strings.TrimSpace(line)
+		if len(line) == 0 {
+			// Skip blank lines
+			continue
+		}
+		if line[0] == ';' || line[0] == '#' {
+			// Skip comments
+			continue
+		}
+		if groups := assignRegex.FindStringSubmatch(line); groups != nil {
+			key, val = strings.TrimSpace(groups[1]), strings.TrimSpace(groups[2])
+			if key == target {
+				return strings.Trim(val, "\"")
+			}
+		}
+	}
+	return ""
+}
+
+func getSELinuxPolicyRoot() string {
+	return selinuxDir + readConfig(selinuxTypeTag)
+}
+
+func readCon(name string) (string, error) {
+	var val string
+
+	in, err := os.Open(name)
+	if err != nil {
+		return "", err
+	}
+	defer in.Close()
+
+	_, err = fmt.Fscanf(in, "%s", &val)
+	return val, err
+}
+
+// SetFileLabel sets the SELinux label for this path or returns an error.
+func SetFileLabel(path string, label string) error {
+	return lsetxattr(path, xattrNameSelinux, []byte(label), 0)
+}
+
+// Filecon returns the SELinux label for this path or returns an error.
+func FileLabel(path string) (string, error) {
+	label, err := lgetxattr(path, xattrNameSelinux)
+	if err != nil {
+		return "", err
+	}
+	// Trim the NUL byte at the end of the byte buffer, if present.
+	if len(label) > 0 && label[len(label)-1] == '\x00' {
+		label = label[:len(label)-1]
+	}
+	return string(label), nil
+}
+
+/*
+SetFSCreateLabel tells kernel the label to create all file system objects
+created by this task. Setting label="" to return to default.
+*/
+func SetFSCreateLabel(label string) error {
+	return writeCon(fmt.Sprintf("/proc/self/task/%d/attr/fscreate", syscall.Gettid()), label)
+}
+
+/*
+FSCreateLabel returns the default label the kernel which the kernel is using
+for file system objects created by this task. "" indicates default.
+*/
+func FSCreateLabel() (string, error) {
+	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/fscreate", syscall.Gettid()))
+}
+
+// CurrentLabel returns the SELinux label of the current process thread, or an error.
+func CurrentLabel() (string, error) {
+	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/current", syscall.Gettid()))
+}
+
+// PidLabel returns the SELinux label of the given pid, or an error.
+func PidLabel(pid int) (string, error) {
+	return readCon(fmt.Sprintf("/proc/%d/attr/current", pid))
+}
+
+/*
+ExecLabel returns the SELinux label that the kernel will use for any programs
+that are executed by the current process thread, or an error.
+*/
+func ExecLabel() (string, error) {
+	return readCon(fmt.Sprintf("/proc/self/task/%d/attr/exec", syscall.Gettid()))
+}
+
+func writeCon(name string, val string) error {
+	out, err := os.OpenFile(name, os.O_WRONLY, 0)
+	if err != nil {
+		return err
+	}
+	defer out.Close()
+
+	if val != "" {
+		_, err = out.Write([]byte(val))
+	} else {
+		_, err = out.Write(nil)
+	}
+	return err
+}
+
+/*
+SetExecLabel sets the SELinux label that the kernel will use for any programs
+that are executed by the current process thread, or an error.
+*/
+func SetExecLabel(label string) error {
+	return writeCon(fmt.Sprintf("/proc/self/task/%d/attr/exec", syscall.Gettid()), label)
+}
+
+// Get returns the Context as a string
+func (c Context) Get() string {
+	return fmt.Sprintf("%s:%s:%s:%s", c["user"], c["role"], c["type"], c["level"])
+}
+
+// NewContext creates a new Context struct from the specified label
+func NewContext(label string) Context {
+	c := make(Context)
+
+	if len(label) != 0 {
+		con := strings.SplitN(label, ":", 4)
+		c["user"] = con[0]
+		c["role"] = con[1]
+		c["type"] = con[2]
+		c["level"] = con[3]
+	}
+	return c
+}
+
+// ReserveLabel reserves the MLS/MCS level component of the specified label
+func ReserveLabel(label string) {
+	if len(label) != 0 {
+		con := strings.SplitN(label, ":", 4)
+		mcsAdd(con[3])
+	}
+}
+
+func selinuxEnforcePath() string {
+	return fmt.Sprintf("%s/enforce", selinuxPath)
+}
+
+// EnforceMode returns the current SELinux mode Enforcing, Permissive, Disabled
+func EnforceMode() int {
+	var enforce int
+
+	enforceS, err := readCon(selinuxEnforcePath())
+	if err != nil {
+		return -1
+	}
+
+	enforce, err = strconv.Atoi(string(enforceS))
+	if err != nil {
+		return -1
+	}
+	return enforce
+}
+
+/*
+SetEnforce sets the current SELinux mode Enforcing, Permissive.
+Disabled is not valid, since this needs to be set at boot time.
+*/
+func SetEnforceMode(mode int) error {
+	return writeCon(selinuxEnforcePath(), fmt.Sprintf("%d", mode))
+}
+
+/*
+DefaultEnforceMode returns the systems default SELinux mode Enforcing,
+Permissive or Disabled. Note this is is just the default at boot time.
+EnforceMode tells you the systems current mode.
+*/
+func DefaultEnforceMode() int {
+	switch readConfig(selinuxTag) {
+	case "enforcing":
+		return Enforcing
+	case "permissive":
+		return Permissive
+	}
+	return Disabled
+}
+
+func mcsAdd(mcs string) error {
+	state.Lock()
+	defer state.Unlock()
+	if state.mcsList[mcs] {
+		return fmt.Errorf("MCS Label already exists")
+	}
+	state.mcsList[mcs] = true
+	return nil
+}
+
+func mcsDelete(mcs string) {
+	state.Lock()
+	defer state.Unlock()
+	state.mcsList[mcs] = false
+}
+
+func intToMcs(id int, catRange uint32) string {
+	var (
+		SETSIZE = int(catRange)
+		TIER    = SETSIZE
+		ORD     = id
+	)
+
+	if id < 1 || id > 523776 {
+		return ""
+	}
+
+	for ORD > TIER {
+		ORD = ORD - TIER
+		TIER--
+	}
+	TIER = SETSIZE - TIER
+	ORD = ORD + TIER
+	return fmt.Sprintf("s0:c%d,c%d", TIER, ORD)
+}
+
+func uniqMcs(catRange uint32) string {
+	var (
+		n      uint32
+		c1, c2 uint32
+		mcs    string
+	)
+
+	for {
+		binary.Read(rand.Reader, binary.LittleEndian, &n)
+		c1 = n % catRange
+		binary.Read(rand.Reader, binary.LittleEndian, &n)
+		c2 = n % catRange
+		if c1 == c2 {
+			continue
+		} else {
+			if c1 > c2 {
+				c1, c2 = c2, c1
+			}
+		}
+		mcs = fmt.Sprintf("s0:c%d,c%d", c1, c2)
+		if err := mcsAdd(mcs); err != nil {
+			continue
+		}
+		break
+	}
+	return mcs
+}
+
+/*
+ReleaseLabel will unreserve the MLS/MCS Level field of the specified label.
+Allowing it to be used by another process.
+*/
+func ReleaseLabel(label string) {
+	if len(label) != 0 {
+		con := strings.SplitN(label, ":", 4)
+		mcsDelete(con[3])
+	}
+}
+
+var roFileLabel string
+
+// ROFileLabel returns the specified SELinux readonly file label
+func ROFileLabel() (fileLabel string) {
+	return roFileLabel
+}
+
+/*
+ContainerLabels returns an allocated processLabel and fileLabel to be used for
+container labeling by the calling process.
+*/
+func ContainerLabels() (processLabel string, fileLabel string) {
+	var (
+		val, key string
+		bufin    *bufio.Reader
+	)
+
+	if !GetEnabled() {
+		return "", ""
+	}
+	lxcPath := fmt.Sprintf("%s/contexts/lxc_contexts", getSELinuxPolicyRoot())
+	in, err := os.Open(lxcPath)
+	if err != nil {
+		return "", ""
+	}
+	defer in.Close()
+
+	bufin = bufio.NewReader(in)
+
+	for done := false; !done; {
+		var line string
+		if line, err = bufin.ReadString('\n'); err != nil {
+			if err == io.EOF {
+				done = true
+			} else {
+				goto exit
+			}
+		}
+		line = strings.TrimSpace(line)
+		if len(line) == 0 {
+			// Skip blank lines
+			continue
+		}
+		if line[0] == ';' || line[0] == '#' {
+			// Skip comments
+			continue
+		}
+		if groups := assignRegex.FindStringSubmatch(line); groups != nil {
+			key, val = strings.TrimSpace(groups[1]), strings.TrimSpace(groups[2])
+			if key == "process" {
+				processLabel = strings.Trim(val, "\"")
+			}
+			if key == "file" {
+				fileLabel = strings.Trim(val, "\"")
+			}
+			if key == "ro_file" {
+				roFileLabel = strings.Trim(val, "\"")
+			}
+		}
+	}
+
+	if processLabel == "" || fileLabel == "" {
+		return "", ""
+	}
+
+	if roFileLabel == "" {
+		roFileLabel = fileLabel
+	}
+exit:
+	mcs := uniqMcs(1024)
+	scon := NewContext(processLabel)
+	scon["level"] = mcs
+	processLabel = scon.Get()
+	scon = NewContext(fileLabel)
+	scon["level"] = mcs
+	fileLabel = scon.Get()
+	return processLabel, fileLabel
+}
+
+// SecurityCheckContext validates that the SELinux label is understood by the kernel
+func SecurityCheckContext(val string) error {
+	return writeCon(fmt.Sprintf("%s.context", selinuxPath), val)
+}
+
+/*
+CopyLevel returns a label with the MLS/MCS level from src label replaces on
+the dest label.
+*/
+func CopyLevel(src, dest string) (string, error) {
+	if src == "" {
+		return "", nil
+	}
+	if err := SecurityCheckContext(src); err != nil {
+		return "", err
+	}
+	if err := SecurityCheckContext(dest); err != nil {
+		return "", err
+	}
+	scon := NewContext(src)
+	tcon := NewContext(dest)
+	mcsDelete(tcon["level"])
+	mcsAdd(scon["level"])
+	tcon["level"] = scon["level"]
+	return tcon.Get(), nil
+}
+
+// Prevent users from relabing system files
+func badPrefix(fpath string) error {
+	var badprefixes = []string{"/usr"}
+
+	for _, prefix := range badprefixes {
+		if fpath == prefix || strings.HasPrefix(fpath, fmt.Sprintf("%s/", prefix)) {
+			return fmt.Errorf("relabeling content in %s is not allowed", prefix)
+		}
+	}
+	return nil
+}
+
+// Chcon changes the fpath file object to the SELinux label label.
+// If the fpath is a directory and recurse is true Chcon will walk the
+// directory tree setting the label
+func Chcon(fpath string, label string, recurse bool) error {
+	if label == "" {
+		return nil
+	}
+	if err := badPrefix(fpath); err != nil {
+		return err
+	}
+	callback := func(p string, info os.FileInfo, err error) error {
+		return SetFileLabel(p, label)
+	}
+
+	if recurse {
+		return filepath.Walk(fpath, callback)
+	}
+
+	return SetFileLabel(fpath, label)
+}
+
+// DupSecOpt takes an SELinux process label and returns security options that
+// can will set the SELinux Type and Level for future container processes
+func DupSecOpt(src string) []string {
+	if src == "" {
+		return nil
+	}
+	con := NewContext(src)
+	if con["user"] == "" ||
+		con["role"] == "" ||
+		con["type"] == "" ||
+		con["level"] == "" {
+		return nil
+	}
+	return []string{"user:" + con["user"],
+		"role:" + con["role"],
+		"type:" + con["type"],
+		"level:" + con["level"]}
+}
+
+// DisableSecOpt returns a security opt that can be used to disabling SELinux
+// labeling support for future container processes
+func DisableSecOpt() []string {
+	return []string{"disable"}
+}
diff --git a/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go b/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
new file mode 100644
index 0000000000..7f2ef85049
--- /dev/null
+++ b/vendor/github.com/opencontainers/selinux/go-selinux/xattrs.go
@@ -0,0 +1,78 @@
+// +build linux
+
+package selinux
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+var _zero uintptr
+
+// Returns a []byte slice if the xattr is set and nil otherwise
+// Requires path and its attribute as arguments
+func lgetxattr(path string, attr string) ([]byte, error) {
+	var sz int
+	pathBytes, err := syscall.BytePtrFromString(path)
+	if err != nil {
+		return nil, err
+	}
+	attrBytes, err := syscall.BytePtrFromString(attr)
+	if err != nil {
+		return nil, err
+	}
+
+	// Start with a 128 length byte array
+	sz = 128
+	dest := make([]byte, sz)
+	destBytes := unsafe.Pointer(&dest[0])
+	_sz, _, errno := syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
+
+	switch {
+	case errno == syscall.ENODATA:
+		return nil, errno
+	case errno == syscall.ENOTSUP:
+		return nil, errno
+	case errno == syscall.ERANGE:
+		// 128 byte array might just not be good enough,
+		// A dummy buffer is used ``uintptr(0)`` to get real size
+		// of the xattrs on disk
+		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(unsafe.Pointer(nil)), uintptr(0), 0, 0)
+		sz = int(_sz)
+		if sz < 0 {
+			return nil, errno
+		}
+		dest = make([]byte, sz)
+		destBytes := unsafe.Pointer(&dest[0])
+		_sz, _, errno = syscall.Syscall6(syscall.SYS_LGETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(destBytes), uintptr(len(dest)), 0, 0)
+		if errno != 0 {
+			return nil, errno
+		}
+	case errno != 0:
+		return nil, errno
+	}
+	sz = int(_sz)
+	return dest[:sz], nil
+}
+
+func lsetxattr(path string, attr string, data []byte, flags int) error {
+	pathBytes, err := syscall.BytePtrFromString(path)
+	if err != nil {
+		return err
+	}
+	attrBytes, err := syscall.BytePtrFromString(attr)
+	if err != nil {
+		return err
+	}
+	var dataBytes unsafe.Pointer
+	if len(data) > 0 {
+		dataBytes = unsafe.Pointer(&data[0])
+	} else {
+		dataBytes = unsafe.Pointer(&_zero)
+	}
+	_, _, errno := syscall.Syscall6(syscall.SYS_LSETXATTR, uintptr(unsafe.Pointer(pathBytes)), uintptr(unsafe.Pointer(attrBytes)), uintptr(dataBytes), uintptr(len(data)), uintptr(flags), 0)
+	if errno != 0 {
+		return errno
+	}
+	return nil
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/LICENSE b/vendor/github.com/opentracing/opentracing-go/LICENSE
new file mode 100644
index 0000000000..148509a403
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2016 The OpenTracing Authors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/vendor/github.com/opentracing/opentracing-go/ext/tags.go b/vendor/github.com/opentracing/opentracing-go/ext/tags.go
new file mode 100644
index 0000000000..c67ab5eef5
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/ext/tags.go
@@ -0,0 +1,198 @@
+package ext
+
+import opentracing "github.com/opentracing/opentracing-go"
+
+// These constants define common tag names recommended for better portability across
+// tracing systems and languages/platforms.
+//
+// The tag names are defined as typed strings, so that in addition to the usual use
+//
+//     span.setTag(TagName, value)
+//
+// they also support value type validation via this additional syntax:
+//
+//    TagName.Set(span, value)
+//
+var (
+	//////////////////////////////////////////////////////////////////////
+	// SpanKind (client/server or producer/consumer)
+	//////////////////////////////////////////////////////////////////////
+
+	// SpanKind hints at relationship between spans, e.g. client/server
+	SpanKind = spanKindTagName("span.kind")
+
+	// SpanKindRPCClient marks a span representing the client-side of an RPC
+	// or other remote call
+	SpanKindRPCClientEnum = SpanKindEnum("client")
+	SpanKindRPCClient     = opentracing.Tag{Key: string(SpanKind), Value: SpanKindRPCClientEnum}
+
+	// SpanKindRPCServer marks a span representing the server-side of an RPC
+	// or other remote call
+	SpanKindRPCServerEnum = SpanKindEnum("server")
+	SpanKindRPCServer     = opentracing.Tag{Key: string(SpanKind), Value: SpanKindRPCServerEnum}
+
+	// SpanKindProducer marks a span representing the producer-side of a
+	// message bus
+	SpanKindProducerEnum = SpanKindEnum("producer")
+	SpanKindProducer     = opentracing.Tag{Key: string(SpanKind), Value: SpanKindProducerEnum}
+
+	// SpanKindConsumer marks a span representing the consumer-side of a
+	// message bus
+	SpanKindConsumerEnum = SpanKindEnum("consumer")
+	SpanKindConsumer     = opentracing.Tag{Key: string(SpanKind), Value: SpanKindConsumerEnum}
+
+	//////////////////////////////////////////////////////////////////////
+	// Component name
+	//////////////////////////////////////////////////////////////////////
+
+	// Component is a low-cardinality identifier of the module, library,
+	// or package that is generating a span.
+	Component = stringTagName("component")
+
+	//////////////////////////////////////////////////////////////////////
+	// Sampling hint
+	//////////////////////////////////////////////////////////////////////
+
+	// SamplingPriority determines the priority of sampling this Span.
+	SamplingPriority = uint16TagName("sampling.priority")
+
+	//////////////////////////////////////////////////////////////////////
+	// Peer tags. These tags can be emitted by either client-side of
+	// server-side to describe the other side/service in a peer-to-peer
+	// communications, like an RPC call.
+	//////////////////////////////////////////////////////////////////////
+
+	// PeerService records the service name of the peer.
+	PeerService = stringTagName("peer.service")
+
+	// PeerAddress records the address name of the peer. This may be a "ip:port",
+	// a bare "hostname", a FQDN or even a database DSN substring
+	// like "mysql://username@127.0.0.1:3306/dbname"
+	PeerAddress = stringTagName("peer.address")
+
+	// PeerHostname records the host name of the peer
+	PeerHostname = stringTagName("peer.hostname")
+
+	// PeerHostIPv4 records IP v4 host address of the peer
+	PeerHostIPv4 = uint32TagName("peer.ipv4")
+
+	// PeerHostIPv6 records IP v6 host address of the peer
+	PeerHostIPv6 = stringTagName("peer.ipv6")
+
+	// PeerPort records port number of the peer
+	PeerPort = uint16TagName("peer.port")
+
+	//////////////////////////////////////////////////////////////////////
+	// HTTP Tags
+	//////////////////////////////////////////////////////////////////////
+
+	// HTTPUrl should be the URL of the request being handled in this segment
+	// of the trace, in standard URI format. The protocol is optional.
+	HTTPUrl = stringTagName("http.url")
+
+	// HTTPMethod is the HTTP method of the request, and is case-insensitive.
+	HTTPMethod = stringTagName("http.method")
+
+	// HTTPStatusCode is the numeric HTTP status code (200, 404, etc) of the
+	// HTTP response.
+	HTTPStatusCode = uint16TagName("http.status_code")
+
+	//////////////////////////////////////////////////////////////////////
+	// DB Tags
+	//////////////////////////////////////////////////////////////////////
+
+	// DBInstance is database instance name.
+	DBInstance = stringTagName("db.instance")
+
+	// DBStatement is a database statement for the given database type.
+	// It can be a query or a prepared statement (i.e., before substitution).
+	DBStatement = stringTagName("db.statement")
+
+	// DBType is a database type. For any SQL database, "sql".
+	// For others, the lower-case database category, e.g. "redis"
+	DBType = stringTagName("db.type")
+
+	// DBUser is a username for accessing database.
+	DBUser = stringTagName("db.user")
+
+	//////////////////////////////////////////////////////////////////////
+	// Message Bus Tag
+	//////////////////////////////////////////////////////////////////////
+
+	// MessageBusDestination is an address at which messages can be exchanged
+	MessageBusDestination = stringTagName("message_bus.destination")
+
+	//////////////////////////////////////////////////////////////////////
+	// Error Tag
+	//////////////////////////////////////////////////////////////////////
+
+	// Error indicates that operation represented by the span resulted in an error.
+	Error = boolTagName("error")
+)
+
+// ---
+
+// SpanKindEnum represents common span types
+type SpanKindEnum string
+
+type spanKindTagName string
+
+// Set adds a string tag to the `span`
+func (tag spanKindTagName) Set(span opentracing.Span, value SpanKindEnum) {
+	span.SetTag(string(tag), value)
+}
+
+type rpcServerOption struct {
+	clientContext opentracing.SpanContext
+}
+
+func (r rpcServerOption) Apply(o *opentracing.StartSpanOptions) {
+	if r.clientContext != nil {
+		opentracing.ChildOf(r.clientContext).Apply(o)
+	}
+	SpanKindRPCServer.Apply(o)
+}
+
+// RPCServerOption returns a StartSpanOption appropriate for an RPC server span
+// with `client` representing the metadata for the remote peer Span if available.
+// In case client == nil, due to the client not being instrumented, this RPC
+// server span will be a root span.
+func RPCServerOption(client opentracing.SpanContext) opentracing.StartSpanOption {
+	return rpcServerOption{client}
+}
+
+// ---
+
+type stringTagName string
+
+// Set adds a string tag to the `span`
+func (tag stringTagName) Set(span opentracing.Span, value string) {
+	span.SetTag(string(tag), value)
+}
+
+// ---
+
+type uint32TagName string
+
+// Set adds a uint32 tag to the `span`
+func (tag uint32TagName) Set(span opentracing.Span, value uint32) {
+	span.SetTag(string(tag), value)
+}
+
+// ---
+
+type uint16TagName string
+
+// Set adds a uint16 tag to the `span`
+func (tag uint16TagName) Set(span opentracing.Span, value uint16) {
+	span.SetTag(string(tag), value)
+}
+
+// ---
+
+type boolTagName string
+
+// Add adds a bool tag to the `span`
+func (tag boolTagName) Set(span opentracing.Span, value bool) {
+	span.SetTag(string(tag), value)
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/globaltracer.go b/vendor/github.com/opentracing/opentracing-go/globaltracer.go
new file mode 100644
index 0000000000..8c8e793ff2
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/globaltracer.go
@@ -0,0 +1,32 @@
+package opentracing
+
+var (
+	globalTracer Tracer = NoopTracer{}
+)
+
+// SetGlobalTracer sets the [singleton] opentracing.Tracer returned by
+// GlobalTracer(). Those who use GlobalTracer (rather than directly manage an
+// opentracing.Tracer instance) should call SetGlobalTracer as early as
+// possible in main(), prior to calling the `StartSpan` global func below.
+// Prior to calling `SetGlobalTracer`, any Spans started via the `StartSpan`
+// (etc) globals are noops.
+func SetGlobalTracer(tracer Tracer) {
+	globalTracer = tracer
+}
+
+// GlobalTracer returns the global singleton `Tracer` implementation.
+// Before `SetGlobalTracer()` is called, the `GlobalTracer()` is a noop
+// implementation that drops all data handed to it.
+func GlobalTracer() Tracer {
+	return globalTracer
+}
+
+// StartSpan defers to `Tracer.StartSpan`. See `GlobalTracer()`.
+func StartSpan(operationName string, opts ...StartSpanOption) Span {
+	return globalTracer.StartSpan(operationName, opts...)
+}
+
+// InitGlobalTracer is deprecated. Please use SetGlobalTracer.
+func InitGlobalTracer(tracer Tracer) {
+	SetGlobalTracer(tracer)
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/gocontext.go b/vendor/github.com/opentracing/opentracing-go/gocontext.go
new file mode 100644
index 0000000000..222a65202f
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/gocontext.go
@@ -0,0 +1,57 @@
+package opentracing
+
+import "golang.org/x/net/context"
+
+type contextKey struct{}
+
+var activeSpanKey = contextKey{}
+
+// ContextWithSpan returns a new `context.Context` that holds a reference to
+// `span`'s SpanContext.
+func ContextWithSpan(ctx context.Context, span Span) context.Context {
+	return context.WithValue(ctx, activeSpanKey, span)
+}
+
+// SpanFromContext returns the `Span` previously associated with `ctx`, or
+// `nil` if no such `Span` could be found.
+//
+// NOTE: context.Context != SpanContext: the former is Go's intra-process
+// context propagation mechanism, and the latter houses OpenTracing's per-Span
+// identity and baggage information.
+func SpanFromContext(ctx context.Context) Span {
+	val := ctx.Value(activeSpanKey)
+	if sp, ok := val.(Span); ok {
+		return sp
+	}
+	return nil
+}
+
+// StartSpanFromContext starts and returns a Span with `operationName`, using
+// any Span found within `ctx` as a ChildOfRef. If no such parent could be
+// found, StartSpanFromContext creates a root (parentless) Span.
+//
+// The second return value is a context.Context object built around the
+// returned Span.
+//
+// Example usage:
+//
+//    SomeFunction(ctx context.Context, ...) {
+//        sp, ctx := opentracing.StartSpanFromContext(ctx, "SomeFunction")
+//        defer sp.Finish()
+//        ...
+//    }
+func StartSpanFromContext(ctx context.Context, operationName string, opts ...StartSpanOption) (Span, context.Context) {
+	return startSpanFromContextWithTracer(ctx, GlobalTracer(), operationName, opts...)
+}
+
+// startSpanFromContextWithTracer is factored out for testing purposes.
+func startSpanFromContextWithTracer(ctx context.Context, tracer Tracer, operationName string, opts ...StartSpanOption) (Span, context.Context) {
+	var span Span
+	if parentSpan := SpanFromContext(ctx); parentSpan != nil {
+		opts = append(opts, ChildOf(parentSpan.Context()))
+		span = tracer.StartSpan(operationName, opts...)
+	} else {
+		span = tracer.StartSpan(operationName, opts...)
+	}
+	return span, ContextWithSpan(ctx, span)
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/log/field.go b/vendor/github.com/opentracing/opentracing-go/log/field.go
new file mode 100644
index 0000000000..d2cd39a16e
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/log/field.go
@@ -0,0 +1,245 @@
+package log
+
+import (
+	"fmt"
+	"math"
+)
+
+type fieldType int
+
+const (
+	stringType fieldType = iota
+	boolType
+	intType
+	int32Type
+	uint32Type
+	int64Type
+	uint64Type
+	float32Type
+	float64Type
+	errorType
+	objectType
+	lazyLoggerType
+)
+
+// Field instances are constructed via LogBool, LogString, and so on.
+// Tracing implementations may then handle them via the Field.Marshal
+// method.
+//
+// "heavily influenced by" (i.e., partially stolen from)
+// https://github.com/uber-go/zap
+type Field struct {
+	key          string
+	fieldType    fieldType
+	numericVal   int64
+	stringVal    string
+	interfaceVal interface{}
+}
+
+// String adds a string-valued key:value pair to a Span.LogFields() record
+func String(key, val string) Field {
+	return Field{
+		key:       key,
+		fieldType: stringType,
+		stringVal: val,
+	}
+}
+
+// Bool adds a bool-valued key:value pair to a Span.LogFields() record
+func Bool(key string, val bool) Field {
+	var numericVal int64
+	if val {
+		numericVal = 1
+	}
+	return Field{
+		key:        key,
+		fieldType:  boolType,
+		numericVal: numericVal,
+	}
+}
+
+// Int adds an int-valued key:value pair to a Span.LogFields() record
+func Int(key string, val int) Field {
+	return Field{
+		key:        key,
+		fieldType:  intType,
+		numericVal: int64(val),
+	}
+}
+
+// Int32 adds an int32-valued key:value pair to a Span.LogFields() record
+func Int32(key string, val int32) Field {
+	return Field{
+		key:        key,
+		fieldType:  int32Type,
+		numericVal: int64(val),
+	}
+}
+
+// Int64 adds an int64-valued key:value pair to a Span.LogFields() record
+func Int64(key string, val int64) Field {
+	return Field{
+		key:        key,
+		fieldType:  int64Type,
+		numericVal: val,
+	}
+}
+
+// Uint32 adds a uint32-valued key:value pair to a Span.LogFields() record
+func Uint32(key string, val uint32) Field {
+	return Field{
+		key:        key,
+		fieldType:  uint32Type,
+		numericVal: int64(val),
+	}
+}
+
+// Uint64 adds a uint64-valued key:value pair to a Span.LogFields() record
+func Uint64(key string, val uint64) Field {
+	return Field{
+		key:        key,
+		fieldType:  uint64Type,
+		numericVal: int64(val),
+	}
+}
+
+// Float32 adds a float32-valued key:value pair to a Span.LogFields() record
+func Float32(key string, val float32) Field {
+	return Field{
+		key:        key,
+		fieldType:  float32Type,
+		numericVal: int64(math.Float32bits(val)),
+	}
+}
+
+// Float64 adds a float64-valued key:value pair to a Span.LogFields() record
+func Float64(key string, val float64) Field {
+	return Field{
+		key:        key,
+		fieldType:  float64Type,
+		numericVal: int64(math.Float64bits(val)),
+	}
+}
+
+// Error adds an error with the key "error" to a Span.LogFields() record
+func Error(err error) Field {
+	return Field{
+		key:          "error",
+		fieldType:    errorType,
+		interfaceVal: err,
+	}
+}
+
+// Object adds an object-valued key:value pair to a Span.LogFields() record
+func Object(key string, obj interface{}) Field {
+	return Field{
+		key:          key,
+		fieldType:    objectType,
+		interfaceVal: obj,
+	}
+}
+
+// LazyLogger allows for user-defined, late-bound logging of arbitrary data
+type LazyLogger func(fv Encoder)
+
+// Lazy adds a LazyLogger to a Span.LogFields() record; the tracing
+// implementation will call the LazyLogger function at an indefinite time in
+// the future (after Lazy() returns).
+func Lazy(ll LazyLogger) Field {
+	return Field{
+		fieldType:    lazyLoggerType,
+		interfaceVal: ll,
+	}
+}
+
+// Encoder allows access to the contents of a Field (via a call to
+// Field.Marshal).
+//
+// Tracer implementations typically provide an implementation of Encoder;
+// OpenTracing callers typically do not need to concern themselves with it.
+type Encoder interface {
+	EmitString(key, value string)
+	EmitBool(key string, value bool)
+	EmitInt(key string, value int)
+	EmitInt32(key string, value int32)
+	EmitInt64(key string, value int64)
+	EmitUint32(key string, value uint32)
+	EmitUint64(key string, value uint64)
+	EmitFloat32(key string, value float32)
+	EmitFloat64(key string, value float64)
+	EmitObject(key string, value interface{})
+	EmitLazyLogger(value LazyLogger)
+}
+
+// Marshal passes a Field instance through to the appropriate
+// field-type-specific method of an Encoder.
+func (lf Field) Marshal(visitor Encoder) {
+	switch lf.fieldType {
+	case stringType:
+		visitor.EmitString(lf.key, lf.stringVal)
+	case boolType:
+		visitor.EmitBool(lf.key, lf.numericVal != 0)
+	case intType:
+		visitor.EmitInt(lf.key, int(lf.numericVal))
+	case int32Type:
+		visitor.EmitInt32(lf.key, int32(lf.numericVal))
+	case int64Type:
+		visitor.EmitInt64(lf.key, int64(lf.numericVal))
+	case uint32Type:
+		visitor.EmitUint32(lf.key, uint32(lf.numericVal))
+	case uint64Type:
+		visitor.EmitUint64(lf.key, uint64(lf.numericVal))
+	case float32Type:
+		visitor.EmitFloat32(lf.key, math.Float32frombits(uint32(lf.numericVal)))
+	case float64Type:
+		visitor.EmitFloat64(lf.key, math.Float64frombits(uint64(lf.numericVal)))
+	case errorType:
+		if err, ok := lf.interfaceVal.(error); ok {
+			visitor.EmitString(lf.key, err.Error())
+		} else {
+			visitor.EmitString(lf.key, "<nil>")
+		}
+	case objectType:
+		visitor.EmitObject(lf.key, lf.interfaceVal)
+	case lazyLoggerType:
+		visitor.EmitLazyLogger(lf.interfaceVal.(LazyLogger))
+	}
+}
+
+// Key returns the field's key.
+func (lf Field) Key() string {
+	return lf.key
+}
+
+// Value returns the field's value as interface{}.
+func (lf Field) Value() interface{} {
+	switch lf.fieldType {
+	case stringType:
+		return lf.stringVal
+	case boolType:
+		return lf.numericVal != 0
+	case intType:
+		return int(lf.numericVal)
+	case int32Type:
+		return int32(lf.numericVal)
+	case int64Type:
+		return int64(lf.numericVal)
+	case uint32Type:
+		return uint32(lf.numericVal)
+	case uint64Type:
+		return uint64(lf.numericVal)
+	case float32Type:
+		return math.Float32frombits(uint32(lf.numericVal))
+	case float64Type:
+		return math.Float64frombits(uint64(lf.numericVal))
+	case errorType, objectType, lazyLoggerType:
+		return lf.interfaceVal
+	default:
+		return nil
+	}
+}
+
+// String returns a string representation of the key and value.
+func (lf Field) String() string {
+	return fmt.Sprint(lf.key, ":", lf.Value())
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/log/util.go b/vendor/github.com/opentracing/opentracing-go/log/util.go
new file mode 100644
index 0000000000..3832feb5ce
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/log/util.go
@@ -0,0 +1,54 @@
+package log
+
+import "fmt"
+
+// InterleavedKVToFields converts keyValues a la Span.LogKV() to a Field slice
+// a la Span.LogFields().
+func InterleavedKVToFields(keyValues ...interface{}) ([]Field, error) {
+	if len(keyValues)%2 != 0 {
+		return nil, fmt.Errorf("non-even keyValues len: %d", len(keyValues))
+	}
+	fields := make([]Field, len(keyValues)/2)
+	for i := 0; i*2 < len(keyValues); i++ {
+		key, ok := keyValues[i*2].(string)
+		if !ok {
+			return nil, fmt.Errorf(
+				"non-string key (pair #%d): %T",
+				i, keyValues[i*2])
+		}
+		switch typedVal := keyValues[i*2+1].(type) {
+		case bool:
+			fields[i] = Bool(key, typedVal)
+		case string:
+			fields[i] = String(key, typedVal)
+		case int:
+			fields[i] = Int(key, typedVal)
+		case int8:
+			fields[i] = Int32(key, int32(typedVal))
+		case int16:
+			fields[i] = Int32(key, int32(typedVal))
+		case int32:
+			fields[i] = Int32(key, typedVal)
+		case int64:
+			fields[i] = Int64(key, typedVal)
+		case uint:
+			fields[i] = Uint64(key, uint64(typedVal))
+		case uint64:
+			fields[i] = Uint64(key, typedVal)
+		case uint8:
+			fields[i] = Uint32(key, uint32(typedVal))
+		case uint16:
+			fields[i] = Uint32(key, uint32(typedVal))
+		case uint32:
+			fields[i] = Uint32(key, typedVal)
+		case float32:
+			fields[i] = Float32(key, typedVal)
+		case float64:
+			fields[i] = Float64(key, typedVal)
+		default:
+			// When in doubt, coerce to a string
+			fields[i] = String(key, fmt.Sprint(typedVal))
+		}
+	}
+	return fields, nil
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/noop.go b/vendor/github.com/opentracing/opentracing-go/noop.go
new file mode 100644
index 0000000000..0d32f692c4
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/noop.go
@@ -0,0 +1,64 @@
+package opentracing
+
+import "github.com/opentracing/opentracing-go/log"
+
+// A NoopTracer is a trivial, minimum overhead implementation of Tracer
+// for which all operations are no-ops.
+//
+// The primary use of this implementation is in libraries, such as RPC
+// frameworks, that make tracing an optional feature controlled by the
+// end user. A no-op implementation allows said libraries to use it
+// as the default Tracer and to write instrumentation that does
+// not need to keep checking if the tracer instance is nil.
+//
+// For the same reason, the NoopTracer is the default "global" tracer
+// (see GlobalTracer and SetGlobalTracer functions).
+//
+// WARNING: NoopTracer does not support baggage propagation.
+type NoopTracer struct{}
+
+type noopSpan struct{}
+type noopSpanContext struct{}
+
+var (
+	defaultNoopSpanContext = noopSpanContext{}
+	defaultNoopSpan        = noopSpan{}
+	defaultNoopTracer      = NoopTracer{}
+)
+
+const (
+	emptyString = ""
+)
+
+// noopSpanContext:
+func (n noopSpanContext) ForeachBaggageItem(handler func(k, v string) bool) {}
+
+// noopSpan:
+func (n noopSpan) Context() SpanContext                                  { return defaultNoopSpanContext }
+func (n noopSpan) SetBaggageItem(key, val string) Span                   { return defaultNoopSpan }
+func (n noopSpan) BaggageItem(key string) string                         { return emptyString }
+func (n noopSpan) SetTag(key string, value interface{}) Span             { return n }
+func (n noopSpan) LogFields(fields ...log.Field)                         {}
+func (n noopSpan) LogKV(keyVals ...interface{})                          {}
+func (n noopSpan) Finish()                                               {}
+func (n noopSpan) FinishWithOptions(opts FinishOptions)                  {}
+func (n noopSpan) SetOperationName(operationName string) Span            { return n }
+func (n noopSpan) Tracer() Tracer                                        { return defaultNoopTracer }
+func (n noopSpan) LogEvent(event string)                                 {}
+func (n noopSpan) LogEventWithPayload(event string, payload interface{}) {}
+func (n noopSpan) Log(data LogData)                                      {}
+
+// StartSpan belongs to the Tracer interface.
+func (n NoopTracer) StartSpan(operationName string, opts ...StartSpanOption) Span {
+	return defaultNoopSpan
+}
+
+// Inject belongs to the Tracer interface.
+func (n NoopTracer) Inject(sp SpanContext, format interface{}, carrier interface{}) error {
+	return nil
+}
+
+// Extract belongs to the Tracer interface.
+func (n NoopTracer) Extract(format interface{}, carrier interface{}) (SpanContext, error) {
+	return nil, ErrSpanContextNotFound
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/propagation.go b/vendor/github.com/opentracing/opentracing-go/propagation.go
new file mode 100644
index 0000000000..9583fc53ab
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/propagation.go
@@ -0,0 +1,176 @@
+package opentracing
+
+import (
+	"errors"
+	"net/http"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// CORE PROPAGATION INTERFACES:
+///////////////////////////////////////////////////////////////////////////////
+
+var (
+	// ErrUnsupportedFormat occurs when the `format` passed to Tracer.Inject() or
+	// Tracer.Extract() is not recognized by the Tracer implementation.
+	ErrUnsupportedFormat = errors.New("opentracing: Unknown or unsupported Inject/Extract format")
+
+	// ErrSpanContextNotFound occurs when the `carrier` passed to
+	// Tracer.Extract() is valid and uncorrupted but has insufficient
+	// information to extract a SpanContext.
+	ErrSpanContextNotFound = errors.New("opentracing: SpanContext not found in Extract carrier")
+
+	// ErrInvalidSpanContext errors occur when Tracer.Inject() is asked to
+	// operate on a SpanContext which it is not prepared to handle (for
+	// example, since it was created by a different tracer implementation).
+	ErrInvalidSpanContext = errors.New("opentracing: SpanContext type incompatible with tracer")
+
+	// ErrInvalidCarrier errors occur when Tracer.Inject() or Tracer.Extract()
+	// implementations expect a different type of `carrier` than they are
+	// given.
+	ErrInvalidCarrier = errors.New("opentracing: Invalid Inject/Extract carrier")
+
+	// ErrSpanContextCorrupted occurs when the `carrier` passed to
+	// Tracer.Extract() is of the expected type but is corrupted.
+	ErrSpanContextCorrupted = errors.New("opentracing: SpanContext data corrupted in Extract carrier")
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// BUILTIN PROPAGATION FORMATS:
+///////////////////////////////////////////////////////////////////////////////
+
+// BuiltinFormat is used to demarcate the values within package `opentracing`
+// that are intended for use with the Tracer.Inject() and Tracer.Extract()
+// methods.
+type BuiltinFormat byte
+
+const (
+	// Binary represents SpanContexts as opaque binary data.
+	//
+	// For Tracer.Inject(): the carrier must be an `io.Writer`.
+	//
+	// For Tracer.Extract(): the carrier must be an `io.Reader`.
+	Binary BuiltinFormat = iota
+
+	// TextMap represents SpanContexts as key:value string pairs.
+	//
+	// Unlike HTTPHeaders, the TextMap format does not restrict the key or
+	// value character sets in any way.
+	//
+	// For Tracer.Inject(): the carrier must be a `TextMapWriter`.
+	//
+	// For Tracer.Extract(): the carrier must be a `TextMapReader`.
+	TextMap
+
+	// HTTPHeaders represents SpanContexts as HTTP header string pairs.
+	//
+	// Unlike TextMap, the HTTPHeaders format requires that the keys and values
+	// be valid as HTTP headers as-is (i.e., character casing may be unstable
+	// and special characters are disallowed in keys, values should be
+	// URL-escaped, etc).
+	//
+	// For Tracer.Inject(): the carrier must be a `TextMapWriter`.
+	//
+	// For Tracer.Extract(): the carrier must be a `TextMapReader`.
+	//
+	// See HTTPHeaderCarrier for an implementation of both TextMapWriter
+	// and TextMapReader that defers to an http.Header instance for storage.
+	// For example, Inject():
+	//
+	//    carrier := opentracing.HTTPHeadersCarrier(httpReq.Header)
+	//    err := span.Tracer().Inject(
+	//        span, opentracing.HTTPHeaders, carrier)
+	//
+	// Or Extract():
+	//
+	//    carrier := opentracing.HTTPHeadersCarrier(httpReq.Header)
+	//    span, err := tracer.Extract(
+	//        opentracing.HTTPHeaders, carrier)
+	//
+	HTTPHeaders
+)
+
+// TextMapWriter is the Inject() carrier for the TextMap builtin format. With
+// it, the caller can encode a SpanContext for propagation as entries in a map
+// of unicode strings.
+type TextMapWriter interface {
+	// Set a key:value pair to the carrier. Multiple calls to Set() for the
+	// same key leads to undefined behavior.
+	//
+	// NOTE: The backing store for the TextMapWriter may contain data unrelated
+	// to SpanContext. As such, Inject() and Extract() implementations that
+	// call the TextMapWriter and TextMapReader interfaces must agree on a
+	// prefix or other convention to distinguish their own key:value pairs.
+	Set(key, val string)
+}
+
+// TextMapReader is the Extract() carrier for the TextMap builtin format. With it,
+// the caller can decode a propagated SpanContext as entries in a map of
+// unicode strings.
+type TextMapReader interface {
+	// ForeachKey returns TextMap contents via repeated calls to the `handler`
+	// function. If any call to `handler` returns a non-nil error, ForeachKey
+	// terminates and returns that error.
+	//
+	// NOTE: The backing store for the TextMapReader may contain data unrelated
+	// to SpanContext. As such, Inject() and Extract() implementations that
+	// call the TextMapWriter and TextMapReader interfaces must agree on a
+	// prefix or other convention to distinguish their own key:value pairs.
+	//
+	// The "foreach" callback pattern reduces unnecessary copying in some cases
+	// and also allows implementations to hold locks while the map is read.
+	ForeachKey(handler func(key, val string) error) error
+}
+
+// TextMapCarrier allows the use of regular map[string]string
+// as both TextMapWriter and TextMapReader.
+type TextMapCarrier map[string]string
+
+// ForeachKey conforms to the TextMapReader interface.
+func (c TextMapCarrier) ForeachKey(handler func(key, val string) error) error {
+	for k, v := range c {
+		if err := handler(k, v); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// Set implements Set() of opentracing.TextMapWriter
+func (c TextMapCarrier) Set(key, val string) {
+	c[key] = val
+}
+
+// HTTPHeadersCarrier satisfies both TextMapWriter and TextMapReader.
+//
+// Example usage for server side:
+//
+//     carrier := opentracing.HttpHeadersCarrier(httpReq.Header)
+//     spanContext, err := tracer.Extract(opentracing.HttpHeaders, carrier)
+//
+// Example usage for client side:
+//
+//     carrier := opentracing.HTTPHeadersCarrier(httpReq.Header)
+//     err := tracer.Inject(
+//         span.Context(),
+//         opentracing.HttpHeaders,
+//         carrier)
+//
+type HTTPHeadersCarrier http.Header
+
+// Set conforms to the TextMapWriter interface.
+func (c HTTPHeadersCarrier) Set(key, val string) {
+	h := http.Header(c)
+	h.Add(key, val)
+}
+
+// ForeachKey conforms to the TextMapReader interface.
+func (c HTTPHeadersCarrier) ForeachKey(handler func(key, val string) error) error {
+	for k, vals := range c {
+		for _, v := range vals {
+			if err := handler(k, v); err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/span.go b/vendor/github.com/opentracing/opentracing-go/span.go
new file mode 100644
index 0000000000..f6c3234acc
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/span.go
@@ -0,0 +1,185 @@
+package opentracing
+
+import (
+	"time"
+
+	"github.com/opentracing/opentracing-go/log"
+)
+
+// SpanContext represents Span state that must propagate to descendant Spans and across process
+// boundaries (e.g., a <trace_id, span_id, sampled> tuple).
+type SpanContext interface {
+	// ForeachBaggageItem grants access to all baggage items stored in the
+	// SpanContext.
+	// The handler function will be called for each baggage key/value pair.
+	// The ordering of items is not guaranteed.
+	//
+	// The bool return value indicates if the handler wants to continue iterating
+	// through the rest of the baggage items; for example if the handler is trying to
+	// find some baggage item by pattern matching the name, it can return false
+	// as soon as the item is found to stop further iterations.
+	ForeachBaggageItem(handler func(k, v string) bool)
+}
+
+// Span represents an active, un-finished span in the OpenTracing system.
+//
+// Spans are created by the Tracer interface.
+type Span interface {
+	// Sets the end timestamp and finalizes Span state.
+	//
+	// With the exception of calls to Context() (which are always allowed),
+	// Finish() must be the last call made to any span instance, and to do
+	// otherwise leads to undefined behavior.
+	Finish()
+	// FinishWithOptions is like Finish() but with explicit control over
+	// timestamps and log data.
+	FinishWithOptions(opts FinishOptions)
+
+	// Context() yields the SpanContext for this Span. Note that the return
+	// value of Context() is still valid after a call to Span.Finish(), as is
+	// a call to Span.Context() after a call to Span.Finish().
+	Context() SpanContext
+
+	// Sets or changes the operation name.
+	SetOperationName(operationName string) Span
+
+	// Adds a tag to the span.
+	//
+	// If there is a pre-existing tag set for `key`, it is overwritten.
+	//
+	// Tag values can be numeric types, strings, or bools. The behavior of
+	// other tag value types is undefined at the OpenTracing level. If a
+	// tracing system does not know how to handle a particular value type, it
+	// may ignore the tag, but shall not panic.
+	SetTag(key string, value interface{}) Span
+
+	// LogFields is an efficient and type-checked way to record key:value
+	// logging data about a Span, though the programming interface is a little
+	// more verbose than LogKV(). Here's an example:
+	//
+	//    span.LogFields(
+	//        log.String("event", "soft error"),
+	//        log.String("type", "cache timeout"),
+	//        log.Int("waited.millis", 1500))
+	//
+	// Also see Span.FinishWithOptions() and FinishOptions.BulkLogData.
+	LogFields(fields ...log.Field)
+
+	// LogKV is a concise, readable way to record key:value logging data about
+	// a Span, though unfortunately this also makes it less efficient and less
+	// type-safe than LogFields(). Here's an example:
+	//
+	//    span.LogKV(
+	//        "event", "soft error",
+	//        "type", "cache timeout",
+	//        "waited.millis", 1500)
+	//
+	// For LogKV (as opposed to LogFields()), the parameters must appear as
+	// key-value pairs, like
+	//
+	//    span.LogKV(key1, val1, key2, val2, key3, val3, ...)
+	//
+	// The keys must all be strings. The values may be strings, numeric types,
+	// bools, Go error instances, or arbitrary structs.
+	//
+	// (Note to implementors: consider the log.InterleavedKVToFields() helper)
+	LogKV(alternatingKeyValues ...interface{})
+
+	// SetBaggageItem sets a key:value pair on this Span and its SpanContext
+	// that also propagates to descendants of this Span.
+	//
+	// SetBaggageItem() enables powerful functionality given a full-stack
+	// opentracing integration (e.g., arbitrary application data from a mobile
+	// app can make it, transparently, all the way into the depths of a storage
+	// system), and with it some powerful costs: use this feature with care.
+	//
+	// IMPORTANT NOTE #1: SetBaggageItem() will only propagate baggage items to
+	// *future* causal descendants of the associated Span.
+	//
+	// IMPORTANT NOTE #2: Use this thoughtfully and with care. Every key and
+	// value is copied into every local *and remote* child of the associated
+	// Span, and that can add up to a lot of network and cpu overhead.
+	//
+	// Returns a reference to this Span for chaining.
+	SetBaggageItem(restrictedKey, value string) Span
+
+	// Gets the value for a baggage item given its key. Returns the empty string
+	// if the value isn't found in this Span.
+	BaggageItem(restrictedKey string) string
+
+	// Provides access to the Tracer that created this Span.
+	Tracer() Tracer
+
+	// Deprecated: use LogFields or LogKV
+	LogEvent(event string)
+	// Deprecated: use LogFields or LogKV
+	LogEventWithPayload(event string, payload interface{})
+	// Deprecated: use LogFields or LogKV
+	Log(data LogData)
+}
+
+// LogRecord is data associated with a single Span log. Every LogRecord
+// instance must specify at least one Field.
+type LogRecord struct {
+	Timestamp time.Time
+	Fields    []log.Field
+}
+
+// FinishOptions allows Span.FinishWithOptions callers to override the finish
+// timestamp and provide log data via a bulk interface.
+type FinishOptions struct {
+	// FinishTime overrides the Span's finish time, or implicitly becomes
+	// time.Now() if FinishTime.IsZero().
+	//
+	// FinishTime must resolve to a timestamp that's >= the Span's StartTime
+	// (per StartSpanOptions).
+	FinishTime time.Time
+
+	// LogRecords allows the caller to specify the contents of many LogFields()
+	// calls with a single slice. May be nil.
+	//
+	// None of the LogRecord.Timestamp values may be .IsZero() (i.e., they must
+	// be set explicitly). Also, they must be >= the Span's start timestamp and
+	// <= the FinishTime (or time.Now() if FinishTime.IsZero()). Otherwise the
+	// behavior of FinishWithOptions() is undefined.
+	//
+	// If specified, the caller hands off ownership of LogRecords at
+	// FinishWithOptions() invocation time.
+	//
+	// If specified, the (deprecated) BulkLogData must be nil or empty.
+	LogRecords []LogRecord
+
+	// BulkLogData is DEPRECATED.
+	BulkLogData []LogData
+}
+
+// LogData is DEPRECATED
+type LogData struct {
+	Timestamp time.Time
+	Event     string
+	Payload   interface{}
+}
+
+// ToLogRecord converts a deprecated LogData to a non-deprecated LogRecord
+func (ld *LogData) ToLogRecord() LogRecord {
+	var literalTimestamp time.Time
+	if ld.Timestamp.IsZero() {
+		literalTimestamp = time.Now()
+	} else {
+		literalTimestamp = ld.Timestamp
+	}
+	rval := LogRecord{
+		Timestamp: literalTimestamp,
+	}
+	if ld.Payload == nil {
+		rval.Fields = []log.Field{
+			log.String("event", ld.Event),
+		}
+	} else {
+		rval.Fields = []log.Field{
+			log.String("event", ld.Event),
+			log.Object("payload", ld.Payload),
+		}
+	}
+	return rval
+}
diff --git a/vendor/github.com/opentracing/opentracing-go/tracer.go b/vendor/github.com/opentracing/opentracing-go/tracer.go
new file mode 100644
index 0000000000..fd77c1df32
--- /dev/null
+++ b/vendor/github.com/opentracing/opentracing-go/tracer.go
@@ -0,0 +1,305 @@
+package opentracing
+
+import "time"
+
+// Tracer is a simple, thin interface for Span creation and SpanContext
+// propagation.
+type Tracer interface {
+
+	// Create, start, and return a new Span with the given `operationName` and
+	// incorporate the given StartSpanOption `opts`. (Note that `opts` borrows
+	// from the "functional options" pattern, per
+	// http://dave.cheney.net/2014/10/17/functional-options-for-friendly-apis)
+	//
+	// A Span with no SpanReference options (e.g., opentracing.ChildOf() or
+	// opentracing.FollowsFrom()) becomes the root of its own trace.
+	//
+	// Examples:
+	//
+	//     var tracer opentracing.Tracer = ...
+	//
+	//     // The root-span case:
+	//     sp := tracer.StartSpan("GetFeed")
+	//
+	//     // The vanilla child span case:
+	//     sp := tracer.StartSpan(
+	//         "GetFeed",
+	//         opentracing.ChildOf(parentSpan.Context()))
+	//
+	//     // All the bells and whistles:
+	//     sp := tracer.StartSpan(
+	//         "GetFeed",
+	//         opentracing.ChildOf(parentSpan.Context()),
+	//         opentracing.Tag("user_agent", loggedReq.UserAgent),
+	//         opentracing.StartTime(loggedReq.Timestamp),
+	//     )
+	//
+	StartSpan(operationName string, opts ...StartSpanOption) Span
+
+	// Inject() takes the `sm` SpanContext instance and injects it for
+	// propagation within `carrier`. The actual type of `carrier` depends on
+	// the value of `format`.
+	//
+	// OpenTracing defines a common set of `format` values (see BuiltinFormat),
+	// and each has an expected carrier type.
+	//
+	// Other packages may declare their own `format` values, much like the keys
+	// used by `context.Context` (see
+	// https://godoc.org/golang.org/x/net/context#WithValue).
+	//
+	// Example usage (sans error handling):
+	//
+	//     carrier := opentracing.HTTPHeadersCarrier(httpReq.Header)
+	//     err := tracer.Inject(
+	//         span.Context(),
+	//         opentracing.HTTPHeaders,
+	//         carrier)
+	//
+	// NOTE: All opentracing.Tracer implementations MUST support all
+	// BuiltinFormats.
+	//
+	// Implementations may return opentracing.ErrUnsupportedFormat if `format`
+	// is not supported by (or not known by) the implementation.
+	//
+	// Implementations may return opentracing.ErrInvalidCarrier or any other
+	// implementation-specific error if the format is supported but injection
+	// fails anyway.
+	//
+	// See Tracer.Extract().
+	Inject(sm SpanContext, format interface{}, carrier interface{}) error
+
+	// Extract() returns a SpanContext instance given `format` and `carrier`.
+	//
+	// OpenTracing defines a common set of `format` values (see BuiltinFormat),
+	// and each has an expected carrier type.
+	//
+	// Other packages may declare their own `format` values, much like the keys
+	// used by `context.Context` (see
+	// https://godoc.org/golang.org/x/net/context#WithValue).
+	//
+	// Example usage (with StartSpan):
+	//
+	//
+	//     carrier := opentracing.HTTPHeadersCarrier(httpReq.Header)
+	//     clientContext, err := tracer.Extract(opentracing.HTTPHeaders, carrier)
+	//
+	//     // ... assuming the ultimate goal here is to resume the trace with a
+	//     // server-side Span:
+	//     var serverSpan opentracing.Span
+	//     if err == nil {
+	//         span = tracer.StartSpan(
+	//             rpcMethodName, ext.RPCServerOption(clientContext))
+	//     } else {
+	//         span = tracer.StartSpan(rpcMethodName)
+	//     }
+	//
+	//
+	// NOTE: All opentracing.Tracer implementations MUST support all
+	// BuiltinFormats.
+	//
+	// Return values:
+	//  - A successful Extract returns a SpanContext instance and a nil error
+	//  - If there was simply no SpanContext to extract in `carrier`, Extract()
+	//    returns (nil, opentracing.ErrSpanContextNotFound)
+	//  - If `format` is unsupported or unrecognized, Extract() returns (nil,
+	//    opentracing.ErrUnsupportedFormat)
+	//  - If there are more fundamental problems with the `carrier` object,
+	//    Extract() may return opentracing.ErrInvalidCarrier,
+	//    opentracing.ErrSpanContextCorrupted, or implementation-specific
+	//    errors.
+	//
+	// See Tracer.Inject().
+	Extract(format interface{}, carrier interface{}) (SpanContext, error)
+}
+
+// StartSpanOptions allows Tracer.StartSpan() callers and implementors a
+// mechanism to override the start timestamp, specify Span References, and make
+// a single Tag or multiple Tags available at Span start time.
+//
+// StartSpan() callers should look at the StartSpanOption interface and
+// implementations available in this package.
+//
+// Tracer implementations can convert a slice of `StartSpanOption` instances
+// into a `StartSpanOptions` struct like so:
+//
+//     func StartSpan(opName string, opts ...opentracing.StartSpanOption) {
+//         sso := opentracing.StartSpanOptions{}
+//         for _, o := range opts {
+//             o.Apply(&sso)
+//         }
+//         ...
+//     }
+//
+type StartSpanOptions struct {
+	// Zero or more causal references to other Spans (via their SpanContext).
+	// If empty, start a "root" Span (i.e., start a new trace).
+	References []SpanReference
+
+	// StartTime overrides the Span's start time, or implicitly becomes
+	// time.Now() if StartTime.IsZero().
+	StartTime time.Time
+
+	// Tags may have zero or more entries; the restrictions on map values are
+	// identical to those for Span.SetTag(). May be nil.
+	//
+	// If specified, the caller hands off ownership of Tags at
+	// StartSpan() invocation time.
+	Tags map[string]interface{}
+}
+
+// StartSpanOption instances (zero or more) may be passed to Tracer.StartSpan.
+//
+// StartSpanOption borrows from the "functional options" pattern, per
+// http://dave.cheney.net/2014/10/17/functional-options-for-friendly-apis
+type StartSpanOption interface {
+	Apply(*StartSpanOptions)
+}
+
+// SpanReferenceType is an enum type describing different categories of
+// relationships between two Spans. If Span-2 refers to Span-1, the
+// SpanReferenceType describes Span-1 from Span-2's perspective. For example,
+// ChildOfRef means that Span-1 created Span-2.
+//
+// NOTE: Span-1 and Span-2 do *not* necessarily depend on each other for
+// completion; e.g., Span-2 may be part of a background job enqueued by Span-1,
+// or Span-2 may be sitting in a distributed queue behind Span-1.
+type SpanReferenceType int
+
+const (
+	// ChildOfRef refers to a parent Span that caused *and* somehow depends
+	// upon the new child Span. Often (but not always), the parent Span cannot
+	// finish until the child Span does.
+	//
+	// An timing diagram for a ChildOfRef that's blocked on the new Span:
+	//
+	//     [-Parent Span---------]
+	//          [-Child Span----]
+	//
+	// See http://opentracing.io/spec/
+	//
+	// See opentracing.ChildOf()
+	ChildOfRef SpanReferenceType = iota
+
+	// FollowsFromRef refers to a parent Span that does not depend in any way
+	// on the result of the new child Span. For instance, one might use
+	// FollowsFromRefs to describe pipeline stages separated by queues,
+	// or a fire-and-forget cache insert at the tail end of a web request.
+	//
+	// A FollowsFromRef Span is part of the same logical trace as the new Span:
+	// i.e., the new Span is somehow caused by the work of its FollowsFromRef.
+	//
+	// All of the following could be valid timing diagrams for children that
+	// "FollowFrom" a parent.
+	//
+	//     [-Parent Span-]  [-Child Span-]
+	//
+	//
+	//     [-Parent Span--]
+	//      [-Child Span-]
+	//
+	//
+	//     [-Parent Span-]
+	//                 [-Child Span-]
+	//
+	// See http://opentracing.io/spec/
+	//
+	// See opentracing.FollowsFrom()
+	FollowsFromRef
+)
+
+// SpanReference is a StartSpanOption that pairs a SpanReferenceType and a
+// referenced SpanContext. See the SpanReferenceType documentation for
+// supported relationships.  If SpanReference is created with
+// ReferencedContext==nil, it has no effect. Thus it allows for a more concise
+// syntax for starting spans:
+//
+//     sc, _ := tracer.Extract(someFormat, someCarrier)
+//     span := tracer.StartSpan("operation", opentracing.ChildOf(sc))
+//
+// The `ChildOf(sc)` option above will not panic if sc == nil, it will just
+// not add the parent span reference to the options.
+type SpanReference struct {
+	Type              SpanReferenceType
+	ReferencedContext SpanContext
+}
+
+// Apply satisfies the StartSpanOption interface.
+func (r SpanReference) Apply(o *StartSpanOptions) {
+	if r.ReferencedContext != nil {
+		o.References = append(o.References, r)
+	}
+}
+
+// ChildOf returns a StartSpanOption pointing to a dependent parent span.
+// If sc == nil, the option has no effect.
+//
+// See ChildOfRef, SpanReference
+func ChildOf(sc SpanContext) SpanReference {
+	return SpanReference{
+		Type:              ChildOfRef,
+		ReferencedContext: sc,
+	}
+}
+
+// FollowsFrom returns a StartSpanOption pointing to a parent Span that caused
+// the child Span but does not directly depend on its result in any way.
+// If sc == nil, the option has no effect.
+//
+// See FollowsFromRef, SpanReference
+func FollowsFrom(sc SpanContext) SpanReference {
+	return SpanReference{
+		Type:              FollowsFromRef,
+		ReferencedContext: sc,
+	}
+}
+
+// StartTime is a StartSpanOption that sets an explicit start timestamp for the
+// new Span.
+type StartTime time.Time
+
+// Apply satisfies the StartSpanOption interface.
+func (t StartTime) Apply(o *StartSpanOptions) {
+	o.StartTime = time.Time(t)
+}
+
+// Tags are a generic map from an arbitrary string key to an opaque value type.
+// The underlying tracing system is responsible for interpreting and
+// serializing the values.
+type Tags map[string]interface{}
+
+// Apply satisfies the StartSpanOption interface.
+func (t Tags) Apply(o *StartSpanOptions) {
+	if o.Tags == nil {
+		o.Tags = make(map[string]interface{})
+	}
+	for k, v := range t {
+		o.Tags[k] = v
+	}
+}
+
+// Tag may be passed as a StartSpanOption to add a tag to new spans,
+// or its Set method may be used to apply the tag to an existing Span,
+// for example:
+//
+// tracer.StartSpan("opName", Tag{"Key", value})
+//
+//   or
+//
+// Tag{"key", value}.Set(span)
+type Tag struct {
+	Key   string
+	Value interface{}
+}
+
+// Apply satisfies the StartSpanOption interface.
+func (t Tag) Apply(o *StartSpanOptions) {
+	if o.Tags == nil {
+		o.Tags = make(map[string]interface{})
+	}
+	o.Tags[t.Key] = t.Value
+}
+
+// Set applies the tag to an existing Span.
+func (t Tag) Set(s Span) {
+	s.SetTag(t.Key, t.Value)
+}
diff --git a/vendor/github.com/prometheus/client_golang/LICENSE b/vendor/github.com/prometheus/client_golang/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/prometheus/client_golang/NOTICE b/vendor/github.com/prometheus/client_golang/NOTICE
new file mode 100644
index 0000000000..dd878a30ee
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/NOTICE
@@ -0,0 +1,23 @@
+Prometheus instrumentation library for Go applications
+Copyright 2012-2015 The Prometheus Authors
+
+This product includes software developed at
+SoundCloud Ltd. (http://soundcloud.com/).
+
+
+The following components are included in this product:
+
+perks - a fork of https://github.com/bmizerany/perks
+https://github.com/beorn7/perks
+Copyright 2013-2015 Blake Mizerany, Björn Rabenstein
+See https://github.com/beorn7/perks/blob/master/README.md for license details.
+
+Go support for Protocol Buffers - Google's data interchange format
+http://github.com/golang/protobuf/
+Copyright 2010 The Go Authors
+See source code for license details.
+
+Support for streaming Protocol Buffer messages for the Go language (golang).
+https://github.com/matttproud/golang_protobuf_extensions
+Copyright 2013 Matt T. Proud
+Licensed under the Apache License, Version 2.0
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/collector.go b/vendor/github.com/prometheus/client_golang/prometheus/collector.go
new file mode 100644
index 0000000000..623d3d83fe
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/collector.go
@@ -0,0 +1,75 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+// Collector is the interface implemented by anything that can be used by
+// Prometheus to collect metrics. A Collector has to be registered for
+// collection. See Registerer.Register.
+//
+// The stock metrics provided by this package (Gauge, Counter, Summary,
+// Histogram, Untyped) are also Collectors (which only ever collect one metric,
+// namely itself). An implementer of Collector may, however, collect multiple
+// metrics in a coordinated fashion and/or create metrics on the fly. Examples
+// for collectors already implemented in this library are the metric vectors
+// (i.e. collection of multiple instances of the same Metric but with different
+// label values) like GaugeVec or SummaryVec, and the ExpvarCollector.
+type Collector interface {
+	// Describe sends the super-set of all possible descriptors of metrics
+	// collected by this Collector to the provided channel and returns once
+	// the last descriptor has been sent. The sent descriptors fulfill the
+	// consistency and uniqueness requirements described in the Desc
+	// documentation. (It is valid if one and the same Collector sends
+	// duplicate descriptors. Those duplicates are simply ignored. However,
+	// two different Collectors must not send duplicate descriptors.) This
+	// method idempotently sends the same descriptors throughout the
+	// lifetime of the Collector. If a Collector encounters an error while
+	// executing this method, it must send an invalid descriptor (created
+	// with NewInvalidDesc) to signal the error to the registry.
+	Describe(chan<- *Desc)
+	// Collect is called by the Prometheus registry when collecting
+	// metrics. The implementation sends each collected metric via the
+	// provided channel and returns once the last metric has been sent. The
+	// descriptor of each sent metric is one of those returned by
+	// Describe. Returned metrics that share the same descriptor must differ
+	// in their variable label values. This method may be called
+	// concurrently and must therefore be implemented in a concurrency safe
+	// way. Blocking occurs at the expense of total performance of rendering
+	// all registered metrics. Ideally, Collector implementations support
+	// concurrent readers.
+	Collect(chan<- Metric)
+}
+
+// selfCollector implements Collector for a single Metric so that the Metric
+// collects itself. Add it as an anonymous field to a struct that implements
+// Metric, and call init with the Metric itself as an argument.
+type selfCollector struct {
+	self Metric
+}
+
+// init provides the selfCollector with a reference to the metric it is supposed
+// to collect. It is usually called within the factory function to create a
+// metric. See example.
+func (c *selfCollector) init(self Metric) {
+	c.self = self
+}
+
+// Describe implements Collector.
+func (c *selfCollector) Describe(ch chan<- *Desc) {
+	ch <- c.self.Desc()
+}
+
+// Collect implements Collector.
+func (c *selfCollector) Collect(ch chan<- Metric) {
+	ch <- c.self
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/counter.go b/vendor/github.com/prometheus/client_golang/prometheus/counter.go
new file mode 100644
index 0000000000..765e4550c6
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/counter.go
@@ -0,0 +1,277 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"errors"
+	"math"
+	"sync/atomic"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// Counter is a Metric that represents a single numerical value that only ever
+// goes up. That implies that it cannot be used to count items whose number can
+// also go down, e.g. the number of currently running goroutines. Those
+// "counters" are represented by Gauges.
+//
+// A Counter is typically used to count requests served, tasks completed, errors
+// occurred, etc.
+//
+// To create Counter instances, use NewCounter.
+type Counter interface {
+	Metric
+	Collector
+
+	// Inc increments the counter by 1. Use Add to increment it by arbitrary
+	// non-negative values.
+	Inc()
+	// Add adds the given value to the counter. It panics if the value is <
+	// 0.
+	Add(float64)
+}
+
+// CounterOpts is an alias for Opts. See there for doc comments.
+type CounterOpts Opts
+
+// NewCounter creates a new Counter based on the provided CounterOpts.
+//
+// The returned implementation tracks the counter value in two separate
+// variables, a float64 and a uint64. The latter is used to track calls of the
+// Inc method and calls of the Add method with a value that can be represented
+// as a uint64. This allows atomic increments of the counter with optimal
+// performance. (It is common to have an Inc call in very hot execution paths.)
+// Both internal tracking values are added up in the Write method. This has to
+// be taken into account when it comes to precision and overflow behavior.
+func NewCounter(opts CounterOpts) Counter {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		nil,
+		opts.ConstLabels,
+	)
+	result := &counter{desc: desc, labelPairs: desc.constLabelPairs}
+	result.init(result) // Init self-collection.
+	return result
+}
+
+type counter struct {
+	// valBits contains the bits of the represented float64 value, while
+	// valInt stores values that are exact integers. Both have to go first
+	// in the struct to guarantee alignment for atomic operations.
+	// http://golang.org/pkg/sync/atomic/#pkg-note-BUG
+	valBits uint64
+	valInt  uint64
+
+	selfCollector
+	desc *Desc
+
+	labelPairs []*dto.LabelPair
+}
+
+func (c *counter) Desc() *Desc {
+	return c.desc
+}
+
+func (c *counter) Add(v float64) {
+	if v < 0 {
+		panic(errors.New("counter cannot decrease in value"))
+	}
+	ival := uint64(v)
+	if float64(ival) == v {
+		atomic.AddUint64(&c.valInt, ival)
+		return
+	}
+
+	for {
+		oldBits := atomic.LoadUint64(&c.valBits)
+		newBits := math.Float64bits(math.Float64frombits(oldBits) + v)
+		if atomic.CompareAndSwapUint64(&c.valBits, oldBits, newBits) {
+			return
+		}
+	}
+}
+
+func (c *counter) Inc() {
+	atomic.AddUint64(&c.valInt, 1)
+}
+
+func (c *counter) Write(out *dto.Metric) error {
+	fval := math.Float64frombits(atomic.LoadUint64(&c.valBits))
+	ival := atomic.LoadUint64(&c.valInt)
+	val := fval + float64(ival)
+
+	return populateMetric(CounterValue, val, c.labelPairs, out)
+}
+
+// CounterVec is a Collector that bundles a set of Counters that all share the
+// same Desc, but have different values for their variable labels. This is used
+// if you want to count the same thing partitioned by various dimensions
+// (e.g. number of HTTP requests, partitioned by response code and
+// method). Create instances with NewCounterVec.
+type CounterVec struct {
+	*metricVec
+}
+
+// NewCounterVec creates a new CounterVec based on the provided CounterOpts and
+// partitioned by the given label names.
+func NewCounterVec(opts CounterOpts, labelNames []string) *CounterVec {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		labelNames,
+		opts.ConstLabels,
+	)
+	return &CounterVec{
+		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
+			if len(lvs) != len(desc.variableLabels) {
+				panic(errInconsistentCardinality)
+			}
+			result := &counter{desc: desc, labelPairs: makeLabelPairs(desc, lvs)}
+			result.init(result) // Init self-collection.
+			return result
+		}),
+	}
+}
+
+// GetMetricWithLabelValues returns the Counter for the given slice of label
+// values (same order as the VariableLabels in Desc). If that combination of
+// label values is accessed for the first time, a new Counter is created.
+//
+// It is possible to call this method without using the returned Counter to only
+// create the new Counter but leave it at its starting value 0. See also the
+// SummaryVec example.
+//
+// Keeping the Counter for later use is possible (and should be considered if
+// performance is critical), but keep in mind that Reset, DeleteLabelValues and
+// Delete can be used to delete the Counter from the CounterVec. In that case,
+// the Counter will still exist, but it will not be exported anymore, even if a
+// Counter with the same label values is created later.
+//
+// An error is returned if the number of label values is not the same as the
+// number of VariableLabels in Desc (minus any curried labels).
+//
+// Note that for more than one label value, this method is prone to mistakes
+// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
+// an alternative to avoid that type of mistake. For higher label numbers, the
+// latter has a much more readable (albeit more verbose) syntax, but it comes
+// with a performance overhead (for creating and processing the Labels map).
+// See also the GaugeVec example.
+func (v *CounterVec) GetMetricWithLabelValues(lvs ...string) (Counter, error) {
+	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
+	if metric != nil {
+		return metric.(Counter), err
+	}
+	return nil, err
+}
+
+// GetMetricWith returns the Counter for the given Labels map (the label names
+// must match those of the VariableLabels in Desc). If that label map is
+// accessed for the first time, a new Counter is created. Implications of
+// creating a Counter without using it and keeping the Counter for later use are
+// the same as for GetMetricWithLabelValues.
+//
+// An error is returned if the number and names of the Labels are inconsistent
+// with those of the VariableLabels in Desc (minus any curried labels).
+//
+// This method is used for the same purpose as
+// GetMetricWithLabelValues(...string). See there for pros and cons of the two
+// methods.
+func (v *CounterVec) GetMetricWith(labels Labels) (Counter, error) {
+	metric, err := v.metricVec.getMetricWith(labels)
+	if metric != nil {
+		return metric.(Counter), err
+	}
+	return nil, err
+}
+
+// WithLabelValues works as GetMetricWithLabelValues, but panics where
+// GetMetricWithLabelValues would have returned an error. Not returning an
+// error allows shortcuts like
+//     myVec.WithLabelValues("404", "GET").Add(42)
+func (v *CounterVec) WithLabelValues(lvs ...string) Counter {
+	c, err := v.GetMetricWithLabelValues(lvs...)
+	if err != nil {
+		panic(err)
+	}
+	return c
+}
+
+// With works as GetMetricWith, but panics where GetMetricWithLabels would have
+// returned an error. Not returning an error allows shortcuts like
+//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Add(42)
+func (v *CounterVec) With(labels Labels) Counter {
+	c, err := v.GetMetricWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return c
+}
+
+// CurryWith returns a vector curried with the provided labels, i.e. the
+// returned vector has those labels pre-set for all labeled operations performed
+// on it. The cardinality of the curried vector is reduced accordingly. The
+// order of the remaining labels stays the same (just with the curried labels
+// taken out of the sequence – which is relevant for the
+// (GetMetric)WithLabelValues methods). It is possible to curry a curried
+// vector, but only with labels not yet used for currying before.
+//
+// The metrics contained in the CounterVec are shared between the curried and
+// uncurried vectors. They are just accessed differently. Curried and uncurried
+// vectors behave identically in terms of collection. Only one must be
+// registered with a given registry (usually the uncurried version). The Reset
+// method deletes all metrics, even if called on a curried vector.
+func (v *CounterVec) CurryWith(labels Labels) (*CounterVec, error) {
+	vec, err := v.curryWith(labels)
+	if vec != nil {
+		return &CounterVec{vec}, err
+	}
+	return nil, err
+}
+
+// MustCurryWith works as CurryWith but panics where CurryWith would have
+// returned an error.
+func (v *CounterVec) MustCurryWith(labels Labels) *CounterVec {
+	vec, err := v.CurryWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return vec
+}
+
+// CounterFunc is a Counter whose value is determined at collect time by calling a
+// provided function.
+//
+// To create CounterFunc instances, use NewCounterFunc.
+type CounterFunc interface {
+	Metric
+	Collector
+}
+
+// NewCounterFunc creates a new CounterFunc based on the provided
+// CounterOpts. The value reported is determined by calling the given function
+// from within the Write method. Take into account that metric collection may
+// happen concurrently. If that results in concurrent calls to Write, like in
+// the case where a CounterFunc is directly registered with Prometheus, the
+// provided function must be concurrency-safe. The function should also honor
+// the contract for a Counter (values only go up, not down), but compliance will
+// not be checked.
+func NewCounterFunc(opts CounterOpts, function func() float64) CounterFunc {
+	return newValueFunc(NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		nil,
+		opts.ConstLabels,
+	), CounterValue, function)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/desc.go b/vendor/github.com/prometheus/client_golang/prometheus/desc.go
new file mode 100644
index 0000000000..4a755b0fa5
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/desc.go
@@ -0,0 +1,188 @@
+// Copyright 2016 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"errors"
+	"fmt"
+	"sort"
+	"strings"
+
+	"github.com/golang/protobuf/proto"
+	"github.com/prometheus/common/model"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// Desc is the descriptor used by every Prometheus Metric. It is essentially
+// the immutable meta-data of a Metric. The normal Metric implementations
+// included in this package manage their Desc under the hood. Users only have to
+// deal with Desc if they use advanced features like the ExpvarCollector or
+// custom Collectors and Metrics.
+//
+// Descriptors registered with the same registry have to fulfill certain
+// consistency and uniqueness criteria if they share the same fully-qualified
+// name: They must have the same help string and the same label names (aka label
+// dimensions) in each, constLabels and variableLabels, but they must differ in
+// the values of the constLabels.
+//
+// Descriptors that share the same fully-qualified names and the same label
+// values of their constLabels are considered equal.
+//
+// Use NewDesc to create new Desc instances.
+type Desc struct {
+	// fqName has been built from Namespace, Subsystem, and Name.
+	fqName string
+	// help provides some helpful information about this metric.
+	help string
+	// constLabelPairs contains precalculated DTO label pairs based on
+	// the constant labels.
+	constLabelPairs []*dto.LabelPair
+	// VariableLabels contains names of labels for which the metric
+	// maintains variable values.
+	variableLabels []string
+	// id is a hash of the values of the ConstLabels and fqName. This
+	// must be unique among all registered descriptors and can therefore be
+	// used as an identifier of the descriptor.
+	id uint64
+	// dimHash is a hash of the label names (preset and variable) and the
+	// Help string. Each Desc with the same fqName must have the same
+	// dimHash.
+	dimHash uint64
+	// err is an error that occurred during construction. It is reported on
+	// registration time.
+	err error
+}
+
+// NewDesc allocates and initializes a new Desc. Errors are recorded in the Desc
+// and will be reported on registration time. variableLabels and constLabels can
+// be nil if no such labels should be set. fqName and help must not be empty.
+//
+// variableLabels only contain the label names. Their label values are variable
+// and therefore not part of the Desc. (They are managed within the Metric.)
+//
+// For constLabels, the label values are constant. Therefore, they are fully
+// specified in the Desc. See the Collector example for a usage pattern.
+func NewDesc(fqName, help string, variableLabels []string, constLabels Labels) *Desc {
+	d := &Desc{
+		fqName:         fqName,
+		help:           help,
+		variableLabels: variableLabels,
+	}
+	if help == "" {
+		d.err = errors.New("empty help string")
+		return d
+	}
+	if !model.IsValidMetricName(model.LabelValue(fqName)) {
+		d.err = fmt.Errorf("%q is not a valid metric name", fqName)
+		return d
+	}
+	// labelValues contains the label values of const labels (in order of
+	// their sorted label names) plus the fqName (at position 0).
+	labelValues := make([]string, 1, len(constLabels)+1)
+	labelValues[0] = fqName
+	labelNames := make([]string, 0, len(constLabels)+len(variableLabels))
+	labelNameSet := map[string]struct{}{}
+	// First add only the const label names and sort them...
+	for labelName := range constLabels {
+		if !checkLabelName(labelName) {
+			d.err = fmt.Errorf("%q is not a valid label name", labelName)
+			return d
+		}
+		labelNames = append(labelNames, labelName)
+		labelNameSet[labelName] = struct{}{}
+	}
+	sort.Strings(labelNames)
+	// ... so that we can now add const label values in the order of their names.
+	for _, labelName := range labelNames {
+		labelValues = append(labelValues, constLabels[labelName])
+	}
+	// Validate the const label values. They can't have a wrong cardinality, so
+	// use in len(labelValues) as expectedNumberOfValues.
+	if err := validateLabelValues(labelValues, len(labelValues)); err != nil {
+		d.err = err
+		return d
+	}
+	// Now add the variable label names, but prefix them with something that
+	// cannot be in a regular label name. That prevents matching the label
+	// dimension with a different mix between preset and variable labels.
+	for _, labelName := range variableLabels {
+		if !checkLabelName(labelName) {
+			d.err = fmt.Errorf("%q is not a valid label name", labelName)
+			return d
+		}
+		labelNames = append(labelNames, "$"+labelName)
+		labelNameSet[labelName] = struct{}{}
+	}
+	if len(labelNames) != len(labelNameSet) {
+		d.err = errors.New("duplicate label names")
+		return d
+	}
+
+	vh := hashNew()
+	for _, val := range labelValues {
+		vh = hashAdd(vh, val)
+		vh = hashAddByte(vh, separatorByte)
+	}
+	d.id = vh
+	// Sort labelNames so that order doesn't matter for the hash.
+	sort.Strings(labelNames)
+	// Now hash together (in this order) the help string and the sorted
+	// label names.
+	lh := hashNew()
+	lh = hashAdd(lh, help)
+	lh = hashAddByte(lh, separatorByte)
+	for _, labelName := range labelNames {
+		lh = hashAdd(lh, labelName)
+		lh = hashAddByte(lh, separatorByte)
+	}
+	d.dimHash = lh
+
+	d.constLabelPairs = make([]*dto.LabelPair, 0, len(constLabels))
+	for n, v := range constLabels {
+		d.constLabelPairs = append(d.constLabelPairs, &dto.LabelPair{
+			Name:  proto.String(n),
+			Value: proto.String(v),
+		})
+	}
+	sort.Sort(LabelPairSorter(d.constLabelPairs))
+	return d
+}
+
+// NewInvalidDesc returns an invalid descriptor, i.e. a descriptor with the
+// provided error set. If a collector returning such a descriptor is registered,
+// registration will fail with the provided error. NewInvalidDesc can be used by
+// a Collector to signal inability to describe itself.
+func NewInvalidDesc(err error) *Desc {
+	return &Desc{
+		err: err,
+	}
+}
+
+func (d *Desc) String() string {
+	lpStrings := make([]string, 0, len(d.constLabelPairs))
+	for _, lp := range d.constLabelPairs {
+		lpStrings = append(
+			lpStrings,
+			fmt.Sprintf("%s=%q", lp.GetName(), lp.GetValue()),
+		)
+	}
+	return fmt.Sprintf(
+		"Desc{fqName: %q, help: %q, constLabels: {%s}, variableLabels: %v}",
+		d.fqName,
+		d.help,
+		strings.Join(lpStrings, ","),
+		d.variableLabels,
+	)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/doc.go b/vendor/github.com/prometheus/client_golang/prometheus/doc.go
new file mode 100644
index 0000000000..36ef155670
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/doc.go
@@ -0,0 +1,186 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package prometheus provides metrics primitives to instrument code for
+// monitoring. It also offers a registry for metrics. Sub-packages allow to
+// expose the registered metrics via HTTP (package promhttp) or push them to a
+// Pushgateway (package push).
+//
+// All exported functions and methods are safe to be used concurrently unless
+// specified otherwise.
+//
+// A Basic Example
+//
+// As a starting point, a very basic usage example:
+//
+//    package main
+//
+//    import (
+//    	"log"
+//    	"net/http"
+//
+//    	"github.com/prometheus/client_golang/prometheus"
+//    	"github.com/prometheus/client_golang/prometheus/promhttp"
+//    )
+//
+//    var (
+//    	cpuTemp = prometheus.NewGauge(prometheus.GaugeOpts{
+//    		Name: "cpu_temperature_celsius",
+//    		Help: "Current temperature of the CPU.",
+//    	})
+//    	hdFailures = prometheus.NewCounterVec(
+//    		prometheus.CounterOpts{
+//    			Name: "hd_errors_total",
+//    			Help: "Number of hard-disk errors.",
+//    		},
+//    		[]string{"device"},
+//    	)
+//    )
+//
+//    func init() {
+//    	// Metrics have to be registered to be exposed:
+//    	prometheus.MustRegister(cpuTemp)
+//    	prometheus.MustRegister(hdFailures)
+//    }
+//
+//    func main() {
+//    	cpuTemp.Set(65.3)
+//    	hdFailures.With(prometheus.Labels{"device":"/dev/sda"}).Inc()
+//
+//    	// The Handler function provides a default handler to expose metrics
+//    	// via an HTTP server. "/metrics" is the usual endpoint for that.
+//    	http.Handle("/metrics", promhttp.Handler())
+//    	log.Fatal(http.ListenAndServe(":8080", nil))
+//    }
+//
+//
+// This is a complete program that exports two metrics, a Gauge and a Counter,
+// the latter with a label attached to turn it into a (one-dimensional) vector.
+//
+// Metrics
+//
+// The number of exported identifiers in this package might appear a bit
+// overwhelming. However, in addition to the basic plumbing shown in the example
+// above, you only need to understand the different metric types and their
+// vector versions for basic usage.
+//
+// Above, you have already touched the Counter and the Gauge. There are two more
+// advanced metric types: the Summary and Histogram. A more thorough description
+// of those four metric types can be found in the Prometheus docs:
+// https://prometheus.io/docs/concepts/metric_types/
+//
+// A fifth "type" of metric is Untyped. It behaves like a Gauge, but signals the
+// Prometheus server not to assume anything about its type.
+//
+// In addition to the fundamental metric types Gauge, Counter, Summary,
+// Histogram, and Untyped, a very important part of the Prometheus data model is
+// the partitioning of samples along dimensions called labels, which results in
+// metric vectors. The fundamental types are GaugeVec, CounterVec, SummaryVec,
+// HistogramVec, and UntypedVec.
+//
+// While only the fundamental metric types implement the Metric interface, both
+// the metrics and their vector versions implement the Collector interface. A
+// Collector manages the collection of a number of Metrics, but for convenience,
+// a Metric can also “collect itself”. Note that Gauge, Counter, Summary,
+// Histogram, and Untyped are interfaces themselves while GaugeVec, CounterVec,
+// SummaryVec, HistogramVec, and UntypedVec are not.
+//
+// To create instances of Metrics and their vector versions, you need a suitable
+// …Opts struct, i.e. GaugeOpts, CounterOpts, SummaryOpts, HistogramOpts, or
+// UntypedOpts.
+//
+// Custom Collectors and constant Metrics
+//
+// While you could create your own implementations of Metric, most likely you
+// will only ever implement the Collector interface on your own. At a first
+// glance, a custom Collector seems handy to bundle Metrics for common
+// registration (with the prime example of the different metric vectors above,
+// which bundle all the metrics of the same name but with different labels).
+//
+// There is a more involved use case, too: If you already have metrics
+// available, created outside of the Prometheus context, you don't need the
+// interface of the various Metric types. You essentially want to mirror the
+// existing numbers into Prometheus Metrics during collection. An own
+// implementation of the Collector interface is perfect for that. You can create
+// Metric instances “on the fly” using NewConstMetric, NewConstHistogram, and
+// NewConstSummary (and their respective Must… versions). That will happen in
+// the Collect method. The Describe method has to return separate Desc
+// instances, representative of the “throw-away” metrics to be created later.
+// NewDesc comes in handy to create those Desc instances.
+//
+// The Collector example illustrates the use case. You can also look at the
+// source code of the processCollector (mirroring process metrics), the
+// goCollector (mirroring Go metrics), or the expvarCollector (mirroring expvar
+// metrics) as examples that are used in this package itself.
+//
+// If you just need to call a function to get a single float value to collect as
+// a metric, GaugeFunc, CounterFunc, or UntypedFunc might be interesting
+// shortcuts.
+//
+// Advanced Uses of the Registry
+//
+// While MustRegister is the by far most common way of registering a Collector,
+// sometimes you might want to handle the errors the registration might cause.
+// As suggested by the name, MustRegister panics if an error occurs. With the
+// Register function, the error is returned and can be handled.
+//
+// An error is returned if the registered Collector is incompatible or
+// inconsistent with already registered metrics. The registry aims for
+// consistency of the collected metrics according to the Prometheus data model.
+// Inconsistencies are ideally detected at registration time, not at collect
+// time. The former will usually be detected at start-up time of a program,
+// while the latter will only happen at scrape time, possibly not even on the
+// first scrape if the inconsistency only becomes relevant later. That is the
+// main reason why a Collector and a Metric have to describe themselves to the
+// registry.
+//
+// So far, everything we did operated on the so-called default registry, as it
+// can be found in the global DefaultRegisterer variable. With NewRegistry, you
+// can create a custom registry, or you can even implement the Registerer or
+// Gatherer interfaces yourself. The methods Register and Unregister work in the
+// same way on a custom registry as the global functions Register and Unregister
+// on the default registry.
+//
+// There are a number of uses for custom registries: You can use registries with
+// special properties, see NewPedanticRegistry. You can avoid global state, as
+// it is imposed by the DefaultRegisterer. You can use multiple registries at
+// the same time to expose different metrics in different ways.  You can use
+// separate registries for testing purposes.
+//
+// Also note that the DefaultRegisterer comes registered with a Collector for Go
+// runtime metrics (via NewGoCollector) and a Collector for process metrics (via
+// NewProcessCollector). With a custom registry, you are in control and decide
+// yourself about the Collectors to register.
+//
+// HTTP Exposition
+//
+// The Registry implements the Gatherer interface. The caller of the Gather
+// method can then expose the gathered metrics in some way. Usually, the metrics
+// are served via HTTP on the /metrics endpoint. That's happening in the example
+// above. The tools to expose metrics via HTTP are in the promhttp sub-package.
+// (The top-level functions in the prometheus package are deprecated.)
+//
+// Pushing to the Pushgateway
+//
+// Function for pushing to the Pushgateway can be found in the push sub-package.
+//
+// Graphite Bridge
+//
+// Functions and examples to push metrics from a Gatherer to Graphite can be
+// found in the graphite sub-package.
+//
+// Other Means of Exposition
+//
+// More ways of exposing metrics can easily be added by following the approaches
+// of the existing implementations.
+package prometheus
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
new file mode 100644
index 0000000000..18a99d5faa
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/expvar_collector.go
@@ -0,0 +1,119 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"encoding/json"
+	"expvar"
+)
+
+type expvarCollector struct {
+	exports map[string]*Desc
+}
+
+// NewExpvarCollector returns a newly allocated expvar Collector that still has
+// to be registered with a Prometheus registry.
+//
+// An expvar Collector collects metrics from the expvar interface. It provides a
+// quick way to expose numeric values that are already exported via expvar as
+// Prometheus metrics. Note that the data models of expvar and Prometheus are
+// fundamentally different, and that the expvar Collector is inherently slower
+// than native Prometheus metrics. Thus, the expvar Collector is probably great
+// for experiments and prototying, but you should seriously consider a more
+// direct implementation of Prometheus metrics for monitoring production
+// systems.
+//
+// The exports map has the following meaning:
+//
+// The keys in the map correspond to expvar keys, i.e. for every expvar key you
+// want to export as Prometheus metric, you need an entry in the exports
+// map. The descriptor mapped to each key describes how to export the expvar
+// value. It defines the name and the help string of the Prometheus metric
+// proxying the expvar value. The type will always be Untyped.
+//
+// For descriptors without variable labels, the expvar value must be a number or
+// a bool. The number is then directly exported as the Prometheus sample
+// value. (For a bool, 'false' translates to 0 and 'true' to 1). Expvar values
+// that are not numbers or bools are silently ignored.
+//
+// If the descriptor has one variable label, the expvar value must be an expvar
+// map. The keys in the expvar map become the various values of the one
+// Prometheus label. The values in the expvar map must be numbers or bools again
+// as above.
+//
+// For descriptors with more than one variable label, the expvar must be a
+// nested expvar map, i.e. where the values of the topmost map are maps again
+// etc. until a depth is reached that corresponds to the number of labels. The
+// leaves of that structure must be numbers or bools as above to serve as the
+// sample values.
+//
+// Anything that does not fit into the scheme above is silently ignored.
+func NewExpvarCollector(exports map[string]*Desc) Collector {
+	return &expvarCollector{
+		exports: exports,
+	}
+}
+
+// Describe implements Collector.
+func (e *expvarCollector) Describe(ch chan<- *Desc) {
+	for _, desc := range e.exports {
+		ch <- desc
+	}
+}
+
+// Collect implements Collector.
+func (e *expvarCollector) Collect(ch chan<- Metric) {
+	for name, desc := range e.exports {
+		var m Metric
+		expVar := expvar.Get(name)
+		if expVar == nil {
+			continue
+		}
+		var v interface{}
+		labels := make([]string, len(desc.variableLabels))
+		if err := json.Unmarshal([]byte(expVar.String()), &v); err != nil {
+			ch <- NewInvalidMetric(desc, err)
+			continue
+		}
+		var processValue func(v interface{}, i int)
+		processValue = func(v interface{}, i int) {
+			if i >= len(labels) {
+				copiedLabels := append(make([]string, 0, len(labels)), labels...)
+				switch v := v.(type) {
+				case float64:
+					m = MustNewConstMetric(desc, UntypedValue, v, copiedLabels...)
+				case bool:
+					if v {
+						m = MustNewConstMetric(desc, UntypedValue, 1, copiedLabels...)
+					} else {
+						m = MustNewConstMetric(desc, UntypedValue, 0, copiedLabels...)
+					}
+				default:
+					return
+				}
+				ch <- m
+				return
+			}
+			vm, ok := v.(map[string]interface{})
+			if !ok {
+				return
+			}
+			for lv, val := range vm {
+				labels[i] = lv
+				processValue(val, i+1)
+			}
+		}
+		processValue(v, 0)
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/fnv.go b/vendor/github.com/prometheus/client_golang/prometheus/fnv.go
new file mode 100644
index 0000000000..e3b67df8ac
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/fnv.go
@@ -0,0 +1,29 @@
+package prometheus
+
+// Inline and byte-free variant of hash/fnv's fnv64a.
+
+const (
+	offset64 = 14695981039346656037
+	prime64  = 1099511628211
+)
+
+// hashNew initializies a new fnv64a hash value.
+func hashNew() uint64 {
+	return offset64
+}
+
+// hashAdd adds a string to a fnv64a hash value, returning the updated hash.
+func hashAdd(h uint64, s string) uint64 {
+	for i := 0; i < len(s); i++ {
+		h ^= uint64(s[i])
+		h *= prime64
+	}
+	return h
+}
+
+// hashAddByte adds a byte to a fnv64a hash value, returning the updated hash.
+func hashAddByte(h uint64, b byte) uint64 {
+	h ^= uint64(b)
+	h *= prime64
+	return h
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/gauge.go b/vendor/github.com/prometheus/client_golang/prometheus/gauge.go
new file mode 100644
index 0000000000..17c72d7eb0
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/gauge.go
@@ -0,0 +1,286 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"math"
+	"sync/atomic"
+	"time"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// Gauge is a Metric that represents a single numerical value that can
+// arbitrarily go up and down.
+//
+// A Gauge is typically used for measured values like temperatures or current
+// memory usage, but also "counts" that can go up and down, like the number of
+// running goroutines.
+//
+// To create Gauge instances, use NewGauge.
+type Gauge interface {
+	Metric
+	Collector
+
+	// Set sets the Gauge to an arbitrary value.
+	Set(float64)
+	// Inc increments the Gauge by 1. Use Add to increment it by arbitrary
+	// values.
+	Inc()
+	// Dec decrements the Gauge by 1. Use Sub to decrement it by arbitrary
+	// values.
+	Dec()
+	// Add adds the given value to the Gauge. (The value can be negative,
+	// resulting in a decrease of the Gauge.)
+	Add(float64)
+	// Sub subtracts the given value from the Gauge. (The value can be
+	// negative, resulting in an increase of the Gauge.)
+	Sub(float64)
+
+	// SetToCurrentTime sets the Gauge to the current Unix time in seconds.
+	SetToCurrentTime()
+}
+
+// GaugeOpts is an alias for Opts. See there for doc comments.
+type GaugeOpts Opts
+
+// NewGauge creates a new Gauge based on the provided GaugeOpts.
+//
+// The returned implementation is optimized for a fast Set method. If you have a
+// choice for managing the value of a Gauge via Set vs. Inc/Dec/Add/Sub, pick
+// the former. For example, the Inc method of the returned Gauge is slower than
+// the Inc method of a Counter returned by NewCounter. This matches the typical
+// scenarios for Gauges and Counters, where the former tends to be Set-heavy and
+// the latter Inc-heavy.
+func NewGauge(opts GaugeOpts) Gauge {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		nil,
+		opts.ConstLabels,
+	)
+	result := &gauge{desc: desc, labelPairs: desc.constLabelPairs}
+	result.init(result) // Init self-collection.
+	return result
+}
+
+type gauge struct {
+	// valBits contains the bits of the represented float64 value. It has
+	// to go first in the struct to guarantee alignment for atomic
+	// operations.  http://golang.org/pkg/sync/atomic/#pkg-note-BUG
+	valBits uint64
+
+	selfCollector
+
+	desc       *Desc
+	labelPairs []*dto.LabelPair
+}
+
+func (g *gauge) Desc() *Desc {
+	return g.desc
+}
+
+func (g *gauge) Set(val float64) {
+	atomic.StoreUint64(&g.valBits, math.Float64bits(val))
+}
+
+func (g *gauge) SetToCurrentTime() {
+	g.Set(float64(time.Now().UnixNano()) / 1e9)
+}
+
+func (g *gauge) Inc() {
+	g.Add(1)
+}
+
+func (g *gauge) Dec() {
+	g.Add(-1)
+}
+
+func (g *gauge) Add(val float64) {
+	for {
+		oldBits := atomic.LoadUint64(&g.valBits)
+		newBits := math.Float64bits(math.Float64frombits(oldBits) + val)
+		if atomic.CompareAndSwapUint64(&g.valBits, oldBits, newBits) {
+			return
+		}
+	}
+}
+
+func (g *gauge) Sub(val float64) {
+	g.Add(val * -1)
+}
+
+func (g *gauge) Write(out *dto.Metric) error {
+	val := math.Float64frombits(atomic.LoadUint64(&g.valBits))
+	return populateMetric(GaugeValue, val, g.labelPairs, out)
+}
+
+// GaugeVec is a Collector that bundles a set of Gauges that all share the same
+// Desc, but have different values for their variable labels. This is used if
+// you want to count the same thing partitioned by various dimensions
+// (e.g. number of operations queued, partitioned by user and operation
+// type). Create instances with NewGaugeVec.
+type GaugeVec struct {
+	*metricVec
+}
+
+// NewGaugeVec creates a new GaugeVec based on the provided GaugeOpts and
+// partitioned by the given label names.
+func NewGaugeVec(opts GaugeOpts, labelNames []string) *GaugeVec {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		labelNames,
+		opts.ConstLabels,
+	)
+	return &GaugeVec{
+		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
+			if len(lvs) != len(desc.variableLabels) {
+				panic(errInconsistentCardinality)
+			}
+			result := &gauge{desc: desc, labelPairs: makeLabelPairs(desc, lvs)}
+			result.init(result) // Init self-collection.
+			return result
+		}),
+	}
+}
+
+// GetMetricWithLabelValues returns the Gauge for the given slice of label
+// values (same order as the VariableLabels in Desc). If that combination of
+// label values is accessed for the first time, a new Gauge is created.
+//
+// It is possible to call this method without using the returned Gauge to only
+// create the new Gauge but leave it at its starting value 0. See also the
+// SummaryVec example.
+//
+// Keeping the Gauge for later use is possible (and should be considered if
+// performance is critical), but keep in mind that Reset, DeleteLabelValues and
+// Delete can be used to delete the Gauge from the GaugeVec. In that case, the
+// Gauge will still exist, but it will not be exported anymore, even if a
+// Gauge with the same label values is created later. See also the CounterVec
+// example.
+//
+// An error is returned if the number of label values is not the same as the
+// number of VariableLabels in Desc (minus any curried labels).
+//
+// Note that for more than one label value, this method is prone to mistakes
+// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
+// an alternative to avoid that type of mistake. For higher label numbers, the
+// latter has a much more readable (albeit more verbose) syntax, but it comes
+// with a performance overhead (for creating and processing the Labels map).
+func (v *GaugeVec) GetMetricWithLabelValues(lvs ...string) (Gauge, error) {
+	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
+	if metric != nil {
+		return metric.(Gauge), err
+	}
+	return nil, err
+}
+
+// GetMetricWith returns the Gauge for the given Labels map (the label names
+// must match those of the VariableLabels in Desc). If that label map is
+// accessed for the first time, a new Gauge is created. Implications of
+// creating a Gauge without using it and keeping the Gauge for later use are
+// the same as for GetMetricWithLabelValues.
+//
+// An error is returned if the number and names of the Labels are inconsistent
+// with those of the VariableLabels in Desc (minus any curried labels).
+//
+// This method is used for the same purpose as
+// GetMetricWithLabelValues(...string). See there for pros and cons of the two
+// methods.
+func (v *GaugeVec) GetMetricWith(labels Labels) (Gauge, error) {
+	metric, err := v.metricVec.getMetricWith(labels)
+	if metric != nil {
+		return metric.(Gauge), err
+	}
+	return nil, err
+}
+
+// WithLabelValues works as GetMetricWithLabelValues, but panics where
+// GetMetricWithLabelValues would have returned an error. Not returning an
+// error allows shortcuts like
+//     myVec.WithLabelValues("404", "GET").Add(42)
+func (v *GaugeVec) WithLabelValues(lvs ...string) Gauge {
+	g, err := v.GetMetricWithLabelValues(lvs...)
+	if err != nil {
+		panic(err)
+	}
+	return g
+}
+
+// With works as GetMetricWith, but panics where GetMetricWithLabels would have
+// returned an error. Not returning an error allows shortcuts like
+//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Add(42)
+func (v *GaugeVec) With(labels Labels) Gauge {
+	g, err := v.GetMetricWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return g
+}
+
+// CurryWith returns a vector curried with the provided labels, i.e. the
+// returned vector has those labels pre-set for all labeled operations performed
+// on it. The cardinality of the curried vector is reduced accordingly. The
+// order of the remaining labels stays the same (just with the curried labels
+// taken out of the sequence – which is relevant for the
+// (GetMetric)WithLabelValues methods). It is possible to curry a curried
+// vector, but only with labels not yet used for currying before.
+//
+// The metrics contained in the GaugeVec are shared between the curried and
+// uncurried vectors. They are just accessed differently. Curried and uncurried
+// vectors behave identically in terms of collection. Only one must be
+// registered with a given registry (usually the uncurried version). The Reset
+// method deletes all metrics, even if called on a curried vector.
+func (v *GaugeVec) CurryWith(labels Labels) (*GaugeVec, error) {
+	vec, err := v.curryWith(labels)
+	if vec != nil {
+		return &GaugeVec{vec}, err
+	}
+	return nil, err
+}
+
+// MustCurryWith works as CurryWith but panics where CurryWith would have
+// returned an error.
+func (v *GaugeVec) MustCurryWith(labels Labels) *GaugeVec {
+	vec, err := v.CurryWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return vec
+}
+
+// GaugeFunc is a Gauge whose value is determined at collect time by calling a
+// provided function.
+//
+// To create GaugeFunc instances, use NewGaugeFunc.
+type GaugeFunc interface {
+	Metric
+	Collector
+}
+
+// NewGaugeFunc creates a new GaugeFunc based on the provided GaugeOpts. The
+// value reported is determined by calling the given function from within the
+// Write method. Take into account that metric collection may happen
+// concurrently. If that results in concurrent calls to Write, like in the case
+// where a GaugeFunc is directly registered with Prometheus, the provided
+// function must be concurrency-safe.
+func NewGaugeFunc(opts GaugeOpts, function func() float64) GaugeFunc {
+	return newValueFunc(NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		nil,
+		opts.ConstLabels,
+	), GaugeValue, function)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
new file mode 100644
index 0000000000..096454af91
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/go_collector.go
@@ -0,0 +1,284 @@
+package prometheus
+
+import (
+	"fmt"
+	"runtime"
+	"runtime/debug"
+	"time"
+)
+
+type goCollector struct {
+	goroutinesDesc *Desc
+	threadsDesc    *Desc
+	gcDesc         *Desc
+	goInfoDesc     *Desc
+
+	// metrics to describe and collect
+	metrics memStatsMetrics
+}
+
+// NewGoCollector returns a collector which exports metrics about the current
+// go process.
+func NewGoCollector() Collector {
+	return &goCollector{
+		goroutinesDesc: NewDesc(
+			"go_goroutines",
+			"Number of goroutines that currently exist.",
+			nil, nil),
+		threadsDesc: NewDesc(
+			"go_threads",
+			"Number of OS threads created.",
+			nil, nil),
+		gcDesc: NewDesc(
+			"go_gc_duration_seconds",
+			"A summary of the GC invocation durations.",
+			nil, nil),
+		goInfoDesc: NewDesc(
+			"go_info",
+			"Information about the Go environment.",
+			nil, Labels{"version": runtime.Version()}),
+		metrics: memStatsMetrics{
+			{
+				desc: NewDesc(
+					memstatNamespace("alloc_bytes"),
+					"Number of bytes allocated and still in use.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Alloc) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("alloc_bytes_total"),
+					"Total number of bytes allocated, even if freed.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.TotalAlloc) },
+				valType: CounterValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("sys_bytes"),
+					"Number of bytes obtained from system.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Sys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("lookups_total"),
+					"Total number of pointer lookups.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Lookups) },
+				valType: CounterValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("mallocs_total"),
+					"Total number of mallocs.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Mallocs) },
+				valType: CounterValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("frees_total"),
+					"Total number of frees.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.Frees) },
+				valType: CounterValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_alloc_bytes"),
+					"Number of heap bytes allocated and still in use.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapAlloc) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_sys_bytes"),
+					"Number of heap bytes obtained from system.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_idle_bytes"),
+					"Number of heap bytes waiting to be used.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapIdle) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_inuse_bytes"),
+					"Number of heap bytes that are in use.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapInuse) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_released_bytes"),
+					"Number of heap bytes released to OS.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapReleased) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("heap_objects"),
+					"Number of allocated objects.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.HeapObjects) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("stack_inuse_bytes"),
+					"Number of bytes in use by the stack allocator.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.StackInuse) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("stack_sys_bytes"),
+					"Number of bytes obtained from system for stack allocator.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.StackSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("mspan_inuse_bytes"),
+					"Number of bytes in use by mspan structures.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MSpanInuse) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("mspan_sys_bytes"),
+					"Number of bytes used for mspan structures obtained from system.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MSpanSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("mcache_inuse_bytes"),
+					"Number of bytes in use by mcache structures.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MCacheInuse) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("mcache_sys_bytes"),
+					"Number of bytes used for mcache structures obtained from system.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.MCacheSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("buck_hash_sys_bytes"),
+					"Number of bytes used by the profiling bucket hash table.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.BuckHashSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("gc_sys_bytes"),
+					"Number of bytes used for garbage collection system metadata.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.GCSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("other_sys_bytes"),
+					"Number of bytes used for other system allocations.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.OtherSys) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("next_gc_bytes"),
+					"Number of heap bytes when next garbage collection will take place.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.NextGC) },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("last_gc_time_seconds"),
+					"Number of seconds since 1970 of last garbage collection.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return float64(ms.LastGC) / 1e9 },
+				valType: GaugeValue,
+			}, {
+				desc: NewDesc(
+					memstatNamespace("gc_cpu_fraction"),
+					"The fraction of this program's available CPU time used by the GC since the program started.",
+					nil, nil,
+				),
+				eval:    func(ms *runtime.MemStats) float64 { return ms.GCCPUFraction },
+				valType: GaugeValue,
+			},
+		},
+	}
+}
+
+func memstatNamespace(s string) string {
+	return fmt.Sprintf("go_memstats_%s", s)
+}
+
+// Describe returns all descriptions of the collector.
+func (c *goCollector) Describe(ch chan<- *Desc) {
+	ch <- c.goroutinesDesc
+	ch <- c.threadsDesc
+	ch <- c.gcDesc
+	ch <- c.goInfoDesc
+	for _, i := range c.metrics {
+		ch <- i.desc
+	}
+}
+
+// Collect returns the current state of all metrics of the collector.
+func (c *goCollector) Collect(ch chan<- Metric) {
+	ch <- MustNewConstMetric(c.goroutinesDesc, GaugeValue, float64(runtime.NumGoroutine()))
+	n, _ := runtime.ThreadCreateProfile(nil)
+	ch <- MustNewConstMetric(c.threadsDesc, GaugeValue, float64(n))
+
+	var stats debug.GCStats
+	stats.PauseQuantiles = make([]time.Duration, 5)
+	debug.ReadGCStats(&stats)
+
+	quantiles := make(map[float64]float64)
+	for idx, pq := range stats.PauseQuantiles[1:] {
+		quantiles[float64(idx+1)/float64(len(stats.PauseQuantiles)-1)] = pq.Seconds()
+	}
+	quantiles[0.0] = stats.PauseQuantiles[0].Seconds()
+	ch <- MustNewConstSummary(c.gcDesc, uint64(stats.NumGC), float64(stats.PauseTotal.Seconds()), quantiles)
+
+	ch <- MustNewConstMetric(c.goInfoDesc, GaugeValue, 1)
+
+	ms := &runtime.MemStats{}
+	runtime.ReadMemStats(ms)
+	for _, i := range c.metrics {
+		ch <- MustNewConstMetric(i.desc, i.valType, i.eval(ms))
+	}
+}
+
+// memStatsMetrics provide description, value, and value type for memstat metrics.
+type memStatsMetrics []struct {
+	desc    *Desc
+	eval    func(*runtime.MemStats) float64
+	valType ValueType
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/histogram.go b/vendor/github.com/prometheus/client_golang/prometheus/histogram.go
new file mode 100644
index 0000000000..331783a75c
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/histogram.go
@@ -0,0 +1,505 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"fmt"
+	"math"
+	"sort"
+	"sync/atomic"
+
+	"github.com/golang/protobuf/proto"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// A Histogram counts individual observations from an event or sample stream in
+// configurable buckets. Similar to a summary, it also provides a sum of
+// observations and an observation count.
+//
+// On the Prometheus server, quantiles can be calculated from a Histogram using
+// the histogram_quantile function in the query language.
+//
+// Note that Histograms, in contrast to Summaries, can be aggregated with the
+// Prometheus query language (see the documentation for detailed
+// procedures). However, Histograms require the user to pre-define suitable
+// buckets, and they are in general less accurate. The Observe method of a
+// Histogram has a very low performance overhead in comparison with the Observe
+// method of a Summary.
+//
+// To create Histogram instances, use NewHistogram.
+type Histogram interface {
+	Metric
+	Collector
+
+	// Observe adds a single observation to the histogram.
+	Observe(float64)
+}
+
+// bucketLabel is used for the label that defines the upper bound of a
+// bucket of a histogram ("le" -> "less or equal").
+const bucketLabel = "le"
+
+// DefBuckets are the default Histogram buckets. The default buckets are
+// tailored to broadly measure the response time (in seconds) of a network
+// service. Most likely, however, you will be required to define buckets
+// customized to your use case.
+var (
+	DefBuckets = []float64{.005, .01, .025, .05, .1, .25, .5, 1, 2.5, 5, 10}
+
+	errBucketLabelNotAllowed = fmt.Errorf(
+		"%q is not allowed as label name in histograms", bucketLabel,
+	)
+)
+
+// LinearBuckets creates 'count' buckets, each 'width' wide, where the lowest
+// bucket has an upper bound of 'start'. The final +Inf bucket is not counted
+// and not included in the returned slice. The returned slice is meant to be
+// used for the Buckets field of HistogramOpts.
+//
+// The function panics if 'count' is zero or negative.
+func LinearBuckets(start, width float64, count int) []float64 {
+	if count < 1 {
+		panic("LinearBuckets needs a positive count")
+	}
+	buckets := make([]float64, count)
+	for i := range buckets {
+		buckets[i] = start
+		start += width
+	}
+	return buckets
+}
+
+// ExponentialBuckets creates 'count' buckets, where the lowest bucket has an
+// upper bound of 'start' and each following bucket's upper bound is 'factor'
+// times the previous bucket's upper bound. The final +Inf bucket is not counted
+// and not included in the returned slice. The returned slice is meant to be
+// used for the Buckets field of HistogramOpts.
+//
+// The function panics if 'count' is 0 or negative, if 'start' is 0 or negative,
+// or if 'factor' is less than or equal 1.
+func ExponentialBuckets(start, factor float64, count int) []float64 {
+	if count < 1 {
+		panic("ExponentialBuckets needs a positive count")
+	}
+	if start <= 0 {
+		panic("ExponentialBuckets needs a positive start value")
+	}
+	if factor <= 1 {
+		panic("ExponentialBuckets needs a factor greater than 1")
+	}
+	buckets := make([]float64, count)
+	for i := range buckets {
+		buckets[i] = start
+		start *= factor
+	}
+	return buckets
+}
+
+// HistogramOpts bundles the options for creating a Histogram metric. It is
+// mandatory to set Name and Help to a non-empty string. All other fields are
+// optional and can safely be left at their zero value.
+type HistogramOpts struct {
+	// Namespace, Subsystem, and Name are components of the fully-qualified
+	// name of the Histogram (created by joining these components with
+	// "_"). Only Name is mandatory, the others merely help structuring the
+	// name. Note that the fully-qualified name of the Histogram must be a
+	// valid Prometheus metric name.
+	Namespace string
+	Subsystem string
+	Name      string
+
+	// Help provides information about this Histogram. Mandatory!
+	//
+	// Metrics with the same fully-qualified name must have the same Help
+	// string.
+	Help string
+
+	// ConstLabels are used to attach fixed labels to this metric. Metrics
+	// with the same fully-qualified name must have the same label names in
+	// their ConstLabels.
+	//
+	// ConstLabels are only used rarely. In particular, do not use them to
+	// attach the same labels to all your metrics. Those use cases are
+	// better covered by target labels set by the scraping Prometheus
+	// server, or by one specific metric (e.g. a build_info or a
+	// machine_role metric). See also
+	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
+	ConstLabels Labels
+
+	// Buckets defines the buckets into which observations are counted. Each
+	// element in the slice is the upper inclusive bound of a bucket. The
+	// values must be sorted in strictly increasing order. There is no need
+	// to add a highest bucket with +Inf bound, it will be added
+	// implicitly. The default value is DefBuckets.
+	Buckets []float64
+}
+
+// NewHistogram creates a new Histogram based on the provided HistogramOpts. It
+// panics if the buckets in HistogramOpts are not in strictly increasing order.
+func NewHistogram(opts HistogramOpts) Histogram {
+	return newHistogram(
+		NewDesc(
+			BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+			opts.Help,
+			nil,
+			opts.ConstLabels,
+		),
+		opts,
+	)
+}
+
+func newHistogram(desc *Desc, opts HistogramOpts, labelValues ...string) Histogram {
+	if len(desc.variableLabels) != len(labelValues) {
+		panic(errInconsistentCardinality)
+	}
+
+	for _, n := range desc.variableLabels {
+		if n == bucketLabel {
+			panic(errBucketLabelNotAllowed)
+		}
+	}
+	for _, lp := range desc.constLabelPairs {
+		if lp.GetName() == bucketLabel {
+			panic(errBucketLabelNotAllowed)
+		}
+	}
+
+	if len(opts.Buckets) == 0 {
+		opts.Buckets = DefBuckets
+	}
+
+	h := &histogram{
+		desc:        desc,
+		upperBounds: opts.Buckets,
+		labelPairs:  makeLabelPairs(desc, labelValues),
+	}
+	for i, upperBound := range h.upperBounds {
+		if i < len(h.upperBounds)-1 {
+			if upperBound >= h.upperBounds[i+1] {
+				panic(fmt.Errorf(
+					"histogram buckets must be in increasing order: %f >= %f",
+					upperBound, h.upperBounds[i+1],
+				))
+			}
+		} else {
+			if math.IsInf(upperBound, +1) {
+				// The +Inf bucket is implicit. Remove it here.
+				h.upperBounds = h.upperBounds[:i]
+			}
+		}
+	}
+	// Finally we know the final length of h.upperBounds and can make counts.
+	h.counts = make([]uint64, len(h.upperBounds))
+
+	h.init(h) // Init self-collection.
+	return h
+}
+
+type histogram struct {
+	// sumBits contains the bits of the float64 representing the sum of all
+	// observations. sumBits and count have to go first in the struct to
+	// guarantee alignment for atomic operations.
+	// http://golang.org/pkg/sync/atomic/#pkg-note-BUG
+	sumBits uint64
+	count   uint64
+
+	selfCollector
+	// Note that there is no mutex required.
+
+	desc *Desc
+
+	upperBounds []float64
+	counts      []uint64
+
+	labelPairs []*dto.LabelPair
+}
+
+func (h *histogram) Desc() *Desc {
+	return h.desc
+}
+
+func (h *histogram) Observe(v float64) {
+	// TODO(beorn7): For small numbers of buckets (<30), a linear search is
+	// slightly faster than the binary search. If we really care, we could
+	// switch from one search strategy to the other depending on the number
+	// of buckets.
+	//
+	// Microbenchmarks (BenchmarkHistogramNoLabels):
+	// 11 buckets: 38.3 ns/op linear - binary 48.7 ns/op
+	// 100 buckets: 78.1 ns/op linear - binary 54.9 ns/op
+	// 300 buckets: 154 ns/op linear - binary 61.6 ns/op
+	i := sort.SearchFloat64s(h.upperBounds, v)
+	if i < len(h.counts) {
+		atomic.AddUint64(&h.counts[i], 1)
+	}
+	atomic.AddUint64(&h.count, 1)
+	for {
+		oldBits := atomic.LoadUint64(&h.sumBits)
+		newBits := math.Float64bits(math.Float64frombits(oldBits) + v)
+		if atomic.CompareAndSwapUint64(&h.sumBits, oldBits, newBits) {
+			break
+		}
+	}
+}
+
+func (h *histogram) Write(out *dto.Metric) error {
+	his := &dto.Histogram{}
+	buckets := make([]*dto.Bucket, len(h.upperBounds))
+
+	his.SampleSum = proto.Float64(math.Float64frombits(atomic.LoadUint64(&h.sumBits)))
+	his.SampleCount = proto.Uint64(atomic.LoadUint64(&h.count))
+	var count uint64
+	for i, upperBound := range h.upperBounds {
+		count += atomic.LoadUint64(&h.counts[i])
+		buckets[i] = &dto.Bucket{
+			CumulativeCount: proto.Uint64(count),
+			UpperBound:      proto.Float64(upperBound),
+		}
+	}
+	his.Bucket = buckets
+	out.Histogram = his
+	out.Label = h.labelPairs
+	return nil
+}
+
+// HistogramVec is a Collector that bundles a set of Histograms that all share the
+// same Desc, but have different values for their variable labels. This is used
+// if you want to count the same thing partitioned by various dimensions
+// (e.g. HTTP request latencies, partitioned by status code and method). Create
+// instances with NewHistogramVec.
+type HistogramVec struct {
+	*metricVec
+}
+
+// NewHistogramVec creates a new HistogramVec based on the provided HistogramOpts and
+// partitioned by the given label names.
+func NewHistogramVec(opts HistogramOpts, labelNames []string) *HistogramVec {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		labelNames,
+		opts.ConstLabels,
+	)
+	return &HistogramVec{
+		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
+			return newHistogram(desc, opts, lvs...)
+		}),
+	}
+}
+
+// GetMetricWithLabelValues returns the Histogram for the given slice of label
+// values (same order as the VariableLabels in Desc). If that combination of
+// label values is accessed for the first time, a new Histogram is created.
+//
+// It is possible to call this method without using the returned Histogram to only
+// create the new Histogram but leave it at its starting value, a Histogram without
+// any observations.
+//
+// Keeping the Histogram for later use is possible (and should be considered if
+// performance is critical), but keep in mind that Reset, DeleteLabelValues and
+// Delete can be used to delete the Histogram from the HistogramVec. In that case, the
+// Histogram will still exist, but it will not be exported anymore, even if a
+// Histogram with the same label values is created later. See also the CounterVec
+// example.
+//
+// An error is returned if the number of label values is not the same as the
+// number of VariableLabels in Desc (minus any curried labels).
+//
+// Note that for more than one label value, this method is prone to mistakes
+// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
+// an alternative to avoid that type of mistake. For higher label numbers, the
+// latter has a much more readable (albeit more verbose) syntax, but it comes
+// with a performance overhead (for creating and processing the Labels map).
+// See also the GaugeVec example.
+func (v *HistogramVec) GetMetricWithLabelValues(lvs ...string) (Observer, error) {
+	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
+	if metric != nil {
+		return metric.(Observer), err
+	}
+	return nil, err
+}
+
+// GetMetricWith returns the Histogram for the given Labels map (the label names
+// must match those of the VariableLabels in Desc). If that label map is
+// accessed for the first time, a new Histogram is created. Implications of
+// creating a Histogram without using it and keeping the Histogram for later use
+// are the same as for GetMetricWithLabelValues.
+//
+// An error is returned if the number and names of the Labels are inconsistent
+// with those of the VariableLabels in Desc (minus any curried labels).
+//
+// This method is used for the same purpose as
+// GetMetricWithLabelValues(...string). See there for pros and cons of the two
+// methods.
+func (v *HistogramVec) GetMetricWith(labels Labels) (Observer, error) {
+	metric, err := v.metricVec.getMetricWith(labels)
+	if metric != nil {
+		return metric.(Observer), err
+	}
+	return nil, err
+}
+
+// WithLabelValues works as GetMetricWithLabelValues, but panics where
+// GetMetricWithLabelValues would have returned an error. Not returning an
+// error allows shortcuts like
+//     myVec.WithLabelValues("404", "GET").Observe(42.21)
+func (v *HistogramVec) WithLabelValues(lvs ...string) Observer {
+	h, err := v.GetMetricWithLabelValues(lvs...)
+	if err != nil {
+		panic(err)
+	}
+	return h
+}
+
+// With works as GetMetricWith but panics where GetMetricWithLabels would have
+// returned an error. Not returning an error allows shortcuts like
+//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Observe(42.21)
+func (v *HistogramVec) With(labels Labels) Observer {
+	h, err := v.GetMetricWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return h
+}
+
+// CurryWith returns a vector curried with the provided labels, i.e. the
+// returned vector has those labels pre-set for all labeled operations performed
+// on it. The cardinality of the curried vector is reduced accordingly. The
+// order of the remaining labels stays the same (just with the curried labels
+// taken out of the sequence – which is relevant for the
+// (GetMetric)WithLabelValues methods). It is possible to curry a curried
+// vector, but only with labels not yet used for currying before.
+//
+// The metrics contained in the HistogramVec are shared between the curried and
+// uncurried vectors. They are just accessed differently. Curried and uncurried
+// vectors behave identically in terms of collection. Only one must be
+// registered with a given registry (usually the uncurried version). The Reset
+// method deletes all metrics, even if called on a curried vector.
+func (v *HistogramVec) CurryWith(labels Labels) (ObserverVec, error) {
+	vec, err := v.curryWith(labels)
+	if vec != nil {
+		return &HistogramVec{vec}, err
+	}
+	return nil, err
+}
+
+// MustCurryWith works as CurryWith but panics where CurryWith would have
+// returned an error.
+func (v *HistogramVec) MustCurryWith(labels Labels) ObserverVec {
+	vec, err := v.CurryWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return vec
+}
+
+type constHistogram struct {
+	desc       *Desc
+	count      uint64
+	sum        float64
+	buckets    map[float64]uint64
+	labelPairs []*dto.LabelPair
+}
+
+func (h *constHistogram) Desc() *Desc {
+	return h.desc
+}
+
+func (h *constHistogram) Write(out *dto.Metric) error {
+	his := &dto.Histogram{}
+	buckets := make([]*dto.Bucket, 0, len(h.buckets))
+
+	his.SampleCount = proto.Uint64(h.count)
+	his.SampleSum = proto.Float64(h.sum)
+
+	for upperBound, count := range h.buckets {
+		buckets = append(buckets, &dto.Bucket{
+			CumulativeCount: proto.Uint64(count),
+			UpperBound:      proto.Float64(upperBound),
+		})
+	}
+
+	if len(buckets) > 0 {
+		sort.Sort(buckSort(buckets))
+	}
+	his.Bucket = buckets
+
+	out.Histogram = his
+	out.Label = h.labelPairs
+
+	return nil
+}
+
+// NewConstHistogram returns a metric representing a Prometheus histogram with
+// fixed values for the count, sum, and bucket counts. As those parameters
+// cannot be changed, the returned value does not implement the Histogram
+// interface (but only the Metric interface). Users of this package will not
+// have much use for it in regular operations. However, when implementing custom
+// Collectors, it is useful as a throw-away metric that is generated on the fly
+// to send it to Prometheus in the Collect method.
+//
+// buckets is a map of upper bounds to cumulative counts, excluding the +Inf
+// bucket.
+//
+// NewConstHistogram returns an error if the length of labelValues is not
+// consistent with the variable labels in Desc.
+func NewConstHistogram(
+	desc *Desc,
+	count uint64,
+	sum float64,
+	buckets map[float64]uint64,
+	labelValues ...string,
+) (Metric, error) {
+	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
+		return nil, err
+	}
+	return &constHistogram{
+		desc:       desc,
+		count:      count,
+		sum:        sum,
+		buckets:    buckets,
+		labelPairs: makeLabelPairs(desc, labelValues),
+	}, nil
+}
+
+// MustNewConstHistogram is a version of NewConstHistogram that panics where
+// NewConstMetric would have returned an error.
+func MustNewConstHistogram(
+	desc *Desc,
+	count uint64,
+	sum float64,
+	buckets map[float64]uint64,
+	labelValues ...string,
+) Metric {
+	m, err := NewConstHistogram(desc, count, sum, buckets, labelValues...)
+	if err != nil {
+		panic(err)
+	}
+	return m
+}
+
+type buckSort []*dto.Bucket
+
+func (s buckSort) Len() int {
+	return len(s)
+}
+
+func (s buckSort) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s buckSort) Less(i, j int) bool {
+	return s[i].GetUpperBound() < s[j].GetUpperBound()
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/http.go b/vendor/github.com/prometheus/client_golang/prometheus/http.go
new file mode 100644
index 0000000000..dd0f8197f9
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/http.go
@@ -0,0 +1,523 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"bufio"
+	"bytes"
+	"compress/gzip"
+	"fmt"
+	"io"
+	"net"
+	"net/http"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/prometheus/common/expfmt"
+)
+
+// TODO(beorn7): Remove this whole file. It is a partial mirror of
+// promhttp/http.go (to avoid circular import chains) where everything HTTP
+// related should live. The functions here are just for avoiding
+// breakage. Everything is deprecated.
+
+const (
+	contentTypeHeader     = "Content-Type"
+	contentLengthHeader   = "Content-Length"
+	contentEncodingHeader = "Content-Encoding"
+	acceptEncodingHeader  = "Accept-Encoding"
+)
+
+var bufPool sync.Pool
+
+func getBuf() *bytes.Buffer {
+	buf := bufPool.Get()
+	if buf == nil {
+		return &bytes.Buffer{}
+	}
+	return buf.(*bytes.Buffer)
+}
+
+func giveBuf(buf *bytes.Buffer) {
+	buf.Reset()
+	bufPool.Put(buf)
+}
+
+// Handler returns an HTTP handler for the DefaultGatherer. It is
+// already instrumented with InstrumentHandler (using "prometheus" as handler
+// name).
+//
+// Deprecated: Please note the issues described in the doc comment of
+// InstrumentHandler. You might want to consider using
+// promhttp.InstrumentedHandler instead.
+func Handler() http.Handler {
+	return InstrumentHandler("prometheus", UninstrumentedHandler())
+}
+
+// UninstrumentedHandler returns an HTTP handler for the DefaultGatherer.
+//
+// Deprecated: Use promhttp.Handler instead. See there for further documentation.
+func UninstrumentedHandler() http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
+		mfs, err := DefaultGatherer.Gather()
+		if err != nil {
+			http.Error(w, "An error has occurred during metrics collection:\n\n"+err.Error(), http.StatusInternalServerError)
+			return
+		}
+
+		contentType := expfmt.Negotiate(req.Header)
+		buf := getBuf()
+		defer giveBuf(buf)
+		writer, encoding := decorateWriter(req, buf)
+		enc := expfmt.NewEncoder(writer, contentType)
+		var lastErr error
+		for _, mf := range mfs {
+			if err := enc.Encode(mf); err != nil {
+				lastErr = err
+				http.Error(w, "An error has occurred during metrics encoding:\n\n"+err.Error(), http.StatusInternalServerError)
+				return
+			}
+		}
+		if closer, ok := writer.(io.Closer); ok {
+			closer.Close()
+		}
+		if lastErr != nil && buf.Len() == 0 {
+			http.Error(w, "No metrics encoded, last error:\n\n"+lastErr.Error(), http.StatusInternalServerError)
+			return
+		}
+		header := w.Header()
+		header.Set(contentTypeHeader, string(contentType))
+		header.Set(contentLengthHeader, fmt.Sprint(buf.Len()))
+		if encoding != "" {
+			header.Set(contentEncodingHeader, encoding)
+		}
+		w.Write(buf.Bytes())
+	})
+}
+
+// decorateWriter wraps a writer to handle gzip compression if requested.  It
+// returns the decorated writer and the appropriate "Content-Encoding" header
+// (which is empty if no compression is enabled).
+func decorateWriter(request *http.Request, writer io.Writer) (io.Writer, string) {
+	header := request.Header.Get(acceptEncodingHeader)
+	parts := strings.Split(header, ",")
+	for _, part := range parts {
+		part := strings.TrimSpace(part)
+		if part == "gzip" || strings.HasPrefix(part, "gzip;") {
+			return gzip.NewWriter(writer), "gzip"
+		}
+	}
+	return writer, ""
+}
+
+var instLabels = []string{"method", "code"}
+
+type nower interface {
+	Now() time.Time
+}
+
+type nowFunc func() time.Time
+
+func (n nowFunc) Now() time.Time {
+	return n()
+}
+
+var now nower = nowFunc(func() time.Time {
+	return time.Now()
+})
+
+func nowSeries(t ...time.Time) nower {
+	return nowFunc(func() time.Time {
+		defer func() {
+			t = t[1:]
+		}()
+
+		return t[0]
+	})
+}
+
+// InstrumentHandler wraps the given HTTP handler for instrumentation. It
+// registers four metric collectors (if not already done) and reports HTTP
+// metrics to the (newly or already) registered collectors: http_requests_total
+// (CounterVec), http_request_duration_microseconds (Summary),
+// http_request_size_bytes (Summary), http_response_size_bytes (Summary). Each
+// has a constant label named "handler" with the provided handlerName as
+// value. http_requests_total is a metric vector partitioned by HTTP method
+// (label name "method") and HTTP status code (label name "code").
+//
+// Deprecated: InstrumentHandler has several issues. Use the tooling provided in
+// package promhttp instead. The issues are the following:
+//
+// - It uses Summaries rather than Histograms. Summaries are not useful if
+// aggregation across multiple instances is required.
+//
+// - It uses microseconds as unit, which is deprecated and should be replaced by
+// seconds.
+//
+// - The size of the request is calculated in a separate goroutine. Since this
+// calculator requires access to the request header, it creates a race with
+// any writes to the header performed during request handling.
+// httputil.ReverseProxy is a prominent example for a handler
+// performing such writes.
+//
+// - It has additional issues with HTTP/2, cf.
+// https://github.com/prometheus/client_golang/issues/272.
+func InstrumentHandler(handlerName string, handler http.Handler) http.HandlerFunc {
+	return InstrumentHandlerFunc(handlerName, handler.ServeHTTP)
+}
+
+// InstrumentHandlerFunc wraps the given function for instrumentation. It
+// otherwise works in the same way as InstrumentHandler (and shares the same
+// issues).
+//
+// Deprecated: InstrumentHandlerFunc is deprecated for the same reasons as
+// InstrumentHandler is. Use the tooling provided in package promhttp instead.
+func InstrumentHandlerFunc(handlerName string, handlerFunc func(http.ResponseWriter, *http.Request)) http.HandlerFunc {
+	return InstrumentHandlerFuncWithOpts(
+		SummaryOpts{
+			Subsystem:   "http",
+			ConstLabels: Labels{"handler": handlerName},
+			Objectives:  map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001},
+		},
+		handlerFunc,
+	)
+}
+
+// InstrumentHandlerWithOpts works like InstrumentHandler (and shares the same
+// issues) but provides more flexibility (at the cost of a more complex call
+// syntax). As InstrumentHandler, this function registers four metric
+// collectors, but it uses the provided SummaryOpts to create them. However, the
+// fields "Name" and "Help" in the SummaryOpts are ignored. "Name" is replaced
+// by "requests_total", "request_duration_microseconds", "request_size_bytes",
+// and "response_size_bytes", respectively. "Help" is replaced by an appropriate
+// help string. The names of the variable labels of the http_requests_total
+// CounterVec are "method" (get, post, etc.), and "code" (HTTP status code).
+//
+// If InstrumentHandlerWithOpts is called as follows, it mimics exactly the
+// behavior of InstrumentHandler:
+//
+//     prometheus.InstrumentHandlerWithOpts(
+//         prometheus.SummaryOpts{
+//              Subsystem:   "http",
+//              ConstLabels: prometheus.Labels{"handler": handlerName},
+//         },
+//         handler,
+//     )
+//
+// Technical detail: "requests_total" is a CounterVec, not a SummaryVec, so it
+// cannot use SummaryOpts. Instead, a CounterOpts struct is created internally,
+// and all its fields are set to the equally named fields in the provided
+// SummaryOpts.
+//
+// Deprecated: InstrumentHandlerWithOpts is deprecated for the same reasons as
+// InstrumentHandler is. Use the tooling provided in package promhttp instead.
+func InstrumentHandlerWithOpts(opts SummaryOpts, handler http.Handler) http.HandlerFunc {
+	return InstrumentHandlerFuncWithOpts(opts, handler.ServeHTTP)
+}
+
+// InstrumentHandlerFuncWithOpts works like InstrumentHandlerFunc (and shares
+// the same issues) but provides more flexibility (at the cost of a more complex
+// call syntax). See InstrumentHandlerWithOpts for details how the provided
+// SummaryOpts are used.
+//
+// Deprecated: InstrumentHandlerFuncWithOpts is deprecated for the same reasons
+// as InstrumentHandler is. Use the tooling provided in package promhttp instead.
+func InstrumentHandlerFuncWithOpts(opts SummaryOpts, handlerFunc func(http.ResponseWriter, *http.Request)) http.HandlerFunc {
+	reqCnt := NewCounterVec(
+		CounterOpts{
+			Namespace:   opts.Namespace,
+			Subsystem:   opts.Subsystem,
+			Name:        "requests_total",
+			Help:        "Total number of HTTP requests made.",
+			ConstLabels: opts.ConstLabels,
+		},
+		instLabels,
+	)
+	if err := Register(reqCnt); err != nil {
+		if are, ok := err.(AlreadyRegisteredError); ok {
+			reqCnt = are.ExistingCollector.(*CounterVec)
+		} else {
+			panic(err)
+		}
+	}
+
+	opts.Name = "request_duration_microseconds"
+	opts.Help = "The HTTP request latencies in microseconds."
+	reqDur := NewSummary(opts)
+	if err := Register(reqDur); err != nil {
+		if are, ok := err.(AlreadyRegisteredError); ok {
+			reqDur = are.ExistingCollector.(Summary)
+		} else {
+			panic(err)
+		}
+	}
+
+	opts.Name = "request_size_bytes"
+	opts.Help = "The HTTP request sizes in bytes."
+	reqSz := NewSummary(opts)
+	if err := Register(reqSz); err != nil {
+		if are, ok := err.(AlreadyRegisteredError); ok {
+			reqSz = are.ExistingCollector.(Summary)
+		} else {
+			panic(err)
+		}
+	}
+
+	opts.Name = "response_size_bytes"
+	opts.Help = "The HTTP response sizes in bytes."
+	resSz := NewSummary(opts)
+	if err := Register(resSz); err != nil {
+		if are, ok := err.(AlreadyRegisteredError); ok {
+			resSz = are.ExistingCollector.(Summary)
+		} else {
+			panic(err)
+		}
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		now := time.Now()
+
+		delegate := &responseWriterDelegator{ResponseWriter: w}
+		out := computeApproximateRequestSize(r)
+
+		_, cn := w.(http.CloseNotifier)
+		_, fl := w.(http.Flusher)
+		_, hj := w.(http.Hijacker)
+		_, rf := w.(io.ReaderFrom)
+		var rw http.ResponseWriter
+		if cn && fl && hj && rf {
+			rw = &fancyResponseWriterDelegator{delegate}
+		} else {
+			rw = delegate
+		}
+		handlerFunc(rw, r)
+
+		elapsed := float64(time.Since(now)) / float64(time.Microsecond)
+
+		method := sanitizeMethod(r.Method)
+		code := sanitizeCode(delegate.status)
+		reqCnt.WithLabelValues(method, code).Inc()
+		reqDur.Observe(elapsed)
+		resSz.Observe(float64(delegate.written))
+		reqSz.Observe(float64(<-out))
+	})
+}
+
+func computeApproximateRequestSize(r *http.Request) <-chan int {
+	// Get URL length in current go routine for avoiding a race condition.
+	// HandlerFunc that runs in parallel may modify the URL.
+	s := 0
+	if r.URL != nil {
+		s += len(r.URL.String())
+	}
+
+	out := make(chan int, 1)
+
+	go func() {
+		s += len(r.Method)
+		s += len(r.Proto)
+		for name, values := range r.Header {
+			s += len(name)
+			for _, value := range values {
+				s += len(value)
+			}
+		}
+		s += len(r.Host)
+
+		// N.B. r.Form and r.MultipartForm are assumed to be included in r.URL.
+
+		if r.ContentLength != -1 {
+			s += int(r.ContentLength)
+		}
+		out <- s
+		close(out)
+	}()
+
+	return out
+}
+
+type responseWriterDelegator struct {
+	http.ResponseWriter
+
+	handler, method string
+	status          int
+	written         int64
+	wroteHeader     bool
+}
+
+func (r *responseWriterDelegator) WriteHeader(code int) {
+	r.status = code
+	r.wroteHeader = true
+	r.ResponseWriter.WriteHeader(code)
+}
+
+func (r *responseWriterDelegator) Write(b []byte) (int, error) {
+	if !r.wroteHeader {
+		r.WriteHeader(http.StatusOK)
+	}
+	n, err := r.ResponseWriter.Write(b)
+	r.written += int64(n)
+	return n, err
+}
+
+type fancyResponseWriterDelegator struct {
+	*responseWriterDelegator
+}
+
+func (f *fancyResponseWriterDelegator) CloseNotify() <-chan bool {
+	return f.ResponseWriter.(http.CloseNotifier).CloseNotify()
+}
+
+func (f *fancyResponseWriterDelegator) Flush() {
+	f.ResponseWriter.(http.Flusher).Flush()
+}
+
+func (f *fancyResponseWriterDelegator) Hijack() (net.Conn, *bufio.ReadWriter, error) {
+	return f.ResponseWriter.(http.Hijacker).Hijack()
+}
+
+func (f *fancyResponseWriterDelegator) ReadFrom(r io.Reader) (int64, error) {
+	if !f.wroteHeader {
+		f.WriteHeader(http.StatusOK)
+	}
+	n, err := f.ResponseWriter.(io.ReaderFrom).ReadFrom(r)
+	f.written += n
+	return n, err
+}
+
+func sanitizeMethod(m string) string {
+	switch m {
+	case "GET", "get":
+		return "get"
+	case "PUT", "put":
+		return "put"
+	case "HEAD", "head":
+		return "head"
+	case "POST", "post":
+		return "post"
+	case "DELETE", "delete":
+		return "delete"
+	case "CONNECT", "connect":
+		return "connect"
+	case "OPTIONS", "options":
+		return "options"
+	case "NOTIFY", "notify":
+		return "notify"
+	default:
+		return strings.ToLower(m)
+	}
+}
+
+func sanitizeCode(s int) string {
+	switch s {
+	case 100:
+		return "100"
+	case 101:
+		return "101"
+
+	case 200:
+		return "200"
+	case 201:
+		return "201"
+	case 202:
+		return "202"
+	case 203:
+		return "203"
+	case 204:
+		return "204"
+	case 205:
+		return "205"
+	case 206:
+		return "206"
+
+	case 300:
+		return "300"
+	case 301:
+		return "301"
+	case 302:
+		return "302"
+	case 304:
+		return "304"
+	case 305:
+		return "305"
+	case 307:
+		return "307"
+
+	case 400:
+		return "400"
+	case 401:
+		return "401"
+	case 402:
+		return "402"
+	case 403:
+		return "403"
+	case 404:
+		return "404"
+	case 405:
+		return "405"
+	case 406:
+		return "406"
+	case 407:
+		return "407"
+	case 408:
+		return "408"
+	case 409:
+		return "409"
+	case 410:
+		return "410"
+	case 411:
+		return "411"
+	case 412:
+		return "412"
+	case 413:
+		return "413"
+	case 414:
+		return "414"
+	case 415:
+		return "415"
+	case 416:
+		return "416"
+	case 417:
+		return "417"
+	case 418:
+		return "418"
+
+	case 500:
+		return "500"
+	case 501:
+		return "501"
+	case 502:
+		return "502"
+	case 503:
+		return "503"
+	case 504:
+		return "504"
+	case 505:
+		return "505"
+
+	case 428:
+		return "428"
+	case 429:
+		return "429"
+	case 431:
+		return "431"
+	case 511:
+		return "511"
+
+	default:
+		return strconv.Itoa(s)
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/labels.go b/vendor/github.com/prometheus/client_golang/prometheus/labels.go
new file mode 100644
index 0000000000..2502e37348
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/labels.go
@@ -0,0 +1,57 @@
+package prometheus
+
+import (
+	"errors"
+	"fmt"
+	"strings"
+	"unicode/utf8"
+
+	"github.com/prometheus/common/model"
+)
+
+// Labels represents a collection of label name -> value mappings. This type is
+// commonly used with the With(Labels) and GetMetricWith(Labels) methods of
+// metric vector Collectors, e.g.:
+//     myVec.With(Labels{"code": "404", "method": "GET"}).Add(42)
+//
+// The other use-case is the specification of constant label pairs in Opts or to
+// create a Desc.
+type Labels map[string]string
+
+// reservedLabelPrefix is a prefix which is not legal in user-supplied
+// label names.
+const reservedLabelPrefix = "__"
+
+var errInconsistentCardinality = errors.New("inconsistent label cardinality")
+
+func validateValuesInLabels(labels Labels, expectedNumberOfValues int) error {
+	if len(labels) != expectedNumberOfValues {
+		return errInconsistentCardinality
+	}
+
+	for name, val := range labels {
+		if !utf8.ValidString(val) {
+			return fmt.Errorf("label %s: value %q is not valid UTF-8", name, val)
+		}
+	}
+
+	return nil
+}
+
+func validateLabelValues(vals []string, expectedNumberOfValues int) error {
+	if len(vals) != expectedNumberOfValues {
+		return errInconsistentCardinality
+	}
+
+	for _, val := range vals {
+		if !utf8.ValidString(val) {
+			return fmt.Errorf("label value %q is not valid UTF-8", val)
+		}
+	}
+
+	return nil
+}
+
+func checkLabelName(l string) bool {
+	return model.LabelName(l).IsValid() && !strings.HasPrefix(l, reservedLabelPrefix)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/metric.go b/vendor/github.com/prometheus/client_golang/prometheus/metric.go
new file mode 100644
index 0000000000..6213ee8127
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/metric.go
@@ -0,0 +1,158 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"strings"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+const separatorByte byte = 255
+
+// A Metric models a single sample value with its meta data being exported to
+// Prometheus. Implementations of Metric in this package are Gauge, Counter,
+// Histogram, Summary, and Untyped.
+type Metric interface {
+	// Desc returns the descriptor for the Metric. This method idempotently
+	// returns the same descriptor throughout the lifetime of the
+	// Metric. The returned descriptor is immutable by contract. A Metric
+	// unable to describe itself must return an invalid descriptor (created
+	// with NewInvalidDesc).
+	Desc() *Desc
+	// Write encodes the Metric into a "Metric" Protocol Buffer data
+	// transmission object.
+	//
+	// Metric implementations must observe concurrency safety as reads of
+	// this metric may occur at any time, and any blocking occurs at the
+	// expense of total performance of rendering all registered
+	// metrics. Ideally, Metric implementations should support concurrent
+	// readers.
+	//
+	// While populating dto.Metric, it is the responsibility of the
+	// implementation to ensure validity of the Metric protobuf (like valid
+	// UTF-8 strings or syntactically valid metric and label names). It is
+	// recommended to sort labels lexicographically. (Implementers may find
+	// LabelPairSorter useful for that.) Callers of Write should still make
+	// sure of sorting if they depend on it.
+	Write(*dto.Metric) error
+	// TODO(beorn7): The original rationale of passing in a pre-allocated
+	// dto.Metric protobuf to save allocations has disappeared. The
+	// signature of this method should be changed to "Write() (*dto.Metric,
+	// error)".
+}
+
+// Opts bundles the options for creating most Metric types. Each metric
+// implementation XXX has its own XXXOpts type, but in most cases, it is just be
+// an alias of this type (which might change when the requirement arises.)
+//
+// It is mandatory to set Name and Help to a non-empty string. All other fields
+// are optional and can safely be left at their zero value.
+type Opts struct {
+	// Namespace, Subsystem, and Name are components of the fully-qualified
+	// name of the Metric (created by joining these components with
+	// "_"). Only Name is mandatory, the others merely help structuring the
+	// name. Note that the fully-qualified name of the metric must be a
+	// valid Prometheus metric name.
+	Namespace string
+	Subsystem string
+	Name      string
+
+	// Help provides information about this metric. Mandatory!
+	//
+	// Metrics with the same fully-qualified name must have the same Help
+	// string.
+	Help string
+
+	// ConstLabels are used to attach fixed labels to this metric. Metrics
+	// with the same fully-qualified name must have the same label names in
+	// their ConstLabels.
+	//
+	// ConstLabels are only used rarely. In particular, do not use them to
+	// attach the same labels to all your metrics. Those use cases are
+	// better covered by target labels set by the scraping Prometheus
+	// server, or by one specific metric (e.g. a build_info or a
+	// machine_role metric). See also
+	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
+	ConstLabels Labels
+}
+
+// BuildFQName joins the given three name components by "_". Empty name
+// components are ignored. If the name parameter itself is empty, an empty
+// string is returned, no matter what. Metric implementations included in this
+// library use this function internally to generate the fully-qualified metric
+// name from the name component in their Opts. Users of the library will only
+// need this function if they implement their own Metric or instantiate a Desc
+// (with NewDesc) directly.
+func BuildFQName(namespace, subsystem, name string) string {
+	if name == "" {
+		return ""
+	}
+	switch {
+	case namespace != "" && subsystem != "":
+		return strings.Join([]string{namespace, subsystem, name}, "_")
+	case namespace != "":
+		return strings.Join([]string{namespace, name}, "_")
+	case subsystem != "":
+		return strings.Join([]string{subsystem, name}, "_")
+	}
+	return name
+}
+
+// LabelPairSorter implements sort.Interface. It is used to sort a slice of
+// dto.LabelPair pointers. This is useful for implementing the Write method of
+// custom metrics.
+type LabelPairSorter []*dto.LabelPair
+
+func (s LabelPairSorter) Len() int {
+	return len(s)
+}
+
+func (s LabelPairSorter) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s LabelPairSorter) Less(i, j int) bool {
+	return s[i].GetName() < s[j].GetName()
+}
+
+type hashSorter []uint64
+
+func (s hashSorter) Len() int {
+	return len(s)
+}
+
+func (s hashSorter) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s hashSorter) Less(i, j int) bool {
+	return s[i] < s[j]
+}
+
+type invalidMetric struct {
+	desc *Desc
+	err  error
+}
+
+// NewInvalidMetric returns a metric whose Write method always returns the
+// provided error. It is useful if a Collector finds itself unable to collect
+// a metric and wishes to report an error to the registry.
+func NewInvalidMetric(desc *Desc, err error) Metric {
+	return &invalidMetric{desc, err}
+}
+
+func (m *invalidMetric) Desc() *Desc { return m.desc }
+
+func (m *invalidMetric) Write(*dto.Metric) error { return m.err }
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/observer.go b/vendor/github.com/prometheus/client_golang/prometheus/observer.go
new file mode 100644
index 0000000000..5806cd09e3
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/observer.go
@@ -0,0 +1,52 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+// Observer is the interface that wraps the Observe method, which is used by
+// Histogram and Summary to add observations.
+type Observer interface {
+	Observe(float64)
+}
+
+// The ObserverFunc type is an adapter to allow the use of ordinary
+// functions as Observers. If f is a function with the appropriate
+// signature, ObserverFunc(f) is an Observer that calls f.
+//
+// This adapter is usually used in connection with the Timer type, and there are
+// two general use cases:
+//
+// The most common one is to use a Gauge as the Observer for a Timer.
+// See the "Gauge" Timer example.
+//
+// The more advanced use case is to create a function that dynamically decides
+// which Observer to use for observing the duration. See the "Complex" Timer
+// example.
+type ObserverFunc func(float64)
+
+// Observe calls f(value). It implements Observer.
+func (f ObserverFunc) Observe(value float64) {
+	f(value)
+}
+
+// ObserverVec is an interface implemented by `HistogramVec` and `SummaryVec`.
+type ObserverVec interface {
+	GetMetricWith(Labels) (Observer, error)
+	GetMetricWithLabelValues(lvs ...string) (Observer, error)
+	With(Labels) Observer
+	WithLabelValues(...string) Observer
+	CurryWith(Labels) (ObserverVec, error)
+	MustCurryWith(Labels) ObserverVec
+
+	Collector
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go b/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
new file mode 100644
index 0000000000..32ac74a7f7
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/process_collector.go
@@ -0,0 +1,140 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import "github.com/prometheus/procfs"
+
+type processCollector struct {
+	pid             int
+	collectFn       func(chan<- Metric)
+	pidFn           func() (int, error)
+	cpuTotal        *Desc
+	openFDs, maxFDs *Desc
+	vsize, rss      *Desc
+	startTime       *Desc
+}
+
+// NewProcessCollector returns a collector which exports the current state of
+// process metrics including CPU, memory and file descriptor usage as well as
+// the process start time for the given process ID under the given namespace.
+//
+// Currently, the collector depends on a Linux-style proc filesystem and
+// therefore only exports metrics for Linux.
+func NewProcessCollector(pid int, namespace string) Collector {
+	return NewProcessCollectorPIDFn(
+		func() (int, error) { return pid, nil },
+		namespace,
+	)
+}
+
+// NewProcessCollectorPIDFn works like NewProcessCollector but the process ID is
+// determined on each collect anew by calling the given pidFn function.
+func NewProcessCollectorPIDFn(
+	pidFn func() (int, error),
+	namespace string,
+) Collector {
+	ns := ""
+	if len(namespace) > 0 {
+		ns = namespace + "_"
+	}
+
+	c := processCollector{
+		pidFn:     pidFn,
+		collectFn: func(chan<- Metric) {},
+
+		cpuTotal: NewDesc(
+			ns+"process_cpu_seconds_total",
+			"Total user and system CPU time spent in seconds.",
+			nil, nil,
+		),
+		openFDs: NewDesc(
+			ns+"process_open_fds",
+			"Number of open file descriptors.",
+			nil, nil,
+		),
+		maxFDs: NewDesc(
+			ns+"process_max_fds",
+			"Maximum number of open file descriptors.",
+			nil, nil,
+		),
+		vsize: NewDesc(
+			ns+"process_virtual_memory_bytes",
+			"Virtual memory size in bytes.",
+			nil, nil,
+		),
+		rss: NewDesc(
+			ns+"process_resident_memory_bytes",
+			"Resident memory size in bytes.",
+			nil, nil,
+		),
+		startTime: NewDesc(
+			ns+"process_start_time_seconds",
+			"Start time of the process since unix epoch in seconds.",
+			nil, nil,
+		),
+	}
+
+	// Set up process metric collection if supported by the runtime.
+	if _, err := procfs.NewStat(); err == nil {
+		c.collectFn = c.processCollect
+	}
+
+	return &c
+}
+
+// Describe returns all descriptions of the collector.
+func (c *processCollector) Describe(ch chan<- *Desc) {
+	ch <- c.cpuTotal
+	ch <- c.openFDs
+	ch <- c.maxFDs
+	ch <- c.vsize
+	ch <- c.rss
+	ch <- c.startTime
+}
+
+// Collect returns the current state of all metrics of the collector.
+func (c *processCollector) Collect(ch chan<- Metric) {
+	c.collectFn(ch)
+}
+
+// TODO(ts): Bring back error reporting by reverting 7faf9e7 as soon as the
+// client allows users to configure the error behavior.
+func (c *processCollector) processCollect(ch chan<- Metric) {
+	pid, err := c.pidFn()
+	if err != nil {
+		return
+	}
+
+	p, err := procfs.NewProc(pid)
+	if err != nil {
+		return
+	}
+
+	if stat, err := p.NewStat(); err == nil {
+		ch <- MustNewConstMetric(c.cpuTotal, CounterValue, stat.CPUTime())
+		ch <- MustNewConstMetric(c.vsize, GaugeValue, float64(stat.VirtualMemory()))
+		ch <- MustNewConstMetric(c.rss, GaugeValue, float64(stat.ResidentMemory()))
+		if startTime, err := stat.StartTime(); err == nil {
+			ch <- MustNewConstMetric(c.startTime, GaugeValue, startTime)
+		}
+	}
+
+	if fds, err := p.FileDescriptorsLen(); err == nil {
+		ch <- MustNewConstMetric(c.openFDs, GaugeValue, float64(fds))
+	}
+
+	if limits, err := p.NewLimits(); err == nil {
+		ch <- MustNewConstMetric(c.maxFDs, GaugeValue, float64(limits.OpenFiles))
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
new file mode 100644
index 0000000000..9c1c66dcc7
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator.go
@@ -0,0 +1,199 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package promhttp
+
+import (
+	"bufio"
+	"io"
+	"net"
+	"net/http"
+)
+
+const (
+	closeNotifier = 1 << iota
+	flusher
+	hijacker
+	readerFrom
+	pusher
+)
+
+type delegator interface {
+	http.ResponseWriter
+
+	Status() int
+	Written() int64
+}
+
+type responseWriterDelegator struct {
+	http.ResponseWriter
+
+	handler, method    string
+	status             int
+	written            int64
+	wroteHeader        bool
+	observeWriteHeader func(int)
+}
+
+func (r *responseWriterDelegator) Status() int {
+	return r.status
+}
+
+func (r *responseWriterDelegator) Written() int64 {
+	return r.written
+}
+
+func (r *responseWriterDelegator) WriteHeader(code int) {
+	r.status = code
+	r.wroteHeader = true
+	r.ResponseWriter.WriteHeader(code)
+	if r.observeWriteHeader != nil {
+		r.observeWriteHeader(code)
+	}
+}
+
+func (r *responseWriterDelegator) Write(b []byte) (int, error) {
+	if !r.wroteHeader {
+		r.WriteHeader(http.StatusOK)
+	}
+	n, err := r.ResponseWriter.Write(b)
+	r.written += int64(n)
+	return n, err
+}
+
+type closeNotifierDelegator struct{ *responseWriterDelegator }
+type flusherDelegator struct{ *responseWriterDelegator }
+type hijackerDelegator struct{ *responseWriterDelegator }
+type readerFromDelegator struct{ *responseWriterDelegator }
+
+func (d *closeNotifierDelegator) CloseNotify() <-chan bool {
+	return d.ResponseWriter.(http.CloseNotifier).CloseNotify()
+}
+func (d *flusherDelegator) Flush() {
+	d.ResponseWriter.(http.Flusher).Flush()
+}
+func (d *hijackerDelegator) Hijack() (net.Conn, *bufio.ReadWriter, error) {
+	return d.ResponseWriter.(http.Hijacker).Hijack()
+}
+func (d *readerFromDelegator) ReadFrom(re io.Reader) (int64, error) {
+	if !d.wroteHeader {
+		d.WriteHeader(http.StatusOK)
+	}
+	n, err := d.ResponseWriter.(io.ReaderFrom).ReadFrom(re)
+	d.written += n
+	return n, err
+}
+
+var pickDelegator = make([]func(*responseWriterDelegator) delegator, 32)
+
+func init() {
+	// TODO(beorn7): Code generation would help here.
+	pickDelegator[0] = func(d *responseWriterDelegator) delegator { // 0
+		return d
+	}
+	pickDelegator[closeNotifier] = func(d *responseWriterDelegator) delegator { // 1
+		return &closeNotifierDelegator{d}
+	}
+	pickDelegator[flusher] = func(d *responseWriterDelegator) delegator { // 2
+		return &flusherDelegator{d}
+	}
+	pickDelegator[flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 3
+		return struct {
+			*responseWriterDelegator
+			http.Flusher
+			http.CloseNotifier
+		}{d, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[hijacker] = func(d *responseWriterDelegator) delegator { // 4
+		return &hijackerDelegator{d}
+	}
+	pickDelegator[hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 5
+		return struct {
+			*responseWriterDelegator
+			http.Hijacker
+			http.CloseNotifier
+		}{d, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 6
+		return struct {
+			*responseWriterDelegator
+			http.Hijacker
+			http.Flusher
+		}{d, &hijackerDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 7
+		return struct {
+			*responseWriterDelegator
+			http.Hijacker
+			http.Flusher
+			http.CloseNotifier
+		}{d, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[readerFrom] = func(d *responseWriterDelegator) delegator { // 8
+		return readerFromDelegator{d}
+	}
+	pickDelegator[readerFrom+closeNotifier] = func(d *responseWriterDelegator) delegator { // 9
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.CloseNotifier
+		}{d, &readerFromDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[readerFrom+flusher] = func(d *responseWriterDelegator) delegator { // 10
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Flusher
+		}{d, &readerFromDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[readerFrom+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 11
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Flusher
+			http.CloseNotifier
+		}{d, &readerFromDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[readerFrom+hijacker] = func(d *responseWriterDelegator) delegator { // 12
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Hijacker
+		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}}
+	}
+	pickDelegator[readerFrom+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 13
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Hijacker
+			http.CloseNotifier
+		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[readerFrom+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 14
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Hijacker
+			http.Flusher
+		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[readerFrom+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 15
+		return struct {
+			*responseWriterDelegator
+			io.ReaderFrom
+			http.Hijacker
+			http.Flusher
+			http.CloseNotifier
+		}{d, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
new file mode 100644
index 0000000000..75a905e2f4
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_1_8.go
@@ -0,0 +1,181 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build go1.8
+
+package promhttp
+
+import (
+	"io"
+	"net/http"
+)
+
+type pusherDelegator struct{ *responseWriterDelegator }
+
+func (d *pusherDelegator) Push(target string, opts *http.PushOptions) error {
+	return d.ResponseWriter.(http.Pusher).Push(target, opts)
+}
+
+func init() {
+	pickDelegator[pusher] = func(d *responseWriterDelegator) delegator { // 16
+		return &pusherDelegator{d}
+	}
+	pickDelegator[pusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 17
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+flusher] = func(d *responseWriterDelegator) delegator { // 18
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Flusher
+		}{d, &pusherDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[pusher+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 19
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Flusher
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+hijacker] = func(d *responseWriterDelegator) delegator { // 20
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Hijacker
+		}{d, &pusherDelegator{d}, &hijackerDelegator{d}}
+	}
+	pickDelegator[pusher+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 21
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Hijacker
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 22
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Hijacker
+			http.Flusher
+		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[pusher+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { //23
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			http.Hijacker
+			http.Flusher
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom] = func(d *responseWriterDelegator) delegator { // 24
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+closeNotifier] = func(d *responseWriterDelegator) delegator { // 25
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+flusher] = func(d *responseWriterDelegator) delegator { // 26
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Flusher
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 27
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Flusher
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+hijacker] = func(d *responseWriterDelegator) delegator { // 28
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Hijacker
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+hijacker+closeNotifier] = func(d *responseWriterDelegator) delegator { // 29
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Hijacker
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &closeNotifierDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+hijacker+flusher] = func(d *responseWriterDelegator) delegator { // 30
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Hijacker
+			http.Flusher
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}}
+	}
+	pickDelegator[pusher+readerFrom+hijacker+flusher+closeNotifier] = func(d *responseWriterDelegator) delegator { // 31
+		return struct {
+			*responseWriterDelegator
+			http.Pusher
+			io.ReaderFrom
+			http.Hijacker
+			http.Flusher
+			http.CloseNotifier
+		}{d, &pusherDelegator{d}, &readerFromDelegator{d}, &hijackerDelegator{d}, &flusherDelegator{d}, &closeNotifierDelegator{d}}
+	}
+}
+
+func newDelegator(w http.ResponseWriter, observeWriteHeaderFunc func(int)) delegator {
+	d := &responseWriterDelegator{
+		ResponseWriter:     w,
+		observeWriteHeader: observeWriteHeaderFunc,
+	}
+
+	id := 0
+	if _, ok := w.(http.CloseNotifier); ok {
+		id += closeNotifier
+	}
+	if _, ok := w.(http.Flusher); ok {
+		id += flusher
+	}
+	if _, ok := w.(http.Hijacker); ok {
+		id += hijacker
+	}
+	if _, ok := w.(io.ReaderFrom); ok {
+		id += readerFrom
+	}
+	if _, ok := w.(http.Pusher); ok {
+		id += pusher
+	}
+
+	return pickDelegator[id](d)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
new file mode 100644
index 0000000000..8bb9b8b68f
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/delegator_pre_1_8.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build !go1.8
+
+package promhttp
+
+import (
+	"io"
+	"net/http"
+)
+
+func newDelegator(w http.ResponseWriter, observeWriteHeaderFunc func(int)) delegator {
+	d := &responseWriterDelegator{
+		ResponseWriter:     w,
+		observeWriteHeader: observeWriteHeaderFunc,
+	}
+
+	id := 0
+	if _, ok := w.(http.CloseNotifier); ok {
+		id += closeNotifier
+	}
+	if _, ok := w.(http.Flusher); ok {
+		id += flusher
+	}
+	if _, ok := w.(http.Hijacker); ok {
+		id += hijacker
+	}
+	if _, ok := w.(io.ReaderFrom); ok {
+		id += readerFrom
+	}
+
+	return pickDelegator[id](d)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
new file mode 100644
index 0000000000..714a7f98a7
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/http.go
@@ -0,0 +1,311 @@
+// Copyright 2016 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package promhttp provides tooling around HTTP servers and clients.
+//
+// First, the package allows the creation of http.Handler instances to expose
+// Prometheus metrics via HTTP. promhttp.Handler acts on the
+// prometheus.DefaultGatherer. With HandlerFor, you can create a handler for a
+// custom registry or anything that implements the Gatherer interface. It also
+// allows the creation of handlers that act differently on errors or allow to
+// log errors.
+//
+// Second, the package provides tooling to instrument instances of http.Handler
+// via middleware. Middleware wrappers follow the naming scheme
+// InstrumentHandlerX, where X describes the intended use of the middleware.
+// See each function's doc comment for specific details.
+//
+// Finally, the package allows for an http.RoundTripper to be instrumented via
+// middleware. Middleware wrappers follow the naming scheme
+// InstrumentRoundTripperX, where X describes the intended use of the
+// middleware. See each function's doc comment for specific details.
+package promhttp
+
+import (
+	"bytes"
+	"compress/gzip"
+	"fmt"
+	"io"
+	"net/http"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/prometheus/common/expfmt"
+
+	"github.com/prometheus/client_golang/prometheus"
+)
+
+const (
+	contentTypeHeader     = "Content-Type"
+	contentLengthHeader   = "Content-Length"
+	contentEncodingHeader = "Content-Encoding"
+	acceptEncodingHeader  = "Accept-Encoding"
+)
+
+var bufPool sync.Pool
+
+func getBuf() *bytes.Buffer {
+	buf := bufPool.Get()
+	if buf == nil {
+		return &bytes.Buffer{}
+	}
+	return buf.(*bytes.Buffer)
+}
+
+func giveBuf(buf *bytes.Buffer) {
+	buf.Reset()
+	bufPool.Put(buf)
+}
+
+// Handler returns an http.Handler for the prometheus.DefaultGatherer, using
+// default HandlerOpts, i.e. it reports the first error as an HTTP error, it has
+// no error logging, and it applies compression if requested by the client.
+//
+// The returned http.Handler is already instrumented using the
+// InstrumentMetricHandler function and the prometheus.DefaultRegisterer. If you
+// create multiple http.Handlers by separate calls of the Handler function, the
+// metrics used for instrumentation will be shared between them, providing
+// global scrape counts.
+//
+// This function is meant to cover the bulk of basic use cases. If you are doing
+// anything that requires more customization (including using a non-default
+// Gatherer, different instrumentation, and non-default HandlerOpts), use the
+// HandlerFor function. See there for details.
+func Handler() http.Handler {
+	return InstrumentMetricHandler(
+		prometheus.DefaultRegisterer, HandlerFor(prometheus.DefaultGatherer, HandlerOpts{}),
+	)
+}
+
+// HandlerFor returns an uninstrumented http.Handler for the provided
+// Gatherer. The behavior of the Handler is defined by the provided
+// HandlerOpts. Thus, HandlerFor is useful to create http.Handlers for custom
+// Gatherers, with non-default HandlerOpts, and/or with custom (or no)
+// instrumentation. Use the InstrumentMetricHandler function to apply the same
+// kind of instrumentation as it is used by the Handler function.
+func HandlerFor(reg prometheus.Gatherer, opts HandlerOpts) http.Handler {
+	var inFlightSem chan struct{}
+	if opts.MaxRequestsInFlight > 0 {
+		inFlightSem = make(chan struct{}, opts.MaxRequestsInFlight)
+	}
+
+	h := http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
+		if inFlightSem != nil {
+			select {
+			case inFlightSem <- struct{}{}: // All good, carry on.
+				defer func() { <-inFlightSem }()
+			default:
+				http.Error(w, fmt.Sprintf(
+					"Limit of concurrent requests reached (%d), try again later.", opts.MaxRequestsInFlight,
+				), http.StatusServiceUnavailable)
+				return
+			}
+		}
+
+		mfs, err := reg.Gather()
+		if err != nil {
+			if opts.ErrorLog != nil {
+				opts.ErrorLog.Println("error gathering metrics:", err)
+			}
+			switch opts.ErrorHandling {
+			case PanicOnError:
+				panic(err)
+			case ContinueOnError:
+				if len(mfs) == 0 {
+					http.Error(w, "No metrics gathered, last error:\n\n"+err.Error(), http.StatusInternalServerError)
+					return
+				}
+			case HTTPErrorOnError:
+				http.Error(w, "An error has occurred during metrics gathering:\n\n"+err.Error(), http.StatusInternalServerError)
+				return
+			}
+		}
+
+		contentType := expfmt.Negotiate(req.Header)
+		buf := getBuf()
+		defer giveBuf(buf)
+		writer, encoding := decorateWriter(req, buf, opts.DisableCompression)
+		enc := expfmt.NewEncoder(writer, contentType)
+		var lastErr error
+		for _, mf := range mfs {
+			if err := enc.Encode(mf); err != nil {
+				lastErr = err
+				if opts.ErrorLog != nil {
+					opts.ErrorLog.Println("error encoding metric family:", err)
+				}
+				switch opts.ErrorHandling {
+				case PanicOnError:
+					panic(err)
+				case ContinueOnError:
+					// Handled later.
+				case HTTPErrorOnError:
+					http.Error(w, "An error has occurred during metrics encoding:\n\n"+err.Error(), http.StatusInternalServerError)
+					return
+				}
+			}
+		}
+		if closer, ok := writer.(io.Closer); ok {
+			closer.Close()
+		}
+		if lastErr != nil && buf.Len() == 0 {
+			http.Error(w, "No metrics encoded, last error:\n\n"+lastErr.Error(), http.StatusInternalServerError)
+			return
+		}
+		header := w.Header()
+		header.Set(contentTypeHeader, string(contentType))
+		header.Set(contentLengthHeader, fmt.Sprint(buf.Len()))
+		if encoding != "" {
+			header.Set(contentEncodingHeader, encoding)
+		}
+		if _, err := w.Write(buf.Bytes()); err != nil && opts.ErrorLog != nil {
+			opts.ErrorLog.Println("error while sending encoded metrics:", err)
+		}
+		// TODO(beorn7): Consider streaming serving of metrics.
+	})
+
+	if opts.Timeout <= 0 {
+		return h
+	}
+	return http.TimeoutHandler(h, opts.Timeout, fmt.Sprintf(
+		"Exceeded configured timeout of %v.\n",
+		opts.Timeout,
+	))
+}
+
+// InstrumentMetricHandler is usually used with an http.Handler returned by the
+// HandlerFor function. It instruments the provided http.Handler with two
+// metrics: A counter vector "promhttp_metric_handler_requests_total" to count
+// scrapes partitioned by HTTP status code, and a gauge
+// "promhttp_metric_handler_requests_in_flight" to track the number of
+// simultaneous scrapes. This function idempotently registers collectors for
+// both metrics with the provided Registerer. It panics if the registration
+// fails. The provided metrics are useful to see how many scrapes hit the
+// monitored target (which could be from different Prometheus servers or other
+// scrapers), and how often they overlap (which would result in more than one
+// scrape in flight at the same time). Note that the scrapes-in-flight gauge
+// will contain the scrape by which it is exposed, while the scrape counter will
+// only get incremented after the scrape is complete (as only then the status
+// code is known). For tracking scrape durations, use the
+// "scrape_duration_seconds" gauge created by the Prometheus server upon each
+// scrape.
+func InstrumentMetricHandler(reg prometheus.Registerer, handler http.Handler) http.Handler {
+	cnt := prometheus.NewCounterVec(
+		prometheus.CounterOpts{
+			Name: "promhttp_metric_handler_requests_total",
+			Help: "Total number of scrapes by HTTP status code.",
+		},
+		[]string{"code"},
+	)
+	// Initialize the most likely HTTP status codes.
+	cnt.WithLabelValues("200")
+	cnt.WithLabelValues("500")
+	cnt.WithLabelValues("503")
+	if err := reg.Register(cnt); err != nil {
+		if are, ok := err.(prometheus.AlreadyRegisteredError); ok {
+			cnt = are.ExistingCollector.(*prometheus.CounterVec)
+		} else {
+			panic(err)
+		}
+	}
+
+	gge := prometheus.NewGauge(prometheus.GaugeOpts{
+		Name: "promhttp_metric_handler_requests_in_flight",
+		Help: "Current number of scrapes being served.",
+	})
+	if err := reg.Register(gge); err != nil {
+		if are, ok := err.(prometheus.AlreadyRegisteredError); ok {
+			gge = are.ExistingCollector.(prometheus.Gauge)
+		} else {
+			panic(err)
+		}
+	}
+
+	return InstrumentHandlerCounter(cnt, InstrumentHandlerInFlight(gge, handler))
+}
+
+// HandlerErrorHandling defines how a Handler serving metrics will handle
+// errors.
+type HandlerErrorHandling int
+
+// These constants cause handlers serving metrics to behave as described if
+// errors are encountered.
+const (
+	// Serve an HTTP status code 500 upon the first error
+	// encountered. Report the error message in the body.
+	HTTPErrorOnError HandlerErrorHandling = iota
+	// Ignore errors and try to serve as many metrics as possible.  However,
+	// if no metrics can be served, serve an HTTP status code 500 and the
+	// last error message in the body. Only use this in deliberate "best
+	// effort" metrics collection scenarios. It is recommended to at least
+	// log errors (by providing an ErrorLog in HandlerOpts) to not mask
+	// errors completely.
+	ContinueOnError
+	// Panic upon the first error encountered (useful for "crash only" apps).
+	PanicOnError
+)
+
+// Logger is the minimal interface HandlerOpts needs for logging. Note that
+// log.Logger from the standard library implements this interface, and it is
+// easy to implement by custom loggers, if they don't do so already anyway.
+type Logger interface {
+	Println(v ...interface{})
+}
+
+// HandlerOpts specifies options how to serve metrics via an http.Handler. The
+// zero value of HandlerOpts is a reasonable default.
+type HandlerOpts struct {
+	// ErrorLog specifies an optional logger for errors collecting and
+	// serving metrics. If nil, errors are not logged at all.
+	ErrorLog Logger
+	// ErrorHandling defines how errors are handled. Note that errors are
+	// logged regardless of the configured ErrorHandling provided ErrorLog
+	// is not nil.
+	ErrorHandling HandlerErrorHandling
+	// If DisableCompression is true, the handler will never compress the
+	// response, even if requested by the client.
+	DisableCompression bool
+	// The number of concurrent HTTP requests is limited to
+	// MaxRequestsInFlight. Additional requests are responded to with 503
+	// Service Unavailable and a suitable message in the body. If
+	// MaxRequestsInFlight is 0 or negative, no limit is applied.
+	MaxRequestsInFlight int
+	// If handling a request takes longer than Timeout, it is repsonded to
+	// with 503 ServiceUnavailable and a suitable Message. No timeout is
+	// applied if Timeout is 0 or negative. Note that with the current
+	// implementation, reaching the timeout simply ends the HTTP requests as
+	// described above (and even that only if sending of the body hasn't
+	// started yet), while the bulk work of gathering all the metrics keeps
+	// running in the background (with the eventual result to be thrown
+	// away). Until the implementation is improved, it is recommended to
+	// implement a separate timeout in potentially slow Collectors.
+	Timeout time.Duration
+}
+
+// decorateWriter wraps a writer to handle gzip compression if requested.  It
+// returns the decorated writer and the appropriate "Content-Encoding" header
+// (which is empty if no compression is enabled).
+func decorateWriter(request *http.Request, writer io.Writer, compressionDisabled bool) (io.Writer, string) {
+	if compressionDisabled {
+		return writer, ""
+	}
+	header := request.Header.Get(acceptEncodingHeader)
+	parts := strings.Split(header, ",")
+	for _, part := range parts {
+		part := strings.TrimSpace(part)
+		if part == "gzip" || strings.HasPrefix(part, "gzip;") {
+			return gzip.NewWriter(writer), "gzip"
+		}
+	}
+	return writer, ""
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
new file mode 100644
index 0000000000..86fd564470
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client.go
@@ -0,0 +1,97 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package promhttp
+
+import (
+	"net/http"
+	"time"
+
+	"github.com/prometheus/client_golang/prometheus"
+)
+
+// The RoundTripperFunc type is an adapter to allow the use of ordinary
+// functions as RoundTrippers. If f is a function with the appropriate
+// signature, RountTripperFunc(f) is a RoundTripper that calls f.
+type RoundTripperFunc func(req *http.Request) (*http.Response, error)
+
+// RoundTrip implements the RoundTripper interface.
+func (rt RoundTripperFunc) RoundTrip(r *http.Request) (*http.Response, error) {
+	return rt(r)
+}
+
+// InstrumentRoundTripperInFlight is a middleware that wraps the provided
+// http.RoundTripper. It sets the provided prometheus.Gauge to the number of
+// requests currently handled by the wrapped http.RoundTripper.
+//
+// See the example for ExampleInstrumentRoundTripperDuration for example usage.
+func InstrumentRoundTripperInFlight(gauge prometheus.Gauge, next http.RoundTripper) RoundTripperFunc {
+	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
+		gauge.Inc()
+		defer gauge.Dec()
+		return next.RoundTrip(r)
+	})
+}
+
+// InstrumentRoundTripperCounter is a middleware that wraps the provided
+// http.RoundTripper to observe the request result with the provided CounterVec.
+// The CounterVec must have zero, one, or two non-const non-curried labels. For
+// those, the only allowed label names are "code" and "method". The function
+// panics otherwise. Partitioning of the CounterVec happens by HTTP status code
+// and/or HTTP method if the respective instance label names are present in the
+// CounterVec. For unpartitioned counting, use a CounterVec with zero labels.
+//
+// If the wrapped RoundTripper panics or returns a non-nil error, the Counter
+// is not incremented.
+//
+// See the example for ExampleInstrumentRoundTripperDuration for example usage.
+func InstrumentRoundTripperCounter(counter *prometheus.CounterVec, next http.RoundTripper) RoundTripperFunc {
+	code, method := checkLabels(counter)
+
+	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
+		resp, err := next.RoundTrip(r)
+		if err == nil {
+			counter.With(labels(code, method, r.Method, resp.StatusCode)).Inc()
+		}
+		return resp, err
+	})
+}
+
+// InstrumentRoundTripperDuration is a middleware that wraps the provided
+// http.RoundTripper to observe the request duration with the provided
+// ObserverVec.  The ObserverVec must have zero, one, or two non-const
+// non-curried labels. For those, the only allowed label names are "code" and
+// "method". The function panics otherwise. The Observe method of the Observer
+// in the ObserverVec is called with the request duration in
+// seconds. Partitioning happens by HTTP status code and/or HTTP method if the
+// respective instance label names are present in the ObserverVec. For
+// unpartitioned observations, use an ObserverVec with zero labels. Note that
+// partitioning of Histograms is expensive and should be used judiciously.
+//
+// If the wrapped RoundTripper panics or returns a non-nil error, no values are
+// reported.
+//
+// Note that this method is only guaranteed to never observe negative durations
+// if used with Go1.9+.
+func InstrumentRoundTripperDuration(obs prometheus.ObserverVec, next http.RoundTripper) RoundTripperFunc {
+	code, method := checkLabels(obs)
+
+	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
+		start := time.Now()
+		resp, err := next.RoundTrip(r)
+		if err == nil {
+			obs.With(labels(code, method, r.Method, resp.StatusCode)).Observe(time.Since(start).Seconds())
+		}
+		return resp, err
+	})
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
new file mode 100644
index 0000000000..0bd80c3552
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_client_1_8.go
@@ -0,0 +1,144 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build go1.8
+
+package promhttp
+
+import (
+	"context"
+	"crypto/tls"
+	"net/http"
+	"net/http/httptrace"
+	"time"
+)
+
+// InstrumentTrace is used to offer flexibility in instrumenting the available
+// httptrace.ClientTrace hook functions. Each function is passed a float64
+// representing the time in seconds since the start of the http request. A user
+// may choose to use separately buckets Histograms, or implement custom
+// instance labels on a per function basis.
+type InstrumentTrace struct {
+	GotConn              func(float64)
+	PutIdleConn          func(float64)
+	GotFirstResponseByte func(float64)
+	Got100Continue       func(float64)
+	DNSStart             func(float64)
+	DNSDone              func(float64)
+	ConnectStart         func(float64)
+	ConnectDone          func(float64)
+	TLSHandshakeStart    func(float64)
+	TLSHandshakeDone     func(float64)
+	WroteHeaders         func(float64)
+	Wait100Continue      func(float64)
+	WroteRequest         func(float64)
+}
+
+// InstrumentRoundTripperTrace is a middleware that wraps the provided
+// RoundTripper and reports times to hook functions provided in the
+// InstrumentTrace struct. Hook functions that are not present in the provided
+// InstrumentTrace struct are ignored. Times reported to the hook functions are
+// time since the start of the request. Only with Go1.9+, those times are
+// guaranteed to never be negative. (Earlier Go versions are not using a
+// monotonic clock.) Note that partitioning of Histograms is expensive and
+// should be used judiciously.
+//
+// For hook functions that receive an error as an argument, no observations are
+// made in the event of a non-nil error value.
+//
+// See the example for ExampleInstrumentRoundTripperDuration for example usage.
+func InstrumentRoundTripperTrace(it *InstrumentTrace, next http.RoundTripper) RoundTripperFunc {
+	return RoundTripperFunc(func(r *http.Request) (*http.Response, error) {
+		start := time.Now()
+
+		trace := &httptrace.ClientTrace{
+			GotConn: func(_ httptrace.GotConnInfo) {
+				if it.GotConn != nil {
+					it.GotConn(time.Since(start).Seconds())
+				}
+			},
+			PutIdleConn: func(err error) {
+				if err != nil {
+					return
+				}
+				if it.PutIdleConn != nil {
+					it.PutIdleConn(time.Since(start).Seconds())
+				}
+			},
+			DNSStart: func(_ httptrace.DNSStartInfo) {
+				if it.DNSStart != nil {
+					it.DNSStart(time.Since(start).Seconds())
+				}
+			},
+			DNSDone: func(_ httptrace.DNSDoneInfo) {
+				if it.DNSStart != nil {
+					it.DNSStart(time.Since(start).Seconds())
+				}
+			},
+			ConnectStart: func(_, _ string) {
+				if it.ConnectStart != nil {
+					it.ConnectStart(time.Since(start).Seconds())
+				}
+			},
+			ConnectDone: func(_, _ string, err error) {
+				if err != nil {
+					return
+				}
+				if it.ConnectDone != nil {
+					it.ConnectDone(time.Since(start).Seconds())
+				}
+			},
+			GotFirstResponseByte: func() {
+				if it.GotFirstResponseByte != nil {
+					it.GotFirstResponseByte(time.Since(start).Seconds())
+				}
+			},
+			Got100Continue: func() {
+				if it.Got100Continue != nil {
+					it.Got100Continue(time.Since(start).Seconds())
+				}
+			},
+			TLSHandshakeStart: func() {
+				if it.TLSHandshakeStart != nil {
+					it.TLSHandshakeStart(time.Since(start).Seconds())
+				}
+			},
+			TLSHandshakeDone: func(_ tls.ConnectionState, err error) {
+				if err != nil {
+					return
+				}
+				if it.TLSHandshakeDone != nil {
+					it.TLSHandshakeDone(time.Since(start).Seconds())
+				}
+			},
+			WroteHeaders: func() {
+				if it.WroteHeaders != nil {
+					it.WroteHeaders(time.Since(start).Seconds())
+				}
+			},
+			Wait100Continue: func() {
+				if it.Wait100Continue != nil {
+					it.Wait100Continue(time.Since(start).Seconds())
+				}
+			},
+			WroteRequest: func(_ httptrace.WroteRequestInfo) {
+				if it.WroteRequest != nil {
+					it.WroteRequest(time.Since(start).Seconds())
+				}
+			},
+		}
+		r = r.WithContext(httptrace.WithClientTrace(context.Background(), trace))
+
+		return next.RoundTrip(r)
+	})
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
new file mode 100644
index 0000000000..9db2438053
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/promhttp/instrument_server.go
@@ -0,0 +1,447 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package promhttp
+
+import (
+	"errors"
+	"net/http"
+	"strconv"
+	"strings"
+	"time"
+
+	dto "github.com/prometheus/client_model/go"
+
+	"github.com/prometheus/client_golang/prometheus"
+)
+
+// magicString is used for the hacky label test in checkLabels. Remove once fixed.
+const magicString = "zZgWfBxLqvG8kc8IMv3POi2Bb0tZI3vAnBx+gBaFi9FyPzB/CzKUer1yufDa"
+
+// InstrumentHandlerInFlight is a middleware that wraps the provided
+// http.Handler. It sets the provided prometheus.Gauge to the number of
+// requests currently handled by the wrapped http.Handler.
+//
+// See the example for InstrumentHandlerDuration for example usage.
+func InstrumentHandlerInFlight(g prometheus.Gauge, next http.Handler) http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		g.Inc()
+		defer g.Dec()
+		next.ServeHTTP(w, r)
+	})
+}
+
+// InstrumentHandlerDuration is a middleware that wraps the provided
+// http.Handler to observe the request duration with the provided ObserverVec.
+// The ObserverVec must have zero, one, or two non-const non-curried labels. For
+// those, the only allowed label names are "code" and "method". The function
+// panics otherwise. The Observe method of the Observer in the ObserverVec is
+// called with the request duration in seconds. Partitioning happens by HTTP
+// status code and/or HTTP method if the respective instance label names are
+// present in the ObserverVec. For unpartitioned observations, use an
+// ObserverVec with zero labels. Note that partitioning of Histograms is
+// expensive and should be used judiciously.
+//
+// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
+//
+// If the wrapped Handler panics, no values are reported.
+//
+// Note that this method is only guaranteed to never observe negative durations
+// if used with Go1.9+.
+func InstrumentHandlerDuration(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
+	code, method := checkLabels(obs)
+
+	if code {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			now := time.Now()
+			d := newDelegator(w, nil)
+			next.ServeHTTP(d, r)
+
+			obs.With(labels(code, method, r.Method, d.Status())).Observe(time.Since(now).Seconds())
+		})
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		now := time.Now()
+		next.ServeHTTP(w, r)
+		obs.With(labels(code, method, r.Method, 0)).Observe(time.Since(now).Seconds())
+	})
+}
+
+// InstrumentHandlerCounter is a middleware that wraps the provided http.Handler
+// to observe the request result with the provided CounterVec.  The CounterVec
+// must have zero, one, or two non-const non-curried labels. For those, the only
+// allowed label names are "code" and "method". The function panics
+// otherwise. Partitioning of the CounterVec happens by HTTP status code and/or
+// HTTP method if the respective instance label names are present in the
+// CounterVec. For unpartitioned counting, use a CounterVec with zero labels.
+//
+// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
+//
+// If the wrapped Handler panics, the Counter is not incremented.
+//
+// See the example for InstrumentHandlerDuration for example usage.
+func InstrumentHandlerCounter(counter *prometheus.CounterVec, next http.Handler) http.HandlerFunc {
+	code, method := checkLabels(counter)
+
+	if code {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			d := newDelegator(w, nil)
+			next.ServeHTTP(d, r)
+			counter.With(labels(code, method, r.Method, d.Status())).Inc()
+		})
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		next.ServeHTTP(w, r)
+		counter.With(labels(code, method, r.Method, 0)).Inc()
+	})
+}
+
+// InstrumentHandlerTimeToWriteHeader is a middleware that wraps the provided
+// http.Handler to observe with the provided ObserverVec the request duration
+// until the response headers are written. The ObserverVec must have zero, one,
+// or two non-const non-curried labels. For those, the only allowed label names
+// are "code" and "method". The function panics otherwise. The Observe method of
+// the Observer in the ObserverVec is called with the request duration in
+// seconds. Partitioning happens by HTTP status code and/or HTTP method if the
+// respective instance label names are present in the ObserverVec. For
+// unpartitioned observations, use an ObserverVec with zero labels. Note that
+// partitioning of Histograms is expensive and should be used judiciously.
+//
+// If the wrapped Handler panics before calling WriteHeader, no value is
+// reported.
+//
+// Note that this method is only guaranteed to never observe negative durations
+// if used with Go1.9+.
+//
+// See the example for InstrumentHandlerDuration for example usage.
+func InstrumentHandlerTimeToWriteHeader(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
+	code, method := checkLabels(obs)
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		now := time.Now()
+		d := newDelegator(w, func(status int) {
+			obs.With(labels(code, method, r.Method, status)).Observe(time.Since(now).Seconds())
+		})
+		next.ServeHTTP(d, r)
+	})
+}
+
+// InstrumentHandlerRequestSize is a middleware that wraps the provided
+// http.Handler to observe the request size with the provided ObserverVec.  The
+// ObserverVec must have zero, one, or two non-const non-curried labels. For
+// those, the only allowed label names are "code" and "method". The function
+// panics otherwise. The Observe method of the Observer in the ObserverVec is
+// called with the request size in bytes. Partitioning happens by HTTP status
+// code and/or HTTP method if the respective instance label names are present in
+// the ObserverVec. For unpartitioned observations, use an ObserverVec with zero
+// labels. Note that partitioning of Histograms is expensive and should be used
+// judiciously.
+//
+// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
+//
+// If the wrapped Handler panics, no values are reported.
+//
+// See the example for InstrumentHandlerDuration for example usage.
+func InstrumentHandlerRequestSize(obs prometheus.ObserverVec, next http.Handler) http.HandlerFunc {
+	code, method := checkLabels(obs)
+
+	if code {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			d := newDelegator(w, nil)
+			next.ServeHTTP(d, r)
+			size := computeApproximateRequestSize(r)
+			obs.With(labels(code, method, r.Method, d.Status())).Observe(float64(size))
+		})
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		next.ServeHTTP(w, r)
+		size := computeApproximateRequestSize(r)
+		obs.With(labels(code, method, r.Method, 0)).Observe(float64(size))
+	})
+}
+
+// InstrumentHandlerResponseSize is a middleware that wraps the provided
+// http.Handler to observe the response size with the provided ObserverVec.  The
+// ObserverVec must have zero, one, or two non-const non-curried labels. For
+// those, the only allowed label names are "code" and "method". The function
+// panics otherwise. The Observe method of the Observer in the ObserverVec is
+// called with the response size in bytes. Partitioning happens by HTTP status
+// code and/or HTTP method if the respective instance label names are present in
+// the ObserverVec. For unpartitioned observations, use an ObserverVec with zero
+// labels. Note that partitioning of Histograms is expensive and should be used
+// judiciously.
+//
+// If the wrapped Handler does not set a status code, a status code of 200 is assumed.
+//
+// If the wrapped Handler panics, no values are reported.
+//
+// See the example for InstrumentHandlerDuration for example usage.
+func InstrumentHandlerResponseSize(obs prometheus.ObserverVec, next http.Handler) http.Handler {
+	code, method := checkLabels(obs)
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		d := newDelegator(w, nil)
+		next.ServeHTTP(d, r)
+		obs.With(labels(code, method, r.Method, d.Status())).Observe(float64(d.Written()))
+	})
+}
+
+func checkLabels(c prometheus.Collector) (code bool, method bool) {
+	// TODO(beorn7): Remove this hacky way to check for instance labels
+	// once Descriptors can have their dimensionality queried.
+	var (
+		desc *prometheus.Desc
+		m    prometheus.Metric
+		pm   dto.Metric
+		lvs  []string
+	)
+
+	// Get the Desc from the Collector.
+	descc := make(chan *prometheus.Desc, 1)
+	c.Describe(descc)
+
+	select {
+	case desc = <-descc:
+	default:
+		panic("no description provided by collector")
+	}
+	select {
+	case <-descc:
+		panic("more than one description provided by collector")
+	default:
+	}
+
+	close(descc)
+
+	// Create a ConstMetric with the Desc. Since we don't know how many
+	// variable labels there are, try for as long as it needs.
+	for err := errors.New("dummy"); err != nil; lvs = append(lvs, magicString) {
+		m, err = prometheus.NewConstMetric(desc, prometheus.UntypedValue, 0, lvs...)
+	}
+
+	// Write out the metric into a proto message and look at the labels.
+	// If the value is not the magicString, it is a constLabel, which doesn't interest us.
+	// If the label is curried, it doesn't interest us.
+	// In all other cases, only "code" or "method" is allowed.
+	if err := m.Write(&pm); err != nil {
+		panic("error checking metric for labels")
+	}
+	for _, label := range pm.Label {
+		name, value := label.GetName(), label.GetValue()
+		if value != magicString || isLabelCurried(c, name) {
+			continue
+		}
+		switch name {
+		case "code":
+			code = true
+		case "method":
+			method = true
+		default:
+			panic("metric partitioned with non-supported labels")
+		}
+	}
+	return
+}
+
+func isLabelCurried(c prometheus.Collector, label string) bool {
+	// This is even hackier than the label test above.
+	// We essentially try to curry again and see if it works.
+	// But for that, we need to type-convert to the two
+	// types we use here, ObserverVec or *CounterVec.
+	switch v := c.(type) {
+	case *prometheus.CounterVec:
+		if _, err := v.CurryWith(prometheus.Labels{label: "dummy"}); err == nil {
+			return false
+		}
+	case prometheus.ObserverVec:
+		if _, err := v.CurryWith(prometheus.Labels{label: "dummy"}); err == nil {
+			return false
+		}
+	default:
+		panic("unsupported metric vec type")
+	}
+	return true
+}
+
+// emptyLabels is a one-time allocation for non-partitioned metrics to avoid
+// unnecessary allocations on each request.
+var emptyLabels = prometheus.Labels{}
+
+func labels(code, method bool, reqMethod string, status int) prometheus.Labels {
+	if !(code || method) {
+		return emptyLabels
+	}
+	labels := prometheus.Labels{}
+
+	if code {
+		labels["code"] = sanitizeCode(status)
+	}
+	if method {
+		labels["method"] = sanitizeMethod(reqMethod)
+	}
+
+	return labels
+}
+
+func computeApproximateRequestSize(r *http.Request) int {
+	s := 0
+	if r.URL != nil {
+		s += len(r.URL.String())
+	}
+
+	s += len(r.Method)
+	s += len(r.Proto)
+	for name, values := range r.Header {
+		s += len(name)
+		for _, value := range values {
+			s += len(value)
+		}
+	}
+	s += len(r.Host)
+
+	// N.B. r.Form and r.MultipartForm are assumed to be included in r.URL.
+
+	if r.ContentLength != -1 {
+		s += int(r.ContentLength)
+	}
+	return s
+}
+
+func sanitizeMethod(m string) string {
+	switch m {
+	case "GET", "get":
+		return "get"
+	case "PUT", "put":
+		return "put"
+	case "HEAD", "head":
+		return "head"
+	case "POST", "post":
+		return "post"
+	case "DELETE", "delete":
+		return "delete"
+	case "CONNECT", "connect":
+		return "connect"
+	case "OPTIONS", "options":
+		return "options"
+	case "NOTIFY", "notify":
+		return "notify"
+	default:
+		return strings.ToLower(m)
+	}
+}
+
+// If the wrapped http.Handler has not set a status code, i.e. the value is
+// currently 0, santizeCode will return 200, for consistency with behavior in
+// the stdlib.
+func sanitizeCode(s int) string {
+	switch s {
+	case 100:
+		return "100"
+	case 101:
+		return "101"
+
+	case 200, 0:
+		return "200"
+	case 201:
+		return "201"
+	case 202:
+		return "202"
+	case 203:
+		return "203"
+	case 204:
+		return "204"
+	case 205:
+		return "205"
+	case 206:
+		return "206"
+
+	case 300:
+		return "300"
+	case 301:
+		return "301"
+	case 302:
+		return "302"
+	case 304:
+		return "304"
+	case 305:
+		return "305"
+	case 307:
+		return "307"
+
+	case 400:
+		return "400"
+	case 401:
+		return "401"
+	case 402:
+		return "402"
+	case 403:
+		return "403"
+	case 404:
+		return "404"
+	case 405:
+		return "405"
+	case 406:
+		return "406"
+	case 407:
+		return "407"
+	case 408:
+		return "408"
+	case 409:
+		return "409"
+	case 410:
+		return "410"
+	case 411:
+		return "411"
+	case 412:
+		return "412"
+	case 413:
+		return "413"
+	case 414:
+		return "414"
+	case 415:
+		return "415"
+	case 416:
+		return "416"
+	case 417:
+		return "417"
+	case 418:
+		return "418"
+
+	case 500:
+		return "500"
+	case 501:
+		return "501"
+	case 502:
+		return "502"
+	case 503:
+		return "503"
+	case 504:
+		return "504"
+	case 505:
+		return "505"
+
+	case 428:
+		return "428"
+	case 429:
+		return "429"
+	case 431:
+		return "431"
+	case 511:
+		return "511"
+
+	default:
+		return strconv.Itoa(s)
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/registry.go b/vendor/github.com/prometheus/client_golang/prometheus/registry.go
new file mode 100644
index 0000000000..bee3703640
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/registry.go
@@ -0,0 +1,807 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"os"
+	"runtime"
+	"sort"
+	"sync"
+	"unicode/utf8"
+
+	"github.com/golang/protobuf/proto"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+const (
+	// Capacity for the channel to collect metrics and descriptors.
+	capMetricChan = 1000
+	capDescChan   = 10
+)
+
+// DefaultRegisterer and DefaultGatherer are the implementations of the
+// Registerer and Gatherer interface a number of convenience functions in this
+// package act on. Initially, both variables point to the same Registry, which
+// has a process collector (currently on Linux only, see NewProcessCollector)
+// and a Go collector (see NewGoCollector) already registered. This approach to
+// keep default instances as global state mirrors the approach of other packages
+// in the Go standard library. Note that there are caveats. Change the variables
+// with caution and only if you understand the consequences. Users who want to
+// avoid global state altogether should not use the convenience functions and
+// act on custom instances instead.
+var (
+	defaultRegistry              = NewRegistry()
+	DefaultRegisterer Registerer = defaultRegistry
+	DefaultGatherer   Gatherer   = defaultRegistry
+)
+
+func init() {
+	MustRegister(NewProcessCollector(os.Getpid(), ""))
+	MustRegister(NewGoCollector())
+}
+
+// NewRegistry creates a new vanilla Registry without any Collectors
+// pre-registered.
+func NewRegistry() *Registry {
+	return &Registry{
+		collectorsByID:  map[uint64]Collector{},
+		descIDs:         map[uint64]struct{}{},
+		dimHashesByName: map[string]uint64{},
+	}
+}
+
+// NewPedanticRegistry returns a registry that checks during collection if each
+// collected Metric is consistent with its reported Desc, and if the Desc has
+// actually been registered with the registry.
+//
+// Usually, a Registry will be happy as long as the union of all collected
+// Metrics is consistent and valid even if some metrics are not consistent with
+// their own Desc or a Desc provided by their registered Collector. Well-behaved
+// Collectors and Metrics will only provide consistent Descs. This Registry is
+// useful to test the implementation of Collectors and Metrics.
+func NewPedanticRegistry() *Registry {
+	r := NewRegistry()
+	r.pedanticChecksEnabled = true
+	return r
+}
+
+// Registerer is the interface for the part of a registry in charge of
+// registering and unregistering. Users of custom registries should use
+// Registerer as type for registration purposes (rather than the Registry type
+// directly). In that way, they are free to use custom Registerer implementation
+// (e.g. for testing purposes).
+type Registerer interface {
+	// Register registers a new Collector to be included in metrics
+	// collection. It returns an error if the descriptors provided by the
+	// Collector are invalid or if they — in combination with descriptors of
+	// already registered Collectors — do not fulfill the consistency and
+	// uniqueness criteria described in the documentation of metric.Desc.
+	//
+	// If the provided Collector is equal to a Collector already registered
+	// (which includes the case of re-registering the same Collector), the
+	// returned error is an instance of AlreadyRegisteredError, which
+	// contains the previously registered Collector.
+	//
+	// It is in general not safe to register the same Collector multiple
+	// times concurrently.
+	Register(Collector) error
+	// MustRegister works like Register but registers any number of
+	// Collectors and panics upon the first registration that causes an
+	// error.
+	MustRegister(...Collector)
+	// Unregister unregisters the Collector that equals the Collector passed
+	// in as an argument.  (Two Collectors are considered equal if their
+	// Describe method yields the same set of descriptors.) The function
+	// returns whether a Collector was unregistered.
+	//
+	// Note that even after unregistering, it will not be possible to
+	// register a new Collector that is inconsistent with the unregistered
+	// Collector, e.g. a Collector collecting metrics with the same name but
+	// a different help string. The rationale here is that the same registry
+	// instance must only collect consistent metrics throughout its
+	// lifetime.
+	Unregister(Collector) bool
+}
+
+// Gatherer is the interface for the part of a registry in charge of gathering
+// the collected metrics into a number of MetricFamilies. The Gatherer interface
+// comes with the same general implication as described for the Registerer
+// interface.
+type Gatherer interface {
+	// Gather calls the Collect method of the registered Collectors and then
+	// gathers the collected metrics into a lexicographically sorted slice
+	// of MetricFamily protobufs. Even if an error occurs, Gather attempts
+	// to gather as many metrics as possible. Hence, if a non-nil error is
+	// returned, the returned MetricFamily slice could be nil (in case of a
+	// fatal error that prevented any meaningful metric collection) or
+	// contain a number of MetricFamily protobufs, some of which might be
+	// incomplete, and some might be missing altogether. The returned error
+	// (which might be a MultiError) explains the details. In scenarios
+	// where complete collection is critical, the returned MetricFamily
+	// protobufs should be disregarded if the returned error is non-nil.
+	Gather() ([]*dto.MetricFamily, error)
+}
+
+// Register registers the provided Collector with the DefaultRegisterer.
+//
+// Register is a shortcut for DefaultRegisterer.Register(c). See there for more
+// details.
+func Register(c Collector) error {
+	return DefaultRegisterer.Register(c)
+}
+
+// MustRegister registers the provided Collectors with the DefaultRegisterer and
+// panics if any error occurs.
+//
+// MustRegister is a shortcut for DefaultRegisterer.MustRegister(cs...). See
+// there for more details.
+func MustRegister(cs ...Collector) {
+	DefaultRegisterer.MustRegister(cs...)
+}
+
+// Unregister removes the registration of the provided Collector from the
+// DefaultRegisterer.
+//
+// Unregister is a shortcut for DefaultRegisterer.Unregister(c). See there for
+// more details.
+func Unregister(c Collector) bool {
+	return DefaultRegisterer.Unregister(c)
+}
+
+// GathererFunc turns a function into a Gatherer.
+type GathererFunc func() ([]*dto.MetricFamily, error)
+
+// Gather implements Gatherer.
+func (gf GathererFunc) Gather() ([]*dto.MetricFamily, error) {
+	return gf()
+}
+
+// AlreadyRegisteredError is returned by the Register method if the Collector to
+// be registered has already been registered before, or a different Collector
+// that collects the same metrics has been registered before. Registration fails
+// in that case, but you can detect from the kind of error what has
+// happened. The error contains fields for the existing Collector and the
+// (rejected) new Collector that equals the existing one. This can be used to
+// find out if an equal Collector has been registered before and switch over to
+// using the old one, as demonstrated in the example.
+type AlreadyRegisteredError struct {
+	ExistingCollector, NewCollector Collector
+}
+
+func (err AlreadyRegisteredError) Error() string {
+	return "duplicate metrics collector registration attempted"
+}
+
+// MultiError is a slice of errors implementing the error interface. It is used
+// by a Gatherer to report multiple errors during MetricFamily gathering.
+type MultiError []error
+
+func (errs MultiError) Error() string {
+	if len(errs) == 0 {
+		return ""
+	}
+	buf := &bytes.Buffer{}
+	fmt.Fprintf(buf, "%d error(s) occurred:", len(errs))
+	for _, err := range errs {
+		fmt.Fprintf(buf, "\n* %s", err)
+	}
+	return buf.String()
+}
+
+// Append appends the provided error if it is not nil.
+func (errs *MultiError) Append(err error) {
+	if err != nil {
+		*errs = append(*errs, err)
+	}
+}
+
+// MaybeUnwrap returns nil if len(errs) is 0. It returns the first and only
+// contained error as error if len(errs is 1). In all other cases, it returns
+// the MultiError directly. This is helpful for returning a MultiError in a way
+// that only uses the MultiError if needed.
+func (errs MultiError) MaybeUnwrap() error {
+	switch len(errs) {
+	case 0:
+		return nil
+	case 1:
+		return errs[0]
+	default:
+		return errs
+	}
+}
+
+// Registry registers Prometheus collectors, collects their metrics, and gathers
+// them into MetricFamilies for exposition. It implements both Registerer and
+// Gatherer. The zero value is not usable. Create instances with NewRegistry or
+// NewPedanticRegistry.
+type Registry struct {
+	mtx                   sync.RWMutex
+	collectorsByID        map[uint64]Collector // ID is a hash of the descIDs.
+	descIDs               map[uint64]struct{}
+	dimHashesByName       map[string]uint64
+	pedanticChecksEnabled bool
+}
+
+// Register implements Registerer.
+func (r *Registry) Register(c Collector) error {
+	var (
+		descChan           = make(chan *Desc, capDescChan)
+		newDescIDs         = map[uint64]struct{}{}
+		newDimHashesByName = map[string]uint64{}
+		collectorID        uint64 // Just a sum of all desc IDs.
+		duplicateDescErr   error
+	)
+	go func() {
+		c.Describe(descChan)
+		close(descChan)
+	}()
+	r.mtx.Lock()
+	defer r.mtx.Unlock()
+	// Conduct various tests...
+	for desc := range descChan {
+
+		// Is the descriptor valid at all?
+		if desc.err != nil {
+			return fmt.Errorf("descriptor %s is invalid: %s", desc, desc.err)
+		}
+
+		// Is the descID unique?
+		// (In other words: Is the fqName + constLabel combination unique?)
+		if _, exists := r.descIDs[desc.id]; exists {
+			duplicateDescErr = fmt.Errorf("descriptor %s already exists with the same fully-qualified name and const label values", desc)
+		}
+		// If it is not a duplicate desc in this collector, add it to
+		// the collectorID.  (We allow duplicate descs within the same
+		// collector, but their existence must be a no-op.)
+		if _, exists := newDescIDs[desc.id]; !exists {
+			newDescIDs[desc.id] = struct{}{}
+			collectorID += desc.id
+		}
+
+		// Are all the label names and the help string consistent with
+		// previous descriptors of the same name?
+		// First check existing descriptors...
+		if dimHash, exists := r.dimHashesByName[desc.fqName]; exists {
+			if dimHash != desc.dimHash {
+				return fmt.Errorf("a previously registered descriptor with the same fully-qualified name as %s has different label names or a different help string", desc)
+			}
+		} else {
+			// ...then check the new descriptors already seen.
+			if dimHash, exists := newDimHashesByName[desc.fqName]; exists {
+				if dimHash != desc.dimHash {
+					return fmt.Errorf("descriptors reported by collector have inconsistent label names or help strings for the same fully-qualified name, offender is %s", desc)
+				}
+			} else {
+				newDimHashesByName[desc.fqName] = desc.dimHash
+			}
+		}
+	}
+	// Did anything happen at all?
+	if len(newDescIDs) == 0 {
+		return errors.New("collector has no descriptors")
+	}
+	if existing, exists := r.collectorsByID[collectorID]; exists {
+		return AlreadyRegisteredError{
+			ExistingCollector: existing,
+			NewCollector:      c,
+		}
+	}
+	// If the collectorID is new, but at least one of the descs existed
+	// before, we are in trouble.
+	if duplicateDescErr != nil {
+		return duplicateDescErr
+	}
+
+	// Only after all tests have passed, actually register.
+	r.collectorsByID[collectorID] = c
+	for hash := range newDescIDs {
+		r.descIDs[hash] = struct{}{}
+	}
+	for name, dimHash := range newDimHashesByName {
+		r.dimHashesByName[name] = dimHash
+	}
+	return nil
+}
+
+// Unregister implements Registerer.
+func (r *Registry) Unregister(c Collector) bool {
+	var (
+		descChan    = make(chan *Desc, capDescChan)
+		descIDs     = map[uint64]struct{}{}
+		collectorID uint64 // Just a sum of the desc IDs.
+	)
+	go func() {
+		c.Describe(descChan)
+		close(descChan)
+	}()
+	for desc := range descChan {
+		if _, exists := descIDs[desc.id]; !exists {
+			collectorID += desc.id
+			descIDs[desc.id] = struct{}{}
+		}
+	}
+
+	r.mtx.RLock()
+	if _, exists := r.collectorsByID[collectorID]; !exists {
+		r.mtx.RUnlock()
+		return false
+	}
+	r.mtx.RUnlock()
+
+	r.mtx.Lock()
+	defer r.mtx.Unlock()
+
+	delete(r.collectorsByID, collectorID)
+	for id := range descIDs {
+		delete(r.descIDs, id)
+	}
+	// dimHashesByName is left untouched as those must be consistent
+	// throughout the lifetime of a program.
+	return true
+}
+
+// MustRegister implements Registerer.
+func (r *Registry) MustRegister(cs ...Collector) {
+	for _, c := range cs {
+		if err := r.Register(c); err != nil {
+			panic(err)
+		}
+	}
+}
+
+// Gather implements Gatherer.
+func (r *Registry) Gather() ([]*dto.MetricFamily, error) {
+	var (
+		metricChan        = make(chan Metric, capMetricChan)
+		metricHashes      = map[uint64]struct{}{}
+		dimHashes         = map[string]uint64{}
+		wg                sync.WaitGroup
+		errs              MultiError          // The collected errors to return in the end.
+		registeredDescIDs map[uint64]struct{} // Only used for pedantic checks
+	)
+
+	r.mtx.RLock()
+	goroutineBudget := len(r.collectorsByID)
+	metricFamiliesByName := make(map[string]*dto.MetricFamily, len(r.dimHashesByName))
+	collectors := make(chan Collector, len(r.collectorsByID))
+	for _, collector := range r.collectorsByID {
+		collectors <- collector
+	}
+	// In case pedantic checks are enabled, we have to copy the map before
+	// giving up the RLock.
+	if r.pedanticChecksEnabled {
+		registeredDescIDs = make(map[uint64]struct{}, len(r.descIDs))
+		for id := range r.descIDs {
+			registeredDescIDs[id] = struct{}{}
+		}
+	}
+	r.mtx.RUnlock()
+
+	wg.Add(goroutineBudget)
+
+	collectWorker := func() {
+		for {
+			select {
+			case collector := <-collectors:
+				collector.Collect(metricChan)
+				wg.Done()
+			default:
+				return
+			}
+		}
+	}
+
+	// Start the first worker now to make sure at least one is running.
+	go collectWorker()
+	goroutineBudget--
+
+	// Close the metricChan once all collectors are collected.
+	go func() {
+		wg.Wait()
+		close(metricChan)
+	}()
+
+	// Drain metricChan in case of premature return.
+	defer func() {
+		for range metricChan {
+		}
+	}()
+
+collectLoop:
+	for {
+		select {
+		case metric, ok := <-metricChan:
+			if !ok {
+				// metricChan is closed, we are done.
+				break collectLoop
+			}
+			errs.Append(processMetric(
+				metric, metricFamiliesByName,
+				metricHashes, dimHashes,
+				registeredDescIDs,
+			))
+		default:
+			if goroutineBudget <= 0 || len(collectors) == 0 {
+				// All collectors are aleady being worked on or
+				// we have already as many goroutines started as
+				// there are collectors. Just process metrics
+				// from now on.
+				for metric := range metricChan {
+					errs.Append(processMetric(
+						metric, metricFamiliesByName,
+						metricHashes, dimHashes,
+						registeredDescIDs,
+					))
+				}
+				break collectLoop
+			}
+			// Start more workers.
+			go collectWorker()
+			goroutineBudget--
+			runtime.Gosched()
+		}
+	}
+	return normalizeMetricFamilies(metricFamiliesByName), errs.MaybeUnwrap()
+}
+
+// processMetric is an internal helper method only used by the Gather method.
+func processMetric(
+	metric Metric,
+	metricFamiliesByName map[string]*dto.MetricFamily,
+	metricHashes map[uint64]struct{},
+	dimHashes map[string]uint64,
+	registeredDescIDs map[uint64]struct{},
+) error {
+	desc := metric.Desc()
+	dtoMetric := &dto.Metric{}
+	if err := metric.Write(dtoMetric); err != nil {
+		return fmt.Errorf("error collecting metric %v: %s", desc, err)
+	}
+	metricFamily, ok := metricFamiliesByName[desc.fqName]
+	if ok {
+		if metricFamily.GetHelp() != desc.help {
+			return fmt.Errorf(
+				"collected metric %s %s has help %q but should have %q",
+				desc.fqName, dtoMetric, desc.help, metricFamily.GetHelp(),
+			)
+		}
+		// TODO(beorn7): Simplify switch once Desc has type.
+		switch metricFamily.GetType() {
+		case dto.MetricType_COUNTER:
+			if dtoMetric.Counter == nil {
+				return fmt.Errorf(
+					"collected metric %s %s should be a Counter",
+					desc.fqName, dtoMetric,
+				)
+			}
+		case dto.MetricType_GAUGE:
+			if dtoMetric.Gauge == nil {
+				return fmt.Errorf(
+					"collected metric %s %s should be a Gauge",
+					desc.fqName, dtoMetric,
+				)
+			}
+		case dto.MetricType_SUMMARY:
+			if dtoMetric.Summary == nil {
+				return fmt.Errorf(
+					"collected metric %s %s should be a Summary",
+					desc.fqName, dtoMetric,
+				)
+			}
+		case dto.MetricType_UNTYPED:
+			if dtoMetric.Untyped == nil {
+				return fmt.Errorf(
+					"collected metric %s %s should be Untyped",
+					desc.fqName, dtoMetric,
+				)
+			}
+		case dto.MetricType_HISTOGRAM:
+			if dtoMetric.Histogram == nil {
+				return fmt.Errorf(
+					"collected metric %s %s should be a Histogram",
+					desc.fqName, dtoMetric,
+				)
+			}
+		default:
+			panic("encountered MetricFamily with invalid type")
+		}
+	} else {
+		metricFamily = &dto.MetricFamily{}
+		metricFamily.Name = proto.String(desc.fqName)
+		metricFamily.Help = proto.String(desc.help)
+		// TODO(beorn7): Simplify switch once Desc has type.
+		switch {
+		case dtoMetric.Gauge != nil:
+			metricFamily.Type = dto.MetricType_GAUGE.Enum()
+		case dtoMetric.Counter != nil:
+			metricFamily.Type = dto.MetricType_COUNTER.Enum()
+		case dtoMetric.Summary != nil:
+			metricFamily.Type = dto.MetricType_SUMMARY.Enum()
+		case dtoMetric.Untyped != nil:
+			metricFamily.Type = dto.MetricType_UNTYPED.Enum()
+		case dtoMetric.Histogram != nil:
+			metricFamily.Type = dto.MetricType_HISTOGRAM.Enum()
+		default:
+			return fmt.Errorf("empty metric collected: %s", dtoMetric)
+		}
+		metricFamiliesByName[desc.fqName] = metricFamily
+	}
+	if err := checkMetricConsistency(metricFamily, dtoMetric, metricHashes, dimHashes); err != nil {
+		return err
+	}
+	if registeredDescIDs != nil {
+		// Is the desc registered at all?
+		if _, exist := registeredDescIDs[desc.id]; !exist {
+			return fmt.Errorf(
+				"collected metric %s %s with unregistered descriptor %s",
+				metricFamily.GetName(), dtoMetric, desc,
+			)
+		}
+		if err := checkDescConsistency(metricFamily, dtoMetric, desc); err != nil {
+			return err
+		}
+	}
+	metricFamily.Metric = append(metricFamily.Metric, dtoMetric)
+	return nil
+}
+
+// Gatherers is a slice of Gatherer instances that implements the Gatherer
+// interface itself. Its Gather method calls Gather on all Gatherers in the
+// slice in order and returns the merged results. Errors returned from the
+// Gather calles are all returned in a flattened MultiError. Duplicate and
+// inconsistent Metrics are skipped (first occurrence in slice order wins) and
+// reported in the returned error.
+//
+// Gatherers can be used to merge the Gather results from multiple
+// Registries. It also provides a way to directly inject existing MetricFamily
+// protobufs into the gathering by creating a custom Gatherer with a Gather
+// method that simply returns the existing MetricFamily protobufs. Note that no
+// registration is involved (in contrast to Collector registration), so
+// obviously registration-time checks cannot happen. Any inconsistencies between
+// the gathered MetricFamilies are reported as errors by the Gather method, and
+// inconsistent Metrics are dropped. Invalid parts of the MetricFamilies
+// (e.g. syntactically invalid metric or label names) will go undetected.
+type Gatherers []Gatherer
+
+// Gather implements Gatherer.
+func (gs Gatherers) Gather() ([]*dto.MetricFamily, error) {
+	var (
+		metricFamiliesByName = map[string]*dto.MetricFamily{}
+		metricHashes         = map[uint64]struct{}{}
+		dimHashes            = map[string]uint64{}
+		errs                 MultiError // The collected errors to return in the end.
+	)
+
+	for i, g := range gs {
+		mfs, err := g.Gather()
+		if err != nil {
+			if multiErr, ok := err.(MultiError); ok {
+				for _, err := range multiErr {
+					errs = append(errs, fmt.Errorf("[from Gatherer #%d] %s", i+1, err))
+				}
+			} else {
+				errs = append(errs, fmt.Errorf("[from Gatherer #%d] %s", i+1, err))
+			}
+		}
+		for _, mf := range mfs {
+			existingMF, exists := metricFamiliesByName[mf.GetName()]
+			if exists {
+				if existingMF.GetHelp() != mf.GetHelp() {
+					errs = append(errs, fmt.Errorf(
+						"gathered metric family %s has help %q but should have %q",
+						mf.GetName(), mf.GetHelp(), existingMF.GetHelp(),
+					))
+					continue
+				}
+				if existingMF.GetType() != mf.GetType() {
+					errs = append(errs, fmt.Errorf(
+						"gathered metric family %s has type %s but should have %s",
+						mf.GetName(), mf.GetType(), existingMF.GetType(),
+					))
+					continue
+				}
+			} else {
+				existingMF = &dto.MetricFamily{}
+				existingMF.Name = mf.Name
+				existingMF.Help = mf.Help
+				existingMF.Type = mf.Type
+				metricFamiliesByName[mf.GetName()] = existingMF
+			}
+			for _, m := range mf.Metric {
+				if err := checkMetricConsistency(existingMF, m, metricHashes, dimHashes); err != nil {
+					errs = append(errs, err)
+					continue
+				}
+				existingMF.Metric = append(existingMF.Metric, m)
+			}
+		}
+	}
+	return normalizeMetricFamilies(metricFamiliesByName), errs.MaybeUnwrap()
+}
+
+// metricSorter is a sortable slice of *dto.Metric.
+type metricSorter []*dto.Metric
+
+func (s metricSorter) Len() int {
+	return len(s)
+}
+
+func (s metricSorter) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s metricSorter) Less(i, j int) bool {
+	if len(s[i].Label) != len(s[j].Label) {
+		// This should not happen. The metrics are
+		// inconsistent. However, we have to deal with the fact, as
+		// people might use custom collectors or metric family injection
+		// to create inconsistent metrics. So let's simply compare the
+		// number of labels in this case. That will still yield
+		// reproducible sorting.
+		return len(s[i].Label) < len(s[j].Label)
+	}
+	for n, lp := range s[i].Label {
+		vi := lp.GetValue()
+		vj := s[j].Label[n].GetValue()
+		if vi != vj {
+			return vi < vj
+		}
+	}
+
+	// We should never arrive here. Multiple metrics with the same
+	// label set in the same scrape will lead to undefined ingestion
+	// behavior. However, as above, we have to provide stable sorting
+	// here, even for inconsistent metrics. So sort equal metrics
+	// by their timestamp, with missing timestamps (implying "now")
+	// coming last.
+	if s[i].TimestampMs == nil {
+		return false
+	}
+	if s[j].TimestampMs == nil {
+		return true
+	}
+	return s[i].GetTimestampMs() < s[j].GetTimestampMs()
+}
+
+// normalizeMetricFamilies returns a MetricFamily slice with empty
+// MetricFamilies pruned and the remaining MetricFamilies sorted by name within
+// the slice, with the contained Metrics sorted within each MetricFamily.
+func normalizeMetricFamilies(metricFamiliesByName map[string]*dto.MetricFamily) []*dto.MetricFamily {
+	for _, mf := range metricFamiliesByName {
+		sort.Sort(metricSorter(mf.Metric))
+	}
+	names := make([]string, 0, len(metricFamiliesByName))
+	for name, mf := range metricFamiliesByName {
+		if len(mf.Metric) > 0 {
+			names = append(names, name)
+		}
+	}
+	sort.Strings(names)
+	result := make([]*dto.MetricFamily, 0, len(names))
+	for _, name := range names {
+		result = append(result, metricFamiliesByName[name])
+	}
+	return result
+}
+
+// checkMetricConsistency checks if the provided Metric is consistent with the
+// provided MetricFamily. It also hashed the Metric labels and the MetricFamily
+// name. If the resulting hash is already in the provided metricHashes, an error
+// is returned. If not, it is added to metricHashes. The provided dimHashes maps
+// MetricFamily names to their dimHash (hashed sorted label names). If dimHashes
+// doesn't yet contain a hash for the provided MetricFamily, it is
+// added. Otherwise, an error is returned if the existing dimHashes in not equal
+// the calculated dimHash.
+func checkMetricConsistency(
+	metricFamily *dto.MetricFamily,
+	dtoMetric *dto.Metric,
+	metricHashes map[uint64]struct{},
+	dimHashes map[string]uint64,
+) error {
+	// Type consistency with metric family.
+	if metricFamily.GetType() == dto.MetricType_GAUGE && dtoMetric.Gauge == nil ||
+		metricFamily.GetType() == dto.MetricType_COUNTER && dtoMetric.Counter == nil ||
+		metricFamily.GetType() == dto.MetricType_SUMMARY && dtoMetric.Summary == nil ||
+		metricFamily.GetType() == dto.MetricType_HISTOGRAM && dtoMetric.Histogram == nil ||
+		metricFamily.GetType() == dto.MetricType_UNTYPED && dtoMetric.Untyped == nil {
+		return fmt.Errorf(
+			"collected metric %s %s is not a %s",
+			metricFamily.GetName(), dtoMetric, metricFamily.GetType(),
+		)
+	}
+
+	for _, labelPair := range dtoMetric.GetLabel() {
+		if !utf8.ValidString(*labelPair.Value) {
+			return fmt.Errorf("collected metric's label %s is not utf8: %#v", *labelPair.Name, *labelPair.Value)
+		}
+	}
+
+	// Is the metric unique (i.e. no other metric with the same name and the same label values)?
+	h := hashNew()
+	h = hashAdd(h, metricFamily.GetName())
+	h = hashAddByte(h, separatorByte)
+	dh := hashNew()
+	// Make sure label pairs are sorted. We depend on it for the consistency
+	// check.
+	sort.Sort(LabelPairSorter(dtoMetric.Label))
+	for _, lp := range dtoMetric.Label {
+		h = hashAdd(h, lp.GetValue())
+		h = hashAddByte(h, separatorByte)
+		dh = hashAdd(dh, lp.GetName())
+		dh = hashAddByte(dh, separatorByte)
+	}
+	if _, exists := metricHashes[h]; exists {
+		return fmt.Errorf(
+			"collected metric %s %s was collected before with the same name and label values",
+			metricFamily.GetName(), dtoMetric,
+		)
+	}
+	if dimHash, ok := dimHashes[metricFamily.GetName()]; ok {
+		if dimHash != dh {
+			return fmt.Errorf(
+				"collected metric %s %s has label dimensions inconsistent with previously collected metrics in the same metric family",
+				metricFamily.GetName(), dtoMetric,
+			)
+		}
+	} else {
+		dimHashes[metricFamily.GetName()] = dh
+	}
+	metricHashes[h] = struct{}{}
+	return nil
+}
+
+func checkDescConsistency(
+	metricFamily *dto.MetricFamily,
+	dtoMetric *dto.Metric,
+	desc *Desc,
+) error {
+	// Desc help consistency with metric family help.
+	if metricFamily.GetHelp() != desc.help {
+		return fmt.Errorf(
+			"collected metric %s %s has help %q but should have %q",
+			metricFamily.GetName(), dtoMetric, metricFamily.GetHelp(), desc.help,
+		)
+	}
+
+	// Is the desc consistent with the content of the metric?
+	lpsFromDesc := make([]*dto.LabelPair, 0, len(dtoMetric.Label))
+	lpsFromDesc = append(lpsFromDesc, desc.constLabelPairs...)
+	for _, l := range desc.variableLabels {
+		lpsFromDesc = append(lpsFromDesc, &dto.LabelPair{
+			Name: proto.String(l),
+		})
+	}
+	if len(lpsFromDesc) != len(dtoMetric.Label) {
+		return fmt.Errorf(
+			"labels in collected metric %s %s are inconsistent with descriptor %s",
+			metricFamily.GetName(), dtoMetric, desc,
+		)
+	}
+	sort.Sort(LabelPairSorter(lpsFromDesc))
+	for i, lpFromDesc := range lpsFromDesc {
+		lpFromMetric := dtoMetric.Label[i]
+		if lpFromDesc.GetName() != lpFromMetric.GetName() ||
+			lpFromDesc.Value != nil && lpFromDesc.GetValue() != lpFromMetric.GetValue() {
+			return fmt.Errorf(
+				"labels in collected metric %s %s are inconsistent with descriptor %s",
+				metricFamily.GetName(), dtoMetric, desc,
+			)
+		}
+	}
+	return nil
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/summary.go b/vendor/github.com/prometheus/client_golang/prometheus/summary.go
new file mode 100644
index 0000000000..f7dc85b96d
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/summary.go
@@ -0,0 +1,609 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"fmt"
+	"math"
+	"sort"
+	"sync"
+	"time"
+
+	"github.com/beorn7/perks/quantile"
+	"github.com/golang/protobuf/proto"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// quantileLabel is used for the label that defines the quantile in a
+// summary.
+const quantileLabel = "quantile"
+
+// A Summary captures individual observations from an event or sample stream and
+// summarizes them in a manner similar to traditional summary statistics: 1. sum
+// of observations, 2. observation count, 3. rank estimations.
+//
+// A typical use-case is the observation of request latencies. By default, a
+// Summary provides the median, the 90th and the 99th percentile of the latency
+// as rank estimations. However, the default behavior will change in the
+// upcoming v0.10 of the library. There will be no rank estiamtions at all by
+// default. For a sane transition, it is recommended to set the desired rank
+// estimations explicitly.
+//
+// Note that the rank estimations cannot be aggregated in a meaningful way with
+// the Prometheus query language (i.e. you cannot average or add them). If you
+// need aggregatable quantiles (e.g. you want the 99th percentile latency of all
+// queries served across all instances of a service), consider the Histogram
+// metric type. See the Prometheus documentation for more details.
+//
+// To create Summary instances, use NewSummary.
+type Summary interface {
+	Metric
+	Collector
+
+	// Observe adds a single observation to the summary.
+	Observe(float64)
+}
+
+// DefObjectives are the default Summary quantile values.
+//
+// Deprecated: DefObjectives will not be used as the default objectives in
+// v0.10 of the library. The default Summary will have no quantiles then.
+var (
+	DefObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
+
+	errQuantileLabelNotAllowed = fmt.Errorf(
+		"%q is not allowed as label name in summaries", quantileLabel,
+	)
+)
+
+// Default values for SummaryOpts.
+const (
+	// DefMaxAge is the default duration for which observations stay
+	// relevant.
+	DefMaxAge time.Duration = 10 * time.Minute
+	// DefAgeBuckets is the default number of buckets used to calculate the
+	// age of observations.
+	DefAgeBuckets = 5
+	// DefBufCap is the standard buffer size for collecting Summary observations.
+	DefBufCap = 500
+)
+
+// SummaryOpts bundles the options for creating a Summary metric. It is
+// mandatory to set Name and Help to a non-empty string. While all other fields
+// are optional and can safely be left at their zero value, it is recommended to
+// explicitly set the Objectives field to the desired value as the default value
+// will change in the upcoming v0.10 of the library.
+type SummaryOpts struct {
+	// Namespace, Subsystem, and Name are components of the fully-qualified
+	// name of the Summary (created by joining these components with
+	// "_"). Only Name is mandatory, the others merely help structuring the
+	// name. Note that the fully-qualified name of the Summary must be a
+	// valid Prometheus metric name.
+	Namespace string
+	Subsystem string
+	Name      string
+
+	// Help provides information about this Summary. Mandatory!
+	//
+	// Metrics with the same fully-qualified name must have the same Help
+	// string.
+	Help string
+
+	// ConstLabels are used to attach fixed labels to this metric. Metrics
+	// with the same fully-qualified name must have the same label names in
+	// their ConstLabels.
+	//
+	// ConstLabels are only used rarely. In particular, do not use them to
+	// attach the same labels to all your metrics. Those use cases are
+	// better covered by target labels set by the scraping Prometheus
+	// server, or by one specific metric (e.g. a build_info or a
+	// machine_role metric). See also
+	// https://prometheus.io/docs/instrumenting/writing_exporters/#target-labels,-not-static-scraped-labels
+	ConstLabels Labels
+
+	// Objectives defines the quantile rank estimates with their respective
+	// absolute error. If Objectives[q] = e, then the value reported for q
+	// will be the φ-quantile value for some φ between q-e and q+e.  The
+	// default value is DefObjectives. It is used if Objectives is left at
+	// its zero value (i.e. nil). To create a Summary without Objectives,
+	// set it to an empty map (i.e. map[float64]float64{}).
+	//
+	// Deprecated: Note that the current value of DefObjectives is
+	// deprecated. It will be replaced by an empty map in v0.10 of the
+	// library. Please explicitly set Objectives to the desired value.
+	Objectives map[float64]float64
+
+	// MaxAge defines the duration for which an observation stays relevant
+	// for the summary. Must be positive. The default value is DefMaxAge.
+	MaxAge time.Duration
+
+	// AgeBuckets is the number of buckets used to exclude observations that
+	// are older than MaxAge from the summary. A higher number has a
+	// resource penalty, so only increase it if the higher resolution is
+	// really required. For very high observation rates, you might want to
+	// reduce the number of age buckets. With only one age bucket, you will
+	// effectively see a complete reset of the summary each time MaxAge has
+	// passed. The default value is DefAgeBuckets.
+	AgeBuckets uint32
+
+	// BufCap defines the default sample stream buffer size.  The default
+	// value of DefBufCap should suffice for most uses. If there is a need
+	// to increase the value, a multiple of 500 is recommended (because that
+	// is the internal buffer size of the underlying package
+	// "github.com/bmizerany/perks/quantile").
+	BufCap uint32
+}
+
+// Great fuck-up with the sliding-window decay algorithm... The Merge method of
+// perk/quantile is actually not working as advertised - and it might be
+// unfixable, as the underlying algorithm is apparently not capable of merging
+// summaries in the first place. To avoid using Merge, we are currently adding
+// observations to _each_ age bucket, i.e. the effort to add a sample is
+// essentially multiplied by the number of age buckets. When rotating age
+// buckets, we empty the previous head stream. On scrape time, we simply take
+// the quantiles from the head stream (no merging required). Result: More effort
+// on observation time, less effort on scrape time, which is exactly the
+// opposite of what we try to accomplish, but at least the results are correct.
+//
+// The quite elegant previous contraption to merge the age buckets efficiently
+// on scrape time (see code up commit 6b9530d72ea715f0ba612c0120e6e09fbf1d49d0)
+// can't be used anymore.
+
+// NewSummary creates a new Summary based on the provided SummaryOpts.
+func NewSummary(opts SummaryOpts) Summary {
+	return newSummary(
+		NewDesc(
+			BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+			opts.Help,
+			nil,
+			opts.ConstLabels,
+		),
+		opts,
+	)
+}
+
+func newSummary(desc *Desc, opts SummaryOpts, labelValues ...string) Summary {
+	if len(desc.variableLabels) != len(labelValues) {
+		panic(errInconsistentCardinality)
+	}
+
+	for _, n := range desc.variableLabels {
+		if n == quantileLabel {
+			panic(errQuantileLabelNotAllowed)
+		}
+	}
+	for _, lp := range desc.constLabelPairs {
+		if lp.GetName() == quantileLabel {
+			panic(errQuantileLabelNotAllowed)
+		}
+	}
+
+	if opts.Objectives == nil {
+		opts.Objectives = DefObjectives
+	}
+
+	if opts.MaxAge < 0 {
+		panic(fmt.Errorf("illegal max age MaxAge=%v", opts.MaxAge))
+	}
+	if opts.MaxAge == 0 {
+		opts.MaxAge = DefMaxAge
+	}
+
+	if opts.AgeBuckets == 0 {
+		opts.AgeBuckets = DefAgeBuckets
+	}
+
+	if opts.BufCap == 0 {
+		opts.BufCap = DefBufCap
+	}
+
+	s := &summary{
+		desc: desc,
+
+		objectives:       opts.Objectives,
+		sortedObjectives: make([]float64, 0, len(opts.Objectives)),
+
+		labelPairs: makeLabelPairs(desc, labelValues),
+
+		hotBuf:         make([]float64, 0, opts.BufCap),
+		coldBuf:        make([]float64, 0, opts.BufCap),
+		streamDuration: opts.MaxAge / time.Duration(opts.AgeBuckets),
+	}
+	s.headStreamExpTime = time.Now().Add(s.streamDuration)
+	s.hotBufExpTime = s.headStreamExpTime
+
+	for i := uint32(0); i < opts.AgeBuckets; i++ {
+		s.streams = append(s.streams, s.newStream())
+	}
+	s.headStream = s.streams[0]
+
+	for qu := range s.objectives {
+		s.sortedObjectives = append(s.sortedObjectives, qu)
+	}
+	sort.Float64s(s.sortedObjectives)
+
+	s.init(s) // Init self-collection.
+	return s
+}
+
+type summary struct {
+	selfCollector
+
+	bufMtx sync.Mutex // Protects hotBuf and hotBufExpTime.
+	mtx    sync.Mutex // Protects every other moving part.
+	// Lock bufMtx before mtx if both are needed.
+
+	desc *Desc
+
+	objectives       map[float64]float64
+	sortedObjectives []float64
+
+	labelPairs []*dto.LabelPair
+
+	sum float64
+	cnt uint64
+
+	hotBuf, coldBuf []float64
+
+	streams                          []*quantile.Stream
+	streamDuration                   time.Duration
+	headStream                       *quantile.Stream
+	headStreamIdx                    int
+	headStreamExpTime, hotBufExpTime time.Time
+}
+
+func (s *summary) Desc() *Desc {
+	return s.desc
+}
+
+func (s *summary) Observe(v float64) {
+	s.bufMtx.Lock()
+	defer s.bufMtx.Unlock()
+
+	now := time.Now()
+	if now.After(s.hotBufExpTime) {
+		s.asyncFlush(now)
+	}
+	s.hotBuf = append(s.hotBuf, v)
+	if len(s.hotBuf) == cap(s.hotBuf) {
+		s.asyncFlush(now)
+	}
+}
+
+func (s *summary) Write(out *dto.Metric) error {
+	sum := &dto.Summary{}
+	qs := make([]*dto.Quantile, 0, len(s.objectives))
+
+	s.bufMtx.Lock()
+	s.mtx.Lock()
+	// Swap bufs even if hotBuf is empty to set new hotBufExpTime.
+	s.swapBufs(time.Now())
+	s.bufMtx.Unlock()
+
+	s.flushColdBuf()
+	sum.SampleCount = proto.Uint64(s.cnt)
+	sum.SampleSum = proto.Float64(s.sum)
+
+	for _, rank := range s.sortedObjectives {
+		var q float64
+		if s.headStream.Count() == 0 {
+			q = math.NaN()
+		} else {
+			q = s.headStream.Query(rank)
+		}
+		qs = append(qs, &dto.Quantile{
+			Quantile: proto.Float64(rank),
+			Value:    proto.Float64(q),
+		})
+	}
+
+	s.mtx.Unlock()
+
+	if len(qs) > 0 {
+		sort.Sort(quantSort(qs))
+	}
+	sum.Quantile = qs
+
+	out.Summary = sum
+	out.Label = s.labelPairs
+	return nil
+}
+
+func (s *summary) newStream() *quantile.Stream {
+	return quantile.NewTargeted(s.objectives)
+}
+
+// asyncFlush needs bufMtx locked.
+func (s *summary) asyncFlush(now time.Time) {
+	s.mtx.Lock()
+	s.swapBufs(now)
+
+	// Unblock the original goroutine that was responsible for the mutation
+	// that triggered the compaction.  But hold onto the global non-buffer
+	// state mutex until the operation finishes.
+	go func() {
+		s.flushColdBuf()
+		s.mtx.Unlock()
+	}()
+}
+
+// rotateStreams needs mtx AND bufMtx locked.
+func (s *summary) maybeRotateStreams() {
+	for !s.hotBufExpTime.Equal(s.headStreamExpTime) {
+		s.headStream.Reset()
+		s.headStreamIdx++
+		if s.headStreamIdx >= len(s.streams) {
+			s.headStreamIdx = 0
+		}
+		s.headStream = s.streams[s.headStreamIdx]
+		s.headStreamExpTime = s.headStreamExpTime.Add(s.streamDuration)
+	}
+}
+
+// flushColdBuf needs mtx locked.
+func (s *summary) flushColdBuf() {
+	for _, v := range s.coldBuf {
+		for _, stream := range s.streams {
+			stream.Insert(v)
+		}
+		s.cnt++
+		s.sum += v
+	}
+	s.coldBuf = s.coldBuf[0:0]
+	s.maybeRotateStreams()
+}
+
+// swapBufs needs mtx AND bufMtx locked, coldBuf must be empty.
+func (s *summary) swapBufs(now time.Time) {
+	if len(s.coldBuf) != 0 {
+		panic("coldBuf is not empty")
+	}
+	s.hotBuf, s.coldBuf = s.coldBuf, s.hotBuf
+	// hotBuf is now empty and gets new expiration set.
+	for now.After(s.hotBufExpTime) {
+		s.hotBufExpTime = s.hotBufExpTime.Add(s.streamDuration)
+	}
+}
+
+type quantSort []*dto.Quantile
+
+func (s quantSort) Len() int {
+	return len(s)
+}
+
+func (s quantSort) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+func (s quantSort) Less(i, j int) bool {
+	return s[i].GetQuantile() < s[j].GetQuantile()
+}
+
+// SummaryVec is a Collector that bundles a set of Summaries that all share the
+// same Desc, but have different values for their variable labels. This is used
+// if you want to count the same thing partitioned by various dimensions
+// (e.g. HTTP request latencies, partitioned by status code and method). Create
+// instances with NewSummaryVec.
+type SummaryVec struct {
+	*metricVec
+}
+
+// NewSummaryVec creates a new SummaryVec based on the provided SummaryOpts and
+// partitioned by the given label names.
+func NewSummaryVec(opts SummaryOpts, labelNames []string) *SummaryVec {
+	desc := NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		labelNames,
+		opts.ConstLabels,
+	)
+	return &SummaryVec{
+		metricVec: newMetricVec(desc, func(lvs ...string) Metric {
+			return newSummary(desc, opts, lvs...)
+		}),
+	}
+}
+
+// GetMetricWithLabelValues returns the Summary for the given slice of label
+// values (same order as the VariableLabels in Desc). If that combination of
+// label values is accessed for the first time, a new Summary is created.
+//
+// It is possible to call this method without using the returned Summary to only
+// create the new Summary but leave it at its starting value, a Summary without
+// any observations.
+//
+// Keeping the Summary for later use is possible (and should be considered if
+// performance is critical), but keep in mind that Reset, DeleteLabelValues and
+// Delete can be used to delete the Summary from the SummaryVec. In that case,
+// the Summary will still exist, but it will not be exported anymore, even if a
+// Summary with the same label values is created later. See also the CounterVec
+// example.
+//
+// An error is returned if the number of label values is not the same as the
+// number of VariableLabels in Desc (minus any curried labels).
+//
+// Note that for more than one label value, this method is prone to mistakes
+// caused by an incorrect order of arguments. Consider GetMetricWith(Labels) as
+// an alternative to avoid that type of mistake. For higher label numbers, the
+// latter has a much more readable (albeit more verbose) syntax, but it comes
+// with a performance overhead (for creating and processing the Labels map).
+// See also the GaugeVec example.
+func (v *SummaryVec) GetMetricWithLabelValues(lvs ...string) (Observer, error) {
+	metric, err := v.metricVec.getMetricWithLabelValues(lvs...)
+	if metric != nil {
+		return metric.(Observer), err
+	}
+	return nil, err
+}
+
+// GetMetricWith returns the Summary for the given Labels map (the label names
+// must match those of the VariableLabels in Desc). If that label map is
+// accessed for the first time, a new Summary is created. Implications of
+// creating a Summary without using it and keeping the Summary for later use are
+// the same as for GetMetricWithLabelValues.
+//
+// An error is returned if the number and names of the Labels are inconsistent
+// with those of the VariableLabels in Desc (minus any curried labels).
+//
+// This method is used for the same purpose as
+// GetMetricWithLabelValues(...string). See there for pros and cons of the two
+// methods.
+func (v *SummaryVec) GetMetricWith(labels Labels) (Observer, error) {
+	metric, err := v.metricVec.getMetricWith(labels)
+	if metric != nil {
+		return metric.(Observer), err
+	}
+	return nil, err
+}
+
+// WithLabelValues works as GetMetricWithLabelValues, but panics where
+// GetMetricWithLabelValues would have returned an error. Not returning an
+// error allows shortcuts like
+//     myVec.WithLabelValues("404", "GET").Observe(42.21)
+func (v *SummaryVec) WithLabelValues(lvs ...string) Observer {
+	s, err := v.GetMetricWithLabelValues(lvs...)
+	if err != nil {
+		panic(err)
+	}
+	return s
+}
+
+// With works as GetMetricWith, but panics where GetMetricWithLabels would have
+// returned an error. Not returning an error allows shortcuts like
+//     myVec.With(prometheus.Labels{"code": "404", "method": "GET"}).Observe(42.21)
+func (v *SummaryVec) With(labels Labels) Observer {
+	s, err := v.GetMetricWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return s
+}
+
+// CurryWith returns a vector curried with the provided labels, i.e. the
+// returned vector has those labels pre-set for all labeled operations performed
+// on it. The cardinality of the curried vector is reduced accordingly. The
+// order of the remaining labels stays the same (just with the curried labels
+// taken out of the sequence – which is relevant for the
+// (GetMetric)WithLabelValues methods). It is possible to curry a curried
+// vector, but only with labels not yet used for currying before.
+//
+// The metrics contained in the SummaryVec are shared between the curried and
+// uncurried vectors. They are just accessed differently. Curried and uncurried
+// vectors behave identically in terms of collection. Only one must be
+// registered with a given registry (usually the uncurried version). The Reset
+// method deletes all metrics, even if called on a curried vector.
+func (v *SummaryVec) CurryWith(labels Labels) (ObserverVec, error) {
+	vec, err := v.curryWith(labels)
+	if vec != nil {
+		return &SummaryVec{vec}, err
+	}
+	return nil, err
+}
+
+// MustCurryWith works as CurryWith but panics where CurryWith would have
+// returned an error.
+func (v *SummaryVec) MustCurryWith(labels Labels) ObserverVec {
+	vec, err := v.CurryWith(labels)
+	if err != nil {
+		panic(err)
+	}
+	return vec
+}
+
+type constSummary struct {
+	desc       *Desc
+	count      uint64
+	sum        float64
+	quantiles  map[float64]float64
+	labelPairs []*dto.LabelPair
+}
+
+func (s *constSummary) Desc() *Desc {
+	return s.desc
+}
+
+func (s *constSummary) Write(out *dto.Metric) error {
+	sum := &dto.Summary{}
+	qs := make([]*dto.Quantile, 0, len(s.quantiles))
+
+	sum.SampleCount = proto.Uint64(s.count)
+	sum.SampleSum = proto.Float64(s.sum)
+
+	for rank, q := range s.quantiles {
+		qs = append(qs, &dto.Quantile{
+			Quantile: proto.Float64(rank),
+			Value:    proto.Float64(q),
+		})
+	}
+
+	if len(qs) > 0 {
+		sort.Sort(quantSort(qs))
+	}
+	sum.Quantile = qs
+
+	out.Summary = sum
+	out.Label = s.labelPairs
+
+	return nil
+}
+
+// NewConstSummary returns a metric representing a Prometheus summary with fixed
+// values for the count, sum, and quantiles. As those parameters cannot be
+// changed, the returned value does not implement the Summary interface (but
+// only the Metric interface). Users of this package will not have much use for
+// it in regular operations. However, when implementing custom Collectors, it is
+// useful as a throw-away metric that is generated on the fly to send it to
+// Prometheus in the Collect method.
+//
+// quantiles maps ranks to quantile values. For example, a median latency of
+// 0.23s and a 99th percentile latency of 0.56s would be expressed as:
+//     map[float64]float64{0.5: 0.23, 0.99: 0.56}
+//
+// NewConstSummary returns an error if the length of labelValues is not
+// consistent with the variable labels in Desc.
+func NewConstSummary(
+	desc *Desc,
+	count uint64,
+	sum float64,
+	quantiles map[float64]float64,
+	labelValues ...string,
+) (Metric, error) {
+	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
+		return nil, err
+	}
+	return &constSummary{
+		desc:       desc,
+		count:      count,
+		sum:        sum,
+		quantiles:  quantiles,
+		labelPairs: makeLabelPairs(desc, labelValues),
+	}, nil
+}
+
+// MustNewConstSummary is a version of NewConstSummary that panics where
+// NewConstMetric would have returned an error.
+func MustNewConstSummary(
+	desc *Desc,
+	count uint64,
+	sum float64,
+	quantiles map[float64]float64,
+	labelValues ...string,
+) Metric {
+	m, err := NewConstSummary(desc, count, sum, quantiles, labelValues...)
+	if err != nil {
+		panic(err)
+	}
+	return m
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/timer.go b/vendor/github.com/prometheus/client_golang/prometheus/timer.go
new file mode 100644
index 0000000000..b8fc5f18c8
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/timer.go
@@ -0,0 +1,51 @@
+// Copyright 2016 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import "time"
+
+// Timer is a helper type to time functions. Use NewTimer to create new
+// instances.
+type Timer struct {
+	begin    time.Time
+	observer Observer
+}
+
+// NewTimer creates a new Timer. The provided Observer is used to observe a
+// duration in seconds. Timer is usually used to time a function call in the
+// following way:
+//    func TimeMe() {
+//        timer := NewTimer(myHistogram)
+//        defer timer.ObserveDuration()
+//        // Do actual work.
+//    }
+func NewTimer(o Observer) *Timer {
+	return &Timer{
+		begin:    time.Now(),
+		observer: o,
+	}
+}
+
+// ObserveDuration records the duration passed since the Timer was created with
+// NewTimer. It calls the Observe method of the Observer provided during
+// construction with the duration in seconds as an argument. ObserveDuration is
+// usually called with a defer statement.
+//
+// Note that this method is only guaranteed to never observe negative durations
+// if used with Go1.9+.
+func (t *Timer) ObserveDuration() {
+	if t.observer != nil {
+		t.observer.Observe(time.Since(t.begin).Seconds())
+	}
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/untyped.go b/vendor/github.com/prometheus/client_golang/prometheus/untyped.go
new file mode 100644
index 0000000000..0f9ce63f40
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/untyped.go
@@ -0,0 +1,42 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+// UntypedOpts is an alias for Opts. See there for doc comments.
+type UntypedOpts Opts
+
+// UntypedFunc works like GaugeFunc but the collected metric is of type
+// "Untyped". UntypedFunc is useful to mirror an external metric of unknown
+// type.
+//
+// To create UntypedFunc instances, use NewUntypedFunc.
+type UntypedFunc interface {
+	Metric
+	Collector
+}
+
+// NewUntypedFunc creates a new UntypedFunc based on the provided
+// UntypedOpts. The value reported is determined by calling the given function
+// from within the Write method. Take into account that metric collection may
+// happen concurrently. If that results in concurrent calls to Write, like in
+// the case where an UntypedFunc is directly registered with Prometheus, the
+// provided function must be concurrency-safe.
+func NewUntypedFunc(opts UntypedOpts, function func() float64) UntypedFunc {
+	return newValueFunc(NewDesc(
+		BuildFQName(opts.Namespace, opts.Subsystem, opts.Name),
+		opts.Help,
+		nil,
+		opts.ConstLabels,
+	), UntypedValue, function)
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/value.go b/vendor/github.com/prometheus/client_golang/prometheus/value.go
new file mode 100644
index 0000000000..543b57c27e
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/value.go
@@ -0,0 +1,160 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"fmt"
+	"sort"
+
+	dto "github.com/prometheus/client_model/go"
+
+	"github.com/golang/protobuf/proto"
+)
+
+// ValueType is an enumeration of metric types that represent a simple value.
+type ValueType int
+
+// Possible values for the ValueType enum.
+const (
+	_ ValueType = iota
+	CounterValue
+	GaugeValue
+	UntypedValue
+)
+
+// valueFunc is a generic metric for simple values retrieved on collect time
+// from a function. It implements Metric and Collector. Its effective type is
+// determined by ValueType. This is a low-level building block used by the
+// library to back the implementations of CounterFunc, GaugeFunc, and
+// UntypedFunc.
+type valueFunc struct {
+	selfCollector
+
+	desc       *Desc
+	valType    ValueType
+	function   func() float64
+	labelPairs []*dto.LabelPair
+}
+
+// newValueFunc returns a newly allocated valueFunc with the given Desc and
+// ValueType. The value reported is determined by calling the given function
+// from within the Write method. Take into account that metric collection may
+// happen concurrently. If that results in concurrent calls to Write, like in
+// the case where a valueFunc is directly registered with Prometheus, the
+// provided function must be concurrency-safe.
+func newValueFunc(desc *Desc, valueType ValueType, function func() float64) *valueFunc {
+	result := &valueFunc{
+		desc:       desc,
+		valType:    valueType,
+		function:   function,
+		labelPairs: makeLabelPairs(desc, nil),
+	}
+	result.init(result)
+	return result
+}
+
+func (v *valueFunc) Desc() *Desc {
+	return v.desc
+}
+
+func (v *valueFunc) Write(out *dto.Metric) error {
+	return populateMetric(v.valType, v.function(), v.labelPairs, out)
+}
+
+// NewConstMetric returns a metric with one fixed value that cannot be
+// changed. Users of this package will not have much use for it in regular
+// operations. However, when implementing custom Collectors, it is useful as a
+// throw-away metric that is generated on the fly to send it to Prometheus in
+// the Collect method. NewConstMetric returns an error if the length of
+// labelValues is not consistent with the variable labels in Desc.
+func NewConstMetric(desc *Desc, valueType ValueType, value float64, labelValues ...string) (Metric, error) {
+	if err := validateLabelValues(labelValues, len(desc.variableLabels)); err != nil {
+		return nil, err
+	}
+	return &constMetric{
+		desc:       desc,
+		valType:    valueType,
+		val:        value,
+		labelPairs: makeLabelPairs(desc, labelValues),
+	}, nil
+}
+
+// MustNewConstMetric is a version of NewConstMetric that panics where
+// NewConstMetric would have returned an error.
+func MustNewConstMetric(desc *Desc, valueType ValueType, value float64, labelValues ...string) Metric {
+	m, err := NewConstMetric(desc, valueType, value, labelValues...)
+	if err != nil {
+		panic(err)
+	}
+	return m
+}
+
+type constMetric struct {
+	desc       *Desc
+	valType    ValueType
+	val        float64
+	labelPairs []*dto.LabelPair
+}
+
+func (m *constMetric) Desc() *Desc {
+	return m.desc
+}
+
+func (m *constMetric) Write(out *dto.Metric) error {
+	return populateMetric(m.valType, m.val, m.labelPairs, out)
+}
+
+func populateMetric(
+	t ValueType,
+	v float64,
+	labelPairs []*dto.LabelPair,
+	m *dto.Metric,
+) error {
+	m.Label = labelPairs
+	switch t {
+	case CounterValue:
+		m.Counter = &dto.Counter{Value: proto.Float64(v)}
+	case GaugeValue:
+		m.Gauge = &dto.Gauge{Value: proto.Float64(v)}
+	case UntypedValue:
+		m.Untyped = &dto.Untyped{Value: proto.Float64(v)}
+	default:
+		return fmt.Errorf("encountered unknown type %v", t)
+	}
+	return nil
+}
+
+func makeLabelPairs(desc *Desc, labelValues []string) []*dto.LabelPair {
+	totalLen := len(desc.variableLabels) + len(desc.constLabelPairs)
+	if totalLen == 0 {
+		// Super fast path.
+		return nil
+	}
+	if len(desc.variableLabels) == 0 {
+		// Moderately fast path.
+		return desc.constLabelPairs
+	}
+	labelPairs := make([]*dto.LabelPair, 0, totalLen)
+	for i, n := range desc.variableLabels {
+		labelPairs = append(labelPairs, &dto.LabelPair{
+			Name:  proto.String(n),
+			Value: proto.String(labelValues[i]),
+		})
+	}
+	for _, lp := range desc.constLabelPairs {
+		labelPairs = append(labelPairs, lp)
+	}
+	sort.Sort(LabelPairSorter(labelPairs))
+	return labelPairs
+}
diff --git a/vendor/github.com/prometheus/client_golang/prometheus/vec.go b/vendor/github.com/prometheus/client_golang/prometheus/vec.go
new file mode 100644
index 0000000000..cea1582499
--- /dev/null
+++ b/vendor/github.com/prometheus/client_golang/prometheus/vec.go
@@ -0,0 +1,469 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package prometheus
+
+import (
+	"fmt"
+	"sync"
+
+	"github.com/prometheus/common/model"
+)
+
+// metricVec is a Collector to bundle metrics of the same name that differ in
+// their label values. metricVec is not used directly (and therefore
+// unexported). It is used as a building block for implementations of vectors of
+// a given metric type, like GaugeVec, CounterVec, SummaryVec, and HistogramVec.
+// It also handles label currying. It uses basicMetricVec internally.
+type metricVec struct {
+	*metricMap
+
+	curry []curriedLabelValue
+
+	// hashAdd and hashAddByte can be replaced for testing collision handling.
+	hashAdd     func(h uint64, s string) uint64
+	hashAddByte func(h uint64, b byte) uint64
+}
+
+// newMetricVec returns an initialized metricVec.
+func newMetricVec(desc *Desc, newMetric func(lvs ...string) Metric) *metricVec {
+	return &metricVec{
+		metricMap: &metricMap{
+			metrics:   map[uint64][]metricWithLabelValues{},
+			desc:      desc,
+			newMetric: newMetric,
+		},
+		hashAdd:     hashAdd,
+		hashAddByte: hashAddByte,
+	}
+}
+
+// DeleteLabelValues removes the metric where the variable labels are the same
+// as those passed in as labels (same order as the VariableLabels in Desc). It
+// returns true if a metric was deleted.
+//
+// It is not an error if the number of label values is not the same as the
+// number of VariableLabels in Desc. However, such inconsistent label count can
+// never match an actual metric, so the method will always return false in that
+// case.
+//
+// Note that for more than one label value, this method is prone to mistakes
+// caused by an incorrect order of arguments. Consider Delete(Labels) as an
+// alternative to avoid that type of mistake. For higher label numbers, the
+// latter has a much more readable (albeit more verbose) syntax, but it comes
+// with a performance overhead (for creating and processing the Labels map).
+// See also the CounterVec example.
+func (m *metricVec) DeleteLabelValues(lvs ...string) bool {
+	h, err := m.hashLabelValues(lvs)
+	if err != nil {
+		return false
+	}
+
+	return m.metricMap.deleteByHashWithLabelValues(h, lvs, m.curry)
+}
+
+// Delete deletes the metric where the variable labels are the same as those
+// passed in as labels. It returns true if a metric was deleted.
+//
+// It is not an error if the number and names of the Labels are inconsistent
+// with those of the VariableLabels in Desc. However, such inconsistent Labels
+// can never match an actual metric, so the method will always return false in
+// that case.
+//
+// This method is used for the same purpose as DeleteLabelValues(...string). See
+// there for pros and cons of the two methods.
+func (m *metricVec) Delete(labels Labels) bool {
+	h, err := m.hashLabels(labels)
+	if err != nil {
+		return false
+	}
+
+	return m.metricMap.deleteByHashWithLabels(h, labels, m.curry)
+}
+
+func (m *metricVec) curryWith(labels Labels) (*metricVec, error) {
+	var (
+		newCurry []curriedLabelValue
+		oldCurry = m.curry
+		iCurry   int
+	)
+	for i, label := range m.desc.variableLabels {
+		val, ok := labels[label]
+		if iCurry < len(oldCurry) && oldCurry[iCurry].index == i {
+			if ok {
+				return nil, fmt.Errorf("label name %q is already curried", label)
+			}
+			newCurry = append(newCurry, oldCurry[iCurry])
+			iCurry++
+		} else {
+			if !ok {
+				continue // Label stays uncurried.
+			}
+			newCurry = append(newCurry, curriedLabelValue{i, val})
+		}
+	}
+	if l := len(oldCurry) + len(labels) - len(newCurry); l > 0 {
+		return nil, fmt.Errorf("%d unknown label(s) found during currying", l)
+	}
+
+	return &metricVec{
+		metricMap:   m.metricMap,
+		curry:       newCurry,
+		hashAdd:     m.hashAdd,
+		hashAddByte: m.hashAddByte,
+	}, nil
+}
+
+func (m *metricVec) getMetricWithLabelValues(lvs ...string) (Metric, error) {
+	h, err := m.hashLabelValues(lvs)
+	if err != nil {
+		return nil, err
+	}
+
+	return m.metricMap.getOrCreateMetricWithLabelValues(h, lvs, m.curry), nil
+}
+
+func (m *metricVec) getMetricWith(labels Labels) (Metric, error) {
+	h, err := m.hashLabels(labels)
+	if err != nil {
+		return nil, err
+	}
+
+	return m.metricMap.getOrCreateMetricWithLabels(h, labels, m.curry), nil
+}
+
+func (m *metricVec) hashLabelValues(vals []string) (uint64, error) {
+	if err := validateLabelValues(vals, len(m.desc.variableLabels)-len(m.curry)); err != nil {
+		return 0, err
+	}
+
+	var (
+		h             = hashNew()
+		curry         = m.curry
+		iVals, iCurry int
+	)
+	for i := 0; i < len(m.desc.variableLabels); i++ {
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			h = m.hashAdd(h, curry[iCurry].value)
+			iCurry++
+		} else {
+			h = m.hashAdd(h, vals[iVals])
+			iVals++
+		}
+		h = m.hashAddByte(h, model.SeparatorByte)
+	}
+	return h, nil
+}
+
+func (m *metricVec) hashLabels(labels Labels) (uint64, error) {
+	if err := validateValuesInLabels(labels, len(m.desc.variableLabels)-len(m.curry)); err != nil {
+		return 0, err
+	}
+
+	var (
+		h      = hashNew()
+		curry  = m.curry
+		iCurry int
+	)
+	for i, label := range m.desc.variableLabels {
+		val, ok := labels[label]
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			if ok {
+				return 0, fmt.Errorf("label name %q is already curried", label)
+			}
+			h = m.hashAdd(h, curry[iCurry].value)
+			iCurry++
+		} else {
+			if !ok {
+				return 0, fmt.Errorf("label name %q missing in label map", label)
+			}
+			h = m.hashAdd(h, val)
+		}
+		h = m.hashAddByte(h, model.SeparatorByte)
+	}
+	return h, nil
+}
+
+// metricWithLabelValues provides the metric and its label values for
+// disambiguation on hash collision.
+type metricWithLabelValues struct {
+	values []string
+	metric Metric
+}
+
+// curriedLabelValue sets the curried value for a label at the given index.
+type curriedLabelValue struct {
+	index int
+	value string
+}
+
+// metricMap is a helper for metricVec and shared between differently curried
+// metricVecs.
+type metricMap struct {
+	mtx       sync.RWMutex // Protects metrics.
+	metrics   map[uint64][]metricWithLabelValues
+	desc      *Desc
+	newMetric func(labelValues ...string) Metric
+}
+
+// Describe implements Collector. It will send exactly one Desc to the provided
+// channel.
+func (m *metricMap) Describe(ch chan<- *Desc) {
+	ch <- m.desc
+}
+
+// Collect implements Collector.
+func (m *metricMap) Collect(ch chan<- Metric) {
+	m.mtx.RLock()
+	defer m.mtx.RUnlock()
+
+	for _, metrics := range m.metrics {
+		for _, metric := range metrics {
+			ch <- metric.metric
+		}
+	}
+}
+
+// Reset deletes all metrics in this vector.
+func (m *metricMap) Reset() {
+	m.mtx.Lock()
+	defer m.mtx.Unlock()
+
+	for h := range m.metrics {
+		delete(m.metrics, h)
+	}
+}
+
+// deleteByHashWithLabelValues removes the metric from the hash bucket h. If
+// there are multiple matches in the bucket, use lvs to select a metric and
+// remove only that metric.
+func (m *metricMap) deleteByHashWithLabelValues(
+	h uint64, lvs []string, curry []curriedLabelValue,
+) bool {
+	m.mtx.Lock()
+	defer m.mtx.Unlock()
+
+	metrics, ok := m.metrics[h]
+	if !ok {
+		return false
+	}
+
+	i := findMetricWithLabelValues(metrics, lvs, curry)
+	if i >= len(metrics) {
+		return false
+	}
+
+	if len(metrics) > 1 {
+		m.metrics[h] = append(metrics[:i], metrics[i+1:]...)
+	} else {
+		delete(m.metrics, h)
+	}
+	return true
+}
+
+// deleteByHashWithLabels removes the metric from the hash bucket h. If there
+// are multiple matches in the bucket, use lvs to select a metric and remove
+// only that metric.
+func (m *metricMap) deleteByHashWithLabels(
+	h uint64, labels Labels, curry []curriedLabelValue,
+) bool {
+	metrics, ok := m.metrics[h]
+	if !ok {
+		return false
+	}
+	i := findMetricWithLabels(m.desc, metrics, labels, curry)
+	if i >= len(metrics) {
+		return false
+	}
+
+	if len(metrics) > 1 {
+		m.metrics[h] = append(metrics[:i], metrics[i+1:]...)
+	} else {
+		delete(m.metrics, h)
+	}
+	return true
+}
+
+// getOrCreateMetricWithLabelValues retrieves the metric by hash and label value
+// or creates it and returns the new one.
+//
+// This function holds the mutex.
+func (m *metricMap) getOrCreateMetricWithLabelValues(
+	hash uint64, lvs []string, curry []curriedLabelValue,
+) Metric {
+	m.mtx.RLock()
+	metric, ok := m.getMetricWithHashAndLabelValues(hash, lvs, curry)
+	m.mtx.RUnlock()
+	if ok {
+		return metric
+	}
+
+	m.mtx.Lock()
+	defer m.mtx.Unlock()
+	metric, ok = m.getMetricWithHashAndLabelValues(hash, lvs, curry)
+	if !ok {
+		inlinedLVs := inlineLabelValues(lvs, curry)
+		metric = m.newMetric(inlinedLVs...)
+		m.metrics[hash] = append(m.metrics[hash], metricWithLabelValues{values: inlinedLVs, metric: metric})
+	}
+	return metric
+}
+
+// getOrCreateMetricWithLabelValues retrieves the metric by hash and label value
+// or creates it and returns the new one.
+//
+// This function holds the mutex.
+func (m *metricMap) getOrCreateMetricWithLabels(
+	hash uint64, labels Labels, curry []curriedLabelValue,
+) Metric {
+	m.mtx.RLock()
+	metric, ok := m.getMetricWithHashAndLabels(hash, labels, curry)
+	m.mtx.RUnlock()
+	if ok {
+		return metric
+	}
+
+	m.mtx.Lock()
+	defer m.mtx.Unlock()
+	metric, ok = m.getMetricWithHashAndLabels(hash, labels, curry)
+	if !ok {
+		lvs := extractLabelValues(m.desc, labels, curry)
+		metric = m.newMetric(lvs...)
+		m.metrics[hash] = append(m.metrics[hash], metricWithLabelValues{values: lvs, metric: metric})
+	}
+	return metric
+}
+
+// getMetricWithHashAndLabelValues gets a metric while handling possible
+// collisions in the hash space. Must be called while holding the read mutex.
+func (m *metricMap) getMetricWithHashAndLabelValues(
+	h uint64, lvs []string, curry []curriedLabelValue,
+) (Metric, bool) {
+	metrics, ok := m.metrics[h]
+	if ok {
+		if i := findMetricWithLabelValues(metrics, lvs, curry); i < len(metrics) {
+			return metrics[i].metric, true
+		}
+	}
+	return nil, false
+}
+
+// getMetricWithHashAndLabels gets a metric while handling possible collisions in
+// the hash space. Must be called while holding read mutex.
+func (m *metricMap) getMetricWithHashAndLabels(
+	h uint64, labels Labels, curry []curriedLabelValue,
+) (Metric, bool) {
+	metrics, ok := m.metrics[h]
+	if ok {
+		if i := findMetricWithLabels(m.desc, metrics, labels, curry); i < len(metrics) {
+			return metrics[i].metric, true
+		}
+	}
+	return nil, false
+}
+
+// findMetricWithLabelValues returns the index of the matching metric or
+// len(metrics) if not found.
+func findMetricWithLabelValues(
+	metrics []metricWithLabelValues, lvs []string, curry []curriedLabelValue,
+) int {
+	for i, metric := range metrics {
+		if matchLabelValues(metric.values, lvs, curry) {
+			return i
+		}
+	}
+	return len(metrics)
+}
+
+// findMetricWithLabels returns the index of the matching metric or len(metrics)
+// if not found.
+func findMetricWithLabels(
+	desc *Desc, metrics []metricWithLabelValues, labels Labels, curry []curriedLabelValue,
+) int {
+	for i, metric := range metrics {
+		if matchLabels(desc, metric.values, labels, curry) {
+			return i
+		}
+	}
+	return len(metrics)
+}
+
+func matchLabelValues(values []string, lvs []string, curry []curriedLabelValue) bool {
+	if len(values) != len(lvs)+len(curry) {
+		return false
+	}
+	var iLVs, iCurry int
+	for i, v := range values {
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			if v != curry[iCurry].value {
+				return false
+			}
+			iCurry++
+			continue
+		}
+		if v != lvs[iLVs] {
+			return false
+		}
+		iLVs++
+	}
+	return true
+}
+
+func matchLabels(desc *Desc, values []string, labels Labels, curry []curriedLabelValue) bool {
+	if len(values) != len(labels)+len(curry) {
+		return false
+	}
+	iCurry := 0
+	for i, k := range desc.variableLabels {
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			if values[i] != curry[iCurry].value {
+				return false
+			}
+			iCurry++
+			continue
+		}
+		if values[i] != labels[k] {
+			return false
+		}
+	}
+	return true
+}
+
+func extractLabelValues(desc *Desc, labels Labels, curry []curriedLabelValue) []string {
+	labelValues := make([]string, len(labels)+len(curry))
+	iCurry := 0
+	for i, k := range desc.variableLabels {
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			labelValues[i] = curry[iCurry].value
+			iCurry++
+			continue
+		}
+		labelValues[i] = labels[k]
+	}
+	return labelValues
+}
+
+func inlineLabelValues(lvs []string, curry []curriedLabelValue) []string {
+	labelValues := make([]string, len(lvs)+len(curry))
+	var iCurry, iLVs int
+	for i := range labelValues {
+		if iCurry < len(curry) && curry[iCurry].index == i {
+			labelValues[i] = curry[iCurry].value
+			iCurry++
+			continue
+		}
+		labelValues[i] = lvs[iLVs]
+		iLVs++
+	}
+	return labelValues
+}
diff --git a/vendor/github.com/prometheus/client_model/LICENSE b/vendor/github.com/prometheus/client_model/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/prometheus/client_model/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/prometheus/client_model/NOTICE b/vendor/github.com/prometheus/client_model/NOTICE
new file mode 100644
index 0000000000..20110e410e
--- /dev/null
+++ b/vendor/github.com/prometheus/client_model/NOTICE
@@ -0,0 +1,5 @@
+Data model artifacts for Prometheus.
+Copyright 2012-2015 The Prometheus Authors
+
+This product includes software developed at
+SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/client_model/go/metrics.pb.go b/vendor/github.com/prometheus/client_model/go/metrics.pb.go
new file mode 100644
index 0000000000..b065f8683f
--- /dev/null
+++ b/vendor/github.com/prometheus/client_model/go/metrics.pb.go
@@ -0,0 +1,364 @@
+// Code generated by protoc-gen-go.
+// source: metrics.proto
+// DO NOT EDIT!
+
+/*
+Package io_prometheus_client is a generated protocol buffer package.
+
+It is generated from these files:
+	metrics.proto
+
+It has these top-level messages:
+	LabelPair
+	Gauge
+	Counter
+	Quantile
+	Summary
+	Untyped
+	Histogram
+	Bucket
+	Metric
+	MetricFamily
+*/
+package io_prometheus_client
+
+import proto "github.com/golang/protobuf/proto"
+import math "math"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = math.Inf
+
+type MetricType int32
+
+const (
+	MetricType_COUNTER   MetricType = 0
+	MetricType_GAUGE     MetricType = 1
+	MetricType_SUMMARY   MetricType = 2
+	MetricType_UNTYPED   MetricType = 3
+	MetricType_HISTOGRAM MetricType = 4
+)
+
+var MetricType_name = map[int32]string{
+	0: "COUNTER",
+	1: "GAUGE",
+	2: "SUMMARY",
+	3: "UNTYPED",
+	4: "HISTOGRAM",
+}
+var MetricType_value = map[string]int32{
+	"COUNTER":   0,
+	"GAUGE":     1,
+	"SUMMARY":   2,
+	"UNTYPED":   3,
+	"HISTOGRAM": 4,
+}
+
+func (x MetricType) Enum() *MetricType {
+	p := new(MetricType)
+	*p = x
+	return p
+}
+func (x MetricType) String() string {
+	return proto.EnumName(MetricType_name, int32(x))
+}
+func (x *MetricType) UnmarshalJSON(data []byte) error {
+	value, err := proto.UnmarshalJSONEnum(MetricType_value, data, "MetricType")
+	if err != nil {
+		return err
+	}
+	*x = MetricType(value)
+	return nil
+}
+
+type LabelPair struct {
+	Name             *string `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Value            *string `protobuf:"bytes,2,opt,name=value" json:"value,omitempty"`
+	XXX_unrecognized []byte  `json:"-"`
+}
+
+func (m *LabelPair) Reset()         { *m = LabelPair{} }
+func (m *LabelPair) String() string { return proto.CompactTextString(m) }
+func (*LabelPair) ProtoMessage()    {}
+
+func (m *LabelPair) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *LabelPair) GetValue() string {
+	if m != nil && m.Value != nil {
+		return *m.Value
+	}
+	return ""
+}
+
+type Gauge struct {
+	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *Gauge) Reset()         { *m = Gauge{} }
+func (m *Gauge) String() string { return proto.CompactTextString(m) }
+func (*Gauge) ProtoMessage()    {}
+
+func (m *Gauge) GetValue() float64 {
+	if m != nil && m.Value != nil {
+		return *m.Value
+	}
+	return 0
+}
+
+type Counter struct {
+	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *Counter) Reset()         { *m = Counter{} }
+func (m *Counter) String() string { return proto.CompactTextString(m) }
+func (*Counter) ProtoMessage()    {}
+
+func (m *Counter) GetValue() float64 {
+	if m != nil && m.Value != nil {
+		return *m.Value
+	}
+	return 0
+}
+
+type Quantile struct {
+	Quantile         *float64 `protobuf:"fixed64,1,opt,name=quantile" json:"quantile,omitempty"`
+	Value            *float64 `protobuf:"fixed64,2,opt,name=value" json:"value,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *Quantile) Reset()         { *m = Quantile{} }
+func (m *Quantile) String() string { return proto.CompactTextString(m) }
+func (*Quantile) ProtoMessage()    {}
+
+func (m *Quantile) GetQuantile() float64 {
+	if m != nil && m.Quantile != nil {
+		return *m.Quantile
+	}
+	return 0
+}
+
+func (m *Quantile) GetValue() float64 {
+	if m != nil && m.Value != nil {
+		return *m.Value
+	}
+	return 0
+}
+
+type Summary struct {
+	SampleCount      *uint64     `protobuf:"varint,1,opt,name=sample_count" json:"sample_count,omitempty"`
+	SampleSum        *float64    `protobuf:"fixed64,2,opt,name=sample_sum" json:"sample_sum,omitempty"`
+	Quantile         []*Quantile `protobuf:"bytes,3,rep,name=quantile" json:"quantile,omitempty"`
+	XXX_unrecognized []byte      `json:"-"`
+}
+
+func (m *Summary) Reset()         { *m = Summary{} }
+func (m *Summary) String() string { return proto.CompactTextString(m) }
+func (*Summary) ProtoMessage()    {}
+
+func (m *Summary) GetSampleCount() uint64 {
+	if m != nil && m.SampleCount != nil {
+		return *m.SampleCount
+	}
+	return 0
+}
+
+func (m *Summary) GetSampleSum() float64 {
+	if m != nil && m.SampleSum != nil {
+		return *m.SampleSum
+	}
+	return 0
+}
+
+func (m *Summary) GetQuantile() []*Quantile {
+	if m != nil {
+		return m.Quantile
+	}
+	return nil
+}
+
+type Untyped struct {
+	Value            *float64 `protobuf:"fixed64,1,opt,name=value" json:"value,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *Untyped) Reset()         { *m = Untyped{} }
+func (m *Untyped) String() string { return proto.CompactTextString(m) }
+func (*Untyped) ProtoMessage()    {}
+
+func (m *Untyped) GetValue() float64 {
+	if m != nil && m.Value != nil {
+		return *m.Value
+	}
+	return 0
+}
+
+type Histogram struct {
+	SampleCount      *uint64   `protobuf:"varint,1,opt,name=sample_count" json:"sample_count,omitempty"`
+	SampleSum        *float64  `protobuf:"fixed64,2,opt,name=sample_sum" json:"sample_sum,omitempty"`
+	Bucket           []*Bucket `protobuf:"bytes,3,rep,name=bucket" json:"bucket,omitempty"`
+	XXX_unrecognized []byte    `json:"-"`
+}
+
+func (m *Histogram) Reset()         { *m = Histogram{} }
+func (m *Histogram) String() string { return proto.CompactTextString(m) }
+func (*Histogram) ProtoMessage()    {}
+
+func (m *Histogram) GetSampleCount() uint64 {
+	if m != nil && m.SampleCount != nil {
+		return *m.SampleCount
+	}
+	return 0
+}
+
+func (m *Histogram) GetSampleSum() float64 {
+	if m != nil && m.SampleSum != nil {
+		return *m.SampleSum
+	}
+	return 0
+}
+
+func (m *Histogram) GetBucket() []*Bucket {
+	if m != nil {
+		return m.Bucket
+	}
+	return nil
+}
+
+type Bucket struct {
+	CumulativeCount  *uint64  `protobuf:"varint,1,opt,name=cumulative_count" json:"cumulative_count,omitempty"`
+	UpperBound       *float64 `protobuf:"fixed64,2,opt,name=upper_bound" json:"upper_bound,omitempty"`
+	XXX_unrecognized []byte   `json:"-"`
+}
+
+func (m *Bucket) Reset()         { *m = Bucket{} }
+func (m *Bucket) String() string { return proto.CompactTextString(m) }
+func (*Bucket) ProtoMessage()    {}
+
+func (m *Bucket) GetCumulativeCount() uint64 {
+	if m != nil && m.CumulativeCount != nil {
+		return *m.CumulativeCount
+	}
+	return 0
+}
+
+func (m *Bucket) GetUpperBound() float64 {
+	if m != nil && m.UpperBound != nil {
+		return *m.UpperBound
+	}
+	return 0
+}
+
+type Metric struct {
+	Label            []*LabelPair `protobuf:"bytes,1,rep,name=label" json:"label,omitempty"`
+	Gauge            *Gauge       `protobuf:"bytes,2,opt,name=gauge" json:"gauge,omitempty"`
+	Counter          *Counter     `protobuf:"bytes,3,opt,name=counter" json:"counter,omitempty"`
+	Summary          *Summary     `protobuf:"bytes,4,opt,name=summary" json:"summary,omitempty"`
+	Untyped          *Untyped     `protobuf:"bytes,5,opt,name=untyped" json:"untyped,omitempty"`
+	Histogram        *Histogram   `protobuf:"bytes,7,opt,name=histogram" json:"histogram,omitempty"`
+	TimestampMs      *int64       `protobuf:"varint,6,opt,name=timestamp_ms" json:"timestamp_ms,omitempty"`
+	XXX_unrecognized []byte       `json:"-"`
+}
+
+func (m *Metric) Reset()         { *m = Metric{} }
+func (m *Metric) String() string { return proto.CompactTextString(m) }
+func (*Metric) ProtoMessage()    {}
+
+func (m *Metric) GetLabel() []*LabelPair {
+	if m != nil {
+		return m.Label
+	}
+	return nil
+}
+
+func (m *Metric) GetGauge() *Gauge {
+	if m != nil {
+		return m.Gauge
+	}
+	return nil
+}
+
+func (m *Metric) GetCounter() *Counter {
+	if m != nil {
+		return m.Counter
+	}
+	return nil
+}
+
+func (m *Metric) GetSummary() *Summary {
+	if m != nil {
+		return m.Summary
+	}
+	return nil
+}
+
+func (m *Metric) GetUntyped() *Untyped {
+	if m != nil {
+		return m.Untyped
+	}
+	return nil
+}
+
+func (m *Metric) GetHistogram() *Histogram {
+	if m != nil {
+		return m.Histogram
+	}
+	return nil
+}
+
+func (m *Metric) GetTimestampMs() int64 {
+	if m != nil && m.TimestampMs != nil {
+		return *m.TimestampMs
+	}
+	return 0
+}
+
+type MetricFamily struct {
+	Name             *string     `protobuf:"bytes,1,opt,name=name" json:"name,omitempty"`
+	Help             *string     `protobuf:"bytes,2,opt,name=help" json:"help,omitempty"`
+	Type             *MetricType `protobuf:"varint,3,opt,name=type,enum=io.prometheus.client.MetricType" json:"type,omitempty"`
+	Metric           []*Metric   `protobuf:"bytes,4,rep,name=metric" json:"metric,omitempty"`
+	XXX_unrecognized []byte      `json:"-"`
+}
+
+func (m *MetricFamily) Reset()         { *m = MetricFamily{} }
+func (m *MetricFamily) String() string { return proto.CompactTextString(m) }
+func (*MetricFamily) ProtoMessage()    {}
+
+func (m *MetricFamily) GetName() string {
+	if m != nil && m.Name != nil {
+		return *m.Name
+	}
+	return ""
+}
+
+func (m *MetricFamily) GetHelp() string {
+	if m != nil && m.Help != nil {
+		return *m.Help
+	}
+	return ""
+}
+
+func (m *MetricFamily) GetType() MetricType {
+	if m != nil && m.Type != nil {
+		return *m.Type
+	}
+	return MetricType_COUNTER
+}
+
+func (m *MetricFamily) GetMetric() []*Metric {
+	if m != nil {
+		return m.Metric
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterEnum("io.prometheus.client.MetricType", MetricType_name, MetricType_value)
+}
diff --git a/vendor/github.com/prometheus/client_model/ruby/LICENSE b/vendor/github.com/prometheus/client_model/ruby/LICENSE
new file mode 100644
index 0000000000..11069edd79
--- /dev/null
+++ b/vendor/github.com/prometheus/client_model/ruby/LICENSE
@@ -0,0 +1,201 @@
+                              Apache License
+                        Version 2.0, January 2004
+                     http://www.apache.org/licenses/
+
+TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+1. Definitions.
+
+   "License" shall mean the terms and conditions for use, reproduction,
+   and distribution as defined by Sections 1 through 9 of this document.
+
+   "Licensor" shall mean the copyright owner or entity authorized by
+   the copyright owner that is granting the License.
+
+   "Legal Entity" shall mean the union of the acting entity and all
+   other entities that control, are controlled by, or are under common
+   control with that entity. For the purposes of this definition,
+   "control" means (i) the power, direct or indirect, to cause the
+   direction or management of such entity, whether by contract or
+   otherwise, or (ii) ownership of fifty percent (50%) or more of the
+   outstanding shares, or (iii) beneficial ownership of such entity.
+
+   "You" (or "Your") shall mean an individual or Legal Entity
+   exercising permissions granted by this License.
+
+   "Source" form shall mean the preferred form for making modifications,
+   including but not limited to software source code, documentation
+   source, and configuration files.
+
+   "Object" form shall mean any form resulting from mechanical
+   transformation or translation of a Source form, including but
+   not limited to compiled object code, generated documentation,
+   and conversions to other media types.
+
+   "Work" shall mean the work of authorship, whether in Source or
+   Object form, made available under the License, as indicated by a
+   copyright notice that is included in or attached to the work
+   (an example is provided in the Appendix below).
+
+   "Derivative Works" shall mean any work, whether in Source or Object
+   form, that is based on (or derived from) the Work and for which the
+   editorial revisions, annotations, elaborations, or other modifications
+   represent, as a whole, an original work of authorship. For the purposes
+   of this License, Derivative Works shall not include works that remain
+   separable from, or merely link (or bind by name) to the interfaces of,
+   the Work and Derivative Works thereof.
+
+   "Contribution" shall mean any work of authorship, including
+   the original version of the Work and any modifications or additions
+   to that Work or Derivative Works thereof, that is intentionally
+   submitted to Licensor for inclusion in the Work by the copyright owner
+   or by an individual or Legal Entity authorized to submit on behalf of
+   the copyright owner. For the purposes of this definition, "submitted"
+   means any form of electronic, verbal, or written communication sent
+   to the Licensor or its representatives, including but not limited to
+   communication on electronic mailing lists, source code control systems,
+   and issue tracking systems that are managed by, or on behalf of, the
+   Licensor for the purpose of discussing and improving the Work, but
+   excluding communication that is conspicuously marked or otherwise
+   designated in writing by the copyright owner as "Not a Contribution."
+
+   "Contributor" shall mean Licensor and any individual or Legal Entity
+   on behalf of whom a Contribution has been received by Licensor and
+   subsequently incorporated within the Work.
+
+2. Grant of Copyright License. Subject to the terms and conditions of
+   this License, each Contributor hereby grants to You a perpetual,
+   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+   copyright license to reproduce, prepare Derivative Works of,
+   publicly display, publicly perform, sublicense, and distribute the
+   Work and such Derivative Works in Source or Object form.
+
+3. Grant of Patent License. Subject to the terms and conditions of
+   this License, each Contributor hereby grants to You a perpetual,
+   worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+   (except as stated in this section) patent license to make, have made,
+   use, offer to sell, sell, import, and otherwise transfer the Work,
+   where such license applies only to those patent claims licensable
+   by such Contributor that are necessarily infringed by their
+   Contribution(s) alone or by combination of their Contribution(s)
+   with the Work to which such Contribution(s) was submitted. If You
+   institute patent litigation against any entity (including a
+   cross-claim or counterclaim in a lawsuit) alleging that the Work
+   or a Contribution incorporated within the Work constitutes direct
+   or contributory patent infringement, then any patent licenses
+   granted to You under this License for that Work shall terminate
+   as of the date such litigation is filed.
+
+4. Redistribution. You may reproduce and distribute copies of the
+   Work or Derivative Works thereof in any medium, with or without
+   modifications, and in Source or Object form, provided that You
+   meet the following conditions:
+
+   (a) You must give any other recipients of the Work or
+       Derivative Works a copy of this License; and
+
+   (b) You must cause any modified files to carry prominent notices
+       stating that You changed the files; and
+
+   (c) You must retain, in the Source form of any Derivative Works
+       that You distribute, all copyright, patent, trademark, and
+       attribution notices from the Source form of the Work,
+       excluding those notices that do not pertain to any part of
+       the Derivative Works; and
+
+   (d) If the Work includes a "NOTICE" text file as part of its
+       distribution, then any Derivative Works that You distribute must
+       include a readable copy of the attribution notices contained
+       within such NOTICE file, excluding those notices that do not
+       pertain to any part of the Derivative Works, in at least one
+       of the following places: within a NOTICE text file distributed
+       as part of the Derivative Works; within the Source form or
+       documentation, if provided along with the Derivative Works; or,
+       within a display generated by the Derivative Works, if and
+       wherever such third-party notices normally appear. The contents
+       of the NOTICE file are for informational purposes only and
+       do not modify the License. You may add Your own attribution
+       notices within Derivative Works that You distribute, alongside
+       or as an addendum to the NOTICE text from the Work, provided
+       that such additional attribution notices cannot be construed
+       as modifying the License.
+
+   You may add Your own copyright statement to Your modifications and
+   may provide additional or different license terms and conditions
+   for use, reproduction, or distribution of Your modifications, or
+   for any such Derivative Works as a whole, provided Your use,
+   reproduction, and distribution of the Work otherwise complies with
+   the conditions stated in this License.
+
+5. Submission of Contributions. Unless You explicitly state otherwise,
+   any Contribution intentionally submitted for inclusion in the Work
+   by You to the Licensor shall be under the terms and conditions of
+   this License, without any additional terms or conditions.
+   Notwithstanding the above, nothing herein shall supersede or modify
+   the terms of any separate license agreement you may have executed
+   with Licensor regarding such Contributions.
+
+6. Trademarks. This License does not grant permission to use the trade
+   names, trademarks, service marks, or product names of the Licensor,
+   except as required for reasonable and customary use in describing the
+   origin of the Work and reproducing the content of the NOTICE file.
+
+7. Disclaimer of Warranty. Unless required by applicable law or
+   agreed to in writing, Licensor provides the Work (and each
+   Contributor provides its Contributions) on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+   implied, including, without limitation, any warranties or conditions
+   of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+   PARTICULAR PURPOSE. You are solely responsible for determining the
+   appropriateness of using or redistributing the Work and assume any
+   risks associated with Your exercise of permissions under this License.
+
+8. Limitation of Liability. In no event and under no legal theory,
+   whether in tort (including negligence), contract, or otherwise,
+   unless required by applicable law (such as deliberate and grossly
+   negligent acts) or agreed to in writing, shall any Contributor be
+   liable to You for damages, including any direct, indirect, special,
+   incidental, or consequential damages of any character arising as a
+   result of this License or out of the use or inability to use the
+   Work (including but not limited to damages for loss of goodwill,
+   work stoppage, computer failure or malfunction, or any and all
+   other commercial damages or losses), even if such Contributor
+   has been advised of the possibility of such damages.
+
+9. Accepting Warranty or Additional Liability. While redistributing
+   the Work or Derivative Works thereof, You may choose to offer,
+   and charge a fee for, acceptance of support, warranty, indemnity,
+   or other liability obligations and/or rights consistent with this
+   License. However, in accepting such obligations, You may act only
+   on Your own behalf and on Your sole responsibility, not on behalf
+   of any other Contributor, and only if You agree to indemnify,
+   defend, and hold each Contributor harmless for any liability
+   incurred by, or claims asserted against, such Contributor by reason
+   of your accepting any such warranty or additional liability.
+
+END OF TERMS AND CONDITIONS
+
+APPENDIX: How to apply the Apache License to your work.
+
+   To apply the Apache License to your work, attach the following
+   boilerplate notice, with the fields enclosed by brackets "[]"
+   replaced with your own identifying information. (Don't include
+   the brackets!)  The text should be enclosed in the appropriate
+   comment syntax for the file format. We also recommend that a
+   file or class name and description of purpose be included on the
+   same "printed page" as the copyright notice for easier
+   identification within third-party archives.
+
+Copyright [yyyy] [name of copyright owner]
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
diff --git a/vendor/github.com/prometheus/common/LICENSE b/vendor/github.com/prometheus/common/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/prometheus/common/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/prometheus/common/NOTICE b/vendor/github.com/prometheus/common/NOTICE
new file mode 100644
index 0000000000..636a2c1a5e
--- /dev/null
+++ b/vendor/github.com/prometheus/common/NOTICE
@@ -0,0 +1,5 @@
+Common libraries shared by Prometheus Go components.
+Copyright 2015 The Prometheus Authors
+
+This product includes software developed at
+SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/common/expfmt/decode.go b/vendor/github.com/prometheus/common/expfmt/decode.go
new file mode 100644
index 0000000000..c092723e84
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/decode.go
@@ -0,0 +1,429 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package expfmt
+
+import (
+	"fmt"
+	"io"
+	"math"
+	"mime"
+	"net/http"
+
+	dto "github.com/prometheus/client_model/go"
+
+	"github.com/matttproud/golang_protobuf_extensions/pbutil"
+	"github.com/prometheus/common/model"
+)
+
+// Decoder types decode an input stream into metric families.
+type Decoder interface {
+	Decode(*dto.MetricFamily) error
+}
+
+// DecodeOptions contains options used by the Decoder and in sample extraction.
+type DecodeOptions struct {
+	// Timestamp is added to each value from the stream that has no explicit timestamp set.
+	Timestamp model.Time
+}
+
+// ResponseFormat extracts the correct format from a HTTP response header.
+// If no matching format can be found FormatUnknown is returned.
+func ResponseFormat(h http.Header) Format {
+	ct := h.Get(hdrContentType)
+
+	mediatype, params, err := mime.ParseMediaType(ct)
+	if err != nil {
+		return FmtUnknown
+	}
+
+	const textType = "text/plain"
+
+	switch mediatype {
+	case ProtoType:
+		if p, ok := params["proto"]; ok && p != ProtoProtocol {
+			return FmtUnknown
+		}
+		if e, ok := params["encoding"]; ok && e != "delimited" {
+			return FmtUnknown
+		}
+		return FmtProtoDelim
+
+	case textType:
+		if v, ok := params["version"]; ok && v != TextVersion {
+			return FmtUnknown
+		}
+		return FmtText
+	}
+
+	return FmtUnknown
+}
+
+// NewDecoder returns a new decoder based on the given input format.
+// If the input format does not imply otherwise, a text format decoder is returned.
+func NewDecoder(r io.Reader, format Format) Decoder {
+	switch format {
+	case FmtProtoDelim:
+		return &protoDecoder{r: r}
+	}
+	return &textDecoder{r: r}
+}
+
+// protoDecoder implements the Decoder interface for protocol buffers.
+type protoDecoder struct {
+	r io.Reader
+}
+
+// Decode implements the Decoder interface.
+func (d *protoDecoder) Decode(v *dto.MetricFamily) error {
+	_, err := pbutil.ReadDelimited(d.r, v)
+	if err != nil {
+		return err
+	}
+	if !model.IsValidMetricName(model.LabelValue(v.GetName())) {
+		return fmt.Errorf("invalid metric name %q", v.GetName())
+	}
+	for _, m := range v.GetMetric() {
+		if m == nil {
+			continue
+		}
+		for _, l := range m.GetLabel() {
+			if l == nil {
+				continue
+			}
+			if !model.LabelValue(l.GetValue()).IsValid() {
+				return fmt.Errorf("invalid label value %q", l.GetValue())
+			}
+			if !model.LabelName(l.GetName()).IsValid() {
+				return fmt.Errorf("invalid label name %q", l.GetName())
+			}
+		}
+	}
+	return nil
+}
+
+// textDecoder implements the Decoder interface for the text protocol.
+type textDecoder struct {
+	r    io.Reader
+	p    TextParser
+	fams []*dto.MetricFamily
+}
+
+// Decode implements the Decoder interface.
+func (d *textDecoder) Decode(v *dto.MetricFamily) error {
+	// TODO(fabxc): Wrap this as a line reader to make streaming safer.
+	if len(d.fams) == 0 {
+		// No cached metric families, read everything and parse metrics.
+		fams, err := d.p.TextToMetricFamilies(d.r)
+		if err != nil {
+			return err
+		}
+		if len(fams) == 0 {
+			return io.EOF
+		}
+		d.fams = make([]*dto.MetricFamily, 0, len(fams))
+		for _, f := range fams {
+			d.fams = append(d.fams, f)
+		}
+	}
+
+	*v = *d.fams[0]
+	d.fams = d.fams[1:]
+
+	return nil
+}
+
+// SampleDecoder wraps a Decoder to extract samples from the metric families
+// decoded by the wrapped Decoder.
+type SampleDecoder struct {
+	Dec  Decoder
+	Opts *DecodeOptions
+
+	f dto.MetricFamily
+}
+
+// Decode calls the Decode method of the wrapped Decoder and then extracts the
+// samples from the decoded MetricFamily into the provided model.Vector.
+func (sd *SampleDecoder) Decode(s *model.Vector) error {
+	err := sd.Dec.Decode(&sd.f)
+	if err != nil {
+		return err
+	}
+	*s, err = extractSamples(&sd.f, sd.Opts)
+	return err
+}
+
+// ExtractSamples builds a slice of samples from the provided metric
+// families. If an error occurrs during sample extraction, it continues to
+// extract from the remaining metric families. The returned error is the last
+// error that has occurred.
+func ExtractSamples(o *DecodeOptions, fams ...*dto.MetricFamily) (model.Vector, error) {
+	var (
+		all     model.Vector
+		lastErr error
+	)
+	for _, f := range fams {
+		some, err := extractSamples(f, o)
+		if err != nil {
+			lastErr = err
+			continue
+		}
+		all = append(all, some...)
+	}
+	return all, lastErr
+}
+
+func extractSamples(f *dto.MetricFamily, o *DecodeOptions) (model.Vector, error) {
+	switch f.GetType() {
+	case dto.MetricType_COUNTER:
+		return extractCounter(o, f), nil
+	case dto.MetricType_GAUGE:
+		return extractGauge(o, f), nil
+	case dto.MetricType_SUMMARY:
+		return extractSummary(o, f), nil
+	case dto.MetricType_UNTYPED:
+		return extractUntyped(o, f), nil
+	case dto.MetricType_HISTOGRAM:
+		return extractHistogram(o, f), nil
+	}
+	return nil, fmt.Errorf("expfmt.extractSamples: unknown metric family type %v", f.GetType())
+}
+
+func extractCounter(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
+	samples := make(model.Vector, 0, len(f.Metric))
+
+	for _, m := range f.Metric {
+		if m.Counter == nil {
+			continue
+		}
+
+		lset := make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
+
+		smpl := &model.Sample{
+			Metric: model.Metric(lset),
+			Value:  model.SampleValue(m.Counter.GetValue()),
+		}
+
+		if m.TimestampMs != nil {
+			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
+		} else {
+			smpl.Timestamp = o.Timestamp
+		}
+
+		samples = append(samples, smpl)
+	}
+
+	return samples
+}
+
+func extractGauge(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
+	samples := make(model.Vector, 0, len(f.Metric))
+
+	for _, m := range f.Metric {
+		if m.Gauge == nil {
+			continue
+		}
+
+		lset := make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
+
+		smpl := &model.Sample{
+			Metric: model.Metric(lset),
+			Value:  model.SampleValue(m.Gauge.GetValue()),
+		}
+
+		if m.TimestampMs != nil {
+			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
+		} else {
+			smpl.Timestamp = o.Timestamp
+		}
+
+		samples = append(samples, smpl)
+	}
+
+	return samples
+}
+
+func extractUntyped(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
+	samples := make(model.Vector, 0, len(f.Metric))
+
+	for _, m := range f.Metric {
+		if m.Untyped == nil {
+			continue
+		}
+
+		lset := make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
+
+		smpl := &model.Sample{
+			Metric: model.Metric(lset),
+			Value:  model.SampleValue(m.Untyped.GetValue()),
+		}
+
+		if m.TimestampMs != nil {
+			smpl.Timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
+		} else {
+			smpl.Timestamp = o.Timestamp
+		}
+
+		samples = append(samples, smpl)
+	}
+
+	return samples
+}
+
+func extractSummary(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
+	samples := make(model.Vector, 0, len(f.Metric))
+
+	for _, m := range f.Metric {
+		if m.Summary == nil {
+			continue
+		}
+
+		timestamp := o.Timestamp
+		if m.TimestampMs != nil {
+			timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
+		}
+
+		for _, q := range m.Summary.Quantile {
+			lset := make(model.LabelSet, len(m.Label)+2)
+			for _, p := range m.Label {
+				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+			}
+			// BUG(matt): Update other names to "quantile".
+			lset[model.LabelName(model.QuantileLabel)] = model.LabelValue(fmt.Sprint(q.GetQuantile()))
+			lset[model.MetricNameLabel] = model.LabelValue(f.GetName())
+
+			samples = append(samples, &model.Sample{
+				Metric:    model.Metric(lset),
+				Value:     model.SampleValue(q.GetValue()),
+				Timestamp: timestamp,
+			})
+		}
+
+		lset := make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_sum")
+
+		samples = append(samples, &model.Sample{
+			Metric:    model.Metric(lset),
+			Value:     model.SampleValue(m.Summary.GetSampleSum()),
+			Timestamp: timestamp,
+		})
+
+		lset = make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_count")
+
+		samples = append(samples, &model.Sample{
+			Metric:    model.Metric(lset),
+			Value:     model.SampleValue(m.Summary.GetSampleCount()),
+			Timestamp: timestamp,
+		})
+	}
+
+	return samples
+}
+
+func extractHistogram(o *DecodeOptions, f *dto.MetricFamily) model.Vector {
+	samples := make(model.Vector, 0, len(f.Metric))
+
+	for _, m := range f.Metric {
+		if m.Histogram == nil {
+			continue
+		}
+
+		timestamp := o.Timestamp
+		if m.TimestampMs != nil {
+			timestamp = model.TimeFromUnixNano(*m.TimestampMs * 1000000)
+		}
+
+		infSeen := false
+
+		for _, q := range m.Histogram.Bucket {
+			lset := make(model.LabelSet, len(m.Label)+2)
+			for _, p := range m.Label {
+				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+			}
+			lset[model.LabelName(model.BucketLabel)] = model.LabelValue(fmt.Sprint(q.GetUpperBound()))
+			lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_bucket")
+
+			if math.IsInf(q.GetUpperBound(), +1) {
+				infSeen = true
+			}
+
+			samples = append(samples, &model.Sample{
+				Metric:    model.Metric(lset),
+				Value:     model.SampleValue(q.GetCumulativeCount()),
+				Timestamp: timestamp,
+			})
+		}
+
+		lset := make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_sum")
+
+		samples = append(samples, &model.Sample{
+			Metric:    model.Metric(lset),
+			Value:     model.SampleValue(m.Histogram.GetSampleSum()),
+			Timestamp: timestamp,
+		})
+
+		lset = make(model.LabelSet, len(m.Label)+1)
+		for _, p := range m.Label {
+			lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+		}
+		lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_count")
+
+		count := &model.Sample{
+			Metric:    model.Metric(lset),
+			Value:     model.SampleValue(m.Histogram.GetSampleCount()),
+			Timestamp: timestamp,
+		}
+		samples = append(samples, count)
+
+		if !infSeen {
+			// Append an infinity bucket sample.
+			lset := make(model.LabelSet, len(m.Label)+2)
+			for _, p := range m.Label {
+				lset[model.LabelName(p.GetName())] = model.LabelValue(p.GetValue())
+			}
+			lset[model.LabelName(model.BucketLabel)] = model.LabelValue("+Inf")
+			lset[model.MetricNameLabel] = model.LabelValue(f.GetName() + "_bucket")
+
+			samples = append(samples, &model.Sample{
+				Metric:    model.Metric(lset),
+				Value:     count.Value,
+				Timestamp: timestamp,
+			})
+		}
+	}
+
+	return samples
+}
diff --git a/vendor/github.com/prometheus/common/expfmt/encode.go b/vendor/github.com/prometheus/common/expfmt/encode.go
new file mode 100644
index 0000000000..11839ed65c
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/encode.go
@@ -0,0 +1,88 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package expfmt
+
+import (
+	"fmt"
+	"io"
+	"net/http"
+
+	"github.com/golang/protobuf/proto"
+	"github.com/matttproud/golang_protobuf_extensions/pbutil"
+	"github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg"
+
+	dto "github.com/prometheus/client_model/go"
+)
+
+// Encoder types encode metric families into an underlying wire protocol.
+type Encoder interface {
+	Encode(*dto.MetricFamily) error
+}
+
+type encoder func(*dto.MetricFamily) error
+
+func (e encoder) Encode(v *dto.MetricFamily) error {
+	return e(v)
+}
+
+// Negotiate returns the Content-Type based on the given Accept header.
+// If no appropriate accepted type is found, FmtText is returned.
+func Negotiate(h http.Header) Format {
+	for _, ac := range goautoneg.ParseAccept(h.Get(hdrAccept)) {
+		// Check for protocol buffer
+		if ac.Type+"/"+ac.SubType == ProtoType && ac.Params["proto"] == ProtoProtocol {
+			switch ac.Params["encoding"] {
+			case "delimited":
+				return FmtProtoDelim
+			case "text":
+				return FmtProtoText
+			case "compact-text":
+				return FmtProtoCompact
+			}
+		}
+		// Check for text format.
+		ver := ac.Params["version"]
+		if ac.Type == "text" && ac.SubType == "plain" && (ver == TextVersion || ver == "") {
+			return FmtText
+		}
+	}
+	return FmtText
+}
+
+// NewEncoder returns a new encoder based on content type negotiation.
+func NewEncoder(w io.Writer, format Format) Encoder {
+	switch format {
+	case FmtProtoDelim:
+		return encoder(func(v *dto.MetricFamily) error {
+			_, err := pbutil.WriteDelimited(w, v)
+			return err
+		})
+	case FmtProtoCompact:
+		return encoder(func(v *dto.MetricFamily) error {
+			_, err := fmt.Fprintln(w, v.String())
+			return err
+		})
+	case FmtProtoText:
+		return encoder(func(v *dto.MetricFamily) error {
+			_, err := fmt.Fprintln(w, proto.MarshalTextString(v))
+			return err
+		})
+	case FmtText:
+		return encoder(func(v *dto.MetricFamily) error {
+			_, err := MetricFamilyToText(w, v)
+			return err
+		})
+	}
+	panic("expfmt.NewEncoder: unknown format")
+}
diff --git a/vendor/github.com/prometheus/common/expfmt/expfmt.go b/vendor/github.com/prometheus/common/expfmt/expfmt.go
new file mode 100644
index 0000000000..c71bcb9816
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/expfmt.go
@@ -0,0 +1,38 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package expfmt contains tools for reading and writing Prometheus metrics.
+package expfmt
+
+// Format specifies the HTTP content type of the different wire protocols.
+type Format string
+
+// Constants to assemble the Content-Type values for the different wire protocols.
+const (
+	TextVersion   = "0.0.4"
+	ProtoType     = `application/vnd.google.protobuf`
+	ProtoProtocol = `io.prometheus.client.MetricFamily`
+	ProtoFmt      = ProtoType + "; proto=" + ProtoProtocol + ";"
+
+	// The Content-Type values for the different wire protocols.
+	FmtUnknown      Format = `<unknown>`
+	FmtText         Format = `text/plain; version=` + TextVersion + `; charset=utf-8`
+	FmtProtoDelim   Format = ProtoFmt + ` encoding=delimited`
+	FmtProtoText    Format = ProtoFmt + ` encoding=text`
+	FmtProtoCompact Format = ProtoFmt + ` encoding=compact-text`
+)
+
+const (
+	hdrContentType = "Content-Type"
+	hdrAccept      = "Accept"
+)
diff --git a/vendor/github.com/prometheus/common/expfmt/fuzz.go b/vendor/github.com/prometheus/common/expfmt/fuzz.go
new file mode 100644
index 0000000000..dc2eedeefc
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/fuzz.go
@@ -0,0 +1,36 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Build only when actually fuzzing
+// +build gofuzz
+
+package expfmt
+
+import "bytes"
+
+// Fuzz text metric parser with with github.com/dvyukov/go-fuzz:
+//
+//     go-fuzz-build github.com/prometheus/common/expfmt
+//     go-fuzz -bin expfmt-fuzz.zip -workdir fuzz
+//
+// Further input samples should go in the folder fuzz/corpus.
+func Fuzz(in []byte) int {
+	parser := TextParser{}
+	_, err := parser.TextToMetricFamilies(bytes.NewReader(in))
+
+	if err != nil {
+		return 0
+	}
+
+	return 1
+}
diff --git a/vendor/github.com/prometheus/common/expfmt/text_create.go b/vendor/github.com/prometheus/common/expfmt/text_create.go
new file mode 100644
index 0000000000..f11321cd0c
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/text_create.go
@@ -0,0 +1,303 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package expfmt
+
+import (
+	"fmt"
+	"io"
+	"math"
+	"strings"
+
+	dto "github.com/prometheus/client_model/go"
+	"github.com/prometheus/common/model"
+)
+
+// MetricFamilyToText converts a MetricFamily proto message into text format and
+// writes the resulting lines to 'out'. It returns the number of bytes written
+// and any error encountered. The output will have the same order as the input,
+// no further sorting is performed. Furthermore, this function assumes the input
+// is already sanitized and does not perform any sanity checks. If the input
+// contains duplicate metrics or invalid metric or label names, the conversion
+// will result in invalid text format output.
+//
+// This method fulfills the type 'prometheus.encoder'.
+func MetricFamilyToText(out io.Writer, in *dto.MetricFamily) (int, error) {
+	var written int
+
+	// Fail-fast checks.
+	if len(in.Metric) == 0 {
+		return written, fmt.Errorf("MetricFamily has no metrics: %s", in)
+	}
+	name := in.GetName()
+	if name == "" {
+		return written, fmt.Errorf("MetricFamily has no name: %s", in)
+	}
+
+	// Comments, first HELP, then TYPE.
+	if in.Help != nil {
+		n, err := fmt.Fprintf(
+			out, "# HELP %s %s\n",
+			name, escapeString(*in.Help, false),
+		)
+		written += n
+		if err != nil {
+			return written, err
+		}
+	}
+	metricType := in.GetType()
+	n, err := fmt.Fprintf(
+		out, "# TYPE %s %s\n",
+		name, strings.ToLower(metricType.String()),
+	)
+	written += n
+	if err != nil {
+		return written, err
+	}
+
+	// Finally the samples, one line for each.
+	for _, metric := range in.Metric {
+		switch metricType {
+		case dto.MetricType_COUNTER:
+			if metric.Counter == nil {
+				return written, fmt.Errorf(
+					"expected counter in metric %s %s", name, metric,
+				)
+			}
+			n, err = writeSample(
+				name, metric, "", "",
+				metric.Counter.GetValue(),
+				out,
+			)
+		case dto.MetricType_GAUGE:
+			if metric.Gauge == nil {
+				return written, fmt.Errorf(
+					"expected gauge in metric %s %s", name, metric,
+				)
+			}
+			n, err = writeSample(
+				name, metric, "", "",
+				metric.Gauge.GetValue(),
+				out,
+			)
+		case dto.MetricType_UNTYPED:
+			if metric.Untyped == nil {
+				return written, fmt.Errorf(
+					"expected untyped in metric %s %s", name, metric,
+				)
+			}
+			n, err = writeSample(
+				name, metric, "", "",
+				metric.Untyped.GetValue(),
+				out,
+			)
+		case dto.MetricType_SUMMARY:
+			if metric.Summary == nil {
+				return written, fmt.Errorf(
+					"expected summary in metric %s %s", name, metric,
+				)
+			}
+			for _, q := range metric.Summary.Quantile {
+				n, err = writeSample(
+					name, metric,
+					model.QuantileLabel, fmt.Sprint(q.GetQuantile()),
+					q.GetValue(),
+					out,
+				)
+				written += n
+				if err != nil {
+					return written, err
+				}
+			}
+			n, err = writeSample(
+				name+"_sum", metric, "", "",
+				metric.Summary.GetSampleSum(),
+				out,
+			)
+			if err != nil {
+				return written, err
+			}
+			written += n
+			n, err = writeSample(
+				name+"_count", metric, "", "",
+				float64(metric.Summary.GetSampleCount()),
+				out,
+			)
+		case dto.MetricType_HISTOGRAM:
+			if metric.Histogram == nil {
+				return written, fmt.Errorf(
+					"expected histogram in metric %s %s", name, metric,
+				)
+			}
+			infSeen := false
+			for _, q := range metric.Histogram.Bucket {
+				n, err = writeSample(
+					name+"_bucket", metric,
+					model.BucketLabel, fmt.Sprint(q.GetUpperBound()),
+					float64(q.GetCumulativeCount()),
+					out,
+				)
+				written += n
+				if err != nil {
+					return written, err
+				}
+				if math.IsInf(q.GetUpperBound(), +1) {
+					infSeen = true
+				}
+			}
+			if !infSeen {
+				n, err = writeSample(
+					name+"_bucket", metric,
+					model.BucketLabel, "+Inf",
+					float64(metric.Histogram.GetSampleCount()),
+					out,
+				)
+				if err != nil {
+					return written, err
+				}
+				written += n
+			}
+			n, err = writeSample(
+				name+"_sum", metric, "", "",
+				metric.Histogram.GetSampleSum(),
+				out,
+			)
+			if err != nil {
+				return written, err
+			}
+			written += n
+			n, err = writeSample(
+				name+"_count", metric, "", "",
+				float64(metric.Histogram.GetSampleCount()),
+				out,
+			)
+		default:
+			return written, fmt.Errorf(
+				"unexpected type in metric %s %s", name, metric,
+			)
+		}
+		written += n
+		if err != nil {
+			return written, err
+		}
+	}
+	return written, nil
+}
+
+// writeSample writes a single sample in text format to out, given the metric
+// name, the metric proto message itself, optionally an additional label name
+// and value (use empty strings if not required), and the value. The function
+// returns the number of bytes written and any error encountered.
+func writeSample(
+	name string,
+	metric *dto.Metric,
+	additionalLabelName, additionalLabelValue string,
+	value float64,
+	out io.Writer,
+) (int, error) {
+	var written int
+	n, err := fmt.Fprint(out, name)
+	written += n
+	if err != nil {
+		return written, err
+	}
+	n, err = labelPairsToText(
+		metric.Label,
+		additionalLabelName, additionalLabelValue,
+		out,
+	)
+	written += n
+	if err != nil {
+		return written, err
+	}
+	n, err = fmt.Fprintf(out, " %v", value)
+	written += n
+	if err != nil {
+		return written, err
+	}
+	if metric.TimestampMs != nil {
+		n, err = fmt.Fprintf(out, " %v", *metric.TimestampMs)
+		written += n
+		if err != nil {
+			return written, err
+		}
+	}
+	n, err = out.Write([]byte{'\n'})
+	written += n
+	if err != nil {
+		return written, err
+	}
+	return written, nil
+}
+
+// labelPairsToText converts a slice of LabelPair proto messages plus the
+// explicitly given additional label pair into text formatted as required by the
+// text format and writes it to 'out'. An empty slice in combination with an
+// empty string 'additionalLabelName' results in nothing being
+// written. Otherwise, the label pairs are written, escaped as required by the
+// text format, and enclosed in '{...}'. The function returns the number of
+// bytes written and any error encountered.
+func labelPairsToText(
+	in []*dto.LabelPair,
+	additionalLabelName, additionalLabelValue string,
+	out io.Writer,
+) (int, error) {
+	if len(in) == 0 && additionalLabelName == "" {
+		return 0, nil
+	}
+	var written int
+	separator := '{'
+	for _, lp := range in {
+		n, err := fmt.Fprintf(
+			out, `%c%s="%s"`,
+			separator, lp.GetName(), escapeString(lp.GetValue(), true),
+		)
+		written += n
+		if err != nil {
+			return written, err
+		}
+		separator = ','
+	}
+	if additionalLabelName != "" {
+		n, err := fmt.Fprintf(
+			out, `%c%s="%s"`,
+			separator, additionalLabelName,
+			escapeString(additionalLabelValue, true),
+		)
+		written += n
+		if err != nil {
+			return written, err
+		}
+	}
+	n, err := out.Write([]byte{'}'})
+	written += n
+	if err != nil {
+		return written, err
+	}
+	return written, nil
+}
+
+var (
+	escape                = strings.NewReplacer("\\", `\\`, "\n", `\n`)
+	escapeWithDoubleQuote = strings.NewReplacer("\\", `\\`, "\n", `\n`, "\"", `\"`)
+)
+
+// escapeString replaces '\' by '\\', new line character by '\n', and - if
+// includeDoubleQuote is true - '"' by '\"'.
+func escapeString(v string, includeDoubleQuote bool) string {
+	if includeDoubleQuote {
+		return escapeWithDoubleQuote.Replace(v)
+	}
+
+	return escape.Replace(v)
+}
diff --git a/vendor/github.com/prometheus/common/expfmt/text_parse.go b/vendor/github.com/prometheus/common/expfmt/text_parse.go
new file mode 100644
index 0000000000..b86290afa3
--- /dev/null
+++ b/vendor/github.com/prometheus/common/expfmt/text_parse.go
@@ -0,0 +1,757 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package expfmt
+
+import (
+	"bufio"
+	"bytes"
+	"fmt"
+	"io"
+	"math"
+	"strconv"
+	"strings"
+
+	dto "github.com/prometheus/client_model/go"
+
+	"github.com/golang/protobuf/proto"
+	"github.com/prometheus/common/model"
+)
+
+// A stateFn is a function that represents a state in a state machine. By
+// executing it, the state is progressed to the next state. The stateFn returns
+// another stateFn, which represents the new state. The end state is represented
+// by nil.
+type stateFn func() stateFn
+
+// ParseError signals errors while parsing the simple and flat text-based
+// exchange format.
+type ParseError struct {
+	Line int
+	Msg  string
+}
+
+// Error implements the error interface.
+func (e ParseError) Error() string {
+	return fmt.Sprintf("text format parsing error in line %d: %s", e.Line, e.Msg)
+}
+
+// TextParser is used to parse the simple and flat text-based exchange format. Its
+// zero value is ready to use.
+type TextParser struct {
+	metricFamiliesByName map[string]*dto.MetricFamily
+	buf                  *bufio.Reader // Where the parsed input is read through.
+	err                  error         // Most recent error.
+	lineCount            int           // Tracks the line count for error messages.
+	currentByte          byte          // The most recent byte read.
+	currentToken         bytes.Buffer  // Re-used each time a token has to be gathered from multiple bytes.
+	currentMF            *dto.MetricFamily
+	currentMetric        *dto.Metric
+	currentLabelPair     *dto.LabelPair
+
+	// The remaining member variables are only used for summaries/histograms.
+	currentLabels map[string]string // All labels including '__name__' but excluding 'quantile'/'le'
+	// Summary specific.
+	summaries       map[uint64]*dto.Metric // Key is created with LabelsToSignature.
+	currentQuantile float64
+	// Histogram specific.
+	histograms    map[uint64]*dto.Metric // Key is created with LabelsToSignature.
+	currentBucket float64
+	// These tell us if the currently processed line ends on '_count' or
+	// '_sum' respectively and belong to a summary/histogram, representing the sample
+	// count and sum of that summary/histogram.
+	currentIsSummaryCount, currentIsSummarySum     bool
+	currentIsHistogramCount, currentIsHistogramSum bool
+}
+
+// TextToMetricFamilies reads 'in' as the simple and flat text-based exchange
+// format and creates MetricFamily proto messages. It returns the MetricFamily
+// proto messages in a map where the metric names are the keys, along with any
+// error encountered.
+//
+// If the input contains duplicate metrics (i.e. lines with the same metric name
+// and exactly the same label set), the resulting MetricFamily will contain
+// duplicate Metric proto messages. Similar is true for duplicate label
+// names. Checks for duplicates have to be performed separately, if required.
+// Also note that neither the metrics within each MetricFamily are sorted nor
+// the label pairs within each Metric. Sorting is not required for the most
+// frequent use of this method, which is sample ingestion in the Prometheus
+// server. However, for presentation purposes, you might want to sort the
+// metrics, and in some cases, you must sort the labels, e.g. for consumption by
+// the metric family injection hook of the Prometheus registry.
+//
+// Summaries and histograms are rather special beasts. You would probably not
+// use them in the simple text format anyway. This method can deal with
+// summaries and histograms if they are presented in exactly the way the
+// text.Create function creates them.
+//
+// This method must not be called concurrently. If you want to parse different
+// input concurrently, instantiate a separate Parser for each goroutine.
+func (p *TextParser) TextToMetricFamilies(in io.Reader) (map[string]*dto.MetricFamily, error) {
+	p.reset(in)
+	for nextState := p.startOfLine; nextState != nil; nextState = nextState() {
+		// Magic happens here...
+	}
+	// Get rid of empty metric families.
+	for k, mf := range p.metricFamiliesByName {
+		if len(mf.GetMetric()) == 0 {
+			delete(p.metricFamiliesByName, k)
+		}
+	}
+	// If p.err is io.EOF now, we have run into a premature end of the input
+	// stream. Turn this error into something nicer and more
+	// meaningful. (io.EOF is often used as a signal for the legitimate end
+	// of an input stream.)
+	if p.err == io.EOF {
+		p.parseError("unexpected end of input stream")
+	}
+	return p.metricFamiliesByName, p.err
+}
+
+func (p *TextParser) reset(in io.Reader) {
+	p.metricFamiliesByName = map[string]*dto.MetricFamily{}
+	if p.buf == nil {
+		p.buf = bufio.NewReader(in)
+	} else {
+		p.buf.Reset(in)
+	}
+	p.err = nil
+	p.lineCount = 0
+	if p.summaries == nil || len(p.summaries) > 0 {
+		p.summaries = map[uint64]*dto.Metric{}
+	}
+	if p.histograms == nil || len(p.histograms) > 0 {
+		p.histograms = map[uint64]*dto.Metric{}
+	}
+	p.currentQuantile = math.NaN()
+	p.currentBucket = math.NaN()
+}
+
+// startOfLine represents the state where the next byte read from p.buf is the
+// start of a line (or whitespace leading up to it).
+func (p *TextParser) startOfLine() stateFn {
+	p.lineCount++
+	if p.skipBlankTab(); p.err != nil {
+		// End of input reached. This is the only case where
+		// that is not an error but a signal that we are done.
+		p.err = nil
+		return nil
+	}
+	switch p.currentByte {
+	case '#':
+		return p.startComment
+	case '\n':
+		return p.startOfLine // Empty line, start the next one.
+	}
+	return p.readingMetricName
+}
+
+// startComment represents the state where the next byte read from p.buf is the
+// start of a comment (or whitespace leading up to it).
+func (p *TextParser) startComment() stateFn {
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte == '\n' {
+		return p.startOfLine
+	}
+	if p.readTokenUntilWhitespace(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	// If we have hit the end of line already, there is nothing left
+	// to do. This is not considered a syntax error.
+	if p.currentByte == '\n' {
+		return p.startOfLine
+	}
+	keyword := p.currentToken.String()
+	if keyword != "HELP" && keyword != "TYPE" {
+		// Generic comment, ignore by fast forwarding to end of line.
+		for p.currentByte != '\n' {
+			if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil {
+				return nil // Unexpected end of input.
+			}
+		}
+		return p.startOfLine
+	}
+	// There is something. Next has to be a metric name.
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.readTokenAsMetricName(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte == '\n' {
+		// At the end of the line already.
+		// Again, this is not considered a syntax error.
+		return p.startOfLine
+	}
+	if !isBlankOrTab(p.currentByte) {
+		p.parseError("invalid metric name in comment")
+		return nil
+	}
+	p.setOrCreateCurrentMF()
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte == '\n' {
+		// At the end of the line already.
+		// Again, this is not considered a syntax error.
+		return p.startOfLine
+	}
+	switch keyword {
+	case "HELP":
+		return p.readingHelp
+	case "TYPE":
+		return p.readingType
+	}
+	panic(fmt.Sprintf("code error: unexpected keyword %q", keyword))
+}
+
+// readingMetricName represents the state where the last byte read (now in
+// p.currentByte) is the first byte of a metric name.
+func (p *TextParser) readingMetricName() stateFn {
+	if p.readTokenAsMetricName(); p.err != nil {
+		return nil
+	}
+	if p.currentToken.Len() == 0 {
+		p.parseError("invalid metric name")
+		return nil
+	}
+	p.setOrCreateCurrentMF()
+	// Now is the time to fix the type if it hasn't happened yet.
+	if p.currentMF.Type == nil {
+		p.currentMF.Type = dto.MetricType_UNTYPED.Enum()
+	}
+	p.currentMetric = &dto.Metric{}
+	// Do not append the newly created currentMetric to
+	// currentMF.Metric right now. First wait if this is a summary,
+	// and the metric exists already, which we can only know after
+	// having read all the labels.
+	if p.skipBlankTabIfCurrentBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	return p.readingLabels
+}
+
+// readingLabels represents the state where the last byte read (now in
+// p.currentByte) is either the first byte of the label set (i.e. a '{'), or the
+// first byte of the value (otherwise).
+func (p *TextParser) readingLabels() stateFn {
+	// Summaries/histograms are special. We have to reset the
+	// currentLabels map, currentQuantile and currentBucket before starting to
+	// read labels.
+	if p.currentMF.GetType() == dto.MetricType_SUMMARY || p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
+		p.currentLabels = map[string]string{}
+		p.currentLabels[string(model.MetricNameLabel)] = p.currentMF.GetName()
+		p.currentQuantile = math.NaN()
+		p.currentBucket = math.NaN()
+	}
+	if p.currentByte != '{' {
+		return p.readingValue
+	}
+	return p.startLabelName
+}
+
+// startLabelName represents the state where the next byte read from p.buf is
+// the start of a label name (or whitespace leading up to it).
+func (p *TextParser) startLabelName() stateFn {
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte == '}' {
+		if p.skipBlankTab(); p.err != nil {
+			return nil // Unexpected end of input.
+		}
+		return p.readingValue
+	}
+	if p.readTokenAsLabelName(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentToken.Len() == 0 {
+		p.parseError(fmt.Sprintf("invalid label name for metric %q", p.currentMF.GetName()))
+		return nil
+	}
+	p.currentLabelPair = &dto.LabelPair{Name: proto.String(p.currentToken.String())}
+	if p.currentLabelPair.GetName() == string(model.MetricNameLabel) {
+		p.parseError(fmt.Sprintf("label name %q is reserved", model.MetricNameLabel))
+		return nil
+	}
+	// Special summary/histogram treatment. Don't add 'quantile' and 'le'
+	// labels to 'real' labels.
+	if !(p.currentMF.GetType() == dto.MetricType_SUMMARY && p.currentLabelPair.GetName() == model.QuantileLabel) &&
+		!(p.currentMF.GetType() == dto.MetricType_HISTOGRAM && p.currentLabelPair.GetName() == model.BucketLabel) {
+		p.currentMetric.Label = append(p.currentMetric.Label, p.currentLabelPair)
+	}
+	if p.skipBlankTabIfCurrentBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte != '=' {
+		p.parseError(fmt.Sprintf("expected '=' after label name, found %q", p.currentByte))
+		return nil
+	}
+	return p.startLabelValue
+}
+
+// startLabelValue represents the state where the next byte read from p.buf is
+// the start of a (quoted) label value (or whitespace leading up to it).
+func (p *TextParser) startLabelValue() stateFn {
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentByte != '"' {
+		p.parseError(fmt.Sprintf("expected '\"' at start of label value, found %q", p.currentByte))
+		return nil
+	}
+	if p.readTokenAsLabelValue(); p.err != nil {
+		return nil
+	}
+	if !model.LabelValue(p.currentToken.String()).IsValid() {
+		p.parseError(fmt.Sprintf("invalid label value %q", p.currentToken.String()))
+		return nil
+	}
+	p.currentLabelPair.Value = proto.String(p.currentToken.String())
+	// Special treatment of summaries:
+	// - Quantile labels are special, will result in dto.Quantile later.
+	// - Other labels have to be added to currentLabels for signature calculation.
+	if p.currentMF.GetType() == dto.MetricType_SUMMARY {
+		if p.currentLabelPair.GetName() == model.QuantileLabel {
+			if p.currentQuantile, p.err = strconv.ParseFloat(p.currentLabelPair.GetValue(), 64); p.err != nil {
+				// Create a more helpful error message.
+				p.parseError(fmt.Sprintf("expected float as value for 'quantile' label, got %q", p.currentLabelPair.GetValue()))
+				return nil
+			}
+		} else {
+			p.currentLabels[p.currentLabelPair.GetName()] = p.currentLabelPair.GetValue()
+		}
+	}
+	// Similar special treatment of histograms.
+	if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
+		if p.currentLabelPair.GetName() == model.BucketLabel {
+			if p.currentBucket, p.err = strconv.ParseFloat(p.currentLabelPair.GetValue(), 64); p.err != nil {
+				// Create a more helpful error message.
+				p.parseError(fmt.Sprintf("expected float as value for 'le' label, got %q", p.currentLabelPair.GetValue()))
+				return nil
+			}
+		} else {
+			p.currentLabels[p.currentLabelPair.GetName()] = p.currentLabelPair.GetValue()
+		}
+	}
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	switch p.currentByte {
+	case ',':
+		return p.startLabelName
+
+	case '}':
+		if p.skipBlankTab(); p.err != nil {
+			return nil // Unexpected end of input.
+		}
+		return p.readingValue
+	default:
+		p.parseError(fmt.Sprintf("unexpected end of label value %q", p.currentLabelPair.Value))
+		return nil
+	}
+}
+
+// readingValue represents the state where the last byte read (now in
+// p.currentByte) is the first byte of the sample value (i.e. a float).
+func (p *TextParser) readingValue() stateFn {
+	// When we are here, we have read all the labels, so for the
+	// special case of a summary/histogram, we can finally find out
+	// if the metric already exists.
+	if p.currentMF.GetType() == dto.MetricType_SUMMARY {
+		signature := model.LabelsToSignature(p.currentLabels)
+		if summary := p.summaries[signature]; summary != nil {
+			p.currentMetric = summary
+		} else {
+			p.summaries[signature] = p.currentMetric
+			p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
+		}
+	} else if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
+		signature := model.LabelsToSignature(p.currentLabels)
+		if histogram := p.histograms[signature]; histogram != nil {
+			p.currentMetric = histogram
+		} else {
+			p.histograms[signature] = p.currentMetric
+			p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
+		}
+	} else {
+		p.currentMF.Metric = append(p.currentMF.Metric, p.currentMetric)
+	}
+	if p.readTokenUntilWhitespace(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	value, err := strconv.ParseFloat(p.currentToken.String(), 64)
+	if err != nil {
+		// Create a more helpful error message.
+		p.parseError(fmt.Sprintf("expected float as value, got %q", p.currentToken.String()))
+		return nil
+	}
+	switch p.currentMF.GetType() {
+	case dto.MetricType_COUNTER:
+		p.currentMetric.Counter = &dto.Counter{Value: proto.Float64(value)}
+	case dto.MetricType_GAUGE:
+		p.currentMetric.Gauge = &dto.Gauge{Value: proto.Float64(value)}
+	case dto.MetricType_UNTYPED:
+		p.currentMetric.Untyped = &dto.Untyped{Value: proto.Float64(value)}
+	case dto.MetricType_SUMMARY:
+		// *sigh*
+		if p.currentMetric.Summary == nil {
+			p.currentMetric.Summary = &dto.Summary{}
+		}
+		switch {
+		case p.currentIsSummaryCount:
+			p.currentMetric.Summary.SampleCount = proto.Uint64(uint64(value))
+		case p.currentIsSummarySum:
+			p.currentMetric.Summary.SampleSum = proto.Float64(value)
+		case !math.IsNaN(p.currentQuantile):
+			p.currentMetric.Summary.Quantile = append(
+				p.currentMetric.Summary.Quantile,
+				&dto.Quantile{
+					Quantile: proto.Float64(p.currentQuantile),
+					Value:    proto.Float64(value),
+				},
+			)
+		}
+	case dto.MetricType_HISTOGRAM:
+		// *sigh*
+		if p.currentMetric.Histogram == nil {
+			p.currentMetric.Histogram = &dto.Histogram{}
+		}
+		switch {
+		case p.currentIsHistogramCount:
+			p.currentMetric.Histogram.SampleCount = proto.Uint64(uint64(value))
+		case p.currentIsHistogramSum:
+			p.currentMetric.Histogram.SampleSum = proto.Float64(value)
+		case !math.IsNaN(p.currentBucket):
+			p.currentMetric.Histogram.Bucket = append(
+				p.currentMetric.Histogram.Bucket,
+				&dto.Bucket{
+					UpperBound:      proto.Float64(p.currentBucket),
+					CumulativeCount: proto.Uint64(uint64(value)),
+				},
+			)
+		}
+	default:
+		p.err = fmt.Errorf("unexpected type for metric name %q", p.currentMF.GetName())
+	}
+	if p.currentByte == '\n' {
+		return p.startOfLine
+	}
+	return p.startTimestamp
+}
+
+// startTimestamp represents the state where the next byte read from p.buf is
+// the start of the timestamp (or whitespace leading up to it).
+func (p *TextParser) startTimestamp() stateFn {
+	if p.skipBlankTab(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.readTokenUntilWhitespace(); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	timestamp, err := strconv.ParseInt(p.currentToken.String(), 10, 64)
+	if err != nil {
+		// Create a more helpful error message.
+		p.parseError(fmt.Sprintf("expected integer as timestamp, got %q", p.currentToken.String()))
+		return nil
+	}
+	p.currentMetric.TimestampMs = proto.Int64(timestamp)
+	if p.readTokenUntilNewline(false); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	if p.currentToken.Len() > 0 {
+		p.parseError(fmt.Sprintf("spurious string after timestamp: %q", p.currentToken.String()))
+		return nil
+	}
+	return p.startOfLine
+}
+
+// readingHelp represents the state where the last byte read (now in
+// p.currentByte) is the first byte of the docstring after 'HELP'.
+func (p *TextParser) readingHelp() stateFn {
+	if p.currentMF.Help != nil {
+		p.parseError(fmt.Sprintf("second HELP line for metric name %q", p.currentMF.GetName()))
+		return nil
+	}
+	// Rest of line is the docstring.
+	if p.readTokenUntilNewline(true); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	p.currentMF.Help = proto.String(p.currentToken.String())
+	return p.startOfLine
+}
+
+// readingType represents the state where the last byte read (now in
+// p.currentByte) is the first byte of the type hint after 'HELP'.
+func (p *TextParser) readingType() stateFn {
+	if p.currentMF.Type != nil {
+		p.parseError(fmt.Sprintf("second TYPE line for metric name %q, or TYPE reported after samples", p.currentMF.GetName()))
+		return nil
+	}
+	// Rest of line is the type.
+	if p.readTokenUntilNewline(false); p.err != nil {
+		return nil // Unexpected end of input.
+	}
+	metricType, ok := dto.MetricType_value[strings.ToUpper(p.currentToken.String())]
+	if !ok {
+		p.parseError(fmt.Sprintf("unknown metric type %q", p.currentToken.String()))
+		return nil
+	}
+	p.currentMF.Type = dto.MetricType(metricType).Enum()
+	return p.startOfLine
+}
+
+// parseError sets p.err to a ParseError at the current line with the given
+// message.
+func (p *TextParser) parseError(msg string) {
+	p.err = ParseError{
+		Line: p.lineCount,
+		Msg:  msg,
+	}
+}
+
+// skipBlankTab reads (and discards) bytes from p.buf until it encounters a byte
+// that is neither ' ' nor '\t'. That byte is left in p.currentByte.
+func (p *TextParser) skipBlankTab() {
+	for {
+		if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil || !isBlankOrTab(p.currentByte) {
+			return
+		}
+	}
+}
+
+// skipBlankTabIfCurrentBlankTab works exactly as skipBlankTab but doesn't do
+// anything if p.currentByte is neither ' ' nor '\t'.
+func (p *TextParser) skipBlankTabIfCurrentBlankTab() {
+	if isBlankOrTab(p.currentByte) {
+		p.skipBlankTab()
+	}
+}
+
+// readTokenUntilWhitespace copies bytes from p.buf into p.currentToken.  The
+// first byte considered is the byte already read (now in p.currentByte).  The
+// first whitespace byte encountered is still copied into p.currentByte, but not
+// into p.currentToken.
+func (p *TextParser) readTokenUntilWhitespace() {
+	p.currentToken.Reset()
+	for p.err == nil && !isBlankOrTab(p.currentByte) && p.currentByte != '\n' {
+		p.currentToken.WriteByte(p.currentByte)
+		p.currentByte, p.err = p.buf.ReadByte()
+	}
+}
+
+// readTokenUntilNewline copies bytes from p.buf into p.currentToken.  The first
+// byte considered is the byte already read (now in p.currentByte).  The first
+// newline byte encountered is still copied into p.currentByte, but not into
+// p.currentToken. If recognizeEscapeSequence is true, two escape sequences are
+// recognized: '\\' translates into '\', and '\n' into a line-feed character.
+// All other escape sequences are invalid and cause an error.
+func (p *TextParser) readTokenUntilNewline(recognizeEscapeSequence bool) {
+	p.currentToken.Reset()
+	escaped := false
+	for p.err == nil {
+		if recognizeEscapeSequence && escaped {
+			switch p.currentByte {
+			case '\\':
+				p.currentToken.WriteByte(p.currentByte)
+			case 'n':
+				p.currentToken.WriteByte('\n')
+			default:
+				p.parseError(fmt.Sprintf("invalid escape sequence '\\%c'", p.currentByte))
+				return
+			}
+			escaped = false
+		} else {
+			switch p.currentByte {
+			case '\n':
+				return
+			case '\\':
+				escaped = true
+			default:
+				p.currentToken.WriteByte(p.currentByte)
+			}
+		}
+		p.currentByte, p.err = p.buf.ReadByte()
+	}
+}
+
+// readTokenAsMetricName copies a metric name from p.buf into p.currentToken.
+// The first byte considered is the byte already read (now in p.currentByte).
+// The first byte not part of a metric name is still copied into p.currentByte,
+// but not into p.currentToken.
+func (p *TextParser) readTokenAsMetricName() {
+	p.currentToken.Reset()
+	if !isValidMetricNameStart(p.currentByte) {
+		return
+	}
+	for {
+		p.currentToken.WriteByte(p.currentByte)
+		p.currentByte, p.err = p.buf.ReadByte()
+		if p.err != nil || !isValidMetricNameContinuation(p.currentByte) {
+			return
+		}
+	}
+}
+
+// readTokenAsLabelName copies a label name from p.buf into p.currentToken.
+// The first byte considered is the byte already read (now in p.currentByte).
+// The first byte not part of a label name is still copied into p.currentByte,
+// but not into p.currentToken.
+func (p *TextParser) readTokenAsLabelName() {
+	p.currentToken.Reset()
+	if !isValidLabelNameStart(p.currentByte) {
+		return
+	}
+	for {
+		p.currentToken.WriteByte(p.currentByte)
+		p.currentByte, p.err = p.buf.ReadByte()
+		if p.err != nil || !isValidLabelNameContinuation(p.currentByte) {
+			return
+		}
+	}
+}
+
+// readTokenAsLabelValue copies a label value from p.buf into p.currentToken.
+// In contrast to the other 'readTokenAs...' functions, which start with the
+// last read byte in p.currentByte, this method ignores p.currentByte and starts
+// with reading a new byte from p.buf. The first byte not part of a label value
+// is still copied into p.currentByte, but not into p.currentToken.
+func (p *TextParser) readTokenAsLabelValue() {
+	p.currentToken.Reset()
+	escaped := false
+	for {
+		if p.currentByte, p.err = p.buf.ReadByte(); p.err != nil {
+			return
+		}
+		if escaped {
+			switch p.currentByte {
+			case '"', '\\':
+				p.currentToken.WriteByte(p.currentByte)
+			case 'n':
+				p.currentToken.WriteByte('\n')
+			default:
+				p.parseError(fmt.Sprintf("invalid escape sequence '\\%c'", p.currentByte))
+				return
+			}
+			escaped = false
+			continue
+		}
+		switch p.currentByte {
+		case '"':
+			return
+		case '\n':
+			p.parseError(fmt.Sprintf("label value %q contains unescaped new-line", p.currentToken.String()))
+			return
+		case '\\':
+			escaped = true
+		default:
+			p.currentToken.WriteByte(p.currentByte)
+		}
+	}
+}
+
+func (p *TextParser) setOrCreateCurrentMF() {
+	p.currentIsSummaryCount = false
+	p.currentIsSummarySum = false
+	p.currentIsHistogramCount = false
+	p.currentIsHistogramSum = false
+	name := p.currentToken.String()
+	if p.currentMF = p.metricFamiliesByName[name]; p.currentMF != nil {
+		return
+	}
+	// Try out if this is a _sum or _count for a summary/histogram.
+	summaryName := summaryMetricName(name)
+	if p.currentMF = p.metricFamiliesByName[summaryName]; p.currentMF != nil {
+		if p.currentMF.GetType() == dto.MetricType_SUMMARY {
+			if isCount(name) {
+				p.currentIsSummaryCount = true
+			}
+			if isSum(name) {
+				p.currentIsSummarySum = true
+			}
+			return
+		}
+	}
+	histogramName := histogramMetricName(name)
+	if p.currentMF = p.metricFamiliesByName[histogramName]; p.currentMF != nil {
+		if p.currentMF.GetType() == dto.MetricType_HISTOGRAM {
+			if isCount(name) {
+				p.currentIsHistogramCount = true
+			}
+			if isSum(name) {
+				p.currentIsHistogramSum = true
+			}
+			return
+		}
+	}
+	p.currentMF = &dto.MetricFamily{Name: proto.String(name)}
+	p.metricFamiliesByName[name] = p.currentMF
+}
+
+func isValidLabelNameStart(b byte) bool {
+	return (b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_'
+}
+
+func isValidLabelNameContinuation(b byte) bool {
+	return isValidLabelNameStart(b) || (b >= '0' && b <= '9')
+}
+
+func isValidMetricNameStart(b byte) bool {
+	return isValidLabelNameStart(b) || b == ':'
+}
+
+func isValidMetricNameContinuation(b byte) bool {
+	return isValidLabelNameContinuation(b) || b == ':'
+}
+
+func isBlankOrTab(b byte) bool {
+	return b == ' ' || b == '\t'
+}
+
+func isCount(name string) bool {
+	return len(name) > 6 && name[len(name)-6:] == "_count"
+}
+
+func isSum(name string) bool {
+	return len(name) > 4 && name[len(name)-4:] == "_sum"
+}
+
+func isBucket(name string) bool {
+	return len(name) > 7 && name[len(name)-7:] == "_bucket"
+}
+
+func summaryMetricName(name string) string {
+	switch {
+	case isCount(name):
+		return name[:len(name)-6]
+	case isSum(name):
+		return name[:len(name)-4]
+	default:
+		return name
+	}
+}
+
+func histogramMetricName(name string) string {
+	switch {
+	case isCount(name):
+		return name[:len(name)-6]
+	case isSum(name):
+		return name[:len(name)-4]
+	case isBucket(name):
+		return name[:len(name)-7]
+	default:
+		return name
+	}
+}
diff --git a/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go b/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
new file mode 100644
index 0000000000..648b38cb65
--- /dev/null
+++ b/vendor/github.com/prometheus/common/internal/bitbucket.org/ww/goautoneg/autoneg.go
@@ -0,0 +1,162 @@
+/*
+HTTP Content-Type Autonegotiation.
+
+The functions in this package implement the behaviour specified in
+http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html
+
+Copyright (c) 2011, Open Knowledge Foundation Ltd.
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+    Redistributions of source code must retain the above copyright
+    notice, this list of conditions and the following disclaimer.
+
+    Redistributions in binary form must reproduce the above copyright
+    notice, this list of conditions and the following disclaimer in
+    the documentation and/or other materials provided with the
+    distribution.
+
+    Neither the name of the Open Knowledge Foundation Ltd. nor the
+    names of its contributors may be used to endorse or promote
+    products derived from this software without specific prior written
+    permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+
+*/
+package goautoneg
+
+import (
+	"sort"
+	"strconv"
+	"strings"
+)
+
+// Structure to represent a clause in an HTTP Accept Header
+type Accept struct {
+	Type, SubType string
+	Q             float64
+	Params        map[string]string
+}
+
+// For internal use, so that we can use the sort interface
+type accept_slice []Accept
+
+func (accept accept_slice) Len() int {
+	slice := []Accept(accept)
+	return len(slice)
+}
+
+func (accept accept_slice) Less(i, j int) bool {
+	slice := []Accept(accept)
+	ai, aj := slice[i], slice[j]
+	if ai.Q > aj.Q {
+		return true
+	}
+	if ai.Type != "*" && aj.Type == "*" {
+		return true
+	}
+	if ai.SubType != "*" && aj.SubType == "*" {
+		return true
+	}
+	return false
+}
+
+func (accept accept_slice) Swap(i, j int) {
+	slice := []Accept(accept)
+	slice[i], slice[j] = slice[j], slice[i]
+}
+
+// Parse an Accept Header string returning a sorted list
+// of clauses
+func ParseAccept(header string) (accept []Accept) {
+	parts := strings.Split(header, ",")
+	accept = make([]Accept, 0, len(parts))
+	for _, part := range parts {
+		part := strings.Trim(part, " ")
+
+		a := Accept{}
+		a.Params = make(map[string]string)
+		a.Q = 1.0
+
+		mrp := strings.Split(part, ";")
+
+		media_range := mrp[0]
+		sp := strings.Split(media_range, "/")
+		a.Type = strings.Trim(sp[0], " ")
+
+		switch {
+		case len(sp) == 1 && a.Type == "*":
+			a.SubType = "*"
+		case len(sp) == 2:
+			a.SubType = strings.Trim(sp[1], " ")
+		default:
+			continue
+		}
+
+		if len(mrp) == 1 {
+			accept = append(accept, a)
+			continue
+		}
+
+		for _, param := range mrp[1:] {
+			sp := strings.SplitN(param, "=", 2)
+			if len(sp) != 2 {
+				continue
+			}
+			token := strings.Trim(sp[0], " ")
+			if token == "q" {
+				a.Q, _ = strconv.ParseFloat(sp[1], 32)
+			} else {
+				a.Params[token] = strings.Trim(sp[1], " ")
+			}
+		}
+
+		accept = append(accept, a)
+	}
+
+	slice := accept_slice(accept)
+	sort.Sort(slice)
+
+	return
+}
+
+// Negotiate the most appropriate content_type given the accept header
+// and a list of alternatives.
+func Negotiate(header string, alternatives []string) (content_type string) {
+	asp := make([][]string, 0, len(alternatives))
+	for _, ctype := range alternatives {
+		asp = append(asp, strings.SplitN(ctype, "/", 2))
+	}
+	for _, clause := range ParseAccept(header) {
+		for i, ctsp := range asp {
+			if clause.Type == ctsp[0] && clause.SubType == ctsp[1] {
+				content_type = alternatives[i]
+				return
+			}
+			if clause.Type == ctsp[0] && clause.SubType == "*" {
+				content_type = alternatives[i]
+				return
+			}
+			if clause.Type == "*" && clause.SubType == "*" {
+				content_type = alternatives[i]
+				return
+			}
+		}
+	}
+	return
+}
diff --git a/vendor/github.com/prometheus/common/model/alert.go b/vendor/github.com/prometheus/common/model/alert.go
new file mode 100644
index 0000000000..35e739c7ad
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/alert.go
@@ -0,0 +1,136 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"fmt"
+	"time"
+)
+
+type AlertStatus string
+
+const (
+	AlertFiring   AlertStatus = "firing"
+	AlertResolved AlertStatus = "resolved"
+)
+
+// Alert is a generic representation of an alert in the Prometheus eco-system.
+type Alert struct {
+	// Label value pairs for purpose of aggregation, matching, and disposition
+	// dispatching. This must minimally include an "alertname" label.
+	Labels LabelSet `json:"labels"`
+
+	// Extra key/value information which does not define alert identity.
+	Annotations LabelSet `json:"annotations"`
+
+	// The known time range for this alert. Both ends are optional.
+	StartsAt     time.Time `json:"startsAt,omitempty"`
+	EndsAt       time.Time `json:"endsAt,omitempty"`
+	GeneratorURL string    `json:"generatorURL"`
+}
+
+// Name returns the name of the alert. It is equivalent to the "alertname" label.
+func (a *Alert) Name() string {
+	return string(a.Labels[AlertNameLabel])
+}
+
+// Fingerprint returns a unique hash for the alert. It is equivalent to
+// the fingerprint of the alert's label set.
+func (a *Alert) Fingerprint() Fingerprint {
+	return a.Labels.Fingerprint()
+}
+
+func (a *Alert) String() string {
+	s := fmt.Sprintf("%s[%s]", a.Name(), a.Fingerprint().String()[:7])
+	if a.Resolved() {
+		return s + "[resolved]"
+	}
+	return s + "[active]"
+}
+
+// Resolved returns true iff the activity interval ended in the past.
+func (a *Alert) Resolved() bool {
+	return a.ResolvedAt(time.Now())
+}
+
+// ResolvedAt returns true off the activity interval ended before
+// the given timestamp.
+func (a *Alert) ResolvedAt(ts time.Time) bool {
+	if a.EndsAt.IsZero() {
+		return false
+	}
+	return !a.EndsAt.After(ts)
+}
+
+// Status returns the status of the alert.
+func (a *Alert) Status() AlertStatus {
+	if a.Resolved() {
+		return AlertResolved
+	}
+	return AlertFiring
+}
+
+// Validate checks whether the alert data is inconsistent.
+func (a *Alert) Validate() error {
+	if a.StartsAt.IsZero() {
+		return fmt.Errorf("start time missing")
+	}
+	if !a.EndsAt.IsZero() && a.EndsAt.Before(a.StartsAt) {
+		return fmt.Errorf("start time must be before end time")
+	}
+	if err := a.Labels.Validate(); err != nil {
+		return fmt.Errorf("invalid label set: %s", err)
+	}
+	if len(a.Labels) == 0 {
+		return fmt.Errorf("at least one label pair required")
+	}
+	if err := a.Annotations.Validate(); err != nil {
+		return fmt.Errorf("invalid annotations: %s", err)
+	}
+	return nil
+}
+
+// Alert is a list of alerts that can be sorted in chronological order.
+type Alerts []*Alert
+
+func (as Alerts) Len() int      { return len(as) }
+func (as Alerts) Swap(i, j int) { as[i], as[j] = as[j], as[i] }
+
+func (as Alerts) Less(i, j int) bool {
+	if as[i].StartsAt.Before(as[j].StartsAt) {
+		return true
+	}
+	if as[i].EndsAt.Before(as[j].EndsAt) {
+		return true
+	}
+	return as[i].Fingerprint() < as[j].Fingerprint()
+}
+
+// HasFiring returns true iff one of the alerts is not resolved.
+func (as Alerts) HasFiring() bool {
+	for _, a := range as {
+		if !a.Resolved() {
+			return true
+		}
+	}
+	return false
+}
+
+// Status returns StatusFiring iff at least one of the alerts is firing.
+func (as Alerts) Status() AlertStatus {
+	if as.HasFiring() {
+		return AlertFiring
+	}
+	return AlertResolved
+}
diff --git a/vendor/github.com/prometheus/common/model/fingerprinting.go b/vendor/github.com/prometheus/common/model/fingerprinting.go
new file mode 100644
index 0000000000..fc4de4106e
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/fingerprinting.go
@@ -0,0 +1,105 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"fmt"
+	"strconv"
+)
+
+// Fingerprint provides a hash-capable representation of a Metric.
+// For our purposes, FNV-1A 64-bit is used.
+type Fingerprint uint64
+
+// FingerprintFromString transforms a string representation into a Fingerprint.
+func FingerprintFromString(s string) (Fingerprint, error) {
+	num, err := strconv.ParseUint(s, 16, 64)
+	return Fingerprint(num), err
+}
+
+// ParseFingerprint parses the input string into a fingerprint.
+func ParseFingerprint(s string) (Fingerprint, error) {
+	num, err := strconv.ParseUint(s, 16, 64)
+	if err != nil {
+		return 0, err
+	}
+	return Fingerprint(num), nil
+}
+
+func (f Fingerprint) String() string {
+	return fmt.Sprintf("%016x", uint64(f))
+}
+
+// Fingerprints represents a collection of Fingerprint subject to a given
+// natural sorting scheme. It implements sort.Interface.
+type Fingerprints []Fingerprint
+
+// Len implements sort.Interface.
+func (f Fingerprints) Len() int {
+	return len(f)
+}
+
+// Less implements sort.Interface.
+func (f Fingerprints) Less(i, j int) bool {
+	return f[i] < f[j]
+}
+
+// Swap implements sort.Interface.
+func (f Fingerprints) Swap(i, j int) {
+	f[i], f[j] = f[j], f[i]
+}
+
+// FingerprintSet is a set of Fingerprints.
+type FingerprintSet map[Fingerprint]struct{}
+
+// Equal returns true if both sets contain the same elements (and not more).
+func (s FingerprintSet) Equal(o FingerprintSet) bool {
+	if len(s) != len(o) {
+		return false
+	}
+
+	for k := range s {
+		if _, ok := o[k]; !ok {
+			return false
+		}
+	}
+
+	return true
+}
+
+// Intersection returns the elements contained in both sets.
+func (s FingerprintSet) Intersection(o FingerprintSet) FingerprintSet {
+	myLength, otherLength := len(s), len(o)
+	if myLength == 0 || otherLength == 0 {
+		return FingerprintSet{}
+	}
+
+	subSet := s
+	superSet := o
+
+	if otherLength < myLength {
+		subSet = o
+		superSet = s
+	}
+
+	out := FingerprintSet{}
+
+	for k := range subSet {
+		if _, ok := superSet[k]; ok {
+			out[k] = struct{}{}
+		}
+	}
+
+	return out
+}
diff --git a/vendor/github.com/prometheus/common/model/fnv.go b/vendor/github.com/prometheus/common/model/fnv.go
new file mode 100644
index 0000000000..038fc1c900
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/fnv.go
@@ -0,0 +1,42 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+// Inline and byte-free variant of hash/fnv's fnv64a.
+
+const (
+	offset64 = 14695981039346656037
+	prime64  = 1099511628211
+)
+
+// hashNew initializies a new fnv64a hash value.
+func hashNew() uint64 {
+	return offset64
+}
+
+// hashAdd adds a string to a fnv64a hash value, returning the updated hash.
+func hashAdd(h uint64, s string) uint64 {
+	for i := 0; i < len(s); i++ {
+		h ^= uint64(s[i])
+		h *= prime64
+	}
+	return h
+}
+
+// hashAddByte adds a byte to a fnv64a hash value, returning the updated hash.
+func hashAddByte(h uint64, b byte) uint64 {
+	h ^= uint64(b)
+	h *= prime64
+	return h
+}
diff --git a/vendor/github.com/prometheus/common/model/labels.go b/vendor/github.com/prometheus/common/model/labels.go
new file mode 100644
index 0000000000..41051a01a3
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/labels.go
@@ -0,0 +1,210 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"encoding/json"
+	"fmt"
+	"regexp"
+	"strings"
+	"unicode/utf8"
+)
+
+const (
+	// AlertNameLabel is the name of the label containing the an alert's name.
+	AlertNameLabel = "alertname"
+
+	// ExportedLabelPrefix is the prefix to prepend to the label names present in
+	// exported metrics if a label of the same name is added by the server.
+	ExportedLabelPrefix = "exported_"
+
+	// MetricNameLabel is the label name indicating the metric name of a
+	// timeseries.
+	MetricNameLabel = "__name__"
+
+	// SchemeLabel is the name of the label that holds the scheme on which to
+	// scrape a target.
+	SchemeLabel = "__scheme__"
+
+	// AddressLabel is the name of the label that holds the address of
+	// a scrape target.
+	AddressLabel = "__address__"
+
+	// MetricsPathLabel is the name of the label that holds the path on which to
+	// scrape a target.
+	MetricsPathLabel = "__metrics_path__"
+
+	// ReservedLabelPrefix is a prefix which is not legal in user-supplied
+	// label names.
+	ReservedLabelPrefix = "__"
+
+	// MetaLabelPrefix is a prefix for labels that provide meta information.
+	// Labels with this prefix are used for intermediate label processing and
+	// will not be attached to time series.
+	MetaLabelPrefix = "__meta_"
+
+	// TmpLabelPrefix is a prefix for temporary labels as part of relabelling.
+	// Labels with this prefix are used for intermediate label processing and
+	// will not be attached to time series. This is reserved for use in
+	// Prometheus configuration files by users.
+	TmpLabelPrefix = "__tmp_"
+
+	// ParamLabelPrefix is a prefix for labels that provide URL parameters
+	// used to scrape a target.
+	ParamLabelPrefix = "__param_"
+
+	// JobLabel is the label name indicating the job from which a timeseries
+	// was scraped.
+	JobLabel = "job"
+
+	// InstanceLabel is the label name used for the instance label.
+	InstanceLabel = "instance"
+
+	// BucketLabel is used for the label that defines the upper bound of a
+	// bucket of a histogram ("le" -> "less or equal").
+	BucketLabel = "le"
+
+	// QuantileLabel is used for the label that defines the quantile in a
+	// summary.
+	QuantileLabel = "quantile"
+)
+
+// LabelNameRE is a regular expression matching valid label names. Note that the
+// IsValid method of LabelName performs the same check but faster than a match
+// with this regular expression.
+var LabelNameRE = regexp.MustCompile("^[a-zA-Z_][a-zA-Z0-9_]*$")
+
+// A LabelName is a key for a LabelSet or Metric.  It has a value associated
+// therewith.
+type LabelName string
+
+// IsValid is true iff the label name matches the pattern of LabelNameRE. This
+// method, however, does not use LabelNameRE for the check but a much faster
+// hardcoded implementation.
+func (ln LabelName) IsValid() bool {
+	if len(ln) == 0 {
+		return false
+	}
+	for i, b := range ln {
+		if !((b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_' || (b >= '0' && b <= '9' && i > 0)) {
+			return false
+		}
+	}
+	return true
+}
+
+// UnmarshalYAML implements the yaml.Unmarshaler interface.
+func (ln *LabelName) UnmarshalYAML(unmarshal func(interface{}) error) error {
+	var s string
+	if err := unmarshal(&s); err != nil {
+		return err
+	}
+	if !LabelName(s).IsValid() {
+		return fmt.Errorf("%q is not a valid label name", s)
+	}
+	*ln = LabelName(s)
+	return nil
+}
+
+// UnmarshalJSON implements the json.Unmarshaler interface.
+func (ln *LabelName) UnmarshalJSON(b []byte) error {
+	var s string
+	if err := json.Unmarshal(b, &s); err != nil {
+		return err
+	}
+	if !LabelName(s).IsValid() {
+		return fmt.Errorf("%q is not a valid label name", s)
+	}
+	*ln = LabelName(s)
+	return nil
+}
+
+// LabelNames is a sortable LabelName slice. In implements sort.Interface.
+type LabelNames []LabelName
+
+func (l LabelNames) Len() int {
+	return len(l)
+}
+
+func (l LabelNames) Less(i, j int) bool {
+	return l[i] < l[j]
+}
+
+func (l LabelNames) Swap(i, j int) {
+	l[i], l[j] = l[j], l[i]
+}
+
+func (l LabelNames) String() string {
+	labelStrings := make([]string, 0, len(l))
+	for _, label := range l {
+		labelStrings = append(labelStrings, string(label))
+	}
+	return strings.Join(labelStrings, ", ")
+}
+
+// A LabelValue is an associated value for a LabelName.
+type LabelValue string
+
+// IsValid returns true iff the string is a valid UTF8.
+func (lv LabelValue) IsValid() bool {
+	return utf8.ValidString(string(lv))
+}
+
+// LabelValues is a sortable LabelValue slice. It implements sort.Interface.
+type LabelValues []LabelValue
+
+func (l LabelValues) Len() int {
+	return len(l)
+}
+
+func (l LabelValues) Less(i, j int) bool {
+	return string(l[i]) < string(l[j])
+}
+
+func (l LabelValues) Swap(i, j int) {
+	l[i], l[j] = l[j], l[i]
+}
+
+// LabelPair pairs a name with a value.
+type LabelPair struct {
+	Name  LabelName
+	Value LabelValue
+}
+
+// LabelPairs is a sortable slice of LabelPair pointers. It implements
+// sort.Interface.
+type LabelPairs []*LabelPair
+
+func (l LabelPairs) Len() int {
+	return len(l)
+}
+
+func (l LabelPairs) Less(i, j int) bool {
+	switch {
+	case l[i].Name > l[j].Name:
+		return false
+	case l[i].Name < l[j].Name:
+		return true
+	case l[i].Value > l[j].Value:
+		return false
+	case l[i].Value < l[j].Value:
+		return true
+	default:
+		return false
+	}
+}
+
+func (l LabelPairs) Swap(i, j int) {
+	l[i], l[j] = l[j], l[i]
+}
diff --git a/vendor/github.com/prometheus/common/model/labelset.go b/vendor/github.com/prometheus/common/model/labelset.go
new file mode 100644
index 0000000000..6eda08a739
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/labelset.go
@@ -0,0 +1,169 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"encoding/json"
+	"fmt"
+	"sort"
+	"strings"
+)
+
+// A LabelSet is a collection of LabelName and LabelValue pairs.  The LabelSet
+// may be fully-qualified down to the point where it may resolve to a single
+// Metric in the data store or not.  All operations that occur within the realm
+// of a LabelSet can emit a vector of Metric entities to which the LabelSet may
+// match.
+type LabelSet map[LabelName]LabelValue
+
+// Validate checks whether all names and values in the label set
+// are valid.
+func (ls LabelSet) Validate() error {
+	for ln, lv := range ls {
+		if !ln.IsValid() {
+			return fmt.Errorf("invalid name %q", ln)
+		}
+		if !lv.IsValid() {
+			return fmt.Errorf("invalid value %q", lv)
+		}
+	}
+	return nil
+}
+
+// Equal returns true iff both label sets have exactly the same key/value pairs.
+func (ls LabelSet) Equal(o LabelSet) bool {
+	if len(ls) != len(o) {
+		return false
+	}
+	for ln, lv := range ls {
+		olv, ok := o[ln]
+		if !ok {
+			return false
+		}
+		if olv != lv {
+			return false
+		}
+	}
+	return true
+}
+
+// Before compares the metrics, using the following criteria:
+//
+// If m has fewer labels than o, it is before o. If it has more, it is not.
+//
+// If the number of labels is the same, the superset of all label names is
+// sorted alphanumerically. The first differing label pair found in that order
+// determines the outcome: If the label does not exist at all in m, then m is
+// before o, and vice versa. Otherwise the label value is compared
+// alphanumerically.
+//
+// If m and o are equal, the method returns false.
+func (ls LabelSet) Before(o LabelSet) bool {
+	if len(ls) < len(o) {
+		return true
+	}
+	if len(ls) > len(o) {
+		return false
+	}
+
+	lns := make(LabelNames, 0, len(ls)+len(o))
+	for ln := range ls {
+		lns = append(lns, ln)
+	}
+	for ln := range o {
+		lns = append(lns, ln)
+	}
+	// It's probably not worth it to de-dup lns.
+	sort.Sort(lns)
+	for _, ln := range lns {
+		mlv, ok := ls[ln]
+		if !ok {
+			return true
+		}
+		olv, ok := o[ln]
+		if !ok {
+			return false
+		}
+		if mlv < olv {
+			return true
+		}
+		if mlv > olv {
+			return false
+		}
+	}
+	return false
+}
+
+// Clone returns a copy of the label set.
+func (ls LabelSet) Clone() LabelSet {
+	lsn := make(LabelSet, len(ls))
+	for ln, lv := range ls {
+		lsn[ln] = lv
+	}
+	return lsn
+}
+
+// Merge is a helper function to non-destructively merge two label sets.
+func (l LabelSet) Merge(other LabelSet) LabelSet {
+	result := make(LabelSet, len(l))
+
+	for k, v := range l {
+		result[k] = v
+	}
+
+	for k, v := range other {
+		result[k] = v
+	}
+
+	return result
+}
+
+func (l LabelSet) String() string {
+	lstrs := make([]string, 0, len(l))
+	for l, v := range l {
+		lstrs = append(lstrs, fmt.Sprintf("%s=%q", l, v))
+	}
+
+	sort.Strings(lstrs)
+	return fmt.Sprintf("{%s}", strings.Join(lstrs, ", "))
+}
+
+// Fingerprint returns the LabelSet's fingerprint.
+func (ls LabelSet) Fingerprint() Fingerprint {
+	return labelSetToFingerprint(ls)
+}
+
+// FastFingerprint returns the LabelSet's Fingerprint calculated by a faster hashing
+// algorithm, which is, however, more susceptible to hash collisions.
+func (ls LabelSet) FastFingerprint() Fingerprint {
+	return labelSetToFastFingerprint(ls)
+}
+
+// UnmarshalJSON implements the json.Unmarshaler interface.
+func (l *LabelSet) UnmarshalJSON(b []byte) error {
+	var m map[LabelName]LabelValue
+	if err := json.Unmarshal(b, &m); err != nil {
+		return err
+	}
+	// encoding/json only unmarshals maps of the form map[string]T. It treats
+	// LabelName as a string and does not call its UnmarshalJSON method.
+	// Thus, we have to replicate the behavior here.
+	for ln := range m {
+		if !ln.IsValid() {
+			return fmt.Errorf("%q is not a valid label name", ln)
+		}
+	}
+	*l = LabelSet(m)
+	return nil
+}
diff --git a/vendor/github.com/prometheus/common/model/metric.go b/vendor/github.com/prometheus/common/model/metric.go
new file mode 100644
index 0000000000..f7250909b9
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/metric.go
@@ -0,0 +1,103 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"fmt"
+	"regexp"
+	"sort"
+	"strings"
+)
+
+var (
+	separator = []byte{0}
+	// MetricNameRE is a regular expression matching valid metric
+	// names. Note that the IsValidMetricName function performs the same
+	// check but faster than a match with this regular expression.
+	MetricNameRE = regexp.MustCompile(`^[a-zA-Z_:][a-zA-Z0-9_:]*$`)
+)
+
+// A Metric is similar to a LabelSet, but the key difference is that a Metric is
+// a singleton and refers to one and only one stream of samples.
+type Metric LabelSet
+
+// Equal compares the metrics.
+func (m Metric) Equal(o Metric) bool {
+	return LabelSet(m).Equal(LabelSet(o))
+}
+
+// Before compares the metrics' underlying label sets.
+func (m Metric) Before(o Metric) bool {
+	return LabelSet(m).Before(LabelSet(o))
+}
+
+// Clone returns a copy of the Metric.
+func (m Metric) Clone() Metric {
+	clone := make(Metric, len(m))
+	for k, v := range m {
+		clone[k] = v
+	}
+	return clone
+}
+
+func (m Metric) String() string {
+	metricName, hasName := m[MetricNameLabel]
+	numLabels := len(m) - 1
+	if !hasName {
+		numLabels = len(m)
+	}
+	labelStrings := make([]string, 0, numLabels)
+	for label, value := range m {
+		if label != MetricNameLabel {
+			labelStrings = append(labelStrings, fmt.Sprintf("%s=%q", label, value))
+		}
+	}
+
+	switch numLabels {
+	case 0:
+		if hasName {
+			return string(metricName)
+		}
+		return "{}"
+	default:
+		sort.Strings(labelStrings)
+		return fmt.Sprintf("%s{%s}", metricName, strings.Join(labelStrings, ", "))
+	}
+}
+
+// Fingerprint returns a Metric's Fingerprint.
+func (m Metric) Fingerprint() Fingerprint {
+	return LabelSet(m).Fingerprint()
+}
+
+// FastFingerprint returns a Metric's Fingerprint calculated by a faster hashing
+// algorithm, which is, however, more susceptible to hash collisions.
+func (m Metric) FastFingerprint() Fingerprint {
+	return LabelSet(m).FastFingerprint()
+}
+
+// IsValidMetricName returns true iff name matches the pattern of MetricNameRE.
+// This function, however, does not use MetricNameRE for the check but a much
+// faster hardcoded implementation.
+func IsValidMetricName(n LabelValue) bool {
+	if len(n) == 0 {
+		return false
+	}
+	for i, b := range n {
+		if !((b >= 'a' && b <= 'z') || (b >= 'A' && b <= 'Z') || b == '_' || b == ':' || (b >= '0' && b <= '9' && i > 0)) {
+			return false
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/prometheus/common/model/model.go b/vendor/github.com/prometheus/common/model/model.go
new file mode 100644
index 0000000000..a7b9691707
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/model.go
@@ -0,0 +1,16 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package model contains common data structures that are shared across
+// Prometheus components and libraries.
+package model
diff --git a/vendor/github.com/prometheus/common/model/signature.go b/vendor/github.com/prometheus/common/model/signature.go
new file mode 100644
index 0000000000..8762b13c63
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/signature.go
@@ -0,0 +1,144 @@
+// Copyright 2014 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"sort"
+)
+
+// SeparatorByte is a byte that cannot occur in valid UTF-8 sequences and is
+// used to separate label names, label values, and other strings from each other
+// when calculating their combined hash value (aka signature aka fingerprint).
+const SeparatorByte byte = 255
+
+var (
+	// cache the signature of an empty label set.
+	emptyLabelSignature = hashNew()
+)
+
+// LabelsToSignature returns a quasi-unique signature (i.e., fingerprint) for a
+// given label set. (Collisions are possible but unlikely if the number of label
+// sets the function is applied to is small.)
+func LabelsToSignature(labels map[string]string) uint64 {
+	if len(labels) == 0 {
+		return emptyLabelSignature
+	}
+
+	labelNames := make([]string, 0, len(labels))
+	for labelName := range labels {
+		labelNames = append(labelNames, labelName)
+	}
+	sort.Strings(labelNames)
+
+	sum := hashNew()
+	for _, labelName := range labelNames {
+		sum = hashAdd(sum, labelName)
+		sum = hashAddByte(sum, SeparatorByte)
+		sum = hashAdd(sum, labels[labelName])
+		sum = hashAddByte(sum, SeparatorByte)
+	}
+	return sum
+}
+
+// labelSetToFingerprint works exactly as LabelsToSignature but takes a LabelSet as
+// parameter (rather than a label map) and returns a Fingerprint.
+func labelSetToFingerprint(ls LabelSet) Fingerprint {
+	if len(ls) == 0 {
+		return Fingerprint(emptyLabelSignature)
+	}
+
+	labelNames := make(LabelNames, 0, len(ls))
+	for labelName := range ls {
+		labelNames = append(labelNames, labelName)
+	}
+	sort.Sort(labelNames)
+
+	sum := hashNew()
+	for _, labelName := range labelNames {
+		sum = hashAdd(sum, string(labelName))
+		sum = hashAddByte(sum, SeparatorByte)
+		sum = hashAdd(sum, string(ls[labelName]))
+		sum = hashAddByte(sum, SeparatorByte)
+	}
+	return Fingerprint(sum)
+}
+
+// labelSetToFastFingerprint works similar to labelSetToFingerprint but uses a
+// faster and less allocation-heavy hash function, which is more susceptible to
+// create hash collisions. Therefore, collision detection should be applied.
+func labelSetToFastFingerprint(ls LabelSet) Fingerprint {
+	if len(ls) == 0 {
+		return Fingerprint(emptyLabelSignature)
+	}
+
+	var result uint64
+	for labelName, labelValue := range ls {
+		sum := hashNew()
+		sum = hashAdd(sum, string(labelName))
+		sum = hashAddByte(sum, SeparatorByte)
+		sum = hashAdd(sum, string(labelValue))
+		result ^= sum
+	}
+	return Fingerprint(result)
+}
+
+// SignatureForLabels works like LabelsToSignature but takes a Metric as
+// parameter (rather than a label map) and only includes the labels with the
+// specified LabelNames into the signature calculation. The labels passed in
+// will be sorted by this function.
+func SignatureForLabels(m Metric, labels ...LabelName) uint64 {
+	if len(labels) == 0 {
+		return emptyLabelSignature
+	}
+
+	sort.Sort(LabelNames(labels))
+
+	sum := hashNew()
+	for _, label := range labels {
+		sum = hashAdd(sum, string(label))
+		sum = hashAddByte(sum, SeparatorByte)
+		sum = hashAdd(sum, string(m[label]))
+		sum = hashAddByte(sum, SeparatorByte)
+	}
+	return sum
+}
+
+// SignatureWithoutLabels works like LabelsToSignature but takes a Metric as
+// parameter (rather than a label map) and excludes the labels with any of the
+// specified LabelNames from the signature calculation.
+func SignatureWithoutLabels(m Metric, labels map[LabelName]struct{}) uint64 {
+	if len(m) == 0 {
+		return emptyLabelSignature
+	}
+
+	labelNames := make(LabelNames, 0, len(m))
+	for labelName := range m {
+		if _, exclude := labels[labelName]; !exclude {
+			labelNames = append(labelNames, labelName)
+		}
+	}
+	if len(labelNames) == 0 {
+		return emptyLabelSignature
+	}
+	sort.Sort(labelNames)
+
+	sum := hashNew()
+	for _, labelName := range labelNames {
+		sum = hashAdd(sum, string(labelName))
+		sum = hashAddByte(sum, SeparatorByte)
+		sum = hashAdd(sum, string(m[labelName]))
+		sum = hashAddByte(sum, SeparatorByte)
+	}
+	return sum
+}
diff --git a/vendor/github.com/prometheus/common/model/silence.go b/vendor/github.com/prometheus/common/model/silence.go
new file mode 100644
index 0000000000..bb99889d2c
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/silence.go
@@ -0,0 +1,106 @@
+// Copyright 2015 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"encoding/json"
+	"fmt"
+	"regexp"
+	"time"
+)
+
+// Matcher describes a matches the value of a given label.
+type Matcher struct {
+	Name    LabelName `json:"name"`
+	Value   string    `json:"value"`
+	IsRegex bool      `json:"isRegex"`
+}
+
+func (m *Matcher) UnmarshalJSON(b []byte) error {
+	type plain Matcher
+	if err := json.Unmarshal(b, (*plain)(m)); err != nil {
+		return err
+	}
+
+	if len(m.Name) == 0 {
+		return fmt.Errorf("label name in matcher must not be empty")
+	}
+	if m.IsRegex {
+		if _, err := regexp.Compile(m.Value); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// Validate returns true iff all fields of the matcher have valid values.
+func (m *Matcher) Validate() error {
+	if !m.Name.IsValid() {
+		return fmt.Errorf("invalid name %q", m.Name)
+	}
+	if m.IsRegex {
+		if _, err := regexp.Compile(m.Value); err != nil {
+			return fmt.Errorf("invalid regular expression %q", m.Value)
+		}
+	} else if !LabelValue(m.Value).IsValid() || len(m.Value) == 0 {
+		return fmt.Errorf("invalid value %q", m.Value)
+	}
+	return nil
+}
+
+// Silence defines the representation of a silence definition in the Prometheus
+// eco-system.
+type Silence struct {
+	ID uint64 `json:"id,omitempty"`
+
+	Matchers []*Matcher `json:"matchers"`
+
+	StartsAt time.Time `json:"startsAt"`
+	EndsAt   time.Time `json:"endsAt"`
+
+	CreatedAt time.Time `json:"createdAt,omitempty"`
+	CreatedBy string    `json:"createdBy"`
+	Comment   string    `json:"comment,omitempty"`
+}
+
+// Validate returns true iff all fields of the silence have valid values.
+func (s *Silence) Validate() error {
+	if len(s.Matchers) == 0 {
+		return fmt.Errorf("at least one matcher required")
+	}
+	for _, m := range s.Matchers {
+		if err := m.Validate(); err != nil {
+			return fmt.Errorf("invalid matcher: %s", err)
+		}
+	}
+	if s.StartsAt.IsZero() {
+		return fmt.Errorf("start time missing")
+	}
+	if s.EndsAt.IsZero() {
+		return fmt.Errorf("end time missing")
+	}
+	if s.EndsAt.Before(s.StartsAt) {
+		return fmt.Errorf("start time must be before end time")
+	}
+	if s.CreatedBy == "" {
+		return fmt.Errorf("creator information missing")
+	}
+	if s.Comment == "" {
+		return fmt.Errorf("comment missing")
+	}
+	if s.CreatedAt.IsZero() {
+		return fmt.Errorf("creation timestamp missing")
+	}
+	return nil
+}
diff --git a/vendor/github.com/prometheus/common/model/time.go b/vendor/github.com/prometheus/common/model/time.go
new file mode 100644
index 0000000000..74ed5a9f7e
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/time.go
@@ -0,0 +1,264 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"fmt"
+	"math"
+	"regexp"
+	"strconv"
+	"strings"
+	"time"
+)
+
+const (
+	// MinimumTick is the minimum supported time resolution. This has to be
+	// at least time.Second in order for the code below to work.
+	minimumTick = time.Millisecond
+	// second is the Time duration equivalent to one second.
+	second = int64(time.Second / minimumTick)
+	// The number of nanoseconds per minimum tick.
+	nanosPerTick = int64(minimumTick / time.Nanosecond)
+
+	// Earliest is the earliest Time representable. Handy for
+	// initializing a high watermark.
+	Earliest = Time(math.MinInt64)
+	// Latest is the latest Time representable. Handy for initializing
+	// a low watermark.
+	Latest = Time(math.MaxInt64)
+)
+
+// Time is the number of milliseconds since the epoch
+// (1970-01-01 00:00 UTC) excluding leap seconds.
+type Time int64
+
+// Interval describes and interval between two timestamps.
+type Interval struct {
+	Start, End Time
+}
+
+// Now returns the current time as a Time.
+func Now() Time {
+	return TimeFromUnixNano(time.Now().UnixNano())
+}
+
+// TimeFromUnix returns the Time equivalent to the Unix Time t
+// provided in seconds.
+func TimeFromUnix(t int64) Time {
+	return Time(t * second)
+}
+
+// TimeFromUnixNano returns the Time equivalent to the Unix Time
+// t provided in nanoseconds.
+func TimeFromUnixNano(t int64) Time {
+	return Time(t / nanosPerTick)
+}
+
+// Equal reports whether two Times represent the same instant.
+func (t Time) Equal(o Time) bool {
+	return t == o
+}
+
+// Before reports whether the Time t is before o.
+func (t Time) Before(o Time) bool {
+	return t < o
+}
+
+// After reports whether the Time t is after o.
+func (t Time) After(o Time) bool {
+	return t > o
+}
+
+// Add returns the Time t + d.
+func (t Time) Add(d time.Duration) Time {
+	return t + Time(d/minimumTick)
+}
+
+// Sub returns the Duration t - o.
+func (t Time) Sub(o Time) time.Duration {
+	return time.Duration(t-o) * minimumTick
+}
+
+// Time returns the time.Time representation of t.
+func (t Time) Time() time.Time {
+	return time.Unix(int64(t)/second, (int64(t)%second)*nanosPerTick)
+}
+
+// Unix returns t as a Unix time, the number of seconds elapsed
+// since January 1, 1970 UTC.
+func (t Time) Unix() int64 {
+	return int64(t) / second
+}
+
+// UnixNano returns t as a Unix time, the number of nanoseconds elapsed
+// since January 1, 1970 UTC.
+func (t Time) UnixNano() int64 {
+	return int64(t) * nanosPerTick
+}
+
+// The number of digits after the dot.
+var dotPrecision = int(math.Log10(float64(second)))
+
+// String returns a string representation of the Time.
+func (t Time) String() string {
+	return strconv.FormatFloat(float64(t)/float64(second), 'f', -1, 64)
+}
+
+// MarshalJSON implements the json.Marshaler interface.
+func (t Time) MarshalJSON() ([]byte, error) {
+	return []byte(t.String()), nil
+}
+
+// UnmarshalJSON implements the json.Unmarshaler interface.
+func (t *Time) UnmarshalJSON(b []byte) error {
+	p := strings.Split(string(b), ".")
+	switch len(p) {
+	case 1:
+		v, err := strconv.ParseInt(string(p[0]), 10, 64)
+		if err != nil {
+			return err
+		}
+		*t = Time(v * second)
+
+	case 2:
+		v, err := strconv.ParseInt(string(p[0]), 10, 64)
+		if err != nil {
+			return err
+		}
+		v *= second
+
+		prec := dotPrecision - len(p[1])
+		if prec < 0 {
+			p[1] = p[1][:dotPrecision]
+		} else if prec > 0 {
+			p[1] = p[1] + strings.Repeat("0", prec)
+		}
+
+		va, err := strconv.ParseInt(p[1], 10, 32)
+		if err != nil {
+			return err
+		}
+
+		*t = Time(v + va)
+
+	default:
+		return fmt.Errorf("invalid time %q", string(b))
+	}
+	return nil
+}
+
+// Duration wraps time.Duration. It is used to parse the custom duration format
+// from YAML.
+// This type should not propagate beyond the scope of input/output processing.
+type Duration time.Duration
+
+// Set implements pflag/flag.Value
+func (d *Duration) Set(s string) error {
+	var err error
+	*d, err = ParseDuration(s)
+	return err
+}
+
+// Type implements pflag.Value
+func (d *Duration) Type() string {
+	return "duration"
+}
+
+var durationRE = regexp.MustCompile("^([0-9]+)(y|w|d|h|m|s|ms)$")
+
+// ParseDuration parses a string into a time.Duration, assuming that a year
+// always has 365d, a week always has 7d, and a day always has 24h.
+func ParseDuration(durationStr string) (Duration, error) {
+	matches := durationRE.FindStringSubmatch(durationStr)
+	if len(matches) != 3 {
+		return 0, fmt.Errorf("not a valid duration string: %q", durationStr)
+	}
+	var (
+		n, _ = strconv.Atoi(matches[1])
+		dur  = time.Duration(n) * time.Millisecond
+	)
+	switch unit := matches[2]; unit {
+	case "y":
+		dur *= 1000 * 60 * 60 * 24 * 365
+	case "w":
+		dur *= 1000 * 60 * 60 * 24 * 7
+	case "d":
+		dur *= 1000 * 60 * 60 * 24
+	case "h":
+		dur *= 1000 * 60 * 60
+	case "m":
+		dur *= 1000 * 60
+	case "s":
+		dur *= 1000
+	case "ms":
+		// Value already correct
+	default:
+		return 0, fmt.Errorf("invalid time unit in duration string: %q", unit)
+	}
+	return Duration(dur), nil
+}
+
+func (d Duration) String() string {
+	var (
+		ms   = int64(time.Duration(d) / time.Millisecond)
+		unit = "ms"
+	)
+	if ms == 0 {
+		return "0s"
+	}
+	factors := map[string]int64{
+		"y":  1000 * 60 * 60 * 24 * 365,
+		"w":  1000 * 60 * 60 * 24 * 7,
+		"d":  1000 * 60 * 60 * 24,
+		"h":  1000 * 60 * 60,
+		"m":  1000 * 60,
+		"s":  1000,
+		"ms": 1,
+	}
+
+	switch int64(0) {
+	case ms % factors["y"]:
+		unit = "y"
+	case ms % factors["w"]:
+		unit = "w"
+	case ms % factors["d"]:
+		unit = "d"
+	case ms % factors["h"]:
+		unit = "h"
+	case ms % factors["m"]:
+		unit = "m"
+	case ms % factors["s"]:
+		unit = "s"
+	}
+	return fmt.Sprintf("%v%v", ms/factors[unit], unit)
+}
+
+// MarshalYAML implements the yaml.Marshaler interface.
+func (d Duration) MarshalYAML() (interface{}, error) {
+	return d.String(), nil
+}
+
+// UnmarshalYAML implements the yaml.Unmarshaler interface.
+func (d *Duration) UnmarshalYAML(unmarshal func(interface{}) error) error {
+	var s string
+	if err := unmarshal(&s); err != nil {
+		return err
+	}
+	dur, err := ParseDuration(s)
+	if err != nil {
+		return err
+	}
+	*d = dur
+	return nil
+}
diff --git a/vendor/github.com/prometheus/common/model/value.go b/vendor/github.com/prometheus/common/model/value.go
new file mode 100644
index 0000000000..c9d8fb1a28
--- /dev/null
+++ b/vendor/github.com/prometheus/common/model/value.go
@@ -0,0 +1,416 @@
+// Copyright 2013 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package model
+
+import (
+	"encoding/json"
+	"fmt"
+	"math"
+	"sort"
+	"strconv"
+	"strings"
+)
+
+var (
+	// ZeroSamplePair is the pseudo zero-value of SamplePair used to signal a
+	// non-existing sample pair. It is a SamplePair with timestamp Earliest and
+	// value 0.0. Note that the natural zero value of SamplePair has a timestamp
+	// of 0, which is possible to appear in a real SamplePair and thus not
+	// suitable to signal a non-existing SamplePair.
+	ZeroSamplePair = SamplePair{Timestamp: Earliest}
+
+	// ZeroSample is the pseudo zero-value of Sample used to signal a
+	// non-existing sample. It is a Sample with timestamp Earliest, value 0.0,
+	// and metric nil. Note that the natural zero value of Sample has a timestamp
+	// of 0, which is possible to appear in a real Sample and thus not suitable
+	// to signal a non-existing Sample.
+	ZeroSample = Sample{Timestamp: Earliest}
+)
+
+// A SampleValue is a representation of a value for a given sample at a given
+// time.
+type SampleValue float64
+
+// MarshalJSON implements json.Marshaler.
+func (v SampleValue) MarshalJSON() ([]byte, error) {
+	return json.Marshal(v.String())
+}
+
+// UnmarshalJSON implements json.Unmarshaler.
+func (v *SampleValue) UnmarshalJSON(b []byte) error {
+	if len(b) < 2 || b[0] != '"' || b[len(b)-1] != '"' {
+		return fmt.Errorf("sample value must be a quoted string")
+	}
+	f, err := strconv.ParseFloat(string(b[1:len(b)-1]), 64)
+	if err != nil {
+		return err
+	}
+	*v = SampleValue(f)
+	return nil
+}
+
+// Equal returns true if the value of v and o is equal or if both are NaN. Note
+// that v==o is false if both are NaN. If you want the conventional float
+// behavior, use == to compare two SampleValues.
+func (v SampleValue) Equal(o SampleValue) bool {
+	if v == o {
+		return true
+	}
+	return math.IsNaN(float64(v)) && math.IsNaN(float64(o))
+}
+
+func (v SampleValue) String() string {
+	return strconv.FormatFloat(float64(v), 'f', -1, 64)
+}
+
+// SamplePair pairs a SampleValue with a Timestamp.
+type SamplePair struct {
+	Timestamp Time
+	Value     SampleValue
+}
+
+// MarshalJSON implements json.Marshaler.
+func (s SamplePair) MarshalJSON() ([]byte, error) {
+	t, err := json.Marshal(s.Timestamp)
+	if err != nil {
+		return nil, err
+	}
+	v, err := json.Marshal(s.Value)
+	if err != nil {
+		return nil, err
+	}
+	return []byte(fmt.Sprintf("[%s,%s]", t, v)), nil
+}
+
+// UnmarshalJSON implements json.Unmarshaler.
+func (s *SamplePair) UnmarshalJSON(b []byte) error {
+	v := [...]json.Unmarshaler{&s.Timestamp, &s.Value}
+	return json.Unmarshal(b, &v)
+}
+
+// Equal returns true if this SamplePair and o have equal Values and equal
+// Timestamps. The semantics of Value equality is defined by SampleValue.Equal.
+func (s *SamplePair) Equal(o *SamplePair) bool {
+	return s == o || (s.Value.Equal(o.Value) && s.Timestamp.Equal(o.Timestamp))
+}
+
+func (s SamplePair) String() string {
+	return fmt.Sprintf("%s @[%s]", s.Value, s.Timestamp)
+}
+
+// Sample is a sample pair associated with a metric.
+type Sample struct {
+	Metric    Metric      `json:"metric"`
+	Value     SampleValue `json:"value"`
+	Timestamp Time        `json:"timestamp"`
+}
+
+// Equal compares first the metrics, then the timestamp, then the value. The
+// semantics of value equality is defined by SampleValue.Equal.
+func (s *Sample) Equal(o *Sample) bool {
+	if s == o {
+		return true
+	}
+
+	if !s.Metric.Equal(o.Metric) {
+		return false
+	}
+	if !s.Timestamp.Equal(o.Timestamp) {
+		return false
+	}
+
+	return s.Value.Equal(o.Value)
+}
+
+func (s Sample) String() string {
+	return fmt.Sprintf("%s => %s", s.Metric, SamplePair{
+		Timestamp: s.Timestamp,
+		Value:     s.Value,
+	})
+}
+
+// MarshalJSON implements json.Marshaler.
+func (s Sample) MarshalJSON() ([]byte, error) {
+	v := struct {
+		Metric Metric     `json:"metric"`
+		Value  SamplePair `json:"value"`
+	}{
+		Metric: s.Metric,
+		Value: SamplePair{
+			Timestamp: s.Timestamp,
+			Value:     s.Value,
+		},
+	}
+
+	return json.Marshal(&v)
+}
+
+// UnmarshalJSON implements json.Unmarshaler.
+func (s *Sample) UnmarshalJSON(b []byte) error {
+	v := struct {
+		Metric Metric     `json:"metric"`
+		Value  SamplePair `json:"value"`
+	}{
+		Metric: s.Metric,
+		Value: SamplePair{
+			Timestamp: s.Timestamp,
+			Value:     s.Value,
+		},
+	}
+
+	if err := json.Unmarshal(b, &v); err != nil {
+		return err
+	}
+
+	s.Metric = v.Metric
+	s.Timestamp = v.Value.Timestamp
+	s.Value = v.Value.Value
+
+	return nil
+}
+
+// Samples is a sortable Sample slice. It implements sort.Interface.
+type Samples []*Sample
+
+func (s Samples) Len() int {
+	return len(s)
+}
+
+// Less compares first the metrics, then the timestamp.
+func (s Samples) Less(i, j int) bool {
+	switch {
+	case s[i].Metric.Before(s[j].Metric):
+		return true
+	case s[j].Metric.Before(s[i].Metric):
+		return false
+	case s[i].Timestamp.Before(s[j].Timestamp):
+		return true
+	default:
+		return false
+	}
+}
+
+func (s Samples) Swap(i, j int) {
+	s[i], s[j] = s[j], s[i]
+}
+
+// Equal compares two sets of samples and returns true if they are equal.
+func (s Samples) Equal(o Samples) bool {
+	if len(s) != len(o) {
+		return false
+	}
+
+	for i, sample := range s {
+		if !sample.Equal(o[i]) {
+			return false
+		}
+	}
+	return true
+}
+
+// SampleStream is a stream of Values belonging to an attached COWMetric.
+type SampleStream struct {
+	Metric Metric       `json:"metric"`
+	Values []SamplePair `json:"values"`
+}
+
+func (ss SampleStream) String() string {
+	vals := make([]string, len(ss.Values))
+	for i, v := range ss.Values {
+		vals[i] = v.String()
+	}
+	return fmt.Sprintf("%s =>\n%s", ss.Metric, strings.Join(vals, "\n"))
+}
+
+// Value is a generic interface for values resulting from a query evaluation.
+type Value interface {
+	Type() ValueType
+	String() string
+}
+
+func (Matrix) Type() ValueType  { return ValMatrix }
+func (Vector) Type() ValueType  { return ValVector }
+func (*Scalar) Type() ValueType { return ValScalar }
+func (*String) Type() ValueType { return ValString }
+
+type ValueType int
+
+const (
+	ValNone ValueType = iota
+	ValScalar
+	ValVector
+	ValMatrix
+	ValString
+)
+
+// MarshalJSON implements json.Marshaler.
+func (et ValueType) MarshalJSON() ([]byte, error) {
+	return json.Marshal(et.String())
+}
+
+func (et *ValueType) UnmarshalJSON(b []byte) error {
+	var s string
+	if err := json.Unmarshal(b, &s); err != nil {
+		return err
+	}
+	switch s {
+	case "<ValNone>":
+		*et = ValNone
+	case "scalar":
+		*et = ValScalar
+	case "vector":
+		*et = ValVector
+	case "matrix":
+		*et = ValMatrix
+	case "string":
+		*et = ValString
+	default:
+		return fmt.Errorf("unknown value type %q", s)
+	}
+	return nil
+}
+
+func (e ValueType) String() string {
+	switch e {
+	case ValNone:
+		return "<ValNone>"
+	case ValScalar:
+		return "scalar"
+	case ValVector:
+		return "vector"
+	case ValMatrix:
+		return "matrix"
+	case ValString:
+		return "string"
+	}
+	panic("ValueType.String: unhandled value type")
+}
+
+// Scalar is a scalar value evaluated at the set timestamp.
+type Scalar struct {
+	Value     SampleValue `json:"value"`
+	Timestamp Time        `json:"timestamp"`
+}
+
+func (s Scalar) String() string {
+	return fmt.Sprintf("scalar: %v @[%v]", s.Value, s.Timestamp)
+}
+
+// MarshalJSON implements json.Marshaler.
+func (s Scalar) MarshalJSON() ([]byte, error) {
+	v := strconv.FormatFloat(float64(s.Value), 'f', -1, 64)
+	return json.Marshal([...]interface{}{s.Timestamp, string(v)})
+}
+
+// UnmarshalJSON implements json.Unmarshaler.
+func (s *Scalar) UnmarshalJSON(b []byte) error {
+	var f string
+	v := [...]interface{}{&s.Timestamp, &f}
+
+	if err := json.Unmarshal(b, &v); err != nil {
+		return err
+	}
+
+	value, err := strconv.ParseFloat(f, 64)
+	if err != nil {
+		return fmt.Errorf("error parsing sample value: %s", err)
+	}
+	s.Value = SampleValue(value)
+	return nil
+}
+
+// String is a string value evaluated at the set timestamp.
+type String struct {
+	Value     string `json:"value"`
+	Timestamp Time   `json:"timestamp"`
+}
+
+func (s *String) String() string {
+	return s.Value
+}
+
+// MarshalJSON implements json.Marshaler.
+func (s String) MarshalJSON() ([]byte, error) {
+	return json.Marshal([]interface{}{s.Timestamp, s.Value})
+}
+
+// UnmarshalJSON implements json.Unmarshaler.
+func (s *String) UnmarshalJSON(b []byte) error {
+	v := [...]interface{}{&s.Timestamp, &s.Value}
+	return json.Unmarshal(b, &v)
+}
+
+// Vector is basically only an alias for Samples, but the
+// contract is that in a Vector, all Samples have the same timestamp.
+type Vector []*Sample
+
+func (vec Vector) String() string {
+	entries := make([]string, len(vec))
+	for i, s := range vec {
+		entries[i] = s.String()
+	}
+	return strings.Join(entries, "\n")
+}
+
+func (vec Vector) Len() int      { return len(vec) }
+func (vec Vector) Swap(i, j int) { vec[i], vec[j] = vec[j], vec[i] }
+
+// Less compares first the metrics, then the timestamp.
+func (vec Vector) Less(i, j int) bool {
+	switch {
+	case vec[i].Metric.Before(vec[j].Metric):
+		return true
+	case vec[j].Metric.Before(vec[i].Metric):
+		return false
+	case vec[i].Timestamp.Before(vec[j].Timestamp):
+		return true
+	default:
+		return false
+	}
+}
+
+// Equal compares two sets of samples and returns true if they are equal.
+func (vec Vector) Equal(o Vector) bool {
+	if len(vec) != len(o) {
+		return false
+	}
+
+	for i, sample := range vec {
+		if !sample.Equal(o[i]) {
+			return false
+		}
+	}
+	return true
+}
+
+// Matrix is a list of time series.
+type Matrix []*SampleStream
+
+func (m Matrix) Len() int           { return len(m) }
+func (m Matrix) Less(i, j int) bool { return m[i].Metric.Before(m[j].Metric) }
+func (m Matrix) Swap(i, j int)      { m[i], m[j] = m[j], m[i] }
+
+func (mat Matrix) String() string {
+	matCp := make(Matrix, len(mat))
+	copy(matCp, mat)
+	sort.Sort(matCp)
+
+	strs := make([]string, len(matCp))
+
+	for i, ss := range matCp {
+		strs[i] = ss.String()
+	}
+
+	return strings.Join(strs, "\n")
+}
diff --git a/vendor/github.com/prometheus/procfs/LICENSE b/vendor/github.com/prometheus/procfs/LICENSE
new file mode 100644
index 0000000000..261eeb9e9f
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/prometheus/procfs/NOTICE b/vendor/github.com/prometheus/procfs/NOTICE
new file mode 100644
index 0000000000..53c5e9aa11
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/NOTICE
@@ -0,0 +1,7 @@
+procfs provides functions to retrieve system, kernel and process
+metrics from the pseudo-filesystem proc.
+
+Copyright 2014-2015 The Prometheus Authors
+
+This product includes software developed at
+SoundCloud Ltd. (http://soundcloud.com/).
diff --git a/vendor/github.com/prometheus/procfs/buddyinfo.go b/vendor/github.com/prometheus/procfs/buddyinfo.go
new file mode 100644
index 0000000000..d3a8268078
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/buddyinfo.go
@@ -0,0 +1,95 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// A BuddyInfo is the details parsed from /proc/buddyinfo.
+// The data is comprised of an array of free fragments of each size.
+// The sizes are 2^n*PAGE_SIZE, where n is the array index.
+type BuddyInfo struct {
+	Node  string
+	Zone  string
+	Sizes []float64
+}
+
+// NewBuddyInfo reads the buddyinfo statistics.
+func NewBuddyInfo() ([]BuddyInfo, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return nil, err
+	}
+
+	return fs.NewBuddyInfo()
+}
+
+// NewBuddyInfo reads the buddyinfo statistics from the specified `proc` filesystem.
+func (fs FS) NewBuddyInfo() ([]BuddyInfo, error) {
+	file, err := os.Open(fs.Path("buddyinfo"))
+	if err != nil {
+		return nil, err
+	}
+	defer file.Close()
+
+	return parseBuddyInfo(file)
+}
+
+func parseBuddyInfo(r io.Reader) ([]BuddyInfo, error) {
+	var (
+		buddyInfo   = []BuddyInfo{}
+		scanner     = bufio.NewScanner(r)
+		bucketCount = -1
+	)
+
+	for scanner.Scan() {
+		var err error
+		line := scanner.Text()
+		parts := strings.Fields(line)
+
+		if len(parts) < 4 {
+			return nil, fmt.Errorf("invalid number of fields when parsing buddyinfo")
+		}
+
+		node := strings.TrimRight(parts[1], ",")
+		zone := strings.TrimRight(parts[3], ",")
+		arraySize := len(parts[4:])
+
+		if bucketCount == -1 {
+			bucketCount = arraySize
+		} else {
+			if bucketCount != arraySize {
+				return nil, fmt.Errorf("mismatch in number of buddyinfo buckets, previous count %d, new count %d", bucketCount, arraySize)
+			}
+		}
+
+		sizes := make([]float64, arraySize)
+		for i := 0; i < arraySize; i++ {
+			sizes[i], err = strconv.ParseFloat(parts[i+4], 64)
+			if err != nil {
+				return nil, fmt.Errorf("invalid value in buddyinfo: %s", err)
+			}
+		}
+
+		buddyInfo = append(buddyInfo, BuddyInfo{node, zone, sizes})
+	}
+
+	return buddyInfo, scanner.Err()
+}
diff --git a/vendor/github.com/prometheus/procfs/doc.go b/vendor/github.com/prometheus/procfs/doc.go
new file mode 100644
index 0000000000..e2acd6d40a
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/doc.go
@@ -0,0 +1,45 @@
+// Copyright 2014 Prometheus Team
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package procfs provides functions to retrieve system, kernel and process
+// metrics from the pseudo-filesystem proc.
+//
+// Example:
+//
+//    package main
+//
+//    import (
+//    	"fmt"
+//    	"log"
+//
+//    	"github.com/prometheus/procfs"
+//    )
+//
+//    func main() {
+//    	p, err := procfs.Self()
+//    	if err != nil {
+//    		log.Fatalf("could not get process: %s", err)
+//    	}
+//
+//    	stat, err := p.NewStat()
+//    	if err != nil {
+//    		log.Fatalf("could not get process stat: %s", err)
+//    	}
+//
+//    	fmt.Printf("command:  %s\n", stat.Comm)
+//    	fmt.Printf("cpu time: %fs\n", stat.CPUTime())
+//    	fmt.Printf("vsize:    %dB\n", stat.VirtualMemory())
+//    	fmt.Printf("rss:      %dB\n", stat.ResidentMemory())
+//    }
+//
+package procfs
diff --git a/vendor/github.com/prometheus/procfs/fs.go b/vendor/github.com/prometheus/procfs/fs.go
new file mode 100644
index 0000000000..b6c6b2ce1f
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/fs.go
@@ -0,0 +1,82 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"fmt"
+	"os"
+	"path"
+
+	"github.com/prometheus/procfs/nfs"
+	"github.com/prometheus/procfs/xfs"
+)
+
+// FS represents the pseudo-filesystem proc, which provides an interface to
+// kernel data structures.
+type FS string
+
+// DefaultMountPoint is the common mount point of the proc filesystem.
+const DefaultMountPoint = "/proc"
+
+// NewFS returns a new FS mounted under the given mountPoint. It will error
+// if the mount point can't be read.
+func NewFS(mountPoint string) (FS, error) {
+	info, err := os.Stat(mountPoint)
+	if err != nil {
+		return "", fmt.Errorf("could not read %s: %s", mountPoint, err)
+	}
+	if !info.IsDir() {
+		return "", fmt.Errorf("mount point %s is not a directory", mountPoint)
+	}
+
+	return FS(mountPoint), nil
+}
+
+// Path returns the path of the given subsystem relative to the procfs root.
+func (fs FS) Path(p ...string) string {
+	return path.Join(append([]string{string(fs)}, p...)...)
+}
+
+// XFSStats retrieves XFS filesystem runtime statistics.
+func (fs FS) XFSStats() (*xfs.Stats, error) {
+	f, err := os.Open(fs.Path("fs/xfs/stat"))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return xfs.ParseStats(f)
+}
+
+// NFSClientRPCStats retrieves NFS client RPC statistics.
+func (fs FS) NFSClientRPCStats() (*nfs.ClientRPCStats, error) {
+	f, err := os.Open(fs.Path("net/rpc/nfs"))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return nfs.ParseClientRPCStats(f)
+}
+
+// NFSdServerRPCStats retrieves NFS daemon RPC statistics.
+func (fs FS) NFSdServerRPCStats() (*nfs.ServerRPCStats, error) {
+	f, err := os.Open(fs.Path("net/rpc/nfsd"))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return nfs.ParseServerRPCStats(f)
+}
diff --git a/vendor/github.com/prometheus/procfs/internal/util/parse.go b/vendor/github.com/prometheus/procfs/internal/util/parse.go
new file mode 100644
index 0000000000..1ad21c91a3
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/internal/util/parse.go
@@ -0,0 +1,46 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package util
+
+import "strconv"
+
+// ParseUint32s parses a slice of strings into a slice of uint32s.
+func ParseUint32s(ss []string) ([]uint32, error) {
+	us := make([]uint32, 0, len(ss))
+	for _, s := range ss {
+		u, err := strconv.ParseUint(s, 10, 32)
+		if err != nil {
+			return nil, err
+		}
+
+		us = append(us, uint32(u))
+	}
+
+	return us, nil
+}
+
+// ParseUint64s parses a slice of strings into a slice of uint64s.
+func ParseUint64s(ss []string) ([]uint64, error) {
+	us := make([]uint64, 0, len(ss))
+	for _, s := range ss {
+		u, err := strconv.ParseUint(s, 10, 64)
+		if err != nil {
+			return nil, err
+		}
+
+		us = append(us, u)
+	}
+
+	return us, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/ipvs.go b/vendor/github.com/prometheus/procfs/ipvs.go
new file mode 100644
index 0000000000..e36d4a3bd0
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/ipvs.go
@@ -0,0 +1,259 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"encoding/hex"
+	"errors"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// IPVSStats holds IPVS statistics, as exposed by the kernel in `/proc/net/ip_vs_stats`.
+type IPVSStats struct {
+	// Total count of connections.
+	Connections uint64
+	// Total incoming packages processed.
+	IncomingPackets uint64
+	// Total outgoing packages processed.
+	OutgoingPackets uint64
+	// Total incoming traffic.
+	IncomingBytes uint64
+	// Total outgoing traffic.
+	OutgoingBytes uint64
+}
+
+// IPVSBackendStatus holds current metrics of one virtual / real address pair.
+type IPVSBackendStatus struct {
+	// The local (virtual) IP address.
+	LocalAddress net.IP
+	// The remote (real) IP address.
+	RemoteAddress net.IP
+	// The local (virtual) port.
+	LocalPort uint16
+	// The remote (real) port.
+	RemotePort uint16
+	// The local firewall mark
+	LocalMark string
+	// The transport protocol (TCP, UDP).
+	Proto string
+	// The current number of active connections for this virtual/real address pair.
+	ActiveConn uint64
+	// The current number of inactive connections for this virtual/real address pair.
+	InactConn uint64
+	// The current weight of this virtual/real address pair.
+	Weight uint64
+}
+
+// NewIPVSStats reads the IPVS statistics.
+func NewIPVSStats() (IPVSStats, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+
+	return fs.NewIPVSStats()
+}
+
+// NewIPVSStats reads the IPVS statistics from the specified `proc` filesystem.
+func (fs FS) NewIPVSStats() (IPVSStats, error) {
+	file, err := os.Open(fs.Path("net/ip_vs_stats"))
+	if err != nil {
+		return IPVSStats{}, err
+	}
+	defer file.Close()
+
+	return parseIPVSStats(file)
+}
+
+// parseIPVSStats performs the actual parsing of `ip_vs_stats`.
+func parseIPVSStats(file io.Reader) (IPVSStats, error) {
+	var (
+		statContent []byte
+		statLines   []string
+		statFields  []string
+		stats       IPVSStats
+	)
+
+	statContent, err := ioutil.ReadAll(file)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+
+	statLines = strings.SplitN(string(statContent), "\n", 4)
+	if len(statLines) != 4 {
+		return IPVSStats{}, errors.New("ip_vs_stats corrupt: too short")
+	}
+
+	statFields = strings.Fields(statLines[2])
+	if len(statFields) != 5 {
+		return IPVSStats{}, errors.New("ip_vs_stats corrupt: unexpected number of fields")
+	}
+
+	stats.Connections, err = strconv.ParseUint(statFields[0], 16, 64)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+	stats.IncomingPackets, err = strconv.ParseUint(statFields[1], 16, 64)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+	stats.OutgoingPackets, err = strconv.ParseUint(statFields[2], 16, 64)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+	stats.IncomingBytes, err = strconv.ParseUint(statFields[3], 16, 64)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+	stats.OutgoingBytes, err = strconv.ParseUint(statFields[4], 16, 64)
+	if err != nil {
+		return IPVSStats{}, err
+	}
+
+	return stats, nil
+}
+
+// NewIPVSBackendStatus reads and returns the status of all (virtual,real) server pairs.
+func NewIPVSBackendStatus() ([]IPVSBackendStatus, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return []IPVSBackendStatus{}, err
+	}
+
+	return fs.NewIPVSBackendStatus()
+}
+
+// NewIPVSBackendStatus reads and returns the status of all (virtual,real) server pairs from the specified `proc` filesystem.
+func (fs FS) NewIPVSBackendStatus() ([]IPVSBackendStatus, error) {
+	file, err := os.Open(fs.Path("net/ip_vs"))
+	if err != nil {
+		return nil, err
+	}
+	defer file.Close()
+
+	return parseIPVSBackendStatus(file)
+}
+
+func parseIPVSBackendStatus(file io.Reader) ([]IPVSBackendStatus, error) {
+	var (
+		status       []IPVSBackendStatus
+		scanner      = bufio.NewScanner(file)
+		proto        string
+		localMark    string
+		localAddress net.IP
+		localPort    uint16
+		err          error
+	)
+
+	for scanner.Scan() {
+		fields := strings.Fields(scanner.Text())
+		if len(fields) == 0 {
+			continue
+		}
+		switch {
+		case fields[0] == "IP" || fields[0] == "Prot" || fields[1] == "RemoteAddress:Port":
+			continue
+		case fields[0] == "TCP" || fields[0] == "UDP":
+			if len(fields) < 2 {
+				continue
+			}
+			proto = fields[0]
+			localMark = ""
+			localAddress, localPort, err = parseIPPort(fields[1])
+			if err != nil {
+				return nil, err
+			}
+		case fields[0] == "FWM":
+			if len(fields) < 2 {
+				continue
+			}
+			proto = fields[0]
+			localMark = fields[1]
+			localAddress = nil
+			localPort = 0
+		case fields[0] == "->":
+			if len(fields) < 6 {
+				continue
+			}
+			remoteAddress, remotePort, err := parseIPPort(fields[1])
+			if err != nil {
+				return nil, err
+			}
+			weight, err := strconv.ParseUint(fields[3], 10, 64)
+			if err != nil {
+				return nil, err
+			}
+			activeConn, err := strconv.ParseUint(fields[4], 10, 64)
+			if err != nil {
+				return nil, err
+			}
+			inactConn, err := strconv.ParseUint(fields[5], 10, 64)
+			if err != nil {
+				return nil, err
+			}
+			status = append(status, IPVSBackendStatus{
+				LocalAddress:  localAddress,
+				LocalPort:     localPort,
+				LocalMark:     localMark,
+				RemoteAddress: remoteAddress,
+				RemotePort:    remotePort,
+				Proto:         proto,
+				Weight:        weight,
+				ActiveConn:    activeConn,
+				InactConn:     inactConn,
+			})
+		}
+	}
+	return status, nil
+}
+
+func parseIPPort(s string) (net.IP, uint16, error) {
+	var (
+		ip  net.IP
+		err error
+	)
+
+	switch len(s) {
+	case 13:
+		ip, err = hex.DecodeString(s[0:8])
+		if err != nil {
+			return nil, 0, err
+		}
+	case 46:
+		ip = net.ParseIP(s[1:40])
+		if ip == nil {
+			return nil, 0, fmt.Errorf("invalid IPv6 address: %s", s[1:40])
+		}
+	default:
+		return nil, 0, fmt.Errorf("unexpected IP:Port: %s", s)
+	}
+
+	portString := s[len(s)-4:]
+	if len(portString) != 4 {
+		return nil, 0, fmt.Errorf("unexpected port string format: %s", portString)
+	}
+	port, err := strconv.ParseUint(portString, 16, 16)
+	if err != nil {
+		return nil, 0, err
+	}
+
+	return ip, uint16(port), nil
+}
diff --git a/vendor/github.com/prometheus/procfs/mdstat.go b/vendor/github.com/prometheus/procfs/mdstat.go
new file mode 100644
index 0000000000..9dc19583d8
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/mdstat.go
@@ -0,0 +1,151 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"fmt"
+	"io/ioutil"
+	"regexp"
+	"strconv"
+	"strings"
+)
+
+var (
+	statuslineRE = regexp.MustCompile(`(\d+) blocks .*\[(\d+)/(\d+)\] \[[U_]+\]`)
+	buildlineRE  = regexp.MustCompile(`\((\d+)/\d+\)`)
+)
+
+// MDStat holds info parsed from /proc/mdstat.
+type MDStat struct {
+	// Name of the device.
+	Name string
+	// activity-state of the device.
+	ActivityState string
+	// Number of active disks.
+	DisksActive int64
+	// Total number of disks the device consists of.
+	DisksTotal int64
+	// Number of blocks the device holds.
+	BlocksTotal int64
+	// Number of blocks on the device that are in sync.
+	BlocksSynced int64
+}
+
+// ParseMDStat parses an mdstat-file and returns a struct with the relevant infos.
+func (fs FS) ParseMDStat() (mdstates []MDStat, err error) {
+	mdStatusFilePath := fs.Path("mdstat")
+	content, err := ioutil.ReadFile(mdStatusFilePath)
+	if err != nil {
+		return []MDStat{}, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
+	}
+
+	mdStates := []MDStat{}
+	lines := strings.Split(string(content), "\n")
+	for i, l := range lines {
+		if l == "" {
+			continue
+		}
+		if l[0] == ' ' {
+			continue
+		}
+		if strings.HasPrefix(l, "Personalities") || strings.HasPrefix(l, "unused") {
+			continue
+		}
+
+		mainLine := strings.Split(l, " ")
+		if len(mainLine) < 3 {
+			return mdStates, fmt.Errorf("error parsing mdline: %s", l)
+		}
+		mdName := mainLine[0]
+		activityState := mainLine[2]
+
+		if len(lines) <= i+3 {
+			return mdStates, fmt.Errorf(
+				"error parsing %s: too few lines for md device %s",
+				mdStatusFilePath,
+				mdName,
+			)
+		}
+
+		active, total, size, err := evalStatusline(lines[i+1])
+		if err != nil {
+			return mdStates, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
+		}
+
+		// j is the line number of the syncing-line.
+		j := i + 2
+		if strings.Contains(lines[i+2], "bitmap") { // skip bitmap line
+			j = i + 3
+		}
+
+		// If device is syncing at the moment, get the number of currently
+		// synced bytes, otherwise that number equals the size of the device.
+		syncedBlocks := size
+		if strings.Contains(lines[j], "recovery") || strings.Contains(lines[j], "resync") {
+			syncedBlocks, err = evalBuildline(lines[j])
+			if err != nil {
+				return mdStates, fmt.Errorf("error parsing %s: %s", mdStatusFilePath, err)
+			}
+		}
+
+		mdStates = append(mdStates, MDStat{
+			Name:          mdName,
+			ActivityState: activityState,
+			DisksActive:   active,
+			DisksTotal:    total,
+			BlocksTotal:   size,
+			BlocksSynced:  syncedBlocks,
+		})
+	}
+
+	return mdStates, nil
+}
+
+func evalStatusline(statusline string) (active, total, size int64, err error) {
+	matches := statuslineRE.FindStringSubmatch(statusline)
+	if len(matches) != 4 {
+		return 0, 0, 0, fmt.Errorf("unexpected statusline: %s", statusline)
+	}
+
+	size, err = strconv.ParseInt(matches[1], 10, 64)
+	if err != nil {
+		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
+	}
+
+	total, err = strconv.ParseInt(matches[2], 10, 64)
+	if err != nil {
+		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
+	}
+
+	active, err = strconv.ParseInt(matches[3], 10, 64)
+	if err != nil {
+		return 0, 0, 0, fmt.Errorf("unexpected statusline %s: %s", statusline, err)
+	}
+
+	return active, total, size, nil
+}
+
+func evalBuildline(buildline string) (syncedBlocks int64, err error) {
+	matches := buildlineRE.FindStringSubmatch(buildline)
+	if len(matches) != 2 {
+		return 0, fmt.Errorf("unexpected buildline: %s", buildline)
+	}
+
+	syncedBlocks, err = strconv.ParseInt(matches[1], 10, 64)
+	if err != nil {
+		return 0, fmt.Errorf("%s in buildline: %s", err, buildline)
+	}
+
+	return syncedBlocks, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/mountstats.go b/vendor/github.com/prometheus/procfs/mountstats.go
new file mode 100644
index 0000000000..e95ddbc67c
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/mountstats.go
@@ -0,0 +1,569 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+// While implementing parsing of /proc/[pid]/mountstats, this blog was used
+// heavily as a reference:
+//   https://utcc.utoronto.ca/~cks/space/blog/linux/NFSMountstatsIndex
+//
+// Special thanks to Chris Siebenmann for all of his posts explaining the
+// various statistics available for NFS.
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"strconv"
+	"strings"
+	"time"
+)
+
+// Constants shared between multiple functions.
+const (
+	deviceEntryLen = 8
+
+	fieldBytesLen  = 8
+	fieldEventsLen = 27
+
+	statVersion10 = "1.0"
+	statVersion11 = "1.1"
+
+	fieldTransport10Len = 10
+	fieldTransport11Len = 13
+)
+
+// A Mount is a device mount parsed from /proc/[pid]/mountstats.
+type Mount struct {
+	// Name of the device.
+	Device string
+	// The mount point of the device.
+	Mount string
+	// The filesystem type used by the device.
+	Type string
+	// If available additional statistics related to this Mount.
+	// Use a type assertion to determine if additional statistics are available.
+	Stats MountStats
+}
+
+// A MountStats is a type which contains detailed statistics for a specific
+// type of Mount.
+type MountStats interface {
+	mountStats()
+}
+
+// A MountStatsNFS is a MountStats implementation for NFSv3 and v4 mounts.
+type MountStatsNFS struct {
+	// The version of statistics provided.
+	StatVersion string
+	// The age of the NFS mount.
+	Age time.Duration
+	// Statistics related to byte counters for various operations.
+	Bytes NFSBytesStats
+	// Statistics related to various NFS event occurrences.
+	Events NFSEventsStats
+	// Statistics broken down by filesystem operation.
+	Operations []NFSOperationStats
+	// Statistics about the NFS RPC transport.
+	Transport NFSTransportStats
+}
+
+// mountStats implements MountStats.
+func (m MountStatsNFS) mountStats() {}
+
+// A NFSBytesStats contains statistics about the number of bytes read and written
+// by an NFS client to and from an NFS server.
+type NFSBytesStats struct {
+	// Number of bytes read using the read() syscall.
+	Read uint64
+	// Number of bytes written using the write() syscall.
+	Write uint64
+	// Number of bytes read using the read() syscall in O_DIRECT mode.
+	DirectRead uint64
+	// Number of bytes written using the write() syscall in O_DIRECT mode.
+	DirectWrite uint64
+	// Number of bytes read from the NFS server, in total.
+	ReadTotal uint64
+	// Number of bytes written to the NFS server, in total.
+	WriteTotal uint64
+	// Number of pages read directly via mmap()'d files.
+	ReadPages uint64
+	// Number of pages written directly via mmap()'d files.
+	WritePages uint64
+}
+
+// A NFSEventsStats contains statistics about NFS event occurrences.
+type NFSEventsStats struct {
+	// Number of times cached inode attributes are re-validated from the server.
+	InodeRevalidate uint64
+	// Number of times cached dentry nodes are re-validated from the server.
+	DnodeRevalidate uint64
+	// Number of times an inode cache is cleared.
+	DataInvalidate uint64
+	// Number of times cached inode attributes are invalidated.
+	AttributeInvalidate uint64
+	// Number of times files or directories have been open()'d.
+	VFSOpen uint64
+	// Number of times a directory lookup has occurred.
+	VFSLookup uint64
+	// Number of times permissions have been checked.
+	VFSAccess uint64
+	// Number of updates (and potential writes) to pages.
+	VFSUpdatePage uint64
+	// Number of pages read directly via mmap()'d files.
+	VFSReadPage uint64
+	// Number of times a group of pages have been read.
+	VFSReadPages uint64
+	// Number of pages written directly via mmap()'d files.
+	VFSWritePage uint64
+	// Number of times a group of pages have been written.
+	VFSWritePages uint64
+	// Number of times directory entries have been read with getdents().
+	VFSGetdents uint64
+	// Number of times attributes have been set on inodes.
+	VFSSetattr uint64
+	// Number of pending writes that have been forcefully flushed to the server.
+	VFSFlush uint64
+	// Number of times fsync() has been called on directories and files.
+	VFSFsync uint64
+	// Number of times locking has been attempted on a file.
+	VFSLock uint64
+	// Number of times files have been closed and released.
+	VFSFileRelease uint64
+	// Unknown.  Possibly unused.
+	CongestionWait uint64
+	// Number of times files have been truncated.
+	Truncation uint64
+	// Number of times a file has been grown due to writes beyond its existing end.
+	WriteExtension uint64
+	// Number of times a file was removed while still open by another process.
+	SillyRename uint64
+	// Number of times the NFS server gave less data than expected while reading.
+	ShortRead uint64
+	// Number of times the NFS server wrote less data than expected while writing.
+	ShortWrite uint64
+	// Number of times the NFS server indicated EJUKEBOX; retrieving data from
+	// offline storage.
+	JukeboxDelay uint64
+	// Number of NFS v4.1+ pNFS reads.
+	PNFSRead uint64
+	// Number of NFS v4.1+ pNFS writes.
+	PNFSWrite uint64
+}
+
+// A NFSOperationStats contains statistics for a single operation.
+type NFSOperationStats struct {
+	// The name of the operation.
+	Operation string
+	// Number of requests performed for this operation.
+	Requests uint64
+	// Number of times an actual RPC request has been transmitted for this operation.
+	Transmissions uint64
+	// Number of times a request has had a major timeout.
+	MajorTimeouts uint64
+	// Number of bytes sent for this operation, including RPC headers and payload.
+	BytesSent uint64
+	// Number of bytes received for this operation, including RPC headers and payload.
+	BytesReceived uint64
+	// Duration all requests spent queued for transmission before they were sent.
+	CumulativeQueueTime time.Duration
+	// Duration it took to get a reply back after the request was transmitted.
+	CumulativeTotalResponseTime time.Duration
+	// Duration from when a request was enqueued to when it was completely handled.
+	CumulativeTotalRequestTime time.Duration
+}
+
+// A NFSTransportStats contains statistics for the NFS mount RPC requests and
+// responses.
+type NFSTransportStats struct {
+	// The local port used for the NFS mount.
+	Port uint64
+	// Number of times the client has had to establish a connection from scratch
+	// to the NFS server.
+	Bind uint64
+	// Number of times the client has made a TCP connection to the NFS server.
+	Connect uint64
+	// Duration (in jiffies, a kernel internal unit of time) the NFS mount has
+	// spent waiting for connections to the server to be established.
+	ConnectIdleTime uint64
+	// Duration since the NFS mount last saw any RPC traffic.
+	IdleTime time.Duration
+	// Number of RPC requests for this mount sent to the NFS server.
+	Sends uint64
+	// Number of RPC responses for this mount received from the NFS server.
+	Receives uint64
+	// Number of times the NFS server sent a response with a transaction ID
+	// unknown to this client.
+	BadTransactionIDs uint64
+	// A running counter, incremented on each request as the current difference
+	// ebetween sends and receives.
+	CumulativeActiveRequests uint64
+	// A running counter, incremented on each request by the current backlog
+	// queue size.
+	CumulativeBacklog uint64
+
+	// Stats below only available with stat version 1.1.
+
+	// Maximum number of simultaneously active RPC requests ever used.
+	MaximumRPCSlotsUsed uint64
+	// A running counter, incremented on each request as the current size of the
+	// sending queue.
+	CumulativeSendingQueue uint64
+	// A running counter, incremented on each request as the current size of the
+	// pending queue.
+	CumulativePendingQueue uint64
+}
+
+// parseMountStats parses a /proc/[pid]/mountstats file and returns a slice
+// of Mount structures containing detailed information about each mount.
+// If available, statistics for each mount are parsed as well.
+func parseMountStats(r io.Reader) ([]*Mount, error) {
+	const (
+		device            = "device"
+		statVersionPrefix = "statvers="
+
+		nfs3Type = "nfs"
+		nfs4Type = "nfs4"
+	)
+
+	var mounts []*Mount
+
+	s := bufio.NewScanner(r)
+	for s.Scan() {
+		// Only look for device entries in this function
+		ss := strings.Fields(string(s.Bytes()))
+		if len(ss) == 0 || ss[0] != device {
+			continue
+		}
+
+		m, err := parseMount(ss)
+		if err != nil {
+			return nil, err
+		}
+
+		// Does this mount also possess statistics information?
+		if len(ss) > deviceEntryLen {
+			// Only NFSv3 and v4 are supported for parsing statistics
+			if m.Type != nfs3Type && m.Type != nfs4Type {
+				return nil, fmt.Errorf("cannot parse MountStats for fstype %q", m.Type)
+			}
+
+			statVersion := strings.TrimPrefix(ss[8], statVersionPrefix)
+
+			stats, err := parseMountStatsNFS(s, statVersion)
+			if err != nil {
+				return nil, err
+			}
+
+			m.Stats = stats
+		}
+
+		mounts = append(mounts, m)
+	}
+
+	return mounts, s.Err()
+}
+
+// parseMount parses an entry in /proc/[pid]/mountstats in the format:
+//   device [device] mounted on [mount] with fstype [type]
+func parseMount(ss []string) (*Mount, error) {
+	if len(ss) < deviceEntryLen {
+		return nil, fmt.Errorf("invalid device entry: %v", ss)
+	}
+
+	// Check for specific words appearing at specific indices to ensure
+	// the format is consistent with what we expect
+	format := []struct {
+		i int
+		s string
+	}{
+		{i: 0, s: "device"},
+		{i: 2, s: "mounted"},
+		{i: 3, s: "on"},
+		{i: 5, s: "with"},
+		{i: 6, s: "fstype"},
+	}
+
+	for _, f := range format {
+		if ss[f.i] != f.s {
+			return nil, fmt.Errorf("invalid device entry: %v", ss)
+		}
+	}
+
+	return &Mount{
+		Device: ss[1],
+		Mount:  ss[4],
+		Type:   ss[7],
+	}, nil
+}
+
+// parseMountStatsNFS parses a MountStatsNFS by scanning additional information
+// related to NFS statistics.
+func parseMountStatsNFS(s *bufio.Scanner, statVersion string) (*MountStatsNFS, error) {
+	// Field indicators for parsing specific types of data
+	const (
+		fieldAge        = "age:"
+		fieldBytes      = "bytes:"
+		fieldEvents     = "events:"
+		fieldPerOpStats = "per-op"
+		fieldTransport  = "xprt:"
+	)
+
+	stats := &MountStatsNFS{
+		StatVersion: statVersion,
+	}
+
+	for s.Scan() {
+		ss := strings.Fields(string(s.Bytes()))
+		if len(ss) == 0 {
+			break
+		}
+		if len(ss) < 2 {
+			return nil, fmt.Errorf("not enough information for NFS stats: %v", ss)
+		}
+
+		switch ss[0] {
+		case fieldAge:
+			// Age integer is in seconds
+			d, err := time.ParseDuration(ss[1] + "s")
+			if err != nil {
+				return nil, err
+			}
+
+			stats.Age = d
+		case fieldBytes:
+			bstats, err := parseNFSBytesStats(ss[1:])
+			if err != nil {
+				return nil, err
+			}
+
+			stats.Bytes = *bstats
+		case fieldEvents:
+			estats, err := parseNFSEventsStats(ss[1:])
+			if err != nil {
+				return nil, err
+			}
+
+			stats.Events = *estats
+		case fieldTransport:
+			if len(ss) < 3 {
+				return nil, fmt.Errorf("not enough information for NFS transport stats: %v", ss)
+			}
+
+			tstats, err := parseNFSTransportStats(ss[2:], statVersion)
+			if err != nil {
+				return nil, err
+			}
+
+			stats.Transport = *tstats
+		}
+
+		// When encountering "per-operation statistics", we must break this
+		// loop and parse them separately to ensure we can terminate parsing
+		// before reaching another device entry; hence why this 'if' statement
+		// is not just another switch case
+		if ss[0] == fieldPerOpStats {
+			break
+		}
+	}
+
+	if err := s.Err(); err != nil {
+		return nil, err
+	}
+
+	// NFS per-operation stats appear last before the next device entry
+	perOpStats, err := parseNFSOperationStats(s)
+	if err != nil {
+		return nil, err
+	}
+
+	stats.Operations = perOpStats
+
+	return stats, nil
+}
+
+// parseNFSBytesStats parses a NFSBytesStats line using an input set of
+// integer fields.
+func parseNFSBytesStats(ss []string) (*NFSBytesStats, error) {
+	if len(ss) != fieldBytesLen {
+		return nil, fmt.Errorf("invalid NFS bytes stats: %v", ss)
+	}
+
+	ns := make([]uint64, 0, fieldBytesLen)
+	for _, s := range ss {
+		n, err := strconv.ParseUint(s, 10, 64)
+		if err != nil {
+			return nil, err
+		}
+
+		ns = append(ns, n)
+	}
+
+	return &NFSBytesStats{
+		Read:        ns[0],
+		Write:       ns[1],
+		DirectRead:  ns[2],
+		DirectWrite: ns[3],
+		ReadTotal:   ns[4],
+		WriteTotal:  ns[5],
+		ReadPages:   ns[6],
+		WritePages:  ns[7],
+	}, nil
+}
+
+// parseNFSEventsStats parses a NFSEventsStats line using an input set of
+// integer fields.
+func parseNFSEventsStats(ss []string) (*NFSEventsStats, error) {
+	if len(ss) != fieldEventsLen {
+		return nil, fmt.Errorf("invalid NFS events stats: %v", ss)
+	}
+
+	ns := make([]uint64, 0, fieldEventsLen)
+	for _, s := range ss {
+		n, err := strconv.ParseUint(s, 10, 64)
+		if err != nil {
+			return nil, err
+		}
+
+		ns = append(ns, n)
+	}
+
+	return &NFSEventsStats{
+		InodeRevalidate:     ns[0],
+		DnodeRevalidate:     ns[1],
+		DataInvalidate:      ns[2],
+		AttributeInvalidate: ns[3],
+		VFSOpen:             ns[4],
+		VFSLookup:           ns[5],
+		VFSAccess:           ns[6],
+		VFSUpdatePage:       ns[7],
+		VFSReadPage:         ns[8],
+		VFSReadPages:        ns[9],
+		VFSWritePage:        ns[10],
+		VFSWritePages:       ns[11],
+		VFSGetdents:         ns[12],
+		VFSSetattr:          ns[13],
+		VFSFlush:            ns[14],
+		VFSFsync:            ns[15],
+		VFSLock:             ns[16],
+		VFSFileRelease:      ns[17],
+		CongestionWait:      ns[18],
+		Truncation:          ns[19],
+		WriteExtension:      ns[20],
+		SillyRename:         ns[21],
+		ShortRead:           ns[22],
+		ShortWrite:          ns[23],
+		JukeboxDelay:        ns[24],
+		PNFSRead:            ns[25],
+		PNFSWrite:           ns[26],
+	}, nil
+}
+
+// parseNFSOperationStats parses a slice of NFSOperationStats by scanning
+// additional information about per-operation statistics until an empty
+// line is reached.
+func parseNFSOperationStats(s *bufio.Scanner) ([]NFSOperationStats, error) {
+	const (
+		// Number of expected fields in each per-operation statistics set
+		numFields = 9
+	)
+
+	var ops []NFSOperationStats
+
+	for s.Scan() {
+		ss := strings.Fields(string(s.Bytes()))
+		if len(ss) == 0 {
+			// Must break when reading a blank line after per-operation stats to
+			// enable top-level function to parse the next device entry
+			break
+		}
+
+		if len(ss) != numFields {
+			return nil, fmt.Errorf("invalid NFS per-operations stats: %v", ss)
+		}
+
+		// Skip string operation name for integers
+		ns := make([]uint64, 0, numFields-1)
+		for _, st := range ss[1:] {
+			n, err := strconv.ParseUint(st, 10, 64)
+			if err != nil {
+				return nil, err
+			}
+
+			ns = append(ns, n)
+		}
+
+		ops = append(ops, NFSOperationStats{
+			Operation:                   strings.TrimSuffix(ss[0], ":"),
+			Requests:                    ns[0],
+			Transmissions:               ns[1],
+			MajorTimeouts:               ns[2],
+			BytesSent:                   ns[3],
+			BytesReceived:               ns[4],
+			CumulativeQueueTime:         time.Duration(ns[5]) * time.Millisecond,
+			CumulativeTotalResponseTime: time.Duration(ns[6]) * time.Millisecond,
+			CumulativeTotalRequestTime:  time.Duration(ns[7]) * time.Millisecond,
+		})
+	}
+
+	return ops, s.Err()
+}
+
+// parseNFSTransportStats parses a NFSTransportStats line using an input set of
+// integer fields matched to a specific stats version.
+func parseNFSTransportStats(ss []string, statVersion string) (*NFSTransportStats, error) {
+	switch statVersion {
+	case statVersion10:
+		if len(ss) != fieldTransport10Len {
+			return nil, fmt.Errorf("invalid NFS transport stats 1.0 statement: %v", ss)
+		}
+	case statVersion11:
+		if len(ss) != fieldTransport11Len {
+			return nil, fmt.Errorf("invalid NFS transport stats 1.1 statement: %v", ss)
+		}
+	default:
+		return nil, fmt.Errorf("unrecognized NFS transport stats version: %q", statVersion)
+	}
+
+	// Allocate enough for v1.1 stats since zero value for v1.1 stats will be okay
+	// in a v1.0 response.
+	//
+	// Note: slice length must be set to length of v1.1 stats to avoid a panic when
+	// only v1.0 stats are present.
+	// See: https://github.com/prometheus/node_exporter/issues/571.
+	ns := make([]uint64, fieldTransport11Len)
+	for i, s := range ss {
+		n, err := strconv.ParseUint(s, 10, 64)
+		if err != nil {
+			return nil, err
+		}
+
+		ns[i] = n
+	}
+
+	return &NFSTransportStats{
+		Port:                     ns[0],
+		Bind:                     ns[1],
+		Connect:                  ns[2],
+		ConnectIdleTime:          ns[3],
+		IdleTime:                 time.Duration(ns[4]) * time.Second,
+		Sends:                    ns[5],
+		Receives:                 ns[6],
+		BadTransactionIDs:        ns[7],
+		CumulativeActiveRequests: ns[8],
+		CumulativeBacklog:        ns[9],
+		MaximumRPCSlotsUsed:      ns[10],
+		CumulativeSendingQueue:   ns[11],
+		CumulativePendingQueue:   ns[12],
+	}, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/net_dev.go b/vendor/github.com/prometheus/procfs/net_dev.go
new file mode 100644
index 0000000000..3f2523371a
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/net_dev.go
@@ -0,0 +1,216 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"errors"
+	"os"
+	"sort"
+	"strconv"
+	"strings"
+)
+
+// NetDevLine is single line parsed from /proc/net/dev or /proc/[pid]/net/dev.
+type NetDevLine struct {
+	Name         string `json:"name"`          // The name of the interface.
+	RxBytes      uint64 `json:"rx_bytes"`      // Cumulative count of bytes received.
+	RxPackets    uint64 `json:"rx_packets"`    // Cumulative count of packets received.
+	RxErrors     uint64 `json:"rx_errors"`     // Cumulative count of receive errors encountered.
+	RxDropped    uint64 `json:"rx_dropped"`    // Cumulative count of packets dropped while receiving.
+	RxFIFO       uint64 `json:"rx_fifo"`       // Cumulative count of FIFO buffer errors.
+	RxFrame      uint64 `json:"rx_frame"`      // Cumulative count of packet framing errors.
+	RxCompressed uint64 `json:"rx_compressed"` // Cumulative count of compressed packets received by the device driver.
+	RxMulticast  uint64 `json:"rx_multicast"`  // Cumulative count of multicast frames received by the device driver.
+	TxBytes      uint64 `json:"tx_bytes"`      // Cumulative count of bytes transmitted.
+	TxPackets    uint64 `json:"tx_packets"`    // Cumulative count of packets transmitted.
+	TxErrors     uint64 `json:"tx_errors"`     // Cumulative count of transmit errors encountered.
+	TxDropped    uint64 `json:"tx_dropped"`    // Cumulative count of packets dropped while transmitting.
+	TxFIFO       uint64 `json:"tx_fifo"`       // Cumulative count of FIFO buffer errors.
+	TxCollisions uint64 `json:"tx_collisions"` // Cumulative count of collisions detected on the interface.
+	TxCarrier    uint64 `json:"tx_carrier"`    // Cumulative count of carrier losses detected by the device driver.
+	TxCompressed uint64 `json:"tx_compressed"` // Cumulative count of compressed packets transmitted by the device driver.
+}
+
+// NetDev is parsed from /proc/net/dev or /proc/[pid]/net/dev. The map keys
+// are interface names.
+type NetDev map[string]NetDevLine
+
+// NewNetDev returns kernel/system statistics read from /proc/net/dev.
+func NewNetDev() (NetDev, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return nil, err
+	}
+
+	return fs.NewNetDev()
+}
+
+// NewNetDev returns kernel/system statistics read from /proc/net/dev.
+func (fs FS) NewNetDev() (NetDev, error) {
+	return newNetDev(fs.Path("net/dev"))
+}
+
+// NewNetDev returns kernel/system statistics read from /proc/[pid]/net/dev.
+func (p Proc) NewNetDev() (NetDev, error) {
+	return newNetDev(p.path("net/dev"))
+}
+
+// newNetDev creates a new NetDev from the contents of the given file.
+func newNetDev(file string) (NetDev, error) {
+	f, err := os.Open(file)
+	if err != nil {
+		return NetDev{}, err
+	}
+	defer f.Close()
+
+	nd := NetDev{}
+	s := bufio.NewScanner(f)
+	for n := 0; s.Scan(); n++ {
+		// Skip the 2 header lines.
+		if n < 2 {
+			continue
+		}
+
+		line, err := nd.parseLine(s.Text())
+		if err != nil {
+			return nd, err
+		}
+
+		nd[line.Name] = *line
+	}
+
+	return nd, s.Err()
+}
+
+// parseLine parses a single line from the /proc/net/dev file. Header lines
+// must be filtered prior to calling this method.
+func (nd NetDev) parseLine(rawLine string) (*NetDevLine, error) {
+	parts := strings.SplitN(rawLine, ":", 2)
+	if len(parts) != 2 {
+		return nil, errors.New("invalid net/dev line, missing colon")
+	}
+	fields := strings.Fields(strings.TrimSpace(parts[1]))
+
+	var err error
+	line := &NetDevLine{}
+
+	// Interface Name
+	line.Name = strings.TrimSpace(parts[0])
+	if line.Name == "" {
+		return nil, errors.New("invalid net/dev line, empty interface name")
+	}
+
+	// RX
+	line.RxBytes, err = strconv.ParseUint(fields[0], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxPackets, err = strconv.ParseUint(fields[1], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxErrors, err = strconv.ParseUint(fields[2], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxDropped, err = strconv.ParseUint(fields[3], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxFIFO, err = strconv.ParseUint(fields[4], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxFrame, err = strconv.ParseUint(fields[5], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxCompressed, err = strconv.ParseUint(fields[6], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.RxMulticast, err = strconv.ParseUint(fields[7], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+
+	// TX
+	line.TxBytes, err = strconv.ParseUint(fields[8], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxPackets, err = strconv.ParseUint(fields[9], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxErrors, err = strconv.ParseUint(fields[10], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxDropped, err = strconv.ParseUint(fields[11], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxFIFO, err = strconv.ParseUint(fields[12], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxCollisions, err = strconv.ParseUint(fields[13], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxCarrier, err = strconv.ParseUint(fields[14], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+	line.TxCompressed, err = strconv.ParseUint(fields[15], 10, 64)
+	if err != nil {
+		return nil, err
+	}
+
+	return line, nil
+}
+
+// Total aggregates the values across interfaces and returns a new NetDevLine.
+// The Name field will be a sorted comma separated list of interface names.
+func (nd NetDev) Total() NetDevLine {
+	total := NetDevLine{}
+
+	names := make([]string, 0, len(nd))
+	for _, ifc := range nd {
+		names = append(names, ifc.Name)
+		total.RxBytes += ifc.RxBytes
+		total.RxPackets += ifc.RxPackets
+		total.RxPackets += ifc.RxPackets
+		total.RxErrors += ifc.RxErrors
+		total.RxDropped += ifc.RxDropped
+		total.RxFIFO += ifc.RxFIFO
+		total.RxFrame += ifc.RxFrame
+		total.RxCompressed += ifc.RxCompressed
+		total.RxMulticast += ifc.RxMulticast
+		total.TxBytes += ifc.TxBytes
+		total.TxPackets += ifc.TxPackets
+		total.TxErrors += ifc.TxErrors
+		total.TxDropped += ifc.TxDropped
+		total.TxFIFO += ifc.TxFIFO
+		total.TxCollisions += ifc.TxCollisions
+		total.TxCarrier += ifc.TxCarrier
+		total.TxCompressed += ifc.TxCompressed
+	}
+	sort.Strings(names)
+	total.Name = strings.Join(names, ", ")
+
+	return total
+}
diff --git a/vendor/github.com/prometheus/procfs/nfs/nfs.go b/vendor/github.com/prometheus/procfs/nfs/nfs.go
new file mode 100644
index 0000000000..651bf68195
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/nfs/nfs.go
@@ -0,0 +1,263 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package nfs implements parsing of /proc/net/rpc/nfsd.
+// Fields are documented in https://www.svennd.be/nfsd-stats-explained-procnetrpcnfsd/
+package nfs
+
+// ReplyCache models the "rc" line.
+type ReplyCache struct {
+	Hits    uint64
+	Misses  uint64
+	NoCache uint64
+}
+
+// FileHandles models the "fh" line.
+type FileHandles struct {
+	Stale        uint64
+	TotalLookups uint64
+	AnonLookups  uint64
+	DirNoCache   uint64
+	NoDirNoCache uint64
+}
+
+// InputOutput models the "io" line.
+type InputOutput struct {
+	Read  uint64
+	Write uint64
+}
+
+// Threads models the "th" line.
+type Threads struct {
+	Threads uint64
+	FullCnt uint64
+}
+
+// ReadAheadCache models the "ra" line.
+type ReadAheadCache struct {
+	CacheSize      uint64
+	CacheHistogram []uint64
+	NotFound       uint64
+}
+
+// Network models the "net" line.
+type Network struct {
+	NetCount   uint64
+	UDPCount   uint64
+	TCPCount   uint64
+	TCPConnect uint64
+}
+
+// ClientRPC models the nfs "rpc" line.
+type ClientRPC struct {
+	RPCCount        uint64
+	Retransmissions uint64
+	AuthRefreshes   uint64
+}
+
+// ServerRPC models the nfsd "rpc" line.
+type ServerRPC struct {
+	RPCCount uint64
+	BadCnt   uint64
+	BadFmt   uint64
+	BadAuth  uint64
+	BadcInt  uint64
+}
+
+// V2Stats models the "proc2" line.
+type V2Stats struct {
+	Null     uint64
+	GetAttr  uint64
+	SetAttr  uint64
+	Root     uint64
+	Lookup   uint64
+	ReadLink uint64
+	Read     uint64
+	WrCache  uint64
+	Write    uint64
+	Create   uint64
+	Remove   uint64
+	Rename   uint64
+	Link     uint64
+	SymLink  uint64
+	MkDir    uint64
+	RmDir    uint64
+	ReadDir  uint64
+	FsStat   uint64
+}
+
+// V3Stats models the "proc3" line.
+type V3Stats struct {
+	Null        uint64
+	GetAttr     uint64
+	SetAttr     uint64
+	Lookup      uint64
+	Access      uint64
+	ReadLink    uint64
+	Read        uint64
+	Write       uint64
+	Create      uint64
+	MkDir       uint64
+	SymLink     uint64
+	MkNod       uint64
+	Remove      uint64
+	RmDir       uint64
+	Rename      uint64
+	Link        uint64
+	ReadDir     uint64
+	ReadDirPlus uint64
+	FsStat      uint64
+	FsInfo      uint64
+	PathConf    uint64
+	Commit      uint64
+}
+
+// ClientV4Stats models the nfs "proc4" line.
+type ClientV4Stats struct {
+	Null               uint64
+	Read               uint64
+	Write              uint64
+	Commit             uint64
+	Open               uint64
+	OpenConfirm        uint64
+	OpenNoattr         uint64
+	OpenDowngrade      uint64
+	Close              uint64
+	Setattr            uint64
+	FsInfo             uint64
+	Renew              uint64
+	SetClientID        uint64
+	SetClientIDConfirm uint64
+	Lock               uint64
+	Lockt              uint64
+	Locku              uint64
+	Access             uint64
+	Getattr            uint64
+	Lookup             uint64
+	LookupRoot         uint64
+	Remove             uint64
+	Rename             uint64
+	Link               uint64
+	Symlink            uint64
+	Create             uint64
+	Pathconf           uint64
+	StatFs             uint64
+	ReadLink           uint64
+	ReadDir            uint64
+	ServerCaps         uint64
+	DelegReturn        uint64
+	GetACL             uint64
+	SetACL             uint64
+	FsLocations        uint64
+	ReleaseLockowner   uint64
+	Secinfo            uint64
+	FsidPresent        uint64
+	ExchangeID         uint64
+	CreateSession      uint64
+	DestroySession     uint64
+	Sequence           uint64
+	GetLeaseTime       uint64
+	ReclaimComplete    uint64
+	LayoutGet          uint64
+	GetDeviceInfo      uint64
+	LayoutCommit       uint64
+	LayoutReturn       uint64
+	SecinfoNoName      uint64
+	TestStateID        uint64
+	FreeStateID        uint64
+	GetDeviceList      uint64
+	BindConnToSession  uint64
+	DestroyClientID    uint64
+	Seek               uint64
+	Allocate           uint64
+	DeAllocate         uint64
+	LayoutStats        uint64
+	Clone              uint64
+}
+
+// ServerV4Stats models the nfsd "proc4" line.
+type ServerV4Stats struct {
+	Null     uint64
+	Compound uint64
+}
+
+// V4Ops models the "proc4ops" line: NFSv4 operations
+// Variable list, see:
+// v4.0 https://tools.ietf.org/html/rfc3010 (38 operations)
+// v4.1 https://tools.ietf.org/html/rfc5661 (58 operations)
+// v4.2 https://tools.ietf.org/html/draft-ietf-nfsv4-minorversion2-41 (71 operations)
+type V4Ops struct {
+	//Values       uint64 // Variable depending on v4.x sub-version. TODO: Will this always at least include the fields in this struct?
+	Op0Unused    uint64
+	Op1Unused    uint64
+	Op2Future    uint64
+	Access       uint64
+	Close        uint64
+	Commit       uint64
+	Create       uint64
+	DelegPurge   uint64
+	DelegReturn  uint64
+	GetAttr      uint64
+	GetFH        uint64
+	Link         uint64
+	Lock         uint64
+	Lockt        uint64
+	Locku        uint64
+	Lookup       uint64
+	LookupRoot   uint64
+	Nverify      uint64
+	Open         uint64
+	OpenAttr     uint64
+	OpenConfirm  uint64
+	OpenDgrd     uint64
+	PutFH        uint64
+	PutPubFH     uint64
+	PutRootFH    uint64
+	Read         uint64
+	ReadDir      uint64
+	ReadLink     uint64
+	Remove       uint64
+	Rename       uint64
+	Renew        uint64
+	RestoreFH    uint64
+	SaveFH       uint64
+	SecInfo      uint64
+	SetAttr      uint64
+	Verify       uint64
+	Write        uint64
+	RelLockOwner uint64
+}
+
+// ClientRPCStats models all stats from /proc/net/rpc/nfs.
+type ClientRPCStats struct {
+	Network       Network
+	ClientRPC     ClientRPC
+	V2Stats       V2Stats
+	V3Stats       V3Stats
+	ClientV4Stats ClientV4Stats
+}
+
+// ServerRPCStats models all stats from /proc/net/rpc/nfsd.
+type ServerRPCStats struct {
+	ReplyCache     ReplyCache
+	FileHandles    FileHandles
+	InputOutput    InputOutput
+	Threads        Threads
+	ReadAheadCache ReadAheadCache
+	Network        Network
+	ServerRPC      ServerRPC
+	V2Stats        V2Stats
+	V3Stats        V3Stats
+	ServerV4Stats  ServerV4Stats
+	V4Ops          V4Ops
+}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse.go b/vendor/github.com/prometheus/procfs/nfs/parse.go
new file mode 100644
index 0000000000..95a83cc5bc
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/nfs/parse.go
@@ -0,0 +1,317 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package nfs
+
+import (
+	"fmt"
+)
+
+func parseReplyCache(v []uint64) (ReplyCache, error) {
+	if len(v) != 3 {
+		return ReplyCache{}, fmt.Errorf("invalid ReplyCache line %q", v)
+	}
+
+	return ReplyCache{
+		Hits:    v[0],
+		Misses:  v[1],
+		NoCache: v[2],
+	}, nil
+}
+
+func parseFileHandles(v []uint64) (FileHandles, error) {
+	if len(v) != 5 {
+		return FileHandles{}, fmt.Errorf("invalid FileHandles, line %q", v)
+	}
+
+	return FileHandles{
+		Stale:        v[0],
+		TotalLookups: v[1],
+		AnonLookups:  v[2],
+		DirNoCache:   v[3],
+		NoDirNoCache: v[4],
+	}, nil
+}
+
+func parseInputOutput(v []uint64) (InputOutput, error) {
+	if len(v) != 2 {
+		return InputOutput{}, fmt.Errorf("invalid InputOutput line %q", v)
+	}
+
+	return InputOutput{
+		Read:  v[0],
+		Write: v[1],
+	}, nil
+}
+
+func parseThreads(v []uint64) (Threads, error) {
+	if len(v) != 2 {
+		return Threads{}, fmt.Errorf("invalid Threads line %q", v)
+	}
+
+	return Threads{
+		Threads: v[0],
+		FullCnt: v[1],
+	}, nil
+}
+
+func parseReadAheadCache(v []uint64) (ReadAheadCache, error) {
+	if len(v) != 12 {
+		return ReadAheadCache{}, fmt.Errorf("invalid ReadAheadCache line %q", v)
+	}
+
+	return ReadAheadCache{
+		CacheSize:      v[0],
+		CacheHistogram: v[1:11],
+		NotFound:       v[11],
+	}, nil
+}
+
+func parseNetwork(v []uint64) (Network, error) {
+	if len(v) != 4 {
+		return Network{}, fmt.Errorf("invalid Network line %q", v)
+	}
+
+	return Network{
+		NetCount:   v[0],
+		UDPCount:   v[1],
+		TCPCount:   v[2],
+		TCPConnect: v[3],
+	}, nil
+}
+
+func parseServerRPC(v []uint64) (ServerRPC, error) {
+	if len(v) != 5 {
+		return ServerRPC{}, fmt.Errorf("invalid RPC line %q", v)
+	}
+
+	return ServerRPC{
+		RPCCount: v[0],
+		BadCnt:   v[1],
+		BadFmt:   v[2],
+		BadAuth:  v[3],
+		BadcInt:  v[4],
+	}, nil
+}
+
+func parseClientRPC(v []uint64) (ClientRPC, error) {
+	if len(v) != 3 {
+		return ClientRPC{}, fmt.Errorf("invalid RPC line %q", v)
+	}
+
+	return ClientRPC{
+		RPCCount:        v[0],
+		Retransmissions: v[1],
+		AuthRefreshes:   v[2],
+	}, nil
+}
+
+func parseV2Stats(v []uint64) (V2Stats, error) {
+	values := int(v[0])
+	if len(v[1:]) != values || values != 18 {
+		return V2Stats{}, fmt.Errorf("invalid V2Stats line %q", v)
+	}
+
+	return V2Stats{
+		Null:     v[1],
+		GetAttr:  v[2],
+		SetAttr:  v[3],
+		Root:     v[4],
+		Lookup:   v[5],
+		ReadLink: v[6],
+		Read:     v[7],
+		WrCache:  v[8],
+		Write:    v[9],
+		Create:   v[10],
+		Remove:   v[11],
+		Rename:   v[12],
+		Link:     v[13],
+		SymLink:  v[14],
+		MkDir:    v[15],
+		RmDir:    v[16],
+		ReadDir:  v[17],
+		FsStat:   v[18],
+	}, nil
+}
+
+func parseV3Stats(v []uint64) (V3Stats, error) {
+	values := int(v[0])
+	if len(v[1:]) != values || values != 22 {
+		return V3Stats{}, fmt.Errorf("invalid V3Stats line %q", v)
+	}
+
+	return V3Stats{
+		Null:        v[1],
+		GetAttr:     v[2],
+		SetAttr:     v[3],
+		Lookup:      v[4],
+		Access:      v[5],
+		ReadLink:    v[6],
+		Read:        v[7],
+		Write:       v[8],
+		Create:      v[9],
+		MkDir:       v[10],
+		SymLink:     v[11],
+		MkNod:       v[12],
+		Remove:      v[13],
+		RmDir:       v[14],
+		Rename:      v[15],
+		Link:        v[16],
+		ReadDir:     v[17],
+		ReadDirPlus: v[18],
+		FsStat:      v[19],
+		FsInfo:      v[20],
+		PathConf:    v[21],
+		Commit:      v[22],
+	}, nil
+}
+
+func parseClientV4Stats(v []uint64) (ClientV4Stats, error) {
+	values := int(v[0])
+	if len(v[1:]) != values {
+		return ClientV4Stats{}, fmt.Errorf("invalid ClientV4Stats line %q", v)
+	}
+
+	// This function currently supports mapping 59 NFS v4 client stats.  Older
+	// kernels may emit fewer stats, so we must detect this and pad out the
+	// values to match the expected slice size.
+	if values < 59 {
+		newValues := make([]uint64, 60)
+		copy(newValues, v)
+		v = newValues
+	}
+
+	return ClientV4Stats{
+		Null:               v[1],
+		Read:               v[2],
+		Write:              v[3],
+		Commit:             v[4],
+		Open:               v[5],
+		OpenConfirm:        v[6],
+		OpenNoattr:         v[7],
+		OpenDowngrade:      v[8],
+		Close:              v[9],
+		Setattr:            v[10],
+		FsInfo:             v[11],
+		Renew:              v[12],
+		SetClientID:        v[13],
+		SetClientIDConfirm: v[14],
+		Lock:               v[15],
+		Lockt:              v[16],
+		Locku:              v[17],
+		Access:             v[18],
+		Getattr:            v[19],
+		Lookup:             v[20],
+		LookupRoot:         v[21],
+		Remove:             v[22],
+		Rename:             v[23],
+		Link:               v[24],
+		Symlink:            v[25],
+		Create:             v[26],
+		Pathconf:           v[27],
+		StatFs:             v[28],
+		ReadLink:           v[29],
+		ReadDir:            v[30],
+		ServerCaps:         v[31],
+		DelegReturn:        v[32],
+		GetACL:             v[33],
+		SetACL:             v[34],
+		FsLocations:        v[35],
+		ReleaseLockowner:   v[36],
+		Secinfo:            v[37],
+		FsidPresent:        v[38],
+		ExchangeID:         v[39],
+		CreateSession:      v[40],
+		DestroySession:     v[41],
+		Sequence:           v[42],
+		GetLeaseTime:       v[43],
+		ReclaimComplete:    v[44],
+		LayoutGet:          v[45],
+		GetDeviceInfo:      v[46],
+		LayoutCommit:       v[47],
+		LayoutReturn:       v[48],
+		SecinfoNoName:      v[49],
+		TestStateID:        v[50],
+		FreeStateID:        v[51],
+		GetDeviceList:      v[52],
+		BindConnToSession:  v[53],
+		DestroyClientID:    v[54],
+		Seek:               v[55],
+		Allocate:           v[56],
+		DeAllocate:         v[57],
+		LayoutStats:        v[58],
+		Clone:              v[59],
+	}, nil
+}
+
+func parseServerV4Stats(v []uint64) (ServerV4Stats, error) {
+	values := int(v[0])
+	if len(v[1:]) != values || values != 2 {
+		return ServerV4Stats{}, fmt.Errorf("invalid V4Stats line %q", v)
+	}
+
+	return ServerV4Stats{
+		Null:     v[1],
+		Compound: v[2],
+	}, nil
+}
+
+func parseV4Ops(v []uint64) (V4Ops, error) {
+	values := int(v[0])
+	if len(v[1:]) != values || values < 39 {
+		return V4Ops{}, fmt.Errorf("invalid V4Ops line %q", v)
+	}
+
+	stats := V4Ops{
+		Op0Unused:    v[1],
+		Op1Unused:    v[2],
+		Op2Future:    v[3],
+		Access:       v[4],
+		Close:        v[5],
+		Commit:       v[6],
+		Create:       v[7],
+		DelegPurge:   v[8],
+		DelegReturn:  v[9],
+		GetAttr:      v[10],
+		GetFH:        v[11],
+		Link:         v[12],
+		Lock:         v[13],
+		Lockt:        v[14],
+		Locku:        v[15],
+		Lookup:       v[16],
+		LookupRoot:   v[17],
+		Nverify:      v[18],
+		Open:         v[19],
+		OpenAttr:     v[20],
+		OpenConfirm:  v[21],
+		OpenDgrd:     v[22],
+		PutFH:        v[23],
+		PutPubFH:     v[24],
+		PutRootFH:    v[25],
+		Read:         v[26],
+		ReadDir:      v[27],
+		ReadLink:     v[28],
+		Remove:       v[29],
+		Rename:       v[30],
+		Renew:        v[31],
+		RestoreFH:    v[32],
+		SaveFH:       v[33],
+		SecInfo:      v[34],
+		SetAttr:      v[35],
+		Verify:       v[36],
+		Write:        v[37],
+		RelLockOwner: v[38],
+	}
+
+	return stats, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go b/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
new file mode 100644
index 0000000000..c0d3a5ad9b
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/nfs/parse_nfs.go
@@ -0,0 +1,67 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package nfs
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"strings"
+
+	"github.com/prometheus/procfs/internal/util"
+)
+
+// ParseClientRPCStats returns stats read from /proc/net/rpc/nfs
+func ParseClientRPCStats(r io.Reader) (*ClientRPCStats, error) {
+	stats := &ClientRPCStats{}
+
+	scanner := bufio.NewScanner(r)
+	for scanner.Scan() {
+		line := scanner.Text()
+		parts := strings.Fields(scanner.Text())
+		// require at least <key> <value>
+		if len(parts) < 2 {
+			return nil, fmt.Errorf("invalid NFS metric line %q", line)
+		}
+
+		values, err := util.ParseUint64s(parts[1:])
+		if err != nil {
+			return nil, fmt.Errorf("error parsing NFS metric line: %s", err)
+		}
+
+		switch metricLine := parts[0]; metricLine {
+		case "net":
+			stats.Network, err = parseNetwork(values)
+		case "rpc":
+			stats.ClientRPC, err = parseClientRPC(values)
+		case "proc2":
+			stats.V2Stats, err = parseV2Stats(values)
+		case "proc3":
+			stats.V3Stats, err = parseV3Stats(values)
+		case "proc4":
+			stats.ClientV4Stats, err = parseClientV4Stats(values)
+		default:
+			return nil, fmt.Errorf("unknown NFS metric line %q", metricLine)
+		}
+		if err != nil {
+			return nil, fmt.Errorf("errors parsing NFS metric line: %s", err)
+		}
+	}
+
+	if err := scanner.Err(); err != nil {
+		return nil, fmt.Errorf("error scanning NFS file: %s", err)
+	}
+
+	return stats, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go b/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
new file mode 100644
index 0000000000..57bb4a3585
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/nfs/parse_nfsd.go
@@ -0,0 +1,89 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package nfs
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"strings"
+
+	"github.com/prometheus/procfs/internal/util"
+)
+
+// ParseServerRPCStats returns stats read from /proc/net/rpc/nfsd
+func ParseServerRPCStats(r io.Reader) (*ServerRPCStats, error) {
+	stats := &ServerRPCStats{}
+
+	scanner := bufio.NewScanner(r)
+	for scanner.Scan() {
+		line := scanner.Text()
+		parts := strings.Fields(scanner.Text())
+		// require at least <key> <value>
+		if len(parts) < 2 {
+			return nil, fmt.Errorf("invalid NFSd metric line %q", line)
+		}
+		label := parts[0]
+
+		var values []uint64
+		var err error
+		if label == "th" {
+			if len(parts) < 3 {
+				return nil, fmt.Errorf("invalid NFSd th metric line %q", line)
+			}
+			values, err = util.ParseUint64s(parts[1:3])
+		} else {
+			values, err = util.ParseUint64s(parts[1:])
+		}
+		if err != nil {
+			return nil, fmt.Errorf("error parsing NFSd metric line: %s", err)
+		}
+
+		switch metricLine := parts[0]; metricLine {
+		case "rc":
+			stats.ReplyCache, err = parseReplyCache(values)
+		case "fh":
+			stats.FileHandles, err = parseFileHandles(values)
+		case "io":
+			stats.InputOutput, err = parseInputOutput(values)
+		case "th":
+			stats.Threads, err = parseThreads(values)
+		case "ra":
+			stats.ReadAheadCache, err = parseReadAheadCache(values)
+		case "net":
+			stats.Network, err = parseNetwork(values)
+		case "rpc":
+			stats.ServerRPC, err = parseServerRPC(values)
+		case "proc2":
+			stats.V2Stats, err = parseV2Stats(values)
+		case "proc3":
+			stats.V3Stats, err = parseV3Stats(values)
+		case "proc4":
+			stats.ServerV4Stats, err = parseServerV4Stats(values)
+		case "proc4ops":
+			stats.V4Ops, err = parseV4Ops(values)
+		default:
+			return nil, fmt.Errorf("unknown NFSd metric line %q", metricLine)
+		}
+		if err != nil {
+			return nil, fmt.Errorf("errors parsing NFSd metric line: %s", err)
+		}
+	}
+
+	if err := scanner.Err(); err != nil {
+		return nil, fmt.Errorf("error scanning NFSd file: %s", err)
+	}
+
+	return stats, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/proc.go b/vendor/github.com/prometheus/procfs/proc.go
new file mode 100644
index 0000000000..7cf5b8acf9
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/proc.go
@@ -0,0 +1,238 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bytes"
+	"fmt"
+	"io/ioutil"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// Proc provides information about a running process.
+type Proc struct {
+	// The process ID.
+	PID int
+
+	fs FS
+}
+
+// Procs represents a list of Proc structs.
+type Procs []Proc
+
+func (p Procs) Len() int           { return len(p) }
+func (p Procs) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+func (p Procs) Less(i, j int) bool { return p[i].PID < p[j].PID }
+
+// Self returns a process for the current process read via /proc/self.
+func Self() (Proc, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return Proc{}, err
+	}
+	return fs.Self()
+}
+
+// NewProc returns a process for the given pid under /proc.
+func NewProc(pid int) (Proc, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return Proc{}, err
+	}
+	return fs.NewProc(pid)
+}
+
+// AllProcs returns a list of all currently available processes under /proc.
+func AllProcs() (Procs, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return Procs{}, err
+	}
+	return fs.AllProcs()
+}
+
+// Self returns a process for the current process.
+func (fs FS) Self() (Proc, error) {
+	p, err := os.Readlink(fs.Path("self"))
+	if err != nil {
+		return Proc{}, err
+	}
+	pid, err := strconv.Atoi(strings.Replace(p, string(fs), "", -1))
+	if err != nil {
+		return Proc{}, err
+	}
+	return fs.NewProc(pid)
+}
+
+// NewProc returns a process for the given pid.
+func (fs FS) NewProc(pid int) (Proc, error) {
+	if _, err := os.Stat(fs.Path(strconv.Itoa(pid))); err != nil {
+		return Proc{}, err
+	}
+	return Proc{PID: pid, fs: fs}, nil
+}
+
+// AllProcs returns a list of all currently available processes.
+func (fs FS) AllProcs() (Procs, error) {
+	d, err := os.Open(fs.Path())
+	if err != nil {
+		return Procs{}, err
+	}
+	defer d.Close()
+
+	names, err := d.Readdirnames(-1)
+	if err != nil {
+		return Procs{}, fmt.Errorf("could not read %s: %s", d.Name(), err)
+	}
+
+	p := Procs{}
+	for _, n := range names {
+		pid, err := strconv.ParseInt(n, 10, 64)
+		if err != nil {
+			continue
+		}
+		p = append(p, Proc{PID: int(pid), fs: fs})
+	}
+
+	return p, nil
+}
+
+// CmdLine returns the command line of a process.
+func (p Proc) CmdLine() ([]string, error) {
+	f, err := os.Open(p.path("cmdline"))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	data, err := ioutil.ReadAll(f)
+	if err != nil {
+		return nil, err
+	}
+
+	if len(data) < 1 {
+		return []string{}, nil
+	}
+
+	return strings.Split(string(bytes.TrimRight(data, string("\x00"))), string(byte(0))), nil
+}
+
+// Comm returns the command name of a process.
+func (p Proc) Comm() (string, error) {
+	f, err := os.Open(p.path("comm"))
+	if err != nil {
+		return "", err
+	}
+	defer f.Close()
+
+	data, err := ioutil.ReadAll(f)
+	if err != nil {
+		return "", err
+	}
+
+	return strings.TrimSpace(string(data)), nil
+}
+
+// Executable returns the absolute path of the executable command of a process.
+func (p Proc) Executable() (string, error) {
+	exe, err := os.Readlink(p.path("exe"))
+	if os.IsNotExist(err) {
+		return "", nil
+	}
+
+	return exe, err
+}
+
+// FileDescriptors returns the currently open file descriptors of a process.
+func (p Proc) FileDescriptors() ([]uintptr, error) {
+	names, err := p.fileDescriptors()
+	if err != nil {
+		return nil, err
+	}
+
+	fds := make([]uintptr, len(names))
+	for i, n := range names {
+		fd, err := strconv.ParseInt(n, 10, 32)
+		if err != nil {
+			return nil, fmt.Errorf("could not parse fd %s: %s", n, err)
+		}
+		fds[i] = uintptr(fd)
+	}
+
+	return fds, nil
+}
+
+// FileDescriptorTargets returns the targets of all file descriptors of a process.
+// If a file descriptor is not a symlink to a file (like a socket), that value will be the empty string.
+func (p Proc) FileDescriptorTargets() ([]string, error) {
+	names, err := p.fileDescriptors()
+	if err != nil {
+		return nil, err
+	}
+
+	targets := make([]string, len(names))
+
+	for i, name := range names {
+		target, err := os.Readlink(p.path("fd", name))
+		if err == nil {
+			targets[i] = target
+		}
+	}
+
+	return targets, nil
+}
+
+// FileDescriptorsLen returns the number of currently open file descriptors of
+// a process.
+func (p Proc) FileDescriptorsLen() (int, error) {
+	fds, err := p.fileDescriptors()
+	if err != nil {
+		return 0, err
+	}
+
+	return len(fds), nil
+}
+
+// MountStats retrieves statistics and configuration for mount points in a
+// process's namespace.
+func (p Proc) MountStats() ([]*Mount, error) {
+	f, err := os.Open(p.path("mountstats"))
+	if err != nil {
+		return nil, err
+	}
+	defer f.Close()
+
+	return parseMountStats(f)
+}
+
+func (p Proc) fileDescriptors() ([]string, error) {
+	d, err := os.Open(p.path("fd"))
+	if err != nil {
+		return nil, err
+	}
+	defer d.Close()
+
+	names, err := d.Readdirnames(-1)
+	if err != nil {
+		return nil, fmt.Errorf("could not read %s: %s", d.Name(), err)
+	}
+
+	return names, nil
+}
+
+func (p Proc) path(pa ...string) string {
+	return p.fs.Path(append([]string{strconv.Itoa(p.PID)}, pa...)...)
+}
diff --git a/vendor/github.com/prometheus/procfs/proc_io.go b/vendor/github.com/prometheus/procfs/proc_io.go
new file mode 100644
index 0000000000..0251c83bfe
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/proc_io.go
@@ -0,0 +1,65 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+)
+
+// ProcIO models the content of /proc/<pid>/io.
+type ProcIO struct {
+	// Chars read.
+	RChar uint64
+	// Chars written.
+	WChar uint64
+	// Read syscalls.
+	SyscR uint64
+	// Write syscalls.
+	SyscW uint64
+	// Bytes read.
+	ReadBytes uint64
+	// Bytes written.
+	WriteBytes uint64
+	// Bytes written, but taking into account truncation. See
+	// Documentation/filesystems/proc.txt in the kernel sources for
+	// detailed explanation.
+	CancelledWriteBytes int64
+}
+
+// NewIO creates a new ProcIO instance from a given Proc instance.
+func (p Proc) NewIO() (ProcIO, error) {
+	pio := ProcIO{}
+
+	f, err := os.Open(p.path("io"))
+	if err != nil {
+		return pio, err
+	}
+	defer f.Close()
+
+	data, err := ioutil.ReadAll(f)
+	if err != nil {
+		return pio, err
+	}
+
+	ioFormat := "rchar: %d\nwchar: %d\nsyscr: %d\nsyscw: %d\n" +
+		"read_bytes: %d\nwrite_bytes: %d\n" +
+		"cancelled_write_bytes: %d\n"
+
+	_, err = fmt.Sscanf(string(data), ioFormat, &pio.RChar, &pio.WChar, &pio.SyscR,
+		&pio.SyscW, &pio.ReadBytes, &pio.WriteBytes, &pio.CancelledWriteBytes)
+
+	return pio, err
+}
diff --git a/vendor/github.com/prometheus/procfs/proc_limits.go b/vendor/github.com/prometheus/procfs/proc_limits.go
new file mode 100644
index 0000000000..f04ba6fda8
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/proc_limits.go
@@ -0,0 +1,150 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"fmt"
+	"os"
+	"regexp"
+	"strconv"
+)
+
+// ProcLimits represents the soft limits for each of the process's resource
+// limits. For more information see getrlimit(2):
+// http://man7.org/linux/man-pages/man2/getrlimit.2.html.
+type ProcLimits struct {
+	// CPU time limit in seconds.
+	CPUTime int64
+	// Maximum size of files that the process may create.
+	FileSize int64
+	// Maximum size of the process's data segment (initialized data,
+	// uninitialized data, and heap).
+	DataSize int64
+	// Maximum size of the process stack in bytes.
+	StackSize int64
+	// Maximum size of a core file.
+	CoreFileSize int64
+	// Limit of the process's resident set in pages.
+	ResidentSet int64
+	// Maximum number of processes that can be created for the real user ID of
+	// the calling process.
+	Processes int64
+	// Value one greater than the maximum file descriptor number that can be
+	// opened by this process.
+	OpenFiles int64
+	// Maximum number of bytes of memory that may be locked into RAM.
+	LockedMemory int64
+	// Maximum size of the process's virtual memory address space in bytes.
+	AddressSpace int64
+	// Limit on the combined number of flock(2) locks and fcntl(2) leases that
+	// this process may establish.
+	FileLocks int64
+	// Limit of signals that may be queued for the real user ID of the calling
+	// process.
+	PendingSignals int64
+	// Limit on the number of bytes that can be allocated for POSIX message
+	// queues for the real user ID of the calling process.
+	MsqqueueSize int64
+	// Limit of the nice priority set using setpriority(2) or nice(2).
+	NicePriority int64
+	// Limit of the real-time priority set using sched_setscheduler(2) or
+	// sched_setparam(2).
+	RealtimePriority int64
+	// Limit (in microseconds) on the amount of CPU time that a process
+	// scheduled under a real-time scheduling policy may consume without making
+	// a blocking system call.
+	RealtimeTimeout int64
+}
+
+const (
+	limitsFields    = 3
+	limitsUnlimited = "unlimited"
+)
+
+var (
+	limitsDelimiter = regexp.MustCompile("  +")
+)
+
+// NewLimits returns the current soft limits of the process.
+func (p Proc) NewLimits() (ProcLimits, error) {
+	f, err := os.Open(p.path("limits"))
+	if err != nil {
+		return ProcLimits{}, err
+	}
+	defer f.Close()
+
+	var (
+		l = ProcLimits{}
+		s = bufio.NewScanner(f)
+	)
+	for s.Scan() {
+		fields := limitsDelimiter.Split(s.Text(), limitsFields)
+		if len(fields) != limitsFields {
+			return ProcLimits{}, fmt.Errorf(
+				"couldn't parse %s line %s", f.Name(), s.Text())
+		}
+
+		switch fields[0] {
+		case "Max cpu time":
+			l.CPUTime, err = parseInt(fields[1])
+		case "Max file size":
+			l.FileSize, err = parseInt(fields[1])
+		case "Max data size":
+			l.DataSize, err = parseInt(fields[1])
+		case "Max stack size":
+			l.StackSize, err = parseInt(fields[1])
+		case "Max core file size":
+			l.CoreFileSize, err = parseInt(fields[1])
+		case "Max resident set":
+			l.ResidentSet, err = parseInt(fields[1])
+		case "Max processes":
+			l.Processes, err = parseInt(fields[1])
+		case "Max open files":
+			l.OpenFiles, err = parseInt(fields[1])
+		case "Max locked memory":
+			l.LockedMemory, err = parseInt(fields[1])
+		case "Max address space":
+			l.AddressSpace, err = parseInt(fields[1])
+		case "Max file locks":
+			l.FileLocks, err = parseInt(fields[1])
+		case "Max pending signals":
+			l.PendingSignals, err = parseInt(fields[1])
+		case "Max msgqueue size":
+			l.MsqqueueSize, err = parseInt(fields[1])
+		case "Max nice priority":
+			l.NicePriority, err = parseInt(fields[1])
+		case "Max realtime priority":
+			l.RealtimePriority, err = parseInt(fields[1])
+		case "Max realtime timeout":
+			l.RealtimeTimeout, err = parseInt(fields[1])
+		}
+		if err != nil {
+			return ProcLimits{}, err
+		}
+	}
+
+	return l, s.Err()
+}
+
+func parseInt(s string) (int64, error) {
+	if s == limitsUnlimited {
+		return -1, nil
+	}
+	i, err := strconv.ParseInt(s, 10, 64)
+	if err != nil {
+		return 0, fmt.Errorf("couldn't parse value %s: %s", s, err)
+	}
+	return i, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/proc_ns.go b/vendor/github.com/prometheus/procfs/proc_ns.go
new file mode 100644
index 0000000000..d06c26ebad
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/proc_ns.go
@@ -0,0 +1,68 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"fmt"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// Namespace represents a single namespace of a process.
+type Namespace struct {
+	Type  string // Namespace type.
+	Inode uint32 // Inode number of the namespace. If two processes are in the same namespace their inodes will match.
+}
+
+// Namespaces contains all of the namespaces that the process is contained in.
+type Namespaces map[string]Namespace
+
+// NewNamespaces reads from /proc/[pid/ns/* to get the namespaces of which the
+// process is a member.
+func (p Proc) NewNamespaces() (Namespaces, error) {
+	d, err := os.Open(p.path("ns"))
+	if err != nil {
+		return nil, err
+	}
+	defer d.Close()
+
+	names, err := d.Readdirnames(-1)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read contents of ns dir: %v", err)
+	}
+
+	ns := make(Namespaces, len(names))
+	for _, name := range names {
+		target, err := os.Readlink(p.path("ns", name))
+		if err != nil {
+			return nil, err
+		}
+
+		fields := strings.SplitN(target, ":", 2)
+		if len(fields) != 2 {
+			return nil, fmt.Errorf("failed to parse namespace type and inode from '%v'", target)
+		}
+
+		typ := fields[0]
+		inode, err := strconv.ParseUint(strings.Trim(fields[1], "[]"), 10, 32)
+		if err != nil {
+			return nil, fmt.Errorf("failed to parse inode from '%v': %v", fields[1], err)
+		}
+
+		ns[name] = Namespace{typ, uint32(inode)}
+	}
+
+	return ns, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/proc_stat.go b/vendor/github.com/prometheus/procfs/proc_stat.go
new file mode 100644
index 0000000000..3cf2a9f18f
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/proc_stat.go
@@ -0,0 +1,188 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bytes"
+	"fmt"
+	"io/ioutil"
+	"os"
+)
+
+// Originally, this USER_HZ value was dynamically retrieved via a sysconf call
+// which required cgo. However, that caused a lot of problems regarding
+// cross-compilation. Alternatives such as running a binary to determine the
+// value, or trying to derive it in some other way were all problematic.  After
+// much research it was determined that USER_HZ is actually hardcoded to 100 on
+// all Go-supported platforms as of the time of this writing. This is why we
+// decided to hardcode it here as well. It is not impossible that there could
+// be systems with exceptions, but they should be very exotic edge cases, and
+// in that case, the worst outcome will be two misreported metrics.
+//
+// See also the following discussions:
+//
+// - https://github.com/prometheus/node_exporter/issues/52
+// - https://github.com/prometheus/procfs/pull/2
+// - http://stackoverflow.com/questions/17410841/how-does-user-hz-solve-the-jiffy-scaling-issue
+const userHZ = 100
+
+// ProcStat provides status information about the process,
+// read from /proc/[pid]/stat.
+type ProcStat struct {
+	// The process ID.
+	PID int
+	// The filename of the executable.
+	Comm string
+	// The process state.
+	State string
+	// The PID of the parent of this process.
+	PPID int
+	// The process group ID of the process.
+	PGRP int
+	// The session ID of the process.
+	Session int
+	// The controlling terminal of the process.
+	TTY int
+	// The ID of the foreground process group of the controlling terminal of
+	// the process.
+	TPGID int
+	// The kernel flags word of the process.
+	Flags uint
+	// The number of minor faults the process has made which have not required
+	// loading a memory page from disk.
+	MinFlt uint
+	// The number of minor faults that the process's waited-for children have
+	// made.
+	CMinFlt uint
+	// The number of major faults the process has made which have required
+	// loading a memory page from disk.
+	MajFlt uint
+	// The number of major faults that the process's waited-for children have
+	// made.
+	CMajFlt uint
+	// Amount of time that this process has been scheduled in user mode,
+	// measured in clock ticks.
+	UTime uint
+	// Amount of time that this process has been scheduled in kernel mode,
+	// measured in clock ticks.
+	STime uint
+	// Amount of time that this process's waited-for children have been
+	// scheduled in user mode, measured in clock ticks.
+	CUTime uint
+	// Amount of time that this process's waited-for children have been
+	// scheduled in kernel mode, measured in clock ticks.
+	CSTime uint
+	// For processes running a real-time scheduling policy, this is the negated
+	// scheduling priority, minus one.
+	Priority int
+	// The nice value, a value in the range 19 (low priority) to -20 (high
+	// priority).
+	Nice int
+	// Number of threads in this process.
+	NumThreads int
+	// The time the process started after system boot, the value is expressed
+	// in clock ticks.
+	Starttime uint64
+	// Virtual memory size in bytes.
+	VSize int
+	// Resident set size in pages.
+	RSS int
+
+	fs FS
+}
+
+// NewStat returns the current status information of the process.
+func (p Proc) NewStat() (ProcStat, error) {
+	f, err := os.Open(p.path("stat"))
+	if err != nil {
+		return ProcStat{}, err
+	}
+	defer f.Close()
+
+	data, err := ioutil.ReadAll(f)
+	if err != nil {
+		return ProcStat{}, err
+	}
+
+	var (
+		ignore int
+
+		s = ProcStat{PID: p.PID, fs: p.fs}
+		l = bytes.Index(data, []byte("("))
+		r = bytes.LastIndex(data, []byte(")"))
+	)
+
+	if l < 0 || r < 0 {
+		return ProcStat{}, fmt.Errorf(
+			"unexpected format, couldn't extract comm: %s",
+			data,
+		)
+	}
+
+	s.Comm = string(data[l+1 : r])
+	_, err = fmt.Fscan(
+		bytes.NewBuffer(data[r+2:]),
+		&s.State,
+		&s.PPID,
+		&s.PGRP,
+		&s.Session,
+		&s.TTY,
+		&s.TPGID,
+		&s.Flags,
+		&s.MinFlt,
+		&s.CMinFlt,
+		&s.MajFlt,
+		&s.CMajFlt,
+		&s.UTime,
+		&s.STime,
+		&s.CUTime,
+		&s.CSTime,
+		&s.Priority,
+		&s.Nice,
+		&s.NumThreads,
+		&ignore,
+		&s.Starttime,
+		&s.VSize,
+		&s.RSS,
+	)
+	if err != nil {
+		return ProcStat{}, err
+	}
+
+	return s, nil
+}
+
+// VirtualMemory returns the virtual memory size in bytes.
+func (s ProcStat) VirtualMemory() int {
+	return s.VSize
+}
+
+// ResidentMemory returns the resident memory size in bytes.
+func (s ProcStat) ResidentMemory() int {
+	return s.RSS * os.Getpagesize()
+}
+
+// StartTime returns the unix timestamp of the process in seconds.
+func (s ProcStat) StartTime() (float64, error) {
+	stat, err := s.fs.NewStat()
+	if err != nil {
+		return 0, err
+	}
+	return float64(stat.BootTime) + (float64(s.Starttime) / userHZ), nil
+}
+
+// CPUTime returns the total CPU user and system time in seconds.
+func (s ProcStat) CPUTime() float64 {
+	return float64(s.UTime+s.STime) / userHZ
+}
diff --git a/vendor/github.com/prometheus/procfs/stat.go b/vendor/github.com/prometheus/procfs/stat.go
new file mode 100644
index 0000000000..61eb6b0e3c
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/stat.go
@@ -0,0 +1,232 @@
+// Copyright 2018 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// CPUStat shows how much time the cpu spend in various stages.
+type CPUStat struct {
+	User      float64
+	Nice      float64
+	System    float64
+	Idle      float64
+	Iowait    float64
+	IRQ       float64
+	SoftIRQ   float64
+	Steal     float64
+	Guest     float64
+	GuestNice float64
+}
+
+// SoftIRQStat represent the softirq statistics as exported in the procfs stat file.
+// A nice introduction can be found at https://0xax.gitbooks.io/linux-insides/content/interrupts/interrupts-9.html
+// It is possible to get per-cpu stats by reading /proc/softirqs
+type SoftIRQStat struct {
+	Hi          uint64
+	Timer       uint64
+	NetTx       uint64
+	NetRx       uint64
+	Block       uint64
+	BlockIoPoll uint64
+	Tasklet     uint64
+	Sched       uint64
+	Hrtimer     uint64
+	Rcu         uint64
+}
+
+// Stat represents kernel/system statistics.
+type Stat struct {
+	// Boot time in seconds since the Epoch.
+	BootTime uint64
+	// Summed up cpu statistics.
+	CPUTotal CPUStat
+	// Per-CPU statistics.
+	CPU []CPUStat
+	// Number of times interrupts were handled, which contains numbered and unnumbered IRQs.
+	IRQTotal uint64
+	// Number of times a numbered IRQ was triggered.
+	IRQ []uint64
+	// Number of times a context switch happened.
+	ContextSwitches uint64
+	// Number of times a process was created.
+	ProcessCreated uint64
+	// Number of processes currently running.
+	ProcessesRunning uint64
+	// Number of processes currently blocked (waiting for IO).
+	ProcessesBlocked uint64
+	// Number of times a softirq was scheduled.
+	SoftIRQTotal uint64
+	// Detailed softirq statistics.
+	SoftIRQ SoftIRQStat
+}
+
+// NewStat returns kernel/system statistics read from /proc/stat.
+func NewStat() (Stat, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return Stat{}, err
+	}
+
+	return fs.NewStat()
+}
+
+// Parse a cpu statistics line and returns the CPUStat struct plus the cpu id (or -1 for the overall sum).
+func parseCPUStat(line string) (CPUStat, int64, error) {
+	cpuStat := CPUStat{}
+	var cpu string
+
+	count, err := fmt.Sscanf(line, "%s %f %f %f %f %f %f %f %f %f %f",
+		&cpu,
+		&cpuStat.User, &cpuStat.Nice, &cpuStat.System, &cpuStat.Idle,
+		&cpuStat.Iowait, &cpuStat.IRQ, &cpuStat.SoftIRQ, &cpuStat.Steal,
+		&cpuStat.Guest, &cpuStat.GuestNice)
+
+	if err != nil && err != io.EOF {
+		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu): %s", line, err)
+	}
+	if count == 0 {
+		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu): 0 elements parsed", line)
+	}
+
+	cpuStat.User /= userHZ
+	cpuStat.Nice /= userHZ
+	cpuStat.System /= userHZ
+	cpuStat.Idle /= userHZ
+	cpuStat.Iowait /= userHZ
+	cpuStat.IRQ /= userHZ
+	cpuStat.SoftIRQ /= userHZ
+	cpuStat.Steal /= userHZ
+	cpuStat.Guest /= userHZ
+	cpuStat.GuestNice /= userHZ
+
+	if cpu == "cpu" {
+		return cpuStat, -1, nil
+	}
+
+	cpuID, err := strconv.ParseInt(cpu[3:], 10, 64)
+	if err != nil {
+		return CPUStat{}, -1, fmt.Errorf("couldn't parse %s (cpu/cpuid): %s", line, err)
+	}
+
+	return cpuStat, cpuID, nil
+}
+
+// Parse a softirq line.
+func parseSoftIRQStat(line string) (SoftIRQStat, uint64, error) {
+	softIRQStat := SoftIRQStat{}
+	var total uint64
+	var prefix string
+
+	_, err := fmt.Sscanf(line, "%s %d %d %d %d %d %d %d %d %d %d %d",
+		&prefix, &total,
+		&softIRQStat.Hi, &softIRQStat.Timer, &softIRQStat.NetTx, &softIRQStat.NetRx,
+		&softIRQStat.Block, &softIRQStat.BlockIoPoll,
+		&softIRQStat.Tasklet, &softIRQStat.Sched,
+		&softIRQStat.Hrtimer, &softIRQStat.Rcu)
+
+	if err != nil {
+		return SoftIRQStat{}, 0, fmt.Errorf("couldn't parse %s (softirq): %s", line, err)
+	}
+
+	return softIRQStat, total, nil
+}
+
+// NewStat returns an information about current kernel/system statistics.
+func (fs FS) NewStat() (Stat, error) {
+	// See https://www.kernel.org/doc/Documentation/filesystems/proc.txt
+
+	f, err := os.Open(fs.Path("stat"))
+	if err != nil {
+		return Stat{}, err
+	}
+	defer f.Close()
+
+	stat := Stat{}
+
+	scanner := bufio.NewScanner(f)
+	for scanner.Scan() {
+		line := scanner.Text()
+		parts := strings.Fields(scanner.Text())
+		// require at least <key> <value>
+		if len(parts) < 2 {
+			continue
+		}
+		switch {
+		case parts[0] == "btime":
+			if stat.BootTime, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (btime): %s", parts[1], err)
+			}
+		case parts[0] == "intr":
+			if stat.IRQTotal, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (intr): %s", parts[1], err)
+			}
+			numberedIRQs := parts[2:]
+			stat.IRQ = make([]uint64, len(numberedIRQs))
+			for i, count := range numberedIRQs {
+				if stat.IRQ[i], err = strconv.ParseUint(count, 10, 64); err != nil {
+					return Stat{}, fmt.Errorf("couldn't parse %s (intr%d): %s", count, i, err)
+				}
+			}
+		case parts[0] == "ctxt":
+			if stat.ContextSwitches, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (ctxt): %s", parts[1], err)
+			}
+		case parts[0] == "processes":
+			if stat.ProcessCreated, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (processes): %s", parts[1], err)
+			}
+		case parts[0] == "procs_running":
+			if stat.ProcessesRunning, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (procs_running): %s", parts[1], err)
+			}
+		case parts[0] == "procs_blocked":
+			if stat.ProcessesBlocked, err = strconv.ParseUint(parts[1], 10, 64); err != nil {
+				return Stat{}, fmt.Errorf("couldn't parse %s (procs_blocked): %s", parts[1], err)
+			}
+		case parts[0] == "softirq":
+			softIRQStats, total, err := parseSoftIRQStat(line)
+			if err != nil {
+				return Stat{}, err
+			}
+			stat.SoftIRQTotal = total
+			stat.SoftIRQ = softIRQStats
+		case strings.HasPrefix(parts[0], "cpu"):
+			cpuStat, cpuID, err := parseCPUStat(line)
+			if err != nil {
+				return Stat{}, err
+			}
+			if cpuID == -1 {
+				stat.CPUTotal = cpuStat
+			} else {
+				for int64(len(stat.CPU)) <= cpuID {
+					stat.CPU = append(stat.CPU, CPUStat{})
+				}
+				stat.CPU[cpuID] = cpuStat
+			}
+		}
+	}
+
+	if err := scanner.Err(); err != nil {
+		return Stat{}, fmt.Errorf("couldn't parse %s: %s", f.Name(), err)
+	}
+
+	return stat, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/xfrm.go b/vendor/github.com/prometheus/procfs/xfrm.go
new file mode 100644
index 0000000000..ffe9df50d6
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/xfrm.go
@@ -0,0 +1,187 @@
+// Copyright 2017 Prometheus Team
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package procfs
+
+import (
+	"bufio"
+	"fmt"
+	"os"
+	"strconv"
+	"strings"
+)
+
+// XfrmStat models the contents of /proc/net/xfrm_stat.
+type XfrmStat struct {
+	// All errors which are not matched by other
+	XfrmInError int
+	// No buffer is left
+	XfrmInBufferError int
+	// Header Error
+	XfrmInHdrError int
+	// No state found
+	// i.e. either inbound SPI, address, or IPSEC protocol at SA is wrong
+	XfrmInNoStates int
+	// Transformation protocol specific error
+	// e.g. SA Key is wrong
+	XfrmInStateProtoError int
+	// Transformation mode specific error
+	XfrmInStateModeError int
+	// Sequence error
+	// e.g. sequence number is out of window
+	XfrmInStateSeqError int
+	// State is expired
+	XfrmInStateExpired int
+	// State has mismatch option
+	// e.g. UDP encapsulation type is mismatched
+	XfrmInStateMismatch int
+	// State is invalid
+	XfrmInStateInvalid int
+	// No matching template for states
+	// e.g. Inbound SAs are correct but SP rule is wrong
+	XfrmInTmplMismatch int
+	// No policy is found for states
+	// e.g. Inbound SAs are correct but no SP is found
+	XfrmInNoPols int
+	// Policy discards
+	XfrmInPolBlock int
+	// Policy error
+	XfrmInPolError int
+	// All errors which are not matched by others
+	XfrmOutError int
+	// Bundle generation error
+	XfrmOutBundleGenError int
+	// Bundle check error
+	XfrmOutBundleCheckError int
+	// No state was found
+	XfrmOutNoStates int
+	// Transformation protocol specific error
+	XfrmOutStateProtoError int
+	// Transportation mode specific error
+	XfrmOutStateModeError int
+	// Sequence error
+	// i.e sequence number overflow
+	XfrmOutStateSeqError int
+	// State is expired
+	XfrmOutStateExpired int
+	// Policy discads
+	XfrmOutPolBlock int
+	// Policy is dead
+	XfrmOutPolDead int
+	// Policy Error
+	XfrmOutPolError     int
+	XfrmFwdHdrError     int
+	XfrmOutStateInvalid int
+	XfrmAcquireError    int
+}
+
+// NewXfrmStat reads the xfrm_stat statistics.
+func NewXfrmStat() (XfrmStat, error) {
+	fs, err := NewFS(DefaultMountPoint)
+	if err != nil {
+		return XfrmStat{}, err
+	}
+
+	return fs.NewXfrmStat()
+}
+
+// NewXfrmStat reads the xfrm_stat statistics from the 'proc' filesystem.
+func (fs FS) NewXfrmStat() (XfrmStat, error) {
+	file, err := os.Open(fs.Path("net/xfrm_stat"))
+	if err != nil {
+		return XfrmStat{}, err
+	}
+	defer file.Close()
+
+	var (
+		x = XfrmStat{}
+		s = bufio.NewScanner(file)
+	)
+
+	for s.Scan() {
+		fields := strings.Fields(s.Text())
+
+		if len(fields) != 2 {
+			return XfrmStat{}, fmt.Errorf(
+				"couldnt parse %s line %s", file.Name(), s.Text())
+		}
+
+		name := fields[0]
+		value, err := strconv.Atoi(fields[1])
+		if err != nil {
+			return XfrmStat{}, err
+		}
+
+		switch name {
+		case "XfrmInError":
+			x.XfrmInError = value
+		case "XfrmInBufferError":
+			x.XfrmInBufferError = value
+		case "XfrmInHdrError":
+			x.XfrmInHdrError = value
+		case "XfrmInNoStates":
+			x.XfrmInNoStates = value
+		case "XfrmInStateProtoError":
+			x.XfrmInStateProtoError = value
+		case "XfrmInStateModeError":
+			x.XfrmInStateModeError = value
+		case "XfrmInStateSeqError":
+			x.XfrmInStateSeqError = value
+		case "XfrmInStateExpired":
+			x.XfrmInStateExpired = value
+		case "XfrmInStateInvalid":
+			x.XfrmInStateInvalid = value
+		case "XfrmInTmplMismatch":
+			x.XfrmInTmplMismatch = value
+		case "XfrmInNoPols":
+			x.XfrmInNoPols = value
+		case "XfrmInPolBlock":
+			x.XfrmInPolBlock = value
+		case "XfrmInPolError":
+			x.XfrmInPolError = value
+		case "XfrmOutError":
+			x.XfrmOutError = value
+		case "XfrmInStateMismatch":
+			x.XfrmInStateMismatch = value
+		case "XfrmOutBundleGenError":
+			x.XfrmOutBundleGenError = value
+		case "XfrmOutBundleCheckError":
+			x.XfrmOutBundleCheckError = value
+		case "XfrmOutNoStates":
+			x.XfrmOutNoStates = value
+		case "XfrmOutStateProtoError":
+			x.XfrmOutStateProtoError = value
+		case "XfrmOutStateModeError":
+			x.XfrmOutStateModeError = value
+		case "XfrmOutStateSeqError":
+			x.XfrmOutStateSeqError = value
+		case "XfrmOutStateExpired":
+			x.XfrmOutStateExpired = value
+		case "XfrmOutPolBlock":
+			x.XfrmOutPolBlock = value
+		case "XfrmOutPolDead":
+			x.XfrmOutPolDead = value
+		case "XfrmOutPolError":
+			x.XfrmOutPolError = value
+		case "XfrmFwdHdrError":
+			x.XfrmFwdHdrError = value
+		case "XfrmOutStateInvalid":
+			x.XfrmOutStateInvalid = value
+		case "XfrmAcquireError":
+			x.XfrmAcquireError = value
+		}
+
+	}
+
+	return x, s.Err()
+}
diff --git a/vendor/github.com/prometheus/procfs/xfs/parse.go b/vendor/github.com/prometheus/procfs/xfs/parse.go
new file mode 100644
index 0000000000..2bc0ef3427
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/xfs/parse.go
@@ -0,0 +1,330 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package xfs
+
+import (
+	"bufio"
+	"fmt"
+	"io"
+	"strings"
+
+	"github.com/prometheus/procfs/internal/util"
+)
+
+// ParseStats parses a Stats from an input io.Reader, using the format
+// found in /proc/fs/xfs/stat.
+func ParseStats(r io.Reader) (*Stats, error) {
+	const (
+		// Fields parsed into stats structures.
+		fieldExtentAlloc = "extent_alloc"
+		fieldAbt         = "abt"
+		fieldBlkMap      = "blk_map"
+		fieldBmbt        = "bmbt"
+		fieldDir         = "dir"
+		fieldTrans       = "trans"
+		fieldIg          = "ig"
+		fieldLog         = "log"
+		fieldRw          = "rw"
+		fieldAttr        = "attr"
+		fieldIcluster    = "icluster"
+		fieldVnodes      = "vnodes"
+		fieldBuf         = "buf"
+		fieldXpc         = "xpc"
+
+		// Unimplemented at this time due to lack of documentation.
+		fieldPushAil = "push_ail"
+		fieldXstrat  = "xstrat"
+		fieldAbtb2   = "abtb2"
+		fieldAbtc2   = "abtc2"
+		fieldBmbt2   = "bmbt2"
+		fieldIbt2    = "ibt2"
+		fieldFibt2   = "fibt2"
+		fieldQm      = "qm"
+		fieldDebug   = "debug"
+	)
+
+	var xfss Stats
+
+	s := bufio.NewScanner(r)
+	for s.Scan() {
+		// Expect at least a string label and a single integer value, ex:
+		//   - abt 0
+		//   - rw 1 2
+		ss := strings.Fields(string(s.Bytes()))
+		if len(ss) < 2 {
+			continue
+		}
+		label := ss[0]
+
+		// Extended precision counters are uint64 values.
+		if label == fieldXpc {
+			us, err := util.ParseUint64s(ss[1:])
+			if err != nil {
+				return nil, err
+			}
+
+			xfss.ExtendedPrecision, err = extendedPrecisionStats(us)
+			if err != nil {
+				return nil, err
+			}
+
+			continue
+		}
+
+		// All other counters are uint32 values.
+		us, err := util.ParseUint32s(ss[1:])
+		if err != nil {
+			return nil, err
+		}
+
+		switch label {
+		case fieldExtentAlloc:
+			xfss.ExtentAllocation, err = extentAllocationStats(us)
+		case fieldAbt:
+			xfss.AllocationBTree, err = btreeStats(us)
+		case fieldBlkMap:
+			xfss.BlockMapping, err = blockMappingStats(us)
+		case fieldBmbt:
+			xfss.BlockMapBTree, err = btreeStats(us)
+		case fieldDir:
+			xfss.DirectoryOperation, err = directoryOperationStats(us)
+		case fieldTrans:
+			xfss.Transaction, err = transactionStats(us)
+		case fieldIg:
+			xfss.InodeOperation, err = inodeOperationStats(us)
+		case fieldLog:
+			xfss.LogOperation, err = logOperationStats(us)
+		case fieldRw:
+			xfss.ReadWrite, err = readWriteStats(us)
+		case fieldAttr:
+			xfss.AttributeOperation, err = attributeOperationStats(us)
+		case fieldIcluster:
+			xfss.InodeClustering, err = inodeClusteringStats(us)
+		case fieldVnodes:
+			xfss.Vnode, err = vnodeStats(us)
+		case fieldBuf:
+			xfss.Buffer, err = bufferStats(us)
+		}
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	return &xfss, s.Err()
+}
+
+// extentAllocationStats builds an ExtentAllocationStats from a slice of uint32s.
+func extentAllocationStats(us []uint32) (ExtentAllocationStats, error) {
+	if l := len(us); l != 4 {
+		return ExtentAllocationStats{}, fmt.Errorf("incorrect number of values for XFS extent allocation stats: %d", l)
+	}
+
+	return ExtentAllocationStats{
+		ExtentsAllocated: us[0],
+		BlocksAllocated:  us[1],
+		ExtentsFreed:     us[2],
+		BlocksFreed:      us[3],
+	}, nil
+}
+
+// btreeStats builds a BTreeStats from a slice of uint32s.
+func btreeStats(us []uint32) (BTreeStats, error) {
+	if l := len(us); l != 4 {
+		return BTreeStats{}, fmt.Errorf("incorrect number of values for XFS btree stats: %d", l)
+	}
+
+	return BTreeStats{
+		Lookups:         us[0],
+		Compares:        us[1],
+		RecordsInserted: us[2],
+		RecordsDeleted:  us[3],
+	}, nil
+}
+
+// BlockMappingStat builds a BlockMappingStats from a slice of uint32s.
+func blockMappingStats(us []uint32) (BlockMappingStats, error) {
+	if l := len(us); l != 7 {
+		return BlockMappingStats{}, fmt.Errorf("incorrect number of values for XFS block mapping stats: %d", l)
+	}
+
+	return BlockMappingStats{
+		Reads:                us[0],
+		Writes:               us[1],
+		Unmaps:               us[2],
+		ExtentListInsertions: us[3],
+		ExtentListDeletions:  us[4],
+		ExtentListLookups:    us[5],
+		ExtentListCompares:   us[6],
+	}, nil
+}
+
+// DirectoryOperationStats builds a DirectoryOperationStats from a slice of uint32s.
+func directoryOperationStats(us []uint32) (DirectoryOperationStats, error) {
+	if l := len(us); l != 4 {
+		return DirectoryOperationStats{}, fmt.Errorf("incorrect number of values for XFS directory operation stats: %d", l)
+	}
+
+	return DirectoryOperationStats{
+		Lookups:  us[0],
+		Creates:  us[1],
+		Removes:  us[2],
+		Getdents: us[3],
+	}, nil
+}
+
+// TransactionStats builds a TransactionStats from a slice of uint32s.
+func transactionStats(us []uint32) (TransactionStats, error) {
+	if l := len(us); l != 3 {
+		return TransactionStats{}, fmt.Errorf("incorrect number of values for XFS transaction stats: %d", l)
+	}
+
+	return TransactionStats{
+		Sync:  us[0],
+		Async: us[1],
+		Empty: us[2],
+	}, nil
+}
+
+// InodeOperationStats builds an InodeOperationStats from a slice of uint32s.
+func inodeOperationStats(us []uint32) (InodeOperationStats, error) {
+	if l := len(us); l != 7 {
+		return InodeOperationStats{}, fmt.Errorf("incorrect number of values for XFS inode operation stats: %d", l)
+	}
+
+	return InodeOperationStats{
+		Attempts:        us[0],
+		Found:           us[1],
+		Recycle:         us[2],
+		Missed:          us[3],
+		Duplicate:       us[4],
+		Reclaims:        us[5],
+		AttributeChange: us[6],
+	}, nil
+}
+
+// LogOperationStats builds a LogOperationStats from a slice of uint32s.
+func logOperationStats(us []uint32) (LogOperationStats, error) {
+	if l := len(us); l != 5 {
+		return LogOperationStats{}, fmt.Errorf("incorrect number of values for XFS log operation stats: %d", l)
+	}
+
+	return LogOperationStats{
+		Writes:            us[0],
+		Blocks:            us[1],
+		NoInternalBuffers: us[2],
+		Force:             us[3],
+		ForceSleep:        us[4],
+	}, nil
+}
+
+// ReadWriteStats builds a ReadWriteStats from a slice of uint32s.
+func readWriteStats(us []uint32) (ReadWriteStats, error) {
+	if l := len(us); l != 2 {
+		return ReadWriteStats{}, fmt.Errorf("incorrect number of values for XFS read write stats: %d", l)
+	}
+
+	return ReadWriteStats{
+		Read:  us[0],
+		Write: us[1],
+	}, nil
+}
+
+// AttributeOperationStats builds an AttributeOperationStats from a slice of uint32s.
+func attributeOperationStats(us []uint32) (AttributeOperationStats, error) {
+	if l := len(us); l != 4 {
+		return AttributeOperationStats{}, fmt.Errorf("incorrect number of values for XFS attribute operation stats: %d", l)
+	}
+
+	return AttributeOperationStats{
+		Get:    us[0],
+		Set:    us[1],
+		Remove: us[2],
+		List:   us[3],
+	}, nil
+}
+
+// InodeClusteringStats builds an InodeClusteringStats from a slice of uint32s.
+func inodeClusteringStats(us []uint32) (InodeClusteringStats, error) {
+	if l := len(us); l != 3 {
+		return InodeClusteringStats{}, fmt.Errorf("incorrect number of values for XFS inode clustering stats: %d", l)
+	}
+
+	return InodeClusteringStats{
+		Iflush:     us[0],
+		Flush:      us[1],
+		FlushInode: us[2],
+	}, nil
+}
+
+// VnodeStats builds a VnodeStats from a slice of uint32s.
+func vnodeStats(us []uint32) (VnodeStats, error) {
+	// The attribute "Free" appears to not be available on older XFS
+	// stats versions.  Therefore, 7 or 8 elements may appear in
+	// this slice.
+	l := len(us)
+	if l != 7 && l != 8 {
+		return VnodeStats{}, fmt.Errorf("incorrect number of values for XFS vnode stats: %d", l)
+	}
+
+	s := VnodeStats{
+		Active:   us[0],
+		Allocate: us[1],
+		Get:      us[2],
+		Hold:     us[3],
+		Release:  us[4],
+		Reclaim:  us[5],
+		Remove:   us[6],
+	}
+
+	// Skip adding free, unless it is present. The zero value will
+	// be used in place of an actual count.
+	if l == 7 {
+		return s, nil
+	}
+
+	s.Free = us[7]
+	return s, nil
+}
+
+// BufferStats builds a BufferStats from a slice of uint32s.
+func bufferStats(us []uint32) (BufferStats, error) {
+	if l := len(us); l != 9 {
+		return BufferStats{}, fmt.Errorf("incorrect number of values for XFS buffer stats: %d", l)
+	}
+
+	return BufferStats{
+		Get:             us[0],
+		Create:          us[1],
+		GetLocked:       us[2],
+		GetLockedWaited: us[3],
+		BusyLocked:      us[4],
+		MissLocked:      us[5],
+		PageRetries:     us[6],
+		PageFound:       us[7],
+		GetRead:         us[8],
+	}, nil
+}
+
+// ExtendedPrecisionStats builds an ExtendedPrecisionStats from a slice of uint32s.
+func extendedPrecisionStats(us []uint64) (ExtendedPrecisionStats, error) {
+	if l := len(us); l != 3 {
+		return ExtendedPrecisionStats{}, fmt.Errorf("incorrect number of values for XFS extended precision stats: %d", l)
+	}
+
+	return ExtendedPrecisionStats{
+		FlushBytes: us[0],
+		WriteBytes: us[1],
+		ReadBytes:  us[2],
+	}, nil
+}
diff --git a/vendor/github.com/prometheus/procfs/xfs/xfs.go b/vendor/github.com/prometheus/procfs/xfs/xfs.go
new file mode 100644
index 0000000000..d86794b7ca
--- /dev/null
+++ b/vendor/github.com/prometheus/procfs/xfs/xfs.go
@@ -0,0 +1,163 @@
+// Copyright 2017 The Prometheus Authors
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package xfs provides access to statistics exposed by the XFS filesystem.
+package xfs
+
+// Stats contains XFS filesystem runtime statistics, parsed from
+// /proc/fs/xfs/stat.
+//
+// The names and meanings of each statistic were taken from
+// http://xfs.org/index.php/Runtime_Stats and xfs_stats.h in the Linux
+// kernel source. Most counters are uint32s (same data types used in
+// xfs_stats.h), but some of the "extended precision stats" are uint64s.
+type Stats struct {
+	// The name of the filesystem used to source these statistics.
+	// If empty, this indicates aggregated statistics for all XFS
+	// filesystems on the host.
+	Name string
+
+	ExtentAllocation   ExtentAllocationStats
+	AllocationBTree    BTreeStats
+	BlockMapping       BlockMappingStats
+	BlockMapBTree      BTreeStats
+	DirectoryOperation DirectoryOperationStats
+	Transaction        TransactionStats
+	InodeOperation     InodeOperationStats
+	LogOperation       LogOperationStats
+	ReadWrite          ReadWriteStats
+	AttributeOperation AttributeOperationStats
+	InodeClustering    InodeClusteringStats
+	Vnode              VnodeStats
+	Buffer             BufferStats
+	ExtendedPrecision  ExtendedPrecisionStats
+}
+
+// ExtentAllocationStats contains statistics regarding XFS extent allocations.
+type ExtentAllocationStats struct {
+	ExtentsAllocated uint32
+	BlocksAllocated  uint32
+	ExtentsFreed     uint32
+	BlocksFreed      uint32
+}
+
+// BTreeStats contains statistics regarding an XFS internal B-tree.
+type BTreeStats struct {
+	Lookups         uint32
+	Compares        uint32
+	RecordsInserted uint32
+	RecordsDeleted  uint32
+}
+
+// BlockMappingStats contains statistics regarding XFS block maps.
+type BlockMappingStats struct {
+	Reads                uint32
+	Writes               uint32
+	Unmaps               uint32
+	ExtentListInsertions uint32
+	ExtentListDeletions  uint32
+	ExtentListLookups    uint32
+	ExtentListCompares   uint32
+}
+
+// DirectoryOperationStats contains statistics regarding XFS directory entries.
+type DirectoryOperationStats struct {
+	Lookups  uint32
+	Creates  uint32
+	Removes  uint32
+	Getdents uint32
+}
+
+// TransactionStats contains statistics regarding XFS metadata transactions.
+type TransactionStats struct {
+	Sync  uint32
+	Async uint32
+	Empty uint32
+}
+
+// InodeOperationStats contains statistics regarding XFS inode operations.
+type InodeOperationStats struct {
+	Attempts        uint32
+	Found           uint32
+	Recycle         uint32
+	Missed          uint32
+	Duplicate       uint32
+	Reclaims        uint32
+	AttributeChange uint32
+}
+
+// LogOperationStats contains statistics regarding the XFS log buffer.
+type LogOperationStats struct {
+	Writes            uint32
+	Blocks            uint32
+	NoInternalBuffers uint32
+	Force             uint32
+	ForceSleep        uint32
+}
+
+// ReadWriteStats contains statistics regarding the number of read and write
+// system calls for XFS filesystems.
+type ReadWriteStats struct {
+	Read  uint32
+	Write uint32
+}
+
+// AttributeOperationStats contains statistics regarding manipulation of
+// XFS extended file attributes.
+type AttributeOperationStats struct {
+	Get    uint32
+	Set    uint32
+	Remove uint32
+	List   uint32
+}
+
+// InodeClusteringStats contains statistics regarding XFS inode clustering
+// operations.
+type InodeClusteringStats struct {
+	Iflush     uint32
+	Flush      uint32
+	FlushInode uint32
+}
+
+// VnodeStats contains statistics regarding XFS vnode operations.
+type VnodeStats struct {
+	Active   uint32
+	Allocate uint32
+	Get      uint32
+	Hold     uint32
+	Release  uint32
+	Reclaim  uint32
+	Remove   uint32
+	Free     uint32
+}
+
+// BufferStats contains statistics regarding XFS read/write I/O buffers.
+type BufferStats struct {
+	Get             uint32
+	Create          uint32
+	GetLocked       uint32
+	GetLockedWaited uint32
+	BusyLocked      uint32
+	MissLocked      uint32
+	PageRetries     uint32
+	PageFound       uint32
+	GetRead         uint32
+}
+
+// ExtendedPrecisionStats contains high precision counters used to track the
+// total number of bytes read, written, or flushed, during XFS operations.
+type ExtendedPrecisionStats struct {
+	FlushBytes uint64
+	WriteBytes uint64
+	ReadBytes  uint64
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/LICENSE b/vendor/github.com/samuel/go-zookeeper/LICENSE
new file mode 100644
index 0000000000..bc00498c52
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/LICENSE
@@ -0,0 +1,25 @@
+Copyright (c) 2013, Samuel Stauffer <samuel@descolada.com>
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+* Redistributions of source code must retain the above copyright
+  notice, this list of conditions and the following disclaimer.
+* Redistributions in binary form must reproduce the above copyright
+  notice, this list of conditions and the following disclaimer in the
+  documentation and/or other materials provided with the distribution.
+* Neither the name of the author nor the
+  names of its contributors may be used to endorse or promote products
+  derived from this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL <COPYRIGHT HOLDER> BE LIABLE FOR ANY
+DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/conn.go b/vendor/github.com/samuel/go-zookeeper/zk/conn.go
new file mode 100644
index 0000000000..f79a51b355
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/conn.go
@@ -0,0 +1,1228 @@
+// Package zk is a native Go client library for the ZooKeeper orchestration service.
+package zk
+
+/*
+TODO:
+* make sure a ping response comes back in a reasonable time
+
+Possible watcher events:
+* Event{Type: EventNotWatching, State: StateDisconnected, Path: path, Err: err}
+*/
+
+import (
+	"crypto/rand"
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"io"
+	"net"
+	"strconv"
+	"strings"
+	"sync"
+	"sync/atomic"
+	"time"
+)
+
+// ErrNoServer indicates that an operation cannot be completed
+// because attempts to connect to all servers in the list failed.
+var ErrNoServer = errors.New("zk: could not connect to a server")
+
+// ErrInvalidPath indicates that an operation was being attempted on
+// an invalid path. (e.g. empty path)
+var ErrInvalidPath = errors.New("zk: invalid path")
+
+// DefaultLogger uses the stdlib log package for logging.
+var DefaultLogger Logger = defaultLogger{}
+
+const (
+	bufferSize      = 1536 * 1024
+	eventChanSize   = 6
+	sendChanSize    = 16
+	protectedPrefix = "_c_"
+)
+
+type watchType int
+
+const (
+	watchTypeData = iota
+	watchTypeExist
+	watchTypeChild
+)
+
+type watchPathType struct {
+	path  string
+	wType watchType
+}
+
+type Dialer func(network, address string, timeout time.Duration) (net.Conn, error)
+
+// Logger is an interface that can be implemented to provide custom log output.
+type Logger interface {
+	Printf(string, ...interface{})
+}
+
+type authCreds struct {
+	scheme string
+	auth   []byte
+}
+
+type Conn struct {
+	lastZxid         int64
+	sessionID        int64
+	state            State // must be 32-bit aligned
+	xid              uint32
+	sessionTimeoutMs int32 // session timeout in milliseconds
+	passwd           []byte
+
+	dialer         Dialer
+	hostProvider   HostProvider
+	serverMu       sync.Mutex // protects server
+	server         string     // remember the address/port of the current server
+	conn           net.Conn
+	eventChan      chan Event
+	eventCallback  EventCallback // may be nil
+	shouldQuit     chan struct{}
+	pingInterval   time.Duration
+	recvTimeout    time.Duration
+	connectTimeout time.Duration
+	maxBufferSize  int
+
+	creds   []authCreds
+	credsMu sync.Mutex // protects server
+
+	sendChan     chan *request
+	requests     map[int32]*request // Xid -> pending request
+	requestsLock sync.Mutex
+	watchers     map[watchPathType][]chan Event
+	watchersLock sync.Mutex
+	closeChan    chan struct{} // channel to tell send loop stop
+
+	// Debug (used by unit tests)
+	reconnectLatch   chan struct{}
+	setWatchLimit    int
+	setWatchCallback func([]*setWatchesRequest)
+	// Debug (for recurring re-auth hang)
+	debugCloseRecvLoop bool
+	debugReauthDone    chan struct{}
+
+	logger  Logger
+	logInfo bool // true if information messages are logged; false if only errors are logged
+
+	buf []byte
+}
+
+// connOption represents a connection option.
+type connOption func(c *Conn)
+
+type request struct {
+	xid        int32
+	opcode     int32
+	pkt        interface{}
+	recvStruct interface{}
+	recvChan   chan response
+
+	// Because sending and receiving happen in separate go routines, there's
+	// a possible race condition when creating watches from outside the read
+	// loop. We must ensure that a watcher gets added to the list synchronously
+	// with the response from the server on any request that creates a watch.
+	// In order to not hard code the watch logic for each opcode in the recv
+	// loop the caller can use recvFunc to insert some synchronously code
+	// after a response.
+	recvFunc func(*request, *responseHeader, error)
+}
+
+type response struct {
+	zxid int64
+	err  error
+}
+
+type Event struct {
+	Type   EventType
+	State  State
+	Path   string // For non-session events, the path of the watched node.
+	Err    error
+	Server string // For connection events
+}
+
+// HostProvider is used to represent a set of hosts a ZooKeeper client should connect to.
+// It is an analog of the Java equivalent:
+// http://svn.apache.org/viewvc/zookeeper/trunk/src/java/main/org/apache/zookeeper/client/HostProvider.java?view=markup
+type HostProvider interface {
+	// Init is called first, with the servers specified in the connection string.
+	Init(servers []string) error
+	// Len returns the number of servers.
+	Len() int
+	// Next returns the next server to connect to. retryStart will be true if we've looped through
+	// all known servers without Connected() being called.
+	Next() (server string, retryStart bool)
+	// Notify the HostProvider of a successful connection.
+	Connected()
+}
+
+// ConnectWithDialer establishes a new connection to a pool of zookeeper servers
+// using a custom Dialer. See Connect for further information about session timeout.
+// This method is deprecated and provided for compatibility: use the WithDialer option instead.
+func ConnectWithDialer(servers []string, sessionTimeout time.Duration, dialer Dialer) (*Conn, <-chan Event, error) {
+	return Connect(servers, sessionTimeout, WithDialer(dialer))
+}
+
+// Connect establishes a new connection to a pool of zookeeper
+// servers. The provided session timeout sets the amount of time for which
+// a session is considered valid after losing connection to a server. Within
+// the session timeout it's possible to reestablish a connection to a different
+// server and keep the same session. This is means any ephemeral nodes and
+// watches are maintained.
+func Connect(servers []string, sessionTimeout time.Duration, options ...connOption) (*Conn, <-chan Event, error) {
+	if len(servers) == 0 {
+		return nil, nil, errors.New("zk: server list must not be empty")
+	}
+
+	srvs := make([]string, len(servers))
+
+	for i, addr := range servers {
+		if strings.Contains(addr, ":") {
+			srvs[i] = addr
+		} else {
+			srvs[i] = addr + ":" + strconv.Itoa(DefaultPort)
+		}
+	}
+
+	// Randomize the order of the servers to avoid creating hotspots
+	stringShuffle(srvs)
+
+	ec := make(chan Event, eventChanSize)
+	conn := &Conn{
+		dialer:         net.DialTimeout,
+		hostProvider:   &DNSHostProvider{},
+		conn:           nil,
+		state:          StateDisconnected,
+		eventChan:      ec,
+		shouldQuit:     make(chan struct{}),
+		connectTimeout: 1 * time.Second,
+		sendChan:       make(chan *request, sendChanSize),
+		requests:       make(map[int32]*request),
+		watchers:       make(map[watchPathType][]chan Event),
+		passwd:         emptyPassword,
+		logger:         DefaultLogger,
+		logInfo:        true, // default is true for backwards compatability
+		buf:            make([]byte, bufferSize),
+	}
+
+	// Set provided options.
+	for _, option := range options {
+		option(conn)
+	}
+
+	if err := conn.hostProvider.Init(srvs); err != nil {
+		return nil, nil, err
+	}
+
+	conn.setTimeouts(int32(sessionTimeout / time.Millisecond))
+
+	go func() {
+		conn.loop()
+		conn.flushRequests(ErrClosing)
+		conn.invalidateWatches(ErrClosing)
+		close(conn.eventChan)
+	}()
+	return conn, ec, nil
+}
+
+// WithDialer returns a connection option specifying a non-default Dialer.
+func WithDialer(dialer Dialer) connOption {
+	return func(c *Conn) {
+		c.dialer = dialer
+	}
+}
+
+// WithHostProvider returns a connection option specifying a non-default HostProvider.
+func WithHostProvider(hostProvider HostProvider) connOption {
+	return func(c *Conn) {
+		c.hostProvider = hostProvider
+	}
+}
+
+// WithLogger returns a connection option specifying a non-default Logger
+func WithLogger(logger Logger) connOption {
+	return func(c *Conn) {
+		c.logger = logger
+	}
+}
+
+// WithLogInfo returns a connection option specifying whether or not information messages
+// shoud be logged.
+func WithLogInfo(logInfo bool) connOption {
+	return func(c *Conn) {
+		c.logInfo = logInfo
+	}
+}
+
+// EventCallback is a function that is called when an Event occurs.
+type EventCallback func(Event)
+
+// WithEventCallback returns a connection option that specifies an event
+// callback.
+// The callback must not block - doing so would delay the ZK go routines.
+func WithEventCallback(cb EventCallback) connOption {
+	return func(c *Conn) {
+		c.eventCallback = cb
+	}
+}
+
+// WithMaxBufferSize sets the maximum buffer size used to read and decode
+// packets received from the Zookeeper server. The standard Zookeeper client for
+// Java defaults to a limit of 1mb. For backwards compatibility, this Go client
+// defaults to unbounded unless overridden via this option. A value that is zero
+// or negative indicates that no limit is enforced.
+//
+// This is meant to prevent resource exhaustion in the face of potentially
+// malicious data in ZK. It should generally match the server setting (which
+// also defaults ot 1mb) so that clients and servers agree on the limits for
+// things like the size of data in an individual znode and the total size of a
+// transaction.
+//
+// For production systems, this should be set to a reasonable value (ideally
+// that matches the server configuration). For ops tooling, it is handy to use a
+// much larger limit, in order to do things like clean-up problematic state in
+// the ZK tree. For example, if a single znode has a huge number of children, it
+// is possible for the response to a "list children" operation to exceed this
+// buffer size and cause errors in clients. The only way to subsequently clean
+// up the tree (by removing superfluous children) is to use a client configured
+// with a larger buffer size that can successfully query for all of the child
+// names and then remove them. (Note there are other tools that can list all of
+// the child names without an increased buffer size in the client, but they work
+// by inspecting the servers' transaction logs to enumerate children instead of
+// sending an online request to a server.
+func WithMaxBufferSize(maxBufferSize int) connOption {
+	return func(c *Conn) {
+		c.maxBufferSize = maxBufferSize
+	}
+}
+
+// WithMaxConnBufferSize sets maximum buffer size used to send and encode
+// packets to Zookeeper server. The standard Zookeepeer client for java defaults
+// to a limit of 1mb. This option should be used for non-standard server setup
+// where znode is bigger than default 1mb.
+func WithMaxConnBufferSize(maxBufferSize int) connOption {
+	return func(c *Conn) {
+		c.buf = make([]byte, maxBufferSize)
+	}
+}
+
+func (c *Conn) Close() {
+	close(c.shouldQuit)
+
+	select {
+	case <-c.queueRequest(opClose, &closeRequest{}, &closeResponse{}, nil):
+	case <-time.After(time.Second):
+	}
+}
+
+// State returns the current state of the connection.
+func (c *Conn) State() State {
+	return State(atomic.LoadInt32((*int32)(&c.state)))
+}
+
+// SessionID returns the current session id of the connection.
+func (c *Conn) SessionID() int64 {
+	return atomic.LoadInt64(&c.sessionID)
+}
+
+// SetLogger sets the logger to be used for printing errors.
+// Logger is an interface provided by this package.
+func (c *Conn) SetLogger(l Logger) {
+	c.logger = l
+}
+
+func (c *Conn) setTimeouts(sessionTimeoutMs int32) {
+	c.sessionTimeoutMs = sessionTimeoutMs
+	sessionTimeout := time.Duration(sessionTimeoutMs) * time.Millisecond
+	c.recvTimeout = sessionTimeout * 2 / 3
+	c.pingInterval = c.recvTimeout / 2
+}
+
+func (c *Conn) setState(state State) {
+	atomic.StoreInt32((*int32)(&c.state), int32(state))
+	c.sendEvent(Event{Type: EventSession, State: state, Server: c.Server()})
+}
+
+func (c *Conn) sendEvent(evt Event) {
+	if c.eventCallback != nil {
+		c.eventCallback(evt)
+	}
+
+	select {
+	case c.eventChan <- evt:
+	default:
+		// panic("zk: event channel full - it must be monitored and never allowed to be full")
+	}
+}
+
+func (c *Conn) connect() error {
+	var retryStart bool
+	for {
+		c.serverMu.Lock()
+		c.server, retryStart = c.hostProvider.Next()
+		c.serverMu.Unlock()
+		c.setState(StateConnecting)
+		if retryStart {
+			c.flushUnsentRequests(ErrNoServer)
+			select {
+			case <-time.After(time.Second):
+				// pass
+			case <-c.shouldQuit:
+				c.setState(StateDisconnected)
+				c.flushUnsentRequests(ErrClosing)
+				return ErrClosing
+			}
+		}
+
+		zkConn, err := c.dialer("tcp", c.Server(), c.connectTimeout)
+		if err == nil {
+			c.conn = zkConn
+			c.setState(StateConnected)
+			if c.logInfo {
+				c.logger.Printf("Connected to %s", c.Server())
+			}
+			return nil
+		}
+
+		c.logger.Printf("Failed to connect to %s: %+v", c.Server(), err)
+	}
+}
+
+func (c *Conn) resendZkAuth(reauthReadyChan chan struct{}) {
+	shouldCancel := func() bool {
+		select {
+		case <-c.shouldQuit:
+			return true
+		case <-c.closeChan:
+			return true
+		default:
+			return false
+		}
+	}
+
+	c.credsMu.Lock()
+	defer c.credsMu.Unlock()
+
+	defer close(reauthReadyChan)
+
+	if c.logInfo {
+		c.logger.Printf("Re-submitting `%d` credentials after reconnect",
+			len(c.creds))
+	}
+
+	for _, cred := range c.creds {
+		if shouldCancel() {
+			c.logger.Printf("Cancel rer-submitting credentials")
+			return
+		}
+		resChan, err := c.sendRequest(
+			opSetAuth,
+			&setAuthRequest{Type: 0,
+				Scheme: cred.scheme,
+				Auth:   cred.auth,
+			},
+			&setAuthResponse{},
+			nil)
+
+		if err != nil {
+			c.logger.Printf("Call to sendRequest failed during credential resubmit: %s", err)
+			// FIXME(prozlach): lets ignore errors for now
+			continue
+		}
+
+		var res response
+		select {
+		case res = <-resChan:
+		case <-c.closeChan:
+			c.logger.Printf("Recv closed, cancel re-submitting credentials")
+			return
+		case <-c.shouldQuit:
+			c.logger.Printf("Should quit, cancel re-submitting credentials")
+			return
+		}
+		if res.err != nil {
+			c.logger.Printf("Credential re-submit failed: %s", res.err)
+			// FIXME(prozlach): lets ignore errors for now
+			continue
+		}
+	}
+}
+
+func (c *Conn) sendRequest(
+	opcode int32,
+	req interface{},
+	res interface{},
+	recvFunc func(*request, *responseHeader, error),
+) (
+	<-chan response,
+	error,
+) {
+	rq := &request{
+		xid:        c.nextXid(),
+		opcode:     opcode,
+		pkt:        req,
+		recvStruct: res,
+		recvChan:   make(chan response, 1),
+		recvFunc:   recvFunc,
+	}
+
+	if err := c.sendData(rq); err != nil {
+		return nil, err
+	}
+
+	return rq.recvChan, nil
+}
+
+func (c *Conn) loop() {
+	for {
+		if err := c.connect(); err != nil {
+			// c.Close() was called
+			return
+		}
+
+		err := c.authenticate()
+		switch {
+		case err == ErrSessionExpired:
+			c.logger.Printf("Authentication failed: %s", err)
+			c.invalidateWatches(err)
+		case err != nil && c.conn != nil:
+			c.logger.Printf("Authentication failed: %s", err)
+			c.conn.Close()
+		case err == nil:
+			if c.logInfo {
+				c.logger.Printf("Authenticated: id=%d, timeout=%d", c.SessionID(), c.sessionTimeoutMs)
+			}
+			c.hostProvider.Connected()        // mark success
+			c.closeChan = make(chan struct{}) // channel to tell send loop stop
+			reauthChan := make(chan struct{}) // channel to tell send loop that authdata has been resubmitted
+
+			var wg sync.WaitGroup
+			wg.Add(1)
+			go func() {
+				<-reauthChan
+				if c.debugCloseRecvLoop {
+					close(c.debugReauthDone)
+				}
+				err := c.sendLoop()
+				if err != nil || c.logInfo {
+					c.logger.Printf("Send loop terminated: err=%v", err)
+				}
+				c.conn.Close() // causes recv loop to EOF/exit
+				wg.Done()
+			}()
+
+			wg.Add(1)
+			go func() {
+				var err error
+				if c.debugCloseRecvLoop {
+					err = errors.New("DEBUG: close recv loop")
+				} else {
+					err = c.recvLoop(c.conn)
+				}
+				if err != io.EOF || c.logInfo {
+					c.logger.Printf("Recv loop terminated: err=%v", err)
+				}
+				if err == nil {
+					panic("zk: recvLoop should never return nil error")
+				}
+				close(c.closeChan) // tell send loop to exit
+				wg.Done()
+			}()
+
+			c.resendZkAuth(reauthChan)
+
+			c.sendSetWatches()
+			wg.Wait()
+		}
+
+		c.setState(StateDisconnected)
+
+		select {
+		case <-c.shouldQuit:
+			c.flushRequests(ErrClosing)
+			return
+		default:
+		}
+
+		if err != ErrSessionExpired {
+			err = ErrConnectionClosed
+		}
+		c.flushRequests(err)
+
+		if c.reconnectLatch != nil {
+			select {
+			case <-c.shouldQuit:
+				return
+			case <-c.reconnectLatch:
+			}
+		}
+	}
+}
+
+func (c *Conn) flushUnsentRequests(err error) {
+	for {
+		select {
+		default:
+			return
+		case req := <-c.sendChan:
+			req.recvChan <- response{-1, err}
+		}
+	}
+}
+
+// Send error to all pending requests and clear request map
+func (c *Conn) flushRequests(err error) {
+	c.requestsLock.Lock()
+	for _, req := range c.requests {
+		req.recvChan <- response{-1, err}
+	}
+	c.requests = make(map[int32]*request)
+	c.requestsLock.Unlock()
+}
+
+// Send error to all watchers and clear watchers map
+func (c *Conn) invalidateWatches(err error) {
+	c.watchersLock.Lock()
+	defer c.watchersLock.Unlock()
+
+	if len(c.watchers) >= 0 {
+		for pathType, watchers := range c.watchers {
+			ev := Event{Type: EventNotWatching, State: StateDisconnected, Path: pathType.path, Err: err}
+			for _, ch := range watchers {
+				ch <- ev
+				close(ch)
+			}
+		}
+		c.watchers = make(map[watchPathType][]chan Event)
+	}
+}
+
+func (c *Conn) sendSetWatches() {
+	c.watchersLock.Lock()
+	defer c.watchersLock.Unlock()
+
+	if len(c.watchers) == 0 {
+		return
+	}
+
+	// NB: A ZK server, by default, rejects packets >1mb. So, if we have too
+	// many watches to reset, we need to break this up into multiple packets
+	// to avoid hitting that limit. Mirroring the Java client behavior: we are
+	// conservative in that we limit requests to 128kb (since server limit is
+	// is actually configurable and could conceivably be configured smaller
+	// than default of 1mb).
+	limit := 128 * 1024
+	if c.setWatchLimit > 0 {
+		limit = c.setWatchLimit
+	}
+
+	var reqs []*setWatchesRequest
+	var req *setWatchesRequest
+	var sizeSoFar int
+
+	n := 0
+	for pathType, watchers := range c.watchers {
+		if len(watchers) == 0 {
+			continue
+		}
+		addlLen := 4 + len(pathType.path)
+		if req == nil || sizeSoFar+addlLen > limit {
+			if req != nil {
+				// add to set of requests that we'll send
+				reqs = append(reqs, req)
+			}
+			sizeSoFar = 28 // fixed overhead of a set-watches packet
+			req = &setWatchesRequest{
+				RelativeZxid: c.lastZxid,
+				DataWatches:  make([]string, 0),
+				ExistWatches: make([]string, 0),
+				ChildWatches: make([]string, 0),
+			}
+		}
+		sizeSoFar += addlLen
+		switch pathType.wType {
+		case watchTypeData:
+			req.DataWatches = append(req.DataWatches, pathType.path)
+		case watchTypeExist:
+			req.ExistWatches = append(req.ExistWatches, pathType.path)
+		case watchTypeChild:
+			req.ChildWatches = append(req.ChildWatches, pathType.path)
+		}
+		n++
+	}
+	if n == 0 {
+		return
+	}
+	if req != nil { // don't forget any trailing packet we were building
+		reqs = append(reqs, req)
+	}
+
+	if c.setWatchCallback != nil {
+		c.setWatchCallback(reqs)
+	}
+
+	go func() {
+		res := &setWatchesResponse{}
+		// TODO: Pipeline these so queue all of them up before waiting on any
+		// response. That will require some investigation to make sure there
+		// aren't failure modes where a blocking write to the channel of requests
+		// could hang indefinitely and cause this goroutine to leak...
+		for _, req := range reqs {
+			_, err := c.request(opSetWatches, req, res, nil)
+			if err != nil {
+				c.logger.Printf("Failed to set previous watches: %s", err.Error())
+				break
+			}
+		}
+	}()
+}
+
+func (c *Conn) authenticate() error {
+	buf := make([]byte, 256)
+
+	// Encode and send a connect request.
+	n, err := encodePacket(buf[4:], &connectRequest{
+		ProtocolVersion: protocolVersion,
+		LastZxidSeen:    c.lastZxid,
+		TimeOut:         c.sessionTimeoutMs,
+		SessionID:       c.SessionID(),
+		Passwd:          c.passwd,
+	})
+	if err != nil {
+		return err
+	}
+
+	binary.BigEndian.PutUint32(buf[:4], uint32(n))
+
+	c.conn.SetWriteDeadline(time.Now().Add(c.recvTimeout * 10))
+	_, err = c.conn.Write(buf[:n+4])
+	c.conn.SetWriteDeadline(time.Time{})
+	if err != nil {
+		return err
+	}
+
+	// Receive and decode a connect response.
+	c.conn.SetReadDeadline(time.Now().Add(c.recvTimeout * 10))
+	_, err = io.ReadFull(c.conn, buf[:4])
+	c.conn.SetReadDeadline(time.Time{})
+	if err != nil {
+		return err
+	}
+
+	blen := int(binary.BigEndian.Uint32(buf[:4]))
+	if cap(buf) < blen {
+		buf = make([]byte, blen)
+	}
+
+	_, err = io.ReadFull(c.conn, buf[:blen])
+	if err != nil {
+		return err
+	}
+
+	r := connectResponse{}
+	_, err = decodePacket(buf[:blen], &r)
+	if err != nil {
+		return err
+	}
+	if r.SessionID == 0 {
+		atomic.StoreInt64(&c.sessionID, int64(0))
+		c.passwd = emptyPassword
+		c.lastZxid = 0
+		c.setState(StateExpired)
+		return ErrSessionExpired
+	}
+
+	atomic.StoreInt64(&c.sessionID, r.SessionID)
+	c.setTimeouts(r.TimeOut)
+	c.passwd = r.Passwd
+	c.setState(StateHasSession)
+
+	return nil
+}
+
+func (c *Conn) sendData(req *request) error {
+	header := &requestHeader{req.xid, req.opcode}
+	n, err := encodePacket(c.buf[4:], header)
+	if err != nil {
+		req.recvChan <- response{-1, err}
+		return nil
+	}
+
+	n2, err := encodePacket(c.buf[4+n:], req.pkt)
+	if err != nil {
+		req.recvChan <- response{-1, err}
+		return nil
+	}
+
+	n += n2
+
+	binary.BigEndian.PutUint32(c.buf[:4], uint32(n))
+
+	c.requestsLock.Lock()
+	select {
+	case <-c.closeChan:
+		req.recvChan <- response{-1, ErrConnectionClosed}
+		c.requestsLock.Unlock()
+		return ErrConnectionClosed
+	default:
+	}
+	c.requests[req.xid] = req
+	c.requestsLock.Unlock()
+
+	c.conn.SetWriteDeadline(time.Now().Add(c.recvTimeout))
+	_, err = c.conn.Write(c.buf[:n+4])
+	c.conn.SetWriteDeadline(time.Time{})
+	if err != nil {
+		req.recvChan <- response{-1, err}
+		c.conn.Close()
+		return err
+	}
+
+	return nil
+}
+
+func (c *Conn) sendLoop() error {
+	pingTicker := time.NewTicker(c.pingInterval)
+	defer pingTicker.Stop()
+
+	for {
+		select {
+		case req := <-c.sendChan:
+			if err := c.sendData(req); err != nil {
+				return err
+			}
+		case <-pingTicker.C:
+			n, err := encodePacket(c.buf[4:], &requestHeader{Xid: -2, Opcode: opPing})
+			if err != nil {
+				panic("zk: opPing should never fail to serialize")
+			}
+
+			binary.BigEndian.PutUint32(c.buf[:4], uint32(n))
+
+			c.conn.SetWriteDeadline(time.Now().Add(c.recvTimeout))
+			_, err = c.conn.Write(c.buf[:n+4])
+			c.conn.SetWriteDeadline(time.Time{})
+			if err != nil {
+				c.conn.Close()
+				return err
+			}
+		case <-c.closeChan:
+			return nil
+		}
+	}
+}
+
+func (c *Conn) recvLoop(conn net.Conn) error {
+	sz := bufferSize
+	if c.maxBufferSize > 0 && sz > c.maxBufferSize {
+		sz = c.maxBufferSize
+	}
+	buf := make([]byte, sz)
+	for {
+		// package length
+		conn.SetReadDeadline(time.Now().Add(c.recvTimeout))
+		_, err := io.ReadFull(conn, buf[:4])
+		if err != nil {
+			return err
+		}
+
+		blen := int(binary.BigEndian.Uint32(buf[:4]))
+		if cap(buf) < blen {
+			if c.maxBufferSize > 0 && blen > c.maxBufferSize {
+				return fmt.Errorf("received packet from server with length %d, which exceeds max buffer size %d", blen, c.maxBufferSize)
+			}
+			buf = make([]byte, blen)
+		}
+
+		_, err = io.ReadFull(conn, buf[:blen])
+		conn.SetReadDeadline(time.Time{})
+		if err != nil {
+			return err
+		}
+
+		res := responseHeader{}
+		_, err = decodePacket(buf[:16], &res)
+		if err != nil {
+			return err
+		}
+
+		if res.Xid == -1 {
+			res := &watcherEvent{}
+			_, err := decodePacket(buf[16:blen], res)
+			if err != nil {
+				return err
+			}
+			ev := Event{
+				Type:  res.Type,
+				State: res.State,
+				Path:  res.Path,
+				Err:   nil,
+			}
+			c.sendEvent(ev)
+			wTypes := make([]watchType, 0, 2)
+			switch res.Type {
+			case EventNodeCreated:
+				wTypes = append(wTypes, watchTypeExist)
+			case EventNodeDeleted, EventNodeDataChanged:
+				wTypes = append(wTypes, watchTypeExist, watchTypeData, watchTypeChild)
+			case EventNodeChildrenChanged:
+				wTypes = append(wTypes, watchTypeChild)
+			}
+			c.watchersLock.Lock()
+			for _, t := range wTypes {
+				wpt := watchPathType{res.Path, t}
+				if watchers := c.watchers[wpt]; watchers != nil && len(watchers) > 0 {
+					for _, ch := range watchers {
+						ch <- ev
+						close(ch)
+					}
+					delete(c.watchers, wpt)
+				}
+			}
+			c.watchersLock.Unlock()
+		} else if res.Xid == -2 {
+			// Ping response. Ignore.
+		} else if res.Xid < 0 {
+			c.logger.Printf("Xid < 0 (%d) but not ping or watcher event", res.Xid)
+		} else {
+			if res.Zxid > 0 {
+				c.lastZxid = res.Zxid
+			}
+
+			c.requestsLock.Lock()
+			req, ok := c.requests[res.Xid]
+			if ok {
+				delete(c.requests, res.Xid)
+			}
+			c.requestsLock.Unlock()
+
+			if !ok {
+				c.logger.Printf("Response for unknown request with xid %d", res.Xid)
+			} else {
+				if res.Err != 0 {
+					err = res.Err.toError()
+				} else {
+					_, err = decodePacket(buf[16:blen], req.recvStruct)
+				}
+				if req.recvFunc != nil {
+					req.recvFunc(req, &res, err)
+				}
+				req.recvChan <- response{res.Zxid, err}
+				if req.opcode == opClose {
+					return io.EOF
+				}
+			}
+		}
+	}
+}
+
+func (c *Conn) nextXid() int32 {
+	return int32(atomic.AddUint32(&c.xid, 1) & 0x7fffffff)
+}
+
+func (c *Conn) addWatcher(path string, watchType watchType) <-chan Event {
+	c.watchersLock.Lock()
+	defer c.watchersLock.Unlock()
+
+	ch := make(chan Event, 1)
+	wpt := watchPathType{path, watchType}
+	c.watchers[wpt] = append(c.watchers[wpt], ch)
+	return ch
+}
+
+func (c *Conn) queueRequest(opcode int32, req interface{}, res interface{}, recvFunc func(*request, *responseHeader, error)) <-chan response {
+	rq := &request{
+		xid:        c.nextXid(),
+		opcode:     opcode,
+		pkt:        req,
+		recvStruct: res,
+		recvChan:   make(chan response, 1),
+		recvFunc:   recvFunc,
+	}
+	c.sendChan <- rq
+	return rq.recvChan
+}
+
+func (c *Conn) request(opcode int32, req interface{}, res interface{}, recvFunc func(*request, *responseHeader, error)) (int64, error) {
+	r := <-c.queueRequest(opcode, req, res, recvFunc)
+	return r.zxid, r.err
+}
+
+func (c *Conn) AddAuth(scheme string, auth []byte) error {
+	_, err := c.request(opSetAuth, &setAuthRequest{Type: 0, Scheme: scheme, Auth: auth}, &setAuthResponse{}, nil)
+
+	if err != nil {
+		return err
+	}
+
+	// Remember authdata so that it can be re-submitted on reconnect
+	//
+	// FIXME(prozlach): For now we treat "userfoo:passbar" and "userfoo:passbar2"
+	// as two different entries, which will be re-submitted on reconnet. Some
+	// research is needed on how ZK treats these cases and
+	// then maybe switch to something like "map[username] = password" to allow
+	// only single password for given user with users being unique.
+	obj := authCreds{
+		scheme: scheme,
+		auth:   auth,
+	}
+
+	c.credsMu.Lock()
+	c.creds = append(c.creds, obj)
+	c.credsMu.Unlock()
+
+	return nil
+}
+
+func (c *Conn) Children(path string) ([]string, *Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, nil, err
+	}
+
+	res := &getChildren2Response{}
+	_, err := c.request(opGetChildren2, &getChildren2Request{Path: path, Watch: false}, res, nil)
+	return res.Children, &res.Stat, err
+}
+
+func (c *Conn) ChildrenW(path string) ([]string, *Stat, <-chan Event, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, nil, nil, err
+	}
+
+	var ech <-chan Event
+	res := &getChildren2Response{}
+	_, err := c.request(opGetChildren2, &getChildren2Request{Path: path, Watch: true}, res, func(req *request, res *responseHeader, err error) {
+		if err == nil {
+			ech = c.addWatcher(path, watchTypeChild)
+		}
+	})
+	if err != nil {
+		return nil, nil, nil, err
+	}
+	return res.Children, &res.Stat, ech, err
+}
+
+func (c *Conn) Get(path string) ([]byte, *Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, nil, err
+	}
+
+	res := &getDataResponse{}
+	_, err := c.request(opGetData, &getDataRequest{Path: path, Watch: false}, res, nil)
+	return res.Data, &res.Stat, err
+}
+
+// GetW returns the contents of a znode and sets a watch
+func (c *Conn) GetW(path string) ([]byte, *Stat, <-chan Event, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, nil, nil, err
+	}
+
+	var ech <-chan Event
+	res := &getDataResponse{}
+	_, err := c.request(opGetData, &getDataRequest{Path: path, Watch: true}, res, func(req *request, res *responseHeader, err error) {
+		if err == nil {
+			ech = c.addWatcher(path, watchTypeData)
+		}
+	})
+	if err != nil {
+		return nil, nil, nil, err
+	}
+	return res.Data, &res.Stat, ech, err
+}
+
+func (c *Conn) Set(path string, data []byte, version int32) (*Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, err
+	}
+
+	res := &setDataResponse{}
+	_, err := c.request(opSetData, &SetDataRequest{path, data, version}, res, nil)
+	return &res.Stat, err
+}
+
+func (c *Conn) Create(path string, data []byte, flags int32, acl []ACL) (string, error) {
+	if err := validatePath(path, flags&FlagSequence == FlagSequence); err != nil {
+		return "", err
+	}
+
+	res := &createResponse{}
+	_, err := c.request(opCreate, &CreateRequest{path, data, acl, flags}, res, nil)
+	return res.Path, err
+}
+
+// CreateProtectedEphemeralSequential fixes a race condition if the server crashes
+// after it creates the node. On reconnect the session may still be valid so the
+// ephemeral node still exists. Therefore, on reconnect we need to check if a node
+// with a GUID generated on create exists.
+func (c *Conn) CreateProtectedEphemeralSequential(path string, data []byte, acl []ACL) (string, error) {
+	if err := validatePath(path, true); err != nil {
+		return "", err
+	}
+
+	var guid [16]byte
+	_, err := io.ReadFull(rand.Reader, guid[:16])
+	if err != nil {
+		return "", err
+	}
+	guidStr := fmt.Sprintf("%x", guid)
+
+	parts := strings.Split(path, "/")
+	parts[len(parts)-1] = fmt.Sprintf("%s%s-%s", protectedPrefix, guidStr, parts[len(parts)-1])
+	rootPath := strings.Join(parts[:len(parts)-1], "/")
+	protectedPath := strings.Join(parts, "/")
+
+	var newPath string
+	for i := 0; i < 3; i++ {
+		newPath, err = c.Create(protectedPath, data, FlagEphemeral|FlagSequence, acl)
+		switch err {
+		case ErrSessionExpired:
+			// No need to search for the node since it can't exist. Just try again.
+		case ErrConnectionClosed:
+			children, _, err := c.Children(rootPath)
+			if err != nil {
+				return "", err
+			}
+			for _, p := range children {
+				parts := strings.Split(p, "/")
+				if pth := parts[len(parts)-1]; strings.HasPrefix(pth, protectedPrefix) {
+					if g := pth[len(protectedPrefix) : len(protectedPrefix)+32]; g == guidStr {
+						return rootPath + "/" + p, nil
+					}
+				}
+			}
+		case nil:
+			return newPath, nil
+		default:
+			return "", err
+		}
+	}
+	return "", err
+}
+
+func (c *Conn) Delete(path string, version int32) error {
+	if err := validatePath(path, false); err != nil {
+		return err
+	}
+
+	_, err := c.request(opDelete, &DeleteRequest{path, version}, &deleteResponse{}, nil)
+	return err
+}
+
+func (c *Conn) Exists(path string) (bool, *Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return false, nil, err
+	}
+
+	res := &existsResponse{}
+	_, err := c.request(opExists, &existsRequest{Path: path, Watch: false}, res, nil)
+	exists := true
+	if err == ErrNoNode {
+		exists = false
+		err = nil
+	}
+	return exists, &res.Stat, err
+}
+
+func (c *Conn) ExistsW(path string) (bool, *Stat, <-chan Event, error) {
+	if err := validatePath(path, false); err != nil {
+		return false, nil, nil, err
+	}
+
+	var ech <-chan Event
+	res := &existsResponse{}
+	_, err := c.request(opExists, &existsRequest{Path: path, Watch: true}, res, func(req *request, res *responseHeader, err error) {
+		if err == nil {
+			ech = c.addWatcher(path, watchTypeData)
+		} else if err == ErrNoNode {
+			ech = c.addWatcher(path, watchTypeExist)
+		}
+	})
+	exists := true
+	if err == ErrNoNode {
+		exists = false
+		err = nil
+	}
+	if err != nil {
+		return false, nil, nil, err
+	}
+	return exists, &res.Stat, ech, err
+}
+
+func (c *Conn) GetACL(path string) ([]ACL, *Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, nil, err
+	}
+
+	res := &getAclResponse{}
+	_, err := c.request(opGetAcl, &getAclRequest{Path: path}, res, nil)
+	return res.Acl, &res.Stat, err
+}
+func (c *Conn) SetACL(path string, acl []ACL, version int32) (*Stat, error) {
+	if err := validatePath(path, false); err != nil {
+		return nil, err
+	}
+
+	res := &setAclResponse{}
+	_, err := c.request(opSetAcl, &setAclRequest{Path: path, Acl: acl, Version: version}, res, nil)
+	return &res.Stat, err
+}
+
+func (c *Conn) Sync(path string) (string, error) {
+	if err := validatePath(path, false); err != nil {
+		return "", err
+	}
+
+	res := &syncResponse{}
+	_, err := c.request(opSync, &syncRequest{Path: path}, res, nil)
+	return res.Path, err
+}
+
+type MultiResponse struct {
+	Stat   *Stat
+	String string
+	Error  error
+}
+
+// Multi executes multiple ZooKeeper operations or none of them. The provided
+// ops must be one of *CreateRequest, *DeleteRequest, *SetDataRequest, or
+// *CheckVersionRequest.
+func (c *Conn) Multi(ops ...interface{}) ([]MultiResponse, error) {
+	req := &multiRequest{
+		Ops:        make([]multiRequestOp, 0, len(ops)),
+		DoneHeader: multiHeader{Type: -1, Done: true, Err: -1},
+	}
+	for _, op := range ops {
+		var opCode int32
+		switch op.(type) {
+		case *CreateRequest:
+			opCode = opCreate
+		case *SetDataRequest:
+			opCode = opSetData
+		case *DeleteRequest:
+			opCode = opDelete
+		case *CheckVersionRequest:
+			opCode = opCheck
+		default:
+			return nil, fmt.Errorf("unknown operation type %T", op)
+		}
+		req.Ops = append(req.Ops, multiRequestOp{multiHeader{opCode, false, -1}, op})
+	}
+	res := &multiResponse{}
+	_, err := c.request(opMulti, req, res, nil)
+	mr := make([]MultiResponse, len(res.Ops))
+	for i, op := range res.Ops {
+		mr[i] = MultiResponse{Stat: op.Stat, String: op.String, Error: op.Err.toError()}
+	}
+	return mr, err
+}
+
+// Server returns the current or last-connected server name.
+func (c *Conn) Server() string {
+	c.serverMu.Lock()
+	defer c.serverMu.Unlock()
+	return c.server
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/constants.go b/vendor/github.com/samuel/go-zookeeper/zk/constants.go
new file mode 100644
index 0000000000..33b5563b9f
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/constants.go
@@ -0,0 +1,240 @@
+package zk
+
+import (
+	"errors"
+)
+
+const (
+	protocolVersion = 0
+
+	DefaultPort = 2181
+)
+
+const (
+	opNotify       = 0
+	opCreate       = 1
+	opDelete       = 2
+	opExists       = 3
+	opGetData      = 4
+	opSetData      = 5
+	opGetAcl       = 6
+	opSetAcl       = 7
+	opGetChildren  = 8
+	opSync         = 9
+	opPing         = 11
+	opGetChildren2 = 12
+	opCheck        = 13
+	opMulti        = 14
+	opClose        = -11
+	opSetAuth      = 100
+	opSetWatches   = 101
+	opError        = -1
+	// Not in protocol, used internally
+	opWatcherEvent = -2
+)
+
+const (
+	EventNodeCreated         EventType = 1
+	EventNodeDeleted         EventType = 2
+	EventNodeDataChanged     EventType = 3
+	EventNodeChildrenChanged EventType = 4
+
+	EventSession     EventType = -1
+	EventNotWatching EventType = -2
+)
+
+var (
+	eventNames = map[EventType]string{
+		EventNodeCreated:         "EventNodeCreated",
+		EventNodeDeleted:         "EventNodeDeleted",
+		EventNodeDataChanged:     "EventNodeDataChanged",
+		EventNodeChildrenChanged: "EventNodeChildrenChanged",
+		EventSession:             "EventSession",
+		EventNotWatching:         "EventNotWatching",
+	}
+)
+
+const (
+	StateUnknown           State = -1
+	StateDisconnected      State = 0
+	StateConnecting        State = 1
+	StateAuthFailed        State = 4
+	StateConnectedReadOnly State = 5
+	StateSaslAuthenticated State = 6
+	StateExpired           State = -112
+
+	StateConnected  = State(100)
+	StateHasSession = State(101)
+)
+
+const (
+	FlagEphemeral = 1
+	FlagSequence  = 2
+)
+
+var (
+	stateNames = map[State]string{
+		StateUnknown:           "StateUnknown",
+		StateDisconnected:      "StateDisconnected",
+		StateConnectedReadOnly: "StateConnectedReadOnly",
+		StateSaslAuthenticated: "StateSaslAuthenticated",
+		StateExpired:           "StateExpired",
+		StateAuthFailed:        "StateAuthFailed",
+		StateConnecting:        "StateConnecting",
+		StateConnected:         "StateConnected",
+		StateHasSession:        "StateHasSession",
+	}
+)
+
+type State int32
+
+func (s State) String() string {
+	if name := stateNames[s]; name != "" {
+		return name
+	}
+	return "Unknown"
+}
+
+type ErrCode int32
+
+var (
+	ErrConnectionClosed        = errors.New("zk: connection closed")
+	ErrUnknown                 = errors.New("zk: unknown error")
+	ErrAPIError                = errors.New("zk: api error")
+	ErrNoNode                  = errors.New("zk: node does not exist")
+	ErrNoAuth                  = errors.New("zk: not authenticated")
+	ErrBadVersion              = errors.New("zk: version conflict")
+	ErrNoChildrenForEphemerals = errors.New("zk: ephemeral nodes may not have children")
+	ErrNodeExists              = errors.New("zk: node already exists")
+	ErrNotEmpty                = errors.New("zk: node has children")
+	ErrSessionExpired          = errors.New("zk: session has been expired by the server")
+	ErrInvalidACL              = errors.New("zk: invalid ACL specified")
+	ErrAuthFailed              = errors.New("zk: client authentication failed")
+	ErrClosing                 = errors.New("zk: zookeeper is closing")
+	ErrNothing                 = errors.New("zk: no server responsees to process")
+	ErrSessionMoved            = errors.New("zk: session moved to another server, so operation is ignored")
+
+	// ErrInvalidCallback         = errors.New("zk: invalid callback specified")
+	errCodeToError = map[ErrCode]error{
+		0:                          nil,
+		errAPIError:                ErrAPIError,
+		errNoNode:                  ErrNoNode,
+		errNoAuth:                  ErrNoAuth,
+		errBadVersion:              ErrBadVersion,
+		errNoChildrenForEphemerals: ErrNoChildrenForEphemerals,
+		errNodeExists:              ErrNodeExists,
+		errNotEmpty:                ErrNotEmpty,
+		errSessionExpired:          ErrSessionExpired,
+		// errInvalidCallback:         ErrInvalidCallback,
+		errInvalidAcl:   ErrInvalidACL,
+		errAuthFailed:   ErrAuthFailed,
+		errClosing:      ErrClosing,
+		errNothing:      ErrNothing,
+		errSessionMoved: ErrSessionMoved,
+	}
+)
+
+func (e ErrCode) toError() error {
+	if err, ok := errCodeToError[e]; ok {
+		return err
+	}
+	return ErrUnknown
+}
+
+const (
+	errOk = 0
+	// System and server-side errors
+	errSystemError          = -1
+	errRuntimeInconsistency = -2
+	errDataInconsistency    = -3
+	errConnectionLoss       = -4
+	errMarshallingError     = -5
+	errUnimplemented        = -6
+	errOperationTimeout     = -7
+	errBadArguments         = -8
+	errInvalidState         = -9
+	// API errors
+	errAPIError                ErrCode = -100
+	errNoNode                  ErrCode = -101 // *
+	errNoAuth                  ErrCode = -102
+	errBadVersion              ErrCode = -103 // *
+	errNoChildrenForEphemerals ErrCode = -108
+	errNodeExists              ErrCode = -110 // *
+	errNotEmpty                ErrCode = -111
+	errSessionExpired          ErrCode = -112
+	errInvalidCallback         ErrCode = -113
+	errInvalidAcl              ErrCode = -114
+	errAuthFailed              ErrCode = -115
+	errClosing                 ErrCode = -116
+	errNothing                 ErrCode = -117
+	errSessionMoved            ErrCode = -118
+)
+
+// Constants for ACL permissions
+const (
+	PermRead = 1 << iota
+	PermWrite
+	PermCreate
+	PermDelete
+	PermAdmin
+	PermAll = 0x1f
+)
+
+var (
+	emptyPassword = []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}
+	opNames       = map[int32]string{
+		opNotify:       "notify",
+		opCreate:       "create",
+		opDelete:       "delete",
+		opExists:       "exists",
+		opGetData:      "getData",
+		opSetData:      "setData",
+		opGetAcl:       "getACL",
+		opSetAcl:       "setACL",
+		opGetChildren:  "getChildren",
+		opSync:         "sync",
+		opPing:         "ping",
+		opGetChildren2: "getChildren2",
+		opCheck:        "check",
+		opMulti:        "multi",
+		opClose:        "close",
+		opSetAuth:      "setAuth",
+		opSetWatches:   "setWatches",
+
+		opWatcherEvent: "watcherEvent",
+	}
+)
+
+type EventType int32
+
+func (t EventType) String() string {
+	if name := eventNames[t]; name != "" {
+		return name
+	}
+	return "Unknown"
+}
+
+// Mode is used to build custom server modes (leader|follower|standalone).
+type Mode uint8
+
+func (m Mode) String() string {
+	if name := modeNames[m]; name != "" {
+		return name
+	}
+	return "unknown"
+}
+
+const (
+	ModeUnknown    Mode = iota
+	ModeLeader     Mode = iota
+	ModeFollower   Mode = iota
+	ModeStandalone Mode = iota
+)
+
+var (
+	modeNames = map[Mode]string{
+		ModeLeader:     "leader",
+		ModeFollower:   "follower",
+		ModeStandalone: "standalone",
+	}
+)
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/dnshostprovider.go b/vendor/github.com/samuel/go-zookeeper/zk/dnshostprovider.go
new file mode 100644
index 0000000000..f4bba8d0b5
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/dnshostprovider.go
@@ -0,0 +1,88 @@
+package zk
+
+import (
+	"fmt"
+	"net"
+	"sync"
+)
+
+// DNSHostProvider is the default HostProvider. It currently matches
+// the Java StaticHostProvider, resolving hosts from DNS once during
+// the call to Init.  It could be easily extended to re-query DNS
+// periodically or if there is trouble connecting.
+type DNSHostProvider struct {
+	mu         sync.Mutex // Protects everything, so we can add asynchronous updates later.
+	servers    []string
+	curr       int
+	last       int
+	lookupHost func(string) ([]string, error) // Override of net.LookupHost, for testing.
+}
+
+// Init is called first, with the servers specified in the connection
+// string. It uses DNS to look up addresses for each server, then
+// shuffles them all together.
+func (hp *DNSHostProvider) Init(servers []string) error {
+	hp.mu.Lock()
+	defer hp.mu.Unlock()
+
+	lookupHost := hp.lookupHost
+	if lookupHost == nil {
+		lookupHost = net.LookupHost
+	}
+
+	found := []string{}
+	for _, server := range servers {
+		host, port, err := net.SplitHostPort(server)
+		if err != nil {
+			return err
+		}
+		addrs, err := lookupHost(host)
+		if err != nil {
+			return err
+		}
+		for _, addr := range addrs {
+			found = append(found, net.JoinHostPort(addr, port))
+		}
+	}
+
+	if len(found) == 0 {
+		return fmt.Errorf("No hosts found for addresses %q", servers)
+	}
+
+	// Randomize the order of the servers to avoid creating hotspots
+	stringShuffle(found)
+
+	hp.servers = found
+	hp.curr = -1
+	hp.last = -1
+
+	return nil
+}
+
+// Len returns the number of servers available
+func (hp *DNSHostProvider) Len() int {
+	hp.mu.Lock()
+	defer hp.mu.Unlock()
+	return len(hp.servers)
+}
+
+// Next returns the next server to connect to. retryStart will be true
+// if we've looped through all known servers without Connected() being
+// called.
+func (hp *DNSHostProvider) Next() (server string, retryStart bool) {
+	hp.mu.Lock()
+	defer hp.mu.Unlock()
+	hp.curr = (hp.curr + 1) % len(hp.servers)
+	retryStart = hp.curr == hp.last
+	if hp.last == -1 {
+		hp.last = 0
+	}
+	return hp.servers[hp.curr], retryStart
+}
+
+// Connected notifies the HostProvider of a successful connection.
+func (hp *DNSHostProvider) Connected() {
+	hp.mu.Lock()
+	defer hp.mu.Unlock()
+	hp.last = hp.curr
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/flw.go b/vendor/github.com/samuel/go-zookeeper/zk/flw.go
new file mode 100644
index 0000000000..3e97f96876
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/flw.go
@@ -0,0 +1,266 @@
+package zk
+
+import (
+	"bufio"
+	"bytes"
+	"fmt"
+	"io/ioutil"
+	"net"
+	"regexp"
+	"strconv"
+	"strings"
+	"time"
+)
+
+// FLWSrvr is a FourLetterWord helper function. In particular, this function pulls the srvr output
+// from the zookeeper instances and parses the output. A slice of *ServerStats structs are returned
+// as well as a boolean value to indicate whether this function processed successfully.
+//
+// If the boolean value is false there was a problem. If the *ServerStats slice is empty or nil,
+// then the error happened before we started to obtain 'srvr' values. Otherwise, one of the
+// servers had an issue and the "Error" value in the struct should be inspected to determine
+// which server had the issue.
+func FLWSrvr(servers []string, timeout time.Duration) ([]*ServerStats, bool) {
+	// different parts of the regular expression that are required to parse the srvr output
+	const (
+		zrVer   = `^Zookeeper version: ([A-Za-z0-9\.\-]+), built on (\d\d/\d\d/\d\d\d\d \d\d:\d\d [A-Za-z0-9:\+\-]+)`
+		zrLat   = `^Latency min/avg/max: (\d+)/(\d+)/(\d+)`
+		zrNet   = `^Received: (\d+).*\n^Sent: (\d+).*\n^Connections: (\d+).*\n^Outstanding: (\d+)`
+		zrState = `^Zxid: (0x[A-Za-z0-9]+).*\n^Mode: (\w+).*\n^Node count: (\d+)`
+	)
+
+	// build the regex from the pieces above
+	re, err := regexp.Compile(fmt.Sprintf(`(?m:\A%v.*\n%v.*\n%v.*\n%v)`, zrVer, zrLat, zrNet, zrState))
+	if err != nil {
+		return nil, false
+	}
+
+	imOk := true
+	servers = FormatServers(servers)
+	ss := make([]*ServerStats, len(servers))
+
+	for i := range ss {
+		response, err := fourLetterWord(servers[i], "srvr", timeout)
+
+		if err != nil {
+			ss[i] = &ServerStats{Error: err}
+			imOk = false
+			continue
+		}
+
+		matches := re.FindAllStringSubmatch(string(response), -1)
+
+		if matches == nil {
+			err := fmt.Errorf("unable to parse fields from zookeeper response (no regex matches)")
+			ss[i] = &ServerStats{Error: err}
+			imOk = false
+			continue
+		}
+
+		match := matches[0][1:]
+
+		// determine current server
+		var srvrMode Mode
+		switch match[10] {
+		case "leader":
+			srvrMode = ModeLeader
+		case "follower":
+			srvrMode = ModeFollower
+		case "standalone":
+			srvrMode = ModeStandalone
+		default:
+			srvrMode = ModeUnknown
+		}
+
+		buildTime, err := time.Parse("01/02/2006 15:04 MST", match[1])
+
+		if err != nil {
+			ss[i] = &ServerStats{Error: err}
+			imOk = false
+			continue
+		}
+
+		parsedInt, err := strconv.ParseInt(match[9], 0, 64)
+
+		if err != nil {
+			ss[i] = &ServerStats{Error: err}
+			imOk = false
+			continue
+		}
+
+		// the ZxID value is an int64 with two int32s packed inside
+		// the high int32 is the epoch (i.e., number of leader elections)
+		// the low int32 is the counter
+		epoch := int32(parsedInt >> 32)
+		counter := int32(parsedInt & 0xFFFFFFFF)
+
+		// within the regex above, these values must be numerical
+		// so we can avoid useless checking of the error return value
+		minLatency, _ := strconv.ParseInt(match[2], 0, 64)
+		avgLatency, _ := strconv.ParseInt(match[3], 0, 64)
+		maxLatency, _ := strconv.ParseInt(match[4], 0, 64)
+		recv, _ := strconv.ParseInt(match[5], 0, 64)
+		sent, _ := strconv.ParseInt(match[6], 0, 64)
+		cons, _ := strconv.ParseInt(match[7], 0, 64)
+		outs, _ := strconv.ParseInt(match[8], 0, 64)
+		ncnt, _ := strconv.ParseInt(match[11], 0, 64)
+
+		ss[i] = &ServerStats{
+			Sent:        sent,
+			Received:    recv,
+			NodeCount:   ncnt,
+			MinLatency:  minLatency,
+			AvgLatency:  avgLatency,
+			MaxLatency:  maxLatency,
+			Connections: cons,
+			Outstanding: outs,
+			Epoch:       epoch,
+			Counter:     counter,
+			BuildTime:   buildTime,
+			Mode:        srvrMode,
+			Version:     match[0],
+		}
+	}
+
+	return ss, imOk
+}
+
+// FLWRuok is a FourLetterWord helper function. In particular, this function
+// pulls the ruok output from each server.
+func FLWRuok(servers []string, timeout time.Duration) []bool {
+	servers = FormatServers(servers)
+	oks := make([]bool, len(servers))
+
+	for i := range oks {
+		response, err := fourLetterWord(servers[i], "ruok", timeout)
+
+		if err != nil {
+			continue
+		}
+
+		if bytes.Equal(response[:4], []byte("imok")) {
+			oks[i] = true
+		}
+	}
+	return oks
+}
+
+// FLWCons is a FourLetterWord helper function. In particular, this function
+// pulls the ruok output from each server.
+//
+// As with FLWSrvr, the boolean value indicates whether one of the requests had
+// an issue. The Clients struct has an Error value that can be checked.
+func FLWCons(servers []string, timeout time.Duration) ([]*ServerClients, bool) {
+	const (
+		zrAddr = `^ /((?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?):(?:\d+))\[\d+\]`
+		zrPac  = `\(queued=(\d+),recved=(\d+),sent=(\d+),sid=(0x[A-Za-z0-9]+),lop=(\w+),est=(\d+),to=(\d+),`
+		zrSesh = `lcxid=(0x[A-Za-z0-9]+),lzxid=(0x[A-Za-z0-9]+),lresp=(\d+),llat=(\d+),minlat=(\d+),avglat=(\d+),maxlat=(\d+)\)`
+	)
+
+	re, err := regexp.Compile(fmt.Sprintf("%v%v%v", zrAddr, zrPac, zrSesh))
+	if err != nil {
+		return nil, false
+	}
+
+	servers = FormatServers(servers)
+	sc := make([]*ServerClients, len(servers))
+	imOk := true
+
+	for i := range sc {
+		response, err := fourLetterWord(servers[i], "cons", timeout)
+
+		if err != nil {
+			sc[i] = &ServerClients{Error: err}
+			imOk = false
+			continue
+		}
+
+		scan := bufio.NewScanner(bytes.NewReader(response))
+
+		var clients []*ServerClient
+
+		for scan.Scan() {
+			line := scan.Bytes()
+
+			if len(line) == 0 {
+				continue
+			}
+
+			m := re.FindAllStringSubmatch(string(line), -1)
+
+			if m == nil {
+				err := fmt.Errorf("unable to parse fields from zookeeper response (no regex matches)")
+				sc[i] = &ServerClients{Error: err}
+				imOk = false
+				continue
+			}
+
+			match := m[0][1:]
+
+			queued, _ := strconv.ParseInt(match[1], 0, 64)
+			recvd, _ := strconv.ParseInt(match[2], 0, 64)
+			sent, _ := strconv.ParseInt(match[3], 0, 64)
+			sid, _ := strconv.ParseInt(match[4], 0, 64)
+			est, _ := strconv.ParseInt(match[6], 0, 64)
+			timeout, _ := strconv.ParseInt(match[7], 0, 32)
+			lcxid, _ := parseInt64(match[8])
+			lzxid, _ := parseInt64(match[9])
+			lresp, _ := strconv.ParseInt(match[10], 0, 64)
+			llat, _ := strconv.ParseInt(match[11], 0, 32)
+			minlat, _ := strconv.ParseInt(match[12], 0, 32)
+			avglat, _ := strconv.ParseInt(match[13], 0, 32)
+			maxlat, _ := strconv.ParseInt(match[14], 0, 32)
+
+			clients = append(clients, &ServerClient{
+				Queued:        queued,
+				Received:      recvd,
+				Sent:          sent,
+				SessionID:     sid,
+				Lcxid:         int64(lcxid),
+				Lzxid:         int64(lzxid),
+				Timeout:       int32(timeout),
+				LastLatency:   int32(llat),
+				MinLatency:    int32(minlat),
+				AvgLatency:    int32(avglat),
+				MaxLatency:    int32(maxlat),
+				Established:   time.Unix(est, 0),
+				LastResponse:  time.Unix(lresp, 0),
+				Addr:          match[0],
+				LastOperation: match[5],
+			})
+		}
+
+		sc[i] = &ServerClients{Clients: clients}
+	}
+
+	return sc, imOk
+}
+
+// parseInt64 is similar to strconv.ParseInt, but it also handles hex values that represent negative numbers
+func parseInt64(s string) (int64, error) {
+	if strings.HasPrefix(s, "0x") {
+		i, err := strconv.ParseUint(s, 0, 64)
+		return int64(i), err
+	}
+	return strconv.ParseInt(s, 0, 64)
+}
+
+func fourLetterWord(server, command string, timeout time.Duration) ([]byte, error) {
+	conn, err := net.DialTimeout("tcp", server, timeout)
+	if err != nil {
+		return nil, err
+	}
+
+	// the zookeeper server should automatically close this socket
+	// once the command has been processed, but better safe than sorry
+	defer conn.Close()
+
+	conn.SetWriteDeadline(time.Now().Add(timeout))
+	_, err = conn.Write([]byte(command))
+	if err != nil {
+		return nil, err
+	}
+
+	conn.SetReadDeadline(time.Now().Add(timeout))
+	return ioutil.ReadAll(conn)
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/lock.go b/vendor/github.com/samuel/go-zookeeper/zk/lock.go
new file mode 100644
index 0000000000..3c35a427c8
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/lock.go
@@ -0,0 +1,150 @@
+package zk
+
+import (
+	"errors"
+	"fmt"
+	"strconv"
+	"strings"
+)
+
+var (
+	// ErrDeadlock is returned by Lock when trying to lock twice without unlocking first
+	ErrDeadlock = errors.New("zk: trying to acquire a lock twice")
+	// ErrNotLocked is returned by Unlock when trying to release a lock that has not first be acquired.
+	ErrNotLocked = errors.New("zk: not locked")
+)
+
+// Lock is a mutual exclusion lock.
+type Lock struct {
+	c        *Conn
+	path     string
+	acl      []ACL
+	lockPath string
+	seq      int
+}
+
+// NewLock creates a new lock instance using the provided connection, path, and acl.
+// The path must be a node that is only used by this lock. A lock instances starts
+// unlocked until Lock() is called.
+func NewLock(c *Conn, path string, acl []ACL) *Lock {
+	return &Lock{
+		c:    c,
+		path: path,
+		acl:  acl,
+	}
+}
+
+func parseSeq(path string) (int, error) {
+	parts := strings.Split(path, "-")
+	return strconv.Atoi(parts[len(parts)-1])
+}
+
+// Lock attempts to acquire the lock. It will wait to return until the lock
+// is acquired or an error occurs. If this instance already has the lock
+// then ErrDeadlock is returned.
+func (l *Lock) Lock() error {
+	if l.lockPath != "" {
+		return ErrDeadlock
+	}
+
+	prefix := fmt.Sprintf("%s/lock-", l.path)
+
+	path := ""
+	var err error
+	for i := 0; i < 3; i++ {
+		path, err = l.c.CreateProtectedEphemeralSequential(prefix, []byte{}, l.acl)
+		if err == ErrNoNode {
+			// Create parent node.
+			parts := strings.Split(l.path, "/")
+			pth := ""
+			for _, p := range parts[1:] {
+				var exists bool
+				pth += "/" + p
+				exists, _, err = l.c.Exists(pth)
+				if err != nil {
+					return err
+				}
+				if exists == true {
+					continue
+				}
+				_, err = l.c.Create(pth, []byte{}, 0, l.acl)
+				if err != nil && err != ErrNodeExists {
+					return err
+				}
+			}
+		} else if err == nil {
+			break
+		} else {
+			return err
+		}
+	}
+	if err != nil {
+		return err
+	}
+
+	seq, err := parseSeq(path)
+	if err != nil {
+		return err
+	}
+
+	for {
+		children, _, err := l.c.Children(l.path)
+		if err != nil {
+			return err
+		}
+
+		lowestSeq := seq
+		prevSeq := -1
+		prevSeqPath := ""
+		for _, p := range children {
+			s, err := parseSeq(p)
+			if err != nil {
+				return err
+			}
+			if s < lowestSeq {
+				lowestSeq = s
+			}
+			if s < seq && s > prevSeq {
+				prevSeq = s
+				prevSeqPath = p
+			}
+		}
+
+		if seq == lowestSeq {
+			// Acquired the lock
+			break
+		}
+
+		// Wait on the node next in line for the lock
+		_, _, ch, err := l.c.GetW(l.path + "/" + prevSeqPath)
+		if err != nil && err != ErrNoNode {
+			return err
+		} else if err != nil && err == ErrNoNode {
+			// try again
+			continue
+		}
+
+		ev := <-ch
+		if ev.Err != nil {
+			return ev.Err
+		}
+	}
+
+	l.seq = seq
+	l.lockPath = path
+	return nil
+}
+
+// Unlock releases an acquired lock. If the lock is not currently acquired by
+// this Lock instance than ErrNotLocked is returned.
+func (l *Lock) Unlock() error {
+	if l.lockPath == "" {
+		return ErrNotLocked
+	}
+	if err := l.c.Delete(l.lockPath, -1); err != nil {
+		return err
+	}
+	l.lockPath = ""
+	l.seq = 0
+	return nil
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/server_help.go b/vendor/github.com/samuel/go-zookeeper/zk/server_help.go
new file mode 100644
index 0000000000..3663064cae
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/server_help.go
@@ -0,0 +1,216 @@
+package zk
+
+import (
+	"fmt"
+	"io"
+	"io/ioutil"
+	"math/rand"
+	"os"
+	"path/filepath"
+	"strings"
+	"time"
+)
+
+func init() {
+	rand.Seed(time.Now().UnixNano())
+}
+
+type TestServer struct {
+	Port int
+	Path string
+	Srv  *Server
+}
+
+type TestCluster struct {
+	Path    string
+	Servers []TestServer
+}
+
+func StartTestCluster(size int, stdout, stderr io.Writer) (*TestCluster, error) {
+	tmpPath, err := ioutil.TempDir("", "gozk")
+	if err != nil {
+		return nil, err
+	}
+	success := false
+	startPort := int(rand.Int31n(6000) + 10000)
+	cluster := &TestCluster{Path: tmpPath}
+	defer func() {
+		if !success {
+			cluster.Stop()
+		}
+	}()
+	for serverN := 0; serverN < size; serverN++ {
+		srvPath := filepath.Join(tmpPath, fmt.Sprintf("srv%d", serverN))
+		if err := os.Mkdir(srvPath, 0700); err != nil {
+			return nil, err
+		}
+		port := startPort + serverN*3
+		cfg := ServerConfig{
+			ClientPort: port,
+			DataDir:    srvPath,
+		}
+		for i := 0; i < size; i++ {
+			cfg.Servers = append(cfg.Servers, ServerConfigServer{
+				ID:                 i + 1,
+				Host:               "127.0.0.1",
+				PeerPort:           startPort + i*3 + 1,
+				LeaderElectionPort: startPort + i*3 + 2,
+			})
+		}
+		cfgPath := filepath.Join(srvPath, "zoo.cfg")
+		fi, err := os.Create(cfgPath)
+		if err != nil {
+			return nil, err
+		}
+		err = cfg.Marshall(fi)
+		fi.Close()
+		if err != nil {
+			return nil, err
+		}
+
+		fi, err = os.Create(filepath.Join(srvPath, "myid"))
+		if err != nil {
+			return nil, err
+		}
+		_, err = fmt.Fprintf(fi, "%d\n", serverN+1)
+		fi.Close()
+		if err != nil {
+			return nil, err
+		}
+
+		srv := &Server{
+			ConfigPath: cfgPath,
+			Stdout:     stdout,
+			Stderr:     stderr,
+		}
+		if err := srv.Start(); err != nil {
+			return nil, err
+		}
+		cluster.Servers = append(cluster.Servers, TestServer{
+			Path: srvPath,
+			Port: cfg.ClientPort,
+			Srv:  srv,
+		})
+	}
+	if err := cluster.waitForStart(10, time.Second); err != nil {
+		return nil, err
+	}
+	success = true
+	return cluster, nil
+}
+
+func (tc *TestCluster) Connect(idx int) (*Conn, error) {
+	zk, _, err := Connect([]string{fmt.Sprintf("127.0.0.1:%d", tc.Servers[idx].Port)}, time.Second*15)
+	return zk, err
+}
+
+func (tc *TestCluster) ConnectAll() (*Conn, <-chan Event, error) {
+	return tc.ConnectAllTimeout(time.Second * 15)
+}
+
+func (tc *TestCluster) ConnectAllTimeout(sessionTimeout time.Duration) (*Conn, <-chan Event, error) {
+	return tc.ConnectWithOptions(sessionTimeout)
+}
+
+func (tc *TestCluster) ConnectWithOptions(sessionTimeout time.Duration, options ...connOption) (*Conn, <-chan Event, error) {
+	hosts := make([]string, len(tc.Servers))
+	for i, srv := range tc.Servers {
+		hosts[i] = fmt.Sprintf("127.0.0.1:%d", srv.Port)
+	}
+	zk, ch, err := Connect(hosts, sessionTimeout, options...)
+	return zk, ch, err
+}
+
+func (tc *TestCluster) Stop() error {
+	for _, srv := range tc.Servers {
+		srv.Srv.Stop()
+	}
+	defer os.RemoveAll(tc.Path)
+	return tc.waitForStop(5, time.Second)
+}
+
+// waitForStart blocks until the cluster is up
+func (tc *TestCluster) waitForStart(maxRetry int, interval time.Duration) error {
+	// verify that the servers are up with SRVR
+	serverAddrs := make([]string, len(tc.Servers))
+	for i, s := range tc.Servers {
+		serverAddrs[i] = fmt.Sprintf("127.0.0.1:%d", s.Port)
+	}
+
+	for i := 0; i < maxRetry; i++ {
+		_, ok := FLWSrvr(serverAddrs, time.Second)
+		if ok {
+			return nil
+		}
+		time.Sleep(interval)
+	}
+	return fmt.Errorf("unable to verify health of servers")
+}
+
+// waitForStop blocks until the cluster is down
+func (tc *TestCluster) waitForStop(maxRetry int, interval time.Duration) error {
+	// verify that the servers are up with RUOK
+	serverAddrs := make([]string, len(tc.Servers))
+	for i, s := range tc.Servers {
+		serverAddrs[i] = fmt.Sprintf("127.0.0.1:%d", s.Port)
+	}
+
+	var success bool
+	for i := 0; i < maxRetry && !success; i++ {
+		success = true
+		for _, ok := range FLWRuok(serverAddrs, time.Second) {
+			if ok {
+				success = false
+			}
+		}
+		if !success {
+			time.Sleep(interval)
+		}
+	}
+	if !success {
+		return fmt.Errorf("unable to verify servers are down")
+	}
+	return nil
+}
+
+func (tc *TestCluster) StartServer(server string) {
+	for _, s := range tc.Servers {
+		if strings.HasSuffix(server, fmt.Sprintf(":%d", s.Port)) {
+			s.Srv.Start()
+			return
+		}
+	}
+	panic(fmt.Sprintf("Unknown server: %s", server))
+}
+
+func (tc *TestCluster) StopServer(server string) {
+	for _, s := range tc.Servers {
+		if strings.HasSuffix(server, fmt.Sprintf(":%d", s.Port)) {
+			s.Srv.Stop()
+			return
+		}
+	}
+	panic(fmt.Sprintf("Unknown server: %s", server))
+}
+
+func (tc *TestCluster) StartAllServers() error {
+	for _, s := range tc.Servers {
+		if err := s.Srv.Start(); err != nil {
+			return fmt.Errorf(
+				"Failed to start server listening on port `%d` : %+v", s.Port, err)
+		}
+	}
+
+	return nil
+}
+
+func (tc *TestCluster) StopAllServers() error {
+	for _, s := range tc.Servers {
+		if err := s.Srv.Stop(); err != nil {
+			return fmt.Errorf(
+				"Failed to stop server listening on port `%d` : %+v", s.Port, err)
+		}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/server_java.go b/vendor/github.com/samuel/go-zookeeper/zk/server_java.go
new file mode 100644
index 0000000000..e553ec1d9f
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/server_java.go
@@ -0,0 +1,136 @@
+package zk
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"os/exec"
+	"path/filepath"
+)
+
+type ErrMissingServerConfigField string
+
+func (e ErrMissingServerConfigField) Error() string {
+	return fmt.Sprintf("zk: missing server config field '%s'", string(e))
+}
+
+const (
+	DefaultServerTickTime                 = 2000
+	DefaultServerInitLimit                = 10
+	DefaultServerSyncLimit                = 5
+	DefaultServerAutoPurgeSnapRetainCount = 3
+	DefaultPeerPort                       = 2888
+	DefaultLeaderElectionPort             = 3888
+)
+
+type ServerConfigServer struct {
+	ID                 int
+	Host               string
+	PeerPort           int
+	LeaderElectionPort int
+}
+
+type ServerConfig struct {
+	TickTime                 int    // Number of milliseconds of each tick
+	InitLimit                int    // Number of ticks that the initial synchronization phase can take
+	SyncLimit                int    // Number of ticks that can pass between sending a request and getting an acknowledgement
+	DataDir                  string // Direcrory where the snapshot is stored
+	ClientPort               int    // Port at which clients will connect
+	AutoPurgeSnapRetainCount int    // Number of snapshots to retain in dataDir
+	AutoPurgePurgeInterval   int    // Purge task internal in hours (0 to disable auto purge)
+	Servers                  []ServerConfigServer
+}
+
+func (sc ServerConfig) Marshall(w io.Writer) error {
+	if sc.DataDir == "" {
+		return ErrMissingServerConfigField("dataDir")
+	}
+	fmt.Fprintf(w, "dataDir=%s\n", sc.DataDir)
+	if sc.TickTime <= 0 {
+		sc.TickTime = DefaultServerTickTime
+	}
+	fmt.Fprintf(w, "tickTime=%d\n", sc.TickTime)
+	if sc.InitLimit <= 0 {
+		sc.InitLimit = DefaultServerInitLimit
+	}
+	fmt.Fprintf(w, "initLimit=%d\n", sc.InitLimit)
+	if sc.SyncLimit <= 0 {
+		sc.SyncLimit = DefaultServerSyncLimit
+	}
+	fmt.Fprintf(w, "syncLimit=%d\n", sc.SyncLimit)
+	if sc.ClientPort <= 0 {
+		sc.ClientPort = DefaultPort
+	}
+	fmt.Fprintf(w, "clientPort=%d\n", sc.ClientPort)
+	if sc.AutoPurgePurgeInterval > 0 {
+		if sc.AutoPurgeSnapRetainCount <= 0 {
+			sc.AutoPurgeSnapRetainCount = DefaultServerAutoPurgeSnapRetainCount
+		}
+		fmt.Fprintf(w, "autopurge.snapRetainCount=%d\n", sc.AutoPurgeSnapRetainCount)
+		fmt.Fprintf(w, "autopurge.purgeInterval=%d\n", sc.AutoPurgePurgeInterval)
+	}
+	if len(sc.Servers) > 0 {
+		for _, srv := range sc.Servers {
+			if srv.PeerPort <= 0 {
+				srv.PeerPort = DefaultPeerPort
+			}
+			if srv.LeaderElectionPort <= 0 {
+				srv.LeaderElectionPort = DefaultLeaderElectionPort
+			}
+			fmt.Fprintf(w, "server.%d=%s:%d:%d\n", srv.ID, srv.Host, srv.PeerPort, srv.LeaderElectionPort)
+		}
+	}
+	return nil
+}
+
+var jarSearchPaths = []string{
+	"zookeeper-*/contrib/fatjar/zookeeper-*-fatjar.jar",
+	"../zookeeper-*/contrib/fatjar/zookeeper-*-fatjar.jar",
+	"/usr/share/java/zookeeper-*.jar",
+	"/usr/local/zookeeper-*/contrib/fatjar/zookeeper-*-fatjar.jar",
+	"/usr/local/Cellar/zookeeper/*/libexec/contrib/fatjar/zookeeper-*-fatjar.jar",
+}
+
+func findZookeeperFatJar() string {
+	var paths []string
+	zkPath := os.Getenv("ZOOKEEPER_PATH")
+	if zkPath == "" {
+		paths = jarSearchPaths
+	} else {
+		paths = []string{filepath.Join(zkPath, "contrib/fatjar/zookeeper-*-fatjar.jar")}
+	}
+	for _, path := range paths {
+		matches, _ := filepath.Glob(path)
+		// TODO: could sort by version and pick latest
+		if len(matches) > 0 {
+			return matches[0]
+		}
+	}
+	return ""
+}
+
+type Server struct {
+	JarPath        string
+	ConfigPath     string
+	Stdout, Stderr io.Writer
+
+	cmd *exec.Cmd
+}
+
+func (srv *Server) Start() error {
+	if srv.JarPath == "" {
+		srv.JarPath = findZookeeperFatJar()
+		if srv.JarPath == "" {
+			return fmt.Errorf("zk: unable to find server jar")
+		}
+	}
+	srv.cmd = exec.Command("java", "-jar", srv.JarPath, "server", srv.ConfigPath)
+	srv.cmd.Stdout = srv.Stdout
+	srv.cmd.Stderr = srv.Stderr
+	return srv.cmd.Start()
+}
+
+func (srv *Server) Stop() error {
+	srv.cmd.Process.Signal(os.Kill)
+	return srv.cmd.Wait()
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/structs.go b/vendor/github.com/samuel/go-zookeeper/zk/structs.go
new file mode 100644
index 0000000000..d4af27deaa
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/structs.go
@@ -0,0 +1,609 @@
+package zk
+
+import (
+	"encoding/binary"
+	"errors"
+	"log"
+	"reflect"
+	"runtime"
+	"time"
+)
+
+var (
+	ErrUnhandledFieldType = errors.New("zk: unhandled field type")
+	ErrPtrExpected        = errors.New("zk: encode/decode expect a non-nil pointer to struct")
+	ErrShortBuffer        = errors.New("zk: buffer too small")
+)
+
+type defaultLogger struct{}
+
+func (defaultLogger) Printf(format string, a ...interface{}) {
+	log.Printf(format, a...)
+}
+
+type ACL struct {
+	Perms  int32
+	Scheme string
+	ID     string
+}
+
+type Stat struct {
+	Czxid          int64 // The zxid of the change that caused this znode to be created.
+	Mzxid          int64 // The zxid of the change that last modified this znode.
+	Ctime          int64 // The time in milliseconds from epoch when this znode was created.
+	Mtime          int64 // The time in milliseconds from epoch when this znode was last modified.
+	Version        int32 // The number of changes to the data of this znode.
+	Cversion       int32 // The number of changes to the children of this znode.
+	Aversion       int32 // The number of changes to the ACL of this znode.
+	EphemeralOwner int64 // The session id of the owner of this znode if the znode is an ephemeral node. If it is not an ephemeral node, it will be zero.
+	DataLength     int32 // The length of the data field of this znode.
+	NumChildren    int32 // The number of children of this znode.
+	Pzxid          int64 // last modified children
+}
+
+// ServerClient is the information for a single Zookeeper client and its session.
+// This is used to parse/extract the output fo the `cons` command.
+type ServerClient struct {
+	Queued        int64
+	Received      int64
+	Sent          int64
+	SessionID     int64
+	Lcxid         int64
+	Lzxid         int64
+	Timeout       int32
+	LastLatency   int32
+	MinLatency    int32
+	AvgLatency    int32
+	MaxLatency    int32
+	Established   time.Time
+	LastResponse  time.Time
+	Addr          string
+	LastOperation string // maybe?
+	Error         error
+}
+
+// ServerClients is a struct for the FLWCons() function. It's used to provide
+// the list of Clients.
+//
+// This is needed because FLWCons() takes multiple servers.
+type ServerClients struct {
+	Clients []*ServerClient
+	Error   error
+}
+
+// ServerStats is the information pulled from the Zookeeper `stat` command.
+type ServerStats struct {
+	Sent        int64
+	Received    int64
+	NodeCount   int64
+	MinLatency  int64
+	AvgLatency  int64
+	MaxLatency  int64
+	Connections int64
+	Outstanding int64
+	Epoch       int32
+	Counter     int32
+	BuildTime   time.Time
+	Mode        Mode
+	Version     string
+	Error       error
+}
+
+type requestHeader struct {
+	Xid    int32
+	Opcode int32
+}
+
+type responseHeader struct {
+	Xid  int32
+	Zxid int64
+	Err  ErrCode
+}
+
+type multiHeader struct {
+	Type int32
+	Done bool
+	Err  ErrCode
+}
+
+type auth struct {
+	Type   int32
+	Scheme string
+	Auth   []byte
+}
+
+// Generic request structs
+
+type pathRequest struct {
+	Path string
+}
+
+type PathVersionRequest struct {
+	Path    string
+	Version int32
+}
+
+type pathWatchRequest struct {
+	Path  string
+	Watch bool
+}
+
+type pathResponse struct {
+	Path string
+}
+
+type statResponse struct {
+	Stat Stat
+}
+
+//
+
+type CheckVersionRequest PathVersionRequest
+type closeRequest struct{}
+type closeResponse struct{}
+
+type connectRequest struct {
+	ProtocolVersion int32
+	LastZxidSeen    int64
+	TimeOut         int32
+	SessionID       int64
+	Passwd          []byte
+}
+
+type connectResponse struct {
+	ProtocolVersion int32
+	TimeOut         int32
+	SessionID       int64
+	Passwd          []byte
+}
+
+type CreateRequest struct {
+	Path  string
+	Data  []byte
+	Acl   []ACL
+	Flags int32
+}
+
+type createResponse pathResponse
+type DeleteRequest PathVersionRequest
+type deleteResponse struct{}
+
+type errorResponse struct {
+	Err int32
+}
+
+type existsRequest pathWatchRequest
+type existsResponse statResponse
+type getAclRequest pathRequest
+
+type getAclResponse struct {
+	Acl  []ACL
+	Stat Stat
+}
+
+type getChildrenRequest pathRequest
+
+type getChildrenResponse struct {
+	Children []string
+}
+
+type getChildren2Request pathWatchRequest
+
+type getChildren2Response struct {
+	Children []string
+	Stat     Stat
+}
+
+type getDataRequest pathWatchRequest
+
+type getDataResponse struct {
+	Data []byte
+	Stat Stat
+}
+
+type getMaxChildrenRequest pathRequest
+
+type getMaxChildrenResponse struct {
+	Max int32
+}
+
+type getSaslRequest struct {
+	Token []byte
+}
+
+type pingRequest struct{}
+type pingResponse struct{}
+
+type setAclRequest struct {
+	Path    string
+	Acl     []ACL
+	Version int32
+}
+
+type setAclResponse statResponse
+
+type SetDataRequest struct {
+	Path    string
+	Data    []byte
+	Version int32
+}
+
+type setDataResponse statResponse
+
+type setMaxChildren struct {
+	Path string
+	Max  int32
+}
+
+type setSaslRequest struct {
+	Token string
+}
+
+type setSaslResponse struct {
+	Token string
+}
+
+type setWatchesRequest struct {
+	RelativeZxid int64
+	DataWatches  []string
+	ExistWatches []string
+	ChildWatches []string
+}
+
+type setWatchesResponse struct{}
+
+type syncRequest pathRequest
+type syncResponse pathResponse
+
+type setAuthRequest auth
+type setAuthResponse struct{}
+
+type multiRequestOp struct {
+	Header multiHeader
+	Op     interface{}
+}
+type multiRequest struct {
+	Ops        []multiRequestOp
+	DoneHeader multiHeader
+}
+type multiResponseOp struct {
+	Header multiHeader
+	String string
+	Stat   *Stat
+	Err    ErrCode
+}
+type multiResponse struct {
+	Ops        []multiResponseOp
+	DoneHeader multiHeader
+}
+
+func (r *multiRequest) Encode(buf []byte) (int, error) {
+	total := 0
+	for _, op := range r.Ops {
+		op.Header.Done = false
+		n, err := encodePacketValue(buf[total:], reflect.ValueOf(op))
+		if err != nil {
+			return total, err
+		}
+		total += n
+	}
+	r.DoneHeader.Done = true
+	n, err := encodePacketValue(buf[total:], reflect.ValueOf(r.DoneHeader))
+	if err != nil {
+		return total, err
+	}
+	total += n
+
+	return total, nil
+}
+
+func (r *multiRequest) Decode(buf []byte) (int, error) {
+	r.Ops = make([]multiRequestOp, 0)
+	r.DoneHeader = multiHeader{-1, true, -1}
+	total := 0
+	for {
+		header := &multiHeader{}
+		n, err := decodePacketValue(buf[total:], reflect.ValueOf(header))
+		if err != nil {
+			return total, err
+		}
+		total += n
+		if header.Done {
+			r.DoneHeader = *header
+			break
+		}
+
+		req := requestStructForOp(header.Type)
+		if req == nil {
+			return total, ErrAPIError
+		}
+		n, err = decodePacketValue(buf[total:], reflect.ValueOf(req))
+		if err != nil {
+			return total, err
+		}
+		total += n
+		r.Ops = append(r.Ops, multiRequestOp{*header, req})
+	}
+	return total, nil
+}
+
+func (r *multiResponse) Decode(buf []byte) (int, error) {
+	var multiErr error
+
+	r.Ops = make([]multiResponseOp, 0)
+	r.DoneHeader = multiHeader{-1, true, -1}
+	total := 0
+	for {
+		header := &multiHeader{}
+		n, err := decodePacketValue(buf[total:], reflect.ValueOf(header))
+		if err != nil {
+			return total, err
+		}
+		total += n
+		if header.Done {
+			r.DoneHeader = *header
+			break
+		}
+
+		res := multiResponseOp{Header: *header}
+		var w reflect.Value
+		switch header.Type {
+		default:
+			return total, ErrAPIError
+		case opError:
+			w = reflect.ValueOf(&res.Err)
+		case opCreate:
+			w = reflect.ValueOf(&res.String)
+		case opSetData:
+			res.Stat = new(Stat)
+			w = reflect.ValueOf(res.Stat)
+		case opCheck, opDelete:
+		}
+		if w.IsValid() {
+			n, err := decodePacketValue(buf[total:], w)
+			if err != nil {
+				return total, err
+			}
+			total += n
+		}
+		r.Ops = append(r.Ops, res)
+		if multiErr == nil && res.Err != errOk {
+			// Use the first error as the error returned from Multi().
+			multiErr = res.Err.toError()
+		}
+	}
+	return total, multiErr
+}
+
+type watcherEvent struct {
+	Type  EventType
+	State State
+	Path  string
+}
+
+type decoder interface {
+	Decode(buf []byte) (int, error)
+}
+
+type encoder interface {
+	Encode(buf []byte) (int, error)
+}
+
+func decodePacket(buf []byte, st interface{}) (n int, err error) {
+	defer func() {
+		if r := recover(); r != nil {
+			if e, ok := r.(runtime.Error); ok && e.Error() == "runtime error: slice bounds out of range" {
+				err = ErrShortBuffer
+			} else {
+				panic(r)
+			}
+		}
+	}()
+
+	v := reflect.ValueOf(st)
+	if v.Kind() != reflect.Ptr || v.IsNil() {
+		return 0, ErrPtrExpected
+	}
+	return decodePacketValue(buf, v)
+}
+
+func decodePacketValue(buf []byte, v reflect.Value) (int, error) {
+	rv := v
+	kind := v.Kind()
+	if kind == reflect.Ptr {
+		if v.IsNil() {
+			v.Set(reflect.New(v.Type().Elem()))
+		}
+		v = v.Elem()
+		kind = v.Kind()
+	}
+
+	n := 0
+	switch kind {
+	default:
+		return n, ErrUnhandledFieldType
+	case reflect.Struct:
+		if de, ok := rv.Interface().(decoder); ok {
+			return de.Decode(buf)
+		} else if de, ok := v.Interface().(decoder); ok {
+			return de.Decode(buf)
+		} else {
+			for i := 0; i < v.NumField(); i++ {
+				field := v.Field(i)
+				n2, err := decodePacketValue(buf[n:], field)
+				n += n2
+				if err != nil {
+					return n, err
+				}
+			}
+		}
+	case reflect.Bool:
+		v.SetBool(buf[n] != 0)
+		n++
+	case reflect.Int32:
+		v.SetInt(int64(binary.BigEndian.Uint32(buf[n : n+4])))
+		n += 4
+	case reflect.Int64:
+		v.SetInt(int64(binary.BigEndian.Uint64(buf[n : n+8])))
+		n += 8
+	case reflect.String:
+		ln := int(binary.BigEndian.Uint32(buf[n : n+4]))
+		v.SetString(string(buf[n+4 : n+4+ln]))
+		n += 4 + ln
+	case reflect.Slice:
+		switch v.Type().Elem().Kind() {
+		default:
+			count := int(binary.BigEndian.Uint32(buf[n : n+4]))
+			n += 4
+			values := reflect.MakeSlice(v.Type(), count, count)
+			v.Set(values)
+			for i := 0; i < count; i++ {
+				n2, err := decodePacketValue(buf[n:], values.Index(i))
+				n += n2
+				if err != nil {
+					return n, err
+				}
+			}
+		case reflect.Uint8:
+			ln := int(int32(binary.BigEndian.Uint32(buf[n : n+4])))
+			if ln < 0 {
+				n += 4
+				v.SetBytes(nil)
+			} else {
+				bytes := make([]byte, ln)
+				copy(bytes, buf[n+4:n+4+ln])
+				v.SetBytes(bytes)
+				n += 4 + ln
+			}
+		}
+	}
+	return n, nil
+}
+
+func encodePacket(buf []byte, st interface{}) (n int, err error) {
+	defer func() {
+		if r := recover(); r != nil {
+			if e, ok := r.(runtime.Error); ok && e.Error() == "runtime error: slice bounds out of range" {
+				err = ErrShortBuffer
+			} else {
+				panic(r)
+			}
+		}
+	}()
+
+	v := reflect.ValueOf(st)
+	if v.Kind() != reflect.Ptr || v.IsNil() {
+		return 0, ErrPtrExpected
+	}
+	return encodePacketValue(buf, v)
+}
+
+func encodePacketValue(buf []byte, v reflect.Value) (int, error) {
+	rv := v
+	for v.Kind() == reflect.Ptr || v.Kind() == reflect.Interface {
+		v = v.Elem()
+	}
+
+	n := 0
+	switch v.Kind() {
+	default:
+		return n, ErrUnhandledFieldType
+	case reflect.Struct:
+		if en, ok := rv.Interface().(encoder); ok {
+			return en.Encode(buf)
+		} else if en, ok := v.Interface().(encoder); ok {
+			return en.Encode(buf)
+		} else {
+			for i := 0; i < v.NumField(); i++ {
+				field := v.Field(i)
+				n2, err := encodePacketValue(buf[n:], field)
+				n += n2
+				if err != nil {
+					return n, err
+				}
+			}
+		}
+	case reflect.Bool:
+		if v.Bool() {
+			buf[n] = 1
+		} else {
+			buf[n] = 0
+		}
+		n++
+	case reflect.Int32:
+		binary.BigEndian.PutUint32(buf[n:n+4], uint32(v.Int()))
+		n += 4
+	case reflect.Int64:
+		binary.BigEndian.PutUint64(buf[n:n+8], uint64(v.Int()))
+		n += 8
+	case reflect.String:
+		str := v.String()
+		binary.BigEndian.PutUint32(buf[n:n+4], uint32(len(str)))
+		copy(buf[n+4:n+4+len(str)], []byte(str))
+		n += 4 + len(str)
+	case reflect.Slice:
+		switch v.Type().Elem().Kind() {
+		default:
+			count := v.Len()
+			startN := n
+			n += 4
+			for i := 0; i < count; i++ {
+				n2, err := encodePacketValue(buf[n:], v.Index(i))
+				n += n2
+				if err != nil {
+					return n, err
+				}
+			}
+			binary.BigEndian.PutUint32(buf[startN:startN+4], uint32(count))
+		case reflect.Uint8:
+			if v.IsNil() {
+				binary.BigEndian.PutUint32(buf[n:n+4], uint32(0xffffffff))
+				n += 4
+			} else {
+				bytes := v.Bytes()
+				binary.BigEndian.PutUint32(buf[n:n+4], uint32(len(bytes)))
+				copy(buf[n+4:n+4+len(bytes)], bytes)
+				n += 4 + len(bytes)
+			}
+		}
+	}
+	return n, nil
+}
+
+func requestStructForOp(op int32) interface{} {
+	switch op {
+	case opClose:
+		return &closeRequest{}
+	case opCreate:
+		return &CreateRequest{}
+	case opDelete:
+		return &DeleteRequest{}
+	case opExists:
+		return &existsRequest{}
+	case opGetAcl:
+		return &getAclRequest{}
+	case opGetChildren:
+		return &getChildrenRequest{}
+	case opGetChildren2:
+		return &getChildren2Request{}
+	case opGetData:
+		return &getDataRequest{}
+	case opPing:
+		return &pingRequest{}
+	case opSetAcl:
+		return &setAclRequest{}
+	case opSetData:
+		return &SetDataRequest{}
+	case opSetWatches:
+		return &setWatchesRequest{}
+	case opSync:
+		return &syncRequest{}
+	case opSetAuth:
+		return &setAuthRequest{}
+	case opCheck:
+		return &CheckVersionRequest{}
+	case opMulti:
+		return &multiRequest{}
+	}
+	return nil
+}
diff --git a/vendor/github.com/samuel/go-zookeeper/zk/util.go b/vendor/github.com/samuel/go-zookeeper/zk/util.go
new file mode 100644
index 0000000000..f40a5b1561
--- /dev/null
+++ b/vendor/github.com/samuel/go-zookeeper/zk/util.go
@@ -0,0 +1,116 @@
+package zk
+
+import (
+	"crypto/sha1"
+	"encoding/base64"
+	"fmt"
+	"math/rand"
+	"strconv"
+	"strings"
+	"unicode/utf8"
+)
+
+// AuthACL produces an ACL list containing a single ACL which uses the
+// provided permissions, with the scheme "auth", and ID "", which is used
+// by ZooKeeper to represent any authenticated user.
+func AuthACL(perms int32) []ACL {
+	return []ACL{{perms, "auth", ""}}
+}
+
+// WorldACL produces an ACL list containing a single ACL which uses the
+// provided permissions, with the scheme "world", and ID "anyone", which
+// is used by ZooKeeper to represent any user at all.
+func WorldACL(perms int32) []ACL {
+	return []ACL{{perms, "world", "anyone"}}
+}
+
+func DigestACL(perms int32, user, password string) []ACL {
+	userPass := []byte(fmt.Sprintf("%s:%s", user, password))
+	h := sha1.New()
+	if n, err := h.Write(userPass); err != nil || n != len(userPass) {
+		panic("SHA1 failed")
+	}
+	digest := base64.StdEncoding.EncodeToString(h.Sum(nil))
+	return []ACL{{perms, "digest", fmt.Sprintf("%s:%s", user, digest)}}
+}
+
+// FormatServers takes a slice of addresses, and makes sure they are in a format
+// that resembles <addr>:<port>. If the server has no port provided, the
+// DefaultPort constant is added to the end.
+func FormatServers(servers []string) []string {
+	for i := range servers {
+		if !strings.Contains(servers[i], ":") {
+			servers[i] = servers[i] + ":" + strconv.Itoa(DefaultPort)
+		}
+	}
+	return servers
+}
+
+// stringShuffle performs a Fisher-Yates shuffle on a slice of strings
+func stringShuffle(s []string) {
+	for i := len(s) - 1; i > 0; i-- {
+		j := rand.Intn(i + 1)
+		s[i], s[j] = s[j], s[i]
+	}
+}
+
+// validatePath will make sure a path is valid before sending the request
+func validatePath(path string, isSequential bool) error {
+	if path == "" {
+		return ErrInvalidPath
+	}
+
+	if path[0] != '/' {
+		return ErrInvalidPath
+	}
+
+	n := len(path)
+	if n == 1 {
+		// path is just the root
+		return nil
+	}
+
+	if !isSequential && path[n-1] == '/' {
+		return ErrInvalidPath
+	}
+
+	// Start at rune 1 since we already know that the first character is
+	// a '/'.
+	for i, w := 1, 0; i < n; i += w {
+		r, width := utf8.DecodeRuneInString(path[i:])
+		switch {
+		case r == '\u0000':
+			return ErrInvalidPath
+		case r == '/':
+			last, _ := utf8.DecodeLastRuneInString(path[:i])
+			if last == '/' {
+				return ErrInvalidPath
+			}
+		case r == '.':
+			last, lastWidth := utf8.DecodeLastRuneInString(path[:i])
+
+			// Check for double dot
+			if last == '.' {
+				last, _ = utf8.DecodeLastRuneInString(path[:i-lastWidth])
+			}
+
+			if last == '/' {
+				if i+1 == n {
+					return ErrInvalidPath
+				}
+
+				next, _ := utf8.DecodeRuneInString(path[i+w:])
+				if next == '/' {
+					return ErrInvalidPath
+				}
+			}
+		case r >= '\u0000' && r <= '\u001f',
+			r >= '\u007f' && r <= '\u009f',
+			r >= '\uf000' && r <= '\uf8ff',
+			r >= '\ufff0' && r < '\uffff':
+			return ErrInvalidPath
+		}
+		w = width
+	}
+	return nil
+}
diff --git a/vendor/github.com/sean-/seed/LICENSE b/vendor/github.com/sean-/seed/LICENSE
new file mode 100644
index 0000000000..33d326a371
--- /dev/null
+++ b/vendor/github.com/sean-/seed/LICENSE
@@ -0,0 +1,54 @@
+MIT License
+
+Copyright (c) 2017 Sean Chittenden
+Copyright (c) 2016 Alex Dadgar
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+=====
+
+Bits of Go-lang's `once.Do()` were cribbed and reused here, too.
+
+Copyright (c) 2009 The Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/sean-/seed/init.go b/vendor/github.com/sean-/seed/init.go
new file mode 100644
index 0000000000..248d6b636c
--- /dev/null
+++ b/vendor/github.com/sean-/seed/init.go
@@ -0,0 +1,84 @@
+package seed
+
+import (
+	crand "crypto/rand"
+	"fmt"
+	"math"
+	"math/big"
+	"math/rand"
+	"sync"
+	"sync/atomic"
+	"time"
+)
+
+var (
+	m      sync.Mutex
+	secure int32
+	seeded int32
+)
+
+func cryptoSeed() error {
+	defer atomic.StoreInt32(&seeded, 1)
+
+	var err error
+	var n *big.Int
+	n, err = crand.Int(crand.Reader, big.NewInt(math.MaxInt64))
+	if err != nil {
+		rand.Seed(time.Now().UTC().UnixNano())
+		return err
+	}
+	rand.Seed(n.Int64())
+	atomic.StoreInt32(&secure, 1)
+	return nil
+}
+
+// Init provides best-effort seeding (which is better than running with Go's
+// default seed of 1).  If `/dev/urandom` is available, Init() will seed Go's
+// runtime with entropy from `/dev/urandom` and return true because the runtime
+// was securely seeded.  If Init() has already initialized the random number or
+// it had failed to securely initialize the random number generation, Init()
+// will return false.  See MustInit().
+func Init() (seededSecurely bool, err error) {
+	if atomic.LoadInt32(&seeded) == 1 {
+		return false, nil
+	}
+
+	// Slow-path
+	m.Lock()
+	defer m.Unlock()
+
+	if err := cryptoSeed(); err != nil {
+		return false, err
+	}
+
+	return true, nil
+}
+
+// MustInit provides guaranteed secure seeding.  If `/dev/urandom` is not
+// available, MustInit will panic() with an error indicating why reading from
+// `/dev/urandom` failed.  MustInit() will upgrade the seed if for some reason a
+// call to Init() failed in the past.
+func MustInit() {
+	if atomic.LoadInt32(&secure) == 1 {
+		return
+	}
+
+	// Slow-path
+	m.Lock()
+	defer m.Unlock()
+
+	if err := cryptoSeed(); err != nil {
+		panic(fmt.Sprintf("Unable to seed the random number generator: %v", err))
+	}
+}
+
+// Secure returns true if a cryptographically secure seed was used to
+// initialize rand.
+func Secure() bool {
+	return atomic.LoadInt32(&secure) == 1
+}
+
+// Seeded returns true if Init has seeded the random number generator.
+func Seeded() bool {
+	return atomic.LoadInt32(&seeded) == 1
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/LICENSE b/vendor/github.com/tonistiigi/fsutil/LICENSE
new file mode 100644
index 0000000000..7df441d93e
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/LICENSE
@@ -0,0 +1,22 @@
+MIT
+
+Copyright 2017 Tõnis Tiigi <tonistiigi@gmail.com>
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
\ No newline at end of file
diff --git a/vendor/github.com/tonistiigi/fsutil/chtimes_linux.go b/vendor/github.com/tonistiigi/fsutil/chtimes_linux.go
new file mode 100644
index 0000000000..74f08a15ca
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/chtimes_linux.go
@@ -0,0 +1,20 @@
+// +build linux
+
+package fsutil
+
+import (
+	"github.com/pkg/errors"
+	"golang.org/x/sys/unix"
+)
+
+func chtimes(path string, un int64) error {
+	var utimes [2]unix.Timespec
+	utimes[0] = unix.NsecToTimespec(un)
+	utimes[1] = utimes[0]
+
+	if err := unix.UtimesNanoAt(unix.AT_FDCWD, path, utimes[0:], unix.AT_SYMLINK_NOFOLLOW); err != nil {
+		return errors.Wrap(err, "failed call to UtimesNanoAt")
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/chtimes_nolinux.go b/vendor/github.com/tonistiigi/fsutil/chtimes_nolinux.go
new file mode 100644
index 0000000000..39bfdfee5b
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/chtimes_nolinux.go
@@ -0,0 +1,13 @@
+// +build !linux
+
+package fsutil
+
+import (
+	"os"
+	"time"
+)
+
+func chtimes(path string, un int64) error {
+	mtime := time.Unix(0, un)
+	return os.Chtimes(path, mtime, mtime)
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diff.go b/vendor/github.com/tonistiigi/fsutil/diff.go
new file mode 100644
index 0000000000..6125ef73af
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diff.go
@@ -0,0 +1,44 @@
+package fsutil
+
+import (
+	"hash"
+	"os"
+
+	"golang.org/x/net/context"
+)
+
+type walkerFn func(ctx context.Context, pathC chan<- *currentPath) error
+
+func Changes(ctx context.Context, a, b walkerFn, changeFn ChangeFunc) error {
+	return nil
+}
+
+type HandleChangeFn func(ChangeKind, string, os.FileInfo, error) error
+
+type ContentHasher func(*Stat) (hash.Hash, error)
+
+func GetWalkerFn(root string) walkerFn {
+	return func(ctx context.Context, pathC chan<- *currentPath) error {
+		return Walk(ctx, root, nil, func(path string, f os.FileInfo, err error) error {
+			if err != nil {
+				return err
+			}
+
+			p := &currentPath{
+				path: path,
+				f:    f,
+			}
+
+			select {
+			case <-ctx.Done():
+				return ctx.Err()
+			case pathC <- p:
+				return nil
+			}
+		})
+	}
+}
+
+func emptyWalker(ctx context.Context, pathC chan<- *currentPath) error {
+	return nil
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diff_containerd.go b/vendor/github.com/tonistiigi/fsutil/diff_containerd.go
new file mode 100644
index 0000000000..c7c9788e85
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diff_containerd.go
@@ -0,0 +1,199 @@
+package fsutil
+
+import (
+	"os"
+	"strings"
+
+	"golang.org/x/net/context"
+	"golang.org/x/sync/errgroup"
+)
+
+// Everything below is copied from containerd/fs. TODO: remove duplication @dmcgowan
+
+// Const redefined because containerd/fs doesn't build on !linux
+
+// ChangeKind is the type of modification that
+// a change is making.
+type ChangeKind int
+
+const (
+	// ChangeKindAdd represents an addition of
+	// a file
+	ChangeKindAdd ChangeKind = iota
+
+	// ChangeKindModify represents a change to
+	// an existing file
+	ChangeKindModify
+
+	// ChangeKindDelete represents a delete of
+	// a file
+	ChangeKindDelete
+)
+
+// ChangeFunc is the type of function called for each change
+// computed during a directory changes calculation.
+type ChangeFunc func(ChangeKind, string, os.FileInfo, error) error
+
+type currentPath struct {
+	path string
+	f    os.FileInfo
+	//	fullPath string
+}
+
+// doubleWalkDiff walks both directories to create a diff
+func doubleWalkDiff(ctx context.Context, changeFn ChangeFunc, a, b walkerFn) (err error) {
+	g, ctx := errgroup.WithContext(ctx)
+
+	var (
+		c1 = make(chan *currentPath, 128)
+		c2 = make(chan *currentPath, 128)
+
+		f1, f2 *currentPath
+		rmdir  string
+	)
+	g.Go(func() error {
+		defer close(c1)
+		return a(ctx, c1)
+	})
+	g.Go(func() error {
+		defer close(c2)
+		return b(ctx, c2)
+	})
+	g.Go(func() error {
+	loop0:
+		for c1 != nil || c2 != nil {
+			if f1 == nil && c1 != nil {
+				f1, err = nextPath(ctx, c1)
+				if err != nil {
+					return err
+				}
+				if f1 == nil {
+					c1 = nil
+				}
+			}
+
+			if f2 == nil && c2 != nil {
+				f2, err = nextPath(ctx, c2)
+				if err != nil {
+					return err
+				}
+				if f2 == nil {
+					c2 = nil
+				}
+			}
+			if f1 == nil && f2 == nil {
+				continue
+			}
+
+			var f os.FileInfo
+			k, p := pathChange(f1, f2)
+			switch k {
+			case ChangeKindAdd:
+				if rmdir != "" {
+					rmdir = ""
+				}
+				f = f2.f
+				f2 = nil
+			case ChangeKindDelete:
+				// Check if this file is already removed by being
+				// under of a removed directory
+				if rmdir != "" && strings.HasPrefix(f1.path, rmdir) {
+					f1 = nil
+					continue
+				} else if rmdir == "" && f1.f.IsDir() {
+					rmdir = f1.path + string(os.PathSeparator)
+				} else if rmdir != "" {
+					rmdir = ""
+				}
+				f1 = nil
+			case ChangeKindModify:
+				same, err := sameFile(f1, f2)
+				if err != nil {
+					return err
+				}
+				if f1.f.IsDir() && !f2.f.IsDir() {
+					rmdir = f1.path + string(os.PathSeparator)
+				} else if rmdir != "" {
+					rmdir = ""
+				}
+				f = f2.f
+				f1 = nil
+				f2 = nil
+				if same {
+					continue loop0
+				}
+			}
+			if err := changeFn(k, p, f, nil); err != nil {
+				return err
+			}
+		}
+		return nil
+	})
+
+	return g.Wait()
+}
+
+func pathChange(lower, upper *currentPath) (ChangeKind, string) {
+	if lower == nil {
+		if upper == nil {
+			panic("cannot compare nil paths")
+		}
+		return ChangeKindAdd, upper.path
+	}
+	if upper == nil {
+		return ChangeKindDelete, lower.path
+	}
+
+	switch i := ComparePath(lower.path, upper.path); {
+	case i < 0:
+		// File in lower that is not in upper
+		return ChangeKindDelete, lower.path
+	case i > 0:
+		// File in upper that is not in lower
+		return ChangeKindAdd, upper.path
+	default:
+		return ChangeKindModify, upper.path
+	}
+}
+
+func sameFile(f1, f2 *currentPath) (same bool, retErr error) {
+	// If not a directory also check size, modtime, and content
+	if !f1.f.IsDir() {
+		if f1.f.Size() != f2.f.Size() {
+			return false, nil
+		}
+
+		t1 := f1.f.ModTime()
+		t2 := f2.f.ModTime()
+		if t1.UnixNano() != t2.UnixNano() {
+			return false, nil
+		}
+	}
+
+	ls1, ok := f1.f.Sys().(*Stat)
+	if !ok {
+		return false, nil
+	}
+	ls2, ok := f1.f.Sys().(*Stat)
+	if !ok {
+		return false, nil
+	}
+
+	return compareStat(ls1, ls2)
+}
+
+// compareStat returns whether the stats are equivalent,
+// whether the files are considered the same file, and
+// an error
+func compareStat(ls1, ls2 *Stat) (bool, error) {
+	return ls1.Mode == ls2.Mode && ls1.Uid == ls2.Uid && ls1.Gid == ls2.Gid && ls1.Devmajor == ls2.Devmajor && ls1.Devminor == ls2.Devminor && ls1.Linkname == ls2.Linkname, nil
+}
+
+func nextPath(ctx context.Context, pathC <-chan *currentPath) (*currentPath, error) {
+	select {
+	case <-ctx.Done():
+		return nil, ctx.Err()
+	case p := <-pathC:
+		return p, nil
+	}
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diff_containerd_linux.go b/vendor/github.com/tonistiigi/fsutil/diff_containerd_linux.go
new file mode 100644
index 0000000000..4ac7ec5ed7
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diff_containerd_linux.go
@@ -0,0 +1,37 @@
+package fsutil
+
+import (
+	"bytes"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+)
+
+// compareSysStat returns whether the stats are equivalent,
+// whether the files are considered the same file, and
+// an error
+func compareSysStat(s1, s2 interface{}) (bool, error) {
+	ls1, ok := s1.(*syscall.Stat_t)
+	if !ok {
+		return false, nil
+	}
+	ls2, ok := s2.(*syscall.Stat_t)
+	if !ok {
+		return false, nil
+	}
+
+	return ls1.Mode == ls2.Mode && ls1.Uid == ls2.Uid && ls1.Gid == ls2.Gid && ls1.Rdev == ls2.Rdev, nil
+}
+
+func compareCapabilities(p1, p2 string) (bool, error) {
+	c1, err := sysx.LGetxattr(p1, "security.capability")
+	if err != nil && err != syscall.ENODATA {
+		return false, errors.Wrapf(err, "failed to get xattr for %s", p1)
+	}
+	c2, err := sysx.LGetxattr(p2, "security.capability")
+	if err != nil && err != syscall.ENODATA {
+		return false, errors.Wrapf(err, "failed to get xattr for %s", p2)
+	}
+	return bytes.Equal(c1, c2), nil
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diskwriter.go b/vendor/github.com/tonistiigi/fsutil/diskwriter.go
new file mode 100644
index 0000000000..e2d034c75e
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diskwriter.go
@@ -0,0 +1,323 @@
+package fsutil
+
+import (
+	"hash"
+	"io"
+	"os"
+	"path/filepath"
+	"strconv"
+	"sync"
+	"time"
+
+	digest "github.com/opencontainers/go-digest"
+	"github.com/pkg/errors"
+	"golang.org/x/net/context"
+	"golang.org/x/sync/errgroup"
+)
+
+type WriteToFunc func(context.Context, string, io.WriteCloser) error
+
+type DiskWriterOpt struct {
+	AsyncDataCb   WriteToFunc
+	SyncDataCb    WriteToFunc
+	NotifyCb      func(ChangeKind, string, os.FileInfo, error) error
+	ContentHasher ContentHasher
+	Filter        FilterFunc
+}
+
+type FilterFunc func(*Stat) bool
+
+type DiskWriter struct {
+	opt  DiskWriterOpt
+	dest string
+
+	wg     sync.WaitGroup
+	ctx    context.Context
+	cancel func()
+	eg     *errgroup.Group
+	filter FilterFunc
+}
+
+func NewDiskWriter(ctx context.Context, dest string, opt DiskWriterOpt) (*DiskWriter, error) {
+	if opt.SyncDataCb == nil && opt.AsyncDataCb == nil {
+		return nil, errors.New("no data callback specified")
+	}
+	if opt.SyncDataCb != nil && opt.AsyncDataCb != nil {
+		return nil, errors.New("can't specify both sync and async data callbacks")
+	}
+
+	ctx, cancel := context.WithCancel(ctx)
+	eg, ctx := errgroup.WithContext(ctx)
+
+	return &DiskWriter{
+		opt:    opt,
+		dest:   dest,
+		eg:     eg,
+		ctx:    ctx,
+		cancel: cancel,
+		filter: opt.Filter,
+	}, nil
+}
+
+func (dw *DiskWriter) Wait(ctx context.Context) error {
+	return dw.eg.Wait()
+}
+
+func (dw *DiskWriter) HandleChange(kind ChangeKind, p string, fi os.FileInfo, err error) (retErr error) {
+	if err != nil {
+		return err
+	}
+
+	select {
+	case <-dw.ctx.Done():
+		return dw.ctx.Err()
+	default:
+	}
+
+	defer func() {
+		if retErr != nil {
+			dw.cancel()
+		}
+	}()
+
+	p = filepath.FromSlash(p)
+
+	destPath := filepath.Join(dw.dest, p)
+
+	if kind == ChangeKindDelete {
+		// todo: no need to validate if diff is trusted but is it always?
+		if err := os.RemoveAll(destPath); err != nil {
+			return errors.Wrapf(err, "failed to remove: %s", destPath)
+		}
+		if dw.opt.NotifyCb != nil {
+			if err := dw.opt.NotifyCb(kind, p, nil, nil); err != nil {
+				return err
+			}
+		}
+		return nil
+	}
+
+	stat, ok := fi.Sys().(*Stat)
+	if !ok {
+		return errors.Errorf("%s invalid change without stat information", p)
+	}
+
+	if dw.filter != nil {
+		if ok := dw.filter(stat); !ok {
+			return nil
+		}
+	}
+
+	rename := true
+	oldFi, err := os.Lstat(destPath)
+	if err != nil {
+		if os.IsNotExist(err) {
+			if kind != ChangeKindAdd {
+				return errors.Wrapf(err, "invalid addition: %s", destPath)
+			}
+			rename = false
+		} else {
+			return errors.Wrapf(err, "failed to stat %s", destPath)
+		}
+	}
+
+	if oldFi != nil && fi.IsDir() && oldFi.IsDir() {
+		if err := rewriteMetadata(destPath, stat); err != nil {
+			return errors.Wrapf(err, "error setting dir metadata for %s", destPath)
+		}
+		return nil
+	}
+
+	newPath := destPath
+	if rename {
+		newPath = filepath.Join(filepath.Dir(destPath), ".tmp."+nextSuffix())
+	}
+
+	isRegularFile := false
+
+	switch {
+	case fi.IsDir():
+		if err := os.Mkdir(newPath, fi.Mode()); err != nil {
+			return errors.Wrapf(err, "failed to create dir %s", newPath)
+		}
+	case fi.Mode()&os.ModeDevice != 0 || fi.Mode()&os.ModeNamedPipe != 0:
+		if err := handleTarTypeBlockCharFifo(newPath, stat); err != nil {
+			return errors.Wrapf(err, "failed to create device %s", newPath)
+		}
+	case fi.Mode()&os.ModeSymlink != 0:
+		if err := os.Symlink(stat.Linkname, newPath); err != nil {
+			return errors.Wrapf(err, "failed to symlink %s", newPath)
+		}
+	case stat.Linkname != "":
+		if err := os.Link(filepath.Join(dw.dest, stat.Linkname), newPath); err != nil {
+			return errors.Wrapf(err, "failed to link %s to %s", newPath, stat.Linkname)
+		}
+	default:
+		isRegularFile = true
+		file, err := os.OpenFile(newPath, os.O_CREATE|os.O_WRONLY, fi.Mode()) //todo: windows
+		if err != nil {
+			return errors.Wrapf(err, "failed to create %s", newPath)
+		}
+		if dw.opt.SyncDataCb != nil {
+			if err := dw.processChange(ChangeKindAdd, p, fi, file); err != nil {
+				file.Close()
+				return err
+			}
+			break
+		}
+		if err := file.Close(); err != nil {
+			return errors.Wrapf(err, "failed to close %s", newPath)
+		}
+	}
+
+	if err := rewriteMetadata(newPath, stat); err != nil {
+		return errors.Wrapf(err, "error setting metadata for %s", newPath)
+	}
+
+	if rename {
+		if err := os.Rename(newPath, destPath); err != nil {
+			return errors.Wrapf(err, "failed to rename %s to %s", newPath, destPath)
+		}
+	}
+
+	if isRegularFile {
+		if dw.opt.AsyncDataCb != nil {
+			dw.requestAsyncFileData(p, destPath, fi)
+		}
+	} else {
+		return dw.processChange(kind, p, fi, nil)
+	}
+
+	return nil
+}
+
+func (dw *DiskWriter) requestAsyncFileData(p, dest string, fi os.FileInfo) {
+	// todo: limit worker threads
+	dw.eg.Go(func() error {
+		if err := dw.processChange(ChangeKindAdd, p, fi, &lazyFileWriter{
+			dest: dest,
+		}); err != nil {
+			return err
+		}
+		return chtimes(dest, fi.ModTime().UnixNano()) // TODO: parent dirs
+	})
+}
+
+func (dw *DiskWriter) processChange(kind ChangeKind, p string, fi os.FileInfo, w io.WriteCloser) error {
+	origw := w
+	var hw *hashedWriter
+	if dw.opt.NotifyCb != nil {
+		var err error
+		if hw, err = newHashWriter(dw.opt.ContentHasher, fi, w); err != nil {
+			return err
+		}
+		w = hw
+	}
+	if origw != nil {
+		fn := dw.opt.SyncDataCb
+		if fn == nil && dw.opt.AsyncDataCb != nil {
+			fn = dw.opt.AsyncDataCb
+		}
+		if err := fn(dw.ctx, p, w); err != nil {
+			return err
+		}
+	} else {
+		if hw != nil {
+			hw.Close()
+		}
+	}
+	if hw != nil {
+		return dw.opt.NotifyCb(kind, p, hw, nil)
+	}
+	return nil
+}
+
+type hashedWriter struct {
+	os.FileInfo
+	io.Writer
+	h    hash.Hash
+	w    io.WriteCloser
+	dgst digest.Digest
+}
+
+func newHashWriter(ch ContentHasher, fi os.FileInfo, w io.WriteCloser) (*hashedWriter, error) {
+	stat, ok := fi.Sys().(*Stat)
+	if !ok {
+		return nil, errors.Errorf("invalid change without stat information")
+	}
+
+	h, err := ch(stat)
+	if err != nil {
+		return nil, err
+	}
+	hw := &hashedWriter{
+		FileInfo: fi,
+		Writer:   io.MultiWriter(w, h),
+		h:        h,
+		w:        w,
+	}
+	return hw, nil
+}
+
+func (hw *hashedWriter) Close() error {
+	hw.dgst = digest.NewDigest(digest.SHA256, hw.h)
+	if hw.w != nil {
+		return hw.w.Close()
+	}
+	return nil
+}
+
+func (hw *hashedWriter) Digest() digest.Digest {
+	return hw.dgst
+}
+
+type lazyFileWriter struct {
+	dest string
+	ctx  context.Context
+	f    *os.File
+}
+
+func (lfw *lazyFileWriter) Write(dt []byte) (int, error) {
+	if lfw.f == nil {
+		file, err := os.OpenFile(lfw.dest, os.O_WRONLY, 0) //todo: windows
+		if err != nil {
+			return 0, errors.Wrapf(err, "failed to open %s", lfw.dest)
+		}
+		lfw.f = file
+	}
+	return lfw.f.Write(dt)
+}
+
+func (lfw *lazyFileWriter) Close() error {
+	if lfw.f != nil {
+		return lfw.f.Close()
+	}
+	return nil
+}
+
+func mkdev(major int64, minor int64) uint32 {
+	return uint32(((minor & 0xfff00) << 12) | ((major & 0xfff) << 8) | (minor & 0xff))
+}
+
+// Random number state.
+// We generate random temporary file names so that there's a good
+// chance the file doesn't exist yet - keeps the number of tries in
+// TempFile to a minimum.
+var rand uint32
+var randmu sync.Mutex
+
+func reseed() uint32 {
+	return uint32(time.Now().UnixNano() + int64(os.Getpid()))
+}
+
+func nextSuffix() string {
+	randmu.Lock()
+	r := rand
+	if r == 0 {
+		r = reseed()
+	}
+	r = r*1664525 + 1013904223 // constants from Numerical Recipes
+	rand = r
+	randmu.Unlock()
+	return strconv.Itoa(int(1e9 + r%1e9))[1:]
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diskwriter_unix.go b/vendor/github.com/tonistiigi/fsutil/diskwriter_unix.go
new file mode 100644
index 0000000000..19dffabf74
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diskwriter_unix.go
@@ -0,0 +1,51 @@
+// +build !windows
+
+package fsutil
+
+import (
+	"os"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+)
+
+func rewriteMetadata(p string, stat *Stat) error {
+	for key, value := range stat.Xattrs {
+		sysx.Setxattr(p, key, value, 0)
+	}
+
+	if err := os.Lchown(p, int(stat.Uid), int(stat.Gid)); err != nil {
+		return errors.Wrapf(err, "failed to lchown %s", p)
+	}
+
+	if os.FileMode(stat.Mode)&os.ModeSymlink == 0 {
+		if err := os.Chmod(p, os.FileMode(stat.Mode)); err != nil {
+			return errors.Wrapf(err, "failed to chown %s", p)
+		}
+	}
+
+	if err := chtimes(p, stat.ModTime); err != nil {
+		return errors.Wrapf(err, "failed to chtimes %s", p)
+	}
+
+	return nil
+}
+
+// handleTarTypeBlockCharFifo is an OS-specific helper function used by
+// createTarFile to handle the following types of header: Block; Char; Fifo
+func handleTarTypeBlockCharFifo(path string, stat *Stat) error {
+	mode := uint32(stat.Mode & 07777)
+	if os.FileMode(stat.Mode)&os.ModeCharDevice != 0 {
+		mode |= syscall.S_IFCHR
+	} else if os.FileMode(stat.Mode)&os.ModeNamedPipe != 0 {
+		mode |= syscall.S_IFIFO
+	} else {
+		mode |= syscall.S_IFBLK
+	}
+
+	if err := syscall.Mknod(path, mode, int(mkdev(stat.Devmajor, stat.Devminor))); err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/diskwriter_windows.go b/vendor/github.com/tonistiigi/fsutil/diskwriter_windows.go
new file mode 100644
index 0000000000..c6d0d7bec7
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/diskwriter_windows.go
@@ -0,0 +1,17 @@
+// +build windows
+
+package fsutil
+
+import (
+	"github.com/pkg/errors"
+)
+
+func rewriteMetadata(p string, stat *Stat) error {
+	return chtimes(p, stat.ModTime)
+}
+
+// handleTarTypeBlockCharFifo is an OS-specific helper function used by
+// createTarFile to handle the following types of header: Block; Char; Fifo
+func handleTarTypeBlockCharFifo(path string, stat *Stat) error {
+	return errors.New("Not implemented on windows")
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/generate.go b/vendor/github.com/tonistiigi/fsutil/generate.go
new file mode 100644
index 0000000000..e433195669
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/generate.go
@@ -0,0 +1,3 @@
+package fsutil
+
+//go:generate protoc --gogoslick_out=. stat.proto wire.proto
diff --git a/vendor/github.com/tonistiigi/fsutil/hardlinks.go b/vendor/github.com/tonistiigi/fsutil/hardlinks.go
new file mode 100644
index 0000000000..e598ead7e6
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/hardlinks.go
@@ -0,0 +1,46 @@
+package fsutil
+
+import (
+	"os"
+
+	"github.com/pkg/errors"
+)
+
+// Hardlinks validates that all targets for links were part of the changes
+
+type Hardlinks struct {
+	seenFiles map[string]struct{}
+}
+
+func (v *Hardlinks) HandleChange(kind ChangeKind, p string, fi os.FileInfo, err error) error {
+	if err != nil {
+		return err
+	}
+
+	if v.seenFiles == nil {
+		v.seenFiles = make(map[string]struct{})
+	}
+
+	if kind == ChangeKindDelete {
+		return nil
+	}
+
+	stat, ok := fi.Sys().(*Stat)
+	if !ok {
+		return errors.Errorf("invalid change without stat info: %s", p)
+	}
+
+	if fi.IsDir() || fi.Mode()&os.ModeSymlink != 0 {
+		return nil
+	}
+
+	if len(stat.Linkname) > 0 {
+		if _, ok := v.seenFiles[stat.Linkname]; !ok {
+			return errors.Errorf("invalid link %s to unknown path: %q", p, stat.Linkname)
+		}
+	} else {
+		v.seenFiles[p] = struct{}{}
+	}
+
+	return nil
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/receive.go b/vendor/github.com/tonistiigi/fsutil/receive.go
new file mode 100644
index 0000000000..cd4ec50b87
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/receive.go
@@ -0,0 +1,267 @@
+package fsutil
+
+import (
+	"io"
+	"os"
+	"sync"
+
+	"github.com/pkg/errors"
+	"golang.org/x/net/context"
+	"golang.org/x/sync/errgroup"
+)
+
+type ReceiveOpt struct {
+	NotifyHashed  ChangeFunc
+	ContentHasher ContentHasher
+	ProgressCb    func(int, bool)
+	Merge         bool
+	Filter        FilterFunc
+}
+
+func Receive(ctx context.Context, conn Stream, dest string, opt ReceiveOpt) error {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	r := &receiver{
+		conn:          &syncStream{Stream: conn},
+		dest:          dest,
+		files:         make(map[string]uint32),
+		pipes:         make(map[uint32]io.WriteCloser),
+		notifyHashed:  opt.NotifyHashed,
+		contentHasher: opt.ContentHasher,
+		progressCb:    opt.ProgressCb,
+		merge:         opt.Merge,
+		filter:        opt.Filter,
+	}
+	return r.run(ctx)
+}
+
+type receiver struct {
+	dest       string
+	conn       Stream
+	files      map[string]uint32
+	pipes      map[uint32]io.WriteCloser
+	mu         sync.RWMutex
+	muPipes    sync.RWMutex
+	progressCb func(int, bool)
+	merge      bool
+	filter     FilterFunc
+
+	notifyHashed   ChangeFunc
+	contentHasher  ContentHasher
+	orderValidator Validator
+	hlValidator    Hardlinks
+}
+
+type dynamicWalker struct {
+	walkChan chan *currentPath
+	err      error
+	closeCh  chan struct{}
+}
+
+func newDynamicWalker() *dynamicWalker {
+	return &dynamicWalker{
+		walkChan: make(chan *currentPath, 128),
+		closeCh:  make(chan struct{}),
+	}
+}
+
+func (w *dynamicWalker) update(p *currentPath) error {
+	select {
+	case <-w.closeCh:
+		return errors.Wrap(w.err, "walker is closed")
+	default:
+	}
+	if p == nil {
+		close(w.walkChan)
+		return nil
+	}
+	select {
+	case w.walkChan <- p:
+		return nil
+	case <-w.closeCh:
+		return errors.Wrap(w.err, "walker is closed")
+	}
+}
+
+func (w *dynamicWalker) fill(ctx context.Context, pathC chan<- *currentPath) error {
+	for {
+		select {
+		case p, ok := <-w.walkChan:
+			if !ok {
+				return nil
+			}
+			pathC <- p
+		case <-ctx.Done():
+			w.err = ctx.Err()
+			close(w.closeCh)
+			return ctx.Err()
+		}
+	}
+	return nil
+}
+
+func (r *receiver) run(ctx context.Context) error {
+	g, ctx := errgroup.WithContext(ctx)
+
+	dw, err := NewDiskWriter(ctx, r.dest, DiskWriterOpt{
+		AsyncDataCb:   r.asyncDataFunc,
+		NotifyCb:      r.notifyHashed,
+		ContentHasher: r.contentHasher,
+		Filter:        r.filter,
+	})
+	if err != nil {
+		return err
+	}
+
+	w := newDynamicWalker()
+
+	g.Go(func() (retErr error) {
+		defer func() {
+			if retErr != nil {
+				r.conn.SendMsg(&Packet{Type: PACKET_ERR, Data: []byte(retErr.Error())})
+			}
+		}()
+		destWalker := emptyWalker
+		if !r.merge {
+			destWalker = GetWalkerFn(r.dest)
+		}
+		err := doubleWalkDiff(ctx, dw.HandleChange, destWalker, w.fill)
+		if err != nil {
+			return err
+		}
+		if err := dw.Wait(ctx); err != nil {
+			return err
+		}
+		r.conn.SendMsg(&Packet{Type: PACKET_FIN})
+		return nil
+	})
+
+	g.Go(func() error {
+		var i uint32 = 0
+
+		size := 0
+		if r.progressCb != nil {
+			defer func() {
+				r.progressCb(size, true)
+			}()
+		}
+		var p Packet
+		for {
+			p = Packet{Data: p.Data[:0]}
+			if err := r.conn.RecvMsg(&p); err != nil {
+				return err
+			}
+			if r.progressCb != nil {
+				size += p.Size()
+				r.progressCb(size, false)
+			}
+
+			switch p.Type {
+			case PACKET_STAT:
+				if p.Stat == nil {
+					if err := w.update(nil); err != nil {
+						return err
+					}
+					break
+				}
+				if fileCanRequestData(os.FileMode(p.Stat.Mode)) {
+					r.mu.Lock()
+					r.files[p.Stat.Path] = i
+					r.mu.Unlock()
+				}
+				i++
+				cp := &currentPath{path: p.Stat.Path, f: &StatInfo{p.Stat}}
+				if err := r.orderValidator.HandleChange(ChangeKindAdd, cp.path, cp.f, nil); err != nil {
+					return err
+				}
+				if err := r.hlValidator.HandleChange(ChangeKindAdd, cp.path, cp.f, nil); err != nil {
+					return err
+				}
+				if err := w.update(cp); err != nil {
+					return err
+				}
+			case PACKET_DATA:
+				r.muPipes.Lock()
+				pw, ok := r.pipes[p.ID]
+				r.muPipes.Unlock()
+				if !ok {
+					return errors.Errorf("invalid file request %s", p.ID)
+				}
+				if len(p.Data) == 0 {
+					if err := pw.Close(); err != nil {
+						return err
+					}
+				} else {
+					if _, err := pw.Write(p.Data); err != nil {
+						return err
+					}
+				}
+			case PACKET_FIN:
+				for {
+					var p Packet
+					if err := r.conn.RecvMsg(&p); err != nil {
+						if err == io.EOF {
+							return nil
+						}
+						return err
+					}
+				}
+			}
+		}
+	})
+	return g.Wait()
+}
+
+func (r *receiver) asyncDataFunc(ctx context.Context, p string, wc io.WriteCloser) error {
+	r.mu.Lock()
+	id, ok := r.files[p]
+	if !ok {
+		r.mu.Unlock()
+		return errors.Errorf("invalid file request %s", p)
+	}
+	delete(r.files, p)
+	r.mu.Unlock()
+
+	wwc := newWrappedWriteCloser(wc)
+	r.muPipes.Lock()
+	r.pipes[id] = wwc
+	r.muPipes.Unlock()
+	if err := r.conn.SendMsg(&Packet{Type: PACKET_REQ, ID: id}); err != nil {
+		return err
+	}
+	err := wwc.Wait(ctx)
+	if err != nil {
+		return err
+	}
+	r.muPipes.Lock()
+	delete(r.pipes, id)
+	r.muPipes.Unlock()
+	return nil
+}
+
+type wrappedWriteCloser struct {
+	io.WriteCloser
+	err  error
+	once sync.Once
+	done chan struct{}
+}
+
+func newWrappedWriteCloser(wc io.WriteCloser) *wrappedWriteCloser {
+	return &wrappedWriteCloser{WriteCloser: wc, done: make(chan struct{})}
+}
+
+func (w *wrappedWriteCloser) Close() error {
+	w.err = w.WriteCloser.Close()
+	w.once.Do(func() { close(w.done) })
+	return w.err
+}
+
+func (w *wrappedWriteCloser) Wait(ctx context.Context) error {
+	select {
+	case <-ctx.Done():
+		return ctx.Err()
+	case <-w.done:
+		return w.err
+	}
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/send.go b/vendor/github.com/tonistiigi/fsutil/send.go
new file mode 100644
index 0000000000..aa5dbe393a
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/send.go
@@ -0,0 +1,204 @@
+package fsutil
+
+import (
+	"io"
+	"os"
+	"path/filepath"
+	"sync"
+
+	"github.com/pkg/errors"
+	"golang.org/x/net/context"
+	"golang.org/x/sync/errgroup"
+)
+
+var bufPool = sync.Pool{
+	New: func() interface{} {
+		return make([]byte, 32*1<<10)
+	},
+}
+
+type Stream interface {
+	RecvMsg(interface{}) error
+	SendMsg(m interface{}) error
+	Context() context.Context
+}
+
+func Send(ctx context.Context, conn Stream, root string, opt *WalkOpt, progressCb func(int, bool)) error {
+	s := &sender{
+		conn:         &syncStream{Stream: conn},
+		root:         root,
+		opt:          opt,
+		files:        make(map[uint32]string),
+		progressCb:   progressCb,
+		sendpipeline: make(chan *sendHandle, 128),
+	}
+	return s.run(ctx)
+}
+
+type sendHandle struct {
+	id   uint32
+	path string
+}
+
+type sender struct {
+	conn            Stream
+	opt             *WalkOpt
+	root            string
+	files           map[uint32]string
+	mu              sync.RWMutex
+	progressCb      func(int, bool)
+	progressCurrent int
+	sendpipeline    chan *sendHandle
+}
+
+func (s *sender) run(ctx context.Context) error {
+	g, ctx := errgroup.WithContext(ctx)
+
+	defer s.updateProgress(0, true)
+
+	g.Go(func() error {
+		return s.walk(ctx)
+	})
+
+	for i := 0; i < 4; i++ {
+		g.Go(func() error {
+			for h := range s.sendpipeline {
+				select {
+				case <-ctx.Done():
+					return ctx.Err()
+				default:
+				}
+				if err := s.sendFile(h); err != nil {
+					return err
+				}
+			}
+			return nil
+		})
+	}
+
+	g.Go(func() error {
+		defer close(s.sendpipeline)
+
+		for {
+			select {
+			case <-ctx.Done():
+				return ctx.Err()
+			default:
+			}
+			var p Packet
+			if err := s.conn.RecvMsg(&p); err != nil {
+				return err
+			}
+			switch p.Type {
+			case PACKET_ERR:
+				return errors.Errorf("error from receiver: %s", p.Data)
+			case PACKET_REQ:
+				if err := s.queue(p.ID); err != nil {
+					return err
+				}
+			case PACKET_FIN:
+				return s.conn.SendMsg(&Packet{Type: PACKET_FIN})
+			}
+		}
+	})
+
+	return g.Wait()
+}
+
+func (s *sender) updateProgress(size int, last bool) {
+	if s.progressCb != nil {
+		s.progressCurrent += size
+		s.progressCb(s.progressCurrent, last)
+	}
+}
+
+func (s *sender) queue(id uint32) error {
+	s.mu.Lock()
+	p, ok := s.files[id]
+	if !ok {
+		s.mu.Unlock()
+		return errors.Errorf("invalid file id %d", id)
+	}
+	delete(s.files, id)
+	s.mu.Unlock()
+	s.sendpipeline <- &sendHandle{id, p}
+	return nil
+}
+
+func (s *sender) sendFile(h *sendHandle) error {
+	f, err := os.Open(filepath.Join(s.root, h.path))
+	if err == nil {
+		defer f.Close()
+		buf := bufPool.Get().([]byte)
+		defer bufPool.Put(buf)
+		if _, err := io.CopyBuffer(&fileSender{sender: s, id: h.id}, f, buf); err != nil {
+			return err
+		}
+	}
+	return s.conn.SendMsg(&Packet{ID: h.id, Type: PACKET_DATA})
+}
+
+func (s *sender) walk(ctx context.Context) error {
+	var i uint32 = 0
+	err := Walk(ctx, s.root, s.opt, func(path string, fi os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+		stat, ok := fi.Sys().(*Stat)
+		if !ok {
+			return errors.Wrapf(err, "invalid fileinfo without stat info: %s", path)
+		}
+
+		p := &Packet{
+			Type: PACKET_STAT,
+			Stat: stat,
+		}
+		if fileCanRequestData(os.FileMode(stat.Mode)) {
+			s.mu.Lock()
+			s.files[i] = stat.Path
+			s.mu.Unlock()
+		}
+		i++
+		s.updateProgress(p.Size(), false)
+		return errors.Wrapf(s.conn.SendMsg(p), "failed to send stat %s", path)
+	})
+	if err != nil {
+		return err
+	}
+	return errors.Wrapf(s.conn.SendMsg(&Packet{Type: PACKET_STAT}), "failed to send last stat")
+}
+
+func fileCanRequestData(m os.FileMode) bool {
+	// avoid updating this function as it needs to match between sender/receiver.
+	// version if needed
+	return m&os.ModeType == 0
+}
+
+type fileSender struct {
+	sender *sender
+	id     uint32
+}
+
+func (fs *fileSender) Write(dt []byte) (int, error) {
+	if len(dt) == 0 {
+		return 0, nil
+	}
+	p := &Packet{Type: PACKET_DATA, ID: fs.id, Data: dt}
+	if err := fs.sender.conn.SendMsg(p); err != nil {
+		return 0, err
+	}
+	fs.sender.updateProgress(p.Size(), false)
+	return len(dt), nil
+}
+
+type syncStream struct {
+	Stream
+	mu sync.Mutex
+}
+
+func (ss *syncStream) SendMsg(m interface{}) error {
+	ss.mu.Lock()
+	err := ss.Stream.SendMsg(m)
+	ss.mu.Unlock()
+	return err
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/stat.pb.go b/vendor/github.com/tonistiigi/fsutil/stat.pb.go
new file mode 100644
index 0000000000..3f6925e4b0
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/stat.pb.go
@@ -0,0 +1,931 @@
+// Code generated by protoc-gen-gogo.
+// source: stat.proto
+// DO NOT EDIT!
+
+/*
+	Package fsutil is a generated protocol buffer package.
+
+	It is generated from these files:
+		stat.proto
+		wire.proto
+
+	It has these top-level messages:
+		Stat
+		Packet
+*/
+package fsutil
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import bytes "bytes"
+
+import strings "strings"
+import reflect "reflect"
+import github_com_gogo_protobuf_sortkeys "github.com/gogo/protobuf/sortkeys"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.GoGoProtoPackageIsVersion2 // please upgrade the proto package
+
+type Stat struct {
+	Path    string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
+	Mode    uint32 `protobuf:"varint,2,opt,name=mode,proto3" json:"mode,omitempty"`
+	Uid     uint32 `protobuf:"varint,3,opt,name=uid,proto3" json:"uid,omitempty"`
+	Gid     uint32 `protobuf:"varint,4,opt,name=gid,proto3" json:"gid,omitempty"`
+	Size_   int64  `protobuf:"varint,5,opt,name=size,proto3" json:"size,omitempty"`
+	ModTime int64  `protobuf:"varint,6,opt,name=modTime,proto3" json:"modTime,omitempty"`
+	// int32 typeflag = 7;
+	Linkname string            `protobuf:"bytes,7,opt,name=linkname,proto3" json:"linkname,omitempty"`
+	Devmajor int64             `protobuf:"varint,8,opt,name=devmajor,proto3" json:"devmajor,omitempty"`
+	Devminor int64             `protobuf:"varint,9,opt,name=devminor,proto3" json:"devminor,omitempty"`
+	Xattrs   map[string][]byte `protobuf:"bytes,10,rep,name=xattrs" json:"xattrs,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
+}
+
+func (m *Stat) Reset()                    { *m = Stat{} }
+func (*Stat) ProtoMessage()               {}
+func (*Stat) Descriptor() ([]byte, []int) { return fileDescriptorStat, []int{0} }
+
+func (m *Stat) GetPath() string {
+	if m != nil {
+		return m.Path
+	}
+	return ""
+}
+
+func (m *Stat) GetMode() uint32 {
+	if m != nil {
+		return m.Mode
+	}
+	return 0
+}
+
+func (m *Stat) GetUid() uint32 {
+	if m != nil {
+		return m.Uid
+	}
+	return 0
+}
+
+func (m *Stat) GetGid() uint32 {
+	if m != nil {
+		return m.Gid
+	}
+	return 0
+}
+
+func (m *Stat) GetSize_() int64 {
+	if m != nil {
+		return m.Size_
+	}
+	return 0
+}
+
+func (m *Stat) GetModTime() int64 {
+	if m != nil {
+		return m.ModTime
+	}
+	return 0
+}
+
+func (m *Stat) GetLinkname() string {
+	if m != nil {
+		return m.Linkname
+	}
+	return ""
+}
+
+func (m *Stat) GetDevmajor() int64 {
+	if m != nil {
+		return m.Devmajor
+	}
+	return 0
+}
+
+func (m *Stat) GetDevminor() int64 {
+	if m != nil {
+		return m.Devminor
+	}
+	return 0
+}
+
+func (m *Stat) GetXattrs() map[string][]byte {
+	if m != nil {
+		return m.Xattrs
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*Stat)(nil), "fsutil.Stat")
+}
+func (this *Stat) Equal(that interface{}) bool {
+	if that == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	}
+
+	that1, ok := that.(*Stat)
+	if !ok {
+		that2, ok := that.(Stat)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	} else if this == nil {
+		return false
+	}
+	if this.Path != that1.Path {
+		return false
+	}
+	if this.Mode != that1.Mode {
+		return false
+	}
+	if this.Uid != that1.Uid {
+		return false
+	}
+	if this.Gid != that1.Gid {
+		return false
+	}
+	if this.Size_ != that1.Size_ {
+		return false
+	}
+	if this.ModTime != that1.ModTime {
+		return false
+	}
+	if this.Linkname != that1.Linkname {
+		return false
+	}
+	if this.Devmajor != that1.Devmajor {
+		return false
+	}
+	if this.Devminor != that1.Devminor {
+		return false
+	}
+	if len(this.Xattrs) != len(that1.Xattrs) {
+		return false
+	}
+	for i := range this.Xattrs {
+		if !bytes.Equal(this.Xattrs[i], that1.Xattrs[i]) {
+			return false
+		}
+	}
+	return true
+}
+func (this *Stat) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 14)
+	s = append(s, "&fsutil.Stat{")
+	s = append(s, "Path: "+fmt.Sprintf("%#v", this.Path)+",\n")
+	s = append(s, "Mode: "+fmt.Sprintf("%#v", this.Mode)+",\n")
+	s = append(s, "Uid: "+fmt.Sprintf("%#v", this.Uid)+",\n")
+	s = append(s, "Gid: "+fmt.Sprintf("%#v", this.Gid)+",\n")
+	s = append(s, "Size_: "+fmt.Sprintf("%#v", this.Size_)+",\n")
+	s = append(s, "ModTime: "+fmt.Sprintf("%#v", this.ModTime)+",\n")
+	s = append(s, "Linkname: "+fmt.Sprintf("%#v", this.Linkname)+",\n")
+	s = append(s, "Devmajor: "+fmt.Sprintf("%#v", this.Devmajor)+",\n")
+	s = append(s, "Devminor: "+fmt.Sprintf("%#v", this.Devminor)+",\n")
+	keysForXattrs := make([]string, 0, len(this.Xattrs))
+	for k, _ := range this.Xattrs {
+		keysForXattrs = append(keysForXattrs, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForXattrs)
+	mapStringForXattrs := "map[string][]byte{"
+	for _, k := range keysForXattrs {
+		mapStringForXattrs += fmt.Sprintf("%#v: %#v,", k, this.Xattrs[k])
+	}
+	mapStringForXattrs += "}"
+	if this.Xattrs != nil {
+		s = append(s, "Xattrs: "+mapStringForXattrs+",\n")
+	}
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringStat(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Stat) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Stat) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if len(m.Path) > 0 {
+		dAtA[i] = 0xa
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(len(m.Path)))
+		i += copy(dAtA[i:], m.Path)
+	}
+	if m.Mode != 0 {
+		dAtA[i] = 0x10
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Mode))
+	}
+	if m.Uid != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Uid))
+	}
+	if m.Gid != 0 {
+		dAtA[i] = 0x20
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Gid))
+	}
+	if m.Size_ != 0 {
+		dAtA[i] = 0x28
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Size_))
+	}
+	if m.ModTime != 0 {
+		dAtA[i] = 0x30
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.ModTime))
+	}
+	if len(m.Linkname) > 0 {
+		dAtA[i] = 0x3a
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(len(m.Linkname)))
+		i += copy(dAtA[i:], m.Linkname)
+	}
+	if m.Devmajor != 0 {
+		dAtA[i] = 0x40
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Devmajor))
+	}
+	if m.Devminor != 0 {
+		dAtA[i] = 0x48
+		i++
+		i = encodeVarintStat(dAtA, i, uint64(m.Devminor))
+	}
+	if len(m.Xattrs) > 0 {
+		for k, _ := range m.Xattrs {
+			dAtA[i] = 0x52
+			i++
+			v := m.Xattrs[k]
+			byteSize := 0
+			if len(v) > 0 {
+				byteSize = 1 + len(v) + sovStat(uint64(len(v)))
+			}
+			mapSize := 1 + len(k) + sovStat(uint64(len(k))) + byteSize
+			i = encodeVarintStat(dAtA, i, uint64(mapSize))
+			dAtA[i] = 0xa
+			i++
+			i = encodeVarintStat(dAtA, i, uint64(len(k)))
+			i += copy(dAtA[i:], k)
+			if len(v) > 0 {
+				dAtA[i] = 0x12
+				i++
+				i = encodeVarintStat(dAtA, i, uint64(len(v)))
+				i += copy(dAtA[i:], v)
+			}
+		}
+	}
+	return i, nil
+}
+
+func encodeFixed64Stat(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Stat(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintStat(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *Stat) Size() (n int) {
+	var l int
+	_ = l
+	l = len(m.Path)
+	if l > 0 {
+		n += 1 + l + sovStat(uint64(l))
+	}
+	if m.Mode != 0 {
+		n += 1 + sovStat(uint64(m.Mode))
+	}
+	if m.Uid != 0 {
+		n += 1 + sovStat(uint64(m.Uid))
+	}
+	if m.Gid != 0 {
+		n += 1 + sovStat(uint64(m.Gid))
+	}
+	if m.Size_ != 0 {
+		n += 1 + sovStat(uint64(m.Size_))
+	}
+	if m.ModTime != 0 {
+		n += 1 + sovStat(uint64(m.ModTime))
+	}
+	l = len(m.Linkname)
+	if l > 0 {
+		n += 1 + l + sovStat(uint64(l))
+	}
+	if m.Devmajor != 0 {
+		n += 1 + sovStat(uint64(m.Devmajor))
+	}
+	if m.Devminor != 0 {
+		n += 1 + sovStat(uint64(m.Devminor))
+	}
+	if len(m.Xattrs) > 0 {
+		for k, v := range m.Xattrs {
+			_ = k
+			_ = v
+			l = 0
+			if len(v) > 0 {
+				l = 1 + len(v) + sovStat(uint64(len(v)))
+			}
+			mapEntrySize := 1 + len(k) + sovStat(uint64(len(k))) + l
+			n += mapEntrySize + 1 + sovStat(uint64(mapEntrySize))
+		}
+	}
+	return n
+}
+
+func sovStat(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozStat(x uint64) (n int) {
+	return sovStat(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Stat) String() string {
+	if this == nil {
+		return "nil"
+	}
+	keysForXattrs := make([]string, 0, len(this.Xattrs))
+	for k, _ := range this.Xattrs {
+		keysForXattrs = append(keysForXattrs, k)
+	}
+	github_com_gogo_protobuf_sortkeys.Strings(keysForXattrs)
+	mapStringForXattrs := "map[string][]byte{"
+	for _, k := range keysForXattrs {
+		mapStringForXattrs += fmt.Sprintf("%v: %v,", k, this.Xattrs[k])
+	}
+	mapStringForXattrs += "}"
+	s := strings.Join([]string{`&Stat{`,
+		`Path:` + fmt.Sprintf("%v", this.Path) + `,`,
+		`Mode:` + fmt.Sprintf("%v", this.Mode) + `,`,
+		`Uid:` + fmt.Sprintf("%v", this.Uid) + `,`,
+		`Gid:` + fmt.Sprintf("%v", this.Gid) + `,`,
+		`Size_:` + fmt.Sprintf("%v", this.Size_) + `,`,
+		`ModTime:` + fmt.Sprintf("%v", this.ModTime) + `,`,
+		`Linkname:` + fmt.Sprintf("%v", this.Linkname) + `,`,
+		`Devmajor:` + fmt.Sprintf("%v", this.Devmajor) + `,`,
+		`Devminor:` + fmt.Sprintf("%v", this.Devminor) + `,`,
+		`Xattrs:` + mapStringForXattrs + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringStat(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Stat) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowStat
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Stat: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Stat: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Path", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthStat
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Path = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 2:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Mode", wireType)
+			}
+			m.Mode = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Mode |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Uid", wireType)
+			}
+			m.Uid = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Uid |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Gid", wireType)
+			}
+			m.Gid = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Gid |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 5:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Size_", wireType)
+			}
+			m.Size_ = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Size_ |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 6:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ModTime", wireType)
+			}
+			m.ModTime = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ModTime |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 7:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Linkname", wireType)
+			}
+			var stringLen uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLen |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLen := int(stringLen)
+			if intStringLen < 0 {
+				return ErrInvalidLengthStat
+			}
+			postIndex := iNdEx + intStringLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Linkname = string(dAtA[iNdEx:postIndex])
+			iNdEx = postIndex
+		case 8:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Devmajor", wireType)
+			}
+			m.Devmajor = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Devmajor |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 9:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Devminor", wireType)
+			}
+			m.Devminor = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Devminor |= (int64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 10:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Xattrs", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthStat
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			var keykey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				keykey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			var stringLenmapkey uint64
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				stringLenmapkey |= (uint64(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			intStringLenmapkey := int(stringLenmapkey)
+			if intStringLenmapkey < 0 {
+				return ErrInvalidLengthStat
+			}
+			postStringIndexmapkey := iNdEx + intStringLenmapkey
+			if postStringIndexmapkey > l {
+				return io.ErrUnexpectedEOF
+			}
+			mapkey := string(dAtA[iNdEx:postStringIndexmapkey])
+			iNdEx = postStringIndexmapkey
+			if m.Xattrs == nil {
+				m.Xattrs = make(map[string][]byte)
+			}
+			if iNdEx < postIndex {
+				var valuekey uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowStat
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					valuekey |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				var mapbyteLen uint64
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return ErrIntOverflowStat
+					}
+					if iNdEx >= l {
+						return io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					mapbyteLen |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				intMapbyteLen := int(mapbyteLen)
+				if intMapbyteLen < 0 {
+					return ErrInvalidLengthStat
+				}
+				postbytesIndex := iNdEx + intMapbyteLen
+				if postbytesIndex > l {
+					return io.ErrUnexpectedEOF
+				}
+				mapvalue := make([]byte, mapbyteLen)
+				copy(mapvalue, dAtA[iNdEx:postbytesIndex])
+				iNdEx = postbytesIndex
+				m.Xattrs[mapkey] = mapvalue
+			} else {
+				var mapvalue []byte
+				m.Xattrs[mapkey] = mapvalue
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipStat(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthStat
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipStat(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowStat
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowStat
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthStat
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowStat
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipStat(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthStat = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowStat   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("stat.proto", fileDescriptorStat) }
+
+var fileDescriptorStat = []byte{
+	// 303 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0x4c, 0x91, 0xb1, 0x4e, 0xf3, 0x30,
+	0x14, 0x85, 0x73, 0x9b, 0x36, 0x6d, 0xdd, 0xff, 0x97, 0x90, 0xc5, 0x70, 0xd5, 0xc1, 0x8a, 0x98,
+	0x32, 0xa0, 0x08, 0xc1, 0x02, 0x8c, 0x48, 0xbc, 0x40, 0x60, 0x60, 0x35, 0xb2, 0x29, 0xa6, 0x4d,
+	0x5c, 0x25, 0x4e, 0x45, 0x99, 0x78, 0x04, 0x1e, 0x83, 0xd7, 0x60, 0x63, 0xec, 0xc8, 0x48, 0xcc,
+	0xc2, 0xd8, 0x47, 0x40, 0x76, 0xda, 0xc2, 0x76, 0xce, 0x77, 0x7c, 0x65, 0x9d, 0x7b, 0x09, 0xa9,
+	0x0c, 0x37, 0xe9, 0xbc, 0xd4, 0x46, 0xd3, 0xe8, 0xae, 0xaa, 0x8d, 0x9a, 0x1d, 0xbc, 0x75, 0x48,
+	0xf7, 0xca, 0x70, 0x43, 0x29, 0xe9, 0xce, 0xb9, 0xb9, 0x47, 0x88, 0x21, 0x19, 0x66, 0x5e, 0x3b,
+	0x96, 0x6b, 0x21, 0xb1, 0x13, 0x43, 0xf2, 0x3f, 0xf3, 0x9a, 0xee, 0x91, 0xb0, 0x56, 0x02, 0x43,
+	0x8f, 0x9c, 0x74, 0x64, 0xa2, 0x04, 0x76, 0x5b, 0x32, 0x51, 0xc2, 0xcd, 0x55, 0xea, 0x49, 0x62,
+	0x2f, 0x86, 0x24, 0xcc, 0xbc, 0xa6, 0x48, 0xfa, 0xb9, 0x16, 0xd7, 0x2a, 0x97, 0x18, 0x79, 0xbc,
+	0xb5, 0x74, 0x4c, 0x06, 0x33, 0x55, 0x4c, 0x0b, 0x9e, 0x4b, 0xec, 0xfb, 0xdf, 0x77, 0xde, 0x65,
+	0x42, 0x2e, 0x72, 0xfe, 0xa0, 0x4b, 0x1c, 0xf8, 0xb1, 0x9d, 0xdf, 0x66, 0xaa, 0xd0, 0x25, 0x0e,
+	0x7f, 0x33, 0xe7, 0xe9, 0x11, 0x89, 0x1e, 0xb9, 0x31, 0x65, 0x85, 0x24, 0x0e, 0x93, 0xd1, 0x31,
+	0xa6, 0x6d, 0xdf, 0xd4, 0x75, 0x4d, 0x6f, 0x7c, 0x74, 0x59, 0x98, 0x72, 0x99, 0x6d, 0xde, 0x8d,
+	0xcf, 0xc8, 0xe8, 0x0f, 0x76, 0xa5, 0xa6, 0x72, 0xb9, 0xd9, 0x86, 0x93, 0x74, 0x9f, 0xf4, 0x16,
+	0x7c, 0x56, 0xb7, 0xdb, 0xf8, 0x97, 0xb5, 0xe6, 0xbc, 0x73, 0x0a, 0x17, 0x87, 0xab, 0x86, 0x05,
+	0x1f, 0x0d, 0x0b, 0xd6, 0x0d, 0x83, 0x67, 0xcb, 0xe0, 0xd5, 0x32, 0x78, 0xb7, 0x0c, 0x56, 0x96,
+	0xc1, 0xa7, 0x65, 0xf0, 0x6d, 0x59, 0xb0, 0xb6, 0x0c, 0x5e, 0xbe, 0x58, 0x70, 0x1b, 0xf9, 0x03,
+	0x9c, 0xfc, 0x04, 0x00, 0x00, 0xff, 0xff, 0x19, 0x97, 0x14, 0xf4, 0x8e, 0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/validator.go b/vendor/github.com/tonistiigi/fsutil/validator.go
new file mode 100644
index 0000000000..2bd1287a85
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/validator.go
@@ -0,0 +1,92 @@
+package fsutil
+
+import (
+	"os"
+	"path"
+	"runtime"
+	"sort"
+	"strings"
+
+	"github.com/pkg/errors"
+)
+
+type parent struct {
+	dir  string
+	last string
+}
+
+type Validator struct {
+	parentDirs []parent
+}
+
+func (v *Validator) HandleChange(kind ChangeKind, p string, fi os.FileInfo, err error) (retErr error) {
+	if err != nil {
+		return err
+	}
+	// test that all paths are in order and all parent dirs were present
+	if v.parentDirs == nil {
+		v.parentDirs = make([]parent, 1, 10)
+	}
+	if runtime.GOOS == "windows" {
+		p = strings.Replace(p, "\\", "", -1)
+	}
+	if p != path.Clean(p) {
+		return errors.Errorf("invalid unclean path %s", p)
+	}
+	if path.IsAbs(p) {
+		return errors.Errorf("abolute path %s not allowed", p)
+	}
+	dir := path.Dir(p)
+	base := path.Base(p)
+	if dir == "." {
+		dir = ""
+	}
+	if dir == ".." || strings.HasPrefix(p, "../") {
+		return errors.Errorf("invalid path: %s", p)
+	}
+
+	// find a parent dir from saved records
+	i := sort.Search(len(v.parentDirs), func(i int) bool {
+		return ComparePath(v.parentDirs[len(v.parentDirs)-1-i].dir, dir) <= 0
+	})
+	i = len(v.parentDirs) - 1 - i
+	if i != len(v.parentDirs)-1 { // skipping back to grandparent
+		v.parentDirs = v.parentDirs[:i+1]
+	}
+
+	if dir != v.parentDirs[len(v.parentDirs)-1].dir || v.parentDirs[i].last >= base {
+		return errors.Errorf("changes out of order: %q %q", p, path.Join(v.parentDirs[i].dir, v.parentDirs[i].last))
+	}
+	v.parentDirs[i].last = base
+	if kind != ChangeKindDelete && fi.IsDir() {
+		v.parentDirs = append(v.parentDirs, parent{
+			dir:  path.Join(dir, base),
+			last: "",
+		})
+	}
+	// todo: validate invalid mode combinations
+	return err
+}
+
+func ComparePath(p1, p2 string) int {
+	// byte-by-byte comparison to be compatible with str<>str
+	min := min(len(p1), len(p2))
+	for i := 0; i < min; i++ {
+		switch {
+		case p1[i] == p2[i]:
+			continue
+		case p2[i] != '/' && p1[i] < p2[i] || p1[i] == '/':
+			return -1
+		default:
+			return 1
+		}
+	}
+	return len(p1) - len(p2)
+}
+
+func min(x, y int) int {
+	if x < y {
+		return x
+	}
+	return y
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/walker.go b/vendor/github.com/tonistiigi/fsutil/walker.go
new file mode 100644
index 0000000000..d05a42dbed
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/walker.go
@@ -0,0 +1,227 @@
+package fsutil
+
+import (
+	"os"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"time"
+
+	"github.com/docker/docker/pkg/fileutils"
+	"github.com/pkg/errors"
+	"golang.org/x/net/context"
+)
+
+type WalkOpt struct {
+	IncludePatterns []string
+	ExcludePatterns []string
+	Map             func(*Stat) bool
+}
+
+func Walk(ctx context.Context, p string, opt *WalkOpt, fn filepath.WalkFunc) error {
+	root, err := filepath.EvalSymlinks(p)
+	if err != nil {
+		return errors.Wrapf(err, "failed to resolve %s", root)
+	}
+	fi, err := os.Stat(root)
+	if err != nil {
+		return errors.Wrapf(err, "failed to stat: %s", root)
+	}
+	if !fi.IsDir() {
+		return errors.Errorf("%s is not a directory", root)
+	}
+
+	var pm *fileutils.PatternMatcher
+	if opt != nil && opt.ExcludePatterns != nil {
+		pm, err = fileutils.NewPatternMatcher(opt.ExcludePatterns)
+		if err != nil {
+			return errors.Wrapf(err, "invalid excludepaths %s", opt.ExcludePatterns)
+		}
+	}
+
+	var lastIncludedDir string
+	var includePatternPrefixes []string
+
+	seenFiles := make(map[uint64]string)
+	return filepath.Walk(root, func(path string, fi os.FileInfo, err error) (retErr error) {
+		if err != nil {
+			if os.IsNotExist(err) {
+				return filepath.SkipDir
+			}
+			return err
+		}
+		defer func() {
+			if retErr != nil && os.IsNotExist(errors.Cause(retErr)) {
+				retErr = filepath.SkipDir
+			}
+		}()
+		origpath := path
+		path, err = filepath.Rel(root, path)
+		if err != nil {
+			return err
+		}
+		// Skip root
+		if path == "." {
+			return nil
+		}
+
+		if opt != nil {
+			if opt.IncludePatterns != nil {
+				if includePatternPrefixes == nil {
+					includePatternPrefixes = patternPrefixes(opt.IncludePatterns)
+				}
+				matched := false
+				if lastIncludedDir != "" {
+					if strings.HasPrefix(path, lastIncludedDir+string(filepath.Separator)) {
+						matched = true
+					}
+				}
+				if !matched {
+					for _, p := range opt.IncludePatterns {
+						if m, _ := filepath.Match(p, path); m {
+							matched = true
+							break
+						}
+					}
+					if matched && fi.IsDir() {
+						lastIncludedDir = path
+					}
+				}
+				if !matched {
+					if !fi.IsDir() {
+						return nil
+					} else {
+						if noPossiblePrefixMatch(path, includePatternPrefixes) {
+							return filepath.SkipDir
+						}
+					}
+				}
+			}
+			if pm != nil {
+				m, err := pm.Matches(path)
+				if err != nil {
+					return errors.Wrap(err, "failed to match excludepatterns")
+				}
+
+				if m {
+					if fi.IsDir() {
+						if !pm.Exclusions() {
+							return filepath.SkipDir
+						}
+						dirSlash := path + string(filepath.Separator)
+						for _, pat := range pm.Patterns() {
+							if !pat.Exclusion() {
+								continue
+							}
+							patStr := pat.String() + string(filepath.Separator)
+							if strings.HasPrefix(patStr, dirSlash) {
+								goto passedFilter
+							}
+						}
+						return filepath.SkipDir
+					}
+					return nil
+				}
+			}
+		}
+
+	passedFilter:
+		path = filepath.ToSlash(path)
+
+		stat := &Stat{
+			Path:    path,
+			Mode:    uint32(fi.Mode()),
+			Size_:   fi.Size(),
+			ModTime: fi.ModTime().UnixNano(),
+		}
+
+		setUnixOpt(fi, stat, path, seenFiles)
+
+		if !fi.IsDir() {
+			if fi.Mode()&os.ModeSymlink != 0 {
+				link, err := os.Readlink(origpath)
+				if err != nil {
+					return errors.Wrapf(err, "failed to readlink %s", origpath)
+				}
+				stat.Linkname = link
+			}
+		}
+		if err := loadXattr(origpath, stat); err != nil {
+			return errors.Wrapf(err, "failed to xattr %s", path)
+		}
+
+		if runtime.GOOS == "windows" {
+			permPart := stat.Mode & uint32(os.ModePerm)
+			noPermPart := stat.Mode &^ uint32(os.ModePerm)
+			// Add the x bit: make everything +x from windows
+			permPart |= 0111
+			permPart &= 0755
+			stat.Mode = noPermPart | permPart
+		}
+
+		select {
+		case <-ctx.Done():
+			return ctx.Err()
+		default:
+			if opt != nil && opt.Map != nil {
+				if allowed := opt.Map(stat); !allowed {
+					return nil
+				}
+			}
+			if err := fn(stat.Path, &StatInfo{stat}, nil); err != nil {
+				return err
+			}
+		}
+		return nil
+	})
+}
+
+type StatInfo struct {
+	*Stat
+}
+
+func (s *StatInfo) Name() string {
+	return filepath.Base(s.Stat.Path)
+}
+func (s *StatInfo) Size() int64 {
+	return s.Stat.Size_
+}
+func (s *StatInfo) Mode() os.FileMode {
+	return os.FileMode(s.Stat.Mode)
+}
+func (s *StatInfo) ModTime() time.Time {
+	return time.Unix(s.Stat.ModTime/1e9, s.Stat.ModTime%1e9)
+}
+func (s *StatInfo) IsDir() bool {
+	return s.Mode().IsDir()
+}
+func (s *StatInfo) Sys() interface{} {
+	return s.Stat
+}
+
+func patternPrefixes(patterns []string) []string {
+	pfxs := make([]string, 0, len(patterns))
+	for _, ptrn := range patterns {
+		idx := strings.IndexFunc(ptrn, func(ch rune) bool {
+			return ch == '*' || ch == '?' || ch == '[' || ch == '\\'
+		})
+		if idx == -1 {
+			idx = len(ptrn)
+		}
+		pfxs = append(pfxs, ptrn[:idx])
+	}
+	return pfxs
+}
+
+func noPossiblePrefixMatch(p string, pfxs []string) bool {
+	for _, pfx := range pfxs {
+		chk := p
+		if len(pfx) < len(p) {
+			chk = p[:len(pfx)]
+		}
+		if strings.HasPrefix(pfx, chk) {
+			return false
+		}
+	}
+	return true
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/walker_unix.go b/vendor/github.com/tonistiigi/fsutil/walker_unix.go
new file mode 100644
index 0000000000..7e8ee80346
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/walker_unix.go
@@ -0,0 +1,61 @@
+// +build !windows
+
+package fsutil
+
+import (
+	"os"
+	"syscall"
+
+	"github.com/containerd/continuity/sysx"
+	"github.com/pkg/errors"
+)
+
+func loadXattr(origpath string, stat *Stat) error {
+	xattrs, err := sysx.LListxattr(origpath)
+	if err != nil {
+		return errors.Wrapf(err, "failed to xattr %s", origpath)
+	}
+	if len(xattrs) > 0 {
+		m := make(map[string][]byte)
+		for _, key := range xattrs {
+			v, err := sysx.LGetxattr(origpath, key)
+			if err == nil {
+				m[key] = v
+			}
+		}
+		stat.Xattrs = m
+	}
+	return nil
+}
+
+func setUnixOpt(fi os.FileInfo, stat *Stat, path string, seenFiles map[uint64]string) {
+	s := fi.Sys().(*syscall.Stat_t)
+
+	stat.Uid = s.Uid
+	stat.Gid = s.Gid
+
+	if !fi.IsDir() {
+		if s.Mode&syscall.S_IFBLK != 0 ||
+			s.Mode&syscall.S_IFCHR != 0 {
+			stat.Devmajor = int64(major(uint64(s.Rdev)))
+			stat.Devminor = int64(minor(uint64(s.Rdev)))
+		}
+
+		ino := s.Ino
+		if s.Nlink > 1 {
+			if oldpath, ok := seenFiles[ino]; ok {
+				stat.Linkname = oldpath
+				stat.Size_ = 0
+			}
+		}
+		seenFiles[ino] = path
+	}
+}
+
+func major(device uint64) uint64 {
+	return (device >> 8) & 0xfff
+}
+
+func minor(device uint64) uint64 {
+	return (device & 0xff) | ((device >> 12) & 0xfff00)
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/walker_windows.go b/vendor/github.com/tonistiigi/fsutil/walker_windows.go
new file mode 100644
index 0000000000..a1a2b45569
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/walker_windows.go
@@ -0,0 +1,14 @@
+// +build windows
+
+package fsutil
+
+import (
+	"os"
+)
+
+func loadXattr(_ string, _ *Stat) error {
+	return nil
+}
+
+func setUnixOpt(_ os.FileInfo, _ *Stat, _ string, _ map[uint64]string) {
+}
diff --git a/vendor/github.com/tonistiigi/fsutil/wire.pb.go b/vendor/github.com/tonistiigi/fsutil/wire.pb.go
new file mode 100644
index 0000000000..9d334bbdba
--- /dev/null
+++ b/vendor/github.com/tonistiigi/fsutil/wire.pb.go
@@ -0,0 +1,567 @@
+// Code generated by protoc-gen-gogo.
+// source: wire.proto
+// DO NOT EDIT!
+
+package fsutil
+
+import proto "github.com/gogo/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import strconv "strconv"
+
+import bytes "bytes"
+
+import strings "strings"
+import reflect "reflect"
+
+import io "io"
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+type Packet_PacketType int32
+
+const (
+	PACKET_STAT Packet_PacketType = 0
+	PACKET_REQ  Packet_PacketType = 1
+	PACKET_DATA Packet_PacketType = 2
+	PACKET_FIN  Packet_PacketType = 3
+	PACKET_ERR  Packet_PacketType = 4
+)
+
+var Packet_PacketType_name = map[int32]string{
+	0: "PACKET_STAT",
+	1: "PACKET_REQ",
+	2: "PACKET_DATA",
+	3: "PACKET_FIN",
+	4: "PACKET_ERR",
+}
+var Packet_PacketType_value = map[string]int32{
+	"PACKET_STAT": 0,
+	"PACKET_REQ":  1,
+	"PACKET_DATA": 2,
+	"PACKET_FIN":  3,
+	"PACKET_ERR":  4,
+}
+
+func (Packet_PacketType) EnumDescriptor() ([]byte, []int) { return fileDescriptorWire, []int{0, 0} }
+
+type Packet struct {
+	Type Packet_PacketType `protobuf:"varint,1,opt,name=type,proto3,enum=fsutil.Packet_PacketType" json:"type,omitempty"`
+	Stat *Stat             `protobuf:"bytes,2,opt,name=stat" json:"stat,omitempty"`
+	ID   uint32            `protobuf:"varint,3,opt,name=ID,proto3" json:"ID,omitempty"`
+	Data []byte            `protobuf:"bytes,4,opt,name=data,proto3" json:"data,omitempty"`
+}
+
+func (m *Packet) Reset()                    { *m = Packet{} }
+func (*Packet) ProtoMessage()               {}
+func (*Packet) Descriptor() ([]byte, []int) { return fileDescriptorWire, []int{0} }
+
+func (m *Packet) GetType() Packet_PacketType {
+	if m != nil {
+		return m.Type
+	}
+	return PACKET_STAT
+}
+
+func (m *Packet) GetStat() *Stat {
+	if m != nil {
+		return m.Stat
+	}
+	return nil
+}
+
+func (m *Packet) GetID() uint32 {
+	if m != nil {
+		return m.ID
+	}
+	return 0
+}
+
+func (m *Packet) GetData() []byte {
+	if m != nil {
+		return m.Data
+	}
+	return nil
+}
+
+func init() {
+	proto.RegisterType((*Packet)(nil), "fsutil.Packet")
+	proto.RegisterEnum("fsutil.Packet_PacketType", Packet_PacketType_name, Packet_PacketType_value)
+}
+func (x Packet_PacketType) String() string {
+	s, ok := Packet_PacketType_name[int32(x)]
+	if ok {
+		return s
+	}
+	return strconv.Itoa(int(x))
+}
+func (this *Packet) Equal(that interface{}) bool {
+	if that == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	}
+
+	that1, ok := that.(*Packet)
+	if !ok {
+		that2, ok := that.(Packet)
+		if ok {
+			that1 = &that2
+		} else {
+			return false
+		}
+	}
+	if that1 == nil {
+		if this == nil {
+			return true
+		}
+		return false
+	} else if this == nil {
+		return false
+	}
+	if this.Type != that1.Type {
+		return false
+	}
+	if !this.Stat.Equal(that1.Stat) {
+		return false
+	}
+	if this.ID != that1.ID {
+		return false
+	}
+	if !bytes.Equal(this.Data, that1.Data) {
+		return false
+	}
+	return true
+}
+func (this *Packet) GoString() string {
+	if this == nil {
+		return "nil"
+	}
+	s := make([]string, 0, 8)
+	s = append(s, "&fsutil.Packet{")
+	s = append(s, "Type: "+fmt.Sprintf("%#v", this.Type)+",\n")
+	if this.Stat != nil {
+		s = append(s, "Stat: "+fmt.Sprintf("%#v", this.Stat)+",\n")
+	}
+	s = append(s, "ID: "+fmt.Sprintf("%#v", this.ID)+",\n")
+	s = append(s, "Data: "+fmt.Sprintf("%#v", this.Data)+",\n")
+	s = append(s, "}")
+	return strings.Join(s, "")
+}
+func valueToGoStringWire(v interface{}, typ string) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("func(v %v) *%v { return &v } ( %#v )", typ, typ, pv)
+}
+func (m *Packet) Marshal() (dAtA []byte, err error) {
+	size := m.Size()
+	dAtA = make([]byte, size)
+	n, err := m.MarshalTo(dAtA)
+	if err != nil {
+		return nil, err
+	}
+	return dAtA[:n], nil
+}
+
+func (m *Packet) MarshalTo(dAtA []byte) (int, error) {
+	var i int
+	_ = i
+	var l int
+	_ = l
+	if m.Type != 0 {
+		dAtA[i] = 0x8
+		i++
+		i = encodeVarintWire(dAtA, i, uint64(m.Type))
+	}
+	if m.Stat != nil {
+		dAtA[i] = 0x12
+		i++
+		i = encodeVarintWire(dAtA, i, uint64(m.Stat.Size()))
+		n1, err := m.Stat.MarshalTo(dAtA[i:])
+		if err != nil {
+			return 0, err
+		}
+		i += n1
+	}
+	if m.ID != 0 {
+		dAtA[i] = 0x18
+		i++
+		i = encodeVarintWire(dAtA, i, uint64(m.ID))
+	}
+	if len(m.Data) > 0 {
+		dAtA[i] = 0x22
+		i++
+		i = encodeVarintWire(dAtA, i, uint64(len(m.Data)))
+		i += copy(dAtA[i:], m.Data)
+	}
+	return i, nil
+}
+
+func encodeFixed64Wire(dAtA []byte, offset int, v uint64) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	dAtA[offset+4] = uint8(v >> 32)
+	dAtA[offset+5] = uint8(v >> 40)
+	dAtA[offset+6] = uint8(v >> 48)
+	dAtA[offset+7] = uint8(v >> 56)
+	return offset + 8
+}
+func encodeFixed32Wire(dAtA []byte, offset int, v uint32) int {
+	dAtA[offset] = uint8(v)
+	dAtA[offset+1] = uint8(v >> 8)
+	dAtA[offset+2] = uint8(v >> 16)
+	dAtA[offset+3] = uint8(v >> 24)
+	return offset + 4
+}
+func encodeVarintWire(dAtA []byte, offset int, v uint64) int {
+	for v >= 1<<7 {
+		dAtA[offset] = uint8(v&0x7f | 0x80)
+		v >>= 7
+		offset++
+	}
+	dAtA[offset] = uint8(v)
+	return offset + 1
+}
+func (m *Packet) Size() (n int) {
+	var l int
+	_ = l
+	if m.Type != 0 {
+		n += 1 + sovWire(uint64(m.Type))
+	}
+	if m.Stat != nil {
+		l = m.Stat.Size()
+		n += 1 + l + sovWire(uint64(l))
+	}
+	if m.ID != 0 {
+		n += 1 + sovWire(uint64(m.ID))
+	}
+	l = len(m.Data)
+	if l > 0 {
+		n += 1 + l + sovWire(uint64(l))
+	}
+	return n
+}
+
+func sovWire(x uint64) (n int) {
+	for {
+		n++
+		x >>= 7
+		if x == 0 {
+			break
+		}
+	}
+	return n
+}
+func sozWire(x uint64) (n int) {
+	return sovWire(uint64((x << 1) ^ uint64((int64(x) >> 63))))
+}
+func (this *Packet) String() string {
+	if this == nil {
+		return "nil"
+	}
+	s := strings.Join([]string{`&Packet{`,
+		`Type:` + fmt.Sprintf("%v", this.Type) + `,`,
+		`Stat:` + strings.Replace(fmt.Sprintf("%v", this.Stat), "Stat", "Stat", 1) + `,`,
+		`ID:` + fmt.Sprintf("%v", this.ID) + `,`,
+		`Data:` + fmt.Sprintf("%v", this.Data) + `,`,
+		`}`,
+	}, "")
+	return s
+}
+func valueToStringWire(v interface{}) string {
+	rv := reflect.ValueOf(v)
+	if rv.IsNil() {
+		return "nil"
+	}
+	pv := reflect.Indirect(rv).Interface()
+	return fmt.Sprintf("*%v", pv)
+}
+func (m *Packet) Unmarshal(dAtA []byte) error {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		preIndex := iNdEx
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return ErrIntOverflowWire
+			}
+			if iNdEx >= l {
+				return io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		fieldNum := int32(wire >> 3)
+		wireType := int(wire & 0x7)
+		if wireType == 4 {
+			return fmt.Errorf("proto: Packet: wiretype end group for non-group")
+		}
+		if fieldNum <= 0 {
+			return fmt.Errorf("proto: Packet: illegal tag %d (wire type %d)", fieldNum, wire)
+		}
+		switch fieldNum {
+		case 1:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Type", wireType)
+			}
+			m.Type = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.Type |= (Packet_PacketType(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 2:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Stat", wireType)
+			}
+			var msglen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				msglen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if msglen < 0 {
+				return ErrInvalidLengthWire
+			}
+			postIndex := iNdEx + msglen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			if m.Stat == nil {
+				m.Stat = &Stat{}
+			}
+			if err := m.Stat.Unmarshal(dAtA[iNdEx:postIndex]); err != nil {
+				return err
+			}
+			iNdEx = postIndex
+		case 3:
+			if wireType != 0 {
+				return fmt.Errorf("proto: wrong wireType = %d for field ID", wireType)
+			}
+			m.ID = 0
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				m.ID |= (uint32(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+		case 4:
+			if wireType != 2 {
+				return fmt.Errorf("proto: wrong wireType = %d for field Data", wireType)
+			}
+			var byteLen int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				byteLen |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			if byteLen < 0 {
+				return ErrInvalidLengthWire
+			}
+			postIndex := iNdEx + byteLen
+			if postIndex > l {
+				return io.ErrUnexpectedEOF
+			}
+			m.Data = append(m.Data[:0], dAtA[iNdEx:postIndex]...)
+			if m.Data == nil {
+				m.Data = []byte{}
+			}
+			iNdEx = postIndex
+		default:
+			iNdEx = preIndex
+			skippy, err := skipWire(dAtA[iNdEx:])
+			if err != nil {
+				return err
+			}
+			if skippy < 0 {
+				return ErrInvalidLengthWire
+			}
+			if (iNdEx + skippy) > l {
+				return io.ErrUnexpectedEOF
+			}
+			iNdEx += skippy
+		}
+	}
+
+	if iNdEx > l {
+		return io.ErrUnexpectedEOF
+	}
+	return nil
+}
+func skipWire(dAtA []byte) (n int, err error) {
+	l := len(dAtA)
+	iNdEx := 0
+	for iNdEx < l {
+		var wire uint64
+		for shift := uint(0); ; shift += 7 {
+			if shift >= 64 {
+				return 0, ErrIntOverflowWire
+			}
+			if iNdEx >= l {
+				return 0, io.ErrUnexpectedEOF
+			}
+			b := dAtA[iNdEx]
+			iNdEx++
+			wire |= (uint64(b) & 0x7F) << shift
+			if b < 0x80 {
+				break
+			}
+		}
+		wireType := int(wire & 0x7)
+		switch wireType {
+		case 0:
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				iNdEx++
+				if dAtA[iNdEx-1] < 0x80 {
+					break
+				}
+			}
+			return iNdEx, nil
+		case 1:
+			iNdEx += 8
+			return iNdEx, nil
+		case 2:
+			var length int
+			for shift := uint(0); ; shift += 7 {
+				if shift >= 64 {
+					return 0, ErrIntOverflowWire
+				}
+				if iNdEx >= l {
+					return 0, io.ErrUnexpectedEOF
+				}
+				b := dAtA[iNdEx]
+				iNdEx++
+				length |= (int(b) & 0x7F) << shift
+				if b < 0x80 {
+					break
+				}
+			}
+			iNdEx += length
+			if length < 0 {
+				return 0, ErrInvalidLengthWire
+			}
+			return iNdEx, nil
+		case 3:
+			for {
+				var innerWire uint64
+				var start int = iNdEx
+				for shift := uint(0); ; shift += 7 {
+					if shift >= 64 {
+						return 0, ErrIntOverflowWire
+					}
+					if iNdEx >= l {
+						return 0, io.ErrUnexpectedEOF
+					}
+					b := dAtA[iNdEx]
+					iNdEx++
+					innerWire |= (uint64(b) & 0x7F) << shift
+					if b < 0x80 {
+						break
+					}
+				}
+				innerWireType := int(innerWire & 0x7)
+				if innerWireType == 4 {
+					break
+				}
+				next, err := skipWire(dAtA[start:])
+				if err != nil {
+					return 0, err
+				}
+				iNdEx = start + next
+			}
+			return iNdEx, nil
+		case 4:
+			return iNdEx, nil
+		case 5:
+			iNdEx += 4
+			return iNdEx, nil
+		default:
+			return 0, fmt.Errorf("proto: illegal wireType %d", wireType)
+		}
+	}
+	panic("unreachable")
+}
+
+var (
+	ErrInvalidLengthWire = fmt.Errorf("proto: negative length found during unmarshaling")
+	ErrIntOverflowWire   = fmt.Errorf("proto: integer overflow")
+)
+
+func init() { proto.RegisterFile("wire.proto", fileDescriptorWire) }
+
+var fileDescriptorWire = []byte{
+	// 259 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x09, 0x6e, 0x88, 0x02, 0xff, 0xe2, 0xe2, 0x2a, 0xcf, 0x2c, 0x4a,
+	0xd5, 0x2b, 0x28, 0xca, 0x2f, 0xc9, 0x17, 0x62, 0x4b, 0x2b, 0x2e, 0x2d, 0xc9, 0xcc, 0x91, 0xe2,
+	0x2a, 0x2e, 0x49, 0x2c, 0x81, 0x88, 0x29, 0xdd, 0x65, 0xe4, 0x62, 0x0b, 0x48, 0x4c, 0xce, 0x4e,
+	0x2d, 0x11, 0xd2, 0xe5, 0x62, 0x29, 0xa9, 0x2c, 0x48, 0x95, 0x60, 0x54, 0x60, 0xd4, 0xe0, 0x33,
+	0x92, 0xd4, 0x83, 0xa8, 0xd6, 0x83, 0xc8, 0x42, 0xa9, 0x90, 0xca, 0x82, 0xd4, 0x20, 0xb0, 0x32,
+	0x21, 0x05, 0x2e, 0x16, 0x90, 0x39, 0x12, 0x4c, 0x0a, 0x8c, 0x1a, 0xdc, 0x46, 0x3c, 0x30, 0xe5,
+	0xc1, 0x25, 0x89, 0x25, 0x41, 0x60, 0x19, 0x21, 0x3e, 0x2e, 0x26, 0x4f, 0x17, 0x09, 0x66, 0x05,
+	0x46, 0x0d, 0xde, 0x20, 0x26, 0x4f, 0x17, 0x21, 0x21, 0x2e, 0x96, 0x94, 0xc4, 0x92, 0x44, 0x09,
+	0x16, 0x05, 0x46, 0x0d, 0x9e, 0x20, 0x30, 0x5b, 0x29, 0x8e, 0x8b, 0x0b, 0x61, 0xb2, 0x10, 0x3f,
+	0x17, 0x77, 0x80, 0xa3, 0xb3, 0xb7, 0x6b, 0x48, 0x7c, 0x70, 0x88, 0x63, 0x88, 0x00, 0x83, 0x10,
+	0x1f, 0x17, 0x17, 0x54, 0x20, 0xc8, 0x35, 0x50, 0x80, 0x11, 0x49, 0x81, 0x8b, 0x63, 0x88, 0xa3,
+	0x00, 0x13, 0x92, 0x02, 0x37, 0x4f, 0x3f, 0x01, 0x66, 0x24, 0xbe, 0x6b, 0x50, 0x90, 0x00, 0x8b,
+	0x93, 0xce, 0x85, 0x87, 0x72, 0x0c, 0x37, 0x1e, 0xca, 0x31, 0x7c, 0x78, 0x28, 0xc7, 0xd8, 0xf0,
+	0x48, 0x8e, 0x71, 0xc5, 0x23, 0x39, 0xc6, 0x13, 0x8f, 0xe4, 0x18, 0x2f, 0x3c, 0x92, 0x63, 0x7c,
+	0xf0, 0x48, 0x8e, 0xf1, 0xc5, 0x23, 0x39, 0x86, 0x0f, 0x8f, 0xe4, 0x18, 0x27, 0x3c, 0x96, 0x63,
+	0x48, 0x62, 0x03, 0x07, 0x8a, 0x31, 0x20, 0x00, 0x00, 0xff, 0xff, 0x8b, 0xce, 0x55, 0x3b, 0x36,
+	0x01, 0x00, 0x00,
+}
diff --git a/vendor/github.com/ugorji/go/LICENSE b/vendor/github.com/ugorji/go/LICENSE
new file mode 100644
index 0000000000..95a0f0541c
--- /dev/null
+++ b/vendor/github.com/ugorji/go/LICENSE
@@ -0,0 +1,22 @@
+The MIT License (MIT)
+
+Copyright (c) 2012-2015 Ugorji Nwoke.
+All rights reserved.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/vendor/github.com/ugorji/go/codec/0doc.go b/vendor/github.com/ugorji/go/codec/0doc.go
new file mode 100644
index 0000000000..b61a8180e4
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/0doc.go
@@ -0,0 +1,264 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+/*
+Package codec provides a
+High Performance, Feature-Rich Idiomatic Go 1.4+ codec/encoding library
+for binc, msgpack, cbor, json.
+
+Supported Serialization formats are:
+
+  - msgpack: https://github.com/msgpack/msgpack
+  - binc:    http://github.com/ugorji/binc
+  - cbor:    http://cbor.io http://tools.ietf.org/html/rfc7049
+  - json:    http://json.org http://tools.ietf.org/html/rfc7159
+  - simple:
+
+To install:
+
+    go get github.com/ugorji/go/codec
+
+This package will carefully use 'unsafe' for performance reasons in specific places.
+You can build without unsafe use by passing the safe or appengine tag
+i.e. 'go install -tags=safe ...'. Note that unsafe is only supported for the last 3
+go sdk versions e.g. current go release is go 1.9, so we support unsafe use only from
+go 1.7+ . This is because supporting unsafe requires knowledge of implementation details.
+
+For detailed usage information, read the primer at http://ugorji.net/blog/go-codec-primer .
+
+The idiomatic Go support is as seen in other encoding packages in
+the standard library (ie json, xml, gob, etc).
+
+Rich Feature Set includes:
+
+  - Simple but extremely powerful and feature-rich API
+  - Support for go1.4 and above, while selectively using newer APIs for later releases
+  - Excellent code coverage ( > 90% )
+  - Very High Performance.
+    Our extensive benchmarks show us outperforming Gob, Json, Bson, etc by 2-4X.
+  - Careful selected use of 'unsafe' for targeted performance gains.
+    100% mode exists where 'unsafe' is not used at all.
+  - Lock-free (sans mutex) concurrency for scaling to 100's of cores
+  - Coerce types where appropriate
+    e.g. decode an int in the stream into a float, decode numbers from formatted strings, etc
+  - Corner Cases:
+    Overflows, nil maps/slices, nil values in streams are handled correctly
+  - Standard field renaming via tags
+  - Support for omitting empty fields during an encoding
+  - Encoding from any value and decoding into pointer to any value
+    (struct, slice, map, primitives, pointers, interface{}, etc)
+  - Extensions to support efficient encoding/decoding of any named types
+  - Support encoding.(Binary|Text)(M|Unm)arshaler interfaces
+  - Support IsZero() bool to determine if a value is a zero value.
+    Analogous to time.Time.IsZero() bool.
+  - Decoding without a schema (into a interface{}).
+    Includes Options to configure what specific map or slice type to use
+    when decoding an encoded list or map into a nil interface{}
+  - Mapping a non-interface type to an interface, so we can decode appropriately
+    into any interface type with a correctly configured non-interface value.
+  - Encode a struct as an array, and decode struct from an array in the data stream
+  - Option to encode struct keys as numbers (instead of strings)
+    (to support structured streams with fields encoded as numeric codes)
+  - Comprehensive support for anonymous fields
+  - Fast (no-reflection) encoding/decoding of common maps and slices
+  - Code-generation for faster performance.
+  - Support binary (e.g. messagepack, cbor) and text (e.g. json) formats
+  - Support indefinite-length formats to enable true streaming
+    (for formats which support it e.g. json, cbor)
+  - Support canonical encoding, where a value is ALWAYS encoded as same sequence of bytes.
+    This mostly applies to maps, where iteration order is non-deterministic.
+  - NIL in data stream decoded as zero value
+  - Never silently skip data when decoding.
+    User decides whether to return an error or silently skip data when keys or indexes
+    in the data stream do not map to fields in the struct.
+  - Detect and error when encoding a cyclic reference (instead of stack overflow shutdown)
+  - Encode/Decode from/to chan types (for iterative streaming support)
+  - Drop-in replacement for encoding/json. `json:` key in struct tag supported.
+  - Provides a RPC Server and Client Codec for net/rpc communication protocol.
+  - Handle unique idiosyncrasies of codecs e.g.
+    - For messagepack, configure how ambiguities in handling raw bytes are resolved
+    - For messagepack, provide rpc server/client codec to support
+      msgpack-rpc protocol defined at:
+      https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md
+
+Extension Support
+
+Users can register a function to handle the encoding or decoding of
+their custom types.
+
+There are no restrictions on what the custom type can be. Some examples:
+
+    type BisSet   []int
+    type BitSet64 uint64
+    type UUID     string
+    type MyStructWithUnexportedFields struct { a int; b bool; c []int; }
+    type GifImage struct { ... }
+
+As an illustration, MyStructWithUnexportedFields would normally be
+encoded as an empty map because it has no exported fields, while UUID
+would be encoded as a string. However, with extension support, you can
+encode any of these however you like.
+
+Custom Encoding and Decoding
+
+This package maintains symmetry in the encoding and decoding halfs.
+We determine how to encode or decode by walking this decision tree
+
+  - is type a codec.Selfer?
+  - is there an extension registered for the type?
+  - is format binary, and is type a encoding.BinaryMarshaler and BinaryUnmarshaler?
+  - is format specifically json, and is type a encoding/json.Marshaler and Unmarshaler?
+  - is format text-based, and type an encoding.TextMarshaler?
+  - else we use a pair of functions based on the "kind" of the type e.g. map, slice, int64, etc
+
+This symmetry is important to reduce chances of issues happening because the
+encoding and decoding sides are out of sync e.g. decoded via very specific
+encoding.TextUnmarshaler but encoded via kind-specific generalized mode.
+
+Consequently, if a type only defines one-half of the symmetry
+(e.g. it implements UnmarshalJSON() but not MarshalJSON() ),
+then that type doesn't satisfy the check and we will continue walking down the
+decision tree.
+
+RPC
+
+RPC Client and Server Codecs are implemented, so the codecs can be used
+with the standard net/rpc package.
+
+Usage
+
+The Handle is SAFE for concurrent READ, but NOT SAFE for concurrent modification.
+
+The Encoder and Decoder are NOT safe for concurrent use.
+
+Consequently, the usage model is basically:
+
+    - Create and initialize the Handle before any use.
+      Once created, DO NOT modify it.
+    - Multiple Encoders or Decoders can now use the Handle concurrently.
+      They only read information off the Handle (never write).
+    - However, each Encoder or Decoder MUST not be used concurrently
+    - To re-use an Encoder/Decoder, call Reset(...) on it first.
+      This allows you use state maintained on the Encoder/Decoder.
+
+Sample usage model:
+
+    // create and configure Handle
+    var (
+      bh codec.BincHandle
+      mh codec.MsgpackHandle
+      ch codec.CborHandle
+    )
+
+    mh.MapType = reflect.TypeOf(map[string]interface{}(nil))
+
+    // configure extensions
+    // e.g. for msgpack, define functions and enable Time support for tag 1
+    // mh.SetExt(reflect.TypeOf(time.Time{}), 1, myExt)
+
+    // create and use decoder/encoder
+    var (
+      r io.Reader
+      w io.Writer
+      b []byte
+      h = &bh // or mh to use msgpack
+    )
+
+    dec = codec.NewDecoder(r, h)
+    dec = codec.NewDecoderBytes(b, h)
+    err = dec.Decode(&v)
+
+    enc = codec.NewEncoder(w, h)
+    enc = codec.NewEncoderBytes(&b, h)
+    err = enc.Encode(v)
+
+    //RPC Server
+    go func() {
+        for {
+            conn, err := listener.Accept()
+            rpcCodec := codec.GoRpc.ServerCodec(conn, h)
+            //OR rpcCodec := codec.MsgpackSpecRpc.ServerCodec(conn, h)
+            rpc.ServeCodec(rpcCodec)
+        }
+    }()
+
+    //RPC Communication (client side)
+    conn, err = net.Dial("tcp", "localhost:5555")
+    rpcCodec := codec.GoRpc.ClientCodec(conn, h)
+    //OR rpcCodec := codec.MsgpackSpecRpc.ClientCodec(conn, h)
+    client := rpc.NewClientWithCodec(rpcCodec)
+
+Running Tests
+
+To run tests, use the following:
+
+    go test
+
+To run the full suite of tests, use the following:
+
+    go test -tags alltests -run Suite
+
+You can run the tag 'safe' to run tests or build in safe mode. e.g.
+
+    go test -tags safe -run Json
+    go test -tags "alltests safe" -run Suite
+
+Running Benchmarks
+
+Please see http://github.com/ugorji/go-codec-bench .
+
+Caveats
+
+Struct fields matching the following are ignored during encoding and decoding
+    - struct tag value set to -
+    - func, complex numbers, unsafe pointers
+    - unexported and not embedded
+    - unexported and embedded and not struct kind
+    - unexported and embedded pointers (from go1.10)
+
+Every other field in a struct will be encoded/decoded.
+
+Embedded fields are encoded as if they exist in the top-level struct,
+with some caveats. See Encode documentation.
+
+*/
+package codec
+
+// TODO:
+//   - For Go 1.11, when mid-stack inlining is enabled,
+//     we should use committed functions for writeXXX and readXXX calls.
+//     This involves uncommenting the methods for decReaderSwitch and encWriterSwitch
+//     and using those (decReaderSwitch and encWriterSwitch) in all handles
+//     instead of encWriter and decReader.
+//     The benefit is that, for the (En|De)coder over []byte, the encWriter/decReader
+//     will be inlined, giving a performance bump for that typical case.
+//     However, it will only  be inlined if mid-stack inlining is enabled,
+//     as we call panic to raise errors, and panic currently prevents inlining.
+//
+// PUNTED:
+//   - To make Handle comparable, make extHandle in BasicHandle a non-embedded pointer,
+//     and use overlay methods on *BasicHandle to call through to extHandle after initializing
+//     the "xh *extHandle" to point to a real slice.
+//
+// BEFORE EACH RELEASE:
+//   - Look through and fix padding for each type, to eliminate false sharing
+//     - critical shared objects that are read many times
+//       TypeInfos
+//     - pooled objects:
+//       decNaked, decNakedContainers, codecFner, typeInfoLoadArray, 
+//     - small objects allocated independently, that we read/use much across threads:
+//       codecFn, typeInfo
+//     - Objects allocated independently and used a lot
+//       Decoder, Encoder,
+//       xxxHandle, xxxEncDriver, xxxDecDriver (xxx = json, msgpack, cbor, binc, simple)
+//     - In all above, arrange values modified together to be close to each other.
+//
+//     For all of these, either ensure that they occupy full cache lines,
+//     or ensure that the things just past the cache line boundary are hardly read/written
+//     e.g. JsonHandle.RawBytesExt - which is copied into json(En|De)cDriver at init
+//
+//     Occupying full cache lines means they occupy 8*N words (where N is an integer).
+//     Check this out by running: ./run.sh -z
+//     - look at those tagged ****, meaning they are not occupying full cache lines
+//     - look at those tagged <<<<, meaning they are larger than 32 words (something to watch)
+//   - Run "golint -min_confidence 0.81"
diff --git a/vendor/github.com/ugorji/go/codec/binc.go b/vendor/github.com/ugorji/go/codec/binc.go
new file mode 100644
index 0000000000..a3c96fe741
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/binc.go
@@ -0,0 +1,1168 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"math"
+	"reflect"
+	"time"
+)
+
+const bincDoPrune = true // No longer needed. Needed before as C lib did not support pruning.
+
+// vd as low 4 bits (there are 16 slots)
+const (
+	bincVdSpecial byte = iota
+	bincVdPosInt
+	bincVdNegInt
+	bincVdFloat
+
+	bincVdString
+	bincVdByteArray
+	bincVdArray
+	bincVdMap
+
+	bincVdTimestamp
+	bincVdSmallInt
+	bincVdUnicodeOther
+	bincVdSymbol
+
+	bincVdDecimal
+	_               // open slot
+	_               // open slot
+	bincVdCustomExt = 0x0f
+)
+
+const (
+	bincSpNil byte = iota
+	bincSpFalse
+	bincSpTrue
+	bincSpNan
+	bincSpPosInf
+	bincSpNegInf
+	bincSpZeroFloat
+	bincSpZero
+	bincSpNegOne
+)
+
+const (
+	bincFlBin16 byte = iota
+	bincFlBin32
+	_ // bincFlBin32e
+	bincFlBin64
+	_ // bincFlBin64e
+	// others not currently supported
+)
+
+func bincdesc(vd, vs byte) string {
+	switch vd {
+	case bincVdSpecial:
+		switch vs {
+		case bincSpNil:
+			return "nil"
+		case bincSpFalse:
+			return "false"
+		case bincSpTrue:
+			return "true"
+		case bincSpNan, bincSpPosInf, bincSpNegInf, bincSpZeroFloat:
+			return "float"
+		case bincSpZero:
+			return "uint"
+		case bincSpNegOne:
+			return "int"
+		default:
+			return "unknown"
+		}
+	case bincVdSmallInt, bincVdPosInt:
+		return "uint"
+	case bincVdNegInt:
+		return "int"
+	case bincVdFloat:
+		return "float"
+	case bincVdSymbol:
+		return "string"
+	case bincVdString:
+		return "string"
+	case bincVdByteArray:
+		return "bytes"
+	case bincVdTimestamp:
+		return "time"
+	case bincVdCustomExt:
+		return "ext"
+	case bincVdArray:
+		return "array"
+	case bincVdMap:
+		return "map"
+	default:
+		return "unknown"
+	}
+}
+
+type bincEncDriver struct {
+	e *Encoder
+	h *BincHandle
+	w encWriter
+	m map[string]uint16 // symbols
+	b [16]byte          // scratch, used for encoding numbers - bigendian style
+	s uint16            // symbols sequencer
+	// c containerState
+	encDriverTrackContainerWriter
+	noBuiltInTypes
+	// encNoSeparator
+}
+
+func (e *bincEncDriver) EncodeNil() {
+	e.w.writen1(bincVdSpecial<<4 | bincSpNil)
+}
+
+func (e *bincEncDriver) EncodeTime(t time.Time) {
+	if t.IsZero() {
+		e.EncodeNil()
+	} else {
+		bs := bincEncodeTime(t)
+		e.w.writen1(bincVdTimestamp<<4 | uint8(len(bs)))
+		e.w.writeb(bs)
+	}
+}
+
+func (e *bincEncDriver) EncodeBool(b bool) {
+	if b {
+		e.w.writen1(bincVdSpecial<<4 | bincSpTrue)
+	} else {
+		e.w.writen1(bincVdSpecial<<4 | bincSpFalse)
+	}
+}
+
+func (e *bincEncDriver) EncodeFloat32(f float32) {
+	if f == 0 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpZeroFloat)
+		return
+	}
+	e.w.writen1(bincVdFloat<<4 | bincFlBin32)
+	bigenHelper{e.b[:4], e.w}.writeUint32(math.Float32bits(f))
+}
+
+func (e *bincEncDriver) EncodeFloat64(f float64) {
+	if f == 0 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpZeroFloat)
+		return
+	}
+	bigen.PutUint64(e.b[:8], math.Float64bits(f))
+	if bincDoPrune {
+		i := 7
+		for ; i >= 0 && (e.b[i] == 0); i-- {
+		}
+		i++
+		if i <= 6 {
+			e.w.writen1(bincVdFloat<<4 | 0x8 | bincFlBin64)
+			e.w.writen1(byte(i))
+			e.w.writeb(e.b[:i])
+			return
+		}
+	}
+	e.w.writen1(bincVdFloat<<4 | bincFlBin64)
+	e.w.writeb(e.b[:8])
+}
+
+func (e *bincEncDriver) encIntegerPrune(bd byte, pos bool, v uint64, lim uint8) {
+	if lim == 4 {
+		bigen.PutUint32(e.b[:lim], uint32(v))
+	} else {
+		bigen.PutUint64(e.b[:lim], v)
+	}
+	if bincDoPrune {
+		i := pruneSignExt(e.b[:lim], pos)
+		e.w.writen1(bd | lim - 1 - byte(i))
+		e.w.writeb(e.b[i:lim])
+	} else {
+		e.w.writen1(bd | lim - 1)
+		e.w.writeb(e.b[:lim])
+	}
+}
+
+func (e *bincEncDriver) EncodeInt(v int64) {
+	const nbd byte = bincVdNegInt << 4
+	if v >= 0 {
+		e.encUint(bincVdPosInt<<4, true, uint64(v))
+	} else if v == -1 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpNegOne)
+	} else {
+		e.encUint(bincVdNegInt<<4, false, uint64(-v))
+	}
+}
+
+func (e *bincEncDriver) EncodeUint(v uint64) {
+	e.encUint(bincVdPosInt<<4, true, v)
+}
+
+func (e *bincEncDriver) encUint(bd byte, pos bool, v uint64) {
+	if v == 0 {
+		e.w.writen1(bincVdSpecial<<4 | bincSpZero)
+	} else if pos && v >= 1 && v <= 16 {
+		e.w.writen1(bincVdSmallInt<<4 | byte(v-1))
+	} else if v <= math.MaxUint8 {
+		e.w.writen2(bd|0x0, byte(v))
+	} else if v <= math.MaxUint16 {
+		e.w.writen1(bd | 0x01)
+		bigenHelper{e.b[:2], e.w}.writeUint16(uint16(v))
+	} else if v <= math.MaxUint32 {
+		e.encIntegerPrune(bd, pos, v, 4)
+	} else {
+		e.encIntegerPrune(bd, pos, v, 8)
+	}
+}
+
+func (e *bincEncDriver) EncodeExt(rv interface{}, xtag uint64, ext Ext, _ *Encoder) {
+	bs := ext.WriteExt(rv)
+	if bs == nil {
+		e.EncodeNil()
+		return
+	}
+	e.encodeExtPreamble(uint8(xtag), len(bs))
+	e.w.writeb(bs)
+}
+
+func (e *bincEncDriver) EncodeRawExt(re *RawExt, _ *Encoder) {
+	e.encodeExtPreamble(uint8(re.Tag), len(re.Data))
+	e.w.writeb(re.Data)
+}
+
+func (e *bincEncDriver) encodeExtPreamble(xtag byte, length int) {
+	e.encLen(bincVdCustomExt<<4, uint64(length))
+	e.w.writen1(xtag)
+}
+
+func (e *bincEncDriver) WriteArrayStart(length int) {
+	e.encLen(bincVdArray<<4, uint64(length))
+	e.c = containerArrayStart
+}
+
+func (e *bincEncDriver) WriteMapStart(length int) {
+	e.encLen(bincVdMap<<4, uint64(length))
+	e.c = containerMapStart
+}
+
+func (e *bincEncDriver) EncodeString(c charEncoding, v string) {
+	if e.c == containerMapKey && c == cUTF8 && (e.h.AsSymbols == 0 || e.h.AsSymbols == 1) {
+		e.EncodeSymbol(v)
+		return
+	}
+	l := uint64(len(v))
+	e.encBytesLen(c, l)
+	if l > 0 {
+		e.w.writestr(v)
+	}
+}
+
+func (e *bincEncDriver) EncodeSymbol(v string) {
+	// if WriteSymbolsNoRefs {
+	// 	e.encodeString(cUTF8, v)
+	// 	return
+	// }
+
+	//symbols only offer benefit when string length > 1.
+	//This is because strings with length 1 take only 2 bytes to store
+	//(bd with embedded length, and single byte for string val).
+
+	l := len(v)
+	if l == 0 {
+		e.encBytesLen(cUTF8, 0)
+		return
+	} else if l == 1 {
+		e.encBytesLen(cUTF8, 1)
+		e.w.writen1(v[0])
+		return
+	}
+	if e.m == nil {
+		e.m = make(map[string]uint16, 16)
+	}
+	ui, ok := e.m[v]
+	if ok {
+		if ui <= math.MaxUint8 {
+			e.w.writen2(bincVdSymbol<<4, byte(ui))
+		} else {
+			e.w.writen1(bincVdSymbol<<4 | 0x8)
+			bigenHelper{e.b[:2], e.w}.writeUint16(ui)
+		}
+	} else {
+		e.s++
+		ui = e.s
+		//ui = uint16(atomic.AddUint32(&e.s, 1))
+		e.m[v] = ui
+		var lenprec uint8
+		if l <= math.MaxUint8 {
+			// lenprec = 0
+		} else if l <= math.MaxUint16 {
+			lenprec = 1
+		} else if int64(l) <= math.MaxUint32 {
+			lenprec = 2
+		} else {
+			lenprec = 3
+		}
+		if ui <= math.MaxUint8 {
+			e.w.writen2(bincVdSymbol<<4|0x0|0x4|lenprec, byte(ui))
+		} else {
+			e.w.writen1(bincVdSymbol<<4 | 0x8 | 0x4 | lenprec)
+			bigenHelper{e.b[:2], e.w}.writeUint16(ui)
+		}
+		if lenprec == 0 {
+			e.w.writen1(byte(l))
+		} else if lenprec == 1 {
+			bigenHelper{e.b[:2], e.w}.writeUint16(uint16(l))
+		} else if lenprec == 2 {
+			bigenHelper{e.b[:4], e.w}.writeUint32(uint32(l))
+		} else {
+			bigenHelper{e.b[:8], e.w}.writeUint64(uint64(l))
+		}
+		e.w.writestr(v)
+	}
+}
+
+func (e *bincEncDriver) EncodeStringBytes(c charEncoding, v []byte) {
+	if v == nil {
+		e.EncodeNil()
+		return
+	}
+	l := uint64(len(v))
+	e.encBytesLen(c, l)
+	if l > 0 {
+		e.w.writeb(v)
+	}
+}
+
+func (e *bincEncDriver) encBytesLen(c charEncoding, length uint64) {
+	//TODO: support bincUnicodeOther (for now, just use string or bytearray)
+	if c == cRAW {
+		e.encLen(bincVdByteArray<<4, length)
+	} else {
+		e.encLen(bincVdString<<4, length)
+	}
+}
+
+func (e *bincEncDriver) encLen(bd byte, l uint64) {
+	if l < 12 {
+		e.w.writen1(bd | uint8(l+4))
+	} else {
+		e.encLenNumber(bd, l)
+	}
+}
+
+func (e *bincEncDriver) encLenNumber(bd byte, v uint64) {
+	if v <= math.MaxUint8 {
+		e.w.writen2(bd, byte(v))
+	} else if v <= math.MaxUint16 {
+		e.w.writen1(bd | 0x01)
+		bigenHelper{e.b[:2], e.w}.writeUint16(uint16(v))
+	} else if v <= math.MaxUint32 {
+		e.w.writen1(bd | 0x02)
+		bigenHelper{e.b[:4], e.w}.writeUint32(uint32(v))
+	} else {
+		e.w.writen1(bd | 0x03)
+		bigenHelper{e.b[:8], e.w}.writeUint64(uint64(v))
+	}
+}
+
+//------------------------------------
+
+type bincDecSymbol struct {
+	s string
+	b []byte
+	i uint16
+}
+
+type bincDecDriver struct {
+	decDriverNoopContainerReader
+	noBuiltInTypes
+
+	d      *Decoder
+	h      *BincHandle
+	r      decReader
+	br     bool // bytes reader
+	bdRead bool
+	bd     byte
+	vd     byte
+	vs     byte
+	_      [3]byte // padding
+	// linear searching on this slice is ok,
+	// because we typically expect < 32 symbols in each stream.
+	s []bincDecSymbol
+
+	// noStreamingCodec
+	// decNoSeparator
+
+	b [8 * 8]byte // scratch
+}
+
+func (d *bincDecDriver) readNextBd() {
+	d.bd = d.r.readn1()
+	d.vd = d.bd >> 4
+	d.vs = d.bd & 0x0f
+	d.bdRead = true
+}
+
+func (d *bincDecDriver) uncacheRead() {
+	if d.bdRead {
+		d.r.unreadn1()
+		d.bdRead = false
+	}
+}
+
+func (d *bincDecDriver) ContainerType() (vt valueType) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.vd == bincVdSpecial && d.vs == bincSpNil {
+		return valueTypeNil
+	} else if d.vd == bincVdByteArray {
+		return valueTypeBytes
+	} else if d.vd == bincVdString {
+		return valueTypeString
+	} else if d.vd == bincVdArray {
+		return valueTypeArray
+	} else if d.vd == bincVdMap {
+		return valueTypeMap
+	}
+	// else {
+	// d.d.errorf("isContainerType: unsupported parameter: %v", vt)
+	// }
+	return valueTypeUnset
+}
+
+func (d *bincDecDriver) TryDecodeAsNil() bool {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == bincVdSpecial<<4|bincSpNil {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *bincDecDriver) DecodeTime() (t time.Time) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == bincVdSpecial<<4|bincSpNil {
+		d.bdRead = false
+		return
+	}
+	if d.vd != bincVdTimestamp {
+		d.d.errorf("cannot decode time - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	t, err := bincDecodeTime(d.r.readx(int(d.vs)))
+	if err != nil {
+		panic(err)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decFloatPre(vs, defaultLen byte) {
+	if vs&0x8 == 0 {
+		d.r.readb(d.b[0:defaultLen])
+	} else {
+		l := d.r.readn1()
+		if l > 8 {
+			d.d.errorf("cannot read float - at most 8 bytes used to represent float - received %v bytes", l)
+			return
+		}
+		for i := l; i < 8; i++ {
+			d.b[i] = 0
+		}
+		d.r.readb(d.b[0:l])
+	}
+}
+
+func (d *bincDecDriver) decFloat() (f float64) {
+	//if true { f = math.Float64frombits(bigen.Uint64(d.r.readx(8))); break; }
+	if x := d.vs & 0x7; x == bincFlBin32 {
+		d.decFloatPre(d.vs, 4)
+		f = float64(math.Float32frombits(bigen.Uint32(d.b[0:4])))
+	} else if x == bincFlBin64 {
+		d.decFloatPre(d.vs, 8)
+		f = math.Float64frombits(bigen.Uint64(d.b[0:8]))
+	} else {
+		d.d.errorf("read float - only float32 and float64 are supported - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	return
+}
+
+func (d *bincDecDriver) decUint() (v uint64) {
+	// need to inline the code (interface conversion and type assertion expensive)
+	switch d.vs {
+	case 0:
+		v = uint64(d.r.readn1())
+	case 1:
+		d.r.readb(d.b[6:8])
+		v = uint64(bigen.Uint16(d.b[6:8]))
+	case 2:
+		d.b[4] = 0
+		d.r.readb(d.b[5:8])
+		v = uint64(bigen.Uint32(d.b[4:8]))
+	case 3:
+		d.r.readb(d.b[4:8])
+		v = uint64(bigen.Uint32(d.b[4:8]))
+	case 4, 5, 6:
+		lim := int(7 - d.vs)
+		d.r.readb(d.b[lim:8])
+		for i := 0; i < lim; i++ {
+			d.b[i] = 0
+		}
+		v = uint64(bigen.Uint64(d.b[:8]))
+	case 7:
+		d.r.readb(d.b[:8])
+		v = uint64(bigen.Uint64(d.b[:8]))
+	default:
+		d.d.errorf("unsigned integers with greater than 64 bits of precision not supported")
+		return
+	}
+	return
+}
+
+func (d *bincDecDriver) decCheckInteger() (ui uint64, neg bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	vd, vs := d.vd, d.vs
+	if vd == bincVdPosInt {
+		ui = d.decUint()
+	} else if vd == bincVdNegInt {
+		ui = d.decUint()
+		neg = true
+	} else if vd == bincVdSmallInt {
+		ui = uint64(d.vs) + 1
+	} else if vd == bincVdSpecial {
+		if vs == bincSpZero {
+			//i = 0
+		} else if vs == bincSpNegOne {
+			neg = true
+			ui = 1
+		} else {
+			d.d.errorf("integer decode fails - invalid special value from descriptor %x-%x/%s",
+				d.vd, d.vs, bincdesc(d.vd, d.vs))
+			return
+		}
+	} else {
+		d.d.errorf("integer can only be decoded from int/uint. d.bd: 0x%x, d.vd: 0x%x", d.bd, d.vd)
+		return
+	}
+	return
+}
+
+func (d *bincDecDriver) DecodeInt64() (i int64) {
+	ui, neg := d.decCheckInteger()
+	i = chkOvf.SignedIntV(ui)
+	if neg {
+		i = -i
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) DecodeUint64() (ui uint64) {
+	ui, neg := d.decCheckInteger()
+	if neg {
+		d.d.errorf("assigning negative signed value to unsigned integer type")
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) DecodeFloat64() (f float64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	vd, vs := d.vd, d.vs
+	if vd == bincVdSpecial {
+		d.bdRead = false
+		if vs == bincSpNan {
+			return math.NaN()
+		} else if vs == bincSpPosInf {
+			return math.Inf(1)
+		} else if vs == bincSpZeroFloat || vs == bincSpZero {
+			return
+		} else if vs == bincSpNegInf {
+			return math.Inf(-1)
+		} else {
+			d.d.errorf("float - invalid special value from descriptor %x-%x/%s",
+				d.vd, d.vs, bincdesc(d.vd, d.vs))
+			return
+		}
+	} else if vd == bincVdFloat {
+		f = d.decFloat()
+	} else {
+		f = float64(d.DecodeInt64())
+	}
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool only (single byte).
+func (d *bincDecDriver) DecodeBool() (b bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if bd := d.bd; bd == (bincVdSpecial | bincSpFalse) {
+		// b = false
+	} else if bd == (bincVdSpecial | bincSpTrue) {
+		b = true
+	} else {
+		d.d.errorf("bool - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) ReadMapStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.vd != bincVdMap {
+		d.d.errorf("map - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	length = d.decLen()
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) ReadArrayStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.vd != bincVdArray {
+		d.d.errorf("array - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	length = d.decLen()
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) decLen() int {
+	if d.vs > 3 {
+		return int(d.vs - 4)
+	}
+	return int(d.decLenNumber())
+}
+
+func (d *bincDecDriver) decLenNumber() (v uint64) {
+	if x := d.vs; x == 0 {
+		v = uint64(d.r.readn1())
+	} else if x == 1 {
+		d.r.readb(d.b[6:8])
+		v = uint64(bigen.Uint16(d.b[6:8]))
+	} else if x == 2 {
+		d.r.readb(d.b[4:8])
+		v = uint64(bigen.Uint32(d.b[4:8]))
+	} else {
+		d.r.readb(d.b[:8])
+		v = bigen.Uint64(d.b[:8])
+	}
+	return
+}
+
+func (d *bincDecDriver) decStringAndBytes(bs []byte, withString, zerocopy bool) (
+	bs2 []byte, s string) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == bincVdSpecial<<4|bincSpNil {
+		d.bdRead = false
+		return
+	}
+	var slen = -1
+	// var ok bool
+	switch d.vd {
+	case bincVdString, bincVdByteArray:
+		slen = d.decLen()
+		if zerocopy {
+			if d.br {
+				bs2 = d.r.readx(slen)
+			} else if len(bs) == 0 {
+				bs2 = decByteSlice(d.r, slen, d.d.h.MaxInitLen, d.b[:])
+			} else {
+				bs2 = decByteSlice(d.r, slen, d.d.h.MaxInitLen, bs)
+			}
+		} else {
+			bs2 = decByteSlice(d.r, slen, d.d.h.MaxInitLen, bs)
+		}
+		if withString {
+			s = string(bs2)
+		}
+	case bincVdSymbol:
+		// zerocopy doesn't apply for symbols,
+		// as the values must be stored in a table for later use.
+		//
+		//from vs: extract numSymbolBytes, containsStringVal, strLenPrecision,
+		//extract symbol
+		//if containsStringVal, read it and put in map
+		//else look in map for string value
+		var symbol uint16
+		vs := d.vs
+		if vs&0x8 == 0 {
+			symbol = uint16(d.r.readn1())
+		} else {
+			symbol = uint16(bigen.Uint16(d.r.readx(2)))
+		}
+		if d.s == nil {
+			d.s = make([]bincDecSymbol, 0, 16)
+		}
+
+		if vs&0x4 == 0 {
+			for i := range d.s {
+				j := &d.s[i]
+				if j.i == symbol {
+					bs2 = j.b
+					if withString {
+						if j.s == "" && bs2 != nil {
+							j.s = string(bs2)
+						}
+						s = j.s
+					}
+					break
+				}
+			}
+		} else {
+			switch vs & 0x3 {
+			case 0:
+				slen = int(d.r.readn1())
+			case 1:
+				slen = int(bigen.Uint16(d.r.readx(2)))
+			case 2:
+				slen = int(bigen.Uint32(d.r.readx(4)))
+			case 3:
+				slen = int(bigen.Uint64(d.r.readx(8)))
+			}
+			// since using symbols, do not store any part of
+			// the parameter bs in the map, as it might be a shared buffer.
+			// bs2 = decByteSlice(d.r, slen, bs)
+			bs2 = decByteSlice(d.r, slen, d.d.h.MaxInitLen, nil)
+			if withString {
+				s = string(bs2)
+			}
+			d.s = append(d.s, bincDecSymbol{i: symbol, s: s, b: bs2})
+		}
+	default:
+		d.d.errorf("string/bytes - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) DecodeString() (s string) {
+	// DecodeBytes does not accommodate symbols, whose impl stores string version in map.
+	// Use decStringAndBytes directly.
+	// return string(d.DecodeBytes(d.b[:], true, true))
+	_, s = d.decStringAndBytes(d.b[:], true, true)
+	return
+}
+
+func (d *bincDecDriver) DecodeStringAsBytes() (s []byte) {
+	s, _ = d.decStringAndBytes(d.b[:], false, true)
+	return
+}
+
+func (d *bincDecDriver) DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == bincVdSpecial<<4|bincSpNil {
+		d.bdRead = false
+		return nil
+	}
+	// check if an "array" of uint8's (see ContainerType for how to infer if an array)
+	if d.vd == bincVdArray {
+		bsOut, _ = fastpathTV.DecSliceUint8V(bs, true, d.d)
+		return
+	}
+	var clen int
+	if d.vd == bincVdString || d.vd == bincVdByteArray {
+		clen = d.decLen()
+	} else {
+		d.d.errorf("bytes - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	d.bdRead = false
+	if zerocopy {
+		if d.br {
+			return d.r.readx(clen)
+		} else if len(bs) == 0 {
+			bs = d.b[:]
+		}
+	}
+	return decByteSlice(d.r, clen, d.d.h.MaxInitLen, bs)
+}
+
+func (d *bincDecDriver) DecodeExt(rv interface{}, xtag uint64, ext Ext) (realxtag uint64) {
+	if xtag > 0xff {
+		d.d.errorf("ext: tag must be <= 0xff; got: %v", xtag)
+		return
+	}
+	realxtag1, xbs := d.decodeExtV(ext != nil, uint8(xtag))
+	realxtag = uint64(realxtag1)
+	if ext == nil {
+		re := rv.(*RawExt)
+		re.Tag = realxtag
+		re.Data = detachZeroCopyBytes(d.br, re.Data, xbs)
+	} else {
+		ext.ReadExt(rv, xbs)
+	}
+	return
+}
+
+func (d *bincDecDriver) decodeExtV(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.vd == bincVdCustomExt {
+		l := d.decLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			d.d.errorf("wrong extension tag - got %b, expecting: %v", xtag, tag)
+			return
+		}
+		xbs = d.r.readx(l)
+	} else if d.vd == bincVdByteArray {
+		xbs = d.DecodeBytes(nil, true)
+	} else {
+		d.d.errorf("ext - expecting extensions or byte array - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *bincDecDriver) DecodeNaked() {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+
+	n := d.d.n
+	var decodeFurther bool
+
+	switch d.vd {
+	case bincVdSpecial:
+		switch d.vs {
+		case bincSpNil:
+			n.v = valueTypeNil
+		case bincSpFalse:
+			n.v = valueTypeBool
+			n.b = false
+		case bincSpTrue:
+			n.v = valueTypeBool
+			n.b = true
+		case bincSpNan:
+			n.v = valueTypeFloat
+			n.f = math.NaN()
+		case bincSpPosInf:
+			n.v = valueTypeFloat
+			n.f = math.Inf(1)
+		case bincSpNegInf:
+			n.v = valueTypeFloat
+			n.f = math.Inf(-1)
+		case bincSpZeroFloat:
+			n.v = valueTypeFloat
+			n.f = float64(0)
+		case bincSpZero:
+			n.v = valueTypeUint
+			n.u = uint64(0) // int8(0)
+		case bincSpNegOne:
+			n.v = valueTypeInt
+			n.i = int64(-1) // int8(-1)
+		default:
+			d.d.errorf("cannot infer value - unrecognized special value from descriptor %x-%x/%s", d.vd, d.vs, bincdesc(d.vd, d.vs))
+		}
+	case bincVdSmallInt:
+		n.v = valueTypeUint
+		n.u = uint64(int8(d.vs)) + 1 // int8(d.vs) + 1
+	case bincVdPosInt:
+		n.v = valueTypeUint
+		n.u = d.decUint()
+	case bincVdNegInt:
+		n.v = valueTypeInt
+		n.i = -(int64(d.decUint()))
+	case bincVdFloat:
+		n.v = valueTypeFloat
+		n.f = d.decFloat()
+	case bincVdSymbol:
+		n.v = valueTypeSymbol
+		n.s = d.DecodeString()
+	case bincVdString:
+		n.v = valueTypeString
+		n.s = d.DecodeString()
+	case bincVdByteArray:
+		n.v = valueTypeBytes
+		n.l = d.DecodeBytes(nil, false)
+	case bincVdTimestamp:
+		n.v = valueTypeTime
+		tt, err := bincDecodeTime(d.r.readx(int(d.vs)))
+		if err != nil {
+			panic(err)
+		}
+		n.t = tt
+	case bincVdCustomExt:
+		n.v = valueTypeExt
+		l := d.decLen()
+		n.u = uint64(d.r.readn1())
+		n.l = d.r.readx(l)
+	case bincVdArray:
+		n.v = valueTypeArray
+		decodeFurther = true
+	case bincVdMap:
+		n.v = valueTypeMap
+		decodeFurther = true
+	default:
+		d.d.errorf("cannot infer value - %s %x-%x/%s", msgBadDesc, d.vd, d.vs, bincdesc(d.vd, d.vs))
+	}
+
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	if n.v == valueTypeUint && d.h.SignedInteger {
+		n.v = valueTypeInt
+		n.i = int64(n.u)
+	}
+	return
+}
+
+//------------------------------------
+
+//BincHandle is a Handle for the Binc Schema-Free Encoding Format
+//defined at https://github.com/ugorji/binc .
+//
+//BincHandle currently supports all Binc features with the following EXCEPTIONS:
+//  - only integers up to 64 bits of precision are supported.
+//    big integers are unsupported.
+//  - Only IEEE 754 binary32 and binary64 floats are supported (ie Go float32 and float64 types).
+//    extended precision and decimal IEEE 754 floats are unsupported.
+//  - Only UTF-8 strings supported.
+//    Unicode_Other Binc types (UTF16, UTF32) are currently unsupported.
+//
+//Note that these EXCEPTIONS are temporary and full support is possible and may happen soon.
+type BincHandle struct {
+	BasicHandle
+	binaryEncodingType
+	noElemSeparators
+
+	// AsSymbols defines what should be encoded as symbols.
+	//
+	// Encoding as symbols can reduce the encoded size significantly.
+	//
+	// However, during decoding, each string to be encoded as a symbol must
+	// be checked to see if it has been seen before. Consequently, encoding time
+	// will increase if using symbols, because string comparisons has a clear cost.
+	//
+	// Values:
+	// - 0: default: library uses best judgement
+	// - 1: use symbols
+	// - 2: do not use symbols
+	AsSymbols uint8
+
+	// AsSymbols: may later on introduce more options ...
+	// - m: map keys
+	// - s: struct fields
+	// - n: none
+	// - a: all: same as m, s, ...
+
+	// _ [1]uint64 // padding
+}
+
+// Name returns the name of the handle: binc
+func (h *BincHandle) Name() string { return "binc" }
+
+// SetBytesExt sets an extension
+func (h *BincHandle) SetBytesExt(rt reflect.Type, tag uint64, ext BytesExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{ext, interfaceExtFailer{}})
+}
+
+func (h *BincHandle) newEncDriver(e *Encoder) encDriver {
+	return &bincEncDriver{e: e, h: h, w: e.w}
+}
+
+func (h *BincHandle) newDecDriver(d *Decoder) decDriver {
+	return &bincDecDriver{d: d, h: h, r: d.r, br: d.bytes}
+}
+
+func (e *bincEncDriver) reset() {
+	e.w = e.e.w
+	e.s = 0
+	e.c = 0
+	e.m = nil
+}
+
+func (d *bincDecDriver) reset() {
+	d.r, d.br = d.d.r, d.d.bytes
+	d.s = nil
+	d.bd, d.bdRead, d.vd, d.vs = 0, false, 0, 0
+}
+
+// var timeDigits = [...]byte{'0', '1', '2', '3', '4', '5', '6', '7', '8', '9'}
+
+// EncodeTime encodes a time.Time as a []byte, including
+// information on the instant in time and UTC offset.
+//
+// Format Description
+//
+//   A timestamp is composed of 3 components:
+//
+//   - secs: signed integer representing seconds since unix epoch
+//   - nsces: unsigned integer representing fractional seconds as a
+//     nanosecond offset within secs, in the range 0 <= nsecs < 1e9
+//   - tz: signed integer representing timezone offset in minutes east of UTC,
+//     and a dst (daylight savings time) flag
+//
+//   When encoding a timestamp, the first byte is the descriptor, which
+//   defines which components are encoded and how many bytes are used to
+//   encode secs and nsecs components. *If secs/nsecs is 0 or tz is UTC, it
+//   is not encoded in the byte array explicitly*.
+//
+//       Descriptor 8 bits are of the form `A B C DDD EE`:
+//           A:   Is secs component encoded? 1 = true
+//           B:   Is nsecs component encoded? 1 = true
+//           C:   Is tz component encoded? 1 = true
+//           DDD: Number of extra bytes for secs (range 0-7).
+//                If A = 1, secs encoded in DDD+1 bytes.
+//                    If A = 0, secs is not encoded, and is assumed to be 0.
+//                    If A = 1, then we need at least 1 byte to encode secs.
+//                    DDD says the number of extra bytes beyond that 1.
+//                    E.g. if DDD=0, then secs is represented in 1 byte.
+//                         if DDD=2, then secs is represented in 3 bytes.
+//           EE:  Number of extra bytes for nsecs (range 0-3).
+//                If B = 1, nsecs encoded in EE+1 bytes (similar to secs/DDD above)
+//
+//   Following the descriptor bytes, subsequent bytes are:
+//
+//       secs component encoded in `DDD + 1` bytes (if A == 1)
+//       nsecs component encoded in `EE + 1` bytes (if B == 1)
+//       tz component encoded in 2 bytes (if C == 1)
+//
+//   secs and nsecs components are integers encoded in a BigEndian
+//   2-complement encoding format.
+//
+//   tz component is encoded as 2 bytes (16 bits). Most significant bit 15 to
+//   Least significant bit 0 are described below:
+//
+//       Timezone offset has a range of -12:00 to +14:00 (ie -720 to +840 minutes).
+//       Bit 15 = have\_dst: set to 1 if we set the dst flag.
+//       Bit 14 = dst\_on: set to 1 if dst is in effect at the time, or 0 if not.
+//       Bits 13..0 = timezone offset in minutes. It is a signed integer in Big Endian format.
+//
+func bincEncodeTime(t time.Time) []byte {
+	//t := rv.Interface().(time.Time)
+	tsecs, tnsecs := t.Unix(), t.Nanosecond()
+	var (
+		bd   byte
+		btmp [8]byte
+		bs   [16]byte
+		i    int = 1
+	)
+	l := t.Location()
+	if l == time.UTC {
+		l = nil
+	}
+	if tsecs != 0 {
+		bd = bd | 0x80
+		bigen.PutUint64(btmp[:], uint64(tsecs))
+		f := pruneSignExt(btmp[:], tsecs >= 0)
+		bd = bd | (byte(7-f) << 2)
+		copy(bs[i:], btmp[f:])
+		i = i + (8 - f)
+	}
+	if tnsecs != 0 {
+		bd = bd | 0x40
+		bigen.PutUint32(btmp[:4], uint32(tnsecs))
+		f := pruneSignExt(btmp[:4], true)
+		bd = bd | byte(3-f)
+		copy(bs[i:], btmp[f:4])
+		i = i + (4 - f)
+	}
+	if l != nil {
+		bd = bd | 0x20
+		// Note that Go Libs do not give access to dst flag.
+		_, zoneOffset := t.Zone()
+		//zoneName, zoneOffset := t.Zone()
+		zoneOffset /= 60
+		z := uint16(zoneOffset)
+		bigen.PutUint16(btmp[:2], z)
+		// clear dst flags
+		bs[i] = btmp[0] & 0x3f
+		bs[i+1] = btmp[1]
+		i = i + 2
+	}
+	bs[0] = bd
+	return bs[0:i]
+}
+
+// bincDecodeTime decodes a []byte into a time.Time.
+func bincDecodeTime(bs []byte) (tt time.Time, err error) {
+	bd := bs[0]
+	var (
+		tsec  int64
+		tnsec uint32
+		tz    uint16
+		i     byte = 1
+		i2    byte
+		n     byte
+	)
+	if bd&(1<<7) != 0 {
+		var btmp [8]byte
+		n = ((bd >> 2) & 0x7) + 1
+		i2 = i + n
+		copy(btmp[8-n:], bs[i:i2])
+		//if first bit of bs[i] is set, then fill btmp[0..8-n] with 0xff (ie sign extend it)
+		if bs[i]&(1<<7) != 0 {
+			copy(btmp[0:8-n], bsAll0xff)
+			//for j,k := byte(0), 8-n; j < k; j++ {	btmp[j] = 0xff }
+		}
+		i = i2
+		tsec = int64(bigen.Uint64(btmp[:]))
+	}
+	if bd&(1<<6) != 0 {
+		var btmp [4]byte
+		n = (bd & 0x3) + 1
+		i2 = i + n
+		copy(btmp[4-n:], bs[i:i2])
+		i = i2
+		tnsec = bigen.Uint32(btmp[:])
+	}
+	if bd&(1<<5) == 0 {
+		tt = time.Unix(tsec, int64(tnsec)).UTC()
+		return
+	}
+	// In stdlib time.Parse, when a date is parsed without a zone name, it uses "" as zone name.
+	// However, we need name here, so it can be shown when time is printed.
+	// Zone name is in form: UTC-08:00.
+	// Note that Go Libs do not give access to dst flag, so we ignore dst bits
+
+	i2 = i + 2
+	tz = bigen.Uint16(bs[i:i2])
+	// i = i2
+	// sign extend sign bit into top 2 MSB (which were dst bits):
+	if tz&(1<<13) == 0 { // positive
+		tz = tz & 0x3fff //clear 2 MSBs: dst bits
+	} else { // negative
+		tz = tz | 0xc000 //set 2 MSBs: dst bits
+	}
+	tzint := int16(tz)
+	if tzint == 0 {
+		tt = time.Unix(tsec, int64(tnsec)).UTC()
+	} else {
+		// For Go Time, do not use a descriptive timezone.
+		// It's unnecessary, and makes it harder to do a reflect.DeepEqual.
+		// The Offset already tells what the offset should be, if not on UTC and unknown zone name.
+		// var zoneName = timeLocUTCName(tzint)
+		tt = time.Unix(tsec, int64(tnsec)).In(time.FixedZone("", int(tzint)*60))
+	}
+	return
+}
+
+var _ decDriver = (*bincDecDriver)(nil)
+var _ encDriver = (*bincEncDriver)(nil)
diff --git a/vendor/github.com/ugorji/go/codec/cbor.go b/vendor/github.com/ugorji/go/codec/cbor.go
new file mode 100644
index 0000000000..7633c04ac3
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/cbor.go
@@ -0,0 +1,756 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"math"
+	"reflect"
+	"time"
+)
+
+const (
+	cborMajorUint byte = iota
+	cborMajorNegInt
+	cborMajorBytes
+	cborMajorText
+	cborMajorArray
+	cborMajorMap
+	cborMajorTag
+	cborMajorOther
+)
+
+const (
+	cborBdFalse byte = 0xf4 + iota
+	cborBdTrue
+	cborBdNil
+	cborBdUndefined
+	cborBdExt
+	cborBdFloat16
+	cborBdFloat32
+	cborBdFloat64
+)
+
+const (
+	cborBdIndefiniteBytes  byte = 0x5f
+	cborBdIndefiniteString      = 0x7f
+	cborBdIndefiniteArray       = 0x9f
+	cborBdIndefiniteMap         = 0xbf
+	cborBdBreak                 = 0xff
+)
+
+// These define some in-stream descriptors for
+// manual encoding e.g. when doing explicit indefinite-length
+const (
+	CborStreamBytes  byte = 0x5f
+	CborStreamString      = 0x7f
+	CborStreamArray       = 0x9f
+	CborStreamMap         = 0xbf
+	CborStreamBreak       = 0xff
+)
+
+const (
+	cborBaseUint   byte = 0x00
+	cborBaseNegInt      = 0x20
+	cborBaseBytes       = 0x40
+	cborBaseString      = 0x60
+	cborBaseArray       = 0x80
+	cborBaseMap         = 0xa0
+	cborBaseTag         = 0xc0
+	cborBaseSimple      = 0xe0
+)
+
+func cbordesc(bd byte) string {
+	switch bd {
+	case cborBdNil:
+		return "nil"
+	case cborBdFalse:
+		return "false"
+	case cborBdTrue:
+		return "true"
+	case cborBdFloat16, cborBdFloat32, cborBdFloat64:
+		return "float"
+	case cborBdIndefiniteBytes:
+		return "bytes*"
+	case cborBdIndefiniteString:
+		return "string*"
+	case cborBdIndefiniteArray:
+		return "array*"
+	case cborBdIndefiniteMap:
+		return "map*"
+	default:
+		switch {
+		case bd >= cborBaseUint && bd < cborBaseNegInt:
+			return "(u)int"
+		case bd >= cborBaseNegInt && bd < cborBaseBytes:
+			return "int"
+		case bd >= cborBaseBytes && bd < cborBaseString:
+			return "bytes"
+		case bd >= cborBaseString && bd < cborBaseArray:
+			return "string"
+		case bd >= cborBaseArray && bd < cborBaseMap:
+			return "array"
+		case bd >= cborBaseMap && bd < cborBaseTag:
+			return "map"
+		case bd >= cborBaseTag && bd < cborBaseSimple:
+			return "ext"
+		default:
+			return "unknown"
+		}
+	}
+}
+
+// -------------------
+
+type cborEncDriver struct {
+	noBuiltInTypes
+	encDriverNoopContainerWriter
+	// encNoSeparator
+	e *Encoder
+	w encWriter
+	h *CborHandle
+	x [8]byte
+	_ [3]uint64 // padding
+}
+
+func (e *cborEncDriver) EncodeNil() {
+	e.w.writen1(cborBdNil)
+}
+
+func (e *cborEncDriver) EncodeBool(b bool) {
+	if b {
+		e.w.writen1(cborBdTrue)
+	} else {
+		e.w.writen1(cborBdFalse)
+	}
+}
+
+func (e *cborEncDriver) EncodeFloat32(f float32) {
+	e.w.writen1(cborBdFloat32)
+	bigenHelper{e.x[:4], e.w}.writeUint32(math.Float32bits(f))
+}
+
+func (e *cborEncDriver) EncodeFloat64(f float64) {
+	e.w.writen1(cborBdFloat64)
+	bigenHelper{e.x[:8], e.w}.writeUint64(math.Float64bits(f))
+}
+
+func (e *cborEncDriver) encUint(v uint64, bd byte) {
+	if v <= 0x17 {
+		e.w.writen1(byte(v) + bd)
+	} else if v <= math.MaxUint8 {
+		e.w.writen2(bd+0x18, uint8(v))
+	} else if v <= math.MaxUint16 {
+		e.w.writen1(bd + 0x19)
+		bigenHelper{e.x[:2], e.w}.writeUint16(uint16(v))
+	} else if v <= math.MaxUint32 {
+		e.w.writen1(bd + 0x1a)
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(v))
+	} else { // if v <= math.MaxUint64 {
+		e.w.writen1(bd + 0x1b)
+		bigenHelper{e.x[:8], e.w}.writeUint64(v)
+	}
+}
+
+func (e *cborEncDriver) EncodeInt(v int64) {
+	if v < 0 {
+		e.encUint(uint64(-1-v), cborBaseNegInt)
+	} else {
+		e.encUint(uint64(v), cborBaseUint)
+	}
+}
+
+func (e *cborEncDriver) EncodeUint(v uint64) {
+	e.encUint(v, cborBaseUint)
+}
+
+func (e *cborEncDriver) encLen(bd byte, length int) {
+	e.encUint(uint64(length), bd)
+}
+
+func (e *cborEncDriver) EncodeTime(t time.Time) {
+	if t.IsZero() {
+		e.EncodeNil()
+	} else if e.h.TimeRFC3339 {
+		e.encUint(0, cborBaseTag)
+		e.EncodeString(cUTF8, t.Format(time.RFC3339Nano))
+	} else {
+		e.encUint(1, cborBaseTag)
+		t = t.UTC().Round(time.Microsecond)
+		sec, nsec := t.Unix(), uint64(t.Nanosecond())
+		if nsec == 0 {
+			e.EncodeInt(sec)
+		} else {
+			e.EncodeFloat64(float64(sec) + float64(nsec)/1e9)
+		}
+	}
+}
+
+func (e *cborEncDriver) EncodeExt(rv interface{}, xtag uint64, ext Ext, en *Encoder) {
+	e.encUint(uint64(xtag), cborBaseTag)
+	if v := ext.ConvertExt(rv); v == nil {
+		e.EncodeNil()
+	} else {
+		en.encode(v)
+	}
+}
+
+func (e *cborEncDriver) EncodeRawExt(re *RawExt, en *Encoder) {
+	e.encUint(uint64(re.Tag), cborBaseTag)
+	if false && re.Data != nil {
+		en.encode(re.Data)
+	} else if re.Value != nil {
+		en.encode(re.Value)
+	} else {
+		e.EncodeNil()
+	}
+}
+
+func (e *cborEncDriver) WriteArrayStart(length int) {
+	if e.h.IndefiniteLength {
+		e.w.writen1(cborBdIndefiniteArray)
+	} else {
+		e.encLen(cborBaseArray, length)
+	}
+}
+
+func (e *cborEncDriver) WriteMapStart(length int) {
+	if e.h.IndefiniteLength {
+		e.w.writen1(cborBdIndefiniteMap)
+	} else {
+		e.encLen(cborBaseMap, length)
+	}
+}
+
+func (e *cborEncDriver) WriteMapEnd() {
+	if e.h.IndefiniteLength {
+		e.w.writen1(cborBdBreak)
+	}
+}
+
+func (e *cborEncDriver) WriteArrayEnd() {
+	if e.h.IndefiniteLength {
+		e.w.writen1(cborBdBreak)
+	}
+}
+
+func (e *cborEncDriver) EncodeString(c charEncoding, v string) {
+	e.encStringBytesS(cborBaseString, v)
+}
+
+func (e *cborEncDriver) EncodeStringBytes(c charEncoding, v []byte) {
+	if v == nil {
+		e.EncodeNil()
+	} else if c == cRAW {
+		e.encStringBytesS(cborBaseBytes, stringView(v))
+	} else {
+		e.encStringBytesS(cborBaseString, stringView(v))
+	}
+}
+
+func (e *cborEncDriver) encStringBytesS(bb byte, v string) {
+	if e.h.IndefiniteLength {
+		if bb == cborBaseBytes {
+			e.w.writen1(cborBdIndefiniteBytes)
+		} else {
+			e.w.writen1(cborBdIndefiniteString)
+		}
+		blen := len(v) / 4
+		if blen == 0 {
+			blen = 64
+		} else if blen > 1024 {
+			blen = 1024
+		}
+		for i := 0; i < len(v); {
+			var v2 string
+			i2 := i + blen
+			if i2 < len(v) {
+				v2 = v[i:i2]
+			} else {
+				v2 = v[i:]
+			}
+			e.encLen(bb, len(v2))
+			e.w.writestr(v2)
+			i = i2
+		}
+		e.w.writen1(cborBdBreak)
+	} else {
+		e.encLen(bb, len(v))
+		e.w.writestr(v)
+	}
+}
+
+// ----------------------
+
+type cborDecDriver struct {
+	d *Decoder
+	h *CborHandle
+	r decReader
+	// b      [scratchByteArrayLen]byte
+	br     bool // bytes reader
+	bdRead bool
+	bd     byte
+	noBuiltInTypes
+	// decNoSeparator
+	decDriverNoopContainerReader
+	_ [3]uint64 // padding
+}
+
+func (d *cborDecDriver) readNextBd() {
+	d.bd = d.r.readn1()
+	d.bdRead = true
+}
+
+func (d *cborDecDriver) uncacheRead() {
+	if d.bdRead {
+		d.r.unreadn1()
+		d.bdRead = false
+	}
+}
+
+func (d *cborDecDriver) ContainerType() (vt valueType) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == cborBdNil {
+		return valueTypeNil
+	} else if d.bd == cborBdIndefiniteBytes || (d.bd >= cborBaseBytes && d.bd < cborBaseString) {
+		return valueTypeBytes
+	} else if d.bd == cborBdIndefiniteString || (d.bd >= cborBaseString && d.bd < cborBaseArray) {
+		return valueTypeString
+	} else if d.bd == cborBdIndefiniteArray || (d.bd >= cborBaseArray && d.bd < cborBaseMap) {
+		return valueTypeArray
+	} else if d.bd == cborBdIndefiniteMap || (d.bd >= cborBaseMap && d.bd < cborBaseTag) {
+		return valueTypeMap
+	}
+	// else {
+	// d.d.errorf("isContainerType: unsupported parameter: %v", vt)
+	// }
+	return valueTypeUnset
+}
+
+func (d *cborDecDriver) TryDecodeAsNil() bool {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	// treat Nil and Undefined as nil values
+	if d.bd == cborBdNil || d.bd == cborBdUndefined {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *cborDecDriver) CheckBreak() bool {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == cborBdBreak {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *cborDecDriver) decUint() (ui uint64) {
+	v := d.bd & 0x1f
+	if v <= 0x17 {
+		ui = uint64(v)
+	} else {
+		if v == 0x18 {
+			ui = uint64(d.r.readn1())
+		} else if v == 0x19 {
+			ui = uint64(bigen.Uint16(d.r.readx(2)))
+		} else if v == 0x1a {
+			ui = uint64(bigen.Uint32(d.r.readx(4)))
+		} else if v == 0x1b {
+			ui = uint64(bigen.Uint64(d.r.readx(8)))
+		} else {
+			d.d.errorf("invalid descriptor decoding uint: %x/%s", d.bd, cbordesc(d.bd))
+			return
+		}
+	}
+	return
+}
+
+func (d *cborDecDriver) decCheckInteger() (neg bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	major := d.bd >> 5
+	if major == cborMajorUint {
+	} else if major == cborMajorNegInt {
+		neg = true
+	} else {
+		d.d.errorf("not an integer - invalid major %v from descriptor %x/%s", major, d.bd, cbordesc(d.bd))
+		return
+	}
+	return
+}
+
+func (d *cborDecDriver) DecodeInt64() (i int64) {
+	neg := d.decCheckInteger()
+	ui := d.decUint()
+	// check if this number can be converted to an int without overflow
+	if neg {
+		i = -(chkOvf.SignedIntV(ui + 1))
+	} else {
+		i = chkOvf.SignedIntV(ui)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *cborDecDriver) DecodeUint64() (ui uint64) {
+	if d.decCheckInteger() {
+		d.d.errorf("assigning negative signed value to unsigned type")
+		return
+	}
+	ui = d.decUint()
+	d.bdRead = false
+	return
+}
+
+func (d *cborDecDriver) DecodeFloat64() (f float64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if bd := d.bd; bd == cborBdFloat16 {
+		f = float64(math.Float32frombits(halfFloatToFloatBits(bigen.Uint16(d.r.readx(2)))))
+	} else if bd == cborBdFloat32 {
+		f = float64(math.Float32frombits(bigen.Uint32(d.r.readx(4))))
+	} else if bd == cborBdFloat64 {
+		f = math.Float64frombits(bigen.Uint64(d.r.readx(8)))
+	} else if bd >= cborBaseUint && bd < cborBaseBytes {
+		f = float64(d.DecodeInt64())
+	} else {
+		d.d.errorf("float only valid from float16/32/64 - invalid descriptor %x/%s", bd, cbordesc(bd))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool only (single byte).
+func (d *cborDecDriver) DecodeBool() (b bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if bd := d.bd; bd == cborBdTrue {
+		b = true
+	} else if bd == cborBdFalse {
+	} else {
+		d.d.errorf("not bool - %s %x/%s", msgBadDesc, d.bd, cbordesc(d.bd))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *cborDecDriver) ReadMapStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	d.bdRead = false
+	if d.bd == cborBdIndefiniteMap {
+		return -1
+	}
+	return d.decLen()
+}
+
+func (d *cborDecDriver) ReadArrayStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	d.bdRead = false
+	if d.bd == cborBdIndefiniteArray {
+		return -1
+	}
+	return d.decLen()
+}
+
+func (d *cborDecDriver) decLen() int {
+	return int(d.decUint())
+}
+
+func (d *cborDecDriver) decAppendIndefiniteBytes(bs []byte) []byte {
+	d.bdRead = false
+	for {
+		if d.CheckBreak() {
+			break
+		}
+		if major := d.bd >> 5; major != cborMajorBytes && major != cborMajorText {
+			d.d.errorf("expect bytes/string major type in indefinite string/bytes;"+
+				" got major %v from descriptor %x/%x", major, d.bd, cbordesc(d.bd))
+			return nil
+		}
+		n := d.decLen()
+		oldLen := len(bs)
+		newLen := oldLen + n
+		if newLen > cap(bs) {
+			bs2 := make([]byte, newLen, 2*cap(bs)+n)
+			copy(bs2, bs)
+			bs = bs2
+		} else {
+			bs = bs[:newLen]
+		}
+		d.r.readb(bs[oldLen:newLen])
+		// bs = append(bs, d.r.readn()...)
+		d.bdRead = false
+	}
+	d.bdRead = false
+	return bs
+}
+
+func (d *cborDecDriver) DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == cborBdNil || d.bd == cborBdUndefined {
+		d.bdRead = false
+		return nil
+	}
+	if d.bd == cborBdIndefiniteBytes || d.bd == cborBdIndefiniteString {
+		d.bdRead = false
+		if bs == nil {
+			if zerocopy {
+				return d.decAppendIndefiniteBytes(d.d.b[:0])
+			}
+			return d.decAppendIndefiniteBytes(zeroByteSlice)
+		}
+		return d.decAppendIndefiniteBytes(bs[:0])
+	}
+	// check if an "array" of uint8's (see ContainerType for how to infer if an array)
+	if d.bd == cborBdIndefiniteArray || (d.bd >= cborBaseArray && d.bd < cborBaseMap) {
+		bsOut, _ = fastpathTV.DecSliceUint8V(bs, true, d.d)
+		return
+	}
+	clen := d.decLen()
+	d.bdRead = false
+	if zerocopy {
+		if d.br {
+			return d.r.readx(clen)
+		} else if len(bs) == 0 {
+			bs = d.d.b[:]
+		}
+	}
+	return decByteSlice(d.r, clen, d.h.MaxInitLen, bs)
+}
+
+func (d *cborDecDriver) DecodeString() (s string) {
+	return string(d.DecodeBytes(d.d.b[:], true))
+}
+
+func (d *cborDecDriver) DecodeStringAsBytes() (s []byte) {
+	return d.DecodeBytes(d.d.b[:], true)
+}
+
+func (d *cborDecDriver) DecodeTime() (t time.Time) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == cborBdNil || d.bd == cborBdUndefined {
+		d.bdRead = false
+		return
+	}
+	xtag := d.decUint()
+	d.bdRead = false
+	return d.decodeTime(xtag)
+}
+
+func (d *cborDecDriver) decodeTime(xtag uint64) (t time.Time) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch xtag {
+	case 0:
+		var err error
+		if t, err = time.Parse(time.RFC3339, stringView(d.DecodeStringAsBytes())); err != nil {
+			d.d.errorv(err)
+		}
+	case 1:
+		// decode an int64 or a float, and infer time.Time from there.
+		// for floats, round to microseconds, as that is what is guaranteed to fit well.
+		switch {
+		case d.bd == cborBdFloat16, d.bd == cborBdFloat32:
+			f1, f2 := math.Modf(d.DecodeFloat64())
+			t = time.Unix(int64(f1), int64(f2*1e9))
+		case d.bd == cborBdFloat64:
+			f1, f2 := math.Modf(d.DecodeFloat64())
+			t = time.Unix(int64(f1), int64(f2*1e9))
+		case d.bd >= cborBaseUint && d.bd < cborBaseNegInt,
+			d.bd >= cborBaseNegInt && d.bd < cborBaseBytes:
+			t = time.Unix(d.DecodeInt64(), 0)
+		default:
+			d.d.errorf("time.Time can only be decoded from a number (or RFC3339 string)")
+		}
+	default:
+		d.d.errorf("invalid tag for time.Time - expecting 0 or 1, got 0x%x", xtag)
+	}
+	t = t.UTC().Round(time.Microsecond)
+	return
+}
+
+func (d *cborDecDriver) DecodeExt(rv interface{}, xtag uint64, ext Ext) (realxtag uint64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	u := d.decUint()
+	d.bdRead = false
+	realxtag = u
+	if ext == nil {
+		re := rv.(*RawExt)
+		re.Tag = realxtag
+		d.d.decode(&re.Value)
+	} else if xtag != realxtag {
+		d.d.errorf("Wrong extension tag. Got %b. Expecting: %v", realxtag, xtag)
+		return
+	} else {
+		var v interface{}
+		d.d.decode(&v)
+		ext.UpdateExt(rv, v)
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *cborDecDriver) DecodeNaked() {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+
+	n := d.d.n
+	var decodeFurther bool
+
+	switch d.bd {
+	case cborBdNil:
+		n.v = valueTypeNil
+	case cborBdFalse:
+		n.v = valueTypeBool
+		n.b = false
+	case cborBdTrue:
+		n.v = valueTypeBool
+		n.b = true
+	case cborBdFloat16, cborBdFloat32, cborBdFloat64:
+		n.v = valueTypeFloat
+		n.f = d.DecodeFloat64()
+	case cborBdIndefiniteBytes:
+		n.v = valueTypeBytes
+		n.l = d.DecodeBytes(nil, false)
+	case cborBdIndefiniteString:
+		n.v = valueTypeString
+		n.s = d.DecodeString()
+	case cborBdIndefiniteArray:
+		n.v = valueTypeArray
+		decodeFurther = true
+	case cborBdIndefiniteMap:
+		n.v = valueTypeMap
+		decodeFurther = true
+	default:
+		switch {
+		case d.bd >= cborBaseUint && d.bd < cborBaseNegInt:
+			if d.h.SignedInteger {
+				n.v = valueTypeInt
+				n.i = d.DecodeInt64()
+			} else {
+				n.v = valueTypeUint
+				n.u = d.DecodeUint64()
+			}
+		case d.bd >= cborBaseNegInt && d.bd < cborBaseBytes:
+			n.v = valueTypeInt
+			n.i = d.DecodeInt64()
+		case d.bd >= cborBaseBytes && d.bd < cborBaseString:
+			n.v = valueTypeBytes
+			n.l = d.DecodeBytes(nil, false)
+		case d.bd >= cborBaseString && d.bd < cborBaseArray:
+			n.v = valueTypeString
+			n.s = d.DecodeString()
+		case d.bd >= cborBaseArray && d.bd < cborBaseMap:
+			n.v = valueTypeArray
+			decodeFurther = true
+		case d.bd >= cborBaseMap && d.bd < cborBaseTag:
+			n.v = valueTypeMap
+			decodeFurther = true
+		case d.bd >= cborBaseTag && d.bd < cborBaseSimple:
+			n.v = valueTypeExt
+			n.u = d.decUint()
+			n.l = nil
+			if n.u == 0 || n.u == 1 {
+				d.bdRead = false
+				n.v = valueTypeTime
+				n.t = d.decodeTime(n.u)
+			}
+			// d.bdRead = false
+			// d.d.decode(&re.Value) // handled by decode itself.
+			// decodeFurther = true
+		default:
+			d.d.errorf("decodeNaked: Unrecognized d.bd: 0x%x", d.bd)
+			return
+		}
+	}
+
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	return
+}
+
+// -------------------------
+
+// CborHandle is a Handle for the CBOR encoding format,
+// defined at http://tools.ietf.org/html/rfc7049 and documented further at http://cbor.io .
+//
+// CBOR is comprehensively supported, including support for:
+//   - indefinite-length arrays/maps/bytes/strings
+//   - (extension) tags in range 0..0xffff (0 .. 65535)
+//   - half, single and double-precision floats
+//   - all numbers (1, 2, 4 and 8-byte signed and unsigned integers)
+//   - nil, true, false, ...
+//   - arrays and maps, bytes and text strings
+//
+// None of the optional extensions (with tags) defined in the spec are supported out-of-the-box.
+// Users can implement them as needed (using SetExt), including spec-documented ones:
+//   - timestamp, BigNum, BigFloat, Decimals,
+//   - Encoded Text (e.g. URL, regexp, base64, MIME Message), etc.
+type CborHandle struct {
+	binaryEncodingType
+	noElemSeparators
+	BasicHandle
+
+	// IndefiniteLength=true, means that we encode using indefinitelength
+	IndefiniteLength bool
+
+	// TimeRFC3339 says to encode time.Time using RFC3339 format.
+	// If unset, we encode time.Time using seconds past epoch.
+	TimeRFC3339 bool
+
+	// _ [1]uint64 // padding
+}
+
+// Name returns the name of the handle: cbor
+func (h *CborHandle) Name() string { return "cbor" }
+
+// SetInterfaceExt sets an extension
+func (h *CborHandle) SetInterfaceExt(rt reflect.Type, tag uint64, ext InterfaceExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{bytesExtFailer{}, ext})
+}
+
+func (h *CborHandle) newEncDriver(e *Encoder) encDriver {
+	return &cborEncDriver{e: e, w: e.w, h: h}
+}
+
+func (h *CborHandle) newDecDriver(d *Decoder) decDriver {
+	return &cborDecDriver{d: d, h: h, r: d.r, br: d.bytes}
+}
+
+func (e *cborEncDriver) reset() {
+	e.w = e.e.w
+}
+
+func (d *cborDecDriver) reset() {
+	d.r, d.br = d.d.r, d.d.bytes
+	d.bd, d.bdRead = 0, false
+}
+
+var _ decDriver = (*cborDecDriver)(nil)
+var _ encDriver = (*cborEncDriver)(nil)
diff --git a/vendor/github.com/ugorji/go/codec/decode.go b/vendor/github.com/ugorji/go/codec/decode.go
new file mode 100644
index 0000000000..1c0817aafa
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/decode.go
@@ -0,0 +1,2552 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"encoding"
+	"errors"
+	"fmt"
+	"io"
+	"reflect"
+	"strconv"
+	"sync"
+	"time"
+)
+
+// Some tagging information for error messages.
+const (
+	msgBadDesc            = "unrecognized descriptor byte"
+	msgDecCannotExpandArr = "cannot expand go array from %v to stream length: %v"
+)
+
+const decDefSliceCap = 8
+const decDefChanCap = 64 // should be large, as cap cannot be expanded
+const decScratchByteArrayLen = cacheLineSize - 8
+
+var (
+	errstrOnlyMapOrArrayCanDecodeIntoStruct = "only encoded map or array can be decoded into a struct"
+	errstrCannotDecodeIntoNil               = "cannot decode into nil"
+
+	errmsgExpandSliceOverflow     = "expand slice: slice overflow"
+	errmsgExpandSliceCannotChange = "expand slice: cannot change"
+
+	errDecoderNotInitialized = errors.New("Decoder not initialized")
+
+	errDecUnreadByteNothingToRead   = errors.New("cannot unread - nothing has been read")
+	errDecUnreadByteLastByteNotRead = errors.New("cannot unread - last byte has not been read")
+	errDecUnreadByteUnknown         = errors.New("cannot unread - reason unknown")
+)
+
+// decReader abstracts the reading source, allowing implementations that can
+// read from an io.Reader or directly off a byte slice with zero-copying.
+type decReader interface {
+	unreadn1()
+
+	// readx will use the implementation scratch buffer if possible i.e. n < len(scratchbuf), OR
+	// just return a view of the []byte being decoded from.
+	// Ensure you call detachZeroCopyBytes later if this needs to be sent outside codec control.
+	readx(n int) []byte
+	readb([]byte)
+	readn1() uint8
+	numread() int // number of bytes read
+	track()
+	stopTrack() []byte
+
+	// skip will skip any byte that matches, and return the first non-matching byte
+	skip(accept *bitset256) (token byte)
+	// readTo will read any byte that matches, stopping once no-longer matching.
+	readTo(in []byte, accept *bitset256) (out []byte)
+	// readUntil will read, only stopping once it matches the 'stop' byte.
+	readUntil(in []byte, stop byte) (out []byte)
+}
+
+type decDriver interface {
+	// this will check if the next token is a break.
+	CheckBreak() bool
+	// Note: TryDecodeAsNil should be careful not to share any temporary []byte with
+	// the rest of the decDriver. This is because sometimes, we optimize by holding onto
+	// a transient []byte, and ensuring the only other call we make to the decDriver
+	// during that time is maybe a TryDecodeAsNil() call.
+	TryDecodeAsNil() bool
+	// vt is one of: Bytes, String, Nil, Slice or Map. Return unSet if not known.
+	ContainerType() (vt valueType)
+	// IsBuiltinType(rt uintptr) bool
+
+	// DecodeNaked will decode primitives (number, bool, string, []byte) and RawExt.
+	// For maps and arrays, it will not do the decoding in-band, but will signal
+	// the decoder, so that is done later, by setting the decNaked.valueType field.
+	//
+	// Note: Numbers are decoded as int64, uint64, float64 only (no smaller sized number types).
+	// for extensions, DecodeNaked must read the tag and the []byte if it exists.
+	// if the []byte is not read, then kInterfaceNaked will treat it as a Handle
+	// that stores the subsequent value in-band, and complete reading the RawExt.
+	//
+	// extensions should also use readx to decode them, for efficiency.
+	// kInterface will extract the detached byte slice if it has to pass it outside its realm.
+	DecodeNaked()
+
+	// Deprecated: use DecodeInt64 and DecodeUint64 instead
+	// DecodeInt(bitsize uint8) (i int64)
+	// DecodeUint(bitsize uint8) (ui uint64)
+
+	DecodeInt64() (i int64)
+	DecodeUint64() (ui uint64)
+
+	DecodeFloat64() (f float64)
+	DecodeBool() (b bool)
+	// DecodeString can also decode symbols.
+	// It looks redundant as DecodeBytes is available.
+	// However, some codecs (e.g. binc) support symbols and can
+	// return a pre-stored string value, meaning that it can bypass
+	// the cost of []byte->string conversion.
+	DecodeString() (s string)
+	DecodeStringAsBytes() (v []byte)
+
+	// DecodeBytes may be called directly, without going through reflection.
+	// Consequently, it must be designed to handle possible nil.
+	DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte)
+	// DecodeBytes(bs []byte, isstring, zerocopy bool) (bsOut []byte)
+
+	// decodeExt will decode into a *RawExt or into an extension.
+	DecodeExt(v interface{}, xtag uint64, ext Ext) (realxtag uint64)
+	// decodeExt(verifyTag bool, tag byte) (xtag byte, xbs []byte)
+
+	DecodeTime() (t time.Time)
+
+	ReadArrayStart() int
+	ReadArrayElem()
+	ReadArrayEnd()
+	ReadMapStart() int
+	ReadMapElemKey()
+	ReadMapElemValue()
+	ReadMapEnd()
+
+	reset()
+	uncacheRead()
+}
+
+type decDriverNoopContainerReader struct{}
+
+func (x decDriverNoopContainerReader) ReadArrayStart() (v int) { return }
+func (x decDriverNoopContainerReader) ReadArrayElem()          {}
+func (x decDriverNoopContainerReader) ReadArrayEnd()           {}
+func (x decDriverNoopContainerReader) ReadMapStart() (v int)   { return }
+func (x decDriverNoopContainerReader) ReadMapElemKey()         {}
+func (x decDriverNoopContainerReader) ReadMapElemValue()       {}
+func (x decDriverNoopContainerReader) ReadMapEnd()             {}
+func (x decDriverNoopContainerReader) CheckBreak() (v bool)    { return }
+
+// func (x decNoSeparator) uncacheRead() {}
+
+// DecodeOptions captures configuration options during decode.
+type DecodeOptions struct {
+	// MapType specifies type to use during schema-less decoding of a map in the stream.
+	// If nil (unset), we default to map[string]interface{} iff json handle and MapStringAsKey=true,
+	// else map[interface{}]interface{}.
+	MapType reflect.Type
+
+	// SliceType specifies type to use during schema-less decoding of an array in the stream.
+	// If nil (unset), we default to []interface{} for all formats.
+	SliceType reflect.Type
+
+	// MaxInitLen defines the maxinum initial length that we "make" a collection
+	// (string, slice, map, chan). If 0 or negative, we default to a sensible value
+	// based on the size of an element in the collection.
+	//
+	// For example, when decoding, a stream may say that it has 2^64 elements.
+	// We should not auto-matically provision a slice of that size, to prevent Out-Of-Memory crash.
+	// Instead, we provision up to MaxInitLen, fill that up, and start appending after that.
+	MaxInitLen int
+
+	// ReaderBufferSize is the size of the buffer used when reading.
+	//
+	// if > 0, we use a smart buffer internally for performance purposes.
+	ReaderBufferSize int
+
+	// If ErrorIfNoField, return an error when decoding a map
+	// from a codec stream into a struct, and no matching struct field is found.
+	ErrorIfNoField bool
+
+	// If ErrorIfNoArrayExpand, return an error when decoding a slice/array that cannot be expanded.
+	// For example, the stream contains an array of 8 items, but you are decoding into a [4]T array,
+	// or you are decoding into a slice of length 4 which is non-addressable (and so cannot be set).
+	ErrorIfNoArrayExpand bool
+
+	// If SignedInteger, use the int64 during schema-less decoding of unsigned values (not uint64).
+	SignedInteger bool
+
+	// MapValueReset controls how we decode into a map value.
+	//
+	// By default, we MAY retrieve the mapping for a key, and then decode into that.
+	// However, especially with big maps, that retrieval may be expensive and unnecessary
+	// if the stream already contains all that is necessary to recreate the value.
+	//
+	// If true, we will never retrieve the previous mapping,
+	// but rather decode into a new value and set that in the map.
+	//
+	// If false, we will retrieve the previous mapping if necessary e.g.
+	// the previous mapping is a pointer, or is a struct or array with pre-set state,
+	// or is an interface.
+	MapValueReset bool
+
+	// SliceElementReset: on decoding a slice, reset the element to a zero value first.
+	//
+	// concern: if the slice already contained some garbage, we will decode into that garbage.
+	SliceElementReset bool
+
+	// InterfaceReset controls how we decode into an interface.
+	//
+	// By default, when we see a field that is an interface{...},
+	// or a map with interface{...} value, we will attempt decoding into the
+	// "contained" value.
+	//
+	// However, this prevents us from reading a string into an interface{}
+	// that formerly contained a number.
+	//
+	// If true, we will decode into a new "blank" value, and set that in the interface.
+	// If false, we will decode into whatever is contained in the interface.
+	InterfaceReset bool
+
+	// InternString controls interning of strings during decoding.
+	//
+	// Some handles, e.g. json, typically will read map keys as strings.
+	// If the set of keys are finite, it may help reduce allocation to
+	// look them up from a map (than to allocate them afresh).
+	//
+	// Note: Handles will be smart when using the intern functionality.
+	// Every string should not be interned.
+	// An excellent use-case for interning is struct field names,
+	// or map keys where key type is string.
+	InternString bool
+
+	// PreferArrayOverSlice controls whether to decode to an array or a slice.
+	//
+	// This only impacts decoding into a nil interface{}.
+	// Consequently, it has no effect on codecgen.
+	//
+	// *Note*: This only applies if using go1.5 and above,
+	// as it requires reflect.ArrayOf support which was absent before go1.5.
+	PreferArrayOverSlice bool
+
+	// DeleteOnNilMapValue controls how to decode a nil value in the stream.
+	//
+	// If true, we will delete the mapping of the key.
+	// Else, just set the mapping to the zero value of the type.
+	DeleteOnNilMapValue bool
+}
+
+// ------------------------------------
+
+type bufioDecReader struct {
+	buf []byte
+	r   io.Reader
+
+	c   int // cursor
+	n   int // num read
+	err error
+
+	tr  []byte
+	trb bool
+	b   [4]byte
+}
+
+func (z *bufioDecReader) reset(r io.Reader) {
+	z.r, z.c, z.n, z.err, z.trb = r, 0, 0, nil, false
+	if z.tr != nil {
+		z.tr = z.tr[:0]
+	}
+}
+
+func (z *bufioDecReader) Read(p []byte) (n int, err error) {
+	if z.err != nil {
+		return 0, z.err
+	}
+	p0 := p
+	n = copy(p, z.buf[z.c:])
+	z.c += n
+	if z.c == len(z.buf) {
+		z.c = 0
+	}
+	z.n += n
+	if len(p) == n {
+		if z.c == 0 {
+			z.buf = z.buf[:1]
+			z.buf[0] = p[len(p)-1]
+			z.c = 1
+		}
+		if z.trb {
+			z.tr = append(z.tr, p0[:n]...)
+		}
+		return
+	}
+	p = p[n:]
+	var n2 int
+	// if we are here, then z.buf is all read
+	if len(p) > len(z.buf) {
+		n2, err = decReadFull(z.r, p)
+		n += n2
+		z.n += n2
+		z.err = err
+		// don't return EOF if some bytes were read. keep for next time.
+		if n > 0 && err == io.EOF {
+			err = nil
+		}
+		// always keep last byte in z.buf
+		z.buf = z.buf[:1]
+		z.buf[0] = p[len(p)-1]
+		z.c = 1
+		if z.trb {
+			z.tr = append(z.tr, p0[:n]...)
+		}
+		return
+	}
+	// z.c is now 0, and len(p) <= len(z.buf)
+	for len(p) > 0 && z.err == nil {
+		// println("len(p) loop starting ... ")
+		z.c = 0
+		z.buf = z.buf[0:cap(z.buf)]
+		n2, err = z.r.Read(z.buf)
+		if n2 > 0 {
+			if err == io.EOF {
+				err = nil
+			}
+			z.buf = z.buf[:n2]
+			n2 = copy(p, z.buf)
+			z.c = n2
+			n += n2
+			z.n += n2
+			p = p[n2:]
+		}
+		z.err = err
+		// println("... len(p) loop done")
+	}
+	if z.c == 0 {
+		z.buf = z.buf[:1]
+		z.buf[0] = p[len(p)-1]
+		z.c = 1
+	}
+	if z.trb {
+		z.tr = append(z.tr, p0[:n]...)
+	}
+	return
+}
+
+func (z *bufioDecReader) ReadByte() (b byte, err error) {
+	z.b[0] = 0
+	_, err = z.Read(z.b[:1])
+	b = z.b[0]
+	return
+}
+
+func (z *bufioDecReader) UnreadByte() (err error) {
+	if z.err != nil {
+		return z.err
+	}
+	if z.c > 0 {
+		z.c--
+		z.n--
+		if z.trb {
+			z.tr = z.tr[:len(z.tr)-1]
+		}
+		return
+	}
+	return errDecUnreadByteNothingToRead
+}
+
+func (z *bufioDecReader) numread() int {
+	return z.n
+}
+
+func (z *bufioDecReader) readx(n int) (bs []byte) {
+	if n <= 0 || z.err != nil {
+		return
+	}
+	if z.c+n <= len(z.buf) {
+		bs = z.buf[z.c : z.c+n]
+		z.n += n
+		z.c += n
+		if z.trb {
+			z.tr = append(z.tr, bs...)
+		}
+		return
+	}
+	bs = make([]byte, n)
+	_, err := z.Read(bs)
+	if err != nil {
+		panic(err)
+	}
+	return
+}
+
+func (z *bufioDecReader) readb(bs []byte) {
+	_, err := z.Read(bs)
+	if err != nil {
+		panic(err)
+	}
+}
+
+// func (z *bufioDecReader) readn1eof() (b uint8, eof bool) {
+// 	b, err := z.ReadByte()
+// 	if err != nil {
+// 		if err == io.EOF {
+// 			eof = true
+// 		} else {
+// 			panic(err)
+// 		}
+// 	}
+// 	return
+// }
+
+func (z *bufioDecReader) readn1() (b uint8) {
+	b, err := z.ReadByte()
+	if err != nil {
+		panic(err)
+	}
+	return
+}
+
+func (z *bufioDecReader) search(in []byte, accept *bitset256, stop, flag uint8) (token byte, out []byte) {
+	// flag: 1 (skip), 2 (readTo), 4 (readUntil)
+	if flag == 4 {
+		for i := z.c; i < len(z.buf); i++ {
+			if z.buf[i] == stop {
+				token = z.buf[i]
+				z.n = z.n + (i - z.c) - 1
+				i++
+				out = z.buf[z.c:i]
+				if z.trb {
+					z.tr = append(z.tr, z.buf[z.c:i]...)
+				}
+				z.c = i
+				return
+			}
+		}
+	} else {
+		for i := z.c; i < len(z.buf); i++ {
+			if !accept.isset(z.buf[i]) {
+				token = z.buf[i]
+				z.n = z.n + (i - z.c) - 1
+				if flag == 1 {
+					i++
+				} else {
+					out = z.buf[z.c:i]
+				}
+				if z.trb {
+					z.tr = append(z.tr, z.buf[z.c:i]...)
+				}
+				z.c = i
+				return
+			}
+		}
+	}
+	z.n += len(z.buf) - z.c
+	if flag != 1 {
+		out = append(in, z.buf[z.c:]...)
+	}
+	if z.trb {
+		z.tr = append(z.tr, z.buf[z.c:]...)
+	}
+	var n2 int
+	if z.err != nil {
+		return
+	}
+	for {
+		z.c = 0
+		z.buf = z.buf[0:cap(z.buf)]
+		n2, z.err = z.r.Read(z.buf)
+		if n2 > 0 && z.err != nil {
+			z.err = nil
+		}
+		z.buf = z.buf[:n2]
+		if flag == 4 {
+			for i := 0; i < n2; i++ {
+				if z.buf[i] == stop {
+					token = z.buf[i]
+					z.n += i - 1
+					i++
+					out = append(out, z.buf[z.c:i]...)
+					if z.trb {
+						z.tr = append(z.tr, z.buf[z.c:i]...)
+					}
+					z.c = i
+					return
+				}
+			}
+		} else {
+			for i := 0; i < n2; i++ {
+				if !accept.isset(z.buf[i]) {
+					token = z.buf[i]
+					z.n += i - 1
+					if flag == 1 {
+						i++
+					}
+					if flag != 1 {
+						out = append(out, z.buf[z.c:i]...)
+					}
+					if z.trb {
+						z.tr = append(z.tr, z.buf[z.c:i]...)
+					}
+					z.c = i
+					return
+				}
+			}
+		}
+		if flag != 1 {
+			out = append(out, z.buf[:n2]...)
+		}
+		z.n += n2
+		if z.err != nil {
+			return
+		}
+		if z.trb {
+			z.tr = append(z.tr, z.buf[:n2]...)
+		}
+	}
+}
+
+func (z *bufioDecReader) skip(accept *bitset256) (token byte) {
+	token, _ = z.search(nil, accept, 0, 1)
+	return
+}
+
+func (z *bufioDecReader) readTo(in []byte, accept *bitset256) (out []byte) {
+	_, out = z.search(in, accept, 0, 2)
+	return
+}
+
+func (z *bufioDecReader) readUntil(in []byte, stop byte) (out []byte) {
+	_, out = z.search(in, nil, stop, 4)
+	return
+}
+
+func (z *bufioDecReader) unreadn1() {
+	err := z.UnreadByte()
+	if err != nil {
+		panic(err)
+	}
+}
+
+func (z *bufioDecReader) track() {
+	if z.tr != nil {
+		z.tr = z.tr[:0]
+	}
+	z.trb = true
+}
+
+func (z *bufioDecReader) stopTrack() (bs []byte) {
+	z.trb = false
+	return z.tr
+}
+
+// ioDecReader is a decReader that reads off an io.Reader.
+//
+// It also has a fallback implementation of ByteScanner if needed.
+type ioDecReader struct {
+	r io.Reader // the reader passed in
+
+	rr io.Reader
+	br io.ByteScanner
+
+	l   byte // last byte
+	ls  byte // last byte status. 0: init-canDoNothing, 1: canRead, 2: canUnread
+	trb bool // tracking bytes turned on
+	_   bool
+	b   [4]byte // tiny buffer for reading single bytes
+
+	x  [scratchByteArrayLen]byte // for: get struct field name, swallow valueTypeBytes, etc
+	n  int                       // num read
+	tr []byte                    // tracking bytes read
+}
+
+func (z *ioDecReader) reset(r io.Reader) {
+	z.r = r
+	z.rr = r
+	z.l, z.ls, z.n, z.trb = 0, 0, 0, false
+	if z.tr != nil {
+		z.tr = z.tr[:0]
+	}
+	var ok bool
+	if z.br, ok = r.(io.ByteScanner); !ok {
+		z.br = z
+		z.rr = z
+	}
+}
+
+func (z *ioDecReader) Read(p []byte) (n int, err error) {
+	if len(p) == 0 {
+		return
+	}
+	var firstByte bool
+	if z.ls == 1 {
+		z.ls = 2
+		p[0] = z.l
+		if len(p) == 1 {
+			n = 1
+			return
+		}
+		firstByte = true
+		p = p[1:]
+	}
+	n, err = z.r.Read(p)
+	if n > 0 {
+		if err == io.EOF && n == len(p) {
+			err = nil // read was successful, so postpone EOF (till next time)
+		}
+		z.l = p[n-1]
+		z.ls = 2
+	}
+	if firstByte {
+		n++
+	}
+	return
+}
+
+func (z *ioDecReader) ReadByte() (c byte, err error) {
+	n, err := z.Read(z.b[:1])
+	if n == 1 {
+		c = z.b[0]
+		if err == io.EOF {
+			err = nil // read was successful, so postpone EOF (till next time)
+		}
+	}
+	return
+}
+
+func (z *ioDecReader) UnreadByte() (err error) {
+	switch z.ls {
+	case 2:
+		z.ls = 1
+	case 0:
+		err = errDecUnreadByteNothingToRead
+	case 1:
+		err = errDecUnreadByteLastByteNotRead
+	default:
+		err = errDecUnreadByteUnknown
+	}
+	return
+}
+
+func (z *ioDecReader) numread() int {
+	return z.n
+}
+
+func (z *ioDecReader) readx(n int) (bs []byte) {
+	if n <= 0 {
+		return
+	}
+	if n < len(z.x) {
+		bs = z.x[:n]
+	} else {
+		bs = make([]byte, n)
+	}
+	if _, err := decReadFull(z.rr, bs); err != nil {
+		panic(err)
+	}
+	z.n += len(bs)
+	if z.trb {
+		z.tr = append(z.tr, bs...)
+	}
+	return
+}
+
+func (z *ioDecReader) readb(bs []byte) {
+	// if len(bs) == 0 {
+	// 	return
+	// }
+	if _, err := decReadFull(z.rr, bs); err != nil {
+		panic(err)
+	}
+	z.n += len(bs)
+	if z.trb {
+		z.tr = append(z.tr, bs...)
+	}
+}
+
+func (z *ioDecReader) readn1eof() (b uint8, eof bool) {
+	b, err := z.br.ReadByte()
+	if err == nil {
+		z.n++
+		if z.trb {
+			z.tr = append(z.tr, b)
+		}
+	} else if err == io.EOF {
+		eof = true
+	} else {
+		panic(err)
+	}
+	return
+}
+
+func (z *ioDecReader) readn1() (b uint8) {
+	var err error
+	if b, err = z.br.ReadByte(); err == nil {
+		z.n++
+		if z.trb {
+			z.tr = append(z.tr, b)
+		}
+		return
+	}
+	panic(err)
+}
+
+func (z *ioDecReader) skip(accept *bitset256) (token byte) {
+	for {
+		var eof bool
+		token, eof = z.readn1eof()
+		if eof {
+			return
+		}
+		if accept.isset(token) {
+			continue
+		}
+		return
+	}
+}
+
+func (z *ioDecReader) readTo(in []byte, accept *bitset256) (out []byte) {
+	out = in
+	for {
+		token, eof := z.readn1eof()
+		if eof {
+			return
+		}
+		if accept.isset(token) {
+			out = append(out, token)
+		} else {
+			z.unreadn1()
+			return
+		}
+	}
+}
+
+func (z *ioDecReader) readUntil(in []byte, stop byte) (out []byte) {
+	out = in
+	for {
+		token, eof := z.readn1eof()
+		if eof {
+			panic(io.EOF)
+		}
+		out = append(out, token)
+		if token == stop {
+			return
+		}
+	}
+}
+
+func (z *ioDecReader) unreadn1() {
+	err := z.br.UnreadByte()
+	if err != nil {
+		panic(err)
+	}
+	z.n--
+	if z.trb {
+		if l := len(z.tr) - 1; l >= 0 {
+			z.tr = z.tr[:l]
+		}
+	}
+}
+
+func (z *ioDecReader) track() {
+	if z.tr != nil {
+		z.tr = z.tr[:0]
+	}
+	z.trb = true
+}
+
+func (z *ioDecReader) stopTrack() (bs []byte) {
+	z.trb = false
+	return z.tr
+}
+
+// ------------------------------------
+
+var errBytesDecReaderCannotUnread = errors.New("cannot unread last byte read")
+
+// bytesDecReader is a decReader that reads off a byte slice with zero copying
+type bytesDecReader struct {
+	b []byte // data
+	c int    // cursor
+	a int    // available
+	t int    // track start
+}
+
+func (z *bytesDecReader) reset(in []byte) {
+	z.b = in
+	z.a = len(in)
+	z.c = 0
+	z.t = 0
+}
+
+func (z *bytesDecReader) numread() int {
+	return z.c
+}
+
+func (z *bytesDecReader) unreadn1() {
+	if z.c == 0 || len(z.b) == 0 {
+		panic(errBytesDecReaderCannotUnread)
+	}
+	z.c--
+	z.a++
+	return
+}
+
+func (z *bytesDecReader) readx(n int) (bs []byte) {
+	// slicing from a non-constant start position is more expensive,
+	// as more computation is required to decipher the pointer start position.
+	// However, we do it only once, and it's better than reslicing both z.b and return value.
+
+	if n <= 0 {
+	} else if z.a == 0 {
+		panic(io.EOF)
+	} else if n > z.a {
+		panic(io.ErrUnexpectedEOF)
+	} else {
+		c0 := z.c
+		z.c = c0 + n
+		z.a = z.a - n
+		bs = z.b[c0:z.c]
+	}
+	return
+}
+
+func (z *bytesDecReader) readb(bs []byte) {
+	copy(bs, z.readx(len(bs)))
+}
+
+func (z *bytesDecReader) readn1() (v uint8) {
+	if z.a == 0 {
+		panic(io.EOF)
+	}
+	v = z.b[z.c]
+	z.c++
+	z.a--
+	return
+}
+
+// func (z *bytesDecReader) readn1eof() (v uint8, eof bool) {
+// 	if z.a == 0 {
+// 		eof = true
+// 		return
+// 	}
+// 	v = z.b[z.c]
+// 	z.c++
+// 	z.a--
+// 	return
+// }
+
+func (z *bytesDecReader) skip(accept *bitset256) (token byte) {
+	if z.a == 0 {
+		return
+	}
+	blen := len(z.b)
+	for i := z.c; i < blen; i++ {
+		if !accept.isset(z.b[i]) {
+			token = z.b[i]
+			i++
+			z.a -= (i - z.c)
+			z.c = i
+			return
+		}
+	}
+	z.a, z.c = 0, blen
+	return
+}
+
+func (z *bytesDecReader) readTo(_ []byte, accept *bitset256) (out []byte) {
+	if z.a == 0 {
+		return
+	}
+	blen := len(z.b)
+	for i := z.c; i < blen; i++ {
+		if !accept.isset(z.b[i]) {
+			out = z.b[z.c:i]
+			z.a -= (i - z.c)
+			z.c = i
+			return
+		}
+	}
+	out = z.b[z.c:]
+	z.a, z.c = 0, blen
+	return
+}
+
+func (z *bytesDecReader) readUntil(_ []byte, stop byte) (out []byte) {
+	if z.a == 0 {
+		panic(io.EOF)
+	}
+	blen := len(z.b)
+	for i := z.c; i < blen; i++ {
+		if z.b[i] == stop {
+			i++
+			out = z.b[z.c:i]
+			z.a -= (i - z.c)
+			z.c = i
+			return
+		}
+	}
+	z.a, z.c = 0, blen
+	panic(io.EOF)
+}
+
+func (z *bytesDecReader) track() {
+	z.t = z.c
+}
+
+func (z *bytesDecReader) stopTrack() (bs []byte) {
+	return z.b[z.t:z.c]
+}
+
+// ----------------------------------------
+
+// func (d *Decoder) builtin(f *codecFnInfo, rv reflect.Value) {
+// 	d.d.DecodeBuiltin(f.ti.rtid, rv2i(rv))
+// }
+
+func (d *Decoder) rawExt(f *codecFnInfo, rv reflect.Value) {
+	d.d.DecodeExt(rv2i(rv), 0, nil)
+}
+
+func (d *Decoder) ext(f *codecFnInfo, rv reflect.Value) {
+	d.d.DecodeExt(rv2i(rv), f.xfTag, f.xfFn)
+}
+
+func (d *Decoder) selferUnmarshal(f *codecFnInfo, rv reflect.Value) {
+	rv2i(rv).(Selfer).CodecDecodeSelf(d)
+}
+
+func (d *Decoder) binaryUnmarshal(f *codecFnInfo, rv reflect.Value) {
+	bm := rv2i(rv).(encoding.BinaryUnmarshaler)
+	xbs := d.d.DecodeBytes(nil, true)
+	if fnerr := bm.UnmarshalBinary(xbs); fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+func (d *Decoder) textUnmarshal(f *codecFnInfo, rv reflect.Value) {
+	tm := rv2i(rv).(encoding.TextUnmarshaler)
+	fnerr := tm.UnmarshalText(d.d.DecodeStringAsBytes())
+	if fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+func (d *Decoder) jsonUnmarshal(f *codecFnInfo, rv reflect.Value) {
+	tm := rv2i(rv).(jsonUnmarshaler)
+	// bs := d.d.DecodeBytes(d.b[:], true, true)
+	// grab the bytes to be read, as UnmarshalJSON needs the full JSON so as to unmarshal it itself.
+	fnerr := tm.UnmarshalJSON(d.nextValueBytes())
+	if fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+func (d *Decoder) kErr(f *codecFnInfo, rv reflect.Value) {
+	d.errorf("no decoding function defined for kind %v", rv.Kind())
+}
+
+// var kIntfCtr uint64
+
+func (d *Decoder) kInterfaceNaked(f *codecFnInfo) (rvn reflect.Value) {
+	// nil interface:
+	// use some hieristics to decode it appropriately
+	// based on the detected next value in the stream.
+	n := d.naked()
+	d.d.DecodeNaked()
+	if n.v == valueTypeNil {
+		return
+	}
+	// We cannot decode non-nil stream value into nil interface with methods (e.g. io.Reader).
+	if f.ti.numMeth > 0 {
+		d.errorf("cannot decode non-nil codec value into nil %v (%v methods)", f.ti.rt, f.ti.numMeth)
+		return
+	}
+	// var useRvn bool
+	switch n.v {
+	case valueTypeMap:
+		// if json, default to a map type with string keys
+		mtid := d.mtid
+		if mtid == 0 {
+			if d.jsms {
+				mtid = mapStrIntfTypId
+			} else {
+				mtid = mapIntfIntfTypId
+			}
+		}
+		if mtid == mapIntfIntfTypId {
+			n.initContainers()
+			if n.lm < arrayCacheLen {
+				n.ma[n.lm] = nil
+				rvn = n.rma[n.lm]
+				n.lm++
+				d.decode(&n.ma[n.lm-1])
+				n.lm--
+			} else {
+				var v2 map[interface{}]interface{}
+				d.decode(&v2)
+				rvn = reflect.ValueOf(&v2).Elem()
+			}
+		} else if mtid == mapStrIntfTypId { // for json performance
+			n.initContainers()
+			if n.ln < arrayCacheLen {
+				n.na[n.ln] = nil
+				rvn = n.rna[n.ln]
+				n.ln++
+				d.decode(&n.na[n.ln-1])
+				n.ln--
+			} else {
+				var v2 map[string]interface{}
+				d.decode(&v2)
+				rvn = reflect.ValueOf(&v2).Elem()
+			}
+		} else {
+			if d.mtr {
+				rvn = reflect.New(d.h.MapType)
+				d.decode(rv2i(rvn))
+				rvn = rvn.Elem()
+			} else {
+				rvn = reflect.New(d.h.MapType).Elem()
+				d.decodeValue(rvn, nil, true)
+			}
+		}
+	case valueTypeArray:
+		if d.stid == 0 || d.stid == intfSliceTypId {
+			n.initContainers()
+			if n.ls < arrayCacheLen {
+				n.sa[n.ls] = nil
+				rvn = n.rsa[n.ls]
+				n.ls++
+				d.decode(&n.sa[n.ls-1])
+				n.ls--
+			} else {
+				var v2 []interface{}
+				d.decode(&v2)
+				rvn = reflect.ValueOf(&v2).Elem()
+			}
+			if reflectArrayOfSupported && d.stid == 0 && d.h.PreferArrayOverSlice {
+				rvn2 := reflect.New(reflectArrayOf(rvn.Len(), intfTyp)).Elem()
+				reflect.Copy(rvn2, rvn)
+				rvn = rvn2
+			}
+		} else {
+			if d.str {
+				rvn = reflect.New(d.h.SliceType)
+				d.decode(rv2i(rvn))
+				rvn = rvn.Elem()
+			} else {
+				rvn = reflect.New(d.h.SliceType).Elem()
+				d.decodeValue(rvn, nil, true)
+			}
+		}
+	case valueTypeExt:
+		var v interface{}
+		tag, bytes := n.u, n.l // calling decode below might taint the values
+		if bytes == nil {
+			n.initContainers()
+			if n.li < arrayCacheLen {
+				n.ia[n.li] = nil
+				n.li++
+				d.decode(&n.ia[n.li-1])
+				// v = *(&n.ia[l])
+				n.li--
+				v = n.ia[n.li]
+				n.ia[n.li] = nil
+			} else {
+				d.decode(&v)
+			}
+		}
+		bfn := d.h.getExtForTag(tag)
+		if bfn == nil {
+			var re RawExt
+			re.Tag = tag
+			re.Data = detachZeroCopyBytes(d.bytes, nil, bytes)
+			re.Value = v
+			rvn = reflect.ValueOf(&re).Elem()
+		} else {
+			rvnA := reflect.New(bfn.rt)
+			if bytes != nil {
+				bfn.ext.ReadExt(rv2i(rvnA), bytes)
+			} else {
+				bfn.ext.UpdateExt(rv2i(rvnA), v)
+			}
+			rvn = rvnA.Elem()
+		}
+	case valueTypeNil:
+		// no-op
+	case valueTypeInt:
+		rvn = n.ri
+	case valueTypeUint:
+		rvn = n.ru
+	case valueTypeFloat:
+		rvn = n.rf
+	case valueTypeBool:
+		rvn = n.rb
+	case valueTypeString, valueTypeSymbol:
+		rvn = n.rs
+	case valueTypeBytes:
+		rvn = n.rl
+	case valueTypeTime:
+		rvn = n.rt
+	default:
+		panicv.errorf("kInterfaceNaked: unexpected valueType: %d", n.v)
+	}
+	return
+}
+
+func (d *Decoder) kInterface(f *codecFnInfo, rv reflect.Value) {
+	// Note:
+	// A consequence of how kInterface works, is that
+	// if an interface already contains something, we try
+	// to decode into what was there before.
+	// We do not replace with a generic value (as got from decodeNaked).
+
+	// every interface passed here MUST be settable.
+	var rvn reflect.Value
+	if rv.IsNil() || d.h.InterfaceReset {
+		// check if mapping to a type: if so, initialize it and move on
+		rvn = d.h.intf2impl(f.ti.rtid)
+		if rvn.IsValid() {
+			rv.Set(rvn)
+		} else {
+			rvn = d.kInterfaceNaked(f)
+			if rvn.IsValid() {
+				rv.Set(rvn)
+			} else if d.h.InterfaceReset {
+				// reset to zero value based on current type in there.
+				rv.Set(reflect.Zero(rv.Elem().Type()))
+			}
+			return
+		}
+	} else {
+		// now we have a non-nil interface value, meaning it contains a type
+		rvn = rv.Elem()
+	}
+	if d.d.TryDecodeAsNil() {
+		rv.Set(reflect.Zero(rvn.Type()))
+		return
+	}
+
+	// Note: interface{} is settable, but underlying type may not be.
+	// Consequently, we MAY have to create a decodable value out of the underlying value,
+	// decode into it, and reset the interface itself.
+	// fmt.Printf(">>>> kInterface: rvn type: %v, rv type: %v\n", rvn.Type(), rv.Type())
+
+	rvn2, canDecode := isDecodeable(rvn)
+	if canDecode {
+		d.decodeValue(rvn2, nil, true)
+		return
+	}
+
+	rvn2 = reflect.New(rvn.Type()).Elem()
+	rvn2.Set(rvn)
+	d.decodeValue(rvn2, nil, true)
+	rv.Set(rvn2)
+}
+
+func decStructFieldKey(dd decDriver, keyType valueType, b *[decScratchByteArrayLen]byte) (rvkencname []byte) {
+	// use if-else-if, not switch (which compiles to binary-search)
+	// since keyType is typically valueTypeString, branch prediction is pretty good.
+
+	if keyType == valueTypeString {
+		rvkencname = dd.DecodeStringAsBytes()
+	} else if keyType == valueTypeInt {
+		rvkencname = strconv.AppendInt(b[:0], dd.DecodeInt64(), 10)
+	} else if keyType == valueTypeUint {
+		rvkencname = strconv.AppendUint(b[:0], dd.DecodeUint64(), 10)
+	} else if keyType == valueTypeFloat {
+		rvkencname = strconv.AppendFloat(b[:0], dd.DecodeFloat64(), 'f', -1, 64)
+	} else {
+		rvkencname = dd.DecodeStringAsBytes()
+	}
+	return rvkencname
+}
+
+func (d *Decoder) kStruct(f *codecFnInfo, rv reflect.Value) {
+	fti := f.ti
+	dd := d.d
+	elemsep := d.esep
+	sfn := structFieldNode{v: rv, update: true}
+	ctyp := dd.ContainerType()
+	if ctyp == valueTypeMap {
+		containerLen := dd.ReadMapStart()
+		if containerLen == 0 {
+			dd.ReadMapEnd()
+			return
+		}
+		tisfi := fti.sfiSort
+		hasLen := containerLen >= 0
+
+		var rvkencname []byte
+		for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+			if elemsep {
+				dd.ReadMapElemKey()
+			}
+			rvkencname = decStructFieldKey(dd, fti.keyType, &d.b)
+			if elemsep {
+				dd.ReadMapElemValue()
+			}
+			if k := fti.indexForEncName(rvkencname); k > -1 {
+				si := tisfi[k]
+				if dd.TryDecodeAsNil() {
+					si.setToZeroValue(rv)
+				} else {
+					d.decodeValue(sfn.field(si), nil, true)
+				}
+			} else {
+				d.structFieldNotFound(-1, stringView(rvkencname))
+			}
+			// keepAlive4StringView(rvkencnameB) // not needed, as reference is outside loop
+		}
+		dd.ReadMapEnd()
+	} else if ctyp == valueTypeArray {
+		containerLen := dd.ReadArrayStart()
+		if containerLen == 0 {
+			dd.ReadArrayEnd()
+			return
+		}
+		// Not much gain from doing it two ways for array.
+		// Arrays are not used as much for structs.
+		hasLen := containerLen >= 0
+		for j, si := range fti.sfiSrc {
+			if (hasLen && j == containerLen) || (!hasLen && dd.CheckBreak()) {
+				break
+			}
+			if elemsep {
+				dd.ReadArrayElem()
+			}
+			if dd.TryDecodeAsNil() {
+				si.setToZeroValue(rv)
+			} else {
+				d.decodeValue(sfn.field(si), nil, true)
+			}
+		}
+		if containerLen > len(fti.sfiSrc) {
+			// read remaining values and throw away
+			for j := len(fti.sfiSrc); j < containerLen; j++ {
+				if elemsep {
+					dd.ReadArrayElem()
+				}
+				d.structFieldNotFound(j, "")
+			}
+		}
+		dd.ReadArrayEnd()
+	} else {
+		d.errorstr(errstrOnlyMapOrArrayCanDecodeIntoStruct)
+		return
+	}
+}
+
+func (d *Decoder) kSlice(f *codecFnInfo, rv reflect.Value) {
+	// A slice can be set from a map or array in stream.
+	// This way, the order can be kept (as order is lost with map).
+	ti := f.ti
+	if f.seq == seqTypeChan && ti.chandir&uint8(reflect.SendDir) == 0 {
+		d.errorf("receive-only channel cannot be decoded")
+	}
+	dd := d.d
+	rtelem0 := ti.elem
+	ctyp := dd.ContainerType()
+	if ctyp == valueTypeBytes || ctyp == valueTypeString {
+		// you can only decode bytes or string in the stream into a slice or array of bytes
+		if !(ti.rtid == uint8SliceTypId || rtelem0.Kind() == reflect.Uint8) {
+			d.errorf("bytes/string in stream must decode into slice/array of bytes, not %v", ti.rt)
+		}
+		if f.seq == seqTypeChan {
+			bs2 := dd.DecodeBytes(nil, true)
+			irv := rv2i(rv)
+			ch, ok := irv.(chan<- byte)
+			if !ok {
+				ch = irv.(chan byte)
+			}
+			for _, b := range bs2 {
+				ch <- b
+			}
+		} else {
+			rvbs := rv.Bytes()
+			bs2 := dd.DecodeBytes(rvbs, false)
+			// if rvbs == nil && bs2 != nil || rvbs != nil && bs2 == nil || len(bs2) != len(rvbs) {
+			if !(len(bs2) > 0 && len(bs2) == len(rvbs) && &bs2[0] == &rvbs[0]) {
+				if rv.CanSet() {
+					rv.SetBytes(bs2)
+				} else if len(rvbs) > 0 && len(bs2) > 0 {
+					copy(rvbs, bs2)
+				}
+			}
+		}
+		return
+	}
+
+	// array := f.seq == seqTypeChan
+
+	slh, containerLenS := d.decSliceHelperStart() // only expects valueType(Array|Map)
+
+	// an array can never return a nil slice. so no need to check f.array here.
+	if containerLenS == 0 {
+		if rv.CanSet() {
+			if f.seq == seqTypeSlice {
+				if rv.IsNil() {
+					rv.Set(reflect.MakeSlice(ti.rt, 0, 0))
+				} else {
+					rv.SetLen(0)
+				}
+			} else if f.seq == seqTypeChan {
+				if rv.IsNil() {
+					rv.Set(reflect.MakeChan(ti.rt, 0))
+				}
+			}
+		}
+		slh.End()
+		return
+	}
+
+	rtelem0Size := int(rtelem0.Size())
+	rtElem0Kind := rtelem0.Kind()
+	rtelem0Mut := !isImmutableKind(rtElem0Kind)
+	rtelem := rtelem0
+	rtelemkind := rtelem.Kind()
+	for rtelemkind == reflect.Ptr {
+		rtelem = rtelem.Elem()
+		rtelemkind = rtelem.Kind()
+	}
+
+	var fn *codecFn
+
+	var rvCanset = rv.CanSet()
+	var rvChanged bool
+	var rv0 = rv
+	var rv9 reflect.Value
+
+	rvlen := rv.Len()
+	rvcap := rv.Cap()
+	hasLen := containerLenS > 0
+	if hasLen && f.seq == seqTypeSlice {
+		if containerLenS > rvcap {
+			oldRvlenGtZero := rvlen > 0
+			rvlen = decInferLen(containerLenS, d.h.MaxInitLen, int(rtelem0.Size()))
+			if rvlen <= rvcap {
+				if rvCanset {
+					rv.SetLen(rvlen)
+				}
+			} else if rvCanset {
+				rv = reflect.MakeSlice(ti.rt, rvlen, rvlen)
+				rvcap = rvlen
+				rvChanged = true
+			} else {
+				d.errorf("cannot decode into non-settable slice")
+			}
+			if rvChanged && oldRvlenGtZero && !isImmutableKind(rtelem0.Kind()) {
+				reflect.Copy(rv, rv0) // only copy up to length NOT cap i.e. rv0.Slice(0, rvcap)
+			}
+		} else if containerLenS != rvlen {
+			rvlen = containerLenS
+			if rvCanset {
+				rv.SetLen(rvlen)
+			}
+			// else {
+			// rv = rv.Slice(0, rvlen)
+			// rvChanged = true
+			// d.errorf("cannot decode into non-settable slice")
+			// }
+		}
+	}
+
+	// consider creating new element once, and just decoding into it.
+	var rtelem0Zero reflect.Value
+	var rtelem0ZeroValid bool
+	var decodeAsNil bool
+	var j int
+	d.cfer()
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && (f.seq == seqTypeSlice || f.seq == seqTypeChan) && rv.IsNil() {
+			if hasLen {
+				rvlen = decInferLen(containerLenS, d.h.MaxInitLen, rtelem0Size)
+			} else if f.seq == seqTypeSlice {
+				rvlen = decDefSliceCap
+			} else {
+				rvlen = decDefChanCap
+			}
+			if rvCanset {
+				if f.seq == seqTypeSlice {
+					rv = reflect.MakeSlice(ti.rt, rvlen, rvlen)
+					rvChanged = true
+				} else { // chan
+					// xdebugf(">>>>>> haslen = %v, make chan of type '%v' with length: %v", hasLen, ti.rt, rvlen)
+					rv = reflect.MakeChan(ti.rt, rvlen)
+					rvChanged = true
+				}
+			} else {
+				d.errorf("cannot decode into non-settable slice")
+			}
+		}
+		slh.ElemContainerState(j)
+		decodeAsNil = dd.TryDecodeAsNil()
+		if f.seq == seqTypeChan {
+			if decodeAsNil {
+				rv.Send(reflect.Zero(rtelem0))
+				continue
+			}
+			if rtelem0Mut || !rv9.IsValid() { // || (rtElem0Kind == reflect.Ptr && rv9.IsNil()) {
+				rv9 = reflect.New(rtelem0).Elem()
+			}
+			if fn == nil {
+				fn = d.cf.get(rtelem, true, true)
+			}
+			d.decodeValue(rv9, fn, true)
+			// xdebugf(">>>> rv9 sent on %v during decode: %v, with len=%v, cap=%v", rv.Type(), rv9, rv.Len(), rv.Cap())
+			rv.Send(rv9)
+		} else {
+			// if indefinite, etc, then expand the slice if necessary
+			var decodeIntoBlank bool
+			if j >= rvlen {
+				if f.seq == seqTypeArray {
+					d.arrayCannotExpand(rvlen, j+1)
+					decodeIntoBlank = true
+				} else { // if f.seq == seqTypeSlice
+					// rv = reflect.Append(rv, reflect.Zero(rtelem0)) // append logic + varargs
+					var rvcap2 int
+					var rvErrmsg2 string
+					rv9, rvcap2, rvChanged, rvErrmsg2 =
+						expandSliceRV(rv, ti.rt, rvCanset, rtelem0Size, 1, rvlen, rvcap)
+					if rvErrmsg2 != "" {
+						d.errorf(rvErrmsg2)
+					}
+					rvlen++
+					if rvChanged {
+						rv = rv9
+						rvcap = rvcap2
+					}
+				}
+			}
+			if decodeIntoBlank {
+				if !decodeAsNil {
+					d.swallow()
+				}
+			} else {
+				rv9 = rv.Index(j)
+				if d.h.SliceElementReset || decodeAsNil {
+					if !rtelem0ZeroValid {
+						rtelem0ZeroValid = true
+						rtelem0Zero = reflect.Zero(rtelem0)
+					}
+					rv9.Set(rtelem0Zero)
+				}
+				if decodeAsNil {
+					continue
+				}
+
+				if fn == nil {
+					fn = d.cf.get(rtelem, true, true)
+				}
+				d.decodeValue(rv9, fn, true)
+			}
+		}
+	}
+	if f.seq == seqTypeSlice {
+		if j < rvlen {
+			if rv.CanSet() {
+				rv.SetLen(j)
+			} else if rvCanset {
+				rv = rv.Slice(0, j)
+				rvChanged = true
+			} // else { d.errorf("kSlice: cannot change non-settable slice") }
+			rvlen = j
+		} else if j == 0 && rv.IsNil() {
+			if rvCanset {
+				rv = reflect.MakeSlice(ti.rt, 0, 0)
+				rvChanged = true
+			} // else { d.errorf("kSlice: cannot change non-settable slice") }
+		}
+	}
+	slh.End()
+
+	if rvChanged { // infers rvCanset=true, so it can be reset
+		rv0.Set(rv)
+	}
+}
+
+// func (d *Decoder) kArray(f *codecFnInfo, rv reflect.Value) {
+// 	// d.decodeValueFn(rv.Slice(0, rv.Len()))
+// 	f.kSlice(rv.Slice(0, rv.Len()))
+// }
+
+func (d *Decoder) kMap(f *codecFnInfo, rv reflect.Value) {
+	dd := d.d
+	containerLen := dd.ReadMapStart()
+	elemsep := d.esep
+	ti := f.ti
+	if rv.IsNil() {
+		rv.Set(makeMapReflect(ti.rt, containerLen))
+	}
+
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return
+	}
+
+	ktype, vtype := ti.key, ti.elem
+	ktypeId := rt2id(ktype)
+	vtypeKind := vtype.Kind()
+
+	var keyFn, valFn *codecFn
+	var ktypeLo, vtypeLo reflect.Type
+
+	for ktypeLo = ktype; ktypeLo.Kind() == reflect.Ptr; ktypeLo = ktypeLo.Elem() {
+	}
+
+	for vtypeLo = vtype; vtypeLo.Kind() == reflect.Ptr; vtypeLo = vtypeLo.Elem() {
+	}
+
+	var mapGet, mapSet bool
+	rvvImmut := isImmutableKind(vtypeKind)
+	if !d.h.MapValueReset {
+		// if pointer, mapGet = true
+		// if interface, mapGet = true if !DecodeNakedAlways (else false)
+		// if builtin, mapGet = false
+		// else mapGet = true
+		if vtypeKind == reflect.Ptr {
+			mapGet = true
+		} else if vtypeKind == reflect.Interface {
+			if !d.h.InterfaceReset {
+				mapGet = true
+			}
+		} else if !rvvImmut {
+			mapGet = true
+		}
+	}
+
+	var rvk, rvkp, rvv, rvz reflect.Value
+	rvkMut := !isImmutableKind(ktype.Kind()) // if ktype is immutable, then re-use the same rvk.
+	ktypeIsString := ktypeId == stringTypId
+	ktypeIsIntf := ktypeId == intfTypId
+	hasLen := containerLen > 0
+	var kstrbs []byte
+	d.cfer()
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if rvkMut || !rvkp.IsValid() {
+			rvkp = reflect.New(ktype)
+			rvk = rvkp.Elem()
+		}
+		if elemsep {
+			dd.ReadMapElemKey()
+		}
+		if false && dd.TryDecodeAsNil() { // nil cannot be a map key, so disregard this block
+			// Previously, if a nil key, we just ignored the mapped value and continued.
+			// However, that makes the result of encoding and then decoding map[intf]intf{nil:nil}
+			// to be an empty map.
+			// Instead, we treat a nil key as the zero value of the type.
+			rvk.Set(reflect.Zero(ktype))
+		} else if ktypeIsString {
+			kstrbs = dd.DecodeStringAsBytes()
+			rvk.SetString(stringView(kstrbs))
+			// NOTE: if doing an insert, you MUST use a real string (not stringview)
+		} else {
+			if keyFn == nil {
+				keyFn = d.cf.get(ktypeLo, true, true)
+			}
+			d.decodeValue(rvk, keyFn, true)
+		}
+		// special case if a byte array.
+		if ktypeIsIntf {
+			if rvk2 := rvk.Elem(); rvk2.IsValid() {
+				if rvk2.Type() == uint8SliceTyp {
+					rvk = reflect.ValueOf(d.string(rvk2.Bytes()))
+				} else {
+					rvk = rvk2
+				}
+			}
+		}
+
+		if elemsep {
+			dd.ReadMapElemValue()
+		}
+
+		// Brittle, but OK per TryDecodeAsNil() contract.
+		// i.e. TryDecodeAsNil never shares slices with other decDriver procedures
+		if dd.TryDecodeAsNil() {
+			if ktypeIsString {
+				rvk.SetString(d.string(kstrbs))
+			}
+			if d.h.DeleteOnNilMapValue {
+				rv.SetMapIndex(rvk, reflect.Value{})
+			} else {
+				rv.SetMapIndex(rvk, reflect.Zero(vtype))
+			}
+			continue
+		}
+
+		mapSet = true // set to false if u do a get, and its a non-nil pointer
+		if mapGet {
+			// mapGet true only in case where kind=Ptr|Interface or kind is otherwise mutable.
+			rvv = rv.MapIndex(rvk)
+			if !rvv.IsValid() {
+				rvv = reflect.New(vtype).Elem()
+			} else if vtypeKind == reflect.Ptr {
+				if rvv.IsNil() {
+					rvv = reflect.New(vtype).Elem()
+				} else {
+					mapSet = false
+				}
+			} else if vtypeKind == reflect.Interface {
+				// not addressable, and thus not settable.
+				// e MUST create a settable/addressable variant
+				rvv2 := reflect.New(rvv.Type()).Elem()
+				if !rvv.IsNil() {
+					rvv2.Set(rvv)
+				}
+				rvv = rvv2
+			}
+			// else it is ~mutable, and we can just decode into it directly
+		} else if rvvImmut {
+			if !rvz.IsValid() {
+				rvz = reflect.New(vtype).Elem()
+			}
+			rvv = rvz
+		} else {
+			rvv = reflect.New(vtype).Elem()
+		}
+
+		// We MUST be done with the stringview of the key, before decoding the value
+		// so that we don't bastardize the reused byte array.
+		if mapSet && ktypeIsString {
+			rvk.SetString(d.string(kstrbs))
+		}
+		if valFn == nil {
+			valFn = d.cf.get(vtypeLo, true, true)
+		}
+		d.decodeValue(rvv, valFn, true)
+		// d.decodeValueFn(rvv, valFn)
+		if mapSet {
+			rv.SetMapIndex(rvk, rvv)
+		}
+		// if ktypeIsString {
+		// 	// keepAlive4StringView(kstrbs) // not needed, as reference is outside loop
+		// }
+	}
+
+	dd.ReadMapEnd()
+}
+
+// decNaked is used to keep track of the primitives decoded.
+// Without it, we would have to decode each primitive and wrap it
+// in an interface{}, causing an allocation.
+// In this model, the primitives are decoded in a "pseudo-atomic" fashion,
+// so we can rest assured that no other decoding happens while these
+// primitives are being decoded.
+//
+// maps and arrays are not handled by this mechanism.
+// However, RawExt is, and we accommodate for extensions that decode
+// RawExt from DecodeNaked, but need to decode the value subsequently.
+// kInterfaceNaked and swallow, which call DecodeNaked, handle this caveat.
+//
+// However, decNaked also keeps some arrays of default maps and slices
+// used in DecodeNaked. This way, we can get a pointer to it
+// without causing a new heap allocation.
+//
+// kInterfaceNaked will ensure that there is no allocation for the common
+// uses.
+
+type decNakedContainers struct {
+	// array/stacks for reducing allocation
+	// keep arrays at the bottom? Chance is that they are not used much.
+	ia [arrayCacheLen]interface{}
+	ma [arrayCacheLen]map[interface{}]interface{}
+	na [arrayCacheLen]map[string]interface{}
+	sa [arrayCacheLen][]interface{}
+
+	// ria [arrayCacheLen]reflect.Value // not needed, as we decode directly into &ia[n]
+	rma, rna, rsa [arrayCacheLen]reflect.Value // reflect.Value mapping to above
+}
+
+func (n *decNakedContainers) init() {
+	for i := 0; i < arrayCacheLen; i++ {
+		// n.ria[i] = reflect.ValueOf(&(n.ia[i])).Elem()
+		n.rma[i] = reflect.ValueOf(&(n.ma[i])).Elem()
+		n.rna[i] = reflect.ValueOf(&(n.na[i])).Elem()
+		n.rsa[i] = reflect.ValueOf(&(n.sa[i])).Elem()
+	}
+}
+
+type decNaked struct {
+	// r RawExt // used for RawExt, uint, []byte.
+
+	// primitives below
+	u uint64
+	i int64
+	f float64
+	l []byte
+	s string
+
+	// ---- cpu cache line boundary?
+	t time.Time
+	b bool
+
+	// state
+	v              valueType
+	li, lm, ln, ls int8
+	inited         bool
+
+	*decNakedContainers
+
+	ru, ri, rf, rl, rs, rb, rt reflect.Value // mapping to the primitives above
+
+	// _ [6]uint64 // padding // no padding - rt goes into next cache line
+}
+
+func (n *decNaked) init() {
+	if n.inited {
+		return
+	}
+	n.ru = reflect.ValueOf(&n.u).Elem()
+	n.ri = reflect.ValueOf(&n.i).Elem()
+	n.rf = reflect.ValueOf(&n.f).Elem()
+	n.rl = reflect.ValueOf(&n.l).Elem()
+	n.rs = reflect.ValueOf(&n.s).Elem()
+	n.rt = reflect.ValueOf(&n.t).Elem()
+	n.rb = reflect.ValueOf(&n.b).Elem()
+
+	n.inited = true
+	// n.rr[] = reflect.ValueOf(&n.)
+}
+
+func (n *decNaked) initContainers() {
+	if n.decNakedContainers == nil {
+		n.decNakedContainers = new(decNakedContainers)
+		n.decNakedContainers.init()
+	}
+}
+
+func (n *decNaked) reset() {
+	if n == nil {
+		return
+	}
+	n.li, n.lm, n.ln, n.ls = 0, 0, 0, 0
+}
+
+type rtid2rv struct {
+	rtid uintptr
+	rv   reflect.Value
+}
+
+// --------------
+
+type decReaderSwitch struct {
+	rb bytesDecReader
+	// ---- cpu cache line boundary?
+	ri       *ioDecReader
+	mtr, str bool // whether maptype or slicetype are known types
+
+	be    bool // is binary encoding
+	bytes bool // is bytes reader
+	js    bool // is json handle
+	jsms  bool // is json handle, and MapKeyAsString
+	esep  bool // has elem separators
+}
+
+// TODO: Uncomment after mid-stack inlining enabled in go 1.11
+//
+// func (z *decReaderSwitch) unreadn1() {
+// 	if z.bytes {
+// 		z.rb.unreadn1()
+// 	} else {
+// 		z.ri.unreadn1()
+// 	}
+// }
+// func (z *decReaderSwitch) readx(n int) []byte {
+// 	if z.bytes {
+// 		return z.rb.readx(n)
+// 	}
+// 	return z.ri.readx(n)
+// }
+// func (z *decReaderSwitch) readb(s []byte) {
+// 	if z.bytes {
+// 		z.rb.readb(s)
+// 	} else {
+// 		z.ri.readb(s)
+// 	}
+// }
+// func (z *decReaderSwitch) readn1() uint8 {
+// 	if z.bytes {
+// 		return z.rb.readn1()
+// 	}
+// 	return z.ri.readn1()
+// }
+// func (z *decReaderSwitch) numread() int {
+// 	if z.bytes {
+// 		return z.rb.numread()
+// 	}
+// 	return z.ri.numread()
+// }
+// func (z *decReaderSwitch) track() {
+// 	if z.bytes {
+// 		z.rb.track()
+// 	} else {
+// 		z.ri.track()
+// 	}
+// }
+// func (z *decReaderSwitch) stopTrack() []byte {
+// 	if z.bytes {
+// 		return z.rb.stopTrack()
+// 	}
+// 	return z.ri.stopTrack()
+// }
+// func (z *decReaderSwitch) skip(accept *bitset256) (token byte) {
+// 	if z.bytes {
+// 		return z.rb.skip(accept)
+// 	}
+// 	return z.ri.skip(accept)
+// }
+// func (z *decReaderSwitch) readTo(in []byte, accept *bitset256) (out []byte) {
+// 	if z.bytes {
+// 		return z.rb.readTo(in, accept)
+// 	}
+// 	return z.ri.readTo(in, accept)
+// }
+// func (z *decReaderSwitch) readUntil(in []byte, stop byte) (out []byte) {
+// 	if z.bytes {
+// 		return z.rb.readUntil(in, stop)
+// 	}
+// 	return z.ri.readUntil(in, stop)
+// }
+
+// A Decoder reads and decodes an object from an input stream in the codec format.
+type Decoder struct {
+	panicHdl
+	// hopefully, reduce derefencing cost by laying the decReader inside the Decoder.
+	// Try to put things that go together to fit within a cache line (8 words).
+
+	d decDriver
+	// NOTE: Decoder shouldn't call it's read methods,
+	// as the handler MAY need to do some coordination.
+	r  decReader
+	h  *BasicHandle
+	bi *bufioDecReader
+	// cache the mapTypeId and sliceTypeId for faster comparisons
+	mtid uintptr
+	stid uintptr
+
+	// ---- cpu cache line boundary?
+	decReaderSwitch
+
+	// ---- cpu cache line boundary?
+	codecFnPooler
+	// cr containerStateRecv
+	n   *decNaked
+	nsp *sync.Pool
+	err error
+
+	// ---- cpu cache line boundary?
+	b  [decScratchByteArrayLen]byte // scratch buffer, used by Decoder and xxxEncDrivers
+	is map[string]string            // used for interning strings
+
+	// padding - false sharing help // modify 232 if Decoder struct changes.
+	// _ [cacheLineSize - 232%cacheLineSize]byte
+}
+
+// NewDecoder returns a Decoder for decoding a stream of bytes from an io.Reader.
+//
+// For efficiency, Users are encouraged to pass in a memory buffered reader
+// (eg bufio.Reader, bytes.Buffer).
+func NewDecoder(r io.Reader, h Handle) *Decoder {
+	d := newDecoder(h)
+	d.Reset(r)
+	return d
+}
+
+// NewDecoderBytes returns a Decoder which efficiently decodes directly
+// from a byte slice with zero copying.
+func NewDecoderBytes(in []byte, h Handle) *Decoder {
+	d := newDecoder(h)
+	d.ResetBytes(in)
+	return d
+}
+
+var defaultDecNaked decNaked
+
+func newDecoder(h Handle) *Decoder {
+	d := &Decoder{h: h.getBasicHandle(), err: errDecoderNotInitialized}
+	d.hh = h
+	d.be = h.isBinary()
+	// NOTE: do not initialize d.n here. It is lazily initialized in d.naked()
+	var jh *JsonHandle
+	jh, d.js = h.(*JsonHandle)
+	if d.js {
+		d.jsms = jh.MapKeyAsString
+	}
+	d.esep = d.hh.hasElemSeparators()
+	if d.h.InternString {
+		d.is = make(map[string]string, 32)
+	}
+	d.d = h.newDecDriver(d)
+	// d.cr, _ = d.d.(containerStateRecv)
+	return d
+}
+
+func (d *Decoder) resetCommon() {
+	d.n.reset()
+	d.d.reset()
+	d.err = nil
+	// reset all things which were cached from the Handle, but could change
+	d.mtid, d.stid = 0, 0
+	d.mtr, d.str = false, false
+	if d.h.MapType != nil {
+		d.mtid = rt2id(d.h.MapType)
+		d.mtr = fastpathAV.index(d.mtid) != -1
+	}
+	if d.h.SliceType != nil {
+		d.stid = rt2id(d.h.SliceType)
+		d.str = fastpathAV.index(d.stid) != -1
+	}
+}
+
+// Reset the Decoder with a new Reader to decode from,
+// clearing all state from last run(s).
+func (d *Decoder) Reset(r io.Reader) {
+	if r == nil {
+		return
+	}
+	if d.bi == nil {
+		d.bi = new(bufioDecReader)
+	}
+	d.bytes = false
+	if d.h.ReaderBufferSize > 0 {
+		d.bi.buf = make([]byte, 0, d.h.ReaderBufferSize)
+		d.bi.reset(r)
+		d.r = d.bi
+	} else {
+		// d.ri.x = &d.b
+		// d.s = d.sa[:0]
+		if d.ri == nil {
+			d.ri = new(ioDecReader)
+		}
+		d.ri.reset(r)
+		d.r = d.ri
+	}
+	d.resetCommon()
+}
+
+// ResetBytes resets the Decoder with a new []byte to decode from,
+// clearing all state from last run(s).
+func (d *Decoder) ResetBytes(in []byte) {
+	if in == nil {
+		return
+	}
+	d.bytes = true
+	d.rb.reset(in)
+	d.r = &d.rb
+	d.resetCommon()
+}
+
+// naked must be called before each call to .DecodeNaked,
+// as they will use it.
+func (d *Decoder) naked() *decNaked {
+	if d.n == nil {
+		// consider one of:
+		//   - get from sync.Pool  (if GC is frequent, there's no value here)
+		//   - new alloc           (safest. only init'ed if it a naked decode will be done)
+		//   - field in Decoder    (makes the Decoder struct very big)
+		// To support using a decoder where a DecodeNaked is not needed,
+		// we prefer #1 or #2.
+		// d.n = new(decNaked) // &d.nv // new(decNaked) // grab from a sync.Pool
+		// d.n.init()
+		var v interface{}
+		d.nsp, v = pool.decNaked()
+		d.n = v.(*decNaked)
+	}
+	return d.n
+}
+
+// Decode decodes the stream from reader and stores the result in the
+// value pointed to by v. v cannot be a nil pointer. v can also be
+// a reflect.Value of a pointer.
+//
+// Note that a pointer to a nil interface is not a nil pointer.
+// If you do not know what type of stream it is, pass in a pointer to a nil interface.
+// We will decode and store a value in that nil interface.
+//
+// Sample usages:
+//   // Decoding into a non-nil typed value
+//   var f float32
+//   err = codec.NewDecoder(r, handle).Decode(&f)
+//
+//   // Decoding into nil interface
+//   var v interface{}
+//   dec := codec.NewDecoder(r, handle)
+//   err = dec.Decode(&v)
+//
+// When decoding into a nil interface{}, we will decode into an appropriate value based
+// on the contents of the stream:
+//   - Numbers are decoded as float64, int64 or uint64.
+//   - Other values are decoded appropriately depending on the type:
+//     bool, string, []byte, time.Time, etc
+//   - Extensions are decoded as RawExt (if no ext function registered for the tag)
+// Configurations exist on the Handle to override defaults
+// (e.g. for MapType, SliceType and how to decode raw bytes).
+//
+// When decoding into a non-nil interface{} value, the mode of encoding is based on the
+// type of the value. When a value is seen:
+//   - If an extension is registered for it, call that extension function
+//   - If it implements BinaryUnmarshaler, call its UnmarshalBinary(data []byte) error
+//   - Else decode it based on its reflect.Kind
+//
+// There are some special rules when decoding into containers (slice/array/map/struct).
+// Decode will typically use the stream contents to UPDATE the container.
+//   - A map can be decoded from a stream map, by updating matching keys.
+//   - A slice can be decoded from a stream array,
+//     by updating the first n elements, where n is length of the stream.
+//   - A slice can be decoded from a stream map, by decoding as if
+//     it contains a sequence of key-value pairs.
+//   - A struct can be decoded from a stream map, by updating matching fields.
+//   - A struct can be decoded from a stream array,
+//     by updating fields as they occur in the struct (by index).
+//
+// When decoding a stream map or array with length of 0 into a nil map or slice,
+// we reset the destination map or slice to a zero-length value.
+//
+// However, when decoding a stream nil, we reset the destination container
+// to its "zero" value (e.g. nil for slice/map, etc).
+//
+// Note: we allow nil values in the stream anywhere except for map keys.
+// A nil value in the encoded stream where a map key is expected is treated as an error.
+func (d *Decoder) Decode(v interface{}) (err error) {
+	defer d.deferred(&err)
+	d.MustDecode(v)
+	return
+}
+
+// MustDecode is like Decode, but panics if unable to Decode.
+// This provides insight to the code location that triggered the error.
+func (d *Decoder) MustDecode(v interface{}) {
+	// TODO: Top-level: ensure that v is a pointer and not nil.
+	if d.err != nil {
+		panic(d.err)
+	}
+	if d.d.TryDecodeAsNil() {
+		setZero(v)
+	} else {
+		d.decode(v)
+	}
+	d.alwaysAtEnd()
+	// xprintf(">>>>>>>> >>>>>>>> num decFns: %v\n", d.cf.sn)
+}
+
+func (d *Decoder) deferred(err1 *error) {
+	d.alwaysAtEnd()
+	if recoverPanicToErr {
+		if x := recover(); x != nil {
+			panicValToErr(d, x, err1)
+			panicValToErr(d, x, &d.err)
+		}
+	}
+}
+
+func (d *Decoder) alwaysAtEnd() {
+	if d.n != nil {
+		// if n != nil, then nsp != nil (they are always set together)
+		d.nsp.Put(d.n)
+		d.n, d.nsp = nil, nil
+	}
+	d.codecFnPooler.alwaysAtEnd()
+}
+
+// // this is not a smart swallow, as it allocates objects and does unnecessary work.
+// func (d *Decoder) swallowViaHammer() {
+// 	var blank interface{}
+// 	d.decodeValueNoFn(reflect.ValueOf(&blank).Elem())
+// }
+
+func (d *Decoder) swallow() {
+	// smarter decode that just swallows the content
+	dd := d.d
+	if dd.TryDecodeAsNil() {
+		return
+	}
+	elemsep := d.esep
+	switch dd.ContainerType() {
+	case valueTypeMap:
+		containerLen := dd.ReadMapStart()
+		hasLen := containerLen >= 0
+		for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+			// if clenGtEqualZero {if j >= containerLen {break} } else if dd.CheckBreak() {break}
+			if elemsep {
+				dd.ReadMapElemKey()
+			}
+			d.swallow()
+			if elemsep {
+				dd.ReadMapElemValue()
+			}
+			d.swallow()
+		}
+		dd.ReadMapEnd()
+	case valueTypeArray:
+		containerLen := dd.ReadArrayStart()
+		hasLen := containerLen >= 0
+		for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+			if elemsep {
+				dd.ReadArrayElem()
+			}
+			d.swallow()
+		}
+		dd.ReadArrayEnd()
+	case valueTypeBytes:
+		dd.DecodeBytes(d.b[:], true)
+	case valueTypeString:
+		dd.DecodeStringAsBytes()
+	default:
+		// these are all primitives, which we can get from decodeNaked
+		// if RawExt using Value, complete the processing.
+		n := d.naked()
+		dd.DecodeNaked()
+		if n.v == valueTypeExt && n.l == nil {
+			n.initContainers()
+			if n.li < arrayCacheLen {
+				n.ia[n.li] = nil
+				n.li++
+				d.decode(&n.ia[n.li-1])
+				n.ia[n.li-1] = nil
+				n.li--
+			} else {
+				var v2 interface{}
+				d.decode(&v2)
+			}
+		}
+	}
+}
+
+func setZero(iv interface{}) {
+	if iv == nil || definitelyNil(iv) {
+		return
+	}
+	var canDecode bool
+	switch v := iv.(type) {
+	case *string:
+		*v = ""
+	case *bool:
+		*v = false
+	case *int:
+		*v = 0
+	case *int8:
+		*v = 0
+	case *int16:
+		*v = 0
+	case *int32:
+		*v = 0
+	case *int64:
+		*v = 0
+	case *uint:
+		*v = 0
+	case *uint8:
+		*v = 0
+	case *uint16:
+		*v = 0
+	case *uint32:
+		*v = 0
+	case *uint64:
+		*v = 0
+	case *float32:
+		*v = 0
+	case *float64:
+		*v = 0
+	case *[]uint8:
+		*v = nil
+	case *Raw:
+		*v = nil
+	case *time.Time:
+		*v = time.Time{}
+	case reflect.Value:
+		if v, canDecode = isDecodeable(v); canDecode && v.CanSet() {
+			v.Set(reflect.Zero(v.Type()))
+		} // TODO: else drain if chan, clear if map, set all to nil if slice???
+	default:
+		if !fastpathDecodeSetZeroTypeSwitch(iv) {
+			v := reflect.ValueOf(iv)
+			if v, canDecode = isDecodeable(v); canDecode && v.CanSet() {
+				v.Set(reflect.Zero(v.Type()))
+			} // TODO: else drain if chan, clear if map, set all to nil if slice???
+		}
+	}
+}
+
+func (d *Decoder) decode(iv interface{}) {
+	// check nil and interfaces explicitly,
+	// so that type switches just have a run of constant non-interface types.
+	if iv == nil {
+		d.errorstr(errstrCannotDecodeIntoNil)
+		return
+	}
+	if v, ok := iv.(Selfer); ok {
+		v.CodecDecodeSelf(d)
+		return
+	}
+
+	switch v := iv.(type) {
+	// case nil:
+	// case Selfer:
+
+	case reflect.Value:
+		v = d.ensureDecodeable(v)
+		d.decodeValue(v, nil, true)
+
+	case *string:
+		*v = d.d.DecodeString()
+	case *bool:
+		*v = d.d.DecodeBool()
+	case *int:
+		*v = int(chkOvf.IntV(d.d.DecodeInt64(), intBitsize))
+	case *int8:
+		*v = int8(chkOvf.IntV(d.d.DecodeInt64(), 8))
+	case *int16:
+		*v = int16(chkOvf.IntV(d.d.DecodeInt64(), 16))
+	case *int32:
+		*v = int32(chkOvf.IntV(d.d.DecodeInt64(), 32))
+	case *int64:
+		*v = d.d.DecodeInt64()
+	case *uint:
+		*v = uint(chkOvf.UintV(d.d.DecodeUint64(), uintBitsize))
+	case *uint8:
+		*v = uint8(chkOvf.UintV(d.d.DecodeUint64(), 8))
+	case *uint16:
+		*v = uint16(chkOvf.UintV(d.d.DecodeUint64(), 16))
+	case *uint32:
+		*v = uint32(chkOvf.UintV(d.d.DecodeUint64(), 32))
+	case *uint64:
+		*v = d.d.DecodeUint64()
+	case *float32:
+		f64 := d.d.DecodeFloat64()
+		if chkOvf.Float32(f64) {
+			d.errorf("float32 overflow: %v", f64)
+		}
+		*v = float32(f64)
+	case *float64:
+		*v = d.d.DecodeFloat64()
+	case *[]uint8:
+		*v = d.d.DecodeBytes(*v, false)
+	case []uint8:
+		b := d.d.DecodeBytes(v, false)
+		if !(len(b) > 0 && len(b) == len(v) && &b[0] == &v[0]) {
+			copy(v, b)
+		}
+	case *time.Time:
+		*v = d.d.DecodeTime()
+	case *Raw:
+		*v = d.rawBytes()
+
+	case *interface{}:
+		d.decodeValue(reflect.ValueOf(iv).Elem(), nil, true)
+		// d.decodeValueNotNil(reflect.ValueOf(iv).Elem())
+
+	default:
+		if !fastpathDecodeTypeSwitch(iv, d) {
+			v := reflect.ValueOf(iv)
+			v = d.ensureDecodeable(v)
+			d.decodeValue(v, nil, false)
+			// d.decodeValueFallback(v)
+		}
+	}
+}
+
+func (d *Decoder) decodeValue(rv reflect.Value, fn *codecFn, chkAll bool) {
+	// If stream is not containing a nil value, then we can deref to the base
+	// non-pointer value, and decode into that.
+	var rvp reflect.Value
+	var rvpValid bool
+	if rv.Kind() == reflect.Ptr {
+		rvpValid = true
+		for {
+			if rv.IsNil() {
+				rv.Set(reflect.New(rv.Type().Elem()))
+			}
+			rvp = rv
+			rv = rv.Elem()
+			if rv.Kind() != reflect.Ptr {
+				break
+			}
+		}
+	}
+
+	if fn == nil {
+		// always pass checkCodecSelfer=true, in case T or ****T is passed, where *T is a Selfer
+		fn = d.cfer().get(rv.Type(), chkAll, true) // chkAll, chkAll)
+	}
+	if fn.i.addrD {
+		if rvpValid {
+			fn.fd(d, &fn.i, rvp)
+		} else if rv.CanAddr() {
+			fn.fd(d, &fn.i, rv.Addr())
+		} else if !fn.i.addrF {
+			fn.fd(d, &fn.i, rv)
+		} else {
+			d.errorf("cannot decode into a non-pointer value")
+		}
+	} else {
+		fn.fd(d, &fn.i, rv)
+	}
+	// return rv
+}
+
+func (d *Decoder) structFieldNotFound(index int, rvkencname string) {
+	// NOTE: rvkencname may be a stringView, so don't pass it to another function.
+	if d.h.ErrorIfNoField {
+		if index >= 0 {
+			d.errorf("no matching struct field found when decoding stream array at index %v", index)
+			return
+		} else if rvkencname != "" {
+			d.errorf("no matching struct field found when decoding stream map with key " + rvkencname)
+			return
+		}
+	}
+	d.swallow()
+}
+
+func (d *Decoder) arrayCannotExpand(sliceLen, streamLen int) {
+	if d.h.ErrorIfNoArrayExpand {
+		d.errorf("cannot expand array len during decode from %v to %v", sliceLen, streamLen)
+	}
+}
+
+func isDecodeable(rv reflect.Value) (rv2 reflect.Value, canDecode bool) {
+	switch rv.Kind() {
+	case reflect.Array:
+		return rv, true
+	case reflect.Ptr:
+		if !rv.IsNil() {
+			return rv.Elem(), true
+		}
+	case reflect.Slice, reflect.Chan, reflect.Map:
+		if !rv.IsNil() {
+			return rv, true
+		}
+	}
+	return
+}
+
+func (d *Decoder) ensureDecodeable(rv reflect.Value) (rv2 reflect.Value) {
+	// decode can take any reflect.Value that is a inherently addressable i.e.
+	//   - array
+	//   - non-nil chan    (we will SEND to it)
+	//   - non-nil slice   (we will set its elements)
+	//   - non-nil map     (we will put into it)
+	//   - non-nil pointer (we can "update" it)
+	rv2, canDecode := isDecodeable(rv)
+	if canDecode {
+		return
+	}
+	if !rv.IsValid() {
+		d.errorstr(errstrCannotDecodeIntoNil)
+		return
+	}
+	if !rv.CanInterface() {
+		d.errorf("cannot decode into a value without an interface: %v", rv)
+		return
+	}
+	rvi := rv2i(rv)
+	rvk := rv.Kind()
+	d.errorf("cannot decode into value of kind: %v, type: %T, %v", rvk, rvi, rvi)
+	return
+}
+
+// Possibly get an interned version of a string
+//
+// This should mostly be used for map keys, where the key type is string.
+// This is because keys of a map/struct are typically reused across many objects.
+func (d *Decoder) string(v []byte) (s string) {
+	if d.is == nil {
+		return string(v) // don't return stringView, as we need a real string here.
+	}
+	s, ok := d.is[string(v)] // no allocation here, per go implementation
+	if !ok {
+		s = string(v) // new allocation here
+		d.is[s] = s
+	}
+	return s
+}
+
+// nextValueBytes returns the next value in the stream as a set of bytes.
+func (d *Decoder) nextValueBytes() (bs []byte) {
+	d.d.uncacheRead()
+	d.r.track()
+	d.swallow()
+	bs = d.r.stopTrack()
+	return
+}
+
+func (d *Decoder) rawBytes() []byte {
+	// ensure that this is not a view into the bytes
+	// i.e. make new copy always.
+	bs := d.nextValueBytes()
+	bs2 := make([]byte, len(bs))
+	copy(bs2, bs)
+	return bs2
+}
+
+func (d *Decoder) wrapErrstr(v interface{}, err *error) {
+	*err = fmt.Errorf("%s decode error [pos %d]: %v", d.hh.Name(), d.r.numread(), v)
+}
+
+// --------------------------------------------------
+
+// decSliceHelper assists when decoding into a slice, from a map or an array in the stream.
+// A slice can be set from a map or array in stream. This supports the MapBySlice interface.
+type decSliceHelper struct {
+	d *Decoder
+	// ct valueType
+	array bool
+}
+
+func (d *Decoder) decSliceHelperStart() (x decSliceHelper, clen int) {
+	dd := d.d
+	ctyp := dd.ContainerType()
+	switch ctyp {
+	case valueTypeArray:
+		x.array = true
+		clen = dd.ReadArrayStart()
+	case valueTypeMap:
+		clen = dd.ReadMapStart() * 2
+	default:
+		d.errorf("only encoded map or array can be decoded into a slice (%d)", ctyp)
+	}
+	// x.ct = ctyp
+	x.d = d
+	return
+}
+
+func (x decSliceHelper) End() {
+	if x.array {
+		x.d.d.ReadArrayEnd()
+	} else {
+		x.d.d.ReadMapEnd()
+	}
+}
+
+func (x decSliceHelper) ElemContainerState(index int) {
+	if x.array {
+		x.d.d.ReadArrayElem()
+	} else if index%2 == 0 {
+		x.d.d.ReadMapElemKey()
+	} else {
+		x.d.d.ReadMapElemValue()
+	}
+}
+
+func decByteSlice(r decReader, clen, maxInitLen int, bs []byte) (bsOut []byte) {
+	if clen == 0 {
+		return zeroByteSlice
+	}
+	if len(bs) == clen {
+		bsOut = bs
+		r.readb(bsOut)
+	} else if cap(bs) >= clen {
+		bsOut = bs[:clen]
+		r.readb(bsOut)
+	} else {
+		// bsOut = make([]byte, clen)
+		len2 := decInferLen(clen, maxInitLen, 1)
+		bsOut = make([]byte, len2)
+		r.readb(bsOut)
+		for len2 < clen {
+			len3 := decInferLen(clen-len2, maxInitLen, 1)
+			bs3 := bsOut
+			bsOut = make([]byte, len2+len3)
+			copy(bsOut, bs3)
+			r.readb(bsOut[len2:])
+			len2 += len3
+		}
+	}
+	return
+}
+
+func detachZeroCopyBytes(isBytesReader bool, dest []byte, in []byte) (out []byte) {
+	if xlen := len(in); xlen > 0 {
+		if isBytesReader || xlen <= scratchByteArrayLen {
+			if cap(dest) >= xlen {
+				out = dest[:xlen]
+			} else {
+				out = make([]byte, xlen)
+			}
+			copy(out, in)
+			return
+		}
+	}
+	return in
+}
+
+// decInferLen will infer a sensible length, given the following:
+//    - clen: length wanted.
+//    - maxlen: max length to be returned.
+//      if <= 0, it is unset, and we infer it based on the unit size
+//    - unit: number of bytes for each element of the collection
+func decInferLen(clen, maxlen, unit int) (rvlen int) {
+	// handle when maxlen is not set i.e. <= 0
+	if clen <= 0 {
+		return
+	}
+	if unit == 0 {
+		return clen
+	}
+	if maxlen <= 0 {
+		// no maxlen defined. Use maximum of 256K memory, with a floor of 4K items.
+		// maxlen = 256 * 1024 / unit
+		// if maxlen < (4 * 1024) {
+		// 	maxlen = 4 * 1024
+		// }
+		if unit < (256 / 4) {
+			maxlen = 256 * 1024 / unit
+		} else {
+			maxlen = 4 * 1024
+		}
+	}
+	if clen > maxlen {
+		rvlen = maxlen
+	} else {
+		rvlen = clen
+	}
+	return
+}
+
+func expandSliceRV(s reflect.Value, st reflect.Type, canChange bool, stElemSize, num, slen, scap int) (
+	s2 reflect.Value, scap2 int, changed bool, err string) {
+	l1 := slen + num // new slice length
+	if l1 < slen {
+		err = errmsgExpandSliceOverflow
+		return
+	}
+	if l1 <= scap {
+		if s.CanSet() {
+			s.SetLen(l1)
+		} else if canChange {
+			s2 = s.Slice(0, l1)
+			scap2 = scap
+			changed = true
+		} else {
+			err = errmsgExpandSliceCannotChange
+			return
+		}
+		return
+	}
+	if !canChange {
+		err = errmsgExpandSliceCannotChange
+		return
+	}
+	scap2 = growCap(scap, stElemSize, num)
+	s2 = reflect.MakeSlice(st, l1, scap2)
+	changed = true
+	reflect.Copy(s2, s)
+	return
+}
+
+func decReadFull(r io.Reader, bs []byte) (n int, err error) {
+	var nn int
+	for n < len(bs) && err == nil {
+		nn, err = r.Read(bs[n:])
+		if nn > 0 {
+			if err == io.EOF {
+				// leave EOF for next time
+				err = nil
+			}
+			n += nn
+		}
+	}
+
+	// do not do this - it serves no purpose
+	// if n != len(bs) && err == io.EOF { err = io.ErrUnexpectedEOF }
+	return
+}
diff --git a/vendor/github.com/ugorji/go/codec/encode.go b/vendor/github.com/ugorji/go/codec/encode.go
new file mode 100644
index 0000000000..ef4652945f
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/encode.go
@@ -0,0 +1,1375 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"bufio"
+	"encoding"
+	"errors"
+	"fmt"
+	"io"
+	"reflect"
+	"sort"
+	"strconv"
+	"sync"
+	"time"
+)
+
+const defEncByteBufSize = 1 << 6 // 4:16, 6:64, 8:256, 10:1024
+
+var errEncoderNotInitialized = errors.New("Encoder not initialized")
+
+// encWriter abstracts writing to a byte array or to an io.Writer.
+type encWriter interface {
+	writeb([]byte)
+	writestr(string)
+	writen1(byte)
+	writen2(byte, byte)
+	atEndOfEncode()
+}
+
+// encDriver abstracts the actual codec (binc vs msgpack, etc)
+type encDriver interface {
+	EncodeNil()
+	EncodeInt(i int64)
+	EncodeUint(i uint64)
+	EncodeBool(b bool)
+	EncodeFloat32(f float32)
+	EncodeFloat64(f float64)
+	// encodeExtPreamble(xtag byte, length int)
+	EncodeRawExt(re *RawExt, e *Encoder)
+	EncodeExt(v interface{}, xtag uint64, ext Ext, e *Encoder)
+	EncodeString(c charEncoding, v string)
+	// EncodeSymbol(v string)
+	EncodeStringBytes(c charEncoding, v []byte)
+	EncodeTime(time.Time)
+	//encBignum(f *big.Int)
+	//encStringRunes(c charEncoding, v []rune)
+	WriteArrayStart(length int)
+	WriteArrayElem()
+	WriteArrayEnd()
+	WriteMapStart(length int)
+	WriteMapElemKey()
+	WriteMapElemValue()
+	WriteMapEnd()
+
+	reset()
+	atEndOfEncode()
+}
+
+type ioEncStringWriter interface {
+	WriteString(s string) (n int, err error)
+}
+
+type encDriverAsis interface {
+	EncodeAsis(v []byte)
+}
+
+type encDriverNoopContainerWriter struct{}
+
+func (encDriverNoopContainerWriter) WriteArrayStart(length int) {}
+func (encDriverNoopContainerWriter) WriteArrayElem()            {}
+func (encDriverNoopContainerWriter) WriteArrayEnd()             {}
+func (encDriverNoopContainerWriter) WriteMapStart(length int)   {}
+func (encDriverNoopContainerWriter) WriteMapElemKey()           {}
+func (encDriverNoopContainerWriter) WriteMapElemValue()         {}
+func (encDriverNoopContainerWriter) WriteMapEnd()               {}
+func (encDriverNoopContainerWriter) atEndOfEncode()             {}
+
+type encDriverTrackContainerWriter struct {
+	c containerState
+}
+
+func (e *encDriverTrackContainerWriter) WriteArrayStart(length int) { e.c = containerArrayStart }
+func (e *encDriverTrackContainerWriter) WriteArrayElem()            { e.c = containerArrayElem }
+func (e *encDriverTrackContainerWriter) WriteArrayEnd()             { e.c = containerArrayEnd }
+func (e *encDriverTrackContainerWriter) WriteMapStart(length int)   { e.c = containerMapStart }
+func (e *encDriverTrackContainerWriter) WriteMapElemKey()           { e.c = containerMapKey }
+func (e *encDriverTrackContainerWriter) WriteMapElemValue()         { e.c = containerMapValue }
+func (e *encDriverTrackContainerWriter) WriteMapEnd()               { e.c = containerMapEnd }
+func (e *encDriverTrackContainerWriter) atEndOfEncode()             {}
+
+// type ioEncWriterWriter interface {
+// 	WriteByte(c byte) error
+// 	WriteString(s string) (n int, err error)
+// 	Write(p []byte) (n int, err error)
+// }
+
+// EncodeOptions captures configuration options during encode.
+type EncodeOptions struct {
+	// WriterBufferSize is the size of the buffer used when writing.
+	//
+	// if > 0, we use a smart buffer internally for performance purposes.
+	WriterBufferSize int
+
+	// ChanRecvTimeout is the timeout used when selecting from a chan.
+	//
+	// Configuring this controls how we receive from a chan during the encoding process.
+	//   - If ==0, we only consume the elements currently available in the chan.
+	//   - if  <0, we consume until the chan is closed.
+	//   - If  >0, we consume until this timeout.
+	ChanRecvTimeout time.Duration
+
+	// StructToArray specifies to encode a struct as an array, and not as a map
+	StructToArray bool
+
+	// Canonical representation means that encoding a value will always result in the same
+	// sequence of bytes.
+	//
+	// This only affects maps, as the iteration order for maps is random.
+	//
+	// The implementation MAY use the natural sort order for the map keys if possible:
+	//
+	//     - If there is a natural sort order (ie for number, bool, string or []byte keys),
+	//       then the map keys are first sorted in natural order and then written
+	//       with corresponding map values to the strema.
+	//     - If there is no natural sort order, then the map keys will first be
+	//       encoded into []byte, and then sorted,
+	//       before writing the sorted keys and the corresponding map values to the stream.
+	//
+	Canonical bool
+
+	// CheckCircularRef controls whether we check for circular references
+	// and error fast during an encode.
+	//
+	// If enabled, an error is received if a pointer to a struct
+	// references itself either directly or through one of its fields (iteratively).
+	//
+	// This is opt-in, as there may be a performance hit to checking circular references.
+	CheckCircularRef bool
+
+	// RecursiveEmptyCheck controls whether we descend into interfaces, structs and pointers
+	// when checking if a value is empty.
+	//
+	// Note that this may make OmitEmpty more expensive, as it incurs a lot more reflect calls.
+	RecursiveEmptyCheck bool
+
+	// Raw controls whether we encode Raw values.
+	// This is a "dangerous" option and must be explicitly set.
+	// If set, we blindly encode Raw values as-is, without checking
+	// if they are a correct representation of a value in that format.
+	// If unset, we error out.
+	Raw bool
+
+	// // AsSymbols defines what should be encoded as symbols.
+	// //
+	// // Encoding as symbols can reduce the encoded size significantly.
+	// //
+	// // However, during decoding, each string to be encoded as a symbol must
+	// // be checked to see if it has been seen before. Consequently, encoding time
+	// // will increase if using symbols, because string comparisons has a clear cost.
+	// //
+	// // Sample values:
+	// //   AsSymbolNone
+	// //   AsSymbolAll
+	// //   AsSymbolMapStringKeys
+	// //   AsSymbolMapStringKeysFlag | AsSymbolStructFieldNameFlag
+	// AsSymbols AsSymbolFlag
+}
+
+// ---------------------------------------------
+
+// ioEncWriter implements encWriter and can write to an io.Writer implementation
+type ioEncWriter struct {
+	w  io.Writer
+	ww io.Writer
+	bw io.ByteWriter
+	sw ioEncStringWriter
+	fw ioFlusher
+	b  [8]byte
+}
+
+func (z *ioEncWriter) WriteByte(b byte) (err error) {
+	z.b[0] = b
+	_, err = z.w.Write(z.b[:1])
+	return
+}
+
+func (z *ioEncWriter) WriteString(s string) (n int, err error) {
+	return z.w.Write(bytesView(s))
+}
+
+func (z *ioEncWriter) writeb(bs []byte) {
+	if _, err := z.ww.Write(bs); err != nil {
+		panic(err)
+	}
+}
+
+func (z *ioEncWriter) writestr(s string) {
+	if _, err := z.sw.WriteString(s); err != nil {
+		panic(err)
+	}
+}
+
+func (z *ioEncWriter) writen1(b byte) {
+	if err := z.bw.WriteByte(b); err != nil {
+		panic(err)
+	}
+}
+
+func (z *ioEncWriter) writen2(b1, b2 byte) {
+	var err error
+	if err = z.bw.WriteByte(b1); err == nil {
+		if err = z.bw.WriteByte(b2); err == nil {
+			return
+		}
+	}
+	panic(err)
+}
+
+// func (z *ioEncWriter) writen5(b1, b2, b3, b4, b5 byte) {
+// 	z.b[0], z.b[1], z.b[2], z.b[3], z.b[4] = b1, b2, b3, b4, b5
+// 	if _, err := z.ww.Write(z.b[:5]); err != nil {
+// 		panic(err)
+// 	}
+// }
+
+func (z *ioEncWriter) atEndOfEncode() {
+	if z.fw != nil {
+		if err := z.fw.Flush(); err != nil {
+			panic(err)
+		}
+	}
+}
+
+// ---------------------------------------------
+
+// bytesEncAppender implements encWriter and can write to an byte slice.
+type bytesEncAppender struct {
+	b   []byte
+	out *[]byte
+}
+
+func (z *bytesEncAppender) writeb(s []byte) {
+	z.b = append(z.b, s...)
+}
+func (z *bytesEncAppender) writestr(s string) {
+	z.b = append(z.b, s...)
+}
+func (z *bytesEncAppender) writen1(b1 byte) {
+	z.b = append(z.b, b1)
+}
+func (z *bytesEncAppender) writen2(b1, b2 byte) {
+	z.b = append(z.b, b1, b2)
+}
+func (z *bytesEncAppender) atEndOfEncode() {
+	*(z.out) = z.b
+}
+func (z *bytesEncAppender) reset(in []byte, out *[]byte) {
+	z.b = in[:0]
+	z.out = out
+}
+
+// ---------------------------------------------
+
+func (e *Encoder) rawExt(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeRawExt(rv2i(rv).(*RawExt), e)
+}
+
+func (e *Encoder) ext(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeExt(rv2i(rv), f.xfTag, f.xfFn, e)
+}
+
+func (e *Encoder) selferMarshal(f *codecFnInfo, rv reflect.Value) {
+	rv2i(rv).(Selfer).CodecEncodeSelf(e)
+}
+
+func (e *Encoder) binaryMarshal(f *codecFnInfo, rv reflect.Value) {
+	bs, fnerr := rv2i(rv).(encoding.BinaryMarshaler).MarshalBinary()
+	e.marshal(bs, fnerr, false, cRAW)
+}
+
+func (e *Encoder) textMarshal(f *codecFnInfo, rv reflect.Value) {
+	bs, fnerr := rv2i(rv).(encoding.TextMarshaler).MarshalText()
+	e.marshal(bs, fnerr, false, cUTF8)
+}
+
+func (e *Encoder) jsonMarshal(f *codecFnInfo, rv reflect.Value) {
+	bs, fnerr := rv2i(rv).(jsonMarshaler).MarshalJSON()
+	e.marshal(bs, fnerr, true, cUTF8)
+}
+
+func (e *Encoder) raw(f *codecFnInfo, rv reflect.Value) {
+	e.rawBytes(rv2i(rv).(Raw))
+}
+
+func (e *Encoder) kInvalid(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeNil()
+}
+
+func (e *Encoder) kErr(f *codecFnInfo, rv reflect.Value) {
+	e.errorf("unsupported kind %s, for %#v", rv.Kind(), rv)
+}
+
+func (e *Encoder) kSlice(f *codecFnInfo, rv reflect.Value) {
+	ti := f.ti
+	ee := e.e
+	// array may be non-addressable, so we have to manage with care
+	//   (don't call rv.Bytes, rv.Slice, etc).
+	// E.g. type struct S{B [2]byte};
+	//   Encode(S{}) will bomb on "panic: slice of unaddressable array".
+	if f.seq != seqTypeArray {
+		if rv.IsNil() {
+			ee.EncodeNil()
+			return
+		}
+		// If in this method, then there was no extension function defined.
+		// So it's okay to treat as []byte.
+		if ti.rtid == uint8SliceTypId {
+			ee.EncodeStringBytes(cRAW, rv.Bytes())
+			return
+		}
+	}
+	if f.seq == seqTypeChan && ti.chandir&uint8(reflect.RecvDir) == 0 {
+		e.errorf("send-only channel cannot be encoded")
+	}
+	elemsep := e.esep
+	rtelem := ti.elem
+	rtelemIsByte := uint8TypId == rt2id(rtelem) // NOT rtelem.Kind() == reflect.Uint8
+	var l int
+	// if a slice, array or chan of bytes, treat specially
+	if rtelemIsByte {
+		switch f.seq {
+		case seqTypeSlice:
+			ee.EncodeStringBytes(cRAW, rv.Bytes())
+		case seqTypeArray:
+			l = rv.Len()
+			if rv.CanAddr() {
+				ee.EncodeStringBytes(cRAW, rv.Slice(0, l).Bytes())
+			} else {
+				var bs []byte
+				if l <= cap(e.b) {
+					bs = e.b[:l]
+				} else {
+					bs = make([]byte, l)
+				}
+				reflect.Copy(reflect.ValueOf(bs), rv)
+				ee.EncodeStringBytes(cRAW, bs)
+			}
+		case seqTypeChan:
+			// do not use range, so that the number of elements encoded
+			// does not change, and encoding does not hang waiting on someone to close chan.
+			// for b := range rv2i(rv).(<-chan byte) { bs = append(bs, b) }
+			// ch := rv2i(rv).(<-chan byte) // fix error - that this is a chan byte, not a <-chan byte.
+
+			if rv.IsNil() {
+				ee.EncodeNil()
+				break
+			}
+			bs := e.b[:0]
+			irv := rv2i(rv)
+			ch, ok := irv.(<-chan byte)
+			if !ok {
+				ch = irv.(chan byte)
+			}
+
+		L1:
+			switch timeout := e.h.ChanRecvTimeout; {
+			case timeout == 0: // only consume available
+				for {
+					select {
+					case b := <-ch:
+						bs = append(bs, b)
+					default:
+						break L1
+					}
+				}
+			case timeout > 0: // consume until timeout
+				tt := time.NewTimer(timeout)
+				for {
+					select {
+					case b := <-ch:
+						bs = append(bs, b)
+					case <-tt.C:
+						// close(tt.C)
+						break L1
+					}
+				}
+			default: // consume until close
+				for b := range ch {
+					bs = append(bs, b)
+				}
+			}
+
+			ee.EncodeStringBytes(cRAW, bs)
+		}
+		return
+	}
+
+	// if chan, consume chan into a slice, and work off that slice.
+	var rvcs reflect.Value
+	if f.seq == seqTypeChan {
+		rvcs = reflect.Zero(reflect.SliceOf(rtelem))
+		timeout := e.h.ChanRecvTimeout
+		if timeout < 0 { // consume until close
+			for {
+				recv, recvOk := rv.Recv()
+				if !recvOk {
+					break
+				}
+				rvcs = reflect.Append(rvcs, recv)
+			}
+		} else {
+			cases := make([]reflect.SelectCase, 2)
+			cases[0] = reflect.SelectCase{Dir: reflect.SelectRecv, Chan: rv}
+			if timeout == 0 {
+				cases[1] = reflect.SelectCase{Dir: reflect.SelectDefault}
+			} else {
+				tt := time.NewTimer(timeout)
+				cases[1] = reflect.SelectCase{Dir: reflect.SelectRecv, Chan: reflect.ValueOf(tt.C)}
+			}
+			for {
+				chosen, recv, recvOk := reflect.Select(cases)
+				if chosen == 1 || !recvOk {
+					break
+				}
+				rvcs = reflect.Append(rvcs, recv)
+			}
+		}
+		rv = rvcs // TODO: ensure this doesn't mess up anywhere that rv of kind chan is expected
+	}
+
+	l = rv.Len()
+	if ti.mbs {
+		if l%2 == 1 {
+			e.errorf("mapBySlice requires even slice length, but got %v", l)
+			return
+		}
+		ee.WriteMapStart(l / 2)
+	} else {
+		ee.WriteArrayStart(l)
+	}
+
+	if l > 0 {
+		var fn *codecFn
+		for rtelem.Kind() == reflect.Ptr {
+			rtelem = rtelem.Elem()
+		}
+		// if kind is reflect.Interface, do not pre-determine the
+		// encoding type, because preEncodeValue may break it down to
+		// a concrete type and kInterface will bomb.
+		if rtelem.Kind() != reflect.Interface {
+			fn = e.cfer().get(rtelem, true, true)
+		}
+		for j := 0; j < l; j++ {
+			if elemsep {
+				if ti.mbs {
+					if j%2 == 0 {
+						ee.WriteMapElemKey()
+					} else {
+						ee.WriteMapElemValue()
+					}
+				} else {
+					ee.WriteArrayElem()
+				}
+			}
+			e.encodeValue(rv.Index(j), fn, true)
+		}
+	}
+
+	if ti.mbs {
+		ee.WriteMapEnd()
+	} else {
+		ee.WriteArrayEnd()
+	}
+}
+
+func (e *Encoder) kStructNoOmitempty(f *codecFnInfo, rv reflect.Value) {
+	fti := f.ti
+	elemsep := e.esep
+	tisfi := fti.sfiSrc
+	toMap := !(fti.toArray || e.h.StructToArray)
+	if toMap {
+		tisfi = fti.sfiSort
+	}
+	ee := e.e
+
+	sfn := structFieldNode{v: rv, update: false}
+	if toMap {
+		ee.WriteMapStart(len(tisfi))
+		if elemsep {
+			for _, si := range tisfi {
+				ee.WriteMapElemKey()
+				// ee.EncodeString(cUTF8, si.encName)
+				encStructFieldKey(ee, fti.keyType, si.encName)
+				ee.WriteMapElemValue()
+				e.encodeValue(sfn.field(si), nil, true)
+			}
+		} else {
+			for _, si := range tisfi {
+				// ee.EncodeString(cUTF8, si.encName)
+				encStructFieldKey(ee, fti.keyType, si.encName)
+				e.encodeValue(sfn.field(si), nil, true)
+			}
+		}
+		ee.WriteMapEnd()
+	} else {
+		ee.WriteArrayStart(len(tisfi))
+		if elemsep {
+			for _, si := range tisfi {
+				ee.WriteArrayElem()
+				e.encodeValue(sfn.field(si), nil, true)
+			}
+		} else {
+			for _, si := range tisfi {
+				e.encodeValue(sfn.field(si), nil, true)
+			}
+		}
+		ee.WriteArrayEnd()
+	}
+}
+
+func encStructFieldKey(ee encDriver, keyType valueType, s string) {
+	var m must
+
+	// use if-else-if, not switch (which compiles to binary-search)
+	// since keyType is typically valueTypeString, branch prediction is pretty good.
+
+	if keyType == valueTypeString {
+		ee.EncodeString(cUTF8, s)
+	} else if keyType == valueTypeInt {
+		ee.EncodeInt(m.Int(strconv.ParseInt(s, 10, 64)))
+	} else if keyType == valueTypeUint {
+		ee.EncodeUint(m.Uint(strconv.ParseUint(s, 10, 64)))
+	} else if keyType == valueTypeFloat {
+		ee.EncodeFloat64(m.Float(strconv.ParseFloat(s, 64)))
+	} else {
+		ee.EncodeString(cUTF8, s)
+	}
+}
+
+func (e *Encoder) kStruct(f *codecFnInfo, rv reflect.Value) {
+	fti := f.ti
+	elemsep := e.esep
+	tisfi := fti.sfiSrc
+	toMap := !(fti.toArray || e.h.StructToArray)
+	// if toMap, use the sorted array. If toArray, use unsorted array (to match sequence in struct)
+	if toMap {
+		tisfi = fti.sfiSort
+	}
+	newlen := len(fti.sfiSort)
+	ee := e.e
+
+	// Use sync.Pool to reduce allocating slices unnecessarily.
+	// The cost of sync.Pool is less than the cost of new allocation.
+	//
+	// Each element of the array pools one of encStructPool(8|16|32|64).
+	// It allows the re-use of slices up to 64 in length.
+	// A performance cost of encoding structs was collecting
+	// which values were empty and should be omitted.
+	// We needed slices of reflect.Value and string to collect them.
+	// This shared pool reduces the amount of unnecessary creation we do.
+	// The cost is that of locking sometimes, but sync.Pool is efficient
+	// enough to reduce thread contention.
+
+	var spool *sync.Pool
+	var poolv interface{}
+	var fkvs []stringRv
+	// fmt.Printf(">>>>>>>>>>>>>> encode.kStruct: newlen: %d\n", newlen)
+	if newlen <= 8 {
+		spool, poolv = pool.stringRv8()
+		fkvs = poolv.(*[8]stringRv)[:newlen]
+	} else if newlen <= 16 {
+		spool, poolv = pool.stringRv16()
+		fkvs = poolv.(*[16]stringRv)[:newlen]
+	} else if newlen <= 32 {
+		spool, poolv = pool.stringRv32()
+		fkvs = poolv.(*[32]stringRv)[:newlen]
+	} else if newlen <= 64 {
+		spool, poolv = pool.stringRv64()
+		fkvs = poolv.(*[64]stringRv)[:newlen]
+	} else if newlen <= 128 {
+		spool, poolv = pool.stringRv128()
+		fkvs = poolv.(*[128]stringRv)[:newlen]
+	} else {
+		fkvs = make([]stringRv, newlen)
+	}
+
+	newlen = 0
+	var kv stringRv
+	recur := e.h.RecursiveEmptyCheck
+	sfn := structFieldNode{v: rv, update: false}
+	for _, si := range tisfi {
+		// kv.r = si.field(rv, false)
+		kv.r = sfn.field(si)
+		if toMap {
+			if si.omitEmpty() && isEmptyValue(kv.r, e.h.TypeInfos, recur, recur) {
+				continue
+			}
+			kv.v = si.encName
+		} else {
+			// use the zero value.
+			// if a reference or struct, set to nil (so you do not output too much)
+			if si.omitEmpty() && isEmptyValue(kv.r, e.h.TypeInfos, recur, recur) {
+				switch kv.r.Kind() {
+				case reflect.Struct, reflect.Interface, reflect.Ptr, reflect.Array, reflect.Map, reflect.Slice:
+					kv.r = reflect.Value{} //encode as nil
+				}
+			}
+		}
+		fkvs[newlen] = kv
+		newlen++
+	}
+
+	if toMap {
+		ee.WriteMapStart(newlen)
+		if elemsep {
+			for j := 0; j < newlen; j++ {
+				kv = fkvs[j]
+				ee.WriteMapElemKey()
+				// ee.EncodeString(cUTF8, kv.v)
+				encStructFieldKey(ee, fti.keyType, kv.v)
+				ee.WriteMapElemValue()
+				e.encodeValue(kv.r, nil, true)
+			}
+		} else {
+			for j := 0; j < newlen; j++ {
+				kv = fkvs[j]
+				// ee.EncodeString(cUTF8, kv.v)
+				encStructFieldKey(ee, fti.keyType, kv.v)
+				e.encodeValue(kv.r, nil, true)
+			}
+		}
+		ee.WriteMapEnd()
+	} else {
+		ee.WriteArrayStart(newlen)
+		if elemsep {
+			for j := 0; j < newlen; j++ {
+				ee.WriteArrayElem()
+				e.encodeValue(fkvs[j].r, nil, true)
+			}
+		} else {
+			for j := 0; j < newlen; j++ {
+				e.encodeValue(fkvs[j].r, nil, true)
+			}
+		}
+		ee.WriteArrayEnd()
+	}
+
+	// do not use defer. Instead, use explicit pool return at end of function.
+	// defer has a cost we are trying to avoid.
+	// If there is a panic and these slices are not returned, it is ok.
+	if spool != nil {
+		spool.Put(poolv)
+	}
+}
+
+func (e *Encoder) kMap(f *codecFnInfo, rv reflect.Value) {
+	ee := e.e
+	if rv.IsNil() {
+		ee.EncodeNil()
+		return
+	}
+
+	l := rv.Len()
+	ee.WriteMapStart(l)
+	elemsep := e.esep
+	if l == 0 {
+		ee.WriteMapEnd()
+		return
+	}
+	// var asSymbols bool
+	// determine the underlying key and val encFn's for the map.
+	// This eliminates some work which is done for each loop iteration i.e.
+	// rv.Type(), ref.ValueOf(rt).Pointer(), then check map/list for fn.
+	//
+	// However, if kind is reflect.Interface, do not pre-determine the
+	// encoding type, because preEncodeValue may break it down to
+	// a concrete type and kInterface will bomb.
+	var keyFn, valFn *codecFn
+	ti := f.ti
+	rtkey0 := ti.key
+	rtkey := rtkey0
+	rtval0 := ti.elem
+	rtval := rtval0
+	// rtkeyid := rt2id(rtkey0)
+	for rtval.Kind() == reflect.Ptr {
+		rtval = rtval.Elem()
+	}
+	if rtval.Kind() != reflect.Interface {
+		valFn = e.cfer().get(rtval, true, true)
+	}
+	mks := rv.MapKeys()
+
+	if e.h.Canonical {
+		e.kMapCanonical(rtkey, rv, mks, valFn)
+		ee.WriteMapEnd()
+		return
+	}
+
+	var keyTypeIsString = stringTypId == rt2id(rtkey0) // rtkeyid
+	if !keyTypeIsString {
+		for rtkey.Kind() == reflect.Ptr {
+			rtkey = rtkey.Elem()
+		}
+		if rtkey.Kind() != reflect.Interface {
+			// rtkeyid = rt2id(rtkey)
+			keyFn = e.cfer().get(rtkey, true, true)
+		}
+	}
+
+	// for j, lmks := 0, len(mks); j < lmks; j++ {
+	for j := range mks {
+		if elemsep {
+			ee.WriteMapElemKey()
+		}
+		if keyTypeIsString {
+			ee.EncodeString(cUTF8, mks[j].String())
+		} else {
+			e.encodeValue(mks[j], keyFn, true)
+		}
+		if elemsep {
+			ee.WriteMapElemValue()
+		}
+		e.encodeValue(rv.MapIndex(mks[j]), valFn, true)
+
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) kMapCanonical(rtkey reflect.Type, rv reflect.Value, mks []reflect.Value, valFn *codecFn) {
+	ee := e.e
+	elemsep := e.esep
+	// we previously did out-of-band if an extension was registered.
+	// This is not necessary, as the natural kind is sufficient for ordering.
+
+	switch rtkey.Kind() {
+	case reflect.Bool:
+		mksv := make([]boolRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.Bool()
+		}
+		sort.Sort(boolRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeBool(mksv[i].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.String:
+		mksv := make([]stringRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.String()
+		}
+		sort.Sort(stringRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeString(cUTF8, mksv[i].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uint, reflect.Uintptr:
+		mksv := make([]uintRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.Uint()
+		}
+		sort.Sort(uintRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeUint(mksv[i].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64, reflect.Int:
+		mksv := make([]intRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.Int()
+		}
+		sort.Sort(intRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeInt(mksv[i].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.Float32:
+		mksv := make([]floatRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.Float()
+		}
+		sort.Sort(floatRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeFloat32(float32(mksv[i].v))
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.Float64:
+		mksv := make([]floatRv, len(mks))
+		for i, k := range mks {
+			v := &mksv[i]
+			v.r = k
+			v.v = k.Float()
+		}
+		sort.Sort(floatRvSlice(mksv))
+		for i := range mksv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			ee.EncodeFloat64(mksv[i].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+		}
+	case reflect.Struct:
+		if rv.Type() == timeTyp {
+			mksv := make([]timeRv, len(mks))
+			for i, k := range mks {
+				v := &mksv[i]
+				v.r = k
+				v.v = rv2i(k).(time.Time)
+			}
+			sort.Sort(timeRvSlice(mksv))
+			for i := range mksv {
+				if elemsep {
+					ee.WriteMapElemKey()
+				}
+				ee.EncodeTime(mksv[i].v)
+				if elemsep {
+					ee.WriteMapElemValue()
+				}
+				e.encodeValue(rv.MapIndex(mksv[i].r), valFn, true)
+			}
+			break
+		}
+		fallthrough
+	default:
+		// out-of-band
+		// first encode each key to a []byte first, then sort them, then record
+		var mksv []byte = make([]byte, 0, len(mks)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		mksbv := make([]bytesRv, len(mks))
+		for i, k := range mks {
+			v := &mksbv[i]
+			l := len(mksv)
+			e2.MustEncode(k)
+			v.r = k
+			v.v = mksv[l:]
+		}
+		sort.Sort(bytesRvSlice(mksbv))
+		for j := range mksbv {
+			if elemsep {
+				ee.WriteMapElemKey()
+			}
+			e.asis(mksbv[j].v)
+			if elemsep {
+				ee.WriteMapElemValue()
+			}
+			e.encodeValue(rv.MapIndex(mksbv[j].r), valFn, true)
+		}
+	}
+}
+
+// // --------------------------------------------------
+
+type encWriterSwitch struct {
+	wi *ioEncWriter
+	// wb bytesEncWriter
+	wb   bytesEncAppender
+	wx   bool // if bytes, wx=true
+	esep bool // whether it has elem separators
+	isas bool // whether e.as != nil
+}
+
+// // TODO: Uncomment after mid-stack inlining enabled in go 1.11
+
+// func (z *encWriterSwitch) writeb(s []byte) {
+// 	if z.wx {
+// 		z.wb.writeb(s)
+// 	} else {
+// 		z.wi.writeb(s)
+// 	}
+// }
+// func (z *encWriterSwitch) writestr(s string) {
+// 	if z.wx {
+// 		z.wb.writestr(s)
+// 	} else {
+// 		z.wi.writestr(s)
+// 	}
+// }
+// func (z *encWriterSwitch) writen1(b1 byte) {
+// 	if z.wx {
+// 		z.wb.writen1(b1)
+// 	} else {
+// 		z.wi.writen1(b1)
+// 	}
+// }
+// func (z *encWriterSwitch) writen2(b1, b2 byte) {
+// 	if z.wx {
+// 		z.wb.writen2(b1, b2)
+// 	} else {
+// 		z.wi.writen2(b1, b2)
+// 	}
+// }
+
+// An Encoder writes an object to an output stream in the codec format.
+type Encoder struct {
+	panicHdl
+	// hopefully, reduce derefencing cost by laying the encWriter inside the Encoder
+	e encDriver
+	// NOTE: Encoder shouldn't call it's write methods,
+	// as the handler MAY need to do some coordination.
+	w encWriter
+
+	h  *BasicHandle
+	bw *bufio.Writer
+	as encDriverAsis
+
+	// ---- cpu cache line boundary?
+
+	// ---- cpu cache line boundary?
+	encWriterSwitch
+	err error
+
+	// ---- cpu cache line boundary?
+	codecFnPooler
+	ci set
+	js bool    // here, so that no need to piggy back on *codecFner for this
+	be bool    // here, so that no need to piggy back on *codecFner for this
+	_  [6]byte // padding
+
+	// ---- writable fields during execution --- *try* to keep in sep cache line
+
+	// ---- cpu cache line boundary?
+	// b [scratchByteArrayLen]byte
+	// _ [cacheLineSize - scratchByteArrayLen]byte // padding
+	b [cacheLineSize - 0]byte // used for encoding a chan or (non-addressable) array of bytes
+}
+
+// NewEncoder returns an Encoder for encoding into an io.Writer.
+//
+// For efficiency, Users are encouraged to pass in a memory buffered writer
+// (eg bufio.Writer, bytes.Buffer).
+func NewEncoder(w io.Writer, h Handle) *Encoder {
+	e := newEncoder(h)
+	e.Reset(w)
+	return e
+}
+
+// NewEncoderBytes returns an encoder for encoding directly and efficiently
+// into a byte slice, using zero-copying to temporary slices.
+//
+// It will potentially replace the output byte slice pointed to.
+// After encoding, the out parameter contains the encoded contents.
+func NewEncoderBytes(out *[]byte, h Handle) *Encoder {
+	e := newEncoder(h)
+	e.ResetBytes(out)
+	return e
+}
+
+func newEncoder(h Handle) *Encoder {
+	e := &Encoder{h: h.getBasicHandle(), err: errEncoderNotInitialized}
+	e.hh = h
+	e.esep = h.hasElemSeparators()
+	return e
+}
+
+func (e *Encoder) resetCommon() {
+	if e.e == nil || e.hh.recreateEncDriver(e.e) {
+		e.e = e.hh.newEncDriver(e)
+		e.as, e.isas = e.e.(encDriverAsis)
+		// e.cr, _ = e.e.(containerStateRecv)
+	}
+	e.be = e.hh.isBinary()
+	_, e.js = e.hh.(*JsonHandle)
+	e.e.reset()
+	e.err = nil
+}
+
+// Reset resets the Encoder with a new output stream.
+//
+// This accommodates using the state of the Encoder,
+// where it has "cached" information about sub-engines.
+func (e *Encoder) Reset(w io.Writer) {
+	if w == nil {
+		return
+	}
+	if e.wi == nil {
+		e.wi = new(ioEncWriter)
+	}
+	var ok bool
+	e.wx = false
+	e.wi.w = w
+	if e.h.WriterBufferSize > 0 {
+		e.bw = bufio.NewWriterSize(w, e.h.WriterBufferSize)
+		e.wi.bw = e.bw
+		e.wi.sw = e.bw
+		e.wi.fw = e.bw
+		e.wi.ww = e.bw
+	} else {
+		if e.wi.bw, ok = w.(io.ByteWriter); !ok {
+			e.wi.bw = e.wi
+		}
+		if e.wi.sw, ok = w.(ioEncStringWriter); !ok {
+			e.wi.sw = e.wi
+		}
+		e.wi.fw, _ = w.(ioFlusher)
+		e.wi.ww = w
+	}
+	e.w = e.wi
+	e.resetCommon()
+}
+
+// ResetBytes resets the Encoder with a new destination output []byte.
+func (e *Encoder) ResetBytes(out *[]byte) {
+	if out == nil {
+		return
+	}
+	var in []byte
+	if out != nil {
+		in = *out
+	}
+	if in == nil {
+		in = make([]byte, defEncByteBufSize)
+	}
+	e.wx = true
+	e.wb.reset(in, out)
+	e.w = &e.wb
+	e.resetCommon()
+}
+
+// Encode writes an object into a stream.
+//
+// Encoding can be configured via the struct tag for the fields.
+// The key (in the struct tags) that we look at is configurable.
+//
+// By default, we look up the "codec" key in the struct field's tags,
+// and fall bak to the "json" key if "codec" is absent.
+// That key in struct field's tag value is the key name,
+// followed by an optional comma and options.
+//
+// To set an option on all fields (e.g. omitempty on all fields), you
+// can create a field called _struct, and set flags on it. The options
+// which can be set on _struct are:
+//    - omitempty: so all fields are omitted if empty
+//    - toarray: so struct is encoded as an array
+//    - int: so struct key names are encoded as signed integers (instead of strings)
+//    - uint: so struct key names are encoded as unsigned integers (instead of strings)
+//    - float: so struct key names are encoded as floats (instead of strings)
+// More details on these below.
+//
+// Struct values "usually" encode as maps. Each exported struct field is encoded unless:
+//    - the field's tag is "-", OR
+//    - the field is empty (empty or the zero value) and its tag specifies the "omitempty" option.
+//
+// When encoding as a map, the first string in the tag (before the comma)
+// is the map key string to use when encoding.
+// ...
+// This key is typically encoded as a string.
+// However, there are instances where the encoded stream has mapping keys encoded as numbers.
+// For example, some cbor streams have keys as integer codes in the stream, but they should map
+// to fields in a structured object. Consequently, a struct is the natural representation in code.
+// For these, configure the struct to encode/decode the keys as numbers (instead of string).
+// This is done with the int,uint or float option on the _struct field (see above).
+//
+// However, struct values may encode as arrays. This happens when:
+//    - StructToArray Encode option is set, OR
+//    - the tag on the _struct field sets the "toarray" option
+// Note that omitempty is ignored when encoding struct values as arrays,
+// as an entry must be encoded for each field, to maintain its position.
+//
+// Values with types that implement MapBySlice are encoded as stream maps.
+//
+// The empty values (for omitempty option) are false, 0, any nil pointer
+// or interface value, and any array, slice, map, or string of length zero.
+//
+// Anonymous fields are encoded inline except:
+//    - the struct tag specifies a replacement name (first value)
+//    - the field is of an interface type
+//
+// Examples:
+//
+//      // NOTE: 'json:' can be used as struct tag key, in place 'codec:' below.
+//      type MyStruct struct {
+//          _struct bool    `codec:",omitempty"`   //set omitempty for every field
+//          Field1 string   `codec:"-"`            //skip this field
+//          Field2 int      `codec:"myName"`       //Use key "myName" in encode stream
+//          Field3 int32    `codec:",omitempty"`   //use key "Field3". Omit if empty.
+//          Field4 bool     `codec:"f4,omitempty"` //use key "f4". Omit if empty.
+//          io.Reader                              //use key "Reader".
+//          MyStruct        `codec:"my1"           //use key "my1".
+//          MyStruct                               //inline it
+//          ...
+//      }
+//
+//      type MyStruct struct {
+//          _struct bool    `codec:",toarray"`     //encode struct as an array
+//      }
+//
+//      type MyStruct struct {
+//          _struct bool    `codec:",uint"`        //encode struct with "unsigned integer" keys
+//          Field1 string   `codec:"1"`            //encode Field1 key using: EncodeInt(1)
+//          Field2 string   `codec:"2"`            //encode Field2 key using: EncodeInt(2)
+//      }
+//
+// The mode of encoding is based on the type of the value. When a value is seen:
+//   - If a Selfer, call its CodecEncodeSelf method
+//   - If an extension is registered for it, call that extension function
+//   - If implements encoding.(Binary|Text|JSON)Marshaler, call Marshal(Binary|Text|JSON) method
+//   - Else encode it based on its reflect.Kind
+//
+// Note that struct field names and keys in map[string]XXX will be treated as symbols.
+// Some formats support symbols (e.g. binc) and will properly encode the string
+// only once in the stream, and use a tag to refer to it thereafter.
+func (e *Encoder) Encode(v interface{}) (err error) {
+	defer e.deferred(&err)
+	e.MustEncode(v)
+	return
+}
+
+// MustEncode is like Encode, but panics if unable to Encode.
+// This provides insight to the code location that triggered the error.
+func (e *Encoder) MustEncode(v interface{}) {
+	if e.err != nil {
+		panic(e.err)
+	}
+	e.encode(v)
+	e.e.atEndOfEncode()
+	e.w.atEndOfEncode()
+	e.alwaysAtEnd()
+}
+
+func (e *Encoder) deferred(err1 *error) {
+	e.alwaysAtEnd()
+	if recoverPanicToErr {
+		if x := recover(); x != nil {
+			panicValToErr(e, x, err1)
+			panicValToErr(e, x, &e.err)
+		}
+	}
+}
+
+// func (e *Encoder) alwaysAtEnd() {
+// 	e.codecFnPooler.alwaysAtEnd()
+// }
+
+func (e *Encoder) encode(iv interface{}) {
+	if iv == nil || definitelyNil(iv) {
+		e.e.EncodeNil()
+		return
+	}
+	if v, ok := iv.(Selfer); ok {
+		v.CodecEncodeSelf(e)
+		return
+	}
+
+	// a switch with only concrete types can be optimized.
+	// consequently, we deal with nil and interfaces outside.
+
+	switch v := iv.(type) {
+	case Raw:
+		e.rawBytes(v)
+	case reflect.Value:
+		e.encodeValue(v, nil, true)
+
+	case string:
+		e.e.EncodeString(cUTF8, v)
+	case bool:
+		e.e.EncodeBool(v)
+	case int:
+		e.e.EncodeInt(int64(v))
+	case int8:
+		e.e.EncodeInt(int64(v))
+	case int16:
+		e.e.EncodeInt(int64(v))
+	case int32:
+		e.e.EncodeInt(int64(v))
+	case int64:
+		e.e.EncodeInt(v)
+	case uint:
+		e.e.EncodeUint(uint64(v))
+	case uint8:
+		e.e.EncodeUint(uint64(v))
+	case uint16:
+		e.e.EncodeUint(uint64(v))
+	case uint32:
+		e.e.EncodeUint(uint64(v))
+	case uint64:
+		e.e.EncodeUint(v)
+	case uintptr:
+		e.e.EncodeUint(uint64(v))
+	case float32:
+		e.e.EncodeFloat32(v)
+	case float64:
+		e.e.EncodeFloat64(v)
+	case time.Time:
+		e.e.EncodeTime(v)
+	case []uint8:
+		e.e.EncodeStringBytes(cRAW, v)
+
+	case *Raw:
+		e.rawBytes(*v)
+
+	case *string:
+		e.e.EncodeString(cUTF8, *v)
+	case *bool:
+		e.e.EncodeBool(*v)
+	case *int:
+		e.e.EncodeInt(int64(*v))
+	case *int8:
+		e.e.EncodeInt(int64(*v))
+	case *int16:
+		e.e.EncodeInt(int64(*v))
+	case *int32:
+		e.e.EncodeInt(int64(*v))
+	case *int64:
+		e.e.EncodeInt(*v)
+	case *uint:
+		e.e.EncodeUint(uint64(*v))
+	case *uint8:
+		e.e.EncodeUint(uint64(*v))
+	case *uint16:
+		e.e.EncodeUint(uint64(*v))
+	case *uint32:
+		e.e.EncodeUint(uint64(*v))
+	case *uint64:
+		e.e.EncodeUint(*v)
+	case *uintptr:
+		e.e.EncodeUint(uint64(*v))
+	case *float32:
+		e.e.EncodeFloat32(*v)
+	case *float64:
+		e.e.EncodeFloat64(*v)
+	case *time.Time:
+		e.e.EncodeTime(*v)
+
+	case *[]uint8:
+		e.e.EncodeStringBytes(cRAW, *v)
+
+	default:
+		if !fastpathEncodeTypeSwitch(iv, e) {
+			// checkfastpath=true (not false), as underlying slice/map type may be fast-path
+			e.encodeValue(reflect.ValueOf(iv), nil, true)
+		}
+	}
+}
+
+func (e *Encoder) encodeValue(rv reflect.Value, fn *codecFn, checkFastpath bool) {
+	// if a valid fn is passed, it MUST BE for the dereferenced type of rv
+	var sptr uintptr
+	var rvp reflect.Value
+	var rvpValid bool
+TOP:
+	switch rv.Kind() {
+	case reflect.Ptr:
+		if rv.IsNil() {
+			e.e.EncodeNil()
+			return
+		}
+		rvpValid = true
+		rvp = rv
+		rv = rv.Elem()
+		if e.h.CheckCircularRef && rv.Kind() == reflect.Struct {
+			// TODO: Movable pointers will be an issue here. Future problem.
+			sptr = rv.UnsafeAddr()
+			break TOP
+		}
+		goto TOP
+	case reflect.Interface:
+		if rv.IsNil() {
+			e.e.EncodeNil()
+			return
+		}
+		rv = rv.Elem()
+		goto TOP
+	case reflect.Slice, reflect.Map:
+		if rv.IsNil() {
+			e.e.EncodeNil()
+			return
+		}
+	case reflect.Invalid, reflect.Func:
+		e.e.EncodeNil()
+		return
+	}
+
+	if sptr != 0 && (&e.ci).add(sptr) {
+		e.errorf("circular reference found: # %d", sptr)
+	}
+
+	if fn == nil {
+		rt := rv.Type()
+		// always pass checkCodecSelfer=true, in case T or ****T is passed, where *T is a Selfer
+		fn = e.cfer().get(rt, checkFastpath, true)
+	}
+	if fn.i.addrE {
+		if rvpValid {
+			fn.fe(e, &fn.i, rvp)
+		} else if rv.CanAddr() {
+			fn.fe(e, &fn.i, rv.Addr())
+		} else {
+			rv2 := reflect.New(rv.Type())
+			rv2.Elem().Set(rv)
+			fn.fe(e, &fn.i, rv2)
+		}
+	} else {
+		fn.fe(e, &fn.i, rv)
+	}
+	if sptr != 0 {
+		(&e.ci).remove(sptr)
+	}
+}
+
+func (e *Encoder) marshal(bs []byte, fnerr error, asis bool, c charEncoding) {
+	if fnerr != nil {
+		panic(fnerr)
+	}
+	if bs == nil {
+		e.e.EncodeNil()
+	} else if asis {
+		e.asis(bs)
+	} else {
+		e.e.EncodeStringBytes(c, bs)
+	}
+}
+
+func (e *Encoder) asis(v []byte) {
+	if e.isas {
+		e.as.EncodeAsis(v)
+	} else {
+		e.w.writeb(v)
+	}
+}
+
+func (e *Encoder) rawBytes(vv Raw) {
+	v := []byte(vv)
+	if !e.h.Raw {
+		e.errorf("Raw values cannot be encoded: %v", v)
+	}
+	e.asis(v)
+}
+
+func (e *Encoder) wrapErrstr(v interface{}, err *error) {
+	*err = fmt.Errorf("%s encode error: %v", e.hh.Name(), v)
+}
diff --git a/vendor/github.com/ugorji/go/codec/fast-path.generated.go b/vendor/github.com/ugorji/go/codec/fast-path.generated.go
new file mode 100644
index 0000000000..87f2562f65
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/fast-path.generated.go
@@ -0,0 +1,34522 @@
+// +build !notfastpath
+
+// Copyright (c) 2012-2015 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// Code generated from fast-path.go.tmpl - DO NOT EDIT.
+
+package codec
+
+// Fast path functions try to create a fast path encode or decode implementation
+// for common maps and slices.
+//
+// We define the functions and register then in this single file
+// so as not to pollute the encode.go and decode.go, and create a dependency in there.
+// This file can be omitted without causing a build failure.
+//
+// The advantage of fast paths is:
+//	  - Many calls bypass reflection altogether
+//
+// Currently support
+//	  - slice of all builtin types,
+//	  - map of all builtin types to string or interface value
+//	  - symmetrical maps of all builtin types (e.g. str-str, uint8-uint8)
+// This should provide adequate "typical" implementations.
+//
+// Note that fast track decode functions must handle values for which an address cannot be obtained.
+// For example:
+//	 m2 := map[string]int{}
+//	 p2 := []interface{}{m2}
+//	 // decoding into p2 will bomb if fast track functions do not treat like unaddressable.
+//
+
+import (
+	"reflect"
+	"sort"
+)
+
+const fastpathEnabled = true
+
+type fastpathT struct{}
+
+var fastpathTV fastpathT
+
+type fastpathE struct {
+	rtid  uintptr
+	rt    reflect.Type
+	encfn func(*Encoder, *codecFnInfo, reflect.Value)
+	decfn func(*Decoder, *codecFnInfo, reflect.Value)
+}
+
+type fastpathA [271]fastpathE
+
+func (x *fastpathA) index(rtid uintptr) int {
+	// use binary search to grab the index (adapted from sort/search.go)
+	h, i, j := 0, 0, 271 // len(x)
+	for i < j {
+		h = i + (j-i)/2
+		if x[h].rtid < rtid {
+			i = h + 1
+		} else {
+			j = h
+		}
+	}
+	if i < 271 && x[i].rtid == rtid {
+		return i
+	}
+	return -1
+}
+
+type fastpathAslice []fastpathE
+
+func (x fastpathAslice) Len() int           { return len(x) }
+func (x fastpathAslice) Less(i, j int) bool { return x[i].rtid < x[j].rtid }
+func (x fastpathAslice) Swap(i, j int)      { x[i], x[j] = x[j], x[i] }
+
+var fastpathAV fastpathA
+
+// due to possible initialization loop error, make fastpath in an init()
+func init() {
+	i := 0
+	fn := func(v interface{},
+		fe func(*Encoder, *codecFnInfo, reflect.Value),
+		fd func(*Decoder, *codecFnInfo, reflect.Value)) (f fastpathE) {
+		xrt := reflect.TypeOf(v)
+		xptr := rt2id(xrt)
+		fastpathAV[i] = fastpathE{xptr, xrt, fe, fd}
+		i++
+		return
+	}
+
+	fn([]interface{}(nil), (*Encoder).fastpathEncSliceIntfR, (*Decoder).fastpathDecSliceIntfR)
+	fn([]string(nil), (*Encoder).fastpathEncSliceStringR, (*Decoder).fastpathDecSliceStringR)
+	fn([]float32(nil), (*Encoder).fastpathEncSliceFloat32R, (*Decoder).fastpathDecSliceFloat32R)
+	fn([]float64(nil), (*Encoder).fastpathEncSliceFloat64R, (*Decoder).fastpathDecSliceFloat64R)
+	fn([]uint(nil), (*Encoder).fastpathEncSliceUintR, (*Decoder).fastpathDecSliceUintR)
+	fn([]uint16(nil), (*Encoder).fastpathEncSliceUint16R, (*Decoder).fastpathDecSliceUint16R)
+	fn([]uint32(nil), (*Encoder).fastpathEncSliceUint32R, (*Decoder).fastpathDecSliceUint32R)
+	fn([]uint64(nil), (*Encoder).fastpathEncSliceUint64R, (*Decoder).fastpathDecSliceUint64R)
+	fn([]uintptr(nil), (*Encoder).fastpathEncSliceUintptrR, (*Decoder).fastpathDecSliceUintptrR)
+	fn([]int(nil), (*Encoder).fastpathEncSliceIntR, (*Decoder).fastpathDecSliceIntR)
+	fn([]int8(nil), (*Encoder).fastpathEncSliceInt8R, (*Decoder).fastpathDecSliceInt8R)
+	fn([]int16(nil), (*Encoder).fastpathEncSliceInt16R, (*Decoder).fastpathDecSliceInt16R)
+	fn([]int32(nil), (*Encoder).fastpathEncSliceInt32R, (*Decoder).fastpathDecSliceInt32R)
+	fn([]int64(nil), (*Encoder).fastpathEncSliceInt64R, (*Decoder).fastpathDecSliceInt64R)
+	fn([]bool(nil), (*Encoder).fastpathEncSliceBoolR, (*Decoder).fastpathDecSliceBoolR)
+
+	fn(map[interface{}]interface{}(nil), (*Encoder).fastpathEncMapIntfIntfR, (*Decoder).fastpathDecMapIntfIntfR)
+	fn(map[interface{}]string(nil), (*Encoder).fastpathEncMapIntfStringR, (*Decoder).fastpathDecMapIntfStringR)
+	fn(map[interface{}]uint(nil), (*Encoder).fastpathEncMapIntfUintR, (*Decoder).fastpathDecMapIntfUintR)
+	fn(map[interface{}]uint8(nil), (*Encoder).fastpathEncMapIntfUint8R, (*Decoder).fastpathDecMapIntfUint8R)
+	fn(map[interface{}]uint16(nil), (*Encoder).fastpathEncMapIntfUint16R, (*Decoder).fastpathDecMapIntfUint16R)
+	fn(map[interface{}]uint32(nil), (*Encoder).fastpathEncMapIntfUint32R, (*Decoder).fastpathDecMapIntfUint32R)
+	fn(map[interface{}]uint64(nil), (*Encoder).fastpathEncMapIntfUint64R, (*Decoder).fastpathDecMapIntfUint64R)
+	fn(map[interface{}]uintptr(nil), (*Encoder).fastpathEncMapIntfUintptrR, (*Decoder).fastpathDecMapIntfUintptrR)
+	fn(map[interface{}]int(nil), (*Encoder).fastpathEncMapIntfIntR, (*Decoder).fastpathDecMapIntfIntR)
+	fn(map[interface{}]int8(nil), (*Encoder).fastpathEncMapIntfInt8R, (*Decoder).fastpathDecMapIntfInt8R)
+	fn(map[interface{}]int16(nil), (*Encoder).fastpathEncMapIntfInt16R, (*Decoder).fastpathDecMapIntfInt16R)
+	fn(map[interface{}]int32(nil), (*Encoder).fastpathEncMapIntfInt32R, (*Decoder).fastpathDecMapIntfInt32R)
+	fn(map[interface{}]int64(nil), (*Encoder).fastpathEncMapIntfInt64R, (*Decoder).fastpathDecMapIntfInt64R)
+	fn(map[interface{}]float32(nil), (*Encoder).fastpathEncMapIntfFloat32R, (*Decoder).fastpathDecMapIntfFloat32R)
+	fn(map[interface{}]float64(nil), (*Encoder).fastpathEncMapIntfFloat64R, (*Decoder).fastpathDecMapIntfFloat64R)
+	fn(map[interface{}]bool(nil), (*Encoder).fastpathEncMapIntfBoolR, (*Decoder).fastpathDecMapIntfBoolR)
+	fn(map[string]interface{}(nil), (*Encoder).fastpathEncMapStringIntfR, (*Decoder).fastpathDecMapStringIntfR)
+	fn(map[string]string(nil), (*Encoder).fastpathEncMapStringStringR, (*Decoder).fastpathDecMapStringStringR)
+	fn(map[string]uint(nil), (*Encoder).fastpathEncMapStringUintR, (*Decoder).fastpathDecMapStringUintR)
+	fn(map[string]uint8(nil), (*Encoder).fastpathEncMapStringUint8R, (*Decoder).fastpathDecMapStringUint8R)
+	fn(map[string]uint16(nil), (*Encoder).fastpathEncMapStringUint16R, (*Decoder).fastpathDecMapStringUint16R)
+	fn(map[string]uint32(nil), (*Encoder).fastpathEncMapStringUint32R, (*Decoder).fastpathDecMapStringUint32R)
+	fn(map[string]uint64(nil), (*Encoder).fastpathEncMapStringUint64R, (*Decoder).fastpathDecMapStringUint64R)
+	fn(map[string]uintptr(nil), (*Encoder).fastpathEncMapStringUintptrR, (*Decoder).fastpathDecMapStringUintptrR)
+	fn(map[string]int(nil), (*Encoder).fastpathEncMapStringIntR, (*Decoder).fastpathDecMapStringIntR)
+	fn(map[string]int8(nil), (*Encoder).fastpathEncMapStringInt8R, (*Decoder).fastpathDecMapStringInt8R)
+	fn(map[string]int16(nil), (*Encoder).fastpathEncMapStringInt16R, (*Decoder).fastpathDecMapStringInt16R)
+	fn(map[string]int32(nil), (*Encoder).fastpathEncMapStringInt32R, (*Decoder).fastpathDecMapStringInt32R)
+	fn(map[string]int64(nil), (*Encoder).fastpathEncMapStringInt64R, (*Decoder).fastpathDecMapStringInt64R)
+	fn(map[string]float32(nil), (*Encoder).fastpathEncMapStringFloat32R, (*Decoder).fastpathDecMapStringFloat32R)
+	fn(map[string]float64(nil), (*Encoder).fastpathEncMapStringFloat64R, (*Decoder).fastpathDecMapStringFloat64R)
+	fn(map[string]bool(nil), (*Encoder).fastpathEncMapStringBoolR, (*Decoder).fastpathDecMapStringBoolR)
+	fn(map[float32]interface{}(nil), (*Encoder).fastpathEncMapFloat32IntfR, (*Decoder).fastpathDecMapFloat32IntfR)
+	fn(map[float32]string(nil), (*Encoder).fastpathEncMapFloat32StringR, (*Decoder).fastpathDecMapFloat32StringR)
+	fn(map[float32]uint(nil), (*Encoder).fastpathEncMapFloat32UintR, (*Decoder).fastpathDecMapFloat32UintR)
+	fn(map[float32]uint8(nil), (*Encoder).fastpathEncMapFloat32Uint8R, (*Decoder).fastpathDecMapFloat32Uint8R)
+	fn(map[float32]uint16(nil), (*Encoder).fastpathEncMapFloat32Uint16R, (*Decoder).fastpathDecMapFloat32Uint16R)
+	fn(map[float32]uint32(nil), (*Encoder).fastpathEncMapFloat32Uint32R, (*Decoder).fastpathDecMapFloat32Uint32R)
+	fn(map[float32]uint64(nil), (*Encoder).fastpathEncMapFloat32Uint64R, (*Decoder).fastpathDecMapFloat32Uint64R)
+	fn(map[float32]uintptr(nil), (*Encoder).fastpathEncMapFloat32UintptrR, (*Decoder).fastpathDecMapFloat32UintptrR)
+	fn(map[float32]int(nil), (*Encoder).fastpathEncMapFloat32IntR, (*Decoder).fastpathDecMapFloat32IntR)
+	fn(map[float32]int8(nil), (*Encoder).fastpathEncMapFloat32Int8R, (*Decoder).fastpathDecMapFloat32Int8R)
+	fn(map[float32]int16(nil), (*Encoder).fastpathEncMapFloat32Int16R, (*Decoder).fastpathDecMapFloat32Int16R)
+	fn(map[float32]int32(nil), (*Encoder).fastpathEncMapFloat32Int32R, (*Decoder).fastpathDecMapFloat32Int32R)
+	fn(map[float32]int64(nil), (*Encoder).fastpathEncMapFloat32Int64R, (*Decoder).fastpathDecMapFloat32Int64R)
+	fn(map[float32]float32(nil), (*Encoder).fastpathEncMapFloat32Float32R, (*Decoder).fastpathDecMapFloat32Float32R)
+	fn(map[float32]float64(nil), (*Encoder).fastpathEncMapFloat32Float64R, (*Decoder).fastpathDecMapFloat32Float64R)
+	fn(map[float32]bool(nil), (*Encoder).fastpathEncMapFloat32BoolR, (*Decoder).fastpathDecMapFloat32BoolR)
+	fn(map[float64]interface{}(nil), (*Encoder).fastpathEncMapFloat64IntfR, (*Decoder).fastpathDecMapFloat64IntfR)
+	fn(map[float64]string(nil), (*Encoder).fastpathEncMapFloat64StringR, (*Decoder).fastpathDecMapFloat64StringR)
+	fn(map[float64]uint(nil), (*Encoder).fastpathEncMapFloat64UintR, (*Decoder).fastpathDecMapFloat64UintR)
+	fn(map[float64]uint8(nil), (*Encoder).fastpathEncMapFloat64Uint8R, (*Decoder).fastpathDecMapFloat64Uint8R)
+	fn(map[float64]uint16(nil), (*Encoder).fastpathEncMapFloat64Uint16R, (*Decoder).fastpathDecMapFloat64Uint16R)
+	fn(map[float64]uint32(nil), (*Encoder).fastpathEncMapFloat64Uint32R, (*Decoder).fastpathDecMapFloat64Uint32R)
+	fn(map[float64]uint64(nil), (*Encoder).fastpathEncMapFloat64Uint64R, (*Decoder).fastpathDecMapFloat64Uint64R)
+	fn(map[float64]uintptr(nil), (*Encoder).fastpathEncMapFloat64UintptrR, (*Decoder).fastpathDecMapFloat64UintptrR)
+	fn(map[float64]int(nil), (*Encoder).fastpathEncMapFloat64IntR, (*Decoder).fastpathDecMapFloat64IntR)
+	fn(map[float64]int8(nil), (*Encoder).fastpathEncMapFloat64Int8R, (*Decoder).fastpathDecMapFloat64Int8R)
+	fn(map[float64]int16(nil), (*Encoder).fastpathEncMapFloat64Int16R, (*Decoder).fastpathDecMapFloat64Int16R)
+	fn(map[float64]int32(nil), (*Encoder).fastpathEncMapFloat64Int32R, (*Decoder).fastpathDecMapFloat64Int32R)
+	fn(map[float64]int64(nil), (*Encoder).fastpathEncMapFloat64Int64R, (*Decoder).fastpathDecMapFloat64Int64R)
+	fn(map[float64]float32(nil), (*Encoder).fastpathEncMapFloat64Float32R, (*Decoder).fastpathDecMapFloat64Float32R)
+	fn(map[float64]float64(nil), (*Encoder).fastpathEncMapFloat64Float64R, (*Decoder).fastpathDecMapFloat64Float64R)
+	fn(map[float64]bool(nil), (*Encoder).fastpathEncMapFloat64BoolR, (*Decoder).fastpathDecMapFloat64BoolR)
+	fn(map[uint]interface{}(nil), (*Encoder).fastpathEncMapUintIntfR, (*Decoder).fastpathDecMapUintIntfR)
+	fn(map[uint]string(nil), (*Encoder).fastpathEncMapUintStringR, (*Decoder).fastpathDecMapUintStringR)
+	fn(map[uint]uint(nil), (*Encoder).fastpathEncMapUintUintR, (*Decoder).fastpathDecMapUintUintR)
+	fn(map[uint]uint8(nil), (*Encoder).fastpathEncMapUintUint8R, (*Decoder).fastpathDecMapUintUint8R)
+	fn(map[uint]uint16(nil), (*Encoder).fastpathEncMapUintUint16R, (*Decoder).fastpathDecMapUintUint16R)
+	fn(map[uint]uint32(nil), (*Encoder).fastpathEncMapUintUint32R, (*Decoder).fastpathDecMapUintUint32R)
+	fn(map[uint]uint64(nil), (*Encoder).fastpathEncMapUintUint64R, (*Decoder).fastpathDecMapUintUint64R)
+	fn(map[uint]uintptr(nil), (*Encoder).fastpathEncMapUintUintptrR, (*Decoder).fastpathDecMapUintUintptrR)
+	fn(map[uint]int(nil), (*Encoder).fastpathEncMapUintIntR, (*Decoder).fastpathDecMapUintIntR)
+	fn(map[uint]int8(nil), (*Encoder).fastpathEncMapUintInt8R, (*Decoder).fastpathDecMapUintInt8R)
+	fn(map[uint]int16(nil), (*Encoder).fastpathEncMapUintInt16R, (*Decoder).fastpathDecMapUintInt16R)
+	fn(map[uint]int32(nil), (*Encoder).fastpathEncMapUintInt32R, (*Decoder).fastpathDecMapUintInt32R)
+	fn(map[uint]int64(nil), (*Encoder).fastpathEncMapUintInt64R, (*Decoder).fastpathDecMapUintInt64R)
+	fn(map[uint]float32(nil), (*Encoder).fastpathEncMapUintFloat32R, (*Decoder).fastpathDecMapUintFloat32R)
+	fn(map[uint]float64(nil), (*Encoder).fastpathEncMapUintFloat64R, (*Decoder).fastpathDecMapUintFloat64R)
+	fn(map[uint]bool(nil), (*Encoder).fastpathEncMapUintBoolR, (*Decoder).fastpathDecMapUintBoolR)
+	fn(map[uint8]interface{}(nil), (*Encoder).fastpathEncMapUint8IntfR, (*Decoder).fastpathDecMapUint8IntfR)
+	fn(map[uint8]string(nil), (*Encoder).fastpathEncMapUint8StringR, (*Decoder).fastpathDecMapUint8StringR)
+	fn(map[uint8]uint(nil), (*Encoder).fastpathEncMapUint8UintR, (*Decoder).fastpathDecMapUint8UintR)
+	fn(map[uint8]uint8(nil), (*Encoder).fastpathEncMapUint8Uint8R, (*Decoder).fastpathDecMapUint8Uint8R)
+	fn(map[uint8]uint16(nil), (*Encoder).fastpathEncMapUint8Uint16R, (*Decoder).fastpathDecMapUint8Uint16R)
+	fn(map[uint8]uint32(nil), (*Encoder).fastpathEncMapUint8Uint32R, (*Decoder).fastpathDecMapUint8Uint32R)
+	fn(map[uint8]uint64(nil), (*Encoder).fastpathEncMapUint8Uint64R, (*Decoder).fastpathDecMapUint8Uint64R)
+	fn(map[uint8]uintptr(nil), (*Encoder).fastpathEncMapUint8UintptrR, (*Decoder).fastpathDecMapUint8UintptrR)
+	fn(map[uint8]int(nil), (*Encoder).fastpathEncMapUint8IntR, (*Decoder).fastpathDecMapUint8IntR)
+	fn(map[uint8]int8(nil), (*Encoder).fastpathEncMapUint8Int8R, (*Decoder).fastpathDecMapUint8Int8R)
+	fn(map[uint8]int16(nil), (*Encoder).fastpathEncMapUint8Int16R, (*Decoder).fastpathDecMapUint8Int16R)
+	fn(map[uint8]int32(nil), (*Encoder).fastpathEncMapUint8Int32R, (*Decoder).fastpathDecMapUint8Int32R)
+	fn(map[uint8]int64(nil), (*Encoder).fastpathEncMapUint8Int64R, (*Decoder).fastpathDecMapUint8Int64R)
+	fn(map[uint8]float32(nil), (*Encoder).fastpathEncMapUint8Float32R, (*Decoder).fastpathDecMapUint8Float32R)
+	fn(map[uint8]float64(nil), (*Encoder).fastpathEncMapUint8Float64R, (*Decoder).fastpathDecMapUint8Float64R)
+	fn(map[uint8]bool(nil), (*Encoder).fastpathEncMapUint8BoolR, (*Decoder).fastpathDecMapUint8BoolR)
+	fn(map[uint16]interface{}(nil), (*Encoder).fastpathEncMapUint16IntfR, (*Decoder).fastpathDecMapUint16IntfR)
+	fn(map[uint16]string(nil), (*Encoder).fastpathEncMapUint16StringR, (*Decoder).fastpathDecMapUint16StringR)
+	fn(map[uint16]uint(nil), (*Encoder).fastpathEncMapUint16UintR, (*Decoder).fastpathDecMapUint16UintR)
+	fn(map[uint16]uint8(nil), (*Encoder).fastpathEncMapUint16Uint8R, (*Decoder).fastpathDecMapUint16Uint8R)
+	fn(map[uint16]uint16(nil), (*Encoder).fastpathEncMapUint16Uint16R, (*Decoder).fastpathDecMapUint16Uint16R)
+	fn(map[uint16]uint32(nil), (*Encoder).fastpathEncMapUint16Uint32R, (*Decoder).fastpathDecMapUint16Uint32R)
+	fn(map[uint16]uint64(nil), (*Encoder).fastpathEncMapUint16Uint64R, (*Decoder).fastpathDecMapUint16Uint64R)
+	fn(map[uint16]uintptr(nil), (*Encoder).fastpathEncMapUint16UintptrR, (*Decoder).fastpathDecMapUint16UintptrR)
+	fn(map[uint16]int(nil), (*Encoder).fastpathEncMapUint16IntR, (*Decoder).fastpathDecMapUint16IntR)
+	fn(map[uint16]int8(nil), (*Encoder).fastpathEncMapUint16Int8R, (*Decoder).fastpathDecMapUint16Int8R)
+	fn(map[uint16]int16(nil), (*Encoder).fastpathEncMapUint16Int16R, (*Decoder).fastpathDecMapUint16Int16R)
+	fn(map[uint16]int32(nil), (*Encoder).fastpathEncMapUint16Int32R, (*Decoder).fastpathDecMapUint16Int32R)
+	fn(map[uint16]int64(nil), (*Encoder).fastpathEncMapUint16Int64R, (*Decoder).fastpathDecMapUint16Int64R)
+	fn(map[uint16]float32(nil), (*Encoder).fastpathEncMapUint16Float32R, (*Decoder).fastpathDecMapUint16Float32R)
+	fn(map[uint16]float64(nil), (*Encoder).fastpathEncMapUint16Float64R, (*Decoder).fastpathDecMapUint16Float64R)
+	fn(map[uint16]bool(nil), (*Encoder).fastpathEncMapUint16BoolR, (*Decoder).fastpathDecMapUint16BoolR)
+	fn(map[uint32]interface{}(nil), (*Encoder).fastpathEncMapUint32IntfR, (*Decoder).fastpathDecMapUint32IntfR)
+	fn(map[uint32]string(nil), (*Encoder).fastpathEncMapUint32StringR, (*Decoder).fastpathDecMapUint32StringR)
+	fn(map[uint32]uint(nil), (*Encoder).fastpathEncMapUint32UintR, (*Decoder).fastpathDecMapUint32UintR)
+	fn(map[uint32]uint8(nil), (*Encoder).fastpathEncMapUint32Uint8R, (*Decoder).fastpathDecMapUint32Uint8R)
+	fn(map[uint32]uint16(nil), (*Encoder).fastpathEncMapUint32Uint16R, (*Decoder).fastpathDecMapUint32Uint16R)
+	fn(map[uint32]uint32(nil), (*Encoder).fastpathEncMapUint32Uint32R, (*Decoder).fastpathDecMapUint32Uint32R)
+	fn(map[uint32]uint64(nil), (*Encoder).fastpathEncMapUint32Uint64R, (*Decoder).fastpathDecMapUint32Uint64R)
+	fn(map[uint32]uintptr(nil), (*Encoder).fastpathEncMapUint32UintptrR, (*Decoder).fastpathDecMapUint32UintptrR)
+	fn(map[uint32]int(nil), (*Encoder).fastpathEncMapUint32IntR, (*Decoder).fastpathDecMapUint32IntR)
+	fn(map[uint32]int8(nil), (*Encoder).fastpathEncMapUint32Int8R, (*Decoder).fastpathDecMapUint32Int8R)
+	fn(map[uint32]int16(nil), (*Encoder).fastpathEncMapUint32Int16R, (*Decoder).fastpathDecMapUint32Int16R)
+	fn(map[uint32]int32(nil), (*Encoder).fastpathEncMapUint32Int32R, (*Decoder).fastpathDecMapUint32Int32R)
+	fn(map[uint32]int64(nil), (*Encoder).fastpathEncMapUint32Int64R, (*Decoder).fastpathDecMapUint32Int64R)
+	fn(map[uint32]float32(nil), (*Encoder).fastpathEncMapUint32Float32R, (*Decoder).fastpathDecMapUint32Float32R)
+	fn(map[uint32]float64(nil), (*Encoder).fastpathEncMapUint32Float64R, (*Decoder).fastpathDecMapUint32Float64R)
+	fn(map[uint32]bool(nil), (*Encoder).fastpathEncMapUint32BoolR, (*Decoder).fastpathDecMapUint32BoolR)
+	fn(map[uint64]interface{}(nil), (*Encoder).fastpathEncMapUint64IntfR, (*Decoder).fastpathDecMapUint64IntfR)
+	fn(map[uint64]string(nil), (*Encoder).fastpathEncMapUint64StringR, (*Decoder).fastpathDecMapUint64StringR)
+	fn(map[uint64]uint(nil), (*Encoder).fastpathEncMapUint64UintR, (*Decoder).fastpathDecMapUint64UintR)
+	fn(map[uint64]uint8(nil), (*Encoder).fastpathEncMapUint64Uint8R, (*Decoder).fastpathDecMapUint64Uint8R)
+	fn(map[uint64]uint16(nil), (*Encoder).fastpathEncMapUint64Uint16R, (*Decoder).fastpathDecMapUint64Uint16R)
+	fn(map[uint64]uint32(nil), (*Encoder).fastpathEncMapUint64Uint32R, (*Decoder).fastpathDecMapUint64Uint32R)
+	fn(map[uint64]uint64(nil), (*Encoder).fastpathEncMapUint64Uint64R, (*Decoder).fastpathDecMapUint64Uint64R)
+	fn(map[uint64]uintptr(nil), (*Encoder).fastpathEncMapUint64UintptrR, (*Decoder).fastpathDecMapUint64UintptrR)
+	fn(map[uint64]int(nil), (*Encoder).fastpathEncMapUint64IntR, (*Decoder).fastpathDecMapUint64IntR)
+	fn(map[uint64]int8(nil), (*Encoder).fastpathEncMapUint64Int8R, (*Decoder).fastpathDecMapUint64Int8R)
+	fn(map[uint64]int16(nil), (*Encoder).fastpathEncMapUint64Int16R, (*Decoder).fastpathDecMapUint64Int16R)
+	fn(map[uint64]int32(nil), (*Encoder).fastpathEncMapUint64Int32R, (*Decoder).fastpathDecMapUint64Int32R)
+	fn(map[uint64]int64(nil), (*Encoder).fastpathEncMapUint64Int64R, (*Decoder).fastpathDecMapUint64Int64R)
+	fn(map[uint64]float32(nil), (*Encoder).fastpathEncMapUint64Float32R, (*Decoder).fastpathDecMapUint64Float32R)
+	fn(map[uint64]float64(nil), (*Encoder).fastpathEncMapUint64Float64R, (*Decoder).fastpathDecMapUint64Float64R)
+	fn(map[uint64]bool(nil), (*Encoder).fastpathEncMapUint64BoolR, (*Decoder).fastpathDecMapUint64BoolR)
+	fn(map[uintptr]interface{}(nil), (*Encoder).fastpathEncMapUintptrIntfR, (*Decoder).fastpathDecMapUintptrIntfR)
+	fn(map[uintptr]string(nil), (*Encoder).fastpathEncMapUintptrStringR, (*Decoder).fastpathDecMapUintptrStringR)
+	fn(map[uintptr]uint(nil), (*Encoder).fastpathEncMapUintptrUintR, (*Decoder).fastpathDecMapUintptrUintR)
+	fn(map[uintptr]uint8(nil), (*Encoder).fastpathEncMapUintptrUint8R, (*Decoder).fastpathDecMapUintptrUint8R)
+	fn(map[uintptr]uint16(nil), (*Encoder).fastpathEncMapUintptrUint16R, (*Decoder).fastpathDecMapUintptrUint16R)
+	fn(map[uintptr]uint32(nil), (*Encoder).fastpathEncMapUintptrUint32R, (*Decoder).fastpathDecMapUintptrUint32R)
+	fn(map[uintptr]uint64(nil), (*Encoder).fastpathEncMapUintptrUint64R, (*Decoder).fastpathDecMapUintptrUint64R)
+	fn(map[uintptr]uintptr(nil), (*Encoder).fastpathEncMapUintptrUintptrR, (*Decoder).fastpathDecMapUintptrUintptrR)
+	fn(map[uintptr]int(nil), (*Encoder).fastpathEncMapUintptrIntR, (*Decoder).fastpathDecMapUintptrIntR)
+	fn(map[uintptr]int8(nil), (*Encoder).fastpathEncMapUintptrInt8R, (*Decoder).fastpathDecMapUintptrInt8R)
+	fn(map[uintptr]int16(nil), (*Encoder).fastpathEncMapUintptrInt16R, (*Decoder).fastpathDecMapUintptrInt16R)
+	fn(map[uintptr]int32(nil), (*Encoder).fastpathEncMapUintptrInt32R, (*Decoder).fastpathDecMapUintptrInt32R)
+	fn(map[uintptr]int64(nil), (*Encoder).fastpathEncMapUintptrInt64R, (*Decoder).fastpathDecMapUintptrInt64R)
+	fn(map[uintptr]float32(nil), (*Encoder).fastpathEncMapUintptrFloat32R, (*Decoder).fastpathDecMapUintptrFloat32R)
+	fn(map[uintptr]float64(nil), (*Encoder).fastpathEncMapUintptrFloat64R, (*Decoder).fastpathDecMapUintptrFloat64R)
+	fn(map[uintptr]bool(nil), (*Encoder).fastpathEncMapUintptrBoolR, (*Decoder).fastpathDecMapUintptrBoolR)
+	fn(map[int]interface{}(nil), (*Encoder).fastpathEncMapIntIntfR, (*Decoder).fastpathDecMapIntIntfR)
+	fn(map[int]string(nil), (*Encoder).fastpathEncMapIntStringR, (*Decoder).fastpathDecMapIntStringR)
+	fn(map[int]uint(nil), (*Encoder).fastpathEncMapIntUintR, (*Decoder).fastpathDecMapIntUintR)
+	fn(map[int]uint8(nil), (*Encoder).fastpathEncMapIntUint8R, (*Decoder).fastpathDecMapIntUint8R)
+	fn(map[int]uint16(nil), (*Encoder).fastpathEncMapIntUint16R, (*Decoder).fastpathDecMapIntUint16R)
+	fn(map[int]uint32(nil), (*Encoder).fastpathEncMapIntUint32R, (*Decoder).fastpathDecMapIntUint32R)
+	fn(map[int]uint64(nil), (*Encoder).fastpathEncMapIntUint64R, (*Decoder).fastpathDecMapIntUint64R)
+	fn(map[int]uintptr(nil), (*Encoder).fastpathEncMapIntUintptrR, (*Decoder).fastpathDecMapIntUintptrR)
+	fn(map[int]int(nil), (*Encoder).fastpathEncMapIntIntR, (*Decoder).fastpathDecMapIntIntR)
+	fn(map[int]int8(nil), (*Encoder).fastpathEncMapIntInt8R, (*Decoder).fastpathDecMapIntInt8R)
+	fn(map[int]int16(nil), (*Encoder).fastpathEncMapIntInt16R, (*Decoder).fastpathDecMapIntInt16R)
+	fn(map[int]int32(nil), (*Encoder).fastpathEncMapIntInt32R, (*Decoder).fastpathDecMapIntInt32R)
+	fn(map[int]int64(nil), (*Encoder).fastpathEncMapIntInt64R, (*Decoder).fastpathDecMapIntInt64R)
+	fn(map[int]float32(nil), (*Encoder).fastpathEncMapIntFloat32R, (*Decoder).fastpathDecMapIntFloat32R)
+	fn(map[int]float64(nil), (*Encoder).fastpathEncMapIntFloat64R, (*Decoder).fastpathDecMapIntFloat64R)
+	fn(map[int]bool(nil), (*Encoder).fastpathEncMapIntBoolR, (*Decoder).fastpathDecMapIntBoolR)
+	fn(map[int8]interface{}(nil), (*Encoder).fastpathEncMapInt8IntfR, (*Decoder).fastpathDecMapInt8IntfR)
+	fn(map[int8]string(nil), (*Encoder).fastpathEncMapInt8StringR, (*Decoder).fastpathDecMapInt8StringR)
+	fn(map[int8]uint(nil), (*Encoder).fastpathEncMapInt8UintR, (*Decoder).fastpathDecMapInt8UintR)
+	fn(map[int8]uint8(nil), (*Encoder).fastpathEncMapInt8Uint8R, (*Decoder).fastpathDecMapInt8Uint8R)
+	fn(map[int8]uint16(nil), (*Encoder).fastpathEncMapInt8Uint16R, (*Decoder).fastpathDecMapInt8Uint16R)
+	fn(map[int8]uint32(nil), (*Encoder).fastpathEncMapInt8Uint32R, (*Decoder).fastpathDecMapInt8Uint32R)
+	fn(map[int8]uint64(nil), (*Encoder).fastpathEncMapInt8Uint64R, (*Decoder).fastpathDecMapInt8Uint64R)
+	fn(map[int8]uintptr(nil), (*Encoder).fastpathEncMapInt8UintptrR, (*Decoder).fastpathDecMapInt8UintptrR)
+	fn(map[int8]int(nil), (*Encoder).fastpathEncMapInt8IntR, (*Decoder).fastpathDecMapInt8IntR)
+	fn(map[int8]int8(nil), (*Encoder).fastpathEncMapInt8Int8R, (*Decoder).fastpathDecMapInt8Int8R)
+	fn(map[int8]int16(nil), (*Encoder).fastpathEncMapInt8Int16R, (*Decoder).fastpathDecMapInt8Int16R)
+	fn(map[int8]int32(nil), (*Encoder).fastpathEncMapInt8Int32R, (*Decoder).fastpathDecMapInt8Int32R)
+	fn(map[int8]int64(nil), (*Encoder).fastpathEncMapInt8Int64R, (*Decoder).fastpathDecMapInt8Int64R)
+	fn(map[int8]float32(nil), (*Encoder).fastpathEncMapInt8Float32R, (*Decoder).fastpathDecMapInt8Float32R)
+	fn(map[int8]float64(nil), (*Encoder).fastpathEncMapInt8Float64R, (*Decoder).fastpathDecMapInt8Float64R)
+	fn(map[int8]bool(nil), (*Encoder).fastpathEncMapInt8BoolR, (*Decoder).fastpathDecMapInt8BoolR)
+	fn(map[int16]interface{}(nil), (*Encoder).fastpathEncMapInt16IntfR, (*Decoder).fastpathDecMapInt16IntfR)
+	fn(map[int16]string(nil), (*Encoder).fastpathEncMapInt16StringR, (*Decoder).fastpathDecMapInt16StringR)
+	fn(map[int16]uint(nil), (*Encoder).fastpathEncMapInt16UintR, (*Decoder).fastpathDecMapInt16UintR)
+	fn(map[int16]uint8(nil), (*Encoder).fastpathEncMapInt16Uint8R, (*Decoder).fastpathDecMapInt16Uint8R)
+	fn(map[int16]uint16(nil), (*Encoder).fastpathEncMapInt16Uint16R, (*Decoder).fastpathDecMapInt16Uint16R)
+	fn(map[int16]uint32(nil), (*Encoder).fastpathEncMapInt16Uint32R, (*Decoder).fastpathDecMapInt16Uint32R)
+	fn(map[int16]uint64(nil), (*Encoder).fastpathEncMapInt16Uint64R, (*Decoder).fastpathDecMapInt16Uint64R)
+	fn(map[int16]uintptr(nil), (*Encoder).fastpathEncMapInt16UintptrR, (*Decoder).fastpathDecMapInt16UintptrR)
+	fn(map[int16]int(nil), (*Encoder).fastpathEncMapInt16IntR, (*Decoder).fastpathDecMapInt16IntR)
+	fn(map[int16]int8(nil), (*Encoder).fastpathEncMapInt16Int8R, (*Decoder).fastpathDecMapInt16Int8R)
+	fn(map[int16]int16(nil), (*Encoder).fastpathEncMapInt16Int16R, (*Decoder).fastpathDecMapInt16Int16R)
+	fn(map[int16]int32(nil), (*Encoder).fastpathEncMapInt16Int32R, (*Decoder).fastpathDecMapInt16Int32R)
+	fn(map[int16]int64(nil), (*Encoder).fastpathEncMapInt16Int64R, (*Decoder).fastpathDecMapInt16Int64R)
+	fn(map[int16]float32(nil), (*Encoder).fastpathEncMapInt16Float32R, (*Decoder).fastpathDecMapInt16Float32R)
+	fn(map[int16]float64(nil), (*Encoder).fastpathEncMapInt16Float64R, (*Decoder).fastpathDecMapInt16Float64R)
+	fn(map[int16]bool(nil), (*Encoder).fastpathEncMapInt16BoolR, (*Decoder).fastpathDecMapInt16BoolR)
+	fn(map[int32]interface{}(nil), (*Encoder).fastpathEncMapInt32IntfR, (*Decoder).fastpathDecMapInt32IntfR)
+	fn(map[int32]string(nil), (*Encoder).fastpathEncMapInt32StringR, (*Decoder).fastpathDecMapInt32StringR)
+	fn(map[int32]uint(nil), (*Encoder).fastpathEncMapInt32UintR, (*Decoder).fastpathDecMapInt32UintR)
+	fn(map[int32]uint8(nil), (*Encoder).fastpathEncMapInt32Uint8R, (*Decoder).fastpathDecMapInt32Uint8R)
+	fn(map[int32]uint16(nil), (*Encoder).fastpathEncMapInt32Uint16R, (*Decoder).fastpathDecMapInt32Uint16R)
+	fn(map[int32]uint32(nil), (*Encoder).fastpathEncMapInt32Uint32R, (*Decoder).fastpathDecMapInt32Uint32R)
+	fn(map[int32]uint64(nil), (*Encoder).fastpathEncMapInt32Uint64R, (*Decoder).fastpathDecMapInt32Uint64R)
+	fn(map[int32]uintptr(nil), (*Encoder).fastpathEncMapInt32UintptrR, (*Decoder).fastpathDecMapInt32UintptrR)
+	fn(map[int32]int(nil), (*Encoder).fastpathEncMapInt32IntR, (*Decoder).fastpathDecMapInt32IntR)
+	fn(map[int32]int8(nil), (*Encoder).fastpathEncMapInt32Int8R, (*Decoder).fastpathDecMapInt32Int8R)
+	fn(map[int32]int16(nil), (*Encoder).fastpathEncMapInt32Int16R, (*Decoder).fastpathDecMapInt32Int16R)
+	fn(map[int32]int32(nil), (*Encoder).fastpathEncMapInt32Int32R, (*Decoder).fastpathDecMapInt32Int32R)
+	fn(map[int32]int64(nil), (*Encoder).fastpathEncMapInt32Int64R, (*Decoder).fastpathDecMapInt32Int64R)
+	fn(map[int32]float32(nil), (*Encoder).fastpathEncMapInt32Float32R, (*Decoder).fastpathDecMapInt32Float32R)
+	fn(map[int32]float64(nil), (*Encoder).fastpathEncMapInt32Float64R, (*Decoder).fastpathDecMapInt32Float64R)
+	fn(map[int32]bool(nil), (*Encoder).fastpathEncMapInt32BoolR, (*Decoder).fastpathDecMapInt32BoolR)
+	fn(map[int64]interface{}(nil), (*Encoder).fastpathEncMapInt64IntfR, (*Decoder).fastpathDecMapInt64IntfR)
+	fn(map[int64]string(nil), (*Encoder).fastpathEncMapInt64StringR, (*Decoder).fastpathDecMapInt64StringR)
+	fn(map[int64]uint(nil), (*Encoder).fastpathEncMapInt64UintR, (*Decoder).fastpathDecMapInt64UintR)
+	fn(map[int64]uint8(nil), (*Encoder).fastpathEncMapInt64Uint8R, (*Decoder).fastpathDecMapInt64Uint8R)
+	fn(map[int64]uint16(nil), (*Encoder).fastpathEncMapInt64Uint16R, (*Decoder).fastpathDecMapInt64Uint16R)
+	fn(map[int64]uint32(nil), (*Encoder).fastpathEncMapInt64Uint32R, (*Decoder).fastpathDecMapInt64Uint32R)
+	fn(map[int64]uint64(nil), (*Encoder).fastpathEncMapInt64Uint64R, (*Decoder).fastpathDecMapInt64Uint64R)
+	fn(map[int64]uintptr(nil), (*Encoder).fastpathEncMapInt64UintptrR, (*Decoder).fastpathDecMapInt64UintptrR)
+	fn(map[int64]int(nil), (*Encoder).fastpathEncMapInt64IntR, (*Decoder).fastpathDecMapInt64IntR)
+	fn(map[int64]int8(nil), (*Encoder).fastpathEncMapInt64Int8R, (*Decoder).fastpathDecMapInt64Int8R)
+	fn(map[int64]int16(nil), (*Encoder).fastpathEncMapInt64Int16R, (*Decoder).fastpathDecMapInt64Int16R)
+	fn(map[int64]int32(nil), (*Encoder).fastpathEncMapInt64Int32R, (*Decoder).fastpathDecMapInt64Int32R)
+	fn(map[int64]int64(nil), (*Encoder).fastpathEncMapInt64Int64R, (*Decoder).fastpathDecMapInt64Int64R)
+	fn(map[int64]float32(nil), (*Encoder).fastpathEncMapInt64Float32R, (*Decoder).fastpathDecMapInt64Float32R)
+	fn(map[int64]float64(nil), (*Encoder).fastpathEncMapInt64Float64R, (*Decoder).fastpathDecMapInt64Float64R)
+	fn(map[int64]bool(nil), (*Encoder).fastpathEncMapInt64BoolR, (*Decoder).fastpathDecMapInt64BoolR)
+	fn(map[bool]interface{}(nil), (*Encoder).fastpathEncMapBoolIntfR, (*Decoder).fastpathDecMapBoolIntfR)
+	fn(map[bool]string(nil), (*Encoder).fastpathEncMapBoolStringR, (*Decoder).fastpathDecMapBoolStringR)
+	fn(map[bool]uint(nil), (*Encoder).fastpathEncMapBoolUintR, (*Decoder).fastpathDecMapBoolUintR)
+	fn(map[bool]uint8(nil), (*Encoder).fastpathEncMapBoolUint8R, (*Decoder).fastpathDecMapBoolUint8R)
+	fn(map[bool]uint16(nil), (*Encoder).fastpathEncMapBoolUint16R, (*Decoder).fastpathDecMapBoolUint16R)
+	fn(map[bool]uint32(nil), (*Encoder).fastpathEncMapBoolUint32R, (*Decoder).fastpathDecMapBoolUint32R)
+	fn(map[bool]uint64(nil), (*Encoder).fastpathEncMapBoolUint64R, (*Decoder).fastpathDecMapBoolUint64R)
+	fn(map[bool]uintptr(nil), (*Encoder).fastpathEncMapBoolUintptrR, (*Decoder).fastpathDecMapBoolUintptrR)
+	fn(map[bool]int(nil), (*Encoder).fastpathEncMapBoolIntR, (*Decoder).fastpathDecMapBoolIntR)
+	fn(map[bool]int8(nil), (*Encoder).fastpathEncMapBoolInt8R, (*Decoder).fastpathDecMapBoolInt8R)
+	fn(map[bool]int16(nil), (*Encoder).fastpathEncMapBoolInt16R, (*Decoder).fastpathDecMapBoolInt16R)
+	fn(map[bool]int32(nil), (*Encoder).fastpathEncMapBoolInt32R, (*Decoder).fastpathDecMapBoolInt32R)
+	fn(map[bool]int64(nil), (*Encoder).fastpathEncMapBoolInt64R, (*Decoder).fastpathDecMapBoolInt64R)
+	fn(map[bool]float32(nil), (*Encoder).fastpathEncMapBoolFloat32R, (*Decoder).fastpathDecMapBoolFloat32R)
+	fn(map[bool]float64(nil), (*Encoder).fastpathEncMapBoolFloat64R, (*Decoder).fastpathDecMapBoolFloat64R)
+	fn(map[bool]bool(nil), (*Encoder).fastpathEncMapBoolBoolR, (*Decoder).fastpathDecMapBoolBoolR)
+
+	sort.Sort(fastpathAslice(fastpathAV[:]))
+}
+
+// -- encode
+
+// -- -- fast path type switch
+func fastpathEncodeTypeSwitch(iv interface{}, e *Encoder) bool {
+	switch v := iv.(type) {
+
+	case []interface{}:
+		fastpathTV.EncSliceIntfV(v, e)
+	case *[]interface{}:
+		fastpathTV.EncSliceIntfV(*v, e)
+	case []string:
+		fastpathTV.EncSliceStringV(v, e)
+	case *[]string:
+		fastpathTV.EncSliceStringV(*v, e)
+	case []float32:
+		fastpathTV.EncSliceFloat32V(v, e)
+	case *[]float32:
+		fastpathTV.EncSliceFloat32V(*v, e)
+	case []float64:
+		fastpathTV.EncSliceFloat64V(v, e)
+	case *[]float64:
+		fastpathTV.EncSliceFloat64V(*v, e)
+	case []uint:
+		fastpathTV.EncSliceUintV(v, e)
+	case *[]uint:
+		fastpathTV.EncSliceUintV(*v, e)
+	case []uint16:
+		fastpathTV.EncSliceUint16V(v, e)
+	case *[]uint16:
+		fastpathTV.EncSliceUint16V(*v, e)
+	case []uint32:
+		fastpathTV.EncSliceUint32V(v, e)
+	case *[]uint32:
+		fastpathTV.EncSliceUint32V(*v, e)
+	case []uint64:
+		fastpathTV.EncSliceUint64V(v, e)
+	case *[]uint64:
+		fastpathTV.EncSliceUint64V(*v, e)
+	case []uintptr:
+		fastpathTV.EncSliceUintptrV(v, e)
+	case *[]uintptr:
+		fastpathTV.EncSliceUintptrV(*v, e)
+	case []int:
+		fastpathTV.EncSliceIntV(v, e)
+	case *[]int:
+		fastpathTV.EncSliceIntV(*v, e)
+	case []int8:
+		fastpathTV.EncSliceInt8V(v, e)
+	case *[]int8:
+		fastpathTV.EncSliceInt8V(*v, e)
+	case []int16:
+		fastpathTV.EncSliceInt16V(v, e)
+	case *[]int16:
+		fastpathTV.EncSliceInt16V(*v, e)
+	case []int32:
+		fastpathTV.EncSliceInt32V(v, e)
+	case *[]int32:
+		fastpathTV.EncSliceInt32V(*v, e)
+	case []int64:
+		fastpathTV.EncSliceInt64V(v, e)
+	case *[]int64:
+		fastpathTV.EncSliceInt64V(*v, e)
+	case []bool:
+		fastpathTV.EncSliceBoolV(v, e)
+	case *[]bool:
+		fastpathTV.EncSliceBoolV(*v, e)
+
+	case map[interface{}]interface{}:
+		fastpathTV.EncMapIntfIntfV(v, e)
+	case *map[interface{}]interface{}:
+		fastpathTV.EncMapIntfIntfV(*v, e)
+	case map[interface{}]string:
+		fastpathTV.EncMapIntfStringV(v, e)
+	case *map[interface{}]string:
+		fastpathTV.EncMapIntfStringV(*v, e)
+	case map[interface{}]uint:
+		fastpathTV.EncMapIntfUintV(v, e)
+	case *map[interface{}]uint:
+		fastpathTV.EncMapIntfUintV(*v, e)
+	case map[interface{}]uint8:
+		fastpathTV.EncMapIntfUint8V(v, e)
+	case *map[interface{}]uint8:
+		fastpathTV.EncMapIntfUint8V(*v, e)
+	case map[interface{}]uint16:
+		fastpathTV.EncMapIntfUint16V(v, e)
+	case *map[interface{}]uint16:
+		fastpathTV.EncMapIntfUint16V(*v, e)
+	case map[interface{}]uint32:
+		fastpathTV.EncMapIntfUint32V(v, e)
+	case *map[interface{}]uint32:
+		fastpathTV.EncMapIntfUint32V(*v, e)
+	case map[interface{}]uint64:
+		fastpathTV.EncMapIntfUint64V(v, e)
+	case *map[interface{}]uint64:
+		fastpathTV.EncMapIntfUint64V(*v, e)
+	case map[interface{}]uintptr:
+		fastpathTV.EncMapIntfUintptrV(v, e)
+	case *map[interface{}]uintptr:
+		fastpathTV.EncMapIntfUintptrV(*v, e)
+	case map[interface{}]int:
+		fastpathTV.EncMapIntfIntV(v, e)
+	case *map[interface{}]int:
+		fastpathTV.EncMapIntfIntV(*v, e)
+	case map[interface{}]int8:
+		fastpathTV.EncMapIntfInt8V(v, e)
+	case *map[interface{}]int8:
+		fastpathTV.EncMapIntfInt8V(*v, e)
+	case map[interface{}]int16:
+		fastpathTV.EncMapIntfInt16V(v, e)
+	case *map[interface{}]int16:
+		fastpathTV.EncMapIntfInt16V(*v, e)
+	case map[interface{}]int32:
+		fastpathTV.EncMapIntfInt32V(v, e)
+	case *map[interface{}]int32:
+		fastpathTV.EncMapIntfInt32V(*v, e)
+	case map[interface{}]int64:
+		fastpathTV.EncMapIntfInt64V(v, e)
+	case *map[interface{}]int64:
+		fastpathTV.EncMapIntfInt64V(*v, e)
+	case map[interface{}]float32:
+		fastpathTV.EncMapIntfFloat32V(v, e)
+	case *map[interface{}]float32:
+		fastpathTV.EncMapIntfFloat32V(*v, e)
+	case map[interface{}]float64:
+		fastpathTV.EncMapIntfFloat64V(v, e)
+	case *map[interface{}]float64:
+		fastpathTV.EncMapIntfFloat64V(*v, e)
+	case map[interface{}]bool:
+		fastpathTV.EncMapIntfBoolV(v, e)
+	case *map[interface{}]bool:
+		fastpathTV.EncMapIntfBoolV(*v, e)
+	case map[string]interface{}:
+		fastpathTV.EncMapStringIntfV(v, e)
+	case *map[string]interface{}:
+		fastpathTV.EncMapStringIntfV(*v, e)
+	case map[string]string:
+		fastpathTV.EncMapStringStringV(v, e)
+	case *map[string]string:
+		fastpathTV.EncMapStringStringV(*v, e)
+	case map[string]uint:
+		fastpathTV.EncMapStringUintV(v, e)
+	case *map[string]uint:
+		fastpathTV.EncMapStringUintV(*v, e)
+	case map[string]uint8:
+		fastpathTV.EncMapStringUint8V(v, e)
+	case *map[string]uint8:
+		fastpathTV.EncMapStringUint8V(*v, e)
+	case map[string]uint16:
+		fastpathTV.EncMapStringUint16V(v, e)
+	case *map[string]uint16:
+		fastpathTV.EncMapStringUint16V(*v, e)
+	case map[string]uint32:
+		fastpathTV.EncMapStringUint32V(v, e)
+	case *map[string]uint32:
+		fastpathTV.EncMapStringUint32V(*v, e)
+	case map[string]uint64:
+		fastpathTV.EncMapStringUint64V(v, e)
+	case *map[string]uint64:
+		fastpathTV.EncMapStringUint64V(*v, e)
+	case map[string]uintptr:
+		fastpathTV.EncMapStringUintptrV(v, e)
+	case *map[string]uintptr:
+		fastpathTV.EncMapStringUintptrV(*v, e)
+	case map[string]int:
+		fastpathTV.EncMapStringIntV(v, e)
+	case *map[string]int:
+		fastpathTV.EncMapStringIntV(*v, e)
+	case map[string]int8:
+		fastpathTV.EncMapStringInt8V(v, e)
+	case *map[string]int8:
+		fastpathTV.EncMapStringInt8V(*v, e)
+	case map[string]int16:
+		fastpathTV.EncMapStringInt16V(v, e)
+	case *map[string]int16:
+		fastpathTV.EncMapStringInt16V(*v, e)
+	case map[string]int32:
+		fastpathTV.EncMapStringInt32V(v, e)
+	case *map[string]int32:
+		fastpathTV.EncMapStringInt32V(*v, e)
+	case map[string]int64:
+		fastpathTV.EncMapStringInt64V(v, e)
+	case *map[string]int64:
+		fastpathTV.EncMapStringInt64V(*v, e)
+	case map[string]float32:
+		fastpathTV.EncMapStringFloat32V(v, e)
+	case *map[string]float32:
+		fastpathTV.EncMapStringFloat32V(*v, e)
+	case map[string]float64:
+		fastpathTV.EncMapStringFloat64V(v, e)
+	case *map[string]float64:
+		fastpathTV.EncMapStringFloat64V(*v, e)
+	case map[string]bool:
+		fastpathTV.EncMapStringBoolV(v, e)
+	case *map[string]bool:
+		fastpathTV.EncMapStringBoolV(*v, e)
+	case map[float32]interface{}:
+		fastpathTV.EncMapFloat32IntfV(v, e)
+	case *map[float32]interface{}:
+		fastpathTV.EncMapFloat32IntfV(*v, e)
+	case map[float32]string:
+		fastpathTV.EncMapFloat32StringV(v, e)
+	case *map[float32]string:
+		fastpathTV.EncMapFloat32StringV(*v, e)
+	case map[float32]uint:
+		fastpathTV.EncMapFloat32UintV(v, e)
+	case *map[float32]uint:
+		fastpathTV.EncMapFloat32UintV(*v, e)
+	case map[float32]uint8:
+		fastpathTV.EncMapFloat32Uint8V(v, e)
+	case *map[float32]uint8:
+		fastpathTV.EncMapFloat32Uint8V(*v, e)
+	case map[float32]uint16:
+		fastpathTV.EncMapFloat32Uint16V(v, e)
+	case *map[float32]uint16:
+		fastpathTV.EncMapFloat32Uint16V(*v, e)
+	case map[float32]uint32:
+		fastpathTV.EncMapFloat32Uint32V(v, e)
+	case *map[float32]uint32:
+		fastpathTV.EncMapFloat32Uint32V(*v, e)
+	case map[float32]uint64:
+		fastpathTV.EncMapFloat32Uint64V(v, e)
+	case *map[float32]uint64:
+		fastpathTV.EncMapFloat32Uint64V(*v, e)
+	case map[float32]uintptr:
+		fastpathTV.EncMapFloat32UintptrV(v, e)
+	case *map[float32]uintptr:
+		fastpathTV.EncMapFloat32UintptrV(*v, e)
+	case map[float32]int:
+		fastpathTV.EncMapFloat32IntV(v, e)
+	case *map[float32]int:
+		fastpathTV.EncMapFloat32IntV(*v, e)
+	case map[float32]int8:
+		fastpathTV.EncMapFloat32Int8V(v, e)
+	case *map[float32]int8:
+		fastpathTV.EncMapFloat32Int8V(*v, e)
+	case map[float32]int16:
+		fastpathTV.EncMapFloat32Int16V(v, e)
+	case *map[float32]int16:
+		fastpathTV.EncMapFloat32Int16V(*v, e)
+	case map[float32]int32:
+		fastpathTV.EncMapFloat32Int32V(v, e)
+	case *map[float32]int32:
+		fastpathTV.EncMapFloat32Int32V(*v, e)
+	case map[float32]int64:
+		fastpathTV.EncMapFloat32Int64V(v, e)
+	case *map[float32]int64:
+		fastpathTV.EncMapFloat32Int64V(*v, e)
+	case map[float32]float32:
+		fastpathTV.EncMapFloat32Float32V(v, e)
+	case *map[float32]float32:
+		fastpathTV.EncMapFloat32Float32V(*v, e)
+	case map[float32]float64:
+		fastpathTV.EncMapFloat32Float64V(v, e)
+	case *map[float32]float64:
+		fastpathTV.EncMapFloat32Float64V(*v, e)
+	case map[float32]bool:
+		fastpathTV.EncMapFloat32BoolV(v, e)
+	case *map[float32]bool:
+		fastpathTV.EncMapFloat32BoolV(*v, e)
+	case map[float64]interface{}:
+		fastpathTV.EncMapFloat64IntfV(v, e)
+	case *map[float64]interface{}:
+		fastpathTV.EncMapFloat64IntfV(*v, e)
+	case map[float64]string:
+		fastpathTV.EncMapFloat64StringV(v, e)
+	case *map[float64]string:
+		fastpathTV.EncMapFloat64StringV(*v, e)
+	case map[float64]uint:
+		fastpathTV.EncMapFloat64UintV(v, e)
+	case *map[float64]uint:
+		fastpathTV.EncMapFloat64UintV(*v, e)
+	case map[float64]uint8:
+		fastpathTV.EncMapFloat64Uint8V(v, e)
+	case *map[float64]uint8:
+		fastpathTV.EncMapFloat64Uint8V(*v, e)
+	case map[float64]uint16:
+		fastpathTV.EncMapFloat64Uint16V(v, e)
+	case *map[float64]uint16:
+		fastpathTV.EncMapFloat64Uint16V(*v, e)
+	case map[float64]uint32:
+		fastpathTV.EncMapFloat64Uint32V(v, e)
+	case *map[float64]uint32:
+		fastpathTV.EncMapFloat64Uint32V(*v, e)
+	case map[float64]uint64:
+		fastpathTV.EncMapFloat64Uint64V(v, e)
+	case *map[float64]uint64:
+		fastpathTV.EncMapFloat64Uint64V(*v, e)
+	case map[float64]uintptr:
+		fastpathTV.EncMapFloat64UintptrV(v, e)
+	case *map[float64]uintptr:
+		fastpathTV.EncMapFloat64UintptrV(*v, e)
+	case map[float64]int:
+		fastpathTV.EncMapFloat64IntV(v, e)
+	case *map[float64]int:
+		fastpathTV.EncMapFloat64IntV(*v, e)
+	case map[float64]int8:
+		fastpathTV.EncMapFloat64Int8V(v, e)
+	case *map[float64]int8:
+		fastpathTV.EncMapFloat64Int8V(*v, e)
+	case map[float64]int16:
+		fastpathTV.EncMapFloat64Int16V(v, e)
+	case *map[float64]int16:
+		fastpathTV.EncMapFloat64Int16V(*v, e)
+	case map[float64]int32:
+		fastpathTV.EncMapFloat64Int32V(v, e)
+	case *map[float64]int32:
+		fastpathTV.EncMapFloat64Int32V(*v, e)
+	case map[float64]int64:
+		fastpathTV.EncMapFloat64Int64V(v, e)
+	case *map[float64]int64:
+		fastpathTV.EncMapFloat64Int64V(*v, e)
+	case map[float64]float32:
+		fastpathTV.EncMapFloat64Float32V(v, e)
+	case *map[float64]float32:
+		fastpathTV.EncMapFloat64Float32V(*v, e)
+	case map[float64]float64:
+		fastpathTV.EncMapFloat64Float64V(v, e)
+	case *map[float64]float64:
+		fastpathTV.EncMapFloat64Float64V(*v, e)
+	case map[float64]bool:
+		fastpathTV.EncMapFloat64BoolV(v, e)
+	case *map[float64]bool:
+		fastpathTV.EncMapFloat64BoolV(*v, e)
+	case map[uint]interface{}:
+		fastpathTV.EncMapUintIntfV(v, e)
+	case *map[uint]interface{}:
+		fastpathTV.EncMapUintIntfV(*v, e)
+	case map[uint]string:
+		fastpathTV.EncMapUintStringV(v, e)
+	case *map[uint]string:
+		fastpathTV.EncMapUintStringV(*v, e)
+	case map[uint]uint:
+		fastpathTV.EncMapUintUintV(v, e)
+	case *map[uint]uint:
+		fastpathTV.EncMapUintUintV(*v, e)
+	case map[uint]uint8:
+		fastpathTV.EncMapUintUint8V(v, e)
+	case *map[uint]uint8:
+		fastpathTV.EncMapUintUint8V(*v, e)
+	case map[uint]uint16:
+		fastpathTV.EncMapUintUint16V(v, e)
+	case *map[uint]uint16:
+		fastpathTV.EncMapUintUint16V(*v, e)
+	case map[uint]uint32:
+		fastpathTV.EncMapUintUint32V(v, e)
+	case *map[uint]uint32:
+		fastpathTV.EncMapUintUint32V(*v, e)
+	case map[uint]uint64:
+		fastpathTV.EncMapUintUint64V(v, e)
+	case *map[uint]uint64:
+		fastpathTV.EncMapUintUint64V(*v, e)
+	case map[uint]uintptr:
+		fastpathTV.EncMapUintUintptrV(v, e)
+	case *map[uint]uintptr:
+		fastpathTV.EncMapUintUintptrV(*v, e)
+	case map[uint]int:
+		fastpathTV.EncMapUintIntV(v, e)
+	case *map[uint]int:
+		fastpathTV.EncMapUintIntV(*v, e)
+	case map[uint]int8:
+		fastpathTV.EncMapUintInt8V(v, e)
+	case *map[uint]int8:
+		fastpathTV.EncMapUintInt8V(*v, e)
+	case map[uint]int16:
+		fastpathTV.EncMapUintInt16V(v, e)
+	case *map[uint]int16:
+		fastpathTV.EncMapUintInt16V(*v, e)
+	case map[uint]int32:
+		fastpathTV.EncMapUintInt32V(v, e)
+	case *map[uint]int32:
+		fastpathTV.EncMapUintInt32V(*v, e)
+	case map[uint]int64:
+		fastpathTV.EncMapUintInt64V(v, e)
+	case *map[uint]int64:
+		fastpathTV.EncMapUintInt64V(*v, e)
+	case map[uint]float32:
+		fastpathTV.EncMapUintFloat32V(v, e)
+	case *map[uint]float32:
+		fastpathTV.EncMapUintFloat32V(*v, e)
+	case map[uint]float64:
+		fastpathTV.EncMapUintFloat64V(v, e)
+	case *map[uint]float64:
+		fastpathTV.EncMapUintFloat64V(*v, e)
+	case map[uint]bool:
+		fastpathTV.EncMapUintBoolV(v, e)
+	case *map[uint]bool:
+		fastpathTV.EncMapUintBoolV(*v, e)
+	case map[uint8]interface{}:
+		fastpathTV.EncMapUint8IntfV(v, e)
+	case *map[uint8]interface{}:
+		fastpathTV.EncMapUint8IntfV(*v, e)
+	case map[uint8]string:
+		fastpathTV.EncMapUint8StringV(v, e)
+	case *map[uint8]string:
+		fastpathTV.EncMapUint8StringV(*v, e)
+	case map[uint8]uint:
+		fastpathTV.EncMapUint8UintV(v, e)
+	case *map[uint8]uint:
+		fastpathTV.EncMapUint8UintV(*v, e)
+	case map[uint8]uint8:
+		fastpathTV.EncMapUint8Uint8V(v, e)
+	case *map[uint8]uint8:
+		fastpathTV.EncMapUint8Uint8V(*v, e)
+	case map[uint8]uint16:
+		fastpathTV.EncMapUint8Uint16V(v, e)
+	case *map[uint8]uint16:
+		fastpathTV.EncMapUint8Uint16V(*v, e)
+	case map[uint8]uint32:
+		fastpathTV.EncMapUint8Uint32V(v, e)
+	case *map[uint8]uint32:
+		fastpathTV.EncMapUint8Uint32V(*v, e)
+	case map[uint8]uint64:
+		fastpathTV.EncMapUint8Uint64V(v, e)
+	case *map[uint8]uint64:
+		fastpathTV.EncMapUint8Uint64V(*v, e)
+	case map[uint8]uintptr:
+		fastpathTV.EncMapUint8UintptrV(v, e)
+	case *map[uint8]uintptr:
+		fastpathTV.EncMapUint8UintptrV(*v, e)
+	case map[uint8]int:
+		fastpathTV.EncMapUint8IntV(v, e)
+	case *map[uint8]int:
+		fastpathTV.EncMapUint8IntV(*v, e)
+	case map[uint8]int8:
+		fastpathTV.EncMapUint8Int8V(v, e)
+	case *map[uint8]int8:
+		fastpathTV.EncMapUint8Int8V(*v, e)
+	case map[uint8]int16:
+		fastpathTV.EncMapUint8Int16V(v, e)
+	case *map[uint8]int16:
+		fastpathTV.EncMapUint8Int16V(*v, e)
+	case map[uint8]int32:
+		fastpathTV.EncMapUint8Int32V(v, e)
+	case *map[uint8]int32:
+		fastpathTV.EncMapUint8Int32V(*v, e)
+	case map[uint8]int64:
+		fastpathTV.EncMapUint8Int64V(v, e)
+	case *map[uint8]int64:
+		fastpathTV.EncMapUint8Int64V(*v, e)
+	case map[uint8]float32:
+		fastpathTV.EncMapUint8Float32V(v, e)
+	case *map[uint8]float32:
+		fastpathTV.EncMapUint8Float32V(*v, e)
+	case map[uint8]float64:
+		fastpathTV.EncMapUint8Float64V(v, e)
+	case *map[uint8]float64:
+		fastpathTV.EncMapUint8Float64V(*v, e)
+	case map[uint8]bool:
+		fastpathTV.EncMapUint8BoolV(v, e)
+	case *map[uint8]bool:
+		fastpathTV.EncMapUint8BoolV(*v, e)
+	case map[uint16]interface{}:
+		fastpathTV.EncMapUint16IntfV(v, e)
+	case *map[uint16]interface{}:
+		fastpathTV.EncMapUint16IntfV(*v, e)
+	case map[uint16]string:
+		fastpathTV.EncMapUint16StringV(v, e)
+	case *map[uint16]string:
+		fastpathTV.EncMapUint16StringV(*v, e)
+	case map[uint16]uint:
+		fastpathTV.EncMapUint16UintV(v, e)
+	case *map[uint16]uint:
+		fastpathTV.EncMapUint16UintV(*v, e)
+	case map[uint16]uint8:
+		fastpathTV.EncMapUint16Uint8V(v, e)
+	case *map[uint16]uint8:
+		fastpathTV.EncMapUint16Uint8V(*v, e)
+	case map[uint16]uint16:
+		fastpathTV.EncMapUint16Uint16V(v, e)
+	case *map[uint16]uint16:
+		fastpathTV.EncMapUint16Uint16V(*v, e)
+	case map[uint16]uint32:
+		fastpathTV.EncMapUint16Uint32V(v, e)
+	case *map[uint16]uint32:
+		fastpathTV.EncMapUint16Uint32V(*v, e)
+	case map[uint16]uint64:
+		fastpathTV.EncMapUint16Uint64V(v, e)
+	case *map[uint16]uint64:
+		fastpathTV.EncMapUint16Uint64V(*v, e)
+	case map[uint16]uintptr:
+		fastpathTV.EncMapUint16UintptrV(v, e)
+	case *map[uint16]uintptr:
+		fastpathTV.EncMapUint16UintptrV(*v, e)
+	case map[uint16]int:
+		fastpathTV.EncMapUint16IntV(v, e)
+	case *map[uint16]int:
+		fastpathTV.EncMapUint16IntV(*v, e)
+	case map[uint16]int8:
+		fastpathTV.EncMapUint16Int8V(v, e)
+	case *map[uint16]int8:
+		fastpathTV.EncMapUint16Int8V(*v, e)
+	case map[uint16]int16:
+		fastpathTV.EncMapUint16Int16V(v, e)
+	case *map[uint16]int16:
+		fastpathTV.EncMapUint16Int16V(*v, e)
+	case map[uint16]int32:
+		fastpathTV.EncMapUint16Int32V(v, e)
+	case *map[uint16]int32:
+		fastpathTV.EncMapUint16Int32V(*v, e)
+	case map[uint16]int64:
+		fastpathTV.EncMapUint16Int64V(v, e)
+	case *map[uint16]int64:
+		fastpathTV.EncMapUint16Int64V(*v, e)
+	case map[uint16]float32:
+		fastpathTV.EncMapUint16Float32V(v, e)
+	case *map[uint16]float32:
+		fastpathTV.EncMapUint16Float32V(*v, e)
+	case map[uint16]float64:
+		fastpathTV.EncMapUint16Float64V(v, e)
+	case *map[uint16]float64:
+		fastpathTV.EncMapUint16Float64V(*v, e)
+	case map[uint16]bool:
+		fastpathTV.EncMapUint16BoolV(v, e)
+	case *map[uint16]bool:
+		fastpathTV.EncMapUint16BoolV(*v, e)
+	case map[uint32]interface{}:
+		fastpathTV.EncMapUint32IntfV(v, e)
+	case *map[uint32]interface{}:
+		fastpathTV.EncMapUint32IntfV(*v, e)
+	case map[uint32]string:
+		fastpathTV.EncMapUint32StringV(v, e)
+	case *map[uint32]string:
+		fastpathTV.EncMapUint32StringV(*v, e)
+	case map[uint32]uint:
+		fastpathTV.EncMapUint32UintV(v, e)
+	case *map[uint32]uint:
+		fastpathTV.EncMapUint32UintV(*v, e)
+	case map[uint32]uint8:
+		fastpathTV.EncMapUint32Uint8V(v, e)
+	case *map[uint32]uint8:
+		fastpathTV.EncMapUint32Uint8V(*v, e)
+	case map[uint32]uint16:
+		fastpathTV.EncMapUint32Uint16V(v, e)
+	case *map[uint32]uint16:
+		fastpathTV.EncMapUint32Uint16V(*v, e)
+	case map[uint32]uint32:
+		fastpathTV.EncMapUint32Uint32V(v, e)
+	case *map[uint32]uint32:
+		fastpathTV.EncMapUint32Uint32V(*v, e)
+	case map[uint32]uint64:
+		fastpathTV.EncMapUint32Uint64V(v, e)
+	case *map[uint32]uint64:
+		fastpathTV.EncMapUint32Uint64V(*v, e)
+	case map[uint32]uintptr:
+		fastpathTV.EncMapUint32UintptrV(v, e)
+	case *map[uint32]uintptr:
+		fastpathTV.EncMapUint32UintptrV(*v, e)
+	case map[uint32]int:
+		fastpathTV.EncMapUint32IntV(v, e)
+	case *map[uint32]int:
+		fastpathTV.EncMapUint32IntV(*v, e)
+	case map[uint32]int8:
+		fastpathTV.EncMapUint32Int8V(v, e)
+	case *map[uint32]int8:
+		fastpathTV.EncMapUint32Int8V(*v, e)
+	case map[uint32]int16:
+		fastpathTV.EncMapUint32Int16V(v, e)
+	case *map[uint32]int16:
+		fastpathTV.EncMapUint32Int16V(*v, e)
+	case map[uint32]int32:
+		fastpathTV.EncMapUint32Int32V(v, e)
+	case *map[uint32]int32:
+		fastpathTV.EncMapUint32Int32V(*v, e)
+	case map[uint32]int64:
+		fastpathTV.EncMapUint32Int64V(v, e)
+	case *map[uint32]int64:
+		fastpathTV.EncMapUint32Int64V(*v, e)
+	case map[uint32]float32:
+		fastpathTV.EncMapUint32Float32V(v, e)
+	case *map[uint32]float32:
+		fastpathTV.EncMapUint32Float32V(*v, e)
+	case map[uint32]float64:
+		fastpathTV.EncMapUint32Float64V(v, e)
+	case *map[uint32]float64:
+		fastpathTV.EncMapUint32Float64V(*v, e)
+	case map[uint32]bool:
+		fastpathTV.EncMapUint32BoolV(v, e)
+	case *map[uint32]bool:
+		fastpathTV.EncMapUint32BoolV(*v, e)
+	case map[uint64]interface{}:
+		fastpathTV.EncMapUint64IntfV(v, e)
+	case *map[uint64]interface{}:
+		fastpathTV.EncMapUint64IntfV(*v, e)
+	case map[uint64]string:
+		fastpathTV.EncMapUint64StringV(v, e)
+	case *map[uint64]string:
+		fastpathTV.EncMapUint64StringV(*v, e)
+	case map[uint64]uint:
+		fastpathTV.EncMapUint64UintV(v, e)
+	case *map[uint64]uint:
+		fastpathTV.EncMapUint64UintV(*v, e)
+	case map[uint64]uint8:
+		fastpathTV.EncMapUint64Uint8V(v, e)
+	case *map[uint64]uint8:
+		fastpathTV.EncMapUint64Uint8V(*v, e)
+	case map[uint64]uint16:
+		fastpathTV.EncMapUint64Uint16V(v, e)
+	case *map[uint64]uint16:
+		fastpathTV.EncMapUint64Uint16V(*v, e)
+	case map[uint64]uint32:
+		fastpathTV.EncMapUint64Uint32V(v, e)
+	case *map[uint64]uint32:
+		fastpathTV.EncMapUint64Uint32V(*v, e)
+	case map[uint64]uint64:
+		fastpathTV.EncMapUint64Uint64V(v, e)
+	case *map[uint64]uint64:
+		fastpathTV.EncMapUint64Uint64V(*v, e)
+	case map[uint64]uintptr:
+		fastpathTV.EncMapUint64UintptrV(v, e)
+	case *map[uint64]uintptr:
+		fastpathTV.EncMapUint64UintptrV(*v, e)
+	case map[uint64]int:
+		fastpathTV.EncMapUint64IntV(v, e)
+	case *map[uint64]int:
+		fastpathTV.EncMapUint64IntV(*v, e)
+	case map[uint64]int8:
+		fastpathTV.EncMapUint64Int8V(v, e)
+	case *map[uint64]int8:
+		fastpathTV.EncMapUint64Int8V(*v, e)
+	case map[uint64]int16:
+		fastpathTV.EncMapUint64Int16V(v, e)
+	case *map[uint64]int16:
+		fastpathTV.EncMapUint64Int16V(*v, e)
+	case map[uint64]int32:
+		fastpathTV.EncMapUint64Int32V(v, e)
+	case *map[uint64]int32:
+		fastpathTV.EncMapUint64Int32V(*v, e)
+	case map[uint64]int64:
+		fastpathTV.EncMapUint64Int64V(v, e)
+	case *map[uint64]int64:
+		fastpathTV.EncMapUint64Int64V(*v, e)
+	case map[uint64]float32:
+		fastpathTV.EncMapUint64Float32V(v, e)
+	case *map[uint64]float32:
+		fastpathTV.EncMapUint64Float32V(*v, e)
+	case map[uint64]float64:
+		fastpathTV.EncMapUint64Float64V(v, e)
+	case *map[uint64]float64:
+		fastpathTV.EncMapUint64Float64V(*v, e)
+	case map[uint64]bool:
+		fastpathTV.EncMapUint64BoolV(v, e)
+	case *map[uint64]bool:
+		fastpathTV.EncMapUint64BoolV(*v, e)
+	case map[uintptr]interface{}:
+		fastpathTV.EncMapUintptrIntfV(v, e)
+	case *map[uintptr]interface{}:
+		fastpathTV.EncMapUintptrIntfV(*v, e)
+	case map[uintptr]string:
+		fastpathTV.EncMapUintptrStringV(v, e)
+	case *map[uintptr]string:
+		fastpathTV.EncMapUintptrStringV(*v, e)
+	case map[uintptr]uint:
+		fastpathTV.EncMapUintptrUintV(v, e)
+	case *map[uintptr]uint:
+		fastpathTV.EncMapUintptrUintV(*v, e)
+	case map[uintptr]uint8:
+		fastpathTV.EncMapUintptrUint8V(v, e)
+	case *map[uintptr]uint8:
+		fastpathTV.EncMapUintptrUint8V(*v, e)
+	case map[uintptr]uint16:
+		fastpathTV.EncMapUintptrUint16V(v, e)
+	case *map[uintptr]uint16:
+		fastpathTV.EncMapUintptrUint16V(*v, e)
+	case map[uintptr]uint32:
+		fastpathTV.EncMapUintptrUint32V(v, e)
+	case *map[uintptr]uint32:
+		fastpathTV.EncMapUintptrUint32V(*v, e)
+	case map[uintptr]uint64:
+		fastpathTV.EncMapUintptrUint64V(v, e)
+	case *map[uintptr]uint64:
+		fastpathTV.EncMapUintptrUint64V(*v, e)
+	case map[uintptr]uintptr:
+		fastpathTV.EncMapUintptrUintptrV(v, e)
+	case *map[uintptr]uintptr:
+		fastpathTV.EncMapUintptrUintptrV(*v, e)
+	case map[uintptr]int:
+		fastpathTV.EncMapUintptrIntV(v, e)
+	case *map[uintptr]int:
+		fastpathTV.EncMapUintptrIntV(*v, e)
+	case map[uintptr]int8:
+		fastpathTV.EncMapUintptrInt8V(v, e)
+	case *map[uintptr]int8:
+		fastpathTV.EncMapUintptrInt8V(*v, e)
+	case map[uintptr]int16:
+		fastpathTV.EncMapUintptrInt16V(v, e)
+	case *map[uintptr]int16:
+		fastpathTV.EncMapUintptrInt16V(*v, e)
+	case map[uintptr]int32:
+		fastpathTV.EncMapUintptrInt32V(v, e)
+	case *map[uintptr]int32:
+		fastpathTV.EncMapUintptrInt32V(*v, e)
+	case map[uintptr]int64:
+		fastpathTV.EncMapUintptrInt64V(v, e)
+	case *map[uintptr]int64:
+		fastpathTV.EncMapUintptrInt64V(*v, e)
+	case map[uintptr]float32:
+		fastpathTV.EncMapUintptrFloat32V(v, e)
+	case *map[uintptr]float32:
+		fastpathTV.EncMapUintptrFloat32V(*v, e)
+	case map[uintptr]float64:
+		fastpathTV.EncMapUintptrFloat64V(v, e)
+	case *map[uintptr]float64:
+		fastpathTV.EncMapUintptrFloat64V(*v, e)
+	case map[uintptr]bool:
+		fastpathTV.EncMapUintptrBoolV(v, e)
+	case *map[uintptr]bool:
+		fastpathTV.EncMapUintptrBoolV(*v, e)
+	case map[int]interface{}:
+		fastpathTV.EncMapIntIntfV(v, e)
+	case *map[int]interface{}:
+		fastpathTV.EncMapIntIntfV(*v, e)
+	case map[int]string:
+		fastpathTV.EncMapIntStringV(v, e)
+	case *map[int]string:
+		fastpathTV.EncMapIntStringV(*v, e)
+	case map[int]uint:
+		fastpathTV.EncMapIntUintV(v, e)
+	case *map[int]uint:
+		fastpathTV.EncMapIntUintV(*v, e)
+	case map[int]uint8:
+		fastpathTV.EncMapIntUint8V(v, e)
+	case *map[int]uint8:
+		fastpathTV.EncMapIntUint8V(*v, e)
+	case map[int]uint16:
+		fastpathTV.EncMapIntUint16V(v, e)
+	case *map[int]uint16:
+		fastpathTV.EncMapIntUint16V(*v, e)
+	case map[int]uint32:
+		fastpathTV.EncMapIntUint32V(v, e)
+	case *map[int]uint32:
+		fastpathTV.EncMapIntUint32V(*v, e)
+	case map[int]uint64:
+		fastpathTV.EncMapIntUint64V(v, e)
+	case *map[int]uint64:
+		fastpathTV.EncMapIntUint64V(*v, e)
+	case map[int]uintptr:
+		fastpathTV.EncMapIntUintptrV(v, e)
+	case *map[int]uintptr:
+		fastpathTV.EncMapIntUintptrV(*v, e)
+	case map[int]int:
+		fastpathTV.EncMapIntIntV(v, e)
+	case *map[int]int:
+		fastpathTV.EncMapIntIntV(*v, e)
+	case map[int]int8:
+		fastpathTV.EncMapIntInt8V(v, e)
+	case *map[int]int8:
+		fastpathTV.EncMapIntInt8V(*v, e)
+	case map[int]int16:
+		fastpathTV.EncMapIntInt16V(v, e)
+	case *map[int]int16:
+		fastpathTV.EncMapIntInt16V(*v, e)
+	case map[int]int32:
+		fastpathTV.EncMapIntInt32V(v, e)
+	case *map[int]int32:
+		fastpathTV.EncMapIntInt32V(*v, e)
+	case map[int]int64:
+		fastpathTV.EncMapIntInt64V(v, e)
+	case *map[int]int64:
+		fastpathTV.EncMapIntInt64V(*v, e)
+	case map[int]float32:
+		fastpathTV.EncMapIntFloat32V(v, e)
+	case *map[int]float32:
+		fastpathTV.EncMapIntFloat32V(*v, e)
+	case map[int]float64:
+		fastpathTV.EncMapIntFloat64V(v, e)
+	case *map[int]float64:
+		fastpathTV.EncMapIntFloat64V(*v, e)
+	case map[int]bool:
+		fastpathTV.EncMapIntBoolV(v, e)
+	case *map[int]bool:
+		fastpathTV.EncMapIntBoolV(*v, e)
+	case map[int8]interface{}:
+		fastpathTV.EncMapInt8IntfV(v, e)
+	case *map[int8]interface{}:
+		fastpathTV.EncMapInt8IntfV(*v, e)
+	case map[int8]string:
+		fastpathTV.EncMapInt8StringV(v, e)
+	case *map[int8]string:
+		fastpathTV.EncMapInt8StringV(*v, e)
+	case map[int8]uint:
+		fastpathTV.EncMapInt8UintV(v, e)
+	case *map[int8]uint:
+		fastpathTV.EncMapInt8UintV(*v, e)
+	case map[int8]uint8:
+		fastpathTV.EncMapInt8Uint8V(v, e)
+	case *map[int8]uint8:
+		fastpathTV.EncMapInt8Uint8V(*v, e)
+	case map[int8]uint16:
+		fastpathTV.EncMapInt8Uint16V(v, e)
+	case *map[int8]uint16:
+		fastpathTV.EncMapInt8Uint16V(*v, e)
+	case map[int8]uint32:
+		fastpathTV.EncMapInt8Uint32V(v, e)
+	case *map[int8]uint32:
+		fastpathTV.EncMapInt8Uint32V(*v, e)
+	case map[int8]uint64:
+		fastpathTV.EncMapInt8Uint64V(v, e)
+	case *map[int8]uint64:
+		fastpathTV.EncMapInt8Uint64V(*v, e)
+	case map[int8]uintptr:
+		fastpathTV.EncMapInt8UintptrV(v, e)
+	case *map[int8]uintptr:
+		fastpathTV.EncMapInt8UintptrV(*v, e)
+	case map[int8]int:
+		fastpathTV.EncMapInt8IntV(v, e)
+	case *map[int8]int:
+		fastpathTV.EncMapInt8IntV(*v, e)
+	case map[int8]int8:
+		fastpathTV.EncMapInt8Int8V(v, e)
+	case *map[int8]int8:
+		fastpathTV.EncMapInt8Int8V(*v, e)
+	case map[int8]int16:
+		fastpathTV.EncMapInt8Int16V(v, e)
+	case *map[int8]int16:
+		fastpathTV.EncMapInt8Int16V(*v, e)
+	case map[int8]int32:
+		fastpathTV.EncMapInt8Int32V(v, e)
+	case *map[int8]int32:
+		fastpathTV.EncMapInt8Int32V(*v, e)
+	case map[int8]int64:
+		fastpathTV.EncMapInt8Int64V(v, e)
+	case *map[int8]int64:
+		fastpathTV.EncMapInt8Int64V(*v, e)
+	case map[int8]float32:
+		fastpathTV.EncMapInt8Float32V(v, e)
+	case *map[int8]float32:
+		fastpathTV.EncMapInt8Float32V(*v, e)
+	case map[int8]float64:
+		fastpathTV.EncMapInt8Float64V(v, e)
+	case *map[int8]float64:
+		fastpathTV.EncMapInt8Float64V(*v, e)
+	case map[int8]bool:
+		fastpathTV.EncMapInt8BoolV(v, e)
+	case *map[int8]bool:
+		fastpathTV.EncMapInt8BoolV(*v, e)
+	case map[int16]interface{}:
+		fastpathTV.EncMapInt16IntfV(v, e)
+	case *map[int16]interface{}:
+		fastpathTV.EncMapInt16IntfV(*v, e)
+	case map[int16]string:
+		fastpathTV.EncMapInt16StringV(v, e)
+	case *map[int16]string:
+		fastpathTV.EncMapInt16StringV(*v, e)
+	case map[int16]uint:
+		fastpathTV.EncMapInt16UintV(v, e)
+	case *map[int16]uint:
+		fastpathTV.EncMapInt16UintV(*v, e)
+	case map[int16]uint8:
+		fastpathTV.EncMapInt16Uint8V(v, e)
+	case *map[int16]uint8:
+		fastpathTV.EncMapInt16Uint8V(*v, e)
+	case map[int16]uint16:
+		fastpathTV.EncMapInt16Uint16V(v, e)
+	case *map[int16]uint16:
+		fastpathTV.EncMapInt16Uint16V(*v, e)
+	case map[int16]uint32:
+		fastpathTV.EncMapInt16Uint32V(v, e)
+	case *map[int16]uint32:
+		fastpathTV.EncMapInt16Uint32V(*v, e)
+	case map[int16]uint64:
+		fastpathTV.EncMapInt16Uint64V(v, e)
+	case *map[int16]uint64:
+		fastpathTV.EncMapInt16Uint64V(*v, e)
+	case map[int16]uintptr:
+		fastpathTV.EncMapInt16UintptrV(v, e)
+	case *map[int16]uintptr:
+		fastpathTV.EncMapInt16UintptrV(*v, e)
+	case map[int16]int:
+		fastpathTV.EncMapInt16IntV(v, e)
+	case *map[int16]int:
+		fastpathTV.EncMapInt16IntV(*v, e)
+	case map[int16]int8:
+		fastpathTV.EncMapInt16Int8V(v, e)
+	case *map[int16]int8:
+		fastpathTV.EncMapInt16Int8V(*v, e)
+	case map[int16]int16:
+		fastpathTV.EncMapInt16Int16V(v, e)
+	case *map[int16]int16:
+		fastpathTV.EncMapInt16Int16V(*v, e)
+	case map[int16]int32:
+		fastpathTV.EncMapInt16Int32V(v, e)
+	case *map[int16]int32:
+		fastpathTV.EncMapInt16Int32V(*v, e)
+	case map[int16]int64:
+		fastpathTV.EncMapInt16Int64V(v, e)
+	case *map[int16]int64:
+		fastpathTV.EncMapInt16Int64V(*v, e)
+	case map[int16]float32:
+		fastpathTV.EncMapInt16Float32V(v, e)
+	case *map[int16]float32:
+		fastpathTV.EncMapInt16Float32V(*v, e)
+	case map[int16]float64:
+		fastpathTV.EncMapInt16Float64V(v, e)
+	case *map[int16]float64:
+		fastpathTV.EncMapInt16Float64V(*v, e)
+	case map[int16]bool:
+		fastpathTV.EncMapInt16BoolV(v, e)
+	case *map[int16]bool:
+		fastpathTV.EncMapInt16BoolV(*v, e)
+	case map[int32]interface{}:
+		fastpathTV.EncMapInt32IntfV(v, e)
+	case *map[int32]interface{}:
+		fastpathTV.EncMapInt32IntfV(*v, e)
+	case map[int32]string:
+		fastpathTV.EncMapInt32StringV(v, e)
+	case *map[int32]string:
+		fastpathTV.EncMapInt32StringV(*v, e)
+	case map[int32]uint:
+		fastpathTV.EncMapInt32UintV(v, e)
+	case *map[int32]uint:
+		fastpathTV.EncMapInt32UintV(*v, e)
+	case map[int32]uint8:
+		fastpathTV.EncMapInt32Uint8V(v, e)
+	case *map[int32]uint8:
+		fastpathTV.EncMapInt32Uint8V(*v, e)
+	case map[int32]uint16:
+		fastpathTV.EncMapInt32Uint16V(v, e)
+	case *map[int32]uint16:
+		fastpathTV.EncMapInt32Uint16V(*v, e)
+	case map[int32]uint32:
+		fastpathTV.EncMapInt32Uint32V(v, e)
+	case *map[int32]uint32:
+		fastpathTV.EncMapInt32Uint32V(*v, e)
+	case map[int32]uint64:
+		fastpathTV.EncMapInt32Uint64V(v, e)
+	case *map[int32]uint64:
+		fastpathTV.EncMapInt32Uint64V(*v, e)
+	case map[int32]uintptr:
+		fastpathTV.EncMapInt32UintptrV(v, e)
+	case *map[int32]uintptr:
+		fastpathTV.EncMapInt32UintptrV(*v, e)
+	case map[int32]int:
+		fastpathTV.EncMapInt32IntV(v, e)
+	case *map[int32]int:
+		fastpathTV.EncMapInt32IntV(*v, e)
+	case map[int32]int8:
+		fastpathTV.EncMapInt32Int8V(v, e)
+	case *map[int32]int8:
+		fastpathTV.EncMapInt32Int8V(*v, e)
+	case map[int32]int16:
+		fastpathTV.EncMapInt32Int16V(v, e)
+	case *map[int32]int16:
+		fastpathTV.EncMapInt32Int16V(*v, e)
+	case map[int32]int32:
+		fastpathTV.EncMapInt32Int32V(v, e)
+	case *map[int32]int32:
+		fastpathTV.EncMapInt32Int32V(*v, e)
+	case map[int32]int64:
+		fastpathTV.EncMapInt32Int64V(v, e)
+	case *map[int32]int64:
+		fastpathTV.EncMapInt32Int64V(*v, e)
+	case map[int32]float32:
+		fastpathTV.EncMapInt32Float32V(v, e)
+	case *map[int32]float32:
+		fastpathTV.EncMapInt32Float32V(*v, e)
+	case map[int32]float64:
+		fastpathTV.EncMapInt32Float64V(v, e)
+	case *map[int32]float64:
+		fastpathTV.EncMapInt32Float64V(*v, e)
+	case map[int32]bool:
+		fastpathTV.EncMapInt32BoolV(v, e)
+	case *map[int32]bool:
+		fastpathTV.EncMapInt32BoolV(*v, e)
+	case map[int64]interface{}:
+		fastpathTV.EncMapInt64IntfV(v, e)
+	case *map[int64]interface{}:
+		fastpathTV.EncMapInt64IntfV(*v, e)
+	case map[int64]string:
+		fastpathTV.EncMapInt64StringV(v, e)
+	case *map[int64]string:
+		fastpathTV.EncMapInt64StringV(*v, e)
+	case map[int64]uint:
+		fastpathTV.EncMapInt64UintV(v, e)
+	case *map[int64]uint:
+		fastpathTV.EncMapInt64UintV(*v, e)
+	case map[int64]uint8:
+		fastpathTV.EncMapInt64Uint8V(v, e)
+	case *map[int64]uint8:
+		fastpathTV.EncMapInt64Uint8V(*v, e)
+	case map[int64]uint16:
+		fastpathTV.EncMapInt64Uint16V(v, e)
+	case *map[int64]uint16:
+		fastpathTV.EncMapInt64Uint16V(*v, e)
+	case map[int64]uint32:
+		fastpathTV.EncMapInt64Uint32V(v, e)
+	case *map[int64]uint32:
+		fastpathTV.EncMapInt64Uint32V(*v, e)
+	case map[int64]uint64:
+		fastpathTV.EncMapInt64Uint64V(v, e)
+	case *map[int64]uint64:
+		fastpathTV.EncMapInt64Uint64V(*v, e)
+	case map[int64]uintptr:
+		fastpathTV.EncMapInt64UintptrV(v, e)
+	case *map[int64]uintptr:
+		fastpathTV.EncMapInt64UintptrV(*v, e)
+	case map[int64]int:
+		fastpathTV.EncMapInt64IntV(v, e)
+	case *map[int64]int:
+		fastpathTV.EncMapInt64IntV(*v, e)
+	case map[int64]int8:
+		fastpathTV.EncMapInt64Int8V(v, e)
+	case *map[int64]int8:
+		fastpathTV.EncMapInt64Int8V(*v, e)
+	case map[int64]int16:
+		fastpathTV.EncMapInt64Int16V(v, e)
+	case *map[int64]int16:
+		fastpathTV.EncMapInt64Int16V(*v, e)
+	case map[int64]int32:
+		fastpathTV.EncMapInt64Int32V(v, e)
+	case *map[int64]int32:
+		fastpathTV.EncMapInt64Int32V(*v, e)
+	case map[int64]int64:
+		fastpathTV.EncMapInt64Int64V(v, e)
+	case *map[int64]int64:
+		fastpathTV.EncMapInt64Int64V(*v, e)
+	case map[int64]float32:
+		fastpathTV.EncMapInt64Float32V(v, e)
+	case *map[int64]float32:
+		fastpathTV.EncMapInt64Float32V(*v, e)
+	case map[int64]float64:
+		fastpathTV.EncMapInt64Float64V(v, e)
+	case *map[int64]float64:
+		fastpathTV.EncMapInt64Float64V(*v, e)
+	case map[int64]bool:
+		fastpathTV.EncMapInt64BoolV(v, e)
+	case *map[int64]bool:
+		fastpathTV.EncMapInt64BoolV(*v, e)
+	case map[bool]interface{}:
+		fastpathTV.EncMapBoolIntfV(v, e)
+	case *map[bool]interface{}:
+		fastpathTV.EncMapBoolIntfV(*v, e)
+	case map[bool]string:
+		fastpathTV.EncMapBoolStringV(v, e)
+	case *map[bool]string:
+		fastpathTV.EncMapBoolStringV(*v, e)
+	case map[bool]uint:
+		fastpathTV.EncMapBoolUintV(v, e)
+	case *map[bool]uint:
+		fastpathTV.EncMapBoolUintV(*v, e)
+	case map[bool]uint8:
+		fastpathTV.EncMapBoolUint8V(v, e)
+	case *map[bool]uint8:
+		fastpathTV.EncMapBoolUint8V(*v, e)
+	case map[bool]uint16:
+		fastpathTV.EncMapBoolUint16V(v, e)
+	case *map[bool]uint16:
+		fastpathTV.EncMapBoolUint16V(*v, e)
+	case map[bool]uint32:
+		fastpathTV.EncMapBoolUint32V(v, e)
+	case *map[bool]uint32:
+		fastpathTV.EncMapBoolUint32V(*v, e)
+	case map[bool]uint64:
+		fastpathTV.EncMapBoolUint64V(v, e)
+	case *map[bool]uint64:
+		fastpathTV.EncMapBoolUint64V(*v, e)
+	case map[bool]uintptr:
+		fastpathTV.EncMapBoolUintptrV(v, e)
+	case *map[bool]uintptr:
+		fastpathTV.EncMapBoolUintptrV(*v, e)
+	case map[bool]int:
+		fastpathTV.EncMapBoolIntV(v, e)
+	case *map[bool]int:
+		fastpathTV.EncMapBoolIntV(*v, e)
+	case map[bool]int8:
+		fastpathTV.EncMapBoolInt8V(v, e)
+	case *map[bool]int8:
+		fastpathTV.EncMapBoolInt8V(*v, e)
+	case map[bool]int16:
+		fastpathTV.EncMapBoolInt16V(v, e)
+	case *map[bool]int16:
+		fastpathTV.EncMapBoolInt16V(*v, e)
+	case map[bool]int32:
+		fastpathTV.EncMapBoolInt32V(v, e)
+	case *map[bool]int32:
+		fastpathTV.EncMapBoolInt32V(*v, e)
+	case map[bool]int64:
+		fastpathTV.EncMapBoolInt64V(v, e)
+	case *map[bool]int64:
+		fastpathTV.EncMapBoolInt64V(*v, e)
+	case map[bool]float32:
+		fastpathTV.EncMapBoolFloat32V(v, e)
+	case *map[bool]float32:
+		fastpathTV.EncMapBoolFloat32V(*v, e)
+	case map[bool]float64:
+		fastpathTV.EncMapBoolFloat64V(v, e)
+	case *map[bool]float64:
+		fastpathTV.EncMapBoolFloat64V(*v, e)
+	case map[bool]bool:
+		fastpathTV.EncMapBoolBoolV(v, e)
+	case *map[bool]bool:
+		fastpathTV.EncMapBoolBoolV(*v, e)
+
+	default:
+		_ = v // workaround https://github.com/golang/go/issues/12927 seen in go1.4
+		return false
+	}
+	return true
+}
+
+// -- -- fast path functions
+
+func (e *Encoder) fastpathEncSliceIntfR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceIntfV(rv2i(rv).([]interface{}), e)
+	} else {
+		fastpathTV.EncSliceIntfV(rv2i(rv).([]interface{}), e)
+	}
+}
+func (_ fastpathT) EncSliceIntfV(v []interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			e.encode(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			e.encode(v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceIntfV(v []interface{}, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			e.encode(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			e.encode(v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceStringR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceStringV(rv2i(rv).([]string), e)
+	} else {
+		fastpathTV.EncSliceStringV(rv2i(rv).([]string), e)
+	}
+}
+func (_ fastpathT) EncSliceStringV(v []string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeString(cUTF8, v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeString(cUTF8, v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceStringV(v []string, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeString(cUTF8, v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeString(cUTF8, v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceFloat32V(rv2i(rv).([]float32), e)
+	} else {
+		fastpathTV.EncSliceFloat32V(rv2i(rv).([]float32), e)
+	}
+}
+func (_ fastpathT) EncSliceFloat32V(v []float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeFloat32(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeFloat32(v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceFloat32V(v []float32, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeFloat32(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeFloat32(v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceFloat64V(rv2i(rv).([]float64), e)
+	} else {
+		fastpathTV.EncSliceFloat64V(rv2i(rv).([]float64), e)
+	}
+}
+func (_ fastpathT) EncSliceFloat64V(v []float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeFloat64(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeFloat64(v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceFloat64V(v []float64, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeFloat64(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeFloat64(v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUintR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUintV(rv2i(rv).([]uint), e)
+	} else {
+		fastpathTV.EncSliceUintV(rv2i(rv).([]uint), e)
+	}
+}
+func (_ fastpathT) EncSliceUintV(v []uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUintV(v []uint, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUint8R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUint8V(rv2i(rv).([]uint8), e)
+	} else {
+		fastpathTV.EncSliceUint8V(rv2i(rv).([]uint8), e)
+	}
+}
+func (_ fastpathT) EncSliceUint8V(v []uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUint8V(v []uint8, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUint16R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUint16V(rv2i(rv).([]uint16), e)
+	} else {
+		fastpathTV.EncSliceUint16V(rv2i(rv).([]uint16), e)
+	}
+}
+func (_ fastpathT) EncSliceUint16V(v []uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUint16V(v []uint16, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUint32R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUint32V(rv2i(rv).([]uint32), e)
+	} else {
+		fastpathTV.EncSliceUint32V(rv2i(rv).([]uint32), e)
+	}
+}
+func (_ fastpathT) EncSliceUint32V(v []uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUint32V(v []uint32, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUint64R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUint64V(rv2i(rv).([]uint64), e)
+	} else {
+		fastpathTV.EncSliceUint64V(rv2i(rv).([]uint64), e)
+	}
+}
+func (_ fastpathT) EncSliceUint64V(v []uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUint64V(v []uint64, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeUint(uint64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeUint(uint64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceUintptrV(rv2i(rv).([]uintptr), e)
+	} else {
+		fastpathTV.EncSliceUintptrV(rv2i(rv).([]uintptr), e)
+	}
+}
+func (_ fastpathT) EncSliceUintptrV(v []uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			e.encode(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			e.encode(v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceUintptrV(v []uintptr, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			e.encode(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			e.encode(v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceIntR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceIntV(rv2i(rv).([]int), e)
+	} else {
+		fastpathTV.EncSliceIntV(rv2i(rv).([]int), e)
+	}
+}
+func (_ fastpathT) EncSliceIntV(v []int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceIntV(v []int, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceInt8R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceInt8V(rv2i(rv).([]int8), e)
+	} else {
+		fastpathTV.EncSliceInt8V(rv2i(rv).([]int8), e)
+	}
+}
+func (_ fastpathT) EncSliceInt8V(v []int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceInt8V(v []int8, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceInt16R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceInt16V(rv2i(rv).([]int16), e)
+	} else {
+		fastpathTV.EncSliceInt16V(rv2i(rv).([]int16), e)
+	}
+}
+func (_ fastpathT) EncSliceInt16V(v []int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceInt16V(v []int16, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceInt32R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceInt32V(rv2i(rv).([]int32), e)
+	} else {
+		fastpathTV.EncSliceInt32V(rv2i(rv).([]int32), e)
+	}
+}
+func (_ fastpathT) EncSliceInt32V(v []int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceInt32V(v []int32, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceInt64R(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceInt64V(rv2i(rv).([]int64), e)
+	} else {
+		fastpathTV.EncSliceInt64V(rv2i(rv).([]int64), e)
+	}
+}
+func (_ fastpathT) EncSliceInt64V(v []int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceInt64V(v []int64, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeInt(int64(v2))
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeInt(int64(v2))
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncSliceBoolR(f *codecFnInfo, rv reflect.Value) {
+	if f.ti.mbs {
+		fastpathTV.EncAsMapSliceBoolV(rv2i(rv).([]bool), e)
+	} else {
+		fastpathTV.EncSliceBoolV(rv2i(rv).([]bool), e)
+	}
+}
+func (_ fastpathT) EncSliceBoolV(v []bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteArrayStart(len(v))
+	if esep {
+		for _, v2 := range v {
+			ee.WriteArrayElem()
+			ee.EncodeBool(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeBool(v2)
+		}
+	}
+	ee.WriteArrayEnd()
+}
+func (_ fastpathT) EncAsMapSliceBoolV(v []bool, e *Encoder) {
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	if len(v)%2 == 1 {
+		e.errorf("mapBySlice requires even slice length, but got %v", len(v))
+		return
+	}
+	ee.WriteMapStart(len(v) / 2)
+	if esep {
+		for j, v2 := range v {
+			if j%2 == 0 {
+				ee.WriteMapElemKey()
+			} else {
+				ee.WriteMapElemValue()
+			}
+			ee.EncodeBool(v2)
+		}
+	} else {
+		for _, v2 := range v {
+			ee.EncodeBool(v2)
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfIntfV(rv2i(rv).(map[interface{}]interface{}), e)
+}
+func (_ fastpathT) EncMapIntfIntfV(v map[interface{}]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfStringV(rv2i(rv).(map[interface{}]string), e)
+}
+func (_ fastpathT) EncMapIntfStringV(v map[interface{}]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUintV(rv2i(rv).(map[interface{}]uint), e)
+}
+func (_ fastpathT) EncMapIntfUintV(v map[interface{}]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUint8V(rv2i(rv).(map[interface{}]uint8), e)
+}
+func (_ fastpathT) EncMapIntfUint8V(v map[interface{}]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUint16V(rv2i(rv).(map[interface{}]uint16), e)
+}
+func (_ fastpathT) EncMapIntfUint16V(v map[interface{}]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUint32V(rv2i(rv).(map[interface{}]uint32), e)
+}
+func (_ fastpathT) EncMapIntfUint32V(v map[interface{}]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUint64V(rv2i(rv).(map[interface{}]uint64), e)
+}
+func (_ fastpathT) EncMapIntfUint64V(v map[interface{}]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfUintptrV(rv2i(rv).(map[interface{}]uintptr), e)
+}
+func (_ fastpathT) EncMapIntfUintptrV(v map[interface{}]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfIntV(rv2i(rv).(map[interface{}]int), e)
+}
+func (_ fastpathT) EncMapIntfIntV(v map[interface{}]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfInt8V(rv2i(rv).(map[interface{}]int8), e)
+}
+func (_ fastpathT) EncMapIntfInt8V(v map[interface{}]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfInt16V(rv2i(rv).(map[interface{}]int16), e)
+}
+func (_ fastpathT) EncMapIntfInt16V(v map[interface{}]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfInt32V(rv2i(rv).(map[interface{}]int32), e)
+}
+func (_ fastpathT) EncMapIntfInt32V(v map[interface{}]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfInt64V(rv2i(rv).(map[interface{}]int64), e)
+}
+func (_ fastpathT) EncMapIntfInt64V(v map[interface{}]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfFloat32V(rv2i(rv).(map[interface{}]float32), e)
+}
+func (_ fastpathT) EncMapIntfFloat32V(v map[interface{}]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfFloat64V(rv2i(rv).(map[interface{}]float64), e)
+}
+func (_ fastpathT) EncMapIntfFloat64V(v map[interface{}]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntfBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntfBoolV(rv2i(rv).(map[interface{}]bool), e)
+}
+func (_ fastpathT) EncMapIntfBoolV(v map[interface{}]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		var mksv []byte = make([]byte, 0, len(v)*16) // temporary byte slice for the encoding
+		e2 := NewEncoderBytes(&mksv, e.hh)
+		v2 := make([]bytesI, len(v))
+		var i, l int
+		var vp *bytesI
+		for k2, _ := range v {
+			l = len(mksv)
+			e2.MustEncode(k2)
+			vp = &v2[i]
+			vp.v = mksv[l:]
+			vp.i = k2
+			i++
+		}
+		sort.Sort(bytesISlice(v2))
+		if esep {
+			for j := range v2 {
+				ee.WriteMapElemKey()
+				e.asis(v2[j].v)
+				ee.WriteMapElemValue()
+				e.encode(v[v2[j].i])
+			}
+		} else {
+			for j := range v2 {
+				e.asis(v2[j].v)
+				e.encode(v[v2[j].i])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringIntfV(rv2i(rv).(map[string]interface{}), e)
+}
+func (_ fastpathT) EncMapStringIntfV(v map[string]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				e.encode(v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				e.encode(v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringStringV(rv2i(rv).(map[string]string), e)
+}
+func (_ fastpathT) EncMapStringStringV(v map[string]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeString(cUTF8, v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUintV(rv2i(rv).(map[string]uint), e)
+}
+func (_ fastpathT) EncMapStringUintV(v map[string]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUint8V(rv2i(rv).(map[string]uint8), e)
+}
+func (_ fastpathT) EncMapStringUint8V(v map[string]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUint16V(rv2i(rv).(map[string]uint16), e)
+}
+func (_ fastpathT) EncMapStringUint16V(v map[string]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUint32V(rv2i(rv).(map[string]uint32), e)
+}
+func (_ fastpathT) EncMapStringUint32V(v map[string]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUint64V(rv2i(rv).(map[string]uint64), e)
+}
+func (_ fastpathT) EncMapStringUint64V(v map[string]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringUintptrV(rv2i(rv).(map[string]uintptr), e)
+}
+func (_ fastpathT) EncMapStringUintptrV(v map[string]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				e.encode(v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				e.encode(v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringIntV(rv2i(rv).(map[string]int), e)
+}
+func (_ fastpathT) EncMapStringIntV(v map[string]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringInt8V(rv2i(rv).(map[string]int8), e)
+}
+func (_ fastpathT) EncMapStringInt8V(v map[string]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringInt16V(rv2i(rv).(map[string]int16), e)
+}
+func (_ fastpathT) EncMapStringInt16V(v map[string]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringInt32V(rv2i(rv).(map[string]int32), e)
+}
+func (_ fastpathT) EncMapStringInt32V(v map[string]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringInt64V(rv2i(rv).(map[string]int64), e)
+}
+func (_ fastpathT) EncMapStringInt64V(v map[string]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v[string(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringFloat32V(rv2i(rv).(map[string]float32), e)
+}
+func (_ fastpathT) EncMapStringFloat32V(v map[string]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeFloat32(v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringFloat64V(rv2i(rv).(map[string]float64), e)
+}
+func (_ fastpathT) EncMapStringFloat64V(v map[string]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeFloat64(v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapStringBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapStringBoolV(rv2i(rv).(map[string]bool), e)
+}
+func (_ fastpathT) EncMapStringBoolV(v map[string]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]string, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = string(k)
+			i++
+		}
+		sort.Sort(stringSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[string(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeBool(v[string(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeString(cUTF8, k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeString(cUTF8, k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32IntfV(rv2i(rv).(map[float32]interface{}), e)
+}
+func (_ fastpathT) EncMapFloat32IntfV(v map[float32]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				e.encode(v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32StringV(rv2i(rv).(map[float32]string), e)
+}
+func (_ fastpathT) EncMapFloat32StringV(v map[float32]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeString(cUTF8, v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32UintV(rv2i(rv).(map[float32]uint), e)
+}
+func (_ fastpathT) EncMapFloat32UintV(v map[float32]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Uint8V(rv2i(rv).(map[float32]uint8), e)
+}
+func (_ fastpathT) EncMapFloat32Uint8V(v map[float32]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Uint16V(rv2i(rv).(map[float32]uint16), e)
+}
+func (_ fastpathT) EncMapFloat32Uint16V(v map[float32]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Uint32V(rv2i(rv).(map[float32]uint32), e)
+}
+func (_ fastpathT) EncMapFloat32Uint32V(v map[float32]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Uint64V(rv2i(rv).(map[float32]uint64), e)
+}
+func (_ fastpathT) EncMapFloat32Uint64V(v map[float32]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeUint(uint64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32UintptrV(rv2i(rv).(map[float32]uintptr), e)
+}
+func (_ fastpathT) EncMapFloat32UintptrV(v map[float32]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				e.encode(v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32IntV(rv2i(rv).(map[float32]int), e)
+}
+func (_ fastpathT) EncMapFloat32IntV(v map[float32]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Int8V(rv2i(rv).(map[float32]int8), e)
+}
+func (_ fastpathT) EncMapFloat32Int8V(v map[float32]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Int16V(rv2i(rv).(map[float32]int16), e)
+}
+func (_ fastpathT) EncMapFloat32Int16V(v map[float32]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Int32V(rv2i(rv).(map[float32]int32), e)
+}
+func (_ fastpathT) EncMapFloat32Int32V(v map[float32]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Int64V(rv2i(rv).(map[float32]int64), e)
+}
+func (_ fastpathT) EncMapFloat32Int64V(v map[float32]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeInt(int64(v[float32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Float32V(rv2i(rv).(map[float32]float32), e)
+}
+func (_ fastpathT) EncMapFloat32Float32V(v map[float32]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeFloat32(v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32Float64V(rv2i(rv).(map[float32]float64), e)
+}
+func (_ fastpathT) EncMapFloat32Float64V(v map[float32]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeFloat64(v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat32BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat32BoolV(rv2i(rv).(map[float32]bool), e)
+}
+func (_ fastpathT) EncMapFloat32BoolV(v map[float32]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(float32(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[float32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat32(float32(k2))
+				ee.EncodeBool(v[float32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat32(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat32(k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64IntfV(rv2i(rv).(map[float64]interface{}), e)
+}
+func (_ fastpathT) EncMapFloat64IntfV(v map[float64]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				e.encode(v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64StringV(rv2i(rv).(map[float64]string), e)
+}
+func (_ fastpathT) EncMapFloat64StringV(v map[float64]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeString(cUTF8, v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64UintV(rv2i(rv).(map[float64]uint), e)
+}
+func (_ fastpathT) EncMapFloat64UintV(v map[float64]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Uint8V(rv2i(rv).(map[float64]uint8), e)
+}
+func (_ fastpathT) EncMapFloat64Uint8V(v map[float64]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Uint16V(rv2i(rv).(map[float64]uint16), e)
+}
+func (_ fastpathT) EncMapFloat64Uint16V(v map[float64]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Uint32V(rv2i(rv).(map[float64]uint32), e)
+}
+func (_ fastpathT) EncMapFloat64Uint32V(v map[float64]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Uint64V(rv2i(rv).(map[float64]uint64), e)
+}
+func (_ fastpathT) EncMapFloat64Uint64V(v map[float64]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeUint(uint64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64UintptrV(rv2i(rv).(map[float64]uintptr), e)
+}
+func (_ fastpathT) EncMapFloat64UintptrV(v map[float64]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				e.encode(v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64IntV(rv2i(rv).(map[float64]int), e)
+}
+func (_ fastpathT) EncMapFloat64IntV(v map[float64]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Int8V(rv2i(rv).(map[float64]int8), e)
+}
+func (_ fastpathT) EncMapFloat64Int8V(v map[float64]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Int16V(rv2i(rv).(map[float64]int16), e)
+}
+func (_ fastpathT) EncMapFloat64Int16V(v map[float64]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Int32V(rv2i(rv).(map[float64]int32), e)
+}
+func (_ fastpathT) EncMapFloat64Int32V(v map[float64]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Int64V(rv2i(rv).(map[float64]int64), e)
+}
+func (_ fastpathT) EncMapFloat64Int64V(v map[float64]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeInt(int64(v[float64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Float32V(rv2i(rv).(map[float64]float32), e)
+}
+func (_ fastpathT) EncMapFloat64Float32V(v map[float64]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeFloat32(v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64Float64V(rv2i(rv).(map[float64]float64), e)
+}
+func (_ fastpathT) EncMapFloat64Float64V(v map[float64]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeFloat64(v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapFloat64BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapFloat64BoolV(rv2i(rv).(map[float64]bool), e)
+}
+func (_ fastpathT) EncMapFloat64BoolV(v map[float64]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]float64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = float64(k)
+			i++
+		}
+		sort.Sort(floatSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(float64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[float64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeFloat64(float64(k2))
+				ee.EncodeBool(v[float64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeFloat64(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeFloat64(k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintIntfV(rv2i(rv).(map[uint]interface{}), e)
+}
+func (_ fastpathT) EncMapUintIntfV(v map[uint]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				e.encode(v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintStringV(rv2i(rv).(map[uint]string), e)
+}
+func (_ fastpathT) EncMapUintStringV(v map[uint]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeString(cUTF8, v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUintV(rv2i(rv).(map[uint]uint), e)
+}
+func (_ fastpathT) EncMapUintUintV(v map[uint]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUint8V(rv2i(rv).(map[uint]uint8), e)
+}
+func (_ fastpathT) EncMapUintUint8V(v map[uint]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUint16V(rv2i(rv).(map[uint]uint16), e)
+}
+func (_ fastpathT) EncMapUintUint16V(v map[uint]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUint32V(rv2i(rv).(map[uint]uint32), e)
+}
+func (_ fastpathT) EncMapUintUint32V(v map[uint]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUint64V(rv2i(rv).(map[uint]uint64), e)
+}
+func (_ fastpathT) EncMapUintUint64V(v map[uint]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeUint(uint64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintUintptrV(rv2i(rv).(map[uint]uintptr), e)
+}
+func (_ fastpathT) EncMapUintUintptrV(v map[uint]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				e.encode(v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintIntV(rv2i(rv).(map[uint]int), e)
+}
+func (_ fastpathT) EncMapUintIntV(v map[uint]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintInt8V(rv2i(rv).(map[uint]int8), e)
+}
+func (_ fastpathT) EncMapUintInt8V(v map[uint]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintInt16V(rv2i(rv).(map[uint]int16), e)
+}
+func (_ fastpathT) EncMapUintInt16V(v map[uint]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintInt32V(rv2i(rv).(map[uint]int32), e)
+}
+func (_ fastpathT) EncMapUintInt32V(v map[uint]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintInt64V(rv2i(rv).(map[uint]int64), e)
+}
+func (_ fastpathT) EncMapUintInt64V(v map[uint]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeInt(int64(v[uint(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintFloat32V(rv2i(rv).(map[uint]float32), e)
+}
+func (_ fastpathT) EncMapUintFloat32V(v map[uint]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeFloat32(v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintFloat64V(rv2i(rv).(map[uint]float64), e)
+}
+func (_ fastpathT) EncMapUintFloat64V(v map[uint]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeFloat64(v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintBoolV(rv2i(rv).(map[uint]bool), e)
+}
+func (_ fastpathT) EncMapUintBoolV(v map[uint]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uint(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint(k2)))
+				ee.EncodeBool(v[uint(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8IntfV(rv2i(rv).(map[uint8]interface{}), e)
+}
+func (_ fastpathT) EncMapUint8IntfV(v map[uint8]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				e.encode(v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8StringV(rv2i(rv).(map[uint8]string), e)
+}
+func (_ fastpathT) EncMapUint8StringV(v map[uint8]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeString(cUTF8, v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8UintV(rv2i(rv).(map[uint8]uint), e)
+}
+func (_ fastpathT) EncMapUint8UintV(v map[uint8]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Uint8V(rv2i(rv).(map[uint8]uint8), e)
+}
+func (_ fastpathT) EncMapUint8Uint8V(v map[uint8]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Uint16V(rv2i(rv).(map[uint8]uint16), e)
+}
+func (_ fastpathT) EncMapUint8Uint16V(v map[uint8]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Uint32V(rv2i(rv).(map[uint8]uint32), e)
+}
+func (_ fastpathT) EncMapUint8Uint32V(v map[uint8]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Uint64V(rv2i(rv).(map[uint8]uint64), e)
+}
+func (_ fastpathT) EncMapUint8Uint64V(v map[uint8]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeUint(uint64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8UintptrV(rv2i(rv).(map[uint8]uintptr), e)
+}
+func (_ fastpathT) EncMapUint8UintptrV(v map[uint8]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				e.encode(v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8IntV(rv2i(rv).(map[uint8]int), e)
+}
+func (_ fastpathT) EncMapUint8IntV(v map[uint8]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Int8V(rv2i(rv).(map[uint8]int8), e)
+}
+func (_ fastpathT) EncMapUint8Int8V(v map[uint8]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Int16V(rv2i(rv).(map[uint8]int16), e)
+}
+func (_ fastpathT) EncMapUint8Int16V(v map[uint8]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Int32V(rv2i(rv).(map[uint8]int32), e)
+}
+func (_ fastpathT) EncMapUint8Int32V(v map[uint8]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Int64V(rv2i(rv).(map[uint8]int64), e)
+}
+func (_ fastpathT) EncMapUint8Int64V(v map[uint8]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeInt(int64(v[uint8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Float32V(rv2i(rv).(map[uint8]float32), e)
+}
+func (_ fastpathT) EncMapUint8Float32V(v map[uint8]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeFloat32(v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8Float64V(rv2i(rv).(map[uint8]float64), e)
+}
+func (_ fastpathT) EncMapUint8Float64V(v map[uint8]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeFloat64(v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint8BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint8BoolV(rv2i(rv).(map[uint8]bool), e)
+}
+func (_ fastpathT) EncMapUint8BoolV(v map[uint8]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uint8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint8(k2)))
+				ee.EncodeBool(v[uint8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16IntfV(rv2i(rv).(map[uint16]interface{}), e)
+}
+func (_ fastpathT) EncMapUint16IntfV(v map[uint16]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				e.encode(v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16StringV(rv2i(rv).(map[uint16]string), e)
+}
+func (_ fastpathT) EncMapUint16StringV(v map[uint16]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeString(cUTF8, v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16UintV(rv2i(rv).(map[uint16]uint), e)
+}
+func (_ fastpathT) EncMapUint16UintV(v map[uint16]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Uint8V(rv2i(rv).(map[uint16]uint8), e)
+}
+func (_ fastpathT) EncMapUint16Uint8V(v map[uint16]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Uint16V(rv2i(rv).(map[uint16]uint16), e)
+}
+func (_ fastpathT) EncMapUint16Uint16V(v map[uint16]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Uint32V(rv2i(rv).(map[uint16]uint32), e)
+}
+func (_ fastpathT) EncMapUint16Uint32V(v map[uint16]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Uint64V(rv2i(rv).(map[uint16]uint64), e)
+}
+func (_ fastpathT) EncMapUint16Uint64V(v map[uint16]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeUint(uint64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16UintptrV(rv2i(rv).(map[uint16]uintptr), e)
+}
+func (_ fastpathT) EncMapUint16UintptrV(v map[uint16]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				e.encode(v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16IntV(rv2i(rv).(map[uint16]int), e)
+}
+func (_ fastpathT) EncMapUint16IntV(v map[uint16]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Int8V(rv2i(rv).(map[uint16]int8), e)
+}
+func (_ fastpathT) EncMapUint16Int8V(v map[uint16]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Int16V(rv2i(rv).(map[uint16]int16), e)
+}
+func (_ fastpathT) EncMapUint16Int16V(v map[uint16]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Int32V(rv2i(rv).(map[uint16]int32), e)
+}
+func (_ fastpathT) EncMapUint16Int32V(v map[uint16]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Int64V(rv2i(rv).(map[uint16]int64), e)
+}
+func (_ fastpathT) EncMapUint16Int64V(v map[uint16]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeInt(int64(v[uint16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Float32V(rv2i(rv).(map[uint16]float32), e)
+}
+func (_ fastpathT) EncMapUint16Float32V(v map[uint16]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeFloat32(v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16Float64V(rv2i(rv).(map[uint16]float64), e)
+}
+func (_ fastpathT) EncMapUint16Float64V(v map[uint16]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeFloat64(v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint16BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint16BoolV(rv2i(rv).(map[uint16]bool), e)
+}
+func (_ fastpathT) EncMapUint16BoolV(v map[uint16]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uint16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint16(k2)))
+				ee.EncodeBool(v[uint16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32IntfV(rv2i(rv).(map[uint32]interface{}), e)
+}
+func (_ fastpathT) EncMapUint32IntfV(v map[uint32]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				e.encode(v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32StringV(rv2i(rv).(map[uint32]string), e)
+}
+func (_ fastpathT) EncMapUint32StringV(v map[uint32]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeString(cUTF8, v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32UintV(rv2i(rv).(map[uint32]uint), e)
+}
+func (_ fastpathT) EncMapUint32UintV(v map[uint32]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Uint8V(rv2i(rv).(map[uint32]uint8), e)
+}
+func (_ fastpathT) EncMapUint32Uint8V(v map[uint32]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Uint16V(rv2i(rv).(map[uint32]uint16), e)
+}
+func (_ fastpathT) EncMapUint32Uint16V(v map[uint32]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Uint32V(rv2i(rv).(map[uint32]uint32), e)
+}
+func (_ fastpathT) EncMapUint32Uint32V(v map[uint32]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Uint64V(rv2i(rv).(map[uint32]uint64), e)
+}
+func (_ fastpathT) EncMapUint32Uint64V(v map[uint32]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeUint(uint64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32UintptrV(rv2i(rv).(map[uint32]uintptr), e)
+}
+func (_ fastpathT) EncMapUint32UintptrV(v map[uint32]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				e.encode(v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32IntV(rv2i(rv).(map[uint32]int), e)
+}
+func (_ fastpathT) EncMapUint32IntV(v map[uint32]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Int8V(rv2i(rv).(map[uint32]int8), e)
+}
+func (_ fastpathT) EncMapUint32Int8V(v map[uint32]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Int16V(rv2i(rv).(map[uint32]int16), e)
+}
+func (_ fastpathT) EncMapUint32Int16V(v map[uint32]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Int32V(rv2i(rv).(map[uint32]int32), e)
+}
+func (_ fastpathT) EncMapUint32Int32V(v map[uint32]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Int64V(rv2i(rv).(map[uint32]int64), e)
+}
+func (_ fastpathT) EncMapUint32Int64V(v map[uint32]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeInt(int64(v[uint32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Float32V(rv2i(rv).(map[uint32]float32), e)
+}
+func (_ fastpathT) EncMapUint32Float32V(v map[uint32]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeFloat32(v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32Float64V(rv2i(rv).(map[uint32]float64), e)
+}
+func (_ fastpathT) EncMapUint32Float64V(v map[uint32]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeFloat64(v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint32BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint32BoolV(rv2i(rv).(map[uint32]bool), e)
+}
+func (_ fastpathT) EncMapUint32BoolV(v map[uint32]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uint32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint32(k2)))
+				ee.EncodeBool(v[uint32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64IntfV(rv2i(rv).(map[uint64]interface{}), e)
+}
+func (_ fastpathT) EncMapUint64IntfV(v map[uint64]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				e.encode(v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64StringV(rv2i(rv).(map[uint64]string), e)
+}
+func (_ fastpathT) EncMapUint64StringV(v map[uint64]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeString(cUTF8, v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64UintV(rv2i(rv).(map[uint64]uint), e)
+}
+func (_ fastpathT) EncMapUint64UintV(v map[uint64]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Uint8V(rv2i(rv).(map[uint64]uint8), e)
+}
+func (_ fastpathT) EncMapUint64Uint8V(v map[uint64]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Uint16V(rv2i(rv).(map[uint64]uint16), e)
+}
+func (_ fastpathT) EncMapUint64Uint16V(v map[uint64]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Uint32V(rv2i(rv).(map[uint64]uint32), e)
+}
+func (_ fastpathT) EncMapUint64Uint32V(v map[uint64]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Uint64V(rv2i(rv).(map[uint64]uint64), e)
+}
+func (_ fastpathT) EncMapUint64Uint64V(v map[uint64]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeUint(uint64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64UintptrV(rv2i(rv).(map[uint64]uintptr), e)
+}
+func (_ fastpathT) EncMapUint64UintptrV(v map[uint64]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				e.encode(v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64IntV(rv2i(rv).(map[uint64]int), e)
+}
+func (_ fastpathT) EncMapUint64IntV(v map[uint64]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Int8V(rv2i(rv).(map[uint64]int8), e)
+}
+func (_ fastpathT) EncMapUint64Int8V(v map[uint64]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Int16V(rv2i(rv).(map[uint64]int16), e)
+}
+func (_ fastpathT) EncMapUint64Int16V(v map[uint64]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Int32V(rv2i(rv).(map[uint64]int32), e)
+}
+func (_ fastpathT) EncMapUint64Int32V(v map[uint64]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Int64V(rv2i(rv).(map[uint64]int64), e)
+}
+func (_ fastpathT) EncMapUint64Int64V(v map[uint64]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeInt(int64(v[uint64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Float32V(rv2i(rv).(map[uint64]float32), e)
+}
+func (_ fastpathT) EncMapUint64Float32V(v map[uint64]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeFloat32(v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64Float64V(rv2i(rv).(map[uint64]float64), e)
+}
+func (_ fastpathT) EncMapUint64Float64V(v map[uint64]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeFloat64(v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUint64BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUint64BoolV(rv2i(rv).(map[uint64]bool), e)
+}
+func (_ fastpathT) EncMapUint64BoolV(v map[uint64]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uint64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeUint(uint64(uint64(k2)))
+				ee.EncodeBool(v[uint64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeUint(uint64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeUint(uint64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrIntfV(rv2i(rv).(map[uintptr]interface{}), e)
+}
+func (_ fastpathT) EncMapUintptrIntfV(v map[uintptr]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				e.encode(v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrStringV(rv2i(rv).(map[uintptr]string), e)
+}
+func (_ fastpathT) EncMapUintptrStringV(v map[uintptr]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeString(cUTF8, v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUintV(rv2i(rv).(map[uintptr]uint), e)
+}
+func (_ fastpathT) EncMapUintptrUintV(v map[uintptr]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUint8V(rv2i(rv).(map[uintptr]uint8), e)
+}
+func (_ fastpathT) EncMapUintptrUint8V(v map[uintptr]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUint16V(rv2i(rv).(map[uintptr]uint16), e)
+}
+func (_ fastpathT) EncMapUintptrUint16V(v map[uintptr]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUint32V(rv2i(rv).(map[uintptr]uint32), e)
+}
+func (_ fastpathT) EncMapUintptrUint32V(v map[uintptr]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUint64V(rv2i(rv).(map[uintptr]uint64), e)
+}
+func (_ fastpathT) EncMapUintptrUint64V(v map[uintptr]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeUint(uint64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrUintptrV(rv2i(rv).(map[uintptr]uintptr), e)
+}
+func (_ fastpathT) EncMapUintptrUintptrV(v map[uintptr]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				e.encode(v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrIntV(rv2i(rv).(map[uintptr]int), e)
+}
+func (_ fastpathT) EncMapUintptrIntV(v map[uintptr]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrInt8V(rv2i(rv).(map[uintptr]int8), e)
+}
+func (_ fastpathT) EncMapUintptrInt8V(v map[uintptr]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrInt16V(rv2i(rv).(map[uintptr]int16), e)
+}
+func (_ fastpathT) EncMapUintptrInt16V(v map[uintptr]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrInt32V(rv2i(rv).(map[uintptr]int32), e)
+}
+func (_ fastpathT) EncMapUintptrInt32V(v map[uintptr]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrInt64V(rv2i(rv).(map[uintptr]int64), e)
+}
+func (_ fastpathT) EncMapUintptrInt64V(v map[uintptr]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeInt(int64(v[uintptr(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrFloat32V(rv2i(rv).(map[uintptr]float32), e)
+}
+func (_ fastpathT) EncMapUintptrFloat32V(v map[uintptr]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeFloat32(v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrFloat64V(rv2i(rv).(map[uintptr]float64), e)
+}
+func (_ fastpathT) EncMapUintptrFloat64V(v map[uintptr]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeFloat64(v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapUintptrBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapUintptrBoolV(rv2i(rv).(map[uintptr]bool), e)
+}
+func (_ fastpathT) EncMapUintptrBoolV(v map[uintptr]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]uint64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = uint64(k)
+			i++
+		}
+		sort.Sort(uintSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				e.encode(uintptr(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[uintptr(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				e.encode(uintptr(k2))
+				ee.EncodeBool(v[uintptr(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				e.encode(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				e.encode(k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntIntfV(rv2i(rv).(map[int]interface{}), e)
+}
+func (_ fastpathT) EncMapIntIntfV(v map[int]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				e.encode(v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntStringV(rv2i(rv).(map[int]string), e)
+}
+func (_ fastpathT) EncMapIntStringV(v map[int]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeString(cUTF8, v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUintV(rv2i(rv).(map[int]uint), e)
+}
+func (_ fastpathT) EncMapIntUintV(v map[int]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUint8V(rv2i(rv).(map[int]uint8), e)
+}
+func (_ fastpathT) EncMapIntUint8V(v map[int]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUint16V(rv2i(rv).(map[int]uint16), e)
+}
+func (_ fastpathT) EncMapIntUint16V(v map[int]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUint32V(rv2i(rv).(map[int]uint32), e)
+}
+func (_ fastpathT) EncMapIntUint32V(v map[int]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUint64V(rv2i(rv).(map[int]uint64), e)
+}
+func (_ fastpathT) EncMapIntUint64V(v map[int]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeUint(uint64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntUintptrV(rv2i(rv).(map[int]uintptr), e)
+}
+func (_ fastpathT) EncMapIntUintptrV(v map[int]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				e.encode(v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntIntV(rv2i(rv).(map[int]int), e)
+}
+func (_ fastpathT) EncMapIntIntV(v map[int]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntInt8V(rv2i(rv).(map[int]int8), e)
+}
+func (_ fastpathT) EncMapIntInt8V(v map[int]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntInt16V(rv2i(rv).(map[int]int16), e)
+}
+func (_ fastpathT) EncMapIntInt16V(v map[int]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntInt32V(rv2i(rv).(map[int]int32), e)
+}
+func (_ fastpathT) EncMapIntInt32V(v map[int]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntInt64V(rv2i(rv).(map[int]int64), e)
+}
+func (_ fastpathT) EncMapIntInt64V(v map[int]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeInt(int64(v[int(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntFloat32V(rv2i(rv).(map[int]float32), e)
+}
+func (_ fastpathT) EncMapIntFloat32V(v map[int]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeFloat32(v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntFloat64V(rv2i(rv).(map[int]float64), e)
+}
+func (_ fastpathT) EncMapIntFloat64V(v map[int]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeFloat64(v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapIntBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapIntBoolV(rv2i(rv).(map[int]bool), e)
+}
+func (_ fastpathT) EncMapIntBoolV(v map[int]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[int(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int(k2)))
+				ee.EncodeBool(v[int(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8IntfV(rv2i(rv).(map[int8]interface{}), e)
+}
+func (_ fastpathT) EncMapInt8IntfV(v map[int8]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				e.encode(v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8StringV(rv2i(rv).(map[int8]string), e)
+}
+func (_ fastpathT) EncMapInt8StringV(v map[int8]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeString(cUTF8, v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8UintV(rv2i(rv).(map[int8]uint), e)
+}
+func (_ fastpathT) EncMapInt8UintV(v map[int8]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Uint8V(rv2i(rv).(map[int8]uint8), e)
+}
+func (_ fastpathT) EncMapInt8Uint8V(v map[int8]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Uint16V(rv2i(rv).(map[int8]uint16), e)
+}
+func (_ fastpathT) EncMapInt8Uint16V(v map[int8]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Uint32V(rv2i(rv).(map[int8]uint32), e)
+}
+func (_ fastpathT) EncMapInt8Uint32V(v map[int8]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Uint64V(rv2i(rv).(map[int8]uint64), e)
+}
+func (_ fastpathT) EncMapInt8Uint64V(v map[int8]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeUint(uint64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8UintptrV(rv2i(rv).(map[int8]uintptr), e)
+}
+func (_ fastpathT) EncMapInt8UintptrV(v map[int8]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				e.encode(v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8IntV(rv2i(rv).(map[int8]int), e)
+}
+func (_ fastpathT) EncMapInt8IntV(v map[int8]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Int8V(rv2i(rv).(map[int8]int8), e)
+}
+func (_ fastpathT) EncMapInt8Int8V(v map[int8]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Int16V(rv2i(rv).(map[int8]int16), e)
+}
+func (_ fastpathT) EncMapInt8Int16V(v map[int8]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Int32V(rv2i(rv).(map[int8]int32), e)
+}
+func (_ fastpathT) EncMapInt8Int32V(v map[int8]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Int64V(rv2i(rv).(map[int8]int64), e)
+}
+func (_ fastpathT) EncMapInt8Int64V(v map[int8]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeInt(int64(v[int8(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Float32V(rv2i(rv).(map[int8]float32), e)
+}
+func (_ fastpathT) EncMapInt8Float32V(v map[int8]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeFloat32(v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8Float64V(rv2i(rv).(map[int8]float64), e)
+}
+func (_ fastpathT) EncMapInt8Float64V(v map[int8]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeFloat64(v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt8BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt8BoolV(rv2i(rv).(map[int8]bool), e)
+}
+func (_ fastpathT) EncMapInt8BoolV(v map[int8]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int8(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[int8(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int8(k2)))
+				ee.EncodeBool(v[int8(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16IntfV(rv2i(rv).(map[int16]interface{}), e)
+}
+func (_ fastpathT) EncMapInt16IntfV(v map[int16]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				e.encode(v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16StringV(rv2i(rv).(map[int16]string), e)
+}
+func (_ fastpathT) EncMapInt16StringV(v map[int16]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeString(cUTF8, v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16UintV(rv2i(rv).(map[int16]uint), e)
+}
+func (_ fastpathT) EncMapInt16UintV(v map[int16]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Uint8V(rv2i(rv).(map[int16]uint8), e)
+}
+func (_ fastpathT) EncMapInt16Uint8V(v map[int16]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Uint16V(rv2i(rv).(map[int16]uint16), e)
+}
+func (_ fastpathT) EncMapInt16Uint16V(v map[int16]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Uint32V(rv2i(rv).(map[int16]uint32), e)
+}
+func (_ fastpathT) EncMapInt16Uint32V(v map[int16]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Uint64V(rv2i(rv).(map[int16]uint64), e)
+}
+func (_ fastpathT) EncMapInt16Uint64V(v map[int16]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeUint(uint64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16UintptrV(rv2i(rv).(map[int16]uintptr), e)
+}
+func (_ fastpathT) EncMapInt16UintptrV(v map[int16]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				e.encode(v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16IntV(rv2i(rv).(map[int16]int), e)
+}
+func (_ fastpathT) EncMapInt16IntV(v map[int16]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Int8V(rv2i(rv).(map[int16]int8), e)
+}
+func (_ fastpathT) EncMapInt16Int8V(v map[int16]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Int16V(rv2i(rv).(map[int16]int16), e)
+}
+func (_ fastpathT) EncMapInt16Int16V(v map[int16]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Int32V(rv2i(rv).(map[int16]int32), e)
+}
+func (_ fastpathT) EncMapInt16Int32V(v map[int16]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Int64V(rv2i(rv).(map[int16]int64), e)
+}
+func (_ fastpathT) EncMapInt16Int64V(v map[int16]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeInt(int64(v[int16(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Float32V(rv2i(rv).(map[int16]float32), e)
+}
+func (_ fastpathT) EncMapInt16Float32V(v map[int16]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeFloat32(v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16Float64V(rv2i(rv).(map[int16]float64), e)
+}
+func (_ fastpathT) EncMapInt16Float64V(v map[int16]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeFloat64(v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt16BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt16BoolV(rv2i(rv).(map[int16]bool), e)
+}
+func (_ fastpathT) EncMapInt16BoolV(v map[int16]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int16(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[int16(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int16(k2)))
+				ee.EncodeBool(v[int16(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32IntfV(rv2i(rv).(map[int32]interface{}), e)
+}
+func (_ fastpathT) EncMapInt32IntfV(v map[int32]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				e.encode(v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32StringV(rv2i(rv).(map[int32]string), e)
+}
+func (_ fastpathT) EncMapInt32StringV(v map[int32]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeString(cUTF8, v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32UintV(rv2i(rv).(map[int32]uint), e)
+}
+func (_ fastpathT) EncMapInt32UintV(v map[int32]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Uint8V(rv2i(rv).(map[int32]uint8), e)
+}
+func (_ fastpathT) EncMapInt32Uint8V(v map[int32]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Uint16V(rv2i(rv).(map[int32]uint16), e)
+}
+func (_ fastpathT) EncMapInt32Uint16V(v map[int32]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Uint32V(rv2i(rv).(map[int32]uint32), e)
+}
+func (_ fastpathT) EncMapInt32Uint32V(v map[int32]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Uint64V(rv2i(rv).(map[int32]uint64), e)
+}
+func (_ fastpathT) EncMapInt32Uint64V(v map[int32]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeUint(uint64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32UintptrV(rv2i(rv).(map[int32]uintptr), e)
+}
+func (_ fastpathT) EncMapInt32UintptrV(v map[int32]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				e.encode(v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32IntV(rv2i(rv).(map[int32]int), e)
+}
+func (_ fastpathT) EncMapInt32IntV(v map[int32]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Int8V(rv2i(rv).(map[int32]int8), e)
+}
+func (_ fastpathT) EncMapInt32Int8V(v map[int32]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Int16V(rv2i(rv).(map[int32]int16), e)
+}
+func (_ fastpathT) EncMapInt32Int16V(v map[int32]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Int32V(rv2i(rv).(map[int32]int32), e)
+}
+func (_ fastpathT) EncMapInt32Int32V(v map[int32]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Int64V(rv2i(rv).(map[int32]int64), e)
+}
+func (_ fastpathT) EncMapInt32Int64V(v map[int32]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeInt(int64(v[int32(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Float32V(rv2i(rv).(map[int32]float32), e)
+}
+func (_ fastpathT) EncMapInt32Float32V(v map[int32]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeFloat32(v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32Float64V(rv2i(rv).(map[int32]float64), e)
+}
+func (_ fastpathT) EncMapInt32Float64V(v map[int32]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeFloat64(v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt32BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt32BoolV(rv2i(rv).(map[int32]bool), e)
+}
+func (_ fastpathT) EncMapInt32BoolV(v map[int32]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int32(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[int32(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int32(k2)))
+				ee.EncodeBool(v[int32(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64IntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64IntfV(rv2i(rv).(map[int64]interface{}), e)
+}
+func (_ fastpathT) EncMapInt64IntfV(v map[int64]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				e.encode(v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64StringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64StringV(rv2i(rv).(map[int64]string), e)
+}
+func (_ fastpathT) EncMapInt64StringV(v map[int64]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeString(cUTF8, v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64UintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64UintV(rv2i(rv).(map[int64]uint), e)
+}
+func (_ fastpathT) EncMapInt64UintV(v map[int64]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Uint8V(rv2i(rv).(map[int64]uint8), e)
+}
+func (_ fastpathT) EncMapInt64Uint8V(v map[int64]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Uint16V(rv2i(rv).(map[int64]uint16), e)
+}
+func (_ fastpathT) EncMapInt64Uint16V(v map[int64]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Uint32V(rv2i(rv).(map[int64]uint32), e)
+}
+func (_ fastpathT) EncMapInt64Uint32V(v map[int64]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Uint64V(rv2i(rv).(map[int64]uint64), e)
+}
+func (_ fastpathT) EncMapInt64Uint64V(v map[int64]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeUint(uint64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64UintptrV(rv2i(rv).(map[int64]uintptr), e)
+}
+func (_ fastpathT) EncMapInt64UintptrV(v map[int64]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				e.encode(v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				e.encode(v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64IntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64IntV(rv2i(rv).(map[int64]int), e)
+}
+func (_ fastpathT) EncMapInt64IntV(v map[int64]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Int8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Int8V(rv2i(rv).(map[int64]int8), e)
+}
+func (_ fastpathT) EncMapInt64Int8V(v map[int64]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Int16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Int16V(rv2i(rv).(map[int64]int16), e)
+}
+func (_ fastpathT) EncMapInt64Int16V(v map[int64]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Int32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Int32V(rv2i(rv).(map[int64]int32), e)
+}
+func (_ fastpathT) EncMapInt64Int32V(v map[int64]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Int64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Int64V(rv2i(rv).(map[int64]int64), e)
+}
+func (_ fastpathT) EncMapInt64Int64V(v map[int64]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeInt(int64(v[int64(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Float32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Float32V(rv2i(rv).(map[int64]float32), e)
+}
+func (_ fastpathT) EncMapInt64Float32V(v map[int64]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeFloat32(v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64Float64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64Float64V(rv2i(rv).(map[int64]float64), e)
+}
+func (_ fastpathT) EncMapInt64Float64V(v map[int64]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeFloat64(v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapInt64BoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapInt64BoolV(rv2i(rv).(map[int64]bool), e)
+}
+func (_ fastpathT) EncMapInt64BoolV(v map[int64]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]int64, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = int64(k)
+			i++
+		}
+		sort.Sort(intSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(int64(k2)))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[int64(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeInt(int64(int64(k2)))
+				ee.EncodeBool(v[int64(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeInt(int64(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeInt(int64(k2))
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolIntfR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolIntfV(rv2i(rv).(map[bool]interface{}), e)
+}
+func (_ fastpathT) EncMapBoolIntfV(v map[bool]interface{}, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				e.encode(v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolStringR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolStringV(rv2i(rv).(map[bool]string), e)
+}
+func (_ fastpathT) EncMapBoolStringV(v map[bool]string, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeString(cUTF8, v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeString(cUTF8, v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeString(cUTF8, v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUintR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUintV(rv2i(rv).(map[bool]uint), e)
+}
+func (_ fastpathT) EncMapBoolUintV(v map[bool]uint, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUint8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUint8V(rv2i(rv).(map[bool]uint8), e)
+}
+func (_ fastpathT) EncMapBoolUint8V(v map[bool]uint8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUint16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUint16V(rv2i(rv).(map[bool]uint16), e)
+}
+func (_ fastpathT) EncMapBoolUint16V(v map[bool]uint16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUint32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUint32V(rv2i(rv).(map[bool]uint32), e)
+}
+func (_ fastpathT) EncMapBoolUint32V(v map[bool]uint32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUint64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUint64V(rv2i(rv).(map[bool]uint64), e)
+}
+func (_ fastpathT) EncMapBoolUint64V(v map[bool]uint64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeUint(uint64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeUint(uint64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeUint(uint64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolUintptrR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolUintptrV(rv2i(rv).(map[bool]uintptr), e)
+}
+func (_ fastpathT) EncMapBoolUintptrV(v map[bool]uintptr, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				e.encode(v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				e.encode(v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				e.encode(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				e.encode(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolIntR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolIntV(rv2i(rv).(map[bool]int), e)
+}
+func (_ fastpathT) EncMapBoolIntV(v map[bool]int, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolInt8R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolInt8V(rv2i(rv).(map[bool]int8), e)
+}
+func (_ fastpathT) EncMapBoolInt8V(v map[bool]int8, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolInt16R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolInt16V(rv2i(rv).(map[bool]int16), e)
+}
+func (_ fastpathT) EncMapBoolInt16V(v map[bool]int16, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolInt32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolInt32V(rv2i(rv).(map[bool]int32), e)
+}
+func (_ fastpathT) EncMapBoolInt32V(v map[bool]int32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolInt64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolInt64V(rv2i(rv).(map[bool]int64), e)
+}
+func (_ fastpathT) EncMapBoolInt64V(v map[bool]int64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeInt(int64(v[bool(k2)]))
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeInt(int64(v2))
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeInt(int64(v2))
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolFloat32R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolFloat32V(rv2i(rv).(map[bool]float32), e)
+}
+func (_ fastpathT) EncMapBoolFloat32V(v map[bool]float32, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeFloat32(v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat32(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeFloat32(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolFloat64R(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolFloat64V(rv2i(rv).(map[bool]float64), e)
+}
+func (_ fastpathT) EncMapBoolFloat64V(v map[bool]float64, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeFloat64(v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeFloat64(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeFloat64(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+func (e *Encoder) fastpathEncMapBoolBoolR(f *codecFnInfo, rv reflect.Value) {
+	fastpathTV.EncMapBoolBoolV(rv2i(rv).(map[bool]bool), e)
+}
+func (_ fastpathT) EncMapBoolBoolV(v map[bool]bool, e *Encoder) {
+	if v == nil {
+		e.e.EncodeNil()
+		return
+	}
+	ee, esep := e.e, e.hh.hasElemSeparators()
+	ee.WriteMapStart(len(v))
+	if e.h.Canonical {
+		v2 := make([]bool, len(v))
+		var i int
+		for k, _ := range v {
+			v2[i] = bool(k)
+			i++
+		}
+		sort.Sort(boolSlice(v2))
+		if esep {
+			for _, k2 := range v2 {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(bool(k2))
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v[bool(k2)])
+			}
+		} else {
+			for _, k2 := range v2 {
+				ee.EncodeBool(bool(k2))
+				ee.EncodeBool(v[bool(k2)])
+			}
+		}
+	} else {
+		if esep {
+			for k2, v2 := range v {
+				ee.WriteMapElemKey()
+				ee.EncodeBool(k2)
+				ee.WriteMapElemValue()
+				ee.EncodeBool(v2)
+			}
+		} else {
+			for k2, v2 := range v {
+				ee.EncodeBool(k2)
+				ee.EncodeBool(v2)
+			}
+		}
+	}
+	ee.WriteMapEnd()
+}
+
+// -- decode
+
+// -- -- fast path type switch
+func fastpathDecodeTypeSwitch(iv interface{}, d *Decoder) bool {
+	var changed bool
+	switch v := iv.(type) {
+
+	case []interface{}:
+		var v2 []interface{}
+		v2, changed = fastpathTV.DecSliceIntfV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]interface{}:
+		var v2 []interface{}
+		v2, changed = fastpathTV.DecSliceIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []string:
+		var v2 []string
+		v2, changed = fastpathTV.DecSliceStringV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]string:
+		var v2 []string
+		v2, changed = fastpathTV.DecSliceStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []float32:
+		var v2 []float32
+		v2, changed = fastpathTV.DecSliceFloat32V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]float32:
+		var v2 []float32
+		v2, changed = fastpathTV.DecSliceFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []float64:
+		var v2 []float64
+		v2, changed = fastpathTV.DecSliceFloat64V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]float64:
+		var v2 []float64
+		v2, changed = fastpathTV.DecSliceFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []uint:
+		var v2 []uint
+		v2, changed = fastpathTV.DecSliceUintV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]uint:
+		var v2 []uint
+		v2, changed = fastpathTV.DecSliceUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []uint16:
+		var v2 []uint16
+		v2, changed = fastpathTV.DecSliceUint16V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]uint16:
+		var v2 []uint16
+		v2, changed = fastpathTV.DecSliceUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []uint32:
+		var v2 []uint32
+		v2, changed = fastpathTV.DecSliceUint32V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]uint32:
+		var v2 []uint32
+		v2, changed = fastpathTV.DecSliceUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []uint64:
+		var v2 []uint64
+		v2, changed = fastpathTV.DecSliceUint64V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]uint64:
+		var v2 []uint64
+		v2, changed = fastpathTV.DecSliceUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []uintptr:
+		var v2 []uintptr
+		v2, changed = fastpathTV.DecSliceUintptrV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]uintptr:
+		var v2 []uintptr
+		v2, changed = fastpathTV.DecSliceUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []int:
+		var v2 []int
+		v2, changed = fastpathTV.DecSliceIntV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]int:
+		var v2 []int
+		v2, changed = fastpathTV.DecSliceIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []int8:
+		var v2 []int8
+		v2, changed = fastpathTV.DecSliceInt8V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]int8:
+		var v2 []int8
+		v2, changed = fastpathTV.DecSliceInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []int16:
+		var v2 []int16
+		v2, changed = fastpathTV.DecSliceInt16V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]int16:
+		var v2 []int16
+		v2, changed = fastpathTV.DecSliceInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []int32:
+		var v2 []int32
+		v2, changed = fastpathTV.DecSliceInt32V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]int32:
+		var v2 []int32
+		v2, changed = fastpathTV.DecSliceInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []int64:
+		var v2 []int64
+		v2, changed = fastpathTV.DecSliceInt64V(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]int64:
+		var v2 []int64
+		v2, changed = fastpathTV.DecSliceInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case []bool:
+		var v2 []bool
+		v2, changed = fastpathTV.DecSliceBoolV(v, false, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	case *[]bool:
+		var v2 []bool
+		v2, changed = fastpathTV.DecSliceBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+
+	case map[interface{}]interface{}:
+		fastpathTV.DecMapIntfIntfV(v, false, d)
+	case *map[interface{}]interface{}:
+		var v2 map[interface{}]interface{}
+		v2, changed = fastpathTV.DecMapIntfIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]string:
+		fastpathTV.DecMapIntfStringV(v, false, d)
+	case *map[interface{}]string:
+		var v2 map[interface{}]string
+		v2, changed = fastpathTV.DecMapIntfStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uint:
+		fastpathTV.DecMapIntfUintV(v, false, d)
+	case *map[interface{}]uint:
+		var v2 map[interface{}]uint
+		v2, changed = fastpathTV.DecMapIntfUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uint8:
+		fastpathTV.DecMapIntfUint8V(v, false, d)
+	case *map[interface{}]uint8:
+		var v2 map[interface{}]uint8
+		v2, changed = fastpathTV.DecMapIntfUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uint16:
+		fastpathTV.DecMapIntfUint16V(v, false, d)
+	case *map[interface{}]uint16:
+		var v2 map[interface{}]uint16
+		v2, changed = fastpathTV.DecMapIntfUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uint32:
+		fastpathTV.DecMapIntfUint32V(v, false, d)
+	case *map[interface{}]uint32:
+		var v2 map[interface{}]uint32
+		v2, changed = fastpathTV.DecMapIntfUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uint64:
+		fastpathTV.DecMapIntfUint64V(v, false, d)
+	case *map[interface{}]uint64:
+		var v2 map[interface{}]uint64
+		v2, changed = fastpathTV.DecMapIntfUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]uintptr:
+		fastpathTV.DecMapIntfUintptrV(v, false, d)
+	case *map[interface{}]uintptr:
+		var v2 map[interface{}]uintptr
+		v2, changed = fastpathTV.DecMapIntfUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]int:
+		fastpathTV.DecMapIntfIntV(v, false, d)
+	case *map[interface{}]int:
+		var v2 map[interface{}]int
+		v2, changed = fastpathTV.DecMapIntfIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]int8:
+		fastpathTV.DecMapIntfInt8V(v, false, d)
+	case *map[interface{}]int8:
+		var v2 map[interface{}]int8
+		v2, changed = fastpathTV.DecMapIntfInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]int16:
+		fastpathTV.DecMapIntfInt16V(v, false, d)
+	case *map[interface{}]int16:
+		var v2 map[interface{}]int16
+		v2, changed = fastpathTV.DecMapIntfInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]int32:
+		fastpathTV.DecMapIntfInt32V(v, false, d)
+	case *map[interface{}]int32:
+		var v2 map[interface{}]int32
+		v2, changed = fastpathTV.DecMapIntfInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]int64:
+		fastpathTV.DecMapIntfInt64V(v, false, d)
+	case *map[interface{}]int64:
+		var v2 map[interface{}]int64
+		v2, changed = fastpathTV.DecMapIntfInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]float32:
+		fastpathTV.DecMapIntfFloat32V(v, false, d)
+	case *map[interface{}]float32:
+		var v2 map[interface{}]float32
+		v2, changed = fastpathTV.DecMapIntfFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]float64:
+		fastpathTV.DecMapIntfFloat64V(v, false, d)
+	case *map[interface{}]float64:
+		var v2 map[interface{}]float64
+		v2, changed = fastpathTV.DecMapIntfFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[interface{}]bool:
+		fastpathTV.DecMapIntfBoolV(v, false, d)
+	case *map[interface{}]bool:
+		var v2 map[interface{}]bool
+		v2, changed = fastpathTV.DecMapIntfBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]interface{}:
+		fastpathTV.DecMapStringIntfV(v, false, d)
+	case *map[string]interface{}:
+		var v2 map[string]interface{}
+		v2, changed = fastpathTV.DecMapStringIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]string:
+		fastpathTV.DecMapStringStringV(v, false, d)
+	case *map[string]string:
+		var v2 map[string]string
+		v2, changed = fastpathTV.DecMapStringStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uint:
+		fastpathTV.DecMapStringUintV(v, false, d)
+	case *map[string]uint:
+		var v2 map[string]uint
+		v2, changed = fastpathTV.DecMapStringUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uint8:
+		fastpathTV.DecMapStringUint8V(v, false, d)
+	case *map[string]uint8:
+		var v2 map[string]uint8
+		v2, changed = fastpathTV.DecMapStringUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uint16:
+		fastpathTV.DecMapStringUint16V(v, false, d)
+	case *map[string]uint16:
+		var v2 map[string]uint16
+		v2, changed = fastpathTV.DecMapStringUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uint32:
+		fastpathTV.DecMapStringUint32V(v, false, d)
+	case *map[string]uint32:
+		var v2 map[string]uint32
+		v2, changed = fastpathTV.DecMapStringUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uint64:
+		fastpathTV.DecMapStringUint64V(v, false, d)
+	case *map[string]uint64:
+		var v2 map[string]uint64
+		v2, changed = fastpathTV.DecMapStringUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]uintptr:
+		fastpathTV.DecMapStringUintptrV(v, false, d)
+	case *map[string]uintptr:
+		var v2 map[string]uintptr
+		v2, changed = fastpathTV.DecMapStringUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]int:
+		fastpathTV.DecMapStringIntV(v, false, d)
+	case *map[string]int:
+		var v2 map[string]int
+		v2, changed = fastpathTV.DecMapStringIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]int8:
+		fastpathTV.DecMapStringInt8V(v, false, d)
+	case *map[string]int8:
+		var v2 map[string]int8
+		v2, changed = fastpathTV.DecMapStringInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]int16:
+		fastpathTV.DecMapStringInt16V(v, false, d)
+	case *map[string]int16:
+		var v2 map[string]int16
+		v2, changed = fastpathTV.DecMapStringInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]int32:
+		fastpathTV.DecMapStringInt32V(v, false, d)
+	case *map[string]int32:
+		var v2 map[string]int32
+		v2, changed = fastpathTV.DecMapStringInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]int64:
+		fastpathTV.DecMapStringInt64V(v, false, d)
+	case *map[string]int64:
+		var v2 map[string]int64
+		v2, changed = fastpathTV.DecMapStringInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]float32:
+		fastpathTV.DecMapStringFloat32V(v, false, d)
+	case *map[string]float32:
+		var v2 map[string]float32
+		v2, changed = fastpathTV.DecMapStringFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]float64:
+		fastpathTV.DecMapStringFloat64V(v, false, d)
+	case *map[string]float64:
+		var v2 map[string]float64
+		v2, changed = fastpathTV.DecMapStringFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[string]bool:
+		fastpathTV.DecMapStringBoolV(v, false, d)
+	case *map[string]bool:
+		var v2 map[string]bool
+		v2, changed = fastpathTV.DecMapStringBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]interface{}:
+		fastpathTV.DecMapFloat32IntfV(v, false, d)
+	case *map[float32]interface{}:
+		var v2 map[float32]interface{}
+		v2, changed = fastpathTV.DecMapFloat32IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]string:
+		fastpathTV.DecMapFloat32StringV(v, false, d)
+	case *map[float32]string:
+		var v2 map[float32]string
+		v2, changed = fastpathTV.DecMapFloat32StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uint:
+		fastpathTV.DecMapFloat32UintV(v, false, d)
+	case *map[float32]uint:
+		var v2 map[float32]uint
+		v2, changed = fastpathTV.DecMapFloat32UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uint8:
+		fastpathTV.DecMapFloat32Uint8V(v, false, d)
+	case *map[float32]uint8:
+		var v2 map[float32]uint8
+		v2, changed = fastpathTV.DecMapFloat32Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uint16:
+		fastpathTV.DecMapFloat32Uint16V(v, false, d)
+	case *map[float32]uint16:
+		var v2 map[float32]uint16
+		v2, changed = fastpathTV.DecMapFloat32Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uint32:
+		fastpathTV.DecMapFloat32Uint32V(v, false, d)
+	case *map[float32]uint32:
+		var v2 map[float32]uint32
+		v2, changed = fastpathTV.DecMapFloat32Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uint64:
+		fastpathTV.DecMapFloat32Uint64V(v, false, d)
+	case *map[float32]uint64:
+		var v2 map[float32]uint64
+		v2, changed = fastpathTV.DecMapFloat32Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]uintptr:
+		fastpathTV.DecMapFloat32UintptrV(v, false, d)
+	case *map[float32]uintptr:
+		var v2 map[float32]uintptr
+		v2, changed = fastpathTV.DecMapFloat32UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]int:
+		fastpathTV.DecMapFloat32IntV(v, false, d)
+	case *map[float32]int:
+		var v2 map[float32]int
+		v2, changed = fastpathTV.DecMapFloat32IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]int8:
+		fastpathTV.DecMapFloat32Int8V(v, false, d)
+	case *map[float32]int8:
+		var v2 map[float32]int8
+		v2, changed = fastpathTV.DecMapFloat32Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]int16:
+		fastpathTV.DecMapFloat32Int16V(v, false, d)
+	case *map[float32]int16:
+		var v2 map[float32]int16
+		v2, changed = fastpathTV.DecMapFloat32Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]int32:
+		fastpathTV.DecMapFloat32Int32V(v, false, d)
+	case *map[float32]int32:
+		var v2 map[float32]int32
+		v2, changed = fastpathTV.DecMapFloat32Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]int64:
+		fastpathTV.DecMapFloat32Int64V(v, false, d)
+	case *map[float32]int64:
+		var v2 map[float32]int64
+		v2, changed = fastpathTV.DecMapFloat32Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]float32:
+		fastpathTV.DecMapFloat32Float32V(v, false, d)
+	case *map[float32]float32:
+		var v2 map[float32]float32
+		v2, changed = fastpathTV.DecMapFloat32Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]float64:
+		fastpathTV.DecMapFloat32Float64V(v, false, d)
+	case *map[float32]float64:
+		var v2 map[float32]float64
+		v2, changed = fastpathTV.DecMapFloat32Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float32]bool:
+		fastpathTV.DecMapFloat32BoolV(v, false, d)
+	case *map[float32]bool:
+		var v2 map[float32]bool
+		v2, changed = fastpathTV.DecMapFloat32BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]interface{}:
+		fastpathTV.DecMapFloat64IntfV(v, false, d)
+	case *map[float64]interface{}:
+		var v2 map[float64]interface{}
+		v2, changed = fastpathTV.DecMapFloat64IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]string:
+		fastpathTV.DecMapFloat64StringV(v, false, d)
+	case *map[float64]string:
+		var v2 map[float64]string
+		v2, changed = fastpathTV.DecMapFloat64StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uint:
+		fastpathTV.DecMapFloat64UintV(v, false, d)
+	case *map[float64]uint:
+		var v2 map[float64]uint
+		v2, changed = fastpathTV.DecMapFloat64UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uint8:
+		fastpathTV.DecMapFloat64Uint8V(v, false, d)
+	case *map[float64]uint8:
+		var v2 map[float64]uint8
+		v2, changed = fastpathTV.DecMapFloat64Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uint16:
+		fastpathTV.DecMapFloat64Uint16V(v, false, d)
+	case *map[float64]uint16:
+		var v2 map[float64]uint16
+		v2, changed = fastpathTV.DecMapFloat64Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uint32:
+		fastpathTV.DecMapFloat64Uint32V(v, false, d)
+	case *map[float64]uint32:
+		var v2 map[float64]uint32
+		v2, changed = fastpathTV.DecMapFloat64Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uint64:
+		fastpathTV.DecMapFloat64Uint64V(v, false, d)
+	case *map[float64]uint64:
+		var v2 map[float64]uint64
+		v2, changed = fastpathTV.DecMapFloat64Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]uintptr:
+		fastpathTV.DecMapFloat64UintptrV(v, false, d)
+	case *map[float64]uintptr:
+		var v2 map[float64]uintptr
+		v2, changed = fastpathTV.DecMapFloat64UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]int:
+		fastpathTV.DecMapFloat64IntV(v, false, d)
+	case *map[float64]int:
+		var v2 map[float64]int
+		v2, changed = fastpathTV.DecMapFloat64IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]int8:
+		fastpathTV.DecMapFloat64Int8V(v, false, d)
+	case *map[float64]int8:
+		var v2 map[float64]int8
+		v2, changed = fastpathTV.DecMapFloat64Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]int16:
+		fastpathTV.DecMapFloat64Int16V(v, false, d)
+	case *map[float64]int16:
+		var v2 map[float64]int16
+		v2, changed = fastpathTV.DecMapFloat64Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]int32:
+		fastpathTV.DecMapFloat64Int32V(v, false, d)
+	case *map[float64]int32:
+		var v2 map[float64]int32
+		v2, changed = fastpathTV.DecMapFloat64Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]int64:
+		fastpathTV.DecMapFloat64Int64V(v, false, d)
+	case *map[float64]int64:
+		var v2 map[float64]int64
+		v2, changed = fastpathTV.DecMapFloat64Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]float32:
+		fastpathTV.DecMapFloat64Float32V(v, false, d)
+	case *map[float64]float32:
+		var v2 map[float64]float32
+		v2, changed = fastpathTV.DecMapFloat64Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]float64:
+		fastpathTV.DecMapFloat64Float64V(v, false, d)
+	case *map[float64]float64:
+		var v2 map[float64]float64
+		v2, changed = fastpathTV.DecMapFloat64Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[float64]bool:
+		fastpathTV.DecMapFloat64BoolV(v, false, d)
+	case *map[float64]bool:
+		var v2 map[float64]bool
+		v2, changed = fastpathTV.DecMapFloat64BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]interface{}:
+		fastpathTV.DecMapUintIntfV(v, false, d)
+	case *map[uint]interface{}:
+		var v2 map[uint]interface{}
+		v2, changed = fastpathTV.DecMapUintIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]string:
+		fastpathTV.DecMapUintStringV(v, false, d)
+	case *map[uint]string:
+		var v2 map[uint]string
+		v2, changed = fastpathTV.DecMapUintStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uint:
+		fastpathTV.DecMapUintUintV(v, false, d)
+	case *map[uint]uint:
+		var v2 map[uint]uint
+		v2, changed = fastpathTV.DecMapUintUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uint8:
+		fastpathTV.DecMapUintUint8V(v, false, d)
+	case *map[uint]uint8:
+		var v2 map[uint]uint8
+		v2, changed = fastpathTV.DecMapUintUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uint16:
+		fastpathTV.DecMapUintUint16V(v, false, d)
+	case *map[uint]uint16:
+		var v2 map[uint]uint16
+		v2, changed = fastpathTV.DecMapUintUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uint32:
+		fastpathTV.DecMapUintUint32V(v, false, d)
+	case *map[uint]uint32:
+		var v2 map[uint]uint32
+		v2, changed = fastpathTV.DecMapUintUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uint64:
+		fastpathTV.DecMapUintUint64V(v, false, d)
+	case *map[uint]uint64:
+		var v2 map[uint]uint64
+		v2, changed = fastpathTV.DecMapUintUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]uintptr:
+		fastpathTV.DecMapUintUintptrV(v, false, d)
+	case *map[uint]uintptr:
+		var v2 map[uint]uintptr
+		v2, changed = fastpathTV.DecMapUintUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]int:
+		fastpathTV.DecMapUintIntV(v, false, d)
+	case *map[uint]int:
+		var v2 map[uint]int
+		v2, changed = fastpathTV.DecMapUintIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]int8:
+		fastpathTV.DecMapUintInt8V(v, false, d)
+	case *map[uint]int8:
+		var v2 map[uint]int8
+		v2, changed = fastpathTV.DecMapUintInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]int16:
+		fastpathTV.DecMapUintInt16V(v, false, d)
+	case *map[uint]int16:
+		var v2 map[uint]int16
+		v2, changed = fastpathTV.DecMapUintInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]int32:
+		fastpathTV.DecMapUintInt32V(v, false, d)
+	case *map[uint]int32:
+		var v2 map[uint]int32
+		v2, changed = fastpathTV.DecMapUintInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]int64:
+		fastpathTV.DecMapUintInt64V(v, false, d)
+	case *map[uint]int64:
+		var v2 map[uint]int64
+		v2, changed = fastpathTV.DecMapUintInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]float32:
+		fastpathTV.DecMapUintFloat32V(v, false, d)
+	case *map[uint]float32:
+		var v2 map[uint]float32
+		v2, changed = fastpathTV.DecMapUintFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]float64:
+		fastpathTV.DecMapUintFloat64V(v, false, d)
+	case *map[uint]float64:
+		var v2 map[uint]float64
+		v2, changed = fastpathTV.DecMapUintFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint]bool:
+		fastpathTV.DecMapUintBoolV(v, false, d)
+	case *map[uint]bool:
+		var v2 map[uint]bool
+		v2, changed = fastpathTV.DecMapUintBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]interface{}:
+		fastpathTV.DecMapUint8IntfV(v, false, d)
+	case *map[uint8]interface{}:
+		var v2 map[uint8]interface{}
+		v2, changed = fastpathTV.DecMapUint8IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]string:
+		fastpathTV.DecMapUint8StringV(v, false, d)
+	case *map[uint8]string:
+		var v2 map[uint8]string
+		v2, changed = fastpathTV.DecMapUint8StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uint:
+		fastpathTV.DecMapUint8UintV(v, false, d)
+	case *map[uint8]uint:
+		var v2 map[uint8]uint
+		v2, changed = fastpathTV.DecMapUint8UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uint8:
+		fastpathTV.DecMapUint8Uint8V(v, false, d)
+	case *map[uint8]uint8:
+		var v2 map[uint8]uint8
+		v2, changed = fastpathTV.DecMapUint8Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uint16:
+		fastpathTV.DecMapUint8Uint16V(v, false, d)
+	case *map[uint8]uint16:
+		var v2 map[uint8]uint16
+		v2, changed = fastpathTV.DecMapUint8Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uint32:
+		fastpathTV.DecMapUint8Uint32V(v, false, d)
+	case *map[uint8]uint32:
+		var v2 map[uint8]uint32
+		v2, changed = fastpathTV.DecMapUint8Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uint64:
+		fastpathTV.DecMapUint8Uint64V(v, false, d)
+	case *map[uint8]uint64:
+		var v2 map[uint8]uint64
+		v2, changed = fastpathTV.DecMapUint8Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]uintptr:
+		fastpathTV.DecMapUint8UintptrV(v, false, d)
+	case *map[uint8]uintptr:
+		var v2 map[uint8]uintptr
+		v2, changed = fastpathTV.DecMapUint8UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]int:
+		fastpathTV.DecMapUint8IntV(v, false, d)
+	case *map[uint8]int:
+		var v2 map[uint8]int
+		v2, changed = fastpathTV.DecMapUint8IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]int8:
+		fastpathTV.DecMapUint8Int8V(v, false, d)
+	case *map[uint8]int8:
+		var v2 map[uint8]int8
+		v2, changed = fastpathTV.DecMapUint8Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]int16:
+		fastpathTV.DecMapUint8Int16V(v, false, d)
+	case *map[uint8]int16:
+		var v2 map[uint8]int16
+		v2, changed = fastpathTV.DecMapUint8Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]int32:
+		fastpathTV.DecMapUint8Int32V(v, false, d)
+	case *map[uint8]int32:
+		var v2 map[uint8]int32
+		v2, changed = fastpathTV.DecMapUint8Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]int64:
+		fastpathTV.DecMapUint8Int64V(v, false, d)
+	case *map[uint8]int64:
+		var v2 map[uint8]int64
+		v2, changed = fastpathTV.DecMapUint8Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]float32:
+		fastpathTV.DecMapUint8Float32V(v, false, d)
+	case *map[uint8]float32:
+		var v2 map[uint8]float32
+		v2, changed = fastpathTV.DecMapUint8Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]float64:
+		fastpathTV.DecMapUint8Float64V(v, false, d)
+	case *map[uint8]float64:
+		var v2 map[uint8]float64
+		v2, changed = fastpathTV.DecMapUint8Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint8]bool:
+		fastpathTV.DecMapUint8BoolV(v, false, d)
+	case *map[uint8]bool:
+		var v2 map[uint8]bool
+		v2, changed = fastpathTV.DecMapUint8BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]interface{}:
+		fastpathTV.DecMapUint16IntfV(v, false, d)
+	case *map[uint16]interface{}:
+		var v2 map[uint16]interface{}
+		v2, changed = fastpathTV.DecMapUint16IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]string:
+		fastpathTV.DecMapUint16StringV(v, false, d)
+	case *map[uint16]string:
+		var v2 map[uint16]string
+		v2, changed = fastpathTV.DecMapUint16StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uint:
+		fastpathTV.DecMapUint16UintV(v, false, d)
+	case *map[uint16]uint:
+		var v2 map[uint16]uint
+		v2, changed = fastpathTV.DecMapUint16UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uint8:
+		fastpathTV.DecMapUint16Uint8V(v, false, d)
+	case *map[uint16]uint8:
+		var v2 map[uint16]uint8
+		v2, changed = fastpathTV.DecMapUint16Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uint16:
+		fastpathTV.DecMapUint16Uint16V(v, false, d)
+	case *map[uint16]uint16:
+		var v2 map[uint16]uint16
+		v2, changed = fastpathTV.DecMapUint16Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uint32:
+		fastpathTV.DecMapUint16Uint32V(v, false, d)
+	case *map[uint16]uint32:
+		var v2 map[uint16]uint32
+		v2, changed = fastpathTV.DecMapUint16Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uint64:
+		fastpathTV.DecMapUint16Uint64V(v, false, d)
+	case *map[uint16]uint64:
+		var v2 map[uint16]uint64
+		v2, changed = fastpathTV.DecMapUint16Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]uintptr:
+		fastpathTV.DecMapUint16UintptrV(v, false, d)
+	case *map[uint16]uintptr:
+		var v2 map[uint16]uintptr
+		v2, changed = fastpathTV.DecMapUint16UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]int:
+		fastpathTV.DecMapUint16IntV(v, false, d)
+	case *map[uint16]int:
+		var v2 map[uint16]int
+		v2, changed = fastpathTV.DecMapUint16IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]int8:
+		fastpathTV.DecMapUint16Int8V(v, false, d)
+	case *map[uint16]int8:
+		var v2 map[uint16]int8
+		v2, changed = fastpathTV.DecMapUint16Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]int16:
+		fastpathTV.DecMapUint16Int16V(v, false, d)
+	case *map[uint16]int16:
+		var v2 map[uint16]int16
+		v2, changed = fastpathTV.DecMapUint16Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]int32:
+		fastpathTV.DecMapUint16Int32V(v, false, d)
+	case *map[uint16]int32:
+		var v2 map[uint16]int32
+		v2, changed = fastpathTV.DecMapUint16Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]int64:
+		fastpathTV.DecMapUint16Int64V(v, false, d)
+	case *map[uint16]int64:
+		var v2 map[uint16]int64
+		v2, changed = fastpathTV.DecMapUint16Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]float32:
+		fastpathTV.DecMapUint16Float32V(v, false, d)
+	case *map[uint16]float32:
+		var v2 map[uint16]float32
+		v2, changed = fastpathTV.DecMapUint16Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]float64:
+		fastpathTV.DecMapUint16Float64V(v, false, d)
+	case *map[uint16]float64:
+		var v2 map[uint16]float64
+		v2, changed = fastpathTV.DecMapUint16Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint16]bool:
+		fastpathTV.DecMapUint16BoolV(v, false, d)
+	case *map[uint16]bool:
+		var v2 map[uint16]bool
+		v2, changed = fastpathTV.DecMapUint16BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]interface{}:
+		fastpathTV.DecMapUint32IntfV(v, false, d)
+	case *map[uint32]interface{}:
+		var v2 map[uint32]interface{}
+		v2, changed = fastpathTV.DecMapUint32IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]string:
+		fastpathTV.DecMapUint32StringV(v, false, d)
+	case *map[uint32]string:
+		var v2 map[uint32]string
+		v2, changed = fastpathTV.DecMapUint32StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uint:
+		fastpathTV.DecMapUint32UintV(v, false, d)
+	case *map[uint32]uint:
+		var v2 map[uint32]uint
+		v2, changed = fastpathTV.DecMapUint32UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uint8:
+		fastpathTV.DecMapUint32Uint8V(v, false, d)
+	case *map[uint32]uint8:
+		var v2 map[uint32]uint8
+		v2, changed = fastpathTV.DecMapUint32Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uint16:
+		fastpathTV.DecMapUint32Uint16V(v, false, d)
+	case *map[uint32]uint16:
+		var v2 map[uint32]uint16
+		v2, changed = fastpathTV.DecMapUint32Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uint32:
+		fastpathTV.DecMapUint32Uint32V(v, false, d)
+	case *map[uint32]uint32:
+		var v2 map[uint32]uint32
+		v2, changed = fastpathTV.DecMapUint32Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uint64:
+		fastpathTV.DecMapUint32Uint64V(v, false, d)
+	case *map[uint32]uint64:
+		var v2 map[uint32]uint64
+		v2, changed = fastpathTV.DecMapUint32Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]uintptr:
+		fastpathTV.DecMapUint32UintptrV(v, false, d)
+	case *map[uint32]uintptr:
+		var v2 map[uint32]uintptr
+		v2, changed = fastpathTV.DecMapUint32UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]int:
+		fastpathTV.DecMapUint32IntV(v, false, d)
+	case *map[uint32]int:
+		var v2 map[uint32]int
+		v2, changed = fastpathTV.DecMapUint32IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]int8:
+		fastpathTV.DecMapUint32Int8V(v, false, d)
+	case *map[uint32]int8:
+		var v2 map[uint32]int8
+		v2, changed = fastpathTV.DecMapUint32Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]int16:
+		fastpathTV.DecMapUint32Int16V(v, false, d)
+	case *map[uint32]int16:
+		var v2 map[uint32]int16
+		v2, changed = fastpathTV.DecMapUint32Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]int32:
+		fastpathTV.DecMapUint32Int32V(v, false, d)
+	case *map[uint32]int32:
+		var v2 map[uint32]int32
+		v2, changed = fastpathTV.DecMapUint32Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]int64:
+		fastpathTV.DecMapUint32Int64V(v, false, d)
+	case *map[uint32]int64:
+		var v2 map[uint32]int64
+		v2, changed = fastpathTV.DecMapUint32Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]float32:
+		fastpathTV.DecMapUint32Float32V(v, false, d)
+	case *map[uint32]float32:
+		var v2 map[uint32]float32
+		v2, changed = fastpathTV.DecMapUint32Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]float64:
+		fastpathTV.DecMapUint32Float64V(v, false, d)
+	case *map[uint32]float64:
+		var v2 map[uint32]float64
+		v2, changed = fastpathTV.DecMapUint32Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint32]bool:
+		fastpathTV.DecMapUint32BoolV(v, false, d)
+	case *map[uint32]bool:
+		var v2 map[uint32]bool
+		v2, changed = fastpathTV.DecMapUint32BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]interface{}:
+		fastpathTV.DecMapUint64IntfV(v, false, d)
+	case *map[uint64]interface{}:
+		var v2 map[uint64]interface{}
+		v2, changed = fastpathTV.DecMapUint64IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]string:
+		fastpathTV.DecMapUint64StringV(v, false, d)
+	case *map[uint64]string:
+		var v2 map[uint64]string
+		v2, changed = fastpathTV.DecMapUint64StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uint:
+		fastpathTV.DecMapUint64UintV(v, false, d)
+	case *map[uint64]uint:
+		var v2 map[uint64]uint
+		v2, changed = fastpathTV.DecMapUint64UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uint8:
+		fastpathTV.DecMapUint64Uint8V(v, false, d)
+	case *map[uint64]uint8:
+		var v2 map[uint64]uint8
+		v2, changed = fastpathTV.DecMapUint64Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uint16:
+		fastpathTV.DecMapUint64Uint16V(v, false, d)
+	case *map[uint64]uint16:
+		var v2 map[uint64]uint16
+		v2, changed = fastpathTV.DecMapUint64Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uint32:
+		fastpathTV.DecMapUint64Uint32V(v, false, d)
+	case *map[uint64]uint32:
+		var v2 map[uint64]uint32
+		v2, changed = fastpathTV.DecMapUint64Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uint64:
+		fastpathTV.DecMapUint64Uint64V(v, false, d)
+	case *map[uint64]uint64:
+		var v2 map[uint64]uint64
+		v2, changed = fastpathTV.DecMapUint64Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]uintptr:
+		fastpathTV.DecMapUint64UintptrV(v, false, d)
+	case *map[uint64]uintptr:
+		var v2 map[uint64]uintptr
+		v2, changed = fastpathTV.DecMapUint64UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]int:
+		fastpathTV.DecMapUint64IntV(v, false, d)
+	case *map[uint64]int:
+		var v2 map[uint64]int
+		v2, changed = fastpathTV.DecMapUint64IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]int8:
+		fastpathTV.DecMapUint64Int8V(v, false, d)
+	case *map[uint64]int8:
+		var v2 map[uint64]int8
+		v2, changed = fastpathTV.DecMapUint64Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]int16:
+		fastpathTV.DecMapUint64Int16V(v, false, d)
+	case *map[uint64]int16:
+		var v2 map[uint64]int16
+		v2, changed = fastpathTV.DecMapUint64Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]int32:
+		fastpathTV.DecMapUint64Int32V(v, false, d)
+	case *map[uint64]int32:
+		var v2 map[uint64]int32
+		v2, changed = fastpathTV.DecMapUint64Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]int64:
+		fastpathTV.DecMapUint64Int64V(v, false, d)
+	case *map[uint64]int64:
+		var v2 map[uint64]int64
+		v2, changed = fastpathTV.DecMapUint64Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]float32:
+		fastpathTV.DecMapUint64Float32V(v, false, d)
+	case *map[uint64]float32:
+		var v2 map[uint64]float32
+		v2, changed = fastpathTV.DecMapUint64Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]float64:
+		fastpathTV.DecMapUint64Float64V(v, false, d)
+	case *map[uint64]float64:
+		var v2 map[uint64]float64
+		v2, changed = fastpathTV.DecMapUint64Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uint64]bool:
+		fastpathTV.DecMapUint64BoolV(v, false, d)
+	case *map[uint64]bool:
+		var v2 map[uint64]bool
+		v2, changed = fastpathTV.DecMapUint64BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]interface{}:
+		fastpathTV.DecMapUintptrIntfV(v, false, d)
+	case *map[uintptr]interface{}:
+		var v2 map[uintptr]interface{}
+		v2, changed = fastpathTV.DecMapUintptrIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]string:
+		fastpathTV.DecMapUintptrStringV(v, false, d)
+	case *map[uintptr]string:
+		var v2 map[uintptr]string
+		v2, changed = fastpathTV.DecMapUintptrStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uint:
+		fastpathTV.DecMapUintptrUintV(v, false, d)
+	case *map[uintptr]uint:
+		var v2 map[uintptr]uint
+		v2, changed = fastpathTV.DecMapUintptrUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uint8:
+		fastpathTV.DecMapUintptrUint8V(v, false, d)
+	case *map[uintptr]uint8:
+		var v2 map[uintptr]uint8
+		v2, changed = fastpathTV.DecMapUintptrUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uint16:
+		fastpathTV.DecMapUintptrUint16V(v, false, d)
+	case *map[uintptr]uint16:
+		var v2 map[uintptr]uint16
+		v2, changed = fastpathTV.DecMapUintptrUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uint32:
+		fastpathTV.DecMapUintptrUint32V(v, false, d)
+	case *map[uintptr]uint32:
+		var v2 map[uintptr]uint32
+		v2, changed = fastpathTV.DecMapUintptrUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uint64:
+		fastpathTV.DecMapUintptrUint64V(v, false, d)
+	case *map[uintptr]uint64:
+		var v2 map[uintptr]uint64
+		v2, changed = fastpathTV.DecMapUintptrUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]uintptr:
+		fastpathTV.DecMapUintptrUintptrV(v, false, d)
+	case *map[uintptr]uintptr:
+		var v2 map[uintptr]uintptr
+		v2, changed = fastpathTV.DecMapUintptrUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]int:
+		fastpathTV.DecMapUintptrIntV(v, false, d)
+	case *map[uintptr]int:
+		var v2 map[uintptr]int
+		v2, changed = fastpathTV.DecMapUintptrIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]int8:
+		fastpathTV.DecMapUintptrInt8V(v, false, d)
+	case *map[uintptr]int8:
+		var v2 map[uintptr]int8
+		v2, changed = fastpathTV.DecMapUintptrInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]int16:
+		fastpathTV.DecMapUintptrInt16V(v, false, d)
+	case *map[uintptr]int16:
+		var v2 map[uintptr]int16
+		v2, changed = fastpathTV.DecMapUintptrInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]int32:
+		fastpathTV.DecMapUintptrInt32V(v, false, d)
+	case *map[uintptr]int32:
+		var v2 map[uintptr]int32
+		v2, changed = fastpathTV.DecMapUintptrInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]int64:
+		fastpathTV.DecMapUintptrInt64V(v, false, d)
+	case *map[uintptr]int64:
+		var v2 map[uintptr]int64
+		v2, changed = fastpathTV.DecMapUintptrInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]float32:
+		fastpathTV.DecMapUintptrFloat32V(v, false, d)
+	case *map[uintptr]float32:
+		var v2 map[uintptr]float32
+		v2, changed = fastpathTV.DecMapUintptrFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]float64:
+		fastpathTV.DecMapUintptrFloat64V(v, false, d)
+	case *map[uintptr]float64:
+		var v2 map[uintptr]float64
+		v2, changed = fastpathTV.DecMapUintptrFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[uintptr]bool:
+		fastpathTV.DecMapUintptrBoolV(v, false, d)
+	case *map[uintptr]bool:
+		var v2 map[uintptr]bool
+		v2, changed = fastpathTV.DecMapUintptrBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]interface{}:
+		fastpathTV.DecMapIntIntfV(v, false, d)
+	case *map[int]interface{}:
+		var v2 map[int]interface{}
+		v2, changed = fastpathTV.DecMapIntIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]string:
+		fastpathTV.DecMapIntStringV(v, false, d)
+	case *map[int]string:
+		var v2 map[int]string
+		v2, changed = fastpathTV.DecMapIntStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uint:
+		fastpathTV.DecMapIntUintV(v, false, d)
+	case *map[int]uint:
+		var v2 map[int]uint
+		v2, changed = fastpathTV.DecMapIntUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uint8:
+		fastpathTV.DecMapIntUint8V(v, false, d)
+	case *map[int]uint8:
+		var v2 map[int]uint8
+		v2, changed = fastpathTV.DecMapIntUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uint16:
+		fastpathTV.DecMapIntUint16V(v, false, d)
+	case *map[int]uint16:
+		var v2 map[int]uint16
+		v2, changed = fastpathTV.DecMapIntUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uint32:
+		fastpathTV.DecMapIntUint32V(v, false, d)
+	case *map[int]uint32:
+		var v2 map[int]uint32
+		v2, changed = fastpathTV.DecMapIntUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uint64:
+		fastpathTV.DecMapIntUint64V(v, false, d)
+	case *map[int]uint64:
+		var v2 map[int]uint64
+		v2, changed = fastpathTV.DecMapIntUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]uintptr:
+		fastpathTV.DecMapIntUintptrV(v, false, d)
+	case *map[int]uintptr:
+		var v2 map[int]uintptr
+		v2, changed = fastpathTV.DecMapIntUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]int:
+		fastpathTV.DecMapIntIntV(v, false, d)
+	case *map[int]int:
+		var v2 map[int]int
+		v2, changed = fastpathTV.DecMapIntIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]int8:
+		fastpathTV.DecMapIntInt8V(v, false, d)
+	case *map[int]int8:
+		var v2 map[int]int8
+		v2, changed = fastpathTV.DecMapIntInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]int16:
+		fastpathTV.DecMapIntInt16V(v, false, d)
+	case *map[int]int16:
+		var v2 map[int]int16
+		v2, changed = fastpathTV.DecMapIntInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]int32:
+		fastpathTV.DecMapIntInt32V(v, false, d)
+	case *map[int]int32:
+		var v2 map[int]int32
+		v2, changed = fastpathTV.DecMapIntInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]int64:
+		fastpathTV.DecMapIntInt64V(v, false, d)
+	case *map[int]int64:
+		var v2 map[int]int64
+		v2, changed = fastpathTV.DecMapIntInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]float32:
+		fastpathTV.DecMapIntFloat32V(v, false, d)
+	case *map[int]float32:
+		var v2 map[int]float32
+		v2, changed = fastpathTV.DecMapIntFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]float64:
+		fastpathTV.DecMapIntFloat64V(v, false, d)
+	case *map[int]float64:
+		var v2 map[int]float64
+		v2, changed = fastpathTV.DecMapIntFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int]bool:
+		fastpathTV.DecMapIntBoolV(v, false, d)
+	case *map[int]bool:
+		var v2 map[int]bool
+		v2, changed = fastpathTV.DecMapIntBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]interface{}:
+		fastpathTV.DecMapInt8IntfV(v, false, d)
+	case *map[int8]interface{}:
+		var v2 map[int8]interface{}
+		v2, changed = fastpathTV.DecMapInt8IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]string:
+		fastpathTV.DecMapInt8StringV(v, false, d)
+	case *map[int8]string:
+		var v2 map[int8]string
+		v2, changed = fastpathTV.DecMapInt8StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uint:
+		fastpathTV.DecMapInt8UintV(v, false, d)
+	case *map[int8]uint:
+		var v2 map[int8]uint
+		v2, changed = fastpathTV.DecMapInt8UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uint8:
+		fastpathTV.DecMapInt8Uint8V(v, false, d)
+	case *map[int8]uint8:
+		var v2 map[int8]uint8
+		v2, changed = fastpathTV.DecMapInt8Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uint16:
+		fastpathTV.DecMapInt8Uint16V(v, false, d)
+	case *map[int8]uint16:
+		var v2 map[int8]uint16
+		v2, changed = fastpathTV.DecMapInt8Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uint32:
+		fastpathTV.DecMapInt8Uint32V(v, false, d)
+	case *map[int8]uint32:
+		var v2 map[int8]uint32
+		v2, changed = fastpathTV.DecMapInt8Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uint64:
+		fastpathTV.DecMapInt8Uint64V(v, false, d)
+	case *map[int8]uint64:
+		var v2 map[int8]uint64
+		v2, changed = fastpathTV.DecMapInt8Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]uintptr:
+		fastpathTV.DecMapInt8UintptrV(v, false, d)
+	case *map[int8]uintptr:
+		var v2 map[int8]uintptr
+		v2, changed = fastpathTV.DecMapInt8UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]int:
+		fastpathTV.DecMapInt8IntV(v, false, d)
+	case *map[int8]int:
+		var v2 map[int8]int
+		v2, changed = fastpathTV.DecMapInt8IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]int8:
+		fastpathTV.DecMapInt8Int8V(v, false, d)
+	case *map[int8]int8:
+		var v2 map[int8]int8
+		v2, changed = fastpathTV.DecMapInt8Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]int16:
+		fastpathTV.DecMapInt8Int16V(v, false, d)
+	case *map[int8]int16:
+		var v2 map[int8]int16
+		v2, changed = fastpathTV.DecMapInt8Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]int32:
+		fastpathTV.DecMapInt8Int32V(v, false, d)
+	case *map[int8]int32:
+		var v2 map[int8]int32
+		v2, changed = fastpathTV.DecMapInt8Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]int64:
+		fastpathTV.DecMapInt8Int64V(v, false, d)
+	case *map[int8]int64:
+		var v2 map[int8]int64
+		v2, changed = fastpathTV.DecMapInt8Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]float32:
+		fastpathTV.DecMapInt8Float32V(v, false, d)
+	case *map[int8]float32:
+		var v2 map[int8]float32
+		v2, changed = fastpathTV.DecMapInt8Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]float64:
+		fastpathTV.DecMapInt8Float64V(v, false, d)
+	case *map[int8]float64:
+		var v2 map[int8]float64
+		v2, changed = fastpathTV.DecMapInt8Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int8]bool:
+		fastpathTV.DecMapInt8BoolV(v, false, d)
+	case *map[int8]bool:
+		var v2 map[int8]bool
+		v2, changed = fastpathTV.DecMapInt8BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]interface{}:
+		fastpathTV.DecMapInt16IntfV(v, false, d)
+	case *map[int16]interface{}:
+		var v2 map[int16]interface{}
+		v2, changed = fastpathTV.DecMapInt16IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]string:
+		fastpathTV.DecMapInt16StringV(v, false, d)
+	case *map[int16]string:
+		var v2 map[int16]string
+		v2, changed = fastpathTV.DecMapInt16StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uint:
+		fastpathTV.DecMapInt16UintV(v, false, d)
+	case *map[int16]uint:
+		var v2 map[int16]uint
+		v2, changed = fastpathTV.DecMapInt16UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uint8:
+		fastpathTV.DecMapInt16Uint8V(v, false, d)
+	case *map[int16]uint8:
+		var v2 map[int16]uint8
+		v2, changed = fastpathTV.DecMapInt16Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uint16:
+		fastpathTV.DecMapInt16Uint16V(v, false, d)
+	case *map[int16]uint16:
+		var v2 map[int16]uint16
+		v2, changed = fastpathTV.DecMapInt16Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uint32:
+		fastpathTV.DecMapInt16Uint32V(v, false, d)
+	case *map[int16]uint32:
+		var v2 map[int16]uint32
+		v2, changed = fastpathTV.DecMapInt16Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uint64:
+		fastpathTV.DecMapInt16Uint64V(v, false, d)
+	case *map[int16]uint64:
+		var v2 map[int16]uint64
+		v2, changed = fastpathTV.DecMapInt16Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]uintptr:
+		fastpathTV.DecMapInt16UintptrV(v, false, d)
+	case *map[int16]uintptr:
+		var v2 map[int16]uintptr
+		v2, changed = fastpathTV.DecMapInt16UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]int:
+		fastpathTV.DecMapInt16IntV(v, false, d)
+	case *map[int16]int:
+		var v2 map[int16]int
+		v2, changed = fastpathTV.DecMapInt16IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]int8:
+		fastpathTV.DecMapInt16Int8V(v, false, d)
+	case *map[int16]int8:
+		var v2 map[int16]int8
+		v2, changed = fastpathTV.DecMapInt16Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]int16:
+		fastpathTV.DecMapInt16Int16V(v, false, d)
+	case *map[int16]int16:
+		var v2 map[int16]int16
+		v2, changed = fastpathTV.DecMapInt16Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]int32:
+		fastpathTV.DecMapInt16Int32V(v, false, d)
+	case *map[int16]int32:
+		var v2 map[int16]int32
+		v2, changed = fastpathTV.DecMapInt16Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]int64:
+		fastpathTV.DecMapInt16Int64V(v, false, d)
+	case *map[int16]int64:
+		var v2 map[int16]int64
+		v2, changed = fastpathTV.DecMapInt16Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]float32:
+		fastpathTV.DecMapInt16Float32V(v, false, d)
+	case *map[int16]float32:
+		var v2 map[int16]float32
+		v2, changed = fastpathTV.DecMapInt16Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]float64:
+		fastpathTV.DecMapInt16Float64V(v, false, d)
+	case *map[int16]float64:
+		var v2 map[int16]float64
+		v2, changed = fastpathTV.DecMapInt16Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int16]bool:
+		fastpathTV.DecMapInt16BoolV(v, false, d)
+	case *map[int16]bool:
+		var v2 map[int16]bool
+		v2, changed = fastpathTV.DecMapInt16BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]interface{}:
+		fastpathTV.DecMapInt32IntfV(v, false, d)
+	case *map[int32]interface{}:
+		var v2 map[int32]interface{}
+		v2, changed = fastpathTV.DecMapInt32IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]string:
+		fastpathTV.DecMapInt32StringV(v, false, d)
+	case *map[int32]string:
+		var v2 map[int32]string
+		v2, changed = fastpathTV.DecMapInt32StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uint:
+		fastpathTV.DecMapInt32UintV(v, false, d)
+	case *map[int32]uint:
+		var v2 map[int32]uint
+		v2, changed = fastpathTV.DecMapInt32UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uint8:
+		fastpathTV.DecMapInt32Uint8V(v, false, d)
+	case *map[int32]uint8:
+		var v2 map[int32]uint8
+		v2, changed = fastpathTV.DecMapInt32Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uint16:
+		fastpathTV.DecMapInt32Uint16V(v, false, d)
+	case *map[int32]uint16:
+		var v2 map[int32]uint16
+		v2, changed = fastpathTV.DecMapInt32Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uint32:
+		fastpathTV.DecMapInt32Uint32V(v, false, d)
+	case *map[int32]uint32:
+		var v2 map[int32]uint32
+		v2, changed = fastpathTV.DecMapInt32Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uint64:
+		fastpathTV.DecMapInt32Uint64V(v, false, d)
+	case *map[int32]uint64:
+		var v2 map[int32]uint64
+		v2, changed = fastpathTV.DecMapInt32Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]uintptr:
+		fastpathTV.DecMapInt32UintptrV(v, false, d)
+	case *map[int32]uintptr:
+		var v2 map[int32]uintptr
+		v2, changed = fastpathTV.DecMapInt32UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]int:
+		fastpathTV.DecMapInt32IntV(v, false, d)
+	case *map[int32]int:
+		var v2 map[int32]int
+		v2, changed = fastpathTV.DecMapInt32IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]int8:
+		fastpathTV.DecMapInt32Int8V(v, false, d)
+	case *map[int32]int8:
+		var v2 map[int32]int8
+		v2, changed = fastpathTV.DecMapInt32Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]int16:
+		fastpathTV.DecMapInt32Int16V(v, false, d)
+	case *map[int32]int16:
+		var v2 map[int32]int16
+		v2, changed = fastpathTV.DecMapInt32Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]int32:
+		fastpathTV.DecMapInt32Int32V(v, false, d)
+	case *map[int32]int32:
+		var v2 map[int32]int32
+		v2, changed = fastpathTV.DecMapInt32Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]int64:
+		fastpathTV.DecMapInt32Int64V(v, false, d)
+	case *map[int32]int64:
+		var v2 map[int32]int64
+		v2, changed = fastpathTV.DecMapInt32Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]float32:
+		fastpathTV.DecMapInt32Float32V(v, false, d)
+	case *map[int32]float32:
+		var v2 map[int32]float32
+		v2, changed = fastpathTV.DecMapInt32Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]float64:
+		fastpathTV.DecMapInt32Float64V(v, false, d)
+	case *map[int32]float64:
+		var v2 map[int32]float64
+		v2, changed = fastpathTV.DecMapInt32Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int32]bool:
+		fastpathTV.DecMapInt32BoolV(v, false, d)
+	case *map[int32]bool:
+		var v2 map[int32]bool
+		v2, changed = fastpathTV.DecMapInt32BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]interface{}:
+		fastpathTV.DecMapInt64IntfV(v, false, d)
+	case *map[int64]interface{}:
+		var v2 map[int64]interface{}
+		v2, changed = fastpathTV.DecMapInt64IntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]string:
+		fastpathTV.DecMapInt64StringV(v, false, d)
+	case *map[int64]string:
+		var v2 map[int64]string
+		v2, changed = fastpathTV.DecMapInt64StringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uint:
+		fastpathTV.DecMapInt64UintV(v, false, d)
+	case *map[int64]uint:
+		var v2 map[int64]uint
+		v2, changed = fastpathTV.DecMapInt64UintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uint8:
+		fastpathTV.DecMapInt64Uint8V(v, false, d)
+	case *map[int64]uint8:
+		var v2 map[int64]uint8
+		v2, changed = fastpathTV.DecMapInt64Uint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uint16:
+		fastpathTV.DecMapInt64Uint16V(v, false, d)
+	case *map[int64]uint16:
+		var v2 map[int64]uint16
+		v2, changed = fastpathTV.DecMapInt64Uint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uint32:
+		fastpathTV.DecMapInt64Uint32V(v, false, d)
+	case *map[int64]uint32:
+		var v2 map[int64]uint32
+		v2, changed = fastpathTV.DecMapInt64Uint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uint64:
+		fastpathTV.DecMapInt64Uint64V(v, false, d)
+	case *map[int64]uint64:
+		var v2 map[int64]uint64
+		v2, changed = fastpathTV.DecMapInt64Uint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]uintptr:
+		fastpathTV.DecMapInt64UintptrV(v, false, d)
+	case *map[int64]uintptr:
+		var v2 map[int64]uintptr
+		v2, changed = fastpathTV.DecMapInt64UintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]int:
+		fastpathTV.DecMapInt64IntV(v, false, d)
+	case *map[int64]int:
+		var v2 map[int64]int
+		v2, changed = fastpathTV.DecMapInt64IntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]int8:
+		fastpathTV.DecMapInt64Int8V(v, false, d)
+	case *map[int64]int8:
+		var v2 map[int64]int8
+		v2, changed = fastpathTV.DecMapInt64Int8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]int16:
+		fastpathTV.DecMapInt64Int16V(v, false, d)
+	case *map[int64]int16:
+		var v2 map[int64]int16
+		v2, changed = fastpathTV.DecMapInt64Int16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]int32:
+		fastpathTV.DecMapInt64Int32V(v, false, d)
+	case *map[int64]int32:
+		var v2 map[int64]int32
+		v2, changed = fastpathTV.DecMapInt64Int32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]int64:
+		fastpathTV.DecMapInt64Int64V(v, false, d)
+	case *map[int64]int64:
+		var v2 map[int64]int64
+		v2, changed = fastpathTV.DecMapInt64Int64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]float32:
+		fastpathTV.DecMapInt64Float32V(v, false, d)
+	case *map[int64]float32:
+		var v2 map[int64]float32
+		v2, changed = fastpathTV.DecMapInt64Float32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]float64:
+		fastpathTV.DecMapInt64Float64V(v, false, d)
+	case *map[int64]float64:
+		var v2 map[int64]float64
+		v2, changed = fastpathTV.DecMapInt64Float64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[int64]bool:
+		fastpathTV.DecMapInt64BoolV(v, false, d)
+	case *map[int64]bool:
+		var v2 map[int64]bool
+		v2, changed = fastpathTV.DecMapInt64BoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]interface{}:
+		fastpathTV.DecMapBoolIntfV(v, false, d)
+	case *map[bool]interface{}:
+		var v2 map[bool]interface{}
+		v2, changed = fastpathTV.DecMapBoolIntfV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]string:
+		fastpathTV.DecMapBoolStringV(v, false, d)
+	case *map[bool]string:
+		var v2 map[bool]string
+		v2, changed = fastpathTV.DecMapBoolStringV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uint:
+		fastpathTV.DecMapBoolUintV(v, false, d)
+	case *map[bool]uint:
+		var v2 map[bool]uint
+		v2, changed = fastpathTV.DecMapBoolUintV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uint8:
+		fastpathTV.DecMapBoolUint8V(v, false, d)
+	case *map[bool]uint8:
+		var v2 map[bool]uint8
+		v2, changed = fastpathTV.DecMapBoolUint8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uint16:
+		fastpathTV.DecMapBoolUint16V(v, false, d)
+	case *map[bool]uint16:
+		var v2 map[bool]uint16
+		v2, changed = fastpathTV.DecMapBoolUint16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uint32:
+		fastpathTV.DecMapBoolUint32V(v, false, d)
+	case *map[bool]uint32:
+		var v2 map[bool]uint32
+		v2, changed = fastpathTV.DecMapBoolUint32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uint64:
+		fastpathTV.DecMapBoolUint64V(v, false, d)
+	case *map[bool]uint64:
+		var v2 map[bool]uint64
+		v2, changed = fastpathTV.DecMapBoolUint64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]uintptr:
+		fastpathTV.DecMapBoolUintptrV(v, false, d)
+	case *map[bool]uintptr:
+		var v2 map[bool]uintptr
+		v2, changed = fastpathTV.DecMapBoolUintptrV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]int:
+		fastpathTV.DecMapBoolIntV(v, false, d)
+	case *map[bool]int:
+		var v2 map[bool]int
+		v2, changed = fastpathTV.DecMapBoolIntV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]int8:
+		fastpathTV.DecMapBoolInt8V(v, false, d)
+	case *map[bool]int8:
+		var v2 map[bool]int8
+		v2, changed = fastpathTV.DecMapBoolInt8V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]int16:
+		fastpathTV.DecMapBoolInt16V(v, false, d)
+	case *map[bool]int16:
+		var v2 map[bool]int16
+		v2, changed = fastpathTV.DecMapBoolInt16V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]int32:
+		fastpathTV.DecMapBoolInt32V(v, false, d)
+	case *map[bool]int32:
+		var v2 map[bool]int32
+		v2, changed = fastpathTV.DecMapBoolInt32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]int64:
+		fastpathTV.DecMapBoolInt64V(v, false, d)
+	case *map[bool]int64:
+		var v2 map[bool]int64
+		v2, changed = fastpathTV.DecMapBoolInt64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]float32:
+		fastpathTV.DecMapBoolFloat32V(v, false, d)
+	case *map[bool]float32:
+		var v2 map[bool]float32
+		v2, changed = fastpathTV.DecMapBoolFloat32V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]float64:
+		fastpathTV.DecMapBoolFloat64V(v, false, d)
+	case *map[bool]float64:
+		var v2 map[bool]float64
+		v2, changed = fastpathTV.DecMapBoolFloat64V(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	case map[bool]bool:
+		fastpathTV.DecMapBoolBoolV(v, false, d)
+	case *map[bool]bool:
+		var v2 map[bool]bool
+		v2, changed = fastpathTV.DecMapBoolBoolV(*v, true, d)
+		if changed {
+			*v = v2
+		}
+	default:
+		_ = v // workaround https://github.com/golang/go/issues/12927 seen in go1.4
+		return false
+	}
+	return true
+}
+
+func fastpathDecodeSetZeroTypeSwitch(iv interface{}) bool {
+	switch v := iv.(type) {
+
+	case *[]interface{}:
+		*v = nil
+	case *[]string:
+		*v = nil
+	case *[]float32:
+		*v = nil
+	case *[]float64:
+		*v = nil
+	case *[]uint:
+		*v = nil
+	case *[]uint8:
+		*v = nil
+	case *[]uint16:
+		*v = nil
+	case *[]uint32:
+		*v = nil
+	case *[]uint64:
+		*v = nil
+	case *[]uintptr:
+		*v = nil
+	case *[]int:
+		*v = nil
+	case *[]int8:
+		*v = nil
+	case *[]int16:
+		*v = nil
+	case *[]int32:
+		*v = nil
+	case *[]int64:
+		*v = nil
+	case *[]bool:
+		*v = nil
+
+	case *map[interface{}]interface{}:
+		*v = nil
+	case *map[interface{}]string:
+		*v = nil
+	case *map[interface{}]uint:
+		*v = nil
+	case *map[interface{}]uint8:
+		*v = nil
+	case *map[interface{}]uint16:
+		*v = nil
+	case *map[interface{}]uint32:
+		*v = nil
+	case *map[interface{}]uint64:
+		*v = nil
+	case *map[interface{}]uintptr:
+		*v = nil
+	case *map[interface{}]int:
+		*v = nil
+	case *map[interface{}]int8:
+		*v = nil
+	case *map[interface{}]int16:
+		*v = nil
+	case *map[interface{}]int32:
+		*v = nil
+	case *map[interface{}]int64:
+		*v = nil
+	case *map[interface{}]float32:
+		*v = nil
+	case *map[interface{}]float64:
+		*v = nil
+	case *map[interface{}]bool:
+		*v = nil
+	case *map[string]interface{}:
+		*v = nil
+	case *map[string]string:
+		*v = nil
+	case *map[string]uint:
+		*v = nil
+	case *map[string]uint8:
+		*v = nil
+	case *map[string]uint16:
+		*v = nil
+	case *map[string]uint32:
+		*v = nil
+	case *map[string]uint64:
+		*v = nil
+	case *map[string]uintptr:
+		*v = nil
+	case *map[string]int:
+		*v = nil
+	case *map[string]int8:
+		*v = nil
+	case *map[string]int16:
+		*v = nil
+	case *map[string]int32:
+		*v = nil
+	case *map[string]int64:
+		*v = nil
+	case *map[string]float32:
+		*v = nil
+	case *map[string]float64:
+		*v = nil
+	case *map[string]bool:
+		*v = nil
+	case *map[float32]interface{}:
+		*v = nil
+	case *map[float32]string:
+		*v = nil
+	case *map[float32]uint:
+		*v = nil
+	case *map[float32]uint8:
+		*v = nil
+	case *map[float32]uint16:
+		*v = nil
+	case *map[float32]uint32:
+		*v = nil
+	case *map[float32]uint64:
+		*v = nil
+	case *map[float32]uintptr:
+		*v = nil
+	case *map[float32]int:
+		*v = nil
+	case *map[float32]int8:
+		*v = nil
+	case *map[float32]int16:
+		*v = nil
+	case *map[float32]int32:
+		*v = nil
+	case *map[float32]int64:
+		*v = nil
+	case *map[float32]float32:
+		*v = nil
+	case *map[float32]float64:
+		*v = nil
+	case *map[float32]bool:
+		*v = nil
+	case *map[float64]interface{}:
+		*v = nil
+	case *map[float64]string:
+		*v = nil
+	case *map[float64]uint:
+		*v = nil
+	case *map[float64]uint8:
+		*v = nil
+	case *map[float64]uint16:
+		*v = nil
+	case *map[float64]uint32:
+		*v = nil
+	case *map[float64]uint64:
+		*v = nil
+	case *map[float64]uintptr:
+		*v = nil
+	case *map[float64]int:
+		*v = nil
+	case *map[float64]int8:
+		*v = nil
+	case *map[float64]int16:
+		*v = nil
+	case *map[float64]int32:
+		*v = nil
+	case *map[float64]int64:
+		*v = nil
+	case *map[float64]float32:
+		*v = nil
+	case *map[float64]float64:
+		*v = nil
+	case *map[float64]bool:
+		*v = nil
+	case *map[uint]interface{}:
+		*v = nil
+	case *map[uint]string:
+		*v = nil
+	case *map[uint]uint:
+		*v = nil
+	case *map[uint]uint8:
+		*v = nil
+	case *map[uint]uint16:
+		*v = nil
+	case *map[uint]uint32:
+		*v = nil
+	case *map[uint]uint64:
+		*v = nil
+	case *map[uint]uintptr:
+		*v = nil
+	case *map[uint]int:
+		*v = nil
+	case *map[uint]int8:
+		*v = nil
+	case *map[uint]int16:
+		*v = nil
+	case *map[uint]int32:
+		*v = nil
+	case *map[uint]int64:
+		*v = nil
+	case *map[uint]float32:
+		*v = nil
+	case *map[uint]float64:
+		*v = nil
+	case *map[uint]bool:
+		*v = nil
+	case *map[uint8]interface{}:
+		*v = nil
+	case *map[uint8]string:
+		*v = nil
+	case *map[uint8]uint:
+		*v = nil
+	case *map[uint8]uint8:
+		*v = nil
+	case *map[uint8]uint16:
+		*v = nil
+	case *map[uint8]uint32:
+		*v = nil
+	case *map[uint8]uint64:
+		*v = nil
+	case *map[uint8]uintptr:
+		*v = nil
+	case *map[uint8]int:
+		*v = nil
+	case *map[uint8]int8:
+		*v = nil
+	case *map[uint8]int16:
+		*v = nil
+	case *map[uint8]int32:
+		*v = nil
+	case *map[uint8]int64:
+		*v = nil
+	case *map[uint8]float32:
+		*v = nil
+	case *map[uint8]float64:
+		*v = nil
+	case *map[uint8]bool:
+		*v = nil
+	case *map[uint16]interface{}:
+		*v = nil
+	case *map[uint16]string:
+		*v = nil
+	case *map[uint16]uint:
+		*v = nil
+	case *map[uint16]uint8:
+		*v = nil
+	case *map[uint16]uint16:
+		*v = nil
+	case *map[uint16]uint32:
+		*v = nil
+	case *map[uint16]uint64:
+		*v = nil
+	case *map[uint16]uintptr:
+		*v = nil
+	case *map[uint16]int:
+		*v = nil
+	case *map[uint16]int8:
+		*v = nil
+	case *map[uint16]int16:
+		*v = nil
+	case *map[uint16]int32:
+		*v = nil
+	case *map[uint16]int64:
+		*v = nil
+	case *map[uint16]float32:
+		*v = nil
+	case *map[uint16]float64:
+		*v = nil
+	case *map[uint16]bool:
+		*v = nil
+	case *map[uint32]interface{}:
+		*v = nil
+	case *map[uint32]string:
+		*v = nil
+	case *map[uint32]uint:
+		*v = nil
+	case *map[uint32]uint8:
+		*v = nil
+	case *map[uint32]uint16:
+		*v = nil
+	case *map[uint32]uint32:
+		*v = nil
+	case *map[uint32]uint64:
+		*v = nil
+	case *map[uint32]uintptr:
+		*v = nil
+	case *map[uint32]int:
+		*v = nil
+	case *map[uint32]int8:
+		*v = nil
+	case *map[uint32]int16:
+		*v = nil
+	case *map[uint32]int32:
+		*v = nil
+	case *map[uint32]int64:
+		*v = nil
+	case *map[uint32]float32:
+		*v = nil
+	case *map[uint32]float64:
+		*v = nil
+	case *map[uint32]bool:
+		*v = nil
+	case *map[uint64]interface{}:
+		*v = nil
+	case *map[uint64]string:
+		*v = nil
+	case *map[uint64]uint:
+		*v = nil
+	case *map[uint64]uint8:
+		*v = nil
+	case *map[uint64]uint16:
+		*v = nil
+	case *map[uint64]uint32:
+		*v = nil
+	case *map[uint64]uint64:
+		*v = nil
+	case *map[uint64]uintptr:
+		*v = nil
+	case *map[uint64]int:
+		*v = nil
+	case *map[uint64]int8:
+		*v = nil
+	case *map[uint64]int16:
+		*v = nil
+	case *map[uint64]int32:
+		*v = nil
+	case *map[uint64]int64:
+		*v = nil
+	case *map[uint64]float32:
+		*v = nil
+	case *map[uint64]float64:
+		*v = nil
+	case *map[uint64]bool:
+		*v = nil
+	case *map[uintptr]interface{}:
+		*v = nil
+	case *map[uintptr]string:
+		*v = nil
+	case *map[uintptr]uint:
+		*v = nil
+	case *map[uintptr]uint8:
+		*v = nil
+	case *map[uintptr]uint16:
+		*v = nil
+	case *map[uintptr]uint32:
+		*v = nil
+	case *map[uintptr]uint64:
+		*v = nil
+	case *map[uintptr]uintptr:
+		*v = nil
+	case *map[uintptr]int:
+		*v = nil
+	case *map[uintptr]int8:
+		*v = nil
+	case *map[uintptr]int16:
+		*v = nil
+	case *map[uintptr]int32:
+		*v = nil
+	case *map[uintptr]int64:
+		*v = nil
+	case *map[uintptr]float32:
+		*v = nil
+	case *map[uintptr]float64:
+		*v = nil
+	case *map[uintptr]bool:
+		*v = nil
+	case *map[int]interface{}:
+		*v = nil
+	case *map[int]string:
+		*v = nil
+	case *map[int]uint:
+		*v = nil
+	case *map[int]uint8:
+		*v = nil
+	case *map[int]uint16:
+		*v = nil
+	case *map[int]uint32:
+		*v = nil
+	case *map[int]uint64:
+		*v = nil
+	case *map[int]uintptr:
+		*v = nil
+	case *map[int]int:
+		*v = nil
+	case *map[int]int8:
+		*v = nil
+	case *map[int]int16:
+		*v = nil
+	case *map[int]int32:
+		*v = nil
+	case *map[int]int64:
+		*v = nil
+	case *map[int]float32:
+		*v = nil
+	case *map[int]float64:
+		*v = nil
+	case *map[int]bool:
+		*v = nil
+	case *map[int8]interface{}:
+		*v = nil
+	case *map[int8]string:
+		*v = nil
+	case *map[int8]uint:
+		*v = nil
+	case *map[int8]uint8:
+		*v = nil
+	case *map[int8]uint16:
+		*v = nil
+	case *map[int8]uint32:
+		*v = nil
+	case *map[int8]uint64:
+		*v = nil
+	case *map[int8]uintptr:
+		*v = nil
+	case *map[int8]int:
+		*v = nil
+	case *map[int8]int8:
+		*v = nil
+	case *map[int8]int16:
+		*v = nil
+	case *map[int8]int32:
+		*v = nil
+	case *map[int8]int64:
+		*v = nil
+	case *map[int8]float32:
+		*v = nil
+	case *map[int8]float64:
+		*v = nil
+	case *map[int8]bool:
+		*v = nil
+	case *map[int16]interface{}:
+		*v = nil
+	case *map[int16]string:
+		*v = nil
+	case *map[int16]uint:
+		*v = nil
+	case *map[int16]uint8:
+		*v = nil
+	case *map[int16]uint16:
+		*v = nil
+	case *map[int16]uint32:
+		*v = nil
+	case *map[int16]uint64:
+		*v = nil
+	case *map[int16]uintptr:
+		*v = nil
+	case *map[int16]int:
+		*v = nil
+	case *map[int16]int8:
+		*v = nil
+	case *map[int16]int16:
+		*v = nil
+	case *map[int16]int32:
+		*v = nil
+	case *map[int16]int64:
+		*v = nil
+	case *map[int16]float32:
+		*v = nil
+	case *map[int16]float64:
+		*v = nil
+	case *map[int16]bool:
+		*v = nil
+	case *map[int32]interface{}:
+		*v = nil
+	case *map[int32]string:
+		*v = nil
+	case *map[int32]uint:
+		*v = nil
+	case *map[int32]uint8:
+		*v = nil
+	case *map[int32]uint16:
+		*v = nil
+	case *map[int32]uint32:
+		*v = nil
+	case *map[int32]uint64:
+		*v = nil
+	case *map[int32]uintptr:
+		*v = nil
+	case *map[int32]int:
+		*v = nil
+	case *map[int32]int8:
+		*v = nil
+	case *map[int32]int16:
+		*v = nil
+	case *map[int32]int32:
+		*v = nil
+	case *map[int32]int64:
+		*v = nil
+	case *map[int32]float32:
+		*v = nil
+	case *map[int32]float64:
+		*v = nil
+	case *map[int32]bool:
+		*v = nil
+	case *map[int64]interface{}:
+		*v = nil
+	case *map[int64]string:
+		*v = nil
+	case *map[int64]uint:
+		*v = nil
+	case *map[int64]uint8:
+		*v = nil
+	case *map[int64]uint16:
+		*v = nil
+	case *map[int64]uint32:
+		*v = nil
+	case *map[int64]uint64:
+		*v = nil
+	case *map[int64]uintptr:
+		*v = nil
+	case *map[int64]int:
+		*v = nil
+	case *map[int64]int8:
+		*v = nil
+	case *map[int64]int16:
+		*v = nil
+	case *map[int64]int32:
+		*v = nil
+	case *map[int64]int64:
+		*v = nil
+	case *map[int64]float32:
+		*v = nil
+	case *map[int64]float64:
+		*v = nil
+	case *map[int64]bool:
+		*v = nil
+	case *map[bool]interface{}:
+		*v = nil
+	case *map[bool]string:
+		*v = nil
+	case *map[bool]uint:
+		*v = nil
+	case *map[bool]uint8:
+		*v = nil
+	case *map[bool]uint16:
+		*v = nil
+	case *map[bool]uint32:
+		*v = nil
+	case *map[bool]uint64:
+		*v = nil
+	case *map[bool]uintptr:
+		*v = nil
+	case *map[bool]int:
+		*v = nil
+	case *map[bool]int8:
+		*v = nil
+	case *map[bool]int16:
+		*v = nil
+	case *map[bool]int32:
+		*v = nil
+	case *map[bool]int64:
+		*v = nil
+	case *map[bool]float32:
+		*v = nil
+	case *map[bool]float64:
+		*v = nil
+	case *map[bool]bool:
+		*v = nil
+	default:
+		_ = v // workaround https://github.com/golang/go/issues/12927 seen in go1.4
+		return false
+	}
+	return true
+}
+
+// -- -- fast path functions
+
+func (d *Decoder) fastpathDecSliceIntfR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]interface{})
+		v, changed := fastpathTV.DecSliceIntfV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]interface{})
+		v2, changed := fastpathTV.DecSliceIntfV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceIntfX(vp *[]interface{}, d *Decoder) {
+	v, changed := f.DecSliceIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceIntfV(v []interface{}, canChange bool, d *Decoder) (_ []interface{}, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []interface{}{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 16)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]interface{}, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 16)
+			} else {
+				xlen = 8
+			}
+			v = make([]interface{}, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, nil)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = nil
+		} else {
+			d.decode(&v[j])
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]interface{}, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceStringR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]string)
+		v, changed := fastpathTV.DecSliceStringV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]string)
+		v2, changed := fastpathTV.DecSliceStringV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceStringX(vp *[]string, d *Decoder) {
+	v, changed := f.DecSliceStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceStringV(v []string, canChange bool, d *Decoder) (_ []string, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []string{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 16)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]string, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 16)
+			} else {
+				xlen = 8
+			}
+			v = make([]string, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, "")
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = ""
+		} else {
+			v[j] = dd.DecodeString()
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]string, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]float32)
+		v, changed := fastpathTV.DecSliceFloat32V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]float32)
+		v2, changed := fastpathTV.DecSliceFloat32V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceFloat32X(vp *[]float32, d *Decoder) {
+	v, changed := f.DecSliceFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceFloat32V(v []float32, canChange bool, d *Decoder) (_ []float32, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []float32{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]float32, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			} else {
+				xlen = 8
+			}
+			v = make([]float32, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]float32, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]float64)
+		v, changed := fastpathTV.DecSliceFloat64V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]float64)
+		v2, changed := fastpathTV.DecSliceFloat64V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceFloat64X(vp *[]float64, d *Decoder) {
+	v, changed := f.DecSliceFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceFloat64V(v []float64, canChange bool, d *Decoder) (_ []float64, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []float64{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]float64, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]float64, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = dd.DecodeFloat64()
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]float64, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUintR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uint)
+		v, changed := fastpathTV.DecSliceUintV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uint)
+		v2, changed := fastpathTV.DecSliceUintV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUintX(vp *[]uint, d *Decoder) {
+	v, changed := f.DecSliceUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUintV(v []uint, canChange bool, d *Decoder) (_ []uint, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uint{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uint, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]uint, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uint, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUint8R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uint8)
+		v, changed := fastpathTV.DecSliceUint8V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uint8)
+		v2, changed := fastpathTV.DecSliceUint8V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUint8X(vp *[]uint8, d *Decoder) {
+	v, changed := f.DecSliceUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUint8V(v []uint8, canChange bool, d *Decoder) (_ []uint8, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uint8{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uint8, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			} else {
+				xlen = 8
+			}
+			v = make([]uint8, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uint8, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUint16R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uint16)
+		v, changed := fastpathTV.DecSliceUint16V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uint16)
+		v2, changed := fastpathTV.DecSliceUint16V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUint16X(vp *[]uint16, d *Decoder) {
+	v, changed := f.DecSliceUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUint16V(v []uint16, canChange bool, d *Decoder) (_ []uint16, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uint16{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 2)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uint16, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 2)
+			} else {
+				xlen = 8
+			}
+			v = make([]uint16, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uint16, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUint32R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uint32)
+		v, changed := fastpathTV.DecSliceUint32V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uint32)
+		v2, changed := fastpathTV.DecSliceUint32V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUint32X(vp *[]uint32, d *Decoder) {
+	v, changed := f.DecSliceUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUint32V(v []uint32, canChange bool, d *Decoder) (_ []uint32, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uint32{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uint32, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			} else {
+				xlen = 8
+			}
+			v = make([]uint32, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uint32, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUint64R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uint64)
+		v, changed := fastpathTV.DecSliceUint64V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uint64)
+		v2, changed := fastpathTV.DecSliceUint64V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUint64X(vp *[]uint64, d *Decoder) {
+	v, changed := f.DecSliceUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUint64V(v []uint64, canChange bool, d *Decoder) (_ []uint64, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uint64{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uint64, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]uint64, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = dd.DecodeUint64()
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uint64, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]uintptr)
+		v, changed := fastpathTV.DecSliceUintptrV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]uintptr)
+		v2, changed := fastpathTV.DecSliceUintptrV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceUintptrX(vp *[]uintptr, d *Decoder) {
+	v, changed := f.DecSliceUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceUintptrV(v []uintptr, canChange bool, d *Decoder) (_ []uintptr, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []uintptr{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]uintptr, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]uintptr, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]uintptr, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceIntR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]int)
+		v, changed := fastpathTV.DecSliceIntV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]int)
+		v2, changed := fastpathTV.DecSliceIntV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceIntX(vp *[]int, d *Decoder) {
+	v, changed := f.DecSliceIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceIntV(v []int, canChange bool, d *Decoder) (_ []int, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []int{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]int, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]int, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]int, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceInt8R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]int8)
+		v, changed := fastpathTV.DecSliceInt8V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]int8)
+		v2, changed := fastpathTV.DecSliceInt8V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceInt8X(vp *[]int8, d *Decoder) {
+	v, changed := f.DecSliceInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceInt8V(v []int8, canChange bool, d *Decoder) (_ []int8, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []int8{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]int8, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			} else {
+				xlen = 8
+			}
+			v = make([]int8, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]int8, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceInt16R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]int16)
+		v, changed := fastpathTV.DecSliceInt16V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]int16)
+		v2, changed := fastpathTV.DecSliceInt16V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceInt16X(vp *[]int16, d *Decoder) {
+	v, changed := f.DecSliceInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceInt16V(v []int16, canChange bool, d *Decoder) (_ []int16, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []int16{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 2)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]int16, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 2)
+			} else {
+				xlen = 8
+			}
+			v = make([]int16, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]int16, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceInt32R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]int32)
+		v, changed := fastpathTV.DecSliceInt32V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]int32)
+		v2, changed := fastpathTV.DecSliceInt32V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceInt32X(vp *[]int32, d *Decoder) {
+	v, changed := f.DecSliceInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceInt32V(v []int32, canChange bool, d *Decoder) (_ []int32, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []int32{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]int32, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 4)
+			} else {
+				xlen = 8
+			}
+			v = make([]int32, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]int32, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceInt64R(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]int64)
+		v, changed := fastpathTV.DecSliceInt64V(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]int64)
+		v2, changed := fastpathTV.DecSliceInt64V(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceInt64X(vp *[]int64, d *Decoder) {
+	v, changed := f.DecSliceInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceInt64V(v []int64, canChange bool, d *Decoder) (_ []int64, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []int64{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]int64, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 8)
+			} else {
+				xlen = 8
+			}
+			v = make([]int64, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, 0)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = 0
+		} else {
+			v[j] = dd.DecodeInt64()
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]int64, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecSliceBoolR(f *codecFnInfo, rv reflect.Value) {
+	if array := f.seq == seqTypeArray; !array && rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*[]bool)
+		v, changed := fastpathTV.DecSliceBoolV(*vp, !array, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		v := rv2i(rv).([]bool)
+		v2, changed := fastpathTV.DecSliceBoolV(v, !array, d)
+		if changed && len(v) > 0 && len(v2) > 0 && !(len(v2) == len(v) && &v2[0] == &v[0]) {
+			copy(v, v2)
+		}
+	}
+}
+func (f fastpathT) DecSliceBoolX(vp *[]bool, d *Decoder) {
+	v, changed := f.DecSliceBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecSliceBoolV(v []bool, canChange bool, d *Decoder) (_ []bool, changed bool) {
+	dd := d.d
+	slh, containerLenS := d.decSliceHelperStart()
+	if containerLenS == 0 {
+		if canChange {
+			if v == nil {
+				v = []bool{}
+			} else if len(v) != 0 {
+				v = v[:0]
+			}
+			changed = true
+		}
+		slh.End()
+		return v, changed
+	}
+	hasLen := containerLenS > 0
+	var xlen int
+	if hasLen && canChange {
+		if containerLenS > cap(v) {
+			xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			if xlen <= cap(v) {
+				v = v[:xlen]
+			} else {
+				v = make([]bool, xlen)
+			}
+			changed = true
+		} else if containerLenS != len(v) {
+			v = v[:containerLenS]
+			changed = true
+		}
+	}
+	j := 0
+	for ; (hasLen && j < containerLenS) || !(hasLen || dd.CheckBreak()); j++ {
+		if j == 0 && len(v) == 0 && canChange {
+			if hasLen {
+				xlen = decInferLen(containerLenS, d.h.MaxInitLen, 1)
+			} else {
+				xlen = 8
+			}
+			v = make([]bool, xlen)
+			changed = true
+		}
+		// if indefinite, etc, then expand the slice if necessary
+		var decodeIntoBlank bool
+		if j >= len(v) {
+			if canChange {
+				v = append(v, false)
+				changed = true
+			} else {
+				d.arrayCannotExpand(len(v), j+1)
+				decodeIntoBlank = true
+			}
+		}
+		slh.ElemContainerState(j)
+		if decodeIntoBlank {
+			d.swallow()
+		} else if dd.TryDecodeAsNil() {
+			v[j] = false
+		} else {
+			v[j] = dd.DecodeBool()
+		}
+	}
+	if canChange {
+		if j < len(v) {
+			v = v[:j]
+			changed = true
+		} else if j == 0 && v == nil {
+			v = make([]bool, 0)
+			changed = true
+		}
+	}
+	slh.End()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]interface{})
+		v, changed := fastpathTV.DecMapIntfIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfIntfV(rv2i(rv).(map[interface{}]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfIntfX(vp *map[interface{}]interface{}, d *Decoder) {
+	v, changed := f.DecMapIntfIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfIntfV(v map[interface{}]interface{}, canChange bool,
+	d *Decoder) (_ map[interface{}]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 32)
+		v = make(map[interface{}]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk interface{}
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]string)
+		v, changed := fastpathTV.DecMapIntfStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfStringV(rv2i(rv).(map[interface{}]string), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfStringX(vp *map[interface{}]string, d *Decoder) {
+	v, changed := f.DecMapIntfStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfStringV(v map[interface{}]string, canChange bool,
+	d *Decoder) (_ map[interface{}]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 32)
+		v = make(map[interface{}]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uint)
+		v, changed := fastpathTV.DecMapIntfUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUintV(rv2i(rv).(map[interface{}]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUintX(vp *map[interface{}]uint, d *Decoder) {
+	v, changed := f.DecMapIntfUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUintV(v map[interface{}]uint, canChange bool,
+	d *Decoder) (_ map[interface{}]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uint8)
+		v, changed := fastpathTV.DecMapIntfUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUint8V(rv2i(rv).(map[interface{}]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUint8X(vp *map[interface{}]uint8, d *Decoder) {
+	v, changed := f.DecMapIntfUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUint8V(v map[interface{}]uint8, canChange bool,
+	d *Decoder) (_ map[interface{}]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[interface{}]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uint16)
+		v, changed := fastpathTV.DecMapIntfUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUint16V(rv2i(rv).(map[interface{}]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUint16X(vp *map[interface{}]uint16, d *Decoder) {
+	v, changed := f.DecMapIntfUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUint16V(v map[interface{}]uint16, canChange bool,
+	d *Decoder) (_ map[interface{}]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[interface{}]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uint32)
+		v, changed := fastpathTV.DecMapIntfUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUint32V(rv2i(rv).(map[interface{}]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUint32X(vp *map[interface{}]uint32, d *Decoder) {
+	v, changed := f.DecMapIntfUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUint32V(v map[interface{}]uint32, canChange bool,
+	d *Decoder) (_ map[interface{}]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[interface{}]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uint64)
+		v, changed := fastpathTV.DecMapIntfUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUint64V(rv2i(rv).(map[interface{}]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUint64X(vp *map[interface{}]uint64, d *Decoder) {
+	v, changed := f.DecMapIntfUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUint64V(v map[interface{}]uint64, canChange bool,
+	d *Decoder) (_ map[interface{}]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]uintptr)
+		v, changed := fastpathTV.DecMapIntfUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfUintptrV(rv2i(rv).(map[interface{}]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfUintptrX(vp *map[interface{}]uintptr, d *Decoder) {
+	v, changed := f.DecMapIntfUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfUintptrV(v map[interface{}]uintptr, canChange bool,
+	d *Decoder) (_ map[interface{}]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]int)
+		v, changed := fastpathTV.DecMapIntfIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfIntV(rv2i(rv).(map[interface{}]int), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfIntX(vp *map[interface{}]int, d *Decoder) {
+	v, changed := f.DecMapIntfIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfIntV(v map[interface{}]int, canChange bool,
+	d *Decoder) (_ map[interface{}]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]int8)
+		v, changed := fastpathTV.DecMapIntfInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfInt8V(rv2i(rv).(map[interface{}]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfInt8X(vp *map[interface{}]int8, d *Decoder) {
+	v, changed := f.DecMapIntfInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfInt8V(v map[interface{}]int8, canChange bool,
+	d *Decoder) (_ map[interface{}]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[interface{}]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]int16)
+		v, changed := fastpathTV.DecMapIntfInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfInt16V(rv2i(rv).(map[interface{}]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfInt16X(vp *map[interface{}]int16, d *Decoder) {
+	v, changed := f.DecMapIntfInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfInt16V(v map[interface{}]int16, canChange bool,
+	d *Decoder) (_ map[interface{}]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[interface{}]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]int32)
+		v, changed := fastpathTV.DecMapIntfInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfInt32V(rv2i(rv).(map[interface{}]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfInt32X(vp *map[interface{}]int32, d *Decoder) {
+	v, changed := f.DecMapIntfInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfInt32V(v map[interface{}]int32, canChange bool,
+	d *Decoder) (_ map[interface{}]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[interface{}]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]int64)
+		v, changed := fastpathTV.DecMapIntfInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfInt64V(rv2i(rv).(map[interface{}]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfInt64X(vp *map[interface{}]int64, d *Decoder) {
+	v, changed := f.DecMapIntfInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfInt64V(v map[interface{}]int64, canChange bool,
+	d *Decoder) (_ map[interface{}]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]float32)
+		v, changed := fastpathTV.DecMapIntfFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfFloat32V(rv2i(rv).(map[interface{}]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfFloat32X(vp *map[interface{}]float32, d *Decoder) {
+	v, changed := f.DecMapIntfFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfFloat32V(v map[interface{}]float32, canChange bool,
+	d *Decoder) (_ map[interface{}]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[interface{}]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]float64)
+		v, changed := fastpathTV.DecMapIntfFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfFloat64V(rv2i(rv).(map[interface{}]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfFloat64X(vp *map[interface{}]float64, d *Decoder) {
+	v, changed := f.DecMapIntfFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfFloat64V(v map[interface{}]float64, canChange bool,
+	d *Decoder) (_ map[interface{}]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[interface{}]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntfBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[interface{}]bool)
+		v, changed := fastpathTV.DecMapIntfBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntfBoolV(rv2i(rv).(map[interface{}]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapIntfBoolX(vp *map[interface{}]bool, d *Decoder) {
+	v, changed := f.DecMapIntfBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntfBoolV(v map[interface{}]bool, canChange bool,
+	d *Decoder) (_ map[interface{}]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[interface{}]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk interface{}
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = nil
+		d.decode(&mk)
+		if bv, bok := mk.([]byte); bok {
+			mk = d.string(bv)
+		}
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]interface{})
+		v, changed := fastpathTV.DecMapStringIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringIntfV(rv2i(rv).(map[string]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapStringIntfX(vp *map[string]interface{}, d *Decoder) {
+	v, changed := f.DecMapStringIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringIntfV(v map[string]interface{}, canChange bool,
+	d *Decoder) (_ map[string]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 32)
+		v = make(map[string]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk string
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]string)
+		v, changed := fastpathTV.DecMapStringStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringStringV(rv2i(rv).(map[string]string), false, d)
+	}
+}
+func (f fastpathT) DecMapStringStringX(vp *map[string]string, d *Decoder) {
+	v, changed := f.DecMapStringStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringStringV(v map[string]string, canChange bool,
+	d *Decoder) (_ map[string]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 32)
+		v = make(map[string]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uint)
+		v, changed := fastpathTV.DecMapStringUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUintV(rv2i(rv).(map[string]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUintX(vp *map[string]uint, d *Decoder) {
+	v, changed := f.DecMapStringUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUintV(v map[string]uint, canChange bool,
+	d *Decoder) (_ map[string]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uint8)
+		v, changed := fastpathTV.DecMapStringUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUint8V(rv2i(rv).(map[string]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUint8X(vp *map[string]uint8, d *Decoder) {
+	v, changed := f.DecMapStringUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUint8V(v map[string]uint8, canChange bool,
+	d *Decoder) (_ map[string]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[string]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uint16)
+		v, changed := fastpathTV.DecMapStringUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUint16V(rv2i(rv).(map[string]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUint16X(vp *map[string]uint16, d *Decoder) {
+	v, changed := f.DecMapStringUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUint16V(v map[string]uint16, canChange bool,
+	d *Decoder) (_ map[string]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[string]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uint32)
+		v, changed := fastpathTV.DecMapStringUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUint32V(rv2i(rv).(map[string]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUint32X(vp *map[string]uint32, d *Decoder) {
+	v, changed := f.DecMapStringUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUint32V(v map[string]uint32, canChange bool,
+	d *Decoder) (_ map[string]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[string]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uint64)
+		v, changed := fastpathTV.DecMapStringUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUint64V(rv2i(rv).(map[string]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUint64X(vp *map[string]uint64, d *Decoder) {
+	v, changed := f.DecMapStringUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUint64V(v map[string]uint64, canChange bool,
+	d *Decoder) (_ map[string]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]uintptr)
+		v, changed := fastpathTV.DecMapStringUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringUintptrV(rv2i(rv).(map[string]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapStringUintptrX(vp *map[string]uintptr, d *Decoder) {
+	v, changed := f.DecMapStringUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringUintptrV(v map[string]uintptr, canChange bool,
+	d *Decoder) (_ map[string]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]int)
+		v, changed := fastpathTV.DecMapStringIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringIntV(rv2i(rv).(map[string]int), false, d)
+	}
+}
+func (f fastpathT) DecMapStringIntX(vp *map[string]int, d *Decoder) {
+	v, changed := f.DecMapStringIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringIntV(v map[string]int, canChange bool,
+	d *Decoder) (_ map[string]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]int8)
+		v, changed := fastpathTV.DecMapStringInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringInt8V(rv2i(rv).(map[string]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapStringInt8X(vp *map[string]int8, d *Decoder) {
+	v, changed := f.DecMapStringInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringInt8V(v map[string]int8, canChange bool,
+	d *Decoder) (_ map[string]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[string]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]int16)
+		v, changed := fastpathTV.DecMapStringInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringInt16V(rv2i(rv).(map[string]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapStringInt16X(vp *map[string]int16, d *Decoder) {
+	v, changed := f.DecMapStringInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringInt16V(v map[string]int16, canChange bool,
+	d *Decoder) (_ map[string]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[string]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]int32)
+		v, changed := fastpathTV.DecMapStringInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringInt32V(rv2i(rv).(map[string]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapStringInt32X(vp *map[string]int32, d *Decoder) {
+	v, changed := f.DecMapStringInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringInt32V(v map[string]int32, canChange bool,
+	d *Decoder) (_ map[string]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[string]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]int64)
+		v, changed := fastpathTV.DecMapStringInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringInt64V(rv2i(rv).(map[string]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapStringInt64X(vp *map[string]int64, d *Decoder) {
+	v, changed := f.DecMapStringInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringInt64V(v map[string]int64, canChange bool,
+	d *Decoder) (_ map[string]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]float32)
+		v, changed := fastpathTV.DecMapStringFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringFloat32V(rv2i(rv).(map[string]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapStringFloat32X(vp *map[string]float32, d *Decoder) {
+	v, changed := f.DecMapStringFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringFloat32V(v map[string]float32, canChange bool,
+	d *Decoder) (_ map[string]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[string]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]float64)
+		v, changed := fastpathTV.DecMapStringFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringFloat64V(rv2i(rv).(map[string]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapStringFloat64X(vp *map[string]float64, d *Decoder) {
+	v, changed := f.DecMapStringFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringFloat64V(v map[string]float64, canChange bool,
+	d *Decoder) (_ map[string]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[string]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapStringBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[string]bool)
+		v, changed := fastpathTV.DecMapStringBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapStringBoolV(rv2i(rv).(map[string]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapStringBoolX(vp *map[string]bool, d *Decoder) {
+	v, changed := f.DecMapStringBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapStringBoolV(v map[string]bool, canChange bool,
+	d *Decoder) (_ map[string]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[string]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk string
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeString()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]interface{})
+		v, changed := fastpathTV.DecMapFloat32IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32IntfV(rv2i(rv).(map[float32]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32IntfX(vp *map[float32]interface{}, d *Decoder) {
+	v, changed := f.DecMapFloat32IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32IntfV(v map[float32]interface{}, canChange bool,
+	d *Decoder) (_ map[float32]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[float32]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk float32
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]string)
+		v, changed := fastpathTV.DecMapFloat32StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32StringV(rv2i(rv).(map[float32]string), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32StringX(vp *map[float32]string, d *Decoder) {
+	v, changed := f.DecMapFloat32StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32StringV(v map[float32]string, canChange bool,
+	d *Decoder) (_ map[float32]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[float32]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uint)
+		v, changed := fastpathTV.DecMapFloat32UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32UintV(rv2i(rv).(map[float32]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32UintX(vp *map[float32]uint, d *Decoder) {
+	v, changed := f.DecMapFloat32UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32UintV(v map[float32]uint, canChange bool,
+	d *Decoder) (_ map[float32]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uint8)
+		v, changed := fastpathTV.DecMapFloat32Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Uint8V(rv2i(rv).(map[float32]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Uint8X(vp *map[float32]uint8, d *Decoder) {
+	v, changed := f.DecMapFloat32Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Uint8V(v map[float32]uint8, canChange bool,
+	d *Decoder) (_ map[float32]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[float32]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uint16)
+		v, changed := fastpathTV.DecMapFloat32Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Uint16V(rv2i(rv).(map[float32]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Uint16X(vp *map[float32]uint16, d *Decoder) {
+	v, changed := f.DecMapFloat32Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Uint16V(v map[float32]uint16, canChange bool,
+	d *Decoder) (_ map[float32]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[float32]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uint32)
+		v, changed := fastpathTV.DecMapFloat32Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Uint32V(rv2i(rv).(map[float32]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Uint32X(vp *map[float32]uint32, d *Decoder) {
+	v, changed := f.DecMapFloat32Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Uint32V(v map[float32]uint32, canChange bool,
+	d *Decoder) (_ map[float32]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[float32]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uint64)
+		v, changed := fastpathTV.DecMapFloat32Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Uint64V(rv2i(rv).(map[float32]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Uint64X(vp *map[float32]uint64, d *Decoder) {
+	v, changed := f.DecMapFloat32Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Uint64V(v map[float32]uint64, canChange bool,
+	d *Decoder) (_ map[float32]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]uintptr)
+		v, changed := fastpathTV.DecMapFloat32UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32UintptrV(rv2i(rv).(map[float32]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32UintptrX(vp *map[float32]uintptr, d *Decoder) {
+	v, changed := f.DecMapFloat32UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32UintptrV(v map[float32]uintptr, canChange bool,
+	d *Decoder) (_ map[float32]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]int)
+		v, changed := fastpathTV.DecMapFloat32IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32IntV(rv2i(rv).(map[float32]int), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32IntX(vp *map[float32]int, d *Decoder) {
+	v, changed := f.DecMapFloat32IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32IntV(v map[float32]int, canChange bool,
+	d *Decoder) (_ map[float32]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]int8)
+		v, changed := fastpathTV.DecMapFloat32Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Int8V(rv2i(rv).(map[float32]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Int8X(vp *map[float32]int8, d *Decoder) {
+	v, changed := f.DecMapFloat32Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Int8V(v map[float32]int8, canChange bool,
+	d *Decoder) (_ map[float32]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[float32]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]int16)
+		v, changed := fastpathTV.DecMapFloat32Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Int16V(rv2i(rv).(map[float32]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Int16X(vp *map[float32]int16, d *Decoder) {
+	v, changed := f.DecMapFloat32Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Int16V(v map[float32]int16, canChange bool,
+	d *Decoder) (_ map[float32]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[float32]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]int32)
+		v, changed := fastpathTV.DecMapFloat32Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Int32V(rv2i(rv).(map[float32]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Int32X(vp *map[float32]int32, d *Decoder) {
+	v, changed := f.DecMapFloat32Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Int32V(v map[float32]int32, canChange bool,
+	d *Decoder) (_ map[float32]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[float32]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]int64)
+		v, changed := fastpathTV.DecMapFloat32Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Int64V(rv2i(rv).(map[float32]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Int64X(vp *map[float32]int64, d *Decoder) {
+	v, changed := f.DecMapFloat32Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Int64V(v map[float32]int64, canChange bool,
+	d *Decoder) (_ map[float32]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]float32)
+		v, changed := fastpathTV.DecMapFloat32Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Float32V(rv2i(rv).(map[float32]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Float32X(vp *map[float32]float32, d *Decoder) {
+	v, changed := f.DecMapFloat32Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Float32V(v map[float32]float32, canChange bool,
+	d *Decoder) (_ map[float32]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[float32]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]float64)
+		v, changed := fastpathTV.DecMapFloat32Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32Float64V(rv2i(rv).(map[float32]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32Float64X(vp *map[float32]float64, d *Decoder) {
+	v, changed := f.DecMapFloat32Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32Float64V(v map[float32]float64, canChange bool,
+	d *Decoder) (_ map[float32]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float32]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat32BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float32]bool)
+		v, changed := fastpathTV.DecMapFloat32BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat32BoolV(rv2i(rv).(map[float32]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat32BoolX(vp *map[float32]bool, d *Decoder) {
+	v, changed := f.DecMapFloat32BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat32BoolV(v map[float32]bool, canChange bool,
+	d *Decoder) (_ map[float32]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[float32]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float32
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]interface{})
+		v, changed := fastpathTV.DecMapFloat64IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64IntfV(rv2i(rv).(map[float64]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64IntfX(vp *map[float64]interface{}, d *Decoder) {
+	v, changed := f.DecMapFloat64IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64IntfV(v map[float64]interface{}, canChange bool,
+	d *Decoder) (_ map[float64]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[float64]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk float64
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]string)
+		v, changed := fastpathTV.DecMapFloat64StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64StringV(rv2i(rv).(map[float64]string), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64StringX(vp *map[float64]string, d *Decoder) {
+	v, changed := f.DecMapFloat64StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64StringV(v map[float64]string, canChange bool,
+	d *Decoder) (_ map[float64]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[float64]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uint)
+		v, changed := fastpathTV.DecMapFloat64UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64UintV(rv2i(rv).(map[float64]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64UintX(vp *map[float64]uint, d *Decoder) {
+	v, changed := f.DecMapFloat64UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64UintV(v map[float64]uint, canChange bool,
+	d *Decoder) (_ map[float64]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uint8)
+		v, changed := fastpathTV.DecMapFloat64Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Uint8V(rv2i(rv).(map[float64]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Uint8X(vp *map[float64]uint8, d *Decoder) {
+	v, changed := f.DecMapFloat64Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Uint8V(v map[float64]uint8, canChange bool,
+	d *Decoder) (_ map[float64]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[float64]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uint16)
+		v, changed := fastpathTV.DecMapFloat64Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Uint16V(rv2i(rv).(map[float64]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Uint16X(vp *map[float64]uint16, d *Decoder) {
+	v, changed := f.DecMapFloat64Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Uint16V(v map[float64]uint16, canChange bool,
+	d *Decoder) (_ map[float64]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[float64]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uint32)
+		v, changed := fastpathTV.DecMapFloat64Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Uint32V(rv2i(rv).(map[float64]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Uint32X(vp *map[float64]uint32, d *Decoder) {
+	v, changed := f.DecMapFloat64Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Uint32V(v map[float64]uint32, canChange bool,
+	d *Decoder) (_ map[float64]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float64]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uint64)
+		v, changed := fastpathTV.DecMapFloat64Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Uint64V(rv2i(rv).(map[float64]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Uint64X(vp *map[float64]uint64, d *Decoder) {
+	v, changed := f.DecMapFloat64Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Uint64V(v map[float64]uint64, canChange bool,
+	d *Decoder) (_ map[float64]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]uintptr)
+		v, changed := fastpathTV.DecMapFloat64UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64UintptrV(rv2i(rv).(map[float64]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64UintptrX(vp *map[float64]uintptr, d *Decoder) {
+	v, changed := f.DecMapFloat64UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64UintptrV(v map[float64]uintptr, canChange bool,
+	d *Decoder) (_ map[float64]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]int)
+		v, changed := fastpathTV.DecMapFloat64IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64IntV(rv2i(rv).(map[float64]int), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64IntX(vp *map[float64]int, d *Decoder) {
+	v, changed := f.DecMapFloat64IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64IntV(v map[float64]int, canChange bool,
+	d *Decoder) (_ map[float64]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]int8)
+		v, changed := fastpathTV.DecMapFloat64Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Int8V(rv2i(rv).(map[float64]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Int8X(vp *map[float64]int8, d *Decoder) {
+	v, changed := f.DecMapFloat64Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Int8V(v map[float64]int8, canChange bool,
+	d *Decoder) (_ map[float64]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[float64]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]int16)
+		v, changed := fastpathTV.DecMapFloat64Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Int16V(rv2i(rv).(map[float64]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Int16X(vp *map[float64]int16, d *Decoder) {
+	v, changed := f.DecMapFloat64Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Int16V(v map[float64]int16, canChange bool,
+	d *Decoder) (_ map[float64]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[float64]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]int32)
+		v, changed := fastpathTV.DecMapFloat64Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Int32V(rv2i(rv).(map[float64]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Int32X(vp *map[float64]int32, d *Decoder) {
+	v, changed := f.DecMapFloat64Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Int32V(v map[float64]int32, canChange bool,
+	d *Decoder) (_ map[float64]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float64]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]int64)
+		v, changed := fastpathTV.DecMapFloat64Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Int64V(rv2i(rv).(map[float64]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Int64X(vp *map[float64]int64, d *Decoder) {
+	v, changed := f.DecMapFloat64Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Int64V(v map[float64]int64, canChange bool,
+	d *Decoder) (_ map[float64]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]float32)
+		v, changed := fastpathTV.DecMapFloat64Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Float32V(rv2i(rv).(map[float64]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Float32X(vp *map[float64]float32, d *Decoder) {
+	v, changed := f.DecMapFloat64Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Float32V(v map[float64]float32, canChange bool,
+	d *Decoder) (_ map[float64]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[float64]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]float64)
+		v, changed := fastpathTV.DecMapFloat64Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64Float64V(rv2i(rv).(map[float64]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64Float64X(vp *map[float64]float64, d *Decoder) {
+	v, changed := f.DecMapFloat64Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64Float64V(v map[float64]float64, canChange bool,
+	d *Decoder) (_ map[float64]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[float64]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapFloat64BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[float64]bool)
+		v, changed := fastpathTV.DecMapFloat64BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapFloat64BoolV(rv2i(rv).(map[float64]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapFloat64BoolX(vp *map[float64]bool, d *Decoder) {
+	v, changed := f.DecMapFloat64BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapFloat64BoolV(v map[float64]bool, canChange bool,
+	d *Decoder) (_ map[float64]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[float64]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk float64
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeFloat64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]interface{})
+		v, changed := fastpathTV.DecMapUintIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintIntfV(rv2i(rv).(map[uint]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUintIntfX(vp *map[uint]interface{}, d *Decoder) {
+	v, changed := f.DecMapUintIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintIntfV(v map[uint]interface{}, canChange bool,
+	d *Decoder) (_ map[uint]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uint]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uint
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]string)
+		v, changed := fastpathTV.DecMapUintStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintStringV(rv2i(rv).(map[uint]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUintStringX(vp *map[uint]string, d *Decoder) {
+	v, changed := f.DecMapUintStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintStringV(v map[uint]string, canChange bool,
+	d *Decoder) (_ map[uint]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uint]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uint)
+		v, changed := fastpathTV.DecMapUintUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUintV(rv2i(rv).(map[uint]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUintX(vp *map[uint]uint, d *Decoder) {
+	v, changed := f.DecMapUintUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUintV(v map[uint]uint, canChange bool,
+	d *Decoder) (_ map[uint]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uint8)
+		v, changed := fastpathTV.DecMapUintUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUint8V(rv2i(rv).(map[uint]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUint8X(vp *map[uint]uint8, d *Decoder) {
+	v, changed := f.DecMapUintUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUint8V(v map[uint]uint8, canChange bool,
+	d *Decoder) (_ map[uint]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uint16)
+		v, changed := fastpathTV.DecMapUintUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUint16V(rv2i(rv).(map[uint]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUint16X(vp *map[uint]uint16, d *Decoder) {
+	v, changed := f.DecMapUintUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUint16V(v map[uint]uint16, canChange bool,
+	d *Decoder) (_ map[uint]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uint32)
+		v, changed := fastpathTV.DecMapUintUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUint32V(rv2i(rv).(map[uint]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUint32X(vp *map[uint]uint32, d *Decoder) {
+	v, changed := f.DecMapUintUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUint32V(v map[uint]uint32, canChange bool,
+	d *Decoder) (_ map[uint]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uint64)
+		v, changed := fastpathTV.DecMapUintUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUint64V(rv2i(rv).(map[uint]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUint64X(vp *map[uint]uint64, d *Decoder) {
+	v, changed := f.DecMapUintUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUint64V(v map[uint]uint64, canChange bool,
+	d *Decoder) (_ map[uint]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]uintptr)
+		v, changed := fastpathTV.DecMapUintUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintUintptrV(rv2i(rv).(map[uint]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUintUintptrX(vp *map[uint]uintptr, d *Decoder) {
+	v, changed := f.DecMapUintUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintUintptrV(v map[uint]uintptr, canChange bool,
+	d *Decoder) (_ map[uint]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]int)
+		v, changed := fastpathTV.DecMapUintIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintIntV(rv2i(rv).(map[uint]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUintIntX(vp *map[uint]int, d *Decoder) {
+	v, changed := f.DecMapUintIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintIntV(v map[uint]int, canChange bool,
+	d *Decoder) (_ map[uint]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]int8)
+		v, changed := fastpathTV.DecMapUintInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintInt8V(rv2i(rv).(map[uint]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUintInt8X(vp *map[uint]int8, d *Decoder) {
+	v, changed := f.DecMapUintInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintInt8V(v map[uint]int8, canChange bool,
+	d *Decoder) (_ map[uint]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]int16)
+		v, changed := fastpathTV.DecMapUintInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintInt16V(rv2i(rv).(map[uint]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUintInt16X(vp *map[uint]int16, d *Decoder) {
+	v, changed := f.DecMapUintInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintInt16V(v map[uint]int16, canChange bool,
+	d *Decoder) (_ map[uint]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]int32)
+		v, changed := fastpathTV.DecMapUintInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintInt32V(rv2i(rv).(map[uint]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintInt32X(vp *map[uint]int32, d *Decoder) {
+	v, changed := f.DecMapUintInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintInt32V(v map[uint]int32, canChange bool,
+	d *Decoder) (_ map[uint]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]int64)
+		v, changed := fastpathTV.DecMapUintInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintInt64V(rv2i(rv).(map[uint]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintInt64X(vp *map[uint]int64, d *Decoder) {
+	v, changed := f.DecMapUintInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintInt64V(v map[uint]int64, canChange bool,
+	d *Decoder) (_ map[uint]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]float32)
+		v, changed := fastpathTV.DecMapUintFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintFloat32V(rv2i(rv).(map[uint]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintFloat32X(vp *map[uint]float32, d *Decoder) {
+	v, changed := f.DecMapUintFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintFloat32V(v map[uint]float32, canChange bool,
+	d *Decoder) (_ map[uint]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]float64)
+		v, changed := fastpathTV.DecMapUintFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintFloat64V(rv2i(rv).(map[uint]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintFloat64X(vp *map[uint]float64, d *Decoder) {
+	v, changed := f.DecMapUintFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintFloat64V(v map[uint]float64, canChange bool,
+	d *Decoder) (_ map[uint]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint]bool)
+		v, changed := fastpathTV.DecMapUintBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintBoolV(rv2i(rv).(map[uint]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUintBoolX(vp *map[uint]bool, d *Decoder) {
+	v, changed := f.DecMapUintBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintBoolV(v map[uint]bool, canChange bool,
+	d *Decoder) (_ map[uint]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]interface{})
+		v, changed := fastpathTV.DecMapUint8IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8IntfV(rv2i(rv).(map[uint8]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8IntfX(vp *map[uint8]interface{}, d *Decoder) {
+	v, changed := f.DecMapUint8IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8IntfV(v map[uint8]interface{}, canChange bool,
+	d *Decoder) (_ map[uint8]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[uint8]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uint8
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]string)
+		v, changed := fastpathTV.DecMapUint8StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8StringV(rv2i(rv).(map[uint8]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8StringX(vp *map[uint8]string, d *Decoder) {
+	v, changed := f.DecMapUint8StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8StringV(v map[uint8]string, canChange bool,
+	d *Decoder) (_ map[uint8]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[uint8]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uint)
+		v, changed := fastpathTV.DecMapUint8UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8UintV(rv2i(rv).(map[uint8]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8UintX(vp *map[uint8]uint, d *Decoder) {
+	v, changed := f.DecMapUint8UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8UintV(v map[uint8]uint, canChange bool,
+	d *Decoder) (_ map[uint8]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uint8)
+		v, changed := fastpathTV.DecMapUint8Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Uint8V(rv2i(rv).(map[uint8]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Uint8X(vp *map[uint8]uint8, d *Decoder) {
+	v, changed := f.DecMapUint8Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Uint8V(v map[uint8]uint8, canChange bool,
+	d *Decoder) (_ map[uint8]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[uint8]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uint16)
+		v, changed := fastpathTV.DecMapUint8Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Uint16V(rv2i(rv).(map[uint8]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Uint16X(vp *map[uint8]uint16, d *Decoder) {
+	v, changed := f.DecMapUint8Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Uint16V(v map[uint8]uint16, canChange bool,
+	d *Decoder) (_ map[uint8]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[uint8]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uint32)
+		v, changed := fastpathTV.DecMapUint8Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Uint32V(rv2i(rv).(map[uint8]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Uint32X(vp *map[uint8]uint32, d *Decoder) {
+	v, changed := f.DecMapUint8Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Uint32V(v map[uint8]uint32, canChange bool,
+	d *Decoder) (_ map[uint8]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint8]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uint64)
+		v, changed := fastpathTV.DecMapUint8Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Uint64V(rv2i(rv).(map[uint8]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Uint64X(vp *map[uint8]uint64, d *Decoder) {
+	v, changed := f.DecMapUint8Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Uint64V(v map[uint8]uint64, canChange bool,
+	d *Decoder) (_ map[uint8]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]uintptr)
+		v, changed := fastpathTV.DecMapUint8UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8UintptrV(rv2i(rv).(map[uint8]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8UintptrX(vp *map[uint8]uintptr, d *Decoder) {
+	v, changed := f.DecMapUint8UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8UintptrV(v map[uint8]uintptr, canChange bool,
+	d *Decoder) (_ map[uint8]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]int)
+		v, changed := fastpathTV.DecMapUint8IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8IntV(rv2i(rv).(map[uint8]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8IntX(vp *map[uint8]int, d *Decoder) {
+	v, changed := f.DecMapUint8IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8IntV(v map[uint8]int, canChange bool,
+	d *Decoder) (_ map[uint8]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]int8)
+		v, changed := fastpathTV.DecMapUint8Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Int8V(rv2i(rv).(map[uint8]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Int8X(vp *map[uint8]int8, d *Decoder) {
+	v, changed := f.DecMapUint8Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Int8V(v map[uint8]int8, canChange bool,
+	d *Decoder) (_ map[uint8]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[uint8]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]int16)
+		v, changed := fastpathTV.DecMapUint8Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Int16V(rv2i(rv).(map[uint8]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Int16X(vp *map[uint8]int16, d *Decoder) {
+	v, changed := f.DecMapUint8Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Int16V(v map[uint8]int16, canChange bool,
+	d *Decoder) (_ map[uint8]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[uint8]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]int32)
+		v, changed := fastpathTV.DecMapUint8Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Int32V(rv2i(rv).(map[uint8]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Int32X(vp *map[uint8]int32, d *Decoder) {
+	v, changed := f.DecMapUint8Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Int32V(v map[uint8]int32, canChange bool,
+	d *Decoder) (_ map[uint8]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint8]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]int64)
+		v, changed := fastpathTV.DecMapUint8Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Int64V(rv2i(rv).(map[uint8]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Int64X(vp *map[uint8]int64, d *Decoder) {
+	v, changed := f.DecMapUint8Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Int64V(v map[uint8]int64, canChange bool,
+	d *Decoder) (_ map[uint8]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]float32)
+		v, changed := fastpathTV.DecMapUint8Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Float32V(rv2i(rv).(map[uint8]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Float32X(vp *map[uint8]float32, d *Decoder) {
+	v, changed := f.DecMapUint8Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Float32V(v map[uint8]float32, canChange bool,
+	d *Decoder) (_ map[uint8]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint8]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]float64)
+		v, changed := fastpathTV.DecMapUint8Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8Float64V(rv2i(rv).(map[uint8]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8Float64X(vp *map[uint8]float64, d *Decoder) {
+	v, changed := f.DecMapUint8Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8Float64V(v map[uint8]float64, canChange bool,
+	d *Decoder) (_ map[uint8]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint8]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint8BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint8]bool)
+		v, changed := fastpathTV.DecMapUint8BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint8BoolV(rv2i(rv).(map[uint8]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUint8BoolX(vp *map[uint8]bool, d *Decoder) {
+	v, changed := f.DecMapUint8BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint8BoolV(v map[uint8]bool, canChange bool,
+	d *Decoder) (_ map[uint8]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[uint8]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint8
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]interface{})
+		v, changed := fastpathTV.DecMapUint16IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16IntfV(rv2i(rv).(map[uint16]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16IntfX(vp *map[uint16]interface{}, d *Decoder) {
+	v, changed := f.DecMapUint16IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16IntfV(v map[uint16]interface{}, canChange bool,
+	d *Decoder) (_ map[uint16]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[uint16]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uint16
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]string)
+		v, changed := fastpathTV.DecMapUint16StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16StringV(rv2i(rv).(map[uint16]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16StringX(vp *map[uint16]string, d *Decoder) {
+	v, changed := f.DecMapUint16StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16StringV(v map[uint16]string, canChange bool,
+	d *Decoder) (_ map[uint16]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[uint16]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uint)
+		v, changed := fastpathTV.DecMapUint16UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16UintV(rv2i(rv).(map[uint16]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16UintX(vp *map[uint16]uint, d *Decoder) {
+	v, changed := f.DecMapUint16UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16UintV(v map[uint16]uint, canChange bool,
+	d *Decoder) (_ map[uint16]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uint8)
+		v, changed := fastpathTV.DecMapUint16Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Uint8V(rv2i(rv).(map[uint16]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Uint8X(vp *map[uint16]uint8, d *Decoder) {
+	v, changed := f.DecMapUint16Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Uint8V(v map[uint16]uint8, canChange bool,
+	d *Decoder) (_ map[uint16]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[uint16]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uint16)
+		v, changed := fastpathTV.DecMapUint16Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Uint16V(rv2i(rv).(map[uint16]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Uint16X(vp *map[uint16]uint16, d *Decoder) {
+	v, changed := f.DecMapUint16Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Uint16V(v map[uint16]uint16, canChange bool,
+	d *Decoder) (_ map[uint16]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 4)
+		v = make(map[uint16]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uint32)
+		v, changed := fastpathTV.DecMapUint16Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Uint32V(rv2i(rv).(map[uint16]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Uint32X(vp *map[uint16]uint32, d *Decoder) {
+	v, changed := f.DecMapUint16Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Uint32V(v map[uint16]uint32, canChange bool,
+	d *Decoder) (_ map[uint16]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[uint16]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uint64)
+		v, changed := fastpathTV.DecMapUint16Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Uint64V(rv2i(rv).(map[uint16]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Uint64X(vp *map[uint16]uint64, d *Decoder) {
+	v, changed := f.DecMapUint16Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Uint64V(v map[uint16]uint64, canChange bool,
+	d *Decoder) (_ map[uint16]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]uintptr)
+		v, changed := fastpathTV.DecMapUint16UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16UintptrV(rv2i(rv).(map[uint16]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16UintptrX(vp *map[uint16]uintptr, d *Decoder) {
+	v, changed := f.DecMapUint16UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16UintptrV(v map[uint16]uintptr, canChange bool,
+	d *Decoder) (_ map[uint16]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]int)
+		v, changed := fastpathTV.DecMapUint16IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16IntV(rv2i(rv).(map[uint16]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16IntX(vp *map[uint16]int, d *Decoder) {
+	v, changed := f.DecMapUint16IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16IntV(v map[uint16]int, canChange bool,
+	d *Decoder) (_ map[uint16]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]int8)
+		v, changed := fastpathTV.DecMapUint16Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Int8V(rv2i(rv).(map[uint16]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Int8X(vp *map[uint16]int8, d *Decoder) {
+	v, changed := f.DecMapUint16Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Int8V(v map[uint16]int8, canChange bool,
+	d *Decoder) (_ map[uint16]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[uint16]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]int16)
+		v, changed := fastpathTV.DecMapUint16Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Int16V(rv2i(rv).(map[uint16]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Int16X(vp *map[uint16]int16, d *Decoder) {
+	v, changed := f.DecMapUint16Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Int16V(v map[uint16]int16, canChange bool,
+	d *Decoder) (_ map[uint16]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 4)
+		v = make(map[uint16]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]int32)
+		v, changed := fastpathTV.DecMapUint16Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Int32V(rv2i(rv).(map[uint16]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Int32X(vp *map[uint16]int32, d *Decoder) {
+	v, changed := f.DecMapUint16Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Int32V(v map[uint16]int32, canChange bool,
+	d *Decoder) (_ map[uint16]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[uint16]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]int64)
+		v, changed := fastpathTV.DecMapUint16Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Int64V(rv2i(rv).(map[uint16]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Int64X(vp *map[uint16]int64, d *Decoder) {
+	v, changed := f.DecMapUint16Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Int64V(v map[uint16]int64, canChange bool,
+	d *Decoder) (_ map[uint16]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]float32)
+		v, changed := fastpathTV.DecMapUint16Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Float32V(rv2i(rv).(map[uint16]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Float32X(vp *map[uint16]float32, d *Decoder) {
+	v, changed := f.DecMapUint16Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Float32V(v map[uint16]float32, canChange bool,
+	d *Decoder) (_ map[uint16]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[uint16]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]float64)
+		v, changed := fastpathTV.DecMapUint16Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16Float64V(rv2i(rv).(map[uint16]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16Float64X(vp *map[uint16]float64, d *Decoder) {
+	v, changed := f.DecMapUint16Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16Float64V(v map[uint16]float64, canChange bool,
+	d *Decoder) (_ map[uint16]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint16]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint16BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint16]bool)
+		v, changed := fastpathTV.DecMapUint16BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint16BoolV(rv2i(rv).(map[uint16]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUint16BoolX(vp *map[uint16]bool, d *Decoder) {
+	v, changed := f.DecMapUint16BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint16BoolV(v map[uint16]bool, canChange bool,
+	d *Decoder) (_ map[uint16]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[uint16]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint16
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]interface{})
+		v, changed := fastpathTV.DecMapUint32IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32IntfV(rv2i(rv).(map[uint32]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32IntfX(vp *map[uint32]interface{}, d *Decoder) {
+	v, changed := f.DecMapUint32IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32IntfV(v map[uint32]interface{}, canChange bool,
+	d *Decoder) (_ map[uint32]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[uint32]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uint32
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]string)
+		v, changed := fastpathTV.DecMapUint32StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32StringV(rv2i(rv).(map[uint32]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32StringX(vp *map[uint32]string, d *Decoder) {
+	v, changed := f.DecMapUint32StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32StringV(v map[uint32]string, canChange bool,
+	d *Decoder) (_ map[uint32]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[uint32]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uint)
+		v, changed := fastpathTV.DecMapUint32UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32UintV(rv2i(rv).(map[uint32]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32UintX(vp *map[uint32]uint, d *Decoder) {
+	v, changed := f.DecMapUint32UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32UintV(v map[uint32]uint, canChange bool,
+	d *Decoder) (_ map[uint32]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uint8)
+		v, changed := fastpathTV.DecMapUint32Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Uint8V(rv2i(rv).(map[uint32]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Uint8X(vp *map[uint32]uint8, d *Decoder) {
+	v, changed := f.DecMapUint32Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Uint8V(v map[uint32]uint8, canChange bool,
+	d *Decoder) (_ map[uint32]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint32]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uint16)
+		v, changed := fastpathTV.DecMapUint32Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Uint16V(rv2i(rv).(map[uint32]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Uint16X(vp *map[uint32]uint16, d *Decoder) {
+	v, changed := f.DecMapUint32Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Uint16V(v map[uint32]uint16, canChange bool,
+	d *Decoder) (_ map[uint32]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[uint32]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uint32)
+		v, changed := fastpathTV.DecMapUint32Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Uint32V(rv2i(rv).(map[uint32]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Uint32X(vp *map[uint32]uint32, d *Decoder) {
+	v, changed := f.DecMapUint32Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Uint32V(v map[uint32]uint32, canChange bool,
+	d *Decoder) (_ map[uint32]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[uint32]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uint64)
+		v, changed := fastpathTV.DecMapUint32Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Uint64V(rv2i(rv).(map[uint32]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Uint64X(vp *map[uint32]uint64, d *Decoder) {
+	v, changed := f.DecMapUint32Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Uint64V(v map[uint32]uint64, canChange bool,
+	d *Decoder) (_ map[uint32]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]uintptr)
+		v, changed := fastpathTV.DecMapUint32UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32UintptrV(rv2i(rv).(map[uint32]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32UintptrX(vp *map[uint32]uintptr, d *Decoder) {
+	v, changed := f.DecMapUint32UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32UintptrV(v map[uint32]uintptr, canChange bool,
+	d *Decoder) (_ map[uint32]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]int)
+		v, changed := fastpathTV.DecMapUint32IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32IntV(rv2i(rv).(map[uint32]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32IntX(vp *map[uint32]int, d *Decoder) {
+	v, changed := f.DecMapUint32IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32IntV(v map[uint32]int, canChange bool,
+	d *Decoder) (_ map[uint32]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]int8)
+		v, changed := fastpathTV.DecMapUint32Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Int8V(rv2i(rv).(map[uint32]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Int8X(vp *map[uint32]int8, d *Decoder) {
+	v, changed := f.DecMapUint32Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Int8V(v map[uint32]int8, canChange bool,
+	d *Decoder) (_ map[uint32]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint32]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]int16)
+		v, changed := fastpathTV.DecMapUint32Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Int16V(rv2i(rv).(map[uint32]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Int16X(vp *map[uint32]int16, d *Decoder) {
+	v, changed := f.DecMapUint32Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Int16V(v map[uint32]int16, canChange bool,
+	d *Decoder) (_ map[uint32]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[uint32]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]int32)
+		v, changed := fastpathTV.DecMapUint32Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Int32V(rv2i(rv).(map[uint32]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Int32X(vp *map[uint32]int32, d *Decoder) {
+	v, changed := f.DecMapUint32Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Int32V(v map[uint32]int32, canChange bool,
+	d *Decoder) (_ map[uint32]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[uint32]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]int64)
+		v, changed := fastpathTV.DecMapUint32Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Int64V(rv2i(rv).(map[uint32]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Int64X(vp *map[uint32]int64, d *Decoder) {
+	v, changed := f.DecMapUint32Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Int64V(v map[uint32]int64, canChange bool,
+	d *Decoder) (_ map[uint32]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]float32)
+		v, changed := fastpathTV.DecMapUint32Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Float32V(rv2i(rv).(map[uint32]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Float32X(vp *map[uint32]float32, d *Decoder) {
+	v, changed := f.DecMapUint32Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Float32V(v map[uint32]float32, canChange bool,
+	d *Decoder) (_ map[uint32]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[uint32]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]float64)
+		v, changed := fastpathTV.DecMapUint32Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32Float64V(rv2i(rv).(map[uint32]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32Float64X(vp *map[uint32]float64, d *Decoder) {
+	v, changed := f.DecMapUint32Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32Float64V(v map[uint32]float64, canChange bool,
+	d *Decoder) (_ map[uint32]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint32]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint32BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint32]bool)
+		v, changed := fastpathTV.DecMapUint32BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint32BoolV(rv2i(rv).(map[uint32]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUint32BoolX(vp *map[uint32]bool, d *Decoder) {
+	v, changed := f.DecMapUint32BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint32BoolV(v map[uint32]bool, canChange bool,
+	d *Decoder) (_ map[uint32]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[uint32]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint32
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]interface{})
+		v, changed := fastpathTV.DecMapUint64IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64IntfV(rv2i(rv).(map[uint64]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64IntfX(vp *map[uint64]interface{}, d *Decoder) {
+	v, changed := f.DecMapUint64IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64IntfV(v map[uint64]interface{}, canChange bool,
+	d *Decoder) (_ map[uint64]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uint64]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uint64
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]string)
+		v, changed := fastpathTV.DecMapUint64StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64StringV(rv2i(rv).(map[uint64]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64StringX(vp *map[uint64]string, d *Decoder) {
+	v, changed := f.DecMapUint64StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64StringV(v map[uint64]string, canChange bool,
+	d *Decoder) (_ map[uint64]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uint64]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uint)
+		v, changed := fastpathTV.DecMapUint64UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64UintV(rv2i(rv).(map[uint64]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64UintX(vp *map[uint64]uint, d *Decoder) {
+	v, changed := f.DecMapUint64UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64UintV(v map[uint64]uint, canChange bool,
+	d *Decoder) (_ map[uint64]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uint8)
+		v, changed := fastpathTV.DecMapUint64Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Uint8V(rv2i(rv).(map[uint64]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Uint8X(vp *map[uint64]uint8, d *Decoder) {
+	v, changed := f.DecMapUint64Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Uint8V(v map[uint64]uint8, canChange bool,
+	d *Decoder) (_ map[uint64]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint64]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uint16)
+		v, changed := fastpathTV.DecMapUint64Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Uint16V(rv2i(rv).(map[uint64]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Uint16X(vp *map[uint64]uint16, d *Decoder) {
+	v, changed := f.DecMapUint64Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Uint16V(v map[uint64]uint16, canChange bool,
+	d *Decoder) (_ map[uint64]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint64]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uint32)
+		v, changed := fastpathTV.DecMapUint64Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Uint32V(rv2i(rv).(map[uint64]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Uint32X(vp *map[uint64]uint32, d *Decoder) {
+	v, changed := f.DecMapUint64Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Uint32V(v map[uint64]uint32, canChange bool,
+	d *Decoder) (_ map[uint64]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint64]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uint64)
+		v, changed := fastpathTV.DecMapUint64Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Uint64V(rv2i(rv).(map[uint64]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Uint64X(vp *map[uint64]uint64, d *Decoder) {
+	v, changed := f.DecMapUint64Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Uint64V(v map[uint64]uint64, canChange bool,
+	d *Decoder) (_ map[uint64]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]uintptr)
+		v, changed := fastpathTV.DecMapUint64UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64UintptrV(rv2i(rv).(map[uint64]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64UintptrX(vp *map[uint64]uintptr, d *Decoder) {
+	v, changed := f.DecMapUint64UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64UintptrV(v map[uint64]uintptr, canChange bool,
+	d *Decoder) (_ map[uint64]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]int)
+		v, changed := fastpathTV.DecMapUint64IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64IntV(rv2i(rv).(map[uint64]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64IntX(vp *map[uint64]int, d *Decoder) {
+	v, changed := f.DecMapUint64IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64IntV(v map[uint64]int, canChange bool,
+	d *Decoder) (_ map[uint64]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]int8)
+		v, changed := fastpathTV.DecMapUint64Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Int8V(rv2i(rv).(map[uint64]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Int8X(vp *map[uint64]int8, d *Decoder) {
+	v, changed := f.DecMapUint64Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Int8V(v map[uint64]int8, canChange bool,
+	d *Decoder) (_ map[uint64]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint64]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]int16)
+		v, changed := fastpathTV.DecMapUint64Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Int16V(rv2i(rv).(map[uint64]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Int16X(vp *map[uint64]int16, d *Decoder) {
+	v, changed := f.DecMapUint64Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Int16V(v map[uint64]int16, canChange bool,
+	d *Decoder) (_ map[uint64]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uint64]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]int32)
+		v, changed := fastpathTV.DecMapUint64Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Int32V(rv2i(rv).(map[uint64]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Int32X(vp *map[uint64]int32, d *Decoder) {
+	v, changed := f.DecMapUint64Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Int32V(v map[uint64]int32, canChange bool,
+	d *Decoder) (_ map[uint64]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint64]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]int64)
+		v, changed := fastpathTV.DecMapUint64Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Int64V(rv2i(rv).(map[uint64]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Int64X(vp *map[uint64]int64, d *Decoder) {
+	v, changed := f.DecMapUint64Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Int64V(v map[uint64]int64, canChange bool,
+	d *Decoder) (_ map[uint64]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]float32)
+		v, changed := fastpathTV.DecMapUint64Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Float32V(rv2i(rv).(map[uint64]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Float32X(vp *map[uint64]float32, d *Decoder) {
+	v, changed := f.DecMapUint64Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Float32V(v map[uint64]float32, canChange bool,
+	d *Decoder) (_ map[uint64]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uint64]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]float64)
+		v, changed := fastpathTV.DecMapUint64Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64Float64V(rv2i(rv).(map[uint64]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64Float64X(vp *map[uint64]float64, d *Decoder) {
+	v, changed := f.DecMapUint64Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64Float64V(v map[uint64]float64, canChange bool,
+	d *Decoder) (_ map[uint64]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uint64]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUint64BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uint64]bool)
+		v, changed := fastpathTV.DecMapUint64BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUint64BoolV(rv2i(rv).(map[uint64]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUint64BoolX(vp *map[uint64]bool, d *Decoder) {
+	v, changed := f.DecMapUint64BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUint64BoolV(v map[uint64]bool, canChange bool,
+	d *Decoder) (_ map[uint64]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uint64]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uint64
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeUint64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]interface{})
+		v, changed := fastpathTV.DecMapUintptrIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrIntfV(rv2i(rv).(map[uintptr]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrIntfX(vp *map[uintptr]interface{}, d *Decoder) {
+	v, changed := f.DecMapUintptrIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrIntfV(v map[uintptr]interface{}, canChange bool,
+	d *Decoder) (_ map[uintptr]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uintptr]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk uintptr
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]string)
+		v, changed := fastpathTV.DecMapUintptrStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrStringV(rv2i(rv).(map[uintptr]string), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrStringX(vp *map[uintptr]string, d *Decoder) {
+	v, changed := f.DecMapUintptrStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrStringV(v map[uintptr]string, canChange bool,
+	d *Decoder) (_ map[uintptr]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[uintptr]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uint)
+		v, changed := fastpathTV.DecMapUintptrUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUintV(rv2i(rv).(map[uintptr]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUintX(vp *map[uintptr]uint, d *Decoder) {
+	v, changed := f.DecMapUintptrUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUintV(v map[uintptr]uint, canChange bool,
+	d *Decoder) (_ map[uintptr]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uint8)
+		v, changed := fastpathTV.DecMapUintptrUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUint8V(rv2i(rv).(map[uintptr]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUint8X(vp *map[uintptr]uint8, d *Decoder) {
+	v, changed := f.DecMapUintptrUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUint8V(v map[uintptr]uint8, canChange bool,
+	d *Decoder) (_ map[uintptr]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uintptr]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uint16)
+		v, changed := fastpathTV.DecMapUintptrUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUint16V(rv2i(rv).(map[uintptr]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUint16X(vp *map[uintptr]uint16, d *Decoder) {
+	v, changed := f.DecMapUintptrUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUint16V(v map[uintptr]uint16, canChange bool,
+	d *Decoder) (_ map[uintptr]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uintptr]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uint32)
+		v, changed := fastpathTV.DecMapUintptrUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUint32V(rv2i(rv).(map[uintptr]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUint32X(vp *map[uintptr]uint32, d *Decoder) {
+	v, changed := f.DecMapUintptrUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUint32V(v map[uintptr]uint32, canChange bool,
+	d *Decoder) (_ map[uintptr]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uintptr]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uint64)
+		v, changed := fastpathTV.DecMapUintptrUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUint64V(rv2i(rv).(map[uintptr]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUint64X(vp *map[uintptr]uint64, d *Decoder) {
+	v, changed := f.DecMapUintptrUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUint64V(v map[uintptr]uint64, canChange bool,
+	d *Decoder) (_ map[uintptr]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]uintptr)
+		v, changed := fastpathTV.DecMapUintptrUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrUintptrV(rv2i(rv).(map[uintptr]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrUintptrX(vp *map[uintptr]uintptr, d *Decoder) {
+	v, changed := f.DecMapUintptrUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrUintptrV(v map[uintptr]uintptr, canChange bool,
+	d *Decoder) (_ map[uintptr]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]int)
+		v, changed := fastpathTV.DecMapUintptrIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrIntV(rv2i(rv).(map[uintptr]int), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrIntX(vp *map[uintptr]int, d *Decoder) {
+	v, changed := f.DecMapUintptrIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrIntV(v map[uintptr]int, canChange bool,
+	d *Decoder) (_ map[uintptr]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]int8)
+		v, changed := fastpathTV.DecMapUintptrInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrInt8V(rv2i(rv).(map[uintptr]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrInt8X(vp *map[uintptr]int8, d *Decoder) {
+	v, changed := f.DecMapUintptrInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrInt8V(v map[uintptr]int8, canChange bool,
+	d *Decoder) (_ map[uintptr]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uintptr]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]int16)
+		v, changed := fastpathTV.DecMapUintptrInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrInt16V(rv2i(rv).(map[uintptr]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrInt16X(vp *map[uintptr]int16, d *Decoder) {
+	v, changed := f.DecMapUintptrInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrInt16V(v map[uintptr]int16, canChange bool,
+	d *Decoder) (_ map[uintptr]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[uintptr]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]int32)
+		v, changed := fastpathTV.DecMapUintptrInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrInt32V(rv2i(rv).(map[uintptr]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrInt32X(vp *map[uintptr]int32, d *Decoder) {
+	v, changed := f.DecMapUintptrInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrInt32V(v map[uintptr]int32, canChange bool,
+	d *Decoder) (_ map[uintptr]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uintptr]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]int64)
+		v, changed := fastpathTV.DecMapUintptrInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrInt64V(rv2i(rv).(map[uintptr]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrInt64X(vp *map[uintptr]int64, d *Decoder) {
+	v, changed := f.DecMapUintptrInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrInt64V(v map[uintptr]int64, canChange bool,
+	d *Decoder) (_ map[uintptr]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]float32)
+		v, changed := fastpathTV.DecMapUintptrFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrFloat32V(rv2i(rv).(map[uintptr]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrFloat32X(vp *map[uintptr]float32, d *Decoder) {
+	v, changed := f.DecMapUintptrFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrFloat32V(v map[uintptr]float32, canChange bool,
+	d *Decoder) (_ map[uintptr]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[uintptr]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]float64)
+		v, changed := fastpathTV.DecMapUintptrFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrFloat64V(rv2i(rv).(map[uintptr]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrFloat64X(vp *map[uintptr]float64, d *Decoder) {
+	v, changed := f.DecMapUintptrFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrFloat64V(v map[uintptr]float64, canChange bool,
+	d *Decoder) (_ map[uintptr]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[uintptr]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapUintptrBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[uintptr]bool)
+		v, changed := fastpathTV.DecMapUintptrBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapUintptrBoolV(rv2i(rv).(map[uintptr]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapUintptrBoolX(vp *map[uintptr]bool, d *Decoder) {
+	v, changed := f.DecMapUintptrBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapUintptrBoolV(v map[uintptr]bool, canChange bool,
+	d *Decoder) (_ map[uintptr]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[uintptr]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk uintptr
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]interface{})
+		v, changed := fastpathTV.DecMapIntIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntIntfV(rv2i(rv).(map[int]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapIntIntfX(vp *map[int]interface{}, d *Decoder) {
+	v, changed := f.DecMapIntIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntIntfV(v map[int]interface{}, canChange bool,
+	d *Decoder) (_ map[int]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[int]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk int
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]string)
+		v, changed := fastpathTV.DecMapIntStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntStringV(rv2i(rv).(map[int]string), false, d)
+	}
+}
+func (f fastpathT) DecMapIntStringX(vp *map[int]string, d *Decoder) {
+	v, changed := f.DecMapIntStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntStringV(v map[int]string, canChange bool,
+	d *Decoder) (_ map[int]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[int]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uint)
+		v, changed := fastpathTV.DecMapIntUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUintV(rv2i(rv).(map[int]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUintX(vp *map[int]uint, d *Decoder) {
+	v, changed := f.DecMapIntUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUintV(v map[int]uint, canChange bool,
+	d *Decoder) (_ map[int]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uint8)
+		v, changed := fastpathTV.DecMapIntUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUint8V(rv2i(rv).(map[int]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUint8X(vp *map[int]uint8, d *Decoder) {
+	v, changed := f.DecMapIntUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUint8V(v map[int]uint8, canChange bool,
+	d *Decoder) (_ map[int]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uint16)
+		v, changed := fastpathTV.DecMapIntUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUint16V(rv2i(rv).(map[int]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUint16X(vp *map[int]uint16, d *Decoder) {
+	v, changed := f.DecMapIntUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUint16V(v map[int]uint16, canChange bool,
+	d *Decoder) (_ map[int]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uint32)
+		v, changed := fastpathTV.DecMapIntUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUint32V(rv2i(rv).(map[int]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUint32X(vp *map[int]uint32, d *Decoder) {
+	v, changed := f.DecMapIntUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUint32V(v map[int]uint32, canChange bool,
+	d *Decoder) (_ map[int]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uint64)
+		v, changed := fastpathTV.DecMapIntUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUint64V(rv2i(rv).(map[int]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUint64X(vp *map[int]uint64, d *Decoder) {
+	v, changed := f.DecMapIntUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUint64V(v map[int]uint64, canChange bool,
+	d *Decoder) (_ map[int]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]uintptr)
+		v, changed := fastpathTV.DecMapIntUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntUintptrV(rv2i(rv).(map[int]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapIntUintptrX(vp *map[int]uintptr, d *Decoder) {
+	v, changed := f.DecMapIntUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntUintptrV(v map[int]uintptr, canChange bool,
+	d *Decoder) (_ map[int]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]int)
+		v, changed := fastpathTV.DecMapIntIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntIntV(rv2i(rv).(map[int]int), false, d)
+	}
+}
+func (f fastpathT) DecMapIntIntX(vp *map[int]int, d *Decoder) {
+	v, changed := f.DecMapIntIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntIntV(v map[int]int, canChange bool,
+	d *Decoder) (_ map[int]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]int8)
+		v, changed := fastpathTV.DecMapIntInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntInt8V(rv2i(rv).(map[int]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapIntInt8X(vp *map[int]int8, d *Decoder) {
+	v, changed := f.DecMapIntInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntInt8V(v map[int]int8, canChange bool,
+	d *Decoder) (_ map[int]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]int16)
+		v, changed := fastpathTV.DecMapIntInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntInt16V(rv2i(rv).(map[int]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapIntInt16X(vp *map[int]int16, d *Decoder) {
+	v, changed := f.DecMapIntInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntInt16V(v map[int]int16, canChange bool,
+	d *Decoder) (_ map[int]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]int32)
+		v, changed := fastpathTV.DecMapIntInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntInt32V(rv2i(rv).(map[int]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntInt32X(vp *map[int]int32, d *Decoder) {
+	v, changed := f.DecMapIntInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntInt32V(v map[int]int32, canChange bool,
+	d *Decoder) (_ map[int]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]int64)
+		v, changed := fastpathTV.DecMapIntInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntInt64V(rv2i(rv).(map[int]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntInt64X(vp *map[int]int64, d *Decoder) {
+	v, changed := f.DecMapIntInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntInt64V(v map[int]int64, canChange bool,
+	d *Decoder) (_ map[int]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]float32)
+		v, changed := fastpathTV.DecMapIntFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntFloat32V(rv2i(rv).(map[int]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapIntFloat32X(vp *map[int]float32, d *Decoder) {
+	v, changed := f.DecMapIntFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntFloat32V(v map[int]float32, canChange bool,
+	d *Decoder) (_ map[int]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]float64)
+		v, changed := fastpathTV.DecMapIntFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntFloat64V(rv2i(rv).(map[int]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapIntFloat64X(vp *map[int]float64, d *Decoder) {
+	v, changed := f.DecMapIntFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntFloat64V(v map[int]float64, canChange bool,
+	d *Decoder) (_ map[int]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapIntBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int]bool)
+		v, changed := fastpathTV.DecMapIntBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapIntBoolV(rv2i(rv).(map[int]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapIntBoolX(vp *map[int]bool, d *Decoder) {
+	v, changed := f.DecMapIntBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapIntBoolV(v map[int]bool, canChange bool,
+	d *Decoder) (_ map[int]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]interface{})
+		v, changed := fastpathTV.DecMapInt8IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8IntfV(rv2i(rv).(map[int8]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8IntfX(vp *map[int8]interface{}, d *Decoder) {
+	v, changed := f.DecMapInt8IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8IntfV(v map[int8]interface{}, canChange bool,
+	d *Decoder) (_ map[int8]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[int8]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk int8
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]string)
+		v, changed := fastpathTV.DecMapInt8StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8StringV(rv2i(rv).(map[int8]string), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8StringX(vp *map[int8]string, d *Decoder) {
+	v, changed := f.DecMapInt8StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8StringV(v map[int8]string, canChange bool,
+	d *Decoder) (_ map[int8]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[int8]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uint)
+		v, changed := fastpathTV.DecMapInt8UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8UintV(rv2i(rv).(map[int8]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8UintX(vp *map[int8]uint, d *Decoder) {
+	v, changed := f.DecMapInt8UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8UintV(v map[int8]uint, canChange bool,
+	d *Decoder) (_ map[int8]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uint8)
+		v, changed := fastpathTV.DecMapInt8Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Uint8V(rv2i(rv).(map[int8]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Uint8X(vp *map[int8]uint8, d *Decoder) {
+	v, changed := f.DecMapInt8Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Uint8V(v map[int8]uint8, canChange bool,
+	d *Decoder) (_ map[int8]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[int8]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uint16)
+		v, changed := fastpathTV.DecMapInt8Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Uint16V(rv2i(rv).(map[int8]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Uint16X(vp *map[int8]uint16, d *Decoder) {
+	v, changed := f.DecMapInt8Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Uint16V(v map[int8]uint16, canChange bool,
+	d *Decoder) (_ map[int8]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[int8]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uint32)
+		v, changed := fastpathTV.DecMapInt8Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Uint32V(rv2i(rv).(map[int8]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Uint32X(vp *map[int8]uint32, d *Decoder) {
+	v, changed := f.DecMapInt8Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Uint32V(v map[int8]uint32, canChange bool,
+	d *Decoder) (_ map[int8]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int8]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uint64)
+		v, changed := fastpathTV.DecMapInt8Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Uint64V(rv2i(rv).(map[int8]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Uint64X(vp *map[int8]uint64, d *Decoder) {
+	v, changed := f.DecMapInt8Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Uint64V(v map[int8]uint64, canChange bool,
+	d *Decoder) (_ map[int8]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]uintptr)
+		v, changed := fastpathTV.DecMapInt8UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8UintptrV(rv2i(rv).(map[int8]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8UintptrX(vp *map[int8]uintptr, d *Decoder) {
+	v, changed := f.DecMapInt8UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8UintptrV(v map[int8]uintptr, canChange bool,
+	d *Decoder) (_ map[int8]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]int)
+		v, changed := fastpathTV.DecMapInt8IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8IntV(rv2i(rv).(map[int8]int), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8IntX(vp *map[int8]int, d *Decoder) {
+	v, changed := f.DecMapInt8IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8IntV(v map[int8]int, canChange bool,
+	d *Decoder) (_ map[int8]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]int8)
+		v, changed := fastpathTV.DecMapInt8Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Int8V(rv2i(rv).(map[int8]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Int8X(vp *map[int8]int8, d *Decoder) {
+	v, changed := f.DecMapInt8Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Int8V(v map[int8]int8, canChange bool,
+	d *Decoder) (_ map[int8]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[int8]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]int16)
+		v, changed := fastpathTV.DecMapInt8Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Int16V(rv2i(rv).(map[int8]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Int16X(vp *map[int8]int16, d *Decoder) {
+	v, changed := f.DecMapInt8Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Int16V(v map[int8]int16, canChange bool,
+	d *Decoder) (_ map[int8]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[int8]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]int32)
+		v, changed := fastpathTV.DecMapInt8Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Int32V(rv2i(rv).(map[int8]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Int32X(vp *map[int8]int32, d *Decoder) {
+	v, changed := f.DecMapInt8Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Int32V(v map[int8]int32, canChange bool,
+	d *Decoder) (_ map[int8]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int8]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]int64)
+		v, changed := fastpathTV.DecMapInt8Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Int64V(rv2i(rv).(map[int8]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Int64X(vp *map[int8]int64, d *Decoder) {
+	v, changed := f.DecMapInt8Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Int64V(v map[int8]int64, canChange bool,
+	d *Decoder) (_ map[int8]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]float32)
+		v, changed := fastpathTV.DecMapInt8Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Float32V(rv2i(rv).(map[int8]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Float32X(vp *map[int8]float32, d *Decoder) {
+	v, changed := f.DecMapInt8Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Float32V(v map[int8]float32, canChange bool,
+	d *Decoder) (_ map[int8]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int8]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]float64)
+		v, changed := fastpathTV.DecMapInt8Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8Float64V(rv2i(rv).(map[int8]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8Float64X(vp *map[int8]float64, d *Decoder) {
+	v, changed := f.DecMapInt8Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8Float64V(v map[int8]float64, canChange bool,
+	d *Decoder) (_ map[int8]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int8]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt8BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int8]bool)
+		v, changed := fastpathTV.DecMapInt8BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt8BoolV(rv2i(rv).(map[int8]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapInt8BoolX(vp *map[int8]bool, d *Decoder) {
+	v, changed := f.DecMapInt8BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt8BoolV(v map[int8]bool, canChange bool,
+	d *Decoder) (_ map[int8]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[int8]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int8
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]interface{})
+		v, changed := fastpathTV.DecMapInt16IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16IntfV(rv2i(rv).(map[int16]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16IntfX(vp *map[int16]interface{}, d *Decoder) {
+	v, changed := f.DecMapInt16IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16IntfV(v map[int16]interface{}, canChange bool,
+	d *Decoder) (_ map[int16]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[int16]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk int16
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]string)
+		v, changed := fastpathTV.DecMapInt16StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16StringV(rv2i(rv).(map[int16]string), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16StringX(vp *map[int16]string, d *Decoder) {
+	v, changed := f.DecMapInt16StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16StringV(v map[int16]string, canChange bool,
+	d *Decoder) (_ map[int16]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 18)
+		v = make(map[int16]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uint)
+		v, changed := fastpathTV.DecMapInt16UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16UintV(rv2i(rv).(map[int16]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16UintX(vp *map[int16]uint, d *Decoder) {
+	v, changed := f.DecMapInt16UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16UintV(v map[int16]uint, canChange bool,
+	d *Decoder) (_ map[int16]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uint8)
+		v, changed := fastpathTV.DecMapInt16Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Uint8V(rv2i(rv).(map[int16]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Uint8X(vp *map[int16]uint8, d *Decoder) {
+	v, changed := f.DecMapInt16Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Uint8V(v map[int16]uint8, canChange bool,
+	d *Decoder) (_ map[int16]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[int16]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uint16)
+		v, changed := fastpathTV.DecMapInt16Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Uint16V(rv2i(rv).(map[int16]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Uint16X(vp *map[int16]uint16, d *Decoder) {
+	v, changed := f.DecMapInt16Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Uint16V(v map[int16]uint16, canChange bool,
+	d *Decoder) (_ map[int16]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 4)
+		v = make(map[int16]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uint32)
+		v, changed := fastpathTV.DecMapInt16Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Uint32V(rv2i(rv).(map[int16]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Uint32X(vp *map[int16]uint32, d *Decoder) {
+	v, changed := f.DecMapInt16Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Uint32V(v map[int16]uint32, canChange bool,
+	d *Decoder) (_ map[int16]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[int16]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uint64)
+		v, changed := fastpathTV.DecMapInt16Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Uint64V(rv2i(rv).(map[int16]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Uint64X(vp *map[int16]uint64, d *Decoder) {
+	v, changed := f.DecMapInt16Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Uint64V(v map[int16]uint64, canChange bool,
+	d *Decoder) (_ map[int16]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]uintptr)
+		v, changed := fastpathTV.DecMapInt16UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16UintptrV(rv2i(rv).(map[int16]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16UintptrX(vp *map[int16]uintptr, d *Decoder) {
+	v, changed := f.DecMapInt16UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16UintptrV(v map[int16]uintptr, canChange bool,
+	d *Decoder) (_ map[int16]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]int)
+		v, changed := fastpathTV.DecMapInt16IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16IntV(rv2i(rv).(map[int16]int), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16IntX(vp *map[int16]int, d *Decoder) {
+	v, changed := f.DecMapInt16IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16IntV(v map[int16]int, canChange bool,
+	d *Decoder) (_ map[int16]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]int8)
+		v, changed := fastpathTV.DecMapInt16Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Int8V(rv2i(rv).(map[int16]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Int8X(vp *map[int16]int8, d *Decoder) {
+	v, changed := f.DecMapInt16Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Int8V(v map[int16]int8, canChange bool,
+	d *Decoder) (_ map[int16]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[int16]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]int16)
+		v, changed := fastpathTV.DecMapInt16Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Int16V(rv2i(rv).(map[int16]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Int16X(vp *map[int16]int16, d *Decoder) {
+	v, changed := f.DecMapInt16Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Int16V(v map[int16]int16, canChange bool,
+	d *Decoder) (_ map[int16]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 4)
+		v = make(map[int16]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]int32)
+		v, changed := fastpathTV.DecMapInt16Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Int32V(rv2i(rv).(map[int16]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Int32X(vp *map[int16]int32, d *Decoder) {
+	v, changed := f.DecMapInt16Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Int32V(v map[int16]int32, canChange bool,
+	d *Decoder) (_ map[int16]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[int16]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]int64)
+		v, changed := fastpathTV.DecMapInt16Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Int64V(rv2i(rv).(map[int16]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Int64X(vp *map[int16]int64, d *Decoder) {
+	v, changed := f.DecMapInt16Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Int64V(v map[int16]int64, canChange bool,
+	d *Decoder) (_ map[int16]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]float32)
+		v, changed := fastpathTV.DecMapInt16Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Float32V(rv2i(rv).(map[int16]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Float32X(vp *map[int16]float32, d *Decoder) {
+	v, changed := f.DecMapInt16Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Float32V(v map[int16]float32, canChange bool,
+	d *Decoder) (_ map[int16]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[int16]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]float64)
+		v, changed := fastpathTV.DecMapInt16Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16Float64V(rv2i(rv).(map[int16]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16Float64X(vp *map[int16]float64, d *Decoder) {
+	v, changed := f.DecMapInt16Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16Float64V(v map[int16]float64, canChange bool,
+	d *Decoder) (_ map[int16]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int16]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt16BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int16]bool)
+		v, changed := fastpathTV.DecMapInt16BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt16BoolV(rv2i(rv).(map[int16]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapInt16BoolX(vp *map[int16]bool, d *Decoder) {
+	v, changed := f.DecMapInt16BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt16BoolV(v map[int16]bool, canChange bool,
+	d *Decoder) (_ map[int16]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[int16]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int16
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]interface{})
+		v, changed := fastpathTV.DecMapInt32IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32IntfV(rv2i(rv).(map[int32]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32IntfX(vp *map[int32]interface{}, d *Decoder) {
+	v, changed := f.DecMapInt32IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32IntfV(v map[int32]interface{}, canChange bool,
+	d *Decoder) (_ map[int32]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[int32]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk int32
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]string)
+		v, changed := fastpathTV.DecMapInt32StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32StringV(rv2i(rv).(map[int32]string), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32StringX(vp *map[int32]string, d *Decoder) {
+	v, changed := f.DecMapInt32StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32StringV(v map[int32]string, canChange bool,
+	d *Decoder) (_ map[int32]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 20)
+		v = make(map[int32]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uint)
+		v, changed := fastpathTV.DecMapInt32UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32UintV(rv2i(rv).(map[int32]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32UintX(vp *map[int32]uint, d *Decoder) {
+	v, changed := f.DecMapInt32UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32UintV(v map[int32]uint, canChange bool,
+	d *Decoder) (_ map[int32]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uint8)
+		v, changed := fastpathTV.DecMapInt32Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Uint8V(rv2i(rv).(map[int32]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Uint8X(vp *map[int32]uint8, d *Decoder) {
+	v, changed := f.DecMapInt32Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Uint8V(v map[int32]uint8, canChange bool,
+	d *Decoder) (_ map[int32]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int32]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uint16)
+		v, changed := fastpathTV.DecMapInt32Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Uint16V(rv2i(rv).(map[int32]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Uint16X(vp *map[int32]uint16, d *Decoder) {
+	v, changed := f.DecMapInt32Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Uint16V(v map[int32]uint16, canChange bool,
+	d *Decoder) (_ map[int32]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[int32]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uint32)
+		v, changed := fastpathTV.DecMapInt32Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Uint32V(rv2i(rv).(map[int32]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Uint32X(vp *map[int32]uint32, d *Decoder) {
+	v, changed := f.DecMapInt32Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Uint32V(v map[int32]uint32, canChange bool,
+	d *Decoder) (_ map[int32]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[int32]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uint64)
+		v, changed := fastpathTV.DecMapInt32Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Uint64V(rv2i(rv).(map[int32]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Uint64X(vp *map[int32]uint64, d *Decoder) {
+	v, changed := f.DecMapInt32Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Uint64V(v map[int32]uint64, canChange bool,
+	d *Decoder) (_ map[int32]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]uintptr)
+		v, changed := fastpathTV.DecMapInt32UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32UintptrV(rv2i(rv).(map[int32]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32UintptrX(vp *map[int32]uintptr, d *Decoder) {
+	v, changed := f.DecMapInt32UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32UintptrV(v map[int32]uintptr, canChange bool,
+	d *Decoder) (_ map[int32]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]int)
+		v, changed := fastpathTV.DecMapInt32IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32IntV(rv2i(rv).(map[int32]int), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32IntX(vp *map[int32]int, d *Decoder) {
+	v, changed := f.DecMapInt32IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32IntV(v map[int32]int, canChange bool,
+	d *Decoder) (_ map[int32]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]int8)
+		v, changed := fastpathTV.DecMapInt32Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Int8V(rv2i(rv).(map[int32]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Int8X(vp *map[int32]int8, d *Decoder) {
+	v, changed := f.DecMapInt32Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Int8V(v map[int32]int8, canChange bool,
+	d *Decoder) (_ map[int32]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int32]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]int16)
+		v, changed := fastpathTV.DecMapInt32Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Int16V(rv2i(rv).(map[int32]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Int16X(vp *map[int32]int16, d *Decoder) {
+	v, changed := f.DecMapInt32Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Int16V(v map[int32]int16, canChange bool,
+	d *Decoder) (_ map[int32]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 6)
+		v = make(map[int32]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]int32)
+		v, changed := fastpathTV.DecMapInt32Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Int32V(rv2i(rv).(map[int32]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Int32X(vp *map[int32]int32, d *Decoder) {
+	v, changed := f.DecMapInt32Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Int32V(v map[int32]int32, canChange bool,
+	d *Decoder) (_ map[int32]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[int32]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]int64)
+		v, changed := fastpathTV.DecMapInt32Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Int64V(rv2i(rv).(map[int32]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Int64X(vp *map[int32]int64, d *Decoder) {
+	v, changed := f.DecMapInt32Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Int64V(v map[int32]int64, canChange bool,
+	d *Decoder) (_ map[int32]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]float32)
+		v, changed := fastpathTV.DecMapInt32Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Float32V(rv2i(rv).(map[int32]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Float32X(vp *map[int32]float32, d *Decoder) {
+	v, changed := f.DecMapInt32Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Float32V(v map[int32]float32, canChange bool,
+	d *Decoder) (_ map[int32]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 8)
+		v = make(map[int32]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]float64)
+		v, changed := fastpathTV.DecMapInt32Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32Float64V(rv2i(rv).(map[int32]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32Float64X(vp *map[int32]float64, d *Decoder) {
+	v, changed := f.DecMapInt32Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32Float64V(v map[int32]float64, canChange bool,
+	d *Decoder) (_ map[int32]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int32]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt32BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int32]bool)
+		v, changed := fastpathTV.DecMapInt32BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt32BoolV(rv2i(rv).(map[int32]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapInt32BoolX(vp *map[int32]bool, d *Decoder) {
+	v, changed := f.DecMapInt32BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt32BoolV(v map[int32]bool, canChange bool,
+	d *Decoder) (_ map[int32]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[int32]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int32
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64IntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]interface{})
+		v, changed := fastpathTV.DecMapInt64IntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64IntfV(rv2i(rv).(map[int64]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64IntfX(vp *map[int64]interface{}, d *Decoder) {
+	v, changed := f.DecMapInt64IntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64IntfV(v map[int64]interface{}, canChange bool,
+	d *Decoder) (_ map[int64]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[int64]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk int64
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64StringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]string)
+		v, changed := fastpathTV.DecMapInt64StringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64StringV(rv2i(rv).(map[int64]string), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64StringX(vp *map[int64]string, d *Decoder) {
+	v, changed := f.DecMapInt64StringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64StringV(v map[int64]string, canChange bool,
+	d *Decoder) (_ map[int64]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 24)
+		v = make(map[int64]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64UintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uint)
+		v, changed := fastpathTV.DecMapInt64UintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64UintV(rv2i(rv).(map[int64]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64UintX(vp *map[int64]uint, d *Decoder) {
+	v, changed := f.DecMapInt64UintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64UintV(v map[int64]uint, canChange bool,
+	d *Decoder) (_ map[int64]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Uint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uint8)
+		v, changed := fastpathTV.DecMapInt64Uint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Uint8V(rv2i(rv).(map[int64]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Uint8X(vp *map[int64]uint8, d *Decoder) {
+	v, changed := f.DecMapInt64Uint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Uint8V(v map[int64]uint8, canChange bool,
+	d *Decoder) (_ map[int64]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int64]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Uint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uint16)
+		v, changed := fastpathTV.DecMapInt64Uint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Uint16V(rv2i(rv).(map[int64]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Uint16X(vp *map[int64]uint16, d *Decoder) {
+	v, changed := f.DecMapInt64Uint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Uint16V(v map[int64]uint16, canChange bool,
+	d *Decoder) (_ map[int64]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int64]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Uint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uint32)
+		v, changed := fastpathTV.DecMapInt64Uint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Uint32V(rv2i(rv).(map[int64]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Uint32X(vp *map[int64]uint32, d *Decoder) {
+	v, changed := f.DecMapInt64Uint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Uint32V(v map[int64]uint32, canChange bool,
+	d *Decoder) (_ map[int64]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int64]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Uint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uint64)
+		v, changed := fastpathTV.DecMapInt64Uint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Uint64V(rv2i(rv).(map[int64]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Uint64X(vp *map[int64]uint64, d *Decoder) {
+	v, changed := f.DecMapInt64Uint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Uint64V(v map[int64]uint64, canChange bool,
+	d *Decoder) (_ map[int64]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64UintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]uintptr)
+		v, changed := fastpathTV.DecMapInt64UintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64UintptrV(rv2i(rv).(map[int64]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64UintptrX(vp *map[int64]uintptr, d *Decoder) {
+	v, changed := f.DecMapInt64UintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64UintptrV(v map[int64]uintptr, canChange bool,
+	d *Decoder) (_ map[int64]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64IntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]int)
+		v, changed := fastpathTV.DecMapInt64IntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64IntV(rv2i(rv).(map[int64]int), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64IntX(vp *map[int64]int, d *Decoder) {
+	v, changed := f.DecMapInt64IntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64IntV(v map[int64]int, canChange bool,
+	d *Decoder) (_ map[int64]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Int8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]int8)
+		v, changed := fastpathTV.DecMapInt64Int8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Int8V(rv2i(rv).(map[int64]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Int8X(vp *map[int64]int8, d *Decoder) {
+	v, changed := f.DecMapInt64Int8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Int8V(v map[int64]int8, canChange bool,
+	d *Decoder) (_ map[int64]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int64]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Int16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]int16)
+		v, changed := fastpathTV.DecMapInt64Int16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Int16V(rv2i(rv).(map[int64]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Int16X(vp *map[int64]int16, d *Decoder) {
+	v, changed := f.DecMapInt64Int16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Int16V(v map[int64]int16, canChange bool,
+	d *Decoder) (_ map[int64]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 10)
+		v = make(map[int64]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Int32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]int32)
+		v, changed := fastpathTV.DecMapInt64Int32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Int32V(rv2i(rv).(map[int64]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Int32X(vp *map[int64]int32, d *Decoder) {
+	v, changed := f.DecMapInt64Int32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Int32V(v map[int64]int32, canChange bool,
+	d *Decoder) (_ map[int64]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int64]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Int64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]int64)
+		v, changed := fastpathTV.DecMapInt64Int64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Int64V(rv2i(rv).(map[int64]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Int64X(vp *map[int64]int64, d *Decoder) {
+	v, changed := f.DecMapInt64Int64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Int64V(v map[int64]int64, canChange bool,
+	d *Decoder) (_ map[int64]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Float32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]float32)
+		v, changed := fastpathTV.DecMapInt64Float32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Float32V(rv2i(rv).(map[int64]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Float32X(vp *map[int64]float32, d *Decoder) {
+	v, changed := f.DecMapInt64Float32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Float32V(v map[int64]float32, canChange bool,
+	d *Decoder) (_ map[int64]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 12)
+		v = make(map[int64]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64Float64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]float64)
+		v, changed := fastpathTV.DecMapInt64Float64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64Float64V(rv2i(rv).(map[int64]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64Float64X(vp *map[int64]float64, d *Decoder) {
+	v, changed := f.DecMapInt64Float64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64Float64V(v map[int64]float64, canChange bool,
+	d *Decoder) (_ map[int64]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 16)
+		v = make(map[int64]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapInt64BoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[int64]bool)
+		v, changed := fastpathTV.DecMapInt64BoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapInt64BoolV(rv2i(rv).(map[int64]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapInt64BoolX(vp *map[int64]bool, d *Decoder) {
+	v, changed := f.DecMapInt64BoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapInt64BoolV(v map[int64]bool, canChange bool,
+	d *Decoder) (_ map[int64]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[int64]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk int64
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeInt64()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolIntfR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]interface{})
+		v, changed := fastpathTV.DecMapBoolIntfV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolIntfV(rv2i(rv).(map[bool]interface{}), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolIntfX(vp *map[bool]interface{}, d *Decoder) {
+	v, changed := f.DecMapBoolIntfV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolIntfV(v map[bool]interface{}, canChange bool,
+	d *Decoder) (_ map[bool]interface{}, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[bool]interface{}, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	mapGet := v != nil && !d.h.MapValueReset && !d.h.InterfaceReset
+	var mk bool
+	var mv interface{}
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = nil
+			}
+			continue
+		}
+		if mapGet {
+			mv = v[mk]
+		} else {
+			mv = nil
+		}
+		d.decode(&mv)
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolStringR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]string)
+		v, changed := fastpathTV.DecMapBoolStringV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolStringV(rv2i(rv).(map[bool]string), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolStringX(vp *map[bool]string, d *Decoder) {
+	v, changed := f.DecMapBoolStringV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolStringV(v map[bool]string, canChange bool,
+	d *Decoder) (_ map[bool]string, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 17)
+		v = make(map[bool]string, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv string
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = ""
+			}
+			continue
+		}
+		mv = dd.DecodeString()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUintR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uint)
+		v, changed := fastpathTV.DecMapBoolUintV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUintV(rv2i(rv).(map[bool]uint), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUintX(vp *map[bool]uint, d *Decoder) {
+	v, changed := f.DecMapBoolUintV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUintV(v map[bool]uint, canChange bool,
+	d *Decoder) (_ map[bool]uint, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]uint, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uint
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUint8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uint8)
+		v, changed := fastpathTV.DecMapBoolUint8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUint8V(rv2i(rv).(map[bool]uint8), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUint8X(vp *map[bool]uint8, d *Decoder) {
+	v, changed := f.DecMapBoolUint8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUint8V(v map[bool]uint8, canChange bool,
+	d *Decoder) (_ map[bool]uint8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[bool]uint8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uint8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint8(chkOvf.UintV(dd.DecodeUint64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUint16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uint16)
+		v, changed := fastpathTV.DecMapBoolUint16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUint16V(rv2i(rv).(map[bool]uint16), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUint16X(vp *map[bool]uint16, d *Decoder) {
+	v, changed := f.DecMapBoolUint16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUint16V(v map[bool]uint16, canChange bool,
+	d *Decoder) (_ map[bool]uint16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[bool]uint16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uint16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint16(chkOvf.UintV(dd.DecodeUint64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUint32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uint32)
+		v, changed := fastpathTV.DecMapBoolUint32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUint32V(rv2i(rv).(map[bool]uint32), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUint32X(vp *map[bool]uint32, d *Decoder) {
+	v, changed := f.DecMapBoolUint32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUint32V(v map[bool]uint32, canChange bool,
+	d *Decoder) (_ map[bool]uint32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[bool]uint32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uint32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uint32(chkOvf.UintV(dd.DecodeUint64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUint64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uint64)
+		v, changed := fastpathTV.DecMapBoolUint64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUint64V(rv2i(rv).(map[bool]uint64), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUint64X(vp *map[bool]uint64, d *Decoder) {
+	v, changed := f.DecMapBoolUint64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUint64V(v map[bool]uint64, canChange bool,
+	d *Decoder) (_ map[bool]uint64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]uint64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uint64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeUint64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolUintptrR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]uintptr)
+		v, changed := fastpathTV.DecMapBoolUintptrV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolUintptrV(rv2i(rv).(map[bool]uintptr), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolUintptrX(vp *map[bool]uintptr, d *Decoder) {
+	v, changed := f.DecMapBoolUintptrV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolUintptrV(v map[bool]uintptr, canChange bool,
+	d *Decoder) (_ map[bool]uintptr, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]uintptr, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv uintptr
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolIntR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]int)
+		v, changed := fastpathTV.DecMapBoolIntV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolIntV(rv2i(rv).(map[bool]int), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolIntX(vp *map[bool]int, d *Decoder) {
+	v, changed := f.DecMapBoolIntV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolIntV(v map[bool]int, canChange bool,
+	d *Decoder) (_ map[bool]int, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]int, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv int
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolInt8R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]int8)
+		v, changed := fastpathTV.DecMapBoolInt8V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolInt8V(rv2i(rv).(map[bool]int8), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolInt8X(vp *map[bool]int8, d *Decoder) {
+	v, changed := f.DecMapBoolInt8V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolInt8V(v map[bool]int8, canChange bool,
+	d *Decoder) (_ map[bool]int8, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[bool]int8, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv int8
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int8(chkOvf.IntV(dd.DecodeInt64(), 8))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolInt16R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]int16)
+		v, changed := fastpathTV.DecMapBoolInt16V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolInt16V(rv2i(rv).(map[bool]int16), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolInt16X(vp *map[bool]int16, d *Decoder) {
+	v, changed := f.DecMapBoolInt16V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolInt16V(v map[bool]int16, canChange bool,
+	d *Decoder) (_ map[bool]int16, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 3)
+		v = make(map[bool]int16, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv int16
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int16(chkOvf.IntV(dd.DecodeInt64(), 16))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolInt32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]int32)
+		v, changed := fastpathTV.DecMapBoolInt32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolInt32V(rv2i(rv).(map[bool]int32), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolInt32X(vp *map[bool]int32, d *Decoder) {
+	v, changed := f.DecMapBoolInt32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolInt32V(v map[bool]int32, canChange bool,
+	d *Decoder) (_ map[bool]int32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[bool]int32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv int32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = int32(chkOvf.IntV(dd.DecodeInt64(), 32))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolInt64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]int64)
+		v, changed := fastpathTV.DecMapBoolInt64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolInt64V(rv2i(rv).(map[bool]int64), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolInt64X(vp *map[bool]int64, d *Decoder) {
+	v, changed := f.DecMapBoolInt64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolInt64V(v map[bool]int64, canChange bool,
+	d *Decoder) (_ map[bool]int64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]int64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv int64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeInt64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolFloat32R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]float32)
+		v, changed := fastpathTV.DecMapBoolFloat32V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolFloat32V(rv2i(rv).(map[bool]float32), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolFloat32X(vp *map[bool]float32, d *Decoder) {
+	v, changed := f.DecMapBoolFloat32V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolFloat32V(v map[bool]float32, canChange bool,
+	d *Decoder) (_ map[bool]float32, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 5)
+		v = make(map[bool]float32, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv float32
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = float32(chkOvf.Float32V(dd.DecodeFloat64()))
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolFloat64R(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]float64)
+		v, changed := fastpathTV.DecMapBoolFloat64V(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolFloat64V(rv2i(rv).(map[bool]float64), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolFloat64X(vp *map[bool]float64, d *Decoder) {
+	v, changed := f.DecMapBoolFloat64V(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolFloat64V(v map[bool]float64, canChange bool,
+	d *Decoder) (_ map[bool]float64, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 9)
+		v = make(map[bool]float64, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv float64
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = 0
+			}
+			continue
+		}
+		mv = dd.DecodeFloat64()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
+
+func (d *Decoder) fastpathDecMapBoolBoolR(f *codecFnInfo, rv reflect.Value) {
+	if rv.Kind() == reflect.Ptr {
+		vp := rv2i(rv).(*map[bool]bool)
+		v, changed := fastpathTV.DecMapBoolBoolV(*vp, true, d)
+		if changed {
+			*vp = v
+		}
+	} else {
+		fastpathTV.DecMapBoolBoolV(rv2i(rv).(map[bool]bool), false, d)
+	}
+}
+func (f fastpathT) DecMapBoolBoolX(vp *map[bool]bool, d *Decoder) {
+	v, changed := f.DecMapBoolBoolV(*vp, true, d)
+	if changed {
+		*vp = v
+	}
+}
+func (_ fastpathT) DecMapBoolBoolV(v map[bool]bool, canChange bool,
+	d *Decoder) (_ map[bool]bool, changed bool) {
+	dd, esep := d.d, d.hh.hasElemSeparators()
+	containerLen := dd.ReadMapStart()
+	if canChange && v == nil {
+		xlen := decInferLen(containerLen, d.h.MaxInitLen, 2)
+		v = make(map[bool]bool, xlen)
+		changed = true
+	}
+	if containerLen == 0 {
+		dd.ReadMapEnd()
+		return v, changed
+	}
+	var mk bool
+	var mv bool
+	hasLen := containerLen > 0
+	for j := 0; (hasLen && j < containerLen) || !(hasLen || dd.CheckBreak()); j++ {
+		if esep {
+			dd.ReadMapElemKey()
+		}
+		mk = dd.DecodeBool()
+		if esep {
+			dd.ReadMapElemValue()
+		}
+		if dd.TryDecodeAsNil() {
+			if v == nil {
+			} else if d.h.DeleteOnNilMapValue {
+				delete(v, mk)
+			} else {
+				v[mk] = false
+			}
+			continue
+		}
+		mv = dd.DecodeBool()
+		if v != nil {
+			v[mk] = mv
+		}
+	}
+	dd.ReadMapEnd()
+	return v, changed
+}
diff --git a/vendor/github.com/ugorji/go/codec/fast-path.not.go b/vendor/github.com/ugorji/go/codec/fast-path.not.go
new file mode 100644
index 0000000000..f11b4674f8
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/fast-path.not.go
@@ -0,0 +1,47 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build notfastpath
+
+package codec
+
+import "reflect"
+
+const fastpathEnabled = false
+
+// The generated fast-path code is very large, and adds a few seconds to the build time.
+// This causes test execution, execution of small tools which use codec, etc
+// to take a long time.
+//
+// To mitigate, we now support the notfastpath tag.
+// This tag disables fastpath during build, allowing for faster build, test execution,
+// short-program runs, etc.
+
+func fastpathDecodeTypeSwitch(iv interface{}, d *Decoder) bool      { return false }
+func fastpathEncodeTypeSwitch(iv interface{}, e *Encoder) bool      { return false }
+func fastpathEncodeTypeSwitchSlice(iv interface{}, e *Encoder) bool { return false }
+func fastpathEncodeTypeSwitchMap(iv interface{}, e *Encoder) bool   { return false }
+func fastpathDecodeSetZeroTypeSwitch(iv interface{}) bool           { return false }
+
+type fastpathT struct{}
+type fastpathE struct {
+	rtid  uintptr
+	rt    reflect.Type
+	encfn func(*Encoder, *codecFnInfo, reflect.Value)
+	decfn func(*Decoder, *codecFnInfo, reflect.Value)
+}
+type fastpathA [0]fastpathE
+
+func (x fastpathA) index(rtid uintptr) int { return -1 }
+
+func (_ fastpathT) DecSliceUint8V(v []uint8, canChange bool, d *Decoder) (_ []uint8, changed bool) {
+	fn := d.cfer().get(uint8SliceTyp, true, true)
+	d.kSlice(&fn.i, reflect.ValueOf(&v).Elem())
+	return v, true
+}
+
+var fastpathAV fastpathA
+var fastpathTV fastpathT
+
+// ----
+type TestMammoth2Wrapper struct{} // to allow testMammoth work in notfastpath mode
diff --git a/vendor/github.com/ugorji/go/codec/gen-helper.generated.go b/vendor/github.com/ugorji/go/codec/gen-helper.generated.go
new file mode 100644
index 0000000000..917d282837
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/gen-helper.generated.go
@@ -0,0 +1,335 @@
+/* // +build ignore */
+
+// Copyright (c) 2012-2015 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// Code generated from gen-helper.go.tmpl - DO NOT EDIT.
+
+package codec
+
+import (
+	"encoding"
+	"reflect"
+)
+
+// GenVersion is the current version of codecgen.
+const GenVersion = 8
+
+// This file is used to generate helper code for codecgen.
+// The values here i.e. genHelper(En|De)coder are not to be used directly by
+// library users. They WILL change continuously and without notice.
+//
+// To help enforce this, we create an unexported type with exported members.
+// The only way to get the type is via the one exported type that we control (somewhat).
+//
+// When static codecs are created for types, they will use this value
+// to perform encoding or decoding of primitives or known slice or map types.
+
+// GenHelperEncoder is exported so that it can be used externally by codecgen.
+//
+// Library users: DO NOT USE IT DIRECTLY. IT WILL CHANGE CONTINOUSLY WITHOUT NOTICE.
+func GenHelperEncoder(e *Encoder) (ge genHelperEncoder, ee genHelperEncDriver) {
+	ge = genHelperEncoder{e: e}
+	ee = genHelperEncDriver{encDriver: e.e}
+	return
+}
+
+// GenHelperDecoder is exported so that it can be used externally by codecgen.
+//
+// Library users: DO NOT USE IT DIRECTLY. IT WILL CHANGE CONTINOUSLY WITHOUT NOTICE.
+func GenHelperDecoder(d *Decoder) (gd genHelperDecoder, dd genHelperDecDriver) {
+	gd = genHelperDecoder{d: d}
+	dd = genHelperDecDriver{decDriver: d.d}
+	return
+}
+
+type genHelperEncDriver struct {
+	encDriver
+}
+
+func (x genHelperEncDriver) EncodeBuiltin(rt uintptr, v interface{}) {}
+func (x genHelperEncDriver) EncStructFieldKey(keyType valueType, s string) {
+	encStructFieldKey(x.encDriver, keyType, s)
+}
+func (x genHelperEncDriver) EncodeSymbol(s string) {
+	x.encDriver.EncodeString(cUTF8, s)
+}
+
+type genHelperDecDriver struct {
+	decDriver
+	C checkOverflow
+}
+
+func (x genHelperDecDriver) DecodeBuiltin(rt uintptr, v interface{}) {}
+func (x genHelperDecDriver) DecStructFieldKey(keyType valueType, buf *[decScratchByteArrayLen]byte) []byte {
+	return decStructFieldKey(x.decDriver, keyType, buf)
+}
+func (x genHelperDecDriver) DecodeInt(bitsize uint8) (i int64) {
+	return x.C.IntV(x.decDriver.DecodeInt64(), bitsize)
+}
+func (x genHelperDecDriver) DecodeUint(bitsize uint8) (ui uint64) {
+	return x.C.UintV(x.decDriver.DecodeUint64(), bitsize)
+}
+func (x genHelperDecDriver) DecodeFloat(chkOverflow32 bool) (f float64) {
+	f = x.DecodeFloat64()
+	if chkOverflow32 && chkOvf.Float32(f) {
+		panicv.errorf("float32 overflow: %v", f)
+	}
+	return
+}
+func (x genHelperDecDriver) DecodeFloat32As64() (f float64) {
+	f = x.DecodeFloat64()
+	if chkOvf.Float32(f) {
+		panicv.errorf("float32 overflow: %v", f)
+	}
+	return
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+type genHelperEncoder struct {
+	M must
+	e *Encoder
+	F fastpathT
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+type genHelperDecoder struct {
+	C checkOverflow
+	d *Decoder
+	F fastpathT
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncBasicHandle() *BasicHandle {
+	return f.e.h
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncBinary() bool {
+	return f.e.be // f.e.hh.isBinaryEncoding()
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) IsJSONHandle() bool {
+	return f.e.js
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncFallback(iv interface{}) {
+	// println(">>>>>>>>> EncFallback")
+	// f.e.encodeI(iv, false, false)
+	f.e.encodeValue(reflect.ValueOf(iv), nil, false)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncTextMarshal(iv encoding.TextMarshaler) {
+	bs, fnerr := iv.MarshalText()
+	f.e.marshal(bs, fnerr, false, cUTF8)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncJSONMarshal(iv jsonMarshaler) {
+	bs, fnerr := iv.MarshalJSON()
+	f.e.marshal(bs, fnerr, true, cUTF8)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncBinaryMarshal(iv encoding.BinaryMarshaler) {
+	bs, fnerr := iv.MarshalBinary()
+	f.e.marshal(bs, fnerr, false, cRAW)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncRaw(iv Raw) { f.e.rawBytes(iv) }
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: builtin no longer supported - so we make this method a no-op,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperEncoder) TimeRtidIfBinc() (v uintptr) { return }
+
+// func (f genHelperEncoder) TimeRtidIfBinc() uintptr {
+// 	if _, ok := f.e.hh.(*BincHandle); ok {
+// 		return timeTypId
+// 	}
+// }
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) I2Rtid(v interface{}) uintptr {
+	return i2rtid(v)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) Extension(rtid uintptr) (xfn *extTypeTagFn) {
+	return f.e.h.getExt(rtid)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperEncoder) EncExtension(v interface{}, xfFn *extTypeTagFn) {
+	f.e.e.EncodeExt(v, xfFn.tag, xfFn.ext, f.e)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: No longer used,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperEncoder) HasExtensions() bool {
+	return len(f.e.h.extHandle) != 0
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: No longer used,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperEncoder) EncExt(v interface{}) (r bool) {
+	if xfFn := f.e.h.getExt(i2rtid(v)); xfFn != nil {
+		f.e.e.EncodeExt(v, xfFn.tag, xfFn.ext, f.e)
+		return true
+	}
+	return false
+}
+
+// ---------------- DECODER FOLLOWS -----------------
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecBasicHandle() *BasicHandle {
+	return f.d.h
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecBinary() bool {
+	return f.d.be // f.d.hh.isBinaryEncoding()
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecSwallow() { f.d.swallow() }
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecScratchBuffer() []byte {
+	return f.d.b[:]
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecScratchArrayBuffer() *[decScratchByteArrayLen]byte {
+	return &f.d.b
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecFallback(iv interface{}, chkPtr bool) {
+	// println(">>>>>>>>> DecFallback")
+	rv := reflect.ValueOf(iv)
+	if chkPtr {
+		rv = f.d.ensureDecodeable(rv)
+	}
+	f.d.decodeValue(rv, nil, false)
+	// f.d.decodeValueFallback(rv)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecSliceHelperStart() (decSliceHelper, int) {
+	return f.d.decSliceHelperStart()
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecStructFieldNotFound(index int, name string) {
+	f.d.structFieldNotFound(index, name)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecArrayCannotExpand(sliceLen, streamLen int) {
+	f.d.arrayCannotExpand(sliceLen, streamLen)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecTextUnmarshal(tm encoding.TextUnmarshaler) {
+	fnerr := tm.UnmarshalText(f.d.d.DecodeStringAsBytes())
+	if fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecJSONUnmarshal(tm jsonUnmarshaler) {
+	// bs := f.dd.DecodeStringAsBytes()
+	// grab the bytes to be read, as UnmarshalJSON needs the full JSON so as to unmarshal it itself.
+	fnerr := tm.UnmarshalJSON(f.d.nextValueBytes())
+	if fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecBinaryUnmarshal(bm encoding.BinaryUnmarshaler) {
+	fnerr := bm.UnmarshalBinary(f.d.d.DecodeBytes(nil, true))
+	if fnerr != nil {
+		panic(fnerr)
+	}
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecRaw() []byte { return f.d.rawBytes() }
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: builtin no longer supported - so we make this method a no-op,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperDecoder) TimeRtidIfBinc() (v uintptr) { return }
+
+// func (f genHelperDecoder) TimeRtidIfBinc() uintptr {
+// 	// Note: builtin is no longer supported - so make this a no-op
+// 	if _, ok := f.d.hh.(*BincHandle); ok {
+// 		return timeTypId
+// 	}
+// 	return 0
+// }
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) IsJSONHandle() bool {
+	return f.d.js
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) I2Rtid(v interface{}) uintptr {
+	return i2rtid(v)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) Extension(rtid uintptr) (xfn *extTypeTagFn) {
+	return f.d.h.getExt(rtid)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecExtension(v interface{}, xfFn *extTypeTagFn) {
+	f.d.d.DecodeExt(v, xfFn.tag, xfFn.ext)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: No longer used,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperDecoder) HasExtensions() bool {
+	return len(f.d.h.extHandle) != 0
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: No longer used,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperDecoder) DecExt(v interface{}) (r bool) {
+	if xfFn := f.d.h.getExt(i2rtid(v)); xfFn != nil {
+		f.d.d.DecodeExt(v, xfFn.tag, xfFn.ext)
+		return true
+	}
+	return false
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+func (f genHelperDecoder) DecInferLen(clen, maxlen, unit int) (rvlen int) {
+	return decInferLen(clen, maxlen, unit)
+}
+
+// FOR USE BY CODECGEN ONLY. IT *WILL* CHANGE WITHOUT NOTICE. *DO NOT USE*
+//
+// Deprecated: no longer used,
+// but leave in-place so that old generated files continue to work without regeneration.
+func (f genHelperDecoder) StringView(v []byte) string { return stringView(v) }
diff --git a/vendor/github.com/ugorji/go/codec/gen.generated.go b/vendor/github.com/ugorji/go/codec/gen.generated.go
new file mode 100644
index 0000000000..240ba9f8c7
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/gen.generated.go
@@ -0,0 +1,164 @@
+// +build codecgen.exec
+
+// Copyright (c) 2012-2015 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+// DO NOT EDIT. THIS FILE IS AUTO-GENERATED FROM gen-dec-(map|array).go.tmpl
+
+const genDecMapTmpl = `
+{{var "v"}} := *{{ .Varname }}
+{{var "l"}} := r.ReadMapStart()
+{{var "bh"}} := z.DecBasicHandle()
+if {{var "v"}} == nil {
+	{{var "rl"}} := z.DecInferLen({{var "l"}}, {{var "bh"}}.MaxInitLen, {{ .Size }})
+	{{var "v"}} = make(map[{{ .KTyp }}]{{ .Typ }}, {{var "rl"}})
+	*{{ .Varname }} = {{var "v"}}
+}
+var {{var "mk"}} {{ .KTyp }}
+var {{var "mv"}} {{ .Typ }}
+var {{var "mg"}}, {{var "mdn"}} {{if decElemKindPtr}}, {{var "ms"}}, {{var "mok"}}{{end}} bool
+if {{var "bh"}}.MapValueReset {
+	{{if decElemKindPtr}}{{var "mg"}} = true
+	{{else if decElemKindIntf}}if !{{var "bh"}}.InterfaceReset { {{var "mg"}} = true }
+	{{else if not decElemKindImmutable}}{{var "mg"}} = true
+	{{end}} }
+if {{var "l"}} != 0 {
+{{var "hl"}} := {{var "l"}} > 0 
+	for {{var "j"}} := 0; ({{var "hl"}} && {{var "j"}} < {{var "l"}}) || !({{var "hl"}} || r.CheckBreak()); {{var "j"}}++ {
+	r.ReadMapElemKey() {{/* z.DecSendContainerState(codecSelfer_containerMapKey{{ .Sfx }}) */}}
+	{{ $x := printf "%vmk%v" .TempVar .Rand }}{{ decLineVarK $x }}
+{{ if eq .KTyp "interface{}" }}{{/* // special case if a byte array. */}}if {{var "bv"}}, {{var "bok"}} := {{var "mk"}}.([]byte); {{var "bok"}} {
+		{{var "mk"}} = string({{var "bv"}})
+	}{{ end }}{{if decElemKindPtr}}
+	{{var "ms"}} = true{{end}}
+	if {{var "mg"}} {
+		{{if decElemKindPtr}}{{var "mv"}}, {{var "mok"}} = {{var "v"}}[{{var "mk"}}] 
+		if {{var "mok"}} {
+			{{var "ms"}} = false
+		} {{else}}{{var "mv"}} = {{var "v"}}[{{var "mk"}}] {{end}}
+	} {{if not decElemKindImmutable}}else { {{var "mv"}} = {{decElemZero}} }{{end}}
+	r.ReadMapElemValue() {{/* z.DecSendContainerState(codecSelfer_containerMapValue{{ .Sfx }}) */}}
+	{{var "mdn"}} = false
+	{{ $x := printf "%vmv%v" .TempVar .Rand }}{{ $y := printf "%vmdn%v" .TempVar .Rand }}{{ decLineVar $x $y }}
+	if {{var "mdn"}} {
+		if {{ var "bh" }}.DeleteOnNilMapValue { delete({{var "v"}}, {{var "mk"}}) } else { {{var "v"}}[{{var "mk"}}] = {{decElemZero}} }
+	} else if {{if decElemKindPtr}} {{var "ms"}} && {{end}} {{var "v"}} != nil {
+		{{var "v"}}[{{var "mk"}}] = {{var "mv"}}
+	}
+}
+} // else len==0: TODO: Should we clear map entries?
+r.ReadMapEnd() {{/* z.DecSendContainerState(codecSelfer_containerMapEnd{{ .Sfx }}) */}}
+`
+
+const genDecListTmpl = `
+{{var "v"}} := {{if not isArray}}*{{end}}{{ .Varname }}
+{{var "h"}}, {{var "l"}} := z.DecSliceHelperStart() {{/* // helper, containerLenS */}}{{if not isArray}}
+var {{var "c"}} bool {{/* // changed */}}
+_ = {{var "c"}}{{end}}
+if {{var "l"}} == 0 {
+	{{if isSlice }}if {{var "v"}} == nil {
+		{{var "v"}} = []{{ .Typ }}{}
+		{{var "c"}} = true
+	} else if len({{var "v"}}) != 0 {
+		{{var "v"}} = {{var "v"}}[:0]
+		{{var "c"}} = true
+	} {{else if isChan }}if {{var "v"}} == nil {
+		{{var "v"}} = make({{ .CTyp }}, 0)
+		{{var "c"}} = true
+	} {{end}}
+} else {
+	{{var "hl"}} := {{var "l"}} > 0
+	var {{var "rl"}} int
+	_ =  {{var "rl"}}
+	{{if isSlice }} if {{var "hl"}} {
+	if {{var "l"}} > cap({{var "v"}}) {
+		{{var "rl"}} = z.DecInferLen({{var "l"}}, z.DecBasicHandle().MaxInitLen, {{ .Size }})
+		if {{var "rl"}} <= cap({{var "v"}}) {
+			{{var "v"}} = {{var "v"}}[:{{var "rl"}}]
+		} else {
+			{{var "v"}} = make([]{{ .Typ }}, {{var "rl"}})
+		}
+		{{var "c"}} = true
+	} else if {{var "l"}} != len({{var "v"}}) {
+		{{var "v"}} = {{var "v"}}[:{{var "l"}}]
+		{{var "c"}} = true
+	}
+	} {{end}}
+	var {{var "j"}} int 
+    // var {{var "dn"}} bool 
+	for ; ({{var "hl"}} && {{var "j"}} < {{var "l"}}) || !({{var "hl"}} || r.CheckBreak()); {{var "j"}}++ {
+		{{if not isArray}} if {{var "j"}} == 0 && {{var "v"}} == nil {
+			if {{var "hl"}} {
+				{{var "rl"}} = z.DecInferLen({{var "l"}}, z.DecBasicHandle().MaxInitLen, {{ .Size }})
+			} else {
+				{{var "rl"}} = {{if isSlice}}8{{else if isChan}}64{{end}}
+			}
+			{{var "v"}} = make({{if isSlice}}[]{{ .Typ }}{{else if isChan}}{{.CTyp}}{{end}}, {{var "rl"}})
+			{{var "c"}} = true 
+		}{{end}}
+		{{var "h"}}.ElemContainerState({{var "j"}})
+        {{/* {{var "dn"}} = r.TryDecodeAsNil() */}}{{/* commented out, as decLineVar handles this already each time */}}
+        {{if isChan}}{{ $x := printf "%[1]vvcx%[2]v" .TempVar .Rand }}var {{$x}} {{ .Typ }}
+		{{ decLineVar $x }}
+		{{var "v"}} <- {{ $x }}
+        // println(">>>> sending ", {{ $x }}, " into ", {{var "v"}}) // TODO: remove this
+        {{else}}{{/* // if indefinite, etc, then expand the slice if necessary */}}
+		var {{var "db"}} bool
+		if {{var "j"}} >= len({{var "v"}}) {
+			{{if isSlice }} {{var "v"}} = append({{var "v"}}, {{ zero }})
+			{{var "c"}} = true
+			{{else}} z.DecArrayCannotExpand(len(v), {{var "j"}}+1); {{var "db"}} = true
+			{{end}}
+		}
+		if {{var "db"}} {
+			z.DecSwallow()
+		} else {
+			{{ $x := printf "%[1]vv%[2]v[%[1]vj%[2]v]" .TempVar .Rand }}{{ decLineVar $x }}
+		}
+        {{end}}
+	}
+	{{if isSlice}} if {{var "j"}} < len({{var "v"}}) {
+		{{var "v"}} = {{var "v"}}[:{{var "j"}}]
+		{{var "c"}} = true
+	} else if {{var "j"}} == 0 && {{var "v"}} == nil {
+		{{var "v"}} = make([]{{ .Typ }}, 0)
+		{{var "c"}} = true
+	} {{end}}
+}
+{{var "h"}}.End()
+{{if not isArray }}if {{var "c"}} { 
+	*{{ .Varname }} = {{var "v"}}
+}{{end}}
+`
+
+const genEncChanTmpl = `
+{{.Label}}:
+switch timeout{{.Sfx}} :=  z.EncBasicHandle().ChanRecvTimeout; {
+case timeout{{.Sfx}} == 0: // only consume available
+	for {
+		select {
+		case b{{.Sfx}} := <-{{.Chan}}:
+			{{ .Slice }} = append({{.Slice}}, b{{.Sfx}})
+		default:
+			break {{.Label}}
+		}
+	}
+case timeout{{.Sfx}} > 0: // consume until timeout
+	tt{{.Sfx}} := time.NewTimer(timeout{{.Sfx}})
+	for {
+		select {
+		case b{{.Sfx}} := <-{{.Chan}}:
+			{{.Slice}} = append({{.Slice}}, b{{.Sfx}})
+		case <-tt{{.Sfx}}.C:
+			// close(tt.C)
+			break {{.Label}}
+		}
+	}
+default: // consume until close
+	for b{{.Sfx}} := range {{.Chan}} {
+		{{.Slice}} = append({{.Slice}}, b{{.Sfx}})
+	}
+}
+`
diff --git a/vendor/github.com/ugorji/go/codec/gen.go b/vendor/github.com/ugorji/go/codec/gen.go
new file mode 100644
index 0000000000..b4c4031ff4
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/gen.go
@@ -0,0 +1,2139 @@
+// +build codecgen.exec
+
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"bytes"
+	"encoding/base64"
+	"errors"
+	"fmt"
+	"go/format"
+	"io"
+	"io/ioutil"
+	"math/rand"
+	"reflect"
+	"regexp"
+	"sort"
+	"strconv"
+	"strings"
+	"sync"
+	"text/template"
+	"time"
+	"unicode"
+	"unicode/utf8"
+)
+
+// ---------------------------------------------------
+// codecgen supports the full cycle of reflection-based codec:
+//    - RawExt
+//    - Raw
+//    - Extensions
+//    - (Binary|Text|JSON)(Unm|M)arshal
+//    - generic by-kind
+//
+// This means that, for dynamic things, we MUST use reflection to at least get the reflect.Type.
+// In those areas, we try to only do reflection or interface-conversion when NECESSARY:
+//    - Extensions, only if Extensions are configured.
+//
+// However, codecgen doesn't support the following:
+//   - Canonical option. (codecgen IGNORES it currently)
+//     This is just because it has not been implemented.
+//
+// During encode/decode, Selfer takes precedence.
+// A type implementing Selfer will know how to encode/decode itself statically.
+//
+// The following field types are supported:
+//     array: [n]T
+//     slice: []T
+//     map: map[K]V
+//     primitive: [u]int[n], float(32|64), bool, string
+//     struct
+//
+// ---------------------------------------------------
+// Note that a Selfer cannot call (e|d).(En|De)code on itself,
+// as this will cause a circular reference, as (En|De)code will call Selfer methods.
+// Any type that implements Selfer must implement completely and not fallback to (En|De)code.
+//
+// In addition, code in this file manages the generation of fast-path implementations of
+// encode/decode of slices/maps of primitive keys/values.
+//
+// Users MUST re-generate their implementations whenever the code shape changes.
+// The generated code will panic if it was generated with a version older than the supporting library.
+// ---------------------------------------------------
+//
+// codec framework is very feature rich.
+// When encoding or decoding into an interface, it depends on the runtime type of the interface.
+// The type of the interface may be a named type, an extension, etc.
+// Consequently, we fallback to runtime codec for encoding/decoding interfaces.
+// In addition, we fallback for any value which cannot be guaranteed at runtime.
+// This allows us support ANY value, including any named types, specifically those which
+// do not implement our interfaces (e.g. Selfer).
+//
+// This explains some slowness compared to other code generation codecs (e.g. msgp).
+// This reduction in speed is only seen when your refers to interfaces,
+// e.g. type T struct { A interface{}; B []interface{}; C map[string]interface{} }
+//
+// codecgen will panic if the file was generated with an old version of the library in use.
+//
+// Note:
+//   It was a conscious decision to have gen.go always explicitly call EncodeNil or TryDecodeAsNil.
+//   This way, there isn't a function call overhead just to see that we should not enter a block of code.
+//
+// Note:
+//   codecgen-generated code depends on the variables defined by fast-path.generated.go.
+//   consequently, you cannot run with tags "codecgen notfastpath".
+
+// GenVersion is the current version of codecgen.
+//
+// NOTE: Increment this value each time codecgen changes fundamentally.
+// Fundamental changes are:
+//   - helper methods change (signature change, new ones added, some removed, etc)
+//   - codecgen command line changes
+//
+// v1: Initial Version
+// v2:
+// v3: Changes for Kubernetes:
+//     changes in signature of some unpublished helper methods and codecgen cmdline arguments.
+// v4: Removed separator support from (en|de)cDriver, and refactored codec(gen)
+// v5: changes to support faster json decoding. Let encoder/decoder maintain state of collections.
+// v6: removed unsafe from gen, and now uses codecgen.exec tag
+// v7:
+// v8: current - we now maintain compatibility with old generated code.
+const genVersion = 8
+
+const (
+	genCodecPkg        = "codec1978"
+	genTempVarPfx      = "yy"
+	genTopLevelVarName = "x"
+
+	// ignore canBeNil parameter, and always set to true.
+	// This is because nil can appear anywhere, so we should always check.
+	genAnythingCanBeNil = true
+
+	// if genUseOneFunctionForDecStructMap, make a single codecDecodeSelferFromMap function;
+	// else make codecDecodeSelferFromMap{LenPrefix,CheckBreak} so that conditionals
+	// are not executed a lot.
+	//
+	// From testing, it didn't make much difference in runtime, so keep as true (one function only)
+	genUseOneFunctionForDecStructMap = true
+)
+
+type genStructMapStyle uint8
+
+const (
+	genStructMapStyleConsolidated genStructMapStyle = iota
+	genStructMapStyleLenPrefix
+	genStructMapStyleCheckBreak
+)
+
+var (
+	errGenAllTypesSamePkg  = errors.New("All types must be in the same package")
+	errGenExpectArrayOrMap = errors.New("unexpected type. Expecting array/map/slice")
+
+	genBase64enc  = base64.NewEncoding("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789__")
+	genQNameRegex = regexp.MustCompile(`[A-Za-z_.]+`)
+)
+
+type genBuf struct {
+	buf []byte
+}
+
+func (x *genBuf) s(s string) *genBuf              { x.buf = append(x.buf, s...); return x }
+func (x *genBuf) b(s []byte) *genBuf              { x.buf = append(x.buf, s...); return x }
+func (x *genBuf) v() string                       { return string(x.buf) }
+func (x *genBuf) f(s string, args ...interface{}) { x.s(fmt.Sprintf(s, args...)) }
+func (x *genBuf) reset() {
+	if x.buf != nil {
+		x.buf = x.buf[:0]
+	}
+}
+
+// genRunner holds some state used during a Gen run.
+type genRunner struct {
+	w io.Writer      // output
+	c uint64         // counter used for generating varsfx
+	t []reflect.Type // list of types to run selfer on
+
+	tc reflect.Type     // currently running selfer on this type
+	te map[uintptr]bool // types for which the encoder has been created
+	td map[uintptr]bool // types for which the decoder has been created
+	cp string           // codec import path
+
+	im  map[string]reflect.Type // imports to add
+	imn map[string]string       // package names of imports to add
+	imc uint64                  // counter for import numbers
+
+	is map[reflect.Type]struct{} // types seen during import search
+	bp string                    // base PkgPath, for which we are generating for
+
+	cpfx string // codec package prefix
+
+	tm map[reflect.Type]struct{} // types for which enc/dec must be generated
+	ts []reflect.Type            // types for which enc/dec must be generated
+
+	xs string // top level variable/constant suffix
+	hn string // fn helper type name
+
+	ti *TypeInfos
+	// rr *rand.Rand // random generator for file-specific types
+
+	nx bool // no extensions
+}
+
+// Gen will write a complete go file containing Selfer implementations for each
+// type passed. All the types must be in the same package.
+//
+// Library users: DO NOT USE IT DIRECTLY. IT WILL CHANGE CONTINUOUSLY WITHOUT NOTICE.
+func Gen(w io.Writer, buildTags, pkgName, uid string, noExtensions bool,
+	ti *TypeInfos, typ ...reflect.Type) {
+	// All types passed to this method do not have a codec.Selfer method implemented directly.
+	// codecgen already checks the AST and skips any types that define the codec.Selfer methods.
+	// Consequently, there's no need to check and trim them if they implement codec.Selfer
+
+	if len(typ) == 0 {
+		return
+	}
+	x := genRunner{
+		w:   w,
+		t:   typ,
+		te:  make(map[uintptr]bool),
+		td:  make(map[uintptr]bool),
+		im:  make(map[string]reflect.Type),
+		imn: make(map[string]string),
+		is:  make(map[reflect.Type]struct{}),
+		tm:  make(map[reflect.Type]struct{}),
+		ts:  []reflect.Type{},
+		bp:  genImportPath(typ[0]),
+		xs:  uid,
+		ti:  ti,
+		nx:  noExtensions,
+	}
+	if x.ti == nil {
+		x.ti = defTypeInfos
+	}
+	if x.xs == "" {
+		rr := rand.New(rand.NewSource(time.Now().UnixNano()))
+		x.xs = strconv.FormatInt(rr.Int63n(9999), 10)
+	}
+
+	// gather imports first:
+	x.cp = genImportPath(reflect.TypeOf(x))
+	x.imn[x.cp] = genCodecPkg
+	for _, t := range typ {
+		// fmt.Printf("###########: PkgPath: '%v', Name: '%s'\n", genImportPath(t), t.Name())
+		if genImportPath(t) != x.bp {
+			panic(errGenAllTypesSamePkg)
+		}
+		x.genRefPkgs(t)
+	}
+	if buildTags != "" {
+		x.line("// +build " + buildTags)
+		x.line("")
+	}
+	x.line(`
+
+// Code generated by codecgen - DO NOT EDIT.
+
+`)
+	x.line("package " + pkgName)
+	x.line("")
+	x.line("import (")
+	if x.cp != x.bp {
+		x.cpfx = genCodecPkg + "."
+		x.linef("%s \"%s\"", genCodecPkg, x.cp)
+	}
+	// use a sorted set of im keys, so that we can get consistent output
+	imKeys := make([]string, 0, len(x.im))
+	for k := range x.im {
+		imKeys = append(imKeys, k)
+	}
+	sort.Strings(imKeys)
+	for _, k := range imKeys { // for k, _ := range x.im {
+		if k == x.imn[k] {
+			x.linef("\"%s\"", k)
+		} else {
+			x.linef("%s \"%s\"", x.imn[k], k)
+		}
+	}
+	// add required packages
+	for _, k := range [...]string{"runtime", "errors", "strconv"} { // "reflect", "fmt"
+		if _, ok := x.im[k]; !ok {
+			x.line("\"" + k + "\"")
+		}
+	}
+	x.line(")")
+	x.line("")
+
+	x.line("const (")
+	x.linef("// ----- content types ----")
+	x.linef("codecSelferCcUTF8%s = %v", x.xs, int64(cUTF8))
+	x.linef("codecSelferCcRAW%s = %v", x.xs, int64(cRAW))
+	x.linef("// ----- value types used ----")
+	for _, vt := range [...]valueType{
+		valueTypeArray, valueTypeMap, valueTypeString,
+		valueTypeInt, valueTypeUint, valueTypeFloat} {
+		x.linef("codecSelferValueType%s%s = %v", vt.String(), x.xs, int64(vt))
+	}
+
+	x.linef("codecSelferBitsize%s = uint8(32 << (^uint(0) >> 63))", x.xs)
+	x.line(")")
+	x.line("var (")
+	x.line("errCodecSelferOnlyMapOrArrayEncodeToStruct" + x.xs + " = errors.New(`only encoded map or array can be decoded into a struct`)")
+	x.line(")")
+	x.line("")
+
+	x.hn = "codecSelfer" + x.xs
+	x.line("type " + x.hn + " struct{}")
+	x.line("")
+
+	x.varsfxreset()
+	x.line("func init() {")
+	x.linef("if %sGenVersion != %v {", x.cpfx, genVersion)
+	x.line("_, file, _, _ := runtime.Caller(0)")
+	x.outf(`panic("codecgen version mismatch: current: %v, need " + strconv.FormatInt(int64(%sGenVersion), 10) + ". Re-generate file: " + file)`, genVersion, x.cpfx)
+	// x.out(`panic(fmt.Errorf("codecgen version mismatch: current: %v, need %v. Re-generate file: %v", `)
+	// x.linef(`%v, %sGenVersion, file))`, genVersion, x.cpfx)
+	x.linef("}")
+	x.line("if false { // reference the types, but skip this branch at build/run time")
+	// x.line("_ = strconv.ParseInt")
+	var n int
+	// for k, t := range x.im {
+	for _, k := range imKeys {
+		t := x.im[k]
+		x.linef("var v%v %s.%s", n, x.imn[k], t.Name())
+		n++
+	}
+	if n > 0 {
+		x.out("_")
+		for i := 1; i < n; i++ {
+			x.out(", _")
+		}
+		x.out(" = v0")
+		for i := 1; i < n; i++ {
+			x.outf(", v%v", i)
+		}
+	}
+	x.line("} ") // close if false
+	x.line("}")  // close init
+	x.line("")
+
+	// generate rest of type info
+	for _, t := range typ {
+		x.tc = t
+		x.selfer(true)
+		x.selfer(false)
+	}
+
+	for _, t := range x.ts {
+		rtid := rt2id(t)
+		// generate enc functions for all these slice/map types.
+		x.varsfxreset()
+		x.linef("func (x %s) enc%s(v %s%s, e *%sEncoder) {", x.hn, x.genMethodNameT(t), x.arr2str(t, "*"), x.genTypeName(t), x.cpfx)
+		x.genRequiredMethodVars(true)
+		switch t.Kind() {
+		case reflect.Array, reflect.Slice, reflect.Chan:
+			x.encListFallback("v", t)
+		case reflect.Map:
+			x.encMapFallback("v", t)
+		default:
+			panic(errGenExpectArrayOrMap)
+		}
+		x.line("}")
+		x.line("")
+
+		// generate dec functions for all these slice/map types.
+		x.varsfxreset()
+		x.linef("func (x %s) dec%s(v *%s, d *%sDecoder) {", x.hn, x.genMethodNameT(t), x.genTypeName(t), x.cpfx)
+		x.genRequiredMethodVars(false)
+		switch t.Kind() {
+		case reflect.Array, reflect.Slice, reflect.Chan:
+			x.decListFallback("v", rtid, t)
+		case reflect.Map:
+			x.decMapFallback("v", rtid, t)
+		default:
+			panic(errGenExpectArrayOrMap)
+		}
+		x.line("}")
+		x.line("")
+	}
+
+	x.line("")
+}
+
+func (x *genRunner) checkForSelfer(t reflect.Type, varname string) bool {
+	// return varname != genTopLevelVarName && t != x.tc
+	// the only time we checkForSelfer is if we are not at the TOP of the generated code.
+	return varname != genTopLevelVarName
+}
+
+func (x *genRunner) arr2str(t reflect.Type, s string) string {
+	if t.Kind() == reflect.Array {
+		return s
+	}
+	return ""
+}
+
+func (x *genRunner) genRequiredMethodVars(encode bool) {
+	x.line("var h " + x.hn)
+	if encode {
+		x.line("z, r := " + x.cpfx + "GenHelperEncoder(e)")
+	} else {
+		x.line("z, r := " + x.cpfx + "GenHelperDecoder(d)")
+	}
+	x.line("_, _, _ = h, z, r")
+}
+
+func (x *genRunner) genRefPkgs(t reflect.Type) {
+	if _, ok := x.is[t]; ok {
+		return
+	}
+	x.is[t] = struct{}{}
+	tpkg, tname := genImportPath(t), t.Name()
+	if tpkg != "" && tpkg != x.bp && tpkg != x.cp && tname != "" && tname[0] >= 'A' && tname[0] <= 'Z' {
+		if _, ok := x.im[tpkg]; !ok {
+			x.im[tpkg] = t
+			if idx := strings.LastIndex(tpkg, "/"); idx < 0 {
+				x.imn[tpkg] = tpkg
+			} else {
+				x.imc++
+				x.imn[tpkg] = "pkg" + strconv.FormatUint(x.imc, 10) + "_" + genGoIdentifier(tpkg[idx+1:], false)
+			}
+		}
+	}
+	switch t.Kind() {
+	case reflect.Array, reflect.Slice, reflect.Ptr, reflect.Chan:
+		x.genRefPkgs(t.Elem())
+	case reflect.Map:
+		x.genRefPkgs(t.Elem())
+		x.genRefPkgs(t.Key())
+	case reflect.Struct:
+		for i := 0; i < t.NumField(); i++ {
+			if fname := t.Field(i).Name; fname != "" && fname[0] >= 'A' && fname[0] <= 'Z' {
+				x.genRefPkgs(t.Field(i).Type)
+			}
+		}
+	}
+}
+
+func (x *genRunner) varsfx() string {
+	x.c++
+	return strconv.FormatUint(x.c, 10)
+}
+
+func (x *genRunner) varsfxreset() {
+	x.c = 0
+}
+
+func (x *genRunner) out(s string) {
+	_, err := io.WriteString(x.w, s)
+	if err != nil {
+		panic(err)
+	}
+}
+
+func (x *genRunner) outf(s string, params ...interface{}) {
+	_, err := fmt.Fprintf(x.w, s, params...)
+	if err != nil {
+		panic(err)
+	}
+}
+
+func (x *genRunner) line(s string) {
+	x.out(s)
+	if len(s) == 0 || s[len(s)-1] != '\n' {
+		x.out("\n")
+	}
+}
+
+func (x *genRunner) linef(s string, params ...interface{}) {
+	x.outf(s, params...)
+	if len(s) == 0 || s[len(s)-1] != '\n' {
+		x.out("\n")
+	}
+}
+
+func (x *genRunner) genTypeName(t reflect.Type) (n string) {
+	// defer func() { fmt.Printf(">>>> ####: genTypeName: t: %v, name: '%s'\n", t, n) }()
+
+	// if the type has a PkgPath, which doesn't match the current package,
+	// then include it.
+	// We cannot depend on t.String() because it includes current package,
+	// or t.PkgPath because it includes full import path,
+	//
+	var ptrPfx string
+	for t.Kind() == reflect.Ptr {
+		ptrPfx += "*"
+		t = t.Elem()
+	}
+	if tn := t.Name(); tn != "" {
+		return ptrPfx + x.genTypeNamePrim(t)
+	}
+	switch t.Kind() {
+	case reflect.Map:
+		return ptrPfx + "map[" + x.genTypeName(t.Key()) + "]" + x.genTypeName(t.Elem())
+	case reflect.Slice:
+		return ptrPfx + "[]" + x.genTypeName(t.Elem())
+	case reflect.Array:
+		return ptrPfx + "[" + strconv.FormatInt(int64(t.Len()), 10) + "]" + x.genTypeName(t.Elem())
+	case reflect.Chan:
+		return ptrPfx + t.ChanDir().String() + " " + x.genTypeName(t.Elem())
+	default:
+		if t == intfTyp {
+			return ptrPfx + "interface{}"
+		} else {
+			return ptrPfx + x.genTypeNamePrim(t)
+		}
+	}
+}
+
+func (x *genRunner) genTypeNamePrim(t reflect.Type) (n string) {
+	if t.Name() == "" {
+		return t.String()
+	} else if genImportPath(t) == "" || genImportPath(t) == genImportPath(x.tc) {
+		return t.Name()
+	} else {
+		return x.imn[genImportPath(t)] + "." + t.Name()
+		// return t.String() // best way to get the package name inclusive
+	}
+}
+
+func (x *genRunner) genZeroValueR(t reflect.Type) string {
+	// if t is a named type, w
+	switch t.Kind() {
+	case reflect.Ptr, reflect.Interface, reflect.Chan, reflect.Func,
+		reflect.Slice, reflect.Map, reflect.Invalid:
+		return "nil"
+	case reflect.Bool:
+		return "false"
+	case reflect.String:
+		return `""`
+	case reflect.Struct, reflect.Array:
+		return x.genTypeName(t) + "{}"
+	default: // all numbers
+		return "0"
+	}
+}
+
+func (x *genRunner) genMethodNameT(t reflect.Type) (s string) {
+	return genMethodNameT(t, x.tc)
+}
+
+func (x *genRunner) selfer(encode bool) {
+	t := x.tc
+	t0 := t
+	// always make decode use a pointer receiver,
+	// and structs/arrays always use a ptr receiver (encode|decode)
+	isptr := !encode || t.Kind() == reflect.Array || (t.Kind() == reflect.Struct && t != timeTyp)
+	x.varsfxreset()
+
+	fnSigPfx := "func (" + genTopLevelVarName + " "
+	if isptr {
+		fnSigPfx += "*"
+	}
+	fnSigPfx += x.genTypeName(t)
+	x.out(fnSigPfx)
+
+	if isptr {
+		t = reflect.PtrTo(t)
+	}
+	if encode {
+		x.line(") CodecEncodeSelf(e *" + x.cpfx + "Encoder) {")
+		x.genRequiredMethodVars(true)
+		x.encVar(genTopLevelVarName, t)
+	} else {
+		x.line(") CodecDecodeSelf(d *" + x.cpfx + "Decoder) {")
+		x.genRequiredMethodVars(false)
+		// do not use decVar, as there is no need to check TryDecodeAsNil
+		// or way to elegantly handle that, and also setting it to a
+		// non-nil value doesn't affect the pointer passed.
+		// x.decVar(genTopLevelVarName, t, false)
+		x.dec(genTopLevelVarName, t0, true)
+	}
+	x.line("}")
+	x.line("")
+
+	if encode || t0.Kind() != reflect.Struct {
+		return
+	}
+
+	// write is containerMap
+	if genUseOneFunctionForDecStructMap {
+		x.out(fnSigPfx)
+		x.line(") codecDecodeSelfFromMap(l int, d *" + x.cpfx + "Decoder) {")
+		x.genRequiredMethodVars(false)
+		x.decStructMap(genTopLevelVarName, "l", rt2id(t0), t0, genStructMapStyleConsolidated)
+		x.line("}")
+		x.line("")
+	} else {
+		x.out(fnSigPfx)
+		x.line(") codecDecodeSelfFromMapLenPrefix(l int, d *" + x.cpfx + "Decoder) {")
+		x.genRequiredMethodVars(false)
+		x.decStructMap(genTopLevelVarName, "l", rt2id(t0), t0, genStructMapStyleLenPrefix)
+		x.line("}")
+		x.line("")
+
+		x.out(fnSigPfx)
+		x.line(") codecDecodeSelfFromMapCheckBreak(l int, d *" + x.cpfx + "Decoder) {")
+		x.genRequiredMethodVars(false)
+		x.decStructMap(genTopLevelVarName, "l", rt2id(t0), t0, genStructMapStyleCheckBreak)
+		x.line("}")
+		x.line("")
+	}
+
+	// write containerArray
+	x.out(fnSigPfx)
+	x.line(") codecDecodeSelfFromArray(l int, d *" + x.cpfx + "Decoder) {")
+	x.genRequiredMethodVars(false)
+	x.decStructArray(genTopLevelVarName, "l", "return", rt2id(t0), t0)
+	x.line("}")
+	x.line("")
+
+}
+
+// used for chan, array, slice, map
+func (x *genRunner) xtraSM(varname string, t reflect.Type, encode, isptr bool) {
+	var ptrPfx, addrPfx string
+	if isptr {
+		ptrPfx = "*"
+	} else {
+		addrPfx = "&"
+	}
+	if encode {
+		x.linef("h.enc%s((%s%s)(%s), e)", x.genMethodNameT(t), ptrPfx, x.genTypeName(t), varname)
+	} else {
+		x.linef("h.dec%s((*%s)(%s%s), d)", x.genMethodNameT(t), x.genTypeName(t), addrPfx, varname)
+	}
+	x.registerXtraT(t)
+}
+
+func (x *genRunner) registerXtraT(t reflect.Type) {
+	// recursively register the types
+	if _, ok := x.tm[t]; ok {
+		return
+	}
+	var tkey reflect.Type
+	switch t.Kind() {
+	case reflect.Chan, reflect.Slice, reflect.Array:
+	case reflect.Map:
+		tkey = t.Key()
+	default:
+		return
+	}
+	x.tm[t] = struct{}{}
+	x.ts = append(x.ts, t)
+	// check if this refers to any xtra types eg. a slice of array: add the array
+	x.registerXtraT(t.Elem())
+	if tkey != nil {
+		x.registerXtraT(tkey)
+	}
+}
+
+// encVar will encode a variable.
+// The parameter, t, is the reflect.Type of the variable itself
+func (x *genRunner) encVar(varname string, t reflect.Type) {
+	// fmt.Printf(">>>>>> varname: %s, t: %v\n", varname, t)
+	var checkNil bool
+	switch t.Kind() {
+	case reflect.Ptr, reflect.Interface, reflect.Slice, reflect.Map, reflect.Chan:
+		checkNil = true
+	}
+	if checkNil {
+		x.linef("if %s == nil { r.EncodeNil() } else { ", varname)
+	}
+
+	switch t.Kind() {
+	case reflect.Ptr:
+		telem := t.Elem()
+		tek := telem.Kind()
+		if tek == reflect.Array || (tek == reflect.Struct && telem != timeTyp) {
+			x.enc(varname, genNonPtr(t))
+			break
+		}
+		i := x.varsfx()
+		x.line(genTempVarPfx + i + " := *" + varname)
+		x.enc(genTempVarPfx+i, genNonPtr(t))
+	case reflect.Struct, reflect.Array:
+		if t == timeTyp {
+			x.enc(varname, t)
+			break
+		}
+		i := x.varsfx()
+		x.line(genTempVarPfx + i + " := &" + varname)
+		x.enc(genTempVarPfx+i, t)
+	default:
+		x.enc(varname, t)
+	}
+
+	if checkNil {
+		x.line("}")
+	}
+
+}
+
+// enc will encode a variable (varname) of type t, where t represents T.
+// if t is !time.Time and t is of kind reflect.Struct or reflect.Array, varname is of type *T
+// (to prevent copying),
+// else t is of type T
+func (x *genRunner) enc(varname string, t reflect.Type) {
+	rtid := rt2id(t)
+	ti2 := x.ti.get(rtid, t)
+	// We call CodecEncodeSelf if one of the following are honored:
+	//   - the type already implements Selfer, call that
+	//   - the type has a Selfer implementation just created, use that
+	//   - the type is in the list of the ones we will generate for, but it is not currently being generated
+
+	mi := x.varsfx()
+	// tptr := reflect.PtrTo(t)
+	tk := t.Kind()
+	if x.checkForSelfer(t, varname) {
+		if tk == reflect.Array || (tk == reflect.Struct && rtid != timeTypId) { // varname is of type *T
+			// if tptr.Implements(selferTyp) || t.Implements(selferTyp) {
+			if ti2.isFlag(typeInfoFlagIsZeroerPtr) || ti2.isFlag(typeInfoFlagIsZeroer) {
+				x.line(varname + ".CodecEncodeSelf(e)")
+				return
+			}
+		} else { // varname is of type T
+			if ti2.cs { // t.Implements(selferTyp) {
+				x.line(varname + ".CodecEncodeSelf(e)")
+				return
+			} else if ti2.csp { // tptr.Implements(selferTyp) {
+				x.linef("%ssf%s := &%s", genTempVarPfx, mi, varname)
+				x.linef("%ssf%s.CodecEncodeSelf(e)", genTempVarPfx, mi)
+				return
+			}
+		}
+
+		if _, ok := x.te[rtid]; ok {
+			x.line(varname + ".CodecEncodeSelf(e)")
+			return
+		}
+	}
+
+	inlist := false
+	for _, t0 := range x.t {
+		if t == t0 {
+			inlist = true
+			if x.checkForSelfer(t, varname) {
+				x.line(varname + ".CodecEncodeSelf(e)")
+				return
+			}
+			break
+		}
+	}
+
+	var rtidAdded bool
+	if t == x.tc {
+		x.te[rtid] = true
+		rtidAdded = true
+	}
+
+	// check if
+	//   - type is time.Time, RawExt, Raw
+	//   - the type implements (Text|JSON|Binary)(Unm|M)arshal
+
+	x.line("if false {")           //start if block
+	defer func() { x.line("}") }() //end if block
+
+	if t == timeTyp {
+		x.linef("} else { r.EncodeTime(%s)", varname)
+		return
+	}
+	if t == rawTyp {
+		x.linef("} else { z.EncRaw(%s)", varname)
+		return
+	}
+	if t == rawExtTyp {
+		x.linef("} else { r.EncodeRawExt(%s, e)", varname)
+		return
+	}
+	// only check for extensions if the type is named, and has a packagePath.
+	var arrayOrStruct = tk == reflect.Array || tk == reflect.Struct // meaning varname if of type *T
+	if !x.nx && genImportPath(t) != "" && t.Name() != "" {
+		yy := fmt.Sprintf("%sxt%s", genTempVarPfx, mi)
+		x.linef("} else if %s := z.Extension(z.I2Rtid(%s)); %s != nil { z.EncExtension(%s, %s) ", yy, varname, yy, varname, yy)
+	}
+	if arrayOrStruct { // varname is of type *T
+		if ti2.bm || ti2.bmp { // t.Implements(binaryMarshalerTyp) || tptr.Implements(binaryMarshalerTyp) {
+			x.linef("} else if z.EncBinary() { z.EncBinaryMarshal(%v) ", varname)
+		}
+		if ti2.jm || ti2.jmp { // t.Implements(jsonMarshalerTyp) || tptr.Implements(jsonMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() && z.IsJSONHandle() { z.EncJSONMarshal(%v) ", varname)
+		} else if ti2.tm || ti2.tmp { // t.Implements(textMarshalerTyp) || tptr.Implements(textMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() { z.EncTextMarshal(%v) ", varname)
+		}
+	} else { // varname is of type T
+		if ti2.bm { // t.Implements(binaryMarshalerTyp) {
+			x.linef("} else if z.EncBinary() { z.EncBinaryMarshal(%v) ", varname)
+		} else if ti2.bmp { // tptr.Implements(binaryMarshalerTyp) {
+			x.linef("} else if z.EncBinary() { z.EncBinaryMarshal(&%v) ", varname)
+		}
+		if ti2.jm { // t.Implements(jsonMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() && z.IsJSONHandle() { z.EncJSONMarshal(%v) ", varname)
+		} else if ti2.jmp { // tptr.Implements(jsonMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() && z.IsJSONHandle() { z.EncJSONMarshal(&%v) ", varname)
+		} else if ti2.tm { // t.Implements(textMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() { z.EncTextMarshal(%v) ", varname)
+		} else if ti2.tmp { // tptr.Implements(textMarshalerTyp) {
+			x.linef("} else if !z.EncBinary() { z.EncTextMarshal(&%v) ", varname)
+		}
+	}
+	x.line("} else {")
+
+	switch t.Kind() {
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		x.line("r.EncodeInt(int64(" + varname + "))")
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
+		x.line("r.EncodeUint(uint64(" + varname + "))")
+	case reflect.Float32:
+		x.line("r.EncodeFloat32(float32(" + varname + "))")
+	case reflect.Float64:
+		x.line("r.EncodeFloat64(float64(" + varname + "))")
+	case reflect.Bool:
+		x.line("r.EncodeBool(bool(" + varname + "))")
+	case reflect.String:
+		x.line("r.EncodeString(codecSelferCcUTF8" + x.xs + ", string(" + varname + "))")
+	case reflect.Chan:
+		x.xtraSM(varname, t, true, false)
+		// x.encListFallback(varname, rtid, t)
+	case reflect.Array:
+		x.xtraSM(varname, t, true, true)
+	case reflect.Slice:
+		// if nil, call dedicated function
+		// if a []uint8, call dedicated function
+		// if a known fastpath slice, call dedicated function
+		// else write encode function in-line.
+		// - if elements are primitives or Selfers, call dedicated function on each member.
+		// - else call Encoder.encode(XXX) on it.
+		if rtid == uint8SliceTypId {
+			x.line("r.EncodeStringBytes(codecSelferCcRAW" + x.xs + ", []byte(" + varname + "))")
+		} else if fastpathAV.index(rtid) != -1 {
+			g := x.newGenV(t)
+			x.line("z.F." + g.MethodNamePfx("Enc", false) + "V(" + varname + ", e)")
+		} else {
+			x.xtraSM(varname, t, true, false)
+			// x.encListFallback(varname, rtid, t)
+		}
+	case reflect.Map:
+		// if nil, call dedicated function
+		// if a known fastpath map, call dedicated function
+		// else write encode function in-line.
+		// - if elements are primitives or Selfers, call dedicated function on each member.
+		// - else call Encoder.encode(XXX) on it.
+		// x.line("if " + varname + " == nil { \nr.EncodeNil()\n } else { ")
+		if fastpathAV.index(rtid) != -1 {
+			g := x.newGenV(t)
+			x.line("z.F." + g.MethodNamePfx("Enc", false) + "V(" + varname + ", e)")
+		} else {
+			x.xtraSM(varname, t, true, false)
+			// x.encMapFallback(varname, rtid, t)
+		}
+	case reflect.Struct:
+		if !inlist {
+			delete(x.te, rtid)
+			x.line("z.EncFallback(" + varname + ")")
+			break
+		}
+		x.encStruct(varname, rtid, t)
+	default:
+		if rtidAdded {
+			delete(x.te, rtid)
+		}
+		x.line("z.EncFallback(" + varname + ")")
+	}
+}
+
+func (x *genRunner) encZero(t reflect.Type) {
+	switch t.Kind() {
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		x.line("r.EncodeInt(0)")
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
+		x.line("r.EncodeUint(0)")
+	case reflect.Float32:
+		x.line("r.EncodeFloat32(0)")
+	case reflect.Float64:
+		x.line("r.EncodeFloat64(0)")
+	case reflect.Bool:
+		x.line("r.EncodeBool(false)")
+	case reflect.String:
+		x.line("r.EncodeString(codecSelferCcUTF8" + x.xs + `, "")`)
+	default:
+		x.line("r.EncodeNil()")
+	}
+}
+
+func (x *genRunner) encOmitEmptyLine(t2 reflect.StructField, varname string, buf *genBuf) {
+	// smartly check omitEmpty on a struct type, as it may contain uncomparable map/slice/etc.
+	// also, for maps/slices/arrays, check if len ! 0 (not if == zero value)
+	varname2 := varname + "." + t2.Name
+	switch t2.Type.Kind() {
+	case reflect.Struct:
+		rtid2 := rt2id(t2.Type)
+		ti2 := x.ti.get(rtid2, t2.Type)
+		// fmt.Printf(">>>> structfield: omitempty: type: %s, field: %s\n", t2.Type.Name(), t2.Name)
+		if ti2.rtid == timeTypId {
+			buf.s("!(").s(varname2).s(".IsZero())")
+			break
+		}
+		if ti2.isFlag(typeInfoFlagIsZeroerPtr) || ti2.isFlag(typeInfoFlagIsZeroer) {
+			buf.s("!(").s(varname2).s(".IsZero())")
+			break
+		}
+		if ti2.isFlag(typeInfoFlagComparable) {
+			buf.s(varname2).s(" != ").s(x.genZeroValueR(t2.Type))
+			break
+		}
+		// buf.s("(")
+		buf.s("false")
+		for i, n := 0, t2.Type.NumField(); i < n; i++ {
+			f := t2.Type.Field(i)
+			if f.PkgPath != "" { // unexported
+				continue
+			}
+			buf.s(" || ")
+			x.encOmitEmptyLine(f, varname2, buf)
+		}
+		//buf.s(")")
+	case reflect.Bool:
+		buf.s(varname2)
+	case reflect.Map, reflect.Slice, reflect.Array, reflect.Chan:
+		buf.s("len(").s(varname2).s(") != 0")
+	default:
+		buf.s(varname2).s(" != ").s(x.genZeroValueR(t2.Type))
+	}
+}
+
+func (x *genRunner) encStruct(varname string, rtid uintptr, t reflect.Type) {
+	// Use knowledge from structfieldinfo (mbs, encodable fields. Ignore omitempty. )
+	// replicate code in kStruct i.e. for each field, deref type to non-pointer, and call x.enc on it
+
+	// if t === type currently running selfer on, do for all
+	ti := x.ti.get(rtid, t)
+	i := x.varsfx()
+	sepVarname := genTempVarPfx + "sep" + i
+	numfieldsvar := genTempVarPfx + "q" + i
+	ti2arrayvar := genTempVarPfx + "r" + i
+	struct2arrvar := genTempVarPfx + "2arr" + i
+
+	x.line(sepVarname + " := !z.EncBinary()")
+	x.linef("%s := z.EncBasicHandle().StructToArray", struct2arrvar)
+	x.linef("_, _ = %s, %s", sepVarname, struct2arrvar)
+	x.linef("const %s bool = %v // struct tag has 'toArray'", ti2arrayvar, ti.toArray)
+
+	tisfi := ti.sfiSrc // always use sequence from file. decStruct expects same thing.
+
+	// var nn int
+	// due to omitEmpty, we need to calculate the
+	// number of non-empty things we write out first.
+	// This is required as we need to pre-determine the size of the container,
+	// to support length-prefixing.
+	if ti.anyOmitEmpty {
+		x.linef("var %s = [%v]bool{ // should field at this index be written?", numfieldsvar, len(tisfi))
+
+		for j, si := range tisfi {
+			_ = j
+			if !si.omitEmpty() {
+				// x.linef("%s[%v] = true // %s", numfieldsvar, j, si.fieldName)
+				x.linef("true, // %s", si.fieldName)
+				// nn++
+				continue
+			}
+			var t2 reflect.StructField
+			var omitline genBuf
+			{
+				t2typ := t
+				varname3 := varname
+				// go through the loop, record the t2 field explicitly,
+				// and gather the omit line if embedded in pointers.
+				for ij, ix := range si.is {
+					if uint8(ij) == si.nis {
+						break
+					}
+					for t2typ.Kind() == reflect.Ptr {
+						t2typ = t2typ.Elem()
+					}
+					t2 = t2typ.Field(int(ix))
+					t2typ = t2.Type
+					varname3 = varname3 + "." + t2.Name
+					// do not include actual field in the omit line.
+					// that is done subsequently (right after - below).
+					if uint8(ij+1) < si.nis && t2typ.Kind() == reflect.Ptr {
+						omitline.s(varname3).s(" != nil && ")
+					}
+				}
+			}
+			x.encOmitEmptyLine(t2, varname, &omitline)
+			x.linef("%s, // %s", omitline.v(), si.fieldName)
+		}
+		x.line("}")
+		x.linef("_ = %s", numfieldsvar)
+	}
+	// x.linef("var %snn%s int", genTempVarPfx, i)
+	x.linef("if %s || %s {", ti2arrayvar, struct2arrvar) // if ti.toArray {
+	x.linef("r.WriteArrayStart(%d)", len(tisfi))
+	x.linef("} else {") // if not ti.toArray
+	if ti.anyOmitEmpty {
+		// nn = 0
+		// x.linef("var %snn%s = %v", genTempVarPfx, i, nn)
+		x.linef("var %snn%s int", genTempVarPfx, i)
+		x.linef("for _, b := range %s { if b { %snn%s++ } }", numfieldsvar, genTempVarPfx, i)
+		x.linef("r.WriteMapStart(%snn%s)", genTempVarPfx, i)
+		x.linef("%snn%s = %v", genTempVarPfx, i, 0)
+	} else {
+		x.linef("r.WriteMapStart(%d)", len(tisfi))
+	}
+	x.line("}") // close if not StructToArray
+
+	for j, si := range tisfi {
+		i := x.varsfx()
+		isNilVarName := genTempVarPfx + "n" + i
+		var labelUsed bool
+		var t2 reflect.StructField
+		{
+			t2typ := t
+			varname3 := varname
+			for ij, ix := range si.is {
+				if uint8(ij) == si.nis {
+					break
+				}
+				for t2typ.Kind() == reflect.Ptr {
+					t2typ = t2typ.Elem()
+				}
+				t2 = t2typ.Field(int(ix))
+				t2typ = t2.Type
+				varname3 = varname3 + "." + t2.Name
+				if t2typ.Kind() == reflect.Ptr {
+					if !labelUsed {
+						x.line("var " + isNilVarName + " bool")
+					}
+					x.line("if " + varname3 + " == nil { " + isNilVarName + " = true ")
+					x.line("goto LABEL" + i)
+					x.line("}")
+					labelUsed = true
+					// "varname3 = new(" + x.genTypeName(t3.Elem()) + ") }")
+				}
+			}
+			// t2 = t.FieldByIndex(si.is)
+		}
+		if labelUsed {
+			x.line("LABEL" + i + ":")
+		}
+		// if the type of the field is a Selfer, or one of the ones
+
+		x.linef("if %s || %s {", ti2arrayvar, struct2arrvar) // if ti.toArray
+		if labelUsed {
+			x.linef("if %s { r.WriteArrayElem(); r.EncodeNil() } else { ", isNilVarName)
+		}
+		x.line("r.WriteArrayElem()")
+		if si.omitEmpty() {
+			x.linef("if %s[%v] {", numfieldsvar, j)
+		}
+		x.encVar(varname+"."+t2.Name, t2.Type)
+		if si.omitEmpty() {
+			x.linef("} else {")
+			x.encZero(t2.Type)
+			x.linef("}")
+		}
+		if labelUsed {
+			x.line("}")
+		}
+
+		x.linef("} else {") // if not ti.toArray
+
+		if si.omitEmpty() {
+			x.linef("if %s[%v] {", numfieldsvar, j)
+		}
+		x.line("r.WriteMapElemKey()")
+
+		// x.line("r.EncodeString(codecSelferCcUTF8" + x.xs + ", `" + si.encName + "`)")
+		// emulate EncStructFieldKey
+		switch ti.keyType {
+		case valueTypeInt:
+			x.linef("r.EncodeInt(z.M.Int(strconv.ParseInt(`%s`, 10, 64)))", si.encName)
+		case valueTypeUint:
+			x.linef("r.EncodeUint(z.M.Uint(strconv.ParseUint(`%s`, 10, 64)))", si.encName)
+		case valueTypeFloat:
+			x.linef("r.EncodeFloat64(z.M.Float(strconv.ParseFloat(`%s`, 64)))", si.encName)
+		default: // string
+			x.linef("r.EncodeString(codecSelferCcUTF8%s, `%s`)", x.xs, si.encName)
+		}
+		// x.linef("r.EncStructFieldKey(codecSelferValueType%s%s, `%s`)", ti.keyType.String(), x.xs, si.encName)
+		x.line("r.WriteMapElemValue()")
+		if labelUsed {
+			x.line("if " + isNilVarName + " { r.EncodeNil() } else { ")
+			x.encVar(varname+"."+t2.Name, t2.Type)
+			x.line("}")
+		} else {
+			x.encVar(varname+"."+t2.Name, t2.Type)
+		}
+		if si.omitEmpty() {
+			x.line("}")
+		}
+		x.linef("} ") // end if/else ti.toArray
+	}
+	x.linef("if %s || %s {", ti2arrayvar, struct2arrvar) // if ti.toArray {
+	x.line("r.WriteArrayEnd()")
+	x.line("} else {")
+	x.line("r.WriteMapEnd()")
+	x.line("}")
+
+}
+
+func (x *genRunner) encListFallback(varname string, t reflect.Type) {
+	elemBytes := t.Elem().Kind() == reflect.Uint8
+	if t.AssignableTo(uint8SliceTyp) {
+		x.linef("r.EncodeStringBytes(codecSelferCcRAW%s, []byte(%s))", x.xs, varname)
+		return
+	}
+	if t.Kind() == reflect.Array && elemBytes {
+		x.linef("r.EncodeStringBytes(codecSelferCcRAW%s, ((*[%d]byte)(%s))[:])", x.xs, t.Len(), varname)
+		return
+	}
+	i := x.varsfx()
+	if t.Kind() == reflect.Chan {
+		type ts struct {
+			Label, Chan, Slice, Sfx string
+		}
+		tm, err := template.New("").Parse(genEncChanTmpl)
+		if err != nil {
+			panic(err)
+		}
+		x.linef("if %s == nil { r.EncodeNil() } else { ", varname)
+		x.linef("var sch%s []%s", i, x.genTypeName(t.Elem()))
+		err = tm.Execute(x.w, &ts{"Lsch" + i, varname, "sch" + i, i})
+		if err != nil {
+			panic(err)
+		}
+		// x.linef("%s = sch%s", varname, i)
+		if elemBytes {
+			x.linef("r.EncodeStringBytes(codecSelferCcRAW%s, []byte(%s))", x.xs, "sch"+i)
+			x.line("}")
+			return
+		}
+		varname = "sch" + i
+	}
+
+	x.line("r.WriteArrayStart(len(" + varname + "))")
+	x.linef("for _, %sv%s := range %s {", genTempVarPfx, i, varname)
+	x.line("r.WriteArrayElem()")
+
+	x.encVar(genTempVarPfx+"v"+i, t.Elem())
+	x.line("}")
+	x.line("r.WriteArrayEnd()")
+	if t.Kind() == reflect.Chan {
+		x.line("}")
+	}
+}
+
+func (x *genRunner) encMapFallback(varname string, t reflect.Type) {
+	// TODO: expand this to handle canonical.
+	i := x.varsfx()
+	x.line("r.WriteMapStart(len(" + varname + "))")
+	x.linef("for %sk%s, %sv%s := range %s {", genTempVarPfx, i, genTempVarPfx, i, varname)
+	x.line("r.WriteMapElemKey()")
+	x.encVar(genTempVarPfx+"k"+i, t.Key())
+	x.line("r.WriteMapElemValue()")
+	x.encVar(genTempVarPfx+"v"+i, t.Elem())
+	x.line("}")
+	x.line("r.WriteMapEnd()")
+}
+
+func (x *genRunner) decVarInitPtr(varname, nilvar string, t reflect.Type, si *structFieldInfo,
+	newbuf, nilbuf *genBuf) (t2 reflect.StructField) {
+	//we must accommodate anonymous fields, where the embedded field is a nil pointer in the value.
+	// t2 = t.FieldByIndex(si.is)
+	t2typ := t
+	varname3 := varname
+	t2kind := t2typ.Kind()
+	var nilbufed bool
+	if si != nil {
+		for ij, ix := range si.is {
+			if uint8(ij) == si.nis {
+				break
+			}
+			for t2typ.Kind() == reflect.Ptr {
+				t2typ = t2typ.Elem()
+			}
+			t2 = t2typ.Field(int(ix))
+			t2typ = t2.Type
+			varname3 = varname3 + "." + t2.Name
+			t2kind = t2typ.Kind()
+			if t2kind != reflect.Ptr {
+				continue
+			}
+			if newbuf != nil {
+				newbuf.f("if %s == nil { %s = new(%s) }\n", varname3, varname3, x.genTypeName(t2typ.Elem()))
+			}
+			if nilbuf != nil {
+				if !nilbufed {
+					nilbuf.s("if true")
+					nilbufed = true
+				}
+				nilbuf.s(" && ").s(varname3).s(" != nil")
+			}
+		}
+	}
+	// if t2typ.Kind() == reflect.Ptr {
+	// 	varname3 = varname3 + t2.Name
+	// }
+	if nilbuf != nil {
+		if nilbufed {
+			nilbuf.s(" { ")
+		}
+		if nilvar != "" {
+			nilbuf.s(nilvar).s(" = true")
+		} else if tk := t2typ.Kind(); tk == reflect.Ptr {
+			if strings.IndexByte(varname3, '.') != -1 || strings.IndexByte(varname3, '[') != -1 {
+				nilbuf.s(varname3).s(" = nil")
+			} else {
+				nilbuf.s("*").s(varname3).s(" = ").s(x.genZeroValueR(t2typ.Elem()))
+			}
+		} else {
+			nilbuf.s(varname3).s(" = ").s(x.genZeroValueR(t2typ))
+		}
+		if nilbufed {
+			nilbuf.s("}")
+		}
+	}
+	return t2
+}
+
+// decVar takes a variable called varname, of type t
+func (x *genRunner) decVarMain(varname, rand string, t reflect.Type, checkNotNil bool) {
+	// We only encode as nil if a nillable value.
+	// This removes some of the wasted checks for TryDecodeAsNil.
+	// We need to think about this more, to see what happens if omitempty, etc
+	// cause a nil value to be stored when something is expected.
+	// This could happen when decoding from a struct encoded as an array.
+	// For that, decVar should be called with canNil=true, to force true as its value.
+	var varname2 string
+	if t.Kind() != reflect.Ptr {
+		if t.PkgPath() != "" || !x.decTryAssignPrimitive(varname, t, false) {
+			x.dec(varname, t, false)
+		}
+	} else {
+		if checkNotNil {
+			x.linef("if %s == nil { %s = new(%s) }", varname, varname, x.genTypeName(t.Elem()))
+		}
+		// Ensure we set underlying ptr to a non-nil value (so we can deref to it later).
+		// There's a chance of a **T in here which is nil.
+		var ptrPfx string
+		for t = t.Elem(); t.Kind() == reflect.Ptr; t = t.Elem() {
+			ptrPfx += "*"
+			if checkNotNil {
+				x.linef("if %s%s == nil { %s%s = new(%s)}",
+					ptrPfx, varname, ptrPfx, varname, x.genTypeName(t))
+			}
+		}
+		// Should we create temp var if a slice/map indexing? No. dec(...) can now handle it.
+
+		if ptrPfx == "" {
+			x.dec(varname, t, true)
+		} else {
+			varname2 = genTempVarPfx + "z" + rand
+			x.line(varname2 + " := " + ptrPfx + varname)
+			x.dec(varname2, t, true)
+		}
+	}
+}
+
+// decVar takes a variable called varname, of type t
+func (x *genRunner) decVar(varname, nilvar string, t reflect.Type, canBeNil, checkNotNil bool) {
+	i := x.varsfx()
+
+	// We only encode as nil if a nillable value.
+	// This removes some of the wasted checks for TryDecodeAsNil.
+	// We need to think about this more, to see what happens if omitempty, etc
+	// cause a nil value to be stored when something is expected.
+	// This could happen when decoding from a struct encoded as an array.
+	// For that, decVar should be called with canNil=true, to force true as its value.
+
+	if !canBeNil {
+		canBeNil = genAnythingCanBeNil || !genIsImmutable(t)
+	}
+
+	if canBeNil {
+		var buf genBuf
+		x.decVarInitPtr(varname, nilvar, t, nil, nil, &buf)
+		x.linef("if r.TryDecodeAsNil() { %s } else {", buf.buf)
+	} else {
+		x.line("// cannot be nil")
+	}
+
+	x.decVarMain(varname, i, t, checkNotNil)
+
+	if canBeNil {
+		x.line("} ")
+	}
+}
+
+// dec will decode a variable (varname) of type t or ptrTo(t) if isptr==true.
+// t is always a basetype (i.e. not of kind reflect.Ptr).
+func (x *genRunner) dec(varname string, t reflect.Type, isptr bool) {
+	// assumptions:
+	//   - the varname is to a pointer already. No need to take address of it
+	//   - t is always a baseType T (not a *T, etc).
+	rtid := rt2id(t)
+	ti2 := x.ti.get(rtid, t)
+	// tptr := reflect.PtrTo(t)
+	if x.checkForSelfer(t, varname) {
+		if ti2.cs || ti2.csp { // t.Implements(selferTyp) || tptr.Implements(selferTyp) {
+			x.line(varname + ".CodecDecodeSelf(d)")
+			return
+		}
+		if _, ok := x.td[rtid]; ok {
+			x.line(varname + ".CodecDecodeSelf(d)")
+			return
+		}
+	}
+
+	inlist := false
+	for _, t0 := range x.t {
+		if t == t0 {
+			inlist = true
+			if x.checkForSelfer(t, varname) {
+				x.line(varname + ".CodecDecodeSelf(d)")
+				return
+			}
+			break
+		}
+	}
+
+	var rtidAdded bool
+	if t == x.tc {
+		x.td[rtid] = true
+		rtidAdded = true
+	}
+
+	// check if
+	//   - type is time.Time, Raw, RawExt
+	//   - the type implements (Text|JSON|Binary)(Unm|M)arshal
+
+	mi := x.varsfx()
+	// x.linef("%sm%s := z.DecBinary()", genTempVarPfx, mi)
+	// x.linef("_ = %sm%s", genTempVarPfx, mi)
+	x.line("if false {")           //start if block
+	defer func() { x.line("}") }() //end if block
+
+	var ptrPfx, addrPfx string
+	if isptr {
+		ptrPfx = "*"
+	} else {
+		addrPfx = "&"
+	}
+	if t == timeTyp {
+		x.linef("} else { %s%v = r.DecodeTime()", ptrPfx, varname)
+		return
+	}
+	if t == rawTyp {
+		x.linef("} else { %s%v = z.DecRaw()", ptrPfx, varname)
+		return
+	}
+
+	if t == rawExtTyp {
+		x.linef("} else { r.DecodeExt(%s%v, 0, nil)", addrPfx, varname)
+		return
+	}
+
+	// only check for extensions if the type is named, and has a packagePath.
+	if !x.nx && genImportPath(t) != "" && t.Name() != "" {
+		// first check if extensions are configued, before doing the interface conversion
+		// x.linef("} else if z.HasExtensions() && z.DecExt(%s) {", varname)
+		yy := fmt.Sprintf("%sxt%s", genTempVarPfx, mi)
+		x.linef("} else if %s := z.Extension(z.I2Rtid(%s)); %s != nil { z.DecExtension(%s, %s) ", yy, varname, yy, varname, yy)
+	}
+
+	if ti2.bu || ti2.bup { // t.Implements(binaryUnmarshalerTyp) || tptr.Implements(binaryUnmarshalerTyp) {
+		x.linef("} else if z.DecBinary() { z.DecBinaryUnmarshal(%s%v) ", addrPfx, varname)
+	}
+	if ti2.ju || ti2.jup { // t.Implements(jsonUnmarshalerTyp) || tptr.Implements(jsonUnmarshalerTyp) {
+		x.linef("} else if !z.DecBinary() && z.IsJSONHandle() { z.DecJSONUnmarshal(%s%v)", addrPfx, varname)
+	} else if ti2.tu || ti2.tup { // t.Implements(textUnmarshalerTyp) || tptr.Implements(textUnmarshalerTyp) {
+		x.linef("} else if !z.DecBinary() { z.DecTextUnmarshal(%s%v)", addrPfx, varname)
+	}
+
+	x.line("} else {")
+
+	if x.decTryAssignPrimitive(varname, t, isptr) {
+		return
+	}
+
+	switch t.Kind() {
+	case reflect.Array, reflect.Chan:
+		x.xtraSM(varname, t, false, isptr)
+	case reflect.Slice:
+		// if a []uint8, call dedicated function
+		// if a known fastpath slice, call dedicated function
+		// else write encode function in-line.
+		// - if elements are primitives or Selfers, call dedicated function on each member.
+		// - else call Encoder.encode(XXX) on it.
+		if rtid == uint8SliceTypId {
+			x.linef("%s%s = r.DecodeBytes(%s(%s[]byte)(%s), false)",
+				ptrPfx, varname, ptrPfx, ptrPfx, varname)
+		} else if fastpathAV.index(rtid) != -1 {
+			g := x.newGenV(t)
+			x.linef("z.F.%sX(%s%s, d)", g.MethodNamePfx("Dec", false), addrPfx, varname)
+		} else {
+			x.xtraSM(varname, t, false, isptr)
+			// x.decListFallback(varname, rtid, false, t)
+		}
+	case reflect.Map:
+		// if a known fastpath map, call dedicated function
+		// else write encode function in-line.
+		// - if elements are primitives or Selfers, call dedicated function on each member.
+		// - else call Encoder.encode(XXX) on it.
+		if fastpathAV.index(rtid) != -1 {
+			g := x.newGenV(t)
+			x.linef("z.F.%sX(%s%s, d)", g.MethodNamePfx("Dec", false), addrPfx, varname)
+		} else {
+			x.xtraSM(varname, t, false, isptr)
+			// x.decMapFallback(varname, rtid, t)
+		}
+	case reflect.Struct:
+		if inlist {
+			// no need to create temp variable if isptr, or x.F or x[F]
+			if isptr || strings.IndexByte(varname, '.') != -1 || strings.IndexByte(varname, '[') != -1 {
+				x.decStruct(varname, rtid, t)
+			} else {
+				varname2 := genTempVarPfx + "j" + mi
+				x.line(varname2 + " := &" + varname)
+				x.decStruct(varname2, rtid, t)
+			}
+		} else {
+			// delete(x.td, rtid)
+			x.line("z.DecFallback(" + addrPfx + varname + ", false)")
+		}
+	default:
+		if rtidAdded {
+			delete(x.te, rtid)
+		}
+		x.line("z.DecFallback(" + addrPfx + varname + ", true)")
+	}
+}
+
+func (x *genRunner) decTryAssignPrimitive(varname string, t reflect.Type, isptr bool) (done bool) {
+	// This should only be used for exact primitives (ie un-named types).
+	// Named types may be implementations of Selfer, Unmarshaler, etc.
+	// They should be handled by dec(...)
+
+	var ptr string
+	if isptr {
+		ptr = "*"
+	}
+	switch t.Kind() {
+	case reflect.Int:
+		x.linef("%s%s = (%s)(z.C.IntV(r.DecodeInt64(), codecSelferBitsize%s))", ptr, varname, x.genTypeName(t), x.xs)
+	case reflect.Int8:
+		x.linef("%s%s = (%s)(z.C.IntV(r.DecodeInt64(), 8))", ptr, varname, x.genTypeName(t))
+	case reflect.Int16:
+		x.linef("%s%s = (%s)(z.C.IntV(r.DecodeInt64(), 16))", ptr, varname, x.genTypeName(t))
+	case reflect.Int32:
+		x.linef("%s%s = (%s)(z.C.IntV(r.DecodeInt64(), 32))", ptr, varname, x.genTypeName(t))
+	case reflect.Int64:
+		x.linef("%s%s = (%s)(r.DecodeInt64())", ptr, varname, x.genTypeName(t))
+
+	case reflect.Uint:
+		x.linef("%s%s = (%s)(z.C.UintV(r.DecodeUint64(), codecSelferBitsize%s))", ptr, varname, x.genTypeName(t), x.xs)
+	case reflect.Uint8:
+		x.linef("%s%s = (%s)(z.C.UintV(r.DecodeUint64(), 8))", ptr, varname, x.genTypeName(t))
+	case reflect.Uint16:
+		x.linef("%s%s = (%s)(z.C.UintV(r.DecodeUint64(), 16))", ptr, varname, x.genTypeName(t))
+	case reflect.Uint32:
+		x.linef("%s%s = (%s)(z.C.UintV(r.DecodeUint64(), 32))", ptr, varname, x.genTypeName(t))
+	case reflect.Uint64:
+		x.linef("%s%s = (%s)(r.DecodeUint64())", ptr, varname, x.genTypeName(t))
+	case reflect.Uintptr:
+		x.linef("%s%s = (%s)(z.C.UintV(r.DecodeUint64(), codecSelferBitsize%s))", ptr, varname, x.genTypeName(t), x.xs)
+
+	case reflect.Float32:
+		x.linef("%s%s = (%s)(r.DecodeFloat32As64())", ptr, varname, x.genTypeName(t))
+	case reflect.Float64:
+		x.linef("%s%s = (%s)(r.DecodeFloat64())", ptr, varname, x.genTypeName(t))
+
+	case reflect.Bool:
+		x.linef("%s%s = (%s)(r.DecodeBool())", ptr, varname, x.genTypeName(t))
+	case reflect.String:
+		x.linef("%s%s = (%s)(r.DecodeString())", ptr, varname, x.genTypeName(t))
+	default:
+		return false
+	}
+	return true
+}
+
+func (x *genRunner) decListFallback(varname string, rtid uintptr, t reflect.Type) {
+	if t.AssignableTo(uint8SliceTyp) {
+		x.line("*" + varname + " = r.DecodeBytes(*((*[]byte)(" + varname + ")), false)")
+		return
+	}
+	if t.Kind() == reflect.Array && t.Elem().Kind() == reflect.Uint8 {
+		x.linef("r.DecodeBytes( ((*[%d]byte)(%s))[:], true)", t.Len(), varname)
+		return
+	}
+	type tstruc struct {
+		TempVar   string
+		Rand      string
+		Varname   string
+		CTyp      string
+		Typ       string
+		Immutable bool
+		Size      int
+	}
+	telem := t.Elem()
+	ts := tstruc{genTempVarPfx, x.varsfx(), varname, x.genTypeName(t), x.genTypeName(telem), genIsImmutable(telem), int(telem.Size())}
+
+	funcs := make(template.FuncMap)
+
+	funcs["decLineVar"] = func(varname string) string {
+		x.decVar(varname, "", telem, false, true)
+		return ""
+	}
+	funcs["var"] = func(s string) string {
+		return ts.TempVar + s + ts.Rand
+	}
+	funcs["zero"] = func() string {
+		return x.genZeroValueR(telem)
+	}
+	funcs["isArray"] = func() bool {
+		return t.Kind() == reflect.Array
+	}
+	funcs["isSlice"] = func() bool {
+		return t.Kind() == reflect.Slice
+	}
+	funcs["isChan"] = func() bool {
+		return t.Kind() == reflect.Chan
+	}
+	tm, err := template.New("").Funcs(funcs).Parse(genDecListTmpl)
+	if err != nil {
+		panic(err)
+	}
+	if err = tm.Execute(x.w, &ts); err != nil {
+		panic(err)
+	}
+}
+
+func (x *genRunner) decMapFallback(varname string, rtid uintptr, t reflect.Type) {
+	type tstruc struct {
+		TempVar string
+		Sfx     string
+		Rand    string
+		Varname string
+		KTyp    string
+		Typ     string
+		Size    int
+	}
+	telem := t.Elem()
+	tkey := t.Key()
+	ts := tstruc{
+		genTempVarPfx, x.xs, x.varsfx(), varname, x.genTypeName(tkey),
+		x.genTypeName(telem), int(telem.Size() + tkey.Size()),
+	}
+
+	funcs := make(template.FuncMap)
+	funcs["decElemZero"] = func() string {
+		return x.genZeroValueR(telem)
+	}
+	funcs["decElemKindImmutable"] = func() bool {
+		return genIsImmutable(telem)
+	}
+	funcs["decElemKindPtr"] = func() bool {
+		return telem.Kind() == reflect.Ptr
+	}
+	funcs["decElemKindIntf"] = func() bool {
+		return telem.Kind() == reflect.Interface
+	}
+	funcs["decLineVarK"] = func(varname string) string {
+		x.decVar(varname, "", tkey, false, true)
+		return ""
+	}
+	funcs["decLineVar"] = func(varname, decodedNilVarname string) string {
+		x.decVar(varname, decodedNilVarname, telem, false, true)
+		return ""
+	}
+	funcs["var"] = func(s string) string {
+		return ts.TempVar + s + ts.Rand
+	}
+
+	tm, err := template.New("").Funcs(funcs).Parse(genDecMapTmpl)
+	if err != nil {
+		panic(err)
+	}
+	if err = tm.Execute(x.w, &ts); err != nil {
+		panic(err)
+	}
+}
+
+func (x *genRunner) decStructMapSwitch(kName string, varname string, rtid uintptr, t reflect.Type) {
+	ti := x.ti.get(rtid, t)
+	tisfi := ti.sfiSrc // always use sequence from file. decStruct expects same thing.
+	x.line("switch (" + kName + ") {")
+	var newbuf, nilbuf genBuf
+	for _, si := range tisfi {
+		x.line("case \"" + si.encName + "\":")
+		newbuf.reset()
+		nilbuf.reset()
+		t2 := x.decVarInitPtr(varname, "", t, si, &newbuf, &nilbuf)
+		x.linef("if r.TryDecodeAsNil() { %s } else { %s", nilbuf.buf, newbuf.buf)
+		x.decVarMain(varname+"."+t2.Name, x.varsfx(), t2.Type, false)
+		x.line("}")
+	}
+	x.line("default:")
+	// pass the slice here, so that the string will not escape, and maybe save allocation
+	x.line("z.DecStructFieldNotFound(-1, " + kName + ")")
+	x.line("} // end switch " + kName)
+}
+
+func (x *genRunner) decStructMap(varname, lenvarname string, rtid uintptr, t reflect.Type, style genStructMapStyle) {
+	tpfx := genTempVarPfx
+	ti := x.ti.get(rtid, t)
+	i := x.varsfx()
+	kName := tpfx + "s" + i
+
+	switch style {
+	case genStructMapStyleLenPrefix:
+		x.linef("for %sj%s := 0; %sj%s < %s; %sj%s++ {", tpfx, i, tpfx, i, lenvarname, tpfx, i)
+	case genStructMapStyleCheckBreak:
+		x.linef("for %sj%s := 0; !r.CheckBreak(); %sj%s++ {", tpfx, i, tpfx, i)
+	default: // 0, otherwise.
+		x.linef("var %shl%s bool = %s >= 0", tpfx, i, lenvarname) // has length
+		x.linef("for %sj%s := 0; ; %sj%s++ {", tpfx, i, tpfx, i)
+		x.linef("if %shl%s { if %sj%s >= %s { break }", tpfx, i, tpfx, i, lenvarname)
+		x.line("} else { if r.CheckBreak() { break }; }")
+	}
+	x.line("r.ReadMapElemKey()")
+
+	// emulate decstructfieldkey
+	switch ti.keyType {
+	case valueTypeInt:
+		x.linef("%s := z.StringView(strconv.AppendInt(z.DecScratchArrayBuffer()[:0], r.DecodeInt64(), 10))", kName)
+	case valueTypeUint:
+		x.linef("%s := z.StringView(strconv.AppendUint(z.DecScratchArrayBuffer()[:0], r.DecodeUint64(), 10))", kName)
+	case valueTypeFloat:
+		x.linef("%s := z.StringView(strconv.AppendFloat(z.DecScratchArrayBuffer()[:0], r.DecodeFloat64(), 'f', -1, 64))", kName)
+	default: // string
+		x.linef("%s := z.StringView(r.DecodeStringAsBytes())", kName)
+	}
+	// x.linef("%s := z.StringView(r.DecStructFieldKey(codecSelferValueType%s%s, z.DecScratchArrayBuffer()))", kName, ti.keyType.String(), x.xs)
+
+	x.line("r.ReadMapElemValue()")
+	x.decStructMapSwitch(kName, varname, rtid, t)
+
+	x.line("} // end for " + tpfx + "j" + i)
+	x.line("r.ReadMapEnd()")
+}
+
+func (x *genRunner) decStructArray(varname, lenvarname, breakString string, rtid uintptr, t reflect.Type) {
+	tpfx := genTempVarPfx
+	i := x.varsfx()
+	ti := x.ti.get(rtid, t)
+	tisfi := ti.sfiSrc // always use sequence from file. decStruct expects same thing.
+	x.linef("var %sj%s int", tpfx, i)
+	x.linef("var %sb%s bool", tpfx, i)                        // break
+	x.linef("var %shl%s bool = %s >= 0", tpfx, i, lenvarname) // has length
+	var newbuf, nilbuf genBuf
+	for _, si := range tisfi {
+		x.linef("%sj%s++; if %shl%s { %sb%s = %sj%s > %s } else { %sb%s = r.CheckBreak() }",
+			tpfx, i, tpfx, i, tpfx, i,
+			tpfx, i, lenvarname, tpfx, i)
+		x.linef("if %sb%s { r.ReadArrayEnd(); %s }", tpfx, i, breakString)
+		x.line("r.ReadArrayElem()")
+		newbuf.reset()
+		nilbuf.reset()
+		t2 := x.decVarInitPtr(varname, "", t, si, &newbuf, &nilbuf)
+		x.linef("if r.TryDecodeAsNil() { %s } else { %s", nilbuf.buf, newbuf.buf)
+		x.decVarMain(varname+"."+t2.Name, x.varsfx(), t2.Type, false)
+		x.line("}")
+	}
+	// read remaining values and throw away.
+	x.line("for {")
+	x.linef("%sj%s++; if %shl%s { %sb%s = %sj%s > %s } else { %sb%s = r.CheckBreak() }",
+		tpfx, i, tpfx, i, tpfx, i,
+		tpfx, i, lenvarname, tpfx, i)
+	x.linef("if %sb%s { break }", tpfx, i)
+	x.line("r.ReadArrayElem()")
+	x.linef(`z.DecStructFieldNotFound(%sj%s - 1, "")`, tpfx, i)
+	x.line("}")
+	x.line("r.ReadArrayEnd()")
+}
+
+func (x *genRunner) decStruct(varname string, rtid uintptr, t reflect.Type) {
+	// varname MUST be a ptr, or a struct field or a slice element.
+	i := x.varsfx()
+	x.linef("%sct%s := r.ContainerType()", genTempVarPfx, i)
+	x.linef("if %sct%s == codecSelferValueTypeMap%s {", genTempVarPfx, i, x.xs)
+	x.line(genTempVarPfx + "l" + i + " := r.ReadMapStart()")
+	x.linef("if %sl%s == 0 {", genTempVarPfx, i)
+	x.line("r.ReadMapEnd()")
+	if genUseOneFunctionForDecStructMap {
+		x.line("} else { ")
+		x.linef("%s.codecDecodeSelfFromMap(%sl%s, d)", varname, genTempVarPfx, i)
+	} else {
+		x.line("} else if " + genTempVarPfx + "l" + i + " > 0 { ")
+		x.line(varname + ".codecDecodeSelfFromMapLenPrefix(" + genTempVarPfx + "l" + i + ", d)")
+		x.line("} else {")
+		x.line(varname + ".codecDecodeSelfFromMapCheckBreak(" + genTempVarPfx + "l" + i + ", d)")
+	}
+	x.line("}")
+
+	// else if container is array
+	x.linef("} else if %sct%s == codecSelferValueTypeArray%s {", genTempVarPfx, i, x.xs)
+	x.line(genTempVarPfx + "l" + i + " := r.ReadArrayStart()")
+	x.linef("if %sl%s == 0 {", genTempVarPfx, i)
+	x.line("r.ReadArrayEnd()")
+	x.line("} else { ")
+	x.linef("%s.codecDecodeSelfFromArray(%sl%s, d)", varname, genTempVarPfx, i)
+	x.line("}")
+	// else panic
+	x.line("} else { ")
+	x.line("panic(errCodecSelferOnlyMapOrArrayEncodeToStruct" + x.xs + ")")
+	x.line("} ")
+}
+
+// --------
+
+type genV struct {
+	// genV is either a primitive (Primitive != "") or a map (MapKey != "") or a slice
+	MapKey    string
+	Elem      string
+	Primitive string
+	Size      int
+}
+
+func (x *genRunner) newGenV(t reflect.Type) (v genV) {
+	switch t.Kind() {
+	case reflect.Slice, reflect.Array:
+		te := t.Elem()
+		v.Elem = x.genTypeName(te)
+		v.Size = int(te.Size())
+	case reflect.Map:
+		te, tk := t.Elem(), t.Key()
+		v.Elem = x.genTypeName(te)
+		v.MapKey = x.genTypeName(tk)
+		v.Size = int(te.Size() + tk.Size())
+	default:
+		panic("unexpected type for newGenV. Requires map or slice type")
+	}
+	return
+}
+
+func (x *genV) MethodNamePfx(prefix string, prim bool) string {
+	var name []byte
+	if prefix != "" {
+		name = append(name, prefix...)
+	}
+	if prim {
+		name = append(name, genTitleCaseName(x.Primitive)...)
+	} else {
+		if x.MapKey == "" {
+			name = append(name, "Slice"...)
+		} else {
+			name = append(name, "Map"...)
+			name = append(name, genTitleCaseName(x.MapKey)...)
+		}
+		name = append(name, genTitleCaseName(x.Elem)...)
+	}
+	return string(name)
+
+}
+
+// genImportPath returns import path of a non-predeclared named typed, or an empty string otherwise.
+//
+// This handles the misbehaviour that occurs when 1.5-style vendoring is enabled,
+// where PkgPath returns the full path, including the vendoring pre-fix that should have been stripped.
+// We strip it here.
+func genImportPath(t reflect.Type) (s string) {
+	s = t.PkgPath()
+	if genCheckVendor {
+		// HACK: always handle vendoring. It should be typically on in go 1.6, 1.7
+		s = genStripVendor(s)
+	}
+	return
+}
+
+// A go identifier is (letter|_)[letter|number|_]*
+func genGoIdentifier(s string, checkFirstChar bool) string {
+	b := make([]byte, 0, len(s))
+	t := make([]byte, 4)
+	var n int
+	for i, r := range s {
+		if checkFirstChar && i == 0 && !unicode.IsLetter(r) {
+			b = append(b, '_')
+		}
+		// r must be unicode_letter, unicode_digit or _
+		if unicode.IsLetter(r) || unicode.IsDigit(r) {
+			n = utf8.EncodeRune(t, r)
+			b = append(b, t[:n]...)
+		} else {
+			b = append(b, '_')
+		}
+	}
+	return string(b)
+}
+
+func genNonPtr(t reflect.Type) reflect.Type {
+	for t.Kind() == reflect.Ptr {
+		t = t.Elem()
+	}
+	return t
+}
+
+func genTitleCaseName(s string) string {
+	switch s {
+	case "interface{}", "interface {}":
+		return "Intf"
+	default:
+		return strings.ToUpper(s[0:1]) + s[1:]
+	}
+}
+
+func genMethodNameT(t reflect.Type, tRef reflect.Type) (n string) {
+	var ptrPfx string
+	for t.Kind() == reflect.Ptr {
+		ptrPfx += "Ptrto"
+		t = t.Elem()
+	}
+	tstr := t.String()
+	if tn := t.Name(); tn != "" {
+		if tRef != nil && genImportPath(t) == genImportPath(tRef) {
+			return ptrPfx + tn
+		} else {
+			if genQNameRegex.MatchString(tstr) {
+				return ptrPfx + strings.Replace(tstr, ".", "_", 1000)
+			} else {
+				return ptrPfx + genCustomTypeName(tstr)
+			}
+		}
+	}
+	switch t.Kind() {
+	case reflect.Map:
+		return ptrPfx + "Map" + genMethodNameT(t.Key(), tRef) + genMethodNameT(t.Elem(), tRef)
+	case reflect.Slice:
+		return ptrPfx + "Slice" + genMethodNameT(t.Elem(), tRef)
+	case reflect.Array:
+		return ptrPfx + "Array" + strconv.FormatInt(int64(t.Len()), 10) + genMethodNameT(t.Elem(), tRef)
+	case reflect.Chan:
+		var cx string
+		switch t.ChanDir() {
+		case reflect.SendDir:
+			cx = "ChanSend"
+		case reflect.RecvDir:
+			cx = "ChanRecv"
+		default:
+			cx = "Chan"
+		}
+		return ptrPfx + cx + genMethodNameT(t.Elem(), tRef)
+	default:
+		if t == intfTyp {
+			return ptrPfx + "Interface"
+		} else {
+			if tRef != nil && genImportPath(t) == genImportPath(tRef) {
+				if t.Name() != "" {
+					return ptrPfx + t.Name()
+				} else {
+					return ptrPfx + genCustomTypeName(tstr)
+				}
+			} else {
+				// best way to get the package name inclusive
+				// return ptrPfx + strings.Replace(tstr, ".", "_", 1000)
+				// return ptrPfx + genBase64enc.EncodeToString([]byte(tstr))
+				if t.Name() != "" && genQNameRegex.MatchString(tstr) {
+					return ptrPfx + strings.Replace(tstr, ".", "_", 1000)
+				} else {
+					return ptrPfx + genCustomTypeName(tstr)
+				}
+			}
+		}
+	}
+}
+
+// genCustomNameForType base64encodes the t.String() value in such a way
+// that it can be used within a function name.
+func genCustomTypeName(tstr string) string {
+	len2 := genBase64enc.EncodedLen(len(tstr))
+	bufx := make([]byte, len2)
+	genBase64enc.Encode(bufx, []byte(tstr))
+	for i := len2 - 1; i >= 0; i-- {
+		if bufx[i] == '=' {
+			len2--
+		} else {
+			break
+		}
+	}
+	return string(bufx[:len2])
+}
+
+func genIsImmutable(t reflect.Type) (v bool) {
+	return isImmutableKind(t.Kind())
+}
+
+type genInternal struct {
+	Version int
+	Values  []genV
+}
+
+func (x genInternal) FastpathLen() (l int) {
+	for _, v := range x.Values {
+		if v.Primitive == "" && !(v.MapKey == "" && v.Elem == "uint8") {
+			l++
+		}
+	}
+	return
+}
+
+func genInternalZeroValue(s string) string {
+	switch s {
+	case "interface{}", "interface {}":
+		return "nil"
+	case "bool":
+		return "false"
+	case "string":
+		return `""`
+	default:
+		return "0"
+	}
+}
+
+var genInternalNonZeroValueIdx [5]uint64
+var genInternalNonZeroValueStrs = [2][5]string{
+	{`"string-is-an-interface"`, "true", `"some-string"`, "11.1", "33"},
+	{`"string-is-an-interface-2"`, "true", `"some-string-2"`, "22.2", "44"},
+}
+
+func genInternalNonZeroValue(s string) string {
+	switch s {
+	case "interface{}", "interface {}":
+		genInternalNonZeroValueIdx[0]++
+		return genInternalNonZeroValueStrs[genInternalNonZeroValueIdx[0]%2][0] // return string, to remove ambiguity
+	case "bool":
+		genInternalNonZeroValueIdx[1]++
+		return genInternalNonZeroValueStrs[genInternalNonZeroValueIdx[1]%2][1]
+	case "string":
+		genInternalNonZeroValueIdx[2]++
+		return genInternalNonZeroValueStrs[genInternalNonZeroValueIdx[2]%2][2]
+	case "float32", "float64", "float", "double":
+		genInternalNonZeroValueIdx[3]++
+		return genInternalNonZeroValueStrs[genInternalNonZeroValueIdx[3]%2][3]
+	default:
+		genInternalNonZeroValueIdx[4]++
+		return genInternalNonZeroValueStrs[genInternalNonZeroValueIdx[4]%2][4]
+	}
+}
+
+func genInternalEncCommandAsString(s string, vname string) string {
+	switch s {
+	case "uint", "uint8", "uint16", "uint32", "uint64":
+		return "ee.EncodeUint(uint64(" + vname + "))"
+	case "int", "int8", "int16", "int32", "int64":
+		return "ee.EncodeInt(int64(" + vname + "))"
+	case "string":
+		return "ee.EncodeString(cUTF8, " + vname + ")"
+	case "float32":
+		return "ee.EncodeFloat32(" + vname + ")"
+	case "float64":
+		return "ee.EncodeFloat64(" + vname + ")"
+	case "bool":
+		return "ee.EncodeBool(" + vname + ")"
+	// case "symbol":
+	// 	return "ee.EncodeSymbol(" + vname + ")"
+	default:
+		return "e.encode(" + vname + ")"
+	}
+}
+
+func genInternalDecCommandAsString(s string) string {
+	switch s {
+	case "uint":
+		return "uint(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))"
+	case "uint8":
+		return "uint8(chkOvf.UintV(dd.DecodeUint64(), 8))"
+	case "uint16":
+		return "uint16(chkOvf.UintV(dd.DecodeUint64(), 16))"
+	case "uint32":
+		return "uint32(chkOvf.UintV(dd.DecodeUint64(), 32))"
+	case "uint64":
+		return "dd.DecodeUint64()"
+	case "uintptr":
+		return "uintptr(chkOvf.UintV(dd.DecodeUint64(), uintBitsize))"
+	case "int":
+		return "int(chkOvf.IntV(dd.DecodeInt64(), intBitsize))"
+	case "int8":
+		return "int8(chkOvf.IntV(dd.DecodeInt64(), 8))"
+	case "int16":
+		return "int16(chkOvf.IntV(dd.DecodeInt64(), 16))"
+	case "int32":
+		return "int32(chkOvf.IntV(dd.DecodeInt64(), 32))"
+	case "int64":
+		return "dd.DecodeInt64()"
+
+	case "string":
+		return "dd.DecodeString()"
+	case "float32":
+		return "float32(chkOvf.Float32V(dd.DecodeFloat64()))"
+	case "float64":
+		return "dd.DecodeFloat64()"
+	case "bool":
+		return "dd.DecodeBool()"
+	default:
+		panic(errors.New("gen internal: unknown type for decode: " + s))
+	}
+}
+
+func genInternalSortType(s string, elem bool) string {
+	for _, v := range [...]string{"int", "uint", "float", "bool", "string"} {
+		if strings.HasPrefix(s, v) {
+			if elem {
+				if v == "int" || v == "uint" || v == "float" {
+					return v + "64"
+				} else {
+					return v
+				}
+			}
+			return v + "Slice"
+		}
+	}
+	panic("sorttype: unexpected type: " + s)
+}
+
+func genStripVendor(s string) string {
+	// HACK: Misbehaviour occurs in go 1.5. May have to re-visit this later.
+	// if s contains /vendor/ OR startsWith vendor/, then return everything after it.
+	const vendorStart = "vendor/"
+	const vendorInline = "/vendor/"
+	if i := strings.LastIndex(s, vendorInline); i >= 0 {
+		s = s[i+len(vendorInline):]
+	} else if strings.HasPrefix(s, vendorStart) {
+		s = s[len(vendorStart):]
+	}
+	return s
+}
+
+// var genInternalMu sync.Mutex
+var genInternalV = genInternal{Version: genVersion}
+var genInternalTmplFuncs template.FuncMap
+var genInternalOnce sync.Once
+
+func genInternalInit() {
+	types := [...]string{
+		"interface{}",
+		"string",
+		"float32",
+		"float64",
+		"uint",
+		"uint8",
+		"uint16",
+		"uint32",
+		"uint64",
+		"uintptr",
+		"int",
+		"int8",
+		"int16",
+		"int32",
+		"int64",
+		"bool",
+	}
+	// keep as slice, so it is in specific iteration order.
+	// Initial order was uint64, string, interface{}, int, int64
+	mapvaltypes := [...]string{
+		"interface{}",
+		"string",
+		"uint",
+		"uint8",
+		"uint16",
+		"uint32",
+		"uint64",
+		"uintptr",
+		"int",
+		"int8",
+		"int16",
+		"int32",
+		"int64",
+		"float32",
+		"float64",
+		"bool",
+	}
+	wordSizeBytes := int(intBitsize) / 8
+
+	mapvaltypes2 := map[string]int{
+		"interface{}": 2 * wordSizeBytes,
+		"string":      2 * wordSizeBytes,
+		"uint":        1 * wordSizeBytes,
+		"uint8":       1,
+		"uint16":      2,
+		"uint32":      4,
+		"uint64":      8,
+		"uintptr":     1 * wordSizeBytes,
+		"int":         1 * wordSizeBytes,
+		"int8":        1,
+		"int16":       2,
+		"int32":       4,
+		"int64":       8,
+		"float32":     4,
+		"float64":     8,
+		"bool":        1,
+	}
+	var gt = genInternal{Version: genVersion}
+
+	// For each slice or map type, there must be a (symmetrical) Encode and Decode fast-path function
+	for _, s := range types {
+		gt.Values = append(gt.Values, genV{Primitive: s, Size: mapvaltypes2[s]})
+		// if s != "uint8" { // do not generate fast path for slice of bytes. Treat specially already.
+		// 	gt.Values = append(gt.Values, genV{Elem: s, Size: mapvaltypes2[s]})
+		// }
+		gt.Values = append(gt.Values, genV{Elem: s, Size: mapvaltypes2[s]})
+		if _, ok := mapvaltypes2[s]; !ok {
+			gt.Values = append(gt.Values, genV{MapKey: s, Elem: s, Size: 2 * mapvaltypes2[s]})
+		}
+		for _, ms := range mapvaltypes {
+			gt.Values = append(gt.Values, genV{MapKey: s, Elem: ms, Size: mapvaltypes2[s] + mapvaltypes2[ms]})
+		}
+	}
+
+	funcs := make(template.FuncMap)
+	// funcs["haspfx"] = strings.HasPrefix
+	funcs["encmd"] = genInternalEncCommandAsString
+	funcs["decmd"] = genInternalDecCommandAsString
+	funcs["zerocmd"] = genInternalZeroValue
+	funcs["nonzerocmd"] = genInternalNonZeroValue
+	funcs["hasprefix"] = strings.HasPrefix
+	funcs["sorttype"] = genInternalSortType
+
+	genInternalV = gt
+	genInternalTmplFuncs = funcs
+}
+
+// genInternalGoFile is used to generate source files from templates.
+// It is run by the program author alone.
+// Unfortunately, it has to be exported so that it can be called from a command line tool.
+// *** DO NOT USE ***
+func genInternalGoFile(r io.Reader, w io.Writer) (err error) {
+	genInternalOnce.Do(genInternalInit)
+
+	gt := genInternalV
+
+	t := template.New("").Funcs(genInternalTmplFuncs)
+
+	tmplstr, err := ioutil.ReadAll(r)
+	if err != nil {
+		return
+	}
+
+	if t, err = t.Parse(string(tmplstr)); err != nil {
+		return
+	}
+
+	var out bytes.Buffer
+	err = t.Execute(&out, gt)
+	if err != nil {
+		return
+	}
+
+	bout, err := format.Source(out.Bytes())
+	if err != nil {
+		w.Write(out.Bytes()) // write out if error, so we can still see.
+		// w.Write(bout) // write out if error, as much as possible, so we can still see.
+		return
+	}
+	w.Write(bout)
+	return
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_arrayof_gte_go15.go b/vendor/github.com/ugorji/go/codec/goversion_arrayof_gte_go15.go
new file mode 100644
index 0000000000..9ddbe20593
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_arrayof_gte_go15.go
@@ -0,0 +1,14 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.5
+
+package codec
+
+import "reflect"
+
+const reflectArrayOfSupported = true
+
+func reflectArrayOf(count int, elem reflect.Type) reflect.Type {
+	return reflect.ArrayOf(count, elem)
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_arrayof_lt_go15.go b/vendor/github.com/ugorji/go/codec/goversion_arrayof_lt_go15.go
new file mode 100644
index 0000000000..c5fcd6697e
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_arrayof_lt_go15.go
@@ -0,0 +1,14 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build !go1.5
+
+package codec
+
+import "reflect"
+
+const reflectArrayOfSupported = false
+
+func reflectArrayOf(count int, elem reflect.Type) reflect.Type {
+	panic("codec: reflect.ArrayOf unsupported in this go version")
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_makemap_gte_go19.go b/vendor/github.com/ugorji/go/codec/goversion_makemap_gte_go19.go
new file mode 100644
index 0000000000..bc39d6b719
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_makemap_gte_go19.go
@@ -0,0 +1,15 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.9
+
+package codec
+
+import "reflect"
+
+func makeMapReflect(t reflect.Type, size int) reflect.Value {
+	if size < 0 {
+		return reflect.MakeMapWithSize(t, 4)
+	}
+	return reflect.MakeMapWithSize(t, size)
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_makemap_lt_go19.go b/vendor/github.com/ugorji/go/codec/goversion_makemap_lt_go19.go
new file mode 100644
index 0000000000..cde4cd3725
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_makemap_lt_go19.go
@@ -0,0 +1,12 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build !go1.9
+
+package codec
+
+import "reflect"
+
+func makeMapReflect(t reflect.Type, size int) reflect.Value {
+	return reflect.MakeMap(t)
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_gte_go110.go b/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_gte_go110.go
new file mode 100644
index 0000000000..794133a3cb
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_gte_go110.go
@@ -0,0 +1,8 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.10
+
+package codec
+
+const allowSetUnexportedEmbeddedPtr = false
diff --git a/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_lt_go110.go b/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_lt_go110.go
new file mode 100644
index 0000000000..fd92ede355
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_unexportedembeddedptr_lt_go110.go
@@ -0,0 +1,8 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build !go1.10
+
+package codec
+
+const allowSetUnexportedEmbeddedPtr = true
diff --git a/vendor/github.com/ugorji/go/codec/goversion_unsupported_lt_go14.go b/vendor/github.com/ugorji/go/codec/goversion_unsupported_lt_go14.go
new file mode 100644
index 0000000000..8debfa6137
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_unsupported_lt_go14.go
@@ -0,0 +1,17 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build !go1.4
+
+package codec
+
+// This codec package will only work for go1.4 and above.
+// This is for the following reasons:
+//   - go 1.4 was released in 2014
+//   - go runtime is written fully in go
+//   - interface only holds pointers
+//   - reflect.Value is stabilized as 3 words
+
+func init() {
+	panic("codec: go 1.3 and below are not supported")
+}
diff --git a/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go15.go b/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go15.go
new file mode 100644
index 0000000000..0f1bb01e5a
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go15.go
@@ -0,0 +1,10 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.5,!go1.6
+
+package codec
+
+import "os"
+
+var genCheckVendor = os.Getenv("GO15VENDOREXPERIMENT") == "1"
diff --git a/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go16.go b/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go16.go
new file mode 100644
index 0000000000..2fb4b057dd
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_vendor_eq_go16.go
@@ -0,0 +1,10 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.6,!go1.7
+
+package codec
+
+import "os"
+
+var genCheckVendor = os.Getenv("GO15VENDOREXPERIMENT") != "0"
diff --git a/vendor/github.com/ugorji/go/codec/goversion_vendor_gte_go17.go b/vendor/github.com/ugorji/go/codec/goversion_vendor_gte_go17.go
new file mode 100644
index 0000000000..c5b8155053
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_vendor_gte_go17.go
@@ -0,0 +1,8 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build go1.7
+
+package codec
+
+const genCheckVendor = true
diff --git a/vendor/github.com/ugorji/go/codec/goversion_vendor_lt_go15.go b/vendor/github.com/ugorji/go/codec/goversion_vendor_lt_go15.go
new file mode 100644
index 0000000000..837cf240ba
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/goversion_vendor_lt_go15.go
@@ -0,0 +1,8 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build !go1.5
+
+package codec
+
+var genCheckVendor = false
diff --git a/vendor/github.com/ugorji/go/codec/helper.go b/vendor/github.com/ugorji/go/codec/helper.go
new file mode 100644
index 0000000000..bd29895b6d
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/helper.go
@@ -0,0 +1,2414 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+// Contains code shared by both encode and decode.
+
+// Some shared ideas around encoding/decoding
+// ------------------------------------------
+//
+// If an interface{} is passed, we first do a type assertion to see if it is
+// a primitive type or a map/slice of primitive types, and use a fastpath to handle it.
+//
+// If we start with a reflect.Value, we are already in reflect.Value land and
+// will try to grab the function for the underlying Type and directly call that function.
+// This is more performant than calling reflect.Value.Interface().
+//
+// This still helps us bypass many layers of reflection, and give best performance.
+//
+// Containers
+// ------------
+// Containers in the stream are either associative arrays (key-value pairs) or
+// regular arrays (indexed by incrementing integers).
+//
+// Some streams support indefinite-length containers, and use a breaking
+// byte-sequence to denote that the container has come to an end.
+//
+// Some streams also are text-based, and use explicit separators to denote the
+// end/beginning of different values.
+//
+// During encode, we use a high-level condition to determine how to iterate through
+// the container. That decision is based on whether the container is text-based (with
+// separators) or binary (without separators). If binary, we do not even call the
+// encoding of separators.
+//
+// During decode, we use a different high-level condition to determine how to iterate
+// through the containers. That decision is based on whether the stream contained
+// a length prefix, or if it used explicit breaks. If length-prefixed, we assume that
+// it has to be binary, and we do not even try to read separators.
+//
+// Philosophy
+// ------------
+// On decode, this codec will update containers appropriately:
+//    - If struct, update fields from stream into fields of struct.
+//      If field in stream not found in struct, handle appropriately (based on option).
+//      If a struct field has no corresponding value in the stream, leave it AS IS.
+//      If nil in stream, set value to nil/zero value.
+//    - If map, update map from stream.
+//      If the stream value is NIL, set the map to nil.
+//    - if slice, try to update up to length of array in stream.
+//      if container len is less than stream array length,
+//      and container cannot be expanded, handled (based on option).
+//      This means you can decode 4-element stream array into 1-element array.
+//
+// ------------------------------------
+// On encode, user can specify omitEmpty. This means that the value will be omitted
+// if the zero value. The problem may occur during decode, where omitted values do not affect
+// the value being decoded into. This means that if decoding into a struct with an
+// int field with current value=5, and the field is omitted in the stream, then after
+// decoding, the value will still be 5 (not 0).
+// omitEmpty only works if you guarantee that you always decode into zero-values.
+//
+// ------------------------------------
+// We could have truncated a map to remove keys not available in the stream,
+// or set values in the struct which are not in the stream to their zero values.
+// We decided against it because there is no efficient way to do it.
+// We may introduce it as an option later.
+// However, that will require enabling it for both runtime and code generation modes.
+//
+// To support truncate, we need to do 2 passes over the container:
+//   map
+//   - first collect all keys (e.g. in k1)
+//   - for each key in stream, mark k1 that the key should not be removed
+//   - after updating map, do second pass and call delete for all keys in k1 which are not marked
+//   struct:
+//   - for each field, track the *typeInfo s1
+//   - iterate through all s1, and for each one not marked, set value to zero
+//   - this involves checking the possible anonymous fields which are nil ptrs.
+//     too much work.
+//
+// ------------------------------------------
+// Error Handling is done within the library using panic.
+//
+// This way, the code doesn't have to keep checking if an error has happened,
+// and we don't have to keep sending the error value along with each call
+// or storing it in the En|Decoder and checking it constantly along the way.
+//
+// The disadvantage is that small functions which use panics cannot be inlined.
+// The code accounts for that by only using panics behind an interface;
+// since interface calls cannot be inlined, this is irrelevant.
+//
+// We considered storing the error is En|Decoder.
+//   - once it has its err field set, it cannot be used again.
+//   - panicing will be optional, controlled by const flag.
+//   - code should always check error first and return early.
+// We eventually decided against it as it makes the code clumsier to always
+// check for these error conditions.
+
+import (
+	"bytes"
+	"encoding"
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"io"
+	"math"
+	"reflect"
+	"sort"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+)
+
+const (
+	scratchByteArrayLen = 32
+	// initCollectionCap   = 16 // 32 is defensive. 16 is preferred.
+
+	// Support encoding.(Binary|Text)(Unm|M)arshaler.
+	// This constant flag will enable or disable it.
+	supportMarshalInterfaces = true
+
+	// for debugging, set this to false, to catch panic traces.
+	// Note that this will always cause rpc tests to fail, since they need io.EOF sent via panic.
+	recoverPanicToErr = true
+
+	// arrayCacheLen is the length of the cache used in encoder or decoder for
+	// allowing zero-alloc initialization.
+	arrayCacheLen = 8
+
+	// size of the cacheline: defaulting to value for archs: amd64, arm64, 386
+	// should use "runtime/internal/sys".CacheLineSize, but that is not exposed.
+	cacheLineSize = 64
+
+	wordSizeBits = 32 << (^uint(0) >> 63) // strconv.IntSize
+	wordSize     = wordSizeBits / 8
+
+	maxLevelsEmbedding = 15 // use this, so structFieldInfo fits into 8 bytes
+)
+
+var (
+	oneByteArr    = [1]byte{0}
+	zeroByteSlice = oneByteArr[:0:0]
+)
+
+var refBitset bitset32
+var pool pooler
+var panicv panicHdl
+
+func init() {
+	pool.init()
+
+	refBitset.set(byte(reflect.Map))
+	refBitset.set(byte(reflect.Ptr))
+	refBitset.set(byte(reflect.Func))
+	refBitset.set(byte(reflect.Chan))
+}
+
+type charEncoding uint8
+
+const (
+	cRAW charEncoding = iota
+	cUTF8
+	cUTF16LE
+	cUTF16BE
+	cUTF32LE
+	cUTF32BE
+)
+
+// valueType is the stream type
+type valueType uint8
+
+const (
+	valueTypeUnset valueType = iota
+	valueTypeNil
+	valueTypeInt
+	valueTypeUint
+	valueTypeFloat
+	valueTypeBool
+	valueTypeString
+	valueTypeSymbol
+	valueTypeBytes
+	valueTypeMap
+	valueTypeArray
+	valueTypeTime
+	valueTypeExt
+
+	// valueTypeInvalid = 0xff
+)
+
+var valueTypeStrings = [...]string{
+	"Unset",
+	"Nil",
+	"Int",
+	"Uint",
+	"Float",
+	"Bool",
+	"String",
+	"Symbol",
+	"Bytes",
+	"Map",
+	"Array",
+	"Timestamp",
+	"Ext",
+}
+
+func (x valueType) String() string {
+	if int(x) < len(valueTypeStrings) {
+		return valueTypeStrings[x]
+	}
+	return strconv.FormatInt(int64(x), 10)
+}
+
+type seqType uint8
+
+const (
+	_ seqType = iota
+	seqTypeArray
+	seqTypeSlice
+	seqTypeChan
+)
+
+// note that containerMapStart and containerArraySend are not sent.
+// This is because the ReadXXXStart and EncodeXXXStart already does these.
+type containerState uint8
+
+const (
+	_ containerState = iota
+
+	containerMapStart // slot left open, since Driver method already covers it
+	containerMapKey
+	containerMapValue
+	containerMapEnd
+	containerArrayStart // slot left open, since Driver methods already cover it
+	containerArrayElem
+	containerArrayEnd
+)
+
+// // sfiIdx used for tracking where a (field/enc)Name is seen in a []*structFieldInfo
+// type sfiIdx struct {
+// 	name  string
+// 	index int
+// }
+
+// do not recurse if a containing type refers to an embedded type
+// which refers back to its containing type (via a pointer).
+// The second time this back-reference happens, break out,
+// so as not to cause an infinite loop.
+const rgetMaxRecursion = 2
+
+// Anecdotally, we believe most types have <= 12 fields.
+// - even Java's PMD rules set TooManyFields threshold to 15.
+// However, go has embedded fields, which should be regarded as
+// top level, allowing structs to possibly double or triple.
+// In addition, we don't want to keep creating transient arrays,
+// especially for the sfi index tracking, and the evtypes tracking.
+//
+// So - try to keep typeInfoLoadArray within 2K bytes
+const (
+	typeInfoLoadArraySfisLen   = 16
+	typeInfoLoadArraySfiidxLen = 8 * 112
+	typeInfoLoadArrayEtypesLen = 12
+	typeInfoLoadArrayBLen      = 8 * 4
+)
+
+type typeInfoLoad struct {
+	// fNames   []string
+	// encNames []string
+	etypes []uintptr
+	sfis   []structFieldInfo
+}
+
+type typeInfoLoadArray struct {
+	// fNames   [typeInfoLoadArrayLen]string
+	// encNames [typeInfoLoadArrayLen]string
+	sfis   [typeInfoLoadArraySfisLen]structFieldInfo
+	sfiidx [typeInfoLoadArraySfiidxLen]byte
+	etypes [typeInfoLoadArrayEtypesLen]uintptr
+	b      [typeInfoLoadArrayBLen]byte // scratch - used for struct field names
+}
+
+// mirror json.Marshaler and json.Unmarshaler here,
+// so we don't import the encoding/json package
+
+type jsonMarshaler interface {
+	MarshalJSON() ([]byte, error)
+}
+type jsonUnmarshaler interface {
+	UnmarshalJSON([]byte) error
+}
+
+type isZeroer interface {
+	IsZero() bool
+}
+
+// type byteAccepter func(byte) bool
+
+var (
+	bigen               = binary.BigEndian
+	structInfoFieldName = "_struct"
+
+	mapStrIntfTyp  = reflect.TypeOf(map[string]interface{}(nil))
+	mapIntfIntfTyp = reflect.TypeOf(map[interface{}]interface{}(nil))
+	intfSliceTyp   = reflect.TypeOf([]interface{}(nil))
+	intfTyp        = intfSliceTyp.Elem()
+
+	reflectValTyp = reflect.TypeOf((*reflect.Value)(nil)).Elem()
+
+	stringTyp     = reflect.TypeOf("")
+	timeTyp       = reflect.TypeOf(time.Time{})
+	rawExtTyp     = reflect.TypeOf(RawExt{})
+	rawTyp        = reflect.TypeOf(Raw{})
+	uintptrTyp    = reflect.TypeOf(uintptr(0))
+	uint8Typ      = reflect.TypeOf(uint8(0))
+	uint8SliceTyp = reflect.TypeOf([]uint8(nil))
+	uintTyp       = reflect.TypeOf(uint(0))
+	intTyp        = reflect.TypeOf(int(0))
+
+	mapBySliceTyp = reflect.TypeOf((*MapBySlice)(nil)).Elem()
+
+	binaryMarshalerTyp   = reflect.TypeOf((*encoding.BinaryMarshaler)(nil)).Elem()
+	binaryUnmarshalerTyp = reflect.TypeOf((*encoding.BinaryUnmarshaler)(nil)).Elem()
+
+	textMarshalerTyp   = reflect.TypeOf((*encoding.TextMarshaler)(nil)).Elem()
+	textUnmarshalerTyp = reflect.TypeOf((*encoding.TextUnmarshaler)(nil)).Elem()
+
+	jsonMarshalerTyp   = reflect.TypeOf((*jsonMarshaler)(nil)).Elem()
+	jsonUnmarshalerTyp = reflect.TypeOf((*jsonUnmarshaler)(nil)).Elem()
+
+	selferTyp = reflect.TypeOf((*Selfer)(nil)).Elem()
+	iszeroTyp = reflect.TypeOf((*isZeroer)(nil)).Elem()
+
+	uint8TypId      = rt2id(uint8Typ)
+	uint8SliceTypId = rt2id(uint8SliceTyp)
+	rawExtTypId     = rt2id(rawExtTyp)
+	rawTypId        = rt2id(rawTyp)
+	intfTypId       = rt2id(intfTyp)
+	timeTypId       = rt2id(timeTyp)
+	stringTypId     = rt2id(stringTyp)
+
+	mapStrIntfTypId  = rt2id(mapStrIntfTyp)
+	mapIntfIntfTypId = rt2id(mapIntfIntfTyp)
+	intfSliceTypId   = rt2id(intfSliceTyp)
+	// mapBySliceTypId  = rt2id(mapBySliceTyp)
+
+	intBitsize  = uint8(intTyp.Bits())
+	uintBitsize = uint8(uintTyp.Bits())
+
+	bsAll0x00 = []byte{0, 0, 0, 0, 0, 0, 0, 0}
+	bsAll0xff = []byte{0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff}
+
+	chkOvf checkOverflow
+
+	errNoFieldNameToStructFieldInfo = errors.New("no field name passed to parseStructFieldInfo")
+)
+
+var defTypeInfos = NewTypeInfos([]string{"codec", "json"})
+
+var immutableKindsSet = [32]bool{
+	// reflect.Invalid:  ,
+	reflect.Bool:       true,
+	reflect.Int:        true,
+	reflect.Int8:       true,
+	reflect.Int16:      true,
+	reflect.Int32:      true,
+	reflect.Int64:      true,
+	reflect.Uint:       true,
+	reflect.Uint8:      true,
+	reflect.Uint16:     true,
+	reflect.Uint32:     true,
+	reflect.Uint64:     true,
+	reflect.Uintptr:    true,
+	reflect.Float32:    true,
+	reflect.Float64:    true,
+	reflect.Complex64:  true,
+	reflect.Complex128: true,
+	// reflect.Array
+	// reflect.Chan
+	// reflect.Func: true,
+	// reflect.Interface
+	// reflect.Map
+	// reflect.Ptr
+	// reflect.Slice
+	reflect.String: true,
+	// reflect.Struct
+	// reflect.UnsafePointer
+}
+
+// Selfer defines methods by which a value can encode or decode itself.
+//
+// Any type which implements Selfer will be able to encode or decode itself.
+// Consequently, during (en|de)code, this takes precedence over
+// (text|binary)(M|Unm)arshal or extension support.
+//
+// Note: *the first set of bytes of any value MUST NOT represent nil in the format*.
+// This is because, during each decode, we first check the the next set of bytes
+// represent nil, and if so, we just set the value to nil.
+type Selfer interface {
+	CodecEncodeSelf(*Encoder)
+	CodecDecodeSelf(*Decoder)
+}
+
+// MapBySlice is a tag interface that denotes wrapped slice should encode as a map in the stream.
+// The slice contains a sequence of key-value pairs.
+// This affords storing a map in a specific sequence in the stream.
+//
+// Example usage:
+//    type T1 []string         // or []int or []Point or any other "slice" type
+//    func (_ T1) MapBySlice{} // T1 now implements MapBySlice, and will be encoded as a map
+//    type T2 struct { KeyValues T1 }
+//
+//    var kvs = []string{"one", "1", "two", "2", "three", "3"}
+//    var v2 = T2{ KeyValues: T1(kvs) }
+//    // v2 will be encoded like the map: {"KeyValues": {"one": "1", "two": "2", "three": "3"} }
+//
+// The support of MapBySlice affords the following:
+//   - A slice type which implements MapBySlice will be encoded as a map
+//   - A slice can be decoded from a map in the stream
+//   - It MUST be a slice type (not a pointer receiver) that implements MapBySlice
+type MapBySlice interface {
+	MapBySlice()
+}
+
+// BasicHandle encapsulates the common options and extension functions.
+//
+// Deprecated: DO NOT USE DIRECTLY. EXPORTED FOR GODOC BENEFIT. WILL BE REMOVED.
+type BasicHandle struct {
+	// BasicHandle is always a part of a different type.
+	// It doesn't have to fit into it own cache lines.
+
+	// TypeInfos is used to get the type info for any type.
+	//
+	// If not configured, the default TypeInfos is used, which uses struct tag keys: codec, json
+	TypeInfos *TypeInfos
+
+	// Note: BasicHandle is not comparable, due to these slices here (extHandle, intf2impls).
+	// If *[]T is used instead, this becomes comparable, at the cost of extra indirection.
+	// Thses slices are used all the time, so keep as slices (not pointers).
+
+	extHandle
+
+	intf2impls
+
+	RPCOptions
+
+	// ---- cache line
+
+	DecodeOptions
+
+	// ---- cache line
+
+	EncodeOptions
+
+	// noBuiltInTypeChecker
+}
+
+func (x *BasicHandle) getBasicHandle() *BasicHandle {
+	return x
+}
+
+func (x *BasicHandle) getTypeInfo(rtid uintptr, rt reflect.Type) (pti *typeInfo) {
+	if x.TypeInfos == nil {
+		return defTypeInfos.get(rtid, rt)
+	}
+	return x.TypeInfos.get(rtid, rt)
+}
+
+// Handle is the interface for a specific encoding format.
+//
+// Typically, a Handle is pre-configured before first time use,
+// and not modified while in use. Such a pre-configured Handle
+// is safe for concurrent access.
+type Handle interface {
+	Name() string
+	getBasicHandle() *BasicHandle
+	recreateEncDriver(encDriver) bool
+	newEncDriver(w *Encoder) encDriver
+	newDecDriver(r *Decoder) decDriver
+	isBinary() bool
+	hasElemSeparators() bool
+	// IsBuiltinType(rtid uintptr) bool
+}
+
+// Raw represents raw formatted bytes.
+// We "blindly" store it during encode and retrieve the raw bytes during decode.
+// Note: it is dangerous during encode, so we may gate the behaviour
+// behind an Encode flag which must be explicitly set.
+type Raw []byte
+
+// RawExt represents raw unprocessed extension data.
+// Some codecs will decode extension data as a *RawExt
+// if there is no registered extension for the tag.
+//
+// Only one of Data or Value is nil.
+// If Data is nil, then the content of the RawExt is in the Value.
+type RawExt struct {
+	Tag uint64
+	// Data is the []byte which represents the raw ext. If nil, ext is exposed in Value.
+	// Data is used by codecs (e.g. binc, msgpack, simple) which do custom serialization of types
+	Data []byte
+	// Value represents the extension, if Data is nil.
+	// Value is used by codecs (e.g. cbor, json) which leverage the format to do
+	// custom serialization of the types.
+	Value interface{}
+}
+
+// BytesExt handles custom (de)serialization of types to/from []byte.
+// It is used by codecs (e.g. binc, msgpack, simple) which do custom serialization of the types.
+type BytesExt interface {
+	// WriteExt converts a value to a []byte.
+	//
+	// Note: v is a pointer iff the registered extension type is a struct or array kind.
+	WriteExt(v interface{}) []byte
+
+	// ReadExt updates a value from a []byte.
+	//
+	// Note: dst is always a pointer kind to the registered extension type.
+	ReadExt(dst interface{}, src []byte)
+}
+
+// InterfaceExt handles custom (de)serialization of types to/from another interface{} value.
+// The Encoder or Decoder will then handle the further (de)serialization of that known type.
+//
+// It is used by codecs (e.g. cbor, json) which use the format to do custom serialization of types.
+type InterfaceExt interface {
+	// ConvertExt converts a value into a simpler interface for easy encoding
+	// e.g. convert time.Time to int64.
+	//
+	// Note: v is a pointer iff the registered extension type is a struct or array kind.
+	ConvertExt(v interface{}) interface{}
+
+	// UpdateExt updates a value from a simpler interface for easy decoding
+	// e.g. convert int64 to time.Time.
+	//
+	// Note: dst is always a pointer kind to the registered extension type.
+	UpdateExt(dst interface{}, src interface{})
+}
+
+// Ext handles custom (de)serialization of custom types / extensions.
+type Ext interface {
+	BytesExt
+	InterfaceExt
+}
+
+// addExtWrapper is a wrapper implementation to support former AddExt exported method.
+type addExtWrapper struct {
+	encFn func(reflect.Value) ([]byte, error)
+	decFn func(reflect.Value, []byte) error
+}
+
+func (x addExtWrapper) WriteExt(v interface{}) []byte {
+	bs, err := x.encFn(reflect.ValueOf(v))
+	if err != nil {
+		panic(err)
+	}
+	return bs
+}
+
+func (x addExtWrapper) ReadExt(v interface{}, bs []byte) {
+	if err := x.decFn(reflect.ValueOf(v), bs); err != nil {
+		panic(err)
+	}
+}
+
+func (x addExtWrapper) ConvertExt(v interface{}) interface{} {
+	return x.WriteExt(v)
+}
+
+func (x addExtWrapper) UpdateExt(dest interface{}, v interface{}) {
+	x.ReadExt(dest, v.([]byte))
+}
+
+type extWrapper struct {
+	BytesExt
+	InterfaceExt
+}
+
+type bytesExtFailer struct{}
+
+func (bytesExtFailer) WriteExt(v interface{}) []byte {
+	panicv.errorstr("BytesExt.WriteExt is not supported")
+	return nil
+}
+func (bytesExtFailer) ReadExt(v interface{}, bs []byte) {
+	panicv.errorstr("BytesExt.ReadExt is not supported")
+}
+
+type interfaceExtFailer struct{}
+
+func (interfaceExtFailer) ConvertExt(v interface{}) interface{} {
+	panicv.errorstr("InterfaceExt.ConvertExt is not supported")
+	return nil
+}
+func (interfaceExtFailer) UpdateExt(dest interface{}, v interface{}) {
+	panicv.errorstr("InterfaceExt.UpdateExt is not supported")
+}
+
+type binaryEncodingType struct{}
+
+func (binaryEncodingType) isBinary() bool { return true }
+
+type textEncodingType struct{}
+
+func (textEncodingType) isBinary() bool { return false }
+
+// noBuiltInTypes is embedded into many types which do not support builtins
+// e.g. msgpack, simple, cbor.
+
+// type noBuiltInTypeChecker struct{}
+// func (noBuiltInTypeChecker) IsBuiltinType(rt uintptr) bool { return false }
+// type noBuiltInTypes struct{ noBuiltInTypeChecker }
+
+type noBuiltInTypes struct{}
+
+func (noBuiltInTypes) EncodeBuiltin(rt uintptr, v interface{}) {}
+func (noBuiltInTypes) DecodeBuiltin(rt uintptr, v interface{}) {}
+
+// type noStreamingCodec struct{}
+// func (noStreamingCodec) CheckBreak() bool { return false }
+// func (noStreamingCodec) hasElemSeparators() bool { return false }
+
+type noElemSeparators struct{}
+
+func (noElemSeparators) hasElemSeparators() (v bool)            { return }
+func (noElemSeparators) recreateEncDriver(e encDriver) (v bool) { return }
+
+// bigenHelper.
+// Users must already slice the x completely, because we will not reslice.
+type bigenHelper struct {
+	x []byte // must be correctly sliced to appropriate len. slicing is a cost.
+	w encWriter
+}
+
+func (z bigenHelper) writeUint16(v uint16) {
+	bigen.PutUint16(z.x, v)
+	z.w.writeb(z.x)
+}
+
+func (z bigenHelper) writeUint32(v uint32) {
+	bigen.PutUint32(z.x, v)
+	z.w.writeb(z.x)
+}
+
+func (z bigenHelper) writeUint64(v uint64) {
+	bigen.PutUint64(z.x, v)
+	z.w.writeb(z.x)
+}
+
+type extTypeTagFn struct {
+	rtid    uintptr
+	rtidptr uintptr
+	rt      reflect.Type
+	tag     uint64
+	ext     Ext
+	_       [1]uint64 // padding
+}
+
+type extHandle []extTypeTagFn
+
+// AddExt registes an encode and decode function for a reflect.Type.
+// To deregister an Ext, call AddExt with nil encfn and/or nil decfn.
+//
+// Deprecated: Use SetBytesExt or SetInterfaceExt on the Handle instead.
+func (o *extHandle) AddExt(rt reflect.Type, tag byte,
+	encfn func(reflect.Value) ([]byte, error),
+	decfn func(reflect.Value, []byte) error) (err error) {
+	if encfn == nil || decfn == nil {
+		return o.SetExt(rt, uint64(tag), nil)
+	}
+	return o.SetExt(rt, uint64(tag), addExtWrapper{encfn, decfn})
+}
+
+// SetExt will set the extension for a tag and reflect.Type.
+// Note that the type must be a named type, and specifically not a pointer or Interface.
+// An error is returned if that is not honored.
+// To Deregister an ext, call SetExt with nil Ext.
+//
+// Deprecated: Use SetBytesExt or SetInterfaceExt on the Handle instead.
+func (o *extHandle) SetExt(rt reflect.Type, tag uint64, ext Ext) (err error) {
+	// o is a pointer, because we may need to initialize it
+	rk := rt.Kind()
+	for rk == reflect.Ptr {
+		rt = rt.Elem()
+		rk = rt.Kind()
+	}
+
+	if rt.PkgPath() == "" || rk == reflect.Interface { // || rk == reflect.Ptr {
+		return fmt.Errorf("codec.Handle.SetExt: Takes named type, not a pointer or interface: %v", rt)
+	}
+
+	rtid := rt2id(rt)
+	switch rtid {
+	case timeTypId, rawTypId, rawExtTypId:
+		// all natively supported type, so cannot have an extension
+		return // TODO: should we silently ignore, or return an error???
+	}
+	// if o == nil {
+	// 	return errors.New("codec.Handle.SetExt: extHandle not initialized")
+	// }
+	o2 := *o
+	// if o2 == nil {
+	// 	return errors.New("codec.Handle.SetExt: extHandle not initialized")
+	// }
+	for i := range o2 {
+		v := &o2[i]
+		if v.rtid == rtid {
+			v.tag, v.ext = tag, ext
+			return
+		}
+	}
+	rtidptr := rt2id(reflect.PtrTo(rt))
+	*o = append(o2, extTypeTagFn{rtid, rtidptr, rt, tag, ext, [1]uint64{}})
+	return
+}
+
+func (o extHandle) getExt(rtid uintptr) (v *extTypeTagFn) {
+	for i := range o {
+		v = &o[i]
+		if v.rtid == rtid || v.rtidptr == rtid {
+			return
+		}
+	}
+	return nil
+}
+
+func (o extHandle) getExtForTag(tag uint64) (v *extTypeTagFn) {
+	for i := range o {
+		v = &o[i]
+		if v.tag == tag {
+			return
+		}
+	}
+	return nil
+}
+
+type intf2impl struct {
+	rtid uintptr // for intf
+	impl reflect.Type
+	// _    [1]uint64 // padding // not-needed, as *intf2impl is never returned.
+}
+
+type intf2impls []intf2impl
+
+// Intf2Impl maps an interface to an implementing type.
+// This allows us support infering the concrete type
+// and populating it when passed an interface.
+// e.g. var v io.Reader can be decoded as a bytes.Buffer, etc.
+//
+// Passing a nil impl will clear the mapping.
+func (o *intf2impls) Intf2Impl(intf, impl reflect.Type) (err error) {
+	if impl != nil && !impl.Implements(intf) {
+		return fmt.Errorf("Intf2Impl: %v does not implement %v", impl, intf)
+	}
+	rtid := rt2id(intf)
+	o2 := *o
+	for i := range o2 {
+		v := &o2[i]
+		if v.rtid == rtid {
+			v.impl = impl
+			return
+		}
+	}
+	*o = append(o2, intf2impl{rtid, impl})
+	return
+}
+
+func (o intf2impls) intf2impl(rtid uintptr) (rv reflect.Value) {
+	for i := range o {
+		v := &o[i]
+		if v.rtid == rtid {
+			if v.impl == nil {
+				return
+			}
+			if v.impl.Kind() == reflect.Ptr {
+				return reflect.New(v.impl.Elem())
+			}
+			return reflect.New(v.impl).Elem()
+		}
+	}
+	return
+}
+
+type structFieldInfoFlag uint8
+
+const (
+	_ structFieldInfoFlag = 1 << iota
+	structFieldInfoFlagReady
+	structFieldInfoFlagOmitEmpty
+)
+
+func (x *structFieldInfoFlag) flagSet(f structFieldInfoFlag) {
+	*x = *x | f
+}
+
+func (x *structFieldInfoFlag) flagClr(f structFieldInfoFlag) {
+	*x = *x &^ f
+}
+
+func (x structFieldInfoFlag) flagGet(f structFieldInfoFlag) bool {
+	return x&f != 0
+}
+
+func (x structFieldInfoFlag) omitEmpty() bool {
+	return x.flagGet(structFieldInfoFlagOmitEmpty)
+}
+
+func (x structFieldInfoFlag) ready() bool {
+	return x.flagGet(structFieldInfoFlagReady)
+}
+
+type structFieldInfo struct {
+	encName   string // encode name
+	fieldName string // field name
+
+	is  [maxLevelsEmbedding]uint16 // (recursive/embedded) field index in struct
+	nis uint8                      // num levels of embedding. if 1, then it's not embedded.
+	structFieldInfoFlag
+}
+
+func (si *structFieldInfo) setToZeroValue(v reflect.Value) {
+	if v, valid := si.field(v, false); valid {
+		v.Set(reflect.Zero(v.Type()))
+	}
+}
+
+// rv returns the field of the struct.
+// If anonymous, it returns an Invalid
+func (si *structFieldInfo) field(v reflect.Value, update bool) (rv2 reflect.Value, valid bool) {
+	// replicate FieldByIndex
+	for i, x := range si.is {
+		if uint8(i) == si.nis {
+			break
+		}
+		if v, valid = baseStructRv(v, update); !valid {
+			return
+		}
+		v = v.Field(int(x))
+	}
+
+	return v, true
+}
+
+// func (si *structFieldInfo) fieldval(v reflect.Value, update bool) reflect.Value {
+// 	v, _ = si.field(v, update)
+// 	return v
+// }
+
+func parseStructInfo(stag string) (toArray, omitEmpty bool, keytype valueType) {
+	keytype = valueTypeString // default
+	if stag == "" {
+		return
+	}
+	for i, s := range strings.Split(stag, ",") {
+		if i == 0 {
+		} else {
+			switch s {
+			case "omitempty":
+				omitEmpty = true
+			case "toarray":
+				toArray = true
+			case "int":
+				keytype = valueTypeInt
+			case "uint":
+				keytype = valueTypeUint
+			case "float":
+				keytype = valueTypeFloat
+				// case "bool":
+				// 	keytype = valueTypeBool
+			case "string":
+				keytype = valueTypeString
+			}
+		}
+	}
+	return
+}
+
+func (si *structFieldInfo) parseTag(stag string) {
+	// if fname == "" {
+	// 	panic(errNoFieldNameToStructFieldInfo)
+	// }
+
+	if stag == "" {
+		return
+	}
+	for i, s := range strings.Split(stag, ",") {
+		if i == 0 {
+			if s != "" {
+				si.encName = s
+			}
+		} else {
+			switch s {
+			case "omitempty":
+				si.flagSet(structFieldInfoFlagOmitEmpty)
+				// si.omitEmpty = true
+				// case "toarray":
+				// 	si.toArray = true
+			}
+		}
+	}
+}
+
+type sfiSortedByEncName []*structFieldInfo
+
+func (p sfiSortedByEncName) Len() int {
+	return len(p)
+}
+
+func (p sfiSortedByEncName) Less(i, j int) bool {
+	return p[i].encName < p[j].encName
+}
+
+func (p sfiSortedByEncName) Swap(i, j int) {
+	p[i], p[j] = p[j], p[i]
+}
+
+const structFieldNodeNumToCache = 4
+
+type structFieldNodeCache struct {
+	rv  [structFieldNodeNumToCache]reflect.Value
+	idx [structFieldNodeNumToCache]uint32
+	num uint8
+}
+
+func (x *structFieldNodeCache) get(key uint32) (fv reflect.Value, valid bool) {
+	for i, k := range &x.idx {
+		if uint8(i) == x.num {
+			return // break
+		}
+		if key == k {
+			return x.rv[i], true
+		}
+	}
+	return
+}
+
+func (x *structFieldNodeCache) tryAdd(fv reflect.Value, key uint32) {
+	if x.num < structFieldNodeNumToCache {
+		x.rv[x.num] = fv
+		x.idx[x.num] = key
+		x.num++
+		return
+	}
+}
+
+type structFieldNode struct {
+	v      reflect.Value
+	cache2 structFieldNodeCache
+	cache3 structFieldNodeCache
+	update bool
+}
+
+func (x *structFieldNode) field(si *structFieldInfo) (fv reflect.Value) {
+	// return si.fieldval(x.v, x.update)
+	// Note: we only cache if nis=2 or nis=3 i.e. up to 2 levels of embedding
+	// This mostly saves us time on the repeated calls to v.Elem, v.Field, etc.
+	var valid bool
+	switch si.nis {
+	case 1:
+		fv = x.v.Field(int(si.is[0]))
+	case 2:
+		if fv, valid = x.cache2.get(uint32(si.is[0])); valid {
+			fv = fv.Field(int(si.is[1]))
+			return
+		}
+		fv = x.v.Field(int(si.is[0]))
+		if fv, valid = baseStructRv(fv, x.update); !valid {
+			return
+		}
+		x.cache2.tryAdd(fv, uint32(si.is[0]))
+		fv = fv.Field(int(si.is[1]))
+	case 3:
+		var key uint32 = uint32(si.is[0])<<16 | uint32(si.is[1])
+		if fv, valid = x.cache3.get(key); valid {
+			fv = fv.Field(int(si.is[2]))
+			return
+		}
+		fv = x.v.Field(int(si.is[0]))
+		if fv, valid = baseStructRv(fv, x.update); !valid {
+			return
+		}
+		fv = fv.Field(int(si.is[1]))
+		if fv, valid = baseStructRv(fv, x.update); !valid {
+			return
+		}
+		x.cache3.tryAdd(fv, key)
+		fv = fv.Field(int(si.is[2]))
+	default:
+		fv, _ = si.field(x.v, x.update)
+	}
+	return
+}
+
+func baseStructRv(v reflect.Value, update bool) (v2 reflect.Value, valid bool) {
+	for v.Kind() == reflect.Ptr {
+		if v.IsNil() {
+			if !update {
+				return
+			}
+			v.Set(reflect.New(v.Type().Elem()))
+		}
+		v = v.Elem()
+	}
+	return v, true
+}
+
+type typeInfoFlag uint8
+
+const (
+	typeInfoFlagComparable = 1 << iota
+	typeInfoFlagIsZeroer
+	typeInfoFlagIsZeroerPtr
+)
+
+// typeInfo keeps information about each (non-ptr) type referenced in the encode/decode sequence.
+//
+// During an encode/decode sequence, we work as below:
+//   - If base is a built in type, en/decode base value
+//   - If base is registered as an extension, en/decode base value
+//   - If type is binary(M/Unm)arshaler, call Binary(M/Unm)arshal method
+//   - If type is text(M/Unm)arshaler, call Text(M/Unm)arshal method
+//   - Else decode appropriately based on the reflect.Kind
+type typeInfo struct {
+	rt      reflect.Type
+	elem    reflect.Type
+	pkgpath string
+
+	rtid uintptr
+	// rv0  reflect.Value // saved zero value, used if immutableKind
+
+	numMeth uint16 // number of methods
+	kind    uint8
+	chandir uint8
+
+	anyOmitEmpty bool      // true if a struct, and any of the fields are tagged "omitempty"
+	toArray      bool      // whether this (struct) type should be encoded as an array
+	keyType      valueType // if struct, how is the field name stored in a stream? default is string
+	mbs          bool      // base type (T or *T) is a MapBySlice
+
+	// ---- cpu cache line boundary?
+	sfiSort []*structFieldInfo // sorted. Used when enc/dec struct to map.
+	sfiSrc  []*structFieldInfo // unsorted. Used when enc/dec struct to array.
+
+	key reflect.Type
+
+	// ---- cpu cache line boundary?
+	// sfis         []structFieldInfo // all sfi, in src order, as created.
+	sfiNamesSort []byte // all names, with indexes into the sfiSort
+
+	// format of marshal type fields below: [btj][mu]p? OR csp?
+
+	bm  bool // T is a binaryMarshaler
+	bmp bool // *T is a binaryMarshaler
+	bu  bool // T is a binaryUnmarshaler
+	bup bool // *T is a binaryUnmarshaler
+	tm  bool // T is a textMarshaler
+	tmp bool // *T is a textMarshaler
+	tu  bool // T is a textUnmarshaler
+	tup bool // *T is a textUnmarshaler
+
+	jm  bool // T is a jsonMarshaler
+	jmp bool // *T is a jsonMarshaler
+	ju  bool // T is a jsonUnmarshaler
+	jup bool // *T is a jsonUnmarshaler
+	cs  bool // T is a Selfer
+	csp bool // *T is a Selfer
+
+	// other flags, with individual bits representing if set.
+	flags typeInfoFlag
+
+	// _ [2]byte   // padding
+	_ [3]uint64 // padding
+}
+
+func (ti *typeInfo) isFlag(f typeInfoFlag) bool {
+	return ti.flags&f != 0
+}
+
+func (ti *typeInfo) indexForEncName(name []byte) (index int16) {
+	var sn []byte
+	if len(name)+2 <= 32 {
+		var buf [32]byte // should not escape
+		sn = buf[:len(name)+2]
+	} else {
+		sn = make([]byte, len(name)+2)
+	}
+	copy(sn[1:], name)
+	sn[0], sn[len(sn)-1] = tiSep2(name), 0xff
+	j := bytes.Index(ti.sfiNamesSort, sn)
+	if j < 0 {
+		return -1
+	}
+	index = int16(uint16(ti.sfiNamesSort[j+len(sn)+1]) | uint16(ti.sfiNamesSort[j+len(sn)])<<8)
+	return
+}
+
+type rtid2ti struct {
+	rtid uintptr
+	ti   *typeInfo
+}
+
+// TypeInfos caches typeInfo for each type on first inspection.
+//
+// It is configured with a set of tag keys, which are used to get
+// configuration for the type.
+type TypeInfos struct {
+	// infos: formerly map[uintptr]*typeInfo, now *[]rtid2ti, 2 words expected
+	infos atomicTypeInfoSlice
+	mu    sync.Mutex
+	tags  []string
+	_     [2]uint64 // padding
+}
+
+// NewTypeInfos creates a TypeInfos given a set of struct tags keys.
+//
+// This allows users customize the struct tag keys which contain configuration
+// of their types.
+func NewTypeInfos(tags []string) *TypeInfos {
+	return &TypeInfos{tags: tags}
+}
+
+func (x *TypeInfos) structTag(t reflect.StructTag) (s string) {
+	// check for tags: codec, json, in that order.
+	// this allows seamless support for many configured structs.
+	for _, x := range x.tags {
+		s = t.Get(x)
+		if s != "" {
+			return s
+		}
+	}
+	return
+}
+
+func (x *TypeInfos) find(s []rtid2ti, rtid uintptr) (idx int, ti *typeInfo) {
+	// binary search. adapted from sort/search.go.
+	// if sp == nil {
+	// 	return -1, nil
+	// }
+	// s := *sp
+	h, i, j := 0, 0, len(s)
+	for i < j {
+		h = i + (j-i)/2
+		if s[h].rtid < rtid {
+			i = h + 1
+		} else {
+			j = h
+		}
+	}
+	if i < len(s) && s[i].rtid == rtid {
+		return i, s[i].ti
+	}
+	return i, nil
+}
+
+func (x *TypeInfos) get(rtid uintptr, rt reflect.Type) (pti *typeInfo) {
+	sp := x.infos.load()
+	var idx int
+	if sp != nil {
+		idx, pti = x.find(sp, rtid)
+		if pti != nil {
+			return
+		}
+	}
+
+	rk := rt.Kind()
+
+	if rk == reflect.Ptr { // || (rk == reflect.Interface && rtid != intfTypId) {
+		panicv.errorf("invalid kind passed to TypeInfos.get: %v - %v", rk, rt)
+	}
+
+	// do not hold lock while computing this.
+	// it may lead to duplication, but that's ok.
+	ti := typeInfo{rt: rt, rtid: rtid, kind: uint8(rk), pkgpath: rt.PkgPath()}
+	// ti.rv0 = reflect.Zero(rt)
+
+	// ti.comparable = rt.Comparable()
+	ti.numMeth = uint16(rt.NumMethod())
+
+	ti.bm, ti.bmp = implIntf(rt, binaryMarshalerTyp)
+	ti.bu, ti.bup = implIntf(rt, binaryUnmarshalerTyp)
+	ti.tm, ti.tmp = implIntf(rt, textMarshalerTyp)
+	ti.tu, ti.tup = implIntf(rt, textUnmarshalerTyp)
+	ti.jm, ti.jmp = implIntf(rt, jsonMarshalerTyp)
+	ti.ju, ti.jup = implIntf(rt, jsonUnmarshalerTyp)
+	ti.cs, ti.csp = implIntf(rt, selferTyp)
+
+	b1, b2 := implIntf(rt, iszeroTyp)
+	if b1 {
+		ti.flags |= typeInfoFlagIsZeroer
+	}
+	if b2 {
+		ti.flags |= typeInfoFlagIsZeroerPtr
+	}
+	if rt.Comparable() {
+		ti.flags |= typeInfoFlagComparable
+	}
+
+	switch rk {
+	case reflect.Struct:
+		var omitEmpty bool
+		if f, ok := rt.FieldByName(structInfoFieldName); ok {
+			ti.toArray, omitEmpty, ti.keyType = parseStructInfo(x.structTag(f.Tag))
+		} else {
+			ti.keyType = valueTypeString
+		}
+		pp, pi := pool.tiLoad()
+		pv := pi.(*typeInfoLoadArray)
+		pv.etypes[0] = ti.rtid
+		// vv := typeInfoLoad{pv.fNames[:0], pv.encNames[:0], pv.etypes[:1], pv.sfis[:0]}
+		vv := typeInfoLoad{pv.etypes[:1], pv.sfis[:0]}
+		x.rget(rt, rtid, omitEmpty, nil, &vv)
+		// ti.sfis = vv.sfis
+		ti.sfiSrc, ti.sfiSort, ti.sfiNamesSort, ti.anyOmitEmpty = rgetResolveSFI(rt, vv.sfis, pv)
+		pp.Put(pi)
+	case reflect.Map:
+		ti.elem = rt.Elem()
+		ti.key = rt.Key()
+	case reflect.Slice:
+		ti.mbs, _ = implIntf(rt, mapBySliceTyp)
+		ti.elem = rt.Elem()
+	case reflect.Chan:
+		ti.elem = rt.Elem()
+		ti.chandir = uint8(rt.ChanDir())
+	case reflect.Array, reflect.Ptr:
+		ti.elem = rt.Elem()
+	}
+	// sfi = sfiSrc
+
+	x.mu.Lock()
+	sp = x.infos.load()
+	if sp == nil {
+		pti = &ti
+		vs := []rtid2ti{{rtid, pti}}
+		x.infos.store(vs)
+	} else {
+		idx, pti = x.find(sp, rtid)
+		if pti == nil {
+			pti = &ti
+			vs := make([]rtid2ti, len(sp)+1)
+			copy(vs, sp[:idx])
+			copy(vs[idx+1:], sp[idx:])
+			vs[idx] = rtid2ti{rtid, pti}
+			x.infos.store(vs)
+		}
+	}
+	x.mu.Unlock()
+	return
+}
+
+func (x *TypeInfos) rget(rt reflect.Type, rtid uintptr, omitEmpty bool,
+	indexstack []uint16, pv *typeInfoLoad) {
+	// Read up fields and store how to access the value.
+	//
+	// It uses go's rules for message selectors,
+	// which say that the field with the shallowest depth is selected.
+	//
+	// Note: we consciously use slices, not a map, to simulate a set.
+	//       Typically, types have < 16 fields,
+	//       and iteration using equals is faster than maps there
+	flen := rt.NumField()
+	if flen > (1<<maxLevelsEmbedding - 1) {
+		panicv.errorf("codec: types with > %v fields are not supported - has %v fields",
+			(1<<maxLevelsEmbedding - 1), flen)
+	}
+	// pv.sfis = make([]structFieldInfo, flen)
+LOOP:
+	for j, jlen := uint16(0), uint16(flen); j < jlen; j++ {
+		f := rt.Field(int(j))
+		fkind := f.Type.Kind()
+		// skip if a func type, or is unexported, or structTag value == "-"
+		switch fkind {
+		case reflect.Func, reflect.Complex64, reflect.Complex128, reflect.UnsafePointer:
+			continue LOOP
+		}
+
+		isUnexported := f.PkgPath != ""
+		if isUnexported && !f.Anonymous {
+			continue
+		}
+		stag := x.structTag(f.Tag)
+		if stag == "-" {
+			continue
+		}
+		var si structFieldInfo
+		var parsed bool
+		// if anonymous and no struct tag (or it's blank),
+		// and a struct (or pointer to struct), inline it.
+		if f.Anonymous && fkind != reflect.Interface {
+			// ^^ redundant but ok: per go spec, an embedded pointer type cannot be to an interface
+			ft := f.Type
+			isPtr := ft.Kind() == reflect.Ptr
+			for ft.Kind() == reflect.Ptr {
+				ft = ft.Elem()
+			}
+			isStruct := ft.Kind() == reflect.Struct
+
+			// Ignore embedded fields of unexported non-struct types.
+			// Also, from go1.10, ignore pointers to unexported struct types
+			// because unmarshal cannot assign a new struct to an unexported field.
+			// See https://golang.org/issue/21357
+			if (isUnexported && !isStruct) || (!allowSetUnexportedEmbeddedPtr && isUnexported && isPtr) {
+				continue
+			}
+			doInline := stag == ""
+			if !doInline {
+				si.parseTag(stag)
+				parsed = true
+				doInline = si.encName == ""
+				// doInline = si.isZero()
+			}
+			if doInline && isStruct {
+				// if etypes contains this, don't call rget again (as fields are already seen here)
+				ftid := rt2id(ft)
+				// We cannot recurse forever, but we need to track other field depths.
+				// So - we break if we see a type twice (not the first time).
+				// This should be sufficient to handle an embedded type that refers to its
+				// owning type, which then refers to its embedded type.
+				processIt := true
+				numk := 0
+				for _, k := range pv.etypes {
+					if k == ftid {
+						numk++
+						if numk == rgetMaxRecursion {
+							processIt = false
+							break
+						}
+					}
+				}
+				if processIt {
+					pv.etypes = append(pv.etypes, ftid)
+					indexstack2 := make([]uint16, len(indexstack)+1)
+					copy(indexstack2, indexstack)
+					indexstack2[len(indexstack)] = j
+					// indexstack2 := append(append(make([]int, 0, len(indexstack)+4), indexstack...), j)
+					x.rget(ft, ftid, omitEmpty, indexstack2, pv)
+				}
+				continue
+			}
+		}
+
+		// after the anonymous dance: if an unexported field, skip
+		if isUnexported {
+			continue
+		}
+
+		if f.Name == "" {
+			panic(errNoFieldNameToStructFieldInfo)
+		}
+
+		// pv.fNames = append(pv.fNames, f.Name)
+		// if si.encName == "" {
+
+		if !parsed {
+			si.encName = f.Name
+			si.parseTag(stag)
+			parsed = true
+		} else if si.encName == "" {
+			si.encName = f.Name
+		}
+		si.fieldName = f.Name
+		si.flagSet(structFieldInfoFlagReady)
+
+		// pv.encNames = append(pv.encNames, si.encName)
+
+		// si.ikind = int(f.Type.Kind())
+		if len(indexstack) > maxLevelsEmbedding-1 {
+			panicv.errorf("codec: only supports up to %v depth of embedding - type has %v depth",
+				maxLevelsEmbedding-1, len(indexstack))
+		}
+		si.nis = uint8(len(indexstack)) + 1
+		copy(si.is[:], indexstack)
+		si.is[len(indexstack)] = j
+
+		if omitEmpty {
+			si.flagSet(structFieldInfoFlagOmitEmpty)
+		}
+		pv.sfis = append(pv.sfis, si)
+	}
+}
+
+func tiSep(name string) uint8 {
+	// (xn[0]%64) // (between 192-255 - outside ascii BMP)
+	// return 0xfe - (name[0] & 63)
+	// return 0xfe - (name[0] & 63) - uint8(len(name))
+	// return 0xfe - (name[0] & 63) - uint8(len(name)&63)
+	// return ((0xfe - (name[0] & 63)) & 0xf8) | (uint8(len(name) & 0x07))
+	return 0xfe - (name[0] & 63) - uint8(len(name)&63)
+}
+
+func tiSep2(name []byte) uint8 {
+	return 0xfe - (name[0] & 63) - uint8(len(name)&63)
+}
+
+// resolves the struct field info got from a call to rget.
+// Returns a trimmed, unsorted and sorted []*structFieldInfo.
+func rgetResolveSFI(rt reflect.Type, x []structFieldInfo, pv *typeInfoLoadArray) (
+	y, z []*structFieldInfo, ss []byte, anyOmitEmpty bool) {
+	sa := pv.sfiidx[:0]
+	sn := pv.b[:]
+	n := len(x)
+
+	var xn string
+	var ui uint16
+	var sep byte
+
+	for i := range x {
+		ui = uint16(i)
+		xn = x[i].encName // fieldName or encName? use encName for now.
+		if len(xn)+2 > cap(pv.b) {
+			sn = make([]byte, len(xn)+2)
+		} else {
+			sn = sn[:len(xn)+2]
+		}
+		// use a custom sep, so that misses are less frequent,
+		// since the sep (first char in search) is as unique as first char in field name.
+		sep = tiSep(xn)
+		sn[0], sn[len(sn)-1] = sep, 0xff
+		copy(sn[1:], xn)
+		j := bytes.Index(sa, sn)
+		if j == -1 {
+			sa = append(sa, sep)
+			sa = append(sa, xn...)
+			sa = append(sa, 0xff, byte(ui>>8), byte(ui))
+		} else {
+			index := uint16(sa[j+len(sn)+1]) | uint16(sa[j+len(sn)])<<8
+			// one of them must be reset to nil,
+			// and the index updated appropriately to the other one
+			if x[i].nis == x[index].nis {
+			} else if x[i].nis < x[index].nis {
+				sa[j+len(sn)], sa[j+len(sn)+1] = byte(ui>>8), byte(ui)
+				if x[index].ready() {
+					x[index].flagClr(structFieldInfoFlagReady)
+					n--
+				}
+			} else {
+				if x[i].ready() {
+					x[i].flagClr(structFieldInfoFlagReady)
+					n--
+				}
+			}
+		}
+
+	}
+	var w []structFieldInfo
+	sharingArray := len(x) <= typeInfoLoadArraySfisLen // sharing array with typeInfoLoadArray
+	if sharingArray {
+		w = make([]structFieldInfo, n)
+	}
+
+	// remove all the nils (non-ready)
+	y = make([]*structFieldInfo, n)
+	n = 0
+	var sslen int
+	for i := range x {
+		if !x[i].ready() {
+			continue
+		}
+		if !anyOmitEmpty && x[i].omitEmpty() {
+			anyOmitEmpty = true
+		}
+		if sharingArray {
+			w[n] = x[i]
+			y[n] = &w[n]
+		} else {
+			y[n] = &x[i]
+		}
+		sslen = sslen + len(x[i].encName) + 4
+		n++
+	}
+	if n != len(y) {
+		panicv.errorf("failure reading struct %v - expecting %d of %d valid fields, got %d",
+			rt, len(y), len(x), n)
+	}
+
+	z = make([]*structFieldInfo, len(y))
+	copy(z, y)
+	sort.Sort(sfiSortedByEncName(z))
+
+	sharingArray = len(sa) <= typeInfoLoadArraySfiidxLen
+	if sharingArray {
+		ss = make([]byte, 0, sslen)
+	} else {
+		ss = sa[:0] // reuse the newly made sa array if necessary
+	}
+	for i := range z {
+		xn = z[i].encName
+		sep = tiSep(xn)
+		ui = uint16(i)
+		ss = append(ss, sep)
+		ss = append(ss, xn...)
+		ss = append(ss, 0xff, byte(ui>>8), byte(ui))
+	}
+	return
+}
+
+func implIntf(rt, iTyp reflect.Type) (base bool, indir bool) {
+	return rt.Implements(iTyp), reflect.PtrTo(rt).Implements(iTyp)
+}
+
+// isEmptyStruct is only called from isEmptyValue, and checks if a struct is empty:
+//    - does it implement IsZero() bool
+//    - is it comparable, and can i compare directly using ==
+//    - if checkStruct, then walk through the encodable fields
+//      and check if they are empty or not.
+func isEmptyStruct(v reflect.Value, tinfos *TypeInfos, deref, checkStruct bool) bool {
+	// v is a struct kind - no need to check again.
+	// We only check isZero on a struct kind, to reduce the amount of times
+	// that we lookup the rtid and typeInfo for each type as we walk the tree.
+
+	vt := v.Type()
+	rtid := rt2id(vt)
+	if tinfos == nil {
+		tinfos = defTypeInfos
+	}
+	ti := tinfos.get(rtid, vt)
+	if ti.rtid == timeTypId {
+		return rv2i(v).(time.Time).IsZero()
+	}
+	if ti.isFlag(typeInfoFlagIsZeroerPtr) && v.CanAddr() {
+		return rv2i(v.Addr()).(isZeroer).IsZero()
+	}
+	if ti.isFlag(typeInfoFlagIsZeroer) {
+		return rv2i(v).(isZeroer).IsZero()
+	}
+	if ti.isFlag(typeInfoFlagComparable) {
+		return rv2i(v) == rv2i(reflect.Zero(vt))
+	}
+	if !checkStruct {
+		return false
+	}
+	// We only care about what we can encode/decode,
+	// so that is what we use to check omitEmpty.
+	for _, si := range ti.sfiSrc {
+		sfv, valid := si.field(v, false)
+		if valid && !isEmptyValue(sfv, tinfos, deref, checkStruct) {
+			return false
+		}
+	}
+	return true
+}
+
+// func roundFloat(x float64) float64 {
+// 	t := math.Trunc(x)
+// 	if math.Abs(x-t) >= 0.5 {
+// 		return t + math.Copysign(1, x)
+// 	}
+// 	return t
+// }
+
+func panicToErr(h errstrDecorator, err *error) {
+	// Note: This method MUST be called directly from defer i.e. defer panicToErr ...
+	// else it seems the recover is not fully handled
+	if recoverPanicToErr {
+		if x := recover(); x != nil {
+			// fmt.Printf("panic'ing with: %v\n", x)
+			// debug.PrintStack()
+			panicValToErr(h, x, err)
+		}
+	}
+}
+
+func panicValToErr(h errstrDecorator, v interface{}, err *error) {
+	switch xerr := v.(type) {
+	case nil:
+	case error:
+		switch xerr {
+		case nil:
+		case io.EOF, io.ErrUnexpectedEOF, errEncoderNotInitialized, errDecoderNotInitialized:
+			// treat as special (bubble up)
+			*err = xerr
+		default:
+			h.wrapErrstr(xerr.Error(), err)
+		}
+	case string:
+		if xerr != "" {
+			h.wrapErrstr(xerr, err)
+		}
+	case fmt.Stringer:
+		if xerr != nil {
+			h.wrapErrstr(xerr.String(), err)
+		}
+	default:
+		h.wrapErrstr(v, err)
+	}
+}
+
+func isImmutableKind(k reflect.Kind) (v bool) {
+	return immutableKindsSet[k]
+}
+
+// ----
+
+type codecFnInfo struct {
+	ti    *typeInfo
+	xfFn  Ext
+	xfTag uint64
+	seq   seqType
+	addrD bool
+	addrF bool // if addrD, this says whether decode function can take a value or a ptr
+	addrE bool
+	ready bool // ready to use
+}
+
+// codecFn encapsulates the captured variables and the encode function.
+// This way, we only do some calculations one times, and pass to the
+// code block that should be called (encapsulated in a function)
+// instead of executing the checks every time.
+type codecFn struct {
+	i  codecFnInfo
+	fe func(*Encoder, *codecFnInfo, reflect.Value)
+	fd func(*Decoder, *codecFnInfo, reflect.Value)
+	_  [1]uint64 // padding
+}
+
+type codecRtidFn struct {
+	rtid uintptr
+	fn   *codecFn
+}
+
+type codecFner struct {
+	// hh Handle
+	h  *BasicHandle
+	s  []codecRtidFn
+	be bool
+	js bool
+	_  [6]byte   // padding
+	_  [3]uint64 // padding
+}
+
+func (c *codecFner) reset(hh Handle) {
+	bh := hh.getBasicHandle()
+	// only reset iff extensions changed or *TypeInfos changed
+	var hhSame = true &&
+		c.h == bh && c.h.TypeInfos == bh.TypeInfos &&
+		len(c.h.extHandle) == len(bh.extHandle) &&
+		(len(c.h.extHandle) == 0 || &c.h.extHandle[0] == &bh.extHandle[0])
+	if !hhSame {
+		// c.hh = hh
+		c.h, bh = bh, c.h // swap both
+		_, c.js = hh.(*JsonHandle)
+		c.be = hh.isBinary()
+		for i := range c.s {
+			c.s[i].fn.i.ready = false
+		}
+	}
+}
+
+func (c *codecFner) get(rt reflect.Type, checkFastpath, checkCodecSelfer bool) (fn *codecFn) {
+	rtid := rt2id(rt)
+
+	for _, x := range c.s {
+		if x.rtid == rtid {
+			// if rtid exists, then there's a *codenFn attached (non-nil)
+			fn = x.fn
+			if fn.i.ready {
+				return
+			}
+			break
+		}
+	}
+	var ti *typeInfo
+	if fn == nil {
+		fn = new(codecFn)
+		if c.s == nil {
+			c.s = make([]codecRtidFn, 0, 8)
+		}
+		c.s = append(c.s, codecRtidFn{rtid, fn})
+	} else {
+		ti = fn.i.ti
+		*fn = codecFn{}
+		fn.i.ti = ti
+		// fn.fe, fn.fd = nil, nil
+	}
+	fi := &(fn.i)
+	fi.ready = true
+	if ti == nil {
+		ti = c.h.getTypeInfo(rtid, rt)
+		fi.ti = ti
+	}
+
+	rk := reflect.Kind(ti.kind)
+
+	if checkCodecSelfer && (ti.cs || ti.csp) {
+		fn.fe = (*Encoder).selferMarshal
+		fn.fd = (*Decoder).selferUnmarshal
+		fi.addrF = true
+		fi.addrD = ti.csp
+		fi.addrE = ti.csp
+	} else if rtid == timeTypId {
+		fn.fe = (*Encoder).kTime
+		fn.fd = (*Decoder).kTime
+	} else if rtid == rawTypId {
+		fn.fe = (*Encoder).raw
+		fn.fd = (*Decoder).raw
+	} else if rtid == rawExtTypId {
+		fn.fe = (*Encoder).rawExt
+		fn.fd = (*Decoder).rawExt
+		fi.addrF = true
+		fi.addrD = true
+		fi.addrE = true
+	} else if xfFn := c.h.getExt(rtid); xfFn != nil {
+		fi.xfTag, fi.xfFn = xfFn.tag, xfFn.ext
+		fn.fe = (*Encoder).ext
+		fn.fd = (*Decoder).ext
+		fi.addrF = true
+		fi.addrD = true
+		if rk == reflect.Struct || rk == reflect.Array {
+			fi.addrE = true
+		}
+	} else if supportMarshalInterfaces && c.be && (ti.bm || ti.bmp) && (ti.bu || ti.bup) {
+		fn.fe = (*Encoder).binaryMarshal
+		fn.fd = (*Decoder).binaryUnmarshal
+		fi.addrF = true
+		fi.addrD = ti.bup
+		fi.addrE = ti.bmp
+	} else if supportMarshalInterfaces && !c.be && c.js && (ti.jm || ti.jmp) && (ti.ju || ti.jup) {
+		//If JSON, we should check JSONMarshal before textMarshal
+		fn.fe = (*Encoder).jsonMarshal
+		fn.fd = (*Decoder).jsonUnmarshal
+		fi.addrF = true
+		fi.addrD = ti.jup
+		fi.addrE = ti.jmp
+	} else if supportMarshalInterfaces && !c.be && (ti.tm || ti.tmp) && (ti.tu || ti.tup) {
+		fn.fe = (*Encoder).textMarshal
+		fn.fd = (*Decoder).textUnmarshal
+		fi.addrF = true
+		fi.addrD = ti.tup
+		fi.addrE = ti.tmp
+	} else {
+		if fastpathEnabled && checkFastpath && (rk == reflect.Map || rk == reflect.Slice) {
+			if ti.pkgpath == "" { // un-named slice or map
+				if idx := fastpathAV.index(rtid); idx != -1 {
+					fn.fe = fastpathAV[idx].encfn
+					fn.fd = fastpathAV[idx].decfn
+					fi.addrD = true
+					fi.addrF = false
+				}
+			} else {
+				// use mapping for underlying type if there
+				var rtu reflect.Type
+				if rk == reflect.Map {
+					rtu = reflect.MapOf(ti.key, ti.elem)
+				} else {
+					rtu = reflect.SliceOf(ti.elem)
+				}
+				rtuid := rt2id(rtu)
+				if idx := fastpathAV.index(rtuid); idx != -1 {
+					xfnf := fastpathAV[idx].encfn
+					xrt := fastpathAV[idx].rt
+					fn.fe = func(e *Encoder, xf *codecFnInfo, xrv reflect.Value) {
+						xfnf(e, xf, xrv.Convert(xrt))
+					}
+					fi.addrD = true
+					fi.addrF = false // meaning it can be an address(ptr) or a value
+					xfnf2 := fastpathAV[idx].decfn
+					fn.fd = func(d *Decoder, xf *codecFnInfo, xrv reflect.Value) {
+						if xrv.Kind() == reflect.Ptr {
+							xfnf2(d, xf, xrv.Convert(reflect.PtrTo(xrt)))
+						} else {
+							xfnf2(d, xf, xrv.Convert(xrt))
+						}
+					}
+				}
+			}
+		}
+		if fn.fe == nil && fn.fd == nil {
+			switch rk {
+			case reflect.Bool:
+				fn.fe = (*Encoder).kBool
+				fn.fd = (*Decoder).kBool
+			case reflect.String:
+				fn.fe = (*Encoder).kString
+				fn.fd = (*Decoder).kString
+			case reflect.Int:
+				fn.fd = (*Decoder).kInt
+				fn.fe = (*Encoder).kInt
+			case reflect.Int8:
+				fn.fe = (*Encoder).kInt8
+				fn.fd = (*Decoder).kInt8
+			case reflect.Int16:
+				fn.fe = (*Encoder).kInt16
+				fn.fd = (*Decoder).kInt16
+			case reflect.Int32:
+				fn.fe = (*Encoder).kInt32
+				fn.fd = (*Decoder).kInt32
+			case reflect.Int64:
+				fn.fe = (*Encoder).kInt64
+				fn.fd = (*Decoder).kInt64
+			case reflect.Uint:
+				fn.fd = (*Decoder).kUint
+				fn.fe = (*Encoder).kUint
+			case reflect.Uint8:
+				fn.fe = (*Encoder).kUint8
+				fn.fd = (*Decoder).kUint8
+			case reflect.Uint16:
+				fn.fe = (*Encoder).kUint16
+				fn.fd = (*Decoder).kUint16
+			case reflect.Uint32:
+				fn.fe = (*Encoder).kUint32
+				fn.fd = (*Decoder).kUint32
+			case reflect.Uint64:
+				fn.fe = (*Encoder).kUint64
+				fn.fd = (*Decoder).kUint64
+			case reflect.Uintptr:
+				fn.fe = (*Encoder).kUintptr
+				fn.fd = (*Decoder).kUintptr
+			case reflect.Float32:
+				fn.fe = (*Encoder).kFloat32
+				fn.fd = (*Decoder).kFloat32
+			case reflect.Float64:
+				fn.fe = (*Encoder).kFloat64
+				fn.fd = (*Decoder).kFloat64
+			case reflect.Invalid:
+				fn.fe = (*Encoder).kInvalid
+				fn.fd = (*Decoder).kErr
+			case reflect.Chan:
+				fi.seq = seqTypeChan
+				fn.fe = (*Encoder).kSlice
+				fn.fd = (*Decoder).kSlice
+			case reflect.Slice:
+				fi.seq = seqTypeSlice
+				fn.fe = (*Encoder).kSlice
+				fn.fd = (*Decoder).kSlice
+			case reflect.Array:
+				fi.seq = seqTypeArray
+				fn.fe = (*Encoder).kSlice
+				fi.addrF = false
+				fi.addrD = false
+				rt2 := reflect.SliceOf(ti.elem)
+				fn.fd = func(d *Decoder, xf *codecFnInfo, xrv reflect.Value) {
+					d.cfer().get(rt2, true, false).fd(d, xf, xrv.Slice(0, xrv.Len()))
+				}
+				// fn.fd = (*Decoder).kArray
+			case reflect.Struct:
+				if ti.anyOmitEmpty {
+					fn.fe = (*Encoder).kStruct
+				} else {
+					fn.fe = (*Encoder).kStructNoOmitempty
+				}
+				fn.fd = (*Decoder).kStruct
+			case reflect.Map:
+				fn.fe = (*Encoder).kMap
+				fn.fd = (*Decoder).kMap
+			case reflect.Interface:
+				// encode: reflect.Interface are handled already by preEncodeValue
+				fn.fd = (*Decoder).kInterface
+				fn.fe = (*Encoder).kErr
+			default:
+				// reflect.Ptr and reflect.Interface are handled already by preEncodeValue
+				fn.fe = (*Encoder).kErr
+				fn.fd = (*Decoder).kErr
+			}
+		}
+	}
+	return
+}
+
+type codecFnPooler struct {
+	cf  *codecFner
+	cfp *sync.Pool
+	hh  Handle
+}
+
+func (d *codecFnPooler) cfer() *codecFner {
+	if d.cf == nil {
+		var v interface{}
+		d.cfp, v = pool.codecFner()
+		d.cf = v.(*codecFner)
+		d.cf.reset(d.hh)
+	}
+	return d.cf
+}
+
+func (d *codecFnPooler) alwaysAtEnd() {
+	if d.cf != nil {
+		d.cfp.Put(d.cf)
+		d.cf, d.cfp = nil, nil
+	}
+}
+
+// ----
+
+// these "checkOverflow" functions must be inlinable, and not call anybody.
+// Overflow means that the value cannot be represented without wrapping/overflow.
+// Overflow=false does not mean that the value can be represented without losing precision
+// (especially for floating point).
+
+type checkOverflow struct{}
+
+// func (checkOverflow) Float16(f float64) (overflow bool) {
+// 	panicv.errorf("unimplemented")
+// 	if f < 0 {
+// 		f = -f
+// 	}
+// 	return math.MaxFloat32 < f && f <= math.MaxFloat64
+// }
+
+func (checkOverflow) Float32(v float64) (overflow bool) {
+	if v < 0 {
+		v = -v
+	}
+	return math.MaxFloat32 < v && v <= math.MaxFloat64
+}
+func (checkOverflow) Uint(v uint64, bitsize uint8) (overflow bool) {
+	if bitsize == 0 || bitsize >= 64 || v == 0 {
+		return
+	}
+	if trunc := (v << (64 - bitsize)) >> (64 - bitsize); v != trunc {
+		overflow = true
+	}
+	return
+}
+func (checkOverflow) Int(v int64, bitsize uint8) (overflow bool) {
+	if bitsize == 0 || bitsize >= 64 || v == 0 {
+		return
+	}
+	if trunc := (v << (64 - bitsize)) >> (64 - bitsize); v != trunc {
+		overflow = true
+	}
+	return
+}
+func (checkOverflow) SignedInt(v uint64) (overflow bool) {
+	//e.g. -127 to 128 for int8
+	pos := (v >> 63) == 0
+	ui2 := v & 0x7fffffffffffffff
+	if pos {
+		if ui2 > math.MaxInt64 {
+			overflow = true
+		}
+	} else {
+		if ui2 > math.MaxInt64-1 {
+			overflow = true
+		}
+	}
+	return
+}
+
+func (x checkOverflow) Float32V(v float64) float64 {
+	if x.Float32(v) {
+		panicv.errorf("float32 overflow: %v", v)
+	}
+	return v
+}
+func (x checkOverflow) UintV(v uint64, bitsize uint8) uint64 {
+	if x.Uint(v, bitsize) {
+		panicv.errorf("uint64 overflow: %v", v)
+	}
+	return v
+}
+func (x checkOverflow) IntV(v int64, bitsize uint8) int64 {
+	if x.Int(v, bitsize) {
+		panicv.errorf("int64 overflow: %v", v)
+	}
+	return v
+}
+func (x checkOverflow) SignedIntV(v uint64) int64 {
+	if x.SignedInt(v) {
+		panicv.errorf("uint64 to int64 overflow: %v", v)
+	}
+	return int64(v)
+}
+
+// ------------------ SORT -----------------
+
+func isNaN(f float64) bool { return f != f }
+
+// -----------------------
+
+type ioFlusher interface {
+	Flush() error
+}
+
+type ioPeeker interface {
+	Peek(int) ([]byte, error)
+}
+
+type ioBuffered interface {
+	Buffered() int
+}
+
+// -----------------------
+
+type intSlice []int64
+type uintSlice []uint64
+
+// type uintptrSlice []uintptr
+type floatSlice []float64
+type boolSlice []bool
+type stringSlice []string
+
+// type bytesSlice [][]byte
+
+func (p intSlice) Len() int           { return len(p) }
+func (p intSlice) Less(i, j int) bool { return p[i] < p[j] }
+func (p intSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p uintSlice) Len() int           { return len(p) }
+func (p uintSlice) Less(i, j int) bool { return p[i] < p[j] }
+func (p uintSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+// func (p uintptrSlice) Len() int           { return len(p) }
+// func (p uintptrSlice) Less(i, j int) bool { return p[i] < p[j] }
+// func (p uintptrSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p floatSlice) Len() int { return len(p) }
+func (p floatSlice) Less(i, j int) bool {
+	return p[i] < p[j] || isNaN(p[i]) && !isNaN(p[j])
+}
+func (p floatSlice) Swap(i, j int) { p[i], p[j] = p[j], p[i] }
+
+func (p stringSlice) Len() int           { return len(p) }
+func (p stringSlice) Less(i, j int) bool { return p[i] < p[j] }
+func (p stringSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+// func (p bytesSlice) Len() int           { return len(p) }
+// func (p bytesSlice) Less(i, j int) bool { return bytes.Compare(p[i], p[j]) == -1 }
+// func (p bytesSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p boolSlice) Len() int           { return len(p) }
+func (p boolSlice) Less(i, j int) bool { return !p[i] && p[j] }
+func (p boolSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+// ---------------------
+
+type intRv struct {
+	v int64
+	r reflect.Value
+}
+type intRvSlice []intRv
+type uintRv struct {
+	v uint64
+	r reflect.Value
+}
+type uintRvSlice []uintRv
+type floatRv struct {
+	v float64
+	r reflect.Value
+}
+type floatRvSlice []floatRv
+type boolRv struct {
+	v bool
+	r reflect.Value
+}
+type boolRvSlice []boolRv
+type stringRv struct {
+	v string
+	r reflect.Value
+}
+type stringRvSlice []stringRv
+type bytesRv struct {
+	v []byte
+	r reflect.Value
+}
+type bytesRvSlice []bytesRv
+type timeRv struct {
+	v time.Time
+	r reflect.Value
+}
+type timeRvSlice []timeRv
+
+func (p intRvSlice) Len() int           { return len(p) }
+func (p intRvSlice) Less(i, j int) bool { return p[i].v < p[j].v }
+func (p intRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p uintRvSlice) Len() int           { return len(p) }
+func (p uintRvSlice) Less(i, j int) bool { return p[i].v < p[j].v }
+func (p uintRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p floatRvSlice) Len() int { return len(p) }
+func (p floatRvSlice) Less(i, j int) bool {
+	return p[i].v < p[j].v || isNaN(p[i].v) && !isNaN(p[j].v)
+}
+func (p floatRvSlice) Swap(i, j int) { p[i], p[j] = p[j], p[i] }
+
+func (p stringRvSlice) Len() int           { return len(p) }
+func (p stringRvSlice) Less(i, j int) bool { return p[i].v < p[j].v }
+func (p stringRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p bytesRvSlice) Len() int           { return len(p) }
+func (p bytesRvSlice) Less(i, j int) bool { return bytes.Compare(p[i].v, p[j].v) == -1 }
+func (p bytesRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p boolRvSlice) Len() int           { return len(p) }
+func (p boolRvSlice) Less(i, j int) bool { return !p[i].v && p[j].v }
+func (p boolRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+func (p timeRvSlice) Len() int           { return len(p) }
+func (p timeRvSlice) Less(i, j int) bool { return p[i].v.Before(p[j].v) }
+func (p timeRvSlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+// -----------------
+
+type bytesI struct {
+	v []byte
+	i interface{}
+}
+
+type bytesISlice []bytesI
+
+func (p bytesISlice) Len() int           { return len(p) }
+func (p bytesISlice) Less(i, j int) bool { return bytes.Compare(p[i].v, p[j].v) == -1 }
+func (p bytesISlice) Swap(i, j int)      { p[i], p[j] = p[j], p[i] }
+
+// -----------------
+
+type set []uintptr
+
+func (s *set) add(v uintptr) (exists bool) {
+	// e.ci is always nil, or len >= 1
+	x := *s
+	if x == nil {
+		x = make([]uintptr, 1, 8)
+		x[0] = v
+		*s = x
+		return
+	}
+	// typically, length will be 1. make this perform.
+	if len(x) == 1 {
+		if j := x[0]; j == 0 {
+			x[0] = v
+		} else if j == v {
+			exists = true
+		} else {
+			x = append(x, v)
+			*s = x
+		}
+		return
+	}
+	// check if it exists
+	for _, j := range x {
+		if j == v {
+			exists = true
+			return
+		}
+	}
+	// try to replace a "deleted" slot
+	for i, j := range x {
+		if j == 0 {
+			x[i] = v
+			return
+		}
+	}
+	// if unable to replace deleted slot, just append it.
+	x = append(x, v)
+	*s = x
+	return
+}
+
+func (s *set) remove(v uintptr) (exists bool) {
+	x := *s
+	if len(x) == 0 {
+		return
+	}
+	if len(x) == 1 {
+		if x[0] == v {
+			x[0] = 0
+		}
+		return
+	}
+	for i, j := range x {
+		if j == v {
+			exists = true
+			x[i] = 0 // set it to 0, as way to delete it.
+			// copy(x[i:], x[i+1:])
+			// x = x[:len(x)-1]
+			return
+		}
+	}
+	return
+}
+
+// ------
+
+// bitset types are better than [256]bool, because they permit the whole
+// bitset array being on a single cache line and use less memory.
+
+// given x > 0 and n > 0 and x is exactly 2^n, then pos/x === pos>>n AND pos%x === pos&(x-1).
+// consequently, pos/32 === pos>>5, pos/16 === pos>>4, pos/8 === pos>>3, pos%8 == pos&7
+
+type bitset256 [32]byte
+
+func (x *bitset256) isset(pos byte) bool {
+	return x[pos>>3]&(1<<(pos&7)) != 0
+}
+func (x *bitset256) issetv(pos byte) byte {
+	return x[pos>>3] & (1 << (pos & 7))
+}
+func (x *bitset256) set(pos byte) {
+	x[pos>>3] |= (1 << (pos & 7))
+}
+
+// func (x *bitset256) unset(pos byte) {
+// 	x[pos>>3] &^= (1 << (pos & 7))
+// }
+
+type bitset128 [16]byte
+
+func (x *bitset128) isset(pos byte) bool {
+	return x[pos>>3]&(1<<(pos&7)) != 0
+}
+func (x *bitset128) set(pos byte) {
+	x[pos>>3] |= (1 << (pos & 7))
+}
+
+// func (x *bitset128) unset(pos byte) {
+// 	x[pos>>3] &^= (1 << (pos & 7))
+// }
+
+type bitset32 [4]byte
+
+func (x *bitset32) isset(pos byte) bool {
+	return x[pos>>3]&(1<<(pos&7)) != 0
+}
+func (x *bitset32) set(pos byte) {
+	x[pos>>3] |= (1 << (pos & 7))
+}
+
+// func (x *bitset32) unset(pos byte) {
+// 	x[pos>>3] &^= (1 << (pos & 7))
+// }
+
+// type bit2set256 [64]byte
+
+// func (x *bit2set256) set(pos byte, v1, v2 bool) {
+// 	var pos2 uint8 = (pos & 3) << 1 // returning 0, 2, 4 or 6
+// 	if v1 {
+// 		x[pos>>2] |= 1 << (pos2 + 1)
+// 	}
+// 	if v2 {
+// 		x[pos>>2] |= 1 << pos2
+// 	}
+// }
+// func (x *bit2set256) get(pos byte) uint8 {
+// 	var pos2 uint8 = (pos & 3) << 1     // returning 0, 2, 4 or 6
+// 	return x[pos>>2] << (6 - pos2) >> 6 // 11000000 -> 00000011
+// }
+
+// ------------
+
+type pooler struct {
+	dn                                          sync.Pool // for decNaked
+	cfn                                         sync.Pool // for codecFner
+	tiload                                      sync.Pool
+	strRv8, strRv16, strRv32, strRv64, strRv128 sync.Pool // for stringRV
+}
+
+func (p *pooler) init() {
+	p.strRv8.New = func() interface{} { return new([8]stringRv) }
+	p.strRv16.New = func() interface{} { return new([16]stringRv) }
+	p.strRv32.New = func() interface{} { return new([32]stringRv) }
+	p.strRv64.New = func() interface{} { return new([64]stringRv) }
+	p.strRv128.New = func() interface{} { return new([128]stringRv) }
+	p.dn.New = func() interface{} { x := new(decNaked); x.init(); return x }
+	p.tiload.New = func() interface{} { return new(typeInfoLoadArray) }
+	p.cfn.New = func() interface{} { return new(codecFner) }
+}
+
+func (p *pooler) stringRv8() (sp *sync.Pool, v interface{}) {
+	return &p.strRv8, p.strRv8.Get()
+}
+func (p *pooler) stringRv16() (sp *sync.Pool, v interface{}) {
+	return &p.strRv16, p.strRv16.Get()
+}
+func (p *pooler) stringRv32() (sp *sync.Pool, v interface{}) {
+	return &p.strRv32, p.strRv32.Get()
+}
+func (p *pooler) stringRv64() (sp *sync.Pool, v interface{}) {
+	return &p.strRv64, p.strRv64.Get()
+}
+func (p *pooler) stringRv128() (sp *sync.Pool, v interface{}) {
+	return &p.strRv128, p.strRv128.Get()
+}
+func (p *pooler) decNaked() (sp *sync.Pool, v interface{}) {
+	return &p.dn, p.dn.Get()
+}
+func (p *pooler) codecFner() (sp *sync.Pool, v interface{}) {
+	return &p.cfn, p.cfn.Get()
+}
+func (p *pooler) tiLoad() (sp *sync.Pool, v interface{}) {
+	return &p.tiload, p.tiload.Get()
+}
+
+// func (p *pooler) decNaked() (v *decNaked, f func(*decNaked) ) {
+// 	sp := &(p.dn)
+// 	vv := sp.Get()
+// 	return vv.(*decNaked), func(x *decNaked) { sp.Put(vv) }
+// }
+// func (p *pooler) decNakedGet() (v interface{}) {
+// 	return p.dn.Get()
+// }
+// func (p *pooler) codecFnerGet() (v interface{}) {
+// 	return p.cfn.Get()
+// }
+// func (p *pooler) tiLoadGet() (v interface{}) {
+// 	return p.tiload.Get()
+// }
+// func (p *pooler) decNakedPut(v interface{}) {
+// 	p.dn.Put(v)
+// }
+// func (p *pooler) codecFnerPut(v interface{}) {
+// 	p.cfn.Put(v)
+// }
+// func (p *pooler) tiLoadPut(v interface{}) {
+// 	p.tiload.Put(v)
+// }
+
+type panicHdl struct{}
+
+func (panicHdl) errorv(err error) {
+	if err != nil {
+		panic(err)
+	}
+}
+
+func (panicHdl) errorstr(message string) {
+	if message != "" {
+		panic(message)
+	}
+}
+
+func (panicHdl) errorf(format string, params ...interface{}) {
+	if format != "" {
+		if len(params) == 0 {
+			panic(format)
+		} else {
+			panic(fmt.Sprintf(format, params...))
+		}
+	}
+}
+
+type errstrDecorator interface {
+	wrapErrstr(interface{}, *error)
+}
+
+type errstrDecoratorDef struct{}
+
+func (errstrDecoratorDef) wrapErrstr(v interface{}, e *error) { *e = fmt.Errorf("%v", v) }
+
+type must struct{}
+
+func (must) String(s string, err error) string {
+	if err != nil {
+		panicv.errorv(err)
+	}
+	return s
+}
+func (must) Int(s int64, err error) int64 {
+	if err != nil {
+		panicv.errorv(err)
+	}
+	return s
+}
+func (must) Uint(s uint64, err error) uint64 {
+	if err != nil {
+		panicv.errorv(err)
+	}
+	return s
+}
+func (must) Float(s float64, err error) float64 {
+	if err != nil {
+		panicv.errorv(err)
+	}
+	return s
+}
+
+// xdebugf prints the message in red on the terminal.
+// Use it in place of fmt.Printf (which it calls internally)
+func xdebugf(pattern string, args ...interface{}) {
+	var delim string
+	if len(pattern) > 0 && pattern[len(pattern)-1] != '\n' {
+		delim = "\n"
+	}
+	fmt.Printf("\033[1;31m"+pattern+delim+"\033[0m", args...)
+}
+
+// func isImmutableKind(k reflect.Kind) (v bool) {
+// 	return false ||
+// 		k == reflect.Int ||
+// 		k == reflect.Int8 ||
+// 		k == reflect.Int16 ||
+// 		k == reflect.Int32 ||
+// 		k == reflect.Int64 ||
+// 		k == reflect.Uint ||
+// 		k == reflect.Uint8 ||
+// 		k == reflect.Uint16 ||
+// 		k == reflect.Uint32 ||
+// 		k == reflect.Uint64 ||
+// 		k == reflect.Uintptr ||
+// 		k == reflect.Float32 ||
+// 		k == reflect.Float64 ||
+// 		k == reflect.Bool ||
+// 		k == reflect.String
+// }
+
+// func timeLocUTCName(tzint int16) string {
+// 	if tzint == 0 {
+// 		return "UTC"
+// 	}
+// 	var tzname = []byte("UTC+00:00")
+// 	//tzname := fmt.Sprintf("UTC%s%02d:%02d", tzsign, tz/60, tz%60) //perf issue using Sprintf. inline below.
+// 	//tzhr, tzmin := tz/60, tz%60 //faster if u convert to int first
+// 	var tzhr, tzmin int16
+// 	if tzint < 0 {
+// 		tzname[3] = '-' // (TODO: verify. this works here)
+// 		tzhr, tzmin = -tzint/60, (-tzint)%60
+// 	} else {
+// 		tzhr, tzmin = tzint/60, tzint%60
+// 	}
+// 	tzname[4] = timeDigits[tzhr/10]
+// 	tzname[5] = timeDigits[tzhr%10]
+// 	tzname[7] = timeDigits[tzmin/10]
+// 	tzname[8] = timeDigits[tzmin%10]
+// 	return string(tzname)
+// 	//return time.FixedZone(string(tzname), int(tzint)*60)
+// }
diff --git a/vendor/github.com/ugorji/go/codec/helper_internal.go b/vendor/github.com/ugorji/go/codec/helper_internal.go
new file mode 100644
index 0000000000..0cbd665e25
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/helper_internal.go
@@ -0,0 +1,121 @@
+// Copyright (c) 2012-2015 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+// All non-std package dependencies live in this file,
+// so porting to different environment is easy (just update functions).
+
+func pruneSignExt(v []byte, pos bool) (n int) {
+	if len(v) < 2 {
+	} else if pos && v[0] == 0 {
+		for ; v[n] == 0 && n+1 < len(v) && (v[n+1]&(1<<7) == 0); n++ {
+		}
+	} else if !pos && v[0] == 0xff {
+		for ; v[n] == 0xff && n+1 < len(v) && (v[n+1]&(1<<7) != 0); n++ {
+		}
+	}
+	return
+}
+
+// validate that this function is correct ...
+// culled from OGRE (Object-Oriented Graphics Rendering Engine)
+// function: halfToFloatI (http://stderr.org/doc/ogre-doc/api/OgreBitwise_8h-source.html)
+func halfFloatToFloatBits(yy uint16) (d uint32) {
+	y := uint32(yy)
+	s := (y >> 15) & 0x01
+	e := (y >> 10) & 0x1f
+	m := y & 0x03ff
+
+	if e == 0 {
+		if m == 0 { // plu or minus 0
+			return s << 31
+		}
+		// Denormalized number -- renormalize it
+		for (m & 0x00000400) == 0 {
+			m <<= 1
+			e -= 1
+		}
+		e += 1
+		const zz uint32 = 0x0400
+		m &= ^zz
+	} else if e == 31 {
+		if m == 0 { // Inf
+			return (s << 31) | 0x7f800000
+		}
+		return (s << 31) | 0x7f800000 | (m << 13) // NaN
+	}
+	e = e + (127 - 15)
+	m = m << 13
+	return (s << 31) | (e << 23) | m
+}
+
+// GrowCap will return a new capacity for a slice, given the following:
+//   - oldCap: current capacity
+//   - unit: in-memory size of an element
+//   - num: number of elements to add
+func growCap(oldCap, unit, num int) (newCap int) {
+	// appendslice logic (if cap < 1024, *2, else *1.25):
+	//   leads to many copy calls, especially when copying bytes.
+	//   bytes.Buffer model (2*cap + n): much better for bytes.
+	// smarter way is to take the byte-size of the appended element(type) into account
+
+	// maintain 3 thresholds:
+	// t1: if cap <= t1, newcap = 2x
+	// t2: if cap <= t2, newcap = 1.75x
+	// t3: if cap <= t3, newcap = 1.5x
+	//     else          newcap = 1.25x
+	//
+	// t1, t2, t3 >= 1024 always.
+	// i.e. if unit size >= 16, then always do 2x or 1.25x (ie t1, t2, t3 are all same)
+	//
+	// With this, appending for bytes increase by:
+	//    100% up to 4K
+	//     75% up to 8K
+	//     50% up to 16K
+	//     25% beyond that
+
+	// unit can be 0 e.g. for struct{}{}; handle that appropriately
+	var t1, t2, t3 int // thresholds
+	if unit <= 1 {
+		t1, t2, t3 = 4*1024, 8*1024, 16*1024
+	} else if unit < 16 {
+		t3 = 16 / unit * 1024
+		t1 = t3 * 1 / 4
+		t2 = t3 * 2 / 4
+	} else {
+		t1, t2, t3 = 1024, 1024, 1024
+	}
+
+	var x int // temporary variable
+
+	// x is multiplier here: one of 5, 6, 7 or 8; incr of 25%, 50%, 75% or 100% respectively
+	if oldCap <= t1 { // [0,t1]
+		x = 8
+	} else if oldCap > t3 { // (t3,infinity]
+		x = 5
+	} else if oldCap <= t2 { // (t1,t2]
+		x = 7
+	} else { // (t2,t3]
+		x = 6
+	}
+	newCap = x * oldCap / 4
+
+	if num > 0 {
+		newCap += num
+	}
+
+	// ensure newCap is a multiple of 64 (if it is > 64) or 16.
+	if newCap > 64 {
+		if x = newCap % 64; x != 0 {
+			x = newCap / 64
+			newCap = 64 * (x + 1)
+		}
+	} else {
+		if x = newCap % 16; x != 0 {
+			x = newCap / 16
+			newCap = 16 * (x + 1)
+		}
+	}
+	return
+}
diff --git a/vendor/github.com/ugorji/go/codec/helper_not_unsafe.go b/vendor/github.com/ugorji/go/codec/helper_not_unsafe.go
new file mode 100644
index 0000000000..fd52690c94
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/helper_not_unsafe.go
@@ -0,0 +1,272 @@
+// +build !go1.7 safe appengine
+
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"reflect"
+	"sync/atomic"
+	"time"
+)
+
+const safeMode = true
+
+// stringView returns a view of the []byte as a string.
+// In unsafe mode, it doesn't incur allocation and copying caused by conversion.
+// In regular safe mode, it is an allocation and copy.
+//
+// Usage: Always maintain a reference to v while result of this call is in use,
+//        and call keepAlive4BytesView(v) at point where done with view.
+func stringView(v []byte) string {
+	return string(v)
+}
+
+// bytesView returns a view of the string as a []byte.
+// In unsafe mode, it doesn't incur allocation and copying caused by conversion.
+// In regular safe mode, it is an allocation and copy.
+//
+// Usage: Always maintain a reference to v while result of this call is in use,
+//        and call keepAlive4BytesView(v) at point where done with view.
+func bytesView(v string) []byte {
+	return []byte(v)
+}
+
+func definitelyNil(v interface{}) bool {
+	// this is a best-effort option.
+	// We just return false, so we don't unnecessarily incur the cost of reflection this early.
+	return false
+}
+
+func rv2i(rv reflect.Value) interface{} {
+	return rv.Interface()
+}
+
+func rt2id(rt reflect.Type) uintptr {
+	return reflect.ValueOf(rt).Pointer()
+}
+
+func rv2rtid(rv reflect.Value) uintptr {
+	return reflect.ValueOf(rv.Type()).Pointer()
+}
+
+func i2rtid(i interface{}) uintptr {
+	return reflect.ValueOf(reflect.TypeOf(i)).Pointer()
+}
+
+// --------------------------
+
+func isEmptyValue(v reflect.Value, tinfos *TypeInfos, deref, checkStruct bool) bool {
+	switch v.Kind() {
+	case reflect.Invalid:
+		return true
+	case reflect.Array, reflect.Map, reflect.Slice, reflect.String:
+		return v.Len() == 0
+	case reflect.Bool:
+		return !v.Bool()
+	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
+		return v.Int() == 0
+	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
+		return v.Uint() == 0
+	case reflect.Float32, reflect.Float64:
+		return v.Float() == 0
+	case reflect.Interface, reflect.Ptr:
+		if deref {
+			if v.IsNil() {
+				return true
+			}
+			return isEmptyValue(v.Elem(), tinfos, deref, checkStruct)
+		}
+		return v.IsNil()
+	case reflect.Struct:
+		return isEmptyStruct(v, tinfos, deref, checkStruct)
+	}
+	return false
+}
+
+// --------------------------
+// type ptrToRvMap struct{}
+
+// func (*ptrToRvMap) init() {}
+// func (*ptrToRvMap) get(i interface{}) reflect.Value {
+// 	return reflect.ValueOf(i).Elem()
+// }
+
+// --------------------------
+type atomicTypeInfoSlice struct { // expected to be 2 words
+	v atomic.Value
+}
+
+func (x *atomicTypeInfoSlice) load() []rtid2ti {
+	i := x.v.Load()
+	if i == nil {
+		return nil
+	}
+	return i.([]rtid2ti)
+}
+
+func (x *atomicTypeInfoSlice) store(p []rtid2ti) {
+	x.v.Store(p)
+}
+
+// --------------------------
+func (d *Decoder) raw(f *codecFnInfo, rv reflect.Value) {
+	rv.SetBytes(d.rawBytes())
+}
+
+func (d *Decoder) kString(f *codecFnInfo, rv reflect.Value) {
+	rv.SetString(d.d.DecodeString())
+}
+
+func (d *Decoder) kBool(f *codecFnInfo, rv reflect.Value) {
+	rv.SetBool(d.d.DecodeBool())
+}
+
+func (d *Decoder) kTime(f *codecFnInfo, rv reflect.Value) {
+	rv.Set(reflect.ValueOf(d.d.DecodeTime()))
+}
+
+func (d *Decoder) kFloat32(f *codecFnInfo, rv reflect.Value) {
+	fv := d.d.DecodeFloat64()
+	if chkOvf.Float32(fv) {
+		d.errorf("float32 overflow: %v", fv)
+	}
+	rv.SetFloat(fv)
+}
+
+func (d *Decoder) kFloat64(f *codecFnInfo, rv reflect.Value) {
+	rv.SetFloat(d.d.DecodeFloat64())
+}
+
+func (d *Decoder) kInt(f *codecFnInfo, rv reflect.Value) {
+	rv.SetInt(chkOvf.IntV(d.d.DecodeInt64(), intBitsize))
+}
+
+func (d *Decoder) kInt8(f *codecFnInfo, rv reflect.Value) {
+	rv.SetInt(chkOvf.IntV(d.d.DecodeInt64(), 8))
+}
+
+func (d *Decoder) kInt16(f *codecFnInfo, rv reflect.Value) {
+	rv.SetInt(chkOvf.IntV(d.d.DecodeInt64(), 16))
+}
+
+func (d *Decoder) kInt32(f *codecFnInfo, rv reflect.Value) {
+	rv.SetInt(chkOvf.IntV(d.d.DecodeInt64(), 32))
+}
+
+func (d *Decoder) kInt64(f *codecFnInfo, rv reflect.Value) {
+	rv.SetInt(d.d.DecodeInt64())
+}
+
+func (d *Decoder) kUint(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(chkOvf.UintV(d.d.DecodeUint64(), uintBitsize))
+}
+
+func (d *Decoder) kUintptr(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(chkOvf.UintV(d.d.DecodeUint64(), uintBitsize))
+}
+
+func (d *Decoder) kUint8(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(chkOvf.UintV(d.d.DecodeUint64(), 8))
+}
+
+func (d *Decoder) kUint16(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(chkOvf.UintV(d.d.DecodeUint64(), 16))
+}
+
+func (d *Decoder) kUint32(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(chkOvf.UintV(d.d.DecodeUint64(), 32))
+}
+
+func (d *Decoder) kUint64(f *codecFnInfo, rv reflect.Value) {
+	rv.SetUint(d.d.DecodeUint64())
+}
+
+// ----------------
+
+func (e *Encoder) kBool(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeBool(rv.Bool())
+}
+
+func (e *Encoder) kTime(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeTime(rv2i(rv).(time.Time))
+}
+
+func (e *Encoder) kString(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeString(cUTF8, rv.String())
+}
+
+func (e *Encoder) kFloat64(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeFloat64(rv.Float())
+}
+
+func (e *Encoder) kFloat32(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeFloat32(float32(rv.Float()))
+}
+
+func (e *Encoder) kInt(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeInt(rv.Int())
+}
+
+func (e *Encoder) kInt8(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeInt(rv.Int())
+}
+
+func (e *Encoder) kInt16(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeInt(rv.Int())
+}
+
+func (e *Encoder) kInt32(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeInt(rv.Int())
+}
+
+func (e *Encoder) kInt64(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeInt(rv.Int())
+}
+
+func (e *Encoder) kUint(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+func (e *Encoder) kUint8(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+func (e *Encoder) kUint16(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+func (e *Encoder) kUint32(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+func (e *Encoder) kUint64(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+func (e *Encoder) kUintptr(f *codecFnInfo, rv reflect.Value) {
+	e.e.EncodeUint(rv.Uint())
+}
+
+// // keepAlive4BytesView maintains a reference to the input parameter for bytesView.
+// //
+// // Usage: call this at point where done with the bytes view.
+// func keepAlive4BytesView(v string) {}
+
+// // keepAlive4BytesView maintains a reference to the input parameter for stringView.
+// //
+// // Usage: call this at point where done with the string view.
+// func keepAlive4StringView(v []byte) {}
+
+// func definitelyNil(v interface{}) bool {
+// 	rv := reflect.ValueOf(v)
+// 	switch rv.Kind() {
+// 	case reflect.Invalid:
+// 		return true
+// 	case reflect.Ptr, reflect.Interface, reflect.Chan, reflect.Slice, reflect.Map, reflect.Func:
+// 		return rv.IsNil()
+// 	default:
+// 		return false
+// 	}
+// }
diff --git a/vendor/github.com/ugorji/go/codec/helper_unsafe.go b/vendor/github.com/ugorji/go/codec/helper_unsafe.go
new file mode 100644
index 0000000000..e3df60abea
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/helper_unsafe.go
@@ -0,0 +1,639 @@
+// +build !safe
+// +build !appengine
+// +build go1.7
+
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"reflect"
+	"sync/atomic"
+	"time"
+	"unsafe"
+)
+
+// This file has unsafe variants of some helper methods.
+// NOTE: See helper_not_unsafe.go for the usage information.
+
+// var zeroRTv [4]uintptr
+
+const safeMode = false
+const unsafeFlagIndir = 1 << 7 // keep in sync with GO_ROOT/src/reflect/value.go
+
+type unsafeString struct {
+	Data unsafe.Pointer
+	Len  int
+}
+
+type unsafeSlice struct {
+	Data unsafe.Pointer
+	Len  int
+	Cap  int
+}
+
+type unsafeIntf struct {
+	typ  unsafe.Pointer
+	word unsafe.Pointer
+}
+
+type unsafeReflectValue struct {
+	typ  unsafe.Pointer
+	ptr  unsafe.Pointer
+	flag uintptr
+}
+
+func stringView(v []byte) string {
+	if len(v) == 0 {
+		return ""
+	}
+	bx := (*unsafeSlice)(unsafe.Pointer(&v))
+	return *(*string)(unsafe.Pointer(&unsafeString{bx.Data, bx.Len}))
+}
+
+func bytesView(v string) []byte {
+	if len(v) == 0 {
+		return zeroByteSlice
+	}
+	sx := (*unsafeString)(unsafe.Pointer(&v))
+	return *(*[]byte)(unsafe.Pointer(&unsafeSlice{sx.Data, sx.Len, sx.Len}))
+}
+
+func definitelyNil(v interface{}) bool {
+	// There is no global way of checking if an interface is nil.
+	// For true references (map, ptr, func, chan), you can just look
+	// at the word of the interface. However, for slices, you have to dereference
+	// the word, and get a pointer to the 3-word interface value.
+	//
+	// However, the following are cheap calls
+	// - TypeOf(interface): cheap 2-line call.
+	// - ValueOf(interface{}): expensive
+	// - type.Kind: cheap call through an interface
+	// - Value.Type(): cheap call
+	//                 except it's a method value (e.g. r.Read, which implies that it is a Func)
+
+	return ((*unsafeIntf)(unsafe.Pointer(&v))).word == nil
+}
+
+func rv2i(rv reflect.Value) interface{} {
+	// TODO: consider a more generally-known optimization for reflect.Value ==> Interface
+	//
+	// Currently, we use this fragile method that taps into implememtation details from
+	// the source go stdlib reflect/value.go, and trims the implementation.
+
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	// true references (map, func, chan, ptr - NOT slice) may be double-referenced as flagIndir
+	var ptr unsafe.Pointer
+	if refBitset.isset(byte(urv.flag&(1<<5-1))) && urv.flag&unsafeFlagIndir != 0 {
+		ptr = *(*unsafe.Pointer)(urv.ptr)
+	} else {
+		ptr = urv.ptr
+	}
+	return *(*interface{})(unsafe.Pointer(&unsafeIntf{typ: urv.typ, word: ptr}))
+}
+
+func rt2id(rt reflect.Type) uintptr {
+	return uintptr(((*unsafeIntf)(unsafe.Pointer(&rt))).word)
+}
+
+func rv2rtid(rv reflect.Value) uintptr {
+	return uintptr((*unsafeReflectValue)(unsafe.Pointer(&rv)).typ)
+}
+
+func i2rtid(i interface{}) uintptr {
+	return uintptr(((*unsafeIntf)(unsafe.Pointer(&i))).typ)
+}
+
+// --------------------------
+
+func isEmptyValue(v reflect.Value, tinfos *TypeInfos, deref, checkStruct bool) bool {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&v))
+	if urv.flag == 0 {
+		return true
+	}
+	switch v.Kind() {
+	case reflect.Invalid:
+		return true
+	case reflect.String:
+		return (*unsafeString)(urv.ptr).Len == 0
+	case reflect.Slice:
+		return (*unsafeSlice)(urv.ptr).Len == 0
+	case reflect.Bool:
+		return !*(*bool)(urv.ptr)
+	case reflect.Int:
+		return *(*int)(urv.ptr) == 0
+	case reflect.Int8:
+		return *(*int8)(urv.ptr) == 0
+	case reflect.Int16:
+		return *(*int16)(urv.ptr) == 0
+	case reflect.Int32:
+		return *(*int32)(urv.ptr) == 0
+	case reflect.Int64:
+		return *(*int64)(urv.ptr) == 0
+	case reflect.Uint:
+		return *(*uint)(urv.ptr) == 0
+	case reflect.Uint8:
+		return *(*uint8)(urv.ptr) == 0
+	case reflect.Uint16:
+		return *(*uint16)(urv.ptr) == 0
+	case reflect.Uint32:
+		return *(*uint32)(urv.ptr) == 0
+	case reflect.Uint64:
+		return *(*uint64)(urv.ptr) == 0
+	case reflect.Uintptr:
+		return *(*uintptr)(urv.ptr) == 0
+	case reflect.Float32:
+		return *(*float32)(urv.ptr) == 0
+	case reflect.Float64:
+		return *(*float64)(urv.ptr) == 0
+	case reflect.Interface:
+		isnil := urv.ptr == nil || *(*unsafe.Pointer)(urv.ptr) == nil
+		if deref {
+			if isnil {
+				return true
+			}
+			return isEmptyValue(v.Elem(), tinfos, deref, checkStruct)
+		}
+		return isnil
+	case reflect.Ptr:
+		// isnil := urv.ptr == nil (not sufficient, as a pointer value encodes the type)
+		isnil := urv.ptr == nil || *(*unsafe.Pointer)(urv.ptr) == nil
+		if deref {
+			if isnil {
+				return true
+			}
+			return isEmptyValue(v.Elem(), tinfos, deref, checkStruct)
+		}
+		return isnil
+	case reflect.Struct:
+		return isEmptyStruct(v, tinfos, deref, checkStruct)
+	case reflect.Map, reflect.Array, reflect.Chan:
+		return v.Len() == 0
+	}
+	return false
+}
+
+// --------------------------
+
+// atomicTypeInfoSlice contains length and pointer to the array for a slice.
+// It is expected to be 2 words.
+//
+// Previously, we atomically loaded and stored the length and array pointer separately,
+// which could lead to some races.
+// We now just atomically store and load the pointer to the value directly.
+
+type atomicTypeInfoSlice struct { // expected to be 2 words
+	l int            // length of the data array (must be first in struct, for 64-bit alignment necessary for 386)
+	v unsafe.Pointer // data array - Pointer (not uintptr) to maintain GC reference
+}
+
+func (x *atomicTypeInfoSlice) load() []rtid2ti {
+	xp := unsafe.Pointer(x)
+	x2 := *(*atomicTypeInfoSlice)(atomic.LoadPointer(&xp))
+	if x2.l == 0 {
+		return nil
+	}
+	return *(*[]rtid2ti)(unsafe.Pointer(&unsafeSlice{Data: x2.v, Len: x2.l, Cap: x2.l}))
+}
+
+func (x *atomicTypeInfoSlice) store(p []rtid2ti) {
+	s := (*unsafeSlice)(unsafe.Pointer(&p))
+	xp := unsafe.Pointer(x)
+	atomic.StorePointer(&xp, unsafe.Pointer(&atomicTypeInfoSlice{l: s.Len, v: s.Data}))
+}
+
+// --------------------------
+func (d *Decoder) raw(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*[]byte)(urv.ptr) = d.rawBytes()
+}
+
+func (d *Decoder) kString(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*string)(urv.ptr) = d.d.DecodeString()
+}
+
+func (d *Decoder) kBool(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*bool)(urv.ptr) = d.d.DecodeBool()
+}
+
+func (d *Decoder) kTime(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*time.Time)(urv.ptr) = d.d.DecodeTime()
+}
+
+func (d *Decoder) kFloat32(f *codecFnInfo, rv reflect.Value) {
+	fv := d.d.DecodeFloat64()
+	if chkOvf.Float32(fv) {
+		d.errorf("float32 overflow: %v", fv)
+	}
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*float32)(urv.ptr) = float32(fv)
+}
+
+func (d *Decoder) kFloat64(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*float64)(urv.ptr) = d.d.DecodeFloat64()
+}
+
+func (d *Decoder) kInt(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*int)(urv.ptr) = int(chkOvf.IntV(d.d.DecodeInt64(), intBitsize))
+}
+
+func (d *Decoder) kInt8(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*int8)(urv.ptr) = int8(chkOvf.IntV(d.d.DecodeInt64(), 8))
+}
+
+func (d *Decoder) kInt16(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*int16)(urv.ptr) = int16(chkOvf.IntV(d.d.DecodeInt64(), 16))
+}
+
+func (d *Decoder) kInt32(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*int32)(urv.ptr) = int32(chkOvf.IntV(d.d.DecodeInt64(), 32))
+}
+
+func (d *Decoder) kInt64(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*int64)(urv.ptr) = d.d.DecodeInt64()
+}
+
+func (d *Decoder) kUint(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uint)(urv.ptr) = uint(chkOvf.UintV(d.d.DecodeUint64(), uintBitsize))
+}
+
+func (d *Decoder) kUintptr(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uintptr)(urv.ptr) = uintptr(chkOvf.UintV(d.d.DecodeUint64(), uintBitsize))
+}
+
+func (d *Decoder) kUint8(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uint8)(urv.ptr) = uint8(chkOvf.UintV(d.d.DecodeUint64(), 8))
+}
+
+func (d *Decoder) kUint16(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uint16)(urv.ptr) = uint16(chkOvf.UintV(d.d.DecodeUint64(), 16))
+}
+
+func (d *Decoder) kUint32(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uint32)(urv.ptr) = uint32(chkOvf.UintV(d.d.DecodeUint64(), 32))
+}
+
+func (d *Decoder) kUint64(f *codecFnInfo, rv reflect.Value) {
+	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	*(*uint64)(urv.ptr) = d.d.DecodeUint64()
+}
+
+// ------------
+
+func (e *Encoder) kBool(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeBool(*(*bool)(v.ptr))
+}
+
+func (e *Encoder) kTime(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeTime(*(*time.Time)(v.ptr))
+}
+
+func (e *Encoder) kString(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeString(cUTF8, *(*string)(v.ptr))
+}
+
+func (e *Encoder) kFloat64(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeFloat64(*(*float64)(v.ptr))
+}
+
+func (e *Encoder) kFloat32(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeFloat32(*(*float32)(v.ptr))
+}
+
+func (e *Encoder) kInt(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeInt(int64(*(*int)(v.ptr)))
+}
+
+func (e *Encoder) kInt8(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeInt(int64(*(*int8)(v.ptr)))
+}
+
+func (e *Encoder) kInt16(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeInt(int64(*(*int16)(v.ptr)))
+}
+
+func (e *Encoder) kInt32(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeInt(int64(*(*int32)(v.ptr)))
+}
+
+func (e *Encoder) kInt64(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeInt(int64(*(*int64)(v.ptr)))
+}
+
+func (e *Encoder) kUint(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uint)(v.ptr)))
+}
+
+func (e *Encoder) kUint8(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uint8)(v.ptr)))
+}
+
+func (e *Encoder) kUint16(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uint16)(v.ptr)))
+}
+
+func (e *Encoder) kUint32(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uint32)(v.ptr)))
+}
+
+func (e *Encoder) kUint64(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uint64)(v.ptr)))
+}
+
+func (e *Encoder) kUintptr(f *codecFnInfo, rv reflect.Value) {
+	v := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+	e.e.EncodeUint(uint64(*(*uintptr)(v.ptr)))
+}
+
+// ------------
+
+// func (d *Decoder) raw(f *codecFnInfo, rv reflect.Value) {
+// 	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+// 	// if urv.flag&unsafeFlagIndir != 0 {
+// 	// 	urv.ptr = *(*unsafe.Pointer)(urv.ptr)
+// 	// }
+// 	*(*[]byte)(urv.ptr) = d.rawBytes()
+// }
+
+// func rv0t(rt reflect.Type) reflect.Value {
+// 	ut := (*unsafeIntf)(unsafe.Pointer(&rt))
+// 	// we need to determine whether ifaceIndir, and then whether to just pass 0 as the ptr
+// 	uv := unsafeReflectValue{ut.word, &zeroRTv, flag(rt.Kind())}
+// 	return *(*reflect.Value)(unsafe.Pointer(&uv})
+// }
+
+// func rv2i(rv reflect.Value) interface{} {
+// 	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+// 	// true references (map, func, chan, ptr - NOT slice) may be double-referenced as flagIndir
+// 	var ptr unsafe.Pointer
+// 	// kk := reflect.Kind(urv.flag & (1<<5 - 1))
+// 	// if (kk == reflect.Map || kk == reflect.Ptr || kk == reflect.Chan || kk == reflect.Func) && urv.flag&unsafeFlagIndir != 0 {
+// 	if refBitset.isset(byte(urv.flag&(1<<5-1))) && urv.flag&unsafeFlagIndir != 0 {
+// 		ptr = *(*unsafe.Pointer)(urv.ptr)
+// 	} else {
+// 		ptr = urv.ptr
+// 	}
+// 	return *(*interface{})(unsafe.Pointer(&unsafeIntf{typ: urv.typ, word: ptr}))
+// 	// return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: *(*unsafe.Pointer)(urv.ptr), typ: urv.typ}))
+// 	// return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// }
+
+// func definitelyNil(v interface{}) bool {
+// 	var ui *unsafeIntf = (*unsafeIntf)(unsafe.Pointer(&v))
+// 	if ui.word == nil {
+// 		return true
+// 	}
+// 	var tk = reflect.TypeOf(v).Kind()
+// 	return (tk == reflect.Interface || tk == reflect.Slice) && *(*unsafe.Pointer)(ui.word) == nil
+// 	fmt.Printf(">>>> definitely nil: isnil: %v, TYPE: \t%T, word: %v, *word: %v, type: %v, nil: %v\n",
+// 	v == nil, v, word, *((*unsafe.Pointer)(word)), ui.typ, nil)
+// }
+
+// func keepAlive4BytesView(v string) {
+// 	runtime.KeepAlive(v)
+// }
+
+// func keepAlive4StringView(v []byte) {
+// 	runtime.KeepAlive(v)
+// }
+
+// func rt2id(rt reflect.Type) uintptr {
+// 	return uintptr(((*unsafeIntf)(unsafe.Pointer(&rt))).word)
+// 	// var i interface{} = rt
+// 	// // ui := (*unsafeIntf)(unsafe.Pointer(&i))
+// 	// return ((*unsafeIntf)(unsafe.Pointer(&i))).word
+// }
+
+// func rv2i(rv reflect.Value) interface{} {
+// 	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+// 	// non-reference type: already indir
+// 	// reference type: depend on flagIndir property ('cos maybe was double-referenced)
+// 	// const (unsafeRvFlagKindMask    = 1<<5 - 1 , unsafeRvFlagIndir       = 1 << 7 )
+// 	// rvk := reflect.Kind(urv.flag & (1<<5 - 1))
+// 	// if (rvk == reflect.Chan ||
+// 	// 	rvk == reflect.Func ||
+// 	// 	rvk == reflect.Interface ||
+// 	// 	rvk == reflect.Map ||
+// 	// 	rvk == reflect.Ptr ||
+// 	// 	rvk == reflect.UnsafePointer) && urv.flag&(1<<8) != 0 {
+// 	// 	fmt.Printf(">>>>> ---- double indirect reference: %v, %v\n", rvk, rv.Type())
+// 	// 	return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: *(*unsafe.Pointer)(urv.ptr), typ: urv.typ}))
+// 	// }
+// 	if urv.flag&(1<<5-1) == uintptr(reflect.Map) && urv.flag&(1<<7) != 0 {
+// 		// fmt.Printf(">>>>> ---- double indirect reference: %v, %v\n", rvk, rv.Type())
+// 		return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: *(*unsafe.Pointer)(urv.ptr), typ: urv.typ}))
+// 	}
+// 	// fmt.Printf(">>>>> ++++ direct reference: %v, %v\n", rvk, rv.Type())
+// 	return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// }
+
+// const (
+// 	unsafeRvFlagKindMask    = 1<<5 - 1
+// 	unsafeRvKindDirectIface = 1 << 5
+// 	unsafeRvFlagIndir       = 1 << 7
+// 	unsafeRvFlagAddr        = 1 << 8
+// 	unsafeRvFlagMethod      = 1 << 9
+
+// 	_USE_RV_INTERFACE bool = false
+// 	_UNSAFE_RV_DEBUG       = true
+// )
+
+// type unsafeRtype struct {
+// 	_    [2]uintptr
+// 	_    uint32
+// 	_    uint8
+// 	_    uint8
+// 	_    uint8
+// 	kind uint8
+// 	_    [2]uintptr
+// 	_    int32
+// }
+
+// func _rv2i(rv reflect.Value) interface{} {
+// 	// Note: From use,
+// 	//   - it's never an interface
+// 	//   - the only calls here are for ifaceIndir types.
+// 	//     (though that conditional is wrong)
+// 	//     To know for sure, we need the value of t.kind (which is not exposed).
+// 	//
+// 	// Need to validate the path: type is indirect ==> only value is indirect ==> default (value is direct)
+// 	//    - Type indirect, Value indirect: ==> numbers, boolean, slice, struct, array, string
+// 	//    - Type Direct,   Value indirect: ==> map???
+// 	//    - Type Direct,   Value direct:   ==> pointers, unsafe.Pointer, func, chan, map
+// 	//
+// 	// TRANSLATES TO:
+// 	//    if typeIndirect { } else if valueIndirect { } else { }
+// 	//
+// 	// Since we don't deal with funcs, then "flagNethod" is unset, and can be ignored.
+
+// 	if _USE_RV_INTERFACE {
+// 		return rv.Interface()
+// 	}
+// 	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+
+// 	// if urv.flag&unsafeRvFlagMethod != 0 || urv.flag&unsafeRvFlagKindMask == uintptr(reflect.Interface) {
+// 	// 	println("***** IS flag method or interface: delegating to rv.Interface()")
+// 	// 	return rv.Interface()
+// 	// }
+
+// 	// if urv.flag&unsafeRvFlagKindMask == uintptr(reflect.Interface) {
+// 	// 	println("***** IS Interface: delegate to rv.Interface")
+// 	// 	return rv.Interface()
+// 	// }
+// 	// if urv.flag&unsafeRvFlagKindMask&unsafeRvKindDirectIface == 0 {
+// 	// 	if urv.flag&unsafeRvFlagAddr == 0 {
+// 	// 		println("***** IS ifaceIndir typ")
+// 	// 		// ui := unsafeIntf{word: urv.ptr, typ: urv.typ}
+// 	// 		// return *(*interface{})(unsafe.Pointer(&ui))
+// 	// 		// return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// 	// 	}
+// 	// } else if urv.flag&unsafeRvFlagIndir != 0 {
+// 	// 	println("***** IS flagindir")
+// 	// 	// return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: *(*unsafe.Pointer)(urv.ptr), typ: urv.typ}))
+// 	// } else {
+// 	// 	println("***** NOT flagindir")
+// 	// 	return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// 	// }
+// 	// println("***** default: delegate to rv.Interface")
+
+// 	urt := (*unsafeRtype)(unsafe.Pointer(urv.typ))
+// 	if _UNSAFE_RV_DEBUG {
+// 		fmt.Printf(">>>> start: %v: ", rv.Type())
+// 		fmt.Printf("%v - %v\n", *urv, *urt)
+// 	}
+// 	if urt.kind&unsafeRvKindDirectIface == 0 {
+// 		if _UNSAFE_RV_DEBUG {
+// 			fmt.Printf("**** +ifaceIndir type: %v\n", rv.Type())
+// 		}
+// 		// println("***** IS ifaceIndir typ")
+// 		// if true || urv.flag&unsafeRvFlagAddr == 0 {
+// 		// 	// println("    ***** IS NOT addr")
+// 		return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// 		// }
+// 	} else if urv.flag&unsafeRvFlagIndir != 0 {
+// 		if _UNSAFE_RV_DEBUG {
+// 			fmt.Printf("**** +flagIndir type: %v\n", rv.Type())
+// 		}
+// 		// println("***** IS flagindir")
+// 		return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: *(*unsafe.Pointer)(urv.ptr), typ: urv.typ}))
+// 	} else {
+// 		if _UNSAFE_RV_DEBUG {
+// 			fmt.Printf("**** -flagIndir type: %v\n", rv.Type())
+// 		}
+// 		// println("***** NOT flagindir")
+// 		return *(*interface{})(unsafe.Pointer(&unsafeIntf{word: urv.ptr, typ: urv.typ}))
+// 	}
+// 	// println("***** default: delegating to rv.Interface()")
+// 	// return rv.Interface()
+// }
+
+// var staticM0 = make(map[string]uint64)
+// var staticI0 = (int32)(-5)
+
+// func staticRv2iTest() {
+// 	i0 := (int32)(-5)
+// 	m0 := make(map[string]uint16)
+// 	m0["1"] = 1
+// 	for _, i := range []interface{}{
+// 		(int)(7),
+// 		(uint)(8),
+// 		(int16)(-9),
+// 		(uint16)(19),
+// 		(uintptr)(77),
+// 		(bool)(true),
+// 		float32(-32.7),
+// 		float64(64.9),
+// 		complex(float32(19), 5),
+// 		complex(float64(-32), 7),
+// 		[4]uint64{1, 2, 3, 4},
+// 		(chan<- int)(nil), // chan,
+// 		rv2i,              // func
+// 		io.Writer(ioutil.Discard),
+// 		make(map[string]uint),
+// 		(map[string]uint)(nil),
+// 		staticM0,
+// 		m0,
+// 		&m0,
+// 		i0,
+// 		&i0,
+// 		&staticI0,
+// 		&staticM0,
+// 		[]uint32{6, 7, 8},
+// 		"abc",
+// 		Raw{},
+// 		RawExt{},
+// 		&Raw{},
+// 		&RawExt{},
+// 		unsafe.Pointer(&i0),
+// 	} {
+// 		i2 := rv2i(reflect.ValueOf(i))
+// 		eq := reflect.DeepEqual(i, i2)
+// 		fmt.Printf(">>>> %v == %v? %v\n", i, i2, eq)
+// 	}
+// 	// os.Exit(0)
+// }
+
+// func init() {
+// 	staticRv2iTest()
+// }
+
+// func rv2i(rv reflect.Value) interface{} {
+// 	if _USE_RV_INTERFACE || rv.Kind() == reflect.Interface || rv.CanAddr() {
+// 		return rv.Interface()
+// 	}
+// 	// var i interface{}
+// 	// ui := (*unsafeIntf)(unsafe.Pointer(&i))
+// 	var ui unsafeIntf
+// 	urv := (*unsafeReflectValue)(unsafe.Pointer(&rv))
+// 	// fmt.Printf("urv: flag: %b, typ: %b, ptr: %b\n", urv.flag, uintptr(urv.typ), uintptr(urv.ptr))
+// 	if (urv.flag&unsafeRvFlagKindMask)&unsafeRvKindDirectIface == 0 {
+// 		if urv.flag&unsafeRvFlagAddr != 0 {
+// 			println("***** indirect and addressable! Needs typed move - delegate to rv.Interface()")
+// 			return rv.Interface()
+// 		}
+// 		println("****** indirect type/kind")
+// 		ui.word = urv.ptr
+// 	} else if urv.flag&unsafeRvFlagIndir != 0 {
+// 		println("****** unsafe rv flag indir")
+// 		ui.word = *(*unsafe.Pointer)(urv.ptr)
+// 	} else {
+// 		println("****** default: assign prt to word directly")
+// 		ui.word = urv.ptr
+// 	}
+// 	// ui.word = urv.ptr
+// 	ui.typ = urv.typ
+// 	// fmt.Printf("(pointers) ui.typ: %p, word: %p\n", ui.typ, ui.word)
+// 	// fmt.Printf("(binary)   ui.typ: %b, word: %b\n", uintptr(ui.typ), uintptr(ui.word))
+// 	return *(*interface{})(unsafe.Pointer(&ui))
+// 	// return i
+// }
diff --git a/vendor/github.com/ugorji/go/codec/json.go b/vendor/github.com/ugorji/go/codec/json.go
new file mode 100644
index 0000000000..bdd1996639
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/json.go
@@ -0,0 +1,1423 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+// By default, this json support uses base64 encoding for bytes, because you cannot
+// store and read any arbitrary string in json (only unicode).
+// However, the user can configre how to encode/decode bytes.
+//
+// This library specifically supports UTF-8 for encoding and decoding only.
+//
+// Note that the library will happily encode/decode things which are not valid
+// json e.g. a map[int64]string. We do it for consistency. With valid json,
+// we will encode and decode appropriately.
+// Users can specify their map type if necessary to force it.
+//
+// Note:
+//   - we cannot use strconv.Quote and strconv.Unquote because json quotes/unquotes differently.
+//     We implement it here.
+
+// Top-level methods of json(End|Dec)Driver (which are implementations of (en|de)cDriver
+// MUST not call one-another.
+
+import (
+	"bytes"
+	"encoding/base64"
+	"math"
+	"reflect"
+	"strconv"
+	"time"
+	"unicode"
+	"unicode/utf16"
+	"unicode/utf8"
+)
+
+//--------------------------------
+
+var jsonLiterals = [...]byte{
+	'"', 't', 'r', 'u', 'e', '"',
+	'"', 'f', 'a', 'l', 's', 'e', '"',
+	'"', 'n', 'u', 'l', 'l', '"',
+}
+
+const (
+	jsonLitTrueQ  = 0
+	jsonLitTrue   = 1
+	jsonLitFalseQ = 6
+	jsonLitFalse  = 7
+	jsonLitNullQ  = 13
+	jsonLitNull   = 14
+)
+
+const (
+	jsonU4Chk2 = '0'
+	jsonU4Chk1 = 'a' - 10
+	jsonU4Chk0 = 'A' - 10
+
+	jsonScratchArrayLen = 64
+)
+
+const (
+	// If !jsonValidateSymbols, decoding will be faster, by skipping some checks:
+	//   - If we see first character of null, false or true,
+	//     do not validate subsequent characters.
+	//   - e.g. if we see a n, assume null and skip next 3 characters,
+	//     and do not validate they are ull.
+	// P.S. Do not expect a significant decoding boost from this.
+	jsonValidateSymbols = true
+
+	jsonSpacesOrTabsLen = 128
+
+	jsonAlwaysReturnInternString = false
+)
+
+var (
+	// jsonTabs and jsonSpaces are used as caches for indents
+	jsonTabs, jsonSpaces [jsonSpacesOrTabsLen]byte
+
+	jsonCharHtmlSafeSet   bitset128
+	jsonCharSafeSet       bitset128
+	jsonCharWhitespaceSet bitset256
+	jsonNumSet            bitset256
+)
+
+func init() {
+	for i := 0; i < jsonSpacesOrTabsLen; i++ {
+		jsonSpaces[i] = ' '
+		jsonTabs[i] = '\t'
+	}
+
+	// populate the safe values as true: note: ASCII control characters are (0-31)
+	// jsonCharSafeSet:     all true except (0-31) " \
+	// jsonCharHtmlSafeSet: all true except (0-31) " \ < > &
+	var i byte
+	for i = 32; i < utf8.RuneSelf; i++ {
+		switch i {
+		case '"', '\\':
+		case '<', '>', '&':
+			jsonCharSafeSet.set(i) // = true
+		default:
+			jsonCharSafeSet.set(i)
+			jsonCharHtmlSafeSet.set(i)
+		}
+	}
+	for i = 0; i <= utf8.RuneSelf; i++ {
+		switch i {
+		case ' ', '\t', '\r', '\n':
+			jsonCharWhitespaceSet.set(i)
+		case '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'e', 'E', '.', '+', '-':
+			jsonNumSet.set(i)
+		}
+	}
+}
+
+// ----------------
+
+type jsonEncDriverTypical struct {
+	w encWriter
+	// w  *encWriterSwitch
+	b  *[jsonScratchArrayLen]byte
+	tw bool // term white space
+	c  containerState
+}
+
+func (e *jsonEncDriverTypical) typical() {}
+
+func (e *jsonEncDriverTypical) reset(ee *jsonEncDriver) {
+	e.w = ee.ew
+	// e.w = &ee.e.encWriterSwitch
+	e.b = &ee.b
+	e.tw = ee.h.TermWhitespace
+	e.c = 0
+}
+
+func (e *jsonEncDriverTypical) WriteArrayStart(length int) {
+	e.w.writen1('[')
+	e.c = containerArrayStart
+}
+
+func (e *jsonEncDriverTypical) WriteArrayElem() {
+	if e.c != containerArrayStart {
+		e.w.writen1(',')
+	}
+	e.c = containerArrayElem
+}
+
+func (e *jsonEncDriverTypical) WriteArrayEnd() {
+	e.w.writen1(']')
+	e.c = containerArrayEnd
+}
+
+func (e *jsonEncDriverTypical) WriteMapStart(length int) {
+	e.w.writen1('{')
+	e.c = containerMapStart
+}
+
+func (e *jsonEncDriverTypical) WriteMapElemKey() {
+	if e.c != containerMapStart {
+		e.w.writen1(',')
+	}
+	e.c = containerMapKey
+}
+
+func (e *jsonEncDriverTypical) WriteMapElemValue() {
+	e.w.writen1(':')
+	e.c = containerMapValue
+}
+
+func (e *jsonEncDriverTypical) WriteMapEnd() {
+	e.w.writen1('}')
+	e.c = containerMapEnd
+}
+
+func (e *jsonEncDriverTypical) EncodeBool(b bool) {
+	if b {
+		e.w.writeb(jsonLiterals[jsonLitTrue : jsonLitTrue+4])
+	} else {
+		e.w.writeb(jsonLiterals[jsonLitFalse : jsonLitFalse+5])
+	}
+}
+
+func (e *jsonEncDriverTypical) EncodeFloat64(f float64) {
+	fmt, prec := jsonFloatStrconvFmtPrec(f)
+	e.w.writeb(strconv.AppendFloat(e.b[:0], f, fmt, prec, 64))
+}
+
+func (e *jsonEncDriverTypical) EncodeInt(v int64) {
+	e.w.writeb(strconv.AppendInt(e.b[:0], v, 10))
+}
+
+func (e *jsonEncDriverTypical) EncodeUint(v uint64) {
+	e.w.writeb(strconv.AppendUint(e.b[:0], v, 10))
+}
+
+func (e *jsonEncDriverTypical) EncodeFloat32(f float32) {
+	e.EncodeFloat64(float64(f))
+}
+
+func (e *jsonEncDriverTypical) atEndOfEncode() {
+	if e.tw {
+		e.w.writen1(' ')
+	}
+}
+
+// ----------------
+
+type jsonEncDriverGeneric struct {
+	w encWriter // encWriter // *encWriterSwitch
+	b *[jsonScratchArrayLen]byte
+	c containerState
+	// ds string // indent string
+	di int8    // indent per
+	d  bool    // indenting?
+	dt bool    // indent using tabs
+	dl uint16  // indent level
+	ks bool    // map key as string
+	is byte    // integer as string
+	tw bool    // term white space
+	_  [7]byte // padding
+}
+
+// indent is done as below:
+//   - newline and indent are added before each mapKey or arrayElem
+//   - newline and indent are added before each ending,
+//     except there was no entry (so we can have {} or [])
+
+func (e *jsonEncDriverGeneric) reset(ee *jsonEncDriver) {
+	e.w = ee.ew
+	e.b = &ee.b
+	e.tw = ee.h.TermWhitespace
+	e.c = 0
+	e.d, e.dt, e.dl, e.di = false, false, 0, 0
+	h := ee.h
+	if h.Indent > 0 {
+		e.d = true
+		e.di = int8(h.Indent)
+	} else if h.Indent < 0 {
+		e.d = true
+		e.dt = true
+		e.di = int8(-h.Indent)
+	}
+	e.ks = h.MapKeyAsString
+	e.is = h.IntegerAsString
+}
+
+func (e *jsonEncDriverGeneric) WriteArrayStart(length int) {
+	if e.d {
+		e.dl++
+	}
+	e.w.writen1('[')
+	e.c = containerArrayStart
+}
+
+func (e *jsonEncDriverGeneric) WriteArrayElem() {
+	if e.c != containerArrayStart {
+		e.w.writen1(',')
+	}
+	if e.d {
+		e.writeIndent()
+	}
+	e.c = containerArrayElem
+}
+
+func (e *jsonEncDriverGeneric) WriteArrayEnd() {
+	if e.d {
+		e.dl--
+		if e.c != containerArrayStart {
+			e.writeIndent()
+		}
+	}
+	e.w.writen1(']')
+	e.c = containerArrayEnd
+}
+
+func (e *jsonEncDriverGeneric) WriteMapStart(length int) {
+	if e.d {
+		e.dl++
+	}
+	e.w.writen1('{')
+	e.c = containerMapStart
+}
+
+func (e *jsonEncDriverGeneric) WriteMapElemKey() {
+	if e.c != containerMapStart {
+		e.w.writen1(',')
+	}
+	if e.d {
+		e.writeIndent()
+	}
+	e.c = containerMapKey
+}
+
+func (e *jsonEncDriverGeneric) WriteMapElemValue() {
+	if e.d {
+		e.w.writen2(':', ' ')
+	} else {
+		e.w.writen1(':')
+	}
+	e.c = containerMapValue
+}
+
+func (e *jsonEncDriverGeneric) WriteMapEnd() {
+	if e.d {
+		e.dl--
+		if e.c != containerMapStart {
+			e.writeIndent()
+		}
+	}
+	e.w.writen1('}')
+	e.c = containerMapEnd
+}
+
+func (e *jsonEncDriverGeneric) writeIndent() {
+	e.w.writen1('\n')
+	x := int(e.di) * int(e.dl)
+	if e.dt {
+		for x > jsonSpacesOrTabsLen {
+			e.w.writeb(jsonTabs[:])
+			x -= jsonSpacesOrTabsLen
+		}
+		e.w.writeb(jsonTabs[:x])
+	} else {
+		for x > jsonSpacesOrTabsLen {
+			e.w.writeb(jsonSpaces[:])
+			x -= jsonSpacesOrTabsLen
+		}
+		e.w.writeb(jsonSpaces[:x])
+	}
+}
+
+func (e *jsonEncDriverGeneric) EncodeBool(b bool) {
+	if e.ks && e.c == containerMapKey {
+		if b {
+			e.w.writeb(jsonLiterals[jsonLitTrueQ : jsonLitTrueQ+6])
+		} else {
+			e.w.writeb(jsonLiterals[jsonLitFalseQ : jsonLitFalseQ+7])
+		}
+	} else {
+		if b {
+			e.w.writeb(jsonLiterals[jsonLitTrue : jsonLitTrue+4])
+		} else {
+			e.w.writeb(jsonLiterals[jsonLitFalse : jsonLitFalse+5])
+		}
+	}
+}
+
+func (e *jsonEncDriverGeneric) EncodeFloat64(f float64) {
+	// instead of using 'g', specify whether to use 'e' or 'f'
+	fmt, prec := jsonFloatStrconvFmtPrec(f)
+
+	var blen int
+	if e.ks && e.c == containerMapKey {
+		blen = 2 + len(strconv.AppendFloat(e.b[1:1], f, fmt, prec, 64))
+		e.b[0] = '"'
+		e.b[blen-1] = '"'
+	} else {
+		blen = len(strconv.AppendFloat(e.b[:0], f, fmt, prec, 64))
+	}
+	e.w.writeb(e.b[:blen])
+}
+
+func (e *jsonEncDriverGeneric) EncodeInt(v int64) {
+	x := e.is
+	if x == 'A' || x == 'L' && (v > 1<<53 || v < -(1<<53)) || (e.ks && e.c == containerMapKey) {
+		blen := 2 + len(strconv.AppendInt(e.b[1:1], v, 10))
+		e.b[0] = '"'
+		e.b[blen-1] = '"'
+		e.w.writeb(e.b[:blen])
+		return
+	}
+	e.w.writeb(strconv.AppendInt(e.b[:0], v, 10))
+}
+
+func (e *jsonEncDriverGeneric) EncodeUint(v uint64) {
+	x := e.is
+	if x == 'A' || x == 'L' && v > 1<<53 || (e.ks && e.c == containerMapKey) {
+		blen := 2 + len(strconv.AppendUint(e.b[1:1], v, 10))
+		e.b[0] = '"'
+		e.b[blen-1] = '"'
+		e.w.writeb(e.b[:blen])
+		return
+	}
+	e.w.writeb(strconv.AppendUint(e.b[:0], v, 10))
+}
+
+func (e *jsonEncDriverGeneric) EncodeFloat32(f float32) {
+	// e.encodeFloat(float64(f), 32)
+	// always encode all floats as IEEE 64-bit floating point.
+	// It also ensures that we can decode in full precision even if into a float32,
+	// as what is written is always to float64 precision.
+	e.EncodeFloat64(float64(f))
+}
+
+func (e *jsonEncDriverGeneric) atEndOfEncode() {
+	if e.tw {
+		if e.d {
+			e.w.writen1('\n')
+		} else {
+			e.w.writen1(' ')
+		}
+	}
+}
+
+// --------------------
+
+type jsonEncDriver struct {
+	noBuiltInTypes
+	e  *Encoder
+	h  *JsonHandle
+	ew encWriter // encWriter // *encWriterSwitch
+	se extWrapper
+	// ---- cpu cache line boundary?
+	bs []byte // scratch
+	// ---- cpu cache line boundary?
+	b [jsonScratchArrayLen]byte // scratch (encode time,
+}
+
+func (e *jsonEncDriver) EncodeNil() {
+	// We always encode nil as just null (never in quotes)
+	// This allows us to easily decode if a nil in the json stream
+	// ie if initial token is n.
+	e.ew.writeb(jsonLiterals[jsonLitNull : jsonLitNull+4])
+
+	// if e.h.MapKeyAsString && e.c == containerMapKey {
+	// 	e.ew.writeb(jsonLiterals[jsonLitNullQ : jsonLitNullQ+6])
+	// } else {
+	// 	e.ew.writeb(jsonLiterals[jsonLitNull : jsonLitNull+4])
+	// }
+}
+
+func (e *jsonEncDriver) EncodeTime(t time.Time) {
+	// Do NOT use MarshalJSON, as it allocates internally.
+	// instead, we call AppendFormat directly, using our scratch buffer (e.b)
+	if t.IsZero() {
+		e.EncodeNil()
+	} else {
+		e.b[0] = '"'
+		b := t.AppendFormat(e.b[1:1], time.RFC3339Nano)
+		e.b[len(b)+1] = '"'
+		e.ew.writeb(e.b[:len(b)+2])
+	}
+	// v, err := t.MarshalJSON(); if err != nil { e.e.error(err) } e.ew.writeb(v)
+}
+
+func (e *jsonEncDriver) EncodeExt(rv interface{}, xtag uint64, ext Ext, en *Encoder) {
+	if v := ext.ConvertExt(rv); v == nil {
+		e.EncodeNil()
+	} else {
+		en.encode(v)
+	}
+}
+
+func (e *jsonEncDriver) EncodeRawExt(re *RawExt, en *Encoder) {
+	// only encodes re.Value (never re.Data)
+	if re.Value == nil {
+		e.EncodeNil()
+	} else {
+		en.encode(re.Value)
+	}
+}
+
+func (e *jsonEncDriver) EncodeString(c charEncoding, v string) {
+	e.quoteStr(v)
+}
+
+func (e *jsonEncDriver) EncodeStringBytes(c charEncoding, v []byte) {
+	// if encoding raw bytes and RawBytesExt is configured, use it to encode
+	if v == nil {
+		e.EncodeNil()
+		return
+	}
+	if c == cRAW {
+		if e.se.InterfaceExt != nil {
+			e.EncodeExt(v, 0, &e.se, e.e)
+			return
+		}
+
+		slen := base64.StdEncoding.EncodedLen(len(v))
+		if cap(e.bs) >= slen+2 {
+			e.bs = e.bs[:slen+2]
+		} else {
+			e.bs = make([]byte, slen+2)
+		}
+		e.bs[0] = '"'
+		base64.StdEncoding.Encode(e.bs[1:], v)
+		e.bs[slen+1] = '"'
+		e.ew.writeb(e.bs)
+	} else {
+		e.quoteStr(stringView(v))
+	}
+}
+
+func (e *jsonEncDriver) EncodeAsis(v []byte) {
+	e.ew.writeb(v)
+}
+
+func (e *jsonEncDriver) quoteStr(s string) {
+	// adapted from std pkg encoding/json
+	const hex = "0123456789abcdef"
+	w := e.ew
+	htmlasis := e.h.HTMLCharsAsIs
+	w.writen1('"')
+	var start int
+	for i, slen := 0, len(s); i < slen; {
+		// encode all bytes < 0x20 (except \r, \n).
+		// also encode < > & to prevent security holes when served to some browsers.
+		if b := s[i]; b < utf8.RuneSelf {
+			// if 0x20 <= b && b != '\\' && b != '"' && b != '<' && b != '>' && b != '&' {
+			// if (htmlasis && jsonCharSafeSet.isset(b)) || jsonCharHtmlSafeSet.isset(b) {
+			if jsonCharHtmlSafeSet.isset(b) || (htmlasis && jsonCharSafeSet.isset(b)) {
+				i++
+				continue
+			}
+			if start < i {
+				w.writestr(s[start:i])
+			}
+			switch b {
+			case '\\', '"':
+				w.writen2('\\', b)
+			case '\n':
+				w.writen2('\\', 'n')
+			case '\r':
+				w.writen2('\\', 'r')
+			case '\b':
+				w.writen2('\\', 'b')
+			case '\f':
+				w.writen2('\\', 'f')
+			case '\t':
+				w.writen2('\\', 't')
+			default:
+				w.writestr(`\u00`)
+				w.writen2(hex[b>>4], hex[b&0xF])
+			}
+			i++
+			start = i
+			continue
+		}
+		c, size := utf8.DecodeRuneInString(s[i:])
+		if c == utf8.RuneError && size == 1 {
+			if start < i {
+				w.writestr(s[start:i])
+			}
+			w.writestr(`\ufffd`)
+			i += size
+			start = i
+			continue
+		}
+		// U+2028 is LINE SEPARATOR. U+2029 is PARAGRAPH SEPARATOR.
+		// Both technically valid JSON, but bomb on JSONP, so fix here unconditionally.
+		if c == '\u2028' || c == '\u2029' {
+			if start < i {
+				w.writestr(s[start:i])
+			}
+			w.writestr(`\u202`)
+			w.writen1(hex[c&0xF])
+			i += size
+			start = i
+			continue
+		}
+		i += size
+	}
+	if start < len(s) {
+		w.writestr(s[start:])
+	}
+	w.writen1('"')
+}
+
+type jsonDecDriver struct {
+	noBuiltInTypes
+	d  *Decoder
+	h  *JsonHandle
+	r  decReader // *decReaderSwitch // decReader
+	se extWrapper
+
+	// ---- writable fields during execution --- *try* to keep in sep cache line
+
+	c containerState
+	// tok is used to store the token read right after skipWhiteSpace.
+	tok   uint8
+	fnull bool    // found null from appendStringAsBytes
+	bs    []byte  // scratch. Initialized from b. Used for parsing strings or numbers.
+	bstr  [8]byte // scratch used for string \UXXX parsing
+	// ---- cpu cache line boundary?
+	b  [jsonScratchArrayLen]byte // scratch 1, used for parsing strings or numbers or time.Time
+	b2 [jsonScratchArrayLen]byte // scratch 2, used only for readUntil, decNumBytes
+
+	_ [3]uint64 // padding
+	// n jsonNum
+}
+
+// func jsonIsWS(b byte) bool {
+// 	// return b == ' ' || b == '\t' || b == '\r' || b == '\n'
+// 	return jsonCharWhitespaceSet.isset(b)
+// }
+
+func (d *jsonDecDriver) uncacheRead() {
+	if d.tok != 0 {
+		d.r.unreadn1()
+		d.tok = 0
+	}
+}
+
+func (d *jsonDecDriver) ReadMapStart() int {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	const xc uint8 = '{'
+	if d.tok != xc {
+		d.d.errorf("read map - expect char '%c' but got char '%c'", xc, d.tok)
+	}
+	d.tok = 0
+	d.c = containerMapStart
+	return -1
+}
+
+func (d *jsonDecDriver) ReadArrayStart() int {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	const xc uint8 = '['
+	if d.tok != xc {
+		d.d.errorf("read array - expect char '%c' but got char '%c'", xc, d.tok)
+	}
+	d.tok = 0
+	d.c = containerArrayStart
+	return -1
+}
+
+func (d *jsonDecDriver) CheckBreak() bool {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	return d.tok == '}' || d.tok == ']'
+}
+
+// For the ReadXXX methods below, we could just delegate to helper functions
+// readContainerState(c containerState, xc uint8, check bool)
+// - ReadArrayElem would become:
+//   readContainerState(containerArrayElem, ',', d.c != containerArrayStart)
+//
+// However, until mid-stack inlining comes in go1.11 which supports inlining of
+// one-liners, we explicitly write them all 5 out to elide the extra func call.
+//
+// TODO: For Go 1.11, if inlined, consider consolidating these.
+
+func (d *jsonDecDriver) ReadArrayElem() {
+	const xc uint8 = ','
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.c != containerArrayStart {
+		if d.tok != xc {
+			d.d.errorf("read array element - expect char '%c' but got char '%c'", xc, d.tok)
+		}
+		d.tok = 0
+	}
+	d.c = containerArrayElem
+}
+
+func (d *jsonDecDriver) ReadArrayEnd() {
+	const xc uint8 = ']'
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.tok != xc {
+		d.d.errorf("read array end - expect char '%c' but got char '%c'", xc, d.tok)
+	}
+	d.tok = 0
+	d.c = containerArrayEnd
+}
+
+func (d *jsonDecDriver) ReadMapElemKey() {
+	const xc uint8 = ','
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.c != containerMapStart {
+		if d.tok != xc {
+			d.d.errorf("read map key - expect char '%c' but got char '%c'", xc, d.tok)
+		}
+		d.tok = 0
+	}
+	d.c = containerMapKey
+}
+
+func (d *jsonDecDriver) ReadMapElemValue() {
+	const xc uint8 = ':'
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.tok != xc {
+		d.d.errorf("read map value - expect char '%c' but got char '%c'", xc, d.tok)
+	}
+	d.tok = 0
+	d.c = containerMapValue
+}
+
+func (d *jsonDecDriver) ReadMapEnd() {
+	const xc uint8 = '}'
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.tok != xc {
+		d.d.errorf("read map end - expect char '%c' but got char '%c'", xc, d.tok)
+	}
+	d.tok = 0
+	d.c = containerMapEnd
+}
+
+func (d *jsonDecDriver) readLit(length, fromIdx uint8) {
+	bs := d.r.readx(int(length))
+	d.tok = 0
+	if jsonValidateSymbols && !bytes.Equal(bs, jsonLiterals[fromIdx:fromIdx+length]) {
+		d.d.errorf("expecting %s: got %s", jsonLiterals[fromIdx:fromIdx+length], bs)
+		return
+	}
+}
+
+func (d *jsonDecDriver) TryDecodeAsNil() bool {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	// we shouldn't try to see if "null" was here, right?
+	// only the plain string: `null` denotes a nil (ie not quotes)
+	if d.tok == 'n' {
+		d.readLit(3, jsonLitNull+1) // (n)ull
+		return true
+	}
+	return false
+}
+
+func (d *jsonDecDriver) DecodeBool() (v bool) {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	fquot := d.c == containerMapKey && d.tok == '"'
+	if fquot {
+		d.tok = d.r.readn1()
+	}
+	switch d.tok {
+	case 'f':
+		d.readLit(4, jsonLitFalse+1) // (f)alse
+		// v = false
+	case 't':
+		d.readLit(3, jsonLitTrue+1) // (t)rue
+		v = true
+	default:
+		d.d.errorf("decode bool: got first char %c", d.tok)
+		// v = false // "unreachable"
+	}
+	if fquot {
+		d.r.readn1()
+	}
+	return
+}
+
+func (d *jsonDecDriver) DecodeTime() (t time.Time) {
+	// read string, and pass the string into json.unmarshal
+	d.appendStringAsBytes()
+	if d.fnull {
+		return
+	}
+	t, err := time.Parse(time.RFC3339, stringView(d.bs))
+	if err != nil {
+		d.d.errorv(err)
+	}
+	return
+}
+
+func (d *jsonDecDriver) ContainerType() (vt valueType) {
+	// check container type by checking the first char
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+
+	// optimize this, so we don't do 4 checks but do one computation.
+	// return jsonContainerSet[d.tok]
+
+	// ContainerType is mostly called for Map and Array,
+	// so this conditional is good enough (max 2 checks typically)
+	if b := d.tok; b == '{' {
+		return valueTypeMap
+	} else if b == '[' {
+		return valueTypeArray
+	} else if b == 'n' {
+		return valueTypeNil
+	} else if b == '"' {
+		return valueTypeString
+	}
+	return valueTypeUnset
+}
+
+func (d *jsonDecDriver) decNumBytes() (bs []byte) {
+	// stores num bytes in d.bs
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	if d.tok == '"' {
+		bs = d.r.readUntil(d.b2[:0], '"')
+		bs = bs[:len(bs)-1]
+	} else {
+		d.r.unreadn1()
+		bs = d.r.readTo(d.bs[:0], &jsonNumSet)
+	}
+	d.tok = 0
+	return bs
+}
+
+func (d *jsonDecDriver) DecodeUint64() (u uint64) {
+	bs := d.decNumBytes()
+	n, neg, badsyntax, overflow := jsonParseInteger(bs)
+	if overflow {
+		d.d.errorf("overflow parsing unsigned integer: %s", bs)
+	} else if neg {
+		d.d.errorf("minus found parsing unsigned integer: %s", bs)
+	} else if badsyntax {
+		// fallback: try to decode as float, and cast
+		n = d.decUint64ViaFloat(stringView(bs))
+	}
+	return n
+}
+
+func (d *jsonDecDriver) DecodeInt64() (i int64) {
+	const cutoff = uint64(1 << uint(64-1))
+	bs := d.decNumBytes()
+	n, neg, badsyntax, overflow := jsonParseInteger(bs)
+	if overflow {
+		d.d.errorf("overflow parsing integer: %s", bs)
+	} else if badsyntax {
+		// d.d.errorf("invalid syntax for integer: %s", bs)
+		// fallback: try to decode as float, and cast
+		if neg {
+			n = d.decUint64ViaFloat(stringView(bs[1:]))
+		} else {
+			n = d.decUint64ViaFloat(stringView(bs))
+		}
+	}
+	if neg {
+		if n > cutoff {
+			d.d.errorf("overflow parsing integer: %s", bs)
+		}
+		i = -(int64(n))
+	} else {
+		if n >= cutoff {
+			d.d.errorf("overflow parsing integer: %s", bs)
+		}
+		i = int64(n)
+	}
+	return
+}
+
+func (d *jsonDecDriver) decUint64ViaFloat(s string) (u uint64) {
+	f, err := strconv.ParseFloat(s, 64)
+	if err != nil {
+		d.d.errorf("invalid syntax for integer: %s", s)
+		// d.d.errorv(err)
+	}
+	fi, ff := math.Modf(f)
+	if ff > 0 {
+		d.d.errorf("fractional part found parsing integer: %s", s)
+	} else if fi > float64(math.MaxUint64) {
+		d.d.errorf("overflow parsing integer: %s", s)
+	}
+	return uint64(fi)
+}
+
+func (d *jsonDecDriver) DecodeFloat64() (f float64) {
+	bs := d.decNumBytes()
+	f, err := strconv.ParseFloat(stringView(bs), 64)
+	if err != nil {
+		d.d.errorv(err)
+	}
+	return
+}
+
+func (d *jsonDecDriver) DecodeExt(rv interface{}, xtag uint64, ext Ext) (realxtag uint64) {
+	if ext == nil {
+		re := rv.(*RawExt)
+		re.Tag = xtag
+		d.d.decode(&re.Value)
+	} else {
+		var v interface{}
+		d.d.decode(&v)
+		ext.UpdateExt(rv, v)
+	}
+	return
+}
+
+func (d *jsonDecDriver) DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte) {
+	// if decoding into raw bytes, and the RawBytesExt is configured, use it to decode.
+	if d.se.InterfaceExt != nil {
+		bsOut = bs
+		d.DecodeExt(&bsOut, 0, &d.se)
+		return
+	}
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	// check if an "array" of uint8's (see ContainerType for how to infer if an array)
+	if d.tok == '[' {
+		bsOut, _ = fastpathTV.DecSliceUint8V(bs, true, d.d)
+		return
+	}
+	d.appendStringAsBytes()
+	// base64 encodes []byte{} as "", and we encode nil []byte as null.
+	// Consequently, base64 should decode null as a nil []byte, and "" as an empty []byte{}.
+	// appendStringAsBytes returns a zero-len slice for both, so as not to reset d.bs.
+	// However, it sets a fnull field to true, so we can check if a null was found.
+	if len(d.bs) == 0 {
+		if d.fnull {
+			return nil
+		}
+		return []byte{}
+	}
+	bs0 := d.bs
+	slen := base64.StdEncoding.DecodedLen(len(bs0))
+	if slen <= cap(bs) {
+		bsOut = bs[:slen]
+	} else if zerocopy && slen <= cap(d.b2) {
+		bsOut = d.b2[:slen]
+	} else {
+		bsOut = make([]byte, slen)
+	}
+	slen2, err := base64.StdEncoding.Decode(bsOut, bs0)
+	if err != nil {
+		d.d.errorf("error decoding base64 binary '%s': %v", bs0, err)
+		return nil
+	}
+	if slen != slen2 {
+		bsOut = bsOut[:slen2]
+	}
+	return
+}
+
+func (d *jsonDecDriver) DecodeString() (s string) {
+	d.appendStringAsBytes()
+	return d.bsToString()
+}
+
+func (d *jsonDecDriver) DecodeStringAsBytes() (s []byte) {
+	d.appendStringAsBytes()
+	return d.bs
+}
+
+func (d *jsonDecDriver) appendStringAsBytes() {
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+
+	d.fnull = false
+	if d.tok != '"' {
+		// d.d.errorf("expect char '%c' but got char '%c'", '"', d.tok)
+		// handle non-string scalar: null, true, false or a number
+		switch d.tok {
+		case 'n':
+			d.readLit(3, jsonLitNull+1) // (n)ull
+			d.bs = d.bs[:0]
+			d.fnull = true
+		case 'f':
+			d.readLit(4, jsonLitFalse+1) // (f)alse
+			d.bs = d.bs[:5]
+			copy(d.bs, "false")
+		case 't':
+			d.readLit(3, jsonLitTrue+1) // (t)rue
+			d.bs = d.bs[:4]
+			copy(d.bs, "true")
+		default:
+			// try to parse a valid number
+			bs := d.decNumBytes()
+			if len(bs) <= cap(d.bs) {
+				d.bs = d.bs[:len(bs)]
+			} else {
+				d.bs = make([]byte, len(bs))
+			}
+			copy(d.bs, bs)
+		}
+		return
+	}
+
+	d.tok = 0
+	r := d.r
+	var cs = r.readUntil(d.b2[:0], '"')
+	var cslen = len(cs)
+	var c uint8
+	v := d.bs[:0]
+	// append on each byte seen can be expensive, so we just
+	// keep track of where we last read a contiguous set of
+	// non-special bytes (using cursor variable),
+	// and when we see a special byte
+	// e.g. end-of-slice, " or \,
+	// we will append the full range into the v slice before proceeding
+	for i, cursor := 0, 0; ; {
+		if i == cslen {
+			v = append(v, cs[cursor:]...)
+			cs = r.readUntil(d.b2[:0], '"')
+			cslen = len(cs)
+			i, cursor = 0, 0
+		}
+		c = cs[i]
+		if c == '"' {
+			v = append(v, cs[cursor:i]...)
+			break
+		}
+		if c != '\\' {
+			i++
+			continue
+		}
+		v = append(v, cs[cursor:i]...)
+		i++
+		c = cs[i]
+		switch c {
+		case '"', '\\', '/', '\'':
+			v = append(v, c)
+		case 'b':
+			v = append(v, '\b')
+		case 'f':
+			v = append(v, '\f')
+		case 'n':
+			v = append(v, '\n')
+		case 'r':
+			v = append(v, '\r')
+		case 't':
+			v = append(v, '\t')
+		case 'u':
+			var r rune
+			var rr uint32
+			if len(cs) < i+4 { // may help reduce bounds-checking
+				d.d.errorf("need at least 4 more bytes for unicode sequence")
+			}
+			// c = cs[i+4] // may help reduce bounds-checking
+			for j := 1; j < 5; j++ {
+				// best to use explicit if-else
+				// - not a table, etc which involve memory loads, array lookup with bounds checks, etc
+				c = cs[i+j]
+				if c >= '0' && c <= '9' {
+					rr = rr*16 + uint32(c-jsonU4Chk2)
+				} else if c >= 'a' && c <= 'f' {
+					rr = rr*16 + uint32(c-jsonU4Chk1)
+				} else if c >= 'A' && c <= 'F' {
+					rr = rr*16 + uint32(c-jsonU4Chk0)
+				} else {
+					r = unicode.ReplacementChar
+					i += 4
+					goto encode_rune
+				}
+			}
+			r = rune(rr)
+			i += 4
+			if utf16.IsSurrogate(r) {
+				if len(cs) >= i+6 && cs[i+2] == 'u' && cs[i+1] == '\\' {
+					i += 2
+					// c = cs[i+4] // may help reduce bounds-checking
+					var rr1 uint32
+					for j := 1; j < 5; j++ {
+						c = cs[i+j]
+						if c >= '0' && c <= '9' {
+							rr = rr*16 + uint32(c-jsonU4Chk2)
+						} else if c >= 'a' && c <= 'f' {
+							rr = rr*16 + uint32(c-jsonU4Chk1)
+						} else if c >= 'A' && c <= 'F' {
+							rr = rr*16 + uint32(c-jsonU4Chk0)
+						} else {
+							r = unicode.ReplacementChar
+							i += 4
+							goto encode_rune
+						}
+					}
+					r = utf16.DecodeRune(r, rune(rr1))
+					i += 4
+				} else {
+					r = unicode.ReplacementChar
+					goto encode_rune
+				}
+			}
+		encode_rune:
+			w2 := utf8.EncodeRune(d.bstr[:], r)
+			v = append(v, d.bstr[:w2]...)
+		default:
+			d.d.errorf("unsupported escaped value: %c", c)
+		}
+		i++
+		cursor = i
+	}
+	d.bs = v
+}
+
+func (d *jsonDecDriver) nakedNum(z *decNaked, bs []byte) (err error) {
+	const cutoff = uint64(1 << uint(64-1))
+	var n uint64
+	var neg, badsyntax, overflow bool
+
+	if d.h.PreferFloat {
+		goto F
+	}
+	n, neg, badsyntax, overflow = jsonParseInteger(bs)
+	if badsyntax || overflow {
+		goto F
+	}
+	if neg {
+		if n > cutoff {
+			goto F
+		}
+		z.v = valueTypeInt
+		z.i = -(int64(n))
+	} else if d.h.SignedInteger {
+		if n >= cutoff {
+			goto F
+		}
+		z.v = valueTypeInt
+		z.i = int64(n)
+	} else {
+		z.v = valueTypeUint
+		z.u = n
+	}
+	return
+F:
+	z.v = valueTypeFloat
+	z.f, err = strconv.ParseFloat(stringView(bs), 64)
+	return
+}
+
+func (d *jsonDecDriver) bsToString() string {
+	// if x := d.s.sc; x != nil && x.so && x.st == '}' { // map key
+	if jsonAlwaysReturnInternString || d.c == containerMapKey {
+		return d.d.string(d.bs)
+	}
+	return string(d.bs)
+}
+
+func (d *jsonDecDriver) DecodeNaked() {
+	z := d.d.n
+	// var decodeFurther bool
+
+	if d.tok == 0 {
+		d.tok = d.r.skip(&jsonCharWhitespaceSet)
+	}
+	switch d.tok {
+	case 'n':
+		d.readLit(3, jsonLitNull+1) // (n)ull
+		z.v = valueTypeNil
+	case 'f':
+		d.readLit(4, jsonLitFalse+1) // (f)alse
+		z.v = valueTypeBool
+		z.b = false
+	case 't':
+		d.readLit(3, jsonLitTrue+1) // (t)rue
+		z.v = valueTypeBool
+		z.b = true
+	case '{':
+		z.v = valueTypeMap // don't consume. kInterfaceNaked will call ReadMapStart
+	case '[':
+		z.v = valueTypeArray // don't consume. kInterfaceNaked will call ReadArrayStart
+	case '"':
+		// if a string, and MapKeyAsString, then try to decode it as a nil, bool or number first
+		d.appendStringAsBytes()
+		if len(d.bs) > 0 && d.c == containerMapKey && d.h.MapKeyAsString {
+			switch stringView(d.bs) {
+			case "null":
+				z.v = valueTypeNil
+			case "true":
+				z.v = valueTypeBool
+				z.b = true
+			case "false":
+				z.v = valueTypeBool
+				z.b = false
+			default:
+				// check if a number: float, int or uint
+				if err := d.nakedNum(z, d.bs); err != nil {
+					z.v = valueTypeString
+					z.s = d.bsToString()
+				}
+			}
+		} else {
+			z.v = valueTypeString
+			z.s = d.bsToString()
+		}
+	default: // number
+		bs := d.decNumBytes()
+		if len(bs) == 0 {
+			d.d.errorf("decode number from empty string")
+			return
+		}
+		if err := d.nakedNum(z, bs); err != nil {
+			d.d.errorf("decode number from %s: %v", bs, err)
+			return
+		}
+	}
+	// if decodeFurther {
+	// 	d.s.sc.retryRead()
+	// }
+	return
+}
+
+//----------------------
+
+// JsonHandle is a handle for JSON encoding format.
+//
+// Json is comprehensively supported:
+//    - decodes numbers into interface{} as int, uint or float64
+//      based on how the number looks and some config parameters e.g. PreferFloat, SignedInt, etc.
+//    - decode integers from float formatted numbers e.g. 1.27e+8
+//    - decode any json value (numbers, bool, etc) from quoted strings
+//    - configurable way to encode/decode []byte .
+//      by default, encodes and decodes []byte using base64 Std Encoding
+//    - UTF-8 support for encoding and decoding
+//
+// It has better performance than the json library in the standard library,
+// by leveraging the performance improvements of the codec library.
+//
+// In addition, it doesn't read more bytes than necessary during a decode, which allows
+// reading multiple values from a stream containing json and non-json content.
+// For example, a user can read a json value, then a cbor value, then a msgpack value,
+// all from the same stream in sequence.
+//
+// Note that, when decoding quoted strings, invalid UTF-8 or invalid UTF-16 surrogate pairs are
+// not treated as an error. Instead, they are replaced by the Unicode replacement character U+FFFD.
+type JsonHandle struct {
+	textEncodingType
+	BasicHandle
+
+	// Indent indicates how a value is encoded.
+	//   - If positive, indent by that number of spaces.
+	//   - If negative, indent by that number of tabs.
+	Indent int8
+
+	// IntegerAsString controls how integers (signed and unsigned) are encoded.
+	//
+	// Per the JSON Spec, JSON numbers are 64-bit floating point numbers.
+	// Consequently, integers > 2^53 cannot be represented as a JSON number without losing precision.
+	// This can be mitigated by configuring how to encode integers.
+	//
+	// IntegerAsString interpretes the following values:
+	//   - if 'L', then encode integers > 2^53 as a json string.
+	//   - if 'A', then encode all integers as a json string
+	//             containing the exact integer representation as a decimal.
+	//   - else    encode all integers as a json number (default)
+	IntegerAsString byte
+
+	// HTMLCharsAsIs controls how to encode some special characters to html: < > &
+	//
+	// By default, we encode them as \uXXX
+	// to prevent security holes when served from some browsers.
+	HTMLCharsAsIs bool
+
+	// PreferFloat says that we will default to decoding a number as a float.
+	// If not set, we will examine the characters of the number and decode as an
+	// integer type if it doesn't have any of the characters [.eE].
+	PreferFloat bool
+
+	// TermWhitespace says that we add a whitespace character
+	// at the end of an encoding.
+	//
+	// The whitespace is important, especially if using numbers in a context
+	// where multiple items are written to a stream.
+	TermWhitespace bool
+
+	// MapKeyAsString says to encode all map keys as strings.
+	//
+	// Use this to enforce strict json output.
+	// The only caveat is that nil value is ALWAYS written as null (never as "null")
+	MapKeyAsString bool
+
+	// _ [2]byte // padding
+
+	// Note: below, we store hardly-used items e.g. RawBytesExt is cached in the (en|de)cDriver.
+
+	// RawBytesExt, if configured, is used to encode and decode raw bytes in a custom way.
+	// If not configured, raw bytes are encoded to/from base64 text.
+	RawBytesExt InterfaceExt
+
+	_ [2]uint64 // padding
+}
+
+// Name returns the name of the handle: json
+func (h *JsonHandle) Name() string            { return "json" }
+func (h *JsonHandle) hasElemSeparators() bool { return true }
+func (h *JsonHandle) typical() bool {
+	return h.Indent == 0 && !h.MapKeyAsString && h.IntegerAsString != 'A' && h.IntegerAsString != 'L'
+}
+
+type jsonTypical interface {
+	typical()
+}
+
+func (h *JsonHandle) recreateEncDriver(ed encDriver) (v bool) {
+	_, v = ed.(jsonTypical)
+	return v != h.typical()
+}
+
+// SetInterfaceExt sets an extension
+func (h *JsonHandle) SetInterfaceExt(rt reflect.Type, tag uint64, ext InterfaceExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{bytesExtFailer{}, ext})
+}
+
+type jsonEncDriverTypicalImpl struct {
+	jsonEncDriver
+	jsonEncDriverTypical
+	_ [1]uint64 // padding
+}
+
+func (x *jsonEncDriverTypicalImpl) reset() {
+	x.jsonEncDriver.reset()
+	x.jsonEncDriverTypical.reset(&x.jsonEncDriver)
+}
+
+type jsonEncDriverGenericImpl struct {
+	jsonEncDriver
+	jsonEncDriverGeneric
+}
+
+func (x *jsonEncDriverGenericImpl) reset() {
+	x.jsonEncDriver.reset()
+	x.jsonEncDriverGeneric.reset(&x.jsonEncDriver)
+}
+
+func (h *JsonHandle) newEncDriver(e *Encoder) (ee encDriver) {
+	var hd *jsonEncDriver
+	if h.typical() {
+		var v jsonEncDriverTypicalImpl
+		ee = &v
+		hd = &v.jsonEncDriver
+	} else {
+		var v jsonEncDriverGenericImpl
+		ee = &v
+		hd = &v.jsonEncDriver
+	}
+	hd.e, hd.h, hd.bs = e, h, hd.b[:0]
+	hd.se.BytesExt = bytesExtFailer{}
+	ee.reset()
+	return
+}
+
+func (h *JsonHandle) newDecDriver(d *Decoder) decDriver {
+	// d := jsonDecDriver{r: r.(*bytesDecReader), h: h}
+	hd := jsonDecDriver{d: d, h: h}
+	hd.se.BytesExt = bytesExtFailer{}
+	hd.bs = hd.b[:0]
+	hd.reset()
+	return &hd
+}
+
+func (e *jsonEncDriver) reset() {
+	e.ew = e.e.w // e.e.w // &e.e.encWriterSwitch
+	e.se.InterfaceExt = e.h.RawBytesExt
+	if e.bs != nil {
+		e.bs = e.bs[:0]
+	}
+}
+
+func (d *jsonDecDriver) reset() {
+	d.r = d.d.r // &d.d.decReaderSwitch // d.d.r
+	d.se.InterfaceExt = d.h.RawBytesExt
+	if d.bs != nil {
+		d.bs = d.bs[:0]
+	}
+	d.c, d.tok = 0, 0
+	// d.n.reset()
+}
+
+func jsonFloatStrconvFmtPrec(f float64) (fmt byte, prec int) {
+	prec = -1
+	var abs = math.Abs(f)
+	if abs != 0 && (abs < 1e-6 || abs >= 1e21) {
+		fmt = 'e'
+	} else {
+		fmt = 'f'
+		// set prec to 1 iff mod is 0.
+		//     better than using jsonIsFloatBytesB2 to check if a . or E in the float bytes.
+		// this ensures that every float has an e or .0 in it.
+		if abs <= 1 {
+			if abs == 0 || abs == 1 {
+				prec = 1
+			}
+		} else if _, mod := math.Modf(abs); mod == 0 {
+			prec = 1
+		}
+	}
+	return
+}
+
+// custom-fitted version of strconv.Parse(Ui|I)nt.
+// Also ensures we don't have to search for .eE to determine if a float or not.
+func jsonParseInteger(s []byte) (n uint64, neg, badSyntax, overflow bool) {
+	const maxUint64 = (1<<64 - 1)
+	const cutoff = maxUint64/10 + 1
+
+	if len(s) == 0 {
+		badSyntax = true
+		return
+	}
+	switch s[0] {
+	case '+':
+		s = s[1:]
+	case '-':
+		s = s[1:]
+		neg = true
+	}
+	for _, c := range s {
+		if c < '0' || c > '9' {
+			badSyntax = true
+			return
+		}
+		// unsigned integers don't overflow well on multiplication, so check cutoff here
+		// e.g. (maxUint64-5)*10 doesn't overflow well ...
+		if n >= cutoff {
+			overflow = true
+			return
+		}
+		n *= 10
+		n1 := n + uint64(c-'0')
+		if n1 < n || n1 > maxUint64 {
+			overflow = true
+			return
+		}
+		n = n1
+	}
+	return
+}
+
+var _ decDriver = (*jsonDecDriver)(nil)
+var _ encDriver = (*jsonEncDriverGenericImpl)(nil)
+var _ encDriver = (*jsonEncDriverTypicalImpl)(nil)
+var _ jsonTypical = (*jsonEncDriverTypical)(nil)
diff --git a/vendor/github.com/ugorji/go/codec/msgpack.go b/vendor/github.com/ugorji/go/codec/msgpack.go
new file mode 100644
index 0000000000..3271579a1a
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/msgpack.go
@@ -0,0 +1,1092 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+/*
+MSGPACK
+
+Msgpack-c implementation powers the c, c++, python, ruby, etc libraries.
+We need to maintain compatibility with it and how it encodes integer values
+without caring about the type.
+
+For compatibility with behaviour of msgpack-c reference implementation:
+  - Go intX (>0) and uintX
+       IS ENCODED AS
+    msgpack +ve fixnum, unsigned
+  - Go intX (<0)
+       IS ENCODED AS
+    msgpack -ve fixnum, signed
+*/
+
+package codec
+
+import (
+	"fmt"
+	"io"
+	"math"
+	"net/rpc"
+	"reflect"
+	"time"
+)
+
+const (
+	mpPosFixNumMin byte = 0x00
+	mpPosFixNumMax      = 0x7f
+	mpFixMapMin         = 0x80
+	mpFixMapMax         = 0x8f
+	mpFixArrayMin       = 0x90
+	mpFixArrayMax       = 0x9f
+	mpFixStrMin         = 0xa0
+	mpFixStrMax         = 0xbf
+	mpNil               = 0xc0
+	_                   = 0xc1
+	mpFalse             = 0xc2
+	mpTrue              = 0xc3
+	mpFloat             = 0xca
+	mpDouble            = 0xcb
+	mpUint8             = 0xcc
+	mpUint16            = 0xcd
+	mpUint32            = 0xce
+	mpUint64            = 0xcf
+	mpInt8              = 0xd0
+	mpInt16             = 0xd1
+	mpInt32             = 0xd2
+	mpInt64             = 0xd3
+
+	// extensions below
+	mpBin8     = 0xc4
+	mpBin16    = 0xc5
+	mpBin32    = 0xc6
+	mpExt8     = 0xc7
+	mpExt16    = 0xc8
+	mpExt32    = 0xc9
+	mpFixExt1  = 0xd4
+	mpFixExt2  = 0xd5
+	mpFixExt4  = 0xd6
+	mpFixExt8  = 0xd7
+	mpFixExt16 = 0xd8
+
+	mpStr8  = 0xd9 // new
+	mpStr16 = 0xda
+	mpStr32 = 0xdb
+
+	mpArray16 = 0xdc
+	mpArray32 = 0xdd
+
+	mpMap16 = 0xde
+	mpMap32 = 0xdf
+
+	mpNegFixNumMin = 0xe0
+	mpNegFixNumMax = 0xff
+)
+
+var mpTimeExtTag int8 = -1
+var mpTimeExtTagU = uint8(mpTimeExtTag)
+
+// var mpdesc = map[byte]string{
+// 	mpPosFixNumMin: "PosFixNumMin",
+// 	mpPosFixNumMax: "PosFixNumMax",
+// 	mpFixMapMin:    "FixMapMin",
+// 	mpFixMapMax:    "FixMapMax",
+// 	mpFixArrayMin:  "FixArrayMin",
+// 	mpFixArrayMax:  "FixArrayMax",
+// 	mpFixStrMin:    "FixStrMin",
+// 	mpFixStrMax:    "FixStrMax",
+// 	mpNil:          "Nil",
+// 	mpFalse:        "False",
+// 	mpTrue:         "True",
+// 	mpFloat:        "Float",
+// 	mpDouble:       "Double",
+// 	mpUint8:        "Uint8",
+// 	mpUint16:       "Uint16",
+// 	mpUint32:       "Uint32",
+// 	mpUint64:       "Uint64",
+// 	mpInt8:         "Int8",
+// 	mpInt16:        "Int16",
+// 	mpInt32:        "Int32",
+// 	mpInt64:        "Int64",
+// 	mpBin8:         "Bin8",
+// 	mpBin16:        "Bin16",
+// 	mpBin32:        "Bin32",
+// 	mpExt8:         "Ext8",
+// 	mpExt16:        "Ext16",
+// 	mpExt32:        "Ext32",
+// 	mpFixExt1:      "FixExt1",
+// 	mpFixExt2:      "FixExt2",
+// 	mpFixExt4:      "FixExt4",
+// 	mpFixExt8:      "FixExt8",
+// 	mpFixExt16:     "FixExt16",
+// 	mpStr8:         "Str8",
+// 	mpStr16:        "Str16",
+// 	mpStr32:        "Str32",
+// 	mpArray16:      "Array16",
+// 	mpArray32:      "Array32",
+// 	mpMap16:        "Map16",
+// 	mpMap32:        "Map32",
+// 	mpNegFixNumMin: "NegFixNumMin",
+// 	mpNegFixNumMax: "NegFixNumMax",
+// }
+
+func mpdesc(bd byte) string {
+	switch bd {
+	case mpNil:
+		return "nil"
+	case mpFalse:
+		return "false"
+	case mpTrue:
+		return "true"
+	case mpFloat, mpDouble:
+		return "float"
+	case mpUint8, mpUint16, mpUint32, mpUint64:
+		return "uint"
+	case mpInt8, mpInt16, mpInt32, mpInt64:
+		return "int"
+	default:
+		switch {
+		case bd >= mpPosFixNumMin && bd <= mpPosFixNumMax:
+			return "int"
+		case bd >= mpNegFixNumMin && bd <= mpNegFixNumMax:
+			return "int"
+		case bd == mpStr8, bd == mpStr16, bd == mpStr32, bd >= mpFixStrMin && bd <= mpFixStrMax:
+			return "string|bytes"
+		case bd == mpBin8, bd == mpBin16, bd == mpBin32:
+			return "bytes"
+		case bd == mpArray16, bd == mpArray32, bd >= mpFixArrayMin && bd <= mpFixArrayMax:
+			return "array"
+		case bd == mpMap16, bd == mpMap32, bd >= mpFixMapMin && bd <= mpFixMapMax:
+			return "map"
+		case bd >= mpFixExt1 && bd <= mpFixExt16, bd >= mpExt8 && bd <= mpExt32:
+			return "ext"
+		default:
+			return "unknown"
+		}
+	}
+}
+
+// MsgpackSpecRpcMultiArgs is a special type which signifies to the MsgpackSpecRpcCodec
+// that the backend RPC service takes multiple arguments, which have been arranged
+// in sequence in the slice.
+//
+// The Codec then passes it AS-IS to the rpc service (without wrapping it in an
+// array of 1 element).
+type MsgpackSpecRpcMultiArgs []interface{}
+
+// A MsgpackContainer type specifies the different types of msgpackContainers.
+type msgpackContainerType struct {
+	fixCutoff                   int
+	bFixMin, b8, b16, b32       byte
+	hasFixMin, has8, has8Always bool
+}
+
+var (
+	msgpackContainerStr = msgpackContainerType{
+		32, mpFixStrMin, mpStr8, mpStr16, mpStr32, true, true, false,
+	}
+	msgpackContainerBin = msgpackContainerType{
+		0, 0, mpBin8, mpBin16, mpBin32, false, true, true,
+	}
+	msgpackContainerList = msgpackContainerType{
+		16, mpFixArrayMin, 0, mpArray16, mpArray32, true, false, false,
+	}
+	msgpackContainerMap = msgpackContainerType{
+		16, mpFixMapMin, 0, mpMap16, mpMap32, true, false, false,
+	}
+)
+
+//---------------------------------------------
+
+type msgpackEncDriver struct {
+	noBuiltInTypes
+	encDriverNoopContainerWriter
+	// encNoSeparator
+	e *Encoder
+	w encWriter
+	h *MsgpackHandle
+	x [8]byte
+	_ [3]uint64 // padding
+}
+
+func (e *msgpackEncDriver) EncodeNil() {
+	e.w.writen1(mpNil)
+}
+
+func (e *msgpackEncDriver) EncodeInt(i int64) {
+	// if i >= 0 {
+	// 	e.EncodeUint(uint64(i))
+	// } else if false &&
+	if i > math.MaxInt8 {
+		if i <= math.MaxInt16 {
+			e.w.writen1(mpInt16)
+			bigenHelper{e.x[:2], e.w}.writeUint16(uint16(i))
+		} else if i <= math.MaxInt32 {
+			e.w.writen1(mpInt32)
+			bigenHelper{e.x[:4], e.w}.writeUint32(uint32(i))
+		} else {
+			e.w.writen1(mpInt64)
+			bigenHelper{e.x[:8], e.w}.writeUint64(uint64(i))
+		}
+	} else if i >= -32 {
+		if e.h.NoFixedNum {
+			e.w.writen2(mpInt8, byte(i))
+		} else {
+			e.w.writen1(byte(i))
+		}
+	} else if i >= math.MinInt8 {
+		e.w.writen2(mpInt8, byte(i))
+	} else if i >= math.MinInt16 {
+		e.w.writen1(mpInt16)
+		bigenHelper{e.x[:2], e.w}.writeUint16(uint16(i))
+	} else if i >= math.MinInt32 {
+		e.w.writen1(mpInt32)
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(i))
+	} else {
+		e.w.writen1(mpInt64)
+		bigenHelper{e.x[:8], e.w}.writeUint64(uint64(i))
+	}
+}
+
+func (e *msgpackEncDriver) EncodeUint(i uint64) {
+	if i <= math.MaxInt8 {
+		if e.h.NoFixedNum {
+			e.w.writen2(mpUint8, byte(i))
+		} else {
+			e.w.writen1(byte(i))
+		}
+	} else if i <= math.MaxUint8 {
+		e.w.writen2(mpUint8, byte(i))
+	} else if i <= math.MaxUint16 {
+		e.w.writen1(mpUint16)
+		bigenHelper{e.x[:2], e.w}.writeUint16(uint16(i))
+	} else if i <= math.MaxUint32 {
+		e.w.writen1(mpUint32)
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(i))
+	} else {
+		e.w.writen1(mpUint64)
+		bigenHelper{e.x[:8], e.w}.writeUint64(uint64(i))
+	}
+}
+
+func (e *msgpackEncDriver) EncodeBool(b bool) {
+	if b {
+		e.w.writen1(mpTrue)
+	} else {
+		e.w.writen1(mpFalse)
+	}
+}
+
+func (e *msgpackEncDriver) EncodeFloat32(f float32) {
+	e.w.writen1(mpFloat)
+	bigenHelper{e.x[:4], e.w}.writeUint32(math.Float32bits(f))
+}
+
+func (e *msgpackEncDriver) EncodeFloat64(f float64) {
+	e.w.writen1(mpDouble)
+	bigenHelper{e.x[:8], e.w}.writeUint64(math.Float64bits(f))
+}
+
+func (e *msgpackEncDriver) EncodeTime(t time.Time) {
+	if t.IsZero() {
+		e.EncodeNil()
+		return
+	}
+	t = t.UTC()
+	sec, nsec := t.Unix(), uint64(t.Nanosecond())
+	var data64 uint64
+	var l = 4
+	if sec >= 0 && sec>>34 == 0 {
+		data64 = (nsec << 34) | uint64(sec)
+		if data64&0xffffffff00000000 != 0 {
+			l = 8
+		}
+	} else {
+		l = 12
+	}
+	if e.h.WriteExt {
+		e.encodeExtPreamble(mpTimeExtTagU, l)
+	} else {
+		e.writeContainerLen(msgpackContainerStr, l)
+	}
+	switch l {
+	case 4:
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(data64))
+	case 8:
+		bigenHelper{e.x[:8], e.w}.writeUint64(data64)
+	case 12:
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(nsec))
+		bigenHelper{e.x[:8], e.w}.writeUint64(uint64(sec))
+	}
+}
+
+func (e *msgpackEncDriver) EncodeExt(v interface{}, xtag uint64, ext Ext, _ *Encoder) {
+	bs := ext.WriteExt(v)
+	if bs == nil {
+		e.EncodeNil()
+		return
+	}
+	if e.h.WriteExt {
+		e.encodeExtPreamble(uint8(xtag), len(bs))
+		e.w.writeb(bs)
+	} else {
+		e.EncodeStringBytes(cRAW, bs)
+	}
+}
+
+func (e *msgpackEncDriver) EncodeRawExt(re *RawExt, _ *Encoder) {
+	e.encodeExtPreamble(uint8(re.Tag), len(re.Data))
+	e.w.writeb(re.Data)
+}
+
+func (e *msgpackEncDriver) encodeExtPreamble(xtag byte, l int) {
+	if l == 1 {
+		e.w.writen2(mpFixExt1, xtag)
+	} else if l == 2 {
+		e.w.writen2(mpFixExt2, xtag)
+	} else if l == 4 {
+		e.w.writen2(mpFixExt4, xtag)
+	} else if l == 8 {
+		e.w.writen2(mpFixExt8, xtag)
+	} else if l == 16 {
+		e.w.writen2(mpFixExt16, xtag)
+	} else if l < 256 {
+		e.w.writen2(mpExt8, byte(l))
+		e.w.writen1(xtag)
+	} else if l < 65536 {
+		e.w.writen1(mpExt16)
+		bigenHelper{e.x[:2], e.w}.writeUint16(uint16(l))
+		e.w.writen1(xtag)
+	} else {
+		e.w.writen1(mpExt32)
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(l))
+		e.w.writen1(xtag)
+	}
+}
+
+func (e *msgpackEncDriver) WriteArrayStart(length int) {
+	e.writeContainerLen(msgpackContainerList, length)
+}
+
+func (e *msgpackEncDriver) WriteMapStart(length int) {
+	e.writeContainerLen(msgpackContainerMap, length)
+}
+
+func (e *msgpackEncDriver) EncodeString(c charEncoding, s string) {
+	slen := len(s)
+	if c == cRAW && e.h.WriteExt {
+		e.writeContainerLen(msgpackContainerBin, slen)
+	} else {
+		e.writeContainerLen(msgpackContainerStr, slen)
+	}
+	if slen > 0 {
+		e.w.writestr(s)
+	}
+}
+
+func (e *msgpackEncDriver) EncodeStringBytes(c charEncoding, bs []byte) {
+	if bs == nil {
+		e.EncodeNil()
+		return
+	}
+	slen := len(bs)
+	if c == cRAW && e.h.WriteExt {
+		e.writeContainerLen(msgpackContainerBin, slen)
+	} else {
+		e.writeContainerLen(msgpackContainerStr, slen)
+	}
+	if slen > 0 {
+		e.w.writeb(bs)
+	}
+}
+
+func (e *msgpackEncDriver) writeContainerLen(ct msgpackContainerType, l int) {
+	if ct.hasFixMin && l < ct.fixCutoff {
+		e.w.writen1(ct.bFixMin | byte(l))
+	} else if ct.has8 && l < 256 && (ct.has8Always || e.h.WriteExt) {
+		e.w.writen2(ct.b8, uint8(l))
+	} else if l < 65536 {
+		e.w.writen1(ct.b16)
+		bigenHelper{e.x[:2], e.w}.writeUint16(uint16(l))
+	} else {
+		e.w.writen1(ct.b32)
+		bigenHelper{e.x[:4], e.w}.writeUint32(uint32(l))
+	}
+}
+
+//---------------------------------------------
+
+type msgpackDecDriver struct {
+	d *Decoder
+	r decReader // *Decoder decReader decReaderT
+	h *MsgpackHandle
+	// b      [scratchByteArrayLen]byte
+	bd     byte
+	bdRead bool
+	br     bool // bytes reader
+	noBuiltInTypes
+	// noStreamingCodec
+	// decNoSeparator
+	decDriverNoopContainerReader
+	_ [3]uint64 // padding
+}
+
+// Note: This returns either a primitive (int, bool, etc) for non-containers,
+// or a containerType, or a specific type denoting nil or extension.
+// It is called when a nil interface{} is passed, leaving it up to the DecDriver
+// to introspect the stream and decide how best to decode.
+// It deciphers the value by looking at the stream first.
+func (d *msgpackDecDriver) DecodeNaked() {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	bd := d.bd
+	n := d.d.n
+	var decodeFurther bool
+
+	switch bd {
+	case mpNil:
+		n.v = valueTypeNil
+		d.bdRead = false
+	case mpFalse:
+		n.v = valueTypeBool
+		n.b = false
+	case mpTrue:
+		n.v = valueTypeBool
+		n.b = true
+
+	case mpFloat:
+		n.v = valueTypeFloat
+		n.f = float64(math.Float32frombits(bigen.Uint32(d.r.readx(4))))
+	case mpDouble:
+		n.v = valueTypeFloat
+		n.f = math.Float64frombits(bigen.Uint64(d.r.readx(8)))
+
+	case mpUint8:
+		n.v = valueTypeUint
+		n.u = uint64(d.r.readn1())
+	case mpUint16:
+		n.v = valueTypeUint
+		n.u = uint64(bigen.Uint16(d.r.readx(2)))
+	case mpUint32:
+		n.v = valueTypeUint
+		n.u = uint64(bigen.Uint32(d.r.readx(4)))
+	case mpUint64:
+		n.v = valueTypeUint
+		n.u = uint64(bigen.Uint64(d.r.readx(8)))
+
+	case mpInt8:
+		n.v = valueTypeInt
+		n.i = int64(int8(d.r.readn1()))
+	case mpInt16:
+		n.v = valueTypeInt
+		n.i = int64(int16(bigen.Uint16(d.r.readx(2))))
+	case mpInt32:
+		n.v = valueTypeInt
+		n.i = int64(int32(bigen.Uint32(d.r.readx(4))))
+	case mpInt64:
+		n.v = valueTypeInt
+		n.i = int64(int64(bigen.Uint64(d.r.readx(8))))
+
+	default:
+		switch {
+		case bd >= mpPosFixNumMin && bd <= mpPosFixNumMax:
+			// positive fixnum (always signed)
+			n.v = valueTypeInt
+			n.i = int64(int8(bd))
+		case bd >= mpNegFixNumMin && bd <= mpNegFixNumMax:
+			// negative fixnum
+			n.v = valueTypeInt
+			n.i = int64(int8(bd))
+		case bd == mpStr8, bd == mpStr16, bd == mpStr32, bd >= mpFixStrMin && bd <= mpFixStrMax:
+			if d.h.RawToString {
+				n.v = valueTypeString
+				n.s = d.DecodeString()
+			} else {
+				n.v = valueTypeBytes
+				n.l = d.DecodeBytes(nil, false)
+			}
+		case bd == mpBin8, bd == mpBin16, bd == mpBin32:
+			n.v = valueTypeBytes
+			n.l = d.DecodeBytes(nil, false)
+		case bd == mpArray16, bd == mpArray32, bd >= mpFixArrayMin && bd <= mpFixArrayMax:
+			n.v = valueTypeArray
+			decodeFurther = true
+		case bd == mpMap16, bd == mpMap32, bd >= mpFixMapMin && bd <= mpFixMapMax:
+			n.v = valueTypeMap
+			decodeFurther = true
+		case bd >= mpFixExt1 && bd <= mpFixExt16, bd >= mpExt8 && bd <= mpExt32:
+			n.v = valueTypeExt
+			clen := d.readExtLen()
+			n.u = uint64(d.r.readn1())
+			if n.u == uint64(mpTimeExtTagU) {
+				n.v = valueTypeTime
+				n.t = d.decodeTime(clen)
+			} else {
+				n.l = d.r.readx(clen)
+			}
+		default:
+			d.d.errorf("cannot infer value: %s: Ox%x/%d/%s", msgBadDesc, bd, bd, mpdesc(bd))
+		}
+	}
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	if n.v == valueTypeUint && d.h.SignedInteger {
+		n.v = valueTypeInt
+		n.i = int64(n.u)
+	}
+	return
+}
+
+// int can be decoded from msgpack type: intXXX or uintXXX
+func (d *msgpackDecDriver) DecodeInt64() (i int64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch d.bd {
+	case mpUint8:
+		i = int64(uint64(d.r.readn1()))
+	case mpUint16:
+		i = int64(uint64(bigen.Uint16(d.r.readx(2))))
+	case mpUint32:
+		i = int64(uint64(bigen.Uint32(d.r.readx(4))))
+	case mpUint64:
+		i = int64(bigen.Uint64(d.r.readx(8)))
+	case mpInt8:
+		i = int64(int8(d.r.readn1()))
+	case mpInt16:
+		i = int64(int16(bigen.Uint16(d.r.readx(2))))
+	case mpInt32:
+		i = int64(int32(bigen.Uint32(d.r.readx(4))))
+	case mpInt64:
+		i = int64(bigen.Uint64(d.r.readx(8)))
+	default:
+		switch {
+		case d.bd >= mpPosFixNumMin && d.bd <= mpPosFixNumMax:
+			i = int64(int8(d.bd))
+		case d.bd >= mpNegFixNumMin && d.bd <= mpNegFixNumMax:
+			i = int64(int8(d.bd))
+		default:
+			d.d.errorf("cannot decode signed integer: %s: %x/%s", msgBadDesc, d.bd, mpdesc(d.bd))
+			return
+		}
+	}
+	d.bdRead = false
+	return
+}
+
+// uint can be decoded from msgpack type: intXXX or uintXXX
+func (d *msgpackDecDriver) DecodeUint64() (ui uint64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch d.bd {
+	case mpUint8:
+		ui = uint64(d.r.readn1())
+	case mpUint16:
+		ui = uint64(bigen.Uint16(d.r.readx(2)))
+	case mpUint32:
+		ui = uint64(bigen.Uint32(d.r.readx(4)))
+	case mpUint64:
+		ui = bigen.Uint64(d.r.readx(8))
+	case mpInt8:
+		if i := int64(int8(d.r.readn1())); i >= 0 {
+			ui = uint64(i)
+		} else {
+			d.d.errorf("assigning negative signed value: %v, to unsigned type", i)
+			return
+		}
+	case mpInt16:
+		if i := int64(int16(bigen.Uint16(d.r.readx(2)))); i >= 0 {
+			ui = uint64(i)
+		} else {
+			d.d.errorf("assigning negative signed value: %v, to unsigned type", i)
+			return
+		}
+	case mpInt32:
+		if i := int64(int32(bigen.Uint32(d.r.readx(4)))); i >= 0 {
+			ui = uint64(i)
+		} else {
+			d.d.errorf("assigning negative signed value: %v, to unsigned type", i)
+			return
+		}
+	case mpInt64:
+		if i := int64(bigen.Uint64(d.r.readx(8))); i >= 0 {
+			ui = uint64(i)
+		} else {
+			d.d.errorf("assigning negative signed value: %v, to unsigned type", i)
+			return
+		}
+	default:
+		switch {
+		case d.bd >= mpPosFixNumMin && d.bd <= mpPosFixNumMax:
+			ui = uint64(d.bd)
+		case d.bd >= mpNegFixNumMin && d.bd <= mpNegFixNumMax:
+			d.d.errorf("assigning negative signed value: %v, to unsigned type", int(d.bd))
+			return
+		default:
+			d.d.errorf("cannot decode unsigned integer: %s: %x/%s", msgBadDesc, d.bd, mpdesc(d.bd))
+			return
+		}
+	}
+	d.bdRead = false
+	return
+}
+
+// float can either be decoded from msgpack type: float, double or intX
+func (d *msgpackDecDriver) DecodeFloat64() (f float64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == mpFloat {
+		f = float64(math.Float32frombits(bigen.Uint32(d.r.readx(4))))
+	} else if d.bd == mpDouble {
+		f = math.Float64frombits(bigen.Uint64(d.r.readx(8)))
+	} else {
+		f = float64(d.DecodeInt64())
+	}
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool, fixnum 0 or 1.
+func (d *msgpackDecDriver) DecodeBool() (b bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == mpFalse || d.bd == 0 {
+		// b = false
+	} else if d.bd == mpTrue || d.bd == 1 {
+		b = true
+	} else {
+		d.d.errorf("cannot decode bool: %s: %x/%s", msgBadDesc, d.bd, mpdesc(d.bd))
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *msgpackDecDriver) DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+
+	// check if an "array" of uint8's (see ContainerType for how to infer if an array)
+	bd := d.bd
+	// DecodeBytes could be from: bin str fixstr fixarray array ...
+	var clen int
+	vt := d.ContainerType()
+	switch vt {
+	case valueTypeBytes:
+		// valueTypeBytes may be a mpBin or an mpStr container
+		if bd == mpBin8 || bd == mpBin16 || bd == mpBin32 {
+			clen = d.readContainerLen(msgpackContainerBin)
+		} else {
+			clen = d.readContainerLen(msgpackContainerStr)
+		}
+	case valueTypeString:
+		clen = d.readContainerLen(msgpackContainerStr)
+	case valueTypeArray:
+		if zerocopy && len(bs) == 0 {
+			bs = d.d.b[:]
+		}
+		bsOut, _ = fastpathTV.DecSliceUint8V(bs, true, d.d)
+		return
+	default:
+		d.d.errorf("invalid container type: expecting bin|str|array, got: 0x%x", uint8(vt))
+		return
+	}
+
+	// these are (bin|str)(8|16|32)
+	d.bdRead = false
+	// bytes may be nil, so handle it. if nil, clen=-1.
+	if clen < 0 {
+		return nil
+	}
+	if zerocopy {
+		if d.br {
+			return d.r.readx(clen)
+		} else if len(bs) == 0 {
+			bs = d.d.b[:]
+		}
+	}
+	return decByteSlice(d.r, clen, d.h.MaxInitLen, bs)
+}
+
+func (d *msgpackDecDriver) DecodeString() (s string) {
+	return string(d.DecodeBytes(d.d.b[:], true))
+}
+
+func (d *msgpackDecDriver) DecodeStringAsBytes() (s []byte) {
+	return d.DecodeBytes(d.d.b[:], true)
+}
+
+func (d *msgpackDecDriver) readNextBd() {
+	d.bd = d.r.readn1()
+	d.bdRead = true
+}
+
+func (d *msgpackDecDriver) uncacheRead() {
+	if d.bdRead {
+		d.r.unreadn1()
+		d.bdRead = false
+	}
+}
+
+func (d *msgpackDecDriver) ContainerType() (vt valueType) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	bd := d.bd
+	if bd == mpNil {
+		return valueTypeNil
+	} else if bd == mpBin8 || bd == mpBin16 || bd == mpBin32 ||
+		(!d.h.RawToString &&
+			(bd == mpStr8 || bd == mpStr16 || bd == mpStr32 || (bd >= mpFixStrMin && bd <= mpFixStrMax))) {
+		return valueTypeBytes
+	} else if d.h.RawToString &&
+		(bd == mpStr8 || bd == mpStr16 || bd == mpStr32 || (bd >= mpFixStrMin && bd <= mpFixStrMax)) {
+		return valueTypeString
+	} else if bd == mpArray16 || bd == mpArray32 || (bd >= mpFixArrayMin && bd <= mpFixArrayMax) {
+		return valueTypeArray
+	} else if bd == mpMap16 || bd == mpMap32 || (bd >= mpFixMapMin && bd <= mpFixMapMax) {
+		return valueTypeMap
+	}
+	// else {
+	// d.d.errorf("isContainerType: unsupported parameter: %v", vt)
+	// }
+	return valueTypeUnset
+}
+
+func (d *msgpackDecDriver) TryDecodeAsNil() (v bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == mpNil {
+		d.bdRead = false
+		return true
+	}
+	return
+}
+
+func (d *msgpackDecDriver) readContainerLen(ct msgpackContainerType) (clen int) {
+	bd := d.bd
+	if bd == mpNil {
+		clen = -1 // to represent nil
+	} else if bd == ct.b8 {
+		clen = int(d.r.readn1())
+	} else if bd == ct.b16 {
+		clen = int(bigen.Uint16(d.r.readx(2)))
+	} else if bd == ct.b32 {
+		clen = int(bigen.Uint32(d.r.readx(4)))
+	} else if (ct.bFixMin & bd) == ct.bFixMin {
+		clen = int(ct.bFixMin ^ bd)
+	} else {
+		d.d.errorf("cannot read container length: %s: hex: %x, decimal: %d", msgBadDesc, bd, bd)
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *msgpackDecDriver) ReadMapStart() int {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	return d.readContainerLen(msgpackContainerMap)
+}
+
+func (d *msgpackDecDriver) ReadArrayStart() int {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	return d.readContainerLen(msgpackContainerList)
+}
+
+func (d *msgpackDecDriver) readExtLen() (clen int) {
+	switch d.bd {
+	case mpNil:
+		clen = -1 // to represent nil
+	case mpFixExt1:
+		clen = 1
+	case mpFixExt2:
+		clen = 2
+	case mpFixExt4:
+		clen = 4
+	case mpFixExt8:
+		clen = 8
+	case mpFixExt16:
+		clen = 16
+	case mpExt8:
+		clen = int(d.r.readn1())
+	case mpExt16:
+		clen = int(bigen.Uint16(d.r.readx(2)))
+	case mpExt32:
+		clen = int(bigen.Uint32(d.r.readx(4)))
+	default:
+		d.d.errorf("decoding ext bytes: found unexpected byte: %x", d.bd)
+		return
+	}
+	return
+}
+
+func (d *msgpackDecDriver) DecodeTime() (t time.Time) {
+	// decode time from string bytes or ext
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == mpNil {
+		d.bdRead = false
+		return
+	}
+	var clen int
+	switch d.ContainerType() {
+	case valueTypeBytes, valueTypeString:
+		clen = d.readContainerLen(msgpackContainerStr)
+	default:
+		// expect to see mpFixExt4,-1 OR mpFixExt8,-1 OR mpExt8,12,-1
+		d.bdRead = false
+		b2 := d.r.readn1()
+		if d.bd == mpFixExt4 && b2 == mpTimeExtTagU {
+			clen = 4
+		} else if d.bd == mpFixExt8 && b2 == mpTimeExtTagU {
+			clen = 8
+		} else if d.bd == mpExt8 && b2 == 12 && d.r.readn1() == mpTimeExtTagU {
+			clen = 12
+		} else {
+			d.d.errorf("invalid bytes for decoding time as extension: got 0x%x, 0x%x", d.bd, b2)
+			return
+		}
+	}
+	return d.decodeTime(clen)
+}
+
+func (d *msgpackDecDriver) decodeTime(clen int) (t time.Time) {
+	// bs = d.r.readx(clen)
+	d.bdRead = false
+	switch clen {
+	case 4:
+		t = time.Unix(int64(bigen.Uint32(d.r.readx(4))), 0).UTC()
+	case 8:
+		tv := bigen.Uint64(d.r.readx(8))
+		t = time.Unix(int64(tv&0x00000003ffffffff), int64(tv>>34)).UTC()
+	case 12:
+		nsec := bigen.Uint32(d.r.readx(4))
+		sec := bigen.Uint64(d.r.readx(8))
+		t = time.Unix(int64(sec), int64(nsec)).UTC()
+	default:
+		d.d.errorf("invalid length of bytes for decoding time - expecting 4 or 8 or 12, got %d", clen)
+		return
+	}
+	return
+}
+
+func (d *msgpackDecDriver) DecodeExt(rv interface{}, xtag uint64, ext Ext) (realxtag uint64) {
+	if xtag > 0xff {
+		d.d.errorf("ext: tag must be <= 0xff; got: %v", xtag)
+		return
+	}
+	realxtag1, xbs := d.decodeExtV(ext != nil, uint8(xtag))
+	realxtag = uint64(realxtag1)
+	if ext == nil {
+		re := rv.(*RawExt)
+		re.Tag = realxtag
+		re.Data = detachZeroCopyBytes(d.br, re.Data, xbs)
+	} else {
+		ext.ReadExt(rv, xbs)
+	}
+	return
+}
+
+func (d *msgpackDecDriver) decodeExtV(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	xbd := d.bd
+	if xbd == mpBin8 || xbd == mpBin16 || xbd == mpBin32 {
+		xbs = d.DecodeBytes(nil, true)
+	} else if xbd == mpStr8 || xbd == mpStr16 || xbd == mpStr32 ||
+		(xbd >= mpFixStrMin && xbd <= mpFixStrMax) {
+		xbs = d.DecodeStringAsBytes()
+	} else {
+		clen := d.readExtLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			d.d.errorf("wrong extension tag - got %b, expecting %v", xtag, tag)
+			return
+		}
+		xbs = d.r.readx(clen)
+	}
+	d.bdRead = false
+	return
+}
+
+//--------------------------------------------------
+
+//MsgpackHandle is a Handle for the Msgpack Schema-Free Encoding Format.
+type MsgpackHandle struct {
+	BasicHandle
+
+	// RawToString controls how raw bytes are decoded into a nil interface{}.
+	RawToString bool
+
+	// NoFixedNum says to output all signed integers as 2-bytes, never as 1-byte fixednum.
+	NoFixedNum bool
+
+	// WriteExt flag supports encoding configured extensions with extension tags.
+	// It also controls whether other elements of the new spec are encoded (ie Str8).
+	//
+	// With WriteExt=false, configured extensions are serialized as raw bytes
+	// and Str8 is not encoded.
+	//
+	// A stream can still be decoded into a typed value, provided an appropriate value
+	// is provided, but the type cannot be inferred from the stream. If no appropriate
+	// type is provided (e.g. decoding into a nil interface{}), you get back
+	// a []byte or string based on the setting of RawToString.
+	WriteExt bool
+
+	binaryEncodingType
+	noElemSeparators
+
+	// _ [1]uint64 // padding
+}
+
+// Name returns the name of the handle: msgpack
+func (h *MsgpackHandle) Name() string { return "msgpack" }
+
+// SetBytesExt sets an extension
+func (h *MsgpackHandle) SetBytesExt(rt reflect.Type, tag uint64, ext BytesExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{ext, interfaceExtFailer{}})
+}
+
+func (h *MsgpackHandle) newEncDriver(e *Encoder) encDriver {
+	return &msgpackEncDriver{e: e, w: e.w, h: h}
+}
+
+func (h *MsgpackHandle) newDecDriver(d *Decoder) decDriver {
+	return &msgpackDecDriver{d: d, h: h, r: d.r, br: d.bytes}
+}
+
+func (e *msgpackEncDriver) reset() {
+	e.w = e.e.w
+}
+
+func (d *msgpackDecDriver) reset() {
+	d.r, d.br = d.d.r, d.d.bytes
+	d.bd, d.bdRead = 0, false
+}
+
+//--------------------------------------------------
+
+type msgpackSpecRpcCodec struct {
+	rpcCodec
+}
+
+// /////////////// Spec RPC Codec ///////////////////
+func (c *msgpackSpecRpcCodec) WriteRequest(r *rpc.Request, body interface{}) error {
+	// WriteRequest can write to both a Go service, and other services that do
+	// not abide by the 1 argument rule of a Go service.
+	// We discriminate based on if the body is a MsgpackSpecRpcMultiArgs
+	var bodyArr []interface{}
+	if m, ok := body.(MsgpackSpecRpcMultiArgs); ok {
+		bodyArr = ([]interface{})(m)
+	} else {
+		bodyArr = []interface{}{body}
+	}
+	r2 := []interface{}{0, uint32(r.Seq), r.ServiceMethod, bodyArr}
+	return c.write(r2, nil, false)
+}
+
+func (c *msgpackSpecRpcCodec) WriteResponse(r *rpc.Response, body interface{}) error {
+	var moe interface{}
+	if r.Error != "" {
+		moe = r.Error
+	}
+	if moe != nil && body != nil {
+		body = nil
+	}
+	r2 := []interface{}{1, uint32(r.Seq), moe, body}
+	return c.write(r2, nil, false)
+}
+
+func (c *msgpackSpecRpcCodec) ReadResponseHeader(r *rpc.Response) error {
+	return c.parseCustomHeader(1, &r.Seq, &r.Error)
+}
+
+func (c *msgpackSpecRpcCodec) ReadRequestHeader(r *rpc.Request) error {
+	return c.parseCustomHeader(0, &r.Seq, &r.ServiceMethod)
+}
+
+func (c *msgpackSpecRpcCodec) ReadRequestBody(body interface{}) error {
+	if body == nil { // read and discard
+		return c.read(nil)
+	}
+	bodyArr := []interface{}{body}
+	return c.read(&bodyArr)
+}
+
+func (c *msgpackSpecRpcCodec) parseCustomHeader(expectTypeByte byte, msgid *uint64, methodOrError *string) (err error) {
+	if c.isClosed() {
+		return io.EOF
+	}
+
+	// We read the response header by hand
+	// so that the body can be decoded on its own from the stream at a later time.
+
+	const fia byte = 0x94 //four item array descriptor value
+	// Not sure why the panic of EOF is swallowed above.
+	// if bs1 := c.dec.r.readn1(); bs1 != fia {
+	// 	err = fmt.Errorf("Unexpected value for array descriptor: Expecting %v. Received %v", fia, bs1)
+	// 	return
+	// }
+	var ba [1]byte
+	var n int
+	for {
+		n, err = c.r.Read(ba[:])
+		if err != nil {
+			return
+		}
+		if n == 1 {
+			break
+		}
+	}
+
+	var b = ba[0]
+	if b != fia {
+		err = fmt.Errorf("not array - %s %x/%s", msgBadDesc, b, mpdesc(b))
+	} else {
+		err = c.read(&b)
+		if err == nil {
+			if b != expectTypeByte {
+				err = fmt.Errorf("%s - expecting %v but got %x/%s",
+					msgBadDesc, expectTypeByte, b, mpdesc(b))
+			} else {
+				err = c.read(msgid)
+				if err == nil {
+					err = c.read(methodOrError)
+				}
+			}
+		}
+	}
+	return
+}
+
+//--------------------------------------------------
+
+// msgpackSpecRpc is the implementation of Rpc that uses custom communication protocol
+// as defined in the msgpack spec at https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md
+type msgpackSpecRpc struct{}
+
+// MsgpackSpecRpc implements Rpc using the communication protocol defined in
+// the msgpack spec at https://github.com/msgpack-rpc/msgpack-rpc/blob/master/spec.md .
+//
+// See GoRpc documentation, for information on buffering for better performance.
+var MsgpackSpecRpc msgpackSpecRpc
+
+func (x msgpackSpecRpc) ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec {
+	return &msgpackSpecRpcCodec{newRPCCodec(conn, h)}
+}
+
+func (x msgpackSpecRpc) ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec {
+	return &msgpackSpecRpcCodec{newRPCCodec(conn, h)}
+}
+
+var _ decDriver = (*msgpackDecDriver)(nil)
+var _ encDriver = (*msgpackEncDriver)(nil)
diff --git a/vendor/github.com/ugorji/go/codec/rpc.go b/vendor/github.com/ugorji/go/codec/rpc.go
new file mode 100644
index 0000000000..9fb3c01498
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/rpc.go
@@ -0,0 +1,232 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"bufio"
+	"errors"
+	"io"
+	"net/rpc"
+	"sync"
+)
+
+// Rpc provides a rpc Server or Client Codec for rpc communication.
+type Rpc interface {
+	ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec
+	ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec
+}
+
+// RPCOptions holds options specific to rpc functionality
+type RPCOptions struct {
+	// RPCNoBuffer configures whether we attempt to buffer reads and writes during RPC calls.
+	//
+	// Set RPCNoBuffer=true to turn buffering off.
+	// Buffering can still be done if buffered connections are passed in, or
+	// buffering is configured on the handle.
+	RPCNoBuffer bool
+}
+
+// rpcCodec defines the struct members and common methods.
+type rpcCodec struct {
+	c io.Closer
+	r io.Reader
+	w io.Writer
+	f ioFlusher
+
+	dec *Decoder
+	enc *Encoder
+	// bw  *bufio.Writer
+	// br  *bufio.Reader
+	mu sync.Mutex
+	h  Handle
+
+	cls    bool
+	clsmu  sync.RWMutex
+	clsErr error
+}
+
+func newRPCCodec(conn io.ReadWriteCloser, h Handle) rpcCodec {
+	// return newRPCCodec2(bufio.NewReader(conn), bufio.NewWriter(conn), conn, h)
+	return newRPCCodec2(conn, conn, conn, h)
+}
+
+func newRPCCodec2(r io.Reader, w io.Writer, c io.Closer, h Handle) rpcCodec {
+	// defensive: ensure that jsonH has TermWhitespace turned on.
+	if jsonH, ok := h.(*JsonHandle); ok && !jsonH.TermWhitespace {
+		panic(errors.New("rpc requires a JsonHandle with TermWhitespace set to true"))
+	}
+	// always ensure that we use a flusher, and always flush what was written to the connection.
+	// we lose nothing by using a buffered writer internally.
+	f, ok := w.(ioFlusher)
+	bh := h.getBasicHandle()
+	if !bh.RPCNoBuffer {
+		if bh.WriterBufferSize <= 0 {
+			if !ok {
+				bw := bufio.NewWriter(w)
+				f, w = bw, bw
+			}
+		}
+		if bh.ReaderBufferSize <= 0 {
+			if _, ok = w.(ioPeeker); !ok {
+				if _, ok = w.(ioBuffered); !ok {
+					br := bufio.NewReader(r)
+					r = br
+				}
+			}
+		}
+	}
+	return rpcCodec{
+		c:   c,
+		w:   w,
+		r:   r,
+		f:   f,
+		h:   h,
+		enc: NewEncoder(w, h),
+		dec: NewDecoder(r, h),
+	}
+}
+
+func (c *rpcCodec) write(obj1, obj2 interface{}, writeObj2 bool) (err error) {
+	if c.isClosed() {
+		return c.clsErr
+	}
+	err = c.enc.Encode(obj1)
+	if err == nil {
+		if writeObj2 {
+			err = c.enc.Encode(obj2)
+		}
+		// if err == nil && c.f != nil {
+		// 	err = c.f.Flush()
+		// }
+	}
+	if c.f != nil {
+		if err == nil {
+			err = c.f.Flush()
+		} else {
+			_ = c.f.Flush() // swallow flush error, so we maintain prior error on write
+		}
+	}
+	return
+}
+
+func (c *rpcCodec) swallow(err *error) {
+	defer panicToErr(c.dec, err)
+	c.dec.swallow()
+}
+
+func (c *rpcCodec) read(obj interface{}) (err error) {
+	if c.isClosed() {
+		return c.clsErr
+	}
+	//If nil is passed in, we should read and discard
+	if obj == nil {
+		// var obj2 interface{}
+		// return c.dec.Decode(&obj2)
+		c.swallow(&err)
+		return
+	}
+	return c.dec.Decode(obj)
+}
+
+func (c *rpcCodec) isClosed() (b bool) {
+	if c.c != nil {
+		c.clsmu.RLock()
+		b = c.cls
+		c.clsmu.RUnlock()
+	}
+	return
+}
+
+func (c *rpcCodec) Close() error {
+	if c.c == nil || c.isClosed() {
+		return c.clsErr
+	}
+	c.clsmu.Lock()
+	c.cls = true
+	c.clsErr = c.c.Close()
+	c.clsmu.Unlock()
+	return c.clsErr
+}
+
+func (c *rpcCodec) ReadResponseBody(body interface{}) error {
+	return c.read(body)
+}
+
+// -------------------------------------
+
+type goRpcCodec struct {
+	rpcCodec
+}
+
+func (c *goRpcCodec) WriteRequest(r *rpc.Request, body interface{}) error {
+	// Must protect for concurrent access as per API
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	return c.write(r, body, true)
+}
+
+func (c *goRpcCodec) WriteResponse(r *rpc.Response, body interface{}) error {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	return c.write(r, body, true)
+}
+
+func (c *goRpcCodec) ReadResponseHeader(r *rpc.Response) error {
+	return c.read(r)
+}
+
+func (c *goRpcCodec) ReadRequestHeader(r *rpc.Request) error {
+	return c.read(r)
+}
+
+func (c *goRpcCodec) ReadRequestBody(body interface{}) error {
+	return c.read(body)
+}
+
+// -------------------------------------
+
+// goRpc is the implementation of Rpc that uses the communication protocol
+// as defined in net/rpc package.
+type goRpc struct{}
+
+// GoRpc implements Rpc using the communication protocol defined in net/rpc package.
+//
+// Note: network connection (from net.Dial, of type io.ReadWriteCloser) is not buffered.
+//
+// For performance, you should configure WriterBufferSize and ReaderBufferSize on the handle.
+// This ensures we use an adequate buffer during reading and writing.
+// If not configured, we will internally initialize and use a buffer during reads and writes.
+// This can be turned off via the RPCNoBuffer option on the Handle.
+//   var handle codec.JsonHandle
+//   handle.RPCNoBuffer = true // turns off attempt by rpc module to initialize a buffer
+//
+// Example 1: one way of configuring buffering explicitly:
+//   var handle codec.JsonHandle // codec handle
+//   handle.ReaderBufferSize = 1024
+//   handle.WriterBufferSize = 1024
+//   var conn io.ReadWriteCloser // connection got from a socket
+//   var serverCodec = GoRpc.ServerCodec(conn, handle)
+//   var clientCodec = GoRpc.ClientCodec(conn, handle)
+//
+// Example 2: you can also explicitly create a buffered connection yourself,
+// and not worry about configuring the buffer sizes in the Handle.
+//   var handle codec.Handle     // codec handle
+//   var conn io.ReadWriteCloser // connection got from a socket
+//   var bufconn = struct {      // bufconn here is a buffered io.ReadWriteCloser
+//       io.Closer
+//       *bufio.Reader
+//       *bufio.Writer
+//   }{conn, bufio.NewReader(conn), bufio.NewWriter(conn)}
+//   var serverCodec = GoRpc.ServerCodec(bufconn, handle)
+//   var clientCodec = GoRpc.ClientCodec(bufconn, handle)
+//
+var GoRpc goRpc
+
+func (x goRpc) ServerCodec(conn io.ReadWriteCloser, h Handle) rpc.ServerCodec {
+	return &goRpcCodec{newRPCCodec(conn, h)}
+}
+
+func (x goRpc) ClientCodec(conn io.ReadWriteCloser, h Handle) rpc.ClientCodec {
+	return &goRpcCodec{newRPCCodec(conn, h)}
+}
diff --git a/vendor/github.com/ugorji/go/codec/simple.go b/vendor/github.com/ugorji/go/codec/simple.go
new file mode 100644
index 0000000000..f1e181ef31
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/simple.go
@@ -0,0 +1,652 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+package codec
+
+import (
+	"math"
+	"reflect"
+	"time"
+)
+
+const (
+	_               uint8 = iota
+	simpleVdNil           = 1
+	simpleVdFalse         = 2
+	simpleVdTrue          = 3
+	simpleVdFloat32       = 4
+	simpleVdFloat64       = 5
+
+	// each lasts for 4 (ie n, n+1, n+2, n+3)
+	simpleVdPosInt = 8
+	simpleVdNegInt = 12
+
+	simpleVdTime = 24
+
+	// containers: each lasts for 4 (ie n, n+1, n+2, ... n+7)
+	simpleVdString    = 216
+	simpleVdByteArray = 224
+	simpleVdArray     = 232
+	simpleVdMap       = 240
+	simpleVdExt       = 248
+)
+
+type simpleEncDriver struct {
+	noBuiltInTypes
+	// encNoSeparator
+	e *Encoder
+	h *SimpleHandle
+	w encWriter
+	b [8]byte
+	// c containerState
+	encDriverTrackContainerWriter
+	// encDriverNoopContainerWriter
+	_ [2]uint64 // padding
+}
+
+func (e *simpleEncDriver) EncodeNil() {
+	e.w.writen1(simpleVdNil)
+}
+
+func (e *simpleEncDriver) EncodeBool(b bool) {
+	if e.h.EncZeroValuesAsNil && e.c != containerMapKey && !b {
+		e.EncodeNil()
+		return
+	}
+	if b {
+		e.w.writen1(simpleVdTrue)
+	} else {
+		e.w.writen1(simpleVdFalse)
+	}
+}
+
+func (e *simpleEncDriver) EncodeFloat32(f float32) {
+	if e.h.EncZeroValuesAsNil && e.c != containerMapKey && f == 0.0 {
+		e.EncodeNil()
+		return
+	}
+	e.w.writen1(simpleVdFloat32)
+	bigenHelper{e.b[:4], e.w}.writeUint32(math.Float32bits(f))
+}
+
+func (e *simpleEncDriver) EncodeFloat64(f float64) {
+	if e.h.EncZeroValuesAsNil && e.c != containerMapKey && f == 0.0 {
+		e.EncodeNil()
+		return
+	}
+	e.w.writen1(simpleVdFloat64)
+	bigenHelper{e.b[:8], e.w}.writeUint64(math.Float64bits(f))
+}
+
+func (e *simpleEncDriver) EncodeInt(v int64) {
+	if v < 0 {
+		e.encUint(uint64(-v), simpleVdNegInt)
+	} else {
+		e.encUint(uint64(v), simpleVdPosInt)
+	}
+}
+
+func (e *simpleEncDriver) EncodeUint(v uint64) {
+	e.encUint(v, simpleVdPosInt)
+}
+
+func (e *simpleEncDriver) encUint(v uint64, bd uint8) {
+	if e.h.EncZeroValuesAsNil && e.c != containerMapKey && v == 0 {
+		e.EncodeNil()
+		return
+	}
+	if v <= math.MaxUint8 {
+		e.w.writen2(bd, uint8(v))
+	} else if v <= math.MaxUint16 {
+		e.w.writen1(bd + 1)
+		bigenHelper{e.b[:2], e.w}.writeUint16(uint16(v))
+	} else if v <= math.MaxUint32 {
+		e.w.writen1(bd + 2)
+		bigenHelper{e.b[:4], e.w}.writeUint32(uint32(v))
+	} else { // if v <= math.MaxUint64 {
+		e.w.writen1(bd + 3)
+		bigenHelper{e.b[:8], e.w}.writeUint64(v)
+	}
+}
+
+func (e *simpleEncDriver) encLen(bd byte, length int) {
+	if length == 0 {
+		e.w.writen1(bd)
+	} else if length <= math.MaxUint8 {
+		e.w.writen1(bd + 1)
+		e.w.writen1(uint8(length))
+	} else if length <= math.MaxUint16 {
+		e.w.writen1(bd + 2)
+		bigenHelper{e.b[:2], e.w}.writeUint16(uint16(length))
+	} else if int64(length) <= math.MaxUint32 {
+		e.w.writen1(bd + 3)
+		bigenHelper{e.b[:4], e.w}.writeUint32(uint32(length))
+	} else {
+		e.w.writen1(bd + 4)
+		bigenHelper{e.b[:8], e.w}.writeUint64(uint64(length))
+	}
+}
+
+func (e *simpleEncDriver) EncodeExt(rv interface{}, xtag uint64, ext Ext, _ *Encoder) {
+	bs := ext.WriteExt(rv)
+	if bs == nil {
+		e.EncodeNil()
+		return
+	}
+	e.encodeExtPreamble(uint8(xtag), len(bs))
+	e.w.writeb(bs)
+}
+
+func (e *simpleEncDriver) EncodeRawExt(re *RawExt, _ *Encoder) {
+	e.encodeExtPreamble(uint8(re.Tag), len(re.Data))
+	e.w.writeb(re.Data)
+}
+
+func (e *simpleEncDriver) encodeExtPreamble(xtag byte, length int) {
+	e.encLen(simpleVdExt, length)
+	e.w.writen1(xtag)
+}
+
+func (e *simpleEncDriver) WriteArrayStart(length int) {
+	e.c = containerArrayStart
+	e.encLen(simpleVdArray, length)
+}
+
+func (e *simpleEncDriver) WriteMapStart(length int) {
+	e.c = containerMapStart
+	e.encLen(simpleVdMap, length)
+}
+
+func (e *simpleEncDriver) EncodeString(c charEncoding, v string) {
+	if false && e.h.EncZeroValuesAsNil && e.c != containerMapKey && v == "" {
+		e.EncodeNil()
+		return
+	}
+	e.encLen(simpleVdString, len(v))
+	e.w.writestr(v)
+}
+
+// func (e *simpleEncDriver) EncodeSymbol(v string) {
+// 	e.EncodeString(cUTF8, v)
+// }
+
+func (e *simpleEncDriver) EncodeStringBytes(c charEncoding, v []byte) {
+	// if e.h.EncZeroValuesAsNil && e.c != containerMapKey && v == nil {
+	if v == nil {
+		e.EncodeNil()
+		return
+	}
+	e.encLen(simpleVdByteArray, len(v))
+	e.w.writeb(v)
+}
+
+func (e *simpleEncDriver) EncodeTime(t time.Time) {
+	// if e.h.EncZeroValuesAsNil && e.c != containerMapKey && t.IsZero() {
+	if t.IsZero() {
+		e.EncodeNil()
+		return
+	}
+	v, err := t.MarshalBinary()
+	if err != nil {
+		e.e.errorv(err)
+		return
+	}
+	// time.Time marshalbinary takes about 14 bytes.
+	e.w.writen2(simpleVdTime, uint8(len(v)))
+	e.w.writeb(v)
+}
+
+//------------------------------------
+
+type simpleDecDriver struct {
+	d      *Decoder
+	h      *SimpleHandle
+	r      decReader
+	bdRead bool
+	bd     byte
+	br     bool // a bytes reader?
+	c      containerState
+	// b      [scratchByteArrayLen]byte
+	noBuiltInTypes
+	// noStreamingCodec
+	decDriverNoopContainerReader
+	_ [3]uint64 // padding
+}
+
+func (d *simpleDecDriver) readNextBd() {
+	d.bd = d.r.readn1()
+	d.bdRead = true
+}
+
+func (d *simpleDecDriver) uncacheRead() {
+	if d.bdRead {
+		d.r.unreadn1()
+		d.bdRead = false
+	}
+}
+
+func (d *simpleDecDriver) ContainerType() (vt valueType) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch d.bd {
+	case simpleVdNil:
+		return valueTypeNil
+	case simpleVdByteArray, simpleVdByteArray + 1,
+		simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+		return valueTypeBytes
+	case simpleVdString, simpleVdString + 1,
+		simpleVdString + 2, simpleVdString + 3, simpleVdString + 4:
+		return valueTypeString
+	case simpleVdArray, simpleVdArray + 1,
+		simpleVdArray + 2, simpleVdArray + 3, simpleVdArray + 4:
+		return valueTypeArray
+	case simpleVdMap, simpleVdMap + 1,
+		simpleVdMap + 2, simpleVdMap + 3, simpleVdMap + 4:
+		return valueTypeMap
+		// case simpleVdTime:
+		// 	return valueTypeTime
+	}
+	// else {
+	// d.d.errorf("isContainerType: unsupported parameter: %v", vt)
+	// }
+	return valueTypeUnset
+}
+
+func (d *simpleDecDriver) TryDecodeAsNil() bool {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == simpleVdNil {
+		d.bdRead = false
+		return true
+	}
+	return false
+}
+
+func (d *simpleDecDriver) decCheckInteger() (ui uint64, neg bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch d.bd {
+	case simpleVdPosInt:
+		ui = uint64(d.r.readn1())
+	case simpleVdPosInt + 1:
+		ui = uint64(bigen.Uint16(d.r.readx(2)))
+	case simpleVdPosInt + 2:
+		ui = uint64(bigen.Uint32(d.r.readx(4)))
+	case simpleVdPosInt + 3:
+		ui = uint64(bigen.Uint64(d.r.readx(8)))
+	case simpleVdNegInt:
+		ui = uint64(d.r.readn1())
+		neg = true
+	case simpleVdNegInt + 1:
+		ui = uint64(bigen.Uint16(d.r.readx(2)))
+		neg = true
+	case simpleVdNegInt + 2:
+		ui = uint64(bigen.Uint32(d.r.readx(4)))
+		neg = true
+	case simpleVdNegInt + 3:
+		ui = uint64(bigen.Uint64(d.r.readx(8)))
+		neg = true
+	default:
+		d.d.errorf("integer only valid from pos/neg integer1..8. Invalid descriptor: %v", d.bd)
+		return
+	}
+	// don't do this check, because callers may only want the unsigned value.
+	// if ui > math.MaxInt64 {
+	// 	d.d.errorf("decIntAny: Integer out of range for signed int64: %v", ui)
+	//		return
+	// }
+	return
+}
+
+func (d *simpleDecDriver) DecodeInt64() (i int64) {
+	ui, neg := d.decCheckInteger()
+	i = chkOvf.SignedIntV(ui)
+	if neg {
+		i = -i
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) DecodeUint64() (ui uint64) {
+	ui, neg := d.decCheckInteger()
+	if neg {
+		d.d.errorf("assigning negative signed value to unsigned type")
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) DecodeFloat64() (f float64) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == simpleVdFloat32 {
+		f = float64(math.Float32frombits(bigen.Uint32(d.r.readx(4))))
+	} else if d.bd == simpleVdFloat64 {
+		f = math.Float64frombits(bigen.Uint64(d.r.readx(8)))
+	} else {
+		if d.bd >= simpleVdPosInt && d.bd <= simpleVdNegInt+3 {
+			f = float64(d.DecodeInt64())
+		} else {
+			d.d.errorf("float only valid from float32/64: Invalid descriptor: %v", d.bd)
+			return
+		}
+	}
+	d.bdRead = false
+	return
+}
+
+// bool can be decoded from bool only (single byte).
+func (d *simpleDecDriver) DecodeBool() (b bool) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == simpleVdTrue {
+		b = true
+	} else if d.bd == simpleVdFalse {
+	} else {
+		d.d.errorf("cannot decode bool - %s: %x", msgBadDesc, d.bd)
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) ReadMapStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	d.bdRead = false
+	d.c = containerMapStart
+	return d.decLen()
+}
+
+func (d *simpleDecDriver) ReadArrayStart() (length int) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	d.bdRead = false
+	d.c = containerArrayStart
+	return d.decLen()
+}
+
+func (d *simpleDecDriver) ReadArrayElem() {
+	d.c = containerArrayElem
+}
+
+func (d *simpleDecDriver) ReadArrayEnd() {
+	d.c = containerArrayEnd
+}
+
+func (d *simpleDecDriver) ReadMapElemKey() {
+	d.c = containerMapKey
+}
+
+func (d *simpleDecDriver) ReadMapElemValue() {
+	d.c = containerMapValue
+}
+
+func (d *simpleDecDriver) ReadMapEnd() {
+	d.c = containerMapEnd
+}
+
+func (d *simpleDecDriver) decLen() int {
+	switch d.bd % 8 {
+	case 0:
+		return 0
+	case 1:
+		return int(d.r.readn1())
+	case 2:
+		return int(bigen.Uint16(d.r.readx(2)))
+	case 3:
+		ui := uint64(bigen.Uint32(d.r.readx(4)))
+		if chkOvf.Uint(ui, intBitsize) {
+			d.d.errorf("overflow integer: %v", ui)
+			return 0
+		}
+		return int(ui)
+	case 4:
+		ui := bigen.Uint64(d.r.readx(8))
+		if chkOvf.Uint(ui, intBitsize) {
+			d.d.errorf("overflow integer: %v", ui)
+			return 0
+		}
+		return int(ui)
+	}
+	d.d.errorf("cannot read length: bd%%8 must be in range 0..4. Got: %d", d.bd%8)
+	return -1
+}
+
+func (d *simpleDecDriver) DecodeString() (s string) {
+	return string(d.DecodeBytes(d.d.b[:], true))
+}
+
+func (d *simpleDecDriver) DecodeStringAsBytes() (s []byte) {
+	return d.DecodeBytes(d.d.b[:], true)
+}
+
+func (d *simpleDecDriver) DecodeBytes(bs []byte, zerocopy bool) (bsOut []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == simpleVdNil {
+		d.bdRead = false
+		return
+	}
+	// check if an "array" of uint8's (see ContainerType for how to infer if an array)
+	if d.bd >= simpleVdArray && d.bd <= simpleVdMap+4 {
+		if len(bs) == 0 && zerocopy {
+			bs = d.d.b[:]
+		}
+		bsOut, _ = fastpathTV.DecSliceUint8V(bs, true, d.d)
+		return
+	}
+
+	clen := d.decLen()
+	d.bdRead = false
+	if zerocopy {
+		if d.br {
+			return d.r.readx(clen)
+		} else if len(bs) == 0 {
+			bs = d.d.b[:]
+		}
+	}
+	return decByteSlice(d.r, clen, d.d.h.MaxInitLen, bs)
+}
+
+func (d *simpleDecDriver) DecodeTime() (t time.Time) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	if d.bd == simpleVdNil {
+		d.bdRead = false
+		return
+	}
+	if d.bd != simpleVdTime {
+		d.d.errorf("invalid descriptor for time.Time - expect 0x%x, received 0x%x", simpleVdTime, d.bd)
+		return
+	}
+	d.bdRead = false
+	clen := int(d.r.readn1())
+	b := d.r.readx(clen)
+	if err := (&t).UnmarshalBinary(b); err != nil {
+		d.d.errorv(err)
+	}
+	return
+}
+
+func (d *simpleDecDriver) DecodeExt(rv interface{}, xtag uint64, ext Ext) (realxtag uint64) {
+	if xtag > 0xff {
+		d.d.errorf("ext: tag must be <= 0xff; got: %v", xtag)
+		return
+	}
+	realxtag1, xbs := d.decodeExtV(ext != nil, uint8(xtag))
+	realxtag = uint64(realxtag1)
+	if ext == nil {
+		re := rv.(*RawExt)
+		re.Tag = realxtag
+		re.Data = detachZeroCopyBytes(d.br, re.Data, xbs)
+	} else {
+		ext.ReadExt(rv, xbs)
+	}
+	return
+}
+
+func (d *simpleDecDriver) decodeExtV(verifyTag bool, tag byte) (xtag byte, xbs []byte) {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+	switch d.bd {
+	case simpleVdExt, simpleVdExt + 1, simpleVdExt + 2, simpleVdExt + 3, simpleVdExt + 4:
+		l := d.decLen()
+		xtag = d.r.readn1()
+		if verifyTag && xtag != tag {
+			d.d.errorf("wrong extension tag. Got %b. Expecting: %v", xtag, tag)
+			return
+		}
+		xbs = d.r.readx(l)
+	case simpleVdByteArray, simpleVdByteArray + 1,
+		simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+		xbs = d.DecodeBytes(nil, true)
+	default:
+		d.d.errorf("ext - %s - expecting extensions/bytearray, got: 0x%x", msgBadDesc, d.bd)
+		return
+	}
+	d.bdRead = false
+	return
+}
+
+func (d *simpleDecDriver) DecodeNaked() {
+	if !d.bdRead {
+		d.readNextBd()
+	}
+
+	n := d.d.n
+	var decodeFurther bool
+
+	switch d.bd {
+	case simpleVdNil:
+		n.v = valueTypeNil
+	case simpleVdFalse:
+		n.v = valueTypeBool
+		n.b = false
+	case simpleVdTrue:
+		n.v = valueTypeBool
+		n.b = true
+	case simpleVdPosInt, simpleVdPosInt + 1, simpleVdPosInt + 2, simpleVdPosInt + 3:
+		if d.h.SignedInteger {
+			n.v = valueTypeInt
+			n.i = d.DecodeInt64()
+		} else {
+			n.v = valueTypeUint
+			n.u = d.DecodeUint64()
+		}
+	case simpleVdNegInt, simpleVdNegInt + 1, simpleVdNegInt + 2, simpleVdNegInt + 3:
+		n.v = valueTypeInt
+		n.i = d.DecodeInt64()
+	case simpleVdFloat32:
+		n.v = valueTypeFloat
+		n.f = d.DecodeFloat64()
+	case simpleVdFloat64:
+		n.v = valueTypeFloat
+		n.f = d.DecodeFloat64()
+	case simpleVdTime:
+		n.v = valueTypeTime
+		n.t = d.DecodeTime()
+	case simpleVdString, simpleVdString + 1,
+		simpleVdString + 2, simpleVdString + 3, simpleVdString + 4:
+		n.v = valueTypeString
+		n.s = d.DecodeString()
+	case simpleVdByteArray, simpleVdByteArray + 1,
+		simpleVdByteArray + 2, simpleVdByteArray + 3, simpleVdByteArray + 4:
+		n.v = valueTypeBytes
+		n.l = d.DecodeBytes(nil, false)
+	case simpleVdExt, simpleVdExt + 1, simpleVdExt + 2, simpleVdExt + 3, simpleVdExt + 4:
+		n.v = valueTypeExt
+		l := d.decLen()
+		n.u = uint64(d.r.readn1())
+		n.l = d.r.readx(l)
+	case simpleVdArray, simpleVdArray + 1, simpleVdArray + 2,
+		simpleVdArray + 3, simpleVdArray + 4:
+		n.v = valueTypeArray
+		decodeFurther = true
+	case simpleVdMap, simpleVdMap + 1, simpleVdMap + 2, simpleVdMap + 3, simpleVdMap + 4:
+		n.v = valueTypeMap
+		decodeFurther = true
+	default:
+		d.d.errorf("cannot infer value - %s 0x%x", msgBadDesc, d.bd)
+	}
+
+	if !decodeFurther {
+		d.bdRead = false
+	}
+	return
+}
+
+//------------------------------------
+
+// SimpleHandle is a Handle for a very simple encoding format.
+//
+// simple is a simplistic codec similar to binc, but not as compact.
+//   - Encoding of a value is always preceded by the descriptor byte (bd)
+//   - True, false, nil are encoded fully in 1 byte (the descriptor)
+//   - Integers (intXXX, uintXXX) are encoded in 1, 2, 4 or 8 bytes (plus a descriptor byte).
+//     There are positive (uintXXX and intXXX >= 0) and negative (intXXX < 0) integers.
+//   - Floats are encoded in 4 or 8 bytes (plus a descriptor byte)
+//   - Length of containers (strings, bytes, array, map, extensions)
+//     are encoded in 0, 1, 2, 4 or 8 bytes.
+//     Zero-length containers have no length encoded.
+//     For others, the number of bytes is given by pow(2, bd%3)
+//   - maps are encoded as [bd] [length] [[key][value]]...
+//   - arrays are encoded as [bd] [length] [value]...
+//   - extensions are encoded as [bd] [length] [tag] [byte]...
+//   - strings/bytearrays are encoded as [bd] [length] [byte]...
+//   - time.Time are encoded as [bd] [length] [byte]...
+//
+// The full spec will be published soon.
+type SimpleHandle struct {
+	BasicHandle
+	binaryEncodingType
+	noElemSeparators
+	// EncZeroValuesAsNil says to encode zero values for numbers, bool, string, etc as nil
+	EncZeroValuesAsNil bool
+
+	// _ [1]uint64 // padding
+}
+
+// Name returns the name of the handle: simple
+func (h *SimpleHandle) Name() string { return "simple" }
+
+// SetBytesExt sets an extension
+func (h *SimpleHandle) SetBytesExt(rt reflect.Type, tag uint64, ext BytesExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{ext, interfaceExtFailer{}})
+}
+
+func (h *SimpleHandle) hasElemSeparators() bool { return true } // as it implements Write(Map|Array)XXX
+
+func (h *SimpleHandle) newEncDriver(e *Encoder) encDriver {
+	return &simpleEncDriver{e: e, w: e.w, h: h}
+}
+
+func (h *SimpleHandle) newDecDriver(d *Decoder) decDriver {
+	return &simpleDecDriver{d: d, h: h, r: d.r, br: d.bytes}
+}
+
+func (e *simpleEncDriver) reset() {
+	e.c = 0
+	e.w = e.e.w
+}
+
+func (d *simpleDecDriver) reset() {
+	d.c = 0
+	d.r, d.br = d.d.r, d.d.bytes
+	d.bd, d.bdRead = 0, false
+}
+
+var _ decDriver = (*simpleDecDriver)(nil)
+var _ encDriver = (*simpleEncDriver)(nil)
diff --git a/vendor/github.com/ugorji/go/codec/xml.go b/vendor/github.com/ugorji/go/codec/xml.go
new file mode 100644
index 0000000000..19fc36caf3
--- /dev/null
+++ b/vendor/github.com/ugorji/go/codec/xml.go
@@ -0,0 +1,508 @@
+// Copyright (c) 2012-2018 Ugorji Nwoke. All rights reserved.
+// Use of this source code is governed by a MIT license found in the LICENSE file.
+
+// +build ignore
+
+package codec
+
+import "reflect"
+
+/*
+
+A strict Non-validating namespace-aware XML 1.0 parser and (en|de)coder.
+
+We are attempting this due to perceived issues with encoding/xml:
+  - Complicated. It tried to do too much, and is not as simple to use as json.
+  - Due to over-engineering, reflection is over-used AND performance suffers:
+    java is 6X faster:http://fabsk.eu/blog/category/informatique/dev/golang/
+    even PYTHON performs better: http://outgoing.typepad.com/outgoing/2014/07/exploring-golang.html
+
+codec framework will offer the following benefits
+  - VASTLY improved performance (when using reflection-mode or codecgen)
+  - simplicity and consistency: with the rest of the supported formats
+  - all other benefits of codec framework (streaming, codegeneration, etc)
+
+codec is not a drop-in replacement for encoding/xml.
+It is a replacement, based on the simplicity and performance of codec.
+Look at it like JAXB for Go.
+
+Challenges:
+  - Need to output XML preamble, with all namespaces at the right location in the output.
+  - Each "end" block is dynamic, so we need to maintain a context-aware stack
+  - How to decide when to use an attribute VS an element
+  - How to handle chardata, attr, comment EXPLICITLY.
+  - Should it output fragments?
+    e.g. encoding a bool should just output true OR false, which is not well-formed XML.
+
+Extend the struct tag. See representative example:
+  type X struct {
+    ID uint8 `codec:"http://ugorji.net/x-namespace xid id,omitempty,toarray,attr,cdata"`
+    // format: [namespace-uri ][namespace-prefix ]local-name, ...
+  }
+
+Based on this, we encode
+  - fields as elements, BUT
+    encode as attributes if struct tag contains ",attr" and is a scalar (bool, number or string)
+  - text as entity-escaped text, BUT encode as CDATA if struct tag contains ",cdata".
+
+To handle namespaces:
+  - XMLHandle is denoted as being namespace-aware.
+    Consequently, we WILL use the ns:name pair to encode and decode if defined, else use the plain name.
+  - *Encoder and *Decoder know whether the Handle "prefers" namespaces.
+  - add *Encoder.getEncName(*structFieldInfo).
+    No one calls *structFieldInfo.indexForEncName directly anymore
+  - OR better yet: indexForEncName is namespace-aware, and helper.go is all namespace-aware
+    indexForEncName takes a parameter of the form namespace:local-name OR local-name
+  - add *Decoder.getStructFieldInfo(encName string) // encName here is either like abc, or h1:nsabc
+    by being a method on *Decoder, or maybe a method on the Handle itself.
+    No one accesses .encName anymore
+  - let encode.go and decode.go use these (for consistency)
+  - only problem exists for gen.go, where we create a big switch on encName.
+    Now, we also have to add a switch on strings.endsWith(kName, encNsName)
+    - gen.go will need to have many more methods, and then double-on the 2 switch loops like:
+      switch k {
+        case "abc" : x.abc()
+        case "def" : x.def()
+        default {
+          switch {
+            case !nsAware: panic(...)
+            case strings.endsWith(":abc"): x.abc()
+            case strings.endsWith(":def"): x.def()
+            default: panic(...)
+          }
+        }
+     }
+
+The structure below accommodates this:
+
+  type typeInfo struct {
+    sfi []*structFieldInfo // sorted by encName
+    sfins // sorted by namespace
+    sfia  // sorted, to have those with attributes at the top. Needed to write XML appropriately.
+    sfip  // unsorted
+  }
+  type structFieldInfo struct {
+    encName
+    nsEncName
+    ns string
+    attr bool
+    cdata bool
+  }
+
+indexForEncName is now an internal helper function that takes a sorted array
+(one of ti.sfins or ti.sfi). It is only used by *Encoder.getStructFieldInfo(...)
+
+There will be a separate parser from the builder.
+The parser will have a method: next() xmlToken method. It has lookahead support,
+so you can pop multiple tokens, make a determination, and push them back in the order popped.
+This will be needed to determine whether we are "nakedly" decoding a container or not.
+The stack will be implemented using a slice and push/pop happens at the [0] element.
+
+xmlToken has fields:
+  - type uint8: 0 | ElementStart | ElementEnd | AttrKey | AttrVal | Text
+  - value string
+  - ns string
+
+SEE: http://www.xml.com/pub/a/98/10/guide0.html?page=3#ENTDECL
+
+The following are skipped when parsing:
+  - External Entities (from external file)
+  - Notation Declaration e.g. <!NOTATION GIF87A SYSTEM "GIF">
+  - Entity Declarations & References
+  - XML Declaration (assume UTF-8)
+  - XML Directive i.e. <! ... >
+  - Other Declarations: Notation, etc.
+  - Comment
+  - Processing Instruction
+  - schema / DTD for validation:
+    We are not a VALIDATING parser. Validation is done elsewhere.
+    However, some parts of the DTD internal subset are used (SEE BELOW).
+    For Attribute List Declarations e.g.
+    <!ATTLIST foo:oldjoke name ID #REQUIRED label CDATA #IMPLIED status ( funny | notfunny ) 'funny' >
+    We considered using the ATTLIST to get "default" value, but not to validate the contents. (VETOED)
+
+The following XML features are supported
+  - Namespace
+  - Element
+  - Attribute
+  - cdata
+  - Unicode escape
+
+The following DTD (when as an internal sub-set) features are supported:
+  - Internal Entities e.g.
+    <!ELEMENT burns "ugorji is cool" > AND entities for the set: [<>&"']
+  - Parameter entities e.g.
+    <!ENTITY % personcontent "ugorji is cool"> <!ELEMENT burns (%personcontent;)*>
+
+At decode time, a structure containing the following is kept
+  - namespace mapping
+  - default attribute values
+  - all internal entities (<>&"' and others written in the document)
+
+When decode starts, it parses XML namespace declarations and creates a map in the
+xmlDecDriver. While parsing, that map continuously gets updated.
+The only problem happens when a namespace declaration happens on the node that it defines.
+e.g. <hn:name xmlns:hn="http://www.ugorji.net" >
+To handle this, each Element must be fully parsed at a time,
+even if it amounts to multiple tokens which are returned one at a time on request.
+
+xmlns is a special attribute name.
+  - It is used to define namespaces, including the default
+  - It is never returned as an AttrKey or AttrVal.
+  *We may decide later to allow user to use it e.g. you want to parse the xmlns mappings into a field.*
+
+Number, bool, null, mapKey, etc can all be decoded from any xmlToken.
+This accommodates map[int]string for example.
+
+It should be possible to create a schema from the types,
+or vice versa (generate types from schema with appropriate tags).
+This is however out-of-scope from this parsing project.
+
+We should write all namespace information at the first point that it is referenced in the tree,
+and use the mapping for all child nodes and attributes. This means that state is maintained
+at a point in the tree. This also means that calls to Decode or MustDecode will reset some state.
+
+When decoding, it is important to keep track of entity references and default attribute values.
+It seems these can only be stored in the DTD components. We should honor them when decoding.
+
+Configuration for XMLHandle will look like this:
+
+  XMLHandle
+    DefaultNS string
+    // Encoding:
+    NS map[string]string // ns URI to key, used for encoding
+    // Decoding: in case ENTITY declared in external schema or dtd, store info needed here
+    Entities map[string]string // map of entity rep to character
+
+
+During encode, if a namespace mapping is not defined for a namespace found on a struct,
+then we create a mapping for it using nsN (where N is 1..1000000, and doesn't conflict
+with any other namespace mapping).
+
+Note that different fields in a struct can have different namespaces.
+However, all fields will default to the namespace on the _struct field (if defined).
+
+An XML document is a name, a map of attributes and a list of children.
+Consequently, we cannot "DecodeNaked" into a map[string]interface{} (for example).
+We have to "DecodeNaked" into something that resembles XML data.
+
+To support DecodeNaked (decode into nil interface{}), we have to define some "supporting" types:
+    type Name struct { // Preferred. Less allocations due to conversions.
+      Local string
+      Space string
+    }
+    type Element struct {
+      Name Name
+      Attrs map[Name]string
+      Children []interface{} // each child is either *Element or string
+    }
+Only two "supporting" types are exposed for XML: Name and Element.
+
+// ------------------
+
+We considered 'type Name string' where Name is like "Space Local" (space-separated).
+We decided against it, because each creation of a name would lead to
+double allocation (first convert []byte to string, then concatenate them into a string).
+The benefit is that it is faster to read Attrs from a map. But given that Element is a value
+object, we want to eschew methods and have public exposed variables.
+
+We also considered the following, where xml types were not value objects, and we used
+intelligent accessor methods to extract information and for performance.
+*** WE DECIDED AGAINST THIS. ***
+    type Attr struct {
+      Name Name
+      Value string
+    }
+    // Element is a ValueObject: There are no accessor methods.
+    // Make element self-contained.
+    type Element struct {
+      Name Name
+      attrsMap map[string]string // where key is "Space Local"
+      attrs []Attr
+      childrenT []string
+      childrenE []Element
+      childrenI []int // each child is a index into T or E.
+    }
+    func (x *Element) child(i) interface{} // returns string or *Element
+
+// ------------------
+
+Per XML spec and our default handling, white space is always treated as
+insignificant between elements, except in a text node. The xml:space='preserve'
+attribute is ignored.
+
+**Note: there is no xml: namespace. The xml: attributes were defined before namespaces.**
+**So treat them as just "directives" that should be interpreted to mean something**.
+
+On encoding, we support indenting aka prettifying markup in the same way we support it for json.
+
+A document or element can only be encoded/decoded from/to a struct. In this mode:
+  - struct name maps to element name (or tag-info from _struct field)
+  - fields are mapped to child elements or attributes
+
+A map is either encoded as attributes on current element, or as a set of child elements.
+Maps are encoded as attributes iff their keys and values are primitives (number, bool, string).
+
+A list is encoded as a set of child elements.
+
+Primitives (number, bool, string) are encoded as an element, attribute or text
+depending on the context.
+
+Extensions must encode themselves as a text string.
+
+Encoding is tough, specifically when encoding mappings, because we need to encode
+as either attribute or element. To do this, we need to default to encoding as attributes,
+and then let Encoder inform the Handle when to start encoding as nodes.
+i.e. Encoder does something like:
+
+    h.EncodeMapStart()
+    h.Encode(), h.Encode(), ...
+    h.EncodeMapNotAttrSignal() // this is not a bool, because it's a signal
+    h.Encode(), h.Encode(), ...
+    h.EncodeEnd()
+
+Only XMLHandle understands this, and will set itself to start encoding as elements.
+
+This support extends to maps. For example, if a struct field is a map, and it has
+the struct tag signifying it should be attr, then all its fields are encoded as attributes.
+e.g.
+
+    type X struct {
+       M map[string]int `codec:"m,attr"` // encode keys as attributes named
+    }
+
+Question:
+  - if encoding a map, what if map keys have spaces in them???
+    Then they cannot be attributes or child elements. Error.
+
+Options to consider adding later:
+  - For attribute values, normalize by trimming beginning and ending white space,
+    and converting every white space sequence to a single space.
+  - ATTLIST restrictions are enforced.
+    e.g. default value of xml:space, skipping xml:XYZ style attributes, etc.
+  - Consider supporting NON-STRICT mode (e.g. to handle HTML parsing).
+    Some elements e.g. br, hr, etc need not close and should be auto-closed
+    ... (see http://www.w3.org/TR/html4/loose.dtd)
+    An expansive set of entities are pre-defined.
+  - Have easy way to create a HTML parser:
+    add a HTML() method to XMLHandle, that will set Strict=false, specify AutoClose,
+    and add HTML Entities to the list.
+  - Support validating element/attribute XMLName before writing it.
+    Keep this behind a flag, which is set to false by default (for performance).
+    type XMLHandle struct {
+      CheckName bool
+    }
+
+Misc:
+
+ROADMAP (1 weeks):
+  - build encoder (1 day)
+  - build decoder (based off xmlParser) (1 day)
+  - implement xmlParser (2 days).
+    Look at encoding/xml for inspiration.
+  - integrate and TEST (1 days)
+  - write article and post it (1 day)
+
+// ---------- MORE NOTES FROM 2017-11-30 ------------
+
+when parsing
+- parse the attributes first
+- then parse the nodes
+
+basically:
+- if encoding a field: we use the field name for the wrapper
+- if encoding a non-field, then just use the element type name
+
+  map[string]string ==> <map><key>abc</key><value>val</value></map>... or
+                        <map key="abc">val</map>... OR
+                        <key1>val1</key1><key2>val2</key2>...                <- PREFERED
+  []string  ==> <string>v1</string><string>v2</string>...
+  string v1 ==> <string>v1</string>
+  bool true ==> <bool>true</bool>
+  float 1.0 ==> <float>1.0</float>
+  ...
+
+  F1 map[string]string ==> <F1><key>abc</key><value>val</value></F1>... OR
+                           <F1 key="abc">val</F1>... OR
+                           <F1><abc>val</abc>...</F1>                        <- PREFERED
+  F2 []string          ==> <F2>v1</F2><F2>v2</F2>...
+  F3 bool              ==> <F3>true</F3>
+  ...
+
+- a scalar is encoded as:
+  (value) of type T  ==> <T><value/></T>
+  (value) of field F ==> <F><value/></F>
+- A kv-pair is encoded as:
+  (key,value) ==> <map><key><value/></key></map> OR <map key="value">
+  (key,value) of field F ==> <F><key><value/></key></F> OR <F key="value">
+- A map or struct is just a list of kv-pairs
+- A list is encoded as sequences of same node e.g.
+  <F1 key1="value11">
+  <F1 key2="value12">
+  <F2>value21</F2>
+  <F2>value22</F2>
+- we may have to singularize the field name, when entering into xml,
+  and pluralize them when encoding.
+- bi-directional encode->decode->encode is not a MUST.
+  even encoding/xml cannot decode correctly what was encoded:
+
+  see https://play.golang.org/p/224V_nyhMS
+  func main() {
+	fmt.Println("Hello, playground")
+	v := []interface{}{"hello", 1, true, nil, time.Now()}
+	s, err := xml.Marshal(v)
+	fmt.Printf("err: %v, \ns: %s\n", err, s)
+	var v2 []interface{}
+	err = xml.Unmarshal(s, &v2)
+	fmt.Printf("err: %v, \nv2: %v\n", err, v2)
+	type T struct {
+	    V []interface{}
+	}
+	v3 := T{V: v}
+	s, err = xml.Marshal(v3)
+	fmt.Printf("err: %v, \ns: %s\n", err, s)
+	var v4 T
+	err = xml.Unmarshal(s, &v4)
+	fmt.Printf("err: %v, \nv4: %v\n", err, v4)
+  }
+  Output:
+    err: <nil>,
+    s: <string>hello</string><int>1</int><bool>true</bool><Time>2009-11-10T23:00:00Z</Time>
+    err: <nil>,
+    v2: [<nil>]
+    err: <nil>,
+    s: <T><V>hello</V><V>1</V><V>true</V><V>2009-11-10T23:00:00Z</V></T>
+    err: <nil>,
+    v4: {[<nil> <nil> <nil> <nil>]}
+-
+*/
+
+// ----------- PARSER  -------------------
+
+type xmlTokenType uint8
+
+const (
+	_ xmlTokenType = iota << 1
+	xmlTokenElemStart
+	xmlTokenElemEnd
+	xmlTokenAttrKey
+	xmlTokenAttrVal
+	xmlTokenText
+)
+
+type xmlToken struct {
+	Type      xmlTokenType
+	Value     string
+	Namespace string // blank for AttrVal and Text
+}
+
+type xmlParser struct {
+	r    decReader
+	toks []xmlToken // list of tokens.
+	ptr  int        // ptr into the toks slice
+	done bool       // nothing else to parse. r now returns EOF.
+}
+
+func (x *xmlParser) next() (t *xmlToken) {
+	// once x.done, or x.ptr == len(x.toks) == 0, then return nil (to signify finish)
+	if !x.done && len(x.toks) == 0 {
+		x.nextTag()
+	}
+	// parses one element at a time (into possible many tokens)
+	if x.ptr < len(x.toks) {
+		t = &(x.toks[x.ptr])
+		x.ptr++
+		if x.ptr == len(x.toks) {
+			x.ptr = 0
+			x.toks = x.toks[:0]
+		}
+	}
+	return
+}
+
+// nextTag will parses the next element and fill up toks.
+// It set done flag if/once EOF is reached.
+func (x *xmlParser) nextTag() {
+	// TODO: implement.
+}
+
+// ----------- ENCODER -------------------
+
+type xmlEncDriver struct {
+	e  *Encoder
+	w  encWriter
+	h  *XMLHandle
+	b  [64]byte // scratch
+	bs []byte   // scratch
+	// s  jsonStack
+	noBuiltInTypes
+}
+
+// ----------- DECODER -------------------
+
+type xmlDecDriver struct {
+	d    *Decoder
+	h    *XMLHandle
+	r    decReader // *bytesDecReader decReader
+	ct   valueType // container type. one of unset, array or map.
+	bstr [8]byte   // scratch used for string \UXXX parsing
+	b    [64]byte  // scratch
+
+	// wsSkipped bool // whitespace skipped
+
+	// s jsonStack
+
+	noBuiltInTypes
+}
+
+// DecodeNaked will decode into an XMLNode
+
+// XMLName is a value object representing a namespace-aware NAME
+type XMLName struct {
+	Local string
+	Space string
+}
+
+// XMLNode represents a "union" of the different types of XML Nodes.
+// Only one of fields (Text or *Element) is set.
+type XMLNode struct {
+	Element *Element
+	Text    string
+}
+
+// XMLElement is a value object representing an fully-parsed XML element.
+type XMLElement struct {
+	Name  Name
+	Attrs map[XMLName]string
+	// Children is a list of child nodes, each being a *XMLElement or string
+	Children []XMLNode
+}
+
+// ----------- HANDLE  -------------------
+
+type XMLHandle struct {
+	BasicHandle
+	textEncodingType
+
+	DefaultNS string
+	NS        map[string]string // ns URI to key, for encoding
+	Entities  map[string]string // entity representation to string, for encoding.
+}
+
+func (h *XMLHandle) newEncDriver(e *Encoder) encDriver {
+	return &xmlEncDriver{e: e, w: e.w, h: h}
+}
+
+func (h *XMLHandle) newDecDriver(d *Decoder) decDriver {
+	// d := xmlDecDriver{r: r.(*bytesDecReader), h: h}
+	hd := xmlDecDriver{d: d, r: d.r, h: h}
+	hd.n.bytes = d.b[:]
+	return &hd
+}
+
+func (h *XMLHandle) SetInterfaceExt(rt reflect.Type, tag uint64, ext InterfaceExt) (err error) {
+	return h.SetExt(rt, tag, &extWrapper{bytesExtFailer{}, ext})
+}
+
+var _ decDriver = (*xmlDecDriver)(nil)
+var _ encDriver = (*xmlEncDriver)(nil)
diff --git a/vendor/github.com/vbatts/tar-split/LICENSE b/vendor/github.com/vbatts/tar-split/LICENSE
new file mode 100644
index 0000000000..ca03685b15
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/LICENSE
@@ -0,0 +1,28 @@
+Copyright (c) 2015 Vincent Batts, Raleigh, NC, USA
+
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice, this
+list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+this list of conditions and the following disclaimer in the documentation
+and/or other materials provided with the distribution.
+
+3. Neither the name of the copyright holder nor the names of its contributors
+may be used to endorse or promote products derived from this software without
+specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/common.go b/vendor/github.com/vbatts/tar-split/archive/tar/common.go
new file mode 100644
index 0000000000..36f4e23980
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/common.go
@@ -0,0 +1,340 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package tar implements access to tar archives.
+// It aims to cover most of the variations, including those produced
+// by GNU and BSD tars.
+//
+// References:
+//   http://www.freebsd.org/cgi/man.cgi?query=tar&sektion=5
+//   http://www.gnu.org/software/tar/manual/html_node/Standard.html
+//   http://pubs.opengroup.org/onlinepubs/9699919799/utilities/pax.html
+package tar
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"os"
+	"path"
+	"time"
+)
+
+const (
+	blockSize = 512
+
+	// Types
+	TypeReg           = '0'    // regular file
+	TypeRegA          = '\x00' // regular file
+	TypeLink          = '1'    // hard link
+	TypeSymlink       = '2'    // symbolic link
+	TypeChar          = '3'    // character device node
+	TypeBlock         = '4'    // block device node
+	TypeDir           = '5'    // directory
+	TypeFifo          = '6'    // fifo node
+	TypeCont          = '7'    // reserved
+	TypeXHeader       = 'x'    // extended header
+	TypeXGlobalHeader = 'g'    // global extended header
+	TypeGNULongName   = 'L'    // Next file has a long name
+	TypeGNULongLink   = 'K'    // Next file symlinks to a file w/ a long name
+	TypeGNUSparse     = 'S'    // sparse file
+)
+
+// A Header represents a single header in a tar archive.
+// Some fields may not be populated.
+type Header struct {
+	Name       string    // name of header file entry
+	Mode       int64     // permission and mode bits
+	Uid        int       // user id of owner
+	Gid        int       // group id of owner
+	Size       int64     // length in bytes
+	ModTime    time.Time // modified time
+	Typeflag   byte      // type of header entry
+	Linkname   string    // target name of link
+	Uname      string    // user name of owner
+	Gname      string    // group name of owner
+	Devmajor   int64     // major number of character or block device
+	Devminor   int64     // minor number of character or block device
+	AccessTime time.Time // access time
+	ChangeTime time.Time // status change time
+	Xattrs     map[string]string
+}
+
+// File name constants from the tar spec.
+const (
+	fileNameSize       = 100 // Maximum number of bytes in a standard tar name.
+	fileNamePrefixSize = 155 // Maximum number of ustar extension bytes.
+)
+
+// FileInfo returns an os.FileInfo for the Header.
+func (h *Header) FileInfo() os.FileInfo {
+	return headerFileInfo{h}
+}
+
+// headerFileInfo implements os.FileInfo.
+type headerFileInfo struct {
+	h *Header
+}
+
+func (fi headerFileInfo) Size() int64        { return fi.h.Size }
+func (fi headerFileInfo) IsDir() bool        { return fi.Mode().IsDir() }
+func (fi headerFileInfo) ModTime() time.Time { return fi.h.ModTime }
+func (fi headerFileInfo) Sys() interface{}   { return fi.h }
+
+// Name returns the base name of the file.
+func (fi headerFileInfo) Name() string {
+	if fi.IsDir() {
+		return path.Base(path.Clean(fi.h.Name))
+	}
+	return path.Base(fi.h.Name)
+}
+
+// Mode returns the permission and mode bits for the headerFileInfo.
+func (fi headerFileInfo) Mode() (mode os.FileMode) {
+	// Set file permission bits.
+	mode = os.FileMode(fi.h.Mode).Perm()
+
+	// Set setuid, setgid and sticky bits.
+	if fi.h.Mode&c_ISUID != 0 {
+		// setuid
+		mode |= os.ModeSetuid
+	}
+	if fi.h.Mode&c_ISGID != 0 {
+		// setgid
+		mode |= os.ModeSetgid
+	}
+	if fi.h.Mode&c_ISVTX != 0 {
+		// sticky
+		mode |= os.ModeSticky
+	}
+
+	// Set file mode bits.
+	// clear perm, setuid, setgid and sticky bits.
+	m := os.FileMode(fi.h.Mode) &^ 07777
+	if m == c_ISDIR {
+		// directory
+		mode |= os.ModeDir
+	}
+	if m == c_ISFIFO {
+		// named pipe (FIFO)
+		mode |= os.ModeNamedPipe
+	}
+	if m == c_ISLNK {
+		// symbolic link
+		mode |= os.ModeSymlink
+	}
+	if m == c_ISBLK {
+		// device file
+		mode |= os.ModeDevice
+	}
+	if m == c_ISCHR {
+		// Unix character device
+		mode |= os.ModeDevice
+		mode |= os.ModeCharDevice
+	}
+	if m == c_ISSOCK {
+		// Unix domain socket
+		mode |= os.ModeSocket
+	}
+
+	switch fi.h.Typeflag {
+	case TypeSymlink:
+		// symbolic link
+		mode |= os.ModeSymlink
+	case TypeChar:
+		// character device node
+		mode |= os.ModeDevice
+		mode |= os.ModeCharDevice
+	case TypeBlock:
+		// block device node
+		mode |= os.ModeDevice
+	case TypeDir:
+		// directory
+		mode |= os.ModeDir
+	case TypeFifo:
+		// fifo node
+		mode |= os.ModeNamedPipe
+	}
+
+	return mode
+}
+
+// sysStat, if non-nil, populates h from system-dependent fields of fi.
+var sysStat func(fi os.FileInfo, h *Header) error
+
+// Mode constants from the tar spec.
+const (
+	c_ISUID  = 04000   // Set uid
+	c_ISGID  = 02000   // Set gid
+	c_ISVTX  = 01000   // Save text (sticky bit)
+	c_ISDIR  = 040000  // Directory
+	c_ISFIFO = 010000  // FIFO
+	c_ISREG  = 0100000 // Regular file
+	c_ISLNK  = 0120000 // Symbolic link
+	c_ISBLK  = 060000  // Block special file
+	c_ISCHR  = 020000  // Character special file
+	c_ISSOCK = 0140000 // Socket
+)
+
+// Keywords for the PAX Extended Header
+const (
+	paxAtime    = "atime"
+	paxCharset  = "charset"
+	paxComment  = "comment"
+	paxCtime    = "ctime" // please note that ctime is not a valid pax header.
+	paxGid      = "gid"
+	paxGname    = "gname"
+	paxLinkpath = "linkpath"
+	paxMtime    = "mtime"
+	paxPath     = "path"
+	paxSize     = "size"
+	paxUid      = "uid"
+	paxUname    = "uname"
+	paxXattr    = "SCHILY.xattr."
+	paxNone     = ""
+)
+
+// FileInfoHeader creates a partially-populated Header from fi.
+// If fi describes a symlink, FileInfoHeader records link as the link target.
+// If fi describes a directory, a slash is appended to the name.
+// Because os.FileInfo's Name method returns only the base name of
+// the file it describes, it may be necessary to modify the Name field
+// of the returned header to provide the full path name of the file.
+func FileInfoHeader(fi os.FileInfo, link string) (*Header, error) {
+	if fi == nil {
+		return nil, errors.New("tar: FileInfo is nil")
+	}
+	fm := fi.Mode()
+	h := &Header{
+		Name:    fi.Name(),
+		ModTime: fi.ModTime(),
+		Mode:    int64(fm.Perm()), // or'd with c_IS* constants later
+	}
+	switch {
+	case fm.IsRegular():
+		h.Mode |= c_ISREG
+		h.Typeflag = TypeReg
+		h.Size = fi.Size()
+	case fi.IsDir():
+		h.Typeflag = TypeDir
+		h.Mode |= c_ISDIR
+		h.Name += "/"
+	case fm&os.ModeSymlink != 0:
+		h.Typeflag = TypeSymlink
+		h.Mode |= c_ISLNK
+		h.Linkname = link
+	case fm&os.ModeDevice != 0:
+		if fm&os.ModeCharDevice != 0 {
+			h.Mode |= c_ISCHR
+			h.Typeflag = TypeChar
+		} else {
+			h.Mode |= c_ISBLK
+			h.Typeflag = TypeBlock
+		}
+	case fm&os.ModeNamedPipe != 0:
+		h.Typeflag = TypeFifo
+		h.Mode |= c_ISFIFO
+	case fm&os.ModeSocket != 0:
+		h.Mode |= c_ISSOCK
+	default:
+		return nil, fmt.Errorf("archive/tar: unknown file mode %v", fm)
+	}
+	if fm&os.ModeSetuid != 0 {
+		h.Mode |= c_ISUID
+	}
+	if fm&os.ModeSetgid != 0 {
+		h.Mode |= c_ISGID
+	}
+	if fm&os.ModeSticky != 0 {
+		h.Mode |= c_ISVTX
+	}
+	// If possible, populate additional fields from OS-specific
+	// FileInfo fields.
+	if sys, ok := fi.Sys().(*Header); ok {
+		// This FileInfo came from a Header (not the OS). Use the
+		// original Header to populate all remaining fields.
+		h.Uid = sys.Uid
+		h.Gid = sys.Gid
+		h.Uname = sys.Uname
+		h.Gname = sys.Gname
+		h.AccessTime = sys.AccessTime
+		h.ChangeTime = sys.ChangeTime
+		if sys.Xattrs != nil {
+			h.Xattrs = make(map[string]string)
+			for k, v := range sys.Xattrs {
+				h.Xattrs[k] = v
+			}
+		}
+		if sys.Typeflag == TypeLink {
+			// hard link
+			h.Typeflag = TypeLink
+			h.Size = 0
+			h.Linkname = sys.Linkname
+		}
+	}
+	if sysStat != nil {
+		return h, sysStat(fi, h)
+	}
+	return h, nil
+}
+
+var zeroBlock = make([]byte, blockSize)
+
+// POSIX specifies a sum of the unsigned byte values, but the Sun tar uses signed byte values.
+// We compute and return both.
+func checksum(header []byte) (unsigned int64, signed int64) {
+	for i := 0; i < len(header); i++ {
+		if i == 148 {
+			// The chksum field (header[148:156]) is special: it should be treated as space bytes.
+			unsigned += ' ' * 8
+			signed += ' ' * 8
+			i += 7
+			continue
+		}
+		unsigned += int64(header[i])
+		signed += int64(int8(header[i]))
+	}
+	return
+}
+
+type slicer []byte
+
+func (sp *slicer) next(n int) (b []byte) {
+	s := *sp
+	b, *sp = s[0:n], s[n:]
+	return
+}
+
+func isASCII(s string) bool {
+	for _, c := range s {
+		if c >= 0x80 {
+			return false
+		}
+	}
+	return true
+}
+
+func toASCII(s string) string {
+	if isASCII(s) {
+		return s
+	}
+	var buf bytes.Buffer
+	for _, c := range s {
+		if c < 0x80 {
+			buf.WriteByte(byte(c))
+		}
+	}
+	return buf.String()
+}
+
+// isHeaderOnlyType checks if the given type flag is of the type that has no
+// data section even if a size is specified.
+func isHeaderOnlyType(flag byte) bool {
+	switch flag {
+	case TypeLink, TypeSymlink, TypeChar, TypeBlock, TypeDir, TypeFifo:
+		return true
+	default:
+		return false
+	}
+}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/reader.go b/vendor/github.com/vbatts/tar-split/archive/tar/reader.go
new file mode 100644
index 0000000000..adf32122e1
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/reader.go
@@ -0,0 +1,1064 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package tar
+
+// TODO(dsymonds):
+//   - pax extensions
+
+import (
+	"bytes"
+	"errors"
+	"io"
+	"io/ioutil"
+	"math"
+	"os"
+	"strconv"
+	"strings"
+	"time"
+)
+
+var (
+	ErrHeader = errors.New("archive/tar: invalid tar header")
+)
+
+const maxNanoSecondIntSize = 9
+
+// A Reader provides sequential access to the contents of a tar archive.
+// A tar archive consists of a sequence of files.
+// The Next method advances to the next file in the archive (including the first),
+// and then it can be treated as an io.Reader to access the file's data.
+type Reader struct {
+	r       io.Reader
+	err     error
+	pad     int64           // amount of padding (ignored) after current file entry
+	curr    numBytesReader  // reader for current file entry
+	hdrBuff [blockSize]byte // buffer to use in readHeader
+
+	RawAccounting bool          // Whether to enable the access needed to reassemble the tar from raw bytes. Some performance/memory hit for this.
+	rawBytes      *bytes.Buffer // last raw bits
+}
+
+type parser struct {
+	err error // Last error seen
+}
+
+// RawBytes accesses the raw bytes of the archive, apart from the file payload itself.
+// This includes the header and padding.
+//
+// This call resets the current rawbytes buffer
+//
+// Only when RawAccounting is enabled, otherwise this returns nil
+func (tr *Reader) RawBytes() []byte {
+	if !tr.RawAccounting {
+		return nil
+	}
+	if tr.rawBytes == nil {
+		tr.rawBytes = bytes.NewBuffer(nil)
+	}
+	// if we've read them, then flush them.
+	defer tr.rawBytes.Reset()
+	return tr.rawBytes.Bytes()
+}
+
+// A numBytesReader is an io.Reader with a numBytes method, returning the number
+// of bytes remaining in the underlying encoded data.
+type numBytesReader interface {
+	io.Reader
+	numBytes() int64
+}
+
+// A regFileReader is a numBytesReader for reading file data from a tar archive.
+type regFileReader struct {
+	r  io.Reader // underlying reader
+	nb int64     // number of unread bytes for current file entry
+}
+
+// A sparseFileReader is a numBytesReader for reading sparse file data from a
+// tar archive.
+type sparseFileReader struct {
+	rfr   numBytesReader // Reads the sparse-encoded file data
+	sp    []sparseEntry  // The sparse map for the file
+	pos   int64          // Keeps track of file position
+	total int64          // Total size of the file
+}
+
+// A sparseEntry holds a single entry in a sparse file's sparse map.
+//
+// Sparse files are represented using a series of sparseEntrys.
+// Despite the name, a sparseEntry represents an actual data fragment that
+// references data found in the underlying archive stream. All regions not
+// covered by a sparseEntry are logically filled with zeros.
+//
+// For example, if the underlying raw file contains the 10-byte data:
+//	var compactData = "abcdefgh"
+//
+// And the sparse map has the following entries:
+//	var sp = []sparseEntry{
+//		{offset: 2,  numBytes: 5} // Data fragment for [2..7]
+//		{offset: 18, numBytes: 3} // Data fragment for [18..21]
+//	}
+//
+// Then the content of the resulting sparse file with a "real" size of 25 is:
+//	var sparseData = "\x00"*2 + "abcde" + "\x00"*11 + "fgh" + "\x00"*4
+type sparseEntry struct {
+	offset   int64 // Starting position of the fragment
+	numBytes int64 // Length of the fragment
+}
+
+// Keywords for GNU sparse files in a PAX extended header
+const (
+	paxGNUSparseNumBlocks = "GNU.sparse.numblocks"
+	paxGNUSparseOffset    = "GNU.sparse.offset"
+	paxGNUSparseNumBytes  = "GNU.sparse.numbytes"
+	paxGNUSparseMap       = "GNU.sparse.map"
+	paxGNUSparseName      = "GNU.sparse.name"
+	paxGNUSparseMajor     = "GNU.sparse.major"
+	paxGNUSparseMinor     = "GNU.sparse.minor"
+	paxGNUSparseSize      = "GNU.sparse.size"
+	paxGNUSparseRealSize  = "GNU.sparse.realsize"
+)
+
+// Keywords for old GNU sparse headers
+const (
+	oldGNUSparseMainHeaderOffset               = 386
+	oldGNUSparseMainHeaderIsExtendedOffset     = 482
+	oldGNUSparseMainHeaderNumEntries           = 4
+	oldGNUSparseExtendedHeaderIsExtendedOffset = 504
+	oldGNUSparseExtendedHeaderNumEntries       = 21
+	oldGNUSparseOffsetSize                     = 12
+	oldGNUSparseNumBytesSize                   = 12
+)
+
+// NewReader creates a new Reader reading from r.
+func NewReader(r io.Reader) *Reader { return &Reader{r: r} }
+
+// Next advances to the next entry in the tar archive.
+//
+// io.EOF is returned at the end of the input.
+func (tr *Reader) Next() (*Header, error) {
+	if tr.RawAccounting {
+		if tr.rawBytes == nil {
+			tr.rawBytes = bytes.NewBuffer(nil)
+		} else {
+			tr.rawBytes.Reset()
+		}
+	}
+
+	if tr.err != nil {
+		return nil, tr.err
+	}
+
+	var hdr *Header
+	var extHdrs map[string]string
+
+	// Externally, Next iterates through the tar archive as if it is a series of
+	// files. Internally, the tar format often uses fake "files" to add meta
+	// data that describes the next file. These meta data "files" should not
+	// normally be visible to the outside. As such, this loop iterates through
+	// one or more "header files" until it finds a "normal file".
+loop:
+	for {
+		tr.err = tr.skipUnread()
+		if tr.err != nil {
+			return nil, tr.err
+		}
+
+		hdr = tr.readHeader()
+		if tr.err != nil {
+			return nil, tr.err
+		}
+		// Check for PAX/GNU special headers and files.
+		switch hdr.Typeflag {
+		case TypeXHeader:
+			extHdrs, tr.err = parsePAX(tr)
+			if tr.err != nil {
+				return nil, tr.err
+			}
+			continue loop // This is a meta header affecting the next header
+		case TypeGNULongName, TypeGNULongLink:
+			var realname []byte
+			realname, tr.err = ioutil.ReadAll(tr)
+			if tr.err != nil {
+				return nil, tr.err
+			}
+
+			if tr.RawAccounting {
+				if _, tr.err = tr.rawBytes.Write(realname); tr.err != nil {
+					return nil, tr.err
+				}
+			}
+
+			// Convert GNU extensions to use PAX headers.
+			if extHdrs == nil {
+				extHdrs = make(map[string]string)
+			}
+			var p parser
+			switch hdr.Typeflag {
+			case TypeGNULongName:
+				extHdrs[paxPath] = p.parseString(realname)
+			case TypeGNULongLink:
+				extHdrs[paxLinkpath] = p.parseString(realname)
+			}
+			if p.err != nil {
+				tr.err = p.err
+				return nil, tr.err
+			}
+			continue loop // This is a meta header affecting the next header
+		default:
+			mergePAX(hdr, extHdrs)
+
+			// Check for a PAX format sparse file
+			sp, err := tr.checkForGNUSparsePAXHeaders(hdr, extHdrs)
+			if err != nil {
+				tr.err = err
+				return nil, err
+			}
+			if sp != nil {
+				// Current file is a PAX format GNU sparse file.
+				// Set the current file reader to a sparse file reader.
+				tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
+				if tr.err != nil {
+					return nil, tr.err
+				}
+			}
+			break loop // This is a file, so stop
+		}
+	}
+	return hdr, nil
+}
+
+// checkForGNUSparsePAXHeaders checks the PAX headers for GNU sparse headers. If they are found, then
+// this function reads the sparse map and returns it. Unknown sparse formats are ignored, causing the file to
+// be treated as a regular file.
+func (tr *Reader) checkForGNUSparsePAXHeaders(hdr *Header, headers map[string]string) ([]sparseEntry, error) {
+	var sparseFormat string
+
+	// Check for sparse format indicators
+	major, majorOk := headers[paxGNUSparseMajor]
+	minor, minorOk := headers[paxGNUSparseMinor]
+	sparseName, sparseNameOk := headers[paxGNUSparseName]
+	_, sparseMapOk := headers[paxGNUSparseMap]
+	sparseSize, sparseSizeOk := headers[paxGNUSparseSize]
+	sparseRealSize, sparseRealSizeOk := headers[paxGNUSparseRealSize]
+
+	// Identify which, if any, sparse format applies from which PAX headers are set
+	if majorOk && minorOk {
+		sparseFormat = major + "." + minor
+	} else if sparseNameOk && sparseMapOk {
+		sparseFormat = "0.1"
+	} else if sparseSizeOk {
+		sparseFormat = "0.0"
+	} else {
+		// Not a PAX format GNU sparse file.
+		return nil, nil
+	}
+
+	// Check for unknown sparse format
+	if sparseFormat != "0.0" && sparseFormat != "0.1" && sparseFormat != "1.0" {
+		return nil, nil
+	}
+
+	// Update hdr from GNU sparse PAX headers
+	if sparseNameOk {
+		hdr.Name = sparseName
+	}
+	if sparseSizeOk {
+		realSize, err := strconv.ParseInt(sparseSize, 10, 0)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		hdr.Size = realSize
+	} else if sparseRealSizeOk {
+		realSize, err := strconv.ParseInt(sparseRealSize, 10, 0)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		hdr.Size = realSize
+	}
+
+	// Set up the sparse map, according to the particular sparse format in use
+	var sp []sparseEntry
+	var err error
+	switch sparseFormat {
+	case "0.0", "0.1":
+		sp, err = readGNUSparseMap0x1(headers)
+	case "1.0":
+		sp, err = readGNUSparseMap1x0(tr.curr)
+	}
+	return sp, err
+}
+
+// mergePAX merges well known headers according to PAX standard.
+// In general headers with the same name as those found
+// in the header struct overwrite those found in the header
+// struct with higher precision or longer values. Esp. useful
+// for name and linkname fields.
+func mergePAX(hdr *Header, headers map[string]string) error {
+	for k, v := range headers {
+		switch k {
+		case paxPath:
+			hdr.Name = v
+		case paxLinkpath:
+			hdr.Linkname = v
+		case paxGname:
+			hdr.Gname = v
+		case paxUname:
+			hdr.Uname = v
+		case paxUid:
+			uid, err := strconv.ParseInt(v, 10, 0)
+			if err != nil {
+				return err
+			}
+			hdr.Uid = int(uid)
+		case paxGid:
+			gid, err := strconv.ParseInt(v, 10, 0)
+			if err != nil {
+				return err
+			}
+			hdr.Gid = int(gid)
+		case paxAtime:
+			t, err := parsePAXTime(v)
+			if err != nil {
+				return err
+			}
+			hdr.AccessTime = t
+		case paxMtime:
+			t, err := parsePAXTime(v)
+			if err != nil {
+				return err
+			}
+			hdr.ModTime = t
+		case paxCtime:
+			t, err := parsePAXTime(v)
+			if err != nil {
+				return err
+			}
+			hdr.ChangeTime = t
+		case paxSize:
+			size, err := strconv.ParseInt(v, 10, 0)
+			if err != nil {
+				return err
+			}
+			hdr.Size = int64(size)
+		default:
+			if strings.HasPrefix(k, paxXattr) {
+				if hdr.Xattrs == nil {
+					hdr.Xattrs = make(map[string]string)
+				}
+				hdr.Xattrs[k[len(paxXattr):]] = v
+			}
+		}
+	}
+	return nil
+}
+
+// parsePAXTime takes a string of the form %d.%d as described in
+// the PAX specification.
+func parsePAXTime(t string) (time.Time, error) {
+	buf := []byte(t)
+	pos := bytes.IndexByte(buf, '.')
+	var seconds, nanoseconds int64
+	var err error
+	if pos == -1 {
+		seconds, err = strconv.ParseInt(t, 10, 0)
+		if err != nil {
+			return time.Time{}, err
+		}
+	} else {
+		seconds, err = strconv.ParseInt(string(buf[:pos]), 10, 0)
+		if err != nil {
+			return time.Time{}, err
+		}
+		nano_buf := string(buf[pos+1:])
+		// Pad as needed before converting to a decimal.
+		// For example .030 -> .030000000 -> 30000000 nanoseconds
+		if len(nano_buf) < maxNanoSecondIntSize {
+			// Right pad
+			nano_buf += strings.Repeat("0", maxNanoSecondIntSize-len(nano_buf))
+		} else if len(nano_buf) > maxNanoSecondIntSize {
+			// Right truncate
+			nano_buf = nano_buf[:maxNanoSecondIntSize]
+		}
+		nanoseconds, err = strconv.ParseInt(string(nano_buf), 10, 0)
+		if err != nil {
+			return time.Time{}, err
+		}
+	}
+	ts := time.Unix(seconds, nanoseconds)
+	return ts, nil
+}
+
+// parsePAX parses PAX headers.
+// If an extended header (type 'x') is invalid, ErrHeader is returned
+func parsePAX(r io.Reader) (map[string]string, error) {
+	buf, err := ioutil.ReadAll(r)
+	if err != nil {
+		return nil, err
+	}
+	// leaving this function for io.Reader makes it more testable
+	if tr, ok := r.(*Reader); ok && tr.RawAccounting {
+		if _, err = tr.rawBytes.Write(buf); err != nil {
+			return nil, err
+		}
+	}
+	sbuf := string(buf)
+
+	// For GNU PAX sparse format 0.0 support.
+	// This function transforms the sparse format 0.0 headers into sparse format 0.1 headers.
+	var sparseMap bytes.Buffer
+
+	headers := make(map[string]string)
+	// Each record is constructed as
+	//     "%d %s=%s\n", length, keyword, value
+	for len(sbuf) > 0 {
+		key, value, residual, err := parsePAXRecord(sbuf)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		sbuf = residual
+
+		keyStr := string(key)
+		if keyStr == paxGNUSparseOffset || keyStr == paxGNUSparseNumBytes {
+			// GNU sparse format 0.0 special key. Write to sparseMap instead of using the headers map.
+			sparseMap.WriteString(value)
+			sparseMap.Write([]byte{','})
+		} else {
+			// Normal key. Set the value in the headers map.
+			headers[keyStr] = string(value)
+		}
+	}
+	if sparseMap.Len() != 0 {
+		// Add sparse info to headers, chopping off the extra comma
+		sparseMap.Truncate(sparseMap.Len() - 1)
+		headers[paxGNUSparseMap] = sparseMap.String()
+	}
+	return headers, nil
+}
+
+// parsePAXRecord parses the input PAX record string into a key-value pair.
+// If parsing is successful, it will slice off the currently read record and
+// return the remainder as r.
+//
+// A PAX record is of the following form:
+//	"%d %s=%s\n" % (size, key, value)
+func parsePAXRecord(s string) (k, v, r string, err error) {
+	// The size field ends at the first space.
+	sp := strings.IndexByte(s, ' ')
+	if sp == -1 {
+		return "", "", s, ErrHeader
+	}
+
+	// Parse the first token as a decimal integer.
+	n, perr := strconv.ParseInt(s[:sp], 10, 0) // Intentionally parse as native int
+	if perr != nil || n < 5 || int64(len(s)) < n {
+		return "", "", s, ErrHeader
+	}
+
+	// Extract everything between the space and the final newline.
+	rec, nl, rem := s[sp+1:n-1], s[n-1:n], s[n:]
+	if nl != "\n" {
+		return "", "", s, ErrHeader
+	}
+
+	// The first equals separates the key from the value.
+	eq := strings.IndexByte(rec, '=')
+	if eq == -1 {
+		return "", "", s, ErrHeader
+	}
+	return rec[:eq], rec[eq+1:], rem, nil
+}
+
+// parseString parses bytes as a NUL-terminated C-style string.
+// If a NUL byte is not found then the whole slice is returned as a string.
+func (*parser) parseString(b []byte) string {
+	n := 0
+	for n < len(b) && b[n] != 0 {
+		n++
+	}
+	return string(b[0:n])
+}
+
+// parseNumeric parses the input as being encoded in either base-256 or octal.
+// This function may return negative numbers.
+// If parsing fails or an integer overflow occurs, err will be set.
+func (p *parser) parseNumeric(b []byte) int64 {
+	// Check for base-256 (binary) format first.
+	// If the first bit is set, then all following bits constitute a two's
+	// complement encoded number in big-endian byte order.
+	if len(b) > 0 && b[0]&0x80 != 0 {
+		// Handling negative numbers relies on the following identity:
+		//	-a-1 == ^a
+		//
+		// If the number is negative, we use an inversion mask to invert the
+		// data bytes and treat the value as an unsigned number.
+		var inv byte // 0x00 if positive or zero, 0xff if negative
+		if b[0]&0x40 != 0 {
+			inv = 0xff
+		}
+
+		var x uint64
+		for i, c := range b {
+			c ^= inv // Inverts c only if inv is 0xff, otherwise does nothing
+			if i == 0 {
+				c &= 0x7f // Ignore signal bit in first byte
+			}
+			if (x >> 56) > 0 {
+				p.err = ErrHeader // Integer overflow
+				return 0
+			}
+			x = x<<8 | uint64(c)
+		}
+		if (x >> 63) > 0 {
+			p.err = ErrHeader // Integer overflow
+			return 0
+		}
+		if inv == 0xff {
+			return ^int64(x)
+		}
+		return int64(x)
+	}
+
+	// Normal case is base-8 (octal) format.
+	return p.parseOctal(b)
+}
+
+func (p *parser) parseOctal(b []byte) int64 {
+	// Because unused fields are filled with NULs, we need
+	// to skip leading NULs. Fields may also be padded with
+	// spaces or NULs.
+	// So we remove leading and trailing NULs and spaces to
+	// be sure.
+	b = bytes.Trim(b, " \x00")
+
+	if len(b) == 0 {
+		return 0
+	}
+	x, perr := strconv.ParseUint(p.parseString(b), 8, 64)
+	if perr != nil {
+		p.err = ErrHeader
+	}
+	return int64(x)
+}
+
+// skipUnread skips any unread bytes in the existing file entry, as well as any
+// alignment padding. It returns io.ErrUnexpectedEOF if any io.EOF is
+// encountered in the data portion; it is okay to hit io.EOF in the padding.
+//
+// Note that this function still works properly even when sparse files are being
+// used since numBytes returns the bytes remaining in the underlying io.Reader.
+func (tr *Reader) skipUnread() error {
+	dataSkip := tr.numBytes()      // Number of data bytes to skip
+	totalSkip := dataSkip + tr.pad // Total number of bytes to skip
+	tr.curr, tr.pad = nil, 0
+	if tr.RawAccounting {
+		_, tr.err = io.CopyN(tr.rawBytes, tr.r, totalSkip)
+		return tr.err
+	}
+	// If possible, Seek to the last byte before the end of the data section.
+	// Do this because Seek is often lazy about reporting errors; this will mask
+	// the fact that the tar stream may be truncated. We can rely on the
+	// io.CopyN done shortly afterwards to trigger any IO errors.
+	var seekSkipped int64 // Number of bytes skipped via Seek
+	if sr, ok := tr.r.(io.Seeker); ok && dataSkip > 1 {
+		// Not all io.Seeker can actually Seek. For example, os.Stdin implements
+		// io.Seeker, but calling Seek always returns an error and performs
+		// no action. Thus, we try an innocent seek to the current position
+		// to see if Seek is really supported.
+		pos1, err := sr.Seek(0, os.SEEK_CUR)
+		if err == nil {
+			// Seek seems supported, so perform the real Seek.
+			pos2, err := sr.Seek(dataSkip-1, os.SEEK_CUR)
+			if err != nil {
+				tr.err = err
+				return tr.err
+			}
+			seekSkipped = pos2 - pos1
+		}
+	}
+
+	var copySkipped int64 // Number of bytes skipped via CopyN
+	copySkipped, tr.err = io.CopyN(ioutil.Discard, tr.r, totalSkip-seekSkipped)
+	if tr.err == io.EOF && seekSkipped+copySkipped < dataSkip {
+		tr.err = io.ErrUnexpectedEOF
+	}
+	return tr.err
+}
+
+func (tr *Reader) verifyChecksum(header []byte) bool {
+	if tr.err != nil {
+		return false
+	}
+
+	var p parser
+	given := p.parseOctal(header[148:156])
+	unsigned, signed := checksum(header)
+	return p.err == nil && (given == unsigned || given == signed)
+}
+
+// readHeader reads the next block header and assumes that the underlying reader
+// is already aligned to a block boundary.
+//
+// The err will be set to io.EOF only when one of the following occurs:
+//	* Exactly 0 bytes are read and EOF is hit.
+//	* Exactly 1 block of zeros is read and EOF is hit.
+//	* At least 2 blocks of zeros are read.
+func (tr *Reader) readHeader() *Header {
+	header := tr.hdrBuff[:]
+	copy(header, zeroBlock)
+
+	if n, err := io.ReadFull(tr.r, header); err != nil {
+		tr.err = err
+		// because it could read some of the block, but reach EOF first
+		if tr.err == io.EOF && tr.RawAccounting {
+			if _, err := tr.rawBytes.Write(header[:n]); err != nil {
+				tr.err = err
+			}
+		}
+		return nil // io.EOF is okay here
+	}
+	if tr.RawAccounting {
+		if _, tr.err = tr.rawBytes.Write(header); tr.err != nil {
+			return nil
+		}
+	}
+
+	// Two blocks of zero bytes marks the end of the archive.
+	if bytes.Equal(header, zeroBlock[0:blockSize]) {
+		if n, err := io.ReadFull(tr.r, header); err != nil {
+			tr.err = err
+			// because it could read some of the block, but reach EOF first
+			if tr.err == io.EOF && tr.RawAccounting {
+				if _, err := tr.rawBytes.Write(header[:n]); err != nil {
+					tr.err = err
+				}
+			}
+			return nil // io.EOF is okay here
+		}
+		if tr.RawAccounting {
+			if _, tr.err = tr.rawBytes.Write(header); tr.err != nil {
+				return nil
+			}
+		}
+		if bytes.Equal(header, zeroBlock[0:blockSize]) {
+			tr.err = io.EOF
+		} else {
+			tr.err = ErrHeader // zero block and then non-zero block
+		}
+		return nil
+	}
+
+	if !tr.verifyChecksum(header) {
+		tr.err = ErrHeader
+		return nil
+	}
+
+	// Unpack
+	var p parser
+	hdr := new(Header)
+	s := slicer(header)
+
+	hdr.Name = p.parseString(s.next(100))
+	hdr.Mode = p.parseNumeric(s.next(8))
+	hdr.Uid = int(p.parseNumeric(s.next(8)))
+	hdr.Gid = int(p.parseNumeric(s.next(8)))
+	hdr.Size = p.parseNumeric(s.next(12))
+	hdr.ModTime = time.Unix(p.parseNumeric(s.next(12)), 0)
+	s.next(8) // chksum
+	hdr.Typeflag = s.next(1)[0]
+	hdr.Linkname = p.parseString(s.next(100))
+
+	// The remainder of the header depends on the value of magic.
+	// The original (v7) version of tar had no explicit magic field,
+	// so its magic bytes, like the rest of the block, are NULs.
+	magic := string(s.next(8)) // contains version field as well.
+	var format string
+	switch {
+	case magic[:6] == "ustar\x00": // POSIX tar (1003.1-1988)
+		if string(header[508:512]) == "tar\x00" {
+			format = "star"
+		} else {
+			format = "posix"
+		}
+	case magic == "ustar  \x00": // old GNU tar
+		format = "gnu"
+	}
+
+	switch format {
+	case "posix", "gnu", "star":
+		hdr.Uname = p.parseString(s.next(32))
+		hdr.Gname = p.parseString(s.next(32))
+		devmajor := s.next(8)
+		devminor := s.next(8)
+		if hdr.Typeflag == TypeChar || hdr.Typeflag == TypeBlock {
+			hdr.Devmajor = p.parseNumeric(devmajor)
+			hdr.Devminor = p.parseNumeric(devminor)
+		}
+		var prefix string
+		switch format {
+		case "posix", "gnu":
+			prefix = p.parseString(s.next(155))
+		case "star":
+			prefix = p.parseString(s.next(131))
+			hdr.AccessTime = time.Unix(p.parseNumeric(s.next(12)), 0)
+			hdr.ChangeTime = time.Unix(p.parseNumeric(s.next(12)), 0)
+		}
+		if len(prefix) > 0 {
+			hdr.Name = prefix + "/" + hdr.Name
+		}
+	}
+
+	if p.err != nil {
+		tr.err = p.err
+		return nil
+	}
+
+	nb := hdr.Size
+	if isHeaderOnlyType(hdr.Typeflag) {
+		nb = 0
+	}
+	if nb < 0 {
+		tr.err = ErrHeader
+		return nil
+	}
+
+	// Set the current file reader.
+	tr.pad = -nb & (blockSize - 1) // blockSize is a power of two
+	tr.curr = &regFileReader{r: tr.r, nb: nb}
+
+	// Check for old GNU sparse format entry.
+	if hdr.Typeflag == TypeGNUSparse {
+		// Get the real size of the file.
+		hdr.Size = p.parseNumeric(header[483:495])
+		if p.err != nil {
+			tr.err = p.err
+			return nil
+		}
+
+		// Read the sparse map.
+		sp := tr.readOldGNUSparseMap(header)
+		if tr.err != nil {
+			return nil
+		}
+
+		// Current file is a GNU sparse file. Update the current file reader.
+		tr.curr, tr.err = newSparseFileReader(tr.curr, sp, hdr.Size)
+		if tr.err != nil {
+			return nil
+		}
+	}
+
+	return hdr
+}
+
+// readOldGNUSparseMap reads the sparse map as stored in the old GNU sparse format.
+// The sparse map is stored in the tar header if it's small enough. If it's larger than four entries,
+// then one or more extension headers are used to store the rest of the sparse map.
+func (tr *Reader) readOldGNUSparseMap(header []byte) []sparseEntry {
+	var p parser
+	isExtended := header[oldGNUSparseMainHeaderIsExtendedOffset] != 0
+	spCap := oldGNUSparseMainHeaderNumEntries
+	if isExtended {
+		spCap += oldGNUSparseExtendedHeaderNumEntries
+	}
+	sp := make([]sparseEntry, 0, spCap)
+	s := slicer(header[oldGNUSparseMainHeaderOffset:])
+
+	// Read the four entries from the main tar header
+	for i := 0; i < oldGNUSparseMainHeaderNumEntries; i++ {
+		offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
+		numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
+		if p.err != nil {
+			tr.err = p.err
+			return nil
+		}
+		if offset == 0 && numBytes == 0 {
+			break
+		}
+		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
+	}
+
+	for isExtended {
+		// There are more entries. Read an extension header and parse its entries.
+		sparseHeader := make([]byte, blockSize)
+		if _, tr.err = io.ReadFull(tr.r, sparseHeader); tr.err != nil {
+			return nil
+		}
+		if tr.RawAccounting {
+			if _, tr.err = tr.rawBytes.Write(sparseHeader); tr.err != nil {
+				return nil
+			}
+		}
+
+		isExtended = sparseHeader[oldGNUSparseExtendedHeaderIsExtendedOffset] != 0
+		s = slicer(sparseHeader)
+		for i := 0; i < oldGNUSparseExtendedHeaderNumEntries; i++ {
+			offset := p.parseNumeric(s.next(oldGNUSparseOffsetSize))
+			numBytes := p.parseNumeric(s.next(oldGNUSparseNumBytesSize))
+			if p.err != nil {
+				tr.err = p.err
+				return nil
+			}
+			if offset == 0 && numBytes == 0 {
+				break
+			}
+			sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
+		}
+	}
+	return sp
+}
+
+// readGNUSparseMap1x0 reads the sparse map as stored in GNU's PAX sparse format
+// version 1.0. The format of the sparse map consists of a series of
+// newline-terminated numeric fields. The first field is the number of entries
+// and is always present. Following this are the entries, consisting of two
+// fields (offset, numBytes). This function must stop reading at the end
+// boundary of the block containing the last newline.
+//
+// Note that the GNU manual says that numeric values should be encoded in octal
+// format. However, the GNU tar utility itself outputs these values in decimal.
+// As such, this library treats values as being encoded in decimal.
+func readGNUSparseMap1x0(r io.Reader) ([]sparseEntry, error) {
+	var cntNewline int64
+	var buf bytes.Buffer
+	var blk = make([]byte, blockSize)
+
+	// feedTokens copies data in numBlock chunks from r into buf until there are
+	// at least cnt newlines in buf. It will not read more blocks than needed.
+	var feedTokens = func(cnt int64) error {
+		for cntNewline < cnt {
+			if _, err := io.ReadFull(r, blk); err != nil {
+				if err == io.EOF {
+					err = io.ErrUnexpectedEOF
+				}
+				return err
+			}
+			buf.Write(blk)
+			for _, c := range blk {
+				if c == '\n' {
+					cntNewline++
+				}
+			}
+		}
+		return nil
+	}
+
+	// nextToken gets the next token delimited by a newline. This assumes that
+	// at least one newline exists in the buffer.
+	var nextToken = func() string {
+		cntNewline--
+		tok, _ := buf.ReadString('\n')
+		return tok[:len(tok)-1] // Cut off newline
+	}
+
+	// Parse for the number of entries.
+	// Use integer overflow resistant math to check this.
+	if err := feedTokens(1); err != nil {
+		return nil, err
+	}
+	numEntries, err := strconv.ParseInt(nextToken(), 10, 0) // Intentionally parse as native int
+	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
+		return nil, ErrHeader
+	}
+
+	// Parse for all member entries.
+	// numEntries is trusted after this since a potential attacker must have
+	// committed resources proportional to what this library used.
+	if err := feedTokens(2 * numEntries); err != nil {
+		return nil, err
+	}
+	sp := make([]sparseEntry, 0, numEntries)
+	for i := int64(0); i < numEntries; i++ {
+		offset, err := strconv.ParseInt(nextToken(), 10, 64)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		numBytes, err := strconv.ParseInt(nextToken(), 10, 64)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
+	}
+	return sp, nil
+}
+
+// readGNUSparseMap0x1 reads the sparse map as stored in GNU's PAX sparse format
+// version 0.1. The sparse map is stored in the PAX headers.
+func readGNUSparseMap0x1(extHdrs map[string]string) ([]sparseEntry, error) {
+	// Get number of entries.
+	// Use integer overflow resistant math to check this.
+	numEntriesStr := extHdrs[paxGNUSparseNumBlocks]
+	numEntries, err := strconv.ParseInt(numEntriesStr, 10, 0) // Intentionally parse as native int
+	if err != nil || numEntries < 0 || int(2*numEntries) < int(numEntries) {
+		return nil, ErrHeader
+	}
+
+	// There should be two numbers in sparseMap for each entry.
+	sparseMap := strings.Split(extHdrs[paxGNUSparseMap], ",")
+	if int64(len(sparseMap)) != 2*numEntries {
+		return nil, ErrHeader
+	}
+
+	// Loop through the entries in the sparse map.
+	// numEntries is trusted now.
+	sp := make([]sparseEntry, 0, numEntries)
+	for i := int64(0); i < numEntries; i++ {
+		offset, err := strconv.ParseInt(sparseMap[2*i], 10, 64)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		numBytes, err := strconv.ParseInt(sparseMap[2*i+1], 10, 64)
+		if err != nil {
+			return nil, ErrHeader
+		}
+		sp = append(sp, sparseEntry{offset: offset, numBytes: numBytes})
+	}
+	return sp, nil
+}
+
+// numBytes returns the number of bytes left to read in the current file's entry
+// in the tar archive, or 0 if there is no current file.
+func (tr *Reader) numBytes() int64 {
+	if tr.curr == nil {
+		// No current file, so no bytes
+		return 0
+	}
+	return tr.curr.numBytes()
+}
+
+// Read reads from the current entry in the tar archive.
+// It returns 0, io.EOF when it reaches the end of that entry,
+// until Next is called to advance to the next entry.
+//
+// Calling Read on special types like TypeLink, TypeSymLink, TypeChar,
+// TypeBlock, TypeDir, and TypeFifo returns 0, io.EOF regardless of what
+// the Header.Size claims.
+func (tr *Reader) Read(b []byte) (n int, err error) {
+	if tr.err != nil {
+		return 0, tr.err
+	}
+	if tr.curr == nil {
+		return 0, io.EOF
+	}
+
+	n, err = tr.curr.Read(b)
+	if err != nil && err != io.EOF {
+		tr.err = err
+	}
+	return
+}
+
+func (rfr *regFileReader) Read(b []byte) (n int, err error) {
+	if rfr.nb == 0 {
+		// file consumed
+		return 0, io.EOF
+	}
+	if int64(len(b)) > rfr.nb {
+		b = b[0:rfr.nb]
+	}
+	n, err = rfr.r.Read(b)
+	rfr.nb -= int64(n)
+
+	if err == io.EOF && rfr.nb > 0 {
+		err = io.ErrUnexpectedEOF
+	}
+	return
+}
+
+// numBytes returns the number of bytes left to read in the file's data in the tar archive.
+func (rfr *regFileReader) numBytes() int64 {
+	return rfr.nb
+}
+
+// newSparseFileReader creates a new sparseFileReader, but validates all of the
+// sparse entries before doing so.
+func newSparseFileReader(rfr numBytesReader, sp []sparseEntry, total int64) (*sparseFileReader, error) {
+	if total < 0 {
+		return nil, ErrHeader // Total size cannot be negative
+	}
+
+	// Validate all sparse entries. These are the same checks as performed by
+	// the BSD tar utility.
+	for i, s := range sp {
+		switch {
+		case s.offset < 0 || s.numBytes < 0:
+			return nil, ErrHeader // Negative values are never okay
+		case s.offset > math.MaxInt64-s.numBytes:
+			return nil, ErrHeader // Integer overflow with large length
+		case s.offset+s.numBytes > total:
+			return nil, ErrHeader // Region extends beyond the "real" size
+		case i > 0 && sp[i-1].offset+sp[i-1].numBytes > s.offset:
+			return nil, ErrHeader // Regions can't overlap and must be in order
+		}
+	}
+	return &sparseFileReader{rfr: rfr, sp: sp, total: total}, nil
+}
+
+// readHole reads a sparse hole ending at endOffset.
+func (sfr *sparseFileReader) readHole(b []byte, endOffset int64) int {
+	n64 := endOffset - sfr.pos
+	if n64 > int64(len(b)) {
+		n64 = int64(len(b))
+	}
+	n := int(n64)
+	for i := 0; i < n; i++ {
+		b[i] = 0
+	}
+	sfr.pos += n64
+	return n
+}
+
+// Read reads the sparse file data in expanded form.
+func (sfr *sparseFileReader) Read(b []byte) (n int, err error) {
+	// Skip past all empty fragments.
+	for len(sfr.sp) > 0 && sfr.sp[0].numBytes == 0 {
+		sfr.sp = sfr.sp[1:]
+	}
+
+	// If there are no more fragments, then it is possible that there
+	// is one last sparse hole.
+	if len(sfr.sp) == 0 {
+		// This behavior matches the BSD tar utility.
+		// However, GNU tar stops returning data even if sfr.total is unmet.
+		if sfr.pos < sfr.total {
+			return sfr.readHole(b, sfr.total), nil
+		}
+		return 0, io.EOF
+	}
+
+	// In front of a data fragment, so read a hole.
+	if sfr.pos < sfr.sp[0].offset {
+		return sfr.readHole(b, sfr.sp[0].offset), nil
+	}
+
+	// In a data fragment, so read from it.
+	// This math is overflow free since we verify that offset and numBytes can
+	// be safely added when creating the sparseFileReader.
+	endPos := sfr.sp[0].offset + sfr.sp[0].numBytes // End offset of fragment
+	bytesLeft := endPos - sfr.pos                   // Bytes left in fragment
+	if int64(len(b)) > bytesLeft {
+		b = b[:bytesLeft]
+	}
+
+	n, err = sfr.rfr.Read(b)
+	sfr.pos += int64(n)
+	if err == io.EOF {
+		if sfr.pos < endPos {
+			err = io.ErrUnexpectedEOF // There was supposed to be more data
+		} else if sfr.pos < sfr.total {
+			err = nil // There is still an implicit sparse hole at the end
+		}
+	}
+
+	if sfr.pos == endPos {
+		sfr.sp = sfr.sp[1:] // We are done with this fragment, so pop it
+	}
+	return n, err
+}
+
+// numBytes returns the number of bytes left to read in the sparse file's
+// sparse-encoded data in the tar archive.
+func (sfr *sparseFileReader) numBytes() int64 {
+	return sfr.rfr.numBytes()
+}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
new file mode 100644
index 0000000000..cf9cc79c59
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atim.go
@@ -0,0 +1,20 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux dragonfly openbsd solaris
+
+package tar
+
+import (
+	"syscall"
+	"time"
+)
+
+func statAtime(st *syscall.Stat_t) time.Time {
+	return time.Unix(st.Atim.Unix())
+}
+
+func statCtime(st *syscall.Stat_t) time.Time {
+	return time.Unix(st.Ctim.Unix())
+}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
new file mode 100644
index 0000000000..6f17dbe307
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/stat_atimespec.go
@@ -0,0 +1,20 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin freebsd netbsd
+
+package tar
+
+import (
+	"syscall"
+	"time"
+)
+
+func statAtime(st *syscall.Stat_t) time.Time {
+	return time.Unix(st.Atimespec.Unix())
+}
+
+func statCtime(st *syscall.Stat_t) time.Time {
+	return time.Unix(st.Ctimespec.Unix())
+}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go b/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
new file mode 100644
index 0000000000..cb843db4cf
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/stat_unix.go
@@ -0,0 +1,32 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux darwin dragonfly freebsd openbsd netbsd solaris
+
+package tar
+
+import (
+	"os"
+	"syscall"
+)
+
+func init() {
+	sysStat = statUnix
+}
+
+func statUnix(fi os.FileInfo, h *Header) error {
+	sys, ok := fi.Sys().(*syscall.Stat_t)
+	if !ok {
+		return nil
+	}
+	h.Uid = int(sys.Uid)
+	h.Gid = int(sys.Gid)
+	// TODO(bradfitz): populate username & group.  os/user
+	// doesn't cache LookupId lookups, and lacks group
+	// lookup functions.
+	h.AccessTime = statAtime(sys)
+	h.ChangeTime = statCtime(sys)
+	// TODO(bradfitz): major/minor device numbers?
+	return nil
+}
diff --git a/vendor/github.com/vbatts/tar-split/archive/tar/writer.go b/vendor/github.com/vbatts/tar-split/archive/tar/writer.go
new file mode 100644
index 0000000000..042638175c
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/archive/tar/writer.go
@@ -0,0 +1,416 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package tar
+
+// TODO(dsymonds):
+// - catch more errors (no first header, etc.)
+
+import (
+	"bytes"
+	"errors"
+	"fmt"
+	"io"
+	"path"
+	"sort"
+	"strconv"
+	"strings"
+	"time"
+)
+
+var (
+	ErrWriteTooLong    = errors.New("archive/tar: write too long")
+	ErrFieldTooLong    = errors.New("archive/tar: header field too long")
+	ErrWriteAfterClose = errors.New("archive/tar: write after close")
+	errInvalidHeader   = errors.New("archive/tar: header field too long or contains invalid values")
+)
+
+// A Writer provides sequential writing of a tar archive in POSIX.1 format.
+// A tar archive consists of a sequence of files.
+// Call WriteHeader to begin a new file, and then call Write to supply that file's data,
+// writing at most hdr.Size bytes in total.
+type Writer struct {
+	w          io.Writer
+	err        error
+	nb         int64 // number of unwritten bytes for current file entry
+	pad        int64 // amount of padding to write after current file entry
+	closed     bool
+	usedBinary bool            // whether the binary numeric field extension was used
+	preferPax  bool            // use pax header instead of binary numeric header
+	hdrBuff    [blockSize]byte // buffer to use in writeHeader when writing a regular header
+	paxHdrBuff [blockSize]byte // buffer to use in writeHeader when writing a pax header
+}
+
+type formatter struct {
+	err error // Last error seen
+}
+
+// NewWriter creates a new Writer writing to w.
+func NewWriter(w io.Writer) *Writer { return &Writer{w: w} }
+
+// Flush finishes writing the current file (optional).
+func (tw *Writer) Flush() error {
+	if tw.nb > 0 {
+		tw.err = fmt.Errorf("archive/tar: missed writing %d bytes", tw.nb)
+		return tw.err
+	}
+
+	n := tw.nb + tw.pad
+	for n > 0 && tw.err == nil {
+		nr := n
+		if nr > blockSize {
+			nr = blockSize
+		}
+		var nw int
+		nw, tw.err = tw.w.Write(zeroBlock[0:nr])
+		n -= int64(nw)
+	}
+	tw.nb = 0
+	tw.pad = 0
+	return tw.err
+}
+
+// Write s into b, terminating it with a NUL if there is room.
+func (f *formatter) formatString(b []byte, s string) {
+	if len(s) > len(b) {
+		f.err = ErrFieldTooLong
+		return
+	}
+	ascii := toASCII(s)
+	copy(b, ascii)
+	if len(ascii) < len(b) {
+		b[len(ascii)] = 0
+	}
+}
+
+// Encode x as an octal ASCII string and write it into b with leading zeros.
+func (f *formatter) formatOctal(b []byte, x int64) {
+	s := strconv.FormatInt(x, 8)
+	// leading zeros, but leave room for a NUL.
+	for len(s)+1 < len(b) {
+		s = "0" + s
+	}
+	f.formatString(b, s)
+}
+
+// fitsInBase256 reports whether x can be encoded into n bytes using base-256
+// encoding. Unlike octal encoding, base-256 encoding does not require that the
+// string ends with a NUL character. Thus, all n bytes are available for output.
+//
+// If operating in binary mode, this assumes strict GNU binary mode; which means
+// that the first byte can only be either 0x80 or 0xff. Thus, the first byte is
+// equivalent to the sign bit in two's complement form.
+func fitsInBase256(n int, x int64) bool {
+	var binBits = uint(n-1) * 8
+	return n >= 9 || (x >= -1<<binBits && x < 1<<binBits)
+}
+
+// Write x into b, as binary (GNUtar/star extension).
+func (f *formatter) formatNumeric(b []byte, x int64) {
+	if fitsInBase256(len(b), x) {
+		for i := len(b) - 1; i >= 0; i-- {
+			b[i] = byte(x)
+			x >>= 8
+		}
+		b[0] |= 0x80 // Highest bit indicates binary format
+		return
+	}
+
+	f.formatOctal(b, 0) // Last resort, just write zero
+	f.err = ErrFieldTooLong
+}
+
+var (
+	minTime = time.Unix(0, 0)
+	// There is room for 11 octal digits (33 bits) of mtime.
+	maxTime = minTime.Add((1<<33 - 1) * time.Second)
+)
+
+// WriteHeader writes hdr and prepares to accept the file's contents.
+// WriteHeader calls Flush if it is not the first header.
+// Calling after a Close will return ErrWriteAfterClose.
+func (tw *Writer) WriteHeader(hdr *Header) error {
+	return tw.writeHeader(hdr, true)
+}
+
+// WriteHeader writes hdr and prepares to accept the file's contents.
+// WriteHeader calls Flush if it is not the first header.
+// Calling after a Close will return ErrWriteAfterClose.
+// As this method is called internally by writePax header to allow it to
+// suppress writing the pax header.
+func (tw *Writer) writeHeader(hdr *Header, allowPax bool) error {
+	if tw.closed {
+		return ErrWriteAfterClose
+	}
+	if tw.err == nil {
+		tw.Flush()
+	}
+	if tw.err != nil {
+		return tw.err
+	}
+
+	// a map to hold pax header records, if any are needed
+	paxHeaders := make(map[string]string)
+
+	// TODO(shanemhansen): we might want to use PAX headers for
+	// subsecond time resolution, but for now let's just capture
+	// too long fields or non ascii characters
+
+	var f formatter
+	var header []byte
+
+	// We need to select which scratch buffer to use carefully,
+	// since this method is called recursively to write PAX headers.
+	// If allowPax is true, this is the non-recursive call, and we will use hdrBuff.
+	// If allowPax is false, we are being called by writePAXHeader, and hdrBuff is
+	// already being used by the non-recursive call, so we must use paxHdrBuff.
+	header = tw.hdrBuff[:]
+	if !allowPax {
+		header = tw.paxHdrBuff[:]
+	}
+	copy(header, zeroBlock)
+	s := slicer(header)
+
+	// Wrappers around formatter that automatically sets paxHeaders if the
+	// argument extends beyond the capacity of the input byte slice.
+	var formatString = func(b []byte, s string, paxKeyword string) {
+		needsPaxHeader := paxKeyword != paxNone && len(s) > len(b) || !isASCII(s)
+		if needsPaxHeader {
+			paxHeaders[paxKeyword] = s
+			return
+		}
+		f.formatString(b, s)
+	}
+	var formatNumeric = func(b []byte, x int64, paxKeyword string) {
+		// Try octal first.
+		s := strconv.FormatInt(x, 8)
+		if len(s) < len(b) {
+			f.formatOctal(b, x)
+			return
+		}
+
+		// If it is too long for octal, and PAX is preferred, use a PAX header.
+		if paxKeyword != paxNone && tw.preferPax {
+			f.formatOctal(b, 0)
+			s := strconv.FormatInt(x, 10)
+			paxHeaders[paxKeyword] = s
+			return
+		}
+
+		tw.usedBinary = true
+		f.formatNumeric(b, x)
+	}
+
+	// keep a reference to the filename to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
+	pathHeaderBytes := s.next(fileNameSize)
+
+	formatString(pathHeaderBytes, hdr.Name, paxPath)
+
+	// Handle out of range ModTime carefully.
+	var modTime int64
+	if !hdr.ModTime.Before(minTime) && !hdr.ModTime.After(maxTime) {
+		modTime = hdr.ModTime.Unix()
+	}
+
+	f.formatOctal(s.next(8), hdr.Mode)               // 100:108
+	formatNumeric(s.next(8), int64(hdr.Uid), paxUid) // 108:116
+	formatNumeric(s.next(8), int64(hdr.Gid), paxGid) // 116:124
+	formatNumeric(s.next(12), hdr.Size, paxSize)     // 124:136
+	formatNumeric(s.next(12), modTime, paxNone)      // 136:148 --- consider using pax for finer granularity
+	s.next(8)                                        // chksum (148:156)
+	s.next(1)[0] = hdr.Typeflag                      // 156:157
+
+	formatString(s.next(100), hdr.Linkname, paxLinkpath)
+
+	copy(s.next(8), []byte("ustar\x0000"))          // 257:265
+	formatString(s.next(32), hdr.Uname, paxUname)   // 265:297
+	formatString(s.next(32), hdr.Gname, paxGname)   // 297:329
+	formatNumeric(s.next(8), hdr.Devmajor, paxNone) // 329:337
+	formatNumeric(s.next(8), hdr.Devminor, paxNone) // 337:345
+
+	// keep a reference to the prefix to allow to overwrite it later if we detect that we can use ustar longnames instead of pax
+	prefixHeaderBytes := s.next(155)
+	formatString(prefixHeaderBytes, "", paxNone) // 345:500  prefix
+
+	// Use the GNU magic instead of POSIX magic if we used any GNU extensions.
+	if tw.usedBinary {
+		copy(header[257:265], []byte("ustar  \x00"))
+	}
+
+	_, paxPathUsed := paxHeaders[paxPath]
+	// try to use a ustar header when only the name is too long
+	if !tw.preferPax && len(paxHeaders) == 1 && paxPathUsed {
+		prefix, suffix, ok := splitUSTARPath(hdr.Name)
+		if ok {
+			// Since we can encode in USTAR format, disable PAX header.
+			delete(paxHeaders, paxPath)
+
+			// Update the path fields
+			formatString(pathHeaderBytes, suffix, paxNone)
+			formatString(prefixHeaderBytes, prefix, paxNone)
+		}
+	}
+
+	// The chksum field is terminated by a NUL and a space.
+	// This is different from the other octal fields.
+	chksum, _ := checksum(header)
+	f.formatOctal(header[148:155], chksum) // Never fails
+	header[155] = ' '
+
+	// Check if there were any formatting errors.
+	if f.err != nil {
+		tw.err = f.err
+		return tw.err
+	}
+
+	if allowPax {
+		for k, v := range hdr.Xattrs {
+			paxHeaders[paxXattr+k] = v
+		}
+	}
+
+	if len(paxHeaders) > 0 {
+		if !allowPax {
+			return errInvalidHeader
+		}
+		if err := tw.writePAXHeader(hdr, paxHeaders); err != nil {
+			return err
+		}
+	}
+	tw.nb = int64(hdr.Size)
+	tw.pad = (blockSize - (tw.nb % blockSize)) % blockSize
+
+	_, tw.err = tw.w.Write(header)
+	return tw.err
+}
+
+// splitUSTARPath splits a path according to USTAR prefix and suffix rules.
+// If the path is not splittable, then it will return ("", "", false).
+func splitUSTARPath(name string) (prefix, suffix string, ok bool) {
+	length := len(name)
+	if length <= fileNameSize || !isASCII(name) {
+		return "", "", false
+	} else if length > fileNamePrefixSize+1 {
+		length = fileNamePrefixSize + 1
+	} else if name[length-1] == '/' {
+		length--
+	}
+
+	i := strings.LastIndex(name[:length], "/")
+	nlen := len(name) - i - 1 // nlen is length of suffix
+	plen := i                 // plen is length of prefix
+	if i <= 0 || nlen > fileNameSize || nlen == 0 || plen > fileNamePrefixSize {
+		return "", "", false
+	}
+	return name[:i], name[i+1:], true
+}
+
+// writePaxHeader writes an extended pax header to the
+// archive.
+func (tw *Writer) writePAXHeader(hdr *Header, paxHeaders map[string]string) error {
+	// Prepare extended header
+	ext := new(Header)
+	ext.Typeflag = TypeXHeader
+	// Setting ModTime is required for reader parsing to
+	// succeed, and seems harmless enough.
+	ext.ModTime = hdr.ModTime
+	// The spec asks that we namespace our pseudo files
+	// with the current pid.  However, this results in differing outputs
+	// for identical inputs.  As such, the constant 0 is now used instead.
+	// golang.org/issue/12358
+	dir, file := path.Split(hdr.Name)
+	fullName := path.Join(dir, "PaxHeaders.0", file)
+
+	ascii := toASCII(fullName)
+	if len(ascii) > 100 {
+		ascii = ascii[:100]
+	}
+	ext.Name = ascii
+	// Construct the body
+	var buf bytes.Buffer
+
+	// Keys are sorted before writing to body to allow deterministic output.
+	var keys []string
+	for k := range paxHeaders {
+		keys = append(keys, k)
+	}
+	sort.Strings(keys)
+
+	for _, k := range keys {
+		fmt.Fprint(&buf, formatPAXRecord(k, paxHeaders[k]))
+	}
+
+	ext.Size = int64(len(buf.Bytes()))
+	if err := tw.writeHeader(ext, false); err != nil {
+		return err
+	}
+	if _, err := tw.Write(buf.Bytes()); err != nil {
+		return err
+	}
+	if err := tw.Flush(); err != nil {
+		return err
+	}
+	return nil
+}
+
+// formatPAXRecord formats a single PAX record, prefixing it with the
+// appropriate length.
+func formatPAXRecord(k, v string) string {
+	const padding = 3 // Extra padding for ' ', '=', and '\n'
+	size := len(k) + len(v) + padding
+	size += len(strconv.Itoa(size))
+	record := fmt.Sprintf("%d %s=%s\n", size, k, v)
+
+	// Final adjustment if adding size field increased the record size.
+	if len(record) != size {
+		size = len(record)
+		record = fmt.Sprintf("%d %s=%s\n", size, k, v)
+	}
+	return record
+}
+
+// Write writes to the current entry in the tar archive.
+// Write returns the error ErrWriteTooLong if more than
+// hdr.Size bytes are written after WriteHeader.
+func (tw *Writer) Write(b []byte) (n int, err error) {
+	if tw.closed {
+		err = ErrWriteAfterClose
+		return
+	}
+	overwrite := false
+	if int64(len(b)) > tw.nb {
+		b = b[0:tw.nb]
+		overwrite = true
+	}
+	n, err = tw.w.Write(b)
+	tw.nb -= int64(n)
+	if err == nil && overwrite {
+		err = ErrWriteTooLong
+		return
+	}
+	tw.err = err
+	return
+}
+
+// Close closes the tar archive, flushing any unwritten
+// data to the underlying writer.
+func (tw *Writer) Close() error {
+	if tw.err != nil || tw.closed {
+		return tw.err
+	}
+	tw.Flush()
+	tw.closed = true
+	if tw.err != nil {
+		return tw.err
+	}
+
+	// trailer: two zero blocks
+	for i := 0; i < 2; i++ {
+		_, tw.err = tw.w.Write(zeroBlock)
+		if tw.err != nil {
+			break
+		}
+	}
+	return tw.err
+}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go b/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
new file mode 100644
index 0000000000..d624450ab7
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/asm/assemble.go
@@ -0,0 +1,130 @@
+package asm
+
+import (
+	"bytes"
+	"fmt"
+	"hash"
+	"hash/crc64"
+	"io"
+	"sync"
+
+	"github.com/vbatts/tar-split/tar/storage"
+)
+
+// NewOutputTarStream returns an io.ReadCloser that is an assembled tar archive
+// stream.
+//
+// It takes a storage.FileGetter, for mapping the file payloads that are to be read in,
+// and a storage.Unpacker, which has access to the rawbytes and file order
+// metadata. With the combination of these two items, a precise assembled Tar
+// archive is possible.
+func NewOutputTarStream(fg storage.FileGetter, up storage.Unpacker) io.ReadCloser {
+	// ... Since these are interfaces, this is possible, so let's not have a nil pointer
+	if fg == nil || up == nil {
+		return nil
+	}
+	pr, pw := io.Pipe()
+	go func() {
+		err := WriteOutputTarStream(fg, up, pw)
+		if err != nil {
+			pw.CloseWithError(err)
+		} else {
+			pw.Close()
+		}
+	}()
+	return pr
+}
+
+// WriteOutputTarStream writes assembled tar archive to a writer.
+func WriteOutputTarStream(fg storage.FileGetter, up storage.Unpacker, w io.Writer) error {
+	// ... Since these are interfaces, this is possible, so let's not have a nil pointer
+	if fg == nil || up == nil {
+		return nil
+	}
+	var copyBuffer []byte
+	var crcHash hash.Hash
+	var crcSum []byte
+	var multiWriter io.Writer
+	for {
+		entry, err := up.Next()
+		if err != nil {
+			if err == io.EOF {
+				return nil
+			}
+			return err
+		}
+		switch entry.Type {
+		case storage.SegmentType:
+			if _, err := w.Write(entry.Payload); err != nil {
+				return err
+			}
+		case storage.FileType:
+			if entry.Size == 0 {
+				continue
+			}
+			fh, err := fg.Get(entry.GetName())
+			if err != nil {
+				return err
+			}
+			if crcHash == nil {
+				crcHash = crc64.New(storage.CRCTable)
+				crcSum = make([]byte, 8)
+				multiWriter = io.MultiWriter(w, crcHash)
+				copyBuffer = byteBufferPool.Get().([]byte)
+				defer byteBufferPool.Put(copyBuffer)
+			} else {
+				crcHash.Reset()
+			}
+
+			if _, err := copyWithBuffer(multiWriter, fh, copyBuffer); err != nil {
+				fh.Close()
+				return err
+			}
+
+			if !bytes.Equal(crcHash.Sum(crcSum[:0]), entry.Payload) {
+				// I would rather this be a comparable ErrInvalidChecksum or such,
+				// but since it's coming through the PipeReader, the context of
+				// _which_ file would be lost...
+				fh.Close()
+				return fmt.Errorf("file integrity checksum failed for %q", entry.GetName())
+			}
+			fh.Close()
+		}
+	}
+}
+
+var byteBufferPool = &sync.Pool{
+	New: func() interface{} {
+		return make([]byte, 32*1024)
+	},
+}
+
+// copyWithBuffer is taken from stdlib io.Copy implementation
+// https://github.com/golang/go/blob/go1.5.1/src/io/io.go#L367
+func copyWithBuffer(dst io.Writer, src io.Reader, buf []byte) (written int64, err error) {
+	for {
+		nr, er := src.Read(buf)
+		if nr > 0 {
+			nw, ew := dst.Write(buf[0:nr])
+			if nw > 0 {
+				written += int64(nw)
+			}
+			if ew != nil {
+				err = ew
+				break
+			}
+			if nr != nw {
+				err = io.ErrShortWrite
+				break
+			}
+		}
+		if er == io.EOF {
+			break
+		}
+		if er != nil {
+			err = er
+			break
+		}
+	}
+	return written, err
+}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go b/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
new file mode 100644
index 0000000000..009b3f5d81
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/asm/disassemble.go
@@ -0,0 +1,154 @@
+package asm
+
+import (
+	"io"
+
+	"github.com/vbatts/tar-split/archive/tar"
+	"github.com/vbatts/tar-split/tar/storage"
+)
+
+// NewInputTarStream wraps the Reader stream of a tar archive and provides a
+// Reader stream of the same.
+//
+// In the middle it will pack the segments and file metadata to storage.Packer
+// `p`.
+//
+// The the storage.FilePutter is where payload of files in the stream are
+// stashed. If this stashing is not needed, you can provide a nil
+// storage.FilePutter. Since the checksumming is still needed, then a default
+// of NewDiscardFilePutter will be used internally
+func NewInputTarStream(r io.Reader, p storage.Packer, fp storage.FilePutter) (io.Reader, error) {
+	// What to do here... folks will want their own access to the Reader that is
+	// their tar archive stream, but we'll need that same stream to use our
+	// forked 'archive/tar'.
+	// Perhaps do an io.TeeReader that hands back an io.Reader for them to read
+	// from, and we'll MITM the stream to store metadata.
+	// We'll need a storage.FilePutter too ...
+
+	// Another concern, whether to do any storage.FilePutter operations, such that we
+	// don't extract any amount of the archive. But then again, we're not making
+	// files/directories, hardlinks, etc. Just writing the io to the storage.FilePutter.
+	// Perhaps we have a DiscardFilePutter that is a bit bucket.
+
+	// we'll return the pipe reader, since TeeReader does not buffer and will
+	// only read what the outputRdr Read's. Since Tar archives have padding on
+	// the end, we want to be the one reading the padding, even if the user's
+	// `archive/tar` doesn't care.
+	pR, pW := io.Pipe()
+	outputRdr := io.TeeReader(r, pW)
+
+	// we need a putter that will generate the crc64 sums of file payloads
+	if fp == nil {
+		fp = storage.NewDiscardFilePutter()
+	}
+
+	go func() {
+		tr := tar.NewReader(outputRdr)
+		tr.RawAccounting = true
+		for {
+			hdr, err := tr.Next()
+			if err != nil {
+				if err != io.EOF {
+					pW.CloseWithError(err)
+					return
+				}
+				// even when an EOF is reached, there is often 1024 null bytes on
+				// the end of an archive. Collect them too.
+				if b := tr.RawBytes(); len(b) > 0 {
+					_, err := p.AddEntry(storage.Entry{
+						Type:    storage.SegmentType,
+						Payload: b,
+					})
+					if err != nil {
+						pW.CloseWithError(err)
+						return
+					}
+				}
+				break // not return. We need the end of the reader.
+			}
+			if hdr == nil {
+				break // not return. We need the end of the reader.
+			}
+
+			if b := tr.RawBytes(); len(b) > 0 {
+				_, err := p.AddEntry(storage.Entry{
+					Type:    storage.SegmentType,
+					Payload: b,
+				})
+				if err != nil {
+					pW.CloseWithError(err)
+					return
+				}
+			}
+
+			var csum []byte
+			if hdr.Size > 0 {
+				var err error
+				_, csum, err = fp.Put(hdr.Name, tr)
+				if err != nil {
+					pW.CloseWithError(err)
+					return
+				}
+			}
+
+			entry := storage.Entry{
+				Type:    storage.FileType,
+				Size:    hdr.Size,
+				Payload: csum,
+			}
+			// For proper marshalling of non-utf8 characters
+			entry.SetName(hdr.Name)
+
+			// File entries added, regardless of size
+			_, err = p.AddEntry(entry)
+			if err != nil {
+				pW.CloseWithError(err)
+				return
+			}
+
+			if b := tr.RawBytes(); len(b) > 0 {
+				_, err = p.AddEntry(storage.Entry{
+					Type:    storage.SegmentType,
+					Payload: b,
+				})
+				if err != nil {
+					pW.CloseWithError(err)
+					return
+				}
+			}
+		}
+
+		// It is allowable, and not uncommon that there is further padding on
+		// the end of an archive, apart from the expected 1024 null bytes. We
+		// do this in chunks rather than in one go to avoid cases where a
+		// maliciously crafted tar file tries to trick us into reading many GBs
+		// into memory.
+		const paddingChunkSize = 1024 * 1024
+		var paddingChunk [paddingChunkSize]byte
+		for {
+			var isEOF bool
+			n, err := outputRdr.Read(paddingChunk[:])
+			if err != nil {
+				if err != io.EOF {
+					pW.CloseWithError(err)
+					return
+				}
+				isEOF = true
+			}
+			_, err = p.AddEntry(storage.Entry{
+				Type:    storage.SegmentType,
+				Payload: paddingChunk[:n],
+			})
+			if err != nil {
+				pW.CloseWithError(err)
+				return
+			}
+			if isEOF {
+				break
+			}
+		}
+		pW.Close()
+	}()
+
+	return pR, nil
+}
diff --git a/vendor/github.com/vbatts/tar-split/tar/asm/doc.go b/vendor/github.com/vbatts/tar-split/tar/asm/doc.go
new file mode 100644
index 0000000000..4367b90220
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/asm/doc.go
@@ -0,0 +1,9 @@
+/*
+Package asm provides the API for streaming assembly and disassembly of tar
+archives.
+
+Using the `github.com/vbatts/tar-split/tar/storage` for Packing/Unpacking the
+metadata for a stream, as well as an implementation of Getting/Putting the file
+entries' payload.
+*/
+package asm
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/doc.go b/vendor/github.com/vbatts/tar-split/tar/storage/doc.go
new file mode 100644
index 0000000000..83f7089ff1
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/storage/doc.go
@@ -0,0 +1,12 @@
+/*
+Package storage is for metadata of a tar archive.
+
+Packing and unpacking the Entries of the stream. The types of streams are
+either segments of raw bytes (for the raw headers and various padding) and for
+an entry marking a file payload.
+
+The raw bytes are stored precisely in the packed (marshalled) Entry, whereas
+the file payload marker include the name of the file, size, and crc64 checksum
+(for basic file integrity).
+*/
+package storage
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/entry.go b/vendor/github.com/vbatts/tar-split/tar/storage/entry.go
new file mode 100644
index 0000000000..c91e7ea1e8
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/storage/entry.go
@@ -0,0 +1,78 @@
+package storage
+
+import "unicode/utf8"
+
+// Entries is for sorting by Position
+type Entries []Entry
+
+func (e Entries) Len() int           { return len(e) }
+func (e Entries) Swap(i, j int)      { e[i], e[j] = e[j], e[i] }
+func (e Entries) Less(i, j int) bool { return e[i].Position < e[j].Position }
+
+// Type of Entry
+type Type int
+
+const (
+	// FileType represents a file payload from the tar stream.
+	//
+	// This will be used to map to relative paths on disk. Only Size > 0 will get
+	// read into a resulting output stream (due to hardlinks).
+	FileType Type = 1 + iota
+	// SegmentType represents a raw bytes segment from the archive stream. These raw
+	// byte segments consist of the raw headers and various padding.
+	//
+	// Its payload is to be marshalled base64 encoded.
+	SegmentType
+)
+
+// Entry is the structure for packing and unpacking the information read from
+// the Tar archive.
+//
+// FileType Payload checksum is using `hash/crc64` for basic file integrity,
+// _not_ for cryptography.
+// From http://www.backplane.com/matt/crc64.html, CRC32 has almost 40,000
+// collisions in a sample of 18.2 million, CRC64 had none.
+type Entry struct {
+	Type     Type   `json:"type"`
+	Name     string `json:"name,omitempty"`
+	NameRaw  []byte `json:"name_raw,omitempty"`
+	Size     int64  `json:"size,omitempty"`
+	Payload  []byte `json:"payload"` // SegmentType stores payload here; FileType stores crc64 checksum here;
+	Position int    `json:"position"`
+}
+
+// SetName will check name for valid UTF-8 string, and set the appropriate
+// field. See https://github.com/vbatts/tar-split/issues/17
+func (e *Entry) SetName(name string) {
+	if utf8.ValidString(name) {
+		e.Name = name
+	} else {
+		e.NameRaw = []byte(name)
+	}
+}
+
+// SetNameBytes will check name for valid UTF-8 string, and set the appropriate
+// field
+func (e *Entry) SetNameBytes(name []byte) {
+	if utf8.Valid(name) {
+		e.Name = string(name)
+	} else {
+		e.NameRaw = name
+	}
+}
+
+// GetName returns the string for the entry's name, regardless of the field stored in
+func (e *Entry) GetName() string {
+	if len(e.NameRaw) > 0 {
+		return string(e.NameRaw)
+	}
+	return e.Name
+}
+
+// GetNameBytes returns the bytes for the entry's name, regardless of the field stored in
+func (e *Entry) GetNameBytes() []byte {
+	if len(e.NameRaw) > 0 {
+		return e.NameRaw
+	}
+	return []byte(e.Name)
+}
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/getter.go b/vendor/github.com/vbatts/tar-split/tar/storage/getter.go
new file mode 100644
index 0000000000..ae11f8ffd4
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/storage/getter.go
@@ -0,0 +1,104 @@
+package storage
+
+import (
+	"bytes"
+	"errors"
+	"hash/crc64"
+	"io"
+	"os"
+	"path/filepath"
+)
+
+// FileGetter is the interface for getting a stream of a file payload,
+// addressed by name/filename. Presumably, the names will be scoped to relative
+// file paths.
+type FileGetter interface {
+	// Get returns a stream for the provided file path
+	Get(filename string) (output io.ReadCloser, err error)
+}
+
+// FilePutter is the interface for storing a stream of a file payload,
+// addressed by name/filename.
+type FilePutter interface {
+	// Put returns the size of the stream received, and the crc64 checksum for
+	// the provided stream
+	Put(filename string, input io.Reader) (size int64, checksum []byte, err error)
+}
+
+// FileGetPutter is the interface that groups both Getting and Putting file
+// payloads.
+type FileGetPutter interface {
+	FileGetter
+	FilePutter
+}
+
+// NewPathFileGetter returns a FileGetter that is for files relative to path
+// relpath.
+func NewPathFileGetter(relpath string) FileGetter {
+	return &pathFileGetter{root: relpath}
+}
+
+type pathFileGetter struct {
+	root string
+}
+
+func (pfg pathFileGetter) Get(filename string) (io.ReadCloser, error) {
+	return os.Open(filepath.Join(pfg.root, filename))
+}
+
+type bufferFileGetPutter struct {
+	files map[string][]byte
+}
+
+func (bfgp bufferFileGetPutter) Get(name string) (io.ReadCloser, error) {
+	if _, ok := bfgp.files[name]; !ok {
+		return nil, errors.New("no such file")
+	}
+	b := bytes.NewBuffer(bfgp.files[name])
+	return &readCloserWrapper{b}, nil
+}
+
+func (bfgp *bufferFileGetPutter) Put(name string, r io.Reader) (int64, []byte, error) {
+	crc := crc64.New(CRCTable)
+	buf := bytes.NewBuffer(nil)
+	cw := io.MultiWriter(crc, buf)
+	i, err := io.Copy(cw, r)
+	if err != nil {
+		return 0, nil, err
+	}
+	bfgp.files[name] = buf.Bytes()
+	return i, crc.Sum(nil), nil
+}
+
+type readCloserWrapper struct {
+	io.Reader
+}
+
+func (w *readCloserWrapper) Close() error { return nil }
+
+// NewBufferFileGetPutter is a simple in-memory FileGetPutter
+//
+// Implication is this is memory intensive...
+// Probably best for testing or light weight cases.
+func NewBufferFileGetPutter() FileGetPutter {
+	return &bufferFileGetPutter{
+		files: map[string][]byte{},
+	}
+}
+
+// NewDiscardFilePutter is a bit bucket FilePutter
+func NewDiscardFilePutter() FilePutter {
+	return &bitBucketFilePutter{}
+}
+
+type bitBucketFilePutter struct {
+}
+
+func (bbfp *bitBucketFilePutter) Put(name string, r io.Reader) (int64, []byte, error) {
+	c := crc64.New(CRCTable)
+	i, err := io.Copy(c, r)
+	return i, c.Sum(nil), err
+}
+
+// CRCTable is the default table used for crc64 sum calculations
+var CRCTable = crc64.MakeTable(crc64.ISO)
diff --git a/vendor/github.com/vbatts/tar-split/tar/storage/packer.go b/vendor/github.com/vbatts/tar-split/tar/storage/packer.go
new file mode 100644
index 0000000000..aba6948185
--- /dev/null
+++ b/vendor/github.com/vbatts/tar-split/tar/storage/packer.go
@@ -0,0 +1,127 @@
+package storage
+
+import (
+	"encoding/json"
+	"errors"
+	"io"
+	"path/filepath"
+	"unicode/utf8"
+)
+
+// ErrDuplicatePath occurs when a tar archive has more than one entry for the
+// same file path
+var ErrDuplicatePath = errors.New("duplicates of file paths not supported")
+
+// Packer describes the methods to pack Entries to a storage destination
+type Packer interface {
+	// AddEntry packs the Entry and returns its position
+	AddEntry(e Entry) (int, error)
+}
+
+// Unpacker describes the methods to read Entries from a source
+type Unpacker interface {
+	// Next returns the next Entry being unpacked, or error, until io.EOF
+	Next() (*Entry, error)
+}
+
+/* TODO(vbatts) figure out a good model for this
+type PackUnpacker interface {
+	Packer
+	Unpacker
+}
+*/
+
+type jsonUnpacker struct {
+	seen seenNames
+	dec  *json.Decoder
+}
+
+func (jup *jsonUnpacker) Next() (*Entry, error) {
+	var e Entry
+	err := jup.dec.Decode(&e)
+	if err != nil {
+		return nil, err
+	}
+
+	// check for dup name
+	if e.Type == FileType {
+		cName := filepath.Clean(e.GetName())
+		if _, ok := jup.seen[cName]; ok {
+			return nil, ErrDuplicatePath
+		}
+		jup.seen[cName] = struct{}{}
+	}
+
+	return &e, err
+}
+
+// NewJSONUnpacker provides an Unpacker that reads Entries (SegmentType and
+// FileType) as a json document.
+//
+// Each Entry read are expected to be delimited by new line.
+func NewJSONUnpacker(r io.Reader) Unpacker {
+	return &jsonUnpacker{
+		dec:  json.NewDecoder(r),
+		seen: seenNames{},
+	}
+}
+
+type jsonPacker struct {
+	w    io.Writer
+	e    *json.Encoder
+	pos  int
+	seen seenNames
+}
+
+type seenNames map[string]struct{}
+
+func (jp *jsonPacker) AddEntry(e Entry) (int, error) {
+	// if Name is not valid utf8, switch it to raw first.
+	if e.Name != "" {
+		if !utf8.ValidString(e.Name) {
+			e.NameRaw = []byte(e.Name)
+			e.Name = ""
+		}
+	}
+
+	// check early for dup name
+	if e.Type == FileType {
+		cName := filepath.Clean(e.GetName())
+		if _, ok := jp.seen[cName]; ok {
+			return -1, ErrDuplicatePath
+		}
+		jp.seen[cName] = struct{}{}
+	}
+
+	e.Position = jp.pos
+	err := jp.e.Encode(e)
+	if err != nil {
+		return -1, err
+	}
+
+	// made it this far, increment now
+	jp.pos++
+	return e.Position, nil
+}
+
+// NewJSONPacker provides a Packer that writes each Entry (SegmentType and
+// FileType) as a json document.
+//
+// The Entries are delimited by new line.
+func NewJSONPacker(w io.Writer) Packer {
+	return &jsonPacker{
+		w:    w,
+		e:    json.NewEncoder(w),
+		seen: seenNames{},
+	}
+}
+
+/*
+TODO(vbatts) perhaps have a more compact packer/unpacker, maybe using msgapck
+(https://github.com/ugorji/go)
+
+
+Even though, since our jsonUnpacker and jsonPacker just take
+io.Reader/io.Writer, then we can get away with passing them a
+gzip.Reader/gzip.Writer
+*/
diff --git a/vendor/github.com/vishvananda/netlink/LICENSE b/vendor/github.com/vishvananda/netlink/LICENSE
new file mode 100644
index 0000000000..9f64db8582
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/LICENSE
@@ -0,0 +1,192 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2014 Vishvananda Ishaya.
+   Copyright 2014 Docker, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/vishvananda/netlink/addr.go b/vendor/github.com/vishvananda/netlink/addr.go
new file mode 100644
index 0000000000..f08c956969
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/addr.go
@@ -0,0 +1,56 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"strings"
+)
+
+// Addr represents an IP address from netlink. Netlink ip addresses
+// include a mask, so it stores the address as a net.IPNet.
+type Addr struct {
+	*net.IPNet
+	Label       string
+	Flags       int
+	Scope       int
+	Peer        *net.IPNet
+	Broadcast   net.IP
+	PreferedLft int
+	ValidLft    int
+}
+
+// String returns $ip/$netmask $label
+func (a Addr) String() string {
+	return strings.TrimSpace(fmt.Sprintf("%s %s", a.IPNet, a.Label))
+}
+
+// ParseAddr parses the string representation of an address in the
+// form $ip/$netmask $label. The label portion is optional
+func ParseAddr(s string) (*Addr, error) {
+	label := ""
+	parts := strings.Split(s, " ")
+	if len(parts) > 1 {
+		s = parts[0]
+		label = parts[1]
+	}
+	m, err := ParseIPNet(s)
+	if err != nil {
+		return nil, err
+	}
+	return &Addr{IPNet: m, Label: label}, nil
+}
+
+// Equal returns true if both Addrs have the same net.IPNet value.
+func (a Addr) Equal(x Addr) bool {
+	sizea, _ := a.Mask.Size()
+	sizeb, _ := x.Mask.Size()
+	// ignore label for comparison
+	return a.IP.Equal(x.IP) && sizea == sizeb
+}
+
+func (a Addr) PeerEqual(x Addr) bool {
+	sizea, _ := a.Peer.Mask.Size()
+	sizeb, _ := x.Peer.Mask.Size()
+	// ignore label for comparison
+	return a.Peer.IP.Equal(x.Peer.IP) && sizea == sizeb
+}
diff --git a/vendor/github.com/vishvananda/netlink/addr_linux.go b/vendor/github.com/vishvananda/netlink/addr_linux.go
new file mode 100644
index 0000000000..8808b42d9b
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/addr_linux.go
@@ -0,0 +1,316 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"strings"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+// IFA_FLAGS is a u32 attribute.
+const IFA_FLAGS = 0x8
+
+// AddrAdd will add an IP address to a link device.
+// Equivalent to: `ip addr add $addr dev $link`
+func AddrAdd(link Link, addr *Addr) error {
+	return pkgHandle.AddrAdd(link, addr)
+}
+
+// AddrAdd will add an IP address to a link device.
+// Equivalent to: `ip addr add $addr dev $link`
+func (h *Handle) AddrAdd(link Link, addr *Addr) error {
+	req := h.newNetlinkRequest(syscall.RTM_NEWADDR, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	return h.addrHandle(link, addr, req)
+}
+
+// AddrReplace will replace (or, if not present, add) an IP address on a link device.
+// Equivalent to: `ip addr replace $addr dev $link`
+func AddrReplace(link Link, addr *Addr) error {
+	return pkgHandle.AddrReplace(link, addr)
+}
+
+// AddrReplace will replace (or, if not present, add) an IP address on a link device.
+// Equivalent to: `ip addr replace $addr dev $link`
+func (h *Handle) AddrReplace(link Link, addr *Addr) error {
+	req := h.newNetlinkRequest(syscall.RTM_NEWADDR, syscall.NLM_F_CREATE|syscall.NLM_F_REPLACE|syscall.NLM_F_ACK)
+	return h.addrHandle(link, addr, req)
+}
+
+// AddrDel will delete an IP address from a link device.
+// Equivalent to: `ip addr del $addr dev $link`
+func AddrDel(link Link, addr *Addr) error {
+	return pkgHandle.AddrDel(link, addr)
+}
+
+// AddrDel will delete an IP address from a link device.
+// Equivalent to: `ip addr del $addr dev $link`
+func (h *Handle) AddrDel(link Link, addr *Addr) error {
+	req := h.newNetlinkRequest(syscall.RTM_DELADDR, syscall.NLM_F_ACK)
+	return h.addrHandle(link, addr, req)
+}
+
+func (h *Handle) addrHandle(link Link, addr *Addr, req *nl.NetlinkRequest) error {
+	base := link.Attrs()
+	if addr.Label != "" && !strings.HasPrefix(addr.Label, base.Name) {
+		return fmt.Errorf("label must begin with interface name")
+	}
+	h.ensureIndex(base)
+
+	family := nl.GetIPFamily(addr.IP)
+
+	msg := nl.NewIfAddrmsg(family)
+	msg.Index = uint32(base.Index)
+	msg.Scope = uint8(addr.Scope)
+	prefixlen, masklen := addr.Mask.Size()
+	msg.Prefixlen = uint8(prefixlen)
+	req.AddData(msg)
+
+	var localAddrData []byte
+	if family == FAMILY_V4 {
+		localAddrData = addr.IP.To4()
+	} else {
+		localAddrData = addr.IP.To16()
+	}
+
+	localData := nl.NewRtAttr(syscall.IFA_LOCAL, localAddrData)
+	req.AddData(localData)
+	var peerAddrData []byte
+	if addr.Peer != nil {
+		if family == FAMILY_V4 {
+			peerAddrData = addr.Peer.IP.To4()
+		} else {
+			peerAddrData = addr.Peer.IP.To16()
+		}
+	} else {
+		peerAddrData = localAddrData
+	}
+
+	addressData := nl.NewRtAttr(syscall.IFA_ADDRESS, peerAddrData)
+	req.AddData(addressData)
+
+	if addr.Flags != 0 {
+		if addr.Flags <= 0xff {
+			msg.IfAddrmsg.Flags = uint8(addr.Flags)
+		} else {
+			b := make([]byte, 4)
+			native.PutUint32(b, uint32(addr.Flags))
+			flagsData := nl.NewRtAttr(IFA_FLAGS, b)
+			req.AddData(flagsData)
+		}
+	}
+
+	if addr.Broadcast == nil {
+		calcBroadcast := make(net.IP, masklen/8)
+		for i := range localAddrData {
+			calcBroadcast[i] = localAddrData[i] | ^addr.Mask[i]
+		}
+		addr.Broadcast = calcBroadcast
+	}
+	req.AddData(nl.NewRtAttr(syscall.IFA_BROADCAST, addr.Broadcast))
+
+	if addr.Label != "" {
+		labelData := nl.NewRtAttr(syscall.IFA_LABEL, nl.ZeroTerminated(addr.Label))
+		req.AddData(labelData)
+	}
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// AddrList gets a list of IP addresses in the system.
+// Equivalent to: `ip addr show`.
+// The list can be filtered by link and ip family.
+func AddrList(link Link, family int) ([]Addr, error) {
+	return pkgHandle.AddrList(link, family)
+}
+
+// AddrList gets a list of IP addresses in the system.
+// Equivalent to: `ip addr show`.
+// The list can be filtered by link and ip family.
+func (h *Handle) AddrList(link Link, family int) ([]Addr, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETADDR, syscall.NLM_F_DUMP)
+	msg := nl.NewIfInfomsg(family)
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWADDR)
+	if err != nil {
+		return nil, err
+	}
+
+	indexFilter := 0
+	if link != nil {
+		base := link.Attrs()
+		h.ensureIndex(base)
+		indexFilter = base.Index
+	}
+
+	var res []Addr
+	for _, m := range msgs {
+		addr, msgFamily, ifindex, err := parseAddr(m)
+		if err != nil {
+			return res, err
+		}
+
+		if link != nil && ifindex != indexFilter {
+			// Ignore messages from other interfaces
+			continue
+		}
+
+		if family != FAMILY_ALL && msgFamily != family {
+			continue
+		}
+
+		res = append(res, addr)
+	}
+
+	return res, nil
+}
+
+func parseAddr(m []byte) (addr Addr, family, index int, err error) {
+	msg := nl.DeserializeIfAddrmsg(m)
+
+	family = -1
+	index = -1
+
+	attrs, err1 := nl.ParseRouteAttr(m[msg.Len():])
+	if err1 != nil {
+		err = err1
+		return
+	}
+
+	family = int(msg.Family)
+	index = int(msg.Index)
+
+	var local, dst *net.IPNet
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case syscall.IFA_ADDRESS:
+			dst = &net.IPNet{
+				IP:   attr.Value,
+				Mask: net.CIDRMask(int(msg.Prefixlen), 8*len(attr.Value)),
+			}
+			addr.Peer = dst
+		case syscall.IFA_LOCAL:
+			local = &net.IPNet{
+				IP:   attr.Value,
+				Mask: net.CIDRMask(int(msg.Prefixlen), 8*len(attr.Value)),
+			}
+			addr.IPNet = local
+		case syscall.IFA_BROADCAST:
+			addr.Broadcast = attr.Value
+		case syscall.IFA_LABEL:
+			addr.Label = string(attr.Value[:len(attr.Value)-1])
+		case IFA_FLAGS:
+			addr.Flags = int(native.Uint32(attr.Value[0:4]))
+		case nl.IFA_CACHEINFO:
+			ci := nl.DeserializeIfaCacheInfo(attr.Value)
+			addr.PreferedLft = int(ci.IfaPrefered)
+			addr.ValidLft = int(ci.IfaValid)
+		}
+	}
+
+	// IFA_LOCAL should be there but if not, fall back to IFA_ADDRESS
+	if local != nil {
+		addr.IPNet = local
+	} else {
+		addr.IPNet = dst
+	}
+	addr.Scope = int(msg.Scope)
+
+	return
+}
+
+type AddrUpdate struct {
+	LinkAddress net.IPNet
+	LinkIndex   int
+	Flags       int
+	Scope       int
+	PreferedLft int
+	ValidLft    int
+	NewAddr     bool // true=added false=deleted
+}
+
+// AddrSubscribe takes a chan down which notifications will be sent
+// when addresses change.  Close the 'done' chan to stop subscription.
+func AddrSubscribe(ch chan<- AddrUpdate, done <-chan struct{}) error {
+	return addrSubscribeAt(netns.None(), netns.None(), ch, done, nil)
+}
+
+// AddrSubscribeAt works like AddrSubscribe plus it allows the caller
+// to choose the network namespace in which to subscribe (ns).
+func AddrSubscribeAt(ns netns.NsHandle, ch chan<- AddrUpdate, done <-chan struct{}) error {
+	return addrSubscribeAt(ns, netns.None(), ch, done, nil)
+}
+
+// AddrSubscribeOptions contains a set of options to use with
+// AddrSubscribeWithOptions.
+type AddrSubscribeOptions struct {
+	Namespace     *netns.NsHandle
+	ErrorCallback func(error)
+}
+
+// AddrSubscribeWithOptions work like AddrSubscribe but enable to
+// provide additional options to modify the behavior. Currently, the
+// namespace can be provided as well as an error callback.
+func AddrSubscribeWithOptions(ch chan<- AddrUpdate, done <-chan struct{}, options AddrSubscribeOptions) error {
+	if options.Namespace == nil {
+		none := netns.None()
+		options.Namespace = &none
+	}
+	return addrSubscribeAt(*options.Namespace, netns.None(), ch, done, options.ErrorCallback)
+}
+
+func addrSubscribeAt(newNs, curNs netns.NsHandle, ch chan<- AddrUpdate, done <-chan struct{}, cberr func(error)) error {
+	s, err := nl.SubscribeAt(newNs, curNs, syscall.NETLINK_ROUTE, syscall.RTNLGRP_IPV4_IFADDR, syscall.RTNLGRP_IPV6_IFADDR)
+	if err != nil {
+		return err
+	}
+	if done != nil {
+		go func() {
+			<-done
+			s.Close()
+		}()
+	}
+	go func() {
+		defer close(ch)
+		for {
+			msgs, err := s.Receive()
+			if err != nil {
+				if cberr != nil {
+					cberr(err)
+				}
+				return
+			}
+			for _, m := range msgs {
+				msgType := m.Header.Type
+				if msgType != syscall.RTM_NEWADDR && msgType != syscall.RTM_DELADDR {
+					if cberr != nil {
+						cberr(fmt.Errorf("bad message type: %d", msgType))
+					}
+					return
+				}
+
+				addr, _, ifindex, err := parseAddr(m.Data)
+				if err != nil {
+					if cberr != nil {
+						cberr(fmt.Errorf("could not parse address: %v", err))
+					}
+					return
+				}
+
+				ch <- AddrUpdate{LinkAddress: *addr.IPNet,
+					LinkIndex:   ifindex,
+					NewAddr:     msgType == syscall.RTM_NEWADDR,
+					Flags:       addr.Flags,
+					Scope:       addr.Scope,
+					PreferedLft: addr.PreferedLft,
+					ValidLft:    addr.ValidLft}
+			}
+		}
+	}()
+
+	return nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/bpf_linux.go b/vendor/github.com/vishvananda/netlink/bpf_linux.go
new file mode 100644
index 0000000000..533743987a
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/bpf_linux.go
@@ -0,0 +1,62 @@
+package netlink
+
+/*
+#include <asm/types.h>
+#include <asm/unistd.h>
+#include <errno.h>
+#include <stdio.h>
+#include <stdint.h>
+#include <unistd.h>
+
+static int load_simple_bpf(int prog_type, int ret) {
+#ifdef __NR_bpf
+	// { return ret; }
+	__u64 __attribute__((aligned(8))) insns[] = {
+		0x00000000000000b7ull | ((__u64)ret<<32),
+		0x0000000000000095ull,
+	};
+	__u8 __attribute__((aligned(8))) license[] = "ASL2";
+	// Copied from a header file since libc is notoriously slow to update.
+	// The call will succeed or fail and that will be our indication on
+	// whether or not it is supported.
+	struct {
+		__u32 prog_type;
+		__u32 insn_cnt;
+		__u64 insns;
+		__u64 license;
+		__u32 log_level;
+		__u32 log_size;
+		__u64 log_buf;
+		__u32 kern_version;
+	} __attribute__((aligned(8))) attr = {
+		.prog_type = prog_type,
+		.insn_cnt = 2,
+		.insns = (uintptr_t)&insns,
+		.license = (uintptr_t)&license,
+	};
+	return syscall(__NR_bpf, 5, &attr, sizeof(attr));
+#else
+	errno = EINVAL;
+	return -1;
+#endif
+}
+*/
+import "C"
+
+type BpfProgType C.int
+
+const (
+	BPF_PROG_TYPE_UNSPEC BpfProgType = iota
+	BPF_PROG_TYPE_SOCKET_FILTER
+	BPF_PROG_TYPE_KPROBE
+	BPF_PROG_TYPE_SCHED_CLS
+	BPF_PROG_TYPE_SCHED_ACT
+	BPF_PROG_TYPE_TRACEPOINT
+	BPF_PROG_TYPE_XDP
+)
+
+// loadSimpleBpf loads a trivial bpf program for testing purposes
+func loadSimpleBpf(progType BpfProgType, ret int) (int, error) {
+	fd, err := C.load_simple_bpf(C.int(progType), C.int(ret))
+	return int(fd), err
+}
diff --git a/vendor/github.com/vishvananda/netlink/bridge_linux.go b/vendor/github.com/vishvananda/netlink/bridge_linux.go
new file mode 100644
index 0000000000..a65d6a1319
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/bridge_linux.go
@@ -0,0 +1,115 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// BridgeVlanList gets a map of device id to bridge vlan infos.
+// Equivalent to: `bridge vlan show`
+func BridgeVlanList() (map[int32][]*nl.BridgeVlanInfo, error) {
+	return pkgHandle.BridgeVlanList()
+}
+
+// BridgeVlanList gets a map of device id to bridge vlan infos.
+// Equivalent to: `bridge vlan show`
+func (h *Handle) BridgeVlanList() (map[int32][]*nl.BridgeVlanInfo, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_DUMP)
+	msg := nl.NewIfInfomsg(syscall.AF_BRIDGE)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.IFLA_EXT_MASK, nl.Uint32Attr(uint32(nl.RTEXT_FILTER_BRVLAN))))
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWLINK)
+	if err != nil {
+		return nil, err
+	}
+	ret := make(map[int32][]*nl.BridgeVlanInfo)
+	for _, m := range msgs {
+		msg := nl.DeserializeIfInfomsg(m)
+
+		attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+		if err != nil {
+			return nil, err
+		}
+		for _, attr := range attrs {
+			switch attr.Attr.Type {
+			case nl.IFLA_AF_SPEC:
+				//nested attr
+				nestAttrs, err := nl.ParseRouteAttr(attr.Value)
+				if err != nil {
+					return nil, fmt.Errorf("failed to parse nested attr %v", err)
+				}
+				for _, nestAttr := range nestAttrs {
+					switch nestAttr.Attr.Type {
+					case nl.IFLA_BRIDGE_VLAN_INFO:
+						vlanInfo := nl.DeserializeBridgeVlanInfo(nestAttr.Value)
+						ret[msg.Index] = append(ret[msg.Index], vlanInfo)
+					}
+				}
+			}
+		}
+	}
+	return ret, nil
+}
+
+// BridgeVlanAdd adds a new vlan filter entry
+// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
+func BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {
+	return pkgHandle.BridgeVlanAdd(link, vid, pvid, untagged, self, master)
+}
+
+// BridgeVlanAdd adds a new vlan filter entry
+// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
+func (h *Handle) BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {
+	return h.bridgeVlanModify(syscall.RTM_SETLINK, link, vid, pvid, untagged, self, master)
+}
+
+// BridgeVlanDel adds a new vlan filter entry
+// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
+func BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {
+	return pkgHandle.BridgeVlanDel(link, vid, pvid, untagged, self, master)
+}
+
+// BridgeVlanDel adds a new vlan filter entry
+// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
+func (h *Handle) BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {
+	return h.bridgeVlanModify(syscall.RTM_DELLINK, link, vid, pvid, untagged, self, master)
+}
+
+func (h *Handle) bridgeVlanModify(cmd int, link Link, vid uint16, pvid, untagged, self, master bool) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(cmd, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_BRIDGE)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	br := nl.NewRtAttr(nl.IFLA_AF_SPEC, nil)
+	var flags uint16
+	if self {
+		flags |= nl.BRIDGE_FLAGS_SELF
+	}
+	if master {
+		flags |= nl.BRIDGE_FLAGS_MASTER
+	}
+	if flags > 0 {
+		nl.NewRtAttrChild(br, nl.IFLA_BRIDGE_FLAGS, nl.Uint16Attr(flags))
+	}
+	vlanInfo := &nl.BridgeVlanInfo{Vid: vid}
+	if pvid {
+		vlanInfo.Flags |= nl.BRIDGE_VLAN_INFO_PVID
+	}
+	if untagged {
+		vlanInfo.Flags |= nl.BRIDGE_VLAN_INFO_UNTAGGED
+	}
+	nl.NewRtAttrChild(br, nl.IFLA_BRIDGE_VLAN_INFO, vlanInfo.Serialize())
+	req.AddData(br)
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	if err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/class.go b/vendor/github.com/vishvananda/netlink/class.go
new file mode 100644
index 0000000000..8ee13af48e
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/class.go
@@ -0,0 +1,78 @@
+package netlink
+
+import (
+	"fmt"
+)
+
+type Class interface {
+	Attrs() *ClassAttrs
+	Type() string
+}
+
+// ClassAttrs represents a netlink class. A filter is associated with a link,
+// has a handle and a parent. The root filter of a device should have a
+// parent == HANDLE_ROOT.
+type ClassAttrs struct {
+	LinkIndex int
+	Handle    uint32
+	Parent    uint32
+	Leaf      uint32
+}
+
+func (q ClassAttrs) String() string {
+	return fmt.Sprintf("{LinkIndex: %d, Handle: %s, Parent: %s, Leaf: %d}", q.LinkIndex, HandleStr(q.Handle), HandleStr(q.Parent), q.Leaf)
+}
+
+type HtbClassAttrs struct {
+	// TODO handle all attributes
+	Rate    uint64
+	Ceil    uint64
+	Buffer  uint32
+	Cbuffer uint32
+	Quantum uint32
+	Level   uint32
+	Prio    uint32
+}
+
+func (q HtbClassAttrs) String() string {
+	return fmt.Sprintf("{Rate: %d, Ceil: %d, Buffer: %d, Cbuffer: %d}", q.Rate, q.Ceil, q.Buffer, q.Cbuffer)
+}
+
+// HtbClass represents an Htb class
+type HtbClass struct {
+	ClassAttrs
+	Rate    uint64
+	Ceil    uint64
+	Buffer  uint32
+	Cbuffer uint32
+	Quantum uint32
+	Level   uint32
+	Prio    uint32
+}
+
+func (q HtbClass) String() string {
+	return fmt.Sprintf("{Rate: %d, Ceil: %d, Buffer: %d, Cbuffer: %d}", q.Rate, q.Ceil, q.Buffer, q.Cbuffer)
+}
+
+func (q *HtbClass) Attrs() *ClassAttrs {
+	return &q.ClassAttrs
+}
+
+func (q *HtbClass) Type() string {
+	return "htb"
+}
+
+// GenericClass classes represent types that are not currently understood
+// by this netlink library.
+type GenericClass struct {
+	ClassAttrs
+	ClassType string
+}
+
+func (class *GenericClass) Attrs() *ClassAttrs {
+	return &class.ClassAttrs
+}
+
+func (class *GenericClass) Type() string {
+	return class.ClassType
+}
diff --git a/vendor/github.com/vishvananda/netlink/class_linux.go b/vendor/github.com/vishvananda/netlink/class_linux.go
new file mode 100644
index 0000000000..91cd3883de
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/class_linux.go
@@ -0,0 +1,254 @@
+package netlink
+
+import (
+	"errors"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// NOTE: function is in here because it uses other linux functions
+func NewHtbClass(attrs ClassAttrs, cattrs HtbClassAttrs) *HtbClass {
+	mtu := 1600
+	rate := cattrs.Rate / 8
+	ceil := cattrs.Ceil / 8
+	buffer := cattrs.Buffer
+	cbuffer := cattrs.Cbuffer
+
+	if ceil == 0 {
+		ceil = rate
+	}
+
+	if buffer == 0 {
+		buffer = uint32(float64(rate)/Hz() + float64(mtu))
+	}
+	buffer = uint32(Xmittime(rate, buffer))
+
+	if cbuffer == 0 {
+		cbuffer = uint32(float64(ceil)/Hz() + float64(mtu))
+	}
+	cbuffer = uint32(Xmittime(ceil, cbuffer))
+
+	return &HtbClass{
+		ClassAttrs: attrs,
+		Rate:       rate,
+		Ceil:       ceil,
+		Buffer:     buffer,
+		Cbuffer:    cbuffer,
+		Quantum:    10,
+		Level:      0,
+		Prio:       0,
+	}
+}
+
+// ClassDel will delete a class from the system.
+// Equivalent to: `tc class del $class`
+func ClassDel(class Class) error {
+	return pkgHandle.ClassDel(class)
+}
+
+// ClassDel will delete a class from the system.
+// Equivalent to: `tc class del $class`
+func (h *Handle) ClassDel(class Class) error {
+	return h.classModify(syscall.RTM_DELTCLASS, 0, class)
+}
+
+// ClassChange will change a class in place
+// Equivalent to: `tc class change $class`
+// The parent and handle MUST NOT be changed.
+func ClassChange(class Class) error {
+	return pkgHandle.ClassChange(class)
+}
+
+// ClassChange will change a class in place
+// Equivalent to: `tc class change $class`
+// The parent and handle MUST NOT be changed.
+func (h *Handle) ClassChange(class Class) error {
+	return h.classModify(syscall.RTM_NEWTCLASS, 0, class)
+}
+
+// ClassReplace will replace a class to the system.
+// quivalent to: `tc class replace $class`
+// The handle MAY be changed.
+// If a class already exist with this parent/handle pair, the class is changed.
+// If a class does not already exist with this parent/handle, a new class is created.
+func ClassReplace(class Class) error {
+	return pkgHandle.ClassReplace(class)
+}
+
+// ClassReplace will replace a class to the system.
+// quivalent to: `tc class replace $class`
+// The handle MAY be changed.
+// If a class already exist with this parent/handle pair, the class is changed.
+// If a class does not already exist with this parent/handle, a new class is created.
+func (h *Handle) ClassReplace(class Class) error {
+	return h.classModify(syscall.RTM_NEWTCLASS, syscall.NLM_F_CREATE, class)
+}
+
+// ClassAdd will add a class to the system.
+// Equivalent to: `tc class add $class`
+func ClassAdd(class Class) error {
+	return pkgHandle.ClassAdd(class)
+}
+
+// ClassAdd will add a class to the system.
+// Equivalent to: `tc class add $class`
+func (h *Handle) ClassAdd(class Class) error {
+	return h.classModify(
+		syscall.RTM_NEWTCLASS,
+		syscall.NLM_F_CREATE|syscall.NLM_F_EXCL,
+		class,
+	)
+}
+
+func (h *Handle) classModify(cmd, flags int, class Class) error {
+	req := h.newNetlinkRequest(cmd, flags|syscall.NLM_F_ACK)
+	base := class.Attrs()
+	msg := &nl.TcMsg{
+		Family:  nl.FAMILY_ALL,
+		Ifindex: int32(base.LinkIndex),
+		Handle:  base.Handle,
+		Parent:  base.Parent,
+	}
+	req.AddData(msg)
+
+	if cmd != syscall.RTM_DELTCLASS {
+		if err := classPayload(req, class); err != nil {
+			return err
+		}
+	}
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func classPayload(req *nl.NetlinkRequest, class Class) error {
+	req.AddData(nl.NewRtAttr(nl.TCA_KIND, nl.ZeroTerminated(class.Type())))
+
+	options := nl.NewRtAttr(nl.TCA_OPTIONS, nil)
+	if htb, ok := class.(*HtbClass); ok {
+		opt := nl.TcHtbCopt{}
+		opt.Buffer = htb.Buffer
+		opt.Cbuffer = htb.Cbuffer
+		opt.Quantum = htb.Quantum
+		opt.Level = htb.Level
+		opt.Prio = htb.Prio
+		// TODO: Handle Debug properly. For now default to 0
+		/* Calculate {R,C}Tab and set Rate and Ceil */
+		cellLog := -1
+		ccellLog := -1
+		linklayer := nl.LINKLAYER_ETHERNET
+		mtu := 1600
+		var rtab [256]uint32
+		var ctab [256]uint32
+		tcrate := nl.TcRateSpec{Rate: uint32(htb.Rate)}
+		if CalcRtable(&tcrate, rtab, cellLog, uint32(mtu), linklayer) < 0 {
+			return errors.New("HTB: failed to calculate rate table")
+		}
+		opt.Rate = tcrate
+		tcceil := nl.TcRateSpec{Rate: uint32(htb.Ceil)}
+		if CalcRtable(&tcceil, ctab, ccellLog, uint32(mtu), linklayer) < 0 {
+			return errors.New("HTB: failed to calculate ceil rate table")
+		}
+		opt.Ceil = tcceil
+		nl.NewRtAttrChild(options, nl.TCA_HTB_PARMS, opt.Serialize())
+		nl.NewRtAttrChild(options, nl.TCA_HTB_RTAB, SerializeRtab(rtab))
+		nl.NewRtAttrChild(options, nl.TCA_HTB_CTAB, SerializeRtab(ctab))
+	}
+	req.AddData(options)
+	return nil
+}
+
+// ClassList gets a list of classes in the system.
+// Equivalent to: `tc class show`.
+// Generally returns nothing if link and parent are not specified.
+func ClassList(link Link, parent uint32) ([]Class, error) {
+	return pkgHandle.ClassList(link, parent)
+}
+
+// ClassList gets a list of classes in the system.
+// Equivalent to: `tc class show`.
+// Generally returns nothing if link and parent are not specified.
+func (h *Handle) ClassList(link Link, parent uint32) ([]Class, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETTCLASS, syscall.NLM_F_DUMP)
+	msg := &nl.TcMsg{
+		Family: nl.FAMILY_ALL,
+		Parent: parent,
+	}
+	if link != nil {
+		base := link.Attrs()
+		h.ensureIndex(base)
+		msg.Ifindex = int32(base.Index)
+	}
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWTCLASS)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Class
+	for _, m := range msgs {
+		msg := nl.DeserializeTcMsg(m)
+
+		attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+		if err != nil {
+			return nil, err
+		}
+
+		base := ClassAttrs{
+			LinkIndex: int(msg.Ifindex),
+			Handle:    msg.Handle,
+			Parent:    msg.Parent,
+		}
+
+		var class Class
+		classType := ""
+		for _, attr := range attrs {
+			switch attr.Attr.Type {
+			case nl.TCA_KIND:
+				classType = string(attr.Value[:len(attr.Value)-1])
+				switch classType {
+				case "htb":
+					class = &HtbClass{}
+				default:
+					class = &GenericClass{ClassType: classType}
+				}
+			case nl.TCA_OPTIONS:
+				switch classType {
+				case "htb":
+					data, err := nl.ParseRouteAttr(attr.Value)
+					if err != nil {
+						return nil, err
+					}
+					_, err = parseHtbClassData(class, data)
+					if err != nil {
+						return nil, err
+					}
+				}
+			}
+		}
+		*class.Attrs() = base
+		res = append(res, class)
+	}
+
+	return res, nil
+}
+
+func parseHtbClassData(class Class, data []syscall.NetlinkRouteAttr) (bool, error) {
+	htb := class.(*HtbClass)
+	detailed := false
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_HTB_PARMS:
+			opt := nl.DeserializeTcHtbCopt(datum.Value)
+			htb.Rate = uint64(opt.Rate.Rate)
+			htb.Ceil = uint64(opt.Ceil.Rate)
+			htb.Buffer = opt.Buffer
+			htb.Cbuffer = opt.Cbuffer
+			htb.Quantum = opt.Quantum
+			htb.Level = opt.Level
+			htb.Prio = opt.Prio
+		}
+	}
+	return detailed, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/conntrack_linux.go b/vendor/github.com/vishvananda/netlink/conntrack_linux.go
new file mode 100644
index 0000000000..ecf0445659
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/conntrack_linux.go
@@ -0,0 +1,371 @@
+package netlink
+
+import (
+	"bytes"
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"net"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// ConntrackTableType Conntrack table for the netlink operation
+type ConntrackTableType uint8
+
+const (
+	// ConntrackTable Conntrack table
+	// https://github.com/torvalds/linux/blob/master/include/uapi/linux/netfilter/nfnetlink.h -> #define NFNL_SUBSYS_CTNETLINK		 1
+	ConntrackTable = 1
+	// ConntrackExpectTable Conntrack expect table
+	// https://github.com/torvalds/linux/blob/master/include/uapi/linux/netfilter/nfnetlink.h -> #define NFNL_SUBSYS_CTNETLINK_EXP 2
+	ConntrackExpectTable = 2
+)
+const (
+	// For Parsing Mark
+	TCP_PROTO = 6
+	UDP_PROTO = 17
+)
+const (
+	// backward compatibility with golang 1.6 which does not have io.SeekCurrent
+	seekCurrent = 1
+)
+
+// InetFamily Family type
+type InetFamily uint8
+
+//  -L [table] [options]          List conntrack or expectation table
+//  -G [table] parameters         Get conntrack or expectation
+
+//  -I [table] parameters         Create a conntrack or expectation
+//  -U [table] parameters         Update a conntrack
+//  -E [table] [options]          Show events
+
+//  -C [table]                    Show counter
+//  -S                            Show statistics
+
+// ConntrackTableList returns the flow list of a table of a specific family
+// conntrack -L [table] [options]          List conntrack or expectation table
+func ConntrackTableList(table ConntrackTableType, family InetFamily) ([]*ConntrackFlow, error) {
+	return pkgHandle.ConntrackTableList(table, family)
+}
+
+// ConntrackTableFlush flushes all the flows of a specified table
+// conntrack -F [table]            Flush table
+// The flush operation applies to all the family types
+func ConntrackTableFlush(table ConntrackTableType) error {
+	return pkgHandle.ConntrackTableFlush(table)
+}
+
+// ConntrackDeleteFilter deletes entries on the specified table on the base of the filter
+// conntrack -D [table] parameters         Delete conntrack or expectation
+func ConntrackDeleteFilter(table ConntrackTableType, family InetFamily, filter CustomConntrackFilter) (uint, error) {
+	return pkgHandle.ConntrackDeleteFilter(table, family, filter)
+}
+
+// ConntrackTableList returns the flow list of a table of a specific family using the netlink handle passed
+// conntrack -L [table] [options]          List conntrack or expectation table
+func (h *Handle) ConntrackTableList(table ConntrackTableType, family InetFamily) ([]*ConntrackFlow, error) {
+	res, err := h.dumpConntrackTable(table, family)
+	if err != nil {
+		return nil, err
+	}
+
+	// Deserialize all the flows
+	var result []*ConntrackFlow
+	for _, dataRaw := range res {
+		result = append(result, parseRawData(dataRaw))
+	}
+
+	return result, nil
+}
+
+// ConntrackTableFlush flushes all the flows of a specified table using the netlink handle passed
+// conntrack -F [table]            Flush table
+// The flush operation applies to all the family types
+func (h *Handle) ConntrackTableFlush(table ConntrackTableType) error {
+	req := h.newConntrackRequest(table, syscall.AF_INET, nl.IPCTNL_MSG_CT_DELETE, syscall.NLM_F_ACK)
+	_, err := req.Execute(syscall.NETLINK_NETFILTER, 0)
+	return err
+}
+
+// ConntrackDeleteFilter deletes entries on the specified table on the base of the filter using the netlink handle passed
+// conntrack -D [table] parameters         Delete conntrack or expectation
+func (h *Handle) ConntrackDeleteFilter(table ConntrackTableType, family InetFamily, filter CustomConntrackFilter) (uint, error) {
+	res, err := h.dumpConntrackTable(table, family)
+	if err != nil {
+		return 0, err
+	}
+
+	var matched uint
+	for _, dataRaw := range res {
+		flow := parseRawData(dataRaw)
+		if match := filter.MatchConntrackFlow(flow); match {
+			req2 := h.newConntrackRequest(table, family, nl.IPCTNL_MSG_CT_DELETE, syscall.NLM_F_ACK)
+			// skip the first 4 byte that are the netfilter header, the newConntrackRequest is adding it already
+			req2.AddRawData(dataRaw[4:])
+			req2.Execute(syscall.NETLINK_NETFILTER, 0)
+			matched++
+		}
+	}
+
+	return matched, nil
+}
+
+func (h *Handle) newConntrackRequest(table ConntrackTableType, family InetFamily, operation, flags int) *nl.NetlinkRequest {
+	// Create the Netlink request object
+	req := h.newNetlinkRequest((int(table)<<8)|operation, flags)
+	// Add the netfilter header
+	msg := &nl.Nfgenmsg{
+		NfgenFamily: uint8(family),
+		Version:     nl.NFNETLINK_V0,
+		ResId:       0,
+	}
+	req.AddData(msg)
+	return req
+}
+
+func (h *Handle) dumpConntrackTable(table ConntrackTableType, family InetFamily) ([][]byte, error) {
+	req := h.newConntrackRequest(table, family, nl.IPCTNL_MSG_CT_GET, syscall.NLM_F_DUMP)
+	return req.Execute(syscall.NETLINK_NETFILTER, 0)
+}
+
+// The full conntrack flow structure is very complicated and can be found in the file:
+// http://git.netfilter.org/libnetfilter_conntrack/tree/include/internal/object.h
+// For the time being, the structure below allows to parse and extract the base information of a flow
+type ipTuple struct {
+	SrcIP    net.IP
+	DstIP    net.IP
+	Protocol uint8
+	SrcPort  uint16
+	DstPort  uint16
+}
+
+type ConntrackFlow struct {
+	FamilyType uint8
+	Forward    ipTuple
+	Reverse    ipTuple
+	Mark       uint32
+}
+
+func (s *ConntrackFlow) String() string {
+	// conntrack cmd output:
+	// udp      17 src=127.0.0.1 dst=127.0.0.1 sport=4001 dport=1234 [UNREPLIED] src=127.0.0.1 dst=127.0.0.1 sport=1234 dport=4001 mark=0
+	return fmt.Sprintf("%s\t%d src=%s dst=%s sport=%d dport=%d\tsrc=%s dst=%s sport=%d dport=%d mark=%d",
+		nl.L4ProtoMap[s.Forward.Protocol], s.Forward.Protocol,
+		s.Forward.SrcIP.String(), s.Forward.DstIP.String(), s.Forward.SrcPort, s.Forward.DstPort,
+		s.Reverse.SrcIP.String(), s.Reverse.DstIP.String(), s.Reverse.SrcPort, s.Reverse.DstPort, s.Mark)
+}
+
+// This method parse the ip tuple structure
+// The message structure is the following:
+// <len, [CTA_IP_V4_SRC|CTA_IP_V6_SRC], 16 bytes for the IP>
+// <len, [CTA_IP_V4_DST|CTA_IP_V6_DST], 16 bytes for the IP>
+// <len, NLA_F_NESTED|nl.CTA_TUPLE_PROTO, 1 byte for the protocol, 3 bytes of padding>
+// <len, CTA_PROTO_SRC_PORT, 2 bytes for the source port, 2 bytes of padding>
+// <len, CTA_PROTO_DST_PORT, 2 bytes for the source port, 2 bytes of padding>
+func parseIpTuple(reader *bytes.Reader, tpl *ipTuple) uint8 {
+	for i := 0; i < 2; i++ {
+		_, t, _, v := parseNfAttrTLV(reader)
+		switch t {
+		case nl.CTA_IP_V4_SRC, nl.CTA_IP_V6_SRC:
+			tpl.SrcIP = v
+		case nl.CTA_IP_V4_DST, nl.CTA_IP_V6_DST:
+			tpl.DstIP = v
+		}
+	}
+	// Skip the next 4 bytes  nl.NLA_F_NESTED|nl.CTA_TUPLE_PROTO
+	reader.Seek(4, seekCurrent)
+	_, t, _, v := parseNfAttrTLV(reader)
+	if t == nl.CTA_PROTO_NUM {
+		tpl.Protocol = uint8(v[0])
+	}
+	// Skip some padding 3 bytes
+	reader.Seek(3, seekCurrent)
+	for i := 0; i < 2; i++ {
+		_, t, _ := parseNfAttrTL(reader)
+		switch t {
+		case nl.CTA_PROTO_SRC_PORT:
+			parseBERaw16(reader, &tpl.SrcPort)
+		case nl.CTA_PROTO_DST_PORT:
+			parseBERaw16(reader, &tpl.DstPort)
+		}
+		// Skip some padding 2 byte
+		reader.Seek(2, seekCurrent)
+	}
+	return tpl.Protocol
+}
+
+func parseNfAttrTLV(r *bytes.Reader) (isNested bool, attrType, len uint16, value []byte) {
+	isNested, attrType, len = parseNfAttrTL(r)
+
+	value = make([]byte, len)
+	binary.Read(r, binary.BigEndian, &value)
+	return isNested, attrType, len, value
+}
+
+func parseNfAttrTL(r *bytes.Reader) (isNested bool, attrType, len uint16) {
+	binary.Read(r, nl.NativeEndian(), &len)
+	len -= nl.SizeofNfattr
+
+	binary.Read(r, nl.NativeEndian(), &attrType)
+	isNested = (attrType & nl.NLA_F_NESTED) == nl.NLA_F_NESTED
+	attrType = attrType & (nl.NLA_F_NESTED - 1)
+
+	return isNested, attrType, len
+}
+
+func parseBERaw16(r *bytes.Reader, v *uint16) {
+	binary.Read(r, binary.BigEndian, v)
+}
+
+func parseRawData(data []byte) *ConntrackFlow {
+	s := &ConntrackFlow{}
+	var proto uint8
+	// First there is the Nfgenmsg header
+	// consume only the family field
+	reader := bytes.NewReader(data)
+	binary.Read(reader, nl.NativeEndian(), &s.FamilyType)
+
+	// skip rest of the Netfilter header
+	reader.Seek(3, seekCurrent)
+	// The message structure is the following:
+	// <len, NLA_F_NESTED|CTA_TUPLE_ORIG> 4 bytes
+	// <len, NLA_F_NESTED|CTA_TUPLE_IP> 4 bytes
+	// flow information of the forward flow
+	// <len, NLA_F_NESTED|CTA_TUPLE_REPLY> 4 bytes
+	// <len, NLA_F_NESTED|CTA_TUPLE_IP> 4 bytes
+	// flow information of the reverse flow
+	for reader.Len() > 0 {
+		nested, t, l := parseNfAttrTL(reader)
+		if nested && t == nl.CTA_TUPLE_ORIG {
+			if nested, t, _ = parseNfAttrTL(reader); nested && t == nl.CTA_TUPLE_IP {
+				proto = parseIpTuple(reader, &s.Forward)
+			}
+		} else if nested && t == nl.CTA_TUPLE_REPLY {
+			if nested, t, _ = parseNfAttrTL(reader); nested && t == nl.CTA_TUPLE_IP {
+				parseIpTuple(reader, &s.Reverse)
+
+				// Got all the useful information stop parsing
+				break
+			} else {
+				// Header not recognized skip it
+				reader.Seek(int64(l), seekCurrent)
+			}
+		}
+	}
+	if proto == TCP_PROTO {
+		reader.Seek(64, seekCurrent)
+		_, t, _, v := parseNfAttrTLV(reader)
+		if t == nl.CTA_MARK {
+			s.Mark = uint32(v[3])
+		}
+	} else if proto == UDP_PROTO {
+		reader.Seek(16, seekCurrent)
+		_, t, _, v := parseNfAttrTLV(reader)
+		if t == nl.CTA_MARK {
+			s.Mark = uint32(v[3])
+		}
+	}
+	return s
+}
+
+// Conntrack parameters and options:
+//   -n, --src-nat ip                      source NAT ip
+//   -g, --dst-nat ip                      destination NAT ip
+//   -j, --any-nat ip                      source or destination NAT ip
+//   -m, --mark mark                       Set mark
+//   -c, --secmark secmark                 Set selinux secmark
+//   -e, --event-mask eventmask            Event mask, eg. NEW,DESTROY
+//   -z, --zero                            Zero counters while listing
+//   -o, --output type[,...]               Output format, eg. xml
+//   -l, --label label[,...]               conntrack labels
+
+// Common parameters and options:
+//   -s, --src, --orig-src ip              Source address from original direction
+//   -d, --dst, --orig-dst ip              Destination address from original direction
+//   -r, --reply-src ip            Source addres from reply direction
+//   -q, --reply-dst ip            Destination address from reply direction
+//   -p, --protonum proto          Layer 4 Protocol, eg. 'tcp'
+//   -f, --family proto            Layer 3 Protocol, eg. 'ipv6'
+//   -t, --timeout timeout         Set timeout
+//   -u, --status status           Set status, eg. ASSURED
+//   -w, --zone value              Set conntrack zone
+//   --orig-zone value             Set zone for original direction
+//   --reply-zone value            Set zone for reply direction
+//   -b, --buffer-size             Netlink socket buffer size
+//   --mask-src ip                 Source mask address
+//   --mask-dst ip                 Destination mask address
+
+// Filter types
+type ConntrackFilterType uint8
+
+const (
+	ConntrackOrigSrcIP = iota // -orig-src ip   Source address from original direction
+	ConntrackOrigDstIP        // -orig-dst ip   Destination address from original direction
+	ConntrackNatSrcIP         // -src-nat ip    Source NAT ip
+	ConntrackNatDstIP         // -dst-nat ip    Destination NAT ip
+	ConntrackNatAnyIP         // -any-nat ip    Source or destination NAT ip
+)
+
+type CustomConntrackFilter interface {
+	// MatchConntrackFlow applies the filter to the flow and returns true if the flow matches
+	// the filter or false otherwise
+	MatchConntrackFlow(flow *ConntrackFlow) bool
+}
+
+type ConntrackFilter struct {
+	ipFilter map[ConntrackFilterType]net.IP
+}
+
+// AddIP adds an IP to the conntrack filter
+func (f *ConntrackFilter) AddIP(tp ConntrackFilterType, ip net.IP) error {
+	if f.ipFilter == nil {
+		f.ipFilter = make(map[ConntrackFilterType]net.IP)
+	}
+	if _, ok := f.ipFilter[tp]; ok {
+		return errors.New("Filter attribute already present")
+	}
+	f.ipFilter[tp] = ip
+	return nil
+}
+
+// MatchConntrackFlow applies the filter to the flow and returns true if the flow matches the filter
+// false otherwise
+func (f *ConntrackFilter) MatchConntrackFlow(flow *ConntrackFlow) bool {
+	if len(f.ipFilter) == 0 {
+		// empty filter always not match
+		return false
+	}
+
+	match := true
+	// -orig-src ip   Source address from original direction
+	if elem, found := f.ipFilter[ConntrackOrigSrcIP]; found {
+		match = match && elem.Equal(flow.Forward.SrcIP)
+	}
+
+	// -orig-dst ip   Destination address from original direction
+	if elem, found := f.ipFilter[ConntrackOrigDstIP]; match && found {
+		match = match && elem.Equal(flow.Forward.DstIP)
+	}
+
+	// -src-nat ip    Source NAT ip
+	if elem, found := f.ipFilter[ConntrackNatSrcIP]; match && found {
+		match = match && elem.Equal(flow.Reverse.SrcIP)
+	}
+
+	// -dst-nat ip    Destination NAT ip
+	if elem, found := f.ipFilter[ConntrackNatDstIP]; match && found {
+		match = match && elem.Equal(flow.Reverse.DstIP)
+	}
+
+	// -any-nat ip    Source or destination NAT ip
+	if elem, found := f.ipFilter[ConntrackNatAnyIP]; match && found {
+		match = match && (elem.Equal(flow.Reverse.SrcIP) || elem.Equal(flow.Reverse.DstIP))
+	}
+
+	return match
+}
+
+var _ CustomConntrackFilter = (*ConntrackFilter)(nil)
diff --git a/vendor/github.com/vishvananda/netlink/conntrack_unspecified.go b/vendor/github.com/vishvananda/netlink/conntrack_unspecified.go
new file mode 100644
index 0000000000..af7af799e7
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/conntrack_unspecified.go
@@ -0,0 +1,53 @@
+// +build !linux
+
+package netlink
+
+// ConntrackTableType Conntrack table for the netlink operation
+type ConntrackTableType uint8
+
+// InetFamily Family type
+type InetFamily uint8
+
+// ConntrackFlow placeholder
+type ConntrackFlow struct{}
+
+// ConntrackFilter placeholder
+type ConntrackFilter struct{}
+
+// ConntrackTableList returns the flow list of a table of a specific family
+// conntrack -L [table] [options]          List conntrack or expectation table
+func ConntrackTableList(table ConntrackTableType, family InetFamily) ([]*ConntrackFlow, error) {
+	return nil, ErrNotImplemented
+}
+
+// ConntrackTableFlush flushes all the flows of a specified table
+// conntrack -F [table]            Flush table
+// The flush operation applies to all the family types
+func ConntrackTableFlush(table ConntrackTableType) error {
+	return ErrNotImplemented
+}
+
+// ConntrackDeleteFilter deletes entries on the specified table on the base of the filter
+// conntrack -D [table] parameters         Delete conntrack or expectation
+func ConntrackDeleteFilter(table ConntrackTableType, family InetFamily, filter *ConntrackFilter) (uint, error) {
+	return 0, ErrNotImplemented
+}
+
+// ConntrackTableList returns the flow list of a table of a specific family using the netlink handle passed
+// conntrack -L [table] [options]          List conntrack or expectation table
+func (h *Handle) ConntrackTableList(table ConntrackTableType, family InetFamily) ([]*ConntrackFlow, error) {
+	return nil, ErrNotImplemented
+}
+
+// ConntrackTableFlush flushes all the flows of a specified table using the netlink handle passed
+// conntrack -F [table]            Flush table
+// The flush operation applies to all the family types
+func (h *Handle) ConntrackTableFlush(table ConntrackTableType) error {
+	return ErrNotImplemented
+}
+
+// ConntrackDeleteFilter deletes entries on the specified table on the base of the filter using the netlink handle passed
+// conntrack -D [table] parameters         Delete conntrack or expectation
+func (h *Handle) ConntrackDeleteFilter(table ConntrackTableType, family InetFamily, filter *ConntrackFilter) (uint, error) {
+	return 0, ErrNotImplemented
+}
diff --git a/vendor/github.com/vishvananda/netlink/filter.go b/vendor/github.com/vishvananda/netlink/filter.go
new file mode 100644
index 0000000000..1120c79d6a
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/filter.go
@@ -0,0 +1,273 @@
+package netlink
+
+import (
+	"fmt"
+)
+
+type Filter interface {
+	Attrs() *FilterAttrs
+	Type() string
+}
+
+// FilterAttrs represents a netlink filter. A filter is associated with a link,
+// has a handle and a parent. The root filter of a device should have a
+// parent == HANDLE_ROOT.
+type FilterAttrs struct {
+	LinkIndex int
+	Handle    uint32
+	Parent    uint32
+	Priority  uint16 // lower is higher priority
+	Protocol  uint16 // syscall.ETH_P_*
+}
+
+func (q FilterAttrs) String() string {
+	return fmt.Sprintf("{LinkIndex: %d, Handle: %s, Parent: %s, Priority: %d, Protocol: %d}", q.LinkIndex, HandleStr(q.Handle), HandleStr(q.Parent), q.Priority, q.Protocol)
+}
+
+type TcAct int32
+
+const (
+	TC_ACT_UNSPEC     TcAct = -1
+	TC_ACT_OK         TcAct = 0
+	TC_ACT_RECLASSIFY TcAct = 1
+	TC_ACT_SHOT       TcAct = 2
+	TC_ACT_PIPE       TcAct = 3
+	TC_ACT_STOLEN     TcAct = 4
+	TC_ACT_QUEUED     TcAct = 5
+	TC_ACT_REPEAT     TcAct = 6
+	TC_ACT_REDIRECT   TcAct = 7
+	TC_ACT_JUMP       TcAct = 0x10000000
+)
+
+func (a TcAct) String() string {
+	switch a {
+	case TC_ACT_UNSPEC:
+		return "unspec"
+	case TC_ACT_OK:
+		return "ok"
+	case TC_ACT_RECLASSIFY:
+		return "reclassify"
+	case TC_ACT_SHOT:
+		return "shot"
+	case TC_ACT_PIPE:
+		return "pipe"
+	case TC_ACT_STOLEN:
+		return "stolen"
+	case TC_ACT_QUEUED:
+		return "queued"
+	case TC_ACT_REPEAT:
+		return "repeat"
+	case TC_ACT_REDIRECT:
+		return "redirect"
+	case TC_ACT_JUMP:
+		return "jump"
+	}
+	return fmt.Sprintf("0x%x", int32(a))
+}
+
+type TcPolAct int32
+
+const (
+	TC_POLICE_UNSPEC     TcPolAct = TcPolAct(TC_ACT_UNSPEC)
+	TC_POLICE_OK         TcPolAct = TcPolAct(TC_ACT_OK)
+	TC_POLICE_RECLASSIFY TcPolAct = TcPolAct(TC_ACT_RECLASSIFY)
+	TC_POLICE_SHOT       TcPolAct = TcPolAct(TC_ACT_SHOT)
+	TC_POLICE_PIPE       TcPolAct = TcPolAct(TC_ACT_PIPE)
+)
+
+func (a TcPolAct) String() string {
+	switch a {
+	case TC_POLICE_UNSPEC:
+		return "unspec"
+	case TC_POLICE_OK:
+		return "ok"
+	case TC_POLICE_RECLASSIFY:
+		return "reclassify"
+	case TC_POLICE_SHOT:
+		return "shot"
+	case TC_POLICE_PIPE:
+		return "pipe"
+	}
+	return fmt.Sprintf("0x%x", int32(a))
+}
+
+type ActionAttrs struct {
+	Index   int
+	Capab   int
+	Action  TcAct
+	Refcnt  int
+	Bindcnt int
+}
+
+func (q ActionAttrs) String() string {
+	return fmt.Sprintf("{Index: %d, Capab: %x, Action: %s, Refcnt: %d, Bindcnt: %d}", q.Index, q.Capab, q.Action.String(), q.Refcnt, q.Bindcnt)
+}
+
+// Action represents an action in any supported filter.
+type Action interface {
+	Attrs() *ActionAttrs
+	Type() string
+}
+
+type GenericAction struct {
+	ActionAttrs
+}
+
+func (action *GenericAction) Type() string {
+	return "generic"
+}
+
+func (action *GenericAction) Attrs() *ActionAttrs {
+	return &action.ActionAttrs
+}
+
+type BpfAction struct {
+	ActionAttrs
+	Fd   int
+	Name string
+}
+
+func (action *BpfAction) Type() string {
+	return "bpf"
+}
+
+func (action *BpfAction) Attrs() *ActionAttrs {
+	return &action.ActionAttrs
+}
+
+type MirredAct uint8
+
+func (a MirredAct) String() string {
+	switch a {
+	case TCA_EGRESS_REDIR:
+		return "egress redir"
+	case TCA_EGRESS_MIRROR:
+		return "egress mirror"
+	case TCA_INGRESS_REDIR:
+		return "ingress redir"
+	case TCA_INGRESS_MIRROR:
+		return "ingress mirror"
+	}
+	return "unknown"
+}
+
+const (
+	TCA_EGRESS_REDIR   MirredAct = 1 /* packet redirect to EGRESS*/
+	TCA_EGRESS_MIRROR  MirredAct = 2 /* mirror packet to EGRESS */
+	TCA_INGRESS_REDIR  MirredAct = 3 /* packet redirect to INGRESS*/
+	TCA_INGRESS_MIRROR MirredAct = 4 /* mirror packet to INGRESS */
+)
+
+type MirredAction struct {
+	ActionAttrs
+	MirredAction MirredAct
+	Ifindex      int
+}
+
+func (action *MirredAction) Type() string {
+	return "mirred"
+}
+
+func (action *MirredAction) Attrs() *ActionAttrs {
+	return &action.ActionAttrs
+}
+
+func NewMirredAction(redirIndex int) *MirredAction {
+	return &MirredAction{
+		ActionAttrs: ActionAttrs{
+			Action: TC_ACT_STOLEN,
+		},
+		MirredAction: TCA_EGRESS_REDIR,
+		Ifindex:      redirIndex,
+	}
+}
+
+// Sel of the U32 filters that contains multiple TcU32Key. This is the copy
+// and the frontend representation of nl.TcU32Sel. It is serialized into canonical
+// nl.TcU32Sel with the appropriate endianness.
+type TcU32Sel struct {
+	Flags    uint8
+	Offshift uint8
+	Nkeys    uint8
+	Pad      uint8
+	Offmask  uint16
+	Off      uint16
+	Offoff   int16
+	Hoff     int16
+	Hmask    uint32
+	Keys     []TcU32Key
+}
+
+// TcU32Key contained of Sel in the U32 filters. This is the copy and the frontend
+// representation of nl.TcU32Key. It is serialized into chanonical nl.TcU32Sel
+// with the appropriate endianness.
+type TcU32Key struct {
+	Mask    uint32
+	Val     uint32
+	Off     int32
+	OffMask int32
+}
+
+// U32 filters on many packet related properties
+type U32 struct {
+	FilterAttrs
+	ClassId    uint32
+	RedirIndex int
+	Sel        *TcU32Sel
+	Actions    []Action
+}
+
+func (filter *U32) Attrs() *FilterAttrs {
+	return &filter.FilterAttrs
+}
+
+func (filter *U32) Type() string {
+	return "u32"
+}
+
+type FilterFwAttrs struct {
+	ClassId   uint32
+	InDev     string
+	Mask      uint32
+	Index     uint32
+	Buffer    uint32
+	Mtu       uint32
+	Mpu       uint16
+	Rate      uint32
+	AvRate    uint32
+	PeakRate  uint32
+	Action    TcPolAct
+	Overhead  uint16
+	LinkLayer int
+}
+
+type BpfFilter struct {
+	FilterAttrs
+	ClassId      uint32
+	Fd           int
+	Name         string
+	DirectAction bool
+}
+
+func (filter *BpfFilter) Type() string {
+	return "bpf"
+}
+
+func (filter *BpfFilter) Attrs() *FilterAttrs {
+	return &filter.FilterAttrs
+}
+
+// GenericFilter filters represent types that are not currently understood
+// by this netlink library.
+type GenericFilter struct {
+	FilterAttrs
+	FilterType string
+}
+
+func (filter *GenericFilter) Attrs() *FilterAttrs {
+	return &filter.FilterAttrs
+}
+
+func (filter *GenericFilter) Type() string {
+	return filter.FilterType
+}
diff --git a/vendor/github.com/vishvananda/netlink/filter_linux.go b/vendor/github.com/vishvananda/netlink/filter_linux.go
new file mode 100644
index 0000000000..5025bd56c1
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/filter_linux.go
@@ -0,0 +1,601 @@
+package netlink
+
+import (
+	"bytes"
+	"encoding/binary"
+	"errors"
+	"fmt"
+	"syscall"
+	"unsafe"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// Constants used in TcU32Sel.Flags.
+const (
+	TC_U32_TERMINAL  = nl.TC_U32_TERMINAL
+	TC_U32_OFFSET    = nl.TC_U32_OFFSET
+	TC_U32_VAROFFSET = nl.TC_U32_VAROFFSET
+	TC_U32_EAT       = nl.TC_U32_EAT
+)
+
+// Fw filter filters on firewall marks
+// NOTE: this is in filter_linux because it refers to nl.TcPolice which
+//       is defined in nl/tc_linux.go
+type Fw struct {
+	FilterAttrs
+	ClassId uint32
+	// TODO remove nl type from interface
+	Police nl.TcPolice
+	InDev  string
+	// TODO Action
+	Mask   uint32
+	AvRate uint32
+	Rtab   [256]uint32
+	Ptab   [256]uint32
+}
+
+func NewFw(attrs FilterAttrs, fattrs FilterFwAttrs) (*Fw, error) {
+	var rtab [256]uint32
+	var ptab [256]uint32
+	rcellLog := -1
+	pcellLog := -1
+	avrate := fattrs.AvRate / 8
+	police := nl.TcPolice{}
+	police.Rate.Rate = fattrs.Rate / 8
+	police.PeakRate.Rate = fattrs.PeakRate / 8
+	buffer := fattrs.Buffer
+	linklayer := nl.LINKLAYER_ETHERNET
+
+	if fattrs.LinkLayer != nl.LINKLAYER_UNSPEC {
+		linklayer = fattrs.LinkLayer
+	}
+
+	police.Action = int32(fattrs.Action)
+	if police.Rate.Rate != 0 {
+		police.Rate.Mpu = fattrs.Mpu
+		police.Rate.Overhead = fattrs.Overhead
+		if CalcRtable(&police.Rate, rtab, rcellLog, fattrs.Mtu, linklayer) < 0 {
+			return nil, errors.New("TBF: failed to calculate rate table")
+		}
+		police.Burst = uint32(Xmittime(uint64(police.Rate.Rate), uint32(buffer)))
+	}
+	police.Mtu = fattrs.Mtu
+	if police.PeakRate.Rate != 0 {
+		police.PeakRate.Mpu = fattrs.Mpu
+		police.PeakRate.Overhead = fattrs.Overhead
+		if CalcRtable(&police.PeakRate, ptab, pcellLog, fattrs.Mtu, linklayer) < 0 {
+			return nil, errors.New("POLICE: failed to calculate peak rate table")
+		}
+	}
+
+	return &Fw{
+		FilterAttrs: attrs,
+		ClassId:     fattrs.ClassId,
+		InDev:       fattrs.InDev,
+		Mask:        fattrs.Mask,
+		Police:      police,
+		AvRate:      avrate,
+		Rtab:        rtab,
+		Ptab:        ptab,
+	}, nil
+}
+
+func (filter *Fw) Attrs() *FilterAttrs {
+	return &filter.FilterAttrs
+}
+
+func (filter *Fw) Type() string {
+	return "fw"
+}
+
+// FilterDel will delete a filter from the system.
+// Equivalent to: `tc filter del $filter`
+func FilterDel(filter Filter) error {
+	return pkgHandle.FilterDel(filter)
+}
+
+// FilterDel will delete a filter from the system.
+// Equivalent to: `tc filter del $filter`
+func (h *Handle) FilterDel(filter Filter) error {
+	req := h.newNetlinkRequest(syscall.RTM_DELTFILTER, syscall.NLM_F_ACK)
+	base := filter.Attrs()
+	msg := &nl.TcMsg{
+		Family:  nl.FAMILY_ALL,
+		Ifindex: int32(base.LinkIndex),
+		Handle:  base.Handle,
+		Parent:  base.Parent,
+		Info:    MakeHandle(base.Priority, nl.Swap16(base.Protocol)),
+	}
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// FilterAdd will add a filter to the system.
+// Equivalent to: `tc filter add $filter`
+func FilterAdd(filter Filter) error {
+	return pkgHandle.FilterAdd(filter)
+}
+
+// FilterAdd will add a filter to the system.
+// Equivalent to: `tc filter add $filter`
+func (h *Handle) FilterAdd(filter Filter) error {
+	native = nl.NativeEndian()
+	req := h.newNetlinkRequest(syscall.RTM_NEWTFILTER, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	base := filter.Attrs()
+	msg := &nl.TcMsg{
+		Family:  nl.FAMILY_ALL,
+		Ifindex: int32(base.LinkIndex),
+		Handle:  base.Handle,
+		Parent:  base.Parent,
+		Info:    MakeHandle(base.Priority, nl.Swap16(base.Protocol)),
+	}
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.TCA_KIND, nl.ZeroTerminated(filter.Type())))
+
+	options := nl.NewRtAttr(nl.TCA_OPTIONS, nil)
+
+	switch filter := filter.(type) {
+	case *U32:
+		// Convert TcU32Sel into nl.TcU32Sel as it is without copy.
+		sel := (*nl.TcU32Sel)(unsafe.Pointer(filter.Sel))
+		if sel == nil {
+			// match all
+			sel = &nl.TcU32Sel{
+				Nkeys: 1,
+				Flags: nl.TC_U32_TERMINAL,
+			}
+			sel.Keys = append(sel.Keys, nl.TcU32Key{})
+		}
+
+		if native != networkOrder {
+			// Copy TcU32Sel.
+			cSel := *sel
+			keys := make([]nl.TcU32Key, cap(sel.Keys))
+			copy(keys, sel.Keys)
+			cSel.Keys = keys
+			sel = &cSel
+
+			// Handle the endianness of attributes
+			sel.Offmask = native.Uint16(htons(sel.Offmask))
+			sel.Hmask = native.Uint32(htonl(sel.Hmask))
+			for i, key := range sel.Keys {
+				sel.Keys[i].Mask = native.Uint32(htonl(key.Mask))
+				sel.Keys[i].Val = native.Uint32(htonl(key.Val))
+			}
+		}
+		sel.Nkeys = uint8(len(sel.Keys))
+		nl.NewRtAttrChild(options, nl.TCA_U32_SEL, sel.Serialize())
+		if filter.ClassId != 0 {
+			nl.NewRtAttrChild(options, nl.TCA_U32_CLASSID, nl.Uint32Attr(filter.ClassId))
+		}
+		actionsAttr := nl.NewRtAttrChild(options, nl.TCA_U32_ACT, nil)
+		// backwards compatibility
+		if filter.RedirIndex != 0 {
+			filter.Actions = append([]Action{NewMirredAction(filter.RedirIndex)}, filter.Actions...)
+		}
+		if err := EncodeActions(actionsAttr, filter.Actions); err != nil {
+			return err
+		}
+	case *Fw:
+		if filter.Mask != 0 {
+			b := make([]byte, 4)
+			native.PutUint32(b, filter.Mask)
+			nl.NewRtAttrChild(options, nl.TCA_FW_MASK, b)
+		}
+		if filter.InDev != "" {
+			nl.NewRtAttrChild(options, nl.TCA_FW_INDEV, nl.ZeroTerminated(filter.InDev))
+		}
+		if (filter.Police != nl.TcPolice{}) {
+
+			police := nl.NewRtAttrChild(options, nl.TCA_FW_POLICE, nil)
+			nl.NewRtAttrChild(police, nl.TCA_POLICE_TBF, filter.Police.Serialize())
+			if (filter.Police.Rate != nl.TcRateSpec{}) {
+				payload := SerializeRtab(filter.Rtab)
+				nl.NewRtAttrChild(police, nl.TCA_POLICE_RATE, payload)
+			}
+			if (filter.Police.PeakRate != nl.TcRateSpec{}) {
+				payload := SerializeRtab(filter.Ptab)
+				nl.NewRtAttrChild(police, nl.TCA_POLICE_PEAKRATE, payload)
+			}
+		}
+		if filter.ClassId != 0 {
+			b := make([]byte, 4)
+			native.PutUint32(b, filter.ClassId)
+			nl.NewRtAttrChild(options, nl.TCA_FW_CLASSID, b)
+		}
+	case *BpfFilter:
+		var bpfFlags uint32
+		if filter.ClassId != 0 {
+			nl.NewRtAttrChild(options, nl.TCA_BPF_CLASSID, nl.Uint32Attr(filter.ClassId))
+		}
+		if filter.Fd >= 0 {
+			nl.NewRtAttrChild(options, nl.TCA_BPF_FD, nl.Uint32Attr((uint32(filter.Fd))))
+		}
+		if filter.Name != "" {
+			nl.NewRtAttrChild(options, nl.TCA_BPF_NAME, nl.ZeroTerminated(filter.Name))
+		}
+		if filter.DirectAction {
+			bpfFlags |= nl.TCA_BPF_FLAG_ACT_DIRECT
+		}
+		nl.NewRtAttrChild(options, nl.TCA_BPF_FLAGS, nl.Uint32Attr(bpfFlags))
+	}
+
+	req.AddData(options)
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// FilterList gets a list of filters in the system.
+// Equivalent to: `tc filter show`.
+// Generally returns nothing if link and parent are not specified.
+func FilterList(link Link, parent uint32) ([]Filter, error) {
+	return pkgHandle.FilterList(link, parent)
+}
+
+// FilterList gets a list of filters in the system.
+// Equivalent to: `tc filter show`.
+// Generally returns nothing if link and parent are not specified.
+func (h *Handle) FilterList(link Link, parent uint32) ([]Filter, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETTFILTER, syscall.NLM_F_DUMP)
+	msg := &nl.TcMsg{
+		Family: nl.FAMILY_ALL,
+		Parent: parent,
+	}
+	if link != nil {
+		base := link.Attrs()
+		h.ensureIndex(base)
+		msg.Ifindex = int32(base.Index)
+	}
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWTFILTER)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Filter
+	for _, m := range msgs {
+		msg := nl.DeserializeTcMsg(m)
+
+		attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+		if err != nil {
+			return nil, err
+		}
+
+		base := FilterAttrs{
+			LinkIndex: int(msg.Ifindex),
+			Handle:    msg.Handle,
+			Parent:    msg.Parent,
+		}
+		base.Priority, base.Protocol = MajorMinor(msg.Info)
+		base.Protocol = nl.Swap16(base.Protocol)
+
+		var filter Filter
+		filterType := ""
+		detailed := false
+		for _, attr := range attrs {
+			switch attr.Attr.Type {
+			case nl.TCA_KIND:
+				filterType = string(attr.Value[:len(attr.Value)-1])
+				switch filterType {
+				case "u32":
+					filter = &U32{}
+				case "fw":
+					filter = &Fw{}
+				case "bpf":
+					filter = &BpfFilter{}
+				default:
+					filter = &GenericFilter{FilterType: filterType}
+				}
+			case nl.TCA_OPTIONS:
+				data, err := nl.ParseRouteAttr(attr.Value)
+				if err != nil {
+					return nil, err
+				}
+				switch filterType {
+				case "u32":
+					detailed, err = parseU32Data(filter, data)
+					if err != nil {
+						return nil, err
+					}
+				case "fw":
+					detailed, err = parseFwData(filter, data)
+					if err != nil {
+						return nil, err
+					}
+				case "bpf":
+					detailed, err = parseBpfData(filter, data)
+					if err != nil {
+						return nil, err
+					}
+				default:
+					detailed = true
+				}
+			}
+		}
+		// only return the detailed version of the filter
+		if detailed {
+			*filter.Attrs() = base
+			res = append(res, filter)
+		}
+	}
+
+	return res, nil
+}
+
+func toTcGen(attrs *ActionAttrs, tcgen *nl.TcGen) {
+	tcgen.Index = uint32(attrs.Index)
+	tcgen.Capab = uint32(attrs.Capab)
+	tcgen.Action = int32(attrs.Action)
+	tcgen.Refcnt = int32(attrs.Refcnt)
+	tcgen.Bindcnt = int32(attrs.Bindcnt)
+}
+
+func toAttrs(tcgen *nl.TcGen, attrs *ActionAttrs) {
+	attrs.Index = int(tcgen.Index)
+	attrs.Capab = int(tcgen.Capab)
+	attrs.Action = TcAct(tcgen.Action)
+	attrs.Refcnt = int(tcgen.Refcnt)
+	attrs.Bindcnt = int(tcgen.Bindcnt)
+}
+
+func EncodeActions(attr *nl.RtAttr, actions []Action) error {
+	tabIndex := int(nl.TCA_ACT_TAB)
+
+	for _, action := range actions {
+		switch action := action.(type) {
+		default:
+			return fmt.Errorf("unknown action type %s", action.Type())
+		case *MirredAction:
+			table := nl.NewRtAttrChild(attr, tabIndex, nil)
+			tabIndex++
+			nl.NewRtAttrChild(table, nl.TCA_ACT_KIND, nl.ZeroTerminated("mirred"))
+			aopts := nl.NewRtAttrChild(table, nl.TCA_ACT_OPTIONS, nil)
+			mirred := nl.TcMirred{
+				Eaction: int32(action.MirredAction),
+				Ifindex: uint32(action.Ifindex),
+			}
+			toTcGen(action.Attrs(), &mirred.TcGen)
+			nl.NewRtAttrChild(aopts, nl.TCA_MIRRED_PARMS, mirred.Serialize())
+		case *BpfAction:
+			table := nl.NewRtAttrChild(attr, tabIndex, nil)
+			tabIndex++
+			nl.NewRtAttrChild(table, nl.TCA_ACT_KIND, nl.ZeroTerminated("bpf"))
+			aopts := nl.NewRtAttrChild(table, nl.TCA_ACT_OPTIONS, nil)
+			gen := nl.TcGen{}
+			toTcGen(action.Attrs(), &gen)
+			nl.NewRtAttrChild(aopts, nl.TCA_ACT_BPF_PARMS, gen.Serialize())
+			nl.NewRtAttrChild(aopts, nl.TCA_ACT_BPF_FD, nl.Uint32Attr(uint32(action.Fd)))
+			nl.NewRtAttrChild(aopts, nl.TCA_ACT_BPF_NAME, nl.ZeroTerminated(action.Name))
+		case *GenericAction:
+			table := nl.NewRtAttrChild(attr, tabIndex, nil)
+			tabIndex++
+			nl.NewRtAttrChild(table, nl.TCA_ACT_KIND, nl.ZeroTerminated("gact"))
+			aopts := nl.NewRtAttrChild(table, nl.TCA_ACT_OPTIONS, nil)
+			gen := nl.TcGen{}
+			toTcGen(action.Attrs(), &gen)
+			nl.NewRtAttrChild(aopts, nl.TCA_GACT_PARMS, gen.Serialize())
+		}
+	}
+	return nil
+}
+
+func parseActions(tables []syscall.NetlinkRouteAttr) ([]Action, error) {
+	var actions []Action
+	for _, table := range tables {
+		var action Action
+		var actionType string
+		aattrs, err := nl.ParseRouteAttr(table.Value)
+		if err != nil {
+			return nil, err
+		}
+	nextattr:
+		for _, aattr := range aattrs {
+			switch aattr.Attr.Type {
+			case nl.TCA_KIND:
+				actionType = string(aattr.Value[:len(aattr.Value)-1])
+				// only parse if the action is mirred or bpf
+				switch actionType {
+				case "mirred":
+					action = &MirredAction{}
+				case "bpf":
+					action = &BpfAction{}
+				case "gact":
+					action = &GenericAction{}
+				default:
+					break nextattr
+				}
+			case nl.TCA_OPTIONS:
+				adata, err := nl.ParseRouteAttr(aattr.Value)
+				if err != nil {
+					return nil, err
+				}
+				for _, adatum := range adata {
+					switch actionType {
+					case "mirred":
+						switch adatum.Attr.Type {
+						case nl.TCA_MIRRED_PARMS:
+							mirred := *nl.DeserializeTcMirred(adatum.Value)
+							toAttrs(&mirred.TcGen, action.Attrs())
+							action.(*MirredAction).ActionAttrs = ActionAttrs{}
+							action.(*MirredAction).Ifindex = int(mirred.Ifindex)
+							action.(*MirredAction).MirredAction = MirredAct(mirred.Eaction)
+						}
+					case "bpf":
+						switch adatum.Attr.Type {
+						case nl.TCA_ACT_BPF_PARMS:
+							gen := *nl.DeserializeTcGen(adatum.Value)
+							toAttrs(&gen, action.Attrs())
+						case nl.TCA_ACT_BPF_FD:
+							action.(*BpfAction).Fd = int(native.Uint32(adatum.Value[0:4]))
+						case nl.TCA_ACT_BPF_NAME:
+							action.(*BpfAction).Name = string(adatum.Value[:len(adatum.Value)-1])
+						}
+					case "gact":
+						switch adatum.Attr.Type {
+						case nl.TCA_GACT_PARMS:
+							gen := *nl.DeserializeTcGen(adatum.Value)
+							toAttrs(&gen, action.Attrs())
+						}
+					}
+				}
+			}
+		}
+		actions = append(actions, action)
+	}
+	return actions, nil
+}
+
+func parseU32Data(filter Filter, data []syscall.NetlinkRouteAttr) (bool, error) {
+	native = nl.NativeEndian()
+	u32 := filter.(*U32)
+	detailed := false
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_U32_SEL:
+			detailed = true
+			sel := nl.DeserializeTcU32Sel(datum.Value)
+			u32.Sel = (*TcU32Sel)(unsafe.Pointer(sel))
+			if native != networkOrder {
+				// Handle the endianness of attributes
+				u32.Sel.Offmask = native.Uint16(htons(sel.Offmask))
+				u32.Sel.Hmask = native.Uint32(htonl(sel.Hmask))
+				for i, key := range u32.Sel.Keys {
+					u32.Sel.Keys[i].Mask = native.Uint32(htonl(key.Mask))
+					u32.Sel.Keys[i].Val = native.Uint32(htonl(key.Val))
+				}
+			}
+		case nl.TCA_U32_ACT:
+			tables, err := nl.ParseRouteAttr(datum.Value)
+			if err != nil {
+				return detailed, err
+			}
+			u32.Actions, err = parseActions(tables)
+			if err != nil {
+				return detailed, err
+			}
+			for _, action := range u32.Actions {
+				if action, ok := action.(*MirredAction); ok {
+					u32.RedirIndex = int(action.Ifindex)
+				}
+			}
+		case nl.TCA_U32_CLASSID:
+			u32.ClassId = native.Uint32(datum.Value)
+		}
+	}
+	return detailed, nil
+}
+
+func parseFwData(filter Filter, data []syscall.NetlinkRouteAttr) (bool, error) {
+	native = nl.NativeEndian()
+	fw := filter.(*Fw)
+	detailed := true
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_FW_MASK:
+			fw.Mask = native.Uint32(datum.Value[0:4])
+		case nl.TCA_FW_CLASSID:
+			fw.ClassId = native.Uint32(datum.Value[0:4])
+		case nl.TCA_FW_INDEV:
+			fw.InDev = string(datum.Value[:len(datum.Value)-1])
+		case nl.TCA_FW_POLICE:
+			adata, _ := nl.ParseRouteAttr(datum.Value)
+			for _, aattr := range adata {
+				switch aattr.Attr.Type {
+				case nl.TCA_POLICE_TBF:
+					fw.Police = *nl.DeserializeTcPolice(aattr.Value)
+				case nl.TCA_POLICE_RATE:
+					fw.Rtab = DeserializeRtab(aattr.Value)
+				case nl.TCA_POLICE_PEAKRATE:
+					fw.Ptab = DeserializeRtab(aattr.Value)
+				}
+			}
+		}
+	}
+	return detailed, nil
+}
+
+func parseBpfData(filter Filter, data []syscall.NetlinkRouteAttr) (bool, error) {
+	native = nl.NativeEndian()
+	bpf := filter.(*BpfFilter)
+	detailed := true
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_BPF_FD:
+			bpf.Fd = int(native.Uint32(datum.Value[0:4]))
+		case nl.TCA_BPF_NAME:
+			bpf.Name = string(datum.Value[:len(datum.Value)-1])
+		case nl.TCA_BPF_CLASSID:
+			bpf.ClassId = native.Uint32(datum.Value[0:4])
+		case nl.TCA_BPF_FLAGS:
+			flags := native.Uint32(datum.Value[0:4])
+			if (flags & nl.TCA_BPF_FLAG_ACT_DIRECT) != 0 {
+				bpf.DirectAction = true
+			}
+		}
+	}
+	return detailed, nil
+}
+
+func AlignToAtm(size uint) uint {
+	var linksize, cells int
+	cells = int(size / nl.ATM_CELL_PAYLOAD)
+	if (size % nl.ATM_CELL_PAYLOAD) > 0 {
+		cells++
+	}
+	linksize = cells * nl.ATM_CELL_SIZE
+	return uint(linksize)
+}
+
+func AdjustSize(sz uint, mpu uint, linklayer int) uint {
+	if sz < mpu {
+		sz = mpu
+	}
+	switch linklayer {
+	case nl.LINKLAYER_ATM:
+		return AlignToAtm(sz)
+	default:
+		return sz
+	}
+}
+
+func CalcRtable(rate *nl.TcRateSpec, rtab [256]uint32, cellLog int, mtu uint32, linklayer int) int {
+	bps := rate.Rate
+	mpu := rate.Mpu
+	var sz uint
+	if mtu == 0 {
+		mtu = 2047
+	}
+	if cellLog < 0 {
+		cellLog = 0
+		for (mtu >> uint(cellLog)) > 255 {
+			cellLog++
+		}
+	}
+	for i := 0; i < 256; i++ {
+		sz = AdjustSize(uint((i+1)<<uint32(cellLog)), uint(mpu), linklayer)
+		rtab[i] = uint32(Xmittime(uint64(bps), uint32(sz)))
+	}
+	rate.CellAlign = -1
+	rate.CellLog = uint8(cellLog)
+	rate.Linklayer = uint8(linklayer & nl.TC_LINKLAYER_MASK)
+	return cellLog
+}
+
+func DeserializeRtab(b []byte) [256]uint32 {
+	var rtab [256]uint32
+	native := nl.NativeEndian()
+	r := bytes.NewReader(b)
+	_ = binary.Read(r, native, &rtab)
+	return rtab
+}
+
+func SerializeRtab(rtab [256]uint32) []byte {
+	native := nl.NativeEndian()
+	var w bytes.Buffer
+	_ = binary.Write(&w, native, rtab)
+	return w.Bytes()
+}
diff --git a/vendor/github.com/vishvananda/netlink/genetlink_linux.go b/vendor/github.com/vishvananda/netlink/genetlink_linux.go
new file mode 100644
index 0000000000..a388a87001
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/genetlink_linux.go
@@ -0,0 +1,167 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+type GenlOp struct {
+	ID    uint32
+	Flags uint32
+}
+
+type GenlMulticastGroup struct {
+	ID   uint32
+	Name string
+}
+
+type GenlFamily struct {
+	ID      uint16
+	HdrSize uint32
+	Name    string
+	Version uint32
+	MaxAttr uint32
+	Ops     []GenlOp
+	Groups  []GenlMulticastGroup
+}
+
+func parseOps(b []byte) ([]GenlOp, error) {
+	attrs, err := nl.ParseRouteAttr(b)
+	if err != nil {
+		return nil, err
+	}
+	ops := make([]GenlOp, 0, len(attrs))
+	for _, a := range attrs {
+		nattrs, err := nl.ParseRouteAttr(a.Value)
+		if err != nil {
+			return nil, err
+		}
+		var op GenlOp
+		for _, na := range nattrs {
+			switch na.Attr.Type {
+			case nl.GENL_CTRL_ATTR_OP_ID:
+				op.ID = native.Uint32(na.Value)
+			case nl.GENL_CTRL_ATTR_OP_FLAGS:
+				op.Flags = native.Uint32(na.Value)
+			}
+		}
+		ops = append(ops, op)
+	}
+	return ops, nil
+}
+
+func parseMulticastGroups(b []byte) ([]GenlMulticastGroup, error) {
+	attrs, err := nl.ParseRouteAttr(b)
+	if err != nil {
+		return nil, err
+	}
+	groups := make([]GenlMulticastGroup, 0, len(attrs))
+	for _, a := range attrs {
+		nattrs, err := nl.ParseRouteAttr(a.Value)
+		if err != nil {
+			return nil, err
+		}
+		var g GenlMulticastGroup
+		for _, na := range nattrs {
+			switch na.Attr.Type {
+			case nl.GENL_CTRL_ATTR_MCAST_GRP_NAME:
+				g.Name = nl.BytesToString(na.Value)
+			case nl.GENL_CTRL_ATTR_MCAST_GRP_ID:
+				g.ID = native.Uint32(na.Value)
+			}
+		}
+		groups = append(groups, g)
+	}
+	return groups, nil
+}
+
+func (f *GenlFamily) parseAttributes(attrs []syscall.NetlinkRouteAttr) error {
+	for _, a := range attrs {
+		switch a.Attr.Type {
+		case nl.GENL_CTRL_ATTR_FAMILY_NAME:
+			f.Name = nl.BytesToString(a.Value)
+		case nl.GENL_CTRL_ATTR_FAMILY_ID:
+			f.ID = native.Uint16(a.Value)
+		case nl.GENL_CTRL_ATTR_VERSION:
+			f.Version = native.Uint32(a.Value)
+		case nl.GENL_CTRL_ATTR_HDRSIZE:
+			f.HdrSize = native.Uint32(a.Value)
+		case nl.GENL_CTRL_ATTR_MAXATTR:
+			f.MaxAttr = native.Uint32(a.Value)
+		case nl.GENL_CTRL_ATTR_OPS:
+			ops, err := parseOps(a.Value)
+			if err != nil {
+				return err
+			}
+			f.Ops = ops
+		case nl.GENL_CTRL_ATTR_MCAST_GROUPS:
+			groups, err := parseMulticastGroups(a.Value)
+			if err != nil {
+				return err
+			}
+			f.Groups = groups
+		}
+	}
+
+	return nil
+}
+
+func parseFamilies(msgs [][]byte) ([]*GenlFamily, error) {
+	families := make([]*GenlFamily, 0, len(msgs))
+	for _, m := range msgs {
+		attrs, err := nl.ParseRouteAttr(m[nl.SizeofGenlmsg:])
+		if err != nil {
+			return nil, err
+		}
+		family := &GenlFamily{}
+		if err := family.parseAttributes(attrs); err != nil {
+			return nil, err
+		}
+
+		families = append(families, family)
+	}
+	return families, nil
+}
+
+func (h *Handle) GenlFamilyList() ([]*GenlFamily, error) {
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_CTRL_CMD_GETFAMILY,
+		Version: nl.GENL_CTRL_VERSION,
+	}
+	req := h.newNetlinkRequest(nl.GENL_ID_CTRL, syscall.NLM_F_DUMP)
+	req.AddData(msg)
+	msgs, err := req.Execute(syscall.NETLINK_GENERIC, 0)
+	if err != nil {
+		return nil, err
+	}
+	return parseFamilies(msgs)
+}
+
+func GenlFamilyList() ([]*GenlFamily, error) {
+	return pkgHandle.GenlFamilyList()
+}
+
+func (h *Handle) GenlFamilyGet(name string) (*GenlFamily, error) {
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_CTRL_CMD_GETFAMILY,
+		Version: nl.GENL_CTRL_VERSION,
+	}
+	req := h.newNetlinkRequest(nl.GENL_ID_CTRL, 0)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_CTRL_ATTR_FAMILY_NAME, nl.ZeroTerminated(name)))
+	msgs, err := req.Execute(syscall.NETLINK_GENERIC, 0)
+	if err != nil {
+		return nil, err
+	}
+	families, err := parseFamilies(msgs)
+	if len(families) != 1 {
+		return nil, fmt.Errorf("invalid response for GENL_CTRL_CMD_GETFAMILY")
+	}
+	return families[0], nil
+}
+
+func GenlFamilyGet(name string) (*GenlFamily, error) {
+	return pkgHandle.GenlFamilyGet(name)
+}
diff --git a/vendor/github.com/vishvananda/netlink/genetlink_unspecified.go b/vendor/github.com/vishvananda/netlink/genetlink_unspecified.go
new file mode 100644
index 0000000000..0192b991e3
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/genetlink_unspecified.go
@@ -0,0 +1,25 @@
+// +build !linux
+
+package netlink
+
+type GenlOp struct{}
+
+type GenlMulticastGroup struct{}
+
+type GenlFamily struct{}
+
+func (h *Handle) GenlFamilyList() ([]*GenlFamily, error) {
+	return nil, ErrNotImplemented
+}
+
+func GenlFamilyList() ([]*GenlFamily, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) GenlFamilyGet(name string) (*GenlFamily, error) {
+	return nil, ErrNotImplemented
+}
+
+func GenlFamilyGet(name string) (*GenlFamily, error) {
+	return nil, ErrNotImplemented
+}
diff --git a/vendor/github.com/vishvananda/netlink/gtp_linux.go b/vendor/github.com/vishvananda/netlink/gtp_linux.go
new file mode 100644
index 0000000000..7331303ecb
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/gtp_linux.go
@@ -0,0 +1,238 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"strings"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+type PDP struct {
+	Version     uint32
+	TID         uint64
+	PeerAddress net.IP
+	MSAddress   net.IP
+	Flow        uint16
+	NetNSFD     uint32
+	ITEI        uint32
+	OTEI        uint32
+}
+
+func (pdp *PDP) String() string {
+	elems := []string{}
+	elems = append(elems, fmt.Sprintf("Version: %d", pdp.Version))
+	if pdp.Version == 0 {
+		elems = append(elems, fmt.Sprintf("TID: %d", pdp.TID))
+	} else if pdp.Version == 1 {
+		elems = append(elems, fmt.Sprintf("TEI: %d/%d", pdp.ITEI, pdp.OTEI))
+	}
+	elems = append(elems, fmt.Sprintf("MS-Address: %s", pdp.MSAddress))
+	elems = append(elems, fmt.Sprintf("Peer-Address: %s", pdp.PeerAddress))
+	return fmt.Sprintf("{%s}", strings.Join(elems, " "))
+}
+
+func (p *PDP) parseAttributes(attrs []syscall.NetlinkRouteAttr) error {
+	for _, a := range attrs {
+		switch a.Attr.Type {
+		case nl.GENL_GTP_ATTR_VERSION:
+			p.Version = native.Uint32(a.Value)
+		case nl.GENL_GTP_ATTR_TID:
+			p.TID = native.Uint64(a.Value)
+		case nl.GENL_GTP_ATTR_PEER_ADDRESS:
+			p.PeerAddress = net.IP(a.Value)
+		case nl.GENL_GTP_ATTR_MS_ADDRESS:
+			p.MSAddress = net.IP(a.Value)
+		case nl.GENL_GTP_ATTR_FLOW:
+			p.Flow = native.Uint16(a.Value)
+		case nl.GENL_GTP_ATTR_NET_NS_FD:
+			p.NetNSFD = native.Uint32(a.Value)
+		case nl.GENL_GTP_ATTR_I_TEI:
+			p.ITEI = native.Uint32(a.Value)
+		case nl.GENL_GTP_ATTR_O_TEI:
+			p.OTEI = native.Uint32(a.Value)
+		}
+	}
+	return nil
+}
+
+func parsePDP(msgs [][]byte) ([]*PDP, error) {
+	pdps := make([]*PDP, 0, len(msgs))
+	for _, m := range msgs {
+		attrs, err := nl.ParseRouteAttr(m[nl.SizeofGenlmsg:])
+		if err != nil {
+			return nil, err
+		}
+		pdp := &PDP{}
+		if err := pdp.parseAttributes(attrs); err != nil {
+			return nil, err
+		}
+		pdps = append(pdps, pdp)
+	}
+	return pdps, nil
+}
+
+func (h *Handle) GTPPDPList() ([]*PDP, error) {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return nil, err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_GETPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), syscall.NLM_F_DUMP)
+	req.AddData(msg)
+	msgs, err := req.Execute(syscall.NETLINK_GENERIC, 0)
+	if err != nil {
+		return nil, err
+	}
+	return parsePDP(msgs)
+}
+
+func GTPPDPList() ([]*PDP, error) {
+	return pkgHandle.GTPPDPList()
+}
+
+func gtpPDPGet(req *nl.NetlinkRequest) (*PDP, error) {
+	msgs, err := req.Execute(syscall.NETLINK_GENERIC, 0)
+	if err != nil {
+		return nil, err
+	}
+	pdps, err := parsePDP(msgs)
+	if err != nil {
+		return nil, err
+	}
+	if len(pdps) != 1 {
+		return nil, fmt.Errorf("invalid reqponse for GENL_GTP_CMD_GETPDP")
+	}
+	return pdps[0], nil
+}
+
+func (h *Handle) GTPPDPByTID(link Link, tid int) (*PDP, error) {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return nil, err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_GETPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), 0)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_VERSION, nl.Uint32Attr(0)))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_LINK, nl.Uint32Attr(uint32(link.Attrs().Index))))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_TID, nl.Uint64Attr(uint64(tid))))
+	return gtpPDPGet(req)
+}
+
+func GTPPDPByTID(link Link, tid int) (*PDP, error) {
+	return pkgHandle.GTPPDPByTID(link, tid)
+}
+
+func (h *Handle) GTPPDPByITEI(link Link, itei int) (*PDP, error) {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return nil, err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_GETPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), 0)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_VERSION, nl.Uint32Attr(1)))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_LINK, nl.Uint32Attr(uint32(link.Attrs().Index))))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_I_TEI, nl.Uint32Attr(uint32(itei))))
+	return gtpPDPGet(req)
+}
+
+func GTPPDPByITEI(link Link, itei int) (*PDP, error) {
+	return pkgHandle.GTPPDPByITEI(link, itei)
+}
+
+func (h *Handle) GTPPDPByMSAddress(link Link, addr net.IP) (*PDP, error) {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return nil, err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_GETPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), 0)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_VERSION, nl.Uint32Attr(0)))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_LINK, nl.Uint32Attr(uint32(link.Attrs().Index))))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_MS_ADDRESS, []byte(addr.To4())))
+	return gtpPDPGet(req)
+}
+
+func GTPPDPByMSAddress(link Link, addr net.IP) (*PDP, error) {
+	return pkgHandle.GTPPDPByMSAddress(link, addr)
+}
+
+func (h *Handle) GTPPDPAdd(link Link, pdp *PDP) error {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_NEWPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_VERSION, nl.Uint32Attr(pdp.Version)))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_LINK, nl.Uint32Attr(uint32(link.Attrs().Index))))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_PEER_ADDRESS, []byte(pdp.PeerAddress.To4())))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_MS_ADDRESS, []byte(pdp.MSAddress.To4())))
+
+	switch pdp.Version {
+	case 0:
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_TID, nl.Uint64Attr(pdp.TID)))
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_FLOW, nl.Uint16Attr(pdp.Flow)))
+	case 1:
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_I_TEI, nl.Uint32Attr(pdp.ITEI)))
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_O_TEI, nl.Uint32Attr(pdp.OTEI)))
+	default:
+		return fmt.Errorf("unsupported GTP version: %d", pdp.Version)
+	}
+	_, err = req.Execute(syscall.NETLINK_GENERIC, 0)
+	return err
+}
+
+func GTPPDPAdd(link Link, pdp *PDP) error {
+	return pkgHandle.GTPPDPAdd(link, pdp)
+}
+
+func (h *Handle) GTPPDPDel(link Link, pdp *PDP) error {
+	f, err := h.GenlFamilyGet(nl.GENL_GTP_NAME)
+	if err != nil {
+		return err
+	}
+	msg := &nl.Genlmsg{
+		Command: nl.GENL_GTP_CMD_DELPDP,
+		Version: nl.GENL_GTP_VERSION,
+	}
+	req := h.newNetlinkRequest(int(f.ID), syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	req.AddData(msg)
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_VERSION, nl.Uint32Attr(pdp.Version)))
+	req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_LINK, nl.Uint32Attr(uint32(link.Attrs().Index))))
+
+	switch pdp.Version {
+	case 0:
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_TID, nl.Uint64Attr(pdp.TID)))
+	case 1:
+		req.AddData(nl.NewRtAttr(nl.GENL_GTP_ATTR_I_TEI, nl.Uint32Attr(pdp.ITEI)))
+	default:
+		return fmt.Errorf("unsupported GTP version: %d", pdp.Version)
+	}
+	_, err = req.Execute(syscall.NETLINK_GENERIC, 0)
+	return err
+}
+
+func GTPPDPDel(link Link, pdp *PDP) error {
+	return pkgHandle.GTPPDPDel(link, pdp)
+}
diff --git a/vendor/github.com/vishvananda/netlink/handle_linux.go b/vendor/github.com/vishvananda/netlink/handle_linux.go
new file mode 100644
index 0000000000..d37b087c33
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/handle_linux.go
@@ -0,0 +1,144 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+	"time"
+
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+// Empty handle used by the netlink package methods
+var pkgHandle = &Handle{}
+
+// Handle is an handle for the netlink requests on a
+// specific network namespace. All the requests on the
+// same netlink family share the same netlink socket,
+// which gets released when the handle is deleted.
+type Handle struct {
+	sockets      map[int]*nl.SocketHandle
+	lookupByDump bool
+}
+
+// SupportsNetlinkFamily reports whether the passed netlink family is supported by this Handle
+func (h *Handle) SupportsNetlinkFamily(nlFamily int) bool {
+	_, ok := h.sockets[nlFamily]
+	return ok
+}
+
+// NewHandle returns a netlink handle on the current network namespace.
+// Caller may specify the netlink families the handle should support.
+// If no families are specified, all the families the netlink package
+// supports will be automatically added.
+func NewHandle(nlFamilies ...int) (*Handle, error) {
+	return newHandle(netns.None(), netns.None(), nlFamilies...)
+}
+
+// SetSocketTimeout sets the send and receive timeout for each socket in the
+// netlink handle. Although the socket timeout has granularity of one
+// microsecond, the effective granularity is floored by the kernel timer tick,
+// which default value is four milliseconds.
+func (h *Handle) SetSocketTimeout(to time.Duration) error {
+	if to < time.Microsecond {
+		return fmt.Errorf("invalid timeout, minimul value is %s", time.Microsecond)
+	}
+	tv := syscall.NsecToTimeval(to.Nanoseconds())
+	for _, sh := range h.sockets {
+		if err := sh.Socket.SetSendTimeout(&tv); err != nil {
+			return err
+		}
+		if err := sh.Socket.SetReceiveTimeout(&tv); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// SetSocketReceiveBufferSize sets the receive buffer size for each
+// socket in the netlink handle. The maximum value is capped by
+// /proc/sys/net/core/rmem_max.
+func (h *Handle) SetSocketReceiveBufferSize(size int, force bool) error {
+	opt := syscall.SO_RCVBUF
+	if force {
+		opt = syscall.SO_RCVBUFFORCE
+	}
+	for _, sh := range h.sockets {
+		fd := sh.Socket.GetFd()
+		err := syscall.SetsockoptInt(fd, syscall.SOL_SOCKET, opt, size)
+		if err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// GetSocketReceiveBufferSize gets the receiver buffer size for each
+// socket in the netlink handle. The retrieved value should be the
+// double to the one set for SetSocketReceiveBufferSize.
+func (h *Handle) GetSocketReceiveBufferSize() ([]int, error) {
+	results := make([]int, len(h.sockets))
+	i := 0
+	for _, sh := range h.sockets {
+		fd := sh.Socket.GetFd()
+		size, err := syscall.GetsockoptInt(fd, syscall.SOL_SOCKET, syscall.SO_RCVBUF)
+		if err != nil {
+			return nil, err
+		}
+		results[i] = size
+		i++
+	}
+	return results, nil
+}
+
+// NewHandle returns a netlink handle on the network namespace
+// specified by ns. If ns=netns.None(), current network namespace
+// will be assumed
+func NewHandleAt(ns netns.NsHandle, nlFamilies ...int) (*Handle, error) {
+	return newHandle(ns, netns.None(), nlFamilies...)
+}
+
+// NewHandleAtFrom works as NewHandle but allows client to specify the
+// new and the origin netns Handle.
+func NewHandleAtFrom(newNs, curNs netns.NsHandle) (*Handle, error) {
+	return newHandle(newNs, curNs)
+}
+
+func newHandle(newNs, curNs netns.NsHandle, nlFamilies ...int) (*Handle, error) {
+	h := &Handle{sockets: map[int]*nl.SocketHandle{}}
+	fams := nl.SupportedNlFamilies
+	if len(nlFamilies) != 0 {
+		fams = nlFamilies
+	}
+	for _, f := range fams {
+		s, err := nl.GetNetlinkSocketAt(newNs, curNs, f)
+		if err != nil {
+			return nil, err
+		}
+		h.sockets[f] = &nl.SocketHandle{Socket: s}
+	}
+	return h, nil
+}
+
+// Delete releases the resources allocated to this handle
+func (h *Handle) Delete() {
+	for _, sh := range h.sockets {
+		sh.Close()
+	}
+	h.sockets = nil
+}
+
+func (h *Handle) newNetlinkRequest(proto, flags int) *nl.NetlinkRequest {
+	// Do this so that package API still use nl package variable nextSeqNr
+	if h.sockets == nil {
+		return nl.NewNetlinkRequest(proto, flags)
+	}
+	return &nl.NetlinkRequest{
+		NlMsghdr: syscall.NlMsghdr{
+			Len:   uint32(syscall.SizeofNlMsghdr),
+			Type:  uint16(proto),
+			Flags: syscall.NLM_F_REQUEST | uint16(flags),
+		},
+		Sockets: h.sockets,
+	}
+}
diff --git a/vendor/github.com/vishvananda/netlink/handle_unspecified.go b/vendor/github.com/vishvananda/netlink/handle_unspecified.go
new file mode 100644
index 0000000000..7da21a6a18
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/handle_unspecified.go
@@ -0,0 +1,222 @@
+// +build !linux
+
+package netlink
+
+import (
+	"net"
+	"time"
+
+	"github.com/vishvananda/netns"
+)
+
+type Handle struct{}
+
+func NewHandle(nlFamilies ...int) (*Handle, error) {
+	return nil, ErrNotImplemented
+}
+
+func NewHandleAt(ns netns.NsHandle, nlFamilies ...int) (*Handle, error) {
+	return nil, ErrNotImplemented
+}
+
+func NewHandleAtFrom(newNs, curNs netns.NsHandle) (*Handle, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) Delete() {}
+
+func (h *Handle) SupportsNetlinkFamily(nlFamily int) bool {
+	return false
+}
+
+func (h *Handle) SetSocketTimeout(to time.Duration) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) SetPromiscOn(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) SetPromiscOff(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetUp(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetDown(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetMTU(link Link, mtu int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetName(link Link, name string) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetAlias(link Link, name string) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetHardwareAddr(link Link, hwaddr net.HardwareAddr) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetVfHardwareAddr(link Link, vf int, hwaddr net.HardwareAddr) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetVfVlan(link Link, vf, vlan int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetVfTxRate(link Link, vf, rate int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetMaster(link Link, master *Bridge) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetNoMaster(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetMasterByIndex(link Link, masterIndex int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetNsPid(link Link, nspid int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetNsFd(link Link, fd int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkAdd(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkDel(link Link) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkByName(name string) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) LinkByAlias(alias string) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) LinkByIndex(index int) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) LinkList() ([]Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) LinkSetHairpin(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetGuard(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetFastLeave(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetLearning(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetRootBlock(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetFlood(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) LinkSetTxQLen(link Link, qlen int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) setProtinfoAttr(link Link, mode bool, attr int) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) AddrAdd(link Link, addr *Addr) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) AddrDel(link Link, addr *Addr) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) AddrList(link Link, family int) ([]Addr, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) ClassDel(class Class) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) ClassChange(class Class) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) ClassReplace(class Class) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) ClassAdd(class Class) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) ClassList(link Link, parent uint32) ([]Class, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) FilterDel(filter Filter) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) FilterAdd(filter Filter) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) FilterList(link Link, parent uint32) ([]Filter, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) NeighAdd(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) NeighSet(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) NeighAppend(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) NeighDel(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func (h *Handle) NeighList(linkIndex, family int) ([]Neigh, error) {
+	return nil, ErrNotImplemented
+}
+
+func (h *Handle) NeighProxyList(linkIndex, family int) ([]Neigh, error) {
+	return nil, ErrNotImplemented
+}
diff --git a/vendor/github.com/vishvananda/netlink/link.go b/vendor/github.com/vishvananda/netlink/link.go
new file mode 100644
index 0000000000..5aa3a1790a
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/link.go
@@ -0,0 +1,799 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+)
+
+// Link represents a link device from netlink. Shared link attributes
+// like name may be retrieved using the Attrs() method. Unique data
+// can be retrieved by casting the object to the proper type.
+type Link interface {
+	Attrs() *LinkAttrs
+	Type() string
+}
+
+type (
+	NsPid int
+	NsFd  int
+)
+
+// LinkAttrs represents data shared by most link types
+type LinkAttrs struct {
+	Index        int
+	MTU          int
+	TxQLen       int // Transmit Queue Length
+	Name         string
+	HardwareAddr net.HardwareAddr
+	Flags        net.Flags
+	RawFlags     uint32
+	ParentIndex  int         // index of the parent link device
+	MasterIndex  int         // must be the index of a bridge
+	Namespace    interface{} // nil | NsPid | NsFd
+	Alias        string
+	Statistics   *LinkStatistics
+	Promisc      int
+	Xdp          *LinkXdp
+	EncapType    string
+	Protinfo     *Protinfo
+	OperState    LinkOperState
+	NetNsID      int
+}
+
+// LinkOperState represents the values of the IFLA_OPERSTATE link
+// attribute, which contains the RFC2863 state of the interface.
+type LinkOperState uint8
+
+const (
+	OperUnknown        = iota // Status can't be determined.
+	OperNotPresent            // Some component is missing.
+	OperDown                  // Down.
+	OperLowerLayerDown        // Down due to state of lower layer.
+	OperTesting               // In some test mode.
+	OperDormant               // Not up but pending an external event.
+	OperUp                    // Up, ready to send packets.
+)
+
+func (s LinkOperState) String() string {
+	switch s {
+	case OperNotPresent:
+		return "not-present"
+	case OperDown:
+		return "down"
+	case OperLowerLayerDown:
+		return "lower-layer-down"
+	case OperTesting:
+		return "testing"
+	case OperDormant:
+		return "dormant"
+	case OperUp:
+		return "up"
+	default:
+		return "unknown"
+	}
+}
+
+// NewLinkAttrs returns LinkAttrs structure filled with default values
+func NewLinkAttrs() LinkAttrs {
+	return LinkAttrs{
+		TxQLen: -1,
+	}
+}
+
+type LinkStatistics LinkStatistics64
+
+/*
+Ref: struct rtnl_link_stats {...}
+*/
+type LinkStatistics32 struct {
+	RxPackets         uint32
+	TxPackets         uint32
+	RxBytes           uint32
+	TxBytes           uint32
+	RxErrors          uint32
+	TxErrors          uint32
+	RxDropped         uint32
+	TxDropped         uint32
+	Multicast         uint32
+	Collisions        uint32
+	RxLengthErrors    uint32
+	RxOverErrors      uint32
+	RxCrcErrors       uint32
+	RxFrameErrors     uint32
+	RxFifoErrors      uint32
+	RxMissedErrors    uint32
+	TxAbortedErrors   uint32
+	TxCarrierErrors   uint32
+	TxFifoErrors      uint32
+	TxHeartbeatErrors uint32
+	TxWindowErrors    uint32
+	RxCompressed      uint32
+	TxCompressed      uint32
+}
+
+func (s32 LinkStatistics32) to64() *LinkStatistics64 {
+	return &LinkStatistics64{
+		RxPackets:         uint64(s32.RxPackets),
+		TxPackets:         uint64(s32.TxPackets),
+		RxBytes:           uint64(s32.RxBytes),
+		TxBytes:           uint64(s32.TxBytes),
+		RxErrors:          uint64(s32.RxErrors),
+		TxErrors:          uint64(s32.TxErrors),
+		RxDropped:         uint64(s32.RxDropped),
+		TxDropped:         uint64(s32.TxDropped),
+		Multicast:         uint64(s32.Multicast),
+		Collisions:        uint64(s32.Collisions),
+		RxLengthErrors:    uint64(s32.RxLengthErrors),
+		RxOverErrors:      uint64(s32.RxOverErrors),
+		RxCrcErrors:       uint64(s32.RxCrcErrors),
+		RxFrameErrors:     uint64(s32.RxFrameErrors),
+		RxFifoErrors:      uint64(s32.RxFifoErrors),
+		RxMissedErrors:    uint64(s32.RxMissedErrors),
+		TxAbortedErrors:   uint64(s32.TxAbortedErrors),
+		TxCarrierErrors:   uint64(s32.TxCarrierErrors),
+		TxFifoErrors:      uint64(s32.TxFifoErrors),
+		TxHeartbeatErrors: uint64(s32.TxHeartbeatErrors),
+		TxWindowErrors:    uint64(s32.TxWindowErrors),
+		RxCompressed:      uint64(s32.RxCompressed),
+		TxCompressed:      uint64(s32.TxCompressed),
+	}
+}
+
+/*
+Ref: struct rtnl_link_stats64 {...}
+*/
+type LinkStatistics64 struct {
+	RxPackets         uint64
+	TxPackets         uint64
+	RxBytes           uint64
+	TxBytes           uint64
+	RxErrors          uint64
+	TxErrors          uint64
+	RxDropped         uint64
+	TxDropped         uint64
+	Multicast         uint64
+	Collisions        uint64
+	RxLengthErrors    uint64
+	RxOverErrors      uint64
+	RxCrcErrors       uint64
+	RxFrameErrors     uint64
+	RxFifoErrors      uint64
+	RxMissedErrors    uint64
+	TxAbortedErrors   uint64
+	TxCarrierErrors   uint64
+	TxFifoErrors      uint64
+	TxHeartbeatErrors uint64
+	TxWindowErrors    uint64
+	RxCompressed      uint64
+	TxCompressed      uint64
+}
+
+type LinkXdp struct {
+	Fd       int
+	Attached bool
+	Flags    uint32
+	ProgId   uint32
+}
+
+// Device links cannot be created via netlink. These links
+// are links created by udev like 'lo' and 'etho0'
+type Device struct {
+	LinkAttrs
+}
+
+func (device *Device) Attrs() *LinkAttrs {
+	return &device.LinkAttrs
+}
+
+func (device *Device) Type() string {
+	return "device"
+}
+
+// Dummy links are dummy ethernet devices
+type Dummy struct {
+	LinkAttrs
+}
+
+func (dummy *Dummy) Attrs() *LinkAttrs {
+	return &dummy.LinkAttrs
+}
+
+func (dummy *Dummy) Type() string {
+	return "dummy"
+}
+
+// Ifb links are advanced dummy devices for packet filtering
+type Ifb struct {
+	LinkAttrs
+}
+
+func (ifb *Ifb) Attrs() *LinkAttrs {
+	return &ifb.LinkAttrs
+}
+
+func (ifb *Ifb) Type() string {
+	return "ifb"
+}
+
+// Bridge links are simple linux bridges
+type Bridge struct {
+	LinkAttrs
+	MulticastSnooping *bool
+	HelloTime         *uint32
+}
+
+func (bridge *Bridge) Attrs() *LinkAttrs {
+	return &bridge.LinkAttrs
+}
+
+func (bridge *Bridge) Type() string {
+	return "bridge"
+}
+
+// Vlan links have ParentIndex set in their Attrs()
+type Vlan struct {
+	LinkAttrs
+	VlanId int
+}
+
+func (vlan *Vlan) Attrs() *LinkAttrs {
+	return &vlan.LinkAttrs
+}
+
+func (vlan *Vlan) Type() string {
+	return "vlan"
+}
+
+type MacvlanMode uint16
+
+const (
+	MACVLAN_MODE_DEFAULT MacvlanMode = iota
+	MACVLAN_MODE_PRIVATE
+	MACVLAN_MODE_VEPA
+	MACVLAN_MODE_BRIDGE
+	MACVLAN_MODE_PASSTHRU
+	MACVLAN_MODE_SOURCE
+)
+
+// Macvlan links have ParentIndex set in their Attrs()
+type Macvlan struct {
+	LinkAttrs
+	Mode MacvlanMode
+}
+
+func (macvlan *Macvlan) Attrs() *LinkAttrs {
+	return &macvlan.LinkAttrs
+}
+
+func (macvlan *Macvlan) Type() string {
+	return "macvlan"
+}
+
+// Macvtap - macvtap is a virtual interfaces based on macvlan
+type Macvtap struct {
+	Macvlan
+}
+
+func (macvtap Macvtap) Type() string {
+	return "macvtap"
+}
+
+type TuntapMode uint16
+type TuntapFlag uint16
+
+// Tuntap links created via /dev/tun/tap, but can be destroyed via netlink
+type Tuntap struct {
+	LinkAttrs
+	Mode  TuntapMode
+	Flags TuntapFlag
+}
+
+func (tuntap *Tuntap) Attrs() *LinkAttrs {
+	return &tuntap.LinkAttrs
+}
+
+func (tuntap *Tuntap) Type() string {
+	return "tuntap"
+}
+
+// Veth devices must specify PeerName on create
+type Veth struct {
+	LinkAttrs
+	PeerName string // veth on create only
+}
+
+func (veth *Veth) Attrs() *LinkAttrs {
+	return &veth.LinkAttrs
+}
+
+func (veth *Veth) Type() string {
+	return "veth"
+}
+
+// GenericLink links represent types that are not currently understood
+// by this netlink library.
+type GenericLink struct {
+	LinkAttrs
+	LinkType string
+}
+
+func (generic *GenericLink) Attrs() *LinkAttrs {
+	return &generic.LinkAttrs
+}
+
+func (generic *GenericLink) Type() string {
+	return generic.LinkType
+}
+
+type Vxlan struct {
+	LinkAttrs
+	VxlanId      int
+	VtepDevIndex int
+	SrcAddr      net.IP
+	Group        net.IP
+	TTL          int
+	TOS          int
+	Learning     bool
+	Proxy        bool
+	RSC          bool
+	L2miss       bool
+	L3miss       bool
+	UDPCSum      bool
+	NoAge        bool
+	GBP          bool
+	FlowBased    bool
+	Age          int
+	Limit        int
+	Port         int
+	PortLow      int
+	PortHigh     int
+}
+
+func (vxlan *Vxlan) Attrs() *LinkAttrs {
+	return &vxlan.LinkAttrs
+}
+
+func (vxlan *Vxlan) Type() string {
+	return "vxlan"
+}
+
+type IPVlanMode uint16
+
+const (
+	IPVLAN_MODE_L2 IPVlanMode = iota
+	IPVLAN_MODE_L3
+	IPVLAN_MODE_L3S
+	IPVLAN_MODE_MAX
+)
+
+type IPVlan struct {
+	LinkAttrs
+	Mode IPVlanMode
+}
+
+func (ipvlan *IPVlan) Attrs() *LinkAttrs {
+	return &ipvlan.LinkAttrs
+}
+
+func (ipvlan *IPVlan) Type() string {
+	return "ipvlan"
+}
+
+// BondMode type
+type BondMode int
+
+func (b BondMode) String() string {
+	s, ok := bondModeToString[b]
+	if !ok {
+		return fmt.Sprintf("BondMode(%d)", b)
+	}
+	return s
+}
+
+// StringToBondMode returns bond mode, or uknonw is the s is invalid.
+func StringToBondMode(s string) BondMode {
+	mode, ok := StringToBondModeMap[s]
+	if !ok {
+		return BOND_MODE_UNKNOWN
+	}
+	return mode
+}
+
+// Possible BondMode
+const (
+	BOND_MODE_BALANCE_RR BondMode = iota
+	BOND_MODE_ACTIVE_BACKUP
+	BOND_MODE_BALANCE_XOR
+	BOND_MODE_BROADCAST
+	BOND_MODE_802_3AD
+	BOND_MODE_BALANCE_TLB
+	BOND_MODE_BALANCE_ALB
+	BOND_MODE_UNKNOWN
+)
+
+var bondModeToString = map[BondMode]string{
+	BOND_MODE_BALANCE_RR:    "balance-rr",
+	BOND_MODE_ACTIVE_BACKUP: "active-backup",
+	BOND_MODE_BALANCE_XOR:   "balance-xor",
+	BOND_MODE_BROADCAST:     "broadcast",
+	BOND_MODE_802_3AD:       "802.3ad",
+	BOND_MODE_BALANCE_TLB:   "balance-tlb",
+	BOND_MODE_BALANCE_ALB:   "balance-alb",
+}
+var StringToBondModeMap = map[string]BondMode{
+	"balance-rr":    BOND_MODE_BALANCE_RR,
+	"active-backup": BOND_MODE_ACTIVE_BACKUP,
+	"balance-xor":   BOND_MODE_BALANCE_XOR,
+	"broadcast":     BOND_MODE_BROADCAST,
+	"802.3ad":       BOND_MODE_802_3AD,
+	"balance-tlb":   BOND_MODE_BALANCE_TLB,
+	"balance-alb":   BOND_MODE_BALANCE_ALB,
+}
+
+// BondArpValidate type
+type BondArpValidate int
+
+// Possible BondArpValidate value
+const (
+	BOND_ARP_VALIDATE_NONE BondArpValidate = iota
+	BOND_ARP_VALIDATE_ACTIVE
+	BOND_ARP_VALIDATE_BACKUP
+	BOND_ARP_VALIDATE_ALL
+)
+
+// BondPrimaryReselect type
+type BondPrimaryReselect int
+
+// Possible BondPrimaryReselect value
+const (
+	BOND_PRIMARY_RESELECT_ALWAYS BondPrimaryReselect = iota
+	BOND_PRIMARY_RESELECT_BETTER
+	BOND_PRIMARY_RESELECT_FAILURE
+)
+
+// BondArpAllTargets type
+type BondArpAllTargets int
+
+// Possible BondArpAllTargets value
+const (
+	BOND_ARP_ALL_TARGETS_ANY BondArpAllTargets = iota
+	BOND_ARP_ALL_TARGETS_ALL
+)
+
+// BondFailOverMac type
+type BondFailOverMac int
+
+// Possible BondFailOverMac value
+const (
+	BOND_FAIL_OVER_MAC_NONE BondFailOverMac = iota
+	BOND_FAIL_OVER_MAC_ACTIVE
+	BOND_FAIL_OVER_MAC_FOLLOW
+)
+
+// BondXmitHashPolicy type
+type BondXmitHashPolicy int
+
+func (b BondXmitHashPolicy) String() string {
+	s, ok := bondXmitHashPolicyToString[b]
+	if !ok {
+		return fmt.Sprintf("XmitHashPolicy(%d)", b)
+	}
+	return s
+}
+
+// StringToBondXmitHashPolicy returns bond lacp arte, or uknonw is the s is invalid.
+func StringToBondXmitHashPolicy(s string) BondXmitHashPolicy {
+	lacp, ok := StringToBondXmitHashPolicyMap[s]
+	if !ok {
+		return BOND_XMIT_HASH_POLICY_UNKNOWN
+	}
+	return lacp
+}
+
+// Possible BondXmitHashPolicy value
+const (
+	BOND_XMIT_HASH_POLICY_LAYER2 BondXmitHashPolicy = iota
+	BOND_XMIT_HASH_POLICY_LAYER3_4
+	BOND_XMIT_HASH_POLICY_LAYER2_3
+	BOND_XMIT_HASH_POLICY_ENCAP2_3
+	BOND_XMIT_HASH_POLICY_ENCAP3_4
+	BOND_XMIT_HASH_POLICY_UNKNOWN
+)
+
+var bondXmitHashPolicyToString = map[BondXmitHashPolicy]string{
+	BOND_XMIT_HASH_POLICY_LAYER2:   "layer2",
+	BOND_XMIT_HASH_POLICY_LAYER3_4: "layer3+4",
+	BOND_XMIT_HASH_POLICY_LAYER2_3: "layer2+3",
+	BOND_XMIT_HASH_POLICY_ENCAP2_3: "encap2+3",
+	BOND_XMIT_HASH_POLICY_ENCAP3_4: "encap3+4",
+}
+var StringToBondXmitHashPolicyMap = map[string]BondXmitHashPolicy{
+	"layer2":   BOND_XMIT_HASH_POLICY_LAYER2,
+	"layer3+4": BOND_XMIT_HASH_POLICY_LAYER3_4,
+	"layer2+3": BOND_XMIT_HASH_POLICY_LAYER2_3,
+	"encap2+3": BOND_XMIT_HASH_POLICY_ENCAP2_3,
+	"encap3+4": BOND_XMIT_HASH_POLICY_ENCAP3_4,
+}
+
+// BondLacpRate type
+type BondLacpRate int
+
+func (b BondLacpRate) String() string {
+	s, ok := bondLacpRateToString[b]
+	if !ok {
+		return fmt.Sprintf("LacpRate(%d)", b)
+	}
+	return s
+}
+
+// StringToBondLacpRate returns bond lacp arte, or uknonw is the s is invalid.
+func StringToBondLacpRate(s string) BondLacpRate {
+	lacp, ok := StringToBondLacpRateMap[s]
+	if !ok {
+		return BOND_LACP_RATE_UNKNOWN
+	}
+	return lacp
+}
+
+// Possible BondLacpRate value
+const (
+	BOND_LACP_RATE_SLOW BondLacpRate = iota
+	BOND_LACP_RATE_FAST
+	BOND_LACP_RATE_UNKNOWN
+)
+
+var bondLacpRateToString = map[BondLacpRate]string{
+	BOND_LACP_RATE_SLOW: "slow",
+	BOND_LACP_RATE_FAST: "fast",
+}
+var StringToBondLacpRateMap = map[string]BondLacpRate{
+	"slow": BOND_LACP_RATE_SLOW,
+	"fast": BOND_LACP_RATE_FAST,
+}
+
+// BondAdSelect type
+type BondAdSelect int
+
+// Possible BondAdSelect value
+const (
+	BOND_AD_SELECT_STABLE BondAdSelect = iota
+	BOND_AD_SELECT_BANDWIDTH
+	BOND_AD_SELECT_COUNT
+)
+
+// BondAdInfo represents ad info for bond
+type BondAdInfo struct {
+	AggregatorId int
+	NumPorts     int
+	ActorKey     int
+	PartnerKey   int
+	PartnerMac   net.HardwareAddr
+}
+
+// Bond representation
+type Bond struct {
+	LinkAttrs
+	Mode            BondMode
+	ActiveSlave     int
+	Miimon          int
+	UpDelay         int
+	DownDelay       int
+	UseCarrier      int
+	ArpInterval     int
+	ArpIpTargets    []net.IP
+	ArpValidate     BondArpValidate
+	ArpAllTargets   BondArpAllTargets
+	Primary         int
+	PrimaryReselect BondPrimaryReselect
+	FailOverMac     BondFailOverMac
+	XmitHashPolicy  BondXmitHashPolicy
+	ResendIgmp      int
+	NumPeerNotif    int
+	AllSlavesActive int
+	MinLinks        int
+	LpInterval      int
+	PackersPerSlave int
+	LacpRate        BondLacpRate
+	AdSelect        BondAdSelect
+	// looking at iproute tool AdInfo can only be retrived. It can't be set.
+	AdInfo         *BondAdInfo
+	AdActorSysPrio int
+	AdUserPortKey  int
+	AdActorSystem  net.HardwareAddr
+	TlbDynamicLb   int
+}
+
+func NewLinkBond(atr LinkAttrs) *Bond {
+	return &Bond{
+		LinkAttrs:       atr,
+		Mode:            -1,
+		ActiveSlave:     -1,
+		Miimon:          -1,
+		UpDelay:         -1,
+		DownDelay:       -1,
+		UseCarrier:      -1,
+		ArpInterval:     -1,
+		ArpIpTargets:    nil,
+		ArpValidate:     -1,
+		ArpAllTargets:   -1,
+		Primary:         -1,
+		PrimaryReselect: -1,
+		FailOverMac:     -1,
+		XmitHashPolicy:  -1,
+		ResendIgmp:      -1,
+		NumPeerNotif:    -1,
+		AllSlavesActive: -1,
+		MinLinks:        -1,
+		LpInterval:      -1,
+		PackersPerSlave: -1,
+		LacpRate:        -1,
+		AdSelect:        -1,
+		AdActorSysPrio:  -1,
+		AdUserPortKey:   -1,
+		AdActorSystem:   nil,
+		TlbDynamicLb:    -1,
+	}
+}
+
+// Flag mask for bond options. Bond.Flagmask must be set to on for option to work.
+const (
+	BOND_MODE_MASK uint64 = 1 << (1 + iota)
+	BOND_ACTIVE_SLAVE_MASK
+	BOND_MIIMON_MASK
+	BOND_UPDELAY_MASK
+	BOND_DOWNDELAY_MASK
+	BOND_USE_CARRIER_MASK
+	BOND_ARP_INTERVAL_MASK
+	BOND_ARP_VALIDATE_MASK
+	BOND_ARP_ALL_TARGETS_MASK
+	BOND_PRIMARY_MASK
+	BOND_PRIMARY_RESELECT_MASK
+	BOND_FAIL_OVER_MAC_MASK
+	BOND_XMIT_HASH_POLICY_MASK
+	BOND_RESEND_IGMP_MASK
+	BOND_NUM_PEER_NOTIF_MASK
+	BOND_ALL_SLAVES_ACTIVE_MASK
+	BOND_MIN_LINKS_MASK
+	BOND_LP_INTERVAL_MASK
+	BOND_PACKETS_PER_SLAVE_MASK
+	BOND_LACP_RATE_MASK
+	BOND_AD_SELECT_MASK
+)
+
+// Attrs implementation.
+func (bond *Bond) Attrs() *LinkAttrs {
+	return &bond.LinkAttrs
+}
+
+// Type implementation fro Vxlan.
+func (bond *Bond) Type() string {
+	return "bond"
+}
+
+// Gretap devices must specify LocalIP and RemoteIP on create
+type Gretap struct {
+	LinkAttrs
+	IKey       uint32
+	OKey       uint32
+	EncapSport uint16
+	EncapDport uint16
+	Local      net.IP
+	Remote     net.IP
+	IFlags     uint16
+	OFlags     uint16
+	PMtuDisc   uint8
+	Ttl        uint8
+	Tos        uint8
+	EncapType  uint16
+	EncapFlags uint16
+	Link       uint32
+	FlowBased  bool
+}
+
+func (gretap *Gretap) Attrs() *LinkAttrs {
+	return &gretap.LinkAttrs
+}
+
+func (gretap *Gretap) Type() string {
+	return "gretap"
+}
+
+type Iptun struct {
+	LinkAttrs
+	Ttl      uint8
+	Tos      uint8
+	PMtuDisc uint8
+	Link     uint32
+	Local    net.IP
+	Remote   net.IP
+}
+
+func (iptun *Iptun) Attrs() *LinkAttrs {
+	return &iptun.LinkAttrs
+}
+
+func (iptun *Iptun) Type() string {
+	return "ipip"
+}
+
+type Vti struct {
+	LinkAttrs
+	IKey   uint32
+	OKey   uint32
+	Link   uint32
+	Local  net.IP
+	Remote net.IP
+}
+
+func (vti *Vti) Attrs() *LinkAttrs {
+	return &vti.LinkAttrs
+}
+
+func (iptun *Vti) Type() string {
+	return "vti"
+}
+
+type Gretun struct {
+	LinkAttrs
+	Link     uint32
+	IFlags   uint16
+	OFlags   uint16
+	IKey     uint32
+	OKey     uint32
+	Local    net.IP
+	Remote   net.IP
+	Ttl      uint8
+	Tos      uint8
+	PMtuDisc uint8
+}
+
+func (gretun *Gretun) Attrs() *LinkAttrs {
+	return &gretun.LinkAttrs
+}
+
+func (gretun *Gretun) Type() string {
+	return "gre"
+}
+
+type Vrf struct {
+	LinkAttrs
+	Table uint32
+}
+
+func (vrf *Vrf) Attrs() *LinkAttrs {
+	return &vrf.LinkAttrs
+}
+
+func (vrf *Vrf) Type() string {
+	return "vrf"
+}
+
+type GTP struct {
+	LinkAttrs
+	FD0         int
+	FD1         int
+	Role        int
+	PDPHashsize int
+}
+
+func (gtp *GTP) Attrs() *LinkAttrs {
+	return &gtp.LinkAttrs
+}
+
+func (gtp *GTP) Type() string {
+	return "gtp"
+}
+
+// iproute2 supported devices;
+// vlan | veth | vcan | dummy | ifb | macvlan | macvtap |
+// bridge | bond | ipoib | ip6tnl | ipip | sit | vxlan |
+// gre | gretap | ip6gre | ip6gretap | vti | nlmon |
+// bond_slave | ipvlan
+
+// LinkNotFoundError wraps the various not found errors when
+// getting/reading links. This is intended for better error
+// handling by dependent code so that "not found error" can
+// be distinguished from other errors
+type LinkNotFoundError struct {
+	error
+}
diff --git a/vendor/github.com/vishvananda/netlink/link_linux.go b/vendor/github.com/vishvananda/netlink/link_linux.go
new file mode 100644
index 0000000000..e94fd9766c
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/link_linux.go
@@ -0,0 +1,2016 @@
+package netlink
+
+import (
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"net"
+	"os"
+	"syscall"
+	"unsafe"
+
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+const (
+	SizeofLinkStats32 = 0x5c
+	SizeofLinkStats64 = 0xd8
+	IFLA_STATS64      = 0x17 // syscall pkg does not contain this one
+)
+
+const (
+	TUNTAP_MODE_TUN  TuntapMode = syscall.IFF_TUN
+	TUNTAP_MODE_TAP  TuntapMode = syscall.IFF_TAP
+	TUNTAP_DEFAULTS  TuntapFlag = syscall.IFF_TUN_EXCL | syscall.IFF_ONE_QUEUE
+	TUNTAP_VNET_HDR  TuntapFlag = syscall.IFF_VNET_HDR
+	TUNTAP_TUN_EXCL  TuntapFlag = syscall.IFF_TUN_EXCL
+	TUNTAP_NO_PI     TuntapFlag = syscall.IFF_NO_PI
+	TUNTAP_ONE_QUEUE TuntapFlag = syscall.IFF_ONE_QUEUE
+)
+
+var lookupByDump = false
+
+var macvlanModes = [...]uint32{
+	0,
+	nl.MACVLAN_MODE_PRIVATE,
+	nl.MACVLAN_MODE_VEPA,
+	nl.MACVLAN_MODE_BRIDGE,
+	nl.MACVLAN_MODE_PASSTHRU,
+	nl.MACVLAN_MODE_SOURCE,
+}
+
+func ensureIndex(link *LinkAttrs) {
+	if link != nil && link.Index == 0 {
+		newlink, _ := LinkByName(link.Name)
+		if newlink != nil {
+			link.Index = newlink.Attrs().Index
+		}
+	}
+}
+
+func (h *Handle) ensureIndex(link *LinkAttrs) {
+	if link != nil && link.Index == 0 {
+		newlink, _ := h.LinkByName(link.Name)
+		if newlink != nil {
+			link.Index = newlink.Attrs().Index
+		}
+	}
+}
+
+func (h *Handle) LinkSetARPOff(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change |= syscall.IFF_NOARP
+	msg.Flags |= syscall.IFF_NOARP
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func LinkSetARPOff(link Link) error {
+	return pkgHandle.LinkSetARPOff(link)
+}
+
+func (h *Handle) LinkSetARPOn(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change |= syscall.IFF_NOARP
+	msg.Flags &= ^uint32(syscall.IFF_NOARP)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func LinkSetARPOn(link Link) error {
+	return pkgHandle.LinkSetARPOn(link)
+}
+
+func (h *Handle) SetPromiscOn(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change = syscall.IFF_PROMISC
+	msg.Flags = syscall.IFF_PROMISC
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func BridgeSetMcastSnoop(link Link, on bool) error {
+	return pkgHandle.BridgeSetMcastSnoop(link, on)
+}
+
+func (h *Handle) BridgeSetMcastSnoop(link Link, on bool) error {
+	bridge := link.(*Bridge)
+	bridge.MulticastSnooping = &on
+	return h.linkModify(bridge, syscall.NLM_F_ACK)
+}
+
+func SetPromiscOn(link Link) error {
+	return pkgHandle.SetPromiscOn(link)
+}
+
+func (h *Handle) SetPromiscOff(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change = syscall.IFF_PROMISC
+	msg.Flags = 0 & ^syscall.IFF_PROMISC
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func SetPromiscOff(link Link) error {
+	return pkgHandle.SetPromiscOff(link)
+}
+
+// LinkSetUp enables the link device.
+// Equivalent to: `ip link set $link up`
+func LinkSetUp(link Link) error {
+	return pkgHandle.LinkSetUp(link)
+}
+
+// LinkSetUp enables the link device.
+// Equivalent to: `ip link set $link up`
+func (h *Handle) LinkSetUp(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_NEWLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change = syscall.IFF_UP
+	msg.Flags = syscall.IFF_UP
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetDown disables link device.
+// Equivalent to: `ip link set $link down`
+func LinkSetDown(link Link) error {
+	return pkgHandle.LinkSetDown(link)
+}
+
+// LinkSetDown disables link device.
+// Equivalent to: `ip link set $link down`
+func (h *Handle) LinkSetDown(link Link) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_NEWLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Change = syscall.IFF_UP
+	msg.Flags = 0 & ^syscall.IFF_UP
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetMTU sets the mtu of the link device.
+// Equivalent to: `ip link set $link mtu $mtu`
+func LinkSetMTU(link Link, mtu int) error {
+	return pkgHandle.LinkSetMTU(link, mtu)
+}
+
+// LinkSetMTU sets the mtu of the link device.
+// Equivalent to: `ip link set $link mtu $mtu`
+func (h *Handle) LinkSetMTU(link Link, mtu int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(mtu))
+
+	data := nl.NewRtAttr(syscall.IFLA_MTU, b)
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetName sets the name of the link device.
+// Equivalent to: `ip link set $link name $name`
+func LinkSetName(link Link, name string) error {
+	return pkgHandle.LinkSetName(link, name)
+}
+
+// LinkSetName sets the name of the link device.
+// Equivalent to: `ip link set $link name $name`
+func (h *Handle) LinkSetName(link Link, name string) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(syscall.IFLA_IFNAME, []byte(name))
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetAlias sets the alias of the link device.
+// Equivalent to: `ip link set dev $link alias $name`
+func LinkSetAlias(link Link, name string) error {
+	return pkgHandle.LinkSetAlias(link, name)
+}
+
+// LinkSetAlias sets the alias of the link device.
+// Equivalent to: `ip link set dev $link alias $name`
+func (h *Handle) LinkSetAlias(link Link, name string) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(syscall.IFLA_IFALIAS, []byte(name))
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetHardwareAddr sets the hardware address of the link device.
+// Equivalent to: `ip link set $link address $hwaddr`
+func LinkSetHardwareAddr(link Link, hwaddr net.HardwareAddr) error {
+	return pkgHandle.LinkSetHardwareAddr(link, hwaddr)
+}
+
+// LinkSetHardwareAddr sets the hardware address of the link device.
+// Equivalent to: `ip link set $link address $hwaddr`
+func (h *Handle) LinkSetHardwareAddr(link Link, hwaddr net.HardwareAddr) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(syscall.IFLA_ADDRESS, []byte(hwaddr))
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetVfHardwareAddr sets the hardware address of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf mac $hwaddr`
+func LinkSetVfHardwareAddr(link Link, vf int, hwaddr net.HardwareAddr) error {
+	return pkgHandle.LinkSetVfHardwareAddr(link, vf, hwaddr)
+}
+
+// LinkSetVfHardwareAddr sets the hardware address of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf mac $hwaddr`
+func (h *Handle) LinkSetVfHardwareAddr(link Link, vf int, hwaddr net.HardwareAddr) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(nl.IFLA_VFINFO_LIST, nil)
+	info := nl.NewRtAttrChild(data, nl.IFLA_VF_INFO, nil)
+	vfmsg := nl.VfMac{
+		Vf: uint32(vf),
+	}
+	copy(vfmsg.Mac[:], []byte(hwaddr))
+	nl.NewRtAttrChild(info, nl.IFLA_VF_MAC, vfmsg.Serialize())
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetVfVlan sets the vlan of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf vlan $vlan`
+func LinkSetVfVlan(link Link, vf, vlan int) error {
+	return pkgHandle.LinkSetVfVlan(link, vf, vlan)
+}
+
+// LinkSetVfVlan sets the vlan of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf vlan $vlan`
+func (h *Handle) LinkSetVfVlan(link Link, vf, vlan int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(nl.IFLA_VFINFO_LIST, nil)
+	info := nl.NewRtAttrChild(data, nl.IFLA_VF_INFO, nil)
+	vfmsg := nl.VfVlan{
+		Vf:   uint32(vf),
+		Vlan: uint32(vlan),
+	}
+	nl.NewRtAttrChild(info, nl.IFLA_VF_VLAN, vfmsg.Serialize())
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetVfTxRate sets the tx rate of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf rate $rate`
+func LinkSetVfTxRate(link Link, vf, rate int) error {
+	return pkgHandle.LinkSetVfTxRate(link, vf, rate)
+}
+
+// LinkSetVfTxRate sets the tx rate of a vf for the link.
+// Equivalent to: `ip link set $link vf $vf rate $rate`
+func (h *Handle) LinkSetVfTxRate(link Link, vf, rate int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(nl.IFLA_VFINFO_LIST, nil)
+	info := nl.NewRtAttrChild(data, nl.IFLA_VF_INFO, nil)
+	vfmsg := nl.VfTxRate{
+		Vf:   uint32(vf),
+		Rate: uint32(rate),
+	}
+	nl.NewRtAttrChild(info, nl.IFLA_VF_TX_RATE, vfmsg.Serialize())
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetVfSpoofchk enables/disables spoof check on a vf for the link.
+// Equivalent to: `ip link set $link vf $vf spoofchk $check`
+func LinkSetVfSpoofchk(link Link, vf int, check bool) error {
+	return pkgHandle.LinkSetVfSpoofchk(link, vf, check)
+}
+
+// LinkSetVfSpookfchk enables/disables spoof check on a vf for the link.
+// Equivalent to: `ip link set $link vf $vf spoofchk $check`
+func (h *Handle) LinkSetVfSpoofchk(link Link, vf int, check bool) error {
+	var setting uint32
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(nl.IFLA_VFINFO_LIST, nil)
+	info := nl.NewRtAttrChild(data, nl.IFLA_VF_INFO, nil)
+	if check {
+		setting = 1
+	}
+	vfmsg := nl.VfSpoofchk{
+		Vf:      uint32(vf),
+		Setting: setting,
+	}
+	nl.NewRtAttrChild(info, nl.IFLA_VF_SPOOFCHK, vfmsg.Serialize())
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetVfTrust enables/disables trust state on a vf for the link.
+// Equivalent to: `ip link set $link vf $vf trust $state`
+func LinkSetVfTrust(link Link, vf int, state bool) error {
+	return pkgHandle.LinkSetVfTrust(link, vf, state)
+}
+
+// LinkSetVfTrust enables/disables trust state on a vf for the link.
+// Equivalent to: `ip link set $link vf $vf trust $state`
+func (h *Handle) LinkSetVfTrust(link Link, vf int, state bool) error {
+	var setting uint32
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	data := nl.NewRtAttr(nl.IFLA_VFINFO_LIST, nil)
+	info := nl.NewRtAttrChild(data, nl.IFLA_VF_INFO, nil)
+	if state {
+		setting = 1
+	}
+	vfmsg := nl.VfTrust{
+		Vf:      uint32(vf),
+		Setting: setting,
+	}
+	nl.NewRtAttrChild(info, nl.IFLA_VF_TRUST, vfmsg.Serialize())
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetMaster sets the master of the link device.
+// Equivalent to: `ip link set $link master $master`
+func LinkSetMaster(link Link, master *Bridge) error {
+	return pkgHandle.LinkSetMaster(link, master)
+}
+
+// LinkSetMaster sets the master of the link device.
+// Equivalent to: `ip link set $link master $master`
+func (h *Handle) LinkSetMaster(link Link, master *Bridge) error {
+	index := 0
+	if master != nil {
+		masterBase := master.Attrs()
+		h.ensureIndex(masterBase)
+		index = masterBase.Index
+	}
+	if index <= 0 {
+		return fmt.Errorf("Device does not exist")
+	}
+	return h.LinkSetMasterByIndex(link, index)
+}
+
+// LinkSetNoMaster removes the master of the link device.
+// Equivalent to: `ip link set $link nomaster`
+func LinkSetNoMaster(link Link) error {
+	return pkgHandle.LinkSetNoMaster(link)
+}
+
+// LinkSetNoMaster removes the master of the link device.
+// Equivalent to: `ip link set $link nomaster`
+func (h *Handle) LinkSetNoMaster(link Link) error {
+	return h.LinkSetMasterByIndex(link, 0)
+}
+
+// LinkSetMasterByIndex sets the master of the link device.
+// Equivalent to: `ip link set $link master $master`
+func LinkSetMasterByIndex(link Link, masterIndex int) error {
+	return pkgHandle.LinkSetMasterByIndex(link, masterIndex)
+}
+
+// LinkSetMasterByIndex sets the master of the link device.
+// Equivalent to: `ip link set $link master $master`
+func (h *Handle) LinkSetMasterByIndex(link Link, masterIndex int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(masterIndex))
+
+	data := nl.NewRtAttr(syscall.IFLA_MASTER, b)
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetNsPid puts the device into a new network namespace. The
+// pid must be a pid of a running process.
+// Equivalent to: `ip link set $link netns $pid`
+func LinkSetNsPid(link Link, nspid int) error {
+	return pkgHandle.LinkSetNsPid(link, nspid)
+}
+
+// LinkSetNsPid puts the device into a new network namespace. The
+// pid must be a pid of a running process.
+// Equivalent to: `ip link set $link netns $pid`
+func (h *Handle) LinkSetNsPid(link Link, nspid int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(nspid))
+
+	data := nl.NewRtAttr(syscall.IFLA_NET_NS_PID, b)
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetNsFd puts the device into a new network namespace. The
+// fd must be an open file descriptor to a network namespace.
+// Similar to: `ip link set $link netns $ns`
+func LinkSetNsFd(link Link, fd int) error {
+	return pkgHandle.LinkSetNsFd(link, fd)
+}
+
+// LinkSetNsFd puts the device into a new network namespace. The
+// fd must be an open file descriptor to a network namespace.
+// Similar to: `ip link set $link netns $ns`
+func (h *Handle) LinkSetNsFd(link Link, fd int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(fd))
+
+	data := nl.NewRtAttr(nl.IFLA_NET_NS_FD, b)
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// LinkSetXdpFd adds a bpf function to the driver. The fd must be a bpf
+// program loaded with bpf(type=BPF_PROG_TYPE_XDP)
+func LinkSetXdpFd(link Link, fd int) error {
+	return LinkSetXdpFdWithFlags(link, fd, 0)
+}
+
+// LinkSetXdpFdWithFlags adds a bpf function to the driver with the given
+// options. The fd must be a bpf program loaded with bpf(type=BPF_PROG_TYPE_XDP)
+func LinkSetXdpFdWithFlags(link Link, fd, flags int) error {
+	base := link.Attrs()
+	ensureIndex(base)
+	req := nl.NewNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	addXdpAttrs(&LinkXdp{Fd: fd, Flags: uint32(flags)}, req)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func boolAttr(val bool) []byte {
+	var v uint8
+	if val {
+		v = 1
+	}
+	return nl.Uint8Attr(v)
+}
+
+type vxlanPortRange struct {
+	Lo, Hi uint16
+}
+
+func addVxlanAttrs(vxlan *Vxlan, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+
+	if vxlan.FlowBased {
+		vxlan.VxlanId = 0
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_ID, nl.Uint32Attr(uint32(vxlan.VxlanId)))
+
+	if vxlan.VtepDevIndex != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_LINK, nl.Uint32Attr(uint32(vxlan.VtepDevIndex)))
+	}
+	if vxlan.SrcAddr != nil {
+		ip := vxlan.SrcAddr.To4()
+		if ip != nil {
+			nl.NewRtAttrChild(data, nl.IFLA_VXLAN_LOCAL, []byte(ip))
+		} else {
+			ip = vxlan.SrcAddr.To16()
+			if ip != nil {
+				nl.NewRtAttrChild(data, nl.IFLA_VXLAN_LOCAL6, []byte(ip))
+			}
+		}
+	}
+	if vxlan.Group != nil {
+		group := vxlan.Group.To4()
+		if group != nil {
+			nl.NewRtAttrChild(data, nl.IFLA_VXLAN_GROUP, []byte(group))
+		} else {
+			group = vxlan.Group.To16()
+			if group != nil {
+				nl.NewRtAttrChild(data, nl.IFLA_VXLAN_GROUP6, []byte(group))
+			}
+		}
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_TTL, nl.Uint8Attr(uint8(vxlan.TTL)))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_TOS, nl.Uint8Attr(uint8(vxlan.TOS)))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_LEARNING, boolAttr(vxlan.Learning))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_PROXY, boolAttr(vxlan.Proxy))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_RSC, boolAttr(vxlan.RSC))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_L2MISS, boolAttr(vxlan.L2miss))
+	nl.NewRtAttrChild(data, nl.IFLA_VXLAN_L3MISS, boolAttr(vxlan.L3miss))
+
+	if vxlan.UDPCSum {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_UDP_CSUM, boolAttr(vxlan.UDPCSum))
+	}
+	if vxlan.GBP {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_GBP, []byte{})
+	}
+	if vxlan.FlowBased {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_FLOWBASED, boolAttr(vxlan.FlowBased))
+	}
+	if vxlan.NoAge {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_AGEING, nl.Uint32Attr(0))
+	} else if vxlan.Age > 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_AGEING, nl.Uint32Attr(uint32(vxlan.Age)))
+	}
+	if vxlan.Limit > 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_LIMIT, nl.Uint32Attr(uint32(vxlan.Limit)))
+	}
+	if vxlan.Port > 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_PORT, htons(uint16(vxlan.Port)))
+	}
+	if vxlan.PortLow > 0 || vxlan.PortHigh > 0 {
+		pr := vxlanPortRange{uint16(vxlan.PortLow), uint16(vxlan.PortHigh)}
+
+		buf := new(bytes.Buffer)
+		binary.Write(buf, binary.BigEndian, &pr)
+
+		nl.NewRtAttrChild(data, nl.IFLA_VXLAN_PORT_RANGE, buf.Bytes())
+	}
+}
+
+func addBondAttrs(bond *Bond, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+	if bond.Mode >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_MODE, nl.Uint8Attr(uint8(bond.Mode)))
+	}
+	if bond.ActiveSlave >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_ACTIVE_SLAVE, nl.Uint32Attr(uint32(bond.ActiveSlave)))
+	}
+	if bond.Miimon >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_MIIMON, nl.Uint32Attr(uint32(bond.Miimon)))
+	}
+	if bond.UpDelay >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_UPDELAY, nl.Uint32Attr(uint32(bond.UpDelay)))
+	}
+	if bond.DownDelay >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_DOWNDELAY, nl.Uint32Attr(uint32(bond.DownDelay)))
+	}
+	if bond.UseCarrier >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_USE_CARRIER, nl.Uint8Attr(uint8(bond.UseCarrier)))
+	}
+	if bond.ArpInterval >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_ARP_INTERVAL, nl.Uint32Attr(uint32(bond.ArpInterval)))
+	}
+	if bond.ArpIpTargets != nil {
+		msg := nl.NewRtAttrChild(data, nl.IFLA_BOND_ARP_IP_TARGET, nil)
+		for i := range bond.ArpIpTargets {
+			ip := bond.ArpIpTargets[i].To4()
+			if ip != nil {
+				nl.NewRtAttrChild(msg, i, []byte(ip))
+				continue
+			}
+			ip = bond.ArpIpTargets[i].To16()
+			if ip != nil {
+				nl.NewRtAttrChild(msg, i, []byte(ip))
+			}
+		}
+	}
+	if bond.ArpValidate >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_ARP_VALIDATE, nl.Uint32Attr(uint32(bond.ArpValidate)))
+	}
+	if bond.ArpAllTargets >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_ARP_ALL_TARGETS, nl.Uint32Attr(uint32(bond.ArpAllTargets)))
+	}
+	if bond.Primary >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_PRIMARY, nl.Uint32Attr(uint32(bond.Primary)))
+	}
+	if bond.PrimaryReselect >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_PRIMARY_RESELECT, nl.Uint8Attr(uint8(bond.PrimaryReselect)))
+	}
+	if bond.FailOverMac >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_FAIL_OVER_MAC, nl.Uint8Attr(uint8(bond.FailOverMac)))
+	}
+	if bond.XmitHashPolicy >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_XMIT_HASH_POLICY, nl.Uint8Attr(uint8(bond.XmitHashPolicy)))
+	}
+	if bond.ResendIgmp >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_RESEND_IGMP, nl.Uint32Attr(uint32(bond.ResendIgmp)))
+	}
+	if bond.NumPeerNotif >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_NUM_PEER_NOTIF, nl.Uint8Attr(uint8(bond.NumPeerNotif)))
+	}
+	if bond.AllSlavesActive >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_ALL_SLAVES_ACTIVE, nl.Uint8Attr(uint8(bond.AllSlavesActive)))
+	}
+	if bond.MinLinks >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_MIN_LINKS, nl.Uint32Attr(uint32(bond.MinLinks)))
+	}
+	if bond.LpInterval >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_LP_INTERVAL, nl.Uint32Attr(uint32(bond.LpInterval)))
+	}
+	if bond.PackersPerSlave >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_PACKETS_PER_SLAVE, nl.Uint32Attr(uint32(bond.PackersPerSlave)))
+	}
+	if bond.LacpRate >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_AD_LACP_RATE, nl.Uint8Attr(uint8(bond.LacpRate)))
+	}
+	if bond.AdSelect >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_AD_SELECT, nl.Uint8Attr(uint8(bond.AdSelect)))
+	}
+	if bond.AdActorSysPrio >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_AD_ACTOR_SYS_PRIO, nl.Uint16Attr(uint16(bond.AdActorSysPrio)))
+	}
+	if bond.AdUserPortKey >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_AD_USER_PORT_KEY, nl.Uint16Attr(uint16(bond.AdUserPortKey)))
+	}
+	if bond.AdActorSystem != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_AD_ACTOR_SYSTEM, []byte(bond.AdActorSystem))
+	}
+	if bond.TlbDynamicLb >= 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_BOND_TLB_DYNAMIC_LB, nl.Uint8Attr(uint8(bond.TlbDynamicLb)))
+	}
+}
+
+// LinkAdd adds a new link device. The type and features of the device
+// are taken from the parameters in the link object.
+// Equivalent to: `ip link add $link`
+func LinkAdd(link Link) error {
+	return pkgHandle.LinkAdd(link)
+}
+
+// LinkAdd adds a new link device. The type and features of the device
+// are taken fromt the parameters in the link object.
+// Equivalent to: `ip link add $link`
+func (h *Handle) LinkAdd(link Link) error {
+	return h.linkModify(link, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+}
+
+func (h *Handle) linkModify(link Link, flags int) error {
+	// TODO: support extra data for macvlan
+	base := link.Attrs()
+
+	if base.Name == "" {
+		return fmt.Errorf("LinkAttrs.Name cannot be empty!")
+	}
+
+	if tuntap, ok := link.(*Tuntap); ok {
+		// TODO: support user
+		// TODO: support group
+		// TODO: multi_queue
+		// TODO: support non- persistent
+		if tuntap.Mode < syscall.IFF_TUN || tuntap.Mode > syscall.IFF_TAP {
+			return fmt.Errorf("Tuntap.Mode %v unknown!", tuntap.Mode)
+		}
+		file, err := os.OpenFile("/dev/net/tun", os.O_RDWR, 0)
+		if err != nil {
+			return err
+		}
+		defer file.Close()
+		var req ifReq
+		if tuntap.Flags == 0 {
+			req.Flags = uint16(TUNTAP_DEFAULTS)
+		} else {
+			req.Flags = uint16(tuntap.Flags)
+		}
+		req.Flags |= uint16(tuntap.Mode)
+		copy(req.Name[:15], base.Name)
+		_, _, errno := syscall.Syscall(syscall.SYS_IOCTL, file.Fd(), uintptr(syscall.TUNSETIFF), uintptr(unsafe.Pointer(&req)))
+		if errno != 0 {
+			return fmt.Errorf("Tuntap IOCTL TUNSETIFF failed, errno %v", errno)
+		}
+		_, _, errno = syscall.Syscall(syscall.SYS_IOCTL, file.Fd(), uintptr(syscall.TUNSETPERSIST), 1)
+		if errno != 0 {
+			return fmt.Errorf("Tuntap IOCTL TUNSETPERSIST failed, errno %v", errno)
+		}
+		h.ensureIndex(base)
+
+		// can't set master during create, so set it afterwards
+		if base.MasterIndex != 0 {
+			// TODO: verify MasterIndex is actually a bridge?
+			return h.LinkSetMasterByIndex(link, base.MasterIndex)
+		}
+		return nil
+	}
+
+	req := h.newNetlinkRequest(syscall.RTM_NEWLINK, flags)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	// TODO: make it shorter
+	if base.Flags&net.FlagUp != 0 {
+		msg.Change = syscall.IFF_UP
+		msg.Flags = syscall.IFF_UP
+	}
+	if base.Flags&net.FlagBroadcast != 0 {
+		msg.Change |= syscall.IFF_BROADCAST
+		msg.Flags |= syscall.IFF_BROADCAST
+	}
+	if base.Flags&net.FlagLoopback != 0 {
+		msg.Change |= syscall.IFF_LOOPBACK
+		msg.Flags |= syscall.IFF_LOOPBACK
+	}
+	if base.Flags&net.FlagPointToPoint != 0 {
+		msg.Change |= syscall.IFF_POINTOPOINT
+		msg.Flags |= syscall.IFF_POINTOPOINT
+	}
+	if base.Flags&net.FlagMulticast != 0 {
+		msg.Change |= syscall.IFF_MULTICAST
+		msg.Flags |= syscall.IFF_MULTICAST
+	}
+	req.AddData(msg)
+
+	if base.ParentIndex != 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(base.ParentIndex))
+		data := nl.NewRtAttr(syscall.IFLA_LINK, b)
+		req.AddData(data)
+	} else if link.Type() == "ipvlan" {
+		return fmt.Errorf("Can't create ipvlan link without ParentIndex")
+	}
+
+	nameData := nl.NewRtAttr(syscall.IFLA_IFNAME, nl.ZeroTerminated(base.Name))
+	req.AddData(nameData)
+
+	if base.MTU > 0 {
+		mtu := nl.NewRtAttr(syscall.IFLA_MTU, nl.Uint32Attr(uint32(base.MTU)))
+		req.AddData(mtu)
+	}
+
+	if base.TxQLen >= 0 {
+		qlen := nl.NewRtAttr(syscall.IFLA_TXQLEN, nl.Uint32Attr(uint32(base.TxQLen)))
+		req.AddData(qlen)
+	}
+
+	if base.HardwareAddr != nil {
+		hwaddr := nl.NewRtAttr(syscall.IFLA_ADDRESS, []byte(base.HardwareAddr))
+		req.AddData(hwaddr)
+	}
+
+	if base.Namespace != nil {
+		var attr *nl.RtAttr
+		switch base.Namespace.(type) {
+		case NsPid:
+			val := nl.Uint32Attr(uint32(base.Namespace.(NsPid)))
+			attr = nl.NewRtAttr(syscall.IFLA_NET_NS_PID, val)
+		case NsFd:
+			val := nl.Uint32Attr(uint32(base.Namespace.(NsFd)))
+			attr = nl.NewRtAttr(nl.IFLA_NET_NS_FD, val)
+		}
+
+		req.AddData(attr)
+	}
+
+	if base.Xdp != nil {
+		addXdpAttrs(base.Xdp, req)
+	}
+
+	linkInfo := nl.NewRtAttr(syscall.IFLA_LINKINFO, nil)
+	nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_KIND, nl.NonZeroTerminated(link.Type()))
+
+	switch link := link.(type) {
+	case *Vlan:
+		b := make([]byte, 2)
+		native.PutUint16(b, uint16(link.VlanId))
+		data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+		nl.NewRtAttrChild(data, nl.IFLA_VLAN_ID, b)
+	case *Veth:
+		data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+		peer := nl.NewRtAttrChild(data, nl.VETH_INFO_PEER, nil)
+		nl.NewIfInfomsgChild(peer, syscall.AF_UNSPEC)
+		nl.NewRtAttrChild(peer, syscall.IFLA_IFNAME, nl.ZeroTerminated(link.PeerName))
+		if base.TxQLen >= 0 {
+			nl.NewRtAttrChild(peer, syscall.IFLA_TXQLEN, nl.Uint32Attr(uint32(base.TxQLen)))
+		}
+		if base.MTU > 0 {
+			nl.NewRtAttrChild(peer, syscall.IFLA_MTU, nl.Uint32Attr(uint32(base.MTU)))
+		}
+
+	case *Vxlan:
+		addVxlanAttrs(link, linkInfo)
+	case *Bond:
+		addBondAttrs(link, linkInfo)
+	case *IPVlan:
+		data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+		nl.NewRtAttrChild(data, nl.IFLA_IPVLAN_MODE, nl.Uint16Attr(uint16(link.Mode)))
+	case *Macvlan:
+		if link.Mode != MACVLAN_MODE_DEFAULT {
+			data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+			nl.NewRtAttrChild(data, nl.IFLA_MACVLAN_MODE, nl.Uint32Attr(macvlanModes[link.Mode]))
+		}
+	case *Macvtap:
+		if link.Mode != MACVLAN_MODE_DEFAULT {
+			data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+			nl.NewRtAttrChild(data, nl.IFLA_MACVLAN_MODE, nl.Uint32Attr(macvlanModes[link.Mode]))
+		}
+	case *Gretap:
+		addGretapAttrs(link, linkInfo)
+	case *Iptun:
+		addIptunAttrs(link, linkInfo)
+	case *Gretun:
+		addGretunAttrs(link, linkInfo)
+	case *Vti:
+		addVtiAttrs(link, linkInfo)
+	case *Vrf:
+		addVrfAttrs(link, linkInfo)
+	case *Bridge:
+		addBridgeAttrs(link, linkInfo)
+	case *GTP:
+		addGTPAttrs(link, linkInfo)
+	}
+
+	req.AddData(linkInfo)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	if err != nil {
+		return err
+	}
+
+	h.ensureIndex(base)
+
+	// can't set master during create, so set it afterwards
+	if base.MasterIndex != 0 {
+		// TODO: verify MasterIndex is actually a bridge?
+		return h.LinkSetMasterByIndex(link, base.MasterIndex)
+	}
+	return nil
+}
+
+// LinkDel deletes link device. Either Index or Name must be set in
+// the link object for it to be deleted. The other values are ignored.
+// Equivalent to: `ip link del $link`
+func LinkDel(link Link) error {
+	return pkgHandle.LinkDel(link)
+}
+
+// LinkDel deletes link device. Either Index or Name must be set in
+// the link object for it to be deleted. The other values are ignored.
+// Equivalent to: `ip link del $link`
+func (h *Handle) LinkDel(link Link) error {
+	base := link.Attrs()
+
+	h.ensureIndex(base)
+
+	req := h.newNetlinkRequest(syscall.RTM_DELLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func (h *Handle) linkByNameDump(name string) (Link, error) {
+	links, err := h.LinkList()
+	if err != nil {
+		return nil, err
+	}
+
+	for _, link := range links {
+		if link.Attrs().Name == name {
+			return link, nil
+		}
+	}
+	return nil, LinkNotFoundError{fmt.Errorf("Link %s not found", name)}
+}
+
+func (h *Handle) linkByAliasDump(alias string) (Link, error) {
+	links, err := h.LinkList()
+	if err != nil {
+		return nil, err
+	}
+
+	for _, link := range links {
+		if link.Attrs().Alias == alias {
+			return link, nil
+		}
+	}
+	return nil, LinkNotFoundError{fmt.Errorf("Link alias %s not found", alias)}
+}
+
+// LinkByName finds a link by name and returns a pointer to the object.
+func LinkByName(name string) (Link, error) {
+	return pkgHandle.LinkByName(name)
+}
+
+// LinkByName finds a link by name and returns a pointer to the object.
+func (h *Handle) LinkByName(name string) (Link, error) {
+	if h.lookupByDump {
+		return h.linkByNameDump(name)
+	}
+
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	req.AddData(msg)
+
+	nameData := nl.NewRtAttr(syscall.IFLA_IFNAME, nl.ZeroTerminated(name))
+	req.AddData(nameData)
+
+	link, err := execGetLink(req)
+	if err == syscall.EINVAL {
+		// older kernels don't support looking up via IFLA_IFNAME
+		// so fall back to dumping all links
+		h.lookupByDump = true
+		return h.linkByNameDump(name)
+	}
+
+	return link, err
+}
+
+// LinkByAlias finds a link by its alias and returns a pointer to the object.
+// If there are multiple links with the alias it returns the first one
+func LinkByAlias(alias string) (Link, error) {
+	return pkgHandle.LinkByAlias(alias)
+}
+
+// LinkByAlias finds a link by its alias and returns a pointer to the object.
+// If there are multiple links with the alias it returns the first one
+func (h *Handle) LinkByAlias(alias string) (Link, error) {
+	if h.lookupByDump {
+		return h.linkByAliasDump(alias)
+	}
+
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	req.AddData(msg)
+
+	nameData := nl.NewRtAttr(syscall.IFLA_IFALIAS, nl.ZeroTerminated(alias))
+	req.AddData(nameData)
+
+	link, err := execGetLink(req)
+	if err == syscall.EINVAL {
+		// older kernels don't support looking up via IFLA_IFALIAS
+		// so fall back to dumping all links
+		h.lookupByDump = true
+		return h.linkByAliasDump(alias)
+	}
+
+	return link, err
+}
+
+// LinkByIndex finds a link by index and returns a pointer to the object.
+func LinkByIndex(index int) (Link, error) {
+	return pkgHandle.LinkByIndex(index)
+}
+
+// LinkByIndex finds a link by index and returns a pointer to the object.
+func (h *Handle) LinkByIndex(index int) (Link, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(index)
+	req.AddData(msg)
+
+	return execGetLink(req)
+}
+
+func execGetLink(req *nl.NetlinkRequest) (Link, error) {
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	if err != nil {
+		if errno, ok := err.(syscall.Errno); ok {
+			if errno == syscall.ENODEV {
+				return nil, LinkNotFoundError{fmt.Errorf("Link not found")}
+			}
+		}
+		return nil, err
+	}
+
+	switch {
+	case len(msgs) == 0:
+		return nil, LinkNotFoundError{fmt.Errorf("Link not found")}
+
+	case len(msgs) == 1:
+		return LinkDeserialize(nil, msgs[0])
+
+	default:
+		return nil, fmt.Errorf("More than one link found")
+	}
+}
+
+// linkDeserialize deserializes a raw message received from netlink into
+// a link object.
+func LinkDeserialize(hdr *syscall.NlMsghdr, m []byte) (Link, error) {
+	msg := nl.DeserializeIfInfomsg(m)
+
+	attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+	if err != nil {
+		return nil, err
+	}
+
+	base := LinkAttrs{Index: int(msg.Index), RawFlags: msg.Flags, Flags: linkFlags(msg.Flags), EncapType: msg.EncapType()}
+	if msg.Flags&syscall.IFF_PROMISC != 0 {
+		base.Promisc = 1
+	}
+	var (
+		link     Link
+		stats32  []byte
+		stats64  []byte
+		linkType string
+	)
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case syscall.IFLA_LINKINFO:
+			infos, err := nl.ParseRouteAttr(attr.Value)
+			if err != nil {
+				return nil, err
+			}
+			for _, info := range infos {
+				switch info.Attr.Type {
+				case nl.IFLA_INFO_KIND:
+					linkType = string(info.Value[:len(info.Value)-1])
+					switch linkType {
+					case "dummy":
+						link = &Dummy{}
+					case "ifb":
+						link = &Ifb{}
+					case "bridge":
+						link = &Bridge{}
+					case "vlan":
+						link = &Vlan{}
+					case "veth":
+						link = &Veth{}
+					case "vxlan":
+						link = &Vxlan{}
+					case "bond":
+						link = &Bond{}
+					case "ipvlan":
+						link = &IPVlan{}
+					case "macvlan":
+						link = &Macvlan{}
+					case "macvtap":
+						link = &Macvtap{}
+					case "gretap":
+						link = &Gretap{}
+					case "ipip":
+						link = &Iptun{}
+					case "gre":
+						link = &Gretun{}
+					case "vti":
+						link = &Vti{}
+					case "vrf":
+						link = &Vrf{}
+					case "gtp":
+						link = &GTP{}
+					default:
+						link = &GenericLink{LinkType: linkType}
+					}
+				case nl.IFLA_INFO_DATA:
+					data, err := nl.ParseRouteAttr(info.Value)
+					if err != nil {
+						return nil, err
+					}
+					switch linkType {
+					case "vlan":
+						parseVlanData(link, data)
+					case "vxlan":
+						parseVxlanData(link, data)
+					case "bond":
+						parseBondData(link, data)
+					case "ipvlan":
+						parseIPVlanData(link, data)
+					case "macvlan":
+						parseMacvlanData(link, data)
+					case "macvtap":
+						parseMacvtapData(link, data)
+					case "gretap":
+						parseGretapData(link, data)
+					case "ipip":
+						parseIptunData(link, data)
+					case "gre":
+						parseGretunData(link, data)
+					case "vti":
+						parseVtiData(link, data)
+					case "vrf":
+						parseVrfData(link, data)
+					case "bridge":
+						parseBridgeData(link, data)
+					case "gtp":
+						parseGTPData(link, data)
+					}
+				}
+			}
+		case syscall.IFLA_ADDRESS:
+			var nonzero bool
+			for _, b := range attr.Value {
+				if b != 0 {
+					nonzero = true
+				}
+			}
+			if nonzero {
+				base.HardwareAddr = attr.Value[:]
+			}
+		case syscall.IFLA_IFNAME:
+			base.Name = string(attr.Value[:len(attr.Value)-1])
+		case syscall.IFLA_MTU:
+			base.MTU = int(native.Uint32(attr.Value[0:4]))
+		case syscall.IFLA_LINK:
+			base.ParentIndex = int(native.Uint32(attr.Value[0:4]))
+		case syscall.IFLA_MASTER:
+			base.MasterIndex = int(native.Uint32(attr.Value[0:4]))
+		case syscall.IFLA_TXQLEN:
+			base.TxQLen = int(native.Uint32(attr.Value[0:4]))
+		case syscall.IFLA_IFALIAS:
+			base.Alias = string(attr.Value[:len(attr.Value)-1])
+		case syscall.IFLA_STATS:
+			stats32 = attr.Value[:]
+		case IFLA_STATS64:
+			stats64 = attr.Value[:]
+		case nl.IFLA_XDP:
+			xdp, err := parseLinkXdp(attr.Value[:])
+			if err != nil {
+				return nil, err
+			}
+			base.Xdp = xdp
+		case syscall.IFLA_PROTINFO | syscall.NLA_F_NESTED:
+			if hdr != nil && hdr.Type == syscall.RTM_NEWLINK &&
+				msg.Family == syscall.AF_BRIDGE {
+				attrs, err := nl.ParseRouteAttr(attr.Value[:])
+				if err != nil {
+					return nil, err
+				}
+				base.Protinfo = parseProtinfo(attrs)
+			}
+		case syscall.IFLA_OPERSTATE:
+			base.OperState = LinkOperState(uint8(attr.Value[0]))
+		case nl.IFLA_LINK_NETNSID:
+			base.NetNsID = int(native.Uint32(attr.Value[0:4]))
+		}
+	}
+
+	if stats64 != nil {
+		base.Statistics = parseLinkStats64(stats64)
+	} else if stats32 != nil {
+		base.Statistics = parseLinkStats32(stats32)
+	}
+
+	// Links that don't have IFLA_INFO_KIND are hardware devices
+	if link == nil {
+		link = &Device{}
+	}
+	*link.Attrs() = base
+
+	return link, nil
+}
+
+// LinkList gets a list of link devices.
+// Equivalent to: `ip link show`
+func LinkList() ([]Link, error) {
+	return pkgHandle.LinkList()
+}
+
+// LinkList gets a list of link devices.
+// Equivalent to: `ip link show`
+func (h *Handle) LinkList() ([]Link, error) {
+	// NOTE(vish): This duplicates functionality in net/iface_linux.go, but we need
+	//             to get the message ourselves to parse link type.
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_DUMP)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWLINK)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Link
+	for _, m := range msgs {
+		link, err := LinkDeserialize(nil, m)
+		if err != nil {
+			return nil, err
+		}
+		res = append(res, link)
+	}
+
+	return res, nil
+}
+
+// LinkUpdate is used to pass information back from LinkSubscribe()
+type LinkUpdate struct {
+	nl.IfInfomsg
+	Header syscall.NlMsghdr
+	Link
+}
+
+// LinkSubscribe takes a chan down which notifications will be sent
+// when links change.  Close the 'done' chan to stop subscription.
+func LinkSubscribe(ch chan<- LinkUpdate, done <-chan struct{}) error {
+	return linkSubscribeAt(netns.None(), netns.None(), ch, done, nil)
+}
+
+// LinkSubscribeAt works like LinkSubscribe plus it allows the caller
+// to choose the network namespace in which to subscribe (ns).
+func LinkSubscribeAt(ns netns.NsHandle, ch chan<- LinkUpdate, done <-chan struct{}) error {
+	return linkSubscribeAt(ns, netns.None(), ch, done, nil)
+}
+
+// LinkSubscribeOptions contains a set of options to use with
+// LinkSubscribeWithOptions.
+type LinkSubscribeOptions struct {
+	Namespace     *netns.NsHandle
+	ErrorCallback func(error)
+}
+
+// LinkSubscribeWithOptions work like LinkSubscribe but enable to
+// provide additional options to modify the behavior. Currently, the
+// namespace can be provided as well as an error callback.
+func LinkSubscribeWithOptions(ch chan<- LinkUpdate, done <-chan struct{}, options LinkSubscribeOptions) error {
+	if options.Namespace == nil {
+		none := netns.None()
+		options.Namespace = &none
+	}
+	return linkSubscribeAt(*options.Namespace, netns.None(), ch, done, options.ErrorCallback)
+}
+
+func linkSubscribeAt(newNs, curNs netns.NsHandle, ch chan<- LinkUpdate, done <-chan struct{}, cberr func(error)) error {
+	s, err := nl.SubscribeAt(newNs, curNs, syscall.NETLINK_ROUTE, syscall.RTNLGRP_LINK)
+	if err != nil {
+		return err
+	}
+	if done != nil {
+		go func() {
+			<-done
+			s.Close()
+		}()
+	}
+	go func() {
+		defer close(ch)
+		for {
+			msgs, err := s.Receive()
+			if err != nil {
+				if cberr != nil {
+					cberr(err)
+				}
+				return
+			}
+			for _, m := range msgs {
+				ifmsg := nl.DeserializeIfInfomsg(m.Data)
+				link, err := LinkDeserialize(&m.Header, m.Data)
+				if err != nil {
+					if cberr != nil {
+						cberr(err)
+					}
+					return
+				}
+				ch <- LinkUpdate{IfInfomsg: *ifmsg, Header: m.Header, Link: link}
+			}
+		}
+	}()
+
+	return nil
+}
+
+func LinkSetHairpin(link Link, mode bool) error {
+	return pkgHandle.LinkSetHairpin(link, mode)
+}
+
+func (h *Handle) LinkSetHairpin(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_MODE)
+}
+
+func LinkSetGuard(link Link, mode bool) error {
+	return pkgHandle.LinkSetGuard(link, mode)
+}
+
+func (h *Handle) LinkSetGuard(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_GUARD)
+}
+
+func LinkSetFastLeave(link Link, mode bool) error {
+	return pkgHandle.LinkSetFastLeave(link, mode)
+}
+
+func (h *Handle) LinkSetFastLeave(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_FAST_LEAVE)
+}
+
+func LinkSetLearning(link Link, mode bool) error {
+	return pkgHandle.LinkSetLearning(link, mode)
+}
+
+func (h *Handle) LinkSetLearning(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_LEARNING)
+}
+
+func LinkSetRootBlock(link Link, mode bool) error {
+	return pkgHandle.LinkSetRootBlock(link, mode)
+}
+
+func (h *Handle) LinkSetRootBlock(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_PROTECT)
+}
+
+func LinkSetFlood(link Link, mode bool) error {
+	return pkgHandle.LinkSetFlood(link, mode)
+}
+
+func (h *Handle) LinkSetFlood(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_UNICAST_FLOOD)
+}
+
+func LinkSetBrProxyArp(link Link, mode bool) error {
+	return pkgHandle.LinkSetBrProxyArp(link, mode)
+}
+
+func (h *Handle) LinkSetBrProxyArp(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_PROXYARP)
+}
+
+func LinkSetBrProxyArpWiFi(link Link, mode bool) error {
+	return pkgHandle.LinkSetBrProxyArpWiFi(link, mode)
+}
+
+func (h *Handle) LinkSetBrProxyArpWiFi(link Link, mode bool) error {
+	return h.setProtinfoAttr(link, mode, nl.IFLA_BRPORT_PROXYARP_WIFI)
+}
+
+func (h *Handle) setProtinfoAttr(link Link, mode bool, attr int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_BRIDGE)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	br := nl.NewRtAttr(syscall.IFLA_PROTINFO|syscall.NLA_F_NESTED, nil)
+	nl.NewRtAttrChild(br, attr, boolToByte(mode))
+	req.AddData(br)
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+// LinkSetTxQLen sets the transaction queue length for the link.
+// Equivalent to: `ip link set $link txqlen $qlen`
+func LinkSetTxQLen(link Link, qlen int) error {
+	return pkgHandle.LinkSetTxQLen(link, qlen)
+}
+
+// LinkSetTxQLen sets the transaction queue length for the link.
+// Equivalent to: `ip link set $link txqlen $qlen`
+func (h *Handle) LinkSetTxQLen(link Link, qlen int) error {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	req := h.newNetlinkRequest(syscall.RTM_SETLINK, syscall.NLM_F_ACK)
+
+	msg := nl.NewIfInfomsg(syscall.AF_UNSPEC)
+	msg.Index = int32(base.Index)
+	req.AddData(msg)
+
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(qlen))
+
+	data := nl.NewRtAttr(syscall.IFLA_TXQLEN, b)
+	req.AddData(data)
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func parseVlanData(link Link, data []syscall.NetlinkRouteAttr) {
+	vlan := link.(*Vlan)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_VLAN_ID:
+			vlan.VlanId = int(native.Uint16(datum.Value[0:2]))
+		}
+	}
+}
+
+func parseVxlanData(link Link, data []syscall.NetlinkRouteAttr) {
+	vxlan := link.(*Vxlan)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_VXLAN_ID:
+			vxlan.VxlanId = int(native.Uint32(datum.Value[0:4]))
+		case nl.IFLA_VXLAN_LINK:
+			vxlan.VtepDevIndex = int(native.Uint32(datum.Value[0:4]))
+		case nl.IFLA_VXLAN_LOCAL:
+			vxlan.SrcAddr = net.IP(datum.Value[0:4])
+		case nl.IFLA_VXLAN_LOCAL6:
+			vxlan.SrcAddr = net.IP(datum.Value[0:16])
+		case nl.IFLA_VXLAN_GROUP:
+			vxlan.Group = net.IP(datum.Value[0:4])
+		case nl.IFLA_VXLAN_GROUP6:
+			vxlan.Group = net.IP(datum.Value[0:16])
+		case nl.IFLA_VXLAN_TTL:
+			vxlan.TTL = int(datum.Value[0])
+		case nl.IFLA_VXLAN_TOS:
+			vxlan.TOS = int(datum.Value[0])
+		case nl.IFLA_VXLAN_LEARNING:
+			vxlan.Learning = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_PROXY:
+			vxlan.Proxy = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_RSC:
+			vxlan.RSC = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_L2MISS:
+			vxlan.L2miss = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_L3MISS:
+			vxlan.L3miss = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_UDP_CSUM:
+			vxlan.UDPCSum = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_GBP:
+			vxlan.GBP = true
+		case nl.IFLA_VXLAN_FLOWBASED:
+			vxlan.FlowBased = int8(datum.Value[0]) != 0
+		case nl.IFLA_VXLAN_AGEING:
+			vxlan.Age = int(native.Uint32(datum.Value[0:4]))
+			vxlan.NoAge = vxlan.Age == 0
+		case nl.IFLA_VXLAN_LIMIT:
+			vxlan.Limit = int(native.Uint32(datum.Value[0:4]))
+		case nl.IFLA_VXLAN_PORT:
+			vxlan.Port = int(ntohs(datum.Value[0:2]))
+		case nl.IFLA_VXLAN_PORT_RANGE:
+			buf := bytes.NewBuffer(datum.Value[0:4])
+			var pr vxlanPortRange
+			if binary.Read(buf, binary.BigEndian, &pr) != nil {
+				vxlan.PortLow = int(pr.Lo)
+				vxlan.PortHigh = int(pr.Hi)
+			}
+		}
+	}
+}
+
+func parseBondData(link Link, data []syscall.NetlinkRouteAttr) {
+	bond := link.(*Bond)
+	for i := range data {
+		switch data[i].Attr.Type {
+		case nl.IFLA_BOND_MODE:
+			bond.Mode = BondMode(data[i].Value[0])
+		case nl.IFLA_BOND_ACTIVE_SLAVE:
+			bond.ActiveSlave = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_MIIMON:
+			bond.Miimon = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_UPDELAY:
+			bond.UpDelay = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_DOWNDELAY:
+			bond.DownDelay = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_USE_CARRIER:
+			bond.UseCarrier = int(data[i].Value[0])
+		case nl.IFLA_BOND_ARP_INTERVAL:
+			bond.ArpInterval = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_ARP_IP_TARGET:
+			// TODO: implement
+		case nl.IFLA_BOND_ARP_VALIDATE:
+			bond.ArpValidate = BondArpValidate(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_ARP_ALL_TARGETS:
+			bond.ArpAllTargets = BondArpAllTargets(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_PRIMARY:
+			bond.Primary = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_PRIMARY_RESELECT:
+			bond.PrimaryReselect = BondPrimaryReselect(data[i].Value[0])
+		case nl.IFLA_BOND_FAIL_OVER_MAC:
+			bond.FailOverMac = BondFailOverMac(data[i].Value[0])
+		case nl.IFLA_BOND_XMIT_HASH_POLICY:
+			bond.XmitHashPolicy = BondXmitHashPolicy(data[i].Value[0])
+		case nl.IFLA_BOND_RESEND_IGMP:
+			bond.ResendIgmp = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_NUM_PEER_NOTIF:
+			bond.NumPeerNotif = int(data[i].Value[0])
+		case nl.IFLA_BOND_ALL_SLAVES_ACTIVE:
+			bond.AllSlavesActive = int(data[i].Value[0])
+		case nl.IFLA_BOND_MIN_LINKS:
+			bond.MinLinks = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_LP_INTERVAL:
+			bond.LpInterval = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_PACKETS_PER_SLAVE:
+			bond.PackersPerSlave = int(native.Uint32(data[i].Value[0:4]))
+		case nl.IFLA_BOND_AD_LACP_RATE:
+			bond.LacpRate = BondLacpRate(data[i].Value[0])
+		case nl.IFLA_BOND_AD_SELECT:
+			bond.AdSelect = BondAdSelect(data[i].Value[0])
+		case nl.IFLA_BOND_AD_INFO:
+			// TODO: implement
+		case nl.IFLA_BOND_AD_ACTOR_SYS_PRIO:
+			bond.AdActorSysPrio = int(native.Uint16(data[i].Value[0:2]))
+		case nl.IFLA_BOND_AD_USER_PORT_KEY:
+			bond.AdUserPortKey = int(native.Uint16(data[i].Value[0:2]))
+		case nl.IFLA_BOND_AD_ACTOR_SYSTEM:
+			bond.AdActorSystem = net.HardwareAddr(data[i].Value[0:6])
+		case nl.IFLA_BOND_TLB_DYNAMIC_LB:
+			bond.TlbDynamicLb = int(data[i].Value[0])
+		}
+	}
+}
+
+func parseIPVlanData(link Link, data []syscall.NetlinkRouteAttr) {
+	ipv := link.(*IPVlan)
+	for _, datum := range data {
+		if datum.Attr.Type == nl.IFLA_IPVLAN_MODE {
+			ipv.Mode = IPVlanMode(native.Uint32(datum.Value[0:4]))
+			return
+		}
+	}
+}
+
+func parseMacvtapData(link Link, data []syscall.NetlinkRouteAttr) {
+	macv := link.(*Macvtap)
+	parseMacvlanData(&macv.Macvlan, data)
+}
+
+func parseMacvlanData(link Link, data []syscall.NetlinkRouteAttr) {
+	macv := link.(*Macvlan)
+	for _, datum := range data {
+		if datum.Attr.Type == nl.IFLA_MACVLAN_MODE {
+			switch native.Uint32(datum.Value[0:4]) {
+			case nl.MACVLAN_MODE_PRIVATE:
+				macv.Mode = MACVLAN_MODE_PRIVATE
+			case nl.MACVLAN_MODE_VEPA:
+				macv.Mode = MACVLAN_MODE_VEPA
+			case nl.MACVLAN_MODE_BRIDGE:
+				macv.Mode = MACVLAN_MODE_BRIDGE
+			case nl.MACVLAN_MODE_PASSTHRU:
+				macv.Mode = MACVLAN_MODE_PASSTHRU
+			case nl.MACVLAN_MODE_SOURCE:
+				macv.Mode = MACVLAN_MODE_SOURCE
+			}
+			return
+		}
+	}
+}
+
+// copied from pkg/net_linux.go
+func linkFlags(rawFlags uint32) net.Flags {
+	var f net.Flags
+	if rawFlags&syscall.IFF_UP != 0 {
+		f |= net.FlagUp
+	}
+	if rawFlags&syscall.IFF_BROADCAST != 0 {
+		f |= net.FlagBroadcast
+	}
+	if rawFlags&syscall.IFF_LOOPBACK != 0 {
+		f |= net.FlagLoopback
+	}
+	if rawFlags&syscall.IFF_POINTOPOINT != 0 {
+		f |= net.FlagPointToPoint
+	}
+	if rawFlags&syscall.IFF_MULTICAST != 0 {
+		f |= net.FlagMulticast
+	}
+	return f
+}
+
+func addGretapAttrs(gretap *Gretap, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+
+	if gretap.FlowBased {
+		// In flow based mode, no other attributes need to be configured
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_COLLECT_METADATA, boolAttr(gretap.FlowBased))
+		return
+	}
+
+	ip := gretap.Local.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_LOCAL, []byte(ip))
+	}
+	ip = gretap.Remote.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_REMOTE, []byte(ip))
+	}
+
+	if gretap.IKey != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_IKEY, htonl(gretap.IKey))
+		gretap.IFlags |= uint16(nl.GRE_KEY)
+	}
+
+	if gretap.OKey != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_OKEY, htonl(gretap.OKey))
+		gretap.OFlags |= uint16(nl.GRE_KEY)
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_IFLAGS, htons(gretap.IFlags))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_OFLAGS, htons(gretap.OFlags))
+
+	if gretap.Link != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_LINK, nl.Uint32Attr(gretap.Link))
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_PMTUDISC, nl.Uint8Attr(gretap.PMtuDisc))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_TTL, nl.Uint8Attr(gretap.Ttl))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_TOS, nl.Uint8Attr(gretap.Tos))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_ENCAP_TYPE, nl.Uint16Attr(gretap.EncapType))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_ENCAP_FLAGS, nl.Uint16Attr(gretap.EncapFlags))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_ENCAP_SPORT, htons(gretap.EncapSport))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_ENCAP_DPORT, htons(gretap.EncapDport))
+}
+
+func parseGretapData(link Link, data []syscall.NetlinkRouteAttr) {
+	gre := link.(*Gretap)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_GRE_OKEY:
+			gre.IKey = ntohl(datum.Value[0:4])
+		case nl.IFLA_GRE_IKEY:
+			gre.OKey = ntohl(datum.Value[0:4])
+		case nl.IFLA_GRE_LOCAL:
+			gre.Local = net.IP(datum.Value[0:4])
+		case nl.IFLA_GRE_REMOTE:
+			gre.Remote = net.IP(datum.Value[0:4])
+		case nl.IFLA_GRE_ENCAP_SPORT:
+			gre.EncapSport = ntohs(datum.Value[0:2])
+		case nl.IFLA_GRE_ENCAP_DPORT:
+			gre.EncapDport = ntohs(datum.Value[0:2])
+		case nl.IFLA_GRE_IFLAGS:
+			gre.IFlags = ntohs(datum.Value[0:2])
+		case nl.IFLA_GRE_OFLAGS:
+			gre.OFlags = ntohs(datum.Value[0:2])
+
+		case nl.IFLA_GRE_TTL:
+			gre.Ttl = uint8(datum.Value[0])
+		case nl.IFLA_GRE_TOS:
+			gre.Tos = uint8(datum.Value[0])
+		case nl.IFLA_GRE_PMTUDISC:
+			gre.PMtuDisc = uint8(datum.Value[0])
+		case nl.IFLA_GRE_ENCAP_TYPE:
+			gre.EncapType = native.Uint16(datum.Value[0:2])
+		case nl.IFLA_GRE_ENCAP_FLAGS:
+			gre.EncapFlags = native.Uint16(datum.Value[0:2])
+		case nl.IFLA_GRE_COLLECT_METADATA:
+			gre.FlowBased = int8(datum.Value[0]) != 0
+		}
+	}
+}
+
+func addGretunAttrs(gre *Gretun, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+
+	ip := gre.Local.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_LOCAL, []byte(ip))
+	}
+	ip = gre.Remote.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_REMOTE, []byte(ip))
+	}
+
+	if gre.IKey != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_IKEY, htonl(gre.IKey))
+		gre.IFlags |= uint16(nl.GRE_KEY)
+	}
+
+	if gre.OKey != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_OKEY, htonl(gre.OKey))
+		gre.OFlags |= uint16(nl.GRE_KEY)
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_IFLAGS, htons(gre.IFlags))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_OFLAGS, htons(gre.OFlags))
+
+	if gre.Link != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_GRE_LINK, nl.Uint32Attr(gre.Link))
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_PMTUDISC, nl.Uint8Attr(gre.PMtuDisc))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_TTL, nl.Uint8Attr(gre.Ttl))
+	nl.NewRtAttrChild(data, nl.IFLA_GRE_TOS, nl.Uint8Attr(gre.Tos))
+}
+
+func parseGretunData(link Link, data []syscall.NetlinkRouteAttr) {
+	gre := link.(*Gretun)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_GRE_OKEY:
+			gre.IKey = ntohl(datum.Value[0:4])
+		case nl.IFLA_GRE_IKEY:
+			gre.OKey = ntohl(datum.Value[0:4])
+		case nl.IFLA_GRE_LOCAL:
+			gre.Local = net.IP(datum.Value[0:4])
+		case nl.IFLA_GRE_REMOTE:
+			gre.Remote = net.IP(datum.Value[0:4])
+		case nl.IFLA_GRE_IFLAGS:
+			gre.IFlags = ntohs(datum.Value[0:2])
+		case nl.IFLA_GRE_OFLAGS:
+			gre.OFlags = ntohs(datum.Value[0:2])
+
+		case nl.IFLA_GRE_TTL:
+			gre.Ttl = uint8(datum.Value[0])
+		case nl.IFLA_GRE_TOS:
+			gre.Tos = uint8(datum.Value[0])
+		case nl.IFLA_GRE_PMTUDISC:
+			gre.PMtuDisc = uint8(datum.Value[0])
+		}
+	}
+}
+
+func parseLinkStats32(data []byte) *LinkStatistics {
+	return (*LinkStatistics)((*LinkStatistics32)(unsafe.Pointer(&data[0:SizeofLinkStats32][0])).to64())
+}
+
+func parseLinkStats64(data []byte) *LinkStatistics {
+	return (*LinkStatistics)((*LinkStatistics64)(unsafe.Pointer(&data[0:SizeofLinkStats64][0])))
+}
+
+func addXdpAttrs(xdp *LinkXdp, req *nl.NetlinkRequest) {
+	attrs := nl.NewRtAttr(nl.IFLA_XDP|syscall.NLA_F_NESTED, nil)
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(xdp.Fd))
+	nl.NewRtAttrChild(attrs, nl.IFLA_XDP_FD, b)
+	if xdp.Flags != 0 {
+		native.PutUint32(b, xdp.Flags)
+		nl.NewRtAttrChild(attrs, nl.IFLA_XDP_FLAGS, b)
+	}
+	req.AddData(attrs)
+}
+
+func parseLinkXdp(data []byte) (*LinkXdp, error) {
+	attrs, err := nl.ParseRouteAttr(data)
+	if err != nil {
+		return nil, err
+	}
+	xdp := &LinkXdp{}
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case nl.IFLA_XDP_FD:
+			xdp.Fd = int(native.Uint32(attr.Value[0:4]))
+		case nl.IFLA_XDP_ATTACHED:
+			xdp.Attached = attr.Value[0] != 0
+		case nl.IFLA_XDP_FLAGS:
+			xdp.Flags = native.Uint32(attr.Value[0:4])
+		case nl.IFLA_XDP_PROG_ID:
+			xdp.ProgId = native.Uint32(attr.Value[0:4])
+		}
+	}
+	return xdp, nil
+}
+
+func addIptunAttrs(iptun *Iptun, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+
+	ip := iptun.Local.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_IPTUN_LOCAL, []byte(ip))
+	}
+
+	ip = iptun.Remote.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_IPTUN_REMOTE, []byte(ip))
+	}
+
+	if iptun.Link != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_IPTUN_LINK, nl.Uint32Attr(iptun.Link))
+	}
+	nl.NewRtAttrChild(data, nl.IFLA_IPTUN_PMTUDISC, nl.Uint8Attr(iptun.PMtuDisc))
+	nl.NewRtAttrChild(data, nl.IFLA_IPTUN_TTL, nl.Uint8Attr(iptun.Ttl))
+	nl.NewRtAttrChild(data, nl.IFLA_IPTUN_TOS, nl.Uint8Attr(iptun.Tos))
+}
+
+func parseIptunData(link Link, data []syscall.NetlinkRouteAttr) {
+	iptun := link.(*Iptun)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_IPTUN_LOCAL:
+			iptun.Local = net.IP(datum.Value[0:4])
+		case nl.IFLA_IPTUN_REMOTE:
+			iptun.Remote = net.IP(datum.Value[0:4])
+		case nl.IFLA_IPTUN_TTL:
+			iptun.Ttl = uint8(datum.Value[0])
+		case nl.IFLA_IPTUN_TOS:
+			iptun.Tos = uint8(datum.Value[0])
+		case nl.IFLA_IPTUN_PMTUDISC:
+			iptun.PMtuDisc = uint8(datum.Value[0])
+		}
+	}
+}
+
+func addVtiAttrs(vti *Vti, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+
+	ip := vti.Local.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_VTI_LOCAL, []byte(ip))
+	}
+
+	ip = vti.Remote.To4()
+	if ip != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_VTI_REMOTE, []byte(ip))
+	}
+
+	if vti.Link != 0 {
+		nl.NewRtAttrChild(data, nl.IFLA_VTI_LINK, nl.Uint32Attr(vti.Link))
+	}
+
+	nl.NewRtAttrChild(data, nl.IFLA_VTI_IKEY, htonl(vti.IKey))
+	nl.NewRtAttrChild(data, nl.IFLA_VTI_OKEY, htonl(vti.OKey))
+}
+
+func parseVtiData(link Link, data []syscall.NetlinkRouteAttr) {
+	vti := link.(*Vti)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_VTI_LOCAL:
+			vti.Local = net.IP(datum.Value[0:4])
+		case nl.IFLA_VTI_REMOTE:
+			vti.Remote = net.IP(datum.Value[0:4])
+		case nl.IFLA_VTI_IKEY:
+			vti.IKey = ntohl(datum.Value[0:4])
+		case nl.IFLA_VTI_OKEY:
+			vti.OKey = ntohl(datum.Value[0:4])
+		}
+	}
+}
+
+func addVrfAttrs(vrf *Vrf, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+	b := make([]byte, 4)
+	native.PutUint32(b, uint32(vrf.Table))
+	nl.NewRtAttrChild(data, nl.IFLA_VRF_TABLE, b)
+}
+
+func parseVrfData(link Link, data []syscall.NetlinkRouteAttr) {
+	vrf := link.(*Vrf)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_VRF_TABLE:
+			vrf.Table = native.Uint32(datum.Value[0:4])
+		}
+	}
+}
+
+func addBridgeAttrs(bridge *Bridge, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+	if bridge.MulticastSnooping != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_BR_MCAST_SNOOPING, boolToByte(*bridge.MulticastSnooping))
+	}
+	if bridge.HelloTime != nil {
+		nl.NewRtAttrChild(data, nl.IFLA_BR_HELLO_TIME, nl.Uint32Attr(*bridge.HelloTime))
+	}
+}
+
+func parseBridgeData(bridge Link, data []syscall.NetlinkRouteAttr) {
+	br := bridge.(*Bridge)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_BR_HELLO_TIME:
+			helloTime := native.Uint32(datum.Value[0:4])
+			br.HelloTime = &helloTime
+		case nl.IFLA_BR_MCAST_SNOOPING:
+			mcastSnooping := datum.Value[0] == 1
+			br.MulticastSnooping = &mcastSnooping
+		}
+	}
+}
+
+func addGTPAttrs(gtp *GTP, linkInfo *nl.RtAttr) {
+	data := nl.NewRtAttrChild(linkInfo, nl.IFLA_INFO_DATA, nil)
+	nl.NewRtAttrChild(data, nl.IFLA_GTP_FD0, nl.Uint32Attr(uint32(gtp.FD0)))
+	nl.NewRtAttrChild(data, nl.IFLA_GTP_FD1, nl.Uint32Attr(uint32(gtp.FD1)))
+	nl.NewRtAttrChild(data, nl.IFLA_GTP_PDP_HASHSIZE, nl.Uint32Attr(131072))
+	if gtp.Role != nl.GTP_ROLE_GGSN {
+		nl.NewRtAttrChild(data, nl.IFLA_GTP_ROLE, nl.Uint32Attr(uint32(gtp.Role)))
+	}
+}
+
+func parseGTPData(link Link, data []syscall.NetlinkRouteAttr) {
+	gtp := link.(*GTP)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.IFLA_GTP_FD0:
+			gtp.FD0 = int(native.Uint32(datum.Value))
+		case nl.IFLA_GTP_FD1:
+			gtp.FD1 = int(native.Uint32(datum.Value))
+		case nl.IFLA_GTP_PDP_HASHSIZE:
+			gtp.PDPHashsize = int(native.Uint32(datum.Value))
+		case nl.IFLA_GTP_ROLE:
+			gtp.Role = int(native.Uint32(datum.Value))
+		}
+	}
+}
diff --git a/vendor/github.com/vishvananda/netlink/link_tuntap_linux.go b/vendor/github.com/vishvananda/netlink/link_tuntap_linux.go
new file mode 100644
index 0000000000..310bd33d8d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/link_tuntap_linux.go
@@ -0,0 +1,14 @@
+package netlink
+
+// ideally golang.org/x/sys/unix would define IfReq but it only has
+// IFNAMSIZ, hence this minimalistic implementation
+const (
+	SizeOfIfReq = 40
+	IFNAMSIZ    = 16
+)
+
+type ifReq struct {
+	Name  [IFNAMSIZ]byte
+	Flags uint16
+	pad   [SizeOfIfReq - IFNAMSIZ - 2]byte
+}
diff --git a/vendor/github.com/vishvananda/netlink/neigh.go b/vendor/github.com/vishvananda/netlink/neigh.go
new file mode 100644
index 0000000000..6a6f71ce86
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/neigh.go
@@ -0,0 +1,23 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+)
+
+// Neigh represents a link layer neighbor from netlink.
+type Neigh struct {
+	LinkIndex    int
+	Family       int
+	State        int
+	Type         int
+	Flags        int
+	IP           net.IP
+	HardwareAddr net.HardwareAddr
+	LLIPAddr     net.IP //Used in the case of NHRP
+}
+
+// String returns $ip/$hwaddr $label
+func (neigh *Neigh) String() string {
+	return fmt.Sprintf("%s %s", neigh.IP, neigh.HardwareAddr)
+}
diff --git a/vendor/github.com/vishvananda/netlink/neigh_linux.go b/vendor/github.com/vishvananda/netlink/neigh_linux.go
new file mode 100644
index 0000000000..5edc8b4125
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/neigh_linux.go
@@ -0,0 +1,275 @@
+package netlink
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+const (
+	NDA_UNSPEC = iota
+	NDA_DST
+	NDA_LLADDR
+	NDA_CACHEINFO
+	NDA_PROBES
+	NDA_VLAN
+	NDA_PORT
+	NDA_VNI
+	NDA_IFINDEX
+	NDA_MAX = NDA_IFINDEX
+)
+
+// Neighbor Cache Entry States.
+const (
+	NUD_NONE       = 0x00
+	NUD_INCOMPLETE = 0x01
+	NUD_REACHABLE  = 0x02
+	NUD_STALE      = 0x04
+	NUD_DELAY      = 0x08
+	NUD_PROBE      = 0x10
+	NUD_FAILED     = 0x20
+	NUD_NOARP      = 0x40
+	NUD_PERMANENT  = 0x80
+)
+
+// Neighbor Flags
+const (
+	NTF_USE    = 0x01
+	NTF_SELF   = 0x02
+	NTF_MASTER = 0x04
+	NTF_PROXY  = 0x08
+	NTF_ROUTER = 0x80
+)
+
+type Ndmsg struct {
+	Family uint8
+	Index  uint32
+	State  uint16
+	Flags  uint8
+	Type   uint8
+}
+
+func deserializeNdmsg(b []byte) *Ndmsg {
+	var dummy Ndmsg
+	return (*Ndmsg)(unsafe.Pointer(&b[0:unsafe.Sizeof(dummy)][0]))
+}
+
+func (msg *Ndmsg) Serialize() []byte {
+	return (*(*[unsafe.Sizeof(*msg)]byte)(unsafe.Pointer(msg)))[:]
+}
+
+func (msg *Ndmsg) Len() int {
+	return int(unsafe.Sizeof(*msg))
+}
+
+// NeighAdd will add an IP to MAC mapping to the ARP table
+// Equivalent to: `ip neigh add ....`
+func NeighAdd(neigh *Neigh) error {
+	return pkgHandle.NeighAdd(neigh)
+}
+
+// NeighAdd will add an IP to MAC mapping to the ARP table
+// Equivalent to: `ip neigh add ....`
+func (h *Handle) NeighAdd(neigh *Neigh) error {
+	return h.neighAdd(neigh, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL)
+}
+
+// NeighSet will add or replace an IP to MAC mapping to the ARP table
+// Equivalent to: `ip neigh replace....`
+func NeighSet(neigh *Neigh) error {
+	return pkgHandle.NeighSet(neigh)
+}
+
+// NeighSet will add or replace an IP to MAC mapping to the ARP table
+// Equivalent to: `ip neigh replace....`
+func (h *Handle) NeighSet(neigh *Neigh) error {
+	return h.neighAdd(neigh, syscall.NLM_F_CREATE|syscall.NLM_F_REPLACE)
+}
+
+// NeighAppend will append an entry to FDB
+// Equivalent to: `bridge fdb append...`
+func NeighAppend(neigh *Neigh) error {
+	return pkgHandle.NeighAppend(neigh)
+}
+
+// NeighAppend will append an entry to FDB
+// Equivalent to: `bridge fdb append...`
+func (h *Handle) NeighAppend(neigh *Neigh) error {
+	return h.neighAdd(neigh, syscall.NLM_F_CREATE|syscall.NLM_F_APPEND)
+}
+
+// NeighAppend will append an entry to FDB
+// Equivalent to: `bridge fdb append...`
+func neighAdd(neigh *Neigh, mode int) error {
+	return pkgHandle.neighAdd(neigh, mode)
+}
+
+// NeighAppend will append an entry to FDB
+// Equivalent to: `bridge fdb append...`
+func (h *Handle) neighAdd(neigh *Neigh, mode int) error {
+	req := h.newNetlinkRequest(syscall.RTM_NEWNEIGH, mode|syscall.NLM_F_ACK)
+	return neighHandle(neigh, req)
+}
+
+// NeighDel will delete an IP address from a link device.
+// Equivalent to: `ip addr del $addr dev $link`
+func NeighDel(neigh *Neigh) error {
+	return pkgHandle.NeighDel(neigh)
+}
+
+// NeighDel will delete an IP address from a link device.
+// Equivalent to: `ip addr del $addr dev $link`
+func (h *Handle) NeighDel(neigh *Neigh) error {
+	req := h.newNetlinkRequest(syscall.RTM_DELNEIGH, syscall.NLM_F_ACK)
+	return neighHandle(neigh, req)
+}
+
+func neighHandle(neigh *Neigh, req *nl.NetlinkRequest) error {
+	var family int
+
+	if neigh.Family > 0 {
+		family = neigh.Family
+	} else {
+		family = nl.GetIPFamily(neigh.IP)
+	}
+
+	msg := Ndmsg{
+		Family: uint8(family),
+		Index:  uint32(neigh.LinkIndex),
+		State:  uint16(neigh.State),
+		Type:   uint8(neigh.Type),
+		Flags:  uint8(neigh.Flags),
+	}
+	req.AddData(&msg)
+
+	ipData := neigh.IP.To4()
+	if ipData == nil {
+		ipData = neigh.IP.To16()
+	}
+
+	dstData := nl.NewRtAttr(NDA_DST, ipData)
+	req.AddData(dstData)
+
+	if neigh.LLIPAddr != nil {
+		llIPData := nl.NewRtAttr(NDA_LLADDR, neigh.LLIPAddr.To4())
+		req.AddData(llIPData)
+	} else if neigh.Flags != NTF_PROXY || neigh.HardwareAddr != nil {
+		hwData := nl.NewRtAttr(NDA_LLADDR, []byte(neigh.HardwareAddr))
+		req.AddData(hwData)
+	}
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// NeighList gets a list of IP-MAC mappings in the system (ARP table).
+// Equivalent to: `ip neighbor show`.
+// The list can be filtered by link and ip family.
+func NeighList(linkIndex, family int) ([]Neigh, error) {
+	return pkgHandle.NeighList(linkIndex, family)
+}
+
+// NeighProxyList gets a list of neighbor proxies in the system.
+// Equivalent to: `ip neighbor show proxy`.
+// The list can be filtered by link and ip family.
+func NeighProxyList(linkIndex, family int) ([]Neigh, error) {
+	return pkgHandle.NeighProxyList(linkIndex, family)
+}
+
+// NeighList gets a list of IP-MAC mappings in the system (ARP table).
+// Equivalent to: `ip neighbor show`.
+// The list can be filtered by link and ip family.
+func (h *Handle) NeighList(linkIndex, family int) ([]Neigh, error) {
+	return h.neighList(linkIndex, family, 0)
+}
+
+// NeighProxyList gets a list of neighbor proxies in the system.
+// Equivalent to: `ip neighbor show proxy`.
+// The list can be filtered by link, ip family.
+func (h *Handle) NeighProxyList(linkIndex, family int) ([]Neigh, error) {
+	return h.neighList(linkIndex, family, NTF_PROXY)
+}
+
+func (h *Handle) neighList(linkIndex, family, flags int) ([]Neigh, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETNEIGH, syscall.NLM_F_DUMP)
+	msg := Ndmsg{
+		Family: uint8(family),
+		Index:  uint32(linkIndex),
+		Flags:  uint8(flags),
+	}
+	req.AddData(&msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWNEIGH)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Neigh
+	for _, m := range msgs {
+		ndm := deserializeNdmsg(m)
+		if linkIndex != 0 && int(ndm.Index) != linkIndex {
+			// Ignore messages from other interfaces
+			continue
+		}
+
+		neigh, err := NeighDeserialize(m)
+		if err != nil {
+			continue
+		}
+
+		res = append(res, *neigh)
+	}
+
+	return res, nil
+}
+
+func NeighDeserialize(m []byte) (*Neigh, error) {
+	msg := deserializeNdmsg(m)
+
+	neigh := Neigh{
+		LinkIndex: int(msg.Index),
+		Family:    int(msg.Family),
+		State:     int(msg.State),
+		Type:      int(msg.Type),
+		Flags:     int(msg.Flags),
+	}
+
+	attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+	if err != nil {
+		return nil, err
+	}
+
+	// This should be cached for perfomance
+	// once per table dump
+	link, err := LinkByIndex(neigh.LinkIndex)
+	if err != nil {
+		return nil, err
+	}
+	encapType := link.Attrs().EncapType
+
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case NDA_DST:
+			neigh.IP = net.IP(attr.Value)
+		case NDA_LLADDR:
+			// BUG: Is this a bug in the netlink library?
+			// #define RTA_LENGTH(len) (RTA_ALIGN(sizeof(struct rtattr)) + (len))
+			// #define RTA_PAYLOAD(rta) ((int)((rta)->rta_len) - RTA_LENGTH(0))
+			attrLen := attr.Attr.Len - syscall.SizeofRtAttr
+			if attrLen == 4 && (encapType == "ipip" ||
+				encapType == "sit" ||
+				encapType == "gre") {
+				neigh.LLIPAddr = net.IP(attr.Value)
+			} else if attrLen == 16 &&
+				encapType == "tunnel6" {
+				neigh.IP = net.IP(attr.Value)
+			} else {
+				neigh.HardwareAddr = net.HardwareAddr(attr.Value)
+			}
+		}
+	}
+
+	return &neigh, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/netlink.go b/vendor/github.com/vishvananda/netlink/netlink.go
new file mode 100644
index 0000000000..fb159526e3
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/netlink.go
@@ -0,0 +1,39 @@
+// Package netlink provides a simple library for netlink. Netlink is
+// the interface a user-space program in linux uses to communicate with
+// the kernel. It can be used to add and remove interfaces, set up ip
+// addresses and routes, and confiugre ipsec. Netlink communication
+// requires elevated privileges, so in most cases this code needs to
+// be run as root. The low level primitives for netlink are contained
+// in the nl subpackage. This package attempts to provide a high-level
+// interface that is loosly modeled on the iproute2 cli.
+package netlink
+
+import (
+	"errors"
+	"net"
+)
+
+var (
+	// ErrNotImplemented is returned when a requested feature is not implemented.
+	ErrNotImplemented = errors.New("not implemented")
+)
+
+// ParseIPNet parses a string in ip/net format and returns a net.IPNet.
+// This is valuable because addresses in netlink are often IPNets and
+// ParseCIDR returns an IPNet with the IP part set to the base IP of the
+// range.
+func ParseIPNet(s string) (*net.IPNet, error) {
+	ip, ipNet, err := net.ParseCIDR(s)
+	if err != nil {
+		return nil, err
+	}
+	return &net.IPNet{IP: ip, Mask: ipNet.Mask}, nil
+}
+
+// NewIPNet generates an IPNet from an ip address using a netmask of 32 or 128.
+func NewIPNet(ip net.IP) *net.IPNet {
+	if ip.To4() != nil {
+		return &net.IPNet{IP: ip, Mask: net.CIDRMask(32, 32)}
+	}
+	return &net.IPNet{IP: ip, Mask: net.CIDRMask(128, 128)}
+}
diff --git a/vendor/github.com/vishvananda/netlink/netlink_linux.go b/vendor/github.com/vishvananda/netlink/netlink_linux.go
new file mode 100644
index 0000000000..a20d293d87
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/netlink_linux.go
@@ -0,0 +1,11 @@
+package netlink
+
+import "github.com/vishvananda/netlink/nl"
+
+// Family type definitions
+const (
+	FAMILY_ALL  = nl.FAMILY_ALL
+	FAMILY_V4   = nl.FAMILY_V4
+	FAMILY_V6   = nl.FAMILY_V6
+	FAMILY_MPLS = nl.FAMILY_MPLS
+)
diff --git a/vendor/github.com/vishvananda/netlink/netlink_unspecified.go b/vendor/github.com/vishvananda/netlink/netlink_unspecified.go
new file mode 100644
index 0000000000..86111b92ce
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/netlink_unspecified.go
@@ -0,0 +1,225 @@
+// +build !linux
+
+package netlink
+
+import "net"
+
+func LinkSetUp(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkSetDown(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkSetMTU(link Link, mtu int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetMaster(link Link, master *Bridge) error {
+	return ErrNotImplemented
+}
+
+func LinkSetNsPid(link Link, nspid int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetNsFd(link Link, fd int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetName(link Link, name string) error {
+	return ErrNotImplemented
+}
+
+func LinkSetAlias(link Link, name string) error {
+	return ErrNotImplemented
+}
+
+func LinkSetHardwareAddr(link Link, hwaddr net.HardwareAddr) error {
+	return ErrNotImplemented
+}
+
+func LinkSetVfHardwareAddr(link Link, vf int, hwaddr net.HardwareAddr) error {
+	return ErrNotImplemented
+}
+
+func LinkSetVfVlan(link Link, vf, vlan int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetVfTxRate(link Link, vf, rate int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetNoMaster(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkSetMasterByIndex(link Link, masterIndex int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetXdpFd(link Link, fd int) error {
+	return ErrNotImplemented
+}
+
+func LinkSetARPOff(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkSetARPOn(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkByName(name string) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func LinkByAlias(alias string) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func LinkByIndex(index int) (Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func LinkSetHairpin(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetGuard(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetFastLeave(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetLearning(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetRootBlock(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetFlood(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkSetTxQLen(link Link, qlen int) error {
+	return ErrNotImplemented
+}
+
+func LinkAdd(link Link) error {
+	return ErrNotImplemented
+}
+
+func LinkDel(link Link) error {
+	return ErrNotImplemented
+}
+
+func SetHairpin(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func SetGuard(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func SetFastLeave(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func SetLearning(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func SetRootBlock(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func SetFlood(link Link, mode bool) error {
+	return ErrNotImplemented
+}
+
+func LinkList() ([]Link, error) {
+	return nil, ErrNotImplemented
+}
+
+func AddrAdd(link Link, addr *Addr) error {
+	return ErrNotImplemented
+}
+
+func AddrDel(link Link, addr *Addr) error {
+	return ErrNotImplemented
+}
+
+func AddrList(link Link, family int) ([]Addr, error) {
+	return nil, ErrNotImplemented
+}
+
+func RouteAdd(route *Route) error {
+	return ErrNotImplemented
+}
+
+func RouteDel(route *Route) error {
+	return ErrNotImplemented
+}
+
+func RouteList(link Link, family int) ([]Route, error) {
+	return nil, ErrNotImplemented
+}
+
+func XfrmPolicyAdd(policy *XfrmPolicy) error {
+	return ErrNotImplemented
+}
+
+func XfrmPolicyDel(policy *XfrmPolicy) error {
+	return ErrNotImplemented
+}
+
+func XfrmPolicyList(family int) ([]XfrmPolicy, error) {
+	return nil, ErrNotImplemented
+}
+
+func XfrmStateAdd(policy *XfrmState) error {
+	return ErrNotImplemented
+}
+
+func XfrmStateDel(policy *XfrmState) error {
+	return ErrNotImplemented
+}
+
+func XfrmStateList(family int) ([]XfrmState, error) {
+	return nil, ErrNotImplemented
+}
+
+func NeighAdd(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func NeighSet(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func NeighAppend(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func NeighDel(neigh *Neigh) error {
+	return ErrNotImplemented
+}
+
+func NeighList(linkIndex, family int) ([]Neigh, error) {
+	return nil, ErrNotImplemented
+}
+
+func NeighDeserialize(m []byte) (*Neigh, error) {
+	return nil, ErrNotImplemented
+}
+
+func SocketGet(local, remote net.Addr) (*Socket, error) {
+	return nil, ErrNotImplemented
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/addr_linux.go b/vendor/github.com/vishvananda/netlink/nl/addr_linux.go
new file mode 100644
index 0000000000..fe362e9fa7
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/addr_linux.go
@@ -0,0 +1,76 @@
+package nl
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+type IfAddrmsg struct {
+	syscall.IfAddrmsg
+}
+
+func NewIfAddrmsg(family int) *IfAddrmsg {
+	return &IfAddrmsg{
+		IfAddrmsg: syscall.IfAddrmsg{
+			Family: uint8(family),
+		},
+	}
+}
+
+// struct ifaddrmsg {
+//   __u8    ifa_family;
+//   __u8    ifa_prefixlen;  /* The prefix length    */
+//   __u8    ifa_flags;  /* Flags      */
+//   __u8    ifa_scope;  /* Address scope    */
+//   __u32   ifa_index;  /* Link index     */
+// };
+
+// type IfAddrmsg struct {
+// 	Family    uint8
+// 	Prefixlen uint8
+// 	Flags     uint8
+// 	Scope     uint8
+// 	Index     uint32
+// }
+// SizeofIfAddrmsg     = 0x8
+
+func DeserializeIfAddrmsg(b []byte) *IfAddrmsg {
+	return (*IfAddrmsg)(unsafe.Pointer(&b[0:syscall.SizeofIfAddrmsg][0]))
+}
+
+func (msg *IfAddrmsg) Serialize() []byte {
+	return (*(*[syscall.SizeofIfAddrmsg]byte)(unsafe.Pointer(msg)))[:]
+}
+
+func (msg *IfAddrmsg) Len() int {
+	return syscall.SizeofIfAddrmsg
+}
+
+// struct ifa_cacheinfo {
+// 	__u32	ifa_prefered;
+// 	__u32	ifa_valid;
+// 	__u32	cstamp; /* created timestamp, hundredths of seconds */
+// 	__u32	tstamp; /* updated timestamp, hundredths of seconds */
+// };
+
+const IFA_CACHEINFO = 6
+const SizeofIfaCacheInfo = 0x10
+
+type IfaCacheInfo struct {
+	IfaPrefered uint32
+	IfaValid    uint32
+	Cstamp      uint32
+	Tstamp      uint32
+}
+
+func (msg *IfaCacheInfo) Len() int {
+	return SizeofIfaCacheInfo
+}
+
+func DeserializeIfaCacheInfo(b []byte) *IfaCacheInfo {
+	return (*IfaCacheInfo)(unsafe.Pointer(&b[0:SizeofIfaCacheInfo][0]))
+}
+
+func (msg *IfaCacheInfo) Serialize() []byte {
+	return (*(*[SizeofIfaCacheInfo]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/bridge_linux.go b/vendor/github.com/vishvananda/netlink/nl/bridge_linux.go
new file mode 100644
index 0000000000..6c0d333387
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/bridge_linux.go
@@ -0,0 +1,74 @@
+package nl
+
+import (
+	"fmt"
+	"unsafe"
+)
+
+const (
+	SizeofBridgeVlanInfo = 0x04
+)
+
+/* Bridge Flags */
+const (
+	BRIDGE_FLAGS_MASTER = iota /* Bridge command to/from master */
+	BRIDGE_FLAGS_SELF          /* Bridge command to/from lowerdev */
+)
+
+/* Bridge management nested attributes
+ * [IFLA_AF_SPEC] = {
+ *     [IFLA_BRIDGE_FLAGS]
+ *     [IFLA_BRIDGE_MODE]
+ *     [IFLA_BRIDGE_VLAN_INFO]
+ * }
+ */
+const (
+	IFLA_BRIDGE_FLAGS = iota
+	IFLA_BRIDGE_MODE
+	IFLA_BRIDGE_VLAN_INFO
+)
+
+const (
+	BRIDGE_VLAN_INFO_MASTER = 1 << iota
+	BRIDGE_VLAN_INFO_PVID
+	BRIDGE_VLAN_INFO_UNTAGGED
+	BRIDGE_VLAN_INFO_RANGE_BEGIN
+	BRIDGE_VLAN_INFO_RANGE_END
+)
+
+// struct bridge_vlan_info {
+//   __u16 flags;
+//   __u16 vid;
+// };
+
+type BridgeVlanInfo struct {
+	Flags uint16
+	Vid   uint16
+}
+
+func (b *BridgeVlanInfo) Serialize() []byte {
+	return (*(*[SizeofBridgeVlanInfo]byte)(unsafe.Pointer(b)))[:]
+}
+
+func DeserializeBridgeVlanInfo(b []byte) *BridgeVlanInfo {
+	return (*BridgeVlanInfo)(unsafe.Pointer(&b[0:SizeofBridgeVlanInfo][0]))
+}
+
+func (b *BridgeVlanInfo) PortVID() bool {
+	return b.Flags&BRIDGE_VLAN_INFO_PVID > 0
+}
+
+func (b *BridgeVlanInfo) EngressUntag() bool {
+	return b.Flags&BRIDGE_VLAN_INFO_UNTAGGED > 0
+}
+
+func (b *BridgeVlanInfo) String() string {
+	return fmt.Sprintf("%+v", *b)
+}
+
+/* New extended info filters for IFLA_EXT_MASK */
+const (
+	RTEXT_FILTER_VF = 1 << iota
+	RTEXT_FILTER_BRVLAN
+	RTEXT_FILTER_BRVLAN_COMPRESSED
+)
diff --git a/vendor/github.com/vishvananda/netlink/nl/conntrack_linux.go b/vendor/github.com/vishvananda/netlink/nl/conntrack_linux.go
new file mode 100644
index 0000000000..380cc5967b
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/conntrack_linux.go
@@ -0,0 +1,189 @@
+package nl
+
+import "unsafe"
+
+// Track the message sizes for the correct serialization/deserialization
+const (
+	SizeofNfgenmsg      = 4
+	SizeofNfattr        = 4
+	SizeofNfConntrack   = 376
+	SizeofNfctTupleHead = 52
+)
+
+var L4ProtoMap = map[uint8]string{
+	6:  "tcp",
+	17: "udp",
+}
+
+// All the following constants are coming from:
+// https://github.com/torvalds/linux/blob/master/include/uapi/linux/netfilter/nfnetlink_conntrack.h
+
+// enum cntl_msg_types {
+// 	IPCTNL_MSG_CT_NEW,
+// 	IPCTNL_MSG_CT_GET,
+// 	IPCTNL_MSG_CT_DELETE,
+// 	IPCTNL_MSG_CT_GET_CTRZERO,
+// 	IPCTNL_MSG_CT_GET_STATS_CPU,
+// 	IPCTNL_MSG_CT_GET_STATS,
+// 	IPCTNL_MSG_CT_GET_DYING,
+// 	IPCTNL_MSG_CT_GET_UNCONFIRMED,
+//
+// 	IPCTNL_MSG_MAX
+// };
+const (
+	IPCTNL_MSG_CT_GET    = 1
+	IPCTNL_MSG_CT_DELETE = 2
+)
+
+// #define NFNETLINK_V0	0
+const (
+	NFNETLINK_V0 = 0
+)
+
+// #define NLA_F_NESTED (1 << 15)
+const (
+	NLA_F_NESTED = (1 << 15)
+)
+
+// enum ctattr_type {
+// 	CTA_UNSPEC,
+// 	CTA_TUPLE_ORIG,
+// 	CTA_TUPLE_REPLY,
+// 	CTA_STATUS,
+// 	CTA_PROTOINFO,
+// 	CTA_HELP,
+// 	CTA_NAT_SRC,
+// #define CTA_NAT	CTA_NAT_SRC	/* backwards compatibility */
+// 	CTA_TIMEOUT,
+// 	CTA_MARK,
+// 	CTA_COUNTERS_ORIG,
+// 	CTA_COUNTERS_REPLY,
+// 	CTA_USE,
+// 	CTA_ID,
+// 	CTA_NAT_DST,
+// 	CTA_TUPLE_MASTER,
+// 	CTA_SEQ_ADJ_ORIG,
+// 	CTA_NAT_SEQ_ADJ_ORIG	= CTA_SEQ_ADJ_ORIG,
+// 	CTA_SEQ_ADJ_REPLY,
+// 	CTA_NAT_SEQ_ADJ_REPLY	= CTA_SEQ_ADJ_REPLY,
+// 	CTA_SECMARK,		/* obsolete */
+// 	CTA_ZONE,
+// 	CTA_SECCTX,
+// 	CTA_TIMESTAMP,
+// 	CTA_MARK_MASK,
+// 	CTA_LABELS,
+// 	CTA_LABELS_MASK,
+// 	__CTA_MAX
+// };
+const (
+	CTA_TUPLE_ORIG  = 1
+	CTA_TUPLE_REPLY = 2
+	CTA_STATUS      = 3
+	CTA_TIMEOUT     = 7
+	CTA_MARK        = 8
+	CTA_PROTOINFO   = 4
+)
+
+// enum ctattr_tuple {
+// 	CTA_TUPLE_UNSPEC,
+// 	CTA_TUPLE_IP,
+// 	CTA_TUPLE_PROTO,
+// 	CTA_TUPLE_ZONE,
+// 	__CTA_TUPLE_MAX
+// };
+// #define CTA_TUPLE_MAX (__CTA_TUPLE_MAX - 1)
+const (
+	CTA_TUPLE_IP    = 1
+	CTA_TUPLE_PROTO = 2
+)
+
+// enum ctattr_ip {
+// 	CTA_IP_UNSPEC,
+// 	CTA_IP_V4_SRC,
+// 	CTA_IP_V4_DST,
+// 	CTA_IP_V6_SRC,
+// 	CTA_IP_V6_DST,
+// 	__CTA_IP_MAX
+// };
+// #define CTA_IP_MAX (__CTA_IP_MAX - 1)
+const (
+	CTA_IP_V4_SRC = 1
+	CTA_IP_V4_DST = 2
+	CTA_IP_V6_SRC = 3
+	CTA_IP_V6_DST = 4
+)
+
+// enum ctattr_l4proto {
+// 	CTA_PROTO_UNSPEC,
+// 	CTA_PROTO_NUM,
+// 	CTA_PROTO_SRC_PORT,
+// 	CTA_PROTO_DST_PORT,
+// 	CTA_PROTO_ICMP_ID,
+// 	CTA_PROTO_ICMP_TYPE,
+// 	CTA_PROTO_ICMP_CODE,
+// 	CTA_PROTO_ICMPV6_ID,
+// 	CTA_PROTO_ICMPV6_TYPE,
+// 	CTA_PROTO_ICMPV6_CODE,
+// 	__CTA_PROTO_MAX
+// };
+// #define CTA_PROTO_MAX (__CTA_PROTO_MAX - 1)
+const (
+	CTA_PROTO_NUM      = 1
+	CTA_PROTO_SRC_PORT = 2
+	CTA_PROTO_DST_PORT = 3
+)
+
+// enum ctattr_protoinfo {
+// 	CTA_PROTOINFO_UNSPEC,
+// 	CTA_PROTOINFO_TCP,
+// 	CTA_PROTOINFO_DCCP,
+// 	CTA_PROTOINFO_SCTP,
+// 	__CTA_PROTOINFO_MAX
+// };
+// #define CTA_PROTOINFO_MAX (__CTA_PROTOINFO_MAX - 1)
+const (
+	CTA_PROTOINFO_TCP = 1
+)
+
+// enum ctattr_protoinfo_tcp {
+// 	CTA_PROTOINFO_TCP_UNSPEC,
+// 	CTA_PROTOINFO_TCP_STATE,
+// 	CTA_PROTOINFO_TCP_WSCALE_ORIGINAL,
+// 	CTA_PROTOINFO_TCP_WSCALE_REPLY,
+// 	CTA_PROTOINFO_TCP_FLAGS_ORIGINAL,
+// 	CTA_PROTOINFO_TCP_FLAGS_REPLY,
+// 	__CTA_PROTOINFO_TCP_MAX
+// };
+// #define CTA_PROTOINFO_TCP_MAX (__CTA_PROTOINFO_TCP_MAX - 1)
+const (
+	CTA_PROTOINFO_TCP_STATE           = 1
+	CTA_PROTOINFO_TCP_WSCALE_ORIGINAL = 2
+	CTA_PROTOINFO_TCP_WSCALE_REPLY    = 3
+	CTA_PROTOINFO_TCP_FLAGS_ORIGINAL  = 4
+	CTA_PROTOINFO_TCP_FLAGS_REPLY     = 5
+)
+
+// /* General form of address family dependent message.
+//  */
+// struct nfgenmsg {
+// 	__u8  nfgen_family;		/* AF_xxx */
+// 	__u8  version;		/* nfnetlink version */
+// 	__be16    res_id;		/* resource id */
+// };
+type Nfgenmsg struct {
+	NfgenFamily uint8
+	Version     uint8
+	ResId       uint16 // big endian
+}
+
+func (msg *Nfgenmsg) Len() int {
+	return SizeofNfgenmsg
+}
+
+func DeserializeNfgenmsg(b []byte) *Nfgenmsg {
+	return (*Nfgenmsg)(unsafe.Pointer(&b[0:SizeofNfgenmsg][0]))
+}
+
+func (msg *Nfgenmsg) Serialize() []byte {
+	return (*(*[SizeofNfgenmsg]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/genetlink_linux.go b/vendor/github.com/vishvananda/netlink/nl/genetlink_linux.go
new file mode 100644
index 0000000000..81b46f2c79
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/genetlink_linux.go
@@ -0,0 +1,89 @@
+package nl
+
+import (
+	"unsafe"
+)
+
+const SizeofGenlmsg = 4
+
+const (
+	GENL_ID_CTRL      = 0x10
+	GENL_CTRL_VERSION = 2
+	GENL_CTRL_NAME    = "nlctrl"
+)
+
+const (
+	GENL_CTRL_CMD_GETFAMILY = 3
+)
+
+const (
+	GENL_CTRL_ATTR_UNSPEC = iota
+	GENL_CTRL_ATTR_FAMILY_ID
+	GENL_CTRL_ATTR_FAMILY_NAME
+	GENL_CTRL_ATTR_VERSION
+	GENL_CTRL_ATTR_HDRSIZE
+	GENL_CTRL_ATTR_MAXATTR
+	GENL_CTRL_ATTR_OPS
+	GENL_CTRL_ATTR_MCAST_GROUPS
+)
+
+const (
+	GENL_CTRL_ATTR_OP_UNSPEC = iota
+	GENL_CTRL_ATTR_OP_ID
+	GENL_CTRL_ATTR_OP_FLAGS
+)
+
+const (
+	GENL_ADMIN_PERM = 1 << iota
+	GENL_CMD_CAP_DO
+	GENL_CMD_CAP_DUMP
+	GENL_CMD_CAP_HASPOL
+)
+
+const (
+	GENL_CTRL_ATTR_MCAST_GRP_UNSPEC = iota
+	GENL_CTRL_ATTR_MCAST_GRP_NAME
+	GENL_CTRL_ATTR_MCAST_GRP_ID
+)
+
+const (
+	GENL_GTP_VERSION = 0
+	GENL_GTP_NAME    = "gtp"
+)
+
+const (
+	GENL_GTP_CMD_NEWPDP = iota
+	GENL_GTP_CMD_DELPDP
+	GENL_GTP_CMD_GETPDP
+)
+
+const (
+	GENL_GTP_ATTR_UNSPEC = iota
+	GENL_GTP_ATTR_LINK
+	GENL_GTP_ATTR_VERSION
+	GENL_GTP_ATTR_TID
+	GENL_GTP_ATTR_PEER_ADDRESS
+	GENL_GTP_ATTR_MS_ADDRESS
+	GENL_GTP_ATTR_FLOW
+	GENL_GTP_ATTR_NET_NS_FD
+	GENL_GTP_ATTR_I_TEI
+	GENL_GTP_ATTR_O_TEI
+	GENL_GTP_ATTR_PAD
+)
+
+type Genlmsg struct {
+	Command uint8
+	Version uint8
+}
+
+func (msg *Genlmsg) Len() int {
+	return SizeofGenlmsg
+}
+
+func DeserializeGenlmsg(b []byte) *Genlmsg {
+	return (*Genlmsg)(unsafe.Pointer(&b[0:SizeofGenlmsg][0]))
+}
+
+func (msg *Genlmsg) Serialize() []byte {
+	return (*(*[SizeofGenlmsg]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/link_linux.go b/vendor/github.com/vishvananda/netlink/nl/link_linux.go
new file mode 100644
index 0000000000..9ae65a12c2
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/link_linux.go
@@ -0,0 +1,556 @@
+package nl
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+const (
+	DEFAULT_CHANGE = 0xFFFFFFFF
+	// doesn't exist in syscall
+	IFLA_VFINFO_LIST = syscall.IFLA_IFALIAS + 1 + iota
+	IFLA_STATS64
+	IFLA_VF_PORTS
+	IFLA_PORT_SELF
+	IFLA_AF_SPEC
+	IFLA_GROUP
+	IFLA_NET_NS_FD
+	IFLA_EXT_MASK
+	IFLA_PROMISCUITY
+	IFLA_NUM_TX_QUEUES
+	IFLA_NUM_RX_QUEUES
+	IFLA_CARRIER
+	IFLA_PHYS_PORT_ID
+	IFLA_CARRIER_CHANGES
+	IFLA_PHYS_SWITCH_ID
+	IFLA_LINK_NETNSID
+	IFLA_PHYS_PORT_NAME
+	IFLA_PROTO_DOWN
+	IFLA_GSO_MAX_SEGS
+	IFLA_GSO_MAX_SIZE
+	IFLA_PAD
+	IFLA_XDP
+)
+
+const (
+	IFLA_INFO_UNSPEC = iota
+	IFLA_INFO_KIND
+	IFLA_INFO_DATA
+	IFLA_INFO_XSTATS
+	IFLA_INFO_MAX = IFLA_INFO_XSTATS
+)
+
+const (
+	IFLA_VLAN_UNSPEC = iota
+	IFLA_VLAN_ID
+	IFLA_VLAN_FLAGS
+	IFLA_VLAN_EGRESS_QOS
+	IFLA_VLAN_INGRESS_QOS
+	IFLA_VLAN_PROTOCOL
+	IFLA_VLAN_MAX = IFLA_VLAN_PROTOCOL
+)
+
+const (
+	VETH_INFO_UNSPEC = iota
+	VETH_INFO_PEER
+	VETH_INFO_MAX = VETH_INFO_PEER
+)
+
+const (
+	IFLA_VXLAN_UNSPEC = iota
+	IFLA_VXLAN_ID
+	IFLA_VXLAN_GROUP
+	IFLA_VXLAN_LINK
+	IFLA_VXLAN_LOCAL
+	IFLA_VXLAN_TTL
+	IFLA_VXLAN_TOS
+	IFLA_VXLAN_LEARNING
+	IFLA_VXLAN_AGEING
+	IFLA_VXLAN_LIMIT
+	IFLA_VXLAN_PORT_RANGE
+	IFLA_VXLAN_PROXY
+	IFLA_VXLAN_RSC
+	IFLA_VXLAN_L2MISS
+	IFLA_VXLAN_L3MISS
+	IFLA_VXLAN_PORT
+	IFLA_VXLAN_GROUP6
+	IFLA_VXLAN_LOCAL6
+	IFLA_VXLAN_UDP_CSUM
+	IFLA_VXLAN_UDP_ZERO_CSUM6_TX
+	IFLA_VXLAN_UDP_ZERO_CSUM6_RX
+	IFLA_VXLAN_REMCSUM_TX
+	IFLA_VXLAN_REMCSUM_RX
+	IFLA_VXLAN_GBP
+	IFLA_VXLAN_REMCSUM_NOPARTIAL
+	IFLA_VXLAN_FLOWBASED
+	IFLA_VXLAN_MAX = IFLA_VXLAN_FLOWBASED
+)
+
+const (
+	BRIDGE_MODE_UNSPEC = iota
+	BRIDGE_MODE_HAIRPIN
+)
+
+const (
+	IFLA_BRPORT_UNSPEC = iota
+	IFLA_BRPORT_STATE
+	IFLA_BRPORT_PRIORITY
+	IFLA_BRPORT_COST
+	IFLA_BRPORT_MODE
+	IFLA_BRPORT_GUARD
+	IFLA_BRPORT_PROTECT
+	IFLA_BRPORT_FAST_LEAVE
+	IFLA_BRPORT_LEARNING
+	IFLA_BRPORT_UNICAST_FLOOD
+	IFLA_BRPORT_PROXYARP
+	IFLA_BRPORT_LEARNING_SYNC
+	IFLA_BRPORT_PROXYARP_WIFI
+	IFLA_BRPORT_MAX = IFLA_BRPORT_PROXYARP_WIFI
+)
+
+const (
+	IFLA_IPVLAN_UNSPEC = iota
+	IFLA_IPVLAN_MODE
+	IFLA_IPVLAN_MAX = IFLA_IPVLAN_MODE
+)
+
+const (
+	IFLA_MACVLAN_UNSPEC = iota
+	IFLA_MACVLAN_MODE
+	IFLA_MACVLAN_FLAGS
+	IFLA_MACVLAN_MAX = IFLA_MACVLAN_FLAGS
+)
+
+const (
+	MACVLAN_MODE_PRIVATE  = 1
+	MACVLAN_MODE_VEPA     = 2
+	MACVLAN_MODE_BRIDGE   = 4
+	MACVLAN_MODE_PASSTHRU = 8
+	MACVLAN_MODE_SOURCE   = 16
+)
+
+const (
+	IFLA_BOND_UNSPEC = iota
+	IFLA_BOND_MODE
+	IFLA_BOND_ACTIVE_SLAVE
+	IFLA_BOND_MIIMON
+	IFLA_BOND_UPDELAY
+	IFLA_BOND_DOWNDELAY
+	IFLA_BOND_USE_CARRIER
+	IFLA_BOND_ARP_INTERVAL
+	IFLA_BOND_ARP_IP_TARGET
+	IFLA_BOND_ARP_VALIDATE
+	IFLA_BOND_ARP_ALL_TARGETS
+	IFLA_BOND_PRIMARY
+	IFLA_BOND_PRIMARY_RESELECT
+	IFLA_BOND_FAIL_OVER_MAC
+	IFLA_BOND_XMIT_HASH_POLICY
+	IFLA_BOND_RESEND_IGMP
+	IFLA_BOND_NUM_PEER_NOTIF
+	IFLA_BOND_ALL_SLAVES_ACTIVE
+	IFLA_BOND_MIN_LINKS
+	IFLA_BOND_LP_INTERVAL
+	IFLA_BOND_PACKETS_PER_SLAVE
+	IFLA_BOND_AD_LACP_RATE
+	IFLA_BOND_AD_SELECT
+	IFLA_BOND_AD_INFO
+	IFLA_BOND_AD_ACTOR_SYS_PRIO
+	IFLA_BOND_AD_USER_PORT_KEY
+	IFLA_BOND_AD_ACTOR_SYSTEM
+	IFLA_BOND_TLB_DYNAMIC_LB
+)
+
+const (
+	IFLA_BOND_AD_INFO_UNSPEC = iota
+	IFLA_BOND_AD_INFO_AGGREGATOR
+	IFLA_BOND_AD_INFO_NUM_PORTS
+	IFLA_BOND_AD_INFO_ACTOR_KEY
+	IFLA_BOND_AD_INFO_PARTNER_KEY
+	IFLA_BOND_AD_INFO_PARTNER_MAC
+)
+
+const (
+	IFLA_BOND_SLAVE_UNSPEC = iota
+	IFLA_BOND_SLAVE_STATE
+	IFLA_BOND_SLAVE_MII_STATUS
+	IFLA_BOND_SLAVE_LINK_FAILURE_COUNT
+	IFLA_BOND_SLAVE_PERM_HWADDR
+	IFLA_BOND_SLAVE_QUEUE_ID
+	IFLA_BOND_SLAVE_AD_AGGREGATOR_ID
+)
+
+const (
+	IFLA_GRE_UNSPEC = iota
+	IFLA_GRE_LINK
+	IFLA_GRE_IFLAGS
+	IFLA_GRE_OFLAGS
+	IFLA_GRE_IKEY
+	IFLA_GRE_OKEY
+	IFLA_GRE_LOCAL
+	IFLA_GRE_REMOTE
+	IFLA_GRE_TTL
+	IFLA_GRE_TOS
+	IFLA_GRE_PMTUDISC
+	IFLA_GRE_ENCAP_LIMIT
+	IFLA_GRE_FLOWINFO
+	IFLA_GRE_FLAGS
+	IFLA_GRE_ENCAP_TYPE
+	IFLA_GRE_ENCAP_FLAGS
+	IFLA_GRE_ENCAP_SPORT
+	IFLA_GRE_ENCAP_DPORT
+	IFLA_GRE_COLLECT_METADATA
+	IFLA_GRE_MAX = IFLA_GRE_COLLECT_METADATA
+)
+
+const (
+	GRE_CSUM    = 0x8000
+	GRE_ROUTING = 0x4000
+	GRE_KEY     = 0x2000
+	GRE_SEQ     = 0x1000
+	GRE_STRICT  = 0x0800
+	GRE_REC     = 0x0700
+	GRE_FLAGS   = 0x00F8
+	GRE_VERSION = 0x0007
+)
+
+const (
+	IFLA_VF_INFO_UNSPEC = iota
+	IFLA_VF_INFO
+	IFLA_VF_INFO_MAX = IFLA_VF_INFO
+)
+
+const (
+	IFLA_VF_UNSPEC = iota
+	IFLA_VF_MAC    /* Hardware queue specific attributes */
+	IFLA_VF_VLAN
+	IFLA_VF_TX_RATE      /* Max TX Bandwidth Allocation */
+	IFLA_VF_SPOOFCHK     /* Spoof Checking on/off switch */
+	IFLA_VF_LINK_STATE   /* link state enable/disable/auto switch */
+	IFLA_VF_RATE         /* Min and Max TX Bandwidth Allocation */
+	IFLA_VF_RSS_QUERY_EN /* RSS Redirection Table and Hash Key query
+	 * on/off switch
+	 */
+	IFLA_VF_STATS /* network device statistics */
+	IFLA_VF_TRUST /* Trust state of VF */
+	IFLA_VF_MAX   = IFLA_VF_TRUST
+)
+
+const (
+	IFLA_VF_LINK_STATE_AUTO    = iota /* link state of the uplink */
+	IFLA_VF_LINK_STATE_ENABLE         /* link always up */
+	IFLA_VF_LINK_STATE_DISABLE        /* link always down */
+	IFLA_VF_LINK_STATE_MAX     = IFLA_VF_LINK_STATE_DISABLE
+)
+
+const (
+	IFLA_VF_STATS_RX_PACKETS = iota
+	IFLA_VF_STATS_TX_PACKETS
+	IFLA_VF_STATS_RX_BYTES
+	IFLA_VF_STATS_TX_BYTES
+	IFLA_VF_STATS_BROADCAST
+	IFLA_VF_STATS_MULTICAST
+	IFLA_VF_STATS_MAX = IFLA_VF_STATS_MULTICAST
+)
+
+const (
+	SizeofVfMac        = 0x24
+	SizeofVfVlan       = 0x0c
+	SizeofVfTxRate     = 0x08
+	SizeofVfRate       = 0x0c
+	SizeofVfSpoofchk   = 0x08
+	SizeofVfLinkState  = 0x08
+	SizeofVfRssQueryEn = 0x08
+	SizeofVfTrust      = 0x08
+)
+
+// struct ifla_vf_mac {
+//   __u32 vf;
+//   __u8 mac[32]; /* MAX_ADDR_LEN */
+// };
+
+type VfMac struct {
+	Vf  uint32
+	Mac [32]byte
+}
+
+func (msg *VfMac) Len() int {
+	return SizeofVfMac
+}
+
+func DeserializeVfMac(b []byte) *VfMac {
+	return (*VfMac)(unsafe.Pointer(&b[0:SizeofVfMac][0]))
+}
+
+func (msg *VfMac) Serialize() []byte {
+	return (*(*[SizeofVfMac]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_vlan {
+//   __u32 vf;
+//   __u32 vlan; /* 0 - 4095, 0 disables VLAN filter */
+//   __u32 qos;
+// };
+
+type VfVlan struct {
+	Vf   uint32
+	Vlan uint32
+	Qos  uint32
+}
+
+func (msg *VfVlan) Len() int {
+	return SizeofVfVlan
+}
+
+func DeserializeVfVlan(b []byte) *VfVlan {
+	return (*VfVlan)(unsafe.Pointer(&b[0:SizeofVfVlan][0]))
+}
+
+func (msg *VfVlan) Serialize() []byte {
+	return (*(*[SizeofVfVlan]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_tx_rate {
+//   __u32 vf;
+//   __u32 rate; /* Max TX bandwidth in Mbps, 0 disables throttling */
+// };
+
+type VfTxRate struct {
+	Vf   uint32
+	Rate uint32
+}
+
+func (msg *VfTxRate) Len() int {
+	return SizeofVfTxRate
+}
+
+func DeserializeVfTxRate(b []byte) *VfTxRate {
+	return (*VfTxRate)(unsafe.Pointer(&b[0:SizeofVfTxRate][0]))
+}
+
+func (msg *VfTxRate) Serialize() []byte {
+	return (*(*[SizeofVfTxRate]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_rate {
+//   __u32 vf;
+//   __u32 min_tx_rate; /* Min Bandwidth in Mbps */
+//   __u32 max_tx_rate; /* Max Bandwidth in Mbps */
+// };
+
+type VfRate struct {
+	Vf        uint32
+	MinTxRate uint32
+	MaxTxRate uint32
+}
+
+func (msg *VfRate) Len() int {
+	return SizeofVfRate
+}
+
+func DeserializeVfRate(b []byte) *VfRate {
+	return (*VfRate)(unsafe.Pointer(&b[0:SizeofVfRate][0]))
+}
+
+func (msg *VfRate) Serialize() []byte {
+	return (*(*[SizeofVfRate]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_spoofchk {
+//   __u32 vf;
+//   __u32 setting;
+// };
+
+type VfSpoofchk struct {
+	Vf      uint32
+	Setting uint32
+}
+
+func (msg *VfSpoofchk) Len() int {
+	return SizeofVfSpoofchk
+}
+
+func DeserializeVfSpoofchk(b []byte) *VfSpoofchk {
+	return (*VfSpoofchk)(unsafe.Pointer(&b[0:SizeofVfSpoofchk][0]))
+}
+
+func (msg *VfSpoofchk) Serialize() []byte {
+	return (*(*[SizeofVfSpoofchk]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_link_state {
+//   __u32 vf;
+//   __u32 link_state;
+// };
+
+type VfLinkState struct {
+	Vf        uint32
+	LinkState uint32
+}
+
+func (msg *VfLinkState) Len() int {
+	return SizeofVfLinkState
+}
+
+func DeserializeVfLinkState(b []byte) *VfLinkState {
+	return (*VfLinkState)(unsafe.Pointer(&b[0:SizeofVfLinkState][0]))
+}
+
+func (msg *VfLinkState) Serialize() []byte {
+	return (*(*[SizeofVfLinkState]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_rss_query_en {
+//   __u32 vf;
+//   __u32 setting;
+// };
+
+type VfRssQueryEn struct {
+	Vf      uint32
+	Setting uint32
+}
+
+func (msg *VfRssQueryEn) Len() int {
+	return SizeofVfRssQueryEn
+}
+
+func DeserializeVfRssQueryEn(b []byte) *VfRssQueryEn {
+	return (*VfRssQueryEn)(unsafe.Pointer(&b[0:SizeofVfRssQueryEn][0]))
+}
+
+func (msg *VfRssQueryEn) Serialize() []byte {
+	return (*(*[SizeofVfRssQueryEn]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct ifla_vf_trust {
+//   __u32 vf;
+//   __u32 setting;
+// };
+
+type VfTrust struct {
+	Vf      uint32
+	Setting uint32
+}
+
+func (msg *VfTrust) Len() int {
+	return SizeofVfTrust
+}
+
+func DeserializeVfTrust(b []byte) *VfTrust {
+	return (*VfTrust)(unsafe.Pointer(&b[0:SizeofVfTrust][0]))
+}
+
+func (msg *VfTrust) Serialize() []byte {
+	return (*(*[SizeofVfTrust]byte)(unsafe.Pointer(msg)))[:]
+}
+
+const (
+	XDP_FLAGS_UPDATE_IF_NOEXIST = 1 << iota
+	XDP_FLAGS_SKB_MODE
+	XDP_FLAGS_DRV_MODE
+	XDP_FLAGS_MASK = XDP_FLAGS_UPDATE_IF_NOEXIST | XDP_FLAGS_SKB_MODE | XDP_FLAGS_DRV_MODE
+)
+
+const (
+	IFLA_XDP_UNSPEC   = iota
+	IFLA_XDP_FD       /* fd of xdp program to attach, or -1 to remove */
+	IFLA_XDP_ATTACHED /* read-only bool indicating if prog is attached */
+	IFLA_XDP_FLAGS    /* xdp prog related flags */
+	IFLA_XDP_PROG_ID  /* xdp prog id */
+	IFLA_XDP_MAX      = IFLA_XDP_PROG_ID
+)
+
+const (
+	IFLA_IPTUN_UNSPEC = iota
+	IFLA_IPTUN_LINK
+	IFLA_IPTUN_LOCAL
+	IFLA_IPTUN_REMOTE
+	IFLA_IPTUN_TTL
+	IFLA_IPTUN_TOS
+	IFLA_IPTUN_ENCAP_LIMIT
+	IFLA_IPTUN_FLOWINFO
+	IFLA_IPTUN_FLAGS
+	IFLA_IPTUN_PROTO
+	IFLA_IPTUN_PMTUDISC
+	IFLA_IPTUN_6RD_PREFIX
+	IFLA_IPTUN_6RD_RELAY_PREFIX
+	IFLA_IPTUN_6RD_PREFIXLEN
+	IFLA_IPTUN_6RD_RELAY_PREFIXLEN
+	IFLA_IPTUN_MAX = IFLA_IPTUN_6RD_RELAY_PREFIXLEN
+)
+
+const (
+	IFLA_VTI_UNSPEC = iota
+	IFLA_VTI_LINK
+	IFLA_VTI_IKEY
+	IFLA_VTI_OKEY
+	IFLA_VTI_LOCAL
+	IFLA_VTI_REMOTE
+	IFLA_VTI_MAX = IFLA_VTI_REMOTE
+)
+
+const (
+	IFLA_VRF_UNSPEC = iota
+	IFLA_VRF_TABLE
+)
+
+const (
+	IFLA_BR_UNSPEC = iota
+	IFLA_BR_FORWARD_DELAY
+	IFLA_BR_HELLO_TIME
+	IFLA_BR_MAX_AGE
+	IFLA_BR_AGEING_TIME
+	IFLA_BR_STP_STATE
+	IFLA_BR_PRIORITY
+	IFLA_BR_VLAN_FILTERING
+	IFLA_BR_VLAN_PROTOCOL
+	IFLA_BR_GROUP_FWD_MASK
+	IFLA_BR_ROOT_ID
+	IFLA_BR_BRIDGE_ID
+	IFLA_BR_ROOT_PORT
+	IFLA_BR_ROOT_PATH_COST
+	IFLA_BR_TOPOLOGY_CHANGE
+	IFLA_BR_TOPOLOGY_CHANGE_DETECTED
+	IFLA_BR_HELLO_TIMER
+	IFLA_BR_TCN_TIMER
+	IFLA_BR_TOPOLOGY_CHANGE_TIMER
+	IFLA_BR_GC_TIMER
+	IFLA_BR_GROUP_ADDR
+	IFLA_BR_FDB_FLUSH
+	IFLA_BR_MCAST_ROUTER
+	IFLA_BR_MCAST_SNOOPING
+	IFLA_BR_MCAST_QUERY_USE_IFADDR
+	IFLA_BR_MCAST_QUERIER
+	IFLA_BR_MCAST_HASH_ELASTICITY
+	IFLA_BR_MCAST_HASH_MAX
+	IFLA_BR_MCAST_LAST_MEMBER_CNT
+	IFLA_BR_MCAST_STARTUP_QUERY_CNT
+	IFLA_BR_MCAST_LAST_MEMBER_INTVL
+	IFLA_BR_MCAST_MEMBERSHIP_INTVL
+	IFLA_BR_MCAST_QUERIER_INTVL
+	IFLA_BR_MCAST_QUERY_INTVL
+	IFLA_BR_MCAST_QUERY_RESPONSE_INTVL
+	IFLA_BR_MCAST_STARTUP_QUERY_INTVL
+	IFLA_BR_NF_CALL_IPTABLES
+	IFLA_BR_NF_CALL_IP6TABLES
+	IFLA_BR_NF_CALL_ARPTABLES
+	IFLA_BR_VLAN_DEFAULT_PVID
+	IFLA_BR_PAD
+	IFLA_BR_VLAN_STATS_ENABLED
+	IFLA_BR_MCAST_STATS_ENABLED
+	IFLA_BR_MCAST_IGMP_VERSION
+	IFLA_BR_MCAST_MLD_VERSION
+	IFLA_BR_MAX = IFLA_BR_MCAST_MLD_VERSION
+)
+
+const (
+	IFLA_GTP_UNSPEC = iota
+	IFLA_GTP_FD0
+	IFLA_GTP_FD1
+	IFLA_GTP_PDP_HASHSIZE
+	IFLA_GTP_ROLE
+)
+
+const (
+	GTP_ROLE_GGSN = iota
+	GTP_ROLE_SGSN
+)
diff --git a/vendor/github.com/vishvananda/netlink/nl/mpls_linux.go b/vendor/github.com/vishvananda/netlink/nl/mpls_linux.go
new file mode 100644
index 0000000000..3915b7eec4
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/mpls_linux.go
@@ -0,0 +1,36 @@
+package nl
+
+import "encoding/binary"
+
+const (
+	MPLS_LS_LABEL_SHIFT = 12
+	MPLS_LS_S_SHIFT     = 8
+)
+
+func EncodeMPLSStack(labels ...int) []byte {
+	b := make([]byte, 4*len(labels))
+	for idx, label := range labels {
+		l := label << MPLS_LS_LABEL_SHIFT
+		if idx == len(labels)-1 {
+			l |= 1 << MPLS_LS_S_SHIFT
+		}
+		binary.BigEndian.PutUint32(b[idx*4:], uint32(l))
+	}
+	return b
+}
+
+func DecodeMPLSStack(buf []byte) []int {
+	if len(buf)%4 != 0 {
+		return nil
+	}
+	stack := make([]int, 0, len(buf)/4)
+	for len(buf) > 0 {
+		l := binary.BigEndian.Uint32(buf[:4])
+		buf = buf[4:]
+		stack = append(stack, int(l)>>MPLS_LS_LABEL_SHIFT)
+		if (l>>MPLS_LS_S_SHIFT)&1 > 0 {
+			break
+		}
+	}
+	return stack
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/nl_linux.go b/vendor/github.com/vishvananda/netlink/nl/nl_linux.go
new file mode 100644
index 0000000000..72f7f6af3c
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/nl_linux.go
@@ -0,0 +1,732 @@
+// Package nl has low level primitives for making Netlink calls.
+package nl
+
+import (
+	"bytes"
+	"encoding/binary"
+	"fmt"
+	"net"
+	"runtime"
+	"sync"
+	"sync/atomic"
+	"syscall"
+	"unsafe"
+
+	"github.com/vishvananda/netns"
+)
+
+const (
+	// Family type definitions
+	FAMILY_ALL  = syscall.AF_UNSPEC
+	FAMILY_V4   = syscall.AF_INET
+	FAMILY_V6   = syscall.AF_INET6
+	FAMILY_MPLS = AF_MPLS
+)
+
+// SupportedNlFamilies contains the list of netlink families this netlink package supports
+var SupportedNlFamilies = []int{syscall.NETLINK_ROUTE, syscall.NETLINK_XFRM, syscall.NETLINK_NETFILTER}
+
+var nextSeqNr uint32
+
+// GetIPFamily returns the family type of a net.IP.
+func GetIPFamily(ip net.IP) int {
+	if len(ip) <= net.IPv4len {
+		return FAMILY_V4
+	}
+	if ip.To4() != nil {
+		return FAMILY_V4
+	}
+	return FAMILY_V6
+}
+
+var nativeEndian binary.ByteOrder
+
+// Get native endianness for the system
+func NativeEndian() binary.ByteOrder {
+	if nativeEndian == nil {
+		var x uint32 = 0x01020304
+		if *(*byte)(unsafe.Pointer(&x)) == 0x01 {
+			nativeEndian = binary.BigEndian
+		} else {
+			nativeEndian = binary.LittleEndian
+		}
+	}
+	return nativeEndian
+}
+
+// Byte swap a 16 bit value if we aren't big endian
+func Swap16(i uint16) uint16 {
+	if NativeEndian() == binary.BigEndian {
+		return i
+	}
+	return (i&0xff00)>>8 | (i&0xff)<<8
+}
+
+// Byte swap a 32 bit value if aren't big endian
+func Swap32(i uint32) uint32 {
+	if NativeEndian() == binary.BigEndian {
+		return i
+	}
+	return (i&0xff000000)>>24 | (i&0xff0000)>>8 | (i&0xff00)<<8 | (i&0xff)<<24
+}
+
+type NetlinkRequestData interface {
+	Len() int
+	Serialize() []byte
+}
+
+// IfInfomsg is related to links, but it is used for list requests as well
+type IfInfomsg struct {
+	syscall.IfInfomsg
+}
+
+// Create an IfInfomsg with family specified
+func NewIfInfomsg(family int) *IfInfomsg {
+	return &IfInfomsg{
+		IfInfomsg: syscall.IfInfomsg{
+			Family: uint8(family),
+		},
+	}
+}
+
+func DeserializeIfInfomsg(b []byte) *IfInfomsg {
+	return (*IfInfomsg)(unsafe.Pointer(&b[0:syscall.SizeofIfInfomsg][0]))
+}
+
+func (msg *IfInfomsg) Serialize() []byte {
+	return (*(*[syscall.SizeofIfInfomsg]byte)(unsafe.Pointer(msg)))[:]
+}
+
+func (msg *IfInfomsg) Len() int {
+	return syscall.SizeofIfInfomsg
+}
+
+func (msg *IfInfomsg) EncapType() string {
+	switch msg.Type {
+	case 0:
+		return "generic"
+	case syscall.ARPHRD_ETHER:
+		return "ether"
+	case syscall.ARPHRD_EETHER:
+		return "eether"
+	case syscall.ARPHRD_AX25:
+		return "ax25"
+	case syscall.ARPHRD_PRONET:
+		return "pronet"
+	case syscall.ARPHRD_CHAOS:
+		return "chaos"
+	case syscall.ARPHRD_IEEE802:
+		return "ieee802"
+	case syscall.ARPHRD_ARCNET:
+		return "arcnet"
+	case syscall.ARPHRD_APPLETLK:
+		return "atalk"
+	case syscall.ARPHRD_DLCI:
+		return "dlci"
+	case syscall.ARPHRD_ATM:
+		return "atm"
+	case syscall.ARPHRD_METRICOM:
+		return "metricom"
+	case syscall.ARPHRD_IEEE1394:
+		return "ieee1394"
+	case syscall.ARPHRD_INFINIBAND:
+		return "infiniband"
+	case syscall.ARPHRD_SLIP:
+		return "slip"
+	case syscall.ARPHRD_CSLIP:
+		return "cslip"
+	case syscall.ARPHRD_SLIP6:
+		return "slip6"
+	case syscall.ARPHRD_CSLIP6:
+		return "cslip6"
+	case syscall.ARPHRD_RSRVD:
+		return "rsrvd"
+	case syscall.ARPHRD_ADAPT:
+		return "adapt"
+	case syscall.ARPHRD_ROSE:
+		return "rose"
+	case syscall.ARPHRD_X25:
+		return "x25"
+	case syscall.ARPHRD_HWX25:
+		return "hwx25"
+	case syscall.ARPHRD_PPP:
+		return "ppp"
+	case syscall.ARPHRD_HDLC:
+		return "hdlc"
+	case syscall.ARPHRD_LAPB:
+		return "lapb"
+	case syscall.ARPHRD_DDCMP:
+		return "ddcmp"
+	case syscall.ARPHRD_RAWHDLC:
+		return "rawhdlc"
+	case syscall.ARPHRD_TUNNEL:
+		return "ipip"
+	case syscall.ARPHRD_TUNNEL6:
+		return "tunnel6"
+	case syscall.ARPHRD_FRAD:
+		return "frad"
+	case syscall.ARPHRD_SKIP:
+		return "skip"
+	case syscall.ARPHRD_LOOPBACK:
+		return "loopback"
+	case syscall.ARPHRD_LOCALTLK:
+		return "ltalk"
+	case syscall.ARPHRD_FDDI:
+		return "fddi"
+	case syscall.ARPHRD_BIF:
+		return "bif"
+	case syscall.ARPHRD_SIT:
+		return "sit"
+	case syscall.ARPHRD_IPDDP:
+		return "ip/ddp"
+	case syscall.ARPHRD_IPGRE:
+		return "gre"
+	case syscall.ARPHRD_PIMREG:
+		return "pimreg"
+	case syscall.ARPHRD_HIPPI:
+		return "hippi"
+	case syscall.ARPHRD_ASH:
+		return "ash"
+	case syscall.ARPHRD_ECONET:
+		return "econet"
+	case syscall.ARPHRD_IRDA:
+		return "irda"
+	case syscall.ARPHRD_FCPP:
+		return "fcpp"
+	case syscall.ARPHRD_FCAL:
+		return "fcal"
+	case syscall.ARPHRD_FCPL:
+		return "fcpl"
+	case syscall.ARPHRD_FCFABRIC:
+		return "fcfb0"
+	case syscall.ARPHRD_FCFABRIC + 1:
+		return "fcfb1"
+	case syscall.ARPHRD_FCFABRIC + 2:
+		return "fcfb2"
+	case syscall.ARPHRD_FCFABRIC + 3:
+		return "fcfb3"
+	case syscall.ARPHRD_FCFABRIC + 4:
+		return "fcfb4"
+	case syscall.ARPHRD_FCFABRIC + 5:
+		return "fcfb5"
+	case syscall.ARPHRD_FCFABRIC + 6:
+		return "fcfb6"
+	case syscall.ARPHRD_FCFABRIC + 7:
+		return "fcfb7"
+	case syscall.ARPHRD_FCFABRIC + 8:
+		return "fcfb8"
+	case syscall.ARPHRD_FCFABRIC + 9:
+		return "fcfb9"
+	case syscall.ARPHRD_FCFABRIC + 10:
+		return "fcfb10"
+	case syscall.ARPHRD_FCFABRIC + 11:
+		return "fcfb11"
+	case syscall.ARPHRD_FCFABRIC + 12:
+		return "fcfb12"
+	case syscall.ARPHRD_IEEE802_TR:
+		return "tr"
+	case syscall.ARPHRD_IEEE80211:
+		return "ieee802.11"
+	case syscall.ARPHRD_IEEE80211_PRISM:
+		return "ieee802.11/prism"
+	case syscall.ARPHRD_IEEE80211_RADIOTAP:
+		return "ieee802.11/radiotap"
+	case syscall.ARPHRD_IEEE802154:
+		return "ieee802.15.4"
+
+	case 65534:
+		return "none"
+	case 65535:
+		return "void"
+	}
+	return fmt.Sprintf("unknown%d", msg.Type)
+}
+
+func rtaAlignOf(attrlen int) int {
+	return (attrlen + syscall.RTA_ALIGNTO - 1) & ^(syscall.RTA_ALIGNTO - 1)
+}
+
+func NewIfInfomsgChild(parent *RtAttr, family int) *IfInfomsg {
+	msg := NewIfInfomsg(family)
+	parent.children = append(parent.children, msg)
+	return msg
+}
+
+// Extend RtAttr to handle data and children
+type RtAttr struct {
+	syscall.RtAttr
+	Data     []byte
+	children []NetlinkRequestData
+}
+
+// Create a new Extended RtAttr object
+func NewRtAttr(attrType int, data []byte) *RtAttr {
+	return &RtAttr{
+		RtAttr: syscall.RtAttr{
+			Type: uint16(attrType),
+		},
+		children: []NetlinkRequestData{},
+		Data:     data,
+	}
+}
+
+// Create a new RtAttr obj anc add it as a child of an existing object
+func NewRtAttrChild(parent *RtAttr, attrType int, data []byte) *RtAttr {
+	attr := NewRtAttr(attrType, data)
+	parent.children = append(parent.children, attr)
+	return attr
+}
+
+func (a *RtAttr) Len() int {
+	if len(a.children) == 0 {
+		return (syscall.SizeofRtAttr + len(a.Data))
+	}
+
+	l := 0
+	for _, child := range a.children {
+		l += rtaAlignOf(child.Len())
+	}
+	l += syscall.SizeofRtAttr
+	return rtaAlignOf(l + len(a.Data))
+}
+
+// Serialize the RtAttr into a byte array
+// This can't just unsafe.cast because it must iterate through children.
+func (a *RtAttr) Serialize() []byte {
+	native := NativeEndian()
+
+	length := a.Len()
+	buf := make([]byte, rtaAlignOf(length))
+
+	next := 4
+	if a.Data != nil {
+		copy(buf[next:], a.Data)
+		next += rtaAlignOf(len(a.Data))
+	}
+	if len(a.children) > 0 {
+		for _, child := range a.children {
+			childBuf := child.Serialize()
+			copy(buf[next:], childBuf)
+			next += rtaAlignOf(len(childBuf))
+		}
+	}
+
+	if l := uint16(length); l != 0 {
+		native.PutUint16(buf[0:2], l)
+	}
+	native.PutUint16(buf[2:4], a.Type)
+	return buf
+}
+
+type NetlinkRequest struct {
+	syscall.NlMsghdr
+	Data    []NetlinkRequestData
+	RawData []byte
+	Sockets map[int]*SocketHandle
+}
+
+// Serialize the Netlink Request into a byte array
+func (req *NetlinkRequest) Serialize() []byte {
+	length := syscall.SizeofNlMsghdr
+	dataBytes := make([][]byte, len(req.Data))
+	for i, data := range req.Data {
+		dataBytes[i] = data.Serialize()
+		length = length + len(dataBytes[i])
+	}
+	length += len(req.RawData)
+
+	req.Len = uint32(length)
+	b := make([]byte, length)
+	hdr := (*(*[syscall.SizeofNlMsghdr]byte)(unsafe.Pointer(req)))[:]
+	next := syscall.SizeofNlMsghdr
+	copy(b[0:next], hdr)
+	for _, data := range dataBytes {
+		for _, dataByte := range data {
+			b[next] = dataByte
+			next = next + 1
+		}
+	}
+	// Add the raw data if any
+	if len(req.RawData) > 0 {
+		copy(b[next:length], req.RawData)
+	}
+	return b
+}
+
+func (req *NetlinkRequest) AddData(data NetlinkRequestData) {
+	if data != nil {
+		req.Data = append(req.Data, data)
+	}
+}
+
+// AddRawData adds raw bytes to the end of the NetlinkRequest object during serialization
+func (req *NetlinkRequest) AddRawData(data []byte) {
+	if data != nil {
+		req.RawData = append(req.RawData, data...)
+	}
+}
+
+// Execute the request against a the given sockType.
+// Returns a list of netlink messages in serialized format, optionally filtered
+// by resType.
+func (req *NetlinkRequest) Execute(sockType int, resType uint16) ([][]byte, error) {
+	var (
+		s   *NetlinkSocket
+		err error
+	)
+
+	if req.Sockets != nil {
+		if sh, ok := req.Sockets[sockType]; ok {
+			s = sh.Socket
+			req.Seq = atomic.AddUint32(&sh.Seq, 1)
+		}
+	}
+	sharedSocket := s != nil
+
+	if s == nil {
+		s, err = getNetlinkSocket(sockType)
+		if err != nil {
+			return nil, err
+		}
+		defer s.Close()
+	} else {
+		s.Lock()
+		defer s.Unlock()
+	}
+
+	if err := s.Send(req); err != nil {
+		return nil, err
+	}
+
+	pid, err := s.GetPid()
+	if err != nil {
+		return nil, err
+	}
+
+	var res [][]byte
+
+done:
+	for {
+		msgs, err := s.Receive()
+		if err != nil {
+			return nil, err
+		}
+		for _, m := range msgs {
+			if m.Header.Seq != req.Seq {
+				if sharedSocket {
+					continue
+				}
+				return nil, fmt.Errorf("Wrong Seq nr %d, expected %d", m.Header.Seq, req.Seq)
+			}
+			if m.Header.Pid != pid {
+				return nil, fmt.Errorf("Wrong pid %d, expected %d", m.Header.Pid, pid)
+			}
+			if m.Header.Type == syscall.NLMSG_DONE {
+				break done
+			}
+			if m.Header.Type == syscall.NLMSG_ERROR {
+				native := NativeEndian()
+				error := int32(native.Uint32(m.Data[0:4]))
+				if error == 0 {
+					break done
+				}
+				return nil, syscall.Errno(-error)
+			}
+			if resType != 0 && m.Header.Type != resType {
+				continue
+			}
+			res = append(res, m.Data)
+			if m.Header.Flags&syscall.NLM_F_MULTI == 0 {
+				break done
+			}
+		}
+	}
+	return res, nil
+}
+
+// Create a new netlink request from proto and flags
+// Note the Len value will be inaccurate once data is added until
+// the message is serialized
+func NewNetlinkRequest(proto, flags int) *NetlinkRequest {
+	return &NetlinkRequest{
+		NlMsghdr: syscall.NlMsghdr{
+			Len:   uint32(syscall.SizeofNlMsghdr),
+			Type:  uint16(proto),
+			Flags: syscall.NLM_F_REQUEST | uint16(flags),
+			Seq:   atomic.AddUint32(&nextSeqNr, 1),
+		},
+	}
+}
+
+type NetlinkSocket struct {
+	fd  int32
+	lsa syscall.SockaddrNetlink
+	sync.Mutex
+}
+
+func getNetlinkSocket(protocol int) (*NetlinkSocket, error) {
+	fd, err := syscall.Socket(syscall.AF_NETLINK, syscall.SOCK_RAW|syscall.SOCK_CLOEXEC, protocol)
+	if err != nil {
+		return nil, err
+	}
+	s := &NetlinkSocket{
+		fd: int32(fd),
+	}
+	s.lsa.Family = syscall.AF_NETLINK
+	if err := syscall.Bind(fd, &s.lsa); err != nil {
+		syscall.Close(fd)
+		return nil, err
+	}
+
+	return s, nil
+}
+
+// GetNetlinkSocketAt opens a netlink socket in the network namespace newNs
+// and positions the thread back into the network namespace specified by curNs,
+// when done. If curNs is close, the function derives the current namespace and
+// moves back into it when done. If newNs is close, the socket will be opened
+// in the current network namespace.
+func GetNetlinkSocketAt(newNs, curNs netns.NsHandle, protocol int) (*NetlinkSocket, error) {
+	c, err := executeInNetns(newNs, curNs)
+	if err != nil {
+		return nil, err
+	}
+	defer c()
+	return getNetlinkSocket(protocol)
+}
+
+// executeInNetns sets execution of the code following this call to the
+// network namespace newNs, then moves the thread back to curNs if open,
+// otherwise to the current netns at the time the function was invoked
+// In case of success, the caller is expected to execute the returned function
+// at the end of the code that needs to be executed in the network namespace.
+// Example:
+// func jobAt(...) error {
+//      d, err := executeInNetns(...)
+//      if err != nil { return err}
+//      defer d()
+//      < code which needs to be executed in specific netns>
+//  }
+// TODO: his function probably belongs to netns pkg.
+func executeInNetns(newNs, curNs netns.NsHandle) (func(), error) {
+	var (
+		err       error
+		moveBack  func(netns.NsHandle) error
+		closeNs   func() error
+		unlockThd func()
+	)
+	restore := func() {
+		// order matters
+		if moveBack != nil {
+			moveBack(curNs)
+		}
+		if closeNs != nil {
+			closeNs()
+		}
+		if unlockThd != nil {
+			unlockThd()
+		}
+	}
+	if newNs.IsOpen() {
+		runtime.LockOSThread()
+		unlockThd = runtime.UnlockOSThread
+		if !curNs.IsOpen() {
+			if curNs, err = netns.Get(); err != nil {
+				restore()
+				return nil, fmt.Errorf("could not get current namespace while creating netlink socket: %v", err)
+			}
+			closeNs = curNs.Close
+		}
+		if err := netns.Set(newNs); err != nil {
+			restore()
+			return nil, fmt.Errorf("failed to set into network namespace %d while creating netlink socket: %v", newNs, err)
+		}
+		moveBack = netns.Set
+	}
+	return restore, nil
+}
+
+// Create a netlink socket with a given protocol (e.g. NETLINK_ROUTE)
+// and subscribe it to multicast groups passed in variable argument list.
+// Returns the netlink socket on which Receive() method can be called
+// to retrieve the messages from the kernel.
+func Subscribe(protocol int, groups ...uint) (*NetlinkSocket, error) {
+	fd, err := syscall.Socket(syscall.AF_NETLINK, syscall.SOCK_RAW, protocol)
+	if err != nil {
+		return nil, err
+	}
+	s := &NetlinkSocket{
+		fd: int32(fd),
+	}
+	s.lsa.Family = syscall.AF_NETLINK
+
+	for _, g := range groups {
+		s.lsa.Groups |= (1 << (g - 1))
+	}
+
+	if err := syscall.Bind(fd, &s.lsa); err != nil {
+		syscall.Close(fd)
+		return nil, err
+	}
+
+	return s, nil
+}
+
+// SubscribeAt works like Subscribe plus let's the caller choose the network
+// namespace in which the socket would be opened (newNs). Then control goes back
+// to curNs if open, otherwise to the netns at the time this function was called.
+func SubscribeAt(newNs, curNs netns.NsHandle, protocol int, groups ...uint) (*NetlinkSocket, error) {
+	c, err := executeInNetns(newNs, curNs)
+	if err != nil {
+		return nil, err
+	}
+	defer c()
+	return Subscribe(protocol, groups...)
+}
+
+func (s *NetlinkSocket) Close() {
+	fd := int(atomic.SwapInt32(&s.fd, -1))
+	syscall.Close(fd)
+}
+
+func (s *NetlinkSocket) GetFd() int {
+	return int(atomic.LoadInt32(&s.fd))
+}
+
+func (s *NetlinkSocket) Send(request *NetlinkRequest) error {
+	fd := int(atomic.LoadInt32(&s.fd))
+	if fd < 0 {
+		return fmt.Errorf("Send called on a closed socket")
+	}
+	if err := syscall.Sendto(fd, request.Serialize(), 0, &s.lsa); err != nil {
+		return err
+	}
+	return nil
+}
+
+func (s *NetlinkSocket) Receive() ([]syscall.NetlinkMessage, error) {
+	fd := int(atomic.LoadInt32(&s.fd))
+	if fd < 0 {
+		return nil, fmt.Errorf("Receive called on a closed socket")
+	}
+	rb := make([]byte, syscall.Getpagesize())
+	nr, _, err := syscall.Recvfrom(fd, rb, 0)
+	if err != nil {
+		return nil, err
+	}
+	if nr < syscall.NLMSG_HDRLEN {
+		return nil, fmt.Errorf("Got short response from netlink")
+	}
+	rb = rb[:nr]
+	return syscall.ParseNetlinkMessage(rb)
+}
+
+// SetSendTimeout allows to set a send timeout on the socket
+func (s *NetlinkSocket) SetSendTimeout(timeout *syscall.Timeval) error {
+	// Set a send timeout of SOCKET_SEND_TIMEOUT, this will allow the Send to periodically unblock and avoid that a routine
+	// remains stuck on a send on a closed fd
+	return syscall.SetsockoptTimeval(int(s.fd), syscall.SOL_SOCKET, syscall.SO_SNDTIMEO, timeout)
+}
+
+// SetReceiveTimeout allows to set a receive timeout on the socket
+func (s *NetlinkSocket) SetReceiveTimeout(timeout *syscall.Timeval) error {
+	// Set a read timeout of SOCKET_READ_TIMEOUT, this will allow the Read to periodically unblock and avoid that a routine
+	// remains stuck on a recvmsg on a closed fd
+	return syscall.SetsockoptTimeval(int(s.fd), syscall.SOL_SOCKET, syscall.SO_RCVTIMEO, timeout)
+}
+
+func (s *NetlinkSocket) GetPid() (uint32, error) {
+	fd := int(atomic.LoadInt32(&s.fd))
+	lsa, err := syscall.Getsockname(fd)
+	if err != nil {
+		return 0, err
+	}
+	switch v := lsa.(type) {
+	case *syscall.SockaddrNetlink:
+		return v.Pid, nil
+	}
+	return 0, fmt.Errorf("Wrong socket type")
+}
+
+func ZeroTerminated(s string) []byte {
+	bytes := make([]byte, len(s)+1)
+	for i := 0; i < len(s); i++ {
+		bytes[i] = s[i]
+	}
+	bytes[len(s)] = 0
+	return bytes
+}
+
+func NonZeroTerminated(s string) []byte {
+	bytes := make([]byte, len(s))
+	for i := 0; i < len(s); i++ {
+		bytes[i] = s[i]
+	}
+	return bytes
+}
+
+func BytesToString(b []byte) string {
+	n := bytes.Index(b, []byte{0})
+	return string(b[:n])
+}
+
+func Uint8Attr(v uint8) []byte {
+	return []byte{byte(v)}
+}
+
+func Uint16Attr(v uint16) []byte {
+	native := NativeEndian()
+	bytes := make([]byte, 2)
+	native.PutUint16(bytes, v)
+	return bytes
+}
+
+func Uint32Attr(v uint32) []byte {
+	native := NativeEndian()
+	bytes := make([]byte, 4)
+	native.PutUint32(bytes, v)
+	return bytes
+}
+
+func Uint64Attr(v uint64) []byte {
+	native := NativeEndian()
+	bytes := make([]byte, 8)
+	native.PutUint64(bytes, v)
+	return bytes
+}
+
+func ParseRouteAttr(b []byte) ([]syscall.NetlinkRouteAttr, error) {
+	var attrs []syscall.NetlinkRouteAttr
+	for len(b) >= syscall.SizeofRtAttr {
+		a, vbuf, alen, err := netlinkRouteAttrAndValue(b)
+		if err != nil {
+			return nil, err
+		}
+		ra := syscall.NetlinkRouteAttr{Attr: *a, Value: vbuf[:int(a.Len)-syscall.SizeofRtAttr]}
+		attrs = append(attrs, ra)
+		b = b[alen:]
+	}
+	return attrs, nil
+}
+
+func netlinkRouteAttrAndValue(b []byte) (*syscall.RtAttr, []byte, int, error) {
+	a := (*syscall.RtAttr)(unsafe.Pointer(&b[0]))
+	if int(a.Len) < syscall.SizeofRtAttr || int(a.Len) > len(b) {
+		return nil, nil, 0, syscall.EINVAL
+	}
+	return a, b[syscall.SizeofRtAttr:], rtaAlignOf(int(a.Len)), nil
+}
+
+// SocketHandle contains the netlink socket and the associated
+// sequence counter for a specific netlink family
+type SocketHandle struct {
+	Seq    uint32
+	Socket *NetlinkSocket
+}
+
+// Close closes the netlink socket
+func (sh *SocketHandle) Close() {
+	if sh.Socket != nil {
+		sh.Socket.Close()
+	}
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/nl_unspecified.go b/vendor/github.com/vishvananda/netlink/nl/nl_unspecified.go
new file mode 100644
index 0000000000..dfc0be6606
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/nl_unspecified.go
@@ -0,0 +1,11 @@
+// +build !linux
+
+package nl
+
+import "encoding/binary"
+
+var SupportedNlFamilies = []int{}
+
+func NativeEndian() binary.ByteOrder {
+	return nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/route_linux.go b/vendor/github.com/vishvananda/netlink/nl/route_linux.go
new file mode 100644
index 0000000000..1a064d65d2
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/route_linux.go
@@ -0,0 +1,80 @@
+package nl
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+type RtMsg struct {
+	syscall.RtMsg
+}
+
+func NewRtMsg() *RtMsg {
+	return &RtMsg{
+		RtMsg: syscall.RtMsg{
+			Table:    syscall.RT_TABLE_MAIN,
+			Scope:    syscall.RT_SCOPE_UNIVERSE,
+			Protocol: syscall.RTPROT_BOOT,
+			Type:     syscall.RTN_UNICAST,
+		},
+	}
+}
+
+func NewRtDelMsg() *RtMsg {
+	return &RtMsg{
+		RtMsg: syscall.RtMsg{
+			Table: syscall.RT_TABLE_MAIN,
+			Scope: syscall.RT_SCOPE_NOWHERE,
+		},
+	}
+}
+
+func (msg *RtMsg) Len() int {
+	return syscall.SizeofRtMsg
+}
+
+func DeserializeRtMsg(b []byte) *RtMsg {
+	return (*RtMsg)(unsafe.Pointer(&b[0:syscall.SizeofRtMsg][0]))
+}
+
+func (msg *RtMsg) Serialize() []byte {
+	return (*(*[syscall.SizeofRtMsg]byte)(unsafe.Pointer(msg)))[:]
+}
+
+type RtNexthop struct {
+	syscall.RtNexthop
+	Children []NetlinkRequestData
+}
+
+func DeserializeRtNexthop(b []byte) *RtNexthop {
+	return (*RtNexthop)(unsafe.Pointer(&b[0:syscall.SizeofRtNexthop][0]))
+}
+
+func (msg *RtNexthop) Len() int {
+	if len(msg.Children) == 0 {
+		return syscall.SizeofRtNexthop
+	}
+
+	l := 0
+	for _, child := range msg.Children {
+		l += rtaAlignOf(child.Len())
+	}
+	l += syscall.SizeofRtNexthop
+	return rtaAlignOf(l)
+}
+
+func (msg *RtNexthop) Serialize() []byte {
+	length := msg.Len()
+	msg.RtNexthop.Len = uint16(length)
+	buf := make([]byte, length)
+	copy(buf, (*(*[syscall.SizeofRtNexthop]byte)(unsafe.Pointer(msg)))[:])
+	next := rtaAlignOf(syscall.SizeofRtNexthop)
+	if len(msg.Children) > 0 {
+		for _, child := range msg.Children {
+			childBuf := child.Serialize()
+			copy(buf[next:], childBuf)
+			next += rtaAlignOf(len(childBuf))
+		}
+	}
+	return buf
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/syscall.go b/vendor/github.com/vishvananda/netlink/nl/syscall.go
new file mode 100644
index 0000000000..3473e53638
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/syscall.go
@@ -0,0 +1,68 @@
+package nl
+
+// syscall package lack of rule atributes type.
+// Thus there are defined below
+const (
+	FRA_UNSPEC  = iota
+	FRA_DST     /* destination address */
+	FRA_SRC     /* source address */
+	FRA_IIFNAME /* interface name */
+	FRA_GOTO    /* target to jump to (FR_ACT_GOTO) */
+	FRA_UNUSED2
+	FRA_PRIORITY /* priority/preference */
+	FRA_UNUSED3
+	FRA_UNUSED4
+	FRA_UNUSED5
+	FRA_FWMARK /* mark */
+	FRA_FLOW   /* flow/class id */
+	FRA_TUN_ID
+	FRA_SUPPRESS_IFGROUP
+	FRA_SUPPRESS_PREFIXLEN
+	FRA_TABLE  /* Extended table id */
+	FRA_FWMASK /* mask for netfilter mark */
+	FRA_OIFNAME
+)
+
+// ip rule netlink request types
+const (
+	FR_ACT_UNSPEC = iota
+	FR_ACT_TO_TBL /* Pass to fixed table */
+	FR_ACT_GOTO   /* Jump to another rule */
+	FR_ACT_NOP    /* No operation */
+	FR_ACT_RES3
+	FR_ACT_RES4
+	FR_ACT_BLACKHOLE   /* Drop without notification */
+	FR_ACT_UNREACHABLE /* Drop with ENETUNREACH */
+	FR_ACT_PROHIBIT    /* Drop with EACCES */
+)
+
+// socket diags related
+const (
+	SOCK_DIAG_BY_FAMILY = 20         /* linux.sock_diag.h */
+	TCPDIAG_NOCOOKIE    = 0xFFFFFFFF /* TCPDIAG_NOCOOKIE in net/ipv4/tcp_diag.h*/
+)
+
+const (
+	AF_MPLS = 28
+)
+
+const (
+	RTA_NEWDST     = 0x13
+	RTA_ENCAP_TYPE = 0x15
+	RTA_ENCAP      = 0x16
+)
+
+// RTA_ENCAP subtype
+const (
+	MPLS_IPTUNNEL_UNSPEC = iota
+	MPLS_IPTUNNEL_DST
+)
+
+// light weight tunnel encap types
+const (
+	LWTUNNEL_ENCAP_NONE = iota
+	LWTUNNEL_ENCAP_MPLS
+	LWTUNNEL_ENCAP_IP
+	LWTUNNEL_ENCAP_ILA
+	LWTUNNEL_ENCAP_IP6
+)
diff --git a/vendor/github.com/vishvananda/netlink/nl/tc_linux.go b/vendor/github.com/vishvananda/netlink/nl/tc_linux.go
new file mode 100644
index 0000000000..e91fb21c55
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/tc_linux.go
@@ -0,0 +1,675 @@
+package nl
+
+import (
+	"unsafe"
+)
+
+// LinkLayer
+const (
+	LINKLAYER_UNSPEC = iota
+	LINKLAYER_ETHERNET
+	LINKLAYER_ATM
+)
+
+// ATM
+const (
+	ATM_CELL_PAYLOAD = 48
+	ATM_CELL_SIZE    = 53
+)
+
+const TC_LINKLAYER_MASK = 0x0F
+
+// Police
+const (
+	TCA_POLICE_UNSPEC = iota
+	TCA_POLICE_TBF
+	TCA_POLICE_RATE
+	TCA_POLICE_PEAKRATE
+	TCA_POLICE_AVRATE
+	TCA_POLICE_RESULT
+	TCA_POLICE_MAX = TCA_POLICE_RESULT
+)
+
+// Message types
+const (
+	TCA_UNSPEC = iota
+	TCA_KIND
+	TCA_OPTIONS
+	TCA_STATS
+	TCA_XSTATS
+	TCA_RATE
+	TCA_FCNT
+	TCA_STATS2
+	TCA_STAB
+	TCA_MAX = TCA_STAB
+)
+
+const (
+	TCA_ACT_TAB = 1
+	TCAA_MAX    = 1
+)
+
+const (
+	TCA_ACT_UNSPEC = iota
+	TCA_ACT_KIND
+	TCA_ACT_OPTIONS
+	TCA_ACT_INDEX
+	TCA_ACT_STATS
+	TCA_ACT_MAX
+)
+
+const (
+	TCA_PRIO_UNSPEC = iota
+	TCA_PRIO_MQ
+	TCA_PRIO_MAX = TCA_PRIO_MQ
+)
+
+const (
+	SizeofTcMsg          = 0x14
+	SizeofTcActionMsg    = 0x04
+	SizeofTcPrioMap      = 0x14
+	SizeofTcRateSpec     = 0x0c
+	SizeofTcNetemQopt    = 0x18
+	SizeofTcNetemCorr    = 0x0c
+	SizeofTcNetemReorder = 0x08
+	SizeofTcNetemCorrupt = 0x08
+	SizeofTcTbfQopt      = 2*SizeofTcRateSpec + 0x0c
+	SizeofTcHtbCopt      = 2*SizeofTcRateSpec + 0x14
+	SizeofTcHtbGlob      = 0x14
+	SizeofTcU32Key       = 0x10
+	SizeofTcU32Sel       = 0x10 // without keys
+	SizeofTcGen          = 0x14
+	SizeofTcMirred       = SizeofTcGen + 0x08
+	SizeofTcPolice       = 2*SizeofTcRateSpec + 0x20
+)
+
+// struct tcmsg {
+//   unsigned char tcm_family;
+//   unsigned char tcm__pad1;
+//   unsigned short  tcm__pad2;
+//   int   tcm_ifindex;
+//   __u32   tcm_handle;
+//   __u32   tcm_parent;
+//   __u32   tcm_info;
+// };
+
+type TcMsg struct {
+	Family  uint8
+	Pad     [3]byte
+	Ifindex int32
+	Handle  uint32
+	Parent  uint32
+	Info    uint32
+}
+
+func (msg *TcMsg) Len() int {
+	return SizeofTcMsg
+}
+
+func DeserializeTcMsg(b []byte) *TcMsg {
+	return (*TcMsg)(unsafe.Pointer(&b[0:SizeofTcMsg][0]))
+}
+
+func (x *TcMsg) Serialize() []byte {
+	return (*(*[SizeofTcMsg]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tcamsg {
+//   unsigned char tca_family;
+//   unsigned char tca__pad1;
+//   unsigned short  tca__pad2;
+// };
+
+type TcActionMsg struct {
+	Family uint8
+	Pad    [3]byte
+}
+
+func (msg *TcActionMsg) Len() int {
+	return SizeofTcActionMsg
+}
+
+func DeserializeTcActionMsg(b []byte) *TcActionMsg {
+	return (*TcActionMsg)(unsafe.Pointer(&b[0:SizeofTcActionMsg][0]))
+}
+
+func (x *TcActionMsg) Serialize() []byte {
+	return (*(*[SizeofTcActionMsg]byte)(unsafe.Pointer(x)))[:]
+}
+
+const (
+	TC_PRIO_MAX = 15
+)
+
+// struct tc_prio_qopt {
+// 	int bands;      /* Number of bands */
+// 	__u8  priomap[TC_PRIO_MAX+1]; /* Map: logical priority -> PRIO band */
+// };
+
+type TcPrioMap struct {
+	Bands   int32
+	Priomap [TC_PRIO_MAX + 1]uint8
+}
+
+func (msg *TcPrioMap) Len() int {
+	return SizeofTcPrioMap
+}
+
+func DeserializeTcPrioMap(b []byte) *TcPrioMap {
+	return (*TcPrioMap)(unsafe.Pointer(&b[0:SizeofTcPrioMap][0]))
+}
+
+func (x *TcPrioMap) Serialize() []byte {
+	return (*(*[SizeofTcPrioMap]byte)(unsafe.Pointer(x)))[:]
+}
+
+const (
+	TCA_TBF_UNSPEC = iota
+	TCA_TBF_PARMS
+	TCA_TBF_RTAB
+	TCA_TBF_PTAB
+	TCA_TBF_RATE64
+	TCA_TBF_PRATE64
+	TCA_TBF_BURST
+	TCA_TBF_PBURST
+	TCA_TBF_MAX = TCA_TBF_PBURST
+)
+
+// struct tc_ratespec {
+//   unsigned char cell_log;
+//   __u8    linklayer; /* lower 4 bits */
+//   unsigned short  overhead;
+//   short   cell_align;
+//   unsigned short  mpu;
+//   __u32   rate;
+// };
+
+type TcRateSpec struct {
+	CellLog   uint8
+	Linklayer uint8
+	Overhead  uint16
+	CellAlign int16
+	Mpu       uint16
+	Rate      uint32
+}
+
+func (msg *TcRateSpec) Len() int {
+	return SizeofTcRateSpec
+}
+
+func DeserializeTcRateSpec(b []byte) *TcRateSpec {
+	return (*TcRateSpec)(unsafe.Pointer(&b[0:SizeofTcRateSpec][0]))
+}
+
+func (x *TcRateSpec) Serialize() []byte {
+	return (*(*[SizeofTcRateSpec]byte)(unsafe.Pointer(x)))[:]
+}
+
+/**
+* NETEM
+ */
+
+const (
+	TCA_NETEM_UNSPEC = iota
+	TCA_NETEM_CORR
+	TCA_NETEM_DELAY_DIST
+	TCA_NETEM_REORDER
+	TCA_NETEM_CORRUPT
+	TCA_NETEM_LOSS
+	TCA_NETEM_RATE
+	TCA_NETEM_ECN
+	TCA_NETEM_RATE64
+	TCA_NETEM_MAX = TCA_NETEM_RATE64
+)
+
+// struct tc_netem_qopt {
+//	__u32	latency;	/* added delay (us) */
+//	__u32   limit;		/* fifo limit (packets) */
+//	__u32	loss;		/* random packet loss (0=none ~0=100%) */
+//	__u32	gap;		/* re-ordering gap (0 for none) */
+//	__u32   duplicate;	/* random packet dup  (0=none ~0=100%) */
+// 	__u32	jitter;		/* random jitter in latency (us) */
+// };
+
+type TcNetemQopt struct {
+	Latency   uint32
+	Limit     uint32
+	Loss      uint32
+	Gap       uint32
+	Duplicate uint32
+	Jitter    uint32
+}
+
+func (msg *TcNetemQopt) Len() int {
+	return SizeofTcNetemQopt
+}
+
+func DeserializeTcNetemQopt(b []byte) *TcNetemQopt {
+	return (*TcNetemQopt)(unsafe.Pointer(&b[0:SizeofTcNetemQopt][0]))
+}
+
+func (x *TcNetemQopt) Serialize() []byte {
+	return (*(*[SizeofTcNetemQopt]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_netem_corr {
+//  __u32   delay_corr; /* delay correlation */
+//  __u32   loss_corr;  /* packet loss correlation */
+//  __u32   dup_corr;   /* duplicate correlation  */
+// };
+
+type TcNetemCorr struct {
+	DelayCorr uint32
+	LossCorr  uint32
+	DupCorr   uint32
+}
+
+func (msg *TcNetemCorr) Len() int {
+	return SizeofTcNetemCorr
+}
+
+func DeserializeTcNetemCorr(b []byte) *TcNetemCorr {
+	return (*TcNetemCorr)(unsafe.Pointer(&b[0:SizeofTcNetemCorr][0]))
+}
+
+func (x *TcNetemCorr) Serialize() []byte {
+	return (*(*[SizeofTcNetemCorr]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_netem_reorder {
+//  __u32   probability;
+//  __u32   correlation;
+// };
+
+type TcNetemReorder struct {
+	Probability uint32
+	Correlation uint32
+}
+
+func (msg *TcNetemReorder) Len() int {
+	return SizeofTcNetemReorder
+}
+
+func DeserializeTcNetemReorder(b []byte) *TcNetemReorder {
+	return (*TcNetemReorder)(unsafe.Pointer(&b[0:SizeofTcNetemReorder][0]))
+}
+
+func (x *TcNetemReorder) Serialize() []byte {
+	return (*(*[SizeofTcNetemReorder]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_netem_corrupt {
+//  __u32   probability;
+//  __u32   correlation;
+// };
+
+type TcNetemCorrupt struct {
+	Probability uint32
+	Correlation uint32
+}
+
+func (msg *TcNetemCorrupt) Len() int {
+	return SizeofTcNetemCorrupt
+}
+
+func DeserializeTcNetemCorrupt(b []byte) *TcNetemCorrupt {
+	return (*TcNetemCorrupt)(unsafe.Pointer(&b[0:SizeofTcNetemCorrupt][0]))
+}
+
+func (x *TcNetemCorrupt) Serialize() []byte {
+	return (*(*[SizeofTcNetemCorrupt]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_tbf_qopt {
+//   struct tc_ratespec rate;
+//   struct tc_ratespec peakrate;
+//   __u32   limit;
+//   __u32   buffer;
+//   __u32   mtu;
+// };
+
+type TcTbfQopt struct {
+	Rate     TcRateSpec
+	Peakrate TcRateSpec
+	Limit    uint32
+	Buffer   uint32
+	Mtu      uint32
+}
+
+func (msg *TcTbfQopt) Len() int {
+	return SizeofTcTbfQopt
+}
+
+func DeserializeTcTbfQopt(b []byte) *TcTbfQopt {
+	return (*TcTbfQopt)(unsafe.Pointer(&b[0:SizeofTcTbfQopt][0]))
+}
+
+func (x *TcTbfQopt) Serialize() []byte {
+	return (*(*[SizeofTcTbfQopt]byte)(unsafe.Pointer(x)))[:]
+}
+
+const (
+	TCA_HTB_UNSPEC = iota
+	TCA_HTB_PARMS
+	TCA_HTB_INIT
+	TCA_HTB_CTAB
+	TCA_HTB_RTAB
+	TCA_HTB_DIRECT_QLEN
+	TCA_HTB_RATE64
+	TCA_HTB_CEIL64
+	TCA_HTB_MAX = TCA_HTB_CEIL64
+)
+
+//struct tc_htb_opt {
+//	struct tc_ratespec	rate;
+//	struct tc_ratespec	ceil;
+//	__u32	buffer;
+//	__u32	cbuffer;
+//	__u32	quantum;
+//	__u32	level;		/* out only */
+//	__u32	prio;
+//};
+
+type TcHtbCopt struct {
+	Rate    TcRateSpec
+	Ceil    TcRateSpec
+	Buffer  uint32
+	Cbuffer uint32
+	Quantum uint32
+	Level   uint32
+	Prio    uint32
+}
+
+func (msg *TcHtbCopt) Len() int {
+	return SizeofTcHtbCopt
+}
+
+func DeserializeTcHtbCopt(b []byte) *TcHtbCopt {
+	return (*TcHtbCopt)(unsafe.Pointer(&b[0:SizeofTcHtbCopt][0]))
+}
+
+func (x *TcHtbCopt) Serialize() []byte {
+	return (*(*[SizeofTcHtbCopt]byte)(unsafe.Pointer(x)))[:]
+}
+
+type TcHtbGlob struct {
+	Version      uint32
+	Rate2Quantum uint32
+	Defcls       uint32
+	Debug        uint32
+	DirectPkts   uint32
+}
+
+func (msg *TcHtbGlob) Len() int {
+	return SizeofTcHtbGlob
+}
+
+func DeserializeTcHtbGlob(b []byte) *TcHtbGlob {
+	return (*TcHtbGlob)(unsafe.Pointer(&b[0:SizeofTcHtbGlob][0]))
+}
+
+func (x *TcHtbGlob) Serialize() []byte {
+	return (*(*[SizeofTcHtbGlob]byte)(unsafe.Pointer(x)))[:]
+}
+
+const (
+	TCA_U32_UNSPEC = iota
+	TCA_U32_CLASSID
+	TCA_U32_HASH
+	TCA_U32_LINK
+	TCA_U32_DIVISOR
+	TCA_U32_SEL
+	TCA_U32_POLICE
+	TCA_U32_ACT
+	TCA_U32_INDEV
+	TCA_U32_PCNT
+	TCA_U32_MARK
+	TCA_U32_MAX = TCA_U32_MARK
+)
+
+// struct tc_u32_key {
+//   __be32    mask;
+//   __be32    val;
+//   int   off;
+//   int   offmask;
+// };
+
+type TcU32Key struct {
+	Mask    uint32 // big endian
+	Val     uint32 // big endian
+	Off     int32
+	OffMask int32
+}
+
+func (msg *TcU32Key) Len() int {
+	return SizeofTcU32Key
+}
+
+func DeserializeTcU32Key(b []byte) *TcU32Key {
+	return (*TcU32Key)(unsafe.Pointer(&b[0:SizeofTcU32Key][0]))
+}
+
+func (x *TcU32Key) Serialize() []byte {
+	return (*(*[SizeofTcU32Key]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_u32_sel {
+//   unsigned char   flags;
+//   unsigned char   offshift;
+//   unsigned char   nkeys;
+//
+//   __be16      offmask;
+//   __u16     off;
+//   short     offoff;
+//
+//   short     hoff;
+//   __be32      hmask;
+//   struct tc_u32_key keys[0];
+// };
+
+const (
+	TC_U32_TERMINAL  = 1 << iota
+	TC_U32_OFFSET    = 1 << iota
+	TC_U32_VAROFFSET = 1 << iota
+	TC_U32_EAT       = 1 << iota
+)
+
+type TcU32Sel struct {
+	Flags    uint8
+	Offshift uint8
+	Nkeys    uint8
+	Pad      uint8
+	Offmask  uint16 // big endian
+	Off      uint16
+	Offoff   int16
+	Hoff     int16
+	Hmask    uint32 // big endian
+	Keys     []TcU32Key
+}
+
+func (msg *TcU32Sel) Len() int {
+	return SizeofTcU32Sel + int(msg.Nkeys)*SizeofTcU32Key
+}
+
+func DeserializeTcU32Sel(b []byte) *TcU32Sel {
+	x := &TcU32Sel{}
+	copy((*(*[SizeofTcU32Sel]byte)(unsafe.Pointer(x)))[:], b)
+	next := SizeofTcU32Sel
+	var i uint8
+	for i = 0; i < x.Nkeys; i++ {
+		x.Keys = append(x.Keys, *DeserializeTcU32Key(b[next:]))
+		next += SizeofTcU32Key
+	}
+	return x
+}
+
+func (x *TcU32Sel) Serialize() []byte {
+	// This can't just unsafe.cast because it must iterate through keys.
+	buf := make([]byte, x.Len())
+	copy(buf, (*(*[SizeofTcU32Sel]byte)(unsafe.Pointer(x)))[:])
+	next := SizeofTcU32Sel
+	for _, key := range x.Keys {
+		keyBuf := key.Serialize()
+		copy(buf[next:], keyBuf)
+		next += SizeofTcU32Key
+	}
+	return buf
+}
+
+type TcGen struct {
+	Index   uint32
+	Capab   uint32
+	Action  int32
+	Refcnt  int32
+	Bindcnt int32
+}
+
+func (msg *TcGen) Len() int {
+	return SizeofTcGen
+}
+
+func DeserializeTcGen(b []byte) *TcGen {
+	return (*TcGen)(unsafe.Pointer(&b[0:SizeofTcGen][0]))
+}
+
+func (x *TcGen) Serialize() []byte {
+	return (*(*[SizeofTcGen]byte)(unsafe.Pointer(x)))[:]
+}
+
+// #define tc_gen \
+//   __u32                 index; \
+//   __u32                 capab; \
+//   int                   action; \
+//   int                   refcnt; \
+//   int                   bindcnt
+
+const (
+	TCA_ACT_GACT = 5
+)
+
+const (
+	TCA_GACT_UNSPEC = iota
+	TCA_GACT_TM
+	TCA_GACT_PARMS
+	TCA_GACT_PROB
+	TCA_GACT_MAX = TCA_GACT_PROB
+)
+
+type TcGact TcGen
+
+const (
+	TCA_ACT_BPF = 13
+)
+
+const (
+	TCA_ACT_BPF_UNSPEC = iota
+	TCA_ACT_BPF_TM
+	TCA_ACT_BPF_PARMS
+	TCA_ACT_BPF_OPS_LEN
+	TCA_ACT_BPF_OPS
+	TCA_ACT_BPF_FD
+	TCA_ACT_BPF_NAME
+	TCA_ACT_BPF_MAX = TCA_ACT_BPF_NAME
+)
+
+const (
+	TCA_BPF_FLAG_ACT_DIRECT uint32 = 1 << iota
+)
+
+const (
+	TCA_BPF_UNSPEC = iota
+	TCA_BPF_ACT
+	TCA_BPF_POLICE
+	TCA_BPF_CLASSID
+	TCA_BPF_OPS_LEN
+	TCA_BPF_OPS
+	TCA_BPF_FD
+	TCA_BPF_NAME
+	TCA_BPF_FLAGS
+	TCA_BPF_MAX = TCA_BPF_FLAGS
+)
+
+type TcBpf TcGen
+
+const (
+	TCA_ACT_MIRRED = 8
+)
+
+const (
+	TCA_MIRRED_UNSPEC = iota
+	TCA_MIRRED_TM
+	TCA_MIRRED_PARMS
+	TCA_MIRRED_MAX = TCA_MIRRED_PARMS
+)
+
+// struct tc_mirred {
+// 	tc_gen;
+// 	int                     eaction;   /* one of IN/EGRESS_MIRROR/REDIR */
+// 	__u32                   ifindex;  /* ifindex of egress port */
+// };
+
+type TcMirred struct {
+	TcGen
+	Eaction int32
+	Ifindex uint32
+}
+
+func (msg *TcMirred) Len() int {
+	return SizeofTcMirred
+}
+
+func DeserializeTcMirred(b []byte) *TcMirred {
+	return (*TcMirred)(unsafe.Pointer(&b[0:SizeofTcMirred][0]))
+}
+
+func (x *TcMirred) Serialize() []byte {
+	return (*(*[SizeofTcMirred]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct tc_police {
+// 	__u32			index;
+// 	int			action;
+// 	__u32			limit;
+// 	__u32			burst;
+// 	__u32			mtu;
+// 	struct tc_ratespec	rate;
+// 	struct tc_ratespec	peakrate;
+// 	int				refcnt;
+// 	int				bindcnt;
+// 	__u32			capab;
+// };
+
+type TcPolice struct {
+	Index    uint32
+	Action   int32
+	Limit    uint32
+	Burst    uint32
+	Mtu      uint32
+	Rate     TcRateSpec
+	PeakRate TcRateSpec
+	Refcnt   int32
+	Bindcnt  int32
+	Capab    uint32
+}
+
+func (msg *TcPolice) Len() int {
+	return SizeofTcPolice
+}
+
+func DeserializeTcPolice(b []byte) *TcPolice {
+	return (*TcPolice)(unsafe.Pointer(&b[0:SizeofTcPolice][0]))
+}
+
+func (x *TcPolice) Serialize() []byte {
+	return (*(*[SizeofTcPolice]byte)(unsafe.Pointer(x)))[:]
+}
+
+const (
+	TCA_FW_UNSPEC = iota
+	TCA_FW_CLASSID
+	TCA_FW_POLICE
+	TCA_FW_INDEV
+	TCA_FW_ACT
+	TCA_FW_MASK
+	TCA_FW_MAX = TCA_FW_MASK
+)
diff --git a/vendor/github.com/vishvananda/netlink/nl/xfrm_linux.go b/vendor/github.com/vishvananda/netlink/nl/xfrm_linux.go
new file mode 100644
index 0000000000..09a2ffa10e
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/xfrm_linux.go
@@ -0,0 +1,296 @@
+package nl
+
+import (
+	"bytes"
+	"net"
+	"unsafe"
+)
+
+// Infinity for packet and byte counts
+const (
+	XFRM_INF = ^uint64(0)
+)
+
+type XfrmMsgType uint8
+
+type XfrmMsg interface {
+	Type() XfrmMsgType
+}
+
+// Message Types
+const (
+	XFRM_MSG_BASE        XfrmMsgType = 0x10
+	XFRM_MSG_NEWSA                   = 0x10
+	XFRM_MSG_DELSA                   = 0x11
+	XFRM_MSG_GETSA                   = 0x12
+	XFRM_MSG_NEWPOLICY               = 0x13
+	XFRM_MSG_DELPOLICY               = 0x14
+	XFRM_MSG_GETPOLICY               = 0x15
+	XFRM_MSG_ALLOCSPI                = 0x16
+	XFRM_MSG_ACQUIRE                 = 0x17
+	XFRM_MSG_EXPIRE                  = 0x18
+	XFRM_MSG_UPDPOLICY               = 0x19
+	XFRM_MSG_UPDSA                   = 0x1a
+	XFRM_MSG_POLEXPIRE               = 0x1b
+	XFRM_MSG_FLUSHSA                 = 0x1c
+	XFRM_MSG_FLUSHPOLICY             = 0x1d
+	XFRM_MSG_NEWAE                   = 0x1e
+	XFRM_MSG_GETAE                   = 0x1f
+	XFRM_MSG_REPORT                  = 0x20
+	XFRM_MSG_MIGRATE                 = 0x21
+	XFRM_MSG_NEWSADINFO              = 0x22
+	XFRM_MSG_GETSADINFO              = 0x23
+	XFRM_MSG_NEWSPDINFO              = 0x24
+	XFRM_MSG_GETSPDINFO              = 0x25
+	XFRM_MSG_MAPPING                 = 0x26
+	XFRM_MSG_MAX                     = 0x26
+	XFRM_NR_MSGTYPES                 = 0x17
+)
+
+// Attribute types
+const (
+	/* Netlink message attributes.  */
+	XFRMA_UNSPEC         = 0x00
+	XFRMA_ALG_AUTH       = 0x01 /* struct xfrm_algo */
+	XFRMA_ALG_CRYPT      = 0x02 /* struct xfrm_algo */
+	XFRMA_ALG_COMP       = 0x03 /* struct xfrm_algo */
+	XFRMA_ENCAP          = 0x04 /* struct xfrm_algo + struct xfrm_encap_tmpl */
+	XFRMA_TMPL           = 0x05 /* 1 or more struct xfrm_user_tmpl */
+	XFRMA_SA             = 0x06 /* struct xfrm_usersa_info  */
+	XFRMA_POLICY         = 0x07 /* struct xfrm_userpolicy_info */
+	XFRMA_SEC_CTX        = 0x08 /* struct xfrm_sec_ctx */
+	XFRMA_LTIME_VAL      = 0x09
+	XFRMA_REPLAY_VAL     = 0x0a
+	XFRMA_REPLAY_THRESH  = 0x0b
+	XFRMA_ETIMER_THRESH  = 0x0c
+	XFRMA_SRCADDR        = 0x0d /* xfrm_address_t */
+	XFRMA_COADDR         = 0x0e /* xfrm_address_t */
+	XFRMA_LASTUSED       = 0x0f /* unsigned long  */
+	XFRMA_POLICY_TYPE    = 0x10 /* struct xfrm_userpolicy_type */
+	XFRMA_MIGRATE        = 0x11
+	XFRMA_ALG_AEAD       = 0x12 /* struct xfrm_algo_aead */
+	XFRMA_KMADDRESS      = 0x13 /* struct xfrm_user_kmaddress */
+	XFRMA_ALG_AUTH_TRUNC = 0x14 /* struct xfrm_algo_auth */
+	XFRMA_MARK           = 0x15 /* struct xfrm_mark */
+	XFRMA_TFCPAD         = 0x16 /* __u32 */
+	XFRMA_REPLAY_ESN_VAL = 0x17 /* struct xfrm_replay_esn */
+	XFRMA_SA_EXTRA_FLAGS = 0x18 /* __u32 */
+	XFRMA_MAX            = 0x18
+)
+
+const (
+	SizeofXfrmAddress     = 0x10
+	SizeofXfrmSelector    = 0x38
+	SizeofXfrmLifetimeCfg = 0x40
+	SizeofXfrmLifetimeCur = 0x20
+	SizeofXfrmId          = 0x18
+	SizeofXfrmMark        = 0x08
+)
+
+// Netlink groups
+const (
+	XFRMNLGRP_NONE    = 0x0
+	XFRMNLGRP_ACQUIRE = 0x1
+	XFRMNLGRP_EXPIRE  = 0x2
+	XFRMNLGRP_SA      = 0x3
+	XFRMNLGRP_POLICY  = 0x4
+	XFRMNLGRP_AEVENTS = 0x5
+	XFRMNLGRP_REPORT  = 0x6
+	XFRMNLGRP_MIGRATE = 0x7
+	XFRMNLGRP_MAPPING = 0x8
+	__XFRMNLGRP_MAX   = 0x9
+)
+
+// typedef union {
+//   __be32    a4;
+//   __be32    a6[4];
+// } xfrm_address_t;
+
+type XfrmAddress [SizeofXfrmAddress]byte
+
+func (x *XfrmAddress) ToIP() net.IP {
+	var empty = [12]byte{}
+	ip := make(net.IP, net.IPv6len)
+	if bytes.Equal(x[4:16], empty[:]) {
+		ip[10] = 0xff
+		ip[11] = 0xff
+		copy(ip[12:16], x[0:4])
+	} else {
+		copy(ip[:], x[:])
+	}
+	return ip
+}
+
+func (x *XfrmAddress) ToIPNet(prefixlen uint8) *net.IPNet {
+	ip := x.ToIP()
+	if GetIPFamily(ip) == FAMILY_V4 {
+		return &net.IPNet{IP: ip, Mask: net.CIDRMask(int(prefixlen), 32)}
+	}
+	return &net.IPNet{IP: ip, Mask: net.CIDRMask(int(prefixlen), 128)}
+}
+
+func (x *XfrmAddress) FromIP(ip net.IP) {
+	var empty = [16]byte{}
+	if len(ip) < net.IPv4len {
+		copy(x[4:16], empty[:])
+	} else if GetIPFamily(ip) == FAMILY_V4 {
+		copy(x[0:4], ip.To4()[0:4])
+		copy(x[4:16], empty[:12])
+	} else {
+		copy(x[0:16], ip.To16()[0:16])
+	}
+}
+
+func DeserializeXfrmAddress(b []byte) *XfrmAddress {
+	return (*XfrmAddress)(unsafe.Pointer(&b[0:SizeofXfrmAddress][0]))
+}
+
+func (x *XfrmAddress) Serialize() []byte {
+	return (*(*[SizeofXfrmAddress]byte)(unsafe.Pointer(x)))[:]
+}
+
+// struct xfrm_selector {
+//   xfrm_address_t  daddr;
+//   xfrm_address_t  saddr;
+//   __be16  dport;
+//   __be16  dport_mask;
+//   __be16  sport;
+//   __be16  sport_mask;
+//   __u16 family;
+//   __u8  prefixlen_d;
+//   __u8  prefixlen_s;
+//   __u8  proto;
+//   int ifindex;
+//   __kernel_uid32_t  user;
+// };
+
+type XfrmSelector struct {
+	Daddr      XfrmAddress
+	Saddr      XfrmAddress
+	Dport      uint16 // big endian
+	DportMask  uint16 // big endian
+	Sport      uint16 // big endian
+	SportMask  uint16 // big endian
+	Family     uint16
+	PrefixlenD uint8
+	PrefixlenS uint8
+	Proto      uint8
+	Pad        [3]byte
+	Ifindex    int32
+	User       uint32
+}
+
+func (msg *XfrmSelector) Len() int {
+	return SizeofXfrmSelector
+}
+
+func DeserializeXfrmSelector(b []byte) *XfrmSelector {
+	return (*XfrmSelector)(unsafe.Pointer(&b[0:SizeofXfrmSelector][0]))
+}
+
+func (msg *XfrmSelector) Serialize() []byte {
+	return (*(*[SizeofXfrmSelector]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_lifetime_cfg {
+//   __u64 soft_byte_limit;
+//   __u64 hard_byte_limit;
+//   __u64 soft_packet_limit;
+//   __u64 hard_packet_limit;
+//   __u64 soft_add_expires_seconds;
+//   __u64 hard_add_expires_seconds;
+//   __u64 soft_use_expires_seconds;
+//   __u64 hard_use_expires_seconds;
+// };
+//
+
+type XfrmLifetimeCfg struct {
+	SoftByteLimit         uint64
+	HardByteLimit         uint64
+	SoftPacketLimit       uint64
+	HardPacketLimit       uint64
+	SoftAddExpiresSeconds uint64
+	HardAddExpiresSeconds uint64
+	SoftUseExpiresSeconds uint64
+	HardUseExpiresSeconds uint64
+}
+
+func (msg *XfrmLifetimeCfg) Len() int {
+	return SizeofXfrmLifetimeCfg
+}
+
+func DeserializeXfrmLifetimeCfg(b []byte) *XfrmLifetimeCfg {
+	return (*XfrmLifetimeCfg)(unsafe.Pointer(&b[0:SizeofXfrmLifetimeCfg][0]))
+}
+
+func (msg *XfrmLifetimeCfg) Serialize() []byte {
+	return (*(*[SizeofXfrmLifetimeCfg]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_lifetime_cur {
+//   __u64 bytes;
+//   __u64 packets;
+//   __u64 add_time;
+//   __u64 use_time;
+// };
+
+type XfrmLifetimeCur struct {
+	Bytes   uint64
+	Packets uint64
+	AddTime uint64
+	UseTime uint64
+}
+
+func (msg *XfrmLifetimeCur) Len() int {
+	return SizeofXfrmLifetimeCur
+}
+
+func DeserializeXfrmLifetimeCur(b []byte) *XfrmLifetimeCur {
+	return (*XfrmLifetimeCur)(unsafe.Pointer(&b[0:SizeofXfrmLifetimeCur][0]))
+}
+
+func (msg *XfrmLifetimeCur) Serialize() []byte {
+	return (*(*[SizeofXfrmLifetimeCur]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_id {
+//   xfrm_address_t  daddr;
+//   __be32    spi;
+//   __u8    proto;
+// };
+
+type XfrmId struct {
+	Daddr XfrmAddress
+	Spi   uint32 // big endian
+	Proto uint8
+	Pad   [3]byte
+}
+
+func (msg *XfrmId) Len() int {
+	return SizeofXfrmId
+}
+
+func DeserializeXfrmId(b []byte) *XfrmId {
+	return (*XfrmId)(unsafe.Pointer(&b[0:SizeofXfrmId][0]))
+}
+
+func (msg *XfrmId) Serialize() []byte {
+	return (*(*[SizeofXfrmId]byte)(unsafe.Pointer(msg)))[:]
+}
+
+type XfrmMark struct {
+	Value uint32
+	Mask  uint32
+}
+
+func (msg *XfrmMark) Len() int {
+	return SizeofXfrmMark
+}
+
+func DeserializeXfrmMark(b []byte) *XfrmMark {
+	return (*XfrmMark)(unsafe.Pointer(&b[0:SizeofXfrmMark][0]))
+}
+
+func (msg *XfrmMark) Serialize() []byte {
+	return (*(*[SizeofXfrmMark]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/xfrm_monitor_linux.go b/vendor/github.com/vishvananda/netlink/nl/xfrm_monitor_linux.go
new file mode 100644
index 0000000000..715df4cc5f
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/xfrm_monitor_linux.go
@@ -0,0 +1,32 @@
+package nl
+
+import (
+	"unsafe"
+)
+
+const (
+	SizeofXfrmUserExpire = 0xe8
+)
+
+// struct xfrm_user_expire {
+// 	struct xfrm_usersa_info		state;
+// 	__u8				hard;
+// };
+
+type XfrmUserExpire struct {
+	XfrmUsersaInfo XfrmUsersaInfo
+	Hard           uint8
+	Pad            [7]byte
+}
+
+func (msg *XfrmUserExpire) Len() int {
+	return SizeofXfrmUserExpire
+}
+
+func DeserializeXfrmUserExpire(b []byte) *XfrmUserExpire {
+	return (*XfrmUserExpire)(unsafe.Pointer(&b[0:SizeofXfrmUserExpire][0]))
+}
+
+func (msg *XfrmUserExpire) Serialize() []byte {
+	return (*(*[SizeofXfrmUserExpire]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/xfrm_policy_linux.go b/vendor/github.com/vishvananda/netlink/nl/xfrm_policy_linux.go
new file mode 100644
index 0000000000..66f7e03d2d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/xfrm_policy_linux.go
@@ -0,0 +1,119 @@
+package nl
+
+import (
+	"unsafe"
+)
+
+const (
+	SizeofXfrmUserpolicyId   = 0x40
+	SizeofXfrmUserpolicyInfo = 0xa8
+	SizeofXfrmUserTmpl       = 0x40
+)
+
+// struct xfrm_userpolicy_id {
+//   struct xfrm_selector    sel;
+//   __u32       index;
+//   __u8        dir;
+// };
+//
+
+type XfrmUserpolicyId struct {
+	Sel   XfrmSelector
+	Index uint32
+	Dir   uint8
+	Pad   [3]byte
+}
+
+func (msg *XfrmUserpolicyId) Len() int {
+	return SizeofXfrmUserpolicyId
+}
+
+func DeserializeXfrmUserpolicyId(b []byte) *XfrmUserpolicyId {
+	return (*XfrmUserpolicyId)(unsafe.Pointer(&b[0:SizeofXfrmUserpolicyId][0]))
+}
+
+func (msg *XfrmUserpolicyId) Serialize() []byte {
+	return (*(*[SizeofXfrmUserpolicyId]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_userpolicy_info {
+//   struct xfrm_selector    sel;
+//   struct xfrm_lifetime_cfg  lft;
+//   struct xfrm_lifetime_cur  curlft;
+//   __u32       priority;
+//   __u32       index;
+//   __u8        dir;
+//   __u8        action;
+// #define XFRM_POLICY_ALLOW 0
+// #define XFRM_POLICY_BLOCK 1
+//   __u8        flags;
+// #define XFRM_POLICY_LOCALOK 1 /* Allow user to override global policy */
+//   /* Automatically expand selector to include matching ICMP payloads. */
+// #define XFRM_POLICY_ICMP  2
+//   __u8        share;
+// };
+
+type XfrmUserpolicyInfo struct {
+	Sel      XfrmSelector
+	Lft      XfrmLifetimeCfg
+	Curlft   XfrmLifetimeCur
+	Priority uint32
+	Index    uint32
+	Dir      uint8
+	Action   uint8
+	Flags    uint8
+	Share    uint8
+	Pad      [4]byte
+}
+
+func (msg *XfrmUserpolicyInfo) Len() int {
+	return SizeofXfrmUserpolicyInfo
+}
+
+func DeserializeXfrmUserpolicyInfo(b []byte) *XfrmUserpolicyInfo {
+	return (*XfrmUserpolicyInfo)(unsafe.Pointer(&b[0:SizeofXfrmUserpolicyInfo][0]))
+}
+
+func (msg *XfrmUserpolicyInfo) Serialize() []byte {
+	return (*(*[SizeofXfrmUserpolicyInfo]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_user_tmpl {
+//   struct xfrm_id    id;
+//   __u16     family;
+//   xfrm_address_t    saddr;
+//   __u32     reqid;
+//   __u8      mode;
+//   __u8      share;
+//   __u8      optional;
+//   __u32     aalgos;
+//   __u32     ealgos;
+//   __u32     calgos;
+// }
+
+type XfrmUserTmpl struct {
+	XfrmId   XfrmId
+	Family   uint16
+	Pad1     [2]byte
+	Saddr    XfrmAddress
+	Reqid    uint32
+	Mode     uint8
+	Share    uint8
+	Optional uint8
+	Pad2     byte
+	Aalgos   uint32
+	Ealgos   uint32
+	Calgos   uint32
+}
+
+func (msg *XfrmUserTmpl) Len() int {
+	return SizeofXfrmUserTmpl
+}
+
+func DeserializeXfrmUserTmpl(b []byte) *XfrmUserTmpl {
+	return (*XfrmUserTmpl)(unsafe.Pointer(&b[0:SizeofXfrmUserTmpl][0]))
+}
+
+func (msg *XfrmUserTmpl) Serialize() []byte {
+	return (*(*[SizeofXfrmUserTmpl]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/nl/xfrm_state_linux.go b/vendor/github.com/vishvananda/netlink/nl/xfrm_state_linux.go
new file mode 100644
index 0000000000..b6290fd544
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/nl/xfrm_state_linux.go
@@ -0,0 +1,334 @@
+package nl
+
+import (
+	"unsafe"
+)
+
+const (
+	SizeofXfrmUsersaId       = 0x18
+	SizeofXfrmStats          = 0x0c
+	SizeofXfrmUsersaInfo     = 0xe0
+	SizeofXfrmUserSpiInfo    = 0xe8
+	SizeofXfrmAlgo           = 0x44
+	SizeofXfrmAlgoAuth       = 0x48
+	SizeofXfrmAlgoAEAD       = 0x48
+	SizeofXfrmEncapTmpl      = 0x18
+	SizeofXfrmUsersaFlush    = 0x8
+	SizeofXfrmReplayStateEsn = 0x18
+)
+
+const (
+	XFRM_STATE_NOECN      = 1
+	XFRM_STATE_DECAP_DSCP = 2
+	XFRM_STATE_NOPMTUDISC = 4
+	XFRM_STATE_WILDRECV   = 8
+	XFRM_STATE_ICMP       = 16
+	XFRM_STATE_AF_UNSPEC  = 32
+	XFRM_STATE_ALIGN4     = 64
+	XFRM_STATE_ESN        = 128
+)
+
+// struct xfrm_usersa_id {
+//   xfrm_address_t      daddr;
+//   __be32        spi;
+//   __u16       family;
+//   __u8        proto;
+// };
+
+type XfrmUsersaId struct {
+	Daddr  XfrmAddress
+	Spi    uint32 // big endian
+	Family uint16
+	Proto  uint8
+	Pad    byte
+}
+
+func (msg *XfrmUsersaId) Len() int {
+	return SizeofXfrmUsersaId
+}
+
+func DeserializeXfrmUsersaId(b []byte) *XfrmUsersaId {
+	return (*XfrmUsersaId)(unsafe.Pointer(&b[0:SizeofXfrmUsersaId][0]))
+}
+
+func (msg *XfrmUsersaId) Serialize() []byte {
+	return (*(*[SizeofXfrmUsersaId]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_stats {
+//   __u32 replay_window;
+//   __u32 replay;
+//   __u32 integrity_failed;
+// };
+
+type XfrmStats struct {
+	ReplayWindow    uint32
+	Replay          uint32
+	IntegrityFailed uint32
+}
+
+func (msg *XfrmStats) Len() int {
+	return SizeofXfrmStats
+}
+
+func DeserializeXfrmStats(b []byte) *XfrmStats {
+	return (*XfrmStats)(unsafe.Pointer(&b[0:SizeofXfrmStats][0]))
+}
+
+func (msg *XfrmStats) Serialize() []byte {
+	return (*(*[SizeofXfrmStats]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_usersa_info {
+//   struct xfrm_selector    sel;
+//   struct xfrm_id      id;
+//   xfrm_address_t      saddr;
+//   struct xfrm_lifetime_cfg  lft;
+//   struct xfrm_lifetime_cur  curlft;
+//   struct xfrm_stats   stats;
+//   __u32       seq;
+//   __u32       reqid;
+//   __u16       family;
+//   __u8        mode;   /* XFRM_MODE_xxx */
+//   __u8        replay_window;
+//   __u8        flags;
+// #define XFRM_STATE_NOECN  1
+// #define XFRM_STATE_DECAP_DSCP 2
+// #define XFRM_STATE_NOPMTUDISC 4
+// #define XFRM_STATE_WILDRECV 8
+// #define XFRM_STATE_ICMP   16
+// #define XFRM_STATE_AF_UNSPEC  32
+// #define XFRM_STATE_ALIGN4 64
+// #define XFRM_STATE_ESN    128
+// };
+//
+// #define XFRM_SA_XFLAG_DONT_ENCAP_DSCP 1
+//
+
+type XfrmUsersaInfo struct {
+	Sel          XfrmSelector
+	Id           XfrmId
+	Saddr        XfrmAddress
+	Lft          XfrmLifetimeCfg
+	Curlft       XfrmLifetimeCur
+	Stats        XfrmStats
+	Seq          uint32
+	Reqid        uint32
+	Family       uint16
+	Mode         uint8
+	ReplayWindow uint8
+	Flags        uint8
+	Pad          [7]byte
+}
+
+func (msg *XfrmUsersaInfo) Len() int {
+	return SizeofXfrmUsersaInfo
+}
+
+func DeserializeXfrmUsersaInfo(b []byte) *XfrmUsersaInfo {
+	return (*XfrmUsersaInfo)(unsafe.Pointer(&b[0:SizeofXfrmUsersaInfo][0]))
+}
+
+func (msg *XfrmUsersaInfo) Serialize() []byte {
+	return (*(*[SizeofXfrmUsersaInfo]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_userspi_info {
+// 	struct xfrm_usersa_info		info;
+// 	__u32				min;
+// 	__u32				max;
+// };
+
+type XfrmUserSpiInfo struct {
+	XfrmUsersaInfo XfrmUsersaInfo
+	Min            uint32
+	Max            uint32
+}
+
+func (msg *XfrmUserSpiInfo) Len() int {
+	return SizeofXfrmUserSpiInfo
+}
+
+func DeserializeXfrmUserSpiInfo(b []byte) *XfrmUserSpiInfo {
+	return (*XfrmUserSpiInfo)(unsafe.Pointer(&b[0:SizeofXfrmUserSpiInfo][0]))
+}
+
+func (msg *XfrmUserSpiInfo) Serialize() []byte {
+	return (*(*[SizeofXfrmUserSpiInfo]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_algo {
+//   char    alg_name[64];
+//   unsigned int  alg_key_len;    /* in bits */
+//   char    alg_key[0];
+// };
+
+type XfrmAlgo struct {
+	AlgName   [64]byte
+	AlgKeyLen uint32
+	AlgKey    []byte
+}
+
+func (msg *XfrmAlgo) Len() int {
+	return SizeofXfrmAlgo + int(msg.AlgKeyLen/8)
+}
+
+func DeserializeXfrmAlgo(b []byte) *XfrmAlgo {
+	ret := XfrmAlgo{}
+	copy(ret.AlgName[:], b[0:64])
+	ret.AlgKeyLen = *(*uint32)(unsafe.Pointer(&b[64]))
+	ret.AlgKey = b[68:ret.Len()]
+	return &ret
+}
+
+func (msg *XfrmAlgo) Serialize() []byte {
+	b := make([]byte, msg.Len())
+	copy(b[0:64], msg.AlgName[:])
+	copy(b[64:68], (*(*[4]byte)(unsafe.Pointer(&msg.AlgKeyLen)))[:])
+	copy(b[68:msg.Len()], msg.AlgKey[:])
+	return b
+}
+
+// struct xfrm_algo_auth {
+//   char    alg_name[64];
+//   unsigned int  alg_key_len;    /* in bits */
+//   unsigned int  alg_trunc_len;  /* in bits */
+//   char    alg_key[0];
+// };
+
+type XfrmAlgoAuth struct {
+	AlgName     [64]byte
+	AlgKeyLen   uint32
+	AlgTruncLen uint32
+	AlgKey      []byte
+}
+
+func (msg *XfrmAlgoAuth) Len() int {
+	return SizeofXfrmAlgoAuth + int(msg.AlgKeyLen/8)
+}
+
+func DeserializeXfrmAlgoAuth(b []byte) *XfrmAlgoAuth {
+	ret := XfrmAlgoAuth{}
+	copy(ret.AlgName[:], b[0:64])
+	ret.AlgKeyLen = *(*uint32)(unsafe.Pointer(&b[64]))
+	ret.AlgTruncLen = *(*uint32)(unsafe.Pointer(&b[68]))
+	ret.AlgKey = b[72:ret.Len()]
+	return &ret
+}
+
+func (msg *XfrmAlgoAuth) Serialize() []byte {
+	b := make([]byte, msg.Len())
+	copy(b[0:64], msg.AlgName[:])
+	copy(b[64:68], (*(*[4]byte)(unsafe.Pointer(&msg.AlgKeyLen)))[:])
+	copy(b[68:72], (*(*[4]byte)(unsafe.Pointer(&msg.AlgTruncLen)))[:])
+	copy(b[72:msg.Len()], msg.AlgKey[:])
+	return b
+}
+
+// struct xfrm_algo_aead {
+//   char    alg_name[64];
+//   unsigned int  alg_key_len;  /* in bits */
+//   unsigned int  alg_icv_len;  /* in bits */
+//   char    alg_key[0];
+// }
+
+type XfrmAlgoAEAD struct {
+	AlgName   [64]byte
+	AlgKeyLen uint32
+	AlgICVLen uint32
+	AlgKey    []byte
+}
+
+func (msg *XfrmAlgoAEAD) Len() int {
+	return SizeofXfrmAlgoAEAD + int(msg.AlgKeyLen/8)
+}
+
+func DeserializeXfrmAlgoAEAD(b []byte) *XfrmAlgoAEAD {
+	ret := XfrmAlgoAEAD{}
+	copy(ret.AlgName[:], b[0:64])
+	ret.AlgKeyLen = *(*uint32)(unsafe.Pointer(&b[64]))
+	ret.AlgICVLen = *(*uint32)(unsafe.Pointer(&b[68]))
+	ret.AlgKey = b[72:ret.Len()]
+	return &ret
+}
+
+func (msg *XfrmAlgoAEAD) Serialize() []byte {
+	b := make([]byte, msg.Len())
+	copy(b[0:64], msg.AlgName[:])
+	copy(b[64:68], (*(*[4]byte)(unsafe.Pointer(&msg.AlgKeyLen)))[:])
+	copy(b[68:72], (*(*[4]byte)(unsafe.Pointer(&msg.AlgICVLen)))[:])
+	copy(b[72:msg.Len()], msg.AlgKey[:])
+	return b
+}
+
+// struct xfrm_encap_tmpl {
+//   __u16   encap_type;
+//   __be16    encap_sport;
+//   __be16    encap_dport;
+//   xfrm_address_t  encap_oa;
+// };
+
+type XfrmEncapTmpl struct {
+	EncapType  uint16
+	EncapSport uint16 // big endian
+	EncapDport uint16 // big endian
+	Pad        [2]byte
+	EncapOa    XfrmAddress
+}
+
+func (msg *XfrmEncapTmpl) Len() int {
+	return SizeofXfrmEncapTmpl
+}
+
+func DeserializeXfrmEncapTmpl(b []byte) *XfrmEncapTmpl {
+	return (*XfrmEncapTmpl)(unsafe.Pointer(&b[0:SizeofXfrmEncapTmpl][0]))
+}
+
+func (msg *XfrmEncapTmpl) Serialize() []byte {
+	return (*(*[SizeofXfrmEncapTmpl]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_usersa_flush {
+//    __u8 proto;
+// };
+
+type XfrmUsersaFlush struct {
+	Proto uint8
+}
+
+func (msg *XfrmUsersaFlush) Len() int {
+	return SizeofXfrmUsersaFlush
+}
+
+func DeserializeXfrmUsersaFlush(b []byte) *XfrmUsersaFlush {
+	return (*XfrmUsersaFlush)(unsafe.Pointer(&b[0:SizeofXfrmUsersaFlush][0]))
+}
+
+func (msg *XfrmUsersaFlush) Serialize() []byte {
+	return (*(*[SizeofXfrmUsersaFlush]byte)(unsafe.Pointer(msg)))[:]
+}
+
+// struct xfrm_replay_state_esn {
+//     unsigned int    bmp_len;
+//     __u32           oseq;
+//     __u32           seq;
+//     __u32           oseq_hi;
+//     __u32           seq_hi;
+//     __u32           replay_window;
+//     __u32           bmp[0];
+// };
+
+type XfrmReplayStateEsn struct {
+	BmpLen       uint32
+	OSeq         uint32
+	Seq          uint32
+	OSeqHi       uint32
+	SeqHi        uint32
+	ReplayWindow uint32
+	Bmp          []uint32
+}
+
+func (msg *XfrmReplayStateEsn) Serialize() []byte {
+	// We deliberately do not pass Bmp, as it gets set by the kernel.
+	return (*(*[SizeofXfrmReplayStateEsn]byte)(unsafe.Pointer(msg)))[:]
+}
diff --git a/vendor/github.com/vishvananda/netlink/order.go b/vendor/github.com/vishvananda/netlink/order.go
new file mode 100644
index 0000000000..e28e153a1b
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/order.go
@@ -0,0 +1,32 @@
+package netlink
+
+import (
+	"encoding/binary"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+var (
+	native       = nl.NativeEndian()
+	networkOrder = binary.BigEndian
+)
+
+func htonl(val uint32) []byte {
+	bytes := make([]byte, 4)
+	binary.BigEndian.PutUint32(bytes, val)
+	return bytes
+}
+
+func htons(val uint16) []byte {
+	bytes := make([]byte, 2)
+	binary.BigEndian.PutUint16(bytes, val)
+	return bytes
+}
+
+func ntohl(buf []byte) uint32 {
+	return binary.BigEndian.Uint32(buf)
+}
+
+func ntohs(buf []byte) uint16 {
+	return binary.BigEndian.Uint16(buf)
+}
diff --git a/vendor/github.com/vishvananda/netlink/protinfo.go b/vendor/github.com/vishvananda/netlink/protinfo.go
new file mode 100644
index 0000000000..0087c4438b
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/protinfo.go
@@ -0,0 +1,58 @@
+package netlink
+
+import (
+	"strings"
+)
+
+// Protinfo represents bridge flags from netlink.
+type Protinfo struct {
+	Hairpin      bool
+	Guard        bool
+	FastLeave    bool
+	RootBlock    bool
+	Learning     bool
+	Flood        bool
+	ProxyArp     bool
+	ProxyArpWiFi bool
+}
+
+// String returns a list of enabled flags
+func (prot *Protinfo) String() string {
+	var boolStrings []string
+	if prot.Hairpin {
+		boolStrings = append(boolStrings, "Hairpin")
+	}
+	if prot.Guard {
+		boolStrings = append(boolStrings, "Guard")
+	}
+	if prot.FastLeave {
+		boolStrings = append(boolStrings, "FastLeave")
+	}
+	if prot.RootBlock {
+		boolStrings = append(boolStrings, "RootBlock")
+	}
+	if prot.Learning {
+		boolStrings = append(boolStrings, "Learning")
+	}
+	if prot.Flood {
+		boolStrings = append(boolStrings, "Flood")
+	}
+	if prot.ProxyArp {
+		boolStrings = append(boolStrings, "ProxyArp")
+	}
+	if prot.ProxyArpWiFi {
+		boolStrings = append(boolStrings, "ProxyArpWiFi")
+	}
+	return strings.Join(boolStrings, " ")
+}
+
+func boolToByte(x bool) []byte {
+	if x {
+		return []byte{1}
+	}
+	return []byte{0}
+}
+
+func byteToBool(x byte) bool {
+	return uint8(x) != 0
+}
diff --git a/vendor/github.com/vishvananda/netlink/protinfo_linux.go b/vendor/github.com/vishvananda/netlink/protinfo_linux.go
new file mode 100644
index 0000000000..10dd0d5335
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/protinfo_linux.go
@@ -0,0 +1,74 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+func LinkGetProtinfo(link Link) (Protinfo, error) {
+	return pkgHandle.LinkGetProtinfo(link)
+}
+
+func (h *Handle) LinkGetProtinfo(link Link) (Protinfo, error) {
+	base := link.Attrs()
+	h.ensureIndex(base)
+	var pi Protinfo
+	req := h.newNetlinkRequest(syscall.RTM_GETLINK, syscall.NLM_F_DUMP)
+	msg := nl.NewIfInfomsg(syscall.AF_BRIDGE)
+	req.AddData(msg)
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	if err != nil {
+		return pi, err
+	}
+
+	for _, m := range msgs {
+		ans := nl.DeserializeIfInfomsg(m)
+		if int(ans.Index) != base.Index {
+			continue
+		}
+		attrs, err := nl.ParseRouteAttr(m[ans.Len():])
+		if err != nil {
+			return pi, err
+		}
+		for _, attr := range attrs {
+			if attr.Attr.Type != syscall.IFLA_PROTINFO|syscall.NLA_F_NESTED {
+				continue
+			}
+			infos, err := nl.ParseRouteAttr(attr.Value)
+			if err != nil {
+				return pi, err
+			}
+			pi = *parseProtinfo(infos)
+
+			return pi, nil
+		}
+	}
+	return pi, fmt.Errorf("Device with index %d not found", base.Index)
+}
+
+func parseProtinfo(infos []syscall.NetlinkRouteAttr) *Protinfo {
+	var pi Protinfo
+	for _, info := range infos {
+		switch info.Attr.Type {
+		case nl.IFLA_BRPORT_MODE:
+			pi.Hairpin = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_GUARD:
+			pi.Guard = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_FAST_LEAVE:
+			pi.FastLeave = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_PROTECT:
+			pi.RootBlock = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_LEARNING:
+			pi.Learning = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_UNICAST_FLOOD:
+			pi.Flood = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_PROXYARP:
+			pi.ProxyArp = byteToBool(info.Value[0])
+		case nl.IFLA_BRPORT_PROXYARP_WIFI:
+			pi.ProxyArpWiFi = byteToBool(info.Value[0])
+		}
+	}
+	return &pi
+}
diff --git a/vendor/github.com/vishvananda/netlink/qdisc.go b/vendor/github.com/vishvananda/netlink/qdisc.go
new file mode 100644
index 0000000000..0ca86ebe89
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/qdisc.go
@@ -0,0 +1,232 @@
+package netlink
+
+import (
+	"fmt"
+	"math"
+)
+
+const (
+	HANDLE_NONE      = 0
+	HANDLE_INGRESS   = 0xFFFFFFF1
+	HANDLE_CLSACT    = HANDLE_INGRESS
+	HANDLE_ROOT      = 0xFFFFFFFF
+	PRIORITY_MAP_LEN = 16
+)
+const (
+	HANDLE_MIN_INGRESS = 0xFFFFFFF2
+	HANDLE_MIN_EGRESS  = 0xFFFFFFF3
+)
+
+type Qdisc interface {
+	Attrs() *QdiscAttrs
+	Type() string
+}
+
+// QdiscAttrs represents a netlink qdisc. A qdisc is associated with a link,
+// has a handle, a parent and a refcnt. The root qdisc of a device should
+// have parent == HANDLE_ROOT.
+type QdiscAttrs struct {
+	LinkIndex int
+	Handle    uint32
+	Parent    uint32
+	Refcnt    uint32 // read only
+}
+
+func (q QdiscAttrs) String() string {
+	return fmt.Sprintf("{LinkIndex: %d, Handle: %s, Parent: %s, Refcnt: %d}", q.LinkIndex, HandleStr(q.Handle), HandleStr(q.Parent), q.Refcnt)
+}
+
+func MakeHandle(major, minor uint16) uint32 {
+	return (uint32(major) << 16) | uint32(minor)
+}
+
+func MajorMinor(handle uint32) (uint16, uint16) {
+	return uint16((handle & 0xFFFF0000) >> 16), uint16(handle & 0x0000FFFFF)
+}
+
+func HandleStr(handle uint32) string {
+	switch handle {
+	case HANDLE_NONE:
+		return "none"
+	case HANDLE_INGRESS:
+		return "ingress"
+	case HANDLE_ROOT:
+		return "root"
+	default:
+		major, minor := MajorMinor(handle)
+		return fmt.Sprintf("%x:%x", major, minor)
+	}
+}
+
+func Percentage2u32(percentage float32) uint32 {
+	// FIXME this is most likely not the best way to convert from % to uint32
+	if percentage == 100 {
+		return math.MaxUint32
+	}
+	return uint32(math.MaxUint32 * (percentage / 100))
+}
+
+// PfifoFast is the default qdisc created by the kernel if one has not
+// been defined for the interface
+type PfifoFast struct {
+	QdiscAttrs
+	Bands       uint8
+	PriorityMap [PRIORITY_MAP_LEN]uint8
+}
+
+func (qdisc *PfifoFast) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *PfifoFast) Type() string {
+	return "pfifo_fast"
+}
+
+// Prio is a basic qdisc that works just like PfifoFast
+type Prio struct {
+	QdiscAttrs
+	Bands       uint8
+	PriorityMap [PRIORITY_MAP_LEN]uint8
+}
+
+func NewPrio(attrs QdiscAttrs) *Prio {
+	return &Prio{
+		QdiscAttrs:  attrs,
+		Bands:       3,
+		PriorityMap: [PRIORITY_MAP_LEN]uint8{1, 2, 2, 2, 1, 2, 0, 0, 1, 1, 1, 1, 1, 1, 1, 1},
+	}
+}
+
+func (qdisc *Prio) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *Prio) Type() string {
+	return "prio"
+}
+
+// Htb is a classful qdisc that rate limits based on tokens
+type Htb struct {
+	QdiscAttrs
+	Version      uint32
+	Rate2Quantum uint32
+	Defcls       uint32
+	Debug        uint32
+	DirectPkts   uint32
+}
+
+func NewHtb(attrs QdiscAttrs) *Htb {
+	return &Htb{
+		QdiscAttrs:   attrs,
+		Version:      3,
+		Defcls:       0,
+		Rate2Quantum: 10,
+		Debug:        0,
+		DirectPkts:   0,
+	}
+}
+
+func (qdisc *Htb) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *Htb) Type() string {
+	return "htb"
+}
+
+// Netem is a classless qdisc that rate limits based on tokens
+
+type NetemQdiscAttrs struct {
+	Latency       uint32  // in us
+	DelayCorr     float32 // in %
+	Limit         uint32
+	Loss          float32 // in %
+	LossCorr      float32 // in %
+	Gap           uint32
+	Duplicate     float32 // in %
+	DuplicateCorr float32 // in %
+	Jitter        uint32  // in us
+	ReorderProb   float32 // in %
+	ReorderCorr   float32 // in %
+	CorruptProb   float32 // in %
+	CorruptCorr   float32 // in %
+}
+
+func (q NetemQdiscAttrs) String() string {
+	return fmt.Sprintf(
+		"{Latency: %d, Limit: %d, Loss: %f, Gap: %d, Duplicate: %f, Jitter: %d}",
+		q.Latency, q.Limit, q.Loss, q.Gap, q.Duplicate, q.Jitter,
+	)
+}
+
+type Netem struct {
+	QdiscAttrs
+	Latency       uint32
+	DelayCorr     uint32
+	Limit         uint32
+	Loss          uint32
+	LossCorr      uint32
+	Gap           uint32
+	Duplicate     uint32
+	DuplicateCorr uint32
+	Jitter        uint32
+	ReorderProb   uint32
+	ReorderCorr   uint32
+	CorruptProb   uint32
+	CorruptCorr   uint32
+}
+
+func (qdisc *Netem) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *Netem) Type() string {
+	return "netem"
+}
+
+// Tbf is a classless qdisc that rate limits based on tokens
+type Tbf struct {
+	QdiscAttrs
+	Rate     uint64
+	Limit    uint32
+	Buffer   uint32
+	Peakrate uint64
+	Minburst uint32
+	// TODO: handle other settings
+}
+
+func (qdisc *Tbf) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *Tbf) Type() string {
+	return "tbf"
+}
+
+// Ingress is a qdisc for adding ingress filters
+type Ingress struct {
+	QdiscAttrs
+}
+
+func (qdisc *Ingress) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *Ingress) Type() string {
+	return "ingress"
+}
+
+// GenericQdisc qdiscs represent types that are not currently understood
+// by this netlink library.
+type GenericQdisc struct {
+	QdiscAttrs
+	QdiscType string
+}
+
+func (qdisc *GenericQdisc) Attrs() *QdiscAttrs {
+	return &qdisc.QdiscAttrs
+}
+
+func (qdisc *GenericQdisc) Type() string {
+	return qdisc.QdiscType
+}
diff --git a/vendor/github.com/vishvananda/netlink/qdisc_linux.go b/vendor/github.com/vishvananda/netlink/qdisc_linux.go
new file mode 100644
index 0000000000..1123396e47
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/qdisc_linux.go
@@ -0,0 +1,529 @@
+package netlink
+
+import (
+	"fmt"
+	"io/ioutil"
+	"strconv"
+	"strings"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// NOTE function is here because it uses other linux functions
+func NewNetem(attrs QdiscAttrs, nattrs NetemQdiscAttrs) *Netem {
+	var limit uint32 = 1000
+	var lossCorr, delayCorr, duplicateCorr uint32
+	var reorderProb, reorderCorr uint32
+	var corruptProb, corruptCorr uint32
+
+	latency := nattrs.Latency
+	loss := Percentage2u32(nattrs.Loss)
+	gap := nattrs.Gap
+	duplicate := Percentage2u32(nattrs.Duplicate)
+	jitter := nattrs.Jitter
+
+	// Correlation
+	if latency > 0 && jitter > 0 {
+		delayCorr = Percentage2u32(nattrs.DelayCorr)
+	}
+	if loss > 0 {
+		lossCorr = Percentage2u32(nattrs.LossCorr)
+	}
+	if duplicate > 0 {
+		duplicateCorr = Percentage2u32(nattrs.DuplicateCorr)
+	}
+	// FIXME should validate values(like loss/duplicate are percentages...)
+	latency = time2Tick(latency)
+
+	if nattrs.Limit != 0 {
+		limit = nattrs.Limit
+	}
+	// Jitter is only value if latency is > 0
+	if latency > 0 {
+		jitter = time2Tick(jitter)
+	}
+
+	reorderProb = Percentage2u32(nattrs.ReorderProb)
+	reorderCorr = Percentage2u32(nattrs.ReorderCorr)
+
+	if reorderProb > 0 {
+		// ERROR if lantency == 0
+		if gap == 0 {
+			gap = 1
+		}
+	}
+
+	corruptProb = Percentage2u32(nattrs.CorruptProb)
+	corruptCorr = Percentage2u32(nattrs.CorruptCorr)
+
+	return &Netem{
+		QdiscAttrs:    attrs,
+		Latency:       latency,
+		DelayCorr:     delayCorr,
+		Limit:         limit,
+		Loss:          loss,
+		LossCorr:      lossCorr,
+		Gap:           gap,
+		Duplicate:     duplicate,
+		DuplicateCorr: duplicateCorr,
+		Jitter:        jitter,
+		ReorderProb:   reorderProb,
+		ReorderCorr:   reorderCorr,
+		CorruptProb:   corruptProb,
+		CorruptCorr:   corruptCorr,
+	}
+}
+
+// QdiscDel will delete a qdisc from the system.
+// Equivalent to: `tc qdisc del $qdisc`
+func QdiscDel(qdisc Qdisc) error {
+	return pkgHandle.QdiscDel(qdisc)
+}
+
+// QdiscDel will delete a qdisc from the system.
+// Equivalent to: `tc qdisc del $qdisc`
+func (h *Handle) QdiscDel(qdisc Qdisc) error {
+	return h.qdiscModify(syscall.RTM_DELQDISC, 0, qdisc)
+}
+
+// QdiscChange will change a qdisc in place
+// Equivalent to: `tc qdisc change $qdisc`
+// The parent and handle MUST NOT be changed.
+func QdiscChange(qdisc Qdisc) error {
+	return pkgHandle.QdiscChange(qdisc)
+}
+
+// QdiscChange will change a qdisc in place
+// Equivalent to: `tc qdisc change $qdisc`
+// The parent and handle MUST NOT be changed.
+func (h *Handle) QdiscChange(qdisc Qdisc) error {
+	return h.qdiscModify(syscall.RTM_NEWQDISC, 0, qdisc)
+}
+
+// QdiscReplace will replace a qdisc to the system.
+// Equivalent to: `tc qdisc replace $qdisc`
+// The handle MUST change.
+func QdiscReplace(qdisc Qdisc) error {
+	return pkgHandle.QdiscReplace(qdisc)
+}
+
+// QdiscReplace will replace a qdisc to the system.
+// Equivalent to: `tc qdisc replace $qdisc`
+// The handle MUST change.
+func (h *Handle) QdiscReplace(qdisc Qdisc) error {
+	return h.qdiscModify(
+		syscall.RTM_NEWQDISC,
+		syscall.NLM_F_CREATE|syscall.NLM_F_REPLACE,
+		qdisc)
+}
+
+// QdiscAdd will add a qdisc to the system.
+// Equivalent to: `tc qdisc add $qdisc`
+func QdiscAdd(qdisc Qdisc) error {
+	return pkgHandle.QdiscAdd(qdisc)
+}
+
+// QdiscAdd will add a qdisc to the system.
+// Equivalent to: `tc qdisc add $qdisc`
+func (h *Handle) QdiscAdd(qdisc Qdisc) error {
+	return h.qdiscModify(
+		syscall.RTM_NEWQDISC,
+		syscall.NLM_F_CREATE|syscall.NLM_F_EXCL,
+		qdisc)
+}
+
+func (h *Handle) qdiscModify(cmd, flags int, qdisc Qdisc) error {
+	req := h.newNetlinkRequest(cmd, flags|syscall.NLM_F_ACK)
+	base := qdisc.Attrs()
+	msg := &nl.TcMsg{
+		Family:  nl.FAMILY_ALL,
+		Ifindex: int32(base.LinkIndex),
+		Handle:  base.Handle,
+		Parent:  base.Parent,
+	}
+	req.AddData(msg)
+
+	// When deleting don't bother building the rest of the netlink payload
+	if cmd != syscall.RTM_DELQDISC {
+		if err := qdiscPayload(req, qdisc); err != nil {
+			return err
+		}
+	}
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+func qdiscPayload(req *nl.NetlinkRequest, qdisc Qdisc) error {
+
+	req.AddData(nl.NewRtAttr(nl.TCA_KIND, nl.ZeroTerminated(qdisc.Type())))
+
+	options := nl.NewRtAttr(nl.TCA_OPTIONS, nil)
+
+	switch qdisc := qdisc.(type) {
+	case *Prio:
+		tcmap := nl.TcPrioMap{
+			Bands:   int32(qdisc.Bands),
+			Priomap: qdisc.PriorityMap,
+		}
+		options = nl.NewRtAttr(nl.TCA_OPTIONS, tcmap.Serialize())
+	case *Tbf:
+		opt := nl.TcTbfQopt{}
+		opt.Rate.Rate = uint32(qdisc.Rate)
+		opt.Peakrate.Rate = uint32(qdisc.Peakrate)
+		opt.Limit = qdisc.Limit
+		opt.Buffer = qdisc.Buffer
+		nl.NewRtAttrChild(options, nl.TCA_TBF_PARMS, opt.Serialize())
+		if qdisc.Rate >= uint64(1<<32) {
+			nl.NewRtAttrChild(options, nl.TCA_TBF_RATE64, nl.Uint64Attr(qdisc.Rate))
+		}
+		if qdisc.Peakrate >= uint64(1<<32) {
+			nl.NewRtAttrChild(options, nl.TCA_TBF_PRATE64, nl.Uint64Attr(qdisc.Peakrate))
+		}
+		if qdisc.Peakrate > 0 {
+			nl.NewRtAttrChild(options, nl.TCA_TBF_PBURST, nl.Uint32Attr(qdisc.Minburst))
+		}
+	case *Htb:
+		opt := nl.TcHtbGlob{}
+		opt.Version = qdisc.Version
+		opt.Rate2Quantum = qdisc.Rate2Quantum
+		opt.Defcls = qdisc.Defcls
+		// TODO: Handle Debug properly. For now default to 0
+		opt.Debug = qdisc.Debug
+		opt.DirectPkts = qdisc.DirectPkts
+		nl.NewRtAttrChild(options, nl.TCA_HTB_INIT, opt.Serialize())
+		// nl.NewRtAttrChild(options, nl.TCA_HTB_DIRECT_QLEN, opt.Serialize())
+	case *Netem:
+		opt := nl.TcNetemQopt{}
+		opt.Latency = qdisc.Latency
+		opt.Limit = qdisc.Limit
+		opt.Loss = qdisc.Loss
+		opt.Gap = qdisc.Gap
+		opt.Duplicate = qdisc.Duplicate
+		opt.Jitter = qdisc.Jitter
+		options = nl.NewRtAttr(nl.TCA_OPTIONS, opt.Serialize())
+		// Correlation
+		corr := nl.TcNetemCorr{}
+		corr.DelayCorr = qdisc.DelayCorr
+		corr.LossCorr = qdisc.LossCorr
+		corr.DupCorr = qdisc.DuplicateCorr
+
+		if corr.DelayCorr > 0 || corr.LossCorr > 0 || corr.DupCorr > 0 {
+			nl.NewRtAttrChild(options, nl.TCA_NETEM_CORR, corr.Serialize())
+		}
+		// Corruption
+		corruption := nl.TcNetemCorrupt{}
+		corruption.Probability = qdisc.CorruptProb
+		corruption.Correlation = qdisc.CorruptCorr
+		if corruption.Probability > 0 {
+			nl.NewRtAttrChild(options, nl.TCA_NETEM_CORRUPT, corruption.Serialize())
+		}
+		// Reorder
+		reorder := nl.TcNetemReorder{}
+		reorder.Probability = qdisc.ReorderProb
+		reorder.Correlation = qdisc.ReorderCorr
+		if reorder.Probability > 0 {
+			nl.NewRtAttrChild(options, nl.TCA_NETEM_REORDER, reorder.Serialize())
+		}
+	case *Ingress:
+		// ingress filters must use the proper handle
+		if qdisc.Attrs().Parent != HANDLE_INGRESS {
+			return fmt.Errorf("Ingress filters must set Parent to HANDLE_INGRESS")
+		}
+	}
+
+	req.AddData(options)
+	return nil
+}
+
+// QdiscList gets a list of qdiscs in the system.
+// Equivalent to: `tc qdisc show`.
+// The list can be filtered by link.
+func QdiscList(link Link) ([]Qdisc, error) {
+	return pkgHandle.QdiscList(link)
+}
+
+// QdiscList gets a list of qdiscs in the system.
+// Equivalent to: `tc qdisc show`.
+// The list can be filtered by link.
+func (h *Handle) QdiscList(link Link) ([]Qdisc, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETQDISC, syscall.NLM_F_DUMP)
+	index := int32(0)
+	if link != nil {
+		base := link.Attrs()
+		h.ensureIndex(base)
+		index = int32(base.Index)
+	}
+	msg := &nl.TcMsg{
+		Family:  nl.FAMILY_ALL,
+		Ifindex: index,
+	}
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWQDISC)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Qdisc
+	for _, m := range msgs {
+		msg := nl.DeserializeTcMsg(m)
+
+		attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+		if err != nil {
+			return nil, err
+		}
+
+		// skip qdiscs from other interfaces
+		if link != nil && msg.Ifindex != index {
+			continue
+		}
+
+		base := QdiscAttrs{
+			LinkIndex: int(msg.Ifindex),
+			Handle:    msg.Handle,
+			Parent:    msg.Parent,
+			Refcnt:    msg.Info,
+		}
+		var qdisc Qdisc
+		qdiscType := ""
+		for _, attr := range attrs {
+			switch attr.Attr.Type {
+			case nl.TCA_KIND:
+				qdiscType = string(attr.Value[:len(attr.Value)-1])
+				switch qdiscType {
+				case "pfifo_fast":
+					qdisc = &PfifoFast{}
+				case "prio":
+					qdisc = &Prio{}
+				case "tbf":
+					qdisc = &Tbf{}
+				case "ingress":
+					qdisc = &Ingress{}
+				case "htb":
+					qdisc = &Htb{}
+				case "netem":
+					qdisc = &Netem{}
+				default:
+					qdisc = &GenericQdisc{QdiscType: qdiscType}
+				}
+			case nl.TCA_OPTIONS:
+				switch qdiscType {
+				case "pfifo_fast":
+					// pfifo returns TcPrioMap directly without wrapping it in rtattr
+					if err := parsePfifoFastData(qdisc, attr.Value); err != nil {
+						return nil, err
+					}
+				case "prio":
+					// prio returns TcPrioMap directly without wrapping it in rtattr
+					if err := parsePrioData(qdisc, attr.Value); err != nil {
+						return nil, err
+					}
+				case "tbf":
+					data, err := nl.ParseRouteAttr(attr.Value)
+					if err != nil {
+						return nil, err
+					}
+					if err := parseTbfData(qdisc, data); err != nil {
+						return nil, err
+					}
+				case "htb":
+					data, err := nl.ParseRouteAttr(attr.Value)
+					if err != nil {
+						return nil, err
+					}
+					if err := parseHtbData(qdisc, data); err != nil {
+						return nil, err
+					}
+				case "netem":
+					if err := parseNetemData(qdisc, attr.Value); err != nil {
+						return nil, err
+					}
+
+					// no options for ingress
+				}
+			}
+		}
+		*qdisc.Attrs() = base
+		res = append(res, qdisc)
+	}
+
+	return res, nil
+}
+
+func parsePfifoFastData(qdisc Qdisc, value []byte) error {
+	pfifo := qdisc.(*PfifoFast)
+	tcmap := nl.DeserializeTcPrioMap(value)
+	pfifo.PriorityMap = tcmap.Priomap
+	pfifo.Bands = uint8(tcmap.Bands)
+	return nil
+}
+
+func parsePrioData(qdisc Qdisc, value []byte) error {
+	prio := qdisc.(*Prio)
+	tcmap := nl.DeserializeTcPrioMap(value)
+	prio.PriorityMap = tcmap.Priomap
+	prio.Bands = uint8(tcmap.Bands)
+	return nil
+}
+
+func parseHtbData(qdisc Qdisc, data []syscall.NetlinkRouteAttr) error {
+	native = nl.NativeEndian()
+	htb := qdisc.(*Htb)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_HTB_INIT:
+			opt := nl.DeserializeTcHtbGlob(datum.Value)
+			htb.Version = opt.Version
+			htb.Rate2Quantum = opt.Rate2Quantum
+			htb.Defcls = opt.Defcls
+			htb.Debug = opt.Debug
+			htb.DirectPkts = opt.DirectPkts
+		case nl.TCA_HTB_DIRECT_QLEN:
+			// TODO
+			//htb.DirectQlen = native.uint32(datum.Value)
+		}
+	}
+	return nil
+}
+
+func parseNetemData(qdisc Qdisc, value []byte) error {
+	netem := qdisc.(*Netem)
+	opt := nl.DeserializeTcNetemQopt(value)
+	netem.Latency = opt.Latency
+	netem.Limit = opt.Limit
+	netem.Loss = opt.Loss
+	netem.Gap = opt.Gap
+	netem.Duplicate = opt.Duplicate
+	netem.Jitter = opt.Jitter
+	data, err := nl.ParseRouteAttr(value[nl.SizeofTcNetemQopt:])
+	if err != nil {
+		return err
+	}
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_NETEM_CORR:
+			opt := nl.DeserializeTcNetemCorr(datum.Value)
+			netem.DelayCorr = opt.DelayCorr
+			netem.LossCorr = opt.LossCorr
+			netem.DuplicateCorr = opt.DupCorr
+		case nl.TCA_NETEM_CORRUPT:
+			opt := nl.DeserializeTcNetemCorrupt(datum.Value)
+			netem.CorruptProb = opt.Probability
+			netem.CorruptCorr = opt.Correlation
+		case nl.TCA_NETEM_REORDER:
+			opt := nl.DeserializeTcNetemReorder(datum.Value)
+			netem.ReorderProb = opt.Probability
+			netem.ReorderCorr = opt.Correlation
+		}
+	}
+	return nil
+}
+
+func parseTbfData(qdisc Qdisc, data []syscall.NetlinkRouteAttr) error {
+	native = nl.NativeEndian()
+	tbf := qdisc.(*Tbf)
+	for _, datum := range data {
+		switch datum.Attr.Type {
+		case nl.TCA_TBF_PARMS:
+			opt := nl.DeserializeTcTbfQopt(datum.Value)
+			tbf.Rate = uint64(opt.Rate.Rate)
+			tbf.Peakrate = uint64(opt.Peakrate.Rate)
+			tbf.Limit = opt.Limit
+			tbf.Buffer = opt.Buffer
+		case nl.TCA_TBF_RATE64:
+			tbf.Rate = native.Uint64(datum.Value[0:8])
+		case nl.TCA_TBF_PRATE64:
+			tbf.Peakrate = native.Uint64(datum.Value[0:8])
+		case nl.TCA_TBF_PBURST:
+			tbf.Minburst = native.Uint32(datum.Value[0:4])
+		}
+	}
+	return nil
+}
+
+const (
+	TIME_UNITS_PER_SEC = 1000000
+)
+
+var (
+	tickInUsec  float64
+	clockFactor float64
+	hz          float64
+)
+
+func initClock() {
+	data, err := ioutil.ReadFile("/proc/net/psched")
+	if err != nil {
+		return
+	}
+	parts := strings.Split(strings.TrimSpace(string(data)), " ")
+	if len(parts) < 3 {
+		return
+	}
+	var vals [3]uint64
+	for i := range vals {
+		val, err := strconv.ParseUint(parts[i], 16, 32)
+		if err != nil {
+			return
+		}
+		vals[i] = val
+	}
+	// compatibility
+	if vals[2] == 1000000000 {
+		vals[0] = vals[1]
+	}
+	clockFactor = float64(vals[2]) / TIME_UNITS_PER_SEC
+	tickInUsec = float64(vals[0]) / float64(vals[1]) * clockFactor
+	hz = float64(vals[0])
+}
+
+func TickInUsec() float64 {
+	if tickInUsec == 0.0 {
+		initClock()
+	}
+	return tickInUsec
+}
+
+func ClockFactor() float64 {
+	if clockFactor == 0.0 {
+		initClock()
+	}
+	return clockFactor
+}
+
+func Hz() float64 {
+	if hz == 0.0 {
+		initClock()
+	}
+	return hz
+}
+
+func time2Tick(time uint32) uint32 {
+	return uint32(float64(time) * TickInUsec())
+}
+
+func tick2Time(tick uint32) uint32 {
+	return uint32(float64(tick) / TickInUsec())
+}
+
+func time2Ktime(time uint32) uint32 {
+	return uint32(float64(time) * ClockFactor())
+}
+
+func ktime2Time(ktime uint32) uint32 {
+	return uint32(float64(ktime) / ClockFactor())
+}
+
+func burst(rate uint64, buffer uint32) uint32 {
+	return uint32(float64(rate) * float64(tick2Time(buffer)) / TIME_UNITS_PER_SEC)
+}
+
+func latency(rate uint64, limit, buffer uint32) float64 {
+	return TIME_UNITS_PER_SEC*(float64(limit)/float64(rate)) - float64(tick2Time(buffer))
+}
+
+func Xmittime(rate uint64, size uint32) float64 {
+	return TickInUsec() * TIME_UNITS_PER_SEC * (float64(size) / float64(rate))
+}
diff --git a/vendor/github.com/vishvananda/netlink/route.go b/vendor/github.com/vishvananda/netlink/route.go
new file mode 100644
index 0000000000..68c6a2230d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/route.go
@@ -0,0 +1,176 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"strings"
+)
+
+// Scope is an enum representing a route scope.
+type Scope uint8
+
+type NextHopFlag int
+
+type Destination interface {
+	Family() int
+	Decode([]byte) error
+	Encode() ([]byte, error)
+	String() string
+	Equal(Destination) bool
+}
+
+type Encap interface {
+	Type() int
+	Decode([]byte) error
+	Encode() ([]byte, error)
+	String() string
+	Equal(Encap) bool
+}
+
+// Route represents a netlink route.
+type Route struct {
+	LinkIndex  int
+	ILinkIndex int
+	Scope      Scope
+	Dst        *net.IPNet
+	Src        net.IP
+	Gw         net.IP
+	MultiPath  []*NexthopInfo
+	Protocol   int
+	Priority   int
+	Table      int
+	Type       int
+	Tos        int
+	Flags      int
+	MPLSDst    *int
+	NewDst     Destination
+	Encap      Encap
+}
+
+func (r Route) String() string {
+	elems := []string{}
+	if len(r.MultiPath) == 0 {
+		elems = append(elems, fmt.Sprintf("Ifindex: %d", r.LinkIndex))
+	}
+	if r.MPLSDst != nil {
+		elems = append(elems, fmt.Sprintf("Dst: %d", r.MPLSDst))
+	} else {
+		elems = append(elems, fmt.Sprintf("Dst: %s", r.Dst))
+	}
+	if r.NewDst != nil {
+		elems = append(elems, fmt.Sprintf("NewDst: %s", r.NewDst))
+	}
+	if r.Encap != nil {
+		elems = append(elems, fmt.Sprintf("Encap: %s", r.Encap))
+	}
+	elems = append(elems, fmt.Sprintf("Src: %s", r.Src))
+	if len(r.MultiPath) > 0 {
+		elems = append(elems, fmt.Sprintf("Gw: %s", r.MultiPath))
+	} else {
+		elems = append(elems, fmt.Sprintf("Gw: %s", r.Gw))
+	}
+	elems = append(elems, fmt.Sprintf("Flags: %s", r.ListFlags()))
+	elems = append(elems, fmt.Sprintf("Table: %d", r.Table))
+	return fmt.Sprintf("{%s}", strings.Join(elems, " "))
+}
+
+func (r Route) Equal(x Route) bool {
+	return r.LinkIndex == x.LinkIndex &&
+		r.ILinkIndex == x.ILinkIndex &&
+		r.Scope == x.Scope &&
+		ipNetEqual(r.Dst, x.Dst) &&
+		r.Src.Equal(x.Src) &&
+		r.Gw.Equal(x.Gw) &&
+		nexthopInfoSlice(r.MultiPath).Equal(x.MultiPath) &&
+		r.Protocol == x.Protocol &&
+		r.Priority == x.Priority &&
+		r.Table == x.Table &&
+		r.Type == x.Type &&
+		r.Tos == x.Tos &&
+		r.Flags == x.Flags &&
+		(r.MPLSDst == x.MPLSDst || (r.MPLSDst != nil && x.MPLSDst != nil && *r.MPLSDst == *x.MPLSDst)) &&
+		(r.NewDst == x.NewDst || (r.NewDst != nil && r.NewDst.Equal(x.NewDst))) &&
+		(r.Encap == x.Encap || (r.Encap != nil && r.Encap.Equal(x.Encap)))
+}
+
+func (r *Route) SetFlag(flag NextHopFlag) {
+	r.Flags |= int(flag)
+}
+
+func (r *Route) ClearFlag(flag NextHopFlag) {
+	r.Flags &^= int(flag)
+}
+
+type flagString struct {
+	f NextHopFlag
+	s string
+}
+
+// RouteUpdate is sent when a route changes - type is RTM_NEWROUTE or RTM_DELROUTE
+type RouteUpdate struct {
+	Type uint16
+	Route
+}
+
+type NexthopInfo struct {
+	LinkIndex int
+	Hops      int
+	Gw        net.IP
+	Flags     int
+	NewDst    Destination
+	Encap     Encap
+}
+
+func (n *NexthopInfo) String() string {
+	elems := []string{}
+	elems = append(elems, fmt.Sprintf("Ifindex: %d", n.LinkIndex))
+	if n.NewDst != nil {
+		elems = append(elems, fmt.Sprintf("NewDst: %s", n.NewDst))
+	}
+	if n.Encap != nil {
+		elems = append(elems, fmt.Sprintf("Encap: %s", n.Encap))
+	}
+	elems = append(elems, fmt.Sprintf("Weight: %d", n.Hops+1))
+	elems = append(elems, fmt.Sprintf("Gw: %s", n.Gw))
+	elems = append(elems, fmt.Sprintf("Flags: %s", n.ListFlags()))
+	return fmt.Sprintf("{%s}", strings.Join(elems, " "))
+}
+
+func (n NexthopInfo) Equal(x NexthopInfo) bool {
+	return n.LinkIndex == x.LinkIndex &&
+		n.Hops == x.Hops &&
+		n.Gw.Equal(x.Gw) &&
+		n.Flags == x.Flags &&
+		(n.NewDst == x.NewDst || (n.NewDst != nil && n.NewDst.Equal(x.NewDst))) &&
+		(n.Encap == x.Encap || (n.Encap != nil && n.Encap.Equal(x.Encap)))
+}
+
+type nexthopInfoSlice []*NexthopInfo
+
+func (n nexthopInfoSlice) Equal(x []*NexthopInfo) bool {
+	if len(n) != len(x) {
+		return false
+	}
+	for i := range n {
+		if n[i] == nil || x[i] == nil {
+			return false
+		}
+		if !n[i].Equal(*x[i]) {
+			return false
+		}
+	}
+	return true
+}
+
+// ipNetEqual returns true iff both IPNet are equal
+func ipNetEqual(ipn1 *net.IPNet, ipn2 *net.IPNet) bool {
+	if ipn1 == ipn2 {
+		return true
+	}
+	if ipn1 == nil || ipn2 == nil {
+		return false
+	}
+	m1, _ := ipn1.Mask.Size()
+	m2, _ := ipn2.Mask.Size()
+	return m1 == m2 && ipn1.IP.Equal(ipn2.IP)
+}
diff --git a/vendor/github.com/vishvananda/netlink/route_linux.go b/vendor/github.com/vishvananda/netlink/route_linux.go
new file mode 100644
index 0000000000..9234c6986d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/route_linux.go
@@ -0,0 +1,743 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"strings"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+	"github.com/vishvananda/netns"
+)
+
+// RtAttr is shared so it is in netlink_linux.go
+
+const (
+	SCOPE_UNIVERSE Scope = syscall.RT_SCOPE_UNIVERSE
+	SCOPE_SITE     Scope = syscall.RT_SCOPE_SITE
+	SCOPE_LINK     Scope = syscall.RT_SCOPE_LINK
+	SCOPE_HOST     Scope = syscall.RT_SCOPE_HOST
+	SCOPE_NOWHERE  Scope = syscall.RT_SCOPE_NOWHERE
+)
+
+const (
+	RT_FILTER_PROTOCOL uint64 = 1 << (1 + iota)
+	RT_FILTER_SCOPE
+	RT_FILTER_TYPE
+	RT_FILTER_TOS
+	RT_FILTER_IIF
+	RT_FILTER_OIF
+	RT_FILTER_DST
+	RT_FILTER_SRC
+	RT_FILTER_GW
+	RT_FILTER_TABLE
+)
+
+const (
+	FLAG_ONLINK    NextHopFlag = syscall.RTNH_F_ONLINK
+	FLAG_PERVASIVE NextHopFlag = syscall.RTNH_F_PERVASIVE
+)
+
+var testFlags = []flagString{
+	{f: FLAG_ONLINK, s: "onlink"},
+	{f: FLAG_PERVASIVE, s: "pervasive"},
+}
+
+func listFlags(flag int) []string {
+	var flags []string
+	for _, tf := range testFlags {
+		if flag&int(tf.f) != 0 {
+			flags = append(flags, tf.s)
+		}
+	}
+	return flags
+}
+
+func (r *Route) ListFlags() []string {
+	return listFlags(r.Flags)
+}
+
+func (n *NexthopInfo) ListFlags() []string {
+	return listFlags(n.Flags)
+}
+
+type MPLSDestination struct {
+	Labels []int
+}
+
+func (d *MPLSDestination) Family() int {
+	return nl.FAMILY_MPLS
+}
+
+func (d *MPLSDestination) Decode(buf []byte) error {
+	d.Labels = nl.DecodeMPLSStack(buf)
+	return nil
+}
+
+func (d *MPLSDestination) Encode() ([]byte, error) {
+	return nl.EncodeMPLSStack(d.Labels...), nil
+}
+
+func (d *MPLSDestination) String() string {
+	s := make([]string, 0, len(d.Labels))
+	for _, l := range d.Labels {
+		s = append(s, fmt.Sprintf("%d", l))
+	}
+	return strings.Join(s, "/")
+}
+
+func (d *MPLSDestination) Equal(x Destination) bool {
+	o, ok := x.(*MPLSDestination)
+	if !ok {
+		return false
+	}
+	if d == nil && o == nil {
+		return true
+	}
+	if d == nil || o == nil {
+		return false
+	}
+	if d.Labels == nil && o.Labels == nil {
+		return true
+	}
+	if d.Labels == nil || o.Labels == nil {
+		return false
+	}
+	if len(d.Labels) != len(o.Labels) {
+		return false
+	}
+	for i := range d.Labels {
+		if d.Labels[i] != o.Labels[i] {
+			return false
+		}
+	}
+	return true
+}
+
+type MPLSEncap struct {
+	Labels []int
+}
+
+func (e *MPLSEncap) Type() int {
+	return nl.LWTUNNEL_ENCAP_MPLS
+}
+
+func (e *MPLSEncap) Decode(buf []byte) error {
+	if len(buf) < 4 {
+		return fmt.Errorf("Lack of bytes")
+	}
+	native := nl.NativeEndian()
+	l := native.Uint16(buf)
+	if len(buf) < int(l) {
+		return fmt.Errorf("Lack of bytes")
+	}
+	buf = buf[:l]
+	typ := native.Uint16(buf[2:])
+	if typ != nl.MPLS_IPTUNNEL_DST {
+		return fmt.Errorf("Unknown MPLS Encap Type: %d", typ)
+	}
+	e.Labels = nl.DecodeMPLSStack(buf[4:])
+	return nil
+}
+
+func (e *MPLSEncap) Encode() ([]byte, error) {
+	s := nl.EncodeMPLSStack(e.Labels...)
+	native := nl.NativeEndian()
+	hdr := make([]byte, 4)
+	native.PutUint16(hdr, uint16(len(s)+4))
+	native.PutUint16(hdr[2:], nl.MPLS_IPTUNNEL_DST)
+	return append(hdr, s...), nil
+}
+
+func (e *MPLSEncap) String() string {
+	s := make([]string, 0, len(e.Labels))
+	for _, l := range e.Labels {
+		s = append(s, fmt.Sprintf("%d", l))
+	}
+	return strings.Join(s, "/")
+}
+
+func (e *MPLSEncap) Equal(x Encap) bool {
+	o, ok := x.(*MPLSEncap)
+	if !ok {
+		return false
+	}
+	if e == nil && o == nil {
+		return true
+	}
+	if e == nil || o == nil {
+		return false
+	}
+	if e.Labels == nil && o.Labels == nil {
+		return true
+	}
+	if e.Labels == nil || o.Labels == nil {
+		return false
+	}
+	if len(e.Labels) != len(o.Labels) {
+		return false
+	}
+	for i := range e.Labels {
+		if e.Labels[i] != o.Labels[i] {
+			return false
+		}
+	}
+	return true
+}
+
+// RouteAdd will add a route to the system.
+// Equivalent to: `ip route add $route`
+func RouteAdd(route *Route) error {
+	return pkgHandle.RouteAdd(route)
+}
+
+// RouteAdd will add a route to the system.
+// Equivalent to: `ip route add $route`
+func (h *Handle) RouteAdd(route *Route) error {
+	flags := syscall.NLM_F_CREATE | syscall.NLM_F_EXCL | syscall.NLM_F_ACK
+	req := h.newNetlinkRequest(syscall.RTM_NEWROUTE, flags)
+	return h.routeHandle(route, req, nl.NewRtMsg())
+}
+
+// RouteReplace will add a route to the system.
+// Equivalent to: `ip route replace $route`
+func RouteReplace(route *Route) error {
+	return pkgHandle.RouteReplace(route)
+}
+
+// RouteReplace will add a route to the system.
+// Equivalent to: `ip route replace $route`
+func (h *Handle) RouteReplace(route *Route) error {
+	flags := syscall.NLM_F_CREATE | syscall.NLM_F_REPLACE | syscall.NLM_F_ACK
+	req := h.newNetlinkRequest(syscall.RTM_NEWROUTE, flags)
+	return h.routeHandle(route, req, nl.NewRtMsg())
+}
+
+// RouteDel will delete a route from the system.
+// Equivalent to: `ip route del $route`
+func RouteDel(route *Route) error {
+	return pkgHandle.RouteDel(route)
+}
+
+// RouteDel will delete a route from the system.
+// Equivalent to: `ip route del $route`
+func (h *Handle) RouteDel(route *Route) error {
+	req := h.newNetlinkRequest(syscall.RTM_DELROUTE, syscall.NLM_F_ACK)
+	return h.routeHandle(route, req, nl.NewRtDelMsg())
+}
+
+func (h *Handle) routeHandle(route *Route, req *nl.NetlinkRequest, msg *nl.RtMsg) error {
+	if (route.Dst == nil || route.Dst.IP == nil) && route.Src == nil && route.Gw == nil && route.MPLSDst == nil {
+		return fmt.Errorf("one of Dst.IP, Src, or Gw must not be nil")
+	}
+
+	family := -1
+	var rtAttrs []*nl.RtAttr
+
+	if route.Dst != nil && route.Dst.IP != nil {
+		dstLen, _ := route.Dst.Mask.Size()
+		msg.Dst_len = uint8(dstLen)
+		dstFamily := nl.GetIPFamily(route.Dst.IP)
+		family = dstFamily
+		var dstData []byte
+		if dstFamily == FAMILY_V4 {
+			dstData = route.Dst.IP.To4()
+		} else {
+			dstData = route.Dst.IP.To16()
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_DST, dstData))
+	} else if route.MPLSDst != nil {
+		family = nl.FAMILY_MPLS
+		msg.Dst_len = uint8(20)
+		msg.Type = syscall.RTN_UNICAST
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_DST, nl.EncodeMPLSStack(*route.MPLSDst)))
+	}
+
+	if route.NewDst != nil {
+		if family != -1 && family != route.NewDst.Family() {
+			return fmt.Errorf("new destination and destination are not the same address family")
+		}
+		buf, err := route.NewDst.Encode()
+		if err != nil {
+			return err
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(nl.RTA_NEWDST, buf))
+	}
+
+	if route.Encap != nil {
+		buf := make([]byte, 2)
+		native.PutUint16(buf, uint16(route.Encap.Type()))
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(nl.RTA_ENCAP_TYPE, buf))
+		buf, err := route.Encap.Encode()
+		if err != nil {
+			return err
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(nl.RTA_ENCAP, buf))
+	}
+
+	if route.Src != nil {
+		srcFamily := nl.GetIPFamily(route.Src)
+		if family != -1 && family != srcFamily {
+			return fmt.Errorf("source and destination ip are not the same IP family")
+		}
+		family = srcFamily
+		var srcData []byte
+		if srcFamily == FAMILY_V4 {
+			srcData = route.Src.To4()
+		} else {
+			srcData = route.Src.To16()
+		}
+		// The commonly used src ip for routes is actually PREFSRC
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_PREFSRC, srcData))
+	}
+
+	if route.Gw != nil {
+		gwFamily := nl.GetIPFamily(route.Gw)
+		if family != -1 && family != gwFamily {
+			return fmt.Errorf("gateway, source, and destination ip are not the same IP family")
+		}
+		family = gwFamily
+		var gwData []byte
+		if gwFamily == FAMILY_V4 {
+			gwData = route.Gw.To4()
+		} else {
+			gwData = route.Gw.To16()
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_GATEWAY, gwData))
+	}
+
+	if len(route.MultiPath) > 0 {
+		buf := []byte{}
+		for _, nh := range route.MultiPath {
+			rtnh := &nl.RtNexthop{
+				RtNexthop: syscall.RtNexthop{
+					Hops:    uint8(nh.Hops),
+					Ifindex: int32(nh.LinkIndex),
+					Flags:   uint8(nh.Flags),
+				},
+			}
+			children := []nl.NetlinkRequestData{}
+			if nh.Gw != nil {
+				gwFamily := nl.GetIPFamily(nh.Gw)
+				if family != -1 && family != gwFamily {
+					return fmt.Errorf("gateway, source, and destination ip are not the same IP family")
+				}
+				if gwFamily == FAMILY_V4 {
+					children = append(children, nl.NewRtAttr(syscall.RTA_GATEWAY, []byte(nh.Gw.To4())))
+				} else {
+					children = append(children, nl.NewRtAttr(syscall.RTA_GATEWAY, []byte(nh.Gw.To16())))
+				}
+			}
+			if nh.NewDst != nil {
+				if family != -1 && family != nh.NewDst.Family() {
+					return fmt.Errorf("new destination and destination are not the same address family")
+				}
+				buf, err := nh.NewDst.Encode()
+				if err != nil {
+					return err
+				}
+				children = append(children, nl.NewRtAttr(nl.RTA_NEWDST, buf))
+			}
+			if nh.Encap != nil {
+				buf := make([]byte, 2)
+				native.PutUint16(buf, uint16(nh.Encap.Type()))
+				rtAttrs = append(rtAttrs, nl.NewRtAttr(nl.RTA_ENCAP_TYPE, buf))
+				buf, err := nh.Encap.Encode()
+				if err != nil {
+					return err
+				}
+				children = append(children, nl.NewRtAttr(nl.RTA_ENCAP, buf))
+			}
+			rtnh.Children = children
+			buf = append(buf, rtnh.Serialize()...)
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_MULTIPATH, buf))
+	}
+
+	if route.Table > 0 {
+		if route.Table >= 256 {
+			msg.Table = syscall.RT_TABLE_UNSPEC
+			b := make([]byte, 4)
+			native.PutUint32(b, uint32(route.Table))
+			rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_TABLE, b))
+		} else {
+			msg.Table = uint8(route.Table)
+		}
+	}
+
+	if route.Priority > 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(route.Priority))
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_PRIORITY, b))
+	}
+	if route.Tos > 0 {
+		msg.Tos = uint8(route.Tos)
+	}
+	if route.Protocol > 0 {
+		msg.Protocol = uint8(route.Protocol)
+	}
+	if route.Type > 0 {
+		msg.Type = uint8(route.Type)
+	}
+
+	msg.Flags = uint32(route.Flags)
+	msg.Scope = uint8(route.Scope)
+	msg.Family = uint8(family)
+	req.AddData(msg)
+	for _, attr := range rtAttrs {
+		req.AddData(attr)
+	}
+
+	var (
+		b      = make([]byte, 4)
+		native = nl.NativeEndian()
+	)
+	native.PutUint32(b, uint32(route.LinkIndex))
+
+	req.AddData(nl.NewRtAttr(syscall.RTA_OIF, b))
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// RouteList gets a list of routes in the system.
+// Equivalent to: `ip route show`.
+// The list can be filtered by link and ip family.
+func RouteList(link Link, family int) ([]Route, error) {
+	return pkgHandle.RouteList(link, family)
+}
+
+// RouteList gets a list of routes in the system.
+// Equivalent to: `ip route show`.
+// The list can be filtered by link and ip family.
+func (h *Handle) RouteList(link Link, family int) ([]Route, error) {
+	var routeFilter *Route
+	if link != nil {
+		routeFilter = &Route{
+			LinkIndex: link.Attrs().Index,
+		}
+	}
+	return h.RouteListFiltered(family, routeFilter, RT_FILTER_OIF)
+}
+
+// RouteListFiltered gets a list of routes in the system filtered with specified rules.
+// All rules must be defined in RouteFilter struct
+func RouteListFiltered(family int, filter *Route, filterMask uint64) ([]Route, error) {
+	return pkgHandle.RouteListFiltered(family, filter, filterMask)
+}
+
+// RouteListFiltered gets a list of routes in the system filtered with specified rules.
+// All rules must be defined in RouteFilter struct
+func (h *Handle) RouteListFiltered(family int, filter *Route, filterMask uint64) ([]Route, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETROUTE, syscall.NLM_F_DUMP)
+	infmsg := nl.NewIfInfomsg(family)
+	req.AddData(infmsg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWROUTE)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Route
+	for _, m := range msgs {
+		msg := nl.DeserializeRtMsg(m)
+		if msg.Flags&syscall.RTM_F_CLONED != 0 {
+			// Ignore cloned routes
+			continue
+		}
+		if msg.Table != syscall.RT_TABLE_MAIN {
+			if filter == nil || filter != nil && filterMask&RT_FILTER_TABLE == 0 {
+				// Ignore non-main tables
+				continue
+			}
+		}
+		route, err := deserializeRoute(m)
+		if err != nil {
+			return nil, err
+		}
+		if filter != nil {
+			switch {
+			case filterMask&RT_FILTER_TABLE != 0 && filter.Table != syscall.RT_TABLE_UNSPEC && route.Table != filter.Table:
+				continue
+			case filterMask&RT_FILTER_PROTOCOL != 0 && route.Protocol != filter.Protocol:
+				continue
+			case filterMask&RT_FILTER_SCOPE != 0 && route.Scope != filter.Scope:
+				continue
+			case filterMask&RT_FILTER_TYPE != 0 && route.Type != filter.Type:
+				continue
+			case filterMask&RT_FILTER_TOS != 0 && route.Tos != filter.Tos:
+				continue
+			case filterMask&RT_FILTER_OIF != 0 && route.LinkIndex != filter.LinkIndex:
+				continue
+			case filterMask&RT_FILTER_IIF != 0 && route.ILinkIndex != filter.ILinkIndex:
+				continue
+			case filterMask&RT_FILTER_GW != 0 && !route.Gw.Equal(filter.Gw):
+				continue
+			case filterMask&RT_FILTER_SRC != 0 && !route.Src.Equal(filter.Src):
+				continue
+			case filterMask&RT_FILTER_DST != 0:
+				if filter.MPLSDst == nil || route.MPLSDst == nil || (*filter.MPLSDst) != (*route.MPLSDst) {
+					if !ipNetEqual(route.Dst, filter.Dst) {
+						continue
+					}
+				}
+			}
+		}
+		res = append(res, route)
+	}
+	return res, nil
+}
+
+// deserializeRoute decodes a binary netlink message into a Route struct
+func deserializeRoute(m []byte) (Route, error) {
+	msg := nl.DeserializeRtMsg(m)
+	attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+	if err != nil {
+		return Route{}, err
+	}
+	route := Route{
+		Scope:    Scope(msg.Scope),
+		Protocol: int(msg.Protocol),
+		Table:    int(msg.Table),
+		Type:     int(msg.Type),
+		Tos:      int(msg.Tos),
+		Flags:    int(msg.Flags),
+	}
+
+	native := nl.NativeEndian()
+	var encap, encapType syscall.NetlinkRouteAttr
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case syscall.RTA_GATEWAY:
+			route.Gw = net.IP(attr.Value)
+		case syscall.RTA_PREFSRC:
+			route.Src = net.IP(attr.Value)
+		case syscall.RTA_DST:
+			if msg.Family == nl.FAMILY_MPLS {
+				stack := nl.DecodeMPLSStack(attr.Value)
+				if len(stack) == 0 || len(stack) > 1 {
+					return route, fmt.Errorf("invalid MPLS RTA_DST")
+				}
+				route.MPLSDst = &stack[0]
+			} else {
+				route.Dst = &net.IPNet{
+					IP:   attr.Value,
+					Mask: net.CIDRMask(int(msg.Dst_len), 8*len(attr.Value)),
+				}
+			}
+		case syscall.RTA_OIF:
+			route.LinkIndex = int(native.Uint32(attr.Value[0:4]))
+		case syscall.RTA_IIF:
+			route.ILinkIndex = int(native.Uint32(attr.Value[0:4]))
+		case syscall.RTA_PRIORITY:
+			route.Priority = int(native.Uint32(attr.Value[0:4]))
+		case syscall.RTA_TABLE:
+			route.Table = int(native.Uint32(attr.Value[0:4]))
+		case syscall.RTA_MULTIPATH:
+			parseRtNexthop := func(value []byte) (*NexthopInfo, []byte, error) {
+				if len(value) < syscall.SizeofRtNexthop {
+					return nil, nil, fmt.Errorf("Lack of bytes")
+				}
+				nh := nl.DeserializeRtNexthop(value)
+				if len(value) < int(nh.RtNexthop.Len) {
+					return nil, nil, fmt.Errorf("Lack of bytes")
+				}
+				info := &NexthopInfo{
+					LinkIndex: int(nh.RtNexthop.Ifindex),
+					Hops:      int(nh.RtNexthop.Hops),
+					Flags:     int(nh.RtNexthop.Flags),
+				}
+				attrs, err := nl.ParseRouteAttr(value[syscall.SizeofRtNexthop:int(nh.RtNexthop.Len)])
+				if err != nil {
+					return nil, nil, err
+				}
+				var encap, encapType syscall.NetlinkRouteAttr
+				for _, attr := range attrs {
+					switch attr.Attr.Type {
+					case syscall.RTA_GATEWAY:
+						info.Gw = net.IP(attr.Value)
+					case nl.RTA_NEWDST:
+						var d Destination
+						switch msg.Family {
+						case nl.FAMILY_MPLS:
+							d = &MPLSDestination{}
+						}
+						if err := d.Decode(attr.Value); err != nil {
+							return nil, nil, err
+						}
+						info.NewDst = d
+					case nl.RTA_ENCAP_TYPE:
+						encapType = attr
+					case nl.RTA_ENCAP:
+						encap = attr
+					}
+				}
+
+				if len(encap.Value) != 0 && len(encapType.Value) != 0 {
+					typ := int(native.Uint16(encapType.Value[0:2]))
+					var e Encap
+					switch typ {
+					case nl.LWTUNNEL_ENCAP_MPLS:
+						e = &MPLSEncap{}
+						if err := e.Decode(encap.Value); err != nil {
+							return nil, nil, err
+						}
+					}
+					info.Encap = e
+				}
+
+				return info, value[int(nh.RtNexthop.Len):], nil
+			}
+			rest := attr.Value
+			for len(rest) > 0 {
+				info, buf, err := parseRtNexthop(rest)
+				if err != nil {
+					return route, err
+				}
+				route.MultiPath = append(route.MultiPath, info)
+				rest = buf
+			}
+		case nl.RTA_NEWDST:
+			var d Destination
+			switch msg.Family {
+			case nl.FAMILY_MPLS:
+				d = &MPLSDestination{}
+			}
+			if err := d.Decode(attr.Value); err != nil {
+				return route, err
+			}
+			route.NewDst = d
+		case nl.RTA_ENCAP_TYPE:
+			encapType = attr
+		case nl.RTA_ENCAP:
+			encap = attr
+		}
+	}
+
+	if len(encap.Value) != 0 && len(encapType.Value) != 0 {
+		typ := int(native.Uint16(encapType.Value[0:2]))
+		var e Encap
+		switch typ {
+		case nl.LWTUNNEL_ENCAP_MPLS:
+			e = &MPLSEncap{}
+			if err := e.Decode(encap.Value); err != nil {
+				return route, err
+			}
+		}
+		route.Encap = e
+	}
+
+	return route, nil
+}
+
+// RouteGet gets a route to a specific destination from the host system.
+// Equivalent to: 'ip route get'.
+func RouteGet(destination net.IP) ([]Route, error) {
+	return pkgHandle.RouteGet(destination)
+}
+
+// RouteGet gets a route to a specific destination from the host system.
+// Equivalent to: 'ip route get'.
+func (h *Handle) RouteGet(destination net.IP) ([]Route, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETROUTE, syscall.NLM_F_REQUEST)
+	family := nl.GetIPFamily(destination)
+	var destinationData []byte
+	var bitlen uint8
+	if family == FAMILY_V4 {
+		destinationData = destination.To4()
+		bitlen = 32
+	} else {
+		destinationData = destination.To16()
+		bitlen = 128
+	}
+	msg := &nl.RtMsg{}
+	msg.Family = uint8(family)
+	msg.Dst_len = bitlen
+	req.AddData(msg)
+
+	rtaDst := nl.NewRtAttr(syscall.RTA_DST, destinationData)
+	req.AddData(rtaDst)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWROUTE)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []Route
+	for _, m := range msgs {
+		route, err := deserializeRoute(m)
+		if err != nil {
+			return nil, err
+		}
+		res = append(res, route)
+	}
+	return res, nil
+
+}
+
+// RouteSubscribe takes a chan down which notifications will be sent
+// when routes are added or deleted. Close the 'done' chan to stop subscription.
+func RouteSubscribe(ch chan<- RouteUpdate, done <-chan struct{}) error {
+	return routeSubscribeAt(netns.None(), netns.None(), ch, done, nil)
+}
+
+// RouteSubscribeAt works like RouteSubscribe plus it allows the caller
+// to choose the network namespace in which to subscribe (ns).
+func RouteSubscribeAt(ns netns.NsHandle, ch chan<- RouteUpdate, done <-chan struct{}) error {
+	return routeSubscribeAt(ns, netns.None(), ch, done, nil)
+}
+
+// RouteSubscribeOptions contains a set of options to use with
+// RouteSubscribeWithOptions.
+type RouteSubscribeOptions struct {
+	Namespace     *netns.NsHandle
+	ErrorCallback func(error)
+}
+
+// RouteSubscribeWithOptions work like RouteSubscribe but enable to
+// provide additional options to modify the behavior. Currently, the
+// namespace can be provided as well as an error callback.
+func RouteSubscribeWithOptions(ch chan<- RouteUpdate, done <-chan struct{}, options RouteSubscribeOptions) error {
+	if options.Namespace == nil {
+		none := netns.None()
+		options.Namespace = &none
+	}
+	return routeSubscribeAt(*options.Namespace, netns.None(), ch, done, options.ErrorCallback)
+}
+
+func routeSubscribeAt(newNs, curNs netns.NsHandle, ch chan<- RouteUpdate, done <-chan struct{}, cberr func(error)) error {
+	s, err := nl.SubscribeAt(newNs, curNs, syscall.NETLINK_ROUTE, syscall.RTNLGRP_IPV4_ROUTE, syscall.RTNLGRP_IPV6_ROUTE)
+	if err != nil {
+		return err
+	}
+	if done != nil {
+		go func() {
+			<-done
+			s.Close()
+		}()
+	}
+	go func() {
+		defer close(ch)
+		for {
+			msgs, err := s.Receive()
+			if err != nil {
+				if cberr != nil {
+					cberr(err)
+				}
+				return
+			}
+			for _, m := range msgs {
+				route, err := deserializeRoute(m.Data)
+				if err != nil {
+					if cberr != nil {
+						cberr(err)
+					}
+					return
+				}
+				ch <- RouteUpdate{Type: m.Header.Type, Route: route}
+			}
+		}
+	}()
+
+	return nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/route_unspecified.go b/vendor/github.com/vishvananda/netlink/route_unspecified.go
new file mode 100644
index 0000000000..2701862b4b
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/route_unspecified.go
@@ -0,0 +1,11 @@
+// +build !linux
+
+package netlink
+
+func (r *Route) ListFlags() []string {
+	return []string{}
+}
+
+func (n *NexthopInfo) ListFlags() []string {
+	return []string{}
+}
diff --git a/vendor/github.com/vishvananda/netlink/rule.go b/vendor/github.com/vishvananda/netlink/rule.go
new file mode 100644
index 0000000000..e4d9168d6c
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/rule.go
@@ -0,0 +1,41 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+)
+
+// Rule represents a netlink rule.
+type Rule struct {
+	Priority          int
+	Family            int
+	Table             int
+	Mark              int
+	Mask              int
+	TunID             uint
+	Goto              int
+	Src               *net.IPNet
+	Dst               *net.IPNet
+	Flow              int
+	IifName           string
+	OifName           string
+	SuppressIfgroup   int
+	SuppressPrefixlen int
+}
+
+func (r Rule) String() string {
+	return fmt.Sprintf("ip rule %d: from %s table %d", r.Priority, r.Src, r.Table)
+}
+
+// NewRule return empty rules.
+func NewRule() *Rule {
+	return &Rule{
+		SuppressIfgroup:   -1,
+		SuppressPrefixlen: -1,
+		Priority:          -1,
+		Mark:              -1,
+		Mask:              -1,
+		Goto:              -1,
+		Flow:              -1,
+	}
+}
diff --git a/vendor/github.com/vishvananda/netlink/rule_linux.go b/vendor/github.com/vishvananda/netlink/rule_linux.go
new file mode 100644
index 0000000000..cbd91a56bb
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/rule_linux.go
@@ -0,0 +1,224 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+// RuleAdd adds a rule to the system.
+// Equivalent to: ip rule add
+func RuleAdd(rule *Rule) error {
+	return pkgHandle.RuleAdd(rule)
+}
+
+// RuleAdd adds a rule to the system.
+// Equivalent to: ip rule add
+func (h *Handle) RuleAdd(rule *Rule) error {
+	req := h.newNetlinkRequest(syscall.RTM_NEWRULE, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	return ruleHandle(rule, req)
+}
+
+// RuleDel deletes a rule from the system.
+// Equivalent to: ip rule del
+func RuleDel(rule *Rule) error {
+	return pkgHandle.RuleDel(rule)
+}
+
+// RuleDel deletes a rule from the system.
+// Equivalent to: ip rule del
+func (h *Handle) RuleDel(rule *Rule) error {
+	req := h.newNetlinkRequest(syscall.RTM_DELRULE, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+	return ruleHandle(rule, req)
+}
+
+func ruleHandle(rule *Rule, req *nl.NetlinkRequest) error {
+	msg := nl.NewRtMsg()
+	msg.Family = syscall.AF_INET
+	if rule.Family != 0 {
+		msg.Family = uint8(rule.Family)
+	}
+	var dstFamily uint8
+
+	var rtAttrs []*nl.RtAttr
+	if rule.Dst != nil && rule.Dst.IP != nil {
+		dstLen, _ := rule.Dst.Mask.Size()
+		msg.Dst_len = uint8(dstLen)
+		msg.Family = uint8(nl.GetIPFamily(rule.Dst.IP))
+		dstFamily = msg.Family
+		var dstData []byte
+		if msg.Family == syscall.AF_INET {
+			dstData = rule.Dst.IP.To4()
+		} else {
+			dstData = rule.Dst.IP.To16()
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_DST, dstData))
+	}
+
+	if rule.Src != nil && rule.Src.IP != nil {
+		msg.Family = uint8(nl.GetIPFamily(rule.Src.IP))
+		if dstFamily != 0 && dstFamily != msg.Family {
+			return fmt.Errorf("source and destination ip are not the same IP family")
+		}
+		srcLen, _ := rule.Src.Mask.Size()
+		msg.Src_len = uint8(srcLen)
+		var srcData []byte
+		if msg.Family == syscall.AF_INET {
+			srcData = rule.Src.IP.To4()
+		} else {
+			srcData = rule.Src.IP.To16()
+		}
+		rtAttrs = append(rtAttrs, nl.NewRtAttr(syscall.RTA_SRC, srcData))
+	}
+
+	if rule.Table >= 0 {
+		msg.Table = uint8(rule.Table)
+		if rule.Table >= 256 {
+			msg.Table = syscall.RT_TABLE_UNSPEC
+		}
+	}
+
+	req.AddData(msg)
+	for i := range rtAttrs {
+		req.AddData(rtAttrs[i])
+	}
+
+	native := nl.NativeEndian()
+
+	if rule.Priority >= 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Priority))
+		req.AddData(nl.NewRtAttr(nl.FRA_PRIORITY, b))
+	}
+	if rule.Mark >= 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Mark))
+		req.AddData(nl.NewRtAttr(nl.FRA_FWMARK, b))
+	}
+	if rule.Mask >= 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Mask))
+		req.AddData(nl.NewRtAttr(nl.FRA_FWMASK, b))
+	}
+	if rule.Flow >= 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Flow))
+		req.AddData(nl.NewRtAttr(nl.FRA_FLOW, b))
+	}
+	if rule.TunID > 0 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.TunID))
+		req.AddData(nl.NewRtAttr(nl.FRA_TUN_ID, b))
+	}
+	if rule.Table >= 256 {
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Table))
+		req.AddData(nl.NewRtAttr(nl.FRA_TABLE, b))
+	}
+	if msg.Table > 0 {
+		if rule.SuppressPrefixlen >= 0 {
+			b := make([]byte, 4)
+			native.PutUint32(b, uint32(rule.SuppressPrefixlen))
+			req.AddData(nl.NewRtAttr(nl.FRA_SUPPRESS_PREFIXLEN, b))
+		}
+		if rule.SuppressIfgroup >= 0 {
+			b := make([]byte, 4)
+			native.PutUint32(b, uint32(rule.SuppressIfgroup))
+			req.AddData(nl.NewRtAttr(nl.FRA_SUPPRESS_IFGROUP, b))
+		}
+	}
+	if rule.IifName != "" {
+		req.AddData(nl.NewRtAttr(nl.FRA_IIFNAME, []byte(rule.IifName)))
+	}
+	if rule.OifName != "" {
+		req.AddData(nl.NewRtAttr(nl.FRA_OIFNAME, []byte(rule.OifName)))
+	}
+	if rule.Goto >= 0 {
+		msg.Type = nl.FR_ACT_NOP
+		b := make([]byte, 4)
+		native.PutUint32(b, uint32(rule.Goto))
+		req.AddData(nl.NewRtAttr(nl.FRA_GOTO, b))
+	}
+
+	_, err := req.Execute(syscall.NETLINK_ROUTE, 0)
+	return err
+}
+
+// RuleList lists rules in the system.
+// Equivalent to: ip rule list
+func RuleList(family int) ([]Rule, error) {
+	return pkgHandle.RuleList(family)
+}
+
+// RuleList lists rules in the system.
+// Equivalent to: ip rule list
+func (h *Handle) RuleList(family int) ([]Rule, error) {
+	req := h.newNetlinkRequest(syscall.RTM_GETRULE, syscall.NLM_F_DUMP|syscall.NLM_F_REQUEST)
+	msg := nl.NewIfInfomsg(family)
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_ROUTE, syscall.RTM_NEWRULE)
+	if err != nil {
+		return nil, err
+	}
+
+	native := nl.NativeEndian()
+	var res = make([]Rule, 0)
+	for i := range msgs {
+		msg := nl.DeserializeRtMsg(msgs[i])
+		attrs, err := nl.ParseRouteAttr(msgs[i][msg.Len():])
+		if err != nil {
+			return nil, err
+		}
+
+		rule := NewRule()
+
+		for j := range attrs {
+			switch attrs[j].Attr.Type {
+			case syscall.RTA_TABLE:
+				rule.Table = int(native.Uint32(attrs[j].Value[0:4]))
+			case nl.FRA_SRC:
+				rule.Src = &net.IPNet{
+					IP:   attrs[j].Value,
+					Mask: net.CIDRMask(int(msg.Src_len), 8*len(attrs[j].Value)),
+				}
+			case nl.FRA_DST:
+				rule.Dst = &net.IPNet{
+					IP:   attrs[j].Value,
+					Mask: net.CIDRMask(int(msg.Dst_len), 8*len(attrs[j].Value)),
+				}
+			case nl.FRA_FWMARK:
+				rule.Mark = int(native.Uint32(attrs[j].Value[0:4]))
+			case nl.FRA_FWMASK:
+				rule.Mask = int(native.Uint32(attrs[j].Value[0:4]))
+			case nl.FRA_TUN_ID:
+				rule.TunID = uint(native.Uint64(attrs[j].Value[0:4]))
+			case nl.FRA_IIFNAME:
+				rule.IifName = string(attrs[j].Value[:len(attrs[j].Value)-1])
+			case nl.FRA_OIFNAME:
+				rule.OifName = string(attrs[j].Value[:len(attrs[j].Value)-1])
+			case nl.FRA_SUPPRESS_PREFIXLEN:
+				i := native.Uint32(attrs[j].Value[0:4])
+				if i != 0xffffffff {
+					rule.SuppressPrefixlen = int(i)
+				}
+			case nl.FRA_SUPPRESS_IFGROUP:
+				i := native.Uint32(attrs[j].Value[0:4])
+				if i != 0xffffffff {
+					rule.SuppressIfgroup = int(i)
+				}
+			case nl.FRA_FLOW:
+				rule.Flow = int(native.Uint32(attrs[j].Value[0:4]))
+			case nl.FRA_GOTO:
+				rule.Goto = int(native.Uint32(attrs[j].Value[0:4]))
+			case nl.FRA_PRIORITY:
+				rule.Priority = int(native.Uint32(attrs[j].Value[0:4]))
+			}
+		}
+		res = append(res, *rule)
+	}
+
+	return res, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/socket.go b/vendor/github.com/vishvananda/netlink/socket.go
new file mode 100644
index 0000000000..41aa726245
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/socket.go
@@ -0,0 +1,27 @@
+package netlink
+
+import "net"
+
+// SocketID identifies a single socket.
+type SocketID struct {
+	SourcePort      uint16
+	DestinationPort uint16
+	Source          net.IP
+	Destination     net.IP
+	Interface       uint32
+	Cookie          [2]uint32
+}
+
+// Socket represents a netlink socket.
+type Socket struct {
+	Family  uint8
+	State   uint8
+	Timer   uint8
+	Retrans uint8
+	ID      SocketID
+	Expires uint32
+	RQueue  uint32
+	WQueue  uint32
+	UID     uint32
+	INode   uint32
+}
diff --git a/vendor/github.com/vishvananda/netlink/socket_linux.go b/vendor/github.com/vishvananda/netlink/socket_linux.go
new file mode 100644
index 0000000000..b42b84f0cf
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/socket_linux.go
@@ -0,0 +1,159 @@
+package netlink
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+const (
+	sizeofSocketID      = 0x30
+	sizeofSocketRequest = sizeofSocketID + 0x8
+	sizeofSocket        = sizeofSocketID + 0x18
+)
+
+type socketRequest struct {
+	Family   uint8
+	Protocol uint8
+	Ext      uint8
+	pad      uint8
+	States   uint32
+	ID       SocketID
+}
+
+type writeBuffer struct {
+	Bytes []byte
+	pos   int
+}
+
+func (b *writeBuffer) Write(c byte) {
+	b.Bytes[b.pos] = c
+	b.pos++
+}
+
+func (b *writeBuffer) Next(n int) []byte {
+	s := b.Bytes[b.pos : b.pos+n]
+	b.pos += n
+	return s
+}
+
+func (r *socketRequest) Serialize() []byte {
+	b := writeBuffer{Bytes: make([]byte, sizeofSocketRequest)}
+	b.Write(r.Family)
+	b.Write(r.Protocol)
+	b.Write(r.Ext)
+	b.Write(r.pad)
+	native.PutUint32(b.Next(4), r.States)
+	networkOrder.PutUint16(b.Next(2), r.ID.SourcePort)
+	networkOrder.PutUint16(b.Next(2), r.ID.DestinationPort)
+	copy(b.Next(4), r.ID.Source.To4())
+	b.Next(12)
+	copy(b.Next(4), r.ID.Destination.To4())
+	b.Next(12)
+	native.PutUint32(b.Next(4), r.ID.Interface)
+	native.PutUint32(b.Next(4), r.ID.Cookie[0])
+	native.PutUint32(b.Next(4), r.ID.Cookie[1])
+	return b.Bytes
+}
+
+func (r *socketRequest) Len() int { return sizeofSocketRequest }
+
+type readBuffer struct {
+	Bytes []byte
+	pos   int
+}
+
+func (b *readBuffer) Read() byte {
+	c := b.Bytes[b.pos]
+	b.pos++
+	return c
+}
+
+func (b *readBuffer) Next(n int) []byte {
+	s := b.Bytes[b.pos : b.pos+n]
+	b.pos += n
+	return s
+}
+
+func (s *Socket) deserialize(b []byte) error {
+	if len(b) < sizeofSocket {
+		return fmt.Errorf("socket data short read (%d); want %d", len(b), sizeofSocket)
+	}
+	rb := readBuffer{Bytes: b}
+	s.Family = rb.Read()
+	s.State = rb.Read()
+	s.Timer = rb.Read()
+	s.Retrans = rb.Read()
+	s.ID.SourcePort = networkOrder.Uint16(rb.Next(2))
+	s.ID.DestinationPort = networkOrder.Uint16(rb.Next(2))
+	s.ID.Source = net.IPv4(rb.Read(), rb.Read(), rb.Read(), rb.Read())
+	rb.Next(12)
+	s.ID.Destination = net.IPv4(rb.Read(), rb.Read(), rb.Read(), rb.Read())
+	rb.Next(12)
+	s.ID.Interface = native.Uint32(rb.Next(4))
+	s.ID.Cookie[0] = native.Uint32(rb.Next(4))
+	s.ID.Cookie[1] = native.Uint32(rb.Next(4))
+	s.Expires = native.Uint32(rb.Next(4))
+	s.RQueue = native.Uint32(rb.Next(4))
+	s.WQueue = native.Uint32(rb.Next(4))
+	s.UID = native.Uint32(rb.Next(4))
+	s.INode = native.Uint32(rb.Next(4))
+	return nil
+}
+
+// SocketGet returns the Socket identified by its local and remote addresses.
+func SocketGet(local, remote net.Addr) (*Socket, error) {
+	localTCP, ok := local.(*net.TCPAddr)
+	if !ok {
+		return nil, ErrNotImplemented
+	}
+	remoteTCP, ok := remote.(*net.TCPAddr)
+	if !ok {
+		return nil, ErrNotImplemented
+	}
+	localIP := localTCP.IP.To4()
+	if localIP == nil {
+		return nil, ErrNotImplemented
+	}
+	remoteIP := remoteTCP.IP.To4()
+	if remoteIP == nil {
+		return nil, ErrNotImplemented
+	}
+
+	s, err := nl.Subscribe(syscall.NETLINK_INET_DIAG)
+	if err != nil {
+		return nil, err
+	}
+	defer s.Close()
+	req := nl.NewNetlinkRequest(nl.SOCK_DIAG_BY_FAMILY, 0)
+	req.AddData(&socketRequest{
+		Family:   syscall.AF_INET,
+		Protocol: syscall.IPPROTO_TCP,
+		ID: SocketID{
+			SourcePort:      uint16(localTCP.Port),
+			DestinationPort: uint16(remoteTCP.Port),
+			Source:          localIP,
+			Destination:     remoteIP,
+			Cookie:          [2]uint32{nl.TCPDIAG_NOCOOKIE, nl.TCPDIAG_NOCOOKIE},
+		},
+	})
+	s.Send(req)
+	msgs, err := s.Receive()
+	if err != nil {
+		return nil, err
+	}
+	if len(msgs) == 0 {
+		return nil, errors.New("no message nor error from netlink")
+	}
+	if len(msgs) > 2 {
+		return nil, fmt.Errorf("multiple (%d) matching sockets", len(msgs))
+	}
+	sock := &Socket{}
+	if err := sock.deserialize(msgs[0].Data); err != nil {
+		return nil, err
+	}
+	return sock, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm.go b/vendor/github.com/vishvananda/netlink/xfrm.go
new file mode 100644
index 0000000000..9962dcf700
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm.go
@@ -0,0 +1,74 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+)
+
+// Proto is an enum representing an ipsec protocol.
+type Proto uint8
+
+const (
+	XFRM_PROTO_ROUTE2    Proto = syscall.IPPROTO_ROUTING
+	XFRM_PROTO_ESP       Proto = syscall.IPPROTO_ESP
+	XFRM_PROTO_AH        Proto = syscall.IPPROTO_AH
+	XFRM_PROTO_HAO       Proto = syscall.IPPROTO_DSTOPTS
+	XFRM_PROTO_COMP      Proto = 0x6c // NOTE not defined on darwin
+	XFRM_PROTO_IPSEC_ANY Proto = syscall.IPPROTO_RAW
+)
+
+func (p Proto) String() string {
+	switch p {
+	case XFRM_PROTO_ROUTE2:
+		return "route2"
+	case XFRM_PROTO_ESP:
+		return "esp"
+	case XFRM_PROTO_AH:
+		return "ah"
+	case XFRM_PROTO_HAO:
+		return "hao"
+	case XFRM_PROTO_COMP:
+		return "comp"
+	case XFRM_PROTO_IPSEC_ANY:
+		return "ipsec-any"
+	}
+	return fmt.Sprintf("%d", p)
+}
+
+// Mode is an enum representing an ipsec transport.
+type Mode uint8
+
+const (
+	XFRM_MODE_TRANSPORT Mode = iota
+	XFRM_MODE_TUNNEL
+	XFRM_MODE_ROUTEOPTIMIZATION
+	XFRM_MODE_IN_TRIGGER
+	XFRM_MODE_BEET
+	XFRM_MODE_MAX
+)
+
+func (m Mode) String() string {
+	switch m {
+	case XFRM_MODE_TRANSPORT:
+		return "transport"
+	case XFRM_MODE_TUNNEL:
+		return "tunnel"
+	case XFRM_MODE_ROUTEOPTIMIZATION:
+		return "ro"
+	case XFRM_MODE_IN_TRIGGER:
+		return "in_trigger"
+	case XFRM_MODE_BEET:
+		return "beet"
+	}
+	return fmt.Sprintf("%d", m)
+}
+
+// XfrmMark represents the mark associated to the state or policy
+type XfrmMark struct {
+	Value uint32
+	Mask  uint32
+}
+
+func (m *XfrmMark) String() string {
+	return fmt.Sprintf("(0x%x,0x%x)", m.Value, m.Mask)
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm_monitor_linux.go b/vendor/github.com/vishvananda/netlink/xfrm_monitor_linux.go
new file mode 100644
index 0000000000..7b98c9cb6d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm_monitor_linux.go
@@ -0,0 +1,98 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+
+	"github.com/vishvananda/netns"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+type XfrmMsg interface {
+	Type() nl.XfrmMsgType
+}
+
+type XfrmMsgExpire struct {
+	XfrmState *XfrmState
+	Hard      bool
+}
+
+func (ue *XfrmMsgExpire) Type() nl.XfrmMsgType {
+	return nl.XFRM_MSG_EXPIRE
+}
+
+func parseXfrmMsgExpire(b []byte) *XfrmMsgExpire {
+	var e XfrmMsgExpire
+
+	msg := nl.DeserializeXfrmUserExpire(b)
+	e.XfrmState = xfrmStateFromXfrmUsersaInfo(&msg.XfrmUsersaInfo)
+	e.Hard = msg.Hard == 1
+
+	return &e
+}
+
+func XfrmMonitor(ch chan<- XfrmMsg, done <-chan struct{}, errorChan chan<- error,
+	types ...nl.XfrmMsgType) error {
+
+	groups, err := xfrmMcastGroups(types)
+	if err != nil {
+		return nil
+	}
+	s, err := nl.SubscribeAt(netns.None(), netns.None(), syscall.NETLINK_XFRM, groups...)
+	if err != nil {
+		return err
+	}
+
+	if done != nil {
+		go func() {
+			<-done
+			s.Close()
+		}()
+
+	}
+
+	go func() {
+		defer close(ch)
+		for {
+			msgs, err := s.Receive()
+			if err != nil {
+				errorChan <- err
+				return
+			}
+			for _, m := range msgs {
+				switch m.Header.Type {
+				case nl.XFRM_MSG_EXPIRE:
+					ch <- parseXfrmMsgExpire(m.Data)
+				default:
+					errorChan <- fmt.Errorf("unsupported msg type: %x", m.Header.Type)
+				}
+			}
+		}
+	}()
+
+	return nil
+}
+
+func xfrmMcastGroups(types []nl.XfrmMsgType) ([]uint, error) {
+	groups := make([]uint, 0)
+
+	if len(types) == 0 {
+		return nil, fmt.Errorf("no xfrm msg type specified")
+	}
+
+	for _, t := range types {
+		var group uint
+
+		switch t {
+		case nl.XFRM_MSG_EXPIRE:
+			group = nl.XFRMNLGRP_EXPIRE
+		default:
+			return nil, fmt.Errorf("unsupported group: %x", t)
+		}
+
+		groups = append(groups, group)
+	}
+
+	return groups, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm_policy.go b/vendor/github.com/vishvananda/netlink/xfrm_policy.go
new file mode 100644
index 0000000000..c97ec43a25
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm_policy.go
@@ -0,0 +1,74 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+)
+
+// Dir is an enum representing an ipsec template direction.
+type Dir uint8
+
+const (
+	XFRM_DIR_IN Dir = iota
+	XFRM_DIR_OUT
+	XFRM_DIR_FWD
+	XFRM_SOCKET_IN
+	XFRM_SOCKET_OUT
+	XFRM_SOCKET_FWD
+)
+
+func (d Dir) String() string {
+	switch d {
+	case XFRM_DIR_IN:
+		return "dir in"
+	case XFRM_DIR_OUT:
+		return "dir out"
+	case XFRM_DIR_FWD:
+		return "dir fwd"
+	case XFRM_SOCKET_IN:
+		return "socket in"
+	case XFRM_SOCKET_OUT:
+		return "socket out"
+	case XFRM_SOCKET_FWD:
+		return "socket fwd"
+	}
+	return fmt.Sprintf("socket %d", d-XFRM_SOCKET_IN)
+}
+
+// XfrmPolicyTmpl encapsulates a rule for the base addresses of an ipsec
+// policy. These rules are matched with XfrmState to determine encryption
+// and authentication algorithms.
+type XfrmPolicyTmpl struct {
+	Dst   net.IP
+	Src   net.IP
+	Proto Proto
+	Mode  Mode
+	Spi   int
+	Reqid int
+}
+
+func (t XfrmPolicyTmpl) String() string {
+	return fmt.Sprintf("{Dst: %v, Src: %v, Proto: %s, Mode: %s, Spi: 0x%x, Reqid: 0x%x}",
+		t.Dst, t.Src, t.Proto, t.Mode, t.Spi, t.Reqid)
+}
+
+// XfrmPolicy represents an ipsec policy. It represents the overlay network
+// and has a list of XfrmPolicyTmpls representing the base addresses of
+// the policy.
+type XfrmPolicy struct {
+	Dst      *net.IPNet
+	Src      *net.IPNet
+	Proto    Proto
+	DstPort  int
+	SrcPort  int
+	Dir      Dir
+	Priority int
+	Index    int
+	Mark     *XfrmMark
+	Tmpls    []XfrmPolicyTmpl
+}
+
+func (p XfrmPolicy) String() string {
+	return fmt.Sprintf("{Dst: %v, Src: %v, Proto: %s, DstPort: %d, SrcPort: %d, Dir: %s, Priority: %d, Index: %d, Mark: %s, Tmpls: %s}",
+		p.Dst, p.Src, p.Proto, p.DstPort, p.SrcPort, p.Dir, p.Priority, p.Index, p.Mark, p.Tmpls)
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm_policy_linux.go b/vendor/github.com/vishvananda/netlink/xfrm_policy_linux.go
new file mode 100644
index 0000000000..c3d4e42227
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm_policy_linux.go
@@ -0,0 +1,257 @@
+package netlink
+
+import (
+	"syscall"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+func selFromPolicy(sel *nl.XfrmSelector, policy *XfrmPolicy) {
+	sel.Family = uint16(nl.FAMILY_V4)
+	if policy.Dst != nil {
+		sel.Family = uint16(nl.GetIPFamily(policy.Dst.IP))
+		sel.Daddr.FromIP(policy.Dst.IP)
+		prefixlenD, _ := policy.Dst.Mask.Size()
+		sel.PrefixlenD = uint8(prefixlenD)
+	}
+	if policy.Src != nil {
+		sel.Saddr.FromIP(policy.Src.IP)
+		prefixlenS, _ := policy.Src.Mask.Size()
+		sel.PrefixlenS = uint8(prefixlenS)
+	}
+	sel.Proto = uint8(policy.Proto)
+	sel.Dport = nl.Swap16(uint16(policy.DstPort))
+	sel.Sport = nl.Swap16(uint16(policy.SrcPort))
+	if sel.Dport != 0 {
+		sel.DportMask = ^uint16(0)
+	}
+	if sel.Sport != 0 {
+		sel.SportMask = ^uint16(0)
+	}
+}
+
+// XfrmPolicyAdd will add an xfrm policy to the system.
+// Equivalent to: `ip xfrm policy add $policy`
+func XfrmPolicyAdd(policy *XfrmPolicy) error {
+	return pkgHandle.XfrmPolicyAdd(policy)
+}
+
+// XfrmPolicyAdd will add an xfrm policy to the system.
+// Equivalent to: `ip xfrm policy add $policy`
+func (h *Handle) XfrmPolicyAdd(policy *XfrmPolicy) error {
+	return h.xfrmPolicyAddOrUpdate(policy, nl.XFRM_MSG_NEWPOLICY)
+}
+
+// XfrmPolicyUpdate will update an xfrm policy to the system.
+// Equivalent to: `ip xfrm policy update $policy`
+func XfrmPolicyUpdate(policy *XfrmPolicy) error {
+	return pkgHandle.XfrmPolicyUpdate(policy)
+}
+
+// XfrmPolicyUpdate will update an xfrm policy to the system.
+// Equivalent to: `ip xfrm policy update $policy`
+func (h *Handle) XfrmPolicyUpdate(policy *XfrmPolicy) error {
+	return h.xfrmPolicyAddOrUpdate(policy, nl.XFRM_MSG_UPDPOLICY)
+}
+
+func (h *Handle) xfrmPolicyAddOrUpdate(policy *XfrmPolicy, nlProto int) error {
+	req := h.newNetlinkRequest(nlProto, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+
+	msg := &nl.XfrmUserpolicyInfo{}
+	selFromPolicy(&msg.Sel, policy)
+	msg.Priority = uint32(policy.Priority)
+	msg.Index = uint32(policy.Index)
+	msg.Dir = uint8(policy.Dir)
+	msg.Lft.SoftByteLimit = nl.XFRM_INF
+	msg.Lft.HardByteLimit = nl.XFRM_INF
+	msg.Lft.SoftPacketLimit = nl.XFRM_INF
+	msg.Lft.HardPacketLimit = nl.XFRM_INF
+	req.AddData(msg)
+
+	tmplData := make([]byte, nl.SizeofXfrmUserTmpl*len(policy.Tmpls))
+	for i, tmpl := range policy.Tmpls {
+		start := i * nl.SizeofXfrmUserTmpl
+		userTmpl := nl.DeserializeXfrmUserTmpl(tmplData[start : start+nl.SizeofXfrmUserTmpl])
+		userTmpl.XfrmId.Daddr.FromIP(tmpl.Dst)
+		userTmpl.Saddr.FromIP(tmpl.Src)
+		userTmpl.XfrmId.Proto = uint8(tmpl.Proto)
+		userTmpl.XfrmId.Spi = nl.Swap32(uint32(tmpl.Spi))
+		userTmpl.Mode = uint8(tmpl.Mode)
+		userTmpl.Reqid = uint32(tmpl.Reqid)
+		userTmpl.Aalgos = ^uint32(0)
+		userTmpl.Ealgos = ^uint32(0)
+		userTmpl.Calgos = ^uint32(0)
+	}
+	if len(tmplData) > 0 {
+		tmpls := nl.NewRtAttr(nl.XFRMA_TMPL, tmplData)
+		req.AddData(tmpls)
+	}
+	if policy.Mark != nil {
+		out := nl.NewRtAttr(nl.XFRMA_MARK, writeMark(policy.Mark))
+		req.AddData(out)
+	}
+
+	_, err := req.Execute(syscall.NETLINK_XFRM, 0)
+	return err
+}
+
+// XfrmPolicyDel will delete an xfrm policy from the system. Note that
+// the Tmpls are ignored when matching the policy to delete.
+// Equivalent to: `ip xfrm policy del $policy`
+func XfrmPolicyDel(policy *XfrmPolicy) error {
+	return pkgHandle.XfrmPolicyDel(policy)
+}
+
+// XfrmPolicyDel will delete an xfrm policy from the system. Note that
+// the Tmpls are ignored when matching the policy to delete.
+// Equivalent to: `ip xfrm policy del $policy`
+func (h *Handle) XfrmPolicyDel(policy *XfrmPolicy) error {
+	_, err := h.xfrmPolicyGetOrDelete(policy, nl.XFRM_MSG_DELPOLICY)
+	return err
+}
+
+// XfrmPolicyList gets a list of xfrm policies in the system.
+// Equivalent to: `ip xfrm policy show`.
+// The list can be filtered by ip family.
+func XfrmPolicyList(family int) ([]XfrmPolicy, error) {
+	return pkgHandle.XfrmPolicyList(family)
+}
+
+// XfrmPolicyList gets a list of xfrm policies in the system.
+// Equivalent to: `ip xfrm policy show`.
+// The list can be filtered by ip family.
+func (h *Handle) XfrmPolicyList(family int) ([]XfrmPolicy, error) {
+	req := h.newNetlinkRequest(nl.XFRM_MSG_GETPOLICY, syscall.NLM_F_DUMP)
+
+	msg := nl.NewIfInfomsg(family)
+	req.AddData(msg)
+
+	msgs, err := req.Execute(syscall.NETLINK_XFRM, nl.XFRM_MSG_NEWPOLICY)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []XfrmPolicy
+	for _, m := range msgs {
+		if policy, err := parseXfrmPolicy(m, family); err == nil {
+			res = append(res, *policy)
+		} else if err == familyError {
+			continue
+		} else {
+			return nil, err
+		}
+	}
+	return res, nil
+}
+
+// XfrmPolicyGet gets a the policy described by the index or selector, if found.
+// Equivalent to: `ip xfrm policy get { SELECTOR | index INDEX } dir DIR [ctx CTX ] [ mark MARK [ mask MASK ] ] [ ptype PTYPE ]`.
+func XfrmPolicyGet(policy *XfrmPolicy) (*XfrmPolicy, error) {
+	return pkgHandle.XfrmPolicyGet(policy)
+}
+
+// XfrmPolicyGet gets a the policy described by the index or selector, if found.
+// Equivalent to: `ip xfrm policy get { SELECTOR | index INDEX } dir DIR [ctx CTX ] [ mark MARK [ mask MASK ] ] [ ptype PTYPE ]`.
+func (h *Handle) XfrmPolicyGet(policy *XfrmPolicy) (*XfrmPolicy, error) {
+	return h.xfrmPolicyGetOrDelete(policy, nl.XFRM_MSG_GETPOLICY)
+}
+
+// XfrmPolicyFlush will flush the policies on the system.
+// Equivalent to: `ip xfrm policy flush`
+func XfrmPolicyFlush() error {
+	return pkgHandle.XfrmPolicyFlush()
+}
+
+// XfrmPolicyFlush will flush the policies on the system.
+// Equivalent to: `ip xfrm policy flush`
+func (h *Handle) XfrmPolicyFlush() error {
+	req := h.newNetlinkRequest(nl.XFRM_MSG_FLUSHPOLICY, syscall.NLM_F_ACK)
+	_, err := req.Execute(syscall.NETLINK_XFRM, 0)
+	return err
+}
+
+func (h *Handle) xfrmPolicyGetOrDelete(policy *XfrmPolicy, nlProto int) (*XfrmPolicy, error) {
+	req := h.newNetlinkRequest(nlProto, syscall.NLM_F_ACK)
+
+	msg := &nl.XfrmUserpolicyId{}
+	selFromPolicy(&msg.Sel, policy)
+	msg.Index = uint32(policy.Index)
+	msg.Dir = uint8(policy.Dir)
+	req.AddData(msg)
+
+	if policy.Mark != nil {
+		out := nl.NewRtAttr(nl.XFRMA_MARK, writeMark(policy.Mark))
+		req.AddData(out)
+	}
+
+	resType := nl.XFRM_MSG_NEWPOLICY
+	if nlProto == nl.XFRM_MSG_DELPOLICY {
+		resType = 0
+	}
+
+	msgs, err := req.Execute(syscall.NETLINK_XFRM, uint16(resType))
+	if err != nil {
+		return nil, err
+	}
+
+	if nlProto == nl.XFRM_MSG_DELPOLICY {
+		return nil, err
+	}
+
+	p, err := parseXfrmPolicy(msgs[0], FAMILY_ALL)
+	if err != nil {
+		return nil, err
+	}
+
+	return p, nil
+}
+
+func parseXfrmPolicy(m []byte, family int) (*XfrmPolicy, error) {
+	msg := nl.DeserializeXfrmUserpolicyInfo(m)
+
+	// This is mainly for the policy dump
+	if family != FAMILY_ALL && family != int(msg.Sel.Family) {
+		return nil, familyError
+	}
+
+	var policy XfrmPolicy
+
+	policy.Dst = msg.Sel.Daddr.ToIPNet(msg.Sel.PrefixlenD)
+	policy.Src = msg.Sel.Saddr.ToIPNet(msg.Sel.PrefixlenS)
+	policy.Proto = Proto(msg.Sel.Proto)
+	policy.DstPort = int(nl.Swap16(msg.Sel.Dport))
+	policy.SrcPort = int(nl.Swap16(msg.Sel.Sport))
+	policy.Priority = int(msg.Priority)
+	policy.Index = int(msg.Index)
+	policy.Dir = Dir(msg.Dir)
+
+	attrs, err := nl.ParseRouteAttr(m[msg.Len():])
+	if err != nil {
+		return nil, err
+	}
+
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case nl.XFRMA_TMPL:
+			max := len(attr.Value)
+			for i := 0; i < max; i += nl.SizeofXfrmUserTmpl {
+				var resTmpl XfrmPolicyTmpl
+				tmpl := nl.DeserializeXfrmUserTmpl(attr.Value[i : i+nl.SizeofXfrmUserTmpl])
+				resTmpl.Dst = tmpl.XfrmId.Daddr.ToIP()
+				resTmpl.Src = tmpl.Saddr.ToIP()
+				resTmpl.Proto = Proto(tmpl.XfrmId.Proto)
+				resTmpl.Mode = Mode(tmpl.Mode)
+				resTmpl.Spi = int(nl.Swap32(tmpl.XfrmId.Spi))
+				resTmpl.Reqid = int(tmpl.Reqid)
+				policy.Tmpls = append(policy.Tmpls, resTmpl)
+			}
+		case nl.XFRMA_MARK:
+			mark := nl.DeserializeXfrmMark(attr.Value[:])
+			policy.Mark = new(XfrmMark)
+			policy.Mark.Value = mark.Value
+			policy.Mark.Mask = mark.Mask
+		}
+	}
+
+	return &policy, nil
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm_state.go b/vendor/github.com/vishvananda/netlink/xfrm_state.go
new file mode 100644
index 0000000000..368a9b986d
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm_state.go
@@ -0,0 +1,108 @@
+package netlink
+
+import (
+	"fmt"
+	"net"
+)
+
+// XfrmStateAlgo represents the algorithm to use for the ipsec encryption.
+type XfrmStateAlgo struct {
+	Name        string
+	Key         []byte
+	TruncateLen int // Auth only
+	ICVLen      int // AEAD only
+}
+
+func (a XfrmStateAlgo) String() string {
+	base := fmt.Sprintf("{Name: %s, Key: 0x%x", a.Name, a.Key)
+	if a.TruncateLen != 0 {
+		base = fmt.Sprintf("%s, Truncate length: %d", base, a.TruncateLen)
+	}
+	if a.ICVLen != 0 {
+		base = fmt.Sprintf("%s, ICV length: %d", base, a.ICVLen)
+	}
+	return fmt.Sprintf("%s}", base)
+}
+
+// EncapType is an enum representing the optional packet encapsulation.
+type EncapType uint8
+
+const (
+	XFRM_ENCAP_ESPINUDP_NONIKE EncapType = iota + 1
+	XFRM_ENCAP_ESPINUDP
+)
+
+func (e EncapType) String() string {
+	switch e {
+	case XFRM_ENCAP_ESPINUDP_NONIKE:
+		return "espinudp-non-ike"
+	case XFRM_ENCAP_ESPINUDP:
+		return "espinudp"
+	}
+	return "unknown"
+}
+
+// XfrmStateEncap represents the encapsulation to use for the ipsec encryption.
+type XfrmStateEncap struct {
+	Type            EncapType
+	SrcPort         int
+	DstPort         int
+	OriginalAddress net.IP
+}
+
+func (e XfrmStateEncap) String() string {
+	return fmt.Sprintf("{Type: %s, Srcport: %d, DstPort: %d, OriginalAddress: %v}",
+		e.Type, e.SrcPort, e.DstPort, e.OriginalAddress)
+}
+
+// XfrmStateLimits represents the configured limits for the state.
+type XfrmStateLimits struct {
+	ByteSoft    uint64
+	ByteHard    uint64
+	PacketSoft  uint64
+	PacketHard  uint64
+	TimeSoft    uint64
+	TimeHard    uint64
+	TimeUseSoft uint64
+	TimeUseHard uint64
+}
+
+// XfrmState represents the state of an ipsec policy. It optionally
+// contains an XfrmStateAlgo for encryption and one for authentication.
+type XfrmState struct {
+	Dst          net.IP
+	Src          net.IP
+	Proto        Proto
+	Mode         Mode
+	Spi          int
+	Reqid        int
+	ReplayWindow int
+	Limits       XfrmStateLimits
+	Mark         *XfrmMark
+	Auth         *XfrmStateAlgo
+	Crypt        *XfrmStateAlgo
+	Aead         *XfrmStateAlgo
+	Encap        *XfrmStateEncap
+	ESN          bool
+}
+
+func (sa XfrmState) String() string {
+	return fmt.Sprintf("Dst: %v, Src: %v, Proto: %s, Mode: %s, SPI: 0x%x, ReqID: 0x%x, ReplayWindow: %d, Mark: %v, Auth: %v, Crypt: %v, Aead: %v, Encap: %v, ESN: %t",
+		sa.Dst, sa.Src, sa.Proto, sa.Mode, sa.Spi, sa.Reqid, sa.ReplayWindow, sa.Mark, sa.Auth, sa.Crypt, sa.Aead, sa.Encap, sa.ESN)
+}
+func (sa XfrmState) Print(stats bool) string {
+	if !stats {
+		return sa.String()
+	}
+
+	return fmt.Sprintf("%s, ByteSoft: %s, ByteHard: %s, PacketSoft: %s, PacketHard: %s, TimeSoft: %d, TimeHard: %d, TimeUseSoft: %d, TimeUseHard: %d",
+		sa.String(), printLimit(sa.Limits.ByteSoft), printLimit(sa.Limits.ByteHard), printLimit(sa.Limits.PacketSoft), printLimit(sa.Limits.PacketHard),
+		sa.Limits.TimeSoft, sa.Limits.TimeHard, sa.Limits.TimeUseSoft, sa.Limits.TimeUseHard)
+}
+
+func printLimit(lmt uint64) string {
+	if lmt == ^uint64(0) {
+		return "(INF)"
+	}
+	return fmt.Sprintf("%d", lmt)
+}
diff --git a/vendor/github.com/vishvananda/netlink/xfrm_state_linux.go b/vendor/github.com/vishvananda/netlink/xfrm_state_linux.go
new file mode 100644
index 0000000000..6a7bc0deca
--- /dev/null
+++ b/vendor/github.com/vishvananda/netlink/xfrm_state_linux.go
@@ -0,0 +1,444 @@
+package netlink
+
+import (
+	"fmt"
+	"syscall"
+	"unsafe"
+
+	"github.com/vishvananda/netlink/nl"
+)
+
+func writeStateAlgo(a *XfrmStateAlgo) []byte {
+	algo := nl.XfrmAlgo{
+		AlgKeyLen: uint32(len(a.Key) * 8),
+		AlgKey:    a.Key,
+	}
+	end := len(a.Name)
+	if end > 64 {
+		end = 64
+	}
+	copy(algo.AlgName[:end], a.Name)
+	return algo.Serialize()
+}
+
+func writeStateAlgoAuth(a *XfrmStateAlgo) []byte {
+	algo := nl.XfrmAlgoAuth{
+		AlgKeyLen:   uint32(len(a.Key) * 8),
+		AlgTruncLen: uint32(a.TruncateLen),
+		AlgKey:      a.Key,
+	}
+	end := len(a.Name)
+	if end > 64 {
+		end = 64
+	}
+	copy(algo.AlgName[:end], a.Name)
+	return algo.Serialize()
+}
+
+func writeStateAlgoAead(a *XfrmStateAlgo) []byte {
+	algo := nl.XfrmAlgoAEAD{
+		AlgKeyLen: uint32(len(a.Key) * 8),
+		AlgICVLen: uint32(a.ICVLen),
+		AlgKey:    a.Key,
+	}
+	end := len(a.Name)
+	if end > 64 {
+		end = 64
+	}
+	copy(algo.AlgName[:end], a.Name)
+	return algo.Serialize()
+}
+
+func writeMark(m *XfrmMark) []byte {
+	mark := &nl.XfrmMark{
+		Value: m.Value,
+		Mask:  m.Mask,
+	}
+	if mark.Mask == 0 {
+		mark.Mask = ^uint32(0)
+	}
+	return mark.Serialize()
+}
+
+func writeReplayEsn(replayWindow int) []byte {
+	replayEsn := &nl.XfrmReplayStateEsn{
+		OSeq:         0,
+		Seq:          0,
+		OSeqHi:       0,
+		SeqHi:        0,
+		ReplayWindow: uint32(replayWindow),
+	}
+
+	// taken from iproute2/ip/xfrm_state.c:
+	replayEsn.BmpLen = uint32((replayWindow + (4 * 8) - 1) / (4 * 8))
+
+	return replayEsn.Serialize()
+}
+
+// XfrmStateAdd will add an xfrm state to the system.
+// Equivalent to: `ip xfrm state add $state`
+func XfrmStateAdd(state *XfrmState) error {
+	return pkgHandle.XfrmStateAdd(state)
+}
+
+// XfrmStateAdd will add an xfrm state to the system.
+// Equivalent to: `ip xfrm state add $state`
+func (h *Handle) XfrmStateAdd(state *XfrmState) error {
+	return h.xfrmStateAddOrUpdate(state, nl.XFRM_MSG_NEWSA)
+}
+
+// XfrmStateAllocSpi will allocate an xfrm state in the system.
+// Equivalent to: `ip xfrm state allocspi`
+func XfrmStateAllocSpi(state *XfrmState) (*XfrmState, error) {
+	return pkgHandle.xfrmStateAllocSpi(state)
+}
+
+// XfrmStateUpdate will update an xfrm state to the system.
+// Equivalent to: `ip xfrm state update $state`
+func XfrmStateUpdate(state *XfrmState) error {
+	return pkgHandle.XfrmStateUpdate(state)
+}
+
+// XfrmStateUpdate will update an xfrm state to the system.
+// Equivalent to: `ip xfrm state update $state`
+func (h *Handle) XfrmStateUpdate(state *XfrmState) error {
+	return h.xfrmStateAddOrUpdate(state, nl.XFRM_MSG_UPDSA)
+}
+
+func (h *Handle) xfrmStateAddOrUpdate(state *XfrmState, nlProto int) error {
+
+	// A state with spi 0 can't be deleted so don't allow it to be set
+	if state.Spi == 0 {
+		return fmt.Errorf("Spi must be set when adding xfrm state.")
+	}
+	req := h.newNetlinkRequest(nlProto, syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+
+	msg := xfrmUsersaInfoFromXfrmState(state)
+
+	if state.ESN {
+		if state.ReplayWindow == 0 {
+			return fmt.Errorf("ESN flag set without ReplayWindow")
+		}
+		msg.Flags |= nl.XFRM_STATE_ESN
+		msg.ReplayWindow = 0
+	}
+
+	limitsToLft(state.Limits, &msg.Lft)
+	req.AddData(msg)
+
+	if state.Auth != nil {
+		out := nl.NewRtAttr(nl.XFRMA_ALG_AUTH_TRUNC, writeStateAlgoAuth(state.Auth))
+		req.AddData(out)
+	}
+	if state.Crypt != nil {
+		out := nl.NewRtAttr(nl.XFRMA_ALG_CRYPT, writeStateAlgo(state.Crypt))
+		req.AddData(out)
+	}
+	if state.Aead != nil {
+		out := nl.NewRtAttr(nl.XFRMA_ALG_AEAD, writeStateAlgoAead(state.Aead))
+		req.AddData(out)
+	}
+	if state.Encap != nil {
+		encapData := make([]byte, nl.SizeofXfrmEncapTmpl)
+		encap := nl.DeserializeXfrmEncapTmpl(encapData)
+		encap.EncapType = uint16(state.Encap.Type)
+		encap.EncapSport = nl.Swap16(uint16(state.Encap.SrcPort))
+		encap.EncapDport = nl.Swap16(uint16(state.Encap.DstPort))
+		encap.EncapOa.FromIP(state.Encap.OriginalAddress)
+		out := nl.NewRtAttr(nl.XFRMA_ENCAP, encapData)
+		req.AddData(out)
+	}
+	if state.Mark != nil {
+		out := nl.NewRtAttr(nl.XFRMA_MARK, writeMark(state.Mark))
+		req.AddData(out)
+	}
+	if state.ESN {
+		out := nl.NewRtAttr(nl.XFRMA_REPLAY_ESN_VAL, writeReplayEsn(state.ReplayWindow))
+		req.AddData(out)
+	}
+
+	_, err := req.Execute(syscall.NETLINK_XFRM, 0)
+	return err
+}
+
+func (h *Handle) xfrmStateAllocSpi(state *XfrmState) (*XfrmState, error) {
+	req := h.newNetlinkRequest(nl.XFRM_MSG_ALLOCSPI,
+		syscall.NLM_F_CREATE|syscall.NLM_F_EXCL|syscall.NLM_F_ACK)
+
+	msg := &nl.XfrmUserSpiInfo{}
+	msg.XfrmUsersaInfo = *(xfrmUsersaInfoFromXfrmState(state))
+	// 1-255 is reserved by IANA for future use
+	msg.Min = 0x100
+	msg.Max = 0xffffffff
+	req.AddData(msg)
+
+	if state.Mark != nil {
+		out := nl.NewRtAttr(nl.XFRMA_MARK, writeMark(state.Mark))
+		req.AddData(out)
+	}
+
+	msgs, err := req.Execute(syscall.NETLINK_XFRM, 0)
+	if err != nil {
+		return nil, err
+	}
+
+	s, err := parseXfrmState(msgs[0], FAMILY_ALL)
+	if err != nil {
+		return nil, err
+	}
+
+	return s, err
+}
+
+// XfrmStateDel will delete an xfrm state from the system. Note that
+// the Algos are ignored when matching the state to delete.
+// Equivalent to: `ip xfrm state del $state`
+func XfrmStateDel(state *XfrmState) error {
+	return pkgHandle.XfrmStateDel(state)
+}
+
+// XfrmStateDel will delete an xfrm state from the system. Note that
+// the Algos are ignored when matching the state to delete.
+// Equivalent to: `ip xfrm state del $state`
+func (h *Handle) XfrmStateDel(state *XfrmState) error {
+	_, err := h.xfrmStateGetOrDelete(state, nl.XFRM_MSG_DELSA)
+	return err
+}
+
+// XfrmStateList gets a list of xfrm states in the system.
+// Equivalent to: `ip [-4|-6] xfrm state show`.
+// The list can be filtered by ip family.
+func XfrmStateList(family int) ([]XfrmState, error) {
+	return pkgHandle.XfrmStateList(family)
+}
+
+// XfrmStateList gets a list of xfrm states in the system.
+// Equivalent to: `ip xfrm state show`.
+// The list can be filtered by ip family.
+func (h *Handle) XfrmStateList(family int) ([]XfrmState, error) {
+	req := h.newNetlinkRequest(nl.XFRM_MSG_GETSA, syscall.NLM_F_DUMP)
+
+	msgs, err := req.Execute(syscall.NETLINK_XFRM, nl.XFRM_MSG_NEWSA)
+	if err != nil {
+		return nil, err
+	}
+
+	var res []XfrmState
+	for _, m := range msgs {
+		if state, err := parseXfrmState(m, family); err == nil {
+			res = append(res, *state)
+		} else if err == familyError {
+			continue
+		} else {
+			return nil, err
+		}
+	}
+	return res, nil
+}
+
+// XfrmStateGet gets the xfrm state described by the ID, if found.
+// Equivalent to: `ip xfrm state get ID [ mark MARK [ mask MASK ] ]`.
+// Only the fields which constitue the SA ID must be filled in:
+// ID := [ src ADDR ] [ dst ADDR ] [ proto XFRM-PROTO ] [ spi SPI ]
+// mark is optional
+func XfrmStateGet(state *XfrmState) (*XfrmState, error) {
+	return pkgHandle.XfrmStateGet(state)
+}
+
+// XfrmStateGet gets the xfrm state described by the ID, if found.
+// Equivalent to: `ip xfrm state get ID [ mark MARK [ mask MASK ] ]`.
+// Only the fields which constitue the SA ID must be filled in:
+// ID := [ src ADDR ] [ dst ADDR ] [ proto XFRM-PROTO ] [ spi SPI ]
+// mark is optional
+func (h *Handle) XfrmStateGet(state *XfrmState) (*XfrmState, error) {
+	return h.xfrmStateGetOrDelete(state, nl.XFRM_MSG_GETSA)
+}
+
+func (h *Handle) xfrmStateGetOrDelete(state *XfrmState, nlProto int) (*XfrmState, error) {
+	req := h.newNetlinkRequest(nlProto, syscall.NLM_F_ACK)
+
+	msg := &nl.XfrmUsersaId{}
+	msg.Family = uint16(nl.GetIPFamily(state.Dst))
+	msg.Daddr.FromIP(state.Dst)
+	msg.Proto = uint8(state.Proto)
+	msg.Spi = nl.Swap32(uint32(state.Spi))
+	req.AddData(msg)
+
+	if state.Mark != nil {
+		out := nl.NewRtAttr(nl.XFRMA_MARK, writeMark(state.Mark))
+		req.AddData(out)
+	}
+	if state.Src != nil {
+		out := nl.NewRtAttr(nl.XFRMA_SRCADDR, state.Src.To16())
+		req.AddData(out)
+	}
+
+	resType := nl.XFRM_MSG_NEWSA
+	if nlProto == nl.XFRM_MSG_DELSA {
+		resType = 0
+	}
+
+	msgs, err := req.Execute(syscall.NETLINK_XFRM, uint16(resType))
+	if err != nil {
+		return nil, err
+	}
+
+	if nlProto == nl.XFRM_MSG_DELSA {
+		return nil, nil
+	}
+
+	s, err := parseXfrmState(msgs[0], FAMILY_ALL)
+	if err != nil {
+		return nil, err
+	}
+
+	return s, nil
+}
+
+var familyError = fmt.Errorf("family error")
+
+func xfrmStateFromXfrmUsersaInfo(msg *nl.XfrmUsersaInfo) *XfrmState {
+	var state XfrmState
+
+	state.Dst = msg.Id.Daddr.ToIP()
+	state.Src = msg.Saddr.ToIP()
+	state.Proto = Proto(msg.Id.Proto)
+	state.Mode = Mode(msg.Mode)
+	state.Spi = int(nl.Swap32(msg.Id.Spi))
+	state.Reqid = int(msg.Reqid)
+	state.ReplayWindow = int(msg.ReplayWindow)
+	lftToLimits(&msg.Lft, &state.Limits)
+
+	return &state
+}
+
+func parseXfrmState(m []byte, family int) (*XfrmState, error) {
+	msg := nl.DeserializeXfrmUsersaInfo(m)
+
+	// This is mainly for the state dump
+	if family != FAMILY_ALL && family != int(msg.Family) {
+		return nil, familyError
+	}
+
+	state := xfrmStateFromXfrmUsersaInfo(msg)
+
+	attrs, err := nl.ParseRouteAttr(m[nl.SizeofXfrmUsersaInfo:])
+	if err != nil {
+		return nil, err
+	}
+
+	for _, attr := range attrs {
+		switch attr.Attr.Type {
+		case nl.XFRMA_ALG_AUTH, nl.XFRMA_ALG_CRYPT:
+			var resAlgo *XfrmStateAlgo
+			if attr.Attr.Type == nl.XFRMA_ALG_AUTH {
+				if state.Auth == nil {
+					state.Auth = new(XfrmStateAlgo)
+				}
+				resAlgo = state.Auth
+			} else {
+				state.Crypt = new(XfrmStateAlgo)
+				resAlgo = state.Crypt
+			}
+			algo := nl.DeserializeXfrmAlgo(attr.Value[:])
+			(*resAlgo).Name = nl.BytesToString(algo.AlgName[:])
+			(*resAlgo).Key = algo.AlgKey
+		case nl.XFRMA_ALG_AUTH_TRUNC:
+			if state.Auth == nil {
+				state.Auth = new(XfrmStateAlgo)
+			}
+			algo := nl.DeserializeXfrmAlgoAuth(attr.Value[:])
+			state.Auth.Name = nl.BytesToString(algo.AlgName[:])
+			state.Auth.Key = algo.AlgKey
+			state.Auth.TruncateLen = int(algo.AlgTruncLen)
+		case nl.XFRMA_ALG_AEAD:
+			state.Aead = new(XfrmStateAlgo)
+			algo := nl.DeserializeXfrmAlgoAEAD(attr.Value[:])
+			state.Aead.Name = nl.BytesToString(algo.AlgName[:])
+			state.Aead.Key = algo.AlgKey
+			state.Aead.ICVLen = int(algo.AlgICVLen)
+		case nl.XFRMA_ENCAP:
+			encap := nl.DeserializeXfrmEncapTmpl(attr.Value[:])
+			state.Encap = new(XfrmStateEncap)
+			state.Encap.Type = EncapType(encap.EncapType)
+			state.Encap.SrcPort = int(nl.Swap16(encap.EncapSport))
+			state.Encap.DstPort = int(nl.Swap16(encap.EncapDport))
+			state.Encap.OriginalAddress = encap.EncapOa.ToIP()
+		case nl.XFRMA_MARK:
+			mark := nl.DeserializeXfrmMark(attr.Value[:])
+			state.Mark = new(XfrmMark)
+			state.Mark.Value = mark.Value
+			state.Mark.Mask = mark.Mask
+		}
+	}
+
+	return state, nil
+}
+
+// XfrmStateFlush will flush the xfrm state on the system.
+// proto = 0 means any transformation protocols
+// Equivalent to: `ip xfrm state flush [ proto XFRM-PROTO ]`
+func XfrmStateFlush(proto Proto) error {
+	return pkgHandle.XfrmStateFlush(proto)
+}
+
+// XfrmStateFlush will flush the xfrm state on the system.
+// proto = 0 means any transformation protocols
+// Equivalent to: `ip xfrm state flush [ proto XFRM-PROTO ]`
+func (h *Handle) XfrmStateFlush(proto Proto) error {
+	req := h.newNetlinkRequest(nl.XFRM_MSG_FLUSHSA, syscall.NLM_F_ACK)
+
+	req.AddData(&nl.XfrmUsersaFlush{Proto: uint8(proto)})
+
+	_, err := req.Execute(syscall.NETLINK_XFRM, 0)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
+
+func limitsToLft(lmts XfrmStateLimits, lft *nl.XfrmLifetimeCfg) {
+	if lmts.ByteSoft != 0 {
+		lft.SoftByteLimit = lmts.ByteSoft
+	} else {
+		lft.SoftByteLimit = nl.XFRM_INF
+	}
+	if lmts.ByteHard != 0 {
+		lft.HardByteLimit = lmts.ByteHard
+	} else {
+		lft.HardByteLimit = nl.XFRM_INF
+	}
+	if lmts.PacketSoft != 0 {
+		lft.SoftPacketLimit = lmts.PacketSoft
+	} else {
+		lft.SoftPacketLimit = nl.XFRM_INF
+	}
+	if lmts.PacketHard != 0 {
+		lft.HardPacketLimit = lmts.PacketHard
+	} else {
+		lft.HardPacketLimit = nl.XFRM_INF
+	}
+	lft.SoftAddExpiresSeconds = lmts.TimeSoft
+	lft.HardAddExpiresSeconds = lmts.TimeHard
+	lft.SoftUseExpiresSeconds = lmts.TimeUseSoft
+	lft.HardUseExpiresSeconds = lmts.TimeUseHard
+}
+
+func lftToLimits(lft *nl.XfrmLifetimeCfg, lmts *XfrmStateLimits) {
+	*lmts = *(*XfrmStateLimits)(unsafe.Pointer(lft))
+}
+
+func xfrmUsersaInfoFromXfrmState(state *XfrmState) *nl.XfrmUsersaInfo {
+	msg := &nl.XfrmUsersaInfo{}
+	msg.Family = uint16(nl.GetIPFamily(state.Dst))
+	msg.Id.Daddr.FromIP(state.Dst)
+	msg.Saddr.FromIP(state.Src)
+	msg.Id.Proto = uint8(state.Proto)
+	msg.Mode = uint8(state.Mode)
+	msg.Id.Spi = nl.Swap32(uint32(state.Spi))
+	msg.Reqid = uint32(state.Reqid)
+	msg.ReplayWindow = uint8(state.ReplayWindow)
+
+	return msg
+}
diff --git a/vendor/github.com/vishvananda/netns/LICENSE b/vendor/github.com/vishvananda/netns/LICENSE
new file mode 100644
index 0000000000..9f64db8582
--- /dev/null
+++ b/vendor/github.com/vishvananda/netns/LICENSE
@@ -0,0 +1,192 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   Copyright 2014 Vishvananda Ishaya.
+   Copyright 2014 Docker, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/vendor/github.com/vishvananda/netns/netns.go b/vendor/github.com/vishvananda/netns/netns.go
new file mode 100644
index 0000000000..dd2f21570a
--- /dev/null
+++ b/vendor/github.com/vishvananda/netns/netns.go
@@ -0,0 +1,80 @@
+// Package netns allows ultra-simple network namespace handling. NsHandles
+// can be retrieved and set. Note that the current namespace is thread
+// local so actions that set and reset namespaces should use LockOSThread
+// to make sure the namespace doesn't change due to a goroutine switch.
+// It is best to close NsHandles when you are done with them. This can be
+// accomplished via a `defer ns.Close()` on the handle. Changing namespaces
+// requires elevated privileges, so in most cases this code needs to be run
+// as root.
+package netns
+
+import (
+	"fmt"
+	"syscall"
+)
+
+// NsHandle is a handle to a network namespace. It can be cast directly
+// to an int and used as a file descriptor.
+type NsHandle int
+
+// Equal determines if two network handles refer to the same network
+// namespace. This is done by comparing the device and inode that the
+// file descriptors point to.
+func (ns NsHandle) Equal(other NsHandle) bool {
+	if ns == other {
+		return true
+	}
+	var s1, s2 syscall.Stat_t
+	if err := syscall.Fstat(int(ns), &s1); err != nil {
+		return false
+	}
+	if err := syscall.Fstat(int(other), &s2); err != nil {
+		return false
+	}
+	return (s1.Dev == s2.Dev) && (s1.Ino == s2.Ino)
+}
+
+// String shows the file descriptor number and its dev and inode.
+func (ns NsHandle) String() string {
+	var s syscall.Stat_t
+	if ns == -1 {
+		return "NS(None)"
+	}
+	if err := syscall.Fstat(int(ns), &s); err != nil {
+		return fmt.Sprintf("NS(%d: unknown)", ns)
+	}
+	return fmt.Sprintf("NS(%d: %d, %d)", ns, s.Dev, s.Ino)
+}
+
+// UniqueId returns a string which uniquely identifies the namespace
+// associated with the network handle.
+func (ns NsHandle) UniqueId() string {
+	var s syscall.Stat_t
+	if ns == -1 {
+		return "NS(none)"
+	}
+	if err := syscall.Fstat(int(ns), &s); err != nil {
+		return "NS(unknown)"
+	}
+	return fmt.Sprintf("NS(%d:%d)", s.Dev, s.Ino)
+}
+
+// IsOpen returns true if Close() has not been called.
+func (ns NsHandle) IsOpen() bool {
+	return ns != -1
+}
+
+// Close closes the NsHandle and resets its file descriptor to -1.
+// It is not safe to use an NsHandle after Close() is called.
+func (ns *NsHandle) Close() error {
+	if err := syscall.Close(int(*ns)); err != nil {
+		return err
+	}
+	(*ns) = -1
+	return nil
+}
+
+// None gets an empty (closed) NsHandle.
+func None() NsHandle {
+	return NsHandle(-1)
+}
diff --git a/vendor/github.com/vishvananda/netns/netns_linux.go b/vendor/github.com/vishvananda/netns/netns_linux.go
new file mode 100644
index 0000000000..34af6e28b3
--- /dev/null
+++ b/vendor/github.com/vishvananda/netns/netns_linux.go
@@ -0,0 +1,226 @@
+// +build linux
+
+package netns
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"path/filepath"
+	"runtime"
+	"strconv"
+	"strings"
+	"syscall"
+)
+
+// SYS_SETNS syscall allows changing the namespace of the current process.
+var SYS_SETNS = map[string]uintptr{
+	"386":     346,
+	"amd64":   308,
+	"arm64":   268,
+	"arm":     375,
+	"mips":    4344,
+	"mipsle":  4344,
+	"ppc64":   350,
+	"ppc64le": 350,
+	"s390x":   339,
+}[runtime.GOARCH]
+
+// Deprecated: use syscall pkg instead (go >= 1.5 needed).
+const (
+	CLONE_NEWUTS  = 0x04000000 /* New utsname group? */
+	CLONE_NEWIPC  = 0x08000000 /* New ipcs */
+	CLONE_NEWUSER = 0x10000000 /* New user namespace */
+	CLONE_NEWPID  = 0x20000000 /* New pid namespace */
+	CLONE_NEWNET  = 0x40000000 /* New network namespace */
+	CLONE_IO      = 0x80000000 /* Get io context */
+)
+
+// Setns sets namespace using syscall. Note that this should be a method
+// in syscall but it has not been added.
+func Setns(ns NsHandle, nstype int) (err error) {
+	_, _, e1 := syscall.Syscall(SYS_SETNS, uintptr(ns), uintptr(nstype), 0)
+	if e1 != 0 {
+		err = e1
+	}
+	return
+}
+
+// Set sets the current network namespace to the namespace represented
+// by NsHandle.
+func Set(ns NsHandle) (err error) {
+	return Setns(ns, CLONE_NEWNET)
+}
+
+// New creates a new network namespace and returns a handle to it.
+func New() (ns NsHandle, err error) {
+	if err := syscall.Unshare(CLONE_NEWNET); err != nil {
+		return -1, err
+	}
+	return Get()
+}
+
+// Get gets a handle to the current threads network namespace.
+func Get() (NsHandle, error) {
+	return GetFromThread(os.Getpid(), syscall.Gettid())
+}
+
+// GetFromPath gets a handle to a network namespace
+// identified by the path
+func GetFromPath(path string) (NsHandle, error) {
+	fd, err := syscall.Open(path, syscall.O_RDONLY, 0)
+	if err != nil {
+		return -1, err
+	}
+	return NsHandle(fd), nil
+}
+
+// GetFromName gets a handle to a named network namespace such as one
+// created by `ip netns add`.
+func GetFromName(name string) (NsHandle, error) {
+	return GetFromPath(fmt.Sprintf("/var/run/netns/%s", name))
+}
+
+// GetFromPid gets a handle to the network namespace of a given pid.
+func GetFromPid(pid int) (NsHandle, error) {
+	return GetFromPath(fmt.Sprintf("/proc/%d/ns/net", pid))
+}
+
+// GetFromThread gets a handle to the network namespace of a given pid and tid.
+func GetFromThread(pid, tid int) (NsHandle, error) {
+	return GetFromPath(fmt.Sprintf("/proc/%d/task/%d/ns/net", pid, tid))
+}
+
+// GetFromDocker gets a handle to the network namespace of a docker container.
+// Id is prefixed matched against the running docker containers, so a short
+// identifier can be used as long as it isn't ambiguous.
+func GetFromDocker(id string) (NsHandle, error) {
+	pid, err := getPidForContainer(id)
+	if err != nil {
+		return -1, err
+	}
+	return GetFromPid(pid)
+}
+
+// borrowed from docker/utils/utils.go
+func findCgroupMountpoint(cgroupType string) (string, error) {
+	output, err := ioutil.ReadFile("/proc/mounts")
+	if err != nil {
+		return "", err
+	}
+
+	// /proc/mounts has 6 fields per line, one mount per line, e.g.
+	// cgroup /sys/fs/cgroup/devices cgroup rw,relatime,devices 0 0
+	for _, line := range strings.Split(string(output), "\n") {
+		parts := strings.Split(line, " ")
+		if len(parts) == 6 && parts[2] == "cgroup" {
+			for _, opt := range strings.Split(parts[3], ",") {
+				if opt == cgroupType {
+					return parts[1], nil
+				}
+			}
+		}
+	}
+
+	return "", fmt.Errorf("cgroup mountpoint not found for %s", cgroupType)
+}
+
+// Returns the relative path to the cgroup docker is running in.
+// borrowed from docker/utils/utils.go
+// modified to get the docker pid instead of using /proc/self
+func getThisCgroup(cgroupType string) (string, error) {
+	dockerpid, err := ioutil.ReadFile("/var/run/docker.pid")
+	if err != nil {
+		return "", err
+	}
+	result := strings.Split(string(dockerpid), "\n")
+	if len(result) == 0 || len(result[0]) == 0 {
+		return "", fmt.Errorf("docker pid not found in /var/run/docker.pid")
+	}
+	pid, err := strconv.Atoi(result[0])
+	if err != nil {
+		return "", err
+	}
+	output, err := ioutil.ReadFile(fmt.Sprintf("/proc/%d/cgroup", pid))
+	if err != nil {
+		return "", err
+	}
+	for _, line := range strings.Split(string(output), "\n") {
+		parts := strings.Split(line, ":")
+		// any type used by docker should work
+		if parts[1] == cgroupType {
+			return parts[2], nil
+		}
+	}
+	return "", fmt.Errorf("cgroup '%s' not found in /proc/%d/cgroup", cgroupType, pid)
+}
+
+// Returns the first pid in a container.
+// borrowed from docker/utils/utils.go
+// modified to only return the first pid
+// modified to glob with id
+// modified to search for newer docker containers
+func getPidForContainer(id string) (int, error) {
+	pid := 0
+
+	// memory is chosen randomly, any cgroup used by docker works
+	cgroupType := "memory"
+
+	cgroupRoot, err := findCgroupMountpoint(cgroupType)
+	if err != nil {
+		return pid, err
+	}
+
+	cgroupThis, err := getThisCgroup(cgroupType)
+	if err != nil {
+		return pid, err
+	}
+
+	id += "*"
+
+	attempts := []string{
+		filepath.Join(cgroupRoot, cgroupThis, id, "tasks"),
+		// With more recent lxc versions use, cgroup will be in lxc/
+		filepath.Join(cgroupRoot, cgroupThis, "lxc", id, "tasks"),
+		// With more recent docker, cgroup will be in docker/
+		filepath.Join(cgroupRoot, cgroupThis, "docker", id, "tasks"),
+		// Even more recent docker versions under systemd use docker-<id>.scope/
+		filepath.Join(cgroupRoot, "system.slice", "docker-"+id+".scope", "tasks"),
+		// Even more recent docker versions under cgroup/systemd/docker/<id>/
+		filepath.Join(cgroupRoot, "..", "systemd", "docker", id, "tasks"),
+		// Kubernetes with docker and CNI is even more different
+		filepath.Join(cgroupRoot, "..", "systemd", "kubepods", "*", "pod*", id, "tasks"),
+	}
+
+	var filename string
+	for _, attempt := range attempts {
+		filenames, _ := filepath.Glob(attempt)
+		if len(filenames) > 1 {
+			return pid, fmt.Errorf("Ambiguous id supplied: %v", filenames)
+		} else if len(filenames) == 1 {
+			filename = filenames[0]
+			break
+		}
+	}
+
+	if filename == "" {
+		return pid, fmt.Errorf("Unable to find container: %v", id[:len(id)-1])
+	}
+
+	output, err := ioutil.ReadFile(filename)
+	if err != nil {
+		return pid, err
+	}
+
+	result := strings.Split(string(output), "\n")
+	if len(result) == 0 || len(result[0]) == 0 {
+		return pid, fmt.Errorf("No pid found for container")
+	}
+
+	pid, err = strconv.Atoi(result[0])
+	if err != nil {
+		return pid, fmt.Errorf("Invalid pid '%s': %s", result[0], err)
+	}
+
+	return pid, nil
+}
diff --git a/vendor/github.com/vishvananda/netns/netns_unspecified.go b/vendor/github.com/vishvananda/netns/netns_unspecified.go
new file mode 100644
index 0000000000..d06af62b68
--- /dev/null
+++ b/vendor/github.com/vishvananda/netns/netns_unspecified.go
@@ -0,0 +1,43 @@
+// +build !linux
+
+package netns
+
+import (
+	"errors"
+)
+
+var (
+	ErrNotImplemented = errors.New("not implemented")
+)
+
+func Set(ns NsHandle) (err error) {
+	return ErrNotImplemented
+}
+
+func New() (ns NsHandle, err error) {
+	return -1, ErrNotImplemented
+}
+
+func Get() (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
+
+func GetFromPath(path string) (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
+
+func GetFromName(name string) (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
+
+func GetFromPid(pid int) (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
+
+func GetFromThread(pid, tid int) (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
+
+func GetFromDocker(id string) (NsHandle, error) {
+	return -1, ErrNotImplemented
+}
diff --git a/vendor/go.opencensus.io/internal/internal.go b/vendor/go.opencensus.io/internal/internal.go
index fce1f02dc2..ec8c72dcf1 100644
--- a/vendor/go.opencensus.io/internal/internal.go
+++ b/vendor/go.opencensus.io/internal/internal.go
@@ -12,7 +12,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-package internal
+package internal // import "go.opencensus.io/internal"
 
 import "time"
 
diff --git a/vendor/go.opencensus.io/internal/tagencoding/tagencoding.go b/vendor/go.opencensus.io/internal/tagencoding/tagencoding.go
index d9f23abee2..3b1af8b4b8 100644
--- a/vendor/go.opencensus.io/internal/tagencoding/tagencoding.go
+++ b/vendor/go.opencensus.io/internal/tagencoding/tagencoding.go
@@ -15,7 +15,7 @@
 
 // Package tagencoding contains the tag encoding
 // used interally by the stats collector.
-package tagencoding
+package tagencoding // import "go.opencensus.io/internal/tagencoding"
 
 type Values struct {
 	Buffer     []byte
diff --git a/vendor/go.opencensus.io/plugin/ochttp/propagation/b3/b3.go b/vendor/go.opencensus.io/plugin/ochttp/propagation/b3/b3.go
index ddc99460a2..168d81e759 100644
--- a/vendor/go.opencensus.io/plugin/ochttp/propagation/b3/b3.go
+++ b/vendor/go.opencensus.io/plugin/ochttp/propagation/b3/b3.go
@@ -15,7 +15,7 @@
 // Package b3 contains a propagation.HTTPFormat implementation
 // for B3 propagation. See https://github.com/openzipkin/b3-propagation
 // for more details.
-package b3
+package b3 // import "go.opencensus.io/plugin/ochttp/propagation/b3"
 
 import (
 	"encoding/hex"
diff --git a/vendor/go.opencensus.io/plugin/ochttp/server.go b/vendor/go.opencensus.io/plugin/ochttp/server.go
index a92c7c1ed6..554e05ffaf 100644
--- a/vendor/go.opencensus.io/plugin/ochttp/server.go
+++ b/vendor/go.opencensus.io/plugin/ochttp/server.go
@@ -76,20 +76,19 @@ func (h *Handler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
 }
 
 func (h *Handler) startTrace(w http.ResponseWriter, r *http.Request) (*http.Request, func()) {
-	opts := trace.StartOptions{
-		Sampler:  h.StartOptions.Sampler,
-		SpanKind: trace.SpanKindServer,
-	}
-
 	name := spanNameFromURL(r.URL)
 	ctx := r.Context()
 	var span *trace.Span
 	sc, ok := h.extractSpanContext(r)
 	if ok && !h.IsPublicEndpoint {
-		span = trace.NewSpanWithRemoteParent(name, sc, opts)
-		ctx = trace.WithSpan(ctx, span)
+		ctx, span = trace.StartSpanWithRemoteParent(ctx, name, sc,
+			trace.WithSampler(h.StartOptions.Sampler),
+			trace.WithSpanKind(trace.SpanKindServer))
 	} else {
-		span = trace.NewSpan(name, nil, opts)
+		ctx, span = trace.StartSpan(ctx, name,
+			trace.WithSampler(h.StartOptions.Sampler),
+			trace.WithSpanKind(trace.SpanKindServer),
+		)
 		if ok {
 			span.AddLink(trace.Link{
 				TraceID:    sc.TraceID,
@@ -99,9 +98,8 @@ func (h *Handler) startTrace(w http.ResponseWriter, r *http.Request) (*http.Requ
 			})
 		}
 	}
-	ctx = trace.WithSpan(ctx, span)
 	span.AddAttributes(requestAttrs(r)...)
-	return r.WithContext(trace.WithSpan(r.Context(), span)), span.End
+	return r.WithContext(ctx), span.End
 }
 
 func (h *Handler) extractSpanContext(r *http.Request) (trace.SpanContext, bool) {
@@ -137,6 +135,7 @@ type trackingResponseWriter struct {
 	respSize   int64
 	start      time.Time
 	statusCode int
+	statusLine string
 	endOnce    sync.Once
 	writer     http.ResponseWriter
 }
@@ -159,6 +158,10 @@ func (t *trackingResponseWriter) end() {
 		if t.statusCode == 0 {
 			t.statusCode = 200
 		}
+
+		span := trace.FromContext(t.ctx)
+		span.SetStatus(TraceStatus(t.statusCode, t.statusLine))
+
 		m := []stats.Measurement{
 			ServerLatency.M(float64(time.Since(t.start)) / float64(time.Millisecond)),
 			ServerResponseBytes.M(t.respSize),
@@ -184,6 +187,7 @@ func (t *trackingResponseWriter) Write(data []byte) (int, error) {
 func (t *trackingResponseWriter) WriteHeader(statusCode int) {
 	t.writer.WriteHeader(statusCode)
 	t.statusCode = statusCode
+	t.statusLine = http.StatusText(t.statusCode)
 }
 
 func (t *trackingResponseWriter) Flush() {
diff --git a/vendor/go.opencensus.io/plugin/ochttp/stats.go b/vendor/go.opencensus.io/plugin/ochttp/stats.go
index 803a606f23..2bd11f6ddc 100644
--- a/vendor/go.opencensus.io/plugin/ochttp/stats.go
+++ b/vendor/go.opencensus.io/plugin/ochttp/stats.go
@@ -22,7 +22,7 @@ import (
 
 // The following client HTTP measures are supported for use in custom views.
 var (
-	ClientRequestCount  = stats.Int64("opencensus.io/http/client/request_count", "Number of HTTP requests started", stats.UnitNone)
+	ClientRequestCount  = stats.Int64("opencensus.io/http/client/request_count", "Number of HTTP requests started", stats.UnitDimensionless)
 	ClientRequestBytes  = stats.Int64("opencensus.io/http/client/request_bytes", "HTTP request body size if set as ContentLength (uncompressed)", stats.UnitBytes)
 	ClientResponseBytes = stats.Int64("opencensus.io/http/client/response_bytes", "HTTP response body size (uncompressed)", stats.UnitBytes)
 	ClientLatency       = stats.Float64("opencensus.io/http/client/latency", "End-to-end latency", stats.UnitMilliseconds)
@@ -30,7 +30,7 @@ var (
 
 // The following server HTTP measures are supported for use in custom views:
 var (
-	ServerRequestCount  = stats.Int64("opencensus.io/http/server/request_count", "Number of HTTP requests started", stats.UnitNone)
+	ServerRequestCount  = stats.Int64("opencensus.io/http/server/request_count", "Number of HTTP requests started", stats.UnitDimensionless)
 	ServerRequestBytes  = stats.Int64("opencensus.io/http/server/request_bytes", "HTTP request body size if set as ContentLength (uncompressed)", stats.UnitBytes)
 	ServerResponseBytes = stats.Int64("opencensus.io/http/server/response_bytes", "HTTP response body size (uncompressed)", stats.UnitBytes)
 	ServerLatency       = stats.Float64("opencensus.io/http/server/latency", "End-to-end latency", stats.UnitMilliseconds)
diff --git a/vendor/go.opencensus.io/plugin/ochttp/trace.go b/vendor/go.opencensus.io/plugin/ochttp/trace.go
index 10d4a70609..80ee86c7a1 100644
--- a/vendor/go.opencensus.io/plugin/ochttp/trace.go
+++ b/vendor/go.opencensus.io/plugin/ochttp/trace.go
@@ -53,10 +53,11 @@ func (t *traceTransport) RoundTrip(req *http.Request) (*http.Response, error) {
 	name := spanNameFromURL(req.URL)
 	// TODO(jbd): Discuss whether we want to prefix
 	// outgoing requests with Sent.
-	parent := trace.FromContext(req.Context())
-	span := trace.NewSpan(name, parent, t.startOptions)
-	req = req.WithContext(trace.WithSpan(req.Context(), span))
+	_, span := trace.StartSpan(req.Context(), name,
+		trace.WithSampler(t.startOptions.Sampler),
+		trace.WithSpanKind(trace.SpanKindClient))
 
+	req = req.WithContext(trace.WithSpan(req.Context(), span))
 	if t.format != nil {
 		t.format.SpanContextToRequest(span.SpanContext(), req)
 	}
@@ -64,13 +65,13 @@ func (t *traceTransport) RoundTrip(req *http.Request) (*http.Response, error) {
 	span.AddAttributes(requestAttrs(req)...)
 	resp, err := t.base.RoundTrip(req)
 	if err != nil {
-		span.SetStatus(trace.Status{Code: 2, Message: err.Error()})
+		span.SetStatus(trace.Status{Code: trace.StatusCodeUnknown, Message: err.Error()})
 		span.End()
 		return resp, err
 	}
 
 	span.AddAttributes(responseAttrs(resp)...)
-	span.SetStatus(status(resp.StatusCode))
+	span.SetStatus(TraceStatus(resp.StatusCode, resp.Status))
 
 	// span.End() will be invoked after
 	// a read from resp.Body returns io.EOF or when
@@ -145,71 +146,54 @@ func responseAttrs(resp *http.Response) []trace.Attribute {
 	}
 }
 
-func status(statusCode int) trace.Status {
+// HTTPStatusToTraceStatus converts the HTTP status code to a trace.Status that
+// represents the outcome as closely as possible.
+func TraceStatus(httpStatusCode int, statusLine string) trace.Status {
 	var code int32
-	if statusCode < 200 || statusCode >= 400 {
-		code = codeUnknown
+	if httpStatusCode < 200 || httpStatusCode >= 400 {
+		code = trace.StatusCodeUnknown
 	}
-	switch statusCode {
+	switch httpStatusCode {
 	case 499:
-		code = codeCancelled
+		code = trace.StatusCodeCancelled
 	case http.StatusBadRequest:
-		code = codeInvalidArgument
+		code = trace.StatusCodeInvalidArgument
 	case http.StatusGatewayTimeout:
-		code = codeDeadlineExceeded
+		code = trace.StatusCodeDeadlineExceeded
 	case http.StatusNotFound:
-		code = codeNotFound
+		code = trace.StatusCodeNotFound
 	case http.StatusForbidden:
-		code = codePermissionDenied
+		code = trace.StatusCodePermissionDenied
 	case http.StatusUnauthorized: // 401 is actually unauthenticated.
-		code = codeUnathenticated
+		code = trace.StatusCodeUnauthenticated
 	case http.StatusTooManyRequests:
-		code = codeResourceExhausted
+		code = trace.StatusCodeResourceExhausted
 	case http.StatusNotImplemented:
-		code = codeUnimplemented
+		code = trace.StatusCodeUnimplemented
 	case http.StatusServiceUnavailable:
-		code = codeUnavailable
+		code = trace.StatusCodeUnavailable
+	case http.StatusOK:
+		code = trace.StatusCodeOK
 	}
 	return trace.Status{Code: code, Message: codeToStr[code]}
 }
 
-// TODO(jbd): Provide status codes from trace package.
-const (
-	codeOK                 = 0
-	codeCancelled          = 1
-	codeUnknown            = 2
-	codeInvalidArgument    = 3
-	codeDeadlineExceeded   = 4
-	codeNotFound           = 5
-	codeAlreadyExists      = 6
-	codePermissionDenied   = 7
-	codeResourceExhausted  = 8
-	codeFailedPrecondition = 9
-	codeAborted            = 10
-	codeOutOfRange         = 11
-	codeUnimplemented      = 12
-	codeInternal           = 13
-	codeUnavailable        = 14
-	codeDataLoss           = 15
-	codeUnathenticated     = 16
-)
-
 var codeToStr = map[int32]string{
-	codeOK:                 `"OK"`,
-	codeCancelled:          `"CANCELLED"`,
-	codeUnknown:            `"UNKNOWN"`,
-	codeInvalidArgument:    `"INVALID_ARGUMENT"`,
-	codeDeadlineExceeded:   `"DEADLINE_EXCEEDED"`,
-	codeNotFound:           `"NOT_FOUND"`,
-	codeAlreadyExists:      `"ALREADY_EXISTS"`,
-	codePermissionDenied:   `"PERMISSION_DENIED"`,
-	codeResourceExhausted:  `"RESOURCE_EXHAUSTED"`,
-	codeFailedPrecondition: `"FAILED_PRECONDITION"`,
-	codeAborted:            `"ABORTED"`,
-	codeOutOfRange:         `"OUT_OF_RANGE"`,
-	codeUnimplemented:      `"UNIMPLEMENTED"`,
-	codeInternal:           `"INTERNAL"`,
-	codeUnavailable:        `"UNAVAILABLE"`,
-	codeDataLoss:           `"DATA_LOSS"`,
-	codeUnathenticated:     `"UNAUTHENTICATED"`,
+	trace.StatusCodeOK:                 `"OK"`,
+	trace.StatusCodeCancelled:          `"CANCELLED"`,
+	trace.StatusCodeUnknown:            `"UNKNOWN"`,
+	trace.StatusCodeInvalidArgument:    `"INVALID_ARGUMENT"`,
+	trace.StatusCodeDeadlineExceeded:   `"DEADLINE_EXCEEDED"`,
+	trace.StatusCodeNotFound:           `"NOT_FOUND"`,
+	trace.StatusCodeAlreadyExists:      `"ALREADY_EXISTS"`,
+	trace.StatusCodePermissionDenied:   `"PERMISSION_DENIED"`,
+	trace.StatusCodeResourceExhausted:  `"RESOURCE_EXHAUSTED"`,
+	trace.StatusCodeFailedPrecondition: `"FAILED_PRECONDITION"`,
+	trace.StatusCodeAborted:            `"ABORTED"`,
+	trace.StatusCodeOutOfRange:         `"OUT_OF_RANGE"`,
+	trace.StatusCodeUnimplemented:      `"UNIMPLEMENTED"`,
+	trace.StatusCodeInternal:           `"INTERNAL"`,
+	trace.StatusCodeUnavailable:        `"UNAVAILABLE"`,
+	trace.StatusCodeDataLoss:           `"DATA_LOSS"`,
+	trace.StatusCodeUnauthenticated:    `"UNAUTHENTICATED"`,
 }
diff --git a/vendor/go.opencensus.io/stats/internal/validation.go b/vendor/go.opencensus.io/stats/internal/validation.go
index b962d524f2..b946667f96 100644
--- a/vendor/go.opencensus.io/stats/internal/validation.go
+++ b/vendor/go.opencensus.io/stats/internal/validation.go
@@ -12,7 +12,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-package internal
+package internal // import "go.opencensus.io/stats/internal"
 
 const (
 	MaxNameLength = 255
diff --git a/vendor/go.opencensus.io/stats/units.go b/vendor/go.opencensus.io/stats/units.go
index d37e2152fe..6931a5f296 100644
--- a/vendor/go.opencensus.io/stats/units.go
+++ b/vendor/go.opencensus.io/stats/units.go
@@ -18,7 +18,8 @@ package stats
 // Units are encoded according to the case-sensitive abbreviations from the
 // Unified Code for Units of Measure: http://unitsofmeasure.org/ucum.html
 const (
-	UnitNone         = "1"
-	UnitBytes        = "By"
-	UnitMilliseconds = "ms"
+	UnitNone          = "1" // Deprecated: Use UnitDimensionless.
+	UnitDimensionless = "1"
+	UnitBytes         = "By"
+	UnitMilliseconds  = "ms"
 )
diff --git a/vendor/go.opencensus.io/stats/view/worker.go b/vendor/go.opencensus.io/stats/view/worker.go
index 2c9b621260..c19de05716 100644
--- a/vendor/go.opencensus.io/stats/view/worker.go
+++ b/vendor/go.opencensus.io/stats/view/worker.go
@@ -86,7 +86,7 @@ func Unregister(views ...*View) {
 	for i := range views {
 		names[i] = views[i].Name
 	}
-	req := &unsubscribeFromViewReq{
+	req := &unregisterFromViewReq{
 		views: names,
 		done:  make(chan struct{}),
 	}
diff --git a/vendor/go.opencensus.io/stats/view/worker_commands.go b/vendor/go.opencensus.io/stats/view/worker_commands.go
index 0d244ac7e7..ef79ec383c 100644
--- a/vendor/go.opencensus.io/stats/view/worker_commands.go
+++ b/vendor/go.opencensus.io/stats/view/worker_commands.go
@@ -73,15 +73,15 @@ func (cmd *registerViewReq) handleCommand(w *worker) {
 	}
 }
 
-// unsubscribeFromViewReq is the command to unsubscribe to a view. Has no
+// unregisterFromViewReq is the command to unsubscribe to a view. Has no
 // impact on the data collection for client that are pulling data from the
 // library.
-type unsubscribeFromViewReq struct {
+type unregisterFromViewReq struct {
 	views []string
 	done  chan struct{}
 }
 
-func (cmd *unsubscribeFromViewReq) handleCommand(w *worker) {
+func (cmd *unregisterFromViewReq) handleCommand(w *worker) {
 	for _, name := range cmd.views {
 		vi, ok := w.views[name]
 		if !ok {
@@ -94,6 +94,7 @@ func (cmd *unsubscribeFromViewReq) handleCommand(w *worker) {
 			// The collected data can be cleared.
 			vi.clearRows()
 		}
+		delete(w.views, name)
 	}
 	cmd.done <- struct{}{}
 }
diff --git a/vendor/go.opencensus.io/trace/doc.go b/vendor/go.opencensus.io/trace/doc.go
index 2501271ef6..a2b54e58ca 100644
--- a/vendor/go.opencensus.io/trace/doc.go
+++ b/vendor/go.opencensus.io/trace/doc.go
@@ -13,19 +13,18 @@
 // limitations under the License.
 
 /*
-Package trace contains types for representing trace information, and
-functions for global configuration of tracing.
+Package trace contains support for OpenCensus distributed tracing.
 
 The following assumes a basic familiarity with OpenCensus concepts.
 See http://opencensus.io
 
 
-Enabling Tracing for a Program
+Exporting Traces
 
-To use OpenCensus tracing, register at least one Exporter. You can use
+To export collected tracing data, register at least one exporter. You can use
 one of the provided exporters or write your own.
 
-    trace.RegisterExporter(anExporter)
+    trace.RegisterExporter(exporter)
 
 By default, traces will be sampled relatively rarely. To change the sampling
 frequency for your entire program, call ApplyConfig. Use a ProbabilitySampler
@@ -43,13 +42,10 @@ It is common to want to capture all the activity of a function call in a span. F
 this to work, the function must take a context.Context as a parameter. Add these two
 lines to the top of the function:
 
-    ctx, span := trace.StartSpan(ctx, "your choice of name")
+    ctx, span := trace.StartSpan(ctx, "my.org/Run")
     defer span.End()
 
 StartSpan will create a new top-level span if the context
 doesn't contain another span, otherwise it will create a child span.
-
-As a suggestion, use the fully-qualified function name as the span name, e.g.
-"github.com/me/mypackage.Run".
 */
 package trace // import "go.opencensus.io/trace"
diff --git a/vendor/go.opencensus.io/trace/propagation/propagation.go b/vendor/go.opencensus.io/trace/propagation/propagation.go
index a3b00f474f..1eb190a96a 100644
--- a/vendor/go.opencensus.io/trace/propagation/propagation.go
+++ b/vendor/go.opencensus.io/trace/propagation/propagation.go
@@ -13,7 +13,7 @@
 // limitations under the License.
 
 // Package propagation implements the binary trace context format.
-package propagation
+package propagation // import "go.opencensus.io/trace/propagation"
 
 // TODO: link to external spec document.
 
diff --git a/vendor/go.opencensus.io/trace/status_codes.go b/vendor/go.opencensus.io/trace/status_codes.go
new file mode 100644
index 0000000000..ec60effd10
--- /dev/null
+++ b/vendor/go.opencensus.io/trace/status_codes.go
@@ -0,0 +1,37 @@
+// Copyright 2018, OpenCensus Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package trace
+
+// Status codes for use with Span.SetStatus. These correspond to the status
+// codes used by gRPC defined here: https://github.com/googleapis/googleapis/blob/master/google/rpc/code.proto
+const (
+	StatusCodeOK                 = 0
+	StatusCodeCancelled          = 1
+	StatusCodeUnknown            = 2
+	StatusCodeInvalidArgument    = 3
+	StatusCodeDeadlineExceeded   = 4
+	StatusCodeNotFound           = 5
+	StatusCodeAlreadyExists      = 6
+	StatusCodePermissionDenied   = 7
+	StatusCodeResourceExhausted  = 8
+	StatusCodeFailedPrecondition = 9
+	StatusCodeAborted            = 10
+	StatusCodeOutOfRange         = 11
+	StatusCodeUnimplemented      = 12
+	StatusCodeInternal           = 13
+	StatusCodeUnavailable        = 14
+	StatusCodeDataLoss           = 15
+	StatusCodeUnauthenticated    = 16
+)
diff --git a/vendor/go.opencensus.io/trace/trace.go b/vendor/go.opencensus.io/trace/trace.go
index 49a1c01965..19c6930efa 100644
--- a/vendor/go.opencensus.io/trace/trace.go
+++ b/vendor/go.opencensus.io/trace/trace.go
@@ -43,7 +43,9 @@ type Span struct {
 	spanContext SpanContext
 	// spanStore is the spanStore this span belongs to, if any, otherwise it is nil.
 	*spanStore
-	exportOnce sync.Once
+	endOnce sync.Once
+
+	executionTracerTaskEnd func() // ends the execution tracer span
 }
 
 // IsRecordingEvents returns true if events are being recorded for this span.
@@ -97,7 +99,14 @@ func FromContext(ctx context.Context) *Span {
 }
 
 // WithSpan returns a new context with the given Span attached.
+//
+// Deprecated: Use NewContext.
 func WithSpan(parent context.Context, s *Span) context.Context {
+	return NewContext(parent, s)
+}
+
+// NewContext returns a new context with the given Span attached.
+func NewContext(parent context.Context, s *Span) context.Context {
 	return context.WithValue(parent, contextKey{}, s)
 }
 
@@ -125,32 +134,73 @@ type StartOptions struct {
 	SpanKind int
 }
 
+// StartOption apply changes to StartOptions.
+type StartOption func(*StartOptions)
+
+// WithSpanKind makes new spans to be created with the given kind.
+func WithSpanKind(spanKind int) StartOption {
+	return func(o *StartOptions) {
+		o.SpanKind = spanKind
+	}
+}
+
+// WithSampler makes new spans to be be created with a custom sampler.
+// Otherwise, the global sampler is used.
+func WithSampler(sampler Sampler) StartOption {
+	return func(o *StartOptions) {
+		o.Sampler = sampler
+	}
+}
+
 // StartSpan starts a new child span of the current span in the context. If
 // there is no span in the context, creates a new trace and span.
+func StartSpan(ctx context.Context, name string, o ...StartOption) (context.Context, *Span) {
+	var opts StartOptions
+	var parent SpanContext
+	if p := FromContext(ctx); p != nil {
+		parent = p.spanContext
+	}
+	for _, op := range o {
+		op(&opts)
+	}
+	span := startSpanInternal(name, parent != SpanContext{}, parent, false, opts)
+
+	ctx, end := startExecutionTracerTask(ctx, name)
+	span.executionTracerTaskEnd = end
+	return NewContext(ctx, span), span
+}
+
+// StartSpanWithRemoteParent starts a new child span of the span from the given parent.
 //
-// This is provided as a convenience for WithSpan(ctx, NewSpan(...)). Use it
-// if you require custom spans in addition to the default spans provided by
-// ocgrpc, ochttp or similar framework integration.
-func StartSpan(ctx context.Context, name string) (context.Context, *Span) {
-	parentSpan, _ := ctx.Value(contextKey{}).(*Span)
-	span := NewSpan(name, parentSpan, StartOptions{})
-	return WithSpan(ctx, span), span
+// If the incoming context contains a parent, it ignores. StartSpanWithRemoteParent is
+// preferred for cases where the parent is propagated via an incoming request.
+func StartSpanWithRemoteParent(ctx context.Context, name string, parent SpanContext, o ...StartOption) (context.Context, *Span) {
+	var opts StartOptions
+	for _, op := range o {
+		op(&opts)
+	}
+	span := startSpanInternal(name, parent != SpanContext{}, parent, true, opts)
+	ctx, end := startExecutionTracerTask(ctx, name)
+	span.executionTracerTaskEnd = end
+	return NewContext(ctx, span), span
 }
 
 // NewSpan returns a new span.
 //
 // If parent is not nil, created span will be a child of the parent.
+//
+// Deprecated: Use StartSpan.
 func NewSpan(name string, parent *Span, o StartOptions) *Span {
-	hasParent := false
 	var parentSpanContext SpanContext
 	if parent != nil {
-		hasParent = true
 		parentSpanContext = parent.SpanContext()
 	}
-	return startSpanInternal(name, hasParent, parentSpanContext, false, o)
+	return startSpanInternal(name, parent != nil, parentSpanContext, false, o)
 }
 
 // NewSpanWithRemoteParent returns a new span with the given parent SpanContext.
+//
+// Deprecated: Use StartSpanWithRemoteParent.
 func NewSpanWithRemoteParent(name string, parent SpanContext, o StartOptions) *Span {
 	return startSpanInternal(name, true, parent, true, o)
 }
@@ -215,7 +265,10 @@ func (s *Span) End() {
 	if !s.IsRecordingEvents() {
 		return
 	}
-	s.exportOnce.Do(func() {
+	s.endOnce.Do(func() {
+		if s.executionTracerTaskEnd != nil {
+			s.executionTracerTaskEnd()
+		}
 		// TODO: optimize to avoid this call if sd won't be used.
 		sd := s.makeSpanData()
 		sd.EndTime = internal.MonotonicEndTime(sd.StartTime)
diff --git a/vendor/go.opencensus.io/trace/trace_go11.go b/vendor/go.opencensus.io/trace/trace_go11.go
new file mode 100644
index 0000000000..8b1715f25d
--- /dev/null
+++ b/vendor/go.opencensus.io/trace/trace_go11.go
@@ -0,0 +1,31 @@
+// Copyright 2018, OpenCensus Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build go1.11
+
+package trace
+
+import (
+	"context"
+	t "runtime/trace"
+)
+
+func startExecutionTracerTask(ctx context.Context, name string) (context.Context, func()) {
+	if !t.IsEnabled() {
+		// Avoid additional overhead if
+		// runtime/trace is not enabled.
+		return ctx, func() {}
+	}
+	return t.NewContext(ctx, name)
+}
diff --git a/vendor/go.opencensus.io/trace/trace_nongo11.go b/vendor/go.opencensus.io/trace/trace_nongo11.go
new file mode 100644
index 0000000000..e25419859c
--- /dev/null
+++ b/vendor/go.opencensus.io/trace/trace_nongo11.go
@@ -0,0 +1,25 @@
+// Copyright 2018, OpenCensus Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +build !go1.11
+
+package trace
+
+import (
+	"context"
+)
+
+func startExecutionTracerTask(ctx context.Context, name string) (context.Context, func()) {
+	return ctx, func() {}
+}
diff --git a/vendor/golang.org/x/crypto/ed25519/ed25519.go b/vendor/golang.org/x/crypto/ed25519/ed25519.go
new file mode 100644
index 0000000000..a57771a1ed
--- /dev/null
+++ b/vendor/golang.org/x/crypto/ed25519/ed25519.go
@@ -0,0 +1,188 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package ed25519 implements the Ed25519 signature algorithm. See
+// https://ed25519.cr.yp.to/.
+//
+// These functions are also compatible with the “Ed25519” function defined in
+// RFC 8032.
+package ed25519
+
+// This code is a port of the public domain, “ref10” implementation of ed25519
+// from SUPERCOP.
+
+import (
+	"bytes"
+	"crypto"
+	cryptorand "crypto/rand"
+	"crypto/sha512"
+	"errors"
+	"io"
+	"strconv"
+
+	"golang.org/x/crypto/ed25519/internal/edwards25519"
+)
+
+const (
+	// PublicKeySize is the size, in bytes, of public keys as used in this package.
+	PublicKeySize = 32
+	// PrivateKeySize is the size, in bytes, of private keys as used in this package.
+	PrivateKeySize = 64
+	// SignatureSize is the size, in bytes, of signatures generated and verified by this package.
+	SignatureSize = 64
+)
+
+// PublicKey is the type of Ed25519 public keys.
+type PublicKey []byte
+
+// PrivateKey is the type of Ed25519 private keys. It implements crypto.Signer.
+type PrivateKey []byte
+
+// Public returns the PublicKey corresponding to priv.
+func (priv PrivateKey) Public() crypto.PublicKey {
+	publicKey := make([]byte, PublicKeySize)
+	copy(publicKey, priv[32:])
+	return PublicKey(publicKey)
+}
+
+// Sign signs the given message with priv.
+// Ed25519 performs two passes over messages to be signed and therefore cannot
+// handle pre-hashed messages. Thus opts.HashFunc() must return zero to
+// indicate the message hasn't been hashed. This can be achieved by passing
+// crypto.Hash(0) as the value for opts.
+func (priv PrivateKey) Sign(rand io.Reader, message []byte, opts crypto.SignerOpts) (signature []byte, err error) {
+	if opts.HashFunc() != crypto.Hash(0) {
+		return nil, errors.New("ed25519: cannot sign hashed message")
+	}
+
+	return Sign(priv, message), nil
+}
+
+// GenerateKey generates a public/private key pair using entropy from rand.
+// If rand is nil, crypto/rand.Reader will be used.
+func GenerateKey(rand io.Reader) (publicKey PublicKey, privateKey PrivateKey, err error) {
+	if rand == nil {
+		rand = cryptorand.Reader
+	}
+
+	privateKey = make([]byte, PrivateKeySize)
+	publicKey = make([]byte, PublicKeySize)
+	_, err = io.ReadFull(rand, privateKey[:32])
+	if err != nil {
+		return nil, nil, err
+	}
+
+	digest := sha512.Sum512(privateKey[:32])
+	digest[0] &= 248
+	digest[31] &= 127
+	digest[31] |= 64
+
+	var A edwards25519.ExtendedGroupElement
+	var hBytes [32]byte
+	copy(hBytes[:], digest[:])
+	edwards25519.GeScalarMultBase(&A, &hBytes)
+	var publicKeyBytes [32]byte
+	A.ToBytes(&publicKeyBytes)
+
+	copy(privateKey[32:], publicKeyBytes[:])
+	copy(publicKey, publicKeyBytes[:])
+
+	return publicKey, privateKey, nil
+}
+
+// Sign signs the message with privateKey and returns a signature. It will
+// panic if len(privateKey) is not PrivateKeySize.
+func Sign(privateKey PrivateKey, message []byte) []byte {
+	if l := len(privateKey); l != PrivateKeySize {
+		panic("ed25519: bad private key length: " + strconv.Itoa(l))
+	}
+
+	h := sha512.New()
+	h.Write(privateKey[:32])
+
+	var digest1, messageDigest, hramDigest [64]byte
+	var expandedSecretKey [32]byte
+	h.Sum(digest1[:0])
+	copy(expandedSecretKey[:], digest1[:])
+	expandedSecretKey[0] &= 248
+	expandedSecretKey[31] &= 63
+	expandedSecretKey[31] |= 64
+
+	h.Reset()
+	h.Write(digest1[32:])
+	h.Write(message)
+	h.Sum(messageDigest[:0])
+
+	var messageDigestReduced [32]byte
+	edwards25519.ScReduce(&messageDigestReduced, &messageDigest)
+	var R edwards25519.ExtendedGroupElement
+	edwards25519.GeScalarMultBase(&R, &messageDigestReduced)
+
+	var encodedR [32]byte
+	R.ToBytes(&encodedR)
+
+	h.Reset()
+	h.Write(encodedR[:])
+	h.Write(privateKey[32:])
+	h.Write(message)
+	h.Sum(hramDigest[:0])
+	var hramDigestReduced [32]byte
+	edwards25519.ScReduce(&hramDigestReduced, &hramDigest)
+
+	var s [32]byte
+	edwards25519.ScMulAdd(&s, &hramDigestReduced, &expandedSecretKey, &messageDigestReduced)
+
+	signature := make([]byte, SignatureSize)
+	copy(signature[:], encodedR[:])
+	copy(signature[32:], s[:])
+
+	return signature
+}
+
+// Verify reports whether sig is a valid signature of message by publicKey. It
+// will panic if len(publicKey) is not PublicKeySize.
+func Verify(publicKey PublicKey, message, sig []byte) bool {
+	if l := len(publicKey); l != PublicKeySize {
+		panic("ed25519: bad public key length: " + strconv.Itoa(l))
+	}
+
+	if len(sig) != SignatureSize || sig[63]&224 != 0 {
+		return false
+	}
+
+	var A edwards25519.ExtendedGroupElement
+	var publicKeyBytes [32]byte
+	copy(publicKeyBytes[:], publicKey)
+	if !A.FromBytes(&publicKeyBytes) {
+		return false
+	}
+	edwards25519.FeNeg(&A.X, &A.X)
+	edwards25519.FeNeg(&A.T, &A.T)
+
+	h := sha512.New()
+	h.Write(sig[:32])
+	h.Write(publicKey[:])
+	h.Write(message)
+	var digest [64]byte
+	h.Sum(digest[:0])
+
+	var hReduced [32]byte
+	edwards25519.ScReduce(&hReduced, &digest)
+
+	var R edwards25519.ProjectiveGroupElement
+	var s [32]byte
+	copy(s[:], sig[32:])
+
+	// https://tools.ietf.org/html/rfc8032#section-5.1.7 requires that s be in
+	// the range [0, order) in order to prevent signature malleability.
+	if !edwards25519.ScMinimal(&s) {
+		return false
+	}
+
+	edwards25519.GeDoubleScalarMultVartime(&R, &hReduced, &A, &s)
+
+	var checkR [32]byte
+	R.ToBytes(&checkR)
+	return bytes.Equal(sig[:32], checkR[:])
+}
diff --git a/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/const.go b/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/const.go
new file mode 100644
index 0000000000..e39f086c1d
--- /dev/null
+++ b/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/const.go
@@ -0,0 +1,1422 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package edwards25519
+
+// These values are from the public domain, “ref10” implementation of ed25519
+// from SUPERCOP.
+
+// d is a constant in the Edwards curve equation.
+var d = FieldElement{
+	-10913610, 13857413, -15372611, 6949391, 114729, -8787816, -6275908, -3247719, -18696448, -12055116,
+}
+
+// d2 is 2*d.
+var d2 = FieldElement{
+	-21827239, -5839606, -30745221, 13898782, 229458, 15978800, -12551817, -6495438, 29715968, 9444199,
+}
+
+// SqrtM1 is the square-root of -1 in the field.
+var SqrtM1 = FieldElement{
+	-32595792, -7943725, 9377950, 3500415, 12389472, -272473, -25146209, -2005654, 326686, 11406482,
+}
+
+// A is a constant in the Montgomery-form of curve25519.
+var A = FieldElement{
+	486662, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+}
+
+// bi contains precomputed multiples of the base-point. See the Ed25519 paper
+// for a discussion about how these values are used.
+var bi = [8]PreComputedGroupElement{
+	{
+		FieldElement{25967493, -14356035, 29566456, 3660896, -12694345, 4014787, 27544626, -11754271, -6079156, 2047605},
+		FieldElement{-12545711, 934262, -2722910, 3049990, -727428, 9406986, 12720692, 5043384, 19500929, -15469378},
+		FieldElement{-8738181, 4489570, 9688441, -14785194, 10184609, -12363380, 29287919, 11864899, -24514362, -4438546},
+	},
+	{
+		FieldElement{15636291, -9688557, 24204773, -7912398, 616977, -16685262, 27787600, -14772189, 28944400, -1550024},
+		FieldElement{16568933, 4717097, -11556148, -1102322, 15682896, -11807043, 16354577, -11775962, 7689662, 11199574},
+		FieldElement{30464156, -5976125, -11779434, -15670865, 23220365, 15915852, 7512774, 10017326, -17749093, -9920357},
+	},
+	{
+		FieldElement{10861363, 11473154, 27284546, 1981175, -30064349, 12577861, 32867885, 14515107, -15438304, 10819380},
+		FieldElement{4708026, 6336745, 20377586, 9066809, -11272109, 6594696, -25653668, 12483688, -12668491, 5581306},
+		FieldElement{19563160, 16186464, -29386857, 4097519, 10237984, -4348115, 28542350, 13850243, -23678021, -15815942},
+	},
+	{
+		FieldElement{5153746, 9909285, 1723747, -2777874, 30523605, 5516873, 19480852, 5230134, -23952439, -15175766},
+		FieldElement{-30269007, -3463509, 7665486, 10083793, 28475525, 1649722, 20654025, 16520125, 30598449, 7715701},
+		FieldElement{28881845, 14381568, 9657904, 3680757, -20181635, 7843316, -31400660, 1370708, 29794553, -1409300},
+	},
+	{
+		FieldElement{-22518993, -6692182, 14201702, -8745502, -23510406, 8844726, 18474211, -1361450, -13062696, 13821877},
+		FieldElement{-6455177, -7839871, 3374702, -4740862, -27098617, -10571707, 31655028, -7212327, 18853322, -14220951},
+		FieldElement{4566830, -12963868, -28974889, -12240689, -7602672, -2830569, -8514358, -10431137, 2207753, -3209784},
+	},
+	{
+		FieldElement{-25154831, -4185821, 29681144, 7868801, -6854661, -9423865, -12437364, -663000, -31111463, -16132436},
+		FieldElement{25576264, -2703214, 7349804, -11814844, 16472782, 9300885, 3844789, 15725684, 171356, 6466918},
+		FieldElement{23103977, 13316479, 9739013, -16149481, 817875, -15038942, 8965339, -14088058, -30714912, 16193877},
+	},
+	{
+		FieldElement{-33521811, 3180713, -2394130, 14003687, -16903474, -16270840, 17238398, 4729455, -18074513, 9256800},
+		FieldElement{-25182317, -4174131, 32336398, 5036987, -21236817, 11360617, 22616405, 9761698, -19827198, 630305},
+		FieldElement{-13720693, 2639453, -24237460, -7406481, 9494427, -5774029, -6554551, -15960994, -2449256, -14291300},
+	},
+	{
+		FieldElement{-3151181, -5046075, 9282714, 6866145, -31907062, -863023, -18940575, 15033784, 25105118, -7894876},
+		FieldElement{-24326370, 15950226, -31801215, -14592823, -11662737, -5090925, 1573892, -2625887, 2198790, -15804619},
+		FieldElement{-3099351, 10324967, -2241613, 7453183, -5446979, -2735503, -13812022, -16236442, -32461234, -12290683},
+	},
+}
+
+// base contains precomputed multiples of the base-point. See the Ed25519 paper
+// for a discussion about how these values are used.
+var base = [32][8]PreComputedGroupElement{
+	{
+		{
+			FieldElement{25967493, -14356035, 29566456, 3660896, -12694345, 4014787, 27544626, -11754271, -6079156, 2047605},
+			FieldElement{-12545711, 934262, -2722910, 3049990, -727428, 9406986, 12720692, 5043384, 19500929, -15469378},
+			FieldElement{-8738181, 4489570, 9688441, -14785194, 10184609, -12363380, 29287919, 11864899, -24514362, -4438546},
+		},
+		{
+			FieldElement{-12815894, -12976347, -21581243, 11784320, -25355658, -2750717, -11717903, -3814571, -358445, -10211303},
+			FieldElement{-21703237, 6903825, 27185491, 6451973, -29577724, -9554005, -15616551, 11189268, -26829678, -5319081},
+			FieldElement{26966642, 11152617, 32442495, 15396054, 14353839, -12752335, -3128826, -9541118, -15472047, -4166697},
+		},
+		{
+			FieldElement{15636291, -9688557, 24204773, -7912398, 616977, -16685262, 27787600, -14772189, 28944400, -1550024},
+			FieldElement{16568933, 4717097, -11556148, -1102322, 15682896, -11807043, 16354577, -11775962, 7689662, 11199574},
+			FieldElement{30464156, -5976125, -11779434, -15670865, 23220365, 15915852, 7512774, 10017326, -17749093, -9920357},
+		},
+		{
+			FieldElement{-17036878, 13921892, 10945806, -6033431, 27105052, -16084379, -28926210, 15006023, 3284568, -6276540},
+			FieldElement{23599295, -8306047, -11193664, -7687416, 13236774, 10506355, 7464579, 9656445, 13059162, 10374397},
+			FieldElement{7798556, 16710257, 3033922, 2874086, 28997861, 2835604, 32406664, -3839045, -641708, -101325},
+		},
+		{
+			FieldElement{10861363, 11473154, 27284546, 1981175, -30064349, 12577861, 32867885, 14515107, -15438304, 10819380},
+			FieldElement{4708026, 6336745, 20377586, 9066809, -11272109, 6594696, -25653668, 12483688, -12668491, 5581306},
+			FieldElement{19563160, 16186464, -29386857, 4097519, 10237984, -4348115, 28542350, 13850243, -23678021, -15815942},
+		},
+		{
+			FieldElement{-15371964, -12862754, 32573250, 4720197, -26436522, 5875511, -19188627, -15224819, -9818940, -12085777},
+			FieldElement{-8549212, 109983, 15149363, 2178705, 22900618, 4543417, 3044240, -15689887, 1762328, 14866737},
+			FieldElement{-18199695, -15951423, -10473290, 1707278, -17185920, 3916101, -28236412, 3959421, 27914454, 4383652},
+		},
+		{
+			FieldElement{5153746, 9909285, 1723747, -2777874, 30523605, 5516873, 19480852, 5230134, -23952439, -15175766},
+			FieldElement{-30269007, -3463509, 7665486, 10083793, 28475525, 1649722, 20654025, 16520125, 30598449, 7715701},
+			FieldElement{28881845, 14381568, 9657904, 3680757, -20181635, 7843316, -31400660, 1370708, 29794553, -1409300},
+		},
+		{
+			FieldElement{14499471, -2729599, -33191113, -4254652, 28494862, 14271267, 30290735, 10876454, -33154098, 2381726},
+			FieldElement{-7195431, -2655363, -14730155, 462251, -27724326, 3941372, -6236617, 3696005, -32300832, 15351955},
+			FieldElement{27431194, 8222322, 16448760, -3907995, -18707002, 11938355, -32961401, -2970515, 29551813, 10109425},
+		},
+	},
+	{
+		{
+			FieldElement{-13657040, -13155431, -31283750, 11777098, 21447386, 6519384, -2378284, -1627556, 10092783, -4764171},
+			FieldElement{27939166, 14210322, 4677035, 16277044, -22964462, -12398139, -32508754, 12005538, -17810127, 12803510},
+			FieldElement{17228999, -15661624, -1233527, 300140, -1224870, -11714777, 30364213, -9038194, 18016357, 4397660},
+		},
+		{
+			FieldElement{-10958843, -7690207, 4776341, -14954238, 27850028, -15602212, -26619106, 14544525, -17477504, 982639},
+			FieldElement{29253598, 15796703, -2863982, -9908884, 10057023, 3163536, 7332899, -4120128, -21047696, 9934963},
+			FieldElement{5793303, 16271923, -24131614, -10116404, 29188560, 1206517, -14747930, 4559895, -30123922, -10897950},
+		},
+		{
+			FieldElement{-27643952, -11493006, 16282657, -11036493, 28414021, -15012264, 24191034, 4541697, -13338309, 5500568},
+			FieldElement{12650548, -1497113, 9052871, 11355358, -17680037, -8400164, -17430592, 12264343, 10874051, 13524335},
+			FieldElement{25556948, -3045990, 714651, 2510400, 23394682, -10415330, 33119038, 5080568, -22528059, 5376628},
+		},
+		{
+			FieldElement{-26088264, -4011052, -17013699, -3537628, -6726793, 1920897, -22321305, -9447443, 4535768, 1569007},
+			FieldElement{-2255422, 14606630, -21692440, -8039818, 28430649, 8775819, -30494562, 3044290, 31848280, 12543772},
+			FieldElement{-22028579, 2943893, -31857513, 6777306, 13784462, -4292203, -27377195, -2062731, 7718482, 14474653},
+		},
+		{
+			FieldElement{2385315, 2454213, -22631320, 46603, -4437935, -15680415, 656965, -7236665, 24316168, -5253567},
+			FieldElement{13741529, 10911568, -33233417, -8603737, -20177830, -1033297, 33040651, -13424532, -20729456, 8321686},
+			FieldElement{21060490, -2212744, 15712757, -4336099, 1639040, 10656336, 23845965, -11874838, -9984458, 608372},
+		},
+		{
+			FieldElement{-13672732, -15087586, -10889693, -7557059, -6036909, 11305547, 1123968, -6780577, 27229399, 23887},
+			FieldElement{-23244140, -294205, -11744728, 14712571, -29465699, -2029617, 12797024, -6440308, -1633405, 16678954},
+			FieldElement{-29500620, 4770662, -16054387, 14001338, 7830047, 9564805, -1508144, -4795045, -17169265, 4904953},
+		},
+		{
+			FieldElement{24059557, 14617003, 19037157, -15039908, 19766093, -14906429, 5169211, 16191880, 2128236, -4326833},
+			FieldElement{-16981152, 4124966, -8540610, -10653797, 30336522, -14105247, -29806336, 916033, -6882542, -2986532},
+			FieldElement{-22630907, 12419372, -7134229, -7473371, -16478904, 16739175, 285431, 2763829, 15736322, 4143876},
+		},
+		{
+			FieldElement{2379352, 11839345, -4110402, -5988665, 11274298, 794957, 212801, -14594663, 23527084, -16458268},
+			FieldElement{33431127, -11130478, -17838966, -15626900, 8909499, 8376530, -32625340, 4087881, -15188911, -14416214},
+			FieldElement{1767683, 7197987, -13205226, -2022635, -13091350, 448826, 5799055, 4357868, -4774191, -16323038},
+		},
+	},
+	{
+		{
+			FieldElement{6721966, 13833823, -23523388, -1551314, 26354293, -11863321, 23365147, -3949732, 7390890, 2759800},
+			FieldElement{4409041, 2052381, 23373853, 10530217, 7676779, -12885954, 21302353, -4264057, 1244380, -12919645},
+			FieldElement{-4421239, 7169619, 4982368, -2957590, 30256825, -2777540, 14086413, 9208236, 15886429, 16489664},
+		},
+		{
+			FieldElement{1996075, 10375649, 14346367, 13311202, -6874135, -16438411, -13693198, 398369, -30606455, -712933},
+			FieldElement{-25307465, 9795880, -2777414, 14878809, -33531835, 14780363, 13348553, 12076947, -30836462, 5113182},
+			FieldElement{-17770784, 11797796, 31950843, 13929123, -25888302, 12288344, -30341101, -7336386, 13847711, 5387222},
+		},
+		{
+			FieldElement{-18582163, -3416217, 17824843, -2340966, 22744343, -10442611, 8763061, 3617786, -19600662, 10370991},
+			FieldElement{20246567, -14369378, 22358229, -543712, 18507283, -10413996, 14554437, -8746092, 32232924, 16763880},
+			FieldElement{9648505, 10094563, 26416693, 14745928, -30374318, -6472621, 11094161, 15689506, 3140038, -16510092},
+		},
+		{
+			FieldElement{-16160072, 5472695, 31895588, 4744994, 8823515, 10365685, -27224800, 9448613, -28774454, 366295},
+			FieldElement{19153450, 11523972, -11096490, -6503142, -24647631, 5420647, 28344573, 8041113, 719605, 11671788},
+			FieldElement{8678025, 2694440, -6808014, 2517372, 4964326, 11152271, -15432916, -15266516, 27000813, -10195553},
+		},
+		{
+			FieldElement{-15157904, 7134312, 8639287, -2814877, -7235688, 10421742, 564065, 5336097, 6750977, -14521026},
+			FieldElement{11836410, -3979488, 26297894, 16080799, 23455045, 15735944, 1695823, -8819122, 8169720, 16220347},
+			FieldElement{-18115838, 8653647, 17578566, -6092619, -8025777, -16012763, -11144307, -2627664, -5990708, -14166033},
+		},
+		{
+			FieldElement{-23308498, -10968312, 15213228, -10081214, -30853605, -11050004, 27884329, 2847284, 2655861, 1738395},
+			FieldElement{-27537433, -14253021, -25336301, -8002780, -9370762, 8129821, 21651608, -3239336, -19087449, -11005278},
+			FieldElement{1533110, 3437855, 23735889, 459276, 29970501, 11335377, 26030092, 5821408, 10478196, 8544890},
+		},
+		{
+			FieldElement{32173121, -16129311, 24896207, 3921497, 22579056, -3410854, 19270449, 12217473, 17789017, -3395995},
+			FieldElement{-30552961, -2228401, -15578829, -10147201, 13243889, 517024, 15479401, -3853233, 30460520, 1052596},
+			FieldElement{-11614875, 13323618, 32618793, 8175907, -15230173, 12596687, 27491595, -4612359, 3179268, -9478891},
+		},
+		{
+			FieldElement{31947069, -14366651, -4640583, -15339921, -15125977, -6039709, -14756777, -16411740, 19072640, -9511060},
+			FieldElement{11685058, 11822410, 3158003, -13952594, 33402194, -4165066, 5977896, -5215017, 473099, 5040608},
+			FieldElement{-20290863, 8198642, -27410132, 11602123, 1290375, -2799760, 28326862, 1721092, -19558642, -3131606},
+		},
+	},
+	{
+		{
+			FieldElement{7881532, 10687937, 7578723, 7738378, -18951012, -2553952, 21820786, 8076149, -27868496, 11538389},
+			FieldElement{-19935666, 3899861, 18283497, -6801568, -15728660, -11249211, 8754525, 7446702, -5676054, 5797016},
+			FieldElement{-11295600, -3793569, -15782110, -7964573, 12708869, -8456199, 2014099, -9050574, -2369172, -5877341},
+		},
+		{
+			FieldElement{-22472376, -11568741, -27682020, 1146375, 18956691, 16640559, 1192730, -3714199, 15123619, 10811505},
+			FieldElement{14352098, -3419715, -18942044, 10822655, 32750596, 4699007, -70363, 15776356, -28886779, -11974553},
+			FieldElement{-28241164, -8072475, -4978962, -5315317, 29416931, 1847569, -20654173, -16484855, 4714547, -9600655},
+		},
+		{
+			FieldElement{15200332, 8368572, 19679101, 15970074, -31872674, 1959451, 24611599, -4543832, -11745876, 12340220},
+			FieldElement{12876937, -10480056, 33134381, 6590940, -6307776, 14872440, 9613953, 8241152, 15370987, 9608631},
+			FieldElement{-4143277, -12014408, 8446281, -391603, 4407738, 13629032, -7724868, 15866074, -28210621, -8814099},
+		},
+		{
+			FieldElement{26660628, -15677655, 8393734, 358047, -7401291, 992988, -23904233, 858697, 20571223, 8420556},
+			FieldElement{14620715, 13067227, -15447274, 8264467, 14106269, 15080814, 33531827, 12516406, -21574435, -12476749},
+			FieldElement{236881, 10476226, 57258, -14677024, 6472998, 2466984, 17258519, 7256740, 8791136, 15069930},
+		},
+		{
+			FieldElement{1276410, -9371918, 22949635, -16322807, -23493039, -5702186, 14711875, 4874229, -30663140, -2331391},
+			FieldElement{5855666, 4990204, -13711848, 7294284, -7804282, 1924647, -1423175, -7912378, -33069337, 9234253},
+			FieldElement{20590503, -9018988, 31529744, -7352666, -2706834, 10650548, 31559055, -11609587, 18979186, 13396066},
+		},
+		{
+			FieldElement{24474287, 4968103, 22267082, 4407354, 24063882, -8325180, -18816887, 13594782, 33514650, 7021958},
+			FieldElement{-11566906, -6565505, -21365085, 15928892, -26158305, 4315421, -25948728, -3916677, -21480480, 12868082},
+			FieldElement{-28635013, 13504661, 19988037, -2132761, 21078225, 6443208, -21446107, 2244500, -12455797, -8089383},
+		},
+		{
+			FieldElement{-30595528, 13793479, -5852820, 319136, -25723172, -6263899, 33086546, 8957937, -15233648, 5540521},
+			FieldElement{-11630176, -11503902, -8119500, -7643073, 2620056, 1022908, -23710744, -1568984, -16128528, -14962807},
+			FieldElement{23152971, 775386, 27395463, 14006635, -9701118, 4649512, 1689819, 892185, -11513277, -15205948},
+		},
+		{
+			FieldElement{9770129, 9586738, 26496094, 4324120, 1556511, -3550024, 27453819, 4763127, -19179614, 5867134},
+			FieldElement{-32765025, 1927590, 31726409, -4753295, 23962434, -16019500, 27846559, 5931263, -29749703, -16108455},
+			FieldElement{27461885, -2977536, 22380810, 1815854, -23033753, -3031938, 7283490, -15148073, -19526700, 7734629},
+		},
+	},
+	{
+		{
+			FieldElement{-8010264, -9590817, -11120403, 6196038, 29344158, -13430885, 7585295, -3176626, 18549497, 15302069},
+			FieldElement{-32658337, -6171222, -7672793, -11051681, 6258878, 13504381, 10458790, -6418461, -8872242, 8424746},
+			FieldElement{24687205, 8613276, -30667046, -3233545, 1863892, -1830544, 19206234, 7134917, -11284482, -828919},
+		},
+		{
+			FieldElement{11334899, -9218022, 8025293, 12707519, 17523892, -10476071, 10243738, -14685461, -5066034, 16498837},
+			FieldElement{8911542, 6887158, -9584260, -6958590, 11145641, -9543680, 17303925, -14124238, 6536641, 10543906},
+			FieldElement{-28946384, 15479763, -17466835, 568876, -1497683, 11223454, -2669190, -16625574, -27235709, 8876771},
+		},
+		{
+			FieldElement{-25742899, -12566864, -15649966, -846607, -33026686, -796288, -33481822, 15824474, -604426, -9039817},
+			FieldElement{10330056, 70051, 7957388, -9002667, 9764902, 15609756, 27698697, -4890037, 1657394, 3084098},
+			FieldElement{10477963, -7470260, 12119566, -13250805, 29016247, -5365589, 31280319, 14396151, -30233575, 15272409},
+		},
+		{
+			FieldElement{-12288309, 3169463, 28813183, 16658753, 25116432, -5630466, -25173957, -12636138, -25014757, 1950504},
+			FieldElement{-26180358, 9489187, 11053416, -14746161, -31053720, 5825630, -8384306, -8767532, 15341279, 8373727},
+			FieldElement{28685821, 7759505, -14378516, -12002860, -31971820, 4079242, 298136, -10232602, -2878207, 15190420},
+		},
+		{
+			FieldElement{-32932876, 13806336, -14337485, -15794431, -24004620, 10940928, 8669718, 2742393, -26033313, -6875003},
+			FieldElement{-1580388, -11729417, -25979658, -11445023, -17411874, -10912854, 9291594, -16247779, -12154742, 6048605},
+			FieldElement{-30305315, 14843444, 1539301, 11864366, 20201677, 1900163, 13934231, 5128323, 11213262, 9168384},
+		},
+		{
+			FieldElement{-26280513, 11007847, 19408960, -940758, -18592965, -4328580, -5088060, -11105150, 20470157, -16398701},
+			FieldElement{-23136053, 9282192, 14855179, -15390078, -7362815, -14408560, -22783952, 14461608, 14042978, 5230683},
+			FieldElement{29969567, -2741594, -16711867, -8552442, 9175486, -2468974, 21556951, 3506042, -5933891, -12449708},
+		},
+		{
+			FieldElement{-3144746, 8744661, 19704003, 4581278, -20430686, 6830683, -21284170, 8971513, -28539189, 15326563},
+			FieldElement{-19464629, 10110288, -17262528, -3503892, -23500387, 1355669, -15523050, 15300988, -20514118, 9168260},
+			FieldElement{-5353335, 4488613, -23803248, 16314347, 7780487, -15638939, -28948358, 9601605, 33087103, -9011387},
+		},
+		{
+			FieldElement{-19443170, -15512900, -20797467, -12445323, -29824447, 10229461, -27444329, -15000531, -5996870, 15664672},
+			FieldElement{23294591, -16632613, -22650781, -8470978, 27844204, 11461195, 13099750, -2460356, 18151676, 13417686},
+			FieldElement{-24722913, -4176517, -31150679, 5988919, -26858785, 6685065, 1661597, -12551441, 15271676, -15452665},
+		},
+	},
+	{
+		{
+			FieldElement{11433042, -13228665, 8239631, -5279517, -1985436, -725718, -18698764, 2167544, -6921301, -13440182},
+			FieldElement{-31436171, 15575146, 30436815, 12192228, -22463353, 9395379, -9917708, -8638997, 12215110, 12028277},
+			FieldElement{14098400, 6555944, 23007258, 5757252, -15427832, -12950502, 30123440, 4617780, -16900089, -655628},
+		},
+		{
+			FieldElement{-4026201, -15240835, 11893168, 13718664, -14809462, 1847385, -15819999, 10154009, 23973261, -12684474},
+			FieldElement{-26531820, -3695990, -1908898, 2534301, -31870557, -16550355, 18341390, -11419951, 32013174, -10103539},
+			FieldElement{-25479301, 10876443, -11771086, -14625140, -12369567, 1838104, 21911214, 6354752, 4425632, -837822},
+		},
+		{
+			FieldElement{-10433389, -14612966, 22229858, -3091047, -13191166, 776729, -17415375, -12020462, 4725005, 14044970},
+			FieldElement{19268650, -7304421, 1555349, 8692754, -21474059, -9910664, 6347390, -1411784, -19522291, -16109756},
+			FieldElement{-24864089, 12986008, -10898878, -5558584, -11312371, -148526, 19541418, 8180106, 9282262, 10282508},
+		},
+		{
+			FieldElement{-26205082, 4428547, -8661196, -13194263, 4098402, -14165257, 15522535, 8372215, 5542595, -10702683},
+			FieldElement{-10562541, 14895633, 26814552, -16673850, -17480754, -2489360, -2781891, 6993761, -18093885, 10114655},
+			FieldElement{-20107055, -929418, 31422704, 10427861, -7110749, 6150669, -29091755, -11529146, 25953725, -106158},
+		},
+		{
+			FieldElement{-4234397, -8039292, -9119125, 3046000, 2101609, -12607294, 19390020, 6094296, -3315279, 12831125},
+			FieldElement{-15998678, 7578152, 5310217, 14408357, -33548620, -224739, 31575954, 6326196, 7381791, -2421839},
+			FieldElement{-20902779, 3296811, 24736065, -16328389, 18374254, 7318640, 6295303, 8082724, -15362489, 12339664},
+		},
+		{
+			FieldElement{27724736, 2291157, 6088201, -14184798, 1792727, 5857634, 13848414, 15768922, 25091167, 14856294},
+			FieldElement{-18866652, 8331043, 24373479, 8541013, -701998, -9269457, 12927300, -12695493, -22182473, -9012899},
+			FieldElement{-11423429, -5421590, 11632845, 3405020, 30536730, -11674039, -27260765, 13866390, 30146206, 9142070},
+		},
+		{
+			FieldElement{3924129, -15307516, -13817122, -10054960, 12291820, -668366, -27702774, 9326384, -8237858, 4171294},
+			FieldElement{-15921940, 16037937, 6713787, 16606682, -21612135, 2790944, 26396185, 3731949, 345228, -5462949},
+			FieldElement{-21327538, 13448259, 25284571, 1143661, 20614966, -8849387, 2031539, -12391231, -16253183, -13582083},
+		},
+		{
+			FieldElement{31016211, -16722429, 26371392, -14451233, -5027349, 14854137, 17477601, 3842657, 28012650, -16405420},
+			FieldElement{-5075835, 9368966, -8562079, -4600902, -15249953, 6970560, -9189873, 16292057, -8867157, 3507940},
+			FieldElement{29439664, 3537914, 23333589, 6997794, -17555561, -11018068, -15209202, -15051267, -9164929, 6580396},
+		},
+	},
+	{
+		{
+			FieldElement{-12185861, -7679788, 16438269, 10826160, -8696817, -6235611, 17860444, -9273846, -2095802, 9304567},
+			FieldElement{20714564, -4336911, 29088195, 7406487, 11426967, -5095705, 14792667, -14608617, 5289421, -477127},
+			FieldElement{-16665533, -10650790, -6160345, -13305760, 9192020, -1802462, 17271490, 12349094, 26939669, -3752294},
+		},
+		{
+			FieldElement{-12889898, 9373458, 31595848, 16374215, 21471720, 13221525, -27283495, -12348559, -3698806, 117887},
+			FieldElement{22263325, -6560050, 3984570, -11174646, -15114008, -566785, 28311253, 5358056, -23319780, 541964},
+			FieldElement{16259219, 3261970, 2309254, -15534474, -16885711, -4581916, 24134070, -16705829, -13337066, -13552195},
+		},
+		{
+			FieldElement{9378160, -13140186, -22845982, -12745264, 28198281, -7244098, -2399684, -717351, 690426, 14876244},
+			FieldElement{24977353, -314384, -8223969, -13465086, 28432343, -1176353, -13068804, -12297348, -22380984, 6618999},
+			FieldElement{-1538174, 11685646, 12944378, 13682314, -24389511, -14413193, 8044829, -13817328, 32239829, -5652762},
+		},
+		{
+			FieldElement{-18603066, 4762990, -926250, 8885304, -28412480, -3187315, 9781647, -10350059, 32779359, 5095274},
+			FieldElement{-33008130, -5214506, -32264887, -3685216, 9460461, -9327423, -24601656, 14506724, 21639561, -2630236},
+			FieldElement{-16400943, -13112215, 25239338, 15531969, 3987758, -4499318, -1289502, -6863535, 17874574, 558605},
+		},
+		{
+			FieldElement{-13600129, 10240081, 9171883, 16131053, -20869254, 9599700, 33499487, 5080151, 2085892, 5119761},
+			FieldElement{-22205145, -2519528, -16381601, 414691, -25019550, 2170430, 30634760, -8363614, -31999993, -5759884},
+			FieldElement{-6845704, 15791202, 8550074, -1312654, 29928809, -12092256, 27534430, -7192145, -22351378, 12961482},
+		},
+		{
+			FieldElement{-24492060, -9570771, 10368194, 11582341, -23397293, -2245287, 16533930, 8206996, -30194652, -5159638},
+			FieldElement{-11121496, -3382234, 2307366, 6362031, -135455, 8868177, -16835630, 7031275, 7589640, 8945490},
+			FieldElement{-32152748, 8917967, 6661220, -11677616, -1192060, -15793393, 7251489, -11182180, 24099109, -14456170},
+		},
+		{
+			FieldElement{5019558, -7907470, 4244127, -14714356, -26933272, 6453165, -19118182, -13289025, -6231896, -10280736},
+			FieldElement{10853594, 10721687, 26480089, 5861829, -22995819, 1972175, -1866647, -10557898, -3363451, -6441124},
+			FieldElement{-17002408, 5906790, 221599, -6563147, 7828208, -13248918, 24362661, -2008168, -13866408, 7421392},
+		},
+		{
+			FieldElement{8139927, -6546497, 32257646, -5890546, 30375719, 1886181, -21175108, 15441252, 28826358, -4123029},
+			FieldElement{6267086, 9695052, 7709135, -16603597, -32869068, -1886135, 14795160, -7840124, 13746021, -1742048},
+			FieldElement{28584902, 7787108, -6732942, -15050729, 22846041, -7571236, -3181936, -363524, 4771362, -8419958},
+		},
+	},
+	{
+		{
+			FieldElement{24949256, 6376279, -27466481, -8174608, -18646154, -9930606, 33543569, -12141695, 3569627, 11342593},
+			FieldElement{26514989, 4740088, 27912651, 3697550, 19331575, -11472339, 6809886, 4608608, 7325975, -14801071},
+			FieldElement{-11618399, -14554430, -24321212, 7655128, -1369274, 5214312, -27400540, 10258390, -17646694, -8186692},
+		},
+		{
+			FieldElement{11431204, 15823007, 26570245, 14329124, 18029990, 4796082, -31446179, 15580664, 9280358, -3973687},
+			FieldElement{-160783, -10326257, -22855316, -4304997, -20861367, -13621002, -32810901, -11181622, -15545091, 4387441},
+			FieldElement{-20799378, 12194512, 3937617, -5805892, -27154820, 9340370, -24513992, 8548137, 20617071, -7482001},
+		},
+		{
+			FieldElement{-938825, -3930586, -8714311, 16124718, 24603125, -6225393, -13775352, -11875822, 24345683, 10325460},
+			FieldElement{-19855277, -1568885, -22202708, 8714034, 14007766, 6928528, 16318175, -1010689, 4766743, 3552007},
+			FieldElement{-21751364, -16730916, 1351763, -803421, -4009670, 3950935, 3217514, 14481909, 10988822, -3994762},
+		},
+		{
+			FieldElement{15564307, -14311570, 3101243, 5684148, 30446780, -8051356, 12677127, -6505343, -8295852, 13296005},
+			FieldElement{-9442290, 6624296, -30298964, -11913677, -4670981, -2057379, 31521204, 9614054, -30000824, 12074674},
+			FieldElement{4771191, -135239, 14290749, -13089852, 27992298, 14998318, -1413936, -1556716, 29832613, -16391035},
+		},
+		{
+			FieldElement{7064884, -7541174, -19161962, -5067537, -18891269, -2912736, 25825242, 5293297, -27122660, 13101590},
+			FieldElement{-2298563, 2439670, -7466610, 1719965, -27267541, -16328445, 32512469, -5317593, -30356070, -4190957},
+			FieldElement{-30006540, 10162316, -33180176, 3981723, -16482138, -13070044, 14413974, 9515896, 19568978, 9628812},
+		},
+		{
+			FieldElement{33053803, 199357, 15894591, 1583059, 27380243, -4580435, -17838894, -6106839, -6291786, 3437740},
+			FieldElement{-18978877, 3884493, 19469877, 12726490, 15913552, 13614290, -22961733, 70104, 7463304, 4176122},
+			FieldElement{-27124001, 10659917, 11482427, -16070381, 12771467, -6635117, -32719404, -5322751, 24216882, 5944158},
+		},
+		{
+			FieldElement{8894125, 7450974, -2664149, -9765752, -28080517, -12389115, 19345746, 14680796, 11632993, 5847885},
+			FieldElement{26942781, -2315317, 9129564, -4906607, 26024105, 11769399, -11518837, 6367194, -9727230, 4782140},
+			FieldElement{19916461, -4828410, -22910704, -11414391, 25606324, -5972441, 33253853, 8220911, 6358847, -1873857},
+		},
+		{
+			FieldElement{801428, -2081702, 16569428, 11065167, 29875704, 96627, 7908388, -4480480, -13538503, 1387155},
+			FieldElement{19646058, 5720633, -11416706, 12814209, 11607948, 12749789, 14147075, 15156355, -21866831, 11835260},
+			FieldElement{19299512, 1155910, 28703737, 14890794, 2925026, 7269399, 26121523, 15467869, -26560550, 5052483},
+		},
+	},
+	{
+		{
+			FieldElement{-3017432, 10058206, 1980837, 3964243, 22160966, 12322533, -6431123, -12618185, 12228557, -7003677},
+			FieldElement{32944382, 14922211, -22844894, 5188528, 21913450, -8719943, 4001465, 13238564, -6114803, 8653815},
+			FieldElement{22865569, -4652735, 27603668, -12545395, 14348958, 8234005, 24808405, 5719875, 28483275, 2841751},
+		},
+		{
+			FieldElement{-16420968, -1113305, -327719, -12107856, 21886282, -15552774, -1887966, -315658, 19932058, -12739203},
+			FieldElement{-11656086, 10087521, -8864888, -5536143, -19278573, -3055912, 3999228, 13239134, -4777469, -13910208},
+			FieldElement{1382174, -11694719, 17266790, 9194690, -13324356, 9720081, 20403944, 11284705, -14013818, 3093230},
+		},
+		{
+			FieldElement{16650921, -11037932, -1064178, 1570629, -8329746, 7352753, -302424, 16271225, -24049421, -6691850},
+			FieldElement{-21911077, -5927941, -4611316, -5560156, -31744103, -10785293, 24123614, 15193618, -21652117, -16739389},
+			FieldElement{-9935934, -4289447, -25279823, 4372842, 2087473, 10399484, 31870908, 14690798, 17361620, 11864968},
+		},
+		{
+			FieldElement{-11307610, 6210372, 13206574, 5806320, -29017692, -13967200, -12331205, -7486601, -25578460, -16240689},
+			FieldElement{14668462, -12270235, 26039039, 15305210, 25515617, 4542480, 10453892, 6577524, 9145645, -6443880},
+			FieldElement{5974874, 3053895, -9433049, -10385191, -31865124, 3225009, -7972642, 3936128, -5652273, -3050304},
+		},
+		{
+			FieldElement{30625386, -4729400, -25555961, -12792866, -20484575, 7695099, 17097188, -16303496, -27999779, 1803632},
+			FieldElement{-3553091, 9865099, -5228566, 4272701, -5673832, -16689700, 14911344, 12196514, -21405489, 7047412},
+			FieldElement{20093277, 9920966, -11138194, -5343857, 13161587, 12044805, -32856851, 4124601, -32343828, -10257566},
+		},
+		{
+			FieldElement{-20788824, 14084654, -13531713, 7842147, 19119038, -13822605, 4752377, -8714640, -21679658, 2288038},
+			FieldElement{-26819236, -3283715, 29965059, 3039786, -14473765, 2540457, 29457502, 14625692, -24819617, 12570232},
+			FieldElement{-1063558, -11551823, 16920318, 12494842, 1278292, -5869109, -21159943, -3498680, -11974704, 4724943},
+		},
+		{
+			FieldElement{17960970, -11775534, -4140968, -9702530, -8876562, -1410617, -12907383, -8659932, -29576300, 1903856},
+			FieldElement{23134274, -14279132, -10681997, -1611936, 20684485, 15770816, -12989750, 3190296, 26955097, 14109738},
+			FieldElement{15308788, 5320727, -30113809, -14318877, 22902008, 7767164, 29425325, -11277562, 31960942, 11934971},
+		},
+		{
+			FieldElement{-27395711, 8435796, 4109644, 12222639, -24627868, 14818669, 20638173, 4875028, 10491392, 1379718},
+			FieldElement{-13159415, 9197841, 3875503, -8936108, -1383712, -5879801, 33518459, 16176658, 21432314, 12180697},
+			FieldElement{-11787308, 11500838, 13787581, -13832590, -22430679, 10140205, 1465425, 12689540, -10301319, -13872883},
+		},
+	},
+	{
+		{
+			FieldElement{5414091, -15386041, -21007664, 9643570, 12834970, 1186149, -2622916, -1342231, 26128231, 6032912},
+			FieldElement{-26337395, -13766162, 32496025, -13653919, 17847801, -12669156, 3604025, 8316894, -25875034, -10437358},
+			FieldElement{3296484, 6223048, 24680646, -12246460, -23052020, 5903205, -8862297, -4639164, 12376617, 3188849},
+		},
+		{
+			FieldElement{29190488, -14659046, 27549113, -1183516, 3520066, -10697301, 32049515, -7309113, -16109234, -9852307},
+			FieldElement{-14744486, -9309156, 735818, -598978, -20407687, -5057904, 25246078, -15795669, 18640741, -960977},
+			FieldElement{-6928835, -16430795, 10361374, 5642961, 4910474, 12345252, -31638386, -494430, 10530747, 1053335},
+		},
+		{
+			FieldElement{-29265967, -14186805, -13538216, -12117373, -19457059, -10655384, -31462369, -2948985, 24018831, 15026644},
+			FieldElement{-22592535, -3145277, -2289276, 5953843, -13440189, 9425631, 25310643, 13003497, -2314791, -15145616},
+			FieldElement{-27419985, -603321, -8043984, -1669117, -26092265, 13987819, -27297622, 187899, -23166419, -2531735},
+		},
+		{
+			FieldElement{-21744398, -13810475, 1844840, 5021428, -10434399, -15911473, 9716667, 16266922, -5070217, 726099},
+			FieldElement{29370922, -6053998, 7334071, -15342259, 9385287, 2247707, -13661962, -4839461, 30007388, -15823341},
+			FieldElement{-936379, 16086691, 23751945, -543318, -1167538, -5189036, 9137109, 730663, 9835848, 4555336},
+		},
+		{
+			FieldElement{-23376435, 1410446, -22253753, -12899614, 30867635, 15826977, 17693930, 544696, -11985298, 12422646},
+			FieldElement{31117226, -12215734, -13502838, 6561947, -9876867, -12757670, -5118685, -4096706, 29120153, 13924425},
+			FieldElement{-17400879, -14233209, 19675799, -2734756, -11006962, -5858820, -9383939, -11317700, 7240931, -237388},
+		},
+		{
+			FieldElement{-31361739, -11346780, -15007447, -5856218, -22453340, -12152771, 1222336, 4389483, 3293637, -15551743},
+			FieldElement{-16684801, -14444245, 11038544, 11054958, -13801175, -3338533, -24319580, 7733547, 12796905, -6335822},
+			FieldElement{-8759414, -10817836, -25418864, 10783769, -30615557, -9746811, -28253339, 3647836, 3222231, -11160462},
+		},
+		{
+			FieldElement{18606113, 1693100, -25448386, -15170272, 4112353, 10045021, 23603893, -2048234, -7550776, 2484985},
+			FieldElement{9255317, -3131197, -12156162, -1004256, 13098013, -9214866, 16377220, -2102812, -19802075, -3034702},
+			FieldElement{-22729289, 7496160, -5742199, 11329249, 19991973, -3347502, -31718148, 9936966, -30097688, -10618797},
+		},
+		{
+			FieldElement{21878590, -5001297, 4338336, 13643897, -3036865, 13160960, 19708896, 5415497, -7360503, -4109293},
+			FieldElement{27736861, 10103576, 12500508, 8502413, -3413016, -9633558, 10436918, -1550276, -23659143, -8132100},
+			FieldElement{19492550, -12104365, -29681976, -852630, -3208171, 12403437, 30066266, 8367329, 13243957, 8709688},
+		},
+	},
+	{
+		{
+			FieldElement{12015105, 2801261, 28198131, 10151021, 24818120, -4743133, -11194191, -5645734, 5150968, 7274186},
+			FieldElement{2831366, -12492146, 1478975, 6122054, 23825128, -12733586, 31097299, 6083058, 31021603, -9793610},
+			FieldElement{-2529932, -2229646, 445613, 10720828, -13849527, -11505937, -23507731, 16354465, 15067285, -14147707},
+		},
+		{
+			FieldElement{7840942, 14037873, -33364863, 15934016, -728213, -3642706, 21403988, 1057586, -19379462, -12403220},
+			FieldElement{915865, -16469274, 15608285, -8789130, -24357026, 6060030, -17371319, 8410997, -7220461, 16527025},
+			FieldElement{32922597, -556987, 20336074, -16184568, 10903705, -5384487, 16957574, 52992, 23834301, 6588044},
+		},
+		{
+			FieldElement{32752030, 11232950, 3381995, -8714866, 22652988, -10744103, 17159699, 16689107, -20314580, -1305992},
+			FieldElement{-4689649, 9166776, -25710296, -10847306, 11576752, 12733943, 7924251, -2752281, 1976123, -7249027},
+			FieldElement{21251222, 16309901, -2983015, -6783122, 30810597, 12967303, 156041, -3371252, 12331345, -8237197},
+		},
+		{
+			FieldElement{8651614, -4477032, -16085636, -4996994, 13002507, 2950805, 29054427, -5106970, 10008136, -4667901},
+			FieldElement{31486080, 15114593, -14261250, 12951354, 14369431, -7387845, 16347321, -13662089, 8684155, -10532952},
+			FieldElement{19443825, 11385320, 24468943, -9659068, -23919258, 2187569, -26263207, -6086921, 31316348, 14219878},
+		},
+		{
+			FieldElement{-28594490, 1193785, 32245219, 11392485, 31092169, 15722801, 27146014, 6992409, 29126555, 9207390},
+			FieldElement{32382935, 1110093, 18477781, 11028262, -27411763, -7548111, -4980517, 10843782, -7957600, -14435730},
+			FieldElement{2814918, 7836403, 27519878, -7868156, -20894015, -11553689, -21494559, 8550130, 28346258, 1994730},
+		},
+		{
+			FieldElement{-19578299, 8085545, -14000519, -3948622, 2785838, -16231307, -19516951, 7174894, 22628102, 8115180},
+			FieldElement{-30405132, 955511, -11133838, -15078069, -32447087, -13278079, -25651578, 3317160, -9943017, 930272},
+			FieldElement{-15303681, -6833769, 28856490, 1357446, 23421993, 1057177, 24091212, -1388970, -22765376, -10650715},
+		},
+		{
+			FieldElement{-22751231, -5303997, -12907607, -12768866, -15811511, -7797053, -14839018, -16554220, -1867018, 8398970},
+			FieldElement{-31969310, 2106403, -4736360, 1362501, 12813763, 16200670, 22981545, -6291273, 18009408, -15772772},
+			FieldElement{-17220923, -9545221, -27784654, 14166835, 29815394, 7444469, 29551787, -3727419, 19288549, 1325865},
+		},
+		{
+			FieldElement{15100157, -15835752, -23923978, -1005098, -26450192, 15509408, 12376730, -3479146, 33166107, -8042750},
+			FieldElement{20909231, 13023121, -9209752, 16251778, -5778415, -8094914, 12412151, 10018715, 2213263, -13878373},
+			FieldElement{32529814, -11074689, 30361439, -16689753, -9135940, 1513226, 22922121, 6382134, -5766928, 8371348},
+		},
+	},
+	{
+		{
+			FieldElement{9923462, 11271500, 12616794, 3544722, -29998368, -1721626, 12891687, -8193132, -26442943, 10486144},
+			FieldElement{-22597207, -7012665, 8587003, -8257861, 4084309, -12970062, 361726, 2610596, -23921530, -11455195},
+			FieldElement{5408411, -1136691, -4969122, 10561668, 24145918, 14240566, 31319731, -4235541, 19985175, -3436086},
+		},
+		{
+			FieldElement{-13994457, 16616821, 14549246, 3341099, 32155958, 13648976, -17577068, 8849297, 65030, 8370684},
+			FieldElement{-8320926, -12049626, 31204563, 5839400, -20627288, -1057277, -19442942, 6922164, 12743482, -9800518},
+			FieldElement{-2361371, 12678785, 28815050, 4759974, -23893047, 4884717, 23783145, 11038569, 18800704, 255233},
+		},
+		{
+			FieldElement{-5269658, -1773886, 13957886, 7990715, 23132995, 728773, 13393847, 9066957, 19258688, -14753793},
+			FieldElement{-2936654, -10827535, -10432089, 14516793, -3640786, 4372541, -31934921, 2209390, -1524053, 2055794},
+			FieldElement{580882, 16705327, 5468415, -2683018, -30926419, -14696000, -7203346, -8994389, -30021019, 7394435},
+		},
+		{
+			FieldElement{23838809, 1822728, -15738443, 15242727, 8318092, -3733104, -21672180, -3492205, -4821741, 14799921},
+			FieldElement{13345610, 9759151, 3371034, -16137791, 16353039, 8577942, 31129804, 13496856, -9056018, 7402518},
+			FieldElement{2286874, -4435931, -20042458, -2008336, -13696227, 5038122, 11006906, -15760352, 8205061, 1607563},
+		},
+		{
+			FieldElement{14414086, -8002132, 3331830, -3208217, 22249151, -5594188, 18364661, -2906958, 30019587, -9029278},
+			FieldElement{-27688051, 1585953, -10775053, 931069, -29120221, -11002319, -14410829, 12029093, 9944378, 8024},
+			FieldElement{4368715, -3709630, 29874200, -15022983, -20230386, -11410704, -16114594, -999085, -8142388, 5640030},
+		},
+		{
+			FieldElement{10299610, 13746483, 11661824, 16234854, 7630238, 5998374, 9809887, -16694564, 15219798, -14327783},
+			FieldElement{27425505, -5719081, 3055006, 10660664, 23458024, 595578, -15398605, -1173195, -18342183, 9742717},
+			FieldElement{6744077, 2427284, 26042789, 2720740, -847906, 1118974, 32324614, 7406442, 12420155, 1994844},
+		},
+		{
+			FieldElement{14012521, -5024720, -18384453, -9578469, -26485342, -3936439, -13033478, -10909803, 24319929, -6446333},
+			FieldElement{16412690, -4507367, 10772641, 15929391, -17068788, -4658621, 10555945, -10484049, -30102368, -4739048},
+			FieldElement{22397382, -7767684, -9293161, -12792868, 17166287, -9755136, -27333065, 6199366, 21880021, -12250760},
+		},
+		{
+			FieldElement{-4283307, 5368523, -31117018, 8163389, -30323063, 3209128, 16557151, 8890729, 8840445, 4957760},
+			FieldElement{-15447727, 709327, -6919446, -10870178, -29777922, 6522332, -21720181, 12130072, -14796503, 5005757},
+			FieldElement{-2114751, -14308128, 23019042, 15765735, -25269683, 6002752, 10183197, -13239326, -16395286, -2176112},
+		},
+	},
+	{
+		{
+			FieldElement{-19025756, 1632005, 13466291, -7995100, -23640451, 16573537, -32013908, -3057104, 22208662, 2000468},
+			FieldElement{3065073, -1412761, -25598674, -361432, -17683065, -5703415, -8164212, 11248527, -3691214, -7414184},
+			FieldElement{10379208, -6045554, 8877319, 1473647, -29291284, -12507580, 16690915, 2553332, -3132688, 16400289},
+		},
+		{
+			FieldElement{15716668, 1254266, -18472690, 7446274, -8448918, 6344164, -22097271, -7285580, 26894937, 9132066},
+			FieldElement{24158887, 12938817, 11085297, -8177598, -28063478, -4457083, -30576463, 64452, -6817084, -2692882},
+			FieldElement{13488534, 7794716, 22236231, 5989356, 25426474, -12578208, 2350710, -3418511, -4688006, 2364226},
+		},
+		{
+			FieldElement{16335052, 9132434, 25640582, 6678888, 1725628, 8517937, -11807024, -11697457, 15445875, -7798101},
+			FieldElement{29004207, -7867081, 28661402, -640412, -12794003, -7943086, 31863255, -4135540, -278050, -15759279},
+			FieldElement{-6122061, -14866665, -28614905, 14569919, -10857999, -3591829, 10343412, -6976290, -29828287, -10815811},
+		},
+		{
+			FieldElement{27081650, 3463984, 14099042, -4517604, 1616303, -6205604, 29542636, 15372179, 17293797, 960709},
+			FieldElement{20263915, 11434237, -5765435, 11236810, 13505955, -10857102, -16111345, 6493122, -19384511, 7639714},
+			FieldElement{-2830798, -14839232, 25403038, -8215196, -8317012, -16173699, 18006287, -16043750, 29994677, -15808121},
+		},
+		{
+			FieldElement{9769828, 5202651, -24157398, -13631392, -28051003, -11561624, -24613141, -13860782, -31184575, 709464},
+			FieldElement{12286395, 13076066, -21775189, -1176622, -25003198, 4057652, -32018128, -8890874, 16102007, 13205847},
+			FieldElement{13733362, 5599946, 10557076, 3195751, -5557991, 8536970, -25540170, 8525972, 10151379, 10394400},
+		},
+		{
+			FieldElement{4024660, -16137551, 22436262, 12276534, -9099015, -2686099, 19698229, 11743039, -33302334, 8934414},
+			FieldElement{-15879800, -4525240, -8580747, -2934061, 14634845, -698278, -9449077, 3137094, -11536886, 11721158},
+			FieldElement{17555939, -5013938, 8268606, 2331751, -22738815, 9761013, 9319229, 8835153, -9205489, -1280045},
+		},
+		{
+			FieldElement{-461409, -7830014, 20614118, 16688288, -7514766, -4807119, 22300304, 505429, 6108462, -6183415},
+			FieldElement{-5070281, 12367917, -30663534, 3234473, 32617080, -8422642, 29880583, -13483331, -26898490, -7867459},
+			FieldElement{-31975283, 5726539, 26934134, 10237677, -3173717, -605053, 24199304, 3795095, 7592688, -14992079},
+		},
+		{
+			FieldElement{21594432, -14964228, 17466408, -4077222, 32537084, 2739898, 6407723, 12018833, -28256052, 4298412},
+			FieldElement{-20650503, -11961496, -27236275, 570498, 3767144, -1717540, 13891942, -1569194, 13717174, 10805743},
+			FieldElement{-14676630, -15644296, 15287174, 11927123, 24177847, -8175568, -796431, 14860609, -26938930, -5863836},
+		},
+	},
+	{
+		{
+			FieldElement{12962541, 5311799, -10060768, 11658280, 18855286, -7954201, 13286263, -12808704, -4381056, 9882022},
+			FieldElement{18512079, 11319350, -20123124, 15090309, 18818594, 5271736, -22727904, 3666879, -23967430, -3299429},
+			FieldElement{-6789020, -3146043, 16192429, 13241070, 15898607, -14206114, -10084880, -6661110, -2403099, 5276065},
+		},
+		{
+			FieldElement{30169808, -5317648, 26306206, -11750859, 27814964, 7069267, 7152851, 3684982, 1449224, 13082861},
+			FieldElement{10342826, 3098505, 2119311, 193222, 25702612, 12233820, 23697382, 15056736, -21016438, -8202000},
+			FieldElement{-33150110, 3261608, 22745853, 7948688, 19370557, -15177665, -26171976, 6482814, -10300080, -11060101},
+		},
+		{
+			FieldElement{32869458, -5408545, 25609743, 15678670, -10687769, -15471071, 26112421, 2521008, -22664288, 6904815},
+			FieldElement{29506923, 4457497, 3377935, -9796444, -30510046, 12935080, 1561737, 3841096, -29003639, -6657642},
+			FieldElement{10340844, -6630377, -18656632, -2278430, 12621151, -13339055, 30878497, -11824370, -25584551, 5181966},
+		},
+		{
+			FieldElement{25940115, -12658025, 17324188, -10307374, -8671468, 15029094, 24396252, -16450922, -2322852, -12388574},
+			FieldElement{-21765684, 9916823, -1300409, 4079498, -1028346, 11909559, 1782390, 12641087, 20603771, -6561742},
+			FieldElement{-18882287, -11673380, 24849422, 11501709, 13161720, -4768874, 1925523, 11914390, 4662781, 7820689},
+		},
+		{
+			FieldElement{12241050, -425982, 8132691, 9393934, 32846760, -1599620, 29749456, 12172924, 16136752, 15264020},
+			FieldElement{-10349955, -14680563, -8211979, 2330220, -17662549, -14545780, 10658213, 6671822, 19012087, 3772772},
+			FieldElement{3753511, -3421066, 10617074, 2028709, 14841030, -6721664, 28718732, -15762884, 20527771, 12988982},
+		},
+		{
+			FieldElement{-14822485, -5797269, -3707987, 12689773, -898983, -10914866, -24183046, -10564943, 3299665, -12424953},
+			FieldElement{-16777703, -15253301, -9642417, 4978983, 3308785, 8755439, 6943197, 6461331, -25583147, 8991218},
+			FieldElement{-17226263, 1816362, -1673288, -6086439, 31783888, -8175991, -32948145, 7417950, -30242287, 1507265},
+		},
+		{
+			FieldElement{29692663, 6829891, -10498800, 4334896, 20945975, -11906496, -28887608, 8209391, 14606362, -10647073},
+			FieldElement{-3481570, 8707081, 32188102, 5672294, 22096700, 1711240, -33020695, 9761487, 4170404, -2085325},
+			FieldElement{-11587470, 14855945, -4127778, -1531857, -26649089, 15084046, 22186522, 16002000, -14276837, -8400798},
+		},
+		{
+			FieldElement{-4811456, 13761029, -31703877, -2483919, -3312471, 7869047, -7113572, -9620092, 13240845, 10965870},
+			FieldElement{-7742563, -8256762, -14768334, -13656260, -23232383, 12387166, 4498947, 14147411, 29514390, 4302863},
+			FieldElement{-13413405, -12407859, 20757302, -13801832, 14785143, 8976368, -5061276, -2144373, 17846988, -13971927},
+		},
+	},
+	{
+		{
+			FieldElement{-2244452, -754728, -4597030, -1066309, -6247172, 1455299, -21647728, -9214789, -5222701, 12650267},
+			FieldElement{-9906797, -16070310, 21134160, 12198166, -27064575, 708126, 387813, 13770293, -19134326, 10958663},
+			FieldElement{22470984, 12369526, 23446014, -5441109, -21520802, -9698723, -11772496, -11574455, -25083830, 4271862},
+		},
+		{
+			FieldElement{-25169565, -10053642, -19909332, 15361595, -5984358, 2159192, 75375, -4278529, -32526221, 8469673},
+			FieldElement{15854970, 4148314, -8893890, 7259002, 11666551, 13824734, -30531198, 2697372, 24154791, -9460943},
+			FieldElement{15446137, -15806644, 29759747, 14019369, 30811221, -9610191, -31582008, 12840104, 24913809, 9815020},
+		},
+		{
+			FieldElement{-4709286, -5614269, -31841498, -12288893, -14443537, 10799414, -9103676, 13438769, 18735128, 9466238},
+			FieldElement{11933045, 9281483, 5081055, -5183824, -2628162, -4905629, -7727821, -10896103, -22728655, 16199064},
+			FieldElement{14576810, 379472, -26786533, -8317236, -29426508, -10812974, -102766, 1876699, 30801119, 2164795},
+		},
+		{
+			FieldElement{15995086, 3199873, 13672555, 13712240, -19378835, -4647646, -13081610, -15496269, -13492807, 1268052},
+			FieldElement{-10290614, -3659039, -3286592, 10948818, 23037027, 3794475, -3470338, -12600221, -17055369, 3565904},
+			FieldElement{29210088, -9419337, -5919792, -4952785, 10834811, -13327726, -16512102, -10820713, -27162222, -14030531},
+		},
+		{
+			FieldElement{-13161890, 15508588, 16663704, -8156150, -28349942, 9019123, -29183421, -3769423, 2244111, -14001979},
+			FieldElement{-5152875, -3800936, -9306475, -6071583, 16243069, 14684434, -25673088, -16180800, 13491506, 4641841},
+			FieldElement{10813417, 643330, -19188515, -728916, 30292062, -16600078, 27548447, -7721242, 14476989, -12767431},
+		},
+		{
+			FieldElement{10292079, 9984945, 6481436, 8279905, -7251514, 7032743, 27282937, -1644259, -27912810, 12651324},
+			FieldElement{-31185513, -813383, 22271204, 11835308, 10201545, 15351028, 17099662, 3988035, 21721536, -3148940},
+			FieldElement{10202177, -6545839, -31373232, -9574638, -32150642, -8119683, -12906320, 3852694, 13216206, 14842320},
+		},
+		{
+			FieldElement{-15815640, -10601066, -6538952, -7258995, -6984659, -6581778, -31500847, 13765824, -27434397, 9900184},
+			FieldElement{14465505, -13833331, -32133984, -14738873, -27443187, 12990492, 33046193, 15796406, -7051866, -8040114},
+			FieldElement{30924417, -8279620, 6359016, -12816335, 16508377, 9071735, -25488601, 15413635, 9524356, -7018878},
+		},
+		{
+			FieldElement{12274201, -13175547, 32627641, -1785326, 6736625, 13267305, 5237659, -5109483, 15663516, 4035784},
+			FieldElement{-2951309, 8903985, 17349946, 601635, -16432815, -4612556, -13732739, -15889334, -22258478, 4659091},
+			FieldElement{-16916263, -4952973, -30393711, -15158821, 20774812, 15897498, 5736189, 15026997, -2178256, -13455585},
+		},
+	},
+	{
+		{
+			FieldElement{-8858980, -2219056, 28571666, -10155518, -474467, -10105698, -3801496, 278095, 23440562, -290208},
+			FieldElement{10226241, -5928702, 15139956, 120818, -14867693, 5218603, 32937275, 11551483, -16571960, -7442864},
+			FieldElement{17932739, -12437276, -24039557, 10749060, 11316803, 7535897, 22503767, 5561594, -3646624, 3898661},
+		},
+		{
+			FieldElement{7749907, -969567, -16339731, -16464, -25018111, 15122143, -1573531, 7152530, 21831162, 1245233},
+			FieldElement{26958459, -14658026, 4314586, 8346991, -5677764, 11960072, -32589295, -620035, -30402091, -16716212},
+			FieldElement{-12165896, 9166947, 33491384, 13673479, 29787085, 13096535, 6280834, 14587357, -22338025, 13987525},
+		},
+		{
+			FieldElement{-24349909, 7778775, 21116000, 15572597, -4833266, -5357778, -4300898, -5124639, -7469781, -2858068},
+			FieldElement{9681908, -6737123, -31951644, 13591838, -6883821, 386950, 31622781, 6439245, -14581012, 4091397},
+			FieldElement{-8426427, 1470727, -28109679, -1596990, 3978627, -5123623, -19622683, 12092163, 29077877, -14741988},
+		},
+		{
+			FieldElement{5269168, -6859726, -13230211, -8020715, 25932563, 1763552, -5606110, -5505881, -20017847, 2357889},
+			FieldElement{32264008, -15407652, -5387735, -1160093, -2091322, -3946900, 23104804, -12869908, 5727338, 189038},
+			FieldElement{14609123, -8954470, -6000566, -16622781, -14577387, -7743898, -26745169, 10942115, -25888931, -14884697},
+		},
+		{
+			FieldElement{20513500, 5557931, -15604613, 7829531, 26413943, -2019404, -21378968, 7471781, 13913677, -5137875},
+			FieldElement{-25574376, 11967826, 29233242, 12948236, -6754465, 4713227, -8940970, 14059180, 12878652, 8511905},
+			FieldElement{-25656801, 3393631, -2955415, -7075526, -2250709, 9366908, -30223418, 6812974, 5568676, -3127656},
+		},
+		{
+			FieldElement{11630004, 12144454, 2116339, 13606037, 27378885, 15676917, -17408753, -13504373, -14395196, 8070818},
+			FieldElement{27117696, -10007378, -31282771, -5570088, 1127282, 12772488, -29845906, 10483306, -11552749, -1028714},
+			FieldElement{10637467, -5688064, 5674781, 1072708, -26343588, -6982302, -1683975, 9177853, -27493162, 15431203},
+		},
+		{
+			FieldElement{20525145, 10892566, -12742472, 12779443, -29493034, 16150075, -28240519, 14943142, -15056790, -7935931},
+			FieldElement{-30024462, 5626926, -551567, -9981087, 753598, 11981191, 25244767, -3239766, -3356550, 9594024},
+			FieldElement{-23752644, 2636870, -5163910, -10103818, 585134, 7877383, 11345683, -6492290, 13352335, -10977084},
+		},
+		{
+			FieldElement{-1931799, -5407458, 3304649, -12884869, 17015806, -4877091, -29783850, -7752482, -13215537, -319204},
+			FieldElement{20239939, 6607058, 6203985, 3483793, -18386976, -779229, -20723742, 15077870, -22750759, 14523817},
+			FieldElement{27406042, -6041657, 27423596, -4497394, 4996214, 10002360, -28842031, -4545494, -30172742, -4805667},
+		},
+	},
+	{
+		{
+			FieldElement{11374242, 12660715, 17861383, -12540833, 10935568, 1099227, -13886076, -9091740, -27727044, 11358504},
+			FieldElement{-12730809, 10311867, 1510375, 10778093, -2119455, -9145702, 32676003, 11149336, -26123651, 4985768},
+			FieldElement{-19096303, 341147, -6197485, -239033, 15756973, -8796662, -983043, 13794114, -19414307, -15621255},
+		},
+		{
+			FieldElement{6490081, 11940286, 25495923, -7726360, 8668373, -8751316, 3367603, 6970005, -1691065, -9004790},
+			FieldElement{1656497, 13457317, 15370807, 6364910, 13605745, 8362338, -19174622, -5475723, -16796596, -5031438},
+			FieldElement{-22273315, -13524424, -64685, -4334223, -18605636, -10921968, -20571065, -7007978, -99853, -10237333},
+		},
+		{
+			FieldElement{17747465, 10039260, 19368299, -4050591, -20630635, -16041286, 31992683, -15857976, -29260363, -5511971},
+			FieldElement{31932027, -4986141, -19612382, 16366580, 22023614, 88450, 11371999, -3744247, 4882242, -10626905},
+			FieldElement{29796507, 37186, 19818052, 10115756, -11829032, 3352736, 18551198, 3272828, -5190932, -4162409},
+		},
+		{
+			FieldElement{12501286, 4044383, -8612957, -13392385, -32430052, 5136599, -19230378, -3529697, 330070, -3659409},
+			FieldElement{6384877, 2899513, 17807477, 7663917, -2358888, 12363165, 25366522, -8573892, -271295, 12071499},
+			FieldElement{-8365515, -4042521, 25133448, -4517355, -6211027, 2265927, -32769618, 1936675, -5159697, 3829363},
+		},
+		{
+			FieldElement{28425966, -5835433, -577090, -4697198, -14217555, 6870930, 7921550, -6567787, 26333140, 14267664},
+			FieldElement{-11067219, 11871231, 27385719, -10559544, -4585914, -11189312, 10004786, -8709488, -21761224, 8930324},
+			FieldElement{-21197785, -16396035, 25654216, -1725397, 12282012, 11008919, 1541940, 4757911, -26491501, -16408940},
+		},
+		{
+			FieldElement{13537262, -7759490, -20604840, 10961927, -5922820, -13218065, -13156584, 6217254, -15943699, 13814990},
+			FieldElement{-17422573, 15157790, 18705543, 29619, 24409717, -260476, 27361681, 9257833, -1956526, -1776914},
+			FieldElement{-25045300, -10191966, 15366585, 15166509, -13105086, 8423556, -29171540, 12361135, -18685978, 4578290},
+		},
+		{
+			FieldElement{24579768, 3711570, 1342322, -11180126, -27005135, 14124956, -22544529, 14074919, 21964432, 8235257},
+			FieldElement{-6528613, -2411497, 9442966, -5925588, 12025640, -1487420, -2981514, -1669206, 13006806, 2355433},
+			FieldElement{-16304899, -13605259, -6632427, -5142349, 16974359, -10911083, 27202044, 1719366, 1141648, -12796236},
+		},
+		{
+			FieldElement{-12863944, -13219986, -8318266, -11018091, -6810145, -4843894, 13475066, -3133972, 32674895, 13715045},
+			FieldElement{11423335, -5468059, 32344216, 8962751, 24989809, 9241752, -13265253, 16086212, -28740881, -15642093},
+			FieldElement{-1409668, 12530728, -6368726, 10847387, 19531186, -14132160, -11709148, 7791794, -27245943, 4383347},
+		},
+	},
+	{
+		{
+			FieldElement{-28970898, 5271447, -1266009, -9736989, -12455236, 16732599, -4862407, -4906449, 27193557, 6245191},
+			FieldElement{-15193956, 5362278, -1783893, 2695834, 4960227, 12840725, 23061898, 3260492, 22510453, 8577507},
+			FieldElement{-12632451, 11257346, -32692994, 13548177, -721004, 10879011, 31168030, 13952092, -29571492, -3635906},
+		},
+		{
+			FieldElement{3877321, -9572739, 32416692, 5405324, -11004407, -13656635, 3759769, 11935320, 5611860, 8164018},
+			FieldElement{-16275802, 14667797, 15906460, 12155291, -22111149, -9039718, 32003002, -8832289, 5773085, -8422109},
+			FieldElement{-23788118, -8254300, 1950875, 8937633, 18686727, 16459170, -905725, 12376320, 31632953, 190926},
+		},
+		{
+			FieldElement{-24593607, -16138885, -8423991, 13378746, 14162407, 6901328, -8288749, 4508564, -25341555, -3627528},
+			FieldElement{8884438, -5884009, 6023974, 10104341, -6881569, -4941533, 18722941, -14786005, -1672488, 827625},
+			FieldElement{-32720583, -16289296, -32503547, 7101210, 13354605, 2659080, -1800575, -14108036, -24878478, 1541286},
+		},
+		{
+			FieldElement{2901347, -1117687, 3880376, -10059388, -17620940, -3612781, -21802117, -3567481, 20456845, -1885033},
+			FieldElement{27019610, 12299467, -13658288, -1603234, -12861660, -4861471, -19540150, -5016058, 29439641, 15138866},
+			FieldElement{21536104, -6626420, -32447818, -10690208, -22408077, 5175814, -5420040, -16361163, 7779328, 109896},
+		},
+		{
+			FieldElement{30279744, 14648750, -8044871, 6425558, 13639621, -743509, 28698390, 12180118, 23177719, -554075},
+			FieldElement{26572847, 3405927, -31701700, 12890905, -19265668, 5335866, -6493768, 2378492, 4439158, -13279347},
+			FieldElement{-22716706, 3489070, -9225266, -332753, 18875722, -1140095, 14819434, -12731527, -17717757, -5461437},
+		},
+		{
+			FieldElement{-5056483, 16566551, 15953661, 3767752, -10436499, 15627060, -820954, 2177225, 8550082, -15114165},
+			FieldElement{-18473302, 16596775, -381660, 15663611, 22860960, 15585581, -27844109, -3582739, -23260460, -8428588},
+			FieldElement{-32480551, 15707275, -8205912, -5652081, 29464558, 2713815, -22725137, 15860482, -21902570, 1494193},
+		},
+		{
+			FieldElement{-19562091, -14087393, -25583872, -9299552, 13127842, 759709, 21923482, 16529112, 8742704, 12967017},
+			FieldElement{-28464899, 1553205, 32536856, -10473729, -24691605, -406174, -8914625, -2933896, -29903758, 15553883},
+			FieldElement{21877909, 3230008, 9881174, 10539357, -4797115, 2841332, 11543572, 14513274, 19375923, -12647961},
+		},
+		{
+			FieldElement{8832269, -14495485, 13253511, 5137575, 5037871, 4078777, 24880818, -6222716, 2862653, 9455043},
+			FieldElement{29306751, 5123106, 20245049, -14149889, 9592566, 8447059, -2077124, -2990080, 15511449, 4789663},
+			FieldElement{-20679756, 7004547, 8824831, -9434977, -4045704, -3750736, -5754762, 108893, 23513200, 16652362},
+		},
+	},
+	{
+		{
+			FieldElement{-33256173, 4144782, -4476029, -6579123, 10770039, -7155542, -6650416, -12936300, -18319198, 10212860},
+			FieldElement{2756081, 8598110, 7383731, -6859892, 22312759, -1105012, 21179801, 2600940, -9988298, -12506466},
+			FieldElement{-24645692, 13317462, -30449259, -15653928, 21365574, -10869657, 11344424, 864440, -2499677, -16710063},
+		},
+		{
+			FieldElement{-26432803, 6148329, -17184412, -14474154, 18782929, -275997, -22561534, 211300, 2719757, 4940997},
+			FieldElement{-1323882, 3911313, -6948744, 14759765, -30027150, 7851207, 21690126, 8518463, 26699843, 5276295},
+			FieldElement{-13149873, -6429067, 9396249, 365013, 24703301, -10488939, 1321586, 149635, -15452774, 7159369},
+		},
+		{
+			FieldElement{9987780, -3404759, 17507962, 9505530, 9731535, -2165514, 22356009, 8312176, 22477218, -8403385},
+			FieldElement{18155857, -16504990, 19744716, 9006923, 15154154, -10538976, 24256460, -4864995, -22548173, 9334109},
+			FieldElement{2986088, -4911893, 10776628, -3473844, 10620590, -7083203, -21413845, 14253545, -22587149, 536906},
+		},
+		{
+			FieldElement{4377756, 8115836, 24567078, 15495314, 11625074, 13064599, 7390551, 10589625, 10838060, -15420424},
+			FieldElement{-19342404, 867880, 9277171, -3218459, -14431572, -1986443, 19295826, -15796950, 6378260, 699185},
+			FieldElement{7895026, 4057113, -7081772, -13077756, -17886831, -323126, -716039, 15693155, -5045064, -13373962},
+		},
+		{
+			FieldElement{-7737563, -5869402, -14566319, -7406919, 11385654, 13201616, 31730678, -10962840, -3918636, -9669325},
+			FieldElement{10188286, -15770834, -7336361, 13427543, 22223443, 14896287, 30743455, 7116568, -21786507, 5427593},
+			FieldElement{696102, 13206899, 27047647, -10632082, 15285305, -9853179, 10798490, -4578720, 19236243, 12477404},
+		},
+		{
+			FieldElement{-11229439, 11243796, -17054270, -8040865, -788228, -8167967, -3897669, 11180504, -23169516, 7733644},
+			FieldElement{17800790, -14036179, -27000429, -11766671, 23887827, 3149671, 23466177, -10538171, 10322027, 15313801},
+			FieldElement{26246234, 11968874, 32263343, -5468728, 6830755, -13323031, -15794704, -101982, -24449242, 10890804},
+		},
+		{
+			FieldElement{-31365647, 10271363, -12660625, -6267268, 16690207, -13062544, -14982212, 16484931, 25180797, -5334884},
+			FieldElement{-586574, 10376444, -32586414, -11286356, 19801893, 10997610, 2276632, 9482883, 316878, 13820577},
+			FieldElement{-9882808, -4510367, -2115506, 16457136, -11100081, 11674996, 30756178, -7515054, 30696930, -3712849},
+		},
+		{
+			FieldElement{32988917, -9603412, 12499366, 7910787, -10617257, -11931514, -7342816, -9985397, -32349517, 7392473},
+			FieldElement{-8855661, 15927861, 9866406, -3649411, -2396914, -16655781, -30409476, -9134995, 25112947, -2926644},
+			FieldElement{-2504044, -436966, 25621774, -5678772, 15085042, -5479877, -24884878, -13526194, 5537438, -13914319},
+		},
+	},
+	{
+		{
+			FieldElement{-11225584, 2320285, -9584280, 10149187, -33444663, 5808648, -14876251, -1729667, 31234590, 6090599},
+			FieldElement{-9633316, 116426, 26083934, 2897444, -6364437, -2688086, 609721, 15878753, -6970405, -9034768},
+			FieldElement{-27757857, 247744, -15194774, -9002551, 23288161, -10011936, -23869595, 6503646, 20650474, 1804084},
+		},
+		{
+			FieldElement{-27589786, 15456424, 8972517, 8469608, 15640622, 4439847, 3121995, -10329713, 27842616, -202328},
+			FieldElement{-15306973, 2839644, 22530074, 10026331, 4602058, 5048462, 28248656, 5031932, -11375082, 12714369},
+			FieldElement{20807691, -7270825, 29286141, 11421711, -27876523, -13868230, -21227475, 1035546, -19733229, 12796920},
+		},
+		{
+			FieldElement{12076899, -14301286, -8785001, -11848922, -25012791, 16400684, -17591495, -12899438, 3480665, -15182815},
+			FieldElement{-32361549, 5457597, 28548107, 7833186, 7303070, -11953545, -24363064, -15921875, -33374054, 2771025},
+			FieldElement{-21389266, 421932, 26597266, 6860826, 22486084, -6737172, -17137485, -4210226, -24552282, 15673397},
+		},
+		{
+			FieldElement{-20184622, 2338216, 19788685, -9620956, -4001265, -8740893, -20271184, 4733254, 3727144, -12934448},
+			FieldElement{6120119, 814863, -11794402, -622716, 6812205, -15747771, 2019594, 7975683, 31123697, -10958981},
+			FieldElement{30069250, -11435332, 30434654, 2958439, 18399564, -976289, 12296869, 9204260, -16432438, 9648165},
+		},
+		{
+			FieldElement{32705432, -1550977, 30705658, 7451065, -11805606, 9631813, 3305266, 5248604, -26008332, -11377501},
+			FieldElement{17219865, 2375039, -31570947, -5575615, -19459679, 9219903, 294711, 15298639, 2662509, -16297073},
+			FieldElement{-1172927, -7558695, -4366770, -4287744, -21346413, -8434326, 32087529, -1222777, 32247248, -14389861},
+		},
+		{
+			FieldElement{14312628, 1221556, 17395390, -8700143, -4945741, -8684635, -28197744, -9637817, -16027623, -13378845},
+			FieldElement{-1428825, -9678990, -9235681, 6549687, -7383069, -468664, 23046502, 9803137, 17597934, 2346211},
+			FieldElement{18510800, 15337574, 26171504, 981392, -22241552, 7827556, -23491134, -11323352, 3059833, -11782870},
+		},
+		{
+			FieldElement{10141598, 6082907, 17829293, -1947643, 9830092, 13613136, -25556636, -5544586, -33502212, 3592096},
+			FieldElement{33114168, -15889352, -26525686, -13343397, 33076705, 8716171, 1151462, 1521897, -982665, -6837803},
+			FieldElement{-32939165, -4255815, 23947181, -324178, -33072974, -12305637, -16637686, 3891704, 26353178, 693168},
+		},
+		{
+			FieldElement{30374239, 1595580, -16884039, 13186931, 4600344, 406904, 9585294, -400668, 31375464, 14369965},
+			FieldElement{-14370654, -7772529, 1510301, 6434173, -18784789, -6262728, 32732230, -13108839, 17901441, 16011505},
+			FieldElement{18171223, -11934626, -12500402, 15197122, -11038147, -15230035, -19172240, -16046376, 8764035, 12309598},
+		},
+	},
+	{
+		{
+			FieldElement{5975908, -5243188, -19459362, -9681747, -11541277, 14015782, -23665757, 1228319, 17544096, -10593782},
+			FieldElement{5811932, -1715293, 3442887, -2269310, -18367348, -8359541, -18044043, -15410127, -5565381, 12348900},
+			FieldElement{-31399660, 11407555, 25755363, 6891399, -3256938, 14872274, -24849353, 8141295, -10632534, -585479},
+		},
+		{
+			FieldElement{-12675304, 694026, -5076145, 13300344, 14015258, -14451394, -9698672, -11329050, 30944593, 1130208},
+			FieldElement{8247766, -6710942, -26562381, -7709309, -14401939, -14648910, 4652152, 2488540, 23550156, -271232},
+			FieldElement{17294316, -3788438, 7026748, 15626851, 22990044, 113481, 2267737, -5908146, -408818, -137719},
+		},
+		{
+			FieldElement{16091085, -16253926, 18599252, 7340678, 2137637, -1221657, -3364161, 14550936, 3260525, -7166271},
+			FieldElement{-4910104, -13332887, 18550887, 10864893, -16459325, -7291596, -23028869, -13204905, -12748722, 2701326},
+			FieldElement{-8574695, 16099415, 4629974, -16340524, -20786213, -6005432, -10018363, 9276971, 11329923, 1862132},
+		},
+		{
+			FieldElement{14763076, -15903608, -30918270, 3689867, 3511892, 10313526, -21951088, 12219231, -9037963, -940300},
+			FieldElement{8894987, -3446094, 6150753, 3013931, 301220, 15693451, -31981216, -2909717, -15438168, 11595570},
+			FieldElement{15214962, 3537601, -26238722, -14058872, 4418657, -15230761, 13947276, 10730794, -13489462, -4363670},
+		},
+		{
+			FieldElement{-2538306, 7682793, 32759013, 263109, -29984731, -7955452, -22332124, -10188635, 977108, 699994},
+			FieldElement{-12466472, 4195084, -9211532, 550904, -15565337, 12917920, 19118110, -439841, -30534533, -14337913},
+			FieldElement{31788461, -14507657, 4799989, 7372237, 8808585, -14747943, 9408237, -10051775, 12493932, -5409317},
+		},
+		{
+			FieldElement{-25680606, 5260744, -19235809, -6284470, -3695942, 16566087, 27218280, 2607121, 29375955, 6024730},
+			FieldElement{842132, -2794693, -4763381, -8722815, 26332018, -12405641, 11831880, 6985184, -9940361, 2854096},
+			FieldElement{-4847262, -7969331, 2516242, -5847713, 9695691, -7221186, 16512645, 960770, 12121869, 16648078},
+		},
+		{
+			FieldElement{-15218652, 14667096, -13336229, 2013717, 30598287, -464137, -31504922, -7882064, 20237806, 2838411},
+			FieldElement{-19288047, 4453152, 15298546, -16178388, 22115043, -15972604, 12544294, -13470457, 1068881, -12499905},
+			FieldElement{-9558883, -16518835, 33238498, 13506958, 30505848, -1114596, -8486907, -2630053, 12521378, 4845654},
+		},
+		{
+			FieldElement{-28198521, 10744108, -2958380, 10199664, 7759311, -13088600, 3409348, -873400, -6482306, -12885870},
+			FieldElement{-23561822, 6230156, -20382013, 10655314, -24040585, -11621172, 10477734, -1240216, -3113227, 13974498},
+			FieldElement{12966261, 15550616, -32038948, -1615346, 21025980, -629444, 5642325, 7188737, 18895762, 12629579},
+		},
+	},
+	{
+		{
+			FieldElement{14741879, -14946887, 22177208, -11721237, 1279741, 8058600, 11758140, 789443, 32195181, 3895677},
+			FieldElement{10758205, 15755439, -4509950, 9243698, -4879422, 6879879, -2204575, -3566119, -8982069, 4429647},
+			FieldElement{-2453894, 15725973, -20436342, -10410672, -5803908, -11040220, -7135870, -11642895, 18047436, -15281743},
+		},
+		{
+			FieldElement{-25173001, -11307165, 29759956, 11776784, -22262383, -15820455, 10993114, -12850837, -17620701, -9408468},
+			FieldElement{21987233, 700364, -24505048, 14972008, -7774265, -5718395, 32155026, 2581431, -29958985, 8773375},
+			FieldElement{-25568350, 454463, -13211935, 16126715, 25240068, 8594567, 20656846, 12017935, -7874389, -13920155},
+		},
+		{
+			FieldElement{6028182, 6263078, -31011806, -11301710, -818919, 2461772, -31841174, -5468042, -1721788, -2776725},
+			FieldElement{-12278994, 16624277, 987579, -5922598, 32908203, 1248608, 7719845, -4166698, 28408820, 6816612},
+			FieldElement{-10358094, -8237829, 19549651, -12169222, 22082623, 16147817, 20613181, 13982702, -10339570, 5067943},
+		},
+		{
+			FieldElement{-30505967, -3821767, 12074681, 13582412, -19877972, 2443951, -19719286, 12746132, 5331210, -10105944},
+			FieldElement{30528811, 3601899, -1957090, 4619785, -27361822, -15436388, 24180793, -12570394, 27679908, -1648928},
+			FieldElement{9402404, -13957065, 32834043, 10838634, -26580150, -13237195, 26653274, -8685565, 22611444, -12715406},
+		},
+		{
+			FieldElement{22190590, 1118029, 22736441, 15130463, -30460692, -5991321, 19189625, -4648942, 4854859, 6622139},
+			FieldElement{-8310738, -2953450, -8262579, -3388049, -10401731, -271929, 13424426, -3567227, 26404409, 13001963},
+			FieldElement{-31241838, -15415700, -2994250, 8939346, 11562230, -12840670, -26064365, -11621720, -15405155, 11020693},
+		},
+		{
+			FieldElement{1866042, -7949489, -7898649, -10301010, 12483315, 13477547, 3175636, -12424163, 28761762, 1406734},
+			FieldElement{-448555, -1777666, 13018551, 3194501, -9580420, -11161737, 24760585, -4347088, 25577411, -13378680},
+			FieldElement{-24290378, 4759345, -690653, -1852816, 2066747, 10693769, -29595790, 9884936, -9368926, 4745410},
+		},
+		{
+			FieldElement{-9141284, 6049714, -19531061, -4341411, -31260798, 9944276, -15462008, -11311852, 10931924, -11931931},
+			FieldElement{-16561513, 14112680, -8012645, 4817318, -8040464, -11414606, -22853429, 10856641, -20470770, 13434654},
+			FieldElement{22759489, -10073434, -16766264, -1871422, 13637442, -10168091, 1765144, -12654326, 28445307, -5364710},
+		},
+		{
+			FieldElement{29875063, 12493613, 2795536, -3786330, 1710620, 15181182, -10195717, -8788675, 9074234, 1167180},
+			FieldElement{-26205683, 11014233, -9842651, -2635485, -26908120, 7532294, -18716888, -9535498, 3843903, 9367684},
+			FieldElement{-10969595, -6403711, 9591134, 9582310, 11349256, 108879, 16235123, 8601684, -139197, 4242895},
+		},
+	},
+	{
+		{
+			FieldElement{22092954, -13191123, -2042793, -11968512, 32186753, -11517388, -6574341, 2470660, -27417366, 16625501},
+			FieldElement{-11057722, 3042016, 13770083, -9257922, 584236, -544855, -7770857, 2602725, -27351616, 14247413},
+			FieldElement{6314175, -10264892, -32772502, 15957557, -10157730, 168750, -8618807, 14290061, 27108877, -1180880},
+		},
+		{
+			FieldElement{-8586597, -7170966, 13241782, 10960156, -32991015, -13794596, 33547976, -11058889, -27148451, 981874},
+			FieldElement{22833440, 9293594, -32649448, -13618667, -9136966, 14756819, -22928859, -13970780, -10479804, -16197962},
+			FieldElement{-7768587, 3326786, -28111797, 10783824, 19178761, 14905060, 22680049, 13906969, -15933690, 3797899},
+		},
+		{
+			FieldElement{21721356, -4212746, -12206123, 9310182, -3882239, -13653110, 23740224, -2709232, 20491983, -8042152},
+			FieldElement{9209270, -15135055, -13256557, -6167798, -731016, 15289673, 25947805, 15286587, 30997318, -6703063},
+			FieldElement{7392032, 16618386, 23946583, -8039892, -13265164, -1533858, -14197445, -2321576, 17649998, -250080},
+		},
+		{
+			FieldElement{-9301088, -14193827, 30609526, -3049543, -25175069, -1283752, -15241566, -9525724, -2233253, 7662146},
+			FieldElement{-17558673, 1763594, -33114336, 15908610, -30040870, -12174295, 7335080, -8472199, -3174674, 3440183},
+			FieldElement{-19889700, -5977008, -24111293, -9688870, 10799743, -16571957, 40450, -4431835, 4862400, 1133},
+		},
+		{
+			FieldElement{-32856209, -7873957, -5422389, 14860950, -16319031, 7956142, 7258061, 311861, -30594991, -7379421},
+			FieldElement{-3773428, -1565936, 28985340, 7499440, 24445838, 9325937, 29727763, 16527196, 18278453, 15405622},
+			FieldElement{-4381906, 8508652, -19898366, -3674424, -5984453, 15149970, -13313598, 843523, -21875062, 13626197},
+		},
+		{
+			FieldElement{2281448, -13487055, -10915418, -2609910, 1879358, 16164207, -10783882, 3953792, 13340839, 15928663},
+			FieldElement{31727126, -7179855, -18437503, -8283652, 2875793, -16390330, -25269894, -7014826, -23452306, 5964753},
+			FieldElement{4100420, -5959452, -17179337, 6017714, -18705837, 12227141, -26684835, 11344144, 2538215, -7570755},
+		},
+		{
+			FieldElement{-9433605, 6123113, 11159803, -2156608, 30016280, 14966241, -20474983, 1485421, -629256, -15958862},
+			FieldElement{-26804558, 4260919, 11851389, 9658551, -32017107, 16367492, -20205425, -13191288, 11659922, -11115118},
+			FieldElement{26180396, 10015009, -30844224, -8581293, 5418197, 9480663, 2231568, -10170080, 33100372, -1306171},
+		},
+		{
+			FieldElement{15121113, -5201871, -10389905, 15427821, -27509937, -15992507, 21670947, 4486675, -5931810, -14466380},
+			FieldElement{16166486, -9483733, -11104130, 6023908, -31926798, -1364923, 2340060, -16254968, -10735770, -10039824},
+			FieldElement{28042865, -3557089, -12126526, 12259706, -3717498, -6945899, 6766453, -8689599, 18036436, 5803270},
+		},
+	},
+	{
+		{
+			FieldElement{-817581, 6763912, 11803561, 1585585, 10958447, -2671165, 23855391, 4598332, -6159431, -14117438},
+			FieldElement{-31031306, -14256194, 17332029, -2383520, 31312682, -5967183, 696309, 50292, -20095739, 11763584},
+			FieldElement{-594563, -2514283, -32234153, 12643980, 12650761, 14811489, 665117, -12613632, -19773211, -10713562},
+		},
+		{
+			FieldElement{30464590, -11262872, -4127476, -12734478, 19835327, -7105613, -24396175, 2075773, -17020157, 992471},
+			FieldElement{18357185, -6994433, 7766382, 16342475, -29324918, 411174, 14578841, 8080033, -11574335, -10601610},
+			FieldElement{19598397, 10334610, 12555054, 2555664, 18821899, -10339780, 21873263, 16014234, 26224780, 16452269},
+		},
+		{
+			FieldElement{-30223925, 5145196, 5944548, 16385966, 3976735, 2009897, -11377804, -7618186, -20533829, 3698650},
+			FieldElement{14187449, 3448569, -10636236, -10810935, -22663880, -3433596, 7268410, -10890444, 27394301, 12015369},
+			FieldElement{19695761, 16087646, 28032085, 12999827, 6817792, 11427614, 20244189, -1312777, -13259127, -3402461},
+		},
+		{
+			FieldElement{30860103, 12735208, -1888245, -4699734, -16974906, 2256940, -8166013, 12298312, -8550524, -10393462},
+			FieldElement{-5719826, -11245325, -1910649, 15569035, 26642876, -7587760, -5789354, -15118654, -4976164, 12651793},
+			FieldElement{-2848395, 9953421, 11531313, -5282879, 26895123, -12697089, -13118820, -16517902, 9768698, -2533218},
+		},
+		{
+			FieldElement{-24719459, 1894651, -287698, -4704085, 15348719, -8156530, 32767513, 12765450, 4940095, 10678226},
+			FieldElement{18860224, 15980149, -18987240, -1562570, -26233012, -11071856, -7843882, 13944024, -24372348, 16582019},
+			FieldElement{-15504260, 4970268, -29893044, 4175593, -20993212, -2199756, -11704054, 15444560, -11003761, 7989037},
+		},
+		{
+			FieldElement{31490452, 5568061, -2412803, 2182383, -32336847, 4531686, -32078269, 6200206, -19686113, -14800171},
+			FieldElement{-17308668, -15879940, -31522777, -2831, -32887382, 16375549, 8680158, -16371713, 28550068, -6857132},
+			FieldElement{-28126887, -5688091, 16837845, -1820458, -6850681, 12700016, -30039981, 4364038, 1155602, 5988841},
+		},
+		{
+			FieldElement{21890435, -13272907, -12624011, 12154349, -7831873, 15300496, 23148983, -4470481, 24618407, 8283181},
+			FieldElement{-33136107, -10512751, 9975416, 6841041, -31559793, 16356536, 3070187, -7025928, 1466169, 10740210},
+			FieldElement{-1509399, -15488185, -13503385, -10655916, 32799044, 909394, -13938903, -5779719, -32164649, -15327040},
+		},
+		{
+			FieldElement{3960823, -14267803, -28026090, -15918051, -19404858, 13146868, 15567327, 951507, -3260321, -573935},
+			FieldElement{24740841, 5052253, -30094131, 8961361, 25877428, 6165135, -24368180, 14397372, -7380369, -6144105},
+			FieldElement{-28888365, 3510803, -28103278, -1158478, -11238128, -10631454, -15441463, -14453128, -1625486, -6494814},
+		},
+	},
+	{
+		{
+			FieldElement{793299, -9230478, 8836302, -6235707, -27360908, -2369593, 33152843, -4885251, -9906200, -621852},
+			FieldElement{5666233, 525582, 20782575, -8038419, -24538499, 14657740, 16099374, 1468826, -6171428, -15186581},
+			FieldElement{-4859255, -3779343, -2917758, -6748019, 7778750, 11688288, -30404353, -9871238, -1558923, -9863646},
+		},
+		{
+			FieldElement{10896332, -7719704, 824275, 472601, -19460308, 3009587, 25248958, 14783338, -30581476, -15757844},
+			FieldElement{10566929, 12612572, -31944212, 11118703, -12633376, 12362879, 21752402, 8822496, 24003793, 14264025},
+			FieldElement{27713862, -7355973, -11008240, 9227530, 27050101, 2504721, 23886875, -13117525, 13958495, -5732453},
+		},
+		{
+			FieldElement{-23481610, 4867226, -27247128, 3900521, 29838369, -8212291, -31889399, -10041781, 7340521, -15410068},
+			FieldElement{4646514, -8011124, -22766023, -11532654, 23184553, 8566613, 31366726, -1381061, -15066784, -10375192},
+			FieldElement{-17270517, 12723032, -16993061, 14878794, 21619651, -6197576, 27584817, 3093888, -8843694, 3849921},
+		},
+		{
+			FieldElement{-9064912, 2103172, 25561640, -15125738, -5239824, 9582958, 32477045, -9017955, 5002294, -15550259},
+			FieldElement{-12057553, -11177906, 21115585, -13365155, 8808712, -12030708, 16489530, 13378448, -25845716, 12741426},
+			FieldElement{-5946367, 10645103, -30911586, 15390284, -3286982, -7118677, 24306472, 15852464, 28834118, -7646072},
+		},
+		{
+			FieldElement{-17335748, -9107057, -24531279, 9434953, -8472084, -583362, -13090771, 455841, 20461858, 5491305},
+			FieldElement{13669248, -16095482, -12481974, -10203039, -14569770, -11893198, -24995986, 11293807, -28588204, -9421832},
+			FieldElement{28497928, 6272777, -33022994, 14470570, 8906179, -1225630, 18504674, -14165166, 29867745, -8795943},
+		},
+		{
+			FieldElement{-16207023, 13517196, -27799630, -13697798, 24009064, -6373891, -6367600, -13175392, 22853429, -4012011},
+			FieldElement{24191378, 16712145, -13931797, 15217831, 14542237, 1646131, 18603514, -11037887, 12876623, -2112447},
+			FieldElement{17902668, 4518229, -411702, -2829247, 26878217, 5258055, -12860753, 608397, 16031844, 3723494},
+		},
+		{
+			FieldElement{-28632773, 12763728, -20446446, 7577504, 33001348, -13017745, 17558842, -7872890, 23896954, -4314245},
+			FieldElement{-20005381, -12011952, 31520464, 605201, 2543521, 5991821, -2945064, 7229064, -9919646, -8826859},
+			FieldElement{28816045, 298879, -28165016, -15920938, 19000928, -1665890, -12680833, -2949325, -18051778, -2082915},
+		},
+		{
+			FieldElement{16000882, -344896, 3493092, -11447198, -29504595, -13159789, 12577740, 16041268, -19715240, 7847707},
+			FieldElement{10151868, 10572098, 27312476, 7922682, 14825339, 4723128, -32855931, -6519018, -10020567, 3852848},
+			FieldElement{-11430470, 15697596, -21121557, -4420647, 5386314, 15063598, 16514493, -15932110, 29330899, -15076224},
+		},
+	},
+	{
+		{
+			FieldElement{-25499735, -4378794, -15222908, -6901211, 16615731, 2051784, 3303702, 15490, -27548796, 12314391},
+			FieldElement{15683520, -6003043, 18109120, -9980648, 15337968, -5997823, -16717435, 15921866, 16103996, -3731215},
+			FieldElement{-23169824, -10781249, 13588192, -1628807, -3798557, -1074929, -19273607, 5402699, -29815713, -9841101},
+		},
+		{
+			FieldElement{23190676, 2384583, -32714340, 3462154, -29903655, -1529132, -11266856, 8911517, -25205859, 2739713},
+			FieldElement{21374101, -3554250, -33524649, 9874411, 15377179, 11831242, -33529904, 6134907, 4931255, 11987849},
+			FieldElement{-7732, -2978858, -16223486, 7277597, 105524, -322051, -31480539, 13861388, -30076310, 10117930},
+		},
+		{
+			FieldElement{-29501170, -10744872, -26163768, 13051539, -25625564, 5089643, -6325503, 6704079, 12890019, 15728940},
+			FieldElement{-21972360, -11771379, -951059, -4418840, 14704840, 2695116, 903376, -10428139, 12885167, 8311031},
+			FieldElement{-17516482, 5352194, 10384213, -13811658, 7506451, 13453191, 26423267, 4384730, 1888765, -5435404},
+		},
+		{
+			FieldElement{-25817338, -3107312, -13494599, -3182506, 30896459, -13921729, -32251644, -12707869, -19464434, -3340243},
+			FieldElement{-23607977, -2665774, -526091, 4651136, 5765089, 4618330, 6092245, 14845197, 17151279, -9854116},
+			FieldElement{-24830458, -12733720, -15165978, 10367250, -29530908, -265356, 22825805, -7087279, -16866484, 16176525},
+		},
+		{
+			FieldElement{-23583256, 6564961, 20063689, 3798228, -4740178, 7359225, 2006182, -10363426, -28746253, -10197509},
+			FieldElement{-10626600, -4486402, -13320562, -5125317, 3432136, -6393229, 23632037, -1940610, 32808310, 1099883},
+			FieldElement{15030977, 5768825, -27451236, -2887299, -6427378, -15361371, -15277896, -6809350, 2051441, -15225865},
+		},
+		{
+			FieldElement{-3362323, -7239372, 7517890, 9824992, 23555850, 295369, 5148398, -14154188, -22686354, 16633660},
+			FieldElement{4577086, -16752288, 13249841, -15304328, 19958763, -14537274, 18559670, -10759549, 8402478, -9864273},
+			FieldElement{-28406330, -1051581, -26790155, -907698, -17212414, -11030789, 9453451, -14980072, 17983010, 9967138},
+		},
+		{
+			FieldElement{-25762494, 6524722, 26585488, 9969270, 24709298, 1220360, -1677990, 7806337, 17507396, 3651560},
+			FieldElement{-10420457, -4118111, 14584639, 15971087, -15768321, 8861010, 26556809, -5574557, -18553322, -11357135},
+			FieldElement{2839101, 14284142, 4029895, 3472686, 14402957, 12689363, -26642121, 8459447, -5605463, -7621941},
+		},
+		{
+			FieldElement{-4839289, -3535444, 9744961, 2871048, 25113978, 3187018, -25110813, -849066, 17258084, -7977739},
+			FieldElement{18164541, -10595176, -17154882, -1542417, 19237078, -9745295, 23357533, -15217008, 26908270, 12150756},
+			FieldElement{-30264870, -7647865, 5112249, -7036672, -1499807, -6974257, 43168, -5537701, -32302074, 16215819},
+		},
+	},
+	{
+		{
+			FieldElement{-6898905, 9824394, -12304779, -4401089, -31397141, -6276835, 32574489, 12532905, -7503072, -8675347},
+			FieldElement{-27343522, -16515468, -27151524, -10722951, 946346, 16291093, 254968, 7168080, 21676107, -1943028},
+			FieldElement{21260961, -8424752, -16831886, -11920822, -23677961, 3968121, -3651949, -6215466, -3556191, -7913075},
+		},
+		{
+			FieldElement{16544754, 13250366, -16804428, 15546242, -4583003, 12757258, -2462308, -8680336, -18907032, -9662799},
+			FieldElement{-2415239, -15577728, 18312303, 4964443, -15272530, -12653564, 26820651, 16690659, 25459437, -4564609},
+			FieldElement{-25144690, 11425020, 28423002, -11020557, -6144921, -15826224, 9142795, -2391602, -6432418, -1644817},
+		},
+		{
+			FieldElement{-23104652, 6253476, 16964147, -3768872, -25113972, -12296437, -27457225, -16344658, 6335692, 7249989},
+			FieldElement{-30333227, 13979675, 7503222, -12368314, -11956721, -4621693, -30272269, 2682242, 25993170, -12478523},
+			FieldElement{4364628, 5930691, 32304656, -10044554, -8054781, 15091131, 22857016, -10598955, 31820368, 15075278},
+		},
+		{
+			FieldElement{31879134, -8918693, 17258761, 90626, -8041836, -4917709, 24162788, -9650886, -17970238, 12833045},
+			FieldElement{19073683, 14851414, -24403169, -11860168, 7625278, 11091125, -19619190, 2074449, -9413939, 14905377},
+			FieldElement{24483667, -11935567, -2518866, -11547418, -1553130, 15355506, -25282080, 9253129, 27628530, -7555480},
+		},
+		{
+			FieldElement{17597607, 8340603, 19355617, 552187, 26198470, -3176583, 4593324, -9157582, -14110875, 15297016},
+			FieldElement{510886, 14337390, -31785257, 16638632, 6328095, 2713355, -20217417, -11864220, 8683221, 2921426},
+			FieldElement{18606791, 11874196, 27155355, -5281482, -24031742, 6265446, -25178240, -1278924, 4674690, 13890525},
+		},
+		{
+			FieldElement{13609624, 13069022, -27372361, -13055908, 24360586, 9592974, 14977157, 9835105, 4389687, 288396},
+			FieldElement{9922506, -519394, 13613107, 5883594, -18758345, -434263, -12304062, 8317628, 23388070, 16052080},
+			FieldElement{12720016, 11937594, -31970060, -5028689, 26900120, 8561328, -20155687, -11632979, -14754271, -10812892},
+		},
+		{
+			FieldElement{15961858, 14150409, 26716931, -665832, -22794328, 13603569, 11829573, 7467844, -28822128, 929275},
+			FieldElement{11038231, -11582396, -27310482, -7316562, -10498527, -16307831, -23479533, -9371869, -21393143, 2465074},
+			FieldElement{20017163, -4323226, 27915242, 1529148, 12396362, 15675764, 13817261, -9658066, 2463391, -4622140},
+		},
+		{
+			FieldElement{-16358878, -12663911, -12065183, 4996454, -1256422, 1073572, 9583558, 12851107, 4003896, 12673717},
+			FieldElement{-1731589, -15155870, -3262930, 16143082, 19294135, 13385325, 14741514, -9103726, 7903886, 2348101},
+			FieldElement{24536016, -16515207, 12715592, -3862155, 1511293, 10047386, -3842346, -7129159, -28377538, 10048127},
+		},
+	},
+	{
+		{
+			FieldElement{-12622226, -6204820, 30718825, 2591312, -10617028, 12192840, 18873298, -7297090, -32297756, 15221632},
+			FieldElement{-26478122, -11103864, 11546244, -1852483, 9180880, 7656409, -21343950, 2095755, 29769758, 6593415},
+			FieldElement{-31994208, -2907461, 4176912, 3264766, 12538965, -868111, 26312345, -6118678, 30958054, 8292160},
+		},
+		{
+			FieldElement{31429822, -13959116, 29173532, 15632448, 12174511, -2760094, 32808831, 3977186, 26143136, -3148876},
+			FieldElement{22648901, 1402143, -22799984, 13746059, 7936347, 365344, -8668633, -1674433, -3758243, -2304625},
+			FieldElement{-15491917, 8012313, -2514730, -12702462, -23965846, -10254029, -1612713, -1535569, -16664475, 8194478},
+		},
+		{
+			FieldElement{27338066, -7507420, -7414224, 10140405, -19026427, -6589889, 27277191, 8855376, 28572286, 3005164},
+			FieldElement{26287124, 4821776, 25476601, -4145903, -3764513, -15788984, -18008582, 1182479, -26094821, -13079595},
+			FieldElement{-7171154, 3178080, 23970071, 6201893, -17195577, -4489192, -21876275, -13982627, 32208683, -1198248},
+		},
+		{
+			FieldElement{-16657702, 2817643, -10286362, 14811298, 6024667, 13349505, -27315504, -10497842, -27672585, -11539858},
+			FieldElement{15941029, -9405932, -21367050, 8062055, 31876073, -238629, -15278393, -1444429, 15397331, -4130193},
+			FieldElement{8934485, -13485467, -23286397, -13423241, -32446090, 14047986, 31170398, -1441021, -27505566, 15087184},
+		},
+		{
+			FieldElement{-18357243, -2156491, 24524913, -16677868, 15520427, -6360776, -15502406, 11461896, 16788528, -5868942},
+			FieldElement{-1947386, 16013773, 21750665, 3714552, -17401782, -16055433, -3770287, -10323320, 31322514, -11615635},
+			FieldElement{21426655, -5650218, -13648287, -5347537, -28812189, -4920970, -18275391, -14621414, 13040862, -12112948},
+		},
+		{
+			FieldElement{11293895, 12478086, -27136401, 15083750, -29307421, 14748872, 14555558, -13417103, 1613711, 4896935},
+			FieldElement{-25894883, 15323294, -8489791, -8057900, 25967126, -13425460, 2825960, -4897045, -23971776, -11267415},
+			FieldElement{-15924766, -5229880, -17443532, 6410664, 3622847, 10243618, 20615400, 12405433, -23753030, -8436416},
+		},
+		{
+			FieldElement{-7091295, 12556208, -20191352, 9025187, -17072479, 4333801, 4378436, 2432030, 23097949, -566018},
+			FieldElement{4565804, -16025654, 20084412, -7842817, 1724999, 189254, 24767264, 10103221, -18512313, 2424778},
+			FieldElement{366633, -11976806, 8173090, -6890119, 30788634, 5745705, -7168678, 1344109, -3642553, 12412659},
+		},
+		{
+			FieldElement{-24001791, 7690286, 14929416, -168257, -32210835, -13412986, 24162697, -15326504, -3141501, 11179385},
+			FieldElement{18289522, -14724954, 8056945, 16430056, -21729724, 7842514, -6001441, -1486897, -18684645, -11443503},
+			FieldElement{476239, 6601091, -6152790, -9723375, 17503545, -4863900, 27672959, 13403813, 11052904, 5219329},
+		},
+	},
+	{
+		{
+			FieldElement{20678546, -8375738, -32671898, 8849123, -5009758, 14574752, 31186971, -3973730, 9014762, -8579056},
+			FieldElement{-13644050, -10350239, -15962508, 5075808, -1514661, -11534600, -33102500, 9160280, 8473550, -3256838},
+			FieldElement{24900749, 14435722, 17209120, -15292541, -22592275, 9878983, -7689309, -16335821, -24568481, 11788948},
+		},
+		{
+			FieldElement{-3118155, -11395194, -13802089, 14797441, 9652448, -6845904, -20037437, 10410733, -24568470, -1458691},
+			FieldElement{-15659161, 16736706, -22467150, 10215878, -9097177, 7563911, 11871841, -12505194, -18513325, 8464118},
+			FieldElement{-23400612, 8348507, -14585951, -861714, -3950205, -6373419, 14325289, 8628612, 33313881, -8370517},
+		},
+		{
+			FieldElement{-20186973, -4967935, 22367356, 5271547, -1097117, -4788838, -24805667, -10236854, -8940735, -5818269},
+			FieldElement{-6948785, -1795212, -32625683, -16021179, 32635414, -7374245, 15989197, -12838188, 28358192, -4253904},
+			FieldElement{-23561781, -2799059, -32351682, -1661963, -9147719, 10429267, -16637684, 4072016, -5351664, 5596589},
+		},
+		{
+			FieldElement{-28236598, -3390048, 12312896, 6213178, 3117142, 16078565, 29266239, 2557221, 1768301, 15373193},
+			FieldElement{-7243358, -3246960, -4593467, -7553353, -127927, -912245, -1090902, -4504991, -24660491, 3442910},
+			FieldElement{-30210571, 5124043, 14181784, 8197961, 18964734, -11939093, 22597931, 7176455, -18585478, 13365930},
+		},
+		{
+			FieldElement{-7877390, -1499958, 8324673, 4690079, 6261860, 890446, 24538107, -8570186, -9689599, -3031667},
+			FieldElement{25008904, -10771599, -4305031, -9638010, 16265036, 15721635, 683793, -11823784, 15723479, -15163481},
+			FieldElement{-9660625, 12374379, -27006999, -7026148, -7724114, -12314514, 11879682, 5400171, 519526, -1235876},
+		},
+		{
+			FieldElement{22258397, -16332233, -7869817, 14613016, -22520255, -2950923, -20353881, 7315967, 16648397, 7605640},
+			FieldElement{-8081308, -8464597, -8223311, 9719710, 19259459, -15348212, 23994942, -5281555, -9468848, 4763278},
+			FieldElement{-21699244, 9220969, -15730624, 1084137, -25476107, -2852390, 31088447, -7764523, -11356529, 728112},
+		},
+		{
+			FieldElement{26047220, -11751471, -6900323, -16521798, 24092068, 9158119, -4273545, -12555558, -29365436, -5498272},
+			FieldElement{17510331, -322857, 5854289, 8403524, 17133918, -3112612, -28111007, 12327945, 10750447, 10014012},
+			FieldElement{-10312768, 3936952, 9156313, -8897683, 16498692, -994647, -27481051, -666732, 3424691, 7540221},
+		},
+		{
+			FieldElement{30322361, -6964110, 11361005, -4143317, 7433304, 4989748, -7071422, -16317219, -9244265, 15258046},
+			FieldElement{13054562, -2779497, 19155474, 469045, -12482797, 4566042, 5631406, 2711395, 1062915, -5136345},
+			FieldElement{-19240248, -11254599, -29509029, -7499965, -5835763, 13005411, -6066489, 12194497, 32960380, 1459310},
+		},
+	},
+	{
+		{
+			FieldElement{19852034, 7027924, 23669353, 10020366, 8586503, -6657907, 394197, -6101885, 18638003, -11174937},
+			FieldElement{31395534, 15098109, 26581030, 8030562, -16527914, -5007134, 9012486, -7584354, -6643087, -5442636},
+			FieldElement{-9192165, -2347377, -1997099, 4529534, 25766844, 607986, -13222, 9677543, -32294889, -6456008},
+		},
+		{
+			FieldElement{-2444496, -149937, 29348902, 8186665, 1873760, 12489863, -30934579, -7839692, -7852844, -8138429},
+			FieldElement{-15236356, -15433509, 7766470, 746860, 26346930, -10221762, -27333451, 10754588, -9431476, 5203576},
+			FieldElement{31834314, 14135496, -770007, 5159118, 20917671, -16768096, -7467973, -7337524, 31809243, 7347066},
+		},
+		{
+			FieldElement{-9606723, -11874240, 20414459, 13033986, 13716524, -11691881, 19797970, -12211255, 15192876, -2087490},
+			FieldElement{-12663563, -2181719, 1168162, -3804809, 26747877, -14138091, 10609330, 12694420, 33473243, -13382104},
+			FieldElement{33184999, 11180355, 15832085, -11385430, -1633671, 225884, 15089336, -11023903, -6135662, 14480053},
+		},
+		{
+			FieldElement{31308717, -5619998, 31030840, -1897099, 15674547, -6582883, 5496208, 13685227, 27595050, 8737275},
+			FieldElement{-20318852, -15150239, 10933843, -16178022, 8335352, -7546022, -31008351, -12610604, 26498114, 66511},
+			FieldElement{22644454, -8761729, -16671776, 4884562, -3105614, -13559366, 30540766, -4286747, -13327787, -7515095},
+		},
+		{
+			FieldElement{-28017847, 9834845, 18617207, -2681312, -3401956, -13307506, 8205540, 13585437, -17127465, 15115439},
+			FieldElement{23711543, -672915, 31206561, -8362711, 6164647, -9709987, -33535882, -1426096, 8236921, 16492939},
+			FieldElement{-23910559, -13515526, -26299483, -4503841, 25005590, -7687270, 19574902, 10071562, 6708380, -6222424},
+		},
+		{
+			FieldElement{2101391, -4930054, 19702731, 2367575, -15427167, 1047675, 5301017, 9328700, 29955601, -11678310},
+			FieldElement{3096359, 9271816, -21620864, -15521844, -14847996, -7592937, -25892142, -12635595, -9917575, 6216608},
+			FieldElement{-32615849, 338663, -25195611, 2510422, -29213566, -13820213, 24822830, -6146567, -26767480, 7525079},
+		},
+		{
+			FieldElement{-23066649, -13985623, 16133487, -7896178, -3389565, 778788, -910336, -2782495, -19386633, 11994101},
+			FieldElement{21691500, -13624626, -641331, -14367021, 3285881, -3483596, -25064666, 9718258, -7477437, 13381418},
+			FieldElement{18445390, -4202236, 14979846, 11622458, -1727110, -3582980, 23111648, -6375247, 28535282, 15779576},
+		},
+		{
+			FieldElement{30098053, 3089662, -9234387, 16662135, -21306940, 11308411, -14068454, 12021730, 9955285, -16303356},
+			FieldElement{9734894, -14576830, -7473633, -9138735, 2060392, 11313496, -18426029, 9924399, 20194861, 13380996},
+			FieldElement{-26378102, -7965207, -22167821, 15789297, -18055342, -6168792, -1984914, 15707771, 26342023, 10146099},
+		},
+	},
+	{
+		{
+			FieldElement{-26016874, -219943, 21339191, -41388, 19745256, -2878700, -29637280, 2227040, 21612326, -545728},
+			FieldElement{-13077387, 1184228, 23562814, -5970442, -20351244, -6348714, 25764461, 12243797, -20856566, 11649658},
+			FieldElement{-10031494, 11262626, 27384172, 2271902, 26947504, -15997771, 39944, 6114064, 33514190, 2333242},
+		},
+		{
+			FieldElement{-21433588, -12421821, 8119782, 7219913, -21830522, -9016134, -6679750, -12670638, 24350578, -13450001},
+			FieldElement{-4116307, -11271533, -23886186, 4843615, -30088339, 690623, -31536088, -10406836, 8317860, 12352766},
+			FieldElement{18200138, -14475911, -33087759, -2696619, -23702521, -9102511, -23552096, -2287550, 20712163, 6719373},
+		},
+		{
+			FieldElement{26656208, 6075253, -7858556, 1886072, -28344043, 4262326, 11117530, -3763210, 26224235, -3297458},
+			FieldElement{-17168938, -14854097, -3395676, -16369877, -19954045, 14050420, 21728352, 9493610, 18620611, -16428628},
+			FieldElement{-13323321, 13325349, 11432106, 5964811, 18609221, 6062965, -5269471, -9725556, -30701573, -16479657},
+		},
+		{
+			FieldElement{-23860538, -11233159, 26961357, 1640861, -32413112, -16737940, 12248509, -5240639, 13735342, 1934062},
+			FieldElement{25089769, 6742589, 17081145, -13406266, 21909293, -16067981, -15136294, -3765346, -21277997, 5473616},
+			FieldElement{31883677, -7961101, 1083432, -11572403, 22828471, 13290673, -7125085, 12469656, 29111212, -5451014},
+		},
+		{
+			FieldElement{24244947, -15050407, -26262976, 2791540, -14997599, 16666678, 24367466, 6388839, -10295587, 452383},
+			FieldElement{-25640782, -3417841, 5217916, 16224624, 19987036, -4082269, -24236251, -5915248, 15766062, 8407814},
+			FieldElement{-20406999, 13990231, 15495425, 16395525, 5377168, 15166495, -8917023, -4388953, -8067909, 2276718},
+		},
+		{
+			FieldElement{30157918, 12924066, -17712050, 9245753, 19895028, 3368142, -23827587, 5096219, 22740376, -7303417},
+			FieldElement{2041139, -14256350, 7783687, 13876377, -25946985, -13352459, 24051124, 13742383, -15637599, 13295222},
+			FieldElement{33338237, -8505733, 12532113, 7977527, 9106186, -1715251, -17720195, -4612972, -4451357, -14669444},
+		},
+		{
+			FieldElement{-20045281, 5454097, -14346548, 6447146, 28862071, 1883651, -2469266, -4141880, 7770569, 9620597},
+			FieldElement{23208068, 7979712, 33071466, 8149229, 1758231, -10834995, 30945528, -1694323, -33502340, -14767970},
+			FieldElement{1439958, -16270480, -1079989, -793782, 4625402, 10647766, -5043801, 1220118, 30494170, -11440799},
+		},
+		{
+			FieldElement{-5037580, -13028295, -2970559, -3061767, 15640974, -6701666, -26739026, 926050, -1684339, -13333647},
+			FieldElement{13908495, -3549272, 30919928, -6273825, -21521863, 7989039, 9021034, 9078865, 3353509, 4033511},
+			FieldElement{-29663431, -15113610, 32259991, -344482, 24295849, -12912123, 23161163, 8839127, 27485041, 7356032},
+		},
+	},
+	{
+		{
+			FieldElement{9661027, 705443, 11980065, -5370154, -1628543, 14661173, -6346142, 2625015, 28431036, -16771834},
+			FieldElement{-23839233, -8311415, -25945511, 7480958, -17681669, -8354183, -22545972, 14150565, 15970762, 4099461},
+			FieldElement{29262576, 16756590, 26350592, -8793563, 8529671, -11208050, 13617293, -9937143, 11465739, 8317062},
+		},
+		{
+			FieldElement{-25493081, -6962928, 32500200, -9419051, -23038724, -2302222, 14898637, 3848455, 20969334, -5157516},
+			FieldElement{-20384450, -14347713, -18336405, 13884722, -33039454, 2842114, -21610826, -3649888, 11177095, 14989547},
+			FieldElement{-24496721, -11716016, 16959896, 2278463, 12066309, 10137771, 13515641, 2581286, -28487508, 9930240},
+		},
+		{
+			FieldElement{-17751622, -2097826, 16544300, -13009300, -15914807, -14949081, 18345767, -13403753, 16291481, -5314038},
+			FieldElement{-33229194, 2553288, 32678213, 9875984, 8534129, 6889387, -9676774, 6957617, 4368891, 9788741},
+			FieldElement{16660756, 7281060, -10830758, 12911820, 20108584, -8101676, -21722536, -8613148, 16250552, -11111103},
+		},
+		{
+			FieldElement{-19765507, 2390526, -16551031, 14161980, 1905286, 6414907, 4689584, 10604807, -30190403, 4782747},
+			FieldElement{-1354539, 14736941, -7367442, -13292886, 7710542, -14155590, -9981571, 4383045, 22546403, 437323},
+			FieldElement{31665577, -12180464, -16186830, 1491339, -18368625, 3294682, 27343084, 2786261, -30633590, -14097016},
+		},
+		{
+			FieldElement{-14467279, -683715, -33374107, 7448552, 19294360, 14334329, -19690631, 2355319, -19284671, -6114373},
+			FieldElement{15121312, -15796162, 6377020, -6031361, -10798111, -12957845, 18952177, 15496498, -29380133, 11754228},
+			FieldElement{-2637277, -13483075, 8488727, -14303896, 12728761, -1622493, 7141596, 11724556, 22761615, -10134141},
+		},
+		{
+			FieldElement{16918416, 11729663, -18083579, 3022987, -31015732, -13339659, -28741185, -12227393, 32851222, 11717399},
+			FieldElement{11166634, 7338049, -6722523, 4531520, -29468672, -7302055, 31474879, 3483633, -1193175, -4030831},
+			FieldElement{-185635, 9921305, 31456609, -13536438, -12013818, 13348923, 33142652, 6546660, -19985279, -3948376},
+		},
+		{
+			FieldElement{-32460596, 11266712, -11197107, -7899103, 31703694, 3855903, -8537131, -12833048, -30772034, -15486313},
+			FieldElement{-18006477, 12709068, 3991746, -6479188, -21491523, -10550425, -31135347, -16049879, 10928917, 3011958},
+			FieldElement{-6957757, -15594337, 31696059, 334240, 29576716, 14796075, -30831056, -12805180, 18008031, 10258577},
+		},
+		{
+			FieldElement{-22448644, 15655569, 7018479, -4410003, -30314266, -1201591, -1853465, 1367120, 25127874, 6671743},
+			FieldElement{29701166, -14373934, -10878120, 9279288, -17568, 13127210, 21382910, 11042292, 25838796, 4642684},
+			FieldElement{-20430234, 14955537, -24126347, 8124619, -5369288, -5990470, 30468147, -13900640, 18423289, 4177476},
+		},
+	},
+}
diff --git a/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/edwards25519.go b/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/edwards25519.go
new file mode 100644
index 0000000000..fd03c252af
--- /dev/null
+++ b/vendor/golang.org/x/crypto/ed25519/internal/edwards25519/edwards25519.go
@@ -0,0 +1,1793 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package edwards25519
+
+import "encoding/binary"
+
+// This code is a port of the public domain, “ref10” implementation of ed25519
+// from SUPERCOP.
+
+// FieldElement represents an element of the field GF(2^255 - 19).  An element
+// t, entries t[0]...t[9], represents the integer t[0]+2^26 t[1]+2^51 t[2]+2^77
+// t[3]+2^102 t[4]+...+2^230 t[9].  Bounds on each t[i] vary depending on
+// context.
+type FieldElement [10]int32
+
+var zero FieldElement
+
+func FeZero(fe *FieldElement) {
+	copy(fe[:], zero[:])
+}
+
+func FeOne(fe *FieldElement) {
+	FeZero(fe)
+	fe[0] = 1
+}
+
+func FeAdd(dst, a, b *FieldElement) {
+	dst[0] = a[0] + b[0]
+	dst[1] = a[1] + b[1]
+	dst[2] = a[2] + b[2]
+	dst[3] = a[3] + b[3]
+	dst[4] = a[4] + b[4]
+	dst[5] = a[5] + b[5]
+	dst[6] = a[6] + b[6]
+	dst[7] = a[7] + b[7]
+	dst[8] = a[8] + b[8]
+	dst[9] = a[9] + b[9]
+}
+
+func FeSub(dst, a, b *FieldElement) {
+	dst[0] = a[0] - b[0]
+	dst[1] = a[1] - b[1]
+	dst[2] = a[2] - b[2]
+	dst[3] = a[3] - b[3]
+	dst[4] = a[4] - b[4]
+	dst[5] = a[5] - b[5]
+	dst[6] = a[6] - b[6]
+	dst[7] = a[7] - b[7]
+	dst[8] = a[8] - b[8]
+	dst[9] = a[9] - b[9]
+}
+
+func FeCopy(dst, src *FieldElement) {
+	copy(dst[:], src[:])
+}
+
+// Replace (f,g) with (g,g) if b == 1;
+// replace (f,g) with (f,g) if b == 0.
+//
+// Preconditions: b in {0,1}.
+func FeCMove(f, g *FieldElement, b int32) {
+	b = -b
+	f[0] ^= b & (f[0] ^ g[0])
+	f[1] ^= b & (f[1] ^ g[1])
+	f[2] ^= b & (f[2] ^ g[2])
+	f[3] ^= b & (f[3] ^ g[3])
+	f[4] ^= b & (f[4] ^ g[4])
+	f[5] ^= b & (f[5] ^ g[5])
+	f[6] ^= b & (f[6] ^ g[6])
+	f[7] ^= b & (f[7] ^ g[7])
+	f[8] ^= b & (f[8] ^ g[8])
+	f[9] ^= b & (f[9] ^ g[9])
+}
+
+func load3(in []byte) int64 {
+	var r int64
+	r = int64(in[0])
+	r |= int64(in[1]) << 8
+	r |= int64(in[2]) << 16
+	return r
+}
+
+func load4(in []byte) int64 {
+	var r int64
+	r = int64(in[0])
+	r |= int64(in[1]) << 8
+	r |= int64(in[2]) << 16
+	r |= int64(in[3]) << 24
+	return r
+}
+
+func FeFromBytes(dst *FieldElement, src *[32]byte) {
+	h0 := load4(src[:])
+	h1 := load3(src[4:]) << 6
+	h2 := load3(src[7:]) << 5
+	h3 := load3(src[10:]) << 3
+	h4 := load3(src[13:]) << 2
+	h5 := load4(src[16:])
+	h6 := load3(src[20:]) << 7
+	h7 := load3(src[23:]) << 5
+	h8 := load3(src[26:]) << 4
+	h9 := (load3(src[29:]) & 8388607) << 2
+
+	FeCombine(dst, h0, h1, h2, h3, h4, h5, h6, h7, h8, h9)
+}
+
+// FeToBytes marshals h to s.
+// Preconditions:
+//   |h| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+//
+// Write p=2^255-19; q=floor(h/p).
+// Basic claim: q = floor(2^(-255)(h + 19 2^(-25)h9 + 2^(-1))).
+//
+// Proof:
+//   Have |h|<=p so |q|<=1 so |19^2 2^(-255) q|<1/4.
+//   Also have |h-2^230 h9|<2^230 so |19 2^(-255)(h-2^230 h9)|<1/4.
+//
+//   Write y=2^(-1)-19^2 2^(-255)q-19 2^(-255)(h-2^230 h9).
+//   Then 0<y<1.
+//
+//   Write r=h-pq.
+//   Have 0<=r<=p-1=2^255-20.
+//   Thus 0<=r+19(2^-255)r<r+19(2^-255)2^255<=2^255-1.
+//
+//   Write x=r+19(2^-255)r+y.
+//   Then 0<x<2^255 so floor(2^(-255)x) = 0 so floor(q+2^(-255)x) = q.
+//
+//   Have q+2^(-255)x = 2^(-255)(h + 19 2^(-25) h9 + 2^(-1))
+//   so floor(2^(-255)(h + 19 2^(-25) h9 + 2^(-1))) = q.
+func FeToBytes(s *[32]byte, h *FieldElement) {
+	var carry [10]int32
+
+	q := (19*h[9] + (1 << 24)) >> 25
+	q = (h[0] + q) >> 26
+	q = (h[1] + q) >> 25
+	q = (h[2] + q) >> 26
+	q = (h[3] + q) >> 25
+	q = (h[4] + q) >> 26
+	q = (h[5] + q) >> 25
+	q = (h[6] + q) >> 26
+	q = (h[7] + q) >> 25
+	q = (h[8] + q) >> 26
+	q = (h[9] + q) >> 25
+
+	// Goal: Output h-(2^255-19)q, which is between 0 and 2^255-20.
+	h[0] += 19 * q
+	// Goal: Output h-2^255 q, which is between 0 and 2^255-20.
+
+	carry[0] = h[0] >> 26
+	h[1] += carry[0]
+	h[0] -= carry[0] << 26
+	carry[1] = h[1] >> 25
+	h[2] += carry[1]
+	h[1] -= carry[1] << 25
+	carry[2] = h[2] >> 26
+	h[3] += carry[2]
+	h[2] -= carry[2] << 26
+	carry[3] = h[3] >> 25
+	h[4] += carry[3]
+	h[3] -= carry[3] << 25
+	carry[4] = h[4] >> 26
+	h[5] += carry[4]
+	h[4] -= carry[4] << 26
+	carry[5] = h[5] >> 25
+	h[6] += carry[5]
+	h[5] -= carry[5] << 25
+	carry[6] = h[6] >> 26
+	h[7] += carry[6]
+	h[6] -= carry[6] << 26
+	carry[7] = h[7] >> 25
+	h[8] += carry[7]
+	h[7] -= carry[7] << 25
+	carry[8] = h[8] >> 26
+	h[9] += carry[8]
+	h[8] -= carry[8] << 26
+	carry[9] = h[9] >> 25
+	h[9] -= carry[9] << 25
+	// h10 = carry9
+
+	// Goal: Output h[0]+...+2^255 h10-2^255 q, which is between 0 and 2^255-20.
+	// Have h[0]+...+2^230 h[9] between 0 and 2^255-1;
+	// evidently 2^255 h10-2^255 q = 0.
+	// Goal: Output h[0]+...+2^230 h[9].
+
+	s[0] = byte(h[0] >> 0)
+	s[1] = byte(h[0] >> 8)
+	s[2] = byte(h[0] >> 16)
+	s[3] = byte((h[0] >> 24) | (h[1] << 2))
+	s[4] = byte(h[1] >> 6)
+	s[5] = byte(h[1] >> 14)
+	s[6] = byte((h[1] >> 22) | (h[2] << 3))
+	s[7] = byte(h[2] >> 5)
+	s[8] = byte(h[2] >> 13)
+	s[9] = byte((h[2] >> 21) | (h[3] << 5))
+	s[10] = byte(h[3] >> 3)
+	s[11] = byte(h[3] >> 11)
+	s[12] = byte((h[3] >> 19) | (h[4] << 6))
+	s[13] = byte(h[4] >> 2)
+	s[14] = byte(h[4] >> 10)
+	s[15] = byte(h[4] >> 18)
+	s[16] = byte(h[5] >> 0)
+	s[17] = byte(h[5] >> 8)
+	s[18] = byte(h[5] >> 16)
+	s[19] = byte((h[5] >> 24) | (h[6] << 1))
+	s[20] = byte(h[6] >> 7)
+	s[21] = byte(h[6] >> 15)
+	s[22] = byte((h[6] >> 23) | (h[7] << 3))
+	s[23] = byte(h[7] >> 5)
+	s[24] = byte(h[7] >> 13)
+	s[25] = byte((h[7] >> 21) | (h[8] << 4))
+	s[26] = byte(h[8] >> 4)
+	s[27] = byte(h[8] >> 12)
+	s[28] = byte((h[8] >> 20) | (h[9] << 6))
+	s[29] = byte(h[9] >> 2)
+	s[30] = byte(h[9] >> 10)
+	s[31] = byte(h[9] >> 18)
+}
+
+func FeIsNegative(f *FieldElement) byte {
+	var s [32]byte
+	FeToBytes(&s, f)
+	return s[0] & 1
+}
+
+func FeIsNonZero(f *FieldElement) int32 {
+	var s [32]byte
+	FeToBytes(&s, f)
+	var x uint8
+	for _, b := range s {
+		x |= b
+	}
+	x |= x >> 4
+	x |= x >> 2
+	x |= x >> 1
+	return int32(x & 1)
+}
+
+// FeNeg sets h = -f
+//
+// Preconditions:
+//    |f| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+//
+// Postconditions:
+//    |h| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+func FeNeg(h, f *FieldElement) {
+	h[0] = -f[0]
+	h[1] = -f[1]
+	h[2] = -f[2]
+	h[3] = -f[3]
+	h[4] = -f[4]
+	h[5] = -f[5]
+	h[6] = -f[6]
+	h[7] = -f[7]
+	h[8] = -f[8]
+	h[9] = -f[9]
+}
+
+func FeCombine(h *FieldElement, h0, h1, h2, h3, h4, h5, h6, h7, h8, h9 int64) {
+	var c0, c1, c2, c3, c4, c5, c6, c7, c8, c9 int64
+
+	/*
+	  |h0| <= (1.1*1.1*2^52*(1+19+19+19+19)+1.1*1.1*2^50*(38+38+38+38+38))
+	    i.e. |h0| <= 1.2*2^59; narrower ranges for h2, h4, h6, h8
+	  |h1| <= (1.1*1.1*2^51*(1+1+19+19+19+19+19+19+19+19))
+	    i.e. |h1| <= 1.5*2^58; narrower ranges for h3, h5, h7, h9
+	*/
+
+	c0 = (h0 + (1 << 25)) >> 26
+	h1 += c0
+	h0 -= c0 << 26
+	c4 = (h4 + (1 << 25)) >> 26
+	h5 += c4
+	h4 -= c4 << 26
+	/* |h0| <= 2^25 */
+	/* |h4| <= 2^25 */
+	/* |h1| <= 1.51*2^58 */
+	/* |h5| <= 1.51*2^58 */
+
+	c1 = (h1 + (1 << 24)) >> 25
+	h2 += c1
+	h1 -= c1 << 25
+	c5 = (h5 + (1 << 24)) >> 25
+	h6 += c5
+	h5 -= c5 << 25
+	/* |h1| <= 2^24; from now on fits into int32 */
+	/* |h5| <= 2^24; from now on fits into int32 */
+	/* |h2| <= 1.21*2^59 */
+	/* |h6| <= 1.21*2^59 */
+
+	c2 = (h2 + (1 << 25)) >> 26
+	h3 += c2
+	h2 -= c2 << 26
+	c6 = (h6 + (1 << 25)) >> 26
+	h7 += c6
+	h6 -= c6 << 26
+	/* |h2| <= 2^25; from now on fits into int32 unchanged */
+	/* |h6| <= 2^25; from now on fits into int32 unchanged */
+	/* |h3| <= 1.51*2^58 */
+	/* |h7| <= 1.51*2^58 */
+
+	c3 = (h3 + (1 << 24)) >> 25
+	h4 += c3
+	h3 -= c3 << 25
+	c7 = (h7 + (1 << 24)) >> 25
+	h8 += c7
+	h7 -= c7 << 25
+	/* |h3| <= 2^24; from now on fits into int32 unchanged */
+	/* |h7| <= 2^24; from now on fits into int32 unchanged */
+	/* |h4| <= 1.52*2^33 */
+	/* |h8| <= 1.52*2^33 */
+
+	c4 = (h4 + (1 << 25)) >> 26
+	h5 += c4
+	h4 -= c4 << 26
+	c8 = (h8 + (1 << 25)) >> 26
+	h9 += c8
+	h8 -= c8 << 26
+	/* |h4| <= 2^25; from now on fits into int32 unchanged */
+	/* |h8| <= 2^25; from now on fits into int32 unchanged */
+	/* |h5| <= 1.01*2^24 */
+	/* |h9| <= 1.51*2^58 */
+
+	c9 = (h9 + (1 << 24)) >> 25
+	h0 += c9 * 19
+	h9 -= c9 << 25
+	/* |h9| <= 2^24; from now on fits into int32 unchanged */
+	/* |h0| <= 1.8*2^37 */
+
+	c0 = (h0 + (1 << 25)) >> 26
+	h1 += c0
+	h0 -= c0 << 26
+	/* |h0| <= 2^25; from now on fits into int32 unchanged */
+	/* |h1| <= 1.01*2^24 */
+
+	h[0] = int32(h0)
+	h[1] = int32(h1)
+	h[2] = int32(h2)
+	h[3] = int32(h3)
+	h[4] = int32(h4)
+	h[5] = int32(h5)
+	h[6] = int32(h6)
+	h[7] = int32(h7)
+	h[8] = int32(h8)
+	h[9] = int32(h9)
+}
+
+// FeMul calculates h = f * g
+// Can overlap h with f or g.
+//
+// Preconditions:
+//    |f| bounded by 1.1*2^26,1.1*2^25,1.1*2^26,1.1*2^25,etc.
+//    |g| bounded by 1.1*2^26,1.1*2^25,1.1*2^26,1.1*2^25,etc.
+//
+// Postconditions:
+//    |h| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+//
+// Notes on implementation strategy:
+//
+// Using schoolbook multiplication.
+// Karatsuba would save a little in some cost models.
+//
+// Most multiplications by 2 and 19 are 32-bit precomputations;
+// cheaper than 64-bit postcomputations.
+//
+// There is one remaining multiplication by 19 in the carry chain;
+// one *19 precomputation can be merged into this,
+// but the resulting data flow is considerably less clean.
+//
+// There are 12 carries below.
+// 10 of them are 2-way parallelizable and vectorizable.
+// Can get away with 11 carries, but then data flow is much deeper.
+//
+// With tighter constraints on inputs, can squeeze carries into int32.
+func FeMul(h, f, g *FieldElement) {
+	f0 := int64(f[0])
+	f1 := int64(f[1])
+	f2 := int64(f[2])
+	f3 := int64(f[3])
+	f4 := int64(f[4])
+	f5 := int64(f[5])
+	f6 := int64(f[6])
+	f7 := int64(f[7])
+	f8 := int64(f[8])
+	f9 := int64(f[9])
+
+	f1_2 := int64(2 * f[1])
+	f3_2 := int64(2 * f[3])
+	f5_2 := int64(2 * f[5])
+	f7_2 := int64(2 * f[7])
+	f9_2 := int64(2 * f[9])
+
+	g0 := int64(g[0])
+	g1 := int64(g[1])
+	g2 := int64(g[2])
+	g3 := int64(g[3])
+	g4 := int64(g[4])
+	g5 := int64(g[5])
+	g6 := int64(g[6])
+	g7 := int64(g[7])
+	g8 := int64(g[8])
+	g9 := int64(g[9])
+
+	g1_19 := int64(19 * g[1]) /* 1.4*2^29 */
+	g2_19 := int64(19 * g[2]) /* 1.4*2^30; still ok */
+	g3_19 := int64(19 * g[3])
+	g4_19 := int64(19 * g[4])
+	g5_19 := int64(19 * g[5])
+	g6_19 := int64(19 * g[6])
+	g7_19 := int64(19 * g[7])
+	g8_19 := int64(19 * g[8])
+	g9_19 := int64(19 * g[9])
+
+	h0 := f0*g0 + f1_2*g9_19 + f2*g8_19 + f3_2*g7_19 + f4*g6_19 + f5_2*g5_19 + f6*g4_19 + f7_2*g3_19 + f8*g2_19 + f9_2*g1_19
+	h1 := f0*g1 + f1*g0 + f2*g9_19 + f3*g8_19 + f4*g7_19 + f5*g6_19 + f6*g5_19 + f7*g4_19 + f8*g3_19 + f9*g2_19
+	h2 := f0*g2 + f1_2*g1 + f2*g0 + f3_2*g9_19 + f4*g8_19 + f5_2*g7_19 + f6*g6_19 + f7_2*g5_19 + f8*g4_19 + f9_2*g3_19
+	h3 := f0*g3 + f1*g2 + f2*g1 + f3*g0 + f4*g9_19 + f5*g8_19 + f6*g7_19 + f7*g6_19 + f8*g5_19 + f9*g4_19
+	h4 := f0*g4 + f1_2*g3 + f2*g2 + f3_2*g1 + f4*g0 + f5_2*g9_19 + f6*g8_19 + f7_2*g7_19 + f8*g6_19 + f9_2*g5_19
+	h5 := f0*g5 + f1*g4 + f2*g3 + f3*g2 + f4*g1 + f5*g0 + f6*g9_19 + f7*g8_19 + f8*g7_19 + f9*g6_19
+	h6 := f0*g6 + f1_2*g5 + f2*g4 + f3_2*g3 + f4*g2 + f5_2*g1 + f6*g0 + f7_2*g9_19 + f8*g8_19 + f9_2*g7_19
+	h7 := f0*g7 + f1*g6 + f2*g5 + f3*g4 + f4*g3 + f5*g2 + f6*g1 + f7*g0 + f8*g9_19 + f9*g8_19
+	h8 := f0*g8 + f1_2*g7 + f2*g6 + f3_2*g5 + f4*g4 + f5_2*g3 + f6*g2 + f7_2*g1 + f8*g0 + f9_2*g9_19
+	h9 := f0*g9 + f1*g8 + f2*g7 + f3*g6 + f4*g5 + f5*g4 + f6*g3 + f7*g2 + f8*g1 + f9*g0
+
+	FeCombine(h, h0, h1, h2, h3, h4, h5, h6, h7, h8, h9)
+}
+
+func feSquare(f *FieldElement) (h0, h1, h2, h3, h4, h5, h6, h7, h8, h9 int64) {
+	f0 := int64(f[0])
+	f1 := int64(f[1])
+	f2 := int64(f[2])
+	f3 := int64(f[3])
+	f4 := int64(f[4])
+	f5 := int64(f[5])
+	f6 := int64(f[6])
+	f7 := int64(f[7])
+	f8 := int64(f[8])
+	f9 := int64(f[9])
+	f0_2 := int64(2 * f[0])
+	f1_2 := int64(2 * f[1])
+	f2_2 := int64(2 * f[2])
+	f3_2 := int64(2 * f[3])
+	f4_2 := int64(2 * f[4])
+	f5_2 := int64(2 * f[5])
+	f6_2 := int64(2 * f[6])
+	f7_2 := int64(2 * f[7])
+	f5_38 := 38 * f5 // 1.31*2^30
+	f6_19 := 19 * f6 // 1.31*2^30
+	f7_38 := 38 * f7 // 1.31*2^30
+	f8_19 := 19 * f8 // 1.31*2^30
+	f9_38 := 38 * f9 // 1.31*2^30
+
+	h0 = f0*f0 + f1_2*f9_38 + f2_2*f8_19 + f3_2*f7_38 + f4_2*f6_19 + f5*f5_38
+	h1 = f0_2*f1 + f2*f9_38 + f3_2*f8_19 + f4*f7_38 + f5_2*f6_19
+	h2 = f0_2*f2 + f1_2*f1 + f3_2*f9_38 + f4_2*f8_19 + f5_2*f7_38 + f6*f6_19
+	h3 = f0_2*f3 + f1_2*f2 + f4*f9_38 + f5_2*f8_19 + f6*f7_38
+	h4 = f0_2*f4 + f1_2*f3_2 + f2*f2 + f5_2*f9_38 + f6_2*f8_19 + f7*f7_38
+	h5 = f0_2*f5 + f1_2*f4 + f2_2*f3 + f6*f9_38 + f7_2*f8_19
+	h6 = f0_2*f6 + f1_2*f5_2 + f2_2*f4 + f3_2*f3 + f7_2*f9_38 + f8*f8_19
+	h7 = f0_2*f7 + f1_2*f6 + f2_2*f5 + f3_2*f4 + f8*f9_38
+	h8 = f0_2*f8 + f1_2*f7_2 + f2_2*f6 + f3_2*f5_2 + f4*f4 + f9*f9_38
+	h9 = f0_2*f9 + f1_2*f8 + f2_2*f7 + f3_2*f6 + f4_2*f5
+
+	return
+}
+
+// FeSquare calculates h = f*f. Can overlap h with f.
+//
+// Preconditions:
+//    |f| bounded by 1.1*2^26,1.1*2^25,1.1*2^26,1.1*2^25,etc.
+//
+// Postconditions:
+//    |h| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+func FeSquare(h, f *FieldElement) {
+	h0, h1, h2, h3, h4, h5, h6, h7, h8, h9 := feSquare(f)
+	FeCombine(h, h0, h1, h2, h3, h4, h5, h6, h7, h8, h9)
+}
+
+// FeSquare2 sets h = 2 * f * f
+//
+// Can overlap h with f.
+//
+// Preconditions:
+//    |f| bounded by 1.65*2^26,1.65*2^25,1.65*2^26,1.65*2^25,etc.
+//
+// Postconditions:
+//    |h| bounded by 1.01*2^25,1.01*2^24,1.01*2^25,1.01*2^24,etc.
+// See fe_mul.c for discussion of implementation strategy.
+func FeSquare2(h, f *FieldElement) {
+	h0, h1, h2, h3, h4, h5, h6, h7, h8, h9 := feSquare(f)
+
+	h0 += h0
+	h1 += h1
+	h2 += h2
+	h3 += h3
+	h4 += h4
+	h5 += h5
+	h6 += h6
+	h7 += h7
+	h8 += h8
+	h9 += h9
+
+	FeCombine(h, h0, h1, h2, h3, h4, h5, h6, h7, h8, h9)
+}
+
+func FeInvert(out, z *FieldElement) {
+	var t0, t1, t2, t3 FieldElement
+	var i int
+
+	FeSquare(&t0, z)        // 2^1
+	FeSquare(&t1, &t0)      // 2^2
+	for i = 1; i < 2; i++ { // 2^3
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t1, z, &t1)      // 2^3 + 2^0
+	FeMul(&t0, &t0, &t1)    // 2^3 + 2^1 + 2^0
+	FeSquare(&t2, &t0)      // 2^4 + 2^2 + 2^1
+	FeMul(&t1, &t1, &t2)    // 2^4 + 2^3 + 2^2 + 2^1 + 2^0
+	FeSquare(&t2, &t1)      // 5,4,3,2,1
+	for i = 1; i < 5; i++ { // 9,8,7,6,5
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t1, &t2, &t1)     // 9,8,7,6,5,4,3,2,1,0
+	FeSquare(&t2, &t1)       // 10..1
+	for i = 1; i < 10; i++ { // 19..10
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t2, &t2, &t1)     // 19..0
+	FeSquare(&t3, &t2)       // 20..1
+	for i = 1; i < 20; i++ { // 39..20
+		FeSquare(&t3, &t3)
+	}
+	FeMul(&t2, &t3, &t2)     // 39..0
+	FeSquare(&t2, &t2)       // 40..1
+	for i = 1; i < 10; i++ { // 49..10
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t1, &t2, &t1)     // 49..0
+	FeSquare(&t2, &t1)       // 50..1
+	for i = 1; i < 50; i++ { // 99..50
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t2, &t2, &t1)      // 99..0
+	FeSquare(&t3, &t2)        // 100..1
+	for i = 1; i < 100; i++ { // 199..100
+		FeSquare(&t3, &t3)
+	}
+	FeMul(&t2, &t3, &t2)     // 199..0
+	FeSquare(&t2, &t2)       // 200..1
+	for i = 1; i < 50; i++ { // 249..50
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t1, &t2, &t1)    // 249..0
+	FeSquare(&t1, &t1)      // 250..1
+	for i = 1; i < 5; i++ { // 254..5
+		FeSquare(&t1, &t1)
+	}
+	FeMul(out, &t1, &t0) // 254..5,3,1,0
+}
+
+func fePow22523(out, z *FieldElement) {
+	var t0, t1, t2 FieldElement
+	var i int
+
+	FeSquare(&t0, z)
+	for i = 1; i < 1; i++ {
+		FeSquare(&t0, &t0)
+	}
+	FeSquare(&t1, &t0)
+	for i = 1; i < 2; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t1, z, &t1)
+	FeMul(&t0, &t0, &t1)
+	FeSquare(&t0, &t0)
+	for i = 1; i < 1; i++ {
+		FeSquare(&t0, &t0)
+	}
+	FeMul(&t0, &t1, &t0)
+	FeSquare(&t1, &t0)
+	for i = 1; i < 5; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t0, &t1, &t0)
+	FeSquare(&t1, &t0)
+	for i = 1; i < 10; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t1, &t1, &t0)
+	FeSquare(&t2, &t1)
+	for i = 1; i < 20; i++ {
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t1, &t2, &t1)
+	FeSquare(&t1, &t1)
+	for i = 1; i < 10; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t0, &t1, &t0)
+	FeSquare(&t1, &t0)
+	for i = 1; i < 50; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t1, &t1, &t0)
+	FeSquare(&t2, &t1)
+	for i = 1; i < 100; i++ {
+		FeSquare(&t2, &t2)
+	}
+	FeMul(&t1, &t2, &t1)
+	FeSquare(&t1, &t1)
+	for i = 1; i < 50; i++ {
+		FeSquare(&t1, &t1)
+	}
+	FeMul(&t0, &t1, &t0)
+	FeSquare(&t0, &t0)
+	for i = 1; i < 2; i++ {
+		FeSquare(&t0, &t0)
+	}
+	FeMul(out, &t0, z)
+}
+
+// Group elements are members of the elliptic curve -x^2 + y^2 = 1 + d * x^2 *
+// y^2 where d = -121665/121666.
+//
+// Several representations are used:
+//   ProjectiveGroupElement: (X:Y:Z) satisfying x=X/Z, y=Y/Z
+//   ExtendedGroupElement: (X:Y:Z:T) satisfying x=X/Z, y=Y/Z, XY=ZT
+//   CompletedGroupElement: ((X:Z),(Y:T)) satisfying x=X/Z, y=Y/T
+//   PreComputedGroupElement: (y+x,y-x,2dxy)
+
+type ProjectiveGroupElement struct {
+	X, Y, Z FieldElement
+}
+
+type ExtendedGroupElement struct {
+	X, Y, Z, T FieldElement
+}
+
+type CompletedGroupElement struct {
+	X, Y, Z, T FieldElement
+}
+
+type PreComputedGroupElement struct {
+	yPlusX, yMinusX, xy2d FieldElement
+}
+
+type CachedGroupElement struct {
+	yPlusX, yMinusX, Z, T2d FieldElement
+}
+
+func (p *ProjectiveGroupElement) Zero() {
+	FeZero(&p.X)
+	FeOne(&p.Y)
+	FeOne(&p.Z)
+}
+
+func (p *ProjectiveGroupElement) Double(r *CompletedGroupElement) {
+	var t0 FieldElement
+
+	FeSquare(&r.X, &p.X)
+	FeSquare(&r.Z, &p.Y)
+	FeSquare2(&r.T, &p.Z)
+	FeAdd(&r.Y, &p.X, &p.Y)
+	FeSquare(&t0, &r.Y)
+	FeAdd(&r.Y, &r.Z, &r.X)
+	FeSub(&r.Z, &r.Z, &r.X)
+	FeSub(&r.X, &t0, &r.Y)
+	FeSub(&r.T, &r.T, &r.Z)
+}
+
+func (p *ProjectiveGroupElement) ToBytes(s *[32]byte) {
+	var recip, x, y FieldElement
+
+	FeInvert(&recip, &p.Z)
+	FeMul(&x, &p.X, &recip)
+	FeMul(&y, &p.Y, &recip)
+	FeToBytes(s, &y)
+	s[31] ^= FeIsNegative(&x) << 7
+}
+
+func (p *ExtendedGroupElement) Zero() {
+	FeZero(&p.X)
+	FeOne(&p.Y)
+	FeOne(&p.Z)
+	FeZero(&p.T)
+}
+
+func (p *ExtendedGroupElement) Double(r *CompletedGroupElement) {
+	var q ProjectiveGroupElement
+	p.ToProjective(&q)
+	q.Double(r)
+}
+
+func (p *ExtendedGroupElement) ToCached(r *CachedGroupElement) {
+	FeAdd(&r.yPlusX, &p.Y, &p.X)
+	FeSub(&r.yMinusX, &p.Y, &p.X)
+	FeCopy(&r.Z, &p.Z)
+	FeMul(&r.T2d, &p.T, &d2)
+}
+
+func (p *ExtendedGroupElement) ToProjective(r *ProjectiveGroupElement) {
+	FeCopy(&r.X, &p.X)
+	FeCopy(&r.Y, &p.Y)
+	FeCopy(&r.Z, &p.Z)
+}
+
+func (p *ExtendedGroupElement) ToBytes(s *[32]byte) {
+	var recip, x, y FieldElement
+
+	FeInvert(&recip, &p.Z)
+	FeMul(&x, &p.X, &recip)
+	FeMul(&y, &p.Y, &recip)
+	FeToBytes(s, &y)
+	s[31] ^= FeIsNegative(&x) << 7
+}
+
+func (p *ExtendedGroupElement) FromBytes(s *[32]byte) bool {
+	var u, v, v3, vxx, check FieldElement
+
+	FeFromBytes(&p.Y, s)
+	FeOne(&p.Z)
+	FeSquare(&u, &p.Y)
+	FeMul(&v, &u, &d)
+	FeSub(&u, &u, &p.Z) // y = y^2-1
+	FeAdd(&v, &v, &p.Z) // v = dy^2+1
+
+	FeSquare(&v3, &v)
+	FeMul(&v3, &v3, &v) // v3 = v^3
+	FeSquare(&p.X, &v3)
+	FeMul(&p.X, &p.X, &v)
+	FeMul(&p.X, &p.X, &u) // x = uv^7
+
+	fePow22523(&p.X, &p.X) // x = (uv^7)^((q-5)/8)
+	FeMul(&p.X, &p.X, &v3)
+	FeMul(&p.X, &p.X, &u) // x = uv^3(uv^7)^((q-5)/8)
+
+	var tmpX, tmp2 [32]byte
+
+	FeSquare(&vxx, &p.X)
+	FeMul(&vxx, &vxx, &v)
+	FeSub(&check, &vxx, &u) // vx^2-u
+	if FeIsNonZero(&check) == 1 {
+		FeAdd(&check, &vxx, &u) // vx^2+u
+		if FeIsNonZero(&check) == 1 {
+			return false
+		}
+		FeMul(&p.X, &p.X, &SqrtM1)
+
+		FeToBytes(&tmpX, &p.X)
+		for i, v := range tmpX {
+			tmp2[31-i] = v
+		}
+	}
+
+	if FeIsNegative(&p.X) != (s[31] >> 7) {
+		FeNeg(&p.X, &p.X)
+	}
+
+	FeMul(&p.T, &p.X, &p.Y)
+	return true
+}
+
+func (p *CompletedGroupElement) ToProjective(r *ProjectiveGroupElement) {
+	FeMul(&r.X, &p.X, &p.T)
+	FeMul(&r.Y, &p.Y, &p.Z)
+	FeMul(&r.Z, &p.Z, &p.T)
+}
+
+func (p *CompletedGroupElement) ToExtended(r *ExtendedGroupElement) {
+	FeMul(&r.X, &p.X, &p.T)
+	FeMul(&r.Y, &p.Y, &p.Z)
+	FeMul(&r.Z, &p.Z, &p.T)
+	FeMul(&r.T, &p.X, &p.Y)
+}
+
+func (p *PreComputedGroupElement) Zero() {
+	FeOne(&p.yPlusX)
+	FeOne(&p.yMinusX)
+	FeZero(&p.xy2d)
+}
+
+func geAdd(r *CompletedGroupElement, p *ExtendedGroupElement, q *CachedGroupElement) {
+	var t0 FieldElement
+
+	FeAdd(&r.X, &p.Y, &p.X)
+	FeSub(&r.Y, &p.Y, &p.X)
+	FeMul(&r.Z, &r.X, &q.yPlusX)
+	FeMul(&r.Y, &r.Y, &q.yMinusX)
+	FeMul(&r.T, &q.T2d, &p.T)
+	FeMul(&r.X, &p.Z, &q.Z)
+	FeAdd(&t0, &r.X, &r.X)
+	FeSub(&r.X, &r.Z, &r.Y)
+	FeAdd(&r.Y, &r.Z, &r.Y)
+	FeAdd(&r.Z, &t0, &r.T)
+	FeSub(&r.T, &t0, &r.T)
+}
+
+func geSub(r *CompletedGroupElement, p *ExtendedGroupElement, q *CachedGroupElement) {
+	var t0 FieldElement
+
+	FeAdd(&r.X, &p.Y, &p.X)
+	FeSub(&r.Y, &p.Y, &p.X)
+	FeMul(&r.Z, &r.X, &q.yMinusX)
+	FeMul(&r.Y, &r.Y, &q.yPlusX)
+	FeMul(&r.T, &q.T2d, &p.T)
+	FeMul(&r.X, &p.Z, &q.Z)
+	FeAdd(&t0, &r.X, &r.X)
+	FeSub(&r.X, &r.Z, &r.Y)
+	FeAdd(&r.Y, &r.Z, &r.Y)
+	FeSub(&r.Z, &t0, &r.T)
+	FeAdd(&r.T, &t0, &r.T)
+}
+
+func geMixedAdd(r *CompletedGroupElement, p *ExtendedGroupElement, q *PreComputedGroupElement) {
+	var t0 FieldElement
+
+	FeAdd(&r.X, &p.Y, &p.X)
+	FeSub(&r.Y, &p.Y, &p.X)
+	FeMul(&r.Z, &r.X, &q.yPlusX)
+	FeMul(&r.Y, &r.Y, &q.yMinusX)
+	FeMul(&r.T, &q.xy2d, &p.T)
+	FeAdd(&t0, &p.Z, &p.Z)
+	FeSub(&r.X, &r.Z, &r.Y)
+	FeAdd(&r.Y, &r.Z, &r.Y)
+	FeAdd(&r.Z, &t0, &r.T)
+	FeSub(&r.T, &t0, &r.T)
+}
+
+func geMixedSub(r *CompletedGroupElement, p *ExtendedGroupElement, q *PreComputedGroupElement) {
+	var t0 FieldElement
+
+	FeAdd(&r.X, &p.Y, &p.X)
+	FeSub(&r.Y, &p.Y, &p.X)
+	FeMul(&r.Z, &r.X, &q.yMinusX)
+	FeMul(&r.Y, &r.Y, &q.yPlusX)
+	FeMul(&r.T, &q.xy2d, &p.T)
+	FeAdd(&t0, &p.Z, &p.Z)
+	FeSub(&r.X, &r.Z, &r.Y)
+	FeAdd(&r.Y, &r.Z, &r.Y)
+	FeSub(&r.Z, &t0, &r.T)
+	FeAdd(&r.T, &t0, &r.T)
+}
+
+func slide(r *[256]int8, a *[32]byte) {
+	for i := range r {
+		r[i] = int8(1 & (a[i>>3] >> uint(i&7)))
+	}
+
+	for i := range r {
+		if r[i] != 0 {
+			for b := 1; b <= 6 && i+b < 256; b++ {
+				if r[i+b] != 0 {
+					if r[i]+(r[i+b]<<uint(b)) <= 15 {
+						r[i] += r[i+b] << uint(b)
+						r[i+b] = 0
+					} else if r[i]-(r[i+b]<<uint(b)) >= -15 {
+						r[i] -= r[i+b] << uint(b)
+						for k := i + b; k < 256; k++ {
+							if r[k] == 0 {
+								r[k] = 1
+								break
+							}
+							r[k] = 0
+						}
+					} else {
+						break
+					}
+				}
+			}
+		}
+	}
+}
+
+// GeDoubleScalarMultVartime sets r = a*A + b*B
+// where a = a[0]+256*a[1]+...+256^31 a[31].
+// and b = b[0]+256*b[1]+...+256^31 b[31].
+// B is the Ed25519 base point (x,4/5) with x positive.
+func GeDoubleScalarMultVartime(r *ProjectiveGroupElement, a *[32]byte, A *ExtendedGroupElement, b *[32]byte) {
+	var aSlide, bSlide [256]int8
+	var Ai [8]CachedGroupElement // A,3A,5A,7A,9A,11A,13A,15A
+	var t CompletedGroupElement
+	var u, A2 ExtendedGroupElement
+	var i int
+
+	slide(&aSlide, a)
+	slide(&bSlide, b)
+
+	A.ToCached(&Ai[0])
+	A.Double(&t)
+	t.ToExtended(&A2)
+
+	for i := 0; i < 7; i++ {
+		geAdd(&t, &A2, &Ai[i])
+		t.ToExtended(&u)
+		u.ToCached(&Ai[i+1])
+	}
+
+	r.Zero()
+
+	for i = 255; i >= 0; i-- {
+		if aSlide[i] != 0 || bSlide[i] != 0 {
+			break
+		}
+	}
+
+	for ; i >= 0; i-- {
+		r.Double(&t)
+
+		if aSlide[i] > 0 {
+			t.ToExtended(&u)
+			geAdd(&t, &u, &Ai[aSlide[i]/2])
+		} else if aSlide[i] < 0 {
+			t.ToExtended(&u)
+			geSub(&t, &u, &Ai[(-aSlide[i])/2])
+		}
+
+		if bSlide[i] > 0 {
+			t.ToExtended(&u)
+			geMixedAdd(&t, &u, &bi[bSlide[i]/2])
+		} else if bSlide[i] < 0 {
+			t.ToExtended(&u)
+			geMixedSub(&t, &u, &bi[(-bSlide[i])/2])
+		}
+
+		t.ToProjective(r)
+	}
+}
+
+// equal returns 1 if b == c and 0 otherwise, assuming that b and c are
+// non-negative.
+func equal(b, c int32) int32 {
+	x := uint32(b ^ c)
+	x--
+	return int32(x >> 31)
+}
+
+// negative returns 1 if b < 0 and 0 otherwise.
+func negative(b int32) int32 {
+	return (b >> 31) & 1
+}
+
+func PreComputedGroupElementCMove(t, u *PreComputedGroupElement, b int32) {
+	FeCMove(&t.yPlusX, &u.yPlusX, b)
+	FeCMove(&t.yMinusX, &u.yMinusX, b)
+	FeCMove(&t.xy2d, &u.xy2d, b)
+}
+
+func selectPoint(t *PreComputedGroupElement, pos int32, b int32) {
+	var minusT PreComputedGroupElement
+	bNegative := negative(b)
+	bAbs := b - (((-bNegative) & b) << 1)
+
+	t.Zero()
+	for i := int32(0); i < 8; i++ {
+		PreComputedGroupElementCMove(t, &base[pos][i], equal(bAbs, i+1))
+	}
+	FeCopy(&minusT.yPlusX, &t.yMinusX)
+	FeCopy(&minusT.yMinusX, &t.yPlusX)
+	FeNeg(&minusT.xy2d, &t.xy2d)
+	PreComputedGroupElementCMove(t, &minusT, bNegative)
+}
+
+// GeScalarMultBase computes h = a*B, where
+//   a = a[0]+256*a[1]+...+256^31 a[31]
+//   B is the Ed25519 base point (x,4/5) with x positive.
+//
+// Preconditions:
+//   a[31] <= 127
+func GeScalarMultBase(h *ExtendedGroupElement, a *[32]byte) {
+	var e [64]int8
+
+	for i, v := range a {
+		e[2*i] = int8(v & 15)
+		e[2*i+1] = int8((v >> 4) & 15)
+	}
+
+	// each e[i] is between 0 and 15 and e[63] is between 0 and 7.
+
+	carry := int8(0)
+	for i := 0; i < 63; i++ {
+		e[i] += carry
+		carry = (e[i] + 8) >> 4
+		e[i] -= carry << 4
+	}
+	e[63] += carry
+	// each e[i] is between -8 and 8.
+
+	h.Zero()
+	var t PreComputedGroupElement
+	var r CompletedGroupElement
+	for i := int32(1); i < 64; i += 2 {
+		selectPoint(&t, i/2, int32(e[i]))
+		geMixedAdd(&r, h, &t)
+		r.ToExtended(h)
+	}
+
+	var s ProjectiveGroupElement
+
+	h.Double(&r)
+	r.ToProjective(&s)
+	s.Double(&r)
+	r.ToProjective(&s)
+	s.Double(&r)
+	r.ToProjective(&s)
+	s.Double(&r)
+	r.ToExtended(h)
+
+	for i := int32(0); i < 64; i += 2 {
+		selectPoint(&t, i/2, int32(e[i]))
+		geMixedAdd(&r, h, &t)
+		r.ToExtended(h)
+	}
+}
+
+// The scalars are GF(2^252 + 27742317777372353535851937790883648493).
+
+// Input:
+//   a[0]+256*a[1]+...+256^31*a[31] = a
+//   b[0]+256*b[1]+...+256^31*b[31] = b
+//   c[0]+256*c[1]+...+256^31*c[31] = c
+//
+// Output:
+//   s[0]+256*s[1]+...+256^31*s[31] = (ab+c) mod l
+//   where l = 2^252 + 27742317777372353535851937790883648493.
+func ScMulAdd(s, a, b, c *[32]byte) {
+	a0 := 2097151 & load3(a[:])
+	a1 := 2097151 & (load4(a[2:]) >> 5)
+	a2 := 2097151 & (load3(a[5:]) >> 2)
+	a3 := 2097151 & (load4(a[7:]) >> 7)
+	a4 := 2097151 & (load4(a[10:]) >> 4)
+	a5 := 2097151 & (load3(a[13:]) >> 1)
+	a6 := 2097151 & (load4(a[15:]) >> 6)
+	a7 := 2097151 & (load3(a[18:]) >> 3)
+	a8 := 2097151 & load3(a[21:])
+	a9 := 2097151 & (load4(a[23:]) >> 5)
+	a10 := 2097151 & (load3(a[26:]) >> 2)
+	a11 := (load4(a[28:]) >> 7)
+	b0 := 2097151 & load3(b[:])
+	b1 := 2097151 & (load4(b[2:]) >> 5)
+	b2 := 2097151 & (load3(b[5:]) >> 2)
+	b3 := 2097151 & (load4(b[7:]) >> 7)
+	b4 := 2097151 & (load4(b[10:]) >> 4)
+	b5 := 2097151 & (load3(b[13:]) >> 1)
+	b6 := 2097151 & (load4(b[15:]) >> 6)
+	b7 := 2097151 & (load3(b[18:]) >> 3)
+	b8 := 2097151 & load3(b[21:])
+	b9 := 2097151 & (load4(b[23:]) >> 5)
+	b10 := 2097151 & (load3(b[26:]) >> 2)
+	b11 := (load4(b[28:]) >> 7)
+	c0 := 2097151 & load3(c[:])
+	c1 := 2097151 & (load4(c[2:]) >> 5)
+	c2 := 2097151 & (load3(c[5:]) >> 2)
+	c3 := 2097151 & (load4(c[7:]) >> 7)
+	c4 := 2097151 & (load4(c[10:]) >> 4)
+	c5 := 2097151 & (load3(c[13:]) >> 1)
+	c6 := 2097151 & (load4(c[15:]) >> 6)
+	c7 := 2097151 & (load3(c[18:]) >> 3)
+	c8 := 2097151 & load3(c[21:])
+	c9 := 2097151 & (load4(c[23:]) >> 5)
+	c10 := 2097151 & (load3(c[26:]) >> 2)
+	c11 := (load4(c[28:]) >> 7)
+	var carry [23]int64
+
+	s0 := c0 + a0*b0
+	s1 := c1 + a0*b1 + a1*b0
+	s2 := c2 + a0*b2 + a1*b1 + a2*b0
+	s3 := c3 + a0*b3 + a1*b2 + a2*b1 + a3*b0
+	s4 := c4 + a0*b4 + a1*b3 + a2*b2 + a3*b1 + a4*b0
+	s5 := c5 + a0*b5 + a1*b4 + a2*b3 + a3*b2 + a4*b1 + a5*b0
+	s6 := c6 + a0*b6 + a1*b5 + a2*b4 + a3*b3 + a4*b2 + a5*b1 + a6*b0
+	s7 := c7 + a0*b7 + a1*b6 + a2*b5 + a3*b4 + a4*b3 + a5*b2 + a6*b1 + a7*b0
+	s8 := c8 + a0*b8 + a1*b7 + a2*b6 + a3*b5 + a4*b4 + a5*b3 + a6*b2 + a7*b1 + a8*b0
+	s9 := c9 + a0*b9 + a1*b8 + a2*b7 + a3*b6 + a4*b5 + a5*b4 + a6*b3 + a7*b2 + a8*b1 + a9*b0
+	s10 := c10 + a0*b10 + a1*b9 + a2*b8 + a3*b7 + a4*b6 + a5*b5 + a6*b4 + a7*b3 + a8*b2 + a9*b1 + a10*b0
+	s11 := c11 + a0*b11 + a1*b10 + a2*b9 + a3*b8 + a4*b7 + a5*b6 + a6*b5 + a7*b4 + a8*b3 + a9*b2 + a10*b1 + a11*b0
+	s12 := a1*b11 + a2*b10 + a3*b9 + a4*b8 + a5*b7 + a6*b6 + a7*b5 + a8*b4 + a9*b3 + a10*b2 + a11*b1
+	s13 := a2*b11 + a3*b10 + a4*b9 + a5*b8 + a6*b7 + a7*b6 + a8*b5 + a9*b4 + a10*b3 + a11*b2
+	s14 := a3*b11 + a4*b10 + a5*b9 + a6*b8 + a7*b7 + a8*b6 + a9*b5 + a10*b4 + a11*b3
+	s15 := a4*b11 + a5*b10 + a6*b9 + a7*b8 + a8*b7 + a9*b6 + a10*b5 + a11*b4
+	s16 := a5*b11 + a6*b10 + a7*b9 + a8*b8 + a9*b7 + a10*b6 + a11*b5
+	s17 := a6*b11 + a7*b10 + a8*b9 + a9*b8 + a10*b7 + a11*b6
+	s18 := a7*b11 + a8*b10 + a9*b9 + a10*b8 + a11*b7
+	s19 := a8*b11 + a9*b10 + a10*b9 + a11*b8
+	s20 := a9*b11 + a10*b10 + a11*b9
+	s21 := a10*b11 + a11*b10
+	s22 := a11 * b11
+	s23 := int64(0)
+
+	carry[0] = (s0 + (1 << 20)) >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[2] = (s2 + (1 << 20)) >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[4] = (s4 + (1 << 20)) >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[6] = (s6 + (1 << 20)) >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[8] = (s8 + (1 << 20)) >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[10] = (s10 + (1 << 20)) >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+	carry[12] = (s12 + (1 << 20)) >> 21
+	s13 += carry[12]
+	s12 -= carry[12] << 21
+	carry[14] = (s14 + (1 << 20)) >> 21
+	s15 += carry[14]
+	s14 -= carry[14] << 21
+	carry[16] = (s16 + (1 << 20)) >> 21
+	s17 += carry[16]
+	s16 -= carry[16] << 21
+	carry[18] = (s18 + (1 << 20)) >> 21
+	s19 += carry[18]
+	s18 -= carry[18] << 21
+	carry[20] = (s20 + (1 << 20)) >> 21
+	s21 += carry[20]
+	s20 -= carry[20] << 21
+	carry[22] = (s22 + (1 << 20)) >> 21
+	s23 += carry[22]
+	s22 -= carry[22] << 21
+
+	carry[1] = (s1 + (1 << 20)) >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[3] = (s3 + (1 << 20)) >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[5] = (s5 + (1 << 20)) >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[7] = (s7 + (1 << 20)) >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[9] = (s9 + (1 << 20)) >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[11] = (s11 + (1 << 20)) >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+	carry[13] = (s13 + (1 << 20)) >> 21
+	s14 += carry[13]
+	s13 -= carry[13] << 21
+	carry[15] = (s15 + (1 << 20)) >> 21
+	s16 += carry[15]
+	s15 -= carry[15] << 21
+	carry[17] = (s17 + (1 << 20)) >> 21
+	s18 += carry[17]
+	s17 -= carry[17] << 21
+	carry[19] = (s19 + (1 << 20)) >> 21
+	s20 += carry[19]
+	s19 -= carry[19] << 21
+	carry[21] = (s21 + (1 << 20)) >> 21
+	s22 += carry[21]
+	s21 -= carry[21] << 21
+
+	s11 += s23 * 666643
+	s12 += s23 * 470296
+	s13 += s23 * 654183
+	s14 -= s23 * 997805
+	s15 += s23 * 136657
+	s16 -= s23 * 683901
+	s23 = 0
+
+	s10 += s22 * 666643
+	s11 += s22 * 470296
+	s12 += s22 * 654183
+	s13 -= s22 * 997805
+	s14 += s22 * 136657
+	s15 -= s22 * 683901
+	s22 = 0
+
+	s9 += s21 * 666643
+	s10 += s21 * 470296
+	s11 += s21 * 654183
+	s12 -= s21 * 997805
+	s13 += s21 * 136657
+	s14 -= s21 * 683901
+	s21 = 0
+
+	s8 += s20 * 666643
+	s9 += s20 * 470296
+	s10 += s20 * 654183
+	s11 -= s20 * 997805
+	s12 += s20 * 136657
+	s13 -= s20 * 683901
+	s20 = 0
+
+	s7 += s19 * 666643
+	s8 += s19 * 470296
+	s9 += s19 * 654183
+	s10 -= s19 * 997805
+	s11 += s19 * 136657
+	s12 -= s19 * 683901
+	s19 = 0
+
+	s6 += s18 * 666643
+	s7 += s18 * 470296
+	s8 += s18 * 654183
+	s9 -= s18 * 997805
+	s10 += s18 * 136657
+	s11 -= s18 * 683901
+	s18 = 0
+
+	carry[6] = (s6 + (1 << 20)) >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[8] = (s8 + (1 << 20)) >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[10] = (s10 + (1 << 20)) >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+	carry[12] = (s12 + (1 << 20)) >> 21
+	s13 += carry[12]
+	s12 -= carry[12] << 21
+	carry[14] = (s14 + (1 << 20)) >> 21
+	s15 += carry[14]
+	s14 -= carry[14] << 21
+	carry[16] = (s16 + (1 << 20)) >> 21
+	s17 += carry[16]
+	s16 -= carry[16] << 21
+
+	carry[7] = (s7 + (1 << 20)) >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[9] = (s9 + (1 << 20)) >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[11] = (s11 + (1 << 20)) >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+	carry[13] = (s13 + (1 << 20)) >> 21
+	s14 += carry[13]
+	s13 -= carry[13] << 21
+	carry[15] = (s15 + (1 << 20)) >> 21
+	s16 += carry[15]
+	s15 -= carry[15] << 21
+
+	s5 += s17 * 666643
+	s6 += s17 * 470296
+	s7 += s17 * 654183
+	s8 -= s17 * 997805
+	s9 += s17 * 136657
+	s10 -= s17 * 683901
+	s17 = 0
+
+	s4 += s16 * 666643
+	s5 += s16 * 470296
+	s6 += s16 * 654183
+	s7 -= s16 * 997805
+	s8 += s16 * 136657
+	s9 -= s16 * 683901
+	s16 = 0
+
+	s3 += s15 * 666643
+	s4 += s15 * 470296
+	s5 += s15 * 654183
+	s6 -= s15 * 997805
+	s7 += s15 * 136657
+	s8 -= s15 * 683901
+	s15 = 0
+
+	s2 += s14 * 666643
+	s3 += s14 * 470296
+	s4 += s14 * 654183
+	s5 -= s14 * 997805
+	s6 += s14 * 136657
+	s7 -= s14 * 683901
+	s14 = 0
+
+	s1 += s13 * 666643
+	s2 += s13 * 470296
+	s3 += s13 * 654183
+	s4 -= s13 * 997805
+	s5 += s13 * 136657
+	s6 -= s13 * 683901
+	s13 = 0
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = (s0 + (1 << 20)) >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[2] = (s2 + (1 << 20)) >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[4] = (s4 + (1 << 20)) >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[6] = (s6 + (1 << 20)) >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[8] = (s8 + (1 << 20)) >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[10] = (s10 + (1 << 20)) >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+
+	carry[1] = (s1 + (1 << 20)) >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[3] = (s3 + (1 << 20)) >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[5] = (s5 + (1 << 20)) >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[7] = (s7 + (1 << 20)) >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[9] = (s9 + (1 << 20)) >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[11] = (s11 + (1 << 20)) >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = s0 >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[1] = s1 >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[2] = s2 >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[3] = s3 >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[4] = s4 >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[5] = s5 >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[6] = s6 >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[7] = s7 >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[8] = s8 >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[9] = s9 >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[10] = s10 >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+	carry[11] = s11 >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = s0 >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[1] = s1 >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[2] = s2 >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[3] = s3 >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[4] = s4 >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[5] = s5 >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[6] = s6 >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[7] = s7 >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[8] = s8 >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[9] = s9 >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[10] = s10 >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+
+	s[0] = byte(s0 >> 0)
+	s[1] = byte(s0 >> 8)
+	s[2] = byte((s0 >> 16) | (s1 << 5))
+	s[3] = byte(s1 >> 3)
+	s[4] = byte(s1 >> 11)
+	s[5] = byte((s1 >> 19) | (s2 << 2))
+	s[6] = byte(s2 >> 6)
+	s[7] = byte((s2 >> 14) | (s3 << 7))
+	s[8] = byte(s3 >> 1)
+	s[9] = byte(s3 >> 9)
+	s[10] = byte((s3 >> 17) | (s4 << 4))
+	s[11] = byte(s4 >> 4)
+	s[12] = byte(s4 >> 12)
+	s[13] = byte((s4 >> 20) | (s5 << 1))
+	s[14] = byte(s5 >> 7)
+	s[15] = byte((s5 >> 15) | (s6 << 6))
+	s[16] = byte(s6 >> 2)
+	s[17] = byte(s6 >> 10)
+	s[18] = byte((s6 >> 18) | (s7 << 3))
+	s[19] = byte(s7 >> 5)
+	s[20] = byte(s7 >> 13)
+	s[21] = byte(s8 >> 0)
+	s[22] = byte(s8 >> 8)
+	s[23] = byte((s8 >> 16) | (s9 << 5))
+	s[24] = byte(s9 >> 3)
+	s[25] = byte(s9 >> 11)
+	s[26] = byte((s9 >> 19) | (s10 << 2))
+	s[27] = byte(s10 >> 6)
+	s[28] = byte((s10 >> 14) | (s11 << 7))
+	s[29] = byte(s11 >> 1)
+	s[30] = byte(s11 >> 9)
+	s[31] = byte(s11 >> 17)
+}
+
+// Input:
+//   s[0]+256*s[1]+...+256^63*s[63] = s
+//
+// Output:
+//   s[0]+256*s[1]+...+256^31*s[31] = s mod l
+//   where l = 2^252 + 27742317777372353535851937790883648493.
+func ScReduce(out *[32]byte, s *[64]byte) {
+	s0 := 2097151 & load3(s[:])
+	s1 := 2097151 & (load4(s[2:]) >> 5)
+	s2 := 2097151 & (load3(s[5:]) >> 2)
+	s3 := 2097151 & (load4(s[7:]) >> 7)
+	s4 := 2097151 & (load4(s[10:]) >> 4)
+	s5 := 2097151 & (load3(s[13:]) >> 1)
+	s6 := 2097151 & (load4(s[15:]) >> 6)
+	s7 := 2097151 & (load3(s[18:]) >> 3)
+	s8 := 2097151 & load3(s[21:])
+	s9 := 2097151 & (load4(s[23:]) >> 5)
+	s10 := 2097151 & (load3(s[26:]) >> 2)
+	s11 := 2097151 & (load4(s[28:]) >> 7)
+	s12 := 2097151 & (load4(s[31:]) >> 4)
+	s13 := 2097151 & (load3(s[34:]) >> 1)
+	s14 := 2097151 & (load4(s[36:]) >> 6)
+	s15 := 2097151 & (load3(s[39:]) >> 3)
+	s16 := 2097151 & load3(s[42:])
+	s17 := 2097151 & (load4(s[44:]) >> 5)
+	s18 := 2097151 & (load3(s[47:]) >> 2)
+	s19 := 2097151 & (load4(s[49:]) >> 7)
+	s20 := 2097151 & (load4(s[52:]) >> 4)
+	s21 := 2097151 & (load3(s[55:]) >> 1)
+	s22 := 2097151 & (load4(s[57:]) >> 6)
+	s23 := (load4(s[60:]) >> 3)
+
+	s11 += s23 * 666643
+	s12 += s23 * 470296
+	s13 += s23 * 654183
+	s14 -= s23 * 997805
+	s15 += s23 * 136657
+	s16 -= s23 * 683901
+	s23 = 0
+
+	s10 += s22 * 666643
+	s11 += s22 * 470296
+	s12 += s22 * 654183
+	s13 -= s22 * 997805
+	s14 += s22 * 136657
+	s15 -= s22 * 683901
+	s22 = 0
+
+	s9 += s21 * 666643
+	s10 += s21 * 470296
+	s11 += s21 * 654183
+	s12 -= s21 * 997805
+	s13 += s21 * 136657
+	s14 -= s21 * 683901
+	s21 = 0
+
+	s8 += s20 * 666643
+	s9 += s20 * 470296
+	s10 += s20 * 654183
+	s11 -= s20 * 997805
+	s12 += s20 * 136657
+	s13 -= s20 * 683901
+	s20 = 0
+
+	s7 += s19 * 666643
+	s8 += s19 * 470296
+	s9 += s19 * 654183
+	s10 -= s19 * 997805
+	s11 += s19 * 136657
+	s12 -= s19 * 683901
+	s19 = 0
+
+	s6 += s18 * 666643
+	s7 += s18 * 470296
+	s8 += s18 * 654183
+	s9 -= s18 * 997805
+	s10 += s18 * 136657
+	s11 -= s18 * 683901
+	s18 = 0
+
+	var carry [17]int64
+
+	carry[6] = (s6 + (1 << 20)) >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[8] = (s8 + (1 << 20)) >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[10] = (s10 + (1 << 20)) >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+	carry[12] = (s12 + (1 << 20)) >> 21
+	s13 += carry[12]
+	s12 -= carry[12] << 21
+	carry[14] = (s14 + (1 << 20)) >> 21
+	s15 += carry[14]
+	s14 -= carry[14] << 21
+	carry[16] = (s16 + (1 << 20)) >> 21
+	s17 += carry[16]
+	s16 -= carry[16] << 21
+
+	carry[7] = (s7 + (1 << 20)) >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[9] = (s9 + (1 << 20)) >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[11] = (s11 + (1 << 20)) >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+	carry[13] = (s13 + (1 << 20)) >> 21
+	s14 += carry[13]
+	s13 -= carry[13] << 21
+	carry[15] = (s15 + (1 << 20)) >> 21
+	s16 += carry[15]
+	s15 -= carry[15] << 21
+
+	s5 += s17 * 666643
+	s6 += s17 * 470296
+	s7 += s17 * 654183
+	s8 -= s17 * 997805
+	s9 += s17 * 136657
+	s10 -= s17 * 683901
+	s17 = 0
+
+	s4 += s16 * 666643
+	s5 += s16 * 470296
+	s6 += s16 * 654183
+	s7 -= s16 * 997805
+	s8 += s16 * 136657
+	s9 -= s16 * 683901
+	s16 = 0
+
+	s3 += s15 * 666643
+	s4 += s15 * 470296
+	s5 += s15 * 654183
+	s6 -= s15 * 997805
+	s7 += s15 * 136657
+	s8 -= s15 * 683901
+	s15 = 0
+
+	s2 += s14 * 666643
+	s3 += s14 * 470296
+	s4 += s14 * 654183
+	s5 -= s14 * 997805
+	s6 += s14 * 136657
+	s7 -= s14 * 683901
+	s14 = 0
+
+	s1 += s13 * 666643
+	s2 += s13 * 470296
+	s3 += s13 * 654183
+	s4 -= s13 * 997805
+	s5 += s13 * 136657
+	s6 -= s13 * 683901
+	s13 = 0
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = (s0 + (1 << 20)) >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[2] = (s2 + (1 << 20)) >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[4] = (s4 + (1 << 20)) >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[6] = (s6 + (1 << 20)) >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[8] = (s8 + (1 << 20)) >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[10] = (s10 + (1 << 20)) >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+
+	carry[1] = (s1 + (1 << 20)) >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[3] = (s3 + (1 << 20)) >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[5] = (s5 + (1 << 20)) >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[7] = (s7 + (1 << 20)) >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[9] = (s9 + (1 << 20)) >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[11] = (s11 + (1 << 20)) >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = s0 >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[1] = s1 >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[2] = s2 >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[3] = s3 >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[4] = s4 >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[5] = s5 >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[6] = s6 >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[7] = s7 >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[8] = s8 >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[9] = s9 >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[10] = s10 >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+	carry[11] = s11 >> 21
+	s12 += carry[11]
+	s11 -= carry[11] << 21
+
+	s0 += s12 * 666643
+	s1 += s12 * 470296
+	s2 += s12 * 654183
+	s3 -= s12 * 997805
+	s4 += s12 * 136657
+	s5 -= s12 * 683901
+	s12 = 0
+
+	carry[0] = s0 >> 21
+	s1 += carry[0]
+	s0 -= carry[0] << 21
+	carry[1] = s1 >> 21
+	s2 += carry[1]
+	s1 -= carry[1] << 21
+	carry[2] = s2 >> 21
+	s3 += carry[2]
+	s2 -= carry[2] << 21
+	carry[3] = s3 >> 21
+	s4 += carry[3]
+	s3 -= carry[3] << 21
+	carry[4] = s4 >> 21
+	s5 += carry[4]
+	s4 -= carry[4] << 21
+	carry[5] = s5 >> 21
+	s6 += carry[5]
+	s5 -= carry[5] << 21
+	carry[6] = s6 >> 21
+	s7 += carry[6]
+	s6 -= carry[6] << 21
+	carry[7] = s7 >> 21
+	s8 += carry[7]
+	s7 -= carry[7] << 21
+	carry[8] = s8 >> 21
+	s9 += carry[8]
+	s8 -= carry[8] << 21
+	carry[9] = s9 >> 21
+	s10 += carry[9]
+	s9 -= carry[9] << 21
+	carry[10] = s10 >> 21
+	s11 += carry[10]
+	s10 -= carry[10] << 21
+
+	out[0] = byte(s0 >> 0)
+	out[1] = byte(s0 >> 8)
+	out[2] = byte((s0 >> 16) | (s1 << 5))
+	out[3] = byte(s1 >> 3)
+	out[4] = byte(s1 >> 11)
+	out[5] = byte((s1 >> 19) | (s2 << 2))
+	out[6] = byte(s2 >> 6)
+	out[7] = byte((s2 >> 14) | (s3 << 7))
+	out[8] = byte(s3 >> 1)
+	out[9] = byte(s3 >> 9)
+	out[10] = byte((s3 >> 17) | (s4 << 4))
+	out[11] = byte(s4 >> 4)
+	out[12] = byte(s4 >> 12)
+	out[13] = byte((s4 >> 20) | (s5 << 1))
+	out[14] = byte(s5 >> 7)
+	out[15] = byte((s5 >> 15) | (s6 << 6))
+	out[16] = byte(s6 >> 2)
+	out[17] = byte(s6 >> 10)
+	out[18] = byte((s6 >> 18) | (s7 << 3))
+	out[19] = byte(s7 >> 5)
+	out[20] = byte(s7 >> 13)
+	out[21] = byte(s8 >> 0)
+	out[22] = byte(s8 >> 8)
+	out[23] = byte((s8 >> 16) | (s9 << 5))
+	out[24] = byte(s9 >> 3)
+	out[25] = byte(s9 >> 11)
+	out[26] = byte((s9 >> 19) | (s10 << 2))
+	out[27] = byte(s10 >> 6)
+	out[28] = byte((s10 >> 14) | (s11 << 7))
+	out[29] = byte(s11 >> 1)
+	out[30] = byte(s11 >> 9)
+	out[31] = byte(s11 >> 17)
+}
+
+// order is the order of Curve25519 in little-endian form.
+var order = [4]uint64{0x5812631a5cf5d3ed, 0x14def9dea2f79cd6, 0, 0x1000000000000000}
+
+// ScMinimal returns true if the given scalar is less than the order of the
+// curve.
+func ScMinimal(scalar *[32]byte) bool {
+	for i := 3; ; i-- {
+		v := binary.LittleEndian.Uint64(scalar[i*8:])
+		if v > order[i] {
+			return false
+		} else if v < order[i] {
+			break
+		} else if i == 0 {
+			return false
+		}
+	}
+
+	return true
+}
diff --git a/vendor/golang.org/x/net/bpf/asm.go b/vendor/golang.org/x/net/bpf/asm.go
new file mode 100644
index 0000000000..15e21b1812
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/asm.go
@@ -0,0 +1,41 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+import "fmt"
+
+// Assemble converts insts into raw instructions suitable for loading
+// into a BPF virtual machine.
+//
+// Currently, no optimization is attempted, the assembled program flow
+// is exactly as provided.
+func Assemble(insts []Instruction) ([]RawInstruction, error) {
+	ret := make([]RawInstruction, len(insts))
+	var err error
+	for i, inst := range insts {
+		ret[i], err = inst.Assemble()
+		if err != nil {
+			return nil, fmt.Errorf("assembling instruction %d: %s", i+1, err)
+		}
+	}
+	return ret, nil
+}
+
+// Disassemble attempts to parse raw back into
+// Instructions. Unrecognized RawInstructions are assumed to be an
+// extension not implemented by this package, and are passed through
+// unchanged to the output. The allDecoded value reports whether insts
+// contains no RawInstructions.
+func Disassemble(raw []RawInstruction) (insts []Instruction, allDecoded bool) {
+	insts = make([]Instruction, len(raw))
+	allDecoded = true
+	for i, r := range raw {
+		insts[i] = r.Disassemble()
+		if _, ok := insts[i].(RawInstruction); ok {
+			allDecoded = false
+		}
+	}
+	return insts, allDecoded
+}
diff --git a/vendor/golang.org/x/net/bpf/constants.go b/vendor/golang.org/x/net/bpf/constants.go
new file mode 100644
index 0000000000..b89ca35239
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/constants.go
@@ -0,0 +1,218 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+// A Register is a register of the BPF virtual machine.
+type Register uint16
+
+const (
+	// RegA is the accumulator register. RegA is always the
+	// destination register of ALU operations.
+	RegA Register = iota
+	// RegX is the indirection register, used by LoadIndirect
+	// operations.
+	RegX
+)
+
+// An ALUOp is an arithmetic or logic operation.
+type ALUOp uint16
+
+// ALU binary operation types.
+const (
+	ALUOpAdd ALUOp = iota << 4
+	ALUOpSub
+	ALUOpMul
+	ALUOpDiv
+	ALUOpOr
+	ALUOpAnd
+	ALUOpShiftLeft
+	ALUOpShiftRight
+	aluOpNeg // Not exported because it's the only unary ALU operation, and gets its own instruction type.
+	ALUOpMod
+	ALUOpXor
+)
+
+// A JumpTest is a comparison operator used in conditional jumps.
+type JumpTest uint16
+
+// Supported operators for conditional jumps.
+const (
+	// K == A
+	JumpEqual JumpTest = iota
+	// K != A
+	JumpNotEqual
+	// K > A
+	JumpGreaterThan
+	// K < A
+	JumpLessThan
+	// K >= A
+	JumpGreaterOrEqual
+	// K <= A
+	JumpLessOrEqual
+	// K & A != 0
+	JumpBitsSet
+	// K & A == 0
+	JumpBitsNotSet
+)
+
+// An Extension is a function call provided by the kernel that
+// performs advanced operations that are expensive or impossible
+// within the BPF virtual machine.
+//
+// Extensions are only implemented by the Linux kernel.
+//
+// TODO: should we prune this list? Some of these extensions seem
+// either broken or near-impossible to use correctly, whereas other
+// (len, random, ifindex) are quite useful.
+type Extension int
+
+// Extension functions available in the Linux kernel.
+const (
+	// extOffset is the negative maximum number of instructions used
+	// to load instructions by overloading the K argument.
+	extOffset = -0x1000
+	// ExtLen returns the length of the packet.
+	ExtLen Extension = 1
+	// ExtProto returns the packet's L3 protocol type.
+	ExtProto Extension = 0
+	// ExtType returns the packet's type (skb->pkt_type in the kernel)
+	//
+	// TODO: better documentation. How nice an API do we want to
+	// provide for these esoteric extensions?
+	ExtType Extension = 4
+	// ExtPayloadOffset returns the offset of the packet payload, or
+	// the first protocol header that the kernel does not know how to
+	// parse.
+	ExtPayloadOffset Extension = 52
+	// ExtInterfaceIndex returns the index of the interface on which
+	// the packet was received.
+	ExtInterfaceIndex Extension = 8
+	// ExtNetlinkAttr returns the netlink attribute of type X at
+	// offset A.
+	ExtNetlinkAttr Extension = 12
+	// ExtNetlinkAttrNested returns the nested netlink attribute of
+	// type X at offset A.
+	ExtNetlinkAttrNested Extension = 16
+	// ExtMark returns the packet's mark value.
+	ExtMark Extension = 20
+	// ExtQueue returns the packet's assigned hardware queue.
+	ExtQueue Extension = 24
+	// ExtLinkLayerType returns the packet's hardware address type
+	// (e.g. Ethernet, Infiniband).
+	ExtLinkLayerType Extension = 28
+	// ExtRXHash returns the packets receive hash.
+	//
+	// TODO: figure out what this rxhash actually is.
+	ExtRXHash Extension = 32
+	// ExtCPUID returns the ID of the CPU processing the current
+	// packet.
+	ExtCPUID Extension = 36
+	// ExtVLANTag returns the packet's VLAN tag.
+	ExtVLANTag Extension = 44
+	// ExtVLANTagPresent returns non-zero if the packet has a VLAN
+	// tag.
+	//
+	// TODO: I think this might be a lie: it reads bit 0x1000 of the
+	// VLAN header, which changed meaning in recent revisions of the
+	// spec - this extension may now return meaningless information.
+	ExtVLANTagPresent Extension = 48
+	// ExtVLANProto returns 0x8100 if the frame has a VLAN header,
+	// 0x88a8 if the frame has a "Q-in-Q" double VLAN header, or some
+	// other value if no VLAN information is present.
+	ExtVLANProto Extension = 60
+	// ExtRand returns a uniformly random uint32.
+	ExtRand Extension = 56
+)
+
+// The following gives names to various bit patterns used in opcode construction.
+
+const (
+	opMaskCls uint16 = 0x7
+	// opClsLoad masks
+	opMaskLoadDest  = 0x01
+	opMaskLoadWidth = 0x18
+	opMaskLoadMode  = 0xe0
+	// opClsALU
+	opMaskOperandSrc = 0x08
+	opMaskOperator   = 0xf0
+	// opClsJump
+	opMaskJumpConst = 0x0f
+	opMaskJumpCond  = 0xf0
+)
+
+const (
+	// +---------------+-----------------+---+---+---+
+	// | AddrMode (3b) | LoadWidth (2b)  | 0 | 0 | 0 |
+	// +---------------+-----------------+---+---+---+
+	opClsLoadA uint16 = iota
+	// +---------------+-----------------+---+---+---+
+	// | AddrMode (3b) | LoadWidth (2b)  | 0 | 0 | 1 |
+	// +---------------+-----------------+---+---+---+
+	opClsLoadX
+	// +---+---+---+---+---+---+---+---+
+	// | 0 | 0 | 0 | 0 | 0 | 0 | 1 | 0 |
+	// +---+---+---+---+---+---+---+---+
+	opClsStoreA
+	// +---+---+---+---+---+---+---+---+
+	// | 0 | 0 | 0 | 0 | 0 | 0 | 1 | 1 |
+	// +---+---+---+---+---+---+---+---+
+	opClsStoreX
+	// +---------------+-----------------+---+---+---+
+	// | Operator (4b) | OperandSrc (1b) | 1 | 0 | 0 |
+	// +---------------+-----------------+---+---+---+
+	opClsALU
+	// +-----------------------------+---+---+---+---+
+	// |      TestOperator (4b)      | 0 | 1 | 0 | 1 |
+	// +-----------------------------+---+---+---+---+
+	opClsJump
+	// +---+-------------------------+---+---+---+---+
+	// | 0 | 0 | 0 |   RetSrc (1b)   | 0 | 1 | 1 | 0 |
+	// +---+-------------------------+---+---+---+---+
+	opClsReturn
+	// +---+-------------------------+---+---+---+---+
+	// | 0 | 0 | 0 |  TXAorTAX (1b)  | 0 | 1 | 1 | 1 |
+	// +---+-------------------------+---+---+---+---+
+	opClsMisc
+)
+
+const (
+	opAddrModeImmediate uint16 = iota << 5
+	opAddrModeAbsolute
+	opAddrModeIndirect
+	opAddrModeScratch
+	opAddrModePacketLen // actually an extension, not an addressing mode.
+	opAddrModeMemShift
+)
+
+const (
+	opLoadWidth4 uint16 = iota << 3
+	opLoadWidth2
+	opLoadWidth1
+)
+
+// Operator defined by ALUOp*
+
+const (
+	opALUSrcConstant uint16 = iota << 3
+	opALUSrcX
+)
+
+const (
+	opJumpAlways = iota << 4
+	opJumpEqual
+	opJumpGT
+	opJumpGE
+	opJumpSet
+)
+
+const (
+	opRetSrcConstant uint16 = iota << 4
+	opRetSrcA
+)
+
+const (
+	opMiscTAX = 0x00
+	opMiscTXA = 0x80
+)
diff --git a/vendor/golang.org/x/net/bpf/doc.go b/vendor/golang.org/x/net/bpf/doc.go
new file mode 100644
index 0000000000..ae62feb534
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/doc.go
@@ -0,0 +1,82 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+/*
+
+Package bpf implements marshaling and unmarshaling of programs for the
+Berkeley Packet Filter virtual machine, and provides a Go implementation
+of the virtual machine.
+
+BPF's main use is to specify a packet filter for network taps, so that
+the kernel doesn't have to expensively copy every packet it sees to
+userspace. However, it's been repurposed to other areas where running
+user code in-kernel is needed. For example, Linux's seccomp uses BPF
+to apply security policies to system calls. For simplicity, this
+documentation refers only to packets, but other uses of BPF have their
+own data payloads.
+
+BPF programs run in a restricted virtual machine. It has almost no
+access to kernel functions, and while conditional branches are
+allowed, they can only jump forwards, to guarantee that there are no
+infinite loops.
+
+The virtual machine
+
+The BPF VM is an accumulator machine. Its main register, called
+register A, is an implicit source and destination in all arithmetic
+and logic operations. The machine also has 16 scratch registers for
+temporary storage, and an indirection register (register X) for
+indirect memory access. All registers are 32 bits wide.
+
+Each run of a BPF program is given one packet, which is placed in the
+VM's read-only "main memory". LoadAbsolute and LoadIndirect
+instructions can fetch up to 32 bits at a time into register A for
+examination.
+
+The goal of a BPF program is to produce and return a verdict (uint32),
+which tells the kernel what to do with the packet. In the context of
+packet filtering, the returned value is the number of bytes of the
+packet to forward to userspace, or 0 to ignore the packet. Other
+contexts like seccomp define their own return values.
+
+In order to simplify programs, attempts to read past the end of the
+packet terminate the program execution with a verdict of 0 (ignore
+packet). This means that the vast majority of BPF programs don't need
+to do any explicit bounds checking.
+
+In addition to the bytes of the packet, some BPF programs have access
+to extensions, which are essentially calls to kernel utility
+functions. Currently, the only extensions supported by this package
+are the Linux packet filter extensions.
+
+Examples
+
+This packet filter selects all ARP packets.
+
+	bpf.Assemble([]bpf.Instruction{
+		// Load "EtherType" field from the ethernet header.
+		bpf.LoadAbsolute{Off: 12, Size: 2},
+		// Skip over the next instruction if EtherType is not ARP.
+		bpf.JumpIf{Cond: bpf.JumpNotEqual, Val: 0x0806, SkipTrue: 1},
+		// Verdict is "send up to 4k of the packet to userspace."
+		bpf.RetConstant{Val: 4096},
+		// Verdict is "ignore packet."
+		bpf.RetConstant{Val: 0},
+	})
+
+This packet filter captures a random 1% sample of traffic.
+
+	bpf.Assemble([]bpf.Instruction{
+		// Get a 32-bit random number from the Linux kernel.
+		bpf.LoadExtension{Num: bpf.ExtRand},
+		// 1% dice roll?
+		bpf.JumpIf{Cond: bpf.JumpLessThan, Val: 2^32/100, SkipFalse: 1},
+		// Capture.
+		bpf.RetConstant{Val: 4096},
+		// Ignore.
+		bpf.RetConstant{Val: 0},
+	})
+
+*/
+package bpf // import "golang.org/x/net/bpf"
diff --git a/vendor/golang.org/x/net/bpf/instructions.go b/vendor/golang.org/x/net/bpf/instructions.go
new file mode 100644
index 0000000000..f9dc0e8ee7
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/instructions.go
@@ -0,0 +1,704 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+import "fmt"
+
+// An Instruction is one instruction executed by the BPF virtual
+// machine.
+type Instruction interface {
+	// Assemble assembles the Instruction into a RawInstruction.
+	Assemble() (RawInstruction, error)
+}
+
+// A RawInstruction is a raw BPF virtual machine instruction.
+type RawInstruction struct {
+	// Operation to execute.
+	Op uint16
+	// For conditional jump instructions, the number of instructions
+	// to skip if the condition is true/false.
+	Jt uint8
+	Jf uint8
+	// Constant parameter. The meaning depends on the Op.
+	K uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (ri RawInstruction) Assemble() (RawInstruction, error) { return ri, nil }
+
+// Disassemble parses ri into an Instruction and returns it. If ri is
+// not recognized by this package, ri itself is returned.
+func (ri RawInstruction) Disassemble() Instruction {
+	switch ri.Op & opMaskCls {
+	case opClsLoadA, opClsLoadX:
+		reg := Register(ri.Op & opMaskLoadDest)
+		sz := 0
+		switch ri.Op & opMaskLoadWidth {
+		case opLoadWidth4:
+			sz = 4
+		case opLoadWidth2:
+			sz = 2
+		case opLoadWidth1:
+			sz = 1
+		default:
+			return ri
+		}
+		switch ri.Op & opMaskLoadMode {
+		case opAddrModeImmediate:
+			if sz != 4 {
+				return ri
+			}
+			return LoadConstant{Dst: reg, Val: ri.K}
+		case opAddrModeScratch:
+			if sz != 4 || ri.K > 15 {
+				return ri
+			}
+			return LoadScratch{Dst: reg, N: int(ri.K)}
+		case opAddrModeAbsolute:
+			if ri.K > extOffset+0xffffffff {
+				return LoadExtension{Num: Extension(-extOffset + ri.K)}
+			}
+			return LoadAbsolute{Size: sz, Off: ri.K}
+		case opAddrModeIndirect:
+			return LoadIndirect{Size: sz, Off: ri.K}
+		case opAddrModePacketLen:
+			if sz != 4 {
+				return ri
+			}
+			return LoadExtension{Num: ExtLen}
+		case opAddrModeMemShift:
+			return LoadMemShift{Off: ri.K}
+		default:
+			return ri
+		}
+
+	case opClsStoreA:
+		if ri.Op != opClsStoreA || ri.K > 15 {
+			return ri
+		}
+		return StoreScratch{Src: RegA, N: int(ri.K)}
+
+	case opClsStoreX:
+		if ri.Op != opClsStoreX || ri.K > 15 {
+			return ri
+		}
+		return StoreScratch{Src: RegX, N: int(ri.K)}
+
+	case opClsALU:
+		switch op := ALUOp(ri.Op & opMaskOperator); op {
+		case ALUOpAdd, ALUOpSub, ALUOpMul, ALUOpDiv, ALUOpOr, ALUOpAnd, ALUOpShiftLeft, ALUOpShiftRight, ALUOpMod, ALUOpXor:
+			if ri.Op&opMaskOperandSrc != 0 {
+				return ALUOpX{Op: op}
+			}
+			return ALUOpConstant{Op: op, Val: ri.K}
+		case aluOpNeg:
+			return NegateA{}
+		default:
+			return ri
+		}
+
+	case opClsJump:
+		if ri.Op&opMaskJumpConst != opClsJump {
+			return ri
+		}
+		switch ri.Op & opMaskJumpCond {
+		case opJumpAlways:
+			return Jump{Skip: ri.K}
+		case opJumpEqual:
+			if ri.Jt == 0 {
+				return JumpIf{
+					Cond:      JumpNotEqual,
+					Val:       ri.K,
+					SkipTrue:  ri.Jf,
+					SkipFalse: 0,
+				}
+			}
+			return JumpIf{
+				Cond:      JumpEqual,
+				Val:       ri.K,
+				SkipTrue:  ri.Jt,
+				SkipFalse: ri.Jf,
+			}
+		case opJumpGT:
+			if ri.Jt == 0 {
+				return JumpIf{
+					Cond:      JumpLessOrEqual,
+					Val:       ri.K,
+					SkipTrue:  ri.Jf,
+					SkipFalse: 0,
+				}
+			}
+			return JumpIf{
+				Cond:      JumpGreaterThan,
+				Val:       ri.K,
+				SkipTrue:  ri.Jt,
+				SkipFalse: ri.Jf,
+			}
+		case opJumpGE:
+			if ri.Jt == 0 {
+				return JumpIf{
+					Cond:      JumpLessThan,
+					Val:       ri.K,
+					SkipTrue:  ri.Jf,
+					SkipFalse: 0,
+				}
+			}
+			return JumpIf{
+				Cond:      JumpGreaterOrEqual,
+				Val:       ri.K,
+				SkipTrue:  ri.Jt,
+				SkipFalse: ri.Jf,
+			}
+		case opJumpSet:
+			return JumpIf{
+				Cond:      JumpBitsSet,
+				Val:       ri.K,
+				SkipTrue:  ri.Jt,
+				SkipFalse: ri.Jf,
+			}
+		default:
+			return ri
+		}
+
+	case opClsReturn:
+		switch ri.Op {
+		case opClsReturn | opRetSrcA:
+			return RetA{}
+		case opClsReturn | opRetSrcConstant:
+			return RetConstant{Val: ri.K}
+		default:
+			return ri
+		}
+
+	case opClsMisc:
+		switch ri.Op {
+		case opClsMisc | opMiscTAX:
+			return TAX{}
+		case opClsMisc | opMiscTXA:
+			return TXA{}
+		default:
+			return ri
+		}
+
+	default:
+		panic("unreachable") // switch is exhaustive on the bit pattern
+	}
+}
+
+// LoadConstant loads Val into register Dst.
+type LoadConstant struct {
+	Dst Register
+	Val uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadConstant) Assemble() (RawInstruction, error) {
+	return assembleLoad(a.Dst, 4, opAddrModeImmediate, a.Val)
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadConstant) String() string {
+	switch a.Dst {
+	case RegA:
+		return fmt.Sprintf("ld #%d", a.Val)
+	case RegX:
+		return fmt.Sprintf("ldx #%d", a.Val)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// LoadScratch loads scratch[N] into register Dst.
+type LoadScratch struct {
+	Dst Register
+	N   int // 0-15
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadScratch) Assemble() (RawInstruction, error) {
+	if a.N < 0 || a.N > 15 {
+		return RawInstruction{}, fmt.Errorf("invalid scratch slot %d", a.N)
+	}
+	return assembleLoad(a.Dst, 4, opAddrModeScratch, uint32(a.N))
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadScratch) String() string {
+	switch a.Dst {
+	case RegA:
+		return fmt.Sprintf("ld M[%d]", a.N)
+	case RegX:
+		return fmt.Sprintf("ldx M[%d]", a.N)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// LoadAbsolute loads packet[Off:Off+Size] as an integer value into
+// register A.
+type LoadAbsolute struct {
+	Off  uint32
+	Size int // 1, 2 or 4
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadAbsolute) Assemble() (RawInstruction, error) {
+	return assembleLoad(RegA, a.Size, opAddrModeAbsolute, a.Off)
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadAbsolute) String() string {
+	switch a.Size {
+	case 1: // byte
+		return fmt.Sprintf("ldb [%d]", a.Off)
+	case 2: // half word
+		return fmt.Sprintf("ldh [%d]", a.Off)
+	case 4: // word
+		if a.Off > extOffset+0xffffffff {
+			return LoadExtension{Num: Extension(a.Off + 0x1000)}.String()
+		}
+		return fmt.Sprintf("ld [%d]", a.Off)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// LoadIndirect loads packet[X+Off:X+Off+Size] as an integer value
+// into register A.
+type LoadIndirect struct {
+	Off  uint32
+	Size int // 1, 2 or 4
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadIndirect) Assemble() (RawInstruction, error) {
+	return assembleLoad(RegA, a.Size, opAddrModeIndirect, a.Off)
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadIndirect) String() string {
+	switch a.Size {
+	case 1: // byte
+		return fmt.Sprintf("ldb [x + %d]", a.Off)
+	case 2: // half word
+		return fmt.Sprintf("ldh [x + %d]", a.Off)
+	case 4: // word
+		return fmt.Sprintf("ld [x + %d]", a.Off)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// LoadMemShift multiplies the first 4 bits of the byte at packet[Off]
+// by 4 and stores the result in register X.
+//
+// This instruction is mainly useful to load into X the length of an
+// IPv4 packet header in a single instruction, rather than have to do
+// the arithmetic on the header's first byte by hand.
+type LoadMemShift struct {
+	Off uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadMemShift) Assemble() (RawInstruction, error) {
+	return assembleLoad(RegX, 1, opAddrModeMemShift, a.Off)
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadMemShift) String() string {
+	return fmt.Sprintf("ldx 4*([%d]&0xf)", a.Off)
+}
+
+// LoadExtension invokes a linux-specific extension and stores the
+// result in register A.
+type LoadExtension struct {
+	Num Extension
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a LoadExtension) Assemble() (RawInstruction, error) {
+	if a.Num == ExtLen {
+		return assembleLoad(RegA, 4, opAddrModePacketLen, 0)
+	}
+	return assembleLoad(RegA, 4, opAddrModeAbsolute, uint32(extOffset+a.Num))
+}
+
+// String returns the instruction in assembler notation.
+func (a LoadExtension) String() string {
+	switch a.Num {
+	case ExtLen:
+		return "ld #len"
+	case ExtProto:
+		return "ld #proto"
+	case ExtType:
+		return "ld #type"
+	case ExtPayloadOffset:
+		return "ld #poff"
+	case ExtInterfaceIndex:
+		return "ld #ifidx"
+	case ExtNetlinkAttr:
+		return "ld #nla"
+	case ExtNetlinkAttrNested:
+		return "ld #nlan"
+	case ExtMark:
+		return "ld #mark"
+	case ExtQueue:
+		return "ld #queue"
+	case ExtLinkLayerType:
+		return "ld #hatype"
+	case ExtRXHash:
+		return "ld #rxhash"
+	case ExtCPUID:
+		return "ld #cpu"
+	case ExtVLANTag:
+		return "ld #vlan_tci"
+	case ExtVLANTagPresent:
+		return "ld #vlan_avail"
+	case ExtVLANProto:
+		return "ld #vlan_tpid"
+	case ExtRand:
+		return "ld #rand"
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// StoreScratch stores register Src into scratch[N].
+type StoreScratch struct {
+	Src Register
+	N   int // 0-15
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a StoreScratch) Assemble() (RawInstruction, error) {
+	if a.N < 0 || a.N > 15 {
+		return RawInstruction{}, fmt.Errorf("invalid scratch slot %d", a.N)
+	}
+	var op uint16
+	switch a.Src {
+	case RegA:
+		op = opClsStoreA
+	case RegX:
+		op = opClsStoreX
+	default:
+		return RawInstruction{}, fmt.Errorf("invalid source register %v", a.Src)
+	}
+
+	return RawInstruction{
+		Op: op,
+		K:  uint32(a.N),
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a StoreScratch) String() string {
+	switch a.Src {
+	case RegA:
+		return fmt.Sprintf("st M[%d]", a.N)
+	case RegX:
+		return fmt.Sprintf("stx M[%d]", a.N)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// ALUOpConstant executes A = A <Op> Val.
+type ALUOpConstant struct {
+	Op  ALUOp
+	Val uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a ALUOpConstant) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsALU | opALUSrcConstant | uint16(a.Op),
+		K:  a.Val,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a ALUOpConstant) String() string {
+	switch a.Op {
+	case ALUOpAdd:
+		return fmt.Sprintf("add #%d", a.Val)
+	case ALUOpSub:
+		return fmt.Sprintf("sub #%d", a.Val)
+	case ALUOpMul:
+		return fmt.Sprintf("mul #%d", a.Val)
+	case ALUOpDiv:
+		return fmt.Sprintf("div #%d", a.Val)
+	case ALUOpMod:
+		return fmt.Sprintf("mod #%d", a.Val)
+	case ALUOpAnd:
+		return fmt.Sprintf("and #%d", a.Val)
+	case ALUOpOr:
+		return fmt.Sprintf("or #%d", a.Val)
+	case ALUOpXor:
+		return fmt.Sprintf("xor #%d", a.Val)
+	case ALUOpShiftLeft:
+		return fmt.Sprintf("lsh #%d", a.Val)
+	case ALUOpShiftRight:
+		return fmt.Sprintf("rsh #%d", a.Val)
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// ALUOpX executes A = A <Op> X
+type ALUOpX struct {
+	Op ALUOp
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a ALUOpX) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsALU | opALUSrcX | uint16(a.Op),
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a ALUOpX) String() string {
+	switch a.Op {
+	case ALUOpAdd:
+		return "add x"
+	case ALUOpSub:
+		return "sub x"
+	case ALUOpMul:
+		return "mul x"
+	case ALUOpDiv:
+		return "div x"
+	case ALUOpMod:
+		return "mod x"
+	case ALUOpAnd:
+		return "and x"
+	case ALUOpOr:
+		return "or x"
+	case ALUOpXor:
+		return "xor x"
+	case ALUOpShiftLeft:
+		return "lsh x"
+	case ALUOpShiftRight:
+		return "rsh x"
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+// NegateA executes A = -A.
+type NegateA struct{}
+
+// Assemble implements the Instruction Assemble method.
+func (a NegateA) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsALU | uint16(aluOpNeg),
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a NegateA) String() string {
+	return fmt.Sprintf("neg")
+}
+
+// Jump skips the following Skip instructions in the program.
+type Jump struct {
+	Skip uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a Jump) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsJump | opJumpAlways,
+		K:  a.Skip,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a Jump) String() string {
+	return fmt.Sprintf("ja %d", a.Skip)
+}
+
+// JumpIf skips the following Skip instructions in the program if A
+// <Cond> Val is true.
+type JumpIf struct {
+	Cond      JumpTest
+	Val       uint32
+	SkipTrue  uint8
+	SkipFalse uint8
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a JumpIf) Assemble() (RawInstruction, error) {
+	var (
+		cond uint16
+		flip bool
+	)
+	switch a.Cond {
+	case JumpEqual:
+		cond = opJumpEqual
+	case JumpNotEqual:
+		cond, flip = opJumpEqual, true
+	case JumpGreaterThan:
+		cond = opJumpGT
+	case JumpLessThan:
+		cond, flip = opJumpGE, true
+	case JumpGreaterOrEqual:
+		cond = opJumpGE
+	case JumpLessOrEqual:
+		cond, flip = opJumpGT, true
+	case JumpBitsSet:
+		cond = opJumpSet
+	case JumpBitsNotSet:
+		cond, flip = opJumpSet, true
+	default:
+		return RawInstruction{}, fmt.Errorf("unknown JumpTest %v", a.Cond)
+	}
+	jt, jf := a.SkipTrue, a.SkipFalse
+	if flip {
+		jt, jf = jf, jt
+	}
+	return RawInstruction{
+		Op: opClsJump | cond,
+		Jt: jt,
+		Jf: jf,
+		K:  a.Val,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a JumpIf) String() string {
+	switch a.Cond {
+	// K == A
+	case JumpEqual:
+		return conditionalJump(a, "jeq", "jneq")
+	// K != A
+	case JumpNotEqual:
+		return fmt.Sprintf("jneq #%d,%d", a.Val, a.SkipTrue)
+	// K > A
+	case JumpGreaterThan:
+		return conditionalJump(a, "jgt", "jle")
+	// K < A
+	case JumpLessThan:
+		return fmt.Sprintf("jlt #%d,%d", a.Val, a.SkipTrue)
+	// K >= A
+	case JumpGreaterOrEqual:
+		return conditionalJump(a, "jge", "jlt")
+	// K <= A
+	case JumpLessOrEqual:
+		return fmt.Sprintf("jle #%d,%d", a.Val, a.SkipTrue)
+	// K & A != 0
+	case JumpBitsSet:
+		if a.SkipFalse > 0 {
+			return fmt.Sprintf("jset #%d,%d,%d", a.Val, a.SkipTrue, a.SkipFalse)
+		}
+		return fmt.Sprintf("jset #%d,%d", a.Val, a.SkipTrue)
+	// K & A == 0, there is no assembler instruction for JumpBitNotSet, use JumpBitSet and invert skips
+	case JumpBitsNotSet:
+		return JumpIf{Cond: JumpBitsSet, SkipTrue: a.SkipFalse, SkipFalse: a.SkipTrue, Val: a.Val}.String()
+	default:
+		return fmt.Sprintf("unknown instruction: %#v", a)
+	}
+}
+
+func conditionalJump(inst JumpIf, positiveJump, negativeJump string) string {
+	if inst.SkipTrue > 0 {
+		if inst.SkipFalse > 0 {
+			return fmt.Sprintf("%s #%d,%d,%d", positiveJump, inst.Val, inst.SkipTrue, inst.SkipFalse)
+		}
+		return fmt.Sprintf("%s #%d,%d", positiveJump, inst.Val, inst.SkipTrue)
+	}
+	return fmt.Sprintf("%s #%d,%d", negativeJump, inst.Val, inst.SkipFalse)
+}
+
+// RetA exits the BPF program, returning the value of register A.
+type RetA struct{}
+
+// Assemble implements the Instruction Assemble method.
+func (a RetA) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsReturn | opRetSrcA,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a RetA) String() string {
+	return fmt.Sprintf("ret a")
+}
+
+// RetConstant exits the BPF program, returning a constant value.
+type RetConstant struct {
+	Val uint32
+}
+
+// Assemble implements the Instruction Assemble method.
+func (a RetConstant) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsReturn | opRetSrcConstant,
+		K:  a.Val,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a RetConstant) String() string {
+	return fmt.Sprintf("ret #%d", a.Val)
+}
+
+// TXA copies the value of register X to register A.
+type TXA struct{}
+
+// Assemble implements the Instruction Assemble method.
+func (a TXA) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsMisc | opMiscTXA,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a TXA) String() string {
+	return fmt.Sprintf("txa")
+}
+
+// TAX copies the value of register A to register X.
+type TAX struct{}
+
+// Assemble implements the Instruction Assemble method.
+func (a TAX) Assemble() (RawInstruction, error) {
+	return RawInstruction{
+		Op: opClsMisc | opMiscTAX,
+	}, nil
+}
+
+// String returns the instruction in assembler notation.
+func (a TAX) String() string {
+	return fmt.Sprintf("tax")
+}
+
+func assembleLoad(dst Register, loadSize int, mode uint16, k uint32) (RawInstruction, error) {
+	var (
+		cls uint16
+		sz  uint16
+	)
+	switch dst {
+	case RegA:
+		cls = opClsLoadA
+	case RegX:
+		cls = opClsLoadX
+	default:
+		return RawInstruction{}, fmt.Errorf("invalid target register %v", dst)
+	}
+	switch loadSize {
+	case 1:
+		sz = opLoadWidth1
+	case 2:
+		sz = opLoadWidth2
+	case 4:
+		sz = opLoadWidth4
+	default:
+		return RawInstruction{}, fmt.Errorf("invalid load byte length %d", sz)
+	}
+	return RawInstruction{
+		Op: cls | sz | mode,
+		K:  k,
+	}, nil
+}
diff --git a/vendor/golang.org/x/net/bpf/setter.go b/vendor/golang.org/x/net/bpf/setter.go
new file mode 100644
index 0000000000..43e35f0ac2
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/setter.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+// A Setter is a type which can attach a compiled BPF filter to itself.
+type Setter interface {
+	SetBPF(filter []RawInstruction) error
+}
diff --git a/vendor/golang.org/x/net/bpf/vm.go b/vendor/golang.org/x/net/bpf/vm.go
new file mode 100644
index 0000000000..4c656f1e12
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/vm.go
@@ -0,0 +1,140 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+import (
+	"errors"
+	"fmt"
+)
+
+// A VM is an emulated BPF virtual machine.
+type VM struct {
+	filter []Instruction
+}
+
+// NewVM returns a new VM using the input BPF program.
+func NewVM(filter []Instruction) (*VM, error) {
+	if len(filter) == 0 {
+		return nil, errors.New("one or more Instructions must be specified")
+	}
+
+	for i, ins := range filter {
+		check := len(filter) - (i + 1)
+		switch ins := ins.(type) {
+		// Check for out-of-bounds jumps in instructions
+		case Jump:
+			if check <= int(ins.Skip) {
+				return nil, fmt.Errorf("cannot jump %d instructions; jumping past program bounds", ins.Skip)
+			}
+		case JumpIf:
+			if check <= int(ins.SkipTrue) {
+				return nil, fmt.Errorf("cannot jump %d instructions in true case; jumping past program bounds", ins.SkipTrue)
+			}
+			if check <= int(ins.SkipFalse) {
+				return nil, fmt.Errorf("cannot jump %d instructions in false case; jumping past program bounds", ins.SkipFalse)
+			}
+		// Check for division or modulus by zero
+		case ALUOpConstant:
+			if ins.Val != 0 {
+				break
+			}
+
+			switch ins.Op {
+			case ALUOpDiv, ALUOpMod:
+				return nil, errors.New("cannot divide by zero using ALUOpConstant")
+			}
+		// Check for unknown extensions
+		case LoadExtension:
+			switch ins.Num {
+			case ExtLen:
+			default:
+				return nil, fmt.Errorf("extension %d not implemented", ins.Num)
+			}
+		}
+	}
+
+	// Make sure last instruction is a return instruction
+	switch filter[len(filter)-1].(type) {
+	case RetA, RetConstant:
+	default:
+		return nil, errors.New("BPF program must end with RetA or RetConstant")
+	}
+
+	// Though our VM works using disassembled instructions, we
+	// attempt to assemble the input filter anyway to ensure it is compatible
+	// with an operating system VM.
+	_, err := Assemble(filter)
+
+	return &VM{
+		filter: filter,
+	}, err
+}
+
+// Run runs the VM's BPF program against the input bytes.
+// Run returns the number of bytes accepted by the BPF program, and any errors
+// which occurred while processing the program.
+func (v *VM) Run(in []byte) (int, error) {
+	var (
+		// Registers of the virtual machine
+		regA       uint32
+		regX       uint32
+		regScratch [16]uint32
+
+		// OK is true if the program should continue processing the next
+		// instruction, or false if not, causing the loop to break
+		ok = true
+	)
+
+	// TODO(mdlayher): implement:
+	// - NegateA:
+	//   - would require a change from uint32 registers to int32
+	//     registers
+
+	// TODO(mdlayher): add interop tests that check signedness of ALU
+	// operations against kernel implementation, and make sure Go
+	// implementation matches behavior
+
+	for i := 0; i < len(v.filter) && ok; i++ {
+		ins := v.filter[i]
+
+		switch ins := ins.(type) {
+		case ALUOpConstant:
+			regA = aluOpConstant(ins, regA)
+		case ALUOpX:
+			regA, ok = aluOpX(ins, regA, regX)
+		case Jump:
+			i += int(ins.Skip)
+		case JumpIf:
+			jump := jumpIf(ins, regA)
+			i += jump
+		case LoadAbsolute:
+			regA, ok = loadAbsolute(ins, in)
+		case LoadConstant:
+			regA, regX = loadConstant(ins, regA, regX)
+		case LoadExtension:
+			regA = loadExtension(ins, in)
+		case LoadIndirect:
+			regA, ok = loadIndirect(ins, in, regX)
+		case LoadMemShift:
+			regX, ok = loadMemShift(ins, in)
+		case LoadScratch:
+			regA, regX = loadScratch(ins, regScratch, regA, regX)
+		case RetA:
+			return int(regA), nil
+		case RetConstant:
+			return int(ins.Val), nil
+		case StoreScratch:
+			regScratch = storeScratch(ins, regScratch, regA, regX)
+		case TAX:
+			regX = regA
+		case TXA:
+			regA = regX
+		default:
+			return 0, fmt.Errorf("unknown Instruction at index %d: %T", i, ins)
+		}
+	}
+
+	return 0, nil
+}
diff --git a/vendor/golang.org/x/net/bpf/vm_instructions.go b/vendor/golang.org/x/net/bpf/vm_instructions.go
new file mode 100644
index 0000000000..516f9462b9
--- /dev/null
+++ b/vendor/golang.org/x/net/bpf/vm_instructions.go
@@ -0,0 +1,174 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package bpf
+
+import (
+	"encoding/binary"
+	"fmt"
+)
+
+func aluOpConstant(ins ALUOpConstant, regA uint32) uint32 {
+	return aluOpCommon(ins.Op, regA, ins.Val)
+}
+
+func aluOpX(ins ALUOpX, regA uint32, regX uint32) (uint32, bool) {
+	// Guard against division or modulus by zero by terminating
+	// the program, as the OS BPF VM does
+	if regX == 0 {
+		switch ins.Op {
+		case ALUOpDiv, ALUOpMod:
+			return 0, false
+		}
+	}
+
+	return aluOpCommon(ins.Op, regA, regX), true
+}
+
+func aluOpCommon(op ALUOp, regA uint32, value uint32) uint32 {
+	switch op {
+	case ALUOpAdd:
+		return regA + value
+	case ALUOpSub:
+		return regA - value
+	case ALUOpMul:
+		return regA * value
+	case ALUOpDiv:
+		// Division by zero not permitted by NewVM and aluOpX checks
+		return regA / value
+	case ALUOpOr:
+		return regA | value
+	case ALUOpAnd:
+		return regA & value
+	case ALUOpShiftLeft:
+		return regA << value
+	case ALUOpShiftRight:
+		return regA >> value
+	case ALUOpMod:
+		// Modulus by zero not permitted by NewVM and aluOpX checks
+		return regA % value
+	case ALUOpXor:
+		return regA ^ value
+	default:
+		return regA
+	}
+}
+
+func jumpIf(ins JumpIf, value uint32) int {
+	var ok bool
+	inV := uint32(ins.Val)
+
+	switch ins.Cond {
+	case JumpEqual:
+		ok = value == inV
+	case JumpNotEqual:
+		ok = value != inV
+	case JumpGreaterThan:
+		ok = value > inV
+	case JumpLessThan:
+		ok = value < inV
+	case JumpGreaterOrEqual:
+		ok = value >= inV
+	case JumpLessOrEqual:
+		ok = value <= inV
+	case JumpBitsSet:
+		ok = (value & inV) != 0
+	case JumpBitsNotSet:
+		ok = (value & inV) == 0
+	}
+
+	if ok {
+		return int(ins.SkipTrue)
+	}
+
+	return int(ins.SkipFalse)
+}
+
+func loadAbsolute(ins LoadAbsolute, in []byte) (uint32, bool) {
+	offset := int(ins.Off)
+	size := int(ins.Size)
+
+	return loadCommon(in, offset, size)
+}
+
+func loadConstant(ins LoadConstant, regA uint32, regX uint32) (uint32, uint32) {
+	switch ins.Dst {
+	case RegA:
+		regA = ins.Val
+	case RegX:
+		regX = ins.Val
+	}
+
+	return regA, regX
+}
+
+func loadExtension(ins LoadExtension, in []byte) uint32 {
+	switch ins.Num {
+	case ExtLen:
+		return uint32(len(in))
+	default:
+		panic(fmt.Sprintf("unimplemented extension: %d", ins.Num))
+	}
+}
+
+func loadIndirect(ins LoadIndirect, in []byte, regX uint32) (uint32, bool) {
+	offset := int(ins.Off) + int(regX)
+	size := int(ins.Size)
+
+	return loadCommon(in, offset, size)
+}
+
+func loadMemShift(ins LoadMemShift, in []byte) (uint32, bool) {
+	offset := int(ins.Off)
+
+	if !inBounds(len(in), offset, 0) {
+		return 0, false
+	}
+
+	// Mask off high 4 bits and multiply low 4 bits by 4
+	return uint32(in[offset]&0x0f) * 4, true
+}
+
+func inBounds(inLen int, offset int, size int) bool {
+	return offset+size <= inLen
+}
+
+func loadCommon(in []byte, offset int, size int) (uint32, bool) {
+	if !inBounds(len(in), offset, size) {
+		return 0, false
+	}
+
+	switch size {
+	case 1:
+		return uint32(in[offset]), true
+	case 2:
+		return uint32(binary.BigEndian.Uint16(in[offset : offset+size])), true
+	case 4:
+		return uint32(binary.BigEndian.Uint32(in[offset : offset+size])), true
+	default:
+		panic(fmt.Sprintf("invalid load size: %d", size))
+	}
+}
+
+func loadScratch(ins LoadScratch, regScratch [16]uint32, regA uint32, regX uint32) (uint32, uint32) {
+	switch ins.Dst {
+	case RegA:
+		regA = regScratch[ins.N]
+	case RegX:
+		regX = regScratch[ins.N]
+	}
+
+	return regA, regX
+}
+
+func storeScratch(ins StoreScratch, regScratch [16]uint32, regA uint32, regX uint32) [16]uint32 {
+	switch ins.Src {
+	case RegA:
+		regScratch[ins.N] = regA
+	case RegX:
+		regScratch[ins.N] = regX
+	}
+
+	return regScratch
+}
diff --git a/vendor/golang.org/x/net/http/httpguts/guts.go b/vendor/golang.org/x/net/http/httpguts/guts.go
index e6cd0ced39..8255fd49b4 100644
--- a/vendor/golang.org/x/net/http/httpguts/guts.go
+++ b/vendor/golang.org/x/net/http/httpguts/guts.go
@@ -14,6 +14,21 @@ import (
 	"strings"
 )
 
+// SniffedContentType reports whether ct is a Content-Type that is known
+// to cause client-side content sniffing.
+//
+// This provides just a partial implementation of mime.ParseMediaType
+// with the assumption that the Content-Type is not attacker controlled.
+func SniffedContentType(ct string) bool {
+	if i := strings.Index(ct, ";"); i != -1 {
+		ct = ct[:i]
+	}
+	ct = strings.ToLower(strings.TrimSpace(ct))
+	return ct == "text/plain" || ct == "application/octet-stream" ||
+		ct == "application/unknown" || ct == "unknown/unknown" || ct == "*/*" ||
+		!strings.Contains(ct, "/")
+}
+
 // ValidTrailerHeader reports whether name is a valid header field name to appear
 // in trailers.
 // See RFC 7230, Section 4.1.2
diff --git a/vendor/golang.org/x/net/http/httpguts/httplex.go b/vendor/golang.org/x/net/http/httpguts/httplex.go
new file mode 100644
index 0000000000..e7de24ee64
--- /dev/null
+++ b/vendor/golang.org/x/net/http/httpguts/httplex.go
@@ -0,0 +1,346 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package httpguts
+
+import (
+	"net"
+	"strings"
+	"unicode/utf8"
+
+	"golang.org/x/net/idna"
+)
+
+var isTokenTable = [127]bool{
+	'!':  true,
+	'#':  true,
+	'$':  true,
+	'%':  true,
+	'&':  true,
+	'\'': true,
+	'*':  true,
+	'+':  true,
+	'-':  true,
+	'.':  true,
+	'0':  true,
+	'1':  true,
+	'2':  true,
+	'3':  true,
+	'4':  true,
+	'5':  true,
+	'6':  true,
+	'7':  true,
+	'8':  true,
+	'9':  true,
+	'A':  true,
+	'B':  true,
+	'C':  true,
+	'D':  true,
+	'E':  true,
+	'F':  true,
+	'G':  true,
+	'H':  true,
+	'I':  true,
+	'J':  true,
+	'K':  true,
+	'L':  true,
+	'M':  true,
+	'N':  true,
+	'O':  true,
+	'P':  true,
+	'Q':  true,
+	'R':  true,
+	'S':  true,
+	'T':  true,
+	'U':  true,
+	'W':  true,
+	'V':  true,
+	'X':  true,
+	'Y':  true,
+	'Z':  true,
+	'^':  true,
+	'_':  true,
+	'`':  true,
+	'a':  true,
+	'b':  true,
+	'c':  true,
+	'd':  true,
+	'e':  true,
+	'f':  true,
+	'g':  true,
+	'h':  true,
+	'i':  true,
+	'j':  true,
+	'k':  true,
+	'l':  true,
+	'm':  true,
+	'n':  true,
+	'o':  true,
+	'p':  true,
+	'q':  true,
+	'r':  true,
+	's':  true,
+	't':  true,
+	'u':  true,
+	'v':  true,
+	'w':  true,
+	'x':  true,
+	'y':  true,
+	'z':  true,
+	'|':  true,
+	'~':  true,
+}
+
+func IsTokenRune(r rune) bool {
+	i := int(r)
+	return i < len(isTokenTable) && isTokenTable[i]
+}
+
+func isNotToken(r rune) bool {
+	return !IsTokenRune(r)
+}
+
+// HeaderValuesContainsToken reports whether any string in values
+// contains the provided token, ASCII case-insensitively.
+func HeaderValuesContainsToken(values []string, token string) bool {
+	for _, v := range values {
+		if headerValueContainsToken(v, token) {
+			return true
+		}
+	}
+	return false
+}
+
+// isOWS reports whether b is an optional whitespace byte, as defined
+// by RFC 7230 section 3.2.3.
+func isOWS(b byte) bool { return b == ' ' || b == '\t' }
+
+// trimOWS returns x with all optional whitespace removes from the
+// beginning and end.
+func trimOWS(x string) string {
+	// TODO: consider using strings.Trim(x, " \t") instead,
+	// if and when it's fast enough. See issue 10292.
+	// But this ASCII-only code will probably always beat UTF-8
+	// aware code.
+	for len(x) > 0 && isOWS(x[0]) {
+		x = x[1:]
+	}
+	for len(x) > 0 && isOWS(x[len(x)-1]) {
+		x = x[:len(x)-1]
+	}
+	return x
+}
+
+// headerValueContainsToken reports whether v (assumed to be a
+// 0#element, in the ABNF extension described in RFC 7230 section 7)
+// contains token amongst its comma-separated tokens, ASCII
+// case-insensitively.
+func headerValueContainsToken(v string, token string) bool {
+	v = trimOWS(v)
+	if comma := strings.IndexByte(v, ','); comma != -1 {
+		return tokenEqual(trimOWS(v[:comma]), token) || headerValueContainsToken(v[comma+1:], token)
+	}
+	return tokenEqual(v, token)
+}
+
+// lowerASCII returns the ASCII lowercase version of b.
+func lowerASCII(b byte) byte {
+	if 'A' <= b && b <= 'Z' {
+		return b + ('a' - 'A')
+	}
+	return b
+}
+
+// tokenEqual reports whether t1 and t2 are equal, ASCII case-insensitively.
+func tokenEqual(t1, t2 string) bool {
+	if len(t1) != len(t2) {
+		return false
+	}
+	for i, b := range t1 {
+		if b >= utf8.RuneSelf {
+			// No UTF-8 or non-ASCII allowed in tokens.
+			return false
+		}
+		if lowerASCII(byte(b)) != lowerASCII(t2[i]) {
+			return false
+		}
+	}
+	return true
+}
+
+// isLWS reports whether b is linear white space, according
+// to http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2
+//      LWS            = [CRLF] 1*( SP | HT )
+func isLWS(b byte) bool { return b == ' ' || b == '\t' }
+
+// isCTL reports whether b is a control byte, according
+// to http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2
+//      CTL            = <any US-ASCII control character
+//                       (octets 0 - 31) and DEL (127)>
+func isCTL(b byte) bool {
+	const del = 0x7f // a CTL
+	return b < ' ' || b == del
+}
+
+// ValidHeaderFieldName reports whether v is a valid HTTP/1.x header name.
+// HTTP/2 imposes the additional restriction that uppercase ASCII
+// letters are not allowed.
+//
+//  RFC 7230 says:
+//   header-field   = field-name ":" OWS field-value OWS
+//   field-name     = token
+//   token          = 1*tchar
+//   tchar = "!" / "#" / "$" / "%" / "&" / "'" / "*" / "+" / "-" / "." /
+//           "^" / "_" / "`" / "|" / "~" / DIGIT / ALPHA
+func ValidHeaderFieldName(v string) bool {
+	if len(v) == 0 {
+		return false
+	}
+	for _, r := range v {
+		if !IsTokenRune(r) {
+			return false
+		}
+	}
+	return true
+}
+
+// ValidHostHeader reports whether h is a valid host header.
+func ValidHostHeader(h string) bool {
+	// The latest spec is actually this:
+	//
+	// http://tools.ietf.org/html/rfc7230#section-5.4
+	//     Host = uri-host [ ":" port ]
+	//
+	// Where uri-host is:
+	//     http://tools.ietf.org/html/rfc3986#section-3.2.2
+	//
+	// But we're going to be much more lenient for now and just
+	// search for any byte that's not a valid byte in any of those
+	// expressions.
+	for i := 0; i < len(h); i++ {
+		if !validHostByte[h[i]] {
+			return false
+		}
+	}
+	return true
+}
+
+// See the validHostHeader comment.
+var validHostByte = [256]bool{
+	'0': true, '1': true, '2': true, '3': true, '4': true, '5': true, '6': true, '7': true,
+	'8': true, '9': true,
+
+	'a': true, 'b': true, 'c': true, 'd': true, 'e': true, 'f': true, 'g': true, 'h': true,
+	'i': true, 'j': true, 'k': true, 'l': true, 'm': true, 'n': true, 'o': true, 'p': true,
+	'q': true, 'r': true, 's': true, 't': true, 'u': true, 'v': true, 'w': true, 'x': true,
+	'y': true, 'z': true,
+
+	'A': true, 'B': true, 'C': true, 'D': true, 'E': true, 'F': true, 'G': true, 'H': true,
+	'I': true, 'J': true, 'K': true, 'L': true, 'M': true, 'N': true, 'O': true, 'P': true,
+	'Q': true, 'R': true, 'S': true, 'T': true, 'U': true, 'V': true, 'W': true, 'X': true,
+	'Y': true, 'Z': true,
+
+	'!':  true, // sub-delims
+	'$':  true, // sub-delims
+	'%':  true, // pct-encoded (and used in IPv6 zones)
+	'&':  true, // sub-delims
+	'(':  true, // sub-delims
+	')':  true, // sub-delims
+	'*':  true, // sub-delims
+	'+':  true, // sub-delims
+	',':  true, // sub-delims
+	'-':  true, // unreserved
+	'.':  true, // unreserved
+	':':  true, // IPv6address + Host expression's optional port
+	';':  true, // sub-delims
+	'=':  true, // sub-delims
+	'[':  true,
+	'\'': true, // sub-delims
+	']':  true,
+	'_':  true, // unreserved
+	'~':  true, // unreserved
+}
+
+// ValidHeaderFieldValue reports whether v is a valid "field-value" according to
+// http://www.w3.org/Protocols/rfc2616/rfc2616-sec4.html#sec4.2 :
+//
+//        message-header = field-name ":" [ field-value ]
+//        field-value    = *( field-content | LWS )
+//        field-content  = <the OCTETs making up the field-value
+//                         and consisting of either *TEXT or combinations
+//                         of token, separators, and quoted-string>
+//
+// http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2 :
+//
+//        TEXT           = <any OCTET except CTLs,
+//                          but including LWS>
+//        LWS            = [CRLF] 1*( SP | HT )
+//        CTL            = <any US-ASCII control character
+//                         (octets 0 - 31) and DEL (127)>
+//
+// RFC 7230 says:
+//  field-value    = *( field-content / obs-fold )
+//  obj-fold       =  N/A to http2, and deprecated
+//  field-content  = field-vchar [ 1*( SP / HTAB ) field-vchar ]
+//  field-vchar    = VCHAR / obs-text
+//  obs-text       = %x80-FF
+//  VCHAR          = "any visible [USASCII] character"
+//
+// http2 further says: "Similarly, HTTP/2 allows header field values
+// that are not valid. While most of the values that can be encoded
+// will not alter header field parsing, carriage return (CR, ASCII
+// 0xd), line feed (LF, ASCII 0xa), and the zero character (NUL, ASCII
+// 0x0) might be exploited by an attacker if they are translated
+// verbatim. Any request or response that contains a character not
+// permitted in a header field value MUST be treated as malformed
+// (Section 8.1.2.6). Valid characters are defined by the
+// field-content ABNF rule in Section 3.2 of [RFC7230]."
+//
+// This function does not (yet?) properly handle the rejection of
+// strings that begin or end with SP or HTAB.
+func ValidHeaderFieldValue(v string) bool {
+	for i := 0; i < len(v); i++ {
+		b := v[i]
+		if isCTL(b) && !isLWS(b) {
+			return false
+		}
+	}
+	return true
+}
+
+func isASCII(s string) bool {
+	for i := 0; i < len(s); i++ {
+		if s[i] >= utf8.RuneSelf {
+			return false
+		}
+	}
+	return true
+}
+
+// PunycodeHostPort returns the IDNA Punycode version
+// of the provided "host" or "host:port" string.
+func PunycodeHostPort(v string) (string, error) {
+	if isASCII(v) {
+		return v, nil
+	}
+
+	host, port, err := net.SplitHostPort(v)
+	if err != nil {
+		// The input 'v' argument was just a "host" argument,
+		// without a port. This error should not be returned
+		// to the caller.
+		host = v
+		port = ""
+	}
+	host, err = idna.ToASCII(host)
+	if err != nil {
+		// Non-UTF-8? Not representable in Punycode, in any
+		// case.
+		return "", err
+	}
+	if port == "" {
+		return host, nil
+	}
+	return net.JoinHostPort(host, port), nil
+}
diff --git a/vendor/golang.org/x/net/http2/frame.go b/vendor/golang.org/x/net/http2/frame.go
index 3b14890728..e32500779a 100644
--- a/vendor/golang.org/x/net/http2/frame.go
+++ b/vendor/golang.org/x/net/http2/frame.go
@@ -14,8 +14,8 @@ import (
 	"strings"
 	"sync"
 
+	"golang.org/x/net/http/httpguts"
 	"golang.org/x/net/http2/hpack"
-	"golang.org/x/net/lex/httplex"
 )
 
 const frameHeaderLen = 9
@@ -1462,7 +1462,7 @@ func (fr *Framer) readMetaFrame(hf *HeadersFrame) (*MetaHeadersFrame, error) {
 		if VerboseLogs && fr.logReads {
 			fr.debugReadLoggerf("http2: decoded hpack field %+v", hf)
 		}
-		if !httplex.ValidHeaderFieldValue(hf.Value) {
+		if !httpguts.ValidHeaderFieldValue(hf.Value) {
 			invalid = headerFieldValueError(hf.Value)
 		}
 		isPseudo := strings.HasPrefix(hf.Name, ":")
diff --git a/vendor/golang.org/x/net/http2/hpack/hpack.go b/vendor/golang.org/x/net/http2/hpack/hpack.go
index 176644acda..166788ceec 100644
--- a/vendor/golang.org/x/net/http2/hpack/hpack.go
+++ b/vendor/golang.org/x/net/http2/hpack/hpack.go
@@ -389,6 +389,12 @@ func (d *Decoder) callEmit(hf HeaderField) error {
 
 // (same invariants and behavior as parseHeaderFieldRepr)
 func (d *Decoder) parseDynamicTableSizeUpdate() error {
+	// RFC 7541, sec 4.2: This dynamic table size update MUST occur at the
+	// beginning of the first header block following the change to the dynamic table size.
+	if d.dynTab.size > 0 {
+		return DecodingError{errors.New("dynamic table size update MUST occur at the beginning of a header block")}
+	}
+
 	buf := d.buf
 	size, buf, err := readVarInt(5, buf)
 	if err != nil {
diff --git a/vendor/golang.org/x/net/http2/http2.go b/vendor/golang.org/x/net/http2/http2.go
index 71db28a873..c82428254a 100644
--- a/vendor/golang.org/x/net/http2/http2.go
+++ b/vendor/golang.org/x/net/http2/http2.go
@@ -29,7 +29,7 @@ import (
 	"strings"
 	"sync"
 
-	"golang.org/x/net/lex/httplex"
+	"golang.org/x/net/http/httpguts"
 )
 
 var (
@@ -179,7 +179,7 @@ var (
 )
 
 // validWireHeaderFieldName reports whether v is a valid header field
-// name (key). See httplex.ValidHeaderName for the base rules.
+// name (key). See httpguts.ValidHeaderName for the base rules.
 //
 // Further, http2 says:
 //   "Just as in HTTP/1.x, header field names are strings of ASCII
@@ -191,7 +191,7 @@ func validWireHeaderFieldName(v string) bool {
 		return false
 	}
 	for _, r := range v {
-		if !httplex.IsTokenRune(r) {
+		if !httpguts.IsTokenRune(r) {
 			return false
 		}
 		if 'A' <= r && r <= 'Z' {
diff --git a/vendor/golang.org/x/net/http2/server.go b/vendor/golang.org/x/net/http2/server.go
index 72f65c8f7b..abf94e8d36 100644
--- a/vendor/golang.org/x/net/http2/server.go
+++ b/vendor/golang.org/x/net/http2/server.go
@@ -2309,6 +2309,7 @@ func (rws *responseWriterState) writeChunk(p []byte) (n int, err error) {
 	isHeadResp := rws.req.Method == "HEAD"
 	if !rws.sentHeader {
 		rws.sentHeader = true
+
 		var ctype, clen string
 		if clen = rws.snapHeader.Get("Content-Length"); clen != "" {
 			rws.snapHeader.Del("Content-Length")
@@ -2322,6 +2323,7 @@ func (rws *responseWriterState) writeChunk(p []byte) (n int, err error) {
 		if clen == "" && rws.handlerDone && bodyAllowedForStatus(rws.status) && (len(p) > 0 || !isHeadResp) {
 			clen = strconv.Itoa(len(p))
 		}
+
 		_, hasContentType := rws.snapHeader["Content-Type"]
 		if !hasContentType && bodyAllowedForStatus(rws.status) && len(p) > 0 {
 			if cto := rws.snapHeader.Get("X-Content-Type-Options"); strings.EqualFold("nosniff", cto) {
@@ -2334,6 +2336,20 @@ func (rws *responseWriterState) writeChunk(p []byte) (n int, err error) {
 				ctype = http.DetectContentType(p)
 			}
 		}
+
+		var noSniff bool
+		if bodyAllowedForStatus(rws.status) && (rws.sentContentLen > 0 || len(p) > 0) {
+			// If the content type triggers client-side sniffing on old browsers,
+			// attach a X-Content-Type-Options header if not present (or explicitly nil).
+			if _, ok := rws.snapHeader["X-Content-Type-Options"]; !ok {
+				if hasContentType {
+					noSniff = httpguts.SniffedContentType(rws.snapHeader.Get("Content-Type"))
+				} else if ctype != "" {
+					noSniff = httpguts.SniffedContentType(ctype)
+				}
+			}
+		}
+
 		var date string
 		if _, ok := rws.snapHeader["Date"]; !ok {
 			// TODO(bradfitz): be faster here, like net/http? measure.
@@ -2352,6 +2368,7 @@ func (rws *responseWriterState) writeChunk(p []byte) (n int, err error) {
 			endStream:     endStream,
 			contentType:   ctype,
 			contentLength: clen,
+			noSniff:       noSniff,
 			date:          date,
 		})
 		if err != nil {
diff --git a/vendor/golang.org/x/net/http2/transport.go b/vendor/golang.org/x/net/http2/transport.go
index da91d19dd4..d23a226251 100644
--- a/vendor/golang.org/x/net/http2/transport.go
+++ b/vendor/golang.org/x/net/http2/transport.go
@@ -27,9 +27,9 @@ import (
 	"sync"
 	"time"
 
+	"golang.org/x/net/http/httpguts"
 	"golang.org/x/net/http2/hpack"
 	"golang.org/x/net/idna"
-	"golang.org/x/net/lex/httplex"
 )
 
 const (
@@ -567,6 +567,10 @@ func (t *Transport) newClientConn(c net.Conn, singleUse bool) (*ClientConn, erro
 	// henc in response to SETTINGS frames?
 	cc.henc = hpack.NewEncoder(&cc.hbuf)
 
+	if t.AllowHTTP {
+		cc.nextStreamID = 3
+	}
+
 	if cs, ok := c.(connectionStater); ok {
 		state := cs.ConnectionState()
 		cc.tlsState = &state
@@ -1177,7 +1181,7 @@ func (cc *ClientConn) encodeHeaders(req *http.Request, addGzipHeader bool, trail
 	if host == "" {
 		host = req.URL.Host
 	}
-	host, err := httplex.PunycodeHostPort(host)
+	host, err := httpguts.PunycodeHostPort(host)
 	if err != nil {
 		return nil, err
 	}
@@ -1202,11 +1206,11 @@ func (cc *ClientConn) encodeHeaders(req *http.Request, addGzipHeader bool, trail
 	// potentially pollute our hpack state. (We want to be able to
 	// continue to reuse the hpack encoder for future requests)
 	for k, vv := range req.Header {
-		if !httplex.ValidHeaderFieldName(k) {
+		if !httpguts.ValidHeaderFieldName(k) {
 			return nil, fmt.Errorf("invalid HTTP header name %q", k)
 		}
 		for _, v := range vv {
-			if !httplex.ValidHeaderFieldValue(v) {
+			if !httpguts.ValidHeaderFieldValue(v) {
 				return nil, fmt.Errorf("invalid HTTP header value %q for header %q", v, k)
 			}
 		}
@@ -2247,7 +2251,7 @@ func (t *Transport) getBodyWriterState(cs *clientStream, body io.Reader) (s body
 	}
 	s.delay = t.expectContinueTimeout()
 	if s.delay == 0 ||
-		!httplex.HeaderValuesContainsToken(
+		!httpguts.HeaderValuesContainsToken(
 			cs.req.Header["Expect"],
 			"100-continue") {
 		return
@@ -2302,5 +2306,5 @@ func (s bodyWriterState) scheduleBodyWrite() {
 // isConnectionCloseRequest reports whether req should use its own
 // connection for a single request and then close the connection.
 func isConnectionCloseRequest(req *http.Request) bool {
-	return req.Close || httplex.HeaderValuesContainsToken(req.Header["Connection"], "close")
+	return req.Close || httpguts.HeaderValuesContainsToken(req.Header["Connection"], "close")
 }
diff --git a/vendor/golang.org/x/net/http2/write.go b/vendor/golang.org/x/net/http2/write.go
index 54ab4a88e7..a5120412e6 100644
--- a/vendor/golang.org/x/net/http2/write.go
+++ b/vendor/golang.org/x/net/http2/write.go
@@ -11,8 +11,8 @@ import (
 	"net/http"
 	"net/url"
 
+	"golang.org/x/net/http/httpguts"
 	"golang.org/x/net/http2/hpack"
-	"golang.org/x/net/lex/httplex"
 )
 
 // writeFramer is implemented by any type that is used to write frames.
@@ -186,6 +186,7 @@ type writeResHeaders struct {
 	date          string
 	contentType   string
 	contentLength string
+	noSniff       bool
 }
 
 func encKV(enc *hpack.Encoder, k, v string) {
@@ -222,6 +223,9 @@ func (w *writeResHeaders) writeFrame(ctx writeContext) error {
 	if w.contentLength != "" {
 		encKV(enc, "content-length", w.contentLength)
 	}
+	if w.noSniff {
+		encKV(enc, "x-content-type-options", "nosniff")
+	}
 	if w.date != "" {
 		encKV(enc, "date", w.date)
 	}
@@ -350,7 +354,7 @@ func encodeHeaders(enc *hpack.Encoder, h http.Header, keys []string) {
 		}
 		isTE := k == "transfer-encoding"
 		for _, v := range vv {
-			if !httplex.ValidHeaderFieldValue(v) {
+			if !httpguts.ValidHeaderFieldValue(v) {
 				// TODO: return an error? golang.org/issue/14048
 				// For now just omit it.
 				continue
diff --git a/vendor/golang.org/x/net/internal/iana/const.go b/vendor/golang.org/x/net/internal/iana/const.go
new file mode 100644
index 0000000000..826633e1b8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/iana/const.go
@@ -0,0 +1,227 @@
+// go generate gen.go
+// Code generated by the command above; DO NOT EDIT.
+
+// Package iana provides protocol number resources managed by the Internet Assigned Numbers Authority (IANA).
+package iana // import "golang.org/x/net/internal/iana"
+
+// Differentiated Services Field Codepoints (DSCP), Updated: 2017-05-12
+const (
+	DiffServCS0        = 0x0  // CS0
+	DiffServCS1        = 0x20 // CS1
+	DiffServCS2        = 0x40 // CS2
+	DiffServCS3        = 0x60 // CS3
+	DiffServCS4        = 0x80 // CS4
+	DiffServCS5        = 0xa0 // CS5
+	DiffServCS6        = 0xc0 // CS6
+	DiffServCS7        = 0xe0 // CS7
+	DiffServAF11       = 0x28 // AF11
+	DiffServAF12       = 0x30 // AF12
+	DiffServAF13       = 0x38 // AF13
+	DiffServAF21       = 0x48 // AF21
+	DiffServAF22       = 0x50 // AF22
+	DiffServAF23       = 0x58 // AF23
+	DiffServAF31       = 0x68 // AF31
+	DiffServAF32       = 0x70 // AF32
+	DiffServAF33       = 0x78 // AF33
+	DiffServAF41       = 0x88 // AF41
+	DiffServAF42       = 0x90 // AF42
+	DiffServAF43       = 0x98 // AF43
+	DiffServEF         = 0xb8 // EF
+	DiffServVOICEADMIT = 0xb0 // VOICE-ADMIT
+)
+
+// IPv4 TOS Byte and IPv6 Traffic Class Octet, Updated: 2001-09-06
+const (
+	NotECNTransport       = 0x0 // Not-ECT (Not ECN-Capable Transport)
+	ECNTransport1         = 0x1 // ECT(1) (ECN-Capable Transport(1))
+	ECNTransport0         = 0x2 // ECT(0) (ECN-Capable Transport(0))
+	CongestionExperienced = 0x3 // CE (Congestion Experienced)
+)
+
+// Protocol Numbers, Updated: 2017-10-13
+const (
+	ProtocolIP             = 0   // IPv4 encapsulation, pseudo protocol number
+	ProtocolHOPOPT         = 0   // IPv6 Hop-by-Hop Option
+	ProtocolICMP           = 1   // Internet Control Message
+	ProtocolIGMP           = 2   // Internet Group Management
+	ProtocolGGP            = 3   // Gateway-to-Gateway
+	ProtocolIPv4           = 4   // IPv4 encapsulation
+	ProtocolST             = 5   // Stream
+	ProtocolTCP            = 6   // Transmission Control
+	ProtocolCBT            = 7   // CBT
+	ProtocolEGP            = 8   // Exterior Gateway Protocol
+	ProtocolIGP            = 9   // any private interior gateway (used by Cisco for their IGRP)
+	ProtocolBBNRCCMON      = 10  // BBN RCC Monitoring
+	ProtocolNVPII          = 11  // Network Voice Protocol
+	ProtocolPUP            = 12  // PUP
+	ProtocolEMCON          = 14  // EMCON
+	ProtocolXNET           = 15  // Cross Net Debugger
+	ProtocolCHAOS          = 16  // Chaos
+	ProtocolUDP            = 17  // User Datagram
+	ProtocolMUX            = 18  // Multiplexing
+	ProtocolDCNMEAS        = 19  // DCN Measurement Subsystems
+	ProtocolHMP            = 20  // Host Monitoring
+	ProtocolPRM            = 21  // Packet Radio Measurement
+	ProtocolXNSIDP         = 22  // XEROX NS IDP
+	ProtocolTRUNK1         = 23  // Trunk-1
+	ProtocolTRUNK2         = 24  // Trunk-2
+	ProtocolLEAF1          = 25  // Leaf-1
+	ProtocolLEAF2          = 26  // Leaf-2
+	ProtocolRDP            = 27  // Reliable Data Protocol
+	ProtocolIRTP           = 28  // Internet Reliable Transaction
+	ProtocolISOTP4         = 29  // ISO Transport Protocol Class 4
+	ProtocolNETBLT         = 30  // Bulk Data Transfer Protocol
+	ProtocolMFENSP         = 31  // MFE Network Services Protocol
+	ProtocolMERITINP       = 32  // MERIT Internodal Protocol
+	ProtocolDCCP           = 33  // Datagram Congestion Control Protocol
+	Protocol3PC            = 34  // Third Party Connect Protocol
+	ProtocolIDPR           = 35  // Inter-Domain Policy Routing Protocol
+	ProtocolXTP            = 36  // XTP
+	ProtocolDDP            = 37  // Datagram Delivery Protocol
+	ProtocolIDPRCMTP       = 38  // IDPR Control Message Transport Proto
+	ProtocolTPPP           = 39  // TP++ Transport Protocol
+	ProtocolIL             = 40  // IL Transport Protocol
+	ProtocolIPv6           = 41  // IPv6 encapsulation
+	ProtocolSDRP           = 42  // Source Demand Routing Protocol
+	ProtocolIPv6Route      = 43  // Routing Header for IPv6
+	ProtocolIPv6Frag       = 44  // Fragment Header for IPv6
+	ProtocolIDRP           = 45  // Inter-Domain Routing Protocol
+	ProtocolRSVP           = 46  // Reservation Protocol
+	ProtocolGRE            = 47  // Generic Routing Encapsulation
+	ProtocolDSR            = 48  // Dynamic Source Routing Protocol
+	ProtocolBNA            = 49  // BNA
+	ProtocolESP            = 50  // Encap Security Payload
+	ProtocolAH             = 51  // Authentication Header
+	ProtocolINLSP          = 52  // Integrated Net Layer Security  TUBA
+	ProtocolNARP           = 54  // NBMA Address Resolution Protocol
+	ProtocolMOBILE         = 55  // IP Mobility
+	ProtocolTLSP           = 56  // Transport Layer Security Protocol using Kryptonet key management
+	ProtocolSKIP           = 57  // SKIP
+	ProtocolIPv6ICMP       = 58  // ICMP for IPv6
+	ProtocolIPv6NoNxt      = 59  // No Next Header for IPv6
+	ProtocolIPv6Opts       = 60  // Destination Options for IPv6
+	ProtocolCFTP           = 62  // CFTP
+	ProtocolSATEXPAK       = 64  // SATNET and Backroom EXPAK
+	ProtocolKRYPTOLAN      = 65  // Kryptolan
+	ProtocolRVD            = 66  // MIT Remote Virtual Disk Protocol
+	ProtocolIPPC           = 67  // Internet Pluribus Packet Core
+	ProtocolSATMON         = 69  // SATNET Monitoring
+	ProtocolVISA           = 70  // VISA Protocol
+	ProtocolIPCV           = 71  // Internet Packet Core Utility
+	ProtocolCPNX           = 72  // Computer Protocol Network Executive
+	ProtocolCPHB           = 73  // Computer Protocol Heart Beat
+	ProtocolWSN            = 74  // Wang Span Network
+	ProtocolPVP            = 75  // Packet Video Protocol
+	ProtocolBRSATMON       = 76  // Backroom SATNET Monitoring
+	ProtocolSUNND          = 77  // SUN ND PROTOCOL-Temporary
+	ProtocolWBMON          = 78  // WIDEBAND Monitoring
+	ProtocolWBEXPAK        = 79  // WIDEBAND EXPAK
+	ProtocolISOIP          = 80  // ISO Internet Protocol
+	ProtocolVMTP           = 81  // VMTP
+	ProtocolSECUREVMTP     = 82  // SECURE-VMTP
+	ProtocolVINES          = 83  // VINES
+	ProtocolTTP            = 84  // Transaction Transport Protocol
+	ProtocolIPTM           = 84  // Internet Protocol Traffic Manager
+	ProtocolNSFNETIGP      = 85  // NSFNET-IGP
+	ProtocolDGP            = 86  // Dissimilar Gateway Protocol
+	ProtocolTCF            = 87  // TCF
+	ProtocolEIGRP          = 88  // EIGRP
+	ProtocolOSPFIGP        = 89  // OSPFIGP
+	ProtocolSpriteRPC      = 90  // Sprite RPC Protocol
+	ProtocolLARP           = 91  // Locus Address Resolution Protocol
+	ProtocolMTP            = 92  // Multicast Transport Protocol
+	ProtocolAX25           = 93  // AX.25 Frames
+	ProtocolIPIP           = 94  // IP-within-IP Encapsulation Protocol
+	ProtocolSCCSP          = 96  // Semaphore Communications Sec. Pro.
+	ProtocolETHERIP        = 97  // Ethernet-within-IP Encapsulation
+	ProtocolENCAP          = 98  // Encapsulation Header
+	ProtocolGMTP           = 100 // GMTP
+	ProtocolIFMP           = 101 // Ipsilon Flow Management Protocol
+	ProtocolPNNI           = 102 // PNNI over IP
+	ProtocolPIM            = 103 // Protocol Independent Multicast
+	ProtocolARIS           = 104 // ARIS
+	ProtocolSCPS           = 105 // SCPS
+	ProtocolQNX            = 106 // QNX
+	ProtocolAN             = 107 // Active Networks
+	ProtocolIPComp         = 108 // IP Payload Compression Protocol
+	ProtocolSNP            = 109 // Sitara Networks Protocol
+	ProtocolCompaqPeer     = 110 // Compaq Peer Protocol
+	ProtocolIPXinIP        = 111 // IPX in IP
+	ProtocolVRRP           = 112 // Virtual Router Redundancy Protocol
+	ProtocolPGM            = 113 // PGM Reliable Transport Protocol
+	ProtocolL2TP           = 115 // Layer Two Tunneling Protocol
+	ProtocolDDX            = 116 // D-II Data Exchange (DDX)
+	ProtocolIATP           = 117 // Interactive Agent Transfer Protocol
+	ProtocolSTP            = 118 // Schedule Transfer Protocol
+	ProtocolSRP            = 119 // SpectraLink Radio Protocol
+	ProtocolUTI            = 120 // UTI
+	ProtocolSMP            = 121 // Simple Message Protocol
+	ProtocolPTP            = 123 // Performance Transparency Protocol
+	ProtocolISIS           = 124 // ISIS over IPv4
+	ProtocolFIRE           = 125 // FIRE
+	ProtocolCRTP           = 126 // Combat Radio Transport Protocol
+	ProtocolCRUDP          = 127 // Combat Radio User Datagram
+	ProtocolSSCOPMCE       = 128 // SSCOPMCE
+	ProtocolIPLT           = 129 // IPLT
+	ProtocolSPS            = 130 // Secure Packet Shield
+	ProtocolPIPE           = 131 // Private IP Encapsulation within IP
+	ProtocolSCTP           = 132 // Stream Control Transmission Protocol
+	ProtocolFC             = 133 // Fibre Channel
+	ProtocolRSVPE2EIGNORE  = 134 // RSVP-E2E-IGNORE
+	ProtocolMobilityHeader = 135 // Mobility Header
+	ProtocolUDPLite        = 136 // UDPLite
+	ProtocolMPLSinIP       = 137 // MPLS-in-IP
+	ProtocolMANET          = 138 // MANET Protocols
+	ProtocolHIP            = 139 // Host Identity Protocol
+	ProtocolShim6          = 140 // Shim6 Protocol
+	ProtocolWESP           = 141 // Wrapped Encapsulating Security Payload
+	ProtocolROHC           = 142 // Robust Header Compression
+	ProtocolReserved       = 255 // Reserved
+)
+
+// Address Family Numbers, Updated: 2016-10-25
+const (
+	AddrFamilyIPv4                          = 1     // IP (IP version 4)
+	AddrFamilyIPv6                          = 2     // IP6 (IP version 6)
+	AddrFamilyNSAP                          = 3     // NSAP
+	AddrFamilyHDLC                          = 4     // HDLC (8-bit multidrop)
+	AddrFamilyBBN1822                       = 5     // BBN 1822
+	AddrFamily802                           = 6     // 802 (includes all 802 media plus Ethernet "canonical format")
+	AddrFamilyE163                          = 7     // E.163
+	AddrFamilyE164                          = 8     // E.164 (SMDS, Frame Relay, ATM)
+	AddrFamilyF69                           = 9     // F.69 (Telex)
+	AddrFamilyX121                          = 10    // X.121 (X.25, Frame Relay)
+	AddrFamilyIPX                           = 11    // IPX
+	AddrFamilyAppletalk                     = 12    // Appletalk
+	AddrFamilyDecnetIV                      = 13    // Decnet IV
+	AddrFamilyBanyanVines                   = 14    // Banyan Vines
+	AddrFamilyE164withSubaddress            = 15    // E.164 with NSAP format subaddress
+	AddrFamilyDNS                           = 16    // DNS (Domain Name System)
+	AddrFamilyDistinguishedName             = 17    // Distinguished Name
+	AddrFamilyASNumber                      = 18    // AS Number
+	AddrFamilyXTPoverIPv4                   = 19    // XTP over IP version 4
+	AddrFamilyXTPoverIPv6                   = 20    // XTP over IP version 6
+	AddrFamilyXTPnativemodeXTP              = 21    // XTP native mode XTP
+	AddrFamilyFibreChannelWorldWidePortName = 22    // Fibre Channel World-Wide Port Name
+	AddrFamilyFibreChannelWorldWideNodeName = 23    // Fibre Channel World-Wide Node Name
+	AddrFamilyGWID                          = 24    // GWID
+	AddrFamilyL2VPN                         = 25    // AFI for L2VPN information
+	AddrFamilyMPLSTPSectionEndpointID       = 26    // MPLS-TP Section Endpoint Identifier
+	AddrFamilyMPLSTPLSPEndpointID           = 27    // MPLS-TP LSP Endpoint Identifier
+	AddrFamilyMPLSTPPseudowireEndpointID    = 28    // MPLS-TP Pseudowire Endpoint Identifier
+	AddrFamilyMTIPv4                        = 29    // MT IP: Multi-Topology IP version 4
+	AddrFamilyMTIPv6                        = 30    // MT IPv6: Multi-Topology IP version 6
+	AddrFamilyEIGRPCommonServiceFamily      = 16384 // EIGRP Common Service Family
+	AddrFamilyEIGRPIPv4ServiceFamily        = 16385 // EIGRP IPv4 Service Family
+	AddrFamilyEIGRPIPv6ServiceFamily        = 16386 // EIGRP IPv6 Service Family
+	AddrFamilyLISPCanonicalAddressFormat    = 16387 // LISP Canonical Address Format (LCAF)
+	AddrFamilyBGPLS                         = 16388 // BGP-LS
+	AddrFamily48bitMAC                      = 16389 // 48-bit MAC
+	AddrFamily64bitMAC                      = 16390 // 64-bit MAC
+	AddrFamilyOUI                           = 16391 // OUI
+	AddrFamilyMACFinal24bits                = 16392 // MAC/24
+	AddrFamilyMACFinal40bits                = 16393 // MAC/40
+	AddrFamilyIPv6Initial64bits             = 16394 // IPv6/64
+	AddrFamilyRBridgePortID                 = 16395 // RBridge Port ID
+	AddrFamilyTRILLNickname                 = 16396 // TRILL Nickname
+)
diff --git a/vendor/golang.org/x/net/internal/iana/gen.go b/vendor/golang.org/x/net/internal/iana/gen.go
new file mode 100644
index 0000000000..2227e09e89
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/iana/gen.go
@@ -0,0 +1,387 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+//go:generate go run gen.go
+
+// This program generates internet protocol constants and tables by
+// reading IANA protocol registries.
+package main
+
+import (
+	"bytes"
+	"encoding/xml"
+	"fmt"
+	"go/format"
+	"io"
+	"io/ioutil"
+	"net/http"
+	"os"
+	"strconv"
+	"strings"
+)
+
+var registries = []struct {
+	url   string
+	parse func(io.Writer, io.Reader) error
+}{
+	{
+		"https://www.iana.org/assignments/dscp-registry/dscp-registry.xml",
+		parseDSCPRegistry,
+	},
+	{
+		"https://www.iana.org/assignments/ipv4-tos-byte/ipv4-tos-byte.xml",
+		parseTOSTCByte,
+	},
+	{
+		"https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml",
+		parseProtocolNumbers,
+	},
+	{
+		"http://www.iana.org/assignments/address-family-numbers/address-family-numbers.xml",
+		parseAddrFamilyNumbers,
+	},
+}
+
+func main() {
+	var bb bytes.Buffer
+	fmt.Fprintf(&bb, "// go generate gen.go\n")
+	fmt.Fprintf(&bb, "// Code generated by the command above; DO NOT EDIT.\n\n")
+	fmt.Fprintf(&bb, "// Package iana provides protocol number resources managed by the Internet Assigned Numbers Authority (IANA).\n")
+	fmt.Fprintf(&bb, `package iana // import "golang.org/x/net/internal/iana"`+"\n\n")
+	for _, r := range registries {
+		resp, err := http.Get(r.url)
+		if err != nil {
+			fmt.Fprintln(os.Stderr, err)
+			os.Exit(1)
+		}
+		defer resp.Body.Close()
+		if resp.StatusCode != http.StatusOK {
+			fmt.Fprintf(os.Stderr, "got HTTP status code %v for %v\n", resp.StatusCode, r.url)
+			os.Exit(1)
+		}
+		if err := r.parse(&bb, resp.Body); err != nil {
+			fmt.Fprintln(os.Stderr, err)
+			os.Exit(1)
+		}
+		fmt.Fprintf(&bb, "\n")
+	}
+	b, err := format.Source(bb.Bytes())
+	if err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+	if err := ioutil.WriteFile("const.go", b, 0644); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+}
+
+func parseDSCPRegistry(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var dr dscpRegistry
+	if err := dec.Decode(&dr); err != nil {
+		return err
+	}
+	drs := dr.escape()
+	fmt.Fprintf(w, "// %s, Updated: %s\n", dr.Title, dr.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, dr := range drs {
+		fmt.Fprintf(w, "DiffServ%s = %#x", dr.Name, dr.Value)
+		fmt.Fprintf(w, "// %s\n", dr.OrigName)
+	}
+	fmt.Fprintf(w, ")\n")
+	return nil
+}
+
+type dscpRegistry struct {
+	XMLName     xml.Name `xml:"registry"`
+	Title       string   `xml:"title"`
+	Updated     string   `xml:"updated"`
+	Note        string   `xml:"note"`
+	RegTitle    string   `xml:"registry>title"`
+	PoolRecords []struct {
+		Name  string `xml:"name"`
+		Space string `xml:"space"`
+	} `xml:"registry>record"`
+	Records []struct {
+		Name  string `xml:"name"`
+		Space string `xml:"space"`
+	} `xml:"registry>registry>record"`
+}
+
+type canonDSCPRecord struct {
+	OrigName string
+	Name     string
+	Value    int
+}
+
+func (drr *dscpRegistry) escape() []canonDSCPRecord {
+	drs := make([]canonDSCPRecord, len(drr.Records))
+	sr := strings.NewReplacer(
+		"+", "",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, dr := range drr.Records {
+		s := strings.TrimSpace(dr.Name)
+		drs[i].OrigName = s
+		drs[i].Name = sr.Replace(s)
+		n, err := strconv.ParseUint(dr.Space, 2, 8)
+		if err != nil {
+			continue
+		}
+		drs[i].Value = int(n) << 2
+	}
+	return drs
+}
+
+func parseTOSTCByte(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var ttb tosTCByte
+	if err := dec.Decode(&ttb); err != nil {
+		return err
+	}
+	trs := ttb.escape()
+	fmt.Fprintf(w, "// %s, Updated: %s\n", ttb.Title, ttb.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, tr := range trs {
+		fmt.Fprintf(w, "%s = %#x", tr.Keyword, tr.Value)
+		fmt.Fprintf(w, "// %s\n", tr.OrigKeyword)
+	}
+	fmt.Fprintf(w, ")\n")
+	return nil
+}
+
+type tosTCByte struct {
+	XMLName  xml.Name `xml:"registry"`
+	Title    string   `xml:"title"`
+	Updated  string   `xml:"updated"`
+	Note     string   `xml:"note"`
+	RegTitle string   `xml:"registry>title"`
+	Records  []struct {
+		Binary  string `xml:"binary"`
+		Keyword string `xml:"keyword"`
+	} `xml:"registry>record"`
+}
+
+type canonTOSTCByteRecord struct {
+	OrigKeyword string
+	Keyword     string
+	Value       int
+}
+
+func (ttb *tosTCByte) escape() []canonTOSTCByteRecord {
+	trs := make([]canonTOSTCByteRecord, len(ttb.Records))
+	sr := strings.NewReplacer(
+		"Capable", "",
+		"(", "",
+		")", "",
+		"+", "",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, tr := range ttb.Records {
+		s := strings.TrimSpace(tr.Keyword)
+		trs[i].OrigKeyword = s
+		ss := strings.Split(s, " ")
+		if len(ss) > 1 {
+			trs[i].Keyword = strings.Join(ss[1:], " ")
+		} else {
+			trs[i].Keyword = ss[0]
+		}
+		trs[i].Keyword = sr.Replace(trs[i].Keyword)
+		n, err := strconv.ParseUint(tr.Binary, 2, 8)
+		if err != nil {
+			continue
+		}
+		trs[i].Value = int(n)
+	}
+	return trs
+}
+
+func parseProtocolNumbers(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var pn protocolNumbers
+	if err := dec.Decode(&pn); err != nil {
+		return err
+	}
+	prs := pn.escape()
+	prs = append([]canonProtocolRecord{{
+		Name:  "IP",
+		Descr: "IPv4 encapsulation, pseudo protocol number",
+		Value: 0,
+	}}, prs...)
+	fmt.Fprintf(w, "// %s, Updated: %s\n", pn.Title, pn.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, pr := range prs {
+		if pr.Name == "" {
+			continue
+		}
+		fmt.Fprintf(w, "Protocol%s = %d", pr.Name, pr.Value)
+		s := pr.Descr
+		if s == "" {
+			s = pr.OrigName
+		}
+		fmt.Fprintf(w, "// %s\n", s)
+	}
+	fmt.Fprintf(w, ")\n")
+	return nil
+}
+
+type protocolNumbers struct {
+	XMLName  xml.Name `xml:"registry"`
+	Title    string   `xml:"title"`
+	Updated  string   `xml:"updated"`
+	RegTitle string   `xml:"registry>title"`
+	Note     string   `xml:"registry>note"`
+	Records  []struct {
+		Value string `xml:"value"`
+		Name  string `xml:"name"`
+		Descr string `xml:"description"`
+	} `xml:"registry>record"`
+}
+
+type canonProtocolRecord struct {
+	OrigName string
+	Name     string
+	Descr    string
+	Value    int
+}
+
+func (pn *protocolNumbers) escape() []canonProtocolRecord {
+	prs := make([]canonProtocolRecord, len(pn.Records))
+	sr := strings.NewReplacer(
+		"-in-", "in",
+		"-within-", "within",
+		"-over-", "over",
+		"+", "P",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, pr := range pn.Records {
+		if strings.Contains(pr.Name, "Deprecated") ||
+			strings.Contains(pr.Name, "deprecated") {
+			continue
+		}
+		prs[i].OrigName = pr.Name
+		s := strings.TrimSpace(pr.Name)
+		switch pr.Name {
+		case "ISIS over IPv4":
+			prs[i].Name = "ISIS"
+		case "manet":
+			prs[i].Name = "MANET"
+		default:
+			prs[i].Name = sr.Replace(s)
+		}
+		ss := strings.Split(pr.Descr, "\n")
+		for i := range ss {
+			ss[i] = strings.TrimSpace(ss[i])
+		}
+		if len(ss) > 1 {
+			prs[i].Descr = strings.Join(ss, " ")
+		} else {
+			prs[i].Descr = ss[0]
+		}
+		prs[i].Value, _ = strconv.Atoi(pr.Value)
+	}
+	return prs
+}
+
+func parseAddrFamilyNumbers(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var afn addrFamilylNumbers
+	if err := dec.Decode(&afn); err != nil {
+		return err
+	}
+	afrs := afn.escape()
+	fmt.Fprintf(w, "// %s, Updated: %s\n", afn.Title, afn.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, afr := range afrs {
+		if afr.Name == "" {
+			continue
+		}
+		fmt.Fprintf(w, "AddrFamily%s = %d", afr.Name, afr.Value)
+		fmt.Fprintf(w, "// %s\n", afr.Descr)
+	}
+	fmt.Fprintf(w, ")\n")
+	return nil
+}
+
+type addrFamilylNumbers struct {
+	XMLName  xml.Name `xml:"registry"`
+	Title    string   `xml:"title"`
+	Updated  string   `xml:"updated"`
+	RegTitle string   `xml:"registry>title"`
+	Note     string   `xml:"registry>note"`
+	Records  []struct {
+		Value string `xml:"value"`
+		Descr string `xml:"description"`
+	} `xml:"registry>record"`
+}
+
+type canonAddrFamilyRecord struct {
+	Name  string
+	Descr string
+	Value int
+}
+
+func (afn *addrFamilylNumbers) escape() []canonAddrFamilyRecord {
+	afrs := make([]canonAddrFamilyRecord, len(afn.Records))
+	sr := strings.NewReplacer(
+		"IP version 4", "IPv4",
+		"IP version 6", "IPv6",
+		"Identifier", "ID",
+		"-", "",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, afr := range afn.Records {
+		if strings.Contains(afr.Descr, "Unassigned") ||
+			strings.Contains(afr.Descr, "Reserved") {
+			continue
+		}
+		afrs[i].Descr = afr.Descr
+		s := strings.TrimSpace(afr.Descr)
+		switch s {
+		case "IP (IP version 4)":
+			afrs[i].Name = "IPv4"
+		case "IP6 (IP version 6)":
+			afrs[i].Name = "IPv6"
+		case "AFI for L2VPN information":
+			afrs[i].Name = "L2VPN"
+		case "E.164 with NSAP format subaddress":
+			afrs[i].Name = "E164withSubaddress"
+		case "MT IP: Multi-Topology IP version 4":
+			afrs[i].Name = "MTIPv4"
+		case "MAC/24":
+			afrs[i].Name = "MACFinal24bits"
+		case "MAC/40":
+			afrs[i].Name = "MACFinal40bits"
+		case "IPv6/64":
+			afrs[i].Name = "IPv6Initial64bits"
+		default:
+			n := strings.Index(s, "(")
+			if n > 0 {
+				s = s[:n]
+			}
+			n = strings.Index(s, ":")
+			if n > 0 {
+				s = s[:n]
+			}
+			afrs[i].Name = sr.Replace(s)
+		}
+		afrs[i].Value, _ = strconv.Atoi(afr.Value)
+	}
+	return afrs
+}
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr.go b/vendor/golang.org/x/net/internal/socket/cmsghdr.go
new file mode 100644
index 0000000000..1eb07d26de
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr.go
@@ -0,0 +1,11 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris
+
+package socket
+
+func (h *cmsghdr) len() int { return int(h.Len) }
+func (h *cmsghdr) lvl() int { return int(h.Level) }
+func (h *cmsghdr) typ() int { return int(h.Type) }
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr_bsd.go b/vendor/golang.org/x/net/internal/socket/cmsghdr_bsd.go
new file mode 100644
index 0000000000..d1d0c2de54
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr_bsd.go
@@ -0,0 +1,13 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd openbsd
+
+package socket
+
+func (h *cmsghdr) set(l, lvl, typ int) {
+	h.Len = uint32(l)
+	h.Level = int32(lvl)
+	h.Type = int32(typ)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_32bit.go b/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_32bit.go
new file mode 100644
index 0000000000..bac66811dd
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_32bit.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm mips mipsle 386
+// +build linux
+
+package socket
+
+func (h *cmsghdr) set(l, lvl, typ int) {
+	h.Len = uint32(l)
+	h.Level = int32(lvl)
+	h.Type = int32(typ)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_64bit.go b/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_64bit.go
new file mode 100644
index 0000000000..63f0534fa7
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr_linux_64bit.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm64 amd64 ppc64 ppc64le mips64 mips64le s390x
+// +build linux
+
+package socket
+
+func (h *cmsghdr) set(l, lvl, typ int) {
+	h.Len = uint64(l)
+	h.Level = int32(lvl)
+	h.Type = int32(typ)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr_solaris_64bit.go b/vendor/golang.org/x/net/internal/socket/cmsghdr_solaris_64bit.go
new file mode 100644
index 0000000000..7dedd430eb
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr_solaris_64bit.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build amd64
+// +build solaris
+
+package socket
+
+func (h *cmsghdr) set(l, lvl, typ int) {
+	h.Len = uint32(l)
+	h.Level = int32(lvl)
+	h.Type = int32(typ)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/cmsghdr_stub.go b/vendor/golang.org/x/net/internal/socket/cmsghdr_stub.go
new file mode 100644
index 0000000000..a4e71226f8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/cmsghdr_stub.go
@@ -0,0 +1,17 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris
+
+package socket
+
+type cmsghdr struct{}
+
+const sizeofCmsghdr = 0
+
+func (h *cmsghdr) len() int { return 0 }
+func (h *cmsghdr) lvl() int { return 0 }
+func (h *cmsghdr) typ() int { return 0 }
+
+func (h *cmsghdr) set(l, lvl, typ int) {}
diff --git a/vendor/golang.org/x/net/internal/socket/defs_darwin.go b/vendor/golang.org/x/net/internal/socket/defs_darwin.go
new file mode 100644
index 0000000000..14e28c0b45
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_darwin.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_dragonfly.go b/vendor/golang.org/x/net/internal/socket/defs_dragonfly.go
new file mode 100644
index 0000000000..14e28c0b45
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_dragonfly.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_freebsd.go b/vendor/golang.org/x/net/internal/socket/defs_freebsd.go
new file mode 100644
index 0000000000..14e28c0b45
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_freebsd.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_linux.go b/vendor/golang.org/x/net/internal/socket/defs_linux.go
new file mode 100644
index 0000000000..ce9ec2f6d7
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_linux.go
@@ -0,0 +1,49 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <linux/in.h>
+#include <linux/in6.h>
+
+#define _GNU_SOURCE
+#include <sys/socket.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type mmsghdr C.struct_mmsghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofMmsghdr = C.sizeof_struct_mmsghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_netbsd.go b/vendor/golang.org/x/net/internal/socket/defs_netbsd.go
new file mode 100644
index 0000000000..3f84335699
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_netbsd.go
@@ -0,0 +1,47 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type mmsghdr C.struct_mmsghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofMmsghdr = C.sizeof_struct_mmsghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_openbsd.go b/vendor/golang.org/x/net/internal/socket/defs_openbsd.go
new file mode 100644
index 0000000000..14e28c0b45
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_openbsd.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/defs_solaris.go b/vendor/golang.org/x/net/internal/socket/defs_solaris.go
new file mode 100644
index 0000000000..14e28c0b45
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/defs_solaris.go
@@ -0,0 +1,44 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package socket
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysAF_UNSPEC = C.AF_UNSPEC
+	sysAF_INET   = C.AF_INET
+	sysAF_INET6  = C.AF_INET6
+
+	sysSOCK_RAW = C.SOCK_RAW
+)
+
+type iovec C.struct_iovec
+
+type msghdr C.struct_msghdr
+
+type cmsghdr C.struct_cmsghdr
+
+type sockaddrInet C.struct_sockaddr_in
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+const (
+	sizeofIovec   = C.sizeof_struct_iovec
+	sizeofMsghdr  = C.sizeof_struct_msghdr
+	sizeofCmsghdr = C.sizeof_struct_cmsghdr
+
+	sizeofSockaddrInet  = C.sizeof_struct_sockaddr_in
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/error_unix.go b/vendor/golang.org/x/net/internal/socket/error_unix.go
new file mode 100644
index 0000000000..93dff91802
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/error_unix.go
@@ -0,0 +1,31 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris
+
+package socket
+
+import "syscall"
+
+var (
+	errEAGAIN error = syscall.EAGAIN
+	errEINVAL error = syscall.EINVAL
+	errENOENT error = syscall.ENOENT
+)
+
+// errnoErr returns common boxed Errno values, to prevent allocations
+// at runtime.
+func errnoErr(errno syscall.Errno) error {
+	switch errno {
+	case 0:
+		return nil
+	case syscall.EAGAIN:
+		return errEAGAIN
+	case syscall.EINVAL:
+		return errEINVAL
+	case syscall.ENOENT:
+		return errENOENT
+	}
+	return errno
+}
diff --git a/vendor/golang.org/x/net/internal/socket/error_windows.go b/vendor/golang.org/x/net/internal/socket/error_windows.go
new file mode 100644
index 0000000000..6a6379a8b0
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/error_windows.go
@@ -0,0 +1,26 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import "syscall"
+
+var (
+	errERROR_IO_PENDING error = syscall.ERROR_IO_PENDING
+	errEINVAL           error = syscall.EINVAL
+)
+
+// errnoErr returns common boxed Errno values, to prevent allocations
+// at runtime.
+func errnoErr(errno syscall.Errno) error {
+	switch errno {
+	case 0:
+		return nil
+	case syscall.ERROR_IO_PENDING:
+		return errERROR_IO_PENDING
+	case syscall.EINVAL:
+		return errEINVAL
+	}
+	return errno
+}
diff --git a/vendor/golang.org/x/net/internal/socket/iovec_32bit.go b/vendor/golang.org/x/net/internal/socket/iovec_32bit.go
new file mode 100644
index 0000000000..05d6082d14
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/iovec_32bit.go
@@ -0,0 +1,19 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm mips mipsle 386
+// +build darwin dragonfly freebsd linux netbsd openbsd
+
+package socket
+
+import "unsafe"
+
+func (v *iovec) set(b []byte) {
+	l := len(b)
+	if l == 0 {
+		return
+	}
+	v.Base = (*byte)(unsafe.Pointer(&b[0]))
+	v.Len = uint32(l)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/iovec_64bit.go b/vendor/golang.org/x/net/internal/socket/iovec_64bit.go
new file mode 100644
index 0000000000..afb34ad58e
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/iovec_64bit.go
@@ -0,0 +1,19 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm64 amd64 ppc64 ppc64le mips64 mips64le s390x
+// +build darwin dragonfly freebsd linux netbsd openbsd
+
+package socket
+
+import "unsafe"
+
+func (v *iovec) set(b []byte) {
+	l := len(b)
+	if l == 0 {
+		return
+	}
+	v.Base = (*byte)(unsafe.Pointer(&b[0]))
+	v.Len = uint64(l)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/iovec_solaris_64bit.go b/vendor/golang.org/x/net/internal/socket/iovec_solaris_64bit.go
new file mode 100644
index 0000000000..8d17a40c40
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/iovec_solaris_64bit.go
@@ -0,0 +1,19 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build amd64
+// +build solaris
+
+package socket
+
+import "unsafe"
+
+func (v *iovec) set(b []byte) {
+	l := len(b)
+	if l == 0 {
+		return
+	}
+	v.Base = (*int8)(unsafe.Pointer(&b[0]))
+	v.Len = uint64(l)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/iovec_stub.go b/vendor/golang.org/x/net/internal/socket/iovec_stub.go
new file mode 100644
index 0000000000..c87d2a9339
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/iovec_stub.go
@@ -0,0 +1,11 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris
+
+package socket
+
+type iovec struct{}
+
+func (v *iovec) set(b []byte) {}
diff --git a/vendor/golang.org/x/net/internal/socket/mmsghdr_stub.go b/vendor/golang.org/x/net/internal/socket/mmsghdr_stub.go
new file mode 100644
index 0000000000..2e80a9cb74
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/mmsghdr_stub.go
@@ -0,0 +1,21 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !linux,!netbsd
+
+package socket
+
+import "net"
+
+type mmsghdr struct{}
+
+type mmsghdrs []mmsghdr
+
+func (hs mmsghdrs) pack(ms []Message, parseFn func([]byte, string) (net.Addr, error), marshalFn func(net.Addr) []byte) error {
+	return nil
+}
+
+func (hs mmsghdrs) unpack(ms []Message, parseFn func([]byte, string) (net.Addr, error), hint string) error {
+	return nil
+}
diff --git a/vendor/golang.org/x/net/internal/socket/mmsghdr_unix.go b/vendor/golang.org/x/net/internal/socket/mmsghdr_unix.go
new file mode 100644
index 0000000000..3c42ea7ad8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/mmsghdr_unix.go
@@ -0,0 +1,42 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux netbsd
+
+package socket
+
+import "net"
+
+type mmsghdrs []mmsghdr
+
+func (hs mmsghdrs) pack(ms []Message, parseFn func([]byte, string) (net.Addr, error), marshalFn func(net.Addr) []byte) error {
+	for i := range hs {
+		vs := make([]iovec, len(ms[i].Buffers))
+		var sa []byte
+		if parseFn != nil {
+			sa = make([]byte, sizeofSockaddrInet6)
+		}
+		if marshalFn != nil {
+			sa = marshalFn(ms[i].Addr)
+		}
+		hs[i].Hdr.pack(vs, ms[i].Buffers, ms[i].OOB, sa)
+	}
+	return nil
+}
+
+func (hs mmsghdrs) unpack(ms []Message, parseFn func([]byte, string) (net.Addr, error), hint string) error {
+	for i := range hs {
+		ms[i].N = int(hs[i].Len)
+		ms[i].NN = hs[i].Hdr.controllen()
+		ms[i].Flags = hs[i].Hdr.flags()
+		if parseFn != nil {
+			var err error
+			ms[i].Addr, err = parseFn(hs[i].Hdr.name(), hint)
+			if err != nil {
+				return err
+			}
+		}
+	}
+	return nil
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_bsd.go b/vendor/golang.org/x/net/internal/socket/msghdr_bsd.go
new file mode 100644
index 0000000000..5567afc88d
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_bsd.go
@@ -0,0 +1,39 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd openbsd
+
+package socket
+
+import "unsafe"
+
+func (h *msghdr) pack(vs []iovec, bs [][]byte, oob []byte, sa []byte) {
+	for i := range vs {
+		vs[i].set(bs[i])
+	}
+	h.setIov(vs)
+	if len(oob) > 0 {
+		h.Control = (*byte)(unsafe.Pointer(&oob[0]))
+		h.Controllen = uint32(len(oob))
+	}
+	if sa != nil {
+		h.Name = (*byte)(unsafe.Pointer(&sa[0]))
+		h.Namelen = uint32(len(sa))
+	}
+}
+
+func (h *msghdr) name() []byte {
+	if h.Name != nil && h.Namelen > 0 {
+		return (*[sizeofSockaddrInet6]byte)(unsafe.Pointer(h.Name))[:h.Namelen]
+	}
+	return nil
+}
+
+func (h *msghdr) controllen() int {
+	return int(h.Controllen)
+}
+
+func (h *msghdr) flags() int {
+	return int(h.Flags)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_bsdvar.go b/vendor/golang.org/x/net/internal/socket/msghdr_bsdvar.go
new file mode 100644
index 0000000000..b8c87b72b9
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_bsdvar.go
@@ -0,0 +1,16 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd
+
+package socket
+
+func (h *msghdr) setIov(vs []iovec) {
+	l := len(vs)
+	if l == 0 {
+		return
+	}
+	h.Iov = &vs[0]
+	h.Iovlen = int32(l)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_linux.go b/vendor/golang.org/x/net/internal/socket/msghdr_linux.go
new file mode 100644
index 0000000000..5a38798cc0
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_linux.go
@@ -0,0 +1,36 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import "unsafe"
+
+func (h *msghdr) pack(vs []iovec, bs [][]byte, oob []byte, sa []byte) {
+	for i := range vs {
+		vs[i].set(bs[i])
+	}
+	h.setIov(vs)
+	if len(oob) > 0 {
+		h.setControl(oob)
+	}
+	if sa != nil {
+		h.Name = (*byte)(unsafe.Pointer(&sa[0]))
+		h.Namelen = uint32(len(sa))
+	}
+}
+
+func (h *msghdr) name() []byte {
+	if h.Name != nil && h.Namelen > 0 {
+		return (*[sizeofSockaddrInet6]byte)(unsafe.Pointer(h.Name))[:h.Namelen]
+	}
+	return nil
+}
+
+func (h *msghdr) controllen() int {
+	return int(h.Controllen)
+}
+
+func (h *msghdr) flags() int {
+	return int(h.Flags)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_linux_32bit.go b/vendor/golang.org/x/net/internal/socket/msghdr_linux_32bit.go
new file mode 100644
index 0000000000..a7a5987c88
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_linux_32bit.go
@@ -0,0 +1,24 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm mips mipsle 386
+// +build linux
+
+package socket
+
+import "unsafe"
+
+func (h *msghdr) setIov(vs []iovec) {
+	l := len(vs)
+	if l == 0 {
+		return
+	}
+	h.Iov = &vs[0]
+	h.Iovlen = uint32(l)
+}
+
+func (h *msghdr) setControl(b []byte) {
+	h.Control = (*byte)(unsafe.Pointer(&b[0]))
+	h.Controllen = uint32(len(b))
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_linux_64bit.go b/vendor/golang.org/x/net/internal/socket/msghdr_linux_64bit.go
new file mode 100644
index 0000000000..610fc4f3bb
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_linux_64bit.go
@@ -0,0 +1,24 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build arm64 amd64 ppc64 ppc64le mips64 mips64le s390x
+// +build linux
+
+package socket
+
+import "unsafe"
+
+func (h *msghdr) setIov(vs []iovec) {
+	l := len(vs)
+	if l == 0 {
+		return
+	}
+	h.Iov = &vs[0]
+	h.Iovlen = uint64(l)
+}
+
+func (h *msghdr) setControl(b []byte) {
+	h.Control = (*byte)(unsafe.Pointer(&b[0]))
+	h.Controllen = uint64(len(b))
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_openbsd.go b/vendor/golang.org/x/net/internal/socket/msghdr_openbsd.go
new file mode 100644
index 0000000000..71a69e2513
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_openbsd.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+func (h *msghdr) setIov(vs []iovec) {
+	l := len(vs)
+	if l == 0 {
+		return
+	}
+	h.Iov = &vs[0]
+	h.Iovlen = uint32(l)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_solaris_64bit.go b/vendor/golang.org/x/net/internal/socket/msghdr_solaris_64bit.go
new file mode 100644
index 0000000000..6465b20732
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_solaris_64bit.go
@@ -0,0 +1,36 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build amd64
+// +build solaris
+
+package socket
+
+import "unsafe"
+
+func (h *msghdr) pack(vs []iovec, bs [][]byte, oob []byte, sa []byte) {
+	for i := range vs {
+		vs[i].set(bs[i])
+	}
+	if len(vs) > 0 {
+		h.Iov = &vs[0]
+		h.Iovlen = int32(len(vs))
+	}
+	if len(oob) > 0 {
+		h.Accrights = (*int8)(unsafe.Pointer(&oob[0]))
+		h.Accrightslen = int32(len(oob))
+	}
+	if sa != nil {
+		h.Name = (*byte)(unsafe.Pointer(&sa[0]))
+		h.Namelen = uint32(len(sa))
+	}
+}
+
+func (h *msghdr) controllen() int {
+	return int(h.Accrightslen)
+}
+
+func (h *msghdr) flags() int {
+	return int(NativeEndian.Uint32(h.Pad_cgo_2[:]))
+}
diff --git a/vendor/golang.org/x/net/internal/socket/msghdr_stub.go b/vendor/golang.org/x/net/internal/socket/msghdr_stub.go
new file mode 100644
index 0000000000..64e8173352
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/msghdr_stub.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris
+
+package socket
+
+type msghdr struct{}
+
+func (h *msghdr) pack(vs []iovec, bs [][]byte, oob []byte, sa []byte) {}
+func (h *msghdr) name() []byte                                        { return nil }
+func (h *msghdr) controllen() int                                     { return 0 }
+func (h *msghdr) flags() int                                          { return 0 }
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn.go b/vendor/golang.org/x/net/internal/socket/rawconn.go
new file mode 100644
index 0000000000..d6871d55f7
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn.go
@@ -0,0 +1,66 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+
+package socket
+
+import (
+	"errors"
+	"net"
+	"os"
+	"syscall"
+)
+
+// A Conn represents a raw connection.
+type Conn struct {
+	network string
+	c       syscall.RawConn
+}
+
+// NewConn returns a new raw connection.
+func NewConn(c net.Conn) (*Conn, error) {
+	var err error
+	var cc Conn
+	switch c := c.(type) {
+	case *net.TCPConn:
+		cc.network = "tcp"
+		cc.c, err = c.SyscallConn()
+	case *net.UDPConn:
+		cc.network = "udp"
+		cc.c, err = c.SyscallConn()
+	case *net.IPConn:
+		cc.network = "ip"
+		cc.c, err = c.SyscallConn()
+	default:
+		return nil, errors.New("unknown connection type")
+	}
+	if err != nil {
+		return nil, err
+	}
+	return &cc, nil
+}
+
+func (o *Option) get(c *Conn, b []byte) (int, error) {
+	var operr error
+	var n int
+	fn := func(s uintptr) {
+		n, operr = getsockopt(s, o.Level, o.Name, b)
+	}
+	if err := c.c.Control(fn); err != nil {
+		return 0, err
+	}
+	return n, os.NewSyscallError("getsockopt", operr)
+}
+
+func (o *Option) set(c *Conn, b []byte) error {
+	var operr error
+	fn := func(s uintptr) {
+		operr = setsockopt(s, o.Level, o.Name, b)
+	}
+	if err := c.c.Control(fn); err != nil {
+		return err
+	}
+	return os.NewSyscallError("setsockopt", operr)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn_mmsg.go b/vendor/golang.org/x/net/internal/socket/rawconn_mmsg.go
new file mode 100644
index 0000000000..499164a3fb
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn_mmsg.go
@@ -0,0 +1,74 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build linux
+
+package socket
+
+import (
+	"net"
+	"os"
+	"syscall"
+)
+
+func (c *Conn) recvMsgs(ms []Message, flags int) (int, error) {
+	hs := make(mmsghdrs, len(ms))
+	var parseFn func([]byte, string) (net.Addr, error)
+	if c.network != "tcp" {
+		parseFn = parseInetAddr
+	}
+	if err := hs.pack(ms, parseFn, nil); err != nil {
+		return 0, err
+	}
+	var operr error
+	var n int
+	fn := func(s uintptr) bool {
+		n, operr = recvmmsg(s, hs, flags)
+		if operr == syscall.EAGAIN {
+			return false
+		}
+		return true
+	}
+	if err := c.c.Read(fn); err != nil {
+		return n, err
+	}
+	if operr != nil {
+		return n, os.NewSyscallError("recvmmsg", operr)
+	}
+	if err := hs[:n].unpack(ms[:n], parseFn, c.network); err != nil {
+		return n, err
+	}
+	return n, nil
+}
+
+func (c *Conn) sendMsgs(ms []Message, flags int) (int, error) {
+	hs := make(mmsghdrs, len(ms))
+	var marshalFn func(net.Addr) []byte
+	if c.network != "tcp" {
+		marshalFn = marshalInetAddr
+	}
+	if err := hs.pack(ms, nil, marshalFn); err != nil {
+		return 0, err
+	}
+	var operr error
+	var n int
+	fn := func(s uintptr) bool {
+		n, operr = sendmmsg(s, hs, flags)
+		if operr == syscall.EAGAIN {
+			return false
+		}
+		return true
+	}
+	if err := c.c.Write(fn); err != nil {
+		return n, err
+	}
+	if operr != nil {
+		return n, os.NewSyscallError("sendmmsg", operr)
+	}
+	if err := hs[:n].unpack(ms[:n], nil, ""); err != nil {
+		return n, err
+	}
+	return n, nil
+}
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn_msg.go b/vendor/golang.org/x/net/internal/socket/rawconn_msg.go
new file mode 100644
index 0000000000..b21d2e6418
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn_msg.go
@@ -0,0 +1,77 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris windows
+
+package socket
+
+import (
+	"os"
+	"syscall"
+)
+
+func (c *Conn) recvMsg(m *Message, flags int) error {
+	var h msghdr
+	vs := make([]iovec, len(m.Buffers))
+	var sa []byte
+	if c.network != "tcp" {
+		sa = make([]byte, sizeofSockaddrInet6)
+	}
+	h.pack(vs, m.Buffers, m.OOB, sa)
+	var operr error
+	var n int
+	fn := func(s uintptr) bool {
+		n, operr = recvmsg(s, &h, flags)
+		if operr == syscall.EAGAIN {
+			return false
+		}
+		return true
+	}
+	if err := c.c.Read(fn); err != nil {
+		return err
+	}
+	if operr != nil {
+		return os.NewSyscallError("recvmsg", operr)
+	}
+	if c.network != "tcp" {
+		var err error
+		m.Addr, err = parseInetAddr(sa[:], c.network)
+		if err != nil {
+			return err
+		}
+	}
+	m.N = n
+	m.NN = h.controllen()
+	m.Flags = h.flags()
+	return nil
+}
+
+func (c *Conn) sendMsg(m *Message, flags int) error {
+	var h msghdr
+	vs := make([]iovec, len(m.Buffers))
+	var sa []byte
+	if m.Addr != nil {
+		sa = marshalInetAddr(m.Addr)
+	}
+	h.pack(vs, m.Buffers, m.OOB, sa)
+	var operr error
+	var n int
+	fn := func(s uintptr) bool {
+		n, operr = sendmsg(s, &h, flags)
+		if operr == syscall.EAGAIN {
+			return false
+		}
+		return true
+	}
+	if err := c.c.Write(fn); err != nil {
+		return err
+	}
+	if operr != nil {
+		return os.NewSyscallError("sendmsg", operr)
+	}
+	m.N = n
+	m.NN = len(m.OOB)
+	return nil
+}
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn_nommsg.go b/vendor/golang.org/x/net/internal/socket/rawconn_nommsg.go
new file mode 100644
index 0000000000..f78832aa4a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn_nommsg.go
@@ -0,0 +1,18 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build !linux
+
+package socket
+
+import "errors"
+
+func (c *Conn) recvMsgs(ms []Message, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func (c *Conn) sendMsgs(ms []Message, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn_nomsg.go b/vendor/golang.org/x/net/internal/socket/rawconn_nomsg.go
new file mode 100644
index 0000000000..96733cbe1b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn_nomsg.go
@@ -0,0 +1,18 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package socket
+
+import "errors"
+
+func (c *Conn) recvMsg(m *Message, flags int) error {
+	return errors.New("not implemented")
+}
+
+func (c *Conn) sendMsg(m *Message, flags int) error {
+	return errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/rawconn_stub.go b/vendor/golang.org/x/net/internal/socket/rawconn_stub.go
new file mode 100644
index 0000000000..d2add1a0aa
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/rawconn_stub.go
@@ -0,0 +1,25 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.9
+
+package socket
+
+import "errors"
+
+func (c *Conn) recvMsg(m *Message, flags int) error {
+	return errors.New("not implemented")
+}
+
+func (c *Conn) sendMsg(m *Message, flags int) error {
+	return errors.New("not implemented")
+}
+
+func (c *Conn) recvMsgs(ms []Message, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func (c *Conn) sendMsgs(ms []Message, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/reflect.go b/vendor/golang.org/x/net/internal/socket/reflect.go
new file mode 100644
index 0000000000..bb179f11d8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/reflect.go
@@ -0,0 +1,62 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.9
+
+package socket
+
+import (
+	"errors"
+	"net"
+	"os"
+	"reflect"
+	"runtime"
+)
+
+// A Conn represents a raw connection.
+type Conn struct {
+	c net.Conn
+}
+
+// NewConn returns a new raw connection.
+func NewConn(c net.Conn) (*Conn, error) {
+	return &Conn{c: c}, nil
+}
+
+func (o *Option) get(c *Conn, b []byte) (int, error) {
+	s, err := socketOf(c.c)
+	if err != nil {
+		return 0, err
+	}
+	n, err := getsockopt(s, o.Level, o.Name, b)
+	return n, os.NewSyscallError("getsockopt", err)
+}
+
+func (o *Option) set(c *Conn, b []byte) error {
+	s, err := socketOf(c.c)
+	if err != nil {
+		return err
+	}
+	return os.NewSyscallError("setsockopt", setsockopt(s, o.Level, o.Name, b))
+}
+
+func socketOf(c net.Conn) (uintptr, error) {
+	switch c.(type) {
+	case *net.TCPConn, *net.UDPConn, *net.IPConn:
+		v := reflect.ValueOf(c)
+		switch e := v.Elem(); e.Kind() {
+		case reflect.Struct:
+			fd := e.FieldByName("conn").FieldByName("fd")
+			switch e := fd.Elem(); e.Kind() {
+			case reflect.Struct:
+				sysfd := e.FieldByName("sysfd")
+				if runtime.GOOS == "windows" {
+					return uintptr(sysfd.Uint()), nil
+				}
+				return uintptr(sysfd.Int()), nil
+			}
+		}
+	}
+	return 0, errors.New("invalid type")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/socket.go b/vendor/golang.org/x/net/internal/socket/socket.go
new file mode 100644
index 0000000000..5f9730e6d9
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/socket.go
@@ -0,0 +1,285 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package socket provides a portable interface for socket system
+// calls.
+package socket // import "golang.org/x/net/internal/socket"
+
+import (
+	"errors"
+	"net"
+	"unsafe"
+)
+
+// An Option represents a sticky socket option.
+type Option struct {
+	Level int // level
+	Name  int // name; must be equal or greater than 1
+	Len   int // length of value in bytes; must be equal or greater than 1
+}
+
+// Get reads a value for the option from the kernel.
+// It returns the number of bytes written into b.
+func (o *Option) Get(c *Conn, b []byte) (int, error) {
+	if o.Name < 1 || o.Len < 1 {
+		return 0, errors.New("invalid option")
+	}
+	if len(b) < o.Len {
+		return 0, errors.New("short buffer")
+	}
+	return o.get(c, b)
+}
+
+// GetInt returns an integer value for the option.
+//
+// The Len field of Option must be either 1 or 4.
+func (o *Option) GetInt(c *Conn) (int, error) {
+	if o.Len != 1 && o.Len != 4 {
+		return 0, errors.New("invalid option")
+	}
+	var b []byte
+	var bb [4]byte
+	if o.Len == 1 {
+		b = bb[:1]
+	} else {
+		b = bb[:4]
+	}
+	n, err := o.get(c, b)
+	if err != nil {
+		return 0, err
+	}
+	if n != o.Len {
+		return 0, errors.New("invalid option length")
+	}
+	if o.Len == 1 {
+		return int(b[0]), nil
+	}
+	return int(NativeEndian.Uint32(b[:4])), nil
+}
+
+// Set writes the option and value to the kernel.
+func (o *Option) Set(c *Conn, b []byte) error {
+	if o.Name < 1 || o.Len < 1 {
+		return errors.New("invalid option")
+	}
+	if len(b) < o.Len {
+		return errors.New("short buffer")
+	}
+	return o.set(c, b)
+}
+
+// SetInt writes the option and value to the kernel.
+//
+// The Len field of Option must be either 1 or 4.
+func (o *Option) SetInt(c *Conn, v int) error {
+	if o.Len != 1 && o.Len != 4 {
+		return errors.New("invalid option")
+	}
+	var b []byte
+	if o.Len == 1 {
+		b = []byte{byte(v)}
+	} else {
+		var bb [4]byte
+		NativeEndian.PutUint32(bb[:o.Len], uint32(v))
+		b = bb[:4]
+	}
+	return o.set(c, b)
+}
+
+func controlHeaderLen() int {
+	return roundup(sizeofCmsghdr)
+}
+
+func controlMessageLen(dataLen int) int {
+	return roundup(sizeofCmsghdr) + dataLen
+}
+
+// ControlMessageSpace returns the whole length of control message.
+func ControlMessageSpace(dataLen int) int {
+	return roundup(sizeofCmsghdr) + roundup(dataLen)
+}
+
+// A ControlMessage represents the head message in a stream of control
+// messages.
+//
+// A control message comprises of a header, data and a few padding
+// fields to conform to the interface to the kernel.
+//
+// See RFC 3542 for further information.
+type ControlMessage []byte
+
+// Data returns the data field of the control message at the head on
+// m.
+func (m ControlMessage) Data(dataLen int) []byte {
+	l := controlHeaderLen()
+	if len(m) < l || len(m) < l+dataLen {
+		return nil
+	}
+	return m[l : l+dataLen]
+}
+
+// Next returns the control message at the next on m.
+//
+// Next works only for standard control messages.
+func (m ControlMessage) Next(dataLen int) ControlMessage {
+	l := ControlMessageSpace(dataLen)
+	if len(m) < l {
+		return nil
+	}
+	return m[l:]
+}
+
+// MarshalHeader marshals the header fields of the control message at
+// the head on m.
+func (m ControlMessage) MarshalHeader(lvl, typ, dataLen int) error {
+	if len(m) < controlHeaderLen() {
+		return errors.New("short message")
+	}
+	h := (*cmsghdr)(unsafe.Pointer(&m[0]))
+	h.set(controlMessageLen(dataLen), lvl, typ)
+	return nil
+}
+
+// ParseHeader parses and returns the header fields of the control
+// message at the head on m.
+func (m ControlMessage) ParseHeader() (lvl, typ, dataLen int, err error) {
+	l := controlHeaderLen()
+	if len(m) < l {
+		return 0, 0, 0, errors.New("short message")
+	}
+	h := (*cmsghdr)(unsafe.Pointer(&m[0]))
+	return h.lvl(), h.typ(), int(uint64(h.len()) - uint64(l)), nil
+}
+
+// Marshal marshals the control message at the head on m, and returns
+// the next control message.
+func (m ControlMessage) Marshal(lvl, typ int, data []byte) (ControlMessage, error) {
+	l := len(data)
+	if len(m) < ControlMessageSpace(l) {
+		return nil, errors.New("short message")
+	}
+	h := (*cmsghdr)(unsafe.Pointer(&m[0]))
+	h.set(controlMessageLen(l), lvl, typ)
+	if l > 0 {
+		copy(m.Data(l), data)
+	}
+	return m.Next(l), nil
+}
+
+// Parse parses m as a single or multiple control messages.
+//
+// Parse works for both standard and compatible messages.
+func (m ControlMessage) Parse() ([]ControlMessage, error) {
+	var ms []ControlMessage
+	for len(m) >= controlHeaderLen() {
+		h := (*cmsghdr)(unsafe.Pointer(&m[0]))
+		l := h.len()
+		if l <= 0 {
+			return nil, errors.New("invalid header length")
+		}
+		if uint64(l) < uint64(controlHeaderLen()) {
+			return nil, errors.New("invalid message length")
+		}
+		if uint64(l) > uint64(len(m)) {
+			return nil, errors.New("short buffer")
+		}
+		// On message reception:
+		//
+		// |<- ControlMessageSpace --------------->|
+		// |<- controlMessageLen ---------->|      |
+		// |<- controlHeaderLen ->|         |      |
+		// +---------------+------+---------+------+
+		// |    Header     | PadH |  Data   | PadD |
+		// +---------------+------+---------+------+
+		//
+		// On compatible message reception:
+		//
+		// | ... |<- controlMessageLen ----------->|
+		// | ... |<- controlHeaderLen ->|          |
+		// +-----+---------------+------+----------+
+		// | ... |    Header     | PadH |   Data   |
+		// +-----+---------------+------+----------+
+		ms = append(ms, ControlMessage(m[:l]))
+		ll := l - controlHeaderLen()
+		if len(m) >= ControlMessageSpace(ll) {
+			m = m[ControlMessageSpace(ll):]
+		} else {
+			m = m[controlMessageLen(ll):]
+		}
+	}
+	return ms, nil
+}
+
+// NewControlMessage returns a new stream of control messages.
+func NewControlMessage(dataLen []int) ControlMessage {
+	var l int
+	for i := range dataLen {
+		l += ControlMessageSpace(dataLen[i])
+	}
+	return make([]byte, l)
+}
+
+// A Message represents an IO message.
+type Message struct {
+	// When writing, the Buffers field must contain at least one
+	// byte to write.
+	// When reading, the Buffers field will always contain a byte
+	// to read.
+	Buffers [][]byte
+
+	// OOB contains protocol-specific control or miscellaneous
+	// ancillary data known as out-of-band data.
+	OOB []byte
+
+	// Addr specifies a destination address when writing.
+	// It can be nil when the underlying protocol of the raw
+	// connection uses connection-oriented communication.
+	// After a successful read, it may contain the source address
+	// on the received packet.
+	Addr net.Addr
+
+	N     int // # of bytes read or written from/to Buffers
+	NN    int // # of bytes read or written from/to OOB
+	Flags int // protocol-specific information on the received message
+}
+
+// RecvMsg wraps recvmsg system call.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_PEEK.
+func (c *Conn) RecvMsg(m *Message, flags int) error {
+	return c.recvMsg(m, flags)
+}
+
+// SendMsg wraps sendmsg system call.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_DONTROUTE.
+func (c *Conn) SendMsg(m *Message, flags int) error {
+	return c.sendMsg(m, flags)
+}
+
+// RecvMsgs wraps recvmmsg system call.
+//
+// It returns the number of processed messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_PEEK.
+//
+// Only Linux supports this.
+func (c *Conn) RecvMsgs(ms []Message, flags int) (int, error) {
+	return c.recvMsgs(ms, flags)
+}
+
+// SendMsgs wraps sendmmsg system call.
+//
+// It returns the number of processed messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_DONTROUTE.
+//
+// Only Linux supports this.
+func (c *Conn) SendMsgs(ms []Message, flags int) (int, error) {
+	return c.sendMsgs(ms, flags)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys.go b/vendor/golang.org/x/net/internal/socket/sys.go
new file mode 100644
index 0000000000..4f0eead138
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys.go
@@ -0,0 +1,33 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"encoding/binary"
+	"unsafe"
+)
+
+var (
+	// NativeEndian is the machine native endian implementation of
+	// ByteOrder.
+	NativeEndian binary.ByteOrder
+
+	kernelAlign int
+)
+
+func init() {
+	i := uint32(1)
+	b := (*[4]byte)(unsafe.Pointer(&i))
+	if b[0] == 1 {
+		NativeEndian = binary.LittleEndian
+	} else {
+		NativeEndian = binary.BigEndian
+	}
+	kernelAlign = probeProtocolStack()
+}
+
+func roundup(l int) int {
+	return (l + kernelAlign - 1) & ^(kernelAlign - 1)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_bsd.go b/vendor/golang.org/x/net/internal/socket/sys_bsd.go
new file mode 100644
index 0000000000..f13e14ff36
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_bsd.go
@@ -0,0 +1,17 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd openbsd
+
+package socket
+
+import "errors"
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_bsdvar.go b/vendor/golang.org/x/net/internal/socket/sys_bsdvar.go
new file mode 100644
index 0000000000..f723fa36af
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_bsdvar.go
@@ -0,0 +1,14 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build freebsd netbsd openbsd
+
+package socket
+
+import "unsafe"
+
+func probeProtocolStack() int {
+	var p uintptr
+	return int(unsafe.Sizeof(p))
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_darwin.go b/vendor/golang.org/x/net/internal/socket/sys_darwin.go
new file mode 100644
index 0000000000..b17d223bff
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_darwin.go
@@ -0,0 +1,7 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+func probeProtocolStack() int { return 4 }
diff --git a/vendor/golang.org/x/net/internal/socket/sys_dragonfly.go b/vendor/golang.org/x/net/internal/socket/sys_dragonfly.go
new file mode 100644
index 0000000000..b17d223bff
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_dragonfly.go
@@ -0,0 +1,7 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+func probeProtocolStack() int { return 4 }
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux.go b/vendor/golang.org/x/net/internal/socket/sys_linux.go
new file mode 100644
index 0000000000..1559521e03
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux.go
@@ -0,0 +1,27 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux,!s390x,!386
+
+package socket
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+func probeProtocolStack() int {
+	var p uintptr
+	return int(unsafe.Sizeof(p))
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall6(sysRECVMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall6(sysSENDMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_386.go b/vendor/golang.org/x/net/internal/socket/sys_linux_386.go
new file mode 100644
index 0000000000..235b2cc08a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_386.go
@@ -0,0 +1,55 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+func probeProtocolStack() int { return 4 }
+
+const (
+	sysSETSOCKOPT = 0xe
+	sysGETSOCKOPT = 0xf
+	sysSENDMSG    = 0x10
+	sysRECVMSG    = 0x11
+	sysRECVMMSG   = 0x13
+	sysSENDMMSG   = 0x14
+)
+
+func socketcall(call, a0, a1, a2, a3, a4, a5 uintptr) (uintptr, syscall.Errno)
+func rawsocketcall(call, a0, a1, a2, a3, a4, a5 uintptr) (uintptr, syscall.Errno)
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	l := uint32(len(b))
+	_, errno := socketcall(sysGETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(unsafe.Pointer(&l)), 0)
+	return int(l), errnoErr(errno)
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	_, errno := socketcall(sysSETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)), 0)
+	return errnoErr(errno)
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, errno := socketcall(sysRECVMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, errno := socketcall(sysSENDMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, errno := socketcall(sysRECVMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, errno := socketcall(sysSENDMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_386.s b/vendor/golang.org/x/net/internal/socket/sys_linux_386.s
new file mode 100644
index 0000000000..93e7d75ec0
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_386.s
@@ -0,0 +1,11 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+#include "textflag.h"
+
+TEXT	·socketcall(SB),NOSPLIT,$0-36
+	JMP	syscall·socketcall(SB)
+
+TEXT	·rawsocketcall(SB),NOSPLIT,$0-36
+	JMP	syscall·rawsocketcall(SB)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_amd64.go b/vendor/golang.org/x/net/internal/socket/sys_linux_amd64.go
new file mode 100644
index 0000000000..9decee2e59
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_amd64.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x12b
+	sysSENDMMSG = 0x133
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_arm.go b/vendor/golang.org/x/net/internal/socket/sys_linux_arm.go
new file mode 100644
index 0000000000..d753b436df
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_arm.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x16d
+	sysSENDMMSG = 0x176
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_arm64.go b/vendor/golang.org/x/net/internal/socket/sys_linux_arm64.go
new file mode 100644
index 0000000000..b670894366
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_arm64.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0xf3
+	sysSENDMMSG = 0x10d
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_mips.go b/vendor/golang.org/x/net/internal/socket/sys_linux_mips.go
new file mode 100644
index 0000000000..9c0d74014f
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_mips.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x10ef
+	sysSENDMMSG = 0x10f7
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_mips64.go b/vendor/golang.org/x/net/internal/socket/sys_linux_mips64.go
new file mode 100644
index 0000000000..071a4aba8b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_mips64.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x14ae
+	sysSENDMMSG = 0x14b6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_mips64le.go b/vendor/golang.org/x/net/internal/socket/sys_linux_mips64le.go
new file mode 100644
index 0000000000..071a4aba8b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_mips64le.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x14ae
+	sysSENDMMSG = 0x14b6
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_mipsle.go b/vendor/golang.org/x/net/internal/socket/sys_linux_mipsle.go
new file mode 100644
index 0000000000..9c0d74014f
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_mipsle.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x10ef
+	sysSENDMMSG = 0x10f7
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64.go b/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64.go
new file mode 100644
index 0000000000..21c1e3f004
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x157
+	sysSENDMMSG = 0x15d
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64le.go b/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64le.go
new file mode 100644
index 0000000000..21c1e3f004
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_ppc64le.go
@@ -0,0 +1,10 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+const (
+	sysRECVMMSG = 0x157
+	sysSENDMMSG = 0x15d
+)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.go b/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.go
new file mode 100644
index 0000000000..327979efbb
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.go
@@ -0,0 +1,55 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+func probeProtocolStack() int { return 8 }
+
+const (
+	sysSETSOCKOPT = 0xe
+	sysGETSOCKOPT = 0xf
+	sysSENDMSG    = 0x10
+	sysRECVMSG    = 0x11
+	sysRECVMMSG   = 0x13
+	sysSENDMMSG   = 0x14
+)
+
+func socketcall(call, a0, a1, a2, a3, a4, a5 uintptr) (uintptr, syscall.Errno)
+func rawsocketcall(call, a0, a1, a2, a3, a4, a5 uintptr) (uintptr, syscall.Errno)
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	l := uint32(len(b))
+	_, errno := socketcall(sysGETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(unsafe.Pointer(&l)), 0)
+	return int(l), errnoErr(errno)
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	_, errno := socketcall(sysSETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)), 0)
+	return errnoErr(errno)
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, errno := socketcall(sysRECVMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, errno := socketcall(sysSENDMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, errno := socketcall(sysRECVMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, errno := socketcall(sysSENDMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.s b/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.s
new file mode 100644
index 0000000000..06d75628c9
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_linux_s390x.s
@@ -0,0 +1,11 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+#include "textflag.h"
+
+TEXT	·socketcall(SB),NOSPLIT,$0-72
+	JMP	syscall·socketcall(SB)
+
+TEXT	·rawsocketcall(SB),NOSPLIT,$0-72
+	JMP	syscall·rawsocketcall(SB)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_netbsd.go b/vendor/golang.org/x/net/internal/socket/sys_netbsd.go
new file mode 100644
index 0000000000..431851c12e
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_netbsd.go
@@ -0,0 +1,25 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+const (
+	sysRECVMMSG = 0x1db
+	sysSENDMMSG = 0x1dc
+)
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall6(sysRECVMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall6(sysSENDMMSG, s, uintptr(unsafe.Pointer(&hs[0])), uintptr(len(hs)), uintptr(flags), 0, 0)
+	return int(n), errnoErr(errno)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_posix.go b/vendor/golang.org/x/net/internal/socket/sys_posix.go
new file mode 100644
index 0000000000..dc130c27eb
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_posix.go
@@ -0,0 +1,168 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris windows
+
+package socket
+
+import (
+	"encoding/binary"
+	"errors"
+	"net"
+	"runtime"
+	"strconv"
+	"sync"
+	"time"
+)
+
+func marshalInetAddr(a net.Addr) []byte {
+	switch a := a.(type) {
+	case *net.TCPAddr:
+		return marshalSockaddr(a.IP, a.Port, a.Zone)
+	case *net.UDPAddr:
+		return marshalSockaddr(a.IP, a.Port, a.Zone)
+	case *net.IPAddr:
+		return marshalSockaddr(a.IP, 0, a.Zone)
+	default:
+		return nil
+	}
+}
+
+func marshalSockaddr(ip net.IP, port int, zone string) []byte {
+	if ip4 := ip.To4(); ip4 != nil {
+		b := make([]byte, sizeofSockaddrInet)
+		switch runtime.GOOS {
+		case "android", "linux", "solaris", "windows":
+			NativeEndian.PutUint16(b[:2], uint16(sysAF_INET))
+		default:
+			b[0] = sizeofSockaddrInet
+			b[1] = sysAF_INET
+		}
+		binary.BigEndian.PutUint16(b[2:4], uint16(port))
+		copy(b[4:8], ip4)
+		return b
+	}
+	if ip6 := ip.To16(); ip6 != nil && ip.To4() == nil {
+		b := make([]byte, sizeofSockaddrInet6)
+		switch runtime.GOOS {
+		case "android", "linux", "solaris", "windows":
+			NativeEndian.PutUint16(b[:2], uint16(sysAF_INET6))
+		default:
+			b[0] = sizeofSockaddrInet6
+			b[1] = sysAF_INET6
+		}
+		binary.BigEndian.PutUint16(b[2:4], uint16(port))
+		copy(b[8:24], ip6)
+		if zone != "" {
+			NativeEndian.PutUint32(b[24:28], uint32(zoneCache.index(zone)))
+		}
+		return b
+	}
+	return nil
+}
+
+func parseInetAddr(b []byte, network string) (net.Addr, error) {
+	if len(b) < 2 {
+		return nil, errors.New("invalid address")
+	}
+	var af int
+	switch runtime.GOOS {
+	case "android", "linux", "solaris", "windows":
+		af = int(NativeEndian.Uint16(b[:2]))
+	default:
+		af = int(b[1])
+	}
+	var ip net.IP
+	var zone string
+	if af == sysAF_INET {
+		if len(b) < sizeofSockaddrInet {
+			return nil, errors.New("short address")
+		}
+		ip = make(net.IP, net.IPv4len)
+		copy(ip, b[4:8])
+	}
+	if af == sysAF_INET6 {
+		if len(b) < sizeofSockaddrInet6 {
+			return nil, errors.New("short address")
+		}
+		ip = make(net.IP, net.IPv6len)
+		copy(ip, b[8:24])
+		if id := int(NativeEndian.Uint32(b[24:28])); id > 0 {
+			zone = zoneCache.name(id)
+		}
+	}
+	switch network {
+	case "tcp", "tcp4", "tcp6":
+		return &net.TCPAddr{IP: ip, Port: int(binary.BigEndian.Uint16(b[2:4])), Zone: zone}, nil
+	case "udp", "udp4", "udp6":
+		return &net.UDPAddr{IP: ip, Port: int(binary.BigEndian.Uint16(b[2:4])), Zone: zone}, nil
+	default:
+		return &net.IPAddr{IP: ip, Zone: zone}, nil
+	}
+}
+
+// An ipv6ZoneCache represents a cache holding partial network
+// interface information. It is used for reducing the cost of IPv6
+// addressing scope zone resolution.
+//
+// Multiple names sharing the index are managed by first-come
+// first-served basis for consistency.
+type ipv6ZoneCache struct {
+	sync.RWMutex                // guard the following
+	lastFetched  time.Time      // last time routing information was fetched
+	toIndex      map[string]int // interface name to its index
+	toName       map[int]string // interface index to its name
+}
+
+var zoneCache = ipv6ZoneCache{
+	toIndex: make(map[string]int),
+	toName:  make(map[int]string),
+}
+
+func (zc *ipv6ZoneCache) update(ift []net.Interface) {
+	zc.Lock()
+	defer zc.Unlock()
+	now := time.Now()
+	if zc.lastFetched.After(now.Add(-60 * time.Second)) {
+		return
+	}
+	zc.lastFetched = now
+	if len(ift) == 0 {
+		var err error
+		if ift, err = net.Interfaces(); err != nil {
+			return
+		}
+	}
+	zc.toIndex = make(map[string]int, len(ift))
+	zc.toName = make(map[int]string, len(ift))
+	for _, ifi := range ift {
+		zc.toIndex[ifi.Name] = ifi.Index
+		if _, ok := zc.toName[ifi.Index]; !ok {
+			zc.toName[ifi.Index] = ifi.Name
+		}
+	}
+}
+
+func (zc *ipv6ZoneCache) name(zone int) string {
+	zoneCache.update(nil)
+	zoneCache.RLock()
+	defer zoneCache.RUnlock()
+	name, ok := zoneCache.toName[zone]
+	if !ok {
+		name = strconv.Itoa(zone)
+	}
+	return name
+}
+
+func (zc *ipv6ZoneCache) index(zone string) int {
+	zoneCache.update(nil)
+	zoneCache.RLock()
+	defer zoneCache.RUnlock()
+	index, ok := zoneCache.toIndex[zone]
+	if !ok {
+		index, _ = strconv.Atoi(zone)
+	}
+	return index
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_solaris.go b/vendor/golang.org/x/net/internal/socket/sys_solaris.go
new file mode 100644
index 0000000000..cced74e60d
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_solaris.go
@@ -0,0 +1,71 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"errors"
+	"runtime"
+	"syscall"
+	"unsafe"
+)
+
+func probeProtocolStack() int {
+	switch runtime.GOARCH {
+	case "amd64":
+		return 4
+	default:
+		var p uintptr
+		return int(unsafe.Sizeof(p))
+	}
+}
+
+//go:cgo_import_dynamic libc___xnet_getsockopt __xnet_getsockopt "libsocket.so"
+//go:cgo_import_dynamic libc_setsockopt setsockopt "libsocket.so"
+//go:cgo_import_dynamic libc___xnet_recvmsg __xnet_recvmsg "libsocket.so"
+//go:cgo_import_dynamic libc___xnet_sendmsg __xnet_sendmsg "libsocket.so"
+
+//go:linkname procGetsockopt libc___xnet_getsockopt
+//go:linkname procSetsockopt libc_setsockopt
+//go:linkname procRecvmsg libc___xnet_recvmsg
+//go:linkname procSendmsg libc___xnet_sendmsg
+
+var (
+	procGetsockopt uintptr
+	procSetsockopt uintptr
+	procRecvmsg    uintptr
+	procSendmsg    uintptr
+)
+
+func sysvicall6(trap, nargs, a1, a2, a3, a4, a5, a6 uintptr) (uintptr, uintptr, syscall.Errno)
+func rawSysvicall6(trap, nargs, a1, a2, a3, a4, a5, a6 uintptr) (uintptr, uintptr, syscall.Errno)
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	l := uint32(len(b))
+	_, _, errno := sysvicall6(uintptr(unsafe.Pointer(&procGetsockopt)), 5, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(unsafe.Pointer(&l)), 0)
+	return int(l), errnoErr(errno)
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	_, _, errno := sysvicall6(uintptr(unsafe.Pointer(&procSetsockopt)), 5, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)), 0)
+	return errnoErr(errno)
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, _, errno := sysvicall6(uintptr(unsafe.Pointer(&procRecvmsg)), 3, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, _, errno := sysvicall6(uintptr(unsafe.Pointer(&procSendmsg)), 3, s, uintptr(unsafe.Pointer(h)), uintptr(flags), 0, 0, 0)
+	return int(n), errnoErr(errno)
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_solaris_amd64.s b/vendor/golang.org/x/net/internal/socket/sys_solaris_amd64.s
new file mode 100644
index 0000000000..a18ac5ed75
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_solaris_amd64.s
@@ -0,0 +1,11 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+#include "textflag.h"
+
+TEXT	·sysvicall6(SB),NOSPLIT,$0-88
+	JMP	syscall·sysvicall6(SB)
+
+TEXT	·rawSysvicall6(SB),NOSPLIT,$0-88
+	JMP	syscall·rawSysvicall6(SB)
diff --git a/vendor/golang.org/x/net/internal/socket/sys_stub.go b/vendor/golang.org/x/net/internal/socket/sys_stub.go
new file mode 100644
index 0000000000..d9f06d00e9
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_stub.go
@@ -0,0 +1,64 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package socket
+
+import (
+	"errors"
+	"net"
+	"runtime"
+	"unsafe"
+)
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+func probeProtocolStack() int {
+	switch runtime.GOARCH {
+	case "amd64p32", "mips64p32":
+		return 4
+	default:
+		var p uintptr
+		return int(unsafe.Sizeof(p))
+	}
+}
+
+func marshalInetAddr(ip net.IP, port int, zone string) []byte {
+	return nil
+}
+
+func parseInetAddr(b []byte, network string) (net.Addr, error) {
+	return nil, errors.New("not implemented")
+}
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	return errors.New("not implemented")
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_unix.go b/vendor/golang.org/x/net/internal/socket/sys_unix.go
new file mode 100644
index 0000000000..18eba30853
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_unix.go
@@ -0,0 +1,33 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux,!s390x,!386 netbsd openbsd
+
+package socket
+
+import (
+	"syscall"
+	"unsafe"
+)
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	l := uint32(len(b))
+	_, _, errno := syscall.Syscall6(syscall.SYS_GETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(unsafe.Pointer(&l)), 0)
+	return int(l), errnoErr(errno)
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	_, _, errno := syscall.Syscall6(syscall.SYS_SETSOCKOPT, s, uintptr(level), uintptr(name), uintptr(unsafe.Pointer(&b[0])), uintptr(len(b)), 0)
+	return errnoErr(errno)
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall(syscall.SYS_RECVMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags))
+	return int(n), errnoErr(errno)
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	n, _, errno := syscall.Syscall(syscall.SYS_SENDMSG, s, uintptr(unsafe.Pointer(h)), uintptr(flags))
+	return int(n), errnoErr(errno)
+}
diff --git a/vendor/golang.org/x/net/internal/socket/sys_windows.go b/vendor/golang.org/x/net/internal/socket/sys_windows.go
new file mode 100644
index 0000000000..54a470ebe3
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/sys_windows.go
@@ -0,0 +1,70 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socket
+
+import (
+	"errors"
+	"syscall"
+	"unsafe"
+)
+
+func probeProtocolStack() int {
+	var p uintptr
+	return int(unsafe.Sizeof(p))
+}
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x17
+
+	sysSOCK_RAW = 0x3
+)
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
+
+func getsockopt(s uintptr, level, name int, b []byte) (int, error) {
+	l := uint32(len(b))
+	err := syscall.Getsockopt(syscall.Handle(s), int32(level), int32(name), (*byte)(unsafe.Pointer(&b[0])), (*int32)(unsafe.Pointer(&l)))
+	return int(l), err
+}
+
+func setsockopt(s uintptr, level, name int, b []byte) error {
+	return syscall.Setsockopt(syscall.Handle(s), int32(level), int32(name), (*byte)(unsafe.Pointer(&b[0])), int32(len(b)))
+}
+
+func recvmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmsg(s uintptr, h *msghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func recvmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
+
+func sendmmsg(s uintptr, hs []mmsghdr, flags int) (int, error) {
+	return 0, errors.New("not implemented")
+}
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_darwin_386.go b/vendor/golang.org/x/net/internal/socket/zsys_darwin_386.go
new file mode 100644
index 0000000000..26f8feff3a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_darwin_386.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1e
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_darwin_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_darwin_amd64.go
new file mode 100644
index 0000000000..e2987f7db8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_darwin_amd64.go
@@ -0,0 +1,61 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1e
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     int32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm.go b/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm.go
new file mode 100644
index 0000000000..26f8feff3a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1e
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm64.go b/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm64.go
new file mode 100644
index 0000000000..e2987f7db8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_darwin_arm64.go
@@ -0,0 +1,61 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1e
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     int32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_dragonfly_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_dragonfly_amd64.go
new file mode 100644
index 0000000000..c582abd57d
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_dragonfly_amd64.go
@@ -0,0 +1,61 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_dragonfly.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1c
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     int32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_freebsd_386.go b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_386.go
new file mode 100644
index 0000000000..04a24886c7
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_386.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1c
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_freebsd_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_amd64.go
new file mode 100644
index 0000000000..35c7cb9c95
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_amd64.go
@@ -0,0 +1,61 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1c
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     int32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_freebsd_arm.go b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_arm.go
new file mode 100644
index 0000000000..04a24886c7
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_freebsd_arm.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1c
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_386.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_386.go
new file mode 100644
index 0000000000..430206930b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_386.go
@@ -0,0 +1,63 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_amd64.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_amd64.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_arm.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_arm.go
new file mode 100644
index 0000000000..430206930b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_arm.go
@@ -0,0 +1,63 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_arm64.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_arm64.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_arm64.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_mips.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips.go
new file mode 100644
index 0000000000..430206930b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips.go
@@ -0,0 +1,63 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64le.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64le.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_mips64le.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_mipsle.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_mipsle.go
new file mode 100644
index 0000000000..430206930b
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_mipsle.go
@@ -0,0 +1,63 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64le.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64le.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_ppc64le.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_linux_s390x.go b/vendor/golang.org/x/net/internal/socket/zsys_linux_s390x.go
new file mode 100644
index 0000000000..1502f6c552
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_linux_s390x.go
@@ -0,0 +1,66 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0xa
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint64
+	Control    *byte
+	Controllen uint64
+	Flags      int32
+	Pad_cgo_1  [4]byte
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint64
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x38
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0x10
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_netbsd_386.go b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_386.go
new file mode 100644
index 0000000000..db60491fe3
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_386.go
@@ -0,0 +1,65 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_netbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_netbsd_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_amd64.go
new file mode 100644
index 0000000000..2a1a79985a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_amd64.go
@@ -0,0 +1,68 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_netbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     int32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr       msghdr
+	Len       uint32
+	Pad_cgo_0 [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofMmsghdr = 0x40
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_netbsd_arm.go b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_arm.go
new file mode 100644
index 0000000000..db60491fe3
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_netbsd_arm.go
@@ -0,0 +1,65 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_netbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     int32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type mmsghdr struct {
+	Hdr msghdr
+	Len uint32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofMmsghdr = 0x20
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_openbsd_386.go b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_386.go
new file mode 100644
index 0000000000..1c836361e8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_386.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_openbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_openbsd_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_amd64.go
new file mode 100644
index 0000000000..a6c0bf464a
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_amd64.go
@@ -0,0 +1,61 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_openbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint64
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Pad_cgo_0  [4]byte
+	Iov        *iovec
+	Iovlen     uint32
+	Pad_cgo_1  [4]byte
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_openbsd_arm.go b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_arm.go
new file mode 100644
index 0000000000..1c836361e8
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_openbsd_arm.go
@@ -0,0 +1,59 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_openbsd.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x18
+
+	sysSOCK_RAW = 0x3
+)
+
+type iovec struct {
+	Base *byte
+	Len  uint32
+}
+
+type msghdr struct {
+	Name       *byte
+	Namelen    uint32
+	Iov        *iovec
+	Iovlen     uint32
+	Control    *byte
+	Controllen uint32
+	Flags      int32
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+const (
+	sizeofIovec   = 0x8
+	sizeofMsghdr  = 0x1c
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x1c
+)
diff --git a/vendor/golang.org/x/net/internal/socket/zsys_solaris_amd64.go b/vendor/golang.org/x/net/internal/socket/zsys_solaris_amd64.go
new file mode 100644
index 0000000000..327c63290c
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socket/zsys_solaris_amd64.go
@@ -0,0 +1,60 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_solaris.go
+
+package socket
+
+const (
+	sysAF_UNSPEC = 0x0
+	sysAF_INET   = 0x2
+	sysAF_INET6  = 0x1a
+
+	sysSOCK_RAW = 0x4
+)
+
+type iovec struct {
+	Base *int8
+	Len  uint64
+}
+
+type msghdr struct {
+	Name         *byte
+	Namelen      uint32
+	Pad_cgo_0    [4]byte
+	Iov          *iovec
+	Iovlen       int32
+	Pad_cgo_1    [4]byte
+	Accrights    *int8
+	Accrightslen int32
+	Pad_cgo_2    [4]byte
+}
+
+type cmsghdr struct {
+	Len   uint32
+	Level int32
+	Type  int32
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type sockaddrInet6 struct {
+	Family         uint16
+	Port           uint16
+	Flowinfo       uint32
+	Addr           [16]byte /* in6_addr */
+	Scope_id       uint32
+	X__sin6_src_id uint32
+}
+
+const (
+	sizeofIovec   = 0x10
+	sizeofMsghdr  = 0x30
+	sizeofCmsghdr = 0xc
+
+	sizeofSockaddrInet  = 0x10
+	sizeofSockaddrInet6 = 0x20
+)
diff --git a/vendor/golang.org/x/net/internal/socks/client.go b/vendor/golang.org/x/net/internal/socks/client.go
new file mode 100644
index 0000000000..3d6f516a59
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socks/client.go
@@ -0,0 +1,168 @@
+// Copyright 2018 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package socks
+
+import (
+	"context"
+	"errors"
+	"io"
+	"net"
+	"strconv"
+	"time"
+)
+
+var (
+	noDeadline   = time.Time{}
+	aLongTimeAgo = time.Unix(1, 0)
+)
+
+func (d *Dialer) connect(ctx context.Context, c net.Conn, address string) (_ net.Addr, ctxErr error) {
+	host, port, err := splitHostPort(address)
+	if err != nil {
+		return nil, err
+	}
+	if deadline, ok := ctx.Deadline(); ok && !deadline.IsZero() {
+		c.SetDeadline(deadline)
+		defer c.SetDeadline(noDeadline)
+	}
+	if ctx != context.Background() {
+		errCh := make(chan error, 1)
+		done := make(chan struct{})
+		defer func() {
+			close(done)
+			if ctxErr == nil {
+				ctxErr = <-errCh
+			}
+		}()
+		go func() {
+			select {
+			case <-ctx.Done():
+				c.SetDeadline(aLongTimeAgo)
+				errCh <- ctx.Err()
+			case <-done:
+				errCh <- nil
+			}
+		}()
+	}
+
+	b := make([]byte, 0, 6+len(host)) // the size here is just an estimate
+	b = append(b, Version5)
+	if len(d.AuthMethods) == 0 || d.Authenticate == nil {
+		b = append(b, 1, byte(AuthMethodNotRequired))
+	} else {
+		ams := d.AuthMethods
+		if len(ams) > 255 {
+			return nil, errors.New("too many authentication methods")
+		}
+		b = append(b, byte(len(ams)))
+		for _, am := range ams {
+			b = append(b, byte(am))
+		}
+	}
+	if _, ctxErr = c.Write(b); ctxErr != nil {
+		return
+	}
+
+	if _, ctxErr = io.ReadFull(c, b[:2]); ctxErr != nil {
+		return
+	}
+	if b[0] != Version5 {
+		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
+	}
+	am := AuthMethod(b[1])
+	if am == AuthMethodNoAcceptableMethods {
+		return nil, errors.New("no acceptable authentication methods")
+	}
+	if d.Authenticate != nil {
+		if ctxErr = d.Authenticate(ctx, c, am); ctxErr != nil {
+			return
+		}
+	}
+
+	b = b[:0]
+	b = append(b, Version5, byte(d.cmd), 0)
+	if ip := net.ParseIP(host); ip != nil {
+		if ip4 := ip.To4(); ip4 != nil {
+			b = append(b, AddrTypeIPv4)
+			b = append(b, ip4...)
+		} else if ip6 := ip.To16(); ip6 != nil {
+			b = append(b, AddrTypeIPv6)
+			b = append(b, ip6...)
+		} else {
+			return nil, errors.New("unknown address type")
+		}
+	} else {
+		if len(host) > 255 {
+			return nil, errors.New("FQDN too long")
+		}
+		b = append(b, AddrTypeFQDN)
+		b = append(b, byte(len(host)))
+		b = append(b, host...)
+	}
+	b = append(b, byte(port>>8), byte(port))
+	if _, ctxErr = c.Write(b); ctxErr != nil {
+		return
+	}
+
+	if _, ctxErr = io.ReadFull(c, b[:4]); ctxErr != nil {
+		return
+	}
+	if b[0] != Version5 {
+		return nil, errors.New("unexpected protocol version " + strconv.Itoa(int(b[0])))
+	}
+	if cmdErr := Reply(b[1]); cmdErr != StatusSucceeded {
+		return nil, errors.New("unknown error " + cmdErr.String())
+	}
+	if b[2] != 0 {
+		return nil, errors.New("non-zero reserved field")
+	}
+	l := 2
+	var a Addr
+	switch b[3] {
+	case AddrTypeIPv4:
+		l += net.IPv4len
+		a.IP = make(net.IP, net.IPv4len)
+	case AddrTypeIPv6:
+		l += net.IPv6len
+		a.IP = make(net.IP, net.IPv6len)
+	case AddrTypeFQDN:
+		if _, err := io.ReadFull(c, b[:1]); err != nil {
+			return nil, err
+		}
+		l += int(b[0])
+	default:
+		return nil, errors.New("unknown address type " + strconv.Itoa(int(b[3])))
+	}
+	if cap(b) < l {
+		b = make([]byte, l)
+	} else {
+		b = b[:l]
+	}
+	if _, ctxErr = io.ReadFull(c, b); ctxErr != nil {
+		return
+	}
+	if a.IP != nil {
+		copy(a.IP, b)
+	} else {
+		a.Name = string(b[:len(b)-2])
+	}
+	a.Port = int(b[len(b)-2])<<8 | int(b[len(b)-1])
+	return &a, nil
+}
+
+func splitHostPort(address string) (string, int, error) {
+	host, port, err := net.SplitHostPort(address)
+	if err != nil {
+		return "", 0, err
+	}
+	portnum, err := strconv.Atoi(port)
+	if err != nil {
+		return "", 0, err
+	}
+	if 1 > portnum || portnum > 0xffff {
+		return "", 0, errors.New("port number out of range " + port)
+	}
+	return host, portnum, nil
+}
diff --git a/vendor/golang.org/x/net/internal/socks/socks.go b/vendor/golang.org/x/net/internal/socks/socks.go
new file mode 100644
index 0000000000..9158595366
--- /dev/null
+++ b/vendor/golang.org/x/net/internal/socks/socks.go
@@ -0,0 +1,265 @@
+// Copyright 2018 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package socks provides a SOCKS version 5 client implementation.
+//
+// SOCKS protocol version 5 is defined in RFC 1928.
+// Username/Password authentication for SOCKS version 5 is defined in
+// RFC 1929.
+package socks
+
+import (
+	"context"
+	"errors"
+	"io"
+	"net"
+	"strconv"
+)
+
+// A Command represents a SOCKS command.
+type Command int
+
+func (cmd Command) String() string {
+	switch cmd {
+	case CmdConnect:
+		return "socks connect"
+	case cmdBind:
+		return "socks bind"
+	default:
+		return "socks " + strconv.Itoa(int(cmd))
+	}
+}
+
+// An AuthMethod represents a SOCKS authentication method.
+type AuthMethod int
+
+// A Reply represents a SOCKS command reply code.
+type Reply int
+
+func (code Reply) String() string {
+	switch code {
+	case StatusSucceeded:
+		return "succeeded"
+	case 0x01:
+		return "general SOCKS server failure"
+	case 0x02:
+		return "connection not allowed by ruleset"
+	case 0x03:
+		return "network unreachable"
+	case 0x04:
+		return "host unreachable"
+	case 0x05:
+		return "connection refused"
+	case 0x06:
+		return "TTL expired"
+	case 0x07:
+		return "command not supported"
+	case 0x08:
+		return "address type not supported"
+	default:
+		return "unknown code: " + strconv.Itoa(int(code))
+	}
+}
+
+// Wire protocol constants.
+const (
+	Version5 = 0x05
+
+	AddrTypeIPv4 = 0x01
+	AddrTypeFQDN = 0x03
+	AddrTypeIPv6 = 0x04
+
+	CmdConnect Command = 0x01 // establishes an active-open forward proxy connection
+	cmdBind    Command = 0x02 // establishes a passive-open forward proxy connection
+
+	AuthMethodNotRequired         AuthMethod = 0x00 // no authentication required
+	AuthMethodUsernamePassword    AuthMethod = 0x02 // use username/password
+	AuthMethodNoAcceptableMethods AuthMethod = 0xff // no acceptable authetication methods
+
+	StatusSucceeded Reply = 0x00
+)
+
+// An Addr represents a SOCKS-specific address.
+// Either Name or IP is used exclusively.
+type Addr struct {
+	Name string // fully-qualified domain name
+	IP   net.IP
+	Port int
+}
+
+func (a *Addr) Network() string { return "socks" }
+
+func (a *Addr) String() string {
+	if a == nil {
+		return "<nil>"
+	}
+	port := strconv.Itoa(a.Port)
+	if a.IP == nil {
+		return net.JoinHostPort(a.Name, port)
+	}
+	return net.JoinHostPort(a.IP.String(), port)
+}
+
+// A Conn represents a forward proxy connection.
+type Conn struct {
+	net.Conn
+
+	boundAddr net.Addr
+}
+
+// BoundAddr returns the address assigned by the proxy server for
+// connecting to the command target address from the proxy server.
+func (c *Conn) BoundAddr() net.Addr {
+	if c == nil {
+		return nil
+	}
+	return c.boundAddr
+}
+
+// A Dialer holds SOCKS-specific options.
+type Dialer struct {
+	cmd          Command // either CmdConnect or cmdBind
+	proxyNetwork string  // network between a proxy server and a client
+	proxyAddress string  // proxy server address
+
+	// ProxyDial specifies the optional dial function for
+	// establishing the transport connection.
+	ProxyDial func(context.Context, string, string) (net.Conn, error)
+
+	// AuthMethods specifies the list of request authention
+	// methods.
+	// If empty, SOCKS client requests only AuthMethodNotRequired.
+	AuthMethods []AuthMethod
+
+	// Authenticate specifies the optional authentication
+	// function. It must be non-nil when AuthMethods is not empty.
+	// It must return an error when the authentication is failed.
+	Authenticate func(context.Context, io.ReadWriter, AuthMethod) error
+}
+
+// DialContext connects to the provided address on the provided
+// network.
+//
+// The returned error value may be a net.OpError. When the Op field of
+// net.OpError contains "socks", the Source field contains a proxy
+// server address and the Addr field contains a command target
+// address.
+//
+// See func Dial of the net package of standard library for a
+// description of the network and address parameters.
+func (d *Dialer) DialContext(ctx context.Context, network, address string) (net.Conn, error) {
+	switch network {
+	case "tcp", "tcp6", "tcp4":
+	default:
+		proxy, dst, _ := d.pathAddrs(address)
+		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("network not implemented")}
+	}
+	switch d.cmd {
+	case CmdConnect, cmdBind:
+	default:
+		proxy, dst, _ := d.pathAddrs(address)
+		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: errors.New("command not implemented")}
+	}
+	if ctx == nil {
+		ctx = context.Background()
+	}
+	var err error
+	var c net.Conn
+	if d.ProxyDial != nil {
+		c, err = d.ProxyDial(ctx, d.proxyNetwork, d.proxyAddress)
+	} else {
+		var dd net.Dialer
+		c, err = dd.DialContext(ctx, d.proxyNetwork, d.proxyAddress)
+	}
+	if err != nil {
+		proxy, dst, _ := d.pathAddrs(address)
+		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
+	}
+	a, err := d.connect(ctx, c, address)
+	if err != nil {
+		c.Close()
+		proxy, dst, _ := d.pathAddrs(address)
+		return nil, &net.OpError{Op: d.cmd.String(), Net: network, Source: proxy, Addr: dst, Err: err}
+	}
+	return &Conn{Conn: c, boundAddr: a}, nil
+}
+
+// Dial connects to the provided address on the provided network.
+//
+// Deprecated: Use DialContext instead.
+func (d *Dialer) Dial(network, address string) (net.Conn, error) {
+	return d.DialContext(context.Background(), network, address)
+}
+
+func (d *Dialer) pathAddrs(address string) (proxy, dst net.Addr, err error) {
+	for i, s := range []string{d.proxyAddress, address} {
+		host, port, err := splitHostPort(s)
+		if err != nil {
+			return nil, nil, err
+		}
+		a := &Addr{Port: port}
+		a.IP = net.ParseIP(host)
+		if a.IP == nil {
+			a.Name = host
+		}
+		if i == 0 {
+			proxy = a
+		} else {
+			dst = a
+		}
+	}
+	return
+}
+
+// NewDialer returns a new Dialer that dials through the provided
+// proxy server's network and address.
+func NewDialer(network, address string) *Dialer {
+	return &Dialer{proxyNetwork: network, proxyAddress: address, cmd: CmdConnect}
+}
+
+const (
+	authUsernamePasswordVersion = 0x01
+	authStatusSucceeded         = 0x00
+)
+
+// UsernamePassword are the credentials for the username/password
+// authentication method.
+type UsernamePassword struct {
+	Username string
+	Password string
+}
+
+// Authenticate authenticates a pair of username and password with the
+// proxy server.
+func (up *UsernamePassword) Authenticate(ctx context.Context, rw io.ReadWriter, auth AuthMethod) error {
+	switch auth {
+	case AuthMethodNotRequired:
+		return nil
+	case AuthMethodUsernamePassword:
+		if len(up.Username) == 0 || len(up.Username) > 255 || len(up.Password) == 0 || len(up.Password) > 255 {
+			return errors.New("invalid username/password")
+		}
+		b := []byte{authUsernamePasswordVersion}
+		b = append(b, byte(len(up.Username)))
+		b = append(b, up.Username...)
+		b = append(b, byte(len(up.Password)))
+		b = append(b, up.Password...)
+		// TODO(mikio): handle IO deadlines and cancelation if
+		// necessary
+		if _, err := rw.Write(b); err != nil {
+			return err
+		}
+		if _, err := io.ReadFull(rw, b[:2]); err != nil {
+			return err
+		}
+		if b[0] != authUsernamePasswordVersion {
+			return errors.New("invalid username/password version")
+		}
+		if b[1] != authStatusSucceeded {
+			return errors.New("username/password authentication failed")
+		}
+		return nil
+	}
+	return errors.New("unsupported authentication method " + strconv.Itoa(int(auth)))
+}
diff --git a/vendor/golang.org/x/net/ipv4/batch.go b/vendor/golang.org/x/net/ipv4/batch.go
new file mode 100644
index 0000000000..b445499288
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/batch.go
@@ -0,0 +1,191 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+
+package ipv4
+
+import (
+	"net"
+	"runtime"
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the ReadBatch and WriteBatch methods of
+// PacketConn are not implemented.
+
+// BUG(mikio): On Windows, the ReadBatch and WriteBatch methods of
+// RawConn are not implemented.
+
+// A Message represents an IO message.
+//
+//	type Message struct {
+//		Buffers [][]byte
+//		OOB     []byte
+//		Addr    net.Addr
+//		N       int
+//		NN      int
+//		Flags   int
+//	}
+//
+// The Buffers fields represents a list of contiguous buffers, which
+// can be used for vectored IO, for example, putting a header and a
+// payload in each slice.
+// When writing, the Buffers field must contain at least one byte to
+// write.
+// When reading, the Buffers field will always contain a byte to read.
+//
+// The OOB field contains protocol-specific control or miscellaneous
+// ancillary data known as out-of-band data.
+// It can be nil when not required.
+//
+// The Addr field specifies a destination address when writing.
+// It can be nil when the underlying protocol of the endpoint uses
+// connection-oriented communication.
+// After a successful read, it may contain the source address on the
+// received packet.
+//
+// The N field indicates the number of bytes read or written from/to
+// Buffers.
+//
+// The NN field indicates the number of bytes read or written from/to
+// OOB.
+//
+// The Flags field contains protocol-specific information on the
+// received message.
+type Message = socket.Message
+
+// ReadBatch reads a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_PEEK.
+//
+// On a successful read it returns the number of messages received, up
+// to len(ms).
+//
+// On Linux, a batch read will be optimized.
+// On other platforms, this method will read only a single message.
+//
+// Unlike the ReadFrom method, it doesn't strip the IPv4 header
+// followed by option headers from the received IPv4 datagram when the
+// underlying transport is net.IPConn. Each Buffers field of Message
+// must be large enough to accommodate an IPv4 header and option
+// headers.
+func (c *payloadHandler) ReadBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.RecvMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.RecvMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
+
+// WriteBatch writes a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_DONTROUTE.
+//
+// It returns the number of messages written on a successful write.
+//
+// On Linux, a batch write will be optimized.
+// On other platforms, this method will write only a single message.
+func (c *payloadHandler) WriteBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.SendMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.SendMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
+
+// ReadBatch reads a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_PEEK.
+//
+// On a successful read it returns the number of messages received, up
+// to len(ms).
+//
+// On Linux, a batch read will be optimized.
+// On other platforms, this method will read only a single message.
+func (c *packetHandler) ReadBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.RecvMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.RecvMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
+
+// WriteBatch writes a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_DONTROUTE.
+//
+// It returns the number of messages written on a successful write.
+//
+// On Linux, a batch write will be optimized.
+// On other platforms, this method will write only a single message.
+func (c *packetHandler) WriteBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.SendMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "write", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.SendMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "write", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
diff --git a/vendor/golang.org/x/net/ipv4/control.go b/vendor/golang.org/x/net/ipv4/control.go
new file mode 100644
index 0000000000..a2b02ca95b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control.go
@@ -0,0 +1,144 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"fmt"
+	"net"
+	"sync"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+type rawOpt struct {
+	sync.RWMutex
+	cflags ControlFlags
+}
+
+func (c *rawOpt) set(f ControlFlags)        { c.cflags |= f }
+func (c *rawOpt) clear(f ControlFlags)      { c.cflags &^= f }
+func (c *rawOpt) isset(f ControlFlags) bool { return c.cflags&f != 0 }
+
+type ControlFlags uint
+
+const (
+	FlagTTL       ControlFlags = 1 << iota // pass the TTL on the received packet
+	FlagSrc                                // pass the source address on the received packet
+	FlagDst                                // pass the destination address on the received packet
+	FlagInterface                          // pass the interface index on the received packet
+)
+
+// A ControlMessage represents per packet basis IP-level socket options.
+type ControlMessage struct {
+	// Receiving socket options: SetControlMessage allows to
+	// receive the options from the protocol stack using ReadFrom
+	// method of PacketConn or RawConn.
+	//
+	// Specifying socket options: ControlMessage for WriteTo
+	// method of PacketConn or RawConn allows to send the options
+	// to the protocol stack.
+	//
+	TTL     int    // time-to-live, receiving only
+	Src     net.IP // source address, specifying only
+	Dst     net.IP // destination address, receiving only
+	IfIndex int    // interface index, must be 1 <= value when specifying
+}
+
+func (cm *ControlMessage) String() string {
+	if cm == nil {
+		return "<nil>"
+	}
+	return fmt.Sprintf("ttl=%d src=%v dst=%v ifindex=%d", cm.TTL, cm.Src, cm.Dst, cm.IfIndex)
+}
+
+// Marshal returns the binary encoding of cm.
+func (cm *ControlMessage) Marshal() []byte {
+	if cm == nil {
+		return nil
+	}
+	var m socket.ControlMessage
+	if ctlOpts[ctlPacketInfo].name > 0 && (cm.Src.To4() != nil || cm.IfIndex > 0) {
+		m = socket.NewControlMessage([]int{ctlOpts[ctlPacketInfo].length})
+	}
+	if len(m) > 0 {
+		ctlOpts[ctlPacketInfo].marshal(m, cm)
+	}
+	return m
+}
+
+// Parse parses b as a control message and stores the result in cm.
+func (cm *ControlMessage) Parse(b []byte) error {
+	ms, err := socket.ControlMessage(b).Parse()
+	if err != nil {
+		return err
+	}
+	for _, m := range ms {
+		lvl, typ, l, err := m.ParseHeader()
+		if err != nil {
+			return err
+		}
+		if lvl != iana.ProtocolIP {
+			continue
+		}
+		switch {
+		case typ == ctlOpts[ctlTTL].name && l >= ctlOpts[ctlTTL].length:
+			ctlOpts[ctlTTL].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlDst].name && l >= ctlOpts[ctlDst].length:
+			ctlOpts[ctlDst].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlInterface].name && l >= ctlOpts[ctlInterface].length:
+			ctlOpts[ctlInterface].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlPacketInfo].name && l >= ctlOpts[ctlPacketInfo].length:
+			ctlOpts[ctlPacketInfo].parse(cm, m.Data(l))
+		}
+	}
+	return nil
+}
+
+// NewControlMessage returns a new control message.
+//
+// The returned message is large enough for options specified by cf.
+func NewControlMessage(cf ControlFlags) []byte {
+	opt := rawOpt{cflags: cf}
+	var l int
+	if opt.isset(FlagTTL) && ctlOpts[ctlTTL].name > 0 {
+		l += socket.ControlMessageSpace(ctlOpts[ctlTTL].length)
+	}
+	if ctlOpts[ctlPacketInfo].name > 0 {
+		if opt.isset(FlagSrc | FlagDst | FlagInterface) {
+			l += socket.ControlMessageSpace(ctlOpts[ctlPacketInfo].length)
+		}
+	} else {
+		if opt.isset(FlagDst) && ctlOpts[ctlDst].name > 0 {
+			l += socket.ControlMessageSpace(ctlOpts[ctlDst].length)
+		}
+		if opt.isset(FlagInterface) && ctlOpts[ctlInterface].name > 0 {
+			l += socket.ControlMessageSpace(ctlOpts[ctlInterface].length)
+		}
+	}
+	var b []byte
+	if l > 0 {
+		b = make([]byte, l)
+	}
+	return b
+}
+
+// Ancillary data socket options
+const (
+	ctlTTL        = iota // header field
+	ctlSrc               // header field
+	ctlDst               // header field
+	ctlInterface         // inbound or outbound interface
+	ctlPacketInfo        // inbound or outbound packet path
+	ctlMax
+)
+
+// A ctlOpt represents a binding for ancillary data socket option.
+type ctlOpt struct {
+	name    int // option name, must be equal or greater than 1
+	length  int // option length
+	marshal func([]byte, *ControlMessage) []byte
+	parse   func(*ControlMessage, []byte)
+}
diff --git a/vendor/golang.org/x/net/ipv4/control_bsd.go b/vendor/golang.org/x/net/ipv4/control_bsd.go
new file mode 100644
index 0000000000..77e7ad5bed
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control_bsd.go
@@ -0,0 +1,40 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd openbsd
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+func marshalDst(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIP, sysIP_RECVDSTADDR, net.IPv4len)
+	return m.Next(net.IPv4len)
+}
+
+func parseDst(cm *ControlMessage, b []byte) {
+	if len(cm.Dst) < net.IPv4len {
+		cm.Dst = make(net.IP, net.IPv4len)
+	}
+	copy(cm.Dst, b[:net.IPv4len])
+}
+
+func marshalInterface(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIP, sysIP_RECVIF, syscall.SizeofSockaddrDatalink)
+	return m.Next(syscall.SizeofSockaddrDatalink)
+}
+
+func parseInterface(cm *ControlMessage, b []byte) {
+	sadl := (*syscall.SockaddrDatalink)(unsafe.Pointer(&b[0]))
+	cm.IfIndex = int(sadl.Index)
+}
diff --git a/vendor/golang.org/x/net/ipv4/control_pktinfo.go b/vendor/golang.org/x/net/ipv4/control_pktinfo.go
new file mode 100644
index 0000000000..425338f35b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control_pktinfo.go
@@ -0,0 +1,39 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin linux solaris
+
+package ipv4
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+func marshalPacketInfo(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIP, sysIP_PKTINFO, sizeofInetPktinfo)
+	if cm != nil {
+		pi := (*inetPktinfo)(unsafe.Pointer(&m.Data(sizeofInetPktinfo)[0]))
+		if ip := cm.Src.To4(); ip != nil {
+			copy(pi.Spec_dst[:], ip)
+		}
+		if cm.IfIndex > 0 {
+			pi.setIfindex(cm.IfIndex)
+		}
+	}
+	return m.Next(sizeofInetPktinfo)
+}
+
+func parsePacketInfo(cm *ControlMessage, b []byte) {
+	pi := (*inetPktinfo)(unsafe.Pointer(&b[0]))
+	cm.IfIndex = int(pi.Ifindex)
+	if len(cm.Dst) < net.IPv4len {
+		cm.Dst = make(net.IP, net.IPv4len)
+	}
+	copy(cm.Dst, pi.Addr[:])
+}
diff --git a/vendor/golang.org/x/net/ipv4/control_stub.go b/vendor/golang.org/x/net/ipv4/control_stub.go
new file mode 100644
index 0000000000..5a2f7d8d3c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control_stub.go
@@ -0,0 +1,13 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv4
+
+import "golang.org/x/net/internal/socket"
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/control_unix.go b/vendor/golang.org/x/net/ipv4/control_unix.go
new file mode 100644
index 0000000000..e1ae8167b3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control_unix.go
@@ -0,0 +1,73 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris
+
+package ipv4
+
+import (
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	opt.Lock()
+	defer opt.Unlock()
+	if so, ok := sockOpts[ssoReceiveTTL]; ok && cf&FlagTTL != 0 {
+		if err := so.SetInt(c, boolint(on)); err != nil {
+			return err
+		}
+		if on {
+			opt.set(FlagTTL)
+		} else {
+			opt.clear(FlagTTL)
+		}
+	}
+	if so, ok := sockOpts[ssoPacketInfo]; ok {
+		if cf&(FlagSrc|FlagDst|FlagInterface) != 0 {
+			if err := so.SetInt(c, boolint(on)); err != nil {
+				return err
+			}
+			if on {
+				opt.set(cf & (FlagSrc | FlagDst | FlagInterface))
+			} else {
+				opt.clear(cf & (FlagSrc | FlagDst | FlagInterface))
+			}
+		}
+	} else {
+		if so, ok := sockOpts[ssoReceiveDst]; ok && cf&FlagDst != 0 {
+			if err := so.SetInt(c, boolint(on)); err != nil {
+				return err
+			}
+			if on {
+				opt.set(FlagDst)
+			} else {
+				opt.clear(FlagDst)
+			}
+		}
+		if so, ok := sockOpts[ssoReceiveInterface]; ok && cf&FlagInterface != 0 {
+			if err := so.SetInt(c, boolint(on)); err != nil {
+				return err
+			}
+			if on {
+				opt.set(FlagInterface)
+			} else {
+				opt.clear(FlagInterface)
+			}
+		}
+	}
+	return nil
+}
+
+func marshalTTL(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIP, sysIP_RECVTTL, 1)
+	return m.Next(1)
+}
+
+func parseTTL(cm *ControlMessage, b []byte) {
+	cm.TTL = int(*(*byte)(unsafe.Pointer(&b[:1][0])))
+}
diff --git a/vendor/golang.org/x/net/ipv4/control_windows.go b/vendor/golang.org/x/net/ipv4/control_windows.go
new file mode 100644
index 0000000000..ce55c66447
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/control_windows.go
@@ -0,0 +1,16 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	// TODO(mikio): implement this
+	return syscall.EWINDOWS
+}
diff --git a/vendor/golang.org/x/net/ipv4/defs_darwin.go b/vendor/golang.org/x/net/ipv4/defs_darwin.go
new file mode 100644
index 0000000000..c8f2e05b81
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_darwin.go
@@ -0,0 +1,77 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_STRIPHDR    = C.IP_STRIPHDR
+	sysIP_RECVTTL     = C.IP_RECVTTL
+	sysIP_BOUND_IF    = C.IP_BOUND_IF
+	sysIP_PKTINFO     = C.IP_PKTINFO
+	sysIP_RECVPKTINFO = C.IP_RECVPKTINFO
+
+	sysIP_MULTICAST_IF           = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL          = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP         = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP         = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP        = C.IP_DROP_MEMBERSHIP
+	sysIP_MULTICAST_VIF          = C.IP_MULTICAST_VIF
+	sysIP_MULTICAST_IFINDEX      = C.IP_MULTICAST_IFINDEX
+	sysIP_ADD_SOURCE_MEMBERSHIP  = C.IP_ADD_SOURCE_MEMBERSHIP
+	sysIP_DROP_SOURCE_MEMBERSHIP = C.IP_DROP_SOURCE_MEMBERSHIP
+	sysIP_BLOCK_SOURCE           = C.IP_BLOCK_SOURCE
+	sysIP_UNBLOCK_SOURCE         = C.IP_UNBLOCK_SOURCE
+	sysMCAST_JOIN_GROUP          = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP         = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP   = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP  = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE        = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE      = C.MCAST_UNBLOCK_SOURCE
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet    = C.sizeof_struct_sockaddr_in
+	sizeofInetPktinfo     = C.sizeof_struct_in_pktinfo
+
+	sizeofIPMreq         = C.sizeof_struct_ip_mreq
+	sizeofIPMreqn        = C.sizeof_struct_ip_mreqn
+	sizeofIPMreqSource   = C.sizeof_struct_ip_mreq_source
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet C.struct_sockaddr_in
+
+type inetPktinfo C.struct_in_pktinfo
+
+type ipMreq C.struct_ip_mreq
+
+type ipMreqn C.struct_ip_mreqn
+
+type ipMreqSource C.struct_ip_mreq_source
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
diff --git a/vendor/golang.org/x/net/ipv4/defs_dragonfly.go b/vendor/golang.org/x/net/ipv4/defs_dragonfly.go
new file mode 100644
index 0000000000..f30544ea24
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_dragonfly.go
@@ -0,0 +1,38 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_RECVTTL     = C.IP_RECVTTL
+
+	sysIP_MULTICAST_IF    = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL   = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP  = C.IP_MULTICAST_LOOP
+	sysIP_MULTICAST_VIF   = C.IP_MULTICAST_VIF
+	sysIP_ADD_MEMBERSHIP  = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP = C.IP_DROP_MEMBERSHIP
+
+	sizeofIPMreq = C.sizeof_struct_ip_mreq
+)
+
+type ipMreq C.struct_ip_mreq
diff --git a/vendor/golang.org/x/net/ipv4/defs_freebsd.go b/vendor/golang.org/x/net/ipv4/defs_freebsd.go
new file mode 100644
index 0000000000..4dd57d8653
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_freebsd.go
@@ -0,0 +1,75 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_SENDSRCADDR = C.IP_SENDSRCADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_ONESBCAST   = C.IP_ONESBCAST
+	sysIP_BINDANY     = C.IP_BINDANY
+	sysIP_RECVTTL     = C.IP_RECVTTL
+	sysIP_MINTTL      = C.IP_MINTTL
+	sysIP_DONTFRAG    = C.IP_DONTFRAG
+	sysIP_RECVTOS     = C.IP_RECVTOS
+
+	sysIP_MULTICAST_IF           = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL          = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP         = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP         = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP        = C.IP_DROP_MEMBERSHIP
+	sysIP_MULTICAST_VIF          = C.IP_MULTICAST_VIF
+	sysIP_ADD_SOURCE_MEMBERSHIP  = C.IP_ADD_SOURCE_MEMBERSHIP
+	sysIP_DROP_SOURCE_MEMBERSHIP = C.IP_DROP_SOURCE_MEMBERSHIP
+	sysIP_BLOCK_SOURCE           = C.IP_BLOCK_SOURCE
+	sysIP_UNBLOCK_SOURCE         = C.IP_UNBLOCK_SOURCE
+	sysMCAST_JOIN_GROUP          = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP         = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP   = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP  = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE        = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE      = C.MCAST_UNBLOCK_SOURCE
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet    = C.sizeof_struct_sockaddr_in
+
+	sizeofIPMreq         = C.sizeof_struct_ip_mreq
+	sizeofIPMreqn        = C.sizeof_struct_ip_mreqn
+	sizeofIPMreqSource   = C.sizeof_struct_ip_mreq_source
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet C.struct_sockaddr_in
+
+type ipMreq C.struct_ip_mreq
+
+type ipMreqn C.struct_ip_mreqn
+
+type ipMreqSource C.struct_ip_mreq_source
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
diff --git a/vendor/golang.org/x/net/ipv4/defs_linux.go b/vendor/golang.org/x/net/ipv4/defs_linux.go
new file mode 100644
index 0000000000..beb11071ad
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_linux.go
@@ -0,0 +1,122 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <time.h>
+
+#include <linux/errqueue.h>
+#include <linux/icmp.h>
+#include <linux/in.h>
+#include <linux/filter.h>
+#include <sys/socket.h>
+*/
+import "C"
+
+const (
+	sysIP_TOS             = C.IP_TOS
+	sysIP_TTL             = C.IP_TTL
+	sysIP_HDRINCL         = C.IP_HDRINCL
+	sysIP_OPTIONS         = C.IP_OPTIONS
+	sysIP_ROUTER_ALERT    = C.IP_ROUTER_ALERT
+	sysIP_RECVOPTS        = C.IP_RECVOPTS
+	sysIP_RETOPTS         = C.IP_RETOPTS
+	sysIP_PKTINFO         = C.IP_PKTINFO
+	sysIP_PKTOPTIONS      = C.IP_PKTOPTIONS
+	sysIP_MTU_DISCOVER    = C.IP_MTU_DISCOVER
+	sysIP_RECVERR         = C.IP_RECVERR
+	sysIP_RECVTTL         = C.IP_RECVTTL
+	sysIP_RECVTOS         = C.IP_RECVTOS
+	sysIP_MTU             = C.IP_MTU
+	sysIP_FREEBIND        = C.IP_FREEBIND
+	sysIP_TRANSPARENT     = C.IP_TRANSPARENT
+	sysIP_RECVRETOPTS     = C.IP_RECVRETOPTS
+	sysIP_ORIGDSTADDR     = C.IP_ORIGDSTADDR
+	sysIP_RECVORIGDSTADDR = C.IP_RECVORIGDSTADDR
+	sysIP_MINTTL          = C.IP_MINTTL
+	sysIP_NODEFRAG        = C.IP_NODEFRAG
+	sysIP_UNICAST_IF      = C.IP_UNICAST_IF
+
+	sysIP_MULTICAST_IF           = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL          = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP         = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP         = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP        = C.IP_DROP_MEMBERSHIP
+	sysIP_UNBLOCK_SOURCE         = C.IP_UNBLOCK_SOURCE
+	sysIP_BLOCK_SOURCE           = C.IP_BLOCK_SOURCE
+	sysIP_ADD_SOURCE_MEMBERSHIP  = C.IP_ADD_SOURCE_MEMBERSHIP
+	sysIP_DROP_SOURCE_MEMBERSHIP = C.IP_DROP_SOURCE_MEMBERSHIP
+	sysIP_MSFILTER               = C.IP_MSFILTER
+	sysMCAST_JOIN_GROUP          = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP         = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP   = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP  = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE        = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE      = C.MCAST_UNBLOCK_SOURCE
+	sysMCAST_MSFILTER            = C.MCAST_MSFILTER
+	sysIP_MULTICAST_ALL          = C.IP_MULTICAST_ALL
+
+	//sysIP_PMTUDISC_DONT      = C.IP_PMTUDISC_DONT
+	//sysIP_PMTUDISC_WANT      = C.IP_PMTUDISC_WANT
+	//sysIP_PMTUDISC_DO        = C.IP_PMTUDISC_DO
+	//sysIP_PMTUDISC_PROBE     = C.IP_PMTUDISC_PROBE
+	//sysIP_PMTUDISC_INTERFACE = C.IP_PMTUDISC_INTERFACE
+	//sysIP_PMTUDISC_OMIT      = C.IP_PMTUDISC_OMIT
+
+	sysICMP_FILTER = C.ICMP_FILTER
+
+	sysSO_EE_ORIGIN_NONE         = C.SO_EE_ORIGIN_NONE
+	sysSO_EE_ORIGIN_LOCAL        = C.SO_EE_ORIGIN_LOCAL
+	sysSO_EE_ORIGIN_ICMP         = C.SO_EE_ORIGIN_ICMP
+	sysSO_EE_ORIGIN_ICMP6        = C.SO_EE_ORIGIN_ICMP6
+	sysSO_EE_ORIGIN_TXSTATUS     = C.SO_EE_ORIGIN_TXSTATUS
+	sysSO_EE_ORIGIN_TIMESTAMPING = C.SO_EE_ORIGIN_TIMESTAMPING
+
+	sysSOL_SOCKET       = C.SOL_SOCKET
+	sysSO_ATTACH_FILTER = C.SO_ATTACH_FILTER
+
+	sizeofKernelSockaddrStorage = C.sizeof_struct___kernel_sockaddr_storage
+	sizeofSockaddrInet          = C.sizeof_struct_sockaddr_in
+	sizeofInetPktinfo           = C.sizeof_struct_in_pktinfo
+	sizeofSockExtendedErr       = C.sizeof_struct_sock_extended_err
+
+	sizeofIPMreq         = C.sizeof_struct_ip_mreq
+	sizeofIPMreqn        = C.sizeof_struct_ip_mreqn
+	sizeofIPMreqSource   = C.sizeof_struct_ip_mreq_source
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+
+	sizeofICMPFilter = C.sizeof_struct_icmp_filter
+
+	sizeofSockFprog = C.sizeof_struct_sock_fprog
+)
+
+type kernelSockaddrStorage C.struct___kernel_sockaddr_storage
+
+type sockaddrInet C.struct_sockaddr_in
+
+type inetPktinfo C.struct_in_pktinfo
+
+type sockExtendedErr C.struct_sock_extended_err
+
+type ipMreq C.struct_ip_mreq
+
+type ipMreqn C.struct_ip_mreqn
+
+type ipMreqSource C.struct_ip_mreq_source
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
+
+type icmpFilter C.struct_icmp_filter
+
+type sockFProg C.struct_sock_fprog
+
+type sockFilter C.struct_sock_filter
diff --git a/vendor/golang.org/x/net/ipv4/defs_netbsd.go b/vendor/golang.org/x/net/ipv4/defs_netbsd.go
new file mode 100644
index 0000000000..8f8af1b899
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_netbsd.go
@@ -0,0 +1,37 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_RECVTTL     = C.IP_RECVTTL
+
+	sysIP_MULTICAST_IF    = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL   = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP  = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP  = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP = C.IP_DROP_MEMBERSHIP
+
+	sizeofIPMreq = C.sizeof_struct_ip_mreq
+)
+
+type ipMreq C.struct_ip_mreq
diff --git a/vendor/golang.org/x/net/ipv4/defs_openbsd.go b/vendor/golang.org/x/net/ipv4/defs_openbsd.go
new file mode 100644
index 0000000000..8f8af1b899
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_openbsd.go
@@ -0,0 +1,37 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_RECVTTL     = C.IP_RECVTTL
+
+	sysIP_MULTICAST_IF    = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL   = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP  = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP  = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP = C.IP_DROP_MEMBERSHIP
+
+	sizeofIPMreq = C.sizeof_struct_ip_mreq
+)
+
+type ipMreq C.struct_ip_mreq
diff --git a/vendor/golang.org/x/net/ipv4/defs_solaris.go b/vendor/golang.org/x/net/ipv4/defs_solaris.go
new file mode 100644
index 0000000000..aeb33e9c8f
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/defs_solaris.go
@@ -0,0 +1,84 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in_addr [4]byte /* in_addr */
+
+package ipv4
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+*/
+import "C"
+
+const (
+	sysIP_OPTIONS     = C.IP_OPTIONS
+	sysIP_HDRINCL     = C.IP_HDRINCL
+	sysIP_TOS         = C.IP_TOS
+	sysIP_TTL         = C.IP_TTL
+	sysIP_RECVOPTS    = C.IP_RECVOPTS
+	sysIP_RECVRETOPTS = C.IP_RECVRETOPTS
+	sysIP_RECVDSTADDR = C.IP_RECVDSTADDR
+	sysIP_RETOPTS     = C.IP_RETOPTS
+	sysIP_RECVIF      = C.IP_RECVIF
+	sysIP_RECVSLLA    = C.IP_RECVSLLA
+	sysIP_RECVTTL     = C.IP_RECVTTL
+
+	sysIP_MULTICAST_IF           = C.IP_MULTICAST_IF
+	sysIP_MULTICAST_TTL          = C.IP_MULTICAST_TTL
+	sysIP_MULTICAST_LOOP         = C.IP_MULTICAST_LOOP
+	sysIP_ADD_MEMBERSHIP         = C.IP_ADD_MEMBERSHIP
+	sysIP_DROP_MEMBERSHIP        = C.IP_DROP_MEMBERSHIP
+	sysIP_BLOCK_SOURCE           = C.IP_BLOCK_SOURCE
+	sysIP_UNBLOCK_SOURCE         = C.IP_UNBLOCK_SOURCE
+	sysIP_ADD_SOURCE_MEMBERSHIP  = C.IP_ADD_SOURCE_MEMBERSHIP
+	sysIP_DROP_SOURCE_MEMBERSHIP = C.IP_DROP_SOURCE_MEMBERSHIP
+	sysIP_NEXTHOP                = C.IP_NEXTHOP
+
+	sysIP_PKTINFO     = C.IP_PKTINFO
+	sysIP_RECVPKTINFO = C.IP_RECVPKTINFO
+	sysIP_DONTFRAG    = C.IP_DONTFRAG
+
+	sysIP_BOUND_IF      = C.IP_BOUND_IF
+	sysIP_UNSPEC_SRC    = C.IP_UNSPEC_SRC
+	sysIP_BROADCAST_TTL = C.IP_BROADCAST_TTL
+	sysIP_DHCPINIT_IF   = C.IP_DHCPINIT_IF
+
+	sysIP_REUSEADDR = C.IP_REUSEADDR
+	sysIP_DONTROUTE = C.IP_DONTROUTE
+	sysIP_BROADCAST = C.IP_BROADCAST
+
+	sysMCAST_JOIN_GROUP         = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP        = C.MCAST_LEAVE_GROUP
+	sysMCAST_BLOCK_SOURCE       = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE     = C.MCAST_UNBLOCK_SOURCE
+	sysMCAST_JOIN_SOURCE_GROUP  = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP = C.MCAST_LEAVE_SOURCE_GROUP
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet    = C.sizeof_struct_sockaddr_in
+	sizeofInetPktinfo     = C.sizeof_struct_in_pktinfo
+
+	sizeofIPMreq         = C.sizeof_struct_ip_mreq
+	sizeofIPMreqSource   = C.sizeof_struct_ip_mreq_source
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet C.struct_sockaddr_in
+
+type inetPktinfo C.struct_in_pktinfo
+
+type ipMreq C.struct_ip_mreq
+
+type ipMreqSource C.struct_ip_mreq_source
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
diff --git a/vendor/golang.org/x/net/ipv4/dgramopt.go b/vendor/golang.org/x/net/ipv4/dgramopt.go
new file mode 100644
index 0000000000..54d77d5fed
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/dgramopt.go
@@ -0,0 +1,265 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/bpf"
+)
+
+// MulticastTTL returns the time-to-live field value for outgoing
+// multicast packets.
+func (c *dgramOpt) MulticastTTL() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastTTL]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetMulticastTTL sets the time-to-live field value for future
+// outgoing multicast packets.
+func (c *dgramOpt) SetMulticastTTL(ttl int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastTTL]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, ttl)
+}
+
+// MulticastInterface returns the default interface for multicast
+// packet transmissions.
+func (c *dgramOpt) MulticastInterface() (*net.Interface, error) {
+	if !c.ok() {
+		return nil, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastInterface]
+	if !ok {
+		return nil, errOpNoSupport
+	}
+	return so.getMulticastInterface(c.Conn)
+}
+
+// SetMulticastInterface sets the default interface for future
+// multicast packet transmissions.
+func (c *dgramOpt) SetMulticastInterface(ifi *net.Interface) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastInterface]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setMulticastInterface(c.Conn, ifi)
+}
+
+// MulticastLoopback reports whether transmitted multicast packets
+// should be copied and send back to the originator.
+func (c *dgramOpt) MulticastLoopback() (bool, error) {
+	if !c.ok() {
+		return false, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastLoopback]
+	if !ok {
+		return false, errOpNoSupport
+	}
+	on, err := so.GetInt(c.Conn)
+	if err != nil {
+		return false, err
+	}
+	return on == 1, nil
+}
+
+// SetMulticastLoopback sets whether transmitted multicast packets
+// should be copied and send back to the originator.
+func (c *dgramOpt) SetMulticastLoopback(on bool) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastLoopback]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, boolint(on))
+}
+
+// JoinGroup joins the group address group on the interface ifi.
+// By default all sources that can cast data to group are accepted.
+// It's possible to mute and unmute data transmission from a specific
+// source by using ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup.
+// JoinGroup uses the system assigned multicast interface when ifi is
+// nil, although this is not recommended because the assignment
+// depends on platforms and sometimes it might require routing
+// configuration.
+func (c *dgramOpt) JoinGroup(ifi *net.Interface, group net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoJoinGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	return so.setGroup(c.Conn, ifi, grp)
+}
+
+// LeaveGroup leaves the group address group on the interface ifi
+// regardless of whether the group is any-source group or
+// source-specific group.
+func (c *dgramOpt) LeaveGroup(ifi *net.Interface, group net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoLeaveGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	return so.setGroup(c.Conn, ifi, grp)
+}
+
+// JoinSourceSpecificGroup joins the source-specific group comprising
+// group and source on the interface ifi.
+// JoinSourceSpecificGroup uses the system assigned multicast
+// interface when ifi is nil, although this is not recommended because
+// the assignment depends on platforms and sometimes it might require
+// routing configuration.
+func (c *dgramOpt) JoinSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoJoinSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP4(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// LeaveSourceSpecificGroup leaves the source-specific group on the
+// interface ifi.
+func (c *dgramOpt) LeaveSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoLeaveSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP4(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// ExcludeSourceSpecificGroup excludes the source-specific group from
+// the already joined any-source groups by JoinGroup on the interface
+// ifi.
+func (c *dgramOpt) ExcludeSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoBlockSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP4(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// IncludeSourceSpecificGroup includes the excluded source-specific
+// group by ExcludeSourceSpecificGroup again on the interface ifi.
+func (c *dgramOpt) IncludeSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoUnblockSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP4(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP4(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// ICMPFilter returns an ICMP filter.
+// Currently only Linux supports this.
+func (c *dgramOpt) ICMPFilter() (*ICMPFilter, error) {
+	if !c.ok() {
+		return nil, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoICMPFilter]
+	if !ok {
+		return nil, errOpNoSupport
+	}
+	return so.getICMPFilter(c.Conn)
+}
+
+// SetICMPFilter deploys the ICMP filter.
+// Currently only Linux supports this.
+func (c *dgramOpt) SetICMPFilter(f *ICMPFilter) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoICMPFilter]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setICMPFilter(c.Conn, f)
+}
+
+// SetBPF attaches a BPF program to the connection.
+//
+// Only supported on Linux.
+func (c *dgramOpt) SetBPF(filter []bpf.RawInstruction) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoAttachFilter]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setBPF(c.Conn, filter)
+}
diff --git a/vendor/golang.org/x/net/ipv4/doc.go b/vendor/golang.org/x/net/ipv4/doc.go
new file mode 100644
index 0000000000..b43935a5ae
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/doc.go
@@ -0,0 +1,244 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package ipv4 implements IP-level socket options for the Internet
+// Protocol version 4.
+//
+// The package provides IP-level socket options that allow
+// manipulation of IPv4 facilities.
+//
+// The IPv4 protocol and basic host requirements for IPv4 are defined
+// in RFC 791 and RFC 1122.
+// Host extensions for multicasting and socket interface extensions
+// for multicast source filters are defined in RFC 1112 and RFC 3678.
+// IGMPv1, IGMPv2 and IGMPv3 are defined in RFC 1112, RFC 2236 and RFC
+// 3376.
+// Source-specific multicast is defined in RFC 4607.
+//
+//
+// Unicasting
+//
+// The options for unicasting are available for net.TCPConn,
+// net.UDPConn and net.IPConn which are created as network connections
+// that use the IPv4 transport. When a single TCP connection carrying
+// a data flow of multiple packets needs to indicate the flow is
+// important, Conn is used to set the type-of-service field on the
+// IPv4 header for each packet.
+//
+//	ln, err := net.Listen("tcp4", "0.0.0.0:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer ln.Close()
+//	for {
+//		c, err := ln.Accept()
+//		if err != nil {
+//			// error handling
+//		}
+//		go func(c net.Conn) {
+//			defer c.Close()
+//
+// The outgoing packets will be labeled DiffServ assured forwarding
+// class 1 low drop precedence, known as AF11 packets.
+//
+//			if err := ipv4.NewConn(c).SetTOS(0x28); err != nil {
+//				// error handling
+//			}
+//			if _, err := c.Write(data); err != nil {
+//				// error handling
+//			}
+//		}(c)
+//	}
+//
+//
+// Multicasting
+//
+// The options for multicasting are available for net.UDPConn and
+// net.IPconn which are created as network connections that use the
+// IPv4 transport. A few network facilities must be prepared before
+// you begin multicasting, at a minimum joining network interfaces and
+// multicast groups.
+//
+//	en0, err := net.InterfaceByName("en0")
+//	if err != nil {
+//		// error handling
+//	}
+//	en1, err := net.InterfaceByIndex(911)
+//	if err != nil {
+//		// error handling
+//	}
+//	group := net.IPv4(224, 0, 0, 250)
+//
+// First, an application listens to an appropriate address with an
+// appropriate service port.
+//
+//	c, err := net.ListenPacket("udp4", "0.0.0.0:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c.Close()
+//
+// Second, the application joins multicast groups, starts listening to
+// the groups on the specified network interfaces. Note that the
+// service port for transport layer protocol does not matter with this
+// operation as joining groups affects only network and link layer
+// protocols, such as IPv4 and Ethernet.
+//
+//	p := ipv4.NewPacketConn(c)
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: group}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en1, &net.UDPAddr{IP: group}); err != nil {
+//		// error handling
+//	}
+//
+// The application might set per packet control message transmissions
+// between the protocol stack within the kernel. When the application
+// needs a destination address on an incoming packet,
+// SetControlMessage of PacketConn is used to enable control message
+// transmissions.
+//
+//	if err := p.SetControlMessage(ipv4.FlagDst, true); err != nil {
+//		// error handling
+//	}
+//
+// The application could identify whether the received packets are
+// of interest by using the control message that contains the
+// destination address of the received packet.
+//
+//	b := make([]byte, 1500)
+//	for {
+//		n, cm, src, err := p.ReadFrom(b)
+//		if err != nil {
+//			// error handling
+//		}
+//		if cm.Dst.IsMulticast() {
+//			if cm.Dst.Equal(group) {
+//				// joined group, do something
+//			} else {
+//				// unknown group, discard
+//				continue
+//			}
+//		}
+//
+// The application can also send both unicast and multicast packets.
+//
+//		p.SetTOS(0x0)
+//		p.SetTTL(16)
+//		if _, err := p.WriteTo(data, nil, src); err != nil {
+//			// error handling
+//		}
+//		dst := &net.UDPAddr{IP: group, Port: 1024}
+//		for _, ifi := range []*net.Interface{en0, en1} {
+//			if err := p.SetMulticastInterface(ifi); err != nil {
+//				// error handling
+//			}
+//			p.SetMulticastTTL(2)
+//			if _, err := p.WriteTo(data, nil, dst); err != nil {
+//				// error handling
+//			}
+//		}
+//	}
+//
+//
+// More multicasting
+//
+// An application that uses PacketConn or RawConn may join multiple
+// multicast groups. For example, a UDP listener with port 1024 might
+// join two different groups across over two different network
+// interfaces by using:
+//
+//	c, err := net.ListenPacket("udp4", "0.0.0.0:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c.Close()
+//	p := ipv4.NewPacketConn(c)
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 248)}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 249)}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en1, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 249)}); err != nil {
+//		// error handling
+//	}
+//
+// It is possible for multiple UDP listeners that listen on the same
+// UDP port to join the same multicast group. The net package will
+// provide a socket that listens to a wildcard address with reusable
+// UDP port when an appropriate multicast address prefix is passed to
+// the net.ListenPacket or net.ListenUDP.
+//
+//	c1, err := net.ListenPacket("udp4", "224.0.0.0:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c1.Close()
+//	c2, err := net.ListenPacket("udp4", "224.0.0.0:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c2.Close()
+//	p1 := ipv4.NewPacketConn(c1)
+//	if err := p1.JoinGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 248)}); err != nil {
+//		// error handling
+//	}
+//	p2 := ipv4.NewPacketConn(c2)
+//	if err := p2.JoinGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 248)}); err != nil {
+//		// error handling
+//	}
+//
+// Also it is possible for the application to leave or rejoin a
+// multicast group on the network interface.
+//
+//	if err := p.LeaveGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 248)}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.IPv4(224, 0, 0, 250)}); err != nil {
+//		// error handling
+//	}
+//
+//
+// Source-specific multicasting
+//
+// An application that uses PacketConn or RawConn on IGMPv3 supported
+// platform is able to join source-specific multicast groups.
+// The application may use JoinSourceSpecificGroup and
+// LeaveSourceSpecificGroup for the operation known as "include" mode,
+//
+//	ssmgroup := net.UDPAddr{IP: net.IPv4(232, 7, 8, 9)}
+//	ssmsource := net.UDPAddr{IP: net.IPv4(192, 168, 0, 1)})
+//	if err := p.JoinSourceSpecificGroup(en0, &ssmgroup, &ssmsource); err != nil {
+//		// error handling
+//	}
+//	if err := p.LeaveSourceSpecificGroup(en0, &ssmgroup, &ssmsource); err != nil {
+//		// error handling
+//	}
+//
+// or JoinGroup, ExcludeSourceSpecificGroup,
+// IncludeSourceSpecificGroup and LeaveGroup for the operation known
+// as "exclude" mode.
+//
+//	exclsource := net.UDPAddr{IP: net.IPv4(192, 168, 0, 254)}
+//	if err := p.JoinGroup(en0, &ssmgroup); err != nil {
+//		// error handling
+//	}
+//	if err := p.ExcludeSourceSpecificGroup(en0, &ssmgroup, &exclsource); err != nil {
+//		// error handling
+//	}
+//	if err := p.LeaveGroup(en0, &ssmgroup); err != nil {
+//		// error handling
+//	}
+//
+// Note that it depends on each platform implementation what happens
+// when an application which runs on IGMPv3 unsupported platform uses
+// JoinSourceSpecificGroup and LeaveSourceSpecificGroup.
+// In general the platform tries to fall back to conversations using
+// IGMPv1 or IGMPv2 and starts to listen to multicast traffic.
+// In the fallback case, ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup may return an error.
+package ipv4 // import "golang.org/x/net/ipv4"
+
+// BUG(mikio): This package is not implemented on NaCl and Plan 9.
diff --git a/vendor/golang.org/x/net/ipv4/endpoint.go b/vendor/golang.org/x/net/ipv4/endpoint.go
new file mode 100644
index 0000000000..2ab8773630
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/endpoint.go
@@ -0,0 +1,187 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+	"time"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the JoinSourceSpecificGroup,
+// LeaveSourceSpecificGroup, ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup methods of PacketConn and RawConn are
+// not implemented.
+
+// A Conn represents a network endpoint that uses the IPv4 transport.
+// It is used to control basic IP-level socket options such as TOS and
+// TTL.
+type Conn struct {
+	genericOpt
+}
+
+type genericOpt struct {
+	*socket.Conn
+}
+
+func (c *genericOpt) ok() bool { return c != nil && c.Conn != nil }
+
+// NewConn returns a new Conn.
+func NewConn(c net.Conn) *Conn {
+	cc, _ := socket.NewConn(c)
+	return &Conn{
+		genericOpt: genericOpt{Conn: cc},
+	}
+}
+
+// A PacketConn represents a packet network endpoint that uses the
+// IPv4 transport. It is used to control several IP-level socket
+// options including multicasting. It also provides datagram based
+// network I/O methods specific to the IPv4 and higher layer protocols
+// such as UDP.
+type PacketConn struct {
+	genericOpt
+	dgramOpt
+	payloadHandler
+}
+
+type dgramOpt struct {
+	*socket.Conn
+}
+
+func (c *dgramOpt) ok() bool { return c != nil && c.Conn != nil }
+
+// SetControlMessage sets the per packet IP-level socket options.
+func (c *PacketConn) SetControlMessage(cf ControlFlags, on bool) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return setControlMessage(c.dgramOpt.Conn, &c.payloadHandler.rawOpt, cf, on)
+}
+
+// SetDeadline sets the read and write deadlines associated with the
+// endpoint.
+func (c *PacketConn) SetDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.PacketConn.SetDeadline(t)
+}
+
+// SetReadDeadline sets the read deadline associated with the
+// endpoint.
+func (c *PacketConn) SetReadDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.PacketConn.SetReadDeadline(t)
+}
+
+// SetWriteDeadline sets the write deadline associated with the
+// endpoint.
+func (c *PacketConn) SetWriteDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.PacketConn.SetWriteDeadline(t)
+}
+
+// Close closes the endpoint.
+func (c *PacketConn) Close() error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.PacketConn.Close()
+}
+
+// NewPacketConn returns a new PacketConn using c as its underlying
+// transport.
+func NewPacketConn(c net.PacketConn) *PacketConn {
+	cc, _ := socket.NewConn(c.(net.Conn))
+	p := &PacketConn{
+		genericOpt:     genericOpt{Conn: cc},
+		dgramOpt:       dgramOpt{Conn: cc},
+		payloadHandler: payloadHandler{PacketConn: c, Conn: cc},
+	}
+	return p
+}
+
+// A RawConn represents a packet network endpoint that uses the IPv4
+// transport. It is used to control several IP-level socket options
+// including IPv4 header manipulation. It also provides datagram
+// based network I/O methods specific to the IPv4 and higher layer
+// protocols that handle IPv4 datagram directly such as OSPF, GRE.
+type RawConn struct {
+	genericOpt
+	dgramOpt
+	packetHandler
+}
+
+// SetControlMessage sets the per packet IP-level socket options.
+func (c *RawConn) SetControlMessage(cf ControlFlags, on bool) error {
+	if !c.packetHandler.ok() {
+		return syscall.EINVAL
+	}
+	return setControlMessage(c.dgramOpt.Conn, &c.packetHandler.rawOpt, cf, on)
+}
+
+// SetDeadline sets the read and write deadlines associated with the
+// endpoint.
+func (c *RawConn) SetDeadline(t time.Time) error {
+	if !c.packetHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.packetHandler.IPConn.SetDeadline(t)
+}
+
+// SetReadDeadline sets the read deadline associated with the
+// endpoint.
+func (c *RawConn) SetReadDeadline(t time.Time) error {
+	if !c.packetHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.packetHandler.IPConn.SetReadDeadline(t)
+}
+
+// SetWriteDeadline sets the write deadline associated with the
+// endpoint.
+func (c *RawConn) SetWriteDeadline(t time.Time) error {
+	if !c.packetHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.packetHandler.IPConn.SetWriteDeadline(t)
+}
+
+// Close closes the endpoint.
+func (c *RawConn) Close() error {
+	if !c.packetHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.packetHandler.IPConn.Close()
+}
+
+// NewRawConn returns a new RawConn using c as its underlying
+// transport.
+func NewRawConn(c net.PacketConn) (*RawConn, error) {
+	cc, err := socket.NewConn(c.(net.Conn))
+	if err != nil {
+		return nil, err
+	}
+	r := &RawConn{
+		genericOpt:    genericOpt{Conn: cc},
+		dgramOpt:      dgramOpt{Conn: cc},
+		packetHandler: packetHandler{IPConn: c.(*net.IPConn), Conn: cc},
+	}
+	so, ok := sockOpts[ssoHeaderPrepend]
+	if !ok {
+		return nil, errOpNoSupport
+	}
+	if err := so.SetInt(r.dgramOpt.Conn, boolint(true)); err != nil {
+		return nil, err
+	}
+	return r, nil
+}
diff --git a/vendor/golang.org/x/net/ipv4/gen.go b/vendor/golang.org/x/net/ipv4/gen.go
new file mode 100644
index 0000000000..1bb1737f67
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/gen.go
@@ -0,0 +1,199 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+//go:generate go run gen.go
+
+// This program generates system adaptation constants and types,
+// internet protocol constants and tables by reading template files
+// and IANA protocol registries.
+package main
+
+import (
+	"bytes"
+	"encoding/xml"
+	"fmt"
+	"go/format"
+	"io"
+	"io/ioutil"
+	"net/http"
+	"os"
+	"os/exec"
+	"runtime"
+	"strconv"
+	"strings"
+)
+
+func main() {
+	if err := genzsys(); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+	if err := geniana(); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+}
+
+func genzsys() error {
+	defs := "defs_" + runtime.GOOS + ".go"
+	f, err := os.Open(defs)
+	if err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+	f.Close()
+	cmd := exec.Command("go", "tool", "cgo", "-godefs", defs)
+	b, err := cmd.Output()
+	if err != nil {
+		return err
+	}
+	b, err = format.Source(b)
+	if err != nil {
+		return err
+	}
+	zsys := "zsys_" + runtime.GOOS + ".go"
+	switch runtime.GOOS {
+	case "freebsd", "linux":
+		zsys = "zsys_" + runtime.GOOS + "_" + runtime.GOARCH + ".go"
+	}
+	if err := ioutil.WriteFile(zsys, b, 0644); err != nil {
+		return err
+	}
+	return nil
+}
+
+var registries = []struct {
+	url   string
+	parse func(io.Writer, io.Reader) error
+}{
+	{
+		"https://www.iana.org/assignments/icmp-parameters/icmp-parameters.xml",
+		parseICMPv4Parameters,
+	},
+}
+
+func geniana() error {
+	var bb bytes.Buffer
+	fmt.Fprintf(&bb, "// go generate gen.go\n")
+	fmt.Fprintf(&bb, "// Code generated by the command above; DO NOT EDIT.\n\n")
+	fmt.Fprintf(&bb, "package ipv4\n\n")
+	for _, r := range registries {
+		resp, err := http.Get(r.url)
+		if err != nil {
+			return err
+		}
+		defer resp.Body.Close()
+		if resp.StatusCode != http.StatusOK {
+			return fmt.Errorf("got HTTP status code %v for %v\n", resp.StatusCode, r.url)
+		}
+		if err := r.parse(&bb, resp.Body); err != nil {
+			return err
+		}
+		fmt.Fprintf(&bb, "\n")
+	}
+	b, err := format.Source(bb.Bytes())
+	if err != nil {
+		return err
+	}
+	if err := ioutil.WriteFile("iana.go", b, 0644); err != nil {
+		return err
+	}
+	return nil
+}
+
+func parseICMPv4Parameters(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var icp icmpv4Parameters
+	if err := dec.Decode(&icp); err != nil {
+		return err
+	}
+	prs := icp.escape()
+	fmt.Fprintf(w, "// %s, Updated: %s\n", icp.Title, icp.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, pr := range prs {
+		if pr.Descr == "" {
+			continue
+		}
+		fmt.Fprintf(w, "ICMPType%s ICMPType = %d", pr.Descr, pr.Value)
+		fmt.Fprintf(w, "// %s\n", pr.OrigDescr)
+	}
+	fmt.Fprintf(w, ")\n\n")
+	fmt.Fprintf(w, "// %s, Updated: %s\n", icp.Title, icp.Updated)
+	fmt.Fprintf(w, "var icmpTypes = map[ICMPType]string{\n")
+	for _, pr := range prs {
+		if pr.Descr == "" {
+			continue
+		}
+		fmt.Fprintf(w, "%d: %q,\n", pr.Value, strings.ToLower(pr.OrigDescr))
+	}
+	fmt.Fprintf(w, "}\n")
+	return nil
+}
+
+type icmpv4Parameters struct {
+	XMLName    xml.Name `xml:"registry"`
+	Title      string   `xml:"title"`
+	Updated    string   `xml:"updated"`
+	Registries []struct {
+		Title   string `xml:"title"`
+		Records []struct {
+			Value string `xml:"value"`
+			Descr string `xml:"description"`
+		} `xml:"record"`
+	} `xml:"registry"`
+}
+
+type canonICMPv4ParamRecord struct {
+	OrigDescr string
+	Descr     string
+	Value     int
+}
+
+func (icp *icmpv4Parameters) escape() []canonICMPv4ParamRecord {
+	id := -1
+	for i, r := range icp.Registries {
+		if strings.Contains(r.Title, "Type") || strings.Contains(r.Title, "type") {
+			id = i
+			break
+		}
+	}
+	if id < 0 {
+		return nil
+	}
+	prs := make([]canonICMPv4ParamRecord, len(icp.Registries[id].Records))
+	sr := strings.NewReplacer(
+		"Messages", "",
+		"Message", "",
+		"ICMP", "",
+		"+", "P",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, pr := range icp.Registries[id].Records {
+		if strings.Contains(pr.Descr, "Reserved") ||
+			strings.Contains(pr.Descr, "Unassigned") ||
+			strings.Contains(pr.Descr, "Deprecated") ||
+			strings.Contains(pr.Descr, "Experiment") ||
+			strings.Contains(pr.Descr, "experiment") {
+			continue
+		}
+		ss := strings.Split(pr.Descr, "\n")
+		if len(ss) > 1 {
+			prs[i].Descr = strings.Join(ss, " ")
+		} else {
+			prs[i].Descr = ss[0]
+		}
+		s := strings.TrimSpace(prs[i].Descr)
+		prs[i].OrigDescr = s
+		prs[i].Descr = sr.Replace(s)
+		prs[i].Value, _ = strconv.Atoi(pr.Value)
+	}
+	return prs
+}
diff --git a/vendor/golang.org/x/net/ipv4/genericopt.go b/vendor/golang.org/x/net/ipv4/genericopt.go
new file mode 100644
index 0000000000..119bf841b6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/genericopt.go
@@ -0,0 +1,57 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import "syscall"
+
+// TOS returns the type-of-service field value for outgoing packets.
+func (c *genericOpt) TOS() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTOS]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetTOS sets the type-of-service field value for future outgoing
+// packets.
+func (c *genericOpt) SetTOS(tos int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTOS]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, tos)
+}
+
+// TTL returns the time-to-live field value for outgoing packets.
+func (c *genericOpt) TTL() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTTL]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetTTL sets the time-to-live field value for future outgoing
+// packets.
+func (c *genericOpt) SetTTL(ttl int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTTL]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, ttl)
+}
diff --git a/vendor/golang.org/x/net/ipv4/header.go b/vendor/golang.org/x/net/ipv4/header.go
new file mode 100644
index 0000000000..8bb0f0f4d4
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/header.go
@@ -0,0 +1,159 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"encoding/binary"
+	"fmt"
+	"net"
+	"runtime"
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+const (
+	Version      = 4  // protocol version
+	HeaderLen    = 20 // header length without extension headers
+	maxHeaderLen = 60 // sensible default, revisit if later RFCs define new usage of version and header length fields
+)
+
+type HeaderFlags int
+
+const (
+	MoreFragments HeaderFlags = 1 << iota // more fragments flag
+	DontFragment                          // don't fragment flag
+)
+
+// A Header represents an IPv4 header.
+type Header struct {
+	Version  int         // protocol version
+	Len      int         // header length
+	TOS      int         // type-of-service
+	TotalLen int         // packet total length
+	ID       int         // identification
+	Flags    HeaderFlags // flags
+	FragOff  int         // fragment offset
+	TTL      int         // time-to-live
+	Protocol int         // next protocol
+	Checksum int         // checksum
+	Src      net.IP      // source address
+	Dst      net.IP      // destination address
+	Options  []byte      // options, extension headers
+}
+
+func (h *Header) String() string {
+	if h == nil {
+		return "<nil>"
+	}
+	return fmt.Sprintf("ver=%d hdrlen=%d tos=%#x totallen=%d id=%#x flags=%#x fragoff=%#x ttl=%d proto=%d cksum=%#x src=%v dst=%v", h.Version, h.Len, h.TOS, h.TotalLen, h.ID, h.Flags, h.FragOff, h.TTL, h.Protocol, h.Checksum, h.Src, h.Dst)
+}
+
+// Marshal returns the binary encoding of h.
+func (h *Header) Marshal() ([]byte, error) {
+	if h == nil {
+		return nil, syscall.EINVAL
+	}
+	if h.Len < HeaderLen {
+		return nil, errHeaderTooShort
+	}
+	hdrlen := HeaderLen + len(h.Options)
+	b := make([]byte, hdrlen)
+	b[0] = byte(Version<<4 | (hdrlen >> 2 & 0x0f))
+	b[1] = byte(h.TOS)
+	flagsAndFragOff := (h.FragOff & 0x1fff) | int(h.Flags<<13)
+	switch runtime.GOOS {
+	case "darwin", "dragonfly", "netbsd":
+		socket.NativeEndian.PutUint16(b[2:4], uint16(h.TotalLen))
+		socket.NativeEndian.PutUint16(b[6:8], uint16(flagsAndFragOff))
+	case "freebsd":
+		if freebsdVersion < 1100000 {
+			socket.NativeEndian.PutUint16(b[2:4], uint16(h.TotalLen))
+			socket.NativeEndian.PutUint16(b[6:8], uint16(flagsAndFragOff))
+		} else {
+			binary.BigEndian.PutUint16(b[2:4], uint16(h.TotalLen))
+			binary.BigEndian.PutUint16(b[6:8], uint16(flagsAndFragOff))
+		}
+	default:
+		binary.BigEndian.PutUint16(b[2:4], uint16(h.TotalLen))
+		binary.BigEndian.PutUint16(b[6:8], uint16(flagsAndFragOff))
+	}
+	binary.BigEndian.PutUint16(b[4:6], uint16(h.ID))
+	b[8] = byte(h.TTL)
+	b[9] = byte(h.Protocol)
+	binary.BigEndian.PutUint16(b[10:12], uint16(h.Checksum))
+	if ip := h.Src.To4(); ip != nil {
+		copy(b[12:16], ip[:net.IPv4len])
+	}
+	if ip := h.Dst.To4(); ip != nil {
+		copy(b[16:20], ip[:net.IPv4len])
+	} else {
+		return nil, errMissingAddress
+	}
+	if len(h.Options) > 0 {
+		copy(b[HeaderLen:], h.Options)
+	}
+	return b, nil
+}
+
+// Parse parses b as an IPv4 header and sotres the result in h.
+func (h *Header) Parse(b []byte) error {
+	if h == nil || len(b) < HeaderLen {
+		return errHeaderTooShort
+	}
+	hdrlen := int(b[0]&0x0f) << 2
+	if hdrlen > len(b) {
+		return errBufferTooShort
+	}
+	h.Version = int(b[0] >> 4)
+	h.Len = hdrlen
+	h.TOS = int(b[1])
+	h.ID = int(binary.BigEndian.Uint16(b[4:6]))
+	h.TTL = int(b[8])
+	h.Protocol = int(b[9])
+	h.Checksum = int(binary.BigEndian.Uint16(b[10:12]))
+	h.Src = net.IPv4(b[12], b[13], b[14], b[15])
+	h.Dst = net.IPv4(b[16], b[17], b[18], b[19])
+	switch runtime.GOOS {
+	case "darwin", "dragonfly", "netbsd":
+		h.TotalLen = int(socket.NativeEndian.Uint16(b[2:4])) + hdrlen
+		h.FragOff = int(socket.NativeEndian.Uint16(b[6:8]))
+	case "freebsd":
+		if freebsdVersion < 1100000 {
+			h.TotalLen = int(socket.NativeEndian.Uint16(b[2:4]))
+			if freebsdVersion < 1000000 {
+				h.TotalLen += hdrlen
+			}
+			h.FragOff = int(socket.NativeEndian.Uint16(b[6:8]))
+		} else {
+			h.TotalLen = int(binary.BigEndian.Uint16(b[2:4]))
+			h.FragOff = int(binary.BigEndian.Uint16(b[6:8]))
+		}
+	default:
+		h.TotalLen = int(binary.BigEndian.Uint16(b[2:4]))
+		h.FragOff = int(binary.BigEndian.Uint16(b[6:8]))
+	}
+	h.Flags = HeaderFlags(h.FragOff&0xe000) >> 13
+	h.FragOff = h.FragOff & 0x1fff
+	optlen := hdrlen - HeaderLen
+	if optlen > 0 && len(b) >= hdrlen {
+		if cap(h.Options) < optlen {
+			h.Options = make([]byte, optlen)
+		} else {
+			h.Options = h.Options[:optlen]
+		}
+		copy(h.Options, b[HeaderLen:hdrlen])
+	}
+	return nil
+}
+
+// ParseHeader parses b as an IPv4 header.
+func ParseHeader(b []byte) (*Header, error) {
+	h := new(Header)
+	if err := h.Parse(b); err != nil {
+		return nil, err
+	}
+	return h, nil
+}
diff --git a/vendor/golang.org/x/net/ipv4/helper.go b/vendor/golang.org/x/net/ipv4/helper.go
new file mode 100644
index 0000000000..a5052e3249
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/helper.go
@@ -0,0 +1,63 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"errors"
+	"net"
+)
+
+var (
+	errMissingAddress           = errors.New("missing address")
+	errMissingHeader            = errors.New("missing header")
+	errHeaderTooShort           = errors.New("header too short")
+	errBufferTooShort           = errors.New("buffer too short")
+	errInvalidConnType          = errors.New("invalid conn type")
+	errOpNoSupport              = errors.New("operation not supported")
+	errNoSuchInterface          = errors.New("no such interface")
+	errNoSuchMulticastInterface = errors.New("no such multicast interface")
+
+	// See http://www.freebsd.org/doc/en/books/porters-handbook/freebsd-versions.html.
+	freebsdVersion uint32
+)
+
+func boolint(b bool) int {
+	if b {
+		return 1
+	}
+	return 0
+}
+
+func netAddrToIP4(a net.Addr) net.IP {
+	switch v := a.(type) {
+	case *net.UDPAddr:
+		if ip := v.IP.To4(); ip != nil {
+			return ip
+		}
+	case *net.IPAddr:
+		if ip := v.IP.To4(); ip != nil {
+			return ip
+		}
+	}
+	return nil
+}
+
+func opAddr(a net.Addr) net.Addr {
+	switch a.(type) {
+	case *net.TCPAddr:
+		if a == nil {
+			return nil
+		}
+	case *net.UDPAddr:
+		if a == nil {
+			return nil
+		}
+	case *net.IPAddr:
+		if a == nil {
+			return nil
+		}
+	}
+	return a
+}
diff --git a/vendor/golang.org/x/net/ipv4/iana.go b/vendor/golang.org/x/net/ipv4/iana.go
new file mode 100644
index 0000000000..4375b4099b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/iana.go
@@ -0,0 +1,38 @@
+// go generate gen.go
+// Code generated by the command above; DO NOT EDIT.
+
+package ipv4
+
+// Internet Control Message Protocol (ICMP) Parameters, Updated: 2018-02-26
+const (
+	ICMPTypeEchoReply              ICMPType = 0  // Echo Reply
+	ICMPTypeDestinationUnreachable ICMPType = 3  // Destination Unreachable
+	ICMPTypeRedirect               ICMPType = 5  // Redirect
+	ICMPTypeEcho                   ICMPType = 8  // Echo
+	ICMPTypeRouterAdvertisement    ICMPType = 9  // Router Advertisement
+	ICMPTypeRouterSolicitation     ICMPType = 10 // Router Solicitation
+	ICMPTypeTimeExceeded           ICMPType = 11 // Time Exceeded
+	ICMPTypeParameterProblem       ICMPType = 12 // Parameter Problem
+	ICMPTypeTimestamp              ICMPType = 13 // Timestamp
+	ICMPTypeTimestampReply         ICMPType = 14 // Timestamp Reply
+	ICMPTypePhoturis               ICMPType = 40 // Photuris
+	ICMPTypeExtendedEchoRequest    ICMPType = 42 // Extended Echo Request
+	ICMPTypeExtendedEchoReply      ICMPType = 43 // Extended Echo Reply
+)
+
+// Internet Control Message Protocol (ICMP) Parameters, Updated: 2018-02-26
+var icmpTypes = map[ICMPType]string{
+	0:  "echo reply",
+	3:  "destination unreachable",
+	5:  "redirect",
+	8:  "echo",
+	9:  "router advertisement",
+	10: "router solicitation",
+	11: "time exceeded",
+	12: "parameter problem",
+	13: "timestamp",
+	14: "timestamp reply",
+	40: "photuris",
+	42: "extended echo request",
+	43: "extended echo reply",
+}
diff --git a/vendor/golang.org/x/net/ipv4/icmp.go b/vendor/golang.org/x/net/ipv4/icmp.go
new file mode 100644
index 0000000000..9902bb3d2a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/icmp.go
@@ -0,0 +1,57 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import "golang.org/x/net/internal/iana"
+
+// An ICMPType represents a type of ICMP message.
+type ICMPType int
+
+func (typ ICMPType) String() string {
+	s, ok := icmpTypes[typ]
+	if !ok {
+		return "<nil>"
+	}
+	return s
+}
+
+// Protocol returns the ICMPv4 protocol number.
+func (typ ICMPType) Protocol() int {
+	return iana.ProtocolICMP
+}
+
+// An ICMPFilter represents an ICMP message filter for incoming
+// packets. The filter belongs to a packet delivery path on a host and
+// it cannot interact with forwarding packets or tunnel-outer packets.
+//
+// Note: RFC 8200 defines a reasonable role model and it works not
+// only for IPv6 but IPv4. A node means a device that implements IP.
+// A router means a node that forwards IP packets not explicitly
+// addressed to itself, and a host means a node that is not a router.
+type ICMPFilter struct {
+	icmpFilter
+}
+
+// Accept accepts incoming ICMP packets including the type field value
+// typ.
+func (f *ICMPFilter) Accept(typ ICMPType) {
+	f.accept(typ)
+}
+
+// Block blocks incoming ICMP packets including the type field value
+// typ.
+func (f *ICMPFilter) Block(typ ICMPType) {
+	f.block(typ)
+}
+
+// SetAll sets the filter action to the filter.
+func (f *ICMPFilter) SetAll(block bool) {
+	f.setAll(block)
+}
+
+// WillBlock reports whether the ICMP type will be blocked.
+func (f *ICMPFilter) WillBlock(typ ICMPType) bool {
+	return f.willBlock(typ)
+}
diff --git a/vendor/golang.org/x/net/ipv4/icmp_linux.go b/vendor/golang.org/x/net/ipv4/icmp_linux.go
new file mode 100644
index 0000000000..6e1c5c80ad
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/icmp_linux.go
@@ -0,0 +1,25 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+func (f *icmpFilter) accept(typ ICMPType) {
+	f.Data &^= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpFilter) block(typ ICMPType) {
+	f.Data |= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpFilter) setAll(block bool) {
+	if block {
+		f.Data = 1<<32 - 1
+	} else {
+		f.Data = 0
+	}
+}
+
+func (f *icmpFilter) willBlock(typ ICMPType) bool {
+	return f.Data&(1<<(uint32(typ)&31)) != 0
+}
diff --git a/vendor/golang.org/x/net/ipv4/icmp_stub.go b/vendor/golang.org/x/net/ipv4/icmp_stub.go
new file mode 100644
index 0000000000..21bb29ab36
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/icmp_stub.go
@@ -0,0 +1,25 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !linux
+
+package ipv4
+
+const sizeofICMPFilter = 0x0
+
+type icmpFilter struct {
+}
+
+func (f *icmpFilter) accept(typ ICMPType) {
+}
+
+func (f *icmpFilter) block(typ ICMPType) {
+}
+
+func (f *icmpFilter) setAll(block bool) {
+}
+
+func (f *icmpFilter) willBlock(typ ICMPType) bool {
+	return false
+}
diff --git a/vendor/golang.org/x/net/ipv4/packet.go b/vendor/golang.org/x/net/ipv4/packet.go
new file mode 100644
index 0000000000..f00f5b052f
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/packet.go
@@ -0,0 +1,69 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the ReadFrom and WriteTo methods of RawConn
+// are not implemented.
+
+// A packetHandler represents the IPv4 datagram handler.
+type packetHandler struct {
+	*net.IPConn
+	*socket.Conn
+	rawOpt
+}
+
+func (c *packetHandler) ok() bool { return c != nil && c.IPConn != nil && c.Conn != nil }
+
+// ReadFrom reads an IPv4 datagram from the endpoint c, copying the
+// datagram into b. It returns the received datagram as the IPv4
+// header h, the payload p and the control message cm.
+func (c *packetHandler) ReadFrom(b []byte) (h *Header, p []byte, cm *ControlMessage, err error) {
+	if !c.ok() {
+		return nil, nil, nil, syscall.EINVAL
+	}
+	return c.readFrom(b)
+}
+
+func slicePacket(b []byte) (h, p []byte, err error) {
+	if len(b) < HeaderLen {
+		return nil, nil, errHeaderTooShort
+	}
+	hdrlen := int(b[0]&0x0f) << 2
+	return b[:hdrlen], b[hdrlen:], nil
+}
+
+// WriteTo writes an IPv4 datagram through the endpoint c, copying the
+// datagram from the IPv4 header h and the payload p. The control
+// message cm allows the datagram path and the outgoing interface to be
+// specified.  Currently only Darwin and Linux support this. The cm
+// may be nil if control of the outgoing datagram is not required.
+//
+// The IPv4 header h must contain appropriate fields that include:
+//
+//	Version       = <must be specified>
+//	Len           = <must be specified>
+//	TOS           = <must be specified>
+//	TotalLen      = <must be specified>
+//	ID            = platform sets an appropriate value if ID is zero
+//	FragOff       = <must be specified>
+//	TTL           = <must be specified>
+//	Protocol      = <must be specified>
+//	Checksum      = platform sets an appropriate value if Checksum is zero
+//	Src           = platform sets an appropriate value if Src is nil
+//	Dst           = <must be specified>
+//	Options       = optional
+func (c *packetHandler) WriteTo(h *Header, p []byte, cm *ControlMessage) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	return c.writeTo(h, p, cm)
+}
diff --git a/vendor/golang.org/x/net/ipv4/packet_go1_8.go b/vendor/golang.org/x/net/ipv4/packet_go1_8.go
new file mode 100644
index 0000000000..b47d186834
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/packet_go1_8.go
@@ -0,0 +1,56 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.9
+
+package ipv4
+
+import "net"
+
+func (c *packetHandler) readFrom(b []byte) (h *Header, p []byte, cm *ControlMessage, err error) {
+	c.rawOpt.RLock()
+	oob := NewControlMessage(c.rawOpt.cflags)
+	c.rawOpt.RUnlock()
+	n, nn, _, src, err := c.ReadMsgIP(b, oob)
+	if err != nil {
+		return nil, nil, nil, err
+	}
+	var hs []byte
+	if hs, p, err = slicePacket(b[:n]); err != nil {
+		return nil, nil, nil, err
+	}
+	if h, err = ParseHeader(hs); err != nil {
+		return nil, nil, nil, err
+	}
+	if nn > 0 {
+		cm = new(ControlMessage)
+		if err := cm.Parse(oob[:nn]); err != nil {
+			return nil, nil, nil, err
+		}
+	}
+	if src != nil && cm != nil {
+		cm.Src = src.IP
+	}
+	return
+}
+
+func (c *packetHandler) writeTo(h *Header, p []byte, cm *ControlMessage) error {
+	oob := cm.Marshal()
+	wh, err := h.Marshal()
+	if err != nil {
+		return err
+	}
+	dst := new(net.IPAddr)
+	if cm != nil {
+		if ip := cm.Dst.To4(); ip != nil {
+			dst.IP = ip
+		}
+	}
+	if dst.IP == nil {
+		dst.IP = h.Dst
+	}
+	wh = append(wh, p...)
+	_, _, err = c.WriteMsgIP(wh, oob, dst)
+	return err
+}
diff --git a/vendor/golang.org/x/net/ipv4/packet_go1_9.go b/vendor/golang.org/x/net/ipv4/packet_go1_9.go
new file mode 100644
index 0000000000..082c36d73e
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/packet_go1_9.go
@@ -0,0 +1,67 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (c *packetHandler) readFrom(b []byte) (h *Header, p []byte, cm *ControlMessage, err error) {
+	c.rawOpt.RLock()
+	m := socket.Message{
+		Buffers: [][]byte{b},
+		OOB:     NewControlMessage(c.rawOpt.cflags),
+	}
+	c.rawOpt.RUnlock()
+	if err := c.RecvMsg(&m, 0); err != nil {
+		return nil, nil, nil, &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+	}
+	var hs []byte
+	if hs, p, err = slicePacket(b[:m.N]); err != nil {
+		return nil, nil, nil, &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+	}
+	if h, err = ParseHeader(hs); err != nil {
+		return nil, nil, nil, &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+	}
+	if m.NN > 0 {
+		cm = new(ControlMessage)
+		if err := cm.Parse(m.OOB[:m.NN]); err != nil {
+			return nil, nil, nil, &net.OpError{Op: "read", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Err: err}
+		}
+	}
+	if src, ok := m.Addr.(*net.IPAddr); ok && cm != nil {
+		cm.Src = src.IP
+	}
+	return
+}
+
+func (c *packetHandler) writeTo(h *Header, p []byte, cm *ControlMessage) error {
+	m := socket.Message{
+		OOB: cm.Marshal(),
+	}
+	wh, err := h.Marshal()
+	if err != nil {
+		return err
+	}
+	m.Buffers = [][]byte{wh, p}
+	dst := new(net.IPAddr)
+	if cm != nil {
+		if ip := cm.Dst.To4(); ip != nil {
+			dst.IP = ip
+		}
+	}
+	if dst.IP == nil {
+		dst.IP = h.Dst
+	}
+	m.Addr = dst
+	if err := c.SendMsg(&m, 0); err != nil {
+		return &net.OpError{Op: "write", Net: c.IPConn.LocalAddr().Network(), Source: c.IPConn.LocalAddr(), Addr: opAddr(dst), Err: err}
+	}
+	return nil
+}
diff --git a/vendor/golang.org/x/net/ipv4/payload.go b/vendor/golang.org/x/net/ipv4/payload.go
new file mode 100644
index 0000000000..f95f811acd
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/payload.go
@@ -0,0 +1,23 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the ControlMessage for ReadFrom and WriteTo
+// methods of PacketConn is not implemented.
+
+// A payloadHandler represents the IPv4 datagram payload handler.
+type payloadHandler struct {
+	net.PacketConn
+	*socket.Conn
+	rawOpt
+}
+
+func (c *payloadHandler) ok() bool { return c != nil && c.PacketConn != nil && c.Conn != nil }
diff --git a/vendor/golang.org/x/net/ipv4/payload_cmsg.go b/vendor/golang.org/x/net/ipv4/payload_cmsg.go
new file mode 100644
index 0000000000..3f06d76063
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/payload_cmsg.go
@@ -0,0 +1,36 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !nacl,!plan9,!windows
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+)
+
+// ReadFrom reads a payload of the received IPv4 datagram, from the
+// endpoint c, copying the payload into b. It returns the number of
+// bytes copied into b, the control message cm and the source address
+// src of the received datagram.
+func (c *payloadHandler) ReadFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	if !c.ok() {
+		return 0, nil, nil, syscall.EINVAL
+	}
+	return c.readFrom(b)
+}
+
+// WriteTo writes a payload of the IPv4 datagram, to the destination
+// address dst through the endpoint c, copying the payload from b. It
+// returns the number of bytes written. The control message cm allows
+// the datagram path and the outgoing interface to be specified.
+// Currently only Darwin and Linux support this. The cm may be nil if
+// control of the outgoing datagram is not required.
+func (c *payloadHandler) WriteTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	return c.writeTo(b, cm, dst)
+}
diff --git a/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_8.go b/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_8.go
new file mode 100644
index 0000000000..d26ccd90c4
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_8.go
@@ -0,0 +1,59 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.9
+// +build !nacl,!plan9,!windows
+
+package ipv4
+
+import "net"
+
+func (c *payloadHandler) readFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	c.rawOpt.RLock()
+	oob := NewControlMessage(c.rawOpt.cflags)
+	c.rawOpt.RUnlock()
+	var nn int
+	switch c := c.PacketConn.(type) {
+	case *net.UDPConn:
+		if n, nn, _, src, err = c.ReadMsgUDP(b, oob); err != nil {
+			return 0, nil, nil, err
+		}
+	case *net.IPConn:
+		nb := make([]byte, maxHeaderLen+len(b))
+		if n, nn, _, src, err = c.ReadMsgIP(nb, oob); err != nil {
+			return 0, nil, nil, err
+		}
+		hdrlen := int(nb[0]&0x0f) << 2
+		copy(b, nb[hdrlen:])
+		n -= hdrlen
+	default:
+		return 0, nil, nil, &net.OpError{Op: "read", Net: c.LocalAddr().Network(), Source: c.LocalAddr(), Err: errInvalidConnType}
+	}
+	if nn > 0 {
+		cm = new(ControlMessage)
+		if err = cm.Parse(oob[:nn]); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+	}
+	if cm != nil {
+		cm.Src = netAddrToIP4(src)
+	}
+	return
+}
+
+func (c *payloadHandler) writeTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	oob := cm.Marshal()
+	if dst == nil {
+		return 0, &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: errMissingAddress}
+	}
+	switch c := c.PacketConn.(type) {
+	case *net.UDPConn:
+		n, _, err = c.WriteMsgUDP(b, oob, dst.(*net.UDPAddr))
+	case *net.IPConn:
+		n, _, err = c.WriteMsgIP(b, oob, dst.(*net.IPAddr))
+	default:
+		return 0, &net.OpError{Op: "write", Net: c.LocalAddr().Network(), Source: c.LocalAddr(), Addr: opAddr(dst), Err: errInvalidConnType}
+	}
+	return
+}
diff --git a/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_9.go b/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_9.go
new file mode 100644
index 0000000000..2f19311839
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/payload_cmsg_go1_9.go
@@ -0,0 +1,67 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build !nacl,!plan9,!windows
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (c *payloadHandler) readFrom(b []byte) (int, *ControlMessage, net.Addr, error) {
+	c.rawOpt.RLock()
+	m := socket.Message{
+		OOB: NewControlMessage(c.rawOpt.cflags),
+	}
+	c.rawOpt.RUnlock()
+	switch c.PacketConn.(type) {
+	case *net.UDPConn:
+		m.Buffers = [][]byte{b}
+		if err := c.RecvMsg(&m, 0); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+	case *net.IPConn:
+		h := make([]byte, HeaderLen)
+		m.Buffers = [][]byte{h, b}
+		if err := c.RecvMsg(&m, 0); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		hdrlen := int(h[0]&0x0f) << 2
+		if hdrlen > len(h) {
+			d := hdrlen - len(h)
+			copy(b, b[d:])
+			m.N -= d
+		} else {
+			m.N -= hdrlen
+		}
+	default:
+		return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: errInvalidConnType}
+	}
+	var cm *ControlMessage
+	if m.NN > 0 {
+		cm = new(ControlMessage)
+		if err := cm.Parse(m.OOB[:m.NN]); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		cm.Src = netAddrToIP4(m.Addr)
+	}
+	return m.N, cm, m.Addr, nil
+}
+
+func (c *payloadHandler) writeTo(b []byte, cm *ControlMessage, dst net.Addr) (int, error) {
+	m := socket.Message{
+		Buffers: [][]byte{b},
+		OOB:     cm.Marshal(),
+		Addr:    dst,
+	}
+	err := c.SendMsg(&m, 0)
+	if err != nil {
+		err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Addr: opAddr(dst), Err: err}
+	}
+	return m.N, err
+}
diff --git a/vendor/golang.org/x/net/ipv4/payload_nocmsg.go b/vendor/golang.org/x/net/ipv4/payload_nocmsg.go
new file mode 100644
index 0000000000..3926de70b8
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/payload_nocmsg.go
@@ -0,0 +1,42 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build nacl plan9 windows
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+)
+
+// ReadFrom reads a payload of the received IPv4 datagram, from the
+// endpoint c, copying the payload into b. It returns the number of
+// bytes copied into b, the control message cm and the source address
+// src of the received datagram.
+func (c *payloadHandler) ReadFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	if !c.ok() {
+		return 0, nil, nil, syscall.EINVAL
+	}
+	if n, src, err = c.PacketConn.ReadFrom(b); err != nil {
+		return 0, nil, nil, err
+	}
+	return
+}
+
+// WriteTo writes a payload of the IPv4 datagram, to the destination
+// address dst through the endpoint c, copying the payload from b. It
+// returns the number of bytes written. The control message cm allows
+// the datagram path and the outgoing interface to be specified.
+// Currently only Darwin and Linux support this. The cm may be nil if
+// control of the outgoing datagram is not required.
+func (c *payloadHandler) WriteTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	if dst == nil {
+		return 0, errMissingAddress
+	}
+	return c.PacketConn.WriteTo(b, dst)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sockopt.go b/vendor/golang.org/x/net/ipv4/sockopt.go
new file mode 100644
index 0000000000..22e90c0392
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sockopt.go
@@ -0,0 +1,44 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import "golang.org/x/net/internal/socket"
+
+// Sticky socket options
+const (
+	ssoTOS                = iota // header field for unicast packet
+	ssoTTL                       // header field for unicast packet
+	ssoMulticastTTL              // header field for multicast packet
+	ssoMulticastInterface        // outbound interface for multicast packet
+	ssoMulticastLoopback         // loopback for multicast packet
+	ssoReceiveTTL                // header field on received packet
+	ssoReceiveDst                // header field on received packet
+	ssoReceiveInterface          // inbound interface on received packet
+	ssoPacketInfo                // incbound or outbound packet path
+	ssoHeaderPrepend             // ipv4 header prepend
+	ssoStripHeader               // strip ipv4 header
+	ssoICMPFilter                // icmp filter
+	ssoJoinGroup                 // any-source multicast
+	ssoLeaveGroup                // any-source multicast
+	ssoJoinSourceGroup           // source-specific multicast
+	ssoLeaveSourceGroup          // source-specific multicast
+	ssoBlockSourceGroup          // any-source or source-specific multicast
+	ssoUnblockSourceGroup        // any-source or source-specific multicast
+	ssoAttachFilter              // attach BPF for filtering inbound traffic
+)
+
+// Sticky socket option value types
+const (
+	ssoTypeIPMreq = iota + 1
+	ssoTypeIPMreqn
+	ssoTypeGroupReq
+	ssoTypeGroupSourceReq
+)
+
+// A sockOpt represents a binding for sticky socket option.
+type sockOpt struct {
+	socket.Option
+	typ int // hint for option value type; optional
+}
diff --git a/vendor/golang.org/x/net/ipv4/sockopt_posix.go b/vendor/golang.org/x/net/ipv4/sockopt_posix.go
new file mode 100644
index 0000000000..e96955bc18
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sockopt_posix.go
@@ -0,0 +1,71 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris windows
+
+package ipv4
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getMulticastInterface(c *socket.Conn) (*net.Interface, error) {
+	switch so.typ {
+	case ssoTypeIPMreqn:
+		return so.getIPMreqn(c)
+	default:
+		return so.getMulticastIf(c)
+	}
+}
+
+func (so *sockOpt) setMulticastInterface(c *socket.Conn, ifi *net.Interface) error {
+	switch so.typ {
+	case ssoTypeIPMreqn:
+		return so.setIPMreqn(c, ifi, nil)
+	default:
+		return so.setMulticastIf(c, ifi)
+	}
+}
+
+func (so *sockOpt) getICMPFilter(c *socket.Conn) (*ICMPFilter, error) {
+	b := make([]byte, so.Len)
+	n, err := so.Get(c, b)
+	if err != nil {
+		return nil, err
+	}
+	if n != sizeofICMPFilter {
+		return nil, errOpNoSupport
+	}
+	return (*ICMPFilter)(unsafe.Pointer(&b[0])), nil
+}
+
+func (so *sockOpt) setICMPFilter(c *socket.Conn, f *ICMPFilter) error {
+	b := (*[sizeofICMPFilter]byte)(unsafe.Pointer(f))[:sizeofICMPFilter]
+	return so.Set(c, b)
+}
+
+func (so *sockOpt) setGroup(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	switch so.typ {
+	case ssoTypeIPMreq:
+		return so.setIPMreq(c, ifi, grp)
+	case ssoTypeIPMreqn:
+		return so.setIPMreqn(c, ifi, grp)
+	case ssoTypeGroupReq:
+		return so.setGroupReq(c, ifi, grp)
+	default:
+		return errOpNoSupport
+	}
+}
+
+func (so *sockOpt) setSourceGroup(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return so.setGroupSourceReq(c, ifi, grp, src)
+}
+
+func (so *sockOpt) setBPF(c *socket.Conn, f []bpf.RawInstruction) error {
+	return so.setAttachFilter(c, f)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sockopt_stub.go b/vendor/golang.org/x/net/ipv4/sockopt_stub.go
new file mode 100644
index 0000000000..23249b782e
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sockopt_stub.go
@@ -0,0 +1,42 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getMulticastInterface(c *socket.Conn) (*net.Interface, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setMulticastInterface(c *socket.Conn, ifi *net.Interface) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) getICMPFilter(c *socket.Conn) (*ICMPFilter, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setICMPFilter(c *socket.Conn, f *ICMPFilter) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setGroup(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setSourceGroup(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setBPF(c *socket.Conn, f []bpf.RawInstruction) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_asmreq.go b/vendor/golang.org/x/net/ipv4/sys_asmreq.go
new file mode 100644
index 0000000000..0388cba00c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_asmreq.go
@@ -0,0 +1,119 @@
+// Copyright 2012 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd openbsd solaris windows
+
+package ipv4
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setIPMreq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	mreq := ipMreq{Multiaddr: [4]byte{grp[0], grp[1], grp[2], grp[3]}}
+	if err := setIPMreqInterface(&mreq, ifi); err != nil {
+		return err
+	}
+	b := (*[sizeofIPMreq]byte)(unsafe.Pointer(&mreq))[:sizeofIPMreq]
+	return so.Set(c, b)
+}
+
+func (so *sockOpt) getMulticastIf(c *socket.Conn) (*net.Interface, error) {
+	var b [4]byte
+	if _, err := so.Get(c, b[:]); err != nil {
+		return nil, err
+	}
+	ifi, err := netIP4ToInterface(net.IPv4(b[0], b[1], b[2], b[3]))
+	if err != nil {
+		return nil, err
+	}
+	return ifi, nil
+}
+
+func (so *sockOpt) setMulticastIf(c *socket.Conn, ifi *net.Interface) error {
+	ip, err := netInterfaceToIP4(ifi)
+	if err != nil {
+		return err
+	}
+	var b [4]byte
+	copy(b[:], ip)
+	return so.Set(c, b[:])
+}
+
+func setIPMreqInterface(mreq *ipMreq, ifi *net.Interface) error {
+	if ifi == nil {
+		return nil
+	}
+	ifat, err := ifi.Addrs()
+	if err != nil {
+		return err
+	}
+	for _, ifa := range ifat {
+		switch ifa := ifa.(type) {
+		case *net.IPAddr:
+			if ip := ifa.IP.To4(); ip != nil {
+				copy(mreq.Interface[:], ip)
+				return nil
+			}
+		case *net.IPNet:
+			if ip := ifa.IP.To4(); ip != nil {
+				copy(mreq.Interface[:], ip)
+				return nil
+			}
+		}
+	}
+	return errNoSuchInterface
+}
+
+func netIP4ToInterface(ip net.IP) (*net.Interface, error) {
+	ift, err := net.Interfaces()
+	if err != nil {
+		return nil, err
+	}
+	for _, ifi := range ift {
+		ifat, err := ifi.Addrs()
+		if err != nil {
+			return nil, err
+		}
+		for _, ifa := range ifat {
+			switch ifa := ifa.(type) {
+			case *net.IPAddr:
+				if ip.Equal(ifa.IP) {
+					return &ifi, nil
+				}
+			case *net.IPNet:
+				if ip.Equal(ifa.IP) {
+					return &ifi, nil
+				}
+			}
+		}
+	}
+	return nil, errNoSuchInterface
+}
+
+func netInterfaceToIP4(ifi *net.Interface) (net.IP, error) {
+	if ifi == nil {
+		return net.IPv4zero.To4(), nil
+	}
+	ifat, err := ifi.Addrs()
+	if err != nil {
+		return nil, err
+	}
+	for _, ifa := range ifat {
+		switch ifa := ifa.(type) {
+		case *net.IPAddr:
+			if ip := ifa.IP.To4(); ip != nil {
+				return ip, nil
+			}
+		case *net.IPNet:
+			if ip := ifa.IP.To4(); ip != nil {
+				return ip, nil
+			}
+		}
+	}
+	return nil, errNoSuchInterface
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_asmreq_stub.go b/vendor/golang.org/x/net/ipv4/sys_asmreq_stub.go
new file mode 100644
index 0000000000..f3919208b6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_asmreq_stub.go
@@ -0,0 +1,25 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!netbsd,!openbsd,!solaris,!windows
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setIPMreq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) getMulticastIf(c *socket.Conn) (*net.Interface, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setMulticastIf(c *socket.Conn, ifi *net.Interface) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_asmreqn.go b/vendor/golang.org/x/net/ipv4/sys_asmreqn.go
new file mode 100644
index 0000000000..1f24f69f3b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_asmreqn.go
@@ -0,0 +1,42 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin freebsd linux
+
+package ipv4
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getIPMreqn(c *socket.Conn) (*net.Interface, error) {
+	b := make([]byte, so.Len)
+	if _, err := so.Get(c, b); err != nil {
+		return nil, err
+	}
+	mreqn := (*ipMreqn)(unsafe.Pointer(&b[0]))
+	if mreqn.Ifindex == 0 {
+		return nil, nil
+	}
+	ifi, err := net.InterfaceByIndex(int(mreqn.Ifindex))
+	if err != nil {
+		return nil, err
+	}
+	return ifi, nil
+}
+
+func (so *sockOpt) setIPMreqn(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	var mreqn ipMreqn
+	if ifi != nil {
+		mreqn.Ifindex = int32(ifi.Index)
+	}
+	if grp != nil {
+		mreqn.Multiaddr = [4]byte{grp[0], grp[1], grp[2], grp[3]}
+	}
+	b := (*[sizeofIPMreqn]byte)(unsafe.Pointer(&mreqn))[:sizeofIPMreqn]
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_asmreqn_stub.go b/vendor/golang.org/x/net/ipv4/sys_asmreqn_stub.go
new file mode 100644
index 0000000000..0711d3d786
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_asmreqn_stub.go
@@ -0,0 +1,21 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!freebsd,!linux
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getIPMreqn(c *socket.Conn) (*net.Interface, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setIPMreqn(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_bpf.go b/vendor/golang.org/x/net/ipv4/sys_bpf.go
new file mode 100644
index 0000000000..9f30b7308e
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_bpf.go
@@ -0,0 +1,23 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux
+
+package ipv4
+
+import (
+	"unsafe"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setAttachFilter(c *socket.Conn, f []bpf.RawInstruction) error {
+	prog := sockFProg{
+		Len:    uint16(len(f)),
+		Filter: (*sockFilter)(unsafe.Pointer(&f[0])),
+	}
+	b := (*[sizeofSockFprog]byte)(unsafe.Pointer(&prog))[:sizeofSockFprog]
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_bpf_stub.go b/vendor/golang.org/x/net/ipv4/sys_bpf_stub.go
new file mode 100644
index 0000000000..9a2132093d
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_bpf_stub.go
@@ -0,0 +1,16 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !linux
+
+package ipv4
+
+import (
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setAttachFilter(c *socket.Conn, f []bpf.RawInstruction) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_bsd.go b/vendor/golang.org/x/net/ipv4/sys_bsd.go
new file mode 100644
index 0000000000..58256dd9d6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_bsd.go
@@ -0,0 +1,37 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build netbsd openbsd
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:       {sysIP_RECVTTL, 1, marshalTTL, parseTTL},
+		ctlDst:       {sysIP_RECVDSTADDR, net.IPv4len, marshalDst, parseDst},
+		ctlInterface: {sysIP_RECVIF, syscall.SizeofSockaddrDatalink, marshalInterface, parseInterface},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 1}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 1}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoReceiveDst:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVDSTADDR, Len: 4}},
+		ssoReceiveInterface:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVIF, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_ADD_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_DROP_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+	}
+)
diff --git a/vendor/golang.org/x/net/ipv4/sys_darwin.go b/vendor/golang.org/x/net/ipv4/sys_darwin.go
new file mode 100644
index 0000000000..e8fb191692
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_darwin.go
@@ -0,0 +1,93 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"strconv"
+	"strings"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:       {sysIP_RECVTTL, 1, marshalTTL, parseTTL},
+		ctlDst:       {sysIP_RECVDSTADDR, net.IPv4len, marshalDst, parseDst},
+		ctlInterface: {sysIP_RECVIF, syscall.SizeofSockaddrDatalink, marshalInterface, parseInterface},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 1}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoReceiveDst:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVDSTADDR, Len: 4}},
+		ssoReceiveInterface:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVIF, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoStripHeader:        {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_STRIPHDR, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_ADD_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_DROP_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+	}
+)
+
+func init() {
+	// Seems like kern.osreldate is veiled on latest OS X. We use
+	// kern.osrelease instead.
+	s, err := syscall.Sysctl("kern.osrelease")
+	if err != nil {
+		return
+	}
+	ss := strings.Split(s, ".")
+	if len(ss) == 0 {
+		return
+	}
+	// The IP_PKTINFO and protocol-independent multicast API were
+	// introduced in OS X 10.7 (Darwin 11). But it looks like
+	// those features require OS X 10.8 (Darwin 12) or above.
+	// See http://support.apple.com/kb/HT1633.
+	if mjver, err := strconv.Atoi(ss[0]); err != nil || mjver < 12 {
+		return
+	}
+	ctlOpts[ctlPacketInfo].name = sysIP_PKTINFO
+	ctlOpts[ctlPacketInfo].length = sizeofInetPktinfo
+	ctlOpts[ctlPacketInfo].marshal = marshalPacketInfo
+	ctlOpts[ctlPacketInfo].parse = parsePacketInfo
+	sockOpts[ssoPacketInfo] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVPKTINFO, Len: 4}}
+	sockOpts[ssoMulticastInterface] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: sizeofIPMreqn}, typ: ssoTypeIPMreqn}
+	sockOpts[ssoJoinGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq}
+	sockOpts[ssoLeaveGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq}
+	sockOpts[ssoJoinSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoLeaveSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoBlockSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoUnblockSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+}
+
+func (pi *inetPktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gr)) + 4))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 4))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 132))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_dragonfly.go b/vendor/golang.org/x/net/ipv4/sys_dragonfly.go
new file mode 100644
index 0000000000..859764f33a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_dragonfly.go
@@ -0,0 +1,35 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:       {sysIP_RECVTTL, 1, marshalTTL, parseTTL},
+		ctlDst:       {sysIP_RECVDSTADDR, net.IPv4len, marshalDst, parseDst},
+		ctlInterface: {sysIP_RECVIF, syscall.SizeofSockaddrDatalink, marshalInterface, parseInterface},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 1}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoReceiveDst:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVDSTADDR, Len: 4}},
+		ssoReceiveInterface:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVIF, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_ADD_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_DROP_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+	}
+)
diff --git a/vendor/golang.org/x/net/ipv4/sys_freebsd.go b/vendor/golang.org/x/net/ipv4/sys_freebsd.go
new file mode 100644
index 0000000000..b80032454a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_freebsd.go
@@ -0,0 +1,76 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"runtime"
+	"strings"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:       {sysIP_RECVTTL, 1, marshalTTL, parseTTL},
+		ctlDst:       {sysIP_RECVDSTADDR, net.IPv4len, marshalDst, parseDst},
+		ctlInterface: {sysIP_RECVIF, syscall.SizeofSockaddrDatalink, marshalInterface, parseInterface},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 1}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoReceiveDst:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVDSTADDR, Len: 4}},
+		ssoReceiveInterface:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVIF, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+	}
+)
+
+func init() {
+	freebsdVersion, _ = syscall.SysctlUint32("kern.osreldate")
+	if freebsdVersion >= 1000000 {
+		sockOpts[ssoMulticastInterface] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: sizeofIPMreqn}, typ: ssoTypeIPMreqn}
+	}
+	if runtime.GOOS == "freebsd" && runtime.GOARCH == "386" {
+		archs, _ := syscall.Sysctl("kern.supported_archs")
+		for _, s := range strings.Fields(archs) {
+			if s == "amd64" {
+				freebsd32o64 = true
+				break
+			}
+		}
+	}
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(&gr.Group))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(&gsr.Group))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet)(unsafe.Pointer(&gsr.Source))
+	sa.Len = sizeofSockaddrInet
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_linux.go b/vendor/golang.org/x/net/ipv4/sys_linux.go
new file mode 100644
index 0000000000..60defe1326
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_linux.go
@@ -0,0 +1,59 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:        {sysIP_TTL, 1, marshalTTL, parseTTL},
+		ctlPacketInfo: {sysIP_PKTINFO, sizeofInetPktinfo, marshalPacketInfo, parsePacketInfo},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 4}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: sizeofIPMreqn}, typ: ssoTypeIPMreqn},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoPacketInfo:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_PKTINFO, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoICMPFilter:         {Option: socket.Option{Level: iana.ProtocolReserved, Name: sysICMP_FILTER, Len: sizeofICMPFilter}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoAttachFilter:       {Option: socket.Option{Level: sysSOL_SOCKET, Name: sysSO_ATTACH_FILTER, Len: sizeofSockFprog}},
+	}
+)
+
+func (pi *inetPktinfo) setIfindex(i int) {
+	pi.Ifindex = int32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(&gr.Group))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(&gsr.Group))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet)(unsafe.Pointer(&gsr.Source))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_solaris.go b/vendor/golang.org/x/net/ipv4/sys_solaris.go
new file mode 100644
index 0000000000..832fef1e2e
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_solaris.go
@@ -0,0 +1,57 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTTL:        {sysIP_RECVTTL, 4, marshalTTL, parseTTL},
+		ctlPacketInfo: {sysIP_PKTINFO, sizeofInetPktinfo, marshalPacketInfo, parsePacketInfo},
+	}
+
+	sockOpts = map[int]sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 1}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 1}},
+		ssoReceiveTTL:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVTTL, Len: 4}},
+		ssoPacketInfo:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_RECVPKTINFO, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:   {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+	}
+)
+
+func (pi *inetPktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gr)) + 4))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 4))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 260))
+	sa.Family = syscall.AF_INET
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_ssmreq.go b/vendor/golang.org/x/net/ipv4/sys_ssmreq.go
new file mode 100644
index 0000000000..ae5704e77a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_ssmreq.go
@@ -0,0 +1,54 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin freebsd linux solaris
+
+package ipv4
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/socket"
+)
+
+var freebsd32o64 bool
+
+func (so *sockOpt) setGroupReq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	var gr groupReq
+	if ifi != nil {
+		gr.Interface = uint32(ifi.Index)
+	}
+	gr.setGroup(grp)
+	var b []byte
+	if freebsd32o64 {
+		var d [sizeofGroupReq + 4]byte
+		s := (*[sizeofGroupReq]byte)(unsafe.Pointer(&gr))
+		copy(d[:4], s[:4])
+		copy(d[8:], s[4:])
+		b = d[:]
+	} else {
+		b = (*[sizeofGroupReq]byte)(unsafe.Pointer(&gr))[:sizeofGroupReq]
+	}
+	return so.Set(c, b)
+}
+
+func (so *sockOpt) setGroupSourceReq(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	var gsr groupSourceReq
+	if ifi != nil {
+		gsr.Interface = uint32(ifi.Index)
+	}
+	gsr.setSourceGroup(grp, src)
+	var b []byte
+	if freebsd32o64 {
+		var d [sizeofGroupSourceReq + 4]byte
+		s := (*[sizeofGroupSourceReq]byte)(unsafe.Pointer(&gsr))
+		copy(d[:4], s[:4])
+		copy(d[8:], s[4:])
+		b = d[:]
+	} else {
+		b = (*[sizeofGroupSourceReq]byte)(unsafe.Pointer(&gsr))[:sizeofGroupSourceReq]
+	}
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_ssmreq_stub.go b/vendor/golang.org/x/net/ipv4/sys_ssmreq_stub.go
new file mode 100644
index 0000000000..e6b7623d0d
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_ssmreq_stub.go
@@ -0,0 +1,21 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!freebsd,!linux,!solaris
+
+package ipv4
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setGroupReq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setGroupSourceReq(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv4/sys_stub.go b/vendor/golang.org/x/net/ipv4/sys_stub.go
new file mode 100644
index 0000000000..4f076473bd
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_stub.go
@@ -0,0 +1,13 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv4
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{}
+
+	sockOpts = map[int]*sockOpt{}
+)
diff --git a/vendor/golang.org/x/net/ipv4/sys_windows.go b/vendor/golang.org/x/net/ipv4/sys_windows.go
new file mode 100644
index 0000000000..b0913d539c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/sys_windows.go
@@ -0,0 +1,67 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv4
+
+import (
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+const (
+	// See ws2tcpip.h.
+	sysIP_OPTIONS                = 0x1
+	sysIP_HDRINCL                = 0x2
+	sysIP_TOS                    = 0x3
+	sysIP_TTL                    = 0x4
+	sysIP_MULTICAST_IF           = 0x9
+	sysIP_MULTICAST_TTL          = 0xa
+	sysIP_MULTICAST_LOOP         = 0xb
+	sysIP_ADD_MEMBERSHIP         = 0xc
+	sysIP_DROP_MEMBERSHIP        = 0xd
+	sysIP_DONTFRAGMENT           = 0xe
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0xf
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x10
+	sysIP_PKTINFO                = 0x13
+
+	sizeofInetPktinfo  = 0x8
+	sizeofIPMreq       = 0x8
+	sizeofIPMreqSource = 0xc
+)
+
+type inetPktinfo struct {
+	Addr    [4]byte
+	Ifindex int32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte
+	Interface [4]byte
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte
+	Sourceaddr [4]byte
+	Interface  [4]byte
+}
+
+// See http://msdn.microsoft.com/en-us/library/windows/desktop/ms738586(v=vs.85).aspx
+var (
+	ctlOpts = [ctlMax]ctlOpt{}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTOS:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TOS, Len: 4}},
+		ssoTTL:                {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_TTL, Len: 4}},
+		ssoMulticastTTL:       {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_TTL, Len: 4}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_IF, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_MULTICAST_LOOP, Len: 4}},
+		ssoHeaderPrepend:      {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_HDRINCL, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_ADD_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIP, Name: sysIP_DROP_MEMBERSHIP, Len: sizeofIPMreq}, typ: ssoTypeIPMreq},
+	}
+)
+
+func (pi *inetPktinfo) setIfindex(i int) {
+	pi.Ifindex = int32(i)
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_darwin.go b/vendor/golang.org/x/net/ipv4/zsys_darwin.go
new file mode 100644
index 0000000000..c07cc883fc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_darwin.go
@@ -0,0 +1,99 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_STRIPHDR    = 0x17
+	sysIP_RECVTTL     = 0x18
+	sysIP_BOUND_IF    = 0x19
+	sysIP_PKTINFO     = 0x1a
+	sysIP_RECVPKTINFO = 0x1a
+
+	sysIP_MULTICAST_IF           = 0x9
+	sysIP_MULTICAST_TTL          = 0xa
+	sysIP_MULTICAST_LOOP         = 0xb
+	sysIP_ADD_MEMBERSHIP         = 0xc
+	sysIP_DROP_MEMBERSHIP        = 0xd
+	sysIP_MULTICAST_VIF          = 0xe
+	sysIP_MULTICAST_IFINDEX      = 0x42
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x46
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x47
+	sysIP_BLOCK_SOURCE           = 0x48
+	sysIP_UNBLOCK_SOURCE         = 0x49
+	sysMCAST_JOIN_GROUP          = 0x50
+	sysMCAST_LEAVE_GROUP         = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x53
+	sysMCAST_BLOCK_SOURCE        = 0x54
+	sysMCAST_UNBLOCK_SOURCE      = 0x55
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet    = 0x10
+	sizeofInetPktinfo     = 0xc
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type inetPktinfo struct {
+	Ifindex  uint32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte /* in_addr */
+	Sourceaddr [4]byte /* in_addr */
+	Interface  [4]byte /* in_addr */
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [128]byte
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [128]byte
+	Pad_cgo_1 [128]byte
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_dragonfly.go b/vendor/golang.org/x/net/ipv4/zsys_dragonfly.go
new file mode 100644
index 0000000000..c4365e9e71
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_dragonfly.go
@@ -0,0 +1,31 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_dragonfly.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_RECVTTL     = 0x41
+
+	sysIP_MULTICAST_IF    = 0x9
+	sysIP_MULTICAST_TTL   = 0xa
+	sysIP_MULTICAST_LOOP  = 0xb
+	sysIP_MULTICAST_VIF   = 0xe
+	sysIP_ADD_MEMBERSHIP  = 0xc
+	sysIP_DROP_MEMBERSHIP = 0xd
+
+	sizeofIPMreq = 0x8
+)
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_freebsd_386.go b/vendor/golang.org/x/net/ipv4/zsys_freebsd_386.go
new file mode 100644
index 0000000000..8c4aec94c8
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_freebsd_386.go
@@ -0,0 +1,93 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_SENDSRCADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_ONESBCAST   = 0x17
+	sysIP_BINDANY     = 0x18
+	sysIP_RECVTTL     = 0x41
+	sysIP_MINTTL      = 0x42
+	sysIP_DONTFRAG    = 0x43
+	sysIP_RECVTOS     = 0x44
+
+	sysIP_MULTICAST_IF           = 0x9
+	sysIP_MULTICAST_TTL          = 0xa
+	sysIP_MULTICAST_LOOP         = 0xb
+	sysIP_ADD_MEMBERSHIP         = 0xc
+	sysIP_DROP_MEMBERSHIP        = 0xd
+	sysIP_MULTICAST_VIF          = 0xe
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x46
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x47
+	sysIP_BLOCK_SOURCE           = 0x48
+	sysIP_UNBLOCK_SOURCE         = 0x49
+	sysMCAST_JOIN_GROUP          = 0x50
+	sysMCAST_LEAVE_GROUP         = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x53
+	sysMCAST_BLOCK_SOURCE        = 0x54
+	sysMCAST_UNBLOCK_SOURCE      = 0x55
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet    = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte /* in_addr */
+	Sourceaddr [4]byte /* in_addr */
+	Interface  [4]byte /* in_addr */
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_freebsd_amd64.go b/vendor/golang.org/x/net/ipv4/zsys_freebsd_amd64.go
new file mode 100644
index 0000000000..4b10b7c575
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_freebsd_amd64.go
@@ -0,0 +1,95 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_SENDSRCADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_ONESBCAST   = 0x17
+	sysIP_BINDANY     = 0x18
+	sysIP_RECVTTL     = 0x41
+	sysIP_MINTTL      = 0x42
+	sysIP_DONTFRAG    = 0x43
+	sysIP_RECVTOS     = 0x44
+
+	sysIP_MULTICAST_IF           = 0x9
+	sysIP_MULTICAST_TTL          = 0xa
+	sysIP_MULTICAST_LOOP         = 0xb
+	sysIP_ADD_MEMBERSHIP         = 0xc
+	sysIP_DROP_MEMBERSHIP        = 0xd
+	sysIP_MULTICAST_VIF          = 0xe
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x46
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x47
+	sysIP_BLOCK_SOURCE           = 0x48
+	sysIP_UNBLOCK_SOURCE         = 0x49
+	sysMCAST_JOIN_GROUP          = 0x50
+	sysMCAST_LEAVE_GROUP         = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x53
+	sysMCAST_BLOCK_SOURCE        = 0x54
+	sysMCAST_UNBLOCK_SOURCE      = 0x55
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet    = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte /* in_addr */
+	Sourceaddr [4]byte /* in_addr */
+	Interface  [4]byte /* in_addr */
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_freebsd_arm.go b/vendor/golang.org/x/net/ipv4/zsys_freebsd_arm.go
new file mode 100644
index 0000000000..4b10b7c575
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_freebsd_arm.go
@@ -0,0 +1,95 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_SENDSRCADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_ONESBCAST   = 0x17
+	sysIP_BINDANY     = 0x18
+	sysIP_RECVTTL     = 0x41
+	sysIP_MINTTL      = 0x42
+	sysIP_DONTFRAG    = 0x43
+	sysIP_RECVTOS     = 0x44
+
+	sysIP_MULTICAST_IF           = 0x9
+	sysIP_MULTICAST_TTL          = 0xa
+	sysIP_MULTICAST_LOOP         = 0xb
+	sysIP_ADD_MEMBERSHIP         = 0xc
+	sysIP_DROP_MEMBERSHIP        = 0xd
+	sysIP_MULTICAST_VIF          = 0xe
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x46
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x47
+	sysIP_BLOCK_SOURCE           = 0x48
+	sysIP_UNBLOCK_SOURCE         = 0x49
+	sysMCAST_JOIN_GROUP          = 0x50
+	sysMCAST_LEAVE_GROUP         = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x53
+	sysMCAST_BLOCK_SOURCE        = 0x54
+	sysMCAST_UNBLOCK_SOURCE      = 0x55
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet    = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet struct {
+	Len    uint8
+	Family uint8
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte /* in_addr */
+	Sourceaddr [4]byte /* in_addr */
+	Interface  [4]byte /* in_addr */
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_386.go b/vendor/golang.org/x/net/ipv4/zsys_linux_386.go
new file mode 100644
index 0000000000..c0260f0ce3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_386.go
@@ -0,0 +1,148 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_amd64.go b/vendor/golang.org/x/net/ipv4/zsys_linux_amd64.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_amd64.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_arm.go b/vendor/golang.org/x/net/ipv4/zsys_linux_arm.go
new file mode 100644
index 0000000000..c0260f0ce3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_arm.go
@@ -0,0 +1,148 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_arm64.go b/vendor/golang.org/x/net/ipv4/zsys_linux_arm64.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_arm64.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_mips.go b/vendor/golang.org/x/net/ipv4/zsys_linux_mips.go
new file mode 100644
index 0000000000..c0260f0ce3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_mips.go
@@ -0,0 +1,148 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_mips64.go b/vendor/golang.org/x/net/ipv4/zsys_linux_mips64.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_mips64.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_mips64le.go b/vendor/golang.org/x/net/ipv4/zsys_linux_mips64le.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_mips64le.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_mipsle.go b/vendor/golang.org/x/net/ipv4/zsys_linux_mipsle.go
new file mode 100644
index 0000000000..c0260f0ce3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_mipsle.go
@@ -0,0 +1,148 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_ppc.go b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc.go
new file mode 100644
index 0000000000..f65bd9a7a6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc.go
@@ -0,0 +1,148 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]uint8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64.go b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64le.go b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64le.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_ppc64le.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_linux_s390x.go b/vendor/golang.org/x/net/ipv4/zsys_linux_s390x.go
new file mode 100644
index 0000000000..9c967eaa64
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_linux_s390x.go
@@ -0,0 +1,150 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv4
+
+const (
+	sysIP_TOS             = 0x1
+	sysIP_TTL             = 0x2
+	sysIP_HDRINCL         = 0x3
+	sysIP_OPTIONS         = 0x4
+	sysIP_ROUTER_ALERT    = 0x5
+	sysIP_RECVOPTS        = 0x6
+	sysIP_RETOPTS         = 0x7
+	sysIP_PKTINFO         = 0x8
+	sysIP_PKTOPTIONS      = 0x9
+	sysIP_MTU_DISCOVER    = 0xa
+	sysIP_RECVERR         = 0xb
+	sysIP_RECVTTL         = 0xc
+	sysIP_RECVTOS         = 0xd
+	sysIP_MTU             = 0xe
+	sysIP_FREEBIND        = 0xf
+	sysIP_TRANSPARENT     = 0x13
+	sysIP_RECVRETOPTS     = 0x7
+	sysIP_ORIGDSTADDR     = 0x14
+	sysIP_RECVORIGDSTADDR = 0x14
+	sysIP_MINTTL          = 0x15
+	sysIP_NODEFRAG        = 0x16
+	sysIP_UNICAST_IF      = 0x32
+
+	sysIP_MULTICAST_IF           = 0x20
+	sysIP_MULTICAST_TTL          = 0x21
+	sysIP_MULTICAST_LOOP         = 0x22
+	sysIP_ADD_MEMBERSHIP         = 0x23
+	sysIP_DROP_MEMBERSHIP        = 0x24
+	sysIP_UNBLOCK_SOURCE         = 0x25
+	sysIP_BLOCK_SOURCE           = 0x26
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x27
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x28
+	sysIP_MSFILTER               = 0x29
+	sysMCAST_JOIN_GROUP          = 0x2a
+	sysMCAST_LEAVE_GROUP         = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP   = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP  = 0x2f
+	sysMCAST_BLOCK_SOURCE        = 0x2b
+	sysMCAST_UNBLOCK_SOURCE      = 0x2c
+	sysMCAST_MSFILTER            = 0x30
+	sysIP_MULTICAST_ALL          = 0x31
+
+	sysICMP_FILTER = 0x1
+
+	sysSO_EE_ORIGIN_NONE         = 0x0
+	sysSO_EE_ORIGIN_LOCAL        = 0x1
+	sysSO_EE_ORIGIN_ICMP         = 0x2
+	sysSO_EE_ORIGIN_ICMP6        = 0x3
+	sysSO_EE_ORIGIN_TXSTATUS     = 0x4
+	sysSO_EE_ORIGIN_TIMESTAMPING = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet          = 0x10
+	sizeofInetPktinfo           = 0xc
+	sizeofSockExtendedErr       = 0x10
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqn        = 0xc
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPFilter = 0x4
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	X__pad [8]uint8
+}
+
+type inetPktinfo struct {
+	Ifindex  int32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type sockExtendedErr struct {
+	Errno  uint32
+	Origin uint8
+	Type   uint8
+	Code   uint8
+	Pad    uint8
+	Info   uint32
+	Data   uint32
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqn struct {
+	Multiaddr [4]byte /* in_addr */
+	Address   [4]byte /* in_addr */
+	Ifindex   int32
+}
+
+type ipMreqSource struct {
+	Multiaddr  uint32
+	Interface  uint32
+	Sourceaddr uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpFilter struct {
+	Data uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_netbsd.go b/vendor/golang.org/x/net/ipv4/zsys_netbsd.go
new file mode 100644
index 0000000000..fd3624d93c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_netbsd.go
@@ -0,0 +1,30 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_netbsd.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x14
+	sysIP_RECVTTL     = 0x17
+
+	sysIP_MULTICAST_IF    = 0x9
+	sysIP_MULTICAST_TTL   = 0xa
+	sysIP_MULTICAST_LOOP  = 0xb
+	sysIP_ADD_MEMBERSHIP  = 0xc
+	sysIP_DROP_MEMBERSHIP = 0xd
+
+	sizeofIPMreq = 0x8
+)
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_openbsd.go b/vendor/golang.org/x/net/ipv4/zsys_openbsd.go
new file mode 100644
index 0000000000..12f36be759
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_openbsd.go
@@ -0,0 +1,30 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_openbsd.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x1e
+	sysIP_RECVTTL     = 0x1f
+
+	sysIP_MULTICAST_IF    = 0x9
+	sysIP_MULTICAST_TTL   = 0xa
+	sysIP_MULTICAST_LOOP  = 0xb
+	sysIP_ADD_MEMBERSHIP  = 0xc
+	sysIP_DROP_MEMBERSHIP = 0xd
+
+	sizeofIPMreq = 0x8
+)
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
diff --git a/vendor/golang.org/x/net/ipv4/zsys_solaris.go b/vendor/golang.org/x/net/ipv4/zsys_solaris.go
new file mode 100644
index 0000000000..0a3875cc41
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv4/zsys_solaris.go
@@ -0,0 +1,100 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_solaris.go
+
+package ipv4
+
+const (
+	sysIP_OPTIONS     = 0x1
+	sysIP_HDRINCL     = 0x2
+	sysIP_TOS         = 0x3
+	sysIP_TTL         = 0x4
+	sysIP_RECVOPTS    = 0x5
+	sysIP_RECVRETOPTS = 0x6
+	sysIP_RECVDSTADDR = 0x7
+	sysIP_RETOPTS     = 0x8
+	sysIP_RECVIF      = 0x9
+	sysIP_RECVSLLA    = 0xa
+	sysIP_RECVTTL     = 0xb
+
+	sysIP_MULTICAST_IF           = 0x10
+	sysIP_MULTICAST_TTL          = 0x11
+	sysIP_MULTICAST_LOOP         = 0x12
+	sysIP_ADD_MEMBERSHIP         = 0x13
+	sysIP_DROP_MEMBERSHIP        = 0x14
+	sysIP_BLOCK_SOURCE           = 0x15
+	sysIP_UNBLOCK_SOURCE         = 0x16
+	sysIP_ADD_SOURCE_MEMBERSHIP  = 0x17
+	sysIP_DROP_SOURCE_MEMBERSHIP = 0x18
+	sysIP_NEXTHOP                = 0x19
+
+	sysIP_PKTINFO     = 0x1a
+	sysIP_RECVPKTINFO = 0x1a
+	sysIP_DONTFRAG    = 0x1b
+
+	sysIP_BOUND_IF      = 0x41
+	sysIP_UNSPEC_SRC    = 0x42
+	sysIP_BROADCAST_TTL = 0x43
+	sysIP_DHCPINIT_IF   = 0x45
+
+	sysIP_REUSEADDR = 0x104
+	sysIP_DONTROUTE = 0x105
+	sysIP_BROADCAST = 0x106
+
+	sysMCAST_JOIN_GROUP         = 0x29
+	sysMCAST_LEAVE_GROUP        = 0x2a
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2d
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2e
+
+	sizeofSockaddrStorage = 0x100
+	sizeofSockaddrInet    = 0x10
+	sizeofInetPktinfo     = 0xc
+
+	sizeofIPMreq         = 0x8
+	sizeofIPMreqSource   = 0xc
+	sizeofGroupReq       = 0x104
+	sizeofGroupSourceReq = 0x204
+)
+
+type sockaddrStorage struct {
+	Family     uint16
+	X_ss_pad1  [6]int8
+	X_ss_align float64
+	X_ss_pad2  [240]int8
+}
+
+type sockaddrInet struct {
+	Family uint16
+	Port   uint16
+	Addr   [4]byte /* in_addr */
+	Zero   [8]int8
+}
+
+type inetPktinfo struct {
+	Ifindex  uint32
+	Spec_dst [4]byte /* in_addr */
+	Addr     [4]byte /* in_addr */
+}
+
+type ipMreq struct {
+	Multiaddr [4]byte /* in_addr */
+	Interface [4]byte /* in_addr */
+}
+
+type ipMreqSource struct {
+	Multiaddr  [4]byte /* in_addr */
+	Sourceaddr [4]byte /* in_addr */
+	Interface  [4]byte /* in_addr */
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [256]byte
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [256]byte
+	Pad_cgo_1 [256]byte
+}
diff --git a/vendor/golang.org/x/net/ipv6/batch.go b/vendor/golang.org/x/net/ipv6/batch.go
new file mode 100644
index 0000000000..4f5fe683d5
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/batch.go
@@ -0,0 +1,119 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+
+package ipv6
+
+import (
+	"net"
+	"runtime"
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the ReadBatch and WriteBatch methods of
+// PacketConn are not implemented.
+
+// A Message represents an IO message.
+//
+//	type Message struct {
+//		Buffers [][]byte
+//		OOB     []byte
+//		Addr    net.Addr
+//		N       int
+//		NN      int
+//		Flags   int
+//	}
+//
+// The Buffers fields represents a list of contiguous buffers, which
+// can be used for vectored IO, for example, putting a header and a
+// payload in each slice.
+// When writing, the Buffers field must contain at least one byte to
+// write.
+// When reading, the Buffers field will always contain a byte to read.
+//
+// The OOB field contains protocol-specific control or miscellaneous
+// ancillary data known as out-of-band data.
+// It can be nil when not required.
+//
+// The Addr field specifies a destination address when writing.
+// It can be nil when the underlying protocol of the endpoint uses
+// connection-oriented communication.
+// After a successful read, it may contain the source address on the
+// received packet.
+//
+// The N field indicates the number of bytes read or written from/to
+// Buffers.
+//
+// The NN field indicates the number of bytes read or written from/to
+// OOB.
+//
+// The Flags field contains protocol-specific information on the
+// received message.
+type Message = socket.Message
+
+// ReadBatch reads a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_PEEK.
+//
+// On a successful read it returns the number of messages received, up
+// to len(ms).
+//
+// On Linux, a batch read will be optimized.
+// On other platforms, this method will read only a single message.
+func (c *payloadHandler) ReadBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.RecvMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.RecvMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
+
+// WriteBatch writes a batch of messages.
+//
+// The provided flags is a set of platform-dependent flags, such as
+// syscall.MSG_DONTROUTE.
+//
+// It returns the number of messages written on a successful write.
+//
+// On Linux, a batch write will be optimized.
+// On other platforms, this method will write only a single message.
+func (c *payloadHandler) WriteBatch(ms []Message, flags int) (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	switch runtime.GOOS {
+	case "linux":
+		n, err := c.SendMsgs([]socket.Message(ms), flags)
+		if err != nil {
+			err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	default:
+		n := 1
+		err := c.SendMsg(&ms[0], flags)
+		if err != nil {
+			n = 0
+			err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		return n, err
+	}
+}
diff --git a/vendor/golang.org/x/net/ipv6/control.go b/vendor/golang.org/x/net/ipv6/control.go
new file mode 100644
index 0000000000..2da644413b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control.go
@@ -0,0 +1,187 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"fmt"
+	"net"
+	"sync"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+// Note that RFC 3542 obsoletes RFC 2292 but OS X Snow Leopard and the
+// former still support RFC 2292 only. Please be aware that almost
+// all protocol implementations prohibit using a combination of RFC
+// 2292 and RFC 3542 for some practical reasons.
+
+type rawOpt struct {
+	sync.RWMutex
+	cflags ControlFlags
+}
+
+func (c *rawOpt) set(f ControlFlags)        { c.cflags |= f }
+func (c *rawOpt) clear(f ControlFlags)      { c.cflags &^= f }
+func (c *rawOpt) isset(f ControlFlags) bool { return c.cflags&f != 0 }
+
+// A ControlFlags represents per packet basis IP-level socket option
+// control flags.
+type ControlFlags uint
+
+const (
+	FlagTrafficClass ControlFlags = 1 << iota // pass the traffic class on the received packet
+	FlagHopLimit                              // pass the hop limit on the received packet
+	FlagSrc                                   // pass the source address on the received packet
+	FlagDst                                   // pass the destination address on the received packet
+	FlagInterface                             // pass the interface index on the received packet
+	FlagPathMTU                               // pass the path MTU on the received packet path
+)
+
+const flagPacketInfo = FlagDst | FlagInterface
+
+// A ControlMessage represents per packet basis IP-level socket
+// options.
+type ControlMessage struct {
+	// Receiving socket options: SetControlMessage allows to
+	// receive the options from the protocol stack using ReadFrom
+	// method of PacketConn.
+	//
+	// Specifying socket options: ControlMessage for WriteTo
+	// method of PacketConn allows to send the options to the
+	// protocol stack.
+	//
+	TrafficClass int    // traffic class, must be 1 <= value <= 255 when specifying
+	HopLimit     int    // hop limit, must be 1 <= value <= 255 when specifying
+	Src          net.IP // source address, specifying only
+	Dst          net.IP // destination address, receiving only
+	IfIndex      int    // interface index, must be 1 <= value when specifying
+	NextHop      net.IP // next hop address, specifying only
+	MTU          int    // path MTU, receiving only
+}
+
+func (cm *ControlMessage) String() string {
+	if cm == nil {
+		return "<nil>"
+	}
+	return fmt.Sprintf("tclass=%#x hoplim=%d src=%v dst=%v ifindex=%d nexthop=%v mtu=%d", cm.TrafficClass, cm.HopLimit, cm.Src, cm.Dst, cm.IfIndex, cm.NextHop, cm.MTU)
+}
+
+// Marshal returns the binary encoding of cm.
+func (cm *ControlMessage) Marshal() []byte {
+	if cm == nil {
+		return nil
+	}
+	var l int
+	tclass := false
+	if ctlOpts[ctlTrafficClass].name > 0 && cm.TrafficClass > 0 {
+		tclass = true
+		l += socket.ControlMessageSpace(ctlOpts[ctlTrafficClass].length)
+	}
+	hoplimit := false
+	if ctlOpts[ctlHopLimit].name > 0 && cm.HopLimit > 0 {
+		hoplimit = true
+		l += socket.ControlMessageSpace(ctlOpts[ctlHopLimit].length)
+	}
+	pktinfo := false
+	if ctlOpts[ctlPacketInfo].name > 0 && (cm.Src.To16() != nil && cm.Src.To4() == nil || cm.IfIndex > 0) {
+		pktinfo = true
+		l += socket.ControlMessageSpace(ctlOpts[ctlPacketInfo].length)
+	}
+	nexthop := false
+	if ctlOpts[ctlNextHop].name > 0 && cm.NextHop.To16() != nil && cm.NextHop.To4() == nil {
+		nexthop = true
+		l += socket.ControlMessageSpace(ctlOpts[ctlNextHop].length)
+	}
+	var b []byte
+	if l > 0 {
+		b = make([]byte, l)
+		bb := b
+		if tclass {
+			bb = ctlOpts[ctlTrafficClass].marshal(bb, cm)
+		}
+		if hoplimit {
+			bb = ctlOpts[ctlHopLimit].marshal(bb, cm)
+		}
+		if pktinfo {
+			bb = ctlOpts[ctlPacketInfo].marshal(bb, cm)
+		}
+		if nexthop {
+			bb = ctlOpts[ctlNextHop].marshal(bb, cm)
+		}
+	}
+	return b
+}
+
+// Parse parses b as a control message and stores the result in cm.
+func (cm *ControlMessage) Parse(b []byte) error {
+	ms, err := socket.ControlMessage(b).Parse()
+	if err != nil {
+		return err
+	}
+	for _, m := range ms {
+		lvl, typ, l, err := m.ParseHeader()
+		if err != nil {
+			return err
+		}
+		if lvl != iana.ProtocolIPv6 {
+			continue
+		}
+		switch {
+		case typ == ctlOpts[ctlTrafficClass].name && l >= ctlOpts[ctlTrafficClass].length:
+			ctlOpts[ctlTrafficClass].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlHopLimit].name && l >= ctlOpts[ctlHopLimit].length:
+			ctlOpts[ctlHopLimit].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlPacketInfo].name && l >= ctlOpts[ctlPacketInfo].length:
+			ctlOpts[ctlPacketInfo].parse(cm, m.Data(l))
+		case typ == ctlOpts[ctlPathMTU].name && l >= ctlOpts[ctlPathMTU].length:
+			ctlOpts[ctlPathMTU].parse(cm, m.Data(l))
+		}
+	}
+	return nil
+}
+
+// NewControlMessage returns a new control message.
+//
+// The returned message is large enough for options specified by cf.
+func NewControlMessage(cf ControlFlags) []byte {
+	opt := rawOpt{cflags: cf}
+	var l int
+	if opt.isset(FlagTrafficClass) && ctlOpts[ctlTrafficClass].name > 0 {
+		l += socket.ControlMessageSpace(ctlOpts[ctlTrafficClass].length)
+	}
+	if opt.isset(FlagHopLimit) && ctlOpts[ctlHopLimit].name > 0 {
+		l += socket.ControlMessageSpace(ctlOpts[ctlHopLimit].length)
+	}
+	if opt.isset(flagPacketInfo) && ctlOpts[ctlPacketInfo].name > 0 {
+		l += socket.ControlMessageSpace(ctlOpts[ctlPacketInfo].length)
+	}
+	if opt.isset(FlagPathMTU) && ctlOpts[ctlPathMTU].name > 0 {
+		l += socket.ControlMessageSpace(ctlOpts[ctlPathMTU].length)
+	}
+	var b []byte
+	if l > 0 {
+		b = make([]byte, l)
+	}
+	return b
+}
+
+// Ancillary data socket options
+const (
+	ctlTrafficClass = iota // header field
+	ctlHopLimit            // header field
+	ctlPacketInfo          // inbound or outbound packet path
+	ctlNextHop             // nexthop
+	ctlPathMTU             // path mtu
+	ctlMax
+)
+
+// A ctlOpt represents a binding for ancillary data socket option.
+type ctlOpt struct {
+	name    int // option name, must be equal or greater than 1
+	length  int // option length
+	marshal func([]byte, *ControlMessage) []byte
+	parse   func(*ControlMessage, []byte)
+}
diff --git a/vendor/golang.org/x/net/ipv6/control_rfc2292_unix.go b/vendor/golang.org/x/net/ipv6/control_rfc2292_unix.go
new file mode 100644
index 0000000000..9fd9eb15e3
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control_rfc2292_unix.go
@@ -0,0 +1,48 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin
+
+package ipv6
+
+import (
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+func marshal2292HopLimit(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_2292HOPLIMIT, 4)
+	if cm != nil {
+		socket.NativeEndian.PutUint32(m.Data(4), uint32(cm.HopLimit))
+	}
+	return m.Next(4)
+}
+
+func marshal2292PacketInfo(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_2292PKTINFO, sizeofInet6Pktinfo)
+	if cm != nil {
+		pi := (*inet6Pktinfo)(unsafe.Pointer(&m.Data(sizeofInet6Pktinfo)[0]))
+		if ip := cm.Src.To16(); ip != nil && ip.To4() == nil {
+			copy(pi.Addr[:], ip)
+		}
+		if cm.IfIndex > 0 {
+			pi.setIfindex(cm.IfIndex)
+		}
+	}
+	return m.Next(sizeofInet6Pktinfo)
+}
+
+func marshal2292NextHop(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_2292NEXTHOP, sizeofSockaddrInet6)
+	if cm != nil {
+		sa := (*sockaddrInet6)(unsafe.Pointer(&m.Data(sizeofSockaddrInet6)[0]))
+		sa.setSockaddr(cm.NextHop, cm.IfIndex)
+	}
+	return m.Next(sizeofSockaddrInet6)
+}
diff --git a/vendor/golang.org/x/net/ipv6/control_rfc3542_unix.go b/vendor/golang.org/x/net/ipv6/control_rfc3542_unix.go
new file mode 100644
index 0000000000..eec529c205
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control_rfc3542_unix.go
@@ -0,0 +1,94 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris
+
+package ipv6
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+func marshalTrafficClass(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_TCLASS, 4)
+	if cm != nil {
+		socket.NativeEndian.PutUint32(m.Data(4), uint32(cm.TrafficClass))
+	}
+	return m.Next(4)
+}
+
+func parseTrafficClass(cm *ControlMessage, b []byte) {
+	cm.TrafficClass = int(socket.NativeEndian.Uint32(b[:4]))
+}
+
+func marshalHopLimit(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_HOPLIMIT, 4)
+	if cm != nil {
+		socket.NativeEndian.PutUint32(m.Data(4), uint32(cm.HopLimit))
+	}
+	return m.Next(4)
+}
+
+func parseHopLimit(cm *ControlMessage, b []byte) {
+	cm.HopLimit = int(socket.NativeEndian.Uint32(b[:4]))
+}
+
+func marshalPacketInfo(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_PKTINFO, sizeofInet6Pktinfo)
+	if cm != nil {
+		pi := (*inet6Pktinfo)(unsafe.Pointer(&m.Data(sizeofInet6Pktinfo)[0]))
+		if ip := cm.Src.To16(); ip != nil && ip.To4() == nil {
+			copy(pi.Addr[:], ip)
+		}
+		if cm.IfIndex > 0 {
+			pi.setIfindex(cm.IfIndex)
+		}
+	}
+	return m.Next(sizeofInet6Pktinfo)
+}
+
+func parsePacketInfo(cm *ControlMessage, b []byte) {
+	pi := (*inet6Pktinfo)(unsafe.Pointer(&b[0]))
+	if len(cm.Dst) < net.IPv6len {
+		cm.Dst = make(net.IP, net.IPv6len)
+	}
+	copy(cm.Dst, pi.Addr[:])
+	cm.IfIndex = int(pi.Ifindex)
+}
+
+func marshalNextHop(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_NEXTHOP, sizeofSockaddrInet6)
+	if cm != nil {
+		sa := (*sockaddrInet6)(unsafe.Pointer(&m.Data(sizeofSockaddrInet6)[0]))
+		sa.setSockaddr(cm.NextHop, cm.IfIndex)
+	}
+	return m.Next(sizeofSockaddrInet6)
+}
+
+func parseNextHop(cm *ControlMessage, b []byte) {
+}
+
+func marshalPathMTU(b []byte, cm *ControlMessage) []byte {
+	m := socket.ControlMessage(b)
+	m.MarshalHeader(iana.ProtocolIPv6, sysIPV6_PATHMTU, sizeofIPv6Mtuinfo)
+	return m.Next(sizeofIPv6Mtuinfo)
+}
+
+func parsePathMTU(cm *ControlMessage, b []byte) {
+	mi := (*ipv6Mtuinfo)(unsafe.Pointer(&b[0]))
+	if len(cm.Dst) < net.IPv6len {
+		cm.Dst = make(net.IP, net.IPv6len)
+	}
+	copy(cm.Dst, mi.Addr.Addr[:])
+	cm.IfIndex = int(mi.Addr.Scope_id)
+	cm.MTU = int(mi.Mtu)
+}
diff --git a/vendor/golang.org/x/net/ipv6/control_stub.go b/vendor/golang.org/x/net/ipv6/control_stub.go
new file mode 100644
index 0000000000..a045f28f74
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control_stub.go
@@ -0,0 +1,13 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv6
+
+import "golang.org/x/net/internal/socket"
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv6/control_unix.go b/vendor/golang.org/x/net/ipv6/control_unix.go
new file mode 100644
index 0000000000..66515060a8
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control_unix.go
@@ -0,0 +1,55 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris
+
+package ipv6
+
+import "golang.org/x/net/internal/socket"
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	opt.Lock()
+	defer opt.Unlock()
+	if so, ok := sockOpts[ssoReceiveTrafficClass]; ok && cf&FlagTrafficClass != 0 {
+		if err := so.SetInt(c, boolint(on)); err != nil {
+			return err
+		}
+		if on {
+			opt.set(FlagTrafficClass)
+		} else {
+			opt.clear(FlagTrafficClass)
+		}
+	}
+	if so, ok := sockOpts[ssoReceiveHopLimit]; ok && cf&FlagHopLimit != 0 {
+		if err := so.SetInt(c, boolint(on)); err != nil {
+			return err
+		}
+		if on {
+			opt.set(FlagHopLimit)
+		} else {
+			opt.clear(FlagHopLimit)
+		}
+	}
+	if so, ok := sockOpts[ssoReceivePacketInfo]; ok && cf&flagPacketInfo != 0 {
+		if err := so.SetInt(c, boolint(on)); err != nil {
+			return err
+		}
+		if on {
+			opt.set(cf & flagPacketInfo)
+		} else {
+			opt.clear(cf & flagPacketInfo)
+		}
+	}
+	if so, ok := sockOpts[ssoReceivePathMTU]; ok && cf&FlagPathMTU != 0 {
+		if err := so.SetInt(c, boolint(on)); err != nil {
+			return err
+		}
+		if on {
+			opt.set(FlagPathMTU)
+		} else {
+			opt.clear(FlagPathMTU)
+		}
+	}
+	return nil
+}
diff --git a/vendor/golang.org/x/net/ipv6/control_windows.go b/vendor/golang.org/x/net/ipv6/control_windows.go
new file mode 100644
index 0000000000..ef2563b3fc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/control_windows.go
@@ -0,0 +1,16 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"syscall"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func setControlMessage(c *socket.Conn, opt *rawOpt, cf ControlFlags, on bool) error {
+	// TODO(mikio): implement this
+	return syscall.EWINDOWS
+}
diff --git a/vendor/golang.org/x/net/ipv6/defs_darwin.go b/vendor/golang.org/x/net/ipv6/defs_darwin.go
new file mode 100644
index 0000000000..55ddc116fc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_darwin.go
@@ -0,0 +1,112 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#define __APPLE_USE_RFC_3542
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+
+	sysIPV6_PORTRANGE    = C.IPV6_PORTRANGE
+	sysICMP6_FILTER      = C.ICMP6_FILTER
+	sysIPV6_2292PKTINFO  = C.IPV6_2292PKTINFO
+	sysIPV6_2292HOPLIMIT = C.IPV6_2292HOPLIMIT
+	sysIPV6_2292NEXTHOP  = C.IPV6_2292NEXTHOP
+	sysIPV6_2292HOPOPTS  = C.IPV6_2292HOPOPTS
+	sysIPV6_2292DSTOPTS  = C.IPV6_2292DSTOPTS
+	sysIPV6_2292RTHDR    = C.IPV6_2292RTHDR
+
+	sysIPV6_2292PKTOPTIONS = C.IPV6_2292PKTOPTIONS
+
+	sysIPV6_CHECKSUM = C.IPV6_CHECKSUM
+	sysIPV6_V6ONLY   = C.IPV6_V6ONLY
+
+	sysIPV6_IPSEC_POLICY = C.IPV6_IPSEC_POLICY
+
+	sysIPV6_RECVTCLASS = C.IPV6_RECVTCLASS
+	sysIPV6_TCLASS     = C.IPV6_TCLASS
+
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+
+	sysIPV6_RECVPKTINFO = C.IPV6_RECVPKTINFO
+
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+
+	sysIPV6_USE_MIN_MTU = C.IPV6_USE_MIN_MTU
+	sysIPV6_RECVPATHMTU = C.IPV6_RECVPATHMTU
+
+	sysIPV6_PATHMTU = C.IPV6_PATHMTU
+
+	sysIPV6_PKTINFO  = C.IPV6_PKTINFO
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+	sysIPV6_RTHDR    = C.IPV6_RTHDR
+
+	sysIPV6_AUTOFLOWLABEL = C.IPV6_AUTOFLOWLABEL
+
+	sysIPV6_DONTFRAG = C.IPV6_DONTFRAG
+
+	sysIPV6_PREFER_TEMPADDR = C.IPV6_PREFER_TEMPADDR
+
+	sysIPV6_MSFILTER            = C.IPV6_MSFILTER
+	sysMCAST_JOIN_GROUP         = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP        = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP  = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE       = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE     = C.MCAST_UNBLOCK_SOURCE
+
+	sysIPV6_BOUND_IF = C.IPV6_BOUND_IF
+
+	sysIPV6_PORTRANGE_DEFAULT = C.IPV6_PORTRANGE_DEFAULT
+	sysIPV6_PORTRANGE_HIGH    = C.IPV6_PORTRANGE_HIGH
+	sysIPV6_PORTRANGE_LOW     = C.IPV6_PORTRANGE_LOW
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet6   = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo    = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo     = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq       = C.sizeof_struct_ipv6_mreq
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type icmpv6Filter C.struct_icmp6_filter
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
diff --git a/vendor/golang.org/x/net/ipv6/defs_dragonfly.go b/vendor/golang.org/x/net/ipv6/defs_dragonfly.go
new file mode 100644
index 0000000000..a4c383a515
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_dragonfly.go
@@ -0,0 +1,84 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <sys/param.h>
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+	sysIPV6_PORTRANGE      = C.IPV6_PORTRANGE
+	sysICMP6_FILTER        = C.ICMP6_FILTER
+
+	sysIPV6_CHECKSUM = C.IPV6_CHECKSUM
+	sysIPV6_V6ONLY   = C.IPV6_V6ONLY
+
+	sysIPV6_IPSEC_POLICY = C.IPV6_IPSEC_POLICY
+
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+
+	sysIPV6_USE_MIN_MTU = C.IPV6_USE_MIN_MTU
+	sysIPV6_RECVPATHMTU = C.IPV6_RECVPATHMTU
+
+	sysIPV6_PATHMTU = C.IPV6_PATHMTU
+
+	sysIPV6_PKTINFO  = C.IPV6_PKTINFO
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+	sysIPV6_RTHDR    = C.IPV6_RTHDR
+
+	sysIPV6_RECVTCLASS = C.IPV6_RECVTCLASS
+
+	sysIPV6_AUTOFLOWLABEL = C.IPV6_AUTOFLOWLABEL
+
+	sysIPV6_TCLASS   = C.IPV6_TCLASS
+	sysIPV6_DONTFRAG = C.IPV6_DONTFRAG
+
+	sysIPV6_PREFER_TEMPADDR = C.IPV6_PREFER_TEMPADDR
+
+	sysIPV6_PORTRANGE_DEFAULT = C.IPV6_PORTRANGE_DEFAULT
+	sysIPV6_PORTRANGE_HIGH    = C.IPV6_PORTRANGE_HIGH
+	sysIPV6_PORTRANGE_LOW     = C.IPV6_PORTRANGE_LOW
+
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo  = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo   = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq = C.sizeof_struct_ipv6_mreq
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type icmpv6Filter C.struct_icmp6_filter
diff --git a/vendor/golang.org/x/net/ipv6/defs_freebsd.go b/vendor/golang.org/x/net/ipv6/defs_freebsd.go
new file mode 100644
index 0000000000..53e625389a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_freebsd.go
@@ -0,0 +1,105 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <sys/param.h>
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+	sysIPV6_PORTRANGE      = C.IPV6_PORTRANGE
+	sysICMP6_FILTER        = C.ICMP6_FILTER
+
+	sysIPV6_CHECKSUM = C.IPV6_CHECKSUM
+	sysIPV6_V6ONLY   = C.IPV6_V6ONLY
+
+	sysIPV6_IPSEC_POLICY = C.IPV6_IPSEC_POLICY
+
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+
+	sysIPV6_USE_MIN_MTU = C.IPV6_USE_MIN_MTU
+	sysIPV6_RECVPATHMTU = C.IPV6_RECVPATHMTU
+
+	sysIPV6_PATHMTU = C.IPV6_PATHMTU
+
+	sysIPV6_PKTINFO  = C.IPV6_PKTINFO
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+	sysIPV6_RTHDR    = C.IPV6_RTHDR
+
+	sysIPV6_RECVTCLASS = C.IPV6_RECVTCLASS
+
+	sysIPV6_AUTOFLOWLABEL = C.IPV6_AUTOFLOWLABEL
+
+	sysIPV6_TCLASS   = C.IPV6_TCLASS
+	sysIPV6_DONTFRAG = C.IPV6_DONTFRAG
+
+	sysIPV6_PREFER_TEMPADDR = C.IPV6_PREFER_TEMPADDR
+
+	sysIPV6_BINDANY = C.IPV6_BINDANY
+
+	sysIPV6_MSFILTER = C.IPV6_MSFILTER
+
+	sysMCAST_JOIN_GROUP         = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP        = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP  = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE       = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE     = C.MCAST_UNBLOCK_SOURCE
+
+	sysIPV6_PORTRANGE_DEFAULT = C.IPV6_PORTRANGE_DEFAULT
+	sysIPV6_PORTRANGE_HIGH    = C.IPV6_PORTRANGE_HIGH
+	sysIPV6_PORTRANGE_LOW     = C.IPV6_PORTRANGE_LOW
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet6   = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo    = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo     = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq       = C.sizeof_struct_ipv6_mreq
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
+
+type icmpv6Filter C.struct_icmp6_filter
diff --git a/vendor/golang.org/x/net/ipv6/defs_linux.go b/vendor/golang.org/x/net/ipv6/defs_linux.go
new file mode 100644
index 0000000000..3308cb2c38
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_linux.go
@@ -0,0 +1,147 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <linux/in.h>
+#include <linux/in6.h>
+#include <linux/ipv6.h>
+#include <linux/icmpv6.h>
+#include <linux/filter.h>
+#include <sys/socket.h>
+*/
+import "C"
+
+const (
+	sysIPV6_ADDRFORM       = C.IPV6_ADDRFORM
+	sysIPV6_2292PKTINFO    = C.IPV6_2292PKTINFO
+	sysIPV6_2292HOPOPTS    = C.IPV6_2292HOPOPTS
+	sysIPV6_2292DSTOPTS    = C.IPV6_2292DSTOPTS
+	sysIPV6_2292RTHDR      = C.IPV6_2292RTHDR
+	sysIPV6_2292PKTOPTIONS = C.IPV6_2292PKTOPTIONS
+	sysIPV6_CHECKSUM       = C.IPV6_CHECKSUM
+	sysIPV6_2292HOPLIMIT   = C.IPV6_2292HOPLIMIT
+	sysIPV6_NEXTHOP        = C.IPV6_NEXTHOP
+	sysIPV6_FLOWINFO       = C.IPV6_FLOWINFO
+
+	sysIPV6_UNICAST_HOPS        = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF        = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS      = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP      = C.IPV6_MULTICAST_LOOP
+	sysIPV6_ADD_MEMBERSHIP      = C.IPV6_ADD_MEMBERSHIP
+	sysIPV6_DROP_MEMBERSHIP     = C.IPV6_DROP_MEMBERSHIP
+	sysMCAST_JOIN_GROUP         = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP        = C.MCAST_LEAVE_GROUP
+	sysMCAST_JOIN_SOURCE_GROUP  = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP = C.MCAST_LEAVE_SOURCE_GROUP
+	sysMCAST_BLOCK_SOURCE       = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE     = C.MCAST_UNBLOCK_SOURCE
+	sysMCAST_MSFILTER           = C.MCAST_MSFILTER
+	sysIPV6_ROUTER_ALERT        = C.IPV6_ROUTER_ALERT
+	sysIPV6_MTU_DISCOVER        = C.IPV6_MTU_DISCOVER
+	sysIPV6_MTU                 = C.IPV6_MTU
+	sysIPV6_RECVERR             = C.IPV6_RECVERR
+	sysIPV6_V6ONLY              = C.IPV6_V6ONLY
+	sysIPV6_JOIN_ANYCAST        = C.IPV6_JOIN_ANYCAST
+	sysIPV6_LEAVE_ANYCAST       = C.IPV6_LEAVE_ANYCAST
+
+	//sysIPV6_PMTUDISC_DONT      = C.IPV6_PMTUDISC_DONT
+	//sysIPV6_PMTUDISC_WANT      = C.IPV6_PMTUDISC_WANT
+	//sysIPV6_PMTUDISC_DO        = C.IPV6_PMTUDISC_DO
+	//sysIPV6_PMTUDISC_PROBE     = C.IPV6_PMTUDISC_PROBE
+	//sysIPV6_PMTUDISC_INTERFACE = C.IPV6_PMTUDISC_INTERFACE
+	//sysIPV6_PMTUDISC_OMIT      = C.IPV6_PMTUDISC_OMIT
+
+	sysIPV6_FLOWLABEL_MGR = C.IPV6_FLOWLABEL_MGR
+	sysIPV6_FLOWINFO_SEND = C.IPV6_FLOWINFO_SEND
+
+	sysIPV6_IPSEC_POLICY = C.IPV6_IPSEC_POLICY
+	sysIPV6_XFRM_POLICY  = C.IPV6_XFRM_POLICY
+
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_PKTINFO      = C.IPV6_PKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_HOPLIMIT     = C.IPV6_HOPLIMIT
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_HOPOPTS      = C.IPV6_HOPOPTS
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RTHDR        = C.IPV6_RTHDR
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+	sysIPV6_DSTOPTS      = C.IPV6_DSTOPTS
+	sysIPV6_RECVPATHMTU  = C.IPV6_RECVPATHMTU
+	sysIPV6_PATHMTU      = C.IPV6_PATHMTU
+	sysIPV6_DONTFRAG     = C.IPV6_DONTFRAG
+
+	sysIPV6_RECVTCLASS = C.IPV6_RECVTCLASS
+	sysIPV6_TCLASS     = C.IPV6_TCLASS
+
+	sysIPV6_ADDR_PREFERENCES = C.IPV6_ADDR_PREFERENCES
+
+	sysIPV6_PREFER_SRC_TMP            = C.IPV6_PREFER_SRC_TMP
+	sysIPV6_PREFER_SRC_PUBLIC         = C.IPV6_PREFER_SRC_PUBLIC
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = C.IPV6_PREFER_SRC_PUBTMP_DEFAULT
+	sysIPV6_PREFER_SRC_COA            = C.IPV6_PREFER_SRC_COA
+	sysIPV6_PREFER_SRC_HOME           = C.IPV6_PREFER_SRC_HOME
+	sysIPV6_PREFER_SRC_CGA            = C.IPV6_PREFER_SRC_CGA
+	sysIPV6_PREFER_SRC_NONCGA         = C.IPV6_PREFER_SRC_NONCGA
+
+	sysIPV6_MINHOPCOUNT = C.IPV6_MINHOPCOUNT
+
+	sysIPV6_ORIGDSTADDR     = C.IPV6_ORIGDSTADDR
+	sysIPV6_RECVORIGDSTADDR = C.IPV6_RECVORIGDSTADDR
+	sysIPV6_TRANSPARENT     = C.IPV6_TRANSPARENT
+	sysIPV6_UNICAST_IF      = C.IPV6_UNICAST_IF
+
+	sysICMPV6_FILTER = C.ICMPV6_FILTER
+
+	sysICMPV6_FILTER_BLOCK       = C.ICMPV6_FILTER_BLOCK
+	sysICMPV6_FILTER_PASS        = C.ICMPV6_FILTER_PASS
+	sysICMPV6_FILTER_BLOCKOTHERS = C.ICMPV6_FILTER_BLOCKOTHERS
+	sysICMPV6_FILTER_PASSONLY    = C.ICMPV6_FILTER_PASSONLY
+
+	sysSOL_SOCKET       = C.SOL_SOCKET
+	sysSO_ATTACH_FILTER = C.SO_ATTACH_FILTER
+
+	sizeofKernelSockaddrStorage = C.sizeof_struct___kernel_sockaddr_storage
+	sizeofSockaddrInet6         = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo          = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo           = C.sizeof_struct_ip6_mtuinfo
+	sizeofIPv6FlowlabelReq      = C.sizeof_struct_in6_flowlabel_req
+
+	sizeofIPv6Mreq       = C.sizeof_struct_ipv6_mreq
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+
+	sizeofSockFprog = C.sizeof_struct_sock_fprog
+)
+
+type kernelSockaddrStorage C.struct___kernel_sockaddr_storage
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6FlowlabelReq C.struct_in6_flowlabel_req
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
+
+type icmpv6Filter C.struct_icmp6_filter
+
+type sockFProg C.struct_sock_fprog
+
+type sockFilter C.struct_sock_filter
diff --git a/vendor/golang.org/x/net/ipv6/defs_netbsd.go b/vendor/golang.org/x/net/ipv6/defs_netbsd.go
new file mode 100644
index 0000000000..be9ceb9cc0
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_netbsd.go
@@ -0,0 +1,80 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <sys/param.h>
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+	sysIPV6_PORTRANGE      = C.IPV6_PORTRANGE
+	sysICMP6_FILTER        = C.ICMP6_FILTER
+
+	sysIPV6_CHECKSUM = C.IPV6_CHECKSUM
+	sysIPV6_V6ONLY   = C.IPV6_V6ONLY
+
+	sysIPV6_IPSEC_POLICY = C.IPV6_IPSEC_POLICY
+
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+
+	sysIPV6_USE_MIN_MTU = C.IPV6_USE_MIN_MTU
+	sysIPV6_RECVPATHMTU = C.IPV6_RECVPATHMTU
+	sysIPV6_PATHMTU     = C.IPV6_PATHMTU
+
+	sysIPV6_PKTINFO  = C.IPV6_PKTINFO
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+	sysIPV6_RTHDR    = C.IPV6_RTHDR
+
+	sysIPV6_RECVTCLASS = C.IPV6_RECVTCLASS
+
+	sysIPV6_TCLASS   = C.IPV6_TCLASS
+	sysIPV6_DONTFRAG = C.IPV6_DONTFRAG
+
+	sysIPV6_PORTRANGE_DEFAULT = C.IPV6_PORTRANGE_DEFAULT
+	sysIPV6_PORTRANGE_HIGH    = C.IPV6_PORTRANGE_HIGH
+	sysIPV6_PORTRANGE_LOW     = C.IPV6_PORTRANGE_LOW
+
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo  = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo   = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq = C.sizeof_struct_ipv6_mreq
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type icmpv6Filter C.struct_icmp6_filter
diff --git a/vendor/golang.org/x/net/ipv6/defs_openbsd.go b/vendor/golang.org/x/net/ipv6/defs_openbsd.go
new file mode 100644
index 0000000000..177ddf87d2
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_openbsd.go
@@ -0,0 +1,89 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <sys/param.h>
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+	sysIPV6_PORTRANGE      = C.IPV6_PORTRANGE
+	sysICMP6_FILTER        = C.ICMP6_FILTER
+
+	sysIPV6_CHECKSUM = C.IPV6_CHECKSUM
+	sysIPV6_V6ONLY   = C.IPV6_V6ONLY
+
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVRTHDR    = C.IPV6_RECVRTHDR
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+	sysIPV6_RECVDSTOPTS  = C.IPV6_RECVDSTOPTS
+
+	sysIPV6_USE_MIN_MTU = C.IPV6_USE_MIN_MTU
+	sysIPV6_RECVPATHMTU = C.IPV6_RECVPATHMTU
+
+	sysIPV6_PATHMTU = C.IPV6_PATHMTU
+
+	sysIPV6_PKTINFO  = C.IPV6_PKTINFO
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+	sysIPV6_RTHDR    = C.IPV6_RTHDR
+
+	sysIPV6_AUTH_LEVEL        = C.IPV6_AUTH_LEVEL
+	sysIPV6_ESP_TRANS_LEVEL   = C.IPV6_ESP_TRANS_LEVEL
+	sysIPV6_ESP_NETWORK_LEVEL = C.IPV6_ESP_NETWORK_LEVEL
+	sysIPSEC6_OUTSA           = C.IPSEC6_OUTSA
+	sysIPV6_RECVTCLASS        = C.IPV6_RECVTCLASS
+
+	sysIPV6_AUTOFLOWLABEL = C.IPV6_AUTOFLOWLABEL
+	sysIPV6_IPCOMP_LEVEL  = C.IPV6_IPCOMP_LEVEL
+
+	sysIPV6_TCLASS   = C.IPV6_TCLASS
+	sysIPV6_DONTFRAG = C.IPV6_DONTFRAG
+	sysIPV6_PIPEX    = C.IPV6_PIPEX
+
+	sysIPV6_RTABLE = C.IPV6_RTABLE
+
+	sysIPV6_PORTRANGE_DEFAULT = C.IPV6_PORTRANGE_DEFAULT
+	sysIPV6_PORTRANGE_HIGH    = C.IPV6_PORTRANGE_HIGH
+	sysIPV6_PORTRANGE_LOW     = C.IPV6_PORTRANGE_LOW
+
+	sizeofSockaddrInet6 = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo  = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo   = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq = C.sizeof_struct_ipv6_mreq
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type icmpv6Filter C.struct_icmp6_filter
diff --git a/vendor/golang.org/x/net/ipv6/defs_solaris.go b/vendor/golang.org/x/net/ipv6/defs_solaris.go
new file mode 100644
index 0000000000..0f8ce2b46a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/defs_solaris.go
@@ -0,0 +1,114 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+// +godefs map struct_in6_addr [16]byte /* in6_addr */
+
+package ipv6
+
+/*
+#include <sys/socket.h>
+
+#include <netinet/in.h>
+#include <netinet/icmp6.h>
+*/
+import "C"
+
+const (
+	sysIPV6_UNICAST_HOPS   = C.IPV6_UNICAST_HOPS
+	sysIPV6_MULTICAST_IF   = C.IPV6_MULTICAST_IF
+	sysIPV6_MULTICAST_HOPS = C.IPV6_MULTICAST_HOPS
+	sysIPV6_MULTICAST_LOOP = C.IPV6_MULTICAST_LOOP
+	sysIPV6_JOIN_GROUP     = C.IPV6_JOIN_GROUP
+	sysIPV6_LEAVE_GROUP    = C.IPV6_LEAVE_GROUP
+
+	sysIPV6_PKTINFO = C.IPV6_PKTINFO
+
+	sysIPV6_HOPLIMIT = C.IPV6_HOPLIMIT
+	sysIPV6_NEXTHOP  = C.IPV6_NEXTHOP
+	sysIPV6_HOPOPTS  = C.IPV6_HOPOPTS
+	sysIPV6_DSTOPTS  = C.IPV6_DSTOPTS
+
+	sysIPV6_RTHDR        = C.IPV6_RTHDR
+	sysIPV6_RTHDRDSTOPTS = C.IPV6_RTHDRDSTOPTS
+
+	sysIPV6_RECVPKTINFO  = C.IPV6_RECVPKTINFO
+	sysIPV6_RECVHOPLIMIT = C.IPV6_RECVHOPLIMIT
+	sysIPV6_RECVHOPOPTS  = C.IPV6_RECVHOPOPTS
+
+	sysIPV6_RECVRTHDR = C.IPV6_RECVRTHDR
+
+	sysIPV6_RECVRTHDRDSTOPTS = C.IPV6_RECVRTHDRDSTOPTS
+
+	sysIPV6_CHECKSUM        = C.IPV6_CHECKSUM
+	sysIPV6_RECVTCLASS      = C.IPV6_RECVTCLASS
+	sysIPV6_USE_MIN_MTU     = C.IPV6_USE_MIN_MTU
+	sysIPV6_DONTFRAG        = C.IPV6_DONTFRAG
+	sysIPV6_SEC_OPT         = C.IPV6_SEC_OPT
+	sysIPV6_SRC_PREFERENCES = C.IPV6_SRC_PREFERENCES
+	sysIPV6_RECVPATHMTU     = C.IPV6_RECVPATHMTU
+	sysIPV6_PATHMTU         = C.IPV6_PATHMTU
+	sysIPV6_TCLASS          = C.IPV6_TCLASS
+	sysIPV6_V6ONLY          = C.IPV6_V6ONLY
+
+	sysIPV6_RECVDSTOPTS = C.IPV6_RECVDSTOPTS
+
+	sysMCAST_JOIN_GROUP         = C.MCAST_JOIN_GROUP
+	sysMCAST_LEAVE_GROUP        = C.MCAST_LEAVE_GROUP
+	sysMCAST_BLOCK_SOURCE       = C.MCAST_BLOCK_SOURCE
+	sysMCAST_UNBLOCK_SOURCE     = C.MCAST_UNBLOCK_SOURCE
+	sysMCAST_JOIN_SOURCE_GROUP  = C.MCAST_JOIN_SOURCE_GROUP
+	sysMCAST_LEAVE_SOURCE_GROUP = C.MCAST_LEAVE_SOURCE_GROUP
+
+	sysIPV6_PREFER_SRC_HOME   = C.IPV6_PREFER_SRC_HOME
+	sysIPV6_PREFER_SRC_COA    = C.IPV6_PREFER_SRC_COA
+	sysIPV6_PREFER_SRC_PUBLIC = C.IPV6_PREFER_SRC_PUBLIC
+	sysIPV6_PREFER_SRC_TMP    = C.IPV6_PREFER_SRC_TMP
+	sysIPV6_PREFER_SRC_NONCGA = C.IPV6_PREFER_SRC_NONCGA
+	sysIPV6_PREFER_SRC_CGA    = C.IPV6_PREFER_SRC_CGA
+
+	sysIPV6_PREFER_SRC_MIPMASK    = C.IPV6_PREFER_SRC_MIPMASK
+	sysIPV6_PREFER_SRC_MIPDEFAULT = C.IPV6_PREFER_SRC_MIPDEFAULT
+	sysIPV6_PREFER_SRC_TMPMASK    = C.IPV6_PREFER_SRC_TMPMASK
+	sysIPV6_PREFER_SRC_TMPDEFAULT = C.IPV6_PREFER_SRC_TMPDEFAULT
+	sysIPV6_PREFER_SRC_CGAMASK    = C.IPV6_PREFER_SRC_CGAMASK
+	sysIPV6_PREFER_SRC_CGADEFAULT = C.IPV6_PREFER_SRC_CGADEFAULT
+
+	sysIPV6_PREFER_SRC_MASK = C.IPV6_PREFER_SRC_MASK
+
+	sysIPV6_PREFER_SRC_DEFAULT = C.IPV6_PREFER_SRC_DEFAULT
+
+	sysIPV6_BOUND_IF   = C.IPV6_BOUND_IF
+	sysIPV6_UNSPEC_SRC = C.IPV6_UNSPEC_SRC
+
+	sysICMP6_FILTER = C.ICMP6_FILTER
+
+	sizeofSockaddrStorage = C.sizeof_struct_sockaddr_storage
+	sizeofSockaddrInet6   = C.sizeof_struct_sockaddr_in6
+	sizeofInet6Pktinfo    = C.sizeof_struct_in6_pktinfo
+	sizeofIPv6Mtuinfo     = C.sizeof_struct_ip6_mtuinfo
+
+	sizeofIPv6Mreq       = C.sizeof_struct_ipv6_mreq
+	sizeofGroupReq       = C.sizeof_struct_group_req
+	sizeofGroupSourceReq = C.sizeof_struct_group_source_req
+
+	sizeofICMPv6Filter = C.sizeof_struct_icmp6_filter
+)
+
+type sockaddrStorage C.struct_sockaddr_storage
+
+type sockaddrInet6 C.struct_sockaddr_in6
+
+type inet6Pktinfo C.struct_in6_pktinfo
+
+type ipv6Mtuinfo C.struct_ip6_mtuinfo
+
+type ipv6Mreq C.struct_ipv6_mreq
+
+type groupReq C.struct_group_req
+
+type groupSourceReq C.struct_group_source_req
+
+type icmpv6Filter C.struct_icmp6_filter
diff --git a/vendor/golang.org/x/net/ipv6/dgramopt.go b/vendor/golang.org/x/net/ipv6/dgramopt.go
new file mode 100644
index 0000000000..703dafe84a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/dgramopt.go
@@ -0,0 +1,302 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/bpf"
+)
+
+// MulticastHopLimit returns the hop limit field value for outgoing
+// multicast packets.
+func (c *dgramOpt) MulticastHopLimit() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastHopLimit]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetMulticastHopLimit sets the hop limit field value for future
+// outgoing multicast packets.
+func (c *dgramOpt) SetMulticastHopLimit(hoplim int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastHopLimit]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, hoplim)
+}
+
+// MulticastInterface returns the default interface for multicast
+// packet transmissions.
+func (c *dgramOpt) MulticastInterface() (*net.Interface, error) {
+	if !c.ok() {
+		return nil, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastInterface]
+	if !ok {
+		return nil, errOpNoSupport
+	}
+	return so.getMulticastInterface(c.Conn)
+}
+
+// SetMulticastInterface sets the default interface for future
+// multicast packet transmissions.
+func (c *dgramOpt) SetMulticastInterface(ifi *net.Interface) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastInterface]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setMulticastInterface(c.Conn, ifi)
+}
+
+// MulticastLoopback reports whether transmitted multicast packets
+// should be copied and send back to the originator.
+func (c *dgramOpt) MulticastLoopback() (bool, error) {
+	if !c.ok() {
+		return false, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastLoopback]
+	if !ok {
+		return false, errOpNoSupport
+	}
+	on, err := so.GetInt(c.Conn)
+	if err != nil {
+		return false, err
+	}
+	return on == 1, nil
+}
+
+// SetMulticastLoopback sets whether transmitted multicast packets
+// should be copied and send back to the originator.
+func (c *dgramOpt) SetMulticastLoopback(on bool) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoMulticastLoopback]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, boolint(on))
+}
+
+// JoinGroup joins the group address group on the interface ifi.
+// By default all sources that can cast data to group are accepted.
+// It's possible to mute and unmute data transmission from a specific
+// source by using ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup.
+// JoinGroup uses the system assigned multicast interface when ifi is
+// nil, although this is not recommended because the assignment
+// depends on platforms and sometimes it might require routing
+// configuration.
+func (c *dgramOpt) JoinGroup(ifi *net.Interface, group net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoJoinGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	return so.setGroup(c.Conn, ifi, grp)
+}
+
+// LeaveGroup leaves the group address group on the interface ifi
+// regardless of whether the group is any-source group or
+// source-specific group.
+func (c *dgramOpt) LeaveGroup(ifi *net.Interface, group net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoLeaveGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	return so.setGroup(c.Conn, ifi, grp)
+}
+
+// JoinSourceSpecificGroup joins the source-specific group comprising
+// group and source on the interface ifi.
+// JoinSourceSpecificGroup uses the system assigned multicast
+// interface when ifi is nil, although this is not recommended because
+// the assignment depends on platforms and sometimes it might require
+// routing configuration.
+func (c *dgramOpt) JoinSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoJoinSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP16(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// LeaveSourceSpecificGroup leaves the source-specific group on the
+// interface ifi.
+func (c *dgramOpt) LeaveSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoLeaveSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP16(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// ExcludeSourceSpecificGroup excludes the source-specific group from
+// the already joined any-source groups by JoinGroup on the interface
+// ifi.
+func (c *dgramOpt) ExcludeSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoBlockSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP16(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// IncludeSourceSpecificGroup includes the excluded source-specific
+// group by ExcludeSourceSpecificGroup again on the interface ifi.
+func (c *dgramOpt) IncludeSourceSpecificGroup(ifi *net.Interface, group, source net.Addr) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoUnblockSourceGroup]
+	if !ok {
+		return errOpNoSupport
+	}
+	grp := netAddrToIP16(group)
+	if grp == nil {
+		return errMissingAddress
+	}
+	src := netAddrToIP16(source)
+	if src == nil {
+		return errMissingAddress
+	}
+	return so.setSourceGroup(c.Conn, ifi, grp, src)
+}
+
+// Checksum reports whether the kernel will compute, store or verify a
+// checksum for both incoming and outgoing packets. If on is true, it
+// returns an offset in bytes into the data of where the checksum
+// field is located.
+func (c *dgramOpt) Checksum() (on bool, offset int, err error) {
+	if !c.ok() {
+		return false, 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoChecksum]
+	if !ok {
+		return false, 0, errOpNoSupport
+	}
+	offset, err = so.GetInt(c.Conn)
+	if err != nil {
+		return false, 0, err
+	}
+	if offset < 0 {
+		return false, 0, nil
+	}
+	return true, offset, nil
+}
+
+// SetChecksum enables the kernel checksum processing. If on is ture,
+// the offset should be an offset in bytes into the data of where the
+// checksum field is located.
+func (c *dgramOpt) SetChecksum(on bool, offset int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoChecksum]
+	if !ok {
+		return errOpNoSupport
+	}
+	if !on {
+		offset = -1
+	}
+	return so.SetInt(c.Conn, offset)
+}
+
+// ICMPFilter returns an ICMP filter.
+func (c *dgramOpt) ICMPFilter() (*ICMPFilter, error) {
+	if !c.ok() {
+		return nil, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoICMPFilter]
+	if !ok {
+		return nil, errOpNoSupport
+	}
+	return so.getICMPFilter(c.Conn)
+}
+
+// SetICMPFilter deploys the ICMP filter.
+func (c *dgramOpt) SetICMPFilter(f *ICMPFilter) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoICMPFilter]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setICMPFilter(c.Conn, f)
+}
+
+// SetBPF attaches a BPF program to the connection.
+//
+// Only supported on Linux.
+func (c *dgramOpt) SetBPF(filter []bpf.RawInstruction) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoAttachFilter]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.setBPF(c.Conn, filter)
+}
diff --git a/vendor/golang.org/x/net/ipv6/doc.go b/vendor/golang.org/x/net/ipv6/doc.go
new file mode 100644
index 0000000000..664a97dea1
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/doc.go
@@ -0,0 +1,243 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package ipv6 implements IP-level socket options for the Internet
+// Protocol version 6.
+//
+// The package provides IP-level socket options that allow
+// manipulation of IPv6 facilities.
+//
+// The IPv6 protocol is defined in RFC 8200.
+// Socket interface extensions are defined in RFC 3493, RFC 3542 and
+// RFC 3678.
+// MLDv1 and MLDv2 are defined in RFC 2710 and RFC 3810.
+// Source-specific multicast is defined in RFC 4607.
+//
+// On Darwin, this package requires OS X Mavericks version 10.9 or
+// above, or equivalent.
+//
+//
+// Unicasting
+//
+// The options for unicasting are available for net.TCPConn,
+// net.UDPConn and net.IPConn which are created as network connections
+// that use the IPv6 transport. When a single TCP connection carrying
+// a data flow of multiple packets needs to indicate the flow is
+// important, Conn is used to set the traffic class field on the IPv6
+// header for each packet.
+//
+//	ln, err := net.Listen("tcp6", "[::]:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer ln.Close()
+//	for {
+//		c, err := ln.Accept()
+//		if err != nil {
+//			// error handling
+//		}
+//		go func(c net.Conn) {
+//			defer c.Close()
+//
+// The outgoing packets will be labeled DiffServ assured forwarding
+// class 1 low drop precedence, known as AF11 packets.
+//
+//			if err := ipv6.NewConn(c).SetTrafficClass(0x28); err != nil {
+//				// error handling
+//			}
+//			if _, err := c.Write(data); err != nil {
+//				// error handling
+//			}
+//		}(c)
+//	}
+//
+//
+// Multicasting
+//
+// The options for multicasting are available for net.UDPConn and
+// net.IPconn which are created as network connections that use the
+// IPv6 transport. A few network facilities must be prepared before
+// you begin multicasting, at a minimum joining network interfaces and
+// multicast groups.
+//
+//	en0, err := net.InterfaceByName("en0")
+//	if err != nil {
+//		// error handling
+//	}
+//	en1, err := net.InterfaceByIndex(911)
+//	if err != nil {
+//		// error handling
+//	}
+//	group := net.ParseIP("ff02::114")
+//
+// First, an application listens to an appropriate address with an
+// appropriate service port.
+//
+//	c, err := net.ListenPacket("udp6", "[::]:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c.Close()
+//
+// Second, the application joins multicast groups, starts listening to
+// the groups on the specified network interfaces. Note that the
+// service port for transport layer protocol does not matter with this
+// operation as joining groups affects only network and link layer
+// protocols, such as IPv6 and Ethernet.
+//
+//	p := ipv6.NewPacketConn(c)
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: group}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en1, &net.UDPAddr{IP: group}); err != nil {
+//		// error handling
+//	}
+//
+// The application might set per packet control message transmissions
+// between the protocol stack within the kernel. When the application
+// needs a destination address on an incoming packet,
+// SetControlMessage of PacketConn is used to enable control message
+// transmissions.
+//
+//	if err := p.SetControlMessage(ipv6.FlagDst, true); err != nil {
+//		// error handling
+//	}
+//
+// The application could identify whether the received packets are
+// of interest by using the control message that contains the
+// destination address of the received packet.
+//
+//	b := make([]byte, 1500)
+//	for {
+//		n, rcm, src, err := p.ReadFrom(b)
+//		if err != nil {
+//			// error handling
+//		}
+//		if rcm.Dst.IsMulticast() {
+//			if rcm.Dst.Equal(group) {
+//				// joined group, do something
+//			} else {
+//				// unknown group, discard
+//				continue
+//			}
+//		}
+//
+// The application can also send both unicast and multicast packets.
+//
+//		p.SetTrafficClass(0x0)
+//		p.SetHopLimit(16)
+//		if _, err := p.WriteTo(data[:n], nil, src); err != nil {
+//			// error handling
+//		}
+//		dst := &net.UDPAddr{IP: group, Port: 1024}
+//		wcm := ipv6.ControlMessage{TrafficClass: 0xe0, HopLimit: 1}
+//		for _, ifi := range []*net.Interface{en0, en1} {
+//			wcm.IfIndex = ifi.Index
+//			if _, err := p.WriteTo(data[:n], &wcm, dst); err != nil {
+//				// error handling
+//			}
+//		}
+//	}
+//
+//
+// More multicasting
+//
+// An application that uses PacketConn may join multiple multicast
+// groups. For example, a UDP listener with port 1024 might join two
+// different groups across over two different network interfaces by
+// using:
+//
+//	c, err := net.ListenPacket("udp6", "[::]:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c.Close()
+//	p := ipv6.NewPacketConn(c)
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff02::1:114")}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff02::2:114")}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en1, &net.UDPAddr{IP: net.ParseIP("ff02::2:114")}); err != nil {
+//		// error handling
+//	}
+//
+// It is possible for multiple UDP listeners that listen on the same
+// UDP port to join the same multicast group. The net package will
+// provide a socket that listens to a wildcard address with reusable
+// UDP port when an appropriate multicast address prefix is passed to
+// the net.ListenPacket or net.ListenUDP.
+//
+//	c1, err := net.ListenPacket("udp6", "[ff02::]:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c1.Close()
+//	c2, err := net.ListenPacket("udp6", "[ff02::]:1024")
+//	if err != nil {
+//		// error handling
+//	}
+//	defer c2.Close()
+//	p1 := ipv6.NewPacketConn(c1)
+//	if err := p1.JoinGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff02::114")}); err != nil {
+//		// error handling
+//	}
+//	p2 := ipv6.NewPacketConn(c2)
+//	if err := p2.JoinGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff02::114")}); err != nil {
+//		// error handling
+//	}
+//
+// Also it is possible for the application to leave or rejoin a
+// multicast group on the network interface.
+//
+//	if err := p.LeaveGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff02::114")}); err != nil {
+//		// error handling
+//	}
+//	if err := p.JoinGroup(en0, &net.UDPAddr{IP: net.ParseIP("ff01::114")}); err != nil {
+//		// error handling
+//	}
+//
+//
+// Source-specific multicasting
+//
+// An application that uses PacketConn on MLDv2 supported platform is
+// able to join source-specific multicast groups.
+// The application may use JoinSourceSpecificGroup and
+// LeaveSourceSpecificGroup for the operation known as "include" mode,
+//
+//	ssmgroup := net.UDPAddr{IP: net.ParseIP("ff32::8000:9")}
+//	ssmsource := net.UDPAddr{IP: net.ParseIP("fe80::cafe")}
+//	if err := p.JoinSourceSpecificGroup(en0, &ssmgroup, &ssmsource); err != nil {
+//		// error handling
+//	}
+//	if err := p.LeaveSourceSpecificGroup(en0, &ssmgroup, &ssmsource); err != nil {
+//		// error handling
+//	}
+//
+// or JoinGroup, ExcludeSourceSpecificGroup,
+// IncludeSourceSpecificGroup and LeaveGroup for the operation known
+// as "exclude" mode.
+//
+//	exclsource := net.UDPAddr{IP: net.ParseIP("fe80::dead")}
+//	if err := p.JoinGroup(en0, &ssmgroup); err != nil {
+//		// error handling
+//	}
+//	if err := p.ExcludeSourceSpecificGroup(en0, &ssmgroup, &exclsource); err != nil {
+//		// error handling
+//	}
+//	if err := p.LeaveGroup(en0, &ssmgroup); err != nil {
+//		// error handling
+//	}
+//
+// Note that it depends on each platform implementation what happens
+// when an application which runs on MLDv2 unsupported platform uses
+// JoinSourceSpecificGroup and LeaveSourceSpecificGroup.
+// In general the platform tries to fall back to conversations using
+// MLDv1 and starts to listen to multicast traffic.
+// In the fallback case, ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup may return an error.
+package ipv6 // import "golang.org/x/net/ipv6"
+
+// BUG(mikio): This package is not implemented on NaCl and Plan 9.
diff --git a/vendor/golang.org/x/net/ipv6/endpoint.go b/vendor/golang.org/x/net/ipv6/endpoint.go
new file mode 100644
index 0000000000..0624c17404
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/endpoint.go
@@ -0,0 +1,128 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+	"time"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the JoinSourceSpecificGroup,
+// LeaveSourceSpecificGroup, ExcludeSourceSpecificGroup and
+// IncludeSourceSpecificGroup methods of PacketConn are not
+// implemented.
+
+// A Conn represents a network endpoint that uses IPv6 transport.
+// It allows to set basic IP-level socket options such as traffic
+// class and hop limit.
+type Conn struct {
+	genericOpt
+}
+
+type genericOpt struct {
+	*socket.Conn
+}
+
+func (c *genericOpt) ok() bool { return c != nil && c.Conn != nil }
+
+// PathMTU returns a path MTU value for the destination associated
+// with the endpoint.
+func (c *Conn) PathMTU() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoPathMTU]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	_, mtu, err := so.getMTUInfo(c.Conn)
+	if err != nil {
+		return 0, err
+	}
+	return mtu, nil
+}
+
+// NewConn returns a new Conn.
+func NewConn(c net.Conn) *Conn {
+	cc, _ := socket.NewConn(c)
+	return &Conn{
+		genericOpt: genericOpt{Conn: cc},
+	}
+}
+
+// A PacketConn represents a packet network endpoint that uses IPv6
+// transport. It is used to control several IP-level socket options
+// including IPv6 header manipulation. It also provides datagram
+// based network I/O methods specific to the IPv6 and higher layer
+// protocols such as OSPF, GRE, and UDP.
+type PacketConn struct {
+	genericOpt
+	dgramOpt
+	payloadHandler
+}
+
+type dgramOpt struct {
+	*socket.Conn
+}
+
+func (c *dgramOpt) ok() bool { return c != nil && c.Conn != nil }
+
+// SetControlMessage allows to receive the per packet basis IP-level
+// socket options.
+func (c *PacketConn) SetControlMessage(cf ControlFlags, on bool) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return setControlMessage(c.dgramOpt.Conn, &c.payloadHandler.rawOpt, cf, on)
+}
+
+// SetDeadline sets the read and write deadlines associated with the
+// endpoint.
+func (c *PacketConn) SetDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.SetDeadline(t)
+}
+
+// SetReadDeadline sets the read deadline associated with the
+// endpoint.
+func (c *PacketConn) SetReadDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.SetReadDeadline(t)
+}
+
+// SetWriteDeadline sets the write deadline associated with the
+// endpoint.
+func (c *PacketConn) SetWriteDeadline(t time.Time) error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.SetWriteDeadline(t)
+}
+
+// Close closes the endpoint.
+func (c *PacketConn) Close() error {
+	if !c.payloadHandler.ok() {
+		return syscall.EINVAL
+	}
+	return c.payloadHandler.Close()
+}
+
+// NewPacketConn returns a new PacketConn using c as its underlying
+// transport.
+func NewPacketConn(c net.PacketConn) *PacketConn {
+	cc, _ := socket.NewConn(c.(net.Conn))
+	return &PacketConn{
+		genericOpt:     genericOpt{Conn: cc},
+		dgramOpt:       dgramOpt{Conn: cc},
+		payloadHandler: payloadHandler{PacketConn: c, Conn: cc},
+	}
+}
diff --git a/vendor/golang.org/x/net/ipv6/gen.go b/vendor/golang.org/x/net/ipv6/gen.go
new file mode 100644
index 0000000000..5885664fbc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/gen.go
@@ -0,0 +1,199 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build ignore
+
+//go:generate go run gen.go
+
+// This program generates system adaptation constants and types,
+// internet protocol constants and tables by reading template files
+// and IANA protocol registries.
+package main
+
+import (
+	"bytes"
+	"encoding/xml"
+	"fmt"
+	"go/format"
+	"io"
+	"io/ioutil"
+	"net/http"
+	"os"
+	"os/exec"
+	"runtime"
+	"strconv"
+	"strings"
+)
+
+func main() {
+	if err := genzsys(); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+	if err := geniana(); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+}
+
+func genzsys() error {
+	defs := "defs_" + runtime.GOOS + ".go"
+	f, err := os.Open(defs)
+	if err != nil {
+		if os.IsNotExist(err) {
+			return nil
+		}
+		return err
+	}
+	f.Close()
+	cmd := exec.Command("go", "tool", "cgo", "-godefs", defs)
+	b, err := cmd.Output()
+	if err != nil {
+		return err
+	}
+	b, err = format.Source(b)
+	if err != nil {
+		return err
+	}
+	zsys := "zsys_" + runtime.GOOS + ".go"
+	switch runtime.GOOS {
+	case "freebsd", "linux":
+		zsys = "zsys_" + runtime.GOOS + "_" + runtime.GOARCH + ".go"
+	}
+	if err := ioutil.WriteFile(zsys, b, 0644); err != nil {
+		return err
+	}
+	return nil
+}
+
+var registries = []struct {
+	url   string
+	parse func(io.Writer, io.Reader) error
+}{
+	{
+		"https://www.iana.org/assignments/icmpv6-parameters/icmpv6-parameters.xml",
+		parseICMPv6Parameters,
+	},
+}
+
+func geniana() error {
+	var bb bytes.Buffer
+	fmt.Fprintf(&bb, "// go generate gen.go\n")
+	fmt.Fprintf(&bb, "// Code generated by the command above; DO NOT EDIT.\n\n")
+	fmt.Fprintf(&bb, "package ipv6\n\n")
+	for _, r := range registries {
+		resp, err := http.Get(r.url)
+		if err != nil {
+			return err
+		}
+		defer resp.Body.Close()
+		if resp.StatusCode != http.StatusOK {
+			return fmt.Errorf("got HTTP status code %v for %v\n", resp.StatusCode, r.url)
+		}
+		if err := r.parse(&bb, resp.Body); err != nil {
+			return err
+		}
+		fmt.Fprintf(&bb, "\n")
+	}
+	b, err := format.Source(bb.Bytes())
+	if err != nil {
+		return err
+	}
+	if err := ioutil.WriteFile("iana.go", b, 0644); err != nil {
+		return err
+	}
+	return nil
+}
+
+func parseICMPv6Parameters(w io.Writer, r io.Reader) error {
+	dec := xml.NewDecoder(r)
+	var icp icmpv6Parameters
+	if err := dec.Decode(&icp); err != nil {
+		return err
+	}
+	prs := icp.escape()
+	fmt.Fprintf(w, "// %s, Updated: %s\n", icp.Title, icp.Updated)
+	fmt.Fprintf(w, "const (\n")
+	for _, pr := range prs {
+		if pr.Name == "" {
+			continue
+		}
+		fmt.Fprintf(w, "ICMPType%s ICMPType = %d", pr.Name, pr.Value)
+		fmt.Fprintf(w, "// %s\n", pr.OrigName)
+	}
+	fmt.Fprintf(w, ")\n\n")
+	fmt.Fprintf(w, "// %s, Updated: %s\n", icp.Title, icp.Updated)
+	fmt.Fprintf(w, "var icmpTypes = map[ICMPType]string{\n")
+	for _, pr := range prs {
+		if pr.Name == "" {
+			continue
+		}
+		fmt.Fprintf(w, "%d: %q,\n", pr.Value, strings.ToLower(pr.OrigName))
+	}
+	fmt.Fprintf(w, "}\n")
+	return nil
+}
+
+type icmpv6Parameters struct {
+	XMLName    xml.Name `xml:"registry"`
+	Title      string   `xml:"title"`
+	Updated    string   `xml:"updated"`
+	Registries []struct {
+		Title   string `xml:"title"`
+		Records []struct {
+			Value string `xml:"value"`
+			Name  string `xml:"name"`
+		} `xml:"record"`
+	} `xml:"registry"`
+}
+
+type canonICMPv6ParamRecord struct {
+	OrigName string
+	Name     string
+	Value    int
+}
+
+func (icp *icmpv6Parameters) escape() []canonICMPv6ParamRecord {
+	id := -1
+	for i, r := range icp.Registries {
+		if strings.Contains(r.Title, "Type") || strings.Contains(r.Title, "type") {
+			id = i
+			break
+		}
+	}
+	if id < 0 {
+		return nil
+	}
+	prs := make([]canonICMPv6ParamRecord, len(icp.Registries[id].Records))
+	sr := strings.NewReplacer(
+		"Messages", "",
+		"Message", "",
+		"ICMP", "",
+		"+", "P",
+		"-", "",
+		"/", "",
+		".", "",
+		" ", "",
+	)
+	for i, pr := range icp.Registries[id].Records {
+		if strings.Contains(pr.Name, "Reserved") ||
+			strings.Contains(pr.Name, "Unassigned") ||
+			strings.Contains(pr.Name, "Deprecated") ||
+			strings.Contains(pr.Name, "Experiment") ||
+			strings.Contains(pr.Name, "experiment") {
+			continue
+		}
+		ss := strings.Split(pr.Name, "\n")
+		if len(ss) > 1 {
+			prs[i].Name = strings.Join(ss, " ")
+		} else {
+			prs[i].Name = ss[0]
+		}
+		s := strings.TrimSpace(prs[i].Name)
+		prs[i].OrigName = s
+		prs[i].Name = sr.Replace(s)
+		prs[i].Value, _ = strconv.Atoi(pr.Value)
+	}
+	return prs
+}
diff --git a/vendor/golang.org/x/net/ipv6/genericopt.go b/vendor/golang.org/x/net/ipv6/genericopt.go
new file mode 100644
index 0000000000..e9dbc2e189
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/genericopt.go
@@ -0,0 +1,58 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import "syscall"
+
+// TrafficClass returns the traffic class field value for outgoing
+// packets.
+func (c *genericOpt) TrafficClass() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTrafficClass]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetTrafficClass sets the traffic class field value for future
+// outgoing packets.
+func (c *genericOpt) SetTrafficClass(tclass int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoTrafficClass]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, tclass)
+}
+
+// HopLimit returns the hop limit field value for outgoing packets.
+func (c *genericOpt) HopLimit() (int, error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoHopLimit]
+	if !ok {
+		return 0, errOpNoSupport
+	}
+	return so.GetInt(c.Conn)
+}
+
+// SetHopLimit sets the hop limit field value for future outgoing
+// packets.
+func (c *genericOpt) SetHopLimit(hoplim int) error {
+	if !c.ok() {
+		return syscall.EINVAL
+	}
+	so, ok := sockOpts[ssoHopLimit]
+	if !ok {
+		return errOpNoSupport
+	}
+	return so.SetInt(c.Conn, hoplim)
+}
diff --git a/vendor/golang.org/x/net/ipv6/header.go b/vendor/golang.org/x/net/ipv6/header.go
new file mode 100644
index 0000000000..e05cb08b21
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/header.go
@@ -0,0 +1,55 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"encoding/binary"
+	"fmt"
+	"net"
+)
+
+const (
+	Version   = 6  // protocol version
+	HeaderLen = 40 // header length
+)
+
+// A Header represents an IPv6 base header.
+type Header struct {
+	Version      int    // protocol version
+	TrafficClass int    // traffic class
+	FlowLabel    int    // flow label
+	PayloadLen   int    // payload length
+	NextHeader   int    // next header
+	HopLimit     int    // hop limit
+	Src          net.IP // source address
+	Dst          net.IP // destination address
+}
+
+func (h *Header) String() string {
+	if h == nil {
+		return "<nil>"
+	}
+	return fmt.Sprintf("ver=%d tclass=%#x flowlbl=%#x payloadlen=%d nxthdr=%d hoplim=%d src=%v dst=%v", h.Version, h.TrafficClass, h.FlowLabel, h.PayloadLen, h.NextHeader, h.HopLimit, h.Src, h.Dst)
+}
+
+// ParseHeader parses b as an IPv6 base header.
+func ParseHeader(b []byte) (*Header, error) {
+	if len(b) < HeaderLen {
+		return nil, errHeaderTooShort
+	}
+	h := &Header{
+		Version:      int(b[0]) >> 4,
+		TrafficClass: int(b[0]&0x0f)<<4 | int(b[1])>>4,
+		FlowLabel:    int(b[1]&0x0f)<<16 | int(b[2])<<8 | int(b[3]),
+		PayloadLen:   int(binary.BigEndian.Uint16(b[4:6])),
+		NextHeader:   int(b[6]),
+		HopLimit:     int(b[7]),
+	}
+	h.Src = make(net.IP, net.IPv6len)
+	copy(h.Src, b[8:24])
+	h.Dst = make(net.IP, net.IPv6len)
+	copy(h.Dst, b[24:40])
+	return h, nil
+}
diff --git a/vendor/golang.org/x/net/ipv6/helper.go b/vendor/golang.org/x/net/ipv6/helper.go
new file mode 100644
index 0000000000..259740132c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/helper.go
@@ -0,0 +1,57 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"errors"
+	"net"
+)
+
+var (
+	errMissingAddress  = errors.New("missing address")
+	errHeaderTooShort  = errors.New("header too short")
+	errInvalidConnType = errors.New("invalid conn type")
+	errOpNoSupport     = errors.New("operation not supported")
+	errNoSuchInterface = errors.New("no such interface")
+)
+
+func boolint(b bool) int {
+	if b {
+		return 1
+	}
+	return 0
+}
+
+func netAddrToIP16(a net.Addr) net.IP {
+	switch v := a.(type) {
+	case *net.UDPAddr:
+		if ip := v.IP.To16(); ip != nil && ip.To4() == nil {
+			return ip
+		}
+	case *net.IPAddr:
+		if ip := v.IP.To16(); ip != nil && ip.To4() == nil {
+			return ip
+		}
+	}
+	return nil
+}
+
+func opAddr(a net.Addr) net.Addr {
+	switch a.(type) {
+	case *net.TCPAddr:
+		if a == nil {
+			return nil
+		}
+	case *net.UDPAddr:
+		if a == nil {
+			return nil
+		}
+	case *net.IPAddr:
+		if a == nil {
+			return nil
+		}
+	}
+	return a
+}
diff --git a/vendor/golang.org/x/net/ipv6/iana.go b/vendor/golang.org/x/net/ipv6/iana.go
new file mode 100644
index 0000000000..32db1aa949
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/iana.go
@@ -0,0 +1,86 @@
+// go generate gen.go
+// Code generated by the command above; DO NOT EDIT.
+
+package ipv6
+
+// Internet Control Message Protocol version 6 (ICMPv6) Parameters, Updated: 2018-03-09
+const (
+	ICMPTypeDestinationUnreachable                ICMPType = 1   // Destination Unreachable
+	ICMPTypePacketTooBig                          ICMPType = 2   // Packet Too Big
+	ICMPTypeTimeExceeded                          ICMPType = 3   // Time Exceeded
+	ICMPTypeParameterProblem                      ICMPType = 4   // Parameter Problem
+	ICMPTypeEchoRequest                           ICMPType = 128 // Echo Request
+	ICMPTypeEchoReply                             ICMPType = 129 // Echo Reply
+	ICMPTypeMulticastListenerQuery                ICMPType = 130 // Multicast Listener Query
+	ICMPTypeMulticastListenerReport               ICMPType = 131 // Multicast Listener Report
+	ICMPTypeMulticastListenerDone                 ICMPType = 132 // Multicast Listener Done
+	ICMPTypeRouterSolicitation                    ICMPType = 133 // Router Solicitation
+	ICMPTypeRouterAdvertisement                   ICMPType = 134 // Router Advertisement
+	ICMPTypeNeighborSolicitation                  ICMPType = 135 // Neighbor Solicitation
+	ICMPTypeNeighborAdvertisement                 ICMPType = 136 // Neighbor Advertisement
+	ICMPTypeRedirect                              ICMPType = 137 // Redirect Message
+	ICMPTypeRouterRenumbering                     ICMPType = 138 // Router Renumbering
+	ICMPTypeNodeInformationQuery                  ICMPType = 139 // ICMP Node Information Query
+	ICMPTypeNodeInformationResponse               ICMPType = 140 // ICMP Node Information Response
+	ICMPTypeInverseNeighborDiscoverySolicitation  ICMPType = 141 // Inverse Neighbor Discovery Solicitation Message
+	ICMPTypeInverseNeighborDiscoveryAdvertisement ICMPType = 142 // Inverse Neighbor Discovery Advertisement Message
+	ICMPTypeVersion2MulticastListenerReport       ICMPType = 143 // Version 2 Multicast Listener Report
+	ICMPTypeHomeAgentAddressDiscoveryRequest      ICMPType = 144 // Home Agent Address Discovery Request Message
+	ICMPTypeHomeAgentAddressDiscoveryReply        ICMPType = 145 // Home Agent Address Discovery Reply Message
+	ICMPTypeMobilePrefixSolicitation              ICMPType = 146 // Mobile Prefix Solicitation
+	ICMPTypeMobilePrefixAdvertisement             ICMPType = 147 // Mobile Prefix Advertisement
+	ICMPTypeCertificationPathSolicitation         ICMPType = 148 // Certification Path Solicitation Message
+	ICMPTypeCertificationPathAdvertisement        ICMPType = 149 // Certification Path Advertisement Message
+	ICMPTypeMulticastRouterAdvertisement          ICMPType = 151 // Multicast Router Advertisement
+	ICMPTypeMulticastRouterSolicitation           ICMPType = 152 // Multicast Router Solicitation
+	ICMPTypeMulticastRouterTermination            ICMPType = 153 // Multicast Router Termination
+	ICMPTypeFMIPv6                                ICMPType = 154 // FMIPv6 Messages
+	ICMPTypeRPLControl                            ICMPType = 155 // RPL Control Message
+	ICMPTypeILNPv6LocatorUpdate                   ICMPType = 156 // ILNPv6 Locator Update Message
+	ICMPTypeDuplicateAddressRequest               ICMPType = 157 // Duplicate Address Request
+	ICMPTypeDuplicateAddressConfirmation          ICMPType = 158 // Duplicate Address Confirmation
+	ICMPTypeMPLControl                            ICMPType = 159 // MPL Control Message
+	ICMPTypeExtendedEchoRequest                   ICMPType = 160 // Extended Echo Request
+	ICMPTypeExtendedEchoReply                     ICMPType = 161 // Extended Echo Reply
+)
+
+// Internet Control Message Protocol version 6 (ICMPv6) Parameters, Updated: 2018-03-09
+var icmpTypes = map[ICMPType]string{
+	1:   "destination unreachable",
+	2:   "packet too big",
+	3:   "time exceeded",
+	4:   "parameter problem",
+	128: "echo request",
+	129: "echo reply",
+	130: "multicast listener query",
+	131: "multicast listener report",
+	132: "multicast listener done",
+	133: "router solicitation",
+	134: "router advertisement",
+	135: "neighbor solicitation",
+	136: "neighbor advertisement",
+	137: "redirect message",
+	138: "router renumbering",
+	139: "icmp node information query",
+	140: "icmp node information response",
+	141: "inverse neighbor discovery solicitation message",
+	142: "inverse neighbor discovery advertisement message",
+	143: "version 2 multicast listener report",
+	144: "home agent address discovery request message",
+	145: "home agent address discovery reply message",
+	146: "mobile prefix solicitation",
+	147: "mobile prefix advertisement",
+	148: "certification path solicitation message",
+	149: "certification path advertisement message",
+	151: "multicast router advertisement",
+	152: "multicast router solicitation",
+	153: "multicast router termination",
+	154: "fmipv6 messages",
+	155: "rpl control message",
+	156: "ilnpv6 locator update message",
+	157: "duplicate address request",
+	158: "duplicate address confirmation",
+	159: "mpl control message",
+	160: "extended echo request",
+	161: "extended echo reply",
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp.go b/vendor/golang.org/x/net/ipv6/icmp.go
new file mode 100644
index 0000000000..b7f48e27b8
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp.go
@@ -0,0 +1,60 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import "golang.org/x/net/internal/iana"
+
+// BUG(mikio): On Windows, methods related to ICMPFilter are not
+// implemented.
+
+// An ICMPType represents a type of ICMP message.
+type ICMPType int
+
+func (typ ICMPType) String() string {
+	s, ok := icmpTypes[typ]
+	if !ok {
+		return "<nil>"
+	}
+	return s
+}
+
+// Protocol returns the ICMPv6 protocol number.
+func (typ ICMPType) Protocol() int {
+	return iana.ProtocolIPv6ICMP
+}
+
+// An ICMPFilter represents an ICMP message filter for incoming
+// packets. The filter belongs to a packet delivery path on a host and
+// it cannot interact with forwarding packets or tunnel-outer packets.
+//
+// Note: RFC 8200 defines a reasonable role model. A node means a
+// device that implements IP. A router means a node that forwards IP
+// packets not explicitly addressed to itself, and a host means a node
+// that is not a router.
+type ICMPFilter struct {
+	icmpv6Filter
+}
+
+// Accept accepts incoming ICMP packets including the type field value
+// typ.
+func (f *ICMPFilter) Accept(typ ICMPType) {
+	f.accept(typ)
+}
+
+// Block blocks incoming ICMP packets including the type field value
+// typ.
+func (f *ICMPFilter) Block(typ ICMPType) {
+	f.block(typ)
+}
+
+// SetAll sets the filter action to the filter.
+func (f *ICMPFilter) SetAll(block bool) {
+	f.setAll(block)
+}
+
+// WillBlock reports whether the ICMP type will be blocked.
+func (f *ICMPFilter) WillBlock(typ ICMPType) bool {
+	return f.willBlock(typ)
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp_bsd.go b/vendor/golang.org/x/net/ipv6/icmp_bsd.go
new file mode 100644
index 0000000000..e1a791de46
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp_bsd.go
@@ -0,0 +1,29 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd netbsd openbsd
+
+package ipv6
+
+func (f *icmpv6Filter) accept(typ ICMPType) {
+	f.Filt[typ>>5] |= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) block(typ ICMPType) {
+	f.Filt[typ>>5] &^= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) setAll(block bool) {
+	for i := range f.Filt {
+		if block {
+			f.Filt[i] = 0
+		} else {
+			f.Filt[i] = 1<<32 - 1
+		}
+	}
+}
+
+func (f *icmpv6Filter) willBlock(typ ICMPType) bool {
+	return f.Filt[typ>>5]&(1<<(uint32(typ)&31)) == 0
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp_linux.go b/vendor/golang.org/x/net/ipv6/icmp_linux.go
new file mode 100644
index 0000000000..647f6b44ff
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp_linux.go
@@ -0,0 +1,27 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+func (f *icmpv6Filter) accept(typ ICMPType) {
+	f.Data[typ>>5] &^= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) block(typ ICMPType) {
+	f.Data[typ>>5] |= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) setAll(block bool) {
+	for i := range f.Data {
+		if block {
+			f.Data[i] = 1<<32 - 1
+		} else {
+			f.Data[i] = 0
+		}
+	}
+}
+
+func (f *icmpv6Filter) willBlock(typ ICMPType) bool {
+	return f.Data[typ>>5]&(1<<(uint32(typ)&31)) != 0
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp_solaris.go b/vendor/golang.org/x/net/ipv6/icmp_solaris.go
new file mode 100644
index 0000000000..7c23bb1cf6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp_solaris.go
@@ -0,0 +1,27 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+func (f *icmpv6Filter) accept(typ ICMPType) {
+	f.X__icmp6_filt[typ>>5] |= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) block(typ ICMPType) {
+	f.X__icmp6_filt[typ>>5] &^= 1 << (uint32(typ) & 31)
+}
+
+func (f *icmpv6Filter) setAll(block bool) {
+	for i := range f.X__icmp6_filt {
+		if block {
+			f.X__icmp6_filt[i] = 0
+		} else {
+			f.X__icmp6_filt[i] = 1<<32 - 1
+		}
+	}
+}
+
+func (f *icmpv6Filter) willBlock(typ ICMPType) bool {
+	return f.X__icmp6_filt[typ>>5]&(1<<(uint32(typ)&31)) == 0
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp_stub.go b/vendor/golang.org/x/net/ipv6/icmp_stub.go
new file mode 100644
index 0000000000..c4b9be6dbf
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp_stub.go
@@ -0,0 +1,23 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv6
+
+type icmpv6Filter struct {
+}
+
+func (f *icmpv6Filter) accept(typ ICMPType) {
+}
+
+func (f *icmpv6Filter) block(typ ICMPType) {
+}
+
+func (f *icmpv6Filter) setAll(block bool) {
+}
+
+func (f *icmpv6Filter) willBlock(typ ICMPType) bool {
+	return false
+}
diff --git a/vendor/golang.org/x/net/ipv6/icmp_windows.go b/vendor/golang.org/x/net/ipv6/icmp_windows.go
new file mode 100644
index 0000000000..443cd07367
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/icmp_windows.go
@@ -0,0 +1,22 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+func (f *icmpv6Filter) accept(typ ICMPType) {
+	// TODO(mikio): implement this
+}
+
+func (f *icmpv6Filter) block(typ ICMPType) {
+	// TODO(mikio): implement this
+}
+
+func (f *icmpv6Filter) setAll(block bool) {
+	// TODO(mikio): implement this
+}
+
+func (f *icmpv6Filter) willBlock(typ ICMPType) bool {
+	// TODO(mikio): implement this
+	return false
+}
diff --git a/vendor/golang.org/x/net/ipv6/payload.go b/vendor/golang.org/x/net/ipv6/payload.go
new file mode 100644
index 0000000000..a8197f1695
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/payload.go
@@ -0,0 +1,23 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+// BUG(mikio): On Windows, the ControlMessage for ReadFrom and WriteTo
+// methods of PacketConn is not implemented.
+
+// A payloadHandler represents the IPv6 datagram payload handler.
+type payloadHandler struct {
+	net.PacketConn
+	*socket.Conn
+	rawOpt
+}
+
+func (c *payloadHandler) ok() bool { return c != nil && c.PacketConn != nil && c.Conn != nil }
diff --git a/vendor/golang.org/x/net/ipv6/payload_cmsg.go b/vendor/golang.org/x/net/ipv6/payload_cmsg.go
new file mode 100644
index 0000000000..4ee4b062ca
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/payload_cmsg.go
@@ -0,0 +1,35 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !nacl,!plan9,!windows
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+)
+
+// ReadFrom reads a payload of the received IPv6 datagram, from the
+// endpoint c, copying the payload into b. It returns the number of
+// bytes copied into b, the control message cm and the source address
+// src of the received datagram.
+func (c *payloadHandler) ReadFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	if !c.ok() {
+		return 0, nil, nil, syscall.EINVAL
+	}
+	return c.readFrom(b)
+}
+
+// WriteTo writes a payload of the IPv6 datagram, to the destination
+// address dst through the endpoint c, copying the payload from b. It
+// returns the number of bytes written. The control message cm allows
+// the IPv6 header fields and the datagram path to be specified. The
+// cm may be nil if control of the outgoing datagram is not required.
+func (c *payloadHandler) WriteTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	return c.writeTo(b, cm, dst)
+}
diff --git a/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_8.go b/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_8.go
new file mode 100644
index 0000000000..fdc6c39941
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_8.go
@@ -0,0 +1,55 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.9
+// +build !nacl,!plan9,!windows
+
+package ipv6
+
+import "net"
+
+func (c *payloadHandler) readFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	c.rawOpt.RLock()
+	oob := NewControlMessage(c.rawOpt.cflags)
+	c.rawOpt.RUnlock()
+	var nn int
+	switch c := c.PacketConn.(type) {
+	case *net.UDPConn:
+		if n, nn, _, src, err = c.ReadMsgUDP(b, oob); err != nil {
+			return 0, nil, nil, err
+		}
+	case *net.IPConn:
+		if n, nn, _, src, err = c.ReadMsgIP(b, oob); err != nil {
+			return 0, nil, nil, err
+		}
+	default:
+		return 0, nil, nil, &net.OpError{Op: "read", Net: c.LocalAddr().Network(), Source: c.LocalAddr(), Err: errInvalidConnType}
+	}
+	if nn > 0 {
+		cm = new(ControlMessage)
+		if err = cm.Parse(oob[:nn]); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+	}
+	if cm != nil {
+		cm.Src = netAddrToIP16(src)
+	}
+	return
+}
+
+func (c *payloadHandler) writeTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	oob := cm.Marshal()
+	if dst == nil {
+		return 0, &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: errMissingAddress}
+	}
+	switch c := c.PacketConn.(type) {
+	case *net.UDPConn:
+		n, _, err = c.WriteMsgUDP(b, oob, dst.(*net.UDPAddr))
+	case *net.IPConn:
+		n, _, err = c.WriteMsgIP(b, oob, dst.(*net.IPAddr))
+	default:
+		return 0, &net.OpError{Op: "write", Net: c.LocalAddr().Network(), Source: c.LocalAddr(), Addr: opAddr(dst), Err: errInvalidConnType}
+	}
+	return
+}
diff --git a/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_9.go b/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_9.go
new file mode 100644
index 0000000000..8f6d02e2f8
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/payload_cmsg_go1_9.go
@@ -0,0 +1,57 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.9
+// +build !nacl,!plan9,!windows
+
+package ipv6
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (c *payloadHandler) readFrom(b []byte) (int, *ControlMessage, net.Addr, error) {
+	c.rawOpt.RLock()
+	m := socket.Message{
+		Buffers: [][]byte{b},
+		OOB:     NewControlMessage(c.rawOpt.cflags),
+	}
+	c.rawOpt.RUnlock()
+	switch c.PacketConn.(type) {
+	case *net.UDPConn:
+		if err := c.RecvMsg(&m, 0); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+	case *net.IPConn:
+		if err := c.RecvMsg(&m, 0); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+	default:
+		return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: errInvalidConnType}
+	}
+	var cm *ControlMessage
+	if m.NN > 0 {
+		cm = new(ControlMessage)
+		if err := cm.Parse(m.OOB[:m.NN]); err != nil {
+			return 0, nil, nil, &net.OpError{Op: "read", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Err: err}
+		}
+		cm.Src = netAddrToIP16(m.Addr)
+	}
+	return m.N, cm, m.Addr, nil
+}
+
+func (c *payloadHandler) writeTo(b []byte, cm *ControlMessage, dst net.Addr) (int, error) {
+	m := socket.Message{
+		Buffers: [][]byte{b},
+		OOB:     cm.Marshal(),
+		Addr:    dst,
+	}
+	err := c.SendMsg(&m, 0)
+	if err != nil {
+		err = &net.OpError{Op: "write", Net: c.PacketConn.LocalAddr().Network(), Source: c.PacketConn.LocalAddr(), Addr: opAddr(dst), Err: err}
+	}
+	return m.N, err
+}
diff --git a/vendor/golang.org/x/net/ipv6/payload_nocmsg.go b/vendor/golang.org/x/net/ipv6/payload_nocmsg.go
new file mode 100644
index 0000000000..99a43542b4
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/payload_nocmsg.go
@@ -0,0 +1,41 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build nacl plan9 windows
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+)
+
+// ReadFrom reads a payload of the received IPv6 datagram, from the
+// endpoint c, copying the payload into b. It returns the number of
+// bytes copied into b, the control message cm and the source address
+// src of the received datagram.
+func (c *payloadHandler) ReadFrom(b []byte) (n int, cm *ControlMessage, src net.Addr, err error) {
+	if !c.ok() {
+		return 0, nil, nil, syscall.EINVAL
+	}
+	if n, src, err = c.PacketConn.ReadFrom(b); err != nil {
+		return 0, nil, nil, err
+	}
+	return
+}
+
+// WriteTo writes a payload of the IPv6 datagram, to the destination
+// address dst through the endpoint c, copying the payload from b. It
+// returns the number of bytes written. The control message cm allows
+// the IPv6 header fields and the datagram path to be specified. The
+// cm may be nil if control of the outgoing datagram is not required.
+func (c *payloadHandler) WriteTo(b []byte, cm *ControlMessage, dst net.Addr) (n int, err error) {
+	if !c.ok() {
+		return 0, syscall.EINVAL
+	}
+	if dst == nil {
+		return 0, errMissingAddress
+	}
+	return c.PacketConn.WriteTo(b, dst)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sockopt.go b/vendor/golang.org/x/net/ipv6/sockopt.go
new file mode 100644
index 0000000000..cc3907df38
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sockopt.go
@@ -0,0 +1,43 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import "golang.org/x/net/internal/socket"
+
+// Sticky socket options
+const (
+	ssoTrafficClass        = iota // header field for unicast packet, RFC 3542
+	ssoHopLimit                   // header field for unicast packet, RFC 3493
+	ssoMulticastInterface         // outbound interface for multicast packet, RFC 3493
+	ssoMulticastHopLimit          // header field for multicast packet, RFC 3493
+	ssoMulticastLoopback          // loopback for multicast packet, RFC 3493
+	ssoReceiveTrafficClass        // header field on received packet, RFC 3542
+	ssoReceiveHopLimit            // header field on received packet, RFC 2292 or 3542
+	ssoReceivePacketInfo          // incbound or outbound packet path, RFC 2292 or 3542
+	ssoReceivePathMTU             // path mtu, RFC 3542
+	ssoPathMTU                    // path mtu, RFC 3542
+	ssoChecksum                   // packet checksum, RFC 2292 or 3542
+	ssoICMPFilter                 // icmp filter, RFC 2292 or 3542
+	ssoJoinGroup                  // any-source multicast, RFC 3493
+	ssoLeaveGroup                 // any-source multicast, RFC 3493
+	ssoJoinSourceGroup            // source-specific multicast
+	ssoLeaveSourceGroup           // source-specific multicast
+	ssoBlockSourceGroup           // any-source or source-specific multicast
+	ssoUnblockSourceGroup         // any-source or source-specific multicast
+	ssoAttachFilter               // attach BPF for filtering inbound traffic
+)
+
+// Sticky socket option value types
+const (
+	ssoTypeIPMreq = iota + 1
+	ssoTypeGroupReq
+	ssoTypeGroupSourceReq
+)
+
+// A sockOpt represents a binding for sticky socket option.
+type sockOpt struct {
+	socket.Option
+	typ int // hint for option value type; optional
+}
diff --git a/vendor/golang.org/x/net/ipv6/sockopt_posix.go b/vendor/golang.org/x/net/ipv6/sockopt_posix.go
new file mode 100644
index 0000000000..0eac86eb8c
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sockopt_posix.go
@@ -0,0 +1,87 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris windows
+
+package ipv6
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getMulticastInterface(c *socket.Conn) (*net.Interface, error) {
+	n, err := so.GetInt(c)
+	if err != nil {
+		return nil, err
+	}
+	return net.InterfaceByIndex(n)
+}
+
+func (so *sockOpt) setMulticastInterface(c *socket.Conn, ifi *net.Interface) error {
+	var n int
+	if ifi != nil {
+		n = ifi.Index
+	}
+	return so.SetInt(c, n)
+}
+
+func (so *sockOpt) getICMPFilter(c *socket.Conn) (*ICMPFilter, error) {
+	b := make([]byte, so.Len)
+	n, err := so.Get(c, b)
+	if err != nil {
+		return nil, err
+	}
+	if n != sizeofICMPv6Filter {
+		return nil, errOpNoSupport
+	}
+	return (*ICMPFilter)(unsafe.Pointer(&b[0])), nil
+}
+
+func (so *sockOpt) setICMPFilter(c *socket.Conn, f *ICMPFilter) error {
+	b := (*[sizeofICMPv6Filter]byte)(unsafe.Pointer(f))[:sizeofICMPv6Filter]
+	return so.Set(c, b)
+}
+
+func (so *sockOpt) getMTUInfo(c *socket.Conn) (*net.Interface, int, error) {
+	b := make([]byte, so.Len)
+	n, err := so.Get(c, b)
+	if err != nil {
+		return nil, 0, err
+	}
+	if n != sizeofIPv6Mtuinfo {
+		return nil, 0, errOpNoSupport
+	}
+	mi := (*ipv6Mtuinfo)(unsafe.Pointer(&b[0]))
+	if mi.Addr.Scope_id == 0 {
+		return nil, int(mi.Mtu), nil
+	}
+	ifi, err := net.InterfaceByIndex(int(mi.Addr.Scope_id))
+	if err != nil {
+		return nil, 0, err
+	}
+	return ifi, int(mi.Mtu), nil
+}
+
+func (so *sockOpt) setGroup(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	switch so.typ {
+	case ssoTypeIPMreq:
+		return so.setIPMreq(c, ifi, grp)
+	case ssoTypeGroupReq:
+		return so.setGroupReq(c, ifi, grp)
+	default:
+		return errOpNoSupport
+	}
+}
+
+func (so *sockOpt) setSourceGroup(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return so.setGroupSourceReq(c, ifi, grp, src)
+}
+
+func (so *sockOpt) setBPF(c *socket.Conn, f []bpf.RawInstruction) error {
+	return so.setAttachFilter(c, f)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sockopt_stub.go b/vendor/golang.org/x/net/ipv6/sockopt_stub.go
new file mode 100644
index 0000000000..1f4a273e44
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sockopt_stub.go
@@ -0,0 +1,46 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv6
+
+import (
+	"net"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) getMulticastInterface(c *socket.Conn) (*net.Interface, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setMulticastInterface(c *socket.Conn, ifi *net.Interface) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) getICMPFilter(c *socket.Conn) (*ICMPFilter, error) {
+	return nil, errOpNoSupport
+}
+
+func (so *sockOpt) setICMPFilter(c *socket.Conn, f *ICMPFilter) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) getMTUInfo(c *socket.Conn) (*net.Interface, int, error) {
+	return nil, 0, errOpNoSupport
+}
+
+func (so *sockOpt) setGroup(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setSourceGroup(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setBPF(c *socket.Conn, f []bpf.RawInstruction) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_asmreq.go b/vendor/golang.org/x/net/ipv6/sys_asmreq.go
new file mode 100644
index 0000000000..b0510c0b5d
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_asmreq.go
@@ -0,0 +1,24 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin dragonfly freebsd linux netbsd openbsd solaris windows
+
+package ipv6
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setIPMreq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	var mreq ipv6Mreq
+	copy(mreq.Multiaddr[:], grp)
+	if ifi != nil {
+		mreq.setIfindex(ifi.Index)
+	}
+	b := (*[sizeofIPv6Mreq]byte)(unsafe.Pointer(&mreq))[:sizeofIPv6Mreq]
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_asmreq_stub.go b/vendor/golang.org/x/net/ipv6/sys_asmreq_stub.go
new file mode 100644
index 0000000000..eece96187b
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_asmreq_stub.go
@@ -0,0 +1,17 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv6
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setIPMreq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_bpf.go b/vendor/golang.org/x/net/ipv6/sys_bpf.go
new file mode 100644
index 0000000000..b2dbcb2f28
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_bpf.go
@@ -0,0 +1,23 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build linux
+
+package ipv6
+
+import (
+	"unsafe"
+
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setAttachFilter(c *socket.Conn, f []bpf.RawInstruction) error {
+	prog := sockFProg{
+		Len:    uint16(len(f)),
+		Filter: (*sockFilter)(unsafe.Pointer(&f[0])),
+	}
+	b := (*[sizeofSockFprog]byte)(unsafe.Pointer(&prog))[:sizeofSockFprog]
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_bpf_stub.go b/vendor/golang.org/x/net/ipv6/sys_bpf_stub.go
new file mode 100644
index 0000000000..676bea555f
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_bpf_stub.go
@@ -0,0 +1,16 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !linux
+
+package ipv6
+
+import (
+	"golang.org/x/net/bpf"
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setAttachFilter(c *socket.Conn, f []bpf.RawInstruction) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_bsd.go b/vendor/golang.org/x/net/ipv6/sys_bsd.go
new file mode 100644
index 0000000000..e416eaa1fe
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_bsd.go
@@ -0,0 +1,57 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build dragonfly netbsd openbsd
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTrafficClass: {sysIPV6_TCLASS, 4, marshalTrafficClass, parseTrafficClass},
+		ctlHopLimit:     {sysIPV6_HOPLIMIT, 4, marshalHopLimit, parseHopLimit},
+		ctlPacketInfo:   {sysIPV6_PKTINFO, sizeofInet6Pktinfo, marshalPacketInfo, parsePacketInfo},
+		ctlNextHop:      {sysIPV6_NEXTHOP, sizeofSockaddrInet6, marshalNextHop, parseNextHop},
+		ctlPathMTU:      {sysIPV6_PATHMTU, sizeofIPv6Mtuinfo, marshalPathMTU, parsePathMTU},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTrafficClass:        {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_TCLASS, Len: 4}},
+		ssoHopLimit:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTrafficClass: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVTCLASS, Len: 4}},
+		ssoReceiveHopLimit:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVHOPLIMIT, Len: 4}},
+		ssoReceivePacketInfo:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPKTINFO, Len: 4}},
+		ssoReceivePathMTU:      {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPATHMTU, Len: 4}},
+		ssoPathMTU:             {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_PATHMTU, Len: sizeofIPv6Mtuinfo}},
+		ssoChecksum:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_CHECKSUM, Len: 4}},
+		ssoICMPFilter:          {Option: socket.Option{Level: iana.ProtocolIPv6ICMP, Name: sysICMP6_FILTER, Len: sizeofICMPv6Filter}},
+		ssoJoinGroup:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_JOIN_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_LEAVE_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+	}
+)
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (pi *inet6Pktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Interface = uint32(i)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_darwin.go b/vendor/golang.org/x/net/ipv6/sys_darwin.go
new file mode 100644
index 0000000000..e3d0443927
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_darwin.go
@@ -0,0 +1,106 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"strconv"
+	"strings"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlHopLimit:   {sysIPV6_2292HOPLIMIT, 4, marshal2292HopLimit, parseHopLimit},
+		ctlPacketInfo: {sysIPV6_2292PKTINFO, sizeofInet6Pktinfo, marshal2292PacketInfo, parsePacketInfo},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoHopLimit:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveHopLimit:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_2292HOPLIMIT, Len: 4}},
+		ssoReceivePacketInfo:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_2292PKTINFO, Len: 4}},
+		ssoChecksum:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_CHECKSUM, Len: 4}},
+		ssoICMPFilter:         {Option: socket.Option{Level: iana.ProtocolIPv6ICMP, Name: sysICMP6_FILTER, Len: sizeofICMPv6Filter}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_JOIN_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_LEAVE_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+	}
+)
+
+func init() {
+	// Seems like kern.osreldate is veiled on latest OS X. We use
+	// kern.osrelease instead.
+	s, err := syscall.Sysctl("kern.osrelease")
+	if err != nil {
+		return
+	}
+	ss := strings.Split(s, ".")
+	if len(ss) == 0 {
+		return
+	}
+	// The IP_PKTINFO and protocol-independent multicast API were
+	// introduced in OS X 10.7 (Darwin 11). But it looks like
+	// those features require OS X 10.8 (Darwin 12) or above.
+	// See http://support.apple.com/kb/HT1633.
+	if mjver, err := strconv.Atoi(ss[0]); err != nil || mjver < 12 {
+		return
+	}
+	ctlOpts[ctlTrafficClass] = ctlOpt{sysIPV6_TCLASS, 4, marshalTrafficClass, parseTrafficClass}
+	ctlOpts[ctlHopLimit] = ctlOpt{sysIPV6_HOPLIMIT, 4, marshalHopLimit, parseHopLimit}
+	ctlOpts[ctlPacketInfo] = ctlOpt{sysIPV6_PKTINFO, sizeofInet6Pktinfo, marshalPacketInfo, parsePacketInfo}
+	ctlOpts[ctlNextHop] = ctlOpt{sysIPV6_NEXTHOP, sizeofSockaddrInet6, marshalNextHop, parseNextHop}
+	ctlOpts[ctlPathMTU] = ctlOpt{sysIPV6_PATHMTU, sizeofIPv6Mtuinfo, marshalPathMTU, parsePathMTU}
+	sockOpts[ssoTrafficClass] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_TCLASS, Len: 4}}
+	sockOpts[ssoReceiveTrafficClass] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVTCLASS, Len: 4}}
+	sockOpts[ssoReceiveHopLimit] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVHOPLIMIT, Len: 4}}
+	sockOpts[ssoReceivePacketInfo] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPKTINFO, Len: 4}}
+	sockOpts[ssoReceivePathMTU] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPATHMTU, Len: 4}}
+	sockOpts[ssoPathMTU] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_PATHMTU, Len: sizeofIPv6Mtuinfo}}
+	sockOpts[ssoJoinGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq}
+	sockOpts[ssoLeaveGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq}
+	sockOpts[ssoJoinSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoLeaveSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoBlockSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+	sockOpts[ssoUnblockSourceGroup] = &sockOpt{Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq}
+}
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (pi *inet6Pktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Interface = uint32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gr)) + 4))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 4))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 132))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_freebsd.go b/vendor/golang.org/x/net/ipv6/sys_freebsd.go
new file mode 100644
index 0000000000..e9349dc2cc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_freebsd.go
@@ -0,0 +1,92 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"runtime"
+	"strings"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTrafficClass: {sysIPV6_TCLASS, 4, marshalTrafficClass, parseTrafficClass},
+		ctlHopLimit:     {sysIPV6_HOPLIMIT, 4, marshalHopLimit, parseHopLimit},
+		ctlPacketInfo:   {sysIPV6_PKTINFO, sizeofInet6Pktinfo, marshalPacketInfo, parsePacketInfo},
+		ctlNextHop:      {sysIPV6_NEXTHOP, sizeofSockaddrInet6, marshalNextHop, parseNextHop},
+		ctlPathMTU:      {sysIPV6_PATHMTU, sizeofIPv6Mtuinfo, marshalPathMTU, parsePathMTU},
+	}
+
+	sockOpts = map[int]sockOpt{
+		ssoTrafficClass:        {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_TCLASS, Len: 4}},
+		ssoHopLimit:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTrafficClass: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVTCLASS, Len: 4}},
+		ssoReceiveHopLimit:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVHOPLIMIT, Len: 4}},
+		ssoReceivePacketInfo:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPKTINFO, Len: 4}},
+		ssoReceivePathMTU:      {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPATHMTU, Len: 4}},
+		ssoPathMTU:             {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_PATHMTU, Len: sizeofIPv6Mtuinfo}},
+		ssoChecksum:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_CHECKSUM, Len: 4}},
+		ssoICMPFilter:          {Option: socket.Option{Level: iana.ProtocolIPv6ICMP, Name: sysICMP6_FILTER, Len: sizeofICMPv6Filter}},
+		ssoJoinGroup:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+	}
+)
+
+func init() {
+	if runtime.GOOS == "freebsd" && runtime.GOARCH == "386" {
+		archs, _ := syscall.Sysctl("kern.supported_archs")
+		for _, s := range strings.Fields(archs) {
+			if s == "amd64" {
+				freebsd32o64 = true
+				break
+			}
+		}
+	}
+}
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (pi *inet6Pktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Interface = uint32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(&gr.Group))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(&gsr.Group))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet6)(unsafe.Pointer(&gsr.Source))
+	sa.Len = sizeofSockaddrInet6
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_linux.go b/vendor/golang.org/x/net/ipv6/sys_linux.go
new file mode 100644
index 0000000000..bc218103c1
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_linux.go
@@ -0,0 +1,74 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTrafficClass: {sysIPV6_TCLASS, 4, marshalTrafficClass, parseTrafficClass},
+		ctlHopLimit:     {sysIPV6_HOPLIMIT, 4, marshalHopLimit, parseHopLimit},
+		ctlPacketInfo:   {sysIPV6_PKTINFO, sizeofInet6Pktinfo, marshalPacketInfo, parsePacketInfo},
+		ctlPathMTU:      {sysIPV6_PATHMTU, sizeofIPv6Mtuinfo, marshalPathMTU, parsePathMTU},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTrafficClass:        {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_TCLASS, Len: 4}},
+		ssoHopLimit:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTrafficClass: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVTCLASS, Len: 4}},
+		ssoReceiveHopLimit:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVHOPLIMIT, Len: 4}},
+		ssoReceivePacketInfo:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPKTINFO, Len: 4}},
+		ssoReceivePathMTU:      {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPATHMTU, Len: 4}},
+		ssoPathMTU:             {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_PATHMTU, Len: sizeofIPv6Mtuinfo}},
+		ssoChecksum:            {Option: socket.Option{Level: iana.ProtocolReserved, Name: sysIPV6_CHECKSUM, Len: 4}},
+		ssoICMPFilter:          {Option: socket.Option{Level: iana.ProtocolIPv6ICMP, Name: sysICMPV6_FILTER, Len: sizeofICMPv6Filter}},
+		ssoJoinGroup:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoAttachFilter:        {Option: socket.Option{Level: sysSOL_SOCKET, Name: sysSO_ATTACH_FILTER, Len: sizeofSockFprog}},
+	}
+)
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (pi *inet6Pktinfo) setIfindex(i int) {
+	pi.Ifindex = int32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Ifindex = int32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(&gr.Group))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(&gsr.Group))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet6)(unsafe.Pointer(&gsr.Source))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_solaris.go b/vendor/golang.org/x/net/ipv6/sys_solaris.go
new file mode 100644
index 0000000000..d348b5f6e4
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_solaris.go
@@ -0,0 +1,74 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{
+		ctlTrafficClass: {sysIPV6_TCLASS, 4, marshalTrafficClass, parseTrafficClass},
+		ctlHopLimit:     {sysIPV6_HOPLIMIT, 4, marshalHopLimit, parseHopLimit},
+		ctlPacketInfo:   {sysIPV6_PKTINFO, sizeofInet6Pktinfo, marshalPacketInfo, parsePacketInfo},
+		ctlNextHop:      {sysIPV6_NEXTHOP, sizeofSockaddrInet6, marshalNextHop, parseNextHop},
+		ctlPathMTU:      {sysIPV6_PATHMTU, sizeofIPv6Mtuinfo, marshalPathMTU, parsePathMTU},
+	}
+
+	sockOpts = map[int]*sockOpt{
+		ssoTrafficClass:        {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_TCLASS, Len: 4}},
+		ssoHopLimit:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoReceiveTrafficClass: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVTCLASS, Len: 4}},
+		ssoReceiveHopLimit:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVHOPLIMIT, Len: 4}},
+		ssoReceivePacketInfo:   {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPKTINFO, Len: 4}},
+		ssoReceivePathMTU:      {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_RECVPATHMTU, Len: 4}},
+		ssoPathMTU:             {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_PATHMTU, Len: sizeofIPv6Mtuinfo}},
+		ssoChecksum:            {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_CHECKSUM, Len: 4}},
+		ssoICMPFilter:          {Option: socket.Option{Level: iana.ProtocolIPv6ICMP, Name: sysICMP6_FILTER, Len: sizeofICMPv6Filter}},
+		ssoJoinGroup:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoLeaveGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_GROUP, Len: sizeofGroupReq}, typ: ssoTypeGroupReq},
+		ssoJoinSourceGroup:     {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_JOIN_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoLeaveSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_LEAVE_SOURCE_GROUP, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoBlockSourceGroup:    {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_BLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+		ssoUnblockSourceGroup:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysMCAST_UNBLOCK_SOURCE, Len: sizeofGroupSourceReq}, typ: ssoTypeGroupSourceReq},
+	}
+)
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (pi *inet6Pktinfo) setIfindex(i int) {
+	pi.Ifindex = uint32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Interface = uint32(i)
+}
+
+func (gr *groupReq) setGroup(grp net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gr)) + 4))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+}
+
+func (gsr *groupSourceReq) setSourceGroup(grp, src net.IP) {
+	sa := (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 4))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], grp)
+	sa = (*sockaddrInet6)(unsafe.Pointer(uintptr(unsafe.Pointer(gsr)) + 260))
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], src)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_ssmreq.go b/vendor/golang.org/x/net/ipv6/sys_ssmreq.go
new file mode 100644
index 0000000000..add8ccc0b1
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_ssmreq.go
@@ -0,0 +1,54 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build darwin freebsd linux solaris
+
+package ipv6
+
+import (
+	"net"
+	"unsafe"
+
+	"golang.org/x/net/internal/socket"
+)
+
+var freebsd32o64 bool
+
+func (so *sockOpt) setGroupReq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	var gr groupReq
+	if ifi != nil {
+		gr.Interface = uint32(ifi.Index)
+	}
+	gr.setGroup(grp)
+	var b []byte
+	if freebsd32o64 {
+		var d [sizeofGroupReq + 4]byte
+		s := (*[sizeofGroupReq]byte)(unsafe.Pointer(&gr))
+		copy(d[:4], s[:4])
+		copy(d[8:], s[4:])
+		b = d[:]
+	} else {
+		b = (*[sizeofGroupReq]byte)(unsafe.Pointer(&gr))[:sizeofGroupReq]
+	}
+	return so.Set(c, b)
+}
+
+func (so *sockOpt) setGroupSourceReq(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	var gsr groupSourceReq
+	if ifi != nil {
+		gsr.Interface = uint32(ifi.Index)
+	}
+	gsr.setSourceGroup(grp, src)
+	var b []byte
+	if freebsd32o64 {
+		var d [sizeofGroupSourceReq + 4]byte
+		s := (*[sizeofGroupSourceReq]byte)(unsafe.Pointer(&gsr))
+		copy(d[:4], s[:4])
+		copy(d[8:], s[4:])
+		b = d[:]
+	} else {
+		b = (*[sizeofGroupSourceReq]byte)(unsafe.Pointer(&gsr))[:sizeofGroupSourceReq]
+	}
+	return so.Set(c, b)
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_ssmreq_stub.go b/vendor/golang.org/x/net/ipv6/sys_ssmreq_stub.go
new file mode 100644
index 0000000000..581ee490ff
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_ssmreq_stub.go
@@ -0,0 +1,21 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!freebsd,!linux,!solaris
+
+package ipv6
+
+import (
+	"net"
+
+	"golang.org/x/net/internal/socket"
+)
+
+func (so *sockOpt) setGroupReq(c *socket.Conn, ifi *net.Interface, grp net.IP) error {
+	return errOpNoSupport
+}
+
+func (so *sockOpt) setGroupSourceReq(c *socket.Conn, ifi *net.Interface, grp, src net.IP) error {
+	return errOpNoSupport
+}
diff --git a/vendor/golang.org/x/net/ipv6/sys_stub.go b/vendor/golang.org/x/net/ipv6/sys_stub.go
new file mode 100644
index 0000000000..b845388ea4
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_stub.go
@@ -0,0 +1,13 @@
+// Copyright 2014 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris,!windows
+
+package ipv6
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{}
+
+	sockOpts = map[int]*sockOpt{}
+)
diff --git a/vendor/golang.org/x/net/ipv6/sys_windows.go b/vendor/golang.org/x/net/ipv6/sys_windows.go
new file mode 100644
index 0000000000..fc36b018bd
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/sys_windows.go
@@ -0,0 +1,75 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package ipv6
+
+import (
+	"net"
+	"syscall"
+
+	"golang.org/x/net/internal/iana"
+	"golang.org/x/net/internal/socket"
+)
+
+const (
+	// See ws2tcpip.h.
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PKTINFO        = 0x13
+
+	sizeofSockaddrInet6 = 0x1c
+
+	sizeofIPv6Mreq     = 0x14
+	sizeofIPv6Mtuinfo  = 0x20
+	sizeofICMPv6Filter = 0
+)
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type icmpv6Filter struct {
+	// TODO(mikio): implement this
+}
+
+var (
+	ctlOpts = [ctlMax]ctlOpt{}
+
+	sockOpts = map[int]*sockOpt{
+		ssoHopLimit:           {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_UNICAST_HOPS, Len: 4}},
+		ssoMulticastInterface: {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_IF, Len: 4}},
+		ssoMulticastHopLimit:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_HOPS, Len: 4}},
+		ssoMulticastLoopback:  {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_MULTICAST_LOOP, Len: 4}},
+		ssoJoinGroup:          {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_JOIN_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+		ssoLeaveGroup:         {Option: socket.Option{Level: iana.ProtocolIPv6, Name: sysIPV6_LEAVE_GROUP, Len: sizeofIPv6Mreq}, typ: ssoTypeIPMreq},
+	}
+)
+
+func (sa *sockaddrInet6) setSockaddr(ip net.IP, i int) {
+	sa.Family = syscall.AF_INET6
+	copy(sa.Addr[:], ip)
+	sa.Scope_id = uint32(i)
+}
+
+func (mreq *ipv6Mreq) setIfindex(i int) {
+	mreq.Interface = uint32(i)
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_darwin.go b/vendor/golang.org/x/net/ipv6/zsys_darwin.go
new file mode 100644
index 0000000000..6aab1dfab7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_darwin.go
@@ -0,0 +1,131 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_darwin.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+
+	sysIPV6_PORTRANGE    = 0xe
+	sysICMP6_FILTER      = 0x12
+	sysIPV6_2292PKTINFO  = 0x13
+	sysIPV6_2292HOPLIMIT = 0x14
+	sysIPV6_2292NEXTHOP  = 0x15
+	sysIPV6_2292HOPOPTS  = 0x16
+	sysIPV6_2292DSTOPTS  = 0x17
+	sysIPV6_2292RTHDR    = 0x18
+
+	sysIPV6_2292PKTOPTIONS = 0x19
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RECVTCLASS = 0x23
+	sysIPV6_TCLASS     = 0x24
+
+	sysIPV6_RTHDRDSTOPTS = 0x39
+
+	sysIPV6_RECVPKTINFO = 0x3d
+
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PREFER_TEMPADDR = 0x3f
+
+	sysIPV6_MSFILTER            = 0x4a
+	sysMCAST_JOIN_GROUP         = 0x50
+	sysMCAST_LEAVE_GROUP        = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x53
+	sysMCAST_BLOCK_SOURCE       = 0x54
+	sysMCAST_UNBLOCK_SOURCE     = 0x55
+
+	sysIPV6_BOUND_IF = 0x7d
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet6   = 0x1c
+	sizeofInet6Pktinfo    = 0x14
+	sizeofIPv6Mtuinfo     = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [128]byte
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [128]byte
+	Pad_cgo_1 [128]byte
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_dragonfly.go b/vendor/golang.org/x/net/ipv6/zsys_dragonfly.go
new file mode 100644
index 0000000000..d2de804d88
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_dragonfly.go
@@ -0,0 +1,88 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_dragonfly.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_RECVTCLASS = 0x39
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PREFER_TEMPADDR = 0x3f
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrInet6 = 0x1c
+	sizeofInet6Pktinfo  = 0x14
+	sizeofIPv6Mtuinfo   = 0x20
+
+	sizeofIPv6Mreq = 0x14
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_freebsd_386.go b/vendor/golang.org/x/net/ipv6/zsys_freebsd_386.go
new file mode 100644
index 0000000000..919e572d4a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_freebsd_386.go
@@ -0,0 +1,122 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_RECVTCLASS = 0x39
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PREFER_TEMPADDR = 0x3f
+
+	sysIPV6_BINDANY = 0x40
+
+	sysIPV6_MSFILTER = 0x4a
+
+	sysMCAST_JOIN_GROUP         = 0x50
+	sysMCAST_LEAVE_GROUP        = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x53
+	sysMCAST_BLOCK_SOURCE       = 0x54
+	sysMCAST_UNBLOCK_SOURCE     = 0x55
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet6   = 0x1c
+	sizeofInet6Pktinfo    = 0x14
+	sizeofIPv6Mtuinfo     = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_freebsd_amd64.go b/vendor/golang.org/x/net/ipv6/zsys_freebsd_amd64.go
new file mode 100644
index 0000000000..cb8141f9c6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_freebsd_amd64.go
@@ -0,0 +1,124 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_RECVTCLASS = 0x39
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PREFER_TEMPADDR = 0x3f
+
+	sysIPV6_BINDANY = 0x40
+
+	sysIPV6_MSFILTER = 0x4a
+
+	sysMCAST_JOIN_GROUP         = 0x50
+	sysMCAST_LEAVE_GROUP        = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x53
+	sysMCAST_BLOCK_SOURCE       = 0x54
+	sysMCAST_UNBLOCK_SOURCE     = 0x55
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet6   = 0x1c
+	sizeofInet6Pktinfo    = 0x14
+	sizeofIPv6Mtuinfo     = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_freebsd_arm.go b/vendor/golang.org/x/net/ipv6/zsys_freebsd_arm.go
new file mode 100644
index 0000000000..cb8141f9c6
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_freebsd_arm.go
@@ -0,0 +1,124 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_freebsd.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_RECVTCLASS = 0x39
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PREFER_TEMPADDR = 0x3f
+
+	sysIPV6_BINDANY = 0x40
+
+	sysIPV6_MSFILTER = 0x4a
+
+	sysMCAST_JOIN_GROUP         = 0x50
+	sysMCAST_LEAVE_GROUP        = 0x51
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x52
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x53
+	sysMCAST_BLOCK_SOURCE       = 0x54
+	sysMCAST_UNBLOCK_SOURCE     = 0x55
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrStorage = 0x80
+	sizeofSockaddrInet6   = 0x1c
+	sizeofInet6Pktinfo    = 0x14
+	sizeofIPv6Mtuinfo     = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrStorage struct {
+	Len         uint8
+	Family      uint8
+	X__ss_pad1  [6]int8
+	X__ss_align int64
+	X__ss_pad2  [112]int8
+}
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     sockaddrStorage
+	Source    sockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_386.go b/vendor/golang.org/x/net/ipv6/zsys_linux_386.go
new file mode 100644
index 0000000000..73aa8c6dfc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_386.go
@@ -0,0 +1,170 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_amd64.go b/vendor/golang.org/x/net/ipv6/zsys_linux_amd64.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_amd64.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_arm.go b/vendor/golang.org/x/net/ipv6/zsys_linux_arm.go
new file mode 100644
index 0000000000..73aa8c6dfc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_arm.go
@@ -0,0 +1,170 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_arm64.go b/vendor/golang.org/x/net/ipv6/zsys_linux_arm64.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_arm64.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_mips.go b/vendor/golang.org/x/net/ipv6/zsys_linux_mips.go
new file mode 100644
index 0000000000..73aa8c6dfc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_mips.go
@@ -0,0 +1,170 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_mips64.go b/vendor/golang.org/x/net/ipv6/zsys_linux_mips64.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_mips64.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_mips64le.go b/vendor/golang.org/x/net/ipv6/zsys_linux_mips64le.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_mips64le.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_mipsle.go b/vendor/golang.org/x/net/ipv6/zsys_linux_mipsle.go
new file mode 100644
index 0000000000..73aa8c6dfc
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_mipsle.go
@@ -0,0 +1,170 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_ppc.go b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc.go
new file mode 100644
index 0000000000..c9bf6a87ef
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc.go
@@ -0,0 +1,170 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x84
+	sizeofGroupSourceReq = 0x104
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x8
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]uint8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [2]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64.go b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64le.go b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64le.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_ppc64le.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_linux_s390x.go b/vendor/golang.org/x/net/ipv6/zsys_linux_s390x.go
new file mode 100644
index 0000000000..b64f0157d7
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_linux_s390x.go
@@ -0,0 +1,172 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_linux.go
+
+package ipv6
+
+const (
+	sysIPV6_ADDRFORM       = 0x1
+	sysIPV6_2292PKTINFO    = 0x2
+	sysIPV6_2292HOPOPTS    = 0x3
+	sysIPV6_2292DSTOPTS    = 0x4
+	sysIPV6_2292RTHDR      = 0x5
+	sysIPV6_2292PKTOPTIONS = 0x6
+	sysIPV6_CHECKSUM       = 0x7
+	sysIPV6_2292HOPLIMIT   = 0x8
+	sysIPV6_NEXTHOP        = 0x9
+	sysIPV6_FLOWINFO       = 0xb
+
+	sysIPV6_UNICAST_HOPS        = 0x10
+	sysIPV6_MULTICAST_IF        = 0x11
+	sysIPV6_MULTICAST_HOPS      = 0x12
+	sysIPV6_MULTICAST_LOOP      = 0x13
+	sysIPV6_ADD_MEMBERSHIP      = 0x14
+	sysIPV6_DROP_MEMBERSHIP     = 0x15
+	sysMCAST_JOIN_GROUP         = 0x2a
+	sysMCAST_LEAVE_GROUP        = 0x2d
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2e
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2f
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_MSFILTER           = 0x30
+	sysIPV6_ROUTER_ALERT        = 0x16
+	sysIPV6_MTU_DISCOVER        = 0x17
+	sysIPV6_MTU                 = 0x18
+	sysIPV6_RECVERR             = 0x19
+	sysIPV6_V6ONLY              = 0x1a
+	sysIPV6_JOIN_ANYCAST        = 0x1b
+	sysIPV6_LEAVE_ANYCAST       = 0x1c
+
+	sysIPV6_FLOWLABEL_MGR = 0x20
+	sysIPV6_FLOWINFO_SEND = 0x21
+
+	sysIPV6_IPSEC_POLICY = 0x22
+	sysIPV6_XFRM_POLICY  = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x31
+	sysIPV6_PKTINFO      = 0x32
+	sysIPV6_RECVHOPLIMIT = 0x33
+	sysIPV6_HOPLIMIT     = 0x34
+	sysIPV6_RECVHOPOPTS  = 0x35
+	sysIPV6_HOPOPTS      = 0x36
+	sysIPV6_RTHDRDSTOPTS = 0x37
+	sysIPV6_RECVRTHDR    = 0x38
+	sysIPV6_RTHDR        = 0x39
+	sysIPV6_RECVDSTOPTS  = 0x3a
+	sysIPV6_DSTOPTS      = 0x3b
+	sysIPV6_RECVPATHMTU  = 0x3c
+	sysIPV6_PATHMTU      = 0x3d
+	sysIPV6_DONTFRAG     = 0x3e
+
+	sysIPV6_RECVTCLASS = 0x42
+	sysIPV6_TCLASS     = 0x43
+
+	sysIPV6_ADDR_PREFERENCES = 0x48
+
+	sysIPV6_PREFER_SRC_TMP            = 0x1
+	sysIPV6_PREFER_SRC_PUBLIC         = 0x2
+	sysIPV6_PREFER_SRC_PUBTMP_DEFAULT = 0x100
+	sysIPV6_PREFER_SRC_COA            = 0x4
+	sysIPV6_PREFER_SRC_HOME           = 0x400
+	sysIPV6_PREFER_SRC_CGA            = 0x8
+	sysIPV6_PREFER_SRC_NONCGA         = 0x800
+
+	sysIPV6_MINHOPCOUNT = 0x49
+
+	sysIPV6_ORIGDSTADDR     = 0x4a
+	sysIPV6_RECVORIGDSTADDR = 0x4a
+	sysIPV6_TRANSPARENT     = 0x4b
+	sysIPV6_UNICAST_IF      = 0x4c
+
+	sysICMPV6_FILTER = 0x1
+
+	sysICMPV6_FILTER_BLOCK       = 0x1
+	sysICMPV6_FILTER_PASS        = 0x2
+	sysICMPV6_FILTER_BLOCKOTHERS = 0x3
+	sysICMPV6_FILTER_PASSONLY    = 0x4
+
+	sysSOL_SOCKET       = 0x1
+	sysSO_ATTACH_FILTER = 0x1a
+
+	sizeofKernelSockaddrStorage = 0x80
+	sizeofSockaddrInet6         = 0x1c
+	sizeofInet6Pktinfo          = 0x14
+	sizeofIPv6Mtuinfo           = 0x20
+	sizeofIPv6FlowlabelReq      = 0x20
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x88
+	sizeofGroupSourceReq = 0x108
+
+	sizeofICMPv6Filter = 0x20
+
+	sizeofSockFprog = 0x10
+)
+
+type kernelSockaddrStorage struct {
+	Family  uint16
+	X__data [126]int8
+}
+
+type sockaddrInet6 struct {
+	Family   uint16
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex int32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6FlowlabelReq struct {
+	Dst        [16]byte /* in6_addr */
+	Label      uint32
+	Action     uint8
+	Share      uint8
+	Flags      uint16
+	Expires    uint16
+	Linger     uint16
+	X__flr_pad uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Ifindex   int32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [4]byte
+	Group     kernelSockaddrStorage
+	Source    kernelSockaddrStorage
+}
+
+type icmpv6Filter struct {
+	Data [8]uint32
+}
+
+type sockFProg struct {
+	Len       uint16
+	Pad_cgo_0 [6]byte
+	Filter    *sockFilter
+}
+
+type sockFilter struct {
+	Code uint16
+	Jt   uint8
+	Jf   uint8
+	K    uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_netbsd.go b/vendor/golang.org/x/net/ipv6/zsys_netbsd.go
new file mode 100644
index 0000000000..bcada13b7a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_netbsd.go
@@ -0,0 +1,84 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_netbsd.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_IPSEC_POLICY = 0x1c
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+	sysIPV6_PATHMTU     = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_RECVTCLASS = 0x39
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrInet6 = 0x1c
+	sizeofInet6Pktinfo  = 0x14
+	sizeofIPv6Mtuinfo   = 0x20
+
+	sizeofIPv6Mreq = 0x14
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_openbsd.go b/vendor/golang.org/x/net/ipv6/zsys_openbsd.go
new file mode 100644
index 0000000000..86cf3c6379
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_openbsd.go
@@ -0,0 +1,93 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_openbsd.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x4
+	sysIPV6_MULTICAST_IF   = 0x9
+	sysIPV6_MULTICAST_HOPS = 0xa
+	sysIPV6_MULTICAST_LOOP = 0xb
+	sysIPV6_JOIN_GROUP     = 0xc
+	sysIPV6_LEAVE_GROUP    = 0xd
+	sysIPV6_PORTRANGE      = 0xe
+	sysICMP6_FILTER        = 0x12
+
+	sysIPV6_CHECKSUM = 0x1a
+	sysIPV6_V6ONLY   = 0x1b
+
+	sysIPV6_RTHDRDSTOPTS = 0x23
+
+	sysIPV6_RECVPKTINFO  = 0x24
+	sysIPV6_RECVHOPLIMIT = 0x25
+	sysIPV6_RECVRTHDR    = 0x26
+	sysIPV6_RECVHOPOPTS  = 0x27
+	sysIPV6_RECVDSTOPTS  = 0x28
+
+	sysIPV6_USE_MIN_MTU = 0x2a
+	sysIPV6_RECVPATHMTU = 0x2b
+
+	sysIPV6_PATHMTU = 0x2c
+
+	sysIPV6_PKTINFO  = 0x2e
+	sysIPV6_HOPLIMIT = 0x2f
+	sysIPV6_NEXTHOP  = 0x30
+	sysIPV6_HOPOPTS  = 0x31
+	sysIPV6_DSTOPTS  = 0x32
+	sysIPV6_RTHDR    = 0x33
+
+	sysIPV6_AUTH_LEVEL        = 0x35
+	sysIPV6_ESP_TRANS_LEVEL   = 0x36
+	sysIPV6_ESP_NETWORK_LEVEL = 0x37
+	sysIPSEC6_OUTSA           = 0x38
+	sysIPV6_RECVTCLASS        = 0x39
+
+	sysIPV6_AUTOFLOWLABEL = 0x3b
+	sysIPV6_IPCOMP_LEVEL  = 0x3c
+
+	sysIPV6_TCLASS   = 0x3d
+	sysIPV6_DONTFRAG = 0x3e
+	sysIPV6_PIPEX    = 0x3f
+
+	sysIPV6_RTABLE = 0x1021
+
+	sysIPV6_PORTRANGE_DEFAULT = 0x0
+	sysIPV6_PORTRANGE_HIGH    = 0x1
+	sysIPV6_PORTRANGE_LOW     = 0x2
+
+	sizeofSockaddrInet6 = 0x1c
+	sizeofInet6Pktinfo  = 0x14
+	sizeofIPv6Mtuinfo   = 0x20
+
+	sizeofIPv6Mreq = 0x14
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrInet6 struct {
+	Len      uint8
+	Family   uint8
+	Port     uint16
+	Flowinfo uint32
+	Addr     [16]byte /* in6_addr */
+	Scope_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type icmpv6Filter struct {
+	Filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/ipv6/zsys_solaris.go b/vendor/golang.org/x/net/ipv6/zsys_solaris.go
new file mode 100644
index 0000000000..cf1837dd2a
--- /dev/null
+++ b/vendor/golang.org/x/net/ipv6/zsys_solaris.go
@@ -0,0 +1,131 @@
+// Created by cgo -godefs - DO NOT EDIT
+// cgo -godefs defs_solaris.go
+
+package ipv6
+
+const (
+	sysIPV6_UNICAST_HOPS   = 0x5
+	sysIPV6_MULTICAST_IF   = 0x6
+	sysIPV6_MULTICAST_HOPS = 0x7
+	sysIPV6_MULTICAST_LOOP = 0x8
+	sysIPV6_JOIN_GROUP     = 0x9
+	sysIPV6_LEAVE_GROUP    = 0xa
+
+	sysIPV6_PKTINFO = 0xb
+
+	sysIPV6_HOPLIMIT = 0xc
+	sysIPV6_NEXTHOP  = 0xd
+	sysIPV6_HOPOPTS  = 0xe
+	sysIPV6_DSTOPTS  = 0xf
+
+	sysIPV6_RTHDR        = 0x10
+	sysIPV6_RTHDRDSTOPTS = 0x11
+
+	sysIPV6_RECVPKTINFO  = 0x12
+	sysIPV6_RECVHOPLIMIT = 0x13
+	sysIPV6_RECVHOPOPTS  = 0x14
+
+	sysIPV6_RECVRTHDR = 0x16
+
+	sysIPV6_RECVRTHDRDSTOPTS = 0x17
+
+	sysIPV6_CHECKSUM        = 0x18
+	sysIPV6_RECVTCLASS      = 0x19
+	sysIPV6_USE_MIN_MTU     = 0x20
+	sysIPV6_DONTFRAG        = 0x21
+	sysIPV6_SEC_OPT         = 0x22
+	sysIPV6_SRC_PREFERENCES = 0x23
+	sysIPV6_RECVPATHMTU     = 0x24
+	sysIPV6_PATHMTU         = 0x25
+	sysIPV6_TCLASS          = 0x26
+	sysIPV6_V6ONLY          = 0x27
+
+	sysIPV6_RECVDSTOPTS = 0x28
+
+	sysMCAST_JOIN_GROUP         = 0x29
+	sysMCAST_LEAVE_GROUP        = 0x2a
+	sysMCAST_BLOCK_SOURCE       = 0x2b
+	sysMCAST_UNBLOCK_SOURCE     = 0x2c
+	sysMCAST_JOIN_SOURCE_GROUP  = 0x2d
+	sysMCAST_LEAVE_SOURCE_GROUP = 0x2e
+
+	sysIPV6_PREFER_SRC_HOME   = 0x1
+	sysIPV6_PREFER_SRC_COA    = 0x2
+	sysIPV6_PREFER_SRC_PUBLIC = 0x4
+	sysIPV6_PREFER_SRC_TMP    = 0x8
+	sysIPV6_PREFER_SRC_NONCGA = 0x10
+	sysIPV6_PREFER_SRC_CGA    = 0x20
+
+	sysIPV6_PREFER_SRC_MIPMASK    = 0x3
+	sysIPV6_PREFER_SRC_MIPDEFAULT = 0x1
+	sysIPV6_PREFER_SRC_TMPMASK    = 0xc
+	sysIPV6_PREFER_SRC_TMPDEFAULT = 0x4
+	sysIPV6_PREFER_SRC_CGAMASK    = 0x30
+	sysIPV6_PREFER_SRC_CGADEFAULT = 0x10
+
+	sysIPV6_PREFER_SRC_MASK = 0x3f
+
+	sysIPV6_PREFER_SRC_DEFAULT = 0x15
+
+	sysIPV6_BOUND_IF   = 0x41
+	sysIPV6_UNSPEC_SRC = 0x42
+
+	sysICMP6_FILTER = 0x1
+
+	sizeofSockaddrStorage = 0x100
+	sizeofSockaddrInet6   = 0x20
+	sizeofInet6Pktinfo    = 0x14
+	sizeofIPv6Mtuinfo     = 0x24
+
+	sizeofIPv6Mreq       = 0x14
+	sizeofGroupReq       = 0x104
+	sizeofGroupSourceReq = 0x204
+
+	sizeofICMPv6Filter = 0x20
+)
+
+type sockaddrStorage struct {
+	Family     uint16
+	X_ss_pad1  [6]int8
+	X_ss_align float64
+	X_ss_pad2  [240]int8
+}
+
+type sockaddrInet6 struct {
+	Family         uint16
+	Port           uint16
+	Flowinfo       uint32
+	Addr           [16]byte /* in6_addr */
+	Scope_id       uint32
+	X__sin6_src_id uint32
+}
+
+type inet6Pktinfo struct {
+	Addr    [16]byte /* in6_addr */
+	Ifindex uint32
+}
+
+type ipv6Mtuinfo struct {
+	Addr sockaddrInet6
+	Mtu  uint32
+}
+
+type ipv6Mreq struct {
+	Multiaddr [16]byte /* in6_addr */
+	Interface uint32
+}
+
+type groupReq struct {
+	Interface uint32
+	Pad_cgo_0 [256]byte
+}
+
+type groupSourceReq struct {
+	Interface uint32
+	Pad_cgo_0 [256]byte
+	Pad_cgo_1 [256]byte
+}
+
+type icmpv6Filter struct {
+	X__icmp6_filt [8]uint32
+}
diff --git a/vendor/golang.org/x/net/proxy/direct.go b/vendor/golang.org/x/net/proxy/direct.go
new file mode 100644
index 0000000000..4c5ad88b1e
--- /dev/null
+++ b/vendor/golang.org/x/net/proxy/direct.go
@@ -0,0 +1,18 @@
+// Copyright 2011 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package proxy
+
+import (
+	"net"
+)
+
+type direct struct{}
+
+// Direct is a direct proxy: one that makes network connections directly.
+var Direct = direct{}
+
+func (direct) Dial(network, addr string) (net.Conn, error) {
+	return net.Dial(network, addr)
+}
diff --git a/vendor/golang.org/x/net/proxy/per_host.go b/vendor/golang.org/x/net/proxy/per_host.go
new file mode 100644
index 0000000000..0689bb6a70
--- /dev/null
+++ b/vendor/golang.org/x/net/proxy/per_host.go
@@ -0,0 +1,140 @@
+// Copyright 2011 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package proxy
+
+import (
+	"net"
+	"strings"
+)
+
+// A PerHost directs connections to a default Dialer unless the host name
+// requested matches one of a number of exceptions.
+type PerHost struct {
+	def, bypass Dialer
+
+	bypassNetworks []*net.IPNet
+	bypassIPs      []net.IP
+	bypassZones    []string
+	bypassHosts    []string
+}
+
+// NewPerHost returns a PerHost Dialer that directs connections to either
+// defaultDialer or bypass, depending on whether the connection matches one of
+// the configured rules.
+func NewPerHost(defaultDialer, bypass Dialer) *PerHost {
+	return &PerHost{
+		def:    defaultDialer,
+		bypass: bypass,
+	}
+}
+
+// Dial connects to the address addr on the given network through either
+// defaultDialer or bypass.
+func (p *PerHost) Dial(network, addr string) (c net.Conn, err error) {
+	host, _, err := net.SplitHostPort(addr)
+	if err != nil {
+		return nil, err
+	}
+
+	return p.dialerForRequest(host).Dial(network, addr)
+}
+
+func (p *PerHost) dialerForRequest(host string) Dialer {
+	if ip := net.ParseIP(host); ip != nil {
+		for _, net := range p.bypassNetworks {
+			if net.Contains(ip) {
+				return p.bypass
+			}
+		}
+		for _, bypassIP := range p.bypassIPs {
+			if bypassIP.Equal(ip) {
+				return p.bypass
+			}
+		}
+		return p.def
+	}
+
+	for _, zone := range p.bypassZones {
+		if strings.HasSuffix(host, zone) {
+			return p.bypass
+		}
+		if host == zone[1:] {
+			// For a zone ".example.com", we match "example.com"
+			// too.
+			return p.bypass
+		}
+	}
+	for _, bypassHost := range p.bypassHosts {
+		if bypassHost == host {
+			return p.bypass
+		}
+	}
+	return p.def
+}
+
+// AddFromString parses a string that contains comma-separated values
+// specifying hosts that should use the bypass proxy. Each value is either an
+// IP address, a CIDR range, a zone (*.example.com) or a host name
+// (localhost). A best effort is made to parse the string and errors are
+// ignored.
+func (p *PerHost) AddFromString(s string) {
+	hosts := strings.Split(s, ",")
+	for _, host := range hosts {
+		host = strings.TrimSpace(host)
+		if len(host) == 0 {
+			continue
+		}
+		if strings.Contains(host, "/") {
+			// We assume that it's a CIDR address like 127.0.0.0/8
+			if _, net, err := net.ParseCIDR(host); err == nil {
+				p.AddNetwork(net)
+			}
+			continue
+		}
+		if ip := net.ParseIP(host); ip != nil {
+			p.AddIP(ip)
+			continue
+		}
+		if strings.HasPrefix(host, "*.") {
+			p.AddZone(host[1:])
+			continue
+		}
+		p.AddHost(host)
+	}
+}
+
+// AddIP specifies an IP address that will use the bypass proxy. Note that
+// this will only take effect if a literal IP address is dialed. A connection
+// to a named host will never match an IP.
+func (p *PerHost) AddIP(ip net.IP) {
+	p.bypassIPs = append(p.bypassIPs, ip)
+}
+
+// AddNetwork specifies an IP range that will use the bypass proxy. Note that
+// this will only take effect if a literal IP address is dialed. A connection
+// to a named host will never match.
+func (p *PerHost) AddNetwork(net *net.IPNet) {
+	p.bypassNetworks = append(p.bypassNetworks, net)
+}
+
+// AddZone specifies a DNS suffix that will use the bypass proxy. A zone of
+// "example.com" matches "example.com" and all of its subdomains.
+func (p *PerHost) AddZone(zone string) {
+	if strings.HasSuffix(zone, ".") {
+		zone = zone[:len(zone)-1]
+	}
+	if !strings.HasPrefix(zone, ".") {
+		zone = "." + zone
+	}
+	p.bypassZones = append(p.bypassZones, zone)
+}
+
+// AddHost specifies a host name that will use the bypass proxy.
+func (p *PerHost) AddHost(host string) {
+	if strings.HasSuffix(host, ".") {
+		host = host[:len(host)-1]
+	}
+	p.bypassHosts = append(p.bypassHosts, host)
+}
diff --git a/vendor/golang.org/x/net/proxy/proxy.go b/vendor/golang.org/x/net/proxy/proxy.go
new file mode 100644
index 0000000000..553ead7cf0
--- /dev/null
+++ b/vendor/golang.org/x/net/proxy/proxy.go
@@ -0,0 +1,134 @@
+// Copyright 2011 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package proxy provides support for a variety of protocols to proxy network
+// data.
+package proxy // import "golang.org/x/net/proxy"
+
+import (
+	"errors"
+	"net"
+	"net/url"
+	"os"
+	"sync"
+)
+
+// A Dialer is a means to establish a connection.
+type Dialer interface {
+	// Dial connects to the given address via the proxy.
+	Dial(network, addr string) (c net.Conn, err error)
+}
+
+// Auth contains authentication parameters that specific Dialers may require.
+type Auth struct {
+	User, Password string
+}
+
+// FromEnvironment returns the dialer specified by the proxy related variables in
+// the environment.
+func FromEnvironment() Dialer {
+	allProxy := allProxyEnv.Get()
+	if len(allProxy) == 0 {
+		return Direct
+	}
+
+	proxyURL, err := url.Parse(allProxy)
+	if err != nil {
+		return Direct
+	}
+	proxy, err := FromURL(proxyURL, Direct)
+	if err != nil {
+		return Direct
+	}
+
+	noProxy := noProxyEnv.Get()
+	if len(noProxy) == 0 {
+		return proxy
+	}
+
+	perHost := NewPerHost(proxy, Direct)
+	perHost.AddFromString(noProxy)
+	return perHost
+}
+
+// proxySchemes is a map from URL schemes to a function that creates a Dialer
+// from a URL with such a scheme.
+var proxySchemes map[string]func(*url.URL, Dialer) (Dialer, error)
+
+// RegisterDialerType takes a URL scheme and a function to generate Dialers from
+// a URL with that scheme and a forwarding Dialer. Registered schemes are used
+// by FromURL.
+func RegisterDialerType(scheme string, f func(*url.URL, Dialer) (Dialer, error)) {
+	if proxySchemes == nil {
+		proxySchemes = make(map[string]func(*url.URL, Dialer) (Dialer, error))
+	}
+	proxySchemes[scheme] = f
+}
+
+// FromURL returns a Dialer given a URL specification and an underlying
+// Dialer for it to make network requests.
+func FromURL(u *url.URL, forward Dialer) (Dialer, error) {
+	var auth *Auth
+	if u.User != nil {
+		auth = new(Auth)
+		auth.User = u.User.Username()
+		if p, ok := u.User.Password(); ok {
+			auth.Password = p
+		}
+	}
+
+	switch u.Scheme {
+	case "socks5":
+		return SOCKS5("tcp", u.Host, auth, forward)
+	}
+
+	// If the scheme doesn't match any of the built-in schemes, see if it
+	// was registered by another package.
+	if proxySchemes != nil {
+		if f, ok := proxySchemes[u.Scheme]; ok {
+			return f(u, forward)
+		}
+	}
+
+	return nil, errors.New("proxy: unknown scheme: " + u.Scheme)
+}
+
+var (
+	allProxyEnv = &envOnce{
+		names: []string{"ALL_PROXY", "all_proxy"},
+	}
+	noProxyEnv = &envOnce{
+		names: []string{"NO_PROXY", "no_proxy"},
+	}
+)
+
+// envOnce looks up an environment variable (optionally by multiple
+// names) once. It mitigates expensive lookups on some platforms
+// (e.g. Windows).
+// (Borrowed from net/http/transport.go)
+type envOnce struct {
+	names []string
+	once  sync.Once
+	val   string
+}
+
+func (e *envOnce) Get() string {
+	e.once.Do(e.init)
+	return e.val
+}
+
+func (e *envOnce) init() {
+	for _, n := range e.names {
+		e.val = os.Getenv(n)
+		if e.val != "" {
+			return
+		}
+	}
+}
+
+// reset is used by tests
+func (e *envOnce) reset() {
+	e.once = sync.Once{}
+	e.val = ""
+}
diff --git a/vendor/golang.org/x/net/proxy/socks5.go b/vendor/golang.org/x/net/proxy/socks5.go
new file mode 100644
index 0000000000..56345ec8b6
--- /dev/null
+++ b/vendor/golang.org/x/net/proxy/socks5.go
@@ -0,0 +1,36 @@
+// Copyright 2011 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package proxy
+
+import (
+	"context"
+	"net"
+
+	"golang.org/x/net/internal/socks"
+)
+
+// SOCKS5 returns a Dialer that makes SOCKSv5 connections to the given
+// address with an optional username and password.
+// See RFC 1928 and RFC 1929.
+func SOCKS5(network, address string, auth *Auth, forward Dialer) (Dialer, error) {
+	d := socks.NewDialer(network, address)
+	if forward != nil {
+		d.ProxyDial = func(_ context.Context, network string, address string) (net.Conn, error) {
+			return forward.Dial(network, address)
+		}
+	}
+	if auth != nil {
+		up := socks.UsernamePassword{
+			Username: auth.User,
+			Password: auth.Password,
+		}
+		d.AuthMethods = []socks.AuthMethod{
+			socks.AuthMethodNotRequired,
+			socks.AuthMethodUsernamePassword,
+		}
+		d.Authenticate = up.Authenticate
+	}
+	return d, nil
+}
diff --git a/vendor/golang.org/x/sync/AUTHORS b/vendor/golang.org/x/sync/AUTHORS
new file mode 100644
index 0000000000..15167cd746
--- /dev/null
+++ b/vendor/golang.org/x/sync/AUTHORS
@@ -0,0 +1,3 @@
+# This source code refers to The Go Authors for copyright purposes.
+# The master list of authors is in the main Go distribution,
+# visible at http://tip.golang.org/AUTHORS.
diff --git a/vendor/golang.org/x/sync/CONTRIBUTORS b/vendor/golang.org/x/sync/CONTRIBUTORS
new file mode 100644
index 0000000000..1c4577e968
--- /dev/null
+++ b/vendor/golang.org/x/sync/CONTRIBUTORS
@@ -0,0 +1,3 @@
+# This source code was written by the Go contributors.
+# The master list of contributors is in the main Go distribution,
+# visible at http://tip.golang.org/CONTRIBUTORS.
diff --git a/vendor/golang.org/x/sync/LICENSE b/vendor/golang.org/x/sync/LICENSE
new file mode 100644
index 0000000000..6a66aea5ea
--- /dev/null
+++ b/vendor/golang.org/x/sync/LICENSE
@@ -0,0 +1,27 @@
+Copyright (c) 2009 The Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/golang.org/x/sync/PATENTS b/vendor/golang.org/x/sync/PATENTS
new file mode 100644
index 0000000000..733099041f
--- /dev/null
+++ b/vendor/golang.org/x/sync/PATENTS
@@ -0,0 +1,22 @@
+Additional IP Rights Grant (Patents)
+
+"This implementation" means the copyrightable works distributed by
+Google as part of the Go project.
+
+Google hereby grants to You a perpetual, worldwide, non-exclusive,
+no-charge, royalty-free, irrevocable (except as stated in this section)
+patent license to make, have made, use, offer to sell, sell, import,
+transfer and otherwise run, modify and propagate the contents of this
+implementation of Go, where such license applies only to those patent
+claims, both currently owned or controlled by Google and acquired in
+the future, licensable by Google that are necessarily infringed by this
+implementation of Go.  This grant does not include claims that would be
+infringed only as a consequence of further modification of this
+implementation.  If you or your agent or exclusive licensee institute or
+order or agree to the institution of patent litigation against any
+entity (including a cross-claim or counterclaim in a lawsuit) alleging
+that this implementation of Go or any code incorporated within this
+implementation of Go constitutes direct or contributory patent
+infringement, or inducement of patent infringement, then any patent
+rights granted to you under this License for this implementation of Go
+shall terminate as of the date such litigation is filed.
diff --git a/vendor/golang.org/x/sync/errgroup/errgroup.go b/vendor/golang.org/x/sync/errgroup/errgroup.go
new file mode 100644
index 0000000000..533438d91c
--- /dev/null
+++ b/vendor/golang.org/x/sync/errgroup/errgroup.go
@@ -0,0 +1,67 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package errgroup provides synchronization, error propagation, and Context
+// cancelation for groups of goroutines working on subtasks of a common task.
+package errgroup
+
+import (
+	"sync"
+
+	"golang.org/x/net/context"
+)
+
+// A Group is a collection of goroutines working on subtasks that are part of
+// the same overall task.
+//
+// A zero Group is valid and does not cancel on error.
+type Group struct {
+	cancel func()
+
+	wg sync.WaitGroup
+
+	errOnce sync.Once
+	err     error
+}
+
+// WithContext returns a new Group and an associated Context derived from ctx.
+//
+// The derived Context is canceled the first time a function passed to Go
+// returns a non-nil error or the first time Wait returns, whichever occurs
+// first.
+func WithContext(ctx context.Context) (*Group, context.Context) {
+	ctx, cancel := context.WithCancel(ctx)
+	return &Group{cancel: cancel}, ctx
+}
+
+// Wait blocks until all function calls from the Go method have returned, then
+// returns the first non-nil error (if any) from them.
+func (g *Group) Wait() error {
+	g.wg.Wait()
+	if g.cancel != nil {
+		g.cancel()
+	}
+	return g.err
+}
+
+// Go calls the given function in a new goroutine.
+//
+// The first call to return a non-nil error cancels the group; its error will be
+// returned by Wait.
+func (g *Group) Go(f func() error) {
+	g.wg.Add(1)
+
+	go func() {
+		defer g.wg.Done()
+
+		if err := f(); err != nil {
+			g.errOnce.Do(func() {
+				g.err = err
+				if g.cancel != nil {
+					g.cancel()
+				}
+			})
+		}
+	}()
+}
diff --git a/vendor/golang.org/x/sync/singleflight/singleflight.go b/vendor/golang.org/x/sync/singleflight/singleflight.go
new file mode 100644
index 0000000000..9a4f8d59e0
--- /dev/null
+++ b/vendor/golang.org/x/sync/singleflight/singleflight.go
@@ -0,0 +1,111 @@
+// Copyright 2013 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package singleflight provides a duplicate function call suppression
+// mechanism.
+package singleflight // import "golang.org/x/sync/singleflight"
+
+import "sync"
+
+// call is an in-flight or completed singleflight.Do call
+type call struct {
+	wg sync.WaitGroup
+
+	// These fields are written once before the WaitGroup is done
+	// and are only read after the WaitGroup is done.
+	val interface{}
+	err error
+
+	// These fields are read and written with the singleflight
+	// mutex held before the WaitGroup is done, and are read but
+	// not written after the WaitGroup is done.
+	dups  int
+	chans []chan<- Result
+}
+
+// Group represents a class of work and forms a namespace in
+// which units of work can be executed with duplicate suppression.
+type Group struct {
+	mu sync.Mutex       // protects m
+	m  map[string]*call // lazily initialized
+}
+
+// Result holds the results of Do, so they can be passed
+// on a channel.
+type Result struct {
+	Val    interface{}
+	Err    error
+	Shared bool
+}
+
+// Do executes and returns the results of the given function, making
+// sure that only one execution is in-flight for a given key at a
+// time. If a duplicate comes in, the duplicate caller waits for the
+// original to complete and receives the same results.
+// The return value shared indicates whether v was given to multiple callers.
+func (g *Group) Do(key string, fn func() (interface{}, error)) (v interface{}, err error, shared bool) {
+	g.mu.Lock()
+	if g.m == nil {
+		g.m = make(map[string]*call)
+	}
+	if c, ok := g.m[key]; ok {
+		c.dups++
+		g.mu.Unlock()
+		c.wg.Wait()
+		return c.val, c.err, true
+	}
+	c := new(call)
+	c.wg.Add(1)
+	g.m[key] = c
+	g.mu.Unlock()
+
+	g.doCall(c, key, fn)
+	return c.val, c.err, c.dups > 0
+}
+
+// DoChan is like Do but returns a channel that will receive the
+// results when they are ready.
+func (g *Group) DoChan(key string, fn func() (interface{}, error)) <-chan Result {
+	ch := make(chan Result, 1)
+	g.mu.Lock()
+	if g.m == nil {
+		g.m = make(map[string]*call)
+	}
+	if c, ok := g.m[key]; ok {
+		c.dups++
+		c.chans = append(c.chans, ch)
+		g.mu.Unlock()
+		return ch
+	}
+	c := &call{chans: []chan<- Result{ch}}
+	c.wg.Add(1)
+	g.m[key] = c
+	g.mu.Unlock()
+
+	go g.doCall(c, key, fn)
+
+	return ch
+}
+
+// doCall handles the single call for a key.
+func (g *Group) doCall(c *call, key string, fn func() (interface{}, error)) {
+	c.val, c.err = fn()
+	c.wg.Done()
+
+	g.mu.Lock()
+	delete(g.m, key)
+	for _, ch := range c.chans {
+		ch <- Result{c.val, c.err, c.dups > 0}
+	}
+	g.mu.Unlock()
+}
+
+// Forget tells the singleflight to forget about a key.  Future calls
+// to Do for this key will call the function rather than waiting for
+// an earlier call to complete.
+func (g *Group) Forget(key string) {
+	g.mu.Lock()
+	delete(g.m, key)
+	g.mu.Unlock()
+}
diff --git a/vendor/golang.org/x/sync/syncmap/map.go b/vendor/golang.org/x/sync/syncmap/map.go
new file mode 100644
index 0000000000..80e15847ef
--- /dev/null
+++ b/vendor/golang.org/x/sync/syncmap/map.go
@@ -0,0 +1,372 @@
+// Copyright 2016 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package syncmap provides a concurrent map implementation.
+// It is a prototype for a proposed addition to the sync package
+// in the standard library.
+// (https://golang.org/issue/18177)
+package syncmap
+
+import (
+	"sync"
+	"sync/atomic"
+	"unsafe"
+)
+
+// Map is a concurrent map with amortized-constant-time loads, stores, and deletes.
+// It is safe for multiple goroutines to call a Map's methods concurrently.
+//
+// The zero Map is valid and empty.
+//
+// A Map must not be copied after first use.
+type Map struct {
+	mu sync.Mutex
+
+	// read contains the portion of the map's contents that are safe for
+	// concurrent access (with or without mu held).
+	//
+	// The read field itself is always safe to load, but must only be stored with
+	// mu held.
+	//
+	// Entries stored in read may be updated concurrently without mu, but updating
+	// a previously-expunged entry requires that the entry be copied to the dirty
+	// map and unexpunged with mu held.
+	read atomic.Value // readOnly
+
+	// dirty contains the portion of the map's contents that require mu to be
+	// held. To ensure that the dirty map can be promoted to the read map quickly,
+	// it also includes all of the non-expunged entries in the read map.
+	//
+	// Expunged entries are not stored in the dirty map. An expunged entry in the
+	// clean map must be unexpunged and added to the dirty map before a new value
+	// can be stored to it.
+	//
+	// If the dirty map is nil, the next write to the map will initialize it by
+	// making a shallow copy of the clean map, omitting stale entries.
+	dirty map[interface{}]*entry
+
+	// misses counts the number of loads since the read map was last updated that
+	// needed to lock mu to determine whether the key was present.
+	//
+	// Once enough misses have occurred to cover the cost of copying the dirty
+	// map, the dirty map will be promoted to the read map (in the unamended
+	// state) and the next store to the map will make a new dirty copy.
+	misses int
+}
+
+// readOnly is an immutable struct stored atomically in the Map.read field.
+type readOnly struct {
+	m       map[interface{}]*entry
+	amended bool // true if the dirty map contains some key not in m.
+}
+
+// expunged is an arbitrary pointer that marks entries which have been deleted
+// from the dirty map.
+var expunged = unsafe.Pointer(new(interface{}))
+
+// An entry is a slot in the map corresponding to a particular key.
+type entry struct {
+	// p points to the interface{} value stored for the entry.
+	//
+	// If p == nil, the entry has been deleted and m.dirty == nil.
+	//
+	// If p == expunged, the entry has been deleted, m.dirty != nil, and the entry
+	// is missing from m.dirty.
+	//
+	// Otherwise, the entry is valid and recorded in m.read.m[key] and, if m.dirty
+	// != nil, in m.dirty[key].
+	//
+	// An entry can be deleted by atomic replacement with nil: when m.dirty is
+	// next created, it will atomically replace nil with expunged and leave
+	// m.dirty[key] unset.
+	//
+	// An entry's associated value can be updated by atomic replacement, provided
+	// p != expunged. If p == expunged, an entry's associated value can be updated
+	// only after first setting m.dirty[key] = e so that lookups using the dirty
+	// map find the entry.
+	p unsafe.Pointer // *interface{}
+}
+
+func newEntry(i interface{}) *entry {
+	return &entry{p: unsafe.Pointer(&i)}
+}
+
+// Load returns the value stored in the map for a key, or nil if no
+// value is present.
+// The ok result indicates whether value was found in the map.
+func (m *Map) Load(key interface{}) (value interface{}, ok bool) {
+	read, _ := m.read.Load().(readOnly)
+	e, ok := read.m[key]
+	if !ok && read.amended {
+		m.mu.Lock()
+		// Avoid reporting a spurious miss if m.dirty got promoted while we were
+		// blocked on m.mu. (If further loads of the same key will not miss, it's
+		// not worth copying the dirty map for this key.)
+		read, _ = m.read.Load().(readOnly)
+		e, ok = read.m[key]
+		if !ok && read.amended {
+			e, ok = m.dirty[key]
+			// Regardless of whether the entry was present, record a miss: this key
+			// will take the slow path until the dirty map is promoted to the read
+			// map.
+			m.missLocked()
+		}
+		m.mu.Unlock()
+	}
+	if !ok {
+		return nil, false
+	}
+	return e.load()
+}
+
+func (e *entry) load() (value interface{}, ok bool) {
+	p := atomic.LoadPointer(&e.p)
+	if p == nil || p == expunged {
+		return nil, false
+	}
+	return *(*interface{})(p), true
+}
+
+// Store sets the value for a key.
+func (m *Map) Store(key, value interface{}) {
+	read, _ := m.read.Load().(readOnly)
+	if e, ok := read.m[key]; ok && e.tryStore(&value) {
+		return
+	}
+
+	m.mu.Lock()
+	read, _ = m.read.Load().(readOnly)
+	if e, ok := read.m[key]; ok {
+		if e.unexpungeLocked() {
+			// The entry was previously expunged, which implies that there is a
+			// non-nil dirty map and this entry is not in it.
+			m.dirty[key] = e
+		}
+		e.storeLocked(&value)
+	} else if e, ok := m.dirty[key]; ok {
+		e.storeLocked(&value)
+	} else {
+		if !read.amended {
+			// We're adding the first new key to the dirty map.
+			// Make sure it is allocated and mark the read-only map as incomplete.
+			m.dirtyLocked()
+			m.read.Store(readOnly{m: read.m, amended: true})
+		}
+		m.dirty[key] = newEntry(value)
+	}
+	m.mu.Unlock()
+}
+
+// tryStore stores a value if the entry has not been expunged.
+//
+// If the entry is expunged, tryStore returns false and leaves the entry
+// unchanged.
+func (e *entry) tryStore(i *interface{}) bool {
+	p := atomic.LoadPointer(&e.p)
+	if p == expunged {
+		return false
+	}
+	for {
+		if atomic.CompareAndSwapPointer(&e.p, p, unsafe.Pointer(i)) {
+			return true
+		}
+		p = atomic.LoadPointer(&e.p)
+		if p == expunged {
+			return false
+		}
+	}
+}
+
+// unexpungeLocked ensures that the entry is not marked as expunged.
+//
+// If the entry was previously expunged, it must be added to the dirty map
+// before m.mu is unlocked.
+func (e *entry) unexpungeLocked() (wasExpunged bool) {
+	return atomic.CompareAndSwapPointer(&e.p, expunged, nil)
+}
+
+// storeLocked unconditionally stores a value to the entry.
+//
+// The entry must be known not to be expunged.
+func (e *entry) storeLocked(i *interface{}) {
+	atomic.StorePointer(&e.p, unsafe.Pointer(i))
+}
+
+// LoadOrStore returns the existing value for the key if present.
+// Otherwise, it stores and returns the given value.
+// The loaded result is true if the value was loaded, false if stored.
+func (m *Map) LoadOrStore(key, value interface{}) (actual interface{}, loaded bool) {
+	// Avoid locking if it's a clean hit.
+	read, _ := m.read.Load().(readOnly)
+	if e, ok := read.m[key]; ok {
+		actual, loaded, ok := e.tryLoadOrStore(value)
+		if ok {
+			return actual, loaded
+		}
+	}
+
+	m.mu.Lock()
+	read, _ = m.read.Load().(readOnly)
+	if e, ok := read.m[key]; ok {
+		if e.unexpungeLocked() {
+			m.dirty[key] = e
+		}
+		actual, loaded, _ = e.tryLoadOrStore(value)
+	} else if e, ok := m.dirty[key]; ok {
+		actual, loaded, _ = e.tryLoadOrStore(value)
+		m.missLocked()
+	} else {
+		if !read.amended {
+			// We're adding the first new key to the dirty map.
+			// Make sure it is allocated and mark the read-only map as incomplete.
+			m.dirtyLocked()
+			m.read.Store(readOnly{m: read.m, amended: true})
+		}
+		m.dirty[key] = newEntry(value)
+		actual, loaded = value, false
+	}
+	m.mu.Unlock()
+
+	return actual, loaded
+}
+
+// tryLoadOrStore atomically loads or stores a value if the entry is not
+// expunged.
+//
+// If the entry is expunged, tryLoadOrStore leaves the entry unchanged and
+// returns with ok==false.
+func (e *entry) tryLoadOrStore(i interface{}) (actual interface{}, loaded, ok bool) {
+	p := atomic.LoadPointer(&e.p)
+	if p == expunged {
+		return nil, false, false
+	}
+	if p != nil {
+		return *(*interface{})(p), true, true
+	}
+
+	// Copy the interface after the first load to make this method more amenable
+	// to escape analysis: if we hit the "load" path or the entry is expunged, we
+	// shouldn't bother heap-allocating.
+	ic := i
+	for {
+		if atomic.CompareAndSwapPointer(&e.p, nil, unsafe.Pointer(&ic)) {
+			return i, false, true
+		}
+		p = atomic.LoadPointer(&e.p)
+		if p == expunged {
+			return nil, false, false
+		}
+		if p != nil {
+			return *(*interface{})(p), true, true
+		}
+	}
+}
+
+// Delete deletes the value for a key.
+func (m *Map) Delete(key interface{}) {
+	read, _ := m.read.Load().(readOnly)
+	e, ok := read.m[key]
+	if !ok && read.amended {
+		m.mu.Lock()
+		read, _ = m.read.Load().(readOnly)
+		e, ok = read.m[key]
+		if !ok && read.amended {
+			delete(m.dirty, key)
+		}
+		m.mu.Unlock()
+	}
+	if ok {
+		e.delete()
+	}
+}
+
+func (e *entry) delete() (hadValue bool) {
+	for {
+		p := atomic.LoadPointer(&e.p)
+		if p == nil || p == expunged {
+			return false
+		}
+		if atomic.CompareAndSwapPointer(&e.p, p, nil) {
+			return true
+		}
+	}
+}
+
+// Range calls f sequentially for each key and value present in the map.
+// If f returns false, range stops the iteration.
+//
+// Range does not necessarily correspond to any consistent snapshot of the Map's
+// contents: no key will be visited more than once, but if the value for any key
+// is stored or deleted concurrently, Range may reflect any mapping for that key
+// from any point during the Range call.
+//
+// Range may be O(N) with the number of elements in the map even if f returns
+// false after a constant number of calls.
+func (m *Map) Range(f func(key, value interface{}) bool) {
+	// We need to be able to iterate over all of the keys that were already
+	// present at the start of the call to Range.
+	// If read.amended is false, then read.m satisfies that property without
+	// requiring us to hold m.mu for a long time.
+	read, _ := m.read.Load().(readOnly)
+	if read.amended {
+		// m.dirty contains keys not in read.m. Fortunately, Range is already O(N)
+		// (assuming the caller does not break out early), so a call to Range
+		// amortizes an entire copy of the map: we can promote the dirty copy
+		// immediately!
+		m.mu.Lock()
+		read, _ = m.read.Load().(readOnly)
+		if read.amended {
+			read = readOnly{m: m.dirty}
+			m.read.Store(read)
+			m.dirty = nil
+			m.misses = 0
+		}
+		m.mu.Unlock()
+	}
+
+	for k, e := range read.m {
+		v, ok := e.load()
+		if !ok {
+			continue
+		}
+		if !f(k, v) {
+			break
+		}
+	}
+}
+
+func (m *Map) missLocked() {
+	m.misses++
+	if m.misses < len(m.dirty) {
+		return
+	}
+	m.read.Store(readOnly{m: m.dirty})
+	m.dirty = nil
+	m.misses = 0
+}
+
+func (m *Map) dirtyLocked() {
+	if m.dirty != nil {
+		return
+	}
+
+	read, _ := m.read.Load().(readOnly)
+	m.dirty = make(map[interface{}]*entry, len(read.m))
+	for k, e := range read.m {
+		if !e.tryExpungeLocked() {
+			m.dirty[k] = e
+		}
+	}
+}
+
+func (e *entry) tryExpungeLocked() (isExpunged bool) {
+	p := atomic.LoadPointer(&e.p)
+	for p == nil {
+		if atomic.CompareAndSwapPointer(&e.p, nil, expunged) {
+			return true
+		}
+		p = atomic.LoadPointer(&e.p)
+	}
+	return p == expunged
+}
diff --git a/vendor/golang.org/x/sys/unix/cap_freebsd.go b/vendor/golang.org/x/sys/unix/cap_freebsd.go
index 83b6bceab4..df52048773 100644
--- a/vendor/golang.org/x/sys/unix/cap_freebsd.go
+++ b/vendor/golang.org/x/sys/unix/cap_freebsd.go
@@ -7,7 +7,7 @@
 package unix
 
 import (
-	errorspkg "errors"
+	"errors"
 	"fmt"
 )
 
@@ -60,26 +60,26 @@ func CapRightsSet(rights *CapRights, setrights []uint64) error {
 
 	n := caparsize(rights)
 	if n < capArSizeMin || n > capArSizeMax {
-		return errorspkg.New("bad rights size")
+		return errors.New("bad rights size")
 	}
 
 	for _, right := range setrights {
 		if caprver(right) != CAP_RIGHTS_VERSION_00 {
-			return errorspkg.New("bad right version")
+			return errors.New("bad right version")
 		}
 		i, err := rightToIndex(right)
 		if err != nil {
 			return err
 		}
 		if i >= n {
-			return errorspkg.New("index overflow")
+			return errors.New("index overflow")
 		}
 		if capidxbit(rights.Rights[i]) != capidxbit(right) {
-			return errorspkg.New("index mismatch")
+			return errors.New("index mismatch")
 		}
 		rights.Rights[i] |= right
 		if capidxbit(rights.Rights[i]) != capidxbit(right) {
-			return errorspkg.New("index mismatch (after assign)")
+			return errors.New("index mismatch (after assign)")
 		}
 	}
 
@@ -95,26 +95,26 @@ func CapRightsClear(rights *CapRights, clearrights []uint64) error {
 
 	n := caparsize(rights)
 	if n < capArSizeMin || n > capArSizeMax {
-		return errorspkg.New("bad rights size")
+		return errors.New("bad rights size")
 	}
 
 	for _, right := range clearrights {
 		if caprver(right) != CAP_RIGHTS_VERSION_00 {
-			return errorspkg.New("bad right version")
+			return errors.New("bad right version")
 		}
 		i, err := rightToIndex(right)
 		if err != nil {
 			return err
 		}
 		if i >= n {
-			return errorspkg.New("index overflow")
+			return errors.New("index overflow")
 		}
 		if capidxbit(rights.Rights[i]) != capidxbit(right) {
-			return errorspkg.New("index mismatch")
+			return errors.New("index mismatch")
 		}
 		rights.Rights[i] &= ^(right & 0x01FFFFFFFFFFFFFF)
 		if capidxbit(rights.Rights[i]) != capidxbit(right) {
-			return errorspkg.New("index mismatch (after assign)")
+			return errors.New("index mismatch (after assign)")
 		}
 	}
 
@@ -130,22 +130,22 @@ func CapRightsIsSet(rights *CapRights, setrights []uint64) (bool, error) {
 
 	n := caparsize(rights)
 	if n < capArSizeMin || n > capArSizeMax {
-		return false, errorspkg.New("bad rights size")
+		return false, errors.New("bad rights size")
 	}
 
 	for _, right := range setrights {
 		if caprver(right) != CAP_RIGHTS_VERSION_00 {
-			return false, errorspkg.New("bad right version")
+			return false, errors.New("bad right version")
 		}
 		i, err := rightToIndex(right)
 		if err != nil {
 			return false, err
 		}
 		if i >= n {
-			return false, errorspkg.New("index overflow")
+			return false, errors.New("index overflow")
 		}
 		if capidxbit(rights.Rights[i]) != capidxbit(right) {
-			return false, errorspkg.New("index mismatch")
+			return false, errors.New("index mismatch")
 		}
 		if (rights.Rights[i] & right) != right {
 			return false, nil
diff --git a/vendor/golang.org/x/sys/unix/syscall_darwin.go b/vendor/golang.org/x/sys/unix/syscall_darwin.go
index 006e21f5d0..693be791cf 100644
--- a/vendor/golang.org/x/sys/unix/syscall_darwin.go
+++ b/vendor/golang.org/x/sys/unix/syscall_darwin.go
@@ -13,7 +13,7 @@
 package unix
 
 import (
-	errorspkg "errors"
+	"errors"
 	"syscall"
 	"unsafe"
 )
@@ -98,7 +98,7 @@ type attrList struct {
 
 func getAttrList(path string, attrList attrList, attrBuf []byte, options uint) (attrs [][]byte, err error) {
 	if len(attrBuf) < 4 {
-		return nil, errorspkg.New("attrBuf too small")
+		return nil, errors.New("attrBuf too small")
 	}
 	attrList.bitmapCount = attrBitMapCount
 
@@ -134,12 +134,12 @@ func getAttrList(path string, attrList attrList, attrBuf []byte, options uint) (
 	for i := uint32(0); int(i) < len(dat); {
 		header := dat[i:]
 		if len(header) < 8 {
-			return attrs, errorspkg.New("truncated attribute header")
+			return attrs, errors.New("truncated attribute header")
 		}
 		datOff := *(*int32)(unsafe.Pointer(&header[0]))
 		attrLen := *(*uint32)(unsafe.Pointer(&header[4]))
 		if datOff < 0 || uint32(datOff)+attrLen > uint32(len(dat)) {
-			return attrs, errorspkg.New("truncated results; attrBuf too small")
+			return attrs, errors.New("truncated results; attrBuf too small")
 		}
 		end := uint32(datOff) + attrLen
 		attrs = append(attrs, dat[datOff:end])
diff --git a/vendor/golang.org/x/sys/unix/syscall_linux_amd64.go b/vendor/golang.org/x/sys/unix/syscall_linux_amd64.go
index 53d38a5342..d121106323 100644
--- a/vendor/golang.org/x/sys/unix/syscall_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/syscall_linux_amd64.go
@@ -29,7 +29,15 @@ package unix
 //sys	Pread(fd int, p []byte, offset int64) (n int, err error) = SYS_PREAD64
 //sys	Pwrite(fd int, p []byte, offset int64) (n int, err error) = SYS_PWRITE64
 //sys	Seek(fd int, offset int64, whence int) (off int64, err error) = SYS_LSEEK
-//sys	Select(nfd int, r *FdSet, w *FdSet, e *FdSet, timeout *Timeval) (n int, err error)
+
+func Select(nfd int, r *FdSet, w *FdSet, e *FdSet, timeout *Timeval) (n int, err error) {
+	var ts *Timespec
+	if timeout != nil {
+		ts = &Timespec{Sec: timeout.Sec, Nsec: timeout.Usec * 1000}
+	}
+	return Pselect(nfd, r, w, e, ts, nil)
+}
+
 //sys	sendfile(outfd int, infd int, offset *int64, count int) (written int, err error)
 //sys	Setfsgid(gid int) (err error)
 //sys	Setfsuid(uid int) (err error)
@@ -40,7 +48,12 @@ package unix
 //sysnb	Setreuid(ruid int, euid int) (err error)
 //sys	Shutdown(fd int, how int) (err error)
 //sys	Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int64, err error)
-//sys	Stat(path string, stat *Stat_t) (err error)
+
+func Stat(path string, stat *Stat_t) (err error) {
+	// Use fstatat, because Android's seccomp policy blocks stat.
+	return Fstatat(AT_FDCWD, path, stat, 0)
+}
+
 //sys	Statfs(path string, buf *Statfs_t) (err error)
 //sys	SyncFileRange(fd int, off int64, n int64, flags int) (err error)
 //sys	Truncate(path string, length int64) (err error)
diff --git a/vendor/golang.org/x/sys/unix/syscall_linux_mipsx.go b/vendor/golang.org/x/sys/unix/syscall_linux_mipsx.go
index 3d5817f661..9e16cc9d14 100644
--- a/vendor/golang.org/x/sys/unix/syscall_linux_mipsx.go
+++ b/vendor/golang.org/x/sys/unix/syscall_linux_mipsx.go
@@ -36,7 +36,7 @@ func Syscall9(trap, a1, a2, a3, a4, a5, a6, a7, a8, a9 uintptr) (r1, r2 uintptr,
 
 //sysnb	Setreuid(ruid int, euid int) (err error)
 //sys	Shutdown(fd int, how int) (err error)
-//sys	Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int64, err error)
+//sys	Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int, err error)
 
 //sys	SyncFileRange(fd int, off int64, n int64, flags int) (err error)
 //sys	Truncate(path string, length int64) (err error) = SYS_TRUNCATE64
diff --git a/vendor/golang.org/x/sys/unix/syscall_unix.go b/vendor/golang.org/x/sys/unix/syscall_unix.go
index 262dc520ea..b835bad0fe 100644
--- a/vendor/golang.org/x/sys/unix/syscall_unix.go
+++ b/vendor/golang.org/x/sys/unix/syscall_unix.go
@@ -9,6 +9,7 @@ package unix
 import (
 	"bytes"
 	"runtime"
+	"sort"
 	"sync"
 	"syscall"
 	"unsafe"
@@ -51,6 +52,28 @@ func errnoErr(e syscall.Errno) error {
 	return e
 }
 
+// ErrnoName returns the error name for error number e.
+func ErrnoName(e syscall.Errno) string {
+	i := sort.Search(len(errorList), func(i int) bool {
+		return errorList[i].num >= e
+	})
+	if i < len(errorList) && errorList[i].num == e {
+		return errorList[i].name
+	}
+	return ""
+}
+
+// SignalName returns the signal name for signal number s.
+func SignalName(s syscall.Signal) string {
+	i := sort.Search(len(signalList), func(i int) bool {
+		return signalList[i].num >= s
+	})
+	if i < len(signalList) && signalList[i].num == s {
+		return signalList[i].name
+	}
+	return ""
+}
+
 // clen returns the index of the first NULL byte in n or len(n) if n contains no NULL byte.
 func clen(n []byte) int {
 	i := bytes.IndexByte(n, 0)
diff --git a/vendor/golang.org/x/sys/unix/zerrors_darwin_386.go b/vendor/golang.org/x/sys/unix/zerrors_darwin_386.go
index dcba88424b..c5a9b73dc8 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_darwin_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_darwin_386.go
@@ -1624,146 +1624,154 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "device not configured",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource deadlock avoided",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "resource busy",
-	17:  "file exists",
-	18:  "cross-device link",
-	19:  "operation not supported by device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "result too large",
-	35:  "resource temporarily unavailable",
-	36:  "operation now in progress",
-	37:  "operation already in progress",
-	38:  "socket operation on non-socket",
-	39:  "destination address required",
-	40:  "message too long",
-	41:  "protocol wrong type for socket",
-	42:  "protocol not available",
-	43:  "protocol not supported",
-	44:  "socket type not supported",
-	45:  "operation not supported",
-	46:  "protocol family not supported",
-	47:  "address family not supported by protocol family",
-	48:  "address already in use",
-	49:  "can't assign requested address",
-	50:  "network is down",
-	51:  "network is unreachable",
-	52:  "network dropped connection on reset",
-	53:  "software caused connection abort",
-	54:  "connection reset by peer",
-	55:  "no buffer space available",
-	56:  "socket is already connected",
-	57:  "socket is not connected",
-	58:  "can't send after socket shutdown",
-	59:  "too many references: can't splice",
-	60:  "operation timed out",
-	61:  "connection refused",
-	62:  "too many levels of symbolic links",
-	63:  "file name too long",
-	64:  "host is down",
-	65:  "no route to host",
-	66:  "directory not empty",
-	67:  "too many processes",
-	68:  "too many users",
-	69:  "disc quota exceeded",
-	70:  "stale NFS file handle",
-	71:  "too many levels of remote in path",
-	72:  "RPC struct is bad",
-	73:  "RPC version wrong",
-	74:  "RPC prog. not avail",
-	75:  "program version wrong",
-	76:  "bad procedure for program",
-	77:  "no locks available",
-	78:  "function not implemented",
-	79:  "inappropriate file type or format",
-	80:  "authentication error",
-	81:  "need authenticator",
-	82:  "device power is off",
-	83:  "device error",
-	84:  "value too large to be stored in data type",
-	85:  "bad executable (or shared library)",
-	86:  "bad CPU type in executable",
-	87:  "shared library version mismatch",
-	88:  "malformed Mach-o file",
-	89:  "operation canceled",
-	90:  "identifier removed",
-	91:  "no message of desired type",
-	92:  "illegal byte sequence",
-	93:  "attribute not found",
-	94:  "bad message",
-	95:  "EMULTIHOP (Reserved)",
-	96:  "no message available on STREAM",
-	97:  "ENOLINK (Reserved)",
-	98:  "no STREAM resources",
-	99:  "not a STREAM",
-	100: "protocol error",
-	101: "STREAM ioctl timeout",
-	102: "operation not supported on socket",
-	103: "policy not found",
-	104: "state not recoverable",
-	105: "previous owner died",
-	106: "interface output queue is full",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "ENOTSUP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EPWROFF", "device power is off"},
+	{83, "EDEVERR", "device error"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EBADEXEC", "bad executable (or shared library)"},
+	{86, "EBADARCH", "bad CPU type in executable"},
+	{87, "ESHLIBVERS", "shared library version mismatch"},
+	{88, "EBADMACHO", "malformed Mach-o file"},
+	{89, "ECANCELED", "operation canceled"},
+	{90, "EIDRM", "identifier removed"},
+	{91, "ENOMSG", "no message of desired type"},
+	{92, "EILSEQ", "illegal byte sequence"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EBADMSG", "bad message"},
+	{95, "EMULTIHOP", "EMULTIHOP (Reserved)"},
+	{96, "ENODATA", "no message available on STREAM"},
+	{97, "ENOLINK", "ENOLINK (Reserved)"},
+	{98, "ENOSR", "no STREAM resources"},
+	{99, "ENOSTR", "not a STREAM"},
+	{100, "EPROTO", "protocol error"},
+	{101, "ETIME", "STREAM ioctl timeout"},
+	{102, "EOPNOTSUPP", "operation not supported on socket"},
+	{103, "ENOPOLICY", "policy not found"},
+	{104, "ENOTRECOVERABLE", "state not recoverable"},
+	{105, "EOWNERDEAD", "previous owner died"},
+	{106, "EQFULL", "interface output queue is full"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_darwin_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_darwin_amd64.go
index 1a51c963c8..7de222b652 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_darwin_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_darwin_amd64.go
@@ -1624,146 +1624,154 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "device not configured",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource deadlock avoided",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "resource busy",
-	17:  "file exists",
-	18:  "cross-device link",
-	19:  "operation not supported by device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "result too large",
-	35:  "resource temporarily unavailable",
-	36:  "operation now in progress",
-	37:  "operation already in progress",
-	38:  "socket operation on non-socket",
-	39:  "destination address required",
-	40:  "message too long",
-	41:  "protocol wrong type for socket",
-	42:  "protocol not available",
-	43:  "protocol not supported",
-	44:  "socket type not supported",
-	45:  "operation not supported",
-	46:  "protocol family not supported",
-	47:  "address family not supported by protocol family",
-	48:  "address already in use",
-	49:  "can't assign requested address",
-	50:  "network is down",
-	51:  "network is unreachable",
-	52:  "network dropped connection on reset",
-	53:  "software caused connection abort",
-	54:  "connection reset by peer",
-	55:  "no buffer space available",
-	56:  "socket is already connected",
-	57:  "socket is not connected",
-	58:  "can't send after socket shutdown",
-	59:  "too many references: can't splice",
-	60:  "operation timed out",
-	61:  "connection refused",
-	62:  "too many levels of symbolic links",
-	63:  "file name too long",
-	64:  "host is down",
-	65:  "no route to host",
-	66:  "directory not empty",
-	67:  "too many processes",
-	68:  "too many users",
-	69:  "disc quota exceeded",
-	70:  "stale NFS file handle",
-	71:  "too many levels of remote in path",
-	72:  "RPC struct is bad",
-	73:  "RPC version wrong",
-	74:  "RPC prog. not avail",
-	75:  "program version wrong",
-	76:  "bad procedure for program",
-	77:  "no locks available",
-	78:  "function not implemented",
-	79:  "inappropriate file type or format",
-	80:  "authentication error",
-	81:  "need authenticator",
-	82:  "device power is off",
-	83:  "device error",
-	84:  "value too large to be stored in data type",
-	85:  "bad executable (or shared library)",
-	86:  "bad CPU type in executable",
-	87:  "shared library version mismatch",
-	88:  "malformed Mach-o file",
-	89:  "operation canceled",
-	90:  "identifier removed",
-	91:  "no message of desired type",
-	92:  "illegal byte sequence",
-	93:  "attribute not found",
-	94:  "bad message",
-	95:  "EMULTIHOP (Reserved)",
-	96:  "no message available on STREAM",
-	97:  "ENOLINK (Reserved)",
-	98:  "no STREAM resources",
-	99:  "not a STREAM",
-	100: "protocol error",
-	101: "STREAM ioctl timeout",
-	102: "operation not supported on socket",
-	103: "policy not found",
-	104: "state not recoverable",
-	105: "previous owner died",
-	106: "interface output queue is full",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "ENOTSUP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EPWROFF", "device power is off"},
+	{83, "EDEVERR", "device error"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EBADEXEC", "bad executable (or shared library)"},
+	{86, "EBADARCH", "bad CPU type in executable"},
+	{87, "ESHLIBVERS", "shared library version mismatch"},
+	{88, "EBADMACHO", "malformed Mach-o file"},
+	{89, "ECANCELED", "operation canceled"},
+	{90, "EIDRM", "identifier removed"},
+	{91, "ENOMSG", "no message of desired type"},
+	{92, "EILSEQ", "illegal byte sequence"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EBADMSG", "bad message"},
+	{95, "EMULTIHOP", "EMULTIHOP (Reserved)"},
+	{96, "ENODATA", "no message available on STREAM"},
+	{97, "ENOLINK", "ENOLINK (Reserved)"},
+	{98, "ENOSR", "no STREAM resources"},
+	{99, "ENOSTR", "not a STREAM"},
+	{100, "EPROTO", "protocol error"},
+	{101, "ETIME", "STREAM ioctl timeout"},
+	{102, "EOPNOTSUPP", "operation not supported on socket"},
+	{103, "ENOPOLICY", "policy not found"},
+	{104, "ENOTRECOVERABLE", "state not recoverable"},
+	{105, "EOWNERDEAD", "previous owner died"},
+	{106, "EQFULL", "interface output queue is full"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_darwin_arm.go b/vendor/golang.org/x/sys/unix/zerrors_darwin_arm.go
index fa135b17c1..33a42e78a2 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_darwin_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_darwin_arm.go
@@ -1624,146 +1624,154 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "device not configured",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource deadlock avoided",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "resource busy",
-	17:  "file exists",
-	18:  "cross-device link",
-	19:  "operation not supported by device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "result too large",
-	35:  "resource temporarily unavailable",
-	36:  "operation now in progress",
-	37:  "operation already in progress",
-	38:  "socket operation on non-socket",
-	39:  "destination address required",
-	40:  "message too long",
-	41:  "protocol wrong type for socket",
-	42:  "protocol not available",
-	43:  "protocol not supported",
-	44:  "socket type not supported",
-	45:  "operation not supported",
-	46:  "protocol family not supported",
-	47:  "address family not supported by protocol family",
-	48:  "address already in use",
-	49:  "can't assign requested address",
-	50:  "network is down",
-	51:  "network is unreachable",
-	52:  "network dropped connection on reset",
-	53:  "software caused connection abort",
-	54:  "connection reset by peer",
-	55:  "no buffer space available",
-	56:  "socket is already connected",
-	57:  "socket is not connected",
-	58:  "can't send after socket shutdown",
-	59:  "too many references: can't splice",
-	60:  "operation timed out",
-	61:  "connection refused",
-	62:  "too many levels of symbolic links",
-	63:  "file name too long",
-	64:  "host is down",
-	65:  "no route to host",
-	66:  "directory not empty",
-	67:  "too many processes",
-	68:  "too many users",
-	69:  "disc quota exceeded",
-	70:  "stale NFS file handle",
-	71:  "too many levels of remote in path",
-	72:  "RPC struct is bad",
-	73:  "RPC version wrong",
-	74:  "RPC prog. not avail",
-	75:  "program version wrong",
-	76:  "bad procedure for program",
-	77:  "no locks available",
-	78:  "function not implemented",
-	79:  "inappropriate file type or format",
-	80:  "authentication error",
-	81:  "need authenticator",
-	82:  "device power is off",
-	83:  "device error",
-	84:  "value too large to be stored in data type",
-	85:  "bad executable (or shared library)",
-	86:  "bad CPU type in executable",
-	87:  "shared library version mismatch",
-	88:  "malformed Mach-o file",
-	89:  "operation canceled",
-	90:  "identifier removed",
-	91:  "no message of desired type",
-	92:  "illegal byte sequence",
-	93:  "attribute not found",
-	94:  "bad message",
-	95:  "EMULTIHOP (Reserved)",
-	96:  "no message available on STREAM",
-	97:  "ENOLINK (Reserved)",
-	98:  "no STREAM resources",
-	99:  "not a STREAM",
-	100: "protocol error",
-	101: "STREAM ioctl timeout",
-	102: "operation not supported on socket",
-	103: "policy not found",
-	104: "state not recoverable",
-	105: "previous owner died",
-	106: "interface output queue is full",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "ENOTSUP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EPWROFF", "device power is off"},
+	{83, "EDEVERR", "device error"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EBADEXEC", "bad executable (or shared library)"},
+	{86, "EBADARCH", "bad CPU type in executable"},
+	{87, "ESHLIBVERS", "shared library version mismatch"},
+	{88, "EBADMACHO", "malformed Mach-o file"},
+	{89, "ECANCELED", "operation canceled"},
+	{90, "EIDRM", "identifier removed"},
+	{91, "ENOMSG", "no message of desired type"},
+	{92, "EILSEQ", "illegal byte sequence"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EBADMSG", "bad message"},
+	{95, "EMULTIHOP", "EMULTIHOP (Reserved)"},
+	{96, "ENODATA", "no message available on STREAM"},
+	{97, "ENOLINK", "ENOLINK (Reserved)"},
+	{98, "ENOSR", "no STREAM resources"},
+	{99, "ENOSTR", "not a STREAM"},
+	{100, "EPROTO", "protocol error"},
+	{101, "ETIME", "STREAM ioctl timeout"},
+	{102, "EOPNOTSUPP", "operation not supported on socket"},
+	{103, "ENOPOLICY", "policy not found"},
+	{104, "ENOTRECOVERABLE", "state not recoverable"},
+	{105, "EOWNERDEAD", "previous owner died"},
+	{106, "EQFULL", "interface output queue is full"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_darwin_arm64.go b/vendor/golang.org/x/sys/unix/zerrors_darwin_arm64.go
index 6419c65e13..71805155bc 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_darwin_arm64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_darwin_arm64.go
@@ -1624,146 +1624,154 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "device not configured",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource deadlock avoided",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "resource busy",
-	17:  "file exists",
-	18:  "cross-device link",
-	19:  "operation not supported by device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "result too large",
-	35:  "resource temporarily unavailable",
-	36:  "operation now in progress",
-	37:  "operation already in progress",
-	38:  "socket operation on non-socket",
-	39:  "destination address required",
-	40:  "message too long",
-	41:  "protocol wrong type for socket",
-	42:  "protocol not available",
-	43:  "protocol not supported",
-	44:  "socket type not supported",
-	45:  "operation not supported",
-	46:  "protocol family not supported",
-	47:  "address family not supported by protocol family",
-	48:  "address already in use",
-	49:  "can't assign requested address",
-	50:  "network is down",
-	51:  "network is unreachable",
-	52:  "network dropped connection on reset",
-	53:  "software caused connection abort",
-	54:  "connection reset by peer",
-	55:  "no buffer space available",
-	56:  "socket is already connected",
-	57:  "socket is not connected",
-	58:  "can't send after socket shutdown",
-	59:  "too many references: can't splice",
-	60:  "operation timed out",
-	61:  "connection refused",
-	62:  "too many levels of symbolic links",
-	63:  "file name too long",
-	64:  "host is down",
-	65:  "no route to host",
-	66:  "directory not empty",
-	67:  "too many processes",
-	68:  "too many users",
-	69:  "disc quota exceeded",
-	70:  "stale NFS file handle",
-	71:  "too many levels of remote in path",
-	72:  "RPC struct is bad",
-	73:  "RPC version wrong",
-	74:  "RPC prog. not avail",
-	75:  "program version wrong",
-	76:  "bad procedure for program",
-	77:  "no locks available",
-	78:  "function not implemented",
-	79:  "inappropriate file type or format",
-	80:  "authentication error",
-	81:  "need authenticator",
-	82:  "device power is off",
-	83:  "device error",
-	84:  "value too large to be stored in data type",
-	85:  "bad executable (or shared library)",
-	86:  "bad CPU type in executable",
-	87:  "shared library version mismatch",
-	88:  "malformed Mach-o file",
-	89:  "operation canceled",
-	90:  "identifier removed",
-	91:  "no message of desired type",
-	92:  "illegal byte sequence",
-	93:  "attribute not found",
-	94:  "bad message",
-	95:  "EMULTIHOP (Reserved)",
-	96:  "no message available on STREAM",
-	97:  "ENOLINK (Reserved)",
-	98:  "no STREAM resources",
-	99:  "not a STREAM",
-	100: "protocol error",
-	101: "STREAM ioctl timeout",
-	102: "operation not supported on socket",
-	103: "policy not found",
-	104: "state not recoverable",
-	105: "previous owner died",
-	106: "interface output queue is full",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "ENOTSUP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EPWROFF", "device power is off"},
+	{83, "EDEVERR", "device error"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EBADEXEC", "bad executable (or shared library)"},
+	{86, "EBADARCH", "bad CPU type in executable"},
+	{87, "ESHLIBVERS", "shared library version mismatch"},
+	{88, "EBADMACHO", "malformed Mach-o file"},
+	{89, "ECANCELED", "operation canceled"},
+	{90, "EIDRM", "identifier removed"},
+	{91, "ENOMSG", "no message of desired type"},
+	{92, "EILSEQ", "illegal byte sequence"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EBADMSG", "bad message"},
+	{95, "EMULTIHOP", "EMULTIHOP (Reserved)"},
+	{96, "ENODATA", "no message available on STREAM"},
+	{97, "ENOLINK", "ENOLINK (Reserved)"},
+	{98, "ENOSR", "no STREAM resources"},
+	{99, "ENOSTR", "not a STREAM"},
+	{100, "EPROTO", "protocol error"},
+	{101, "ETIME", "STREAM ioctl timeout"},
+	{102, "EOPNOTSUPP", "operation not supported on socket"},
+	{103, "ENOPOLICY", "policy not found"},
+	{104, "ENOTRECOVERABLE", "state not recoverable"},
+	{105, "EOWNERDEAD", "previous owner died"},
+	{106, "EQFULL", "interface output queue is full"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_dragonfly_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_dragonfly_amd64.go
index 474441b808..46a082b6d5 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_dragonfly_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_dragonfly_amd64.go
@@ -1437,142 +1437,150 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "operation timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "operation canceled",
-	86: "illegal byte sequence",
-	87: "attribute not found",
-	88: "programming error",
-	89: "bad message",
-	90: "multihop attempted",
-	91: "link has been severed",
-	92: "protocol error",
-	93: "no medium found",
-	94: "unknown error: 94",
-	95: "unknown error: 95",
-	96: "unknown error: 96",
-	97: "unknown error: 97",
-	98: "unknown error: 98",
-	99: "unknown error: 99",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EWOULDBLOCK", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "ECANCELED", "operation canceled"},
+	{86, "EILSEQ", "illegal byte sequence"},
+	{87, "ENOATTR", "attribute not found"},
+	{88, "EDOOFUS", "programming error"},
+	{89, "EBADMSG", "bad message"},
+	{90, "EMULTIHOP", "multihop attempted"},
+	{91, "ENOLINK", "link has been severed"},
+	{92, "EPROTO", "protocol error"},
+	{93, "ENOMEDIUM", "no medium found"},
+	{94, "EUNUSED94", "unknown error: 94"},
+	{95, "EUNUSED95", "unknown error: 95"},
+	{96, "EUNUSED96", "unknown error: 96"},
+	{97, "EUNUSED97", "unknown error: 97"},
+	{98, "EUNUSED98", "unknown error: 98"},
+	{99, "ELAST", "unknown error: 99"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "thread Scheduler",
-	33: "checkPoint",
-	34: "checkPointExit",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "thread Scheduler"},
+	{33, "SIGCKPT", "checkPoint"},
+	{34, "SIGCKPTEXIT", "checkPointExit"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_freebsd_386.go b/vendor/golang.org/x/sys/unix/zerrors_freebsd_386.go
index a8b05878e3..2947dc0382 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_freebsd_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_freebsd_386.go
@@ -1619,138 +1619,146 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "operation timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "operation canceled",
-	86: "illegal byte sequence",
-	87: "attribute not found",
-	88: "programming error",
-	89: "bad message",
-	90: "multihop attempted",
-	91: "link has been severed",
-	92: "protocol error",
-	93: "capabilities insufficient",
-	94: "not permitted in capability mode",
-	95: "state not recoverable",
-	96: "previous owner died",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "ECANCELED", "operation canceled"},
+	{86, "EILSEQ", "illegal byte sequence"},
+	{87, "ENOATTR", "attribute not found"},
+	{88, "EDOOFUS", "programming error"},
+	{89, "EBADMSG", "bad message"},
+	{90, "EMULTIHOP", "multihop attempted"},
+	{91, "ENOLINK", "link has been severed"},
+	{92, "EPROTO", "protocol error"},
+	{93, "ENOTCAPABLE", "capabilities insufficient"},
+	{94, "ECAPMODE", "not permitted in capability mode"},
+	{95, "ENOTRECOVERABLE", "state not recoverable"},
+	{96, "EOWNERDEAD", "previous owner died"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "unknown signal",
-	33: "unknown signal",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "unknown signal"},
+	{33, "SIGLIBRT", "unknown signal"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_freebsd_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_freebsd_amd64.go
index cf5f01260e..c600d012d0 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_freebsd_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_freebsd_amd64.go
@@ -1620,138 +1620,146 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "operation timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "operation canceled",
-	86: "illegal byte sequence",
-	87: "attribute not found",
-	88: "programming error",
-	89: "bad message",
-	90: "multihop attempted",
-	91: "link has been severed",
-	92: "protocol error",
-	93: "capabilities insufficient",
-	94: "not permitted in capability mode",
-	95: "state not recoverable",
-	96: "previous owner died",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "ECANCELED", "operation canceled"},
+	{86, "EILSEQ", "illegal byte sequence"},
+	{87, "ENOATTR", "attribute not found"},
+	{88, "EDOOFUS", "programming error"},
+	{89, "EBADMSG", "bad message"},
+	{90, "EMULTIHOP", "multihop attempted"},
+	{91, "ENOLINK", "link has been severed"},
+	{92, "EPROTO", "protocol error"},
+	{93, "ENOTCAPABLE", "capabilities insufficient"},
+	{94, "ECAPMODE", "not permitted in capability mode"},
+	{95, "ENOTRECOVERABLE", "state not recoverable"},
+	{96, "EOWNERDEAD", "previous owner died"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "unknown signal",
-	33: "unknown signal",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "unknown signal"},
+	{33, "SIGLIBRT", "unknown signal"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_freebsd_arm.go b/vendor/golang.org/x/sys/unix/zerrors_freebsd_arm.go
index 9bbb90ad8a..e8240d2397 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_freebsd_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_freebsd_arm.go
@@ -1628,138 +1628,146 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "operation timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "operation canceled",
-	86: "illegal byte sequence",
-	87: "attribute not found",
-	88: "programming error",
-	89: "bad message",
-	90: "multihop attempted",
-	91: "link has been severed",
-	92: "protocol error",
-	93: "capabilities insufficient",
-	94: "not permitted in capability mode",
-	95: "state not recoverable",
-	96: "previous owner died",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "ECANCELED", "operation canceled"},
+	{86, "EILSEQ", "illegal byte sequence"},
+	{87, "ENOATTR", "attribute not found"},
+	{88, "EDOOFUS", "programming error"},
+	{89, "EBADMSG", "bad message"},
+	{90, "EMULTIHOP", "multihop attempted"},
+	{91, "ENOLINK", "link has been severed"},
+	{92, "EPROTO", "protocol error"},
+	{93, "ENOTCAPABLE", "capabilities insufficient"},
+	{94, "ECAPMODE", "not permitted in capability mode"},
+	{95, "ENOTRECOVERABLE", "state not recoverable"},
+	{96, "EOWNERDEAD", "previous owner died"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "suspended (signal)",
-	18: "suspended",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "unknown signal",
-	33: "unknown signal",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "unknown signal"},
+	{33, "SIGLIBRT", "unknown signal"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_386.go b/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
index 51454e1e1c..3c3d5e5e85 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_386.go
@@ -2268,171 +2268,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
index c3bad0caf4..4229e971e7 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_amd64.go
@@ -2269,171 +2269,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go b/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
index 8218df140c..d0c62aebd0 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_arm.go
@@ -2276,171 +2276,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
index 5ce50c5c5e..018fe573c6 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_arm64.go
@@ -2259,171 +2259,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
index 6cfe618733..f523b6c33a 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips.go
@@ -2275,174 +2275,182 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:    "operation not permitted",
-	2:    "no such file or directory",
-	3:    "no such process",
-	4:    "interrupted system call",
-	5:    "input/output error",
-	6:    "no such device or address",
-	7:    "argument list too long",
-	8:    "exec format error",
-	9:    "bad file descriptor",
-	10:   "no child processes",
-	11:   "resource temporarily unavailable",
-	12:   "cannot allocate memory",
-	13:   "permission denied",
-	14:   "bad address",
-	15:   "block device required",
-	16:   "device or resource busy",
-	17:   "file exists",
-	18:   "invalid cross-device link",
-	19:   "no such device",
-	20:   "not a directory",
-	21:   "is a directory",
-	22:   "invalid argument",
-	23:   "too many open files in system",
-	24:   "too many open files",
-	25:   "inappropriate ioctl for device",
-	26:   "text file busy",
-	27:   "file too large",
-	28:   "no space left on device",
-	29:   "illegal seek",
-	30:   "read-only file system",
-	31:   "too many links",
-	32:   "broken pipe",
-	33:   "numerical argument out of domain",
-	34:   "numerical result out of range",
-	35:   "no message of desired type",
-	36:   "identifier removed",
-	37:   "channel number out of range",
-	38:   "level 2 not synchronized",
-	39:   "level 3 halted",
-	40:   "level 3 reset",
-	41:   "link number out of range",
-	42:   "protocol driver not attached",
-	43:   "no CSI structure available",
-	44:   "level 2 halted",
-	45:   "resource deadlock avoided",
-	46:   "no locks available",
-	50:   "invalid exchange",
-	51:   "invalid request descriptor",
-	52:   "exchange full",
-	53:   "no anode",
-	54:   "invalid request code",
-	55:   "invalid slot",
-	56:   "file locking deadlock error",
-	59:   "bad font file format",
-	60:   "device not a stream",
-	61:   "no data available",
-	62:   "timer expired",
-	63:   "out of streams resources",
-	64:   "machine is not on the network",
-	65:   "package not installed",
-	66:   "object is remote",
-	67:   "link has been severed",
-	68:   "advertise error",
-	69:   "srmount error",
-	70:   "communication error on send",
-	71:   "protocol error",
-	73:   "RFS specific error",
-	74:   "multihop attempted",
-	77:   "bad message",
-	78:   "file name too long",
-	79:   "value too large for defined data type",
-	80:   "name not unique on network",
-	81:   "file descriptor in bad state",
-	82:   "remote address changed",
-	83:   "can not access a needed shared library",
-	84:   "accessing a corrupted shared library",
-	85:   ".lib section in a.out corrupted",
-	86:   "attempting to link in too many shared libraries",
-	87:   "cannot exec a shared library directly",
-	88:   "invalid or incomplete multibyte or wide character",
-	89:   "function not implemented",
-	90:   "too many levels of symbolic links",
-	91:   "interrupted system call should be restarted",
-	92:   "streams pipe error",
-	93:   "directory not empty",
-	94:   "too many users",
-	95:   "socket operation on non-socket",
-	96:   "destination address required",
-	97:   "message too long",
-	98:   "protocol wrong type for socket",
-	99:   "protocol not available",
-	120:  "protocol not supported",
-	121:  "socket type not supported",
-	122:  "operation not supported",
-	123:  "protocol family not supported",
-	124:  "address family not supported by protocol",
-	125:  "address already in use",
-	126:  "cannot assign requested address",
-	127:  "network is down",
-	128:  "network is unreachable",
-	129:  "network dropped connection on reset",
-	130:  "software caused connection abort",
-	131:  "connection reset by peer",
-	132:  "no buffer space available",
-	133:  "transport endpoint is already connected",
-	134:  "transport endpoint is not connected",
-	135:  "structure needs cleaning",
-	137:  "not a XENIX named type file",
-	138:  "no XENIX semaphores available",
-	139:  "is a named type file",
-	140:  "remote I/O error",
-	141:  "unknown error 141",
-	142:  "unknown error 142",
-	143:  "cannot send after transport endpoint shutdown",
-	144:  "too many references: cannot splice",
-	145:  "connection timed out",
-	146:  "connection refused",
-	147:  "host is down",
-	148:  "no route to host",
-	149:  "operation already in progress",
-	150:  "operation now in progress",
-	151:  "stale file handle",
-	158:  "operation canceled",
-	159:  "no medium found",
-	160:  "wrong medium type",
-	161:  "required key not available",
-	162:  "key has expired",
-	163:  "key has been revoked",
-	164:  "key was rejected by service",
-	165:  "owner died",
-	166:  "state not recoverable",
-	167:  "operation not possible due to RF-kill",
-	168:  "memory page has hardware error",
-	1133: "disk quota exceeded",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "ENOMSG", "no message of desired type"},
+	{36, "EIDRM", "identifier removed"},
+	{37, "ECHRNG", "channel number out of range"},
+	{38, "EL2NSYNC", "level 2 not synchronized"},
+	{39, "EL3HLT", "level 3 halted"},
+	{40, "EL3RST", "level 3 reset"},
+	{41, "ELNRNG", "link number out of range"},
+	{42, "EUNATCH", "protocol driver not attached"},
+	{43, "ENOCSI", "no CSI structure available"},
+	{44, "EL2HLT", "level 2 halted"},
+	{45, "EDEADLK", "resource deadlock avoided"},
+	{46, "ENOLCK", "no locks available"},
+	{50, "EBADE", "invalid exchange"},
+	{51, "EBADR", "invalid request descriptor"},
+	{52, "EXFULL", "exchange full"},
+	{53, "ENOANO", "no anode"},
+	{54, "EBADRQC", "invalid request code"},
+	{55, "EBADSLT", "invalid slot"},
+	{56, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EMULTIHOP", "multihop attempted"},
+	{77, "EBADMSG", "bad message"},
+	{78, "ENAMETOOLONG", "file name too long"},
+	{79, "EOVERFLOW", "value too large for defined data type"},
+	{80, "ENOTUNIQ", "name not unique on network"},
+	{81, "EBADFD", "file descriptor in bad state"},
+	{82, "EREMCHG", "remote address changed"},
+	{83, "ELIBACC", "can not access a needed shared library"},
+	{84, "ELIBBAD", "accessing a corrupted shared library"},
+	{85, "ELIBSCN", ".lib section in a.out corrupted"},
+	{86, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{87, "ELIBEXEC", "cannot exec a shared library directly"},
+	{88, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{89, "ENOSYS", "function not implemented"},
+	{90, "ELOOP", "too many levels of symbolic links"},
+	{91, "ERESTART", "interrupted system call should be restarted"},
+	{92, "ESTRPIPE", "streams pipe error"},
+	{93, "ENOTEMPTY", "directory not empty"},
+	{94, "EUSERS", "too many users"},
+	{95, "ENOTSOCK", "socket operation on non-socket"},
+	{96, "EDESTADDRREQ", "destination address required"},
+	{97, "EMSGSIZE", "message too long"},
+	{98, "EPROTOTYPE", "protocol wrong type for socket"},
+	{99, "ENOPROTOOPT", "protocol not available"},
+	{120, "EPROTONOSUPPORT", "protocol not supported"},
+	{121, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{122, "ENOTSUP", "operation not supported"},
+	{123, "EPFNOSUPPORT", "protocol family not supported"},
+	{124, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{125, "EADDRINUSE", "address already in use"},
+	{126, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{127, "ENETDOWN", "network is down"},
+	{128, "ENETUNREACH", "network is unreachable"},
+	{129, "ENETRESET", "network dropped connection on reset"},
+	{130, "ECONNABORTED", "software caused connection abort"},
+	{131, "ECONNRESET", "connection reset by peer"},
+	{132, "ENOBUFS", "no buffer space available"},
+	{133, "EISCONN", "transport endpoint is already connected"},
+	{134, "ENOTCONN", "transport endpoint is not connected"},
+	{135, "EUCLEAN", "structure needs cleaning"},
+	{137, "ENOTNAM", "not a XENIX named type file"},
+	{138, "ENAVAIL", "no XENIX semaphores available"},
+	{139, "EISNAM", "is a named type file"},
+	{140, "EREMOTEIO", "remote I/O error"},
+	{141, "EINIT", "unknown error 141"},
+	{142, "EREMDEV", "unknown error 142"},
+	{143, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{144, "ETOOMANYREFS", "too many references: cannot splice"},
+	{145, "ETIMEDOUT", "connection timed out"},
+	{146, "ECONNREFUSED", "connection refused"},
+	{147, "EHOSTDOWN", "host is down"},
+	{148, "EHOSTUNREACH", "no route to host"},
+	{149, "EALREADY", "operation already in progress"},
+	{150, "EINPROGRESS", "operation now in progress"},
+	{151, "ESTALE", "stale file handle"},
+	{158, "ECANCELED", "operation canceled"},
+	{159, "ENOMEDIUM", "no medium found"},
+	{160, "EMEDIUMTYPE", "wrong medium type"},
+	{161, "ENOKEY", "required key not available"},
+	{162, "EKEYEXPIRED", "key has expired"},
+	{163, "EKEYREVOKED", "key has been revoked"},
+	{164, "EKEYREJECTED", "key was rejected by service"},
+	{165, "EOWNERDEAD", "owner died"},
+	{166, "ENOTRECOVERABLE", "state not recoverable"},
+	{167, "ERFKILL", "operation not possible due to RF-kill"},
+	{168, "EHWPOISON", "memory page has hardware error"},
+	{1133, "EDQUOT", "disk quota exceeded"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "user defined signal 1",
-	17: "user defined signal 2",
-	18: "child exited",
-	19: "power failure",
-	20: "window changed",
-	21: "urgent I/O condition",
-	22: "I/O possible",
-	23: "stopped (signal)",
-	24: "stopped",
-	25: "continued",
-	26: "stopped (tty input)",
-	27: "stopped (tty output)",
-	28: "virtual timer expired",
-	29: "profiling timer expired",
-	30: "CPU time limit exceeded",
-	31: "file size limit exceeded",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGUSR1", "user defined signal 1"},
+	{17, "SIGUSR2", "user defined signal 2"},
+	{18, "SIGCHLD", "child exited"},
+	{19, "SIGPWR", "power failure"},
+	{20, "SIGWINCH", "window changed"},
+	{21, "SIGURG", "urgent I/O condition"},
+	{22, "SIGIO", "I/O possible"},
+	{23, "SIGSTOP", "stopped (signal)"},
+	{24, "SIGTSTP", "stopped"},
+	{25, "SIGCONT", "continued"},
+	{26, "SIGTTIN", "stopped (tty input)"},
+	{27, "SIGTTOU", "stopped (tty output)"},
+	{28, "SIGVTALRM", "virtual timer expired"},
+	{29, "SIGPROF", "profiling timer expired"},
+	{30, "SIGXCPU", "CPU time limit exceeded"},
+	{31, "SIGXFSZ", "file size limit exceeded"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
index bad6332a69..7e2e296433 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64.go
@@ -2275,174 +2275,182 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:    "operation not permitted",
-	2:    "no such file or directory",
-	3:    "no such process",
-	4:    "interrupted system call",
-	5:    "input/output error",
-	6:    "no such device or address",
-	7:    "argument list too long",
-	8:    "exec format error",
-	9:    "bad file descriptor",
-	10:   "no child processes",
-	11:   "resource temporarily unavailable",
-	12:   "cannot allocate memory",
-	13:   "permission denied",
-	14:   "bad address",
-	15:   "block device required",
-	16:   "device or resource busy",
-	17:   "file exists",
-	18:   "invalid cross-device link",
-	19:   "no such device",
-	20:   "not a directory",
-	21:   "is a directory",
-	22:   "invalid argument",
-	23:   "too many open files in system",
-	24:   "too many open files",
-	25:   "inappropriate ioctl for device",
-	26:   "text file busy",
-	27:   "file too large",
-	28:   "no space left on device",
-	29:   "illegal seek",
-	30:   "read-only file system",
-	31:   "too many links",
-	32:   "broken pipe",
-	33:   "numerical argument out of domain",
-	34:   "numerical result out of range",
-	35:   "no message of desired type",
-	36:   "identifier removed",
-	37:   "channel number out of range",
-	38:   "level 2 not synchronized",
-	39:   "level 3 halted",
-	40:   "level 3 reset",
-	41:   "link number out of range",
-	42:   "protocol driver not attached",
-	43:   "no CSI structure available",
-	44:   "level 2 halted",
-	45:   "resource deadlock avoided",
-	46:   "no locks available",
-	50:   "invalid exchange",
-	51:   "invalid request descriptor",
-	52:   "exchange full",
-	53:   "no anode",
-	54:   "invalid request code",
-	55:   "invalid slot",
-	56:   "file locking deadlock error",
-	59:   "bad font file format",
-	60:   "device not a stream",
-	61:   "no data available",
-	62:   "timer expired",
-	63:   "out of streams resources",
-	64:   "machine is not on the network",
-	65:   "package not installed",
-	66:   "object is remote",
-	67:   "link has been severed",
-	68:   "advertise error",
-	69:   "srmount error",
-	70:   "communication error on send",
-	71:   "protocol error",
-	73:   "RFS specific error",
-	74:   "multihop attempted",
-	77:   "bad message",
-	78:   "file name too long",
-	79:   "value too large for defined data type",
-	80:   "name not unique on network",
-	81:   "file descriptor in bad state",
-	82:   "remote address changed",
-	83:   "can not access a needed shared library",
-	84:   "accessing a corrupted shared library",
-	85:   ".lib section in a.out corrupted",
-	86:   "attempting to link in too many shared libraries",
-	87:   "cannot exec a shared library directly",
-	88:   "invalid or incomplete multibyte or wide character",
-	89:   "function not implemented",
-	90:   "too many levels of symbolic links",
-	91:   "interrupted system call should be restarted",
-	92:   "streams pipe error",
-	93:   "directory not empty",
-	94:   "too many users",
-	95:   "socket operation on non-socket",
-	96:   "destination address required",
-	97:   "message too long",
-	98:   "protocol wrong type for socket",
-	99:   "protocol not available",
-	120:  "protocol not supported",
-	121:  "socket type not supported",
-	122:  "operation not supported",
-	123:  "protocol family not supported",
-	124:  "address family not supported by protocol",
-	125:  "address already in use",
-	126:  "cannot assign requested address",
-	127:  "network is down",
-	128:  "network is unreachable",
-	129:  "network dropped connection on reset",
-	130:  "software caused connection abort",
-	131:  "connection reset by peer",
-	132:  "no buffer space available",
-	133:  "transport endpoint is already connected",
-	134:  "transport endpoint is not connected",
-	135:  "structure needs cleaning",
-	137:  "not a XENIX named type file",
-	138:  "no XENIX semaphores available",
-	139:  "is a named type file",
-	140:  "remote I/O error",
-	141:  "unknown error 141",
-	142:  "unknown error 142",
-	143:  "cannot send after transport endpoint shutdown",
-	144:  "too many references: cannot splice",
-	145:  "connection timed out",
-	146:  "connection refused",
-	147:  "host is down",
-	148:  "no route to host",
-	149:  "operation already in progress",
-	150:  "operation now in progress",
-	151:  "stale file handle",
-	158:  "operation canceled",
-	159:  "no medium found",
-	160:  "wrong medium type",
-	161:  "required key not available",
-	162:  "key has expired",
-	163:  "key has been revoked",
-	164:  "key was rejected by service",
-	165:  "owner died",
-	166:  "state not recoverable",
-	167:  "operation not possible due to RF-kill",
-	168:  "memory page has hardware error",
-	1133: "disk quota exceeded",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "ENOMSG", "no message of desired type"},
+	{36, "EIDRM", "identifier removed"},
+	{37, "ECHRNG", "channel number out of range"},
+	{38, "EL2NSYNC", "level 2 not synchronized"},
+	{39, "EL3HLT", "level 3 halted"},
+	{40, "EL3RST", "level 3 reset"},
+	{41, "ELNRNG", "link number out of range"},
+	{42, "EUNATCH", "protocol driver not attached"},
+	{43, "ENOCSI", "no CSI structure available"},
+	{44, "EL2HLT", "level 2 halted"},
+	{45, "EDEADLK", "resource deadlock avoided"},
+	{46, "ENOLCK", "no locks available"},
+	{50, "EBADE", "invalid exchange"},
+	{51, "EBADR", "invalid request descriptor"},
+	{52, "EXFULL", "exchange full"},
+	{53, "ENOANO", "no anode"},
+	{54, "EBADRQC", "invalid request code"},
+	{55, "EBADSLT", "invalid slot"},
+	{56, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EMULTIHOP", "multihop attempted"},
+	{77, "EBADMSG", "bad message"},
+	{78, "ENAMETOOLONG", "file name too long"},
+	{79, "EOVERFLOW", "value too large for defined data type"},
+	{80, "ENOTUNIQ", "name not unique on network"},
+	{81, "EBADFD", "file descriptor in bad state"},
+	{82, "EREMCHG", "remote address changed"},
+	{83, "ELIBACC", "can not access a needed shared library"},
+	{84, "ELIBBAD", "accessing a corrupted shared library"},
+	{85, "ELIBSCN", ".lib section in a.out corrupted"},
+	{86, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{87, "ELIBEXEC", "cannot exec a shared library directly"},
+	{88, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{89, "ENOSYS", "function not implemented"},
+	{90, "ELOOP", "too many levels of symbolic links"},
+	{91, "ERESTART", "interrupted system call should be restarted"},
+	{92, "ESTRPIPE", "streams pipe error"},
+	{93, "ENOTEMPTY", "directory not empty"},
+	{94, "EUSERS", "too many users"},
+	{95, "ENOTSOCK", "socket operation on non-socket"},
+	{96, "EDESTADDRREQ", "destination address required"},
+	{97, "EMSGSIZE", "message too long"},
+	{98, "EPROTOTYPE", "protocol wrong type for socket"},
+	{99, "ENOPROTOOPT", "protocol not available"},
+	{120, "EPROTONOSUPPORT", "protocol not supported"},
+	{121, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{122, "ENOTSUP", "operation not supported"},
+	{123, "EPFNOSUPPORT", "protocol family not supported"},
+	{124, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{125, "EADDRINUSE", "address already in use"},
+	{126, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{127, "ENETDOWN", "network is down"},
+	{128, "ENETUNREACH", "network is unreachable"},
+	{129, "ENETRESET", "network dropped connection on reset"},
+	{130, "ECONNABORTED", "software caused connection abort"},
+	{131, "ECONNRESET", "connection reset by peer"},
+	{132, "ENOBUFS", "no buffer space available"},
+	{133, "EISCONN", "transport endpoint is already connected"},
+	{134, "ENOTCONN", "transport endpoint is not connected"},
+	{135, "EUCLEAN", "structure needs cleaning"},
+	{137, "ENOTNAM", "not a XENIX named type file"},
+	{138, "ENAVAIL", "no XENIX semaphores available"},
+	{139, "EISNAM", "is a named type file"},
+	{140, "EREMOTEIO", "remote I/O error"},
+	{141, "EINIT", "unknown error 141"},
+	{142, "EREMDEV", "unknown error 142"},
+	{143, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{144, "ETOOMANYREFS", "too many references: cannot splice"},
+	{145, "ETIMEDOUT", "connection timed out"},
+	{146, "ECONNREFUSED", "connection refused"},
+	{147, "EHOSTDOWN", "host is down"},
+	{148, "EHOSTUNREACH", "no route to host"},
+	{149, "EALREADY", "operation already in progress"},
+	{150, "EINPROGRESS", "operation now in progress"},
+	{151, "ESTALE", "stale file handle"},
+	{158, "ECANCELED", "operation canceled"},
+	{159, "ENOMEDIUM", "no medium found"},
+	{160, "EMEDIUMTYPE", "wrong medium type"},
+	{161, "ENOKEY", "required key not available"},
+	{162, "EKEYEXPIRED", "key has expired"},
+	{163, "EKEYREVOKED", "key has been revoked"},
+	{164, "EKEYREJECTED", "key was rejected by service"},
+	{165, "EOWNERDEAD", "owner died"},
+	{166, "ENOTRECOVERABLE", "state not recoverable"},
+	{167, "ERFKILL", "operation not possible due to RF-kill"},
+	{168, "EHWPOISON", "memory page has hardware error"},
+	{1133, "EDQUOT", "disk quota exceeded"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "user defined signal 1",
-	17: "user defined signal 2",
-	18: "child exited",
-	19: "power failure",
-	20: "window changed",
-	21: "urgent I/O condition",
-	22: "I/O possible",
-	23: "stopped (signal)",
-	24: "stopped",
-	25: "continued",
-	26: "stopped (tty input)",
-	27: "stopped (tty output)",
-	28: "virtual timer expired",
-	29: "profiling timer expired",
-	30: "CPU time limit exceeded",
-	31: "file size limit exceeded",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGUSR1", "user defined signal 1"},
+	{17, "SIGUSR2", "user defined signal 2"},
+	{18, "SIGCHLD", "child exited"},
+	{19, "SIGPWR", "power failure"},
+	{20, "SIGWINCH", "window changed"},
+	{21, "SIGURG", "urgent I/O condition"},
+	{22, "SIGIO", "I/O possible"},
+	{23, "SIGSTOP", "stopped (signal)"},
+	{24, "SIGTSTP", "stopped"},
+	{25, "SIGCONT", "continued"},
+	{26, "SIGTTIN", "stopped (tty input)"},
+	{27, "SIGTTOU", "stopped (tty output)"},
+	{28, "SIGVTALRM", "virtual timer expired"},
+	{29, "SIGPROF", "profiling timer expired"},
+	{30, "SIGXCPU", "CPU time limit exceeded"},
+	{31, "SIGXFSZ", "file size limit exceeded"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
index af30fde793..08f9638ac8 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mips64le.go
@@ -2275,174 +2275,182 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:    "operation not permitted",
-	2:    "no such file or directory",
-	3:    "no such process",
-	4:    "interrupted system call",
-	5:    "input/output error",
-	6:    "no such device or address",
-	7:    "argument list too long",
-	8:    "exec format error",
-	9:    "bad file descriptor",
-	10:   "no child processes",
-	11:   "resource temporarily unavailable",
-	12:   "cannot allocate memory",
-	13:   "permission denied",
-	14:   "bad address",
-	15:   "block device required",
-	16:   "device or resource busy",
-	17:   "file exists",
-	18:   "invalid cross-device link",
-	19:   "no such device",
-	20:   "not a directory",
-	21:   "is a directory",
-	22:   "invalid argument",
-	23:   "too many open files in system",
-	24:   "too many open files",
-	25:   "inappropriate ioctl for device",
-	26:   "text file busy",
-	27:   "file too large",
-	28:   "no space left on device",
-	29:   "illegal seek",
-	30:   "read-only file system",
-	31:   "too many links",
-	32:   "broken pipe",
-	33:   "numerical argument out of domain",
-	34:   "numerical result out of range",
-	35:   "no message of desired type",
-	36:   "identifier removed",
-	37:   "channel number out of range",
-	38:   "level 2 not synchronized",
-	39:   "level 3 halted",
-	40:   "level 3 reset",
-	41:   "link number out of range",
-	42:   "protocol driver not attached",
-	43:   "no CSI structure available",
-	44:   "level 2 halted",
-	45:   "resource deadlock avoided",
-	46:   "no locks available",
-	50:   "invalid exchange",
-	51:   "invalid request descriptor",
-	52:   "exchange full",
-	53:   "no anode",
-	54:   "invalid request code",
-	55:   "invalid slot",
-	56:   "file locking deadlock error",
-	59:   "bad font file format",
-	60:   "device not a stream",
-	61:   "no data available",
-	62:   "timer expired",
-	63:   "out of streams resources",
-	64:   "machine is not on the network",
-	65:   "package not installed",
-	66:   "object is remote",
-	67:   "link has been severed",
-	68:   "advertise error",
-	69:   "srmount error",
-	70:   "communication error on send",
-	71:   "protocol error",
-	73:   "RFS specific error",
-	74:   "multihop attempted",
-	77:   "bad message",
-	78:   "file name too long",
-	79:   "value too large for defined data type",
-	80:   "name not unique on network",
-	81:   "file descriptor in bad state",
-	82:   "remote address changed",
-	83:   "can not access a needed shared library",
-	84:   "accessing a corrupted shared library",
-	85:   ".lib section in a.out corrupted",
-	86:   "attempting to link in too many shared libraries",
-	87:   "cannot exec a shared library directly",
-	88:   "invalid or incomplete multibyte or wide character",
-	89:   "function not implemented",
-	90:   "too many levels of symbolic links",
-	91:   "interrupted system call should be restarted",
-	92:   "streams pipe error",
-	93:   "directory not empty",
-	94:   "too many users",
-	95:   "socket operation on non-socket",
-	96:   "destination address required",
-	97:   "message too long",
-	98:   "protocol wrong type for socket",
-	99:   "protocol not available",
-	120:  "protocol not supported",
-	121:  "socket type not supported",
-	122:  "operation not supported",
-	123:  "protocol family not supported",
-	124:  "address family not supported by protocol",
-	125:  "address already in use",
-	126:  "cannot assign requested address",
-	127:  "network is down",
-	128:  "network is unreachable",
-	129:  "network dropped connection on reset",
-	130:  "software caused connection abort",
-	131:  "connection reset by peer",
-	132:  "no buffer space available",
-	133:  "transport endpoint is already connected",
-	134:  "transport endpoint is not connected",
-	135:  "structure needs cleaning",
-	137:  "not a XENIX named type file",
-	138:  "no XENIX semaphores available",
-	139:  "is a named type file",
-	140:  "remote I/O error",
-	141:  "unknown error 141",
-	142:  "unknown error 142",
-	143:  "cannot send after transport endpoint shutdown",
-	144:  "too many references: cannot splice",
-	145:  "connection timed out",
-	146:  "connection refused",
-	147:  "host is down",
-	148:  "no route to host",
-	149:  "operation already in progress",
-	150:  "operation now in progress",
-	151:  "stale file handle",
-	158:  "operation canceled",
-	159:  "no medium found",
-	160:  "wrong medium type",
-	161:  "required key not available",
-	162:  "key has expired",
-	163:  "key has been revoked",
-	164:  "key was rejected by service",
-	165:  "owner died",
-	166:  "state not recoverable",
-	167:  "operation not possible due to RF-kill",
-	168:  "memory page has hardware error",
-	1133: "disk quota exceeded",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "ENOMSG", "no message of desired type"},
+	{36, "EIDRM", "identifier removed"},
+	{37, "ECHRNG", "channel number out of range"},
+	{38, "EL2NSYNC", "level 2 not synchronized"},
+	{39, "EL3HLT", "level 3 halted"},
+	{40, "EL3RST", "level 3 reset"},
+	{41, "ELNRNG", "link number out of range"},
+	{42, "EUNATCH", "protocol driver not attached"},
+	{43, "ENOCSI", "no CSI structure available"},
+	{44, "EL2HLT", "level 2 halted"},
+	{45, "EDEADLK", "resource deadlock avoided"},
+	{46, "ENOLCK", "no locks available"},
+	{50, "EBADE", "invalid exchange"},
+	{51, "EBADR", "invalid request descriptor"},
+	{52, "EXFULL", "exchange full"},
+	{53, "ENOANO", "no anode"},
+	{54, "EBADRQC", "invalid request code"},
+	{55, "EBADSLT", "invalid slot"},
+	{56, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EMULTIHOP", "multihop attempted"},
+	{77, "EBADMSG", "bad message"},
+	{78, "ENAMETOOLONG", "file name too long"},
+	{79, "EOVERFLOW", "value too large for defined data type"},
+	{80, "ENOTUNIQ", "name not unique on network"},
+	{81, "EBADFD", "file descriptor in bad state"},
+	{82, "EREMCHG", "remote address changed"},
+	{83, "ELIBACC", "can not access a needed shared library"},
+	{84, "ELIBBAD", "accessing a corrupted shared library"},
+	{85, "ELIBSCN", ".lib section in a.out corrupted"},
+	{86, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{87, "ELIBEXEC", "cannot exec a shared library directly"},
+	{88, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{89, "ENOSYS", "function not implemented"},
+	{90, "ELOOP", "too many levels of symbolic links"},
+	{91, "ERESTART", "interrupted system call should be restarted"},
+	{92, "ESTRPIPE", "streams pipe error"},
+	{93, "ENOTEMPTY", "directory not empty"},
+	{94, "EUSERS", "too many users"},
+	{95, "ENOTSOCK", "socket operation on non-socket"},
+	{96, "EDESTADDRREQ", "destination address required"},
+	{97, "EMSGSIZE", "message too long"},
+	{98, "EPROTOTYPE", "protocol wrong type for socket"},
+	{99, "ENOPROTOOPT", "protocol not available"},
+	{120, "EPROTONOSUPPORT", "protocol not supported"},
+	{121, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{122, "ENOTSUP", "operation not supported"},
+	{123, "EPFNOSUPPORT", "protocol family not supported"},
+	{124, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{125, "EADDRINUSE", "address already in use"},
+	{126, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{127, "ENETDOWN", "network is down"},
+	{128, "ENETUNREACH", "network is unreachable"},
+	{129, "ENETRESET", "network dropped connection on reset"},
+	{130, "ECONNABORTED", "software caused connection abort"},
+	{131, "ECONNRESET", "connection reset by peer"},
+	{132, "ENOBUFS", "no buffer space available"},
+	{133, "EISCONN", "transport endpoint is already connected"},
+	{134, "ENOTCONN", "transport endpoint is not connected"},
+	{135, "EUCLEAN", "structure needs cleaning"},
+	{137, "ENOTNAM", "not a XENIX named type file"},
+	{138, "ENAVAIL", "no XENIX semaphores available"},
+	{139, "EISNAM", "is a named type file"},
+	{140, "EREMOTEIO", "remote I/O error"},
+	{141, "EINIT", "unknown error 141"},
+	{142, "EREMDEV", "unknown error 142"},
+	{143, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{144, "ETOOMANYREFS", "too many references: cannot splice"},
+	{145, "ETIMEDOUT", "connection timed out"},
+	{146, "ECONNREFUSED", "connection refused"},
+	{147, "EHOSTDOWN", "host is down"},
+	{148, "EHOSTUNREACH", "no route to host"},
+	{149, "EALREADY", "operation already in progress"},
+	{150, "EINPROGRESS", "operation now in progress"},
+	{151, "ESTALE", "stale file handle"},
+	{158, "ECANCELED", "operation canceled"},
+	{159, "ENOMEDIUM", "no medium found"},
+	{160, "EMEDIUMTYPE", "wrong medium type"},
+	{161, "ENOKEY", "required key not available"},
+	{162, "EKEYEXPIRED", "key has expired"},
+	{163, "EKEYREVOKED", "key has been revoked"},
+	{164, "EKEYREJECTED", "key was rejected by service"},
+	{165, "EOWNERDEAD", "owner died"},
+	{166, "ENOTRECOVERABLE", "state not recoverable"},
+	{167, "ERFKILL", "operation not possible due to RF-kill"},
+	{168, "EHWPOISON", "memory page has hardware error"},
+	{1133, "EDQUOT", "disk quota exceeded"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "user defined signal 1",
-	17: "user defined signal 2",
-	18: "child exited",
-	19: "power failure",
-	20: "window changed",
-	21: "urgent I/O condition",
-	22: "I/O possible",
-	23: "stopped (signal)",
-	24: "stopped",
-	25: "continued",
-	26: "stopped (tty input)",
-	27: "stopped (tty output)",
-	28: "virtual timer expired",
-	29: "profiling timer expired",
-	30: "CPU time limit exceeded",
-	31: "file size limit exceeded",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGUSR1", "user defined signal 1"},
+	{17, "SIGUSR2", "user defined signal 2"},
+	{18, "SIGCHLD", "child exited"},
+	{19, "SIGPWR", "power failure"},
+	{20, "SIGWINCH", "window changed"},
+	{21, "SIGURG", "urgent I/O condition"},
+	{22, "SIGIO", "I/O possible"},
+	{23, "SIGSTOP", "stopped (signal)"},
+	{24, "SIGTSTP", "stopped"},
+	{25, "SIGCONT", "continued"},
+	{26, "SIGTTIN", "stopped (tty input)"},
+	{27, "SIGTTOU", "stopped (tty output)"},
+	{28, "SIGVTALRM", "virtual timer expired"},
+	{29, "SIGPROF", "profiling timer expired"},
+	{30, "SIGXCPU", "CPU time limit exceeded"},
+	{31, "SIGXFSZ", "file size limit exceeded"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go b/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
index db3baed92f..3a3fd1df16 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_mipsle.go
@@ -2275,174 +2275,182 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:    "operation not permitted",
-	2:    "no such file or directory",
-	3:    "no such process",
-	4:    "interrupted system call",
-	5:    "input/output error",
-	6:    "no such device or address",
-	7:    "argument list too long",
-	8:    "exec format error",
-	9:    "bad file descriptor",
-	10:   "no child processes",
-	11:   "resource temporarily unavailable",
-	12:   "cannot allocate memory",
-	13:   "permission denied",
-	14:   "bad address",
-	15:   "block device required",
-	16:   "device or resource busy",
-	17:   "file exists",
-	18:   "invalid cross-device link",
-	19:   "no such device",
-	20:   "not a directory",
-	21:   "is a directory",
-	22:   "invalid argument",
-	23:   "too many open files in system",
-	24:   "too many open files",
-	25:   "inappropriate ioctl for device",
-	26:   "text file busy",
-	27:   "file too large",
-	28:   "no space left on device",
-	29:   "illegal seek",
-	30:   "read-only file system",
-	31:   "too many links",
-	32:   "broken pipe",
-	33:   "numerical argument out of domain",
-	34:   "numerical result out of range",
-	35:   "no message of desired type",
-	36:   "identifier removed",
-	37:   "channel number out of range",
-	38:   "level 2 not synchronized",
-	39:   "level 3 halted",
-	40:   "level 3 reset",
-	41:   "link number out of range",
-	42:   "protocol driver not attached",
-	43:   "no CSI structure available",
-	44:   "level 2 halted",
-	45:   "resource deadlock avoided",
-	46:   "no locks available",
-	50:   "invalid exchange",
-	51:   "invalid request descriptor",
-	52:   "exchange full",
-	53:   "no anode",
-	54:   "invalid request code",
-	55:   "invalid slot",
-	56:   "file locking deadlock error",
-	59:   "bad font file format",
-	60:   "device not a stream",
-	61:   "no data available",
-	62:   "timer expired",
-	63:   "out of streams resources",
-	64:   "machine is not on the network",
-	65:   "package not installed",
-	66:   "object is remote",
-	67:   "link has been severed",
-	68:   "advertise error",
-	69:   "srmount error",
-	70:   "communication error on send",
-	71:   "protocol error",
-	73:   "RFS specific error",
-	74:   "multihop attempted",
-	77:   "bad message",
-	78:   "file name too long",
-	79:   "value too large for defined data type",
-	80:   "name not unique on network",
-	81:   "file descriptor in bad state",
-	82:   "remote address changed",
-	83:   "can not access a needed shared library",
-	84:   "accessing a corrupted shared library",
-	85:   ".lib section in a.out corrupted",
-	86:   "attempting to link in too many shared libraries",
-	87:   "cannot exec a shared library directly",
-	88:   "invalid or incomplete multibyte or wide character",
-	89:   "function not implemented",
-	90:   "too many levels of symbolic links",
-	91:   "interrupted system call should be restarted",
-	92:   "streams pipe error",
-	93:   "directory not empty",
-	94:   "too many users",
-	95:   "socket operation on non-socket",
-	96:   "destination address required",
-	97:   "message too long",
-	98:   "protocol wrong type for socket",
-	99:   "protocol not available",
-	120:  "protocol not supported",
-	121:  "socket type not supported",
-	122:  "operation not supported",
-	123:  "protocol family not supported",
-	124:  "address family not supported by protocol",
-	125:  "address already in use",
-	126:  "cannot assign requested address",
-	127:  "network is down",
-	128:  "network is unreachable",
-	129:  "network dropped connection on reset",
-	130:  "software caused connection abort",
-	131:  "connection reset by peer",
-	132:  "no buffer space available",
-	133:  "transport endpoint is already connected",
-	134:  "transport endpoint is not connected",
-	135:  "structure needs cleaning",
-	137:  "not a XENIX named type file",
-	138:  "no XENIX semaphores available",
-	139:  "is a named type file",
-	140:  "remote I/O error",
-	141:  "unknown error 141",
-	142:  "unknown error 142",
-	143:  "cannot send after transport endpoint shutdown",
-	144:  "too many references: cannot splice",
-	145:  "connection timed out",
-	146:  "connection refused",
-	147:  "host is down",
-	148:  "no route to host",
-	149:  "operation already in progress",
-	150:  "operation now in progress",
-	151:  "stale file handle",
-	158:  "operation canceled",
-	159:  "no medium found",
-	160:  "wrong medium type",
-	161:  "required key not available",
-	162:  "key has expired",
-	163:  "key has been revoked",
-	164:  "key was rejected by service",
-	165:  "owner died",
-	166:  "state not recoverable",
-	167:  "operation not possible due to RF-kill",
-	168:  "memory page has hardware error",
-	1133: "disk quota exceeded",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "ENOMSG", "no message of desired type"},
+	{36, "EIDRM", "identifier removed"},
+	{37, "ECHRNG", "channel number out of range"},
+	{38, "EL2NSYNC", "level 2 not synchronized"},
+	{39, "EL3HLT", "level 3 halted"},
+	{40, "EL3RST", "level 3 reset"},
+	{41, "ELNRNG", "link number out of range"},
+	{42, "EUNATCH", "protocol driver not attached"},
+	{43, "ENOCSI", "no CSI structure available"},
+	{44, "EL2HLT", "level 2 halted"},
+	{45, "EDEADLK", "resource deadlock avoided"},
+	{46, "ENOLCK", "no locks available"},
+	{50, "EBADE", "invalid exchange"},
+	{51, "EBADR", "invalid request descriptor"},
+	{52, "EXFULL", "exchange full"},
+	{53, "ENOANO", "no anode"},
+	{54, "EBADRQC", "invalid request code"},
+	{55, "EBADSLT", "invalid slot"},
+	{56, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EMULTIHOP", "multihop attempted"},
+	{77, "EBADMSG", "bad message"},
+	{78, "ENAMETOOLONG", "file name too long"},
+	{79, "EOVERFLOW", "value too large for defined data type"},
+	{80, "ENOTUNIQ", "name not unique on network"},
+	{81, "EBADFD", "file descriptor in bad state"},
+	{82, "EREMCHG", "remote address changed"},
+	{83, "ELIBACC", "can not access a needed shared library"},
+	{84, "ELIBBAD", "accessing a corrupted shared library"},
+	{85, "ELIBSCN", ".lib section in a.out corrupted"},
+	{86, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{87, "ELIBEXEC", "cannot exec a shared library directly"},
+	{88, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{89, "ENOSYS", "function not implemented"},
+	{90, "ELOOP", "too many levels of symbolic links"},
+	{91, "ERESTART", "interrupted system call should be restarted"},
+	{92, "ESTRPIPE", "streams pipe error"},
+	{93, "ENOTEMPTY", "directory not empty"},
+	{94, "EUSERS", "too many users"},
+	{95, "ENOTSOCK", "socket operation on non-socket"},
+	{96, "EDESTADDRREQ", "destination address required"},
+	{97, "EMSGSIZE", "message too long"},
+	{98, "EPROTOTYPE", "protocol wrong type for socket"},
+	{99, "ENOPROTOOPT", "protocol not available"},
+	{120, "EPROTONOSUPPORT", "protocol not supported"},
+	{121, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{122, "ENOTSUP", "operation not supported"},
+	{123, "EPFNOSUPPORT", "protocol family not supported"},
+	{124, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{125, "EADDRINUSE", "address already in use"},
+	{126, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{127, "ENETDOWN", "network is down"},
+	{128, "ENETUNREACH", "network is unreachable"},
+	{129, "ENETRESET", "network dropped connection on reset"},
+	{130, "ECONNABORTED", "software caused connection abort"},
+	{131, "ECONNRESET", "connection reset by peer"},
+	{132, "ENOBUFS", "no buffer space available"},
+	{133, "EISCONN", "transport endpoint is already connected"},
+	{134, "ENOTCONN", "transport endpoint is not connected"},
+	{135, "EUCLEAN", "structure needs cleaning"},
+	{137, "ENOTNAM", "not a XENIX named type file"},
+	{138, "ENAVAIL", "no XENIX semaphores available"},
+	{139, "EISNAM", "is a named type file"},
+	{140, "EREMOTEIO", "remote I/O error"},
+	{141, "EINIT", "unknown error 141"},
+	{142, "EREMDEV", "unknown error 142"},
+	{143, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{144, "ETOOMANYREFS", "too many references: cannot splice"},
+	{145, "ETIMEDOUT", "connection timed out"},
+	{146, "ECONNREFUSED", "connection refused"},
+	{147, "EHOSTDOWN", "host is down"},
+	{148, "EHOSTUNREACH", "no route to host"},
+	{149, "EALREADY", "operation already in progress"},
+	{150, "EINPROGRESS", "operation now in progress"},
+	{151, "ESTALE", "stale file handle"},
+	{158, "ECANCELED", "operation canceled"},
+	{159, "ENOMEDIUM", "no medium found"},
+	{160, "EMEDIUMTYPE", "wrong medium type"},
+	{161, "ENOKEY", "required key not available"},
+	{162, "EKEYEXPIRED", "key has expired"},
+	{163, "EKEYREVOKED", "key has been revoked"},
+	{164, "EKEYREJECTED", "key was rejected by service"},
+	{165, "EOWNERDEAD", "owner died"},
+	{166, "ENOTRECOVERABLE", "state not recoverable"},
+	{167, "ERFKILL", "operation not possible due to RF-kill"},
+	{168, "EHWPOISON", "memory page has hardware error"},
+	{1133, "EDQUOT", "disk quota exceeded"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "user defined signal 1",
-	17: "user defined signal 2",
-	18: "child exited",
-	19: "power failure",
-	20: "window changed",
-	21: "urgent I/O condition",
-	22: "I/O possible",
-	23: "stopped (signal)",
-	24: "stopped",
-	25: "continued",
-	26: "stopped (tty input)",
-	27: "stopped (tty output)",
-	28: "virtual timer expired",
-	29: "profiling timer expired",
-	30: "CPU time limit exceeded",
-	31: "file size limit exceeded",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGUSR1", "user defined signal 1"},
+	{17, "SIGUSR2", "user defined signal 2"},
+	{18, "SIGCHLD", "child exited"},
+	{19, "SIGPWR", "power failure"},
+	{20, "SIGWINCH", "window changed"},
+	{21, "SIGURG", "urgent I/O condition"},
+	{22, "SIGIO", "I/O possible"},
+	{23, "SIGSTOP", "stopped (signal)"},
+	{24, "SIGTSTP", "stopped"},
+	{25, "SIGCONT", "continued"},
+	{26, "SIGTTIN", "stopped (tty input)"},
+	{27, "SIGTTOU", "stopped (tty output)"},
+	{28, "SIGVTALRM", "virtual timer expired"},
+	{29, "SIGPROF", "profiling timer expired"},
+	{30, "SIGXCPU", "CPU time limit exceeded"},
+	{31, "SIGXFSZ", "file size limit exceeded"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
index 2d74bd48fa..3e6c1783e6 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64.go
@@ -2330,172 +2330,180 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	58:  "file locking deadlock error",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{58, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
index 822f94ba21..4fabd8d610 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_ppc64le.go
@@ -2330,172 +2330,180 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	58:  "file locking deadlock error",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{58, "EDEADLOCK", "file locking deadlock error"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go b/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
index beb9aa3158..685667adfa 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_linux_s390x.go
@@ -2330,171 +2330,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "operation not permitted",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "input/output error",
-	6:   "no such device or address",
-	7:   "argument list too long",
-	8:   "exec format error",
-	9:   "bad file descriptor",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "cannot allocate memory",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device or resource busy",
-	17:  "file exists",
-	18:  "invalid cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "too many open files in system",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "numerical argument out of domain",
-	34:  "numerical result out of range",
-	35:  "resource deadlock avoided",
-	36:  "file name too long",
-	37:  "no locks available",
-	38:  "function not implemented",
-	39:  "directory not empty",
-	40:  "too many levels of symbolic links",
-	42:  "no message of desired type",
-	43:  "identifier removed",
-	44:  "channel number out of range",
-	45:  "level 2 not synchronized",
-	46:  "level 3 halted",
-	47:  "level 3 reset",
-	48:  "link number out of range",
-	49:  "protocol driver not attached",
-	50:  "no CSI structure available",
-	51:  "level 2 halted",
-	52:  "invalid exchange",
-	53:  "invalid request descriptor",
-	54:  "exchange full",
-	55:  "no anode",
-	56:  "invalid request code",
-	57:  "invalid slot",
-	59:  "bad font file format",
-	60:  "device not a stream",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of streams resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "multihop attempted",
-	73:  "RFS specific error",
-	74:  "bad message",
-	75:  "value too large for defined data type",
-	76:  "name not unique on network",
-	77:  "file descriptor in bad state",
-	78:  "remote address changed",
-	79:  "can not access a needed shared library",
-	80:  "accessing a corrupted shared library",
-	81:  ".lib section in a.out corrupted",
-	82:  "attempting to link in too many shared libraries",
-	83:  "cannot exec a shared library directly",
-	84:  "invalid or incomplete multibyte or wide character",
-	85:  "interrupted system call should be restarted",
-	86:  "streams pipe error",
-	87:  "too many users",
-	88:  "socket operation on non-socket",
-	89:  "destination address required",
-	90:  "message too long",
-	91:  "protocol wrong type for socket",
-	92:  "protocol not available",
-	93:  "protocol not supported",
-	94:  "socket type not supported",
-	95:  "operation not supported",
-	96:  "protocol family not supported",
-	97:  "address family not supported by protocol",
-	98:  "address already in use",
-	99:  "cannot assign requested address",
-	100: "network is down",
-	101: "network is unreachable",
-	102: "network dropped connection on reset",
-	103: "software caused connection abort",
-	104: "connection reset by peer",
-	105: "no buffer space available",
-	106: "transport endpoint is already connected",
-	107: "transport endpoint is not connected",
-	108: "cannot send after transport endpoint shutdown",
-	109: "too many references: cannot splice",
-	110: "connection timed out",
-	111: "connection refused",
-	112: "host is down",
-	113: "no route to host",
-	114: "operation already in progress",
-	115: "operation now in progress",
-	116: "stale file handle",
-	117: "structure needs cleaning",
-	118: "not a XENIX named type file",
-	119: "no XENIX semaphores available",
-	120: "is a named type file",
-	121: "remote I/O error",
-	122: "disk quota exceeded",
-	123: "no medium found",
-	124: "wrong medium type",
-	125: "operation canceled",
-	126: "required key not available",
-	127: "key has expired",
-	128: "key has been revoked",
-	129: "key was rejected by service",
-	130: "owner died",
-	131: "state not recoverable",
-	132: "operation not possible due to RF-kill",
-	133: "memory page has hardware error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device or resource busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "invalid cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "numerical result out of range"},
+	{35, "EDEADLK", "resource deadlock avoided"},
+	{36, "ENAMETOOLONG", "file name too long"},
+	{37, "ENOLCK", "no locks available"},
+	{38, "ENOSYS", "function not implemented"},
+	{39, "ENOTEMPTY", "directory not empty"},
+	{40, "ELOOP", "too many levels of symbolic links"},
+	{42, "ENOMSG", "no message of desired type"},
+	{43, "EIDRM", "identifier removed"},
+	{44, "ECHRNG", "channel number out of range"},
+	{45, "EL2NSYNC", "level 2 not synchronized"},
+	{46, "EL3HLT", "level 3 halted"},
+	{47, "EL3RST", "level 3 reset"},
+	{48, "ELNRNG", "link number out of range"},
+	{49, "EUNATCH", "protocol driver not attached"},
+	{50, "ENOCSI", "no CSI structure available"},
+	{51, "EL2HLT", "level 2 halted"},
+	{52, "EBADE", "invalid exchange"},
+	{53, "EBADR", "invalid request descriptor"},
+	{54, "EXFULL", "exchange full"},
+	{55, "ENOANO", "no anode"},
+	{56, "EBADRQC", "invalid request code"},
+	{57, "EBADSLT", "invalid slot"},
+	{59, "EBFONT", "bad font file format"},
+	{60, "ENOSTR", "device not a stream"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of streams resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "EMULTIHOP", "multihop attempted"},
+	{73, "EDOTDOT", "RFS specific error"},
+	{74, "EBADMSG", "bad message"},
+	{75, "EOVERFLOW", "value too large for defined data type"},
+	{76, "ENOTUNIQ", "name not unique on network"},
+	{77, "EBADFD", "file descriptor in bad state"},
+	{78, "EREMCHG", "remote address changed"},
+	{79, "ELIBACC", "can not access a needed shared library"},
+	{80, "ELIBBAD", "accessing a corrupted shared library"},
+	{81, "ELIBSCN", ".lib section in a.out corrupted"},
+	{82, "ELIBMAX", "attempting to link in too many shared libraries"},
+	{83, "ELIBEXEC", "cannot exec a shared library directly"},
+	{84, "EILSEQ", "invalid or incomplete multibyte or wide character"},
+	{85, "ERESTART", "interrupted system call should be restarted"},
+	{86, "ESTRPIPE", "streams pipe error"},
+	{87, "EUSERS", "too many users"},
+	{88, "ENOTSOCK", "socket operation on non-socket"},
+	{89, "EDESTADDRREQ", "destination address required"},
+	{90, "EMSGSIZE", "message too long"},
+	{91, "EPROTOTYPE", "protocol wrong type for socket"},
+	{92, "ENOPROTOOPT", "protocol not available"},
+	{93, "EPROTONOSUPPORT", "protocol not supported"},
+	{94, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{95, "ENOTSUP", "operation not supported"},
+	{96, "EPFNOSUPPORT", "protocol family not supported"},
+	{97, "EAFNOSUPPORT", "address family not supported by protocol"},
+	{98, "EADDRINUSE", "address already in use"},
+	{99, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{100, "ENETDOWN", "network is down"},
+	{101, "ENETUNREACH", "network is unreachable"},
+	{102, "ENETRESET", "network dropped connection on reset"},
+	{103, "ECONNABORTED", "software caused connection abort"},
+	{104, "ECONNRESET", "connection reset by peer"},
+	{105, "ENOBUFS", "no buffer space available"},
+	{106, "EISCONN", "transport endpoint is already connected"},
+	{107, "ENOTCONN", "transport endpoint is not connected"},
+	{108, "ESHUTDOWN", "cannot send after transport endpoint shutdown"},
+	{109, "ETOOMANYREFS", "too many references: cannot splice"},
+	{110, "ETIMEDOUT", "connection timed out"},
+	{111, "ECONNREFUSED", "connection refused"},
+	{112, "EHOSTDOWN", "host is down"},
+	{113, "EHOSTUNREACH", "no route to host"},
+	{114, "EALREADY", "operation already in progress"},
+	{115, "EINPROGRESS", "operation now in progress"},
+	{116, "ESTALE", "stale file handle"},
+	{117, "EUCLEAN", "structure needs cleaning"},
+	{118, "ENOTNAM", "not a XENIX named type file"},
+	{119, "ENAVAIL", "no XENIX semaphores available"},
+	{120, "EISNAM", "is a named type file"},
+	{121, "EREMOTEIO", "remote I/O error"},
+	{122, "EDQUOT", "disk quota exceeded"},
+	{123, "ENOMEDIUM", "no medium found"},
+	{124, "EMEDIUMTYPE", "wrong medium type"},
+	{125, "ECANCELED", "operation canceled"},
+	{126, "ENOKEY", "required key not available"},
+	{127, "EKEYEXPIRED", "key has expired"},
+	{128, "EKEYREVOKED", "key has been revoked"},
+	{129, "EKEYREJECTED", "key was rejected by service"},
+	{130, "EOWNERDEAD", "owner died"},
+	{131, "ENOTRECOVERABLE", "state not recoverable"},
+	{132, "ERFKILL", "operation not possible due to RF-kill"},
+	{133, "EHWPOISON", "memory page has hardware error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/breakpoint trap",
-	6:  "aborted",
-	7:  "bus error",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "user defined signal 1",
-	11: "segmentation fault",
-	12: "user defined signal 2",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "stack fault",
-	17: "child exited",
-	18: "continued",
-	19: "stopped (signal)",
-	20: "stopped",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "urgent I/O condition",
-	24: "CPU time limit exceeded",
-	25: "file size limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window changed",
-	29: "I/O possible",
-	30: "power failure",
-	31: "bad system call",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/breakpoint trap"},
+	{6, "SIGABRT", "aborted"},
+	{7, "SIGBUS", "bus error"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGUSR1", "user defined signal 1"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGUSR2", "user defined signal 2"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGSTKFLT", "stack fault"},
+	{17, "SIGCHLD", "child exited"},
+	{18, "SIGCONT", "continued"},
+	{19, "SIGSTOP", "stopped (signal)"},
+	{20, "SIGTSTP", "stopped"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGURG", "urgent I/O condition"},
+	{24, "SIGXCPU", "CPU time limit exceeded"},
+	{25, "SIGXFSZ", "file size limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window changed"},
+	{29, "SIGIO", "I/O possible"},
+	{30, "SIGPWR", "power failure"},
+	{31, "SIGSYS", "bad system call"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_netbsd_386.go b/vendor/golang.org/x/sys/unix/zerrors_netbsd_386.go
index 3eef63f5a6..cd93ce0d85 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_netbsd_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_netbsd_386.go
@@ -1584,137 +1584,145 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large or too small",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol option not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "illegal byte sequence",
-	86: "not supported",
-	87: "operation Canceled",
-	88: "bad or Corrupt message",
-	89: "no message available",
-	90: "no STREAM resources",
-	91: "not a STREAM",
-	92: "STREAM ioctl timeout",
-	93: "attribute not found",
-	94: "multihop attempted",
-	95: "link has been severed",
-	96: "protocol error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large or too small"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol option not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "connection timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EILSEQ", "illegal byte sequence"},
+	{86, "ENOTSUP", "not supported"},
+	{87, "ECANCELED", "operation Canceled"},
+	{88, "EBADMSG", "bad or Corrupt message"},
+	{89, "ENODATA", "no message available"},
+	{90, "ENOSR", "no STREAM resources"},
+	{91, "ENOSTR", "not a STREAM"},
+	{92, "ETIME", "STREAM ioctl timeout"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EMULTIHOP", "multihop attempted"},
+	{95, "ENOLINK", "link has been severed"},
+	{96, "ELAST", "protocol error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "power fail/restart",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "stopped (signal)"},
+	{18, "SIGTSTP", "stopped"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGPWR", "power fail/restart"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_netbsd_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_netbsd_amd64.go
index 40c870be15..071701c411 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_netbsd_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_netbsd_amd64.go
@@ -1574,137 +1574,145 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large or too small",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol option not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "illegal byte sequence",
-	86: "not supported",
-	87: "operation Canceled",
-	88: "bad or Corrupt message",
-	89: "no message available",
-	90: "no STREAM resources",
-	91: "not a STREAM",
-	92: "STREAM ioctl timeout",
-	93: "attribute not found",
-	94: "multihop attempted",
-	95: "link has been severed",
-	96: "protocol error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large or too small"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol option not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "connection timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EILSEQ", "illegal byte sequence"},
+	{86, "ENOTSUP", "not supported"},
+	{87, "ECANCELED", "operation Canceled"},
+	{88, "EBADMSG", "bad or Corrupt message"},
+	{89, "ENODATA", "no message available"},
+	{90, "ENOSR", "no STREAM resources"},
+	{91, "ENOSTR", "not a STREAM"},
+	{92, "ETIME", "STREAM ioctl timeout"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EMULTIHOP", "multihop attempted"},
+	{95, "ENOLINK", "link has been severed"},
+	{96, "ELAST", "protocol error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "power fail/restart",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "stopped (signal)"},
+	{18, "SIGTSTP", "stopped"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGPWR", "power fail/restart"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_netbsd_arm.go b/vendor/golang.org/x/sys/unix/zerrors_netbsd_arm.go
index 43c4add50c..5fe56ae8c7 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_netbsd_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_netbsd_arm.go
@@ -1563,137 +1563,145 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large or too small",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol option not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "identifier removed",
-	83: "no message of desired type",
-	84: "value too large to be stored in data type",
-	85: "illegal byte sequence",
-	86: "not supported",
-	87: "operation Canceled",
-	88: "bad or Corrupt message",
-	89: "no message available",
-	90: "no STREAM resources",
-	91: "not a STREAM",
-	92: "STREAM ioctl timeout",
-	93: "attribute not found",
-	94: "multihop attempted",
-	95: "link has been severed",
-	96: "protocol error",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large or too small"},
+	{35, "EAGAIN", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol option not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "connection timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disc quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC prog. not avail"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIDRM", "identifier removed"},
+	{83, "ENOMSG", "no message of desired type"},
+	{84, "EOVERFLOW", "value too large to be stored in data type"},
+	{85, "EILSEQ", "illegal byte sequence"},
+	{86, "ENOTSUP", "not supported"},
+	{87, "ECANCELED", "operation Canceled"},
+	{88, "EBADMSG", "bad or Corrupt message"},
+	{89, "ENODATA", "no message available"},
+	{90, "ENOSR", "no STREAM resources"},
+	{91, "ENOSTR", "not a STREAM"},
+	{92, "ETIME", "STREAM ioctl timeout"},
+	{93, "ENOATTR", "attribute not found"},
+	{94, "EMULTIHOP", "multihop attempted"},
+	{95, "ENOLINK", "link has been severed"},
+	{96, "ELAST", "protocol error"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "power fail/restart",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGIOT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "stopped (signal)"},
+	{18, "SIGTSTP", "stopped"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGPWR", "power fail/restart"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_openbsd_386.go b/vendor/golang.org/x/sys/unix/zerrors_openbsd_386.go
index f47536dc43..0a1c3e7e8c 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_openbsd_386.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_openbsd_386.go
@@ -1461,132 +1461,140 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "IPsec processing failure",
-	83: "attribute not found",
-	84: "illegal byte sequence",
-	85: "no medium found",
-	86: "wrong medium type",
-	87: "value too large to be stored in data type",
-	88: "operation canceled",
-	89: "identifier removed",
-	90: "no message of desired type",
-	91: "not supported",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EWOULDBLOCK", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disk quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC program not available"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIPSEC", "IPsec processing failure"},
+	{83, "ENOATTR", "attribute not found"},
+	{84, "EILSEQ", "illegal byte sequence"},
+	{85, "ENOMEDIUM", "no medium found"},
+	{86, "EMEDIUMTYPE", "wrong medium type"},
+	{87, "EOVERFLOW", "value too large to be stored in data type"},
+	{88, "ECANCELED", "operation canceled"},
+	{89, "EIDRM", "identifier removed"},
+	{90, "ENOMSG", "no message of desired type"},
+	{91, "ELAST", "not supported"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "thread AST",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "thread AST"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_openbsd_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_openbsd_amd64.go
index c96ca653ac..0d50f6b093 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_openbsd_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_openbsd_amd64.go
@@ -1460,132 +1460,140 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "IPsec processing failure",
-	83: "attribute not found",
-	84: "illegal byte sequence",
-	85: "no medium found",
-	86: "wrong medium type",
-	87: "value too large to be stored in data type",
-	88: "operation canceled",
-	89: "identifier removed",
-	90: "no message of desired type",
-	91: "not supported",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EWOULDBLOCK", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disk quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC program not available"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIPSEC", "IPsec processing failure"},
+	{83, "ENOATTR", "attribute not found"},
+	{84, "EILSEQ", "illegal byte sequence"},
+	{85, "ENOMEDIUM", "no medium found"},
+	{86, "EMEDIUMTYPE", "wrong medium type"},
+	{87, "EOVERFLOW", "value too large to be stored in data type"},
+	{88, "ECANCELED", "operation canceled"},
+	{89, "EIDRM", "identifier removed"},
+	{90, "ENOMSG", "no message of desired type"},
+	{91, "ELAST", "not supported"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "thread AST",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "thread AST"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_openbsd_arm.go b/vendor/golang.org/x/sys/unix/zerrors_openbsd_arm.go
index 4c027352e9..93e37c4b28 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_openbsd_arm.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_openbsd_arm.go
@@ -1463,132 +1463,140 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:  "operation not permitted",
-	2:  "no such file or directory",
-	3:  "no such process",
-	4:  "interrupted system call",
-	5:  "input/output error",
-	6:  "device not configured",
-	7:  "argument list too long",
-	8:  "exec format error",
-	9:  "bad file descriptor",
-	10: "no child processes",
-	11: "resource deadlock avoided",
-	12: "cannot allocate memory",
-	13: "permission denied",
-	14: "bad address",
-	15: "block device required",
-	16: "device busy",
-	17: "file exists",
-	18: "cross-device link",
-	19: "operation not supported by device",
-	20: "not a directory",
-	21: "is a directory",
-	22: "invalid argument",
-	23: "too many open files in system",
-	24: "too many open files",
-	25: "inappropriate ioctl for device",
-	26: "text file busy",
-	27: "file too large",
-	28: "no space left on device",
-	29: "illegal seek",
-	30: "read-only file system",
-	31: "too many links",
-	32: "broken pipe",
-	33: "numerical argument out of domain",
-	34: "result too large",
-	35: "resource temporarily unavailable",
-	36: "operation now in progress",
-	37: "operation already in progress",
-	38: "socket operation on non-socket",
-	39: "destination address required",
-	40: "message too long",
-	41: "protocol wrong type for socket",
-	42: "protocol not available",
-	43: "protocol not supported",
-	44: "socket type not supported",
-	45: "operation not supported",
-	46: "protocol family not supported",
-	47: "address family not supported by protocol family",
-	48: "address already in use",
-	49: "can't assign requested address",
-	50: "network is down",
-	51: "network is unreachable",
-	52: "network dropped connection on reset",
-	53: "software caused connection abort",
-	54: "connection reset by peer",
-	55: "no buffer space available",
-	56: "socket is already connected",
-	57: "socket is not connected",
-	58: "can't send after socket shutdown",
-	59: "too many references: can't splice",
-	60: "connection timed out",
-	61: "connection refused",
-	62: "too many levels of symbolic links",
-	63: "file name too long",
-	64: "host is down",
-	65: "no route to host",
-	66: "directory not empty",
-	67: "too many processes",
-	68: "too many users",
-	69: "disc quota exceeded",
-	70: "stale NFS file handle",
-	71: "too many levels of remote in path",
-	72: "RPC struct is bad",
-	73: "RPC version wrong",
-	74: "RPC prog. not avail",
-	75: "program version wrong",
-	76: "bad procedure for program",
-	77: "no locks available",
-	78: "function not implemented",
-	79: "inappropriate file type or format",
-	80: "authentication error",
-	81: "need authenticator",
-	82: "IPsec processing failure",
-	83: "attribute not found",
-	84: "illegal byte sequence",
-	85: "no medium found",
-	86: "wrong medium type",
-	87: "value too large to be stored in data type",
-	88: "operation canceled",
-	89: "identifier removed",
-	90: "no message of desired type",
-	91: "not supported",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "operation not permitted"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "input/output error"},
+	{6, "ENXIO", "device not configured"},
+	{7, "E2BIG", "argument list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file descriptor"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EDEADLK", "resource deadlock avoided"},
+	{12, "ENOMEM", "cannot allocate memory"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "operation not supported by device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "too many open files in system"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "numerical argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "EWOULDBLOCK", "resource temporarily unavailable"},
+	{36, "EINPROGRESS", "operation now in progress"},
+	{37, "EALREADY", "operation already in progress"},
+	{38, "ENOTSOCK", "socket operation on non-socket"},
+	{39, "EDESTADDRREQ", "destination address required"},
+	{40, "EMSGSIZE", "message too long"},
+	{41, "EPROTOTYPE", "protocol wrong type for socket"},
+	{42, "ENOPROTOOPT", "protocol not available"},
+	{43, "EPROTONOSUPPORT", "protocol not supported"},
+	{44, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{45, "EOPNOTSUPP", "operation not supported"},
+	{46, "EPFNOSUPPORT", "protocol family not supported"},
+	{47, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{48, "EADDRINUSE", "address already in use"},
+	{49, "EADDRNOTAVAIL", "can't assign requested address"},
+	{50, "ENETDOWN", "network is down"},
+	{51, "ENETUNREACH", "network is unreachable"},
+	{52, "ENETRESET", "network dropped connection on reset"},
+	{53, "ECONNABORTED", "software caused connection abort"},
+	{54, "ECONNRESET", "connection reset by peer"},
+	{55, "ENOBUFS", "no buffer space available"},
+	{56, "EISCONN", "socket is already connected"},
+	{57, "ENOTCONN", "socket is not connected"},
+	{58, "ESHUTDOWN", "can't send after socket shutdown"},
+	{59, "ETOOMANYREFS", "too many references: can't splice"},
+	{60, "ETIMEDOUT", "operation timed out"},
+	{61, "ECONNREFUSED", "connection refused"},
+	{62, "ELOOP", "too many levels of symbolic links"},
+	{63, "ENAMETOOLONG", "file name too long"},
+	{64, "EHOSTDOWN", "host is down"},
+	{65, "EHOSTUNREACH", "no route to host"},
+	{66, "ENOTEMPTY", "directory not empty"},
+	{67, "EPROCLIM", "too many processes"},
+	{68, "EUSERS", "too many users"},
+	{69, "EDQUOT", "disk quota exceeded"},
+	{70, "ESTALE", "stale NFS file handle"},
+	{71, "EREMOTE", "too many levels of remote in path"},
+	{72, "EBADRPC", "RPC struct is bad"},
+	{73, "ERPCMISMATCH", "RPC version wrong"},
+	{74, "EPROGUNAVAIL", "RPC program not available"},
+	{75, "EPROGMISMATCH", "program version wrong"},
+	{76, "EPROCUNAVAIL", "bad procedure for program"},
+	{77, "ENOLCK", "no locks available"},
+	{78, "ENOSYS", "function not implemented"},
+	{79, "EFTYPE", "inappropriate file type or format"},
+	{80, "EAUTH", "authentication error"},
+	{81, "ENEEDAUTH", "need authenticator"},
+	{82, "EIPSEC", "IPsec processing failure"},
+	{83, "ENOATTR", "attribute not found"},
+	{84, "EILSEQ", "illegal byte sequence"},
+	{85, "ENOMEDIUM", "no medium found"},
+	{86, "EMEDIUMTYPE", "wrong medium type"},
+	{87, "EOVERFLOW", "value too large to be stored in data type"},
+	{88, "ECANCELED", "operation canceled"},
+	{89, "EIDRM", "identifier removed"},
+	{90, "ENOMSG", "no message of desired type"},
+	{91, "ELAST", "not supported"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal instruction",
-	5:  "trace/BPT trap",
-	6:  "abort trap",
-	7:  "EMT trap",
-	8:  "floating point exception",
-	9:  "killed",
-	10: "bus error",
-	11: "segmentation fault",
-	12: "bad system call",
-	13: "broken pipe",
-	14: "alarm clock",
-	15: "terminated",
-	16: "urgent I/O condition",
-	17: "stopped (signal)",
-	18: "stopped",
-	19: "continued",
-	20: "child exited",
-	21: "stopped (tty input)",
-	22: "stopped (tty output)",
-	23: "I/O possible",
-	24: "cputime limit exceeded",
-	25: "filesize limit exceeded",
-	26: "virtual timer expired",
-	27: "profiling timer expired",
-	28: "window size changes",
-	29: "information request",
-	30: "user defined signal 1",
-	31: "user defined signal 2",
-	32: "thread AST",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal instruction"},
+	{5, "SIGTRAP", "trace/BPT trap"},
+	{6, "SIGABRT", "abort trap"},
+	{7, "SIGEMT", "EMT trap"},
+	{8, "SIGFPE", "floating point exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus error"},
+	{11, "SIGSEGV", "segmentation fault"},
+	{12, "SIGSYS", "bad system call"},
+	{13, "SIGPIPE", "broken pipe"},
+	{14, "SIGALRM", "alarm clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGURG", "urgent I/O condition"},
+	{17, "SIGSTOP", "suspended (signal)"},
+	{18, "SIGTSTP", "suspended"},
+	{19, "SIGCONT", "continued"},
+	{20, "SIGCHLD", "child exited"},
+	{21, "SIGTTIN", "stopped (tty input)"},
+	{22, "SIGTTOU", "stopped (tty output)"},
+	{23, "SIGIO", "I/O possible"},
+	{24, "SIGXCPU", "cputime limit exceeded"},
+	{25, "SIGXFSZ", "filesize limit exceeded"},
+	{26, "SIGVTALRM", "virtual timer expired"},
+	{27, "SIGPROF", "profiling timer expired"},
+	{28, "SIGWINCH", "window size changes"},
+	{29, "SIGINFO", "information request"},
+	{30, "SIGUSR1", "user defined signal 1"},
+	{31, "SIGUSR2", "user defined signal 2"},
+	{32, "SIGTHR", "thread AST"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zerrors_solaris_amd64.go b/vendor/golang.org/x/sys/unix/zerrors_solaris_amd64.go
index 09eedb0093..be42830cf3 100644
--- a/vendor/golang.org/x/sys/unix/zerrors_solaris_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zerrors_solaris_amd64.go
@@ -1319,171 +1319,179 @@ const (
 )
 
 // Error table
-var errors = [...]string{
-	1:   "not owner",
-	2:   "no such file or directory",
-	3:   "no such process",
-	4:   "interrupted system call",
-	5:   "I/O error",
-	6:   "no such device or address",
-	7:   "arg list too long",
-	8:   "exec format error",
-	9:   "bad file number",
-	10:  "no child processes",
-	11:  "resource temporarily unavailable",
-	12:  "not enough space",
-	13:  "permission denied",
-	14:  "bad address",
-	15:  "block device required",
-	16:  "device busy",
-	17:  "file exists",
-	18:  "cross-device link",
-	19:  "no such device",
-	20:  "not a directory",
-	21:  "is a directory",
-	22:  "invalid argument",
-	23:  "file table overflow",
-	24:  "too many open files",
-	25:  "inappropriate ioctl for device",
-	26:  "text file busy",
-	27:  "file too large",
-	28:  "no space left on device",
-	29:  "illegal seek",
-	30:  "read-only file system",
-	31:  "too many links",
-	32:  "broken pipe",
-	33:  "argument out of domain",
-	34:  "result too large",
-	35:  "no message of desired type",
-	36:  "identifier removed",
-	37:  "channel number out of range",
-	38:  "level 2 not synchronized",
-	39:  "level 3 halted",
-	40:  "level 3 reset",
-	41:  "link number out of range",
-	42:  "protocol driver not attached",
-	43:  "no CSI structure available",
-	44:  "level 2 halted",
-	45:  "deadlock situation detected/avoided",
-	46:  "no record locks available",
-	47:  "operation canceled",
-	48:  "operation not supported",
-	49:  "disc quota exceeded",
-	50:  "bad exchange descriptor",
-	51:  "bad request descriptor",
-	52:  "message tables full",
-	53:  "anode table overflow",
-	54:  "bad request code",
-	55:  "invalid slot",
-	56:  "file locking deadlock",
-	57:  "bad font file format",
-	58:  "owner of the lock died",
-	59:  "lock is not recoverable",
-	60:  "not a stream device",
-	61:  "no data available",
-	62:  "timer expired",
-	63:  "out of stream resources",
-	64:  "machine is not on the network",
-	65:  "package not installed",
-	66:  "object is remote",
-	67:  "link has been severed",
-	68:  "advertise error",
-	69:  "srmount error",
-	70:  "communication error on send",
-	71:  "protocol error",
-	72:  "locked lock was unmapped ",
-	73:  "facility is not active",
-	74:  "multihop attempted",
-	77:  "not a data message",
-	78:  "file name too long",
-	79:  "value too large for defined data type",
-	80:  "name not unique on network",
-	81:  "file descriptor in bad state",
-	82:  "remote address changed",
-	83:  "can not access a needed shared library",
-	84:  "accessing a corrupted shared library",
-	85:  ".lib section in a.out corrupted",
-	86:  "attempting to link in more shared libraries than system limit",
-	87:  "can not exec a shared library directly",
-	88:  "illegal byte sequence",
-	89:  "operation not applicable",
-	90:  "number of symbolic links encountered during path name traversal exceeds MAXSYMLINKS",
-	91:  "error 91",
-	92:  "error 92",
-	93:  "directory not empty",
-	94:  "too many users",
-	95:  "socket operation on non-socket",
-	96:  "destination address required",
-	97:  "message too long",
-	98:  "protocol wrong type for socket",
-	99:  "option not supported by protocol",
-	120: "protocol not supported",
-	121: "socket type not supported",
-	122: "operation not supported on transport endpoint",
-	123: "protocol family not supported",
-	124: "address family not supported by protocol family",
-	125: "address already in use",
-	126: "cannot assign requested address",
-	127: "network is down",
-	128: "network is unreachable",
-	129: "network dropped connection because of reset",
-	130: "software caused connection abort",
-	131: "connection reset by peer",
-	132: "no buffer space available",
-	133: "transport endpoint is already connected",
-	134: "transport endpoint is not connected",
-	143: "cannot send after socket shutdown",
-	144: "too many references: cannot splice",
-	145: "connection timed out",
-	146: "connection refused",
-	147: "host is down",
-	148: "no route to host",
-	149: "operation already in progress",
-	150: "operation now in progress",
-	151: "stale NFS file handle",
+var errorList = [...]struct {
+	num  syscall.Errno
+	name string
+	desc string
+}{
+	{1, "EPERM", "not owner"},
+	{2, "ENOENT", "no such file or directory"},
+	{3, "ESRCH", "no such process"},
+	{4, "EINTR", "interrupted system call"},
+	{5, "EIO", "I/O error"},
+	{6, "ENXIO", "no such device or address"},
+	{7, "E2BIG", "arg list too long"},
+	{8, "ENOEXEC", "exec format error"},
+	{9, "EBADF", "bad file number"},
+	{10, "ECHILD", "no child processes"},
+	{11, "EAGAIN", "resource temporarily unavailable"},
+	{12, "ENOMEM", "not enough space"},
+	{13, "EACCES", "permission denied"},
+	{14, "EFAULT", "bad address"},
+	{15, "ENOTBLK", "block device required"},
+	{16, "EBUSY", "device busy"},
+	{17, "EEXIST", "file exists"},
+	{18, "EXDEV", "cross-device link"},
+	{19, "ENODEV", "no such device"},
+	{20, "ENOTDIR", "not a directory"},
+	{21, "EISDIR", "is a directory"},
+	{22, "EINVAL", "invalid argument"},
+	{23, "ENFILE", "file table overflow"},
+	{24, "EMFILE", "too many open files"},
+	{25, "ENOTTY", "inappropriate ioctl for device"},
+	{26, "ETXTBSY", "text file busy"},
+	{27, "EFBIG", "file too large"},
+	{28, "ENOSPC", "no space left on device"},
+	{29, "ESPIPE", "illegal seek"},
+	{30, "EROFS", "read-only file system"},
+	{31, "EMLINK", "too many links"},
+	{32, "EPIPE", "broken pipe"},
+	{33, "EDOM", "argument out of domain"},
+	{34, "ERANGE", "result too large"},
+	{35, "ENOMSG", "no message of desired type"},
+	{36, "EIDRM", "identifier removed"},
+	{37, "ECHRNG", "channel number out of range"},
+	{38, "EL2NSYNC", "level 2 not synchronized"},
+	{39, "EL3HLT", "level 3 halted"},
+	{40, "EL3RST", "level 3 reset"},
+	{41, "ELNRNG", "link number out of range"},
+	{42, "EUNATCH", "protocol driver not attached"},
+	{43, "ENOCSI", "no CSI structure available"},
+	{44, "EL2HLT", "level 2 halted"},
+	{45, "EDEADLK", "deadlock situation detected/avoided"},
+	{46, "ENOLCK", "no record locks available"},
+	{47, "ECANCELED", "operation canceled"},
+	{48, "ENOTSUP", "operation not supported"},
+	{49, "EDQUOT", "disc quota exceeded"},
+	{50, "EBADE", "bad exchange descriptor"},
+	{51, "EBADR", "bad request descriptor"},
+	{52, "EXFULL", "message tables full"},
+	{53, "ENOANO", "anode table overflow"},
+	{54, "EBADRQC", "bad request code"},
+	{55, "EBADSLT", "invalid slot"},
+	{56, "EDEADLOCK", "file locking deadlock"},
+	{57, "EBFONT", "bad font file format"},
+	{58, "EOWNERDEAD", "owner of the lock died"},
+	{59, "ENOTRECOVERABLE", "lock is not recoverable"},
+	{60, "ENOSTR", "not a stream device"},
+	{61, "ENODATA", "no data available"},
+	{62, "ETIME", "timer expired"},
+	{63, "ENOSR", "out of stream resources"},
+	{64, "ENONET", "machine is not on the network"},
+	{65, "ENOPKG", "package not installed"},
+	{66, "EREMOTE", "object is remote"},
+	{67, "ENOLINK", "link has been severed"},
+	{68, "EADV", "advertise error"},
+	{69, "ESRMNT", "srmount error"},
+	{70, "ECOMM", "communication error on send"},
+	{71, "EPROTO", "protocol error"},
+	{72, "ELOCKUNMAPPED", "locked lock was unmapped "},
+	{73, "ENOTACTIVE", "facility is not active"},
+	{74, "EMULTIHOP", "multihop attempted"},
+	{77, "EBADMSG", "not a data message"},
+	{78, "ENAMETOOLONG", "file name too long"},
+	{79, "EOVERFLOW", "value too large for defined data type"},
+	{80, "ENOTUNIQ", "name not unique on network"},
+	{81, "EBADFD", "file descriptor in bad state"},
+	{82, "EREMCHG", "remote address changed"},
+	{83, "ELIBACC", "can not access a needed shared library"},
+	{84, "ELIBBAD", "accessing a corrupted shared library"},
+	{85, "ELIBSCN", ".lib section in a.out corrupted"},
+	{86, "ELIBMAX", "attempting to link in more shared libraries than system limit"},
+	{87, "ELIBEXEC", "can not exec a shared library directly"},
+	{88, "EILSEQ", "illegal byte sequence"},
+	{89, "ENOSYS", "operation not applicable"},
+	{90, "ELOOP", "number of symbolic links encountered during path name traversal exceeds MAXSYMLINKS"},
+	{91, "ERESTART", "error 91"},
+	{92, "ESTRPIPE", "error 92"},
+	{93, "ENOTEMPTY", "directory not empty"},
+	{94, "EUSERS", "too many users"},
+	{95, "ENOTSOCK", "socket operation on non-socket"},
+	{96, "EDESTADDRREQ", "destination address required"},
+	{97, "EMSGSIZE", "message too long"},
+	{98, "EPROTOTYPE", "protocol wrong type for socket"},
+	{99, "ENOPROTOOPT", "option not supported by protocol"},
+	{120, "EPROTONOSUPPORT", "protocol not supported"},
+	{121, "ESOCKTNOSUPPORT", "socket type not supported"},
+	{122, "EOPNOTSUPP", "operation not supported on transport endpoint"},
+	{123, "EPFNOSUPPORT", "protocol family not supported"},
+	{124, "EAFNOSUPPORT", "address family not supported by protocol family"},
+	{125, "EADDRINUSE", "address already in use"},
+	{126, "EADDRNOTAVAIL", "cannot assign requested address"},
+	{127, "ENETDOWN", "network is down"},
+	{128, "ENETUNREACH", "network is unreachable"},
+	{129, "ENETRESET", "network dropped connection because of reset"},
+	{130, "ECONNABORTED", "software caused connection abort"},
+	{131, "ECONNRESET", "connection reset by peer"},
+	{132, "ENOBUFS", "no buffer space available"},
+	{133, "EISCONN", "transport endpoint is already connected"},
+	{134, "ENOTCONN", "transport endpoint is not connected"},
+	{143, "ESHUTDOWN", "cannot send after socket shutdown"},
+	{144, "ETOOMANYREFS", "too many references: cannot splice"},
+	{145, "ETIMEDOUT", "connection timed out"},
+	{146, "ECONNREFUSED", "connection refused"},
+	{147, "EHOSTDOWN", "host is down"},
+	{148, "EHOSTUNREACH", "no route to host"},
+	{149, "EALREADY", "operation already in progress"},
+	{150, "EINPROGRESS", "operation now in progress"},
+	{151, "ESTALE", "stale NFS file handle"},
 }
 
 // Signal table
-var signals = [...]string{
-	1:  "hangup",
-	2:  "interrupt",
-	3:  "quit",
-	4:  "illegal Instruction",
-	5:  "trace/Breakpoint Trap",
-	6:  "abort",
-	7:  "emulation Trap",
-	8:  "arithmetic Exception",
-	9:  "killed",
-	10: "bus Error",
-	11: "segmentation Fault",
-	12: "bad System Call",
-	13: "broken Pipe",
-	14: "alarm Clock",
-	15: "terminated",
-	16: "user Signal 1",
-	17: "user Signal 2",
-	18: "child Status Changed",
-	19: "power-Fail/Restart",
-	20: "window Size Change",
-	21: "urgent Socket Condition",
-	22: "pollable Event",
-	23: "stopped (signal)",
-	24: "stopped (user)",
-	25: "continued",
-	26: "stopped (tty input)",
-	27: "stopped (tty output)",
-	28: "virtual Timer Expired",
-	29: "profiling Timer Expired",
-	30: "cpu Limit Exceeded",
-	31: "file Size Limit Exceeded",
-	32: "no runnable lwp",
-	33: "inter-lwp signal",
-	34: "checkpoint Freeze",
-	35: "checkpoint Thaw",
-	36: "thread Cancellation",
-	37: "resource Lost",
-	38: "resource Control Exceeded",
-	39: "reserved for JVM 1",
-	40: "reserved for JVM 2",
-	41: "information Request",
+var signalList = [...]struct {
+	num  syscall.Signal
+	name string
+	desc string
+}{
+	{1, "SIGHUP", "hangup"},
+	{2, "SIGINT", "interrupt"},
+	{3, "SIGQUIT", "quit"},
+	{4, "SIGILL", "illegal Instruction"},
+	{5, "SIGTRAP", "trace/Breakpoint Trap"},
+	{6, "SIGABRT", "abort"},
+	{7, "SIGEMT", "emulation Trap"},
+	{8, "SIGFPE", "arithmetic Exception"},
+	{9, "SIGKILL", "killed"},
+	{10, "SIGBUS", "bus Error"},
+	{11, "SIGSEGV", "segmentation Fault"},
+	{12, "SIGSYS", "bad System Call"},
+	{13, "SIGPIPE", "broken Pipe"},
+	{14, "SIGALRM", "alarm Clock"},
+	{15, "SIGTERM", "terminated"},
+	{16, "SIGUSR1", "user Signal 1"},
+	{17, "SIGUSR2", "user Signal 2"},
+	{18, "SIGCHLD", "child Status Changed"},
+	{19, "SIGPWR", "power-Fail/Restart"},
+	{20, "SIGWINCH", "window Size Change"},
+	{21, "SIGURG", "urgent Socket Condition"},
+	{22, "SIGIO", "pollable Event"},
+	{23, "SIGSTOP", "stopped (signal)"},
+	{24, "SIGTSTP", "stopped (user)"},
+	{25, "SIGCONT", "continued"},
+	{26, "SIGTTIN", "stopped (tty input)"},
+	{27, "SIGTTOU", "stopped (tty output)"},
+	{28, "SIGVTALRM", "virtual Timer Expired"},
+	{29, "SIGPROF", "profiling Timer Expired"},
+	{30, "SIGXCPU", "cpu Limit Exceeded"},
+	{31, "SIGXFSZ", "file Size Limit Exceeded"},
+	{32, "SIGWAITING", "no runnable lwp"},
+	{33, "SIGLWP", "inter-lwp signal"},
+	{34, "SIGFREEZE", "checkpoint Freeze"},
+	{35, "SIGTHAW", "checkpoint Thaw"},
+	{36, "SIGCANCEL", "thread Cancellation"},
+	{37, "SIGLOST", "resource Lost"},
+	{38, "SIGXRES", "resource Control Exceeded"},
+	{39, "SIGJVM1", "reserved for JVM 1"},
+	{40, "SIGJVM2", "reserved for JVM 2"},
+	{41, "SIGINFO", "information Request"},
 }
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
index 34c5be0fe5..33c02b2695 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_amd64.go
@@ -1795,17 +1795,6 @@ func Seek(fd int, offset int64, whence int) (off int64, err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
-func Select(nfd int, r *FdSet, w *FdSet, e *FdSet, timeout *Timeval) (n int, err error) {
-	r0, _, e1 := Syscall6(SYS_SELECT, uintptr(nfd), uintptr(unsafe.Pointer(r)), uintptr(unsafe.Pointer(w)), uintptr(unsafe.Pointer(e)), uintptr(unsafe.Pointer(timeout)), 0)
-	n = int(r0)
-	if e1 != 0 {
-		err = errnoErr(e1)
-	}
-	return
-}
-
-// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
-
 func sendfile(outfd int, infd int, offset *int64, count int) (written int, err error) {
 	r0, _, e1 := Syscall6(SYS_SENDFILE, uintptr(outfd), uintptr(infd), uintptr(unsafe.Pointer(offset)), uintptr(count), 0, 0)
 	written = int(r0)
@@ -1908,21 +1897,6 @@ func Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n i
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
-func Stat(path string, stat *Stat_t) (err error) {
-	var _p0 *byte
-	_p0, err = BytePtrFromString(path)
-	if err != nil {
-		return
-	}
-	_, _, e1 := Syscall(SYS_STAT, uintptr(unsafe.Pointer(_p0)), uintptr(unsafe.Pointer(stat)), 0)
-	if e1 != 0 {
-		err = errnoErr(e1)
-	}
-	return
-}
-
-// THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
-
 func Statfs(path string, buf *Statfs_t) (err error) {
 	var _p0 *byte
 	_p0, err = BytePtrFromString(path)
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
index bfd415b34d..970a5c132d 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mips.go
@@ -1758,9 +1758,9 @@ func Shutdown(fd int, how int) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
-func Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int64, err error) {
-	r0, r1, e1 := Syscall6(SYS_SPLICE, uintptr(rfd), uintptr(unsafe.Pointer(roff)), uintptr(wfd), uintptr(unsafe.Pointer(woff)), uintptr(len), uintptr(flags))
-	n = int64(int64(r0)<<32 | int64(r1))
+func Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int, err error) {
+	r0, _, e1 := Syscall6(SYS_SPLICE, uintptr(rfd), uintptr(unsafe.Pointer(roff)), uintptr(wfd), uintptr(unsafe.Pointer(woff)), uintptr(len), uintptr(flags))
+	n = int(r0)
 	if e1 != 0 {
 		err = errnoErr(e1)
 	}
diff --git a/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go b/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
index 93c1dc2317..a9c7e520e4 100644
--- a/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
+++ b/vendor/golang.org/x/sys/unix/zsyscall_linux_mipsle.go
@@ -1758,9 +1758,9 @@ func Shutdown(fd int, how int) (err error) {
 
 // THIS FILE IS GENERATED BY THE COMMAND AT THE TOP; DO NOT EDIT
 
-func Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int64, err error) {
-	r0, r1, e1 := Syscall6(SYS_SPLICE, uintptr(rfd), uintptr(unsafe.Pointer(roff)), uintptr(wfd), uintptr(unsafe.Pointer(woff)), uintptr(len), uintptr(flags))
-	n = int64(int64(r1)<<32 | int64(r0))
+func Splice(rfd int, roff *int64, wfd int, woff *int64, len int, flags int) (n int, err error) {
+	r0, _, e1 := Syscall6(SYS_SPLICE, uintptr(rfd), uintptr(unsafe.Pointer(roff)), uintptr(wfd), uintptr(unsafe.Pointer(woff)), uintptr(len), uintptr(flags))
+	n = int(r0)
 	if e1 != 0 {
 		err = errnoErr(e1)
 	}
diff --git a/vendor/golang.org/x/sys/windows/registry/key.go b/vendor/golang.org/x/sys/windows/registry/key.go
new file mode 100644
index 0000000000..c256483434
--- /dev/null
+++ b/vendor/golang.org/x/sys/windows/registry/key.go
@@ -0,0 +1,198 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build windows
+
+// Package registry provides access to the Windows registry.
+//
+// Here is a simple example, opening a registry key and reading a string value from it.
+//
+//	k, err := registry.OpenKey(registry.LOCAL_MACHINE, `SOFTWARE\Microsoft\Windows NT\CurrentVersion`, registry.QUERY_VALUE)
+//	if err != nil {
+//		log.Fatal(err)
+//	}
+//	defer k.Close()
+//
+//	s, _, err := k.GetStringValue("SystemRoot")
+//	if err != nil {
+//		log.Fatal(err)
+//	}
+//	fmt.Printf("Windows system root is %q\n", s)
+//
+package registry
+
+import (
+	"io"
+	"syscall"
+	"time"
+)
+
+const (
+	// Registry key security and access rights.
+	// See https://msdn.microsoft.com/en-us/library/windows/desktop/ms724878.aspx
+	// for details.
+	ALL_ACCESS         = 0xf003f
+	CREATE_LINK        = 0x00020
+	CREATE_SUB_KEY     = 0x00004
+	ENUMERATE_SUB_KEYS = 0x00008
+	EXECUTE            = 0x20019
+	NOTIFY             = 0x00010
+	QUERY_VALUE        = 0x00001
+	READ               = 0x20019
+	SET_VALUE          = 0x00002
+	WOW64_32KEY        = 0x00200
+	WOW64_64KEY        = 0x00100
+	WRITE              = 0x20006
+)
+
+// Key is a handle to an open Windows registry key.
+// Keys can be obtained by calling OpenKey; there are
+// also some predefined root keys such as CURRENT_USER.
+// Keys can be used directly in the Windows API.
+type Key syscall.Handle
+
+const (
+	// Windows defines some predefined root keys that are always open.
+	// An application can use these keys as entry points to the registry.
+	// Normally these keys are used in OpenKey to open new keys,
+	// but they can also be used anywhere a Key is required.
+	CLASSES_ROOT     = Key(syscall.HKEY_CLASSES_ROOT)
+	CURRENT_USER     = Key(syscall.HKEY_CURRENT_USER)
+	LOCAL_MACHINE    = Key(syscall.HKEY_LOCAL_MACHINE)
+	USERS            = Key(syscall.HKEY_USERS)
+	CURRENT_CONFIG   = Key(syscall.HKEY_CURRENT_CONFIG)
+	PERFORMANCE_DATA = Key(syscall.HKEY_PERFORMANCE_DATA)
+)
+
+// Close closes open key k.
+func (k Key) Close() error {
+	return syscall.RegCloseKey(syscall.Handle(k))
+}
+
+// OpenKey opens a new key with path name relative to key k.
+// It accepts any open key, including CURRENT_USER and others,
+// and returns the new key and an error.
+// The access parameter specifies desired access rights to the
+// key to be opened.
+func OpenKey(k Key, path string, access uint32) (Key, error) {
+	p, err := syscall.UTF16PtrFromString(path)
+	if err != nil {
+		return 0, err
+	}
+	var subkey syscall.Handle
+	err = syscall.RegOpenKeyEx(syscall.Handle(k), p, 0, access, &subkey)
+	if err != nil {
+		return 0, err
+	}
+	return Key(subkey), nil
+}
+
+// OpenRemoteKey opens a predefined registry key on another
+// computer pcname. The key to be opened is specified by k, but
+// can only be one of LOCAL_MACHINE, PERFORMANCE_DATA or USERS.
+// If pcname is "", OpenRemoteKey returns local computer key.
+func OpenRemoteKey(pcname string, k Key) (Key, error) {
+	var err error
+	var p *uint16
+	if pcname != "" {
+		p, err = syscall.UTF16PtrFromString(`\\` + pcname)
+		if err != nil {
+			return 0, err
+		}
+	}
+	var remoteKey syscall.Handle
+	err = regConnectRegistry(p, syscall.Handle(k), &remoteKey)
+	if err != nil {
+		return 0, err
+	}
+	return Key(remoteKey), nil
+}
+
+// ReadSubKeyNames returns the names of subkeys of key k.
+// The parameter n controls the number of returned names,
+// analogous to the way os.File.Readdirnames works.
+func (k Key) ReadSubKeyNames(n int) ([]string, error) {
+	names := make([]string, 0)
+	// Registry key size limit is 255 bytes and described there:
+	// https://msdn.microsoft.com/library/windows/desktop/ms724872.aspx
+	buf := make([]uint16, 256) //plus extra room for terminating zero byte
+loopItems:
+	for i := uint32(0); ; i++ {
+		if n > 0 {
+			if len(names) == n {
+				return names, nil
+			}
+		}
+		l := uint32(len(buf))
+		for {
+			err := syscall.RegEnumKeyEx(syscall.Handle(k), i, &buf[0], &l, nil, nil, nil, nil)
+			if err == nil {
+				break
+			}
+			if err == syscall.ERROR_MORE_DATA {
+				// Double buffer size and try again.
+				l = uint32(2 * len(buf))
+				buf = make([]uint16, l)
+				continue
+			}
+			if err == _ERROR_NO_MORE_ITEMS {
+				break loopItems
+			}
+			return names, err
+		}
+		names = append(names, syscall.UTF16ToString(buf[:l]))
+	}
+	if n > len(names) {
+		return names, io.EOF
+	}
+	return names, nil
+}
+
+// CreateKey creates a key named path under open key k.
+// CreateKey returns the new key and a boolean flag that reports
+// whether the key already existed.
+// The access parameter specifies the access rights for the key
+// to be created.
+func CreateKey(k Key, path string, access uint32) (newk Key, openedExisting bool, err error) {
+	var h syscall.Handle
+	var d uint32
+	err = regCreateKeyEx(syscall.Handle(k), syscall.StringToUTF16Ptr(path),
+		0, nil, _REG_OPTION_NON_VOLATILE, access, nil, &h, &d)
+	if err != nil {
+		return 0, false, err
+	}
+	return Key(h), d == _REG_OPENED_EXISTING_KEY, nil
+}
+
+// DeleteKey deletes the subkey path of key k and its values.
+func DeleteKey(k Key, path string) error {
+	return regDeleteKey(syscall.Handle(k), syscall.StringToUTF16Ptr(path))
+}
+
+// A KeyInfo describes the statistics of a key. It is returned by Stat.
+type KeyInfo struct {
+	SubKeyCount     uint32
+	MaxSubKeyLen    uint32 // size of the key's subkey with the longest name, in Unicode characters, not including the terminating zero byte
+	ValueCount      uint32
+	MaxValueNameLen uint32 // size of the key's longest value name, in Unicode characters, not including the terminating zero byte
+	MaxValueLen     uint32 // longest data component among the key's values, in bytes
+	lastWriteTime   syscall.Filetime
+}
+
+// ModTime returns the key's last write time.
+func (ki *KeyInfo) ModTime() time.Time {
+	return time.Unix(0, ki.lastWriteTime.Nanoseconds())
+}
+
+// Stat retrieves information about the open key k.
+func (k Key) Stat() (*KeyInfo, error) {
+	var ki KeyInfo
+	err := syscall.RegQueryInfoKey(syscall.Handle(k), nil, nil, nil,
+		&ki.SubKeyCount, &ki.MaxSubKeyLen, nil, &ki.ValueCount,
+		&ki.MaxValueNameLen, &ki.MaxValueLen, nil, &ki.lastWriteTime)
+	if err != nil {
+		return nil, err
+	}
+	return &ki, nil
+}
diff --git a/vendor/golang.org/x/sys/windows/registry/mksyscall.go b/vendor/golang.org/x/sys/windows/registry/mksyscall.go
new file mode 100644
index 0000000000..0ac95ffe73
--- /dev/null
+++ b/vendor/golang.org/x/sys/windows/registry/mksyscall.go
@@ -0,0 +1,7 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+package registry
+
+//go:generate go run $GOROOT/src/syscall/mksyscall_windows.go -output zsyscall_windows.go syscall.go
diff --git a/vendor/golang.org/x/sys/windows/registry/syscall.go b/vendor/golang.org/x/sys/windows/registry/syscall.go
new file mode 100644
index 0000000000..e66643cbaa
--- /dev/null
+++ b/vendor/golang.org/x/sys/windows/registry/syscall.go
@@ -0,0 +1,32 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build windows
+
+package registry
+
+import "syscall"
+
+const (
+	_REG_OPTION_NON_VOLATILE = 0
+
+	_REG_CREATED_NEW_KEY     = 1
+	_REG_OPENED_EXISTING_KEY = 2
+
+	_ERROR_NO_MORE_ITEMS syscall.Errno = 259
+)
+
+func LoadRegLoadMUIString() error {
+	return procRegLoadMUIStringW.Find()
+}
+
+//sys	regCreateKeyEx(key syscall.Handle, subkey *uint16, reserved uint32, class *uint16, options uint32, desired uint32, sa *syscall.SecurityAttributes, result *syscall.Handle, disposition *uint32) (regerrno error) = advapi32.RegCreateKeyExW
+//sys	regDeleteKey(key syscall.Handle, subkey *uint16) (regerrno error) = advapi32.RegDeleteKeyW
+//sys	regSetValueEx(key syscall.Handle, valueName *uint16, reserved uint32, vtype uint32, buf *byte, bufsize uint32) (regerrno error) = advapi32.RegSetValueExW
+//sys	regEnumValue(key syscall.Handle, index uint32, name *uint16, nameLen *uint32, reserved *uint32, valtype *uint32, buf *byte, buflen *uint32) (regerrno error) = advapi32.RegEnumValueW
+//sys	regDeleteValue(key syscall.Handle, name *uint16) (regerrno error) = advapi32.RegDeleteValueW
+//sys   regLoadMUIString(key syscall.Handle, name *uint16, buf *uint16, buflen uint32, buflenCopied *uint32, flags uint32, dir *uint16) (regerrno error) = advapi32.RegLoadMUIStringW
+//sys	regConnectRegistry(machinename *uint16, key syscall.Handle, result *syscall.Handle) (regerrno error) = advapi32.RegConnectRegistryW
+
+//sys	expandEnvironmentStrings(src *uint16, dst *uint16, size uint32) (n uint32, err error) = kernel32.ExpandEnvironmentStringsW
diff --git a/vendor/golang.org/x/sys/windows/registry/value.go b/vendor/golang.org/x/sys/windows/registry/value.go
new file mode 100644
index 0000000000..71d4e15bab
--- /dev/null
+++ b/vendor/golang.org/x/sys/windows/registry/value.go
@@ -0,0 +1,384 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build windows
+
+package registry
+
+import (
+	"errors"
+	"io"
+	"syscall"
+	"unicode/utf16"
+	"unsafe"
+)
+
+const (
+	// Registry value types.
+	NONE                       = 0
+	SZ                         = 1
+	EXPAND_SZ                  = 2
+	BINARY                     = 3
+	DWORD                      = 4
+	DWORD_BIG_ENDIAN           = 5
+	LINK                       = 6
+	MULTI_SZ                   = 7
+	RESOURCE_LIST              = 8
+	FULL_RESOURCE_DESCRIPTOR   = 9
+	RESOURCE_REQUIREMENTS_LIST = 10
+	QWORD                      = 11
+)
+
+var (
+	// ErrShortBuffer is returned when the buffer was too short for the operation.
+	ErrShortBuffer = syscall.ERROR_MORE_DATA
+
+	// ErrNotExist is returned when a registry key or value does not exist.
+	ErrNotExist = syscall.ERROR_FILE_NOT_FOUND
+
+	// ErrUnexpectedType is returned by Get*Value when the value's type was unexpected.
+	ErrUnexpectedType = errors.New("unexpected key value type")
+)
+
+// GetValue retrieves the type and data for the specified value associated
+// with an open key k. It fills up buffer buf and returns the retrieved
+// byte count n. If buf is too small to fit the stored value it returns
+// ErrShortBuffer error along with the required buffer size n.
+// If no buffer is provided, it returns true and actual buffer size n.
+// If no buffer is provided, GetValue returns the value's type only.
+// If the value does not exist, the error returned is ErrNotExist.
+//
+// GetValue is a low level function. If value's type is known, use the appropriate
+// Get*Value function instead.
+func (k Key) GetValue(name string, buf []byte) (n int, valtype uint32, err error) {
+	pname, err := syscall.UTF16PtrFromString(name)
+	if err != nil {
+		return 0, 0, err
+	}
+	var pbuf *byte
+	if len(buf) > 0 {
+		pbuf = (*byte)(unsafe.Pointer(&buf[0]))
+	}
+	l := uint32(len(buf))
+	err = syscall.RegQueryValueEx(syscall.Handle(k), pname, nil, &valtype, pbuf, &l)
+	if err != nil {
+		return int(l), valtype, err
+	}
+	return int(l), valtype, nil
+}
+
+func (k Key) getValue(name string, buf []byte) (date []byte, valtype uint32, err error) {
+	p, err := syscall.UTF16PtrFromString(name)
+	if err != nil {
+		return nil, 0, err
+	}
+	var t uint32
+	n := uint32(len(buf))
+	for {
+		err = syscall.RegQueryValueEx(syscall.Handle(k), p, nil, &t, (*byte)(unsafe.Pointer(&buf[0])), &n)
+		if err == nil {
+			return buf[:n], t, nil
+		}
+		if err != syscall.ERROR_MORE_DATA {
+			return nil, 0, err
+		}
+		if n <= uint32(len(buf)) {
+			return nil, 0, err
+		}
+		buf = make([]byte, n)
+	}
+}
+
+// GetStringValue retrieves the string value for the specified
+// value name associated with an open key k. It also returns the value's type.
+// If value does not exist, GetStringValue returns ErrNotExist.
+// If value is not SZ or EXPAND_SZ, it will return the correct value
+// type and ErrUnexpectedType.
+func (k Key) GetStringValue(name string) (val string, valtype uint32, err error) {
+	data, typ, err2 := k.getValue(name, make([]byte, 64))
+	if err2 != nil {
+		return "", typ, err2
+	}
+	switch typ {
+	case SZ, EXPAND_SZ:
+	default:
+		return "", typ, ErrUnexpectedType
+	}
+	if len(data) == 0 {
+		return "", typ, nil
+	}
+	u := (*[1 << 29]uint16)(unsafe.Pointer(&data[0]))[:]
+	return syscall.UTF16ToString(u), typ, nil
+}
+
+// GetMUIStringValue retrieves the localized string value for
+// the specified value name associated with an open key k.
+// If the value name doesn't exist or the localized string value
+// can't be resolved, GetMUIStringValue returns ErrNotExist.
+// GetMUIStringValue panics if the system doesn't support
+// regLoadMUIString; use LoadRegLoadMUIString to check if
+// regLoadMUIString is supported before calling this function.
+func (k Key) GetMUIStringValue(name string) (string, error) {
+	pname, err := syscall.UTF16PtrFromString(name)
+	if err != nil {
+		return "", err
+	}
+
+	buf := make([]uint16, 1024)
+	var buflen uint32
+	var pdir *uint16
+
+	err = regLoadMUIString(syscall.Handle(k), pname, &buf[0], uint32(len(buf)), &buflen, 0, pdir)
+	if err == syscall.ERROR_FILE_NOT_FOUND { // Try fallback path
+
+		// Try to resolve the string value using the system directory as
+		// a DLL search path; this assumes the string value is of the form
+		// @[path]\dllname,-strID but with no path given, e.g. @tzres.dll,-320.
+
+		// This approach works with tzres.dll but may have to be revised
+		// in the future to allow callers to provide custom search paths.
+
+		var s string
+		s, err = ExpandString("%SystemRoot%\\system32\\")
+		if err != nil {
+			return "", err
+		}
+		pdir, err = syscall.UTF16PtrFromString(s)
+		if err != nil {
+			return "", err
+		}
+
+		err = regLoadMUIString(syscall.Handle(k), pname, &buf[0], uint32(len(buf)), &buflen, 0, pdir)
+	}
+
+	for err == syscall.ERROR_MORE_DATA { // Grow buffer if needed
+		if buflen <= uint32(len(buf)) {
+			break // Buffer not growing, assume race; break
+		}
+		buf = make([]uint16, buflen)
+		err = regLoadMUIString(syscall.Handle(k), pname, &buf[0], uint32(len(buf)), &buflen, 0, pdir)
+	}
+
+	if err != nil {
+		return "", err
+	}
+
+	return syscall.UTF16ToString(buf), nil
+}
+
+// ExpandString expands environment-variable strings and replaces
+// them with the values defined for the current user.
+// Use ExpandString to expand EXPAND_SZ strings.
+func ExpandString(value string) (string, error) {
+	if value == "" {
+		return "", nil
+	}
+	p, err := syscall.UTF16PtrFromString(value)
+	if err != nil {
+		return "", err
+	}
+	r := make([]uint16, 100)
+	for {
+		n, err := expandEnvironmentStrings(p, &r[0], uint32(len(r)))
+		if err != nil {
+			return "", err
+		}
+		if n <= uint32(len(r)) {
+			u := (*[1 << 29]uint16)(unsafe.Pointer(&r[0]))[:]
+			return syscall.UTF16ToString(u), nil
+		}
+		r = make([]uint16, n)
+	}
+}
+
+// GetStringsValue retrieves the []string value for the specified
+// value name associated with an open key k. It also returns the value's type.
+// If value does not exist, GetStringsValue returns ErrNotExist.
+// If value is not MULTI_SZ, it will return the correct value
+// type and ErrUnexpectedType.
+func (k Key) GetStringsValue(name string) (val []string, valtype uint32, err error) {
+	data, typ, err2 := k.getValue(name, make([]byte, 64))
+	if err2 != nil {
+		return nil, typ, err2
+	}
+	if typ != MULTI_SZ {
+		return nil, typ, ErrUnexpectedType
+	}
+	if len(data) == 0 {
+		return nil, typ, nil
+	}
+	p := (*[1 << 29]uint16)(unsafe.Pointer(&data[0]))[:len(data)/2]
+	if len(p) == 0 {
+		return nil, typ, nil
+	}
+	if p[len(p)-1] == 0 {
+		p = p[:len(p)-1] // remove terminating null
+	}
+	val = make([]string, 0, 5)
+	from := 0
+	for i, c := range p {
+		if c == 0 {
+			val = append(val, string(utf16.Decode(p[from:i])))
+			from = i + 1
+		}
+	}
+	return val, typ, nil
+}
+
+// GetIntegerValue retrieves the integer value for the specified
+// value name associated with an open key k. It also returns the value's type.
+// If value does not exist, GetIntegerValue returns ErrNotExist.
+// If value is not DWORD or QWORD, it will return the correct value
+// type and ErrUnexpectedType.
+func (k Key) GetIntegerValue(name string) (val uint64, valtype uint32, err error) {
+	data, typ, err2 := k.getValue(name, make([]byte, 8))
+	if err2 != nil {
+		return 0, typ, err2
+	}
+	switch typ {
+	case DWORD:
+		if len(data) != 4 {
+			return 0, typ, errors.New("DWORD value is not 4 bytes long")
+		}
+		return uint64(*(*uint32)(unsafe.Pointer(&data[0]))), DWORD, nil
+	case QWORD:
+		if len(data) != 8 {
+			return 0, typ, errors.New("QWORD value is not 8 bytes long")
+		}
+		return uint64(*(*uint64)(unsafe.Pointer(&data[0]))), QWORD, nil
+	default:
+		return 0, typ, ErrUnexpectedType
+	}
+}
+
+// GetBinaryValue retrieves the binary value for the specified
+// value name associated with an open key k. It also returns the value's type.
+// If value does not exist, GetBinaryValue returns ErrNotExist.
+// If value is not BINARY, it will return the correct value
+// type and ErrUnexpectedType.
+func (k Key) GetBinaryValue(name string) (val []byte, valtype uint32, err error) {
+	data, typ, err2 := k.getValue(name, make([]byte, 64))
+	if err2 != nil {
+		return nil, typ, err2
+	}
+	if typ != BINARY {
+		return nil, typ, ErrUnexpectedType
+	}
+	return data, typ, nil
+}
+
+func (k Key) setValue(name string, valtype uint32, data []byte) error {
+	p, err := syscall.UTF16PtrFromString(name)
+	if err != nil {
+		return err
+	}
+	if len(data) == 0 {
+		return regSetValueEx(syscall.Handle(k), p, 0, valtype, nil, 0)
+	}
+	return regSetValueEx(syscall.Handle(k), p, 0, valtype, &data[0], uint32(len(data)))
+}
+
+// SetDWordValue sets the data and type of a name value
+// under key k to value and DWORD.
+func (k Key) SetDWordValue(name string, value uint32) error {
+	return k.setValue(name, DWORD, (*[4]byte)(unsafe.Pointer(&value))[:])
+}
+
+// SetQWordValue sets the data and type of a name value
+// under key k to value and QWORD.
+func (k Key) SetQWordValue(name string, value uint64) error {
+	return k.setValue(name, QWORD, (*[8]byte)(unsafe.Pointer(&value))[:])
+}
+
+func (k Key) setStringValue(name string, valtype uint32, value string) error {
+	v, err := syscall.UTF16FromString(value)
+	if err != nil {
+		return err
+	}
+	buf := (*[1 << 29]byte)(unsafe.Pointer(&v[0]))[:len(v)*2]
+	return k.setValue(name, valtype, buf)
+}
+
+// SetStringValue sets the data and type of a name value
+// under key k to value and SZ. The value must not contain a zero byte.
+func (k Key) SetStringValue(name, value string) error {
+	return k.setStringValue(name, SZ, value)
+}
+
+// SetExpandStringValue sets the data and type of a name value
+// under key k to value and EXPAND_SZ. The value must not contain a zero byte.
+func (k Key) SetExpandStringValue(name, value string) error {
+	return k.setStringValue(name, EXPAND_SZ, value)
+}
+
+// SetStringsValue sets the data and type of a name value
+// under key k to value and MULTI_SZ. The value strings
+// must not contain a zero byte.
+func (k Key) SetStringsValue(name string, value []string) error {
+	ss := ""
+	for _, s := range value {
+		for i := 0; i < len(s); i++ {
+			if s[i] == 0 {
+				return errors.New("string cannot have 0 inside")
+			}
+		}
+		ss += s + "\x00"
+	}
+	v := utf16.Encode([]rune(ss + "\x00"))
+	buf := (*[1 << 29]byte)(unsafe.Pointer(&v[0]))[:len(v)*2]
+	return k.setValue(name, MULTI_SZ, buf)
+}
+
+// SetBinaryValue sets the data and type of a name value
+// under key k to value and BINARY.
+func (k Key) SetBinaryValue(name string, value []byte) error {
+	return k.setValue(name, BINARY, value)
+}
+
+// DeleteValue removes a named value from the key k.
+func (k Key) DeleteValue(name string) error {
+	return regDeleteValue(syscall.Handle(k), syscall.StringToUTF16Ptr(name))
+}
+
+// ReadValueNames returns the value names of key k.
+// The parameter n controls the number of returned names,
+// analogous to the way os.File.Readdirnames works.
+func (k Key) ReadValueNames(n int) ([]string, error) {
+	ki, err := k.Stat()
+	if err != nil {
+		return nil, err
+	}
+	names := make([]string, 0, ki.ValueCount)
+	buf := make([]uint16, ki.MaxValueNameLen+1) // extra room for terminating null character
+loopItems:
+	for i := uint32(0); ; i++ {
+		if n > 0 {
+			if len(names) == n {
+				return names, nil
+			}
+		}
+		l := uint32(len(buf))
+		for {
+			err := regEnumValue(syscall.Handle(k), i, &buf[0], &l, nil, nil, nil, nil)
+			if err == nil {
+				break
+			}
+			if err == syscall.ERROR_MORE_DATA {
+				// Double buffer size and try again.
+				l = uint32(2 * len(buf))
+				buf = make([]uint16, l)
+				continue
+			}
+			if err == _ERROR_NO_MORE_ITEMS {
+				break loopItems
+			}
+			return names, err
+		}
+		names = append(names, syscall.UTF16ToString(buf[:l]))
+	}
+	if n > len(names) {
+		return names, io.EOF
+	}
+	return names, nil
+}
diff --git a/vendor/golang.org/x/sys/windows/registry/zsyscall_windows.go b/vendor/golang.org/x/sys/windows/registry/zsyscall_windows.go
new file mode 100644
index 0000000000..ceebdd7726
--- /dev/null
+++ b/vendor/golang.org/x/sys/windows/registry/zsyscall_windows.go
@@ -0,0 +1,120 @@
+// MACHINE GENERATED BY 'go generate' COMMAND; DO NOT EDIT
+
+package registry
+
+import (
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/sys/windows"
+)
+
+var _ unsafe.Pointer
+
+// Do the interface allocations only once for common
+// Errno values.
+const (
+	errnoERROR_IO_PENDING = 997
+)
+
+var (
+	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
+)
+
+// errnoErr returns common boxed Errno values, to prevent
+// allocations at runtime.
+func errnoErr(e syscall.Errno) error {
+	switch e {
+	case 0:
+		return nil
+	case errnoERROR_IO_PENDING:
+		return errERROR_IO_PENDING
+	}
+	// TODO: add more here, after collecting data on the common
+	// error values see on Windows. (perhaps when running
+	// all.bat?)
+	return e
+}
+
+var (
+	modadvapi32 = windows.NewLazySystemDLL("advapi32.dll")
+	modkernel32 = windows.NewLazySystemDLL("kernel32.dll")
+
+	procRegCreateKeyExW           = modadvapi32.NewProc("RegCreateKeyExW")
+	procRegDeleteKeyW             = modadvapi32.NewProc("RegDeleteKeyW")
+	procRegSetValueExW            = modadvapi32.NewProc("RegSetValueExW")
+	procRegEnumValueW             = modadvapi32.NewProc("RegEnumValueW")
+	procRegDeleteValueW           = modadvapi32.NewProc("RegDeleteValueW")
+	procRegLoadMUIStringW         = modadvapi32.NewProc("RegLoadMUIStringW")
+	procRegConnectRegistryW       = modadvapi32.NewProc("RegConnectRegistryW")
+	procExpandEnvironmentStringsW = modkernel32.NewProc("ExpandEnvironmentStringsW")
+)
+
+func regCreateKeyEx(key syscall.Handle, subkey *uint16, reserved uint32, class *uint16, options uint32, desired uint32, sa *syscall.SecurityAttributes, result *syscall.Handle, disposition *uint32) (regerrno error) {
+	r0, _, _ := syscall.Syscall9(procRegCreateKeyExW.Addr(), 9, uintptr(key), uintptr(unsafe.Pointer(subkey)), uintptr(reserved), uintptr(unsafe.Pointer(class)), uintptr(options), uintptr(desired), uintptr(unsafe.Pointer(sa)), uintptr(unsafe.Pointer(result)), uintptr(unsafe.Pointer(disposition)))
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regDeleteKey(key syscall.Handle, subkey *uint16) (regerrno error) {
+	r0, _, _ := syscall.Syscall(procRegDeleteKeyW.Addr(), 2, uintptr(key), uintptr(unsafe.Pointer(subkey)), 0)
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regSetValueEx(key syscall.Handle, valueName *uint16, reserved uint32, vtype uint32, buf *byte, bufsize uint32) (regerrno error) {
+	r0, _, _ := syscall.Syscall6(procRegSetValueExW.Addr(), 6, uintptr(key), uintptr(unsafe.Pointer(valueName)), uintptr(reserved), uintptr(vtype), uintptr(unsafe.Pointer(buf)), uintptr(bufsize))
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regEnumValue(key syscall.Handle, index uint32, name *uint16, nameLen *uint32, reserved *uint32, valtype *uint32, buf *byte, buflen *uint32) (regerrno error) {
+	r0, _, _ := syscall.Syscall9(procRegEnumValueW.Addr(), 8, uintptr(key), uintptr(index), uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(nameLen)), uintptr(unsafe.Pointer(reserved)), uintptr(unsafe.Pointer(valtype)), uintptr(unsafe.Pointer(buf)), uintptr(unsafe.Pointer(buflen)), 0)
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regDeleteValue(key syscall.Handle, name *uint16) (regerrno error) {
+	r0, _, _ := syscall.Syscall(procRegDeleteValueW.Addr(), 2, uintptr(key), uintptr(unsafe.Pointer(name)), 0)
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regLoadMUIString(key syscall.Handle, name *uint16, buf *uint16, buflen uint32, buflenCopied *uint32, flags uint32, dir *uint16) (regerrno error) {
+	r0, _, _ := syscall.Syscall9(procRegLoadMUIStringW.Addr(), 7, uintptr(key), uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(buf)), uintptr(buflen), uintptr(unsafe.Pointer(buflenCopied)), uintptr(flags), uintptr(unsafe.Pointer(dir)), 0, 0)
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func regConnectRegistry(machinename *uint16, key syscall.Handle, result *syscall.Handle) (regerrno error) {
+	r0, _, _ := syscall.Syscall(procRegConnectRegistryW.Addr(), 3, uintptr(unsafe.Pointer(machinename)), uintptr(key), uintptr(unsafe.Pointer(result)))
+	if r0 != 0 {
+		regerrno = syscall.Errno(r0)
+	}
+	return
+}
+
+func expandEnvironmentStrings(src *uint16, dst *uint16, size uint32) (n uint32, err error) {
+	r0, _, e1 := syscall.Syscall(procExpandEnvironmentStringsW.Addr(), 3, uintptr(unsafe.Pointer(src)), uintptr(unsafe.Pointer(dst)), uintptr(size))
+	n = uint32(r0)
+	if n == 0 {
+		if e1 != 0 {
+			err = errnoErr(e1)
+		} else {
+			err = syscall.EINVAL
+		}
+	}
+	return
+}
diff --git a/vendor/golang.org/x/time/AUTHORS b/vendor/golang.org/x/time/AUTHORS
new file mode 100644
index 0000000000..15167cd746
--- /dev/null
+++ b/vendor/golang.org/x/time/AUTHORS
@@ -0,0 +1,3 @@
+# This source code refers to The Go Authors for copyright purposes.
+# The master list of authors is in the main Go distribution,
+# visible at http://tip.golang.org/AUTHORS.
diff --git a/vendor/golang.org/x/time/CONTRIBUTORS b/vendor/golang.org/x/time/CONTRIBUTORS
new file mode 100644
index 0000000000..1c4577e968
--- /dev/null
+++ b/vendor/golang.org/x/time/CONTRIBUTORS
@@ -0,0 +1,3 @@
+# This source code was written by the Go contributors.
+# The master list of contributors is in the main Go distribution,
+# visible at http://tip.golang.org/CONTRIBUTORS.
diff --git a/vendor/golang.org/x/time/LICENSE b/vendor/golang.org/x/time/LICENSE
new file mode 100644
index 0000000000..6a66aea5ea
--- /dev/null
+++ b/vendor/golang.org/x/time/LICENSE
@@ -0,0 +1,27 @@
+Copyright (c) 2009 The Go Authors. All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+   * Redistributions of source code must retain the above copyright
+notice, this list of conditions and the following disclaimer.
+   * Redistributions in binary form must reproduce the above
+copyright notice, this list of conditions and the following disclaimer
+in the documentation and/or other materials provided with the
+distribution.
+   * Neither the name of Google Inc. nor the names of its
+contributors may be used to endorse or promote products derived from
+this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/golang.org/x/time/PATENTS b/vendor/golang.org/x/time/PATENTS
new file mode 100644
index 0000000000..733099041f
--- /dev/null
+++ b/vendor/golang.org/x/time/PATENTS
@@ -0,0 +1,22 @@
+Additional IP Rights Grant (Patents)
+
+"This implementation" means the copyrightable works distributed by
+Google as part of the Go project.
+
+Google hereby grants to You a perpetual, worldwide, non-exclusive,
+no-charge, royalty-free, irrevocable (except as stated in this section)
+patent license to make, have made, use, offer to sell, sell, import,
+transfer and otherwise run, modify and propagate the contents of this
+implementation of Go, where such license applies only to those patent
+claims, both currently owned or controlled by Google and acquired in
+the future, licensable by Google that are necessarily infringed by this
+implementation of Go.  This grant does not include claims that would be
+infringed only as a consequence of further modification of this
+implementation.  If you or your agent or exclusive licensee institute or
+order or agree to the institution of patent litigation against any
+entity (including a cross-claim or counterclaim in a lawsuit) alleging
+that this implementation of Go or any code incorporated within this
+implementation of Go constitutes direct or contributory patent
+infringement, or inducement of patent infringement, then any patent
+rights granted to you under this License for this implementation of Go
+shall terminate as of the date such litigation is filed.
diff --git a/vendor/golang.org/x/time/rate/rate.go b/vendor/golang.org/x/time/rate/rate.go
new file mode 100644
index 0000000000..7228d97e96
--- /dev/null
+++ b/vendor/golang.org/x/time/rate/rate.go
@@ -0,0 +1,384 @@
+// Copyright 2015 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package rate provides a rate limiter.
+package rate
+
+import (
+	"fmt"
+	"math"
+	"sync"
+	"time"
+)
+
+// Limit defines the maximum frequency of some events.
+// Limit is represented as number of events per second.
+// A zero Limit allows no events.
+type Limit float64
+
+// Inf is the infinite rate limit; it allows all events (even if burst is zero).
+const Inf = Limit(math.MaxFloat64)
+
+// Every converts a minimum time interval between events to a Limit.
+func Every(interval time.Duration) Limit {
+	if interval <= 0 {
+		return Inf
+	}
+	return 1 / Limit(interval.Seconds())
+}
+
+// A Limiter controls how frequently events are allowed to happen.
+// It implements a "token bucket" of size b, initially full and refilled
+// at rate r tokens per second.
+// Informally, in any large enough time interval, the Limiter limits the
+// rate to r tokens per second, with a maximum burst size of b events.
+// As a special case, if r == Inf (the infinite rate), b is ignored.
+// See https://en.wikipedia.org/wiki/Token_bucket for more about token buckets.
+//
+// The zero value is a valid Limiter, but it will reject all events.
+// Use NewLimiter to create non-zero Limiters.
+//
+// Limiter has three main methods, Allow, Reserve, and Wait.
+// Most callers should use Wait.
+//
+// Each of the three methods consumes a single token.
+// They differ in their behavior when no token is available.
+// If no token is available, Allow returns false.
+// If no token is available, Reserve returns a reservation for a future token
+// and the amount of time the caller must wait before using it.
+// If no token is available, Wait blocks until one can be obtained
+// or its associated context.Context is canceled.
+//
+// The methods AllowN, ReserveN, and WaitN consume n tokens.
+type Limiter struct {
+	limit Limit
+	burst int
+
+	mu     sync.Mutex
+	tokens float64
+	// last is the last time the limiter's tokens field was updated
+	last time.Time
+	// lastEvent is the latest time of a rate-limited event (past or future)
+	lastEvent time.Time
+}
+
+// Limit returns the maximum overall event rate.
+func (lim *Limiter) Limit() Limit {
+	lim.mu.Lock()
+	defer lim.mu.Unlock()
+	return lim.limit
+}
+
+// Burst returns the maximum burst size. Burst is the maximum number of tokens
+// that can be consumed in a single call to Allow, Reserve, or Wait, so higher
+// Burst values allow more events to happen at once.
+// A zero Burst allows no events, unless limit == Inf.
+func (lim *Limiter) Burst() int {
+	return lim.burst
+}
+
+// NewLimiter returns a new Limiter that allows events up to rate r and permits
+// bursts of at most b tokens.
+func NewLimiter(r Limit, b int) *Limiter {
+	return &Limiter{
+		limit: r,
+		burst: b,
+	}
+}
+
+// Allow is shorthand for AllowN(time.Now(), 1).
+func (lim *Limiter) Allow() bool {
+	return lim.AllowN(time.Now(), 1)
+}
+
+// AllowN reports whether n events may happen at time now.
+// Use this method if you intend to drop / skip events that exceed the rate limit.
+// Otherwise use Reserve or Wait.
+func (lim *Limiter) AllowN(now time.Time, n int) bool {
+	return lim.reserveN(now, n, 0).ok
+}
+
+// A Reservation holds information about events that are permitted by a Limiter to happen after a delay.
+// A Reservation may be canceled, which may enable the Limiter to permit additional events.
+type Reservation struct {
+	ok        bool
+	lim       *Limiter
+	tokens    int
+	timeToAct time.Time
+	// This is the Limit at reservation time, it can change later.
+	limit Limit
+}
+
+// OK returns whether the limiter can provide the requested number of tokens
+// within the maximum wait time.  If OK is false, Delay returns InfDuration, and
+// Cancel does nothing.
+func (r *Reservation) OK() bool {
+	return r.ok
+}
+
+// Delay is shorthand for DelayFrom(time.Now()).
+func (r *Reservation) Delay() time.Duration {
+	return r.DelayFrom(time.Now())
+}
+
+// InfDuration is the duration returned by Delay when a Reservation is not OK.
+const InfDuration = time.Duration(1<<63 - 1)
+
+// DelayFrom returns the duration for which the reservation holder must wait
+// before taking the reserved action.  Zero duration means act immediately.
+// InfDuration means the limiter cannot grant the tokens requested in this
+// Reservation within the maximum wait time.
+func (r *Reservation) DelayFrom(now time.Time) time.Duration {
+	if !r.ok {
+		return InfDuration
+	}
+	delay := r.timeToAct.Sub(now)
+	if delay < 0 {
+		return 0
+	}
+	return delay
+}
+
+// Cancel is shorthand for CancelAt(time.Now()).
+func (r *Reservation) Cancel() {
+	r.CancelAt(time.Now())
+	return
+}
+
+// CancelAt indicates that the reservation holder will not perform the reserved action
+// and reverses the effects of this Reservation on the rate limit as much as possible,
+// considering that other reservations may have already been made.
+func (r *Reservation) CancelAt(now time.Time) {
+	if !r.ok {
+		return
+	}
+
+	r.lim.mu.Lock()
+	defer r.lim.mu.Unlock()
+
+	if r.lim.limit == Inf || r.tokens == 0 || r.timeToAct.Before(now) {
+		return
+	}
+
+	// calculate tokens to restore
+	// The duration between lim.lastEvent and r.timeToAct tells us how many tokens were reserved
+	// after r was obtained. These tokens should not be restored.
+	restoreTokens := float64(r.tokens) - r.limit.tokensFromDuration(r.lim.lastEvent.Sub(r.timeToAct))
+	if restoreTokens <= 0 {
+		return
+	}
+	// advance time to now
+	now, _, tokens := r.lim.advance(now)
+	// calculate new number of tokens
+	tokens += restoreTokens
+	if burst := float64(r.lim.burst); tokens > burst {
+		tokens = burst
+	}
+	// update state
+	r.lim.last = now
+	r.lim.tokens = tokens
+	if r.timeToAct == r.lim.lastEvent {
+		prevEvent := r.timeToAct.Add(r.limit.durationFromTokens(float64(-r.tokens)))
+		if !prevEvent.Before(now) {
+			r.lim.lastEvent = prevEvent
+		}
+	}
+
+	return
+}
+
+// Reserve is shorthand for ReserveN(time.Now(), 1).
+func (lim *Limiter) Reserve() *Reservation {
+	return lim.ReserveN(time.Now(), 1)
+}
+
+// ReserveN returns a Reservation that indicates how long the caller must wait before n events happen.
+// The Limiter takes this Reservation into account when allowing future events.
+// ReserveN returns false if n exceeds the Limiter's burst size.
+// Usage example:
+//   r := lim.ReserveN(time.Now(), 1)
+//   if !r.OK() {
+//     // Not allowed to act! Did you remember to set lim.burst to be > 0 ?
+//     return
+//   }
+//   time.Sleep(r.Delay())
+//   Act()
+// Use this method if you wish to wait and slow down in accordance with the rate limit without dropping events.
+// If you need to respect a deadline or cancel the delay, use Wait instead.
+// To drop or skip events exceeding rate limit, use Allow instead.
+func (lim *Limiter) ReserveN(now time.Time, n int) *Reservation {
+	r := lim.reserveN(now, n, InfDuration)
+	return &r
+}
+
+// contextContext is a temporary(?) copy of the context.Context type
+// to support both Go 1.6 using golang.org/x/net/context and Go 1.7+
+// with the built-in context package. If people ever stop using Go 1.6
+// we can remove this.
+type contextContext interface {
+	Deadline() (deadline time.Time, ok bool)
+	Done() <-chan struct{}
+	Err() error
+	Value(key interface{}) interface{}
+}
+
+// Wait is shorthand for WaitN(ctx, 1).
+func (lim *Limiter) wait(ctx contextContext) (err error) {
+	return lim.WaitN(ctx, 1)
+}
+
+// WaitN blocks until lim permits n events to happen.
+// It returns an error if n exceeds the Limiter's burst size, the Context is
+// canceled, or the expected wait time exceeds the Context's Deadline.
+// The burst limit is ignored if the rate limit is Inf.
+func (lim *Limiter) waitN(ctx contextContext, n int) (err error) {
+	if n > lim.burst && lim.limit != Inf {
+		return fmt.Errorf("rate: Wait(n=%d) exceeds limiter's burst %d", n, lim.burst)
+	}
+	// Check if ctx is already cancelled
+	select {
+	case <-ctx.Done():
+		return ctx.Err()
+	default:
+	}
+	// Determine wait limit
+	now := time.Now()
+	waitLimit := InfDuration
+	if deadline, ok := ctx.Deadline(); ok {
+		waitLimit = deadline.Sub(now)
+	}
+	// Reserve
+	r := lim.reserveN(now, n, waitLimit)
+	if !r.ok {
+		return fmt.Errorf("rate: Wait(n=%d) would exceed context deadline", n)
+	}
+	// Wait if necessary
+	delay := r.DelayFrom(now)
+	if delay == 0 {
+		return nil
+	}
+	t := time.NewTimer(delay)
+	defer t.Stop()
+	select {
+	case <-t.C:
+		// We can proceed.
+		return nil
+	case <-ctx.Done():
+		// Context was canceled before we could proceed.  Cancel the
+		// reservation, which may permit other events to proceed sooner.
+		r.Cancel()
+		return ctx.Err()
+	}
+}
+
+// SetLimit is shorthand for SetLimitAt(time.Now(), newLimit).
+func (lim *Limiter) SetLimit(newLimit Limit) {
+	lim.SetLimitAt(time.Now(), newLimit)
+}
+
+// SetLimitAt sets a new Limit for the limiter. The new Limit, and Burst, may be violated
+// or underutilized by those which reserved (using Reserve or Wait) but did not yet act
+// before SetLimitAt was called.
+func (lim *Limiter) SetLimitAt(now time.Time, newLimit Limit) {
+	lim.mu.Lock()
+	defer lim.mu.Unlock()
+
+	now, _, tokens := lim.advance(now)
+
+	lim.last = now
+	lim.tokens = tokens
+	lim.limit = newLimit
+}
+
+// reserveN is a helper method for AllowN, ReserveN, and WaitN.
+// maxFutureReserve specifies the maximum reservation wait duration allowed.
+// reserveN returns Reservation, not *Reservation, to avoid allocation in AllowN and WaitN.
+func (lim *Limiter) reserveN(now time.Time, n int, maxFutureReserve time.Duration) Reservation {
+	lim.mu.Lock()
+
+	if lim.limit == Inf {
+		lim.mu.Unlock()
+		return Reservation{
+			ok:        true,
+			lim:       lim,
+			tokens:    n,
+			timeToAct: now,
+		}
+	}
+
+	now, last, tokens := lim.advance(now)
+
+	// Calculate the remaining number of tokens resulting from the request.
+	tokens -= float64(n)
+
+	// Calculate the wait duration
+	var waitDuration time.Duration
+	if tokens < 0 {
+		waitDuration = lim.limit.durationFromTokens(-tokens)
+	}
+
+	// Decide result
+	ok := n <= lim.burst && waitDuration <= maxFutureReserve
+
+	// Prepare reservation
+	r := Reservation{
+		ok:    ok,
+		lim:   lim,
+		limit: lim.limit,
+	}
+	if ok {
+		r.tokens = n
+		r.timeToAct = now.Add(waitDuration)
+	}
+
+	// Update state
+	if ok {
+		lim.last = now
+		lim.tokens = tokens
+		lim.lastEvent = r.timeToAct
+	} else {
+		lim.last = last
+	}
+
+	lim.mu.Unlock()
+	return r
+}
+
+// advance calculates and returns an updated state for lim resulting from the passage of time.
+// lim is not changed.
+func (lim *Limiter) advance(now time.Time) (newNow time.Time, newLast time.Time, newTokens float64) {
+	last := lim.last
+	if now.Before(last) {
+		last = now
+	}
+
+	// Avoid making delta overflow below when last is very old.
+	maxElapsed := lim.limit.durationFromTokens(float64(lim.burst) - lim.tokens)
+	elapsed := now.Sub(last)
+	if elapsed > maxElapsed {
+		elapsed = maxElapsed
+	}
+
+	// Calculate the new number of tokens, due to time that passed.
+	delta := lim.limit.tokensFromDuration(elapsed)
+	tokens := lim.tokens + delta
+	if burst := float64(lim.burst); tokens > burst {
+		tokens = burst
+	}
+
+	return now, last, tokens
+}
+
+// durationFromTokens is a unit conversion function from the number of tokens to the duration
+// of time it takes to accumulate them at a rate of limit tokens per second.
+func (limit Limit) durationFromTokens(tokens float64) time.Duration {
+	seconds := tokens / float64(limit)
+	return time.Nanosecond * time.Duration(1e9*seconds)
+}
+
+// tokensFromDuration is a unit conversion function from a time duration to the number of tokens
+// which could be accumulated during that duration at a rate of limit tokens per second.
+func (limit Limit) tokensFromDuration(d time.Duration) float64 {
+	return d.Seconds() * float64(limit)
+}
diff --git a/vendor/golang.org/x/time/rate/rate_go16.go b/vendor/golang.org/x/time/rate/rate_go16.go
new file mode 100644
index 0000000000..6bab1850f8
--- /dev/null
+++ b/vendor/golang.org/x/time/rate/rate_go16.go
@@ -0,0 +1,21 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build !go1.7
+
+package rate
+
+import "golang.org/x/net/context"
+
+// Wait is shorthand for WaitN(ctx, 1).
+func (lim *Limiter) Wait(ctx context.Context) (err error) {
+	return lim.waitN(ctx, 1)
+}
+
+// WaitN blocks until lim permits n events to happen.
+// It returns an error if n exceeds the Limiter's burst size, the Context is
+// canceled, or the expected wait time exceeds the Context's Deadline.
+func (lim *Limiter) WaitN(ctx context.Context, n int) (err error) {
+	return lim.waitN(ctx, n)
+}
diff --git a/vendor/golang.org/x/time/rate/rate_go17.go b/vendor/golang.org/x/time/rate/rate_go17.go
new file mode 100644
index 0000000000..f90d85f51e
--- /dev/null
+++ b/vendor/golang.org/x/time/rate/rate_go17.go
@@ -0,0 +1,21 @@
+// Copyright 2017 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// +build go1.7
+
+package rate
+
+import "context"
+
+// Wait is shorthand for WaitN(ctx, 1).
+func (lim *Limiter) Wait(ctx context.Context) (err error) {
+	return lim.waitN(ctx, 1)
+}
+
+// WaitN blocks until lim permits n events to happen.
+// It returns an error if n exceeds the Limiter's burst size, the Context is
+// canceled, or the expected wait time exceeds the Context's Deadline.
+func (lim *Limiter) WaitN(ctx context.Context, n int) (err error) {
+	return lim.waitN(ctx, n)
+}
diff --git a/vendor/google.golang.org/api/storage/v1/storage-gen.go b/vendor/google.golang.org/api/storage/v1/storage-gen.go
index 36846eb54e..d9374be0d6 100644
--- a/vendor/google.golang.org/api/storage/v1/storage-gen.go
+++ b/vendor/google.golang.org/api/storage/v1/storage-gen.go
@@ -222,8 +222,7 @@ type Bucket struct {
 	// when no ACL is provided.
 	DefaultObjectAcl []*ObjectAccessControl `json:"defaultObjectAcl,omitempty"`
 
-	// Encryption: Encryption configuration used by default for newly
-	// inserted objects, when no encryption config is specified.
+	// Encryption: Encryption configuration for a bucket.
 	Encryption *BucketEncryption `json:"encryption,omitempty"`
 
 	// Etag: HTTP 1.1 Entity tag for the bucket.
@@ -405,12 +404,11 @@ func (s *BucketCors) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(raw, s.ForceSendFields, s.NullFields)
 }
 
-// BucketEncryption: Encryption configuration used by default for newly
-// inserted objects, when no encryption config is specified.
+// BucketEncryption: Encryption configuration for a bucket.
 type BucketEncryption struct {
 	// DefaultKmsKeyName: A Cloud KMS key that will be used to encrypt
 	// objects inserted into this bucket, if no encryption method is
-	// specified. Limited availability; usable only by enabled projects.
+	// specified.
 	DefaultKmsKeyName string `json:"defaultKmsKeyName,omitempty"`
 
 	// ForceSendFields is a list of field names (e.g. "DefaultKmsKeyName")
diff --git a/vendor/google.golang.org/grpc/call.go b/vendor/google.golang.org/grpc/call.go
index f73b7d5528..b2590e97b0 100644
--- a/vendor/google.golang.org/grpc/call.go
+++ b/vendor/google.golang.org/grpc/call.go
@@ -29,7 +29,7 @@ import (
 func (cc *ClientConn) Invoke(ctx context.Context, method string, args, reply interface{}, opts ...CallOption) error {
 	// allow interceptor to see all applicable call options, which means those
 	// configured as defaults from dial option as well as per-call options
-	opts = combine(cc.dopts.callOptions, opts)
+	opts = append(cc.dopts.callOptions, opts...)
 
 	if cc.dopts.unaryInt != nil {
 		return cc.dopts.unaryInt(ctx, method, args, reply, cc, invoke, opts...)
@@ -37,21 +37,6 @@ func (cc *ClientConn) Invoke(ctx context.Context, method string, args, reply int
 	return invoke(ctx, method, args, reply, cc, opts...)
 }
 
-func combine(o1 []CallOption, o2 []CallOption) []CallOption {
-	// we don't use append because o1 could have extra capacity whose
-	// elements would be overwritten, which could cause inadvertent
-	// sharing (and race connditions) between concurrent calls
-	if len(o1) == 0 {
-		return o2
-	} else if len(o2) == 0 {
-		return o1
-	}
-	ret := make([]CallOption, len(o1)+len(o2))
-	copy(ret, o1)
-	copy(ret[len(o1):], o2)
-	return ret
-}
-
 // Invoke sends the RPC request on the wire and returns after response is
 // received.  This is typically called by generated code.
 //
diff --git a/vendor/google.golang.org/grpc/clientconn.go b/vendor/google.golang.org/grpc/clientconn.go
index 6385407292..096d9434c2 100644
--- a/vendor/google.golang.org/grpc/clientconn.go
+++ b/vendor/google.golang.org/grpc/clientconn.go
@@ -443,8 +443,7 @@ func DialContext(ctx context.Context, target string, opts ...DialOption) (conn *
 	if cc.dopts.copts.Dialer == nil {
 		cc.dopts.copts.Dialer = newProxyDialer(
 			func(ctx context.Context, addr string) (net.Conn, error) {
-				network, addr := parseDialTarget(addr)
-				return dialContext(ctx, network, addr)
+				return dialContext(ctx, "tcp", addr)
 			},
 		)
 	}
@@ -488,25 +487,7 @@ func DialContext(ctx context.Context, target string, opts ...DialOption) (conn *
 	if cc.dopts.bs == nil {
 		cc.dopts.bs = DefaultBackoffConfig
 	}
-	if cc.dopts.resolverBuilder == nil {
-		// Only try to parse target when resolver builder is not already set.
-		cc.parsedTarget = parseTarget(cc.target)
-		grpclog.Infof("parsed scheme: %q", cc.parsedTarget.Scheme)
-		cc.dopts.resolverBuilder = resolver.Get(cc.parsedTarget.Scheme)
-		if cc.dopts.resolverBuilder == nil {
-			// If resolver builder is still nil, the parse target's scheme is
-			// not registered. Fallback to default resolver and set Endpoint to
-			// the original unparsed target.
-			grpclog.Infof("scheme %q not registered, fallback to default scheme", cc.parsedTarget.Scheme)
-			cc.parsedTarget = resolver.Target{
-				Scheme:   resolver.GetDefaultScheme(),
-				Endpoint: target,
-			}
-			cc.dopts.resolverBuilder = resolver.Get(cc.parsedTarget.Scheme)
-		}
-	} else {
-		cc.parsedTarget = resolver.Target{Endpoint: target}
-	}
+	cc.parsedTarget = parseTarget(cc.target)
 	creds := cc.dopts.copts.TransportCredentials
 	if creds != nil && creds.Info().ServerName != "" {
 		cc.authority = creds.Info().ServerName
diff --git a/vendor/google.golang.org/grpc/health/grpc_health_v1/health.pb.go b/vendor/google.golang.org/grpc/health/grpc_health_v1/health.pb.go
new file mode 100644
index 0000000000..fdcbb9e0b7
--- /dev/null
+++ b/vendor/google.golang.org/grpc/health/grpc_health_v1/health.pb.go
@@ -0,0 +1,190 @@
+// Code generated by protoc-gen-go. DO NOT EDIT.
+// source: grpc_health_v1/health.proto
+
+/*
+Package grpc_health_v1 is a generated protocol buffer package.
+
+It is generated from these files:
+	grpc_health_v1/health.proto
+
+It has these top-level messages:
+	HealthCheckRequest
+	HealthCheckResponse
+*/
+package grpc_health_v1
+
+import proto "github.com/golang/protobuf/proto"
+import fmt "fmt"
+import math "math"
+
+import (
+	context "golang.org/x/net/context"
+	grpc "google.golang.org/grpc"
+)
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ = proto.Marshal
+var _ = fmt.Errorf
+var _ = math.Inf
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the proto package it is being compiled against.
+// A compilation error at this line likely means your copy of the
+// proto package needs to be updated.
+const _ = proto.ProtoPackageIsVersion2 // please upgrade the proto package
+
+type HealthCheckResponse_ServingStatus int32
+
+const (
+	HealthCheckResponse_UNKNOWN     HealthCheckResponse_ServingStatus = 0
+	HealthCheckResponse_SERVING     HealthCheckResponse_ServingStatus = 1
+	HealthCheckResponse_NOT_SERVING HealthCheckResponse_ServingStatus = 2
+)
+
+var HealthCheckResponse_ServingStatus_name = map[int32]string{
+	0: "UNKNOWN",
+	1: "SERVING",
+	2: "NOT_SERVING",
+}
+var HealthCheckResponse_ServingStatus_value = map[string]int32{
+	"UNKNOWN":     0,
+	"SERVING":     1,
+	"NOT_SERVING": 2,
+}
+
+func (x HealthCheckResponse_ServingStatus) String() string {
+	return proto.EnumName(HealthCheckResponse_ServingStatus_name, int32(x))
+}
+func (HealthCheckResponse_ServingStatus) EnumDescriptor() ([]byte, []int) {
+	return fileDescriptor0, []int{1, 0}
+}
+
+type HealthCheckRequest struct {
+	Service string `protobuf:"bytes,1,opt,name=service" json:"service,omitempty"`
+}
+
+func (m *HealthCheckRequest) Reset()                    { *m = HealthCheckRequest{} }
+func (m *HealthCheckRequest) String() string            { return proto.CompactTextString(m) }
+func (*HealthCheckRequest) ProtoMessage()               {}
+func (*HealthCheckRequest) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{0} }
+
+func (m *HealthCheckRequest) GetService() string {
+	if m != nil {
+		return m.Service
+	}
+	return ""
+}
+
+type HealthCheckResponse struct {
+	Status HealthCheckResponse_ServingStatus `protobuf:"varint,1,opt,name=status,enum=grpc.health.v1.HealthCheckResponse_ServingStatus" json:"status,omitempty"`
+}
+
+func (m *HealthCheckResponse) Reset()                    { *m = HealthCheckResponse{} }
+func (m *HealthCheckResponse) String() string            { return proto.CompactTextString(m) }
+func (*HealthCheckResponse) ProtoMessage()               {}
+func (*HealthCheckResponse) Descriptor() ([]byte, []int) { return fileDescriptor0, []int{1} }
+
+func (m *HealthCheckResponse) GetStatus() HealthCheckResponse_ServingStatus {
+	if m != nil {
+		return m.Status
+	}
+	return HealthCheckResponse_UNKNOWN
+}
+
+func init() {
+	proto.RegisterType((*HealthCheckRequest)(nil), "grpc.health.v1.HealthCheckRequest")
+	proto.RegisterType((*HealthCheckResponse)(nil), "grpc.health.v1.HealthCheckResponse")
+	proto.RegisterEnum("grpc.health.v1.HealthCheckResponse_ServingStatus", HealthCheckResponse_ServingStatus_name, HealthCheckResponse_ServingStatus_value)
+}
+
+// Reference imports to suppress errors if they are not otherwise used.
+var _ context.Context
+var _ grpc.ClientConn
+
+// This is a compile-time assertion to ensure that this generated file
+// is compatible with the grpc package it is being compiled against.
+const _ = grpc.SupportPackageIsVersion4
+
+// Client API for Health service
+
+type HealthClient interface {
+	Check(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (*HealthCheckResponse, error)
+}
+
+type healthClient struct {
+	cc *grpc.ClientConn
+}
+
+func NewHealthClient(cc *grpc.ClientConn) HealthClient {
+	return &healthClient{cc}
+}
+
+func (c *healthClient) Check(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (*HealthCheckResponse, error) {
+	out := new(HealthCheckResponse)
+	err := grpc.Invoke(ctx, "/grpc.health.v1.Health/Check", in, out, c.cc, opts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
+// Server API for Health service
+
+type HealthServer interface {
+	Check(context.Context, *HealthCheckRequest) (*HealthCheckResponse, error)
+}
+
+func RegisterHealthServer(s *grpc.Server, srv HealthServer) {
+	s.RegisterService(&_Health_serviceDesc, srv)
+}
+
+func _Health_Check_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(HealthCheckRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(HealthServer).Check(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: "/grpc.health.v1.Health/Check",
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(HealthServer).Check(ctx, req.(*HealthCheckRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
+var _Health_serviceDesc = grpc.ServiceDesc{
+	ServiceName: "grpc.health.v1.Health",
+	HandlerType: (*HealthServer)(nil),
+	Methods: []grpc.MethodDesc{
+		{
+			MethodName: "Check",
+			Handler:    _Health_Check_Handler,
+		},
+	},
+	Streams:  []grpc.StreamDesc{},
+	Metadata: "grpc_health_v1/health.proto",
+}
+
+func init() { proto.RegisterFile("grpc_health_v1/health.proto", fileDescriptor0) }
+
+var fileDescriptor0 = []byte{
+	// 213 bytes of a gzipped FileDescriptorProto
+	0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xe2, 0x92, 0x4e, 0x2f, 0x2a, 0x48,
+	0x8e, 0xcf, 0x48, 0x4d, 0xcc, 0x29, 0xc9, 0x88, 0x2f, 0x33, 0xd4, 0x87, 0xb0, 0xf4, 0x0a, 0x8a,
+	0xf2, 0x4b, 0xf2, 0x85, 0xf8, 0x40, 0x92, 0x7a, 0x50, 0xa1, 0x32, 0x43, 0x25, 0x3d, 0x2e, 0x21,
+	0x0f, 0x30, 0xc7, 0x39, 0x23, 0x35, 0x39, 0x3b, 0x28, 0xb5, 0xb0, 0x34, 0xb5, 0xb8, 0x44, 0x48,
+	0x82, 0x8b, 0xbd, 0x38, 0xb5, 0xa8, 0x2c, 0x33, 0x39, 0x55, 0x82, 0x51, 0x81, 0x51, 0x83, 0x33,
+	0x08, 0xc6, 0x55, 0x9a, 0xc3, 0xc8, 0x25, 0x8c, 0xa2, 0xa1, 0xb8, 0x20, 0x3f, 0xaf, 0x38, 0x55,
+	0xc8, 0x93, 0x8b, 0xad, 0xb8, 0x24, 0xb1, 0xa4, 0xb4, 0x18, 0xac, 0x81, 0xcf, 0xc8, 0x50, 0x0f,
+	0xd5, 0x22, 0x3d, 0x2c, 0x9a, 0xf4, 0x82, 0x41, 0x86, 0xe6, 0xa5, 0x07, 0x83, 0x35, 0x06, 0x41,
+	0x0d, 0x50, 0xb2, 0xe2, 0xe2, 0x45, 0x91, 0x10, 0xe2, 0xe6, 0x62, 0x0f, 0xf5, 0xf3, 0xf6, 0xf3,
+	0x0f, 0xf7, 0x13, 0x60, 0x00, 0x71, 0x82, 0x5d, 0x83, 0xc2, 0x3c, 0xfd, 0xdc, 0x05, 0x18, 0x85,
+	0xf8, 0xb9, 0xb8, 0xfd, 0xfc, 0x43, 0xe2, 0x61, 0x02, 0x4c, 0x46, 0x51, 0x5c, 0x6c, 0x10, 0x8b,
+	0x84, 0x02, 0xb8, 0x58, 0xc1, 0x96, 0x09, 0x29, 0xe1, 0x75, 0x09, 0xd8, 0xbf, 0x52, 0xca, 0x44,
+	0xb8, 0x36, 0x89, 0x0d, 0x1c, 0x82, 0xc6, 0x80, 0x00, 0x00, 0x00, 0xff, 0xff, 0x53, 0x2b, 0x65,
+	0x20, 0x60, 0x01, 0x00, 0x00,
+}
diff --git a/vendor/google.golang.org/grpc/health/health.go b/vendor/google.golang.org/grpc/health/health.go
new file mode 100644
index 0000000000..30a78667e6
--- /dev/null
+++ b/vendor/google.golang.org/grpc/health/health.go
@@ -0,0 +1,72 @@
+/*
+ *
+ * Copyright 2017 gRPC authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+//go:generate protoc --go_out=plugins=grpc:. grpc_health_v1/health.proto
+
+// Package health provides some utility functions to health-check a server. The implementation
+// is based on protobuf. Users need to write their own implementations if other IDLs are used.
+package health
+
+import (
+	"sync"
+
+	"golang.org/x/net/context"
+	"google.golang.org/grpc/codes"
+	healthpb "google.golang.org/grpc/health/grpc_health_v1"
+	"google.golang.org/grpc/status"
+)
+
+// Server implements `service Health`.
+type Server struct {
+	mu sync.Mutex
+	// statusMap stores the serving status of the services this Server monitors.
+	statusMap map[string]healthpb.HealthCheckResponse_ServingStatus
+}
+
+// NewServer returns a new Server.
+func NewServer() *Server {
+	return &Server{
+		statusMap: make(map[string]healthpb.HealthCheckResponse_ServingStatus),
+	}
+}
+
+// Check implements `service Health`.
+func (s *Server) Check(ctx context.Context, in *healthpb.HealthCheckRequest) (*healthpb.HealthCheckResponse, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	if in.Service == "" {
+		// check the server overall health status.
+		return &healthpb.HealthCheckResponse{
+			Status: healthpb.HealthCheckResponse_SERVING,
+		}, nil
+	}
+	if status, ok := s.statusMap[in.Service]; ok {
+		return &healthpb.HealthCheckResponse{
+			Status: status,
+		}, nil
+	}
+	return nil, status.Error(codes.NotFound, "unknown service")
+}
+
+// SetServingStatus is called when need to reset the serving status of a service
+// or insert a new service entry into the statusMap.
+func (s *Server) SetServingStatus(service string, status healthpb.HealthCheckResponse_ServingStatus) {
+	s.mu.Lock()
+	s.statusMap[service] = status
+	s.mu.Unlock()
+}
diff --git a/vendor/google.golang.org/grpc/resolver/resolver.go b/vendor/google.golang.org/grpc/resolver/resolver.go
index 775ee4d0d2..9efcffb3aa 100644
--- a/vendor/google.golang.org/grpc/resolver/resolver.go
+++ b/vendor/google.golang.org/grpc/resolver/resolver.go
@@ -36,12 +36,21 @@ func Register(b Builder) {
 }
 
 // Get returns the resolver builder registered with the given scheme.
-//
-// If no builder is register with the scheme, nil will be returned.
+// If no builder is register with the scheme, the default scheme will
+// be used.
+// If the default scheme is not modified, "passthrough" will be the default
+// scheme, and the preinstalled dns resolver will be used.
+// If the default scheme is modified, and a resolver is registered with
+// the scheme, that resolver will be returned.
+// If the default scheme is modified, and no resolver is registered with
+// the scheme, nil will be returned.
 func Get(scheme string) Builder {
 	if b, ok := m[scheme]; ok {
 		return b
 	}
+	if b, ok := m[defaultScheme]; ok {
+		return b
+	}
 	return nil
 }
 
@@ -51,11 +60,6 @@ func SetDefaultScheme(scheme string) {
 	defaultScheme = scheme
 }
 
-// GetDefaultScheme gets the default scheme that will be used.
-func GetDefaultScheme() string {
-	return defaultScheme
-}
-
 // AddressType indicates the address type returned by name resolution.
 type AddressType uint8
 
diff --git a/vendor/google.golang.org/grpc/resolver_conn_wrapper.go b/vendor/google.golang.org/grpc/resolver_conn_wrapper.go
index 75b8ce1eb6..3e9c7594cc 100644
--- a/vendor/google.golang.org/grpc/resolver_conn_wrapper.go
+++ b/vendor/google.golang.org/grpc/resolver_conn_wrapper.go
@@ -48,9 +48,6 @@ func split2(s, sep string) (string, string, bool) {
 
 // parseTarget splits target into a struct containing scheme, authority and
 // endpoint.
-//
-// If target is not a valid scheme://authority/endpoint, it returns {Endpoint:
-// target}.
 func parseTarget(target string) (ret resolver.Target) {
 	var ok bool
 	ret.Scheme, ret.Endpoint, ok = split2(target, "://")
@@ -71,9 +68,14 @@ func parseTarget(target string) (ret resolver.Target) {
 // If withResolverBuilder dial option is set, the specified resolver will be
 // used instead.
 func newCCResolverWrapper(cc *ClientConn) (*ccResolverWrapper, error) {
+	grpclog.Infof("dialing to target with scheme: %q", cc.parsedTarget.Scheme)
+
 	rb := cc.dopts.resolverBuilder
 	if rb == nil {
-		return nil, fmt.Errorf("could not get resolver for scheme: %q", cc.parsedTarget.Scheme)
+		rb = resolver.Get(cc.parsedTarget.Scheme)
+		if rb == nil {
+			return nil, fmt.Errorf("could not get resolver for scheme: %q", cc.parsedTarget.Scheme)
+		}
 	}
 
 	ccr := &ccResolverWrapper{
diff --git a/vendor/google.golang.org/grpc/rpc_util.go b/vendor/google.golang.org/grpc/rpc_util.go
index 00a9976606..de254a031b 100644
--- a/vendor/google.golang.org/grpc/rpc_util.go
+++ b/vendor/google.golang.org/grpc/rpc_util.go
@@ -22,11 +22,9 @@ import (
 	"bytes"
 	"compress/gzip"
 	"encoding/binary"
-	"fmt"
 	"io"
 	"io/ioutil"
 	"math"
-	"net/url"
 	"strings"
 	"sync"
 	"time"
@@ -57,29 +55,13 @@ type gzipCompressor struct {
 
 // NewGZIPCompressor creates a Compressor based on GZIP.
 func NewGZIPCompressor() Compressor {
-	c, _ := NewGZIPCompressorWithLevel(gzip.DefaultCompression)
-	return c
-}
-
-// NewGZIPCompressorWithLevel is like NewGZIPCompressor but specifies the gzip compression level instead
-// of assuming DefaultCompression.
-//
-// The error returned will be nil if the level is valid.
-func NewGZIPCompressorWithLevel(level int) (Compressor, error) {
-	if level < gzip.DefaultCompression || level > gzip.BestCompression {
-		return nil, fmt.Errorf("grpc: invalid compression level: %d", level)
-	}
 	return &gzipCompressor{
 		pool: sync.Pool{
 			New: func() interface{} {
-				w, err := gzip.NewWriterLevel(ioutil.Discard, level)
-				if err != nil {
-					panic(err)
-				}
-				return w
+				return gzip.NewWriter(ioutil.Discard)
 			},
 		},
-	}, nil
+	}
 }
 
 func (c *gzipCompressor) Do(w io.Writer, p []byte) error {
@@ -663,40 +645,6 @@ func setCallInfoCodec(c *callInfo) error {
 	return nil
 }
 
-// parseDialTarget returns the network and address to pass to dialer
-func parseDialTarget(target string) (net string, addr string) {
-	net = "tcp"
-
-	m1 := strings.Index(target, ":")
-	m2 := strings.Index(target, ":/")
-
-	// handle unix:addr which will fail with url.Parse
-	if m1 >= 0 && m2 < 0 {
-		if n := target[0:m1]; n == "unix" {
-			net = n
-			addr = target[m1+1:]
-			return net, addr
-		}
-	}
-	if m2 >= 0 {
-		t, err := url.Parse(target)
-		if err != nil {
-			return net, target
-		}
-		scheme := t.Scheme
-		addr = t.Path
-		if scheme == "unix" {
-			net = scheme
-			if addr == "" {
-				addr = t.Host
-			}
-			return net, addr
-		}
-	}
-
-	return net, target
-}
-
 // The SupportPackageIsVersion variables are referenced from generated protocol
 // buffer files to ensure compatibility with the gRPC version used.  The latest
 // support package version is 5.
@@ -712,6 +660,6 @@ const (
 )
 
 // Version is the current grpc version.
-const Version = "1.11.3"
+const Version = "1.11.0-dev"
 
 const grpcUA = "grpc-go/" + Version
diff --git a/vendor/google.golang.org/grpc/server.go b/vendor/google.golang.org/grpc/server.go
index c6b413b9d9..997b24fa3e 100644
--- a/vendor/google.golang.org/grpc/server.go
+++ b/vendor/google.golang.org/grpc/server.go
@@ -919,8 +919,7 @@ func (s *Server) processUnaryRPC(t transport.ServerTransport, stream *transport.
 		}
 		return nil
 	}
-	ctx := NewContextWithServerTransportStream(stream.Context(), stream)
-	reply, appErr := md.Handler(srv.server, ctx, df, s.opts.unaryInt)
+	reply, appErr := md.Handler(srv.server, stream.Context(), df, s.opts.unaryInt)
 	if appErr != nil {
 		appStatus, ok := status.FromError(appErr)
 		if !ok {
@@ -996,9 +995,7 @@ func (s *Server) processStreamingRPC(t transport.ServerTransport, stream *transp
 			sh.HandleRPC(stream.Context(), end)
 		}()
 	}
-	ctx := NewContextWithServerTransportStream(stream.Context(), stream)
 	ss := &serverStream{
-		ctx:   ctx,
 		t:     t,
 		s:     stream,
 		p:     &parser{r: stream},
@@ -1092,6 +1089,7 @@ func (s *Server) processStreamingRPC(t transport.ServerTransport, stream *transp
 		ss.mu.Unlock()
 	}
 	return t.WriteStatus(ss.s, status.New(codes.OK, ""))
+
 }
 
 func (s *Server) handleStream(t transport.ServerTransport, stream *transport.Stream, trInfo *traceInfo) {
@@ -1173,40 +1171,6 @@ func (s *Server) handleStream(t transport.ServerTransport, stream *transport.Str
 	}
 }
 
-// The key to save ServerTransportStream in the context.
-type streamKey struct{}
-
-// NewContextWithServerTransportStream creates a new context from ctx and
-// attaches stream to it.
-//
-// This API is EXPERIMENTAL.
-func NewContextWithServerTransportStream(ctx context.Context, stream ServerTransportStream) context.Context {
-	return context.WithValue(ctx, streamKey{}, stream)
-}
-
-// ServerTransportStream is a minimal interface that a transport stream must
-// implement. This can be used to mock an actual transport stream for tests of
-// handler code that use, for example, grpc.SetHeader (which requires some
-// stream to be in context).
-//
-// See also NewContextWithServerTransportStream.
-//
-// This API is EXPERIMENTAL.
-type ServerTransportStream interface {
-	Method() string
-	SetHeader(md metadata.MD) error
-	SendHeader(md metadata.MD) error
-	SetTrailer(md metadata.MD) error
-}
-
-// serverStreamFromContext returns the server stream saved in ctx. Returns
-// nil if the given context has no stream associated with it (which implies
-// it is not an RPC invocation context).
-func serverTransportStreamFromContext(ctx context.Context) ServerTransportStream {
-	s, _ := ctx.Value(streamKey{}).(ServerTransportStream)
-	return s
-}
-
 // Stop stops the gRPC server. It immediately closes all open
 // connections and listeners.
 // It cancels all active RPCs on the server side and the corresponding
@@ -1327,8 +1291,8 @@ func SetHeader(ctx context.Context, md metadata.MD) error {
 	if md.Len() == 0 {
 		return nil
 	}
-	stream := serverTransportStreamFromContext(ctx)
-	if stream == nil {
+	stream, ok := transport.StreamFromContext(ctx)
+	if !ok {
 		return status.Errorf(codes.Internal, "grpc: failed to fetch the stream from the context %v", ctx)
 	}
 	return stream.SetHeader(md)
@@ -1337,11 +1301,15 @@ func SetHeader(ctx context.Context, md metadata.MD) error {
 // SendHeader sends header metadata. It may be called at most once.
 // The provided md and headers set by SetHeader() will be sent.
 func SendHeader(ctx context.Context, md metadata.MD) error {
-	stream := serverTransportStreamFromContext(ctx)
-	if stream == nil {
+	stream, ok := transport.StreamFromContext(ctx)
+	if !ok {
 		return status.Errorf(codes.Internal, "grpc: failed to fetch the stream from the context %v", ctx)
 	}
-	if err := stream.SendHeader(md); err != nil {
+	t := stream.ServerTransport()
+	if t == nil {
+		grpclog.Fatalf("grpc: SendHeader: %v has no ServerTransport to send header metadata.", stream)
+	}
+	if err := t.WriteHeader(stream, md); err != nil {
 		return toRPCErr(err)
 	}
 	return nil
@@ -1353,19 +1321,9 @@ func SetTrailer(ctx context.Context, md metadata.MD) error {
 	if md.Len() == 0 {
 		return nil
 	}
-	stream := serverTransportStreamFromContext(ctx)
-	if stream == nil {
+	stream, ok := transport.StreamFromContext(ctx)
+	if !ok {
 		return status.Errorf(codes.Internal, "grpc: failed to fetch the stream from the context %v", ctx)
 	}
 	return stream.SetTrailer(md)
 }
-
-// Method returns the method string for the server context.  The returned
-// string is in the format of "/service/method".
-func Method(ctx context.Context) (string, bool) {
-	s := serverTransportStreamFromContext(ctx)
-	if s == nil {
-		return "", false
-	}
-	return s.Method(), true
-}
diff --git a/vendor/google.golang.org/grpc/status/status.go b/vendor/google.golang.org/grpc/status/status.go
index 9c61b09450..3a42dc6de0 100644
--- a/vendor/google.golang.org/grpc/status/status.go
+++ b/vendor/google.golang.org/grpc/status/status.go
@@ -46,7 +46,7 @@ func (se *statusError) Error() string {
 	return fmt.Sprintf("rpc error: code = %s desc = %s", codes.Code(p.GetCode()), p.GetMessage())
 }
 
-func (se *statusError) GRPCStatus() *Status {
+func (se *statusError) status() *Status {
 	return &Status{s: (*spb.Status)(se)}
 }
 
@@ -120,14 +120,14 @@ func FromProto(s *spb.Status) *Status {
 }
 
 // FromError returns a Status representing err if it was produced from this
-// package or has a method `GRPCStatus() *Status`. Otherwise, ok is false and a
-// Status is returned with codes.Unknown and the original error message.
+// package. Otherwise, ok is false and a Status is returned with codes.Unknown
+// and the original error message.
 func FromError(err error) (s *Status, ok bool) {
 	if err == nil {
 		return &Status{s: &spb.Status{Code: int32(codes.OK)}}, true
 	}
-	if se, ok := err.(interface{ GRPCStatus() *Status }); ok {
-		return se.GRPCStatus(), true
+	if se, ok := err.(*statusError); ok {
+		return se.status(), true
 	}
 	return New(codes.Unknown, err.Error()), false
 }
@@ -182,8 +182,8 @@ func Code(err error) codes.Code {
 	if err == nil {
 		return codes.OK
 	}
-	if se, ok := err.(interface{ GRPCStatus() *Status }); ok {
-		return se.GRPCStatus().Code()
+	if se, ok := err.(*statusError); ok {
+		return se.status().Code()
 	}
 	return codes.Unknown
 }
diff --git a/vendor/google.golang.org/grpc/stream.go b/vendor/google.golang.org/grpc/stream.go
index 75a4e8d45b..34d7414f91 100644
--- a/vendor/google.golang.org/grpc/stream.go
+++ b/vendor/google.golang.org/grpc/stream.go
@@ -104,7 +104,7 @@ type ClientStream interface {
 func (cc *ClientConn) NewStream(ctx context.Context, desc *StreamDesc, method string, opts ...CallOption) (ClientStream, error) {
 	// allow interceptor to see all applicable call options, which means those
 	// configured as defaults from dial option as well as per-call options
-	opts = combine(cc.dopts.callOptions, opts)
+	opts = append(cc.dopts.callOptions, opts...)
 
 	if cc.dopts.streamInt != nil {
 		return cc.dopts.streamInt(ctx, desc, cc, method, newClientStream, opts...)
@@ -608,7 +608,6 @@ type ServerStream interface {
 
 // serverStream implements a server side Stream.
 type serverStream struct {
-	ctx   context.Context
 	t     transport.ServerTransport
 	s     *transport.Stream
 	p     *parser
@@ -629,7 +628,7 @@ type serverStream struct {
 }
 
 func (ss *serverStream) Context() context.Context {
-	return ss.ctx
+	return ss.s.Context()
 }
 
 func (ss *serverStream) SetHeader(md metadata.MD) error {
@@ -732,5 +731,9 @@ func (ss *serverStream) RecvMsg(m interface{}) (err error) {
 // MethodFromServerStream returns the method string for the input stream.
 // The returned string is in the format of "/service/method".
 func MethodFromServerStream(stream ServerStream) (string, bool) {
-	return Method(stream.Context())
+	s, ok := transport.StreamFromContext(stream.Context())
+	if !ok {
+		return "", ok
+	}
+	return s.Method(), ok
 }
diff --git a/vendor/google.golang.org/grpc/transport/handler_server.go b/vendor/google.golang.org/grpc/transport/handler_server.go
index 1a5e96c5a1..9937fff999 100644
--- a/vendor/google.golang.org/grpc/transport/handler_server.go
+++ b/vendor/google.golang.org/grpc/transport/handler_server.go
@@ -354,7 +354,8 @@ func (ht *serverHandlerTransport) HandleStreams(startStream func(*Stream), trace
 		pr.AuthInfo = credentials.TLSInfo{State: *req.TLS}
 	}
 	ctx = metadata.NewIncomingContext(ctx, ht.headerMD)
-	s.ctx = peer.NewContext(ctx, pr)
+	ctx = peer.NewContext(ctx, pr)
+	s.ctx = newContextWithStream(ctx, s)
 	if ht.stats != nil {
 		s.ctx = ht.stats.TagRPC(s.ctx, &stats.RPCTagInfo{FullMethodName: s.method})
 		inHeader := &stats.InHeader{
diff --git a/vendor/google.golang.org/grpc/transport/http2_server.go b/vendor/google.golang.org/grpc/transport/http2_server.go
index 97b214c640..eb73b722a9 100644
--- a/vendor/google.golang.org/grpc/transport/http2_server.go
+++ b/vendor/google.golang.org/grpc/transport/http2_server.go
@@ -307,6 +307,10 @@ func (t *http2Server) operateHeaders(frame *http2.MetaHeadersFrame, handle func(
 		pr.AuthInfo = t.authInfo
 	}
 	s.ctx = peer.NewContext(s.ctx, pr)
+	// Cache the current stream to the context so that the server application
+	// can find out. Required when the server wants to send some metadata
+	// back to the client (unary call only).
+	s.ctx = newContextWithStream(s.ctx, s)
 	// Attach the received metadata to the context.
 	if len(state.mdata) > 0 {
 		s.ctx = metadata.NewIncomingContext(s.ctx, state.mdata)
diff --git a/vendor/google.golang.org/grpc/transport/transport.go b/vendor/google.golang.org/grpc/transport/transport.go
index e0c1e343e7..e68f89ec45 100644
--- a/vendor/google.golang.org/grpc/transport/transport.go
+++ b/vendor/google.golang.org/grpc/transport/transport.go
@@ -366,14 +366,6 @@ func (s *Stream) SetHeader(md metadata.MD) error {
 	return nil
 }
 
-// SendHeader sends the given header metadata. The given metadata is
-// combined with any metadata set by previous calls to SetHeader and
-// then written to the transport stream.
-func (s *Stream) SendHeader(md metadata.MD) error {
-	t := s.ServerTransport()
-	return t.WriteHeader(s, md)
-}
-
 // SetTrailer sets the trailer metadata which will be sent with the RPC status
 // by the server. This can be called multiple times. Server side only.
 func (s *Stream) SetTrailer(md metadata.MD) error {
@@ -453,6 +445,21 @@ func (s *Stream) GoString() string {
 	return fmt.Sprintf("<stream: %p, %v>", s, s.method)
 }
 
+// The key to save transport.Stream in the context.
+type streamKey struct{}
+
+// newContextWithStream creates a new context from ctx and attaches stream
+// to it.
+func newContextWithStream(ctx context.Context, stream *Stream) context.Context {
+	return context.WithValue(ctx, streamKey{}, stream)
+}
+
+// StreamFromContext returns the stream saved in ctx.
+func StreamFromContext(ctx context.Context) (s *Stream, ok bool) {
+	s, ok = ctx.Value(streamKey{}).(*Stream)
+	return
+}
+
 // state of transport
 type transportState int
 

From f5b84574052a4473f59bfe64921cf5a3fcc88b27 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 9 May 2018 12:01:05 -0700
Subject: [PATCH 53/69] Add shell command to commands.go

---
 pkg/commands/commands.go | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index 0d8e6cafab..dc3ea66e12 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -63,6 +63,8 @@ func GetCommand(cmd instructions.Command, buildcontext string) (DockerCommand, e
 		return &VolumeCommand{cmd: c}, nil
 	case *instructions.StopSignalCommand:
 		return &StopSignalCommand{cmd: c}, nil
+	case *instructions.ShellCommand:
+		return &ShellCommand{cmd: c}, nil
 	case *instructions.MaintainerCommand:
 		logrus.Warnf("%s is deprecated, skipping", cmd.Name())
 		return nil, nil

From 26d8501489e0494f2dd4fa34126bb4e34e6c9d3a Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 9 May 2018 11:58:58 -0700
Subject: [PATCH 54/69] Support BuildArgs for arg command

---
 README.md                                     |  1 -
 cmd/executor/cmd/root.go                      | 28 +++++++++--
 .../dockerfiles/Dockerfile_test_add           |  4 ++
 .../dockerfiles/Dockerfile_test_onbuild       |  3 +-
 .../dockerfiles/Dockerfile_test_run           |  4 ++
 .../dockerfiles/Dockerfile_test_scratch       | 16 +++++--
 .../dockerfiles/Dockerfile_test_workdir       |  4 ++
 integration_tests/integration_test_yaml.go    | 33 +++++++++++--
 pkg/commands/add.go                           |  8 ++--
 pkg/commands/arg.go                           | 46 +++++++++++++++++++
 pkg/commands/cmd.go                           |  3 +-
 pkg/commands/cmd_test.go                      |  8 ++--
 pkg/commands/commands.go                      |  5 +-
 pkg/commands/copy.go                          | 13 ++++--
 pkg/commands/entrypoint.go                    |  3 +-
 pkg/commands/entrypoint_test.go               |  2 +-
 pkg/commands/env.go                           |  8 ++--
 pkg/commands/env_test.go                      | 24 ++++++++--
 pkg/commands/expose.go                        |  6 ++-
 pkg/commands/expose_test.go                   |  9 ++--
 pkg/commands/label.go                         | 16 +++++--
 pkg/commands/label_test.go                    | 25 +++++++---
 pkg/commands/onbuild.go                       |  6 ++-
 pkg/commands/onbuild_test.go                  |  5 +-
 pkg/commands/run.go                           | 14 +++---
 pkg/commands/shell.go                         |  6 +--
 pkg/commands/shell_test.go                    |  2 +-
 pkg/commands/stopsignal.go                    |  9 ++--
 pkg/commands/stopsignal_test.go               |  7 +--
 pkg/commands/user.go                          | 13 +++---
 pkg/commands/user_test.go                     |  4 +-
 pkg/commands/volume.go                        |  6 ++-
 pkg/commands/volume_test.go                   |  5 +-
 pkg/commands/workdir.go                       |  6 ++-
 pkg/commands/workdir_test.go                  |  4 +-
 pkg/dockerfile/buildargs.go                   | 35 ++++++++++++++
 pkg/executor/executor.go                      |  5 +-
 pkg/util/command_util.go                      |  9 ++++
 38 files changed, 314 insertions(+), 91 deletions(-)
 create mode 100644 pkg/commands/arg.go
 create mode 100644 pkg/dockerfile/buildargs.go

diff --git a/README.md b/README.md
index dfbd11a5be..63910619d0 100644
--- a/README.md
+++ b/README.md
@@ -36,7 +36,6 @@ After each command, we append a layer of changed files to the base image (if the
 The majority of Dockerfile commands can be executed with kaniko, but we're still working on supporting the following commands:
 
 * HEALTHCHECK
-* ARG
 
 Multi-Stage Dockerfiles are also unsupported currently, but will be ready soon.
 
diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index 2e5d0a66a8..faeafba0a1 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -21,9 +21,9 @@ import (
 	"os"
 	"path/filepath"
 
-	"github.com/genuinetools/amicontained/container"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/executor"
+	"github.com/genuinetools/amicontained/container"
+	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
@@ -40,6 +40,7 @@ var (
 	dockerInsecureSkipTLSVerify bool
 	logLevel                    string
 	force                       bool
+	buildArgs                   buildArg
 )
 
 func init() {
@@ -49,6 +50,7 @@ func init() {
 	RootCmd.PersistentFlags().StringVarP(&destination, "destination", "d", "", "Registry the final image should be pushed to (ex: gcr.io/test/example:latest)")
 	RootCmd.MarkPersistentFlagRequired("destination")
 	RootCmd.PersistentFlags().StringVarP(&snapshotMode, "snapshotMode", "", "full", "Set this flag to change the file attributes inspected during snapshotting")
+	RootCmd.PersistentFlags().VarP(&buildArgs, "build-arg", "", "This flag allows you to pass in ARG values at build time. Set it repeatedly for multiple values.")
 	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")
 	RootCmd.PersistentFlags().BoolVarP(&force, "force", "", false, "Force building outside of a container")
@@ -77,13 +79,33 @@ var RootCmd = &cobra.Command{
 			logrus.Error(err)
 			os.Exit(1)
 		}
-		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify); err != nil {
+		if err := executor.DoBuild(dockerfilePath, srcContext, destination, snapshotMode, dockerInsecureSkipTLSVerify, buildArgs); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
 	},
 }
 
+type buildArg []string
+
+// Now, for our new type, implement the two methods of
+// the flag.Value interface...
+// The first method is String() string
+func (b *buildArg) String() string {
+	return strings.Join(*b, ",")
+}
+
+// The second method is Set(value string) error
+func (b *buildArg) Set(value string) error {
+	logrus.Infof("appending to build args %s", value)
+	*b = append(*b, value)
+	return nil
+}
+
+func (b *buildArg) Type() string {
+	return "Build ARG Type"
+}
+
 func checkContained() bool {
 	_, err := container.DetectRuntime()
 	return err == nil
diff --git a/integration_tests/dockerfiles/Dockerfile_test_add b/integration_tests/dockerfiles/Dockerfile_test_add
index 6fb9d73a7c..4b58ee6fa2 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_add
+++ b/integration_tests/dockerfiles/Dockerfile_test_add
@@ -14,5 +14,9 @@ ADD $contextenv/* /tmp/${contextenv}/
 ADD context/tars/fil* /tars/
 ADD context/tars/file.tar /tars_again
 
+# Test with ARG
+ARG file
+COPY $file /arg
+
 # Finally, test adding a remote URL, concurrently with a normal file
 ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3/docker-credential-gcr_linux_386-1.4.3.tar.gz context/foo /test/all/
diff --git a/integration_tests/dockerfiles/Dockerfile_test_onbuild b/integration_tests/dockerfiles/Dockerfile_test_onbuild
index 2968c0c622..ab145e69e9 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_onbuild
+++ b/integration_tests/dockerfiles/Dockerfile_test_onbuild
@@ -1,6 +1,7 @@
 FROM gcr.io/kaniko-test/onbuild-base:latest
 COPY context/foo foo
 ENV dir /new/workdir/
-ONBUILD RUN echo "onbuild" > /tmp/onbuild
+ARG file
+ONBUILD RUN echo "onbuild" > $file
 ONBUILD RUN echo "onbuild 2" > ${dir}
 ONBUILD WORKDIR /new/workdir
diff --git a/integration_tests/dockerfiles/Dockerfile_test_run b/integration_tests/dockerfiles/Dockerfile_test_run
index 66307da876..ee5640f8bb 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_run
+++ b/integration_tests/dockerfiles/Dockerfile_test_run
@@ -17,3 +17,7 @@ RUN echo "hey" > /etc/foo
 RUN echo "baz" > /etc/baz
 RUN cp /etc/baz /etc/bar
 RUN rm /etc/baz
+
+# Test with ARG
+ARG file
+RUN echo "run" > $file
diff --git a/integration_tests/dockerfiles/Dockerfile_test_scratch b/integration_tests/dockerfiles/Dockerfile_test_scratch
index 0fb22d93b4..e2a1383ee1 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_scratch
+++ b/integration_tests/dockerfiles/Dockerfile_test_scratch
@@ -1,4 +1,14 @@
 FROM scratch
-ADD context/foo /foo
-ENV hello hello
-ADD context/foo /$hello
+# First, make sure simple arg replacement works
+ARG file
+COPY $file /foo
+# Check that setting a default value works
+ARG file2=context/bar/bat
+COPY $file2 /bat
+# Check that overriding a default value works
+ARG file3=context/bar/baz
+COPY $file3 /baz
+# Check that setting an ENV will override the ARG
+ENV file context/bar/bam/bat
+COPY $file /env 
+
diff --git a/integration_tests/dockerfiles/Dockerfile_test_workdir b/integration_tests/dockerfiles/Dockerfile_test_workdir
index beb508d2bf..9c2794f702 100644
--- a/integration_tests/dockerfiles/Dockerfile_test_workdir
+++ b/integration_tests/dockerfiles/Dockerfile_test_workdir
@@ -11,3 +11,7 @@ ENV dir /another/new/dir
 WORKDIR $dir/newdir
 WORKDIR $dir/$doesntexist
 WORKDIR /
+
+# Test with ARG
+ARG workdir
+WORKDIR $workdir
diff --git a/integration_tests/integration_test_yaml.go b/integration_tests/integration_test_yaml.go
index d5f7dc2a21..9339516724 100644
--- a/integration_tests/integration_test_yaml.go
+++ b/integration_tests/integration_test_yaml.go
@@ -47,6 +47,7 @@ var fileTests = []struct {
 	kanikoContextBucket bool
 	repo                string
 	snapshotMode        string
+	args                []string
 }{
 	{
 		description:    "test extract filesystem",
@@ -64,6 +65,9 @@ var fileTests = []struct {
 		dockerContext:  dockerfilesPath,
 		kanikoContext:  dockerfilesPath,
 		repo:           "test-run",
+		args: []string{
+			"file=/file",
+		},
 	},
 	{
 		description:    "test run no files changed",
@@ -99,6 +103,9 @@ var fileTests = []struct {
 		dockerContext:  buildcontextPath,
 		kanikoContext:  buildcontextPath,
 		repo:           "test-workdir",
+		args: []string{
+			"workdir=/arg/workdir",
+		},
 	},
 	{
 		description:    "test volume",
@@ -115,6 +122,9 @@ var fileTests = []struct {
 		dockerContext:  buildcontextPath,
 		kanikoContext:  buildcontextPath,
 		repo:           "test-add",
+		args: []string{
+			"file=context/foo",
+		},
 	},
 	{
 		description:    "test mv add",
@@ -139,6 +149,9 @@ var fileTests = []struct {
 		dockerContext:  buildcontextPath,
 		kanikoContext:  buildcontextPath,
 		repo:           "test-onbuild",
+		args: []string{
+			"file=/tmp/onbuild",
+		},
 	},
 	{
 		description:    "test scratch",
@@ -147,6 +160,11 @@ var fileTests = []struct {
 		dockerContext:  buildcontextPath,
 		kanikoContext:  buildcontextPath,
 		repo:           "test-scratch",
+		args: []string{
+			"hello=hello-value",
+			"file=context/foo",
+			"file3=context/b*",
+		},
 	},
 }
 
@@ -231,18 +249,23 @@ func main() {
 		Args: []string{"push", onbuildBaseImage},
 	}
 	y := testyaml{
-		Steps: []step{containerDiffStep, containerDiffPermissions, GCSBucketTarBuildContext, uploadTarBuildContext, buildExecutorImage,
-			buildOnbuildImage, pushOnbuildBase},
+		Steps: []step{containerDiffStep, containerDiffPermissions, GCSBucketTarBuildContext,
+			uploadTarBuildContext, buildExecutorImage, buildOnbuildImage, pushOnbuildBase},
 		Timeout: "1200s",
 	}
 	for _, test := range fileTests {
 		// First, build the image with docker
 		dockerImageTag := testRepo + dockerPrefix + test.repo
+		var buildArgs []string
+		buildArgFlag := "--build-arg"
+		for _, arg := range test.args {
+			buildArgs = append(buildArgs, buildArgFlag)
+			buildArgs = append(buildArgs, arg)
+		}
 		dockerBuild := step{
 			Name: dockerImage,
-			Args: []string{"build", "-t", dockerImageTag, "-f", test.dockerfilePath, test.dockerContext},
+			Args: append([]string{"build", "-t", dockerImageTag, "-f", test.dockerfilePath, test.dockerContext}, buildArgs...),
 		}
-
 		// Then, buld the image with kaniko
 		kanikoImage := testRepo + kanikoPrefix + test.repo
 		snapshotMode := ""
@@ -255,7 +278,7 @@ func main() {
 		}
 		kaniko := step{
 			Name: executorImage,
-			Args: []string{"--destination", kanikoImage, "--dockerfile", test.dockerfilePath, contextFlag, test.kanikoContext, snapshotMode},
+			Args: append([]string{"--destination", kanikoImage, "--dockerfile", test.dockerfilePath, contextFlag, test.kanikoContext, snapshotMode}, buildArgs...),
 		}
 
 		// Pull the kaniko image
diff --git a/pkg/commands/add.go b/pkg/commands/add.go
index f7264afec7..b407ef8711 100644
--- a/pkg/commands/add.go
+++ b/pkg/commands/add.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"path/filepath"
 	"strings"
 
@@ -41,7 +42,7 @@ type AddCommand struct {
 // 		- If dest doesn't end with a slash, the filepath is inferred to be <dest>/<filename>
 // 	2. If <src> is a local tar archive:
 // 		-If <src> is a local tar archive, it is unpacked at the dest, as 'tar -x' would
-func (a *AddCommand) ExecuteCommand(config *v1.Config) error {
+func (a *AddCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	srcs := a.cmd.SourcesAndDest[:len(a.cmd.SourcesAndDest)-1]
 	dest := a.cmd.SourcesAndDest[len(a.cmd.SourcesAndDest)-1]
 
@@ -49,7 +50,8 @@ func (a *AddCommand) ExecuteCommand(config *v1.Config) error {
 	logrus.Infof("dest: %s", dest)
 
 	// First, resolve any environment replacement
-	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(a.cmd.SourcesAndDest, config.Env, true)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(a.cmd.SourcesAndDest, replacementEnvs, true)
 	if err != nil {
 		return err
 	}
@@ -101,7 +103,7 @@ func (a *AddCommand) ExecuteCommand(config *v1.Config) error {
 		},
 		buildcontext: a.buildcontext,
 	}
-	if err := copyCmd.ExecuteCommand(config); err != nil {
+	if err := copyCmd.ExecuteCommand(config, buildArgs); err != nil {
 		return err
 	}
 	a.snapshotFiles = append(a.snapshotFiles, copyCmd.snapshotFiles...)
diff --git a/pkg/commands/arg.go b/pkg/commands/arg.go
new file mode 100644
index 0000000000..c8fd2abc53
--- /dev/null
+++ b/pkg/commands/arg.go
@@ -0,0 +1,46 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package commands
+
+import (
+	"github.com/docker/docker/builder/dockerfile"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
+	"strings"
+)
+
+type ArgCommand struct {
+	cmd *instructions.ArgCommand
+}
+
+// ExecuteCommand only needs to add this ARG key/value as seen
+func (r *ArgCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
+	logrus.Info("ARG")
+	buildArgs.AddArg(r.cmd.Key, r.cmd.Value)
+	return nil
+}
+
+// FilesToSnapshot returns an empty array since this command only touches metadata.
+func (r *ArgCommand) FilesToSnapshot() []string {
+	return []string{}
+}
+
+// CreatedBy returns some information about the command for the image config history
+func (r *ArgCommand) CreatedBy() string {
+	return strings.Join([]string{r.cmd.Name(), r.cmd.Key}, " ")
+}
diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 79f13770e3..7e20eff70a 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"strings"
 
 	"github.com/docker/docker/builder/dockerfile/instructions"
@@ -30,7 +31,7 @@ type CmdCommand struct {
 
 // ExecuteCommand executes the CMD command
 // Argument handling is the same as RUN.
-func (c *CmdCommand) ExecuteCommand(config *v1.Config) error {
+func (c *CmdCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: CMD")
 	var newCommand []string
 	if c.cmd.PrependShell {
diff --git a/pkg/commands/cmd_test.go b/pkg/commands/cmd_test.go
index a8395af691..a969e4e3f5 100644
--- a/pkg/commands/cmd_test.go
+++ b/pkg/commands/cmd_test.go
@@ -16,12 +16,10 @@ limitations under the License.
 package commands
 
 import (
-	"testing"
-
-	"github.com/google/go-containerregistry/v1"
-
 	"github.com/GoogleContainerTools/kaniko/testutil"
 	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"testing"
 )
 
 var cmdTests = []struct {
@@ -56,7 +54,7 @@ func TestExecuteCmd(t *testing.T) {
 				},
 			},
 		}
-		err := cmd.ExecuteCommand(cfg)
+		err := cmd.ExecuteCommand(cfg, nil)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedCmd, cfg.Cmd)
 	}
 }
diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index 0d8e6cafab..fb051e4d36 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/pkg/errors"
@@ -28,7 +29,7 @@ type DockerCommand interface {
 	// 	1. Making required changes to the filesystem (ex. copying files for ADD/COPY or setting ENV variables)
 	//  2. Updating metadata fields in the config
 	// It should not change the config history.
-	ExecuteCommand(*v1.Config) error
+	ExecuteCommand(*v1.Config, *dockerfile.BuildArgs) error
 	// The config history has a "created by" field, should return information about the command
 	CreatedBy() string
 	// A list of files to snapshot, empty for metadata commands or nil if we don't know
@@ -63,6 +64,8 @@ func GetCommand(cmd instructions.Command, buildcontext string) (DockerCommand, e
 		return &VolumeCommand{cmd: c}, nil
 	case *instructions.StopSignalCommand:
 		return &StopSignalCommand{cmd: c}, nil
+	case *instructions.ArgCommand:
+		return &ArgCommand{cmd: c}, nil
 	case *instructions.MaintainerCommand:
 		logrus.Warnf("%s is deprecated, skipping", cmd.Name())
 		return nil, nil
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 5f3e4f025e..499fdae993 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -18,13 +18,15 @@ package commands
 
 import (
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
+	"os"
+	"path/filepath"
+	"strings"
+
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
-	"os"
-	"path/filepath"
-	"strings"
 )
 
 type CopyCommand struct {
@@ -33,15 +35,16 @@ type CopyCommand struct {
 	snapshotFiles []string
 }
 
-func (c *CopyCommand) ExecuteCommand(config *v1.Config) error {
+func (c *CopyCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	srcs := c.cmd.SourcesAndDest[:len(c.cmd.SourcesAndDest)-1]
 	dest := c.cmd.SourcesAndDest[len(c.cmd.SourcesAndDest)-1]
 
 	logrus.Infof("cmd: copy %s", srcs)
 	logrus.Infof("dest: %s", dest)
 
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
 	// First, resolve any environment replacement
-	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.cmd.SourcesAndDest, config.Env, true)
+	resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.cmd.SourcesAndDest, replacementEnvs, true)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index 7310c2faf5..36a405021e 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"strings"
 
 	"github.com/docker/docker/builder/dockerfile/instructions"
@@ -29,7 +30,7 @@ type EntrypointCommand struct {
 }
 
 // ExecuteCommand handles command processing similar to CMD and RUN,
-func (e *EntrypointCommand) ExecuteCommand(config *v1.Config) error {
+func (e *EntrypointCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: ENTRYPOINT")
 	var newCommand []string
 	if e.cmd.PrependShell {
diff --git a/pkg/commands/entrypoint_test.go b/pkg/commands/entrypoint_test.go
index 57d28cd87b..326bbb0ae9 100644
--- a/pkg/commands/entrypoint_test.go
+++ b/pkg/commands/entrypoint_test.go
@@ -55,7 +55,7 @@ func TestEntrypointExecuteCmd(t *testing.T) {
 				},
 			},
 		}
-		err := cmd.ExecuteCommand(cfg)
+		err := cmd.ExecuteCommand(cfg, nil)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedCmd, cfg.Entrypoint)
 	}
 }
diff --git a/pkg/commands/env.go b/pkg/commands/env.go
index 4e576a3f89..a2d4f93d22 100644
--- a/pkg/commands/env.go
+++ b/pkg/commands/env.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
@@ -29,15 +30,16 @@ type EnvCommand struct {
 	cmd *instructions.EnvCommand
 }
 
-func (e *EnvCommand) ExecuteCommand(config *v1.Config) error {
+func (e *EnvCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: ENV")
 	newEnvs := e.cmd.Env
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
 	for index, pair := range newEnvs {
-		expandedKey, err := util.ResolveEnvironmentReplacement(pair.Key, config.Env, false)
+		expandedKey, err := util.ResolveEnvironmentReplacement(pair.Key, replacementEnvs, false)
 		if err != nil {
 			return err
 		}
-		expandedValue, err := util.ResolveEnvironmentReplacement(pair.Value, config.Env, false)
+		expandedValue, err := util.ResolveEnvironmentReplacement(pair.Value, replacementEnvs, false)
 		if err != nil {
 			return err
 		}
diff --git a/pkg/commands/env_test.go b/pkg/commands/env_test.go
index a321852eb1..79e095cb59 100644
--- a/pkg/commands/env_test.go
+++ b/pkg/commands/env_test.go
@@ -16,11 +16,12 @@ limitations under the License.
 package commands
 
 import (
-	"testing"
-
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/testutil"
+	docker "github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
+	"testing"
 )
 
 func TestUpdateEnvConfig(t *testing.T) {
@@ -77,6 +78,10 @@ func Test_EnvExecute(t *testing.T) {
 					Key:   "$path",
 					Value: "$home/",
 				},
+				{
+					Key:   "$buildArg1",
+					Value: "$buildArg2",
+				},
 			},
 		},
 	}
@@ -86,7 +91,20 @@ func Test_EnvExecute(t *testing.T) {
 		"home=/root",
 		"HOME=/root",
 		"/usr/=/root/",
+		"foo=foo2",
 	}
-	err := envCmd.ExecuteCommand(cfg)
+	buildArgs := setUpBuildArgs()
+	err := envCmd.ExecuteCommand(cfg, buildArgs)
 	testutil.CheckErrorAndDeepEqual(t, false, err, expectedEnvs, cfg.Env)
 }
+
+func setUpBuildArgs() *docker.BuildArgs {
+	buildArgs := dockerfile.NewBuildArgs([]string{
+		"buildArg1=foo",
+		"buildArg2=foo2",
+	})
+	buildArgs.AddArg("buildArg1", nil)
+	d := "default"
+	buildArgs.AddArg("buildArg2", &d)
+	return buildArgs
+}
diff --git a/pkg/commands/expose.go b/pkg/commands/expose.go
index b86995d75a..dc9ba6d7d1 100644
--- a/pkg/commands/expose.go
+++ b/pkg/commands/expose.go
@@ -18,6 +18,7 @@ package commands
 
 import (
 	"fmt"
+	"github.com/docker/docker/builder/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
@@ -30,17 +31,18 @@ type ExposeCommand struct {
 	cmd *instructions.ExposeCommand
 }
 
-func (r *ExposeCommand) ExecuteCommand(config *v1.Config) error {
+func (r *ExposeCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: EXPOSE")
 	// Grab the currently exposed ports
 	existingPorts := config.ExposedPorts
 	if existingPorts == nil {
 		existingPorts = make(map[string]struct{})
 	}
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
 	// Add any new ones in
 	for _, p := range r.cmd.Ports {
 		// Resolve any environment variables
-		p, err := util.ResolveEnvironmentReplacement(p, config.Env, false)
+		p, err := util.ResolveEnvironmentReplacement(p, replacementEnvs, false)
 		if err != nil {
 			return err
 		}
diff --git a/pkg/commands/expose_test.go b/pkg/commands/expose_test.go
index 4da4c3cde8..8e64d47f7c 100644
--- a/pkg/commands/expose_test.go
+++ b/pkg/commands/expose_test.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
@@ -60,8 +61,8 @@ func TestUpdateExposedPorts(t *testing.T) {
 		"8085/tcp": {},
 		"8085/udp": {},
 	}
-
-	err := exposeCmd.ExecuteCommand(cfg)
+	buildArgs := dockerfile.NewBuildArgs([]string{})
+	err := exposeCmd.ExecuteCommand(cfg, buildArgs)
 	testutil.CheckErrorAndDeepEqual(t, false, err, expectedPorts, cfg.ExposedPorts)
 }
 
@@ -79,7 +80,7 @@ func TestInvalidProtocol(t *testing.T) {
 			Ports: ports,
 		},
 	}
-
-	err := exposeCmd.ExecuteCommand(cfg)
+	buildArgs := dockerfile.NewBuildArgs([]string{})
+	err := exposeCmd.ExecuteCommand(cfg, buildArgs)
 	testutil.CheckErrorAndDeepEqual(t, true, err, nil, nil)
 }
diff --git a/pkg/commands/label.go b/pkg/commands/label.go
index 7296d4d39c..e5fbbe8925 100644
--- a/pkg/commands/label.go
+++ b/pkg/commands/label.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
@@ -29,24 +30,29 @@ type LabelCommand struct {
 	cmd *instructions.LabelCommand
 }
 
-func (r *LabelCommand) ExecuteCommand(config *v1.Config) error {
+func (r *LabelCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: LABEL")
-	return updateLabels(r.cmd.Labels, config)
+	return updateLabels(r.cmd.Labels, config, buildArgs)
 }
 
-func updateLabels(labels []instructions.KeyValuePair, config *v1.Config) error {
+func updateLabels(labels []instructions.KeyValuePair, config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	existingLabels := config.Labels
 	if existingLabels == nil {
 		existingLabels = make(map[string]string)
 	}
 	// Let's unescape values before setting the label
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
 	for index, kvp := range labels {
-		unescaped, err := util.ResolveEnvironmentReplacement(kvp.Value, []string{}, false)
+		key, err := util.ResolveEnvironmentReplacement(kvp.Key, replacementEnvs, false)
+		if err != nil {
+			return err
+		}
+		unescaped, err := util.ResolveEnvironmentReplacement(kvp.Value, replacementEnvs, false)
 		if err != nil {
 			return err
 		}
 		labels[index] = instructions.KeyValuePair{
-			Key:   kvp.Key,
+			Key:   key,
 			Value: unescaped,
 		}
 	}
diff --git a/pkg/commands/label_test.go b/pkg/commands/label_test.go
index 56a3b8069f..4b6d8fff1e 100644
--- a/pkg/commands/label_test.go
+++ b/pkg/commands/label_test.go
@@ -17,11 +17,11 @@ limitations under the License.
 package commands
 
 import (
-	"testing"
-
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/testutil"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
+	"testing"
 )
 
 func TestUpdateLabels(t *testing.T) {
@@ -48,14 +48,25 @@ func TestUpdateLabels(t *testing.T) {
 			Key:   "backslashes",
 			Value: "lots\\\\ of\\\\ words",
 		},
+		{
+			Key:   "$label",
+			Value: "foo",
+		},
+	}
+
+	arguments := []string{
+		"label=build_arg_label",
 	}
 
+	buildArgs := dockerfile.NewBuildArgs(arguments)
+	buildArgs.AddArg("label", nil)
 	expectedLabels := map[string]string{
-		"foo":         "override",
-		"bar":         "baz",
-		"multiword":   "lots of words",
-		"backslashes": "lots\\ of\\ words",
+		"foo":             "override",
+		"bar":             "baz",
+		"multiword":       "lots of words",
+		"backslashes":     "lots\\ of\\ words",
+		"build_arg_label": "foo",
 	}
-	updateLabels(labels, cfg)
+	updateLabels(labels, cfg, buildArgs)
 	testutil.CheckErrorAndDeepEqual(t, false, nil, expectedLabels, cfg.Labels)
 }
diff --git a/pkg/commands/onbuild.go b/pkg/commands/onbuild.go
index b490e1200c..53dce72ca3 100644
--- a/pkg/commands/onbuild.go
+++ b/pkg/commands/onbuild.go
@@ -18,6 +18,7 @@ package commands
 
 import (
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
@@ -28,10 +29,11 @@ type OnBuildCommand struct {
 }
 
 //ExecuteCommand adds the specified expression in Onbuild to the config
-func (o *OnBuildCommand) ExecuteCommand(config *v1.Config) error {
+func (o *OnBuildCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: ONBUILD")
 	logrus.Infof("args: %s", o.cmd.Expression)
-	resolvedExpression, err := util.ResolveEnvironmentReplacement(o.cmd.Expression, config.Env, false)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	resolvedExpression, err := util.ResolveEnvironmentReplacement(o.cmd.Expression, replacementEnvs, false)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/commands/onbuild_test.go b/pkg/commands/onbuild_test.go
index 4164823bc8..44f304184b 100644
--- a/pkg/commands/onbuild_test.go
+++ b/pkg/commands/onbuild_test.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
@@ -62,8 +63,8 @@ func TestExecuteOnbuild(t *testing.T) {
 				Expression: test.expression,
 			},
 		}
-
-		err := onbuildCmd.ExecuteCommand(cfg)
+		buildArgs := dockerfile.NewBuildArgs([]string{})
+		err := onbuildCmd.ExecuteCommand(cfg, buildArgs)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedArray, cfg.OnBuild)
 	}
 
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index 7eb545f196..de55ed15d7 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -17,22 +17,23 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
 	"os"
 	"os/exec"
 	"strconv"
 	"strings"
 	"syscall"
-
-	"github.com/docker/docker/builder/dockerfile/instructions"
-	"github.com/google/go-containerregistry/v1"
-	"github.com/sirupsen/logrus"
 )
 
 type RunCommand struct {
 	cmd *instructions.RunCommand
 }
 
-func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
+func (r *RunCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	var newCommand []string
 	if r.cmd.PrependShell {
 		// This is the default shell on Linux
@@ -54,7 +55,8 @@ func (r *RunCommand) ExecuteCommand(config *v1.Config) error {
 	cmd := exec.Command(newCommand[0], newCommand[1:]...)
 	cmd.Dir = config.WorkingDir
 	cmd.Stdout = os.Stdout
-	cmd.Env = config.Env
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	cmd.Env = replacementEnvs
 
 	// If specified, run the command as a specific user
 	if config.User != "" {
diff --git a/pkg/commands/shell.go b/pkg/commands/shell.go
index 89a4539141..48e941aae8 100644
--- a/pkg/commands/shell.go
+++ b/pkg/commands/shell.go
@@ -17,11 +17,11 @@ limitations under the License.
 package commands
 
 import (
-	"strings"
-
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
+	"strings"
 )
 
 type ShellCommand struct {
@@ -29,7 +29,7 @@ type ShellCommand struct {
 }
 
 // ExecuteCommand handles command processing similar to CMD and RUN,
-func (s *ShellCommand) ExecuteCommand(config *v1.Config) error {
+func (s *ShellCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: SHELL")
 	var newShell []string
 
diff --git a/pkg/commands/shell_test.go b/pkg/commands/shell_test.go
index 524138aabf..05d977553e 100644
--- a/pkg/commands/shell_test.go
+++ b/pkg/commands/shell_test.go
@@ -49,7 +49,7 @@ func TestShellExecuteCmd(t *testing.T) {
 				Shell: test.cmdLine,
 			},
 		}
-		err := cmd.ExecuteCommand(cfg)
+		err := cmd.ExecuteCommand(cfg, nil)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedShell, cfg.Shell)
 	}
 }
diff --git a/pkg/commands/stopsignal.go b/pkg/commands/stopsignal.go
index 65fb7d42fd..fd1988a3fc 100644
--- a/pkg/commands/stopsignal.go
+++ b/pkg/commands/stopsignal.go
@@ -17,13 +17,13 @@ limitations under the License.
 package commands
 
 import (
-	"strings"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/pkg/signal"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
+	"strings"
 )
 
 type StopSignalCommand struct {
@@ -31,11 +31,12 @@ type StopSignalCommand struct {
 }
 
 // ExecuteCommand handles command processing similar to CMD and RUN,
-func (s *StopSignalCommand) ExecuteCommand(config *v1.Config) error {
+func (s *StopSignalCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: STOPSIGNAL")
 
 	// resolve possible environment variables
-	resolvedEnvs, err := util.ResolveEnvironmentReplacementList([]string{s.cmd.Signal}, config.Env, false)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	resolvedEnvs, err := util.ResolveEnvironmentReplacementList([]string{s.cmd.Signal}, replacementEnvs, false)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/commands/stopsignal_test.go b/pkg/commands/stopsignal_test.go
index c6e717f761..cab40077d1 100644
--- a/pkg/commands/stopsignal_test.go
+++ b/pkg/commands/stopsignal_test.go
@@ -16,11 +16,11 @@ limitations under the License.
 package commands
 
 import (
-	"testing"
-
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/testutil"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
+	"testing"
 )
 
 var stopsignalTests = []struct {
@@ -54,7 +54,8 @@ func TestStopsignalExecuteCmd(t *testing.T) {
 				Signal: test.signal,
 			},
 		}
-		err := cmd.ExecuteCommand(cfg)
+		b := dockerfile.NewBuildArgs([]string{})
+		err := cmd.ExecuteCommand(cfg, b)
 		testutil.CheckErrorAndDeepEqual(t, false, err, test.expectedSignal, cfg.StopSignal)
 	}
 }
diff --git a/pkg/commands/user.go b/pkg/commands/user.go
index f33ab92de8..76fecbb448 100644
--- a/pkg/commands/user.go
+++ b/pkg/commands/user.go
@@ -17,30 +17,31 @@ limitations under the License.
 package commands
 
 import (
-	"os/user"
-	"strings"
-
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
+	"os/user"
+	"strings"
 )
 
 type UserCommand struct {
 	cmd *instructions.UserCommand
 }
 
-func (r *UserCommand) ExecuteCommand(config *v1.Config) error {
+func (r *UserCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: USER")
 	u := r.cmd.User
 	userAndGroup := strings.Split(u, ":")
-	userStr, err := util.ResolveEnvironmentReplacement(userAndGroup[0], config.Env, false)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	userStr, err := util.ResolveEnvironmentReplacement(userAndGroup[0], replacementEnvs, false)
 	if err != nil {
 		return err
 	}
 	var groupStr string
 	if len(userAndGroup) > 1 {
-		groupStr, err = util.ResolveEnvironmentReplacement(userAndGroup[1], config.Env, false)
+		groupStr, err = util.ResolveEnvironmentReplacement(userAndGroup[1], replacementEnvs, false)
 		if err != nil {
 			return err
 		}
diff --git a/pkg/commands/user_test.go b/pkg/commands/user_test.go
index 308f705ad1..f4e1759f38 100644
--- a/pkg/commands/user_test.go
+++ b/pkg/commands/user_test.go
@@ -16,6 +16,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
@@ -93,7 +94,8 @@ func TestUpdateUser(t *testing.T) {
 				User: test.user,
 			},
 		}
-		err := cmd.ExecuteCommand(cfg)
+		buildArgs := dockerfile.NewBuildArgs([]string{})
+		err := cmd.ExecuteCommand(cfg, buildArgs)
 		testutil.CheckErrorAndDeepEqual(t, test.shouldError, err, test.expectedUid, cfg.User)
 	}
 }
diff --git a/pkg/commands/volume.go b/pkg/commands/volume.go
index ae3af55269..ac1323d01d 100644
--- a/pkg/commands/volume.go
+++ b/pkg/commands/volume.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"os"
 	"strings"
 
@@ -31,10 +32,11 @@ type VolumeCommand struct {
 	snapshotFiles []string
 }
 
-func (v *VolumeCommand) ExecuteCommand(config *v1.Config) error {
+func (v *VolumeCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: VOLUME")
 	volumes := v.cmd.Volumes
-	resolvedVolumes, err := util.ResolveEnvironmentReplacementList(volumes, config.Env, true)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	resolvedVolumes, err := util.ResolveEnvironmentReplacementList(volumes, replacementEnvs, true)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/commands/volume_test.go b/pkg/commands/volume_test.go
index 9eb8c5c5e9..9045a531b0 100644
--- a/pkg/commands/volume_test.go
+++ b/pkg/commands/volume_test.go
@@ -16,6 +16,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
@@ -49,7 +50,7 @@ func TestUpdateVolume(t *testing.T) {
 		"/var/lib": {},
 		"/etc":     {},
 	}
-
-	err := volumeCmd.ExecuteCommand(cfg)
+	buildArgs := dockerfile.NewBuildArgs([]string{})
+	err := volumeCmd.ExecuteCommand(cfg, buildArgs)
 	testutil.CheckErrorAndDeepEqual(t, false, err, expectedVolumes, cfg.Volumes)
 }
diff --git a/pkg/commands/workdir.go b/pkg/commands/workdir.go
index 13a4b102b7..3014eaac95 100644
--- a/pkg/commands/workdir.go
+++ b/pkg/commands/workdir.go
@@ -17,6 +17,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"os"
 	"path/filepath"
 
@@ -31,10 +32,11 @@ type WorkdirCommand struct {
 	snapshotFiles []string
 }
 
-func (w *WorkdirCommand) ExecuteCommand(config *v1.Config) error {
+func (w *WorkdirCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
 	logrus.Info("cmd: workdir")
 	workdirPath := w.cmd.Path
-	resolvedWorkingDir, err := util.ResolveEnvironmentReplacement(workdirPath, config.Env, true)
+	replacementEnvs := util.ReplacementEnvs(config, buildArgs)
+	resolvedWorkingDir, err := util.ResolveEnvironmentReplacement(workdirPath, replacementEnvs, true)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/commands/workdir_test.go b/pkg/commands/workdir_test.go
index 426cf47184..26fe8f578b 100644
--- a/pkg/commands/workdir_test.go
+++ b/pkg/commands/workdir_test.go
@@ -16,6 +16,7 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"testing"
 
 	"github.com/GoogleContainerTools/kaniko/testutil"
@@ -78,7 +79,8 @@ func TestWorkdirCommand(t *testing.T) {
 			},
 			snapshotFiles: []string{},
 		}
-		cmd.ExecuteCommand(cfg)
+		buildArgs := dockerfile.NewBuildArgs([]string{})
+		cmd.ExecuteCommand(cfg, buildArgs)
 		testutil.CheckErrorAndDeepEqual(t, false, nil, test.expectedPath, cfg.WorkingDir)
 	}
 }
diff --git a/pkg/dockerfile/buildargs.go b/pkg/dockerfile/buildargs.go
new file mode 100644
index 0000000000..923d59e675
--- /dev/null
+++ b/pkg/dockerfile/buildargs.go
@@ -0,0 +1,35 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package dockerfile
+
+import (
+	d "github.com/docker/docker/builder/dockerfile"
+	"strings"
+)
+
+func NewBuildArgs(args []string) *d.BuildArgs {
+	argsFromOptions := make(map[string]*string)
+	for _, a := range args {
+		s := strings.Split(a, "=")
+		if len(s) == 1 {
+			argsFromOptions[s[0]] = nil
+		} else {
+			argsFromOptions[s[0]] = &s[1]
+		}
+	}
+	return d.NewBuildArgs(argsFromOptions)
+}
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index 4fbef060ef..f6b1fc3ce1 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -44,7 +44,7 @@ import (
 	"github.com/sirupsen/logrus"
 )
 
-func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool) error {
+func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, dockerInsecureSkipTLSVerify bool, args []string) error {
 	// Parse dockerfile and unpack base image to root
 	d, err := ioutil.ReadFile(dockerfilePath)
 	if err != nil {
@@ -108,6 +108,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 	if err != nil {
 		return err
 	}
+	buildArgs := dockerfile.NewBuildArgs(args)
 	// Currently only supports single stage builds
 	for _, stage := range stages {
 		if err := resolveOnBuild(&stage, &imageConfig.Config); err != nil {
@@ -121,7 +122,7 @@ func DoBuild(dockerfilePath, srcContext, destination, snapshotMode string, docke
 			if dockerCommand == nil {
 				continue
 			}
-			if err := dockerCommand.ExecuteCommand(&imageConfig.Config); err != nil {
+			if err := dockerCommand.ExecuteCommand(&imageConfig.Config, buildArgs); err != nil {
 				return err
 			}
 			// Now, we get the files to snapshot from this command and take the snapshot
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index 20efd19a37..d58d8c7a44 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -17,9 +17,11 @@ limitations under the License.
 package util
 
 import (
+	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/builder/dockerfile/parser"
 	"github.com/docker/docker/builder/dockerfile/shell"
+	"github.com/google/go-containerregistry/v1"
 	"github.com/pkg/errors"
 	"github.com/sirupsen/logrus"
 	"net/http"
@@ -222,3 +224,10 @@ func IsSrcRemoteFileURL(rawurl string) bool {
 	}
 	return true
 }
+
+// ReplacementEnvs returns a list of all variables that can be used for
+// environment replacement
+func ReplacementEnvs(config *v1.Config, buildArgs *dockerfile.BuildArgs) []string {
+	filtered := buildArgs.FilterAllowed(config.Env)
+	return append(config.Env, filtered...)
+}

From 9b4063d2c6add044af3264e65c1d921e5aa847e3 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 9 May 2018 12:24:45 -0700
Subject: [PATCH 55/69] Updated vendor

---
 .../docker-engine-selinux/LICENSE             | 339 -----------------
 .../docker-engine-selinux/LICENSE             | 340 -----------------
 .../src/github.com/Sirupsen/logrus/LICENSE    |  21 --
 .../src/github.com/codegangsta/cli/LICENSE    |  21 --
 .../src/github.com/coreos/go-systemd/LICENSE  | 191 ----------
 .../src/github.com/docker/docker/LICENSE      | 191 ----------
 .../src/github.com/docker/docker/NOTICE       |  19 -
 .../docker/docker/contrib/syntax/vim/LICENSE  |  22 --
 .../docker/docs/project/images/red_notice.png | Bin 45387 -> 0 bytes
 .../docker/docker/pkg/mflag/LICENSE           |  27 --
 .../docker/docker/pkg/symlink/LICENSE.APACHE  | 191 ----------
 .../docker/docker/pkg/symlink/LICENSE.BSD     |  27 --
 .../src/github.com/docker/go-units/LICENSE    | 191 ----------
 .../src/github.com/godbus/dbus/LICENSE        |  25 --
 .../src/github.com/golang/protobuf/LICENSE    |  31 --
 .../opencontainers/runtime-spec/LICENSE       | 191 ----------
 .../src/github.com/pquerna/ffjson/LICENSE     | 202 ----------
 .../src/github.com/pquerna/ffjson/NOTICE      |   8 -
 .../seccomp/libseccomp-golang/LICENSE         |  22 --
 .../github.com/syndtr/gocapability/LICENSE    |  24 --
 .../github.com/vishvananda/netlink/LICENSE    | 192 ----------
 .../runc/libcontainer/system/setns_linux.go   |  40 --
 .../libcontainer/system/syscall_linux_386.go  |  25 --
 .../libcontainer/system/syscall_linux_arm.go  |  25 --
 .../libcontainer/user/lookup_unsupported.go   |  21 --
 .../golang.org/x/net/lex/httplex/httplex.go   | 351 ------------------
 26 files changed, 2737 deletions(-)
 delete mode 100644 vendor/github.com/docker/docker/contrib/selinux-fedora-24/docker-engine-selinux/LICENSE
 delete mode 100644 vendor/github.com/docker/docker/contrib/selinux-oraclelinux-7/docker-engine-selinux/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/Sirupsen/logrus/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/codegangsta/cli/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/coreos/go-systemd/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/NOTICE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/contrib/syntax/vim/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/docs/project/images/red_notice.png
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/mflag/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.APACHE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.BSD
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/go-units/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/godbus/dbus/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/golang/protobuf/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/opencontainers/runtime-spec/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/NOTICE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/seccomp/libseccomp-golang/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/syndtr/gocapability/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/vishvananda/netlink/LICENSE
 delete mode 100644 vendor/github.com/opencontainers/runc/libcontainer/system/setns_linux.go
 delete mode 100644 vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_386.go
 delete mode 100644 vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_arm.go
 delete mode 100644 vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unsupported.go
 delete mode 100644 vendor/golang.org/x/net/lex/httplex/httplex.go

diff --git a/vendor/github.com/docker/docker/contrib/selinux-fedora-24/docker-engine-selinux/LICENSE b/vendor/github.com/docker/docker/contrib/selinux-fedora-24/docker-engine-selinux/LICENSE
deleted file mode 100644
index d511905c16..0000000000
--- a/vendor/github.com/docker/docker/contrib/selinux-fedora-24/docker-engine-selinux/LICENSE
+++ /dev/null
@@ -1,339 +0,0 @@
-		    GNU GENERAL PUBLIC LICENSE
-		       Version 2, June 1991
-
- Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
- 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
- Everyone is permitted to copy and distribute verbatim copies
- of this license document, but changing it is not allowed.
-
-			    Preamble
-
-  The licenses for most software are designed to take away your
-freedom to share and change it.  By contrast, the GNU General Public
-License is intended to guarantee your freedom to share and change free
-software--to make sure the software is free for all its users.  This
-General Public License applies to most of the Free Software
-Foundation's software and to any other program whose authors commit to
-using it.  (Some other Free Software Foundation software is covered by
-the GNU Lesser General Public License instead.)  You can apply it to
-your programs, too.
-
-  When we speak of free software, we are referring to freedom, not
-price.  Our General Public Licenses are designed to make sure that you
-have the freedom to distribute copies of free software (and charge for
-this service if you wish), that you receive source code or can get it
-if you want it, that you can change the software or use pieces of it
-in new free programs; and that you know you can do these things.
-
-  To protect your rights, we need to make restrictions that forbid
-anyone to deny you these rights or to ask you to surrender the rights.
-These restrictions translate to certain responsibilities for you if you
-distribute copies of the software, or if you modify it.
-
-  For example, if you distribute copies of such a program, whether
-gratis or for a fee, you must give the recipients all the rights that
-you have.  You must make sure that they, too, receive or can get the
-source code.  And you must show them these terms so they know their
-rights.
-
-  We protect your rights with two steps: (1) copyright the software, and
-(2) offer you this license which gives you legal permission to copy,
-distribute and/or modify the software.
-
-  Also, for each author's protection and ours, we want to make certain
-that everyone understands that there is no warranty for this free
-software.  If the software is modified by someone else and passed on, we
-want its recipients to know that what they have is not the original, so
-that any problems introduced by others will not reflect on the original
-authors' reputations.
-
-  Finally, any free program is threatened constantly by software
-patents.  We wish to avoid the danger that redistributors of a free
-program will individually obtain patent licenses, in effect making the
-program proprietary.  To prevent this, we have made it clear that any
-patent must be licensed for everyone's free use or not licensed at all.
-
-  The precise terms and conditions for copying, distribution and
-modification follow.
-
-		    GNU GENERAL PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. This License applies to any program or other work which contains
-a notice placed by the copyright holder saying it may be distributed
-under the terms of this General Public License.  The "Program", below,
-refers to any such program or work, and a "work based on the Program"
-means either the Program or any derivative work under copyright law:
-that is to say, a work containing the Program or a portion of it,
-either verbatim or with modifications and/or translated into another
-language.  (Hereinafter, translation is included without limitation in
-the term "modification".)  Each licensee is addressed as "you".
-
-Activities other than copying, distribution and modification are not
-covered by this License; they are outside its scope.  The act of
-running the Program is not restricted, and the output from the Program
-is covered only if its contents constitute a work based on the
-Program (independent of having been made by running the Program).
-Whether that is true depends on what the Program does.
-
-  1. You may copy and distribute verbatim copies of the Program's
-source code as you receive it, in any medium, provided that you
-conspicuously and appropriately publish on each copy an appropriate
-copyright notice and disclaimer of warranty; keep intact all the
-notices that refer to this License and to the absence of any warranty;
-and give any other recipients of the Program a copy of this License
-along with the Program.
-
-You may charge a fee for the physical act of transferring a copy, and
-you may at your option offer warranty protection in exchange for a fee.
-
-  2. You may modify your copy or copies of the Program or any portion
-of it, thus forming a work based on the Program, and copy and
-distribute such modifications or work under the terms of Section 1
-above, provided that you also meet all of these conditions:
-
-    a) You must cause the modified files to carry prominent notices
-    stating that you changed the files and the date of any change.
-
-    b) You must cause any work that you distribute or publish, that in
-    whole or in part contains or is derived from the Program or any
-    part thereof, to be licensed as a whole at no charge to all third
-    parties under the terms of this License.
-
-    c) If the modified program normally reads commands interactively
-    when run, you must cause it, when started running for such
-    interactive use in the most ordinary way, to print or display an
-    announcement including an appropriate copyright notice and a
-    notice that there is no warranty (or else, saying that you provide
-    a warranty) and that users may redistribute the program under
-    these conditions, and telling the user how to view a copy of this
-    License.  (Exception: if the Program itself is interactive but
-    does not normally print such an announcement, your work based on
-    the Program is not required to print an announcement.)
-
-These requirements apply to the modified work as a whole.  If
-identifiable sections of that work are not derived from the Program,
-and can be reasonably considered independent and separate works in
-themselves, then this License, and its terms, do not apply to those
-sections when you distribute them as separate works.  But when you
-distribute the same sections as part of a whole which is a work based
-on the Program, the distribution of the whole must be on the terms of
-this License, whose permissions for other licensees extend to the
-entire whole, and thus to each and every part regardless of who wrote it.
-
-Thus, it is not the intent of this section to claim rights or contest
-your rights to work written entirely by you; rather, the intent is to
-exercise the right to control the distribution of derivative or
-collective works based on the Program.
-
-In addition, mere aggregation of another work not based on the Program
-with the Program (or with a work based on the Program) on a volume of
-a storage or distribution medium does not bring the other work under
-the scope of this License.
-
-  3. You may copy and distribute the Program (or a work based on it,
-under Section 2) in object code or executable form under the terms of
-Sections 1 and 2 above provided that you also do one of the following:
-
-    a) Accompany it with the complete corresponding machine-readable
-    source code, which must be distributed under the terms of Sections
-    1 and 2 above on a medium customarily used for software interchange; or,
-
-    b) Accompany it with a written offer, valid for at least three
-    years, to give any third party, for a charge no more than your
-    cost of physically performing source distribution, a complete
-    machine-readable copy of the corresponding source code, to be
-    distributed under the terms of Sections 1 and 2 above on a medium
-    customarily used for software interchange; or,
-
-    c) Accompany it with the information you received as to the offer
-    to distribute corresponding source code.  (This alternative is
-    allowed only for noncommercial distribution and only if you
-    received the program in object code or executable form with such
-    an offer, in accord with Subsection b above.)
-
-The source code for a work means the preferred form of the work for
-making modifications to it.  For an executable work, complete source
-code means all the source code for all modules it contains, plus any
-associated interface definition files, plus the scripts used to
-control compilation and installation of the executable.  However, as a
-special exception, the source code distributed need not include
-anything that is normally distributed (in either source or binary
-form) with the major components (compiler, kernel, and so on) of the
-operating system on which the executable runs, unless that component
-itself accompanies the executable.
-
-If distribution of executable or object code is made by offering
-access to copy from a designated place, then offering equivalent
-access to copy the source code from the same place counts as
-distribution of the source code, even though third parties are not
-compelled to copy the source along with the object code.
-
-  4. You may not copy, modify, sublicense, or distribute the Program
-except as expressly provided under this License.  Any attempt
-otherwise to copy, modify, sublicense or distribute the Program is
-void, and will automatically terminate your rights under this License.
-However, parties who have received copies, or rights, from you under
-this License will not have their licenses terminated so long as such
-parties remain in full compliance.
-
-  5. You are not required to accept this License, since you have not
-signed it.  However, nothing else grants you permission to modify or
-distribute the Program or its derivative works.  These actions are
-prohibited by law if you do not accept this License.  Therefore, by
-modifying or distributing the Program (or any work based on the
-Program), you indicate your acceptance of this License to do so, and
-all its terms and conditions for copying, distributing or modifying
-the Program or works based on it.
-
-  6. Each time you redistribute the Program (or any work based on the
-Program), the recipient automatically receives a license from the
-original licensor to copy, distribute or modify the Program subject to
-these terms and conditions.  You may not impose any further
-restrictions on the recipients' exercise of the rights granted herein.
-You are not responsible for enforcing compliance by third parties to
-this License.
-
-  7. If, as a consequence of a court judgment or allegation of patent
-infringement or for any other reason (not limited to patent issues),
-conditions are imposed on you (whether by court order, agreement or
-otherwise) that contradict the conditions of this License, they do not
-excuse you from the conditions of this License.  If you cannot
-distribute so as to satisfy simultaneously your obligations under this
-License and any other pertinent obligations, then as a consequence you
-may not distribute the Program at all.  For example, if a patent
-license would not permit royalty-free redistribution of the Program by
-all those who receive copies directly or indirectly through you, then
-the only way you could satisfy both it and this License would be to
-refrain entirely from distribution of the Program.
-
-If any portion of this section is held invalid or unenforceable under
-any particular circumstance, the balance of the section is intended to
-apply and the section as a whole is intended to apply in other
-circumstances.
-
-It is not the purpose of this section to induce you to infringe any
-patents or other property right claims or to contest validity of any
-such claims; this section has the sole purpose of protecting the
-integrity of the free software distribution system, which is
-implemented by public license practices.  Many people have made
-generous contributions to the wide range of software distributed
-through that system in reliance on consistent application of that
-system; it is up to the author/donor to decide if he or she is willing
-to distribute software through any other system and a licensee cannot
-impose that choice.
-
-This section is intended to make thoroughly clear what is believed to
-be a consequence of the rest of this License.
-
-  8. If the distribution and/or use of the Program is restricted in
-certain countries either by patents or by copyrighted interfaces, the
-original copyright holder who places the Program under this License
-may add an explicit geographical distribution limitation excluding
-those countries, so that distribution is permitted only in or among
-countries not thus excluded.  In such case, this License incorporates
-the limitation as if written in the body of this License.
-
-  9. The Free Software Foundation may publish revised and/or new versions
-of the General Public License from time to time.  Such new versions will
-be similar in spirit to the present version, but may differ in detail to
-address new problems or concerns.
-
-Each version is given a distinguishing version number.  If the Program
-specifies a version number of this License which applies to it and "any
-later version", you have the option of following the terms and conditions
-either of that version or of any later version published by the Free
-Software Foundation.  If the Program does not specify a version number of
-this License, you may choose any version ever published by the Free Software
-Foundation.
-
-  10. If you wish to incorporate parts of the Program into other free
-programs whose distribution conditions are different, write to the author
-to ask for permission.  For software which is copyrighted by the Free
-Software Foundation, write to the Free Software Foundation; we sometimes
-make exceptions for this.  Our decision will be guided by the two goals
-of preserving the free status of all derivatives of our free software and
-of promoting the sharing and reuse of software generally.
-
-			    NO WARRANTY
-
-  11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
-FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW.  EXCEPT WHEN
-OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
-PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED
-OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
-MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.  THE ENTIRE RISK AS
-TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU.  SHOULD THE
-PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING,
-REPAIR OR CORRECTION.
-
-  12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
-WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
-REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES,
-INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING
-OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED
-TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY
-YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
-PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
-POSSIBILITY OF SUCH DAMAGES.
-
-		     END OF TERMS AND CONDITIONS
-
-	    How to Apply These Terms to Your New Programs
-
-  If you develop a new program, and you want it to be of the greatest
-possible use to the public, the best way to achieve this is to make it
-free software which everyone can redistribute and change under these terms.
-
-  To do so, attach the following notices to the program.  It is safest
-to attach them to the start of each source file to most effectively
-convey the exclusion of warranty; and each file should have at least
-the "copyright" line and a pointer to where the full notice is found.
-
-    <one line to give the program's name and a brief idea of what it does.>
-    Copyright (C) <year>  <name of author>
-
-    This program is free software; you can redistribute it and/or modify
-    it under the terms of the GNU General Public License as published by
-    the Free Software Foundation; either version 2 of the License, or
-    (at your option) any later version.
-
-    This program is distributed in the hope that it will be useful,
-    but WITHOUT ANY WARRANTY; without even the implied warranty of
-    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-    GNU General Public License for more details.
-
-    You should have received a copy of the GNU General Public License along
-    with this program; if not, write to the Free Software Foundation, Inc.,
-    51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
-
-Also add information on how to contact you by electronic and paper mail.
-
-If the program is interactive, make it output a short notice like this
-when it starts in an interactive mode:
-
-    Gnomovision version 69, Copyright (C) year name of author
-    Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
-    This is free software, and you are welcome to redistribute it
-    under certain conditions; type `show c' for details.
-
-The hypothetical commands `show w' and `show c' should show the appropriate
-parts of the General Public License.  Of course, the commands you use may
-be called something other than `show w' and `show c'; they could even be
-mouse-clicks or menu items--whatever suits your program.
-
-You should also get your employer (if you work as a programmer) or your
-school, if any, to sign a "copyright disclaimer" for the program, if
-necessary.  Here is a sample; alter the names:
-
-  Yoyodyne, Inc., hereby disclaims all copyright interest in the program
-  `Gnomovision' (which makes passes at compilers) written by James Hacker.
-
-  <signature of Ty Coon>, 1 April 1989
-  Ty Coon, President of Vice
-
-This General Public License does not permit incorporating your program into
-proprietary programs.  If your program is a subroutine library, you may
-consider it more useful to permit linking proprietary applications with the
-library.  If this is what you want to do, use the GNU Lesser General
-Public License instead of this License.
diff --git a/vendor/github.com/docker/docker/contrib/selinux-oraclelinux-7/docker-engine-selinux/LICENSE b/vendor/github.com/docker/docker/contrib/selinux-oraclelinux-7/docker-engine-selinux/LICENSE
deleted file mode 100644
index 5b6e7c66c2..0000000000
--- a/vendor/github.com/docker/docker/contrib/selinux-oraclelinux-7/docker-engine-selinux/LICENSE
+++ /dev/null
@@ -1,340 +0,0 @@
-		    GNU GENERAL PUBLIC LICENSE
-		       Version 2, June 1991
-
- Copyright (C) 1989, 1991 Free Software Foundation, Inc.
-                       59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
- Everyone is permitted to copy and distribute verbatim copies
- of this license document, but changing it is not allowed.
-
-			    Preamble
-
-  The licenses for most software are designed to take away your
-freedom to share and change it.  By contrast, the GNU General Public
-License is intended to guarantee your freedom to share and change free
-software--to make sure the software is free for all its users.  This
-General Public License applies to most of the Free Software
-Foundation's software and to any other program whose authors commit to
-using it.  (Some other Free Software Foundation software is covered by
-the GNU Library General Public License instead.)  You can apply it to
-your programs, too.
-
-  When we speak of free software, we are referring to freedom, not
-price.  Our General Public Licenses are designed to make sure that you
-have the freedom to distribute copies of free software (and charge for
-this service if you wish), that you receive source code or can get it
-if you want it, that you can change the software or use pieces of it
-in new free programs; and that you know you can do these things.
-
-  To protect your rights, we need to make restrictions that forbid
-anyone to deny you these rights or to ask you to surrender the rights.
-These restrictions translate to certain responsibilities for you if you
-distribute copies of the software, or if you modify it.
-
-  For example, if you distribute copies of such a program, whether
-gratis or for a fee, you must give the recipients all the rights that
-you have.  You must make sure that they, too, receive or can get the
-source code.  And you must show them these terms so they know their
-rights.
-
-  We protect your rights with two steps: (1) copyright the software, and
-(2) offer you this license which gives you legal permission to copy,
-distribute and/or modify the software.
-
-  Also, for each author's protection and ours, we want to make certain
-that everyone understands that there is no warranty for this free
-software.  If the software is modified by someone else and passed on, we
-want its recipients to know that what they have is not the original, so
-that any problems introduced by others will not reflect on the original
-authors' reputations.
-
-  Finally, any free program is threatened constantly by software
-patents.  We wish to avoid the danger that redistributors of a free
-program will individually obtain patent licenses, in effect making the
-program proprietary.  To prevent this, we have made it clear that any
-patent must be licensed for everyone's free use or not licensed at all.
-
-  The precise terms and conditions for copying, distribution and
-modification follow.
-
-		    GNU GENERAL PUBLIC LICENSE
-   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
-
-  0. This License applies to any program or other work which contains
-a notice placed by the copyright holder saying it may be distributed
-under the terms of this General Public License.  The "Program", below,
-refers to any such program or work, and a "work based on the Program"
-means either the Program or any derivative work under copyright law:
-that is to say, a work containing the Program or a portion of it,
-either verbatim or with modifications and/or translated into another
-language.  (Hereinafter, translation is included without limitation in
-the term "modification".)  Each licensee is addressed as "you".
-
-Activities other than copying, distribution and modification are not
-covered by this License; they are outside its scope.  The act of
-running the Program is not restricted, and the output from the Program
-is covered only if its contents constitute a work based on the
-Program (independent of having been made by running the Program).
-Whether that is true depends on what the Program does.
-
-  1. You may copy and distribute verbatim copies of the Program's
-source code as you receive it, in any medium, provided that you
-conspicuously and appropriately publish on each copy an appropriate
-copyright notice and disclaimer of warranty; keep intact all the
-notices that refer to this License and to the absence of any warranty;
-and give any other recipients of the Program a copy of this License
-along with the Program.
-
-You may charge a fee for the physical act of transferring a copy, and
-you may at your option offer warranty protection in exchange for a fee.
-
-  2. You may modify your copy or copies of the Program or any portion
-of it, thus forming a work based on the Program, and copy and
-distribute such modifications or work under the terms of Section 1
-above, provided that you also meet all of these conditions:
-
-    a) You must cause the modified files to carry prominent notices
-    stating that you changed the files and the date of any change.
-
-    b) You must cause any work that you distribute or publish, that in
-    whole or in part contains or is derived from the Program or any
-    part thereof, to be licensed as a whole at no charge to all third
-    parties under the terms of this License.
-
-    c) If the modified program normally reads commands interactively
-    when run, you must cause it, when started running for such
-    interactive use in the most ordinary way, to print or display an
-    announcement including an appropriate copyright notice and a
-    notice that there is no warranty (or else, saying that you provide
-    a warranty) and that users may redistribute the program under
-    these conditions, and telling the user how to view a copy of this
-    License.  (Exception: if the Program itself is interactive but
-    does not normally print such an announcement, your work based on
-    the Program is not required to print an announcement.)
-
-These requirements apply to the modified work as a whole.  If
-identifiable sections of that work are not derived from the Program,
-and can be reasonably considered independent and separate works in
-themselves, then this License, and its terms, do not apply to those
-sections when you distribute them as separate works.  But when you
-distribute the same sections as part of a whole which is a work based
-on the Program, the distribution of the whole must be on the terms of
-this License, whose permissions for other licensees extend to the
-entire whole, and thus to each and every part regardless of who wrote it.
-
-Thus, it is not the intent of this section to claim rights or contest
-your rights to work written entirely by you; rather, the intent is to
-exercise the right to control the distribution of derivative or
-collective works based on the Program.
-
-In addition, mere aggregation of another work not based on the Program
-with the Program (or with a work based on the Program) on a volume of
-a storage or distribution medium does not bring the other work under
-the scope of this License.
-
-  3. You may copy and distribute the Program (or a work based on it,
-under Section 2) in object code or executable form under the terms of
-Sections 1 and 2 above provided that you also do one of the following:
-
-    a) Accompany it with the complete corresponding machine-readable
-    source code, which must be distributed under the terms of Sections
-    1 and 2 above on a medium customarily used for software interchange; or,
-
-    b) Accompany it with a written offer, valid for at least three
-    years, to give any third party, for a charge no more than your
-    cost of physically performing source distribution, a complete
-    machine-readable copy of the corresponding source code, to be
-    distributed under the terms of Sections 1 and 2 above on a medium
-    customarily used for software interchange; or,
-
-    c) Accompany it with the information you received as to the offer
-    to distribute corresponding source code.  (This alternative is
-    allowed only for noncommercial distribution and only if you
-    received the program in object code or executable form with such
-    an offer, in accord with Subsection b above.)
-
-The source code for a work means the preferred form of the work for
-making modifications to it.  For an executable work, complete source
-code means all the source code for all modules it contains, plus any
-associated interface definition files, plus the scripts used to
-control compilation and installation of the executable.  However, as a
-special exception, the source code distributed need not include
-anything that is normally distributed (in either source or binary
-form) with the major components (compiler, kernel, and so on) of the
-operating system on which the executable runs, unless that component
-itself accompanies the executable.
-
-If distribution of executable or object code is made by offering
-access to copy from a designated place, then offering equivalent
-access to copy the source code from the same place counts as
-distribution of the source code, even though third parties are not
-compelled to copy the source along with the object code.
-
-  4. You may not copy, modify, sublicense, or distribute the Program
-except as expressly provided under this License.  Any attempt
-otherwise to copy, modify, sublicense or distribute the Program is
-void, and will automatically terminate your rights under this License.
-However, parties who have received copies, or rights, from you under
-this License will not have their licenses terminated so long as such
-parties remain in full compliance.
-
-  5. You are not required to accept this License, since you have not
-signed it.  However, nothing else grants you permission to modify or
-distribute the Program or its derivative works.  These actions are
-prohibited by law if you do not accept this License.  Therefore, by
-modifying or distributing the Program (or any work based on the
-Program), you indicate your acceptance of this License to do so, and
-all its terms and conditions for copying, distributing or modifying
-the Program or works based on it.
-
-  6. Each time you redistribute the Program (or any work based on the
-Program), the recipient automatically receives a license from the
-original licensor to copy, distribute or modify the Program subject to
-these terms and conditions.  You may not impose any further
-restrictions on the recipients' exercise of the rights granted herein.
-You are not responsible for enforcing compliance by third parties to
-this License.
-
-  7. If, as a consequence of a court judgment or allegation of patent
-infringement or for any other reason (not limited to patent issues),
-conditions are imposed on you (whether by court order, agreement or
-otherwise) that contradict the conditions of this License, they do not
-excuse you from the conditions of this License.  If you cannot
-distribute so as to satisfy simultaneously your obligations under this
-License and any other pertinent obligations, then as a consequence you
-may not distribute the Program at all.  For example, if a patent
-license would not permit royalty-free redistribution of the Program by
-all those who receive copies directly or indirectly through you, then
-the only way you could satisfy both it and this License would be to
-refrain entirely from distribution of the Program.
-
-If any portion of this section is held invalid or unenforceable under
-any particular circumstance, the balance of the section is intended to
-apply and the section as a whole is intended to apply in other
-circumstances.
-
-It is not the purpose of this section to induce you to infringe any
-patents or other property right claims or to contest validity of any
-such claims; this section has the sole purpose of protecting the
-integrity of the free software distribution system, which is
-implemented by public license practices.  Many people have made
-generous contributions to the wide range of software distributed
-through that system in reliance on consistent application of that
-system; it is up to the author/donor to decide if he or she is willing
-to distribute software through any other system and a licensee cannot
-impose that choice.
-
-This section is intended to make thoroughly clear what is believed to
-be a consequence of the rest of this License.
-
-  8. If the distribution and/or use of the Program is restricted in
-certain countries either by patents or by copyrighted interfaces, the
-original copyright holder who places the Program under this License
-may add an explicit geographical distribution limitation excluding
-those countries, so that distribution is permitted only in or among
-countries not thus excluded.  In such case, this License incorporates
-the limitation as if written in the body of this License.
-
-  9. The Free Software Foundation may publish revised and/or new versions
-of the General Public License from time to time.  Such new versions will
-be similar in spirit to the present version, but may differ in detail to
-address new problems or concerns.
-
-Each version is given a distinguishing version number.  If the Program
-specifies a version number of this License which applies to it and "any
-later version", you have the option of following the terms and conditions
-either of that version or of any later version published by the Free
-Software Foundation.  If the Program does not specify a version number of
-this License, you may choose any version ever published by the Free Software
-Foundation.
-
-  10. If you wish to incorporate parts of the Program into other free
-programs whose distribution conditions are different, write to the author
-to ask for permission.  For software which is copyrighted by the Free
-Software Foundation, write to the Free Software Foundation; we sometimes
-make exceptions for this.  Our decision will be guided by the two goals
-of preserving the free status of all derivatives of our free software and
-of promoting the sharing and reuse of software generally.
-
-			    NO WARRANTY
-
-  11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
-FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW.  EXCEPT WHEN
-OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
-PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED
-OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
-MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.  THE ENTIRE RISK AS
-TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU.  SHOULD THE
-PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING,
-REPAIR OR CORRECTION.
-
-  12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
-WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
-REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES,
-INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING
-OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED
-TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY
-YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
-PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
-POSSIBILITY OF SUCH DAMAGES.
-
-		     END OF TERMS AND CONDITIONS
-
-	    How to Apply These Terms to Your New Programs
-
-  If you develop a new program, and you want it to be of the greatest
-possible use to the public, the best way to achieve this is to make it
-free software which everyone can redistribute and change under these terms.
-
-  To do so, attach the following notices to the program.  It is safest
-to attach them to the start of each source file to most effectively
-convey the exclusion of warranty; and each file should have at least
-the "copyright" line and a pointer to where the full notice is found.
-
-    <one line to give the program's name and a brief idea of what it does.>
-    Copyright (C) <year>  <name of author>
-
-    This program is free software; you can redistribute it and/or modify
-    it under the terms of the GNU General Public License as published by
-    the Free Software Foundation; either version 2 of the License, or
-    (at your option) any later version.
-
-    This program is distributed in the hope that it will be useful,
-    but WITHOUT ANY WARRANTY; without even the implied warranty of
-    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-    GNU General Public License for more details.
-
-    You should have received a copy of the GNU General Public License
-    along with this program; if not, write to the Free Software
-    Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
-
-
-Also add information on how to contact you by electronic and paper mail.
-
-If the program is interactive, make it output a short notice like this
-when it starts in an interactive mode:
-
-    Gnomovision version 69, Copyright (C) year name of author
-    Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
-    This is free software, and you are welcome to redistribute it
-    under certain conditions; type `show c' for details.
-
-The hypothetical commands `show w' and `show c' should show the appropriate
-parts of the General Public License.  Of course, the commands you use may
-be called something other than `show w' and `show c'; they could even be
-mouse-clicks or menu items--whatever suits your program.
-
-You should also get your employer (if you work as a programmer) or your
-school, if any, to sign a "copyright disclaimer" for the program, if
-necessary.  Here is a sample; alter the names:
-
-  Yoyodyne, Inc., hereby disclaims all copyright interest in the program
-  `Gnomovision' (which makes passes at compilers) written by James Hacker.
-
-  <signature of Ty Coon>, 1 April 1989
-  Ty Coon, President of Vice
-
-This General Public License does not permit incorporating your program into
-proprietary programs.  If your program is a subroutine library, you may
-consider it more useful to permit linking proprietary applications with the
-library.  If this is what you want to do, use the GNU Library General
-Public License instead of this License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/Sirupsen/logrus/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/Sirupsen/logrus/LICENSE
deleted file mode 100644
index f090cb42f3..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/Sirupsen/logrus/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-The MIT License (MIT)
-
-Copyright (c) 2014 Simon Eskildsen
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in
-all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
-THE SOFTWARE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/codegangsta/cli/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/codegangsta/cli/LICENSE
deleted file mode 100644
index 5515ccfb71..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/codegangsta/cli/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-Copyright (C) 2013 Jeremy Saenz
-All Rights Reserved.
-
-MIT LICENSE
-
-Permission is hereby granted, free of charge, to any person obtaining a copy of
-this software and associated documentation files (the "Software"), to deal in
-the Software without restriction, including without limitation the rights to
-use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
-the Software, and to permit persons to whom the Software is furnished to do so,
-subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
-FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
-COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
-IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
-CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/coreos/go-systemd/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/coreos/go-systemd/LICENSE
deleted file mode 100644
index 37ec93a14f..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/coreos/go-systemd/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-Apache License
-Version 2.0, January 2004
-http://www.apache.org/licenses/
-
-TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-1. Definitions.
-
-"License" shall mean the terms and conditions for use, reproduction, and
-distribution as defined by Sections 1 through 9 of this document.
-
-"Licensor" shall mean the copyright owner or entity authorized by the copyright
-owner that is granting the License.
-
-"Legal Entity" shall mean the union of the acting entity and all other entities
-that control, are controlled by, or are under common control with that entity.
-For the purposes of this definition, "control" means (i) the power, direct or
-indirect, to cause the direction or management of such entity, whether by
-contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the
-outstanding shares, or (iii) beneficial ownership of such entity.
-
-"You" (or "Your") shall mean an individual or Legal Entity exercising
-permissions granted by this License.
-
-"Source" form shall mean the preferred form for making modifications, including
-but not limited to software source code, documentation source, and configuration
-files.
-
-"Object" form shall mean any form resulting from mechanical transformation or
-translation of a Source form, including but not limited to compiled object code,
-generated documentation, and conversions to other media types.
-
-"Work" shall mean the work of authorship, whether in Source or Object form, made
-available under the License, as indicated by a copyright notice that is included
-in or attached to the work (an example is provided in the Appendix below).
-
-"Derivative Works" shall mean any work, whether in Source or Object form, that
-is based on (or derived from) the Work and for which the editorial revisions,
-annotations, elaborations, or other modifications represent, as a whole, an
-original work of authorship. For the purposes of this License, Derivative Works
-shall not include works that remain separable from, or merely link (or bind by
-name) to the interfaces of, the Work and Derivative Works thereof.
-
-"Contribution" shall mean any work of authorship, including the original version
-of the Work and any modifications or additions to that Work or Derivative Works
-thereof, that is intentionally submitted to Licensor for inclusion in the Work
-by the copyright owner or by an individual or Legal Entity authorized to submit
-on behalf of the copyright owner. For the purposes of this definition,
-"submitted" means any form of electronic, verbal, or written communication sent
-to the Licensor or its representatives, including but not limited to
-communication on electronic mailing lists, source code control systems, and
-issue tracking systems that are managed by, or on behalf of, the Licensor for
-the purpose of discussing and improving the Work, but excluding communication
-that is conspicuously marked or otherwise designated in writing by the copyright
-owner as "Not a Contribution."
-
-"Contributor" shall mean Licensor and any individual or Legal Entity on behalf
-of whom a Contribution has been received by Licensor and subsequently
-incorporated within the Work.
-
-2. Grant of Copyright License.
-
-Subject to the terms and conditions of this License, each Contributor hereby
-grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free,
-irrevocable copyright license to reproduce, prepare Derivative Works of,
-publicly display, publicly perform, sublicense, and distribute the Work and such
-Derivative Works in Source or Object form.
-
-3. Grant of Patent License.
-
-Subject to the terms and conditions of this License, each Contributor hereby
-grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free,
-irrevocable (except as stated in this section) patent license to make, have
-made, use, offer to sell, sell, import, and otherwise transfer the Work, where
-such license applies only to those patent claims licensable by such Contributor
-that are necessarily infringed by their Contribution(s) alone or by combination
-of their Contribution(s) with the Work to which such Contribution(s) was
-submitted. If You institute patent litigation against any entity (including a
-cross-claim or counterclaim in a lawsuit) alleging that the Work or a
-Contribution incorporated within the Work constitutes direct or contributory
-patent infringement, then any patent licenses granted to You under this License
-for that Work shall terminate as of the date such litigation is filed.
-
-4. Redistribution.
-
-You may reproduce and distribute copies of the Work or Derivative Works thereof
-in any medium, with or without modifications, and in Source or Object form,
-provided that You meet the following conditions:
-
-You must give any other recipients of the Work or Derivative Works a copy of
-this License; and
-You must cause any modified files to carry prominent notices stating that You
-changed the files; and
-You must retain, in the Source form of any Derivative Works that You distribute,
-all copyright, patent, trademark, and attribution notices from the Source form
-of the Work, excluding those notices that do not pertain to any part of the
-Derivative Works; and
-If the Work includes a "NOTICE" text file as part of its distribution, then any
-Derivative Works that You distribute must include a readable copy of the
-attribution notices contained within such NOTICE file, excluding those notices
-that do not pertain to any part of the Derivative Works, in at least one of the
-following places: within a NOTICE text file distributed as part of the
-Derivative Works; within the Source form or documentation, if provided along
-with the Derivative Works; or, within a display generated by the Derivative
-Works, if and wherever such third-party notices normally appear. The contents of
-the NOTICE file are for informational purposes only and do not modify the
-License. You may add Your own attribution notices within Derivative Works that
-You distribute, alongside or as an addendum to the NOTICE text from the Work,
-provided that such additional attribution notices cannot be construed as
-modifying the License.
-You may add Your own copyright statement to Your modifications and may provide
-additional or different license terms and conditions for use, reproduction, or
-distribution of Your modifications, or for any such Derivative Works as a whole,
-provided Your use, reproduction, and distribution of the Work otherwise complies
-with the conditions stated in this License.
-
-5. Submission of Contributions.
-
-Unless You explicitly state otherwise, any Contribution intentionally submitted
-for inclusion in the Work by You to the Licensor shall be under the terms and
-conditions of this License, without any additional terms or conditions.
-Notwithstanding the above, nothing herein shall supersede or modify the terms of
-any separate license agreement you may have executed with Licensor regarding
-such Contributions.
-
-6. Trademarks.
-
-This License does not grant permission to use the trade names, trademarks,
-service marks, or product names of the Licensor, except as required for
-reasonable and customary use in describing the origin of the Work and
-reproducing the content of the NOTICE file.
-
-7. Disclaimer of Warranty.
-
-Unless required by applicable law or agreed to in writing, Licensor provides the
-Work (and each Contributor provides its Contributions) on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied,
-including, without limitation, any warranties or conditions of TITLE,
-NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. You are
-solely responsible for determining the appropriateness of using or
-redistributing the Work and assume any risks associated with Your exercise of
-permissions under this License.
-
-8. Limitation of Liability.
-
-In no event and under no legal theory, whether in tort (including negligence),
-contract, or otherwise, unless required by applicable law (such as deliberate
-and grossly negligent acts) or agreed to in writing, shall any Contributor be
-liable to You for damages, including any direct, indirect, special, incidental,
-or consequential damages of any character arising as a result of this License or
-out of the use or inability to use the Work (including but not limited to
-damages for loss of goodwill, work stoppage, computer failure or malfunction, or
-any and all other commercial damages or losses), even if such Contributor has
-been advised of the possibility of such damages.
-
-9. Accepting Warranty or Additional Liability.
-
-While redistributing the Work or Derivative Works thereof, You may choose to
-offer, and charge a fee for, acceptance of support, warranty, indemnity, or
-other liability obligations and/or rights consistent with this License. However,
-in accepting such obligations, You may act only on Your own behalf and on Your
-sole responsibility, not on behalf of any other Contributor, and only if You
-agree to indemnify, defend, and hold each Contributor harmless for any liability
-incurred by, or claims asserted against, such Contributor by reason of your
-accepting any such warranty or additional liability.
-
-END OF TERMS AND CONDITIONS
-
-APPENDIX: How to apply the Apache License to your work
-
-To apply the Apache License to your work, attach the following boilerplate
-notice, with the fields enclosed by brackets "[]" replaced with your own
-identifying information. (Don't include the brackets!) The text should be
-enclosed in the appropriate comment syntax for the file format. We also
-recommend that a file or class name and description of purpose be included on
-the same "printed page" as the copyright notice for easier identification within
-third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-     http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/LICENSE
deleted file mode 100644
index c7a3f0cfd4..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        https://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2013-2015 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       https://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/NOTICE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/NOTICE
deleted file mode 100644
index 6e6f469ab9..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/NOTICE
+++ /dev/null
@@ -1,19 +0,0 @@
-Docker
-Copyright 2012-2015 Docker, Inc.
-
-This product includes software developed at Docker, Inc. (https://www.docker.com).
-
-This product contains software (https://github.com/kr/pty) developed
-by Keith Rarick, licensed under the MIT License.
-
-The following is courtesy of our legal counsel:
-
-
-Use and transfer of Docker may be subject to certain restrictions by the
-United States and other governments.
-It is your responsibility to ensure that your use and/or transfer does not
-violate applicable laws.
-
-For more information, please see https://www.bis.doc.gov
-
-See also https://www.apache.org/dev/crypto.html and/or seek legal counsel.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/contrib/syntax/vim/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/contrib/syntax/vim/LICENSE
deleted file mode 100644
index e67cdabd22..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/contrib/syntax/vim/LICENSE
+++ /dev/null
@@ -1,22 +0,0 @@
-Copyright (c) 2013 Honza Pokorny
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are met:
-
-1. Redistributions of source code must retain the above copyright
-   notice, this list of conditions and the following disclaimer.
-2. Redistributions in binary form must reproduce the above copyright
-   notice, this list of conditions and the following disclaimer in the
-   documentation and/or other materials provided with the distribution.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
-ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
-WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
-ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
-(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
-LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
-ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
-SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/docs/project/images/red_notice.png b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/docs/project/images/red_notice.png
deleted file mode 100644
index 8839723a376b4a58ef31b86eabf3d2c57d21ccc3..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 45387
zcmcG#Wl&u~vnaZ8hmE@vB)EHUcXtRI_aMPtHx7Z|uEE_MHW1ti?h@RB+vPj=)P3(&
zovQci{+ZR)Yow>8dZxQ4QdL<74VefT005xL$x5mN05G)x0F)&n^ao~@ZaWSDsKb(z
z6w~yCI$aaC(@-PnHO0)jW#j`_wDT?W$-$X?3C@heeS*s(A#q9V1c#8$Z=s-j0L4C2
zVRC3f#Poqul4Wx8#cDP#Fl}VeXpwzlH2SVN5uAqTde=Q;@dMlEqfmga&GWWR%B6E>
z?hQy?LG}h+#`q8b01*TL06)HLNn&gEJab&kXrU3>6}SpO7yt#BI99sNki}l%N0EA2
z=mdQ*0RSMDRbpc*$pPdk{Le^O=Q7O<)E!VAfz*EuK-v8fbV&h*0;FMyp#lKG57Rq0
z!aC$=e^RTM5IzR~2lp`vEIXk0;`#DwZcqUw;xLY!&xLCR_syR`oIq+)8GYxm_@^s|
zG3uWdM^*&D!!A*dp!3tv#Ia>ZwhYtDD_dy7V3N|>rstoUoHLW<RFe(To9myE>`oiq
zEd@sWfQJ44m;Rk9+euLZDT3cB+)QEb(!kvIp3e7`xou>@nm?<Bf+#B5bOFuF6W0Oe
zmgR^wWP#sk1%!xcW2jKgnZOlRMVIp-p4Tqlmb@O@gxg);wkvGbD7B?LZvmkv4UaX1
zvTMTw!MeEH3owWvn8f~fC*Y=$k)V4=_nUBZb<_tt5kX?7=vRL#TX?-l3Ldv^t%wcu
z47EZj;6;HbAd~dghI$?$*)LvBUI<#49}E#=0>fSXZ3#V0^{@5t&yO`<evJ@Pq)13G
z$+`Y9OooW0xWs$!8Y<0d!`2tdSDPn>Ass|?y@f|WGCgHVmi3G9H`Y`^Yb~K3v_fGl
z)r<!>X+@QEjy_ijJW|^j<M5y?Lz9g9qS`IEo48J+?R&X$Tak;`tChouuz+F4b(xRT
zy21B~6OGdD`{QEQplw?N;V);a!sG!AxgF?NU>OO6&u?oi)fB^LKFU%Wnb39KsvG#D
z3$)51B~eVt_flotS=+Tr6R{gk$9cHv#w;Ex{N~I!jA=A&RqAK(i^=6n`*y^_pAR3G
z;K>#C$CeVE(^s&re&lZtKE*c1xQCH0F7ut(<015}TJ!OID>7|Au<lE24#@k3zv*Gt
zd4IMp#5W{pXM0ZsE)^Am0|}OM=+$bF7(TT7$f5m*yywg1p!Ij1_qPR)jG^my4APkB
zD1li0GEtXw63RjS!ou|*Xqsi}HornvN1ZsE`l1#UE9PnR@>gDK-);Spo;x3=X805$
zr*gVq9<TfWJ9r2p)c^cXr@!XfC%lf#&L&>nJ0C-t|7O&x>E6a>4G>Nic64|2=N8cq
z*0#!1-geO<g&bt{_(00LSkl!t3jfq<tJNrB8T923brQ?QVq%x!L|BeT&b#ytw#$*v
ztn4T6?y;VJc4Fiy8(R8S5^)mohuB87xqQHx|BHxVi@5nA98rWRF^P>uX|a+02g9#$
zK6c*uQs8+1zLE5D5mJ;^{C<CR7?AyVY*jTU2)iT3-10b5JBa-KjHl9M&TdK$-|91M
zL1gghc)+J5ml+l5Sk`&v#u1+Io|q7ku`kc%pX<(c@SoxFG?I%{PKTjP7Z7Aq;f50V
zeOWA_yyG~sy8krH6h`<5=EI!L!n3`e+eZo1n(-#BtW5H<Mrg^bl5mY2VlX?4ISzr6
z7rIV@L_g=@9~Rry%evCp7f4t-@nU<iIo9{3ri8&nv9#*`xu7P}y8bQa%2+qQa*Xvx
zXk+VCJoEDT5QD{;lEg9xj-_!Ag9Y&0*tO_Y=@b}#72Ms$OpI^6(Js2nK|*r@-~aM7
zG<uBXM(B7KjiT&;4AG#-fxc3S@7Quy3K;Ea<)k3XN_Nv!OdaQA(vpqgFW|n_2B``O
z;+2_XMY1JNEMz~{n13(8$5nZ1oKn;}24Nwl&p#)T5L-SxH@uc((ww^m^ktoHk~`7l
zo*`qSL%QmN+}0A~Y5}4NUuc+LBgsM^uAaKXMLVU`-}E+Ph7ZvkNy-pg>ky;;Ctd;{
z4`0Td51djPjLpj)x76>J;CmVeStIcEcrHm3(7Gyz=`*2AVZfNnee<XFQ_5$J8b&D2
zsv%Baa4>t3q@}uCtQ`UkD4*RB!3?V#v0<;2j$eT6ajQ&LZ2&GychguBDjMbq1nS4p
zFXS0!bvLI&SsOVPFvAuh_S*7QBe0-U&eK`F#+fNN-6Fc;aeTn9M{BzM2qN7KjPRS`
z_M1@|O^oIJ8*g8XEe?mD<_<66Oeinj8*C39?>)VbFbZC-wPj@%an3jTW#3tV(W~1C
zvP*B%LzoWC%Ba9noK686dn3nkp?d^8?dE$(HeW}gNZ`$M^<G<`mtNZfQ|GjMi|#Ot
zA)df2W9f_7q?3P_n#NGI*-FxNbPyZ~U7`^Qo#wI$5=$Cx_2H@ph5Jf2y#tfO)GPds
z3V)UHv;b>U+^-SmGmU=%eRiyKD-ANdRRL!a-ojeO1`SykHVduiG#eMB!1v>hi=`(l
zN3NI2&kQ^P&Q_vpsV=D4oXxE`4mgk21+#>`j_EYx56(;){fgP@v_Vk1Uo?I|RfZ{j
zF-l^z`MUIFOq2DKC$$P!BDN;Lu&a8)d}yuj5E5?5tFLmcRw&Dr@hjIj!30-!)?SQB
zM`sEFG*Vz9B+#hDt4EQkb}FtWt~ZotJpQ$U*EQIluQ+&rug{AyWei`>K5gdPOGByX
zfP|^p?QIJ-Gr7)v7h<YXy&EkIqA-FOT)4>9mCdK|!u?dWA)q1KYeQKL1zEVw-@f?m
zI=IAoy1(!#`<=SYhkzZm04pc>iov_pBvy<mPiMbhXrgyoC>rX+$718-3Bd>49#qti
zBENq#y)QC(D_TIOUH!&bp7x~*TG~hLa9ecL43~GyAx?2?$&gQ7q1xX7%*Qyi?qDu(
zWBdSpog`vTf`%-446{9q^}M?pz;h;_uWC(I6}7_=Gi~eD!&8z90$uBbLh{$MU#Q$J
zUl;sHG$o=iJ1g&SY<3LhB(#x5c<X#5btKA$l#a*74oC&Cw+@ymFE{=q9~Qpn!Zx@e
zL(bh9<%uJj54)kSqJs|_IYciR?0e!i{{bUgEp=}r{`#7GEAMXBXwkksPq6-BoDg|R
zJv^Mfy!i5%RVC(JO0?r2%j?Oj1kryrx8?}_5pHB7?jlFlED0a?QxWGOEjfw?FYKF3
zZV<Pr0eDi}grWa{mH`hbIo9%XU{ScB5fkQDTX4<t*DM;e`GchN{*e~PM+EWNZ-=^L
zF+4e~FzhRNIA&)QpHFm=<fY7tL{XRGf@BNT<hQnwrQ<n&PDZBj<aHyyT4=XsAF0H6
zr>j$?Ml98u;lu1l!h@t~E|c|Xw5YG!rRxEei6Of$s9!$J`!Iqq8xWcXSH^{#VFuNc
zEU8o?2`ErUZXs0xh0;mR!l_xHl~uE;L0rm@pds^<wzA6opCNX_z@1{|MSO}|At}|j
zgx}tuXip+C!3<1fHlm7)F*;3n4n(8wUNBAbX}M=q&oaZzws5KvTf?p#>7u7D;p+m?
z?vYbZGU=c2mJC9>Ia}+(M;GG2Q=ZbXK>fIHVsWf3wCG^cfi01dAMBUjznJ>t2^@bQ
zp|?0+Zha!A0}9R}NH)Xcy4gx3?3Jt-ai-bm#lNXrU^rE4ci@QS!*#Fr9;O--zBF7l
z<M3t~Jc+6|RG6|5;3XULm|xzzzLL1znbx*-QYr>5Ih$<GTKBYwzQ__=e|2iK6!ZCH
zc2?i56I$zhdlgGPtxPer>rM*~e!tU;9rSi$eI2wic^m2J_8k87c^oukFT7jh<8<z?
zp8XjG5MVu{n_s}z1MQ}3p9UjIE1)d@`ei%FvF}$hOzC0`HcX&kV2*0?@V&}I5}n`Y
zs{|SD&e(o0qHw4rMM<>uP=&W3^;yj3CDC%qJT7gcAOfYu>>?3sn!xGAe8KUF<0J%m
z_4~ux0%>)pCYt?+26yzmf0l}>jwoO~wxt5o!|D-uP)w2cfnteTM<)VThuGH%(WsnP
z6Ct`^@SzqC3Gx{7UjD*67ywW~t^hX#oq`Nm&<js{@rHh&l?K?-Y^k;d1&@22e#LGt
zMt1hSUHIq92t3)Ivj7RhJv?4#1Io=o;d;xevzPu?e;frxEa0j!!KBDQb+#}9m>grO
z-j;k!hUq)Kug$v3AP?Tv7{GXrkrY!F<%V-mp*aSlArcn!PgnSQ|7UgG3Awz{nTu%5
z574>wnkcGl2JWa&NAaPZB66^%E!yWqbhPkF(1dUrXM4z@sj1FNX3H;cACW1JUKzmn
zR~qsbBK){pC{xJ^tEI1BHJq+`(1jv&niznELa6^_83_|2@|8!XUPLavBogQE;1Pm7
zTY{oy^S(uy<12l~j-U*A20&_ZGsx7qs9N-QTDTsI?+!GRasyAdsn2eSv9kpW&dEDx
z2XU_%9WJGP28DjRD81Q=jyIb$tSEnffS+sW@pStm`m*{C4)u;;&`eHi-3bV|U0?dM
zQD9qYj4dZ^B?X4dm4#(X-(1`C^4Iu-PvL={>>akp!9F)^AezOA)TpwQGeOm*E1`Ju
zg7_P>Y^~f*(L)#;m%+Rno4|q7#wX51tH&^Vak4-w9~EA*$l;yUQSnTv852%~<*W6T
z@<{x3ubJ$NB150$4F4-?A|a5PUWEmC{~2CzCz;51WxGL%EMM0F(Y-^+U;Yk$fHA*K
zjRM^e0QvTB_qA%_(@Ek{5iA8#B|;g#nQ|9%h}5W2G&&~ObO77NpjdMO34-WLuxoDP
z9#lq`e(vSWKYnz4n3EWwP%uC+DmmMIpL+9`G!v}>Mfb4n69fM{>X>78(|t+DPT#kV
z{laH&F}`i+&+1Fmt`<KV0w0cLG~s@Lb~HPZLE=FK5kW>~XJ~}N`*{~V=-?KNs<QM8
z_+bIhgzDx=miE(OkIwu|kAHpyL1dVtIH8_-Oe3uQC;wuM<cmg^&k&D4p&p!Xy%W2>
zQD9%Wl4R-tcM=w=Ej1|c7G+X)g5=N%+G^<xHGW&<?JSTeZy)$UfkNC=q^h3w?41tL
zI4XoQnFFA&`Od=buSH{4(WyO9ARa0MJvS;M!jCC&9_%aF?89_m0f-4z&9IzZZ}N=f
zhvONu-~jDrijOCsTgs~aS)>B)Y6`*b6j__8$v?a0!LanRTsr>45<MMv>b<vg`DGz#
z{~|!4?Y1OCF*z?#DC%4OoU}9Yt%89|9utKos9?7-&${KSBC9jY1BdCA^v>paAJ%-M
zZMeIt*b<A3eLRadCXhIv8kMF0e$JHQ&c1Oy=m9MG@<eydGM_FJQ+Ox^rk0U!DQkpe
zKg1aI6Vz8=*!V9a1RVItljWyF|I6I`%RB<n*MmPFj(;Z58YIx=C0^By-uGdtP@h)*
z&KPcI5kn5%_G<3_!+FT(@~haLf8eJ?>f{RQPXLp1x}P7uLvhOCc!uEdB2)N3VBb}S
z@jh777>R>Gz6lLtct;tbL;@6y5Swz(6oP$gB>-1Fk9i_&nK6hF_Jn)J8Znfw&P;|A
zmM~YuO$lBXJbL@`{iC~NoD^mQ>rD(WN7fWR5o|%Pflvh|Sz3lQe-}YZY`RNgndrqv
z{{c%W2N9TE#>bASMd@M_D@rZf7s=^0f3_M;S_>j*ArG$?eiZ`_r=E@c0g5bS(TWg4
zgRbWf0#r`21Ogv4sV{7%X7L`35x@xbUryq_ej<Hijt3I=JPJuuNPi>28${nD_-YOF
zTSs$hi9ek}zNQ2rKyIBj{p*$~G&{64xvi2eSbs*VRc`-U)PDZrM{ck?l~En?=Qh|~
z-DB9Dr>#mITwNm;HGAvEYNx@dMP*7TXUFf5O}P`eP-zD2G4PTAKavwl3qH-;mF29u
z3>%;F;oCsop4=j^P)rk$8^&knU>z0|9YlZ!AJ;$uOoq<uyLDD8Rme^{MyH3QQw)r{
zr<jB}TnYv)r9VX3Vg!xDrr?EqvBTstq=IQAuZ_Y}eif_dFImDu4DL^+cqu2&xepBB
zQ6Qz+Gko>v49{PifrXO&^Kq(P#<b(NlP)iW2Ts9KG5ok*rNPz_q~cCJN<)%XPjB50
z2ryVYhXL*?;5@A}66!0jVt+Z_KBbq-rblBJuR4SG=p>zp==aB%jMcb`hV3qFPK<X(
zKUqe}4B*a*>I=a9cCY8OzM+~1GXlAlT+pB>QMaX!iv~FwA3LH&dx>ra5K;^w1kvsW
zJSU+;S`Q?|{xC0{4d!M;Ip2P2HP#ChM26JN)s9u5IRYT86J5H8bAoU?A}=$OMzfdX
zzArJ6pN7yO8T#z~IY+^&sr%kay+^Kee48w^vMv&!X++i4)PFCT=^5vobh8$cgV3ND
zj?#SkGDi8TH24umrI2YRCm2KC5m*#O{4o8}!xWQ+n_34kbt0^wl%LA*1EQT}ys0<}
zgP@>ZbG}T+r3AQ}qhQU{sC1>j-@+d27C;h-(Kf;=B_)e!?R3Fw*7NdhDhV@A154fm
z_F>%8z1pBUQ|W<lY%wp6Ac9=?2c|~O#Q|0ShfIbD(X6K4dkXC4oRST_O&CUEhbz%v
z$}wAP7>f0EH|J}3%D-F?K)MDKw03qW8pZ}_cAp3_=2yh^Xec@`Cz@y<c9}#`Y2vvK
zC@UGQp0%q5cIzMd*&H=2$b6zMgQ9iYvP@Ga1!9`j(<Wr2S4)KI=q#+J`8frxvWF_j
z>O8U#(4|+<i!<C@Qj8?rz7fJdBvQ`0Rlwp>Xf7Wz#hvCGnid4=nlycb30^!r&i++P
z+H7IGBHZj=-su;He6ovb$w$@Om&QjTF5y3A(NwNMF@zm`Zk8#83PXYj88CggRe)mO
z`0WW9LD;#*Z-;)E7~|xq?rGdwfP$1BwA(~BqJh~lK<8niFNoRXgy^t4+g&wzlR=(3
zqA?;XzNw-wHdWk|J)5hkVX&7}`doBrbw*9bds8p$`7;sRzp+vn)8&X|UzD;@6>#9W
ze+X5ui{Xs=#)iUti;S_DCK4Z_*VI_Qsra6)Gs6*AJZ-MA6oj`wC;8VprK}j$GEnQ2
zKr0icT-HJ+1un9(t_!qX)PC(qi^Ye~@GzQbm+Bm%<I`^(-WD9?eahvX)Qz=#l5Kg}
zy5P0G+Zn_g7qc#<`B-W?c(gO!{(2_t_O@a-Xz`o;6n+x7kx7!MUU{5DpjEE-V@HSp
z`L&xsiuvukql<Qez`9Q5H)IH-V1z^Q0wmOl;=#Xo&nh8PO2eR&hTgX0$Gx#WN1wv6
zAM}nDoZ;K)5h0ae&;wmc3}w})FCZFUB?_|ND=HgvFe4nGmX{g5GG4gf?@OTl4~w8P
z8TF7JI6eH!RT}G|Ze((n<u>oXnSV(3uP@v$1gh8#kXcECN5n0xL0;a8Yxcc@w=A1G
zPD>2ouq7kTvrh)W>;+CRI&u@8B4=g3#J%>s!49>=-HHcpXL}EuVWL1N#$d>VBrEpb
ze#To-2Y%=A<7|Xjs4TefrD>oVpOWCLUNk1?@K3c&pL%O|sKrj<2TeLPM}qjOOmCV9
z283raJAZidw?*RcdS3Ux76f`;JJ{l3H}JbV4HxHrthgw+G4;dO-Ri<RW@e&HDTv_K
z#$e1fWsW$8T+J@;ys9d^ZF-hyd91o!o>q00lL<}SYgKp}SR*`iJ3kFy^A_LrjAX+R
zx69`rO<(X!B0|~yuWnAel+-kO*aGF>gF1<b@8IKk%Fy6Z*`>Q*2qACdR5P@p0c7J$
zhMyZ^(vnwf56E~Y=t}M6o1MtXBFXNOP6-E^?!2x9V-Uhm?+rIz9v+_~jU63~*aC*D
z5Adj|Y&2#u36TU)L8z6ynWHAouTLrJ1G{K&t!cZOCns9k?gkN(G(y6;u4udRagpZw
zF8vgi*oEP3;);?Gib;|0K51t?e`{GqD1jCAxhuvLw!lMIYZe>l=<}2z;ed8q$EEfn
zYS2<Mjv(O*`wT0hbhKTV)-jZjo18(hHC%fcdPNU$#cG4oMC(TP!1KS$fuP-qkO$vJ
z22Jf}rWPWWinBO@a#MKrs|9RKb})(+)Nlo31hUyxYikJK{q_(35uWq0)n>HY+U8(b
z_J@JGDsFEB^W)u9-WX3?XNDxqvHsck?C<;~Y(r21@0zxWTADNj5XlePn`z8Qp|Y+F
z{oaU_Wl<-Pll6g&G7ahBMQH3MBY}dsO{7Rsm^kZN4;0}Qti#P~vzZ$zQ3WS+skgi<
z*(Gevv?k}IQo0RM;F=sTIP0FgiVQ;Hg%0{f98~~f%<W`P&fGi480OLRc=1Cc_nyAz
zVb@XAl0*ejQGtM*U_uBmBWr#A5;Qk4$(g<Fzgw{cYj#lml%u8b@Vije!!1Kg()ad1
zbXo#yEPy^;#@t|GviMz!@EF<M+PZsX)?@dM(i6#>t-&0RCW&2-0d}Fyiwgs157;=%
z3gkGcahwY9!*L`SEH+MI{7iuk3vCPB%_oAO$4rjzo|>+e)OA{RPNwv%+PdLfjtqyS
z=ETEF??le`_ozyJ667mN27a)cpE8{>bAihoIK1neJ7t9dQkuJ*#)C)&gTdfmzMFmK
zF3L=yWxb(br6H6263P(Iw#Yh~)4DAQs>I%b9h8r~QWeZuO|5qy;-f5B-=+cUM#g=A
z8`D?<8M_UlIKUs|feUi!YH6crS+2f=UVP`-N}#c+5*8qDQSbcGgdc*EgwPJv)9V9Q
ztrXn14$ZLUiQYyWNml@<0|4M!K$^0q*5}AQ-2VQ4XjHS!qX<tP2~>b+FeN+y@BskA
zKe8C8>;M44M-qe$a{G~80dHQ^B-6<KNG9I-?K#xh4glmqN%%7T=l6d)OW1#8MgG5F
zE6V?f{+~Pl|6)DsJfy1}Xbi~SxvqR(W=#()<S_oCH_U{<hw1r7p66j6Jp+v{aA%~t
z5+p0#?<j-Uk1Bsihe}7&U=<TmnFQk$U4dd3yQ%GW9KaS>+z;*KDbER|kFW+t@7iTd
zCrf&B^$~SZAcB_ijtb>$f!mLC!DswLyrb#w_as(Mf5~<(r1XoV^wZ#`43@h713nGH
zTxF71voPvZi}-#v^8MoJZ1H$k7*b1ce@OS*qJkj~zY|n!q&JD$$+^sGRoZiwrEb~b
zZ^6HOpL?N)w9n~!0@>O4>S~Ao({#UZRLSm892fOk>~&vStD1@NpalOdneFsA649si
zcg74!;^6+1bpiIFkrowyd--o}odW&38R6$OS{&M##uO{{g{O_H$%&cKc#e@`Yl~{m
zf9GStG`xvPCx=ra8_K?V>^$qyyl2W9rsAq79ds!~{DLsU+5a>P{5{*5+y6?FP8{3j
zpLv$*typH^cU%7R&!#_BT<!vI@cAfM45lfIt9&KS$Do|_j&77iq40k&BBADgeHu`s
zh>L)SAUF}Y26Vkq+EXa!cpaY+kIpX4{&mxih5}Fgwej7(T?);2YJC{c{AouYAcl0E
zAIRtHNYJcVEyeig?Nj*2-=?(iEmwiz`4WdRH9bL!4ofTB^}2b709tyPO@7dq68(!d
ziq-R40q%ifygdD18U05FI52bB4ctz5v9s7dYJ(w{{BQ5>ZXYPo&f+(Yz*YyySGDMD
z?9aP|_HG2iWu>Eqa}G0urkj>wyq~otWil=Na3|)KtF<;2>p|WNj!x(AL^exg0WYg(
zu~m0t$V?*>4e@?@?0YmPk<$@CtN(}_4oKel4$^CTns{ZcW>na0%pw2qy7^LKo$*YJ
z0VFR%7!>C|R-sb0;sl~G5K_(6xu!M}(bEO>D3P<S<aG=dI{xB=EG^pATUVGJTppxP
z$1?iK_lM6@;~QZxby6_S@4-O?akhg+3vaVfbu9yKa&r6Hn%8!!OjLf-tW>YFfduZm
zEeqL&e=i2A>$Y=jZ31FB`G#n_eeW#brc-`$Dk>I%rk~glofi#0)D+;ne=EV0^KNsw
zJ!5u2_x574IV$?{xNgPT-5O_+_mFMnMCVb}(%pH>-yPHAdAT#vLBX=KvA$~Z{#Zl5
z`~J9fSL$I9pCkOT7k&}i?M?lb+41#!I%uiFBFSc~`C4xNb57L-yk@h7c}TQ8mB#9l
z6}*B9M03GpRlQIydTPIe)IdRUXs{Mt7OL)#WAc{R9&0(9)l#0CY9V{~JXy5WGSlDX
zNAq?}f~Kz6kpZ3SpHL+j?URS_kis)dZ^OC=TN}T>_+isg73^g}tut{I`c-oc^>sG6
z=e5P-F7UfXN8!6VC5h381_gkmG_2d#nh12CO5G=qRc$db)*|GT^u$2V9!v8*^b8oF
zPTZ3+Tiw3<Op0kuE78B?jL(%09Xki^O?jXuO{L?7^KEvDjgxtu0!*%4>)+k!QAe>X
zJ~$bQ0QRz%Cq^0Z$D+|>pvAml6%qKKJeS7m8U`uYDx!(6>Zi5+C%gC|qCt2gq0N7v
zw)mTTr3q_TOPOV3FbWnpDjX>G>@BwJ3CqBSs8w?@?dgAlLERgZfSoQSgXp-_+U2ff
zZbZSe?=MdVtB#v7bviX@At!~(QWoo7%d>h_Z|5p?)-e%UkojLVFHG04MtDqpr9*|R
z+z!!y>qIdQF9UVmeWRlH5G_)8kQFNEZR?xQ)Lv(KIIlXpHp(i-2)G-f#3br*JJixT
zKUq^J%cE4waB3qAm`=KfbVQ_TXI^tJwKJA4l3}@rI7T~}#nTTpnuq3m8<828wvf_-
zp7JxZTVrS@!rd0AT^(6jG%2wZ9-U;JEmlIIczZl&<{>zLo*4+CCC2UXdeMdk4fb5;
zxnJnrR2aOx=RWl;8XLTnu6n#Rc-{ArzP-26A-ve|ChuQdhHgz26SKbUe!ua+aPd#O
zu3G!h$Ac}(p?VH5jTv`FNqidO_IET~+J$QFQQh(S_hI%MIAD1SYf}VxN~4;_<#Z!M
z?{Zn0nH)=0=$Gx9Z?YY$Lr52*d%4D+kH8GaptK5lI>C2&a5<CqAX5(E^!G0!6z(0L
z13H##?JVPTVlvfQh$F(9>^XC<n7j2?h&Sm=43@oj=)8i`j88L-uTsTnflL+j6`yEV
zcWl|3GBc|;<JBq^v~BVJaxRjEV?Z=SdmJIEa=)X7H8m^Q>&=3l4$XQ!jIGW!dD>M8
z=z9ZYmRY3QAmDIt8d_k+ndfjIpQY19eE74^@AEgJnoQM6yP=fREX(|XLiVcq%1rTh
z%Bh4P-GC-emyq@|fyv*uzDMce#rekx1Q~@z6YcA@n7$*C^7A~FT=qd#3P>ik0x#b(
zS;)emED*Z}%e!D9g|Qr80OQi6jL(0r*OwP5B$=_Um><9^)nl;BEkCG+xNgsOMfOoT
zq2<<V?{!xv2<#^}!;Ro@beqnk8K!|cOH}G%;B6rliaQc&I70O%7l(%4HlFl@l$2xq
ze+*w3qFG4`bn_^I$`k#y<-61xIw79S&laRKMyKQJjubJW?g>fmA+}?`kB;j>BuO#T
z*ru_&k1kbeDmNhBs;VOjF4IfiHxBL-HFy6+7CU{whwofsdw4Frc+4d~UjvY+1U}4N
z_!Hp|)p+EPyj)yVKjWE%;)}fANPMtnBP3A7PY4S1nt}nD8m7cv<_}l=nlgbl<Su(p
znsO^KNvII1&c=?~aa1>Kp?Z5y3^!F~3F#tnraGmA26wI4?yZzFuVDxvfG|0Nn#{_C
zn7&J^9-UVN_gpV6QJ(l3i^dpn@W%E&*Z(QA9+&IQoI1C4rDhH6Zr!dYE~{M;y9H+^
zJoEoxj5HT2u6sX@CAE3<FL(Tr5TSJLi0NoKH94fZpjJu&!&{O*6|<2Qq^pU=p~jR)
z16{I>DRN8{;r)%^7I&*;;f&XpOYJ78FxeLIbMIa+t%9wdySDP^C_`!lwAt)Wli`RE
zKLQ@0iUnTjZ<B3(lC+)3G{n-r;OmQYd5Sh>xD^6fLC}pl0iS(18IoAg5JfD*D@45;
z09qp+?4tUWng}#S6JPf_&>0dxSp(sG6T+NtI+c959&IHc4JvVn&c~5Ni!>E41F~mH
z!0#NzR2ShAr{F13KM$gDkto=@)rp3KV*X7K-0k)=zCRzw5lj;ONoiX_vpyYRH!50x
zAYMpe7)<y?eS*{uv$-Lw%Hu#`FwYReI_2G%ZIZA|Wu#8=)^g$a-0-I=;{9O>^oVU^
zM;iE$yQzpQ^7{6r!^P>6wtjrAx4!WHHT85fBv%=FC#2<cJK%K6Oe6c0=48~Lh;L-^
zn%&tk&~Z5=pVvYUa%a$?zo^6g=~4kx6!q8oxxS^CLf?Lfm%h8I+&*EVic`(T%+_Vz
z@rM+d$gA>7Tr3MahF?`moOG$LB-LYw=B=?9bL{c@Vr{-o%rp)&Y~nPu&MB619NAN5
zM<G6D!9(ghEZWPLQVZd=q6XV?Vcrhfpq)j&nKe`=njl>6qvN(sat#vgs=(D#8mer;
z7m`^x@^wtotUfNu0GzQzX@6u7^6IvVj(aw?9R6N#E%ubJ7Lmy~Kod}+HqqUlkij1#
zqM~9L?Cs;bUPXNOXl9VGCfZa30s7agIj)|>EoUu5h?0aY(E8<1q_K=02AJw9<qb{(
zpY6`a>0M{sQ+@8os5!#ZwDZ#k_%$hpM!WT@(o%9^HkmPC3+z69XIy5LsNN3i6_)cL
zPs;D4Q>^5uYY9m!o$Wk>5A=}+bRC{MUc^{;^i``mq$5vZ|42uIG*jo^{}>2IBLWw9
z=bgO-kK-M2K(mXcz#%sPHY@(TzKo!WFcBD>eBAOGq^rNF)V^&F2R+o77_kB86afu`
zro6)FV-k(~5H5;6lnPDD!SjE%bUxq)Upy7_k1)TJTUf+HVbGEsjNdPT2xJIbA}mm4
z%l{MNpXe&IwtP+QfpP-N<tgp;a&24Eh;_sh6_(OTwi1KSa1bpA9-xyqEKtVH)$mgT
zNbAJ1(1Xu}!rcu5occ?YU}5TUlcp%-u}8@UILXJoGk4~rSO%8R>0Z$U=~9EhDsVgf
z8+F)g@EcwZ<*wiEz;5vAElKDFj>wjUZ5wsC(BPS0%c5CMBNxCiF%BSOS+LDdN~@%!
zS}i9*G7B_u`Mh^TYE-G)2BKJSh<4FiK~S2JP>BuopP%-aRpJd1uD?Z@hTWhp0-fEe
ziX1;Z4+?X1|2;4KQjQr%1#?A-y%O1!p+kV=ou3c&kD;TEE;5W{@>-WRkl>Zk=Tqg`
zuBahhkY~#OwiRiL>Z>!i_e<fsUM1k-rv5#;=y(AGt((sUaagY6>28g$_0`QA3YjrU
zs3McFXmS`vp9zbCXiP%n4Lqnc4NRCl5``=7Z{^2$cvl324a{&S0oR2YKE-Uzu*m_y
zR-uY~Hq(J5?%@UpC=gGbbl38|ESTv5$EVdC4hIjA%J!+fLg_|<kwCny@ReuOD^>ht
zrNdZ{_ZlT#pl&$llstomXw3eBUH@amrQw@2Q)EVF&OCCg)O?u#Xef>EAH1K#T;U78
zG&K>|)WdjCas4$Tq$1zm?;$LVeB2}9h+BeV4A@^G)s4nX5sF*i`%O^JMaU_J@TE!?
z>BXQUrsceFeO8Cg$Wb8Ihe2r<?0I_$NNv2Ysf#-5OyQZ0@RUy|`=4;;Qv}12C~}a~
z0U!`#PN<=`OsHbQXGyd}{vlxWlzzLmOUvvlhsDz`5RIhx^;3o4qogel)qy>4X!x+?
zw8%zv1=yJ4Y={yK@&lBG4(VxXrd1LIsZmeE!op4(hUTCCm-b^pvoGD>^^hx)3j|HL
zf;853;teoN-hYW~_2FXp|1+b@S-%fxcYfbE$?f*LyZpTQRmYbu@9{=(%HR9nQv_=b
zqY&AyRBW!q_(vv-oNVLy?d+xvrjEqFwh&J6o52aOkv*?8du9ERW!J^C<o38-b(bws
zpK*0jQ=JOb6|Vmhw5y}dl4$m4G{bm8!G%rW&>g^mRQ`53?3q8K;(NOt+G&O89-h`A
zFewS0=QMSd*x)r5&%L~l3W3hLoKU;&R=FZA3Km`8`BkfBz0bLSyb~FtT7k5u27JRO
zxPHgDMqq#2yB2BkoM}Y4_ni<7L!`R%DBuGvVD}=;MbrP3_-bx$mW6dU01L7=sQX-^
z$8z9W$rzITE$M7;>0&TL+e9sd+YocAcBiGnYCp;PA~|z-QhF<fhWHv&v{M<znK{hL
z{W+V~4U5iFc6DC=OlK)0+%^;ya%DdfS`m3zU~}PpDJ>!2*P_(EUBmhH_d`T8kNhY{
z(I1l6fItE|a?V#nlsLcGrGXJFG<Z^Xt7>*F`(!P$#ZDQ65Fpl!(pQcWthqz!T|uD?
z_HyPC6U6S}Uu*gSTJfwZ0lez}QHVC^I$drmTmxI8b=I6unP18Ypc1=f+5OpJdGx1U
zhx%@si9ye_cU8^2udZO7qG{U|$7zQ|TnX850H~Y)=kh8Z6Na{Op1498Rz<wSsJ3R#
zt*l^=Y_!{B-~(yA?^dATcP4g^lf}<3OHG3DeI0y`1zN=TKCtN0-8s*9N?T8UZwJG_
zAD-wo_XuEFU!e{w{iZL5Ue&z2v{A6Z+|XdJU)spSb6lq33A<iC7~%E}WRedK?Ujm#
zTy%+y9J|oioksj`z9d9}m6i(aB3HfmfAyDjfrajkU;MtY)o17p=<w+sswQ=qU8;)6
zLGO?&eRY6Jgw?CL8#;uT(n>4qr-^4BFwjk+`y>qU4UbQ1Gc$_IXB8k;#M<iP1i@;&
z@BM%wye5g12~k>Jf-aWXF9+SI{t{)f_>^Ba@||YNH`CqFHiNQu*3}%TX76l<DQ7Na
zn~RF5KM+H3Kz4Q%O?KbPgqm56m;0xhmtqy4`^0a%IU}JdrSHGr)dOfE(5b&>BY3wr
zYvwkp=_gW47P_F;G4*ESl5=GBl6LFQUMb=FcC<rh3?i(0f9Ft6{q_al6s=#*F<vHU
ztd8V|&KLbRR)tJt?IRt((}5s>%c_T<#di=3S7p2GK&UDuh%X{}j~XYD=Du^e(C!m=
z>|cEA)^A92gC*qL*5+R&*kBvwrle~VJvQ7Wbm8fLnv=LIHxauTm=C6<#I&L~ZWZXM
z(pZowr5ya&iCwW()K&9Zq&|D0VxBFA+Tq;GwY&HtB$DRW<<3Tpywld|zbF(RAQ!Ob
z9YL2W_OBEtSej0SC6J<L4yyu?6R?4#wCj^|CquUWjRA?0EkAqP=*5sN_38GXl{cBB
z{90Tt3#}Nfd3Iz<wu%J092_=P*Ouh`@Utg(5`J>Nf)#;VBX{2HpdC?_IOJP*p5%Pg
z-&9}}rW0NDR8!AGU5F>jdgeBrZcYR0<Kv&R_oX&7qCjy9aIkt$18W>I{xpyXmWkie
zh054jj~)m)IsudlU!n$5;6ZwmR^F>>+yJn36!3um)Z>2CBmdt7TYpfH0RXDeAFENQ
zd{jvXegOaPN@&p)^Wiu(3iu$ln2mSej)cJ9QC(rhwO=O_Y!!XUFHi@jAao(RKWOAQ
zz@OxP(EJyOOb%g4E$)pu5s_wX@|(Kj2Lv9r3xf|i<QP(Wx$Ti*0>zll1i{ZW0_1?N
zK!s;?(1j_04P4xXP<I0bfUh(EpyU5q%L+#T`SDTe{r|MSb@zTXBaE9H0eSds^J9j8
zi-R{hWyQqABs&>*FvW_J)s=lVsOV!UDQP4>HKR%~Aa@i;?DV0$M{=fHq+|~*(5;)O
z+~4@g67Vb^jc452E&A454n{B|c&LPImkv2bybHHH25d@5xW7F1Zp?BO-qYx{cNt9e
z@JD^!vSC|(-Nw8@;6f@2uQ{Dc<pufhMy$1X1a$M}I0nr*oLFP5=Xlt?pzU{Fe!Zo%
zts=QF!5&_Evy?Z+2(LKWk(|dnNvzASWV5;;Cn}EM9X5`Q#gBNME-#wsBC+o5V%MBs
zAAMYnih^?X9n?Vu9}YZA?&xZey*ErcW%V8Qwh$&ix=JJPwbQMqnKG0erIG5EqZKNM
zajNbI3qirWTd&6XWT<=QyswGQ7m?O)MasSUN;o|prWr0KKT96l_<K9OOmw*|2+v)2
zp|$n)Y^Ie+jH?}AY?4iqe8TCNZ=kcf@)(fX;pGH2v`H3k%l+yyPPKtb&rF`TCe@R{
zHV}53j>2ChM<Wew!)BN=f6IOF`}C1Z5G66W!i50|u-B$HkY@4;Eivrl!>izBswG7b
zdo&{MtI?+M(-O}lIc5y?@s1CM`-aRDuOM;gnz4x6KE_{s`#my+7J49oc1UA@NlaB1
z(3#&7nm#{m_8!0LD$%9#YpV2aXme9RCw9JTc5N2r<vFR@Gb=qk0GqN+$oA7ojXh;S
z%DwOUtZzcHm*pk`q;PXmGy&Tv<9(;yfa#f3um<_z7Zx;;G?l4)M9rkR!^%nBE8cOl
z{R7Uag2O=Pu)cJ!;l*J=g1uw6m2-3r0%<l%aWfC}v|WO9<bR7o1=B8r*v3cpZ*h6q
zXMY+cJTghcjSOL7qktgba`o}$XpUyKf&?u=)1jlc6^&_B@???<w9k6!)E%awTDF~_
zEDwR>7Z@b_LKn=9NK+~$#UhIn;}%rn-Z2X;*1H_3e<bfcQ6+mzIM@UkKQ$}6ndcJ2
z|2Dm6;C_@K_rc$&YECq7mwrwv_wm~;!cEsI>)PPCXZoa}y_yHR%r7BW(JvuvVlpuR
zL)W10n46=9f??)vUM)taYU${{JoAkad7_n@)lKSl9FEon^%FPgW42D}L|5H>FfRyd
z5n>c8JU_{0F*Ri0!@yBZC2Z1M&yXLL{Qb*X|4pZDj)_+js!+@GfJIMvP}=enQJ{jg
zx~%T;NW<_diX-&D-l+{N@iYBy`%___-3{g7acxVU=@O~x4b=OH7PTo={@h-PTdz3Z
z4bLV~g{I8F)<Z31pQh4#+W^Oh^-6t0&$)&P?&!a<1v?;Li;|$AWW6@eft$ZGgZ^y{
z3=QtLWb`Tjy2g6%fABk*d;ZKK7)$S2!BT*)@AU2-e7b#xxsmDo*Jko3sdwC;$!;$&
zIYqP743FuXI8}e}?BjD@F$1!qZ8LXNTqi+<`FyaPOqGvkA+7Jv+A>%$?=H%@rGQE>
zmVhslMdf)y)7UlpO8;&}9_%OrFnz8*TZxP6ZRho?A0^IB6ydYC_;2y&s(HNlpTRk-
zh=W*xp5B8IB79Up<|7=JH)LFESLG<)rR_a6S=+`oE4}v-L1++F+9jUxtxVxLK92dH
zGdK>sHAfAdshsr29mr@oODQ`=T#d+n6jWU=q)IQ7n&5#kz&K(6#1}YseXG}E0p4vs
z(v_c-I&I^wsjLK3*iM!kok6iX9bH#$awJhz^!e(VMb=ty>np2;*3M3pE_K-+1_zNU
zD1DWNbs_c<U3|hY`Q^&YCoP2H4qYZE@npt}WXe1JlPXF;R=c>l+n(qs85|FHKT8W6
z6j45R-iDh{aKnV*%k=p1<fO^+5J2x*G37)-+V^ef?9MO`)nI0Z@X#X*(UFq%6`B`s
zcc@(mCUWhjokd!h4~ydNI!e@Yq3kbU5%xXk%yi{U&jv2p*Ry)h(9!P`UxM&OYjKQ9
zX&)iqmm@U{-=wZjs9+csyM9BK&GCav!vuL9ox5y`!AB^q5G?2~*xh%hzQ{vQKspQ|
zt}aK7X}LNE00>yb3r7{$OXayc*#_vf%Jm@eJQ=%de%n}sfuHu(-=DNPwcETw>-&Sx
zu?e-G<R0<Q9sH<b{N!!`$2j#QESQM}OGlD$Bo}0PZGrCK9E6Rf#xAK()D8`cGFhxN
zlZaoaB*SdojKuTlLqlu;;5N$foU{{rZn}PSZ<Nj`U(rVuTyi&;Yzn&jpB=K2Zvo`T
z!mV&(+uo~720h}V;*Vz@Q}jGAwe#IaF71@Q-y%lz|GHn(|J$csSn;oIDh3cEf+G=m
zgxinfCD)my#3pZH*<)+aH(7#a9K_g6H8UKmzG0|k3<mObzr`?40(tN9ZPzDz#b^%H
zQn+s=F1ah+&c!~jN3UR$9eXZyO#xf(yfhkM%%m!XNUEwQT}2Hy5JiTpr<Bhr5qt4>
zNzC=eXN6L<HZP4G^5>WKDC=F=9<VCa4KTB6$?+kCPger;V+I~$()+fIXrWXhxYt0z
z#4Lj`FACOZ=VhnLf_`nuGUb1)Jq3YB8+g#(%`GU$f@n+p(4wdbQWa}orDY<FVCm`i
zQ$qxy%r`dytC?c!!=``8v|*nhk#Y<e$(<iEj@Cig0H~eSnW1x0|1PgRqQdB9+l!x}
z<j+I!!qAgDgjPg7--a&}`&U4}K|if~JcC4$Ou@|!RZMACkh!wvd*+kiXV{OWAgo;H
zw#V3^F<#gZ^iF*vs|r-BGl$0K`-JHrX1z7SoRwTa%`DAfYijVoSj<!8dmDh58EhuB
zcK7o0m$s=hroh^ODz7Fdz==EM_mSf;^OguQX0NWN=02|L-9GGuQng^eQ;z|5eI*j2
z@p0`cqhM8_zj*P6y8MG4&Q#!m3TasPS`nYqBPXXx?KS_VdIWDoO~^={mWT-6cO+zT
zelMoa6x1$o3dH8998VP<R~e>_u_92wVIAMWK!WXc_xVtJptKfv>l=^5g1}TRyW?KY
zY#gz?RIMM<$`^$qOE;~BIYPuRw!K<8(SM2RZUC^>*DqiVEfFq+NEH+wGTBC0^I}RI
zdP-fm1u^WxqAD;Dl4%k0PqA63Yteih>gws+?~_I+<K;Te2_{FnTJnHmfq58v)Ws@%
z8Vy`wv}|19wlEve{D;t&y#y?cb6f@qn6uaB&p6<63FqYDvPx;tY!4!aq|>8CJ}1lu
z#C7XTb$zm-dGM=571{tTyeizai=t~|xaSD^JIZFL)aB6Y%niDafKEcd{*(n5aQ!}z
zTom^g!t6QDO)g+=Xr}W<U~ktn4>hD#<P#<}2r+C{R-l!j5Nan9jsSeQ(1V!iC|L!^
z)qs%}u3we()p%#1#-8;zUg{<lmT7ofuCPVQaeU#3jBC<K+~w*8^v>D5aevG&Em^{^
znF0Ee_8E9L9J-yJ0GBBGe<-4r)>-}C`)l3J(LlwG_?oA|#9s;;3DjqB0>|yd_FRXC
zLk+13jBiLEmbJqO4?$#QOOsdo{>96lHzY$uG)0z8T!jc|1`HC}F0oD-#cPybFViGf
zA_S7}Fj#s3fTh5iuXoBKyc_WQ6o>7ew!GQWa}HeD`q}&_Bv{($;rvkxRj$L4tzVkj
z=ek!%%OAuOQu|^JK8tpS+uI=)qL#+i=d3wp&59W#s)*JfD=ZL(=bB)82hNk)`y2)1
zx*Y^B9rCV<a)~yk4Z?=H0U&5f&He<y5I&A(YFa;Pp#)gSr7y&M<IbnqFK-Ttjw@<G
zuLlON=v!&%megwfU<zEIr?TakwNt3Xr69w7c%bg*QA7K~Xd|3W3HSnL!YHp1g;lsf
zKJ8*|yVM?dNT_5?6s2S`#nBch1{NFw%eG$;fXM^rc<Z~M$*!eRwTPt65lYlsIBxr;
zj#BR#jmq9@y)F+L_cQV|M%j0nhcgeTt2kx~N7$p)7~M`86gAbGZ^7*8Pj%>2R)=BP
z6v(eGNh_mMg>XrQ75?98j@8*OHHw(Y%ncFJQ-5NBE1Yt@->&{!7AO7-d?ee1+dA9U
z!uy*Dc~EtT0;AMJ)`vr*ye2eM8JIXh+xK|DQgKhXxHQgic|UwAv>-|7`RZ*1dI2<W
zSry`BSUgHUs-V$FNrzTT;N!#Bt$xP+tSvT2&hs$;acg!ZGgEfue<%xeKU`{XD!Kew
z%pL@oNJU4?&c?fP@~jgs*jMf-;et)P2H+WTKeH5m1i;j>l=E9iSY1g*JGps(7y+_H
zkr4K70K;>EX=AH{Qvyye|F-u-`;##{)i|(IgxU)ufBWOsqK5y(qFTl2yH5zRRtSfO
zsQaO_VZc((L}%~sqR1CqK!biL>vnN4!R(7-_oVDvk>DrSbOU+TU9m)Mfw|L^VS+(h
z*(yD5;Z3D#VEYLaYJ&i@z3c19cm&qHc0nYH@Jjdg7Qs+KehCs5BFhY%CuM>#Dtq-_
zm}dIEy@zrUvhVR4c^2l50+@guzr^@|j*HW8%>R9cWnZ+1&!13aNe@(U9Uod4ZOnbT
z^+5*8{6&he(C>a@V{^Zu^jBcX4jGV3`LXM_7{aIl)k-0EMHBTic4cssoy=C~?MI*|
zowAu}M=Ss=20PeAQZ2*#Hs4D*XbUEqpUh~QoLdrPL7amO1iyb1a%(`gejX4tm<N{n
zk|_@C&W0U$<7Z#Yec$l%VmJ>dZa-^n_#+`|+xBOBVWp0o2(A|yTz7ddUv)Qe^LJ7?
z`q==(PPtLtX@9A5Vg^7HCHY<h#m>&KAM~Sz<oVa+@kSNtRVLQAJGAjJ=oP=}q5Mo8
z2)iRGhrw`M4qZwO%V5`{@sLMK27oNibo9xG#tC)2D1{t>=tTQbI558Dq&^_m;fr8W
zX>~x2Ryd|_JS-%69qC|TG9?`?2A3Q$N!zjc88nwX*QLL$W8Em33^$Ow0nLe%Z35T{
zJ$7fcT+dmhckRnxOc8`Xst8ruZ!bY5F~<~0{zeCdjA5~l2^JMbx<5W}v9E#058r{=
zLA#^0pnTzhrU-90_Y5-snat*V;Z-^DnXr=5|0q}NTOc+1)k`od3uYeHIl=B!WFc^p
zIA5GrosGZyxT{d@o-eGBqrUH(zPhtbNX(1Bx3J;H9Yk33?!5zQ=OL<w04M=FjA0{@
zN$9VM&~XIIhQP&)(xVr`3{tU<MnGhI8?w)&Oh!t)_nV&!LWI>$3M)<{rIptkL|p_%
z^wYck$U;mu3ST{>>^PcMg?_uSkO*Ssm(>>GwOqXnk^f2g={Ms`iDhr6t4#n=t7~{l
z>ml0CE$z5_i|=1mrmyY6+Ut<JTY#WO-hjGvj?~bT>wq#fan!=X7ty5T>b#$nuML;i
zxq!MSBp`Ou4>Ec$1w^3T@>-Dct|KES#$Q+<neRLX`GElp#-rrMKUWw<r%xE}&Q5fy
zQ)s~?ol<A^)SlF+dbbsqB$wo~UIHS5Oi8{cVN$okBSvb*{pYYZKN`Bw1oYWdS+yt3
zq2o?l4sd~u`BXa!k=7{U1789^d=LFP=3j;cLLQ}ww$z6V$%oIT8q5521rm;faYqU8
zkm)U6fyyrhzYry-pQeAfkgKP_?YB&W17jF4gw(Dq2M3_%8G#1D7pyW&x<y-4fQiJL
zIT^|<-j@=wkIQdbLPbtkA&Z=tBkP}uyiqE%RCHY0%qzGd(f6M&dxIh!cqTn3xG+0&
zyjR3Wr?A4*Jj$UhtOBQL|5W0!CfLAJbw}_`;V6&Wk#Io)xEA+6-Na)}jvuqJO=m2N
zzRO~YeX-!l3ttM<0|#N!2`8%f3#YR7Lod`vgS;~iTDmaPaGKFYHaXt1?z-k!2{XJV
zX(UPu=s&`_XI6iwyFah~qY)4y#MJ!~?KBE~CW9AuDRJuBPcPYm4TtT$U^X915NGTt
zIQjTq@8QqtU~d3`kAL;~Cvw?&NXd$TWx~aZ;M*`EkyMg^qVYFboj}!_nt-Tl-gA$h
zBS9IYwNv9}4V{#Sjwwed<c3%h8U*C{JGM4roRnQ>))rZ|Ay7SdKYc29w~<tI-DcQe
znXT`#ogR^bK8JMlLJuM6vCjiit8d?;%vRtM8B>LbKktga5sLvKgT7wmp?F(iJ#XR0
zV+q#7f(xc!^MISIMR&P+T~H5#4A)5s<CA66YPcVr*ONDU){!5oG6%;?%Q0>iCkVV7
zsuwhs><9?xA&9{gh{3J;U@ga;qv?maG{aH}JswaTDuRxiZ3MDY9BM45)R}n(S-WZD
z;=qBXJC&K3qt~G>FMKqLtJ8tKeH;Il&`(Le+4T)rok}C3|1+aHxGd+5jMYv0Gvydu
zI%t>)H;7ZlKT~&_CC(29<;o>t{9+4}8g&nHu<^SY0eeT<$|un#JS_H=hwKk3Dh^2J
zf6?}rQE@fF8Ze4Wu)%`M;O_1&!QI{6-3c;Sumsl-Ah^53;2zxF-5oyObI<wy-?i@j
zHGA#Zv%9D2>FVn0>Zkte7by)`-Lp7FM9Sk=aRh#HzVRm8crXW!!cmsJ@DnwHOS!w_
zL^-!!hORt|rc}y!HX0c?`TG~v@o?$7hI?@Z!_c@w4S9?LKpPf}C;&zj2nSvCWPEAX
z&0#!*r<5Ft*kXd{;w(B=@hDT#e~6Xpn5tJ_%j(EB=9-Dk=cWV7B##O`2AHN*cvvJ*
zl(v;t5K(J;niHlNV`komMvwlk-pnLJ6+}<Z(NW7V02WdI&i#_l!i{IXphS?3h?nNf
zK*&5_KKCmdHup)nqI|M?KVR7LUBPurE_+Xr>Zrx+Q@Q_%fBRp|@r2mUtTMAKtYnxR
zQ|wfI4IQ$m!#V7)i3<=YLq)MxQ>TB<#;mYa4U`>SGAd`lToq;ZLqp2yz5?SQ9b^Vw
z7cD3*-yZnqru3fH8aCH#GU1ky8t<i9*r(jiqr&FM)g_VWw~p1PT>nQ9tIHN-qY@w_
zP2>WxtR%GzWm!T-L)_(wavyh|u@fmR5OfSISw_Djlm@1>{T%G`(HD)moG|UZ5?@Q5
zp|6A3GP(!b;_mwy5Fd&^)%zMl1~YA~ob)xnb{D_7Ob4cK(u`v2IGJ1h-YxCnT&osX
zH)ms_X>fB3i@<Ht_sJ0E(kJ|1;N=0d827L_e!)L*!p|UEpR~xZ)y9X9{Nh_fD)a5J
zY)UW)JT|gFDZq{S_dCWgY*9HJJx!;s6e~qZZyw0!b`A52UE2>>E=gNkWnR!#pAXq0
zRcce}_Ga+<P4lbPwFs+q$vW*4ot!5+YQZ=s!P)e4l>C2Wek}xU2smVJBs^GNGTQDO
zv0O<Cs41LM=f1G(`a5CMqzha>8qO2z0Q0q%b|ppCDHn@<kLaz-Ti&cH!uxpq&G&`e
z_Wm4Gk&G0q{@@@g>9gS+^uO;86|?`#!1H_D)W!wMWtF#|D!Z@8E<DXJ5XWT4jl9u!
zo0zGzO}-A@+B0A09X~_}t=@4FV_UK)8~7vYR=I(KBFRotFCuLZ_6Gx`B)ZfL#`d17
zqzc2xwTn*WR1#uFTv5LLM4W=;(l|RbbU5yR$ObGRv2sq7X>?fuUtk>s5o=T^eqliT
zG5C;PX^2VD<kzvR&<gibe-2a84AyX0Re&sW#~4<rfqSXpGj=X~{uOh~H@+k0P*6cF
zlf<7Oz-8P!!%4P*gpa_w*2Rd`@)^_r4Yh-drVJ`9nDemVyqk2Wyq=8wFwgCvv6q>b
z5%K`ME%dxpTzK`)WUumVT(=d@-TjNy|EThCydzd#8^zk+2ryiG=Gv5Q$xeDSNZajH
z+ZuP1{e`e!th4?iFtnn&JhV0!v^a}1%o-Re%%pgIj*jImjP1_33;Bgroj*;$^r5TG
zA{$YU=RyVK;1FBzdwwI1Hv(^+&Df_OKg+Zj@1H+P(%{+mgBrxLO(0h0jY^bPy#f6|
zfjhzNsZ?LxDzY5GH(X(?ZB3|*k^UIC2)QtAjNHd2v&{^_1SJcBocck%5q?xzy(JM+
zOmC)S@s0Z=J)w_5tBcP2uEOuZEn(8DLSc#5r@8xm6;Er#p00ZSdq#=;3th)rw%K|e
z@G|M~#FKH8O#&YRH{j>hcthVA;*Snqmq&cRw_GlYg9X<~xphqbkb}aGK7w*raGKL-
zOxq(YZ7$nG%c$G}p=-}EwAz|?>J{9cf7N6N`$#VyaOgXRsdyb<b`5U>KinCS2x}G2
zwp_ygUZpY@DG`zZtuNO0G-+zH@5#Qc4T?F=W41xbzoczT%CB&0@G3djc8smuf6w!p
zR-yYN1N%tlMQCV`>owEPH>Pp${^0dti}`zR-uyAL^qmjKQYq}7=9Ff4mWlXzJdoMQ
z`nazCvi7gIE6TS0D9xSegpz(gdvy9r4_5J@B0x)I!)aOYN{mOx<t2idx$C~TWB!1t
z3w5drEC@`#^1c@$H2m<(xR}E^s?JF5+!r1V>Y(g8c%^;F4f-{#H~Zmr6tU6K@sZhW
zad_NCacMRZG<)MlDt?-i#T_c<{~(Iw(;^mdIqY6h$^99An6<ZVa8t0mW8WyOOlP(^
zgd2dyG^M>Uy01Ls^q_wE2zda;e|cd;YdwvD4A4c#a=)S{dnNvZg}zEg7Je^{&cKa=
z2n0&avgu*fj5Z={<CyG?cAk<{4`&Ut&YY~SFa<OldG`AJ<>Ni@pCIJV&B}^Jm8}yq
zUY5DS7_yvVQ^WU5ZeF`m={<Xu<C33=m1h*VI$T?l*Px*q)(v{<-_)qDPoFMEOV-ih
zW{0g>swUgZ5dDIbSsNX*l}fMpw4FZSURn`Jy{v_4m;*_bK_Zni6=gIQAtk<%WqU+l
zD}S$|%!rHc7IpaE5F^y}gYT=X^hGg9<Gh_ke9-uGzxL{p;oc170PUq15kdyrlm#2u
zh2s&CUnh2O;Qh5Vkt>RLRS`yvFx|65e|`*5w<;`gY0&leJAq~8{Vr>p=LQAX1~s=5
zUkZ1!D1>PkUABYITRg`6%$43crJJ=lpb5`IzB`9DMCIq%Veiy$7#3BV7dEyIKiuVX
zj<F(xGpGC@V`cW34v)Xox79)eGd5~g<m4Nn@U4zgE^f!zn6Bgt+n6ZnMFAm~6Xzu$
z^aD^Z7yHJtg!5s&jQ107(%x^G#kaU9x!RdTbgaIsr9xf~*}bE!37|8|&HUG&Z)565
zSB;Z)TO~BW_?~Ro;oNVT){>-Ps2IUjBmaKH481@h7$g?EGLdK~#4FToXAPu-UK4JS
zdy~IUT1m}X@)Zb-J_;VUfe@IklRPS_t=1`~Xaw3{4U9OqtJ*C!UfR@{dNOU=gkWab
zP@IyJ2bFVC`HT%Pa?vK(8nUpi;JFPWPIA}u>PjaBtI*IesJAM^)4TGt;;Nzq{5u@*
zmT_b}BG)Ka)*l#>_9u32Pg;23{7IjC^+o{M<MfiJKWW6qR(w7#CcFN;hY2DJPv)aa
zg2cHrjmJ25Q?nNm_Vj-l7hW+l+s`){8|WS&)X=oNpLhQ9AAH;)Nn-AphG`|0kevx`
zBBMAjRno5^mLIh#3NfV*r(tp3FIo@WW%<@&@eC`=*|_DsiGt5+M*PwEgH!lB*5lND
z<9!@KVd`Od`a>MSx%F3g1*1t;R6e&A4{%Sn_dTwB!f}-2$fv%S<3%#{ha_vGKgMK#
zS?(dNcMJLkq>(nQU0sJMcrg=p*<u8?rg&EAo5#iY4$Jo({R&43OH+_;!(ll$WqE$&
zGfqz_c|3zd`q8-APT1eD^rBeD?T})cHmf9AS1q1|->OSOO+7j`oAME#ARfW}`ogP+
zYhLHi+EI>Y@7i=fHOv|rbv_%ZD#pNPGdsxhOS55b0g0ubfKI#z@d_C0ncAUqdWP3y
zaW&?9mLje_RY~oX$C|x3a3h`u1vJFsjA+_gSdyu@#xIUbEK{iRb!2+4459wB>&1Ur
z<YObt0a{4#geQGm%Q2#O98VfNAg_!4@ON#<Gw7+3Km5~2Q%gv-TH>7<X;P|(7r~@;
z34iX?LnH?+=t?{=JLohZB4EJ#+sy}-w?HC_4E*s<a8L2-@wPI#pUpQb?hzR6g7t^A
zM7Mot9M^A#`%{B+KcWZgCr*mmFuzkM-FP<)#3zg<Ez7B6wn9@{&Ma;ik)oU5VK?UO
zzeqbyR0l8i=pxB2lbW`cHU0?m_A`Lg1+32e%~6l&uc{XPopo~h`<h^Zg)_e-HI+*%
z6`MZ!PV72yH{75ySL3^7pyEzgnu_PXxf6~LCya*XLL6<$zO>_%4XXTu5)!Y~7A(Z5
z!XLVFYd%B+*nJl=@E<AZff(h;WYX(DhWT6%zOGsE4pUh+;dSjT440c~H5_)4$w?7H
zkvc-AeetY%0j4nA)v4X?eH=V9Y|~VWY><7gkEUiBQI8MALlTv#Sr!FMe|=l%Ao_b!
z?JFfUN79mAet+ZJC63H$0Yxui=&=mgyB18QE;T>(e9?GHN<rjc^dyYy(c@OkU;7J-
zlZ=5Co0|yNQ7R#%?u1&bjFV$FE*g=JnV;W|Nrkapun_6rO~AaV%^^y=PW$6KnrFO$
z>UB@u?{ictHk4uOvENzLhjbMfxa9GZgI2r?Q7bdDKhr}tTgGH%iLX6DceFWS6EzlD
zc-Vt^Ks+)ZLt2&J2ri3muaibiUGL9TxtCf$=JF9(nYgm1O{<_@Q>#qQG)ckLs6D>W
z94e<j!{=ay#l%k6|7|G7Ea4RRf6wUmWg%(osBm76M%F8H*r6mDzp|yQ4S9-#oLx0z
zVucz+hfQ7xCQg`TV|6RsTz)PZ#T01&o=W|P;oFpHjL`RFh-15mHkUuQbD8!BfOK~3
z4Qj3&PA!REVMf&a)gNH7gcg{@S$g9@?J>RQFr#QvnrXm<fiGv|E$Br<q}^nU1z|U$
zUi51pLI>HSs@-XGQ%3r5Mpzmiqsti#lv^~88I5Zx%q!a4AVbpPGdw{blR@57KCE-X
zReL-@iO|w(jp~&t<gpW`-*Roj)Wz!<aWZKj5JQMF1OjFEjm3*K>k*3cpM8?OdjFtP
ziq+UMiXlFH_-t*9pH17Uw|QpS5GTTi{3cwlo)BI9B)k=#DvlabExul1A<N`Je!_8e
z`dFBuN7nD0cH^&~BWDkEU)!!rt8(2&20m7fBm<vYQ&EFm=jmTS2w}KB18@kUMdbgG
zkWPAv$(C>&_M;lZdX$~amPfdMC(D3lVn_}159%CbNYdr%S3(0t0d)?ba;6x1vY(YL
z9#=^aCF~5XvD0Lu#Vf{*naq-6$e;uOIsAz3Q)u==h3SPPLN<*XB3X-;6_uFwk;}+#
zShFv+qX=Xe56aJNgD`KVK(I1ydZ=1uu=icW%6|Aic6ay$RbM~}MlArua&B3zR11iz
zV62rzzaB)WS%@@tB=c2Yp@I|N(+&-_N;RlRYnO$%vuerhk0yB5>F~}$oDx|_y9o}%
zrAzJqCXly3XZPOFw(o@qQtL=F)Wl%TFFW}GEm(Ux+K_Aw5Th^@BI+Qf`PqNaS2y;~
zb7Q<6Z=5sPH`6XIzz;D`H(#VhR82_^W|Q#KF|7DWqY|b~B>a(&;4&jp*>_Sd|J4U&
zgpPz1+&z3rUUBccZL)~O>Qd9r(G+SqYIko)Q_oHYA1=oH6}2Yo3APa&+Os+A)|7DC
z#?$d9mScx#>?s?)NuDP?A-J)-$;NQ!r;Fob4SQB?5N$c_`YY_8l<e6kW@bj~5E1U2
zQX3jvvngVS(P{663noiR+{*=(Nydeuf+g<Rpr=`fr||&}UkRnqA$D`a{Kj}p(?Eq#
zPJzR>aHur@Tp0U=UznyMDneJMgTBK!dYYs>+LsZPY2i(=_$sO{Gj1#}46#Kr+92@!
zJAat=Ivem_Pe}l($4IR4vQ`jduLvj#>0(WoCmZZ_%x)dkv1nLDpm=jmLwR@+8kHFG
zgZv;RCu=g5xI;%`hm8m|`iF@tn&-v{r=i)V3UlPVw_p_{v<H=54zmYBErSqA_TB}i
zDeu_c1LD>5&$8zX(@~gLGpvFC?1Loe7me5}ztC(x!qtMh2_LT0jv`#$s?J(`@!YAF
zzUhWI$fU`D%5$hsaWc@RM|?ZKHP(@p3t7(T^U9(-!_kVksi6gYMpdm0#@6-8%h{B5
z-Ox8ZK=e0P9~}0Zv6PBmD|2uW5D58GbEQDOg{&8$LhV<Hkm#svRoOjZF=suE;thzb
z7_Zwk^nho9BpixS0IUt8$3_7(vI;K9ll<<C(6`|#xA~pZ)QP3x&gQG_Bo#q@3}0%B
zJI<XkvnauF23a<m0gtCGF_yrL!=Bx-b3fg!tM#?&4u-|3Jmnksor4#G%$`?BV9H{s
z-^n_+q=k$b`G$6E`A+&-P1MGjQk!6x4y$*@8X+diZO@&z$4Vc)IPaH53#d6;BxY2P
z%7)stxjfj+vi4NKs91FI4a2|op2vRT7oWI*h0XC(cXJ0RapFljW;lYU`D37ao0CoA
z%F7KtOe#;9{LT?DY^s|WS=L{OYcvo1^HUM>HpIPJ>y=(P#FhY&2isS|+{a%WhJRV$
zP=*1+*T+M6>^xQf&AZ2sPpEgwYd3i*iw7aSTvDW#Elq-LXZS+U)Ta||{^flw&OvV5
z7WLe1^0?hwX*>qyoh;$&agTBUcK8mywUCaw>Id#W0VQG7>v2RKyQUhE+J*t<yTM4b
zDw;FPpWASpp|~ycNP81`6ALTzv{?P2i6Y;U`8bJ!)Ro-D-IjNt;o@*|Q|j6yG(8Lc
z5M%%_t6{^N2sMK&Koo{i%i4IV;u>V@$%LoGY>bOI3?`Mm>sH7+5=$FdLL5)11V1%S
z5<%5<2(#oz^<#JfQ#_*Bju4TaYJ~f&xMrxhPtk>v8qT2VZn3Gq;IDl&IZ$ZATjJ?y
z(L6{D?lf@IZ#_{Q7bMS7C1Z*gR<2m4x9ui85F_;`j(g^03yWiW1c+T|Mb6Kw&In>t
zt0DcXC%DBFRW+w`hyFLSOxXgmM@V|5qF9ij8Vn+M8vi-B*CP#yfEd<S;HUgm7s7ky
zK+Y?NK-!ikj#s$IPvOe~WUs$~YRSOguz>FYM90d)Yx1dn-yUvfuuM(<1!+fsO>w5&
zBy3y4rKg-btm0#`w;*qpJQXML`NobkfBSP=owaYoZj5(D{`4WpdCZRgI~Ld1wo~`9
z>CH>lQ>OIG;&7LEEFg!l1Q4X-+!^kcH>xbuGjBBtjK&ZgQSo>DD~yWi`d$$^I7QRn
z{#&-`!JT%2G#o-mX6NRqjv?}C8ba#8wZO{Y7rE+h33OABSHjQPMYv*9A;_CcCJKY{
z+o!?&jd1m`oR3gL1|Gf3!_mLjTvvUIe?e>WP=<l{Oav?sveO%~S{3Ui3I?Wp9w#;i
zQGOmS#x))OOwWtZW&=a~e}CI0zQzr%D$31{FyiR#o%n^M{zGyl&T);m`R{hGB$pN5
z-<W2AE>4BJN;HAhR&OXW)9y9{R);un0f~%J=J6YgHq-7vyDV?=ekMQkgg?=~&m*gZ
zlB+95(dFf}F9I;^^-L7RUDrE&)RsIGF!#VI@Iv)?P10{Sxj}pW-C<)T{=^B_plPJ1
zcXsy9$gFAH*k@47>;wMh?t!H`*0`Qi=cS7VffX1A5CfPVm<cMkvdkqG<*Xl^Y>sxk
z{s{M8E_d8(V||X8_9(+G9{~Ur1#g-KU$(>qT9CsZsm=t;^`6ek_;UrGx~Tr|HHi~6
z7yLJ2fQxo9`z8(TrR;z{YX&fZaQOJL+rs<g=8{`(dl#-PHo9rpV=C%r)1d(2dv-l+
z&5E+;M&hgv=T59`ucc*&HW$G0wP?$F9p{bPz`-|*KWk)F6K!V9s&js2_CGVAnLW>Q
zEcQnl*1J9|@b*=-RmXSZLR$@=#r!o~)x)#{aPQ@wqGzis&UsW1+G6x|($`*`DeF=!
zh|LS^#_y+Y)O?N&=Jx8}TnoIs)ac4o-44U+h_LNC1`iIGaNfjNW)J<gT%2`#zWiw7
zNmk6qWumgv&Tjli2i~&oQZJ8?tJp1X?6}(C_}~A%eKgld_7XY$@OGv0x3THIjtT4n
zmfj2Vu>J>KV=nk&6(HQbrr40$b&C-I`$2e|dPs!tI#;HGzHL6XCEn~x&Ld<G7bw8|
zr`&v#S|^BQ8?*K*q+HE%rd>0~AmVl&oj1k2eq}g(qBsW3cCUEsv=oJID)tEhQZN!W
z?LOTjX=k$&3Z_^&-;T2O#rTw6VP<17n2NxYrr~}tBJ0)U>eOkVh1r*J-q)z-uT7X2
z-XpDb!E*S^-pQV&okYd84MR`j2nqaP%#YR9heLRVzF(&n1V5@U1t#LM<}(EBg@sU|
z?BeCMEakq`ARi6Z=4?KS<@hdF*ohH#jH%wXTB-`9+{Y6I1LCdt-|Z+qA%!4zsvzN0
zU{t}IIGZt}Q2PzP#(MOL+$sgL<+c5uJjZD?@gqP1<dLW#PBO=&A2e-}1=t>cq$z#D
z-`DWtNasCwTOO0rM!GoM@XrObO~>ipkG?7$xQt3LtV&JhtmInVo3dID+>nFYHkDq4
z|KC<u)&3zQt|tTD{#KTsRc@lPCyGqUtw2*AXI0M`Al0zCs!83Mz3haqcav(I-KG~B
zW>y>GVRwB*10pA}-Q$OR!xA-qNhi-3S~2@Y0WQKm9J#Qf5I>O`=3U%e&|IxMY)(Jj
zMeU*{aolKkzDZgNkgKTw=Qn%%T>cyB%CNC>H4&inkqht>U7h<!{J@tQ{#vpwn!oTJ
z(~nUpbNEY5tKQ)oHZ8WPkL{pR2|$Uduv18P%;807%$^TV;S64v%JUE`nvKgy_20PM
zUaM{|3y0FGd&7Ow(Y9}8rkuP{O8kdXZo8U8;Pp`Y<FK~r(A==qhTNqbRX^Q5jsGd+
zlWDEhOEsSJt`o4qv_wL-frev(=3;aK{AwUnAK^k@_w58|81+8l1mD2BS5lCR+_?Rs
zxKboUE%wQ#072T00{q$}cbH+B{An#Z;5TLF<ocrtyDla?aQsuXV8t!Ai3r5#e?>%-
zM${g|KWiep7;p^*)+DZm0C}HvL2*C7)Ubmb6E%9yT({f`&kSEFFmgflo(vbZ)5-WA
z7V3Av4%KsHf~#xW{q%3AY``;2QP-Xmy3v})D?RA{NF5-;v?)|q%oUuXu|M3z&;>Z~
zOWQR}WPz&&+S-Awy#L0om4^)hdRemkSw^eVSh5ZZzu%T!*(k<)_=Z)`P4CFSo=sG>
z?_}V@bA3l@`luw%ySF4x%?`^m5luV&`&JxXrJ-X@jU7BX*g|(;iXoEHpLPPi8VaZA
z$AS5mS-Z67373kk-VI)aPgV&CQm`<|qycX{+B%iPkdBXI!UFlpCdQ!8b4v`e=5>~k
zt=AWeI`ami3jFN9iGJte%VvQG1rEI`UT0lEz-K}`gb1jIh)Bjrx@P{^b7J!MI<j5u
zbrAgjeU)DCrqdD9Y`Ql7y749KlUf1-V0xJqxo7GKUxD6^^uKo?{(trPE)E3&(fzT=
z|9xS%g*m?ORkH4^E?v0WlN^===Ug8I-2<846aJ-u9%oz%&wUHj3<wheV$l`G#*(tl
z;mwBY9Kzh<AU|4?CIWSy<P^tjX3LZc177aWF8qgkxjT5*GZzl_liel-4_2USmiJ>i
z!W%jyiaa{siqu@~Gs=XFtZC+}&WuOBhE@3+Oa(AdVG5#V4cfScH--%h$MBo!QmUyb
zpiD8MB*+qFHi$uSvYY#jLd*8dQ$={~Z%avmHZz18RgS%8I}4s;>CPT*Cr&;!$g}}&
zb_Bz}@Xs{KaomIk>HFBT>j^FkPzr7q4=$Mh?{zTXc?x&8m3CwhBde>QLE^+>>~{sX
z<>uC?Zv%UtObfwiE5R!{ov44bswczXaSAH1TBF`SlSLs}|ED*f-I5!TY_=@JhZjE4
zC_fA>7Ya~>-x^a$b3##&yMDjnO28ODo7Z=DtEu**%E88}Z$SfpD~3#2^1MyQMcB8n
zKEjPXeg9c@cUEQm;GpETBKTTYe}QIrhuQNtZm7uN6)u*4xn51Bv%s;*R`4sfLGV14
z#{`jBy&=63BtTs0*-+`XnA4HucXQ9RA8RO@U;nRT|C%7TWubVgmePj`tX^(BY)q4_
zSKpNZdvmT+BSyR-fFL|Ci5GKHy|a$7@rs#E=~Cc$ifXY5_om-6D<G5oK<P+V%aFmZ
zA$F&Ej-!i+NS6<{^bXpSo2<V_2EYEiGRqNpDd1*UYQ0QQxM?rmm20}WAPx{RisBwu
z)@~-Sgg0K818^2{OPWbG89K@#9si?9X|sY;M9|W|RJ2^s!gh9$m12<`oc5nqDgHH~
zL)OF<Z}NFiEd18$DMc0W@BanQK3C5*BBM*trW~2eIlMR8GgF65y-?Q~S1L@884<ad
z=0zOQI%7-zP|DQ)d}b`yVu@)bb#JZdNJ%8{7B|;)_L)t&w?2ZT0OuRgw}Aq)y`#9^
zsHLaXYDUMmeiuei#noEF8pli0-mxDE0p8l5adyz&x1}9dzXl}BP<#UJnTw1x0&OM^
zjgNpTOx_qmJeXcCBc7H>XXnMW8$Qp43ZQ43IjMi<Mz_2Kzy0^jQ*tqU+;jTMX{__9
z{@C!T5$>2?L#O0KQg{N&G!YgIy~7frT}ioCxqU@GKh>mL{IjcfF+LLUf3^1Kf)Z+b
z8q(eIPihn*VTpV$rlLEz4!*Y1YQg2<3p1T%9FM62cy-sf;VP(L1GVudo#$wK?V7C5
z5Hx`OWj}SKt$QT80OEu7z$csYJpvM(Jtq`Opyv#Sv#^*v?dJ67I3^0FfQ7RG-UaIn
z`~Phe2xa;mHakJ&to8D*H9-KU{K}NhVH@cSIsFiQBqt;&wYA98d*b~y`Qk;p?znGt
z%sBt3OqS?%++XQ#r6*;7d)h^kpIW130bz9!C1)w14`}=sTEZ(9r*sXkM9t%EzSnx^
zIsWMd(VgwMrDl5nUlbhbe)c)zvrR0}P>`R|$Le%s$mArb-RN5(3mCxcAx==gYHa;~
zWAu+OFJQ2P0Ta<`16PdN3)>}6&1D#4h9BZXmXrD&63S<e3g`YkLy5ndfcSNPNnZeJ
zU#u5CwnWCF+gRse<w|#1)es+8<w65%L%$dx4#bRcF$xo}ykl@S0TookQ961FB_S^c
z{8ez?RQ~!WW(~=O5Q6pg&ja7R_tvzFFo7E(vj|tXe8T@Ag6z%Vrz2NfoK5yynTbzs
z1vhTZO4kX&q~YJA<%q;rNPeGT?%GMclz^mbzz1aQzCQ(iyvvmgk5}#IZb<f?SfVw;
zKdASm`dzc>1i|hO=m^ZMf8nle)JM6mPC--=q0`C<cFg6B|6^T(7(QVL13sA`YCQnX
zXO+YOzQZL(yki?uSxx%W<xZqnoGAPvclot*i(V-#FBEeJ>?GmtP5Q5&w}by_S0wgN
z%wS2<4#70^cGV^@g^utx#ZT@@T)qY6?O+@I77&S6!=tIm0A(8S`6F386nOHxsY14F
z<f6~=3ZfYy8w-=BCD-zTbw4UzP%Q}pDCYH&D{2UDKS}*wbW|lfd9-zMp}-UvkXOe~
zEa-;E)33)Ou}?2NM`Way?(4eDRO9N89*=}(k1(GPMa{~tnTj$gjjr<NA`O6-_;39t
z!l2jJO!|{Nnge-Qa8<(ZF)7}vIi%;3g~&a#OgOxRA97o7#Y#e#P!T|~FyP!>+l~t1
zyC;LSi$jr@W0CTDeNx4dmC<1BjatsiU{N0DV%q-!b-q5?E`O;L9p>ejp8z=es?A&5
zuR@CHt0z5i+88>c1ixXWpe`NKgK~VPXzOA-)XhC?GMBn+TLfYA-x%gFd*eIwoy6CT
zYoqr!;rA2h|7;ZLK&l^wT-c6;UEmi`5E#bIPL?Qf(vtKzSkC!rKj7ikz440shZ|le
z*$<pZ%n{#N?2CR+IYJU<v<j;Gr~8g6ypjnRD{emwOznaG_hdIqQ^P}`B?=%Lye-N;
zb1q((w%^QiDkN_eb2f3rDI`ZE!11WghRXkR`l41P_^oVwCD@zYI~aWpX**E94mCi=
zJ7DN4u1B6f>+Rx7%HeLQT4!jGd<$(EUiQ<Tj;_8V^U_GV6i#G$xYf{5v}_+MF(H)R
zY1axSEyGR(jx3J<d2uBaU=Bf8I34q9Yc)&H;lCkp17;$hx?26B9Orz&jbBAE%=(Su
zY|`1ZNO*yCkejlS&B2O2z9#4Clv!e4nShoJx9u^xF6LI8MdZ3Xfrhj)t^~!3g@e?x
z<2oR;p^HHh!v~EhC7#%B525Xa-&QktO*DB{8zhd4bN}Vs>_PeCvg+gBYbywjii(s9
z9nhusEVtBOdt$%frv*oY{B?oahm|nC`k@e!`S@zSNv&;3EWrhhQsXyn&)BW(;^5>z
z7{gQ@xbGTo*&?TH1lk9L^)7B9b*PmAyK?i=Vw>Ou%wJno!QSLW{ynQi*zi;Il<8bM
z{y5TM+|-7dLufwsH$cUJPb)75MNA+hG$GVh=m5EsG_LtQ-X|R0pCDsL|0(Fb?oj@H
z$@WE5rqAt<U|pVn2>%VUk99f|C-@t2v1t|~X8Tkpb0n@?#(eDKR|u{6iPxv!PX_J9
zP-uVfo0=M)Z345<5mHf>M35g~S{dDq^_3s(X(2!>57Ep~c1}0G!SvA;wuGH!O|>qs
zhY|8051V2Pp`LjkE3Y3LA4nH$|G65$kJ+`$t7k$fCH|M{ix5z(#9I<{xj!Ty(r~T5
zcvo!Lk!<}dF*jz`*5L?X?Liii@B~BcpZcR8)_CIp3S2hayKKnweG$7bYpOrw{Tg|-
z1;ON4qr0_u!ac<#`^6#Jm^}7)_XVC+fc37p9EEm9p0ODxr2ou_kja`(utD0@RLu0S
zX%gAP7Szp|qv}X3O6*i$<Y?9b;ULTWjcU&I56)`jiSP(^tM$pXB{r2zd(n}Ow`v(O
zQqwmBh9k<RBve@^mD5%;ZA9Es5_fnaRw8qO@0%+?`wUp{qw}i{{%?5r6Je0&(q=}z
z+#BMHTl)%mVSY37OT;4+m>D~Noc4b)qNFQaoob6xj3F{+|9}jjrVCiZQS6q!R65k1
zKPJ`_7wkt_#+zlcjtrV+f;N@@s#yNAHSw7t>`x*>DwWG>Hl%nZ2_CNv6xfwfnJ-@e
zY9&>5T5$o&#uruy&KMYSzqg0{WcZ;@m~`v>@MRAv1{R!k$)T>9;h4wyi4@;rbz&|O
zzntmV(@{;VgCrMf#m_w1+Z77b-GlM0c<r&6DiB*Y2^4GC@jC50bEut3qlE1(da2O>
z3(U*9{=i!gT9Z`>ZXq)T-p&%T)t3$?l=y#1uKy58rD$jJwP}l6XwL5=YJ1KXr&ll(
zPtTPW1BfehxM7&VaTmp%Sm|k>rby(K81luG2I@;n2jEM(h`+%hTR@qNxAyG|R^78L
zq2^so$fH@EeDxrL5L!jcCxb<HAgKe$QCB<j291|oC$hrl<A<OyK<TVVZi7J5HIFrE
zd#mY@vWe|6=n??>?!{)p^6B^(o1}@VauFJTdPY2Iyy}BE*#*kwTBUbMdEEsj%zz1H
z_=h;c;DR=SNi=X85>(4&E8CSB4b;{2m{WtAXL-e60`b9IzLj=#kizIPI|jeL>WoqJ
zqlZ1|KsZ>tXx-O7wOLJsaQk{<Jfy&8BUf|7d_931nw9Mehk30$y3n*ky%EiC_bvmZ
zXUmlIs_fvIa&a`6r-^mXNYeplbkrqW1nBrK2E_alk-x3w!NM;*rckAN&iKPi0p;XZ
zrL4$niK?Ikl9%Qw&lm5N`#!QpE5$@v;l>e8$6QmDN3tJ_Z?GXe%X&{UR}_N-Ex-=}
zTvvzQZ)QtQ!UB!C5zp^=Ve8fJ-}=tik+AN!)EB?+zBRNDn2>pX`i1|bk-ocQmQXP5
zwFw*#E_qaqEJPr*@xOZ070czg^`y0-8j}F1T{=c#dxF`szd1pe>QBX7!w!zO57Zrm
zET+NS=eXZw?OYvQ2nUzK12KEY_*gJpJ%7t}CLk)->XQx(Mf%_y5sQ2u$(~YM`cL_i
zViK>yM$4S5YZ$UcYIw1k^6Jm2c#xAH9yZsN8A#G!|3sgaeWay{xzV-WDpw(zRuFoH
z>`S(BtmX02?FdsqZBL>zfyEzZ$^UQ$?;NoXBEWfvOWq!_)nNDe@Gr4IJ1=>^X$0do
zxpzBSr~Q~T3@2)f5Tt|_^7R}#wR;=9va~vdb|=T@6WA2!)Y@cmQKI;CPy(8r?-;b*
ziy8FEkpAHRGo|&whXl3VK(qRyxHeR_YyZeC4GAE<*Tiq}bRz2zplXMeasxwbv(oE1
z;~QXDg=qV<uAF&?@Nm<p@%=3B;~UKA)-rgYm{<w1FSxl~3=G~eB$Q!By>QvPvgf`u
zpx|&m)1W}3jq)@JJo=`k!|2!0?nc5#_Y!ex1QHz%`bIjChHLVSFR@4~!R)n?x8kpK
zQ6JnD`+x||#9q6#6Gf^zOPQhJAVrOKW%VWG?iDyuUQlmG9VjpWxKi2Bwaz_K6zU$V
zf&k-&NBBpveDV9Mqw68gV;<`ejQ8qFI<OcEeCgP`4I#2bOa5H62<cu2z;U<c??#d-
zehX38h>)f2<Sr{agNk$zgLfchRUv!C7oN|t#r0`N1IsR%3Tt)`_kN=wv^hQ7k|Lg=
z@@Md;8V!RUzaP`jG#)?{U@=u_o!kk!E+iA+Aq1%MS@0ZfzZ8vA*Q6^9?3WPK25sd5
zA~?H0o#6|?Wky=a(+i8`8%?b`l>W=S78vx9gfz2qqRsMUdCBb7+KD|mVB7a7eUwm=
zav!D?68V=Ff?N15NDxX%&hk<e4$NO|zYrHUAn_n)rQe>&t|C{~hC;W_M?XR)&4vn)
z(qz`aWV$%MZ6kn!Sv~1Ky81}c-8&(Xq?`e2J02(EwR5X^|K$_euY!3<KIE>{3+FBY
zXJwGAr!G=x^hL48`@!I~dF!tsxGAqpklTQbUwo39MX2@>Jw9VQOj>{GzM^8<p#;``
zdY!{;pU$*)m!n%NqV}S{V^xhcyZDGWTvJYNvPF8;{6s*aO~+9LDc^q1>{%0}=`Nyo
zZRuTJ6U`K+*n02nC$j^`C5MWo_@YU&il+;On-e8B^iSke_?wPIjzGG;<KVE6h<y7N
z?zwe1a5s12wsGT6zt9^1qXH8fDl-T~eyLW?U|EE52-jV|wf0r}d-Hbb&XWJs2zg0!
z=CfNxr2r8Zuh(8i@S|Bcp6%)-oQZ?IyTS^8Y}`NkHk3<A!Vp}y+uzOyArGwr;N2gO
zBkn@EeLke~(tAn}rl%OlJzdOc9fu)AefK+Gyb}2Os_tUCan8Lvfdnr<jgCp$ftzD7
z0T47e8v^o=RxhmovlM1Kv&eY4jr73CMc9A?u`(KYbjZ<KJz=JP*}-|KN$t*9D3h(b
zZuZ=fQSH|U$ISMmohRDjPxwj2$Mfa*7;BDUJ3|8C+0Ul+n-~K2&52uvc+^#CDp}dq
zntbW;aPK=eP-3&IT+)KR$UwEijN8NS;&&Pt3BV^X3aP??0h}KAYtHZxj=qwl1MH_i
z2V~6BdbcIUSm&2THV4RjK5pwbD93t7;kI`RMapxnx8OKUwAni|*jb5!<}S6o0|pg5
zHuD4ng8XZ&4@IT#EqL}dh?6~V?GGRa9Clc)q&kc~9SeznMx}_IZEyAtV0BeOn-wQm
zaI^Ril2$aajXH;OiAiKbF{^LD%|<WJLlf6m0{^wGy_ZbFH`0@HZSFso(Kqv;<g-N2
zL>Fxd5t8Z#!;+D2(37UOxS)P<Qn*<ufecR42;9M#!9n3=L{NZ=GTsx;9>|jw<9Vwp
z(JeW$089TW@|Yjw<%hkjjPJY>IMC$bWCaZ4UGr~QN*9T}e6}RDgcm-H0mh53D0RoC
z{aBh(-qFRl80hXsaX$5ebEAXvXND*j0H<AEvp9>1P3+^_SuS(J96BNVx6+Y#h7%EJ
zc&)-YH^U$f>&%vNtoQz)+zkR%K1XS*G<KV11g!f+h3*;Xle58_3)*>6QC)K*fgWPK
z9gcg}@GLl7`cm)aV74)@uO$bx3|1$6u%tu!;aCw*Y9e{6PJd~vLSDs-k+ksz`u_Y3
z`CJX!c1yc_%&#;*HFlV)m+sh2{<ANUrzXoapP@(~jOh20N@7d)tuWm*rpMjC>PcI+
z?`v3PvRHJI4%|tUuT#Z7k8~<k_rg@Ly5SY5b|ogRIes>;_DFLQ9IY!9IKI|TTPjnW
z*J=yH8JH=o?N-^mKX5C|T*+dFU2!1^mEE$TVLlbQ&0PB1#WJV`^FNU~big3+t0ukz
zTu0?lA114+p<hGS8P8geyoTl5Ez?5M3+e8%nud|A0;-~KBAg8MC5J}#sM+4tw>r_3
z$W1X!ZkrsM&IB4ky0W-R#x;c>fG>46V)ucAKN_)k|FV8+9w7r}XR>xCaH-6K#k{xQ
z;yv)Uoh>{9!#T8RY9N%3=rq@e9CVXyOIyZcWR#=z&WnK1k+3`rI1K`qU8bG3$P<K3
zHbInF>zYv64zOqhAA`&DpzcGmA_+E`KAG%A{O@HhC;4{zH(8x6XH4#mUzTf$O`0T@
zg;2n0N86uD&yA*b5VKJu=?p?4rTPqEVL-C(KoZ7YH&j;5Itau6tx1*ZNqd=hNX}k@
z6L+fl5{v}8-?M2K(EPbtPDy>k<pkFt=)QST12V-q<6%H`p~Jz2mwk}Tz4|-lBY&|P
zm{NtW!?yXaJ-*_XA!jgYZ+OR=;(XqA*~ts3N=j5b#y~lFI~zh$16jOHzl39|n^#B1
zrT%TOquV3WM(U~!MX0oOro&KdHBE)VCT@bQjLl=#&A(zZ&6Hp(JTo8@+_o`CVk_o(
zTeM|%U`#@o*!5xWpQ%K}*O)dW!fD}nA$#|3lD(hZgz2$lL1nUn9^P(HHU3tAp2@r1
z4kImN{tMf|fQ{tGW+~1c8<CiT%Ch94PJUSuuheu;w8iQrWCzckv3s)24L#j_KBqZg
z*`Z4pQyAJ+Hp7OZpwk?uaf5^CGgV${Hp-kI*QsiPb^MI-A>)C9Ke<1V&_qJf&KuKJ
zYc$B@5M}}q`BC}ITyOA)6xER^RNUG5NSVK0EwVKYh>8KO0MLYqeaFfY1G>mKvV6x-
z77N=>7)_8jN>)P~Zh1nd5kTXP3T%H^59w;7oq!N=55@f~a7hXh{oKX<|MMmKXXVaN
z+)u8R>TOauQGuhTNxwCUF1UrJ8NkwG>xND4Llrf!@n}uspk75-pfu=X&i0{L$+2`s
zalmA$I&&=Oog0NdY5jKpq@$UU!JJj9>gBc-fAY7ZCC7$O5;O3<=E^YYH6Q$0Sfp;n
z@Lm;V24LjESoT@=5&*WTy}Dm3+bdgbPYd&Yj=VS+>@1-GmToQeT<@N2z}W<<Wp=o?
zyvNrWtz1;n@D!~T*q0W#xBw?BIyj@T`|B*9wie$s!$e{O?ccw(pXQJ8{pyITaJ_L&
za%jsK*CdL3j1cy`aPmJp$pskvU!!&A)Gyp0t@STged`nR`({}VjZ(lAQ3rI)l}Opu
z;id~}W)hB1zAHMT+M2pF@8%NME}mhX0>iS0+H?Kz(Py&!Z`3mfU)j2Zv`Pnm9lsY3
zF4D~v10!w)J|=YNrFqz&Yo6$@Y9ra~etzwnWv=ZaqKsRX-LYarnO-BRI@n-r`>q2j
zX-?4<hIl;?eXZ(v2y&!vIhRnwv-*fw6DG6xNcpF(za!vOs~7U~j%=iFQzP%HNSOdj
z^#b21^cr*xwTO+!-f!;H!JbE1tBw`970VKjH{=Z93B$9!lz`ugCM^~jqSysSvC1NM
z|L(>L#(<>M@DF(TzVcvb$iYg8DjvX_+bSF!C-rbNQ>+wpe&oiSyV~)*X5>NAQrS|u
zp}X#L%^T!*0JP14=2E+G4(WUFWE|T;sc?2~SZWJ@%U0sz78c~85U>iv{TZ6ync^ON
zbvy2CIz6T!{YKohleDsjRD7eMS>MEitsEMXPa)>wx8(9(tl8DjkVhBYcjU>_k)N2}
z!4%fqk%Vi3V(TFg&DR0*{BJn}=_&N>*jpZD=itrkrecSJS<IDFPh8Z-w|mQ_?Kz1t
z8!(8e2DzRnhsVfSzhOQYAs*0&=SlHd{v>@Y(b}Kv*vr=AHIY_x@W;PX_3i_YydP`{
zIy0^GlTvS;o4f98UyqPA6|nFAgi>l;@zwjqhRFV6H&D_NLw=_JhBaGG!o_Zz#`)tf
z_3kbGw5r~62~nZMB9{04ejYG=@$5{t=!+3g-5lJLoKz^JWcrx8(o{Ky`e4zlQ1}vJ
z=DfBgLGS2K2Kin#TKv+ZL`a;}@ySz%n$pZY!a91xb5EbpnkBNb^jOlV3H6Gw*%nO;
z(YUZV^fZ)AP_MaBHM>i|G~x0Eh$BNWR-9sS;L5s!dODGkk15uZB8T|<*m*GDXI{E$
zpS`5~gkyoOi*MSS&t2C?i)nd=Z5Hhk4p>EAki_bX75yQ)R*aoBT?w3nn!QmJ?hg!*
ze8sMn81ZW1;=-m+um~vt*m*-G<BX$=oU(M&)I>6mHi=kvVH8<!<a5&pjcMg-6TaYw
zxox?{DfG``mO?-{jK`9%dIGh@!*zZ_;?Zgb+sMxI5%TvCkCe1_8Jkr_EYY$U$c=ox
zz=P}tzezi@)(X8{sMZ}Bcz-fS*m=2oEALWfOZ2lLwUgH}&m~t#8zwDYU-8C<|L;0P
zr|VOwud_OBqsO~#$3KRFrD_jGO7IkmvfO>kT?Q2}PNcc^UxFtclGQ!+zFB)oH;2rx
z@^HFivrtre_Uz$`?9!#-{tW$L%Vd`Lrmr`P%fkz(^f#?k*j<Le&UPAnY2417T(){$
zz1lsf7Iy5zx=aVcn5^TuF@~hESeo8a3n_wc4h5Y;T`O<xugpQWS^)9|<Lz;NzORM=
z`t$86f!Ti+(UkPlpG8CuWaddjM0iL(<#)xpl9@|fzjSAQvx8>1!*D}z@ioUsOn?UW
zb#t;*Dy*3s2sh7Hvn$@~CJ%x&uyY6@@ImJv^H>zA_0ZPniL*>k#DXSjoK}2rIp^V6
z_~$(b)p)$?yJ9Td06X>bU1B;5CTram$&q!q&#9%xcyi~+)pK=#ICSZo9x@$=fruK}
zV+IGh>FiZJ!)4k-vnZQ9jY4FD_8mvsc9yua+TS5w<?@<q%KSc8I(u{I@B1T&HE-K0
zCdmoNWN+f@B@|gl1}35wVE1el^wQL*I9m^gAu`{9P)pY1EUsg^!`k^!{o!7Uv7HL$
zAE9hi3mk$hZcus-75zRxamae^S)4J`;RM4QMNK3Xd67c=ZpG0`90<S10T`0+YJYM3
z-Z?~vI<Uj#fwNGzBXxjF(bqsXHng9=!KM8p*)rc*DZ7Ftr%4v^{eC7UT-Cy;5e^Lz
zrne;+;mSd7xi6U@%e1o+bNemwVZ)a_w)%>I8zb}VJk0y9;6cCBPPc*Hg!8H!VTnt)
z<)-m@8T+iP$`G;3gT7{I7Vm6Q=n>Tk&j(*;*G5J+8Pin%*tQJ`D5d69T}1k^=~vdK
zq_edzjp?M{v3~Si>U#kBc)R0w(Rs6sUC~qZG|NwNkp~;~ck(L;km?b-{Xol<yM1Wi
zG0kSygZX9X8?W#j;>*z~I6wTVJ<y0cuh6nI^sQd`>7U3Fmb=6SU*>eKupQPb)jm+#
zfihYBW$e|pIaU;Lz84oUE%I|~q}G{ZC+B=J`qvH8aLsfetf(>)cYuLGD28Mm=+|#T
zgWOnvQ$yir{%DC{*03JZL1StEEQGG2t-9VaRMPh+1BGAMrt^xcr!qa>KLPGKmAjQ;
z%{*{9+yw+yZdIxk+<Z@HM@KH47-8sN#IjDmfu_;X=6_QvJH$PHa}baA<yzjliXqtZ
z$AE$<;=Uy|d2J3jM*b3k!uk7hdn%NN*d=c4;8BMEd2F(oFII<7)MM$JKyBcj-DQFZ
zX%-R)u;Ft%tNwVjiLD6QFq&Ds9K@8ar8RWfShXji1dldVl9b%reShGMS;NB$*R30J
zehdz1cv90yDhApph=DemuX^(0)fNeK&dnIZc>Kuy|IqFdR(0CZehgGtd}V7HUtu+J
zdb^zwZ~1!wKLT{br{2k#z`G?Ew3;p4OQQ?v40#_C5s9k(n~9(U`&dMfMzh`CruG-+
zt<#u>ZE6EY9aFL=@YA~Ka9nJVf)DF06wu-JY72fwKVugL*$)p@X9d@fjF^3w2yGZb
zV7(?8+uiXPO%6in4>5t6%ily7JIxibD9~Y5byIJ!8j&c|G%h~=9GiN5u_9=Ke1b``
z7{^i#%%!mjvU&g?=E_c%A-q}FTFW?<LD9Q!C?!d4=%%ZR!TeC;z7?8I^`h`Cd)_aR
z5e8ghgiV;HxqJ6g{u)lB_Tq5X`-iXujrbM$@Z=lIn8@C-OQ)-V?Q4md8R!ffUjFG5
zGpfH7dQqBc!j>q+7zkl*km%bBl^g0#tJ@3wOz6%I`0n==>LGsZ4WhZ5BUEDTek2k%
z=Y50a^F5ZwoZQ~`$={_(E~_e;-JXYRJ0pZMl`c>WXS7c@1K#_8jOb~SsK?t>&;tVn
zuZDXH9=g>o9BWO<BXJdK>@EwG0A*6lU7mvd;v1vw`wa~7ctQ8m3UTK~EiJ7<L$WL{
z$<*rgd%trqL4dM4*spQ)71*Y)KS_=Ne06w-Lt3<8so$(=jt9H=sr&}4_ZP~h1an##
zJEeS`s_Y;r>w06BQ>947!5+qh!>ELu9wGMO#YLW+DvZTZ<P+MjD}0i~LO|d^_tT^u
zQlQ?SRgkr1DVarYufm``*n)3yT6<-4<~s5?_IexF_D76}UvM4SZa?vc&4M!(4`!Q~
zkXK|*V<Dq+xHL+}XkDw)EW<VCNaVcA=&#i{KulONDV3uII3~EJh;Ws$`?5R?7rekX
zJ+zK~R43Cd`6J{fU}YScjh|1RBR1sWftHMqDbSG`JcP=o$jGpS)10bp>+!E4JWiHc
zrWK>2kJl1Kh@KRHaI3u5)p8|5UJx$?liktubhKa4FrJ-#+P1(sfB3T5EdkQP{NC<t
z>hUn6q3PgtcAqKrufHeot}Z+K?JavQ679V61(hCN&tOlXW|Y(W<b0C2{9GL!TBwtg
zA1L*tR2kGnuKj|E4qV?=h>||%>3CNzZrR`c@)s(9`z80xzxEl_5kPk0dIJ3u<f}+3
z7CZV3N(#TDdlNTdfexzz?>h*wt<Tsbm!X9XPwZy+wvQ7<=ZRK}C}Upzdg3%!fa!21
zV>b5jA3u^(1Jw`9#-k^2p$P!+oIU&sQb@t58_sO3{l}xtCDvcj<XjSez6&{BL>`|~
zlDa83^dk9rmO>xH-e5|4|3fcVSr0{!B%q|W|5|`*`pFTXSZO{i?jZ(OjG@YR_BVzT
zV5*6msaP7lLP22<O%Yh+_`BFR!F#ioL|7D~8q8&GS+ubgrXW|pTqQlY_jwpPg9fq|
zJ#j#p{mRVz*HE!`Ervswb}QWHT=5i)Q1h%}66AGIx0XGg-O%RbHMEgEUJSZeuF|S(
zx1s`*7TurN=@R$u<gQi+AfYb5?hee^rC0`V>pZzs3?p8d-1OKXSay9tS~F#c39LMm
z5{b>OeNK|CSJh0IcdMddi(BfmN8zneUZsngqIR>q{*+`zc|!a0a9E+lg$o(p9OK6S
z&TIvsD!+HHc*_=38N&f3FD7vIj5w3qVHkQszd_y(Q5d>T;;L7R`+`S<J$_(tqi>5C
zDc@hnTnaI;5=IWv_pZzrI27o#Cr<!(@$j8x*Ts<oX-8Q7hgM6+UQpg(h<sbx)gYo4
z?&S}4<%9m5Cbq+xBWCucQ#;&;G80Z6l>}KwEJdk*`aads)1?fzezD2$9<5W`P`CWy
zDn778;P1as-zv=}GrE;06w^)X*N4XjwrUzpxY<QzjSkX*Q1san86nd1#EhOl^4eSu
zAwdObpVc`T0~~M2W3Opb$|X*mckTYO{-5JruMWNR_}4_TCp=nWbRN@%e{0JVV%NMT
z2~(A$=9Qis#2vks@apPZnV{+1m&`UL?bxr#j}y|PnQifC_ax28LeIC=Z(-<HbMY4&
zo%zxFTW0@F(CsPO4X%#usS1Di++Ddkm$Ly27nc$sr>>7+NznAgaY65OUqe94UkOmI
zLOs4NmsQ!DkB(<qkE(Fypr)uV&HEG{Fb%Sm{jI%$^FrFQs=Y*zY8|Hq6Cs6<kt4oj
zBrGw`Ae2kW3;*)#)CnGRd^u&2n4+MBZ*&l~%0iK0<u2x;UY!N~PkM>czd1!T+;wVs
zHQBPjv^eO5I-{s-P8m|b1kP<rRBMOxr4>KfsjqZZb%t_7dnf_gSQn?aTis0W+R4J>
z$|~{qx@+nA%id@-K0KtzyOk_Yqc@#7c`Ku<jwWU&1w~NEaUA_uv2y9=s<kzkbSW+t
zRUu@t*dHlQA)u2d?6Zc8OZENJPW4%6GB7hG#m645^+1B)5>L#B&Y6J?Ax1R0<4M;F
z&;QffTL#3{Yhk0MxD|)u9o$`u5AN<(26rozqQwV?VjYURbf8nbSaG-FUfkXN&fE8#
zd(Zv-eLq)rcCwP4WGBzFR@S2gMc`Jdf0|815DmMQ_$zdzm%(T-2!BX7$G)q*kLAgh
zvHmIP!|a1`yG&J!*ZMTMxIYykw~=>aWgD*#WlrtB$gwysdlQQ5t5-CMu@@-zjvhcZ
ztuO++Uhq8+0PyTZr0Nb4u6J2G6@k)T7O3M~S68i$vW6b40{!KlU?w_n^;jL)6d)?L
z7*H1}al*i|QX9h$Q6JMlQl(X#MFhONbGKU1N7=ya99z%yVf`FN`kXSzlmL%PPFZ8B
z*LRDT!IHTt=$=Ry16|@P;zvt7B{X5jqO;tOSM%!L*;G6R)lTqE>oi~b_1$y(?JS+$
z>G1K55At<a`>N#zD>>UO@iLUbbvSxBY#^#k3XHeIkH&}ey4fX}+9#t0**oSL*l~05
zDEO;e)8{dC^!uukEIm*KzEUH-T&0i<yP^2SYgcivdSb);D&sOBjcL)}*XdS!Iz<ze
z{dfk)x857$d+}`T3ctwFuGGCkTf+4<^;b;#d~v@w|0yLHjXPK}><fIS0WT5{1n+;i
z{EtA>^{@PoAOlAKEC2HZj7#uWhBq93_G0)e!#|tk-vZ$>yqJFr{J&8F1qFqZ=Xad{
zslVBzbY_2Wa4?2~I_QD>KKZZuH${klRm0vEnnk^0WTpG3Za|>@--duX1wIiF{MEG0
z>2EV(7U+x&@GQ+ID2o3ktUA;hmFduB-h?y!f6WGC^RmQNd3$@q(`6a|f9XnhJL9y9
zM_rhz|I;(%Pw7Fo>9w`BRJUE6EdSFrPCi~<MBzMYi*|hQ-UH+2U}ki87p3}3nG``C
z_EWI8(mi6rIX4eVhBnG-N6iq!TdvUe(uubx${MxSPri*+ZrRxWu2wb=c}2d!ddni7
z-CAZ6Sm1SI^3vN({4pi#kWjLJ0ZJmHX<)cb%jH`ou|5&t@@w+q1U8y7K3$K|C>xMt
z#6~z%0X=_jt+Aw4=Aq*iJ3`eN5%hGPQytWwG`j8Qu|^V#E79n8+0?f8bd(jTzG0qq
zNFydy0{`%FA^X2KG37bwTc$-#LyuB>(*M*la+(I}vS-$!P^5FHZ*8tSyOyfC`nG82
z@#RS>-}IB_LM|+bn@eUaSS9Z0hmkXW#ujHwfDOgPMjS9Sga=YG9W(QrE=kipb0>vR
zWwT;N#s|A$AuXBqTC&I60!yP$9ycN4btz=tvNlFM1!9PVz0IaqW&W2BCWgE{I)d;P
zgaZ+t11!0}-b_5NOFY}TpQDl6h^E4(Qd3jAU4A_uyo+mo6LvH5l?<U}Dg2XoV?em)
zg#4cY+l1^ad@yc3Cc=>kMeDm#PKuKTFZ1;gJ++BkEhm3rytOsG^Kblr+TIJp52=Rl
zVHl3i4@p<1fwit%Cs?p{!q-a9LBerRb#BmO(U7d8D&M7OK2w&p@Q4Kl+0;aKWp2~C
zeu}?!R{PzhI$;xv)L`6s&e3_KzeDTy1a?&)PN5Pbe0YQ2;OA|y4C_fZ4LD+!%P*9F
zb{zKfupVyMKHIMo;pQ@m#|b+Az%k+^&R=cOqphjh{83dd#@q^sMZvd^s#=^?-HR?l
zj|+(3537QMRwwv!_eRY<N}$POcacn&NO{eYbRU3*Y64b+LF2^!b@)V#E+$}lej)x6
z88I4PW83H<mqnOx>vHL-b(~18!PwXnAtzsLsA?#lcbW9Nlhg2!h8xe|S12LFJt3D@
zkX5tti*LocpEfw)pwV)T{K$jKQ<8<m9@Dr<5q7ZYEcs6XEn|$+uSk)-`w5GWnqh-~
zE`Exlb?{ePc5*Q8;S`?pms<ZOQQ3~!1?UMI7+5^MvL&&7X;<gk+@K3)HiN2`;14=c
zlggG(i0pIpr`F*mAOY~Tjqt>Dwh&u)2JSu&%r@dId=3VIQli3IdCHjDgo9DG?gPv?
z+IWO3b{j>>y>9ZY-I*Xc9>SOIs#yD3z=dhkE)F8#uDGj0+#VSwg9U!%5;>c#+@mya
zk-ru#pC$4wA?73xE#m78Y4VN;acE~_w{YpqDrw(d)4iEEx*~^9$F9onFV+>64|Zdn
zTOs@g%2yu|EtPu&GG9;YOxDeGfgtEoMd^IW5ksGuB{kTyzfyXg+~p<RY6Wsk+Vf(;
zjE#8_teb~u-2$O!4V5*_4AP_F-|K~@c4yXg2{IDB1a>j#F0K-WysX)IWG&Lh^})|+
zP`x(oey3X5T<(pFHNLVG$lgw`V4?+mS}MIUvud5(LsIEHYV}3=1ajvW>-@XL(nSe@
z75rE7q}d1GRO!=}rlH)K&>Hp0m_<mRtxW6Mi?3yzJRg00i0o`5Q=Yma7{1FZ+K_;v
z7esLpApKGT#k#uKoi#6|`_Hz$d?OON?>yc+yt3+s%pNqXASS)FN&LF=e&dYkU`ORO
zbZB{_yrOvOd!_AoK_;#-QA}CT6p5=MmI@Ek>OgM3u+76$USrzQA1Sw~+zgft{Bg{&
zFIl+8j|<P2y(`aOpIx~>9E%+vKSi29-w6gC<2>&)g_dnb;vB2Corm`21d5z2xuV`b
zpIymgrqx6@Qv2T<A04Ykp`9+`RCOFGh(UYfkVjxpU$=-`QM|R1YnPVu9^FgEuj(h;
z9u6IwO+75nd#R2qAMZO=lgsrbeAS;>zA;cye40O63|b#<7s0`}UJlx>aDk?~nq(O)
zNg!QOFX>mAZ*R_+`DwSD|Is!sQ9oMJSn;{<oPr}Z!1be(xEx}clCKi?lE?2)M&y|<
z@BWa7Qu}+~Xu)^wAIoebzl*5Zx4LfZNKI8FeH6<0(rXgW7Lu|2u3@sYCx8iugxr6e
zjNctO2K$Dg;ABmqea~G(YqL!k6b0E(Fi4hKwHlXn*76K@s`#p?E^nG~OjWPP^>&Y1
z`N!K=9Fk=g2iT_MWv;^&0T~h=HywL%)X#0wi>7xWdkP-MCtL*X=caCaVq)>^j4jJH
zZ0%Jzy;ZT|M!Of}WKq&S%Rs)Y3=E-!h~LKFM2?<J0uamVR;29@>b3h}2u#(J;!d06
zHj(-ec_Sq|Q=t?)Ux6~<^G-g`@t7Q8tg3pR$*|u3t^4_;?VUmR_)nJ?2wtMX0z-lw
zJJ}yek`%(f!!J_n6CyY5E9-To!zTWChAuR);ndno=&2n>##`po7n*`^X@uw?I_!g9
zzmQhkPv<K9T79@Ha%@}^*qk2cT__vsf9H`=+WxuKqGIt+)3lYKa&wa#4>ANMGEgi@
zx6r^y(65-tYXjKR=_LbP%?tI=^LX+(%B&M~XJh7NLNMIlt{szutNow@6s7(DK;oKR
zrj?`~vU!~KZ}AdN&tmpEEG+xOE%KY@5T=DhSXTzIEc+DMkTN-={+Ufq!O{}h!S5a9
zbQ_XX1`8IxTfh&9Q=0GIzyPAN$f~QSfjCD!<03y^s*S;ClY)(m_>zr*>LZCePIJZ4
zW~S&S;$W{hE&&|_qt&@XL>@|`MVE2T;4V7#!idcG_+p+iW(ikzeUWdR@!kwB-Y9Pq
zHb0PFV)-<jN6E~^WpWuoTKaX;wU<ole0+T;kp(?o0<qGORh9mkP7OS&AyCpIqDY9^
zPqJn%s>NEHx}OA~>Y#h<$n%QlC%>TU`ueAfHlM)r{gsE|mFw2q7UP&}hUeK5|NDFG
z>+Rz<LEMKu$F{?#oG4j>V#1#6XRh0XzVyC_@Xr2g!^V>CNkr_SEl(NnY3k_B-tt0j
z;nqGS-B-4ipMe_{=H$(zLZ|HoI78tLW{n=o1zjS{_xhm{6-FZAPV$_WQo5F%%(|T1
znBD=TN`Vl`um(OnB!J5lvB^nE6wQiDfgAQNRDgoslRER1Zz2GVWi$$fQqAcFqMOC0
z&X;;p_WF-lQ=X*v5Gim#L8CuxamRxp961P2@YG0K^SdM>HguxDyEw^tD|1f?Jf%Vu
z6rvr0zW{Pg6#TI&C_9!+<#Qf?9TZ?C)%OQgYTOlFk8Fp8lIRjI_&qS<)P?awz6fso
zAb5pq62P0%b1nKceeP%`MbwPMxT&OC>^#mQ_uHti5dxy+B?Ls`W5}I5jAoFMR6TB#
z&?$-pNK@=y;&XIf)<E-?Q4Hm(9^?D4FIN1zY)WN8IZ|&*iYOR8E1y0jbEJ+pVE&gr
zS%?a&H_(Ja`(_ReLr_N+lPTm)c?^G|tj>;6@(1V!nJ+Led7<1NgKL?NEVy#Ah_(lX
zK4!q(^iNF(tpyMJT>OD@E+*c{3zo=V12VWVGdjlQOhX>N%Gc-<7HB>D^4AxnA9W$^
z&g5s{cM5=mX^?fl9>(v@tUFTVzQ`~lfPbaxuv2d$kMwH43Q-2%bcY_kl7O#-BBzHf
z4FvD@{Z|VfuN~})(Y4J&L~bdN$D0_r&&HZLJK1XL7xBVp=hJ@{-<_y<aKAleb-{@~
zfpyqfUomK!@{V}vhKSJ&`O^T|x)MphSZQd`iqv|Z2B2msVYQyi$n%&d7pcrrGOTw6
zovuEcnW#Lp&$Qi=1Z7!Me7K}uwuHeiye)seP=D@vqR?)Bwq$Fu>yUUj#4!-M9d668
zZ0x?gY)aHVvWJE>JZ9p9PN!TV+m@evBIQ4%ulxx@3H<5V;71KxXu_d()Lb2&bUaeS
z|E>nETGhYDk-*LLIxji4+n5a?Kv?n<>^K;$TI$OXA<Aj<xC|ZTBk=d%X2IcY8%$dx
zL%O-TA2ewbsTY~Nz1ve(0mEGiPl?cI=s}F7Skb@gq+7DK%!-U$bK5!aR#IVVKY~|E
zOmEVX7#p0N`p@W~0%(FwF9XKk*Uj!dokcc&i5^47M=$(n31ZuFHl7F9zLddlQZDvj
z`p&a99WtQj8jcX6yt-Xgu8f}qkIk4Kq54%ucayz9brK;q>jl*WK9^0C0^`W4en?;r
zz6N35IT8B-8OH~vViEm`&QU68#tO-WABUwj-tU3JAKS584Ztfp>@&)dn2*Q8-I5=j
znS}-5w~$b$%eH7RyC(0Gj%%=D))TOC7;8`}@8QJGfYioBM0<Ig87ra=6p2YFFshk5
zb2qeek9VADqqK+hE{SXzyGorvh(k4WMxSSe^?_E)6c)A2QsqoY{FJTlewA=lyYHIi
zk5DTp>AT@{9#hOFx@)b#I3E2K>#cT`gfqgUd<q{7e_uuPh`Uo%#cxlSn|gp3`ho=r
z)(9?WJ}`WSN7<_<?U-!BU!&_v#+H$^@rZZ?zg2!^XSQ~6Fwjo1YO{-GlnR0eZau_|
zo<O{?qwUi2OMcDUR4{=?{h1UL6)vVDgbo<Nc2`b*J)3Q%0j+JA&AYR$U`l!YQ2B*z
z?rL(%;^`D89dl6P?yxGzlS`njFHzN`<>J2WJm_h)D(KO8<-Yp)@&h&d+~<hnfam(w
zTmEAvOIXKYpC~jAm*jDjA7B;`q(S@5b%kW*P-0;De)n-|iLnCxutMLTprR?KQru`^
z(G*cI;Bo0CZP!BuPNEb7G3JQx$&MJ;K~>A`NY>=zlsud^J3IrAs-G+|>|?Tr8lU6x
zf5L}@3fiySC)_gb1T@UQ;-fCgxpkkoqjCHPOut0w-i*k339unq;SbI0lMJGxAj^;<
zK?zEgsMQ$Z?3zNjVeaz7;){OFVq^8re9MbYV#A2xHZa}Oz5K>e1_&O{B_Ah~azp}T
z%LM3DKR+Oa`P2l`MItQ{-dAMdh8Da)^Fsp;^<|PxRp#w%%-(D$G%rpgY8np{5m}In
zZN2SsSR;#zi({x>02)DbDEloG7_#-#`Ov)bva+?=)Bqee9m(_Utlsj;zJ3S8yd+i^
zG~7kDVl-(H0Y=RH<;icDK4(B{>BJ)=W`jNOjZ^$FzKQ(&Vl51ivvx#oOrs0Cp#kk_
z#nbB&3YoN(kIwh`I9c(PP?EZSe{qsSC$M+R<e|)E)nl*I;t^{&a{*MQE_h$`P8bba
z`o>JB_KRw{!bMkJ9h(t@cxE9<BX80W*#9TOpilV7cyZ?DEIZPUi-#RGwo%Z+#BS8*
z5sE35fZ7G9!20!{Z_#h@)fw}}&|qE5bUj#grV8pZ?(6Mj{d#IL;EKnF%g=vDlN;Gn
zpIzJW4{(DrR-nE*a}oh4D#%eV?Ri}=@ctfle`o1^Ez$fKdVGy+Q2NDm<u1?zkLxVr
z`FO?cA!^lo<B6Je1PqU7N5T055cv35D@}fq`gk`FwUz_7n}?5M0>5pduJAnLa&P_2
z!llh;yW`P5tZKep4gM&L2MC0q!QL9b11$eG0!(iUxMbnI?zB(uYv{07WBIm?upYk%
z2lbb8KQGK{d=w&ObOFDO@tkUT7%F_5F*5T<HNFkmHYrchS~9aMRSR+Y5o>&SP*JQR
zPiQR-7laj7AaFeP5DydVBa;dj8VFYa7p*>w!)b{UnNagrfVymV{jG+f?jwmV`&#}g
zzNJV77Mhp{*QLSu3Ib&syA7}m;#<l|Pm~Oh39Qep@;7nTK;ds`6XXhD@!n^Y;d{_1
zvz#b?S<V;tgA07%q8e+O<*5galMZjgpk1Gk&C&}_ylbLhh1b1fKQf$9WtDQ=1I08`
z)Z5dgz<v&juE97DVEn}07-MsUviw<8%>Gig(j?|Mf7;6l;arvwMb|KyJ5-if?A~f!
zZn<5h)yXk`-XZ)3ZU@DIE|XGMlf_J18qvWvL4ddgC%(iR2;S~{L~jgmXQIB?Y1$lK
zfH-h*YD1&438eC#kbvFY7athw8I%jlbw+@wUa`xeCQ&pSq65<AzQ*F#^EwEnL8BwH
z6N1v|$;QbeA;|my?FAmhiVxH}wY1-}Wr7iuu&C~Y({Pm^$hAq7DIVHa*c=hoCRLB?
zJF8=2inOA*VT;4ZPt(-RS==y-H0JTZW+yKZE%g{8#-r1{xt(y^Y+MQ9c-%I>mgL{L
z>(vR`^()VAAFt6{?*^uD1V2bDEk4LJQ9+^NY)(hw@QNg?XW9e3&R0X5j+cRH$fLPC
zK(IbE>@}Pk7nB9B6ri0d%YxZSe6Tt^qMuIm=&%H^LSj<1MX}>(ovh3-fF_gm#D!w3
z!LMa*bVM0AO}t%!CKu=LH=F_sn$5u1jqvsOSD%T!Bdy3dy8WMz4hTtKlg!xCX42u2
ze`0sXsSRm!L6v<%`=(&H8=HKV0TYy6l?8~X2h4oV4|_d?#bb*p`;VhdxB?ms+!fig
zrIZ?XU|>*4{O49!enrRKvFQuM<28=_TB82q0@%IL5(4~Kft%2f$24B1!m_@_Qma$>
zho1bQPU&}UD(>|c&`<}m^?U0UT8SU~Y<ooQ65M9inKO};^Sj9DZlKnh+LjLLU=r=n
z5~~xd&)*n+L@?OKNtvF+r7!$u7UBm`RbBtapMFV|Z)8{{g-+r>ZqoWi`Lr--ql!F{
z6{Gq9%Q0Yc`#vkZd)L`fEXpCoo=8MGn^V6I=6%PD0!V`ro(?#tztt{x+Q#o(gDjmL
zaLw0qTIgGqH?+o)yywcQ`8Lioro;;ncZUzQu>d(MRy8%S?0{<~dt@!LDlE}l;P2M|
z^J2bmF{GQ0T!^8fWP<l&AxnaJ!@8l_L}a8Mw|o2hz=AHP7y0pQHE-u+mJJ+Qtvuv;
z{E|y6A(Ld+4!*PVeQr~L_2$lb=&#pPQ4kde1~D<Bvv<5?OUX^3{#>@FYOoEjZdCg<
zLl@68O1jr=TU-mtb5qdGeqb8SgUEBOMD|U;e1F-mqUVeKHlqG54-|5j`a>7_J^OLm
zb4165BB#u<eM82sy-;<W3^)MXtt-LhuASu)QQgG#sNNd7y&xX=EvRVEeUb4)mANIo
z;H<s}u=&pA_2@F?OA&OjmK#sJwN8e$_5<Fa0@?cs@)YTZANZh1ZOsyrJ-Ki=Yt$NJ
z#ksDk4jllt^(w^u8jKywrRuR;Uo}sJ`UdtK^G&G}!TK*%Aiwt09wHLWnxR8sM)SBl
zLc;i4y=CDXO=bCDxwRPG^B!8)!Ytj}stY=`iS-sX&~{yXpWT>(4*a&Ng=PEu+dGqA
z8b(|#ddUwOx#$eh+~v|zn$;=MWYw`Bau8~fNvI+S><D#pxGVdIA{w<JI*FO|HbNI>
zKmuiU#n4>jH8}<GZj@-D7UXTJcG~j-KbuRSLgu=0FF6^R+xvcoZ$SM9lL)n6(TVG<
zRdeug9P~F4jE$$Ix5Z8viBXzPvo?mMFV7ZO3OXuUttukZ#?Gz^N7;X0EBg$RGc1wR
zF2t&6`gEp`rxS2StpAdRshwCZ?M=RM2qCRku}pyyW|jLss^!g={dgyF10`ae=!~d7
zlPo+8Bu`MO6qG$?Jd#~Qwc@2QcYmp;-Mc^(&XvS;PodzXfC`dy@My5W1k-O(NDAea
zOb}3^YXx%`*nFP(wk=g9OhiRy{fgRRa(Y_S5rNy(q6R*^$}6=#8FPJAWp(vcnZA0W
za6kR<X~Z(;GwBy64ZUYWU9s8kKgs-Efo$ilp!J(L*En`U44A}o&}+scleYbq$NFm$
zVT|yXv)`BC8z%Og^oB9dwzmhL%0w%|W&^{ai#5LM7z6)MGR1=rY3PIc^~)!#=Wl3>
z<<Z?I`W$A1+>|$PD_q+`(YV!vg|czYNw8^noPV0V1FD4GY}nDt-i*cTg$7JHQ7XCp
zyt`VdBRgDYsrj03Gefb4-}Bop5GJ>wmA7SxV4CUF`ZH#-ZeL@$OhpsFEYbMKa$4Cd
z>}*i<xN?(qEUcb}Pprmo(%x|YjpvIlBeRJYND(Jz%!z-Th&%cjDWl(J9a{7qj<#tf
zE;WtcmOJNNJ_==}*G?RXJrG=bcu2Tq?Ak~RwKHunM1FB(M3puM9cHUlMe3NMbja`@
zY+PK~1n-=t;G!^)Pcmm7GQ$r$xv5H<>1_|2oO&~Xr~Qm=lkFID`Yns`Dun`C`N-KM
zKrFeKs>(;JZD#YroW%xTRUM!1Yc+2YLt@i5ki<Cp>HV6`=0yElc2DoGKbZqV^a;;B
z3bg&@0$v;!ONMTxQwI%SkEl}>nsAOe&cOKsBgb{ydrn<+?9;88ZPHqx3Z>hd4kaOD
zzV(qKUzbgJ&a2^?>=LsP0($mfi)J;ogvF6tg0+c9^2W!dy{9LFe*FaX8}+ShsuQfZ
z&@09Dpqx^D)D^Pk+Gf{&K;Y&85(b>l$#MM?^y#vDKQfG0+D}>+#iMq6QEfWe2!odD
z4Q(cS1|-i-)ZFjMPuMm^d;BTtrLdTXh&cv;Vbb;ftuTH)L6pex^1%aRv+>~e8_a)b
zq`%Y)P1p9P$B?_?&7AEP_x-1K!2hsIoCGz3mfvSu4i65r_qhK1%KtDu|EEk-hcY@%
z*YFxBFOW&zQY3xF&g*{4?0$}VUaQgFPF}c8r#!Rq0zXb_wFDSY@%@LHh$wjtOSh8)
zLv@4uP3)(!S+jn9`V~dzdl|Wqfzb{H&k_SlKS$-=Nfnotxz6rOjdyuEjyb_3G?{Ic
z8!eeVyq4*UE_eV2(UmvAMJAJm_lCoQMHfsG11#V8;-3cGchBeoFNc6ER=nQ3XBD*J
z=Xk~G9o9@m5vEC`H;Y7<XW`1@cdMkirWfWv{ew+MPAwN0`6lpOgFx#iL&5wzJ!C1J
z4hxK2pS2Bi{G`2nC*;v~n91xndm)G2t%;WQP*u}E#eVLEZ@k=F<i|6uFmy1@)12R}
znp3c5nvio+hgFUgrE~5;V8DWd`bHEyP{%n=G;TV1uPg8JS`x-#2=)DRb*y*0*RF>@
z)S232(ew7Q`hC+U8A~xj4r%)izjk3{ph*>>2O4SMu0aCtX!i1+VZxZ2?`)ls=!5<*
z-*kSoKIeNRIS-5&mY-jAjnilC$q>rog7Q$5C)zR7J2sa&)L1@&aY^bk{wj9Q7|l4-
zGl-g3;kjE>pVc>Bx@HxMcFK$L5^qgO>QLL~dzT0#Lmh|N=v#hEp6_Bg-q^gJnCPqa
zfq+#f#-Q9ZQc|}QrWj??z8|h|2%%P-<gDRQ+LL{R-|{xgDo2p3&gwuh$|91}sP66g
z-MmWQ_9i?-KtYk5e4io%9R}_C4`6Nz<V=LWjG{Go$S7HvXZ;%MA6g>u|D`43wWF--
z!q+`z^8q==tk+1%F}mac7aPV1ZmS?_U(x8_aFBd`OG^8LomJ&XP<IVHBHENVC+Btf
zM0gr_{SHNke`w)7YQ$&jn&0DJbXWN;n}hpw$^eJlg5&mMo0_xVQf&)@lfqvKo8=tq
z=bE`nRAF&HB>A{_n^4aaGRPKN<Yp%{Wg4|{;KaBRc{*sQ5_v@JAZHEO_C}cc)6Bk}
zxHV$T-PBxzgnxNSAIa-T4oPy8zkz*3V}3)<ZzDWLTFV1r*+~*83i1`_B@WAGw8iY6
z)70-x>lt)z9N8QQKHVVRekb~BR8o&ol3j0Q`>>D8m=ICLrWPSzG;PVo{r%Loms^ra
zcCeOorNMrwNX#G!Jc@($1QH=Zfy&hPLzQUNU=Tx>mc42nlw8r3a-M}Vm!|@k%rYGR
z)=?RN!?3h(YfJJQ9>Jo*;xY1sg~5Ql%o9kVA%7oml&wwsLd0F@7CigX(9uXm@Y=I6
zraB=XLW-egv&!Uz!dZ<<5I^6u9%5rNaAGCHy_X|dBu4y74hcY+VIvS<?^a=(9hwa(
zg_~C!P?i{Mi7nb!@N9ozfk3@&5ziW>36LLeVq7V(8!O4kPtlyTge=OS8L)Kqh_2TF
zTjSp`N03`oI5!01h>epzy84%^@qdU`i@VF4>htjhy*^ilGvi@5DlojYWvQ%ei;AO{
zX`2QJ2V-b40!R{;)QS3IBQhN4OLi>D8E2lak}7t?zC2nvM)=*XYIWv*XasEWgcJ#o
zLCX(nxOsxCIw$JP)P*1!iae+oq&}*3y}kHZ9r~$O6@II$W^&}=(oqa0y^T6YPTfLO
z*l}H&hE4wC?;TkFG-F-8=tV{C8jxNjrJu>L`JG7VaSlje>}{yb9B-lZ>se!Bq%YW=
zgY=76<wm$uACL3?@*vg?7vwSBa5q7|P$my2+b95cVlEK2E+s%R#%u?8&5oDXITrF?
zQXO5;YSz`;kAn*NbhgHp;2?U><9$T{FS~T?U<Rq=A%SevJa!7Nir<d)o3vZxp4qwQ
zx(o=oiPpfDhNEO=;X5ldUXQ9<;Fk(bwvtD!q$!G30mtZ?r%*Qd`aDoN3R`+q%|^mq
zJoL2={?CAb{5La=I>H@3FC9d){!EVXcJGgRV&e1^m*^~4Wk915%rx?M=X}~wr)w#x
z$=uwn%W3<?%0S2t$r&eR0+cGs9N9@USqysFXq{UV)rtxr+AjQmhn_km6*QLA3e%fs
zZS!>AM*nu-_}syKtbOAmTvv{tu7bJ5A^g$u^n%a8r@@LraawMV5kj_ay3bTIS;d}c
z8nf%dMzy~71bat`tpDaSM<I%9ePkU3*Vq}+tk3M(v#jR2qd(4P6@}NyL(C|Y6}vI~
zt0rVTeNV+-VVuoE2Gcpy26F9I5=WnY#As}+xcriZE6dUGT%)|Ae4f-#v`4n3l!HRa
zd8$s%zq4Nlzm+d>Ht~u^lo!QuMQFpNtybXG@Sxs%Vg9l4Y=hA3vbXR*BHkJ=GI91h
zz&m{bpwp)9&97NRhnK0sHzY^KM8q*u&E>8a3e5z8s;1xCd*@8?1G61>(BsuqQN~VV
z*nTf236qgQT)o(>f{{inWiIHu<Pj36m0oMYFh?|x%o8JakO5bY*dsB1FC>_f)X2Dc
zG#rd^q`D80D*5obdT8aafteTfM^y7;l-3PM(Vfg98kuNkSYdUhtDA;{DliEtUplcL
z1Qy851X~yAt?hoEz8_e9KhQq`Dh0FkINJ7Nl=+;x^)mVUP(rvJM5J074puLdkfkBH
z0nT={ozKyh7)J%)I>-}aGhDB-$HlV5_wJk+PV?Ap(zx?7y3;n^rZc1V5R4UQZ_3~b
zdNn_N5-&Nd>99vaDec;)e5AWvI_273ZK9M`?>-xw*`T>6s+oke9!((aA(Fp<T+O1x
zWQ^d((wt&mc2yLU_w(;S&;9Q;86+zH%<xjsRoDxTgv%dC`o0<dRGXBnI*d0Hi3}24
zGUFKG!N`+@v=1Ii{Q{ByxXY0*Y9V<=&J6xGciBH_S5NI@^U&|)TJDu$y}XcBCqi6#
ztZh(dCpD~R{j+0MmP+6L?NB5$Oji<T(P3JA0gsuNFndVB4-YZPm4c_9b3~J#l`M~j
z`ZZTG0@fF}@e10hVZKn_7fZMmdesL&muy>VPVJd?E@mACXt-*1F9%AsIT2a=g&-{T
z{zAFa&-A>)AlH%U0DskCi}e1jGs<25u2WJIiZLJ)FCHy5cclc0Q1A$PJzb1-7WX3b
z=X<{0xwM^3a(7y+2r(S#);|`*EP>`@$K&1AEnWa#vC6B}cdxL$jkr)h;{kAWbdh8!
z^u%It(ja?F1>-+X;WlPNUukJdM}_jyOoDmNf*1JNR7p`QaLven4(P;Yuxb?Z0}`&u
zmy#JXK2Y-8kWM2{o{yCnqV#R`2smZGj2ii1Jzx)sMIFxP3=4XoRF*E3H~i>C_J%lq
z3B{L**e;ED8^l8MnCUNRdSwrqm;6K_`Rj%WkfyMZhzn|bWu2-Syxl=;b@ui6qg4g^
zBq}ootSjVkif>C!O@JTU@N<h7p*IO5iR6xq%L$KPqG-{Zsuk@bF_KprX2weKaS?=7
zLW+r{r=?+4EL+<56CCH+M>;1y0?|$@)-wtwUOZHbgsZxc%9~lkNzvCQ%tI(9lvNF^
zwYtGqauOA>vCLkg^?IqJ;8n;bdF0R`W<9g%I7eq&yXilcPXKYxcT%s?p{UMi19!tm
zWp!?0rH~IwpP+4eP3y*wcxh9%GK5`K7hh_$9CR30t>f{(SuxgIfHz;z4Hq_Nnu9BZ
zjJupa)B`yL7L;`Pqge$6#D!Zv6-?3k&1x#40${AOK80w!s1f<T>jf~_cp*RS_mp=9
zox8T8SzseHZWPwHL}3O#Z<&;U;5gN84WDZIeN8nmCyh8=W)lQg@Ec-!si_>edk!X5
zNG5-S>aE1IGM{7x4_ogbKA3!K<O;-^`<Bcxep{&`%x)pNWz+ssv^}01OO_E*6xTI~
z-9H{Zx97`Jr+IL^LHNqCx9KkTry4;`uy#6a2`Ym^q4S_{rAg$Ef&37eK-Toss$#vO
z#B6ZL6>Pbhh?!b!ZnCB*Y}V;#i%Dh}t}?b62nQZeplrpsh*)7!w%U_%3sc>}_JRw(
z3Ok4S*tLsdL*?%I2AfMni0;)y%{BO2%?7byl0E(|9WmcwD*FBhvEzH}39-F$a-POb
zOU{=}8Qo4=vQOL|?7mcK1A?z03xar{+vt%mXfWX4-}blQclbYAyFTLjaE-DP$24Xm
zPrz{t3Lk_xWOlmDGBV+=RAD-Ks?+)0c{pUbZNBs%6z}LRGiYt+s=|V}#@1A*>2N%-
z?h=lzdJt1C<>+DAdCFF}rwGPF$K}A^)<XeIpNnPW1KD^oD{7qGQwrT4GX#(6lJm-5
z`Eb;}j09_ozT+g2EiEPoyjr6e6Q!Mt{?_Xf_BwtFOb%Gdm`cZ8^VY{6M29I>2))3j
zuY(T6)~l(2o8o*cUQ2>v<DJ6xs~;QtGG(^!@i*Z{{`t)XUYZgjm1=B?_3GzGv&t|9
z9fiH^KizoO?qOfHk=s#TFno!_RW1}0B>=J|uRPF@^gB3MO}eoePeJXrLLODY#s5s3
zPhq$VB`RBMLodNAS9~|iVXx}|WzQdV=KWTk2xas*hOk!q;fVxsY=rTd15XqjSs=)@
zcZr<uS8|W(TKZk@cUl`iSr|KrGt3M%Xtk}QphnsZTfl&IKi_bbFh&PBQuQNFdhN;&
ze@)=pRY~hYftdhqMP~bIOk1?^bH8iKxhH^D86n&5O;ereKo11xEf8F5JxW~~Z5y+B
zNk8>r&iA;&)^<&8<|p<aLk!V=E94);9O@&)1IFP#UBjWI>zgPsQ|=aD68FP>a=sF*
zxrE25VdlYZJ*-7UxX1E#Z<oUiL`Cz8(*{yOz6w&)k);VZPJOUg+))pcQhl`IbMm4G
z|F&e-WQo`WI@$j~fMgRLyP{W6%xpWCfTo%+8=l-IM_b-_Y!>UoFw%a;N1t-Jd0HN=
zX4s^EnT?ae<%3W*!_a0-BVkNAP5S&%I^Gt{aaIl73wNA&=ud_G3!bJYiMWV;+))M7
z7aR@!Fjpm>!PrfDld$<|`I5ntCu=aplAnrpDD*DAwQOzLo11s@S7tN<)i7eP6XLE)
zUJ0l@@FlHh5fpot>nmjs(ZK|g^SAd-ft5OQeevN<VmgdT(<APF`x-{1M6=vADuF)a
z`c|3PCO<MV6rp3}GZ=zAPHf)ET>KtC%3%3?)1kP7CYjEJH_oo1>6^%gPSRS>=cVv{
zO>n)woc^?k!#Lc1ltsJX1rxuHQMr!3mS*-_6QL!Z^d@cNK9q!%)jUDGy7WEbD9@4a
zb*+Dh=3b`HmLFbaGkcczi6SmwXFXWx8FGT&oW)6RU2TRLe6xE}SeaGfZp*z(1bEtn
z`DFhE1>o3#56sO6|3N9{e`Fru;(u&M-{6|DWya!4(En>n`j6=E4s32}x?iV$zKN80
z$h*V($M5g2q3OHH6g(X{?Pq>8_gbSC_w|Uo*ngo1crEYvQj?~58M|VAD@N)5=Kkj;
zIla+LT<zj6Ud;c16diqiX#a&DkUB`=j$0D@?=*L)MU($i#~a+&hL78$ahwX^xoST_
z*Jb}{Iko>j<H{K5+cSjQA~EPx=*qPi3K<0m{8zbL6?8cbQdP10nM%C>)NiIXCb4x>
zaQr}87JK3m@^4N&5OLsBYS6W7>g>gZ1pa?j<-~X;L4CB`a(^B4eElpT^BVJ4gYjK2
R{Cd(Cin3}lmB4o){}0{H>gxai

diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/mflag/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/mflag/LICENSE
deleted file mode 100644
index ac74d8f049..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/mflag/LICENSE
+++ /dev/null
@@ -1,27 +0,0 @@
-Copyright (c) 2014-2015 The Docker & Go Authors. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-   * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-   * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-   * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.APACHE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.APACHE
deleted file mode 100644
index 9e4bd4dbee..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.APACHE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2014-2015 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.BSD b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.BSD
deleted file mode 100644
index ac74d8f049..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/docker/pkg/symlink/LICENSE.BSD
+++ /dev/null
@@ -1,27 +0,0 @@
-Copyright (c) 2014-2015 The Docker & Go Authors. All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-   * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-   * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-   * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/go-units/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/go-units/LICENSE
deleted file mode 100644
index b55b37bc31..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/docker/go-units/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        https://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2015 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       https://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/godbus/dbus/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/godbus/dbus/LICENSE
deleted file mode 100644
index 670d88fcaa..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/godbus/dbus/LICENSE
+++ /dev/null
@@ -1,25 +0,0 @@
-Copyright (c) 2013, Georg Reinke (<guelfey at gmail dot com>), Google
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions
-are met:
-
-1. Redistributions of source code must retain the above copyright notice,
-this list of conditions and the following disclaimer.
-
-2. Redistributions in binary form must reproduce the above copyright
-notice, this list of conditions and the following disclaimer in the
-documentation and/or other materials provided with the distribution.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
-TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
-PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
-LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
-NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
-SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/golang/protobuf/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/golang/protobuf/LICENSE
deleted file mode 100644
index 1b1b1921ef..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/golang/protobuf/LICENSE
+++ /dev/null
@@ -1,31 +0,0 @@
-Go support for Protocol Buffers - Google's data interchange format
-
-Copyright 2010 The Go Authors.  All rights reserved.
-https://github.com/golang/protobuf
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-    * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-    * Redistributions in binary form must reproduce the above
-copyright notice, this list of conditions and the following disclaimer
-in the documentation and/or other materials provided with the
-distribution.
-    * Neither the name of Google Inc. nor the names of its
-contributors may be used to endorse or promote products derived from
-this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/opencontainers/runtime-spec/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/opencontainers/runtime-spec/LICENSE
deleted file mode 100644
index bdc403653e..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/opencontainers/runtime-spec/LICENSE
+++ /dev/null
@@ -1,191 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2015 The Linux Foundation.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/LICENSE
deleted file mode 100644
index d645695673..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/LICENSE
+++ /dev/null
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/NOTICE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/NOTICE
deleted file mode 100644
index 405a49618b..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/pquerna/ffjson/NOTICE
+++ /dev/null
@@ -1,8 +0,0 @@
-ffjson
-Copyright (c) 2014, Paul Querna
-
-This product includes software developed by 
-Paul Querna (http://paul.querna.org/).
-
-Portions of this software were developed as
-part of Go, Copyright (c) 2012 The Go Authors.
\ No newline at end of file
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/seccomp/libseccomp-golang/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/seccomp/libseccomp-golang/LICENSE
deleted file mode 100644
index 81cf60de29..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/seccomp/libseccomp-golang/LICENSE
+++ /dev/null
@@ -1,22 +0,0 @@
-Copyright (c) 2015 Matthew Heon <mheon@redhat.com>
-Copyright (c) 2015 Paul Moore <pmoore@redhat.com>
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are met:
-- Redistributions of source code must retain the above copyright notice,
-  this list of conditions and the following disclaimer.
-- Redistributions in binary form must reproduce the above copyright notice,
-  this list of conditions and the following disclaimer in the documentation
-  and/or other materials provided with the distribution.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
-ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
-WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
-FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
-SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
-CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
-OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/syndtr/gocapability/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/syndtr/gocapability/LICENSE
deleted file mode 100644
index 80dd96de77..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/syndtr/gocapability/LICENSE
+++ /dev/null
@@ -1,24 +0,0 @@
-Copyright 2013 Suryandaru Triandana <syndtr@gmail.com>
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are
-met:
-
-    * Redistributions of source code must retain the above copyright
-notice, this list of conditions and the following disclaimer.
-    * Redistributions in binary form must reproduce the above copyright
-notice, this list of conditions and the following disclaimer in the
-documentation and/or other materials provided with the distribution.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/vishvananda/netlink/LICENSE b/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/vishvananda/netlink/LICENSE
deleted file mode 100644
index 9f64db8582..0000000000
--- a/vendor/github.com/opencontainers/runc/Godeps/_workspace/src/github.com/vishvananda/netlink/LICENSE
+++ /dev/null
@@ -1,192 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   Copyright 2014 Vishvananda Ishaya.
-   Copyright 2014 Docker, Inc.
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/setns_linux.go b/vendor/github.com/opencontainers/runc/libcontainer/system/setns_linux.go
deleted file mode 100644
index 615ff4c827..0000000000
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/setns_linux.go
+++ /dev/null
@@ -1,40 +0,0 @@
-package system
-
-import (
-	"fmt"
-	"runtime"
-	"syscall"
-)
-
-// Via http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7b21fddd087678a70ad64afc0f632e0f1071b092
-//
-// We need different setns values for the different platforms and arch
-// We are declaring the macro here because the SETNS syscall does not exist in th stdlib
-var setNsMap = map[string]uintptr{
-	"linux/386":     346,
-	"linux/arm64":   268,
-	"linux/amd64":   308,
-	"linux/arm":     375,
-	"linux/ppc":     350,
-	"linux/ppc64":   350,
-	"linux/ppc64le": 350,
-	"linux/s390x":   339,
-}
-
-var sysSetns = setNsMap[fmt.Sprintf("%s/%s", runtime.GOOS, runtime.GOARCH)]
-
-func SysSetns() uint32 {
-	return uint32(sysSetns)
-}
-
-func Setns(fd uintptr, flags uintptr) error {
-	ns, exists := setNsMap[fmt.Sprintf("%s/%s", runtime.GOOS, runtime.GOARCH)]
-	if !exists {
-		return fmt.Errorf("unsupported platform %s/%s", runtime.GOOS, runtime.GOARCH)
-	}
-	_, _, err := syscall.RawSyscall(ns, fd, flags, 0)
-	if err != 0 {
-		return err
-	}
-	return nil
-}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_386.go b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_386.go
deleted file mode 100644
index c990065189..0000000000
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_386.go
+++ /dev/null
@@ -1,25 +0,0 @@
-// +build linux,386
-
-package system
-
-import (
-	"syscall"
-)
-
-// Setuid sets the uid of the calling thread to the specified uid.
-func Setuid(uid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETUID, uintptr(uid), 0, 0)
-	if e1 != 0 {
-		err = e1
-	}
-	return
-}
-
-// Setgid sets the gid of the calling thread to the specified gid.
-func Setgid(gid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETGID32, uintptr(gid), 0, 0)
-	if e1 != 0 {
-		err = e1
-	}
-	return
-}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_arm.go b/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_arm.go
deleted file mode 100644
index 3f780f312b..0000000000
--- a/vendor/github.com/opencontainers/runc/libcontainer/system/syscall_linux_arm.go
+++ /dev/null
@@ -1,25 +0,0 @@
-// +build linux,arm
-
-package system
-
-import (
-	"syscall"
-)
-
-// Setuid sets the uid of the calling thread to the specified uid.
-func Setuid(uid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETUID32, uintptr(uid), 0, 0)
-	if e1 != 0 {
-		err = e1
-	}
-	return
-}
-
-// Setgid sets the gid of the calling thread to the specified gid.
-func Setgid(gid int) (err error) {
-	_, _, e1 := syscall.RawSyscall(syscall.SYS_SETGID32, uintptr(gid), 0, 0)
-	if e1 != 0 {
-		err = e1
-	}
-	return
-}
diff --git a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unsupported.go b/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unsupported.go
deleted file mode 100644
index 7217948870..0000000000
--- a/vendor/github.com/opencontainers/runc/libcontainer/user/lookup_unsupported.go
+++ /dev/null
@@ -1,21 +0,0 @@
-// +build !darwin,!dragonfly,!freebsd,!linux,!netbsd,!openbsd,!solaris
-
-package user
-
-import "io"
-
-func GetPasswdPath() (string, error) {
-	return "", ErrUnsupported
-}
-
-func GetPasswd() (io.ReadCloser, error) {
-	return nil, ErrUnsupported
-}
-
-func GetGroupPath() (string, error) {
-	return "", ErrUnsupported
-}
-
-func GetGroup() (io.ReadCloser, error) {
-	return nil, ErrUnsupported
-}
diff --git a/vendor/golang.org/x/net/lex/httplex/httplex.go b/vendor/golang.org/x/net/lex/httplex/httplex.go
deleted file mode 100644
index 20f2b8940b..0000000000
--- a/vendor/golang.org/x/net/lex/httplex/httplex.go
+++ /dev/null
@@ -1,351 +0,0 @@
-// Copyright 2016 The Go Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style
-// license that can be found in the LICENSE file.
-
-// Package httplex contains rules around lexical matters of various
-// HTTP-related specifications.
-//
-// This package is shared by the standard library (which vendors it)
-// and x/net/http2. It comes with no API stability promise.
-package httplex
-
-import (
-	"net"
-	"strings"
-	"unicode/utf8"
-
-	"golang.org/x/net/idna"
-)
-
-var isTokenTable = [127]bool{
-	'!':  true,
-	'#':  true,
-	'$':  true,
-	'%':  true,
-	'&':  true,
-	'\'': true,
-	'*':  true,
-	'+':  true,
-	'-':  true,
-	'.':  true,
-	'0':  true,
-	'1':  true,
-	'2':  true,
-	'3':  true,
-	'4':  true,
-	'5':  true,
-	'6':  true,
-	'7':  true,
-	'8':  true,
-	'9':  true,
-	'A':  true,
-	'B':  true,
-	'C':  true,
-	'D':  true,
-	'E':  true,
-	'F':  true,
-	'G':  true,
-	'H':  true,
-	'I':  true,
-	'J':  true,
-	'K':  true,
-	'L':  true,
-	'M':  true,
-	'N':  true,
-	'O':  true,
-	'P':  true,
-	'Q':  true,
-	'R':  true,
-	'S':  true,
-	'T':  true,
-	'U':  true,
-	'W':  true,
-	'V':  true,
-	'X':  true,
-	'Y':  true,
-	'Z':  true,
-	'^':  true,
-	'_':  true,
-	'`':  true,
-	'a':  true,
-	'b':  true,
-	'c':  true,
-	'd':  true,
-	'e':  true,
-	'f':  true,
-	'g':  true,
-	'h':  true,
-	'i':  true,
-	'j':  true,
-	'k':  true,
-	'l':  true,
-	'm':  true,
-	'n':  true,
-	'o':  true,
-	'p':  true,
-	'q':  true,
-	'r':  true,
-	's':  true,
-	't':  true,
-	'u':  true,
-	'v':  true,
-	'w':  true,
-	'x':  true,
-	'y':  true,
-	'z':  true,
-	'|':  true,
-	'~':  true,
-}
-
-func IsTokenRune(r rune) bool {
-	i := int(r)
-	return i < len(isTokenTable) && isTokenTable[i]
-}
-
-func isNotToken(r rune) bool {
-	return !IsTokenRune(r)
-}
-
-// HeaderValuesContainsToken reports whether any string in values
-// contains the provided token, ASCII case-insensitively.
-func HeaderValuesContainsToken(values []string, token string) bool {
-	for _, v := range values {
-		if headerValueContainsToken(v, token) {
-			return true
-		}
-	}
-	return false
-}
-
-// isOWS reports whether b is an optional whitespace byte, as defined
-// by RFC 7230 section 3.2.3.
-func isOWS(b byte) bool { return b == ' ' || b == '\t' }
-
-// trimOWS returns x with all optional whitespace removes from the
-// beginning and end.
-func trimOWS(x string) string {
-	// TODO: consider using strings.Trim(x, " \t") instead,
-	// if and when it's fast enough. See issue 10292.
-	// But this ASCII-only code will probably always beat UTF-8
-	// aware code.
-	for len(x) > 0 && isOWS(x[0]) {
-		x = x[1:]
-	}
-	for len(x) > 0 && isOWS(x[len(x)-1]) {
-		x = x[:len(x)-1]
-	}
-	return x
-}
-
-// headerValueContainsToken reports whether v (assumed to be a
-// 0#element, in the ABNF extension described in RFC 7230 section 7)
-// contains token amongst its comma-separated tokens, ASCII
-// case-insensitively.
-func headerValueContainsToken(v string, token string) bool {
-	v = trimOWS(v)
-	if comma := strings.IndexByte(v, ','); comma != -1 {
-		return tokenEqual(trimOWS(v[:comma]), token) || headerValueContainsToken(v[comma+1:], token)
-	}
-	return tokenEqual(v, token)
-}
-
-// lowerASCII returns the ASCII lowercase version of b.
-func lowerASCII(b byte) byte {
-	if 'A' <= b && b <= 'Z' {
-		return b + ('a' - 'A')
-	}
-	return b
-}
-
-// tokenEqual reports whether t1 and t2 are equal, ASCII case-insensitively.
-func tokenEqual(t1, t2 string) bool {
-	if len(t1) != len(t2) {
-		return false
-	}
-	for i, b := range t1 {
-		if b >= utf8.RuneSelf {
-			// No UTF-8 or non-ASCII allowed in tokens.
-			return false
-		}
-		if lowerASCII(byte(b)) != lowerASCII(t2[i]) {
-			return false
-		}
-	}
-	return true
-}
-
-// isLWS reports whether b is linear white space, according
-// to http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2
-//      LWS            = [CRLF] 1*( SP | HT )
-func isLWS(b byte) bool { return b == ' ' || b == '\t' }
-
-// isCTL reports whether b is a control byte, according
-// to http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2
-//      CTL            = <any US-ASCII control character
-//                       (octets 0 - 31) and DEL (127)>
-func isCTL(b byte) bool {
-	const del = 0x7f // a CTL
-	return b < ' ' || b == del
-}
-
-// ValidHeaderFieldName reports whether v is a valid HTTP/1.x header name.
-// HTTP/2 imposes the additional restriction that uppercase ASCII
-// letters are not allowed.
-//
-//  RFC 7230 says:
-//   header-field   = field-name ":" OWS field-value OWS
-//   field-name     = token
-//   token          = 1*tchar
-//   tchar = "!" / "#" / "$" / "%" / "&" / "'" / "*" / "+" / "-" / "." /
-//           "^" / "_" / "`" / "|" / "~" / DIGIT / ALPHA
-func ValidHeaderFieldName(v string) bool {
-	if len(v) == 0 {
-		return false
-	}
-	for _, r := range v {
-		if !IsTokenRune(r) {
-			return false
-		}
-	}
-	return true
-}
-
-// ValidHostHeader reports whether h is a valid host header.
-func ValidHostHeader(h string) bool {
-	// The latest spec is actually this:
-	//
-	// http://tools.ietf.org/html/rfc7230#section-5.4
-	//     Host = uri-host [ ":" port ]
-	//
-	// Where uri-host is:
-	//     http://tools.ietf.org/html/rfc3986#section-3.2.2
-	//
-	// But we're going to be much more lenient for now and just
-	// search for any byte that's not a valid byte in any of those
-	// expressions.
-	for i := 0; i < len(h); i++ {
-		if !validHostByte[h[i]] {
-			return false
-		}
-	}
-	return true
-}
-
-// See the validHostHeader comment.
-var validHostByte = [256]bool{
-	'0': true, '1': true, '2': true, '3': true, '4': true, '5': true, '6': true, '7': true,
-	'8': true, '9': true,
-
-	'a': true, 'b': true, 'c': true, 'd': true, 'e': true, 'f': true, 'g': true, 'h': true,
-	'i': true, 'j': true, 'k': true, 'l': true, 'm': true, 'n': true, 'o': true, 'p': true,
-	'q': true, 'r': true, 's': true, 't': true, 'u': true, 'v': true, 'w': true, 'x': true,
-	'y': true, 'z': true,
-
-	'A': true, 'B': true, 'C': true, 'D': true, 'E': true, 'F': true, 'G': true, 'H': true,
-	'I': true, 'J': true, 'K': true, 'L': true, 'M': true, 'N': true, 'O': true, 'P': true,
-	'Q': true, 'R': true, 'S': true, 'T': true, 'U': true, 'V': true, 'W': true, 'X': true,
-	'Y': true, 'Z': true,
-
-	'!':  true, // sub-delims
-	'$':  true, // sub-delims
-	'%':  true, // pct-encoded (and used in IPv6 zones)
-	'&':  true, // sub-delims
-	'(':  true, // sub-delims
-	')':  true, // sub-delims
-	'*':  true, // sub-delims
-	'+':  true, // sub-delims
-	',':  true, // sub-delims
-	'-':  true, // unreserved
-	'.':  true, // unreserved
-	':':  true, // IPv6address + Host expression's optional port
-	';':  true, // sub-delims
-	'=':  true, // sub-delims
-	'[':  true,
-	'\'': true, // sub-delims
-	']':  true,
-	'_':  true, // unreserved
-	'~':  true, // unreserved
-}
-
-// ValidHeaderFieldValue reports whether v is a valid "field-value" according to
-// http://www.w3.org/Protocols/rfc2616/rfc2616-sec4.html#sec4.2 :
-//
-//        message-header = field-name ":" [ field-value ]
-//        field-value    = *( field-content | LWS )
-//        field-content  = <the OCTETs making up the field-value
-//                         and consisting of either *TEXT or combinations
-//                         of token, separators, and quoted-string>
-//
-// http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.2 :
-//
-//        TEXT           = <any OCTET except CTLs,
-//                          but including LWS>
-//        LWS            = [CRLF] 1*( SP | HT )
-//        CTL            = <any US-ASCII control character
-//                         (octets 0 - 31) and DEL (127)>
-//
-// RFC 7230 says:
-//  field-value    = *( field-content / obs-fold )
-//  obj-fold       =  N/A to http2, and deprecated
-//  field-content  = field-vchar [ 1*( SP / HTAB ) field-vchar ]
-//  field-vchar    = VCHAR / obs-text
-//  obs-text       = %x80-FF
-//  VCHAR          = "any visible [USASCII] character"
-//
-// http2 further says: "Similarly, HTTP/2 allows header field values
-// that are not valid. While most of the values that can be encoded
-// will not alter header field parsing, carriage return (CR, ASCII
-// 0xd), line feed (LF, ASCII 0xa), and the zero character (NUL, ASCII
-// 0x0) might be exploited by an attacker if they are translated
-// verbatim. Any request or response that contains a character not
-// permitted in a header field value MUST be treated as malformed
-// (Section 8.1.2.6). Valid characters are defined by the
-// field-content ABNF rule in Section 3.2 of [RFC7230]."
-//
-// This function does not (yet?) properly handle the rejection of
-// strings that begin or end with SP or HTAB.
-func ValidHeaderFieldValue(v string) bool {
-	for i := 0; i < len(v); i++ {
-		b := v[i]
-		if isCTL(b) && !isLWS(b) {
-			return false
-		}
-	}
-	return true
-}
-
-func isASCII(s string) bool {
-	for i := 0; i < len(s); i++ {
-		if s[i] >= utf8.RuneSelf {
-			return false
-		}
-	}
-	return true
-}
-
-// PunycodeHostPort returns the IDNA Punycode version
-// of the provided "host" or "host:port" string.
-func PunycodeHostPort(v string) (string, error) {
-	if isASCII(v) {
-		return v, nil
-	}
-
-	host, port, err := net.SplitHostPort(v)
-	if err != nil {
-		// The input 'v' argument was just a "host" argument,
-		// without a port. This error should not be returned
-		// to the caller.
-		host = v
-		port = ""
-	}
-	host, err = idna.ToASCII(host)
-	if err != nil {
-		// Non-UTF-8? Not representable in Punycode, in any
-		// case.
-		return "", err
-	}
-	if port == "" {
-		return host, nil
-	}
-	return net.JoinHostPort(host, port), nil
-}

From 6972bdbb165e1ac0206d78a776bf89efc4bde842 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Wed, 9 May 2018 12:29:37 -0700
Subject: [PATCH 56/69] Update travis

---
 .travis.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.travis.yml b/.travis.yml
index 808a6f383d..21b2404d37 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -2,7 +2,7 @@ language: go
 os: linux
 
 go:
-  - 1.9.x
+  - 1.10.x
 go_import_path: github.com/GoogleContainerTools/kaniko
 
 script:

From 4deb37577cc06bfa9339118620a0e94c8e0e3b48 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Thu, 10 May 2018 12:54:41 -0700
Subject: [PATCH 57/69] Add busybox shell in dockerfile

---
 deploy/Dockerfile_debug      | 20 ++++++++++++++++----
 deploy/executor-release.yaml | 10 +---------
 2 files changed, 17 insertions(+), 13 deletions(-)

diff --git a/deploy/Dockerfile_debug b/deploy/Dockerfile_debug
index 82c985a4a7..688eb76a2e 100644
--- a/deploy/Dockerfile_debug
+++ b/deploy/Dockerfile_debug
@@ -14,20 +14,32 @@
 
 # Builds the static Go image to execute in a Kubernetes job
 
+# Stage 0: Build the executor binary and get credential helpers
 FROM golang:1.10
 WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
 COPY . .
 RUN make
-WORKDIR /usr/local/bin
-ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz .
-RUN tar -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+# Get GCR credential helper
+ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz /usr/local/bin/
+RUN tar -C /usr/local/bin/ -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+# Get Amazon ECR credential helper
+RUN go get -u github.com/awslabs/amazon-ecr-credential-helper/ecr-login/cli/docker-credential-ecr-login
+RUN make -C /go/src/github.com/awslabs/amazon-ecr-credential-helper linux-amd64 
+
+# Stage 1: Get the busybox shell
+FROM gcr.io/cloud-builders/bazel:latest
+RUN git clone https://github.com/GoogleContainerTools/distroless.git
+WORKDIR /distroless
+RUN bazel build busybox:busybox.tar
+RUN tar -C /distroless/bazel-genfiles/busybox/ -xf /distroless/bazel-genfiles/busybox/busybox.tar
 
 FROM scratch
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
 COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
+COPY --from=0 /go/src/github.com/awslabs/amazon-ecr-credential-helper/bin/linux-amd64/docker-credential-ecr-login /usr/local/bin/docker-credential-ecr-login
+COPY --from=1 /distroless/bazel-genfiles/busybox/busybox/ /busybox/
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
 COPY files/config.json /root/.docker/
-ADD files/busybox.tar /
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV USER /root
diff --git a/deploy/executor-release.yaml b/deploy/executor-release.yaml
index 434a43e6fb..5f20877c62 100644
--- a/deploy/executor-release.yaml
+++ b/deploy/executor-release.yaml
@@ -3,15 +3,7 @@ steps:
   - name: "gcr.io/cloud-builders/docker"
     args: ["build", "-f", "deploy/Dockerfile",
            "-t", "gcr.io/kaniko-project/executor:${COMMIT_SHA}", "."]
-  # Then, we want to clone the distroless repo and build busybox.tar
-  - name: "gcr.io/cloud-builders/git"
-    args: ["clone", "https://github.com/GoogleContainerTools/distroless.git"]
-  - name: "gcr.io/cloud-builders/bazel"
-    args: ["build", "busybox:busybox_tar"]
-    dir: distroless
-  - name: ubuntu
-    args: ["mv", "distroless/bazel-genfiles/busybox/busybox.tar", "files/busybox.tar"]
-  # Then, we want to build the kaniko:debug image with the busybox shell
+  # Then, we want to build kaniko:debug
   - name: "gcr.io/cloud-builders/docker"
     args: ["build", "-f", "deploy/Dockerfile_debug",
            "-t", "gcr.io/kaniko-project/executor:debug-${COMMIT_SHA}", "."]

From 4de14c34dd2f6b1a0bc7af582e668db0c377a78c Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 11 May 2018 10:23:13 -0700
Subject: [PATCH 58/69] Wrap BuildArgs in our own type

---
 cmd/executor/cmd/args.go    | 43 +++++++++++++++++++++++++++++++++++++
 cmd/executor/cmd/root.go    | 21 ------------------
 pkg/commands/add.go         |  2 +-
 pkg/commands/arg.go         |  2 +-
 pkg/commands/cmd.go         |  2 +-
 pkg/commands/commands.go    |  2 +-
 pkg/commands/copy.go        |  2 +-
 pkg/commands/entrypoint.go  |  2 +-
 pkg/commands/env.go         |  2 +-
 pkg/commands/env_test.go    |  3 +--
 pkg/commands/expose.go      |  2 +-
 pkg/commands/label.go       |  2 +-
 pkg/commands/onbuild.go     |  2 +-
 pkg/commands/run.go         |  2 +-
 pkg/commands/shell.go       |  2 +-
 pkg/commands/stopsignal.go  |  2 +-
 pkg/commands/user.go        |  2 +-
 pkg/commands/volume.go      |  2 +-
 pkg/commands/workdir.go     |  2 +-
 pkg/dockerfile/buildargs.go | 10 +++++++--
 pkg/util/command_util.go    |  2 +-
 21 files changed, 69 insertions(+), 42 deletions(-)
 create mode 100644 cmd/executor/cmd/args.go

diff --git a/cmd/executor/cmd/args.go b/cmd/executor/cmd/args.go
new file mode 100644
index 0000000000..fdf6eb0c93
--- /dev/null
+++ b/cmd/executor/cmd/args.go
@@ -0,0 +1,43 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package cmd
+
+import (
+	"github.com/sirupsen/logrus"
+	"strings"
+)
+
+// The buildArg type is used to pass in multiple --build-arg flags
+type buildArg []string
+
+// Now, for our new type, implement the two methods of
+// the flag.Value interface...
+// The first method is String() string
+func (b *buildArg) String() string {
+	return strings.Join(*b, ",")
+}
+
+// The second method is Set(value string) error
+func (b *buildArg) Set(value string) error {
+	logrus.Infof("appending to build args %s", value)
+	*b = append(*b, value)
+	return nil
+}
+
+func (b *buildArg) Type() string {
+	return "build-arg type"
+}
diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index faeafba0a1..673dd3dd9c 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -23,7 +23,6 @@ import (
 
 	"github.com/GoogleContainerTools/kaniko/pkg/executor"
 	"github.com/genuinetools/amicontained/container"
-	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
@@ -86,26 +85,6 @@ var RootCmd = &cobra.Command{
 	},
 }
 
-type buildArg []string
-
-// Now, for our new type, implement the two methods of
-// the flag.Value interface...
-// The first method is String() string
-func (b *buildArg) String() string {
-	return strings.Join(*b, ",")
-}
-
-// The second method is Set(value string) error
-func (b *buildArg) Set(value string) error {
-	logrus.Infof("appending to build args %s", value)
-	*b = append(*b, value)
-	return nil
-}
-
-func (b *buildArg) Type() string {
-	return "Build ARG Type"
-}
-
 func checkContained() bool {
 	_, err := container.DetectRuntime()
 	return err == nil
diff --git a/pkg/commands/add.go b/pkg/commands/add.go
index b407ef8711..4fd9987190 100644
--- a/pkg/commands/add.go
+++ b/pkg/commands/add.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"path/filepath"
 	"strings"
 
diff --git a/pkg/commands/arg.go b/pkg/commands/arg.go
index c8fd2abc53..cf4dcd525e 100644
--- a/pkg/commands/arg.go
+++ b/pkg/commands/arg.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/cmd.go b/pkg/commands/cmd.go
index 7e20eff70a..9d33385342 100644
--- a/pkg/commands/cmd.go
+++ b/pkg/commands/cmd.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"strings"
 
 	"github.com/docker/docker/builder/dockerfile/instructions"
diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index 99e0e18140..e9084715e0 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/pkg/errors"
diff --git a/pkg/commands/copy.go b/pkg/commands/copy.go
index 499fdae993..2fb89ad5a0 100644
--- a/pkg/commands/copy.go
+++ b/pkg/commands/copy.go
@@ -22,8 +22,8 @@ import (
 	"path/filepath"
 	"strings"
 
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/entrypoint.go b/pkg/commands/entrypoint.go
index 36a405021e..f4c417ca8f 100644
--- a/pkg/commands/entrypoint.go
+++ b/pkg/commands/entrypoint.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"strings"
 
 	"github.com/docker/docker/builder/dockerfile/instructions"
diff --git a/pkg/commands/env.go b/pkg/commands/env.go
index a2d4f93d22..fabd97f12f 100644
--- a/pkg/commands/env.go
+++ b/pkg/commands/env.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
diff --git a/pkg/commands/env_test.go b/pkg/commands/env_test.go
index 79e095cb59..d4eec75029 100644
--- a/pkg/commands/env_test.go
+++ b/pkg/commands/env_test.go
@@ -18,7 +18,6 @@ package commands
 import (
 	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/testutil"
-	docker "github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"testing"
@@ -98,7 +97,7 @@ func Test_EnvExecute(t *testing.T) {
 	testutil.CheckErrorAndDeepEqual(t, false, err, expectedEnvs, cfg.Env)
 }
 
-func setUpBuildArgs() *docker.BuildArgs {
+func setUpBuildArgs() *dockerfile.BuildArgs {
 	buildArgs := dockerfile.NewBuildArgs([]string{
 		"buildArg1=foo",
 		"buildArg2=foo2",
diff --git a/pkg/commands/expose.go b/pkg/commands/expose.go
index dc9ba6d7d1..0c3bbfe1fa 100644
--- a/pkg/commands/expose.go
+++ b/pkg/commands/expose.go
@@ -18,7 +18,7 @@ package commands
 
 import (
 	"fmt"
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
diff --git a/pkg/commands/label.go b/pkg/commands/label.go
index e5fbbe8925..1ce313fa46 100644
--- a/pkg/commands/label.go
+++ b/pkg/commands/label.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"strings"
 
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
diff --git a/pkg/commands/onbuild.go b/pkg/commands/onbuild.go
index 53dce72ca3..1e5dc48a42 100644
--- a/pkg/commands/onbuild.go
+++ b/pkg/commands/onbuild.go
@@ -17,8 +17,8 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/run.go b/pkg/commands/run.go
index de55ed15d7..bd8708e8d9 100644
--- a/pkg/commands/run.go
+++ b/pkg/commands/run.go
@@ -17,8 +17,8 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/shell.go b/pkg/commands/shell.go
index 48e941aae8..93c37716ea 100644
--- a/pkg/commands/shell.go
+++ b/pkg/commands/shell.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/stopsignal.go b/pkg/commands/stopsignal.go
index fd1988a3fc..e8d15a4e37 100644
--- a/pkg/commands/stopsignal.go
+++ b/pkg/commands/stopsignal.go
@@ -17,8 +17,8 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/pkg/signal"
 	"github.com/google/go-containerregistry/v1"
diff --git a/pkg/commands/user.go b/pkg/commands/user.go
index 76fecbb448..46b36c2be1 100644
--- a/pkg/commands/user.go
+++ b/pkg/commands/user.go
@@ -17,8 +17,8 @@ limitations under the License.
 package commands
 
 import (
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
-	"github.com/docker/docker/builder/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/google/go-containerregistry/v1"
 	"github.com/sirupsen/logrus"
diff --git a/pkg/commands/volume.go b/pkg/commands/volume.go
index ac1323d01d..8ca380403e 100644
--- a/pkg/commands/volume.go
+++ b/pkg/commands/volume.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"os"
 	"strings"
 
diff --git a/pkg/commands/workdir.go b/pkg/commands/workdir.go
index 3014eaac95..2179595b36 100644
--- a/pkg/commands/workdir.go
+++ b/pkg/commands/workdir.go
@@ -17,7 +17,7 @@ limitations under the License.
 package commands
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"os"
 	"path/filepath"
 
diff --git a/pkg/dockerfile/buildargs.go b/pkg/dockerfile/buildargs.go
index 923d59e675..348b71b702 100644
--- a/pkg/dockerfile/buildargs.go
+++ b/pkg/dockerfile/buildargs.go
@@ -21,7 +21,11 @@ import (
 	"strings"
 )
 
-func NewBuildArgs(args []string) *d.BuildArgs {
+type BuildArgs struct {
+	d.BuildArgs
+}
+
+func NewBuildArgs(args []string) *BuildArgs {
 	argsFromOptions := make(map[string]*string)
 	for _, a := range args {
 		s := strings.Split(a, "=")
@@ -31,5 +35,7 @@ func NewBuildArgs(args []string) *d.BuildArgs {
 			argsFromOptions[s[0]] = &s[1]
 		}
 	}
-	return d.NewBuildArgs(argsFromOptions)
+	return &BuildArgs{
+		*d.NewBuildArgs(argsFromOptions),
+	}
 }
diff --git a/pkg/util/command_util.go b/pkg/util/command_util.go
index d58d8c7a44..bc6bc2caad 100644
--- a/pkg/util/command_util.go
+++ b/pkg/util/command_util.go
@@ -17,7 +17,7 @@ limitations under the License.
 package util
 
 import (
-	"github.com/docker/docker/builder/dockerfile"
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/docker/docker/builder/dockerfile/parser"
 	"github.com/docker/docker/builder/dockerfile/shell"

From f69be3548ad28fb5116f2373994611c01b225ae0 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 11 May 2018 11:27:13 -0700
Subject: [PATCH 59/69] Add busybox to path for debug image

---
 deploy/Dockerfile_debug | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deploy/Dockerfile_debug b/deploy/Dockerfile_debug
index 688eb76a2e..4ff4df9a6f 100644
--- a/deploy/Dockerfile_debug
+++ b/deploy/Dockerfile_debug
@@ -43,6 +43,6 @@ COPY files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV USER /root
-ENV PATH /usr/local/bin
+ENV PATH /usr/local/bin:/busybox
 ENV SSL_CERT_DIR=/kaniko/ssl/certs
 ENTRYPOINT ["/kaniko/executor"]

From 459ddffb3cd013a34a0333df1d8e78632a1539ca Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Fri, 11 May 2018 16:16:11 -0700
Subject: [PATCH 60/69] Updated tests

---
 .../dockerfiles/config_test_scratch.json      | 12 ++++++
 pkg/commands/env_test.go                      | 31 -------------
 pkg/dockerfile/dockerfile.go                  |  5 ++-
 pkg/dockerfile/dockerfile_test.go             | 43 ++++++++++++++++++-
 pkg/executor/executor.go                      |  3 ++
 5 files changed, 61 insertions(+), 33 deletions(-)
 create mode 100644 integration_tests/dockerfiles/config_test_scratch.json

diff --git a/integration_tests/dockerfiles/config_test_scratch.json b/integration_tests/dockerfiles/config_test_scratch.json
new file mode 100644
index 0000000000..b9b8930fe4
--- /dev/null
+++ b/integration_tests/dockerfiles/config_test_scratch.json
@@ -0,0 +1,12 @@
+[
+  {
+    "Image1": "gcr.io/kaniko-test/docker-test-scratch:latest",
+    "Image2": "gcr.io/kaniko-test/kaniko-test-scratch:latest",
+    "DiffType": "File",
+    "Diff": {
+      "Adds": null,
+      "Dels": null,
+      "Mods": null
+    }
+  }
+]
\ No newline at end of file
diff --git a/pkg/commands/env_test.go b/pkg/commands/env_test.go
index d4eec75029..16d7b33f70 100644
--- a/pkg/commands/env_test.go
+++ b/pkg/commands/env_test.go
@@ -23,37 +23,6 @@ import (
 	"testing"
 )
 
-func TestUpdateEnvConfig(t *testing.T) {
-	cfg := &v1.Config{
-		Env: []string{
-			"PATH=/path/to/dir",
-			"hey=hey",
-		},
-	}
-
-	newEnvs := []instructions.KeyValuePair{
-		{
-			Key:   "foo",
-			Value: "foo2",
-		},
-		{
-			Key:   "PATH",
-			Value: "/new/path/",
-		},
-		{
-			Key:   "foo",
-			Value: "newfoo",
-		},
-	}
-
-	expectedEnvArray := []string{
-		"PATH=/new/path/",
-		"hey=hey",
-		"foo=newfoo",
-	}
-	updateConfigEnv(newEnvs, cfg)
-	testutil.CheckErrorAndDeepEqual(t, false, nil, expectedEnvArray, cfg.Env)
-}
 func Test_EnvExecute(t *testing.T) {
 	cfg := &v1.Config{
 		Env: []string{
diff --git a/pkg/dockerfile/dockerfile.go b/pkg/dockerfile/dockerfile.go
index 4e295deba4..973120d138 100644
--- a/pkg/dockerfile/dockerfile.go
+++ b/pkg/dockerfile/dockerfile.go
@@ -123,12 +123,15 @@ func Dependencies(index int, stages []instructions.Stage, buildArgs *BuildArgs)
 				if err := util.UpdateConfigEnv(c.Env, &imageConfig.Config, replacementEnvs); err != nil {
 					return nil, err
 				}
+			case *instructions.ArgCommand:
+				buildArgs.AddArg(c.Key, c.Value)
 			case *instructions.CopyCommand:
 				if c.From != strconv.Itoa(index) {
 					continue
 				}
 				// First, resolve any environment replacement
-				resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.SourcesAndDest, imageConfig.Config.Env, true)
+				replacementEnvs := buildArgs.ReplacementEnvs(imageConfig.Config.Env)
+				resolvedEnvs, err := util.ResolveEnvironmentReplacementList(c.SourcesAndDest, replacementEnvs, true)
 				if err != nil {
 					return nil, err
 				}
diff --git a/pkg/dockerfile/dockerfile_test.go b/pkg/dockerfile/dockerfile_test.go
index 397ff3801d..526bd3efd7 100644
--- a/pkg/dockerfile/dockerfile_test.go
+++ b/pkg/dockerfile/dockerfile_test.go
@@ -89,7 +89,48 @@ func Test_Dependencies(t *testing.T) {
 	}
 
 	for index := range stages {
-		actualDeps, err := Dependencies(index, stages)
+		buildArgs := NewBuildArgs([]string{})
+		actualDeps, err := Dependencies(index, stages, buildArgs)
+		testutil.CheckErrorAndDeepEqual(t, false, err, expectedDependencies[index], actualDeps)
+	}
+}
+
+func Test_DependenciesWithArg(t *testing.T) {
+	testDir, err := ioutil.TempDir("", "")
+	if err != nil {
+		t.Fatal(err)
+	}
+	helloPath := filepath.Join(testDir, "hello")
+	if err := os.Mkdir(helloPath, 0755); err != nil {
+		t.Fatal(err)
+	}
+
+	dockerfile := fmt.Sprintf(`
+	FROM scratch
+	COPY %s %s
+	
+	FROM scratch AS second
+	ARG hienv
+	COPY a b
+	COPY --from=0 /$hienv %s /hi2/
+	`, helloPath, helloPath, testDir)
+
+	stages, err := Parse([]byte(dockerfile))
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	expectedDependencies := [][]string{
+		{
+			helloPath,
+			testDir,
+		},
+		nil,
+	}
+	buildArgs := NewBuildArgs([]string{fmt.Sprintf("hienv=%s", helloPath)})
+
+	for index := range stages {
+		actualDeps, err := Dependencies(index, stages, buildArgs)
 		testutil.CheckErrorAndDeepEqual(t, false, err, expectedDependencies[index], actualDeps)
 	}
 }
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index cd3ce879bc..3b5425340c 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -1,9 +1,12 @@
 /*
 Copyright 2018 Google LLC
+
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.
 You may obtain a copy of the License at
+
     http://www.apache.org/licenses/LICENSE-2.0
+
 Unless required by applicable law or agreed to in writing, software
 distributed under the License is distributed on an "AS IS" BASIS,
 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

From 58743ba68613e628cdb4ddbb567dcf55e78513fb Mon Sep 17 00:00:00 2001
From: Aleksa Sarai <asarai@suse.de>
Date: Fri, 27 Apr 2018 21:47:55 +1000
Subject: [PATCH 61/69] README: slight corrections about privileges

The previous document did not mention that Docker runs as root, and so
some of the benefits of the tools being compared (such as img,
orca-build, and umoci) were not properly explained. This is quite
important because while Kubernetes users have Docker installed (on most
clusters), on local machines and non-Kubernetes workloads the story is
quite different.

Signed-off-by: Aleksa Sarai <asarai@suse.de>
---
 README.md | 61 ++++++++++++++++++++++++++++++++++++-------------------
 1 file changed, 40 insertions(+), 21 deletions(-)

diff --git a/README.md b/README.md
index 63d5e5aa96..c489fb4157 100644
--- a/README.md
+++ b/README.md
@@ -3,7 +3,7 @@
 kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster.
 
 kaniko doesn't depend on a Docker daemon and executes each command within a Dockerfile completely in userspace.
-This enables building container images in environments that can't easily or securely run a Docker daemon, such as a standard Kubernetes cluster. 
+This enables building container images in environments that can't easily or securely run a Docker daemon, such as a standard Kubernetes cluster.
 
 We're currently in the process of building kaniko, so as of now it isn't production ready.
 Please let us know if you have any feature requests or find any bugs!
@@ -14,7 +14,7 @@ Please let us know if you have any feature requests or find any bugs!
   - [Known Issues](#known-issues)
 - [Demo](#demo)
 - [Development](#development)
-  - [kaniko Build Contexts](#kaniko-build-contexts) 
+  - [kaniko Build Contexts](#kaniko-build-contexts)
   - [Running kaniko in a Kubernetes cluster](#running-kaniko-in-a-kubernetes-cluster)
   - [Running kaniko in Google Container Builder](#running-kaniko-in-google-container-builder)
   - [Running kaniko locally](#running-kaniko-locally)
@@ -49,7 +49,7 @@ kaniko also does not support building Windows containers.
 ### kaniko Build Contexts
 kaniko supports local directories and GCS buckets as build contexts. To specify a local directory, pass in the `--context` flag as an argument to the executor image.
 To specify a GCS bucket, pass in the `--bucket` flag.
-The GCS bucket should contain a compressed tar of the build context called `context.tar.gz`, which kaniko will unpack and use as the build context. 
+The GCS bucket should contain a compressed tar of the build context called `context.tar.gz`, which kaniko will unpack and use as the build context.
 
 To create `context.tar.gz`, run the following command:
 ```shell
@@ -73,7 +73,7 @@ Requirements:
 * Standard Kubernetes cluster
 * Kubernetes Secret
 
-To run kaniko in a Kubernetes cluster, you will need a standard running Kubernetes cluster and a Kubernetes secret, which contains the auth required to push the final image. 
+To run kaniko in a Kubernetes cluster, you will need a standard running Kubernetes cluster and a Kubernetes secret, which contains the auth required to push the final image.
 
 To create the secret, first you will need to create a service account in the Google Cloud Console project you want to push the final image to, with `Storage Admin` permissions.
 You can download a JSON key for this service account, and rename it `kaniko-secret.json`.
@@ -113,7 +113,7 @@ spec:
 This example pulls the build context from a GCS bucket.
 To use a local directory build context, you could consider using configMaps to mount in small build contexts.
 
-### Running kaniko in Google Container Builder 
+### Running kaniko in Google Container Builder
 To run kaniko in GCB, add it to your build config as a build step:
 
 ```yaml
@@ -208,18 +208,21 @@ You can launch the debug image with a shell entrypoint:
 docker run -it --entrypoint=/busybox/sh gcr.io/kaniko-project/executor:debug
 ```
 ## Security
- 
+
 kaniko by itself **does not** make it safe to run untrusted builds inside your cluster, or anywhere else.
- 
+
 kaniko relies on the security features of your container runtime to provide build security.
- 
+
 The minimum permissions kaniko needs inside your container are governed by a few things:
- 
+
 * The permissions required to unpack your base image into it's container
 * The permissions required to execute the RUN commands inside the container
- 
-If you have a minimal base image (SCRATCH or similar) that doesn't require permissions to unpack, and your Dockerfile doesn't execute any commands as the root user,
-you can run Kaniko without root permissions.
+
+If you have a minimal base image (SCRATCH or similar) that doesn't require
+permissions to unpack, and your Dockerfile doesn't execute any commands as the
+root user, you can run Kaniko without root permissions. It should be noted that
+Docker runs as root by default, so you still require (in a sense) privileges to
+use Kaniko.
 
 You may be able to achieve the same default seccomp profile that Docker uses in your Pod by setting [seccomp](https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp) profiles with annotations on a [PodSecurityPolicy](https://cloud.google.com/kubernetes-engine/docs/how-to/pod-security-policies) to create or update security policies on your cluster.
 
@@ -228,21 +231,37 @@ You may be able to achieve the same default seccomp profile that Docker uses in
 Similar tools include:
 * [img](https://github.com/genuinetools/img)
 * [orca-build](https://github.com/cyphar/orca-build)
+* [umoci](https://github.com/openSUSE/umoci)
 * [buildah](https://github.com/projectatomic/buildah)
 * [FTL](https://github.com/GoogleCloudPlatform/runtimes-common/tree/master/ftl)
 * [Bazel rules_docker](https://github.com/bazelbuild/rules_docker)
 
 All of these tools build container images with different approaches.
 
-`img` can perform as a non root user from within a container, but requires that the `img` container has `RawProc` access to create nested containers.
-`kaniko` does not actually create nested containers, so it does not require `RawProc` access.
-
-`orca-build` depends on `runC` to build images from Dockerfiles, which can not run inside a container. `kaniko` doesn't use runC so it doesn't require the use of kernel namespacing techniques.
-
-`buildah` requires the same privileges as a Docker daemon does to run, while `kaniko` runs without any special privileges or permissions.  
-
-`FTL` and `Bazel` aim to achieve the fastest possible creation of Docker images for a subset of images.
-These can be thought of as a special-case "fast path" that can be used in conjunction with the support for general Dockerfiles kaniko provides.
+`img` can perform as a non root user from within a container, but requires that
+the `img` container has `RawProc` access to create nested containers.  `kaniko`
+does not actually create nested containers, so it does not require `RawProc`
+access.
+
+`orca-build` depends on `runc` to build images from Dockerfiles, which can not
+run inside a container (for similar reasons to `img` above). `kaniko` doesn't
+use `runc` so it doesn't require the use of kernel namespacing techniques.
+However, `orca-build` does not require Docker or any privileged daemon (so
+builds can be done entirely without privilege).
+
+`umoci` works without any privileges, and also has no restrictions on the root
+filesystem being extracted (though it requires additional handling if your
+filesystem is sufficiently complicated). However it has no `Dockerfile`-like
+build tooling (it's a slightly lower-level tool that can be used to build such
+builders -- such as `orca-build`).
+
+`buildah` requires the same privileges as a Docker daemon does to run, while
+`kaniko` runs without any special privileges or permissions.
+
+`FTL` and `Bazel` aim to achieve the fastest possible creation of Docker images
+for a subset of images.  These can be thought of as a special-case "fast path"
+that can be used in conjunction with the support for general Dockerfiles kaniko
+provides.
 
 ## Community
 

From fbe3e058016f9dd6c2f7fe7a737aaae1ec609088 Mon Sep 17 00:00:00 2001
From: Christian Jantz <chris@safewrd.com>
Date: Mon, 14 May 2018 23:28:24 +0200
Subject: [PATCH 62/69] WIP: Feature/healthcheck signal (#177)

* added basic healthcheck implementation

* updated go-containerregistry version

* added build args parameter to healthcheck execute

* added go-containerregistry HealthCheck passing

* dereferenced health for conversion
---
 Gopkg.lock                                    |  2 +-
 pkg/commands/commands.go                      |  2 +
 pkg/commands/healthcheck.go                   | 52 +++++++++++++++
 .../google/go-containerregistry/name/ref.go   |  1 +
 .../google/go-containerregistry/v1/config.go  | 22 +++++++
 .../go-containerregistry/v1/mutate/mutate.go  |  9 ++-
 .../go-containerregistry/v1/random/image.go   | 12 +++-
 .../go-containerregistry/v1/remote/image.go   |  2 -
 .../go-containerregistry/v1/remote/list.go    | 64 +++++++++++++++++++
 .../go-containerregistry/v1/tarball/write.go  | 30 +++++----
 10 files changed, 177 insertions(+), 19 deletions(-)
 create mode 100644 pkg/commands/healthcheck.go
 create mode 100644 vendor/github.com/google/go-containerregistry/v1/remote/list.go

diff --git a/Gopkg.lock b/Gopkg.lock
index 188d261654..d8c5ddd483 100644
--- a/Gopkg.lock
+++ b/Gopkg.lock
@@ -393,7 +393,7 @@
     "v1/types",
     "v1/v1util"
   ]
-  revision = "71d387b23c8c5488e8a70a39b0b214af1ac01f30"
+  revision = "ee5a6c257df843b47a2666ff0fff3d31d484ebda"
 
 [[projects]]
   name = "github.com/googleapis/gax-go"
diff --git a/pkg/commands/commands.go b/pkg/commands/commands.go
index e9084715e0..09bb19d0b2 100644
--- a/pkg/commands/commands.go
+++ b/pkg/commands/commands.go
@@ -68,6 +68,8 @@ func GetCommand(cmd instructions.Command, buildcontext string) (DockerCommand, e
 		return &ArgCommand{cmd: c}, nil
 	case *instructions.ShellCommand:
 		return &ShellCommand{cmd: c}, nil
+	case *instructions.HealthCheckCommand:
+		return &HealthCheckCommand{cmd: c}, nil
 	case *instructions.MaintainerCommand:
 		logrus.Warnf("%s is deprecated, skipping", cmd.Name())
 		return nil, nil
diff --git a/pkg/commands/healthcheck.go b/pkg/commands/healthcheck.go
new file mode 100644
index 0000000000..e5f4924a3b
--- /dev/null
+++ b/pkg/commands/healthcheck.go
@@ -0,0 +1,52 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package commands
+
+import (
+	"strings"
+
+	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
+	"github.com/docker/docker/builder/dockerfile/instructions"
+	"github.com/google/go-containerregistry/v1"
+	"github.com/sirupsen/logrus"
+)
+
+type HealthCheckCommand struct {
+	cmd *instructions.HealthCheckCommand
+}
+
+// ExecuteCommand handles command processing similar to CMD and RUN,
+func (h *HealthCheckCommand) ExecuteCommand(config *v1.Config, buildArgs *dockerfile.BuildArgs) error {
+	logrus.Info("cmd: HEALTHCHECK")
+
+	check := v1.HealthConfig(*h.cmd.Health)
+	config.Healthcheck = &check
+
+	return nil
+}
+
+// FilesToSnapshot returns an empty array since this is a metadata command
+func (h *HealthCheckCommand) FilesToSnapshot() []string {
+	return []string{}
+}
+
+// CreatedBy returns some information about the command for the image config history
+func (h *HealthCheckCommand) CreatedBy() string {
+	entrypoint := []string{"HEALTHCHECK"}
+
+	return strings.Join(append(entrypoint, strings.Join(h.cmd.Health.Test, " ")), " ")
+}
diff --git a/vendor/github.com/google/go-containerregistry/name/ref.go b/vendor/github.com/google/go-containerregistry/name/ref.go
index 356d79eb69..58775daa30 100644
--- a/vendor/github.com/google/go-containerregistry/name/ref.go
+++ b/vendor/github.com/google/go-containerregistry/name/ref.go
@@ -45,5 +45,6 @@ func ParseReference(s string, strict Strictness) (Reference, error) {
 	if d, err := NewDigest(s, strict); err == nil {
 		return d, nil
 	}
+	// TODO: Combine above errors into something more useful?
 	return nil, errors.New("could not parse reference")
 }
diff --git a/vendor/github.com/google/go-containerregistry/v1/config.go b/vendor/github.com/google/go-containerregistry/v1/config.go
index 17fa0d20bf..d1d809d911 100644
--- a/vendor/github.com/google/go-containerregistry/v1/config.go
+++ b/vendor/github.com/google/go-containerregistry/v1/config.go
@@ -64,6 +64,27 @@ type RootFS struct {
 	DiffIDs []Hash `json:"diff_ids"`
 }
 
+// HealthConfig holds configuration settings for the HEALTHCHECK feature.
+type HealthConfig struct {
+	// Test is the test to perform to check that the container is healthy.
+	// An empty slice means to inherit the default.
+	// The options are:
+	// {} : inherit healthcheck
+	// {"NONE"} : disable healthcheck
+	// {"CMD", args...} : exec arguments directly
+	// {"CMD-SHELL", command} : run command with system's default shell
+	Test []string `json:",omitempty"`
+
+	// Zero means to inherit. Durations are expressed as integer nanoseconds.
+	Interval    time.Duration `json:",omitempty"` // Interval is the time to wait between checks.
+	Timeout     time.Duration `json:",omitempty"` // Timeout is the time to wait before considering the check to have hung.
+	StartPeriod time.Duration `json:",omitempty"` // The start period for the container to initialize before the retries starts to count down.
+
+	// Retries is the number of consecutive failures needed to consider a container as unhealthy.
+	// Zero means inherit.
+	Retries int `json:",omitempty"`
+}
+
 // Config is a submessage of the config file described as:
 //   The execution parameters which SHOULD be used as a base when running
 //   a container using the image.
@@ -77,6 +98,7 @@ type Config struct {
 	AttachStdin     bool
 	AttachStdout    bool
 	Cmd             []string
+	Healthcheck     *HealthConfig
 	Domainname      string
 	Entrypoint      []string
 	Env             []string
diff --git a/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
index 46f4f58439..55e4805909 100644
--- a/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
+++ b/vendor/github.com/google/go-containerregistry/v1/mutate/mutate.go
@@ -300,7 +300,14 @@ func extract(img v1.Image, w io.Writer) error {
 			}
 
 			// check if we have seen value before
-			name := filepath.Join(dirname, basename)
+			// if we're checking a directory, don't filepath.Join names
+			var name string
+			if header.Typeflag == tar.TypeDir {
+				name = header.Name
+			} else {
+				name = filepath.Join(dirname, basename)
+			}
+
 			if _, ok := fileMap[name]; ok {
 				continue
 			}
diff --git a/vendor/github.com/google/go-containerregistry/v1/random/image.go b/vendor/github.com/google/go-containerregistry/v1/random/image.go
index 09047558be..5f5bc903e7 100644
--- a/vendor/github.com/google/go-containerregistry/v1/random/image.go
+++ b/vendor/github.com/google/go-containerregistry/v1/random/image.go
@@ -15,6 +15,7 @@
 package random
 
 import (
+	"archive/tar"
 	"bytes"
 	"crypto/rand"
 	"fmt"
@@ -50,8 +51,15 @@ var _ partial.UncompressedLayer = (*uncompressedLayer)(nil)
 func Image(byteSize, layers int64) (v1.Image, error) {
 	layerz := make(map[v1.Hash]partial.UncompressedLayer)
 	for i := int64(0); i < layers; i++ {
-		b := bytes.NewBuffer(nil)
-		if _, err := io.CopyN(b, rand.Reader, byteSize); err != nil {
+		var b bytes.Buffer
+		tw := tar.NewWriter(&b)
+		if err := tw.WriteHeader(&tar.Header{
+			Name: fmt.Sprintf("random_file_%d.txt", i),
+			Size: byteSize,
+		}); err != nil {
+			return nil, err
+		}
+		if _, err := io.CopyN(tw, rand.Reader, byteSize); err != nil {
 			return nil, err
 		}
 		bts := b.Bytes()
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/image.go b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
index 42801afe7b..d4c6d74abe 100644
--- a/vendor/github.com/google/go-containerregistry/v1/remote/image.go
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/image.go
@@ -19,7 +19,6 @@ import (
 	"fmt"
 	"io"
 	"io/ioutil"
-	"log"
 	"net/http"
 	"net/url"
 	"sync"
@@ -115,7 +114,6 @@ func (r *remoteImage) RawManifest() ([]byte, error) {
 		err := fmt.Errorf("manifest digest: %q does not match Docker-Content-Digest: %q for %q", digest, checksum, r.ref)
 		if r.ref.Context().RegistryStr() == name.DefaultRegistry {
 			// TODO(docker/distribution#2395): Remove this check.
-			log.Println(err)
 		} else {
 			// When pulling by tag, we can only validate that the digest matches what the registry told us it should be.
 			return nil, err
diff --git a/vendor/github.com/google/go-containerregistry/v1/remote/list.go b/vendor/github.com/google/go-containerregistry/v1/remote/list.go
new file mode 100644
index 0000000000..f1e206dddd
--- /dev/null
+++ b/vendor/github.com/google/go-containerregistry/v1/remote/list.go
@@ -0,0 +1,64 @@
+// Copyright 2018 Google LLC All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package remote
+
+import (
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"net/url"
+
+	"github.com/google/go-containerregistry/authn"
+	"github.com/google/go-containerregistry/name"
+	"github.com/google/go-containerregistry/v1/remote/transport"
+)
+
+type Tags struct {
+	Name string   `json:"name"`
+	Tags []string `json:"tags"`
+}
+
+// TODO(jonjohnsonjr): return []name.Tag?
+func List(repo name.Repository, auth authn.Authenticator, t http.RoundTripper) ([]string, error) {
+	scopes := []string{repo.Scope(transport.PullScope)}
+	tr, err := transport.New(repo.Registry, auth, t, scopes)
+	if err != nil {
+		return nil, err
+	}
+
+	uri := url.URL{
+		Scheme: transport.Scheme(repo.Registry),
+		Host:   repo.Registry.RegistryStr(),
+		Path:   fmt.Sprintf("/v2/%s/tags/list", repo.RepositoryStr()),
+	}
+
+	client := http.Client{Transport: tr}
+	resp, err := client.Get(uri.String())
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	if err := checkError(resp, http.StatusOK); err != nil {
+		return nil, err
+	}
+
+	tags := Tags{}
+	if err := json.NewDecoder(resp.Body).Decode(&tags); err != nil {
+		return nil, err
+	}
+
+	return tags.Tags, nil
+}
diff --git a/vendor/github.com/google/go-containerregistry/v1/tarball/write.go b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
index bebf3018db..73a3f73d35 100644
--- a/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
+++ b/vendor/github.com/google/go-containerregistry/v1/tarball/write.go
@@ -32,20 +32,24 @@ type WriteOptions struct {
 	// TODO(mattmoor): Whether to store things compressed?
 }
 
-// Write saves the image as the given tag in a tarball at the given path.
-func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
-	// Write in the compressed format.
-	// This is a tarball, on-disk, with:
-	// One manifest.json file at the top level containing information about several images.
-	// One file for each layer, named after the layer's SHA.
-	// One file for the config blob, named after its SHA.
-
+// WriteToFile writes in the compressed format to a tarball, on disk.
+// This is just syntactic sugar wrapping tarball.Write with a new file.
+func WriteToFile(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 	w, err := os.Create(p)
 	if err != nil {
 		return err
 	}
 	defer w.Close()
 
+	return Write(tag, img, wo, w)
+}
+
+// Write the contents of the image to the provided reader, in the compressed format.
+// The contents are written in the following format:
+// One manifest.json file at the top level containing information about several images.
+// One file for each layer, named after the layer's SHA.
+// One file for the config blob, named after its SHA.
+func Write(tag name.Tag, img v1.Image, wo *WriteOptions, w io.Writer) error {
 	tf := tar.NewWriter(w)
 	defer tf.Close()
 
@@ -58,7 +62,7 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 	if err != nil {
 		return err
 	}
-	if err := writeFile(tf, cfgName.String(), bytes.NewReader(cfgBlob), int64(len(cfgBlob))); err != nil {
+	if err := writeTarEntry(tf, cfgName.String(), bytes.NewReader(cfgBlob), int64(len(cfgBlob))); err != nil {
 		return err
 	}
 
@@ -94,10 +98,9 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 			return err
 		}
 
-		if err := writeFile(tf, layerFiles[i], r, blobSize); err != nil {
+		if err := writeTarEntry(tf, layerFiles[i], r, blobSize); err != nil {
 			return err
 		}
-
 	}
 
 	// Generate the tar descriptor and write it.
@@ -112,10 +115,11 @@ func Write(p string, tag name.Tag, img v1.Image, wo *WriteOptions) error {
 	if err != nil {
 		return err
 	}
-	return writeFile(tf, "manifest.json", bytes.NewReader(tdBytes), int64(len(tdBytes)))
+	return writeTarEntry(tf, "manifest.json", bytes.NewReader(tdBytes), int64(len(tdBytes)))
 }
 
-func writeFile(tf *tar.Writer, path string, r io.Reader, size int64) error {
+// write a file to the provided writer with a corresponding tar header
+func writeTarEntry(tf *tar.Writer, path string, r io.Reader, size int64) error {
 	hdr := &tar.Header{
 		Mode:     0644,
 		Typeflag: tar.TypeReg,

From 81b577148a9b207cdebaad25d21fa423f23e6138 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 14 May 2018 16:07:29 -0700
Subject: [PATCH 63/69] Update README

---
 README.md | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/README.md b/README.md
index c489fb4157..a500866e48 100644
--- a/README.md
+++ b/README.md
@@ -32,14 +32,7 @@ We then execute the commands in the Dockerfile, snapshotting the filesystem in u
 After each command, we append a layer of changed files to the base image (if there are any) and update image metadata.
 
 ### Known Issues
-
-The majority of Dockerfile commands can be executed with kaniko, but we're still working on supporting the following commands:
-
-* HEALTHCHECK
-
-Multi-Stage Dockerfiles are also unsupported currently, but will be ready soon.
-
-kaniko also does not support building Windows containers.
+kaniko does not support building Windows containers.
 
 ## Demo
 

From 6934f785c84d4370e1f2c511167c547ada515e5e Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 14 May 2018 16:19:26 -0700
Subject: [PATCH 64/69] Pass in clone of buildargs for dockerfile parsing

---
 pkg/dockerfile/buildargs.go | 7 +++++++
 pkg/executor/executor.go    | 2 +-
 pkg/util/fs_util.go         | 3 ---
 3 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/pkg/dockerfile/buildargs.go b/pkg/dockerfile/buildargs.go
index 358aa82f3d..d948025e1b 100644
--- a/pkg/dockerfile/buildargs.go
+++ b/pkg/dockerfile/buildargs.go
@@ -40,6 +40,13 @@ func NewBuildArgs(args []string) *BuildArgs {
 	}
 }
 
+func (b *BuildArgs) Clone() *BuildArgs {
+	clone := b.BuildArgs.Clone()
+	return &BuildArgs{
+		*clone,
+	}
+}
+
 // ReplacementEnvs returns a list of filtered environment variables
 func (b *BuildArgs) ReplacementEnvs(envs []string) []string {
 	filtered := b.FilterAllowed(envs)
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index 3b5425340c..e8a3908f02 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -157,7 +157,7 @@ func DoBuild(dockerfilePath, srcContext, snapshotMode string, args []string) (na
 			}
 			return ref, sourceImage, nil
 		}
-		if err := saveStageDependencies(index, stages, buildArgs); err != nil {
+		if err := saveStageDependencies(index, stages, buildArgs.Clone()); err != nil {
 			return nil, nil, err
 		}
 		// Delete the filesystem
diff --git a/pkg/util/fs_util.go b/pkg/util/fs_util.go
index 016bf91468..613a1043a6 100644
--- a/pkg/util/fs_util.go
+++ b/pkg/util/fs_util.go
@@ -305,9 +305,6 @@ func RelativeFiles(fp string, root string) ([]string, error) {
 		if err != nil {
 			return err
 		}
-		if PathInWhitelist(path, root) {
-			return nil
-		}
 		relPath, err := filepath.Rel(root, path)
 		if err != nil {
 			return err

From f8aa88b119a57263fd400bf44ebea8f7ef717575 Mon Sep 17 00:00:00 2001
From: Sharif Elgamal <selgamal@google.com>
Date: Tue, 15 May 2018 13:42:35 -0700
Subject: [PATCH 65/69] Integration test refactoring (#126)

* integration test refactoring

* config file cleanup

* more test refactoring

* remove debug file

* moving around more files

* fixing up integration tests

* integration tests work

* some housekeeping

* fixing tests

* addressing comments

* debugging

* debugging

* actual debugging

* skip integration tests for travis

* install container-diff before integration tests

* syntax

* make test failures less noisy

* fixing tests

* hopefully fixing CI?

* fixes

* more fixes

* let's actually fix CI

* more testing

* testing

* proper auth

* typos

* adding support for args in integration tests

* formatting

* formatting

* adding support for testing bucket context

* adding bucket test dockerfile

* addressing comments

* syntax
---
 integration-test.sh                           |   8 +-
 .../context/arr[0].txt                        |   0
 .../context/bar/bam/bat                       |   0
 .../context/bar/bat                           |   0
 .../context/bar/baz                           |   0
 .../context/empty/.gitignore                  |   0
 .../context/foo                               |   0
 .../context/tars/file                         |   0
 .../context/tars/file.bz2                     | Bin
 .../context/tars/file.tar                     | Bin
 .../context/tars/file.tar.gz                  | Bin
 .../dockerfiles/Dockerfile_onbuild_base       |   0
 .../dockerfiles/Dockerfile_test_add           |   0
 .../dockerfiles/Dockerfile_test_copy          |   0
 .../dockerfiles/Dockerfile_test_copy_bucket   |  20 ++
 .../dockerfiles/Dockerfile_test_env           |   0
 .../dockerfiles/Dockerfile_test_extract_fs    |   0
 .../dockerfiles/Dockerfile_test_metadata      |   0
 .../dockerfiles/Dockerfile_test_mv_add        |   0
 .../dockerfiles/Dockerfile_test_onbuild       |   0
 .../dockerfiles/Dockerfile_test_registry      |   0
 .../dockerfiles/Dockerfile_test_run           |   0
 .../dockerfiles/Dockerfile_test_run_2         |   0
 .../dockerfiles/Dockerfile_test_scratch       |   0
 .../dockerfiles/Dockerfile_test_user_run      |   0
 .../dockerfiles/Dockerfile_test_volume        |   0
 .../dockerfiles/Dockerfile_test_workdir       |   0
 integration/integration_test.go               | 192 ++++++++++++++++++
 .../dockerfiles/config_test_add.json          |  12 --
 .../config_test_bucket_buildcontext.json      |  12 --
 .../dockerfiles/config_test_copy.json         |  12 --
 .../dockerfiles/config_test_extract_fs.json   |  12 --
 .../dockerfiles/config_test_mv_add.json       |  12 --
 .../dockerfiles/config_test_onbuild.json      |  12 --
 .../dockerfiles/config_test_registry.json     |  12 --
 .../dockerfiles/config_test_run.json          |  12 --
 .../dockerfiles/config_test_run_2.json        |  12 --
 .../dockerfiles/config_test_scratch.json      |  12 --
 .../dockerfiles/config_test_volume.json       |  12 --
 .../dockerfiles/config_test_workdir.json      |  12 --
 integration_tests/dockerfiles/test_env.yaml   |  41 ----
 .../dockerfiles/test_metadata.yaml            |   4 -
 integration_tests/dockerfiles/test_user.yaml  |  15 --
 pkg/util/command_util_test.go                 |   2 +-
 pkg/util/fs_util_test.go                      |   2 +-
 test.sh                                       |   2 +-
 46 files changed, 222 insertions(+), 208 deletions(-)
 rename {integration_tests => integration}/context/arr[0].txt (100%)
 rename {integration_tests => integration}/context/bar/bam/bat (100%)
 rename {integration_tests => integration}/context/bar/bat (100%)
 rename {integration_tests => integration}/context/bar/baz (100%)
 rename {integration_tests => integration}/context/empty/.gitignore (100%)
 rename {integration_tests => integration}/context/foo (100%)
 rename {integration_tests => integration}/context/tars/file (100%)
 rename {integration_tests => integration}/context/tars/file.bz2 (100%)
 rename {integration_tests => integration}/context/tars/file.tar (100%)
 rename {integration_tests => integration}/context/tars/file.tar.gz (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_onbuild_base (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_add (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_copy (100%)
 create mode 100644 integration/dockerfiles/Dockerfile_test_copy_bucket
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_env (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_extract_fs (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_metadata (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_mv_add (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_onbuild (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_registry (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_run (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_run_2 (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_scratch (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_user_run (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_volume (100%)
 rename {integration_tests => integration}/dockerfiles/Dockerfile_test_workdir (100%)
 create mode 100644 integration/integration_test.go
 delete mode 100644 integration_tests/dockerfiles/config_test_add.json
 delete mode 100644 integration_tests/dockerfiles/config_test_bucket_buildcontext.json
 delete mode 100644 integration_tests/dockerfiles/config_test_copy.json
 delete mode 100644 integration_tests/dockerfiles/config_test_extract_fs.json
 delete mode 100644 integration_tests/dockerfiles/config_test_mv_add.json
 delete mode 100644 integration_tests/dockerfiles/config_test_onbuild.json
 delete mode 100644 integration_tests/dockerfiles/config_test_registry.json
 delete mode 100644 integration_tests/dockerfiles/config_test_run.json
 delete mode 100644 integration_tests/dockerfiles/config_test_run_2.json
 delete mode 100644 integration_tests/dockerfiles/config_test_scratch.json
 delete mode 100644 integration_tests/dockerfiles/config_test_volume.json
 delete mode 100644 integration_tests/dockerfiles/config_test_workdir.json
 delete mode 100644 integration_tests/dockerfiles/test_env.yaml
 delete mode 100644 integration_tests/dockerfiles/test_metadata.yaml
 delete mode 100644 integration_tests/dockerfiles/test_user.yaml

diff --git a/integration-test.sh b/integration-test.sh
index 2ef8d07a63..02dd4b6889 100755
--- a/integration-test.sh
+++ b/integration-test.sh
@@ -21,8 +21,14 @@ if [ -f "$KOKORO_GFILE_DIR"/common.sh ]; then
     mkdir -p /usr/local/go/src/github.com/GoogleContainerTools/
     cp -r github/kaniko /usr/local/go/src/github.com/GoogleContainerTools/
     pushd /usr/local/go/src/github.com/GoogleContainerTools/kaniko
+    echo "Installing container-diff..."
+    mv $KOKORO_GFILE_DIR/container-diff-linux-amd64 $KOKORO_GFILE_DIR/container-diff
+    chmod +x $KOKORO_GFILE_DIR/container-diff
+    export PATH=$PATH:$KOKORO_GFILE_DIR
+    cp $KOKORO_ROOT/src/keystore/72508_gcr_application_creds $HOME/.config/gcloud/application_default_credentials.json
 fi
 
 echo "Running integration tests..."
 make out/executor
-go run integration_tests/integration_test_yaml.go | gcloud container builds submit --config /dev/fd/0 .
+pushd integration
+go test
diff --git a/integration_tests/context/arr[0].txt b/integration/context/arr[0].txt
similarity index 100%
rename from integration_tests/context/arr[0].txt
rename to integration/context/arr[0].txt
diff --git a/integration_tests/context/bar/bam/bat b/integration/context/bar/bam/bat
similarity index 100%
rename from integration_tests/context/bar/bam/bat
rename to integration/context/bar/bam/bat
diff --git a/integration_tests/context/bar/bat b/integration/context/bar/bat
similarity index 100%
rename from integration_tests/context/bar/bat
rename to integration/context/bar/bat
diff --git a/integration_tests/context/bar/baz b/integration/context/bar/baz
similarity index 100%
rename from integration_tests/context/bar/baz
rename to integration/context/bar/baz
diff --git a/integration_tests/context/empty/.gitignore b/integration/context/empty/.gitignore
similarity index 100%
rename from integration_tests/context/empty/.gitignore
rename to integration/context/empty/.gitignore
diff --git a/integration_tests/context/foo b/integration/context/foo
similarity index 100%
rename from integration_tests/context/foo
rename to integration/context/foo
diff --git a/integration_tests/context/tars/file b/integration/context/tars/file
similarity index 100%
rename from integration_tests/context/tars/file
rename to integration/context/tars/file
diff --git a/integration_tests/context/tars/file.bz2 b/integration/context/tars/file.bz2
similarity index 100%
rename from integration_tests/context/tars/file.bz2
rename to integration/context/tars/file.bz2
diff --git a/integration_tests/context/tars/file.tar b/integration/context/tars/file.tar
similarity index 100%
rename from integration_tests/context/tars/file.tar
rename to integration/context/tars/file.tar
diff --git a/integration_tests/context/tars/file.tar.gz b/integration/context/tars/file.tar.gz
similarity index 100%
rename from integration_tests/context/tars/file.tar.gz
rename to integration/context/tars/file.tar.gz
diff --git a/integration_tests/dockerfiles/Dockerfile_onbuild_base b/integration/dockerfiles/Dockerfile_onbuild_base
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_onbuild_base
rename to integration/dockerfiles/Dockerfile_onbuild_base
diff --git a/integration_tests/dockerfiles/Dockerfile_test_add b/integration/dockerfiles/Dockerfile_test_add
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_add
rename to integration/dockerfiles/Dockerfile_test_add
diff --git a/integration_tests/dockerfiles/Dockerfile_test_copy b/integration/dockerfiles/Dockerfile_test_copy
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_copy
rename to integration/dockerfiles/Dockerfile_test_copy
diff --git a/integration/dockerfiles/Dockerfile_test_copy_bucket b/integration/dockerfiles/Dockerfile_test_copy_bucket
new file mode 100644
index 0000000000..fd184394d5
--- /dev/null
+++ b/integration/dockerfiles/Dockerfile_test_copy_bucket
@@ -0,0 +1,20 @@
+FROM alpine:3.7
+COPY context/foo foo
+COPY context/foo /foodir/
+COPY context/bar/b* bar/
+COPY context/fo? /foo2
+COPY context/bar/doesnotexist* context/foo hello
+COPY ./context/empty /empty
+COPY ./ dir/
+COPY . newdir
+COPY context/bar /baz/
+COPY ["context/foo", "/tmp/foo" ]
+COPY context/b* /baz/
+COPY context/foo context/bar/ba? /test/
+COPY context/arr[[]0].txt /mydir/
+COPY context/bar/bat .
+
+ENV contextenv ./context
+COPY ${contextenv}/foo /tmp/foo2
+COPY $contextenv/foo /tmp/foo3
+COPY $contextenv/* /tmp/${contextenv}/
diff --git a/integration_tests/dockerfiles/Dockerfile_test_env b/integration/dockerfiles/Dockerfile_test_env
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_env
rename to integration/dockerfiles/Dockerfile_test_env
diff --git a/integration_tests/dockerfiles/Dockerfile_test_extract_fs b/integration/dockerfiles/Dockerfile_test_extract_fs
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_extract_fs
rename to integration/dockerfiles/Dockerfile_test_extract_fs
diff --git a/integration_tests/dockerfiles/Dockerfile_test_metadata b/integration/dockerfiles/Dockerfile_test_metadata
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_metadata
rename to integration/dockerfiles/Dockerfile_test_metadata
diff --git a/integration_tests/dockerfiles/Dockerfile_test_mv_add b/integration/dockerfiles/Dockerfile_test_mv_add
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_mv_add
rename to integration/dockerfiles/Dockerfile_test_mv_add
diff --git a/integration_tests/dockerfiles/Dockerfile_test_onbuild b/integration/dockerfiles/Dockerfile_test_onbuild
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_onbuild
rename to integration/dockerfiles/Dockerfile_test_onbuild
diff --git a/integration_tests/dockerfiles/Dockerfile_test_registry b/integration/dockerfiles/Dockerfile_test_registry
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_registry
rename to integration/dockerfiles/Dockerfile_test_registry
diff --git a/integration_tests/dockerfiles/Dockerfile_test_run b/integration/dockerfiles/Dockerfile_test_run
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_run
rename to integration/dockerfiles/Dockerfile_test_run
diff --git a/integration_tests/dockerfiles/Dockerfile_test_run_2 b/integration/dockerfiles/Dockerfile_test_run_2
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_run_2
rename to integration/dockerfiles/Dockerfile_test_run_2
diff --git a/integration_tests/dockerfiles/Dockerfile_test_scratch b/integration/dockerfiles/Dockerfile_test_scratch
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_scratch
rename to integration/dockerfiles/Dockerfile_test_scratch
diff --git a/integration_tests/dockerfiles/Dockerfile_test_user_run b/integration/dockerfiles/Dockerfile_test_user_run
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_user_run
rename to integration/dockerfiles/Dockerfile_test_user_run
diff --git a/integration_tests/dockerfiles/Dockerfile_test_volume b/integration/dockerfiles/Dockerfile_test_volume
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_volume
rename to integration/dockerfiles/Dockerfile_test_volume
diff --git a/integration_tests/dockerfiles/Dockerfile_test_workdir b/integration/dockerfiles/Dockerfile_test_workdir
similarity index 100%
rename from integration_tests/dockerfiles/Dockerfile_test_workdir
rename to integration/dockerfiles/Dockerfile_test_workdir
diff --git a/integration/integration_test.go b/integration/integration_test.go
new file mode 100644
index 0000000000..4f31f3c20d
--- /dev/null
+++ b/integration/integration_test.go
@@ -0,0 +1,192 @@
+/*
+Copyright 2018 Google LLC
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package integration
+
+import (
+	"encoding/json"
+	"fmt"
+	"os"
+	"os/exec"
+	"path"
+	"path/filepath"
+	"runtime"
+	"strings"
+	"testing"
+
+	"github.com/GoogleContainerTools/kaniko/testutil"
+)
+
+const (
+	executorImage      = "executor-image"
+	dockerImage        = "gcr.io/cloud-builders/docker"
+	ubuntuImage        = "ubuntu"
+	testRepo           = "gcr.io/kaniko-test/"
+	dockerPrefix       = "docker-"
+	kanikoPrefix       = "kaniko-"
+	daemonPrefix       = "daemon://"
+	kanikoTestBucket   = "kaniko-test-bucket"
+	dockerfilesPath    = "dockerfiles"
+	onbuildBaseImage   = testRepo + "onbuild-base:latest"
+	buildContextPath   = "/workspace"
+	emptyContainerDiff = `[
+     {
+       "Image1": "%s:latest",
+       "Image2": "%s:latest",
+       "DiffType": "File",
+       "Diff": {
+	 	"Adds": null,
+	 	"Dels": null,
+	 	"Mods": null
+       }
+     }
+   ]`
+)
+
+func TestMain(m *testing.M) {
+	buildKaniko := exec.Command("docker", "build", "-t", executorImage, "-f", "../deploy/Dockerfile", "..")
+	err := buildKaniko.Run()
+	if err != nil {
+		fmt.Print(err)
+		fmt.Print("Building kaniko failed.")
+		os.Exit(1)
+	}
+
+	// Make sure container-diff is on user's PATH
+	_, err = exec.LookPath("container-diff")
+	if err != nil {
+		fmt.Print("Make sure you have container-diff installed and on your PATH")
+		os.Exit(1)
+	}
+
+	os.Exit(m.Run())
+}
+
+func TestRun(t *testing.T) {
+	dockerfiles, err := filepath.Glob(path.Join(dockerfilesPath, "Dockerfile*"))
+	if err != nil {
+		t.Error(err)
+		t.FailNow()
+	}
+
+	// Map for test Dockerfile to expected ARGs
+	argsMap := map[string][]string{
+		"Dockerfile_test_run":     {"file=/file"},
+		"Dockerfile_test_workdir": {"workdir=/arg/workdir"},
+		"Dockerfile_test_add":     {"file=context/foo"},
+		"Dockerfile_test_onbuild": {"file=/tmp/onbuild"},
+		"Dockerfile_test_scratch": {
+			"hello=hello-value",
+			"file=context/foo",
+			"file3=context/b*",
+		},
+	}
+
+	bucketContextTests := []string{"Dockerfile_test_copy_bucket"}
+
+	_, ex, _, _ := runtime.Caller(0)
+	cwd := filepath.Dir(ex)
+
+	for _, dockerfile := range dockerfiles {
+		t.Run("test_"+dockerfile, func(t *testing.T) {
+			dockerfile = dockerfile[len("dockerfile/")+1:]
+			t.Logf("%s\n", dockerfile)
+
+			var buildArgs []string
+			buildArgFlag := "--build-arg"
+			for _, arg := range argsMap[dockerfile] {
+				buildArgs = append(buildArgs, buildArgFlag)
+				buildArgs = append(buildArgs, arg)
+			}
+			// build docker image
+			dockerImage := strings.ToLower(testRepo + dockerPrefix + dockerfile)
+			dockerCmd := exec.Command("docker",
+				append([]string{"build",
+					"-t", dockerImage,
+					"-f", path.Join(dockerfilesPath, dockerfile),
+					"."},
+					buildArgs...)...,
+			)
+			RunCommand(dockerCmd, t)
+
+			contextFlag := "-c"
+			contextPath := buildContextPath
+			for _, d := range bucketContextTests {
+				if d == dockerfile {
+					contextFlag = "-b"
+					contextPath = kanikoTestBucket
+					break
+				}
+			}
+
+			// build kaniko image
+			kanikoImage := strings.ToLower(testRepo + kanikoPrefix + dockerfile)
+			kanikoCmd := exec.Command("docker",
+				append([]string{"run",
+					"-v", os.Getenv("HOME") + "/.config/gcloud:/root/.config/gcloud",
+					"-v", cwd + ":/workspace",
+					executorImage,
+					"-f", path.Join(buildContextPath, dockerfilesPath, dockerfile),
+					"-d", kanikoImage,
+					contextFlag, contextPath},
+					buildArgs...)...,
+			)
+
+			RunCommand(kanikoCmd, t)
+
+			// container-diff
+			daemonDockerImage := daemonPrefix + dockerImage
+			containerdiffCmd := exec.Command("container-diff", "diff",
+				daemonDockerImage, kanikoImage,
+				"-q", "--type=file", "--json")
+			diff := RunCommand(containerdiffCmd, t)
+			t.Logf("diff = %s", string(diff))
+
+			expected := fmt.Sprintf(emptyContainerDiff, dockerImage, kanikoImage)
+
+			// Let's compare the json objects themselves instead of strings to avoid
+			// issues with spaces and indents
+			var diffInt interface{}
+			var expectedInt interface{}
+
+			err = json.Unmarshal(diff, &diffInt)
+			if err != nil {
+				t.Error(err)
+				t.Fail()
+			}
+
+			err = json.Unmarshal([]byte(expected), &expectedInt)
+			if err != nil {
+				t.Error(err)
+				t.Fail()
+			}
+
+			testutil.CheckErrorAndDeepEqual(t, false, nil, expectedInt, diffInt)
+		})
+	}
+}
+
+func RunCommand(cmd *exec.Cmd, t *testing.T) []byte {
+	output, err := cmd.CombinedOutput()
+	if err != nil {
+		t.Log(cmd.Args)
+		t.Log(string(output))
+		t.Error(err)
+		t.FailNow()
+	}
+
+	return output
+}
diff --git a/integration_tests/dockerfiles/config_test_add.json b/integration_tests/dockerfiles/config_test_add.json
deleted file mode 100644
index 135cd04a3a..0000000000
--- a/integration_tests/dockerfiles/config_test_add.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-add:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-add:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_bucket_buildcontext.json b/integration_tests/dockerfiles/config_test_bucket_buildcontext.json
deleted file mode 100644
index 04c0668317..0000000000
--- a/integration_tests/dockerfiles/config_test_bucket_buildcontext.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-bucket-buildcontext:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-bucket-buildcontext:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_copy.json b/integration_tests/dockerfiles/config_test_copy.json
deleted file mode 100644
index c2fcf57d60..0000000000
--- a/integration_tests/dockerfiles/config_test_copy.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-copy:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-copy:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_extract_fs.json b/integration_tests/dockerfiles/config_test_extract_fs.json
deleted file mode 100644
index 2143ed4924..0000000000
--- a/integration_tests/dockerfiles/config_test_extract_fs.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-extract-filesystem:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-extract-filesystem:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_mv_add.json b/integration_tests/dockerfiles/config_test_mv_add.json
deleted file mode 100644
index 5a780d5c7e..0000000000
--- a/integration_tests/dockerfiles/config_test_mv_add.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-mv-add:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-mv-add:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_onbuild.json b/integration_tests/dockerfiles/config_test_onbuild.json
deleted file mode 100644
index e7fa9a1e4d..0000000000
--- a/integration_tests/dockerfiles/config_test_onbuild.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-onbuild:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-onbuild:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_registry.json b/integration_tests/dockerfiles/config_test_registry.json
deleted file mode 100644
index 27e7a402ef..0000000000
--- a/integration_tests/dockerfiles/config_test_registry.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-registry:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-registry:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_run.json b/integration_tests/dockerfiles/config_test_run.json
deleted file mode 100644
index fbd9764a2a..0000000000
--- a/integration_tests/dockerfiles/config_test_run.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-run:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-run:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_run_2.json b/integration_tests/dockerfiles/config_test_run_2.json
deleted file mode 100644
index 11f48cbca9..0000000000
--- a/integration_tests/dockerfiles/config_test_run_2.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-run-2:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-run-2:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_scratch.json b/integration_tests/dockerfiles/config_test_scratch.json
deleted file mode 100644
index b9b8930fe4..0000000000
--- a/integration_tests/dockerfiles/config_test_scratch.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-scratch:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-scratch:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_volume.json b/integration_tests/dockerfiles/config_test_volume.json
deleted file mode 100644
index 706bda2c34..0000000000
--- a/integration_tests/dockerfiles/config_test_volume.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-volume:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-volume:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/config_test_workdir.json b/integration_tests/dockerfiles/config_test_workdir.json
deleted file mode 100644
index 3b3fcefab7..0000000000
--- a/integration_tests/dockerfiles/config_test_workdir.json
+++ /dev/null
@@ -1,12 +0,0 @@
-[
-  {
-    "Image1": "gcr.io/kaniko-test/docker-test-workdir:latest",
-    "Image2": "gcr.io/kaniko-test/kaniko-test-workdir:latest",
-    "DiffType": "File",
-    "Diff": {
-      "Adds": null,
-      "Dels": null,
-      "Mods": null
-    }
-  }
-]
\ No newline at end of file
diff --git a/integration_tests/dockerfiles/test_env.yaml b/integration_tests/dockerfiles/test_env.yaml
deleted file mode 100644
index c23c7a5163..0000000000
--- a/integration_tests/dockerfiles/test_env.yaml
+++ /dev/null
@@ -1,41 +0,0 @@
-schemaVersion: '2.0.0'
-metadataTest:
-  env:
-    - key: hey
-      value: hello
-    - key: PATH
-      value: something
-    - key: first
-      value: foo
-    - key: second
-      value: foo2
-    - key: third
-      value: foo2:/third
-    - key: myName
-      value: John Doe
-    - key: myDog
-      value: Rex The Dog
-    - key: myCat
-      value: fluffy
-    - key: test
-      value: value value2
-    - key: test1
-      value: a'b'c
-    - key: test2
-      value: a"b"c
-    - key: test3
-      value: a b
-    - key: name2
-      value: b c
-    - key: test4
-      value: a"b
-    - key: test5
-      value: a\"b
-    - key: test6
-      value: a\'b
-    - key: atomic
-      value: two
-    - key: newatomic
-      value: one
-    - key: newenv
-      value: /newenv
diff --git a/integration_tests/dockerfiles/test_metadata.yaml b/integration_tests/dockerfiles/test_metadata.yaml
deleted file mode 100644
index cb0024311b..0000000000
--- a/integration_tests/dockerfiles/test_metadata.yaml
+++ /dev/null
@@ -1,4 +0,0 @@
-schemaVersion: '2.0.0'
-metadataTest:
-  cmd: ["/bin/sh", "-c", "echo \"hello\""]
-  entrypoint: ["execute", "entrypoint"]
diff --git a/integration_tests/dockerfiles/test_user.yaml b/integration_tests/dockerfiles/test_user.yaml
deleted file mode 100644
index 9a4bed1dc4..0000000000
--- a/integration_tests/dockerfiles/test_user.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-schemaVersion: '2.0.0'
-commandTests:
-- name: 'whoami'
-  command: 'whoami'
-  expectedOutput: ['testuser']
-  excludedOutput: ['root']
-- name: 'file owner'
-  command: 'ls'
-  args: ['-l', '/tmp/foo']
-  expectedOutput: ['.*testuser.*', '.*testgroup.*']
-  excludedOutput: ['.*root.*']
-fileContentTests:
-- name: "/tmp/foo"
-  path: "/tmp/foo"
-  expectedContent: ["hey"]
diff --git a/pkg/util/command_util_test.go b/pkg/util/command_util_test.go
index 478a4d349a..6ddf8c3b9c 100644
--- a/pkg/util/command_util_test.go
+++ b/pkg/util/command_util_test.go
@@ -107,7 +107,7 @@ func Test_EnvReplacement(t *testing.T) {
 	}
 }
 
-var buildContextPath = "../../integration_tests/"
+var buildContextPath = "../../integration/"
 
 var destinationFilepathTests = []struct {
 	src              string
diff --git a/pkg/util/fs_util_test.go b/pkg/util/fs_util_test.go
index 7b6ef7082c..0feefd0ebe 100644
--- a/pkg/util/fs_util_test.go
+++ b/pkg/util/fs_util_test.go
@@ -475,7 +475,7 @@ func TestExtractFile(t *testing.T) {
 			},
 		},
 		{
-			name: "symlink parent does not exist",
+			name: "symlink parent does not exist 2",
 			hdrs: []*tar.Header{linkHeader("./foo/bar/baz", "../../bat")},
 			checkers: []checker{
 				linkPointsTo("/foo/bar/baz", "../../bat"),
diff --git a/test.sh b/test.sh
index d797d9f7a2..c332c8f298 100755
--- a/test.sh
+++ b/test.sh
@@ -21,7 +21,7 @@ GREEN='\033[0;32m'
 RESET='\033[0m'
 
 echo "Running go tests..."
-go test -cover -v -timeout 60s `go list ./... | grep -v vendor` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
+go test -cover -v -timeout 60s `go list ./... | grep -v vendor | grep -v integration` | sed ''/PASS/s//$(printf "${GREEN}PASS${RESET}")/'' | sed ''/FAIL/s//$(printf "${RED}FAIL${RESET}")/''
 GO_TEST_EXIT_CODE=${PIPESTATUS[0]}
 if [[ $GO_TEST_EXIT_CODE -ne 0 ]]; then
     exit $GO_TEST_EXIT_CODE

From 347d835781c2a0c8e6a3ad03696b2ebd9f6e6576 Mon Sep 17 00:00:00 2001
From: dlorenc <lorenc.d@gmail.com>
Date: Tue, 15 May 2018 15:32:27 -0700
Subject: [PATCH 66/69] Add a mode to save to a tarball instead of pushing.
 (#178)

---
 cmd/executor/cmd/root.go |  4 +++-
 pkg/executor/executor.go | 15 +++++++++++----
 2 files changed, 14 insertions(+), 5 deletions(-)

diff --git a/cmd/executor/cmd/root.go b/cmd/executor/cmd/root.go
index bbfeb0102d..63e42831d7 100644
--- a/cmd/executor/cmd/root.go
+++ b/cmd/executor/cmd/root.go
@@ -39,6 +39,7 @@ var (
 	logLevel                    string
 	force                       bool
 	buildArgs                   buildArg
+	tarPath                     string
 )
 
 func init() {
@@ -52,6 +53,7 @@ func init() {
 	RootCmd.PersistentFlags().BoolVarP(&dockerInsecureSkipTLSVerify, "insecure-skip-tls-verify", "", false, "Push to insecure registry ignoring TLS verify")
 	RootCmd.PersistentFlags().StringVarP(&logLevel, "verbosity", "v", constants.DefaultLogLevel, "Log level (debug, info, warn, error, fatal, panic")
 	RootCmd.PersistentFlags().BoolVarP(&force, "force", "", false, "Force building outside of a container")
+	RootCmd.PersistentFlags().StringVarP(&tarPath, "tarPath", "", "", "Path to save the image in as a tarball instead of pushing")
 }
 
 var RootCmd = &cobra.Command{
@@ -82,7 +84,7 @@ var RootCmd = &cobra.Command{
 			logrus.Error(err)
 			os.Exit(1)
 		}
-		if err := executor.DoPush(ref, image, destination); err != nil {
+		if err := executor.DoPush(ref, image, destination, tarPath); err != nil {
 			logrus.Error(err)
 			os.Exit(1)
 		}
diff --git a/pkg/executor/executor.go b/pkg/executor/executor.go
index e8a3908f02..b3c697859d 100644
--- a/pkg/executor/executor.go
+++ b/pkg/executor/executor.go
@@ -19,13 +19,14 @@ package executor
 import (
 	"bytes"
 	"fmt"
-	"github.com/GoogleContainerTools/kaniko/pkg/snapshot"
 	"io"
 	"net/http"
 	"os"
 	"path/filepath"
 	"strconv"
 
+	"github.com/GoogleContainerTools/kaniko/pkg/snapshot"
+
 	"github.com/google/go-containerregistry/v1/empty"
 
 	"github.com/google/go-containerregistry/v1/tarball"
@@ -36,13 +37,14 @@ import (
 	"github.com/google/go-containerregistry/v1/mutate"
 	"github.com/google/go-containerregistry/v1/remote"
 
+	"io/ioutil"
+
 	"github.com/GoogleContainerTools/kaniko/pkg/commands"
 	"github.com/GoogleContainerTools/kaniko/pkg/constants"
 	"github.com/GoogleContainerTools/kaniko/pkg/dockerfile"
 	"github.com/GoogleContainerTools/kaniko/pkg/util"
 	"github.com/docker/docker/builder/dockerfile/instructions"
 	"github.com/sirupsen/logrus"
-	"io/ioutil"
 )
 
 func DoBuild(dockerfilePath, srcContext, snapshotMode string, args []string) (name.Reference, v1.Image, error) {
@@ -168,12 +170,17 @@ func DoBuild(dockerfilePath, srcContext, snapshotMode string, args []string) (na
 	return nil, nil, err
 }
 
-func DoPush(ref name.Reference, image v1.Image, destination string) error {
+func DoPush(ref name.Reference, image v1.Image, destination, tarPath string) error {
 	// Push the image
-	destRef, err := name.ParseReference(destination, name.WeakValidation)
+	destRef, err := name.NewTag(destination, name.WeakValidation)
 	if err != nil {
 		return err
 	}
+
+	if tarPath != "" {
+		return tarball.WriteToFile(tarPath, destRef, image, nil)
+	}
+
 	wo := remote.WriteOptions{}
 	if ref != nil {
 		wo.MountPaths = []name.Repository{ref.Context()}

From d373a96ab0b96615dbea8763a1fcb8e4f2511b60 Mon Sep 17 00:00:00 2001
From: Beedemo Admin <beedemo.sa@gmail.com>
Date: Wed, 16 May 2018 20:38:25 -0400
Subject: [PATCH 67/69] Create Dockerfile

---
 Dockerfile | 44 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 44 insertions(+)
 create mode 100644 Dockerfile

diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 0000000000..ff9eb8af4f
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,44 @@
+# Copyright 2018 Google, Inc. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Builds the static Go image to execute in a Kubernetes job
+
+FROM golang:1.10
+WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
+COPY . .
+RUN make
+# Get GCR credential helper
+ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz /usr/local/bin/
+RUN tar -C /usr/local/bin/ -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
+# Get Amazon ECR credential helper
+RUN go get -u github.com/awslabs/amazon-ecr-credential-helper/ecr-login/cli/docker-credential-ecr-login
+RUN make -C /go/src/github.com/awslabs/amazon-ecr-credential-helper linux-amd64
+
+# need to have `cat`
+FROM alpine
+
+# need to have `nohup`
+RUN apk add --no-cache coreutils
+
+COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
+COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
+COPY --from=0 /go/src/github.com/awslabs/amazon-ecr-credential-helper/bin/linux-amd64/docker-credential-ecr-login /usr/local/bin/docker-credential-ecr-login
+COPY files/ca-certificates.crt /kaniko/ssl/certs/
+COPY files/config.json /root/.docker/
+RUN ["docker-credential-gcr", "config", "--token-source=env"]
+ENV HOME /root
+ENV USER /root
+ENV PATH /usr/local/bin
+ENV SSL_CERT_DIR=/kaniko/ssl/certs
+ENTRYPOINT ["/kaniko/executor"]

From 2ca95ab07377eb9e7bde153e21865d2adc83916a Mon Sep 17 00:00:00 2001
From: Beedemo Admin <beedemo.sa@gmail.com>
Date: Wed, 16 May 2018 21:22:16 -0400
Subject: [PATCH 68/69] Update Dockerfile

---
 Dockerfile | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index ff9eb8af4f..c8be941aef 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -18,12 +18,6 @@ FROM golang:1.10
 WORKDIR /go/src/github.com/GoogleContainerTools/kaniko
 COPY . .
 RUN make
-# Get GCR credential helper
-ADD https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/download/v1.4.3-static/docker-credential-gcr_linux_amd64-1.4.3.tar.gz /usr/local/bin/
-RUN tar -C /usr/local/bin/ -xvzf /usr/local/bin/docker-credential-gcr_linux_amd64-1.4.3.tar.gz
-# Get Amazon ECR credential helper
-RUN go get -u github.com/awslabs/amazon-ecr-credential-helper/ecr-login/cli/docker-credential-ecr-login
-RUN make -C /go/src/github.com/awslabs/amazon-ecr-credential-helper linux-amd64
 
 # need to have `cat`
 FROM alpine
@@ -32,8 +26,6 @@ FROM alpine
 RUN apk add --no-cache coreutils
 
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
-COPY --from=0 /usr/local/bin/docker-credential-gcr /usr/local/bin/docker-credential-gcr
-COPY --from=0 /go/src/github.com/awslabs/amazon-ecr-credential-helper/bin/linux-amd64/docker-credential-ecr-login /usr/local/bin/docker-credential-ecr-login
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
 COPY files/config.json /root/.docker/
 RUN ["docker-credential-gcr", "config", "--token-source=env"]

From bfb9b0c6e5e6bf689582da3b991589a59f4b6a64 Mon Sep 17 00:00:00 2001
From: Beedemo Admin <beedemo.sa@gmail.com>
Date: Wed, 16 May 2018 21:29:25 -0400
Subject: [PATCH 69/69] Update Dockerfile

---
 Dockerfile | 1 -
 1 file changed, 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index c8be941aef..6b9a15a625 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -28,7 +28,6 @@ RUN apk add --no-cache coreutils
 COPY --from=0 /go/src/github.com/GoogleContainerTools/kaniko/out/executor /kaniko/executor
 COPY files/ca-certificates.crt /kaniko/ssl/certs/
 COPY files/config.json /root/.docker/
-RUN ["docker-credential-gcr", "config", "--token-source=env"]
 ENV HOME /root
 ENV USER /root
 ENV PATH /usr/local/bin